Repository: NUWCDIVNPT/stig-manager Branch: main Commit: b21da06cca79 Files: 613 Total size: 25.8 MB Directory structure: gitextract_d5fz8a2i/ ├── .dockerignore ├── .github/ │ ├── ISSUE_TEMPLATE/ │ │ ├── bug-report-form.yml │ │ └── feature_request.md │ └── workflows/ │ ├── api-audit-test-coverage-response.yml │ ├── api-binary-tests.yml │ ├── api-container-tests.yml │ ├── api-spec-validation.yml │ ├── api-state-tests.yml │ ├── build-binary-artifacts.yml │ ├── build-client.yml │ ├── build-docs.yml │ ├── client-sonarcloud.yml │ ├── pub-docker.yml │ └── unit-tests.yml ├── .readthedocs.yml ├── CONTRIBUTING.md ├── CONTRIBUTORS.md ├── Dockerfile ├── INTENT.md ├── LICENSE.md ├── README.md ├── SECURITY.md ├── api/ │ ├── README.md │ ├── bin/ │ │ └── .gitignore │ ├── build.sh │ ├── dist/ │ │ └── .gitignore │ ├── launchers/ │ │ ├── gen-launchers.py │ │ ├── stig-manager.bat │ │ └── stig-manager.sh │ ├── nuwcdivnpt-bot.gpg.asc │ ├── pkg.config.json │ └── source/ │ ├── README.md │ ├── bootstrap/ │ │ ├── bootstrapUtils.js │ │ ├── client.js │ │ ├── dependencies.js │ │ ├── docs.js │ │ ├── errorHandlers.js │ │ ├── extensionCheck.js │ │ ├── middlewares.js │ │ ├── server.js │ │ └── signals.js │ ├── controllers/ │ │ ├── Asset.js │ │ ├── Collection.js │ │ ├── Job.js │ │ ├── Metrics.js │ │ ├── Operation.js │ │ ├── Review.js │ │ ├── STIG.js │ │ └── User.js │ ├── healthcheck.js │ ├── index.js │ ├── package.json │ ├── service/ │ │ ├── AssetService.js │ │ ├── CollectionService.js │ │ ├── JobService.js │ │ ├── MetricsService.js │ │ ├── OperationService.js │ │ ├── ReviewService.js │ │ ├── STIGService.js │ │ ├── UserService.js │ │ ├── migrations/ │ │ │ ├── 0000.js │ │ │ ├── 0001.js │ │ │ ├── 0002.js │ │ │ ├── 0003.js │ │ │ ├── 0004.js │ │ │ ├── 0005.js │ │ │ ├── 0006.js │ │ │ ├── 0007.js │ │ │ ├── 0008.js │ │ │ ├── 0009.js │ │ │ ├── 0010.js │ │ │ ├── 0011.js │ │ │ ├── 0012.js │ │ │ ├── 0013.js │ │ │ ├── 0014.js │ │ │ ├── 0015.js │ │ │ ├── 0016.js │ │ │ ├── 0017.js │ │ │ ├── 0018.js │ │ │ ├── 0019.js │ │ │ ├── 0020.js │ │ │ ├── 0021.js │ │ │ ├── 0022.js │ │ │ ├── 0023.js │ │ │ ├── 0024.js │ │ │ ├── 0025.js │ │ │ ├── 0026.js │ │ │ ├── 0027.js │ │ │ ├── 0028.js │ │ │ ├── 0029.js │ │ │ ├── 0032.js │ │ │ ├── 0033.js │ │ │ ├── 0034.js │ │ │ ├── 0035.js │ │ │ ├── 0036.js │ │ │ ├── 0037.js │ │ │ ├── 0038.js │ │ │ ├── 0039.js │ │ │ ├── 0040.js │ │ │ ├── 0041.js │ │ │ ├── 0042.js │ │ │ ├── 0043.js │ │ │ ├── 0044.js │ │ │ ├── 0045.js │ │ │ ├── 0046.js │ │ │ ├── lib/ │ │ │ │ ├── MigrationHandler.js │ │ │ │ ├── mysql-import.js │ │ │ │ └── umzug-mysql-storage.js │ │ │ └── sql/ │ │ │ ├── 0000/ │ │ │ │ └── up/ │ │ │ │ ├── 10-stigman-schema.sql │ │ │ │ ├── 31-stigman-static.sql │ │ │ │ └── 32-cci-data.sql │ │ │ ├── 0001/ │ │ │ │ ├── down/ │ │ │ │ │ └── 10-collection-created.sql │ │ │ │ └── up/ │ │ │ │ └── 10-collection-created.sql │ │ │ ├── 0002/ │ │ │ │ ├── down/ │ │ │ │ │ └── 10-collection-description.sql │ │ │ │ └── up/ │ │ │ │ └── 10-collection-description.sql │ │ │ ├── 0003/ │ │ │ │ └── up/ │ │ │ │ └── 10-asset-mac-fqdn.sql │ │ │ ├── 0004/ │ │ │ │ └── up/ │ │ │ │ └── 10-user-data.sql │ │ │ ├── 0005/ │ │ │ │ ├── down/ │ │ │ │ │ └── 10-v-current-rev.sql │ │ │ │ └── up/ │ │ │ │ └── 10-v-current-rev.sql │ │ │ ├── 0006/ │ │ │ │ └── up/ │ │ │ │ └── 10-v-current-rev.sql │ │ │ ├── current/ │ │ │ │ ├── 10-stigman-tables.sql │ │ │ │ ├── 20-stigman-static.sql │ │ │ │ └── 31-rev5-cci-data.sql │ │ │ └── generateSchema.sh │ │ └── utils.js │ ├── specification/ │ │ ├── log-socket.yaml │ │ └── stig-manager.yaml │ ├── tls/ │ │ └── README.md │ └── utils/ │ ├── PoolMonitor.js │ ├── asyncApiValidator.js │ ├── auth.js │ ├── buffer-json.js │ ├── config.js │ ├── error.js │ ├── escape.js │ ├── jwksCache.js │ ├── klona.js │ ├── log-schema.json │ ├── logSocket.js │ ├── logger.js │ ├── parsers.js │ ├── poam-template-mccast.xlsx │ ├── poam-template.xlsx │ ├── roles.js │ ├── serializeError.js │ ├── serializers.js │ ├── state.js │ ├── writer.js │ └── xlsx-template-js-zip-upgrade/ │ ├── LICENSE │ ├── README.md │ ├── lib/ │ │ ├── index.d.ts │ │ └── index.js │ └── package.json ├── client/ │ ├── README.md │ ├── build.sh │ ├── dist/ │ │ └── .gitignore │ └── src/ │ ├── css/ │ │ ├── ColumnHeaderGroup.css │ │ ├── RowEditor.css │ │ ├── dark-mode.css │ │ ├── init.css │ │ ├── jsonview.bundle.css │ │ └── stigman.css │ ├── ext/ │ │ ├── INCLUDE_ORDER.txt │ │ ├── adapter/ │ │ │ └── ext/ │ │ │ ├── ext-base-debug.js │ │ │ └── ext-base.js │ │ ├── ext-all-debug-w-comments.js │ │ ├── ext-all-debug.js │ │ ├── ext-all.js │ │ ├── ext.jsb2 │ │ ├── gpl-3.0.txt │ │ ├── index.html │ │ ├── license.txt │ │ ├── release-notes.html │ │ ├── resources/ │ │ │ ├── charts.swf │ │ │ ├── css/ │ │ │ │ ├── debug.css │ │ │ │ ├── ext-all-notheme.css │ │ │ │ ├── ext-all.css │ │ │ │ ├── reset-min.css │ │ │ │ ├── structure/ │ │ │ │ │ ├── borders.css │ │ │ │ │ ├── box.css │ │ │ │ │ ├── button.css │ │ │ │ │ ├── combo.css │ │ │ │ │ ├── core.css │ │ │ │ │ ├── date-picker.css │ │ │ │ │ ├── dd.css │ │ │ │ │ ├── debug.css │ │ │ │ │ ├── dialog.css │ │ │ │ │ ├── editor.css │ │ │ │ │ ├── form.css │ │ │ │ │ ├── grid.css │ │ │ │ │ ├── layout.css │ │ │ │ │ ├── list-view.css │ │ │ │ │ ├── menu.css │ │ │ │ │ ├── panel-reset.css │ │ │ │ │ ├── panel.css │ │ │ │ │ ├── pivotgrid.css │ │ │ │ │ ├── progress.css │ │ │ │ │ ├── qtips.css │ │ │ │ │ ├── reset.css │ │ │ │ │ ├── resizable.css │ │ │ │ │ ├── slider.css │ │ │ │ │ ├── tabs.css │ │ │ │ │ ├── toolbar.css │ │ │ │ │ ├── tree.css │ │ │ │ │ └── window.css │ │ │ │ ├── theme-access/ │ │ │ │ │ ├── borders.css │ │ │ │ │ ├── box.css │ │ │ │ │ ├── button.css │ │ │ │ │ ├── combo.css │ │ │ │ │ ├── core.css │ │ │ │ │ ├── date-picker.css │ │ │ │ │ ├── dd.css │ │ │ │ │ ├── debug.css │ │ │ │ │ ├── dialog.css │ │ │ │ │ ├── editor.css │ │ │ │ │ ├── form.css │ │ │ │ │ ├── grid.css │ │ │ │ │ ├── layout.css │ │ │ │ │ ├── list-view.css │ │ │ │ │ ├── menu.css │ │ │ │ │ ├── panel.css │ │ │ │ │ ├── progress.css │ │ │ │ │ ├── qtips.css │ │ │ │ │ ├── resizable.css │ │ │ │ │ ├── slider.css │ │ │ │ │ ├── tabs.css │ │ │ │ │ ├── toolbar.css │ │ │ │ │ ├── tree.css │ │ │ │ │ └── window.css │ │ │ │ ├── theme-gray/ │ │ │ │ │ ├── borders.css │ │ │ │ │ ├── box.css │ │ │ │ │ ├── button.css │ │ │ │ │ ├── combo.css │ │ │ │ │ ├── core.css │ │ │ │ │ ├── date-picker.css │ │ │ │ │ ├── dd.css │ │ │ │ │ ├── debug.css │ │ │ │ │ ├── dialog.css │ │ │ │ │ ├── editor.css │ │ │ │ │ ├── form.css │ │ │ │ │ ├── grid.css │ │ │ │ │ ├── layout.css │ │ │ │ │ ├── list-view.css │ │ │ │ │ ├── menu.css │ │ │ │ │ ├── panel.css │ │ │ │ │ ├── pivotgrid.css │ │ │ │ │ ├── progress.css │ │ │ │ │ ├── qtips.css │ │ │ │ │ ├── resizable.css │ │ │ │ │ ├── slider.css │ │ │ │ │ ├── tabs.css │ │ │ │ │ ├── toolbar.css │ │ │ │ │ ├── tree.css │ │ │ │ │ └── window.css │ │ │ │ ├── visual/ │ │ │ │ │ ├── borders.css │ │ │ │ │ ├── box.css │ │ │ │ │ ├── button.css │ │ │ │ │ ├── combo.css │ │ │ │ │ ├── core.css │ │ │ │ │ ├── date-picker.css │ │ │ │ │ ├── dd.css │ │ │ │ │ ├── debug.css │ │ │ │ │ ├── dialog.css │ │ │ │ │ ├── editor.css │ │ │ │ │ ├── form.css │ │ │ │ │ ├── grid.css │ │ │ │ │ ├── layout.css │ │ │ │ │ ├── list-view.css │ │ │ │ │ ├── menu.css │ │ │ │ │ ├── panel.css │ │ │ │ │ ├── pivotgrid.css │ │ │ │ │ ├── progress.css │ │ │ │ │ ├── qtips.css │ │ │ │ │ ├── resizable.css │ │ │ │ │ ├── slider.css │ │ │ │ │ ├── tabs.css │ │ │ │ │ ├── toolbar.css │ │ │ │ │ ├── tree.css │ │ │ │ │ └── window.css │ │ │ │ ├── xtheme-access.css │ │ │ │ ├── xtheme-blue.css │ │ │ │ ├── xtheme-gray.css │ │ │ │ └── yourtheme.css │ │ │ ├── expressinstall.swf │ │ │ └── images/ │ │ │ ├── access/ │ │ │ │ └── form/ │ │ │ │ ├── clear-trigger.psd │ │ │ │ ├── date-trigger.psd │ │ │ │ ├── search-trigger.psd │ │ │ │ └── trigger.psd │ │ │ ├── default/ │ │ │ │ ├── form/ │ │ │ │ │ ├── clear-trigger.psd │ │ │ │ │ ├── date-trigger.psd │ │ │ │ │ ├── search-trigger.psd │ │ │ │ │ ├── trigger-square.psd │ │ │ │ │ └── trigger.psd │ │ │ │ └── window/ │ │ │ │ ├── left-corners.psd │ │ │ │ ├── left-right.psd │ │ │ │ ├── right-corners.psd │ │ │ │ └── top-bottom.psd │ │ │ └── yourtheme/ │ │ │ ├── README.txt │ │ │ ├── form/ │ │ │ │ ├── clear-trigger.psd │ │ │ │ ├── date-trigger.psd │ │ │ │ ├── search-trigger.psd │ │ │ │ ├── trigger-square.psd │ │ │ │ └── trigger.psd │ │ │ └── window/ │ │ │ ├── left-corners.psd │ │ │ ├── left-right.psd │ │ │ ├── right-corners.psd │ │ │ └── top-bottom.psd │ │ └── ux/ │ │ ├── BufferView.js │ │ ├── CenterLayout.js │ │ ├── CheckColumn.js │ │ ├── ColumnHeaderGroup.js │ │ ├── ColumnNodeUI.js │ │ ├── DataView-more.js │ │ ├── DataViewTransition.js │ │ ├── FieldLabeler.js │ │ ├── FieldReplicator.js │ │ ├── Focus.js │ │ ├── GMapPanel.js │ │ ├── GroupSummary.js │ │ ├── GroupTab.js │ │ ├── GroupTabPanel.js │ │ ├── ItemSelector.js │ │ ├── LockingGridView.js │ │ ├── MultiSelect.js │ │ ├── PagingMemoryProxy.js │ │ ├── PanelResizer.js │ │ ├── Portal.js │ │ ├── PortalColumn.js │ │ ├── Portlet.js │ │ ├── ProgressBarPager.js │ │ ├── Reorderer.js │ │ ├── RowEditor.js │ │ ├── RowExpander.js │ │ ├── RowLayout.js │ │ ├── SearchField.js │ │ ├── SelectBox.js │ │ ├── SlidingPager.js │ │ ├── Spinner.js │ │ ├── SpinnerField.js │ │ ├── Spotlight.js │ │ ├── TabCloseMenu.js │ │ ├── TabScrollerMenu.js │ │ ├── TableGrid.js │ │ ├── ToolbarDroppable.js │ │ ├── ToolbarReorderer.js │ │ ├── XmlTreeLoader.js │ │ ├── css/ │ │ │ ├── CenterLayout.css │ │ │ ├── ColumnHeaderGroup.css │ │ │ ├── ColumnNodeUI.css │ │ │ ├── GroupSummary.css │ │ │ ├── GroupTab.css │ │ │ ├── LockingGridView.css │ │ │ ├── MultiSelect.css │ │ │ ├── PanelResizer.css │ │ │ ├── Portal.css │ │ │ ├── RowEditor.css │ │ │ ├── Spinner.css │ │ │ └── ux-all.css │ │ ├── fileuploadfield/ │ │ │ ├── FileUploadField.js │ │ │ └── css/ │ │ │ └── fileuploadfield.css │ │ ├── gridfilters/ │ │ │ ├── GridFilters.js │ │ │ ├── css/ │ │ │ │ ├── GridFilters.css │ │ │ │ └── RangeMenu.css │ │ │ ├── filter/ │ │ │ │ ├── BooleanFilter.js │ │ │ │ ├── DateFilter.js │ │ │ │ ├── Filter.js │ │ │ │ ├── ListFilter.js │ │ │ │ ├── NumericFilter.js │ │ │ │ └── StringFilter.js │ │ │ └── menu/ │ │ │ ├── ListMenu.js │ │ │ └── RangeMenu.js │ │ ├── statusbar/ │ │ │ ├── StatusBar.js │ │ │ ├── ValidationStatus.js │ │ │ └── css/ │ │ │ └── statusbar.css │ │ ├── treegrid/ │ │ │ ├── TreeGrid.js │ │ │ ├── TreeGridColumnResizer.js │ │ │ ├── TreeGridColumns.js │ │ │ ├── TreeGridLoader.js │ │ │ ├── TreeGridNodeUI.js │ │ │ ├── TreeGridSorter.js │ │ │ └── treegrid.css │ │ ├── ux-all-debug.js │ │ └── ux-all.js │ ├── index.html │ ├── js/ │ │ ├── BufferView.js │ │ ├── ColumnHeaderGroup.js │ │ ├── Env.js.example │ │ ├── ExportButton.js │ │ ├── FileSaver.js │ │ ├── FileUploadField.js │ │ ├── LockingGridView.js │ │ ├── MessageBox.js │ │ ├── RowEditor.js │ │ ├── RowExpander.js │ │ ├── SM/ │ │ │ ├── Acl.js │ │ │ ├── ActivityHandler.js │ │ │ ├── Ajax.js │ │ │ ├── ApiState.js │ │ │ ├── AppData.js │ │ │ ├── AppInfo.js │ │ │ ├── AssetSelection.js │ │ │ ├── Attachments.js │ │ │ ├── BatchReview.js │ │ │ ├── Cache.js │ │ │ ├── Checklist.js │ │ │ ├── Classification.js │ │ │ ├── CollectionClone.js │ │ │ ├── CollectionPanel.js │ │ │ ├── ColumnFilters.js │ │ │ ├── Error.js │ │ │ ├── EventDispatcher.js │ │ │ ├── Exports.js │ │ │ ├── FindingsPanel.js │ │ │ ├── FlexboxLayout.js │ │ │ ├── Global.js │ │ │ ├── Grant.js │ │ │ ├── Inventory.js │ │ │ ├── Job.js │ │ │ ├── Library.js │ │ │ ├── LogStream.js │ │ │ ├── MainPanel.js │ │ │ ├── Manage.js │ │ │ ├── MetaPanel.js │ │ │ ├── NavTree.js │ │ │ ├── Review.js │ │ │ ├── ReviewsImport.js │ │ │ ├── RowEditorToolbar.js │ │ │ ├── SelectingGridToolbar.js │ │ │ ├── ServiceWorker.js │ │ │ ├── StackTrace.js │ │ │ ├── State.js │ │ │ ├── StigRevision.js │ │ │ ├── TipContent.js │ │ │ ├── TransferAssets.js │ │ │ ├── User.js │ │ │ ├── UserGroup.js │ │ │ └── WhatsNew.js │ │ ├── collectionAdmin.js │ │ ├── collectionManager.js │ │ ├── collectionReview.js │ │ ├── completionStatus.js │ │ ├── diff.js │ │ ├── findingsSummary.js │ │ ├── init.js │ │ ├── jsonview.bundle.js │ │ ├── library.js │ │ ├── modules/ │ │ │ ├── package.json │ │ │ └── source-map/ │ │ │ ├── mappings.wasm │ │ │ └── source-map.js │ │ ├── overrides.js │ │ ├── resources-dist.js │ │ ├── resources.js │ │ ├── review.js │ │ ├── stigAdmin.js │ │ ├── stigman.js │ │ ├── stigmanUtils.js │ │ └── workers/ │ │ ├── oidc-worker.js │ │ ├── service-worker.js │ │ └── state-worker.js │ └── reauth.html ├── data/ │ ├── appdata/ │ │ └── README.md │ └── schemas/ │ ├── Stigman-Model.mwb │ └── _manifest.json ├── docker-build.sh ├── docs/ │ ├── .nojekyll │ ├── Dockerfile │ ├── Makefile │ ├── STIG-Manager-OSS.ckl │ ├── _build/ │ │ ├── .gitignore │ │ └── html/ │ │ └── .gitignore │ ├── _static/ │ │ └── css/ │ │ ├── custom-pydata-theme.css │ │ └── custom.css │ ├── admin-guide/ │ │ ├── admin-guide.rst │ │ ├── admin-quickstart.rst │ │ └── index.rst │ ├── build.sh │ ├── conf.py │ ├── features/ │ │ ├── common-tasks.rst │ │ └── index.rst │ ├── index.html │ ├── index.rst │ ├── installation-and-setup/ │ │ ├── authentication.rst │ │ ├── data-and-permissions.rst │ │ ├── db.rst │ │ ├── environment-variables.rst │ │ ├── envvars-node.csv │ │ ├── envvars.csv │ │ ├── index.rst │ │ ├── installation-and-setup.rst │ │ ├── logging.rst │ │ ├── reverse-proxy.rst │ │ ├── securing.rst │ │ └── stigman-asd-full.csv │ ├── make.bat │ ├── reference/ │ │ └── index.rst │ ├── requirements.txt │ ├── the-project/ │ │ ├── DockerHub_Readme.md │ │ ├── clients.rst │ │ ├── contributing.rst │ │ ├── documentation.rst │ │ ├── examples.rst │ │ ├── index.rst │ │ ├── project-description.rst │ │ ├── related-repos.rst │ │ ├── requirements-and-dependencies.rst │ │ └── testing.rst │ └── user-guide/ │ ├── Stig-Manager-Asset-Batch-Import.csv │ ├── index.rst │ ├── republished-rules.csv │ ├── review-handling.rst │ ├── roles-and-access.rst │ ├── rule-exceptions.rst │ ├── user-guide.rst │ └── user-quickstart.rst ├── release-notes.rst ├── root.json └── test/ ├── api/ │ ├── README.md │ ├── appdata/ │ │ ├── appdata-meta-metrics-with-pin.jsonl │ │ ├── appdata.jsonl │ │ ├── batch-test-data.jsonl │ │ ├── user-status-get-post.jsonl │ │ └── user-status-patch-put.jsonl │ ├── dark.css │ ├── form-data-files/ │ │ ├── U_MS_Windows_10_STIG_V1R23_Manual-xccdf.xml │ │ ├── U_RHEL_7_STIG_V3R0-3_Manual-xccdf.xml │ │ ├── U_VPN_SRG-OTHER_V1R1_Manual-xccdf.xml │ │ ├── U_VPN_SRG-OTHER_V1R1_twoRules-matchingFingerprints.xml │ │ ├── U_VPN_SRG_V1R0_Manual-xccdf.xml │ │ ├── U_VPN_SRG_V1R1_Manual-xccdf-replace.xml │ │ ├── U_VPN_SRG_V1R1_Manual-xccdf.xml │ │ └── U_VPN_SRG_V2R3_Manual-xccdf-reviewKeyChange.xml │ ├── mocha/ │ │ ├── cross-boundary/ │ │ │ └── lvl1.test.js │ │ ├── data/ │ │ │ ├── acl/ │ │ │ │ ├── directAcl.test.js │ │ │ │ ├── directIterations.js │ │ │ │ ├── groupAcl.test.js │ │ │ │ ├── groupIterations.js │ │ │ │ └── referenceData.js │ │ │ ├── asset/ │ │ │ │ ├── assetDelete.test.js │ │ │ │ ├── assetGet.test.js │ │ │ │ ├── assetPatch.test.js │ │ │ │ ├── assetPost.test.js │ │ │ │ ├── assetPut.test.js │ │ │ │ ├── expectations.js │ │ │ │ └── requestBodies.js │ │ │ ├── collection/ │ │ │ │ ├── collectionDelete.test.js │ │ │ │ ├── collectionGet.test.js │ │ │ │ ├── collectionPatch.test.js │ │ │ │ ├── collectionPost.test.js │ │ │ │ ├── collectionPut.test.js │ │ │ │ ├── expectations.js │ │ │ │ └── requestBodies.js │ │ │ ├── metrics/ │ │ │ │ ├── expectations.js │ │ │ │ ├── metaMetricsGet.json │ │ │ │ ├── metaMetricsGet.test.js │ │ │ │ ├── metricsGet.json │ │ │ │ └── metricsGet.test.js │ │ │ ├── operation/ │ │ │ │ └── op.test.js │ │ │ ├── review/ │ │ │ │ ├── expectations.js │ │ │ │ ├── requestBodies.js │ │ │ │ ├── reviewDelete.test.js │ │ │ │ ├── reviewGet.test.js │ │ │ │ ├── reviewPatch.test.js │ │ │ │ ├── reviewPost.test.js │ │ │ │ └── reviewPut.test.js │ │ │ ├── stig/ │ │ │ │ ├── expectations.js │ │ │ │ └── stigs.test.js │ │ │ ├── user/ │ │ │ │ ├── expectations.js │ │ │ │ ├── requestBodies.js │ │ │ │ └── user.test.js │ │ │ └── user-group/ │ │ │ ├── requestBodies.js │ │ │ └── user-group.test.js │ │ ├── integration/ │ │ │ ├── access.test.js │ │ │ ├── aclResolution.test.js │ │ │ ├── asset.test.js │ │ │ ├── collection.test.js │ │ │ ├── deleteHandling.test.js │ │ │ ├── expectations.js │ │ │ ├── grantChange.test.js │ │ │ ├── job.test.js │ │ │ ├── logStream.test.js │ │ │ ├── metrics.test.js │ │ │ ├── resultEngine.test.js │ │ │ ├── review.test.js │ │ │ ├── revisionPinning.test.js │ │ │ ├── roleResolution.test.js │ │ │ ├── stig.test.js │ │ │ └── userStatus.test.js │ │ ├── iterations.js │ │ ├── referenceData.js │ │ ├── security/ │ │ │ └── reviewCrossCollectionWrite.test.js │ │ ├── testConfig.js │ │ └── utils/ │ │ └── testUtils.js │ ├── mock-keycloak/ │ │ └── auth/ │ │ └── realms/ │ │ └── stigman/ │ │ ├── .well-known/ │ │ │ └── openid-configuration │ │ └── protocol/ │ │ └── openid-connect/ │ │ └── certs │ ├── mock-keycloak-test-cases/ │ │ ├── no-jwks/ │ │ │ └── auth/ │ │ │ └── realms/ │ │ │ └── stigman/ │ │ │ ├── .well-known/ │ │ │ │ └── openid-configuration │ │ │ └── protocol/ │ │ │ └── openid-connect/ │ │ │ └── certs │ │ └── secure-kid/ │ │ └── auth/ │ │ └── realms/ │ │ └── stigman/ │ │ ├── .well-known/ │ │ │ └── openid-configuration │ │ └── protocol/ │ │ └── openid-connect/ │ │ └── certs │ ├── package.json │ └── runMocha.sh ├── state/ │ ├── drop-db.sh │ ├── mocha/ │ │ ├── bootstrap.test.js │ │ ├── db.test.js │ │ ├── jwks.test.js │ │ ├── lib.js │ │ ├── oidc.test.js │ │ └── tokenValidation.test.js │ └── package.json ├── unit/ │ ├── mocha/ │ │ └── asyncApiValidator.test.js │ └── package.json └── utils/ ├── appdata-update.js ├── mockOidc.js └── package.json ================================================ FILE CONTENTS ================================================ ================================================ FILE: .dockerignore ================================================ **/node_modules **/state.json **/README.md **/.git **/.gitignore **/data **/test **/uploads **/docker !client/**/node_modules ================================================ FILE: .github/ISSUE_TEMPLATE/bug-report-form.yml ================================================ name: 🐞 Bug Report description: File a bug/issue title: "***The title of your Issue here***" labels: [Bug, Needs Triage] body: - type: checkboxes attributes: label: Is there an existing issue for this? description: Please search to see if an issue already exists for the bug you encountered. options: - label: I have searched the existing issues required: true - type: checkboxes attributes: label: Are you using the latest version of STIG Manager? description: The latest release is ![GitHub release](https://img.shields.io/github/v/release/NUWCDIVNPT/stig-manager?label=%20). You can see the version you are using in the app on the Home tab, in the badge next to the STIG Manager name and logo. The STIGMan project is in development using an agile process that releases new features and bugfixes frequently. options: - label: I am using the latest [Release](https://github.com/NUWCDIVNPT/stig-manager/releases). - label: I am NOT using the latest [Release](https://github.com/NUWCDIVNPT/stig-manager/releases). I am aware that the first thing I will be asked to do is update the application so that I have the latest bugfixes. - type: checkboxes id: issue-location attributes: label: Where are you experiencing the issue? description: Select one or more. options: - label: API - label: UI or other client - label: Deployment - label: Elsewhere - type: textarea attributes: label: Current Behavior description: A description of what you're experiencing. validations: required: true - type: textarea attributes: label: Expected Behavior description: A description of what you expected to happen. validations: required: false - type: textarea attributes: label: Steps To Reproduce description: Steps to reproduce the behavior. placeholder: | 1. In this environment... 2. With this config... 3. Run '...' 4. See error... validations: required: false - type: textarea attributes: label: Can you provide screenshots, logs, or other useful artifacts? description: | Links? References? Anything that will give us more context about the issue you are encountering! Tip: You can attach images or log files by clicking this area to highlight it and then dragging files in. validations: required: false - type: textarea attributes: label: Describe your Environment description: | examples: - **Hosting**: Are you hosting your own deployment of STIGMan or being provided with an instance? - **Browser**: Chrome - **OS**: Ubuntu 20.04 - **Node**: 13.14.0 - **npm**: 7.6.3 value: | - Hosting: - Browser: - OS: - Node: - npm: render: markdown validations: required: false ================================================ FILE: .github/ISSUE_TEMPLATE/feature_request.md ================================================ --- name: Feature request about: Suggest an idea for this project title: 'FEATURE REQUEST: ' labels: enhancement assignees: '' --- **Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] **Describe the solution you'd like** A clear and concise description of what you want to happen. **Describe alternatives you've considered** A clear and concise description of any alternative solutions or features you've considered. **Additional context** Add any other context or screenshots about the feature request here. ================================================ FILE: .github/workflows/api-audit-test-coverage-response.yml ================================================ name: API source on: workflow_dispatch: pull_request: branches: - main - test-coverage paths: - "api/source/**" - "test/api/**" - ".github/workflows/api-audit-test-coverage-response.yml" push: branches: - main - test-coverage paths: - "api/source/**" - "test/api/**" - ".github/workflows/api-audit-test-coverage-response.yml" env: STIGMAN_API_PORT: 64001 STIGMAN_DB_HOST: localhost STIGMAN_DB_PORT: 3306 STIGMAN_DB_PASSWORD: stigman STIGMAN_API_AUTHORITY: http://127.0.0.1:8080/auth/realms/stigman STIGMAN_SWAGGER_ENABLED: true STIGMAN_SWAGGER_SERVER: http://localhost:64001/api STIGMAN_SWAGGER_REDIRECT: http://localhost:64001/api-docs/oauth2-redirect.html STIGMAN_DEV_RESPONSE_VALIDATION: logOnly STIGMAN_EXPERIMENTAL_APPDATA: 'true' STIGMAN_DEV_ALLOW_INSECURE_TOKENS: 'true' NODE_V8_COVERAGE: /home/runner/work/stig-manager/stig-manager/api/source/coverage/tmp/ permissions: pull-requests: read # allows SonarCloud to decorate PRs with analysis results jobs: npm_audit: name: npm audit runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - name: install dependencies run: npm ci working-directory: ./api/source/ - name: Audit Dependencies and Create PR Comment if needed uses: oke-py/npm-audit-action@2c6b2da234031fbf72af81a04c76b3a152bb2222 # pin@v2 with: github_token: ${{ secrets.GITHUB_TOKEN }} create_issues: false create_pr_comments: true working_directory: ./api/source/ test_api: name: Run tests with coverage runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 - uses: actions/setup-node@v4 with: node-version: lts/* - name: coverage directory run: printenv NODE_V8_COVERAGE - name: Install app dependencies working-directory: ./api/source run: npm ci - name: Install test dependencies run: npm ci working-directory: ./test/api/ - name: Install utils test dependencies run: npm ci working-directory: ./test/utils/ - name: Run mock Keycloak id: idp-run working-directory: ./test/api/mock-keycloak run: | python3 -m http.server 8080 & - name: Run MySQL container id: mysql-run run: | docker run -d --name stig-manager-db \ -p 3306:3306 \ -e MYSQL_ROOT_PASSWORD=rootpw \ -e MYSQL_DATABASE=stigman \ -e MYSQL_USER=stigman \ -e MYSQL_PASSWORD=stigman \ mysql:8.0.24 - name: Install c8 coverage reporter run: | sudo npm install -g c8 - name: Run app and echo pid working-directory: ./api/source run: sh -c 'echo $$ > /tmp/test.pid ; exec c8 -r html node index.js > api-log.json 2>&1' & - name: pid file check working-directory: ./api/source run: cat /tmp/test.pid - name: Wait for bootstrap run: for i in {1..10}; do [ $i -gt 1 ] && sleep 5; curl --output /dev/null --silent --fail http://localhost:64001/api/op/configuration && s=0 && break || s=$?; printf '.'; done; (exit $s) - name: Run tests with coverage working-directory: ./test/api/ run: npm test - name: Upload mocha test report id: artifact-upload-mocha uses: actions/upload-artifact@v4 if: ${{ always() }} with: name: mocha-report path: ./test/api/mochawesome-report - name: Kill child pid working-directory: ./api/source run: kill -SIGINT $(ps -ef --ppid `cat /tmp/test.pid` -o pid= ) - name: Wait until c8 process ends, or 60 seconds, whichever is shorter. run: timeout 60 tail --pid=`cat /tmp/test.pid` -f /dev/null - name: run c8 text/lcov report working-directory: ./api/source run: c8 report -r lcov -r text -r html - name: Upload coverage artifact id: artifact-upload-coverage uses: actions/upload-artifact@v4 if: ${{ always() }} with: name: coverage-report path: ./api/source/coverage - name: Upload API logs id: artifact-upload-api-logs uses: actions/upload-artifact@v4 if: ${{ always() }} with: name: api-log path: ./api/source/api-log.json response_validation: name: Response validation needs: - test_api runs-on: ubuntu-latest steps: - name: Download API log artifact uses: actions/download-artifact@v4 with: name: api-log path: ./logs - name: Test for response validation messages working-directory: ./logs run: | jq -s 'map(select(.type=="responseValidation")|{method:.data.request.method,url:.data.request.url,errors:.data.error.errors,body:.data.body})' api-log.json > response-validation.json exit $(jq '. | length' response-validation.json) - name: Upload response validation artifact if: ${{ failure() }} uses: actions/upload-artifact@v4 with: name: response-validation path: ./logs/response-validation.json SonarCloudAnalysis-API: name: SonarCloud Analysis needs: test_api runs-on: ubuntu-latest steps: - name: Check if PR is from a fork id: check_fork run: | if [ "${{ github.event.pull_request.head.repo.fork }}" == "true" ]; then echo "This is a PR from a fork, skipping sonarcloud analysis." echo "SKIP_STEP=true" >> $GITHUB_ENV fi - name: Checkout repository if: env.SKIP_STEP != 'true' uses: actions/checkout@v4 with: fetch-depth: 0 # Important to fetch all history for accurate blame information - name: Download lcov artifact if: env.SKIP_STEP != 'true' uses: actions/download-artifact@v4 with: name: coverage-report - name: Move lcov.info to api/source if: env.SKIP_STEP != 'true' run: mv lcov.info ./api/source/ - name: Analyze API with SonarCloud if: env.SKIP_STEP != 'true' uses: SonarSource/sonarqube-scan-action@v6.0.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information SONAR_TOKEN: ${{ secrets.SONAR_TOKEN_API }} # Needed to push to SonarCloud with: # Additional arguments for the sonarcloud scanner projectBaseDir: ./api/source args: -Dsonar.projectKey=nuwcdivnpt_stig-manager-api -Dsonar.projectName=nuwcdivnpt_stig-manager-api -Dsonar.organization=nuwcdivnpt -Dsonar.inclusions=**/*.js -Dsonar.exclusions=**/node_modules/**,**/coverage-report/** -Dsonar.javascript.lcov.reportPaths=./lcov.info # This will fail the action if Quality Gate fails (leaving out for now ) # - name: Check Quality Gate # uses: sonarsource/sonarqube-quality-gate-action@master # env: # SONAR_TOKEN: ================================================ FILE: .github/workflows/api-binary-tests.yml ================================================ name: Build and Test Linux Binary on: workflow_dispatch: pull_request: branches: - main paths: - "api/source/**" - "test/api/**" - ".github/workflows/api-binary-tests.yml" - "api/build.sh" - "client/build.sh" - "docs/build.sh" push: branches: - main paths: - "api/source/**" - "test/api/**" - ".github/workflows/api-binary-tests.yml" - "api/build.sh" - "client/build.sh" - "docs/build.sh" env: STIGMAN_API_PORT: 64001 STIGMAN_DB_HOST: localhost STIGMAN_DB_PORT: 3306 STIGMAN_DB_PASSWORD: stigman STIGMAN_API_AUTHORITY: http://127.0.0.1:8080/auth/realms/stigman STIGMAN_SWAGGER_ENABLED: true STIGMAN_SWAGGER_SERVER: http://127.0.0.1:64001/api STIGMAN_SWAGGER_REDIRECT: http://127.0.0.1:64001/api-docs/oauth2-redirect.html STIGMAN_DEV_RESPONSE_VALIDATION: logOnly STIGMAN_EXPERIMENTAL_APPDATA: 'true' STIGMAN_OIDC_PROVIDER: http://127.0.0.1:8080/auth/realms/stigman STIGMAN_DEV_ALLOW_INSECURE_TOKENS: 'true' jobs: build-artifacts: name: Build binary artifacts runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 - uses: actions/setup-node@v4 with: node-version: lts/* - name: Get repository metadata id: repo uses: actions/github-script@v7 with: script: | const repo = await github.rest.repos.get(context.repo) return repo.data - name: install uglify run: | sudo npm install -g uglify-js - name: run build script id: run-the-build-script working-directory: ./api run: ./build.sh - name: Upload builds if: always() uses: actions/upload-artifact@v4 with: name: binary-artifacts path: ./api/bin/ if-no-files-found: error - name: Upload archives if: always() uses: actions/upload-artifact@v4 with: name: binary-archives path: ./api/dist/ if-no-files-found: error run-test-linux-binary-artifact: name: Run and test linux artifact needs: build-artifacts runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 - uses: actions/setup-node@v4 with: node-version: lts/* - name: Run mock Keycloak id: idp-run working-directory: test/api/mock-keycloak run: | python3 -m http.server 8080 & - name: Run MySQL container id: mysql-run run: | docker run -d --name stig-manager-db \ -p 3306:3306 \ -e MYSQL_ROOT_PASSWORD=rootpw \ -e MYSQL_DATABASE=stigman \ -e MYSQL_USER=stigman \ -e MYSQL_PASSWORD=stigman \ mysql:8.0.24 - name: wait 10 seconds run: sleep 10 - name: Download builds uses: actions/download-artifact@v4 with: name: binary-artifacts path: ./binary-artifacts - name: Set execute permissions on binary run: chmod +x ./binary-artifacts/stig-manager-linuxstatic - name: Run linux binary and log output working-directory: ./ run: | mkdir -p ./binary-artifacts/logs echo "Running tests on binary artifacts" ./binary-artifacts/stig-manager-linuxstatic > ./binary-artifacts/logs/output.log 2>&1 & echo $! > binary-artifacts/stig-manager.pid - name: Wait for bootstrap run: for i in {1..10}; do [ $i -gt 1 ] && sleep 5; curl --output /dev/null --silent --fail http://localhost:64001/api/op/configuration && s=0 && break || s=$?; printf '.'; done; (exit $s) - name: Install test dependencies run: npm ci working-directory: ./test/api/ - name: Install utils test dependencies run: npm ci working-directory: ./test/utils/ - name: Run tests with coverage and log output working-directory: ./test/api/ run: | set -o pipefail npm test 2>&1 | tee ../../binary-artifacts/logs/test-output.log - name: Stop linux binary if: always() run: | if [ -f binary-artifacts/stig-manager.pid ]; then kill $(cat binary-artifacts/stig-manager.pid) || true fi - name: Upload logs if: always() uses: actions/upload-artifact@v4 with: name: test-logs path: ./binary-artifacts/logs/ ================================================ FILE: .github/workflows/api-container-tests.yml ================================================ name: API containers on: workflow_dispatch: pull_request: branches: - main paths: - "api/source/**" - "test/api/**" - "Dockerfile" - ".github/workflows/api-container-tests.yml" jobs: fetch-mysql-versions: runs-on: ubuntu-latest outputs: MYSQL_VERSIONS: ${{ steps.fetch-versions.outputs.version_array }} steps: - name: Fetch MySQL Versions id: fetch-versions run: | # Fetch latest 3 MySQL 8.0.x versions plus 8.0.24 MYSQL_8_0=$(curl -s "https://registry.hub.docker.com/v2/repositories/library/mysql/tags/?page_size=100" | jq -r '.results[].name | select(test("^8\\.0\\.\\d+$"))' | sort -V | tail -n2 | cat <(echo "8.0.24") - | sort -V | uniq) # Fetch latest 2 MySQL 8.4.x versions MYSQL_8_4=$(curl -s "https://registry.hub.docker.com/v2/repositories/library/mysql/tags/?page_size=100" | jq -r '.results[].name | select(test("^8\\.4\\.\\d+$"))' | sort -V | tail -n2) # Combine both version lists into JSON array VERSIONS=$(echo "$MYSQL_8_0" "$MYSQL_8_4" | tr ' ' '\n' | jq -Rnc '[inputs]') echo "version_array=$VERSIONS" >> $GITHUB_OUTPUT test_api: needs: fetch-mysql-versions name: ${{ matrix.container.name }} and MySQL ${{ matrix.mysql_version }} runs-on: ubuntu-latest strategy: matrix: container: - name: "stig-manager-alpine" build_arg: "node:lts-alpine" mysql_version: ${{fromJson(needs.fetch-mysql-versions.outputs.MYSQL_VERSIONS)}} steps: - name: Check out the repo uses: actions/checkout@v4 - name: Build image for ${{ matrix.container.name }} id: image-build run: | docker build -t ${{ matrix.container.name }} --build-arg BASE_IMAGE=${{ matrix.container.build_arg }} . - name: Run mock Keycloak id: id-run working-directory: ./test/api/mock-keycloak run: | python3 -m http.server 8080 & - name: Run MySQL container version ${{ matrix.mysql_version }} id: mysql-run run: | docker run -d --name stig-manager-db \ -p 3306:3306 \ -e MYSQL_ROOT_PASSWORD=rootpw \ -e MYSQL_DATABASE=stigman \ -e MYSQL_USER=stigman \ -e MYSQL_PASSWORD=stigman \ mysql:${{ matrix.mysql_version }} - name: Run STIG Manager container ${{ matrix.container.name }} id: api-run run: | docker run -d --name stig-manager-api \ --net=host \ -e STIGMAN_API_PORT=64001 \ -e STIGMAN_DB_HOST=localhost \ -e STIGMAN_DB_PORT=3306 \ -e STIGMAN_DB_PASSWORD=stigman \ -e STIGMAN_API_AUTHORITY=http://127.0.0.1:8080/auth/realms/stigman \ -e STIGMAN_DEV_RESPONSE_VALIDATION=logOnly \ -e STIGMAN_EXPERIMENTAL_APPDATA=true \ -e STIGMAN_DEV_ALLOW_INSECURE_TOKENS=true \ ${{ matrix.container.name }} - name: Install test dependencies run: npm ci working-directory: ./test/api/ - name: Install utils test dependencies run: npm ci working-directory: ./test/utils/ - name: Wait for bootstrap run: for i in {1..10}; do [ $i -gt 1 ] && sleep 5; curl --output /dev/null --silent --fail http://localhost:64001/api/op/configuration && s=0 && break || s=$?; printf '.'; done; (exit $s) - name: Run tests with coverage working-directory: ./test/api/ run: npm test - name: Upload mocha test report id: artifact-upload-mocha uses: actions/upload-artifact@v4 if: ${{ always() }} with: name: mocha-report-${{ matrix.container.name }}-${{ matrix.mysql_version }} path: ./test/api/mochawesome-report - name: Extract API container log id: api-log-extract if: ${{ always() }} working-directory: ./test/api run: | docker logs stig-manager-api > api-log-${{ matrix.container.name }}-${{ matrix.mysql_version }}-${{ github.run_id }}.json - name: Upload API log artifact uses: actions/upload-artifact@v4 id: api-log-upload if: ${{ always() }} with: name: api-log-${{ matrix.container.name }}-${{ matrix.mysql_version }}-${{ github.run_id }} path: ./test/api/api-log-${{ matrix.container.name }}-${{ matrix.mysql_version }}-${{ github.run_id }}.json - name: Collect all container logs on failure if: ${{ cancelled() || failure() }} uses: jwalton/gh-docker-logs@54a2a89cd6a2c929525f26ca67a7a4857a5dc1d9 # pin@v1 with: dest: "./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}" - name: Tar container logs if: ${{ cancelled() || failure() }} run: tar cvzf ./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}.tgz ./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }} - name: Upload container logs artifact if: ${{ cancelled() || failure() }} uses: actions/upload-artifact@v4 with: name: logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}.tgz path: ./logs-${{ matrix.container.name }}-${{ matrix.mysql_version }}.tgz ================================================ FILE: .github/workflows/api-spec-validation.yml ================================================ name: API spec validation on: workflow_dispatch: pull_request: branches: - main paths: - "api/source/specification/**" - ".github/workflows/api-spec-validation.yml" push: branches: - main paths: - "api/source/specification/**" - ".github/workflows/api-spec-validation.yml" jobs: validate_asyncapi: name: Validate AsyncAPI specs runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: actions/setup-node@v4 with: node-version: lts/* - name: Validate log-socket.yaml run: npx --yes @asyncapi/cli@2 validate api/source/specification/log-socket.yaml ================================================ FILE: .github/workflows/api-state-tests.yml ================================================ name: API state tests on: workflow_dispatch: pull_request: branches: - main paths: - "api/source/**" - "test/state/**" - ".github/workflows/api-state-tests.yml" jobs: api-state-tests: name: state tests runs-on: ubuntu-latest strategy: matrix: component: ["bootstrap", "db", "jwks", "oidc", "tokenValidation"] steps: - name: Check out the repo uses: actions/checkout@v4 - name: Install api libraries working-directory: ./api/source run: npm ci - name: Install Test dependencies working-directory: ./test/state run: npm ci - name: Install Test utils dependencies working-directory: ./test/utils run: npm ci - name: Run tests working-directory: ./test/state run: npx mocha --reporter mochawesome --showFailed --exit './mocha/${{ matrix.component}}.test.js' - name: Upload mocha test report uses: actions/upload-artifact@v4 if: ${{ always() }} with: name: mocha-report-${{ matrix.component}} path: ./test/state/mochawesome-report ================================================ FILE: .github/workflows/build-binary-artifacts.yml ================================================ name: Build Binary Artifacts and Sign on: workflow_dispatch: push: branches: - main paths: - 'api/source/**' - 'client/src/**' - 'client/build.sh' - 'docs/**' - '.github/workflows/build-client.yml' - '.github/workflows/build-docs.yml' - '.github/workflows/build-binary-artifacts.yml' tags: - 1.** jobs: build-binary-artifacts-and-sign: name: Build binary artifacts, sign, export runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 with: ref: main fetch-depth: 0 - name: Get repository metadata id: repo uses: actions/github-script@v7 with: script: | const repo = await github.rest.repos.get(context.repo) return repo.data - name: install uglify run: | sudo npm install -g uglify-js - name: run build script id: run-the-build-script working-directory: ./api run: ./build.sh - name: Import GPG Key id: import_gpg run: | if ! echo "${{ secrets.STIGMAN_PRIVATE_KEY }}" | gpg --import; then echo "::warning ::Private key GPG Import failed" exit 1 fi - name: Get latest tag id: get_tag run: | DESCRIBE=$(git describe --tags | sed 's/\(.*\)-.*/\1/') echo "tag=$DESCRIBE" >> $GITHUB_ENV - name: Sign Dist Artifacts id: sign_artifacts working-directory: ./api/dist run: | if ! gpg --default-key nuwcdivnpt-bot@users.noreply.github.com --armor --detach-sig ./stig-manager-linux-${{ env.tag }}.tar.xz; then echo "::warning ::Linux Signing failed" exit 1 fi if ! gpg --default-key nuwcdivnpt-bot@users.noreply.github.com --armor --detach-sig ./stig-manager-win-${{ env.tag }}.zip; then echo "::warning ::Windows Signing failed" exit 1 fi - name: Verify Signatures id: verify_signatures working-directory: ./api/dist run: | if ! gpg --verify stig-manager-linux-${{ env.tag }}.tar.xz.asc stig-manager-linux-${{ env.tag }}.tar.xz; then echo "::warning ::Signature verification for Linux failed" exit 1 fi if ! gpg --verify stig-manager-win-${{ env.tag }}.zip.asc stig-manager-win-${{ env.tag }}.zip; then echo "::warning ::Signature verification for Windows failed" exit 1 fi - name: Upload builds if: always() uses: actions/upload-artifact@v4 with: name: binary-artifacts path: ./api/bin/ if-no-files-found: error - name: Upload archives if: always() uses: actions/upload-artifact@v4 with: name: binary-archives path: ./api/dist/ if-no-files-found: error ================================================ FILE: .github/workflows/build-client.yml ================================================ name: Build client on: workflow_dispatch: workflow_call: jobs: builder: name: builder runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 with: ref: ${{ github.ref }} - name: Install uglify-js run: npm install -g uglify-js - name: Create distribution working-directory: ./client run: ./build.sh - name: Upload distribution uses: actions/upload-artifact@v4 with: name: client-dist path: ./client/dist ================================================ FILE: .github/workflows/build-docs.yml ================================================ name: Build docs on: workflow_dispatch: workflow_call: jobs: builder: name: builder runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 with: ref: ${{ github.ref }} - name: run image, generating docs working-directory: ./docs run: ./build.sh - name: Upload docs uses: actions/upload-artifact@v4 with: name: docs-build path: ./docs/_build/html ================================================ FILE: .github/workflows/client-sonarcloud.yml ================================================ name: Client SonarCloud on: workflow_dispatch: pull_request: branches: - main paths: - "client/src/js/**" - "client/src/css/**" - "client/src/serviceWorker.js" - ".github/workflows/client-sonarcloud.yml" push: branches: - main paths: - "client/src/js/**" - "client/src/css/**" - "client/src/serviceWorker.js" - ".github/workflows/client-sonarcloud.yml" permissions: pull-requests: read # allows SonarCloud to decorate PRs with analysis results jobs: SonarCloudAnalysis-Client: name: SonarCloud Analysis client runs-on: ubuntu-latest steps: - name: Check if PR is from a fork id: check_fork run: | if [ "${{ github.event.pull_request.head.repo.fork }}" == "true" ]; then echo "This is a PR from a fork, skipping sonarcloud analysis." echo "SKIP_STEP=true" >> $GITHUB_ENV fi #checkout the repo - name: Checkout repository if: env.SKIP_STEP != 'true' uses: actions/checkout@v4 with: fetch-depth: 0 # Important to fetch all history for accurate blame information - name: Analyze client with SonarCloud if: env.SKIP_STEP != 'true' uses: SonarSource/sonarqube-scan-action@v6.0.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information SONAR_TOKEN: ${{ secrets.SONAR_TOKEN_CLIENT }} # Needed to push to SonarCloud with: projectBaseDir: ./client/src # Additional arguments for the sonarcloud scanner args: -Dsonar.projectKey=nuwcdivnpt_stig-manager-client -Dsonar.projectName=nuwcdivnpt_stig-manager-client -Dsonar.organization=nuwcdivnpt -Dsonar.inclusions=**/*.js,**/*.html,**/*.css -Dsonar.exclusions=**/node_modules/** # This will fail the action if Quality Gate fails (leaving out for now ) # - name: Check Quality Gate # uses: sonarsource/sonarqube-quality-gate-action@master # env: # SONAR_TOKEN: ================================================ FILE: .github/workflows/pub-docker.yml ================================================ name: Publish Docker images env: DOCKERHUB_REPOSITORY: nuwcdivnpt/stig-manager on: workflow_dispatch: push: branches: - main paths: - 'api/source/**' - 'client/src/**' - 'client/build.sh' - 'docs/**' - 'Dockerfile' - '.github/workflows/build-client.yml' - '.github/workflows/build-docs.yml' - '.github/workflows/pub-docker.yml' tags: - 1.** jobs: build-client: uses: nuwcdivnpt/stig-manager/.github/workflows/build-client.yml@main build-docs: uses: nuwcdivnpt/stig-manager/.github/workflows/build-docs.yml@main build-push-alpine: name: Build and push from Alpine base needs: - build-client - build-docs runs-on: ubuntu-latest steps: - name: Check out the repo uses: actions/checkout@v4 with: ref: main fetch-depth: 0 - name: Download client distribution uses: actions/download-artifact@v4 with: name: client-dist path: ./client/dist - name: Download documentation uses: actions/download-artifact@v4 with: name: docs-build path: ./docs/_build/html - name: Get repository metadata id: repo uses: actions/github-script@v7 with: script: | const repo = await github.rest.repos.get(context.repo) return repo.data - name: Prepare variables id: prep run: | DOCKER_IMAGE=${{ env.DOCKERHUB_REPOSITORY }} BRANCH=$(git symbolic-ref --short HEAD) SHA=$(git rev-parse --short=10 HEAD) DESCRIBE=$(git describe --tags) TAG=$(git describe --tags --abbrev=0) TAGS=${DOCKER_IMAGE}:latest [[ ${{ github.ref_type }} == "tag" ]] && TAGS="$TAGS,${DOCKER_IMAGE}:${{ github.ref_name }}" [[ ${{ github.event_name }} == "workflow_dispatch" && ${{ github.ref_name }} != "main" ]] && TAGS="${DOCKER_IMAGE}:${{ github.ref_name }}" echo "version=${TAG}" >> $GITHUB_OUTPUT echo "sha=${SHA}" >> $GITHUB_OUTPUT echo "tag=${TAG}" >> $GITHUB_OUTPUT echo "branch=${BRANCH}" >> $GITHUB_OUTPUT echo "tags=${TAGS}" >> $GITHUB_OUTPUT echo "describe=${DESCRIBE}" >> $GITHUB_OUTPUT echo "created=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" >> $GITHUB_OUTPUT - name: Set up Docker Buildx uses: docker/setup-buildx-action@4b4e9c3e2d4531116a6f8ba8e71fc6e2cb6e6c8c # pin@v2 - name: Login to DockerHub uses: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a # pin@v2 with: username: ${{ secrets.DOCKERHUB_ORG_OWNER_USERNAME }} password: ${{ secrets.DOCKERHUB_ORG_OWNER_PW }} - name: Build and push id: docker_build uses: docker/build-push-action@1104d471370f9806843c095c1db02b5a90c5f8b6 # pin@v3 with: context: . platforms: linux/amd64,linux/arm64 file: ./Dockerfile push: true build-args: | COMMIT_BRANCH=${{ steps.prep.outputs.branch }} COMMIT_SHA=${{ steps.prep.outputs.sha }} COMMIT_TAG=${{ steps.prep.outputs.tag }} COMMIT_DESCRIBE=${{ steps.prep.outputs.describe }} tags: ${{ steps.prep.outputs.tags }} labels: | org.opencontainers.image.title=${{ fromJson(steps.repo.outputs.result).name }} org.opencontainers.image.description=${{ fromJson(steps.repo.outputs.result).description }} org.opencontainers.image.url=${{ fromJson(steps.repo.outputs.result).html_url }} org.opencontainers.image.source=${{ fromJson(steps.repo.outputs.result).clone_url }} org.opencontainers.image.version=${{ steps.prep.outputs.version }} org.opencontainers.image.created=${{ steps.prep.outputs.created }} org.opencontainers.image.revision=${{ steps.prep.outputs.describe }} org.opencontainers.image.licenses=${{ fromJson(steps.repo.outputs.result).license.spdx_id }} - name: Image digest run: echo ${{ steps.docker_build.outputs.digest }} - name: Update Docker Hub Description if: github.event_name != 'workflow_dispatch' uses: peter-evans/dockerhub-description@202973a37c8a723405c0c5f0a71b6d99db470dae # pin@v3 with: username: ${{ secrets.DOCKERHUB_ORG_OWNER_USERNAME }} password: ${{ secrets.DOCKERHUB_ORG_OWNER_PW }} repository: ${{ env.DOCKERHUB_REPOSITORY }} short-description: An API and Web client for managing STIG assessments. readme-filepath: ./docs/the-project/DockerHub_Readme.md ================================================ FILE: .github/workflows/unit-tests.yml ================================================ name: Unit tests on: workflow_dispatch: pull_request: branches: - main paths: - "api/source/**" - "test/unit/**" - ".github/workflows/unit-tests.yml" push: branches: - main paths: - "api/source/**" - "test/unit/**" - ".github/workflows/unit-tests.yml" jobs: unit-tests: name: Run unit tests runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: actions/setup-node@v4 with: node-version: lts/* - name: Install API dependencies run: npm ci working-directory: ./api/source/ - name: Install test dependencies run: npm ci working-directory: ./test/unit/ - name: Run unit tests working-directory: ./test/unit/ run: npm test ================================================ FILE: .readthedocs.yml ================================================ # .readthedocs.yml # Read the Docs configuration file # See https://docs.readthedocs.io/en/stable/config-file/v2.html for details # Required version: 2 # Set the OS, Python version and other tools you might need build: os: ubuntu-22.04 tools: python: "3.12" # Build documentation in the docs/ directory with Sphinx sphinx: configuration: docs/conf.py # Optionally build your docs in additional formats such as PDF # formats: # - pdf # Optionally set the version of Python and requirements required to build your docs python: install: - requirements: docs/requirements.txt ================================================ FILE: CONTRIBUTING.md ================================================ # Contributing to STIG Manager **NOTE: This CONTRIBUTING.md describes our software contribution policy. You do not need to follow the Developer's Certificate of Origin (DCO) process for commenting on the STIG Manager repository documentation, such as CONTRIBUTING.md, INTENT.md, etc. or for submitting issues. For more information about developing and contributing to the project, please see the [STIG Manager Contribution Guide](https://stig-manager.readthedocs.io/en/latest/the-project/contributing.html) that is part of our [overall documentation](https://stig-manager.readthedocs.io/en/latest/index.html)** ## Policy ### 1. Introduction The project maintainer for this Project will only accept contributions using the Developer's Certificate of Origin 1.1 located at [developercertificate.org](https://developercertificate.org) ("DCO"). The DCO is a legally binding statement asserting that you are the creator of your contribution, or that you otherwise have the authority to distribute the contribution, and that you are intentionally making the contribution available under the license associated with the Project ("License"). ### 2. Developer Certificate of Origin Process Before submitting contributing code to this repository for the first time, you'll need to sign a Developer Certificate of Origin (DCO) (see below). To agree to the DCO, add your name and email address to the [CONTRIBUTORS.md](CONTRIBUTORS.md) file. At a high level, adding your information to this file tells us that you have the right to submit the work you're contributing and indicates that you consent to our treating the contribution in a way consistent with the license associated with this software (as described in [LICENSE.md](LICENSE.md)) and its documentation ("Project"). ### 3. Important Points Pseudonymous or anonymous contributions are permissible, but you must be reachable at the email address provided in the Signed-off-by line. If your contribution is significant, you are also welcome to add your name and copyright date to the source file header. U.S. Federal law prevents the government from accepting gratuitous services unless certain conditions are met. By submitting a pull request, you acknowledge that your services are offered without expectation of payment and that you expressly waive any future pay claims against the U.S. Federal government related to your contribution. If you are a U.S. Federal government employee and use a `*.mil` or `*.gov` email address, we interpret your Signed-off-by to mean that the contribution was created in whole or in part by you and that your contribution is not subject to copyright protections. ### 4. DCO Text The full text of the DCO is included below and is available online at [developercertificate.org](https://developercertificate.org): ```txt Developer Certificate of Origin Version 1.1 Copyright (C) 2004, 2006 The Linux Foundation and its contributors. 1 Letterman Drive Suite D4700 San Francisco, CA, 94129 Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. Developer's Certificate of Origin 1.1 By making a contribution to this project, I certify that: (a) The contribution was created in whole or in part by me and I have the right to submit it under the open source license indicated in the file; or (b) The contribution is based upon previous work that, to the best of my knowledge, is covered under an appropriate open source license and I have the right under that license to submit that work with modifications, whether created in whole or in part by me, under the same open source license (unless I am permitted to submit under a different license), as indicated in the file; or (c) The contribution was provided directly to me by some other person who certified (a), (b) or (c) and I have not modified it. (d) I understand and agree that this project and the contribution are public and that a record of the contribution (including all personal information I submit with it, including my sign-off) is maintained indefinitely and may be redistributed consistent with this project or the open source license(s) involved. ``` ================================================ FILE: CONTRIBUTORS.md ================================================ # Contributors **By adding your name, email address, and copyright date below, you understand and agree to the terms of the [Developer's Certificate of Origin](https://developercertificate.org/) (DCO) version 1.1, and you are submitting all contributions you make to this Project pursuant to the terms described in [LICENSE.md](LICENSE.md).** ## Signed-off-by - Copyright 2020-2026 U.S. Federal Government (in countries where recognized) - Copyright 2020-2026 Carl Smigielski, carl.a.smigielski@saic.com - Copyright 2020-2026 Christopher Daley, cdaley@rite-solutions.com - Copyright 2023-2026 Mathew Ferreira, mferreira@rite-solutions.com - Copyright 2021 Russell Johnson, russell.d.johnson@saic.com - Copyright 2024 Rajesh Shrestha, rshrestha@rite-solutions.com - Copyright 2024 David Whalen, david.whalen@usmc.mil - Copyright 2025 Christian Rodriguez, christian.a.rodriguez@mantech.com - _Add the copyright date, your name, and email address here. (PLEASE KEEP THIS LINE)_ ## Note for U.S. Federal Employees If you're a U.S. Federal Government employee and use a `*.mil` or `*.gov` email address to agree to the DCO, we interpret your signed DCO to mean that the contribution was created in whole or in part by you as part of your job with the U.S. Federal Government and that your contribution is not subject to copyright protections. ================================================ FILE: Dockerfile ================================================ # STIG Manager OSS # # COPY commands assume the following lines in .dockerignore # **/node_modules # **/state.json # **/README.md # **/.git # **/.gitignore # **/data # **/docs # **/test # **/uploads # **/docker ARG BASE_IMAGE="node:lts-alpine" FROM ${BASE_IMAGE} LABEL maintainer="carl.a.smigielski@saic.com" ARG COMMIT_BRANCH="" ARG COMMIT_SHA="" ARG COMMIT_TAG="" ARG COMMIT_DESCRIBE="" LABEL commit-branch=${COMMIT_BRANCH} LABEL commit-sha=${COMMIT_SHA} LABEL commit-tag=${COMMIT_TAG} LABEL commit-describe=${COMMIT_DESCRIBE} WORKDIR /home/node USER node # Install app dependencies COPY --chown=node:node ./api/source . RUN npm ci RUN mkdir client # Requires the client build files. Alternatively, copy ./client/src COPY --chown=node:node ./client/dist ./client RUN mkdir docs COPY --chown=node:node ./docs/_build/html ./docs # Ensure sticky bit is set on all world-writable directories (fixes tenable 1000749) USER root RUN df -P | awk {'if (NR!=1) print $6'} | xargs -I '{}' find '{}' -xdev -type d -perm -0002 2>/dev/null | xargs chmod a+t 2>/dev/null | echo 'tenable 1000749' USER node # Set environment ENV COMMIT_SHA=${COMMIT_SHA} \ COMMIT_BRANCH=${COMMIT_BRANCH} \ COMMIT_TAG=${COMMIT_TAG} \ COMMIT_DESCRIBE=${COMMIT_DESCRIBE} \ STIGMAN_CLIENT_DIRECTORY=./client \ STIGMAN_DOCS_DIRECTORY=./docs EXPOSE 54000 CMD [ "node", "index.js" ] ================================================ FILE: INTENT.md ================================================ # Licensing Intent The intent is that this software and documentation ("Project") should be treated as if it is licensed under the license associated with the Project ("License") in the LICENSE.md file. However, because we are part of the United States (U.S.) Federal Government, it is not that simple. The portions of this Project written by United States (U.S.) Federal government employees within the scope of their federal employment are ineligible for copyright protection in the U.S.; this is generally understood to mean that these portions of the Project are placed in the public domain. In countries where copyright protection is available (which does not include the U.S.), contributions made by U.S. Federal government employees are released under the License. Merged contributions from private contributors are released under the License. ================================================ FILE: LICENSE.md ================================================ --- *For all code except the STIG Manager client* --- ## MIT License ``` Copyright (c) 2020-2026 U.S. Federal Government (in countries where recognized) Copyright (c) 2020-2026 Science Applications International Corporation Copyright (c) 2020-2026 Rite-Solutions, An Arcfield Company Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. ``` --- *For the STIG Manager client, which uses the ExtJS 3.4 JavaScript framework licensed under the GNU General Public License* --- ## GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright (C) 2007 [Free Software Foundation, Inc.](http://fsf.org/) Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. ## Preamble The GNU General Public License is a free, copyleft license for software and other kinds of works. The licenses for most software and other practical works are designed to take away your freedom to share and change the works. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change all versions of a program--to make sure it remains free software for all its users. We, the Free Software Foundation, use the GNU General Public License for most of our software; it applies also to any other work released this way by its authors. You can apply it to your programs, too. When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs, and that you know you can do these things. To protect your rights, we need to prevent others from denying you these rights or asking you to surrender the rights. Therefore, you have certain responsibilities if you distribute copies of the software, or if you modify it: responsibilities to respect the freedom of others. For example, if you distribute copies of such a program, whether gratis or for a fee, you must pass on to the recipients the same freedoms that you received. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. Developers that use the GNU GPL protect your rights with two steps: 1. assert copyright on the software, and 2. offer you this License giving you legal permission to copy, distribute and/or modify it. For the developers' and authors' protection, the GPL clearly explains that there is no warranty for this free software. For both users' and authors' sake, the GPL requires that modified versions be marked as changed, so that their problems will not be attributed erroneously to authors of previous versions. Some devices are designed to deny users access to install or run modified versions of the software inside them, although the manufacturer can do so. This is fundamentally incompatible with the aim of protecting users' freedom to change the software. The systematic pattern of such abuse occurs in the area of products for individuals to use, which is precisely where it is most unacceptable. Therefore, we have designed this version of the GPL to prohibit the practice for those products. If such problems arise substantially in other domains, we stand ready to extend this provision to those domains in future versions of the GPL, as needed to protect the freedom of users. Finally, every program is threatened constantly by software patents. States should not allow patents to restrict development and use of software on general-purpose computers, but in those that do, we wish to avoid the special danger that patents applied to a free program could make it effectively proprietary. To prevent this, the GPL assures that patents cannot be used to render the program non-free. The precise terms and conditions for copying, distribution and modification follow. ## TERMS AND CONDITIONS ### 0. Definitions. *This License* refers to version 3 of the GNU General Public License. *Copyright* also means copyright-like laws that apply to other kinds of works, such as semiconductor masks. *The Program* refers to any copyrightable work licensed under this License. Each licensee is addressed as *you*. *Licensees* and *recipients* may be individuals or organizations. To *modify* a work means to copy from or adapt all or part of the work in a fashion requiring copyright permission, other than the making of an exact copy. The resulting work is called a *modified version* of the earlier work or a work *based on* the earlier work. A *covered work* means either the unmodified Program or a work based on the Program. To *propagate* a work means to do anything with it that, without permission, would make you directly or secondarily liable for infringement under applicable copyright law, except executing it on a computer or modifying a private copy. Propagation includes copying, distribution (with or without modification), making available to the public, and in some countries other activities as well. To *convey* a work means any kind of propagation that enables other parties to make or receive copies. Mere interaction with a user through a computer network, with no transfer of a copy, is not conveying. An interactive user interface displays *Appropriate Legal Notices* to the extent that it includes a convenient and prominently visible feature that 1. displays an appropriate copyright notice, and 2. tells the user that there is no warranty for the work (except to the extent that warranties are provided), that licensees may convey the work under this License, and how to view a copy of this License. If the interface presents a list of user commands or options, such as a menu, a prominent item in the list meets this criterion. ### 1. Source Code. The *source code* for a work means the preferred form of the work for making modifications to it. *Object code* means any non-source form of a work. A *Standard Interface* means an interface that either is an official standard defined by a recognized standards body, or, in the case of interfaces specified for a particular programming language, one that is widely used among developers working in that language. The *System Libraries* of an executable work include anything, other than the work as a whole, that (a) is included in the normal form of packaging a Major Component, but which is not part of that Major Component, and (b) serves only to enable use of the work with that Major Component, or to implement a Standard Interface for which an implementation is available to the public in source code form. A *Major Component*, in this context, means a major essential component (kernel, window system, and so on) of the specific operating system (if any) on which the executable work runs, or a compiler used to produce the work, or an object code interpreter used to run it. The *Corresponding Source* for a work in object code form means all the source code needed to generate, install, and (for an executable work) run the object code and to modify the work, including scripts to control those activities. However, it does not include the work's System Libraries, or general-purpose tools or generally available free programs which are used unmodified in performing those activities but which are not part of the work. For example, Corresponding Source includes interface definition files associated with source files for the work, and the source code for shared libraries and dynamically linked subprograms that the work is specifically designed to require, such as by intimate data communication or control flow between those subprograms and other parts of the work. The Corresponding Source need not include anything that users can regenerate automatically from other parts of the Corresponding Source. The Corresponding Source for a work in source code form is that same work. ### 2. Basic Permissions. All rights granted under this License are granted for the term of copyright on the Program, and are irrevocable provided the stated conditions are met. This License explicitly affirms your unlimited permission to run the unmodified Program. The output from running a covered work is covered by this License only if the output, given its content, constitutes a covered work. This License acknowledges your rights of fair use or other equivalent, as provided by copyright law. You may make, run and propagate covered works that you do not convey, without conditions so long as your license otherwise remains in force. You may convey covered works to others for the sole purpose of having them make modifications exclusively for you, or provide you with facilities for running those works, provided that you comply with the terms of this License in conveying all material for which you do not control copyright. Those thus making or running the covered works for you must do so exclusively on your behalf, under your direction and control, on terms that prohibit them from making any copies of your copyrighted material outside their relationship with you. Conveying under any other circumstances is permitted solely under the conditions stated below. Sublicensing is not allowed; section 10 makes it unnecessary. ### 3. Protecting Users' Legal Rights From Anti-Circumvention Law. No covered work shall be deemed part of an effective technological measure under any applicable law fulfilling obligations under article 11 of the WIPO copyright treaty adopted on 20 December 1996, or similar laws prohibiting or restricting circumvention of such measures. When you convey a covered work, you waive any legal power to forbid circumvention of technological measures to the extent such circumvention is effected by exercising rights under this License with respect to the covered work, and you disclaim any intention to limit operation or modification of the work as a means of enforcing, against the work's users, your or third parties' legal rights to forbid circumvention of technological measures. ### 4. Conveying Verbatim Copies. You may convey verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice; keep intact all notices stating that this License and any non-permissive terms added in accord with section 7 apply to the code; keep intact all notices of the absence of any warranty; and give all recipients a copy of this License along with the Program. You may charge any price or no price for each copy that you convey, and you may offer support or warranty protection for a fee. ### 5. Conveying Modified Source Versions. You may convey a work based on the Program, or the modifications to produce it from the Program, in the form of source code under the terms of section 4, provided that you also meet all of these conditions: - a) The work must carry prominent notices stating that you modified it, and giving a relevant date. - b) The work must carry prominent notices stating that it is released under this License and any conditions added under section 7. This requirement modifies the requirement in section 4 to *keep intact all notices*. - c) You must license the entire work, as a whole, under this License to anyone who comes into possession of a copy. This License will therefore apply, along with any applicable section 7 additional terms, to the whole of the work, and all its parts, regardless of how they are packaged. This License gives no permission to license the work in any other way, but it does not invalidate such permission if you have separately received it. - d) If the work has interactive user interfaces, each must display Appropriate Legal Notices; however, if the Program has interactive interfaces that do not display Appropriate Legal Notices, your work need not make them do so. A compilation of a covered work with other separate and independent works, which are not by their nature extensions of the covered work, and which are not combined with it such as to form a larger program, in or on a volume of a storage or distribution medium, is called an *aggregate* if the compilation and its resulting copyright are not used to limit the access or legal rights of the compilation's users beyond what the individual works permit. Inclusion of a covered work in an aggregate does not cause this License to apply to the other parts of the aggregate. ### 6. Conveying Non-Source Forms. You may convey a covered work in object code form under the terms of sections 4 and 5, provided that you also convey the machine-readable Corresponding Source under the terms of this License, in one of these ways: - a) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by the Corresponding Source fixed on a durable physical medium customarily used for software interchange. - b) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by a written offer, valid for at least three years and valid for as long as you offer spare parts or customer support for that product model, to give anyone who possesses the object code either 1. a copy of the Corresponding Source for all the software in the product that is covered by this License, on a durable physical medium customarily used for software interchange, for a price no more than your reasonable cost of physically performing this conveying of source, or 2. access to copy the Corresponding Source from a network server at no charge. - c) Convey individual copies of the object code with a copy of the written offer to provide the Corresponding Source. This alternative is allowed only occasionally and noncommercially, and only if you received the object code with such an offer, in accord with subsection 6b. - d) Convey the object code by offering access from a designated place (gratis or for a charge), and offer equivalent access to the Corresponding Source in the same way through the same place at no further charge. You need not require recipients to copy the Corresponding Source along with the object code. If the place to copy the object code is a network server, the Corresponding Source may be on a different server operated by you or a third party) that supports equivalent copying facilities, provided you maintain clear directions next to the object code saying where to find the Corresponding Source. Regardless of what server hosts the Corresponding Source, you remain obligated to ensure that it is available for as long as needed to satisfy these requirements. - e) Convey the object code using peer-to-peer transmission, provided you inform other peers where the object code and Corresponding Source of the work are being offered to the general public at no charge under subsection 6d. A separable portion of the object code, whose source code is excluded from the Corresponding Source as a System Library, need not be included in conveying the object code work. A *User Product* is either 1. a *consumer product*, which means any tangible personal property which is normally used for personal, family, or household purposes, or 2. anything designed or sold for incorporation into a dwelling. In determining whether a product is a consumer product, doubtful cases shall be resolved in favor of coverage. For a particular product received by a particular user, *normally used* refers to a typical or common use of that class of product, regardless of the status of the particular user or of the way in which the particular user actually uses, or expects or is expected to use, the product. A product is a consumer product regardless of whether the product has substantial commercial, industrial or non-consumer uses, unless such uses represent the only significant mode of use of the product. *Installation Information* for a User Product means any methods, procedures, authorization keys, or other information required to install and execute modified versions of a covered work in that User Product from a modified version of its Corresponding Source. The information must suffice to ensure that the continued functioning of the modified object code is in no case prevented or interfered with solely because modification has been made. If you convey an object code work under this section in, or with, or specifically for use in, a User Product, and the conveying occurs as part of a transaction in which the right of possession and use of the User Product is transferred to the recipient in perpetuity or for a fixed term (regardless of how the transaction is characterized), the Corresponding Source conveyed under this section must be accompanied by the Installation Information. But this requirement does not apply if neither you nor any third party retains the ability to install modified object code on the User Product (for example, the work has been installed in ROM). The requirement to provide Installation Information does not include a requirement to continue to provide support service, warranty, or updates for a work that has been modified or installed by the recipient, or for the User Product in which it has been modified or installed. Access to a network may be denied when the modification itself materially and adversely affects the operation of the network or violates the rules and protocols for communication across the network. Corresponding Source conveyed, and Installation Information provided, in accord with this section must be in a format that is publicly documented (and with an implementation available to the public in source code form), and must require no special password or key for unpacking, reading or copying. ### 7. Additional Terms. *Additional permissions* are terms that supplement the terms of this License by making exceptions from one or more of its conditions. Additional permissions that are applicable to the entire Program shall be treated as though they were included in this License, to the extent that they are valid under applicable law. If additional permissions apply only to part of the Program, that part may be used separately under those permissions, but the entire Program remains governed by this License without regard to the additional permissions. When you convey a copy of a covered work, you may at your option remove any additional permissions from that copy, or from any part of it. (Additional permissions may be written to require their own removal in certain cases when you modify the work.) You may place additional permissions on material, added by you to a covered work, for which you have or can give appropriate copyright permission. Notwithstanding any other provision of this License, for material you add to a covered work, you may (if authorized by the copyright holders of that material) supplement the terms of this License with terms: - a) Disclaiming warranty or limiting liability differently from the terms of sections 15 and 16 of this License; or - b) Requiring preservation of specified reasonable legal notices or author attributions in that material or in the Appropriate Legal Notices displayed by works containing it; or - c) Prohibiting misrepresentation of the origin of that material, or requiring that modified versions of such material be marked in reasonable ways as different from the original version; or - d) Limiting the use for publicity purposes of names of licensors or authors of the material; or - e) Declining to grant rights under trademark law for use of some trade names, trademarks, or service marks; or - f) Requiring indemnification of licensors and authors of that material by anyone who conveys the material (or modified versions of it) with contractual assumptions of liability to the recipient, for any liability that these contractual assumptions directly impose on those licensors and authors. All other non-permissive additional terms are considered *further restrictions* within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term. If a license document contains a further restriction but permits relicensing or conveying under this License, you may add to a covered work material governed by the terms of that license document, provided that the further restriction does not survive such relicensing or conveying. If you add terms to a covered work in accord with this section, you must place, in the relevant source files, a statement of the additional terms that apply to those files, or a notice indicating where to find the applicable terms. Additional terms, permissive or non-permissive, may be stated in the form of a separately written license, or stated as exceptions; the above requirements apply either way. ### 8. Termination. You may not propagate or modify a covered work except as expressly provided under this License. Any attempt otherwise to propagate or modify it is void, and will automatically terminate your rights under this License (including any patent licenses granted under the third paragraph of section 11). However, if you cease all violation of this License, then your license from a particular copyright holder is reinstated - a) provisionally, unless and until the copyright holder explicitly and finally terminates your license, and - b) permanently, if the copyright holder fails to notify you of the violation by some reasonable means prior to 60 days after the cessation. Moreover, your license from a particular copyright holder is reinstated permanently if the copyright holder notifies you of the violation by some reasonable means, this is the first time you have received notice of violation of this License (for any work) from that copyright holder, and you cure the violation prior to 30 days after your receipt of the notice. Termination of your rights under this section does not terminate the licenses of parties who have received copies or rights from you under this License. If your rights have been terminated and not permanently reinstated, you do not qualify to receive new licenses for the same material under section 10. ### 9. Acceptance Not Required for Having Copies. You are not required to accept this License in order to receive or run a copy of the Program. Ancillary propagation of a covered work occurring solely as a consequence of using peer-to-peer transmission to receive a copy likewise does not require acceptance. However, nothing other than this License grants you permission to propagate or modify any covered work. These actions infringe copyright if you do not accept this License. Therefore, by modifying or propagating a covered work, you indicate your acceptance of this License to do so. ### 10. Automatic Licensing of Downstream Recipients. Each time you convey a covered work, the recipient automatically receives a license from the original licensors, to run, modify and propagate that work, subject to this License. You are not responsible for enforcing compliance by third parties with this License. An *entity transaction* is a transaction transferring control of an organization, or substantially all assets of one, or subdividing an organization, or merging organizations. If propagation of a covered work results from an entity transaction, each party to that transaction who receives a copy of the work also receives whatever licenses to the work the party's predecessor in interest had or could give under the previous paragraph, plus a right to possession of the Corresponding Source of the work from the predecessor in interest, if the predecessor has it or can get it with reasonable efforts. You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License. For example, you may not impose a license fee, royalty, or other charge for exercise of rights granted under this License, and you may not initiate litigation (including a cross-claim or counterclaim in a lawsuit) alleging that any patent claim is infringed by making, using, selling, offering for sale, or importing the Program or any portion of it. ### 11. Patents. A *contributor* is a copyright holder who authorizes use under this License of the Program or a work on which the Program is based. The work thus licensed is called the contributor's *contributor version*. A contributor's *essential patent claims* are all patent claims owned or controlled by the contributor, whether already acquired or hereafter acquired, that would be infringed by some manner, permitted by this License, of making, using, or selling its contributor version, but do not include claims that would be infringed only as a consequence of further modification of the contributor version. For purposes of this definition, *control* includes the right to grant patent sublicenses in a manner consistent with the requirements of this License. Each contributor grants you a non-exclusive, worldwide, royalty-free patent license under the contributor's essential patent claims, to make, use, sell, offer for sale, import and otherwise run, modify and propagate the contents of its contributor version. In the following three paragraphs, a *patent license* is any express agreement or commitment, however denominated, not to enforce a patent (such as an express permission to practice a patent or covenant not to sue for patent infringement). To *grant* such a patent license to a party means to make such an agreement or commitment not to enforce a patent against the party. If you convey a covered work, knowingly relying on a patent license, and the Corresponding Source of the work is not available for anyone to copy, free of charge and under the terms of this License, through a publicly available network server or other readily accessible means, then you must either 1. cause the Corresponding Source to be so available, or 2. arrange to deprive yourself of the benefit of the patent license for this particular work, or 3. arrange, in a manner consistent with the requirements of this License, to extend the patent license to downstream recipients. *Knowingly relying* means you have actual knowledge that, but for the patent license, your conveying the covered work in a country, or your recipient's use of the covered work in a country, would infringe one or more identifiable patents in that country that you have reason to believe are valid. If, pursuant to or in connection with a single transaction or arrangement, you convey, or propagate by procuring conveyance of, a covered work, and grant a patent license to some of the parties receiving the covered work authorizing them to use, propagate, modify or convey a specific copy of the covered work, then the patent license you grant is automatically extended to all recipients of the covered work and works based on it. A patent license is *discriminatory* if it does not include within the scope of its coverage, prohibits the exercise of, or is conditioned on the non-exercise of one or more of the rights that are specifically granted under this License. You may not convey a covered work if you are a party to an arrangement with a third party that is in the business of distributing software, under which you make payment to the third party based on the extent of your activity of conveying the work, and under which the third party grants, to any of the parties who would receive the covered work from you, a discriminatory patent license - a) in connection with copies of the covered work conveyed by you (or copies made from those copies), or - b) primarily for and in connection with specific products or compilations that contain the covered work, unless you entered into that arrangement, or that patent license was granted, prior to 28 March 2007. Nothing in this License shall be construed as excluding or limiting any implied license or other defenses to infringement that may otherwise be available to you under applicable patent law. ### 12. No Surrender of Others' Freedom. If conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot convey a covered work so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not convey it at all. For example, if you agree to terms that obligate you to collect a royalty for further conveying from those to whom you convey the Program, the only way you could satisfy both those terms and this License would be to refrain entirely from conveying the Program. ### 13. Use with the GNU Affero General Public License. Notwithstanding any other provision of this License, you have permission to link or combine any covered work with a work licensed under version 3 of the GNU Affero General Public License into a single combined work, and to convey the resulting work. The terms of this License will continue to apply to the part which is the covered work, but the special requirements of the GNU Affero General Public License, section 13, concerning interaction through a network will apply to the combination as such. ### 14. Revised Versions of this License. The Free Software Foundation may publish revised and/or new versions of the GNU General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Program specifies that a certain numbered version of the GNU General Public License *or any later version* applies to it, you have the option of following the terms and conditions either of that numbered version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of the GNU General Public License, you may choose any version ever published by the Free Software Foundation. If the Program specifies that a proxy can decide which future versions of the GNU General Public License can be used, that proxy's public statement of acceptance of a version permanently authorizes you to choose that version for the Program. Later license versions may give you additional or different permissions. However, no additional obligations are imposed on any author or copyright holder as a result of your choosing to follow a later version. ### 15. Disclaimer of Warranty. THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM *AS IS* WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. ### 16. Limitation of Liability. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. ### 17. Interpretation of Sections 15 and 16. If the disclaimer of warranty and limitation of liability provided above cannot be given local legal effect according to their terms, reviewing courts shall apply local law that most closely approximates an absolute waiver of all civil liability in connection with the Program, unless a warranty or assumption of liability accompanies a copy of the Program in return for a fee. ## END OF TERMS AND CONDITIONS ### ### How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively state the exclusion of warranty; and each file should have at least the *copyright* line and a pointer to where the full notice is found. Copyright (C) This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see . Also add information on how to contact you by electronic and paper mail. If the program does terminal interaction, make it output a short notice like this when it starts in an interactive mode: Copyright (C) This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'. This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. The hypothetical commands `show w` and `show c` should show the appropriate parts of the General Public License. Of course, your program's commands might be different; for a GUI interface, you would use an *about box*. You should also get your employer (if you work as a programmer) or school, if any, to sign a *copyright disclaimer* for the program, if necessary. For more information on this, and how to apply and follow the GNU GPL, see [http://www.gnu.org/licenses/](http://www.gnu.org/licenses/). The GNU General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. But first, please read [http://www.gnu.org/philosophy/why-not-lgpl.html](http://www.gnu.org/philosophy/why-not-lgpl.html). --- THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. ================================================ FILE: README.md ================================================ # STIG Manager STIG Manager is an API and web client for managing STIG assessments of Information Systems, sponsored by the [NAVSEA Warfare Centers](https://www.navsea.navy.mil/Home/Warfare-Centers/). The application presents a unified view of STIG compliance drawn from manual reviews in the web app, file imports (.ckl/.cklb/XCCDF), or automated integrations via the API. STIG Manager supports DISA [Security Technical Implementation Guides (STIGs)](https://public.cyber.mil/stigs/) and Security Requirements Guides (SRGs). ## Who It's For If you need to track STIG evaluation status across multiple assets, STIGs, or systems, this tool addresses the challenges of managing assessment data that would otherwise be scattered across individual checklist files or spreadsheets. System administrators can record compliance status in real-time as they harden systems, and scan results from external tools can flow in automatically via the API, providing ISSOs and security managers with live visibility into assessment progress. Working from a shared data set ensures all users maintain a consistent view of compliance status. ## Key Capabilities - **Collection-Based Organization**: Group Assets, STIGs, and Reviews into Collections that align with your RMF packages or organizational structure; use customizable Labels to categorize Assets and filter views. - **Progress Tracking and Metrics**: Real-time dashboards showing assessment completion rates, findings by severity, CORA risk scoring, and status tracking. - **Multi-Source Review Integration**: Combine manual evaluations with imported scan results (XCCDF) and checklists (CKL) in a unified data management interface. - **Intelligent STIG Revision Management**: When DISA releases new STIG versions, only Rules with changed check content require re-evaluation. Existing reviews are automatically matched to updated Rules where appropriate. - **Bulk Operations**: Evaluate the same Rule across multiple Assets simultaneously in the Collection Review workspace, apply batch updates, and import/export entire Collections. - **Collaborative Workflows**: Role-based access controls, Accept/Reject review validation, and configurable review requirements per Collection. - **API-First Architecture**: Complete REST API (OpenAPI 3.0.1) enables integration with automated scanning tools and custom workflows. The API-first architecture allows custom or third-party clients to interact with assessment data. ## Screenshots ### Collection Dashboard *Real-time metrics showing assessment completion, findings by severity, and CORA risk scoring* Collection Dashboard ### Asset Review Workspace *Assessment interface with Rule details, CCI/Control mappings, and reference to previous assessments on similar Assets* Asset Review Workspace ### Collection Review Workspace *Evaluate the same STIG Rule across all Assets in a Collection, with color-coded status and the ability to apply bulk updates* Collection Review Workspace ### Meta-Collection Dashboard *Aggregate metrics across all Collections you have access to, providing organization-wide visibility into assessment status* Meta-Collection Dashboard ## Role in RMF Workflows STIG Manager primarily supports **RMF Steps 3 (Implement Security Controls)** and **4 (Assess Security Controls)** by serving as the authoritative reference for current STIG assessment status. During **Step 6 (Monitor Security Controls)**, it tracks review ages, maintains assessment history, and identifies what requires re-evaluation when STIGs update or systems change. The tool fits within existing processes that typically involve eMASS (or similar RMF platforms), SCAP compliance scanners, and other security tools. STIG Manager does not replace these systems—it specializes in STIG assessment tracking and can import results from scanning tools, export checklists for package submission, and support custom automation via its API. ## Getting Started - [User Walkthrough](https://stig-manager.readthedocs.io/en/latest/user-guide/user-quickstart.html) - Learn the core workflows for security analysts - [Admin Walkthrough](https://stig-manager.readthedocs.io/en/latest/admin-guide/admin-quickstart.html) - Setup and Collection management for Application Managers - [Installation Guide](https://stig-manager.readthedocs.io/en/latest/installation-and-setup/installation-and-setup.html) - Deployment instructions and configuration - [Environment Variables Reference](https://stig-manager.readthedocs.io/en/latest/installation-and-setup/environment-variables.html) ## Deployment Options **Containerized (Recommended):** - Official [Docker images](https://hub.docker.com/r/nuwcdivnpt/stig-manager) available on Docker Hub and DoD Iron Bank - Quick-start Docker Compose orchestration includes all dependencies (Keycloak, MySQL) - [Reference orchestration with CAC/PKI authentication](https://github.com/NUWCDIVNPT/stigman-orchestration) demonstrates nginx reverse proxy integration - Supports Kubernetes, OpenShift, or any OCI-compliant container runtime **Direct Deployment:** - Run from source using Node.js LTS - Pre-compiled binaries for Windows/Linux/macOS (no Node.js required) **Infrastructure Requirements:** - OpenID Connect (OIDC) provider for authentication (Keycloak, Okta, Azure Entra ID, and F5 tested) - MySQL 8.4+ database - Optional reverse proxy for CAC/PKI authentication The application is stateless and can scale horizontally. Configuration is managed entirely through environment variables. ## Documentation and Resources The [STIG Manager documentation](https://stig-manager.readthedocs.io/en/latest/index.html) includes User and Setup Guides, video tutorials, terminology references, and deployment scenarios. - [YouTube Channel](https://www.youtube.com/@stig-manager) - Video tutorials and feature demonstrations - [Release Notes](https://github.com/NUWCDIVNPT/stig-manager/releases) - Version history - [Contribution Guide](CONTRIBUTING.md) - DCO requirements and development setup ## Related Resources **[STIGMan Watcher](https://github.com/NUWCDIVNPT/stigman-watcher)** - A command-line utility that monitors filesystem directories and automatically imports .ckl/.cklb checklists and XCCDF scan results into STIG Manager. Useful for automated workflows and continuous integration with scanning tools. **[Reference orchestration with CAC/PKI authentication](https://github.com/NUWCDIVNPT/stigman-orchestration)** - A sample Docker Compose setup that includes nginx configured for CAC/PKI authentication in front of STIG Manager and Keycloak. **[C-PAT](https://github.com/NSWC-Crane/C-PAT)** - The Crane POA&M Automation Tool, developed by NSWC Crane, integrates with STIG Manager's API to automate vulnerability documentation and POA&M tracking throughout the RMF process. ## Sponsor STIG Manager is sponsored by the [NAVSEA Warfare Centers](https://www.navsea.navy.mil/Home/Warfare-Centers/). While its primary goal is to support NAVSEA compliance processes, the tool is designed to be flexible and adaptable to other workflows. This project follows [Code.mil](https://code.mil) [guidance](https://github.com/Code-dot-mil/code.mil) for open source software released by the U.S. Department of Defense. For inquiries, contact the RMF Tools team at RMF_Tools@us.navy.mil. ================================================ FILE: SECURITY.md ================================================ # Security Policy ## Supported Versions The STIG Manager Team makes every effort to produce secure software. The project addresses vulnerabilities in the application with new mainline releases. Old versions will not be patched. All users are expected to stay up to date with security and feature updates by running only the latest release available. | Version | Supported | | ------- | ------------------ | | Current | :white_check_mark: | | All previous | :x: | ## Reporting a Vulnerability Vulnerability scans are run regularly against project components and any issues identified are addressed. Nevertheless, we are grateful to anyone reporting a vulnerability and helping us to make STIG Manager better and more secure. Additionally, we encourage everyone to disclose bugs in a responsible way, allowing us and other STIGMan users to react accordingly and in a timely manner. That means: - If you want to report a critical security bug or vulnerability please send a bug report to RMF_Tools@us.navy.mil before publishing it. We will acknowledge your email within a week (7 days), and will send a more detailed response up to 48 hours after that indicating the next steps in handling your report. After the initial reply to your report, the security team will endeavor to keep you informed of the progress towards a fix and an announcement. We may ask for additional information or guidance. When disclosing vulnerabilities please include the following: - The word "SECURITY" in the subject line. - Your name and affiliation (if any). - Scope of vulnerability. Let us know who could use this exploit. - Documented steps to identify the vulnerability. It is important that we can reproduce your findings. - If you want to report a non-critical bug, please open an issue on the GitHub project. If you are using a scanning tool to identify a vulnerability, please attempt to determine whether or not the issue is a false positive before reporting, and if it is not, include the specific scanner, settings, and config you used to identify it. - Report security bugs in third-party modules to the person or team maintaining the module. - This is an open source project. If you discover a bug and fix it, you are very welcome to submit a PR. Your fix will be reviewed, and if accepted, you will become a valued addition to our CONTRIBUTORS.md file! - Known vulnerabilities will be published on the [Security Advisories page of the project's GitHub site.](https://github.com/NUWCDIVNPT/stig-manager/security/advisories) ## Securing STIG Manager STIG Manager is one component of a system that must be deployed according to your individual or organizational security requirements. Please see the [project Documentation for more information on this topic.](https://stig-manager.readthedocs.io/en/latest/installation-and-setup/securing.html) ================================================ FILE: api/README.md ================================================ # STIG Manager API for Node.js ## Required Node version The API requires Node 14.0.0 or greater ## Building binaries - Read the comments in `build.sh` regarding build requirements - Run `./build.sh` or `build.sh --sign` - Binaries are written to `./bin` - Archives with launcher scripts are written to `./dist` ## Configuring and running the API The API is configured through [environment variables](../docs/Environment_Variables.md). The entry point is `index.js` ================================================ FILE: api/bin/.gitignore ================================================ ## Directory for the STIG Manager API binaries # Content can be written here by executing: # $ ../build.sh # # This file hopes to prevent commits to this directory # Ignore everything in this directory * # Except this file !.gitignore ================================================ FILE: api/build.sh ================================================ #!/bin/bash # This file is used to build API binaries on the team workstations. It is not tested elsewhere, yet. # Requires: # - Node.js and module "@yao-pkg/pkg" (npm install -g @yao-pkg/pkg@6.10) # - zip # - tar check_exit_status() { if [[ $? -eq 0 ]]; then echo "[BUILD_TASK] $1 succeeded" else echo "[BUILD_TASK] $1 failed" exit $2 fi } LAUNCHERDIR=launchers BINDIR=bin DISTDIR=dist # Change to this script directory cd "$(dirname "$(realpath "$0")")" # Prepare [ ! -d "$BINDIR" ] && mkdir -p "$BINDIR" [ ! -d "$DISTDIR" ] && mkdir -p "$DISTDIR" rm -rf $BINDIR/* rm -rf $DISTDIR/* echo "Fetching node_modules" rm -rf ./source/node_modules cd ./source npm ci npm install -g @yao-pkg/pkg@6.10 cd .. ../client/build.sh ../docs/build.sh DESCRIBE=$(git describe --tags | sed 's/\(.*\)-.*/\1/') check_exit_status "Getting latest tag" 4 echo $DESCRIBE # Make binaries echo "Building binaries" pkg ./source/index.js -C gzip --public --public-packages=* --no-bytecode -c pkg.config.json check_exit_status "Building binaries" 1 echo "Creating archives with launchers" # Windows archive zip --junk-paths $DISTDIR/stig-manager-win-$DESCRIBE.zip $LAUNCHERDIR/stig-manager.bat $BINDIR/stig-manager-win.exe check_exit_status "Zipping Windows Archive" 3 # Linux archive tar -cJvf $DISTDIR/stig-manager-linux-$DESCRIBE.tar.xz --xform='s|^|stig-manager/|S' -C $LAUNCHERDIR stig-manager.sh -C ../$BINDIR stig-manager-linuxstatic check_exit_status "Zipping Linux Archive" 4 echo "Build artifacts are in $DISTDIR" ================================================ FILE: api/dist/.gitignore ================================================ ## Directory for the STIG Manager API distribution archives # Content can be written here by executing: # $ ../build.sh # # This file hopes to prevent commits to this directory # Ignore everything in this directory * # Except this file !.gitignore ================================================ FILE: api/launchers/gen-launchers.py ================================================ #!/usr/bin/python3 import sys import os import io import csv import textwrap if len(sys.argv) > 1 and sys.argv[1] == 'win': system = 'win' comment = '::' command = 'set' launch = 'stig-manager-win.exe' filename = 'stig-manager.bat' newline = '\r\n' else: system = 'linux' comment = '#' command = 'export' launch = './stig-manager-linuxstatic' filename = 'stig-manager.sh' newline = '\n' with open('../../docs/installation-and-setup/envvars.csv', 'r') as csvfile: reader = csv.DictReader(csvfile) with io.open(filename, 'w', newline=newline) as f: for row in reader: row['Description'] = row['Description'].replace('**Default**', 'Default:') row['Description'] = row['Description'].replace('**No default**', 'No default.') row['Description'] = row['Description'].replace('``', '"') row['Description'] = '\n'.join(textwrap.wrap(row['Description'], width=80, initial_indent=comment + ' ', subsequent_indent=comment + ' ')) f.write('{0}==============================================================================\n'.format(comment)) content = '{0} {1}\n{0}\n{2}\n{0}\n{0} Affects: {3}\n'.format(comment, row['Variable'], row['Description'], row['Affects']) f.write(content) f.write('{0}==============================================================================\n'.format(comment)) f.write('{0} {1} {2}=\n'.format(comment, command, row['Variable'])) f.write('\n') f.write(launch + '\n') if system == 'linux': os.chmod(filename, 0o755) ================================================ FILE: api/launchers/stig-manager.bat ================================================ ::============================================================================== :: STIGMAN_API_ADDRESS :: :: | Default: "0.0.0.0" | The IP address on which the the API server will :: listen :: :: Affects: API ::============================================================================== :: set STIGMAN_API_ADDRESS= ::============================================================================== :: STIGMAN_API_MAX_JSON_BODY :: :: | Default: "5242880" | The maximum size in bytes of the request body when :: Content-Type is application/json :: :: Affects: API ::============================================================================== :: set STIGMAN_API_MAX_JSON_BODY= ::============================================================================== :: STIGMAN_API_MAX_UPLOAD :: :: | Default: "1073741824" | The maximum size in bytes of the file uploaded :: with Content-Type multipart/form-data :: :: Affects: API ::============================================================================== :: set STIGMAN_API_MAX_UPLOAD= ::============================================================================== :: STIGMAN_API_PORT :: :: | Default: "54000" | The TCP port on which the server will listen :: :: Affects: API ::============================================================================== :: set STIGMAN_API_PORT= ::============================================================================== :: STIGMAN_API_TLS_CERT_FILE :: :: | No default. | A absolute path to the file that contains the PEM encoded :: Server certificate used for TLS. Additionally requires setting :: "STIGMAN_API_TLS_KEY_FILE" to enable TLS. :: :: Affects: API ::============================================================================== :: set STIGMAN_API_TLS_CERT_FILE= ::============================================================================== :: STIGMAN_API_TLS_KEY_FILE :: :: | No default. | A absolute path to the file that contains the PEM encoded :: Server private key used for TLS. Additionally requires setting :: "STIGMAN_API_TLS_CERT_FILE" to enable TLS. :: :: Affects: API ::============================================================================== :: set STIGMAN_API_TLS_KEY_FILE= ::============================================================================== :: STIGMAN_API_TLS_KEY_PASSPHRASE :: :: | No default. | If necessary, the passphrase that decrypts the PEM encoded :: Server private key used for TLS. Additionally requires setting :: "STIGMAN_API_TLS_CERT_FILE" to enable TLS. :: :: Affects: API ::============================================================================== :: set STIGMAN_API_TLS_KEY_PASSPHRASE= ::============================================================================== :: STIGMAN_CLASSIFICATION :: :: | Default: "U" | Sets the classification banner, if any. Available values: :: "NONE" "U" "CUI" "C" "S" "TS" "SCI" :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_CLASSIFICATION= ::============================================================================== :: STIGMAN_CLIENT_ADMIN_TIMEOUT :: :: | Default: "0" | The maximum time (in minutes) a user with admin privileges :: can be inactive in the web client before discarding their access token and :: requiring reauthorization. Activity is defined as mouse click, keypress, or :: scrolling in any tab or window of a same-origin browsing context group. Set :: to zero to disable idle detection. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_ADMIN_TIMEOUT= ::============================================================================== :: STIGMAN_CLIENT_API_BASE :: :: | Default: "api" | The base URL for Client requests to the API relative to :: "window.location" :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_API_BASE= ::============================================================================== :: STIGMAN_CLIENT_CONSOLE_MODE :: :: | Default: "production" | The console mode of the web client, setting to :: "development" enables console logging which is otherwise disabled :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_CONSOLE_MODE= ::============================================================================== :: STIGMAN_CLIENT_DIRECTORY :: :: | Default: "./clients" | The location of the web client files, relative to :: the API source directory. Note that if running source from a clone of the :: GitHub repository, the client is located at `../../clients` relative to the :: API directory. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_CLIENT_DIRECTORY= ::============================================================================== :: STIGMAN_CLIENT_DISABLED :: :: | Default: "false" | Whether to *not* serve the reference web client :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_DISABLED= ::============================================================================== :: STIGMAN_CLIENT_DISPLAY_APPMANAGERS :: :: | Default: "true" | Whether to display application managers the home page of :: web client :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_DISPLAY_APPMANAGERS= ::============================================================================== :: STIGMAN_CLIENT_EXTRA_SCOPES :: :: | No default. | A space separated list of OAuth2 scopes to request in :: addition to "stig-manager:stig" "stig-manager:stig:read" "stig- :: manager:collection" "stig-manager:user" "stig-manager:user:read" "stig- :: manager:op". Some OIDC providers (Okta) generate a refresh token only if the :: scope "offline_access" is requested :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_EXTRA_SCOPES= ::============================================================================== :: STIGMAN_CLIENT_ID :: :: | Default: "stig-manager" | The OIDC clientId of the web client :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_ID= ::============================================================================== :: STIGMAN_CLIENT_OIDC_PROVIDER :: :: | Default: Value of "STIGMAN_OIDC_PROVIDER" | Client override of the base :: URL of the OIDC provider issuing signed JWTs for the API. The string :: "/.well-known/openid-configuration" will be appended by the client when :: fetching metadata. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_OIDC_PROVIDER= ::============================================================================== :: STIGMAN_CLIENT_REAUTH_ACTION :: :: | Default: "popup" | How to prompt for re-authentication when user :: credentials expire. Available values: "popup", "iframe", "tab", or "reload". :: See :ref:`stigman_client_reauth_action` in the Authentication document for :: details. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_REAUTH_ACTION= ::============================================================================== :: STIGMAN_CLIENT_RESPONSE_MODE :: :: | Default: "fragment" | The response_mode the web client should specify when :: requesting an authorization code from the OIDC provider. Available values: :: "fragment", "query" :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_RESPONSE_MODE= ::============================================================================== :: STIGMAN_CLIENT_SCOPE_PREFIX :: :: | No default. | String used as a prefix for each scope when authenticating :: to the OIDC Provider. Some providers (Azure AD) expect scope requests in the :: format "api:///", where "api:///" is :: the required prefix. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_SCOPE_PREFIX= ::============================================================================== :: STIGMAN_CLIENT_STATE_EVENTS :: :: | Default: "true" | Whether the web client listens for server sent events :: (SSE) about the API state. Should only be disabled temporarily while :: resolving buffering issues on a reverse proxy. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_STATE_EVENTS= ::============================================================================== :: STIGMAN_CLIENT_STRICT_PKCE :: :: | Default: "true" | Whether the web client verifies the OIDC provider is :: advertising PKCE/S256 support in compliance with RFC 8414. A non-compliant :: provider supports PKCE/S256 without advertising it. Independent of this :: value, the web client always exclusively uses PKCE/S256 in the Authorization :: Code Flow. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_STRICT_PKCE= ::============================================================================== :: STIGMAN_CLIENT_USER_TIMEOUT :: :: | Default: "0" | The maximum time (in minutes) a regular user can be :: inactive in the web client before discarding their access token and :: requiring reauthorization. Activity is defined as mouse click, keypress, or :: scrolling in any tab or window of a same-origin browsing context group. Set :: to zero to disable idle detection. :: :: Affects: Client ::============================================================================== :: set STIGMAN_CLIENT_USER_TIMEOUT= ::============================================================================== :: STIGMAN_CLIENT_WELCOME_IMAGE :: :: | No default. | The URL of an image hosted elsewhere that will be rendered :: in the Home tab Welcome widget. The STIGMan app does not serve the image :: itself, only the reference to it. The URL should be in relation to and :: accessible from the client's browser. The image will be scaled to a max :: width or height of 125 pixels - If no alternate image is specified, the seal :: of the Department of the Navy (the project sponsor) will be displayed. :: :: Affects: Client Appearance ::============================================================================== :: set STIGMAN_CLIENT_WELCOME_IMAGE = ::============================================================================== :: STIGMAN_CLIENT_WELCOME_LINK :: :: | No default. | Value of an optional link that will follow the Welcome :: message in the Home tab Welcome widget. :: :: Affects: Client Appearance ::============================================================================== :: set STIGMAN_CLIENT_WELCOME_LINK= ::============================================================================== :: STIGMAN_CLIENT_WELCOME_MESSAGE :: :: | No default. | Text that will be displayed in the Home tab Welcome widget. :: :: Affects: Client Appearance ::============================================================================== :: set STIGMAN_CLIENT_WELCOME_MESSAGE = ::============================================================================== :: STIGMAN_CLIENT_WELCOME_TITLE :: :: | Default: "Support" | The tile that will be displayed for the custom Home :: tab Welcome message. :: :: Affects: Client Appearance ::============================================================================== :: set STIGMAN_CLIENT_WELCOME_TITLE = ::============================================================================== :: STIGMAN_DB_HOST :: :: | Default: "localhost" | The database hostname or IP from to the API server :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_HOST= ::============================================================================== :: STIGMAN_DB_MAX_CONNECTIONS :: :: | Default: "25" | The maximum size of the database connection pool :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_MAX_CONNECTIONS= ::============================================================================== :: STIGMAN_DB_PASSWORD :: :: | No default. | The password used to login to the database :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_PASSWORD= ::============================================================================== :: STIGMAN_DB_PORT :: :: | Default: "3306" | The database TCP port relative to the API server :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_PORT= ::============================================================================== :: STIGMAN_DB_SCHEMA :: :: | Default: "stigman" | The schema where the STIG Manager object are found :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_SCHEMA= ::============================================================================== :: STIGMAN_DB_TLS_CA_FILE :: :: | No default. | An absolute path or a path relative to the API /tls :: directory that contains the PEM encoded CA certificate used to sign the :: database TLS certificate. Setting this variable enables TLS connections to :: the database. :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_TLS_CA_FILE= ::============================================================================== :: STIGMAN_DB_TLS_CERT_FILE :: :: | No default. | An absolute path or a path relative to the API /tls :: directory that contains the PEM encoded Client certificate used when :: authenticating the database client. Additionally requires setting values for :: "STIGMAN_DB_TLS_CA_FILE" and "STIGMAN_DB_TLS_KEY_FILE". :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_TLS_CERT_FILE= ::============================================================================== :: STIGMAN_DB_TLS_KEY_FILE :: :: | No default. | An absolute path or a path relative to the API /tls :: directory that contains the PEM encoded Client private key used when :: authenticating the database client. Additionally requires setting values for :: "STIGMAN_DB_TLS_CA_FILE" and "STIGMAN_DB_TLS_CERT_FILE". :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_TLS_KEY_FILE= ::============================================================================== :: STIGMAN_DB_USER :: :: | Default: "stigman" | The user account used to login to the database :: :: Affects: API ::============================================================================== :: set STIGMAN_DB_USER= ::============================================================================== :: STIGMAN_DEPENDENCY_RETRIES :: :: | Default: "24" | During startup, the number of attempts made to establish :: connections to the database and OIDC Provider. Retries are made every 5 :: seconds and the API process exits if unsuccessful. :: :: Affects: API ::============================================================================== :: set STIGMAN_DEPENDENCY_RETRIES= ::============================================================================== :: STIGMAN_DEV_ALLOW_INSECURE_TOKENS :: :: | Default: "false" | Controls whether known insecure JWT signing keys are :: allowed. Only for development/testing purposes. Setting to 'true' is NOT :: recommended for production environments. :: :: Affects: API ::============================================================================== :: set STIGMAN_DEV_ALLOW_INSECURE_TOKENS= ::============================================================================== :: STIGMAN_DEV_LOG_OPT_STATS :: :: | Default: "true" | Controls whether the API will track API operation :: statistics used for populating "Requests" portion of "/op/appinfo" response :: body. Setting to 'false' is NOT recommended for production environments, as :: this info can be useful for troubleshooting. :: :: Affects: API ::============================================================================== :: set STIGMAN_DEV_LOG_OPT_STATS= ::============================================================================== :: STIGMAN_DEV_RESPONSE_VALIDATION :: :: | Default: "none" | Controls whether the API will perform response :: validation on API responses. If set to 'logOnly' the API will output log :: entries indicating deviations from the OAS specification. Intended for :: development/testing purposes. Available values: "none", "logOnly" :: :: Affects: API ::============================================================================== :: set STIGMAN_DEV_RESPONSE_VALIDATION= ::============================================================================== :: STIGMAN_DOCS_DIRECTORY :: :: | Default: "./docs" | The location of the documentation files, relative to :: the API source directory. Note that if running source from a clone of the :: GitHub repository, the docs are located at `../../docs/_build/html` relative :: to the API directory. :: :: Affects: API, Documentation ::============================================================================== :: set STIGMAN_DOCS_DIRECTORY= ::============================================================================== :: STIGMAN_DOCS_DISABLED :: :: | Default: "false" | Whether to *not* serve the project Documentation. :: NOTE: If you choose to serve the Client from the API container but not the :: Documentation, the links do the Docs on the home page will not work. :: :: Affects: Documentation ::============================================================================== :: set STIGMAN_DOCS_DISABLED= ::============================================================================== :: STIGMAN_EXPERIMENTAL_APPDATA :: :: | Default: "false" | Set to "true" to enable the experimental AppData :: import/export API endpoints and User Interface. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_EXPERIMENTAL_APPDATA= ::============================================================================== :: STIGMAN_EXPERIMENTAL_LOGSTREAM :: :: | Default: "true" | Set to "false" to disable the experimental WebSocket :: for streaming API logs and the corresponding User Interface. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_EXPERIMENTAL_LOGSTREAM= ::============================================================================== :: STIGMAN_LOG_LEVEL :: :: | Default: "3" | Controls the granularity of the generated log output, from :: 1 to 4. Each level is inclusive of the ones before it. Level 1 will log only :: errors, level 2 includes warnings, level 3 includes status and transaction :: logs, and level 4 includes debug-level logs :: :: Affects: API ::============================================================================== :: set STIGMAN_LOG_LEVEL= ::============================================================================== :: STIGMAN_LOG_MODE :: :: | Default: "combined" | Controls whether the logs will create one “combined” :: log entry for http requests that includes both the request and response :: information; or two separate log entries, one for the request and one for :: the response, that can be correlated via a generated Request GUID in each :: entry :: :: Affects: API ::============================================================================== :: set STIGMAN_LOG_MODE= ::============================================================================== :: STIGMAN_JWKS_CACHE_MAX_AGE :: :: | Default: "10" | The time in minutes after which the API's cache of JWT :: signing keys is deemed stale and the API becomes unavailable. Cache :: refreshes are scheduled at intervals of half this value and also occur when :: an unknown signing key is presented. Scheduled refresh failures are retried :: every 10 seconds. :: :: Affects: API ::============================================================================== :: set STIGMAN_JWKS_CACHE_MAX_AGE= ::============================================================================== :: STIGMAN_JWT_ASSERTION_CLAIM :: :: | Default: "jti" | The access token claim whose value is the OIDC provider's :: Assertion ID. Updates to this value trigger the API to update a User's :: "lastClaims" property. The claim MUST NOT be nested and MUST be a valid :: ECMAScript identifier. See :ref:`jwt_requirements` for token value format :: requirements. :: :: Affects: API ::============================================================================== :: set STIGMAN_JWT_ASSERTION_CLAIM= ::============================================================================== :: STIGMAN_JWT_AUD_VALUE :: :: | No default. | If present, a string which must be included in the access :: token "aud" claim for requests to endpoints requiring authorization. See :: :ref:`jwt_requirements` for token value format requirements. :: :: Affects: API ::============================================================================== :: set STIGMAN_JWT_AUD_VALUE= ::============================================================================== :: STIGMAN_JWT_EMAIL_CLAIM :: :: | Default: "email" | The access token claim whose value is the user's email :: address. The claim MUST NOT be nested and MUST be a valid ECMAScript :: identifier. See :ref:`jwt_requirements` for token value format requirements. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_JWT_EMAIL_CLAIM= ::============================================================================== :: STIGMAN_JWT_NAME_CLAIM :: :: | Default: "name" | The access token claim whose value is the user's full :: name. The claim MUST NOT be nested and MUST be a valid ECMAScript :: identifier. See :ref:`jwt_requirements` for token value format requirements. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_JWT_NAME_CLAIM= ::============================================================================== :: STIGMAN_JWT_PRIVILEGES_CLAIM :: :: | Default: "realm_access.roles" | The access token claim whose value is the :: user's privileges. The claim MAY be nested but SHOULD avoid invalid :: ECMAScript identifiers. See :ref:`jwt_requirements` for token value format :: requirements. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_JWT_PRIVILEGES_CLAIM= ::============================================================================== :: STIGMAN_JWT_SCOPE_CLAIM :: :: | Default: "scope" | The access token claim whose value is the user's :: scopes. Some OIDC Providers (Okta, Azure AD) use the claim "scp" to :: enumerate scopes. The claim MUST NOT be nested and MUST be a valid :: ECMAScript identifier. See :ref:`jwt_requirements` for token value format :: requirements. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_JWT_SCOPE_CLAIM= ::============================================================================== :: STIGMAN_JWT_SERVICENAME_CLAIM :: :: | Default: "clientId" | The access token claim whose value is the service :: account's client. The claim MUST NOT be nested and MUST be a valid :: ECMAScript identifier. See :ref:`jwt_requirements` for token value format :: requirements. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_JWT_SERVICENAME_CLAIM= ::============================================================================== :: STIGMAN_JWT_USERNAME_CLAIM :: :: | Default: "preferred_username" | The access token claim whose value is the :: user's username. The claim MUST NOT be nested and MUST be a valid ECMAScript :: identifier. See :ref:`jwt_requirements` for token value format requirements. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_JWT_USERNAME_CLAIM= ::============================================================================== :: STIGMAN_OIDC_CA_CERTS :: :: | No default. | The full path to a file with one or more PEM-encoded CA :: certificates for validating TLS connections to the OIDC Provider. :: :: Affects: API ::============================================================================== :: set STIGMAN_OIDC_CA_CERTS= ::============================================================================== :: STIGMAN_OIDC_PROVIDER :: :: | Default: "http://localhost:8080/auth/realms/stigman" | The base URL of the :: OIDC provider issuing signed JWTs for the API. The string "/.well- :: known/openid-configuration" will be appended when fetching metadata. :: :: Affects: API, Client ::============================================================================== :: set STIGMAN_OIDC_PROVIDER= ::============================================================================== :: STIGMAN_SWAGGER_ENABLED :: :: | Default: "false" | Whether to enable the SwaggerUI SPA at /api-docs :: :: Affects: API ::============================================================================== :: set STIGMAN_SWAGGER_ENABLED= ::============================================================================== :: STIGMAN_SWAGGER_OIDC_PROVIDER :: :: | Default: Value of "STIGMAN_OIDC_PROVIDER" | SwaggerUI override of the base :: URL of the OIDC provider issuing signed JWTs for the API. The string :: "/.well-known/openid-configuration" will be appended by the SwaggerUI when :: fetching metadata. :: :: Affects: API ::============================================================================== :: set STIGMAN_SWAGGER_OIDC_PROVIDER= ::============================================================================== :: STIGMAN_SWAGGER_REDIRECT :: :: | Default: "http://localhost:54000/api-docs/oauth2-redirect.html" | The :: redirect URL sent by SwaggerUI to the OIDC provider when authorizing :: :: Affects: API ::============================================================================== :: set STIGMAN_SWAGGER_REDIRECT= ::============================================================================== :: STIGMAN_SWAGGER_SERVER :: :: | Default: "http://localhost:54000/api" | The API server URL relative to the :: SwaggerUI :: :: Affects: API ::============================================================================== :: set STIGMAN_SWAGGER_SERVER= stig-manager-win.exe ================================================ FILE: api/launchers/stig-manager.sh ================================================ #============================================================================== # STIGMAN_API_ADDRESS # # | Default: "0.0.0.0" | The IP address on which the the API server will listen # # Affects: API #============================================================================== # export STIGMAN_API_ADDRESS= #============================================================================== # STIGMAN_API_MAX_JSON_BODY # # | Default: "5242880" | The maximum size in bytes of the request body when # Content-Type is application/json # # Affects: API #============================================================================== # export STIGMAN_API_MAX_JSON_BODY= #============================================================================== # STIGMAN_API_MAX_UPLOAD # # | Default: "1073741824" | The maximum size in bytes of the file uploaded with # Content-Type multipart/form-data # # Affects: API #============================================================================== # export STIGMAN_API_MAX_UPLOAD= #============================================================================== # STIGMAN_API_PORT # # | Default: "54000" | The TCP port on which the server will listen # # Affects: API #============================================================================== # export STIGMAN_API_PORT= #============================================================================== # STIGMAN_API_TLS_CERT_FILE # # | No default. | A absolute path to the file that contains the PEM encoded # Server certificate used for TLS. Additionally requires setting # "STIGMAN_API_TLS_KEY_FILE" to enable TLS. # # Affects: API #============================================================================== # export STIGMAN_API_TLS_CERT_FILE= #============================================================================== # STIGMAN_API_TLS_KEY_FILE # # | No default. | A absolute path to the file that contains the PEM encoded # Server private key used for TLS. Additionally requires setting # "STIGMAN_API_TLS_CERT_FILE" to enable TLS. # # Affects: API #============================================================================== # export STIGMAN_API_TLS_KEY_FILE= #============================================================================== # STIGMAN_API_TLS_KEY_PASSPHRASE # # | No default. | If necessary, the passphrase that decrypts the PEM encoded # Server private key used for TLS. Additionally requires setting # "STIGMAN_API_TLS_CERT_FILE" to enable TLS. # # Affects: API #============================================================================== # export STIGMAN_API_TLS_KEY_PASSPHRASE= #============================================================================== # STIGMAN_CLASSIFICATION # # | Default: "U" | Sets the classification banner, if any. Available values: # "NONE" "U" "CUI" "C" "S" "TS" "SCI" # # Affects: API, Client #============================================================================== # export STIGMAN_CLASSIFICATION= #============================================================================== # STIGMAN_CLIENT_ADMIN_TIMEOUT # # | Default: "0" | The maximum time (in minutes) a user with admin privileges # can be inactive in the web client before discarding their access token and # requiring reauthorization. Activity is defined as mouse click, keypress, or # scrolling in any tab or window of a same-origin browsing context group. Set # to zero to disable idle detection. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_ADMIN_TIMEOUT= #============================================================================== # STIGMAN_CLIENT_API_BASE # # | Default: "api" | The base URL for Client requests to the API relative to # "window.location" # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_API_BASE= #============================================================================== # STIGMAN_CLIENT_CONSOLE_MODE # # | Default: "production" | The console mode of the web client, setting to # "development" enables console logging which is otherwise disabled # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_CONSOLE_MODE= #============================================================================== # STIGMAN_CLIENT_DIRECTORY # # | Default: "./clients" | The location of the web client files, relative to # the API source directory. Note that if running source from a clone of the # GitHub repository, the client is located at `../../clients` relative to the # API directory. # # Affects: API, Client #============================================================================== # export STIGMAN_CLIENT_DIRECTORY= #============================================================================== # STIGMAN_CLIENT_DISABLED # # | Default: "false" | Whether to *not* serve the reference web client # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_DISABLED= #============================================================================== # STIGMAN_CLIENT_DISPLAY_APPMANAGERS # # | Default: "true" | Whether to display application managers the home page of # web client # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_DISPLAY_APPMANAGERS= #============================================================================== # STIGMAN_CLIENT_EXTRA_SCOPES # # | No default. | A space separated list of OAuth2 scopes to request in # addition to "stig-manager:stig" "stig-manager:stig:read" "stig- # manager:collection" "stig-manager:user" "stig-manager:user:read" "stig- # manager:op". Some OIDC providers (Okta) generate a refresh token only if the # scope "offline_access" is requested # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_EXTRA_SCOPES= #============================================================================== # STIGMAN_CLIENT_ID # # | Default: "stig-manager" | The OIDC clientId of the web client # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_ID= #============================================================================== # STIGMAN_CLIENT_OIDC_PROVIDER # # | Default: Value of "STIGMAN_OIDC_PROVIDER" | Client override of the base URL # of the OIDC provider issuing signed JWTs for the API. The string "/.well- # known/openid-configuration" will be appended by the client when fetching # metadata. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_OIDC_PROVIDER= #============================================================================== # STIGMAN_CLIENT_REAUTH_ACTION # # | Default: "popup" | How to prompt for re-authentication when user # credentials expire. Available values: "popup", "iframe", "tab", or "reload". # See :ref:`stigman_client_reauth_action` in the Authentication document for # details. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_REAUTH_ACTION= #============================================================================== # STIGMAN_CLIENT_RESPONSE_MODE # # | Default: "fragment" | The response_mode the web client should specify when # requesting an authorization code from the OIDC provider. Available values: # "fragment", "query" # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_RESPONSE_MODE= #============================================================================== # STIGMAN_CLIENT_SCOPE_PREFIX # # | No default. | String used as a prefix for each scope when authenticating to # the OIDC Provider. Some providers (Azure AD) expect scope requests in the # format "api:///", where "api:///" is # the required prefix. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_SCOPE_PREFIX= #============================================================================== # STIGMAN_CLIENT_STATE_EVENTS # # | Default: "true" | Whether the web client listens for server sent events # (SSE) about the API state. Should only be disabled temporarily while # resolving buffering issues on a reverse proxy. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_STATE_EVENTS= #============================================================================== # STIGMAN_CLIENT_STRICT_PKCE # # | Default: "true" | Whether the web client verifies the OIDC provider is # advertising PKCE/S256 support in compliance with RFC 8414. A non-compliant # provider supports PKCE/S256 without advertising it. Independent of this # value, the web client always exclusively uses PKCE/S256 in the Authorization # Code Flow. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_STRICT_PKCE= #============================================================================== # STIGMAN_CLIENT_USER_TIMEOUT # # | Default: "0" | The maximum time (in minutes) a regular user can be inactive # in the web client before discarding their access token and requiring # reauthorization. Activity is defined as mouse click, keypress, or scrolling # in any tab or window of a same-origin browsing context group. Set to zero to # disable idle detection. # # Affects: Client #============================================================================== # export STIGMAN_CLIENT_USER_TIMEOUT= #============================================================================== # STIGMAN_CLIENT_WELCOME_IMAGE # # | No default. | The URL of an image hosted elsewhere that will be rendered in # the Home tab Welcome widget. The STIGMan app does not serve the image itself, # only the reference to it. The URL should be in relation to and accessible # from the client's browser. The image will be scaled to a max width or height # of 125 pixels - If no alternate image is specified, the seal of the # Department of the Navy (the project sponsor) will be displayed. # # Affects: Client Appearance #============================================================================== # export STIGMAN_CLIENT_WELCOME_IMAGE = #============================================================================== # STIGMAN_CLIENT_WELCOME_LINK # # | No default. | Value of an optional link that will follow the Welcome # message in the Home tab Welcome widget. # # Affects: Client Appearance #============================================================================== # export STIGMAN_CLIENT_WELCOME_LINK= #============================================================================== # STIGMAN_CLIENT_WELCOME_MESSAGE # # | No default. | Text that will be displayed in the Home tab Welcome widget. # # Affects: Client Appearance #============================================================================== # export STIGMAN_CLIENT_WELCOME_MESSAGE = #============================================================================== # STIGMAN_CLIENT_WELCOME_TITLE # # | Default: "Support" | The tile that will be displayed for the custom Home # tab Welcome message. # # Affects: Client Appearance #============================================================================== # export STIGMAN_CLIENT_WELCOME_TITLE = #============================================================================== # STIGMAN_DB_HOST # # | Default: "localhost" | The database hostname or IP from to the API server # # Affects: API #============================================================================== # export STIGMAN_DB_HOST= #============================================================================== # STIGMAN_DB_MAX_CONNECTIONS # # | Default: "25" | The maximum size of the database connection pool # # Affects: API #============================================================================== # export STIGMAN_DB_MAX_CONNECTIONS= #============================================================================== # STIGMAN_DB_PASSWORD # # | No default. | The password used to login to the database # # Affects: API #============================================================================== # export STIGMAN_DB_PASSWORD= #============================================================================== # STIGMAN_DB_PORT # # | Default: "3306" | The database TCP port relative to the API server # # Affects: API #============================================================================== # export STIGMAN_DB_PORT= #============================================================================== # STIGMAN_DB_SCHEMA # # | Default: "stigman" | The schema where the STIG Manager object are found # # Affects: API #============================================================================== # export STIGMAN_DB_SCHEMA= #============================================================================== # STIGMAN_DB_TLS_CA_FILE # # | No default. | An absolute path or a path relative to the API /tls directory # that contains the PEM encoded CA certificate used to sign the database TLS # certificate. Setting this variable enables TLS connections to the database. # # Affects: API #============================================================================== # export STIGMAN_DB_TLS_CA_FILE= #============================================================================== # STIGMAN_DB_TLS_CERT_FILE # # | No default. | An absolute path or a path relative to the API /tls directory # that contains the PEM encoded Client certificate used when authenticating the # database client. Additionally requires setting values for # "STIGMAN_DB_TLS_CA_FILE" and "STIGMAN_DB_TLS_KEY_FILE". # # Affects: API #============================================================================== # export STIGMAN_DB_TLS_CERT_FILE= #============================================================================== # STIGMAN_DB_TLS_KEY_FILE # # | No default. | An absolute path or a path relative to the API /tls directory # that contains the PEM encoded Client private key used when authenticating the # database client. Additionally requires setting values for # "STIGMAN_DB_TLS_CA_FILE" and "STIGMAN_DB_TLS_CERT_FILE". # # Affects: API #============================================================================== # export STIGMAN_DB_TLS_KEY_FILE= #============================================================================== # STIGMAN_DB_USER # # | Default: "stigman" | The user account used to login to the database # # Affects: API #============================================================================== # export STIGMAN_DB_USER= #============================================================================== # STIGMAN_DEPENDENCY_RETRIES # # | Default: "24" | During startup, the number of attempts made to establish # connections to the database and OIDC Provider. Retries are made every 5 # seconds and the API process exits if unsuccessful. # # Affects: API #============================================================================== # export STIGMAN_DEPENDENCY_RETRIES= #============================================================================== # STIGMAN_DEV_ALLOW_INSECURE_TOKENS # # | Default: "false" | Controls whether known insecure JWT signing keys are # allowed. Only for development/testing purposes. Setting to 'true' is NOT # recommended for production environments. # # Affects: API #============================================================================== # export STIGMAN_DEV_ALLOW_INSECURE_TOKENS= #============================================================================== # STIGMAN_DEV_LOG_OPT_STATS # # | Default: "true" | Controls whether the API will track API operation # statistics used for populating "Requests" portion of "/op/appinfo" response # body. Setting to 'false' is NOT recommended for production environments, as # this info can be useful for troubleshooting. # # Affects: API #============================================================================== # export STIGMAN_DEV_LOG_OPT_STATS= #============================================================================== # STIGMAN_DEV_RESPONSE_VALIDATION # # | Default: "none" | Controls whether the API will perform response validation # on API responses. If set to 'logOnly' the API will output log entries # indicating deviations from the OAS specification. Intended for # development/testing purposes. Available values: "none", "logOnly" # # Affects: API #============================================================================== # export STIGMAN_DEV_RESPONSE_VALIDATION= #============================================================================== # STIGMAN_DOCS_DIRECTORY # # | Default: "./docs" | The location of the documentation files, relative to # the API source directory. Note that if running source from a clone of the # GitHub repository, the docs are located at `../../docs/_build/html` relative # to the API directory. # # Affects: API, Documentation #============================================================================== # export STIGMAN_DOCS_DIRECTORY= #============================================================================== # STIGMAN_DOCS_DISABLED # # | Default: "false" | Whether to *not* serve the project Documentation. NOTE: # If you choose to serve the Client from the API container but not the # Documentation, the links do the Docs on the home page will not work. # # Affects: Documentation #============================================================================== # export STIGMAN_DOCS_DISABLED= #============================================================================== # STIGMAN_EXPERIMENTAL_APPDATA # # | Default: "false" | Set to "true" to enable the experimental AppData # import/export API endpoints and User Interface. # # Affects: API, Client #============================================================================== # export STIGMAN_EXPERIMENTAL_APPDATA= #============================================================================== # STIGMAN_EXPERIMENTAL_LOGSTREAM # # | Default: "true" | Set to "false" to disable the experimental WebSocket for # streaming API logs and the corresponding User Interface. # # Affects: API, Client #============================================================================== # export STIGMAN_EXPERIMENTAL_LOGSTREAM= #============================================================================== # STIGMAN_LOG_LEVEL # # | Default: "3" | Controls the granularity of the generated log output, from 1 # to 4. Each level is inclusive of the ones before it. Level 1 will log only # errors, level 2 includes warnings, level 3 includes status and transaction # logs, and level 4 includes debug-level logs # # Affects: API #============================================================================== # export STIGMAN_LOG_LEVEL= #============================================================================== # STIGMAN_LOG_MODE # # | Default: "combined" | Controls whether the logs will create one “combined” # log entry for http requests that includes both the request and response # information; or two separate log entries, one for the request and one for the # response, that can be correlated via a generated Request GUID in each entry # # Affects: API #============================================================================== # export STIGMAN_LOG_MODE= #============================================================================== # STIGMAN_JWKS_CACHE_MAX_AGE # # | Default: "10" | The time in minutes after which the API's cache of JWT # signing keys is deemed stale and the API becomes unavailable. Cache refreshes # are scheduled at intervals of half this value and also occur when an unknown # signing key is presented. Scheduled refresh failures are retried every 10 # seconds. # # Affects: API #============================================================================== # export STIGMAN_JWKS_CACHE_MAX_AGE= #============================================================================== # STIGMAN_JWT_ASSERTION_CLAIM # # | Default: "jti" | The access token claim whose value is the OIDC provider's # Assertion ID. Updates to this value trigger the API to update a User's # "lastClaims" property. The claim MUST NOT be nested and MUST be a valid # ECMAScript identifier. See :ref:`jwt_requirements` for token value format # requirements. # # Affects: API #============================================================================== # export STIGMAN_JWT_ASSERTION_CLAIM= #============================================================================== # STIGMAN_JWT_AUD_VALUE # # | No default. | If present, a string which must be included in the access # token "aud" claim for requests to endpoints requiring authorization. See # :ref:`jwt_requirements` for token value format requirements. # # Affects: API #============================================================================== # export STIGMAN_JWT_AUD_VALUE= #============================================================================== # STIGMAN_JWT_EMAIL_CLAIM # # | Default: "email" | The access token claim whose value is the user's email # address. The claim MUST NOT be nested and MUST be a valid ECMAScript # identifier. See :ref:`jwt_requirements` for token value format requirements. # # Affects: API, Client #============================================================================== # export STIGMAN_JWT_EMAIL_CLAIM= #============================================================================== # STIGMAN_JWT_NAME_CLAIM # # | Default: "name" | The access token claim whose value is the user's full # name. The claim MUST NOT be nested and MUST be a valid ECMAScript identifier. # See :ref:`jwt_requirements` for token value format requirements. # # Affects: API, Client #============================================================================== # export STIGMAN_JWT_NAME_CLAIM= #============================================================================== # STIGMAN_JWT_PRIVILEGES_CLAIM # # | Default: "realm_access.roles" | The access token claim whose value is the # user's privileges. The claim MAY be nested but SHOULD avoid invalid # ECMAScript identifiers. See :ref:`jwt_requirements` for token value format # requirements. # # Affects: API, Client #============================================================================== # export STIGMAN_JWT_PRIVILEGES_CLAIM= #============================================================================== # STIGMAN_JWT_SCOPE_CLAIM # # | Default: "scope" | The access token claim whose value is the user's scopes. # Some OIDC Providers (Okta, Azure AD) use the claim "scp" to enumerate scopes. # The claim MUST NOT be nested and MUST be a valid ECMAScript identifier. See # :ref:`jwt_requirements` for token value format requirements. # # Affects: API, Client #============================================================================== # export STIGMAN_JWT_SCOPE_CLAIM= #============================================================================== # STIGMAN_JWT_SERVICENAME_CLAIM # # | Default: "clientId" | The access token claim whose value is the service # account's client. The claim MUST NOT be nested and MUST be a valid ECMAScript # identifier. See :ref:`jwt_requirements` for token value format requirements. # # Affects: API, Client #============================================================================== # export STIGMAN_JWT_SERVICENAME_CLAIM= #============================================================================== # STIGMAN_JWT_USERNAME_CLAIM # # | Default: "preferred_username" | The access token claim whose value is the # user's username. The claim MUST NOT be nested and MUST be a valid ECMAScript # identifier. See :ref:`jwt_requirements` for token value format requirements. # # Affects: API, Client #============================================================================== # export STIGMAN_JWT_USERNAME_CLAIM= #============================================================================== # STIGMAN_OIDC_CA_CERTS # # | No default. | The full path to a file with one or more PEM-encoded CA # certificates for validating TLS connections to the OIDC Provider. # # Affects: API #============================================================================== # export STIGMAN_OIDC_CA_CERTS= #============================================================================== # STIGMAN_OIDC_PROVIDER # # | Default: "http://localhost:8080/auth/realms/stigman" | The base URL of the # OIDC provider issuing signed JWTs for the API. The string "/.well- # known/openid-configuration" will be appended when fetching metadata. # # Affects: API, Client #============================================================================== # export STIGMAN_OIDC_PROVIDER= #============================================================================== # STIGMAN_SWAGGER_ENABLED # # | Default: "false" | Whether to enable the SwaggerUI SPA at /api-docs # # Affects: API #============================================================================== # export STIGMAN_SWAGGER_ENABLED= #============================================================================== # STIGMAN_SWAGGER_OIDC_PROVIDER # # | Default: Value of "STIGMAN_OIDC_PROVIDER" | SwaggerUI override of the base # URL of the OIDC provider issuing signed JWTs for the API. The string # "/.well-known/openid-configuration" will be appended by the SwaggerUI when # fetching metadata. # # Affects: API #============================================================================== # export STIGMAN_SWAGGER_OIDC_PROVIDER= #============================================================================== # STIGMAN_SWAGGER_REDIRECT # # | Default: "http://localhost:54000/api-docs/oauth2-redirect.html" | The # redirect URL sent by SwaggerUI to the OIDC provider when authorizing # # Affects: API #============================================================================== # export STIGMAN_SWAGGER_REDIRECT= #============================================================================== # STIGMAN_SWAGGER_SERVER # # | Default: "http://localhost:54000/api" | The API server URL relative to the # SwaggerUI # # Affects: API #============================================================================== # export STIGMAN_SWAGGER_SERVER= ./stig-manager-linuxstatic ================================================ FILE: api/nuwcdivnpt-bot.gpg.asc ================================================ -----BEGIN PGP PUBLIC KEY BLOCK----- mQENBGXcsB0BCADIpexQoymA+0AGb9ojtisErQ5cp+xWv3SlPd5kOhuCpbhRhTnB yQMBr50jqpPZeDtV80V9zyrGg+yLy4MdWM0sBIaW9ixDYeOShRei/GKHVrKxvJI7 YQLZhkng4LqQLgI1AimEzBm5roqfrDQoEnvsj8PbD3iXj7kPrPoUeqZ/3DIVIvKw DtwfiWb7ycWJjjWe9g9F6T4YLbAidNVwo8QAnGrr7YFKtqhKYpjkK8ZHIDArpzVU kqTeFJpkC9MchTLmYMLdgjfJAV/NcA7NA+8pUC+jIoT7oLkMgw47iH6ifjarw2+w HUGuOrhpBF9WCW9OUlJmknjUQEeJeUYn5bXjABEBAAG0Xm51d2NkaXZucHQtYm90 QHVzZXJzLm5vcmVwbHkuZ2l0aHViLmNvbSAoU3RpZ21hbktleSkgPG51d2NkaXZu cHQtYm90QHVzZXJzLm5vcmVwbHkuZ2l0aHViLmNvbT6JAVQEEwEKAD4WIQRR1CQf lX8LfXypLo8UO6ovUu6kagUCZdywHQIbLwUJEswDAAULCQgHAgYVCgkICwIEFgID AQIeAQIXgAAKCRAUO6ovUu6kagZXB/oDogvKYf5vDc8Cu2mrvtGbKO2VXDeLHQJ4 N1X/ZK/Lr4RTZFYDqHJPiqJYlhg58sR+EDsy2HWI3Qxpk7C65SrEF0CwEfNbcHtH 71g7KwHrgDEJw46yCmrt61pjAXVCeokVDPpUozYFoZoCRUHPpWDKEhcR2sizhOeh 0HCOcV2yq308IZKzemAaJU9sAKcjHNB7RQkNbLl50/awINQY0F2kFCUItI8GQ9JA 1+belDh0x5r2dQWCT4O2IIJjUhnKdoMovtp2TlU/ynpKKt781CKF7L548r35eaSM KRvO2kdsvFuvYe3372kkpkT8edEtxduJnqzZMWyINV43mtCk1GV/uQENBGXcsB0B CADJtfxgwXWBt3XY0s5iBKPFZFkYEgBKrFJF5YHJV2o8P6+AWIg03KynoJg0yf0h 006tTegUYi53NJpUACUtkRRaDAy4g3xV4bLfK+aN50GWGqIdlIeFeaq93RYLgwL3 GTB/msHoA6CTlQSrSIpjxeqifBPKcklq540AVR4aenntqEjHjpxEjkfzeB0nM1kA u/4H9N8/B8FM4PqOzF5YlTaTK/UtCJU6TqMTTAg0VMlZjRRItjUUt3Oq+4bOakeX F+JUiOaYaaYO2OJGiLm9HMuaRSiZGaothkZ/C5LgtkDqIGVcCMgYH0L4l+14IaVJ iu60rX9Yhca0OOa9gqbR4VQLABEBAAGJAnIEGAEKACYWIQRR1CQflX8LfXypLo8U O6ovUu6kagUCZdywHQIbLgUJEswDAAFACRAUO6ovUu6kasB0IAQZAQoAHRYhBHS9 Eu1c1I822bsN1VTlnNMfBHn8BQJl3LAdAAoJEFTlnNMfBHn8fAgH/RBVKMde+uEt 18c9gYXLInBu1qvzFIbYpH2hUHXSZcvdaj5AH7i6OF2Ix0jQiaFrnY14FawQkofp Kd2uYjgyqbdKqn+wTwQhFGgyy5PQBuoLyKmlLXJgIHdsjsmMckDG6R6cA7du4IZx AUCYsJEoAcnQXuP/XRXDiu8ODpOkMtqnmUn74gDtTALQ5j9mMwVrm7TfT0lFsjj5 W8I2SqZS4YQWKIfdbtUmqHWrzWwVYbzBBkK34YkaFdHd7YpLFSpGUJRgkQfPCu2U cuO1Tn25VaYaw8xTstk5ul/3sPyuGvbaJnvFBtt+xQgQo6H0+aAbhDDxzxrhtUTg 0MPOw657viZijwf/Vgj1WfpXCxY6v3B4Qghg3dOgsQDAinrWM9xaYueT9bkBWjnD fZ4Z3iNfUipLFDwJ2XeRBz5MQGwK3d5N11xDMXnYO6IH5m0+0vSLmh12hWQYdGAa pedI3qbKsZ4/UQfG8ZfKyeBUunZDWNTbR61rFKi+ZNb4W4vF5pVX4kLIIzcJpqa7 8+cUWuD5jUKJt9fZ0cEUlLmZqJ7jsseHE81L2sULIo74p2xgGX1kGpNw5/oyyHRf /Rf7n9Wqs21lvHK4cqIpmTTUxkEOVomoB7LWlrqhUNMEPmnJes5oWkfN/t1euy8o OJ/jXthJZVWrxBzZtOmsDMQmJNhTXhgTxlEzvQ== =b4ti -----END PGP PUBLIC KEY BLOCK----- ================================================ FILE: api/pkg.config.json ================================================ { "name": "stig-manager", "pkg": { "scripts": ["./source/controllers/**/*.js", "./source/service/**/*.js"], "assets": [ "../client/dist/**/*", "../docs/_build/html", "./source/service/**/*.sql", "./source/node_modules/csv-stringify/**/*", "./source/node_modules/swagger-ui-dist/**/*", "./source/node_modules/axios/**/*", "./source/utils/*.xlsx" ], "targets": ["node24-win", "node24-linuxstatic"], "outputPath": "./bin" } } ================================================ FILE: api/source/README.md ================================================ ================================================ FILE: api/source/bootstrap/bootstrapUtils.js ================================================ const path = require('node:path') const logger = require('../utils/logger') const extensionCheck = require('./extensionCheck') function modulePathResolver( handlersPath, route, apiDoc ) { const pathKey = route.openApiRoute.substring(route.basePath.length) const schema = apiDoc.paths[pathKey][route.method.toLowerCase()] const controller = schema.tags[0] const operationId = schema['operationId'] const modulePath = path.join(handlersPath, controller) const handler = require(modulePath) if (handler[operationId] === undefined) { throw new Error( `Could not find a [${operationId}] function in ${modulePath} when trying to route [${route.method} ${route.expressRoute}].`, ) } return extensionCheck.bind(handler[operationId]) } function buildResponseValidationConfig(willValidateResponse) { if (willValidateResponse){ return { onError: (error, body, req) => { logger.writeError('rest', 'responseValidation', { error, request: logger.serializeRequest(req), body }) } } } else { return false } } function logAppConfig(config) { logger.writeInfo('bootstrapUtils', 'starting bootstrap', { version: config.version, env: logger.serializeEnvironment(), dirname: __dirname, cwd: process.cwd() }) logger.writeInfo('bootstrapUtils', 'configuration', config) } module.exports = { modulePathResolver, buildResponseValidationConfig, logAppConfig } ================================================ FILE: api/source/bootstrap/client.js ================================================ const express = require('express') const path = require('path') const writer = require('../utils/writer') const logger = require('../utils/logger') const config = require('../utils/config') function serveClient(app) { if (config.client.disabled) { logger.writeDebug('serveClient', 'client', {message: 'client disabled'}) return } try { serveClientEnv(app) serveStaticFiles(app) logger.writeDebug('serveClient', 'client', { message: 'succeeded setting up client' }) } catch (err) { logger.writeError('serveClient', 'client', {message: err.message, stack: err.stack}) } } function getClientEnv(){ const envJS = `const STIGMAN = { Env: { version: "${config.version}", consoleMode: "${config.client.consoleMode}", apiBase: "${config.client.apiBase}", displayAppManagers: ${config.client.displayAppManagers}, stateEvents: ${config.client.stateEvents}, welcome: { image: "${config.client.welcome.image}", title: "${config.client.welcome.title.replace(/"/g, '\\"')}", message: "${config.client.welcome.message.replace(/"/g, '\\"')}", link: "${config.client.welcome.link}" }, commit: { branch: "${config.commit.branch}", sha: "${config.commit.sha}", tag: "${config.commit.tag}", describe: "${config.commit.describe}" }, oauth: { authority: "${config.client.authority}", clientId: "${config.client.clientId}", extraScopes: "${config.client.extraScopes ?? ''}", scopePrefix: "${config.client.scopePrefix ?? ''}", responseMode: "${config.client.responseMode}", reauthAction: "${config.client.reauthAction}", strictPkce: ${config.client.strictPkce}, audienceValue: "${config.oauth.audienceValue ?? ''}", claims: ${JSON.stringify(config.oauth.claims)}, idleTimeoutUser: ${config.client.idleTimeoutUser}, idleTimeoutAdmin: ${config.client.idleTimeoutAdmin}, }, experimental: { appData: "${config.experimental.appData}", logStream: "${config.experimental.logStream}" } } }` return envJS } function serveClientEnv(app){ const envJS = getClientEnv() app.get('/js/Env.js', function (req, res) { req.component = 'static' writer.writeWithContentType(res, { payload: envJS, contentType: "application/javascript" }) }) } function serveStaticFiles(app){ const staticPath = path.join(__dirname, "../", config.client.directory) logger.writeDebug('serveStaticFiles', 'client', {client_static: staticPath}) const expressStatic = express.static(staticPath) app.use('/', (req, res, next) => { req.component = 'static' expressStatic(req, res, next) }) } module.exports = { serveClient, } ================================================ FILE: api/source/bootstrap/dependencies.js ================================================ const logger = require('../utils/logger') const auth = require('../utils/auth') const db = require('../service/utils') const { serializeError } = require('../utils/serializeError') const state = require('../utils/state') async function initializeDependencies() { try { await Promise.all([ auth.initializeAuth(), db.initializeDatabase() ]) } catch (e) { logger.writeError('dependencies', 'fail', {message:'Unable to setup dependencies'}) state.setState('fail') } } module.exports = { initializeDependencies } ================================================ FILE: api/source/bootstrap/docs.js ================================================ const express = require('express') const path = require('path') const fs = require('fs') const logger = require('../utils/logger') const config = require('../utils/config') const swaggerUi = require('swagger-ui-express') const jsyaml = require('js-yaml') function serveDocs(app) { if (config.docs.disabled) { logger.writeDebug('serveDocs', 'client', {message: 'documentation disabled'}) return } try { app.use('/docs', express.static(path.join(__dirname, "../", config.docs.docsDirectory))) logger.writeDebug('serveDocs', 'client', {message: 'succeeded setting up documentation'}) } catch (err) { logger.writeError('serveDocs', 'client', {message: err.message, stack: err.stack}) } } function serveApiDocs(app) { const oasDoc = getOAS() if (config.swaggerUi.enabled) { configureSwaggerUI(app, oasDoc) } else { logger.writeDebug('serveApiDocs', 'SwaggerUI', { message: 'Swagger UI is disabled in configuration' }) } } function getOAS(){ // Read and modify OpenAPI specification const apiSpecPath = path.join(__dirname, '../specification/stig-manager.yaml') let spec = fs.readFileSync(apiSpecPath, 'utf8') let oasDoc = jsyaml.load(spec) // Replace with config values oasDoc.info.version = config.version oasDoc.servers[0].url = config.swaggerUi.server oasDoc.components.securitySchemes.oauth.openIdConnectUrl = `${config.client.authority}/.well-known/openid-configuration` config.definition = oasDoc return oasDoc } function configureSwaggerUI(app, oasDoc){ app.use('/api-docs', swaggerUi.serve, swaggerUi.setup(oasDoc, null, { oauth2RedirectUrl: config.swaggerUi.oauth2RedirectUrl, oauth: { usePkceWithAuthorizationCodeGrant: true } })) app.get(['/swagger.json','/openapi.json'], function(req, res) { res.json(oasDoc) }) logger.writeDebug('configureSwaggerUI', 'client', {message: 'succeeded setting up swagger-ui'}) } module.exports = { serveDocs, serveApiDocs } ================================================ FILE: api/source/bootstrap/errorHandlers.js ================================================ const logger = require('../utils/logger') const smErrors = require('../utils/error') const { serializeError } = require('../utils/serializeError') const path = require('path') function configureErrorHandlers(app) { // express-openapi-validator does not expose top-level HttpError in their index.js. // We can get it from framework.types.js // CAUTION: We break here if express-openapi-validator changes this const eovPath = path.dirname(require.resolve('express-openapi-validator')) const eovErrors = require(path.join(eovPath, 'framework', 'types.js')) app.use((err, req, res, next) => { if (!(err instanceof smErrors.SmError) && !(err instanceof eovErrors.HttpError)) { logger.writeError('rest', 'error', { request: logger.serializeRequest(req), error: serializeError(err) }) } res.errorBody = { error: err.message, code: err.code, detail: err.detail} if (err.status === 500 || !(err.status)) res.errorBody.stack = err.stack if (!res._headerSent) { res.status(err.status || 500).header(err.headers).json(res.errorBody) } else { res.write(JSON.stringify(res.errorBody) + '\n') res.end() } }) } module.exports = configureErrorHandlers ================================================ FILE: api/source/bootstrap/extensionCheck.js ================================================ const SmError = require('../utils/error') function extensionCheck(req, res, next) { if (req.openapi?.schema['x-elevation-required'] && !req.query.elevate) { next(new SmError.ElevationError()) return } this(req, res, next) } module.exports = extensionCheck ================================================ FILE: api/source/bootstrap/middlewares.js ================================================ const path = require('node:path') const multer = require('multer') const express = require('express') const cors = require('cors') const { middleware: openApiMiddleware } = require('express-openapi-validator') const config = require('../utils/config') const { modulePathResolver, buildResponseValidationConfig } = require('./bootstrapUtils') const auth = require('../utils/auth') const configureErrorHandlers = require('./errorHandlers') const { requestLogger } = require('../utils/logger') const state = require('../utils/state') const logger = require('../utils/logger') function configureMiddleware(app) { // Must run before any app.use() call: Express's lazyrouter binds the query // parser at the moment the first middleware is registered and ignores // later changes. app.set('query parser', 'simple') const middlewareConfigFunctions = [ configureMulter, configureExpress, configureCors, configureLogging, configureServiceCheck, configureAuth, configureOpenApi, configureErrorHandlers, ] logger.writeInfo('middleware', 'bootstrap', { message: 'configuring middleware' }) for (const middlewareConfigFunction of middlewareConfigFunctions) { middlewareConfigFunction(app) } logger.writeInfo('middleware', 'bootstrap', { message: 'middleware configured' }) } function configureMulter(app) { let storage = multer.memoryStorage() const upload = multer({ storage, limits: { fileSize: parseInt(config.http.maxUpload) } }) app.use(upload.single('importFile')) } function configureCors(app) { app.use(cors()) } function configureLogging(app) { app.use(requestLogger) } function configureServiceCheck(app) { app.use((req, res, next) => { try { if ( state.currentState !== 'available' && req.url.startsWith('/api') && !req.url.startsWith('/api/op/state')) { res.status(503).json(state.apiState) } else { next() } } catch (e) { next(e) } }) } function configureAuth(app) { app.use('/api', auth.validateToken) app.use('/api', auth.setupUser) } function configureExpress(app) { app.use(express.urlencoded( {extended: true})) app.use(express.json({ strict: false, // allow root to be any JSON value, per https://datatracker.ietf.org/doc/html/rfc7159#section-2 limit: parseInt(config.http.maxJsonBody) })) //Handle JSON request body } function configureOpenApi(app) { const apiSpecPath = path.join(__dirname, '../specification/stig-manager.yaml') app.use( "/api", openApiMiddleware ({ apiSpec: apiSpecPath, validateRequests: { coerceTypes: false, allowUnknownQueryParameters: false, }, validateResponses: buildResponseValidationConfig(config.settings.responseValidation === "logOnly"), validateApiSpec: true, $refParser: { mode: 'dereference', }, operationHandlers: { basePath: path.join(__dirname, '../controllers'), resolver: modulePathResolver, }, validateSecurity: { handlers:{ oauth: auth.validateOauthSecurity } }, fileUploader: false })) } module.exports = configureMiddleware ================================================ FILE: api/source/bootstrap/server.js ================================================ const logger = require('../utils/logger') const path = require('node:path') const logSocket = require('../utils/logSocket') const state = require('../utils/state') const OperationSvc = require(`../service/OperationService`) const { serializeError } = require('../utils/serializeError') const config = require('../utils/config') const { initializeDependencies } = require('./dependencies') function setupTls() { if (config.http.tls?.key_file && config.http.tls?.cert_file) { const fs = require('node:fs') let key, cert try { key = fs.readFileSync(config.http.tls.key_file) } catch (e) { logger.writeError('server', 'tls_key_read_error', {message: `Failed reading TLS key file: ${config.http.tls.key_file}`, error: serializeError(e)}) throw e } try { cert = fs.readFileSync(config.http.tls.cert_file) } catch (e) { logger.writeError('server', 'tls_cert_read_error', {message: `Failed reading TLS certificate file: ${config.http.tls.cert_file}`, error: serializeError(e)}) throw e } const tlsOptions = { key: key, cert: cert } if (config.http.tls.key_passphrase) { tlsOptions.passphrase = config.http.tls.key_passphrase } return tlsOptions } else { return null } } async function startServer(app, startTime) { let server if (config.http.tls?.key_file && config.http.tls?.cert_file) { const https = require('node:https') const tlsOptions = setupTls() logger.writeInfo('server', 'tls_enabled', {message: 'Creating server with TLS/HTTPS'}) server = https.createServer(tlsOptions, app) } else { const http = require('node:http') server = http.createServer(app) } server.on('upgrade', (request) => { logger.writeInfo('server', 'upgrade-request', { url: request.url, headers: request.headers, remoteAddress: request.socket.remoteAddress }) }) const onListenError = (e) => { logger.writeError('server', 'shutdown', { message: `Server failed establishing or while listening on port ${config.http.port}`, error: serializeError(e) }) state.setState('fail') } server.on('error', onListenError) await logSocket.setupLogSocket(server, path.join(__dirname, '../specification/log-socket.yaml')) server.listen(config.http.port, async function () { server.removeListener('error', onListenError) logger.writeInfo('server', 'listening', { port: config.http.port, api: '/api', client: config.client.disabled ? undefined : '/', documentation: config.docs.disabled ? undefined : '/docs', swagger: config.swaggerUi.enabled ? '/api-docs' : undefined }) await initializeDependencies() // Set/change classification if indicated await applyConfigurationSettings() logStartupDuration(startTime) }) } async function applyConfigurationSettings() { if (config.settings.setClassification) { await OperationSvc.setConfigurationItem('classification', config.settings.setClassification) } } function logStartupDuration(startTime) { const endTime = process.hrtime.bigint() logger.writeInfo('server', 'started', { durationS: Number(endTime - startTime) / 1e9 }) } module.exports = startServer ================================================ FILE: api/source/bootstrap/signals.js ================================================ const state = require('../utils/state') const logger = require('../utils/logger') // This function sets up signal handlers for the process // and listens for SIGINT, SIGTERM, and SIGHUP signals module.exports.setupSignalHandlers = () => { const signals = ['SIGINT', 'SIGTERM', 'SIGHUP']; const signalHandler = (signal) => { logger.writeInfo('signals','signal', {signal}) state.setState('stop') } for (const signal of signals) { process.on(signal, signalHandler) } } ================================================ FILE: api/source/controllers/Asset.js ================================================ 'use strict'; const writer = require('../utils/writer') const config = require('../utils/config') const escape = require('../utils/escape') const AssetService = require(`../service/AssetService`) const CollectionService = require(`../service/CollectionService`) const Collection = require('./Collection') const Security = require('../utils/roles') const dbUtils = require(`../service/utils`) const {XMLBuilder} = require("fast-xml-parser") const SmError = require('../utils/error') const {escapeForXml} = require('../utils/escape') module.exports.createAsset = async function createAsset (req, res, next) { try { let projections = req.query.projection let assets = req.body const collectionId = req.body.collectionId const grant = req.userObject.grants[collectionId] if (!grant || grant.roleId < 3) throw new SmError.PrivilegeError() assets.noncomputing = assets.hasOwnProperty("noncomputing") ? (assets.noncomputing ? 1 : 0) : 0 assets = [assets] const failures = await dbUtils.createAssetValidation({assets, collectionId}) if (failures.length > 0) { throw new SmError.UnprocessableError(failures) } let assetId assetId = await AssetService.createAssets({assets, collectionId, svcStatus: res.svcStatus}) const response = await AssetService.getAsset({ assetId, projections, grant, }) res.status(201).json(response) } catch (err) { next(err) } } module.exports.createAssets = async function createAssets (req, res, next) { try { let projections = req.query.projection const collectionId = req.params.collectionId let assets = req.body let dryRun = req.query.dryRun const grant = req.userObject.grants[collectionId] if (!grant || grant.roleId < 3) throw new SmError.PrivilegeError() // if batch normalize assets (put collection Id into the asset object) and make non-computing a 'boolean int' assets = assets.map(asset => ({ ...asset, collectionId, noncomputing: asset.hasOwnProperty("noncomputing") ? (asset.noncomputing ? 1 : 0) : 0 })) const failures = await dbUtils.createAssetValidation({assets, collectionId}) if (failures.length > 0) { res.status(200).json({ error: 'Validation Error', detail: failures }) return } if(dryRun) { res.status(204).send() return } let assetIds assetIds = await AssetService.createAssets( {assets, collectionId, svcStatus: res.svcStatus}) const response = await AssetService.getAssets({ filter: { collectionId: collectionId, assetIds, }, projections, grant, }) res.status(201).json(response) } catch (err) { next(err) } } module.exports.deleteAsset = async function deleteAsset (req, res, next) { try { let projections = req.query.projection const { assetId, grant } = await getAssetInfoAndVerifyAccess(req) const response = await AssetService.getAsset({assetId, projections, grant}) await AssetService.deleteAsset(assetId, req.userObject.userId, res.svcStatus) res.json(response) } catch (err) { next(err) } } module.exports.removeStigFromAsset = async function (req, res, next) { try { let benchmarkId = req.params.benchmarkId const {assetId, grant} = await getAssetInfoAndVerifyAccess(req) await AssetService.removeStigFromAsset({assetId, benchmarkId, grant, svcStatus: res.svcStatus}) const response = await AssetService.getStigsByAsset({assetId, grant}) res.json(response) } catch (err) { next(err) } } module.exports.removeStigsFromAsset = async function removeStigsFromAsset (req, res, next) { try { const {assetId, grant} = await getAssetInfoAndVerifyAccess(req) await AssetService.removeStigsFromAsset(assetId, grant, res.svcStatus) const response = await AssetService.getStigsByAsset({assetId, grant}) res.json(response) } catch (err) { next(err) } } module.exports.exportAssets = async function exportAssets (projections, elevate, userObject) { // let assets = await AssetService.getAssets({projections}) // return assets } module.exports.getAsset = async function (req, res, next) { try { const assetId = req.params.assetId const projections = req.query.projection const grant = await dbUtils.getGrantByAssetId(assetId, req.userObject.grants) if (!grant) throw new SmError.PrivilegeError() const response = await AssetService.getAsset({assetId, projections, grant}) if (!response) throw new SmError.PrivilegeError() res.json(response) } catch (err) { next(err) } } module.exports.getAssets = async function (req, res, next) { try { const collectionId = req.query.collectionId const name = req.query.name const nameMatch = req.query['name-match'] const benchmarkId = req.query.benchmarkId const metadata = req.query.metadata const labelIds = req.query.labelId const labelNames = req.query.labelName const labelMatch = req.query.labelMatch const projections = req.query.projection const grant = req.userObject.grants[collectionId] if (!grant) throw new SmError.PrivilegeError('No Grant in Collection') const response = await AssetService.getAssets({ filter: { collectionId, labels: {labelIds, labelNames, labelMatch}, name, nameMatch, benchmarkId, metadata }, projections, grant }) res.json(response) } catch (err) { next(err) } } module.exports.getStigsByAsset = async function (req, res, next) { try { const {assetId, grant} = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Restricted) const response = await AssetService.getStigsByAsset({assetId, grant} ) res.json(response) } catch (err) { next(err) } } module.exports.getChecklistByAssetStig = async function getChecklistByAssetStig (req, res, next) { try { const assetId = req.params.assetId const benchmarkId = req.params.benchmarkId const revisionStr = req.params.revisionStr const format = req.query.format || 'json' const projections = req.query.projection const access = await dbUtils.getUserAssetStigAccess({assetId, benchmarkId, grants: req.userObject.grants}) if (access === 'none') throw new SmError.PrivilegeError() const checklist = await AssetService.getChecklistByAssetStig(assetId, benchmarkId, revisionStr, format, projections, req.userObject ) if (format.startsWith('json')) { res.json(format === 'json-access' ? {access, checklist} : checklist) return } const dateString = escape.filenameComponentFromDate() const fileBasename = `${checklist.marking}_${checklist.assetName}-${benchmarkId}-${checklist.revisionStrResolved}` if (format === 'cklb') { checklist.cklb.title = fileBasename writer.writeInlineFile(res, JSON.stringify(checklist.cklb), `${fileBasename}_${dateString}.cklb`, 'application/json') // revisionStrResolved provides specific rev string, if "latest" was asked for. } else if (format === 'ckl') { const builder = new XMLBuilder({ attributeNamePrefix : "@_", textNodeName : "#text", ignoreAttributes : true, format: true, indentBy: " ", supressEmptyNode: false, processEntities: false, tagValueProcessor: escapeForXml, attrValueProcessor: escapeForXml }) let xml = `\n\n\n` xml += builder.build(checklist.xmlJs) writer.writeInlineFile(res, xml, `${fileBasename}_${dateString}.ckl`, 'application/xml') // revisionStrResolved provides specific rev string, if "latest" was asked for. } else if (format === 'xccdf') { const builder = new XMLBuilder({ attributeNamePrefix : "@_", textNodeName : "#text", ignoreAttributes : false, cdataTagName: "__cdata", cdataPositionChar: "\\c", format: true, indentBy: " ", supressEmptyNode: true, processEntities: false, tagValueProcessor: escapeForXml, attrValueProcessor: escapeForXml }) let xml = `\n\n\n` xml += builder.build(checklist.xmlJs) writer.writeInlineFile(res, xml, `${fileBasename}-xccdf_${dateString}.xml`, 'application/xml') // revisionStrResolved provides specific rev string, if "latest" was asked for. } } catch (err) { next(err) } } module.exports.getChecklistByAsset = async function (req, res, next) { try { const {assetId, grant} = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Restricted) const format = req.query.format //default of .ckl provided by EOV const assetResponse = await AssetService.getAsset({assetId, projections: ['stigs'], grant} ) const availableBenchmarkIds = assetResponse.stigs.map( r => r.benchmarkId ) if (availableBenchmarkIds.length === 0) { res.status(204).end() return } const requestedBenchmarkIds = req.query.benchmarkId ?? availableBenchmarkIds if (!requestedBenchmarkIds.every( requestedBenchmarkId => availableBenchmarkIds.includes(requestedBenchmarkId))) { throw new SmError.ClientError('Asset is not mapped to all requested benchmarkIds') } const stigs = requestedBenchmarkIds.map( benchmarkId => ({benchmarkId, revisionStr: 'latest'}) ) const response = await AssetService.getChecklistByAsset(assetId, stigs, format) const dateString = escape.filenameComponentFromDate() if (format === 'cklb') { writer.writeInlineFile(res, JSON.stringify(response.cklb), `${response.assetName}_${dateString}.cklb`, 'application/json') } else if (format === 'ckl') { const builder = new XMLBuilder({ attributeNamePrefix : "@_", textNodeName : "#text", ignoreAttributes : true, format: true, indentBy: " ", supressEmptyNode: false, processEntities: false, tagValueProcessor: escapeForXml, attrValueProcessor: escapeForXml }) let xml = `\n\n\n` xml += builder.build(response.xmlJs) writer.writeInlineFile(res, xml, `${response.marking}_${response.assetName}_${dateString}.ckl`, 'application/xml') } } catch (err) { next(err) } } module.exports.getAssetsByStig = async function getAssetsByStig (req, res, next) { try { const benchmarkId = req.params.benchmarkId const labelIds = req.query.labelId const labelNames = req.query.labelName const labelMatch = req.query.labelMatch const projections = req.query.projection const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const response = await AssetService.getAssetsByStig({ collectionId, benchmarkId, labels: {labelIds, labelNames, labelMatch}, projections, grant }) res.json(response) } catch (err) { next(err) } } module.exports.replaceAsset = async function replaceAsset (req, res, next) { try { const projections = req.query.projection const body = req.body const {assetId, grant} = await getAssetInfoAndVerifyAccess(req) const currentAsset = await AssetService.getAsset({assetId, projections, grant}) // Check if the asset is being transferred const transferring = body.collectionId && currentAsset.collection.collectionId !== body.collectionId ? {oldCollectionId: currentAsset.collection.collectionId, newCollectionId: body.collectionId} : null if (transferring) { // If so, Check if the user has an appropriate grant to the asset's updated collection const updatedCollectionGrant = req.userObject.grants[body.collectionId] if ( !updatedCollectionGrant || updatedCollectionGrant.roleId < 3 ) { throw new SmError.PrivilegeError(`insufficient privilege in destination collection to transfer this asset.`) } } await AssetService.updateAsset({ assetId, body, transferring, svcStatus: res.svcStatus }) const asset = await AssetService.getAsset({assetId, projections, grant}) res.json(asset) } catch (err) { next(err) } } module.exports.attachAssetsToStig = async function attachAssetsToStig (req, res, next) { try { let benchmarkId = req.params.benchmarkId let assetIds = req.body let projections = req.query.projection const { collectionId, grant } = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) let collection = await CollectionService.getCollection( collectionId, ['assets'], false, req.userObject) let collectionAssets = collection.assets.map( a => a.assetId) if (assetIds.every( a => collectionAssets.includes(a))) { await AssetService.attachAssetsToStig( collectionId, benchmarkId, assetIds ) let response = await AssetService.getAssetsByStig({collectionId, benchmarkId, projections, grant}) res.json(response) } else { throw new SmError.PrivilegeError('One or more assetId is not a Collection member.') } } catch (err) { next(err) } } module.exports.attachStigToAsset = async function attachStigToAsset (req, res, next) { try { let benchmarkId = req.params.benchmarkId const {assetId, grant} = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Manage) await AssetService.attachStigToAsset({ assetId, benchmarkId, grant, svcStatus: res.svcStatus }) const response = await AssetService.getStigsByAsset({assetId, grant}) res.json(response) } catch (err) { next(err) } } module.exports.updateAsset = async function updateAsset (req, res, next) { try { const projections = req.query.projection const body = req.body const {assetId, grant} = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Manage) // If this user has no grants permitting access to the asset, the response will be undefined const currentAsset = await AssetService.getAsset({assetId, projections, grant} ) // if (!currentAsset) { // throw new SmError.PrivilegeError('User has insufficient privilege to modify this asset.') // } // // Check if the user has an appropriate grant to the asset's collection // const currentCollectionGrant = req.userObject.grants[currentAsset.collection.collectionId] // if ( !currentCollectionGrant || currentCollectionGrant.roleId < 3 ) { // throw new SmError.PrivilegeError(`User has insufficient privilege in collectionId ${currentAsset.collection.collectionId} to modify this asset.`) // } // Check if the asset's collectionId is being changed const transferring = body.collectionId && currentAsset.collection.collectionId !== body.collectionId ? {oldCollectionId: currentAsset.collection.collectionId, newCollectionId: body.collectionId} : null if (transferring) { // If so, Check if the user has an appropriate grant to the asset's updated collection const updatedCollectionGrant = req.userObject.grants[body.collectionId] if ( !updatedCollectionGrant || updatedCollectionGrant.roleId < 3 ) { throw new SmError.PrivilegeError(`User has insufficient privilege in destination collection to transfer this asset.`) } } await AssetService.updateAsset({ assetId, body, projections, transferring, currentCollectionId: currentAsset.collection.collectionId, userObject: req.userObject, svcStatus: res.svcStatus }) const response = await AssetService.getAsset({assetId, projections, grant}) res.json(response) } catch (err) { next(err) } } module.exports.getAssetMetadata = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Restricted) let result = await AssetService.getAssetMetadata(assetId, req.userObject) res.json(result) } catch (err) { next(err) } } module.exports.patchAssetMetadata = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req) let metadata = req.body await AssetService.patchAssetMetadata(assetId, metadata) let result = await AssetService.getAssetMetadata(assetId) res.json(result) } catch (err) { next(err) } } module.exports.putAssetMetadata = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req) let body = req.body await AssetService.putAssetMetadata(assetId, body) let result = await AssetService.getAssetMetadata(assetId) res.json(result) } catch (err) { next(err) } } module.exports.getAssetMetadataKeys = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Restricted) let result = await AssetService.getAssetMetadataKeys(assetId, req.userObject) if (!result) { throw new SmError.NotFoundError('metadata keys not found') } res.json(result) } catch (err) { next(err) } } module.exports.getAssetMetadataValue = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req, Security.ROLES.Restricted) let key = req.params.key let result = await AssetService.getAssetMetadataValue(assetId, key, req.userObject) if (!result) { throw new SmError.NotFoundError('metadata key not found') } res.json(result) } catch (err) { next(err) } } module.exports.putAssetMetadataValue = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req) let key = req.params.key let value = req.body await AssetService.putAssetMetadataValue(assetId, key, value) res.status(204).send() } catch (err) { next(err) } } module.exports.deleteAssetMetadataKey = async function (req, res, next) { try { let { assetId } = await getAssetInfoAndVerifyAccess(req) let key = req.params.key await AssetService.deleteAssetMetadataKey(assetId, key, req.userObject) res.status(204).send() } catch (err) { next(err) } } module.exports.patchAssets = async function (req, res, next) { try { // feature supports delete only const collectionId = getCollectionIdAndVerifyAccess(req, Security.ROLES.Manage) const patchRequest = req.body // optimization: replace below with targeted sql query, select from asset where assetId in ? and collectionId != ? const collection = await CollectionService.getCollection( collectionId, ['assets'], false, req.userObject) const collectionAssets = collection.assets.map( a => a.assetId) if (!patchRequest.assetIds.every( a => collectionAssets.includes(a))) { throw new SmError.PrivilegeError('One or more assetId is not a Collection member.') } await AssetService.deleteAssets(patchRequest.assetIds, req.userObject.userId, res.svcStatus) res.json({ operation: 'deleted', assetIds: patchRequest.assetIds }) } catch (err) { next(err) } } function getCollectionIdAndVerifyAccess(request, minimumRole = Security.ROLES.Manage) { let collectionId = request.query.collectionId const grant = request.userObject.grants[collectionId] if (grant?.roleId < minimumRole || !grant) { throw new SmError.PrivilegeError() } return collectionId } /** * Retrieves asset information and verifies user access to the asset which the operation is effecting. * Also, ensures that the user has sufficient access level to perform the operation. * @param {Object} request - The request object. * @returns {Promise} - A promise that resolves to an object containing the assetId and a grant. * @throws {SmError.PrivilegeError} - user does not have sufficient access level or the asset does not exist. */ async function getAssetInfoAndVerifyAccess(request, roleId = Security.ROLES.Manage) { const assetId = request.params.assetId const row = await dbUtils.selectCollectionByAssetId(assetId) const grant = request.userObject.grants[row?.collectionId] // check if user has sufficient access level if (!grant || grant.roleId < roleId) { throw new SmError.PrivilegeError("Insufficient access to this asset's collection.") } return {assetId, grant} } ================================================ FILE: api/source/controllers/Collection.js ================================================ 'use strict'; const writer = require('../utils/writer') const config = require('../utils/config') const escape = require('../utils/escape') const CollectionService = require(`../service/CollectionService`) const AssetService = require(`../service/AssetService`) const STIGService = require(`../service/STIGService`) const UserService = require(`../service/UserService`) const Serialize = require(`../utils/serializers`) const Security = require('../utils/roles') const SmError = require('../utils/error') const Archiver = require('archiver') const {XMLBuilder} = require("fast-xml-parser") const {escapeForXml} = require('../utils/escape') const dbUtils = require('../service/utils') module.exports.defaultSettings = { fields: { detail: { enabled: 'always', required: 'always' }, comment: { enabled: 'findings', required: 'findings' } }, status: { canAccept: true, resetCriteria: 'result', minAcceptGrant: 3 }, history: { maxReviews: 5 }, importOptions:{ autoStatus: { fail: 'saved', notapplicable: 'saved', pass: 'saved' }, unreviewed: 'commented', unreviewedCommented: 'informational', emptyDetail: 'replace', emptyComment: 'ignore', allowCustom: true } } module.exports.createCollection = async function createCollection (req, res, next) { try { const projection = req.query.projection const elevate = req.query.elevate const body = req.body if ( elevate || req.userObject.privileges.create_collection ) { if (elevate && (body.settings !== undefined || body.labels !== undefined || body.metadata !== undefined)) { throw new SmError.PrivilegeError('Elevated requests cannot set collection settings, labels, or metadata.') } if (!hasUniqueGrants(body.grants)) { throw new SmError.UnprocessableError('Duplicate user or user group in grant array') } const userIds = body.grants.map(g => g.userId).filter(Boolean) const invalidUserIds = await dbUtils.selectInvalidUserIds(userIds) if (invalidUserIds.length > 0) { throw new SmError.UserInconsistentError() } try { const response = await CollectionService.createCollection( body, projection, req.userObject, res.svcStatus) res.status(201).json(response) } catch (err) { // This is MySQL specific, should abstract if (err.code === 'ER_DUP_ENTRY') { throw new SmError.UnprocessableError('Duplicate name exists.') } else { throw err } } } else { throw new SmError.PrivilegeError() } } catch (err) { next(err) } } module.exports.deleteCollection = async function deleteCollection (req, res, next) { try { const elevate = req.query.elevate const projections = req.query.projection const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Owner, true) const response = await CollectionService.getCollection(collectionId, projections, elevate, req.userObject) await CollectionService.deleteCollection(collectionId, req.userObject.userId) res.json(response) } catch (err) { next(err) } } module.exports.exportCollections = async function exportCollections (projection, elevate, userObject) { try { return await CollectionService.queryCollections({projection, elevate}) } catch (err) { next(err) } } module.exports.getChecklistByCollectionStig = async function getChecklistByCollectionStig (req, res, next) { try { const benchmarkId = req.params.benchmarkId const revisionStr = req.params.revisionStr const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const response = await CollectionService.getChecklistByCollectionStig(collectionId, benchmarkId, revisionStr, req.userObject ) res.json(response) } catch (err) { next(err) } } module.exports.getCollection = async function getCollection (req, res, next) { try { const projection = req.query.projection const elevate = req.query.elevate const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted, true) const response = await CollectionService.getCollection(collectionId, projection, elevate, req.userObject ) res.status(typeof response === 'undefined' ? 204 : 200).json(response) } catch (err) { next(err) } } module.exports.getCollections = async function getCollections (req, res, next) { try { const projections = req.query.projection const elevate = req.query.elevate const name = req.query.name const nameMatch = req.query['name-match'] const metadata = req.query.metadata const response = await CollectionService.queryCollections({ filter: {name, nameMatch, metadata}, projections, elevate, grants: req.userObject.grants, userId: req.userObject.userId }) res.json(response) } catch (err) { next(err) } } module.exports.getFindingsByCollection = async function getFindingsByCollection (req, res, next) { try { const aggregator = req.query.aggregator const benchmarkId = req.query.benchmarkId const assetId = req.query.assetId const acceptedOnly = req.query.acceptedOnly const projections = req.query.projection const {collectionId, grant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const response = await CollectionService.getFindingsByCollection({collectionId, aggregator, benchmarkId, assetId, acceptedOnly, projections, grant}) res.json(response) } catch (err) { next(err) } } module.exports.getPoamByCollection = async function getPoamByCollection (req, res, next) { try { const { aggregator, benchmarkId, assetId, acceptedOnly, date, office, status, mccastPackageId, mccastAuthName, format } = req.query const defaults = { date, office, status, mccastPackageId, mccastAuthName } const {collectionId, grant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const findings = await CollectionService.getFindingsByCollection({ collectionId, aggregator, benchmarkId, assetId, acceptedOnly, projections: [ 'rulesWithDiscussion', 'groups', 'assets', 'stigs', 'ccis' ], grant}) const poFns = { EMASS: Serialize.poamObjectFromFindings, MCCAST: Serialize.mccastPoamObjectFromFindings } const xlsx = await Serialize.xlsxFromPoamObject(poFns[format](findings, defaults), format) writer.writeInlineFile( res, xlsx, `POAM-${format}-${grant.name}_${escape.filenameComponentFromDate()}.xlsx`, 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet') } catch (err) { next(err) } } // module.exports.getStigAssetsByCollectionUser = async function getStigAssetsByCollectionUser (req, res, next) { // try { // const userId = req.params.userId // const { collectionId } = await getCollectionInfoAndCheckPermission(req) // const response = await CollectionService.getStigAssetsByCollectionUser(collectionId, userId, req.userObject ) // res.json(response) // } // catch (err) { // next(err) // } // } module.exports.getStigsByCollection = async function getStigsByCollection (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const labelIds = req.query.labelId const labelNames = req.query.labelName const labelMatch = req.query.labelMatch const projections = req.query.projection const response = await CollectionService.getStigsByCollection({collectionId, labelIds, labelNames, labelMatch, projections, grant}) res.json(response) } catch (err) { next(err) } } module.exports.getStigByCollection = async function getStigByCollection (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const benchmarkId = req.params.benchmarkId const projections = req.query.projection const response = await CollectionService.getStigsByCollection({collectionId, projections, grant, benchmarkId}) if (!response[0]) { res.status(204) } res.json(response[0]) } catch (err) { next(err) } } module.exports.replaceCollection = async function replaceCollection (req, res, next) { try { const elevate = req.query.elevate const {collectionId, grant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const projection = req.query.projection const body = req.body if (elevate && (body.settings !== undefined || body.labels !== undefined || body.metadata !== undefined)) { throw new SmError.PrivilegeError('Elevated requests cannot set collection settings, labels, or metadata.') } if (!hasUniqueGrants(body.grants)) { throw new SmError.UnprocessableError('Duplicate user in grant array') } const userIds = body.grants.map(g => g.userId).filter(Boolean) const invalidUserIds = await dbUtils.selectInvalidUserIds(userIds) if (invalidUserIds.length > 0) { throw new SmError.UserInconsistentError() } const existingGrants = (await CollectionService.getCollection(collectionId, ['grants'], false, req.userObject)) ?.grants .map(g => { const flattenedGrant = {roleId: g.roleId} if (g.user) { flattenedGrant.userId = g.user.userId } else { flattenedGrant.userGroupId = g.userGroup.userGroupId } return flattenedGrant }) if (!elevate && (grant.roleId !== Security.ROLES.Owner && !requestedOwnerGrantsMatchExisting(body.grants, existingGrants))) { throw new SmError.PrivilegeError('Cannot create or modify owner grants.') } let response = await CollectionService.replaceCollection(collectionId, body, projection, req.userObject, res.svcStatus) res.json(response) } catch (err) { next(err) } } module.exports.updateCollection = async function updateCollection (req, res, next) { try { const elevate = req.query.elevate const {collectionId, grant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const projection = req.query.projection const body = req.body if (elevate && (body.settings !== undefined || body.labels !== undefined || body.metadata !== undefined)) { throw new SmError.PrivilegeError('Elevated requests cannot set collection settings, labels, or metadata.') } if (body.grants) { if (!hasUniqueGrants(body.grants)) { throw new SmError.UnprocessableError('Duplicate user in grant array') } const userIds = body.grants.map(g => g.userId).filter(Boolean) const invalidUserIds = await dbUtils.selectInvalidUserIds(userIds) if (invalidUserIds.length > 0) { throw new SmError.UserInconsistentError() } const existingGrants = (await CollectionService.getCollection(collectionId, ['grants'], false, req.userObject )) ?.grants .map(g => { const flattenedGrant = {roleId: g.roleId} if (g.user) { flattenedGrant.userId = g.user.userId } else { flattenedGrant.userGroupId = g.userGroup.userGroupId } return flattenedGrant }) if (!elevate && (grant.roleId !== Security.ROLES.Owner && !requestedOwnerGrantsMatchExisting(body.grants, existingGrants))) { throw new SmError.PrivilegeError('Cannot create or modify owner grants.') } } let response = await CollectionService.updateCollection(collectionId, body, projection, req.userObject, res.svcStatus) res.json(response) } catch (err) { next(err) } } function hasUniqueGrants(requestedGrants) { const userItems = {} const userGroupItems = {} for (const grant of requestedGrants) { if (userItems[grant.userId]) return false if (userGroupItems[grant.userGroupId]) return false const itemsObject = grant.userId ? userItems : userGroupItems itemsObject[grant.userId ?? grant.userGroupId] = true } return true } function requestedOwnerGrantsMatchExisting(requestedGrants, existingGrants) { const accumulateOwners = (accumulator, currentValue) => { if (currentValue.roleId === Security.ROLES.Owner) accumulator.push(currentValue.userId ? `U${currentValue.userId}` : `UG${currentValue.userGroupId}`) return accumulator } const haveSameSet = (a, b) => { return a.every(item => b.includes(item)) && b.every(item => a.includes(item)) } const existingOwners = existingGrants.reduce(accumulateOwners, []) const requestedOwners = requestedGrants.reduce(accumulateOwners, []) return !(existingOwners.length !== requestedOwners.length || !haveSameSet(existingOwners, requestedOwners)) } /** * Retrieves collectionId and collection grant and checks user's access grant level or elevate. * Also allows for elevate * @param {Object} request - The request object. * @param {number} minimumRole - The minimum rokle required. Defaults to Security.ROLES.Manage. * @param {boolean} allowElevate - Whether to allow elevation of access level. Defaults to false. * @returns {Promise} - An object containing the collectionId and grant. * @throws {SmError.PrivilegeError} - If the user does not have sufficient privileges. */ async function getCollectionInfoAndCheckPermission(request, minimumRole = Security.ROLES.Manage, supportsElevation = false) { let collectionId = request.params.collectionId const elevate = request.query.elevate const grant = request.userObject.grants[collectionId] // if elevating, check that collection exists if(supportsElevation && elevate) { const exists = await CollectionService.doesCollectionExist(collectionId) if (!exists) { throw new SmError.NotFoundError("Collection not found") } } // If elevate is not set and supported, and the user does not have a grant, or the grant level is below the minimum required, throw an error. if (!( (supportsElevation && elevate) || (grant?.roleId >= minimumRole) )) { throw new SmError.PrivilegeError() } return {collectionId, grant} } module.exports.getCollectionInfoAndCheckPermission = getCollectionInfoAndCheckPermission module.exports.getCollectionMetadata = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let result = await CollectionService.getCollectionMetadata(collectionId, req.userObject) res.json(result) } catch (err) { next(err) } } module.exports.patchCollectionMetadata = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let metadata = req.body await CollectionService.patchCollectionMetadata(collectionId, metadata) let result = await CollectionService.getCollectionMetadata(collectionId) res.json(result) } catch (err) { next(err) } } module.exports.putCollectionMetadata = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let body = req.body await CollectionService.putCollectionMetadata( collectionId, body) let result = await CollectionService.getCollectionMetadata(collectionId) res.json(result) } catch (err) { next(err) } } module.exports.getCollectionMetadataKeys = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let result = await CollectionService.getCollectionMetadataKeys(collectionId, req.userObject) if (!result) { throw new SmError.NotFoundError('metadata keys not found') } res.json(result) } catch (err) { next(err) } } module.exports.getCollectionMetadataValue = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let key = req.params.key let result = await CollectionService.getCollectionMetadataValue(collectionId, key, req.userObject) if (!result) { throw new SmError.NotFoundError('metadata key not found') } res.json(result) } catch (err) { next(err) } } module.exports.putCollectionMetadataValue = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let key = req.params.key let value = req.body await CollectionService.putCollectionMetadataValue(collectionId, key, value) res.status(204).send() } catch (err) { next(err) } } module.exports.deleteCollectionMetadataKey = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req) let key = req.params.key await CollectionService.deleteCollectionMetadataKey(collectionId, key, req.userObject) res.status(204).send() } catch (err) { next(err) } } module.exports.deleteReviewHistoryByCollection = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const retentionDate = req.query.retentionDate const assetId = req.query.assetId let result = await CollectionService.deleteReviewHistoryByCollection(collectionId, retentionDate, assetId) res.json(result) } catch (err) { next(err) } } module.exports.getReviewHistoryByCollection = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Full) const startDate = req.query.startDate const endDate = req.query.endDate const assetId = req.query.assetId const ruleId = req.query.ruleId const status = req.query.status let result = await CollectionService.getReviewHistoryByCollection(collectionId, startDate, endDate, assetId, ruleId, status) res.json(result) } catch (err) { next(err) } } module.exports.getReviewHistoryStatsByCollection = async function (req, res, next) { try { let { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Full) const startDate = req.query.startDate const endDate = req.query.endDate const assetId = req.query.assetId const ruleId = req.query.ruleId const status = req.query.status const projection = req.query.projection let result = await CollectionService.getReviewHistoryStatsByCollection(collectionId, startDate, endDate, assetId, ruleId, status, projection) res.json(result) } catch (err) { next(err) } } module.exports.getCollectionLabels = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const response = await CollectionService.getCollectionLabels( collectionId, grant ) res.json(response) } catch (err) { next(err) } } module.exports.createCollectionLabel = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const labelId = await CollectionService.createCollectionLabel( collectionId, req.body ) const response = await CollectionService.getCollectionLabelById( collectionId, labelId, grant ) res.status(201).json(response) } catch (err) { next(err) } } module.exports.createCollectionLabels = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const createdLabelNames = await CollectionService.createCollectionLabels(collectionId, req.body) const createdLabels = await CollectionService.getCollectionLabelsByName(collectionId, createdLabelNames, grant) res.status(201).json(createdLabels) } catch (err) { next(err) } } module.exports.getCollectionLabelById = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const response = await CollectionService.getCollectionLabelById( collectionId, req.params.labelId, grant ) if (!response) { throw new SmError.NotFoundError() } res.json(response) } catch (err) { next(err) } } module.exports.patchCollectionLabelById = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const affectedRows = await CollectionService.patchCollectionLabelById( collectionId, req.params.labelId, req.body ) if (affectedRows === 0) { throw new SmError.NotFoundError() } const response = await CollectionService.getCollectionLabelById( collectionId, req.params.labelId, grant ) res.json(response) } catch (err) { next(err) } } module.exports.deleteCollectionLabelById = async function (req, res, next) { try { const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const affectedRows = await CollectionService.deleteCollectionLabelById(collectionId, req.params.labelId) if (affectedRows === 0) { throw new SmError.NotFoundError() } res.status(204).end() } catch (err) { next(err) } } module.exports.getAssetsByCollectionLabelId = async function (req, res, next) { try { const {collectionId, grant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const response = await CollectionService.getAssetsByCollectionLabelId( collectionId, req.params.labelId, grant ) res.json(response) } catch (err) { next(err) } } module.exports.putAssetsByCollectionLabelId = async function (req, res, next) { try { const { collectionId } = await getCollectionInfoAndCheckPermission(req) const labelId = req.params.labelId const assetIds = req.body let collection = await CollectionService.getCollection( collectionId, ['assets','labels'], false, req.userObject) if (!collection.labels.find( l => l.labelId === labelId)) { throw new SmError.PrivilegeError('The labelId is not associated with this Collection.') } let collectionAssets = collection.assets.map( a => a.assetId) if (assetIds.every( a => collectionAssets.includes(a))) { await CollectionService.putAssetsByCollectionLabelId( collectionId, labelId, assetIds, res.svcStatus ) const response = await CollectionService.getAssetsByCollectionLabelId( collectionId, req.params.labelId, req.userObject ) res.json(response) } else { throw new SmError.PrivilegeError('One or more assetId is not a Collection member.') } } catch (err) { next(err) } } module.exports.postCklArchiveByCollection = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const mode = req.query.mode || 'mono' const parsedRequest = await processAssetStigRequests (req.body, collectionId, mode, grant) await postArchiveByCollection({ format: `ckl-${mode}`, req, res, parsedRequest }) } catch (err) { next(err) } } module.exports.postCklbArchiveByCollection = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const mode = req.query.mode || 'mono' const parsedRequest = await processAssetStigRequests (req.body, collectionId, mode, grant) await postArchiveByCollection({ format: `cklb-${mode}`, req, res, parsedRequest }) } catch (err) { next(err) } } module.exports.postXccdfArchiveByCollection = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const parsedRequest = await processAssetStigRequests (req.body, collectionId, 'mono', grant) await postArchiveByCollection({ format: 'xccdf', req, res, parsedRequest }) } catch (err) { next(err) } } async function postArchiveByCollection ({format = 'ckl-mono', req, res, parsedRequest}) { const builder = new XMLBuilder({ attributeNamePrefix : "@_", textNodeName : "#text", ignoreAttributes: format.startsWith('ckl-'), cdataTagName: "__cdata", cdataPositionChar: "\\c", format: true, indentBy: " ", supressEmptyNode: format === 'xccdf', processEntities: false, tagValueProcessor: escapeForXml, attrValueProcessor: escapeForXml }) const zip = Archiver('zip', {zlib: {level: 9}}) const started = new Date() const dateString = escape.filenameComponentFromDate(started) // Query for highest classification marking of STIG revisions let classificationPrefix = config.settings.setClassification === 'NONE' ? 'U' : config.settings.setClassification if (classificationPrefix === 'U' || classificationPrefix === 'CUI') { const uniqueRevisions = Array.from(parsedRequest.assetStigArguments.reduce((map, arg) => { arg.stigs.forEach(stig => map.set(`${stig.benchmarkId}:${stig.revisionStr}`, stig)) return map }, new Map()).values()) const highestMarking = await STIGService.getHighestMarkingByRevisions(uniqueRevisions) classificationPrefix = highestMarking === 'CUI' || highestMarking === 'FOUO' ? 'CUI' : 'U' } const attachmentName = escape.escapeFilename(`${classificationPrefix}_${parsedRequest.collection.name}-${format.startsWith('ckl-') ? 'CKL' : format.startsWith('cklb-') ? 'CKLB' : 'XCCDF'}_${dateString}.zip`) res.attachment(attachmentName) zip.pipe(res) const manifest = { started: started.toISOString(), finished: '', errorCount: 0, errors: [], memberCount: 0, members: [], requestParams: { collection: parsedRequest.collection, assetStigs: req.body } } zip.on('error', function (e) { manifest.errors.push({message: e.message, stack: e.stack}) manifest.errorCount += 1 }) for (const arg of parsedRequest.assetStigArguments) { try { let response switch (format) { case 'ckl-mono': case 'ckl-multi': response = await AssetService.cklFromAssetStigs(arg.assetId, arg.stigs) break case 'cklb-mono': case 'cklb-multi': response = await AssetService.cklbFromAssetStigs(arg.assetId, arg.stigs) break case 'xccdf': response = await AssetService.xccdfFromAssetStig(arg.assetId, arg.stigs[0].benchmarkId, arg.stigs[0].revisionStr) } let data if (response.xmlJs) { data = `\n\n\n` data += builder.build(response.xmlJs) } else { data = JSON.stringify(response.cklb) } let filename = `${response.marking ? response.marking + '_' : ''}${arg.assetName}` if (format === 'ckl-mono' || format === 'cklb-mono' || format === 'xccdf') { filename += `-${arg.stigs[0].benchmarkId}-${response.revisionStrResolved}` } filename += `${format === 'xccdf' ? '-xccdf.xml' : format.startsWith('ckl-') ? '.ckl' : '.cklb'}` filename = escape.escapeFilename(filename) zip.append(data, {name: filename}) manifest.members.push(filename) manifest.memberCount += 1 } catch (e) { arg.error = {message: e.message, stack: e.stack} manifest.errors.push(arg) manifest.errorCount += 1 } } manifest.finished = new Date().toISOString() manifest.members.sort((a,b) => a.localeCompare(b)) zip.append(JSON.stringify(manifest, null, 2), {name: '_manifest.json'}) await zip.finalize() } module.exports.getUnreviewedAssetsByCollection = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const benchmarkId = req.query.benchmarkId const assetId = req.query.assetId const severities = req.query.severity || [] const labelIds = req.query.labelId || [] const labelNames = req.query.labelName || [] const projections = req.query.projection || [] const response = await CollectionService.getUnreviewedAssetsByCollection( { collectionId, benchmarkId, assetId, labelIds, labelNames, severities, projections, grant, userObject: req.userObject }) res.json(response) } catch (err) { next(err) } } module.exports.getUnreviewedRulesByCollection = async function (req, res, next) { try { const {collectionId, grant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const benchmarkId = req.query.benchmarkId const ruleId = req.query.ruleId const severities = req.query.severity || [] const labelIds = req.query.labelId || [] const labelNames = req.query.labelName || [] const projections = req.query.projection || [] const response = await CollectionService.getUnreviewedRulesByCollection( { collectionId, benchmarkId, ruleId, severities, labelIds, labelNames, projections, grant, userObject: req.userObject }) res.json(response) } catch (err) { next(err) } } // for the archive streaming endpoints async function processAssetStigRequests (assetStigRequests, collectionId, mode = 'mono', grant) { const assetStigArguments = [] let collectionName // Pre-fetch the available revisions of STIGs that were accompanied by a requested revision // Build a Set of the requested STIGs that were accomapnied by a requested revision const requestedStigRevisionsSet = assetStigRequests.reduce((acc, value) => { if (value.stigs) { for (const item of value.stigs) { if (typeof item !== 'string') { acc.add(item.benchmarkId) } } } return acc }, new Set()) const requestedStigRevisionsArray = [...requestedStigRevisionsSet] // Create an object that can have benchmarkId properties and values of revisionStr arrays let availableRevisions = {} if (requestedStigRevisionsArray.length) { availableRevisions = await STIGService.getRevisionStrsByBenchmarkIds(requestedStigRevisionsArray) } // iterate through the request for (const requested of assetStigRequests) { const assetId = requested.assetId // Try to fetch asset as this user. const assetResponse = await AssetService.getAsset({assetId, projections: ['stigs'], grant} ) // Does user have a grant permitting access to the asset? if (!assetResponse) { throw new SmError.PrivilegeError() } // Is asset a member of collectionId? if (assetResponse.collection.collectionId !== collectionId) { throw new SmError.UnprocessableError(`Asset id ${assetId} is not a member of Collection id ${collectionId}.`) } if (!collectionName) { collectionName = assetResponse.collection.name } // will be identical for other assets // Does the asset have STIG assignments? if (assetResponse.stigs.length === 0) { throw new SmError.UnprocessableError(`Asset id ${assetId} has no STIG assignments.`) } // create Set with keys being the asset's benchmarkId assignments const assignedStigsSet = new Set(assetResponse.stigs.map( stig => stig.benchmarkId)) // create Map with keys being the requested benchmarkIds for the asset and values being an array of requested revisionStrs for that benchmarkId const requestedRevisionsMap = new Map() if (!requested.stigs) { // request doesn't specify STIGs, so create keys for each assigned benchmarkId and set each value to an array containing the default revision string for (const stig of assetResponse.stigs) { requestedRevisionsMap.set(stig.benchmarkId, [stig.revisionStr]) } } else { // request includes specific STIGs for (const stig of requested.stigs) { if (typeof stig === 'string' && assignedStigsSet.has(stig)) { // value is a benchmarkId string that matches an available STIG mapping // get already requested revisions for this STIG or any empty array const revisions = requestedRevisionsMap.get(stig) ?? [] // add the default revision string to the requested revisions revisions.push(assetResponse.stigs.find( assetStig => assetStig.benchmarkId === stig).revisionStr) // update the Map requestedRevisionsMap.set(stig, revisions) } else if ((stig.revisionStr === 'latest' && assignedStigsSet.has(stig.benchmarkId)) || (assignedStigsSet.has(stig.benchmarkId) && availableRevisions[stig.benchmarkId].includes(stig.revisionStr))) { // value is an object that matches an available STIG/Revision mapping // get already requested revisions for this STIG or any empty array const revisions = requestedRevisionsMap.get(stig.benchmarkId) ?? [] // add this requested revision string to the requested revisions revisions.push(stig.revisionStr) // update the Map requestedRevisionsMap.set(stig.benchmarkId, revisions) } else { throw new SmError.UnprocessableError(`Asset id ${assetId} is not mapped to ${JSON.stringify(stig)}.`) } } } // For generating individual filenames const assetName = assetResponse.name if (mode === 'mono') { // XCCDF and mono CKLs for (const entry of requestedRevisionsMap) { for (const revisionStr of entry[1]) { assetStigArguments.push({ assetId, assetName, stigs: [{benchmarkId: entry[0], revisionStr}] }) } } } else { // multi-STIG CKLs const stigsParam = [] for (const entry of requestedRevisionsMap) { for (const revisionStr of entry[1]) { stigsParam.push({benchmarkId: entry[0], revisionStr}) } } assetStigArguments.push({ assetId, assetName, stigs: stigsParam }) } } return { collection: { collectionId, name: collectionName, }, assetStigArguments } } module.exports.writeStigPropsByCollectionStig = async function (req, res, next) { try { const { collectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const benchmarkId = req.params.benchmarkId const assetIds = req.body.assetIds const defaultRevisionStr = req.body.defaultRevisionStr const existingRevisions = await STIGService.getRevisionsByBenchmarkId({benchmarkId, grants: req.userObject.grants}) //if defaultRevisionStr is present, check that specified revision is valid for the benchmark if (defaultRevisionStr && defaultRevisionStr !== "latest" && existingRevisions.find(benchmark => benchmark.revisionStr === defaultRevisionStr) === undefined) { throw new SmError.UnprocessableError("The revisionStr is is not valid for the specified benchmarkId") } // The OAS layer mandated if assetIds is absent then defaultRevisionStr must be present // we do not permit setting the default revision of an unassigned STIG if (!assetIds && !await CollectionService.doesCollectionIncludeStig({collectionId, benchmarkId})) { throw new SmError.UnprocessableError('Cannot set the default revision of a benchmarkId that has no mapped Assets') } if (assetIds && assetIds.length === 0 && defaultRevisionStr) { throw new SmError.UnprocessableError('Cannot set the default revision of a benchmarkId and also remove all mapped Assets') } if (assetIds?.length) { const collectionHasAssets = await CollectionService.doesCollectionIncludeAssets({ collectionId, assetIds }) if (!collectionHasAssets) { throw new SmError.PrivilegeError('One or more assetId is not a Collection member.') } } await CollectionService.writeStigPropsByCollectionStig( { collectionId, benchmarkId, assetIds, defaultRevisionStr, svcStatus: res.svcStatus }) const response = await CollectionService.getStigsByCollection({collectionId, grant, benchmarkId}) if (response[0]) { res.json(response[0]) } else { res.status(204).send() } } catch (err) { next(err) } } module.exports.cloneCollection = async function (req, res, next) { try { function progressCb(json) { res.write(JSON.stringify(json) + '\n') } if ( req.userObject.privileges.create_collection ) { const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const options = { grants: true, labels: true, assets: true, stigMappings: 'withReviews', pinRevisions: 'matchSource', ...req.body.options } res.setHeader('Content-Type', 'application/x-ndjson; charset=utf-8'); res.setHeader('X-Accel-Buffering', 'no'); // Disable buffering for nginx const cloned = await CollectionService.cloneCollection({ collectionId, userObject: req.userObject, name: req.body.name, description: req.body.description, options, svcStatus: res.svcStatus, progressCb }) if (cloned) { // // hack the existing userObject req.userObject.grants[cloned.destCollectionId] = { collectionId: cloned.destCollectionId, name: req.body.name, roleId: 4, grantIds: [] } const collection = await CollectionService.getCollection(cloned.destCollectionId, req.query.projection, false, req.userObject ) res.write(JSON.stringify({stage: 'result', collection}) + '\n') } res.end() } else { throw new SmError.PrivilegeError('User has not been granted createCollection privilege') } } catch (err) { next(err) } } module.exports.exportToCollection = async function (req, res, next) { try { function progressCb(json) { res.write(JSON.stringify(json) + '\n') } const { collectionId: srcCollectionId, grant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) req.params.collectionId = req.params.dstCollectionId const { collectionId: dstCollectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) req.params.collectionId = srcCollectionId const parsedRequest = await processAssetStigRequests (req.body, srcCollectionId, 'multi', grant) res.setHeader('Content-Type', 'application/x-ndjson; charset=utf-8'); res.setHeader('X-Accel-Buffering', 'no'); // Disable buffering for nginx await CollectionService.exportToCollection({ srcCollectionId, dstCollectionId, assetStigArguments: parsedRequest.assetStigArguments, userObject: req.userObject, progressCb, svcStatus: res.svcStatus }) res.end() } catch (err) { next(err) } } module.exports.getEffectiveAclByCollectionUser = async function (req, res, next) { try{ const {collectionId} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage) const userId = req.params.userId if (!await CollectionService._hasCollectionGrant({collectionId, userId})) throw new SmError.UnprocessableError('user has no direct or group grant in collection') const response = await CollectionService.getEffectiveAclByCollectionUser({collectionId, userId}) res.json(response) } catch(err){ next(err) } } module.exports.putGrantByCollectionGrant = async function (req, res, next) { try { const grantId = req.params.grantId const elevate = req.query.elevate const grant = req.body if (grant.userId) { const invalidUserIds = await dbUtils.selectInvalidUserIds([grant.userId]) if (invalidUserIds.length) { throw new SmError.UserInconsistentError() } } const {collectionId, grant: requesterGrant} = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const currentGrant = (await CollectionService._getCollectionGrant({collectionId, grantId}))[0] if (!currentGrant) { throw new SmError.NotFoundError('no such grant in collection') } if (!elevate && currentGrant.roleId === 4 && requesterGrant.roleId !== 4) { throw new SmError.PrivilegeError('cannot modify owner grants') } if (!elevate && grant.roleId === 4 && requesterGrant.roleId !== 4) { throw new SmError.PrivilegeError('cannot create owner grants') } await CollectionService.putGrantById({grantId, grant, isRoleChange: currentGrant.roleId !== grant.roleId, svcStatus: res.svcStatus}) const updatedGrant = (await CollectionService._getCollectionGrant({collectionId, grantId}))[0] res.json(updatedGrant) } catch (err) { if (err.code === 'ER_NO_REFERENCED_ROW_2') { err = new SmError.UnprocessableError('no such grantee') } else if (err.code === 'ER_DUP_ENTRY') { err = new SmError.UnprocessableError('grantee has a conflicting grant') } next(err) } } module.exports.getGrantByCollectionGrant = async function (req, res, next) { try { const grantId = req.params.grantId const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const grant = (await CollectionService._getCollectionGrant({collectionId, grantId}))[0] if (!grant) throw new SmError.NotFoundError('no such grant in collection') res.json(grant) } catch (err) { next(err) } } module.exports.getGrantsByCollection = async function (req, res, next) { try { const { collectionId } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const grants = await CollectionService._getCollectionGrant({collectionId}) res.json(grants) } catch (err) { next(err) } } module.exports.postGrantsByCollection = async function (req, res, next) { try { const { collectionId, grant: requesterGrant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const grants = req.body const elevate = req.query.elevate const userIds = grants.map(g => g.userId).filter(Boolean) const invalidUserIds = await dbUtils.selectInvalidUserIds(userIds) if (invalidUserIds.length > 0) { throw new SmError.UserInconsistentError() } const roles = grants.map( g => g.roleId) if (!elevate && roles.includes(4) && requesterGrant.roleId !== 4) { throw new SmError.PrivilegeError('cannot create owner grants') } const grantIds = await CollectionService.postGrantsByCollection(collectionId, grants) const newGrants = await CollectionService._getCollectionGrant({collectionId, grantIds}) res.status(201).json(newGrants) } catch (err) { if (err.code === 'ER_NO_REFERENCED_ROW_2') { err = new SmError.UnprocessableError('no such grantee') } else if (err.code === 'ER_DUP_ENTRY') { err = new SmError.UnprocessableError('grantee has a conflicting grant') } next(err) } } module.exports.deleteGrantByCollectionGrant = async function (req, res, next) { try { const grantId = req.params.grantId const elevate = req.query.elevate const { collectionId, grant: requesterGrant } = await getCollectionInfoAndCheckPermission(req, Security.ROLES.Manage, true) const currentGrant = (await CollectionService._getCollectionGrant({collectionId, grantId}))[0] if (!currentGrant) { throw new SmError.NotFoundError('no such grant in collection') } if (!elevate && currentGrant.roleId === 4 && requesterGrant.roleId !== 4) { throw new SmError.PrivilegeError('cannot remove owner grants') } await CollectionService.deleteGrantById(grantId) res.json(currentGrant) } catch (err) { next(err) } } module.exports.getAclRulesByCollectionGrant = async function (req, res, next) { try { const grantId = req.params.grantId const { collectionId } = await getCollectionInfoAndCheckPermission(req) const grant = (await CollectionService._getCollectionGrant({collectionId, grantId}))[0] if (!grant) throw new SmError.NotFoundError('no such grant in collection') const response = await CollectionService.queryReviewAcl({grantId}) res.json(response) } catch (err) { next(err) } } module.exports.putAclRulesByCollectionGrant = async function (req, res, next) { try { const grantId = req.params.grantId const { collectionId } = await getCollectionInfoAndCheckPermission(req) const grant = (await CollectionService._getCollectionGrant({collectionId, grantId}))[0] if (!grant) throw new SmError.NotFoundError('no such grant in collection') const acl = req.body const validated = await CollectionService._reviewAclValidate({grantId, acl}) if (validated.fail.length > 0) { throw new SmError.UnprocessableError(validated.fail) } await CollectionService.setValidatedAcl({ validatedAcl: validated.pass, grantId, attributionUserId: req.userObject.userId, svcStatus: res.svcStatus }) const response = await CollectionService.queryReviewAcl({grantId}) res.json(response) } catch (err) { next(err) } } ================================================ FILE: api/source/controllers/Job.js ================================================ const SmError = require('../utils/error'); const JobService = require(`../service/JobService`) const userJobIdBase = 100 exports.getJobs = async (req, res, next) => { try { const projections = req.query.projection const jobs = await JobService.getJobs({projections}) res.json(jobs) } catch (error) { next(error) } } exports.postJob = async (req, res, next) => { try { const jobId = await JobService.createJob({ jobData: req.body, userId: req.userObject.userId, svcStatus: res.svcStatus }) const newJob = await JobService.getJob(jobId) res.status(201).json(newJob) } catch (error) { if (error.code === 'ER_DUP_ENTRY') { error = new SmError.UnprocessableError('Job name already exists') } else if (error.code === 'ER_NO_REFERENCED_ROW_2') { error = new SmError.UnprocessableError('Unknown taskId in list') } next(error) } } exports.getJob = async (req, res, next) => { try { const projections = req.query.projection const jobId = req.params.jobId const job = await JobService.getJob(jobId, {projections}) if (!job) { throw new SmError.NotFoundError(`Job with ID [${jobId}] not found.`) } res.json(job) } catch (error) { next(error) } } exports.deleteJob = async (req, res, next) => { try { const jobId = req.params.jobId if (parseInt(jobId) < userJobIdBase) { throw new SmError.UnprocessableError(`Job is a system job and cannot be deleted.`) } // has desired side-effect of removing events named with the jobId, even if job does not exist const wasDeleted = await JobService.deleteJob(jobId) if (!wasDeleted) { throw new SmError.NotFoundError(`Job with ID [${jobId}] not found.`) } res.status(204).end() } catch (error) { next(error) } } exports.patchJob = async (req, res, next) => { try { const jobId = req.params.jobId if (parseInt(jobId) < userJobIdBase) { const bodyKeys = Object.keys(req.body) if (!bodyKeys.every(key => key === 'event')) { throw new SmError.UnprocessableError(`System jobs can only be modified with event properties.`) } } const existingJob = await JobService.getJob(jobId) if (!existingJob) { throw new SmError.NotFoundError(`Job with ID [${jobId}] not found.`) } await JobService.patchJob({ jobId, jobData: req.body, userId: req.userObject.userId, svcStatus: res.svcStatus }) const patchedJob = await JobService.getJob(jobId) res.status(200).json(patchedJob) } catch (error) { if (error.code === 'ER_DUP_ENTRY') { error = new SmError.UnprocessableError('Job name already exists') } else if (error.code === 'ER_NO_REFERENCED_ROW_2') { error = new SmError.UnprocessableError('Unknown taskId in list') } next(error) } } exports.getRunsByJob = async (req, res, next) => { try { const jobId = req.params.jobId const job = await JobService.getJob(jobId) if (!job) { throw new SmError.NotFoundError(`Job with ID [${jobId}] not found.`) } const runs = await JobService.getRunsByJob(jobId) res.json(runs) } catch (error) { next(error) } } exports.runImmediateJob = async (req, res, next) => { try { const jobId = req.params.jobId const job = await JobService.getJob(jobId) if (!job) { throw new SmError.NotFoundError(`Job with ID [${jobId}] not found.`) } const runId = await JobService.runImmediateJob(jobId) res.json({runId}) } catch (error) { next(error) } } exports.getRunById = async (req, res, next) => { try { const runId = req.params.runId const run = await JobService.getRunById(runId) if (!run) { throw new SmError.NotFoundError(`Run with ID [${runId}] not found.`) } res.json(run) } catch (error) { next(error) } } exports.deleteRunById = async (req, res, next) => { try { const runId = req.params.runId const wasDeleted = await JobService.deleteRunById(runId) if (!wasDeleted) { throw new SmError.NotFoundError(`Run with ID [${runId}] not found.`) } res.status(204).end() } catch (error) { next(error) } } exports.getOutputByRun = async (req, res, next) => { try { const runId = req.params.runId const afterSeq = req.query['after-seq'] const output = await JobService.getOutputByRun(runId, { filters: { afterSeq } }) res.json(output) } catch (error) { next(error) } } exports.getAllTasks = async (req, res, next) => { try { const tasks = await JobService.getAllTasks() res.json(tasks) } catch (error) { next(error) } } ================================================ FILE: api/source/controllers/Metrics.js ================================================ const config = require('../utils/config') const MetricsService = require(`../service/MetricsService`) const Collection = require('./Collection') const Security = require('../utils/roles') const SmError = require('../utils/error') const {stringify: csvStringify} = require('csv-stringify/sync') async function getCollectionMetrics (req, res, next, {style, aggregation, firstRowOnly = false}) { try { const { collectionId, grant } = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const returnType = req.query.format || 'json' const filter = { labelNames: req.query.labelName, labelMatch: req.query.labelMatch, labelIds: req.query.labelId, assetIds: req.query.assetId, benchmarkIds: req.query.benchmarkId, } const rows = await MetricsService.queryMetrics({ collectionId, filter, grant, style, aggregation, returnType }) if (returnType === 'csv') { res.type('text/csv') res.send(csvStringify(rows, {header: true})) } else { res.json(firstRowOnly ? rows[0] : rows) } } catch (e) { next(e) } } async function getMetaMetrics (req, res, next, {style, aggregation, firstRowOnly = false}) { try { const returnType = req.query.format || 'json' const filter = { collectionIds: req.query.collectionId, benchmarkIds: req.query.benchmarkId, revisionIds: req.query.revisionId } const rows = await MetricsService.queryMetaMetrics({ filter, grants: req.userObject.grants, style, aggregation, returnType }) if (returnType === 'csv') { res.type('text/csv') res.send(csvStringify(rows, {header: true})) } else { res.json(firstRowOnly ? rows[0] : rows) } } catch (e) { next(e) } } module.exports.getMetricsDetailByCollection = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'detail', aggregation: 'unagg'}) } module.exports.getMetricsDetailByCollectionAggAsset = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'detail', aggregation: 'asset'}) } module.exports.getMetricsDetailByCollectionAgg = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'detail', aggregation: 'collection', firstRowOnly: true}) } module.exports.getMetricsDetailByCollectionAggLabel = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'detail', aggregation: 'label'}) } module.exports.getMetricsDetailByCollectionAggStig = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'detail', aggregation: 'stig'}) } module.exports.getMetricsSummaryByCollection = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'summary', aggregation: 'unagg'}) } module.exports.getMetricsSummaryByCollectionAggAsset = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'summary', aggregation: 'asset'}) } module.exports.getMetricsSummaryByCollectionAgg = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'summary', aggregation: 'collection', firstRowOnly: true}) } module.exports.getMetricsSummaryByCollectionAggLabel = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'summary', aggregation: 'label'}) } module.exports.getMetricsSummaryByCollectionAggStig = async function (req, res, next) { return getCollectionMetrics(req, res, next, {style: 'summary', aggregation: 'stig'}) } module.exports.getMetricsDetailByMeta = async function (req, res, next) { return getMetaMetrics(req, res, next, {style: 'detail', aggregation: 'meta', firstRowOnly: true}) } module.exports.getMetricsDetailByMetaAggCollection = async function (req, res, next) { return getMetaMetrics(req, res, next, {style: 'detail', aggregation: 'collection'}) } module.exports.getMetricsDetailByMetaAggStig = async function (req, res, next) { return getMetaMetrics(req, res, next, {style: 'detail', aggregation: 'metaStig'}) } module.exports.getMetricsSummaryByMeta = async function (req, res, next) { return getMetaMetrics(req, res, next, {style: 'summary', aggregation: 'meta', firstRowOnly: true}) } module.exports.getMetricsSummaryByMetaAggCollection = async function (req, res, next) { return getMetaMetrics(req, res, next, {style: 'summary', aggregation: 'collection'}) } module.exports.getMetricsSummaryByMetaAggStig = async function (req, res, next) { return getMetaMetrics(req, res, next, {style: 'summary', aggregation: 'metaStig'}) } ================================================ FILE: api/source/controllers/Operation.js ================================================ const config = require('../utils/config') const OperationService = require(`../service/OperationService`) const escape = require('../utils/escape') const {JSONPath} = require('jsonpath-plus') const SmError = require('../utils/error.js') const state = require('../utils/state') module.exports.getConfiguration = async function getConfiguration (req, res, next) { try { const dbConfigs = await OperationService.getConfiguration() const {version, commit, lastMigration} = config res.json({ version, commit, lastMigration, ...dbConfigs }) } catch(err) { next(err) } } module.exports.setConfigurationItem = async function setConfigurationItem (req, res, next) { try { //TODO: Implement } catch(err) { next(err) } } module.exports.getAppData = async function getAppData (req, res, next) { try { if (!config.experimental.appData) throw new SmError.NotFoundError('endpoint disabled, to enable set STIGMAN_EXPERIMENTAL_APPDATA=true') if (!req.query.elevate) throw new SmError.PrivilegeError() const format = req.query.format || 'gzip' res.attachment(`appdata-v${config.lastMigration}_${escape.filenameComponentFromDate()}.jsonl${format==='gzip'?'.gz':''}`) if (format === 'jsonl') res.type('application/jsonl') // the service method will stream the appdata file to the response object OperationService.getAppData(res, format) // the service ends the response by closing the gzip stream } catch (err) { next(err) } } module.exports.getAppDataTables = async function (req, res, next) { try { if (!req.query.elevate) throw new SmError.PrivilegeError() const response = await OperationService.getAppDataTables() res.json(response) } catch (err) { next(err) } } module.exports.replaceAppData = async function replaceAppData (req, res, next) { // write JSONL to the response; called from the service method function progressCb(json) { res.write(JSON.stringify(json) + '\n') } try { if (!config.experimental.appData) throw new SmError.NotFoundError('endpoint disabled, to enable set STIGMAN_EXPERIMENTAL_APPDATA=true') if (!req.query.elevate) throw new SmError.PrivilegeError() let chunks = [] for await (const chunk of req) { chunks.push(chunk) } const buffer = Buffer.concat(chunks) res.setHeader('Content-Type', 'application/jsonl; charset=utf-8') res.setHeader('X-Accel-Buffering', 'no'); // Disable buffering for nginx res.setHeader('Transfer-Encoding', 'chunked') await OperationService.replaceAppData(buffer, req.headers['content-type'], progressCb ) res.end() } catch (err) { next(err) } } module.exports.getDefinition = async function getDefinition (req, res, next) { try { let jsonpath = req.query.jsonpath if (jsonpath) { res.json(JSONPath(jsonpath, config.definition)) } else { res.json(config.definition) } } catch (err) { next(err) } } module.exports.getAppInfo = async function getAppInfo (req, res, next) { try { let elevate = req.query.elevate if ( elevate ) { const options = { includeRowCounts: req.query.includeRowCounts } const response = await OperationService.getAppInfo(options) res.json(response) } else { throw new SmError.PrivilegeError() } } catch (err) { next(err) } } module.exports.getState = function (req, res, next) { try { res.json(state.apiState) } catch (err) { next(err) } } module.exports.getDetails = module.exports.getAppInfo module.exports.streamStateSse = function (req, res, next) { try { res.setHeader('Content-Type', 'text/event-stream'); res.setHeader('Cache-Control', 'no-cache'); res.setHeader('Connection', 'keep-alive'); res.setHeader('X-Accel-Buffering', 'no'); // Disable buffering for nginx // Helper to send SSE events function sendEvent(eventName, data) { if (eventName) res.write(`event: ${eventName}\n`); res.write(`data: ${typeof data === 'string' ? data : JSON.stringify(data)}\n\n`); } // Send initial state sendEvent('state-report', state.apiState); // Event listeners const stateChangedListener = () => sendEvent('state-changed', state.apiState); const dependencyChangedListener = () => sendEvent('dependency-changed', state.apiState); state.on('state-changed', stateChangedListener); state.on('dependency-changed', dependencyChangedListener); // Keep-alive ping every 30 seconds const keepAlive = setInterval(() => { sendEvent('state-report', state.apiState); }, 30000); // Cleanup on client disconnect req.on('close', () => { clearInterval(keepAlive); state.off('state-changed', stateChangedListener); state.off('dependency-changed', dependencyChangedListener); res.end(); }); } catch (err) { next(err); } } ================================================ FILE: api/source/controllers/Review.js ================================================ 'use strict'; const config = require('../utils/config') const ReviewService = require(`../service/ReviewService`) const CollectionService = require(`../service/CollectionService`) const Collection = require(`./Collection`) const SmError = require('../utils/error') const Security = require('../utils/roles') const dbUtils = require('../service/utils') const _this = this const AssetService = require('../service/AssetService') module.exports.postReviewsByAsset = async function postReviewsByAsset (req, res, next) { try { const { collectionId } = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const assetId = req.params.assetId const reviews = req.body // check assetId exists, is enabled, and belongs to the collection in the URL path const assetRow = await dbUtils.selectCollectionByAssetId(assetId) if (!assetRow || assetRow.collectionId.toString() !== collectionId) { throw new SmError.PrivilegeError() } const result = await ReviewService.putReviewsByAsset({ assetId, reviews, collectionId, userId: req.userObject.userId, grant: req.userObject.grants[collectionId], svcStatus: res.svcStatus }) res.json(result) } catch(err) { next(err) } } module.exports.deleteReviewByAssetRule = async function deleteReviewByAssetRule (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let projections = req.query.projection const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant, checkWritable: true}) if (userHasRule) { let response = await ReviewService.deleteReviewByAssetRule({assetId, ruleId, projections, grant, svcStatus: res.svcStatus}) res.status(response ? 200 : 204).json(response) } else { throw new SmError.PrivilegeError() } } catch(err) { next(err) } } module.exports.exportReviews = async function exportReviews (includeHistory) { return await ReviewService.exportReviews(includeHistory) } module.exports.getReviewByAssetRule = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let projections = req.query.projection const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const assetExists = await AssetService.doesAssetExist(assetId) if (!assetExists) { throw new SmError.PrivilegeError() } let response = await ReviewService.getReviews({ projections, filter: { collectionId, assetId: assetId, ruleId: ruleId }, grant, userObject: req.userObject }) // res.json(response[0]) // res.status(typeof response === 'undefined' ? 204 : 200).json(response[0]) res.status(response.length == 0 ? 204 : 200).json(response[0]) } catch(err) { next(err) } } module.exports.getReviewsByCollection = async function getReviewsByCollection (req, res, next) { try { let projections = req.query.projection const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) let response = await ReviewService.getReviews({ projections, filter: { collectionId, result: req.query.result, status: req.query.status, rules: req.query.rules || 'default-mapped', ruleId: req.query.ruleId, groupId: req.query.groupId, cci: req.query.cci, userId: req.query.userId, assetId: req.query.assetId, benchmarkId: req.query.benchmarkId, metadata: req.query.metadata }, grant, userObject: req.userObject }) res.json(response) } catch(err) { next(err) } } module.exports.getReviewsByAsset = async function (req, res, next) { try { let assetId = req.params.assetId let projections = req.query.projection const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const assetExists = await AssetService.doesAssetExist(assetId) if (!assetExists) { throw new SmError.PrivilegeError() } let response = await ReviewService.getReviews({ projections, filter: { collectionId, assetId: assetId, rules: req.query.rules || 'default-mapped', result: req.query.result, status: req.query.status, benchmarkId: req.query.benchmarkId, metadata: req.query.metadata }, grant, userObject: req.userObject }) res.json(response) } catch(err) { next(err) } } module.exports.putReviewByAssetRule = async function (req, res, next) { try { const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const {assetId, ruleId} = {...req.params} const review = {...req.body, ruleId} const projections = req.query.projection // check assetId exists, is enabled, and belongs to the collection in the URL path const assetRow = await dbUtils.selectCollectionByAssetId(assetId) if (!assetRow || assetRow.collectionId.toString() !== collectionId) { throw new SmError.PrivilegeError() } const result = await ReviewService.putReviewsByAsset({ assetId, reviews: [review], collectionId, userId: req.userObject.userId, grant: req.userObject.grants[collectionId], svcStatus: res.svcStatus }) if (result.rejected.length) { throw new SmError.PrivilegeError(result.rejected[0].reason) } const rows = await ReviewService.getReviews({ projections, filter: {collectionId, assetId, ruleId}, grant, userObject: req.userObject }) res.status(result.affected.inserted > 0 ? 201 : 200).json(rows[0]) } catch (err) { next(err) } } module.exports.patchReviewByAssetRule = async function (req, res, next) { try { if (Object.hasOwn(req.body, 'resultEngine') && !Object.hasOwn(req.body, 'result')) { throw new SmError.UnprocessableError('Request body with resultEngine must include a result') } const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const {assetId, ruleId} = {...req.params} // check assetId exists, is enabled, and belongs to the collection in the URL path — // must run before the pre-write existence read so a foreign-collection asset // cannot satisfy the "review must exist" gate and reveal review state via 404 vs 403 const assetRow = await dbUtils.selectCollectionByAssetId(assetId) if (!assetRow || assetRow.collectionId.toString() !== collectionId) { throw new SmError.PrivilegeError() } const currentReviews = await ReviewService.getReviews({ filter: {collectionId, assetId, ruleId}, grant, userObject: req.userObject }) if (currentReviews.length === 0) { throw new SmError.NotFoundError('Review must exist to be patched') } const review = {...req.body, ruleId} const projections = req.query.projection const result = await ReviewService.putReviewsByAsset({ assetId, reviews: [review], collectionId, userId: req.userObject.userId, grant: req.userObject.grants[collectionId], svcStatus: res.svcStatus }) if (result.rejected.length) { throw new SmError.PrivilegeError(result.rejected[0].reason) } const rows = await ReviewService.getReviews({ projections, filter: {collectionId, assetId, ruleId}, grant, userObject: req.userObject }) res.json(rows[0]) } catch (err) { next(err) } } module.exports.getReviewMetadata = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant}) if (userHasRule) { let response = await ReviewService.getReviewMetadata( assetId, ruleId, req.userObject) res.json(response) } else { throw new SmError.PrivilegeError('User has insufficient privilege to get the review of this rule.') } } catch (err) { next(err) } } module.exports.patchReviewMetadata = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let metadata = req.body const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant, checkWritable: true}) if (userHasRule) { await ReviewService.patchReviewMetadata( assetId, ruleId, metadata) let response = await ReviewService.getReviewMetadata( assetId, ruleId) res.json(response) } else { throw new SmError.PrivilegeError('User has insufficient privilege to patch the review of this rule.') } } catch (err) { next(err) } } module.exports.putReviewMetadata = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let body = req.body const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant, checkWritable: true}) if (userHasRule) { await ReviewService.putReviewMetadata( assetId, ruleId, body) let response = await ReviewService.getReviewMetadata( assetId, ruleId) res.json(response) } else { throw new SmError.PrivilegeError('User has insufficient privilege to put the review of this rule.') } } catch (err) { next(err) } } module.exports.getReviewMetadataKeys = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant}) if (userHasRule) { let response = await ReviewService.getReviewMetadataKeys( assetId, ruleId, req.userObject) if (!response) { throw new SmError.NotFoundError('metadata keys not found') } res.json(response) } else { throw new SmError.PrivilegeError('User has insufficient privilege to get the review of this rule.') } } catch (err) { next(err) } } module.exports.getReviewMetadataValue = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let key = req.params.key const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant}) if (userHasRule) { let response = await ReviewService.getReviewMetadataValue( assetId, ruleId, key, req.userObject) if (!response) { throw new SmError.NotFoundError('metadata key not found') } res.json(response) } else { throw new SmError.PrivilegeError('User has insufficient privilege to get the review of this rule.') } } catch (err) { next(err) } } module.exports.putReviewMetadataValue = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let key = req.params.key let value = req.body const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant, checkWritable: true}) if (userHasRule) { await ReviewService.putReviewMetadataValue( assetId, ruleId, key, value) res.status(204).send() } else { throw new SmError.PrivilegeError('User has insufficient privilege to put the review of this rule.') } } catch (err) { next(err) } } module.exports.deleteReviewMetadataKey = async function (req, res, next) { try { let assetId = req.params.assetId let ruleId = req.params.ruleId let key = req.params.key const {collectionId, grant} = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const userHasRule = await ReviewService.checkRuleByAssetUser({ruleId, assetId, collectionId, grant, checkWritable: true}) if (userHasRule) { await ReviewService.deleteReviewMetadataKey( assetId, ruleId, key, req.userObject) res.status(204).send() } else { throw new SmError.PrivilegeError('User has insufficient privilege to delete the review of this rule.') } } catch (err) { next(err) } } module.exports.postReviewBatch = async function (req, res, next) { try { const { collectionId, grant } = await Collection.getCollectionInfoAndCheckPermission(req, Security.ROLES.Restricted) const collectionSettings = await CollectionService.getCollectionSettings(collectionId) const historySettings = collectionSettings.history const statusSettings = collectionSettings.status const userId = req.userObject.userId let {source, assets, rules, action, updateFilters, dryRun = false} = req.body // normalize status property if (typeof source.review.status === 'string') { source.review.status = { label: source.review.status, text: null } } // reject unpermitted accept/reject if (source.review.status?.label === 'accepted' || source.review.status?.label === 'rejected') { if (!statusSettings.canAccept) { throw new SmError.PrivilegeError('Reviews cannot be accepted/rejected in this Collection') } if (grant.roleId < statusSettings.minAcceptGrant) { throw new SmError.PrivilegeError('User cannot accept/reject Reviews in this Collection') } } // validate action if (!source.review.result && (action === 'insert' || action === 'merge')) { throw new SmError.UnprocessableError('Cannot insert a NULL result') } // default action if missing if (!action) { action = source.review.result ? 'merge' : 'update' } // are grant checks required let skipGrantCheck = false if (assets.benchmarkIds && rules.benchmarkIds && assets.benchmarkIds.length === rules.benchmarkIds.length) { skipGrantCheck = assets.benchmarkIds.every( i => rules.benchmarkIds.includes(i)) && rules.benchmarkIds.every( i => assets.benchmarkIds.includes(i)) } const result = await ReviewService.postReviewBatch({ source, assets, rules, action, updateFilters, dryRun, collectionId, userId, grant, svcStatus: res.svcStatus, historyMaxReviews: historySettings.maxReviews, skipGrantCheck }) res.json(result) } catch (err) { next(err) } } ================================================ FILE: api/source/controllers/STIG.js ================================================ 'use strict'; const config = require('../utils/config'); const SmError = require('../utils/error'); const parsers = require('../utils/parsers.js') const STIGService = require(`../service/STIGService`) module.exports.importBenchmark = async function importManualBenchmark (req, res, next) { try { if (!req.query.elevate) throw new SmError.PrivilegeError() const extension = req.file.originalname.substring(req.file.originalname.lastIndexOf(".")+1) const clobber = req.query.clobber ?? false if (extension.toLowerCase() != 'xml') { throw new SmError.ClientError(`File extension .${extension} not supported`) } let benchmark try { benchmark = parsers.benchmarkFromXccdf(req.file.buffer) } catch(err){ throw new SmError.ClientError(err.message) } if (benchmark.scap) { throw new SmError.UnprocessableError('SCAP Benchmarks are not imported.') } const markingMatch = req.file.originalname.match(/^(CUI|U|FOUO)_/) benchmark.revision.marking = markingMatch?.[1] ?? null const revision = await STIGService.insertManualBenchmark(benchmark, clobber, res.svcStatus) res.json(revision) } catch(err) { next(err) } } module.exports.deleteRevisionByString = async function deleteRevisionByString (req, res, next) { try { if (!req.query.elevate) throw new SmError.PrivilegeError() const benchmarkId = req.params.benchmarkId const revisionStr = req.params.revisionStr const force = req.query.force const response = await STIGService.getRevisionByString({ benchmarkId, revisionStr, grants: req.userObject.grants, elevate: req.query.elevate }) if(response === undefined) { throw new SmError.NotFoundError('No matching revisionStr found.') } const existingRevisions = await STIGService.getRevisionsByBenchmarkId({benchmarkId, grants: req.userObject.grants}) const stigAssigned = await STIGService.getStigById(benchmarkId, req.userObject, true) if (stigAssigned.collectionIds.length && existingRevisions.length == 1 && !force) { throw new SmError.UnprocessableError("The revisionStr is the last remaining revision for this benchmark, which is assigned to one or more Collections. Set force=true to force the delete") } if (response.collectionIds.length && !force) { throw new SmError.UnprocessableError("The revisionStr is pinned to one or more Collections. Set force=true to force the delete") } else { await STIGService.deleteRevisionByString(benchmarkId, revisionStr, res.svcStatus) res.json(response) } } catch(err) { next(err) } } module.exports.deleteStigById = async function deleteStigById (req, res, next) { if ( req.query.elevate ) { try { const benchmarkId = req.params.benchmarkId const force = req.query.force const response = await STIGService.getStigById(benchmarkId, req.userObject, true) if(response === undefined) { throw new SmError.NotFoundError('No matching benchmarkId found.') } if (response.collectionIds.length && !force) { throw new SmError.UnprocessableError("The benchmarkId is assigned to one or more Collections. Set force=true to force the delete") } await STIGService.deleteStigById(benchmarkId, res.svcStatus) res.json(response) } catch (err) { next(err) } } else { next(new SmError.PrivilegeError()) } } module.exports.getCci = async function getCci (req, res, next) { let cci = req.params.cci let projection = req.query.projection try { let response = await STIGService.getCci(cci, projection, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getCcisByRevision = async function getCcisByRevision (req, res, next) { let benchmarkId = req.params.benchmarkId let revisionStr = req.params.revisionStr try { let response = await STIGService.getCcisByRevision(benchmarkId, revisionStr, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getGroupByRevision = async function getGroupByRevision (req, res, next) { let projection = req.query.projection let benchmarkId = req.params.benchmarkId let revisionStr = req.params.revisionStr let groupId = req.params.groupId try { let response = await STIGService.getGroupByRevision(benchmarkId, revisionStr, groupId, projection, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getGroupsByRevision = async function getGroupsByRevision (req, res, next) { let projection = req.query.projection let benchmarkId = req.params.benchmarkId let revisionStr = req.params.revisionStr try { let response = await STIGService.getGroupsByRevision(benchmarkId, revisionStr, projection, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getRevisionByString = async function getRevisionByString (req, res, next) { try { const benchmarkId = req.params.benchmarkId const revisionStr = req.params.revisionStr const elevate = req.query.elevate const response = await STIGService.getRevisionByString({ benchmarkId, revisionStr, grants: req.userObject.grants, elevate }) res.status(response ? 200 : 404).json(response) } catch(err) { next(err) } } module.exports.getRevisionsByBenchmarkId = async function getRevisionsByBenchmarkId (req, res, next) { const benchmarkId = req.params.benchmarkId const elevate = req.query.elevate try { const response = await STIGService.getRevisionsByBenchmarkId({benchmarkId, grants: req.userObject.grants, elevate}) res.json(response) } catch(err) { next(err) } } module.exports.getRuleByRuleId = async function getRuleByRuleId (req, res, next) { let projection = req.query.projection let ruleId = req.params.ruleId try { let response = await STIGService.getRuleByRuleId(ruleId, projection, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getRuleByRevision = async function getRulesByRevision (req, res, next) { let projection = req.query.projection let benchmarkId = req.params.benchmarkId let revisionStr = req.params.revisionStr let ruleId = req.params.ruleId try { let response = await STIGService.getRuleByRevision(benchmarkId, revisionStr, ruleId, projection, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getRulesByRevision = async function getRulesByRevision (req, res, next) { let projection = req.query.projection let benchmarkId = req.params.benchmarkId let revisionStr = req.params.revisionStr try { let response = await STIGService.getRulesByRevision(benchmarkId, revisionStr, projection, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.getSTIGs = async function getSTIGs (req, res, next) { const title = req.query.title const elevate = req.query.elevate const projection = req.query.projection || [] try { let response = await STIGService.getSTIGs(title, projection, req.userObject, elevate) res.json(response) } catch(err) { next(err) } } module.exports.getStigById = async function getStigById (req, res, next) { let benchmarkId = req.params.benchmarkId const elevate = req.query.elevate try { let response = await STIGService.getStigById(benchmarkId, req.userObject, elevate) if(!response) { throw new SmError.NotFoundError() } res.json(response) } catch(err) { next(err) } } module.exports.getScapMap = async function getStigById (req, res, next) { res.json([ { scapBenchmarkId: 'CAN_Ubuntu_18-04_STIG', benchmarkId: 'U_CAN_Ubuntu_18-04_STIG' }, { scapBenchmarkId: 'Mozilla_Firefox_RHEL', benchmarkId: 'Mozilla_Firefox' }, { scapBenchmarkId: 'Mozilla_Firefox_Windows', benchmarkId: 'Mozilla_Firefox' }, { scapBenchmarkId: 'MOZ_Firefox_Linux', benchmarkId: 'MOZ_Firefox_STIG' }, { scapBenchmarkId: 'MOZ_Firefox_Windows', benchmarkId: 'MOZ_Firefox_STIG' }, { scapBenchmarkId: 'Solaris_10_X86_STIG', benchmarkId: 'Solaris_10_X86' } ]) } ================================================ FILE: api/source/controllers/User.js ================================================ 'use strict'; const config = require('../utils/config') const UserService = require(`../service/UserService`) const AssetService = require(`../service/AssetService`) const CollectionService = require(`../service/CollectionService`) const SmError = require('../utils/error') const dbUtils = require('../service/utils') async function validateCollectionGrants(collectionGrants, {elevate}) { if (collectionGrants?.length) { // Verify each grant for a valid collectionId let requestedIds = collectionGrants.map( g => g.collectionId ) let availableCollections = await CollectionService.queryCollections({elevate}) let availableIds = availableCollections.map( c => c.collectionId) if (! requestedIds.every( id => availableIds.includes(id) ) ) { throw new SmError.UnprocessableError('One or more collectionIds are invalid.') } } } /* */ module.exports.createUser = async function createUser (req, res, next) { try { const elevate = req.query.elevate if (!elevate) throw new SmError.PrivilegeError() let body = req.body let projection = req.query.projection if (body.hasOwnProperty('collectionGrants') ) { await validateCollectionGrants(body.collectionGrants, {elevate}) } body.status = 'available' try { let response = await UserService.createUser(body, projection, elevate, req.userObject, res.svcStatus) res.status(201).json(response) } catch (err) { // This is MySQL specific, should abstract if (err.code === 'ER_DUP_ENTRY') { throw new SmError.UnprocessableError('Duplicate name exists.') } else { throw err } } } catch(err) { next(err) } } module.exports.deleteUser = async function deleteUser (req, res, next) { try { let elevate = req.query.elevate if (elevate) { let userId = req.params.userId let projection = req.query.projection let userData = await UserService.getUserByUserId(userId, [], elevate, req.userObject) if (userData?.lastAccess) { // User has accessed the system, so we need to reject the request throw new SmError.UnprocessableError('User has accessed the system. Use PATCH to remove collection grants or configure Authentication provider to reject user entirely.') } let response = await UserService.deleteUser(userId, projection, elevate, req.userObject) res.json(response) } else { throw new SmError.PrivilegeError() } } catch(err) { next(err) } } module.exports.exportUsers = async function exportUsers (projection, elevate, userObject) { if (elevate) { return await UserService.getUsers(null, null, projection, elevate, userObject ) } else { throw new SmError.PrivilegeError() } } module.exports.exportUserGroups = async function exportUserGroups (projections, elevate) { if (elevate) { return await UserService.queryUserGroups({projections}) } else { throw new SmError.PrivilegeError() } } module.exports.getUser = async function getUser (req, res, next) { try { const projection = ['collectionGrants', 'statistics', 'userGroups'] if (req.query.projection) { projection.push(req.query.projection) } let response = await UserService.getUserByUserId(req.userObject.userId, projection) response.privileges = req.userObject.privileges res.json(response) } catch(err) { next(err) } } module.exports.getUserByUserId = async function getUserByUserId (req, res, next) { try { let elevate = req.query.elevate if ( elevate ) { let userId = req.params.userId let projection = req.query.projection let response = await UserService.getUserByUserId(userId, projection, elevate, req.userObject) if(!response) { throw new SmError.NotFoundError() } res.json(response) } else { throw new SmError.PrivilegeError() } } catch(err) { next(err) } } module.exports.getUsers = async function getUsers (req, res, next) { try { let elevate = req.query.elevate let username = req.query.username let usernameMatch = req.query['username-match'] let privilege = req.query['privilege'] let status = req.query.status let projection = req.query.projection if ( !elevate && projection?.length > 0) { throw new SmError.PrivilegeError() } let response = await UserService.getUsers( username, usernameMatch, privilege, status, projection, elevate, req.userObject) res.json(response) } catch(err) { next(err) } } module.exports.replaceUser = async function replaceUser (req, res, next) { try { let elevate = req.query.elevate let userId = req.params.userId if (!elevate) throw new SmError.PrivilegeError() let body = req.body let projection = req.query.projection let userData = await UserService.getUserByUserId(userId) if (!userData) { throw new SmError.NotFoundError("UserId not found.") } const intendedStatus = body.status || userData.status if (intendedStatus === 'unavailable') { if (body.collectionGrants?.length || body.userGroups?.length) { throw new SmError.UserInconsistentError() } } if (body.status) { body.statusUser = req.userObject.userId body.statusDate = new Date() } if (body.collectionGrants?.length) { await validateCollectionGrants(body.collectionGrants, {elevate}) } let response = await UserService.replaceUser(userId, body, projection, elevate, req.userObject, res.svcStatus) res.json(response) } catch(err) { next(err) } } module.exports.updateUser = async function updateUser (req, res, next) { try { let elevate = req.query.elevate if (!elevate) throw new SmError.PrivilegeError() let userId = req.params.userId let body = req.body let projection = req.query.projection let userData = await UserService.getUserByUserId(userId) if (!userData) { throw new SmError.NotFoundError("UserId not found.") } // Determine intended status: body.status or current status const intendedStatus = body.status || userData.status if (intendedStatus === 'unavailable') { if (body.collectionGrants?.length || body.userGroups?.length) { throw new SmError.UserInconsistentError() } body.collectionGrants = [] body.userGroups = [] } if (body.status) { body.statusUser = req.userObject.userId body.statusDate = new Date() } if (body.collectionGrants?.length) { await validateCollectionGrants(body.collectionGrants, {elevate}) } let response = await UserService.replaceUser(userId, body, projection, elevate, req.userObject, res.svcStatus) res.json(response) } catch(err) { next(err) } } /* c8 ignore start */ module.exports.setUserData = async function setUserData (username, fields) { try { await UserService.setUserData(username, fields) return await UserService.getUserByUsername(username) } catch (e) { next(err) } } /* c8 ignore end */ module.exports.createUserGroup = async (req, res, next) => { try { if (!req.query.elevate) throw new SmError.PrivilegeError() const {userIds, collectionGrants, ...userGroupFields} = req.body const invalidUserIds = await dbUtils.selectInvalidUserIds(userIds) if (invalidUserIds.length) { throw new SmError.UserInconsistentError() } await validateCollectionGrants(collectionGrants, {elevate: req.query.elevate}) let userGroupId try{ userGroupId = await UserService.addOrUpdateUserGroup({ userGroupFields, userIds, collectionGrants, createdUserId: req.userObject.userId, modifiedUserId: req.userObject.userId }) } catch (err) { throw err.code === 'ER_DUP_ENTRY' ? new SmError.UnprocessableError('Group name is already in use.') : err } const response = await UserService.queryUserGroups({ projections: req.query.projection, filters: {userGroupId} }) res.status(201).json(response[0]) } catch (err) { next(err) } } module.exports.getUserGroups = async (req, res, next) => { try { if (req.query.projection?.includes('collections') && !req.query.elevate) { throw new SmError.PrivilegeError('collections projection requires elevation') } const response = await UserService.queryUserGroups({ projections: req.query.projection }) res.json(response) } catch (err) { next(err) } } module.exports.getUserGroup = async (req, res, next) => { try { if (req.query.projection?.includes('collections') && !req.query.elevate) { throw new SmError.PrivilegeError('collections projection requires elevation') } const response = await UserService.queryUserGroups({ projections: req.query.projection, filters: {userGroupId: req.params.userGroupId} }) if (!response[0]) throw new SmError.NotFoundError() res.json(response[0]) } catch (err) { next(err) } } async function putOrPatchUserGroup (req, res, next) { try { if (!req.query.elevate) throw new SmError.PrivilegeError() const {userIds, collectionGrants, ...userGroupFields} = req.body const invalidUserIds = await dbUtils.selectInvalidUserIds(userIds) if (invalidUserIds.length) { throw new SmError.UserInconsistentError() } await validateCollectionGrants(collectionGrants, {elevate: req.query.elevate}) const userGroup = await UserService.queryUserGroups({ projections: [], filters: {userGroupId: req.params.userGroupId} }) if (!userGroup.length) throw new SmError.NotFoundError("UserGroup not found.") const userGroupId = await UserService.addOrUpdateUserGroup({ userGroupId: req.params.userGroupId, userGroupFields, userIds, collectionGrants, modifiedUserId: req.userObject.userId }) const response = await UserService.queryUserGroups({ projections: req.query.projection, filters: {userGroupId} }) res.json(response[0]) } catch (err) { next(err) } } module.exports.patchUserGroup = putOrPatchUserGroup module.exports.putUserGroup = putOrPatchUserGroup module.exports.deleteUserGroup = async (req, res, next) => { try{ if (!req.query.elevate) throw new SmError.PrivilegeError() const response = await UserService.queryUserGroups({ projections: req.query.projection, filters: {userGroupId: req.params.userGroupId} }) await UserService.deleteUserGroup({ userGroupId: req.params.userGroupId, }) res.json(response[0]) } catch (err) { next(err) } } module.exports.getUserWebPreferences = async (req, res, next) => { try { const response = await UserService.getUserWebPreferences(req.userObject.userId) res.json(response) } catch (err) { next(err) } } module.exports.patchUserWebPreferences = async (req, res, next) => { try { const body = req.body await UserService.patchUserWebPreferences(req.userObject.userId, body) const response = await UserService.getUserWebPreferences(req.userObject.userId) res.json(response) } catch (err) { next(err) } } ================================================ FILE: api/source/healthcheck.js ================================================ const http = require("http") const options = { host : "localhost", port: process.env.STIGMAN_API_PORT || 54000, path: "/api/op/definition?jsonpath=%24.info.version", timeout : 2000 } const request = http.request(options, (res) => { console.log(`STATUS: ${res.statusCode}`) if (res.statusCode == 200) { process.exit(0) } else { process.exit(1) } }) request.on('error', function(err) { console.log('ERROR') process.exit(1) }) request.end() ================================================ FILE: api/source/index.js ================================================ 'use strict' const startTime = process.hrtime.bigint() const express = require('express') const logger = require('./utils/logger') const state = require('./utils/state') const signals = require('./bootstrap/signals') const config = require('./utils/config') const { serializeError } = require('./utils/serializeError') const configureMiddleware = require('./bootstrap/middlewares.js') const bootstrapUtils = require('./bootstrap/bootstrapUtils.js') const client = require('./bootstrap/client.js') const docs = require('./bootstrap/docs.js') const startServer = require('./bootstrap/server') signals.setupSignalHandlers() bootstrapUtils.logAppConfig(config) //Catch unhandled errors. process.on('uncaughtException', (err, origin) => { logger.writeError('app','uncaught', serializeError(err)) }) process.on('unhandledRejection', (reason, promise) => { logger.writeError('app','unhandled', {reason, promise}) }) const app = express() configureMiddleware(app, config) run() async function run() { try { client.serveClient(app) docs.serveDocs(app) docs.serveApiDocs(app) await startServer(app, startTime) } catch (err) { logger.writeError(err.message) state.setState('fail') } } ================================================ FILE: api/source/package.json ================================================ { "name": "stig-management-api", "version": "1.6.9", "description": "An API for managing evaluations of Security Technical Implementation Guide (STIG) assessments.", "main": "index.js", "scripts": { "prestart": "npm install", "start": "node index.js" }, "keywords": [ "swagger" ], "license": "MIT", "private": true, "dependencies": { "ajv": "^8.17.1", "ajv-formats": "^3.0.1", "archiver": "^7.0.1", "async-retry": "^1.3.3", "compression": "^1.8.1", "cors": "^2.8.5", "csv-stringify": "^6.5.1", "express": "^4.21.2", "express-openapi-validator": "^5.6.2", "fast-xml-parser": "^5.5.8", "he": "^1.2.0", "js-yaml": "^4.1.0", "jsonpath-plus": "^10.3.0", "jsonwebtoken": "^9.0.2", "jszip": "^3.10.1", "jwks-rsa": "^3.1.0", "multer": "^2.1.1", "mysql2": "^3.11.2", "net-keepalive": "^4.0.17", "on-finished": "^2.4.1", "on-headers": "^1.1.0", "semver": "^7.6.3", "swagger-ui-express": "^4.1.6", "umzug": "^2.3.0", "undici": "^6.24.0", "ws": "^8.18.3", "xlsx-template": "file:utils/xlsx-template-js-zip-upgrade" } } ================================================ FILE: api/source/service/AssetService.js ================================================ 'use strict'; const { randomUUID } = require('node:crypto') const dbUtils = require('./utils') const config = require('../utils/config') let _this = this /** Generalized queries for asset(s). **/ exports.queryAssets = async function ({projections = [], filter = {}, grant = {}}) { const ctes = [] const columns = [ 'CAST(a.assetId as char) as assetId', 'a.name', 'a.fqdn', `json_object ( 'collectionId', CAST(c.collectionId as char), 'name', c.name ) as "collection"`, 'a.description', 'a.ip', `coalesce( (select json_arrayagg(BIN_TO_UUID(cl.uuid,1)) from collection_label_asset_map cla left join collection_label cl on cla.clId = cl.clId where cla.assetId = a.assetId), json_array() ) as labelIds`, `coalesce( (select json_arrayagg(json_object( 'labelId', BIN_TO_UUID(cl.uuid,1), 'name', cl.name, 'color', cl.color )) from collection_label_asset_map cla left join collection_label cl on cla.clId = cl.clId where cla.assetId = a.assetId), json_array() ) as labels`, 'a.mac', 'a.noncomputing', 'a.metadata' ] const joins = [ 'enabled_asset a', 'left join enabled_collection c on a.collectionId = c.collectionId', 'left join stig_asset_map sa on a.assetId = sa.assetId' ] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } // PROJECTIONS if (projections.includes('statusStats')) { columns.push(`(select json_object( 'stigCount', COUNT(saStatusStats.benchmarkId), 'ruleCount', SUM(rStatusStats.ruleCount), 'acceptedCount', SUM(saStatusStats.accepted), 'rejectedCount', SUM(saStatusStats.rejected), 'submittedCount', SUM(saStatusStats.submitted), 'savedCount', SUM(saStatusStats.saved), 'minTs', DATE_FORMAT(LEAST(MIN(saStatusStats.minTs), MIN(saStatusStats.maxTs)),'%Y-%m-%dT%H:%i:%sZ'), 'maxTs', DATE_FORMAT(GREATEST(MAX(saStatusStats.minTs), MAX(saStatusStats.maxTs)),'%Y-%m-%dT%H:%i:%sZ') ) from stig_asset_map saStatusStats left join enabled_asset aStatusStats using (assetId) left join default_rev drStatusStats on (saStatusStats.benchmarkId = drStatusStats.benchmarkId and aStatusStats.collectionId = drStatusStats.collectionId) left join revision rStatusStats on drStatusStats.revId = rStatusStats.revId where FIND_IN_SET(saStatusStats.saId, GROUP_CONCAT(sa.saId)) ) as "statusStats"`) } if (projections.includes('stigs')) { //iterate: If benchmarkId is a predicate in main query, this incorrectly only shows that STIG joins.push('left join default_rev dr on (sa.benchmarkId=dr.benchmarkId and a.collectionId = dr.collectionId)') joins.push('left join revision on dr.revId = revision.revId') columns.push(`cast( concat('[', coalesce ( group_concat(distinct case when sa.benchmarkId is not null then json_object( 'benchmarkId', sa.benchmarkId, 'revisionStr', revision.revisionStr, 'benchmarkDate', date_format(revision.benchmarkDateSql,'%Y-%m-%d'), 'revisionPinned', CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END, 'ruleCount', revision.ruleCount) else null end order by sa.benchmarkId), ''), ']') as json) as "stigs"`) } // PREDICATES const predicates = { statements: [], binds: [] } if (filter.assetId) { predicates.statements.push('a.assetId = ?') predicates.binds.push(filter.assetId) } if (filter.assetIds && filter.assetIds.length > 0) { predicates.statements.push(`a.assetId IN ?`) predicates.binds.push([filter.assetIds]) } if (filter.labels?.labelNames || filter.labels?.labelIds || filter.labels?.labelMatch) { joins.push( 'left join collection_label_asset_map cla2 on a.assetId = cla2.assetId', 'left join collection_label cl2 on cla2.clId = cl2.clId' ) const labelPredicates = [] if (filter.labels.labelIds) { labelPredicates.push('cl2.uuid IN ?') const uuidBinds = filter.labels.labelIds.map( uuid => dbUtils.uuidToSqlString(uuid)) predicates.binds.push([uuidBinds]) } if (filter.labels.labelNames) { labelPredicates.push('cl2.name IN ?') predicates.binds.push([filter.labels.labelNames]) } if (filter.labels.labelMatch === 'null') { labelPredicates.push('cl2.uuid IS NULL') } const labelPredicatesClause = `(${labelPredicates.join(' OR ')})` predicates.statements.push(labelPredicatesClause) } if ( filter.name ) { let matchStr = '= ?' if ( filter.nameMatch && filter.nameMatch !== 'exact') { matchStr = 'LIKE ?' switch (filter.nameMatch) { case 'startsWith': filter.name = `${filter.name}%` break case 'endsWith': filter.name = `%${filter.name}` break case 'contains': filter.name = `%${filter.name}%` break } } predicates.statements.push(`a.name ${matchStr}`) predicates.binds.push(filter.name) } if (filter.collectionId) { predicates.statements.push('a.collectionId = ?') predicates.binds.push(filter.collectionId) } if (filter.benchmarkId) { predicates.statements.push('sa.benchmarkId = ?') predicates.binds.push(filter.benchmarkId) } if (filter.metadata ) { for (const pair of filter.metadata) { const [key, value] = pair.split(/:(.*)/s) predicates.statements.push('JSON_CONTAINS(a.metadata, ?, ?)') predicates.binds.push( JSON.stringify(value), `$.${key}`) } } const groupBy = [ 'a.assetId' ] const orderBy = [] const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) let [rows] = await dbUtils.pool.query(sql) return (rows) } exports.queryChecklist = async function (inPredicates, projections = []) { let connection try { const columns = [ 'CAST(:assetId as char) as "assetId"', 'rgr.ruleId', 'rgr.title as "ruleTitle"', 'rgr.version', 'rgr.groupId', 'rgr.groupTitle', 'rgr.severity', `result.api as "result"`, `CASE WHEN review.resultEngine = 0 THEN NULL ELSE review.resultEngine END as resultEngine`, `review.autoResult`, `status.api as "status"`, `review.statusTs`, `review.ts`, `review.touchTs` ] if (projections.includes('rule')) { columns.push(`json_object( 'ruleId', rgr.ruleId, 'severity', rgr.severity, 'title', rgr.title, 'version', rgr.version, 'groupId', rgr.groupId, 'groupTitle', rgr.groupTitle, 'detail', json_object( 'weight', rgr.weight, 'vulnDiscussion', rgr.vulnDiscussion, 'falsePositives', rgr.falsePositives, 'falseNegatives', rgr.falseNegatives, 'documentable', rgr.documentable, 'mitigations', rgr.mitigations, 'severityOverrideGuidance', rgr.severityOverrideGuidance, 'potentialImpacts', rgr.potentialImpacts, 'thirdPartyTools', rgr.thirdPartyTools, 'mitigationControl', rgr.mitigationControl, 'responsibility', rgr.responsibility ), 'ccis', coalesce( ( select json_arrayagg(json_object( 'cci', rgrcc.cci, 'apAcronym', cci.apAcronym, 'definition', cci.definition, 'control', crm.parentControl )) from rev_group_rule_cci_map rgrcc inner join cci using (cci) left join cci_reference_map crm using (cci) where rgrcc.rgrId = rgr.rgrId ), json_array() ), 'check', json_object( 'system', rgr.checkSystem, 'content', ( select cc.content from check_content cc where cc.digest = rgr.checkDigest limit 1 ) ), 'fix', json_object( 'fixref', rgr.fixref, 'text', ( select ft.text from fix_text ft where ft.digest = rgr.fixDigest limit 1 ) ), 'ruleIds', coalesce( ( select json_arrayagg(rvcd2.ruleId) from rule_version_check_digest rvcd2 where rvcd2.version = rgr.version and rvcd2.checkDigest = rgr.checkDigest ), json_array() ), 'stigs', json_array( json_object( 'benchmarkId', rev.benchmarkId, 'revisionStr', concat('V', rev.version, 'R', rev.release) ) ) ) as rule`) } if (projections.includes('detail')) { columns.push('review.detail as "detail"') } if (projections.includes('comment')) { columns.push('review.comment as "comment"') } const joins = [ 'current_rev rev', 'left join rev_group_rule_map rgr using (revId)', 'left join rule_version_check_digest rvcd using (ruleId)', 'left join review on (rvcd.version = review.version and rvcd.checkDigest = review.checkDigest and review.assetId = :assetId)', 'left join result on review.resultId=result.resultId', 'left join status on review.statusId=status.statusId', 'left join enabled_asset a on review.assetId=a.assetId' ] const predicates = { statements: [], binds: {} } if (inPredicates.assetId) { predicates.binds.assetId = inPredicates.assetId } if (inPredicates.benchmarkId) { predicates.statements.push('rev.benchmarkId = :benchmarkId') predicates.binds.benchmarkId = inPredicates.benchmarkId } if (inPredicates.revisionStr !== 'latest') { joins.splice(0, 1, 'revision rev') const {version, release} = dbUtils.parseRevisionStr(inPredicates.revisionStr) const revId = `${inPredicates.benchmarkId}-${version}-${release}` predicates.statements.push('rev.revId = :revId') predicates.binds.revId = revId } const groupBy = [ 'rgr.rgrId', 'result.api', 'review.reviewId', 'status.api', ] const orderBy = [ 'substring(rgr.groupId from 3) + 0' ] const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, orderBy}) connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true let [rows] = await connection.query( sql, predicates.binds ) return (rows) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.cklFromAssetStigs = async function cklFromAssetStigs (assetId, stigs) { let connection try { let revisionStrResolved // Will hold specific revision string value, as opposed to "latest" const xmlJs = { CHECKLIST: { ASSET: { ROLE: 'None', ASSET_TYPE: 'Computing', MARKING: null, HOST_NAME: null, HOST_IP: null, HOST_MAC: null, HOST_GUID: null, HOST_FQDN: null, TECH_AREA: null, TARGET_KEY: '2777', WEB_OR_DATABASE: 'false', WEB_DB_SITE: null, WEB_DB_INSTANCE: null }, STIGS: { iSTIG: [] } } } const sqlGetAsset = "select name, fqdn, ip, mac, noncomputing, metadata from enabled_asset where assetId = ?" const sqlGetChecklist =`SELECT rgr.groupId, rgr.severity, rgr.groupTitle, rgr.ruleId, rgr.title as "ruleTitle", rgr.weight, rgr.version, rgr.vulnDiscussion, rgr.iaControls, rgr.falsePositives, rgr.falseNegatives, rgr.documentable, rgr.mitigations, rgr.potentialImpacts, rgr.thirdPartyTools, rgr.mitigationControl, rgr.responsibility, rgr.severityOverrideGuidance, result.ckl as "result", LEFT(review.detail,32767) as "detail", LEFT(review.comment,32767) as "comment", cc.content as "checkContent", ft.text as "fixText", group_concat(rgrcc.cci ORDER BY rgrcc.cci) as "ccis" FROM revision rev left join rev_group_rule_map rgr on rev.revId = rgr.revId left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId left join severity_cat_map sc on rgr.severity = sc.severity left join rev_group_rule_cci_map rgrcc on rgr.rgrId = rgrcc.rgrId left join check_content cc on rgr.checkDigest = cc.digest left join fix_text ft on rgr.fixDigest = ft.digest left join review on (rvcd.version = review.version and rvcd.checkDigest = review.checkDigest and review.assetId = ?) left join result on review.resultId = result.resultId left join status on review.statusId = status.statusId WHERE rev.revId = ? GROUP BY rgr.rgrId, result.ckl, review.detail, review.comment order by substring(rgr.groupId from 3) + 0 asc ` connection = await dbUtils.pool.getConnection() // ASSET const [resultGetAsset] = await connection.query(sqlGetAsset, [assetId]) xmlJs.CHECKLIST.ASSET.HOST_NAME = resultGetAsset[0].metadata.cklHostName ? resultGetAsset[0].metadata.cklHostName : resultGetAsset[0].name xmlJs.CHECKLIST.ASSET.HOST_FQDN = resultGetAsset[0].fqdn xmlJs.CHECKLIST.ASSET.HOST_IP = resultGetAsset[0].ip xmlJs.CHECKLIST.ASSET.HOST_MAC = resultGetAsset[0].mac xmlJs.CHECKLIST.ASSET.ASSET_TYPE = resultGetAsset[0].noncomputing ? 'Non-Computing' : 'Computing' xmlJs.CHECKLIST.ASSET.ROLE = resultGetAsset[0].metadata.cklRole ?? 'None' xmlJs.CHECKLIST.ASSET.TECH_AREA = resultGetAsset[0].metadata.cklTechArea ?? null xmlJs.CHECKLIST.ASSET.WEB_OR_DATABASE = resultGetAsset[0].metadata.cklHostName ? 'true' : 'false' xmlJs.CHECKLIST.ASSET.WEB_DB_SITE = resultGetAsset[0].metadata.cklWebDbSite ?? null xmlJs.CHECKLIST.ASSET.WEB_DB_INSTANCE = resultGetAsset[0].metadata.cklWebDbInstance ?? null // CHECKLIST.STIGS.iSTIG.STIG_INFO.SI_DATA const markings = [] for (const stigItem of stigs) { const revisionStr = stigItem.revisionStr || 'latest' revisionStrResolved = revisionStr const benchmarkId = stigItem.benchmarkId let sqlGetBenchmarkId if (revisionStr === 'latest') { sqlGetBenchmarkId = `select cr.benchmarkId, s.title, cr.revId, cr.description, cr.version, cr.release, cr.benchmarkDate, cr.marking from current_rev cr left join stig s on cr.benchmarkId = s.benchmarkId where cr.benchmarkId = ?` } else { sqlGetBenchmarkId = `select r.benchmarkId, s.title, r.description, r.version, r.release, r.benchmarkDate, r.marking from stig s left join revision r on s.benchmarkId=r.benchmarkId where r.revId = ?` } // Calculate revId let resultGetBenchmarkId, revId if (revisionStr === 'latest') { ;[resultGetBenchmarkId] = await connection.query(sqlGetBenchmarkId, [benchmarkId]) revId = resultGetBenchmarkId[0].revId revisionStrResolved = `V${resultGetBenchmarkId[0].version}R${resultGetBenchmarkId[0].release}` } else { const {version, release} = dbUtils.parseRevisionStr(revisionStr) revId = `${benchmarkId}-${version}-${release}` ;[resultGetBenchmarkId] = await connection.execute(sqlGetBenchmarkId, [revId]) } const stig = resultGetBenchmarkId[0] // Set the marking if (stig.marking) { markings.push(stig.marking) } const siDataRefs = [ { SID_NAME: 'version', SID_DATA: stig.version }, { SID_NAME: 'classification' }, { SID_NAME: 'customname' }, { SID_NAME: 'stigid', SID_DATA: stig.benchmarkId }, { SID_NAME: 'description', SID_DATA: stig.description }, { SID_NAME: 'filename', SID_DATA: 'stig-manager-oss' }, { SID_NAME: 'releaseinfo', SID_DATA: `Release: ${stig.release} Benchmark Date: ${stig.benchmarkDate}`}, { SID_NAME: 'title', SID_DATA: stig.title }, { SID_NAME: 'uuid', SID_DATA: '391aad33-3cc3-4d9a-b5f7-0d7538b7b5a2' }, { SID_NAME: 'notice', SID_DATA: 'terms-of-use' }, { SID_NAME: 'source', } ] const iStigJs = { STIG_INFO: { SI_DATA: [] }, VULN: [] } const siDataArray = iStigJs.STIG_INFO.SI_DATA for (const siDatum of siDataRefs) { siDataArray.push(siDatum) } // CHECKLIST.STIGS.iSTIG.STIG_INFO.VULN const [resultGetChecklist] = await connection.query(sqlGetChecklist, [assetId, revId]) const stigDataRef = [ ['Vuln_Num', 'groupId' ], ['Severity', 'severity' ], ['Weight', 'weight' ], ['Group_Title', 'groupTitle' ], ['Rule_ID', 'ruleId' ], ['Rule_Ver', 'version' ], ['Rule_Title', 'ruleTitle' ], ['Vuln_Discuss', 'vulnDiscussion' ], ['IA_Controls', 'iaControls' ], ['Check_Content', 'checkContent' ], ['Fix_Text', 'fixText' ], ['False_Positives', 'falsePositives' ], ['False_Negatives', 'falseNegatives' ], ['Documentable', 'documentable' ], ['Mitigations', 'mitigations' ], ['Potential_Impact', 'potentialImpacts' ], ['Third_Party_Tools', 'thirdPartyTools' ], ['Mitigation_Control', 'mitigationControl' ], ['Responsibility', 'responsibility' ], ['Security_Override_Guidance', 'severityOverrideGuidance' ] // STIGViewer bug requires using Security_Override_Guidance instead of Severity_Override_Guidance ] // let vulnArray = xmlJs.CHECKLIST.STIGS.iSTIG.VULN const vulnArray = iStigJs.VULN for (const r of resultGetChecklist) { const vulnObj = { STIG_DATA: [], STATUS: r.result || 'Not_Reviewed', FINDING_DETAILS: r.detail, COMMENTS: r.comment, SEVERITY_OVERRIDE: null, SEVERITY_JUSTIFICATION: null } for (const stigDatum of stigDataRef) { vulnObj.STIG_DATA.push({ VULN_ATTRIBUTE: stigDatum[0], ATTRIBUTE_DATA: r[stigDatum[1]] }) } // STIGRef vulnObj.STIG_DATA.push({ VULN_ATTRIBUTE: 'STIGRef', ATTRIBUTE_DATA: `${stig.title} :: Version ${stig.version}, Release: ${stig.release} Benchmark Date: ${stig.benchmarkDate}` }) // CCI_REFs if (r.ccis) { const ccis = r.ccis.split(',') for (const cci of ccis) { vulnObj.STIG_DATA.push({ VULN_ATTRIBUTE: 'CCI_REF', ATTRIBUTE_DATA: `CCI-${cci}` }) } } vulnArray.push(vulnObj) } xmlJs.CHECKLIST.STIGS.iSTIG.push(iStigJs) } // calculate the marking for this checklist let marking = config.settings.setClassification === 'NONE' ? 'U' : config.settings.setClassification if (marking === 'U' || marking === 'CUI') { const sortedMarkings = markings.toSorted((a, b) => a.localeCompare(b)) // because CUI, FOUO, U sort alphabetically marking = sortedMarkings[0] || 'U' } return ({assetName: resultGetAsset[0].name, xmlJs, revisionStrResolved, marking}) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.cklbFromAssetStigs = async function cklbFromAssetStigs (assetId, stigs) { let connection try { let revisionStrResolved // Will hold specific revision string value, as opposed to "latest" const cklb = { title: '', id: randomUUID(), active: false, mode: 1, has_path: true, target_data: { target_type: '', host_name: '', ip_address: '', mac_address: '', fqdn: '', comments: '', role: '', is_web_database: false, technology_area: '', web_db_site: '', web_db_instance: '' }, stigs: [] } const sqlGetAsset = "select name, fqdn, ip, mac, noncomputing, metadata from enabled_asset where assetId = ?" const sqlGetChecklist =`SELECT rgr.groupId, rgr.severity, rgr.groupTitle, rgr.ruleId, rgr.title as "ruleTitle", rgr.weight, rgr.version, rgr.vulnDiscussion, rgr.iaControls, rgr.falsePositives, rgr.falseNegatives, rgr.documentable, rgr.mitigations, rgr.potentialImpacts, rgr.thirdPartyTools, rgr.mitigationControl, rgr.responsibility, rgr.severityOverrideGuidance, result.cklb as "result", LEFT(review.detail,32767) as "detail", LEFT(review.comment,32767) as "comment", review.ts as "createdAt", review.touchTs as "updatedAt", cc.content as "checkContent", ft.text as "fixText", group_concat(rgrcc.cci ORDER BY rgrcc.cci) as "ccis" FROM revision rev left join rev_group_rule_map rgr on rev.revId = rgr.revId left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId left join severity_cat_map sc on rgr.severity = sc.severity left join rev_group_rule_cci_map rgrcc on rgr.rgrId = rgrcc.rgrId left join check_content cc on rgr.checkDigest = cc.digest left join fix_text ft on rgr.fixDigest = ft.digest left join review on (rvcd.version = review.version and rvcd.checkDigest = review.checkDigest and review.assetId = ?) left join result on review.resultId = result.resultId left join status on review.statusId = status.statusId WHERE rev.revId = ? GROUP BY rgr.rgrId, result.cklb, review.reviewId order by substring(rgr.groupId from 3) + 0 asc ` connection = await dbUtils.pool.getConnection() // cklb.target_data const [resultGetAsset] = await connection.query(sqlGetAsset, [assetId]) cklb.target_data.host_name = resultGetAsset[0].metadata.cklHostName ? resultGetAsset[0].metadata.cklHostName : resultGetAsset[0].name cklb.target_data.fqdn = resultGetAsset[0].fqdn ?? '' cklb.target_data.ip_address = resultGetAsset[0].ip ?? '' cklb.target_data.mac_address = resultGetAsset[0].mac ?? '' cklb.target_data.target_type = resultGetAsset[0].noncomputing ? 'Non-Computing' : 'Computing' cklb.target_data.role = resultGetAsset[0].metadata.cklRole ?? 'None' cklb.target_data.technology_area = resultGetAsset[0].metadata.cklTechArea ?? '' cklb.target_data.is_web_database = !!resultGetAsset[0].metadata.cklHostName cklb.target_data.web_db_site = resultGetAsset[0].metadata.cklWebDbSite ?? '' cklb.target_data.web_db_instance = resultGetAsset[0].metadata.cklWebDbInstance ?? '' // cklb.stigs const markings = [] for (const stigItem of stigs) { const revisionStr = stigItem.revisionStr || 'latest' revisionStrResolved = revisionStr const benchmarkId = stigItem.benchmarkId let sqlGetBenchmarkId if (revisionStr === 'latest') { sqlGetBenchmarkId = `select cr.benchmarkId, s.title, cr.revId, cr.description, cr.version, cr.release, cr.benchmarkDate, cr.ruleCount, cr.marking from current_rev cr left join stig s on cr.benchmarkId = s.benchmarkId where cr.benchmarkId = ?` } else { sqlGetBenchmarkId = `select r.benchmarkId, s.title, r.description, r.version, r.release, r.benchmarkDate, r.ruleCount, r.marking from stig s left join revision r on s.benchmarkId=r.benchmarkId where r.revId = ?` } // Calculate revId let resultGetBenchmarkId, revId if (revisionStr === 'latest') { ;[resultGetBenchmarkId] = await connection.query(sqlGetBenchmarkId, [benchmarkId]) revId = resultGetBenchmarkId[0].revId revisionStrResolved = `V${resultGetBenchmarkId[0].version}R${resultGetBenchmarkId[0].release}` } else { const {version, release} = dbUtils.parseRevisionStr(revisionStr) revId = `${benchmarkId}-${version}-${release}` ;[resultGetBenchmarkId] = await connection.execute(sqlGetBenchmarkId, [revId]) } const stig = resultGetBenchmarkId[0] // Set the marking if (stig.marking) { markings.push(stig.marking) } const stigUuid = randomUUID() const stigObj = { stig_name: stig.title, display_name: stig.title.replace(' Security Technical Implementation Guide', ''), stig_id: stig.benchmarkId, version: `${stig.version}`, release_info: `Release: ${stig.release} Benchmark Date: ${stig.benchmarkDate}`, uuid: stigUuid, reference_identifier: '0000', size: stig.ruleCount, rules: [] } // cklb.stigs[x].rules const [resultGetChecklist] = await connection.query(sqlGetChecklist, [assetId, revId]) for (const row of resultGetChecklist) { const rule = { uuid: randomUUID(), stig_uuid: stigUuid, target_key: null, stig_ref: null, group_id: row.groupId, rule_id: row.ruleId.replace('_rule', ''), rule_id_src: row.ruleId, weight: row.weight, classification: config.settings.setClassification, severity: row.severity, rule_version: row.version, group_title: row.groupTitle, rule_title: row.ruleTitle, fix_text: row.fixText, false_positives: row.falsePositives, false_negatives: row.falseNegatives, discussion: row.vulnDiscussion, check_content: row.checkContent, documentable: row.documentable, mitigations: row.mitigations, potential_impacts: row.potentialImpacts, third_party_tools: row.thirdPartyTools, mitigation_control: row.mitigationControl, responsibility: row.responsibility, security_override_guidance: row.severityOverrideGuidance, ia_controls: row.iaControls, check_content_ref: { href: '', name: 'M' }, legacy_ids: [], group_tree: [ { id: row.groupId, title: row.groupTitle, description: '' } ], createdAt: row.createdAt, updatedAt: row.updatedAt, STIGUuid: stigUuid, status: row.result || 'not_reviewed', overrides: {}, comments: row.comment ?? '', finding_details: row.detail ?? '' } // CCI_REFs rule.ccis = row.ccis ? row.ccis.split(',').map( cci => `CCI-${cci}`) : [] stigObj.rules.push(rule) } cklb.stigs.push(stigObj) } // calculate the marking for this checklist let marking = config.settings.setClassification === 'NONE' ? 'U' : config.settings.setClassification if (marking === 'U' || marking === 'CUI') { const sortedMarkings = markings.toSorted((a, b) => a.localeCompare(b)) // because CUI, FOUO, U sort alphabetically marking = sortedMarkings[0] || 'U' } return ({assetName: resultGetAsset[0].name, cklb, revisionStrResolved, marking}) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.xccdfFromAssetStig = async function (assetId, benchmarkId, revisionStr = 'latest') { // queries and query methods const sqlGetAsset = "select name, fqdn, ip, mac, noncomputing, metadata from enabled_asset where assetId = ?" const sqlGetChecklist =`SELECT rgr.groupId, rgr.groupTitle, rgr.ruleId, rgr.title as "ruleTitle", rgr.severity, rgr.weight, rgr.version, rgr.checkSystem, cc.content as "checkContent", result.api as "result", review.ts, LEFT(review.detail,32767) as "detail", LEFT(review.comment,32767) as "comment", review.resultEngine FROM revision rev left join rev_group_rule_map rgr on rev.revId = rgr.revId left join check_content cc on rgr.checkDigest = cc.digest left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId left join review on (rvcd.version = review.version and rvcd.checkDigest = review.checkDigest and review.assetId = ?) left join result on review.resultId = result.resultId left join status on review.statusId = status.statusId WHERE rev.revId = ? order by substring(rgr.groupId from 3) + 0 asc ` async function getBenchmarkRevision(connection, benchmarkId, revisionStr) { let revisionStrResolved // Benchmark, calculate revId const sqlGetRevision = revisionStr === 'latest' ? `select cr.benchmarkId, s.title, cr.revId, cr.description, cr.version, cr.release, cr.benchmarkDate, cr.status, cr.statusDate, cr.marking from current_rev cr left join stig s on cr.benchmarkId = s.benchmarkId where cr.benchmarkId = ?` : `select r.benchmarkId, s.title, r.revId, r.description, r.version, r.release, r.benchmarkDate, r.status, r.statusDate, r.marking from stig s left join revision r on s.benchmarkId=r.benchmarkId where r.revId = ?` let result if (revisionStr === 'latest') { ;[result] = await connection.query(sqlGetRevision, [benchmarkId]) revisionStrResolved = `V${result[0].version}R${result[0].release}` } else { const {version, release} = dbUtils.parseRevisionStr(revisionStr) const revId = `${benchmarkId}-${version}-${release}` ;[result] = await connection.query(sqlGetRevision, [revId]) revisionStrResolved = revisionStr } result[0].revisionStr = revisionStrResolved return result[0] } function prefixObjectProperties(prefix, obj) { for (const k in obj) { if (typeof obj[k] == "object" && obj[k] !== null) { prefixObjectProperties(prefix, obj[k]) } if (!Array.isArray(obj)) { obj[`${prefix}:${k}`] = obj[k] delete obj[k] } } } function generateTargetFacts({metadata, ...assetFields}) { const fact = [] for (const field in assetFields) { if (assetFields[field]) { fact.push({ '@_name': `tag:stig-manager@users.noreply.github.com,2020:asset:${field}`, '@_type': 'string', '#text': assetFields[field] }) } } for (const key in metadata) { if (key.startsWith('urn:')) { fact.push({ '@_name': key, '@_type': 'string', '#text': metadata[key] || '' }) } else { fact.push({ '@_name': `tag:stig-manager@users.noreply.github.com,2020:asset:metadata:${encodeURI(key)}`, '@_type': 'string', '#text': metadata[key] || '' }) } } return {"cdf:fact": fact} } // reuse a connection for multiple SELECT queries const connection = await dbUtils.pool.getConnection() // target const [resultGetAsset] = await connection.query(sqlGetAsset, [assetId]) // benchmark const revision = await getBenchmarkRevision(connection, benchmarkId, revisionStr) // checklist const [resultGetChecklist] = await connection.query(sqlGetChecklist, [assetId, revision.revId]) // release connection await connection.release() // scaffold xccdf object with cdf namespace on all base elements const xmlJs = { "cdf:Benchmark": { "@_xmlns:cdf": "http://checklists.nist.gov/xccdf/1.2", "@_xmlns:dc": "http://purl.org/dc/elements/1.1/", "@_xmlns:sm": "http://github.com/nuwcdivnpt/stig-manager", "@_id": `xccdf_mil.disa.stig_benchmark_${revision.benchmarkId}`, "cdf:status": { "@_date": revision.statusDate, "#text": revision.status }, "cdf:title": revision.title, "cdf:description": revision.description, "cdf:platform": { "@_idref": "cpe:2.3:a:disa:stig" }, "cdf:version": revision.revisionStr, "cdf:metadata": { "dc:creator": "DISA", "dc:publisher": "STIG Manager OSS" }, "cdf:Group": [], "cdf:TestResult": { "@_id": `xccdf_mil.navy.nuwcdivnpt.stig-manager_testresult_${revision.benchmarkId}`, "@_test-system": `cpe:/a:nuwcdivnpt:stig-manager:${config.version}`, "@_end-time": new Date().toISOString(), "@_version": "1.0", "cdf:title": "", "cdf:target": resultGetAsset[0].name, "cdf:target-address": resultGetAsset[0].ip, "cdf:target-facts": generateTargetFacts(resultGetAsset[0]), "cdf:rule-result": [], "cdf:score": "1.0" } } } // iterate through checklist query results for (const r of resultGetChecklist) { xmlJs["cdf:Benchmark"]["cdf:Group"].push({ "@_id": `xccdf_mil.disa.stig_group_${r.groupId}`, "cdf:title": r.groupTitle, "cdf:Rule": { "@_id": `xccdf_mil.disa.stig_rule_${r.ruleId}`, "@_weight": r.weight, "@_severity": r.severity || undefined, "cdf:title": r.ruleTitle, "cdf:check": { "@_system": r.checkSystem, "cdf:check-content": r.checkContent } } }) if (r.resultEngine) { prefixObjectProperties('sm', r.resultEngine) } xmlJs["cdf:Benchmark"]["cdf:TestResult"]["cdf:rule-result"].push({ "cdf:result": r.result || "notchecked", "@_idref": `xccdf_mil.disa.stig_rule_${r.ruleId}`, "@_time": r.ts?.toISOString(), "cdf:check": { "@_system": r.checkSystem, "cdf:check-content": { "sm:detail": r.detail || undefined, "sm:comment": r.comment || undefined, "sm:resultEngine": r.resultEngine || undefined } } }) } let marking = config.settings.setClassification === 'NONE' ? 'U' : config.settings.setClassification if (marking === 'U' || marking === 'CUI') { marking = revision.marking || 'U' // if marking is not set, use U } return ({assetName: resultGetAsset[0].name, xmlJs, revisionStrResolved: revision.revisionStr, marking}) } exports.createAssets = async function({ assets, collectionId, svcStatus = {} }) { let insertedAssetIds = [] async function transactionFn(connection) { await connection.query('DROP TEMPORARY TABLE IF EXISTS temp_assets') // create temp table to hold incoming assets const createTempTableSQL = ` CREATE TEMPORARY TABLE temp_assets ( tempId INT AUTO_INCREMENT PRIMARY KEY, name VARCHAR(255), fqdn VARCHAR(255), ip VARCHAR(255), mac VARCHAR(255), description TEXT, collectionId INT, noncomputing TINYINT, metadata JSON, benchmarkIds JSON, labelNames JSON, assetId INT NULL );` await connection.query(createTempTableSQL) const assetsJson = JSON.stringify(assets) const insertTempAssetsSQL = ` INSERT INTO temp_assets (name, fqdn, ip, mac, description, collectionId, noncomputing, metadata, benchmarkIds, labelNames) SELECT name, fqdn, ip, mac, description, collectionId, noncomputing, metadata, benchmarkIds, labelNames FROM JSON_TABLE(?, '$[*]' COLUMNS ( name VARCHAR(255) PATH '$.name', fqdn VARCHAR(255) PATH '$.fqdn', ip VARCHAR(255) PATH '$.ip', mac VARCHAR(255) PATH '$.mac', description TEXT PATH '$.description', collectionId INT PATH '$.collectionId', noncomputing TINYINT PATH '$.noncomputing', metadata JSON PATH '$.metadata', benchmarkIds JSON PATH '$.stigs', labelNames JSON PATH '$.labelNames' ) ) AS jt` await connection.query(insertTempAssetsSQL, [assetsJson]); // insert into asset table const insertAssetsSQL = ` INSERT INTO asset (name, fqdn, ip, mac, description, collectionId, noncomputing, metadata) SELECT name, fqdn, ip, mac, description, collectionId, noncomputing, metadata FROM temp_assets;` await connection.query(insertAssetsSQL) // update temp table with create assets assetIds const updateTempWithAssetIdsSQL = ` UPDATE temp_assets t INNER JOIN enabled_asset a ON a.name = t.name AND a.collectionId = t.collectionId SET t.assetId = a.assetId;` await connection.query(updateTempWithAssetIdsSQL) const insertStigsSQL = ` INSERT INTO stig_asset_map (benchmarkId, assetId) SELECT jt.benchmarkId, t.assetId FROM temp_assets t INNER JOIN JSON_TABLE(t.benchmarkIds, '$[*]' COLUMNS (benchmarkId VARCHAR(255) PATH '$') ) AS jt WHERE t.benchmarkIds IS NOT NULL;` const [stigInsertResult] = await connection.query(insertStigsSQL) const didInsertStigs = stigInsertResult.affectedRows > 0 // not sure abnout this left hoin ior not const insertLabelsSQL = ` INSERT INTO collection_label_asset_map (assetId, clId) SELECT t.assetId, cl.clId FROM temp_assets t INNER JOIN JSON_TABLE(t.labelNames, '$[*]' COLUMNS (labelName VARCHAR(255) PATH '$') ) AS labels LEFT JOIN collection_label cl ON cl.name = labels.labelName AND cl.collectionId = t.collectionId WHERE t.labelNames IS NOT NULL;` await connection.query(insertLabelsSQL) // get assetIds of newly created assets const [newAssets] = await connection.query('SELECT assetId FROM temp_assets') insertedAssetIds = newAssets.map(asset => asset.assetId) // if assets with stig assignment inserted, update default rev and collection revision map if (didInsertStigs) { await dbUtils.pruneCollectionRevMap(connection) await dbUtils.updateDefaultRev(connection, { collectionId: parseInt(collectionId) }) } } await dbUtils.retryOnDeadlock2({ transactionFn, statusObj: svcStatus }) return insertedAssetIds } exports.deleteAsset = async function(assetId, userId, svcStatus) { let connection try { connection = await dbUtils.pool.getConnection() async function transaction () { await connection.query('START TRANSACTION') const sqlDelete = `UPDATE asset SET state = "disabled", stateDate = NOW(), stateUserId = ? where assetId = ?` await connection.query(sqlDelete, [userId, assetId]) // changes above might have affected need for records in collection_rev_map await dbUtils.pruneCollectionRevMap(connection) await dbUtils.updateDefaultRev(connection, {}) await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return true } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.deleteAssets = async function(assetIds, userId, svcStatus) { let connection try{ connection = await dbUtils.pool.getConnection() async function transaction () { await connection.query('START TRANSACTION') const sqlDelete = `UPDATE asset SET state = "disabled", stateDate = NOW(), stateUserId = ? where assetId IN ?` await connection.query(sqlDelete, [userId, [assetIds]]) // changes above might have affected need for records in collection_rev_map await dbUtils.pruneCollectionRevMap(connection) await dbUtils.updateDefaultRev(connection, {}) await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.attachStigToAsset = async function ({assetId, benchmarkId, grant, svcStatus = {}}) { let connection try { connection = await dbUtils.pool.getConnection() async function transaction () { await connection.query('START TRANSACTION') const sqlInsert = `INSERT IGNORE INTO stig_asset_map (assetId, benchmarkId) VALUES (?, ?)` const resultInsert = await connection.query(sqlInsert, [assetId, benchmarkId]) if (resultInsert[0].affectedRows != 0) { // Inserted a new row, so update stats and default rev await dbUtils.updateDefaultRev(connection, { collectionId: grant.collectionId, benchmarkId }) await dbUtils.updateStatsAssetStig(connection, { assetId, benchmarkId }) } await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return true } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw (err) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.removeStigFromAsset = async function ({assetId, benchmarkId, grant, svcStatus} ) { let connection try{ connection = await dbUtils.pool.getConnection() async function transaction () { connection.query('START TRANSACTION') const sqlDelete = `DELETE FROM stig_asset_map where assetId = ? and benchmarkId = ?` await connection.query(sqlDelete, [assetId, benchmarkId]) // changes above might have affected need for records in collection_rev_map await dbUtils.pruneCollectionRevMap(connection) await dbUtils.updateDefaultRev(connection, {}) await connection.commit() return true } return dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.removeStigsFromAsset = async function (assetId, grant, svcStatus) { let connection try{ connection = await dbUtils.pool.getConnection() async function transaction () { await connection.query('START TRANSACTION') const sqlDelete = `DELETE FROM stig_asset_map where assetId = ?` await connection.query(sqlDelete, [assetId]) // changes above might have affected need for records in collection_rev_map await dbUtils.pruneCollectionRevMap(connection) await dbUtils.updateDefaultRev(connection, {collectionId: grant.collectionId}) await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return true } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.getAsset = async function({assetId, projections, grant}) { const rows = await _this.queryAssets({ projections, filter: {assetId}, grant}) return (rows[0]) } exports.doesAssetExist = async function (assetId) { const sql = `SELECT assetId FROM enabled_asset WHERE assetId = ?` const [rows] = await dbUtils.pool.query(sql, [assetId]) return rows.length > 0 } exports.getAssets = async function({filter, projections, grant}) { return _this.queryAssets({ filter, projections, grant }) } exports.getStigsByAssetSlow = async function ({assetId, grant}) { const ctes = [] const columns = [ 'distinct sa.benchmarkId', `concat('V', rev.version, 'R', rev.release) as revisionStr`, `date_format(rev.benchmarkDateSql,'%Y-%m-%d') as revisionDate`, 'rev.ruleCount as ruleCount' ] const joins = [ 'enabled_asset a', 'left join enabled_collection c on a.collectionId = c.collectionId', 'inner join stig_asset_map sa on a.assetId = sa.assetId', 'left join default_rev dr on (sa.benchmarkId = dr.benchmarkId and a.collectionId = dr.collectionId)', 'left join revision rev on dr.revId = rev.revId' ] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } // PREDICATES const predicates = { statements: ['a.assetId = ?'], binds: [assetId] } const orderBy = ['sa.benchmarkId'] const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, orderBy, format: true}) let [rows] = await dbUtils.pool.query(sql) return (rows) } exports.getStigsByAsset = async function ({assetId, grant}) { const ctes = [] const columns = [ 'distinct sa.benchmarkId', `concat('V', rev.version, 'R', rev.release) as revisionStr`, `date_format(rev.benchmarkDateSql,'%Y-%m-%d') as revisionDate`, 'rev.ruleCount as ruleCount' ] const joins = [ 'enabled_asset a', 'left join enabled_collection c on a.collectionId = c.collectionId', 'inner join stig_asset_map sa on a.assetId = sa.assetId', 'left join default_rev dr on (sa.benchmarkId = dr.benchmarkId and a.collectionId = dr.collectionId)', 'left join revision rev on dr.revId = rev.revId' ] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } // PREDICATES const predicates = { statements: ['a.assetId = ?'], binds: [assetId] } const orderBy = ['sa.benchmarkId'] const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, orderBy, format: true}) let [rows] = await dbUtils.pool.query(sql) return (rows) } exports.getChecklistByAssetStig = async function(assetId, benchmarkId, revisionStr, format, projections = []) { switch (format) { case 'json': case 'json-access': { return _this.queryChecklist({ assetId, benchmarkId, revisionStr }, projections) } case 'ckl': return _this.cklFromAssetStigs(assetId, [{benchmarkId, revisionStr}]) case 'cklb': return _this.cklbFromAssetStigs(assetId, [{benchmarkId, revisionStr}]) case 'xccdf': return _this.xccdfFromAssetStig(assetId, benchmarkId, revisionStr) } } exports.getChecklistByAsset = async function(assetId, benchmarks, format) { switch (format) { case 'ckl': return _this.cklFromAssetStigs(assetId, benchmarks) case 'cklb': return _this.cklbFromAssetStigs(assetId, benchmarks) } } exports.getAssetsByStig = async function({collectionId, benchmarkId, labels, grant}) { const ctes = [] const columns = [ 'DISTINCT CAST(a.assetId as char) as assetId', 'a.name', 'coalesce(any_value(cae.access), "rw") as access', `coalesce( (select json_arrayagg(BIN_TO_UUID(cl.uuid,1)) from collection_label_asset_map cla left join collection_label cl on cla.clId = cl.clId where cla.assetId = a.assetId), json_array() ) as assetLabelIds`, `coalesce( (select json_arrayagg(json_object( 'labelId', BIN_TO_UUID(cl.uuid,1), 'name', cl.name, 'color', cl.color )) from collection_label_asset_map cla left join collection_label cl on cla.clId = cl.clId where cla.assetId = a.assetId), json_array() ) as assetLabels`, 'CAST(a.collectionId as char) as collectionId' ] const joins = [ 'enabled_collection c', 'inner join enabled_asset a on c.collectionId = a.collectionId', 'left join stig_asset_map sa on a.assetId = sa.assetId', ] ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push(`${grant.roleId === 1 ? 'inner' : 'left'} join cteAclEffective cae on sa.saId = cae.saId`) // PREDICATES const predicates = { statements: [ 'c.collectionId = ?', 'sa.benchmarkId = ?' ], binds: [collectionId, benchmarkId] } if (labels?.labelNames || labels?.labelIds || labels?.labelMatch) { joins.push( 'left join collection_label_asset_map cla2 on a.assetId = cla2.assetId', 'left join collection_label cl2 on cla2.clId = cl2.clId' ) const labelPredicates = [] if (labels.labelIds) { labelPredicates.push('cl2.uuid IN ?') const uuidBinds = labels.labelIds.map( uuid => dbUtils.uuidToSqlString(uuid)) predicates.binds.push([uuidBinds]) } if (labels.labelNames) { labelPredicates.push('cl2.name IN ?') predicates.binds.push([labels.labelNames]) } if (labels.labelMatch === 'null') { labelPredicates.push('cl2.uuid IS NULL') } const labelPredicatesClause = `(${labelPredicates.join(' OR ')})` predicates.statements.push(labelPredicatesClause) } const groupBy = ['a.assetId'] const orderBy = [ 'a.name' ] const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } exports.attachAssetsToStig = async function(collectionId, benchmarkId, assetIds, svcStatus = {}) { let connection try { connection = await dbUtils.pool.getConnection() async function transaction () { await connection.query('START TRANSACTION') let sqlDeleteBenchmarks = ` DELETE stig_asset_map FROM stig_asset_map left join enabled_asset a on stig_asset_map.assetId = a.assetId WHERE a.collectionId = ? and stig_asset_map.benchmarkId = ?` if (assetIds.length > 0) { sqlDeleteBenchmarks += ' and stig_asset_map.assetId NOT IN ?' } // DELETE from stig_asset_map, which will cascade into user_stig_aset_map await connection.query( sqlDeleteBenchmarks, [ collectionId, benchmarkId, [assetIds] ] ) // Push any bind values let binds = [] assetIds.forEach( assetId => { binds.push([benchmarkId, assetId]) }) if (binds.length > 0) { // INSERT into stig_asset_map let sqlInsertBenchmarks = ` INSERT IGNORE INTO stig_asset_map (benchmarkId, assetId) VALUES ?` await connection.query(sqlInsertBenchmarks, [ binds ]) } // changes above might have affected need for records in collection_rev_map await dbUtils.pruneCollectionRevMap(connection) await dbUtils.updateDefaultRev(connection, { collectionId: collectionId, benchmarkId: benchmarkId }) await dbUtils.updateStatsAssetStig( connection, { collectionId: collectionId, benchmarkId: benchmarkId }) // Commit the changes await connection.commit() } return await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.updateAsset = async function( {assetId, body, currentCollectionId, transferring, svcStatus = {}} ) { let connection try { // Extract or initialize non-scalar properties to separate variables let binds let { stigs, labelNames, ...assetFields } = body // Convert boolean scalar values to database values (true=1 or false=0) if (assetFields.hasOwnProperty('noncomputing')) { assetFields.noncomputing = assetFields.noncomputing ? 1 : 0 } if (assetFields.hasOwnProperty('metadata')) { assetFields.metadata = JSON.stringify(assetFields.metadata) } connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true async function transaction () { await connection.query('START TRANSACTION') // Process scalar properties binds = { ...assetFields} assetFields.collectionId ??= currentCollectionId if (Object.keys(binds).length > 0) { // UPDATE into assets let sqlUpdate = `UPDATE asset SET ? WHERE assetId = ?` await connection.query(sqlUpdate, [assetFields, assetId]) if (transferring) { await connection.query( `DELETE FROM collection_grant_acl WHERE assetId = ?`, [assetId] ) const sqlGetAssetLabels = `SELECT name, description, color FROM collection_label_asset_map inner join collection_label using (clId) WHERE assetId = ?` const [assetLabels] = await connection.query(sqlGetAssetLabels, [assetId]) const sqlDeleteLabels = `DELETE FROM collection_label_asset_map WHERE assetId = ?` await connection.query(sqlDeleteLabels, [assetId]) if (assetLabels.length) { const sqlGetCollectionLabels = `SELECT clId, name, description, color FROM collection_label WHERE collectionId = ?` const [collectionLabels] = await connection.query(sqlGetCollectionLabels, [transferring.newCollectionId]) const collectionLabelNames = collectionLabels.reduce( (a,v) => {a[v.name] = v; return a}, {}) for (const assetLabel of assetLabels) { if (collectionLabelNames[assetLabel.name]) { await connection.query(`INSERT into collection_label_asset_map (assetId, clId) VALUES (?,?)`, [assetId, collectionLabelNames[assetLabel.name].clId]) } else { const [resultInsert] = await connection.query(`INSERT INTO collection_label (collectionId, name, description, color, uuid) VALUES (?, ?, ?, ?, UUID_TO_BIN(UUID(),1))`, [transferring.newCollectionId, assetLabel.name, assetLabel.description, assetLabel.color]) const clId = resultInsert.insertId await connection.query(`INSERT into collection_label_asset_map (assetId, clId) VALUES (?,?)`, [assetId, clId]) } } } } } if (stigs) { let sqlDeleteBenchmarks = ` DELETE FROM stig_asset_map WHERE assetId = ?` if (stigs.length > 0) { sqlDeleteBenchmarks += ` and benchmarkId NOT IN ?` } // DELETE from stig_asset_map, which will cascade into user_stig_aset_map await connection.query(sqlDeleteBenchmarks, [ assetId, [stigs] ]) if (stigs.length > 0) { // Map bind values let stigAssetMapBinds = stigs.map( benchmarkId => [benchmarkId, assetId]) // INSERT into stig_asset_map let sqlInsertBenchmarks = ` INSERT IGNORE INTO stig_asset_map (benchmarkId, assetId) VALUES ?` await connection.query(sqlInsertBenchmarks, [stigAssetMapBinds]) } } // Process labelIds, spec requires for CREATE/REPLACE not for UPDATE if (labelNames) { let sqlDeleteLabels = ` DELETE FROM collection_label_asset_map WHERE assetId = ?` await connection.query(sqlDeleteLabels, [ assetId ]) if (labelNames.length > 0) { // INSERT into stig_asset_map let sqlInsertLabels = ` INSERT INTO collection_label_asset_map (assetId, clId) SELECT ?, clId FROM collection_label WHERE name IN (?) and collectionId = ?` await connection.query(sqlInsertLabels, [assetId, labelNames, assetFields.collectionId]) } } if (stigs || transferring) { await dbUtils.pruneCollectionRevMap(connection) if (transferring) { await dbUtils.updateDefaultRev(connection, {collectionIds: [transferring.oldCollectionId, transferring.newCollectionId]}) } else { await dbUtils.updateDefaultRev(connection, {collectionId: currentCollectionId}) } await dbUtils.updateStatsAssetStig( connection, {assetId} ) } // Commit the changes await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return assetId } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.getAssetMetadataKeys = async function ( assetId ) { const sql = ` select JSON_KEYS(metadata) as keyArray from enabled_asset where assetId = ?` const [rows] = await dbUtils.pool.query(sql, [assetId]) return rows.length > 0 ? rows[0].keyArray : [] } exports.getAssetMetadata = async function ( assetId ) { const sql = ` select metadata from enabled_asset where assetId = ?` const [rows] = await dbUtils.pool.query(sql, [assetId]) return rows.length > 0 ? rows[0].metadata : {} } exports.patchAssetMetadata = async function ( assetId, metadata ) { const sql = ` update asset set metadata = JSON_MERGE_PATCH(metadata, ?) where assetId = ?` await dbUtils.pool.query(sql, [JSON.stringify(metadata), assetId]) return true } exports.putAssetMetadata = async function ( assetId, metadata ) { const sql = ` update asset set metadata = ? where assetId = ?` await dbUtils.pool.query(sql, [JSON.stringify(metadata), assetId]) return true } exports.getAssetMetadataValue = async function ( assetId, key ) { const sql = ` select JSON_EXTRACT(metadata, ?) as value from enabled_asset where assetId = ?` const [rows] = await dbUtils.pool.query(sql, [`$."${key}"`, assetId]) return rows.length > 0 ? rows[0].value : "" } exports.putAssetMetadataValue = async function ( assetId, key, value ) { const sql = ` update asset set metadata = JSON_SET(metadata, ?, ?) where assetId = ?` const [rows] = await dbUtils.pool.query(sql, [`$."${key}"`, value, assetId]) return rows.length > 0 ? rows[0].value : "" } exports.deleteAssetMetadataKey = async function ( assetId, key ) { const sql = ` update asset set metadata = JSON_REMOVE(metadata, ?) where assetId = ?` const [rows] = await dbUtils.pool.query(sql, [`$."${key}"`, assetId]) return rows.length > 0 ? rows[0].value : "" } ================================================ FILE: api/source/service/CollectionService.js ================================================ 'use strict'; const dbUtils = require('./utils') const config = require('../utils/config.js') const MyController = require('../controllers/Collection') const SmError = require('../utils/error.js') const _this = this exports.queryCollection = async function ({collectionId, projections = [], elevate = false, grants = {}}) { const groupBy = [] const orderBy = [] const ctes = [] const columns = [ 'CAST(c.collectionId as char) as collectionId', 'c.name', 'c.description', 'c.settings', 'c.metadata' ] const joins = ['enabled_collection c'] let requireCteGrantees = false let requireCteAcls = false let requireCteAssets = false let requireCteStigs = false let requireCteLabels = '' const predicates = { statements: [], binds: [] } const requesterRole = elevate ? 4 : grants[collectionId].roleId const requesterGrantIds = grants[collectionId]?.grantIds predicates.statements.push('c.collectionId = ?') predicates.binds.push( collectionId ) if (projections.includes('assets')) { let sqlAssets = `(select coalesce(${dbUtils.jsonArrayAgg({ value: `json_object( 'assetId', CAST(assetId as char), 'name', name)`, orderBy: 'name' })}, json_array()) from ${requesterRole === 1 ? 'cteAssets' : 'enabled_asset where collectionId = c.collectionId'}) as assets` if (requesterRole === 1) { requireCteAcls = true requireCteAssets = true } columns.push(sqlAssets) } if (projections.includes('stigs')) { if (requesterRole === 1) { requireCteAcls = true requireCteStigs = true columns.push(`(select coalesce(json_arrayagg(json_object( 'benchmarkId', benchmarkId, 'revisionStr', revisionStr, 'benchmarkDate', benchmarkDate, 'revisionPinned', revisionPinned, 'ruleCount', ruleCount )), json_array()) from cteStigs) as stigs`) } else { columns.push(`(select coalesce(json_arrayagg(json_object( 'benchmarkId', cb.benchmarkId, 'revisionStr', revision.revisionStr, 'benchmarkDate', date_format(revision.benchmarkDateSql,'%Y-%m-%d'), 'revisionPinned', CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END, 'ruleCount', revision.ruleCount )), json_array()) from (select distinct sa.benchmarkId from enabled_asset a inner join stig_asset_map sa on a.assetId = sa.assetId where a.collectionId = c.collectionId) cb left join default_rev dr on (cb.benchmarkId=dr.benchmarkId and dr.collectionId = c.collectionId) left join revision on dr.revId = revision.revId) as stigs`) } } if (projections.includes('grants')) { columns.push(`(select coalesce( (select json_arrayagg(grantJson) from (select json_object( 'grantId', cast(grantId as char), 'user', json_object( 'userId', CAST(user_data.userId as char), 'username', user_data.username, 'displayName', COALESCE( JSON_UNQUOTE(JSON_EXTRACT(user_data.lastClaims, "$.${config.oauth.claims.name}")), user_data.username)), 'roleId', roleId) as grantJson from collection_grant inner join user_data using (userId) where collectionId = c.collectionId UNION select json_object( 'grantId', cast(grantId as char), 'userGroup', json_object( 'userGroupId', CAST(user_group.userGroupId as char), 'name', user_group.name, 'description', user_group.description ), 'roleId', roleId ) as grantJson from collection_grant inner join user_group using (userGroupId) where collectionId = c.collectionId ) as grantJsons) , json_array() ) ) as "grants"`) } if (projections.includes('users')) { requireCteGrantees = true columns.push(`(select json_arrayagg(json_object( 'user', json_object( 'userId', CAST(ud.userId as char), 'username', ud.username, 'displayName', COALESCE( JSON_UNQUOTE(JSON_EXTRACT(ud.lastClaims, "$.${config.oauth.claims.name}")), ud.username)), 'roleId', cgs.roleId, 'grantees', cgs.grantees)) from cteGrantees cgs inner join user_data ud on cgs.userId = ud.userId ) as users`) } if (projections.includes('labels')) { if (requesterRole === 1) { requireCteAcls = true requireCteLabels = 'restricted' } else { requireCteLabels = 'all' } columns.push(`(select coalesce(json_arrayagg(json_object( 'labelId', labelId, 'name', name, 'description', description, 'color', color, 'uses', uses )), json_array()) from cteLabels) as labels`) } if (projections.includes('owners')) { columns.push(`(select coalesce(json_arrayagg(grantJson),json_array()) from (select user_data.username, json_object( 'userId', CAST(user_data.userId as char), 'username', user_data.username, 'displayName', JSON_UNQUOTE(JSON_EXTRACT(user_data.lastClaims, "$.${config.oauth.claims.name}")) ) as grantJson from collection_grant inner join user_data using (userId) where collectionId = c.collectionId and roleId = 4 UNION select user_group.name, json_object( 'userGroupId', CAST(user_group.userGroupId as char), 'name', user_group.name, 'description', user_group.description ) as grantJson from collection_grant inner join user_group using (userGroupId) where collectionId = c.collectionId and roleId = 4 order by username) o) as owners`) } if (projections.includes('statistics')) { if (requesterRole === 1) { requireCteGrantees = true requireCteAcls = true columns.push(`(select json_object( 'created', DATE_FORMAT(c.created, '%Y-%m-%dT%TZ'), 'userCount', dt4.userCount, 'assetCount', dt4.assetCount, 'checklistCount', dt4.checklistCount ) from (SELECT (select count(userId) from cteGrantees where collectionId = c.collectionId) as userCount, (select count(distinct sa.assetId) from cteAclEffective cae left join stig_asset_map sa using (saId)) as assetCount, (select count(saId) from cteAclEffective) as checklistCount) dt4 ) as statistics`) } else { requireCteGrantees = true columns.push(`(select json_object( 'created', DATE_FORMAT(c.created, '%Y-%m-%dT%TZ'), 'userCount', dt4.userCount, 'assetCount', dt4.assetCount, 'checklistCount', dt4.checklistCount ) from (SELECT (select count(userId) from cteGrantees where collectionId = c.collectionId) as userCount, (select count(distinct a.assetId) from enabled_asset a where a.collectionId = c.collectionId) as assetCount, (select count(saId) from enabled_asset a left join stig_asset_map sa using (assetId) where a.collectionId = c.collectionId) as checklistCount) dt4 ) as statistics`) } } // setup ctes if (requireCteGrantees) { const cteGranteesParams = {collectionId: collectionId, returnCte: true} ctes.push(dbUtils.sqlGrantees(cteGranteesParams)) } if (requireCteAcls) { ctes.push(dbUtils.cteAclEffective({grantIds: requesterGrantIds, includeColumnCollectionId: false})) } if (requireCteAssets) { ctes.push(`cteAssets as (select distinct a.assetId, a.name from cteAclRules ar inner join stig_asset_map sa using (saId) left join enabled_asset a using (assetId) order by a.name)`) } if (requireCteStigs) { ctes.push(`cteStigs as ( select distinct sa.benchmarkId, revision.revisionStr, date_format(revision.benchmarkDateSql,'%Y-%m-%d') as benchmarkDate, CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END as revisionPinned, revision.ruleCount from cteAclRules ar inner join stig_asset_map sa using (saId) left join default_rev dr on (sa.benchmarkId=dr.benchmarkId and dr.collectionId = ${collectionId}) left join revision on dr.revId = revision.revId order by sa.benchmarkId)`) } if (requireCteLabels) { ctes.push(`cteLabels as ( select BIN_TO_UUID(cl.uuid,1) labelId, cl.name, cl.description, cl.color, count(distinct cla.claId) as uses from collection_label cl left join collection_label_asset_map cla on cla.clId = cl.clId ${requireCteLabels === 'restricted' ? 'left join stig_asset_map sa on cla.assetId = sa.assetId' : ''} ${requireCteLabels === 'restricted' ? 'inner join cteAclEffective cae on sa.saId = cae.saId' : ''} where cl.collectionId = ${collectionId} group by cl.clId)`) } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return rows[0] } /** Generalized queries for collection(s). **/ exports.queryCollections = async function ({projections = [], filter = {}, elevate = false, grants = {}, userId = ''}) { const collectionIdsGranted = Object.keys(grants) if (!collectionIdsGranted.length && !elevate) { return [] } const ctes = [] const columns = [ 'CAST(c.collectionId as char) as collectionId', 'c.name', 'c.description', 'c.settings', 'c.metadata' ] const joins = ['enabled_collection c'] const predicates = { statements: [], binds: [] } const orderBy = ['c.name'] let requireCteGrantees = false let requireCteAcls = false let requesterGrantIds = [] if (!elevate) { for (const collectionId in grants) { requesterGrantIds.push(grants[collectionId].grantIds) } requesterGrantIds = requesterGrantIds.flat() } if (projections.includes('owners')) { columns.push(`(select coalesce(json_arrayagg(grantJson),json_array()) from (select json_object( 'userId', CAST(user_data.userId as char), 'username', user_data.username, 'displayName', JSON_UNQUOTE(JSON_EXTRACT(user_data.lastClaims, "$.${config.oauth.claims.name}")) ) as grantJson from collection_grant inner join user_data using (userId) where collectionId = c.collectionId and roleId = 4 UNION select json_object( 'userGroupId', CAST(user_group.userGroupId as char), 'name', user_group.name, 'description', user_group.description ) as grantJson from collection_grant inner join user_group using (userGroupId) where collectionId = c.collectionId and roleId = 4) o) as owners`) } if (projections.includes('statistics')) { if (!elevate) { requireCteGrantees = true requireCteAcls = true columns.push(`(select json_object( 'created', DATE_FORMAT(c.created, '%Y-%m-%dT%TZ'), 'userCount', dt4.userCount, 'assetCount', case when dt4.roleId = 1 then dt4.assetGrantedCount else dt4.assetCount end, 'checklistCount', case when dt4.roleId = 1 then dt4.checklistGrantedCount else dt4.checklistCount end ) from (SELECT (select roleId from cteGrantees where collectionId = c.collectionId and userId = ?) as roleId, (select count(userId) from cteGrantees where collectionId = c.collectionId) as userCount, (select count(distinct a.assetId) from enabled_asset a where a.collectionId = c.collectionId) as assetCount, (select count(distinct sa.assetId) from cteAclEffective cae left join stig_asset_map sa using (saId) where cae.collectionId = c.collectionId) as assetGrantedCount, (select count(sa.saId) from enabled_asset a left join stig_asset_map sa using (assetId) where a.collectionId = c.collectionId) as checklistCount, (select count(saId) from cteAclEffective where collectionId = c.collectionId) as checklistGrantedCount ) dt4 ) as statistics`) predicates.binds.push(userId) } else { requireCteGrantees = true columns.push(`(select json_object( 'created', DATE_FORMAT(c.created, '%Y-%m-%dT%TZ'), 'userCount', dt4.userCount, 'assetCount', dt4.assetCount, 'checklistCount', dt4.checklistCount ) from (SELECT (select count(userId) from cteGrantees where collectionId = c.collectionId) as userCount, (select count(distinct a.assetId) from enabled_asset a where a.collectionId = c.collectionId) as assetCount, (select count(sa.saId) from enabled_asset a left join stig_asset_map sa using (assetId) where a.collectionId = c.collectionId) as checklistCount) dt4 ) as statistics`) } } // This projection is not exposed in the OAS, only used by Operation.getAppData() if (projections.includes('grants')) { columns.push(`(select coalesce( (select json_arrayagg(grantJson) from (select json_object( 'user', json_object( 'userId', CAST(user_data.userId as char), 'username', user_data.username, 'displayName', COALESCE( JSON_UNQUOTE(JSON_EXTRACT(user_data.lastClaims, "$.${config.oauth.claims.name}")), user_data.username)), 'roleId', roleId) as grantJson from collection_grant inner join user_data using (userId) where collectionId = c.collectionId UNION select json_object( 'userGroup', json_object( 'userGroupId', CAST(user_group.userGroupId as char), 'name', user_group.name, 'description', user_group.description ), 'roleId', roleId ) as grantJson from collection_grant inner join user_group using (userGroupId) where collectionId = c.collectionId ) as grantJsons) , json_array() ) ) as "grants"`) } if (!elevate) { predicates.statements.push('c.collectionId IN (?)') predicates.binds.push( collectionIdsGranted ) } if ( filter.name ) { let matchStr = '= ?' if ( filter.nameMatch && filter.nameMatch !== 'exact') { matchStr = 'LIKE ?' switch (filter.nameMatch) { case 'startsWith': filter.name = `${filter.name}%` break case 'endsWith': filter.name = `%${filter.name}` break case 'contains': filter.name = `%${filter.name}%` break } } predicates.statements.push(`c.name ${matchStr}`) predicates.binds.push( filter.name ) } if ( filter.metadata ) { for (const pair of filter.metadata) { const [key, value] = pair.split(/:(.*)/s) predicates.statements.push('JSON_CONTAINS(c.metadata, ?, ?)') predicates.binds.push( `"${value}"`, `$.${key}`) } } if (requireCteGrantees) { const cteGranteesParams = elevate ? {returnCte: true} : {collectionIds: collectionIdsGranted, returnCte: true} ctes.push(dbUtils.sqlGrantees(cteGranteesParams)) } if (requireCteAcls) { ctes.push(dbUtils.cteAclEffective({grantIds: requesterGrantIds})) } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return rows } exports.doesCollectionExist = async function (collectionId) { const sql = `SELECT collectionId FROM enabled_collection WHERE collectionId = ?` const [rows] = await dbUtils.pool.query(sql, [collectionId]) return rows.length > 0 } exports.addOrUpdateCollection = async function(writeAction, collectionId, body, projection, userObject, svcStatus = {}) { // CREATE: collectionId will be null // REPLACE/UPDATE: collectionId is not null let connection // available to try, catch, and finally blocks try { const {grants, labels, ...collectionFields} = body // Stringify JSON values collectionFields.metadata = JSON.stringify(collectionFields.metadata ?? {}) // Merge default settings with any provided settings if( writeAction === dbUtils.WRITE_ACTION.CREATE || writeAction === dbUtils.WRITE_ACTION.REPLACE ) { collectionFields.settings = JSON.stringify({...MyController.defaultSettings, ...collectionFields.settings}) } else if(collectionFields.settings) { collectionFields.settings = JSON.stringify(collectionFields.settings) } // Connect to MySQL connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true async function transaction () { await connection.query('START TRANSACTION'); // Process scalar properties if (writeAction === dbUtils.WRITE_ACTION.CREATE) { // INSERT into collections let sqlInsert = `INSERT INTO collection (name, description, settings, metadata) VALUES (:name, :description, :settings, :metadata)` let [rows] = await connection.execute(sqlInsert, collectionFields) collectionId = rows.insertId } else if (writeAction === dbUtils.WRITE_ACTION.UPDATE || writeAction === dbUtils.WRITE_ACTION.REPLACE) { if (Object.keys(collectionFields).length > 0) { // UPDATE into collections const sqlUpdate = `UPDATE collection SET ? WHERE collectionId = ?` await connection.query(sqlUpdate, [collectionFields, collectionId]) } } else { throw new SmError.InternalError('Invalid writeAction') } // process grants if (grants) { if (grants.length) { const grantsByIdType = grants.reduce((accumulator, currentValue) => { accumulator[currentValue.userId ? 'userGrants' : 'userGroupGrants'].push(currentValue) return accumulator }, {userGrants:[], userGroupGrants:[]}) if (grantsByIdType.userGrants.length) { await connection.query( `DELETE FROM collection_grant WHERE collectionId = ? and userId NOT IN (?)`, [collectionId, grantsByIdType.userGrants.map(i => i.userId)] ) const sqlInsertUserGrants = `INSERT INTO collection_grant (collectionId, userId, roleId) VALUES ? as new ON DUPLICATE KEY UPDATE roleId = new.roleId` const binds = grantsByIdType.userGrants.map(i => [collectionId, i.userId, i.roleId]) await connection.query(sqlInsertUserGrants, [binds]) } else { await connection.query(`DELETE FROM collection_grant WHERE collectionId = ? and userId is not null`, [collectionId]) } if (grantsByIdType.userGroupGrants.length) { await connection.query( `DELETE FROM collection_grant WHERE collectionId = ? and userGroupId NOT IN (?)`, [collectionId, grantsByIdType.userGroupGrants.map(i => i.userGroupId)] ) const sqlInsertGroupGrants = `INSERT INTO collection_grant (collectionId, userGroupId, roleId) VALUES ? as new ON DUPLICATE KEY UPDATE roleId = new.roleId` const binds = grantsByIdType.userGroupGrants.map(i => [collectionId, i.userGroupId, i.roleId]) await connection.query(sqlInsertGroupGrants, [binds]) } else { await connection.query(`DELETE FROM collection_grant WHERE collectionId = ? and userGroupId is not null`, [collectionId]) } } else if (writeAction !== dbUtils.WRITE_ACTION.CREATE) { await connection.query(`DELETE FROM collection_grant WHERE collectionId = ?`, [collectionId]) await connection.query(`DELETE FROM collection_grant_group WHERE collectionId = ?`, [collectionId]) } } // Process labels if (labels && writeAction !== dbUtils.WRITE_ACTION.CREATE) { // DELETE from collection_label let sqlDeleteLabels = 'DELETE FROM collection_label where collectionId = ?' await connection.execute(sqlDeleteLabels, [collectionId]) } if (labels && labels.length > 0) { // INSERT into collection_label let sqlInsertLabels = ` INSERT INTO collection_label (collectionId, name, description, color, uuid) VALUES ?` const binds = labels.map(i => [collectionId, i.name, i.description, i.color, { toSqlString: function () { return `UUID_TO_BIN(UUID(),1)` } }]) await connection.query(sqlInsertLabels, [binds]) } // Commit the changes await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { await connection.rollback() throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } let row = await _this.getCollection(collectionId, projection, true, userObject) return row } /** * Create a Collection * * body CollectionAssign (optional) * returns List **/ exports.createCollection = async function(body, projection, userObject, svcStatus = {}) { let row = await _this.addOrUpdateCollection(dbUtils.WRITE_ACTION.CREATE, null, body, projection, userObject, svcStatus) return (row) } /** * Delete a Collection * * collectionId Integer A path parameter that identifies a Collection **/ exports.deleteCollection = async function(collectionId, userId) { const sqlDelete = `UPDATE collection SET state = "disabled", stateDate = NOW(), stateUserId = ? where collectionId = ?` return dbUtils.pool.query(sqlDelete, [userId, collectionId]) } /** * Return the Checklist for the supplied Collection and STIG * * collectionId Integer A path parameter that identifies a Collection * benchmarkId String A path parameter that identifies a STIG * revisionStr String A path parameter that identifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns CollectionChecklist **/ exports.getChecklistByCollectionStig = async function (collectionId, benchmarkId, revisionStr, userObject ) { const ctes = [] const groupBy = ['rgr.rgrId'] const orderBy = ['rgr.ruleId'] const columns = [ `rgr.ruleId ,rgr.title as ruleTitle ,rgr.severity ,rgr.\`version\` ,rgr.groupId ,rgr.groupTitle ,json_object( 'results', json_object( 'pass', sum(CASE WHEN r.resultId = 3 THEN 1 ELSE 0 END), 'fail', sum(CASE WHEN r.resultId = 4 THEN 1 ELSE 0 END), 'notapplicable', sum(CASE WHEN r.resultId = 2 THEN 1 ELSE 0 END), 'other', sum(CASE WHEN r.resultId is null OR (r.resultId != 2 AND r.resultId != 3 AND r.resultId != 4) THEN 1 ELSE 0 END) ), 'statuses', json_object( 'saved', sum(CASE WHEN r.statusId = 0 THEN 1 ELSE 0 END), 'submitted', sum(CASE WHEN r.statusId = 1 THEN 1 ELSE 0 END), 'rejected', sum(CASE WHEN r.statusId = 2 THEN 1 ELSE 0 END), 'accepted', sum(CASE WHEN r.statusId = 3 THEN 1 ELSE 0 END) ) ) as counts ,json_object( 'ts', json_object( 'min', DATE_FORMAT(MIN(r.ts),'%Y-%m-%dT%H:%i:%sZ'), 'max', DATE_FORMAT(MAX(r.ts),'%Y-%m-%dT%H:%i:%sZ') ), 'statusTs', json_object( 'min', DATE_FORMAT(MIN(r.statusTs),'%Y-%m-%dT%H:%i:%sZ'), 'max', DATE_FORMAT(MAX(r.statusTs),'%Y-%m-%dT%H:%i:%sZ') ), 'touchTs', json_object( 'min', DATE_FORMAT(MIN(r.touchTs),'%Y-%m-%dT%H:%i:%sZ'), 'max', DATE_FORMAT(MAX(r.touchTs),'%Y-%m-%dT%H:%i:%sZ') ) ) as timestamps` ] const joins = [ 'enabled_asset a', 'left join stig_asset_map sa using (assetId)', 'left join current_rev rev using (benchmarkId)', 'left join rev_group_rule_map rgr using (revId)', 'left join rule_version_check_digest rvcd using (ruleId)', 'left join review r on (rvcd.version=r.version and rvcd.checkDigest=r.checkDigest and sa.assetId=r.assetId)' ] const predicates = { statements: [ 'a.collectionId = ?', 'rev.benchmarkId = ?', ], binds: [ collectionId, benchmarkId ] } // Non-current revision if (revisionStr !== 'latest') { joins.splice(2, 1, 'left join revision rev on sa.benchmarkId=rev.benchmarkId') const {version, release} = dbUtils.parseRevisionStr(revisionStr) predicates.statements.push('rev.version = ?', 'rev.release = ?') predicates.binds.push(version, release) } // Access control const grant = userObject.grants[collectionId] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const sql = dbUtils.makeQueryString({ ctes, columns, joins, predicates, groupBy, orderBy, format: true }) // Send query const [rows] = await dbUtils.pool.query(sql) return (rows) } /** * Return a Collection * * collectionId Integer A path parameter that identifies a Collection * returns CollectionInfo **/ exports.getCollection = async function(collectionId, projections, elevate, userObject) { return _this.queryCollection({ collectionId, projections, elevate, grants: userObject.grants }) } exports.getFindingsByCollection = async function( {collectionId, aggregator, benchmarkId, assetId, acceptedOnly, projections = [], grant} ) { let columns, groupBy, orderBy switch (aggregator) { case 'ruleId': columns = [ 'rgr.ruleId', 'rgr.title', 'rgr.severity', 'count(distinct a.assetId) as assetCount' ] groupBy = [ 'rgr.rgrId' ] orderBy = ['rgr.ruleId'] break case 'groupId': columns = [ 'rgr.groupId', 'rgr.groupTitle as title', 'rgr.severity', 'count(distinct a.assetId) as assetCount' ] groupBy = [ 'rgr.rgrId' ] orderBy = ['substring(rgr.groupId from 3) + 0'] break case 'cci': columns = [ 'cci.cci', 'cci.definition', 'cci.apAcronym', 'count(distinct a.assetId) as assetCount' ] groupBy = [ 'cci.cci' ] orderBy = ['cci.cci'] break } const ctes = [] const joins = [ 'enabled_collection c', 'inner join enabled_asset a on (c.collectionId = a.collectionId)', 'inner join stig_asset_map sa on a.assetId = sa.assetId', 'left join default_rev dr on (sa.benchmarkId = dr.benchmarkId and c.collectionId = dr.collectionId)', 'left join rev_group_rule_map rgr on dr.revId = rgr.revId', 'left join rev_group_rule_cci_map rgrcc using (rgrId)', 'left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId', 'inner join review rv on (rvcd.version = rv.version and rvcd.checkDigest = rv.checkDigest and a.assetId = rv.assetId and rv.resultId = 4)', 'inner join cci on rgrcc.cci = cci.cci', 'inner join cci_reference_map crm on cci.cci = crm.cci' ] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } // Not exposed in API, used internally if (projections.includes('rulesWithDiscussion')) { columns.push(`cast(concat('[', group_concat(distinct json_object ( 'ruleId', rgr.ruleId, 'title', rgr.title, 'severity', rgr.severity, 'vulnDiscussion', rgr.vulnDiscussion) order by rgr.ruleId), ']') as json) as "rules"`) } if (projections.includes('rules')) { columns.push(`cast(concat('[', group_concat(distinct json_object ( 'ruleId', rgr.ruleId, 'title', rgr.title, 'version', rgr.version, 'severity', rgr.severity) order by rgr.ruleId), ']') as json) as "rules"`) } if (projections.includes('groups')) { columns.push(`cast(concat('[', group_concat(distinct json_object ( 'groupId', rgr.groupId, 'title', rgr.groupTitle, 'severity', rgr.groupSeverity) order by rgr.groupId), ']') as json) as "groups"`) } if (projections.includes('assets')) { columns.push(`cast(concat('[', group_concat(distinct json_object ( 'assetId', CAST(a.assetId as char), 'name', a.name) order by a.name), ']') as json) as "assets"`) } if (projections.includes('stigs')) { joins.push('left join revision on dr.revId = revision.revId') columns.push(`cast( concat('[', coalesce ( group_concat(distinct case when revision.benchmarkId is not null then json_object( 'benchmarkId', revision.benchmarkId, 'revisionStr', revision.revisionStr, 'benchmarkDate', date_format(revision.benchmarkDateSql,'%Y-%m-%d'), 'revisionPinned', CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END, 'ruleCount', revision.ruleCount) else null end order by revision.benchmarkId), ''), ']') as json) as "stigs"`) // columns.push(`cast( concat( '[', group_concat(distinct concat('"',dr.benchmarkId,'"')), ']' ) as json ) as "stigs"`) } if (projections.includes('ccis')) { columns.push(`cast(concat('[', coalesce( group_concat(distinct case when cci.cci is not null then json_object( 'cci', cci.cci, 'definition', cci.definition, 'apAcronym', cci.apAcronym, 'control', crm.parentControl) else null end order by cci.cci), ''), ']') as json) as "ccis"`) } const predicates = { statements: [ 'c.collectionId = ?' ], binds: [collectionId] } if (assetId) { predicates.statements.push('a.assetId = ?') predicates.binds.push( assetId ) } if (acceptedOnly) { predicates.statements.push('rv.statusId = ?') predicates.binds.push( 3 ) } if (benchmarkId) { predicates.statements.push('dr.benchmarkId = ?') predicates.binds.push( benchmarkId ) } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } exports.getReviewAclByCollectionUser = async function (collectionId, userId, elevate, userObject) { let rows = await _this.queryReviewAcl({collectionId, userId}) return (rows) } exports.getReviewAclByCollectionUserGroup = async function (collectionId, userGroupId, elevate, userObject) { let rows = await _this.queryReviewAcl({collectionId, userGroupId}) return (rows) } exports.getStigsByCollection = async function({collectionId, labelIds, labelNames, labelMatch, grant, benchmarkId, projections}) { const ctes = [] const columns = [ 'sa.benchmarkId', 'stig.title', 'revision.revisionStr', `date_format(revision.benchmarkDateSql,'%Y-%m-%d') as benchmarkDate`, 'CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END as revisionPinned', 'revision.ruleCount', 'count(sa.assetId) as assetCount' ] const groupBy = ['sa.benchmarkId', 'revision.revId', 'dr.revisionPinned', 'stig.benchmarkId'] const orderBy = ['sa.benchmarkId'] const joins = [ 'enabled_collection c', 'left join enabled_asset a on c.collectionId = a.collectionId', 'inner join stig_asset_map sa on a.assetId = sa.assetId', 'left join default_rev dr on (sa.benchmarkId = dr.benchmarkId and c.collectionId = dr.collectionId)', 'left join revision on dr.revId = revision.revId', 'left join stig on revision.benchmarkId = stig.benchmarkId' ] // PREDICATES const predicates = { statements: [ 'c.collectionId = ?' ], binds: [collectionId] } if (labelIds || labelNames || labelMatch) { joins.push( 'left join collection_label_asset_map cla2 on a.assetId = cla2.assetId', 'left join collection_label cl2 on cla2.clId = cl2.clId' ) const labelPredicates = [] if (labelIds) { labelPredicates.push('cl2.uuid IN ?') const uuidBinds = labelIds.map( uuid => dbUtils.uuidToSqlString(uuid)) predicates.binds.push([uuidBinds]) } if (labelNames) { labelPredicates.push('cl2.name IN ?') predicates.binds.push([labelNames]) } if (labelMatch === 'null') { labelPredicates.push('cl2.uuid IS NULL') } const labelPredicatesClause = `(${labelPredicates.join(' OR ')})` predicates.statements.push(labelPredicatesClause) } if (benchmarkId) { predicates.statements.push('sa.benchmarkId = ?') predicates.binds.push( benchmarkId ) } if (projections?.includes('assets')) { columns.push(`cast(concat('[', group_concat(distinct json_object ( 'assetId', CAST(a.assetId as char), 'name', a.name) order by a.name), ']') as json) as "assets"`) } if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } /** * Replace all properties of a Collection * * body CollectionAssign (optional) * collectionId Integer A path parameter that identifies a Collection * returns CollectionInfo **/ exports.replaceCollection = async function( collectionId, body, projection, userObject, svcStatus = {}) { let row = await _this.addOrUpdateCollection(dbUtils.WRITE_ACTION.REPLACE, collectionId, body, projection, userObject, svcStatus) return (row) } /** * Merge updates to a Collection * * body CollectionAssign (optional) * collectionId Integer A path parameter that identifies a Collection * returns CollectionInfo **/ exports.updateCollection = async function( collectionId, body, projection, userObject, svcStatus = {}) { let row = await _this.addOrUpdateCollection(dbUtils.WRITE_ACTION.UPDATE, collectionId, body, projection, userObject, svcStatus) return (row) } exports.getCollectionMetadataKeys = async function ( collectionId ) { const binds = [] let sql = ` select JSON_KEYS(metadata) as keyArray from enabled_collection where collectionId = ?` binds.push(collectionId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].keyArray : [] } exports.getCollectionMetadata = async function ( collectionId ) { const binds = [] let sql = ` select metadata from enabled_collection where collectionId = ?` binds.push(collectionId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].metadata : {} } exports.patchCollectionMetadata = async function ( collectionId, metadata ) { const binds = [] let sql = ` update collection set metadata = JSON_MERGE_PATCH(metadata, ?) where collectionId = ?` binds.push(JSON.stringify(metadata), collectionId) await dbUtils.pool.query(sql, binds) return true } exports.putCollectionMetadata = async function ( collectionId, metadata ) { const binds = [] let sql = ` update collection set metadata = ? where collectionId = ?` binds.push(JSON.stringify(metadata), collectionId) await dbUtils.pool.query(sql, binds) return true } exports.getCollectionMetadataValue = async function ( collectionId, key ) { const binds = [] let sql = ` select JSON_EXTRACT(metadata, ?) as value from enabled_collection where collectionId = ?` binds.push(`$."${key}"`, collectionId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].value : "" } exports.putCollectionMetadataValue = async function ( collectionId, key, value ) { const binds = [] let sql = ` update collection set metadata = JSON_SET(metadata, ?, ?) where collectionId = ?` binds.push(`$."${key}"`, value, collectionId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].value : "" } exports.deleteCollectionMetadataKey = async function ( collectionId, key ) { const binds = [] let sql = ` update collection set metadata = JSON_REMOVE(metadata, ?) where collectionId = ?` binds.push(`$."${key}"`, collectionId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].value : "" } /* Available only to level 3 or 4 users ("Manage" or "Owner") Returns number of history entries deleted. RetentionDate - Delete all review history entries prior to the specified date. Asset Id - if provided, only delete entries for that asset. */ exports.deleteReviewHistoryByCollection = async function (collectionId, retentionDate, assetId) { let sql = ` DELETE rh FROM review_history rh INNER JOIN review r on rh.reviewId = r.reviewId INNER JOIN enabled_asset a on r.assetId = a.assetId WHERE a.collectionId = :collectionId AND rh.touchTs < :retentionDate` if(assetId) { sql += ' AND a.assetId = :assetId' } let binds = { collectionId: collectionId, retentionDate: retentionDate, assetId: assetId } let [rows] = await dbUtils.pool.query(sql, binds) let result = { HistoryEntriesDeleted: rows.affectedRows } return (result) } /* GET /collections/{collectionId}/review-history Available to level 2 and higher users with a grant to the collection. Returns block of review history entries that fit criteria. Takes optional: Start Date End Date (If no dates provided, return all history. If only one date, return block from that date to current, or that date to oldest, as appropriate) Asset ID - only return history for this asset id Rule ID - only return history for this rule id status- only return history with this status If rule and asset id provided, return that intersection. */ exports.getReviewHistoryByCollection = async function (collectionId, startDate, endDate, assetId, ruleId, status) { const columns = [ `CAST(innerQuery.assetId as char) as assetId, json_arrayagg( json_object( 'ruleId', innerQuery.ruleId, 'history', innerQuery.history ) ) as reviewHistories from (select a.assetId, rv.ruleId, json_arrayagg( json_object( 'ts', DATE_FORMAT(rh.ts, '%Y-%m-%dT%TZ'), 'ruleId', rh.ruleId, 'result', result.api, 'detail', COALESCE(LEFT(rh.detail,32767), ''), 'comment', COALESCE(LEFT(rh.comment,32767), ''), 'autoResult', rh.autoResult = 1, 'status', JSON_OBJECT( 'label', status.api, 'text', rh.statusText, 'user', JSON_OBJECT( 'userId', CAST(rh.statusUserId as char), 'username', udStatus.username ), 'ts', DATE_FORMAT(rh.statusTs, '%Y-%m-%dT%TZ') ), 'userId', CAST(rh.userId as char), 'username', ud.username, 'touchTs', DATE_FORMAT(rh.touchTs, '%Y-%m-%dT%TZ') ) ) as history` ] const joins = [ 'review_history rh', 'INNER JOIN review rv on rh.reviewId = rv.reviewId', 'INNER JOIN user_data ud on rh.userId = ud.userId', 'left join user_data udStatus on udStatus.userId=rh.statusUserId', 'INNER JOIN result on rh.resultId = result.resultId', 'INNER JOIN status on rh.statusId = status.statusId', 'inner join enabled_asset a on a.assetId = rv.assetId' ] let predicates = { statements: ['rv.assetId = a.assetId', 'a.collectionId = ?'], binds: [collectionId] } let groupBy = [] if (startDate) { predicates.binds.push(startDate) predicates.statements.push('rh.touchTs >= ?') } if (endDate) { predicates.binds.push(endDate) predicates.statements.push('rh.touchTs <= ?') } if(ruleId) { predicates.binds.push(ruleId) predicates.statements.push('rv.ruleId = ?') } if(status) { predicates. binds.push(dbUtils.REVIEW_STATUS_API[status]) predicates.statements.push('rh.statusId = ?') } if(assetId) { predicates.binds.push(assetId) predicates.statements.push('a.assetId = ?') } groupBy.push('rv.ruleId', 'a.assetId ) innerQuery\nGROUP BY\n innerQuery.assetId') let sql = dbUtils.makeQueryString({columns, joins, predicates,groupBy }) let [rows] = await dbUtils.pool.query(sql, predicates.binds) return (rows) } /* GET /collections/{collectionId}/review-history/stats Available to level 2 and higher users with a grant to the collection. Return some simple stats about the number/properties of history entries. Uses same params as GET review-history, expecting stats to be scoped to whatever would be returned by that query. Projection: asset - Break out statistics by Asset in the specified collection */ exports.getReviewHistoryStatsByCollection = async function (collectionId, startDate, endDate, assetId, ruleId, status, projection) { let binds = { collectionId: collectionId } let sql = 'SELECT COUNT(*) as collectionHistoryEntryCount, MIN(rh.touchTs) as oldestHistoryEntryDate' // If there is a response and the request included the asset projection if (projection?.includes('asset')) { sql += `, coalesce( (SELECT json_arrayagg( json_object( 'assetId', CAST(assetId as char) , 'historyEntryCount', historyEntryCount, 'oldestHistoryEntry', oldestHistoryEntry ) ) FROM ( SELECT a.assetId, COUNT(*) as historyEntryCount, MIN(rh.touchTs) as oldestHistoryEntry FROM review_history rh INNER JOIN review rv on rh.reviewId = rv.reviewId INNER JOIN enabled_asset a on rv.assetId = a.assetId WHERE a.collectionId = :collectionId additionalPredicates GROUP BY a.assetId ) v ), json_array() ) as assetHistoryEntryCounts` } sql += ` FROM review_history rh INNER JOIN review rv on rh.reviewId = rv.reviewId INNER JOIN enabled_asset a on rv.assetId = a.assetId WHERE a.collectionId = :collectionId additionalPredicates ` let additionalPredicates = "" if (startDate) { binds.startDate = startDate additionalPredicates += " AND rh.touchTs >= :startDate" } if (endDate) { binds.endDate = endDate additionalPredicates += " AND rh.touchTs <= :endDate" } if(ruleId) { binds.ruleId = ruleId additionalPredicates += " AND rv.ruleId = :ruleId" } if(status) { binds.statusId = dbUtils.REVIEW_STATUS_API[status] additionalPredicates += ' AND rh.statusId = :statusId' } if(assetId) { binds.assetId = assetId additionalPredicates += " AND a.assetId = :assetId" } sql = sql.replace(/additionalPredicates/g, additionalPredicates) let [rows] = await dbUtils.pool.query(sql, binds) return (rows[0]) } exports.getCollectionSettings = async function ( collectionId ) { let sql = ` select JSON_MERGE_PATCH('${JSON.stringify(MyController.defaultSettings)}', settings) as settings from enabled_collection where collectionId = ?` let [rows] = await dbUtils.pool.query(sql, [collectionId]) return rows.length > 0 ? rows[0].settings : undefined } exports.getCollectionLabels = async function (collectionId, grant) { const ctes = [] const columns = [ 'BIN_TO_UUID(cl.uuid,1) labelId', 'cl.name', 'cl.description', 'cl.color', 'count(distinct cla.claId) as uses' ] const joins = [ 'collection_label cl', 'left join enabled_asset a on cl.collectionId = a.collectionId', 'left join stig_asset_map sa on a.assetId = sa.assetId', 'left join collection_label_asset_map cla on cla.clId = cl.clId and cla.assetId = a.assetId' ] // const groupBy = [ // 'cl.uuid', // 'cl.name', // 'cl.description', // 'cl.color' // ] const groupBy = ['cl.clId'] const predicates = { statements: ['cl.collectionId = ?'], binds: [collectionId] } const orderBy = [ 'cl.name' ] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return rows } exports.createCollectionLabel = async function (collectionId, label) { let [resultInsert] = await dbUtils.pool.query( `INSERT INTO collection_label (collectionId, name, description, color, uuid) VALUES (?, ?, ?, ?, UUID_TO_BIN(UUID(),1))`, [collectionId, label.name, label.description, label.color]) const [resultGet] = await dbUtils.pool.query( `SELECT BIN_TO_UUID(uuid,1) as uuid from collection_label where clId = ?`, [resultInsert.insertId] ) return resultGet[0].uuid } exports.createCollectionLabels = async function (collectionId, labels) { const placeholders = labels.map(() => '(?, ?, ?, ?, UUID_TO_BIN(UUID(),1))').join(', ') const values = [] for (const label of labels) { values.push(collectionId, label.name, label.description, label.color) } const insertSql = ` INSERT INTO collection_label (collectionId, name, description, color, uuid) VALUES ${placeholders} ` await dbUtils.pool.query(insertSql, values) return labels.map(label => label.name) } exports.getCollectionLabelsByName = async function (collectionId, labelNames, grant) { const ctes = [] const columns = [ 'BIN_TO_UUID(cl.uuid,1) labelId', 'cl.name', 'cl.description', 'cl.color', 'count(distinct cla.claId) as uses' ] const joins = [ 'collection_label cl', 'left join enabled_asset a on cl.collectionId = a.collectionId', 'left join stig_asset_map sa on a.assetId = sa.assetId', 'left join collection_label_asset_map cla on cla.clId = cl.clId and cla.assetId = a.assetId' ] const namePlaceholders = labelNames.map(() => '?').join(', ') const predicates = { statements: [ 'cl.collectionId = ?', `cl.name IN (${namePlaceholders})` ], binds: [collectionId, ...labelNames] } const groupBy = ['cl.clId'] const orderBy = [] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } exports.getCollectionLabelById = async function (collectionId, labelId, grant) { const ctes = [] const columns = [ 'BIN_TO_UUID(cl.uuid,1) labelId', 'cl.name', 'cl.description', 'cl.color', 'count(distinct cla.claId) as uses' ] const joins = [ 'collection_label cl', 'left join enabled_asset a on cl.collectionId = a.collectionId', 'left join stig_asset_map sa on a.assetId = sa.assetId', 'left join collection_label_asset_map cla on cla.clId = cl.clId and cla.assetId = a.assetId' ] const predicates = { statements: [ 'cl.collectionId = ?', 'cl.uuid = UUID_TO_BIN(?,1)' ], binds: [collectionId, labelId] } const groupBy = ['cl.clId'] const orderBy = [] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows[0]) } exports.patchCollectionLabelById = async function (collectionId, labelId, label) { const [rows] = await dbUtils.pool.query( `UPDATE collection_label SET ? WHERE collectionId = ? and uuid = UUID_TO_BIN(?,1)`, [label, collectionId, labelId]) return rows.affectedRows } exports.deleteCollectionLabelById = async function (collectionId, labelId) { const [rows] = await dbUtils.pool.query( `DELETE FROM collection_label WHERE collectionId = ? and uuid = UUID_TO_BIN(?,1)`, [collectionId, labelId]) return rows.affectedRows } exports.getAssetsByCollectionLabelId = async function (collectionId, labelId, grant) { const ctes = [] const columns = [ 'CAST(a.assetId as char) as assetId', 'a.name' ] const joins = [ 'collection_label cl', 'left join collection_label_asset_map cla on cla.clId = cl.clId', 'inner join enabled_asset a on cla.assetId = a.assetId', ] const predicates = { statements: [ 'cl.collectionId = ?', 'cl.uuid = UUID_TO_BIN(?,1)' ], binds: [collectionId, labelId] } const groupBy = [] const orderBy = ['a.name'] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push( 'left join stig_asset_map sa on a.assetId = sa.assetId', 'inner join cteAclEffective cae on sa.saId = cae.saId' ) groupBy.push('a.assetId') } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } exports.putAssetsByCollectionLabelId = async function (collectionId, labelId, assetIds, svcStatus = {}) { let connection try { connection = await dbUtils.pool.getConnection() async function transaction() { await connection.query('START TRANSACTION') const sqlGetClId = `select clId from collection_label where uuid = UUID_TO_BIN(?,1)` const [clIdRows] = await connection.query( sqlGetClId, [ labelId ] ) const clId = clIdRows[0].clId let sqlDelete = ` DELETE FROM collection_label_asset_map WHERE clId = ?` if (assetIds.length > 0) { sqlDelete += ' and assetId NOT IN ?' } await connection.query( sqlDelete, [ clId, [assetIds] ] ) // Push any bind values const binds = [] for (const assetId of assetIds) { binds.push([clId, assetId]) } if (binds.length > 0) { let sqlInsert = ` INSERT IGNORE INTO collection_label_asset_map (clId, assetId) VALUES ?` await connection.query(sqlInsert, [ binds ]) } // Commit the changes await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.getUnreviewedAssetsByCollection = async function (params) { return queryUnreviewedByCollection({ grouping: 'asset', ...params}) } exports.getUnreviewedRulesByCollection = async function (params) { return queryUnreviewedByCollection({ grouping: 'rule', ...params}) } async function queryUnreviewedByCollection ({ grouping, collectionId, benchmarkId, assetId, ruleId, severities, labelIds, labelNames, projections, grant, userObject }) { let columns, groupBy, orderBy let projectionMap = [] switch (grouping) { case 'asset': columns = [ 'CAST(a.assetId as char) as assetId', 'a.name', `coalesce( (select json_arrayagg(json_object( 'labelId', BIN_TO_UUID(cl2.uuid,1), 'name', cl2.name )) from collection_label_asset_map cla2 left join collection_label cl2 on cla2.clId = cl2.clId where cla2.assetId = a.assetId), json_array()) as labels`, `json_arrayagg(json_object( 'result', result.api, 'ruleId', rgr.ruleId, 'groupId', rgr.groupId, ${projections.includes('ruleTitle') ? "'ruleTitle', rgr.title," : ''} ${projections.includes('groupTitle') ? "'groupTitle', rgr.title," : ''} 'severity', rgr.severity, 'benchmarkId', cr.benchmarkId )) as unreviewed` ] groupBy = [ 'a.assetId', 'a.name' ] orderBy = [ 'a.name' ] break case 'rule': projectionMap = projections.map( p => `${p === 'groupTitle' ? 'rgr.groupTitle' : 'rgr.title'}`) columns = [ 'rgr.ruleId', 'rgr.groupId', 'cr.benchmarkId', 'rgr.severity', ...projectionMap, `json_arrayagg(json_object( 'result', result.api, 'assetId', CAST(a.assetId as char), 'name', a.name, 'labels', coalesce( (select json_arrayagg(json_object( 'labelId', BIN_TO_UUID(cl2.uuid,1), 'name', cl2.name )) from collection_label_asset_map cla2 left join collection_label cl2 on cla2.clId = cl2.clId where cla2.assetId = a.assetId), json_array()) )) as unreviewed` ] groupBy = [ 'rgr.ruleId', 'rgr.groupId', 'cr.benchmarkId', 'rgr.severity', ...projectionMap ] orderBy = [ 'rgr.ruleId' ] } const ctes = [] const joins = [ 'enabled_asset a', 'left join collection_label_asset_map cla on cla.assetId = a.assetId', 'left join collection_label cl on cla.clId = cl.clId', 'left join stig_asset_map sa on a.assetId = sa.assetId', 'left join current_rev cr on sa.benchmarkId = cr.benchmarkId', 'left join rev_group_rule_map rgr on cr.revId = rgr.revId', 'left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId', 'left join review r on (a.assetId = r.assetId and rvcd.version = r.version and rvcd.checkDigest = r.checkDigest)', 'left join result on r.resultId = result.resultId' ] const predicates = { statements: [ 'a.collectionId = ?', // '(cg.userId = ? AND CASE WHEN cg.roleId = 1 THEN usa.userId = cg.userId ELSE TRUE END)', '(r.reviewId is null or r.resultId not in (2,3,4))', ], binds: [collectionId, userObject.userId] } if (assetId) { predicates.statements.push('a.assetId = ?') predicates.binds.push(assetId) } if (labelIds?.length) { predicates.statements.push('cl.uuid IN ?') const uuidBinds = labelIds.map( uuid => dbUtils.uuidToSqlString(uuid)) predicates.binds.push([uuidBinds]) } if (labelNames?.length) { predicates.statements.push('cl.name IN ?') predicates.binds.push([labelNames]) } if (benchmarkId) { predicates.statements.push('cr.benchmarkId = ?') predicates.binds.push(benchmarkId) } if (ruleId) { predicates.statements.push('rgr.ruleId = ?') predicates.binds.push(ruleId) } if (severities?.length) { predicates.statements.push('rgr.severity IN ?') predicates.binds.push([severities]) } if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) let [rows] = await dbUtils.pool.query(sql) return (rows) } exports.writeStigPropsByCollectionStig = async function ({collectionId, benchmarkId, defaultRevisionStr, assetIds, svcStatus = {}}) { let connection try { let version, release if (defaultRevisionStr) { if (defaultRevisionStr !== 'latest') { ;({version, release} = dbUtils.parseRevisionStr(defaultRevisionStr)) } } connection = await dbUtils.pool.getConnection() await dbUtils.retryOnDeadlock(transaction, svcStatus) async function transaction () { await connection.query('START TRANSACTION') if (defaultRevisionStr === 'latest' || assetIds?.length === 0) { await connection.query('DELETE FROM collection_rev_map WHERE collectionId = ? and benchmarkId = ?', [collectionId, benchmarkId]) } else if (defaultRevisionStr && defaultRevisionStr !== 'latest') { const [revisions] = await connection.query('SELECT revId FROM revision WHERE benchmarkId = ? and `version` = ? and `release` = ?', [benchmarkId, version, release]) if (revisions[0]?.revId) { await connection.query(`INSERT INTO collection_rev_map (collectionId, benchmarkId, revId) VALUES (?, ?, ?) AS new ON DUPLICATE KEY UPDATE revId = new.revId`, [collectionId, benchmarkId, revisions[0].revId]) } } if (assetIds) { let sqlDeleteStigAsset = ` DELETE stig_asset_map FROM stig_asset_map left join enabled_asset a on stig_asset_map.assetId = a.assetId WHERE a.collectionId = ? and stig_asset_map.benchmarkId = ?${assetIds.length > 0 ? ' and stig_asset_map.assetId NOT IN ?': ''}` // DELETE from stig_asset_map, which will cascade into user_stig_aset_map await connection.query( sqlDeleteStigAsset, [ collectionId, benchmarkId, [assetIds] ] ) if (assetIds.length) { const binds = assetIds.map( assetId => [benchmarkId, assetId]) // INSERT into stig_asset_map const sqlInsertBenchmarks = `INSERT IGNORE INTO stig_asset_map (benchmarkId, assetId) VALUES ?` await connection.query(sqlInsertBenchmarks, [ binds ]) } } await dbUtils.updateDefaultRev(connection, {collectionId, benchmarkId}) await dbUtils.updateStatsAssetStig(connection, {collectionId, benchmarkId}) await connection.commit() } } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw ( err ) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.doesCollectionIncludeAssets = async function ({collectionId, assetIds}) { try { const sql = `select jt.assetId, a.collectionId from JSON_TABLE( ?, "$[*]" COLUMNS( assetId INT(11) PATH "$" ) ) AS jt left join enabled_asset a using (assetId) where a.collectionId != ? or a.collectionId is null` const [rows] = await dbUtils.pool.query(sql, [JSON.stringify(assetIds), collectionId]) return rows.length === 0 } catch (e) { return false } } exports.doesCollectionIncludeStig = async function ({collectionId, benchmarkId}) { try { const [rows] = await dbUtils.pool.query( `select distinct sam.benchmarkId from enabled_asset a inner join stig_asset_map sam using (assetId) where a.collectionId = ?`, [collectionId] ) return rows.some(i => i.benchmarkId === benchmarkId) } catch (e) { return false } } exports.cloneCollection = async function ({collectionId, userObject, name, description, options, svcStatus = {}, progressCb = () => {}}) { let connection, progressJson try { const sql = { cloneCollection: { query: `INSERT INTO collection (name, description, settings, metadata, state) SELECT @name,@description,settings, metadata, "cloning" from enabled_collection WHERE collectionId = @srcCollectionId`, startText: 'Creating core properties', finishText: 'Creating core properties' }, selectLastInsertId: { query: 'SELECT last_insert_id() into @destCollectionId', startText: 'Creating core properties', finishText: 'Created core properties' }, cloneGrants: { query: `INSERT INTO collection_grant (collectionId, userId, userGroupId, roleId) SELECT @destCollectionId, userId, userGroupId, roleId FROM collection_grant where collectionId = @srcCollectionId`, startText: 'Creating Grants', finishText: 'Creating Grants' }, dropGrantMap: { query: `DROP TEMPORARY TABLE IF EXISTS t_grantid_map`, startText: 'Creating Grants', finishText: 'Creating Grants' }, createGrantMap: { query: `CREATE TEMPORARY TABLE t_grantid_map SELECT cg1.grantId as srcGrantId, cg2.grantId as destGrantId FROM collection_grant cg1 left join collection_grant cg2 on (cg1.collectionId = @srcCollectionId and (cg1.userId = cg2.userId or cg1.userGroupId = cg2.userGroupId) and cg1.roleId = cg2.roleId) WHERE cg2.collectionId = @destCollectionId`, startText: 'Creating Grants', finishText: 'Creating Grants' }, insertOwnerGrant: { query: `INSERT INTO collection_grant (collectionId, userId, roleId) VALUES (@destCollectionId, @userId, 4) ON DUPLICATE KEY UPDATE roleId = 4`, startText: 'Creating Grants', finishText: 'Created Grants' }, cloneLabels: { query: `INSERT INTO collection_label (collectionId, name, description, color, uuid) SELECT @destCollectionId,name,description,color,UUID_TO_BIN(UUID(),1) FROM collection_label where collectionId = @srcCollectionId`, startText: 'Creating Labels', finishText: 'Created Labels' }, cloneAssets: { query: `INSERT INTO asset (name, fqdn, collectionId, ip, mac, description, noncomputing, metadata) SELECT name,fqdn,@destCollectionId,ip,mac,description,noncomputing,metadata from enabled_asset where collectionId = @srcCollectionId`, startText: 'Creating Assets', finishText: 'Creating Assets' }, dropAssetMap: { query: `DROP TEMPORARY TABLE IF EXISTS t_assetid_map`, startText: 'Creating Assets', finishText: 'Creating Assets' }, createAssetMap: { query: `CREATE TEMPORARY TABLE t_assetid_map SELECT a1.assetId as srcAssetId, a2.assetId as destAssetId FROM enabled_asset a1 left join enabled_asset a2 on (a1.collectionId = @srcCollectionId and a1.name = a2.name) WHERE a2.collectionId = @destCollectionId`, startText: 'Creating Assets', finishText: 'Created Assets' }, dropLabelMap: { query: `DROP TEMPORARY TABLE IF EXISTS t_clid_map`, startText: 'Creating Asset/Label mappings', finishText: 'Creating Asset/Label mappings' }, createLabelMap: { query: `CREATE TEMPORARY TABLE t_clid_map SELECT cl1.clId as srcClId, cl2.clId as destClId FROM collection_label cl1 left join collection_label cl2 on (cl1.collectionId = @srcCollectionId and cl1.name = cl2.name) WHERE cl2.collectionId = @destCollectionId`, startText: 'Creating Asset/Label mappings', finishText: 'Creating Asset/Label mappings' }, cloneAssetLabels: { query: `INSERT INTO collection_label_asset_map (assetId, clId) SELECT am.destAssetId,cm.destClId FROM collection_label_asset_map cla INNER JOIN t_clid_map cm on cla.clId = cm.srcClId INNER JOIN t_assetid_map am on cla.assetId = am.srcAssetId`, startText: 'Creating Asset/Label mappings', finishText: 'Created Asset/Label mappings' }, cloneStigMappingsWithReviews: { query: `INSERT INTO stig_asset_map (benchmarkId, assetId, minTs, maxTs, saved, savedResultEngine, submitted, submittedResultEngine, rejected, rejectedResultEngine, accepted, acceptedResultEngine, highCount, mediumCount, lowCount, notchecked, notcheckedResultEngine, notapplicable, notapplicableResultEngine, pass, passResultEngine, fail, failResultEngine, unknown, unknownResultEngine, error, errorResultEngine, notselected, notselectedResultEngine, informational, informationalResultEngine, fixed, fixedResultEngine, maxTouchTs, assessedHighCount, assessedMediumCount, assessedLowCount) SELECT benchmarkId, am.destAssetId, minTs, maxTs, saved, savedResultEngine, submitted, submittedResultEngine, rejected, rejectedResultEngine, accepted, acceptedResultEngine, highCount, mediumCount, lowCount, notchecked, notcheckedResultEngine, notapplicable, notapplicableResultEngine, pass, passResultEngine, fail, failResultEngine, unknown, unknownResultEngine, error, errorResultEngine, notselected, notselectedResultEngine, informational, informationalResultEngine, fixed, fixedResultEngine, maxTouchTs, assessedHighCount, assessedMediumCount, assessedLowCount FROM stig_asset_map sa INNER JOIN t_assetid_map am on sa.assetId = am.srcAssetId`, startText: 'Creating Asset/STIG mappings with Metrics', finishText: 'Created Asset/STIG mappings with Metrics' }, cloneStigMappingsWithoutReviews: { query: `INSERT INTO stig_asset_map (benchmarkId, assetId) SELECT benchmarkId, am.destAssetId FROM stig_asset_map sa INNER JOIN t_assetid_map am on sa.assetId = am.srcAssetId`, startText: 'Creating Asset/STIG mappings', finishText: 'Created Asset/STIG mappings' }, cloneGrantAcls: { query: `INSERT INTO collection_grant_acl (grantId, benchmarkId, assetId, clId, access) SELECT gm.destGrantId, cg1.benchmarkId, am.destAssetId, cm.destClId, cg1.access FROM collection_grant_acl cg1 inner join t_grantid_map gm on cg1.grantId = gm.srcGrantId left join t_assetid_map am on cg1.assetId = am.srcAssetId left join t_clid_map cm on cg1.clId = cm.srcClId`, startText: 'Creating Collection Grant ACLs', finishText: 'Created Collection Grant ACLs' }, cloneRevisionsMatchSource: { query: `INSERT INTO collection_rev_map (collectionId, benchmarkId, revId) SELECT @destCollectionId, benchmarkId, revId FROM collection_rev_map where collectionId = @srcCollectionId`, startText: 'Creating Revision pins', finishText: 'Creating Revision pins' }, cloneRevisionsSourceDefaults: { query: `INSERT INTO collection_rev_map (collectionId, benchmarkId, revId) SELECT @destCollectionId, benchmarkId, revId FROM default_rev where collectionId = @srcCollectionId`, startText: 'Creating Revision pins', finishText: 'Creating Revision pins' }, insertDefaultRev: { query: `INSERT INTO default_rev(collectionId, benchmarkId, revId, revisionPinned) SELECT collectionId, benchmarkId, revId, revisionPinned FROM v_default_rev WHERE collectionId = @destCollectionId`, startText: 'Creating Revision pins', finishText: 'Created Revision pins' }, countReviewIds: { query: `SELECT count(seq) as reviewCount from t_reviewId_list`, startText: 'Creating Reviews', finishText: 'Creating Reviews' }, dropReviewIdList: { query: `DROP TEMPORARY TABLE IF EXISTS t_reviewId_list`, startText: 'Creating Reviews', finishText: 'Creating Reviews' }, createReviewIdList: { query: `CREATE TEMPORARY TABLE t_reviewId_list (seq INT AUTO_INCREMENT PRIMARY KEY) SELECT r.reviewId, am.destAssetId FROM enabled_asset a inner join t_assetid_map am on a.assetId = am.srcAssetId inner join review r on am.srcAssetId = r.assetId `, startText: 'Creating Reviews', finishText: 'Creating Reviews' }, cloneReviews: { query: `INSERT INTO review (assetId, ruleId, resultId, detail, comment, autoResult, ts, userId, statusId, statusText, statusUserId, statusTs, metadata, resultEngine, version, checkDigest) SELECT rl.destAssetId, r.ruleId, r.resultId, r.detail, r.comment, r.autoResult, r.ts, r.userId, r.statusId, r.statusText, r.statusUserId, r.statusTs, r.metadata, r.resultEngine, r.version, r.checkDigest FROM t_reviewId_list rl left join review r using (reviewId) WHERE rl.seq >= ? and rl.seq <= ?`, startText: 'Creating Reviews', finishText: 'Created Reviews' }, enableCollection: `UPDATE collection SET state = "enabled" WHERE collectionId = @destCollectionId` } connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = false connection.query('set @srcCollectionId = ?, @userId = ?, @name = ?, @description = ?', [ parseInt(collectionId), parseInt(userObject.userId), name, description ]) const collectionQueries = ['cloneCollection', 'selectLastInsertId'] const reviewQueries = [] if (options.grants) { collectionQueries.push('cloneGrants', 'dropGrantMap', 'createGrantMap') } collectionQueries.push('insertOwnerGrant') if (options.labels) { collectionQueries.push('cloneLabels') } if (options.assets) { collectionQueries.push('cloneAssets', 'dropAssetMap', 'createAssetMap') if (options.labels) { collectionQueries.push('dropLabelMap', 'createLabelMap', 'cloneAssetLabels') } if (options.stigMappings !== 'none') { collectionQueries.push(options.stigMappings === 'withReviews' ? 'cloneStigMappingsWithReviews' : 'cloneStigMappingsWithoutReviews') if (options.grants) { collectionQueries.push('cloneGrantAcls') // collectionQueries.push('cloneRestrictedUserGroupGrants') } collectionQueries.push(options.pinRevisions === 'matchSource' ? 'cloneRevisionsMatchSource' : 'cloneRevisionsSourceDefaults') collectionQueries.push('insertDefaultRev') } if (options.stigMappings === 'withReviews') { reviewQueries.push('dropReviewIdList', 'createReviewIdList', 'cloneReviews') } } async function transactionCollection () { const stage = 'collection' const stepCount = collectionQueries.length + 1 progressJson = {stage, stepCount, step: 0} await connection.query('START TRANSACTION') for (const query of collectionQueries) { progressJson.step++ progressJson.stepName = query progressJson.status = 'running' progressJson.message = sql[query].startText progressCb(progressJson) await connection.query(sql[query].query) } progressJson.step++ progressJson.stepName = 'commit' progressJson.status = 'running' progressJson.message = 'Saving Collection' progressCb(progressJson) await connection.commit() progressJson.status = 'finished' progressJson.message = 'Saved Collection' progressCb(progressJson) } async function transactionReviews () { const stage = 'reviews' const stepCount = reviewQueries.length + 1 progressJson = {stage, stepCount, step: 0} await connection.query('START TRANSACTION') for (const query of reviewQueries) { progressJson.stepName = query progressJson.step++ progressJson.message = sql[query].startText if (query === 'cloneReviews') { let offset = 1 const chunkSize = 10000 let [result] = await connection.query(sql.countReviewIds.query) progressJson.status = 'running' progressJson.reviewsTotal = result[0].reviewCount progressJson.reviewsCopied = 0 progressCb(progressJson) do { [result] = await connection.query(sql[query].query, [offset, offset + chunkSize - 1]) if (result.affectedRows != 0) { progressJson.reviewsCopied += result.affectedRows progressCb(progressJson) } offset += chunkSize } while (result.affectedRows != 0) } else { progressJson.status = 'running' progressCb(progressJson) await connection.query(sql[query].query) } } progressJson.step++ progressJson.stepName = 'commit' progressJson.status = 'running' progressCb(progressJson) await connection.commit() progressJson.status = 'finished' progressCb(progressJson) } await dbUtils.retryOnDeadlock(transactionCollection, svcStatus) await dbUtils.retryOnDeadlock(transactionReviews, svcStatus) await connection.query(sql.enableCollection) const [rows] = await connection.query(`SELECT @destCollectionId as destCollectionId`) return rows[0] } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } progressJson.status = 'error' if (err.message.match(/Duplicate entry .* for key 'collection.index[2|3]'/)) { progressJson.message = 'The requested Collection name is unavailable' } else { progressJson.message = 'Unhandled error' progressJson.error = err progressJson.stack = err?.stack } progressCb(progressJson) return null } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.exportToCollection = async function ({srcCollectionId, dstCollectionId, assetStigArguments, userObject, svcStatus = {}, progressCb = () => {}}) { let connection, progressJson try { const sql = { dropArg: { query: `drop temporary table if exists t_arg`, runningText: 'Preparing data' }, createArg: { query: `create temporary table t_arg ( assetId INT, assetName VARCHAR(255), benchmarkId VARCHAR(255), revisionStr VARCHAR(255), UNIQUE INDEX (assetId, benchmarkId, revisionStr), INDEX (assetName) ) select * from json_table( @json, "$[*]" COLUMNS( assetId INT path "$.assetId", assetName VARCHAR(255) path "$.assetName", nested path "$.stigs[*]" COLUMNS( benchmarkId VARCHAR(255) path "$.benchmarkId", revisionStr VARCHAR(255) path "$.revisionStr" ) ) ) as arg`, runningText: 'Preparing data' }, dropCollectionSetting: { query: `drop temporary table if exists t_collection_setting`, runningText: 'Preparing data' }, createCollectionSetting: { query: `create temporary table t_collection_setting SELECT c.settings->>"$.fields.detail.required" as detailRequired, c.settings->>"$.fields.comment.required" as commentRequired, c.settings->>"$.status.canAccept" as canAccept, c.settings->>"$.status.resetCriteria" as resetCriteria, c.settings->>"$.status.minAcceptGrant" as minAcceptGrant, c.settings->>"$.history.maxReviews" as historyMax FROM enabled_collection c where collectionId = @dstCollectionId`, runningText: 'Preparing data' }, dropSrcReviewId: { query: `drop temporary table if exists t_src_reviewId`, runningText: 'Preparing data' }, createSrcReviewId: { query: `create temporary table t_src_reviewId (seq INT AUTO_INCREMENT PRIMARY KEY, reviewId INT UNIQUE ) select r.reviewId from t_arg left join revision rev on (t_arg.benchmarkId collate utf8mb4_0900_as_cs = rev.benchmarkId and t_arg.revisionStr = rev.revisionStr) left join rev_group_rule_map rgr on (rev.revId = rgr.revId) left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId inner join review r on (rvcd.version = r.version and rvcd.checkDigest = r.checkDigest and t_arg.assetId = r.assetId)`, runningText: 'Preparing data' }, countSrcReviewId: { query: `select count(*) as total from t_src_reviewId`, runningText: 'Preparing data' }, insertAsset: { query: `INSERT into asset (name, fqdn, collectionId, ip, mac, description, noncomputing, metadata, state, stateDate, stateUserId) SELECT srcAsset.name, srcAsset.fqdn, @dstCollectionId, srcAsset.ip, srcAsset.mac, srcAsset.description, srcAsset.noncomputing, srcAsset.metadata, 'enabled', NOW(), @userId FROM t_arg left join enabled_asset srcAsset on t_arg.assetId = srcAsset.assetId left join enabled_asset dstAsset on (t_arg.assetName = dstAsset.name and dstAsset.collectionId = @dstCollectionId) WHERE dstAsset.assetId is null GROUP BY t_arg.assetId`, runningText: "Preparing Assets" }, dropAssetIdMap: { query: `drop temporary table if exists t_assetId_map`, runningText: "Preparing Assets" }, createAssetIdMap: { query: `create temporary table t_assetId_map ( srcAssetId INT, dstAssetId INT, INDEX (srcAssetId), INDEX (dstAssetId) ) select srcAsset.assetId as srcAssetId, dstAsset.assetId as dstAssetId from t_arg inner join enabled_asset srcAsset on (t_arg.assetId = srcAsset.assetId) inner join enabled_asset dstAsset on (t_arg.assetName = dstAsset.name and dstAsset.collectionId = @dstCollectionId) group by srcAsset.assetId, dstAsset.assetId`, runningText: "Preparing Assets" }, insertStigAssetMap: { query: `INSERT into stig_asset_map (assetId, benchmarkId) select a.assetId, t_arg.benchmarkId from t_arg left join enabled_asset a on (t_arg.assetName = a.name and a.collectionId = @dstCollectionId) left join stig_asset_map sa on (t_arg.benchmarkId collate utf8mb4_0900_as_cs = sa.benchmarkId and a.assetId = sa.assetId) where sa.saId is null`, runningText: "Preparing Assets" }, selectStigAssetMap: { query: `select sa.saId from t_arg left join enabled_asset a on (t_arg.assetName = a.name and a.collectionId = @dstCollectionId) left join stig_asset_map sa on (t_arg.benchmarkId collate utf8mb4_0900_as_cs = sa.benchmarkId and a.assetId = sa.assetId)` }, deleteDefaultRev: { query: `DELETE FROM default_rev where collectionId = @dstCollectionId`, runningText: "Preparing Assets" }, insertDefaultRev: { query: `INSERT INTO default_rev(collectionId, benchmarkId, revId, revisionPinned) SELECT collectionId, benchmarkId, revId, revisionPinned FROM v_default_rev where collectionId = @dstCollectionId`, finishText: 'Created Asset/STIG maps', runningText: "Preparing Assets" }, dropIncomingReview: { query: `drop temporary table if exists t_incoming_review`, runningText: `Preparing reviews`, finishText: `Preparing reviews` }, createIncomingReview: { query: `create temporary table t_incoming_review select dstReview.reviewId, t_assetId_map.dstAssetId as assetId, srcReview.version, srcReview.checkDigest, srcReview.ruleId, srcReview.resultId, srcReview.detail, srcReview.comment, srcReview.resultEngine, srcReview.metadata, UTC_TIMESTAMP() as ts, @userId as userId, CASE WHEN dstReview.reviewId is null or rStatusReset.reviewId is not null THEN 0 ELSE dstReview.statusId END as statusId, CASE WHEN dstReview.reviewId is null THEN '' ELSE CASE WHEN rStatusReset.reviewId is not null THEN 'Status reset due to a Review change or Collection setting' ELSE dstReview.statusText END END as statusText, CASE WHEN dstReview.reviewId is null or rStatusReset.reviewId is not null THEN UTC_TIMESTAMP() ELSE dstReview.statusTs END as statusTs, CASE WHEN dstReview.reviewId is null or rStatusReset.reviewId is not null THEN @userId ELSE dstReview.statusUserId END as statusUserId from t_src_reviewId left join t_collection_setting on true inner join review srcReview on (t_src_reviewId.reviewId = srcReview.reviewId) left join t_assetId_map on (srcReview.assetId = t_assetId_map.srcAssetId) left join review dstReview on (srcReview.version = dstReview.version and srcReview.checkDigest = dstReview.checkDigest and t_assetId_map.dstAssetId = dstReview.assetId) left join review rChangedResult on ( dstReview.reviewId = rChangedResult.reviewId and 0 != rChangedResult.statusId and srcReview.resultId != rChangedResult.resultId ) left join review rChangedAny on ( dstReview.reviewId = rChangedAny.reviewId and 0 != rChangedAny.statusId and (srcReview.resultId != rChangedAny.resultId or srcReview.detail != rChangedAny.detail or srcReview.comment != rChangedAny.comment) ) left join review rStatusReset on ( dstReview.reviewId = rStatusReset.reviewId and ( (t_collection_setting.resetCriteria = 'result' and rChangedResult.reviewId is not null) or (t_collection_setting.resetCriteria = 'any' and rChangedAny.reviewId is not null) or (t_collection_setting.detailRequired = 'always' and srcReview.detail = '') or (t_collection_setting.commentRequired = 'always' and srcReview.comment = '') or (t_collection_setting.detailRequired = 'findings' and srcReview.resultId = 4 and srcReview.detail = '') or (t_collection_setting.commentRequired = 'findings' and srcReview.resultId = 4 and srcReview.comment = '') ) ) where t_src_reviewId.seq >= ? and t_src_reviewId.seq <= ?`, runningText: `Preparing reviews`, finishText: `Preparing reviews` }, countIncomingReview: { query: `select sum(reviewId is null) as inserted, sum(reviewId is not null) as updated from t_incoming_review`, runningText: `Preparing reviews`, }, pruneHistory: { query: `with historyRecs AS ( select rh.historyId, ROW_NUMBER() OVER (PARTITION BY r.assetId, r.version, r.checkDigest ORDER BY rh.historyId DESC) as rowNum from review_history rh inner join t_incoming_review r using (reviewId) ) delete review_history FROM review_history left join historyRecs on review_history.historyId = historyRecs.historyId WHERE historyRecs.rowNum > ((select historyMax from t_collection_setting) - 1)`, runningText: `Preparing reviews`, finishText: `Preparing reviews` }, insertHistory: { query: `INSERT INTO review_history ( reviewId, ruleId, resultId, detail, comment, autoResult, ts, userId, statusText, statusUserId, statusTs, statusId, touchTs, resultEngine) SELECT r.reviewId, r.ruleId, r.resultId, LEFT(r.detail,32767) as detail, LEFT(r.comment,32767) as comment, r.autoResult, r.ts, r.userId, r.statusText, r.statusUserId, r.statusTs, r.statusId, r.touchTs, r.resultEngine FROM review r inner join t_incoming_review using (reviewId)`, runningText: `Preparing reviews`, finishText: `Prepared reviews` }, upsertReview: { query: `insert into review (reviewId, assetId, version, checkDigest, ruleId, resultId, detail, comment, resultEngine, metadata, ts, userId, statusId, statusText, statusTs, statusUserId) select * from t_incoming_review as r on duplicate key update ruleId = r.ruleId, resultId = r.resultId, detail = r.detail, comment = r.comment, ts = r.ts, userId = r.userId, statusId = r.statusId, statusText = r.statusText, statusUserId = r.statusUserId, statusTs = r.statusTs, metadata = r.metadata, resultEngine = r.resultEngine` } } connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = false connection.query('set @srcCollectionId = ?, @dstCollectionId = ?, @userId = ?, @json = ?', [parseInt(srcCollectionId), parseInt(dstCollectionId), parseInt(userObject.userId), JSON.stringify(assetStigArguments)]) const prepQueries = ['dropArg', 'createArg', 'dropCollectionSetting', 'createCollectionSetting', 'dropSrcReviewId', 'createSrcReviewId'] const assetQueries = ['insertAsset', 'dropAssetIdMap', 'createAssetIdMap', 'insertStigAssetMap', 'deleteDefaultRev', 'insertDefaultRev'] const reviewExportQueries = ['pruneHistory', 'insertHistory', 'upsertReview'] const counts = { assetsCreated: 0, stigsMapped: 0, reviewsInserted: 0, reviewsUpdated: 0 } async function transaction () { progressJson = { stage: 'prepare', stepCount: prepQueries.length, step: 0 } await connection.query('START TRANSACTION') for (const query of prepQueries) { progressJson.step++ progressJson.stepName = query progressJson.status = 'running' progressJson.message = sql[query].runningText progressCb(progressJson) await connection.query(sql[query].query) } progressJson.stage = 'assets' progressJson.stepCount = assetQueries.length progressJson.step = 0 for (const query of assetQueries) { progressJson.step++ progressJson.stepName = query progressJson.status = 'running' progressJson.message = sql[query].runningText progressCb(progressJson) const [result] = await connection.query(sql[query].query) if (query === 'insertAsset') { counts.assetsCreated = result.affectedRows } if (query === 'insertStigAssetMap') { counts.stigsMapped = result.affectedRows } } const [count] = await connection.query(sql.countSrcReviewId.query) let offset = 1 const chunkSize = 10000 let result progressJson = { stage: 'reviews', status: 'running', reviewsTotal: count[0].total, reviewsExported: 0 } progressCb(progressJson) do { await connection.query(sql.dropIncomingReview.query) ;[result] = await connection.query(sql.createIncomingReview.query, [offset, offset + chunkSize - 1]) if (result.affectedRows != 0) { const [count] = await connection.query(sql.countIncomingReview.query) counts.reviewsInserted += count[0].inserted counts.reviewsUpdated += count[0].updated for (const query of reviewExportQueries) { await connection.query(sql[query].query) } progressJson.reviewsExported += result.affectedRows progressCb(progressJson) } offset += chunkSize } while (result.affectedRows != 0) const [saIdResult] = await connection.query(sql.selectStigAssetMap.query) progressJson = { stage: 'metrics', status: 'running', metricsTotal: saIdResult.length, metricsUpdated: 0 } progressCb(progressJson) const increment = 1000 for (let i = 0; i < saIdResult.length; i+=increment) { const saIds = saIdResult.slice(i, i + increment).map(row => row.saId) await dbUtils.updateStatsAssetStig(connection, {saIds}) progressJson.metricsUpdated += saIds.length progressCb(progressJson) } progressJson = { stage: 'commit', status: 'running' } progressCb(progressJson) await connection.commit() progressCb({ stage: 'result', counts }) } await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } progressJson.status = 'error' progressJson.message = 'Unhandled error' progressJson.error = err progressJson.stack = err?.stack progressCb({progressJson}) return null } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.setGrantByCollection = async function ({collectionId, userId, userGroupId, roleId}) { const sqlInsertGrant = `INSERT INTO collection_grant (collectionId, ${userId ? 'userId' : 'userGroupId'}, roleId) VALUES (?, ?, ?) AS new ON DUPLICATE KEY UPDATE roleId = new.roleId` const [response] = await dbUtils.pool.query(sqlInsertGrant, [collectionId, userId || userGroupId, roleId]) // resolving if we are inserting a new db record or updating an existing. const httpStatus = (response.affectedRows === 1 && response.insertId !== 0) ? 201 : 200 return httpStatus } exports.getEffectiveAclByCollectionUser = async function ({collectionId, userId}) { const sqlSelectEffectiveGrants = ` with cteGrantees as ( select json_array(cg.grantId) as grantIds from collection_grant cg inner join enabled_collection c on (cg.collectionId = c.collectionId) left join user_data ud on cg.userId = ud.userId where cg.userId is not null and cg.collectionId = ? and cg.userId = ? union select grantIds from ( select ROW_NUMBER() OVER(PARTITION BY ugu.userId, cg.collectionId ORDER BY cg.roleId desc) as rn, json_arrayagg(cg.grantId) OVER (PARTITION BY ugu.userId, cg.collectionId, cg.roleId) as grantIds from collection_grant cg left join user_group_user_map ugu on cg.userGroupId = ugu.userGroupId left join user_group ug on ugu.userGroupId = ug.userGroupId left join collection_grant cgDirect on (cg.collectionId = cgDirect.collectionId and ugu.userId = cgDirect.userId) inner join enabled_collection c on (cg.collectionId = c.collectionId) where cg.userGroupId is not null and cgDirect.userId is null and cg.collectionId = ? and ugu.userId = ? ) dt where dt.rn = 1 ), cteAclRules as (select sa.saId, sa.assetId, sa.benchmarkId, cga.grantId, cga.access, json_object('assetId', cast(a.assetId as char), 'name', a.name) as asset, json_object( 'grantee', json_remove(json_object( CASE WHEN ud.userId is null THEN 'x' ELSE 'userId' END, CAST(ud.userId AS CHAR), CASE WHEN ud.userId is null THEN 'x' ELSE 'username' END, ud.username, CASE WHEN ug.userGroupId is null THEN 'x' ELSE 'userGroupId' END, CAST(ug.userGroupId AS CHAR), CASE WHEN ug.userGroupId is null THEN 'x' ELSE 'name' END, ug.name, 'roleId', cg.roleId ), '$.x'), 'aclRule', json_remove(json_object( CASE WHEN cga.benchmarkId is null THEN 'x' ELSE 'benchmarkId' END, cga.benchmarkId, CASE WHEN cga.assetId is null THEN 'x' ELSE 'asset' END, CASE WHEN cga.assetId is null THEN NULL ELSE json_object('assetId', cast(cga.assetId as char), 'name', a.name) END, CASE WHEN cga.clId is null THEN 'x' ELSE 'label' END, CASE WHEN cga.clId is null THEN NULL ELSE json_object('labelId', BIN_TO_UUID(cl.uuid,1), 'name', cl.name) END, 'access', cga.access ), '$.x') ) as aclSource, case when cga.benchmarkId is not null then 1 else 0 end + case when cga.assetId is not null then 1 else 0 end + case when cga.assetId is not null and cga.benchmarkId is not null then 1 else 0 end + case when cga.clId is not null then 1 else 0 end as specificity from collection_grant_acl cga left join collection_grant cg on cga.grantId = cg.grantId left join user_data ud on cg.userId = ud.userId left join user_group ug on cg.userGroupId = ug.userGroupId left join collection_label_asset_map cla on cga.clId = cla.clId left join collection_label cl on cla.clId = cl.clId inner join stig_asset_map sa on ( case when cga.assetId is not null then cga.assetId = sa.assetId else true end and case when cga.benchmarkId is not null then cga.benchmarkId = sa.benchmarkId else true end and case when cga.clId is not null then cla.assetId = sa.assetId else true end) inner join enabled_asset a on sa.assetId = a.assetId and cg.collectionId = a.collectionId where cga.grantId in ( select /*+ NO_MERGE() */ jt.grantId from cteGrantees left join json_table (cteGrantees.grantIds, '$[*]' COLUMNS (grantId INT PATH '$')) jt on true ) ), cteAclRulesRanked as ( select /*+ NO_MERGE() */ saId, access, asset, benchmarkId, json_arrayagg(aclSource) over (partition by saId, access, specificity) as aclSources, specificity, row_number() over (partition by saId order by specificity desc, access asc) as rn from cteAclRules) select /*+ NO_MERGE() */ access, asset, benchmarkId, aclSources from cteAclRulesRanked where rn = 1 and access != 'none'` const [response] = await dbUtils.pool.query(sqlSelectEffectiveGrants, [collectionId, userId, collectionId, userId]) return response } exports.setValidatedAcl = async function({validatedAcl, grantId, attributionUserId, svcStatus = {}}) { const sqlDelete = `DELETE from collection_grant_acl WHERE grantId = ?` const values = validatedAcl.map(i => [i.grantId, i.assetId, i.benchmarkId, i.clId, i.access, attributionUserId]) if (values.length) { return dbUtils.retryOnDeadlock2({ transactionFn, statusObj: svcStatus }) } else { return dbUtils.pool.query(sqlDelete, [grantId]) } async function transactionFn (connection) { const sqlInsert = `INSERT into collection_grant_acl (grantId, assetId, benchmarkId, clId, access, modifiedUserId) VALUES ?` await connection.query(sqlDelete, [grantId]) await connection.query(sqlInsert, [values]) } } exports._reviewAclValidate = async function ({grantId, acl}) { const sql = ` select any_value(cg.grantId) as grantId, group_concat(jt.itemNum) as itemNum, case when count(jt.item) > 1 then json_arrayagg(jt.item) else any_value(jt.item) end as item, jt.assetId, jt.benchmarkId, cl.clId, group_concat(jt.access) as access, group_concat(case when any_value(cg.roleId) != 1 and jt.access = 'none' then 'roleId prohibits access:none' else case when jt.assetId is not null and a.assetId is null then 'asset not found in collection' else case when jt.benchmarkId is not null and s.benchmarkId is null then 'stig not installed' else case when jt.labelId is not null and cl.clId is null then 'label not found in collection' else 'pass' end end end end) as validity, count(jt.item) as dupCount from json_table( ?, "$[*]" COLUMNS ( itemNum FOR ORDINALITY, item JSON PATH '$', assetId INT PATH '$.assetId', benchmarkId VARCHAR(255) PATH '$.benchmarkId', labelId VARCHAR(255) PATH '$.labelId', access VARCHAR(255) PATH '$.access' )) jt left join collection_grant cg on (cg.grantId = ?) left join collection_label cl on cl.uuid = UUID_TO_BIN(jt.labelId,1) and cg.collectionId = cl.collectionId left join enabled_asset a on jt.assetId = a.assetId and cg.collectionId = a.collectionId left join stig s on jt.benchmarkId collate utf8mb4_0900_as_cs = s.benchmarkId group by jt.assetId, jt.benchmarkId, jt.labelId, cl.clId order by itemNum` const [rows] = await dbUtils.pool.query(sql, [JSON.stringify(acl), grantId]) const response = rows.reduce((a,v) => { const disposition = v.validity === 'pass' ? 'pass' : 'fail' if (disposition === 'fail') { delete v.grantId delete v.assetId delete v.benchmarkId delete v.clId delete v.access if (v.dupCount > 1) v.validity += ',duplicate resource definition' } delete v.dupCount a[disposition].push(v) return a }, {pass:[], fail:[]}) return response } exports._getCollectionGrant = async function ({collectionId, grantId, grantIds, userId, userGroupId}) { let sql = `select case when user_data.userId then json_object( 'grantId', cast(grantId as char), 'user', json_object( 'userId', CAST(user_data.userId as char), 'username', user_data.username, 'displayName', COALESCE( JSON_UNQUOTE(JSON_EXTRACT(user_data.lastClaims, "$.name")), user_data.username)), 'roleId', roleId) else json_object( 'grantId', cast(grantId as char), 'userGroup', json_object( 'userGroupId', CAST(user_group.userGroupId as char), 'name', user_group.name, 'description', user_group.description ), 'roleId', roleId) end as grantJson from collection_grant left join user_data using (userId) left join user_group using (userGroupId) where collectionId = ?` if (grantId) { sql += ' and grantId = ?' } else if (grantIds) { sql += ' and grantId IN (?)' } else if (userId) { sql += ' and userId = ?' } else if (userGroupId) { sql += ' and userGroupId = ?' } const [response] = await dbUtils.pool.query(sql, [collectionId, grantId || grantIds || userId || userGroupId]) const grants = response.map(row => row.grantJson) return grants } exports.putGrantById = function ({grantId, grant, isRoleChange = false, svcStatus = {}}) { const sqlUpdate = `UPDATE collection_grant SET userId = ?,userGroupId = ?,roleId = ? where grantId = ?` const bindsUpdate = [grant.userId, grant.userGroupId, grant.roleId, grantId] if (isRoleChange) { // need a transaction async function transactionFn (connection) { const sqlDelete = `DELETE from collection_grant_acl WHERE grantId = ? and access = 'none'` await connection.query(sqlDelete, [grantId]) await connection.query(sqlUpdate, bindsUpdate) } return dbUtils.retryOnDeadlock2({ transactionFn, statusObj: svcStatus }) } else { return dbUtils.pool.query(sqlUpdate, bindsUpdate) } } exports.deleteGrantById = async function (grantId) { const sql = `DELETE from collection_grant WHERE grantId = ?` return dbUtils.pool.query(sql, [grantId]) } exports.postGrantsByCollection = async function (collectionId, grants) { const binds = grants.map( g => [collectionId, g.userId, g.userGroupId, g.roleId]) const sql = `INSERT into collection_grant (collectionId, userId, userGroupId, roleId) VALUES ?` const [result] = await dbUtils.pool.query(sql, [binds]) const grantIds = [] for (let x = 0; x < result.affectedRows; x++) { grantIds.push(result.insertId + x) } return grantIds } exports._hasCollectionGrant = async function ({collectionId, userId}) { const sql = `SELECT cg.grantId FROM collection_grant cg LEFT JOIN user_group ug ON cg.userGroupId = ug.userGroupId LEFT JOIN user_data ud on cg.userID = ud.userId LEFT JOIN user_group_user_map ugu ON ug.userGroupId = ugu.userGroupId WHERE cg.collectionId = ? AND (ud.userId = ? OR ugu.userId = ?)` const [response] = await dbUtils.pool.query(sql, [collectionId, userId, userId]) return !!response[0] } exports.queryReviewAcl = async function ({grantId, collectionId, userId, userGroupId}) { const columns = [ `case when cg.roleId = 1 then 'none' else 'rw' end as defaultAccess`, `case when count(cga.cgAclId) = 0 THEN json_array() ELSE json_arrayagg( json_remove(json_object( CASE WHEN cga.benchmarkId is null THEN 'x' ELSE 'benchmarkId' END, cga.benchmarkId, CASE WHEN cga.assetId is null THEN 'x' ELSE 'asset' END, CASE WHEN cga.assetId is null THEN NULL ELSE json_object('assetId',cast(cga.assetId as char),'name',a.name) END, CASE WHEN cga.clId is null THEN 'x' ELSE 'label' END, CASE WHEN cga.clId is null THEN NULL ELSE json_object('labelId',BIN_TO_UUID(cl.uuid,1), 'name', cl.name, 'color', cl.color) END, 'access', cga.access ), '$.x')) END as acl` ] const joins = [ 'collection_grant cg', 'inner join enabled_collection c on cg.collectionId = c.collectionId', 'left join collection_grant_acl cga on cg.grantId = cga.grantId', 'left join enabled_asset a on cga.assetId = a.assetId', 'left join collection_label cl on cga.clId = cl.clId' ] const predicates = { statements: [], binds: [] } if (grantId) { predicates.statements.push('cg.grantId = ?') predicates.binds.push(grantId) } else if (userId && collectionId) { predicates.statements.push('cg.userId = ?', 'cg.collectionId = ?') predicates.binds.push(userId, collectionId) } else if (userGroupId && collectionId) { predicates.statements.push('cg.userGroupId = ?', 'cg.collectionId = ?') predicates.binds.push(userGroupId, collectionId) } const sql = dbUtils.makeQueryString({columns, joins, predicates, format: true}) const [rows] = await dbUtils.pool.query(sql) return rows?.[0] } ================================================ FILE: api/source/service/JobService.js ================================================ const { randomUUID } = require('node:crypto') const dbUtils = require('./utils') const _this = this exports.queryJobs = async function ({ projections = [], filters = {} } = {}) { const columns = [ 'CAST(job.jobId AS CHAR) AS jobId', 'job.name', 'job.description', `json_object( 'userId', CAST(ud_creator.userId as char), 'username', ud_creator.username) AS createdBy`, 'job.created', `IF(ud_updater.userId IS NULL, NULL, json_object( 'userId', CAST(ud_updater.userId as char), 'username', ud_updater.username)) AS updatedBy`, 'job.updated', `(select IF(COUNT(jt.taskId), json_arrayagg(json_object('taskId', CAST(jt.taskId as char), 'name', t.name, 'description', t.description)), json_array()) from job_task_map jt left join task t ON jt.taskId = t.taskId where jt.jobId = job.jobId) AS tasks`, `(select ifnull(COUNT(*), 0) from job_run jr where jr.jobId = job.jobId) AS runCount`, `(SELECT ifnull(JSON_OBJECT( 'runId', BIN_TO_UUID(jr.runId, 1), 'created', DATE_FORMAT(jr.created,'%Y-%m-%dT%H:%i:%sZ'), 'updated', IF(jr.updated IS NULL, NULL, DATE_FORMAT(jr.updated,'%Y-%m-%dT%H:%i:%sZ')), 'state', CASE WHEN jr.state = 'running' AND jr.created < CURRENT_TIMESTAMP - INTERVAL gs.VARIABLE_VALUE SECOND THEN 'shutdown' ELSE jr.state END ), null) FROM job_run jr left join performance_schema.global_status gs ON gs.VARIABLE_NAME = "Uptime" WHERE jr.jobId = job.jobId ORDER BY jr.jrId DESC LIMIT 1) AS lastRun`, ] const joins = new Set([ 'job', 'LEFT JOIN user_data ud_creator ON ud_creator.userId = job.createdBy', 'LEFT JOIN user_data ud_updater ON ud_updater.userId = job.updatedBy' ]) const groupBy = ['job.jobId'] const orderBy = ['job.jobId'] const eventValues = ` IF(e.event_type = 'ONE TIME', JSON_OBJECT( 'eventId', e.event_name, 'type', 'once', 'starts', DATE_FORMAT(e.execute_at,'%Y-%m-%dT%H:%i:%sZ') ), JSON_OBJECT( 'eventId', e.event_name, 'type', 'recurring', 'interval', JSON_OBJECT('value', CAST(e.interval_value as char), 'field', LCASE(e.interval_field)), 'starts', DATE_FORMAT(e.starts,'%Y-%m-%dT%H:%i:%sZ'), 'ends', DATE_FORMAT(e.ends,'%Y-%m-%dT%H:%i:%sZ'), 'enabled', e.status = 'ENABLED' ) )` columns.push(`(select ${eventValues} AS event from information_schema.events e where e.event_schema = database() AND e.event_name LIKE CONCAT("job-", job.jobId, "-stigman") LIMIT 1 ) as event`) const predicates = { statements: [], binds: [] } if (filters.jobId) { predicates.statements.push('job.jobId = ?') predicates.binds.push(filters.jobId) } const sql = dbUtils.makeQueryString({ columns, joins, predicates, groupBy, orderBy, format: true }) let [rows] = await dbUtils.pool.query(sql) return (rows) } exports.getJobs = async ({ projections }) => { return _this.queryJobs({ projections }) } exports.getJob = async (jobId, { projections } = {}) => { const jobs = await _this.queryJobs({ projections, filters: { jobId } }) return jobs[0] } exports.deleteJob = async (jobId) => { const sql = 'select event_name from information_schema.events where event_schema = database() AND event_name LIKE CONCAT("job-", ?, "-%")' const [events] = await dbUtils.pool.query(sql, [jobId]) if (events.length) { const eventNames = events.map(r => r.EVENT_NAME) for (const eventName of eventNames) { const sqlDropEvent = `DROP EVENT IF EXISTS ??` await dbUtils.pool.query(sqlDropEvent, [eventName]) } } const [result] = await dbUtils.pool.query('DELETE FROM job WHERE jobId = ?', [jobId]) return result.affectedRows > 0 } async function createEventByJob(jobId, eventData) { const eventName = getEventNameByJob(jobId) if (eventData.type === 'once') { const sqlCreateEvent = ` CREATE EVENT ?? ON SCHEDULE AT ? DO CALL run_job(?, null) ` const params = [eventName, eventData.starts, jobId] await dbUtils.pool.query(sqlCreateEvent, params) } else if (eventData.type === 'recurring') { const intervalFields = { minute: 'MINUTE', hour: 'HOUR', day: 'DAY', week: 'WEEK', month: 'MONTH' } const intervalSql = intervalFields[eventData.interval.field] const enabledSql = eventData.enabled === false ? 'DISABLE' : 'ENABLE' const endsSql = eventData.ends ? 'ENDS ?' : '' const sqlCreateEvent = ` CREATE EVENT ?? ON SCHEDULE EVERY ? ${intervalSql} STARTS ? ${endsSql} ${enabledSql} DO CALL run_job(?, null) ` const params = [eventName, eventData.interval.value, eventData.starts] if (eventData.ends) params.push(eventData.ends) params.push(jobId) await dbUtils.pool.query(sqlCreateEvent, params) } return eventName } async function dropEventByJob(jobId) { const eventName = getEventNameByJob(jobId) const sqlDropEvent = `DROP EVENT IF EXISTS ??` return dbUtils.pool.query(sqlDropEvent, [eventName]) } function getEventNameByJob(jobId) { return `job-${jobId}-stigman` } exports.createJob = async ({ jobData, userId, svcStatus } = {}) => { const { tasks, event, ...jobFields } = jobData async function transactionFn(connection) { const sqlInsertJob = `INSERT into job (name, description, createdBy) VALUES ?` const values = [ [jobFields.name, jobFields.description, userId] ] const result = await connection.query(sqlInsertJob, [values]) const jobId = result[0].insertId const sqlInsertTasks = `INSERT INTO job_task_map (jobId, taskId) VALUES ?` const taskValues = tasks.map(t => [jobId, t]) if (taskValues.length) { await connection.query(sqlInsertTasks, [taskValues]) } return jobId } const jobId = await dbUtils.retryOnDeadlock2({ transactionFn, statusObj: svcStatus }) // Create events after committing the transaction if (event) { await createEventByJob(jobId, event) } return jobId } exports.patchJob = async ({jobId, jobData, userId, svcStatus = {}}) => { const { tasks, event, ...jobFields } = jobData async function transactionFn(connection) { const sets = [] const binds = [] if (jobFields.name !== undefined) { sets.push('name = ?') binds.push(jobFields.name) } if (jobFields.description !== undefined) { sets.push('description = ?') binds.push(jobFields.description) } if (sets.length) { sets.push('updatedBy = ?') binds.push(userId) binds.push(jobId) const sqlUpdateJob = `UPDATE job SET ${sets.join(', ')}, updated = CURRENT_TIMESTAMP WHERE jobId = ?` await connection.query(sqlUpdateJob, binds) } if (Array.isArray(tasks)) { const sqlDeleteTasks = `DELETE FROM job_task_map WHERE jobId = ?` await connection.query(sqlDeleteTasks, [jobId]) const sqlInsertTasks = `INSERT INTO job_task_map (jobId, taskId) VALUES ?` const taskValues = tasks.map(t => [jobId, t]) if (taskValues.length) { await connection.query(sqlInsertTasks, [taskValues]) } } return jobId } const updatedJobId = await dbUtils.retryOnDeadlock2({ transactionFn, statusObj: svcStatus }) if (event === null) { await dropEventByJob(jobId) } else if (event) { await dropEventByJob(jobId) await createEventByJob(jobId, event) } return updatedJobId } exports.getEventsByJob = async (jobId) => { throw new Error('Not implemented') } exports.createEventByJob = async (jobId, eventData) => { throw new Error('Not implemented') } exports.getRunById = async (runId) => { const columns = [ `BIN_TO_UUID(jr.runId, 1) AS runId`, `CASE WHEN jr.state = 'running' AND jr.created < CURRENT_TIMESTAMP - INTERVAL gs.VARIABLE_VALUE SECOND THEN 'shutdown' ELSE jr.state END AS state`, 'jr.created', 'jr.updated', 'CAST(jr.jobId AS CHAR) AS jobId' ] const joins = new Set([ 'job_run jr', 'left join performance_schema.global_status gs ON gs.VARIABLE_NAME = "Uptime"' ]) const predicates = { statements: ['jr.runId = ?'], binds: [dbUtils.uuidToSqlString(runId)] } const sql = dbUtils.makeQueryString({ columns, joins, predicates, format: true }) let [rows] = await dbUtils.pool.query(sql, [runId]) return (rows[0]) } exports.getRunsByJob = async (jobId) => { const columns = [ `BIN_TO_UUID(jr.runId, 1) AS runId`, `CASE WHEN jr.state = 'running' AND jr.created < CURRENT_TIMESTAMP - INTERVAL gs.VARIABLE_VALUE SECOND THEN 'shutdown' ELSE jr.state END AS state`, `jr.created`, `jr.updated`, `CAST(jr.jobId AS CHAR) AS jobId` ] const joins = new Set([ 'job_run jr', 'left join performance_schema.global_status gs ON gs.VARIABLE_NAME = "Uptime"' ]) const predicates = { statements: ['jr.jobId = ?'], binds: [jobId] } const orderBy = ['jr.created DESC'] const sql = dbUtils.makeQueryString({ columns, joins, predicates, orderBy, format: true }) let [rows] = await dbUtils.pool.query(sql, [jobId]) return (rows) } exports.runImmediateJob = async (jobId) => { const runId = randomUUID() const sql = `CREATE EVENT IF NOT EXISTS ?? ON SCHEDULE AT CURRENT_TIMESTAMP DO CALL run_job(?,?)` await dbUtils.pool.query(sql, [`job-${jobId}-${runId}`, jobId, runId]) return runId } exports.getOutputByRun = async (runId, {filters}) => { const ctes = [ `Output AS ( SELECT ROW_NUMBER() OVER (ORDER BY tout.seq ASC) as seq, tout.ts, tout.taskId, t.name as task, tout.type, tout.message FROM task_output tout left join task t ON tout.taskId = t.taskId WHERE runId = UUID_TO_BIN(?, 1))` ] const columns = [ 'Output.seq', 'Output.ts', 'Output.taskId', 'Output.task', 'Output.type', 'Output.message' ] const joins = new Set(['Output']) const predicates = { statements: [], binds: [runId] } if (filters?.afterSeq) { predicates.statements.push('Output.seq > ?') predicates.binds.push(filters.afterSeq) } const orderBy = ['Output.seq DESC'] const sql = dbUtils.makeQueryString({ ctes, columns, joins, predicates, orderBy, format: true }) let [rows] = await dbUtils.pool.query(sql, predicates.binds) return (rows) } exports.getAllTasks = async () => { const sql = `SELECT CAST(taskId AS CHAR(36)) AS taskId, name, description, command FROM task ORDER BY name` let [rows] = await dbUtils.pool.query(sql) return rows } exports.deleteRunById = async (runId) => { const [result] = await dbUtils.pool.query('DELETE FROM job_run WHERE runId = UUID_TO_BIN(?,1)', [runId]) return result.affectedRows > 0 } ================================================ FILE: api/source/service/MetricsService.js ================================================ const dbUtils = require('./utils') function genLabelPredicates ({labelNames, labelIds, labelMatch, collectionLabelTableAlias = 'cl'}) { const clauses = [] const binds = [] if (labelNames) { clauses.push(`${collectionLabelTableAlias}.name IN ?`) binds.push([labelNames]) } if (labelIds) { const uuidBinds = labelIds.map( uuid => dbUtils.uuidToSqlString(uuid)) clauses.push(`${collectionLabelTableAlias}.uuid IN ?`) binds.push([uuidBinds]) } if (labelMatch === 'null') { clauses.push(`${collectionLabelTableAlias}.uuid IS NULL`) } const statement = `(${clauses.join(' OR ')})` return {statement, binds} } module.exports.queryMetrics = async function ({ collectionId, filter = {}, grant, aggregation = 'unagg', style = 'detail', returnType = 'json' }) { const predicates = { statements: [ 'a.collectionId = ? ' ], binds: [collectionId] } const ctes = [] const columns = returnType === 'csv' ? [...baseColsFlat[aggregation]] : [...baseCols[aggregation]] const joins = [ 'enabled_asset a', 'left join stig_asset_map sa on a.assetId = sa.assetId', 'left join default_rev dr on a.collectionId = dr.collectionId and sa.benchmarkId = dr.benchmarkId', 'left join revision rev on dr.revId = rev.revId', 'left join stig on rev.benchmarkId = stig.benchmarkId' ] if (grant.roleId === 1) { ctes.push(dbUtils.cteAclEffective({grantIds: grant.grantIds})) joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') } const groupBy = [] const orderBy = [] // FILTERS if (filter.labelNames || filter.labelIds || filter.labelMatch) { const {statement, binds} = genLabelPredicates({ labelNames: filter.labelNames, labelIds: filter.labelIds, labelMatch: filter.labelMatch, collectionLabelTableAlias: 'clPred' }) const innerQueryRaw = `select distinct assetId from enabled_asset left join collection_label_asset_map using (assetId) left join collection_label clPred using(clId) where a.collectionId = ? and ${statement}` const innerQueryFormatted = dbUtils.pool.format(innerQueryRaw, [collectionId, ...binds]) predicates.statements.push(`a.assetId IN (${innerQueryFormatted})`) } if (filter.assetIds) { predicates.statements.push( 'a.assetId IN ?' ) predicates.binds.push([filter.assetIds]) } if (filter.benchmarkIds) { predicates.statements.push( 'sa.benchmarkId IN ?' ) predicates.binds.push([filter.benchmarkIds]) } switch (aggregation) { case 'asset': predicates.statements.push('a.assetId IS NOT NULL') groupBy.push('a.assetId') orderBy.push('a.name') break case 'stig': predicates.statements.push('sa.benchmarkId IS NOT NULL') groupBy.push('rev.revId', 'dr.revisionPinned') orderBy.push('rev.benchmarkId') break case 'collection': joins.push(`left join enabled_collection c on a.collectionId = c.collectionId`) groupBy.push('c.collectionId') orderBy.push('c.name') break case 'label': predicates.statements.push('a.assetId IS NOT NULL') groupBy.push('cl.description', 'cl.color', 'cl.uuid', 'cl.name') joins.push( 'left join collection_label_asset_map cla on a.assetId = cla.assetId', 'left join collection_label cl on cla.clId = cl.clId' ) orderBy.push('cl.name') break case 'unagg': predicates.statements.push('sa.benchmarkId IS NOT NULL') break } if (style === 'detail') { if (returnType === 'csv' && aggregation === 'unagg') { columns.push(...colsMetricsDetail) } else if (returnType === 'csv') { columns.push(...colsMetricsDetailAgg) } else { columns.push( aggregation === 'unagg' ? sqlMetricsDetail : sqlMetricsDetailAgg) } } else { if (returnType === 'csv' && aggregation === 'unagg') { columns.push(...colsMetricsSummary) } else if (returnType === 'csv') { columns.push(...colsMetricsSummaryAgg) } else { columns.push( aggregation === 'unagg' ? sqlMetricsSummary : sqlMetricsSummaryAgg) } } const sql = dbUtils.makeQueryString({ ctes, columns, joins, predicates, groupBy, orderBy, format: true }) const [rows] = await dbUtils.pool.query(sql) return (rows || []) } module.exports.queryMetaMetrics = async function ({ filter = {}, grants, aggregation = 'meta', style = 'detail', returnType = 'json' }) { const ctes = [] const columns = returnType === 'csv' ? [...baseColsFlat[aggregation]] : [...baseCols[aggregation]] const joins = [ 'enabled_asset a', 'left join stig_asset_map sa on a.assetId = sa.assetId', 'left join default_rev dr on a.collectionId = dr.collectionId and sa.benchmarkId = dr.benchmarkId', 'left join revision rev on dr.revId = rev.revId', 'left join stig on rev.benchmarkId = stig.benchmarkId' ] const predicates = { statements: [], binds: [] } const groupBy = [] const orderBy = [] let grantedCollectionIds = [] let restrictedGrantIds = [] const restrictedCollectionIds = [] if (filter.collectionIds) { for (const collectionId of filter.collectionIds) { if (grants[collectionId]) { grantedCollectionIds.push(collectionId) } } } else { grantedCollectionIds = Object.keys(grants) } for (const collectionId of grantedCollectionIds) { if (grants[collectionId].roleId === 1) { restrictedCollectionIds.push(collectionId) restrictedGrantIds.push(grants[collectionId].grantIds) } } restrictedGrantIds = restrictedGrantIds.flat() if (grantedCollectionIds.length) { predicates.statements.push('a.collectionId IN (?)') predicates.binds.push(grantedCollectionIds) } else { predicates.statements.push('false') } if (restrictedCollectionIds.length) { ctes.push(dbUtils.cteAclEffective({grantIds: restrictedGrantIds})) joins.push('left join cteAclEffective cae on sa.saId = cae.saId') predicates.statements.push('case when a.collectionId IN (?) then cae.saId = sa.saId else true end') predicates.binds.push(restrictedCollectionIds) } if (filter.benchmarkIds) { predicates.statements.push('sa.benchmarkId IN ?') predicates.binds.push([filter.benchmarkIds]) } if (filter.revisionIds) { predicates.statements.push('rev.revId IN ?') predicates.binds.push([filter.revisionIds]) } switch (aggregation) { case 'meta': predicates.statements.push('sa.benchmarkId IS NOT NULL') break case 'collection': joins.push('left join enabled_collection c on a.collectionId = c.collectionId') groupBy.push('c.collectionId') orderBy.push('c.name') break case 'metaStig': predicates.statements.push('sa.benchmarkId IS NOT NULL') groupBy.push('rev.revId') orderBy.push('rev.benchmarkId') break } if (style === 'detail') { if (returnType === 'csv') { columns.push(...colsMetricsDetailAgg) } else { columns.push(sqlMetricsDetailAgg) } } else { //style: 'summary' if (returnType === 'csv') { columns.push(...colsMetricsSummaryAgg) } else { columns.push(sqlMetricsSummaryAgg) } } const sql = dbUtils.makeQueryString({ ctes, columns, joins, predicates, groupBy, orderBy, format: true }) const [rows] = await dbUtils.pool.query(sql) return (rows || []) } const sqlMetricsDetail = `json_object( 'assessments', rev.ruleCount, 'assessmentsBySeverity', json_object( 'low', rev.lowCount, 'medium', rev.mediumCount, 'high', rev.highCount ), 'assessed', sa.pass + sa.fail + sa.notapplicable, 'assessedBySeverity', json_object( 'low', sa.assessedLowCount, 'medium', sa.assessedMediumCount, 'high', sa.assessedHighCount ), 'minTs', DATE_FORMAT(sa.minTs, '%Y-%m-%dT%H:%i:%sZ'), 'maxTs', DATE_FORMAT(sa.maxTs, '%Y-%m-%dT%H:%i:%sZ'), 'maxTouchTs', DATE_FORMAT(sa.maxTouchTs, '%Y-%m-%dT%H:%i:%sZ'), 'findings', json_object( 'low', sa.lowCount, 'medium', sa.mediumCount, 'high', sa.highCount ), 'statuses', json_object( 'saved', json_object('total',sa.saved,'resultEngine',sa.savedResultEngine), 'submitted', json_object('total',sa.submitted,'resultEngine',sa.submittedResultEngine), 'rejected', json_object('total',sa.rejected,'resultEngine',sa.rejectedResultEngine), 'accepted', json_object('total',sa.accepted,'resultEngine',sa.acceptedResultEngine) ), 'results', json_object( 'notchecked', json_object('total',sa.notchecked,'resultEngine',sa.notcheckedResultEngine), 'notapplicable', json_object('total',sa.notapplicable,'resultEngine',sa.notapplicableResultEngine), 'pass', json_object('total',sa.pass,'resultEngine',sa.passResultEngine), 'fail', json_object('total',sa.fail,'resultEngine',sa.failResultEngine), 'unknown', json_object('total',sa.unknown,'resultEngine',sa.unknownResultEngine), 'error', json_object('total',sa.error,'resultEngine',sa.errorResultEngine), 'notselected', json_object('total',sa.notselected,'resultEngine',sa.notselectedResultEngine), 'informational', json_object('total',sa.informational,'resultEngine',sa.informationalResultEngine), 'fixed', json_object('total',sa.fixed,'resultEngine',sa.fixedResultEngine) ) ) as metrics` const sqlMetricsDetailAgg = `json_object( 'assessments', coalesce(sum(rev.ruleCount),0), 'assessmentsBySeverity', json_object( 'low', coalesce(sum(rev.lowCount),0), 'medium', coalesce(sum(rev.mediumCount),0), 'high', coalesce(sum(rev.highCount),0) ), 'assessed', coalesce(sum(sa.pass + sa.fail + sa.notapplicable),0), 'assessedBySeverity', json_object( 'low', coalesce(sum(sa.assessedLowCount),0), 'medium', coalesce(sum(sa.assessedMediumCount),0), 'high', coalesce(sum(sa.assessedHighCount),0) ), 'minTs', DATE_FORMAT(MIN(sa.minTs), '%Y-%m-%dT%H:%i:%sZ'), 'maxTs', DATE_FORMAT(MAX(sa.maxTs), '%Y-%m-%dT%H:%i:%sZ'), 'maxTouchTs', DATE_FORMAT(MAX(sa.maxTouchTs), '%Y-%m-%dT%H:%i:%sZ'), 'findings', json_object( 'low', coalesce(sum(sa.lowCount),0), 'medium', coalesce(sum(sa.mediumCount),0), 'high', coalesce(sum(sa.highCount),0) ), 'statuses', json_object( 'saved', json_object('total',coalesce(sum(sa.saved),0),'resultEngine',coalesce(sum(sa.savedResultEngine),0)), 'submitted', json_object('total',coalesce(sum(sa.submitted),0),'resultEngine',coalesce(sum(sa.submittedResultEngine),0)), 'rejected', json_object('total',coalesce(sum(sa.rejected),0),'resultEngine',coalesce(sum(sa.rejectedResultEngine),0)), 'accepted', json_object('total',coalesce(sum(sa.accepted),0),'resultEngine',coalesce(sum(sa.acceptedResultEngine),0)) ), 'results', json_object( 'notchecked', json_object('total',coalesce(sum(sa.notchecked),0),'resultEngine',coalesce(sum(sa.notcheckedResultEngine),0)), 'notapplicable', json_object('total',coalesce(sum(sa.notapplicable),0),'resultEngine',coalesce(sum(sa.notapplicableResultEngine),0)), 'pass', json_object('total',coalesce(sum(sa.pass),0),'resultEngine',coalesce(sum(sa.passResultEngine),0)), 'fail', json_object('total',coalesce(sum(sa.fail),0),'resultEngine',coalesce(sum(sa.failResultEngine),0)), 'unknown', json_object('total',coalesce(sum(sa.unknown),0),'resultEngine',coalesce(sum(sa.unknownResultEngine),0)), 'error', json_object('total',coalesce(sum(sa.error),0),'resultEngine',coalesce(sum(sa.errorResultEngine),0)), 'notselected', json_object('total',coalesce(sum(sa.notselected),0),'resultEngine',coalesce(sum(sa.notselectedResultEngine),0)), 'informational', json_object('total',coalesce(sum(sa.informational),0),'resultEngine',coalesce(sum(sa.informationalResultEngine),0)), 'fixed', json_object('total',coalesce(sum(sa.fixed),0),'resultEngine',coalesce(sum(sa.fixedResultEngine),0)) ) ) as metrics` const sqlMetricsSummary = `json_object( 'assessments', rev.ruleCount, 'assessmentsBySeverity', json_object( 'low', rev.lowCount, 'medium', rev.mediumCount, 'high', rev.highCount ), 'assessed', sa.pass + sa.fail + sa.notapplicable, 'assessedBySeverity', json_object( 'low', sa.assessedLowCount, 'medium', sa.assessedMediumCount, 'high', sa.assessedHighCount ), 'minTs', DATE_FORMAT(sa.minTs, '%Y-%m-%dT%H:%i:%sZ'), 'maxTs', DATE_FORMAT(sa.maxTs, '%Y-%m-%dT%H:%i:%sZ'), 'maxTouchTs', DATE_FORMAT(sa.maxTouchTs, '%Y-%m-%dT%H:%i:%sZ'), 'results', json_object( 'pass', sa.pass, 'fail', sa.fail, 'notapplicable', sa.notapplicable, 'other', sa.notchecked + sa.unknown + sa.error + sa.notselected + sa.informational + sa.fixed ), 'statuses', json_object( 'saved', sa.saved, 'submitted', sa.submitted, 'accepted', sa.accepted, 'rejected', sa.rejected ), 'findings', json_object( 'low', sa.lowCount, 'medium', sa.mediumCount, 'high', sa.highCount ) ) as metrics` const sqlMetricsSummaryAgg = `json_object( 'assessments', coalesce(sum(rev.ruleCount),0), 'assessmentsBySeverity', json_object( 'low', coalesce(sum(rev.lowCount),0), 'medium', coalesce(sum(rev.mediumCount),0), 'high', coalesce(sum(rev.highCount),0) ), 'assessed', coalesce(sum(sa.pass + sa.fail + sa.notapplicable),0), 'assessedBySeverity', json_object( 'low', coalesce(sum(sa.assessedLowCount),0), 'medium', coalesce(sum(sa.assessedMediumCount),0), 'high', coalesce(sum(sa.assessedHighCount),0) ), 'minTs', DATE_FORMAT(MIN(sa.minTs), '%Y-%m-%dT%H:%i:%sZ'), 'maxTs', DATE_FORMAT(MAX(sa.maxTs), '%Y-%m-%dT%H:%i:%sZ'), 'maxTouchTs', DATE_FORMAT(MAX(sa.maxTouchTs), '%Y-%m-%dT%H:%i:%sZ'), 'results', json_object( 'pass', coalesce(sum(sa.pass),0), 'fail', coalesce(sum(sa.fail),0), 'notapplicable', coalesce(sum(sa.notapplicable),0), 'other', coalesce(sum(sa.notchecked + sa.unknown + sa.error + sa.notselected + sa.informational + sa.fixed),0) ), 'statuses', json_object( 'saved', coalesce(sum(sa.saved),0), 'submitted', coalesce(sum(sa.submitted),0), 'accepted', coalesce(sum(sa.accepted),0), 'rejected', coalesce(sum(sa.rejected),0) ), 'findings', json_object( 'low', coalesce(sum(sa.lowCount),0), 'medium', coalesce(sum(sa.mediumCount),0), 'high', coalesce(sum(sa.highCount),0) ) ) as metrics` const colsMetricsDetail = [ `rev.ruleCount as assessments`, `rev.lowCount as assessmentsLow`, `rev.mediumCount as assessmentsMedium`, `rev.highCount as assessmentsHigh`, `sa.pass + sa.fail + sa.notapplicable as assessed`, `sa.assessedLowCount as assessedLow`, `sa.assessedMediumCount as assessedMedium`, `sa.assessedHighCount as assessedHigh`, `DATE_FORMAT(sa.minTs, '%Y-%m-%dT%H:%i:%sZ') as minTs`, `DATE_FORMAT(sa.maxTs, '%Y-%m-%dT%H:%i:%sZ') as maxTs`, `DATE_FORMAT(sa.maxTouchTs, '%Y-%m-%dT%H:%i:%sZ') as maxTouchTs`, `sa.lowCount as findingsLow`, `sa.mediumCount as findingsMedium`, `sa.highCount as findingsHigh`, `sa.saved`, `sa.savedResultEngine`, `sa.submitted`, `sa.submittedResultEngine`, `sa.accepted`, `sa.acceptedResultEngine`, `sa.rejected`, `sa.rejectedResultEngine`, `sa.pass`, `sa.passResultEngine`, `sa.fail`, `sa.failResultEngine`, `sa.notapplicable`, `sa.notapplicableResultEngine`, `sa.notchecked`, `sa.notcheckedResultEngine`, `sa.unknown`, `sa.unknownResultEngine`, `sa.error`, `sa.errorResultEngine`, `sa.notselected`, `sa.notselectedResultEngine`, `sa.informational`, `sa.informationalResultEngine`, `sa.fixed`, `sa.fixedResultEngine` ] const colsMetricsDetailAgg = [ `coalesce(sum(rev.ruleCount),0) as assessments`, `coalesce(sum(rev.lowCount),0) as assessmentsLow`, `coalesce(sum(rev.mediumCount),0) as assessmentsMedium`, `coalesce(sum(rev.highCount),0) as assessmentsHigh`, `coalesce(sum(sa.pass + sa.fail + sa.notapplicable),0) as assessed`, `coalesce(sum(sa.assessedLowCount),0) as assessedLow`, `coalesce(sum(sa.assessedMediumCount),0) as assessedMedium`, `coalesce(sum(sa.assessedHighCount),0) as assessedHigh`, `DATE_FORMAT(min(sa.minTs), '%Y-%m-%dT%H:%i:%sZ') as minTs`, `DATE_FORMAT(max(sa.maxTs), '%Y-%m-%dT%H:%i:%sZ') as maxTs`, `DATE_FORMAT(max(sa.maxTouchTs), '%Y-%m-%dT%H:%i:%sZ') as maxTouchTs`, `coalesce(sum(sa.lowCount),0) as findingsLow`, `coalesce(sum(sa.mediumCount),0) as findingsMedium`, `coalesce(sum(sa.highCount),0) as findingsHigh`, `coalesce(sum(sa.saved),0) as saved`, `coalesce(sum(sa.savedResultEngine),0) as savedResultEngine`, `coalesce(sum(sa.submitted),0) as submitted`, `coalesce(sum(sa.submittedResultEngine),0) as submittedResultEngine`, `coalesce(sum(sa.accepted),0) as accepted`, `coalesce(sum(sa.acceptedResultEngine),0) as acceptedResultEngine`, `coalesce(sum(sa.rejected),0) as rejected`, `coalesce(sum(sa.rejectedResultEngine),0) as rejectedResultEngine`, `coalesce(sum(sa.pass),0) as pass`, `coalesce(sum(sa.passResultEngine),0) as passResultEngine`, `coalesce(sum(sa.fail),0) as fail`, `coalesce(sum(sa.failResultEngine),0) as failResultEngine`, `coalesce(sum(sa.notapplicable),0) as notapplicable`, `coalesce(sum(sa.notapplicableResultEngine),0) as notapplicableResultEngine`, `coalesce(sum(sa.notchecked),0) as notchecked`, `coalesce(sum(sa.notcheckedResultEngine),0) as notcheckedResultEngine`, `coalesce(sum(sa.unknown),0) as unknown`, `coalesce(sum(sa.unknownResultEngine),0) as unknownResultEngine`, `coalesce(sum(sa.error),0) as error`, `coalesce(sum(sa.errorResultEngine),0) as errorResultEngine`, `coalesce(sum(sa.notselected),0) as notselected`, `coalesce(sum(sa.notselectedResultEngine),0) as notselectedResultEngine`, `coalesce(sum(sa.informational),0) as informational`, `coalesce(sum(sa.informationalResultEngine),0) as informationalResultEngine`, `coalesce(sum(sa.fixed),0) as fixed`, `coalesce(sum(sa.fixedResultEngine),0) as fixedResultEngine` ] const colsMetricsSummary = [ 'rev.ruleCount as "assessments"', `rev.lowCount as assessmentsLow`, `rev.mediumCount as assessmentsMedium`, `rev.highCount as assessmentsHigh`, 'sa.pass + sa.fail + sa.notapplicable as "assessed"', 'sa.assessedLowCount as "assessedLow"', 'sa.assessedMediumCount as "assessedMedium"', 'sa.assessedHighCount as "assessedHigh"', `DATE_FORMAT(sa.minTs, '%Y-%m-%dT%H:%i:%sZ') as minTs`, `DATE_FORMAT(sa.maxTs, '%Y-%m-%dT%H:%i:%sZ') as maxTs`, `DATE_FORMAT(sa.maxTouchTs, '%Y-%m-%dT%H:%i:%sZ') as maxTouchTs`, 'sa.lowCount as "findingsLow"', 'sa.mediumCount as "findingsMedium"', 'sa.highCount as "findingsHigh"', 'sa.pass as "pass"', 'sa.fail as "fail"', 'sa.notapplicable as "notapplicable"', 'sa.notchecked + sa.unknown + sa.error + sa.notselected + sa.informational + sa.fixed as "other"', 'sa.saved as "saved"', 'sa.submitted as "submitted"', 'sa.accepted as "accepted"', 'sa.rejected as "rejected"' ] const colsMetricsSummaryAgg = [ 'coalesce(sum(rev.ruleCount),0) as "assessments"', `coalesce(sum(rev.lowCount),0) as assessmentsLow`, `coalesce(sum(rev.mediumCount),0) as assessmentsMedium`, `coalesce(sum(rev.highCount),0) as assessmentsHigh`, 'coalesce(sum(sa.pass + sa.fail + sa.notapplicable),0) as "assessed"', 'coalesce(sum(sa.assessedLowCount),0) as "assessedLow"', 'coalesce(sum(sa.assessedMediumCount),0) as "assessedMedium"', 'coalesce(sum(sa.assessedHighCount),0) as "assessedHigh"', `DATE_FORMAT(MIN(sa.minTs), '%Y-%m-%dT%H:%i:%sZ') as minTs`, `DATE_FORMAT(MAX(sa.maxTs), '%Y-%m-%dT%H:%i:%sZ') as maxTs`, `DATE_FORMAT(MAX(sa.maxTouchTs), '%Y-%m-%dT%H:%i:%sZ') as maxTouchTs`, 'coalesce(sum(sa.lowCount),0) as "findingsLow"', 'coalesce(sum(sa.mediumCount),0) as "findingsMedium"', 'coalesce(sum(sa.highCount),0) as "findingsHigh"', 'coalesce(sum(sa.pass),0) as "pass"', 'coalesce(sum(sa.fail),0) as "fail"', 'coalesce(sum(sa.notapplicable),0) as "notapplicable"', 'coalesce(sum(sa.notchecked + sa.unknown + sa.error + sa.notselected + sa.informational + sa.fixed),0) as "other"', 'coalesce(sum(sa.saved),0) as "saved"', 'coalesce(sum(sa.submitted),0) as "submitted"', 'coalesce(sum(sa.accepted),0) as "accepted"', 'coalesce(sum(sa.rejected),0) as "rejected"' ] const sqlLabels = `coalesce( (select json_arrayagg(json_object( 'labelId', BIN_TO_UUID(cl2.uuid,1), 'name', cl2.name, 'color', cl2.color )) from collection_label_asset_map cla2 left join collection_label cl2 on cla2.clId = cl2.clId where cla2.assetId = a.assetId), json_array()) as labels` const sqlLabelsFlat = `( select group_concat(cl2.name) from collection_label_asset_map cla2 left join collection_label cl2 on cla2.clId = cl2.clId where cla2.assetId = a.assetId) as "labels"` const baseCols = { unagg: [ 'cast(a.assetId as char) as assetId', 'a.name', sqlLabels, 'rev.benchmarkId', 'stig.title', 'rev.marking', 'rev.revisionStr', 'CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END as revisionPinned', `DATE_FORMAT(rev.benchmarkDateSql, '%Y-%m-%d') as revisionDate`, ], asset: [ 'cast(a.assetId as char) as assetId', 'a.name', sqlLabels, 'a.ip', 'a.fqdn', 'a.mac', 'case when count(sa.benchmarkId) > 0 THEN json_arrayagg(sa.benchmarkId) ELSE json_array() END as benchmarkIds' ], collection: [ 'cast(c.collectionId as char) as collectionId', 'c.name', 'count(distinct a.assetId) as assets', 'count(distinct sa.benchmarkId) as stigs', 'count(sa.saId) as checklists' ], stig: [ 'rev.benchmarkId', 'stig.title', 'rev.marking', 'rev.revisionStr', 'CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END as revisionPinned', `DATE_FORMAT(rev.benchmarkDateSql, '%Y-%m-%d') as revisionDate`, 'count(distinct a.assetId) as assets', 'rev.ruleCount' ], label: [ 'BIN_TO_UUID(cl.uuid,1) as labelId', 'cl.name', 'cl.color', 'cl.description', 'count(distinct a.assetId) as assets' ], meta: [ 'count(distinct a.collectionId) as collections', 'count(distinct a.assetId) as assets', 'count(distinct sa.benchmarkId) as stigs', 'count(sa.saId) as checklists' ], metaStig: [ 'rev.benchmarkId', 'stig.title', 'rev.marking', 'rev.revisionStr', `DATE_FORMAT(rev.benchmarkDateSql, '%Y-%m-%d') as revisionDate`, 'count(distinct a.collectionId) as collections', 'count(distinct a.assetId) as assets', 'rev.ruleCount' ] } const baseColsFlat = { unagg: [ 'cast(a.assetId as char) as assetId', 'a.name', sqlLabelsFlat, 'rev.benchmarkId', 'stig.title', 'rev.marking', 'rev.revisionStr', 'CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END as revisionPinned', `DATE_FORMAT(rev.benchmarkDateSql, '%Y-%m-%d') as revisionDate`, ], asset: [ 'cast(a.assetId as char) as assetId', 'a.name', sqlLabelsFlat, 'group_concat(sa.benchmarkId) as benchmarkIds' ], collection: [ 'cast(c.collectionId as char) as collectionId', 'c.name', 'count(distinct a.assetId) as assets', 'count(sa.saId) as checklists' ], stig: [ 'rev.benchmarkId', 'stig.title', 'rev.marking', 'rev.revisionStr', 'CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END as revisionPinned', `DATE_FORMAT(rev.benchmarkDateSql, '%Y-%m-%d') as revisionDate`, 'count(distinct a.assetId) as assets', 'rev.ruleCount' ], label: [ 'BIN_TO_UUID(cl.uuid,1) as labelId', 'cl.name', 'count(distinct a.assetId) as assets' ], meta: [ 'count(distinct a.collectionId) as collections', 'count(distinct a.assetId) as assets', 'count(distinct sa.benchmarkId) as stigs', 'count(sa.saId) as checklists' ], metaStig: [ 'rev.benchmarkId', 'stig.title', 'rev.marking', 'rev.revisionStr', `DATE_FORMAT(rev.benchmarkDateSql, '%Y-%m-%d') as revisionDate`, 'count(distinct a.collectionId) as collections', 'count(distinct a.assetId) as assets', 'rev.ruleCount' ] } ================================================ FILE: api/source/service/OperationService.js ================================================ 'use strict'; const dbUtils = require('./utils') const config = require('../utils/config') const logger = require('../utils/logger') const BJSON = require('../utils/buffer-json') const { Readable, Transform } = require("node:stream") const { pipeline } = require("node:stream/promises") const zlib = require("node:zlib") const klona = require('../utils/klona') const os = require('node:os') const Umzug = require('umzug') const path = require('path') /** * Return version information * * returns ApiVersion **/ exports.getConfiguration = async function() { const sql = `SELECT * from config` const [rows] = await dbUtils.pool.query(sql) const config = {} for (const row of rows) { config[row.key] = row.value } return (config) } exports.setConfigurationItem = async function (key, value) { const sql = 'INSERT INTO config (`key`, `value`) VALUES (?, ?) ON DUPLICATE KEY UPDATE value = VALUES(value)' await dbUtils.pool.query(sql, [key, value]) return (true) } /** * getAppData - streams JSONL records to the response. The JSONL are either * data records from a MySQL table (always an array) or metadata records (always an object). * * @param {import('express').Response} res express response * @returns {undefined} * @example Abbreviated example of JSONL which is streamed to the response: * {"version":"1.4.13","commit":{"branch":"na","sha":"na","tag":"na","describe":"na"},"date":"2024-08-18T15:29:16.784Z","lastMigration":33}\n {"tables":[{"table":"stig","rowCount":4}, ... ], "totalRows": 4}\n {"table":"stig","columns":"`benchmarkId`, `title`","rowCount":4}\n ["RHEL_7_STIG_TEST","Red Hat Enterprise Linux 7 Security Technical Implementation Guide"]\n ["VPN_SRG_TEST","Virtual Private Network (VPN) Security Requirements Guide"]\n ["VPN_SRG_Rule-fingerprint-match-test","Virtual Private Network (VPN) Security Requirements Guide - replaced"]\n ["Windows_10_STIG_TEST","Windows 10 Security Technical Implementation Guide"]\n ... */ exports.getAppData = async function (res, format) { /** @type {string[]} tables to exclude from the appdata file */ const excludedTables = [ '_migrations', 'status', 'result', 'severity_cat_map', 'cci', 'cci_reference_map', 'config', 'job', 'job_run', 'job_task_map', 'task', 'task_output' ] let sink if (format === 'gzip') { /** @type {zlib.Gzip} transform stream to compress JSONL records and write to the response */ sink = zlib.createGzip() sink.pipe(res) } else { /** @type {http.ServerResponse} */ sink = res } sink.setMaxListeners(Infinity) // Write metadata record {version, commit, date, lastMigration} const {version, commit, lastMigration} = config sink.write(JSON.stringify({version, commit, date: new Date(), lastMigration}) + '\n') // Execute SQL to retrieve a list of tables and their non-generated columns. The query binds // to the schema name and the excluded tables. /** @type {Array.} */ const sql = `SELECT TABLE_NAME as \`table\`, cast(concat('[', group_concat(CONCAT('"\`',COLUMN_NAME,'\`"') order by COLUMN_NAME), ']') as json) as columns FROM INFORMATION_SCHEMA.COLUMNS where TABLE_SCHEMA=? and TABLE_NAME IN (select TABLE_NAME FROM INFORMATION_SCHEMA.TABLES where TABLE_SCHEMA=? and TABLE_TYPE='BASE TABLE') and TABLE_NAME not in (?) and EXTRA NOT LIKE '% GENERATED' group by TABLE_NAME` const [tableRows] = await dbUtils.pool.query(sql, [config.database.schema, config.database.schema, excludedTables]) /** * @type {Object.} object pivoted from tableRows[] * @example * '{ "asset": { "columns": "`assetId`,`name`,`fqdn`, ... " }, "check_content": { "columns": "`ccId`,`content`" }, "collection": { "columns": "`collectionId`,`name`,`description`, ... " } }' */ const tableMetadata = tableRows.reduce((acc, value) => { acc[value.table] = {columns:value.columns.join(',')} return acc }, {}) /** @type {string[]} */ const tableNames = Object.keys(tableMetadata) /** @type {number} incremented by the row count of each table */ let totalRows = 0 /** @type {{table:string, rowCount:number}[]} */ let tables = [] // Select and handle the row count for each table. for (const table of tableNames) { const [row] = await dbUtils.pool.query(`select count(*) as cnt from ${table}`) const rowCount = row[0].cnt tableMetadata[table].rowCount = rowCount tables.push({table, rowCount}) totalRows += rowCount } // Write metadata record {tables, totalRows} sink.write(JSON.stringify({tables, totalRows}) + '\n') for (const table of tableNames) { // create readable stream using the non-promise interface of dbUtils.pool.pool // select all rows for non-generated columns in table // perform custom type casting of fields to JS /** @type {Readable} */ const queryStream = dbUtils.pool.pool.query({ sql: `select ${tableMetadata[table].columns} from ${table}`, rowsAsArray: true, typeCast: function (field, next) { // BIT fields returned as boolean if ((field.type === "BIT") && (field.length === 1)) { let bytes = field.buffer() || [0] return (bytes[0] === 1) } // Designated fields returned as original MySQL strings if (field.type === 'JSON' || field.type === 'DATETIME' || field.type === 'DATE' || field.type === 'TIMESTAMP' || field.type === 'TIME' || field.type === 'YEAR') { return (field.string("utf8")) } return next() } }).stream() // Write metadata record {table, columns, rowCount} sink.write(JSON.stringify({table, ...tableMetadata[table]}) + '\n') /** @type {Transform} writes a JSONL data record for each tuple of row data*/ const bjson = new Transform({ objectMode: true, transform: (data, encoding, cb) => { // BSJON supports stringify() and parse() of Buffer values cb(null, BJSON.stringify(data) + '\n') } }) // pipeline writes data records [field, field, ...] to sink, ends without closing sink await pipeline(queryStream, bjson, sink, { end: false }) } // ending sink will also end the response sink.end() } exports.getAppDataTables = async function () { const sql = `SELECT TABLE_NAME as name, TABLE_ROWS as \`rows\`, DATA_LENGTH as dataLength FROM information_schema.TABLES WHERE TABLE_SCHEMA=? and TABLE_TYPE='BASE TABLE' ORDER BY TABLE_NAME` const [rows] = await dbUtils.pool.query(sql, [config.database.schema]) return (rows) } /** * replaceAppData - process a file created by getAppData() and execute SQL queries with progress messages * * @param {Buffer} buffer - buffer with file content * @param {function(Object)} progressCb - optional, argument is an object with progress status * @returns {Promise} promise */ exports.replaceAppData = async function (buffer, contentType, progressCb = () => {}) { /** * ParseJSONLStream - Transform chunks of JSONL records into individual parsed AppData records (N:1). * @extends Transform */ /** @type {boolean} needsMigrations - indicates if migrations are required */ let needsMigrations = false class ParseJSONLStream extends Transform { /** * @param {Object} param * @param {function(string):any} param.jsonParser - function for JSON parsing, default JSON.parse() * @param {string} param.separator - character separating JSONL records, default '\n' */ constructor({jsonParser = JSON.parse, separator = '\n'} = {}) { super({objectMode: true}) Object.assign(this, {separator, jsonParser}) /** @type {RegExp} RegExp for .split() that includes any trailing separator */ this.splitRegExp = new RegExp(`(?<=${separator})`) /** @type {string} holds incoming chunk prefaced by any partial record from previous transform */ this.buffer = '' } /** * @param {Buffer} chunk - buffer from Gunzip that can span multiple JSONL records * @param {string} encoding - usually 'utf8' * @param {function()} cb - signals completion */ _transform(chunk, encoding, cb) { this.buffer += chunk.toString(encoding) /** @type {string[]} list of JSONL, last item might be truncated or partial */ const candidates = this.buffer.split(this.splitRegExp) /** @type {number} index of last candidates[] item */ const lastIndex = candidates.length - 1 // clear buffer for the next _transform() or _flush() this.buffer = '' /** index @type {number} */ /** candidate @type {string} */ for (const [index, candidate] of candidates.entries()) { if (index === lastIndex && !candidate.endsWith(this.separator)) { // this is the last candidate and there's no trailing separator // initialize buffer for next _transform() or _flush() this.buffer = candidate } else { try { // if parsable, write parsed value this.push(this.jsonParser(candidate)) } // swallow any parse error catch {} } } cb() } /** @param {function()} cb signals completion */ _flush(cb) { try { // if what's left in the buffer is parsable, write parsed value if (this.buffer) this.push(this.jsonParser(this.buffer)) } // swallow any parse error catch {} cb() } } /** * AppDataQueryStream - Transform AppData records into an SQL query object (N:1) * @extends Transform */ class AppDataQueryStream extends Transform { /** * @param {Object} param * @param {number} param.maxValues - maximum number of values for an insert query. * @param {function(Object): any} param.onTablesFn - called when record {tables, ...} is read * @param {function(Object): any} param.onMigrationFn - called when record {..., lastMigration} is read */ constructor({maxValues = 10000, onTablesFn = new Function(), onMigrationFn = async function () {}}) { super({objectMode: true}) Object.assign(this, { maxValues, onTablesFn, onMigrationFn }) /** @type {null|Object} the last metadata record encountered */ this.currentMetadata = null /** @type {Array} values for an insert query */ this.currentBinds = [] } /** * @param {Buffer} chunk a single AppData record * @param {string} encoding usually 'utf8' * @param {function()} cb signals completion */ async _transform(chunk, encoding, cb) { if (Array.isArray(chunk)) { this.currentBinds.push(chunk) if (this.currentBinds.length === this.maxValues || this.currentBinds.length === 0) { this.push(this.formatCurrentQuery()) this.currentBinds = [] } } else if (chunk.lastMigration) { try { await this.onMigrationFn(chunk) } catch (e) { cb(e) return } } else if (chunk.table){ if (this.currentMetadata) { this.push(this.formatCurrentQuery()) } this.currentMetadata = chunk this.currentBinds = [] this.push(this.formatCurrentQuery()) } else if (chunk.tables) { try { this.onTablesFn(chunk) } catch (e) { cb(e) return } } else { this.currentMetadata = null } cb() } /** @param {function()} cb signals completion */ _flush(cb) { this.push(this.formatCurrentQuery()) cb() } /** * Creates an object with an SQL insert or truncate statement that operates * on the current table and any current binds * @returns {{table:string, sql:string, valueCount:number}} */ formatCurrentQuery() { const sqlInsert = this.currentBinds.length ? `insert into ${this.currentMetadata.table}(${this.currentMetadata.columns}) values ?` : `truncate ${this.currentMetadata.table}` return { table: this.currentMetadata.table, sql: dbUtils.pool.format(sqlInsert, [this.currentBinds]), valueCount: this.currentBinds.length } } } /** * @param {any} record expected to be AppData metadata {..., lastMigration} * @returns {undefined} * @throws {Error} */ async function onMigrationFn(record) { if (record.lastMigration === config.lastMigration) return if (record.lastMigration > config.lastMigration) { throw new Error(`API migration v${config.lastMigration} is less than the source migration v${record.lastMigration}`) } needsMigrations = true await resetDatabase() await migrateTo(record.lastMigration) } async function migrateTo(migration = config.lastMigration) { const endMigration = migration.toString().padStart(4, '0') + '.js' const umzug = new Umzug({ migrations: { path: path.join(__dirname, './migrations'), params: [dbUtils.pool] }, storage: path.join(__dirname, './migrations/lib/umzug-mysql-storage'), storageOptions: { pool: dbUtils.pool } }) umzug.on('migrating', (name) => { progressCb({migration: name, status: 'started'}) }) umzug.on('migrated', (name) => { progressCb({migration: name, status: 'finished'}) }) await umzug.up({to: endMigration}) } async function resetDatabase() { const connection = await dbUtils.pool.getConnection() const sql = `SELECT table_name, table_type FROM information_schema.TABLES WHERE TABLE_SCHEMA=?` const [tables] = await connection.query(sql,[config.database.schema]) await connection.query('SET FOREIGN_KEY_CHECKS = 0') for (const table of tables) { const drop = `DROP ${table.TABLE_TYPE === 'BASE TABLE' ? 'TABLE' : 'VIEW'} ${table.TABLE_NAME}` await connection.query(drop) progressCb({sql: drop}) } await connection.query('SET FOREIGN_KEY_CHECKS = 1') await connection.release() } function createChunkedReadable(buffer, chunkSize = 64 * 1024) { let offset = 0 return new Readable({ read() { if (offset >= buffer.length) { this.push(null) // No more data, signal end of stream } else { const chunk = buffer.subarray(offset, offset + chunkSize) this.push(chunk) // Push the next chunk offset += chunkSize } } }) } /** @type {import('mysql2/promise').PoolConnection} */ let connection try { connection = await dbUtils.pool.getConnection() await connection.query('SET FOREIGN_KEY_CHECKS=0') const jsonl = new ParseJSONLStream({jsonParser: BJSON.parse}) const queries = new AppDataQueryStream({maxValues: 10000, onTablesFn: progressCb, onMigrationFn}) if (contentType === 'application/gzip' || contentType === 'application/x-gzip') { pipeline(Readable.from(buffer), zlib.createGunzip(), jsonl, queries) } else { pipeline(createChunkedReadable(buffer, 10 * 1024 * 1024), jsonl, queries) } let seq = 0 for await (const data of queries) { await connection.query(data.sql) seq++ progressCb({seq, table: data.table, valueCount: data.valueCount}) } if (needsMigrations) await migrateTo(config.lastMigration) progressCb({status: 'success'}) } catch (err) { progressCb({status: 'fail', error: err.message}) return undefined } finally { if (typeof connection !== 'undefined') { await connection.query('SET FOREIGN_KEY_CHECKS=1') connection.release() } } } exports.getAppInfo = async function(options = {}) { const { includeRowCounts } = options const schema = 'stig-manager-appinfo-v1.1' const sqlAnalyze = `ANALYZE TABLE collection, asset, review, review_history, user` const sqlInfoSchema = ` SELECT TABLE_NAME as tableName, TABLE_ROWS as tableRows, TABLE_COLLATION as tableCollation, AVG_ROW_LENGTH as avgRowLength, DATA_LENGTH as dataLength, INDEX_LENGTH as indexLength, AUTO_INCREMENT as autoIncrement, CREATE_TIME as createTime, UPDATE_TIME as updateTime FROM information_schema.TABLES WHERE TABLE_SCHEMA = ? and TABLE_TYPE='BASE TABLE' ORDER BY TABLE_NAME` const sqlCollectionAssetStigs = ` SELECT CAST(sub.collectionId as char) as collectionId, sum(case when sub.assetId is not null and sub.stigAssetCnt = 0 then 1 else 0 end) as range00, sum(case when sub.stigAssetCnt >= 1 and sub.stigAssetCnt <= 5 then 1 else 0 end) as range01to05, sum(case when sub.stigAssetCnt >= 6 and sub.stigAssetCnt <= 10 then 1 else 0 end) as range06to10, sum(case when sub.stigAssetCnt >= 11 and sub.stigAssetCnt <= 15 then 1 else 0 end) as range11to15, sum(case when sub.stigAssetCnt >= 16 then 1 else 0 end) as range16plus FROM (SELECT c.collectionId, c.name, a.assetId, COUNT(sa.assetId) as stigAssetCnt FROM collection c LEFT JOIN asset a on a.collectionId = c.collectionId and a.state = "enabled" LEFT JOIN stig_asset_map sa on sa.assetId = a.assetId GROUP BY c.collectionId, c.name, a.assetId) as sub GROUP BY sub.collectionId ORDER BY sub.collectionId ` const sqlCountsByCollection = ` SELECT cast(c.collectionId as char) as collectionId, c.name, c.state, c.settings, count(distinct if(a.state = "enabled", a.assetId, null)) as assets, count(distinct if(a.state = "disabled", a.assetId, null)) as assetsDisabled, count(distinct if(a.state = "enabled", sa.benchmarkId, null)) as uniqueStigs, sum(if(a.state = "enabled" and sa.saId, 1, 0)) as stigAssignments, sum(if(a.state = "enabled",rev.ruleCount,0)) as rules, sum(if(a.state = "enabled", (sa.pass + sa.fail + sa.notapplicable + sa.notchecked + sa.notselected + sa.informational + sa.fixed + sa.unknown + sa.error), 0)) as reviews, sum(if(a.state = "disabled", (sa.pass + sa.fail + sa.notapplicable + sa.notchecked + sa.notselected + sa.informational + sa.fixed + sa.unknown + sa.error), 0)) as reviewsDisabled FROM collection c left join asset a on c.collectionId = a.collectionId left join stig_asset_map sa on a.assetId = sa.assetId left join default_rev dr on c.collectionId = dr.collectionId and sa.benchmarkId = dr.benchmarkId left join revision rev on dr.revId = rev.revId GROUP BY c.collectionId ORDER BY c.collectionId ` const sqlLabelCountsByCollection = ` SELECT cast(c.collectionId as char) as collectionId, count(distinct cl.clId) as collectionLabels, count(distinct clam.assetId) as labeledAssets, count(distinct clam.claId) as assetLabels FROM collection c left join collection_label cl on cl.collectionId = c.collectionId left join collection_label_asset_map clam on clam.clId = cl.clId left join asset a on clam.assetId = a.assetId and a.state = "enabled" GROUP BY c.collectionId ` const sqlGrantsByCollection = ` with ctePerGrantee as ( select cg.collectionId, json_object( 'grantId', cg.grantId, 'grantee', json_object( 'userId', cg.userId, 'userGroupId', cg.userGroupId ), 'ruleCounts', json_object( 'rw', SUM(CASE WHEN cga.access = 'rw' THEN 1 ELSE 0 END), 'r', SUM(CASE WHEN cga.access = 'r' THEN 1 ELSE 0 END), 'none', SUM(CASE WHEN cga.access = 'none' THEN 1 ELSE 0 END) ), 'uniqueAssets', count(distinct if(a.state = 'enabled', sam.assetId, null)), 'uniqueAssetsDisabled', count(distinct if(a.state = 'disabled', sam.assetId, null)), 'uniqueStigs', count(distinct if(a.state = 'enabled', sam.benchmarkId, null)), 'uniqueStigsDisabled', count(distinct if(a.state = 'disabled', sam.benchmarkId, null)), 'role', case when cg.roleId = 1 then 'restricted' else case when cg.roleId = 2 then 'full' else case when cg.roleId = 3 then 'manage' else case when cg.roleId = 4 then 'owner' end end end end ) as perGrantee from collection_grant cg left join collection_grant_acl cga ON cg.grantId = cga.grantId left join stig_asset_map sam on sam.assetId=cga.assetId and sam.benchmarkId=cga.benchmarkId left join asset a on a.assetId = sam.assetId group by cg.grantId) select collectionId, json_arrayagg(perGrantee) as grants from ctePerGrantee group by collectionId` const sqlRoleCountsByCollection = ` SELECT collectionId, SUM(CASE WHEN roleId = 1 THEN 1 ELSE 0 END) AS restricted, SUM(CASE WHEN roleId = 2 THEN 1 ELSE 0 END) AS full, SUM(CASE WHEN roleId = 3 THEN 1 ELSE 0 END) AS manage, SUM(CASE WHEN roleId = 4 THEN 1 ELSE 0 END) AS owner FROM collection_grant GROUP BY collectionId ORDER BY collectionId ` const sqlUserInfo = ` select ud.userId, ud.username, ud.created, ud.lastAccess, coalesce( JSON_EXTRACT(ud.lastClaims, '$.${config.oauth.claims.privileges}'), json_array() ) as privileges, json_object( "restricted", sum(case when cg.roleId = 1 then 1 else 0 end), "full", sum(case when cg.roleId = 2 then 1 else 0 end), "manage", sum(case when cg.roleId = 3 then 1 else 0 end), "owner", sum(case when cg.roleId = 4 then 1 else 0 end) ) as roles from user_data ud left join collection_grant cg using (userId) group by ud.userId ` const sqlUserGroupInfo = ` select ug.userGroupId, ug.name, count(distinct ugum.userId) as members, ug.createdDate as created, ug.modifiedDate, json_object( "restricted", count(distinct case when cg.roleId = 1 then cg.collectionId else null end), "full", count(distinct case when cg.roleId = 2 then cg.collectionId else null end), "manage", count(distinct case when cg.roleId = 3 then cg.collectionId else null end), "owner", count(distinct case when cg.roleId = 4 then cg.collectionId else null end) ) as roles from user_group ug left join collection_grant cg on cg.userGroupId = ug.userGroupId left join user_group_user_map ugum ON ugum.userGroupId = ug.userGroupId group by ug.userGroupId ` const sqlMySqlVersion = `SELECT VERSION() as version` const mySqlVariablesOnly = [ 'innodb_buffer_pool_size', 'innodb_buffer_pool_instances', 'innodb_log_buffer_size', 'innodb_log_file_size', 'innodb_redo_log_capacity', 'innodb_io_capacity', 'innodb_io_capacity_max', 'innodb_flush_sync', 'innodb_lock_wait_timeout', 'innodb_change_buffering', 'innodb_flush_log_at_trx_commit', 'innodb_doublewrite', 'tmp_table_size', 'max_heap_table_size', 'temptable_max_mmap', 'temptable_max_ram', 'key_buffer_size', 'sort_buffer_size', 'read_buffer_size', 'read_rnd_buffer_size', 'join_buffer_size', 'binlog_cache_size', 'max_connections', 'max_allowed_packet', 'thread_cache_size', 'table_open_cache', 'table_definition_cache', 'version', 'version_compile_machine', 'version_compile_os', 'long_query_time' ] const sqlMySqlVariablesValues = ` SELECT variable_name, variable_value as value FROM performance_schema.global_variables WHERE variable_name IN (${mySqlVariablesOnly.map(v => `'${v}'`).join(',')}) ORDER by variable_name ` const mySqlStatusOnly = [ // Network 'Bytes_received', 'Bytes_sent', // Handler operations 'Handler_commit', 'Handler_update', 'Handler_write', // Buffer pool health (performance monitoring) 'Innodb_buffer_pool_bytes_data', 'Innodb_buffer_pool_pages_total', 'Innodb_buffer_pool_pages_free', 'Innodb_buffer_pool_pages_dirty', 'Innodb_buffer_pool_pages_flushed', 'Innodb_buffer_pool_read_requests', 'Innodb_buffer_pool_reads', 'Innodb_buffer_pool_wait_free', // Redo log / Checkpoint (detect checkpoint thrashing) 'Innodb_redo_log_current_lsn', 'Innodb_redo_log_checkpoint_lsn', 'Innodb_redo_log_flushed_to_disk_lsn', 'Innodb_log_waits', 'Innodb_log_writes', 'Innodb_os_log_fsyncs', // I/O operations 'Innodb_data_reads', 'Innodb_data_writes', 'Innodb_data_fsyncs', 'Innodb_pages_read', 'Innodb_pages_written', 'Innodb_pages_created', // Row operations 'Innodb_rows_read', 'Innodb_rows_updated', 'Innodb_rows_inserted', 'Innodb_rows_deleted', // Row locking 'Innodb_row_lock_waits', 'Innodb_row_lock_current_waits', 'Innodb_row_lock_time', 'Innodb_row_lock_time_avg', 'Innodb_row_lock_time_max', // Temp tables 'Created_tmp_tables', 'Created_tmp_disk_tables', 'Created_tmp_files', // Table cache 'Open_tables', 'Opened_tables', 'Table_open_cache_hits', 'Table_open_cache_misses', 'Table_open_cache_overflows', // Connections/Threads 'Connections', 'Max_used_connections', 'Threads_connected', 'Threads_running', 'Threads_created', 'Threads_cached', 'Aborted_connects', 'Aborted_clients', // Queries 'Queries', 'Slow_queries', 'Select_scan', 'Select_full_join', 'Select_full_range_join', // Sorts 'Sort_merge_passes', 'Sort_scan', 'Sort_range', 'Sort_rows', // Table locks 'Table_locks_immediate', 'Table_locks_waited', // Server 'Uptime', 'Uptime_since_flush_status' ] const sqlMySqlStatusValues = ` SELECT variable_name, variable_value as value FROM performance_schema.global_status WHERE variable_name IN ( ${mySqlStatusOnly.map( v => `'${v}'`).join(',')} ) ORDER by variable_name ` await dbUtils.pool.query(sqlAnalyze) const [schemaInfoArray] = await dbUtils.pool.query(sqlInfoSchema, [config.database.schema]) const tables = createObjectFromKeyValue(schemaInfoArray, "tableName") const queries = [ dbUtils.pool.query(sqlCollectionAssetStigs), dbUtils.pool.query(sqlCountsByCollection), dbUtils.pool.query(sqlLabelCountsByCollection), dbUtils.pool.query(sqlGrantsByCollection), dbUtils.pool.query(sqlRoleCountsByCollection), dbUtils.pool.query(sqlUserInfo), dbUtils.pool.query(sqlUserGroupInfo), dbUtils.pool.query(sqlMySqlVersion), dbUtils.pool.query(sqlMySqlVariablesValues), dbUtils.pool.query(sqlMySqlStatusValues) ] // Conditionally add row count queries if (includeRowCounts) { const rowCountQueries = [] for (const table in tables) { rowCountQueries.push(dbUtils.pool.query(`SELECT "${table}" as tableName, count(*) as rowCount from ${table}`)) } queries.push(Promise.all(rowCountQueries)) } const results = await Promise.all(queries) let [ [assetStigByCollection], [countsByCollection], [labelCountsByCollection], [grantsByCollection], [roleCountsByCollection], [userInfo], [userGroupInfo], [mySqlVersion], [mySqlVariables], [mySqlStatus], rowCountResults ] = results // Set row counts from individual queries or use null when not counting if (includeRowCounts) { for (const result of rowCountResults) { tables[result[0][0].tableName].rowCount = result[0][0].rowCount } } else { // Use null to indicate exact row counts were not requested for (const tableName in tables) { tables[tableName].rowCount = null } } // remove strings from user privileges array that are not meaningful to stigman const stigmanPrivs = ['admin', 'create_collection'] for (const user of userInfo ) { user.privileges = user.privileges.filter(v => stigmanPrivs.includes(v)) } //count privilege assignments and break out by lastAccess time periods const userPrivilegeCounts = breakOutPrivilegeUsage(userInfo) //create working copy of operational stats const requests = klona(logger.requestStats) requests.operationIds = sortObjectByKeys(requests.operationIds) // Create objects keyed by collectionId from arrays of objects countsByCollection = createObjectFromKeyValue(countsByCollection, "collectionId") labelCountsByCollection = createObjectFromKeyValue(labelCountsByCollection, "collectionId") assetStigByCollection = createObjectFromKeyValue(assetStigByCollection, "collectionId") grantsByCollection = createObjectFromKeyValue(grantsByCollection, "collectionId") roleCountsByCollection = createObjectFromKeyValue(roleCountsByCollection, "collectionId") // Bundle "byCollection" stats together by collectionId for(const collectionId in countsByCollection) { if (assetStigByCollection[collectionId]) { countsByCollection[collectionId].assetStigRanges = assetStigByCollection[collectionId] } if (grantsByCollection[collectionId]) { const grants = {} // For each ACL in the collection's array of ACLs for (const grant of grantsByCollection[collectionId].grants) { grants[grant.grantId] = grant delete grant.grantId } countsByCollection[collectionId].grants = grants } else { countsByCollection[collectionId].grants = {} } if (roleCountsByCollection[collectionId]) { countsByCollection[collectionId].roleCounts = roleCountsByCollection[collectionId] } else { countsByCollection[collectionId].roleCounts = { restricted: 0, full: 0, manage: 0, owner: 0 } } if (labelCountsByCollection[collectionId]) { countsByCollection[collectionId].labelCounts = labelCountsByCollection[collectionId] } } const returnObj = { date: new Date().toISOString(), schema, version: config.version, collections: countsByCollection, requests, users: { userInfo: createObjectFromKeyValue(userInfo, "userId", null), userPrivilegeCounts }, groups: createObjectFromKeyValue(userGroupInfo, "userGroupId", null), mysql: { version: mySqlVersion[0].version, tables, variables: createObjectFromKeyValue(mySqlVariables, "variable_name", "value"), status: createObjectFromKeyValue(mySqlStatus, "variable_name", "value") }, nodejs: getNodeValues() } return returnObj // Reduce an array of objects to a single object, using the value of one property as keys // and either assigning the rest of the object or the value of a second property as the value. function createObjectFromKeyValue(data, keyPropertyName, valuePropertyName = null, includeKey = false) { return data.reduce((acc, item) => { const { [keyPropertyName]: key, ...rest } = item acc[key] = valuePropertyName ? item[valuePropertyName] : includeKey ? item : rest return acc }, {}) } function sortObjectByKeys(obj) { // Create a new object and add properties in sorted order const sortedObj = {} for (const key of Object.keys(obj).sort()) { sortedObj[key] = obj[key] } return sortedObj } function breakOutPrivilegeUsage(userInfo) { let privilegeCounts = { overall: {none:0}, activeInLast30Days: {none:0}, activeInLast90Days: {none:0} } // Calculate the timestamps for 30 and 90 days ago const currentTime = Math.floor(Date.now() / 1000) const thirtyDaysAgo = currentTime - (30 * 24 * 60 * 60) const ninetyDaysAgo = currentTime - (90 * 24 * 60 * 60) const updateCounts = (categoryCounts, userPrivs) => { if (userPrivs.length === 0) { categoryCounts.none++ } for (const privilege of userPrivs) { categoryCounts[privilege] = categoryCounts[privilege] ? categoryCounts[privilege] + 1 : 1 } } for (const user of userInfo) { updateCounts(privilegeCounts.overall, user.privileges) // Update counts for the last 30 and 90 days based on lastAccess if (user.lastAccess >= ninetyDaysAgo) { updateCounts(privilegeCounts.activeInLast90Days, user.privileges) } if (user.lastAccess >= thirtyDaysAgo) { updateCounts(privilegeCounts.activeInLast30Days, user.privileges) } } return privilegeCounts } function getNodeValues() { const {environmentVariables, header, resourceUsage} = process.report.getReport() const environment = {} for (const [key, value] of Object.entries(environmentVariables)) { if (/^(NODE|STIGMAN)_/.test(key)) { environment[key] = key === 'STIGMAN_DB_PASSWORD' ? '***' : value } } const {platform, arch, nodejsVersion, cpus, osMachine, osName, osRelease} = header for (let x = 0; x < cpus.length; x++) { cpus[x] = {model: cpus[x].model, speed: cpus[x].speed} } const loadAverage = os.loadavg().join(', ') const memory = process.memoryUsage() memory.maxRss = resourceUsage.maxRss return { version: nodejsVersion.substring(1), uptime: process.uptime(), os: { platform, arch, osMachine, osName, osRelease, loadAverage }, environment, memory, cpus } } } ================================================ FILE: api/source/service/ReviewService.js ================================================ 'use strict'; const dbUtils = require('./utils') let _this = this exports.postReviewBatch = async function ({ source, assets, rules, action, updateFilters, dryRun, collectionId, userId, grant, svcStatus, historyMaxReviews, skipGrantCheck = false }) { function cteReviewGen(obj) { const cte = `SELECT jtresult.resultId, TRIM(jt.detail) as detail, TRIM(jt.comment) as comment, jt.resultEngine, jt.metadata, jtstatus.statusId, jt.statusText FROM JSON_TABLE( @review, "$" COLUMNS( result VARCHAR(255) PATH "$.result", detail MEDIUMTEXT PATH "$.detail" NULL ON EMPTY, comment MEDIUMTEXT PATH "$.comment", resultEngine JSON PATH "$.resultEngine" DEFAULT '0' ON EMPTY, metadata JSON PATH "$.metadata", statusLabel VARCHAR(255) PATH "$.status.label", statusText VARCHAR(511) PATH "$.status.text" ) ) as jt left join result jtresult on (jtresult.api = jt.result) left join status jtstatus on (jtstatus.api = jt.statusLabel)` return `cteReview AS (${cte})` } function cteAssetGen({assetIds = [], benchmarkIds = []}, roleId) { let cte if (assetIds?.length) { const json = JSON.stringify(assetIds) const sql = `select jtAssets.assetId from json_table( ?, '$[*]' COLUMNS (assetId INT PATH '$') ) as jtAssets` cte = dbUtils.pool.format(sql,[json]) } else if (benchmarkIds?.length) { const sql = `select distinct assetId from enabled_asset a left join stig_asset_map sa using (assetId) ${roleId === 1 ? 'inner' : 'left'} join cteAclEffective cae on sa.saId = cae.saId where a.collectionId = @collectionId and coalesce(cae.access, 'rw') = 'rw' and sa.benchmarkId IN ?` cte = dbUtils.pool.format(sql,[[benchmarkIds]]) } return `cteAsset AS (${cte})` } function cteRuleGen({ruleIds, benchmarkIds, collectionId}) { let cte if (ruleIds?.length) { const json = JSON.stringify(ruleIds) const sql = `select jtRules.ruleId from json_table( ?, '$[*]' COLUMNS (ruleId VARCHAR(255) PATH '$') ) as jtRules` cte = dbUtils.pool.format(sql,[json]) } else if (benchmarkIds?.length) { const sql = `select rgr.ruleId from default_rev dr left join rev_group_rule_map rgr using (revId) where dr.benchmarkId IN ? and dr.collectionId = ?` cte = dbUtils.pool.format(sql,[[benchmarkIds], collectionId]) } return `cteRule AS (${cte})` } function cteGrantGen(roleId) { const cte = `select distinct a.assetId, rgr.ruleId from enabled_asset a left join stig_asset_map sa using (assetId) ${roleId === 1 ? 'inner' : 'left'} join cteAclEffective cae on sa.saId = cae.saId left join revision rev on sa.benchmarkId = rev.benchmarkId left join rev_group_rule_map rgr using (revId) where a.assetId IN (select assetId from cteAsset) and rgr.ruleId IN (select ruleId from cteRule) and coalesce(cae.access, 'rw') = 'rw'` return `cteGrant AS (${cte})` } function cteCollectionSettingGen () { const cte = `SELECT c.settings->>"$.fields.detail.required" as detailRequired, c.settings->>"$.fields.comment.required" as commentRequired, c.settings->>"$.status.canAccept" as canAccept, c.settings->>"$.status.resetCriteria" as resetCriteria, c.settings->>"$.status.minAcceptGrant" as minAcceptGrant FROM enabled_collection c where collectionId = @collectionId` return `cteCollectionSetting AS (${cte})` } const mergeFilterOperators = { contains: 'LIKE', beginsWith: 'LIKE', endsWith: 'LIKE', equals: '=', notequal: '!=', greaterThan: '>', lessThan: '<', } function genFilter(filter) { let {field, condition = 'equals', value} = filter if (field === 'result') { field = 'resultId' value = dbUtils.REVIEW_RESULT_API[value] } if (field === 'status' || field === 'statusLabel') { field = 'statusId' value = dbUtils.REVIEW_STATUS_API[value] } value = field === 'userId' || field === 'statusUserId' ? parseInt(value) : value const sqlOperator = mergeFilterOperators[condition] const isDateValue = (field === 'ts' || field === 'touchTs' || field === 'statusTs') let sqlValue if (isDateValue) { sqlValue = dbUtils.pool.escape(new Date(value)) } else if (condition === 'contains') { sqlValue = dbUtils.pool.escape(`%${value}%`) } else if (condition === 'beginsWith') { sqlValue = dbUtils.pool.escape(`${value}%`) } else if (condition === 'endsWith') { sqlValue = dbUtils.pool.escape(`%${value}`) } else { sqlValue = dbUtils.pool.escape(value) } return `review.${field} ${sqlOperator} ${sqlValue}` } function cteCandidateGen ({skipGrantCheck = false, action, updateFilters}) { let sqlFilterPredicates, sqlPredicates if (updateFilters) { sqlFilterPredicates = updateFilters.map( filter => genFilter(filter)).join(' AND ') } if (action === 'insert') { sqlPredicates = `review.reviewId is null` } else if (action === 'update') { sqlPredicates = sqlFilterPredicates || 'review.reviewId is not null' } else if (action === 'merge') { sqlPredicates = `${sqlFilterPredicates ? `review.reviewId is null OR (${sqlFilterPredicates})` : ''}` } const cte = ` select ${!skipGrantCheck ? 'CASE WHEN cteGrant.assetId is not null then 1 else null end' : '1'} as granted, review.reviewId, cteAsset.assetId, cteRule.ruleId, rvcd.version, rvcd.checkDigest, COALESCE(cteReview.resultId, review.resultId) as resultId, COALESCE(cteReview.detail, review.detail, '') as detail, COALESCE(cteReview.comment, review.comment, '') as comment, COALESCE(cteReview.metadata, review.metadata, '{}') as metadata, CASE WHEN cteReview.resultEngine != 0 -- resultEngine present THEN cteReview.resultEngine ELSE CASE WHEN cteReview.resultId is null or cteReview.resultId = review.resultId THEN review.resultEngine ELSE NULL END END as resultEngine, CASE WHEN cteReview.statusId is not null THEN cteReview.statusId ELSE CASE WHEN review.reviewId is null or (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) THEN 0 ELSE review.statusId END END as statusId, CASE WHEN cteReview.statusId is not null or review.reviewId is null THEN cteReview.statusText ELSE CASE WHEN (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) THEN 'Review change triggered status update' ELSE review.statusText END END as statusText, CASE WHEN cteReview.statusId is not null or review.reviewId is null or (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) THEN UTC_TIMESTAMP() ELSE review.statusTs END as statusTs, CASE WHEN cteReview.statusId is not null or review.reviewId is null or (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) THEN @userId ELSE review.statusUserId END as statusUserId, CASE WHEN cteReview.resultId is not null or cteReview.detail is not null or cteReview.comment is not null or review.reviewId is null THEN @userId ELSE review.userId END as userId, CASE WHEN cteReview.resultId is not null or cteReview.detail is not null or cteReview.comment is not null or review.reviewId is null THEN UTC_TIMESTAMP() ELSE review.ts END as ts from cteAsset CROSS JOIN cteRule LEFT JOIN cteReview on true ${!skipGrantCheck ? 'LEFT JOIN cteGrant on (cteAsset.assetId = cteGrant.assetId and cteRule.ruleId = cteGrant.ruleId)' : ''} LEFT JOIN rule_version_check_digest rvcd on cteRule.ruleId = rvcd.ruleId LEFT JOIN review on (cteAsset.assetId = review.assetId and rvcd.version = review.version and rvcd.checkDigest = review.checkDigest) LEFT JOIN cteCollectionSetting on true LEFT JOIN review rChangedResult on ( rChangedResult.reviewId = review.reviewId and rChangedResult.statusId != 0 and rChangedResult.resultId != cteReview.resultId ) LEFT JOIN review rChangedAny on ( rChangedAny.reviewId = review.reviewId and rChangedAny.statusId != 0 and (rChangedAny.resultId != cteReview.resultId or rChangedAny.detail != cteReview.detail or rChangedAny.comment != cteReview.comment) ) ${sqlPredicates ? `WHERE ${sqlPredicates}` : ''} ` return `cteCandidate AS (${cte})` } const cteReview = cteReviewGen() const cteAsset = cteAssetGen(assets, grant.roleId) if (rules.benchmarkIds) { rules.collectionId = collectionId } const cteRule = cteRuleGen(rules) let cteGrant if (!skipGrantCheck) { cteGrant = cteGrantGen(grant.roleId) } const cteCollectionSetting = cteCollectionSettingGen() const cteCandidate = cteCandidateGen({skipGrantCheck, action, updateFilters}) const cteAclEffective = dbUtils.cteAclEffective({grantIds: grant.grantIds}) const sqlTempTable = ` CREATE TEMPORARY TABLE IF NOT EXISTS validated_reviews ( INDEX idx_reviewId (reviewId), INDEX id_error (error) ) WITH ${cteAclEffective}, ${cteReview}, ${cteAsset}, ${cteRule}, ${!skipGrantCheck ? `${cteGrant},` : ''} ${cteCollectionSetting}, ${cteCandidate} select cteCandidate.reviewId, cteCandidate.assetId, cteCandidate.ruleId, cteCandidate.version, cteCandidate.checkDigest, cteCandidate.resultId, cteCandidate.detail, cteCandidate.comment, cteCandidate.resultEngine, cteCandidate.metadata, cteCandidate.statusId, cteCandidate.statusText, cteCandidate.statusUserId, cteCandidate.statusTs, cteCandidate.userId, cteCandidate.ts, CASE WHEN cteCandidate.granted IS NULL THEN 'no grant for this asset/ruleId' ELSE CASE WHEN (cteCandidate.reviewId IS NULL AND cteCandidate.resultId IS NULL) THEN 'cannot insert null result' ELSE CASE WHEN cteCandidate.statusId > 0 -- submitted, rejected, accepted THEN CASE WHEN (cteCandidate.resultId NOT IN (2,3,4)) THEN 'status is not allowed for the result' ELSE CASE WHEN (cteCollectionSetting.detailRequired = 'always' AND cteCandidate.detail = '') THEN 'detail is empty and detail.required = always' ELSE CASE WHEN (cteCollectionSetting.commentRequired = 'always' AND cteCandidate.comment = '') THEN 'comment is empty and comment.required = always' ELSE CASE WHEN cteCandidate.resultId = 4 -- fail THEN CASE WHEN (cteCollectionSetting.detailRequired = 'findings' AND cteCandidate.detail = '') THEN 'detail is empty and detail.required = findings' ELSE CASE WHEN (cteCollectionSetting.commentRequired = 'findings' AND cteCandidate.comment = '') THEN 'comment is empty and comment.required = findings ' END END END END END END END END END as error from cteCandidate LEFT JOIN cteCollectionSetting on true` const sqlHistoryPrune = ` with historyRecs AS ( select rh.historyId, ROW_NUMBER() OVER (PARTITION BY r.assetId, r.version, r.checkDigest ORDER BY rh.historyId DESC) as rowNum from review_history rh left join review r using (reviewId) where reviewId IN (SELECT reviewId from validated_reviews where error is null and reviewId is not null) ) delete review_history FROM review_history left join historyRecs on review_history.historyId = historyRecs.historyId WHERE historyRecs.rowNum > ? - 1 ` const sqlHistory = ` INSERT INTO review_history ( reviewId, ruleId, resultId, detail, comment, autoResult, ts, userId, statusText, statusUserId, statusTs, statusId, touchTs, resultEngine ) SELECT reviewId, ruleId, resultId, LEFT(detail,32767) as detail, LEFT(comment,32767) as comment, autoResult, ts, userId, statusText, statusUserId, statusTs, statusId, touchTs, CASE WHEN resultEngine = 0 THEN NULL ELSE resultEngine END FROM review WHERE reviewId IN (SELECT reviewId from validated_reviews where error is null and reviewId is not null) FOR UPDATE ` const sqlInsertReviews = ` insert into review ( assetId, ruleId, \`version\`, checkDigest, resultId, resultEngine, detail, comment, metadata, statusId, statusText, statusUserId, statusTs, userId, ts) select assetId, ruleId, \`version\`, checkDigest, resultId, resultEngine, detail, comment, metadata, statusId, statusText, statusUserId, statusTs, userId, ts from validated_reviews vr where error is null and reviewId is null ` const sqlUpdateReviews = ` update review r inner join validated_reviews vr on (r.reviewId = vr.reviewId and vr.error is null) set r.resultId = vr.resultId, r.resultEngine = vr.resultEngine, r.detail = vr.detail, r.comment = vr.comment, r.metadata = vr.metadata, r.statusId = vr.statusId, r.statusText = vr.statusText, r.statusUserId = vr.statusUserId, r.statusTs = vr.statusTs, r.userId = vr.userId, r.ts = vr.ts ` let connection try { connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = false const sqlVariables = `set @collectionId = ?, @userId = ?, @review = ?` await connection.query(sqlVariables, [parseInt(collectionId), parseInt(userId), JSON.stringify(source.review)]) await connection.query(sqlTempTable) let validationErrors = [] let [counts] = await connection.query(`select coalesce(sum(case when error is not null then 1 else 0 end),0) as failedValidations, coalesce(sum(case when error is null and reviewId is null then 1 else 0 end),0) as inserts, coalesce(sum(case when error is null and reviewId is not null then 1 else 0 end),0) as updates from validated_reviews`) if (counts[0].failedValidations) { ;[validationErrors] = await connection.query('select CAST(assetId AS CHAR) as assetId, ruleId, error from validated_reviews where error is not null LIMIT 50') } async function transaction () { await connection.query('START TRANSACTION') if (counts[0].updates) { await connection.query(sqlHistoryPrune, [ historyMaxReviews ]) if (historyMaxReviews !== 0) { await connection.query(sqlHistory) } await connection.query(sqlUpdateReviews) } if (counts[0].inserts) { await connection.query(sqlInsertReviews) } const statsParams = { collectionId } if (assets.assetIds) { statsParams.assetIds = assets.assetIds } else if (assets.benchmarkIds) { statsParams.assetBenchmarkIds = assets.benchmarkIds } if (rules.ruleIds) { statsParams.rules = rules.ruleIds } else if (rules.benchmarkIds) { statsParams.benchmarkIds = rules.benchmarkIds } await dbUtils.updateStatsAssetStig(connection, statsParams) await connection.commit() } if (!dryRun) { await dbUtils.retryOnDeadlock(transaction, svcStatus) } if (dryRun) { return {willInsert: counts[0].inserts, willUpdate: counts[0].updates, willFailValidation: counts[0].failedValidations, validationErrors} } return {inserted: counts[0].inserts, updated: counts[0].updates, failedValidation: counts[0].failedValidations, validationErrors} } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw (err) ; } finally { if (typeof connection !== 'undefined') { await connection.query('DROP TEMPORARY TABLE IF EXISTS validated_reviews') await connection.release() } } } /** Generalized queries for review(s). **/ exports.getReviews = async function ({projections = [], filter = {}, grant}) { const ctes = [dbUtils.cteAclEffective({grantIds: grant.grantIds})] const hints = ['NO_MERGE(cae)'] const columns = [ 'CAST(r.assetId as char) as assetId', 'a.name as "assetName"', `coalesce( (select json_arrayagg(BIN_TO_UUID(cl.uuid,1)) from collection_label_asset_map cla left join collection_label cl on cla.clId = cl.clId where cla.assetId = r.assetId), json_array() ) as assetLabelIds`, `coalesce( (select json_arrayagg(json_object( 'labelId', BIN_TO_UUID(cl.uuid,1), 'name', cl.name, 'color', cl.color )) from collection_label_asset_map cla left join collection_label cl on cla.clId = cl.clId where cla.assetId = r.assetId), json_array() ) as assetLabels`, 'r.ruleId', `coalesce(cast(concat('[', group_concat(distinct concat('"',rvcd2.ruleId,'"')), ']') as json), json_array()) as ruleIds`, 'result.api as "result"', 'CASE WHEN r.resultEngine = 0 THEN NULL ELSE r.resultEngine END as resultEngine', "COALESCE(LEFT(r.detail,32767),'') as detail", "COALESCE(LEFT(r.comment,32767),'') as comment", 'r.autoResult', 'CAST(r.userId as char) as userId', 'ud.username', "DATE_FORMAT(r.ts, '%Y-%m-%dT%H:%i:%sZ') as ts", "DATE_FORMAT(r.touchTs, '%Y-%m-%dT%H:%i:%sZ') as touchTs", `JSON_OBJECT( 'label', status.api, 'text', r.statusText, 'user', JSON_OBJECT( 'userId', CAST(r.statusUserId as char), 'username', udStatus.username ), 'ts', DATE_FORMAT(r.statusTs, '%Y-%m-%dT%TZ') ) as status` ] const groupBy = [ 'r.reviewId', 'a.name', 'result.api', 'status.api', 'ud.username', 'udStatus.username', ] const joins = [ 'review r', 'left join rule_version_check_digest rvcd on (r.version = rvcd.version and r.checkDigest = rvcd.checkDigest)', 'left join rule_version_check_digest rvcd2 on (r.version = rvcd2.version and r.checkDigest = rvcd2.checkDigest)', 'left join rev_group_rule_map rgr on rvcd.ruleId = rgr.ruleId', 'left join revision on rgr.revId = revision.revId', 'left join result on r.resultId = result.resultId', 'left join status on r.statusId = status.statusId', 'left join user_data ud on r.userId = ud.userId', 'left join user_data udStatus on r.statusUserId = udStatus.userId', 'left join enabled_asset a on r.assetId = a.assetId', 'left join default_rev dr on (rgr.revId = dr.revId and a.collectionId = dr.collectionId)', 'left join enabled_collection c on a.collectionId = c.collectionId', 'left join stig_asset_map sa on (r.assetId = sa.assetId and revision.benchmarkId = sa.benchmarkId)', ] if (grant.roleId === 1) { joins.push('inner join cteAclEffective cae on sa.saId = cae.saId') // newman tests will fail if we add the new column columns.push('min(cae.access) as access') } else { joins.push('left join cteAclEffective cae on sa.saId = cae.saId') // newman tests will fail if we add the new column columns.push("coalesce(min(cae.access), 'rw') as access") } if (projections.includes('metadata')) { columns.push(`r.metadata`) groupBy.push(`r.metadata`) } if (projections.includes('stigs')) { columns.push(`cast( concat('[', coalesce ( group_concat(distinct case when sa.benchmarkId is not null then json_object( 'benchmarkId', sa.benchmarkId, 'revisionStr', revision.revisionStr, 'benchmarkDate', date_format(revision.benchmarkDateSql,'%Y-%m-%d'), 'revisionPinned', CASE WHEN dr.revisionPinned = 1 THEN CAST(true as json) ELSE CAST(false as json) END, 'isDefault', case when revision.revId = dr.revId then cast(true as json) else cast(false as json) end, 'ruleCount', revision.ruleCount) else null end order by sa.benchmarkId), ''), ']') as json) as "stigs"`) } if (projections.includes('rule')) { columns.push(`json_object( 'ruleId' , rgr.ruleId, 'title' , rgr.title, 'version' , rgr.version, 'severity' , rgr.severity) as "rule"` ) groupBy.push('rgr.severity','rgr.title','rgr.version','rgr.ruleId') } if (projections.includes('history')) { // OVER clauses and subquery needed to order the json_arrayagg columns.push(` (select coalesce( (select json_arrayagg( json_object( 'ts' , DATE_FORMAT(rh.ts, '%Y-%m-%dT%H:%i:%sZ'), 'ruleId', rh.ruleId, 'result', result.api, 'resultEngine', CASE WHEN rh.resultEngine = 0 THEN NULL ELSE rh.resultEngine END, 'detail', COALESCE(LEFT(rh.detail,32767),''), 'comment', COALESCE(LEFT(rh.comment,32767),''), 'autoResult', cast(rh.autoResult is true as json), 'userId', CAST(rh.userId as char), 'username', ud.username, 'status', JSON_OBJECT( 'label', status.api, 'text', rh.statusText, 'user', JSON_OBJECT( 'userId', CAST(rh.statusUserId as char), 'username', udStatus.username ), 'ts', DATE_FORMAT(rh.statusTs, '%Y-%m-%dT%TZ') ), 'touchTs', DATE_FORMAT(rh.touchTs, '%Y-%m-%dT%TZ') ) ) FROM review_history rh left join result on rh.resultId = result.resultId left join status on rh.statusId = status.statusId left join user_data ud on ud.userId=rh.userId left join user_data udStatus on udStatus.userId=rh.statusUserId where rh.reviewId = r.reviewId), json_array() ) ) as "history"`) } const predicates = { statements: [], binds: [] } switch (filter.rules) { case 'default-mapped': predicates.statements.push(`dr.revId IS NOT NULL`) predicates.statements.push(`sa.saId IS NOT NULL`) break case 'default': predicates.statements.push(`dr.revId IS NOT NULL`) break case 'not-default-mapped': predicates.statements.push(`dr.revId IS NULL`) predicates.statements.push(`sa.saId IS NULL`) break case 'not-default': predicates.statements.push(`dr.revId IS NULL`) break case 'not-mapped': predicates.statements.push(`sa.saId IS NULL`) break case 'mapped': predicates.statements.push(`sa.saId IS NOT NULL`) break } if (filter.collectionId) { predicates.statements.push('a.collectionId = ?') predicates.binds.push(filter.collectionId) } if (filter.result) { predicates.statements.push('result.api = ?') predicates.binds.push(filter.result) } if (filter.status) { predicates.statements.push('status.api = ?') predicates.binds.push(filter.status) } if (filter.ruleId) { predicates.statements.push('rvcd.ruleId = ?') predicates.binds.push(filter.ruleId) } if (filter.groupId) { predicates.statements.push(`rgr.groupId = ?`) predicates.binds.push(filter.groupId) } if (filter.cci) { predicates.statements.push(`rvcd.ruleId IN ( SELECT distinct rgr.ruleId FROM rev_group_rule_cci_map rgrcc left join rev_group_rule_map rgr using (rgrId) WHERE rgrcc.cci = ? )` ) predicates.binds.push(filter.cci) } if (filter.userId) { predicates.statements.push('r.userId = ?') predicates.binds.push(filter.userId) } if (filter.assetId) { predicates.statements.push('r.assetId = ?') predicates.binds.push(filter.assetId) } if (filter.benchmarkId) { predicates.statements.push(`revision.benchmarkId = ?`) predicates.binds.push(filter.benchmarkId) } if ( filter.metadata ) { for (const pair of filter.metadata) { const [key, value] = pair.split(/:(.*)/s) predicates.statements.push('JSON_CONTAINS(r.metadata, ?, ?)') predicates.binds.push( `"${value}"`, `$.${key}`) } } const sql = dbUtils.makeQueryString({ctes, hints, columns, joins, predicates, groupBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } exports.exportReviews = async function (includeHistory = false) { const columns = [ 'CAST(r.assetId as char) as assetId', 'r.ruleId', 'result.api as "result"', 'CASE WHEN r.resultEngine = 0 THEN NULL ELSE r.resultEngine END as resultEngine', 'LEFT(r.detail,32767) as detail', 'LEFT(r.comment,32767) as comment', 'CAST(r.userId as char) as userId', "DATE_FORMAT(r.ts, '%Y-%m-%dT%H:%i:%sZ') as ts", "DATE_FORMAT(r.touchTs, '%Y-%m-%dT%H:%i:%sZ') as touchTs", `JSON_OBJECT( 'label', status.api, 'text', r.statusText, 'userId', CAST(r.statusUserId as char), 'ts', DATE_FORMAT(r.statusTs, '%Y-%m-%dT%TZ') ) as status`, 'r.metadata' ] const joins = [ 'review r', 'inner join enabled_asset a on r.assetId = a.assetId', 'inner join enabled_collection c on c.collectionId = a.collectionId', 'left join result on r.resultId = result.resultId', 'left join status on r.statusId = status.statusId', ] let groupBy if (includeHistory) { columns.push(` (select coalesce( (select json_arrayagg( json_object( 'ts' , DATE_FORMAT(rh.ts, '%Y-%m-%dT%H:%i:%sZ'), 'ruleId', rh.ruleId, 'result', result.api, 'resultEngine', CASE WHEN rh.resultEngine = 0 THEN NULL ELSE rh.resultEngine END, 'detail', LEFT(rh.detail,32767), 'comment', LEFT(rh.comment,32767), 'userId', CAST(rh.userId as char), 'status', JSON_OBJECT( 'label', status.api, 'text', rh.statusText, 'userId', CAST(rh.statusUserId as char), 'ts', DATE_FORMAT(rh.statusTs, '%Y-%m-%dT%TZ') ), 'touchTs', DATE_FORMAT(rh.touchTs, '%Y-%m-%dT%TZ') ) ) FROM review_history rh left join result on rh.resultId = result.resultId left join status on rh.statusId = status.statusId where rh.reviewId = r.reviewId), json_array() ) ) as "history"`) groupBy = [ 'r.assetId', 'r.ruleId', 'r.resultId', 'result.api', 'r.resultEngine', 'r.detail', 'r.comment', 'status.api', 'r.userId', 'r.ts', 'r.statusText', 'r.statusUserId', 'r.statusTs', 'r.metadata', 'r.reviewId', ] } const sql = dbUtils.makeQueryString({columns, joins, groupBy}) let [rows] = await dbUtils.pool.query(sql) return (rows) } /** * Delete a Review * * reviewId Integer A path parameter that indentifies a Review * projection List Additional properties to include in the response. (optional) * returns ReviewProjected **/ exports.deleteReviewByAssetRule = async function({assetId, ruleId, projections, grant, svcStatus = {}}) { let connection try { let binds = { assetId, ruleId } let rows = await _this.getReviews({projections, filter: binds, grant}) binds = [assetId, ruleId] connection = await dbUtils.pool.getConnection() async function transaction () { await connection.query('START TRANSACTION') let sqlDelete = `DELETE review FROM review LEFT JOIN rule_version_check_digest rvcd ON (rvcd.version = review.version and rvcd.checkDigest = review.checkDigest) WHERE review.assetId = ? AND rvcd.ruleId = ?` await connection.query(sqlDelete, binds) await dbUtils.updateStatsAssetStig( connection, {ruleId, assetId}) await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return (rows[0]) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw (err) ; } finally { if (typeof connection !== 'undefined') { await connection.release() } } } exports.putReviewsByAsset = async function ({ collectionId, assetId, reviews, userId, grant, svcStatus }) { let connection const sqlCreateTableValidatedReview = ` CREATE TEMPORARY TABLE IF NOT EXISTS tt_validated_review ( INDEX idx_reviewId (reviewId), INDEX idx_error (error), PRIMARY KEY (ruleId), UNIQUE KEY (\`version\`, checkDigest) ) REPLACE WITH ${dbUtils.cteAclEffective({grantIds: grant.grantIds})}, cteCollectionSetting AS ( SELECT c.settings->>"$.fields.detail.required" AS detailRequired, c.settings->>"$.fields.comment.required" AS commentRequired, c.settings->>"$.status.canAccept" AS collectionCanAccept, CASE WHEN c.settings->>"$.status.canAccept" = 'true' AND c.settings->>"$.status.minAcceptGrant" <= @roleId THEN 'true' ELSE 'false' END AS userCanAccept, c.settings->>"$.status.resetCriteria" AS resetCriteria, c.settings->>"$.history.maxReviews" AS maxReviews FROM enabled_collection c WHERE c.collectionId = @collectionId ), cteIncoming AS ( SELECT jt.ruleId, result.resultId, TRIM(jt.detail) as detail, TRIM(jt.comment) as comment, jt.resultEngine, jt.metadata, coalesce(statuslabel.statusId, statusraw.statusId) as statusId, jt.statusText FROM JSON_TABLE( @reviews, "$[*]" COLUMNS( ruleId VARCHAR(45) PATH "$.ruleId", result VARCHAR(255) PATH "$.result", detail MEDIUMTEXT PATH "$.detail" NULL ON EMPTY, comment MEDIUMTEXT PATH "$.comment", resultEngine JSON PATH "$.resultEngine", metadata JSON PATH "$.metadata", statusRaw VARCHAR(255) PATH "$.status", statusLabel VARCHAR(255) PATH "$.status.label", statusText VARCHAR(511) PATH "$.status.text" ) ) AS jt left join result on (jt.result = result.api) left join \`status\` statusraw on (jt.statusRaw = statusraw.api) left join \`status\` statuslabel on (jt.statusLabel = statuslabel.api) ), cteGrant AS ( select distinct rgr.ruleId from enabled_asset a left join stig_asset_map sa using (assetId) ${grant.roleId === 1 ? 'inner' : 'left'} join cteAclEffective cae on sa.saId = cae.saId left join revision rev on sa.benchmarkId = rev.benchmarkId left join rev_group_rule_map rgr using (revId) where a.assetId = @assetId and a.collectionId = @collectionId and coalesce(cae.access, 'rw') = 'rw' ), cteCandidate AS ( select CASE WHEN cteGrant.ruleId is not null then 1 else null end as granted, review.reviewId, @assetId as assetId, cteIncoming.ruleId, rvcd.version, rvcd.checkDigest, COALESCE(cteIncoming.resultId, review.resultId) as resultId, COALESCE(cteIncoming.detail, review.detail, '') as detail, COALESCE(cteIncoming.comment, review.comment, '') as comment, COALESCE(cteIncoming.metadata, review.metadata, '{}') as metadata, CASE WHEN cteIncoming.resultEngine != 0 -- resultEngine present THEN cteIncoming.resultEngine ELSE CASE WHEN cteIncoming.resultId is null -- result absent, patch only THEN review.resultEngine ELSE NULL END END as resultEngine, CASE WHEN cteIncoming.statusId is not null THEN cteIncoming.statusId ELSE CASE WHEN review.reviewId is null or (rChangedResult.reviewId is not null and cteCollectionSetting.resetCriteria = 'result') or (rChangedAny.reviewId is not null and cteCollectionSetting.resetCriteria = 'any') THEN 0 ELSE review.statusId END END as statusId, CASE WHEN cteIncoming.statusId is not null or review.reviewId is null THEN cteIncoming.statusText ELSE CASE WHEN (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) THEN 'Review change triggered status update' ELSE review.statusText END END as statusText, CASE WHEN cteIncoming.statusId is not null -- request contains a status or review.reviewId is null -- no existing review or (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) -- status meets criteria for resetting or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) -- status meets criteria for resetting THEN @utcTimestamp -- now ELSE review.statusTs -- saved time END as statusTs, CASE WHEN cteIncoming.statusId is not null -- request contains a status or review.reviewId is null -- no existing review or (cteCollectionSetting.resetCriteria = 'result' and rChangedResult.reviewId is not null) -- status meets criteria for resetting or (cteCollectionSetting.resetCriteria = 'any' and rChangedAny.reviewId is not null) -- status meets criteria for resetting THEN @userId -- this user ELSE review.statusUserId -- saved user END as statusUserId, CASE WHEN review.reviewId is null -- no existing review or cteIncoming.resultId is not null -- patch request contains result or cteIncoming.detail is not null -- patch request contains detail or cteIncoming.comment is not null -- patch request contains comment THEN @userId -- this user ELSE review.userId -- saved user END as userId, CASE WHEN review.reviewId is null -- no existing review or cteIncoming.resultId is not null -- patch request contains result or cteIncoming.detail is not null -- patch request contains detail or cteIncoming.comment is not null -- patch request contains comment THEN @utcTimestamp -- now ELSE review.ts -- saved time END as ts from cteIncoming LEFT JOIN cteGrant on cteIncoming.ruleId = cteGrant.ruleId LEFT JOIN rule_version_check_digest rvcd on cteGrant.ruleId = rvcd.ruleId LEFT JOIN review on (@assetId = review.assetId and rvcd.version = review.version and rvcd.checkDigest = review.checkDigest) LEFT JOIN cteCollectionSetting on true LEFT JOIN review rChangedResult on ( review.reviewId = rChangedResult.reviewId and rChangedResult.statusId != 0 and cteIncoming.resultId != rChangedResult.resultId ) LEFT JOIN review rChangedAny on ( review.reviewId = rChangedAny.reviewId and rChangedAny.statusId != 0 and (rChangedAny.resultId != cteIncoming.resultId or rChangedAny.detail != cteIncoming.detail or rChangedAny.comment != cteIncoming.comment) ) ) select CASE WHEN cteCandidate.granted IS NULL THEN 'no grant for this asset/ruleId' ELSE CASE WHEN cteCandidate.statusId > 0 -- submitted, rejected, accepted THEN CASE WHEN (cteCollectionSetting.collectionCanAccept = 'false' and cteCandidate.statusId IN (2,3)) THEN 'status = accepted, rejected not allowed for this Collection' ELSE CASE WHEN (cteCollectionSetting.userCanAccept = 'false' and cteCandidate.statusId IN (2,3)) THEN 'status = accepted, rejected not allowed for this User' ELSE CASE WHEN (cteCandidate.resultId NOT IN (2,3,4)) THEN 'status is not allowed for the result' ELSE CASE WHEN (cteCollectionSetting.detailRequired = 'always' AND cteCandidate.detail = '') THEN 'empty detail is not allowed for status = submitted, accepted, rejected' ELSE CASE WHEN (cteCollectionSetting.commentRequired = 'always' AND cteCandidate.comment = '') THEN 'empty comment is not allowed for status = submitted, accepted, rejected' ELSE CASE WHEN cteCandidate.resultId = 4 -- fail THEN CASE WHEN (cteCollectionSetting.detailRequired = 'findings' AND cteCandidate.detail = '') THEN 'result = fail and empty detail not allowed for status = submitted, accepted, rejected' ELSE CASE WHEN (cteCollectionSetting.commentRequired = 'findings' AND cteCandidate.comment = '') THEN 'result = fail and empty comment not allowed for status = submitted, accepted, rejected' END END END END END END END END END END as error, cteCandidate.reviewId, cteCandidate.assetId, cteCandidate.ruleId, cteCandidate.version, cteCandidate.checkDigest, cteCandidate.resultId, cteCandidate.detail, cteCandidate.comment, cteCandidate.resultEngine, cteCandidate.metadata, cteCandidate.statusId, cteCandidate.statusText, cteCandidate.statusUserId, cteCandidate.statusTs, cteCandidate.userId, cteCandidate.ts from cteCandidate LEFT JOIN cteCollectionSetting on true` const sqlHistoryPrune = ` with historyRecs AS ( select rh.historyId, ROW_NUMBER() OVER (PARTITION BY r.assetId, r.version, r.checkDigest ORDER BY rh.historyId DESC) as rowNum from review_history rh left join review r using (reviewId) where reviewId IN (SELECT reviewId from tt_validated_review where error is null and reviewId is not null) ) delete review_history FROM review_history left join historyRecs on review_history.historyId = historyRecs.historyId WHERE historyRecs.rowNum > (select c.settings->>"$.history.maxReviews" FROM enabled_collection c where collectionId = @collectionId) - 1 ` const sqlHistory = ` INSERT INTO review_history ( reviewId, ruleId, resultId, detail, comment, autoResult, ts, userId, statusText, statusUserId, statusTs, statusId, touchTs, resultEngine ) SELECT reviewId, ruleId, resultId, LEFT(detail,32767) as detail, LEFT(comment,32767) as comment, autoResult, ts, userId, statusText, statusUserId, statusTs, statusId, touchTs, CASE WHEN resultEngine = 0 THEN NULL ELSE resultEngine END FROM review WHERE reviewId IN (SELECT reviewId from tt_validated_review where error is null and reviewId is not null) FOR UPDATE ` const sqlUpdateReviews = ` update review r inner join tt_validated_review vr on (r.reviewId = vr.reviewId and vr.error is null) set r.ruleId = vr.ruleId, r.resultId = vr.resultId, r.resultEngine = vr.resultEngine, r.detail = vr.detail, r.comment = vr.comment, r.metadata = vr.metadata, r.statusId = vr.statusId, r.statusText = vr.statusText, r.statusUserId = vr.statusUserId, r.statusTs = vr.statusTs, r.userId = vr.userId, r.ts = vr.ts ` const sqlInsertReviews = ` insert into review ( assetId, ruleId, \`version\`, checkDigest, resultId, resultEngine, detail, comment, metadata, statusId, statusText, statusUserId, statusTs, userId, ts) select assetId, ruleId, \`version\`, checkDigest, resultId, resultEngine, detail, comment, metadata, statusId, statusText, statusUserId, statusTs, userId, ts from tt_validated_review vr where error is null and reviewId is null ` try { connection = await dbUtils.pool.getConnection() const sqlSetVariables = `set @collectionId = ?, @assetId = ?, @userId = ?, @roleId = ?, @reviews = ?, @utcTimestamp = UTC_TIMESTAMP()` await connection.query(sqlSetVariables, [parseInt(collectionId), parseInt(assetId), parseInt(userId), grant.roleId, JSON.stringify(reviews)]) const [settings] = await connection.query(`select c.settings->>"$.history.maxReviews" as maxReviews FROM enabled_collection c where collectionId = @collectionId`) const historyMaxReviews = settings[0].maxReviews await connection.query(sqlCreateTableValidatedReview) let [counts] = await connection.query(`select coalesce(sum(case when error is not null then 1 else 0 end),0) as failedValidations, coalesce(sum(case when error is null and reviewId is null then 1 else 0 end),0) as inserts, coalesce(sum(case when error is null and reviewId is not null then 1 else 0 end),0) as updates from tt_validated_review`) let validationErrors = [] if (counts[0].failedValidations) { ;[validationErrors] = await connection.query('select ruleId, error as reason from tt_validated_review where error is not null LIMIT 50') } async function transaction () { await connection.query('START TRANSACTION') if (counts[0].updates) { await connection.query(sqlHistoryPrune, [ historyMaxReviews ]) if (historyMaxReviews !== 0) { await connection.query(sqlHistory) } await connection.query(sqlUpdateReviews) } if (counts[0].inserts) { await connection.query(sqlInsertReviews) } await dbUtils.updateStatsAssetStig(connection, {assetId}) await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return { rejected: validationErrors, affected: { updated: counts[0].updates, inserted: counts[0].inserts } } } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.query('DROP TEMPORARY TABLE IF EXISTS tt_validated_review') await connection.release() } } } // Returns a Boolean exports.checkRuleByAssetUser = async function ({ruleId, assetId, collectionId, grant, checkWritable}) { const binds = [] let sql = `with ${dbUtils.cteAclEffective({grantIds: grant.grantIds})} select rgr.ruleId from enabled_asset a left join stig_asset_map sa using (assetId) ${grant.roleId === 1 ? 'inner' : 'left'} join cteAclEffective cae on sa.saId = cae.saId left join revision rev on sa.benchmarkId = rev.benchmarkId left join rev_group_rule_map rgr using (revId) where a.assetId = ? and rgr.ruleId = ? ${checkWritable ? "and coalesce(cae.access, 'rw') = 'rw'" : ''} ${collectionId ? "and a.collectionId = ?" : ''}` binds.push(assetId, ruleId, collectionId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 } exports.getReviewMetadataKeys = async function ( assetId, ruleId ) { const binds = [] let sql = ` select JSON_KEYS(metadata) as keyArray from review r left join rule_version_check_digest rvcd on (r.version = rvcd.version and r.checkDigest = rvcd.checkDigest) where r.assetId = ? and rvcd.ruleId = ?` binds.push(assetId, ruleId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].keyArray : [] } exports.getReviewMetadata = async function ( assetId, ruleId ) { const binds = [] let sql = ` select metadata from review r left join rule_version_check_digest rvcd on (r.version = rvcd.version and r.checkDigest = rvcd.checkDigest) where r.assetId = ? and rvcd.ruleId = ?` binds.push(assetId, ruleId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].metadata : {} } exports.patchReviewMetadata = async function ( assetId, ruleId, metadata ) { const binds = [] let sql = ` update review left join rule_version_check_digest rvcd on (review.version = rvcd.version and review.checkDigest = rvcd.checkDigest) set review.metadata = JSON_MERGE_PATCH(metadata, ?) where review.assetId = ? and rvcd.ruleId = ?` binds.push(JSON.stringify(metadata), assetId, ruleId) await dbUtils.pool.query(sql, binds) return true } exports.putReviewMetadata = async function ( assetId, ruleId, metadata ) { const binds = [] let sql = ` update review left join rule_version_check_digest rvcd on (review.version = rvcd.version and review.checkDigest = rvcd.checkDigest) set review.metadata = ? where review.assetId = ? and rvcd.ruleId = ?` binds.push(JSON.stringify(metadata), assetId, ruleId) await dbUtils.pool.query(sql, binds) return true } exports.getReviewMetadataValue = async function ( assetId, ruleId, key ) { const binds = [] let sql = ` select JSON_EXTRACT(metadata, ?) as value from review r left join rule_version_check_digest rvcd on (r.version = rvcd.version and r.checkDigest = rvcd.checkDigest) where r.assetId = ? and rvcd.ruleId = ?` binds.push(`$."${key}"`, assetId, ruleId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].value : "" } exports.putReviewMetadataValue = async function ( assetId, ruleId, key, value ) { const binds = [] let sql = ` update review left join rule_version_check_digest rvcd on (review.version = rvcd.version and review.checkDigest = rvcd.checkDigest) set review.metadata = JSON_SET(metadata, ?, ?) where review.assetId = ? and rvcd.ruleId = ?` binds.push(`$."${key}"`, value, assetId, ruleId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].value : "" } exports.deleteReviewMetadataKey = async function ( assetId, ruleId, key ) { const binds = [] let sql = ` update review left join rule_version_check_digest rvcd on (review.version = rvcd.version and review.checkDigest = rvcd.checkDigest) set review.metadata = JSON_REMOVE(metadata, ?) where review.assetId = ? and rvcd.ruleId = ?` binds.push(`$."${key}"`, assetId, ruleId) let [rows] = await dbUtils.pool.query(sql, binds) return rows.length > 0 ? rows[0].value : "" } ================================================ FILE: api/source/service/STIGService.js ================================================ 'use strict'; const dbUtils = require('./utils') const {createHash} = require('node:crypto') const _this = this function cteStigCollection ({elevate = false, unrestrictedCollectionIds = [], hasRestrictions = true}) { const columns = [ 'sa.benchmarkId', `cast(concat('[', group_concat(distinct concat('"',a.collectionId,'"')),']') as json) as collectionIds` ] const joins = [ 'stig_asset_map sa', 'inner join enabled_asset a on a.assetId=sa.assetId', 'inner join enabled_collection c on c.collectionId=a.collectionId' ] const predicates = { statements: [], binds: [] } const groupBy = ['sa.benchmarkId'] if (!elevate) { const statements = [] if (hasRestrictions) { joins.push('left join cteAclEffective cae on sa.saId = cae.saId') statements.push('cae.saId is not null') } if (unrestrictedCollectionIds.length) { statements.push('c.collectionId in (?)') predicates.binds.push(unrestrictedCollectionIds) } if (statements.length) predicates.statements.push(statements.join(' OR ')) } const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, format: true}) return `cte_stig_collection as (${sql})` } function cteRevCollection({elevate = false, unrestrictedCollectionIds = [], hasRestrictions = true}) { const columns = [ 'r.revId', `cast(concat('[', group_concat(distinct concat('"',crm.collectionId,'"')),']') as json) as collectionIds` ] const joins = [ 'revision r', 'inner join collection_rev_map crm using (revId)' ] const predicates = { statements: [], binds: [] } const groupBy = ['r.revId'] if (!elevate) { const statements = [] if (hasRestrictions) { joins.push('left join stig_asset_map sa on r.benchmarkId = sa.benchmarkId','left join cteAclEffective cae on sa.saId = cae.saId') statements.push('cae.saId is not null') } if (unrestrictedCollectionIds.length) { statements.push('crm.collectionId in (?)') predicates.binds.push(unrestrictedCollectionIds) } if (statements.length) predicates.statements.push(statements.join(' OR ')) } const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, format: true}) return `cte_rev_collection as (${sql})` } function parseGrants (grants, elevate = false) { const unrestrictedCollectionIds = [] let requireCteAcls = false let requesterGrantIds = [] if (!elevate) { for (const collectionId in grants) { if (grants[collectionId].roleId === 1) { requesterGrantIds.push(grants[collectionId].grantIds) } else { unrestrictedCollectionIds.push(collectionId) } } requesterGrantIds = requesterGrantIds.flat() requireCteAcls = !!requesterGrantIds.length } return {unrestrictedCollectionIds, requesterGrantIds, requireCteAcls } } /** Generalized queries for STIGs **/ exports.queryStigs = async function ({filter, projections, grants, elevate = false}) { const { unrestrictedCollectionIds, requesterGrantIds, requireCteAcls } = parseGrants(grants, elevate) const ctes = [] if (requireCteAcls) { ctes.push(dbUtils.cteAclEffective({grantIds: requesterGrantIds})) } ctes.push(cteStigCollection({ elevate, unrestrictedCollectionIds, hasRestrictions: !!requesterGrantIds.length })) // cte_stig is used for the base query (no projections) const cteStigColumns = [ 'b.benchmarkId', 'b.title', `cr.status`, `cr.marking`, `concat('V', cr.version, 'R', cr.release) as "lastRevisionStr"`, `date_format(cr.benchmarkDateSql,'%Y-%m-%d') as "lastRevisionDate"`, `cr.ruleCount`, `coalesce(sc.collectionIds,json_array()) as collectionIds`, `JSON_ARRAYAGG(concat('V',revision.version,'R',revision.release)) OVER (PARTITION BY b.benchmarkId ORDER BY revision.benchmarkDateSql DESC) as revisionStrs`, `ROW_NUMBER() OVER (PARTITION BY b.benchmarkId ORDER BY revision.benchmarkDateSql ASC) as rownum` ] const cteStigJoins = [ 'stig b', 'left join current_rev cr on b.benchmarkId = cr.benchmarkId', 'left join cte_stig_collection sc on b.benchmarkId = sc.benchmarkId', 'left join revision on b.benchmarkId = revision.benchmarkId', ] // PREDICATES const cteStigPredicates = { statements: [], binds: [] } if (filter.title) { cteStigPredicates.statements.push("b.title LIKE CONCAT('%',?,'%')") cteStigPredicates.binds.push( filter.title ) } if (filter.benchmarkId) { cteStigPredicates.statements.push('b.benchmarkId = ?') cteStigPredicates.binds.push( filter.benchmarkId ) } // Main query columns, can be modified by projections const columns = [ 'benchmarkId', 'title', '`status`', 'marking', `lastRevisionStr`, `lastRevisionDate`, `ruleCount`, `revisionStrs`, `collectionIds`, ] if (projections.includes('revisions')) { // add cte_rev_collection, add revision objects to cteStigColumns, add joins to cteStigJoins ctes.push(cteRevCollection({ elevate, unrestrictedCollectionIds, hasRestrictions: !!requesterGrantIds.length })) cteStigColumns.push(`JSON_ARRAYAGG( json_object( "benchmarkId", revision.benchmarkId, "revisionStr", concat('V',revision.version,'R',revision.release), "version", cast(revision.version as char), "release", revision.release, "benchmarkDate", revision.benchmarkDateSql, "status", revision.status, "statusDate", revision.statusDate, "marking", revision.marking, "ruleCount", revision.ruleCount, "collectionIds", coalesce(rc.collectionIds,json_array()) )) OVER (PARTITION BY b.benchmarkId ORDER BY revision.benchmarkDateSql DESC) as revisions`) cteStigJoins.push('left join cte_rev_collection rc on revision.revId = rc.revId') columns.push('revisions') } ctes.push(`cte_stig AS (${dbUtils.makeQueryString({columns:cteStigColumns, joins:cteStigJoins, predicates:cteStigPredicates, orderBy:['b.benchmarkId']})})`) // CONSTRUCT MAIN QUERY const joins = ['cte_stig'] const predicates = { statements: ['rownum = 1'], binds: cteStigPredicates.binds } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } /** Generalized queries for Groups **/ exports.queryGroups = async function ( inProjection, inPredicates ) { let columns = [ 'rgr.groupId as "groupId"', 'rgr.groupTitle as "title"', ] const orderBy = ['substring(rgr.groupId from 3) + 0'] const groupBy = ['rgr.groupId', 'rgr.groupTitle'] let joins let predicates = { statements: [], binds: [] } predicates.statements.push('r.benchmarkId = ?') predicates.binds.push(inPredicates.benchmarkId) if (inPredicates.revisionStr != 'latest') { joins = ['revision r'] const {version, release} = dbUtils.parseRevisionStr(inPredicates.revisionStr) predicates.statements.push('r.version = ?') predicates.binds.push(version) predicates.statements.push('r.release = ?') predicates.binds.push(release) } else { joins = ['current_rev r'] } joins.push('inner join rev_group_rule_map rgr on r.revId = rgr.revId') if (inPredicates.groupId) { predicates.statements.push('rgr.groupId = ?') predicates.binds.push(inPredicates.groupId) } // PROJECTIONS if (inProjection?.includes('rules')) { columns.push(`json_arrayagg(json_object( 'ruleId', rgr.ruleId, 'version', rgr.version, 'title', rgr.title, 'severity', rgr.severity)) as "rules"`) } // // CONSTRUCT MAIN QUERY const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, orderBy}) const [rows] = await dbUtils.pool.query(sql, predicates.binds) return (rows.length > 0 ? rows : null) } /** Generalized queries for Rules associated with a STIG For specific Rule, allow for projections with Check and Fixes **/ exports.queryBenchmarkRules = async function ( benchmarkId, revisionStr, inProjection, inPredicates ) { let columns = [ 'rgr.ruleId', 'rgr.title', 'rgr.groupId', 'rgr.groupTitle', 'rgr.version', 'rgr.severity' ] let groupBy = [ 'rgr.ruleId', 'rgr.title', 'rgr.groupId', 'rgr.groupTitle', 'rgr.version', 'rgr.severity', 'rgr.rgrId' ] const orderBy = ['substring(rgr.ruleId from 4) + 0'] let joins let predicates = { statements: [], binds: [] } // PREDICATES predicates.statements.push('rev.benchmarkId = ?') predicates.binds.push(benchmarkId) if (revisionStr != 'latest') { joins = ['revision rev'] const {version, release} = dbUtils.parseRevisionStr(revisionStr) predicates.statements.push('rev.version = ?') predicates.binds.push(version) predicates.statements.push('rev.release = ?') predicates.binds.push(release) } else { joins = ['current_rev rev'] } if (inPredicates?.ruleId) { predicates.statements.push('rgr.ruleId = ?') predicates.binds.push(inPredicates.ruleId) } joins.push('left join rev_group_rule_map rgr using (revId)' ) // PROJECTIONS if ( inProjection?.includes('detail') ) { columns.push(`json_object( 'weight', rgr.weight, 'vulnDiscussion', rgr.vulnDiscussion, 'falsePositives', rgr.falsePositives, 'falseNegatives', rgr.falseNegatives, 'documentable', rgr.documentable, 'mitigations', rgr.mitigations, 'severityOverrideGuidance', rgr.severityOverrideGuidance, 'potentialImpacts', rgr.potentialImpacts, 'thirdPartyTools', rgr.thirdPartyTools, 'mitigationControl', rgr.mitigationControl, 'responsibility', rgr.responsibility ) as detail`) groupBy.push( 'rgr.version', 'rgr.weight', 'rgr.vulnDiscussion', 'rgr.falsePositives', 'rgr.falseNegatives', 'rgr.documentable', 'rgr.mitigations', 'rgr.severityOverrideGuidance', 'rgr.potentialImpacts', 'rgr.thirdPartyTools', 'rgr.mitigationControl', 'rgr.responsibility', 'rgr.iacontrols' ) } if ( inProjection?.includes('ccis') ) { columns.push(`(select coalesce ( (select json_arrayagg( json_object( 'cci', rgrcc.cci, 'apAcronym', cci.apAcronym, 'definition', cci.definition, 'control', crm.parentControl ) ) from rev_group_rule_cci_map rgrcc inner join cci cci using (cci) left join cci_reference_map crm using (cci) where rgrcc.rgrId = rgr.rgrId ), json_array() ) ) as "ccis"`) } if ( inProjection?.includes('check') ) { joins.push('left join check_content cc on rgr.checkDigest = cc.digest' ) columns.push(`json_object( 'system', rgr.checkSystem, 'content', cc.content) as \`check\``) } if ( inProjection?.includes('fix') ) { joins.push('left join fix_text ft on rgr.fixDigest = ft.digest' ) columns.push(`json_object( 'fixref', rgr.fixref, 'text', ft.text) as fix`) } // // CONSTRUCT MAIN QUERY const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, orderBy}) const [rows] = await dbUtils.pool.query(sql, predicates.binds) return (rows) } /** Generalized queries for a single Rule, optionally with Check and Fix **/ exports.queryRules = async function ( ruleId, inProjection ) { let columns = [ 'rgr.ruleId', 'rgr.version', 'rgr.title', 'rgr.severity', 'rgr.groupId', 'rgr.groupTitle' ] let groupBy = [ "rgr.ruleId", "rgr.version", "rgr.title", "rgr.severity", "rgr.groupId", "rgr.groupTitle" ] const orderBy = ['substring(rgr.ruleId from 4) + 0'] let joins = [ 'rev_group_rule_map rgr' ] let predicates = { statements: [], binds: [] } // PREDICATES predicates.statements.push('rgr.ruleId = ?') predicates.binds.push(ruleId) // PROJECTIONS if ( inProjection?.includes('detail') ) { columns.push(`json_object( 'weight', any_value(rgr.weight), 'vulnDiscussion', any_value(rgr.vulnDiscussion), 'falsePositives', any_value(rgr.falsePositives), 'falseNegatives', any_value(rgr.falseNegatives), 'documentable', any_value(rgr.documentable), 'mitigations', any_value(rgr.mitigations), 'severityOverrideGuidance', any_value(rgr.severityOverrideGuidance), 'potentialImpacts', any_value(rgr.potentialImpacts), 'thirdPartyTools', any_value(rgr.thirdPartyTools), 'mitigationControl', any_value(rgr.mitigationControl), 'responsibility', any_value(rgr.responsibility) ) as detail`) } if ( inProjection?.includes('ccis') ) { columns.push(`CASE WHEN count(rgrcc.cci) = 0 THEN json_array() ELSE CAST(CONCAT('[', GROUP_CONCAT(distinct json_object('cci', rgrcc.cci,'apAcronym',cci.apAcronym,'definition',cci.definition,'control',crm.parentControl)), ']') as json) END as ccis`) joins.push( 'left join rev_group_rule_cci_map rgrcc using (rgrId)', 'inner join cci using (cci)', 'inner join cci_reference_map crm on cci.cci = crm.cci' ) } if ( inProjection?.includes('check') ) { columns.push(`json_object('system', any_value(rgr.checkSystem),'content', any_value(cc.content)) as \`check\``) joins.push('left join check_content cc on rgr.checkDigest = cc.digest') } if ( inProjection?.includes('fix') ) { columns.push(`json_object('fixref', any_value(rgr.fixref),'text', any_value(ft.text)) as fix`) joins.push('left join fix_text ft on rgr.fixDigest = ft.digest') } if (inProjection?.includes('ruleIds')) { columns.push(`cast(concat('[', group_concat(distinct '"' , rvcd.ruleId , '"'), ']') as json) as ruleIds`) joins.push( 'left join rule_version_check_digest rvcd on (rgr.version = rvcd.version and rgr.checkDigest = rvcd.checkDigest)', ) } if (inProjection?.includes('stigs')) { columns.push(`cast(concat('[', group_concat(distinct json_object('benchmarkId',revision.benchmarkId,'revisionStr',revision.revisionStr)), ']') as json) as stigs`) joins.push('left join revision on rgr.revId = revision.revId') } // CONSTRUCT MAIN QUERY const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows[0]) } exports.insertManualBenchmark = async function (b, clobber, svcStatus = {}) { let connection try { const stats = {} let totalstart = process.hrtime() const {ddl, dml} = queriesFromBenchmarkData(b) // defined below connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true // check if this revision exists const [revision] = await connection.query('select revId from revision where `benchmarkId` = ? and `version` = ? and `release` = ?', [ dml.revision.binds.benchmarkId, dml.revision.binds.version, dml.revision.binds.release ]) const gExistingRevision = revision?.[0]?.revId if (gExistingRevision && !clobber) { return { benchmarkId: dml.revision.binds.benchmarkId, revisionStr: `V${dml.revision.binds.version}R${dml.revision.binds.release}`, marking: dml.revision.binds.marking, action: 'preserved' } } // create temporary tables outside the transaction for (const tempTable of Object.keys(ddl)) { await connection.query(ddl[tempTable].drop) await connection.query(ddl[tempTable].create) } async function transaction() { let result, hrstart, hrend, action = 'inserted' await connection.query('START TRANSACTION') // purge any exitsing records for this revision so we can replace if (gExistingRevision) { hrstart = process.hrtime() await connection.query('DELETE FROM revision WHERE revId = ?', [gExistingRevision]) const cleanupDml = [ "DELETE FROM check_content WHERE digest NOT IN (select checkDigest from rev_group_rule_map)", "DELETE FROM fix_text WHERE digest NOT IN (select digest from rev_group_rule_map)" ] for (const query of cleanupDml) { await connection.query(query) } hrend = process.hrtime(hrstart) stats.delRev = `${hrend[0]}s ${hrend[1] / 1000000}ms` action = 'replaced' } // insert new records for this revision const queryOrder = [ 'stig', 'revision', 'tempRuleCci', 'checkContent', 'fixText', 'revGroupRuleMap', 'revGroupRuleCciMap', 'ruleVersionCheckDigest' ] for (const query of queryOrder) { hrstart = process.hrtime() if (Array.isArray(dml[query].binds)) { if (dml[query].binds.length === 0) { continue } ;[result] = await connection.query(dml[query].sql, [dml[query].binds]) } else { ;[result] = await connection.query(dml[query].sql, dml[query].binds) } hrend = process.hrtime(hrstart) stats[query] = `${result.affectedRows} in ${hrend[0]}s ${hrend[1] / 1000000}ms` } // Update current_rev hrstart = process.hrtime() let sqlDeleteCurrentRev = 'DELETE from current_rev where benchmarkId = ?' let sqlUpdateCurrentRev = `INSERT INTO current_rev ( revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, marking, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount) SELECT revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, marking, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount FROM v_current_rev WHERE v_current_rev.benchmarkId = ?` await connection.query(sqlDeleteCurrentRev, [dml.stig.binds.benchmarkId]) await connection.query(sqlUpdateCurrentRev, [dml.stig.binds.benchmarkId]) hrend = process.hrtime(hrstart) stats.current_rev = `${hrend[0]}s ${hrend[1] / 1000000}ms` // Stats hrstart = process.hrtime() await dbUtils.updateDefaultRev(connection, { benchmarkId: dml.stig.binds.benchmarkId }) await dbUtils.updateStatsAssetStig(connection, { benchmarkId: dml.stig.binds.benchmarkId }) hrend = process.hrtime(hrstart) stats.statistics = `${hrend[0]}s ${hrend[1] / 1000000}ms` await connection.commit() hrend = process.hrtime(totalstart) stats.totalTime = `Completed in ${hrend[0]}s ${hrend[1] / 1000000}ms` return { benchmarkId: dml.revision.binds.benchmarkId, revisionStr: `V${dml.revision.binds.version}R${dml.revision.binds.release}`, marking: dml.revision.binds.marking, action } } return await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } } function queriesFromBenchmarkData(b) { const tempFlag = true const ddl = { tempRuleCci: { drop: 'drop table if exists temp_rule_cci', create: `CREATE${tempFlag ? ' TEMPORARY' : ''} TABLE temp_rule_cci ( ruleId varchar(255) NOT NULL, cci varchar(20))` } } const dml = { stig: { sql: "insert into stig (title, benchmarkId) VALUES (:title, :benchmarkId) as new on duplicate key update stig.title = new.title" }, revision: { sql: `insert into revision ( revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, marking, description, groupCount, checkCount, fixCount, lowCount, mediumCount, highCount ) VALUES ( :revId, :benchmarkId, :version, :release, :benchmarkDate, STR_TO_DATE(:benchmarkDateSql, '%Y-%m-%d'), :status, :statusDate, :marking, :description, :groupCount, :checkCount, :fixCount, :lowCount, :mediumCount, :highCount)`, }, checkContent: { sql: `insert ignore into check_content (content) VALUES ?`, binds: [] }, fixText: { sql: `insert ignore into fix_text (\`text\`) VALUES ?`, binds: [] }, tempRuleCci: { sql: `insert ignore into temp_rule_cci (ruleId, cci) VALUES ?`, binds: [] }, revGroupRuleMap: { sql: `INSERT INTO rev_group_rule_map ( revId, groupId, groupTitle, groupSeverity, ruleId, \`version\`, title, severity, weight, vulnDiscussion, falsePositives, falseNegatives, documentable, mitigations, severityOverrideGuidance, potentialImpacts, thirdPartyTools, mitigationControl, responsibility, iaControls, checkSystem, checkDigest, fixref, fixDigest) VALUES ?`, binds: [] }, revGroupRuleCciMap: { sql: `INSERT IGNORE INTO rev_group_rule_cci_map (rgrId, cci) SELECT rgr.rgrId, tt.cci FROM rev_group_rule_map rgr inner join temp_rule_cci tt using (ruleId) WHERE rgr.revId = :revId` }, ruleVersionCheckDigest: { sql: `INSERT INTO rule_version_check_digest (ruleId, \`version\`, checkDigest) with currentRuleVersionCheckDigest as ( select rgr.ruleId, rgr.version, rgr.checkDigest, rev.benchmarkDateSql, rev.revId, ROW_NUMBER() OVER (PARTITION BY rgr.ruleId ORDER BY rev.benchmarkDateSql DESC) as rowNum from rev_group_rule_map rgr left join revision rev using (revId) where rgr.checkDigest is not null and rev.benchmarkId = ? ) select ruleId, \`version\`, checkDigest from currentRuleVersionCheckDigest crvcd where rowNum = 1 ON DUPLICATE KEY UPDATE \`version\`=crvcd.version, checkDigest=crvcd.checkDigest`, binds: [] } } let { revision, ...benchmarkBinds } = b // QUERY: stig dml.stig.binds = benchmarkBinds delete dml.stig.binds.scap let { groups, ...revisionBinds } = revision delete revisionBinds.revisionStr revisionBinds.benchmarkId = benchmarkBinds.benchmarkId revisionBinds.revId = `${revisionBinds.benchmarkId}-${revisionBinds.version}-${revisionBinds.release}` revisionBinds.benchmarkDateSql = revisionBinds.benchmarkDate8601 delete revisionBinds.benchmarkDate8601 revisionBinds.lowCount = revisionBinds.mediumCount = revisionBinds.highCount = 0 // QUERY: revision dml.revision.binds = revisionBinds let ruleCount = 0 let checkCount = 0 let fixCount = 0 for (const group of groups) { let { rules, ...groupBinds } = group let groupSeverity for (const rule of rules) { ruleCount++ let { checks, fixes, idents, ...ruleBinds } = rule // Group severity calculation if (!groupSeverity) { groupSeverity = ruleBinds.severity } else if (groupSeverity !== ruleBinds.severity) { groupSeverity = 'mixed' } checkCount += checks.length fixCount += fixes.length const checkSystem = checks.map( check => check.system).join(',') const checkContent = checks.map( check => check.content).join('\n\n-----AND-----\n\n') const checkDigest = createHash('sha256').update(checkContent).digest() const fixref = fixes.map( fix => fix.fixref).join(',') const fixText = fixes.map( fix => fix.text).join('\n\n-----AND-----\n\n') const fixDigest = createHash('sha256').update(fixText).digest() // QUERY: checkContent dml.checkContent.binds.push([checkContent]) // QUERY: fixText dml.fixText.binds.push([fixText]) // QUERY: revGroupRuleMap dml.revGroupRuleMap.binds.push([ revisionBinds.revId, groupBinds.groupId, groupBinds.title, ruleBinds.severity, // groupSeverity hack ruleBinds.ruleId, ruleBinds.version, ruleBinds.title, ruleBinds.severity, ruleBinds.weight, ruleBinds.vulnDiscussion, ruleBinds.falsePositives, ruleBinds.falseNegatives, ruleBinds.documentable, ruleBinds.mitigations, ruleBinds.severityOverrideGuidance, ruleBinds.potentialImpacts, ruleBinds.thirdPartyTools, ruleBinds.mitigationControl, ruleBinds.responsibility, ruleBinds.iaControls, checkSystem, checkDigest, fixref, fixDigest ]) for (const ident of idents) { if (ident.system === 'http://iase.disa.mil/cci' || ident.system === 'http://cyber.mil/cci') { dml.tempRuleCci.binds.push([ rule.ruleId, ident.ident.replace('CCI-', '')]) } } } // QUERY: rev_group_rule_cci_map dml.revGroupRuleCciMap.binds = { revId: revisionBinds.revId } } dml.revision.binds.groupCount = groups.length dml.revision.binds.checkCount = checkCount dml.revision.binds.fixCount = fixCount // add rule severity counts to the revision binds. groupRule[7] is the location of the severity value dml.revision.binds = dml.revGroupRuleMap.binds.reduce((binds, groupRule) => { const prop = `${groupRule[7]}Count` binds[prop] = (binds[prop] ?? 0) + 1 return binds }, dml.revision.binds) // QUERY: ruleVersionCheckDigest dml.ruleVersionCheckDigest.binds.push(benchmarkBinds.benchmarkId) return {ddl, dml} } /** * Deletes the specified revision of a STIG * * benchmarkId String A path parameter that identifies a STIG * revisionStr String A path parameter that identifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns Revision **/ exports.deleteRevisionByString = async function(benchmarkId, revisionStr, svcStatus = {}) { let dmls = [ "DELETE from collection_rev_map where revId = (SELECT revId FROM revision WHERE benchmarkId = :benchmarkId and `version` = :version and `release` = :release)", "DELETE FROM revision WHERE benchmarkId = :benchmarkId and `version` = :version and `release` = :release", "DELETE FROM check_content WHERE digest NOT IN (select checkDigest from rev_group_rule_map)", "DELETE FROM fix_text WHERE digest NOT IN (select fixDigest from rev_group_rule_map)", "DELETE FROM rule_version_check_digest WHERE ruleId NOT IN (select DISTINCT ruleId from rev_group_rule_map)" ] let currentRevDmls = [ "DELETE from current_rev where benchmarkId = :benchmarkId", `INSERT INTO current_rev ( revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, marking, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount) SELECT revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, marking, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount FROM v_current_rev WHERE v_current_rev.benchmarkId = :benchmarkId`, "DELETE FROM stig WHERE benchmarkId NOT IN (select benchmarkId FROM current_rev)" ] let connection; try { const {version, release} = dbUtils.parseRevisionStr(revisionStr) let binds = { benchmarkId: benchmarkId, version: version, release: release, revId: `${benchmarkId}-${version}-${release}` } connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true async function transaction () { await connection.query('START TRANSACTION') // note if this is the current revision const [crRows] = await connection.query('SELECT * FROM current_rev WHERE benchmarkId = :benchmarkId and `version` = :version and `release` = :release', binds) const wasCurrentRev = !!crRows.length // note if this revision is used to calculate stats const [drRows] = await connection.query('SELECT collectionId FROM default_rev WHERE benchmarkId = :benchmarkId and revId = :revId', binds) const wasDefaultRev = !!drRows.length // re-materialize current_rev if we're deleting the current revision if (wasCurrentRev) { dmls = dmls.concat(currentRevDmls) } for (const sql of dmls) { await connection.query(sql, binds) } // re-calculate review statistics and repopulate default_rev from view if we've affected default_rev if (wasDefaultRev) { const collectionIds = drRows.map( row => row.collectionId) await dbUtils.updateDefaultRev( connection, {collectionIds, benchmarkId}) await dbUtils.updateStatsAssetStig( connection, {collectionIds, benchmarkId}) } await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch(err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw (err) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } /** * Deletes a STIG (*** and all revisions ***) * * benchmarkId String A path parameter that indentifies a STIG * returns STIG **/ exports.deleteStigById = async function(benchmarkId, userObject, svcStatus = {}) { let dmls = [ "DELETE from stig where benchmarkId = :benchmarkId", "DELETE from current_rev where benchmarkId = :benchmarkId", "DELETE from collection_rev_map where benchmarkId = :benchmarkId", "DELETE from default_rev where benchmarkId = :benchmarkId", "DELETE FROM check_content WHERE digest NOT IN (select checkDigest from rev_group_rule_map)", "DELETE FROM fix_text WHERE digest NOT IN (select fixDigest from rev_group_rule_map)", "DELETE FROM rule_version_check_digest WHERE ruleId NOT IN (select DISTINCT ruleId from rev_group_rule_map)" ] let connection; try { let rows = await _this.queryStigs({ filter: {benchmarkId}, projections: [], grants: userObject.grants }) let binds = { benchmarkId: benchmarkId } connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true async function transaction () { await connection.query('START TRANSACTION') for (const sql of dmls) { await connection.query(sql, binds) } await dbUtils.updateStatsAssetStig( connection, {benchmarkId}) await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) return (rows[0]) } catch (err) { if (typeof connection !== 'undefined') { await connection.rollback() } throw (err) } finally { if (typeof connection !== 'undefined') { await connection.release() } } } /** * Return data for the specified CCI * * cci String A path parameter that indentifies a CCI * returns List **/ exports.getCci = async function(cci, inProjection, userObject) { let columns = [ 'c.cci', 'c.status', 'c.publishdate', 'c.contributor', 'c.type', 'c.definition' ] const orderBy = ['c.cci'] let joins = [ 'cci c ' ] let predicates = { statements: [], binds: [] } // PREDICATES predicates.statements.push('c.cci = ?') predicates.binds.push(cci) if ( inProjection?.includes('emassAp') ) { columns.push(`case when c.apAcronym is null then null else json_object("apAcronym", c.apAcronym, "implementation", c.implementation, "assessmentProcedure", c.assessmentProcedure) END as "emassAp"`) } if ( inProjection?.includes('references') ) { columns.push(`(select coalesce ( ( select json_arrayagg (json_object( 'creator', crm.creator, 'title', crm.title, 'version', crm.version, 'location', crm.location, 'indexDisa', crm.indexDisa, 'textRefNist', crm.textRefNist, 'parentControl', crm.parentControl )) from cci_reference_map crm where crm.cci = c.cci ), json_array() ) ) as "references"`) } if ( inProjection?.includes('stigs') ) { columns.push(`(select coalesce ( ( select json_arrayagg(stig) from ( select distinct json_object( 'benchmarkId', rv.benchmarkId, 'revisionStr', concat('V', rv.version, 'R', rv.release) ) as stig from cci ci left join rev_group_rule_cci_map rgrcc using (cci) left join rev_group_rule_map rgr using (rgrId) left join revision rv using (revId) where ci.cci = c.cci and benchmarkId is not null ) as agg), json_array() ) ) as "stigs"`) } const sql = dbUtils.makeQueryString({columns, joins, predicates, orderBy}) const [rows] = await dbUtils.pool.query(sql, predicates.binds) return (rows[0]) } /** * Return a list of CCIs from a STIG revision * * benchmarkId String A path parameter that indentifies a STIG * revisionStr String A path parameter that indentifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns List **/ exports.getCcisByRevision = async function(benchmarkId, revisionStr, userObject) { let columns = [ 'c.cci', 'c.type', `COALESCE(( SELECT JSON_ARRAYAGG(JSON_OBJECT( "creator", crm.creator, "title", crm.title, "version", crm.version, "location", crm.location, "indexDisa", crm.indexDisa, "textRefNist", crm.textRefNist, "parentControl", crm.parentControl )) FROM cci_reference_map crm WHERE crm.cci = c.cci ), JSON_ARRAY()) AS "references"` ] const orderBy = ['c.cci'] let joins = [] let predicates = { statements: [], binds: [] } predicates.statements.push('r.benchmarkId = ?') predicates.binds.push(benchmarkId) if (revisionStr != 'latest') { joins = ['revision r'] const {version, release} = dbUtils.parseRevisionStr(revisionStr) predicates.statements.push('r.version = ?') predicates.binds.push(version) predicates.statements.push('r.release = ?') predicates.binds.push(release) } else { joins = ['current_rev r'] } joins.push('LEFT JOIN rev_group_rule_map rgr using (revId)') joins.push('INNER JOIN rev_group_rule_cci_map rgrcc using (rgrId)') joins.push('INNER JOIN cci c using (cci)') // joins.push('LEFT JOIN cci_reference_map crm using (cci)') // CONSTRUCT MAIN QUERY const sql = dbUtils.makeQueryString({columns, joins, predicates, orderBy}) const [rows] = await dbUtils.pool.query(sql, predicates.binds) return rows } /** * Return the rules, checks and fixes for a Group from a specified revision of a STIG. * None * * benchmarkId String A path parameter that indentifies a STIG * revisionStr String A path parameter that indentifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * groupId String A path parameter that indentifies a Group * returns GroupObj **/ exports.getGroupByRevision = async function(benchmarkId, revisionStr, groupId, projection, userObject) { const rows = await _this.queryGroups( projection, { benchmarkId: benchmarkId, revisionStr: revisionStr, groupId: groupId }) return (rows[0]) } /** * Return the list of groups for the specified revision of a STIG. * * benchmarkId String A path parameter that indentifies a STIG * revisionStr String A path parameter that indentifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns List **/ exports.getGroupsByRevision = async function(benchmarkId, revisionStr, projection, userObject) { return _this.queryGroups( projection, { benchmarkId: benchmarkId, revisionStr: revisionStr }) } /** * Return metadata for the specified revision of a STIG * * benchmarkId String A path parameter that indentifies a STIG * revisionStr String A path parameter that indentifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns Revision **/ exports.getRevisionByString = async function({benchmarkId, revisionStr, grants, elevate = false}) { const { unrestrictedCollectionIds, requesterGrantIds, requireCteAcls } = parseGrants(grants, elevate) const ctes = [] if (requireCteAcls) { ctes.push(dbUtils.cteAclEffective({grantIds: requesterGrantIds})) } ctes.push(cteRevCollection({ elevate, unrestrictedCollectionIds, hasRestrictions: !!requesterGrantIds.length })) const ro = dbUtils.parseRevisionStr(revisionStr) const columns = [ `${ro.table_alias}.benchmarkId`, `concat('V', ${ro.table_alias}.version, 'R', ${ro.table_alias}.release) as "revisionStr"`, `cast(${ro.table_alias}.version as char) as version`, ` ${ro.table_alias}.release`, `date_format(${ro.table_alias}.benchmarkDateSql,'%Y-%m-%d') as "benchmarkDate"`, `${ro.table_alias}.status`, `${ro.table_alias}.statusDate`, `${ro.table_alias}.ruleCount`, `coalesce(rc.collectionIds,json_array()) as collectionIds` ] const joins = [ `${ro.table} ${ro.table_alias}`, `left join cte_rev_collection rc on ${ro.table_alias}.revId = rc.revId` ] const predicates = { statements: [`${ro.table_alias}.benchmarkId = ?`], binds: [benchmarkId] } if (ro.version) { predicates.statements.push( 'r.version = ?', 'r.release = ? ') predicates.binds.push(ro.version, ro.release) } const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows[0]) } /** * Return a list of revisions for the specified STIG * * benchmarkId String A path parameter that indentifies a STIG * returns List **/ exports.getRevisionsByBenchmarkId = async function({benchmarkId, grants, userObject, elevate = false}) { const { unrestrictedCollectionIds, requesterGrantIds, requireCteAcls } = parseGrants(grants, elevate) const ctes = [] if (requireCteAcls) { ctes.push(dbUtils.cteAclEffective({grantIds: requesterGrantIds})) } ctes.push(cteRevCollection({ elevate, unrestrictedCollectionIds, hasRestrictions: !!requesterGrantIds.length })) const columns = [ 'r.benchmarkId', `concat('V', r.version, 'R', r.release) as "revisionStr"`, 'CAST(r.version as char) as version', 'r.release', `date_format(r.benchmarkDateSql,'%Y-%m-%d') as "benchmarkDate"`, 'r.status', 'r.statusDate', 'r.marking', 'r.ruleCount', 'coalesce(rc.collectionIds,json_array()) as collectionIds' ] const joins = [ 'revision r', 'left join cte_rev_collection rc on r.revId = rc.revId' ] const predicates = { statements: ['r.benchmarkId = ?'], binds: [benchmarkId] } const orderBy = ['r.benchmarkDateSql desc'] const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return (rows) } /** * Return the defintion and associated checks and fixes for the specified Rule * * ruleId String A path parameter that indentifies a Rule * returns Rule **/ exports.getRuleByRuleId = async function(ruleId, projection, userObject) { return _this.queryRules( ruleId, projection ) } /** * Return rule data for the specified Rule in a revision of a STIG. * * benchmarkId String A path parameter that indentifies a STIG * revisionStr String A path parameter that indentifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns List **/ exports.getRuleByRevision = async function(benchmarkId, revisionStr, ruleId, projection, userObject) { const rows = await _this.queryBenchmarkRules( benchmarkId, revisionStr, projection, { ruleId: ruleId }) return (rows[0]) } /** * Return rule data for the specified revision of a STIG. * * benchmarkId String A path parameter that indentifies a STIG * revisionStr String A path parameter that indentifies a STIG revision [ V{version_num}R{release_num} | 'latest' ] * returns List **/ exports.getRulesByRevision = async function(benchmarkId, revisionStr, projection, userObject) { return _this.queryBenchmarkRules( benchmarkId, revisionStr, projection, {} ) } /** * Return a list of available STIGs * * title String A string found anywhere in a STIG title (optional) * returns List **/ exports.getSTIGs = async function(title, projections, userObject, elevate) { return _this.queryStigs({ filter: {title}, projections, grants: userObject.grants, elevate }) } /** * Return properties of the specified STIG * * benchmarkId String A path parameter that indentifies a STIG * returns STIG **/ exports.getStigById = async function(benchmarkId, userObject, elevate) { const rows = await _this.queryStigs({ filter: {benchmarkId}, projections: ['revisions'], grants: userObject.grants, elevate }) return (rows[0]) } exports.getRevisionStrsByBenchmarkId = async function (benchmarkId) { const sql = `SELECT concat('V', r.version, 'R', r.release) as "revisionStr" FROM revision r WHERE r.benchmarkId = ?` const [rows] = await dbUtils.pool.query(sql, [benchmarkId]) return rows.map( row => row.revisionStr) } exports.getRevisionStrsByBenchmarkIds = async function (benchmarkIds) { const sql = `SELECT r.benchmarkId, json_arrayagg(concat('V', r.version, 'R', r.release)) as "revisionStrs" FROM revision r WHERE r.benchmarkId IN ? GROUP BY r.benchmarkId` const [rows] = await dbUtils.pool.query(sql, [[benchmarkIds]]) const returnObj = {} for (const row of rows) { returnObj[row.benchmarkId] = row.revisionStrs } return returnObj } exports.getHighestMarkingByRevisions = async function (stigRevisions) { if (stigRevisions.length === 0) { return 'U' } const revisionCriteria = stigRevisions.map(() => { return `(r.benchmarkId = ? AND r.revisionStr = ?)` }).join(' OR ') const binds = [] for (const {benchmarkId, revisionStr} of stigRevisions) { binds.push(benchmarkId, revisionStr) } const sql = ` SELECT r.marking FROM revision r WHERE (${revisionCriteria}) AND r.marking IS NOT NULL ORDER BY r.marking ASC LIMIT 1 ` const [rows] = await dbUtils.pool.query(sql, binds) if (rows.length === 0) { return 'U' } return rows[0].marking || 'U' } ================================================ FILE: api/source/service/UserService.js ================================================ 'use strict'; const config = require('../utils/config'); const SmError = require('../utils/error'); const dbUtils = require('./utils') const _this = this /** Generalized queries for users **/ exports.queryUsers = async function (inProjection, inPredicates, elevate, userObject) { const ctes = [] let needsCollectionGrantees = false const columns = [ 'CAST(ud.userId as char) as userId', 'ud.username', 'ud.lastAccess', `json_extract( ud.lastClaims, ? ) as email`, `COALESCE(json_unquote(json_extract( ud.lastClaims, ? )), ud.username) as displayName`, `json_object( 'create_collection', 'create_collection' member of(JSON_VALUE(ud.lastClaims, ? default '[]' on empty)), 'admin', 'admin' member of(JSON_VALUE(ud.lastClaims, ? default '[]' on empty)) ) as 'privileges'`, 'ud.status', "date_format(ud.statusDate, '%Y-%m-%dT%TZ') as statusDate", 'CAST(ud.statusUser as char) as statusUser' ] const joins = new Set([ 'user_data ud' ]) const groupBy = ['ud.userId'] const orderBy = ['ud.username'] // PROJECTIONS if (inProjection?.includes('collectionGrants')) { needsCollectionGrantees = true joins.add('left join cteGrantees cgs on ud.userId = cgs.userId') joins.add('left join enabled_collection c on cgs.collectionId = c.collectionId') columns.push(`case when count(cgs.collectionId) > 0 then ${dbUtils.jsonArrayAggDistinct(`json_object( 'collection', json_object( 'collectionId', CAST(cgs.collectionId as char), 'name', c.name ), 'roleId', cgs.roleId, 'grantees', cgs.grantees )`)} else json_array() end as collectionGrants`) } if (inProjection?.includes('statistics')) { needsCollectionGrantees = true joins.add('left join cteGrantees cgs on ud.userId = cgs.userId') columns.push(`json_object( 'created', date_format(ud.created, '%Y-%m-%dT%TZ'), 'collectionGrantCount', count(distinct cgs.collectionId), 'lastClaims', ud.lastClaims ) as statistics`) groupBy.push( 'ud.lastAccess', 'ud.lastClaims' ) } if (inProjection?.includes('userGroups')) { joins.add('left join user_group_user_map ugu on ud.userId = ugu.userId') joins.add('left join user_group ug on ugu.userGroupId = ug.userGroupId') columns.push(`CASE WHEN COUNT(ugu.userGroupId) > 0 THEN cast(concat('[', group_concat( distinct JSON_OBJECT( 'userGroupId', cast(ugu.userGroupId as char), 'name', ug.name )), ']') as json) ELSE json_array() END as userGroups`) } if(inProjection?.includes('webPreferences')) { columns.push(`ud.webPreferences`) } // PREDICATES let predicates = { statements: [], binds: [ `$.${config.oauth.claims.email}`, `$.${config.oauth.claims.name}`, `$.${config.oauth.claims.privileges}`, `$.${config.oauth.claims.privileges}` ] } if (inPredicates.userId) { predicates.statements.push('ud.userId = ?') predicates.binds.push(inPredicates.userId) } if ( inPredicates.username ) { let matchStr = '= ?' if ( inPredicates.usernameMatch && inPredicates.usernameMatch !== 'exact') { matchStr = 'LIKE ?' switch (inPredicates.usernameMatch) { case 'startsWith': inPredicates.username = `${inPredicates.username}%` break case 'endsWith': inPredicates.username = `%${inPredicates.username}` break case 'contains': inPredicates.username = `%${inPredicates.username}%` break } } predicates.statements.push(`ud.username ${matchStr}`) predicates.binds.push(inPredicates.username) } if (inPredicates.privilege) { predicates.statements.push( `JSON_CONTAINS(JSON_EXTRACT(ud.lastClaims, ?), ?) ` ) predicates.binds.push(`$.${config.oauth.claims.privileges}`, JSON.stringify([inPredicates.privilege])) } if (inPredicates.status) { predicates.statements.push('ud.status = ?') predicates.binds.push(inPredicates.status) } if (needsCollectionGrantees) { ctes.push(dbUtils.sqlGrantees({userId: inPredicates.userId, username: inPredicates.username, returnCte: true})) } // CONSTRUCT MAIN QUERY const sql = dbUtils.makeQueryString({ctes, columns, joins, predicates, groupBy, orderBy, format: true}) let [rows] = await dbUtils.pool.query(sql) return (rows) } exports.addOrUpdateUser = async function (writeAction, userId, body, projection, elevate, userObject, svcStatus = {}) { let connection try { // CREATE: userId will be null // REPLACE/UPDATE: userId is not null // Extract or initialize non-scalar properties to separate variables let { collectionGrants, userGroups, ...userFields } = body connection = await dbUtils.pool.getConnection() connection.config.namedPlaceholders = true async function transaction () { await connection.query('START TRANSACTION'); // Process scalar properties let binds if (writeAction === dbUtils.WRITE_ACTION.CREATE) { // INSERT into user_data binds = {...userFields} let sqlInsert = `INSERT INTO user_data ( username, status ) VALUES (:username, :status )` let [result] = await connection.query(sqlInsert, binds) userId = result.insertId } else if (writeAction === dbUtils.WRITE_ACTION.UPDATE || writeAction === dbUtils.WRITE_ACTION.REPLACE) { binds = { userId: userId, values: userFields } if (Object.keys(binds.values).length > 0) { let sqlUpdate = `UPDATE user_data SET :values WHERE userid = :userId` await connection.query(sqlUpdate, binds) } } else { throw new Error('Invalid writeAction') } // Process grants if present if (collectionGrants) { if ( writeAction !== dbUtils.WRITE_ACTION.CREATE ) { // DELETE from collection_grant const binds = [userId] let sqlDeleteCollGrant = 'DELETE FROM collection_grant where userId = ?' if (collectionGrants.length > 0) { const collectionIds = collectionGrants.map(grant => grant.collectionId) sqlDeleteCollGrant += ' and collectionId NOT IN (?)' binds.push(collectionIds) } await connection.query(sqlDeleteCollGrant, binds) } if (collectionGrants.length > 0) { let sqlInsertCollGrant = ` INSERT INTO collection_grant (userId, collectionId, roleId) VALUES ? as new ON DUPLICATE KEY UPDATE roleId = new.roleId` binds = collectionGrants.map( grant => [userId, grant.collectionId, grant.roleId]) // INSERT into collection_grant await connection.query(sqlInsertCollGrant, [binds] ) } } if (userGroups) { if ( writeAction !== dbUtils.WRITE_ACTION.CREATE ) { await connection.query('DELETE FROM user_group_user_map where userId = ?', [userId]) } if (userGroups.length > 0) { await connection.query( `INSERT INTO user_group_user_map (userGroupId, userId) VALUES ?`, [userGroups.map( userGroup => [userGroup, userId])] ) } } // Commit the changes await connection.commit() } await dbUtils.retryOnDeadlock(transaction, svcStatus) } catch (err) { await connection.rollback() throw err } finally { if (typeof connection !== 'undefined') { await connection.release() } } // Fetch the new or updated User for the response try { let row = await _this.getUserByUserId(userId, projection, elevate, userObject) return row } catch (err) { throw ( {status: 500, message: err.message, stack: err.stack} ) } } /** * Create a User * * body UserAssign * projection List Additional properties to include in the response. (optional) * returns List **/ exports.createUser = async function(body, projection, elevate, userObject, svcStatus = {}) { let row = await _this.addOrUpdateUser(dbUtils.WRITE_ACTION.CREATE, null, body, projection, elevate, userObject, svcStatus) return (row) } /** * Delete a User * * projection List Additional properties to include in the response. (optional) * returns UserProjected **/ exports.deleteUser = async function(userId, projection, elevate, userObject) { try { let row = await _this.queryUsers(projection, { userId: userId }, elevate, userObject) let sqlDelete = `DELETE FROM user_data where userId = ?` await dbUtils.pool.query(sqlDelete, [userId]) return (row[0]) } catch (err) { throw ( {status: 500, message: err.message, stack: err.stack} ) } } /** * Return a User * * userId Integer Selects a User * projection List Additional properties to include in the response. (optional) * returns UserProjected **/ exports.getUserByUserId = async function(userId, projection, elevate, userObject) { try { let rows = await _this.queryUsers( projection, { userId: userId }, elevate, userObject) return (rows[0]) } catch(err) { throw ( {status: 500, message: err.message, stack: err.stack} ) } } exports.getUserByUsername = async function(username, projection, elevate, userObject) { try { let rows = await _this.queryUsers( projection, { username: username }, elevate, userObject) return (rows[0]) } catch(err) { throw ( {status: 500, message: err.message, stack: err.stack} ) } } exports.getUsers = async function(username, usernameMatch, privilege, status, projection, elevate, userObject) { try { let rows = await _this.queryUsers( projection, { username, usernameMatch, privilege, status }, elevate, userObject) return (rows) } catch(err) { throw ( {status: 500, message: err.message, stack: err.stack} ) } } exports.replaceUser = async function( userId, body, projection, elevate, userObject, svcStatus = {} ) { const row = await _this.addOrUpdateUser(dbUtils.WRITE_ACTION.REPLACE, userId, body, projection, elevate, userObject, svcStatus) return (row) } exports.updateUser = async function( userId, body, projection, elevate, userObject, svcStatus = {} ) { if (body.status === 'unavailable' && (body.collectionGrants?.length || body.userGroups?.length)) { throw new SmError.UserInconsistentError() } let row = await _this.addOrUpdateUser(dbUtils.WRITE_ACTION.UPDATE, userId, body, projection, elevate, userObject, svcStatus) return (row) } exports.setUserData = async function (userObject, fields) { if (userObject.userId) { await dbUtils.pool.query(`UPDATE user_data SET ? WHERE userId = ?`, [fields, userObject.userId]) return userObject.userId } else { const [result] = await dbUtils.pool.query(`INSERT INTO user_data SET ?`, [{username: userObject.username, ...fields}]) return result.insertId } } exports.addOrUpdateUserGroup = async function ({userGroupId, userGroupFields, userIds, collectionGrants, createdUserId, modifiedUserId, svcStatus = {}}) { // CREATE: userGroupId is falsey // REPLACE/UPDATE: userGroupId is not falsey const isUpdate = !!userGroupId const sqlInsertUserGroup = `INSERT into user_group (name, description, createdUserId, modifiedUserId) VALUES (?,?,?,?)` const sqlUpdateUserGroup = `UPDATE user_group SET ? WHERE userGroupId = ?` const sqlInsertUserGroupUserMap = `INSERT into user_group_user_map (userGroupId, userId) VALUES ?` const sqlDeleteUserGroupUserMap = `DELETE from user_group_user_map WHERE userGroupId = ?` async function transactionFn (connection) { if (Object.keys(userGroupFields).length) { const sql = isUpdate ? sqlUpdateUserGroup : sqlInsertUserGroup const binds = isUpdate ? [userGroupFields, userGroupId] : [userGroupFields.name, userGroupFields.description, createdUserId, modifiedUserId] const [resultUserGroup] = await connection.query(sql, binds) userGroupId = isUpdate ? userGroupId : resultUserGroup.insertId } if (userIds) { if (isUpdate) { await connection.query(sqlDeleteUserGroupUserMap, [userGroupId]) } if (userIds.length) { const binds = userIds.map( userId => [userGroupId, userId]) await connection.query( sqlInsertUserGroupUserMap, [binds] ) } } // Process grants if present if (collectionGrants) { if (isUpdate) { // DELETE from collection_grant const binds = [userGroupId] let sqlDeleteCollGrant = 'DELETE FROM collection_grant where userGroupId = ?' if (collectionGrants.length > 0) { const collectionIds = collectionGrants.map(grant => grant.collectionId) sqlDeleteCollGrant += ' and collectionId NOT IN (?)' binds.push(collectionIds) } await connection.query(sqlDeleteCollGrant, binds) } if (collectionGrants.length > 0) { let sqlInsertCollGrant = ` INSERT INTO collection_grant (userGroupId, collectionId, roleId) VALUES ? as new ON DUPLICATE KEY UPDATE roleId = new.roleId` const binds = collectionGrants.map( grant => [userGroupId, grant.collectionId, grant.roleId]) // INSERT into collection_grant await connection.query(sqlInsertCollGrant, [binds] ) } } return userGroupId } return dbUtils.retryOnDeadlock2({ transactionFn, statusObj: svcStatus }) } exports.queryUserGroups = async function ({projections = [], filters = {}, elevate = false, userObject = {}}) { // query components const columns = [ 'CAST(ug.userGroupId as char) as userGroupId', 'ug.name', 'ug.description' ] const joins = new Set([`user_group ug`]) const groupBy = new Set() const orderBy = ['name'] const predicates = { statements: [], binds: [] } // predicates if (filters.userGroupId) { predicates.statements.push('ug.userGroupId = ?') predicates.binds.push(filters.userGroupId) } // projections if (projections.includes('attributions')) { joins.add('left join user_data udCreated on ug.createdUserId = udCreated.userId') joins.add('left join user_data udModified on ug.modifiedUserId = udModified.userId') columns.push(`json_object( 'created', json_object( 'userId', CAST(ug.createdUserId AS CHAR), 'username', udCreated.username, 'ts', DATE_FORMAT(ug.createdDate, '%Y-%m-%dT%H:%i:%sZ') ), 'modified', json_object( 'userId', CAST(ug.modifiedUserId AS CHAR), 'username', udModified.username, 'ts', DATE_FORMAT(ug.modifiedDate, '%Y-%m-%dT%H:%i:%sZ') ) ) as attributions`) } if (projections.includes('users')) { joins.add('left join user_group_user_map ugu using (userGroupId)') joins.add('left join user_data udUser on ugu.userId = udUser.userId') groupBy.add('ug.userGroupId') columns.push(`CASE WHEN count(ugu.userId)=0 THEN json_array() ELSE cast(concat('[', group_concat(distinct json_object( 'userId', cast(ugu.userId as char), 'username', udUser.username, 'displayName', COALESCE(json_unquote(json_extract( udUser.lastClaims, '$.${config.oauth.claims.name}' )), udUser.username) ) ), ']') as json) END as users`) } if (projections.includes('collections') || projections.includes('collectionGrants')) { joins.add('left join collection_grant cgg using (userGroupId)') joins.add('left join enabled_collection on cgg.collectionId = enabled_collection.collectionId') groupBy.add('ug.userGroupId') columns.push(`CASE WHEN count(cgg.collectionId)=0 THEN json_array() ELSE cast(concat('[', group_concat(distinct json_object( 'roleId', cgg.roleId, 'collection', json_object( 'collectionId', cast(cgg.collectionId as char), 'name', enabled_collection.name )) ), ']') as json) END as collectionGrants`) } const sql = dbUtils.makeQueryString({columns, joins, predicates, groupBy, orderBy, format: true}) const [rows] = await dbUtils.pool.query(sql) return rows } exports.deleteUserGroup = async function({userGroupId}) { const sqlDeleteUserGroup = `DELETE from user_group WHERE userGroupId = ?` await dbUtils.pool.query(sqlDeleteUserGroup, [userGroupId]) return userGroupId } exports.getUserObject = async function (username) { const sql = ` select userId, username, lastAccess, lastClaims, status, (select coalesce(json_objectagg( dt2.collectionId, json_object( 'collectionId', dt2.collectionId, 'name', dt2.name, 'roleId', dt2.roleId, 'grantIds', dt2.grantIds)), json_object()) from (select cg.collectionId, c.name, cg.roleId, json_array(cg.grantId) as grantIds from collection_grant cg inner join enabled_collection c on (cg.collectionId = c.collectionId) left join user_data ud2 on cg.userId = ud2.userId where ud2.userId = ud.userId union select collectionId, name, roleId, grantIds from (select ROW_NUMBER() OVER(PARTITION BY ugu.userId, cg.collectionId ORDER BY cg.roleId desc) as rn, cg.collectionId, c.name, cg.roleId, json_arrayagg(cg.grantId) OVER (PARTITION BY ugu.userId, cg.collectionId, cg.roleId) as grantIds from collection_grant cg inner join enabled_collection c on (cg.collectionId = c.collectionId) left join user_group_user_map ugu on cg.userGroupId = ugu.userGroupId left join user_group ug on ugu.userGroupId = ug.userGroupId left join user_data ud3 on ugu.userId = ud3.userId left join collection_grant cgDirect on (cg.collectionId = cgDirect.collectionId and ugu.userId = cgDirect.userId) where cg.userGroupId is not null and cgDirect.userId is null and ud3.userId = ud.userId) dt where dt.rn = 1) dt2) as grants from user_data ud where ud.username = ?` const [rows] = await dbUtils.pool.query(sql, [username]) return rows[0] } exports.getUserWebPreferences = async function (userId) { const sql = `SELECT webPreferences FROM user_data WHERE userId = ?` const [rows] = await dbUtils.pool.query(sql, [userId]) return rows[0]?.webPreferences } exports.patchUserWebPreferences = async function (userId, preferences) { const sql = `UPDATE user_data SET webPreferences = JSON_MERGE_PATCH(webPreferences, ?) WHERE userId = ?` await dbUtils.pool.query(sql, [JSON.stringify(preferences), userId]) return preferences } ================================================ FILE: api/source/service/migrations/0000.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0001.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0002.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0003.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0004.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0005.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0006.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const fs = require('fs') module.exports = { up: async (pool) => { const migrationName = path.basename(__filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'up') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } }, down: async(pool)=> { try { const migrationName = path.basename(__filename, '.js') logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) const importer = new Importer(pool) const dir = path.join(__dirname, 'sql', migrationName, 'down') const files = await fs.promises.readdir(dir) for (const file of files) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message}) throw (e) } } } ================================================ FILE: api/source/service/migrations/0007.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ 'SET FOREIGN_KEY_CHECKS=0', 'ALTER TABLE stig MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'ALTER TABLE stig_asset_map MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'ALTER TABLE current_group_rule MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'ALTER TABLE current_rev MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'ALTER TABLE revision MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'ALTER TABLE rule_oval_map MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'ALTER TABLE stats_asset_stig MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs', 'SET FOREIGN_KEY_CHECKS=1' ] const downMigration = [ 'SET FOREIGN_KEY_CHECKS=0', 'ALTER TABLE stig MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'ALTER TABLE stig_asset_map MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'ALTER TABLE current_group_rule MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'ALTER TABLE current_rev MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'ALTER TABLE revision MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'ALTER TABLE rule_oval_map MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'ALTER TABLE stats_asset_stig MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_ci', 'SET FOREIGN_KEY_CHECKS=1' ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0008.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ 'ALTER TABLE asset MODIFY COLUMN name VARCHAR(255) NOT NULL', 'ALTER TABLE asset MODIFY COLUMN ip VARCHAR(255) NULL DEFAULT NULL', 'ALTER TABLE asset MODIFY COLUMN mac VARCHAR(255) NULL DEFAULT NULL' ] const downMigration = [ 'ALTER TABLE asset MODIFY COLUMN name VARCHAR(45) NOT NULL', 'ALTER TABLE asset MODIFY COLUMN ip VARCHAR(45) NULL DEFAULT NULL', 'ALTER TABLE asset MODIFY COLUMN mac VARCHAR(17) NULL DEFAULT NULL' ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0009.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ 'ALTER TABLE review ADD COLUMN metadata JSON NOT NULL DEFAULT (JSON_OBJECT())' ] const downMigration = [ 'ALTER TABLE review DROP COLUMN metadata' ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0010.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ ` ALTER TABLE stig_asset_map ADD COLUMN minTs datetime DEFAULT NULL, ADD COLUMN maxTs datetime DEFAULT NULL, ADD COLUMN savedManual int DEFAULT NULL, ADD COLUMN savedAuto int DEFAULT NULL, ADD COLUMN submittedManual int DEFAULT NULL, ADD COLUMN submittedAuto int DEFAULT NULL, ADD COLUMN rejectedManual int DEFAULT NULL, ADD COLUMN rejectedAuto int DEFAULT NULL, ADD COLUMN acceptedManual int DEFAULT NULL, ADD COLUMN acceptedAuto int DEFAULT NULL, ADD COLUMN highCount int DEFAULT NULL, ADD COLUMN mediumCount int DEFAULT NULL, ADD COLUMN lowCount int DEFAULT NULL; `, ` UPDATE stig_asset_map sam INNER JOIN stats_asset_stig sas ON sam.benchmarkId = sas.benchmarkId AND sam.assetId = sas.assetId SET sam.minTs = sas.minTs , sam.maxTs = sas.maxTs , sam.savedManual = sas.savedManual , sam.savedAuto = sas.savedAuto , sam.submittedManual = sas.submittedManual , sam.submittedAuto = sas.submittedAuto , sam.rejectedManual = sas.rejectedManual , sam.rejectedAuto = sas.rejectedAuto , sam.acceptedManual = sas.acceptedManual , sam.acceptedAuto = sas.acceptedAuto , sam.highCount = sas.highCount , sam.mediumCount = sas.mediumCount , sam.lowCount = sas.lowCount `, `DROP TABLE stats_asset_stig` ] const downMigration = [ ` CREATE TABLE stats_asset_stig ( id int NOT NULL AUTO_INCREMENT, assetId int DEFAULT NULL, benchmarkId varchar(255) DEFAULT NULL, minTs datetime DEFAULT NULL, maxTs datetime DEFAULT NULL, savedManual int DEFAULT NULL, savedAuto int DEFAULT NULL, submittedManual int DEFAULT NULL, submittedAuto int DEFAULT NULL, rejectedManual int DEFAULT NULL, rejectedAuto int DEFAULT NULL, acceptedManual int DEFAULT NULL, acceptedAuto int DEFAULT NULL, highCount int DEFAULT NULL, mediumCount int DEFAULT NULL, lowCount int DEFAULT NULL, PRIMARY KEY (id), UNIQUE KEY INDEX_2_2_C (assetId,benchmarkId), KEY FK_STATS_ASSET_STIG_2 (benchmarkId), CONSTRAINT FOREIGN KEY (assetId) REFERENCES asset (assetId) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; `, `ALTER TABLE stats_asset_stig MODIFY benchmarkId VARCHAR(255) COLLATE utf8mb4_0900_as_cs`, ` INSERT INTO stats_asset_stig(benchmarkId, assetId, minTs, maxTs, savedManual, savedAuto, submittedManual, submittedAuto, rejectedManual, rejectedAuto, acceptedManual, acceptedAuto, highCount, mediumCount, lowCount) SELECT benchmarkId, assetId, minTs, maxTs, savedManual, savedAuto, submittedManual, submittedAuto, rejectedManual, rejectedAuto, acceptedManual, acceptedAuto, highCount, mediumCount, lowCount FROM stig_asset_map sam `, ` ALTER TABLE stig_asset_map DROP COLUMN minTs, DROP COLUMN maxTs, DROP COLUMN savedManual, DROP COLUMN savedAuto, DROP COLUMN submittedManual, DROP COLUMN submittedAuto, DROP COLUMN rejectedManual, DROP COLUMN rejectedAuto, DROP COLUMN acceptedManual, DROP COLUMN acceptedAuto, DROP COLUMN highCount, DROP COLUMN mediumCount, DROP COLUMN lowCount; ` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0011.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE review CHANGE COLUMN \`resultComment\` \`detail\` MEDIUMTEXT DEFAULT NULL, CHANGE COLUMN \`actionComment\` \`comment\` MEDIUMTEXT DEFAULT NULL, CHANGE COLUMN \`ts\` \`ts\` DATETIME NOT NULL, CHANGE COLUMN \`rejecttext\` \`statusText\` VARCHAR(255) DEFAULT NULL AFTER \`statusId\`, CHANGE COLUMN \`rejectUserId\` \`statusUserId\` INT DEFAULT NULL AFTER \`statusText\`, ADD COLUMN \`statusTs\` DATETIME DEFAULT NULL AFTER \`statusUserId\`, ADD COLUMN \`touchTs\` DATETIME GENERATED ALWAYS AS (GREATEST(ts,statusTs)) STORED, DROP COLUMN \`actionId\``, `UPDATE review SET statusText = CASE WHEN statusId = 2 THEN statusText ELSE NULL END, statusUserId = userId, statusTs = ts`, `ALTER TABLE review_history CHANGE COLUMN \`resultComment\` \`detail\` MEDIUMTEXT DEFAULT NULL, CHANGE COLUMN \`actionComment\` \`comment\` MEDIUMTEXT DEFAULT NULL, CHANGE COLUMN \`rejecttext\` \`statusText\` VARCHAR(255) DEFAULT NULL AFTER \`statusId\`, CHANGE COLUMN \`rejectUserId\` \`statusUserId\` INT DEFAULT NULL AFTER \`statusText\`, ADD COLUMN \`statusTs\` DATETIME DEFAULT NULL AFTER \`statusUserId\`, ADD COLUMN \`touchTs\` DATETIME DEFAULT NULL, DROP COLUMN \`actionId\``, `UPDATE review_history SET statusText = CASE WHEN statusId = 2 THEN statusText ELSE NULL END, statusUserId = userId, statusTs = ts, touchTs = ts`, 'DROP TABLE IF EXISTS `action`', ] const downMigration = [ 'ALTER TABLE `review` RENAME COLUMN `detail` TO `resultComment`', 'ALTER TABLE `review` RENAME COLUMN `comment` TO `actionComment`', `CREATE TABLE action ( actionId int(11) NOT NULL, api varchar(16) NOT NULL, en varchar(64) NOT NULL, PRIMARY KEY (actionId) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`, "INSERT INTO `action` VALUES (1,'remediate','Remediate'),(2,'mitigate','Mitigate'),(3,'exception','Exception')", 'ALTER TABLE `review` ADD COLUMN `actionId` INT DEFAULT NULL', ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0012.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE collection DROP COLUMN workflow, ADD COLUMN settings JSON NOT NULL AFTER description`, `update collection set settings = JSON_OBJECT( 'fields', JSON_OBJECT( 'comment', JSON_OBJECT( 'enabled', COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.fieldSettings', '$.commentEnabled')), 'findings'), 'required', COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.fieldSettings', '$.commentRequired')), 'findings') ), 'detail', JSON_OBJECT( 'enabled', COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.fieldSettings', '$.detailEnabled')), 'always'), 'required', COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.fieldSettings', '$.detailRequired')), 'always') ) ), 'status', JSON_OBJECT( 'canAccept', CAST(COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.statusSettings', '$.canAccept')), cast(true as json)) as json), 'minAcceptGrant', CAST(COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.statusSettings', '$.minGrant')), 3) as json), 'resetCriteria', COALESCE(JSON_UNQUOTE(JSON_EXTRACT(metadata->>'$.statusSettings', '$.resetCriteria')), 'result') ) )`, `update collection set metadata = JSON_REMOVE(metadata, '$.fieldSettings', '$.statusSettings')` ] const downMigration = [ `update collection set metadata = JSON_INSERT(metadata, '$.fieldSettings', CAST( JSON_OBJECT( 'detailEnabled', JSON_EXTRACT(settings, '$.fields.detail.enabled'), 'detailRequired', JSON_EXTRACT(settings, '$.fields.detail.required'), 'commentEnabled', JSON_EXTRACT(settings, '$.fields.comment.enabled'), 'commentRequired', JSON_EXTRACT(settings, '$.fields.comment.required') ) as char), '$.statusSettings', CAST( JSON_OBJECT( 'canAccept', JSON_EXTRACT(settings, '$.status.canAccept'), 'minGrant', JSON_EXTRACT(settings, '$.status.minAcceptGrant'), 'resetCriteria', JSON_EXTRACT(settings, '$.status.resetCriteria') ) as char) )`, 'ALTER TABLE `collection` DROP COLUMN settings, ADD COLUMN `workflow` VARCHAR(45) DEFAULT "emass"' ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0013.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `CREATE TABLE collection_label ( clId INT NOT NULL AUTO_INCREMENT, collectionId INT NOT NULL, name VARCHAR(36) NOT NULL, description VARCHAR(45) NULL, color VARCHAR(6) NOT NULL, uuid BINARY(16) NOT NULL, PRIMARY KEY (clId), KEY index4 (uuid), UNIQUE KEY colname (collectionId,name), CONSTRAINT fk_collection_label_1 FOREIGN KEY (collectionId) REFERENCES collection (collectionId) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci `, `CREATE TABLE collection_label_asset_map ( claId int NOT NULL AUTO_INCREMENT, assetId int NOT NULL, clId int NOT NULL, PRIMARY KEY (claId), KEY fk_collection_label_asset_map_2 (clId), UNIQUE KEY index4 (assetId,clId), CONSTRAINT fk_collection_label_asset_map_1 FOREIGN KEY (assetId) REFERENCES asset (assetId) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT fk_collection_label_asset_map_2 FOREIGN KEY (clId) REFERENCES collection_label (clId) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci ` ] const downMigration = [ `drop table collection_label_asset_map`, `drop table collection_label` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0014.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE review ADD COLUMN resultEngine JSON DEFAULT NULL, ALGORITHM=INSTANT`, `ALTER TABLE review_history ADD COLUMN resultEngine JSON DEFAULT NULL, ALGORITHM=INSTANT`, `UPDATE review SET resultEngine = JSON_OBJECT('type','scap','product','scc') WHERE autoResult = 1`, `UPDATE review_history SET resultEngine = JSON_OBJECT('type','scap','product','scc') WHERE autoResult = 1` ] const downMigration = [ `ALTER TABLE review DROP COLUMN resultEngine`, `ALTER TABLE review_history DROP COLUMN resultEngine` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0015.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `UPDATE review SET resultEngine = NULL WHERE resultEngine = CAST('{"product":"scc","type":"scap"}' as JSON)`, `UPDATE review_history SET resultEngine = NULL WHERE resultEngine = CAST('{"product":"scc","type":"scap"}' as JSON)`, `ALTER TABLE review ADD COLUMN reProduct VARCHAR(255) GENERATED ALWAYS AS (resultEngine->>"$.product")`, `ALTER TABLE review ADD INDEX idx_reProduct (reProduct)`, `ALTER TABLE review ADD COLUMN reType VARCHAR(255) GENERATED ALWAYS AS (resultEngine->>"$.type")`, `ALTER TABLE review ADD INDEX idx_reType (reType)`, `ALTER TABLE review ADD COLUMN reAuthority VARCHAR(255) GENERATED ALWAYS AS (resultEngine->>"$.overrides[0].authority")`, `ALTER TABLE review ADD INDEX idx_reAuthority (reAuthority)`, `ALTER TABLE review_history ADD COLUMN reProduct VARCHAR(255) GENERATED ALWAYS AS (resultEngine->>"$.product")`, `ALTER TABLE review_history ADD INDEX idx_reProduct (reProduct)`, `ALTER TABLE review_history ADD COLUMN reType VARCHAR(255) GENERATED ALWAYS AS (resultEngine->>"$.type")`, `ALTER TABLE review_history ADD INDEX idx_reType (reType)`, `ALTER TABLE review_history ADD COLUMN reAuthority VARCHAR(255) GENERATED ALWAYS AS (resultEngine->>"$.overrides[0].authority")`, `ALTER TABLE review_history ADD INDEX idx_reAuthority (reAuthority)` ] const downMigration = [ 'ALTER TABLE review DROP COLUMN reProduct', 'ALTER TABLE review DROP COLUMN reType', 'ALTER TABLE review DROP COLUMN reAuthority', 'ALTER TABLE review_history DROP COLUMN reProduct', 'ALTER TABLE review_history DROP COLUMN reType', 'ALTER TABLE review_history DROP COLUMN reAuthority' ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0016.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ ` ALTER TABLE stig_asset_map RENAME COLUMN savedManual TO saved, RENAME COLUMN savedAuto TO savedResultEngine, RENAME COLUMN submittedManual TO submitted, RENAME COLUMN submittedAuto TO submittedResultEngine, RENAME COLUMN rejectedManual to rejected, RENAME COLUMN rejectedAuto TO rejectedResultEngine, RENAME COLUMN acceptedManual TO accepted, RENAME COLUMN acceptedAuto TO acceptedResultEngine, ADD COLUMN notchecked int, ADD COLUMN notcheckedResultEngine int, ADD COLUMN notapplicable int, ADD COLUMN notapplicableResultEngine int, ADD COLUMN pass int, ADD COLUMN passResultEngine int, ADD COLUMN fail int, ADD COLUMN failResultEngine int, ADD COLUMN unknown int, ADD COLUMN unknownResultEngine int, ADD COLUMN error int, ADD COLUMN errorResultEngine int, ADD COLUMN notselected int, ADD COLUMN notselectedResultEngine int, ADD COLUMN informational int, ADD COLUMN informationalResultEngine int, ADD COLUMN fixed int, ADD COLUMN fixedResultEngine int `, ` with source as ( select sa.assetId, sa.benchmarkId, min(review.ts) as minTs, max(review.ts) as maxTs, sum(CASE WHEN review.statusId = 0 THEN 1 ELSE 0 END) as saved, sum(CASE WHEN review.resultEngine is not null and review.statusId = 0 THEN 1 ELSE 0 END) as savedResultEngine, sum(CASE WHEN review.statusId = 1 THEN 1 ELSE 0 END) as submitted, sum(CASE WHEN review.resultEngine is not null and review.statusId = 1 THEN 1 ELSE 0 END) as submittedResultEngine, sum(CASE WHEN review.statusId = 2 THEN 1 ELSE 0 END) as rejected, sum(CASE WHEN review.resultEngine is not null and review.statusId = 2 THEN 1 ELSE 0 END) as rejectedResultEngine, sum(CASE WHEN review.statusId = 3 THEN 1 ELSE 0 END) as accepted, sum(CASE WHEN review.resultEngine is not null and review.statusId = 3 THEN 1 ELSE 0 END) as acceptedResultEngine, sum(CASE WHEN review.resultId=4 and r.severity='high' THEN 1 ELSE 0 END) as highCount, sum(CASE WHEN review.resultId=4 and r.severity='medium' THEN 1 ELSE 0 END) as mediumCount, sum(CASE WHEN review.resultId=4 and r.severity='low' THEN 1 ELSE 0 END) as lowCount, sum(CASE WHEN review.resultId = 1 THEN 1 ELSE 0 END) as notchecked, sum(CASE WHEN review.resultEngine is not null and review.resultId = 1 THEN 1 ELSE 0 END) as notcheckedResultEngine, sum(CASE WHEN review.resultId = 2 THEN 1 ELSE 0 END) as notapplicable, sum(CASE WHEN review.resultEngine is not null and review.resultId = 2 THEN 1 ELSE 0 END) as notapplicableResultEngine, sum(CASE WHEN review.resultId = 3 THEN 1 ELSE 0 END) as pass, sum(CASE WHEN review.resultEngine is not null and review.resultId = 3 THEN 1 ELSE 0 END) as passResultEngine, sum(CASE WHEN review.resultId = 4 THEN 1 ELSE 0 END) as fail, sum(CASE WHEN review.resultEngine is not null and review.resultId = 4 THEN 1 ELSE 0 END) as failResultEngine, sum(CASE WHEN review.resultId = 5 THEN 1 ELSE 0 END) as unknown, sum(CASE WHEN review.resultEngine is not null and review.resultId = 5 THEN 1 ELSE 0 END) as unknownResultEngine, sum(CASE WHEN review.resultId = 6 THEN 1 ELSE 0 END) as error, sum(CASE WHEN review.resultEngine is not null and review.resultId = 6 THEN 1 ELSE 0 END) as errorResultEngine, sum(CASE WHEN review.resultId = 7 THEN 1 ELSE 0 END) as notselected, sum(CASE WHEN review.resultEngine is not null and review.resultId = 7 THEN 1 ELSE 0 END) as notselectedResultEngine, sum(CASE WHEN review.resultId = 8 THEN 1 ELSE 0 END) as informational, sum(CASE WHEN review.resultEngine is not null and review.resultId = 8 THEN 1 ELSE 0 END) as informationalResultEngine, sum(CASE WHEN review.resultId = 9 THEN 1 ELSE 0 END) as fixed, sum(CASE WHEN review.resultEngine is not null and review.resultId = 9 THEN 1 ELSE 0 END) as fixedResultEngine from asset a left join stig_asset_map sa using (assetId) left join current_group_rule cgr using (benchmarkId) left join rule r using (ruleId) left join review on (r.ruleId=review.ruleId and review.assetId=sa.assetId) group by sa.assetId, sa.benchmarkId ) update stig_asset_map sam inner join source on sam.assetId = source.assetId and source.benchmarkId = sam.benchmarkId set sam.minTs = source.minTs, sam.maxTs = source.maxTs, sam.saved = source.saved, sam.savedResultEngine = source.savedResultEngine, sam.submitted = source.submitted, sam.submittedResultEngine = source.submittedResultEngine, sam.rejected = source.rejected, sam.rejectedResultEngine = source.rejectedResultEngine, sam.accepted = source.accepted, sam.acceptedResultEngine = source.acceptedResultEngine, sam.highCount = source.highCount, sam.mediumCount = source.mediumCount, sam.lowCount = source.lowCount, sam.notchecked = source.notchecked, sam.notcheckedResultEngine = source.notcheckedResultEngine, sam.notapplicable = source.notapplicable, sam.notapplicableResultEngine = source.notapplicableResultEngine, sam.pass = source.pass, sam.passResultEngine = source.passResultEngine, sam.fail = source.fail, sam.failResultEngine = source.failResultEngine, sam.unknown = source.unknown, sam.unknownResultEngine = source.unknownResultEngine, sam.error = source.error, sam.errorResultEngine = source.errorResultEngine, sam.notselected = source.notselected, sam.notselectedResultEngine = source.notselectedResultEngine, sam.informational = source.informational, sam.informationalResultEngine = source.informationalResultEngine, sam.fixed = source.fixed, sam.fixedResultEngine = source.fixedResultEngine ` ] const downMigration = [ ` ALTER TABLE stig_asset_map RENAME COLUMN saved TO savedManual, RENAME COLUMN savedResultEngine TO savedAuto, RENAME COLUMN submitted TO submittedManual, RENAME COLUMN submittedResultEngine TO submittedAuto, RENAME COLUMN rejected to rejectedManual, RENAME COLUMN rejectedResultEngine TO rejectedAuto, RENAME COLUMN accepted TO acceptedManual, RENAME COLUMN acceptedResultEngine TO acceptedAuto, DROP COLUMN notchecked , DROP COLUMN notcheckedResultEngine , DROP COLUMN notapplicable , DROP COLUMN notapplicableResultEngine , DROP COLUMN pass , DROP COLUMN passResultEngine , DROP COLUMN fail , DROP COLUMN failResultEngine , DROP COLUMN unknown , DROP COLUMN unknownResultEngine , DROP COLUMN error , DROP COLUMN errorResultEngine , DROP COLUMN notselected , DROP COLUMN notselectedResultEngine , DROP COLUMN informational , DROP COLUMN informationalResultEngine , DROP COLUMN fixed , DROP COLUMN fixedResultEngine ` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0017.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE current_rev DROP COLUMN ovalCount`, `ALTER TABLE revision DROP COLUMN ovalCount`, ` ALTER VIEW v_current_rev AS select rr.revId AS revId, rr.benchmarkId AS benchmarkId, rr.version AS version, rr.release AS \`release\`, rr.benchmarkDate AS benchmarkDate, rr.benchmarkDateSql AS benchmarkDateSql, rr.status AS status, rr.statusDate AS statusDate, rr.description AS description, rr.active AS active, rr.groupCount AS groupCount, rr.ruleCount AS ruleCount, rr.checkCount AS checkCount, rr.fixCount AS fixCount from ( select r.revId AS revId, r.benchmarkId AS benchmarkId, r.version AS version, r.release AS \`release\`, r.benchmarkDate AS benchmarkDate, r.benchmarkDateSql AS benchmarkDateSql, r.status AS status, r.statusDate AS statusDate, r.description AS description, r.active AS active, r.groupCount AS groupCount, r.ruleCount AS ruleCount, r.checkCount AS checkCount, r.fixCount AS fixCount, row_number() OVER ( PARTITION BY r.benchmarkId ORDER BY FIELD(status, 'draft', 'accepted') desc, (r.version + 0) desc, (r.release + 0) desc ) AS rn from revision r) rr where (rr.rn = 1); `, `DROP TABLE IF EXISTS review_reject_string_map`, `DROP TABLE IF EXISTS reject_string`, `DROP TABLE IF EXISTS rev_xml_map`, `DROP TABLE IF EXISTS rule_oval_map` ] const downMigration = [ ` CREATE TABLE review_reject_string_map ( rrsId int(11) NOT NULL AUTO_INCREMENT, assetId int(11) NOT NULL, ruleId varchar(45) NOT NULL, rejectId int(11) NOT NULL, userId int(11) DEFAULT NULL, PRIMARY KEY (rrsId), UNIQUE KEY INDEX2 (assetId,ruleId,rejectId) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci `, ` CREATE TABLE reject_string ( rejectId int(11) NOT NULL AUTO_INCREMENT, shortStr varchar(45) NOT NULL, longStr longtext , PRIMARY KEY (rejectId) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci `, ` CREATE TABLE rule_oval_map ( roId int(11) NOT NULL AUTO_INCREMENT, ruleId varchar(255) NOT NULL, ovalRef varchar(255) NOT NULL, benchmarkId varchar(255) NOT NULL, releaseInfo varchar(255) NOT NULL, PRIMARY KEY (roId), KEY index2 (ruleId), KEY index3 (benchmarkId) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci `, ` CREATE TABLE rev_xml_map ( rxId int(11) NOT NULL AUTO_INCREMENT, revId varchar(255) NOT NULL, xml blob, PRIMARY KEY (rxId), UNIQUE KEY uidx_rxm_revId (revId) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci `, `ALTER TABLE current_rev ADD COLUMN ovalCount int`, `ALTER TABLE revision ADD COLUMN ovalCount int`, ` ALTER VIEW v_current_rev AS select rr.revId AS revId, rr.benchmarkId AS benchmarkId, rr.version AS version, rr.release AS \`release\`, rr.benchmarkDate AS benchmarkDate, rr.benchmarkDateSql AS benchmarkDateSql, rr.status AS status, rr.statusDate AS statusDate, rr.description AS description, rr.active AS active, rr.groupCount AS groupCount, rr.ruleCount AS ruleCount, rr.checkCount AS checkCount, rr.fixCount AS fixCount from ( select r.revId AS revId, r.benchmarkId AS benchmarkId, r.version AS version, r.release AS \`release\`, r.benchmarkDate AS benchmarkDate, r.benchmarkDateSql AS benchmarkDateSql, r.status AS status, r.statusDate AS statusDate, r.description AS description, r.active AS active, r.groupCount AS groupCount, r.ruleCount AS ruleCount, r.checkCount AS checkCount, r.fixCount AS fixCount, (select count(distinct ro.ruleId) from rule_oval_map ro where ro.ruleId IN ( SELECT rgr.ruleId from rev_group_map rg inner join rev_group_rule_map rgr on rg.rgId = rgr.rgId WHERE rg.revId = r.revId)) AS ovalCount, row_number() OVER ( PARTITION BY r.benchmarkId ORDER BY FIELD(status, 'draft', 'accepted') desc, (r.version + 0) desc, (r.release + 0) desc ) AS rn from revision r) rr where (rr.rn = 1) ` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0018.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE stig_asset_map ADD COLUMN maxTouchTs datetime`, `with source as ( select sa.assetId, sa.benchmarkId, max(review.touchTs) as maxTouchTs from asset a left join stig_asset_map sa using (assetId) left join current_group_rule cgr using (benchmarkId) left join review on (cgr.ruleId=review.ruleId and review.assetId=sa.assetId) group by sa.assetId, sa.benchmarkId) update stig_asset_map sam inner join source on sam.assetId = source.assetId and source.benchmarkId = sam.benchmarkId set sam.maxTouchTs = source.maxTouchTs ` ] const downMigration = [ `ALTER TABLE stig_asset_map DROP COLUMN maxTouchTs` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0019.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE revision ADD COLUMN lowCount INT NOT NULL DEFAULT 0, ADD COLUMN mediumCount INT NOT NULL DEFAULT 0, ADD COLUMN highCount INT NOT NULL DEFAULT 0, CHANGE COLUMN ruleCount ruleCount INT GENERATED ALWAYS AS (highCount + mediumCount + lowCount) STORED`, `update revision left join (select rg.revId, SUM(CASE WHEN r.severity = 'high' THEN 1 ELSE 0 END) as highCount, SUM(CASE WHEN r.severity = 'medium' THEN 1 ELSE 0 END) as mediumCount, SUM(CASE WHEN r.severity = 'low' THEN 1 ELSE 0 END) as lowCount from rev_group_map rg left join rev_group_rule_map rgr on rg.rgId = rgr.rgId left join rule r on rgr.ruleId = r.ruleId group by rg.revId) as sq on revision.revId = sq.revId set revision.lowCount = sq.lowCount, revision.mediumCount = sq.mediumCount, revision.highCount = sq.highCount`, `ALTER TABLE current_rev ADD COLUMN lowCount INT NOT NULL DEFAULT 0, ADD COLUMN mediumCount INT NOT NULL DEFAULT 0, ADD COLUMN highCount INT NOT NULL DEFAULT 0, CHANGE COLUMN ruleCount ruleCount INT GENERATED ALWAYS AS (highCount + mediumCount + lowCount) STORED`, `ALTER VIEW v_current_rev AS select rr.revId AS revId, rr.benchmarkId AS benchmarkId, rr.\`version\` AS \`version\`, rr.\`release\` AS \`release\`, rr.benchmarkDate AS benchmarkDate, rr.benchmarkDateSql AS benchmarkDateSql, rr.status AS status, rr.statusDate AS statusDate, rr.description AS description, rr.active AS active, rr.groupCount AS groupCount, rr.ruleCount AS ruleCount, rr.lowCount AS lowCount, rr.mediumCount AS mediumCount, rr.highCount AS highCount, rr.checkCount AS checkCount, rr.fixCount AS fixCount from (select r.revId AS revId, r.benchmarkId AS benchmarkId, r.\`version\` AS \`version\`, r.\`release\` AS \`release\`, r.benchmarkDate AS benchmarkDate, r.benchmarkDateSql AS benchmarkDateSql, r.status AS status, r.statusDate AS statusDate, r.description AS description, r.active AS active, r.groupCount AS groupCount, r.ruleCount AS ruleCount, r.lowCount AS lowCount, r.mediumCount AS mediumCount, r.highCount AS highCount, r.checkCount AS checkCount, r.fixCount AS fixCount, row_number() OVER (PARTITION BY r.benchmarkId ORDER BY field(r.status, 'draft', 'accepted') desc, (r.\`version\` + 0) desc, (r.\`release\` + 0) desc ) AS rn from revision r) rr where (rr.rn = 1)`, `DELETE FROM current_rev`, `INSERT INTO current_rev ( revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount) SELECT revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount FROM v_current_rev`, `CREATE TABLE check_content ( ccId INT NOT NULL AUTO_INCREMENT, digest BINARY(32) GENERATED ALWAYS AS (UNHEX(SHA2(content, 256))) STORED, content TEXT NOT NULL, PRIMARY KEY (ccId), UNIQUE INDEX digest_UNIQUE (digest ASC) VISIBLE)`, 'INSERT INTO check_content (content) SELECT content from `check` c ON DUPLICATE KEY UPDATE content=c.content', 'ALTER TABLE `check` ADD COLUMN ccId INT DEFAULT NULL', 'ALTER TABLE rule ADD COLUMN ccId INT DEFAULT NULL', 'UPDATE `check` SET ccId = (SELECT ccId from check_content WHERE digest = UNHEX(SHA2(`check`.content, 256)))', 'ALTER TABLE `check` DROP COLUMN content', 'ALTER TABLE `check` ADD INDEX (ccId)', `ALTER TABLE \`check\` ADD CONSTRAINT fk_check_1 FOREIGN KEY (ccId) REFERENCES check_content (ccId) ON DELETE RESTRICT ON UPDATE RESTRICT`, 'ALTER TABLE rule ADD INDEX (ccId)', `ALTER TABLE rule ADD CONSTRAINT fk_rule_1 FOREIGN KEY (ccId) REFERENCES check_content (ccId) ON DELETE RESTRICT ON UPDATE RESTRICT`, ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0020.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // if absent here, the query UPDATE rev_group_rule_map runs very slowly `ALTER TABLE rule DROP FOREIGN KEY fk_rule_1`, `ALTER TABLE rule DROP COLUMN ccId, DROP INDEX ccId`, // temp table for rule_fix `drop table if exists temp_rule_fix`, `create temporary table temp_rule_fix( rgrId INT PRIMARY KEY, fixref varchar(255), text TEXT, digest BINARY(32) GENERATED ALWAYS AS (UNHEX(SHA2(text, 256))) STORED)`, `insert into temp_rule_fix(rgrId, fixref, text) select rgrf.rgrId, group_concat(fix.fixId) as fixref, group_concat(fix.text separator '\n\n-----AND-----\n\n') as text from rev_group_rule_fix_map rgrf left join fix using (fixId) group by rgrf.rgrId`, // create and populate fix_text `CREATE TABLE fix_text ( ftId INT NOT NULL AUTO_INCREMENT, digest BINARY(32) GENERATED ALWAYS AS (UNHEX(SHA2(text, 256))) STORED, text TEXT NOT NULL, PRIMARY KEY (ftId), UNIQUE INDEX digest_UNIQUE (digest ASC) VISIBLE)`, `INSERT INTO fix_text (text) SELECT text from temp_rule_fix ON DUPLICATE KEY UPDATE text=temp_rule_fix.text`, // temp table for rule_check `drop table if exists temp_rule_check`, `create temporary table temp_rule_check( rgrId INT PRIMARY KEY, \`system\` varchar(255), content TEXT, digest BINARY(32) GENERATED ALWAYS AS (UNHEX(SHA2(content, 256))) STORED)`, `insert into temp_rule_check(rgrId, \`system\`, content) select rgrc.rgrId, group_concat(rgrc.checkId) as \`system\`, group_concat(cc.content separator '\n\n-----AND-----\n\n') as content from rev_group_rule_check_map rgrc left join \`check\` using (checkId) left join check_content cc using (ccId) group by rgrc.rgrId`, // populate check_content with multi-check content only. Migration 0019 populated single-check content `insert ignore into check_content(content) select content from temp_rule_check where \`system\` like '%,%'`, // update rev_group_rule_map `ALTER TABLE rev_group_rule_map DROP COLUMN checks, DROP COLUMN fixes, DROP COLUMN ccis`, `ALTER TABLE rev_group_rule_map ADD COLUMN \`revId\` varchar(255) AFTER rgrId, ADD COLUMN \`groupId\` varchar(45) AFTER revId, ADD COLUMN \`groupTitle\` varchar(255) AFTER groupId, ADD COLUMN \`groupSeverity\` varchar(45) AFTER groupTitle, ADD COLUMN \`version\` varchar(45), ADD COLUMN \`title\` varchar(1000), ADD COLUMN \`severity\` varchar(45), ADD COLUMN \`weight\` varchar(45), ADD COLUMN \`vulnDiscussion\` text, ADD COLUMN \`falsePositives\` text, ADD COLUMN \`falseNegatives\` text, ADD COLUMN \`documentable\` varchar(45) , ADD COLUMN \`mitigations\` text, ADD COLUMN \`severityOverrideGuidance\` text, ADD COLUMN \`potentialImpacts\` text, ADD COLUMN \`thirdPartyTools\` text, ADD COLUMN \`mitigationControl\` text, ADD COLUMN \`responsibility\` varchar(255) , ADD COLUMN \`iaControls\` varchar(255), ADD COLUMN \`checkSystem\` varchar (255), ADD COLUMN \`checkDigest\` BINARY(32), ADD COLUMN \`fixref\` varchar(255), ADD COLUMN \`fixDigest\` BINARY(32)`, `UPDATE rev_group_rule_map rgr LEFT JOIN rev_group_map rg using (rgId) LEFT JOIN \`group\` g on rg.groupId = g.groupId LEFT JOIN rule r using (ruleId) LEFT JOIN temp_rule_check trc using (rgrId) LEFT JOIN temp_rule_fix trf using (rgrId) SET rgr.revId = rg.revId, rgr.groupId = rg.groupId, rgr.groupTitle = g.title, rgr.groupSeverity = g.severity, rgr.\`version\` = r.\`version\`, rgr.title = r.title, rgr.severity = r.severity, rgr.weight = r.weight, rgr.vulnDiscussion = r.vulnDiscussion, rgr.falsePositives = r.falsePositives, rgr.falseNegatives = r.falseNegatives, rgr.documentable = r.documentable, rgr.mitigations = r.mitigations, rgr.severityOverrideGuidance = r.severityOverrideGuidance, rgr.potentialImpacts = r.potentialImpacts, rgr.thirdPartyTools = r.thirdPartyTools, rgr.mitigationControl = r.mitigationControl, rgr.responsibility = r.responsibility, rgr.iaControls = r.iaControls, rgr.checkSystem = trc.system, rgr.checkDigest = trc.digest, rgr.fixref = trf.fixref, rgr.fixDigest = trf.digest`, `ALTER TABLE rev_group_rule_map DROP FOREIGN KEY FK_rev_group_rule_map_rule`, `ALTER TABLE rev_group_rule_map DROP FOREIGN KEY FK_rev_group_rule_map_rev_group_map`, `ALTER TABLE rev_group_rule_map DROP INDEX uidx_rgrm_rgId_ruleId`, `ALTER TABLE rev_group_rule_map DROP COLUMN rgId`, `ALTER TABLE rev_group_rule_map ADD INDEX index4 (checkDigest ASC) VISIBLE, ADD INDEX index5 (fixDigest ASC) VISIBLE`, `ALTER TABLE rev_group_rule_map ADD UNIQUE INDEX rev_group_rule_UNIQUE (revId ASC, groupId ASC, ruleId ASC) VISIBLE`, `ALTER TABLE rev_group_rule_map ADD CONSTRAINT fk_rev_group_rule_map_1 FOREIGN KEY (revId) REFERENCES revision (revId) ON DELETE CASCADE ON UPDATE CASCADE`, // rev_group_rule_cci_map `CREATE TABLE rev_group_rule_cci_map ( rgrccId INT NOT NULL AUTO_INCREMENT, rgrId INT NOT NULL, cci VARCHAR(20) NOT NULL, PRIMARY KEY (rgrccId), UNIQUE INDEX index2 (rgrId ASC, cci ASC) VISIBLE, INDEX index3 (cci ASC) VISIBLE)`, `INSERT INTO rev_group_rule_cci_map (rgrId, cci) SELECT rgrId, rc.cci FROM rev_group_rule_map rgr left join rule_cci_map rc using (ruleId) WHERE rc.cci is not null`, // drop legacy tables `DROP TABLE rev_group_map`, `DROP TABLE \`group\``, `DROP TABLE rule_cci_map`, `DROP TABLE rule`, `DROP table rev_group_rule_check_map`, `DROP table rev_group_rule_fix_map`, `DROP table \`check\``, `DROP table fix`, `DROP table poam_rar_entry`, // VIEW for current_group_rule `CREATE OR REPLACE VIEW v_current_group_rule AS SELECT cr.benchmarkId ,rgr.groupId ,rgr.groupTitle ,rgr.groupSeverity ,rgr.ruleId ,rgr.\`version\` ,rgr.title ,rgr.severity ,rgr.weight ,rgr.vulnDiscussion ,rgr.falsePositives ,rgr.falseNegatives ,rgr.documentable ,rgr.mitigations ,rgr.severityOverrideGuidance ,rgr.potentialImpacts ,rgr.thirdPartyTools ,rgr.mitigationControl ,rgr.responsibility ,rgr.iaControls ,rgr.checkSystem ,rgr.checkDigest ,rgr.fixref ,rgr.fixDigest from current_rev cr left join rev_group_rule_map rgr using(revId)` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { // await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0021.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `DELETE FROM current_rev`, `INSERT INTO current_rev ( revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount) SELECT revId, benchmarkId, \`version\`, \`release\`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, lowCount, mediumCount, highCount, checkCount, fixCount FROM v_current_rev` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0022.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // table: rule_version_check_digest `drop table if exists rule_version_check_digest`, `CREATE TABLE rule_version_check_digest ( ruleId varchar(255) NOT NULL, \`version\` varchar(45) NOT NULL, checkDigest binary(32) NOT NULL, PRIMARY KEY index1 (ruleId), KEY index_vcd (\`version\`, checkDigest) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`, `INSERT INTO rule_version_check_digest (ruleId, \`version\`, checkDigest) with currentDigest as ( select rgr.ruleId, rgr.version, rgr.checkDigest, rev.benchmarkDateSql, rev.revId, ROW_NUMBER() OVER (PARTITION BY rgr.ruleId ORDER BY rev.benchmarkDateSql DESC) as rowNum from rev_group_rule_map rgr left join revision rev using (revId) where rgr.checkDigest is not null ) select ruleId, \`version\`, checkDigest from currentDigest where rowNum = 1`, // table: review_history `ALTER TABLE review_history ADD COLUMN ruleId VARCHAR(45) DEFAULT NULL`, // table: review `ALTER TABLE review ADD COLUMN \`version\` VARCHAR(45) NOT NULL AFTER reAuthority, ADD COLUMN checkDigest BINARY(32) NOT NULL AFTER \`version\``, // table: temp_current_reviews `drop table if exists temp_current_reviews`, `CREATE TABLE temp_current_reviews ( reviewId INT, \`version\` VARCHAR(45) NOT NULL, checkDigest BINARY(32) NOT NULL, PRIMARY KEY (reviewId))`, `INSERT INTO temp_current_reviews (reviewId, \`version\`, checkDigest) WITH ordered_reviews AS ( SELECT r.reviewId,rvcd.version,rvcd.checkDigest,ROW_NUMBER() OVER (PARTITION BY r.assetId, rvcd.version, rvcd.checkDigest ORDER BY r.touchTs DESC) as rowNum FROM review r INNER JOIN rule_version_check_digest rvcd using (ruleId)) ,active_reviews AS (SELECT reviewId, \`version\`, checkDigest from ordered_reviews where rowNum = 1) SELECT reviewId, \`version\`, checkDigest from active_reviews`, // update the reviews that are current `UPDATE review r INNER JOIN temp_current_reviews t using (reviewId) SET r.version = t.version, r.checkDigest = t.checkDigest`, // index the new columns `ALTER TABLE review ADD INDEX idx_vcd (\`version\`, checkDigest)`, `ALTER TABLE review ADD INDEX idx_asset_vcd (assetId, \`version\`, checkDigest)`, `ALTER TABLE review DROP INDEX INDEX_ASSETID_RULEID`, `drop table if exists temp_current_reviews`, // recalculate metrics `with source as ( select sa.assetId, sa.benchmarkId, min(review.ts) as minTs, max(review.ts) as maxTs, max(review.touchTs) as maxTouchTs, sum(CASE WHEN review.statusId = 0 THEN 1 ELSE 0 END) as saved, sum(CASE WHEN review.resultEngine is not null and review.statusId = 0 THEN 1 ELSE 0 END) as savedResultEngine, sum(CASE WHEN review.statusId = 1 THEN 1 ELSE 0 END) as submitted, sum(CASE WHEN review.resultEngine is not null and review.statusId = 1 THEN 1 ELSE 0 END) as submittedResultEngine, sum(CASE WHEN review.statusId = 2 THEN 1 ELSE 0 END) as rejected, sum(CASE WHEN review.resultEngine is not null and review.statusId = 2 THEN 1 ELSE 0 END) as rejectedResultEngine, sum(CASE WHEN review.statusId = 3 THEN 1 ELSE 0 END) as accepted, sum(CASE WHEN review.resultEngine is not null and review.statusId = 3 THEN 1 ELSE 0 END) as acceptedResultEngine, sum(CASE WHEN review.resultId=4 and cgr.severity='high' THEN 1 ELSE 0 END) as highCount, sum(CASE WHEN review.resultId=4 and cgr.severity='medium' THEN 1 ELSE 0 END) as mediumCount, sum(CASE WHEN review.resultId=4 and cgr.severity='low' THEN 1 ELSE 0 END) as lowCount, sum(CASE WHEN review.resultId = 1 THEN 1 ELSE 0 END) as notchecked, sum(CASE WHEN review.resultEngine is not null and review.resultId = 1 THEN 1 ELSE 0 END) as notcheckedResultEngine, sum(CASE WHEN review.resultId = 2 THEN 1 ELSE 0 END) as notapplicable, sum(CASE WHEN review.resultEngine is not null and review.resultId = 2 THEN 1 ELSE 0 END) as notapplicableResultEngine, sum(CASE WHEN review.resultId = 3 THEN 1 ELSE 0 END) as pass, sum(CASE WHEN review.resultEngine is not null and review.resultId = 3 THEN 1 ELSE 0 END) as passResultEngine, sum(CASE WHEN review.resultId = 4 THEN 1 ELSE 0 END) as fail, sum(CASE WHEN review.resultEngine is not null and review.resultId = 4 THEN 1 ELSE 0 END) as failResultEngine, sum(CASE WHEN review.resultId = 5 THEN 1 ELSE 0 END) as unknown, sum(CASE WHEN review.resultEngine is not null and review.resultId = 5 THEN 1 ELSE 0 END) as unknownResultEngine, sum(CASE WHEN review.resultId = 6 THEN 1 ELSE 0 END) as error, sum(CASE WHEN review.resultEngine is not null and review.resultId = 6 THEN 1 ELSE 0 END) as errorResultEngine, sum(CASE WHEN review.resultId = 7 THEN 1 ELSE 0 END) as notselected, sum(CASE WHEN review.resultEngine is not null and review.resultId = 7 THEN 1 ELSE 0 END) as notselectedResultEngine, sum(CASE WHEN review.resultId = 8 THEN 1 ELSE 0 END) as informational, sum(CASE WHEN review.resultEngine is not null and review.resultId = 8 THEN 1 ELSE 0 END) as informationalResultEngine, sum(CASE WHEN review.resultId = 9 THEN 1 ELSE 0 END) as fixed, sum(CASE WHEN review.resultEngine is not null and review.resultId = 9 THEN 1 ELSE 0 END) as fixedResultEngine from asset a left join stig_asset_map sa using (assetId) left join v_current_group_rule cgr using (benchmarkId) left join rule_version_check_digest rvcd using (ruleId) left join review on (rvcd.version=review.version and rvcd.checkDigest=review.checkDigest and review.assetId=sa.assetId) group by sa.assetId, sa.benchmarkId ) update stig_asset_map sam inner join source on sam.assetId = source.assetId and source.benchmarkId = sam.benchmarkId set sam.minTs = source.minTs, sam.maxTs = source.maxTs, sam.maxTouchTs = source.maxTouchTs, sam.saved = source.saved, sam.savedResultEngine = source.savedResultEngine, sam.submitted = source.submitted, sam.submittedResultEngine = source.submittedResultEngine, sam.rejected = source.rejected, sam.rejectedResultEngine = source.rejectedResultEngine, sam.accepted = source.accepted, sam.acceptedResultEngine = source.acceptedResultEngine, sam.highCount = source.highCount, sam.mediumCount = source.mediumCount, sam.lowCount = source.lowCount, sam.notchecked = source.notchecked, sam.notcheckedResultEngine = source.notcheckedResultEngine, sam.notapplicable = source.notapplicable, sam.notapplicableResultEngine = source.notapplicableResultEngine, sam.pass = source.pass, sam.passResultEngine = source.passResultEngine, sam.fail = source.fail, sam.failResultEngine = source.failResultEngine, sam.unknown = source.unknown, sam.unknownResultEngine = source.unknownResultEngine, sam.error = source.error, sam.errorResultEngine = source.errorResultEngine, sam.notselected = source.notselected, sam.notselectedResultEngine = source.notselectedResultEngine, sam.informational = source.informational, sam.informationalResultEngine = source.informationalResultEngine, sam.fixed = source.fixed, sam.fixedResultEngine = source.fixedResultEngine` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0023.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // table: revision `ALTER TABLE revision ADD COLUMN revisionStr VARCHAR(45) GENERATED ALWAYS AS (concat("V", \`version\`, "R", \`release\`)) AFTER \`release\``, `ALTER TABLE revision ADD INDEX idx_revision_benchmark_revisionStr (benchmarkId ASC, revisionStr ASC) VISIBLE`, // table: collection_rev `drop table if exists collection_rev_map`, `CREATE TABLE collection_rev_map ( crId INT NOT NULL AUTO_INCREMENT, collectionId INT NOT NULL, benchmarkId VARCHAR(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs, revId VARCHAR(255) NOT NULL, PRIMARY KEY index1 (crId), UNIQUE KEY index_collection_benchmark (collectionId, benchmarkId), INDEX index_revId (revId), CONSTRAINT fk_collection_rev_map_1 FOREIGN KEY (collectionId) REFERENCES collection (collectionId) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`, // view: default_rev `DROP VIEW IF EXISTS v_default_rev`, `CREATE VIEW v_default_rev AS SELECT DISTINCT a.collectionId AS collectionId, sa.benchmarkId AS benchmarkId, CASE WHEN crm.revId IS NOT NULL THEN crm.revId ELSE cr.revId END as revId, CASE WHEN crm.revId IS NOT NULL THEN 1 ELSE 0 END as revisionPinned FROM asset a INNER JOIN stig_asset_map sa ON a.assetId = sa.assetId LEFT JOIN current_rev cr ON sa.benchmarkId = cr.benchmarkId LEFT JOIN collection_rev_map crm ON (sa.benchmarkId = crm.benchmarkId AND a.collectionId = crm.collectionId)`, // table: default_rev `DROP TABLE IF EXISTS default_rev`, `CREATE TABLE default_rev ( vdId int NOT NULL AUTO_INCREMENT, collectionId int NOT NULL, benchmarkId varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs NOT NULL, revId varchar(255) NOT NULL, revisionPinned TINYINT NOT NULL, PRIMARY KEY (vdId), UNIQUE KEY index2 (collectionId,benchmarkId), KEY index3 (benchmarkId), KEY index4 (revId), CONSTRAINT fk_default_rev_2 FOREIGN KEY (collectionId) REFERENCES collection (collectionId) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`, `INSERT INTO default_rev(collectionId, benchmarkId, revId, revisionPinned) SELECT collectionId, benchmarkId, revId, revisionPinned FROM v_default_rev`, // view: v_latest_rev `DROP VIEW IF EXISTS v_latest_rev`, `CREATE VIEW v_latest_rev AS select rr.revId AS revId, rr.benchmarkId AS benchmarkId, concat('V',rr.version,'R',rr.release) as revisionStr from ( select r.revId, r.benchmarkId, r.version, r.release, row_number() OVER ( PARTITION BY r.benchmarkId ORDER BY field( r.status, 'draft', 'accepted' ) desc, (r.version + 0) desc, (r.release + 0) desc ) AS rn from revision r ) rr where (rr.rn = 1)`, `ALTER TABLE rev_group_rule_map DROP INDEX index4 , ADD INDEX idx_version_check_digest (\`version\` ASC, checkDigest ASC) VISIBLE` ] const downMigration = [ `drop table if exists collection_rev_map`, `DROP VIEW IF EXISTS v_default_rev` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0024.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // table: collection `ALTER TABLE collection ADD COLUMN state ENUM('enabled','disabled','cloning') NOT NULL, ADD COLUMN createdUserId INT NULL, ADD COLUMN stateDate DATETIME NULL, ADD COLUMN stateUserId INT NULL, ADD COLUMN isEnabled TINYINT GENERATED ALWAYS AS (case when (state = 'enabled') then 1 else null end), DROP INDEX index2, ADD UNIQUE INDEX index2 (name ASC, isEnabled ASC) VISIBLE`, // table: asset `ALTER TABLE asset ADD COLUMN state ENUM('enabled','disabled') NOT NULL, ADD COLUMN stateDate DATETIME NULL, ADD COLUMN stateUserId INT NULL, ADD COLUMN isEnabled TINYINT GENERATED ALWAYS AS (case when (state = 'enabled') then 1 else null end), DROP INDEX INDEX_NAMECOLLECTION, ADD UNIQUE INDEX INDEX_NAME_COLLECTION_ENABLED (name ASC, collectionId ASC, isEnabled ASC) VISIBLE`, // procedure: deleteDisabledCollections `DROP procedure IF EXISTS deleteDisabledCollections` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0025.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // table: collection `ALTER TABLE collection ADD COLUMN isCloning TINYINT GENERATED ALWAYS AS (case when (state = 'cloning') then 1 else null end), ADD UNIQUE INDEX index3 (name ASC, isCloning ASC) VISIBLE`, // procedure: deleteDisabledCollections `DROP procedure IF EXISTS deleteDisabledCollections` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0026.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // table: collection `ALTER TABLE collection CHANGE COLUMN isCloning isNameUnavailable TINYINT GENERATED ALWAYS AS ((case when (state = _utf8mb4'cloning') or (state = _utf8mb4'enabled') then 1 else NULL end)) VIRTUAL ;`, ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0027.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE result ADD COLUMN cklb VARCHAR(32) NOT NULL AFTER ckl`, `UPDATE result set cklb = 'not_reviewed' where resultId in (1, 5, 6, 7, 8)`, `UPDATE result set cklb = 'not_applicable' where resultId = 2`, `UPDATE result set cklb = 'not_a_finding' where resultId in (3, 9)`, `UPDATE result set cklb = 'open' where resultId = 4` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0028.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ // table: review `ALTER TABLE review MODIFY COLUMN statusText VARCHAR(512)`, // table: review_history `ALTER TABLE review_history MODIFY COLUMN statusText VARCHAR(512)` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0029.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `DROP VIEW IF EXISTS v_current_group_rule`, `DROP TABLE IF EXISTS current_group_rule` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0032.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { const [cols] = await pool.query('SHOW COLUMNS FROM stig_asset_map') const colNames = cols.map(row => row.Field) const colStatements = [] if (colNames.includes('resultEngines')) { colStatements.push(`ALTER TABLE stig_asset_map DROP COLUMN resultEngines`) } if (colNames.includes('users')) { colStatements.push(`ALTER TABLE stig_asset_map DROP COLUMN users`) } if (colNames.includes('statusUsers')) { colStatements.push(`ALTER TABLE stig_asset_map DROP COLUMN statusUsers`) } for (const statement of colStatements) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement }) await pool.query(statement) } } module.exports = { up: async pool => { try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', {status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', migrationName, message: e.message }) throw (e) } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0033.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `UPDATE collection SET settings = JSON_SET(settings, '$.history.maxReviews', 15) WHERE JSON_EXTRACT(settings, '$.history.maxReviews') = -1 OR JSON_EXTRACT(settings, '$.history.maxReviews') > 15 ` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0034.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE asset ADD INDEX idx_state (state ASC)`, `ALTER TABLE collection ADD INDEX idx_state (state ASC)` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0035.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE review_history CHANGE COLUMN historyId historyId BIGINT UNSIGNED NOT NULL AUTO_INCREMENT` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0036.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `DROP TABLE IF EXISTS collection_grant_acl`, `DROP TABLE IF EXISTS collection_grant_group_acl`, `DROP TABLE IF EXISTS collection_grant_group`, `DROP TABLE IF EXISTS user_group_user_map`, `DROP TABLE IF EXISTS user_group`, // table: user_group `CREATE TABLE user_group ( userGroupId INT NOT NULL AUTO_INCREMENT, name VARCHAR(255) NOT NULL, description VARCHAR(255) NULL, createdUserId INT NOT NULL, createdDate DATETIME DEFAULT CURRENT_TIMESTAMP, modifiedUserId INT NOT NULL, modifiedDate DATETIME DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, PRIMARY KEY (userGroupId), UNIQUE INDEX idx_name (name ASC), INDEX fk_user_group_1_idx (createdUserId ASC), INDEX fk_user_group_2_idx (modifiedUserId ASC), CONSTRAINT fk_user_group_1 FOREIGN KEY (createdUserId) REFERENCES user_data (userId) ON DELETE RESTRICT ON UPDATE RESTRICT, CONSTRAINT fk_user_group_2 FOREIGN KEY (modifiedUserId) REFERENCES user_data (userId) ON DELETE RESTRICT ON UPDATE RESTRICT ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`, // table user_group_user_map `CREATE TABLE user_group_user_map ( ugumId INT NOT NULL AUTO_INCREMENT, userGroupId INT NOT NULL, userId INT NOT NULL, PRIMARY KEY (ugumId), UNIQUE KEY INDEX_UG_USER (userGroupId,userId), INDEX fk_user_group_map_2_idx (userId ASC) VISIBLE, CONSTRAINT fk_user_group_map_1 FOREIGN KEY (userGroupId) REFERENCES user_group (userGroupId) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT fk_user_group_map_2 FOREIGN KEY (userId) REFERENCES user_data (userId) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`, // table collection_grant `ALTER TABLE collection_grant DROP FOREIGN KEY fk_collection_grant_1`, `ALTER TABLE collection_grant RENAME COLUMN cgId TO grantId`, `ALTER TABLE collection_grant ADD COLUMN userGroupId INT NULL AFTER userId, CHANGE COLUMN userId userId INT NULL`, `ALTER TABLE collection_grant ADD UNIQUE INDEX INDEX_USER_GROUP (userGroupId ASC, collectionId ASC) VISIBLE`, `ALTER TABLE collection_grant CHANGE COLUMN accessLevel roleId INT NOT NULL`, `ALTER TABLE collection_grant ADD CONSTRAINT fk_collection_grant_1 FOREIGN KEY (userId) REFERENCES user_data (userId) ON DELETE CASCADE ON UPDATE CASCADE`, `ALTER TABLE collection_grant ADD CONSTRAINT fk_collection_grant_3 FOREIGN KEY (userGroupId) REFERENCES user_group (userGroupId) ON DELETE CASCADE ON UPDATE CASCADE`, // table collection_grant_acl `CREATE TABLE collection_grant_acl ( cgAclId INT NOT NULL AUTO_INCREMENT, grantId INT NOT NULL, benchmarkId VARCHAR(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs NULL, assetId INT NULL, clId INT NULL, access enum('none','r', 'rw') NOT NULL, modifiedUserId int NULL, modifiedDate datetime DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, PRIMARY KEY (cgAclId), KEY fk_collection_grant_acl_1 (grantId), KEY fk_collection_grant_acl_2 (assetId, benchmarkId), KEY fk_collection_grant_acl_3 (benchmarkId, assetId), KEY fk_collection_grant_acl_4 (clId, benchmarkId), CONSTRAINT fk_collection_grant_acl_1 FOREIGN KEY (grantId) REFERENCES collection_grant (grantId) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT fk_collection_grant_acl_2 FOREIGN KEY (assetId) REFERENCES asset (assetId) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT fk_collection_grant_acl_3 FOREIGN KEY (benchmarkId) REFERENCES stig (benchmarkId) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT fk_collection_grant_acl_4 FOREIGN KEY (clId) REFERENCES collection_label (clId) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT fk_collection_grant_acl_5 FOREIGN KEY (benchmarkId, assetId) REFERENCES stig_asset_map (benchmarkId, assetId) ON DELETE CASCADE ON UPDATE CASCADE )`, // initialize collection_grant_acl `INSERT INTO collection_grant_acl (grantId, assetId, benchmarkId, access, modifiedUserId, modifiedDate) SELECT cg.grantId, sa.assetId, sa.benchmarkId, 'rw', null, null FROM user_stig_asset_map usa left join stig_asset_map sa using (saId) left join asset a on sa.assetId = a.assetId left join collection_grant cg on (a.collectionId = cg.collectionId and usa.userId = cg.userId ) WHERE cg.roleId = 1`, `DROP TABLE user_stig_asset_map` ] const downMigration = [ ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0037.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { const [cols] = await pool.query('SHOW COLUMNS FROM user_data') const colNames = cols.map(row => row.Field) const colStatements = [] if (!colNames.includes('status')) { colStatements.push(`ALTER TABLE user_data ADD COLUMN status ENUM('available', 'unavailable') NOT NULL DEFAULT 'available' AFTER lastClaims`) colStatements.push(`ALTER TABLE user_data ADD INDEX INDEX_status (status ASC)`) } if (!colNames.includes('statusDate')) { colStatements.push(`ALTER TABLE user_data ADD COLUMN statusDate DATETIME NOT NULL DEFAULT (created) AFTER status`) } if (!colNames.includes('statusUser')) { colStatements.push(`ALTER TABLE user_data ADD COLUMN statusUser INT NULL DEFAULT NULL AFTER statusDate`) } if (colStatements.length === 0) { logger.writeInfo('mysql', 'migration', {status: 'skipped', name: migrationName }) return } for (const statement of colStatements) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement }) await pool.query(statement) } } module.exports = { up: async pool => { try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', {status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', migrationName, message: e.message }) throw (e) } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0038.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { // Check if columns exist before adding them const [cols] = await pool.query('SHOW COLUMNS FROM stig_asset_map') const colNames = cols.map(row => row.Field) // Define statements for adding columns const colStatements = [] if (!colNames.includes('assessedHighCount')) { colStatements.push(`ALTER TABLE stig_asset_map ADD COLUMN assessedHighCount INT DEFAULT NULL`) } if (!colNames.includes('assessedMediumCount')) { colStatements.push(`ALTER TABLE stig_asset_map ADD COLUMN assessedMediumCount INT DEFAULT NULL`) } if (!colNames.includes('assessedLowCount')) { colStatements.push(`ALTER TABLE stig_asset_map ADD COLUMN assessedLowCount INT DEFAULT NULL`) } // Execute column addition statements for (const statement of colStatements) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement }) await pool.query(statement) } // Update the columns with calculated values const updateStatement = ` UPDATE stig_asset_map sam JOIN ( SELECT sa.assetId, sa.benchmarkId, sum(CASE WHEN (review.resultId in (2,3,4)) and rgr.severity='high' THEN 1 ELSE 0 END) as assessedHighCount, sum(CASE WHEN (review.resultId in (2,3,4)) and rgr.severity='medium' THEN 1 ELSE 0 END) as assessedMediumCount, sum(CASE WHEN (review.resultId in (2,3,4)) and rgr.severity='low' THEN 1 ELSE 0 END) as assessedLowCount FROM asset a left join stig_asset_map sa using (assetId) left join default_rev dr on (sa.benchmarkId = dr.benchmarkId and a.collectionId = dr.collectionId) left join rev_group_rule_map rgr on dr.revId = rgr.revId left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId left join review on (rvcd.version=review.version and rvcd.checkDigest=review.checkDigest and review.assetId=sa.assetId) inner join collection c on c.collectionId = a.collectionId WHERE a.state = "enabled" and c.state = "enabled" GROUP BY sa.assetId, sa.benchmarkId ) src ON sam.assetId = src.assetId AND sam.benchmarkId = src.benchmarkId SET sam.assessedHighCount = src.assessedHighCount, sam.assessedMediumCount = src.assessedMediumCount, sam.assessedLowCount = src.assessedLowCount` logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement: updateStatement }) await pool.query(updateStatement) } module.exports = { up: async pool => { try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', {status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', migrationName, message: e.message }) throw (e) } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0039.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const defaultImportOptions = { autoStatus: 'saved', unreviewed: 'commented', unreviewedCommented: 'informational', emptyDetail: 'replace', emptyComment: 'ignore', allowCustom: true } const schemaEnums = { autoStatus: ["null", 'saved', 'submitted', 'accepted'], unreviewed: ['never', 'commented', 'always'], unreviewedCommented: ['notchecked', 'informational'], emptyDetail: ['ignore', 'import', 'replace'], emptyComment: ['ignore', 'import', 'replace'], allowCustom: [true, false] } const isValidImportOptions = (options) => { if (!options || typeof options !== 'object') return false const allowedKeys = Object.keys(defaultImportOptions) // contain only the allowed keys const optionKeys = Object.keys(options) if (optionKeys.length !== allowedKeys.length) return false if (!optionKeys.every(key => allowedKeys.includes(key))) return false // Each value must be valid for its key for (const key of allowedKeys) { const allowedValues = schemaEnums[key] if (!allowedValues.includes(options[key])) return false } return true } const upFn = async (pool, migrationName) => { const connection = await pool.getConnection() const collectionsData = await connection.query(`SELECT c.collectionId, c.settings, c.metadata FROM collection c`) const collections = collectionsData[0] const updates = [] for(const { collectionId, metadata, } of collections) { let importOptions = metadata?.importOptions if (typeof importOptions === 'string') { try { importOptions = JSON.parse(importOptions) } catch (e) { importOptions = null // will be replaced with defaultImportOptions } } const finalOptions = isValidImportOptions(importOptions) ? importOptions : defaultImportOptions updates.push({ collectionId, importOptions: finalOptions }) } logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, updates: updates.length }) // get connection await connection.query(`SET @json = ?`, [JSON.stringify(updates)]) await connection.query(`UPDATE collection c LEFT JOIN JSON_TABLE(@json, '$[*]' COLUMNS( collectionId INT PATH '$.collectionId', importOptions JSON PATH '$.importOptions' )) as jt on c.collectionId = jt.collectionId SET c.settings = JSON_SET(c.settings, '$.importOptions', jt.importOptions), c.metadata = JSON_REMOVE(c.metadata, '$.importOptions')`) await connection.release() } module.exports = { up: async pool => { try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', {status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', migrationName, message: e.message }) throw (e) } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0040.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { const connection = await pool.getConnection() const [collectionsData] = await connection.query(` SELECT collectionId, settings FROM collection `) const updates = [] for (const { collectionId, settings } of collectionsData) { const legacyValue = settings.importOptions.autoStatus updates.push({ collectionId, autoStatus: { fail: legacyValue, notapplicable: legacyValue, pass: legacyValue } }) } logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, updates: updates.length, data: updates }) await connection.query(`SET @json = ?`, [JSON.stringify(updates)]) const updateStatement = ` UPDATE collection c LEFT JOIN JSON_TABLE(@json, '$[*]' COLUMNS( collectionId INT PATH '$.collectionId', autoStatus JSON PATH '$.autoStatus' )) as jt ON c.collectionId = jt.collectionId SET c.settings = JSON_SET(c.settings, '$.importOptions.autoStatus', jt.autoStatus) ` logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement: updateStatement }) await connection.query(updateStatement) await connection.release() } module.exports = { up: async pool => { try { logger.writeInfo('mysql', 'migration', { status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', { status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', { status: 'error', migrationName, message: e.message }) throw e } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0041.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { const connection = await pool.getConnection() // drop indexes that use virtual isEnabled column // check if the indexes exist before dropping them const [assetIndexExists] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'asset' AND INDEX_NAME = 'INDEX_NAME_COLLECTION_ENABLED'`) const [collectionIndexExists] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'collection' AND INDEX_NAME = 'index2'`) // If the indexes exist, drop them if( assetIndexExists[0].count > 0) { const dropEnabledAssetIndex = `ALTER TABLE asset DROP INDEX INDEX_NAME_COLLECTION_ENABLED` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: dropEnabledAssetIndex }) await connection.query(dropEnabledAssetIndex) } if( collectionIndexExists[0].count > 0) { const dropEnabledCollectionIndex = `ALTER TABLE collection DROP INDEX index2` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: dropEnabledCollectionIndex }) await connection.query(dropEnabledCollectionIndex) } // Drop old virtual isEnabled column on 'asset' if it exists const [assetColumnsDrop] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'asset' AND COLUMN_NAME = 'isEnabled'`) if (assetColumnsDrop[0].count > 0) { const dropEnabledAssetColumn = `ALTER TABLE asset DROP COLUMN isEnabled` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: dropEnabledAssetColumn }) await connection.query(dropEnabledAssetColumn) } // Drop old virtual isEnabled column on 'collection' if it exists const [collectionColumnsDrop] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'collection' AND COLUMN_NAME = 'isEnabled'`) if (collectionColumnsDrop[0].count > 0) { const dropEnabledCollectionColumn = `ALTER TABLE collection DROP COLUMN isEnabled` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: dropEnabledCollectionColumn }) await connection.query(dropEnabledCollectionColumn) } // Check if 'isEnabled' exists on 'asset' const [assetColumns] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'asset' AND COLUMN_NAME = 'isEnabled'`) // If it does not exist, create the new stored column if (assetColumns[0].count === 0) { const createEnabledAssetColumn = ` ALTER TABLE asset ADD COLUMN isEnabled TINYINT GENERATED ALWAYS AS (CASE WHEN state = 'enabled' THEN 1 ELSE NULL END) STORED` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: createEnabledAssetColumn }) await connection.query(createEnabledAssetColumn) } // Check if 'isEnabled' exists on 'collection' const [collectionColumns] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'collection' AND COLUMN_NAME = 'isEnabled'`) // If it does not exist, create the new stored column if (collectionColumns[0].count === 0) { const createEnabledCollectionColumn = ` ALTER TABLE collection ADD COLUMN isEnabled TINYINT GENERATED ALWAYS AS (CASE WHEN state = 'enabled' THEN 1 ELSE NULL END) STORED` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: createEnabledCollectionColumn }) await connection.query(createEnabledCollectionColumn) } // recreate indexes for new stored isEnabled column const [assetIndexes] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'asset' AND INDEX_NAME = 'INDEX_NAME_COLLECTION_ENABLED'`) // If the index does not exist, create it if (assetIndexes[0].count === 0) { const createEnabledAssetIndex = `ALTER TABLE asset ADD UNIQUE INDEX INDEX_NAME_COLLECTION_ENABLED (name, collectionId, isEnabled)` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: createEnabledAssetIndex }) await connection.query(createEnabledAssetIndex) } const [collectionIndexes] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'collection' AND INDEX_NAME = 'index2'`) if (collectionIndexes[0].count === 0) { const createEnabledCollectionIndex = `ALTER TABLE collection ADD UNIQUE INDEX index2 (name, isEnabled)` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: createEnabledCollectionIndex }) await connection.query(createEnabledCollectionIndex) } // create or replace new views const createEnabledAssetView = `CREATE OR REPLACE VIEW enabled_asset AS SELECT * FROM asset WHERE state = 'enabled'` const createEnabledCollectionView = `CREATE OR REPLACE VIEW enabled_collection AS SELECT * FROM collection WHERE state = 'enabled'` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: createEnabledAssetView }) await connection.query(createEnabledAssetView) logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: createEnabledCollectionView }) await connection.query(createEnabledCollectionView) await connection.release() } module.exports = { up: async (pool) => { try { logger.writeInfo('mysql', 'migration', { status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', { status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', { status: 'error', migrationName, message: e.message }) throw e } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0042.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `ALTER TABLE revision ADD COLUMN marking VARCHAR(10) DEFAULT NULL AFTER statusDate`, `ALTER TABLE current_rev ADD COLUMN marking VARCHAR(10) DEFAULT NULL AFTER statusDate`, `ALTER VIEW v_current_rev AS select rr.revId AS revId, rr.benchmarkId AS benchmarkId, rr.\`version\` AS \`version\`, rr.\`release\` AS \`release\`, rr.benchmarkDate AS benchmarkDate, rr.benchmarkDateSql AS benchmarkDateSql, rr.status AS status, rr.statusDate AS statusDate, rr.marking AS marking, rr.description AS description, rr.active AS active, rr.groupCount AS groupCount, rr.ruleCount AS ruleCount, rr.lowCount AS lowCount, rr.mediumCount AS mediumCount, rr.highCount AS highCount, rr.checkCount AS checkCount, rr.fixCount AS fixCount from (select r.revId AS revId, r.benchmarkId AS benchmarkId, r.\`version\` AS \`version\`, r.\`release\` AS \`release\`, r.benchmarkDate AS benchmarkDate, r.benchmarkDateSql AS benchmarkDateSql, r.status AS status, r.statusDate AS statusDate, r.marking AS marking, r.description AS description, r.active AS active, r.groupCount AS groupCount, r.ruleCount AS ruleCount, r.lowCount AS lowCount, r.mediumCount AS mediumCount, r.highCount AS highCount, r.checkCount AS checkCount, r.fixCount AS fixCount, row_number() OVER (PARTITION BY r.benchmarkId ORDER BY field(r.status, 'draft', 'accepted') desc, (r.\`version\` + 0) desc, (r.\`release\` + 0) desc ) AS rn from revision r) rr where (rr.rn = 1)` ] const downMigration = [ `ALTER TABLE revision DROP COLUMN marking`, `ALTER TABLE current_rev DROP COLUMN marking` ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0043.js ================================================ const logger = require('../../utils/logger') const path = require('node:path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { const connection = await pool.getConnection() // webPreferences column exists on user_data const [cols] = await connection.query(` SELECT COUNT(*) AS count FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = 'user_data' AND COLUMN_NAME = 'webPreferences'`) // If it does not exist, create the webPreferences column if (cols[0].count === 0) { const addWebPreferencesColumn = ` ALTER TABLE user_data ADD COLUMN webPreferences JSON NOT NULL DEFAULT ('{"darkMode": true, "lastWhatsNew": "2000-01-01"}')` logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: addWebPreferencesColumn }) await connection.query(addWebPreferencesColumn) } await connection.release() } module.exports = { up: async (pool) => { try { logger.writeInfo('mysql', 'migration', { status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', { status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', { status: 'error', migrationName, message: e.message }) throw e } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0044.js ================================================ const Importer = require('./lib/mysql-import.js') const logger = require('../../utils/logger') const path = require('path') const migrationName = path.basename(__filename, '.js') const upFn = async (pool, migrationName) => { const connection = await pool.getConnection() try { // Truncate tables to remove all existing CCI data const truncateCci = 'TRUNCATE TABLE `cci`' logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: 'TRUNCATE cci' }) await connection.query(truncateCci) const truncateCciRefMap = 'TRUNCATE TABLE `cci_reference_map`' logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, statement: 'TRUNCATE cci_reference_map' }) await connection.query(truncateCciRefMap) // Import Rev 5 CCI data from the current directory const sqlFile = path.join(__dirname, 'sql', 'current', '31-rev5-cci-data.sql') logger.writeInfo('mysql', 'migration', { status: 'running', name: migrationName, file: '31-rev5-cci-data.sql' }) const importer = new Importer(pool) await importer.import(sqlFile) } finally { await connection.release() } } module.exports = { up: async (pool) => { try { logger.writeInfo('mysql', 'migration', { status: 'start', direction: 'up', migrationName }) await upFn(pool, migrationName) logger.writeInfo('mysql', 'migration', { status: 'finish', migrationName }) } catch (e) { logger.writeError('mysql', 'migration', { status: 'error', migrationName, message: e.message }) throw e } }, down: () => {} } ================================================ FILE: api/source/service/migrations/0045.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `DROP TABLE IF EXISTS job_task_map`, `DROP TABLE IF EXISTS task_output`, `DROP TABLE IF EXISTS task`, `DROP TABLE IF EXISTS job_run`, `DROP TABLE IF EXISTS job`, // table to hold each maintenance task, its name and its stored procedure command `CREATE TABLE task ( taskId INT NOT NULL AUTO_INCREMENT, name VARCHAR(45) NOT NULL, description VARCHAR(255) NULL, command VARCHAR(255) NOT NULL, PRIMARY KEY (taskId), UNIQUE INDEX idx_task_name (name) )`, `INSERT INTO task (taskId, name, description, command) VALUES (1, 'WipeDeletedObjects', 'Wipe deleted collections and assets and their associated reviews', 'delete_disabled()'), (2, 'DeleteUnmappedReviews', 'Delete reviews that no longer match any rule in the system', 'delete_unmapped("system")'), (3, 'DeleteUnmappedAssetReviews', 'Delete reviews that no longer match an asset''s assigned rules', 'delete_unmapped("asset")'), (4, 'AnalyzeReviewTables', 'Analyze database tables for performance', 'analyze_tables(JSON_ARRAY("reviews", "review_history"))') `, // table to hold each maintenance job, with its name, metadata user attributes // users who have created or updated a job must exist in user_data table `CREATE TABLE job ( jobId INT NOT NULL AUTO_INCREMENT, name VARCHAR(45) NOT NULL, description VARCHAR(255) NULL, createdBy INT NULL, updatedBy INT NULL, created TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), updated TIMESTAMP(3) NULL DEFAULT NULL ON UPDATE CURRENT_TIMESTAMP(3), PRIMARY KEY (jobId), UNIQUE INDEX idx_job_name (name), CONSTRAINT fk_job_updatedBy FOREIGN KEY (updatedBy) REFERENCES user_data(userId) ON DELETE RESTRICT, CONSTRAINT fk_job_createdBy FOREIGN KEY (createdBy) REFERENCES user_data(userId) ON DELETE RESTRICT )`, // initial jobs with fixed jobIds for reference in code `INSERT INTO job ( jobId, name, description, createdBy) VALUES (1, 'Cleanup Database', 'Wipe deleted collections and assets and their associated reviews', null), (2, 'Delete Unmapped Reviews', 'Delete reviews that no longer match any rule in the system', null), (3, 'Delete Unmapped Asset Reviews', 'Delete reviews that no longer match an asset''s assigned rules', null) `, `ALTER TABLE job AUTO_INCREMENT = 100`, // mapping jobs to tasks // if a job or task is deleted, the mapping is deleted too // defines the execution order (via jtId insertion order) `CREATE TABLE job_task_map ( jtId INT NOT NULL AUTO_INCREMENT, jobId INT NOT NULL, taskId INT NOT NULL, created TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), updated TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3) ON UPDATE CURRENT_TIMESTAMP(3), PRIMARY KEY (jtId), CONSTRAINT fk_job_task_jobId FOREIGN KEY (jobId) REFERENCES job(jobId) ON DELETE CASCADE, CONSTRAINT fk_job_task_taskId FOREIGN KEY (taskId) REFERENCES task(taskId) ON DELETE CASCADE )`, // pre map initial jobs to tasks `INSERT INTO job_task_map (jtId, jobId, taskId) VALUES (1, 1, 1), (2, 1, 4), (3, 2, 2), (4, 2, 4), (5, 3, 3), (6, 3, 4) `, `ALTER TABLE job_task_map AUTO_INCREMENT = 1000`, // table to hold each run of a job, its state and timestamps `CREATE TABLE job_run ( jrId INT NOT NULL AUTO_INCREMENT, jobId INT NOT NULL, runId BINARY(16) NOT NULL, state VARCHAR(255) NULL, created TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), updated TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3) ON UPDATE CURRENT_TIMESTAMP(3), PRIMARY KEY (jrId), UNIQUE INDEX idx_job_run_runId (runId), CONSTRAINT fk_job_run_jobId FOREIGN KEY (jobId) REFERENCES job(jobId) ON DELETE CASCADE )`, `DROP TABLE IF EXISTS task_output`, // captures output from stored procedures // runid must exist in job_run table // taskid must match a task `CREATE TABLE task_output ( seq INT NOT NULL AUTO_INCREMENT, ts TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), runId BINARY(16) NULL, taskId INT NULL, type VARCHAR(45) NOT NULL, message VARCHAR(255) NOT NULL, PRIMARY KEY (seq), CONSTRAINT fk_task_output_runId FOREIGN KEY (runId) REFERENCES job_run(runId) ON DELETE CASCADE, CONSTRAINT fk_task_output_taskId FOREIGN KEY (taskId) REFERENCES task(taskId) ON DELETE CASCADE )`, `DROP procedure IF EXISTS run_job`, // takes in a jobId and optional runId // cursor is a pointer that can iterate through rows for the parameter in_jobId, get all task names and commands mapped to that job in order of execution // declare continue: : when the cursor has no more rows, set v_done to true // declare exit: if any SQL exception occurs, log it and set the job run state to failed // @runId is the binary(16) uuid for this job run it could be null so we can generate one // @taskId is the current task being executed, null if no task is running // INSERT INTO job_run = create new job run record with the runId // OPEN curr == -- opening the cursor which contains all tasks info for this job // FETCH curr -- pulls a single task from the cursor // SET @sql = CONCAT('CALL ', v_currentCommand); -- create the sql to run the task's stored procedure command // SET @taskId = NULL; -- clear the current task id and log task end `CREATE PROCEDURE run_job( IN in_jobId INT, IN in_runIdStr VARCHAR(36) ) main:BEGIN DECLARE v_done INT DEFAULT FALSE; DECLARE v_jrId INT; DECLARE v_numTasks INT; DECLARE v_currentTaskId INT; DECLARE v_currentTaskName VARCHAR(255); DECLARE v_currentCommand VARCHAR(255); DECLARE v_currentTaskNum INT DEFAULT 0; DECLARE v_param_string TEXT; DECLARE cur CURSOR FOR SELECT jt.taskId, t.name, t.command FROM job_task_map jt inner join task t on (jt.taskId = t.taskId) WHERE jobId = in_jobId ORDER BY jtId ASC; DECLARE CONTINUE HANDLER FOR NOT FOUND SET v_done = TRUE; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error', concat('code: ', err_code, ' message: ', err_msg)); UPDATE job_run SET state = 'failed' WHERE runId = @runId; END; -- setup runtime context (null if running outside a job) IF in_runIdStr IS NOT NULL AND in_runIdStr REGEXP '^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$' THEN SET @runId = UUID_TO_BIN(in_runIdStr, 1); ELSE SET @runId = UUID_TO_BIN(UUID(), 1); END IF; SET @taskId = NULL; INSERT INTO job_run(jobId, runId, state) VALUES (in_jobId, @runId, 'running'); CALL task_output('info', concat('run started for jobId ', in_jobId)); -- Get the number of tasks for the job SELECT COUNT(*) INTO v_numTasks FROM job_task_map WHERE jobId = in_jobId; IF v_numTasks = 0 THEN CALL task_output('error', 'no tasks to run'); UPDATE job_run SET state = 'failed' WHERE runId = @runId AND state = 'running'; LEAVE main; -- No tasks to run, exit the procedure END IF; OPEN cur; read_loop: LOOP FETCH cur INTO v_currentTaskId, v_currentTaskName, v_currentCommand; IF v_done THEN LEAVE read_loop; END IF; SET v_currentTaskNum = v_currentTaskNum + 1; SET @sql = CONCAT('CALL ', v_currentCommand); PREPARE stmt_run_job FROM @sql; CALL task_output('info', concat('Beginning task ', v_currentTaskName, ' (', v_currentTaskNum, '/', v_numTasks, ')')); SET @taskId = v_currentTaskId; EXECUTE stmt_run_job; DEALLOCATE PREPARE stmt_run_job; SET @taskId = NULL; CALL task_output('info', concat('Ended task ', v_currentTaskName, ' (', v_currentTaskNum, '/', v_numTasks, ')')); END LOOP; CLOSE cur; -- === Post-task-loop logic === UPDATE job_run SET state = 'completed' WHERE runId = @runId AND state = 'running'; CALL task_output('info', concat('run completed for jobId ', in_jobId)); END`, `DROP procedure IF EXISTS task_output`, // write a message to the task_output table // if in_message is null, set it to empty string // insert into task_output = -- INSERT a row into task_output(runId, taskId, type, message) using: runId = @runId (set by run_job) taskId = @taskId (set around each task) type = in_type (e.g., 'info', 'error') message= in_message `CREATE PROCEDURE task_output( IN in_type VARCHAR(45), IN in_message VARCHAR(255) ) BEGIN IF in_message IS NULL THEN SET in_message = ''; END IF; insert into task_output (runId, taskId, type, message) values (@runId, @taskId, in_type, in_message); END`, // deleted disabled objects in batches, uses the variables to "page"? through deletes // uses temporary tables to hold ids to delete `DROP PROCEDURE IF EXISTS delete_disabled`, `CREATE PROCEDURE delete_disabled() BEGIN DECLARE v_incrementValue INT DEFAULT 10000; DECLARE v_curMinId BIGINT DEFAULT 1; DECLARE v_curMaxId BIGINT DEFAULT v_incrementValue + 1; DECLARE v_numCollectionIds INT; DECLARE v_numAssetIds INT; DECLARE v_numReviewIds INT; DECLARE v_numHistoryIds INT; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error', concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info','task started'); drop temporary table if exists t_collectionIds; create temporary table t_collectionIds (seq INT AUTO_INCREMENT PRIMARY KEY) select collectionId from collection where isEnabled is null; select max(seq) into v_numCollectionIds from t_collectionIds; CALL task_output('info', concat('found ', ifnull(v_numCollectionIds, 0), ' collections to delete')); drop temporary table if exists t_assetIds; create temporary table t_assetIds (seq INT AUTO_INCREMENT PRIMARY KEY) select assetId from asset where isEnabled is null or collectionId in (select collectionId from t_collectionIds); select max(seq) into v_numAssetIds from t_assetIds; CALL task_output('info', concat('found ', ifnull(v_numAssetIds, 0), ' assets to delete')); drop temporary table if exists t_reviewIds; create temporary table t_reviewIds (seq INT AUTO_INCREMENT PRIMARY KEY) select reviewId from review where assetId in (select assetId from t_assetIds); select max(seq) into v_numReviewIds from t_reviewIds; CALL task_output('info', concat('found ', ifnull(v_numReviewIds, 0), ' reviews to delete')); drop temporary table if exists t_historyIds; create temporary table t_historyIds (seq INT AUTO_INCREMENT PRIMARY KEY) select historyId from review_history where reviewId in (select reviewId from t_reviewIds); select max(seq) into v_numHistoryIds from t_historyIds; CALL task_output('info', concat('found ', ifnull(v_numHistoryIds, 0), ' history records to delete')); IF v_numHistoryIds > 0 THEN CALL task_output('info', concat('deleting ', v_numHistoryIds, ' history records')); REPEAT delete from review_history where historyId IN ( select historyId from t_historyIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_historyIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numReviewIds > 0 THEN CALL task_output('info', concat('deleting ', v_numReviewIds, ' reviews')); REPEAT delete from review where reviewId IN ( select reviewId from t_reviewIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_reviewIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numAssetIds > 0 THEN CALL task_output('info', concat('deleting ', v_numAssetIds, ' assets')); REPEAT delete from asset where assetId IN ( select assetId from t_assetIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_assetIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numCollectionIds > 0 THEN CALL task_output('info', concat('deleting ', v_numCollectionIds, ' collections')); REPEAT delete from collection where collectionId IN ( select collectionId from t_collectionIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_collectionIds; CALL task_output('info', 'task finished'); END`, `DROP PROCEDURE IF EXISTS delete_unmapped`, // deletes unmapped reviews in batches // deletes by system and asset // system is reviews that dont match a rule in rev_group_rule_map // asset is reviews that dont match a rule assigned to the asset via rev_group_rule_map, revision, and stig_asset_map // in_context is a param that is either 'system' or 'asset' // IF in_context = 'system' insert into t_reviewIds the reviewIds to delete // IF v_numReviewIds > 0 THEN -- if there are reviews to delete, delete their history first, then the reviews // IF v_numHistoryIds > 0 THEN -- if there are history records to delete, delete them first // REPEAT delete from review_history where historyId IN ( select ... -- delete in batches until no more rows deleted(do while loop basically) `CREATE PROCEDURE delete_unmapped(IN in_context VARCHAR(255)) BEGIN DECLARE v_numReviewIds INT; DECLARE v_numHistoryIds INT; DECLARE v_incrementValue INT DEFAULT 10000; DECLARE v_curMinId BIGINT DEFAULT 1; DECLARE v_curMaxId BIGINT DEFAULT v_incrementValue + 1; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error',concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info', 'task started'); drop temporary table if exists t_reviewIds; create temporary table t_reviewIds (seq INT AUTO_INCREMENT PRIMARY KEY, reviewId INT); -- Context-specific logic IF in_context = 'system' THEN INSERT into t_reviewIds (reviewId) select r.reviewId from review r left join rev_group_rule_map rgr on (r.version = rgr.version and r.checkDigest = rgr.checkDigest) where rgr.rgrId is null; ELSEIF in_context = 'asset' THEN INSERT into t_reviewIds (reviewId) select r.reviewId from review r left join rev_group_rule_map rgr on (r.version = rgr.version and r.checkDigest = rgr.checkDigest) left join revision on (rgr.revId = revision.revId) left join stig_asset_map sa on (r.assetId = sa.assetId and revision.benchmarkId = sa.benchmarkId) group by r.reviewId having count(sa.saId) = 0; END IF; select max(seq) into v_numReviewIds from t_reviewIds; CALL task_output('info', concat('found ', ifnull(v_numReviewIds, 0), ' reviews to delete')); IF v_numReviewIds > 0 THEN drop temporary table if exists t_historyIds; create temporary table t_historyIds (seq INT AUTO_INCREMENT PRIMARY KEY) select historyId from review_history where reviewId in (select reviewId from t_reviewIds); select max(seq) into v_numHistoryIds from t_historyIds; CALL task_output('info', concat('found ', ifnull(v_numHistoryIds, 0), ' history records to delete')); IF v_numHistoryIds > 0 THEN CALL task_output('info', concat('deleting ', v_numHistoryIds, ' history records')); SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; REPEAT delete from review_history where historyId IN ( select historyId from t_historyIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; CALL task_output('info', concat('deleting ', v_numReviewIds, ' reviews')); SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; REPEAT delete from review where reviewId IN ( select reviewId from t_reviewIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; CALL task_output('info', 'task finished'); END;`, `DROP PROCEDURE IF EXISTS analyze_tables`, // analyzes tables for performance // in_tables is a json array of table names to analyze `CREATE PROCEDURE analyze_tables (IN in_tables JSON) BEGIN DECLARE v_itemCount INT; DECLARE v_currentCount INT; DECLARE v_table VARCHAR(255); DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; IF err_msg = NULL THEN SET err_msg = ''; END IF; CALL task_output('error',concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info', 'task started'); select JSON_LENGTH(in_tables) INTO v_itemCount; SET v_currentCount = 0; WHILE v_currentCount < v_itemCount DO SET v_table = json_unquote(json_extract(in_tables, concat('$[', v_currentCount, ']'))); CALL task_output('info', concat('analyze table: ', v_table)); SET @sql = CONCAT('ANALYZE TABLE ', v_table); PREPARE stmt_analyze_tables FROM @sql; EXECUTE stmt_analyze_tables; DEALLOCATE PREPARE stmt_analyze_tables; SET v_currentCount = v_currentCount + 1; END WHILE; CALL task_output('info', 'task finished'); END`, `DROP EVENT IF EXISTS \`job-1-stigman\``, // default event schedule for job 1 created at migration time `CREATE EVENT IF NOT EXISTS \`job-1-stigman\` ON SCHEDULE EVERY 1 DAY STARTS '2025-10-01 05:00:00' DISABLE DO CALL run_job(1, NULL)`, ] const downMigration = [ `DROP TABLE IF EXISTS job_task_map`, `DROP TABLE IF EXISTS task_output`, `DROP TABLE IF EXISTS task`, `DROP TABLE IF EXISTS job_run`, `DROP TABLE IF EXISTS job`, `DROP procedure IF EXISTS run_job`, `DROP procedure IF EXISTS task_output`, `DROP PROCEDURE IF EXISTS delete_disabled`, `DROP PROCEDURE IF EXISTS delete_unmapped`, `DROP PROCEDURE IF EXISTS analyze_tables`, `DROP EVENT IF EXISTS \`job-1-stigman\``, ] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/0046.js ================================================ const MigrationHandler = require('./lib/MigrationHandler') const upMigration = [ `DROP PROCEDURE IF EXISTS get_runtime`, `DROP procedure IF EXISTS run_job`, `CREATE PROCEDURE run_job( IN in_jobId INT, IN in_runIdStr VARCHAR(36) ) main:BEGIN DECLARE v_done INT DEFAULT FALSE; DECLARE v_jrId INT; DECLARE v_numTasks INT; DECLARE v_currentTaskId INT; DECLARE v_currentTaskName VARCHAR(255); DECLARE v_currentCommand VARCHAR(255); DECLARE v_currentTaskNum INT DEFAULT 0; DECLARE v_param_string TEXT; DECLARE cur CURSOR FOR SELECT jt.taskId, t.name, t.command FROM job_task_map jt inner join task t on (jt.taskId = t.taskId) WHERE jobId = in_jobId ORDER BY jtId ASC; DECLARE CONTINUE HANDLER FOR NOT FOUND SET v_done = TRUE; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error', concat('code: ', err_code, ' message: ', err_msg)); UPDATE job_run SET state = 'failed' WHERE runId = @runId; END; -- setup runtime context (null if running outside a job) IF in_runIdStr IS NOT NULL AND in_runIdStr REGEXP '^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$' THEN SET @runId = UUID_TO_BIN(in_runIdStr, 1); ELSE SET @runId = UUID_TO_BIN(UUID(), 1); END IF; SET @taskId = NULL; INSERT INTO job_run(jobId, runId, state) VALUES (in_jobId, @runId, 'running'); CALL task_output('info', concat('run started for jobId ', in_jobId)); -- Get the number of tasks for the job SELECT COUNT(*) INTO v_numTasks FROM job_task_map WHERE jobId = in_jobId; IF v_numTasks = 0 THEN CALL task_output('error', 'no tasks to run'); UPDATE job_run SET state = 'failed' WHERE runId = @runId AND state = 'running'; LEAVE main; -- No tasks to run, exit the procedure END IF; OPEN cur; read_loop: LOOP FETCH cur INTO v_currentTaskId, v_currentTaskName, v_currentCommand; IF v_done THEN LEAVE read_loop; END IF; SET v_currentTaskNum = v_currentTaskNum + 1; SET @sql = CONCAT('CALL ', v_currentCommand); PREPARE stmt_run_job FROM @sql; CALL task_output('info', concat('Beginning task ', v_currentTaskName, ' (', v_currentTaskNum, '/', v_numTasks, ')')); SET @taskId = v_currentTaskId; EXECUTE stmt_run_job; DEALLOCATE PREPARE stmt_run_job; SET @taskId = NULL; CALL task_output('info', concat('Ended task ', v_currentTaskName, ' (', v_currentTaskNum, '/', v_numTasks, ')')); END LOOP; CLOSE cur; -- === Post-task-loop logic === UPDATE job_run SET state = 'completed' WHERE runId = @runId AND state = 'running'; CALL task_output('info', concat('run completed for jobId ', in_jobId)); END`, `DROP procedure IF EXISTS task_output`, `CREATE PROCEDURE task_output( IN in_type VARCHAR(45), IN in_message VARCHAR(255) ) BEGIN IF in_message IS NULL THEN SET in_message = ''; END IF; insert into task_output (runId, taskId, type, message) values (@runId, @taskId, in_type, in_message); END`, `DROP PROCEDURE IF EXISTS delete_disabled`, `CREATE PROCEDURE delete_disabled() BEGIN DECLARE v_incrementValue INT DEFAULT 10000; DECLARE v_curMinId BIGINT DEFAULT 1; DECLARE v_curMaxId BIGINT DEFAULT v_incrementValue + 1; DECLARE v_numCollectionIds INT; DECLARE v_numAssetIds INT; DECLARE v_numReviewIds INT; DECLARE v_numHistoryIds INT; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error', concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info','task started'); drop temporary table if exists t_collectionIds; create temporary table t_collectionIds (seq INT AUTO_INCREMENT PRIMARY KEY) select collectionId from collection where isEnabled is null; select max(seq) into v_numCollectionIds from t_collectionIds; CALL task_output('info', concat('found ', ifnull(v_numCollectionIds, 0), ' collections to delete')); drop temporary table if exists t_assetIds; create temporary table t_assetIds (seq INT AUTO_INCREMENT PRIMARY KEY) select assetId from asset where isEnabled is null or collectionId in (select collectionId from t_collectionIds); select max(seq) into v_numAssetIds from t_assetIds; CALL task_output('info', concat('found ', ifnull(v_numAssetIds, 0), ' assets to delete')); drop temporary table if exists t_reviewIds; create temporary table t_reviewIds (seq INT AUTO_INCREMENT PRIMARY KEY) select reviewId from review where assetId in (select assetId from t_assetIds); select max(seq) into v_numReviewIds from t_reviewIds; CALL task_output('info', concat('found ', ifnull(v_numReviewIds, 0), ' reviews to delete')); drop temporary table if exists t_historyIds; create temporary table t_historyIds (seq INT AUTO_INCREMENT PRIMARY KEY) select historyId from review_history where reviewId in (select reviewId from t_reviewIds); select max(seq) into v_numHistoryIds from t_historyIds; CALL task_output('info', concat('found ', ifnull(v_numHistoryIds, 0), ' history records to delete')); IF v_numHistoryIds > 0 THEN CALL task_output('info', concat('deleting ', v_numHistoryIds, ' history records')); REPEAT delete from review_history where historyId IN ( select historyId from t_historyIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_historyIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numReviewIds > 0 THEN CALL task_output('info', concat('deleting ', v_numReviewIds, ' reviews')); REPEAT delete from review where reviewId IN ( select reviewId from t_reviewIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_reviewIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numAssetIds > 0 THEN CALL task_output('info', concat('deleting ', v_numAssetIds, ' assets')); REPEAT delete from asset where assetId IN ( select assetId from t_assetIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_assetIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numCollectionIds > 0 THEN CALL task_output('info', concat('deleting ', v_numCollectionIds, ' collections')); REPEAT delete from collection where collectionId IN ( select collectionId from t_collectionIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_collectionIds; CALL task_output('info', 'task finished'); END`, `DROP PROCEDURE IF EXISTS delete_unmapped`, `CREATE PROCEDURE delete_unmapped(IN in_context VARCHAR(255)) BEGIN DECLARE v_numReviewIds INT; DECLARE v_numHistoryIds INT; DECLARE v_incrementValue INT DEFAULT 10000; DECLARE v_curMinId BIGINT DEFAULT 1; DECLARE v_curMaxId BIGINT DEFAULT v_incrementValue + 1; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error',concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info', 'task started'); drop temporary table if exists t_reviewIds; create temporary table t_reviewIds (seq INT AUTO_INCREMENT PRIMARY KEY, reviewId INT); -- Context-specific logic IF in_context = 'system' THEN INSERT into t_reviewIds (reviewId) select r.reviewId from review r left join rev_group_rule_map rgr on (r.version = rgr.version and r.checkDigest = rgr.checkDigest) where rgr.rgrId is null; ELSEIF in_context = 'asset' THEN INSERT into t_reviewIds (reviewId) select r.reviewId from review r left join rev_group_rule_map rgr on (r.version = rgr.version and r.checkDigest = rgr.checkDigest) left join revision on (rgr.revId = revision.revId) left join stig_asset_map sa on (r.assetId = sa.assetId and revision.benchmarkId = sa.benchmarkId) group by r.reviewId having count(sa.saId) = 0; END IF; select max(seq) into v_numReviewIds from t_reviewIds; CALL task_output('info', concat('found ', ifnull(v_numReviewIds, 0), ' reviews to delete')); IF v_numReviewIds > 0 THEN drop temporary table if exists t_historyIds; create temporary table t_historyIds (seq INT AUTO_INCREMENT PRIMARY KEY) select historyId from review_history where reviewId in (select reviewId from t_reviewIds); select max(seq) into v_numHistoryIds from t_historyIds; CALL task_output('info', concat('found ', ifnull(v_numHistoryIds, 0), ' history records to delete')); IF v_numHistoryIds > 0 THEN CALL task_output('info', concat('deleting ', v_numHistoryIds, ' history records')); SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; REPEAT delete from review_history where historyId IN ( select historyId from t_historyIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; CALL task_output('info', concat('deleting ', v_numReviewIds, ' reviews')); SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; REPEAT delete from review where reviewId IN ( select reviewId from t_reviewIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; CALL task_output('info', 'task finished'); END;`, `DROP PROCEDURE IF EXISTS analyze_tables`, `CREATE PROCEDURE analyze_tables (IN in_tables JSON) BEGIN DECLARE v_itemCount INT; DECLARE v_currentCount INT; DECLARE v_table VARCHAR(255); DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; IF err_msg = NULL THEN SET err_msg = ''; END IF; CALL task_output('error',concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info', 'task started'); select JSON_LENGTH(in_tables) INTO v_itemCount; SET v_currentCount = 0; WHILE v_currentCount < v_itemCount DO SET v_table = json_unquote(json_extract(in_tables, concat('$[', v_currentCount, ']'))); CALL task_output('info', concat('analyze table: ', v_table)); SET @sql = CONCAT('ANALYZE TABLE ', v_table); PREPARE stmt_analyze_tables FROM @sql; EXECUTE stmt_analyze_tables; DEALLOCATE PREPARE stmt_analyze_tables; SET v_currentCount = v_currentCount + 1; END WHILE; CALL task_output('info', 'task finished'); END`, ] const downMigration = [] const migrationHandler = new MigrationHandler(upMigration, downMigration) module.exports = { up: async (pool) => { await migrationHandler.up(pool, __filename) }, down: async (pool) => { await migrationHandler.down(pool, __filename) } } ================================================ FILE: api/source/service/migrations/lib/MigrationHandler.js ================================================ "use strict"; const path = require('path') const logger = require('../../../utils/logger') module.exports = class MigrationHandler { constructor(upCommands = [], downCommands = []) { this._upCommands = upCommands; this._downCommands = downCommands; } async up(pool, filename) { let connection let migrationName = path.basename(filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'up', name: migrationName }) connection = await pool.getConnection() for (const statement of this._upCommands) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement }) await connection.query(statement) } } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message }) throw (e) } finally { await connection.release() logger.writeInfo('mysql', 'migration', {status: 'finish', name: migrationName }) } } async down(pool, filename) { let connection let migrationName = path.basename(filename, '.js') try { logger.writeInfo('mysql', 'migration', {status: 'start', direction: 'down', name: migrationName }) connection = await pool.getConnection() for (const statement of this._downCommands) { logger.writeInfo('mysql', 'migration', {status: 'running', name: migrationName, statement }) await connection.query(statement) } await connection.release() } catch (e) { logger.writeError('mysql', 'migration', {status: 'error', name: migrationName, message: e.message }) throw (e) } finally { await connection.release() logger.writeInfo('mysql', 'migration', {status: 'finish', name: migrationName }) } } } ================================================ FILE: api/source/service/migrations/lib/mysql-import.js ================================================ /** * mysql-import - v4.0.24 * Import .sql into a MySQL database with Node. * @author Rob Parham * @website https://github.com/pamblam/mysql-import#readme * @license MIT * * Modified to support mysql2 PromisePool * https://github.com/NUWCDIVNPT/stig-manager/api/source/service/migrations/lib/mysql-import.js **/ 'use strict'; const mysql = require('mysql2'); const fs = require('fs'); const path = require("path"); /** * mysql-import - Importer class * @version 4.0.24 * https://github.com/Pamblam/mysql-import */ class Importer{ /** * new Importer(pool) * @param pool - mysql2/promise pool */ constructor(pool){ this._connection_settings = pool; this._pool = pool; this._conn = null; this._encoding = 'utf8'; this._imported = []; } /** * Get an array of the imported files * @returns {Array} */ getImported(){ return this._imported.slice(0); } /** * Set the encoding to be used for reading the dump files. * @param string - encoding type to be used. * @throws {Error} - if unsupported encoding type. * @returns {undefined} */ setEncoding(encoding){ var supported_encodings = [ 'utf8', 'ucs2', 'utf16le', 'latin1', 'ascii', 'base64', 'hex' ]; if(!supported_encodings.includes(encoding)){ throw new Error("Unsupported encoding: "+encoding); } this._encoding = encoding; } /** * Set or change the database to be used * @param string - database name * @returns {Promise} */ use(database){ return new Promise((resolve, reject)=>{ if(!this._conn){ this._connection_settings.database = database; return; } this._conn.changeUser({database}, err=>{ if (err){ reject(err); }else{ resolve(); } }); }); } /** * Import (an) .sql file(s). * @param string|array input - files or paths to scan for .sql files * @returns {Promise} */ import(...input){ return new Promise(async (resolve, reject)=>{ try{ await this._connect(); var files = await this._getSQLFilePaths(...input); var error = null; await slowLoop(files, (file, index, next)=>{ if(error){ next(); return; } this._importSingleFile(file).then(()=>{ next(); }).catch(err=>{ error = err; next(); }); }); if(error) throw error; await this.disconnect(); resolve(); }catch(err){ reject(err); } }); }; /** * Disconnect mysql. This is done automatically, so shouldn't need to be manually called. * @param bool graceful - force close? * @returns {Promise} */ async disconnect(){ try { if (!this._conn) { return } await this._conn.release() this._conn = null } catch (e) { throw (e) } } //////////////////////////////////////////////////////////////////////////// // Private methods ///////////////////////////////////////////////////////// //////////////////////////////////////////////////////////////////////////// /** * Import a single .sql file into the database * @param {type} filepath * @returns {Promise} */ _importSingleFile(filepath){ return new Promise((resolve, reject)=>{ fs.readFile(filepath, this._encoding, (err, queriesString) => { if(err){ reject(err); return; } var queries = new queryParser(queriesString).queries; var error = null; slowLoop(queries, (query, index, next)=>{ if(error){ next(); return; } this._conn.query(query) .catch(err => { error = err }) .then(() => { next() }) }).then(()=>{ if(error){ reject(error); }else{ this._imported.push(filepath); resolve(); } }); }); }); } /** * Connect to the mysql server * @returns {Promise} */ async _connect(){ try { if (this._conn) { return (this._conn) } this._conn = await this._pool.getConnection() } catch (e) { throw (e) } } /** * Check if a file exists * @param string filepath * @returns {Promise} */ _fileExists(filepath){ return new Promise((resolve, reject)=>{ fs.access(filepath, fs.constants.F_OK, err=>{ if(err){ reject(err); }else{ resolve(); } }); }); } /** * Get filetype information * @param string filepath * @returns {Promise} */ _statFile(filepath){ return new Promise((resolve, reject)=>{ fs.lstat(filepath, (err, stat)=>{ if(err){ reject(err); }else{ resolve(stat); } }); }); } /** * Read contents of a directory * @param string filepath * @returns {Promise} */ _readDir(filepath){ return new Promise((resolve, reject)=>{ fs.readdir(filepath, (err, files)=>{ if(err){ reject(err); }else{ resolve(files); } }); }); } /** * Parses the input argument(s) for Importer.import into an array sql files. * @param strings|array paths * @returns {Promise} */ _getSQLFilePaths(...paths){ return new Promise(async (resolve, reject)=>{ var full_paths = []; var error = null; paths = [].concat.apply([], paths); // flatten array of paths await slowLoop(paths, async (filepath, index, next)=>{ if(error){ next(); return; } try{ await this._fileExists(filepath); var stat = await this._statFile(filepath); if(stat.isFile()){ if(filepath.toLowerCase().substring(filepath.length-4) === '.sql'){ full_paths.push(path.resolve(filepath)); } next(); }else if(stat.isDirectory()){ var more_paths = await this._readDir(filepath); more_paths = more_paths.map(p=>path.join(filepath, p)); var sql_files = await this._getSQLFilePaths(...more_paths); full_paths.push(...sql_files); next(); }else{ next(); } }catch(err){ error = err; next(); } }); if(error){ reject(error); }else{ resolve(full_paths); } }); } } /** * Build version number */ Importer.version = '4.0.24'; module.exports = Importer; /** * Execute the loopBody function once for each item in the items array, * waiting for the done function (which is passed into the loopBody function) * to be called before proceeding to the next item in the array. * @param {Array} items - The array of items to iterate through * @param {Function} loopBody - A function to execute on each item in the array. * This function is passed 3 arguments - * 1. The item in the current iteration, * 2. The index of the item in the array, * 3. A function to be called when the iteration may continue. * @returns {Promise} - A promise that is resolved when all the items in the * in the array have been iterated through. */ function slowLoop(items, loopBody) { return new Promise(f => { if(!items.length) return f(); let done = arguments[2] || f; let idx = arguments[3] || 0; let cb = items[idx + 1] ? () => slowLoop(items, loopBody, done, idx + 1) : done; loopBody(items[idx], idx, cb); }); } class queryParser{ constructor(queriesString){ // Input string containing SQL queries this.queriesString = queriesString.trim(); // The quote type (' or ") if the parser // is currently inside of a quote, else false this.quoteType = false; // An array of complete queries this.queries = []; // An array of chars representing the substring // the is currently being parsed this.buffer = []; // Is the current char escaped this.escaped = false; // The string that denotes the end of a query this.delimiter = ';'; // Are we currently seeking new delimiter this.seekingDelimiter = false; // Does the sql set change delimiter? this.hasDelimiter = queriesString.toLowerCase().includes('delimiter '); // Iterate over each char in the string for (let i = 0; i < this.queriesString.length; i++) { let char = this.queriesString[i]; this.parseChar(char); } } // Parse the next char in the string parseChar(char){ this.checkEscapeChar(); this.buffer.push(char); if (this.hasDelimiter) { this.checkNewDelimiter(char); } this.checkQuote(char); this.checkEndOfQuery(); } // Check if the current char has been escaped // and update this.escaped checkEscapeChar(){ if(!this.buffer.length) return; if(this.buffer[this.buffer.length - 1] === "\\"){ this.escaped = !this.escaped; }else{ this.escaped = false; } } // Check to see if a new delimiter is being assigned checkNewDelimiter(char){ var buffer_str = this.buffer.join('').toLowerCase().trim(); if(buffer_str === 'delimiter' && !this.quoteType){ this.seekingDelimiter = true; this.buffer = []; }else{ var isNewLine = char === "\n" || char === "\r"; if(isNewLine && this.seekingDelimiter){ this.seekingDelimiter = false; this.delimiter = this.buffer.join('').trim(); this.buffer = []; } } } // Check if the current char is a quote checkQuote(char){ var isQuote = (char === '"' || char === "'") && !this.escaped; if (isQuote && this.quoteType === char){ this.quoteType = false; }else if(isQuote && !this.quoteType){ this.quoteType = char; } } // Check if we're at the end of the query checkEndOfQuery(){ var demiliterFound = false; if(!this.quoteType && this.buffer.length >= this.delimiter.length){ demiliterFound = this.buffer.slice(-this.delimiter.length).join('') === this.delimiter; } if (demiliterFound) { // trim the delimiter off the end this.buffer.splice(-this.delimiter.length, this.delimiter.length); this.queries.push(this.buffer.join('').trim()); this.buffer = []; } } } ================================================ FILE: api/source/service/migrations/lib/umzug-mysql-storage.js ================================================ module.exports = class MyStorage { constructor(options) { this.pool = options.pool this.hasMigrationTable = false } async createMigrationTable () { await this.pool.query(`CREATE TABLE IF NOT EXISTS _migrations ( createdAt DATETIME DEFAULT CURRENT_TIMESTAMP, updatedAt DATETIME ON UPDATE CURRENT_TIMESTAMP, name VARCHAR(128) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci`) this.hasMigrationTable = true } async logMigration(migrationName) { // This function logs a migration as executed. // It will get called once a migration was // executed successfully. if (!this.hasMigrationTable) { await this.createMigrationTable() } await this.pool.query('INSERT into _migrations (name) VALUES (?)', [migrationName]) } async unlogMigration(migrationName) { // This function removes a previously logged migration. // It will get called once a migration has been reverted. if (!this.hasMigrationTable) { await this.createMigrationTable() } await this.pool.query('DELETE from _migrations WHERE name = ?', [migrationName]) } async executed() { // This function lists the names of the logged // migrations. It will be used to calculate // pending migrations. The result has to be an // array with the names of the migration files. if (!this.hasMigrationTable) { await this.createMigrationTable() } let [rows] = await this.pool.query('SELECT name from _migrations') return rows.map(r => r.name) } } ================================================ FILE: api/source/service/migrations/sql/0000/up/10-stigman-schema.sql ================================================ -- MySQL dump 10.13-csmig Distrib 8.0.18-csmig, for Linux (x86_64) -- /*!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 */; /*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */; /*!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' */; /*!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 */; -- -- Table structure for table `action` -- DROP TABLE IF EXISTS `action`; CREATE TABLE `action` ( `actionId` int(11) NOT NULL AUTO_INCREMENT, `api` varchar(16) NOT NULL, `en` varchar(64) NOT NULL, PRIMARY KEY (`actionId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `asset` -- DROP TABLE IF EXISTS `asset`; CREATE TABLE `asset` ( `assetId` int NOT NULL AUTO_INCREMENT, `name` varchar(45) NOT NULL, `collectionId` int NOT NULL, `ip` varchar(45) DEFAULT NULL, `description` varchar(255) DEFAULT NULL, `noncomputing` bit(1) NOT NULL DEFAULT b'0', `metadata` json NOT NULL, PRIMARY KEY (`assetId`), UNIQUE KEY `INDEX_NAMECOLLECTION` (`name`, `collectionId`), KEY `INDEX_COMPUTING` (`noncomputing`), KEY `INDEX_COLLECTIONID` (`collectionId`), CONSTRAINT `FK_ASSET_2` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `cci` -- DROP TABLE IF EXISTS `cci`; CREATE TABLE `cci` ( `cci` varchar(20) NOT NULL, `status` varchar(20) NOT NULL, `publishdate` date NOT NULL, `contributor` varchar(255) NOT NULL, `type` varchar(20) NOT NULL, `definition` text NOT NULL, `apAcronym` varchar(20) DEFAULT NULL, `implementation` text, `assessmentProcedure` text, PRIMARY KEY (`cci`), KEY `ap` (`apAcronym`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `cci_reference_map` -- DROP TABLE IF EXISTS `cci_reference_map`; CREATE TABLE `cci_reference_map` ( `cciRefId` int(11) NOT NULL AUTO_INCREMENT, `cci` varchar(20) NOT NULL, `creator` varchar(255) NOT NULL, `title` varchar(255) NOT NULL, `version` varchar(255) NOT NULL, `location` varchar(255) NOT NULL, `indexDisa` varchar(255) NOT NULL, `textRefNist` varchar(255) NOT NULL, `parentControl` varchar(255) NOT NULL, PRIMARY KEY (`cciRefId`), KEY `cci` (`cci`), KEY `textRefNist` (`textRefNist`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `check` -- DROP TABLE IF EXISTS `check`; CREATE TABLE `check` ( `checkId` varchar(255) NOT NULL, `content` text, PRIMARY KEY (`checkId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection` -- DROP TABLE IF EXISTS `collection`; CREATE TABLE `collection` ( `collectionId` int NOT NULL AUTO_INCREMENT, `name` varchar(45) NOT NULL, `workflow` varchar(45) NOT NULL, `metadata` json NOT NULL, PRIMARY KEY (`collectionId`), UNIQUE KEY `index2` (`name`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection_grant` -- DROP TABLE IF EXISTS `collection_grant`; CREATE TABLE `collection_grant` ( `cgId` int NOT NULL AUTO_INCREMENT, `collectionId` int NOT NULL, `userId` int NOT NULL, `accessLevel` int NOT NULL, PRIMARY KEY (`cgId`), UNIQUE KEY `INDEX_USER` (`userId`,`collectionId`), KEY `INDEX_COLLECTION` (`collectionId`,`accessLevel`), CONSTRAINT `fk_collection_grant_1` FOREIGN KEY (`userId`) REFERENCES `user_data` (`userId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_2` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `current_group_rule` -- DROP TABLE IF EXISTS `current_group_rule`; CREATE TABLE `current_group_rule` ( `cgrId` int(11) NOT NULL AUTO_INCREMENT, `benchmarkId` varchar(255) NOT NULL, `groupId` varchar(45) NOT NULL, `ruleId` varchar(255) NOT NULL, PRIMARY KEY (`cgrId`), KEY `idx_benchmarkId` (`benchmarkId`), KEY `idx_rule` (`ruleId`), KEY `idx_group` (`groupId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `current_rev` -- DROP TABLE IF EXISTS `current_rev`; CREATE TABLE `current_rev` ( `revId` varchar(255) NOT NULL, `benchmarkId` varchar(255) NOT NULL, `version` int(11) NOT NULL, `release` varchar(45) NOT NULL, `benchmarkDate` varchar(45) DEFAULT NULL, `benchmarkDateSql` date DEFAULT NULL, `status` varchar(45) DEFAULT NULL, `statusDate` varchar(45) DEFAULT NULL, `description` varchar(4000) DEFAULT NULL, `active` tinyint(4) DEFAULT NULL, `groupCount` int(11) DEFAULT 0 NOT NULL, `ruleCount` int(11) DEFAULT 0 NOT NULL, `checkCount` int(11) DEFAULT 0 NOT NULL, `fixCount` int(11) DEFAULT 0 NOT NULL, `ovalCount` int(11) DEFAULT 0 NOT NULL, PRIMARY KEY (`revId`), UNIQUE KEY `index2` (`benchmarkId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `fix` -- DROP TABLE IF EXISTS `fix`; CREATE TABLE `fix` ( `fixId` varchar(45) NOT NULL, `text` mediumtext, PRIMARY KEY (`fixId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `group` -- DROP TABLE IF EXISTS `group`; CREATE TABLE `group` ( `groupId` varchar(45) NOT NULL, `title` varchar(255) DEFAULT NULL, `severity` varchar(45) DEFAULT NULL, PRIMARY KEY (`groupId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `config` -- DROP TABLE IF EXISTS `config`; CREATE TABLE `config` ( `key` varchar(45) NOT NULL, `value` varchar(255) NOT NULL, PRIMARY KEY (`key`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `poam_rar_entry` -- DROP TABLE IF EXISTS `poam_rar_entry`; CREATE TABLE `poam_rar_entry` ( `preId` int(11) NOT NULL AUTO_INCREMENT, `collectionId` int(11) NOT NULL, `groupId` varchar(45) NOT NULL, `iacontrol` varchar(45) DEFAULT NULL, `status` varchar(45) DEFAULT NULL, `poc` varchar(255) DEFAULT NULL, `resources` varchar(255) DEFAULT NULL, `compdate` datetime DEFAULT NULL, `milestone` longtext, `poamComment` longtext, `likelihood` varchar(50) DEFAULT NULL, `mitdesc` longtext, `residualRisk` int(11) DEFAULT NULL, `recCorrAct` longtext, `remdesc` longtext, `rarComment` longtext, PRIMARY KEY (`preId`), UNIQUE KEY `unique_collectionId_groupId` (`collectionId`,`groupId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `reject_string` -- DROP TABLE IF EXISTS `reject_string`; CREATE TABLE `reject_string` ( `rejectId` int(11) NOT NULL AUTO_INCREMENT, `shortStr` varchar(45) NOT NULL, `longStr` longtext , PRIMARY KEY (`rejectId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; DROP TABLE IF EXISTS `result`; CREATE TABLE `result` ( `resultId` int(11) NOT NULL AUTO_INCREMENT, `api` varchar(32) NOT NULL, `ckl` varchar(32) NOT NULL, `abbr` varchar(2) NOT NULL, `en` varchar(64) NOT NULL, PRIMARY KEY (`resultId`), UNIQUE KEY `RESULT_API` (`api`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_group_map` -- DROP TABLE IF EXISTS `rev_group_map`; CREATE TABLE `rev_group_map` ( `rgId` int(11) NOT NULL AUTO_INCREMENT, `revId` varchar(255) DEFAULT NULL, `groupId` varchar(45) DEFAULT NULL, `rules` JSON DEFAULT NULL, PRIMARY KEY (`rgId`), UNIQUE KEY `uidx_rgm_revId_groupId` (`revId`,`groupId`), KEY `idx_rgm_groupId` (`groupId`), CONSTRAINT `FK_rev_group_map_group` FOREIGN KEY (`groupId`) REFERENCES `group` (`groupId`), CONSTRAINT `FK_rev_group_map_revision` FOREIGN KEY (`revId`) REFERENCES `revision` (`revId`) ON DELETE CASCADE ON UPDATE RESTRICT ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_group_rule_check_map` -- DROP TABLE IF EXISTS `rev_group_rule_check_map`; CREATE TABLE `rev_group_rule_check_map` ( `rgrcId` int(11) NOT NULL AUTO_INCREMENT, `rgrId` int(11) NOT NULL, `checkId` varchar(255) NOT NULL, PRIMARY KEY (`rgrcId`), UNIQUE KEY `uidx_rcm_ruleId_checkId` (`rgrId`,`checkId`), KEY `idx_rcm_checkId` (`checkId`), CONSTRAINT `FK_rev_group_rule_check_map_check` FOREIGN KEY (`checkId`) REFERENCES `check` (`checkId`), CONSTRAINT `FK_rev_group_rule_check_map_rev_group_rule_map` FOREIGN KEY (`rgrId`) REFERENCES `rev_group_rule_map` (`rgrId`) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_group_rule_fix_map` -- DROP TABLE IF EXISTS `rev_group_rule_fix_map`; CREATE TABLE `rev_group_rule_fix_map` ( `rgrfId` int(11) NOT NULL AUTO_INCREMENT, `rgrId` int(11) NOT NULL, `fixId` varchar(255) NOT NULL, PRIMARY KEY (`rgrfId`), UNIQUE KEY `uidx_rfm_ruleId_fixId` (`rgrId`,`fixId`), KEY `idx_rfm_fixId` (`fixId`), CONSTRAINT `FK_rev_group_rule_fix_map_fix` FOREIGN KEY (`fixId`) REFERENCES `fix` (`fixId`), CONSTRAINT `FK_rev_group_rule_fix_map_rev_group_rule_map` FOREIGN KEY (`rgrId`) REFERENCES `rev_group_rule_map` (`rgrId`) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_group_rule_map` -- DROP TABLE IF EXISTS `rev_group_rule_map`; CREATE TABLE `rev_group_rule_map` ( `rgrId` int(11) NOT NULL AUTO_INCREMENT, `rgId` int(11) NOT NULL, `ruleId` varchar(255) DEFAULT NULL, `checks` JSON DEFAULT NULL, `fixes` JSON DEFAULT NULL, `ccis` JSON DEFAULT NULL, PRIMARY KEY (`rgrId`), UNIQUE KEY `uidx_rgrm_rgId_ruleId` (`rgId`,`ruleId`), KEY `idx_rgrm_ruleId` (`ruleId`), CONSTRAINT `FK_rev_group_rule_map_rev_group_map` FOREIGN KEY (`rgId`) REFERENCES `rev_group_map` (`rgId`) ON DELETE CASCADE ON UPDATE RESTRICT, CONSTRAINT `FK_rev_group_rule_map_rule` FOREIGN KEY (`ruleId`) REFERENCES `rule` (`ruleId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_xml_map` -- DROP TABLE IF EXISTS `rev_xml_map`; CREATE TABLE `rev_xml_map` ( `rxId` int(11) NOT NULL AUTO_INCREMENT, `revId` varchar(255) NOT NULL, `xml` blob, PRIMARY KEY (`rxId`), UNIQUE KEY `uidx_rxm_revId` (`revId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `review` -- DROP TABLE IF EXISTS `review`; CREATE TABLE `review` ( `reviewId` int(11) NOT NULL AUTO_INCREMENT, `assetId` int(11) DEFAULT NULL, `ruleId` varchar(45) DEFAULT NULL, `resultId` int(11) DEFAULT NULL, `resultComment` longtext , `actionId` int(11) DEFAULT NULL, `actionComment` longtext , `autoResult` bit(1) DEFAULT 0, `ts` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, `userId` int(11) DEFAULT NULL, `rejecttext` longtext , `rejectUserId` int(11) DEFAULT NULL, `statusId` int(11) NOT NULL, PRIMARY KEY (`reviewId`), UNIQUE KEY `INDEX_ASSETID_RULEID` (`assetId`,`ruleId`), KEY `INDEX_RESULTID` (`resultId`), KEY `INDEX_RULEID` (`ruleId`), KEY `INDEX_STATUSID` (`statusId`), CONSTRAINT `FK_REVIEWS_1` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `review_history` -- DROP TABLE IF EXISTS `review_history`; CREATE TABLE `review_history` ( `historyId` int(11) NOT NULL AUTO_INCREMENT, `reviewId` int(11) NOT NULL, `resultId` int(11) NOT NULL, `resultComment` longtext, `actionId` int(11) DEFAULT NULL, `actionComment` longtext, `autoResult` bit(1) DEFAULT NULL, `ts` datetime NOT NULL, `userId` int(11) DEFAULT NULL, `rejectText` longtext, `rejectUserId` int(11) DEFAULT NULL, `statusId` int(11) NOT NULL, PRIMARY KEY (`historyId`), KEY `index_reviewId` (`reviewId`), CONSTRAINT `fk_review_history_1` FOREIGN KEY (`reviewId`) REFERENCES `review` (`reviewId`) ON DELETE CASCADE ON UPDATE RESTRICT ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `review_reject_string_map` -- DROP TABLE IF EXISTS `review_reject_string_map`; CREATE TABLE `review_reject_string_map` ( `rrsId` int(11) NOT NULL AUTO_INCREMENT, `assetId` int(11) NOT NULL, `ruleId` varchar(45) NOT NULL, `rejectId` int(11) NOT NULL, `userId` int(11) DEFAULT NULL, PRIMARY KEY (`rrsId`), UNIQUE KEY `INDEX2` (`assetId`,`ruleId`,`rejectId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `revision` -- DROP TABLE IF EXISTS `revision`; CREATE TABLE `revision` ( `revId` varchar(255) NOT NULL, `benchmarkId` varchar(255) NOT NULL, `version` int(11) NOT NULL, `release` varchar(45) NOT NULL, `benchmarkDate` varchar(45) DEFAULT NULL, `benchmarkDateSql` date DEFAULT NULL, `status` varchar(45) DEFAULT NULL, `statusDate` varchar(45) DEFAULT NULL, `description` varchar(4000) DEFAULT NULL, `active` tinyint(4) DEFAULT '1', `groupCount` int(11) DEFAULT 0 NOT NULL, `ruleCount` int(11) DEFAULT 0 NOT NULL, `checkCount` int(11) DEFAULT 0 NOT NULL, `fixCount` int(11) DEFAULT 0 NOT NULL, `ovalCount` int(11) DEFAULT 0 NOT NULL, PRIMARY KEY (`revId`), UNIQUE KEY `uidx_revision_benchmarkId_version_release` (`benchmarkId`,`version`,`release`), CONSTRAINT `FK_REVISION_1` FOREIGN KEY (`benchmarkId`) REFERENCES `stig` (`benchmarkId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rule` -- DROP TABLE IF EXISTS `rule`; CREATE TABLE `rule` ( `ruleId` varchar(255) NOT NULL, `version` varchar(45) NOT NULL, `title` varchar(1000) DEFAULT NULL, `severity` varchar(45) DEFAULT NULL, `weight` varchar(45) DEFAULT NULL, `vulnDiscussion` text, `falsePositives` text, `falseNegatives` text, `documentable` varchar(45) DEFAULT NULL, `mitigations` text, `severityOverrideGuidance` text, `potentialImpacts` text, `thirdPartyTools` text, `mitigationControl` text, `responsibility` varchar(255) DEFAULT NULL, `iaControls` varchar(255) DEFAULT NULL, PRIMARY KEY (`ruleId`), KEY `idx_rule_severity` (`severity`), KEY `idx_title` (`title`(100)) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rule_cci_map` -- DROP TABLE IF EXISTS `rule_cci_map`; CREATE TABLE `rule_cci_map` ( `rcId` int(11) NOT NULL AUTO_INCREMENT, `ruleId` varchar(255) NOT NULL, `cci` varchar(60) NOT NULL, PRIMARY KEY (`rcId`), UNIQUE KEY `rule_cci_unique` (`ruleId`,`cci`), KEY `index_cci` (`cci`), CONSTRAINT `FK_rule_cci_map_1` FOREIGN KEY (`ruleId`) REFERENCES `rule` (`ruleId`) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rule_oval_map` -- DROP TABLE IF EXISTS `rule_oval_map`; CREATE TABLE `rule_oval_map` ( `roId` int(11) NOT NULL AUTO_INCREMENT, `ruleId` varchar(255) NOT NULL, `ovalRef` varchar(255) NOT NULL, `benchmarkId` varchar(255) NOT NULL, `releaseInfo` varchar(255) NOT NULL, PRIMARY KEY (`roId`), KEY `index2` (`ruleId`), KEY `index3` (`benchmarkId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `severity_cat_map` -- DROP TABLE IF EXISTS `severity_cat_map`; CREATE TABLE `severity_cat_map` ( `id` int(11) NOT NULL AUTO_INCREMENT, `severity` varchar(45) NOT NULL, `cat` int(11) NOT NULL, `roman` varchar(45) NOT NULL, PRIMARY KEY (`id`), KEY `idx_scm_severity` (`severity`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `stats_asset_stig` -- DROP TABLE IF EXISTS `stats_asset_stig`; CREATE TABLE `stats_asset_stig` ( `id` int(11) NOT NULL AUTO_INCREMENT, `assetId` int(11) DEFAULT NULL, `benchmarkId` varchar(255) DEFAULT NULL, `minTs` datetime DEFAULT NULL, `maxTs` datetime DEFAULT NULL, `savedManual` int(11) DEFAULT NULL, `savedAuto` int(11) DEFAULT NULL, `submittedManual` int(11) DEFAULT NULL, `submittedAuto` int(11) DEFAULT NULL, `rejectedManual` int(11) DEFAULT NULL, `rejectedAuto` int(11) DEFAULT NULL, `acceptedManual` int(11) DEFAULT NULL, `acceptedAuto` int(11) DEFAULT NULL, `highCount` int(11) DEFAULT NULL, `mediumCount` int(11) DEFAULT NULL, `lowCount` int(11) DEFAULT NULL, PRIMARY KEY (`id`), UNIQUE KEY `INDEX_2_2_C` (`assetId`,`benchmarkId`), KEY `FK_STATS_ASSET_STIG_2` (`benchmarkId`), CONSTRAINT `FK_STATS_ASSET_STIG_1` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `status` -- DROP TABLE IF EXISTS `status`; CREATE TABLE `status` ( `statusId` int(11) NOT NULL, `api` varchar(16) NOT NULL, `en` varchar(16) NOT NULL, PRIMARY KEY (`statusId`), UNIQUE KEY `IDX_API` (`api`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `benchmark` -- DROP TABLE IF EXISTS `stig`; CREATE TABLE `stig` ( `benchmarkId` varchar(255) NOT NULL, `title` varchar(255) NOT NULL, PRIMARY KEY (`benchmarkId`), KEY `idx_benchmark_title` (`title`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `stig_asset_map` -- DROP TABLE IF EXISTS `stig_asset_map`; CREATE TABLE `stig_asset_map` ( `saId` int(11) NOT NULL AUTO_INCREMENT, `benchmarkId` varchar(255) NOT NULL, `assetId` int(11) NOT NULL, `userIds` JSON DEFAULT NULL, PRIMARY KEY (`saId`), UNIQUE KEY `IDX_BAID` (`benchmarkId`,`assetId`), KEY `IDX_ASSETID` (`assetId`), CONSTRAINT `FK_STIG_ASSET_MAP_1` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `FK_STIG_ASSET_MAP_2` FOREIGN KEY (`benchmarkId`) REFERENCES `stig` (`benchmarkId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `user` -- DROP TABLE IF EXISTS `user_data`; CREATE TABLE `user_data` ( `userId` int NOT NULL AUTO_INCREMENT, `username` varchar(255) NOT NULL, `display` varchar(255) NOT NULL, `email` varchar(255) NOT NULL, `globalAccess` bit(1) NOT NULL DEFAULT b'0', `canCreateCollection` bit(1) NOT NULL DEFAULT b'0', `canAdmin` bit(1) NOT NULL DEFAULT b'0', `metadata` json NOT NULL, `created` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP, `lastAccess` int DEFAULT NULL, `disabled` bit(1) NOT NULL DEFAULT b'0', PRIMARY KEY (`userId`), UNIQUE KEY `INDEX_username` (`username`), KEY `INDEX_display` (`display`), KEY `email` (`email`), KEY `INDEX_globalAccess` (`globalAccess`), KEY `INDEX_canAdmin` (`canAdmin`), KEY `INDEX_canCreateCollection` (`canCreateCollection`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `user_stig_asset_map` -- DROP TABLE IF EXISTS `user_stig_asset_map`; CREATE TABLE `user_stig_asset_map` ( `id` int NOT NULL AUTO_INCREMENT, `userId` int NOT NULL, `saId` int NOT NULL, -- `benchmarkId` varchar(255) NOT NULL, -- `assetId` int NOT NULL, PRIMARY KEY (`id`), -- UNIQUE KEY `usa_Unique` (`benchmarkId`,`assetId`,`userId`), -- KEY `usa_sa` (`benchmarkId`,`assetId`), -- KEY `usa_a` (`assetId`), KEY `fk_user_stig_asset_map_2` (`userId`), -- CONSTRAINT `fk_user_stig_asset_map_1` FOREIGN KEY (`benchmarkId`, `assetId`) REFERENCES `stig_asset_map` (`benchmarkId`, `assetId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_user_stig_asset_map_1` FOREIGN KEY (`saId`) REFERENCES `stig_asset_map` (`saId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_user_stig_asset_map_2` FOREIGN KEY (`userId`) REFERENCES `user_data` (`userId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Temporary view structure for view `v_current_rev` -- DROP TABLE IF EXISTS `v_current_rev`; /*!50001 DROP VIEW IF EXISTS `v_current_rev`*/; /*!50001 CREATE VIEW `v_current_rev` AS SELECT 1 AS `revId`, 1 AS `benchmarkId`, 1 AS `version`, 1 AS `release`, 1 AS `benchmarkDate`, 1 AS `benchmarkDateSql`, 1 AS `status`, 1 AS `statusDate`, 1 AS `description`, 1 AS `active`, 1 AS `groupCount`, 1 AS `ruleCount`, 1 AS `checkCount`, 1 AS `fixCount`, 1 AS `ovalCount`*/; -- -- Final view structure for view `v_current_rev` -- /*!50001 DROP VIEW IF EXISTS `v_current_rev`*/; /*!50001 CREATE ALGORITHM=UNDEFINED */ /*!50001 VIEW `v_current_rev` AS select `rr`.`revId` AS `revId`,`rr`.`benchmarkId` AS `benchmarkId`,`rr`.`version` AS `version`,`rr`.`release` AS `release`,`rr`.`benchmarkDate` AS `benchmarkDate`,`rr`.`benchmarkDateSql` AS `benchmarkDateSql`,`rr`.`status` AS `status`,`rr`.`statusDate` AS `statusDate`,`rr`.`description` AS `description`,`rr`.`active` AS `active`,`rr`.`groupCount` AS `groupCount`,`rr`.`ruleCount` AS `ruleCount`,`rr`.`checkCount` AS `checkCount`,`rr`.`fixCount` AS `fixCount`,`rr`.`ovalCount` AS `ovalCount` from (select `r`.`revId` AS `revId`,`r`.`benchmarkId` AS `benchmarkId`,`r`.`version` AS `version`,`r`.`release` AS `release`,`r`.`benchmarkDate` AS `benchmarkDate`,`r`.`benchmarkDateSql` AS `benchmarkDateSql`,`r`.`status` AS `status`,`r`.`statusDate` AS `statusDate`,`r`.`description` AS `description`,`r`.`active` AS `active`,`r`.`groupCount` AS `groupCount`,`r`.`ruleCount` AS `ruleCount`,`r`.`checkCount` AS `checkCount`,`r`.`fixCount` AS `fixCount`,(SELECT COUNT(roId) FROM rule_oval_map where benchmarkId = `r`.`benchmarkId`) AS `ovalCount`,row_number() OVER (PARTITION BY `r`.`benchmarkId` ORDER BY (`r`.`version` + 0) desc,(`r`.`release` + 0) desc ) AS `rn` from `revision` `r` where `r`.`status` = 'accepted') `rr` where (`rr`.`rn` = 1) */; /*!40101 SET SQL_MODE=@OLD_SQL_MODE */; /*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */; /*!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS */; /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */; -- Dump completed on 2020-05-05 21:54:37 ================================================ FILE: api/source/service/migrations/sql/0000/up/31-stigman-static.sql ================================================ -- MySQL dump 10.13 Distrib 8.0.18, for Linux (x86_64) -- /*!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 */; /*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */; /*!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' */; /*!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 */; -- -- Dumping data for table `action` -- LOCK TABLES `action` WRITE; /*!40000 ALTER TABLE `action` DISABLE KEYS */; INSERT INTO `action` VALUES (1,'remediate','Remediate'),(2,'mitigate','Mitigate'),(3,'exception','Exception'); /*!40000 ALTER TABLE `action` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `reject_string` -- LOCK TABLES `reject_string` WRITE; /*!40000 ALTER TABLE `reject_string` DISABLE KEYS */; INSERT INTO `reject_string` VALUES (1,'Evaluation comment not specific.','The comment supporting the result of the evaluation does not contain enough specific information. Comments should mention the specific setting(s) or value(s) contained in the check text.'),(2,'Recommendation comment not specific.','The comment describing the recommended action is not specific.'),(3,'Documentation is not attached.','The review requires the submission of documentation for the result of the evaluation to be accepted.'); /*!40000 ALTER TABLE `reject_string` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `state` -- LOCK TABLES `result` WRITE; /*!40000 ALTER TABLE `result` DISABLE KEYS */; INSERT INTO `result` VALUES (1,'notchecked','Not_Reviewed','NR','Not checked'), (2,'notapplicable','Not_Applicable','NA','Not Applicable'), (3,'pass','NotAFinding','NF','Not a Finding'), (4,'fail','Open','O','Open'), (5,'unknown','Not_Reviewed','U','Unknown'), (6,'error','Not_Reviewed','E','Error'), (7,'notselected','Not_Reviewed','NS','Not selected'), (8,'informational','Not_Reviewed','I','Informational'), (9,'fixed','NotAFinding','NF','Fixed'); /*!40000 ALTER TABLE `result` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `severity_cat_map` -- LOCK TABLES `severity_cat_map` WRITE; /*!40000 ALTER TABLE `severity_cat_map` DISABLE KEYS */; INSERT INTO `severity_cat_map` VALUES (1,'high',1,'I'),(2,'medium',2,'II'),(3,'low',3,'III'),(4,'mixed',4,'IV'); /*!40000 ALTER TABLE `severity_cat_map` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `status` -- LOCK TABLES `status` WRITE; /*!40000 ALTER TABLE `status` DISABLE KEYS */; INSERT INTO `status` VALUES (0,'saved','Saved'), (1,'submitted','Submitted'), (2,'rejected','Rejected'), (3,'accepted','Accepted'); /*!40000 ALTER TABLE `status` ENABLE KEYS */; UNLOCK TABLES; /*!40101 SET SQL_MODE=@OLD_SQL_MODE */; /*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */; /*!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS */; /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */; -- Dump completed on 2020-05-13 14:47:04 ================================================ FILE: api/source/service/migrations/sql/0000/up/32-cci-data.sql ================================================ -- MySQL dump 10.13-csmig Distrib 8.0.18-csmig, for Linux (x86_64) -- /*!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 */; /*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */; /*!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' */; /*!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 */; -- -- Dumping data for table `cci` -- LOCK TABLES `cci` WRITE; /*!40000 ALTER TABLE `cci` DISABLE KEYS */; INSERT INTO `cci` VALUES ('000001','draft','2009-05-13','DISA FSO','policy','The organization develops an access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','AC-1.3','The organization being inspected/assessed develops and documents an access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','The organization conducting the inspection/assessment obtains and examines the access control policy to ensure the organization being inspected/assessed develops and documents an access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.'), ('000002','draft','2009-09-14','DISA FSO','policy','The organization disseminates the access control policy to organization-defined personnel or roles.','AC-1.4','The organization being inspected/assessed disseminates via an information sharing capability to all personnel. DoD has defined the personnel or roles as all personnel.','The organization conducting the inspection/assessment examines the access control policy via the organization\'s information sharing capability to ensure the organization being inspected/assessed disseminates the policy to all personnel. DoD has defined the personnel or roles as all personnel.'), ('000003','draft','2009-09-14','DISA FSO','policy','The organization reviews and updates the access control policy in accordance with organization-defined frequency.','AC-1.7','The organization being inspected/assessed annually reviews and updates the access control policy. The organization must maintain review and update activity as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed annually reviews and updates the access control policy. DoD has defined the frequency as annually.'), ('000004','draft','2009-05-13','DISA FSO','policy','The organization develops procedures to facilitate the implementation of the access control policy and associated access controls.','AC-1.5','The organization being inspected/assessed develops and documents procedures to facilitate the implementation of the access control policy and associated access controls.','The organization conducting the inspection/assessment obtains and examines the procedures to facilitate the implementation of the access control policy and associated access controls to ensure the organization being inspected/assessed develops and documents procedures to facilitate the implementation of the access control policy and associated access controls.'), ('000005','draft','2009-09-14','DISA FSO','policy','The organization disseminates the procedures to facilitate access control policy and associated access controls to the organization-defined personnel or roles.','AC-1.6','The organization being inspected/assessed disseminates via an information sharing capability to all personnel the procedures to facilitate access control policy and associated access controls. DoD has defined the personnel or roles as all personnel.','The organization conducting the inspection/assessment examines the procedures to facilitate access control policy and associated access controls via the organization\'s information sharing capability to ensure the organization being inspected/assessed disseminates the procedures to all personnel. DoD has defined the personnel or roles as all personnel.'), ('000006','draft','2009-09-14','DISA FSO','policy','The organization reviews and updates the access control procedures in accordance with organization-defined frequency.','AC-1.9','The organization being inspected/assessed annually reviews and updates the access control procedures. The organization must maintain review and update activity as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed annually reviews and updates the access control procedures. DoD has defined the frequency as annually.'), ('000007','draft','2009-05-13','DISA FSO','policy','The organization manages information system accounts by identifying account types (i.e., individual, group, system, application, guest/anonymous, and temporary).',NULL,NULL,NULL), ('000008','draft','2009-09-14','DISA FSO','policy','The organization establishes conditions for group membership.','AC-2.4','The organization being inspected/assessed documents conditions for adding accounts as members of groups.','The organization conducting the inspection/assessment obtains and examines the documented conditions for adding accounts as members of groups to ensure that the conditions are established.'), ('000009','draft','2009-05-13','DISA FSO','policy','The organization manages information system accounts by identifying authorized users of the information system and specifying access privileges.',NULL,NULL,NULL), ('000010','draft','2009-05-13','DISA FSO','policy','The organization requires approvals by organization-defined personnel or roles for requests to create information system accounts.','AC-2.11','The organization being inspected/assessed implements a process for the ISSM or ISSO to approve information system account requests. The organization being inspected/assessed maintains an audit trail of approvals. DoD has defined the personnel or roles as the ISSM or ISSO.','The organization conducting the inspection/assessment obtains and examines the audit trail of approvals to ensure that the organization being inspected/assessed implements a process for the ISSM or ISSO to approve information system account requests. DoD has defined the personnel or roles as the ISSM or ISSO.'), ('000011','draft','2009-05-13','DISA FSO','policy','The organization creates, enables, modifies, disables, and removes information system accounts in accordance with organization-defined procedures or conditions.','AC-2.13','The organization being inspected/assessed implements account maintenance processes to create, enable, modify, disable, and remove information system accounts in accordance with procedures or conditions defined in AC-2, 2121. The organization being inspected/assessed maintains an audit trail of account maintenance activities.','The organization conducting the inspection/assessment obtains and examines the audit trail of account maintenance activities to ensure the organization being inspected/assessed implements account maintenance processes to create, enable, modify, disable, remove, and track information system accounts in accordance with procedures or conditions defined in AC-2, 2121.'), ('000012','draft','2009-09-14','DISA FSO','policy','The organization reviews information system accounts for compliance with account management requirements per organization-defined frequency.','AC-2.22','The organization being inspected/assessed implements a process to review information system accounts for compliance with account management requirements at a minimum, annually. The organization being inspected/assessed maintains an audit trail of reviews. DoD has defined the frequency as at a minimum, annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews to ensure the organization being inspected/assessed implements a process to review information system accounts for compliance with account management requirements at a minimum, annually.\nDoD has defined the frequency as at a minimum, annually.'), ('000013','draft','2009-09-14','DISA FSO','policy','The organization manages information system accounts by notifying account managers when temporary accounts are no longer required and when information system users are terminated, transferred, or information system usage or need-to-know/need-to-share changes.',NULL,NULL,NULL), ('000014','draft','2009-09-14','DISA FSO','policy','The organization manages information system accounts by granting access to the system based on a valid access authorization; intended system usage; and other attributes as required by the organization or associated missions/business functions.',NULL,NULL,NULL), ('000015','draft','2009-05-13','DISA FSO','technical','The organization employs automated mechanisms to support the information system account management functions.','AC-2(1).1','The organization being inspected/assessed configures the information system to employ automated mechanisms to support the information system account management functions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 000015.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ automated mechanisms to support the information system account management functions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 000015.'), ('000016','draft','2009-05-13','DISA FSO','technical','The information system automatically removes or disables temporary accounts after an organization-defined time period for each type of account.','AC-2(2).1','The organization being inspected/assessed configures the information system to automatically remove or disable temporary accounts after 72 hours. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 000016. DoD has defined the time period as 72 hours. ','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically remove or disable temporary accounts after 72 hours. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 000016. DoD has defined the time period as 72 hours.'), ('000017','draft','2009-05-13','DISA FSO','technical','The information system automatically disables inactive accounts after an organization-defined time period.','AC-2(3).1','The organization being inspected/assessed configures the information system to disable inactive accounts after 35 days. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 000017. DoD has defined the time period as 35 days.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to disable inactive accounts after 35 days. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 000017. DoD has defined the time period as 35 days.'), ('000018','draft','2009-05-13','DISA FSO','technical','The information system automatically audits account creation actions.','AC-2(4).1','The organization being inspected/assessed configures the information system to automatically audit account creation actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 18.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically audit account creation actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 18.'), ('000019','draft','2009-09-14','DISA FSO','policy','The organization requires that users log out in accordance with the organization-defined time period of inactivity or description of when to log out.','AC-2(5).2','The organization being inspected/assessed documents in the user policies that users are required to log out at the end of the users standard work period unless otherwise defined in formal organizational policy and IAW conditions defined in AC-2 (5) CCI 2133. DoD has defined the time period as at the end of the users standard work period unless otherwise defined in formal organizational policy.','The organization conducting the inspection/assessment obtains and examines the user policies to ensure that users are required to log out at the end of the users standard work period unless otherwise defined in formal organizational policy and IAW conditions defined in AC-2 (5) CCI 2133. DoD has defined the time period as at the end of the users standard work period unless otherwise defined in formal organizational policy.'), ('000020','draft','2009-09-14','DISA FSO','technical','The information system dynamically manages user privileges and associated access authorizations.',NULL,NULL,NULL), ('000021','draft','2009-05-13','DISA FSO','technical','The information system enforces dual authorization for organization-defined privileged commands and/or other organization-defined actions.','AC-3(2).1','The organization being inspected/assessed configures the information system to enforce dual authorization for privileged commands defined in AC-3 (2), CCI 1408 and/or other actions defined in AC-3 (2), CCI 2152. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 21.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce dual authorization for privileged commands defined in AC-3 (2), CCI 1408 and/or other actions defined in AC-3 (2), CCI 2152. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 21.'), ('000022','draft','2009-05-13','DISA FSO','technical','The information system enforces one or more organization-defined nondiscretionary access control policies over an organization-defined set of users and resources.',NULL,NULL,NULL), ('000023','draft','2009-11-03','DISA FSO','policy','The organization develops an organization-wide information security program plan that provides sufficient information about the program management controls and common controls (including specification of parameters for any assignment and selection operations either explicitly or by reference) to enable an implementation that is unambiguously compliant with the intent of the plan, and a determination of the risk to be incurred if the plan is implemented as intended.',NULL,NULL,NULL), ('000024','draft','2009-09-14','DISA FSO','technical','The information system prevents access to organization-defined security-relevant information except during secure, non-operable system states.','AC-3(5).1','The organization being inspected/assessed configures the information system to prevent access to security-relevant information defined in AC-3 (5), CCI 1411 except during secure, non-operable system states. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 24.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent access to security-relevant information defined in AC-3 (5), CCI 1411 except during secure, non-operable system states. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 24.'), ('000025','draft','2009-09-14','DISA FSO','technical','The information system enforces information flow control using explicit security attributes on information, source, and destination objects as a basis for flow control decisions.',NULL,NULL,NULL), ('000026','draft','2009-05-13','DISA FSO','technical','The information system uses protected processing domains to enforce organization-defined information flow control policies as a basis for flow control decisions.','AC-4(2).1','The organization being inspected/assessed configures the information system to use protected processing domains to enforce information flow control policies defined in AC-4 (2), CCI 2191 as a basis for flow control decisions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 000026.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to use protected processing domains to enforce information flow control policies defined in AC-4 (2), CCI 2191 as a basis for flow control decisions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 000026.'), ('000027','draft','2009-05-13','DISA FSO','technical','The information system enforces dynamic information flow control based on organization-defined policies.','AC-4(3).1','The organization being inspected/assessed configures the information system to enforce dynamic information flow control based on policies defined in AC-4 (3), CCI 2192. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 27.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce dynamic information flow control based on policies defined in AC-4 (3), CCI 2192. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 27.'), ('000028','draft','2009-05-13','DISA FSO','policy','The information system prevents encrypted information from bypassing content-checking mechanisms by employing organization-defined procedures or methods.','AC-4(4).1','The organization being inspected/assessed configures the information system to prevent encrypted information from bypassing content-checking mechanisms by employing procedures or methods defined in AC-4 (4), CCI 2193. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 28.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent encrypted information from bypassing content-checking mechanisms by employing procedures or methods defined in AC-4 (4), CCI 2193. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 28.'), ('000029','draft','2009-05-13','DISA FSO','technical','The information system enforces organization-defined limitations on the embedding of data types within other data types.','AC-4(5).1','The organization being inspected/assessed configures the information system to enforce limitations defined in AC-4 (5), CCI 1415 on the embedding of data types within other data types. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 29.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce limitations defined in AC-4 (5), CCI 1415 on the embedding of data types within other data types. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 29.'), ('000030','draft','2009-05-13','DISA FSO','technical','The information system enforces information flow control based on organization-defined metadata.','AC-4(6).1','The organization being inspected/assessed configures the information system to enforce information flow control based on metadata defined in AC-4 (6), CCI 2194. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 30.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce information flow control based on metadata defined in AC-4 (6), CCI 2194. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 30.'), ('000031','draft','2009-05-13','DISA FSO','technical','The information system enforces organization-defined one-way flows using hardware mechanisms.','AC-4(7).1','The organization being inspected/assessed configures the information system to enforce one-way flows defined in AC-4 (7), CCI 1416 using hardware mechanisms. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 31.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce one-way flows defined in AC-4 (7), CCI 1416 using hardware mechanisms. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 31.'), ('000032','draft','2009-09-14','DISA FSO','technical','The information system enforces information flow control using organization-defined security policy filters as a basis for flow control decisions for organization-defined information flows.','AC-4(8).1','The organization being inspected/assessed configures the information system to enforce information flow control using security policy filters defined in AC-4 (8), CCI 1417 as a basis for flow control decisions for all information flows. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 32. DoD has defined the information flows as all information flows.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce information flow control using security policy filters defined in AC-4 (8), CCI 1417 as a basis for flow control decisions for all information flows. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 32. DoD has defined the information flows as all information flows.'), ('000033','draft','2009-05-13','DISA FSO','policy','The information system enforces the use of human review for organization-defined security policy filters when the system is not capable of making an information flow control decision.',NULL,NULL,NULL), ('000034','draft','2009-05-13','DISA FSO','technical','The information system provides the capability for a privileged administrator to enable/disable organization-defined security policy filters under organization-defined conditions.','AC-4(10).1','The organization being inspected/assessed configures the information system to provide the capability for a privileged administrator to enable/disable security policy filters defined in AC-4 (10), CCI 1553 under conditions defined in AC-4 (10), CCI 2199. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 34.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for a privileged administrator to enable/disable security policy filters defined in AC-4 (10), CCI 1553 under conditions defined in AC-4 (10), CCI 2199. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 34.'), ('000035','draft','2009-09-14','DISA FSO','technical','The information system provides the capability for privileged administrators to configure the organization-defined security policy filters to support different security policies.','AC-4(11).1','The organization being inspected/assessed configures the information system to provide the capability for privileged administrators to configure the security policy filters defined in AC-4 (11), CCI 1554 to support different security policies. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 35.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for privileged administrators to configure the security policy filters defined in AC-4 (11), CCI 1554 to support different security policies. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 35.'), ('000036','draft','2009-05-19','DISA FSO','policy','The organization separates organization-defined duties of individuals.','AC-5.1','The organization being inspected/assessed documents and implements processes to maintain separation of the duties defined in AC-5, CCI 2219 across different individuals within the organization.','The organization conducting the inspection/assessment obtains and examines the documented processes to ensure the organization being inspected/assessed maintains separation of the duties defined in AC-5, CCI 2219 across different individuals within the organization.'), ('000037','draft','2009-09-14','DISA FSO','technical','The organization implements separation of duties through assigned information system access authorizations.',NULL,NULL,NULL), ('000038','draft','2009-05-19','DISA FSO','policy','The organization explicitly authorizes access to organization-defined security functions and security-relevant information.',NULL,NULL,NULL), ('000039','draft','2009-09-14','DISA FSO','policy','The organization requires that users of information system accounts or roles, with access to organization-defined security functions or security-relevant information, use non-privileged accounts, or roles, when accessing nonsecurity functions.','AC-6(2).1','The organization being inspected/assessed documents and implements a process to require that users of information system accounts or roles, with access to any privileged security functions or security-relevant information, use non-privileged accounts, or roles, when accessing nonsecurity functions. DoD has defined the security functions and security-relevant information as any privileged security functions or security-relevant information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires that users of information system accounts or roles, with access to any privileged security functions or security-relevant information, use non-privileged accounts, or roles, when accessing nonsecurity functions. DoD has defined the security functions and security-relevant information as any privileged security functions or security-relevant information.'), ('000040','draft','2009-09-14','DISA FSO','technical','The organization audits any use of privileged accounts, or roles, with access to organization-defined security functions or security-relevant information, when accessing other system functions.',NULL,NULL,NULL), ('000041','draft','2009-05-19','DISA FSO','policy','The organization authorizes network access to organization-defined privileged commands only for organization-defined compelling operational needs.','AC-6(3).1','The organization being inspected/assessed authorizes network access to privileged commands defined in AC-6 (3), CCI 1420 only for compelling operational needs defined in AC-6 (3), CCI 2224.','The organization conducting the inspection/assessment obtains and examines a sampling of network access authorizations to ensure the organization being inspected/assessed authorizes network access to privileged commands defined in AC-6 (3), CCI 1420 only for compelling operational needs defined in AC-6 (3), CCI 2224.'), ('000042','draft','2009-05-19','DISA FSO','policy','The organization documents the rationale for authorized network access to organization-defined privileged commands in the security plan for the information system.','AC-6(3).2','The organization being inspected/assessed documents the rationale for authorized network access to privileged commands defined in AC-6 (3), CCI 1420 in the security plan for the information system.','The organization conducting the inspection/assessment obtains and examines the documented rationale to ensure the organization being inspected/assessed documents the rationale for authorized network access to privileged commands defined in AC-6 (3), CCI 1420 in the security plan for the information system.'), ('000043','draft','2009-05-19','DISA FSO','policy','The organization defines the maximum number of consecutive invalid logon attempts to the information system by a user during an organization-defined time period.','AC-7.1','DoD has defined the maximum number as three.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the maximum number as three.'), ('000044','draft','2009-09-14','DISA FSO','technical','The information system enforces the organization-defined limit of consecutive invalid logon attempts by a user during the organization-defined time period.','AC-7.2','The organization being inspected/assessed configures the information system to limit invalid logon attempts by a user to three attempts during a 15 minute time period. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 44. DoD has defined the maximum number as three. DoD has defined the time period as 15 minutes.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to limit invalid logon attempts by a user to three attempts during a 15 minute time period. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 44. DoD has defined the maximum number as three. DoD has defined the time period as 15 minutes.'), ('000045','draft','2009-09-14','DISA FSO','policy','The organization defines in the security plan, explicitly or by reference, the time period for lock out mode or delay period.',NULL,NULL,NULL), ('000046','draft','2009-09-14','DISA FSO','policy','The organization selects either a lock out mode for the organization-defined time period or delays the next login prompt for the organization-defined delay period for information system responses to consecutive invalid access attempts.',NULL,NULL,NULL), ('000047','draft','2009-09-14','DISA FSO','technical','The information system delays next login prompt according to the organization-defined delay algorithm, when the maximum number of unsuccessful attempts is exceeded, automatically locks the account/node for an organization-defined time period or locks the account/node until released by an Administrator IAW organizational policy.',NULL,NULL,NULL), ('000048','draft','2009-05-19','DISA FSO','technical','The information system displays an organization-defined system use notification message or banner before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.','AC-8.1','The organization being inspected/assessed configures the information system to display the DoD Information Systems Standard Consent Banner and User Agreement before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 48. DoD has defined the use notification message or banner as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display the DoD Information Systems Standard Consent Banner and User Agreement before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 48. DoD has defined the use notification message or banner as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013.'), ('000049','draft','2009-05-19','DISA FSO','policy','The organization defines a system use notification message or banner displayed before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance and states that: (i) users are accessing a U.S. Government information system; (ii) system usage may be monitored, recorded, and subject to audit; (iii) unauthorized use of the system is prohibited and subject to criminal and civil penalties; and (iv) use of the system indicates consent to monitoring and recording.',NULL,NULL,NULL), ('000050','draft','2009-09-14','DISA FSO','technical','The information system retains the notification message or banner on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access the information system.','AC-8.7','The organization being inspected/assessed configures the information system to retain the notification message or banner on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 50.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to retain the notification message or banner on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 50.'), ('000051','draft','2009-05-19','DISA FSO','policy','The organization approves the information system use notification message before its use.',NULL,NULL,NULL), ('000052','draft','2009-09-14','DISA FSO','technical','The information system notifies the user, upon successful logon (access) to the system, of the date and time of the last logon (access).','AC-9.1','The organization being inspected/assessed configures the information system to notify the user, upon successful logon (access) to the system, of the date and time of the last logon (access). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 52.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the user, upon successful logon (access) to the system, of the date and time of the last logon (access). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 52.'), ('000053','draft','2009-09-14','DISA FSO','technical','The information system notifies the user, upon successful logon/access, of the number of unsuccessful logon/access attempts since the last successful logon/access.','AC-9(1).1','The organization being inspected/assessed configures the information system to notify the user, upon successful logon/access, of the number of unsuccessful logon/access attempts since the last successful logon/access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 53.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the user, upon successful logon/access, of the number of unsuccessful logon/access attempts since the last successful logon/access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 53.'), ('000054','draft','2009-05-19','DISA FSO','technical','The information system limits the number of concurrent sessions for each organization-defined account and/or account type to an organization-defined number of sessions.','AC-10.1','The organization being inspected/assessed configures the information system to limit the number of concurrent sessions for all accounts and/or account types to a number of sessions defined in AC-10, CCI 55. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 54. DoD has defined the account types and/or accounts as all account types and/or accounts.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to limit the number of concurrent sessions for all accounts and/or account types to a number of sessions defined in AC-10, CCI 55. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 54. DoD has defined the account types and/or accounts as all account types and/or accounts.'), ('000055','draft','2009-05-19','DISA FSO','policy','The organization defines the maximum number of concurrent sessions to be allowed for each organization-defined account and/or account type.','AC-10.2','The organization being inspected/assessed defines and documents the maximum number of concurrent sessions to be allowed for each organization-defined account and/or account type. The maximum number of concurrent sessions should be defined based upon the systems operational environment and mission needs. DoD has determined the maximum number is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented maximum number to ensure the organization being inspected/assessed defines the maximum number of concurrent sessions to be allowed for each organization-defined account and/or account type. DoD has determined the maximum number is not appropriate to define at the Enterprise level.'), ('000056','draft','2009-09-14','DISA FSO','technical','The information system retains the session lock until the user reestablishes access using established identification and authentication procedures.','AC-11.3','The organization being inspected/assessed configures the information system to retain the session lock until the user reestablishes access using established identification and authentication procedures. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 56.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to retain the session lock until the user reestablishes access using established identification and authentication procedures. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 56.'), ('000057','draft','2009-05-19','DISA FSO','technical','The information system initiates a session lock after the organization-defined time period of inactivity.',NULL,NULL,NULL), ('000058','draft','2009-05-19','DISA FSO','technical','The information system provides the capability for users to directly initiate session lock mechanisms.','AC-11.1','The organization being inspected/assessed configures the information system to provide the capability for users to directly initiate session lock mechanisms. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 58.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for users to directly initiate session lock mechanisms. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 58.'), ('000059','draft','2009-09-14','DISA FSO','policy','The organization defines the time period of inactivity after which the information system initiates a session lock.','AC-11.2','DoD has defined the time period as 15 minutes.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 15 minutes.'), ('000060','draft','2009-05-19','DISA FSO','technical','The information system conceals, via the session lock, information previously visible on the display with a publicly viewable image.','AC-11(1).1','The organization being inspected/assessed configures the information system to conceal, via the session lock, information previously visible on the display with a publicly viewable image. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 60.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to conceal, via the session lock, information previously visible on the display with a publicly viewable image. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 60.'), ('000061','draft','2009-09-14','DISA FSO','policy','The organization identifies and defines organization-defined user actions that can be performed on the information system without identification or authentication consistent with organizational missions/business functions.','AC-14.1','The organization being inspected/assessed identifies, defines, and documents user actions that can be performed on the information system without identification or authentication consistent with organizational missions/business functions. DoD has determined the user actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented user actions to ensure the organization being inspected/assessed identifies and defines the user actions that can be performed on the information system without identification and authentication. DoD has determined the user actions are not appropriate to define at the Enterprise level.'), ('000062','draft','2009-05-19','DISA FSO','policy','The organization permits actions to be performed without identification and authentication only to the extent necessary to accomplish mission/business objectives.',NULL,NULL,NULL), ('000063','draft','2009-09-14','DISA FSO','policy','The organization defines allowed methods of remote access to the information system.','AC-17.1','The organization being inspected/assessed defines and documents the allowed methods of remote access to the information system. The methods should be defined IAW ports, protocols, and service requirements, as well as access control requirements for any STIGs applicable to the technology in use. DoD has determined the allowed methods of remote access are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented methods to ensure the organization being inspected/assessed defines allowed methods of remote access to the information system. DoD has determined the allowed methods of remote access are not appropriate to define at the Enterprise level.'), ('000064','draft','2009-05-19','DISA FSO','policy','The organization establishes usage restrictions and implementation guidance for each allowed remote access method.',NULL,NULL,NULL), ('000065','draft','2009-09-14','DISA FSO','policy','The organization authorizes remote access to the information system prior to allowing such connections.','AC-17.5','The organization being inspected/assessed authorizes remote access to the information system prior to allowing such connections. The organization must maintain an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed authorizes remote access to the information system prior to allowing such connections.'), ('000066','draft','2009-09-14','DISA FSO','technical','The organization enforces requirements for remote connections to the information system.',NULL,NULL,NULL), ('000067','draft','2009-09-14','DISA FSO','technical','The information system monitors remote access methods.','AC-17(1).1','The organization being inspected/assessed configures the information system to monitor remote access methods. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 67.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to monitor remote access methods. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 67.'), ('000068','draft','2009-09-14','DISA FSO','technical','The information system implements cryptographic mechanisms to protect the confidentiality of remote access sessions.','AC-17(2).1','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the confidentiality of remote access sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 68.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the confidentiality of remote access sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 68.'), ('000069','draft','2009-05-19','DISA FSO','policy','The information system routes all remote accesses through an organization-defined number of managed network access control points.','AC-17(3).1','The organization being inspected/assessed configures the information system to route all remote accesses through the number of managed network access control points defined in AC-17 (3), CCI 2315. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 69.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to route all remote accesses through the number of managed network access control points defined in AC-17 (3), CCI 2315. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 69.'), ('000070','draft','2009-05-19','DISA FSO','policy','The organization authorizes the execution of privileged commands via remote access only for organization-defined needs.','AC-17(4).1','The organization being inspected/assessed authorizes the execution of privileged commands via remote access only for needs defined in AC-17 (4), CCI 2317. The organization being inspected/assessed maintains an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed authorizes the execution of privileged commands via remote access only for needs defined in AC-17 (4), CCI 2317.'), ('000071','draft','2009-05-19','DISA FSO','technical','The organization monitors for unauthorized remote connections to the information system on an organization-defined frequency.',NULL,NULL,NULL), ('000072','draft','2009-09-25','DISA FSO','policy','The organization ensures that users protect information about remote access mechanisms from unauthorized use and disclosure.','AC-17(6).1','The organization being inspected/assessed implements and documents a process to ensure that users protect information about remote access mechanisms from unauthorized use and disclosure.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure that the organization being inspected/assessed ensures that users protect information about remote access mechanisms from unauthorized use and disclosure.'), ('000073','draft','2009-11-03','DISA FSO','policy','The organization develops an organization-wide information security program plan that provides an overview of the requirements for the security program and a description of the security program management controls and common controls in place or planned for meeting those requirements.','PM-1.1','DoDI 8500.01 and the Knowledge Service meet the requirement for this CCI; individual organizations and system owners must provide documentation of common control implementation in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('000074','draft','2009-11-03','DISA FSO','policy','The organization develops an organization-wide information security program plan that is approved by a senior official with responsibility and accountability for the risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.','PM-1.8','DoDI 8500.01 and the Knowledge Service meet the requirement for this CCI; individual organizations and system owners must provide documentation of common control implementation in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('000075','draft','2009-11-03','DISA FSO','policy','The organization reviews the organization-wide information security program plan on an organization-defined frequency.','PM-1.9','DoDI 8500.01 and the Knowledge Service meet the requirement for this CCI; individual organizations and system owners must provide documentation of common control implementation in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('000076','draft','2009-11-03','DISA FSO','policy','The organization defines the frequency with which to review the organization-wide information security program plan.','PM-1.10','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000077','draft','2009-11-03','DISA FSO','policy','The organization updates the plan to address organizational changes and problems identified during plan implementation or security control assessments.','PM-1.11','DoDI 8500.01 and the Knowledge Service meet the requirement for this CCI; individual organizations and system owners must provide documentation of common control implementation in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('000078','draft','2009-11-03','DISA FSO','policy','The organization appoints a senior information security officer with the mission and resources to coordinate, develop, implement, and maintain an organization-wide information security program.','PM-2.1','The Deputy DoD CIO for Cyber Security is the DoD Senior Information Security Officer (SISO), appointed in writing with the mission and resources to coordinate, develop, implement and maintain a DoD-wide information security program.','DoD organizations are automatically compliant with this CCI as they are covered by the appointment of the DoD SISO.'), ('000079','draft','2009-09-14','DISA FSO','policy','The organization ensures that remote sessions for accessing an organization-defined list of security functions and security-relevant information employ organization-defined additional security measures.',NULL,NULL,NULL), ('000080','draft','2009-11-03','DISA FSO','policy','The organization ensures that all capital planning and investment requests include the resources needed to implement the information security program and documents all exceptions to this requirement.','PM-3.1','The organization being inspected/assessed documents and implements a process to ensure that all capital planning and investment requests include the resources needed to implement the information security program and documents all exceptions to this requirement.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that all capital planning and investment requests include the resources needed to implement the information security program and documents all exceptions to this requirement.'), ('000081','draft','2009-11-03','DISA FSO','policy','The organization employs a business case/Exhibit 300/Exhibit 53 to record the resources required.','PM-3.2','The organization being inspected/assessed documents and implements a process to employ a business case/Exhibit 300/Exhibit 53 to record the resources required.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs a business case/Exhibit 300/Exhibit 53 to record the resources required.'), ('000082','draft','2009-05-19','DISA FSO','policy','The organization establishes usage restrictions for organization-controlled mobile devices.','AC-19.1','The organization being inspected/assessed establishes and documents usage restrictions for organization controlled mobile devices.','The organization conducting the inspection/assessment obtains and examines the documented usage restrictions to ensure the organization being inspected/assessed establishes usage restrictions for organization controlled mobile devices.'), ('000083','draft','2009-05-19','DISA FSO','policy','The organization establishes implementation guidance for organization-controlled mobile devices.','AC-19.2','The organization being inspected/assessed establishes and documents implementation guidance for organization controlled mobile devices.','The organization conducting the inspection/assessment obtains and examines the documented implementation guidance to ensure the organization being inspected/assessed establishes implementation guidance for organization controlled mobile devices.'), ('000084','draft','2009-09-14','DISA FSO','policy','The organization authorizes connection of mobile devices to organizational information systems.','AC-19.5','The organization being inspected/assessed authorizes connection of mobile devices to organizational information systems. The organization must maintain an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed authorizes connection of mobile devices to organizational information systems.'), ('000085','draft','2009-05-19','DISA FSO','technical','The organization monitors for unauthorized connections of mobile devices to organizational information systems.',NULL,NULL,NULL), ('000086','draft','2009-05-19','DISA FSO','technical','The organization enforces requirements for the connection of mobile devices to organizational information systems.',NULL,NULL,NULL), ('000087','draft','2009-05-19','DISA FSO','technical','The organization disables information system functionality that provides the capability for automatic execution of code on mobile devices without user direction.',NULL,NULL,NULL), ('000088','draft','2009-09-14','DISA FSO','policy','The organization issues specially configured mobile devices to individuals traveling to locations that the organization deems to be of significant risk in accordance with organizational policies and procedures.',NULL,NULL,NULL), ('000089','draft','2009-09-14','DISA FSO','policy','The organization applies organization-defined inspection and preventative measures to mobile devices returning from locations that the organization deems to be of significant risk in accordance with organizational policies and procedures.',NULL,NULL,NULL), ('000090','draft','2009-05-19','DISA FSO','policy','The organization restricts the use of writable, removable media in organizational information systems.',NULL,NULL,NULL), ('000091','draft','2009-05-19','DISA FSO','policy','The organization prohibits the use of personally-owned, removable media in organizational information systems.',NULL,NULL,NULL), ('000092','draft','2009-05-19','DISA FSO','policy','The organization prohibits the use of removable media in organizational information systems when the media has no identifiable owner.',NULL,NULL,NULL), ('000093','draft','2009-09-14','DISA FSO','policy','The organization establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to access the information system from the external information systems.','AC-20.1','The organization being inspected/assessed establishes and documents terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to access the information system from the external information systems.','The organization conducting the inspection/assessment obtains and examines the documented terms and conditions to ensure the organization being inspected/assessed establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to access the information system from the external information systems.'), ('000094','draft','2009-05-19','DISA FSO','policy','The organization establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to process organization-controlled information using the external information systems.',NULL,NULL,NULL), ('000095','draft','2009-05-19','DISA FSO','policy','The organization prohibits authorized individuals from using an external information system to access the information system except in situations where the organization can verify the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.',NULL,NULL,NULL), ('000096','draft','2009-05-19','DISA FSO','policy','The organization prohibits authorized individuals from using an external information system to access the information system or to process, store, or transmit organization-controlled information except in situations where the organization has approved information system connection or processing agreements with the organizational entity hosting the external information system.',NULL,NULL,NULL), ('000097','draft','2009-09-14','DISA FSO','policy','The organization restricts or prohibits the use of organization-controlled portable storage devices by authorized individuals on external information systems.','AC-20(2).1','The organization being inspected/assessed','The organization conducting the inspection/assessment obtains and examines'), ('000098','draft','2009-05-19','DISA FSO','policy','The organization facilitates information sharing by enabling authorized users to determine whether access authorizations assigned to the sharing partner match the access restrictions on the information for organization-defined information circumstances where user discretion is required.','AC-21.1','The organization being inspected/assessed documents and implements a process to determine whether access authorizations assigned to the sharing partner match the access restrictions on the information for information circumstances defined in AC-21, CCI 1470 where user discretion is required.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed determines whether access authorizations assigned to the sharing partner match the access restrictions on the information for information circumstances defined in AC-21, CCI 1470 where user discretion is required.'), ('000099','draft','2009-05-19','DISA FSO','policy','The information system enforces information-sharing decisions by authorized users based on access authorizations of sharing partners and access restrictions on information to be shared.','AC-21(1).1','The organization being inspected/assessed configures the information system to enforce information-sharing decisions by authorized users based on access authorizations of sharing partners and access restrictions on information to be shared. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 99.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce information-sharing decisions by authorized users based on access authorizations of sharing partners and access restrictions on information to be shared. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 99.'), ('000100','draft','2009-05-20','DISA FSO','policy','The organization develops and documents a security awareness and training policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','AT-1.3','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.\n\n\nComment:\nDoDD 8570.01 will be updated with DoDD 8140 once signed.\n\nThe organization\'s use of their higher command policy/procedures meets this requirement if more stringent.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.\n\nComment:\nThe organization\'s use of their higher command policy/procedures meets this requirement if more stringent.'), ('000101','draft','2009-05-20','DISA FSO','policy','The organization disseminates a security awareness and training policy to organization-defined personnel or roles.','AT-1.4','DoD disseminates DoDD 8570.01 organization-wide via the DoD Issuances website.\nhttp://www.dtic.mil/whs/directives/corres/dir.html','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000102','draft','2009-05-20','DISA FSO','policy','The organization reviews and updates the current security awareness and training policy in accordance with organization-defined frequency.','AT-1.8','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000103','draft','2009-05-20','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the security awareness and training policy and associated security awareness and training controls.','AT-1.6','DoD develops and documents procedures to facilitate the implementation of the security awareness and training policy and associated security awareness and training controls within DoDD 8570.01. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000104','draft','2009-05-20','DISA FSO','policy','The organization disseminates security awareness and training procedures to organization-defined personnel or roles.','AT-1.7','DoD disseminates DoDD 8570.01 organization-wide via the DoD Issuances website.\nhttp://www.dtic.mil/whs/directives/corres/dir.html\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.\n\nDoD has defined the roles as organizational personnel with security awareness and training responsibilities.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.\n\nDoD has defined the roles as organizational personnel with security awareness and training responsibilities.'), ('000105','draft','2009-05-20','DISA FSO','policy','The organization reviews and updates the current security awareness and training procedures in accordance with an organization-defined frequency.','AT-1.9','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.\n\nDoD has defined the frequency as annually.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.\n\nDoD has defined the frequency as annually.'), ('000106','draft','2009-09-14','DISA FSO','policy','The organization provides basic security awareness training to information system users (including managers, senior executives, and contractors) as part of initial training for new users.','AT-2.2','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000107','draft','2009-05-20','DISA FSO','policy','The organization includes practical exercises in security awareness training that simulate actual cyber attacks.','AT-2(1).1','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000108','draft','2009-05-20','DISA FSO','policy','The organization provides role-based security training to personnel with assigned security roles and responsibilities before authorizing access to the information system or performing assigned duties.','AT-3.1','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT for privileged users is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT for privileged users is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000109','draft','2009-05-20','DISA FSO','policy','The organization provides role-based security training to personnel with assigned security roles and responsibilities when required by information system changes.','AT-3.2','Privileged user type Security-related education/training available through DISA IASE (e.g. VTE, Skill Soft, other professional sources) meets the provision of this control. The organization being inspected/assessed may define specific requirements within the above listed sources for their personnel.','The organization conducting the inspection/assessment obtains and examines documented records (IAW AT-4) of their privileged users training.'), ('000110','draft','2009-05-20','DISA FSO','policy','The organization provides refresher role-based security training to personnel with assigned security roles and responsibilities in accordance with organization-defined frequency.','AT-3.3','Privileged user type Security-related education/training available through DISA IASE (e.g. VTE, Skill Soft, other professional sources) meets the provision of this control. The organization being inspected/assessed may define specific requirements within the above listed sources for their personnel. ','The organization conducting the inspection/assessment obtains and examines documented records (IAW AT-4) of their privileged users training. '), ('000111','draft','2009-05-20','DISA FSO','policy','The organization defines a frequency for providing refresher role-based security training.','AT-3.4','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000112','draft','2009-05-20','DISA FSO','policy','The organization provides basic security awareness training to information system users (including managers, senior executives, and contractors) when required by information system changes.','AT-2.3','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('000113','draft','2009-09-14','DISA FSO','policy','The organization documents individual information system security training activities, including basic security awareness training and specific information system security training.','AT-4.1','The organization being inspected/assessed identifies and documents training activities to include basic security awareness training (per AT-2) and role-based security related training (per AT-3) IAW DoD 8570.01M.','The organization conducting the inspection/assessment obtains and examines the security awareness training activities to ensure the organization being inspected/assessed documents training activities to include basic security awareness training (per AT-2) and role-based security related training (per AT-3) IAW DoD 8570.01M.'), ('000114','draft','2009-09-14','DISA FSO','policy','The organization monitors individual information system security training activities, including basic security awareness training and specific information system security training.','AT-4.2','The organization being inspected/assessed maintains and monitors records identifying personnel who have received training and the date the training was received','The organization conducting the inspection/assessment obtains and examines records identifying personnel who have received training and the date the training was received'), ('000115','draft','2009-09-14','DISA FSO','policy','The organization establishes contact with selected groups and associations within the security community to facilitate ongoing security education and training; to stay up to date with the latest recommended security practices, techniques, and technologies; and to share current security-related information including threats, vulnerabilities, and incidents.',NULL,NULL,NULL), ('000116','draft','2009-09-14','DISA FSO','policy','The organization institutionalizes contact with selected groups and associations within the security community to facilitate ongoing security education and training; to stay up to date with the latest recommended security practices, techniques, and technologies; and to share current security-related information including threats, vulnerabilities, and incidents.',NULL,NULL,NULL), ('000117','draft','2009-05-20','DISA FSO','policy','The organization develops and documents an audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','AU-1.3','The organization being inspected/assessed develops and documents an audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','The organization conducting the inspection/assessment obtains and examines the audit and accountability policy to ensure that the audit and accountability policy addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.'), ('000118','draft','2009-05-20','DISA FSO','policy','The organization disseminates a formal, documented, audit and accountability policy to elements within the organization having associated audit and accountability roles and responsibilities.',NULL,NULL,NULL), ('000119','draft','2009-05-20','DISA FSO','policy','The organization reviews and updates the audit and accountability policy on an organization-defined frequency.','AU-1.7','The organization being inspected/assessed reviews and updates the audit and accountability policy annually. The organization must maintain an audit trail of reviews and updates. Any changes or acceptance of the document without change must be captured in the audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates the audit and accountability policy annually. DoD has defined the frequency as annually.'), ('000120','draft','2009-05-20','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.','AU-1.5','The organization being inspected/assessed develops and documents procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.','The organization conducting the inspection/assessment obtains and examines the audit and accountability procedures to ensure that the procedures facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.'), ('000121','draft','2009-05-20','DISA FSO','policy','The organization disseminates formal, documented, procedures to elements within the organization having associated audit and accountability roles and responsibilities.',NULL,NULL,NULL), ('000122','draft','2009-05-20','DISA FSO','policy','The organization reviews and updates the audit and accountability procedures on an organization-defined frequency.','AU-1.9','The organization being inspected/assessed reviews and updates the audit and accountability procedures annually. The organization must maintain an audit trail of reviews and updates. Any changes or acceptance of the document without change must be captured in the audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates the audit and accountability procedures annually. DoD has defined the frequency as annually.'), ('000123','draft','2009-09-15','DISA FSO','policy','The organization determines the information system must be capable of auditing an organization-defined list of auditable events.','AU-2.1','The organization being inspected/assessed determines whether the information system is capable of auditing:\n - Successful and unsuccessful attempts to access, modify, or delete privileges, security objects, security levels, or categories of information (e.g. Classification levels),\n - Successful and unsuccessful logon attempts,\n - Privileged activities or other system level access,\n - Starting and ending time for user access to the system,\n - Concurrent logons from different workstations,\n - Successful and unsuccessful accesses to objects,\n - All program initiations,\n - All direct access to the information system,\n - All account creations, modifications, disabling, and terminations,\n - All kernel module load, unload, and restart. The organization must document those auditable events that are not captured.\n\nDoD has defined the information system auditable events as successful and unsuccessful attempts to access, modify, or delete privileges, security objects, security levels, or categories of information (e.g. classification levels). Successful and unsuccessful logon attempts, Privileged activities or other system level access, Starting and ending time for user access to the system, Concurrent logons from different workstations, Successful and unsuccessful accesses to objects, All program initiations, All direct access to the information system. All account creations, modifications, disabling, and terminations. All kernel module load, unload, and restart.','The organization conducting the inspection/assessment obtains and examines the documentation of the auditable events to ensure the information system is capable of auditing the:\n - Successful and unsuccessful attempts to access, modify, or delete privileges, security objects, security levels, or categories of information (e.g. Classification levels),\n - Successful and unsuccessful logon attempts,\n - Privileged activities or other system level access,\n - Starting and ending time for user access to the system,\n - Concurrent logons from different workstations,\n - Successful and unsuccessful accesses to objects,\n - All program initiations,\n - All direct access to the information system,\n - All account creations, modifications, disabling, and terminations,\n - All kernel module load, unload, and restart.\n\n DoD has defined the information system auditable events as successful and unsuccessful attempts to access, modify, or delete privileges, security objects, security levels, or categories of information (e.g. classification levels). Successful and unsuccessful logon attempts, Privileged activities or other system level access, Starting and ending time for user access to the system, Concurrent logons from different workstations, Successful and unsuccessful accesses to objects, All program initiations, All direct access to the information system. All account creations, modifications, disabling, and terminations. All kernel module load, unload, and restart.'), ('000124','draft','2009-09-15','DISA FSO','policy','The organization coordinates the security audit function with other organizational entities requiring audit-related information to enhance mutual support and to help guide the selection of auditable events.','AU-2.3','The organization being inspected/assessed documents and implements within the audit and accountability policy and procedures, a process to coordinate the additional auditable events. The objective is to enhance mutual support and to help guide the selection of auditable events.\n\nThe organization must maintain artifacts of the coordination.','The organization conducting the inspection/assessment obtains and examines the audit and accountability policy and procedures as well as artifacts of the coordination to determine if coordination is necessary and if necessary, whether it has been performed.'), ('000125','draft','2009-09-15','DISA FSO','policy','The organization provides a rationale for why the list of auditable events is deemed to be adequate to support after-the-fact investigations of security incidents.','AU-2.4','The organization being inspected/assessed documents in the audit and accountability policy the list of auditable system events, the organization provides clearly stated rationale for the selection of each system event. The rationale will support any after-action investigations of security event.','The organization conducting the inspection/assessment obtains and examines the audit and accountability policy and procedures to ensure the organization being inspected/assess has defined the auditable system events, rationale for the selection, and that the organization has defined how the auditable events will support after-action investigations of security events.'), ('000126','draft','2009-09-15','DISA FSO','policy','The organization determines that the organization-defined subset of the auditable events defined in AU-2 are to be audited within the information system.','AU-2.5','The organization conducting the inspection/assessment reviews the documented audit process as well as audit logs to ensure that the organization being inspected/assessed audits all auditable events defined in AU-2 (a) per occurrence.\n\nDoD has defined the actions as all auditable events defined in AU-2 (a) per occurrence.','The organization conducting the inspection/assessment reviews the documented audit process as well as audit logs to ensure that the organization being inspected/assessed audits all auditable events defined in AU-2 (a) per occurrence.\n\nDoD has defined the actions as all auditable events defined in AU-2 (a) per occurrence.'), ('000127','draft','2009-05-20','DISA FSO','policy','The organization reviews and updates the list of organization-defined audited events on an organization-defined frequency.','AU-2(3).1','The organization being inspected/assessed will conduct reviews of the list of auditable events as defined in AU-2 (d), CCI 1485 annually or more frequently upon changes to situational awareness of threats or vulnerabilities. The organization will generate and maintain an audit trail to document the completion of the review and update actions. DoD has defined the frequency as annually or more frequently upon changes to situational awareness of threats or vulnerabilities.','The organization conducting the inspection/assessment reviews the audit trail showing reviews and updates to the list of audited events to ensure that the list is reviewed and updated annually or more frequently upon changes to situational awareness of threats or vulnerabilities. DoD has defined the frequency as annually or more frequently upon changes to situational awareness of threats or vulnerabilities.'), ('000128','draft','2009-05-20','DISA FSO','policy','The organization includes execution of privileged functions in the list of events to be audited by the information system.',NULL,NULL,NULL), ('000129','draft','2009-09-15','DISA FSO','policy','The organization defines in the auditable events that the information system must be capable of auditing based on a risk assessment and mission/business needs.',NULL,NULL,NULL), ('000130','draft','2009-05-20','DISA FSO','technical','The information system generates audit records containing information that establishes what type of event occurred.','AU-3.1','The organization being inspected/assessed configures the information system to generate audit records containing information that establishes what type of event occurred For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 130.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing information that establishes what type of event occurred. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain information that establishes what type of event occurred. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 130.'), ('000131','draft','2009-05-20','DISA FSO','technical','The information system generates audit records containing information that establishes when an event occurred.','AU-3.2','The organization being inspected/assessed configures the information system to generate audit records containing information that establishes when an event occurred For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 131.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing information that establishes when an event occurred. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain information that establishes when an event occurred. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 131.'), ('000132','draft','2009-05-20','DISA FSO','technical','The information system generates audit records containing information that establishes where the event occurred.','AU-3.3','The organization being inspected/assessed configures the information system to generate audit records containing information that establishes where the event occurred For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 132.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing information that establishes where the event occurred. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain information that establishes where the event occurred. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 132.'), ('000133','draft','2009-05-20','DISA FSO','technical','The information system generates audit records containing information that establishes the source of the event.','AU-3.4','The organization being inspected/assessed configures the information system to generate audit records containing information that establishes the source of the event. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 133.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing information that establishes the source of the event. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain information that establishes the source of the event. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 133.'), ('000134','draft','2009-05-20','DISA FSO','technical','The information system generates audit records containing information that establishes the outcome of the event.','AU-3.5','The organization being inspected/assessed configures the information system to generate audit records containing information that establishes the outcome of the event. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 134.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing information that establishes the outcome of the event. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain information that establishes the outcome of the event. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 134.'), ('000135','draft','2009-05-20','DISA FSO','technical','The information system generates audit records containing the organization-defined additional, more detailed information that is to be included in the audit records.','AU-3(1).1','The organization being inspected/assessed configures the information system to generate audit records containing the organization defined additional, more detailed information as defined in AU-3 (1), CCI 1488 that is to be included in the audit records.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 135.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing the organization defined additional, more detailed information as defined in AU-3 (1), CCI 1488 that is to be included in the audit records. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain organization defined additional, more detailed information that is to be included in the audit records.\n\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 135.'), ('000136','draft','2009-05-20','DISA FSO','technical','The organization centrally manages the content of audit records generated by organization-defined information system components.',NULL,NULL,NULL), ('000137','draft','2009-05-20','DISA FSO','policy','The organization allocates audit record storage capacity.',NULL,NULL,NULL), ('000138','draft','2009-05-20','DISA FSO','technical','The organization configures auditing to reduce the likelihood of storage capacity being exceeded.',NULL,NULL,NULL), ('000139','draft','2009-09-15','DISA FSO','technical','The information system alerts designated organization-defined personnel or roles in the event of an audit processing failure.','AU-5.1','The organization being inspected/assessed configures the information system to alert at a minimum, the SCA and ISSO in the event of an audit processing failure. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 139. DoD has defined the personnel or roles as at a minimum, the SCA and ISSO. ','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to alert at a minimum, the SCA and ISSO in the event of an audit processing failure. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 139. DoD has defined the personnel or roles as at a minimum, the SCA and ISSO. '), ('000140','draft','2009-05-20','DISA FSO','technical','The information system takes organization-defined actions upon audit failure (e.g., shut down information system, overwrite oldest audit records, stop generating audit records).','AU-5.3','The organization being inspected/assessed configures the information system to take actions as defined in AU-5, CCI 1490 upon audit failure. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 140.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to take actions as defined in AU-5, CCI 1490 upon audit failure. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 140.'), ('000141','draft','2009-11-03','DISA FSO','policy','The organization ensures that information security resources are available for expenditure as planned.','PM-3.3','The organization being inspected/assessed documents and implements a process to ensure that information security resources are available for expenditure as planned.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensure that information security resources are available for expenditure as planned.'), ('000142','draft','2009-11-03','DISA FSO','policy','The organization implements a process for ensuring that plans of action and milestones for the security program and the associated organizational information systems are maintained.','PM-4.1','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to maintain a process for plans of action and milestones for the security program.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to maintain a process for plans of action and milestones for the security program.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.'), ('000143','draft','2009-05-20','DISA FSO','technical','The information system provides a warning when allocated audit record storage volume reaches an organization-defined percentage of maximum audit record storage capacity.',NULL,NULL,NULL), ('000144','draft','2009-05-20','DISA FSO','technical','The information system provides a real-time alert when organization-defined audit failure events occur.',NULL,NULL,NULL), ('000145','draft','2009-05-20','DISA FSO','policy','The information system enforces configurable network communications traffic volume thresholds reflecting limits on auditing capacity by delaying or rejecting network traffic which exceeds the organization-defined thresholds.','AU-5(3).1','The organization being inspected/assessed configures the information system to delay network communications traffic exceeding the thresholds defined in AU-5 (3), CCI 1859. DoD has defined the action to take as delay. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 145.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to delay network communications traffic exceeding the thresholds defined in AU-5 (3), CCI 1859. DoD has defined the action to take as delay. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 145.'), ('000146','draft','2009-05-20','DISA FSO','policy','The organization defines the percentage of maximum audit record storage capacity that when exceeded, a warning is provided.',NULL,NULL,NULL), ('000147','draft','2009-05-22','DISA FSO','policy','The organization defines the audit failure events requiring real-time alerts.','AU-5(2).1','DoD has defined the audit failure events as all.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the audit failure events as all.'), ('000148','draft','2009-05-22','DISA FSO','policy','The organization reviews and analyzes information system audit records on an organization-defined frequency for indications of organization-defined inappropriate or unusual activity.','AU-6.1','The organization being inspected/assessed documents and implements a process to review and analyze information system audit records every seven days or more frequently if required by an alarm event or anomaly for indications of activity defined in AU-6, CCI 1862. The organization must maintain an audit trail of the reviews. DoD has defined the frequency as every seven days or more frequently if required by an alarm event or anomaly.','The organization conducting the inspection/assessment obtains and examines the documented process for audit trail reviews as well as the audit trail showing the reviews to ensure the organization being inspected/assessed reviews and analyzes information system audit records every seven days or more frequently if required by an alarm event or anomaly for indications of activity defined in AU-6, CCI 1862. DoD has defined the frequency as every seven days or more frequently if required by an alarm event or anomaly.'), ('000149','draft','2009-05-22','DISA FSO','policy','The organization reports any findings to organization-defined personnel or roles for indications of organization-defined inappropriate or unusual activity.','AU-6.4','The organization being inspected/assessed documents and implements a process for reporting any findings of inappropriate or unusual activity as defined in AU-6, CCI 1862 to at a minimum, the ISSO and ISSM. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines the documented process for reporting findings as well as a sampling of historical reports to ensure the organization being inspected/assessed reports any findings of inappropriate or unusual activity as defined in AU-6, CCI 1862 to at a minimum, the ISSO and ISSM. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('000150','draft','2009-09-15','DISA FSO','policy','The organization adjusts the level of audit review, analysis, and reporting within the information system when there is a change in risk to organizational operations, organizational assets, individuals, other organizations, or the Nation based on law enforcement information, intelligence information, or other credible sources of information.',NULL,NULL,NULL), ('000151','draft','2009-09-15','DISA FSO','policy','The organization defines the frequency for the review and analysis of information system audit records for organization-defined inappropriate or unusual activity.','AU-6.2','DoD has defined the frequency as every seven days or more frequently if required by an alarm event or anomaly.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every seven days or more frequently if required by an alarm event or anomaly.'), ('000152','draft','2009-05-22','DISA FSO','technical','The information system integrates audit review, analysis, and reporting processes to support organizational processes for investigation and response to suspicious activities.',NULL,NULL,NULL), ('000153','draft','2009-05-22','DISA FSO','policy','The organization analyzes and correlates audit records across different repositories to gain organization-wide situational awareness.','AU-6(3).1','The organization being inspected/assessed documents and implements a process to analyze and correlate audit records across different repositories to gain organization-wide situational awareness. The organization must maintain a record of the analysis.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of analysis to ensure the organization being inspected/assessed analyzes and correlates audit records across different repositories to gain organization-wide situational awareness.'), ('000154','draft','2009-05-22','DISA FSO','technical','The information system provides the capability to centrally review and analyze audit records from multiple components within the system.','AU-6(4).1','The organization being inspected/assessed configures the information system to provide a capability to centrally review and analyze audit records from multiple components within the system. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 154.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to provide a capability to centrally review and analyze audit records from multiple components within the system. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 154.'), ('000155','draft','2009-09-15','DISA FSO','policy','The organization integrates analysis of audit records with analysis of vulnerability scanning information, performance data, and network monitoring information to further enhance the ability to identify inappropriate or unusual activity.',NULL,NULL,NULL), ('000156','draft','2009-05-22','DISA FSO','technical','The information system provides an audit reduction capability.',NULL,NULL,NULL), ('000157','draft','2009-05-22','DISA FSO','technical','The information system provides a report generation capability.',NULL,NULL,NULL), ('000158','draft','2009-05-22','DISA FSO','technical','The information system provides the capability to process audit records for events of interest based on organization-defined audit fields within audit records.','AU-7(1).1','The organization being inspected/assessed must employ information systems that provide the capability to process audit records for events of interest based on audit fields within audit records defined in AU-7 (1), CCI 1883. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 158.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provides the capability to process audit records for events of interest based on audit fields within audit records as defined in AU-7 (1), CCI 1883. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 158.'), ('000159','draft','2009-05-22','DISA FSO','technical','The information system uses internal system clocks to generate time stamps for audit records.','AU-8.1','The organization being inspected/assessed configures the information system to use internal system clocks to generate time stamps for audit records. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 159.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to use internal system clocks to generate time stamps for audit records. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 159.'), ('000160','draft','2009-05-22','DISA FSO','technical','The information system synchronizes internal information system clocks on an organization-defined frequency with an organization-defined authoritative time source.',NULL,NULL,NULL), ('000161','draft','2009-05-22','DISA FSO','policy','The organization defines the frequency for the synchronization of internal information system clocks.','AU-8(1).1','DoD has defined the frequency as every 24 hours for networked systems.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 24 hours for networked systems.'), ('000162','draft','2009-05-22','DISA FSO','technical','The information system protects audit information from unauthorized access.','AU-9.1','The organization being inspected/assessed configures the information system to disallow unauthorized access to audit information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 162.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to disallow unauthorized access to audit information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 162.'), ('000163','draft','2009-05-22','DISA FSO','technical','The information system protects audit information from unauthorized modification.','AU-9.2','The organization being inspected/assessed configures the information system to disallow unauthorized modification of audit information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 163.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to disallow unauthorized modification of audit information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 163.'), ('000164','draft','2009-05-22','DISA FSO','technical','The information system protects audit information from unauthorized deletion.','AU-9.3','The organization being inspected/assessed configures the information system to disallow unauthorized deletion of audit information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 164.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to disallow unauthorized deletion of audit information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 164.'), ('000165','draft','2009-05-22','DISA FSO','policy','The information system writes audit records to hardware-enforced, write-once media.','AU-9(1).1','The organization being inspected/assessed configures the information system to write audit records to hardware-enforced, write-once media. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 165.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to write audit records to hardware-enforced, write-once media. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 165.'), ('000166','draft','2009-05-22','DISA FSO','technical','The information system protects against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.','AU-10.1','The organization being inspected/assessed configures the information system to protect against an individual falsely denying having performed actions to be covered by non-repudiation defined in DoDI 8520.02 and DoDI 8520.03. DoDI 8520.02 and DoDI 8520.03 meet the DoD requirement to define the actions to be covered by non-repudiation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 166.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed protects against an individual falsely denying having performed actions to be covered by non-repudiation defined in DoDI 8520.02 and DoDI 8520.03. DoDI 8520.02 and DoDI 8520.03 meet the DoD requirement to define the actions to be covered by non-repudiation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 166.'), ('000167','draft','2009-05-22','DISA FSO','policy','The organization retains audit records for an organization-defined time period to provide support for after-the-fact investigations of security incidents and to meet regulatory and organizational information retention requirements.','AU-11.1','The organization being inspected/assessed will take action to ensure it retains audit records for 5 years for SAMI; otherwise for at least 1 year to provide support for after-the-fact investigations of security incidents and to meet regulatory and organizational information retention requirements. DoD has defined the time period as 5 years for SAMI; otherwise for at least 1 year.','The organization conducting the inspection/assessment reviews the information system audit records and any other relevant documents or records to ensure the organization being inspected/assessed retains its audit records for 5 years for SAMI; otherwise for at least 1 year. DoD has defined the time period as 5 years for SAMI; otherwise for at least 1 year.'), ('000168','draft','2009-09-15','DISA FSO','policy','The organization defines the time period for retention of audit records, which is consistent with its records retention policy, to provide support for after-the-fact investigations of security incidents and meet regulatory and organizational information retention requirements.','AU-11.2','DoD has defined the time period as 5 years for SAMI; otherwise for at least 1 year.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 5 years for SAMI; otherwise for at least 1 year.'), ('000169','draft','2009-05-22','DISA FSO','technical','The information system provides audit record generation capability for the auditable events defined in AU-2 a. at organization-defined information system components.','AU-12.1','The organization being inspected/assessed acquires or designs all information system and network components that provide audit record generation capability for the auditable events defined in AU-2 a. DoD has defined the information system components as all information system and network components.','The organization conducting the inspection/assessment examines the information system to ensure that all information system and network components provide audit record generation capability for the auditable events defined in AU-2 a. DoD has defined the information system components as all information system and network components.'), ('000170','draft','2009-11-03','DISA FSO','policy','The organization implements a process for ensuring that plans of action and milestones for the security program and associated organizational information systems document the remedial information security actions to adequately respond to risk to organizational operations and assets, individuals, other organizations, and the Nation.','PM-4.3','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to maintain a process to document the remedial information security actions that mitigate risk to organizational operations and assets, individuals, other organizations, and the Nation.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to maintain a process to document the remedial information security actions that mitigate risk to organizational operations and assets, individuals, other organizations, and the Nation.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.'), ('000171','draft','2009-09-15','DISA FSO','technical','The information system allows organization-defined personnel or roles to select which auditable events are to be audited by specific components of the information system.','AU-12.3','The organization being inspected/assessed configures the information system to ensure that only the ISSM or individuals appointed by the ISSM select which auditable events are to be audited by specific components of the information system. DoD has defined the personnel or roles as the ISSM or individuals appointed by the ISSM.','The organization conducting the inspection/assessment examines a sampling of information system components and confirms that the individuals capable of selecting auditable events are the ISSM or individuals appointed by the ISSM. DoD has defined the personnel or roles as the ISSM or individuals appointed by the ISSM.'), ('000172','draft','2009-09-15','DISA FSO','technical','The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.','AU-12.5','The organization being inspected/assessed configures the information system to generate audit records for the events defined in AU-2 d with the content defined in AU-3. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 172.','The organization conducting the inspection/assessment examines the information system to ensure that the system generates audit records for the events defined in AU-2 d with the content defined in AU-3. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 172.'), ('000173','draft','2009-09-15','DISA FSO','policy','The organization defines the level of tolerance for relationship between time stamps of individual records in the audit trail that will be used for correlation.','AU-12(1).1','The organization being inspected/assessed will define and document their level of tolerance for variation in the time stamps applied to the audit data generated by the organization\'s information systems.\n\nDoD has determined that the level of tolerance is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment reviews the organization\'s audit and accountability policy and procedures addressing audit record generation and retention; information system audit configuration settings and associated documentation; information system audit records; and any other relevant documents or records. The objective is to validate the organization has defined and documented its level of tolerance for variation in the time stamps applied to the audit data generated by the organization\'s information systems.\n\nDoD has determined that the level of tolerance is not appropriate to define at the Enterprise level.'), ('000174','draft','2009-05-22','DISA FSO','technical','The information system compiles audit records from organization-defined information system components into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance for relationship between time stamps of individual records in the audit trail.','AU-12(1).2','The organization being inspected/assessed configures the information system to compile audit records from information system components defined in AU-12 (1), CCI 1577 into a system-wide (logical or physical) audit trail that is time-correlated to within the level of tolerance defined in AU-12 (1), CCI-000173 for relationship between time stamps of individual records in the audit trail.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 174.','The organization conducting the inspection/assessment examines the information system to ensure the information system is configured to compile audit records from information system components defined in AU-12 (1), CCI 1577 into a system-wide (logical or physical) audit trail that is time-correlated to within the level of tolerance defined in AU-12 (1), CCI-000173 for relationship between time stamps of individual records in the audit trail.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 174.'), ('000175','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators for users and devices by verifying, as part of the initial authenticator distribution, the identity of the individual and/or device receiving the authenticator.',NULL,NULL,NULL), ('000176','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by establishing initial authenticator content for authenticators defined by the organization.','IA-5.2','The organization being inspected/assessed defines and documents procedures for setting initial authenticator content.','The organization conducting the inspection/assessment obtains and examines the documented procedures for setting initial authenticator content to ensure they have been defined.'), ('000177','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators for users and devices by establishing and implementing administrative procedures for initial authenticator distribution, for lost/compromised, or damaged authenticators, and for revoking authenticators.',NULL,NULL,NULL), ('000178','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators for users and devices by changing default content of authenticators upon information system installation.',NULL,NULL,NULL), ('000179','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by establishing minimum lifetime restrictions for authenticators.','IA-5.13','The organization being inspected/assessed defines and documents minimum lifetime restrictions for authenticators.','The organization conducting the inspection/assessment obtains and examines the documented minimum lifetime restrictions for authenticators to ensure they have been defined.'), ('000180','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by establishing maximum lifetime restrictions for authenticators.','IA-5.14','Per IA-5, CCI 1610, DoD has established the maximum lifetime restrictions for authenticators as CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years.','Per IA-5, CCI 1610, DoD has established the maximum lifetime restrictions for authenticators as CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years.'), ('000181','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by establishing reuse conditions for authenticators.','IA-5.15','The organization being inspected/assessed defines and documents the reuse conditions for authenticators.','The organization conducting the inspection/assessment obtains and examines the documented reuse conditions for authenticators to ensure they have been defined.'), ('000182','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by changing/refreshing authenticators in accordance with the organization-defined time period by authenticator type.','IA-5.16','The organization being inspected/assessed documents and implements procedures for changing/refreshing authenticators in the following time periods: CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years. DoD has defined the time period as CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years.','The organization conducting the inspection/assessment obtains and examines the documented procedures for authenticator change/refresh to ensure the procedures are defined. The organization conducting the inspection/assessment obtains and examines a sampling of authenticator age data to ensure that authenticators are changed or refreshed in the following time periods: CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years. DoD has defined the time period as CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years.'), ('000183','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by protecting authenticator content from unauthorized disclosure.','IA-5.19','The organization being inspected/assessed documents and implements procedures to protect authenticator content from unauthorized disclosure.','The organization conducting the inspection/assessment obtains and examines the documented procedures to protect authenticator content from unauthorized disclosure to ensure the procedures are defined.'), ('000184','draft','2009-05-22','DISA FSO','policy','The organization manages information system authenticators by requiring individuals to take, and having devices implement, specific security safeguards to protect authenticators.',NULL,NULL,NULL), ('000185','draft','2009-09-15','DISA FSO','technical','The information system, for PKI-based authentication, validates certifications by constructing and verifying a certification path to an accepted trust anchor including checking certificate status information.','IA-5(2).1','The information system performing hardware token-based authentication must be configured to validate DoD-approved PKI credentials in accordance with RFC 5280. The information system must be configured to perform a revocation check as part of the certificate validation process. Revocation checking may be performed using certificate revocation lists (CRLs) published by the issuing PKI or Online Certificate Status Protocol (OCSP) services. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 185.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to validate DoD-approved PKI credentials in accordance with RFC 5280. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to perform a revocation check as part of the certificate validation process. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 185.'), ('000186','draft','2009-09-15','DISA FSO','technical','The information system, for PKI-based authentication, enforces authorized access to the corresponding private key.','IA-5(2).2','Information systems must not have access to users private keys. The cryptographic container in which the private keys are stored (e.g. smart card or software module) implements access controls and protections to ensure that only the authorized user can activate the private key. DoD users agree to protect their PKI credentials in accordance with the DD-2842 agreement that is executed for each credential. They are reminded of these responsibilities in annual IA training. The private key identifying the information system must be stored in a cryptographic container that is FIPS 140-2 validated. Only authorized information system operators should have access to activation data (e.g. password or PIN) for the private key.','The organization conducting the inspection/assessment examines the information system to ensure the information system does not contain any users private keys. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to store its own private key in a FIPS 140-2 validated cryptographic module.'), ('000187','draft','2009-09-15','DISA FSO','technical','The information system, for PKI-based authentication, maps the authenticated identity to the account of the individual or group.','IA-5(2).3','The information system performing PKI-based authentication must be configured to map the authenticated PKI credential to a corresponding network or information system account or role in accordance with DoDI 8520.03. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 187.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to map authenticated PKI credentials to corresponding network or information system accounts or roles in accordance with DoDI 8520.03. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 187.'), ('000188','draft','2009-09-15','DISA FSO','policy','The organization requires that the registration process to receive an organizational-defined type of authenticator be carried out in person before a designated registration authority with authorization by a designated organizational official (e.g., a supervisor).',NULL,NULL,NULL), ('000189','draft','2009-09-15','DISA FSO','policy','The organization employs automated tools to determine if authenticators are sufficiently strong to resist attacks intended to discover or otherwise compromise the authenticators.',NULL,NULL,NULL), ('000190','draft','2009-09-15','DISA FSO','policy','The organization requires vendors/manufacturers of information system components to provide unique authenticators or change default authenticators prior to delivery.',NULL,NULL,NULL), ('000191','deprecated','2009-09-15','DISA FSO','policy','The organization enforces password complexity by the number of special characters used.',NULL,NULL,NULL), ('000192','draft','2009-09-15','DISA FSO','technical','The information system enforces password complexity by the minimum number of upper case characters used.','IA-5(1).1','The organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of upper case characters used. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 192.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of upper case characters used. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 192.'), ('000193','draft','2009-09-15','DISA FSO','technical','The information system enforces password complexity by the minimum number of lower case characters used.','IA-5(1).2','The organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of lower case characters used. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 193.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of lower case characters used. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 193.'), ('000194','draft','2009-09-15','DISA FSO','technical','The information system enforces password complexity by the minimum number of numeric characters used.','IA-5(1).4','The organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of numeric characters used. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 194.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of numeric characters used. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 194.'), ('000195','draft','2009-09-15','DISA FSO','technical','The information system, for password-based authentication, when new passwords are created, enforces that at least an organization-defined number of characters are changed.','IA-5(1).10','The organization being inspected/assessed configures the information system to enforce that at least 50% of the minimum password length is changed.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 195.\nDoD has defined the minimum number of characters as 50% of the minimum password length.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce that at least 50% of the minimum password length is changed.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 195.\nDoD has defined the minimum number of characters as 50% of the minimum password length.'), ('000196','draft','2009-09-15','DISA FSO','technical','The information system, for password-based authentication, stores only cryptographically-protected passwords.','IA-5(1).12','The organization being inspected/assessed configures the information system to store only encrypted representations of passwords.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 196.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to store only encrypted representations of passwords.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 196.'), ('000197','draft','2009-09-15','DISA FSO','technical','The information system, for password-based authentication, transmits only cryptographically-protected passwords.','IA-5(1).13','The organization being inspected/assessed configures the information system to transmit only encrypted representations of passwords.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 197.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to transmit only encrypted representations of passwords.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 197.'), ('000198','draft','2009-09-15','DISA FSO','technical','The information system enforces minimum password lifetime restrictions.','IA-5(1).14','The organization being inspected/assessed configures the information system to enforce minimum password lifetime restrictions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 198.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce minimum password lifetime restrictions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 198.'), ('000199','draft','2009-09-15','DISA FSO','technical','The information system enforces maximum password lifetime restrictions.','IA-5(1).15','The organization being inspected/assessed configures the information system to enforce maximum password lifetime restrictions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 199.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce maximum password lifetime restrictions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 199.'), ('000200','draft','2009-05-22','DISA FSO','technical','The information system prohibits password reuse for the organization-defined number of generations.','IA-5(1).18','The organization being inspected/assessed configures the information system to prohibit reuse for a minimum of 5 generations. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 200. DoD has defined the number of generations as a minimum of 5.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prohibit reuse for a minimum of 5 generations. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 200. DoD has defined the number of generations as a minimum of 5.'), ('000201','draft','2009-05-22','DISA FSO','policy','The organization protects authenticators commensurate with the security category of the information to which use of the authenticator permits access.','IA-5(6).1','The organization being inspected/assessed documents and implements procedures to protect authenticators commensurate with the security category of the information to which use of the authenticator permits access.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed protects authenticators commensurate with the security category of the information to which use of the authenticator permits access.'), ('000202','draft','2009-05-22','DISA FSO','policy','The organization ensures unencrypted static authenticators are not embedded in access scripts.','IA-5(7).1','The organization being inspected/assessed documents and implements requirements that unencrypted static authenticators not be embedded in access scripts.','The organization conducting the inspection/assessment obtains and examines the requirements that unencrypted static authenticators not be embedded in access scripts to ensure the organization being inspected/assessed ensures unencrypted static authenticators are not embedded in access scripts.'), ('000203','draft','2009-05-22','DISA FSO','policy','The organization ensures unencrypted static authenticators are not stored on function keys.','IA-5(7).2','The organization being inspected/assessed documents and implements requirements that unencrypted static authenticators not be stored on function keys.','The organization conducting the inspection/assessment obtains and examines the requirements that unencrypted static authenticators not be stored on function keys to ensure the organization being inspected/assessed ensures unencrypted static authenticators are not stored on function keys.'), ('000204','draft','2009-05-22','DISA FSO','policy','The organization defines the security safeguards required to manage the risk of compromise due to individuals having accounts on multiple information systems.','IA-5(8).1','DoD has defined the security safeguards as policies and user training including advising users not to use the same password for any of the following: Domains of differing classification levels. More than one domain of a classification level (e.g., internal agency network and Intelink). More than one privilege level (e.g., user, administrator).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security safeguards as policies and user training including advising users not to use the same password for any of the following: Domains of differing classification levels. More than one domain of a classification level (e.g., internal agency network and Intelink). More than one privilege level (e.g., user, administrator).'), ('000205','draft','2009-05-22','DISA FSO','technical','The information system enforces minimum password length.','IA-5(1).3','The organization being inspected/assessed configures the information system to enforce minimum password length. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 205.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce minimum password length. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 205.'), ('000206','draft','2009-05-22','DISA FSO','technical','The information system obscures feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.','IA-6.1','The organization being inspected/assessed configures the information system to obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 206.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 206.'), ('000207','draft','2009-11-03','DISA FSO','policy','The organization develops and maintains an inventory of its information systems.','PM-5.1','DITPR is the inventory for all DoD information systems.\n\nThe organization being inspected/assessed must register and maintain their information systems in DITPR.','DITPR is the inventory for all DoD information systems.\n\nThe organization conducting the inspection/assessment obtains and examines the inventory of information systems via DITPR to ensure the organization being inspected/assessed registers their information systems in DITPR.'), ('000208','draft','2009-09-14','DISA FSO','policy','The organization determines normal time-of-day and duration usage for information system accounts.',NULL,NULL,NULL), ('000209','draft','2009-11-03','DISA FSO','policy','The organization develops the results of information security measures of performance.','PM-6.1','The Federal Information Systems Management Act (FISMA) meets the DoD requirements for information security performance measures of performance.','The Federal Information Systems Management Act (FISMA) meets the DoD requirements for information security performance measures of performance.\n\nDoD organizations are automatically compliant with this CCI as they are covered at the DoD level by FISMA.'), ('000210','draft','2009-11-03','DISA FSO','policy','The organization monitors the results of information security measures of performance.','PM-6.2','The Federal Information Systems Management Act (FISMA) meets the DoD requirements for information security performance measures of performance.','The Federal Information Systems Management Act (FISMA) meets the DoD requirements for information security performance measures of performance.\n\nDoD organizations are automatically compliant with this CCI as they are covered at the DoD level by FISMA.'), ('000211','draft','2009-11-03','DISA FSO','policy','The organization reports on the results of information security measures of performance.','PM-6.3','The organization being inspected/assessed reports the results of information security measures of performance IAW FISMA reporting guidance.','The organization conducting the inspection/assessment obtains and examines FISMA reporting documentation.'), ('000212','draft','2009-11-03','DISA FSO','policy','The organization develops an enterprise architecture with consideration for information security and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-7.1','The GIG IA Architecture meets the DoD requirements for enterprise architecture.\n\nDoD components are automatically compliant with this CCI as they covered at the DoD level.','The GIG IA Architecture meets the DoD requirements for enterprise architecture.\n\nDoD components are automatically compliant with this CCI as they covered at the DoD level.'), ('000213','draft','2009-09-14','DISA FSO','technical','The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.','AC-3.1','The organization being inspected/assessed configures the information system to enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 213.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 213.'), ('000214','draft','2009-09-14','DISA FSO','policy','The organization establishes a Discretionary Access Control (DAC) policy that limits propagation of access rights.',NULL,NULL,NULL), ('000215','draft','2009-09-14','DISA FSO','policy','The organization establishes a Discretionary Access Control (DAC) policy that includes or excludes access to the granularity of a single user.',NULL,NULL,NULL), ('000216','draft','2009-11-03','DISA FSO','policy','The organization develops and documents a critical infrastructure and key resource protection plan that addresses information security issues.','PM-8.1','DoDD 3020.40 meets the DoD requirement for the development of a critical infrastructure and key resource protection plan.\n\nDoD components are automatically compliant with this CCI as they are covered by the DoD level, DoDD 3020.40.','DoDD 3020.40 meets the DoD requirement for the development of a critical infrastructure and key resource protection plan.\n\nDoD components are automatically compliant with this CCI as they are covered by the DoD level, DoDD 3020.40.'), ('000217','draft','2009-09-24','DISA FSO','policy','The organization defines a time period after which inactive accounts are automatically disabled.','AC-2(3).2','DoD has defined the time period as 35 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 35 days.'), ('000218','draft','2009-09-14','DISA FSO','technical','The information system, when transferring information between different security domains, identifies information flows by data type specification and usage.',NULL,NULL,NULL), ('000219','draft','2009-09-14','DISA FSO','technical','The information system, when transferring information between different security domains, decomposes information into organization-defined policy-relevant subcomponents for submission to policy enforcement mechanisms.','AC-4(13).1','The organization being inspected/assessed configures the information system to decompose information into policy-relevant subcomponents defined in AC-4 (13), CCI 2202 for submission to policy enforcement mechanisms when transferring information between different security domains For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 219.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to decompose information into policy-relevant subcomponents defined in AC-4 (13), CCI 2202 for submission to policy enforcement mechanisms when transferring information between different security domains For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 219.'), ('000221','draft','2009-09-14','DISA FSO','technical','The information system enforces security policies regarding information on interconnected systems.',NULL,NULL,NULL), ('000223','draft','2009-09-14','DISA FSO','technical','The information system binds security attributes to information to facilitate information flow policy enforcement.',NULL,NULL,NULL), ('000224','draft','2009-09-14','DISA FSO','technical','The information system tracks problems associated with the security attribute binding.',NULL,NULL,NULL), ('000225','draft','2009-09-14','DISA FSO','policy','The organization employs the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions.','AC-6.1','The organization being inspected/assessed documents and implements the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions.','The organization conducting the inspection/assessment obtains and examines the documented processes to ensure that the organization being inspected/assessed implements the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions.'), ('000226','draft','2009-09-14','DISA FSO','technical','The information system provides the capability for a privileged administrator to configure organization-defined security policy filters to support different security policies.',NULL,NULL,NULL), ('000227','draft','2009-11-03','DISA FSO','policy','The organization develops a comprehensive strategy to manage risk to organizational operations and assets, individuals, other organizations, and the Nation associated with the operation and use of information systems.','PM-9.1','DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy.\n\nDoD components are automatically compliant with this CCI because they are covered by the DoD Risk Management Framework (DoDI 8510.01).','DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy.\n\nDoD components are automatically compliant with this CCI because they are covered by DoD Risk Management Framework (DoDI 8510.01).'), ('000228','draft','2009-11-03','DISA FSO','policy','The organization implements a comprehensive strategy to manage risk to organization operations and assets, individuals, other organizations, and the Nation associated with the operation and use of information systems consistently across the organization.','PM-9.2','DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy.\n\nDoD components are automatically compliant with this CCI because they are covered by the DoD Risk Management Framework (DoDI 8510.01).','DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy.\n\nDoD components are automatically compliant with this CCI because they are covered by DoD Risk Management Framework (DoDI 8510.01).'), ('000229','draft','2009-11-03','DISA FSO','policy','The organization documents the security state of organizational information systems and the environments in which those systems operate through security authorization processes.','PM-10.1','DoDI 8510.01 meets the DoD requirement to manage the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement to manage the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.'), ('000230','draft','2009-11-03','DISA FSO','policy','The organization tracks the security state of organizational information systems and the environments in which those systems operate through security authorization processes.','PM-10.2','DoDI 8510.01 meets the DoD requirement to manage the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement to manage the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.'), ('000231','draft','2009-11-03','DISA FSO','policy','The organization reports the security state of organizational information systems and the environments in which those systems operate through security authorization processes.','PM-10.3','DoDI 8510.01 meets the DoD requirement to manage the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement to manage the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.'), ('000232','draft','2009-09-14','DISA FSO','policy','The organization documents and provides supporting rationale in the security plan for the information system, user actions not requiring identification and authentication.','AC-14.2','The organization being inspected/assessed documents supporting rationale in the security plan for the actions defined in AC-14, CCI 61 to not require identification and authentication.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed documents the supporting rationale for the actions defined in AC-14, CCI 61 to not require identification and authentication.'), ('000233','draft','2009-11-03','DISA FSO','policy','The organization designates individuals to fulfill specific roles and responsibilities within the organizational risk management process.','PM-10.4','DoDI 8510.01 meets the DoD requirement to designate roles and responsibilities for the risk management process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement to designate roles and responsibilities for the risk management process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.'), ('000234','draft','2009-11-03','DISA FSO','policy','The organization fully integrates the security authorization processes into an organization-wide risk management program.','PM-10.5','DoDI 8510.01 meets the DoD requirement to fully integrate the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement to fully integrate the security authorization process.\n\nDoD components are automatically compliant with this CCI because they are covered at the DoD level, DoDI 8510.01.'), ('000235','draft','2009-11-04','DISA FSO','policy','The organization defines mission/business processes with consideration for information security and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-11.1','DoDI 8510.01 meets the DoD requirement to define mission/business processes.\n\nDoD components are automatically complaint with this CCI as they are covered at the DoD level, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement to define mission/business processes.\n\nDoD components are automatically complaint with this CCI as they are covered at the DoD level, DoDI 8510.01.'), ('000236','draft','2009-11-04','DISA FSO','policy','The organization determines information protection needs arising from the defined mission/business processes and revises the processes as necessary, until an achievable set of protection needs are obtained.','PM-11.2','The organization being inspected/assessed determines information protection needs IAW CNSSI 1253 and as identified in RA-2.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the security categorization has been documented IAW CNSSI 1253.'), ('000237','draft','2009-06-23','DISA FSO','policy','The organization manages information system accounts by specifically authorizing and monitoring the use of guest/anonymous accounts and temporary accounts.',NULL,NULL,NULL), ('000238','draft','2009-09-15','DISA FSO','policy','The organization defines the frequency to review and update the current security assessment and authorization policy.','CA-1.7','DoD has defined the frequency as every 5 years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 5 years.'), ('000239','draft','2009-09-15','DISA FSO','policy','The organization develops and documents a security assessment and authorization policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','CA-1.3','DoDI 8510.01 meets the DoD requirement for security assessment authorization policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement for security assessment authorization policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.'), ('000240','draft','2009-09-15','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles a security assessment and authorization policy.','CA-1.4','DoD disseminates DoDI 8510.01 organization-wide via the DoD Issuances website. http://www.dtic.mil/whs/directives/corres/ins1.html','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.'), ('000241','draft','2009-09-15','DISA FSO','policy','The organization reviews and updates the current security assessment and authorization policy in accordance with organization-defined frequency.','CA-1.8','DoDI 8510.01 meets the DoD requirement for security assessment authorization policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.','DoDI 8510.01 meets the DoD requirement for security assessment authorization policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.'), ('000242','draft','2009-09-15','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the security assessment and authorization policy and associated security assessment and authorization controls.','CA-1.5','The organization being inspected/assessed develops and documents, IAW DoDI 8510.01, procedures to facilitate the implementation of the security assessment and authorization policy and associated security assessment and authorization controls.','The organization conducting the inspection/assessment obtains and examines the procedures to ensure the organization being inspected/assessed develops and documents procedures to facilitate the implementation of the security assessment and authorization policy and associated security assessment and authorization controls IAW DoDI 8510.01'), ('000243','draft','2009-09-15','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the security assessment and authorization policy and associated security assessment and authorization controls.','CA-1.6','The organization being inspected/assessed will require all personnel to register at the DTIC website to receive update notifications to facilitate the implementation of the security assessment and authorization policy and associated security assessment and authorization controls.\n\nDoD has defined the personnel or roles as all personnel.','The organization conducting the inspection/assessment obtains and examines the AUP (Acceptable Use Policy), appointment orders, or written policy requiring that all personnel register at the DTIC website to receive update notifications.\n\nDoD has defined the personnel or roles as all personnel.'), ('000244','draft','2009-09-15','DISA FSO','policy','The organization reviews and updates the current security assessment and authorization procedures in accordance with organization-defined frequency.','CA-1.9','The organization being inspected/assessed reviews and updates, IAW DoDI 8510.01, the current security assessment and authorization procedures annually.\n\nThe organization must maintain an audit trail of review and update activity.\n\nDoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of review and update activity to ensure the organization being inspected/assessed reviews and updates, IAW DoDI 8510.01, the current security assessment and authorization procedures annually.'), ('000245','draft','2009-09-15','DISA FSO','policy','The organization develops a security assessment plan for the information system and its environment of operation.','CA-2.1','The organization being inspected/assessed will document these security assessment plan requirements as part of the DoD approved Security Plan. Security plan templates are provided through eMASS and the Knowledge Service. *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','The organization conducting the inspection/assessment obtains and examines the Security Plan to validate *security assessment blocks* are complete.'), ('000246','draft','2009-09-15','DISA FSO','policy','The organization\'s security assessment plan describes the security controls and control enhancements under assessment.','CA-2.2','The organization being inspected/assessed will ensure the Security Plan identifies the security controls and control enhancements under assessment. *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','The organization conducting the inspection/assessment obtains the security assessment plan to verify the plan identifies the security controls and those control enhancements under assessment.'), ('000247','draft','2009-09-15','DISA FSO','policy','The organization\'s security assessment plan describes assessment procedures to be used to determine security control effectiveness.','CA-2.3','The implementation guidance and validation procedures posted on the Knowledge Service constitutes assessment procedures for DoD.\n\nIf organizations being inspected/assessed use assessment procedures other than those posted on the Knowledge Service, those procedures must be documented.\n\n*Comment*\nThe items required within this CCI are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','DoD components are automatically compliant with this CCI if using the implementation guidance and validation procedures on the Knowledge Service.\n\nIf the organization being inspected/assessed is using alternative implementation guidance and validation procedures, the organization conducting the inspection/assessment will obtain and examine those procedures.'), ('000248','draft','2009-09-15','DISA FSO','policy','The organization\'s security assessment plan describes assessment environment.','CA-2.4','The organization being inspected/assessed will provide a description of the authorization boundary in their Security Plan. Authorization boundary can be described via one or more of the following: network diagrams, data flow diagrams, system design documents, or a list of information system components. Authorization boundary as defined in CNSSI 4009. *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','The organization conducting the inspection/assessment obtains and examines the organization\'s authorization boundary. Authorization boundary can be described via one or more of the following: network diagrams, data flow diagrams, system design documents, or a list of information system components.'), ('000249','draft','2009-09-15','DISA FSO','policy','The organizations security assessment plan describes the assessment team.',NULL,NULL,NULL), ('000250','draft','2009-09-15','DISA FSO','policy','The organization\'s security assessment plan describes assessment roles and responsibilities.',NULL,NULL,NULL), ('000251','draft','2009-09-15','DISA FSO','policy','The organization assesses, on an organization-defined frequency, the security controls in the information system and its environment of operation to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements.','CA-2.6','In accordance with DoD\'s published guidance, the organization being inspected/assessed will utilize the implementation guidance and validation procedures published on the Knowledge Service to evaluate the implementation status of the applicable controls. DoD has defined the frequency as annually for technical controls, annually for a portion of management and operational controls, such that all are reviewed in a 3 year period, except for those requiring more frequent review as defined in other site or overarching policy. (NOTE: Technical, Management and Operational is IAW NIST SP 800-53 Table 1-1). *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','See CA-2 c \"The organization conducting the inspection/assessment obtains and examines the security assessment report to verify that it includes the compliance/non-compliance status of all controls and specific deficiencies for all non-compliant controls.\"'), ('000252','draft','2009-09-15','DISA FSO','policy','The organization defines the frequency on which the security controls in the information system and its environment of operation are assessed.','CA-2.7','DoD has defined the frequency as annually for technical controls, annually for a portion of management and operation controls such that all are reviewed in a 3 year period except for those requiring more frequent review as defined in other site or overarching policy. NOTE: Technical, Management and Operational is IAW NIST SP 800-53 Table 1-1. *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually for technical controls, annually for a portion of management and operation controls such that all are reviewed in a 3 year period except for those requiring more frequent review as defined in other site or overarching policy. NOTE: Technical, Management and Operational is IAW NIST SP 800-53 Table 1-1.'), ('000253','draft','2009-09-15','DISA FSO','policy','The organization produces a security assessment report that documents the results of the assessment against the information system and its environment of operation.','CA-2.8','The organization being inspected/assessed will develop a SAR that includes the compliance/non-compliance status of all controls and specific deficiencies for all non-compliant controls using the template available on the Knowledge Service. *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact.','The organization conducting the inspection/assessment obtains and examines the SAR to verify that it includes the compliance/non-compliance status of all controls and specific deficiencies for all non-compliant controls.'), ('000254','draft','2009-09-15','DISA FSO','policy','The organization provides the results of the security control assessment against the information system and its environment of operation to organization-defined individuals or roles.','CA-2.9','The organization being inspected/assessed will provide the SAR to at a minimum, the ISSO and ISSM. DoD has defined the individuals or roles as at a minimum, the ISSO and ISSM. *Comment* The items required within this control are being split into the security plan and security assessment report to eliminate creation of an additional artifact. ','The organization conducting the inspection/assessment interviews at a minimum, the ISSO and ISSM to ensure the SAR has been received. DoD has defined the individuals or roles as at a minimum, the ISSO and ISSM. '), ('000255','draft','2009-09-15','DISA FSO','policy','The organization employs assessors or assessment teams with an organization-defined level of independence to conduct security control assessments of organizational information systems.','CA-2(1).1','The organization being inspected/assessed will employ assessors and assessor teams with the level of independence defined in CA-2 (1), CCI 2064 to conduct security control assessments of organizational information systems.','The organization conducting the inspection/assessment obtains and examines the level of independence defined in CA-2 (1), CCI 2064 to ensure that they, as the assessor, meet the required level of independence.'), ('000256','draft','2009-09-15','DISA FSO','policy','The organization includes, as part of security control assessments announced or unannounced, one or more of the following: in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment; performance/load testing; and organization-defined other forms of security assessment on an organization-defined frequency.','CA-2(2).1','The organization being assessed/inspected must document how they will annually conduct tests and exercises of the implemented security controls in their security assessment plan. The tests and exercises may consist of activities such as in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment; performance/load testing; or other forms of security assessment defined in CA-2 (2), CCI 1582. Vulnerability scans are not the same as penetration testing. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the test and exercise plan documented in the security assessment plan as well as the results of one or more of the latest security assessments to ensure the organization being inspected/assessed is conducting the assessments required in their security assessment plan annually. DoD has defined the frequency as annually.'), ('000257','draft','2009-09-15','DISA FSO','policy','The organization authorizes connections from the information system to other information systems through the use of Interconnection Security Agreements.','CA-3.1','The organization being inspected/assessed will develop and certify, by appropriate signatures (e.g. AO, network managers), Interconnection Security Agreements (e.g., MOU, MOA, SLA) authorizing the connection of its information systems to other information systems. Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.','The organization conducting the inspection/assessment obtains and examines documentation of the Interconnection Security Agreements to include appropriate signatures. Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.'), ('000258','draft','2009-09-15','DISA FSO','policy','The organization documents, for each interconnection, the interface characteristics.','CA-3.2','The organization being inspected/assessed will document the interface characteristics for each interconnection. Use of external reporting databases for these characteristics when tied to the specific interconnection is acceptable (e.g., ports, protocols, and services). Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.','The organization conducting the inspection/assessment obtains and examines interconnection security agreement documentation. Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.'), ('000259','draft','2009-09-15','DISA FSO','policy','The organization documents, for each interconnection, the security requirements.','CA-3.3','The organization being inspected/assessed will, for each interconnection, identify and document any additional security controls to be implemented to protect the confidentiality, integrity, and availability of the connected systems and the data passing between them. Controls should be appropriate for the systems to be connected and the environment in which the interconnection will operate. Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.','The organization conducting the inspection/assessment obtains and examines interconnection security agreement documentation, specifically looking at any additional security controls identified for implementation. Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.'), ('000260','draft','2009-09-15','DISA FSO','policy','The organization documents, for each interconnection, the nature of the information communicated.','CA-3.4','The organization being inspected/assessed will document in the interconnection security agreement the type of information being transferred/transmitted. Characteristics will include but are not limited to: classification, information type (e.g. PII, HIPAA, FOUO, financial data, etc.) Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.','The organization conducting the inspection/assessment obtains and examines the interconnection security agreement documentation, specifically to identify the type of information being transferred/transmitted. Characteristics will include but are not limited to: classification, information type (e.g. PII, HIPAA, FOUO, financial data, etc.) Policy Note: Interconnection security agreements are required for systems connecting between enclaves that require the hosting enclave to enable PPS outside of their already established and approved business practices. Connections can include both DoD enclaves or non DoD enclaves.'), ('000261','draft','2009-09-15','DISA FSO','policy','The organization monitors the information system connections on an ongoing basis to verify enforcement of security requirements.',NULL,NULL,NULL), ('000262','draft','2009-09-15','DISA FSO','policy','The organization prohibits the direct connection of an organization-defined unclassified, national security system to an external network without the use of an organization-defined boundary protection device.','CA-3(1).1','The organization being inspected/assessed documents in its policy and procedures addressing information system connections, the organization will prohibit DoD has defined the unclassified, national security systems as all unclassified NSS from having a direct connection to an external network without the use of a boundary protection device defined in CA-3 (1), CCI 262. DoD has defined the unclassified, national security systems as all unclassified NSS.','The organization conducting the inspection/assessment obtains and examines policy document prohibiting direct connection of all unclassified NSS to external networks without the use of a boundary protection device defined in CA-3 (1), CCI 262. DoD has defined the unclassified, national security systems as all unclassified NSS.'), ('000263','draft','2009-09-15','DISA FSO','policy','The organization prohibits the direct connection of a classified, national security system to an external network without the use of organization-defined boundary protection device.','CA-3(2).1','The organization being inspected/assessed does not connect any national security systems to an external network without the use of protection devices defined in CA-3 (2), CCI 2074.','The organization conducting the inspection/assessment obtains and examines network topology diagrams and examines the information system to ensure the organization being inspected/assessed does not connect any national security systems to an external network without the use of protection devices defined in CA-3 (2), CCI 2074.'), ('000264','draft','2009-09-15','DISA FSO','policy','The organization develops a plan of action and milestones for the information system to document the organization^s planned remedial actions to correct weaknesses or deficiencies noted during the assessment of the security controls and to reduce or eliminate known vulnerabilities in the system.','CA-5.1','The organization being inspected/assessed will develop a security POA&M in accordance with DoDI 8510.01 Enclosure 6. POA&M templates are available on the Knowledge Service.','The organization conducting the inspection/assessment obtains and examines the security POA&M for compliance with DoDI 8510.01.'), ('000265','draft','2009-09-15','DISA FSO','policy','The organization defines the frequency with which to update the existing plan of action and milestones for the information system.','CA-5.2','DoD has defined the frequency as at least every 90 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least every 90 days.'), ('000266','draft','2009-09-15','DISA FSO','policy','The organization updates, on an organization-defined frequency, the existing plan of action and milestones for the information system based on the findings from security controls assessments, security impact analyses, and continuous monitoring activities.','CA-5.3','The organization being inspected/assessed will update the POA&M at least every 90 days. The updates are to be based upon the assessment of the identified vulnerabilities and weaknesses, prioritization of the vulnerabilities and weaknesses, progress being made in addressing and resolving the security weaknesses and vulnerabilities found in programs and systems, and continuous monitoring activities. DoD has defined the frequency as at least every 90 days.','The organization conducting the inspection/assessment obtains and examines current POA&M. The objective is to validate the organization is providing updates to the POA&M at least every 90 days. Review of POA&M without change must be documented (i.e., adding review date to the POA&M header information). DoD has defined the frequency as at least every 90 days.'), ('000267','draft','2009-09-15','DISA FSO','policy','The organization employs automated mechanisms to help ensure the plan of action and milestones for the information system is accurate.','CA-5(1).1','The organization being inspected/assessed will identify and document the automated mechanisms in use to ensure the security POA&M is accurate.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000268','draft','2009-09-15','DISA FSO','policy','The organization employs automated mechanisms to help ensure the plan of action and milestones for the information system is up to date.','CA-5(1).2','The organization being inspected/assessed will identify and document the automated mechanisms in use to ensure the POA&M is up to date.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000269','draft','2009-09-15','DISA FSO','policy','The organization employs automated mechanisms to help ensure the plan of action and milestones for the information system is readily available.','CA-5(1).3','The organization being inspected/assessed will identify and document the automated mechanisms in use to ensure the POA&M is readily available.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000270','draft','2009-09-15','DISA FSO','policy','The organization assigns a senior-level executive or manager as the authorizing official for the information system.','CA-6.1','The organization being inspected/assessed will assign a senior-level executive or manager as the official role, and the responsibility, for authorizing the information system(s). Assignment must be in writing and IAW with DoDI 8510.01 (i.e. Appointment memorandum).','The organization conducting the inspection/assessment obtains and examines the written appointment memorandum.'), ('000271','draft','2009-09-15','DISA FSO','policy','The organization ensures the authorizing official authorizes the information system for processing before commencing operations.','CA-6.2','The organization being inspected/assessed will ensure that an authorization document (e.g. authorization to operate (ATO), interim authorization to operate (IATO)) has been issued by the authorizing official (AO) prior to placing the information system into an operational status.','The organization conducting the inspection/assessment obtains and examines the authorization document to ensure the information system is authorized prior to being placed into operational status.'), ('000272','draft','2009-09-15','DISA FSO','policy','The organization updates the security authorization on an organization-defined frequency.','CA-6.3','The organization being inspected/assessed updates the security authorization at least every three years, whenever there is a significant change to the system, or if there is a change to the environment in which the system operates. DoD has defined the frequency as at least every three years, whenever there is a significant change to the system, or if there is a change to the environment in which the system operates.','The organization conducting the inspection/assessment obtains and examines the security authorization documentation to confirm the security authorization has been updated within the last three years, when there was a significant change to the system, or if there was a change to the environment in which the system operates. DoD has defined the frequency as at least every three years, whenever there is a significant change to the system, or if there is a change to the environment in which the system operates.'), ('000273','draft','2009-09-15','DISA FSO','policy','The organization defines the frequency with which to update the security authorization.','CA-6.4','DoD has defined the frequency as at least every three years, whenever there is a significant change to the system, or if there is a change to the environment in which the system operates.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least every three years, whenever there is a significant change to the system, or if there is a change to the environment in which the system operates.'), ('000274','draft','2009-09-15','DISA FSO','policy','The organization develops a continuous monitoring strategy.','CA-7.1','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('000275','draft','2009-09-15','DISA FSO','policy','The organization implements a continuous monitoring program that includes a configuration management process for the information system.',NULL,NULL,NULL), ('000276','draft','2009-09-15','DISA FSO','policy','The organization implements a continuous monitoring program that includes a configuration management process for the information system constituent components.',NULL,NULL,NULL), ('000277','draft','2009-09-15','DISA FSO','policy','The organization implements a continuous monitoring program that includes a determination of the security impact of changes to the information system.',NULL,NULL,NULL), ('000278','draft','2009-09-15','DISA FSO','policy','The organization implements a continuous monitoring program that includes a determination of the security impact of changes to the environment of operation.',NULL,NULL,NULL), ('000279','draft','2009-09-15','DISA FSO','policy','The organization implements a continuous monitoring program that includes ongoing security control assessments in accordance with the organizational continuous monitoring strategy.','CA-7.5','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('000280','draft','2009-09-15','DISA FSO','policy','The organization implements a continuous monitoring program that includes reporting the security status of the organization and the information system to organization-defined personnel or roles on an organization-defined frequency.','CA-7.9','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('000281','draft','2009-09-15','DISA FSO','policy','The organization defines the frequency with which to report the security status of the organization and the information system to organization-defined personnel or roles.','CA-7.10','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('000282','draft','2009-09-15','DISA FSO','policy','The organization employs assessors or assessment teams with an organization-defined level of independence to monitor the security controls in the information system on an ongoing basis.','CA-7(1).1','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('000283','draft','2009-09-15','DISA FSO','policy','The organization plans announced or unannounced assessments (in-depth monitoring, malicious user testing, penetration testing, red team exercises, or other organization-defined forms of security assessment), on an organization-defined frequency, to ensure compliance with all vulnerability mitigation procedures.',NULL,NULL,NULL), ('000284','draft','2009-09-15','DISA FSO','policy','The organization schedules announced or unannounced assessments (in-depth monitoring, malicious user testing, penetration testing, red team exercises, or other organization-defined forms of security assessment), on an organization-defined frequency, to ensure compliance with all vulnerability mitigation procedures.',NULL,NULL,NULL), ('000285','draft','2009-09-15','DISA FSO','policy','The organization conducts announced or unannounced assessments (in-depth monitoring, malicious user testing, penetration testing, red team exercises, or other organization-defined forms of security assessment), on an organization-defined frequency, to ensure compliance with all vulnerability mitigation procedures.',NULL,NULL,NULL), ('000286','draft','2009-09-17','DISA FSO','policy','The organization defines a frequency with which to review and update the configuration management policies.','CM-1.7','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000287','draft','2009-09-17','DISA FSO','policy','The organization develops and documents a configuration management policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','CM-1.3','The organization being inspected/assessed develops and documents a configuration management policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','The organization conducting the inspection/assessment obtains and examines the configuration management policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.'), ('000288','draft','2009-09-17','DISA FSO','policy','The organization disseminates formal, documented configuration management policy to elements within the organization having associated configuration management roles and responsibilities.',NULL,NULL,NULL), ('000289','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates, on an organization-defined frequency, the configuration management policy.','CM-1.8','The organization being inspected/assessed reviews and updates, annually, the configuration management policy. The organization must document each occurrence of the reviews and update actions as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines documentation of occurrence of reviews and update actions for the configuration management policy to ensure annual review and necessary updates are occurring. DoD has defined the frequency as annually.'), ('000290','draft','2009-09-17','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.','CM-1.5','The organization being inspected/assessed develops and documents procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.','The organization conducting the inspection/assessment obtains and examines the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.'), ('000291','draft','2009-09-17','DISA FSO','policy','The organization disseminates formal, documented procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.',NULL,NULL,NULL), ('000292','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates, on an organization-defined frequency, the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.','CM-1.9','The organization being inspected/assessed reviews and updates, annually, the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls. The organization must document each occurrence of the reviews and update actions as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines documentation of occurrence of reviews and update actions for the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls to ensure annual review and necessary updates are occurring. DoD has defined the frequency as annually.'), ('000293','draft','2009-09-17','DISA FSO','policy','The organization develops a current baseline configuration of the information system.','CM-2.1','The organization being inspected/assessed develops and documents a current baseline configuration of the information system.','The organization conducting the inspection/assessment obtains and examines the documented baseline configuration.'), ('000294','draft','2009-09-17','DISA FSO','policy','The organization documents a baseline configuration of the information system.',NULL,NULL,NULL), ('000295','draft','2009-09-17','DISA FSO','policy','The organization maintains, under configuration control, a current baseline configuration of the information system.','CM-2.2','The organization being inspected/assessed maintains a current baseline configuration of the information system.','The organization conducting the inspection/assessment obtains and examines the current baseline to ensure the current configuration matches the current documented baseline.'), ('000296','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates the baseline configuration of the information system at an organization-defined frequency.','CM-2(1).1','The organization being inspected/assessed reviews and updates the baseline configuration of the information system annually. The organization must document each occurrence of the reviews and update actions as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines documentation of organizational reviews and update actions for the baseline configuration to ensure annual review and necessary updates are occurring. DoD has defined the frequency as annually.'), ('000297','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates the baseline configuration of the information system when required due to organization-defined circumstances.','CM-2(1).3','The organization being inspected/assessed reviews and updates the baseline configuration of the information system when required due to baseline configuration changes or as events dictate such as changes due to USCYBERCOM tactical orders/ directives or cyber attacks. The organization must document each occurrence of the reviews and update actions as an audit trail. DoD has defined the circumstances as baseline configuration changes or as events dictate such as changes due to USCYBERCOM tactical orders/ directives or cyber attacks.','The organization conducting the inspection/assessment obtains and examines documentation of organizational reviews and update actions for the baseline configuration of the information system when required due to baseline configuration changes or as events dictate such as changes due to USCYBERCOM tactical orders/ directives or cyber attacks to ensure review and necessary updates are occurring. DoD has defined the circumstances as baseline configuration changes or as events dictate such as changes due to USCYBERCOM tactical orders/ directives or cyber attacks.'), ('000298','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates the baseline configuration of the information system as an integral part of information system component installations.','CM-2(1).5','The organization being inspected/assessed reviews and updates the baseline configuration of the information system as an integral part of information system component installations. The organization must document each occurrence of the reviews and update actions as an audit trail.','The organization conducting the inspection/assessment obtains and examines documentation of organizational reviews and update actions for the baseline configuration of the information system as an integral part of information system component installations to ensure review and necessary updates are occurring.'), ('000299','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates the baseline configuration of the information system as an integral part of information system component upgrades.','CM-2(1).6','The organization being inspected/assessed reviews and updates the baseline configuration of the information system as an integral part of information system component upgrades. The organization must document each occurrence of the reviews and update actions as an audit trail.','The organization conducting the inspection/assessment obtains and examines documentation of organizational reviews and update actions for the baseline configuration of the information system as an integral part of information system component upgrades to ensure review and necessary updates are occurring.'), ('000300','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to maintain a complete baseline configuration of the information system.','CM-2(2).1','The organization being inspected/assessed identifies, documents, and implements automated mechanisms used to maintain complete baseline configuration of the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms used to maintain complete baseline configuration of the information system. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000301','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to maintain an up-to-date baseline configuration of the information system.','CM-2(2).2','The organization being inspected/assessed identifies, documents, and implements automated mechanisms used to maintain an up-to-date baseline configuration of the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms used to maintain an up-to-date baseline configuration of the information system. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000302','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to maintain an accurate baseline configuration of the information system.','CM-2(2).3','The organization being inspected/assessed identifies, documents, and implements automated mechanisms used to maintain accurate baseline configuration of the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms used to maintain accurate baseline configuration of the information system. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000303','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to maintain a readily available baseline configuration of the information system.','CM-2(2).4','The organization being inspected/assessed identifies, documents, and implements automated mechanisms used to maintain readily available baseline configuration of the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms used to maintain readily available baseline configuration of the information system. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000304','draft','2009-09-17','DISA FSO','policy','The organization retains organization-defined previous versions of baseline configurations of the information system to support rollback.','CM-2(3).1','The organization being inspected/assessed retains the previous approved baseline configuration of IS components for a minimum of 3 months and documents baseline configuration to support rollback. The goal is to verify that the IS can roll back components to previous versions. DoD has defined the previous versions as the previous approved baseline configuration of IS components for a minimum of 3 months.','The organization conducting the inspection/assessment obtains and examines the documentation of the previous version of the baseline configuration to determine if all IS components necessary for rollback are retained. DoD has defined the previous versions as the previous approved baseline configuration of IS components for a minimum of 3 months.'), ('000305','draft','2009-09-17','DISA FSO','policy','The organization develops a list of software programs not authorized to execute on the information system.',NULL,NULL,NULL), ('000306','draft','2009-09-17','DISA FSO','policy','The organization maintains the list of software programs not authorized to execute on the information system.',NULL,NULL,NULL), ('000307','draft','2009-09-17','DISA FSO','policy','The organization employs an allow-all, deny-by-exception authorization policy to identify software allowed to execute on the information system.',NULL,NULL,NULL), ('000308','draft','2009-09-17','DISA FSO','policy','The organization develops the list of software programs authorized to execute on the information system.',NULL,NULL,NULL), ('000309','draft','2009-09-17','DISA FSO','policy','The organization maintains the list of software programs authorized to execute on the information system.',NULL,NULL,NULL), ('000310','draft','2009-09-17','DISA FSO','policy','The organization employs a deny-all, permit-by-exception authorization policy to identify software allowed to execute on the information system.',NULL,NULL,NULL), ('000311','draft','2009-09-17','DISA FSO','policy','The organization maintains a baseline configuration for information system development environments that is managed separately from the operational baseline configuration.','CM-2(6).1','The organization being inspected/assessed establishes and maintains a development environment baseline configuration managed separately from the operational baseline configuration.','The organization conducting the inspection/assessment obtains and examines development environment baseline configuration documentation and ensures the organization is maintaining and managing a baseline configuration for the development environment separate from the operational baseline configuration.'), ('000312','draft','2009-09-17','DISA FSO','policy','The organization maintains a baseline configuration for information system test environments that is managed separately from the operational baseline configuration.','CM-2(6).2','The organization being inspected/assessed establishes and maintains a test environment baseline configuration managed separately from the operational baseline configuration.','The organization conducting the inspection/assessment obtains and examines test environment baseline configuration documentation and ensures the organization is maintaining and managing a baseline configuration for the test environment separate from the operational baseline configuration.'), ('000313','draft','2009-09-17','DISA FSO','policy','The organization determines the types of changes to the information system that are configuration controlled.','CM-3.1','The organization being inspected/assessed determines the types of changes to the information system that are to be configuration controlled. This action will be implemented by the CCB as defined in CM-3, CCI 1586.','The organization conducting the inspection/assessment obtains and examines the configuration management policy and plan to ensure the organization identifies the types of changes to the information system that are configuration controlled.'), ('000314','draft','2009-09-17','DISA FSO','policy','The organization approves or disapproves configuration-controlled changes to the information system, with explicit consideration for security impact analysis.','CM-3.2','The organization being inspected/assessed approves or disapproves configuration controlled changes to the information system with explicit consideration for security impact analysis. The organization must maintain an audit trail of approval/disapproval of configuration controlled changes. This action will be implemented by the CCB as defined in CM-3, CCI 1586.','The organization conducting the inspection/assessment obtains and examines the audit trail of the approval/disapproval of configuration controlled changes to ensure a security impact analysis was conducted.'), ('000315','draft','2009-09-17','DISA FSO','policy','The organization documents approved configuration-controlled changes to the system.',NULL,NULL,NULL), ('000316','draft','2009-09-17','DISA FSO','policy','The organization retains records of configuration-controlled changes to the information system for an organization-defined time period.','CM-3.6','The organization being inspected/assessed retains records of all configuration-controlled changes to the information system, as a result of CM-3, CCI 1819, for a time period defined by the organization\'s CCB.\n\nDoD has defined the time period as a time period defined by the organization\'s CCB.','The organization conducting the inspection/assessment obtains and examines the records of all configuration-controlled changes to the information system to ensure the organization being inspected/assessed retains the records of all configuration controlled changes for a time period defined by the organization\'s CCB.\n\nDoD has defined the time period as a time period defined by the organization\'s CCB.'), ('000317','draft','2009-09-17','DISA FSO','policy','The organization reviews records of configuration-controlled changes to the system.',NULL,NULL,NULL), ('000318','draft','2009-09-17','DISA FSO','policy','The organization audits and reviews activities associated with configuration-controlled changes to the system.','CM-3.8','The organization being inspected/assessed audits and reviews activities associated with configuration-controlled changes to the information system. The organization must maintain an audit trail to include review activities associated with configuration-controlled changes.','The organization conducting the inspection/assessment obtains and examines the audit trail documenting the review activities associated with configuration-controlled changes to the information system to ensure the organization being inspected/assessed audits and reviews activities associated with the changes.'), ('000319','draft','2009-09-17','DISA FSO','policy','The organization coordinates and provides oversight for configuration change control activities through an organization-defined configuration change control element (e.g., committee, board) that convenes at the organization-defined frequency and/or for any organization-defined configuration change conditions.','CM-3.9','The organization being inspected/assessed coordinates and provides oversight for configuration change control activities through a configuration control board (CCB) that convenes at a frequency determined by the CCB and/or for any configuration change conditions determined by the CCB. DoD has defined the configuration change control element as a configuration control board. DoD has defined the frequency as at a frequency determined by the CCB. DoD has defined the configuration change conditions as configuration change conditions determined by the CCB.','The organization conducting the inspection/assessment obtains and examines the organization\'s configuration management policy and plan; document/charter establishing the organization\'s CCB; meeting minutes; information system change control records; and any other relevant documents or records. The objective of the review is to validate the organization is coordinating and overseeing the configuration change control activities through a CCB.'), ('000320','draft','2009-09-17','DISA FSO','policy','The organization defines the frequency with which to convene the configuration change control element.','CM-3.10','The organization being inspected/assessed defines within their CCB Charter, the frequency for configuration change control review. DoD has defined the frequency as at a frequency determined by the CCB.','The organization conducting the inspection/assessment obtains and examines the CCB Charter to ensure the frequency for configuration change control review is defined. DoD has defined the frequency as at a frequency determined by the CCB.'), ('000321','draft','2009-09-17','DISA FSO','policy','The organization defines configuration change conditions that prompt the configuration change control element to convene.','CM-3.11','The organization being inspected/assessed defines within their CCB Charter, the configuration change conditions that prompt the configuration change control element to convene. DoD has defined the configuration change conditions as configuration change conditions determined by the CCB.','The organization conducting the inspection/assessment obtains and examines the CCB Charter to ensure the configuration change conditions that prompt the configuration change control element to convene are defined. DoD has defined the configuration change conditions as configuration change conditions determined by the CCB.'), ('000322','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to document proposed changes to the information system.','CM-3(1).1','The organization being inspected/assessed documents and employs the automated mechanisms (e.g., Remedy, ticketing mechanism, etc.) to document proposed changes to the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system documents proposed changes. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000323','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to notify organization-defined approval authorities of proposed changes to the information system and request change approval.','CM-3(1).2','The organization being inspected/assessed documents and employs the automated mechanisms (e.g., Remedy, ticketing mechanism, etc.) to notify designated approval authorities of proposed changes to the information system and request change approval.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system notifies designated approval authorities of proposed changes to the information system and request change approval. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000324','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to highlight proposed changes to the information system that have not been approved or disapproved by an organization-defined time period.','CM-3(1).4','The organization being inspected/assessed documents and employs the automated mechanisms (e.g., Remedy, ticketing mechanism, etc.) to highlight proposed changes to the information system that have not been approved or disapproved by 7 days. DoD has defined the time period as 7 days.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system highlights proposed changes to the information system that have not been approved or disapproved by 7 days. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms. DoD has defined the time period as 7 days.'), ('000325','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to prohibit changes to the information system until designated approvals are received.','CM-3(1).6','The organization being inspected/assessed documents and employs the automated mechanisms to prohibit changes to the information system until designated approvals are received.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system prohibits changes. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000326','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to document all changes to the information system.','CM-3(1).7','The organization being inspected/assessed documents and employs the automated mechanisms (e.g., Remedy, ticketing mechanism, etc.) to document all changes to the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system documents all changes. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000327','draft','2009-09-17','DISA FSO','policy','The organization tests changes to the information system before implementing the changes on the operational system.','CM-3(2).1','The organization being inspected/assessed documents and implements a process to test changes to the information system before implementing the changes on the operational system. The organization must maintain an audit trail of testing activity.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of testing activity to ensure the organization being inspected/assessed tests changes to the information system before implementing the changes on the operational system.'), ('000328','draft','2009-09-17','DISA FSO','policy','The organization validates changes to the information system before implementing the changes on the operational system.','CM-3(2).2','The organization being inspected/assessed documents and implements a process to validate changes to the information system before implementing the changes on the operational system. The organization must maintain an audit trail of validation activity.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of validation activity to ensure the organization being inspected/assessed validates changes to the information system before implementing the changes on the operational system.'), ('000329','draft','2009-09-17','DISA FSO','policy','The organization documents changes to the information system before implementing the changes on the operational system.','CM-3(2).3','The organization being inspected/assessed documents and implements a process to document changes to the information system before implementing the changes on the operational system.','The organization conducting the inspection/assessment obtains and examines the documented process as well as documentation of changes to the information system to ensure the organization has established, published, and is complying with the requirement to document all changes to be made to its operational information system(s) prior to their implementation.'), ('000330','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to implement changes to the current information system baseline.','CM-3(3).1','The organization being inspected/assessed documents and employs the automated mechanisms (e.g., software deployment tools) to implement changes to the current information system baseline.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system implements changes to the current information system baseline. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000331','draft','2009-09-17','DISA FSO','policy','The organization deploys the updated information system baseline across the installed base.','CM-3(3).2','The organization being inspected/assessed documents and employs procedures for deploying the updated information system baseline across the installed base. The information system must maintain an audit trail of automated baseline deployments.','The organization conducting the inspection/assessment obtains and examines the documented deployment procedures and a sampling of the audit trail of automated baseline deployments to ensure the organization being inspected/assessed is deploying the updated information system baseline across the installed base.'), ('000332','draft','2009-09-17','DISA FSO','policy','The organization requires an information security representative to be a member of the organization-defined configuration change control element.','CM-3(4).1','The organization being inspected/assessed requires an information security representative to be a member of the configuration control board. DoD has defined the configuration change control element as the configuration control board.','The organization conducting the inspection/assessment obtains and examines the membership list of the organization\'s configuration control board to ensure an information security representative is a member of the organization\'s configuration control board.'), ('000333','draft','2009-09-18','DISA FSO','policy','The organization analyzes changes to the information system to determine potential security impacts prior to change implementation.','CM-4.1','The organization being inspected/assessed analyzes changes to the information system to determine potential security impacts prior to change implementation. The organization must maintain records of analysis of changes to the information system.','The organization conducting the inspection/assessment obtains and examines the records of analyses to ensure the organization is conducting a security impact analysis of changes to the information system(s) prior to their implementation.'), ('000334','draft','2009-09-18','DISA FSO','policy','The organization analyzes new software in a separate test environment before installation in an operational environment.',NULL,NULL,NULL), ('000335','draft','2009-09-18','DISA FSO','policy','The organization, after the information system is changed, checks the security functions to verify the functions are implemented correctly.','CM-4(2).1','The organization being inspected/assessed documents and implements a process to verify in an operational environment, following changes to the information system, the security functions are implemented correctly. The organization must maintain an audit trail of the verification of security functions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of the verification of security functions to ensure the organization being inspected/assessed verifies in an operational environment, following changes to the information system, the security functions are implemented correctly.'), ('000336','draft','2009-09-18','DISA FSO','policy','The organization, after the information system is changed, checks the security functions to verify the functions are operating as intended.','CM-4(2).2','The organization being inspected/assessed documents and implements a process to verify in an operational environment, following changes to the information system, the security functions are operating as intended. The organization must maintain an audit trail of the verification of security functions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of the verification of security functions to ensure the organization being inspected/assessed verifies in an operational environment, following changes to the information system, the security functions are operating as intended.'), ('000337','draft','2009-09-18','DISA FSO','policy','The organization, after the information system is changed, checks the security functions to verify the functions are producing the desired outcome with regard to meeting the security requirements for the system.','CM-4(2).3','The organization being inspected/assessed documents and implements a process to verify in an operational environment, following changes to the information system, the security functions are producing the desired outcome with regard to meeting the security requirements for the system. The organization must maintain an audit trail of the verification of security functions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of the verification of security functions to ensure the organization being inspected/assessed verifies in an operational environment, following changes to the information system, the security functions are producing the desired outcome with regard to meeting the security requirements for the system.'), ('000338','draft','2009-09-18','DISA FSO','policy','The organization defines physical access restrictions associated with changes to the information system.','CM-5.1','The organization being inspected/assessed defines and documents in the configuration management policy, physical access restrictions associated with changes to the information system.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines physical access restrictions associated with changes to the information system.'), ('000339','draft','2009-09-18','DISA FSO','policy','The organization documents physical access restrictions associated with changes to the information system.','CM-5.2','The organization being inspected/assessed documents, in the configuration management policy, physical access restrictions associated with changes to the information system.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed documents physical access restrictions associated with changes to the information system.'), ('000340','draft','2009-09-18','DISA FSO','policy','The organization approves physical access restrictions associated with changes to the information system.','CM-5.3','The organization being inspected/assessed documents and implements a process to approve physical access restrictions associated with changes to the information system. The organization must maintain an audit trail of approvals.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of approvals to ensure the organization being inspected/assessed approves physical access restrictions associated with changes to the information system.'), ('000341','draft','2009-09-18','DISA FSO','policy','The organization enforces physical access restrictions associated with changes to the information system.','CM-5.4','The organization being inspected/assessed documents and implements a process to enforce physical access restrictions associated with changes to the information system.','The organization conducting the inspection/assessment the documented process to ensure the organization being inspected/assessed enforces physical access restrictions associated with changes to the information system as documented in the configuration management policy.'), ('000342','draft','2009-09-18','DISA FSO','policy','The organization defines logical access restrictions associated with changes to the information system.','CM-5.5','The organization being inspected/assessed defines and documents in the configuration management policy, logical access restrictions associated with changes to the information system.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines logical access restrictions associated with changes to the information system.'), ('000343','draft','2009-09-18','DISA FSO','policy','The organization documents logical access restrictions associated with changes to the information system.','CM-5.6','The organization being inspected/assessed documents, in the configuration management policy, logical access restrictions associated with changes to the information system.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed documents logical access restrictions associated with changes to the information system.'), ('000344','draft','2009-09-18','DISA FSO','policy','The organization approves logical access restrictions associated with changes to the information system.','CM-5.7','The organization being inspected/assessed documents and implements a process to approve logical access restrictions associated with changes to the information system. The organization must maintain an audit trail of approvals.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of approvals to ensure the organization being inspected/assessed approves logical access restrictions associated with changes to the information system.'), ('000345','draft','2009-09-18','DISA FSO','policy','The organization enforces logical access restrictions associated with changes to the information system.','CM-5.8','The organization being inspected/assessed documents and implements a process to enforce logical access restrictions associated with changes to the information system. The information system must maintain an audit trail of logical access to the information system pertaining to information system changes.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the logical access audit trail to ensure the organization being inspected/assessed enforces logical access restrictions associated with changes to the information system as documented in the configuration management policy.'), ('000346','draft','2009-09-18','DISA FSO','technical','The organization employs automated mechanisms to enforce access restrictions.',NULL,NULL,NULL), ('000347','draft','2009-09-18','DISA FSO','technical','The organization employs automated mechanisms to support auditing of the enforcement actions.',NULL,NULL,NULL), ('000348','draft','2009-09-18','DISA FSO','policy','The organization defines a frequency with which to conduct reviews of information system changes.','CM-5(2).1','DoD has defined the frequency as every 90 days or more frequently as the organization defines for high systems AND at least annually or more frequently as the organization defines for low and moderate systems.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as every 90 days or more frequently as the organization defines for high systems AND at least annually or more frequently as the organization defines for low and moderate systems.'), ('000349','draft','2009-09-18','DISA FSO','policy','The organization reviews information system changes per organization-defined frequency to determine whether unauthorized changes have occurred.','CM-5(2).2','The organization being inspected/assessed documents in the configuration management policy and implements a process to review information system changes every 90 days or more frequently as the organization defines for high systems AND at least annually or more frequently as the organization defines for low and moderate systems to determine whether unauthorized changes have occurred.\n\nThe organization must maintain this review as an audit trail.\n\nDoD has defined the frequency as every 90 days or more frequently as the organization defines for high systems AND at least annually or more frequently as the organization defines for low and moderate systems.','The organization conducting the inspection/assessment obtains and examines the documented process for information system change review as well as the audit trail of reviews to ensure the organization being inspected/assessed reviews IS changes every 90 days or more frequently as the organization defines for high systems AND at least annually or more frequently as the organization defines for low and moderate systems to determine whether unauthorized changes have occurred.\n\nDoD has defined the frequency as every 90 days or more frequently as the organization defines for high systems AND at least annually or more frequently as the organization defines for low and moderate systems.'), ('000350','draft','2009-09-18','DISA FSO','policy','The organization reviews information system changes upon organization-defined circumstances to determine whether unauthorized changes have occurred.','CM-5(2).3','The organization being inspected/assessed documents and implements a process to review the information system changes when there is an incident or when planned changes have been performed to determine whether unauthorized changes have occurred.\n\nThe organization must maintain this review as an audit trail.\n\nDoD has defined the circumstances as when there is an incident or when planned changes have been performed.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reviews to ensure the organization being inspected/assessed reviews the information system changes when there is an incident or when planned changes have been performed to determine whether unauthorized changes have occurred.\n\nDoD has defined the circumstances as when there is an incident or when planned changes have been performed.'), ('000351','draft','2009-09-18','DISA FSO','policy','The organization defines critical software programs that the information system will prevent from being installed if such software programs are not signed with a recognized and approved certificate.',NULL,NULL,NULL), ('000352','draft','2009-09-18','DISA FSO','technical','The information system prevents the installation of organization-defined critical software programs that are not signed with a certificate that is recognized and approved by the organization.',NULL,NULL,NULL), ('000353','draft','2009-09-18','DISA FSO','policy','The organization defines information system components requiring enforcement of a dual authorization for information system changes.','CM-5(4).1','The organization being inspected/assessed defines and documents information system components requiring enforcement of a dual authorization for information system changes. DoD has determined to the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components requiring enforcement of a dual authorization for information system changes.\n\nDoD has determined to the information system components are not appropriate to define at the Enterprise level.'), ('000354','draft','2009-09-18','DISA FSO','policy','The organization enforces dual authorization for changes to organization-defined information system components.','CM-5(4).2','The organization being inspected/assessed documents and implements a process to enforce dual authorization for changes to information system components defined in CM-5 (4), CCI 353.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed enforces dual authorization for changes to information system components defined in CM-5 (4), CCI 353.'), ('000355','draft','2009-09-18','DISA FSO','policy','The organization limits information system developer/integrator privileges to change hardware components directly within a production environment.',NULL,NULL,NULL), ('000356','draft','2009-09-18','DISA FSO','policy','The organization limits information system developer/integrator privileges to change software components directly within a production environment.',NULL,NULL,NULL), ('000357','draft','2009-09-18','DISA FSO','policy','The organization limits information system developer/integrator privileges to change firmware components directly within a production environment.',NULL,NULL,NULL), ('000358','draft','2009-09-18','DISA FSO','policy','The organization limits information system developer/integrator privileges to change system information directly within a production environment.',NULL,NULL,NULL), ('000359','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency to review information system developer/integrator privileges.',NULL,NULL,NULL), ('000360','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency to reevaluate information system developer/integrator privileges.',NULL,NULL,NULL), ('000361','draft','2009-09-18','DISA FSO','policy','The organization reviews information system developer/integrator privileges per organization-defined frequency.',NULL,NULL,NULL), ('000362','draft','2009-09-18','DISA FSO','policy','The organization reevaluates information system developer/integrator privileges per organization-defined frequency.',NULL,NULL,NULL), ('000363','draft','2009-09-18','DISA FSO','policy','The organization defines security configuration checklists to be used to establish and document configuration settings for the information system technology products employed.','CM-6.1','DoD has defined the security configuration checklists as DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.). The organization being inspected/assessed documents in the security plan, the configuration guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) which apply to their information system components.','DoD has defined the security configuration checklists as DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.). The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed has documented the configuration guidance which apply to their information system components. The organization conducting the inspection/assessment reviews the list of documented guidance to ensure that all applicable guidance is identified given the information system components within the authorization boundary.'), ('000364','draft','2009-09-18','DISA FSO','policy','The organization establishes configuration settings for information technology products employed within the information system using organization-defined security configuration checklists.','CM-6.2','DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) meet the DoD requirement for establishing configuration settings.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.).','DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) meet the DoD requirement for establishing configuration settings.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.).'), ('000365','draft','2009-09-18','DISA FSO','policy','The organization documents configuration settings for information technology products employed within the information system using organization-defined security configuration checklists that reflect the most restrictive mode consistent with operational requirements.','CM-6.3','DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) meet the DoD requirement for documenting configuration settings.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.).','DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) meet the DoD requirement for documenting configuration settings.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.).'), ('000366','draft','2009-09-18','DISA FSO','policy','The organization implements the security configuration settings.','CM-6.5','The organization being inspected/assessed must develop and document a process for implementing DoD security configuration or implementation guidance (e.g. STIGs, NSA configuration guides, CTOs, DTMs etc.). DoD has defined the security configuration checklists as DoD security configuration or implementation guidance (e.g. STIGs, NSA configuration guides, CTOs, DTMs etc.).','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements DoD security configuration or implementation guidance (e.g. STIGs, NSA configuration guides, CTOs, DTMs etc.). The organization conducting the inspection/assessment tests a sampling of information system components to ensure they comply with the required settings. DoD has defined the security configuration checklists as DoD security configuration or implementation guidance (e.g. STIGs, NSA configuration guides, CTOs, DTMs etc.). '), ('000367','draft','2009-09-18','DISA FSO','policy','The organization identifies any deviations from the established configuration settings for organization-defined information system components based on organization-defined operational requirements.','CM-6.6','The organization being inspected/assessed documents in the security plan and POA&M, if applicable, the information system components as defined in CM-6, CCI 1755 which deviate from configuration settings, and which settings as defined in CM-6, CCI 1756.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed has documented deviations from configuration settings for information system components.'), ('000368','draft','2009-09-18','DISA FSO','policy','The organization documents any deviations from the established configuration settings for organization-defined information system components based on organization-defined operational requirements.','CM-6.7','The organization being inspected/assessed documents in the security plan and POA&M, if applicable, all configurable information system components which deviate from configuration settings, and which settings as defined in CM-6, CCI 1756.\n\nDoD has defined the information system components as all configurable information system components.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed has documented deviations from configuration settings for information system components.'), ('000369','draft','2009-09-18','DISA FSO','policy','The organization approves any deviations from the established configuration settings for organization-defined information system components based on organization-defined operational requirements.','CM-6.8','The organization being inspected/assessed manages and approves changes to the security plan documenting deviations IAW CM-3, CCI 314. The organization must maintain an audit trail of approved changes to the security plan.','The organization conducting the inspection/assessment obtains and examines the security plan and the audit trail of approved changes to ensure the deviations are approved IAW CM-3, CCI 314.'), ('000370','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to centrally manage configuration settings for organization-defined information system components.','CM-6(1).1','The organization being inspected/assessed identifies, documents in the configuration management policy, and implements automated mechanisms to centrally manage configuration settings.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed identifies automated mechanisms to centrally manage configuration settings. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000371','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to centrally apply configuration settings for organization-defined information system components.','CM-6(1).2','The organization being inspected/assessed identifies, documents in the configuration management policy, and implements automated mechanisms to centrally apply configuration settings.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed identifies automated mechanisms to centrally apply configuration settings. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000372','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to centrally verify configuration settings for organization-defined information system components.','CM-6(1).3','The organization being inspected/assessed identifies, documents in the configuration management policy, and implements automated mechanisms to centrally verify configuration settings.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed identifies automated mechanisms to centrally verify configuration settings. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('000373','draft','2009-09-18','DISA FSO','policy','The organization defines configuration settings for which unauthorized changes are responded to by automated mechanisms.',NULL,NULL,NULL), ('000374','draft','2009-09-18','DISA FSO','technical','The organization employs automated mechanisms to respond to unauthorized changes to organization-defined configuration settings.',NULL,NULL,NULL), ('000375','draft','2009-09-18','DISA FSO','policy','The organization incorporates detection of unauthorized, security-relevant configuration changes into the organizations incident response capability.',NULL,NULL,NULL), ('000376','draft','2009-09-18','DISA FSO','policy','The organization ensures unauthorized, security-relevant configuration changes detected are monitored.',NULL,NULL,NULL), ('000377','draft','2009-09-18','DISA FSO','policy','The organization ensures unauthorized, security-relevant configuration changes detected are corrected.',NULL,NULL,NULL), ('000378','draft','2009-09-18','DISA FSO','policy','The organization ensures unauthorized, security-relevant configuration changes detected are available for historical purposes.',NULL,NULL,NULL), ('000379','draft','2009-09-18','DISA FSO','policy','The information system (including modifications to the baseline configuration) demonstrates conformance to security configuration guidance (i.e., security checklists) prior to being introduced into a production environment.',NULL,NULL,NULL), ('000380','draft','2009-09-18','DISA FSO','policy','The organization defines prohibited or restricted functions, ports, protocols, and/or services for the information system.','CM-7.2','DoD has defined the information system prohibited or restricted functions, ports, protocols, and/or services as IAW DoDI 8551.01.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system prohibited or restricted functions, ports, protocols, and/or services as IAW DoDI 8551.01.'), ('000381','draft','2009-09-18','DISA FSO','technical','The organization configures the information system to provide only essential capabilities.','CM-7.1','The organization being inspected/assessed documents in the security plan, essential capabilities which the information system must provide. The organization being inspected/assessed configures the information system to provide only those documented essential capabilities.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed has identified essential capabilities. The organization conducting the inspection/assessment inspects the information system to ensure that it provides only those documented essential capabilities.'), ('000382','draft','2009-09-18','DISA FSO','technical','The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services.','CM-7.3','The organization being inspected/assessed configures the information system to prohibit or restrict the use of functions, ports, protocols, and/or services IAW DoDI 8551.01. DoD has defined the information system prohibited or restricted functions, ports, protocols, and/or services as IAW DoDI 8551.01.','The organization conducting the inspection/assessment inspects the information system to ensure the organization being inspected/assessed prohibits or restricts the use of functions, ports, protocols, and/or services IAW DoDI 8551.01. DoD has defined the information system prohibited or restricted functions, ports, protocols, and/or services as IAW DoDI 8551.01.'), ('000383','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency of information system reviews to identify and eliminate unnecessary functions, ports, protocols and/or services.',NULL,NULL,NULL), ('000384','draft','2009-09-18','DISA FSO','policy','The organization reviews the information system per organization-defined frequency to identify unnecessary and nonsecure functions, ports, protocols, and services.','CM-7(1).1','The organization being inspected/assessed documents and implements a process to review the information system every 30 days to identify unnecessary and nonsecure functions, ports, protocols, and services. The organization must maintain an audit trail of the reviews. DoD has defined the frequency as every 30 days.','The organization conducting the inspection/assessment obtains and examines the documented process and audit trail of reviews to ensure the organization being inspected/assessed reviews the information system every 30 days to identify unnecessary and nonsecure functions, ports, protocols, and services. DoD has defined the frequency as every 30 days.'), ('000385','draft','2009-09-18','DISA FSO','policy','The organization reviews the information system per organization-defined frequency to eliminate unnecessary functions, ports, protocols, and/or services.',NULL,NULL,NULL), ('000386','draft','2009-09-18','DISA FSO','technical','The organization employs automated mechanisms to prevent program execution on the information system in accordance with the organization-defined specifications.',NULL,NULL,NULL), ('000387','draft','2009-09-18','DISA FSO','policy','The organization defines registration requirements for functions, ports, protocols, and services.','CM-7(3).1','DoD has defined the registration requirements as IAW DoDI 8551.01.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the registration requirements as IAW DoDI 8551.01.'), ('000388','draft','2009-09-18','DISA FSO','policy','The organization ensures compliance with organization-defined registration requirements for functions, ports, protocols, and services.','CM-7(3).2','The organization being inspected/assessed implements DoDI 8551.01. DoD has defined the registration requirements as IAW DoDI 8551.01.','The organization conducting the inspection/assessment obtains and examines a documented listing of ports, protocols, and services in use, and reviews a sampling of those ports, protocols, and services to ensure the organization being inspected/assessed is compliant with DoDI 8551.01. DoD has defined the registration requirements as IAW DoDI 8551.01.'), ('000389','draft','2009-09-18','DISA FSO','policy','The organization develops an inventory of information system components that accurately reflects the current information system.','CM-8.1','The organization being inspected/assessed documents inventory of information system components that accurately reflects the current information system.','The organization conducting the inspection/assessment obtains and examines the documented inventory and examines a sampling of information system components to ensure inventory accurately reflects the current information system.'), ('000390','draft','2009-09-18','DISA FSO','policy','The organization documents an inventory of information system components that accurately reflects the current information system.',NULL,NULL,NULL), ('000391','draft','2009-09-18','DISA FSO','policy','The organization maintains an inventory of information system components that accurately reflects the current information system.',NULL,NULL,NULL), ('000392','draft','2009-09-18','DISA FSO','policy','The organization develops an inventory of information system components that includes all components within the authorization boundary of the information system.','CM-8.2','The organization being inspected/assessed documents inventory of information system components that includes all components within the authorization boundary of the information system.','The organization conducting the inspection/assessment obtains and examines the documented inventory and examines a sampling of information system components to ensure inventory includes all components within the authorization boundary of the information system.'), ('000393','draft','2009-09-18','DISA FSO','policy','The organization documents an inventory of information system components that includes all components within the authorization boundary of the information system.',NULL,NULL,NULL), ('000394','draft','2009-09-18','DISA FSO','policy','The organization maintains an inventory of information system components that is consistent with the authorization boundary of the information system.',NULL,NULL,NULL), ('000395','draft','2009-09-18','DISA FSO','policy','The organization develops an inventory of information system components that is at the level of granularity deemed necessary for tracking and reporting.','CM-8.3','The organization being inspected/assessed documents inventory of information system components that is at the level of granularity deemed necessary for tracking and reporting.','The organization conducting the inspection/assessment obtains and examines the documented inventory and examines a sampling of information system components to ensure inventory is at the level of granularity deemed necessary for tracking and reporting.'), ('000396','draft','2009-09-18','DISA FSO','policy','The organization documents an inventory of information system components that is at the level of granularity deemed necessary for tracking and reporting.',NULL,NULL,NULL), ('000397','draft','2009-09-18','DISA FSO','policy','The organization maintains an inventory of information system components that is at the level of granularity deemed necessary for tracking and reporting.',NULL,NULL,NULL), ('000398','draft','2009-09-18','DISA FSO','policy','The organization defines information deemed necessary to achieve effective information system component accountability.','CM-8.4','DoD has defined the information as hardware inventory specifications (manufacturer, type, model, serial number, physical location), software license information, information system/component owner, and for a networked component/device, the machine name.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information as hardware inventory specifications (manufacturer, type, model, serial number, physical location), software license information, information system/component owner, and for a networked component/device, the machine name.'), ('000399','draft','2009-09-18','DISA FSO','policy','The organization develops an inventory of information system components that includes organization-defined information deemed necessary to achieve effective information system component accountability.','CM-8.5','The organization being inspected/assessed documents inventory of information system components that includes organization defined information deemed necessary to achieve effective information system component accountability.','The organization conducting the inspection/assessment obtains and examines the documented inventory and examines a sampling of information system components to ensure inventory includes organization defined information deemed necessary to achieve effective information system component accountability.'), ('000400','draft','2009-09-18','DISA FSO','policy','The organization documents an inventory of information system components that includes organization-defined information deemed necessary to achieve effective information system component accountability.',NULL,NULL,NULL), ('000401','draft','2009-09-18','DISA FSO','policy','The organization maintains an inventory of information system components that includes organization-defined information deemed necessary to achieve effective property accountability.',NULL,NULL,NULL), ('000402','draft','2009-09-18','DISA FSO','policy','The organization develops an inventory of information system components that is available for review by designated organizational officials.',NULL,NULL,NULL), ('000403','draft','2009-09-18','DISA FSO','policy','The organization documents an inventory of information system components that is available for review by designated organizational officials.',NULL,NULL,NULL), ('000404','draft','2009-09-18','DISA FSO','policy','The organization maintains an inventory of information system components that is available for review by designated organizational officials.',NULL,NULL,NULL), ('000405','draft','2009-09-18','DISA FSO','policy','The organization develops an inventory of information system components that is available for audit by designated organizational officials.',NULL,NULL,NULL), ('000406','draft','2009-09-18','DISA FSO','policy','The organization documents an inventory of information system components that is available for audit by designated organizational officials.',NULL,NULL,NULL), ('000407','draft','2009-09-18','DISA FSO','policy','The organization maintains an inventory of information system components that is available for audit by designated organizational officials.',NULL,NULL,NULL), ('000408','draft','2009-09-18','DISA FSO','policy','The organization updates the inventory of information system components as an integral part of component installations.','CM-8(1).1','The organization being inspected/assessed documents and implements a process to update the inventory of information system components as an integral part of component installations. The organization must maintain an audit trail of updates. The audit trail may be recorded within the inventory itself.','The organization conducting the inspection/assessment obtains and examines the documented process for updates as well as the audit trail of updates and the log of changes to the information system to ensure the organization being inspected/assessed updates the inventory of information system components as an integral part of component installations.'), ('000409','draft','2009-09-18','DISA FSO','policy','The organization updates the inventory of information system components as an integral part of component removals.','CM-8(1).2','The organization being inspected/assessed documents and implements a process to update the inventory of information system components as an integral part of component removals. The organization must maintain an audit trail of updates. The audit trail may be recorded within the inventory itself.','The organization conducting the inspection/assessment obtains and examines the documented process for updates as well as the audit trail of updates and the log of changes to the information system to ensure the organization being inspected/assessed updates the inventory of information system components as an integral part of component removals.'), ('000410','draft','2009-09-18','DISA FSO','policy','The organization updates the inventory of information system components as an integral part of information system updates.','CM-8(1).3','The organization being inspected/assessed documents and implements a process to update the inventory of information system components as an integral part of information system updates. The organization must maintain an audit trail of updates. The audit trail may be recorded within the inventory itself.','The organization conducting the inspection/assessment obtains and examines the documented process for updates as well as the audit trail of updates and the log of changes to the information system to ensure the organization being inspected/assessed updates the inventory of information system components as an integral part of information system updates.'), ('000411','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to help maintain an up-to-date inventory of information system components.','CM-8(2).1','The organization being inspected/assessed documents and implements automated mechanisms to help maintain an up-to-date inventory of information system components. An automated mechanism implemented IAW CM-2 (2) satisfies the requirements of this CCI if the automated mechanism maintains an up-to-date inventory.','The organization conducting the inspection/assessment obtains and examines the documentation identifying the automated mechanism used to help maintain an up-to-date inventory of information system components and examines the mechanism to ensure the organization being inspected/assessed employs automated mechanisms to help maintain an up-to-date inventory of information system components.'), ('000412','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to help maintain a complete inventory of information system components.','CM-8(2).2','The organization being inspected/assessed documents and implements automated mechanisms to help maintain a complete inventory of information system components. An automated mechanism implemented IAW CM-2 (2) satisfies the requirements of this CCI if the automated mechanism maintains a complete inventory.','The organization conducting the inspection/assessment obtains and examines the documentation identifying the automated mechanism used to help maintain a complete inventory of information system components and examines the mechanism to ensure the organization being inspected/assessed employs automated mechanisms to help maintain a complete inventory of information system components.'), ('000413','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to help maintain an accurate inventory of information system components.','CM-8(2).3','The organization being inspected/assessed documents and implements automated mechanisms to help maintain an accurate inventory of information system components. An automated mechanism implemented IAW CM-2 (2) satisfies the requirements of this CCI if the automated mechanism maintains an accurate inventory.','The organization conducting the inspection/assessment obtains and examines the documentation identifying the automated mechanism used to help maintain an accurate inventory of information system components and examines the mechanism to ensure the organization being inspected/assessed employs automated mechanisms to help maintain an accurate inventory of information system components.'), ('000414','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to help maintain a readily available inventory of information system components.','CM-8(2).4','The organization being inspected/assessed documents and implements automated mechanisms to help maintain a readily available inventory of information system components. An automated mechanism implemented IAW CM-2 (2) satisfies the requirements of this CCI if the automated mechanism maintains a readily available inventory.','The organization conducting the inspection/assessment obtains and examines the documentation identifying the automated mechanism used to help maintain a readily available inventory of information system components and examines the mechanism to ensure the organization being inspected/assessed employs automated mechanisms to help maintain a readily available inventory of information system components.'), ('000415','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency of employing automated mechanisms to detect the presence of unauthorized hardware, software, and firmware components within the information system.','CM-8(3).1','DoD has defined the frequency as continuously.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as continuously.'), ('000416','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms, per organization-defined frequency, to detect the presence of unauthorized hardware, software, and firmware components within the information system.','CM-8(3).2','The organization being inspected/assessed documents and implements automated mechanisms to detect the presence of unauthorized hardware, software, and firmware components within the information system continuously. DoD has defined the frequency as continuously.','The organization conducting the inspection/assessment obtains and examines the documentation identifying the automated mechanisms and examines the implemented automated mechanisms to ensure the organization being inspected/assessed employs automated mechanisms, continuously, to detect the presence of unauthorized hardware, software, and firmware components within the information system. DoD has defined the frequency as continuously.'), ('000417','draft','2009-09-18','DISA FSO','technical','The organization disables network access by unauthorized components/devices or notifies designated organizational officials.',NULL,NULL,NULL), ('000418','draft','2009-09-18','DISA FSO','policy','The organization includes, in the information system component inventory information, a means for identifying by name, position, and/or role, individuals responsible/accountable for administering those components.','CM-8(4).1','The organization being inspected/assessed documents within their information system component inventory, the name and position or role of individuals responsible/accountable for administering those components or a means of identifying those individuals.','The organization conducting the inspection/assessment obtains and examines the information system component inventory to verify that the organization being inspected/assessed identifies within their inventory, the name and position or role of individuals responsible/accountable for administering those components or a means of identifying those individuals.'), ('000419','draft','2009-09-18','DISA FSO','policy','The organization verifies that all components within the authorization boundary of the information system are not duplicated in other information system component inventories.','CM-8(5).1','The organization being inspected/assessed verifies that all components within the authorization boundary of the information system are not duplicated in other information system inventories.','The organization conducting the inspection/assessment obtains and examines the inventory list of the authorized information system and verifies that all components identified during the inspection are not duplicated in other information system inventories.'), ('000420','draft','2009-09-18','DISA FSO','policy','The organization includes assessed component configurations and any approved deviations to current deployed configurations in the information system component inventory.','CM-8(6).1','The organization being inspected/assessed will institute procedures to ensure assessed component configurations, and any approved deviations to current deployed configurations, are included in the information system component inventory.','The organization conducting the inspection/assessment obtains and examines the organization\'s configuration management policy and plan; procedures addressing information system component inventory; information system design documentation; information system inventory records; information system component installation records; and any other relevant documents or records. The purpose of the reviews is to validate the organization is including assessed component configurations, and any approved deviations to deployed configurations, in the information system component\'s inventory.'), ('000421','draft','2009-09-18','DISA FSO','policy','The organization develops a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.','CM-9.1','The organization being inspected/assessed will develop and document a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to verify that it addresses and documents roles, responsibilities, and configuration management processes and procedures'), ('000422','draft','2009-09-18','DISA FSO','policy','The organization documents a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.',NULL,NULL,NULL), ('000423','draft','2009-09-18','DISA FSO','policy','The organization implements a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.','CM-9.2','The organization being inspected/assessed will implement a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.','The organization conducting the inspection/assessment obtains and examines the configuration management plan as well as evidence of implementation (e.g., completed change requests, meeting minutes, and other relevant documents) to ensure the organization being inspected/assessed implements a configuration management plan for the information system that addresses roles, responsibilities, and configuration management processes and procedures.'), ('000424','draft','2009-09-18','DISA FSO','policy','The organization develops a configuration management plan for the information system that defines the configuration items for the information system.','CM-9.7','The organization being inspected/assessed will develop and document a configuration management plan for the information system that defines the configuration items.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to ensure it defines and documents the configuration items for the information system.'), ('000425','draft','2009-09-18','DISA FSO','policy','The organization documents a configuration management plan for the information system that defines the configuration items for the information system.',NULL,NULL,NULL), ('000426','draft','2009-09-18','DISA FSO','policy','The organization implements a configuration management plan for the information system that defines the configuration items for the information system.','CM-9.8','The organization being inspected/assessed will implement a configuration management plan for the information system that defines the configuration items.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to ensure the organization being inspected/assessed implements a configuration management plan for the information system that defines the configuration items.'), ('000427','draft','2009-09-18','DISA FSO','policy','The organization develops a configuration management plan for the information system when in the system development life cycle the configuration items are placed under configuration management.',NULL,NULL,NULL), ('000428','draft','2009-09-18','DISA FSO','policy','The organization documents a configuration management plan for the information system when in the system development life cycle the configuration items are placed under configuration management.',NULL,NULL,NULL), ('000429','draft','2009-09-18','DISA FSO','policy','The organization implements a configuration management plan for the information system when in the system development life cycle the configuration items are placed under configuration management.',NULL,NULL,NULL), ('000430','draft','2009-09-18','DISA FSO','policy','The organization develops a configuration management plan for the information system that establishes the means for identifying configuration items throughout the system development life cycle.',NULL,NULL,NULL), ('000431','draft','2009-09-18','DISA FSO','policy','The organization documents a configuration management plan for the information system that establishes the means for identifying configuration items throughout the system development life cycle.',NULL,NULL,NULL), ('000432','draft','2009-09-18','DISA FSO','policy','The organization implements a configuration management plan for the information system that establishes the means for identifying configuration items throughout the system development life cycle.',NULL,NULL,NULL), ('000433','draft','2009-09-18','DISA FSO','policy','The organization develops a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.',NULL,NULL,NULL), ('000434','draft','2009-09-18','DISA FSO','policy','The organization documents a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.',NULL,NULL,NULL), ('000435','draft','2009-09-18','DISA FSO','policy','The organization implements a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.',NULL,NULL,NULL), ('000436','draft','2009-09-18','DISA FSO','policy','The organization assigns responsibility for developing the configuration management process to organizational personnel that are not directly involved in information system development.','CM-9(1).1','The organization being inspected/assessed will assign responsibility for developing the configuration management process to organizational personnel that are not directly involved in information system development.','The organization conducting the inspection/assessment obtains and examines documentation of stakeholder role assignments to verify that the personnel assigned CM roles are not assigned roles for information system development.'), ('000437','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency with which to review and update the current contingency planning policy.','CP-1.7','DoD has defined the frequency as every 5 years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 5 years.'), ('000438','draft','2009-09-18','DISA FSO','policy','The organization develops and documents a contingency planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','CP-1.1','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.'), ('000439','draft','2009-09-18','DISA FSO','policy','The organization disseminates a contingency planning policy to organization-defined personnel or roles.','CP-1.2','DoD disseminates DoDI 8500.01 organization-wide via the DoD Issuances website. http://www.dtic.mil/whs/directives/corres/dir.html NIST disseminates NIST SP 800-34 via http://csrc.nist.gov/publications/PubsSPs.html','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.'), ('000440','draft','2009-09-18','DISA FSO','policy','The organization reviews and updates the current contingency planning policy in accordance with an organization-defined frequency.','CP-1.8','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.'), ('000441','draft','2009-09-18','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls.','CP-1.4','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.'), ('000443','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that identifies essential missions.','CP-2.1','The organization being inspected/assessed must clearly and accurately document essential missions for its information system(s). Impact of loss of essential mission functions must be defined using CNSSI 1253.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents essential missions for its information system(s).'), ('000444','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that identifies essential business functions.','CP-2.2','The organization being inspected/assessed must clearly and accurately document essential business functions for its information system(s). Impact of loss of essential business functions must be defined using CNSSI 1253.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents essential business functions for its information system(s).'), ('000445','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that identifies associated contingency requirements.','CP-2.3','The organization being inspected/assessed must clearly and accurately document associated contingency requirements for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents associated contingency requirements for its information system(s).'), ('000446','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that provides recovery objectives.','CP-2.4','The organization being inspected/assessed must clearly and accurately document recovery objectives for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents recovery objectives for its information system(s).'), ('000447','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that provides restoration priorities.','CP-2.5','The organization being inspected/assessed must clearly and accurately document restoration priorities for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents restoration priorities for its information system(s).'), ('000448','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that provides metrics.','CP-2.6','The organization being inspected/assessed must clearly and accurately document metrics for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents metrics for its information system(s).'), ('000449','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses contingency roles, responsibilities, assigned individuals with contact information.','CP-2.7','The organization being inspected/assessed must clearly and accurately document contingency roles, responsibilities, assigned individuals with contact information for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents contingency roles, responsibilities, assigned individuals with contact information for its information system(s).'), ('000450','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses maintaining essential missions despite an information system disruption.','CP-2.8','The organization being inspected/assessed must clearly and accurately document maintaining essential missions despite an information system disruption for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining essential missions despite an information system disruption for its information system(s).'), ('000451','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses maintaining essential business functions despite an information system disruption.','CP-2.9','The organization being inspected/assessed must clearly and accurately document maintaining business functions despite an information system disruption for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining business functions despite an information system disruption for its information system(s).'), ('000452','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses maintaining essential missions despite an information system compromise.','CP-2.10','The organization being inspected/assessed must clearly and accurately document maintaining essential missions despite an information system compromise for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining essential missions despite an information system compromise for its information system(s).'), ('000453','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses maintaining essential business functions despite an information system compromise.','CP-2.11','The organization being inspected/assessed must clearly and accurately document maintaining business functions despite an information system compromise for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining business functions despite an information system compromise for its information system(s).'), ('000454','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses maintaining essential missions despite an information system failure.','CP-2.12','The organization being inspected/assessed must clearly and accurately document maintaining essential missions despite an information system failure for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining essential missions despite an information system failure for its information system(s).'), ('000455','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses maintaining essential business functions despite an information system failure.','CP-2.13','The organization being inspected/assessed must clearly and accurately document maintaining business functions despite an information system failure for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining business functions despite an information system failure for its information system(s).'), ('000456','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that addresses eventual, full information system restoration without deterioration of the security safeguards originally planned and implemented.','CP-2.14','The organization being inspected/assessed must clearly and accurately document eventual, full information system restoration without deterioration of the security safeguards originally planned and implemented for its information system(s).','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents eventual, full information system restoration without deterioration of the security safeguards originally planned and implemented for its information system(s).'), ('000457','draft','2009-09-18','DISA FSO','policy','The organization develops a contingency plan for the information system that is reviewed and approved by organization-defined personnel or roles.','CP-2.15','The organization being inspected/assessed reviews and approves the contingency plan by at a minimum, the ISSM and ISSO. The organization must maintain an audit trail of the review and approval activity. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.','The organization conducting the inspection/assessment obtains and examines the audit trail to ensure the contingency plan has been reviewed and approved by at a minimum, the ISSM and ISSO. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.'), ('000458','draft','2009-09-18','DISA FSO','policy','The organization defines a list of key contingency personnel (identified by name and/or by role) and organizational elements designated to receive copies of the contingency plan.','CP-2.17','DoD has defined the list as all stakeholders identified in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the list as all stakeholders identified in the contingency plan.'), ('000459','draft','2009-09-18','DISA FSO','policy','The organization distributes copies of the contingency plan to an organization-defined list of key contingency personnel (identified by name and/or by role) and organizational elements.','CP-2.18','The organization being inspected/assessed ensures the contingency plan is disseminated to all stakeholders identified in the contingency plan via an information sharing capability.\n\nDoD has defined the list as all stakeholders identified in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the contingency plan via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated. '), ('000460','draft','2009-09-18','DISA FSO','policy','The organization coordinates contingency planning activities with incident handling activities.','CP-2.19','The organization being inspected/assessed will coordinate the contingency plan and incident response plan (IR-8) to ensure they do not contradict each other\'s objectives or result in duplicate efforts/activities.','The organization conducting the inspection/assessment obtains and examines the contingency plan and the incident response plan (IR-8) to ensure they do not contradict each other\'s objectives or result in duplicate efforts/activities.'), ('000461','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency with which to review the contingency plan for the information system.','CP-2.20','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000462','draft','2009-09-18','DISA FSO','policy','The organization reviews the contingency plan for the information system in accordance with organization-defined frequency.','CP-2.21','The organization being inspected/assessed annually reviews the contingency plan. The organization must maintain an audit trail of annual reviews.','The organization conducting the inspection/assessment obtains and examines the audit trail to ensure the contingency plan is reviewed annually.'), ('000463','draft','2009-09-18','DISA FSO','policy','The organization updates the contingency plan to address changes to the organization.','CP-2.22','The organization being inspected/assessed must clearly and accurately update the contingency plan to address organizational changes. The organization must document the update activities as an audit trail.','The organization conducting the inspection/assessment obtains and examines the contingency plan and audit trail to ensure the organization clearly and accurately updates the contingency plan to address organizational changes.'), ('000464','draft','2009-09-18','DISA FSO','policy','The organization updates the contingency plan to address changes to the information system.','CP-2.23','The organization being inspected/assessed must clearly and accurately update the contingency plan to address changes to the information system. The organization must document the update activities as an audit trail.','The organization conducting the inspection/assessment obtains and examines the contingency plan and audit trail to ensure the organization clearly and accurately updates the contingency plan to address information system changes.'), ('000465','draft','2009-09-18','DISA FSO','policy','The organization updates the contingency plan to address changes to the environment of operation.','CP-2.24','The organization being inspected/assessed must clearly and accurately revise the contingency plan to address changes to the environment of operation. The organization must document the update activities as an audit trail.','The organization conducting the inspection/assessment obtains and examines the contingency plan and audit trail to ensure the organization clearly and accurately revises the contingency plan to address changes to the environment of operation.'), ('000466','draft','2009-09-18','DISA FSO','policy','The organization updates the contingency plan to address problems encountered during contingency plan implementation, execution, or testing.','CP-2.25','The organization being inspected/assessed must clearly and accurately revise the contingency plan to address problems encountered during contingency plan implementation, execution, or testing. The organization must document the update activities as an audit trail.','The organization conducting the inspection/assessment obtains and examines the contingency plan and audit trail to ensure the organization clearly and accurately revises the contingency plan to address problems encountered during contingency plan implementation, execution, or testing.'), ('000468','draft','2009-09-18','DISA FSO','policy','The organization communicates contingency plan changes to an organization-defined list of key contingency personnel (identified by name and/or by role) and organizational elements.','CP-2.26','The organization being inspected/assessed communicates contingency plan changes to all stakeholders identified in the contingency plan. DoD has defined the list as all stakeholders identified in the contingency plan. ','The organization conducting the inspection/assessment examines the contingency plan via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure the most current version has been communicated.'), ('000469','draft','2009-09-18','DISA FSO','policy','The organization coordinates contingency plan development with organizational elements responsible for related plans.','CP-2(1).1','The organization being inspected/assessed coordinates the development of its contingency plan with other organizational elements responsible for related plans. The organization documents any applicable agreements with responsible internal or external entities. For external entities the agreements could entail MOUs, MOAs, SLAs or contracts.','The organization conducting the inspection/assessment obtains and examines documentation of agreements with entities responsible for the contingency or related plans to ensure there is evidence of coordination of those plans.'), ('000470','draft','2009-09-18','DISA FSO','policy','The organization conducts capacity planning so that necessary capacity for information processing exists during contingency operations.','CP-2(2).1','The organization being inspected/assessed must conduct and document capacity planning to ensure that necessary capacity for information processing exists during contingency operations.','The organization conducting the inspection/assessment obtains and examines the documented capacity planning to ensure that the organization has performed capacity planning.'), ('000471','draft','2009-09-18','DISA FSO','policy','The organization conducts capacity planning so that necessary capacity for telecommunications exists during contingency operations.','CP-2(2).2','The organization being inspected/assessed must conduct and document capacity planning to ensure that necessary capacity for telecommunications exists during contingency operations.','The organization conducting the inspection/assessment obtains and examines the documented capacity planning to ensure that the organization has performed capacity planning.'), ('000472','draft','2009-09-18','DISA FSO','policy','The organization conducts capacity planning so that necessary capacity for environmental support exists during contingency operations.','CP-2(2).3','The organization being inspected/assessed must conduct and document capacity planning to ensure that necessary capacity for environmental support exists during contingency operations.','The organization conducting the inspection/assessment obtains and examines the documented capacity planning to ensure that the organization has performed capacity planning.'), ('000473','draft','2009-09-18','DISA FSO','policy','The organization defines the time period for planning the resumption of essential missions as a result of contingency plan activation.','CP-2(3).1','DoD has defined the time period as 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000474','draft','2009-09-18','DISA FSO','policy','The organization defines the time period for planning the resumption of essential business functions as a result of contingency plan activation.','CP-2(3).2','DoD has defined the time period as 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000475','draft','2009-09-18','DISA FSO','policy','The organization plans for the resumption of essential missions within the organization-defined time period of contingency plan activation.','CP-2(3).3','The organization being inspected/assessed shall document within their contingency plan, procedures for resumption of essential missions within 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains the contingency plan to ensure it contains procedures for resumption of essential missions within 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000476','draft','2009-09-18','DISA FSO','policy','The organization plans for the resumption of essential business functions within the organization-defined time period of contingency plan activation.','CP-2(3).4','The organization being inspected/assessed shall document within their contingency plan, procedures for resumption of essential business functions within 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains the contingency plan to ensure it contains procedures for resumption of essential business functions within 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000477','draft','2009-09-18','DISA FSO','policy','The organization defines the time period for planning the resumption of all missions as a result of contingency plan activation.','CP-2(4).1','DoD has defined the time period as 1 hour (Availability High ) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.'), ('000478','draft','2009-09-18','DISA FSO','policy','The organization defines the time period for planning the resumption of all business functions as a result of contingency plan activation.','CP-2(4).2','DoD has defined the time period as 1 hour (Availability High ) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.'), ('000479','draft','2009-09-18','DISA FSO','policy','The organization plans for the resumption of all missions within an organization-defined time period of contingency plan activation.','CP-2(4).3','The organization being inspected/assessed shall document within their contingency plan, procedures for full resumption of affected missions within 1 hour (Availability High ) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains the contingency plan to ensure it contains procedures for full resumption of affected missions within 1 hour (Availability High ) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.'), ('000480','draft','2009-09-18','DISA FSO','policy','The organization plans for the resumption of all business functions within an organization-defined time period of contingency plan activation.','CP-2(4).4','The organization being inspected/assessed shall document within their contingency plan, procedures for full resumption of affected business functions within 1 hour (Availability High) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains the contingency plan to ensure it contains procedures for full resumption of affected business functions within 1 hour (Availability High) 1-5 days (Availability Moderate) 5-30 days (Availability Low) as defined in the contingency plan.'), ('000481','draft','2009-09-18','DISA FSO','policy','The organization plans for the continuance of essential missions with little or no loss of operational continuity.','CP-2(5).1','The organization being inspected/assessed plans for the continuance of essential missions with little or no loss of operational continuity IAW CP-2a.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining essential missions despite an information system disruption for its information system(s).'), ('000482','draft','2009-09-18','DISA FSO','policy','The organization plans for the continuance of essential business functions with little or no loss of operational continuity.','CP-2(5).2','The organization being inspected/assessed plans for the continuance of essential business functions with little or no loss of operational continuity IAW CP-2a.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it clearly and accurately documents maintaining essential business functions despite an information system disruption for its information system(s).'), ('000483','draft','2009-09-18','DISA FSO','policy','The organization plans for the transfer of essential missions to alternate processing and/or storage sites with little or no loss of operational continuity.','CP-2(6).1','The organization being inspected/assessed documents within their continuity plan, a process to transfer essential missions to alternate processing and/or storage sites with little or no loss of operational continuity.','The organization conducting the inspection/assessment obtains and examines the continuity plan to ensure the organization being inspected/assessed documents a process to transfer essential missions to alternate processing and/or storage sites with little or no loss of operational continuity.'), ('000484','draft','2009-09-18','DISA FSO','policy','The organization plans for the transfer of essential business functions to alternate processing and/or storage sites with little or no loss of operational continuity.','CP-2(6).2','The organization being inspected/assessed documents within their continuity plan, a process to transfer essential business functions to alternate processing and/or storage sites with little or no loss of operational continuity.','The organization conducting the inspection/assessment obtains and examines the continuity plan to ensure the organization being inspected/assessed documents a process to transfer essential business functions to alternate processing and/or storage sites with little or no loss of operational continuity.'), ('000485','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of refresher contingency training to information system users.','CP-3.4','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually'), ('000486','draft','2009-09-21','DISA FSO','policy','The organization provides contingency training to information system users consistent with assigned roles and responsibilities within an organization-defined time period of assuming a contingency role or responsibility.','CP-3.1','The organization being inspected/assessed provides initial contingency training to personnel with contingency roles and responsibilities IAW CP-2, CCI 449 at a maximum, 10 working days of assuming a contingency role or responsibility.\n\nThe organization will maintain documentation of the training activity dates, location, and personnel for audit trail purposes and future reference (e.g., scheduling refresher training, etc.).\n\nDoD has defined the time period as at a maximum, 10 working days.','The organization conducting the inspection/assessment obtains and examines the list of contingency personnel and documentation of initial contingency training for the purpose of ensuring that all personnel with contingency roles and responsibilities have received initial contingency training at a maximum, 10 working days of assuming a contingency role or responsibility. DoD has defined the time period as at a maximum, 10 working days. '), ('000487','draft','2009-09-21','DISA FSO','policy','The organization provides refresher contingency training to information system users consistent with assigned roles and responsibilities in accordance with organization-defined frequency.','CP-3.5','The organization being inspected/assessed provides refresher contingency training to personnel with contingency roles and responsibilities IAW CP-2, CCI 449 at least annually. The organization will maintain documentation of the training activity dates, location, and personnel for audit trail purposes and future reference (e.g., scheduling refresher training, etc.). DoD has defined the frequency as at least annually.','The organization conducting the inspection/assessment obtains and examines the list of contingency personnel and documentation of refresher contingency training for the purpose of ensuring that all personnel with contingency roles and responsibilities have received refresher contingency training at least annually. DoD has defined the frequency as at least annually.'), ('000488','draft','2009-09-21','DISA FSO','policy','The organization incorporates simulated events into contingency training to facilitate effective response by personnel in crisis situations.','CP-3(1).1','The organization being inspected/assessed will include simulated events into contingency training to facilitate effective response by personnel in crisis situations.','The organization conducting the inspection/assessment obtains and examines contingency training materials to ensure that simulated events have been included.'), ('000489','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to provide a more thorough and realistic contingency training environment.','CP-3(2).1','The organization being inspected/assessed employs an automated mechanism such as scenario-based interactive online training/CBT providing a realistic contingency training environment.','The organization conducting the inspection/assessment obtains and examines the automated mechanism such as scenario-based interactive online training/CBT to verify that it provides a realistic contingency training environment.'), ('000490','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to test the contingency plan for the information system.','CP-4.1','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually.'), ('000491','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency to exercise the contingency plan for the information system.',NULL,NULL,NULL), ('000492','draft','2009-09-21','DISA FSO','policy','The organization defines contingency plan tests to be conducted for the information system.','CP-4.2','The organization being inspected/assessed defines and documents contingency plan tests to be conducted for the information system. DoD has determined the contingency plan tests are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented contingency plan tests to ensure the organization being inspected/assessed defines contingency plan tests to be conducted for the information system. DoD has determined the contingency plan tests are not appropriate to define at the Enterprise level.'), ('000493','draft','2009-09-21','DISA FSO','policy','The organization defines contingency plan exercises to be conducted for the information system.',NULL,NULL,NULL), ('000494','draft','2009-09-21','DISA FSO','policy','The organization tests the contingency plan for the information system in accordance with organization-defined frequency using organization-defined tests to determine the effectiveness of the plan and the organizational readiness to execute the plan.','CP-4.3','The organization being inspected/assessed conduct tests defined in CP-4, 492 at least annually to determine the effectiveness of the plan and the organizational readiness to execute the plan. The organization must maintain a record of test results. DoD has defined the frequency as at least annually.','The organization conducting the inspection/assessment obtains and examines the record of test results to ensure the organization being inspected/assessed conduct tests defined in CP-4, 492 at least annually to determine the effectiveness of the plan and the organizational readiness to execute the plan. DoD has defined the frequency as at least annually.'), ('000495','draft','2009-09-21','DISA FSO','policy','The organization exercises the contingency plan using organization-defined exercises in accordance with organization-defined frequency.',NULL,NULL,NULL), ('000496','draft','2009-09-21','DISA FSO','policy','The organization reviews the contingency plan test results.','CP-4.4','The organization being inspected/assessed will review the contingency plan test results. The organization must maintain an audit trail of issues identified during the reviews of the contingency plan test results.','The organization conducting the inspection/assessment obtains and examines the audit trail of issues identified during the reviews of the contingency plan test results to ensure the organization being inspected/assessed reviews the contingency plan test results.'), ('000497','draft','2009-09-21','DISA FSO','policy','The organization initiates corrective actions, if needed, after reviewing the contingency plan test results.','CP-4.5','The organization being inspected/assessed identifies and documents any corrective actions required after reviewing the contingency plan test results. The organization initiates corrective actions and tracks those actions within the POA&M.','The organization conducting the inspection/assessment obtains and examines the contingency plan test results as well as any documented corrective actions required and ensures the corrective actions are being implemented and tracked within the POA&M.'), ('000498','draft','2009-09-21','DISA FSO','policy','The organization coordinates contingency plan testing with organizational elements responsible for related plans.','CP-4(1).1','The organization being inspected/assessed coordinates the testing of its contingency plan with other organizational elements responsible for related plans. The organization documents any applicable agreements with responsible internal or external entities. For external entities the agreements could entail MOUs, MOAs, SLAs or contracts.','The organization conducting the inspection/assessment obtains and examines documentation of agreements with entities responsible for the contingency or related plans to ensure there is evidence of coordination of those tests.'), ('000499','draft','2009-09-21','DISA FSO','policy','The organization coordinates contingency plan exercises with organizational elements responsible for related plans.',NULL,NULL,NULL), ('000500','draft','2009-09-21','DISA FSO','policy','The organization tests the contingency plan at the alternate processing site to familiarize contingency personnel with the facility and available resources.','CP-4(2).1','The organization being inspected/assessed will include personnel expected to implement the contingency plan at the alternate site in the testing at the alternate site to familiarize contingency personnel with the facility and available resources. The organization must maintain a record of personnel who participated in the contingency plan testing at the alternate site.','The organization conducting the inspection/assessment obtains and examines the record of personnel who participated in the contingency plan testing at the alternate site to ensure the organization being inspected/assessed tests the contingency plan at the alternate processing site to familiarize personnel expected to implement the contingency plan at the alternate site with the facility and available resources.'), ('000501','draft','2009-09-21','DISA FSO','policy','The organization exercises the contingency plan at the alternate processing site to familiarize contingency personnel with the facility and available resources and to evaluate the site^s capabilities to support contingency operations.',NULL,NULL,NULL), ('000502','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to more thoroughly and effectively test the contingency plan.','CP-4(3).1','The organization being inspected/assessed will identify and employ automated mechanisms to thoroughly test the contingency plan, for example by providing more complete coverage of contingency issues, selecting more realistic test scenarios and environments, and more effectively stressing the information system and supported missions.','The organization conducting the inspection/assessment obtains and examines the identified automated mechanisms in use to thoroughly test the contingency plan.'), ('000503','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to more thoroughly and effectively exercise the contingency plan by providing more complete coverage of contingency issues, selecting more realistic exercise scenarios and environments, and more effectively stressing the information and supported missions.',NULL,NULL,NULL), ('000504','draft','2009-09-21','DISA FSO','policy','The organization includes a full recovery and reconstitution of the information system to a known state as part of contingency plan testing.','CP-4(4).1','The organization being inspected/assessed demonstrates full recovery and reconstitution of its information system to a known state as part of its contingency plan testing. The organization documents full recovery and reconstitution as part of its contingency plan testing results.','The organization conducting the inspection/assessment obtains and examines the full recovery and reconstitution procedures and contingency plan testing results to ensure all tests were performed IAW CP-2, CCIs 446 and 447.'), ('000505','draft','2009-09-21','DISA FSO','policy','The organization establishes an alternate storage site including necessary agreements to permit the storage and retrieval of information system backup information.','CP-6.1','The organization being inspected/assessed establishes an alternate storage site and documents relevant information within the contingency plan.','The organization conducting the inspection/assessment obtains and examines the contingency plan to confirm the organization has established an alternate storage site.'), ('000506','draft','2009-09-21','DISA FSO','policy','The organization initiates necessary alternate storage site agreements to permit the storage and recovery of information system backup information.',NULL,NULL,NULL), ('000507','draft','2009-09-21','DISA FSO','policy','The organization identifies an alternate storage site that is separated from the primary storage site to reduce susceptibility to the same threats.','CP-6(1).1','The organization being inspected/assessed identifies and documents within the contingency plan an alternate storage site not susceptible to the same threats that exist at the primary storage site. The organization must document threats in the risk management strategy IAW PM-9, CCI 000227.','The organization conducting the inspection/assessment obtains and examines the risk management strategy and the contingency plan to ensure the organization identifies an alternate storage site that is separated from the primary storage site so as not to be susceptible to the same threats identified at the primary site.'), ('000508','draft','2009-09-21','DISA FSO','policy','The organization configures the alternate storage site to facilitate recovery operations in accordance with recovery time and recovery point objectives.','CP-6(2).1','The organization being inspected/assessed configures the alternate storage site to facilitate recovery operations IAW CP-2, CCIs 446 and 447.','The organization conducting the inspection/assessment obtains and examines the contingency plan and conducts a walk-through of the alternate storage site to ensure the organization\'s documented recovery time and recovery point objectives have been met.'), ('000509','draft','2009-09-21','DISA FSO','policy','The organization identifies potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster.','CP-6(3).1','The organization being inspected/assessed must identify and document in the contingency plan potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure the organization has documented potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster.'), ('000510','draft','2009-09-21','DISA FSO','policy','The organization defines the time period consistent with recovery time and recovery point objectives for essential missions/business functions to permit the transfer and resumption of organization-defined information system operations at an alternate processing site when the primary processing capabilities are unavailable.','CP-7.1','DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan'), ('000511','draft','2009-09-21','DISA FSO','policy','The organization defines the time period for achieving the recovery time objectives for business functions within which processing must be resumed at the alternate processing site.',NULL,NULL,NULL), ('000512','draft','2009-09-21','DISA FSO','policy','The organization establishes an alternate processing site.',NULL,NULL,NULL), ('000513','draft','2009-09-21','DISA FSO','policy','The organization establishes an alternate processing site including necessary agreements to permit the transfer and resumption of organization-defined information system operations for essential missions within an organization-defined time period consistent with recovery time and recovery point objectives when the primary processing capabilities are unavailable.','CP-7.2','The organization being inspected/assessed documents and gains approval for alternate processing site agreements that permit the transfer and resumption of information system operations for essential missions within 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the approved alternate processing site agreements to ensure the organization has alternate processing site support that will permit the transfer and resumption of information system operations for essential missions within 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000514','draft','2009-09-21','DISA FSO','policy','The organization establishes an alternate processing site including necessary agreements to permit the transfer and resumption of organization-defined information system operations for essential business functions within an organization-defined time period consistent with recovery time and recovery point objectives when the primary processing capabilities are unavailable.','CP-7.3','The organization being inspected/assessed documents and gains approval for alternate processing site agreements that permit the transfer and resumption of information system operations for business functions within 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the approved alternate processing site agreements to ensure the organization has alternate processing site support that will permit the transfer and resumption of information system operations for business functions within 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000515','draft','2009-09-21','DISA FSO','policy','The organization ensures that equipment and supplies required to transfer and resume operations are available at the alternate processing site or contracts are in place to support delivery to the site within the organization-defined time period for transfer/resumption.','CP-7.5','The organization being inspected/assessed maintains an inventory of equipment and supplies required to transfer and resume operations, or engages contract support that meets required timelines to support 1 hour (Availability High) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines:\n1. Inventory of equipment and supplies or,\n2. Contract documentation\nto ensure the organization has the equipment and supply resources necessary, or provisions to obtain the resources to transfer and resume operations at the alternate processing site within 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000516','draft','2009-09-21','DISA FSO','policy','The organization identifies an alternate processing site that is separated from the primary processing site to reduce susceptibility to the same threats.','CP-7(1).1','The organization being inspected/assessed identifies and documents within the contingency plan an alternate processing site not susceptible to the same threats that exist at the primary processing site. The organization must document threats in the risk management strategy IAW PM-9, CCI 000227.','The organization conducting the inspection/assessment obtains and examines the risk management strategy and the contingency plan to ensure the organization identifies an alternate processing site that is separated from the primary processing site so as not to be susceptible to the same threats identified at the primary site.'), ('000517','draft','2009-09-21','DISA FSO','policy','The organization identifies potential accessibility problems to the alternate processing site in the event of an area-wide disruption or disaster.','CP-7(2).1','The organization being inspected/assessed must identify and document in the contingency plan potential accessibility problems to the alternate processing site in the event of an area-wide disruption or disaster.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure the organization has documented potential accessibility problems to the alternate processing site in the event of an area-wide disruption or disaster.'), ('000518','draft','2009-09-21','DISA FSO','policy','The organization develops alternate processing site agreements that contain priority-of-service provisions in accordance with the organizational availability requirements (including recovery time objectives).','CP-7(3).1','The organization being inspected/assessed documents and gains approval for alternate processing site agreements that contain priority-of-service provisions in accordance with CP-2, CCI 447 (including recovery time objectives).','The organization conducting the inspection/assessment obtains and examines the approved alternate processing site agreements to ensure they contain priority-of-service provisions in accordance with CP-2, CCI 447 for alternate processing site support (including recovery time objectives).'), ('000519','draft','2009-09-21','DISA FSO','policy','The organization prepares the alternate processing site so that it is ready to be used as the operational site supporting essential missions.','CP-7(4).1','The organization being inspected/assessed prepares the alternate processing site so that it is ready to be used as the operational site supporting essential missions IAW CP-2, CCI 443.','The organization conducting the inspection/assessment obtains and examines the contingency plan and conducts a walk-through of the alternate processing site to ensure it is ready to be used as the operational site supporting essential missions.'), ('000520','draft','2009-09-21','DISA FSO','policy','The organization prepares the alternate processing site so that it is ready to be used as the operational site supporting essential business functions.','CP-7(4).2','The organization being inspected/assessed prepares the alternate processing site so that it is ready to be used as the operational site supporting business functions IAW CP-2, CCI 444.','The organization conducting the inspection/assessment obtains and examines the contingency plan and conducts a walk-through of the alternate processing site to ensure it is ready to be used as the operational site supporting business functions.'), ('000521','draft','2009-09-21','DISA FSO','policy','The organization ensures that the alternate processing site provides information security safeguards equivalent to that of the primary site.','CP-7.6','The organization being inspected/assessed documents the information security safeguards that are in place at both the primary and alternate sites and evidence that the alternate site was approved based on an assessment that security is equivalent at the alternate site.','The organization conducting the inspection/assessment obtains and examines the documentation of the primary/alternate site information security safeguards that are in place as well as evidence that the alternate site was approved based on an assessment that security is equivalent at the alternate site.'), ('000522','draft','2009-09-21','DISA FSO','policy','The organization defines the time period within which to permit the resumption of organization-defined information system operations for essential missions when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-8.1','DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000523','draft','2009-09-21','DISA FSO','policy','The organization defines the time period within which to permit the resumption of organization-defined information system operations for essential business functions when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-8.2','DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000524','draft','2009-09-21','DISA FSO','policy','The organization establishes alternate telecommunication services including necessary agreements to permit the resumption of organization-defined information system operations for essential missions within an organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-8.3','The organization being inspected/assessed documents and gains approval for alternate telecommunications service agreements that permit the resumption of telecommunications services for essential missions IAW DoDI 8100.04. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the approved alternate telecommunications service agreements to ensure they permit the resumption of telecommunications services for essential mission IAW DoDI 8100.04. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000525','draft','2009-09-21','DISA FSO','policy','The organization establishes alternate telecommunication services including necessary agreements to permit the resumption of organization-defined information system operations for essential business functions within an organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-8.4','The organization being inspected/assessed documents and gains approval for alternate telecommunications service agreements that permit the resumption of telecommunications services for business functions IAW DoDI 8100.04. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the approved alternate telecommunications service agreements to ensure they permit the resumption of telecommunications services for business functions IAW DoDI 8100.04. DoD has defined the time period as 1 hour (Availability High ) 12 hours (Availability Moderate) as defined in the contingency plan.'), ('000526','draft','2009-09-21','DISA FSO','policy','The organization develops primary telecommunications service agreements that contain priority-of-service provisions in accordance with the organization^s availability requirements (including recovery time objectives).','CP-8(1).1','The organization being inspected/assessed documents and gains approval for primary telecommunications service agreements that contain priority-of-service provisions IAW DoDI 8100.04 (including recovery time objectives).','The organization conducting the inspection/assessment obtains and examines the approved primary telecommunications service agreements to ensure they contain priority-of-service provisions IAW DoDI 8100.04 (including recovery time objectives).'), ('000527','draft','2009-09-21','DISA FSO','policy','The organization develops alternate telecommunications service agreements that contain priority-of-service provisions in accordance with the organization^s availability requirements (including recovery time objectives).','CP-8(1).2','The organization being inspected/assessed documents and gains approval for alternate telecommunications service agreements that contain priority-of-service provisions IAW DoDI 8100.04 (including recovery time objectives).','The organization conducting the inspection/assessment obtains and examines the approved alternate telecommunications service agreements to ensure they contain priority-of-service provisions IAW DoDI 8100.04 (including recovery time objectives).'), ('000528','draft','2009-09-21','DISA FSO','policy','The organization requests Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness in the event that the primary telecommunications services are provided by a common carrier.','CP-8(1).3','The organization being inspected/assessed identifies and documents within the contingency plan any telecommunications services used for national security emergency preparedness. If the primary telecommunications services are provided by a common carrier, the organization formally requests Telecommunications Service Priority IAW the DHS Telecommunications Service Priority Process http://www.dhs.gov/telecommunications-service-priority-tsp. If the primary telecommunications services are provided by a mid-tier provider instead of a common carrier (for example, DISA) the organization must insure that their provider formally requests Telecommunications Service Priority on their behalf.','The organization conducting the inspection/assessment obtains and examines the contingency plan, the telecommunication service agreement, and any existing formal requests for Telecommunications Service Priority.\n\nThe purpose of the review is to ensure the organization or the mid-tier provider has requested Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness where the primary telecommunications services are provided by a common carrier.'), ('000529','draft','2009-09-21','DISA FSO','policy','The organization requests Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness in the event that the alternate telecommunications services are provided by a common carrier.','CP-8(1).4','The organization being inspected/assessed identifies and documents within the contingency plan telecommunications services used for national security emergency preparedness in the event the alternate telecommunications services are provided by a common carrier. For each service, the organization formally requests Telecommunications Service Priority, IAW the DHS Telecommunications Service Priority Process http://tsp.ncs.gov/request.html.','The organization conducting the inspection/assessment obtains and examines the contingency plan, the telecommunication service agreement, and any existing formal requests for Telecommunications Service Priority. The purpose of the review is to ensure the organization has requested Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness in the event the alternate telecommunications services are provided by a common carrier.'), ('000530','draft','2009-09-21','DISA FSO','policy','The organization obtains alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services.','CP-8(2).1','The organization being inspected/assessed obtains alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services IAW DoDI 8100.04.','The organization conducting the inspection/assessment obtains and examines agreements with their service providers to ensure that a single point of failure is not shared.'), ('000531','draft','2009-09-21','DISA FSO','policy','The organization obtains alternate telecommunications services from providers that are separated from primary service providers to reduce susceptibility to the same threats.','CP-8(3).1','The organization being inspected/assessed obtains alternate telecommunications services from providers that are separated from primary service providers so as not to be susceptible to the same hazards IAW DoDI 8100.04.','The organization conducting the inspection/assessment obtains and examines agreements with alternate service providers to ensure they are not susceptible to the same hazards as the primary service provider.'), ('000532','draft','2009-09-21','DISA FSO','policy','The organization requires primary telecommunications service providers to have contingency plans.','CP-8(4).1','The organization being inspected/assessed includes in their primary telecommunications service provider agreements requirements for the primary service provider to have contingency plans.','The organization conducting the inspection/assessment obtains and examines the primary telecommunications service provider agreements to ensure the organization requires the primary service provider to have contingency plans.'), ('000533','draft','2009-09-21','DISA FSO','policy','The organization requires alternate telecommunications service providers to have contingency plans.','CP-8(4).2','The organization being inspected/assessed includes in their alternate telecommunications service provider agreements requirements for the alternate service provider to have contingency plans.','The organization conducting the inspection/assessment obtains and examines the alternate telecommunications service provider agreements to ensure the organization requires the alternate service provider to have contingency plans.'), ('000534','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of conducting user-level information backups to support recovery time objectives and recovery point objectives.','CP-9.1','DoD has defined the frequency as at least weekly as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least weekly as defined in the contingency plan.'), ('000535','draft','2009-09-21','DISA FSO','policy','The organization conducts backups of user-level information contained in the information system per organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-9.2','The organization being inspected/assessed must identify user level information within the backup strategy and configure the system to perform backups at least weekly as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and reviews the backup strategy, and examines a sample of systems to ensure they are configured to perform back ups at least weekly as defined in the contingency plan.'), ('000536','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of conducting system-level information backups to support recovery time objectives and recovery point objectives.','CP-9.3','DoD has defined the frequency as at least weekly and as required by system baseline configuration changes in accordance with the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least weekly and as required by system baseline configuration changes in accordance with the contingency plan.'), ('000537','draft','2009-09-21','DISA FSO','policy','The organization conducts backups of system-level information contained in the information system per organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-9.4','The organization being inspected/assessed must identify system-level information within the backup strategy and configure the system to perform backups at least weekly and as required by system baseline configuration changes in accordance with the contingency plan.','The organization conducting the inspection/assessment obtains and reviews the backup strategy, and examines a sample of systems to ensure they are configured to perform back ups at least weekly and as required by system baseline configuration changes in accordance with the contingency plan.'), ('000538','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of conducting information system documentation backups, including security-related documentation, to support recovery time objectives and recovery point objectives.','CP-9.5','DoD has defined the frequency as when created or received, when updated, and as required by system baseline configuration changes in accordance with the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as when created or received, when updated, and as required by system baseline configuration changes in accordance with the contingency plan.'), ('000539','draft','2009-09-21','DISA FSO','policy','The organization conducts backups of information system documentation, including security-related documentation, per an organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-9.6','The organization being inspected/assessed conducts backups of information system documentation including security-related documentation when created or received, when updated, and as required by system baseline configuration changes in accordance with the contingency plan.','The organization conducting the inspection/assessment obtains and examines the latest version of the information system documentation including security-related documentation to verify it is the same version as contained in backups.'), ('000540','draft','2009-09-21','DISA FSO','policy','The organization protects the confidentiality, integrity, and availability of backup information at storage locations.','CP-9.7','The organization being inspected/assessed will protect the confidentiality, integrity, and availability of backup information at the storage location IAW the system security plan.','The organization conducting the inspection/assessment obtains and examines the system security plan and ensures backup information at the storage location is protected IAW the system security plan.'), ('000541','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to test backup information to verify media reliability and information integrity.','CP-9(1).1','DoD has defined the frequency as at least monthly in accordance with contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least monthly in accordance with contingency plan.'), ('000542','draft','2009-09-21','DISA FSO','policy','The organization tests backup information per an organization-defined frequency to verify media reliability and information integrity.','CP-9(1).2','The organization being inspected/assessed tests and logs backup information at least monthly in accordance with contingency plan to verify media reliability and information integrity.','The organization conducting the inspection/assessment obtains and examines the backup plan and verifies that the organization has tested and logged backup information.'), ('000543','draft','2009-09-21','DISA FSO','policy','The organization uses a sample of backup information in the restoration of selected information system functions as part of contingency plan testing.','CP-9(2).1','The organization being inspected/assessed restores a sample of backup information as part of the restoration of selected information system functions during contingency plan testing. Organizations must identify a sample of backup information in the contingency plan test results.','The organization conducting the inspection/assessment obtains and examines the contingency plan test results to verify that the sample of backup information was restored as part of the restoration of selected information system functions.'), ('000544','draft','2009-09-21','DISA FSO','policy','The organization stores backup copies of the operating system in a separate facility or in a fire-rated container that is not colocated with the operational system.',NULL,NULL,NULL), ('000545','draft','2009-09-21','DISA FSO','policy','The organization stores backup copies of critical information system software in a separate facility or in a fire-rated container that is not colocated with the operational system.',NULL,NULL,NULL), ('000546','draft','2009-09-21','DISA FSO','policy','The organization stores backup copies of the information system inventory (including hardware, software, and firmware components) in a separate facility or in a fire-rated container that is not colocated with the operational system.',NULL,NULL,NULL), ('000547','draft','2009-09-21','DISA FSO','policy','The organization defines the time period and transfer rate of the information system backup information to the alternate storage site consistent with the recovery time and recovery point objectives.','CP-9(5).1','DoD has defined the time period as Continuously (Availability High ) 24 hours (Availability Moderate) 7 days (Availability Low) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as Continuously (Availability High ) 24 hours (Availability Moderate) 7 days (Availability Low) as defined in the contingency plan.'), ('000548','draft','2009-09-21','DISA FSO','policy','The organization transfers information system backup information to the alternate storage site in accordance with the organization-defined time period and transfer rate consistent with the recovery time and recovery point objectives.','CP-9(5).2','The organization being inspected/assessed performs the transfer of information system backup information to the alternate site Continuously (Availability High) 24 hours (Availability Moderate) 7 days (Availability Low) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the contingency plan and related logs to ensure the organization transfers information system backup information to the alternate site Continuously (Availability High) 24 hours (Availability Moderate) 7 days (Availability Low) as defined in the contingency plan.'), ('000549','draft','2009-09-21','DISA FSO','policy','The organization maintains a redundant secondary information system that is not collocated with the primary system.','CP-9(6).1','The organization being inspected/assessed establishes and maintains a redundant, secondary backup system that is not co-located with the primary system.','The organization conducting the inspection/assessment determines if the organization is maintaining a redundant, secondary backup system that is not co-located with the primary system.'), ('000550','draft','2009-09-21','DISA FSO','policy','The organization provides for the recovery and reconstitution of the information system to a known state after a disruption.','CP-10.1','The organization being inspected/assessed provides automated mechanisms or manual procedures, or a combination of the two, for the recovery and reconstitution of its information system to a known state after a disruption. The organization must identify the selected method in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it identifies the recovery and reconstitution method for its information system to a known state after a disruption.'), ('000551','draft','2009-09-21','DISA FSO','policy','The organization provides for the recovery and reconstitution of the information system to a known state after a compromise.','CP-10.2','The organization being inspected/assessed provides automated mechanisms or manual procedures, or a combination of the two, for the recovery and reconstitution of its information system to a known state after a compromise. The organization must identify the selected method in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it identifies the recovery and reconstitution method for its information system to a known state after a compromise.'), ('000552','draft','2009-09-21','DISA FSO','policy','The organization provides for the recovery and reconstitution of the information system to a known state after a failure.','CP-10.3','The organization being inspected/assessed provides automated mechanisms or manual procedures, or a combination of the two, for the recovery and reconstitution of its information system to a known state after a failure. The organization must identify the selected method in the contingency plan.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it identifies the recovery and reconstitution method for its information system to a known state after a failure.'), ('000553','draft','2009-09-21','DISA FSO','policy','The information system implements transaction recovery for systems that are transaction-based.','CP-10(2).1','The organization being inspected/assessed identifies, documents, and implements transaction recovery capability for systems that are transaction-based. The organization must document transaction recovery results as part of contingency plan testing.','The organization conducting the inspection/assessment obtains and examines the contingency plan test results to verify transaction recovery.'), ('000554','draft','2009-09-21','DISA FSO','policy','The organization defines in the security plan, explicitly or by reference, the circumstances that can inhibit recovery and reconstitution of the information system to a known state.',NULL,NULL,NULL), ('000555','draft','2009-09-21','DISA FSO','policy','The organization provides compensating security controls for organization-defined circumstances that can inhibit recovery and reconstitution of the information system to a known state.',NULL,NULL,NULL), ('000556','draft','2009-09-21','DISA FSO','policy','The organization defines restoration time periods within which to restore information system components from configuration-controlled and integrity-protected information representing a known, operational state for the components.','CP-10(4).1','DoD has defined the time period as 1 hour (Availability High ) 24 hours (Availability Moderate) 1 - 5 days (Availability Low) as defined in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 hour (Availability High ) 24 hours (Availability Moderate) 1 - 5 days (Availability Low) as defined in the contingency plan.'), ('000557','draft','2009-09-21','DISA FSO','policy','The organization provides the capability to restore information system components within organization-defined restoration time periods from configuration-controlled and integrity-protected information representing a known, operational state for the components.','CP-10(4).2','The organization being inspected/assessed exercises the capability to restore information system components from configuration-controlled and integrity-protected information representing a secure, operational state for the components within the defined time period during contingency plan testing: 1 hour (Availability High ) 24 hours (Availability Moderate) 1 - 5 days (Availability Low) as defined in the contingency plan.','The organization conducting the inspection/assessment obtains and examines contingency plan test results to verify the organization exercises the capability to restore information system components from configuration-controlled and integrity-protected information representing a secure, operational state for the components, and that restoration occurred within the defined time period: 1 hour (Availability High ) 24 hours (Availability Moderate) 1 - 5 days (Availability Low) as defined in the contingency plan.'), ('000558','draft','2009-09-21','DISA FSO','policy','The organization defines the real-time or near-real-time failover capability to be provided for the information system.','SI-13(5).1','The organization being inspected/assessed defines and documents the real-time or near-real-time failover capability to be provided for the information system. DoD has determined the failover capability is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented failover capability to ensure the organization being inspected/assessed defines the real-time or near-real-time failover capability to be provided for the information system. DoD has determined the failover capability is not appropriate to define at the Enterprise level.'), ('000559','draft','2009-09-21','DISA FSO','policy','The organization provides real-time or near-real-time organization-defined failover capability for the information system.','SI-13(5).2','The organization being inspected/assessed designs the information system to provide real-time or near-real-time failover capability defined in SI-13 (5), CCI 558 for the information system.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed provides real-time or near-real-time failover capability defined in SI-13 (5), CCI 558 for the information system.'), ('000560','draft','2009-09-21','DISA FSO','policy','The organization protects backup and restoration hardware.','CP-10(6).1','The organization being inspected/assessed implements and documents policies and back up procedures designed to protect its backup and restoration hardware.','The organization conducting the inspection/assessment obtains and examines documentation of protection measures to ensure the organization is actively protecting backup and restoration hardware.'), ('000561','draft','2009-09-21','DISA FSO','policy','The organization protects backup and restoration firmware.','CP-10(6).2','The organization being inspected/assessed implements and documents policies and back up procedures designed to protect its backup and restoration firmware.','The organization conducting the inspection/assessment obtains and examines documentation of protection measures to ensure the organization is actively protecting backup and restoration firmware.'), ('000562','draft','2009-09-21','DISA FSO','policy','The organization protects backup and restoration software.','CP-10(6).3','The organization being inspected/assessed implements and documents policies and back up procedures designed to protect its backup and restoration software.','The organization conducting the inspection/assessment obtains and examines documentation of protection measures to ensure the organization is actively protecting backup and restoration software.'), ('000563','draft','2009-09-21','DISA FSO','policy','The organization develops and documents a security planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PL-1.3','DoDI 8510.01 meets the requirements for a security planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.','DoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.'), ('000564','draft','2009-09-21','DISA FSO','policy','The organization disseminates a security planning policy to organization-defined personnel or roles.','PL-1.4','DoD disseminates DoDI 8510.01 via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) to organizational personnel with planning responsibilities or information security responsibilities.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the roles as organizational personnel with planning responsibilities or information security responsibilities.','DoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the roles as organizational personnel with planning responsibilities or information security responsibilities.'), ('000565','deprecated','2009-09-21','DISA FSO','policy','The organization reviews/updates, per organization-defined frequency, a formal, documented security planning policy.',NULL,NULL,NULL), ('000566','draft','2009-09-21','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the security planning policy and associated security planning controls.','PL-1.5','DoDI 8510.01 meets the requirements for developing and documenting procedures to facilitate the implementation of the security planning policy and associated security planning controls.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.','DoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.'), ('000567','draft','2009-09-21','DISA FSO','policy','The organization disseminates security planning procedures to organization-defined personnel or roles.','PL-1.8','DoD disseminates DoDI 8510.01 via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) to organizational personnel with planning responsibilities or information security responsibilities.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the roles as organizational personnel with planning responsibilities or information security responsibilities.','DoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the roles as organizational personnel with planning responsibilities or information security responsibilities.'), ('000568','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current security planning procedures in accordance with organization-defined frequency.','PL-1.9','DoDI 8510.01 meets the requirements for a security planning policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.','DoDI 8510.01 meets the requirements for a security planning policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000570','draft','2009-09-21','DISA FSO','policy','The organization develops a security plan for the information system that is consistent with the organization^s enterprise architecture; explicitly defines the authorization boundary for the system; describes the operational context of the information system in terms of mission and business processes; provides the security category and impact level of the information system, including supporting rationale; describes the operational environment for the information system; describes relationships with, or connections to, other information systems; provides an overview of the security requirements for the system; and describes the security controls in place or planned for meeting those requirements, including a rationale for the tailoring and supplemental decisions.',NULL,NULL,NULL), ('000571','draft','2009-09-21','DISA FSO','policy','The organization^s security plan for the information system is reviewed and approved by the authorizing official or designated representative prior to plan implementation.','PL-2.10','The organization being inspected/assessed obtains security plan approval by the authorizing official or designated representative prior to plan implementation.','The organization conducting the inspection/assessment obtains and examines the security plan approval to ensure the organization being inspected/assessed obtains security plan approval by the authorizing official or designated representative prior to plan implementation.'), ('000572','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency for reviewing the security plan for the information system.','PL-2.15','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000573','draft','2009-09-21','DISA FSO','policy','The organization reviews the security plan for the information system in accordance with organization-defined frequency.','PL-2.16','The information system owner as part of the annual security control review will also review the security plan annually. Documentation of security plan reviews is required as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit records of security plan reviews to verify the security plan has been reviewed annually. DoD has defined the frequency as annually.'), ('000574','draft','2009-09-21','DISA FSO','policy','The organization updates the plan to address changes to the information system/environment of operation or problems identified during plan implementation or security control assessments.','PL-2.17','The information system owner will update the security plan as necessary to address changes to information system/environment of operation or problems identified during plan implementation or security control assessments. Documentation of security plan updates are required as an audit trail.','The organization conducting the inspection/assessment obtains and examines the audit records of security plan updates to verify the security plan is current. The purpose of the reviews is to validate the organization is updating the Information System (IS) security plan to address changes to the IS, its environment of operation, or problems identified during plan implementation or security control assessments.'), ('000576','draft','2009-09-21','DISA FSO','policy','The organization develops a security Concept of Operations (CONOPS) for the information system containing, at a minimum: the purpose of the system; a description of the system architecture; the security authorization schedule; and the security categorization and associated factors considered in determining the categorization.',NULL,NULL,NULL), ('000577','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review and update the security CONOPS.','PL-7.2','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000578','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the security CONOPS in accordance with organization-defined frequency.','PL-7.3','The organization being inspected/assessed reviews and updates the security CONOPS annually. The organization must maintain an audit trail of reviews and updates. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates the security CONOPS annually. DoD has defined the frequency as annually.'), ('000580','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains external interfaces.',NULL,NULL,NULL), ('000581','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains the information being exchanged across the interfaces.',NULL,NULL,NULL), ('000582','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains the protection mechanisms associated with each interface.',NULL,NULL,NULL), ('000583','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains user roles.',NULL,NULL,NULL), ('000584','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains the access privileges assigned to each role.',NULL,NULL,NULL), ('000585','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains unique security requirements.',NULL,NULL,NULL), ('000586','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains types of information processed by the information system.',NULL,NULL,NULL), ('000587','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains types of information stored by the information system.',NULL,NULL,NULL), ('000588','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains types of information transmitted by the information system.',NULL,NULL,NULL), ('000589','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains any specific protection needs in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.',NULL,NULL,NULL), ('000590','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains restoration priority of information.',NULL,NULL,NULL), ('000591','draft','2009-09-21','DISA FSO','policy','The organization develops a functional architecture for the information system that identifies and maintains restoration priority of information system services.',NULL,NULL,NULL), ('000592','draft','2009-09-21','DISA FSO','policy','The organization establishes the rules describing the responsibilities and expected behavior, with regard to information and information system usage, for individuals requiring access to the information system.','PL-4.1','The organization being inspected/assessed must develop and document rules that describe information system user responsibilities and expected behavior with regard to information and information system usage, acceptable use policy (AUP). Organizations should reference Joint Ethics Regulations (DoD 5500.7-R) when developing this policy.','The organization conducting the inspection/assessment obtains and examines the organization\'s AUP to ensure the organization has clearly defined and established rules describing information system user responsibilities and expected behavior with regard to information and information system usage.'), ('000593','draft','2009-09-21','DISA FSO','policy','The organization receives a signed acknowledgment from individuals requiring access to the information system, indicating that they have read, understand, and agree to abide by the rules of behavior, before authorizing access to information and the information system.','PL-4.3','The organization being inspected/assessed will obtain signed acknowledgment (paper or electronic signature) from individuals indicating that they have read, understand, and agree to abide by the rules of behavior, before authorizing access to information and the information system.','The organization conducting the inspection/assessment obtains a list of individuals with active accounts and validates the existence of signed acknowledgements (paper or electronic signature) of the organizational AUP associated with a sampling of individuals selected from the list.'), ('000594','draft','2009-09-21','DISA FSO','policy','The organization includes in the rules of behavior explicit restrictions on the use of social media/networking sites.','PL-4(1).1','The organization being inspected/assessed includes in the rules of behavior, IAW DoDI 8550.01, explicit restrictions on the use of social media/networking sites.','The organization conducting the inspection/assessment obtains and examines the rules of behavior to ensure the organization being inspected/assessed includes explicit restrictions on the use of social media/networking sites IAW DoDI 8550.01.'), ('000595','draft','2009-09-21','DISA FSO','policy','The organization includes in the rules of behavior explicit restrictions on posting organizational information on public websites.','PL-4(1).2','The organization being inspected/assessed includes in the rules of behavior, IAW DoDI 8550.01, explicit restrictions on posting organizational information on public websites.','The organization conducting the inspection/assessment obtains and examines the rules of behavior to ensure the organization being inspected/assessed includes explicit restrictions on posting organizational information on public websites IAW DoDI 8550.01.'), ('000596','draft','2009-09-21','DISA FSO','policy','The organization includes in the rules of behavior, explicit restrictions on sharing information system account information.',NULL,NULL,NULL), ('000597','draft','2009-09-21','DISA FSO','policy','The organization conducts a privacy impact assessment on the information system in accordance with OMB policy.',NULL,NULL,NULL), ('000598','draft','2009-09-21','DISA FSO','policy','The organization plans and coordinates security-related activities affecting the information system before conducting such activities in order to reduce the impact on organizational operations (i.e., mission, functions, image, and reputation).',NULL,NULL,NULL), ('000599','draft','2009-09-21','DISA FSO','policy','The organization plans and coordinates security-related activities affecting the information system before conducting such activities in order to reduce the impact on organizational assets.',NULL,NULL,NULL), ('000600','draft','2009-09-21','DISA FSO','policy','The organization plans and coordinates security-related activities affecting the information system before conducting such activities in order to reduce the impact on organizational individuals.',NULL,NULL,NULL), ('000601','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review and update the current system and services acquisition policy.','SA-1.7','DoD has defined the frequency as every 5 years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 5 years.'), ('000602','draft','2009-09-21','DISA FSO','policy','The organization develops and documents a system and services acquisition policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SA-1.4','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.'), ('000603','draft','2009-09-21','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles a system and services acquisition policy.','SA-1.3','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.'), ('000604','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current system and services acquisition policy in accordance with organization-defined frequency.','SA-1.8','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.'), ('000605','draft','2009-09-21','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls.','SA-1.5','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.'), ('000606','draft','2009-09-21','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls.','SA-1.6','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.'), ('000607','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current system and services acquisition procedures in accordance with organization-defined frequency.','SA-1.9','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.','DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1 meet the DoD requirements for system and services acquisition policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDD 5000.01, DoDI 5000.02, and DoDI 8580.1.'), ('000608','draft','2009-09-21','DISA FSO','policy','The organization includes a determination of information security requirements for the information system in mission process planning.',NULL,NULL,NULL), ('000609','draft','2009-09-21','DISA FSO','policy','The organization includes a determination of information security requirements for the information system in business process planning.',NULL,NULL,NULL), ('000610','draft','2009-09-21','DISA FSO','policy','The organization determines the resources required to protect the information system or information system service as part of its capital planning and investment control process.','SA-2.2','The organization being inspected/assessed determines the resources (funding, staffing, etc.) required for the cybersecurity requirements to protect the information system or information system service as part of its planning, programming, and budget process (PPBE).','The organization conducting the inspection/assessment obtains and examines the planning, programming, and budget documentation to ensure the organization being inspected/assessed has determined the resources required for cybersecurity requirements to protect the information system or information system service.'), ('000611','draft','2009-09-21','DISA FSO','policy','The organization documents the resources required to protect the information system or information system service as part of its capital planning and investment control process.','SA-2.3','The organization being inspected/assessed documents the resources (funding, staffing, etc.) required for the cybersecurity requirements to protect the information system or information system service as part of its planning, programming, and budget process (PPBE).','The organization conducting the inspection/assessment obtains and examines the planning, programming, and budget documentation to ensure the organization being inspected/assessed has documented the resources required for cybersecurity requirements to protect the information system or information system service.'), ('000612','draft','2009-09-21','DISA FSO','policy','The organization allocates the resources required to protect the information system or information system service as part of its capital planning and investment control process.','SA-2.4','The organization being inspected/assessed allocates the resources (funding, staffing, etc.) required for the cybersecurity requirements to protect the information system or information system service as part of its planning, programming, and budget process (PPBE).','The organization conducting the inspection/assessment obtains and examines the planning, programming, and budget documentation to ensure the organization being inspected/assessed has allocated the resources required for cybersecurity requirements to protect the information system or information system service.'), ('000613','draft','2009-09-21','DISA FSO','policy','The organization establishes a discrete line item for information security in organizational programming documentation.','SA-2.5','The organization being inspected/assessed identifies and establishes an individual line item for cybersecurity requirements to protect the information system as part of the planning, programming, and budget process (PPBE).','The organization conducting the inspection/assessment obtains and examines the planning, programming, and budget documentation to ensure the organization being inspected/assessed has identified and established an individual line item for cybersecurity requirements to protect the information system.'), ('000614','draft','2009-09-21','DISA FSO','policy','The organization establishes a discrete line item for information security in organizational budgeting documentation.','SA-2.6','The organization being inspected/assessed identifies and establishes an individual line item for cybersecurity requirements to protect the information system as part of the planning, programming, and budget process (PPBE).','The organization conducting the inspection/assessment obtains and examines the planning, programming, and budget documentation to ensure the organization being inspected/assessed has identified and established an individual line item for cybersecurity requirements to protect the information system.'), ('000615','draft','2009-09-21','DISA FSO','policy','The organization manages the information system using an organization-defined system development life cycle that incorporates information security considerations.','SA-3.1','The organization being inspected/assessed documents and implements a process to manage the information system using the system development life cycle defined in SA-3, CCI 3092 that incorporates information security considerations IAW DoDI 8580.1.','The organization conducting the inspection/assessment obtains and examines the documented process and artifacts of the system development life cycle process to ensure the organization being inspected/assessed manages the information system using the system development life cycle defined in SA-3, CCI 3092 that incorporates information security considerations IAW DoDI 8580.1.'), ('000616','draft','2009-09-21','DISA FSO','policy','The organization defines and documents information system security roles and responsibilities throughout the system development life cycle.','SA-3.3','The organization being inspected/assessed defines and documents information system security roles and responsibilities throughout the system development life cycle IAW DoDI 8580.1.','The organization conducting the inspection/assessment obtains and examines the information system security roles and responsibilities to ensure the organization being inspected/assessed defines and documents information system security roles and responsibilities throughout the system development life cycle IAW DoDI 8580.1.'), ('000617','draft','2009-09-21','DISA FSO','policy','The organization documents information system security roles and responsibilities throughout the system development life cycle.',NULL,NULL,NULL), ('000618','draft','2009-09-21','DISA FSO','policy','The organization identifies individuals having information system security roles and responsibilities.','SA-3.4','The organization being inspected/assessed identifies and documents individuals having information system security roles and responsibilities.','The organization conducting the inspection/assessment obtains and examines the documented individuals having information system security roles and responsibilities to ensure the organization being inspected/assessed identifies individuals having information system security roles and responsibilities.'), ('000619','draft','2009-09-21','DISA FSO','policy','The organization includes security functional requirements/specifications, explicitly or by reference, in information system acquisition contracts based on an assessment of risk and in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.',NULL,NULL,NULL), ('000620','draft','2009-09-21','DISA FSO','policy','The organization includes security-related documentation requirements, explicitly or by reference, in information system acquisition contracts based on an assessment of risk and in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.',NULL,NULL,NULL), ('000621','draft','2009-09-21','DISA FSO','policy','The organization includes developmental and evaluation-related assurance requirements, explicitly or by reference, in information system acquisition contracts based on an assessment of risk and in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.',NULL,NULL,NULL), ('000623','draft','2009-09-21','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide a description of the functional properties of the security controls to be employed.','SA-4(1).1','DoDI 8510.01 system categorization meets the DoD requirement for providing a description of the functional properties of the security controls to be employed.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.','DoDI 8510.01 system categorization meets the DoD requirement for providing a description of the functional properties of the security controls to be employed.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01.'), ('000624','draft','2009-09-21','DISA FSO','policy','The organization requires in acquisition documents that vendors/contractors provide information describing the design details of the security controls to be employed within the information system, information system components, or information system services (including functional interfaces among control components) in sufficient detail to permit analysis and testing of the controls.',NULL,NULL,NULL), ('000625','draft','2009-09-21','DISA FSO','policy','The organization requires in acquisition documents that vendors/contractors provide information describing the implementation details of the security controls to be employed within the information system, information system components, or information system services (including functional interfaces among control components) in sufficient detail to permit analysis and testing of the controls.',NULL,NULL,NULL), ('000626','draft','2009-09-21','DISA FSO','policy','The organization requires software vendors/manufacturers to minimize flawed or malformed software by demonstrating that their software development process employs state-of-the-practice software and security engineering methods.',NULL,NULL,NULL), ('000627','draft','2009-09-21','DISA FSO','policy','The organization requires software vendors/manufacturers to minimize flawed or malformed software by demonstrating that their software development process employs quality control processes.',NULL,NULL,NULL), ('000628','draft','2009-09-21','DISA FSO','policy','The organization requires software vendors/manufacturers to minimize flawed or malformed software by demonstrating that their software development processes employ validation techniques.',NULL,NULL,NULL), ('000629','draft','2009-09-21','DISA FSO','policy','The organization ensures each information system component acquired is explicitly assigned to an information system, and that the owner of the system acknowledges this assignment.',NULL,NULL,NULL), ('000630','draft','2009-09-21','DISA FSO','policy','The organization requires in acquisition documents, that information system components are delivered in a secure, documented configuration, and that the secure configuration is the default configuration for any software reinstalls or upgrades.',NULL,NULL,NULL), ('000631','draft','2009-09-21','DISA FSO','policy','The organization employs only government off-the-shelf (GOTS) or commercial off-the-shelf (COTS) information assurance (IA) and IA-enabled information technology products that compose an NSA-approved solution to protect classified information when the networks used to transmit the information are at a lower classification level than the information being transmitted.','SA-4(6).1','The organization being inspected/assessed must identify and use NSA-approved encryption technologies to protect classified information when the networks or transmission medium used to transmit the information are at a lower classification level than the information being transmitted.','The organization conducting the inspection/assessment examines and verifies identified encryption technologies in use by the organization being inspected/assessed are NSA-approved.'), ('000632','deprecated','2009-09-21','DISA FSO','policy','The organization employs only commercial off-the-shelf (COTS) information assurance (IA) and IA-enabled information technology products that compose an NSA-approved solution to protect classified information when the networks used to transmit the information are at a lower classification level than the information being transmitted.',NULL,NULL,NULL), ('000633','draft','2009-09-21','DISA FSO','policy','The organization ensures that government off-the-shelf (GOTS) or commercial-off-the-shelf(COTS) information assurance (IA) and IA-enabled information technology products have been evaluated and/or validated by the NSA or in accordance with NSA-approved procedures.','SA-4(6).2','The organization being inspected/assessed must identify and use NSA-approved encryption technologies to protect classified information when the networks or transmission medium used to transmit the information are at a lower classification level than the information being transmitted.','The organization conducting the inspection/assessment examines and verifies identified encryption technologies in use by the organization being inspected/assessed are NSA-approved.'), ('000634','draft','2009-09-21','DISA FSO','policy','The organization limits the use of commercially provided information assurance (IA) and IA-enabled information technology products to those products that have been successfully evaluated against a National Information Assurance Partnership (NIAP)-approved Protection Profile for a specific technology type, if such a profile exists.','SA-4(7).1','The organization being inspected/assessed, when using commercially provided IA and IA-enabled IT products uses only products that have been successfully evaluated against a National Information Assurance partnership (NIAP)-approved Protection Profile for a specific technology type, if such a profile exists.','The organization conducting the inspection/assessment obtains and examines the hardware and software lists to ensure the organization being inspected/assessed, when using commercially provided IA and IA-enabled IT products uses only products that have been successfully evaluated against a National Information Assurance partnership (NIAP)-approved Protection Profile for a specific technology type, if such a profile exists.'), ('000635','draft','2009-09-21','DISA FSO','policy','The organization requires, if no NIAP-approved Protection Profile exists for a specific technology type but a commercially provided information technology product relies on cryptographic functionality to enforce its security policy, that the cryptographic module is FIPS-validated.','SA-4(7).2','The organization being inspected/assessed, when using commercially provided IA or IA enabled IT products for which there is no NIAP-approved protection profile, relies on FIPS-validated cryptographic modules.','The organization conducting the inspection/assessment obtains and examines the hardware and software lists to ensure the organization being inspected/assessed, when using commercially provided IA or IA enabled IT products for which there is no NIAP-approved protection profile, relies on FIPS-validated cryptographic modules.'), ('000636','draft','2009-09-21','DISA FSO','policy','The organization obtains administrator documentation for the information system that describes secure configuration, installation, and operation of the information system; effective use and maintenance of the security features/functions; and known vulnerabilities regarding configuration and use of administrative (i.e., privileged) functions.',NULL,NULL,NULL), ('000637','draft','2009-09-21','DISA FSO','policy','The organization protects, as required, administrator documentation for the information system that describes secure configuration, installation, and operation of the information system; effective use and maintenance of the security features/functions; and known vulnerabilities regarding configuration and use of administrative (i.e., privileged) functions.',NULL,NULL,NULL), ('000638','draft','2009-09-21','DISA FSO','policy','The organization makes available to authorized personnel administrator documentation for the information system that describes secure configuration, installation, and operation of the information system; effective use and maintenance of the security features/functions; and known vulnerabilities regarding configuration and use of administrative (i.e., privileged) functions.',NULL,NULL,NULL), ('000639','draft','2009-09-21','DISA FSO','policy','The organization obtains user documentation for the information system that describes user-accessible security features/functions and how to effectively use those security features/functions; methods for user interaction with the information system, which enables individuals to use the system in a more secure manner; and user responsibilities in maintaining the security of the information and information system.',NULL,NULL,NULL), ('000640','draft','2009-09-21','DISA FSO','policy','The organization protects, as required, user documentation for the information system that describes user-accessible security features/functions and how to effectively use those security features/functions; methods for user interaction with the information system, which enables individuals to use the system in a more secure manner; and user responsibilities in maintaining the security of the information and information system.',NULL,NULL,NULL), ('000641','draft','2009-09-21','DISA FSO','policy','The organization makes available to authorized personnel user documentation for the information system that describes user-accessible security features/functions and how to effectively use those security features/functions; methods for user interaction with the information system, which enables individuals to use the system in a more secure manner; and user responsibilities in maintaining the security of the information and information system.',NULL,NULL,NULL), ('000642','draft','2009-09-21','DISA FSO','policy','The organization documents attempts to obtain information system, system component, or information system service documentation when such documentation is either unavailable or nonexistent.','SA-5.11','The organization being inspected/assessed documents attempts to obtain information system, system component, or information system service documentation when such documentation is either unavailable or nonexistent.','The organization conducting the inspection/assessment obtains and examines the documented attempts to ensure the organization being inspected/assessed documents attempts to obtain information system, system component, or information system service documentation when such documentation is either unavailable or nonexistent.'), ('000643','draft','2009-09-21','DISA FSO','policy','The organization obtains vendor/manufacturer documentation that describes the functional properties of the security controls employed within the information system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('000644','draft','2009-09-21','DISA FSO','policy','The organization protects, as required, vendor/manufacturer documentation that describes the functional properties of the security controls employed within the information system.',NULL,NULL,NULL), ('000645','draft','2009-09-21','DISA FSO','policy','The organization makes available to authorized personnel vendor/manufacturer documentation that describes the functional properties of the security controls employed within the information system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('000646','draft','2009-09-21','DISA FSO','policy','The organization obtains vendor/manufacturer documentation that describes the security-relevant external interfaces to the information system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('000647','draft','2009-09-21','DISA FSO','policy','The organization obtains vendor/manufacturer documentation that describes the high-level design of the information system in terms of subsystems and implementation details of the security controls employed within the system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('000648','draft','2009-09-21','DISA FSO','policy','The organization protects, as required, vendor/manufacturer documentation that describes the high-level design of the information system in terms of subsystems and implementation details of the security controls employed within the system.',NULL,NULL,NULL), ('000650','draft','2009-09-21','DISA FSO','policy','The organization obtains vendor/manufacturer documentation that describes the low-level design of the information system in terms of modules and implementation details of the security controls employed within the system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('000651','draft','2009-09-21','DISA FSO','policy','The organization protects, as required, vendor/manufacturer documentation that describes the low-level design of the information system in terms of modules and implementation details of the security controls employed within the system.',NULL,NULL,NULL), ('000653','draft','2009-09-21','DISA FSO','policy','The organization obtains the source code for the information system to permit analysis and testing.',NULL,NULL,NULL), ('000654','draft','2009-09-21','DISA FSO','policy','The organization protects, as required, the source code for the information system to permit analysis and testing.',NULL,NULL,NULL), ('000655','draft','2009-09-21','DISA FSO','policy','The organization uses software and associated documentation in accordance with contract agreements and copyright laws.',NULL,NULL,NULL), ('000656','draft','2009-09-21','DISA FSO','policy','The organization employs tracking systems for software and associated documentation protected by quantity licenses to control copying and distribution.',NULL,NULL,NULL), ('000657','draft','2009-09-21','DISA FSO','policy','The organization controls the use of peer-to-peer file sharing technology to ensure this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.',NULL,NULL,NULL), ('000658','draft','2009-09-21','DISA FSO','policy','The organization documents the use of peer-to-peer file sharing technology to ensure this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.',NULL,NULL,NULL), ('000659','draft','2009-09-21','DISA FSO','policy','The organization prohibits the use of binary executable code from sources with limited or no warranty without accompanying source code.',NULL,NULL,NULL), ('000660','draft','2009-09-21','DISA FSO','policy','The organization prohibits the use of machine executable code from sources with limited or no warranty without accompanying source code.',NULL,NULL,NULL), ('000661','draft','2009-09-21','DISA FSO','policy','The organization provides exceptions to the source code requirement only when no alternative solutions are available to support compelling mission/operational requirements.',NULL,NULL,NULL), ('000662','draft','2009-09-21','DISA FSO','policy','The organization obtains express written consent of the authorizing official for exceptions to the source code requirement.',NULL,NULL,NULL), ('000663','draft','2009-09-21','DISA FSO','technical','The organization (or information system) enforces explicit rules governing the installation of software by users.',NULL,NULL,NULL), ('000664','draft','2009-09-21','DISA FSO','policy','The organization applies information system security engineering principles in the specification of the information system.','SA-8.1','The organization managing the acquisition/development of the information system (e.g. PM) applies and documents system security engineering (SSE) principles as part of the overall systems engineering process IAW DoDD 5000.01 and DoDI 5000.02. The primary source of general and DoD-specific guidance on SSE can be found in the NIST SP 800-160 - Systems Security Engineering, currently in draft form, and can be found here: http://csrc.nist.gov/publications/PubsSPs.html. Additional guidance can be found in the Defense Acquisition Guidebook (DAG) Chapters 4 and 13, found here: https://dag.dau.mil/.\n\n\nThis CCI does not apply to COTS products.\n\nThe organization managing the acquisition/development of the information system must ensure that the system requirements documents reflect the system security engineering principles that can be applied to information systems in development, systems undergoing major upgrades and to the extent feasible systems in sustainment. Security engineering principles include:\n 1. Developing layered protections;\n 2. Establishing sound security policy, architecture, and controls as the foundation for design;\n 3. Incorporating security requirements into all phases of the system development life cycle;\n 4. Delineating physical and logical security boundaries;\n 5. Ensuring that system developers are trained on how to design and build secure software;\n 6. Tailoring security controls and protections to meet system-specific requirements and operational needs;\n 7. Performing threat modeling to identify use cases, threat agents, attack vectors, and attack patterns as well as compensating controls and design patterns needed to mitigate risk.','The organization conducting the inspection/assessment obtains and examines the system requirements documents to ensure that the organization being inspected/assessed applies information system security engineering principles in the specification of the information system.'), ('000665','draft','2009-09-21','DISA FSO','policy','The organization applies information system security engineering principles in the design of the information system.','SA-8.2','The organization managing the acquisition/development of the information system (e.g. PM) applies and documents system security engineering (SSE) principles as part of the overall systems engineering process IAW DoDD 5000.01 and DoDI 5000.02. The primary source of general and DoD-specific guidance on SSE can be found in the NIST SP 800-160 - Systems Security Engineering, currently in draft form, and can be found here: http://csrc.nist.gov/publications/PubsSPs.html. Additional guidance can be found in the Defense Acquisition Guidebook (DAG) Chapters 4 and 13, found here: https://dag.dau.mil/.\n\n\nThis CCI does not apply to COTS products.\n\nThe organization managing the acquisition/development of the information system must ensure that the design documents reflect the system security engineering principles that can be applied to information systems in development, systems undergoing major upgrades and to the extent feasible systems in sustainment. Security engineering principles include:\n 1. Developing layered protections;\n 2. Establishing sound security policy, architecture, and controls as the foundation for design;\n 3. Incorporating security requirements into all phases of the system development life cycle;\n 4. Delineating physical and logical security boundaries;\n 5. Ensuring that system developers are trained on how to design and build secure software;\n 6. Tailoring security controls and protections to meet system-specific requirements and operational needs;\n 7. Performing threat modeling to identify use cases, threat agents, attack vectors, and attack patterns as well as compensating controls and design patterns needed to mitigate risk.','The organization conducting the inspection/assessment obtains and examines the design documents to ensure that the organization being inspected/assessed applies information system security engineering principles in the design of the information system.'), ('000666','draft','2009-09-21','DISA FSO','policy','The organization applies information system security engineering principles in the development of the information system.','SA-8.3','The organization managing the acquisition/development of the information system (e.g. PM) applies and documents system security engineering (SSE) principles as part of the overall systems engineering process IAW DoDD 5000.01 and DoDI 5000.02. The primary source of general and DoD-specific guidance on SSE can be found in the NIST SP 800-160 - Systems Security Engineering, currently in draft form, and can be found here: http://csrc.nist.gov/publications/PubsSPs.html. Additional guidance can be found in the Defense Acquisition Guidebook (DAG) Chapters 4 and 13, found here: https://dag.dau.mil/.\n\n\nThis CCI does not apply to COTS products.\n\nThe organization managing the acquisition/development of the information system must ensure that the development procedures reflect the system security engineering principles that can be applied to information systems in development, systems undergoing major upgrades and to the extent feasible systems in sustainment. Security engineering principles include:\n 1. Developing layered protections;\n 2. Establishing sound security policy, architecture, and controls as the foundation for design;\n 3. Incorporating security requirements into all phases of the system development life cycle;\n 4. Delineating physical and logical security boundaries;\n 5. Ensuring that system developers are trained on how to design and build secure software;\n 6. Tailoring security controls and protections to meet system-specific requirements and operational needs;\n 7. Performing threat modeling to identify use cases, threat agents, attack vectors, and attack patterns as well as compensating controls and design patterns needed to mitigate risk.\n\nExamples of development procedures that should reflect SSE principles are configuration management plans, code review procedures, and coding style guides. Configuration management plans should be IAW CM-9, CCI 001790.','The organization conducting the inspection/assessment obtains and examines the system development procedures (e.g. configuration management plans, code review procedures, and coding style guides) to ensure that the organization being inspected/assessed applies information system security engineering principles in the development of the information system.'), ('000667','draft','2009-09-21','DISA FSO','policy','The organization applies information system security engineering principles in the implementation of the information system.','SA-8.4','The organization managing the acquisition/development of the information system (e.g. PM) applies and documents system security engineering (SSE) principles as part of the overall systems engineering process IAW DoDD 5000.01 and DoDI 5000.02. The primary source of general and DoD-specific guidance on SSE can be found in the NIST SP 800-160 - Systems Security Engineering, currently in draft form, and can be found here: http://csrc.nist.gov/publications/PubsSPs.html. Additional guidance can be found in the Defense Acquisition Guidebook (DAG) Chapters 4 and 13, found here: https://dag.dau.mil/.\n\n\nThis CCI does not apply to COTS products.\n\nThe organization managing the acquisition/development of the information system must employ the procedures identified in SA-8, CCI, 000666 during the implementation of the information system. The system owner must maintain an audit trail of the activities conducted IAW SA-8, CCI 000666. An example of artifacts is CCB minutes, code review results, and source code analysis results.','The organization conducting the inspection/assessment obtains and examines the audit trail artifacts that were created during the implementation of SA-8, CCI 000666 to ensure that the organization being inspected/assessed applies information system security engineering principles in the implementation of the information system and that changes are made IAW the configuration management plan (CM-9, CCI 001790).'), ('000668','draft','2009-09-21','DISA FSO','policy','The organization applies information system security engineering principles in the modification of the information system.','SA-8.5','The organization managing the acquisition/development of the information system (e.g. PM) applies and documents system security engineering (SSE) principles as part of the overall systems engineering process IAW DoDD 5000.01 and DoDI 5000.02. The primary source of general and DoD-specific guidance on SSE can be found in the NIST SP 800-160 - Systems Security Engineering, currently in draft form, and can be found here: http://csrc.nist.gov/publications/PubsSPs.html. Additional guidance can be found in the Defense Acquisition Guidebook (DAG) Chapters 4 and 13, found here: https://dag.dau.mil/.\n\n\nThis CCI does not apply to COTS products.\n\nThe organization managing the acquisition/development of the information system must employ the procedures identified in SA-8, CCI, 000666 during the modification of the information system. The system owner must maintain an audit trail of the activities conducted IAW SA-8, CCI 000666. An example of artifacts is CCB minutes, code review results, and source code analysis results.','The organization conducting the inspection/assessment obtains and examines the audit trail artifacts that were created during the modification of SA-8, CCI 000666 to ensure that the organization being inspected/assessed applies information system security engineering principles in the modification of the information system and that changes are made IAW the configuration management plan (CM-9, CCI 001790).'), ('000669','draft','2009-09-21','DISA FSO','policy','The organization requires that providers of external information system services comply with organizational information security requirements.','SA-9.1','The organization being inspected/assessed documents within contracts/agreements, requirements that providers of external information system services comply with any organization-specific information security requirements.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that providers of external information system services comply with any organization-specific information security requirements.'), ('000670','draft','2009-09-21','DISA FSO','policy','The organization requires that providers of external information system services employ organization-defined security controls in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.','SA-9.2','The organization being inspected/assessed documents within contracts/agreements, the\nrequirement that providers of external information system services employ security controls defined in CNSSI 1253.\n\nDoD has defined the security controls as security controls defined by CNSSI 1253.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that providers of external information system services employ security controls defined in CNSSI 1253.\n\nDoD has defined the security controls as security controls defined by CNSSI 1253.'), ('000671','draft','2009-09-21','DISA FSO','policy','The organization defines government oversight with regard to external information system services.','SA-9.4','The organization being inspected/assessed must define in the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) the government oversight to be conducted on external information system services and service provider.','The organization conducting the inspection/assessment obtains and examines the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) to confirm the organization has clearly defined the government oversight to be conducted on external information system services and service providers.'), ('000672','draft','2009-09-21','DISA FSO','policy','The organization documents government oversight with regard to external information system services.','SA-9.5','The organization being inspected/assessed must establish in the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) the government oversight to be conducted on external information system services and service provider.','The organization conducting the inspection/assessment obtains and examines the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) to confirm the organization has clearly established the government oversight to be conducted on external information system services and service providers.'), ('000673','draft','2009-09-21','DISA FSO','policy','The organization defines user roles and responsibilities with regard to external information system services.','SA-9.6','The organization being inspected/assessed must define in the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) the roles and responsibilities of all types of users of the external information system services.','The organization conducting the inspection/assessment obtains and examines the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) to confirm the organization has clearly defined the roles and responsibilities of all types of users of the external information system services.'), ('000674','draft','2009-09-21','DISA FSO','policy','The organization documents user roles and responsibilities with regard to external information system services.','SA-9.7','The organization being inspected/assessed must establish in the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) the roles and responsibilities of all types of users of the external information system services.','The organization conducting the inspection/assessment obtains and examines the official documentation governing the provision of the external IT services (e.g. contract, MOU, MOA, SLA, etc.) to confirm the organization has clearly established the roles and responsibilities of all types of users of the external information system services.'), ('000675','draft','2009-09-21','DISA FSO','policy','The organization monitors security control compliance by external service providers.',NULL,NULL,NULL), ('000676','draft','2009-09-21','DISA FSO','policy','The organization conducts an organizational assessment of risk prior to the acquisition of dedicated information security services.',NULL,NULL,NULL), ('000677','draft','2009-09-21','DISA FSO','policy','The organization conducts an organizational assessment of risk prior to the outsourcing of dedicated information security services.',NULL,NULL,NULL), ('000678','draft','2009-09-21','DISA FSO','policy','The organization defines the senior organizational official designated to approve acquisition of dedicated information security services.',NULL,NULL,NULL), ('000679','draft','2009-09-21','DISA FSO','policy','The organization defines the senior organizational official designated to approve outsourcing of dedicated information security services.',NULL,NULL,NULL), ('000680','draft','2009-09-21','DISA FSO','policy','The organization ensures the acquisition of dedicated information security services is approved by an organization-designated senior organizational official.',NULL,NULL,NULL), ('000681','draft','2009-09-21','DISA FSO','policy','The organization ensures the outsourcing of dedicated information security services is approved by an organization-designated senior organizational official.',NULL,NULL,NULL), ('000682','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform configuration management during information system design.',NULL,NULL,NULL), ('000683','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform configuration management during information system development.',NULL,NULL,NULL), ('000684','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform configuration management during information system implementation.',NULL,NULL,NULL), ('000685','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform configuration management during information system operation.',NULL,NULL,NULL), ('000686','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to perform configuration management during information system design.',NULL,NULL,NULL), ('000687','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to perform configuration management during information system development.',NULL,NULL,NULL), ('000688','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to perform configuration management during information system implementation.',NULL,NULL,NULL), ('000689','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to perform configuration management during information system operation.',NULL,NULL,NULL), ('000690','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to manage and control changes to the information system during design.',NULL,NULL,NULL), ('000691','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to manage and control changes to the information system during design.',NULL,NULL,NULL), ('000692','draft','2009-09-22','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to implement only organization-approved changes to the system, component, or service.','SA-10.6','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service implement only organization-approved changes to the system, component, or service throughout its life cycle.','The organization conducting the inspection/assessment obtains and examines contracts/agreements between the organization and the IS developer to confirm the organization has established in its acquisition contracts/agreements the requirement that the IS developer implement only organization-approved changes to the system, component, or service throughout its life cycle.'), ('000693','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to implement only organization-approved changes.',NULL,NULL,NULL), ('000694','draft','2009-09-22','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to document approved changes to the system, component, or service.','SA-10.7','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service document approved changes to the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document approved changes to the system, component, or service.'), ('000695','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to document approved changes to the information system.',NULL,NULL,NULL), ('000696','draft','2009-09-22','DISA FSO','policy','The organization requires that information system developers track security flaws and flaw resolution.',NULL,NULL,NULL), ('000697','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to track security flaws and flaw resolution.',NULL,NULL,NULL), ('000698','draft','2009-09-22','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to enable integrity verification of software and firmware components.','SA-10(1).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service enable integrity verification of software and firmware components.\n\nThe organization being inspected/assessed requires the developer to enable integrity verification of software and firmware that may include:\n1. Stipulating and monitoring logical delivery of products and services, requiring downloading from approved, verification-enhanced sites;\n2. Encrypting elements (software, software patches, etc.) and supply chain process data in transit (motion) and at rest throughout delivery;\n3. Requiring suppliers to provide their elements secure by default, so that additional configuration is required to make the element insecure;\n4. Implementing software designs using programming languages and tools that reduce the likelihood of weaknesses;\n5. Implementing cryptographic hash verification; and\n6. Establishing performance and sub-element baseline for the system and system elements to help detect unauthorized tampering/modification during repairs/refurbishing.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service enable integrity verification of software and firmware components.'), ('000699','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to provide an integrity check of software to facilitate organizational verification of software integrity after delivery.',NULL,NULL,NULL), ('000700','draft','2009-09-22','DISA FSO','policy','The organization provides an alternate configuration management process using organizational personnel in the absence of a dedicated developer configuration management team.','SA-10(2).1','The organization being inspected/assessed, in the absence of a dedicated software developer configuration management team, establishes an alternate configuration management process that is staffed with appropriate key organizational personnel.','The organization conducting the inspection/assessment obtains and examines the Configuration Control Board (CCB) charter to determine if the organization, in the absence of a dedicated software developer configuration management team, has established an alternate configuration management process that is staffed with key organizational personnel.'), ('000701','draft','2009-09-22','DISA FSO','policy','The organization provides an alternative configuration management process with organizational personnel in the absence of a dedicated integrator configuration management team.',NULL,NULL,NULL), ('000702','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers, in consultation with associated security personnel (including security engineers), to create a security test and evaluation plan.',NULL,NULL,NULL), ('000703','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers, in consultation with associated security personnel (including security engineers), to implement a security test and evaluation plan.',NULL,NULL,NULL), ('000704','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators, in consultation with associated security personnel (including security engineers), to create a security test and evaluation plan.',NULL,NULL,NULL), ('000705','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators, in consultation with associated security personnel (including security engineers), to implement a security test and evaluation plan.',NULL,NULL,NULL), ('000706','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers, in consultation with associated security personnel (including security engineers), to implement a verifiable flaw remediation process to correct weaknesses and deficiencies identified during the security testing and evaluation process.',NULL,NULL,NULL), ('000707','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators, in consultation with associated security personnel (including security engineers), to implement a verifiable flaw remediation process to correct weaknesses and deficiencies identified during the security testing and evaluation process.',NULL,NULL,NULL), ('000708','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers, in consultation with associated security personnel (including security engineers), to document the results of the security testing/evaluation processes.',NULL,NULL,NULL), ('000709','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers, in consultation with associated security personnel (including security engineers), to document the results of the security flaw remediation processes.',NULL,NULL,NULL), ('000710','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators, in consultation with associated security personnel (including security engineers), to document the results of the security testing/evaluation processes.',NULL,NULL,NULL), ('000711','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators, in consultation with associated security personnel (including security engineers), to document the results of the security flaw remediation processes.',NULL,NULL,NULL), ('000712','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to employ code analysis tools to examine software for common flaws and document the results of the analysis.',NULL,NULL,NULL), ('000713','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to employ code analysis tools to examine software for common flaws and document the results of the analysis.',NULL,NULL,NULL), ('000714','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform a vulnerability analysis to document vulnerabilities.',NULL,NULL,NULL), ('000715','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform a vulnerability analysis to document exploitation potential.',NULL,NULL,NULL), ('000716','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers to perform a vulnerability analysis to document risk mitigations.',NULL,NULL,NULL), ('000717','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to perform a vulnerability analysis to document vulnerabilities.',NULL,NULL,NULL), ('000718','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to perform a vulnerability analysis to document exploitation potential.',NULL,NULL,NULL), ('000719','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators perform a vulnerability analysis to document risk mitigations.',NULL,NULL,NULL), ('000720','draft','2009-09-22','DISA FSO','policy','The organization requires information system developers implement the security test and evaluation plan under the witness of an independent verification and validation agent.',NULL,NULL,NULL), ('000721','draft','2009-09-22','DISA FSO','policy','The organization requires information system integrators to implement the security test and evaluation plan under the witness of an independent verification and validation agent.',NULL,NULL,NULL), ('000722','draft','2009-09-22','DISA FSO','policy','The organization defines the security safeguards to employ to protect against supply chain threats to the information system, system component, or information system service.','SA-12.1','DoD has defined the requirements to protect against supply chain threats in DoDI 5200.44, \"Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN).\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the requirements to protect against supply chain threats in DoDI 5200.44, \"Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN).\"'), ('000723','draft','2009-09-22','DISA FSO','policy','The organization protects against supply chain threats to the information system, system component, or information system service by employing organization-defined security safeguards as part of a comprehensive, defense-in-breadth information security strategy.','SA-12.2','The organization being inspected/assessed must identify and document in the Security Plan whether the system is a covered system IAW DoDI 5200.44. If it is a covered system, the organization must implement the requirements below:\n1. Conduct a criticality analysis to identify mission critical functions and critical components and reduce the vulnerability of such functions and components through secure system design;\n2. Request threat analysis of suppliers of critical components from the TSN focal point and manage access to and control of threat analysis products containing U.S. person information;\n3. Engage TSN focal points for guidance on managing identified risk using DoD Components and Enterprise risk management resources; and\n4. Apply TSN best practices, processes, techniques, and procurement tools prior to the acquisition of critical components or their integration into applicable systems, at any point in the system lifecycle. Such tools and practices include contract requirements and the SCRM key practices Guide.','The organization conducting the inspection/assessment obtains and examines the Security Plan for the system to determine whether the system is a covered system IAW DoDI 5200.44.\n\nIf it is a covered system, the organization conducting the inspection/assessment obtains and examines documentation of compliance with DoDI 5200.44, to ensure the organization being inspected/assessed has:\n1. Conducted a criticality analysis to identify mission critical functions and critical components and reduced the vulnerability of such functions and components through secure system design;\n2. Requested threat analysis of suppliers of critical components from the TSN focal point and managed access to and control of threat analysis products containing U.S. person information;\n3. Engaged TSN focal points for guidance on managing identified risk using DoD Components and Enterprise risk management resources; and\n4. Applied TSN best practices, processes, techniques, and procurement tools prior to the acquisition of critical components or their integration into applicable systems, at any point in the system lifecycle. Such tools and practices include contract requirements and the SCRM key practices Guide.'), ('000724','draft','2009-09-22','DISA FSO','policy','The organization purchases all anticipated information system components and spares in the initial acquisition.',NULL,NULL,NULL), ('000725','draft','2009-09-22','DISA FSO','policy','The organization conducts a due diligence review of suppliers prior to entering into contractual agreements to acquire information system hardware.',NULL,NULL,NULL), ('000726','draft','2009-09-22','DISA FSO','policy','The organization conducts a due diligence review of suppliers prior to entering into contractual agreements to acquire information system software.',NULL,NULL,NULL), ('000727','draft','2009-09-22','DISA FSO','policy','The organization conducts a due diligence review of suppliers prior to entering into contractual agreements to acquire information system firmware.',NULL,NULL,NULL), ('000728','draft','2009-09-22','DISA FSO','policy','The organization conducts a due diligence review of suppliers prior to entering into contractual agreements to acquire information system services.',NULL,NULL,NULL), ('000729','draft','2009-09-22','DISA FSO','policy','The organization uses trusted shipping for information systems.',NULL,NULL,NULL), ('000730','draft','2009-09-22','DISA FSO','policy','The organization uses trusted shipping for information system components.',NULL,NULL,NULL), ('000731','draft','2009-09-22','DISA FSO','policy','The organization uses trusted shipping for information technology products.',NULL,NULL,NULL), ('000732','draft','2009-09-22','DISA FSO','policy','The organization uses trusted warehousing for information systems.',NULL,NULL,NULL), ('000733','draft','2009-09-22','DISA FSO','policy','The organization uses trusted warehousing for information system components.',NULL,NULL,NULL), ('000734','draft','2009-09-22','DISA FSO','policy','The organization uses trusted warehousing for information technology products.',NULL,NULL,NULL), ('000735','draft','2009-09-22','DISA FSO','policy','The organization employs a diverse set of suppliers for information systems.',NULL,NULL,NULL), ('000736','draft','2009-09-22','DISA FSO','policy','The organization employs a diverse set of suppliers for information system components.',NULL,NULL,NULL), ('000737','draft','2009-09-22','DISA FSO','policy','The organization employs a diverse set of suppliers for information technology products.',NULL,NULL,NULL), ('000738','draft','2009-09-22','DISA FSO','policy','The organization employs a diverse set of suppliers for information system services.',NULL,NULL,NULL), ('000739','draft','2009-09-22','DISA FSO','policy','The organization employs standard configurations for information systems.',NULL,NULL,NULL), ('000740','draft','2009-09-22','DISA FSO','policy','The organization employs standard configurations for information system components.',NULL,NULL,NULL), ('000741','draft','2009-09-22','DISA FSO','policy','The organization employs standard configurations for information technology products.',NULL,NULL,NULL), ('000742','draft','2009-09-22','DISA FSO','policy','The organization minimizes the time between purchase decisions and delivery of information systems.',NULL,NULL,NULL), ('000743','draft','2009-09-22','DISA FSO','policy','The organization minimizes the time between purchase decisions and delivery of information system components.',NULL,NULL,NULL), ('000744','draft','2009-09-22','DISA FSO','policy','The organization minimizes the time between purchase decisions and delivery of information technology products.',NULL,NULL,NULL), ('000745','draft','2009-09-22','DISA FSO','policy','The organization employs independent analysis and penetration testing against delivered information systems.',NULL,NULL,NULL), ('000746','draft','2009-09-22','DISA FSO','policy','The organization employs independent analysis and penetration testing against delivered information system components.',NULL,NULL,NULL), ('000747','draft','2009-09-22','DISA FSO','policy','The organization employs independent analysis and penetration testing against delivered information technology products.',NULL,NULL,NULL), ('000748','draft','2009-09-22','DISA FSO','policy','The organization defines level of trustworthiness for the information system.',NULL,NULL,NULL), ('000749','draft','2009-09-22','DISA FSO','policy','The organization requires that the information system meets the organization-defined level of trustworthiness.',NULL,NULL,NULL), ('000750','draft','2009-09-22','DISA FSO','policy','The organization defines the list of critical information system components that require re-implementation.',NULL,NULL,NULL), ('000751','draft','2009-09-22','DISA FSO','policy','The organization determines the organization-defined list of critical information system components that require re-implementation.',NULL,NULL,NULL), ('000752','draft','2009-09-22','DISA FSO','policy','The organization re-implements organization-defined critical information system components.',NULL,NULL,NULL), ('000753','draft','2009-09-22','DISA FSO','policy','The organization identifies information system components for which alternative sourcing is not viable.',NULL,NULL,NULL), ('000754','draft','2009-09-22','DISA FSO','policy','The organization defines measures to be employed to prevent critical security controls for information system components from being compromised.',NULL,NULL,NULL), ('000755','draft','2009-09-22','DISA FSO','policy','The organization employs organization-defined measures to ensure critical security controls for the information system components are not compromised.',NULL,NULL,NULL), ('000756','draft','2009-09-17','DISA FSO','policy','The organization develops an identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','IA-1.2','DoD developed DoDI 8520.02 and DoDI 8520.03 as the identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 8520.02 and DoDI 8520.03.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.'), ('000757','draft','2009-09-17','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles an identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','IA-1.3','DoD disseminates the DoDI 8520.02 and DoDI 8520.03 via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) to the ISSO and ISSM and others as the local organization deems appropriate as an identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the personnel or roles to be recipients of the identification and authentication policy and the procedures as the ISSO and ISSM and others as the local organization deems appropriate.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the personnel or roles to be recipients of the identification and authentication policy and the procedures as the ISSO and ISSM and others as the local organization deems appropriate.'), ('000758','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates identification and authentication policy in accordance with the organization-defined frequency.','IA-1.6','DoD reviews and updates identification and authentication policy (DoDI 8520.02 and DoDI 8520.03) annually.\n\nDoD Components are automatically compliant with this CCI because they are covered at the DoD level policies, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('000759','draft','2009-09-17','DISA FSO','policy','The organization defines a frequency for reviewing and updating the identification and authentication policy.','IA-1.7','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('000760','draft','2009-09-17','DISA FSO','policy','The organization develops procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.','IA-1.4','DoD develops within DoDI 8520.02 and DoDI 8520.03, procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.'), ('000761','draft','2009-09-17','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.','IA-1.5','DoD disseminates the DoDI 8520.02 and DoDI 8520.03 to the ISSO and ISSM and others as the local organization deems appropriate via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html). DoDI 8520.02 and DoDI 8520.03 are procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 8520.02 and DoDI 8520.03.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the personnel or roles to be recipients of the identification and authentication policy and the procedures as the ISSO and ISSM and others as the local organization deems appropriate.'), ('000762','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates identification and authentication procedures in accordance with the organization-defined frequency.','IA-1.8','DoD reviews and updates identification and authentication procedures (DoDI 8520.02 and DoDI 8520.03) annually.\n\nThe organization being inspected/assessed is automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000763','draft','2009-09-17','DISA FSO','policy','The organization defines a frequency for reviewing and updating the identification and authentication procedures.','IA-1.9','DoD has defined the frequency as review annually - update as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as review annually - update as appropriate.'), ('000764','draft','2009-09-17','DISA FSO','technical','The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).','IA-2.1','The organization being inspected/assessed configures the information system to uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 764.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 764.'), ('000765','draft','2009-09-17','DISA FSO','technical','The information system implements multifactor authentication for network access to privileged accounts.','IA-2(1).1','The organization being inspected/assessed configures the information system to implement multifactor authentication for network access to privileged accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 765.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for network access to privileged accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 765.'), ('000766','draft','2009-09-17','DISA FSO','technical','The information system implements multifactor authentication for network access to non-privileged accounts.','IA-2(2).1','The organization being inspected/assessed configures the information system to implement multifactor authentication for network access to non-privileged accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 766.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for network access to non-privileged accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 766.'), ('000767','draft','2009-09-17','DISA FSO','technical','The information system implements multifactor authentication for local access to privileged accounts.','IA-2(3).1','The organization being inspected/assessed configures the information system to implement multifactor authentication for local access to privileged accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 767.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for local access to privileged accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 767.'), ('000768','draft','2009-09-17','DISA FSO','technical','The information system implements multifactor authentication for local access to non-privileged accounts.','IA-2(4).1','The organization being inspected/assessed configures the information system to implement multifactor authentication for local access to non-privileged accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 768.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for local access to non-privileged accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 768.'), ('000769','draft','2009-09-17','DISA FSO','policy','The organization allows the use of group authenticators only when used in conjunction with an individual/unique authenticator.',NULL,NULL,NULL), ('000770','draft','2009-09-17','DISA FSO','policy','The organization requires individuals to be authenticated with an individual authenticator when a group authenticator is employed.','IA-2(5).1','The organization being inspected/assessed requires individuals or configures the information system to require individuals to be authenticated with an individual authenticator when a group authenticator is employed. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 770.','The organization conducting the inspection/assessment obtains and examines standard operating procedures or system documentation to ensure the organization being inspected/assessed requires individuals to be authenticated with an individual authenticator when a group authenticator is employed. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 770.'), ('000771','draft','2009-09-17','DISA FSO','technical','The information system uses multifactor authentication for network access to privileged accounts where one of the factors is provided by a device separate from the information system being accessed.',NULL,NULL,NULL), ('000772','draft','2009-09-17','DISA FSO','technical','The information system uses multifactor authentication for network access to non-privileged accounts where one of the factors is provided by a device separate from the information system being accessed.',NULL,NULL,NULL), ('000773','draft','2009-09-17','DISA FSO','policy','The organization defines replay-resistant authentication mechanisms to be used for network access to privileged accounts.',NULL,NULL,NULL), ('000774','draft','2009-09-17','DISA FSO','technical','The information system uses organization-defined replay-resistant authentication mechanisms for network access to privileged accounts.',NULL,NULL,NULL), ('000775','draft','2009-09-17','DISA FSO','policy','The organization defines replay-resistant authentication mechanisms to be used for network access to non-privileged accounts.',NULL,NULL,NULL), ('000776','draft','2009-09-17','DISA FSO','technical','The information system uses organization-defined replay-resistant authentication mechanisms for network access to non-privileged accounts.',NULL,NULL,NULL), ('000777','draft','2009-09-17','DISA FSO','policy','The organization defines a list of specific and/or types of devices for which identification and authentication is required before establishing a connection to the information system.','IA-3.1','DoD has defined the value as all mobile devices and network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the value as all mobile devices and network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs). '), ('000778','draft','2009-09-17','DISA FSO','technical','The information system uniquely identifies an organization-defined list of specific and/or types of devices before establishing a local, remote, or network connection.','IA-3.2','The organization being inspected/assessed configures the network infrastructure to identify all mobile devices and network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs) before establishing a local, remote, network connection. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 778. DoD has defined the value as all mobile devices and network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs). ','The organization conducting the inspection/assessment examine a sampling of the network infrastructure device configurations to ensure devices connecting to the infrastructure are uniquely identified. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 778.'), ('000779','draft','2009-09-17','DISA FSO','technical','The information system authenticates devices before establishing remote network connections using bidirectional authentication between devices that is cryptographically based.',NULL,NULL,NULL), ('000780','draft','2009-09-17','DISA FSO','technical','The information system authenticates devices before establishing wireless network connections using bidirectional authentication between devices that is cryptographically based.',NULL,NULL,NULL), ('000781','draft','2009-09-17','DISA FSO','technical','The information system authenticates devices before establishing network connections using bidirectional authentication between devices that is cryptographically based.',NULL,NULL,NULL), ('000782','draft','2009-09-17','DISA FSO','policy','The organization standardizes, with regard to dynamic address allocation, Dynamic Host Control Protocol (DHCP) lease information and the time assigned to DHCP-enabled devices.',NULL,NULL,NULL), ('000783','draft','2009-09-17','DISA FSO','technical','The organization audits lease information when assigned to a device.','IA-3(3).5','The organization being inspected/assessed configures the information system to record lease information in the audit log. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 783.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to record lease information in the audit log and examine the audit records to ensure the records have captured the appropriate information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 783.'), ('000784','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by receiving authorization from a designated organizational official to assign a user identifier.',NULL,NULL,NULL), ('000785','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by receiving authorization from a designated organizational official to assign a device identifier.',NULL,NULL,NULL), ('000786','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by selecting an identifier that uniquely identifies an individual.',NULL,NULL,NULL), ('000787','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by selecting an identifier that uniquely identifies a device.',NULL,NULL,NULL), ('000788','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by assigning the user identifier to the intended party.',NULL,NULL,NULL), ('000789','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by assigning the device identifier to the intended device.',NULL,NULL,NULL), ('000790','draft','2009-09-17','DISA FSO','policy','The organization defines a time period for which the reuse of user identifiers is prohibited.',NULL,NULL,NULL), ('000791','draft','2009-09-17','DISA FSO','policy','The organization defines a time period for which the reuse of device identifiers is prohibited.',NULL,NULL,NULL), ('000792','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by preventing reuse of user identifiers for an organization-defined time period.',NULL,NULL,NULL), ('000793','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers for users and devices by preventing reuse of device identifiers for an organization-defined time period.',NULL,NULL,NULL), ('000794','draft','2009-09-17','DISA FSO','policy','The organization defines a time period of inactivity after which the identifier is disabled.','IA-4.7','DoD has defined the time period as 35 days of inactivity.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 35 days of inactivity.'), ('000795','draft','2009-09-17','DISA FSO','policy','The organization manages information system identifiers by disabling the identifier after an organization-defined time period of inactivity.','IA-4.8','The organization being inspected/assessed configures the information system to disable identifiers after 35 days of inactivity. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 795. DoD has defined the time period as 35 days of inactivity.','The organization conducting the inspection/assessment examines the information system configuration to ensure that identifiers are disabled after 35 days of inactivity. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 795. DoD has defined the time period as 35 days of inactivity.'), ('000796','draft','2009-09-17','DISA FSO','policy','The organization prohibits the use of information system account identifiers that are the same as public identifiers for individual electronic mail accounts.','IA-4(1).1','The organization being inspected/assessed documents and implements a process to prohibit the use of information system account identifiers that are the same as public identifiers for individual electronic mail accounts.','The organization conducting the inspection/assessment obtains and examines documented process to ensure the organization being inspected/assessed prohibits the use of information system account identifiers that are the same as public identifiers for individual electronic mail accounts.'), ('000797','draft','2009-09-17','DISA FSO','policy','The organization requires that registration to receive a user ID and password include authorization by a supervisor.',NULL,NULL,NULL), ('000798','draft','2009-09-17','DISA FSO','policy','The organization requires that registration to receive a user ID and password be done in person before a designated registration authority.',NULL,NULL,NULL), ('000799','draft','2009-09-17','DISA FSO','policy','The organization requires multiple forms of certification of individual identification, such as documentary evidence or a combination of documents and biometrics, be presented to the registration authority.','IA-4(3).1','The organization being inspected/assessed documents and implements a process to require multiple forms of certification of individual identification, such as documentary evidence or a combination of documents and biometrics be presented to the registration authority.','The organization conducting the inspection/assessment obtains and examines the documented process and interviews personnel with identifier management responsibilities to ensure the organization being inspected/assessed requires multiple forms of certification of individual identification, such as documentary evidence or a combination of documents and biometrics be presented to the registration authority.'), ('000800','draft','2009-09-17','DISA FSO','policy','The organization defines characteristics for identifying individual status.','IA-4(4).1','DoD has defined the characteristics as contractor or government employee and by nationality. User identifiers will follow the same format as DoD user e-mail addresses (john.smith.ctr@army.mil or john.smith.uk@army.mil); - DoD user e-mail display names (e.g., John Smith, Contractor or John Smith, United Kingdom ); and - automated signature blocks (e.g., John Smith, Contractor, J-6K, Joint Staff or John Doe, Australia, LNO, Combatant Command). Contractors who are also foreign nationals are identified as both, e.g., john.smith.ctr.uk@army.mil','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the characteristics as contractor or government employee and by nationality. User identifiers will follow the same format as DoD user e-mail addresses (john.smith.ctr@army.mil or john.smith.uk@army.mil); - DoD user e-mail display names (e.g., John Smith, Contractor or John Smith, United Kingdom ); and - automated signature blocks (e.g., John Smith, Contractor, J-6K, Joint Staff or John Doe, Australia, LNO, Combatant Command). Contractors who are also foreign nationals are identified as both, e.g., john.smith.ctr.uk@army.mil'), ('000801','draft','2009-09-17','DISA FSO','policy','The organization manages individual identifiers by uniquely identifying each individual by organization-defined characteristics identifying individual status.',NULL,NULL,NULL), ('000802','draft','2009-09-17','DISA FSO','technical','The information system dynamically manages identifiers, attributes, and associated access authorizations.',NULL,NULL,NULL), ('000803','draft','2009-09-17','DISA FSO','technical','The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.','IA-7.1','The organization being inspected/assessed configures the information system to implement mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 803.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 803.'), ('000804','draft','2009-09-17','DISA FSO','technical','The information system uniquely identifies and authenticates non-organizational users (or processes acting on behalf of non-organizational users).','IA-8.1','The organization being inspected/assessed configures the information system to uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 804.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 804.'), ('000805','draft','2009-09-17','DISA FSO','policy','The organization develops and documents an incident response policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','IR-1.3','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.'), ('000806','draft','2009-09-17','DISA FSO','policy','The organization disseminates an incident response policy to organization-defined personnel or roles.','IR-1.4','DoD disseminates via http://www.dtic.mil/cjcs_directives/, CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 to all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.'), ('000807','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates the current incident response policy in accordance with organization-defined frequency.','IR-1.7','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.'), ('000808','draft','2009-09-17','DISA FSO','policy','The organization defines the frequency with which to review and update the current incident response policy.','IR-1.8','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of issuance.'), ('000809','draft','2009-09-17','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the incident response policy and associated incident response controls.','IR-1.6','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meets the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.'), ('000810','draft','2009-09-17','DISA FSO','policy','The organization disseminates incident response procedures to organization-defined personnel or roles.','IR-1.5','DoD disseminates via http://www.dtic.mil/cjcs_directives/, CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 to all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.\n\nDoD has defined the roles as all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.\n\nDoD has defined the roles as all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.'), ('000811','draft','2009-09-17','DISA FSO','policy','The organization reviews and updates the current incident response procedures in accordance with organization-defined frequency.','IR-1.9','DoD (in conjunction with Joint Staff for CJCSIs) reviews and updates current incident response procedures (CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2) annually.\n\nDoD Components are automatically compliant with this CCI because they are covered at the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.','CJCSI 6510.01F \"Information Assurance and Support to Computer Network Defense,\" CJCSM 6510.01B, \"Cyber Incident Handling Program,\" DoDD O-8530.1, and DoDI O-8530.2 meet the DoD requirements for incident response policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered at the DoD level with the following policies: CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000812','draft','2009-09-17','DISA FSO','policy','The organization defines the frequency with which to review and update the current incident response procedures.','IR-1.10','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000813','draft','2009-09-17','DISA FSO','policy','The organization provides incident response training to information system users consistent with assigned roles and responsibilities within an organization-defined time period of assuming an incident response role or responsibility.','IR-2.1','The organization being inspected/assessed documents and implement a process to provide incident response training to information system users consistent with assigned roles and responsibilities within 30 working days of assuming an incident response role or responsibility. The organization must maintain a record of training. DoD has defined the time period as 30 working days.','The organization conducting the inspection/assessment obtains and examines the documented process as well as training records for a sampling of information system users to ensure the organization being inspected/assessed provides incident response training to information system users consistent with assigned roles and responsibilities within 30 working days of assuming an incident response role or responsibility. DoD has defined the time period as 30 working days.'), ('000814','draft','2009-09-17','DISA FSO','policy','The organization provides incident response training in accordance with organization-defined frequency.','IR-2.3','The organization being inspected/assessed documents and implements a process to provide incident response training to information system users, other than general users, consistent with assigned roles and responsibilities annually. For general users, DoD components are automatically compliant with the requirement based on DoDD 8570.01 requirements for IA awareness training. The organization must maintain a record of training. DoD has defined the frequency as annually. ','The organization conducting the inspection/assessment obtains and examines the documented process as well as training records for a sampling of information system users to ensure the organization being inspected/assessed provides incident response training to information system users, other than general users, consistent with assigned roles and responsibilities annually. For general users, DoD components are automatically compliant with the requirement based on DoDD 8570.01 requirements for IA awareness training. DoD has defined the frequency as annually.'), ('000815','draft','2009-09-17','DISA FSO','policy','The organization defines a frequency for incident response training.','IR-2.4','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000816','draft','2009-09-17','DISA FSO','policy','The organization incorporates simulated events into incident response training to facilitate effective response by personnel in crisis situations.','IR-2(1).1','The organization being inspected/assessed will document a process to include simulated events into incident response training to facilitate effective response by personnel in crisis situations. The process to include simulated events shall be documented IAW CJCSI 6510.01F, CJCSM 6510.01B, DoDD O-8530.1, and DoDI O-8530.2. The organization must maintain a record of incident response training to include simulated events.','The organization conducting the inspection/assessment obtains and examines incident response training materials and a record of training events to ensure that simulated events have been included.'), ('000817','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to provide a more thorough and realistic incident response training environment.','IR-2(2).1','The organization being inspected/assessed employs an automated mechanism such as scenario-based interactive online training/CBT providing a realistic incident response training environment.','The organization conducting the inspection/assessment obtains and examines the automated mechanism such as scenario-based interactive online training/CBT to verify that it provides a realistic incident response training environment.'), ('000818','draft','2009-09-17','DISA FSO','policy','The organization tests the incident response capability for the information system on an organization-defined frequency using organization-defined tests to determine the incident response effectiveness.','IR-3.1','The organization being inspected/assessed documents and implements a process to test its incident response capability for the information system at least every six months for high availability and at least annually for low/med availability using tests and as defined in the incident response plan. The organization must maintain a record of test results. DoD has defined the frequency as at least every six months for high availability and at least annually for low/med availability. DoD has defined the tests as tests as defined in the incident response plan.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of test results to ensure the organization being inspected/assessed tests its incident response capability for the information system at least every six months for high availability and at least annually for low/med availability using tests and as defined in the incident response plan. DoD has defined the frequency as at least every six months for high availability and at least annually for low/med availability. DoD has defined the tests as tests as defined in the incident response plan.'), ('000819','draft','2009-09-17','DISA FSO','policy','The organization defines a frequency for incident response tests.','IR-3.2','DoD has defined the frequency as at least every six months for high availability and at least annually for low/med availability.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least every six months for high availability and at least annually for low/med availability.'), ('000820','draft','2009-09-17','DISA FSO','policy','The organization defines tests for incident response.','IR-3.3','DoD has defined the tests as tests as defined in the incident response plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the tests as tests as defined in the incident response plan.'), ('000821','draft','2009-09-17','DISA FSO','policy','The organization employs automated mechanisms to more thoroughly and effectively test the incident response capability.','IR-3(1).1','The organization being inspected/assessed will identify and employ automated mechanisms to test the incident response capability for the information system.','The organization conducting the inspection/assessment obtains and examines the identified automated mechanisms in use to test the incident response capability for the information system.'), ('000822','draft','2009-09-18','DISA FSO','policy','The organization implements an incident handling capability for security incidents that includes preparation, detection and analysis, containment, eradication, and recovery.','IR-4.1','The organization being inspected/assessed must have a documented and certified CNDSP and documented procedures for information system users and site security personnel to handle incidents until they are transferred to the responsibility of the CNDSP. ','The organization conducting the inspection/assessment obtains and examines the documentation identifying the CNDSP leveraged as well as the documented procedures for incident handling to ensure that there is a certified CNDSP in use and that there are procedures implemented to handle incidents until they are transferred to the responsibility of the CNDSP. '), ('000823','draft','2009-09-18','DISA FSO','policy','The organization coordinates incident handling activities with contingency planning activities.','IR-4.2','The organization being inspected/assessed will coordinate the incident response plan (IR-8) and contingency plan (CP-2) to ensure they allow for an effective transfer of information system activity and maintain confidentiality and integrity of the contingency assets.','The organization conducting the inspection/assessment obtains and examines the incident response plan (IR-8) and contingency plan (CP-2) to ensure they allow for an effective transfer of information system activity and maintain confidentiality and integrity of the contingency assets.'), ('000824','draft','2009-09-18','DISA FSO','policy','The organization incorporates lessons learned from ongoing incident handling activities into incident response procedures, training, and testing/exercises.','IR-4.3','The organization being inspected/assessed will conduct after action reviews from incidents to identify lessons learned and will incorporate them into procedures, training, and testing/exercises. The organization must maintain records of after action reviews.','The organization conducting the inspection/assessment obtains and examines after action reports or meeting minutes to identify actionable lessons learned to verify that lessons learned are incorporated into the plan as changes are necessary.'), ('000825','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to support the incident handling process.','IR-4(1).1','The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism.','The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS.'), ('000826','draft','2009-09-18','DISA FSO','policy','The organization includes dynamic reconfiguration of organization-defined information system components as part of the incident response capability.','IR-4(2).1','The organization being inspected/assessed will ensure that their incident response plan includes procedures for dynamic reconfiguration of information system components defined in IR-4 (2), CCI 2781 as part of the incident response capability IAW CM-3.\n\nDynamic reconfiguration bypasses the organization\'s standard CCB process and may include, for example, changes to router rules, access control lists, intrusion detection/prevention systems, firewalls, etc. Organizations will have procedures to examine dynamic reconfiguration changes at the earliest opportunity IAW CCB.','The organization conducting the inspection/assessment obtains and examines the incident response plan and verifies it has procedures addressing dynamic reconfiguration of information system components defined in IR-4 (2), CCI 2781 as part of the incident response capability IAW CM-3.'), ('000827','draft','2009-09-18','DISA FSO','policy','The organization defines and identifies classes of incidents for which organization-defined actions are to be taken to ensure continuation of organizational mission and business functions.','IR-4(3).1','CJCSM 6510.01B has already identified DoD\'s classes of incidents.\n\nDoD Components are automatically compliant with this CCI because DoD has defined the classes of incidents as classes of incidents defined in CJCSM 6510.01B Appendix A- Enclosure B.','CJCSM 6510.01B has already identified DoD\'s classes of incidents. The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the classes of incidents as classes of incidents defined in CJCSM 6510.01B Appendix A- Enclosure B.6510.01M'), ('000828','draft','2009-09-18','DISA FSO','policy','The organization defines and identifies actions to take in response to organization-defined classes of incidents to ensure continuation of organizational missions and business functions.','IR-4(3).2','CJCSM 6510.01B has already identified DoD\'s actions to take in response to classes of incidents.\n\nDoD Components are automatically compliant with this CCI because DoD has defined the actions as actions defined in CJCSM 6510.01B.','CJCSM 6510.01B has already identified DoD\'s actions to take in response to classes of incidents. The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the actions as actions defined in CJCSM 6510.01B.'), ('000829','draft','2009-09-18','DISA FSO','policy','The organization correlates incident information and individual incident responses to achieve an organization-wide perspective on incident awareness and response.','IR-4(4).1','The organization being inspected/assessed defines procedures to examine incident information gathered and the actual actions taken by both the individuals affected and the incident response personnel. These procedures shall be defined IAW CJCSM 6510.01B. The end goal is to achieve a top level perspective of the effectiveness of the incident response and awareness. ','The organization conducting the inspection/assessment obtains and examines proof of the analysis (such as minutes from an incident response after action meeting or other similar activity) to ensure that incident information is being examined and correlated. '), ('000830','draft','2009-09-18','DISA FSO','policy','The organization defines security violations that, if detected, initiate a configurable capability to automatically disable the information system.','IR-4(5).1','The organization being inspected/assessed defines and document a list of security violations that upon occurrence initiate an automated action to disable or shutdown the information system. Violations may be identified by specific activity or by class/type of activity. DoD has determined the security violations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the list of documented security violations to ensure the organization has clearly identified those violations that initiate an automated disabling or shut down of the information system. DoD has determined the security violations are not appropriate to define at the Enterprise level.'), ('000831','draft','2009-09-18','DISA FSO','technical','The organization implements a configurable capability to automatically disable the information system if organization-defined security violations are detected.','IR-4(5).2','The organization being inspected/assessed will clearly identify, document, and implement a configurable automated mechanism (or mechanisms) that utilizes the list of security violations identified in IR-4 (5), CCI 000830 to disable or shutdown the information system. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 831. ','The organization conducting the inspection/assessment examines the information system to ensure an automated mechanism is configured to disable or shutdown the information system based on the identified security violations (IR-4 (5), CCI 000830). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 831.'), ('000832','draft','2009-09-18','DISA FSO','policy','The organization tracks and documents information system security incidents.','IR-5.1','The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism. ','The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS.'), ('000833','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to assist in the tracking of security incidents.','IR-5(1).1','The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism. ','The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS.'), ('000834','draft','2009-09-18','DISA FSO','policy','The organization defines a time period for personnel to report suspected security incidents to the organizational incident response capability.','IR-6.1','DoD has defined the time period as the timeframes specified by CJCSM 6510.01B (Table C-A-1) unless the data owner provides more restrictive guidance. If organizations decide to be more restrictive than the guidance in the CJCSM, then they should address the more restrictive response time requirements in their incident response plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as the timeframes specified by CJCSM 6510.01B (Table C-A-1) unless the data owner provides more restrictive guidance. The organization conducting the inspection/assessment obtains and examines the incident response plan to determine if more stringent response time requirements have been identified.'), ('000835','draft','2009-09-18','DISA FSO','policy','The organization requires personnel to report suspected security incidents to the organizational incident response capability within the organization-defined time period.','IR-6.2','The organization being inspected/assessed documents within the user agreement the requirement for all system users to report suspected security incidents to the organizational incident response capability within the timeframes specified by CJCSM 6510.01B (Table C-A-1) unless the data owner provides more restrictive guidance. DoD has defined the time period as the timeframes specified by CJCSM 6510.01B (Table C-A-1) unless the data owner provides more restrictive guidance.','The organization conducting the inspection/assessment obtains and examines the user agreement to ensure users are required to report suspected security incidents to the organizational incident response capability within the timeframes specified by CJCSM 6510.01B (Table C-A-1) unless the data owner provides more restrictive guidance. DoD has defined the time period as the timeframes specified by CJCSM 6510.01B (Table C-A-1) unless the data owner provides more restrictive guidance.'), ('000836','draft','2009-09-18','DISA FSO','policy','The organization reports security incident information to organization-defined authorities.','IR-6.3','The organization being inspected/assessed documents and implements a process to report to the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT). Any security incidents IAW the incident response plan (IR-8). Reporting shall be conducted IAW CJCSM 6510.01B.\n\nDoD has defined the authorities as the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT).','The organization conducting the inspection/assessment obtains and examines a sample of previous security incidents to ensure the incidents were reported to the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT). Any security incidents IAW the incident response plan (IR-8). Reporting shall be conducted IAW CJCSM 6510.01B.\n\nDoD has defined the authorities as the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT).'), ('000837','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to assist in the reporting of security incidents.','IR-6(1).1','The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism. ','The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS. '), ('000838','draft','2009-09-18','DISA FSO','policy','The organization reports information system vulnerabilities associated with reported security incidents to organization-defined personnel or roles.','IR-6(2).1','The organization being inspected/assessed documents and implements a process to report to personnel defined in IR-6 (2), CCI 2792 information system vulnerabilities associated with reported security incident IAW the incident response plan (IR-8). Reporting shall be conducted IAW CJCSM 6510.01B. ','The organization conducting the inspection/assessment obtains and examines a sample of previous security incidents to ensure the associated vulnerabilities were reported to personnel defined in IR-6 (2), CCI 2792 IAW the incident response plan (IR-8). Reporting shall be conducted IAW CJCSM 6510.01B.'), ('000839','draft','2009-09-18','DISA FSO','policy','The organization provides an incident response support resource, integral to the organizational incident response capability, that offers advice and assistance to users of the information system for the handling and reporting of security incidents.','IR-7.1','The organization being inspected/assessed will establish an incident response support service, analogous to an IT help desk, to provide advice and assistance to users for handling and reporting of security incidents. ','The organization conducting the inspection/assessment will interview organizational users to determine awareness of incident response support services and quality of assistance of those services when used. If interviewing organizational users is not feasible, then review users manuals/documentation to ensures it identifies an incident response support service to contact.'), ('000840','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to increase the availability of incident response-related information and support.','IR-7(1).1','The organization being inspected/assessed will implement an automated intra-organization incident response information sharing capability to provide the following incident related information and support, for example:\n1. SOP for incident reporting\n2. Incident handling FAQ\n3. Current incident activity awareness information\n4. Incident response contact information\n5. Incident report submission','The organization conducting the inspection/assessment obtains and examines the incident response information sharing capability to validate the information sharing capability is available to organizational users.'), ('000841','draft','2009-09-18','DISA FSO','policy','The organization establishes a direct, cooperative relationship between its incident response capability and external providers of information system protection capability.','IR-7(2).1','The organization being inspected/assessed must establish a formal agreement with a computer network defense service provider (CNDSP). ','The organization conducting the inspection/assessment obtains and examines the formal agreement document between the organization and CNDSP to validate it is current and valid.'), ('000842','draft','2009-09-18','DISA FSO','policy','The organization identifies organizational incident response team members to the external providers.','IR-7(2).2','The organization being inspected/assessed must provide and update the list of internal incident response team members as necessary throughout the lifecycle of the CNDSP agreement, in conjunction with the CNDSP agreement.','The organization conducting the inspection/assessment obtains and examines the list of internal incident response team members to validate it is accurate and current. Interviews with CNDSP personnel and organizational incident response team members may also be conducted.'), ('000843','draft','2009-09-18','DISA FSO','policy','The organization develops an incident response plan that provides the organization with a roadmap for implementing its incident response capability; describes the structure and organization of the incident response capability; provides a high-level approach for how the incident response capability fits into the overall organization; meets the unique requirements of the organization, which relate to mission, size, structure, and functions; defines reportable incidents; provides metrics for measuring the incident response capability within the organization; and defines the resources and management support needed to effectively maintain and mature an incident response capability.',NULL,NULL,NULL), ('000844','draft','2009-09-18','DISA FSO','policy','The organization develops an incident response plan that is reviewed and approved by organization-defined personnel or roles.','IR-8.10','The organization being inspected/assessed will have an incident response plan signed and approved by at a minimum, the ISSM and ISSO. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.','The organization conducting the inspection/assessment obtains and examines the incident response plan to validate it has been properly signed by at a minimum, the ISSM and ISSO. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.'), ('000845','draft','2009-09-18','DISA FSO','policy','The organization defines incident response personnel (identified by name and/or by role) and organizational elements to whom copies of the incident response plan are distributed.','IR-8.11','DoD has defined the list as all stakeholders identified in the incident response plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the list as all stakeholders identified in the incident response plan.'), ('000846','draft','2009-09-18','DISA FSO','policy','The organization distributes copies of the incident response plan to organization-defined incident response personnel (identified by name and/or by role) and organizational elements.','IR-8.12','The organization being inspected/assessed makes available to all stakeholders identified in the incident response plan via organizationally approved information sharing mechanism. DoD has defined the list as all stakeholders identified in the incident response plan.','The organization conducting the inspection/assessment obtains and examines organizationally approved information sharing mechanism to validate all stakeholders identified in the incident response plan have adequate access to the incident response plan. DoD has defined the list as all stakeholders identified in the incident response plan.'), ('000847','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency for reviewing the incident response plan.','IR-8.13','DoD has defined the frequency as at least annually (incorporating lessons learned from past incidents).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually (incorporating lessons learned from past incidents).'), ('000848','draft','2009-09-18','DISA FSO','policy','The organization reviews the incident response plan on an organization-defined frequency.','IR-8.14','The organization being inspected/assessed will conduct reviews of its incident response plan at least annually. DoD has defined the frequency as at least annually (incorporating lessons learned from past incidents).','The organization conducting the inspection/assessment obtains and examines the incident response plan to validate it is current and has been reviewed within the last year. DoD has defined the frequency as at least annually (incorporating lessons learned from past incidents). '), ('000849','draft','2009-09-18','DISA FSO','policy','The organization updates the incident response plan to address system/organizational changes or problems encountered during plan implementation, execution, or testing.','IR-8.15','The organization being inspected/assessed must update the incident response plan to address system/organizational changes or problems encountered during plan implementation, execution, or testing and incorporate lessons learned from past incidents (IR-4a). The organization must document the update actions as an audit trail.','The organization conducting the inspection/assessment obtains and examines documentation of the update actions for the incident response plan to ensure the organization is updating the incident response plan to address system/organizational changes or problems encountered during plan implementation, execution, or testing and incorporating lessons learned from past incidents (IR-4a).'), ('000850','draft','2009-09-18','DISA FSO','policy','The organization communicates incident response plan changes to organization-defined incident response personnel (identified by name and/or by role) and organizational elements.','IR-8.16','The organization being inspected/assessed communicates incident response plan changes to all stakeholders identified in the incident response plan, not later than 30 days after the change is made. DoD has defined the incident response personnel as all stakeholders identified in the incident response plan, not later than 30 days after the change is made.','The organization conducting the inspection/assessment examines the incident response plan via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been communicated to all stakeholders identified in the incident response plan, not later than 30 days after the change is made. DoD has defined the incident response personnel as all stakeholders identified in the incident response plan, not later than 30 days after the change is made.'), ('000851','draft','2009-09-18','DISA FSO','policy','The organization defines the frequency with which to review and update the current system maintenance policy.','MA-1.7','DoD has defined the frequency as every 5 years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 5 years.'), ('000852','draft','2009-09-18','DISA FSO','policy','The organization develops and documents a system maintenance policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','MA-1.3','The organization being inspected/assessed develops and documents a system maintenance policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','The organization conducting the inspection/assessment obtains and examines the documented maintenance policy to ensure the organization being inspected/assessed develops and documents a system maintenance policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.'), ('000853','draft','2009-09-18','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles a system maintenance policy.','MA-1.4','The organization being inspected/assessed ensures the maintenance policy is disseminated to the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.\n\nDoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.','The organization conducting the inspection/assessment obtains and examines the maintenance policy via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated to the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.\n\nDoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.'), ('000854','draft','2009-09-18','DISA FSO','policy','The organization reviews and updates the current system maintenance policy in accordance with organization-defined frequency.','MA-1.8','The organization being inspected/assessed reviews the current system maintenance policy every 5 years and revises as necessary to comply with DoD regulations.\n\nThe organization must document each occurrence of the reviews and update actions as an audit trail.\n\nDoD has defined the frequency as every 5 years.','The organization conducting the inspection/assessment obtains and examines documentation of occurrence of reviews and update actions for the maintenance policy to ensure review is occurring every 5 years and updates are made as necessary.\n\nDoD has defined the frequency as every 5 years.'), ('000855','draft','2009-09-18','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the system maintenance policy and associated system maintenance controls.','MA-1.5','The organization being inspected/assessed documents the maintenance procedures within the Security Plan. The maintenance procedures shall be developed IAW maintenance policy provided in DoDI 8500.01..','The organization conducting the inspection/assessment obtains and examines the Security Plan to ensure maintenance procedures are documented and are developed IAW maintenance policy provided in DoDI 8500.01..'), ('000856','draft','2009-09-18','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the system maintenance policy and associated system maintenance controls.','MA-1.6','The organization being inspected/assessed ensures the maintenance procedures are disseminated to the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system via an information sharing capability. DoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.','The organization conducting the inspection/assessment examines the maintenance procedures via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated to the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system. DoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.'), ('000857','draft','2009-09-18','DISA FSO','policy','The organization reviews and updates the current system maintenance procedures in accordance with organization-defined frequency.','MA-1.9','The organization being inspected/assessed reviews the current system maintenance procedures annually and revises as needed to comply with DoD regulations. The organization must document each occurrence of the reviews and update actions as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines documentation of occurrence of reviews and update actions for the maintenance procedures to ensure annual review and necessary updates are occurring. DoD has defined the frequency as annually.'), ('000858','draft','2009-09-18','DISA FSO','policy','The organization schedules, performs, documents, and reviews records of maintenance and repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.',NULL,NULL,NULL), ('000859','draft','2009-09-18','DISA FSO','policy','The organization approves and monitors all maintenance activities, whether performed on site or remotely and whether the equipment is serviced on site or removed to another location.','MA-2.9','The organization being inspected/assessed approves and monitors all maintenance activities, whether performed on site or remotely and whether the equipment is serviced on site or removed to another location. The organization must maintain records of all approvals and monitoring activities.','The organization conducting the inspection/assessment obtains and examines records of all approvals and monitoring activities to ensure the organization being inspected/assessed approves and monitors all maintenance activities whether performed on site or remotely and whether the equipment is serviced on site or removed to another location.'), ('000860','draft','2009-09-18','DISA FSO','policy','The organization requires that organization-defined personnel or roles explicitly approve the removal of the information system or system components from organizational facilities for off-site maintenance or repairs.','MA-2.10','The organization being inspected/assessed documents within their risk management strategy personnel or roles defined in MA-2, CCI 2874 who must explicitly approve the removal of the information system or system components from organizational facilities for off-site maintenance or repairs. The organization must maintain written records of approval for the removal of the information system or system components from organizational facilities for off-site maintenance or repairs.','The organization conducting the inspection/assessment obtains and examines:\n1. the organization\'s risk management strategy to ensure the personnel or roles defined in MA-2, CCI 2874 have been designated to approve the removal of the information system or system components;\n2. and written records of approval for the removal of the information system or system components from organizational facilities for off-site maintenance or repairs to ensure the removal is explicitly approved.'), ('000861','draft','2009-09-18','DISA FSO','policy','The organization sanitizes equipment to remove all information from associated media prior to removal from organizational facilities for off-site maintenance or repairs.','MA-2.12','The organization being inspected/assessed sanitizes equipment to remove all information from associated media prior to removal from organizational facilities for off-site maintenance or repairs IAW DoDM 5200.01-V3 for classified media and DoDM 5200.01-V4 for unclassified media. The organization must maintain written records of media sanitization.','The organization conducting the inspection/assessment obtains and examines written records of media sanitization to ensure the organization sanitizes equipment to remove all information from associated media prior to removal from organizational facilities for off-site maintenance or repairs.'), ('000862','draft','2009-09-18','DISA FSO','policy','The organization checks all potentially impacted security controls to verify that the controls are still functioning properly following maintenance or repair actions.','MA-2.13','The organization being inspected/assessed identifies and documents the impacted security controls and takes steps to verify that the controls are still functioning properly following maintenance or repair actions.','The organization conducting the inspection/assessment obtains and examines documented evidence of the verification of security controls following maintenance and repair actions to ensure that the organization being inspected/assessed checks all potentially impacted security controls to verify that they are still functioning properly.'), ('000863','draft','2009-09-18','DISA FSO','policy','The organization maintains maintenance records for the information system that include the date and time of maintenance, the name of the individual performing the maintenance, the name of escort, if necessary, a description of the maintenance performed, and a list of equipment removed or replaced (including identification numbers, if applicable).',NULL,NULL,NULL), ('000864','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to schedule, conduct, and document maintenance and repairs as required.',NULL,NULL,NULL), ('000865','draft','2009-09-18','DISA FSO','policy','The organization approves information system maintenance tools.','MA-3.1','The organization being inspected/assessed documents the approved maintenance tools within the Security Plan.','The organization conducting the inspection/assessment:\n1. obtains and examines the Security Plan to ensure the list of approved maintenance tools is documented;\n2. ensures only the approved maintenance tools are used within the system.'), ('000866','draft','2009-09-18','DISA FSO','policy','The organization controls information system maintenance tools.','MA-3.2','The organization being inspected/assessed controls information system maintenance tools that are approved IAW MA-3, CCI 865.','The organization conducting the inspection/assessment:\n1. obtains and examines the Security Plan to identify the list of approved maintenance tools;\n2. ensures the organization being inspected/assessed controls the approved information system maintenance tools.'), ('000867','draft','2009-09-18','DISA FSO','policy','The organization monitors information system maintenance tools.','MA-3.3','The organization being inspected/assessed develops and implements procedures to monitor the use of the approved information system maintenance tools IAW MA-3, CCI 865. Records of monitoring activity must be maintained.','The organization conducting the inspection/assessment obtains and examines:\n1. the Security Plan to identify the list of approved maintenance tools; and\n2. documented procedures to identify how the use of maintenance tools is monitored; and 3. reviews evidence that the monitoring is conducted IAW the documented procedures.'), ('000868','draft','2009-09-18','DISA FSO','policy','The organization maintains, on an ongoing basis, information system maintenance tools.',NULL,NULL,NULL), ('000869','draft','2009-09-18','DISA FSO','policy','The organization inspects the maintenance tools carried into a facility by maintenance personnel for improper or unauthorized modifications.','MA-3(1).1','The organization being inspected/assessed documents the procedures for and implements inspections of the maintenances tools carried into a facility by maintenance personnel for improper or unauthorized modifications. Records of inspection must be maintained.','The organization conducting the inspection/assessment obtains and examines procedures for, and records of inspection of the maintenance tools carried into a facility by maintenance personnel to ensure the tools are inspected for improper or unauthorized modifications.'), ('000870','draft','2009-09-18','DISA FSO','policy','The organization checks media containing diagnostic and test programs for malicious code before the media are used in the information system.','MA-3(2).1','The organization being inspected/assessed:\n1. documents and implements procedures to check all media containing diagnostic and test programs for malicious code before the media are used in the information system; and\n2. Runs an automated tool set to check all media containing diagnostic and test programs for malicious code before the media are used in the information system.\nThe organization must maintain configuration files for the automated tool set and audit logs of the tool set used to check media.','The organization conducting the inspection/assessment obtains and examines the procedures for checking all diagnostic and test media for malicious code, and a sampling of configuration files and audit logs of the tool set used to check media. The purpose of the review is to ensure the organization being inspected/assessed checks all media containing diagnostic and test programs for malicious code before the media are used in the information system.'), ('000871','draft','2009-09-18','DISA FSO','policy','The organization prevents the unauthorized removal of maintenance equipment containing organizational information by: (a) verifying that there is no organizational information contained on the equipment; (b) sanitizing or destroying the equipment; (c) retaining the equipment within the facility; or (d) obtaining an exemption from organization-defined personnel or roles explicitly authorizing removal of the equipment from the facility.','MA-3(3).1','The organization being inspected/assessed documents and implements a process to take one of the following actions before authorizing removal of information equipment from the facility:\n1. verify there is no organizational information contained on maintenance equipment;\n2. Sanitize or destroy the equipment;\n3. Retain the equipment within the facility; or\n4. Obtain an exemption from personnel or roles defined in MA-3 (3), CCI 2882 explicitly authorizing removal of the equipment from the facility.\nThe organization must maintain a record of maintenance equipment removal and actions taken.','The organization conducting the inspection/assessment obtains and examines the documented process and record of maintenance equipment removal to ensure the organization being inspected/assessed takes one of the four actions listed in the implementation guidance.'), ('000872','draft','2009-09-18','DISA FSO','policy','The organization employs automated mechanisms to restrict the use of maintenance tools to authorized personnel only.',NULL,NULL,NULL), ('000873','draft','2009-09-18','DISA FSO','policy','The organization approves nonlocal maintenance and diagnostic activities.','MA-4.1','The organization being inspected/assessed documents the procedures for approving non-local maintenance and diagnostic activities within the Security Plan. The organization must maintain records of approved non-local maintenance and diagnostic activities.','The organization conducting the inspection/assessment obtains and examines:\n1. the Security Plan to ensure the procedures for approving non-local maintenance and diagnostic activities are documented; and\n2. records approving non-local maintenance and diagnostic activities.'), ('000874','draft','2009-09-18','DISA FSO','policy','The organization monitors nonlocal maintenance and diagnostic activities.','MA-4.2','The organization being inspected/assessed develops and implements procedures to monitor non-local maintenance and diagnostic activities. Records of monitoring activity must be maintained.','The organization conducting the inspection/assessment obtains and examines:\n1. the Security Plan to identify the authorized non-local maintenance and diagnostic activities; and\n2. documented procedures to identify how the use of non-local maintenance and diagnostic activities are monitored; and\n3. reviews evidence that the monitoring is conducted IAW the documented procedures.'), ('000875','draft','2009-09-18','DISA FSO','policy','The organization controls non-local maintenance and diagnostic activities.',NULL,NULL,NULL), ('000876','draft','2009-09-18','DISA FSO','policy','The organization allows the use of nonlocal maintenance and diagnostic tools only as consistent with organizational policy and documented in the security plan for the information system.','MA-4.3','The organization being inspected/assessed:\n1. documents within the Security Plan the non-local maintenance and diagnostic tools that are allowed; and\n2. allows the use of non-local maintenance and diagnostic tools IAW the tools identified in the Security Plan and MA-4, CCI 873.','The organization conducting the inspection/assessment obtains and examines:\n1. the Security Plan to ensure non-local maintenance and diagnostic tools have been identified; and\n2. maintenance records to ensure only those tools allowed are used IAW MA-4, CCI 873.'), ('000877','draft','2009-09-18','DISA FSO','technical','The organization employs strong authenticators in the establishment of nonlocal maintenance and diagnostic sessions.','MA-4.4','The organization being inspected/assessed configures the information system to employ strong authenticators in the establishment of nonlocal maintenance and diagnostic sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 877.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ strong authenticators in the establishment of nonlocal maintenance and diagnostic sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 877.'), ('000878','draft','2009-09-18','DISA FSO','policy','The organization maintains records for nonlocal maintenance and diagnostic activities.','MA-4.5','The organization being inspected/assessed maintains records of authorized non-local maintenance and diagnostic activities.','The organization conducting the inspection/assessment obtains records of authorized non-local maintenance and diagnostic activities, and examines a sampling to verify the organization is maintaining records for all non-local maintenance and diagnostic activities.'), ('000879','draft','2009-09-18','DISA FSO','technical','The organization terminates sessions and network connections when nonlocal maintenance is completed.','MA-4.6','The organization being inspected/assessed terminates session and network connections when non-local maintenance is completed. The organization must retain audit logs of session and network connections termination for non-local maintenance.','The organization conducting the inspection/assessment obtains and examines audit logs of session and network connections termination for non-local maintenance to ensure session and network connections are terminated when non-local maintenance is completed.'), ('000880','draft','2009-09-18','DISA FSO','technical','The organization audits non-local maintenance and diagnostic sessions.',NULL,NULL,NULL), ('000881','draft','2009-09-18','DISA FSO','policy','The organization documents, in the security plan for the information system, the policies and procedures for the establishment and use of nonlocal maintenance and diagnostic connections.','MA-4(2).1','The organization being inspected/assessed documents within the Security Plan the policies and procedures for the establishment and use of nonlocal maintenance and diagnostic connections.','The organization conducting the inspection/assessment obtains and examines the Security Plan to ensure the plan identifies the establishment and use of non-local maintenance and diagnostic connections.'), ('000882','draft','2009-09-18','DISA FSO','policy','The organization requires that nonlocal maintenance and diagnostic services be performed from an information system that implements a security capability comparable to the capability implemented on the system being serviced.','MA-4(3).1','The organization being inspected/assessed clearly defines in its contracts and/or service level agreements the requirement that any IS used to conduct non-local maintenance and diagnostic services will have a security level at least as high as the security level implemented on the IS being serviced. Alternatively, the organization being inspected/assessed complies with MA-4 (3) CCIs 883 and 1631.','The organization conducting the inspection/assessment obtains and examines contracts and/or service level agreements for all non-local maintenance and diagnostic services to ensure that any IS used for those services is required to have security level at least as high as the security level implemented on the IS being serviced. Alternatively, the organization conducting the inspection/assessment ensures the organization being inspected/assessed complies with MA-4 (3) CCIs 883 and 1631.'), ('000883','draft','2009-09-18','DISA FSO','policy','The organization removes the component to be serviced from the information system and prior to nonlocal maintenance or diagnostic services, sanitizes the component (with regard to organizational information) before removal from organizational facilities.','MA-4(3).2','The organization being inspected/assessed removes the component to be serviced from the information system and prior to non-local maintenance or diagnostic services, sanitizes the component (with regard to organizational information) before removal from organizational facilities. Alternatively, the organization being inspected/assessed complies with MA-4 (3) CCI 882.','The organization conducting the inspection/assessment obtains and examines maintenance procedures for all non-local maintenance and diagnostic services to ensure that the organization being inspected/assessed sanitizes components before removal from organizational facilities. Alternatively, the organization conducting the inspection/assessment ensures the organization being inspected/assessed complies with MA-4 (3) CCI 882.'), ('000884','draft','2009-09-18','DISA FSO','technical','The organization protects nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.','MA-4(4).1','The organization being inspected/assessed configures the information system to protect nonlocal maintenance sessions by employing authenticators defined in MA-4 (4), CCI 2887 that are replay resistant. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 884.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect nonlocal maintenance sessions by employing authenticators defined in MA-4 (4), CCI 2887 that are replay resistant. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 884.'), ('000885','draft','2009-09-18','DISA FSO','policy','The organization requires that maintenance personnel notify organization-defined personnel when non-local maintenance is planned (i.e., date/time).',NULL,NULL,NULL), ('000886','draft','2009-09-18','DISA FSO','policy','The organization defines the personnel or roles to be notified of the date and time of planned nonlocal maintenance.','MA-4(5).3','DoD has defined the personnel or roles as the user base which could be impacted by the maintenance event.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the user base which could be impacted by the maintenance event.'), ('000887','draft','2009-09-18','DISA FSO','policy','The organization requires the approval of each nonlocal maintenance session by organization-defined personnel or roles.','MA-4(5).1','The organization being inspected/assessed defines within their maintenance procedures a process for the ISSO to approve the non-local maintenance. Written approval must be maintained. DoD has defined the personnel or roles as the ISSO.','The organization conducting the inspection/assessment obtains and examines the maintenance procedures and historical approvals to ensure that the ISSO approves the non-local maintenance. DoD has defined the personnel or roles as the ISSO.'), ('000888','draft','2009-09-18','DISA FSO','technical','The organization employs cryptographic mechanisms to protect the integrity and confidentiality of non-local maintenance and diagnostic communications.',NULL,NULL,NULL), ('000889','draft','2009-09-18','DISA FSO','policy','The organization employs remote disconnect verification at the termination of non-local maintenance and diagnostic sessions.',NULL,NULL,NULL), ('000890','draft','2009-09-18','DISA FSO','policy','The organization establishes a process for maintenance personnel authorization.','MA-5.1','The organization being inspected/assessed clearly defines, documents, and establishes a process for the authorization of maintenance personnel.','The organization conducting the inspection/assessment obtains and examines procedures addressing maintenance personnel to ensure that the organization being inspected/assessed has established processes for the authorization of maintenance personnel.'), ('000891','draft','2009-09-18','DISA FSO','policy','The organization maintains a list of authorized maintenance organizations or personnel.','MA-5.2','The organization being inspected/assessed maintains a current list of authorized maintenance organizations or personnel.','The organization conducting the inspection/assessment obtains and examines the current list of authorized maintenance organizations or personnel to ensure the organization being inspected/assessed is maintaining the list.'), ('000892','draft','2009-09-18','DISA FSO','policy','The organization ensures that personnel performing maintenance on the information system have required access authorizations or designates organizational personnel with required access authorizations and technical competence deemed necessary to supervise information system maintenance.',NULL,NULL,NULL), ('000893','draft','2009-09-18','DISA FSO','policy','The organization implements procedures for the use of maintenance personnel that lack appropriate security clearances or are not U.S. citizens.','MA-5(1).1','The organization being inspected/assessed documents and implements procedures for the use of maintenance personnel that lack appropriate security clearances or are not U.S. Citizens in the procedures documented IAW MA-5, CCI 890.','The organization conducting the inspection/assessment obtains and examines the procedures identified in MA-5, CCI 890 to ensure it includes specific procedures for maintenance personnel that lack appropriate security clearances or are not U.S. citizens.'), ('000894','draft','2009-09-18','DISA FSO','policy','The organization requires maintenance personnel who do not have needed access authorizations, clearances, or formal access approvals to be escorted and supervised during the performance of maintenance and diagnostic activities on the information system by approved organizational personnel who are fully cleared, have appropriate access authorizations, and are technically qualified.','MA-5(1).2','The organization being inspected/assessed requires maintenance personnel who do not have needed access authorizations, clearances, or formal access approvals to be escorted and supervised during the performance of maintenance and diagnostic activities on the information system by approved organizational personnel who are fully cleared, have appropriate access authorizations, and are technically qualified. The organization must maintain records of maintenance personnel who access the system including information on escorts.','The organization conducting the inspection/assessment obtains and examines the records of maintenance personnel who access the system to ensure the organization being inspected/assessed requires maintenance personnel who do not have needed access authorizations, clearances, or formal access approvals to be escorted and supervised during the performance of maintenance and diagnostic activities on the information system by approved organizational personnel who are fully cleared, have appropriate access authorizations, and are technically qualified.'), ('000895','draft','2009-09-18','DISA FSO','policy','The organization requires that, prior to initiating maintenance or diagnostic activities by personnel who do not have needed access authorizations, clearances or formal access approvals, all volatile information storage components within the information system be sanitized and all nonvolatile storage media be removed or physically disconnected from the system and secured.','MA-5(1).3','The organization being inspected/assessed documents and implements a process to sanitize, remove, or physically disconnect all nonvolatile storage media from the system prior to initiating maintenance or diagnostic activities by personnel who do not have needed access authorizations, clearances or formal access approvals.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed sanitizes, removes, or physically disconnects all nonvolatile storage media from the system prior to initiating maintenance or diagnostic activities by personnel who do not have needed access authorizations, clearances or formal access approvals.'), ('000896','draft','2009-09-18','DISA FSO','policy','The organization requires that in the event an information system component cannot be sanitized, the procedures contained in the security plan for the system be enforced.',NULL,NULL,NULL), ('000897','draft','2009-09-18','DISA FSO','policy','The organization ensures that personnel performing maintenance and diagnostic activities on an information system processing, storing, or transmitting classified information possess security clearances and formal access approvals for at least the highest classification level and for all compartments of information on the system.','MA-5(2).1','The organization being inspected/assessed documents and implements a process to ensure that personnel performing maintenance and diagnostic activities on an information system processing, storing, or transmitting classified information possess security clearances and formal access approvals for at least the highest classification level and for all compartments of information on the system.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that personnel performing maintenance and diagnostic activities on an information system processing, storing, or transmitting classified information possess security clearances and formal access approvals for at least the highest classification level and for all compartments of information on the system.'), ('000898','draft','2009-09-18','DISA FSO','policy','The organization ensures that personnel performing maintenance and diagnostic activities on an information system processing, storing, or transmitting classified information are U.S. citizens.','MA-5(3).1','The organization being inspected/assessed documents and implements a process to ensure that personnel performing maintenance and diagnostic activities on an information system processing, storing, or transmitting classified information are U.S. citizens.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that personnel performing maintenance and diagnostic activities on an information system processing, storing, or transmitting classified information are U.S. citizens.'), ('000899','draft','2009-09-18','DISA FSO','policy','The organization ensures that cleared foreign nationals (i.e., foreign nationals with appropriate security clearances) are used to conduct maintenance and diagnostic activities on classified information systems only when the systems are jointly owned and operated by the United States and foreign allied governments, or owned and operated solely by foreign allied governments.','MA-5(4).1','The organization being inspected/assessed documents and implements a process to ensure that cleared foreign nationals (i.e., foreign nationals with appropriate security clearances), are used to conduct maintenance and diagnostic activities on classified information systems only when the systems are jointly owned and operated by the United States and foreign allied governments, or owned and operated solely by foreign allied governments.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that cleared foreign nationals (i.e., foreign nationals with appropriate security clearances), are used to conduct maintenance and diagnostic activities on classified information systems only when the systems are jointly owned and operated by the United States and foreign allied governments, or owned and operated solely by foreign allied governments.'), ('000900','draft','2009-09-18','DISA FSO','policy','The organization ensures that approvals, consents, and detailed operational conditions regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified information systems are fully documented within Memoranda of Agreements.','MA-5(4).2','The organization being inspected/assessed documents and implements a process to ensure that approvals, consents, and detailed operational conditions regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified information systems are fully documented within Memorandum of Agreements.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that approvals, consents, and detailed operational conditions regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified information systems are fully documented within Memorandum of Agreements.'), ('000901','draft','2009-09-18','DISA FSO','policy','The organization defines a list of security-critical information system components and/or key information technology components for which it will obtain maintenance support and/or spare parts.',NULL,NULL,NULL), ('000902','draft','2009-09-18','DISA FSO','policy','The organization defines a time period for obtaining maintenance support and/or spare parts for security-critical information system components and/or key information technology components.',NULL,NULL,NULL), ('000903','draft','2009-09-18','DISA FSO','policy','The organization obtains maintenance support and/or spare parts for organization-defined information system components within an organization-defined time period of failure.','MA-6.1','The organization being inspected/assessed obtains maintenance support and/or spare parts for information system components defined in MA-6, CCI 2896 within 24 hours (Low and Moderate Availability) or immediately upon failure for (High Availability). DoD has defined the time period as within 24 hours (Low and Moderate Availability) or immediately upon failure for (High Availability). ','The organization conducting the inspection/assessment obtains evidence that maintenance support is available for information system components defined in MA-6, CCI 2896 and that the support will be provided within 24 hours (Low and Moderate Availability) or immediately upon failure for (High Availability). Evidence can include maintenance support contracts, inventories of spare parts, etc. DoD has defined the time period as within 24 hours (Low and Moderate Availability) or immediately upon failure for (High Availability). '), ('000904','draft','2009-09-21','DISA FSO','policy','The organization develops and documents a physical and environmental protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PE-1.3','DoDI 5200.08 and DoD 5200.08-R meet the requirement for Physical and Environmental Policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.','DoDI 5200.08 and DoD 5200.08-R meet the requirement for Physical and Environmental Policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.'), ('000905','draft','2009-09-21','DISA FSO','policy','The organization disseminates a physical and environmental protection policy to organization-defined personnel or roles.','PE-1.4','DoD disseminates DoDI 5200.08 and DoD 5200.08-R organization-wide via the DoD Issuances website.\nhttp://www.dtic.mil/whs/directives/corres/dir.html\n\nDoD has defined the personnel or roles as organizational personnel with physical and environmental protection responsibilities.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 5200.08 and DoD 5200.08-R\n\nDoD has defined the personnel or roles as organizational personnel with physical and environmental protection responsibilities.'), ('000906','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current physical and environmental protection policy in accordance with organization-defined frequency.','PE-1.7','DoDI 5200.08 and DoD 5200.08-R meet the requirement for Physical and Environmental Policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','DoDI 5200.08 and DoD 5200.08-R meet the requirement for Physical and Environmental Policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('000907','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review and update the physical and environmental protection policy.','PE-1.8','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('000908','draft','2009-09-21','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the physical and environmental protection policy and associated physical and environmental protection controls.','PE-1.5','DoDI 5200.08 and DoD 5200.08-R meet the requirement for Physical and Environmental Policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.'), ('000909','draft','2009-09-21','DISA FSO','policy','The organization disseminates physical and environmental protection procedures to organization-defined personnel or roles.','PE-1.6','DoD disseminates DoDI 5200.08 and DoD 5200.08-R organization-wide via the DoD Issuances website.\nhttp://www.dtic.mil/whs/directives/corres/dir.html\n\nDoD has defined the personnel or roles as organizational personnel with physical and environmental protection responsibilities.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 5200.08 and DoD 5200.08-R\n\nDoD has defined the personnel or roles as organizational personnel with physical and environmental protection responsibilities.'), ('000910','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current physical and environmental protection procedures in accordance with organization-defined frequency.','PE-1.9','DoDI 5200.08 and DoD 5200.08-R meet the requirement for Physical and Environmental Policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.08 and DoD 5200.08-R.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000911','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review and update the physical and environmental protection procedures.','PE-1.10','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('000912','draft','2009-09-21','DISA FSO','policy','The organization develops a list of individuals with authorized access to the facility where the information system resides.','PE-2.1','The organization being inspected/assessed will develop and maintain a list of personnel with authorized access to the facilities where information systems reside. The organization will also take action to identify and officially designate its publicly accessible areas where access authorization is not required.','The organization conducting the inspection/assessment obtains and examines the list of personnel with authorized access to facilities where information systems reside to ensure it is current within every 90 days. The review process should also determine if the organization has identified and officially designated its publicly accessible areas where access authorization is not required. DoD has defined the frequency as every 90 days.'), ('000913','draft','2009-09-21','DISA FSO','policy','The organization issues authorization credentials for facility access.','PE-2.4','The organization being inspected/assessed utilizes the list of personnel with authorized access (IAW PE-2, CCI-000912) and issues credentials accordingly. The organization must document the credential issuing activity as an audit trail.','The organization conducting the inspection/assessment obtains and examines documentation of credential issuing activities to ensure credentials are issued to personnel with authorized access.'), ('000914','draft','2009-09-21','DISA FSO','policy','The organization reviews the access list detailing authorized facility access by individuals in accordance with organization-defined frequency.','PE-2.5','The organization being inspected/assessed will review the access list and authorization credentials every 90 days and document these review and approval actions as an audit trail. DoD has defined the frequency as every 90 days.','The organization conducting the inspection/assessment obtains and examines the audit records of the review actions to ensure that reviews are conducted every 90 days. DoD has defined the frequency as every 90 days.'), ('000915','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review the access list detailing authorized facility access by individuals.','PE-2.6','DoD has defined the frequency as every 90 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 90 days.'), ('000916','draft','2009-09-21','DISA FSO','policy','The organization authorizes physical access to the facility where the information system resides based on position or role.','PE-2(1).1','The organization being inspected/assessed must:\n1. Develop and document a list of roles or positions that have access to the facility where the information system resides.\n2. Identify and document personnel assigned to those roles.\n3. Authorize and document access to the facility to personnel in identified roles','The organization conducting the inspection/assessment obtains and examines:\n1. The list of roles or positions that have access to the facility where the information system resides.\n2. The list of personnel assigned to those roles\nRecommended:\n3. Access logs to verify access to the facility was authorized based on the appropriate roles and positions'), ('000917','draft','2009-09-21','DISA FSO','policy','The organization requires two forms of identification from an organization-defined list of acceptable forms of identification for visitor access to the facility where the information system resides.','PE-2(2).1','The organization being inspected/assessed will only grant access to the facility with two organization approved government issued forms of identification defined in PE-2 (2), CCI 2912. This requirement must be documented within the organization\'s physical security policy. The organization must maintain access control documentation as an auditable event per AU-2, CCI 000123.','The organization conducting the inspection/assessment obtains and examines the inspected organization\'s physical security policy for requirements and implementation guidance to have two forms of identification defined in PE-2 (2), CCI 2912 and physical access control logs or records; and any other relevant documents or records to validate compliance.'), ('000918','draft','2009-09-21','DISA FSO','policy','The organization restricts physical access to the facility containing an information system that processes classified information to authorized personnel with appropriate clearances and access authorizations.',NULL,NULL,NULL), ('000919','draft','2009-09-21','DISA FSO','policy','The organization enforces physical access authorizations at organization-defined entry/exit points to the facility where the information system resides.','PE-3.1','The organization being inspected/assessed will implement physical access authorizations at entry/exit points defined in PE-3, CCI 2915 and secure those physical access points (i.e. doors and/or windows) that are not intended for normal access.','The organization conducting the inspection/assessment performs a physical inspection of facility entry/exit points defined in PE-3, CCI 2915 to ensure that either physical access authorization controls are in place for those access points considered normal access points or are properly secured. Physical access points that are not documented or are not secured would be a failure of this control.'), ('000920','draft','2009-09-21','DISA FSO','policy','The organization verifies individual access authorizations before granting access to the facility.','PE-3.3','The organization being inspected/assessed verifies and grants access to facilities based upon individual access authorizations.','The organization conducting the inspection/assessment obtains and examines the access authorization list of personnel that have access to the facility (per access list implemented through PE-2, CCI 000912) where the information system resides. Inspect selected facilities to confirm the inspected organization is granting access at all physical access points to only authorized personnel.'), ('000921','draft','2009-09-21','DISA FSO','policy','The organization controls ingress/egress to the facility where the information system resides using one or more organization-defined physical access control systems/devices or guards.','PE-3.4','The organization being inspected/assessed will control ingress/egress to the facility using the physical access control devices and/or guards defined in PE-3, CCI 2916.','The organization conducting the inspection/assessment obtains and examines the list of physical access control devices and/or guards in use defined in PE-3, CCI 2916 and conducts random inspections of entry points. The purpose is to determine whether the organization is using those physical access devices and/or guards to control entry of personnel into the facility hosting the information system.'), ('000922','draft','2009-09-21','DISA FSO','policy','The organization controls access to areas officially designated as publicly accessible in accordance with the organization^s assessment of risk.',NULL,NULL,NULL), ('000923','draft','2009-09-21','DISA FSO','policy','The organization secures keys, combinations, and other physical access devices.','PE-3.14','The organization being inspected/assessed will secure as appropriate (in safes or secure containers) items used for physical access control such as keys, combinations, portable locks, etc. Fixed access control devices such as card readers, installed locks, key pads, etc. should be protected from tampering.','The organization conducting the inspection/assessment conducts physical inspections and interviews physical security/safety personnel to validate the organization has taken the proper precautions, and established the proper procedures to ensure it has adequately secured its keys, combinations, and other physical devices.'), ('000924','draft','2009-09-21','DISA FSO','policy','The organization inventories organization-defined physical access devices on an organization-defined frequency.','PE-3.15','The organization being inspected/assessed conducts and documents an inventory of minimally keys or any other physical token used to gain access annually. Inventory documents must be retained for at least one year beyond the completion of the next inventory. DoD has defined the frequency as annually. DoD has defined the physical access devices as minimally keys or any other physical token used to gain access.','The organization conducting the inspection/assessment obtains and examines the records of inventory of minimally keys or any other physical token used to gain access to ensure the inventory is being conducted annually.\n\nDoD has defined the frequency as annually.\n\nDoD has defined the physical access devices as minimally keys or any other physical token used to gain access.'), ('000925','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency for conducting inventories of organization-defined physical access devices.','PE-3.16','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000926','draft','2009-09-21','DISA FSO','policy','The organization changes combinations and keys in accordance with organization-defined frequency and/or when keys are lost, combinations are compromised, or individuals are transferred or terminated.','PE-3.18','The organization being inspected/assessed will document each occurrence of these change actions, with the reason for the action, as an audit trail for future reference. DoD has defined the frequency as required by security relevant events.','The organization conducting the inspection/assessment obtains and examines documentation of these change actions to validate the organization is changing its keys and combinations upon occurrence of security relevant events and when keys are lost, combinations are compromised, or individuals are transferred or terminated. DoD has defined the frequency as required by security relevant events.'), ('000927','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for changing combinations and keys.','PE-3.19','DoD has defined the frequency as required by security relevant event.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as required by security relevant event.'), ('000928','draft','2009-09-21','DISA FSO','policy','The organization enforces physical access authorizations to the information system in addition to the physical access controls for the facility where the information system resides at organization-defined physical spaces containing one or more components of the information system.','PE-3(1).1','The organization being inspected/assessed will provide documentation of additional physical access authorizations for the facility/facilities at physical spaces containing one or more components of the information system defined in PE-3 (1), CCI 2926. The organization will ensure that these controls are separate from, and independent of, the physical access controls established for the facility.','The organization conducting the inspection/assessment obtains and examines the documented list of additional physical access authorizations for the facility/facilities at physical spaces containing one or more components of the information system. The objective of the examination is to determine if the organization is enforcing additional physical access authorizations to areas of the facility at physical spaces containing one or more components of the information system defined in PE-3 (1), CCI 2926. These controls are independent of the physical access controls established for the facility.'), ('000929','draft','2009-09-21','DISA FSO','policy','The organization performs security checks in accordance with organization-defined frequency at the physical boundary of the facility or information system for unauthorized exfiltration of information or removal of information system components.','PE-3(2).1','The organization being inspected/assessed documents and implements procedures to perform security checks at the physical boundary of the facility or information system at a minimum, annually. The organization must maintain an audit trail of security checks at the physical boundary. DoD has defined the frequency as at a minimum, annually.','The organization conducting the inspection/assessment obtains and examines the documented procedures as well as the audit trail of security checks at the physical boundary to ensure the organization being inspected/assessed performs security checks at the physical boundary of the facility or information system at a minimum, annually.\n\nDoD has defined the frequency as at a minimum, annually.'), ('000930','draft','2009-09-21','DISA FSO','policy','The organization employs guards and/or alarms to monitor every physical access point to the facility where the information system resides 24 hours per day, 7 days per week.','PE-3(3).1','The organization being inspected/assessed employs guards and/or alarms to monitor every physical access point to the facility where the information system resides 24 hours per day, 7 days per week. The organization must create and maintain a list of guards or alarms for every physical access point to the facility where the information system resides 24 hours per day, 7 days per week.','The organization conducting the inspection/assessment obtains the list of guards or alarms for every physical access point to the facility where the information system resides and visually verifies a sampling of access points to ensure the appropriate guard or alarm to monitor is in place 24 hours per day, 7 days per week.'), ('000931','draft','2009-09-21','DISA FSO','policy','The organization uses lockable physical casings to protect organization-defined information system components from unauthorized physical access.','PE-3(4).1','The organization being inspected/assessed will deploy and install lockable physical casings designed to protect organization-defined information system components from unauthorized physical access.','The organization conducting the inspection/assessment performs a sample inspection of the lockable physical casings. The objective of the reviews is to validate the organization is using lockable physical casings to protect organization-defined information system components from unauthorized physical access.'), ('000932','draft','2009-09-21','DISA FSO','policy','The organization defines information system components to be protected from unauthorized physical access using lockable physical casings.','PE-3(4).2','The organization being inspected/assessed defines and documents information system components to be protected from unauthorized physical access using lockable physical casings.\n\nDoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines information system components to be protected from unauthorized physical access using lockable physical casings.\n\nDoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('000933','draft','2009-09-21','DISA FSO','policy','The organization employs organization-defined security safeguards to deter and/or prevent physical tampering or alteration of organization-defined hardware components within the information system.','PE-3(5).1','The organization being inspected/assessed employs security safeguards defined in PE-3 (5), CCI 2928 to deter and or prevent physical tampering or alteration of hardware components defined in PE-3 (5), CCI 2929 within the information system.','The organization conducting the inspection/assessment inspects the information system to ensure the organization being inspected/assessed employs security safeguards defined in PE-3 (5), CCI 2928 to deter and or prevent physical tampering or alteration of hardware components defined in PE-3 (5), CCI 2929 within the information system.'), ('000934','draft','2009-09-21','DISA FSO','policy','The organization employs a penetration testing process that includes unannounced attempts to bypass or circumvent security controls associated with physical access points to the facility on an organization-defined frequency.','PE-3(6).1','The organization being inspected/assessed executes a penetration testing process annually, that includes unannounced attempts, as defined in its physical security assessment plan for testing effectiveness of security controls in place for physical access points to the facility. Results of all penetration testing will be documented as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the inspected organization\'s physical security assessment plan and reviews documented results to ensure annual penetration testing of physical access points occurred. DoD has defined the frequency as annually.'), ('000935','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of unannounced attempts to be included in a penetration testing process to bypass or circumvent security controls associated with physical access points to the facility.','PE-3(6).2','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('000936','draft','2009-09-21','DISA FSO','policy','The organization controls physical access to organization-defined information system distribution and transmission lines within organizational facilities using organization-defined security safeguards.','PE-4.1','The organization being inspected/assessed controls physical access to information system distribution and transmission lines defined in PE-4, CCI 2930 within organizational facilities using security safeguards defined in PE-4, CCI 2931.','The organization conducting the inspection/assessment inspects the information system distribution and transmission lines defined in PE-4, CCI 2930 to ensure the security safeguards defined in PE-4, CCI 2931 are in place.'), ('000937','draft','2009-09-21','DISA FSO','policy','The organization controls physical access to information system output devices to prevent unauthorized individuals from obtaining the output.','PE-5.1','The organization being inspected/assessed will identify, document, and execute any additional access controls required for output devices above and beyond physical access controls already in place for the facility IAW DoD 5200.08-R and DoD 5200.01-M (Volumes 1-4).','The organization conducting the inspection/assessment obtains and examines the list of additional access controls for output devices. Physical inspection is required to ensure these access controls are properly implemented.'), ('000938','draft','2009-09-21','DISA FSO','policy','The organization monitors physical access to the information system to detect and respond to physical security incidents.',NULL,NULL,NULL), ('000939','draft','2009-09-21','DISA FSO','policy','The organization reviews physical access logs in accordance with organization-defined frequency.','PE-6.4','The organization being inspected/assessed will review physical access logs every 30 days. The organization must document each occurrence the physical access log review, with results of any necessary incident analysis and action taken, as an audit trail for future reference. DoD has defined the frequency as every 30 days.','The organization conducting the inspection/assessment obtains and examines the inspected organization\'s physical access logs or records; physical access incident reports; and any other relevant documents or records. The purpose of the reviews is to determine if the organization is conducting reviews of the physical access logs every 30 days. DoD has defined the frequency as every 30 days.'), ('000940','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for reviewing physical access logs.','PE-6.5','DoD has defined the frequency as every 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 30 days.'), ('000941','draft','2009-09-21','DISA FSO','policy','The organization coordinates results of reviews and investigations with the organization^s incident response capability.','PE-6.6','The organization being inspected/assessed will coordinate the results of reviews and investigations of physical security incidents with the organization\'s incident response capability (for physical security incidents).','The organization conducting the inspection/assessment obtains and examines documentation of physical security incidents to ensure coordination with the inspected organization\'s incident response capability occurred.'), ('000942','draft','2009-09-21','DISA FSO','policy','The organization monitors physical intrusion alarms and surveillance equipment.','PE-6(1).1','The organization being inspected/assessed will actively monitor physical intrusion alarms and surveillance equipment.','The organization conducting the inspection/assessment will observe and interview security personnel conducting monitoring activities to validate the organization is actively monitoring all physical intrusion alarms and surveillance equipment.'), ('000943','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to recognize potential intrusions and initiate designated response actions.',NULL,NULL,NULL), ('000944','draft','2009-09-21','DISA FSO','policy','The organization controls physical access to the information system by authenticating visitors before authorizing access to the facility where the information system resides other than areas designated as publicly accessible.',NULL,NULL,NULL), ('000945','draft','2009-09-21','DISA FSO','policy','The organization escorts visitors and monitors visitor activity, when required.',NULL,NULL,NULL), ('000946','draft','2009-09-21','DISA FSO','policy','The organization requires two forms of identification for visitor access to the facility.',NULL,NULL,NULL), ('000947','draft','2009-09-21','DISA FSO','policy','The organization maintains visitor access records to the facility where the information system resides for an organization-defined time period.','PE-8.1','The organization being inspected/assessed must maintain visitor access records for their facilities for at least one year. DoD has defined the time period as at least one year.','The organization conducting the inspection/assessment obtains and examines visitor access records to determine if the organization is maintaining visitor access records to the facility where the information system resides for at least one year. DoD has defined the time period as at least one year.'), ('000948','draft','2009-09-21','DISA FSO','policy','The organization reviews visitor access records in accordance with organization-defined frequency.','PE-8.3','The organization being inspected/assessed conducts reviews of visitor access records every 30 days and must establish and maintain a documented audit trail within the authorization lifecycle. DoD has defined the frequency as every 30 days.','The organization conducting the inspection/assessment obtains and examines the audit documentation of visitor access record review to ensure the inspected organization is conducting reviews every 30 days. DoD has defined the frequency as every 30 days.'), ('000949','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review the visitor access records for the facility where the information system resides.','PE-8.4','DoD has defined the frequency as every 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 30 days.'), ('000950','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to facilitate the maintenance and review of access records.','PE-8(1).1','The organization being inspected/assessed will identify, document, and employ automated mechanisms to facilitate the maintenance and review of access records.','The organization conducting the inspection/assessment:\n1. obtains documentation identifying the automated mechanism in use by the inspected organization to facilitate the maintenance and review of access records\n2. Observes the use of the automated mechanism by the inspected organization'), ('000951','draft','2009-09-21','DISA FSO','policy','The organization maintains a record of all physical access, both visitor and authorized individuals.',NULL,NULL,NULL), ('000952','draft','2009-09-21','DISA FSO','policy','The organization protects power equipment and power cabling for the information system from damage and destruction.','PE-9.1','The organization being inspected/assessed provides a list of protective measures in place to prevent damage and/or destruction of power equipment and power cabling for their information system environment, IAW CP-2 (1), CCI 469.','The organization conducting the inspection/assessment obtains and examines the list of protective measures. Physical inspection of power equipment and power cabling will be done to ensure identified protective measures are in place.'), ('000953','draft','2009-09-21','DISA FSO','policy','The organization employs redundant and parallel power cabling paths.',NULL,NULL,NULL), ('000954','draft','2009-09-21','DISA FSO','policy','The organization employs automatic voltage controls for organization-defined critical information system components.','PE-9(2).1','The organization being inspected/assessed employs automatic voltage controls for all IT Components Critical to Execution of Missions. Automatic voltage controls are devices intended to eliminate voltage fluctuations (e.g., spikes). This controls apply to voltage controls for mission critical IT Components and not for facilities. DoD has defined the list of critical information system components as all IT Components Critical to Execution of Missions.','The organization conducting the inspection/assessment obtains the documentation of the all mission critical IT Components required to have automatic voltage controls mechanisms devices in place (IAW PE-9 (2), CCI 955) and does a visual inspection of at least a sample of the above list to ensure automatic voltage control mechanisms are in place. DoD has defined the list of critical information system components as all IT Components Critical to Execution of Missions.'), ('000955','draft','2009-09-21','DISA FSO','policy','The organization defines critical information system components that require automatic voltage controls.','PE-9(2).2','The organization being inspected/assessed must document all IT Components Critical to Execution of Missions. DoD has defined the list of critical information system components as all IT Components Critical to Execution of Missions.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the list of critical information system components as all IT Components Critical to Execution of Missions.'), ('000956','draft','2009-09-21','DISA FSO','policy','The organization provides the capability of shutting off power to the information system or individual system components in emergency situations.','PE-10.1','This control does not apply to individual workstations, laptops, printers, etc. This control only applies to facilities containing concentrations of information system resources (e.g., datacenters, server rooms, mainframe computer rooms). The organization being inspected/assessed will establish and document the capability to shut off the power to facilities or areas within facilities containing concentrations of information system resources (e.g., datacenters, server rooms, mainframe computer rooms) in emergency situations.','The organization conducting the inspection/assessment obtains and examines documentation of the capability to shut off the power to facilities or areas within facilities containing concentrations of information system resources (e.g., datacenters, server rooms, mainframe computer rooms) in emergency situations. The purpose is to validate the organization has provided the capability of shutting off power in emergency situations.'), ('000957','draft','2009-09-21','DISA FSO','policy','The organization places emergency shutoff switches or devices in an organization-defined location by information system or system component to facilitate safe and easy access for personnel.','PE-10.2','This control does not apply to individual workstations, laptops, printers, etc. This control only applies to facilities containing concentrations of information system resources (e.g., datacenters, server rooms, mainframe computer rooms). The organization being inspected/assessed places emergency shutoff switches or devices near more than one egress point of the IT area and ensure it is labeled and protected by a cover to prevent accidental shut-off to facilitate safe and easy access for personnel. DoD has defined the location as near more than one egress point of the IT area and ensure it is labeled and protected by a cover to prevent accidental shut-off.','The organization conducting the inspection/assessment will physically inspect emergency shutoff switches or devices for placement to validate the organization has installed the emergency shutoff switches or devices near more than one egress point of the IT area and ensure it is labeled and protected by a cover to prevent accidental shut-off to facilitate safe and easy access for personnel. DoD has defined the location as near more than one egress point of the IT area and ensure it is labeled and protected by a cover to prevent accidental shut-off.'), ('000958','draft','2009-09-21','DISA FSO','policy','The organization defines a location for emergency shutoff switches or devices by information system or system component.','PE-10.3','DoD has defined the location as near more than one egress point of the IT area and ensures it is labeled and protected by a cover to prevent accidental shut-off.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the location as near more than one egress point of the IT area and ensures it is labeled and protected by a cover to prevent accidental shut-off.'), ('000959','draft','2009-09-21','DISA FSO','policy','The organization protects emergency power shutoff capability from unauthorized activation.','PE-10.4','The organization being inspected/assessed will protect emergency power shutoff capability. DoD has defined the location as near more than one egress point of the IT area and ensures it is labeled and protected by a cover to prevent accidental shut-off.','The organization conducting the inspection/assessment will ensure that the inspected organization has protected emergency power shutoff capability. DoD has defined the location as near more than one egress point of the IT area and ensures it is labeled and protected by a cover to prevent accidental shut-off.'), ('000960','draft','2009-09-21','DISA FSO','policy','The organization provides a short-term uninterruptible power supply to facilitate an orderly shutdown of the information system in the event of a primary power source loss.',NULL,NULL,NULL), ('000961','draft','2009-09-21','DISA FSO','policy','The organization provides a long-term alternate power supply for the information system that is capable of maintaining minimally required operational capability in the event of an extended loss of the primary power source.','PE-11(1).1','The organization being inspected/assessed will:\n1. implement alternate power supply capable of supporting minimal operational capability over the long term.\n2. Provide a list of physical IT assets within the boundary of the information system that require a long term alternate power supply. This list may come from the inspected organization\'s security plan, continuity plan, or other documentation.','The organization conducting the inspection/assessment obtains and examines the list of physical IT assets within the boundary of the information system that require a long term alternate power supply. Physically inspect a sample from the list to ensure that long term power supply capability supporting minimal operational capability has been provided.'), ('000962','draft','2009-09-21','DISA FSO','policy','The organization provides a long-term alternate power supply for the information system that is self-contained and not reliant on external power generation.',NULL,NULL,NULL), ('000963','draft','2009-09-21','DISA FSO','policy','The organization employs and maintains automatic emergency lighting for the information system that activates in the event of a power outage or disruption and that covers emergency exits and evacuation routes within the facility.','PE-12.1','The organization being inspected/assessed must install and maintain automatic emergency lighting for the information system that activates in the event of a power outage or disruption and covers emergency exits and evacuation routes within the facility in compliance with established OSHA requirements.','The organization conducting the inspection/assessment conducts visual inspections and interviews physical security personnel to validate the organization is in compliance with established OSHA requirements by employing and maintaining emergency lighting for the information system, the emergency lighting activates in the event of a power outage or disruption, and it covers emergency exits and evacuation routes within the facility'), ('000964','draft','2009-09-21','DISA FSO','policy','The organization provides emergency lighting for all areas within the facility supporting essential missions and business functions.',NULL,NULL,NULL), ('000965','draft','2009-09-21','DISA FSO','policy','The organization employs and maintains fire suppression and detection devices/systems for the information system that are supported by an independent energy source.','PE-13.1','The organization being inspected/assessed must implement and maintain fire suppression and detection devices/systems for the information system that are supported by an independent energy source. An independent energy source is some source other than the primary energy source for that facility. Examples include sprinkler systems, hand held fire extinguishers, fixed fire hoses, and smoke detectors.','The organization conducting the inspection/assessment will conduct visual observation and interview organizational personnel with responsibilities for fire detection and suppression devices/systems. The purpose of the reviews and interviews is to validate the fire suppression and detection devices/systems for the information system are supported by an independent energy source.'), ('000966','draft','2009-09-21','DISA FSO','policy','The organization employs fire detection devices/systems for the information system that activate automatically and notify the organization and emergency responders in the event of a fire.',NULL,NULL,NULL), ('000967','draft','2009-09-21','DISA FSO','policy','The organization employs fire suppression devices/systems for the information system that provide automatic notification of any activation to the organization and emergency responders.',NULL,NULL,NULL), ('000968','draft','2009-09-21','DISA FSO','policy','The organization employs an automatic fire suppression capability for the information system when the facility is not staffed on a continuous basis.','PE-13(3).1','The organization being inspected/assessed must implement and maintain an automatic fire suppression capability that is fully operational when the facility is not staffed on a continuous basis.','The organization conducting the inspection/assessment conducts visual inspections and interviews physical security/safety personnel to validate the organization has installed and implemented an automatic fire suppression capability which is operational during those times the facility is not staffed.'), ('000969','draft','2009-09-21','DISA FSO','policy','The organization ensures that the facility undergoes, on an organization-defined frequency, fire marshal inspections and promptly resolves identified deficiencies.',NULL,NULL,NULL), ('000970','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for fire marshal inspections.',NULL,NULL,NULL), ('000971','draft','2009-09-21','DISA FSO','policy','The organization maintains temperature and humidity levels within the facility where the information system resides at organization-defined acceptable levels.','PE-14.1','Humidity controls are not required for general office areas where information system components may be in use and are only required where there are concentrations of information systems such as server farms, mainframes, etc. The organization being inspected/assessed must maintain temperature and where applicable humidity levels of for commercial grade information systems: 64.4 80.6 degrees F; 45% 60% Relative Humidity; Dew Point 41.9 59F; measured at the air intake inlet of the IT equipment casing; for other systems, levels within manufacturer specifications. DoD has defined the acceptable levels as for commercial grade information systems: 64.4 80.6 degrees F; 45% 60% Relative Humidity; Dew Point 41.9 59F; measured at the air intake inlet of the IT equipment casing; for other systems, levels within manufacturer specifications.','The organization conducting the inspection/assessment reviews temperature and humidity controls to validate that they are set within DoD specified guidelines. DoD has defined the acceptable levels as for commercial grade information systems: 64.4 80.6 degrees F; 45% 60% Relative Humidity; Dew Point 41.9 59F; measured at the air intake inlet of the IT equipment casing; for other systems, levels within manufacturer specifications.'), ('000972','draft','2009-09-21','DISA FSO','policy','The organization defines acceptable temperature and humidity levels to be maintained within the facility where the information system resides.','PE-14.2','DoD has defined the acceptable levels as for commercial grade information systems: 64.4 80.6 degrees F; 45% 60% Relative Humidity; Dew Point 41.9 59F; measured at the air intake inlet of the IT equipment casing; for other systems, levels within manufacturer specifications.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the acceptable levels as for commercial grade information systems: 64.4 80.6 degrees F; 45% 60% Relative Humidity; Dew Point 41.9 59F; measured at the air intake inlet of the IT equipment casing; for other systems, levels within manufacturer specifications.'), ('000973','draft','2009-09-21','DISA FSO','policy','The organization monitors temperature and humidity levels in accordance with organization-defined frequency.','PE-14.3','The organization being inspected/assessed will maintain an independent monitor device for temperature and humidity levels not located in the immediate vicinity of the controller continuously unless manufacturer specifications allow for a wide enough tolerance that control is not required. Records of monitoring must be maintained as an audit trail within the authorization lifecycle. DoD has defined the frequency as continuously unless manufacturer specifications allow for a wide enough tolerance that control is not required.','The organization conducting the inspection/assessment will visually observe the inspected organization\'s independent monitoring device, obtain and examine audit logs, and interview physical security/safety personnel to validate the inspected organization monitors temperature and humidity levels continuously unless manufacturer specifications allow for a wide enough tolerance that control is not required. DoD has defined the frequency as continuously unless manufacturer specifications allow for a wide enough tolerance that control is not required.'), ('000974','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for monitoring temperature and humidity levels.','PE-14.4','DoD has defined the frequency as continuously unless manufacturer specifications allow for a wide enough tolerance that control is not required.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as continuously unless manufacturer specifications allow for a wide enough tolerance that control is not required.'), ('000975','draft','2009-09-21','DISA FSO','policy','The organization employs automatic temperature and humidity controls in the facility to prevent fluctuations potentially harmful to the information system.','PE-14(1).1','Humidity controls are not required for general office areas where information system components may be in use and are only required where there are concentrations of information systems such as server farms, mainframes, etc. The organization being inspected/assessed must implement and maintain automatic temperature and humidity controls in the facility designed to prevent temperature and humidity fluctuations that would be potentially harmful to the information system.','The organization conducting the inspection/assessment conducts visual inspections and interviews personnel responsible for maintaining automatic temperature and humidity controls to validate the organization is employing automatic temperature and humidity controls for the information system to prevent fluctuations potentially harmful to the information system.'), ('000976','draft','2009-09-21','DISA FSO','policy','The organization employs temperature and humidity monitoring that provides an alarm or notification of changes potentially harmful to personnel or equipment.','PE-14(2).1','Humidity controls are not required for general office areas where information system components may be in use and are only required where there are concentrations of information systems such as server farms, mainframes, etc. The organization being inspected/assessed must implement and maintain automatic temperature and humidity controls in the facility and provides an alarm or notification of changes to either of these environmental conditions that are potentially harmful to personnel or equipment.','The organization conducting the inspection/assessment conducts visual inspections and interviews personnel responsible for maintaining automatic temperature and humidity controls to validate the inspected organization is employing automatic temperature and humidity controls that provide an alarm or notification of changes potentially harmful to personnel or equipment.'), ('000977','draft','2009-09-21','DISA FSO','policy','The organization protects the information system from damage resulting from water leakage by providing master shutoff or isolation valves that are accessible.','PE-15.1','The organization being inspected/assessed must provide master shutoff valves that are accessible to protect the information system from damage resulting from water leakage.','The organization conducting the inspection/assessment will inspect the master shutoff valves to ensure they are installed and accessible.'), ('000978','draft','2009-09-21','DISA FSO','policy','The organization protects the information system from damage resulting from water leakage by providing master shutoff or isolation valves that are working properly.','PE-15.2','The organization being inspected/assessed will ensure that master shutoff valves are working properly and have been inspected by the appropriate organization (e.g., fire marshal, department of public works).','The organization conducting the inspection/assessment will visually inspect master shutoff valve inspection documentation (e.g., inspection form, tag attached to valve).'), ('000979','draft','2009-09-21','DISA FSO','policy','Key personnel have knowledge of the master water shutoff or isolation valves.','PE-15.3','The organization being inspected/assessed will identify and document key personnel and will provide training on the location and procedures for use of master shutoff valves.','The organization conducting the inspection/assessment obtains and examines list of key personnel with knowledge of location and activation procedures for master shutoff valves and any other relevant documents or records. Interview key personnel from the list to determine if identified key personnel within the organization have knowledge of the master shutoff valves.'), ('000980','draft','2009-09-21','DISA FSO','policy','The organization employs mechanisms that, without the need for manual intervention, protect the information system from water damage in the event of a water leak.',NULL,NULL,NULL), ('000981','draft','2009-09-21','DISA FSO','policy','The organization authorizes organization-defined types of information system components entering and exiting the facility.','PE-16.1','The organization being inspected/assessed authorizes and maintains authorization records of all system components entering and exiting the facility. DoD has defined the types of information system components as all system components.','The organization conducting the inspection/assessment obtains and examines records authorizing all system components entering and exiting the facility. DoD has defined the types of information system components as all system components.'), ('000982','draft','2009-09-21','DISA FSO','policy','The organization monitors organization-defined types of information system components entering and exiting the facility.','PE-16.2','The organization being inspected/assessed monitors all system components entering and exiting the facility. DoD has defined the types of information system components as all system components.','The organization conducting the inspection/assessment obtains and examines records monitoring all system components entering and exiting the facility. DoD has defined the types of information system components as all system components.'), ('000983','draft','2009-09-21','DISA FSO','policy','The organization controls organization-defined types of information system components entering and exiting the facility.','PE-16.3','The organization being inspected/assessed:\n1. Documents in their physical and environmental protection plan (PE-1) controls for all system components entering and exiting the facility.\n2. Implements documented controls for system components entering and exiting the facility. DoD has defined the types of information system components as all system components.','The organization conducting the inspection/assessment obtains and examines the physical and environmental protection plan to determine if controls have been documented for all system components entering and exiting the facility and visually inspects the controls (e.g., logs, scans, etc.) to ensure implementation. DoD has defined the types of information system components as all system components.'), ('000984','draft','2009-09-21','DISA FSO','policy','The organization maintains records of information system components entering and exiting the facility.','PE-16.4','The organization being inspected/assessed will maintain records of all information system components entering and exiting the facility. If the organization is following General Records Schedule (GRS) 18, Section 12 they are automatically compliant.','The organization conducting the inspection/assessment obtains and examines records of physical entry and exit events to the facility. The purpose of the reviews is to ensure the organization is maintaining detailed and accurate records of information system components that enter and exit the facility. If the organization is following GRS 18, Section 12 they are automatically compliant.'), ('000985','draft','2009-09-21','DISA FSO','policy','The organization employs organization-defined security controls at alternate work sites.','PE-17.1','The organization being inspected/assessed implements security controls defined in PE-17, CCI 2975 at alternate work sites. Alternate work sites are further defined in the definitions associated with this implementation guide. Organizational telework policies should be used to address alternate work sites that are private residences. Comment: For classified information see DoD 5200.01 Vol 3 Manual','The organization conducting the inspection/assessment obtains and examines the alternate work site policy of the organization being inspected/assessed to ensure the organization implements security controls defined in PE-17, CCI 2975 at alternate work sites.'), ('000986','draft','2009-09-21','DISA FSO','policy','The organization defines management, operational, and technical information system security controls to be employed at alternate work sites.',NULL,NULL,NULL), ('000987','draft','2009-09-21','DISA FSO','policy','The organization assesses as feasible, the effectiveness of security controls at alternate work sites.','PE-17.3','The organization being inspected/assessed must implement procedures to assess, when feasible, the effectiveness of the documented alternate work site security controls. The organization must document results of conducted assessments as part of an audit trail. Alternate work sites are further defined in the definitions associated with this implementation guide.','The organization conducting the inspection/assessment obtains and examines:\n1. The procedures for assessing the effectiveness of alternate work site security controls.\n2. The audit records of assessments they have conducted of security controls effectiveness for alternate work sites.'), ('000988','draft','2009-09-21','DISA FSO','policy','The organization provides a means for employees to communicate with information security personnel in case of security incidents or problems.','PE-17.4','The organization being inspected/assessed must disseminate current contact information for appropriate security personnel to all employees; for example, telephone or e-mail.','The organization conducting the inspection/assessment obtains and examines contact information for appropriate security personnel to ensure its accuracy and dissemination.'), ('000989','draft','2009-09-21','DISA FSO','policy','The organization positions information system components within the facility to minimize potential damage from organization-defined physical and environmental hazards.','PE-18.1','The organization being inspected/assessed positions information system components within the facility to minimize potential damage from physical and environmental hazards defined in PE-18, CCI 2976 specific to the location of the information system as documented in PE-1, CCI 000904.','The organization conducting the inspection/assessment reviews the physical and environmental protection policy developed in PE-1, CCI 000904 to validate that the systems have been positioned according to the environmental policy.'), ('000990','draft','2009-09-21','DISA FSO','policy','The organization positions information system components within the facility to minimize potential damage from environmental hazards.',NULL,NULL,NULL), ('000991','draft','2009-09-21','DISA FSO','policy','The organization positions information system components within the facility to minimize the opportunity for unauthorized access.','PE-18.2','The organization being inspected/assessed positions information system components within the facility to minimize the opportunity for unauthorized access specific to the location of the information system as documented in PE-1, CCI 00904.','The organization conducting the inspection/assessment reviews the physical and environmental protection policy developed in PE-1, CCI 000904 to validate that the systems have been positioned according to the environmental policy.'), ('000992','draft','2009-09-21','DISA FSO','policy','The organization plans the location or site of the facility where the information system resides with regard to physical and environmental hazards, and for existing facilities, considers the physical and environmental hazards in its risk mitigation strategy.',NULL,NULL,NULL), ('000993','draft','2009-09-21','DISA FSO','policy','The organization protects the information system from information leakage due to electromagnetic signals emanations.','PE-19.1','The organization being inspected/assessed will obtain a TEMPEST countermeasure review and implement the required countermeasures in order to protect the information system from information leakage due to electromagnetic signals emanations.','The organization conducting the inspection/assessment obtains and examines the TEMPEST countermeasures review and inspects the information system to ensure those countermeasures have been implemented.'), ('000994','draft','2009-09-21','DISA FSO','policy','The organization ensures that information system components, associated data communications, and networks are protected in accordance with national emissions and TEMPEST policies and procedures based on the security category or classification of the information.','PE-19(1).1','The organization being inspected/assessed will obtain a TEMPEST countermeasure review and implement the required countermeasures in order to protect the information system from information leakage due to electromagnetic signals emanations.','The organization conducting the inspection/assessment obtains and examines the TEMPEST countermeasures review and inspects the information system to ensure those countermeasures have been implemented.'), ('000995','draft','2009-09-21','DISA FSO','policy','The organization develops and documents a media protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','MP-1.1','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.'), ('000996','draft','2009-09-21','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles a media protection policy.','MP-1.2','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures and is disseminated to all users via http://www.dtic.mil/whs/directives/corres/ins1.html.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.'), ('000997','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current media protection policy in accordance with organization-defined frequency.','MP-1.6','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.'), ('000998','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for reviewing and updating the current media protection policy.','MP-1.7','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('000999','draft','2009-09-21','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the media protection policy and associated media protection controls.','MP-1.4','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.'), ('001000','draft','2009-09-21','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the media protection policy and associated media protection controls.','MP-1.5','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures and is disseminated to all users via http://www.dtic.mil/whs/directives/corres/ins1.html.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.'), ('001001','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current media protection procedures in accordance with organization-defined frequency.','MP-1.8','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.','DoDI 5200.01 and DoDM 5200.01 Vol. 1-4 meet the DoD requirements for media protection policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 5200.01 and DoDM 5200.01 Vol. 1-4.'), ('001002','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for reviewing and updating the current media protection procedures.','MP-1.9','DoD has defined the frequency as reviewed annually as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually as appropriate.'), ('001003','draft','2009-09-21','DISA FSO','policy','The organization restricts access to organization-defined types of digital and/or non-digital media to organization-defined personnel or roles.','MP-2.1','The organization being inspected/assessed restricts access to all types of digital and/or non-digital media containing information not cleared for public release to the personnel or roles defined in MP-2, CCI 1005. DoD has defined the types of digital and non-digital media as all types of digital and/or non-digital media containing information not cleared for public release.','The organization conducting the inspection/assessment interviews organizational personnel with information system media protection responsibilities to ensure the organization being inspected/assessed restricts access to all types of digital and/or non-digital media containing information not cleared for public release to the personnel or roles defined in MP-2, CCI 1005. DoD has defined the types of digital and non-digital media as all types of digital and/or non-digital media containing information not cleared for public release. '), ('001004','draft','2009-09-21','DISA FSO','policy','The organization defines types of digital and/or non-digital media for which the organization restricts access.','MP-2.2','DoD has defined the types of digital and non-digital media as all types of digital and/or non-digital media containing information not cleared for public release. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the types of digital and non-digital media as all types of digital and/or non-digital media containing information not cleared for public release. '), ('001005','draft','2009-09-21','DISA FSO','policy','The organization defines personnel or roles from which to restrict access to organization-defined types of digital and/or non-digital media.','MP-2.3','The organization being inspected/assessed will define and document personnel or roles to restrict access to media IAW DoD 5200.01-M, CTO 10-133, and CTO 08-001. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level, but personnel must be identified IAW DoD 5200.01-M, CTO 10-133, and CTO 08-001.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to restrict access to media to ensure the access is granted IAW DoD 5200.01-M, CTO 10-133, and CTO 08-001. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level, but personnel must be identified IAW DoD 5200.01-M, CTO 10-133, and CTO 08-001.'), ('001006','draft','2009-09-21','DISA FSO','policy','The organization defines security measures for restricting access to media.',NULL,NULL,NULL), ('001007','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to restrict access to media storage areas.','MP-4(2).1','The organization being inspected/assessed implements automated mechanisms to restrict access to media storage areas.','The organization conducting the inspection/assessment examines the information system\'s environment to ensure the organization being inspected/assessed implements automated mechanisms to restrict access to media storage areas.'), ('001008','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to audit access attempts and access granted to media storage areas.','MP-4(2).2','The organization being inspected/assessed implements automated mechanisms to audit access attempts and access granted to media storage areas.','The organization conducting the inspection/assessment examines the information system\'s environment to ensure the organization being inspected/assessed implements automated mechanisms to audit access attempts and access granted to media storage areas.'), ('001009','draft','2009-09-21','DISA FSO','technical','The information system uses cryptographic mechanisms to protect and restrict access to information on portable digital media.',NULL,NULL,NULL), ('001010','draft','2009-09-21','DISA FSO','policy','The organization marks information system media indicating the distribution limitations, handling caveats, and applicable security markings (if any) of the information.','MP-3.1','The organization being inspected/assessed marks information system media and information system output IAW DoDM 5200.01 Vol. 1-4.','The organization conducting the inspection/assessment obtains a sampling of information system media and information system output to verify that it is marked in compliance with DoDM 5200.01 Vol. 1-4.'), ('001011','draft','2009-09-21','DISA FSO','policy','The organization exempts organization-defined types of information system media from marking as long as the media remain within organization-defined controlled areas.','MP-3.2','All information system media must be marked in all areas IAW DoDM 5200.01 Vol. 1-4.','The organization conducting the inspection/assessment examines information system media to ensure it is marked IAW DoDM 5200.01 Vol. 1-4.'), ('001012','draft','2009-09-21','DISA FSO','policy','The organization defines types of information system media to exempt from marking as long as the media remain within organization-defined controlled areas.','MP-3.3','DoD has defined the list of information system media as nothing unless otherwise exempted by DoDI 5200.01 and DoDM 5200.01 Vol 1-4.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the list of information system media as nothing unless otherwise exempted by DoDI 5200.01 and DoDM 5200.01 Vol 1-4'), ('001013','draft','2009-09-21','DISA FSO','policy','The organization defines controlled areas where organization-defined types of information system media are exempt from being marked.','MP-3.4','DoD has defined the controlled areas as all areas unless otherwise exempted by DoDI 5200.01 and DoDM 5200.01 Vol 1-4','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the controlled areas as all areas unless otherwise exempted by DoDI 5200.01 and DoDM 5200.01 Vol 1-4'), ('001014','draft','2009-09-21','DISA FSO','policy','The organization physically controls and securely stores organization-defined types of digital and/or non-digital media within organization-defined controlled areas.','MP-4.1','The organization being inspected/assessed physically controls and securely stores all digital and non-digital media containing sensitive, controlled, and/or classified information within areas approved for processing or storing data IAW the sensitivity and/or classification level of the information contained on/within the media. DoD has defined the digital and non-digital media types as all digital and non-digital media containing sensitive, controlled, and/or classified information. DoD has defined the controlled areas as areas approved for processing or storing data IAW the sensitivity and/or classification level of the information contained on/within the media.','The organization conducting the inspection/assessment obtains and examines the list of all digital and non-digital media containing sensitive, controlled, and/or classified information within areas approved for processing or storing data IAW the sensitivity and/or classification level of the information contained on/within the media to ensure that physical controls are in place and that it is securely stored as defined in PE-3. DoD has defined the digital and non-digital media types as all digital and non-digital media containing sensitive, controlled, and/or classified information. DoD has defined the controlled areas as areas approved for processing or storing data IAW the sensitivity and/or classification level of the information contained on/within the media.'), ('001015','draft','2009-09-21','DISA FSO','policy','The organization defines types of digital and/or non-digital media to physically control and securely store within organization-defined controlled areas.','MP-4.2','DoD has defined the digital and non-digital media types as all digital and non-digital media containing sensitive, controlled, and/or classified information.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the digital and non-digital media types as all digital and non-digital media containing sensitive, controlled, and/or classified information.'), ('001016','draft','2009-09-21','DISA FSO','policy','The organization defines controlled areas where organization-defined types of digital and/or non-digital media are physically controlled and securely stored.','MP-4.3','DoD has defined the controlled areas as areas approved for processing or storing data IAW the sensitivity and/or classification level of the information contained on/within the media.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the controlled areas as areas approved for processing or storing data IAW the sensitivity and/or classification level of the information contained on/within the media.'), ('001017','draft','2009-09-21','DISA FSO','policy','The organization defines security measures for securing media storage.',NULL,NULL,NULL), ('001018','draft','2009-09-21','DISA FSO','policy','The organization protects information system media until the media are destroyed or sanitized using approved equipment, techniques, and procedures.','MP-4.4','The organization being inspected/assessed protects information system media IAW DoDM 5200.01 M Vol. 1-4.','The organization conducting the inspection/assessment obtains and examines the list of media and verifies it is being stored and protected IAW DoDM 5200.01 M Vol. 1-4.'), ('001019','draft','2009-09-21','DISA FSO','technical','The organization employs cryptographic mechanisms to protect information in storage.',NULL,NULL,NULL), ('001020','draft','2009-09-21','DISA FSO','policy','The organization protects and controls organization-defined types of information system media during transport outside of controlled areas using organization-defined security safeguards.','MP-5.1','The organization being inspected/assessed protects and controls information system media during transport outside of controlled areas using security measures defined in DoDM 5200.01 M Vol. 1-4 and DoDD 5015.2.','The organization conducting the inspection/assessment obtains and examines the organization\'s records management policy or process to ensure appropriate protection of information according to its classification or designation during transport outside of controlled areas, IAW security measures defined in DoDM 5200.01 M Vol. 1-4 and DoDD 5015.2.'), ('001021','draft','2009-09-21','DISA FSO','policy','The organization defines types of information system media protected and controlled during transport outside of controlled areas.','MP-5.2','DoD has defined the types of information system media as all digital and non-digital media containing sensitive, controlled, and/or classified information.','DoD has defined the types of information system media as all digital and non-digital media containing sensitive, controlled, and/or classified information. The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.'), ('001022','draft','2009-09-21','DISA FSO','policy','The organization defines security safeguards to be used to protect and control organization-defined types of information system media during transport outside of controlled areas.','MP-5.3','DoD has defined the security safeguards as DoDI 5200.1R and other organizationally defined security safeguards.','DoD has defined the security safeguards as DoDI 5200.1R and other organizationally defined security safeguards. The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.'), ('001023','draft','2009-09-21','DISA FSO','policy','The organization maintains accountability for information system media during transport outside of controlled areas.','MP-5.4','The organization being inspected/assessed ensures the organization defined security measures (MP-2) includes method of accountability for information system media during transport outside of controlled areas, IAW DoDM 5200.01 M Vol. 1-4 and DoDD 5015.2.','The organization conducting the inspection/assessment obtains and examines the list of organization defined security measures (MP-2) to ensure method of accountability for information system media during transport outside of controlled areas has been identified.'), ('001024','draft','2009-09-21','DISA FSO','policy','The organization restricts the activities associated with the transport of information system media to authorized personnel.','MP-5.6','The organization being inspected/assessed ensures the organization defined security measures (MP-2) includes a requirement to develop and maintain a list of personnel authorized to transport information system media outside of controlled areas, IAW DoDM 5200.01 M Vol. 1-4 and DoDD 5015.2. Develop and maintain the list of personnel authorized to transport information system media outside of controlled areas.','The organization conducting the inspection/assessment obtains and examines the list of personnel authorized to transport information system media outside of controlled areas. Organizational personnel with information system media transport responsibilities and security management personnel are to be interviewed. The purpose of the reviews and reviews is to determine if the organization has established restrictions associated with the transport of information system media to authorized personnel only.'), ('001025','draft','2009-09-21','DISA FSO','policy','The organization documents activities associated with the transport of information system media.','MP-5.5','The organization being inspected/assessed documents activities associated with the transport of information system media.','The organization conducting the inspection/assessment obtains and examines the documented activities to ensure the organization being inspected/assessed documents activities associated with the transport of information system media.'), ('001026','draft','2009-09-21','DISA FSO','policy','The organization employs an identified custodian during transport of information system media outside of controlled areas.','MP-5(3).1','The organization being inspected/assessed identifies and documents a custodian that is at all times responsible for the transport of the all information system media, from pick-up to final delivery and receipt acknowledgement.','The organization conducting the inspection/assessment obtains and examines documentation identifying the custodian that is at all times responsible for the transport of the all information system media, from pick-up to final delivery and receipt acknowledgement.'), ('001027','draft','2009-09-21','DISA FSO','policy','The information system implements cryptographic mechanisms to protect the confidentiality and integrity of information stored on digital media during transport outside of controlled areas.','MP-5(4).1','The organization being inspected/assessed shall document within their Security Plan, and implement, FIPS 140-2 or other NSA approved cryptographic mechanisms to protect the confidentiality and integrity of information stored on digital media during transport outside of controlled areas.','The organization conducting the inspection/assessment obtains and examines the Security Plan to ensure the organization being inspected has identified FIPS 140-2 or other NSA approved cryptographic mechanisms to protect the confidentiality and integrity of information stored on digital media during transport outside of controlled areas.'), ('001028','draft','2009-09-21','DISA FSO','policy','The organization sanitizes organization-defined information system media prior to disposal, release out of organizational control, or release for reuse using organization-defined sanitization techniques and procedures in accordance with applicable federal and organizational standards and policies.','MP-6.1','The organization being inspected/assessed sanitizes all media prior to disposal, release out of organizational control, or release for reuse IAW DoDM 5200.01 Vol. 1-4 using techniques and procedures IAW NIST SP 800-88. DoD has defined the sanitization techniques as techniques and procedures IAW NIST SP 800-88. DoD has defined the information system media as all media.','The organization conducting the inspection/assessment obtains and examines media sanitization records, audit records, any other relevant documents or records, and sanitization tools to ensure sanitization is in compliance with DoDM 5200.01 Vol. 1-4 and uses techniques and procedures IAW NIST SP 800-88. The objective of the review is to verify the organization is sanitizing its digital and non-digital information system media prior to disposal, release for reuse, or release out of the organizational control. DoD has defined the sanitization techniques as techniques and procedures IAW NIST SP 800-88. DoD has defined the information system media as all media.'), ('001029','draft','2009-09-21','DISA FSO','policy','The organization tracks, documents, and verifies media sanitization and disposal actions.',NULL,NULL,NULL), ('001030','draft','2009-09-21','DISA FSO','policy','The organization tests sanitization equipment and procedures in accordance with the organization-defined frequency to verify that the intended sanitization is being achieved.','MP-6(2).1','The organization being inspected/assessed shall document plans to implement their sanitization equipment and procedures every 180 days to verify correct performance. DoD has defined the frequency as every 180 days.','The organization conducting the inspection/assessment obtains and examines documented test plans and evidence of past tests to ensure that tests are conducted every 180 days to verify correct performance of sanitization equipment and procedures. DoD has defined the frequency as every 180 days.'), ('001031','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for testing sanitization equipment and procedures to verify that the intended sanitization is being achieved.','MP-6(2).2','DoD has defined the frequency as every 180 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 180 days.'), ('001032','draft','2009-09-21','DISA FSO','policy','The organization applies nondestructive sanitization techniques to portable storage devices prior to connecting such devices to the information system in accordance with organization-defined circumstances requiring sanitization of portable storage devices.','MP-6(3).1','The organization being inspected/assessed documents and implements plans to apply nondestructive sanitization techniques to portable storage devices prior to connecting such devices to the information system when such devices are first purchased from the manufacturer or vendor prior to initial use, when being considered for reuse, or when the organization loses a positive chain of custody for the device. Media obtained from unknown sources shall not be sanitized and reused. Portable storage devices include but are not limited to thumb drives, flash drives, and external storage devices. DoD has defined the circumstances as when such devices are first purchased from the manufacturer or vendor prior to initial use, when being considered for reuse, or when the organization loses a positive chain of custody for the device. Media obtained from unknown sources shall not be sanitized and reused.','The organization conducting the inspection/assessment obtains and examines media sanitization records, audit records, and any other relevant documents or records. The objective of the reviews is to confirm the organization is in compliance with the list of defined circumstances requiring the sanitization of portable storage devices prior to connecting such devices to the information system.'), ('001033','draft','2009-09-21','DISA FSO','policy','The organization defines circumstances requiring sanitization of portable storage devices prior to connecting such devices to the information system.','MP-6(3).2','DoD has defined the list circumstances as when such devices are first purchased from the manufacturer or vendor prior to initial use, when being considered for reuse, or when the organization loses a positive chain of custody for the device. Media obtained from unknown sources shall not be sanitized and reused.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the circumstances as when such devices are first purchased from the manufacturer or vendor prior to initial use, when being considered for reuse, or when the organization loses a positive chain of custody for the device. Media obtained from unknown sources shall not be sanitized and reused.'), ('001034','draft','2009-09-21','DISA FSO','policy','The organization sanitizes information system media containing Controlled Unclassified Information (CUI) or other sensitive information in accordance with applicable organizational and/or federal standards and policies.',NULL,NULL,NULL), ('001035','draft','2009-09-21','DISA FSO','policy','The organization sanitizes information system media containing classified information in accordance with NSA standards and policies.',NULL,NULL,NULL), ('001036','draft','2009-09-21','DISA FSO','policy','The organization destroys information system media that cannot be sanitized.',NULL,NULL,NULL), ('001037','draft','2009-09-21','DISA FSO','policy','The organization develops and documents a risk assessment policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','RA-1.3','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.'), ('001038','draft','2009-09-21','DISA FSO','policy','The organization disseminates a risk assessment policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance to organization-defined personnel or roles.','RA-1.4','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures and is disseminated via the NIST publications site: http://csrc.nist.gov/publications/PubsSPs.html\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.'), ('001039','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current risk assessment policy in accordance with organization-defined frequency.','RA-1.7','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.'), ('001040','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review and update the current risk assessment policy.','RA-1.8','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('001041','draft','2009-09-21','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls.','RA-1.5','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.'), ('001042','draft','2009-09-21','DISA FSO','policy','The organization disseminates risk assessment procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls to organization-defined personnel or roles.','RA-1.6','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures and is disseminated via the NIST publications site: http://csrc.nist.gov/publications/PubsSPs.html\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.'), ('001043','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the current risk assessment procedures in accordance with organization-defined frequency.','RA-1.9','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','NIST SP 800-30 meets the DoD requirements for risk assessment policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.'), ('001044','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency with which to review and update the current risk assessment procedures.','RA-1.10','DoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.','DoD Components are automatically compliant with this CCI because they are covered by the DoDi 8510.01 which adopts NIST SP 800-30 as the DoD risk assessment policy.\n\nDoD has defined the frequency as annually - updated as appropriate.'), ('001045','draft','2009-09-21','DISA FSO','policy','The organization categorizes information and the information system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.','RA-2.1','The organization being inspected/assessed documents and implements a process to categorize information and the information system in accordance with CNSSI 1253 and applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. ','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed categorizes information and the information system in accordance with CNSSI 1253 and applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. '), ('001046','draft','2009-09-21','DISA FSO','policy','The organization documents the security categorization results (including supporting rationale) in the security plan for the information system.','RA-2.2','The organization being inspected/assessed documents the security categorization results (including supporting rationale) in the security plan for the information system IAW CNSSI 1253. ','The organization conducting the inspection/assessment obtains and examines the documented security categorization results to ensure the organization being inspected/assessed documents the security categorization results (including supporting rationale) in the security plan for the information system IAW CNSSI 1253.'), ('001047','draft','2009-09-21','DISA FSO','policy','The organization ensures the security categorization decision is reviewed and approved by the authorizing official or authorizing official designated representative.','RA-2.3','The organization being inspected/assessed documents and implements a process IAW CNSSI 1253 to ensure the security categorization decision is reviewed and approved by the authorizing official or authorizing official designated representative.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures the security categorization decision is reviewed and approved by the authorizing official or authorizing official designated representative.'), ('001048','draft','2009-09-21','DISA FSO','policy','The organization conducts an assessment of risk of the information system and the information it processes, stores, or transmits that includes the likelihood and magnitude of harm from the unauthorized access, use, disclosure, disruption, modification, or destruction.','RA-3.1','The organization being inspected/assessed conducts an assessment of risk of the information system and the information it processes, stores, or transmits that includes the likelihood and magnitude of harm from the unauthorized access, use, disclosure, disruption, modification, or destruction. The organization must maintain an audit trail of assessments.','The organization conducting the inspection/assessment obtains and examines the audit trail of assessments to ensure the organization being inspected/assessed conducts an assessment of risk of the information system and the information it processes, stores, or transmits that includes the likelihood and magnitude of harm from the unauthorized access, use, disclosure, disruption, modification, or destruction.'), ('001049','draft','2009-09-21','DISA FSO','policy','The organization documents risk assessment results in the organization-defined document.','RA-3.2','The organization being inspected/assessed documents risk assessment results in the risk assessment report. DoD has defined the document as a risk assessment report.','The organization conducting the inspection/assessment obtains and examines the risk assessment report to ensure the organization being inspected/assessed documents risk assessment results in the risk assessment report. DoD has defined the document as a risk assessment report.'), ('001050','draft','2009-09-21','DISA FSO','policy','The organization reviews risk assessment results on an organization-defined frequency.','RA-3.4','The organization being inspected/assessed reviews risk assessment results upon re-accreditation. The organization must maintain a record of reviews. DoD has defined the frequency as upon re-accreditation. ','The organization conducting the inspection/assessment obtains and examines the record of reviews to ensure the organization being inspected/assessed reviews risk assessment results upon re-accreditation. DoD has defined the frequency as upon re-accreditation. '), ('001051','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for reviewing risk assessment results.','RA-3.5','DoD has defined the frequency as upon re-accreditation. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as upon re-accreditation. '), ('001052','draft','2009-09-21','DISA FSO','policy','The organization updates the risk assessment on an organization-defined frequency or whenever there are significant changes to the information system or environment of operation (including the identification of new threats and vulnerabilities), or other conditions that may impact the security state of the system.','RA-3.8','The organization being inspected/assessed updates the risk assessment upon re-accreditation or whenever there are significant changes to the information system or environment of operation (including the identification of new threats and vulnerabilities), or other conditions that may impact the security state of the system.\n\nDoD has defined the frequency as upon re-accreditation.','The organization conducting the inspection/assessment obtains and examines historical versions of the risk assessment as well as records of changes to the system to ensure the organization being inspected/assessed updates the risk assessment upon re-accreditation or whenever there are significant changes to the information system or environment of operation (including the identification of new threats and vulnerabilities), or other conditions that may impact the security state of the system. DoD has defined the frequency as upon re-accreditation. '), ('001053','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for updating the risk assessment.','RA-3.9','DoD has defined the frequency as upon re-accreditation. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as upon re-accreditation. '), ('001054','draft','2009-09-21','DISA FSO','policy','The organization scans for vulnerabilities in the information system and hosted applications on an organization-defined frequency.','RA-5.1','The organization being inspected/assessed will define, document, and implement procedures for vulnerability scans of the information system and hosted applications; and scan for vulnerabilities in the information system and hosted applications every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs). This control is not targeted at security control compliance scanning. DoD has defined the frequency as every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization conducting the inspection/assessment obtains and examines the organization\'s vulnerability scanning procedures and results for the 90 days preceding the inspection/assessment. If the system in question has not been operational for more than 90 days the organization will provide all available scan(s).'), ('001055','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for scanning for vulnerabilities in the information system and hosted applications.','RA-5.2','DoD has defined the frequency as every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).'), ('001056','draft','2009-09-21','DISA FSO','policy','The organization scans for vulnerabilities in the information system and hosted applications when new vulnerabilities potentially affecting the system/applications are identified and reported.','RA-5.3','The organization being inspected/assessed will conduct vulnerability scans of the information system and hosted applications when new vulnerabilities potentially affecting the system/applications are identified and reported via authoritative sources (e.g., IAVM, CTO, DTM, STIG, product vendor).','The organization conducting the inspection/assessment obtains and examines the organization\'s vulnerability scanning procedures and results in order to validate the organization conducts vulnerability scans of its Information System (IS) and hosted applications when new vulnerabilities potentially affecting the IS and/or applications are identified and reported.'), ('001057','draft','2009-09-21','DISA FSO','policy','The organization employs vulnerability scanning tools and techniques that facilitate interoperability among tools and automate parts of the vulnerability management process by using standards for: enumerating platforms, software flaws, and improper configurations; formatting checklists and test procedures; and measuring vulnerability impact.','RA-5.6','The organization being inspected/assessed employs the DoD Enterprise scanning tool.','The organization conducting the inspection/assessment obtains and examines the software list or vulnerability scanning procedures to ensure the organization being inspected/assessed employs the DoD Enterprise scanning tool.'), ('001058','draft','2009-09-21','DISA FSO','policy','The organization analyzes vulnerability scan reports and results from security control assessments.','RA-5.7','The organization being inspected/assessed analyzes vulnerability scan reports and security control assessment results with the intent of identifying legitimate vulnerabilities and the relationship between vulnerabilities and security controls.','The organization conducting the inspection/assessment will interview organizational personnel with security control assessment and vulnerability scanning responsibilities. The purpose of the reviews and interviews is to validate the organization is conducting an analysis of the vulnerability scan reports and results from the security control assessments.'), ('001059','draft','2009-09-21','DISA FSO','policy','The organization remediates legitimate vulnerabilities in organization-defined response times in accordance with an organizational assessment risk.','RA-5.8','The organization being inspected/assessed takes corrective actions as appropriate on legitimate vulnerabilities identified in RA-5, CCI 001058 IAW an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs). Audit records of actions must be maintained IAW applicable DoD, CYBERCOM, and/or component policies. DoD has defined the response times as IAW an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization conducting the inspection/assessment obtains and examines audit records to validate the organization is taking action to remediate legitimate vulnerabilities within the required response times (IAW an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs). The organization conducting the inspection/assessment may conduct independent vulnerability scans to compare those scan results with audit records of remediation actions. DoD has defined the response times as IAW an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).'), ('001060','draft','2009-09-21','DISA FSO','policy','The organization defines response times for remediating legitimate vulnerabilities in accordance with an organization assessment of risk.','RA-5.9','DoD has defined the response times as IAW an authoritative source (e.g. IAVM, CTOs, DTMs).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the response times as IAW an authoritative source (e.g. IAVM, CTOs, DTMs).'), ('001061','draft','2009-09-21','DISA FSO','policy','The organization shares information obtained from the vulnerability scanning process and security control assessments with organization-defined personnel or roles to help eliminate similar vulnerabilities in other information systems (i.e., systemic weaknesses or deficiencies).','RA-5.10','The organization being inspected/assessed documents and implements a process to share information obtained from the vulnerability scanning process and security control assessments with at a minimum, the ISSM and ISSO to help eliminate similar vulnerabilities in other information systems (i.e., systemic weaknesses or deficiencies). DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed shares information obtained from the vulnerability scanning process and security control assessments with at a minimum, the ISSM and ISSO to help eliminate similar vulnerabilities in other information systems (i.e., systemic weaknesses or deficiencies). DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('001062','draft','2009-09-21','DISA FSO','policy','The organization employs vulnerability scanning tools that include the capability to readily update the information system vulnerabilities to be scanned.','RA-5(1).1','The organization being inspected/assessed will employ scanning tools that maintain currency with industry standard information system vulnerabilities to ensure that scanning activities are conducted with the most up to date list of known vulnerabilities to include USCYBERCOM issued IAVMs.\n\nDoD has provided an enterprise scanning tool that fully meets this requirement. Organizations that choose not to use the enterprise scanning tool must identify which scanning tool they are using and ensure that it meets these requirements.','The organization conducting the inspection/assessment will:\n1. If the inspected organization is using the DoD provided enterprise scanning tool, compliance with this control is complete.\n2. Validate the identified tool in use by the inspected organization is able to maintain current up to date information system vulnerability data.'), ('001063','draft','2009-09-21','DISA FSO','policy','The organization updates the information system vulnerabilities scanned on an organization-defined frequency, prior to a new scan, and/or when new vulnerabilities are identified and reported.','RA-5(2).1','The organization being inspected/assessed will update the list of information system vulnerabilities scanned for prior to running scans. The organization must maintain a record of scans including the list of vulnerabilities scanned for. DoD has defined the frequency as prior to running scans.','The organization conducting the inspection/assessment obtains and examines the record of scans to ensure the latest most up to date scanning policies are present.'), ('001064','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for updating the information system vulnerabilities scanned.','RA-5(2).2','DoD has defined the frequency as prior to running scans.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as prior to running scans.'), ('001065','draft','2009-09-21','DISA FSO','policy','The organization employs vulnerability scanning procedures that can demonstrate the breadth of coverage (i.e., information system components scanned).',NULL,NULL,NULL), ('001066','draft','2009-09-21','DISA FSO','policy','The organization determines what information about the information system is discoverable by adversaries.','RA-5(4).1','If the organization being inspected/assessed is conducting vulnerability scans IAW base control RA-5, they are compliant with this CCI.','The organization conducting the inspection/assessment will review results of validation of base control RA-5, if the inspected organization is compliant with the requirements of RA-5, they are compliant with this CCI.'), ('001067','draft','2009-09-21','DISA FSO','technical','The information system implements privileged access authorization to organization-identified information system components for selected organization-defined vulnerability scanning activities.','RA-5(5).1','The organization being inspected/assessed configures the information system to implement privileged access authorization to all information systems and infrastructure components for selected vulnerability scanning activities defined in RA-5 (5), CCI 2906. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1067. DoD has defined the information system components as all information systems and infrastructure components.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement privileged access authorization to all information systems and infrastructure components for selected vulnerability scanning activities defined in RA-5 (5), CCI 2906. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1067. DoD has defined the information system components as all information systems and infrastructure components.'), ('001068','draft','2009-09-21','DISA FSO','policy','The organization employs automated mechanisms to compare the results of vulnerability scans over time to determine trends in information system vulnerabilities.','RA-5(6).1','The organization being inspected/assessed must configure and implement automated mechanisms which provide the capability to compare the results of vulnerability scans over time to determine trends in information system vulnerabilities.','The organization conducting the inspection/assessment validates the organization is employing automated mechanisms to compare the results of vulnerability scans over time to determine trends in information system vulnerabilities.'), ('001069','draft','2009-09-21','DISA FSO','technical','The organization employs automated mechanisms to detect the presence of unauthorized software on organizational information systems and notify designated organizational officials in accordance with the organization-defined frequency.',NULL,NULL,NULL), ('001070','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for employing automated mechanisms to detect the presence of unauthorized software on organizational information systems and notify designated organizational officials.',NULL,NULL,NULL), ('001071','draft','2009-09-21','DISA FSO','policy','The organization reviews historic audit logs to determine if a vulnerability identified in the information system has been previously exploited.','RA-5(8).1','The organization being inspected/assessed reviews audit logs and determines if the identified vulnerability has been previously exploited within the information system. Any findings must be documented and acted upon IAW IR-1.','The organization conducting the inspection/assessment obtains and examines the audit trail to determine if the organization has documented any previously identified exploited vulnerabilities.'), ('001072','draft','2009-09-21','DISA FSO','policy','The organization employs an independent penetration agent or penetration team to conduct a vulnerability analysis on the information system.',NULL,NULL,NULL), ('001073','draft','2009-09-21','DISA FSO','policy','The organization employs an independent penetration agent or penetration team to perform penetration testing on the information system based on the vulnerability analysis to determine the exploitability of identified vulnerabilities.',NULL,NULL,NULL), ('001074','draft','2009-09-21','DISA FSO','policy','The organization develops a system and communications protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SC-1.3','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for developing a system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for developing a system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.'), ('001075','draft','2009-09-21','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles the system and communications protection policy.','SC-1.4','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for disseminating the system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for disseminating the system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.'), ('001076','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the system and communications protection policy in accordance with organization-defined frequency.','SC-1.7','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for reviewing and updating the system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for reviewing and updating the system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.'), ('001077','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency for reviewing and updating the system and communications protection policy.','SC-1.8','DoD has defined the frequency as every 5 years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 5 years.'), ('001078','draft','2009-09-21','DISA FSO','policy','The organization develops system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.','SC-1.5','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for developing system and communications protection procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for developing system and communications protection procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.'), ('001079','draft','2009-09-21','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles the procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.','SC-1.6','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for disseminating the procedures to facilitate the implementation of the system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.','DoDI 8523.01 \"Communications Security (COMSEC)\" meets the DoD requirement for disseminating the procedures to facilitate the implementation of the system and communications protection policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.'), ('001080','draft','2009-09-21','DISA FSO','policy','The organization reviews and updates the system and communications protection procedures in accordance with organization-defined frequency.','SC-1.9','DoDI 8523.01 \"Communications Security (COMSEC)\"meets the DoD requirement for reviewing and updating the system and communications protection procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.','DoDI 8523.01 \"Communications Security (COMSEC)\"meets the DoD requirement for reviewing and updating the system and communications protection procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8523.01.'), ('001081','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of system and communications protection procedure reviews and updates.','SC-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001082','draft','2009-09-21','DISA FSO','technical','The information system separates user functionality (including user interface services) from information system management functionality.','SC-2.1','The organization being inspected/assessed configures the information system to separate user functionality (including user interface services) from information system management functionality. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1082.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to separate user functionality (including user interface services) from information system management functionality. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1082.'), ('001083','draft','2009-09-21','DISA FSO','technical','The information system prevents the presentation of information system management-related functionality at an interface for non-privileged users.','SC-2(1).1','The organization being inspected/assessed configures the information system to prevent the presentation of information system management-related functionality at an interface for non-privileged users. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1083.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent the presentation of information system management-related functionality at an interface for non-privileged users. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1083.'), ('001084','draft','2009-09-21','DISA FSO','technical','The information system isolates security functions from nonsecurity functions.','SC-3.1','The organization being inspected/assessed configures the information system to isolate security functions from nonsecurity functions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1084.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to isolate security functions from nonsecurity functions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1084.'), ('001085','draft','2009-09-21','DISA FSO','technical','The information system utilizes underlying hardware separation mechanisms to implement security function isolation.','SC-3(1).1','The organization being inspected/assessed configures the information system to utilize underlying hardware separation mechanisms to implement security function isolation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1085.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to utilize underlying hardware separation mechanisms to implement security function isolation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1085.'), ('001086','draft','2009-09-21','DISA FSO','technical','The information system isolates security functions enforcing access and information flow control from both nonsecurity functions and from other security functions.','SC-3(2).1','The organization being inspected/assessed configures the information system to isolate security functions enforcing access and information flow control from both nonsecurity functions and from other security functions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1086.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to isolate security functions enforcing access and information flow control from both nonsecurity functions and from other security functions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1086.'), ('001087','draft','2009-09-21','DISA FSO','technical','The organization implements an information system isolation boundary to minimize the number of nonsecurity functions included within the boundary containing security functions.',NULL,NULL,NULL), ('001088','draft','2009-09-21','DISA FSO','policy','The organization implements security functions as largely independent modules that avoid unnecessary interactions between modules.',NULL,NULL,NULL), ('001089','draft','2009-09-21','DISA FSO','technical','The organization implements security functions as a layered structure minimizing interactions between layers of the design and avoiding any dependence by lower layers on the functionality or correctness of higher layers.','SC-3(5).1','The organization being inspected/assessed configures the information system to implement security functions as a layered structure minimizing interactions between layers of the design and avoiding any dependence by lower layers on the functionality or correctness of higher layers. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1089.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement security functions as a layered structure minimizing interactions between layers of the design and avoiding any dependence by lower layers on the functionality or correctness of higher layers. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1089.'), ('001090','draft','2009-09-21','DISA FSO','technical','The information system prevents unauthorized and unintended information transfer via shared system resources.','SC-4.1','The organization being inspected/assessed configures the information system to prevent unauthorized and unintended information transfer via shared system resources. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1090.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent unauthorized and unintended information transfer via shared system resources. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1090.'), ('001091','draft','2009-09-21','DISA FSO','technical','The information system does not share resources that are used to interface with systems operating at different security levels.',NULL,NULL,NULL), ('001092','draft','2009-09-21','DISA FSO','technical','The information system protects against or limits the effects of the organization-defined or referenced types of denial of service attacks.',NULL,NULL,NULL), ('001093','draft','2009-09-21','DISA FSO','policy','The organization defines the types of denial of service attacks (or provides references to sources of current denial of service attacks) that can be addressed by the information system.','SC-5.1','The organization being inspected/assessed defines and documents the types of denial of service attacks (or provides references to sources of current denial of service attacks) that can be addressed by the information system. DoD has determined the types of denial of service attacks are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented types of denial of service attacks to ensure the organization being inspected/assessed defines the types of denial of service attacks (or provides references to sources of current denial of service attacks) that can be addressed by the information system. DoD has determined the types of denial of service attacks are not appropriate to define at the Enterprise level.'), ('001094','draft','2009-09-21','DISA FSO','technical','The information system restricts the ability of individuals to launch organization-defined denial of service attacks against other information systems.','SC-5(1).1','The organization being inspected/assessed configures the information system to restrict the ability of individuals to launch denial of service attacks defined in SC-5 (1), CCI 2387 against other information systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1094.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to restrict the ability of individuals to launch denial of service attacks defined in SC-5 (1), CCI 2387 against other information systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1094.'), ('001095','draft','2009-09-21','DISA FSO','technical','The information system manages excess capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial of service attacks.','SC-5(2).1','The organization being inspected/assessed configures the information system to manage excess capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial of service attacks. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1095.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to manage excess capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial of service attacks. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1095.'), ('001096','draft','2009-09-21','DISA FSO','technical','The information system limits the use of resources by priority.',NULL,NULL,NULL), ('001097','draft','2009-09-21','DISA FSO','policy','The information system monitors and controls communications at the external boundary of the information system and at key internal boundaries within the system.','SC-7.1','The organization being inspected/assessed documents and implements processes to monitor and control communications at the external boundary of the system and at key internal boundaries within the system. The organization must maintain an audit trail of monitoring activities.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring activities to ensure the organization being inspected/assessed monitors and controls communications at the external boundary of the system and at key internal boundaries within the system.'), ('001098','draft','2009-09-21','DISA FSO','policy','The information system connects to external networks or information systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security architecture.','SC-7.3','The organization being inspected/assessed designs the information system to enforce requirements that components connect to external networks or information systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security architecture.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying component connectivity to ensure the organization being inspected/assessed connects to external networks or information systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security architecture.'), ('001099','draft','2009-09-21','DISA FSO','policy','The organization physically allocates publicly accessible information system components to separate subnetworks with separate physical network interfaces.',NULL,NULL,NULL), ('001100','draft','2009-09-21','DISA FSO','technical','The information system prevents public access into the organization\'s internal networks except as appropriately mediated by managed interfaces employing boundary protection devices.',NULL,NULL,NULL), ('001101','draft','2009-09-21','DISA FSO','policy','The organization limits the number of external network connections to the information system.','SC-7(3).1','The organization being inspected/assessed documents and implements information system access control mechanisms to limit the number of external connections to the information system.','The organization conducting the inspection/assessment obtains and examines the documented access control mechanisms to ensure that the organization being inspected/assessed limits the number of external network connections to the information system.'), ('001102','draft','2009-09-21','DISA FSO','policy','The organization implements a managed interface for each external telecommunication service.','SC-7(4).1','The organization being inspected/assessed designs the information system to have a managed interface for each telecommunication service.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying system interfaces to ensure the organization being inspected/assessed implements a managed interface for each external telecommunication service.'), ('001103','draft','2009-09-21','DISA FSO','policy','The organization establishes a traffic flow policy for each managed interface for each external telecommunication service.','SC-7(4).2','The organization being inspected/assessed defines and documents a traffic flow policy for each managed interface for each external telecommunication service.','The organization conducting the inspection/assessment obtains and examines the documented traffic flow policy to ensure the organization being inspected/assessed establishes a traffic flow policy for each managed interface for each external telecommunication service.'), ('001104','draft','2009-09-21','DISA FSO','policy','The organization employs security controls as needed to protect the confidentiality and integrity of the information being transmitted.',NULL,NULL,NULL), ('001105','draft','2009-09-21','DISA FSO','policy','The organization documents each exception to the traffic flow policy with a supporting mission/business need and duration of that need for each external telecommunication service.','SC-7(4).4','The organization being inspected/assessed documents each exception to the traffic flow policy with a supporting mission/business need and duration of that need for each external telecommunication service.','The organization conducting the inspection/assessment obtains and examines the documented exceptions to the traffic flow policy to ensure the organization being inspected/assessed identifies each exception with supporting mission/business need and duration of that need for each external telecommunication service.'), ('001106','draft','2009-09-21','DISA FSO','policy','The organization reviews exceptions to the traffic flow policy on an organization-defined frequency for each external telecommunication service.','SC-7(4).5','The organization being inspected/assessed implements a process to review exceptions to the traffic flow policy every 180 days for each external telecommunication service. The organization must maintain an audit trail of reviews. DoD has defined the frequency as every 180 days.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews to ensure the organization being inspected/assessed reviews exceptions to the traffic flow policy every 180 days for each external telecommunication service. DoD has defined the frequency as every 180 days.'), ('001107','draft','2009-09-21','DISA FSO','policy','The organization defines a frequency for the review of exceptions to the traffic flow policy for each external telecommunication service.','SC-7(4).6','DoD has defined the frequency as every 180 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 180 days.'), ('001108','draft','2009-09-21','DISA FSO','policy','The organization removes traffic flow policy exceptions that are no longer supported by an explicit mission/business need for each external telecommunication service.','SC-7(4).7','The organization being inspected/assessed documents and implements a process to remove traffic flow policy exceptions that are no longer supported by an explicit mission/business need for each external telecommunication service.','The organization conducting the inspection/assessment obtains and examines the documented process as well as a sampling of existing exceptions to ensure the organization being inspected/assessed removes traffic flow policy exceptions that are no longer supported by an explicit mission/business need for each external telecommunication service.'), ('001109','draft','2009-09-21','DISA FSO','technical','The information system at managed interfaces denies network communications traffic by default and allows network communications traffic by exception (i.e., deny all, permit by exception).','SC-7(5).1','The organization being inspected/assessed configures the information system to deny network communications traffic at managed interfaces by default and allows network communications traffic by exception (i.e., deny all, permit by exception). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1109.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to deny network communications traffic at managed interfaces by default and allows network communications traffic by exception (i.e., deny all, permit by exception). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1109.'), ('001110','draft','2009-09-21','DISA FSO','policy','The organization prevents the unauthorized release of information outside of the information system boundary or any unauthorized communication through the information system boundary when there is an operational failure of the boundary protection mechanisms.',NULL,NULL,NULL), ('001111','draft','2009-09-21','DISA FSO','technical','The information system prevents remote devices that have established a non-remote connection with the system from communicating outside of that communications path with resources in external networks.',NULL,NULL,NULL), ('001112','draft','2009-09-21','DISA FSO','policy','The information system routes organization-defined internal communications traffic to organization-defined external networks through authenticated proxy servers at managed interfaces.','SC-7(8).1','The organization being inspected/assessed configures the information system to route protocols as designated by PPSM guidance (e.g. HTTPS, HTTP, FTP, SNMP) to any network external to the authorization boundary through authenticated proxy servers at managed interfaces. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1112. DoD has defined the internal communications traffic as protocols as designated by PPSM guidance (e.g. HTTPS, HTTP, FTP, SNMP). DoD has defined the external networks as any network external to the authorization boundary.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to route protocols as designated by PPSM guidance (e.g. HTTPS, HTTP, FTP, SNMP) to any network external to the authorization boundary through authenticated proxy servers at managed interfaces. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1112. DoD has defined the internal communications traffic as protocols as designated by PPSM guidance (e.g. HTTPS, HTTP, FTP, SNMP). DoD has defined the external networks as any network external to the authorization boundary.'), ('001113','draft','2009-09-21','DISA FSO','policy','The organization defines the internal communications traffic to be routed to external networks.','SC-7(8).2','DoD has defined the internal communications traffic as protocols as designated by PPSM guidance (e.g. HTTPS, HTTP, FTP, SNMP).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the internal communications traffic as protocols as designated by PPSM guidance (e.g. HTTPS, HTTP, FTP, SNMP).'), ('001114','draft','2009-09-21','DISA FSO','policy','The organization defines the external networks to which organization-defined internal communications traffic should be routed.','SC-7(8).3','DoD has defined the external networks as any network external to the authorization boundary.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external networks as any network external to the authorization boundary.'), ('001115','draft','2009-09-21','DISA FSO','technical','The information system, at managed interfaces, denies network traffic and audits internal users (or malicious code) posing a threat to external information systems.',NULL,NULL,NULL), ('001116','draft','2009-09-21','DISA FSO','policy','The organization prevents the unauthorized exfiltration of information across managed interfaces.','SC-7(10).1','The organization being inspected/assessed documents and implements mechanisms to prevent the unauthorized exfiltration of information across managed interfaces.','The organization conducting the inspection/assessment obtains and examines the documented mechanisms to ensure the organization being inspected/assessed prevents the unauthorized exfiltration of information across managed interfaces.'), ('001117','draft','2009-09-21','DISA FSO','technical','The information system checks incoming communications to ensure the communications are coming from an authorized source and routed to an authorized destination.',NULL,NULL,NULL), ('001118','draft','2009-09-21','DISA FSO','technical','The information system implements host-based boundary protection mechanisms for servers, workstations, and mobile devices.',NULL,NULL,NULL), ('001119','draft','2009-09-21','DISA FSO','policy','The organization isolates organization-defined information security tools, mechanisms, and support components from other internal information system components by implementing physically separate subnetworks with managed interfaces to other components of the system.','SC-7(13).1','The organization being inspected/assessed designs the information system to isolate key information security tools, mechanisms, and support components such as, but not limited to PKI, Patching infrastructure, HBSS, CND Tools, Special Purpose Gateway, vulnerability tracking systems, honeypots, internet access points (IAPs); network element and data center administrative/management traffic; Demilitarized Zones (DMZs), Server farms/computing centers, centralized audit log servers etc. from other internal information system components by implementing physically separate subnetworks with managed interfaces to other components of the system. DoD has defined the key information security tools, mechanisms, and support components as key information security tools, mechanisms, and support components such as, but not limited to PKI, Patching infrastructure, HBSS, CND Tools, Special Purpose Gateway, vulnerability tracking systems, honeypots, internet access points (IAPs); network element and data center administrative/management traffic; Demilitarized Zones (DMZs), Server farms/computing centers, centralized audit log servers etc. ','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying component partitioning to ensure the organization being inspected/assessed isolates key information security tools, mechanisms, and support components such as, but not limited to PKI, Patching infrastructure, HBSS, CND Tools, Special Purpose Gateway, vulnerability tracking systems, honeypots, internet access points (IAPs); network element and data center administrative/management traffic; Demilitarized Zones (DMZs), Server farms/computing centers, centralized audit log servers etc. from other internal information system components by implementing physically separate subnetworks with managed interfaces to other components of the system. DoD has defined the key information security tools, mechanisms, and support components as key information security tools, mechanisms, and support components such as, but not limited to PKI, Patching infrastructure, HBSS, CND Tools, Special Purpose Gateway, vulnerability tracking systems, honeypots, internet access points (IAPs); network element and data center administrative/management traffic; Demilitarized Zones (DMZs), Server farms/computing centers, centralized audit log servers etc.'), ('001120','draft','2009-09-21','DISA FSO','policy','The organization defines key information security tools, mechanisms, and support components to be isolated.','SC-7(13).2','DoD has defined the key information security tools, mechanisms, and support components as key information security tools, mechanisms, and support components such as, but not limited to PKI, Patching infrastructure, HBSS, CND Tools, Special Purpose Gateway, vulnerability tracking systems, honeypots, internet access points (IAPs); network element and data center administrative/management traffic; Demilitarized Zones (DMZs), Server farms/computing centers, centralized audit log servers etc.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the key information security tools, mechanisms, and support components as key information security tools, mechanisms, and support components such as, but not limited to PKI, Patching infrastructure, HBSS, CND Tools, Special Purpose Gateway, vulnerability tracking systems, honeypots, internet access points (IAPs); network element and data center administrative/management traffic; Demilitarized Zones (DMZs), Server farms/computing centers, centralized audit log servers etc.'), ('001121','draft','2009-09-21','DISA FSO','policy','The organization protects against unauthorized physical connections at organization-defined managed interfaces.','SC-7(14).1','The organization being inspected/assessed documents and implements mechanisms to protect against unauthorized physical connections at internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways. DoD has defined the managed interfaces as internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.','The organization conducting the inspection/assessment obtains and examines the documented mechanisms to ensure the organization being inspected/assessed protects against unauthorized physical connections at internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.\n\nDoD has defined the managed interfaces as internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.'), ('001122','draft','2009-09-21','DISA FSO','policy','The organization defines the managed interfaces where boundary protections against unauthorized physical connections are to be implemented.','SC-7(14).2','DoD has defined the managed interfaces as internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the managed interfaces as internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.'), ('001123','draft','2009-09-21','DISA FSO','policy','The information system routes all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.','SC-7(15).1','The organization being inspected/assessed designs the information system to route all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying network data flow to ensure the organization being inspected/assessed routes all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.'), ('001124','draft','2009-09-21','DISA FSO','technical','The information system prevents discovery of specific system components composing a managed interface.','SC-7(16).1','The organization being inspected/assessed configures the information system to prevent discovery of specific system components composing a managed interface. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1124.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent discovery of specific system components composing a managed interface. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1124.'), ('001125','draft','2009-09-21','DISA FSO','technical','The information system enforces adherence to protocol format.','SC-7(17).1','The organization being inspected/assessed configures the information system to enforce adherence to protocol format. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1125.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce adherence to protocol format. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1125.'), ('001126','draft','2009-09-21','DISA FSO','technical','The information system fails securely in the event of an operational failure of a boundary protection device.','SC-7(18).1','The organization being inspected/assessed configures the information system to fail securely in the event of an operational failure of a boundary protection device. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1126.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to fail securely in the event of an operational failure of a boundary protection device. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1126.'), ('001127','draft','2009-09-21','DISA FSO','technical','The information system protects the integrity of transmitted information.',NULL,NULL,NULL), ('001128','draft','2009-09-21','DISA FSO','technical','The organization employs cryptographic mechanisms to recognize changes to information during transmission unless otherwise protected by alternative physical measures.',NULL,NULL,NULL), ('001129','draft','2009-09-21','DISA FSO','technical','The information system maintains the integrity of information during aggregation, packaging, and transformation in preparation for transmission.',NULL,NULL,NULL), ('001130','draft','2009-09-21','DISA FSO','technical','The information system protects the confidentiality of transmitted information.',NULL,NULL,NULL), ('001131','draft','2009-09-21','DISA FSO','technical','The organization employs cryptographic mechanisms to prevent unauthorized disclosure of information during transmission unless otherwise protected by alternative physical measures.',NULL,NULL,NULL), ('001132','draft','2009-09-21','DISA FSO','technical','The information system maintains the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.',NULL,NULL,NULL), ('001133','draft','2009-09-21','DISA FSO','technical','The information system terminates the network connection associated with a communications session at the end of the session or after an organization-defined time period of inactivity.','SC-10.1','The organization being inspected/assessed configures the information system to terminate the network connection associated with a communications session at the end of the session or after 10 minutes in band management and 15 minutes for user sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1133. DoD has defined the time period as 10 minutes in band management and 15 minutes for user sessions.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to terminate the network connection associated with a communications session at the end of the session or after 10 minutes in band management and 15 minutes for user sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1133. DoD has defined the time period as 10 minutes in band management and 15 minutes for user sessions.'), ('001134','draft','2009-09-21','DISA FSO','policy','The organization defines the time period of inactivity after which the information system terminates a network connection associated with a communications session.','SC-10.2','DoD has defined the time period as 10 minutes in band management and 15 minutes for user sessions.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 10 minutes in band management and 15 minutes for user sessions.'), ('001135','draft','2009-09-21','DISA FSO','policy','The information system establishes a trusted communications path between the user and organization-defined security functions within the information system.','SC-11.1','The organization being inspected/assessed designs and configures the information system to establish a trusted communications path between the user and providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling) within the information system. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1135. DoD has defined the security functions as providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling).','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to establish a trusted communications path between the user and providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling) within the information system. Additionally, the organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying data flow to ensure the organization being inspected/assessed establishes a trusted communications path between the user and providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling) within the information system. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1135. DoD has defined the security functions as providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling).'), ('001136','draft','2009-09-21','DISA FSO','policy','The organization defines security functions include information system authentication and reauthentication.',NULL,NULL,NULL), ('001137','draft','2009-09-21','DISA FSO','policy','The organization establishes cryptographic keys for required cryptography employed within the information system.',NULL,NULL,NULL), ('001138','draft','2009-09-21','DISA FSO','policy','The organization manages cryptographic keys for required cryptography employed within the information system.',NULL,NULL,NULL), ('001139','draft','2009-09-21','DISA FSO','policy','The organization maintains availability of information in the event of the loss of cryptographic keys by users.','SC-12(1).1','The organization being inspected/assessed documents and implements a process to maintain availability of information in the event of the loss of cryptographic keys by users.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed maintains availability of information in the event of the loss of cryptographic keys by users.'), ('001140','draft','2009-09-21','DISA FSO','technical','The organization produces, controls, and distributes symmetric cryptographic keys using NIST-approved or NSA-approved key management technology and processes.',NULL,NULL,NULL), ('001141','draft','2009-09-21','DISA FSO','technical','The organization produces, controls, and distributes symmetric and asymmetric cryptographic keys using NSA-approved key management technology and processes.',NULL,NULL,NULL), ('001142','draft','2009-09-21','DISA FSO','technical','The organization produces, controls, and distributes asymmetric cryptographic keys using approved PKI Class 3 certificates or prepositioned keying material.',NULL,NULL,NULL), ('001143','draft','2009-09-21','DISA FSO','technical','The organization produces, controls, and distributes asymmetric cryptographic keys using approved PKI Class 3 or Class 4 certificates and hardware security tokens that protect the user\'s private key.',NULL,NULL,NULL), ('001144','draft','2009-09-21','DISA FSO','technical','The information system implements required cryptographic protections using cryptographic modules that comply with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.',NULL,NULL,NULL), ('001145','draft','2009-09-21','DISA FSO','technical','The organization employs, at a minimum, FIPS-validated cryptography to protect unclassified information.',NULL,NULL,NULL), ('001146','draft','2009-09-21','DISA FSO','technical','The organization employs NSA-approved cryptography to protect classified information.',NULL,NULL,NULL), ('001147','draft','2009-09-21','DISA FSO','technical','The organization employs, at a minimum, FIPS-validated cryptography to protect information when such information must be separated from individuals who have the necessary clearances yet lack the necessary access approvals.',NULL,NULL,NULL), ('001148','draft','2009-09-21','DISA FSO','technical','The organization employs FIPS-validated or NSA-approved cryptography to implement digital signatures.',NULL,NULL,NULL), ('001149','draft','2009-09-21','DISA FSO','technical','The information system protects the integrity and availability of publicly available information and applications.',NULL,NULL,NULL), ('001150','draft','2009-09-21','DISA FSO','technical','The information system prohibits remote activation of collaborative computing devices, excluding the organization-defined exceptions where remote activation is to be allowed.','SC-15.1','The organization being inspected/assessed configures the information system to prohibit remote activation of collaborative computing devices excluding dedicated VTC suites located in approved VTC locations that are centrally managed. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1150. DoD has defined the exceptions as dedicated VTC suites located in approved VTC locations that are centrally managed.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prohibit remote activation of collaborative computing devices excluding dedicated VTC suites located in approved VTC locations that are centrally managed. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1150. DoD has defined the exceptions as dedicated VTC suites located in approved VTC locations that are centrally managed.'), ('001151','draft','2009-09-21','DISA FSO','policy','The organization defines exceptions to the prohibition of collaborative computing devices where remote activation is to be allowed.','SC-15.2','DoD has defined the exceptions as dedicated VTC suites located in approved VTC locations that are centrally managed.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the exceptions as dedicated VTC suites located in approved VTC locations that are centrally managed.'), ('001152','draft','2009-09-21','DISA FSO','technical','The information system provides an explicit indication of use to users physically present at collaborative computing devices.','SC-15.3','The organization being inspected/assessed configures the information system to provide an explicit indication of use to users physically present at collaborative computing devices. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1152.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide an explicit indication of use to users physically present at collaborative computing devices. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1152.'), ('001153','draft','2009-09-21','DISA FSO','technical','The information system provides physical disconnect of collaborative computing devices in a manner that supports ease of use.','SC-15(1).1','The organization being inspected/assessed provides a means of physical disconnect of collaborative computing devices in a manner that supports ease of use. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1153.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed provides a means of physical disconnect of collaborative computing devices in a manner that supports ease of use. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1153.'), ('001154','draft','2009-09-21','DISA FSO','technical','The information system or supporting environment blocks both inbound and outbound traffic between instant messaging clients that are independently configured by end users and external service providers.',NULL,NULL,NULL), ('001155','draft','2009-09-21','DISA FSO','policy','The organization disables or removes collaborative computing devices from organization-defined information systems or information system components in organization-defined secure work areas.','SC-15(3).1','The organization being inspected/assessed implements a process to disable or remove any device used that may incorporate camera, microphone, or smart board capability in secure work areas defined in SC-15 (3), CCI 1156. DoD has defined information systems or information system components as any device used that may incorporate camera, microphone, or smart board capability.','The organization conducting the inspection/assessment obtains and examines the organization defined secure work area to ensure that any device that may incorporate camera, microphone, or smart board capability has been disabled or removed. DoD has defined information systems or information system components as any device used that may incorporate camera, microphone, or smart board capability.'), ('001156','draft','2009-09-21','DISA FSO','policy','The organization defines secure work areas where collaborative computing devices are to be disabled or removed.','SC-15(3).2','The organization being inspected/assessed defines and documents secure work areas where collaborative computing devices are to be disabled or removed. DoD has determined the secure work areas are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented secure work areas to ensure the organization being inspected/assessed defines secure work areas where collaborative computing devices are to be disabled or removed. DoD has determined the secure work areas are not appropriate to define at the Enterprise level.'), ('001157','draft','2009-09-21','DISA FSO','policy','The information system associates organization-defined security attributes with information exchanged between information systems.','SC-16.1','The organization being inspected/assessed implements association of security attributes defined in SC-16, CCI 2454 with information exchanged between information systems.','The organization conducting the inspection/assessment examines the information system to ensure it associates security attributes defined in SC-16, CCI 2454 with information exchanged between information systems.'), ('001158','draft','2009-09-21','DISA FSO','technical','The information system validates the integrity of transmitted security attributes.','SC-16(1).1','The organization being inspected/assessed configures the information system to validate the integrity of transmitted security attributes. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1158.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to validate the integrity of transmitted security attributes. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1158.'), ('001159','draft','2009-09-21','DISA FSO','policy','The organization issues public key certificates under an organization-defined certificate policy or obtains public key certificates from an approved service provider.','SC-17.1','The organization being inspected/assessed configures the information system to issue public key certificates under DoDI 8520.02, \"Public Key Infrastructure (PKI) and Public Key (PK) Enabling\" or obtains public key certificates from an approved service provider. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1159. DoD has defined the certificate policy as DoDI 8520.02, \"Public Key Infrastructure (PKI) and Public Key (PK) Enabling.\"','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to issue public key certificates under DoDI 8520.02, \"Public Key Infrastructure (PKI) and Public Key (PK) Enabling\" or obtains public key certificates from an approved service provider. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1159. DoD has defined the certificate policy as DoDI 8520.02, \"Public Key Infrastructure (PKI) and Public Key (PK) Enabling.\"'), ('001160','draft','2009-09-21','DISA FSO','policy','The organization defines acceptable and unacceptable mobile code and mobile code technologies.','SC-18.1','The organization being inspected/assessed defines and documents acceptable and unacceptable mobile code and mobile code technologies IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must define IAW the STIG/SRG guidance that pertains to CCI 1160.','The organization conducting the inspection/assessment obtains and examines the documented acceptable and unacceptable mobile code and mobile code technologies to ensure the organization being inspected/assessed defines acceptable and unacceptable mobile code and mobile code technologies IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has defined acceptable and unacceptable mobile code and mobile code technologies IAW the applicable STIGs and SRGs pertaining to CCI 1160.'), ('001161','draft','2009-09-21','DISA FSO','policy','The organization establishes usage restrictions for acceptable mobile code and mobile code technologies.','SC-18.2','The organization being inspected/assessed documents usage restrictions for acceptable mobile code and mobile code technologies IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must establish IAW the STIG/SRG guidance that pertains to CCI 1161.','The organization conducting the inspection/assessment obtains and examines the documented usage restrictions to ensure the organization being inspected/assessed establishes usage restrictions for acceptable mobile code and mobile code technologies IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has established usage restrictions IAW the applicable STIGs and SRGs pertaining to CCI 1161.'), ('001162','draft','2009-09-21','DISA FSO','policy','The organization establishes implementation guidance for acceptable mobile code and mobile code technologies.','SC-18.3','The Protection Profile for Web Browsers and Application SRG\nmeet the DoD requirement to establish implementation guidance for acceptable mobile code and mobile code technologies.\n\nDoD Components are automatically compliant with this CCI because they are covered by the Protection Profile for Web Browsers and Application SRG.','The Protection Profile for Web Browsers and Application SRG\nmeet the DoD requirement to establish implementation guidance for acceptable mobile code and mobile code technologies.\n\nDoD Components are automatically compliant with this CCI because they are covered by the Protection Profile for Web Browsers and Application SRG.'), ('001163','draft','2009-09-21','DISA FSO','policy','The organization authorizes the use of mobile code within the information system.','SC-18.4','The organization being inspected/assessed documents mobile code which is authorized for use within the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of mobile code which is authorized for use within the information system and examines the information system to ensure that all used mobile code is authorized.'), ('001164','draft','2009-09-21','DISA FSO','policy','The organization monitors the use of mobile code within the information system.','SC-18.5','The organization being inspected/assessed documents and implements a process to monitor the use of mobile code within the information system.','The organization conducting the inspection/assessment obtains and examines the documented process as well as any artifacts applicable to monitoring of mobile code to ensure the organization being inspected/assessed monitors the use of mobile code within the information system.'), ('001165','draft','2009-09-21','DISA FSO','policy','The organization controls the use of mobile code within the information system.','SC-18.6','The organization being inspected/assessed documents and implements a process to control the use of mobile code within the information system.','The organization conducting the inspection/assessment obtains and examines the documented process and examines the information system to ensure the organization being inspected/assessed controls the use of mobile code within the information system.'), ('001166','draft','2009-09-21','DISA FSO','technical','The information system identifies organization-defined unacceptable mobile code.','SC-18(1).1','The organization being inspected/assessed configures the information system to identify unacceptable mobile code defined in SC-18 (1), CCI 2458. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1166.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to identify unacceptable mobile code defined in SC-18 (1), CCI 2458. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1166.'), ('001167','draft','2009-09-21','DISA FSO','policy','The organization ensures the development of mobile code to be deployed in information systems meets organization-defined mobile code requirements.','SC-18(2).1','The organization being inspected/assessed documents and implements a process to develop mobile code IAW the requirements defined in CCI 1168. ','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed develops mobile code IAW the requirements defined in CCI 1168.'), ('001168','draft','2009-09-21','DISA FSO','policy','The organization defines requirements for the acquisition, development, and use of mobile code.','SC-18(2).2','The organization being inspected/assessed defines and documents requirements for the acquisition, development, and use of mobile code. The requirements must result in the acquisition and development of mobile code which complies with the Protection Profile for Web Browsers and Application SRG.\nDoD has determined the requirements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented requirements to ensure the organization being inspected/assessed defines requirements for the acquisition, development, and use of mobile code.\nDoD has determined the requirements are not appropriate to define at the Enterprise level.'), ('001169','draft','2009-09-21','DISA FSO','technical','The information system prevents the download of organization-defined unacceptable mobile code.','SC-18(3).1','The organization being inspected/assessed configures the information system to prevent the download of unacceptable mobile code defined in CCI 2459.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1169.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent the download of unacceptable mobile code defined in CCI 2459.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1169.'), ('001170','draft','2009-09-21','DISA FSO','technical','The information system prevents the automatic execution of mobile code in organization-defined software applications.','SC-18(4).1','The organization being inspected/assessed configures the information system to prevent the automatic execution of unacceptable mobile code in software applications defined in CCI 1171.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1170.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent the automatic execution of unacceptable mobile code in software applications defined in CCI 1171.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1170.'), ('001171','draft','2009-09-21','DISA FSO','policy','The organization defines software applications in which automatic mobile code execution is to be prohibited.','SC-18(4).2','DoD has defined the software applications in which automatic mobile code execution is to be prohibited as the software applications defined in the Protection Profile for Web Browsers and Application SRG.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\nDoD has defined the software applications in which automatic mobile code execution is to be prohibited as the software applications defined in the Protection Profile for Web Browsers and Application SRG.'), ('001172','draft','2009-09-21','DISA FSO','policy','The organization defines actions to be enforced by the information system before executing mobile code.','SC-18(4).3','DoD has defined the actions as the user be prompted.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the actions as the user be prompted.'), ('001173','draft','2009-09-21','DISA FSO','policy','The organization establishes usage restrictions for Voice over Internet Protocol (VoIP) technologies based on the potential to cause damage to the information system if used maliciously.','SC-19.1','The organization being inspected/assessed establishes and documents usage restrictions for Voice over Internet Protocol (VoIP) technologies based on the potential to cause damage to the information system if used maliciously.','The organization conducting the inspection/assessment obtains and examines the documented usage restrictions to ensure the organization being inspected/assessed establishes usage restrictions for Voice over Internet Protocol (VoIP) technologies based on the potential to cause damage to the information system if used maliciously.'), ('001174','draft','2009-09-21','DISA FSO','policy','The organization establishes implementation guidance for Voice over Internet Protocol (VoIP) technologies based on the potential to cause damage to the information system if used maliciously.','SC-19.2','The Voice and Video over Internet Protocol (V-VoIP) STIG meets the DoD requirement for establishing implementation guidance for Voice over Internet Protocol (VoIP) technologies.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, V-VoIP STIG.','The V-VoIP STIG meets the DoD requirement for establishing implementation guidance for Voice over Internet Protocol (VoIP) technologies.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, V-VoIP STIG.'), ('001175','draft','2009-09-21','DISA FSO','policy','The organization authorizes the use of VoIP within the information system.','SC-19.3','The organization being inspected/assessed authorizes any appropriate usage of VoIP within the information system and documents those authorizations.','The organization conducting the inspection/assessment obtains and examines the documented authorizations and *insert language* to ensure the organization being inspected/assessed authorizes any appropriate usage of VoIP within the information system and documents those authorizations.'), ('001176','draft','2009-09-21','DISA FSO','policy','The organization monitors the use of VoIP within the information system.','SC-19.4','The organization being inspected/assessed documents and implements a process to monitor the use of VoIP within the information system. The organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trial of monitoring to ensure the organization being inspected/assessed monitors the use of VoIP within the information system.'), ('001177','draft','2009-09-21','DISA FSO','policy','The organization controls the use of VoIP within the information system.','SC-19.5','The organization being inspected/assessed designs the information system to control the use of VoIP within the information system','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying the use of VoIP to ensure the organization being inspected/assessed controls the use of VoIP within the information system.'), ('001178','draft','2009-09-21','DISA FSO','technical','The information system provides additional data origin authentication artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries.','SC-20.1','The organization being inspected/assessed configures the authoritative name server software for external queries to enable DNSSEC and creates resource records with digital signatures (RRSig) for each A record. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 1178.','The organization conducting the inspection/assessment:\n1. inspects the configuration files for the presence of DNSSEC records for each A record hosted in a zone;\n2. utilizes DNSSEC diagnostic tools, such as dig; and\n3. performs queries which will exercise the data flow path for authoritative name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 1178.'), ('001179','draft','2009-09-21','DISA FSO','technical','The information system, when operating as part of a distributed, hierarchical namespace, provides the means to indicate the security status of child zones.','SC-20.3','The organization being inspected/assessed configures the authoritative name server software to enable DNSSEC and creates delegation signer (DS) resource records for each child zone and place those records in the parent zone. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 1179.','The organization conducting the inspection/assessment inspect the configuration files for the presence of Delegation Signer (DS) Records for any child domains. Note: This is only applicable for zones with child domains. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 1179.'), ('001180','draft','2009-09-21','DISA FSO','technical','The information system performs data origin authentication and data integrity verification on the name/address resolution responses the system receives from authoritative sources when requested by client systems.',NULL,NULL,NULL), ('001181','draft','2009-09-21','DISA FSO','technical','The information system performs data origin authentication and data integrity verification on all resolution responses received whether or not local client systems explicitly request this service.',NULL,NULL,NULL), ('001182','draft','2009-09-21','DISA FSO','policy','The information systems that collectively provide name/address resolution service for an organization are fault-tolerant.','SC-22.1','The organization being inspected/assessed implements a name service resolution architecture consisting of primary and secondary servers. The organization must document the architecture in the site security plan. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1182.','The organization conducting the inspection/assessment reviews the sites implementation documentation of the name resolution servers and verifies primary and alternate services are available. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1182.'), ('001183','draft','2009-09-21','DISA FSO','policy','The information systems that collectively provide name/address resolution service for an organization implement internal/external role separation.','SC-22.2','The organization being inspected/assessed implements a name service resolution architecture where recursive and authoritative server software is not installed on the same information system. The organization must document the architecture in the site security plan. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1183.','The organization conducting the inspection/assessment reviews the sites implementation documentation of the name resolution servers and verifies authoritative and recursive services are not hosted on the same information system. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1183.'), ('001184','draft','2009-09-21','DISA FSO','technical','The information system protects the authenticity of communications sessions.','SC-23.1','The organization being inspected/assessed configures the information system to protect the authenticity of communications sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1184.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect the authenticity of communications sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1184.'), ('001185','draft','2009-09-21','DISA FSO','technical','The information system invalidates session identifiers upon user logout or other session termination.','SC-23(1).1','The organization being inspected/assessed configures the information system to invalidate session identifiers upon user logout or other session termination. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1185.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to invalidate session identifiers upon user logout or other session termination. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1185.'), ('001186','draft','2009-09-21','DISA FSO','technical','The information system provides a readily observable logout capability whenever authentication is used to gain access to web pages.',NULL,NULL,NULL), ('001187','draft','2009-09-21','DISA FSO','technical','The information system generates a unique session identifier for each session.',NULL,NULL,NULL), ('001188','draft','2009-09-21','DISA FSO','technical','The information system generates unique session identifiers for each session with organization-defined randomness requirements.','SC-23(3).1','The organization being inspected/assessed configures the information system to generate unique session identifiers for each session with randomness requirements defined in SC-23 (3), CCI 1189. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1188.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to generate unique session identifiers for each session with randomness requirements defined in SC-23 (3), CCI 1189. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1188.'), ('001189','draft','2009-09-21','DISA FSO','policy','The organization defines randomness requirements for generating unique session identifiers.','SC-23(3).2','The organization being inspected/assessed defines and documents randomness requirements for generating unique session identifiers. DoD has determined the randomness requirements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented randomness requirements to ensure the organization being inspected/assessed defines randomness requirements for generating unique session identifiers. DoD has determined the randomness requirements are not appropriate to define at the Enterprise level.'), ('001190','draft','2009-09-21','DISA FSO','technical','The information system fails to an organization-defined known-state for organization-defined types of failures.','SC-24.1','The organization being inspected/assessed configures the information system to fail to a secure state for failures during system initialization, shutdown, and aborts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1190. DoD has defined the known state as secure state. DoD has defined the types of failures as failures during system initialization, shutdown, and aborts.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to fail to a secure state for failures during system initialization, shutdown, and aborts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1190. DoD has defined the known state as secure state. DoD has defined the types of failures as failures during system initialization, shutdown, and aborts.'), ('001191','draft','2009-09-21','DISA FSO','policy','The organization defines the known states the information system should fail to in the event of an organization-defined system failure.','SC-24.2','DoD has defined the known state as secure state.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the known state as secure state.'), ('001192','draft','2009-09-21','DISA FSO','policy','The organization defines types of failures for which the information system should fail to an organization-defined known state.','SC-24.3','DoD has defined the types of failures as failures during system initialization, shutdown, and aborts.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the types of failures as failures during system initialization, shutdown, and aborts.'), ('001193','draft','2009-09-21','DISA FSO','policy','The organization defines system state information that should be preserved in the event of a system failure.','SC-24.4','DoD has defined system state information as information necessary to determine cause of failure and to return to operations with least disruption to mission/ business processes.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined system state information as information necessary to determine cause of failure and to return to operations with least disruption to mission/ business processes.'), ('001194','draft','2009-09-21','DISA FSO','policy','The information system employs organization-defined information system components with minimal functionality and information storage.','SC-25.1','The organization being inspected/assessed employs information system components defined in SC-25, CCI 2471 with minimal functionality and information storage.','The organization conducting the inspection/assessment obtains and examines the hardware list to ensure the organization being inspected/assessed employs information system components defined in SC-25, CCI 2471 with minimal functionality and information storage.'), ('001195','draft','2009-09-21','DISA FSO','policy','The information system includes components specifically designed to be the target of malicious attacks for the purpose of detecting, deflecting, and analyzing such attacks.','SC-26.1','The organization being inspected/assessed designs the information system to include decoy components specifically designed to be the target of malicious attacks for the purpose of detecting, deflecting, and analyzing such attacks.','The organization conducting the inspection/assessment obtains and examines the network topology diagrams, architecture documentation, or any other documentation identifying decoy components to be attacked to ensure the organization being inspected/assessed includes components specifically designed to be the target of malicious attacks for the purpose of detecting, deflecting, and analyzing such attacks.'), ('001196','draft','2009-09-21','DISA FSO','policy','The information system includes components that proactively seek to identify malicious websites and/or web-based malicious code.','SC-35.1','The organization being inspected/assessed includes components in the information system that proactively seek to identify malicious websites and/or web-based malicious code.','The organization conducting the inspection/assessment obtains and examines the software list to ensure the organization being inspected/assessed includes components in the information system that proactively seek to identify malicious websites and/or web-based malicious code.'), ('001197','draft','2009-09-21','DISA FSO','policy','The information system includes organization-defined platform-independent applications.','SC-27.1','The organization being inspected/assessed includes platform-independent applications defined in SC-27, CCI 1198.','The organization conducting the inspection/assessment obtains and examines the software list to ensure the organization being inspected/assessed includes platform-independent applications defined in SC-27, CCI 1198.'), ('001198','draft','2009-09-21','DISA FSO','policy','The organization defines applications that are platform independent.','SC-27.2','The organization being inspected/assessed defines and documents applications that are platform independent. DoD has determined the applications are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented applications to ensure the organization being inspected/assessed defines applications that are platform independent. DoD has determined the applications are not appropriate to define at the Enterprise level.'), ('001199','draft','2009-09-21','DISA FSO','technical','The information system protects the confidentiality and/or integrity of organization-defined information at rest.','SC-28.1','The organization being inspected/assessed configures the information system to protect the confidentiality and/or integrity of organization-defined information at rest. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1199.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect the confidentiality and/or integrity of organization-defined information at rest. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1199.'), ('001200','draft','2009-09-21','DISA FSO','technical','The organization employs cryptographic mechanisms to prevent unauthorized disclosure of information at rest unless otherwise protected by alternative physical measures.',NULL,NULL,NULL), ('001201','draft','2009-09-21','DISA FSO','policy','The organization employs a diverse set of information technologies for organization-defined information system components in the implementation of the information system.','SC-29.1','The organization being inspected/assessed designs the information system to employ a diverse set of information technologies for information system components defined in SC-29, CCI 2480 in the implementation of the information system.','The organization conducting the inspection/assessment obtains and examines the hardware and software lists to ensure the organization being inspected/assessed employs a diverse set of information technologies for information system components defined in SC-29, CCI 2480 in the implementation of the information system.'), ('001202','draft','2009-09-21','DISA FSO','policy','The organization employs virtualization techniques to present information system components as other types of components, or components with differing configurations.',NULL,NULL,NULL), ('001203','draft','2009-09-21','DISA FSO','policy','The organization employs virtualization techniques to support the deployment of a diversity of operating systems that are changed on an organization-defined frequency.','SC-29(1).1','The organization being inspected/assessed designs the information system to employ virtualization techniques to support the deployment of a diversity of operating systems that are changed on the frequency defined in SC-29 (1), CCI 1204.','The organization conducting the inspection/assessment obtains and examines the hardware and software lists to ensure the organization being inspected/assessed employs virtualization techniques to support the deployment of a diversity of operating systems that are changed on the frequency defined in SC-29 (1), CCI 1204.'), ('001204','draft','2009-09-21','DISA FSO','policy','The organization defines the frequency of changes to operating systems and applications to support a diversity of deployments.','SC-29(1).2','The organization being inspected/assessed defines and documents the frequency of changes to operating systems and applications to support a diversity of deployments. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency of changes to operating systems and applications to support a diversity of deployments. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('001205','draft','2009-09-21','DISA FSO','policy','The organization employs randomness in the implementation of the virtualization techniques.',NULL,NULL,NULL), ('001206','draft','2009-09-21','DISA FSO','policy','The organization requires that information system developers/integrators perform a covert channel analysis to identify those aspects of system communication that are potential avenues for covert storage and timing channels.',NULL,NULL,NULL), ('001207','draft','2009-09-21','DISA FSO','policy','The organization tests a subset of the identified covert channels to determine which channels are exploitable.','SC-31(1).1','The organization being inspected/assessed tests a subset of the identified covert channels to determine which channels are exploitable. The organization must maintain an audit trail of testing.','The organization conducting the inspection/assessment obtains and examines the test results to ensure the organization being inspected/assessed tests a subset of the identified covert channels to determine which channels are exploitable.'), ('001208','draft','2009-09-21','DISA FSO','policy','The organization partitions the information system into components residing in separate physical domains (or environments) as deemed necessary.',NULL,NULL,NULL), ('001209','draft','2009-09-21','DISA FSO','technical','The information system protects the integrity of information during the processes of data aggregation, packaging, and transformation in preparation for transmission.',NULL,NULL,NULL), ('001210','draft','2009-09-21','DISA FSO','technical','The information system, at organization-defined information system components, loads and executes the operating environment from hardware-enforced, read-only media.','SC-34.2','The organization being inspected/assessed configures the information system to load and execute the operating environment from hardware-enforced, read-only media at information system components defined in SC-34, CCI 1212. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1210.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to load and execute the operating environment from hardware-enforced, read-only media at information system components defined in SC-34, CCI 1212. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1210.'), ('001211','draft','2009-09-21','DISA FSO','technical','The information system, at organization-defined information system components, loads and executes organization-defined applications from hardware-enforced, read-only media.','SC-34.3','The organization being inspected/assessed configures the information system to load and execute applications defined in SC-34, CCI 1213 from hardware-enforced, read-only media at information system components defined in SC-34, CCI 1212. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1211.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to load and execute applications defined in SC-34, CCI 1213 from hardware-enforced, read-only media at information system components defined in SC-34, CCI 1212. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1211.'), ('001212','draft','2009-09-21','DISA FSO','policy','The organization defines information system components on which the operating environment and organization-defined applications are loaded and executed from hardware-enforced, read-only media.','SC-34.1','The organization being inspected/assessed defines and documents information system components for which the operating environment and organization-defined applications are loaded and executed from hardware-enforced, read-only media. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines information system components for which the operating environment and organization-defined applications are loaded and executed from hardware-enforced, read-only media. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('001213','draft','2009-09-21','DISA FSO','policy','The organization defines applications that will be loaded and executed from hardware-enforced, read-only media.','SC-34.4','The organization being inspected/assessed defines and documents applications that will be loaded and executed from hardware-enforced, read-only media. DoD has determined the applications are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented applications to ensure the organization being inspected/assessed defines applications that will be loaded and executed from hardware-enforced, read-only media. DoD has determined the applications are not appropriate to define at the Enterprise level.'), ('001214','draft','2009-09-21','DISA FSO','policy','The organization employs organization-defined information system components with no writeable storage that are persistent across component restart or power on/off.','SC-34(1).1','The organization being inspected/assessed designs the information system to employ information system components defined in SC-34 (1), CCI 1215 with no writeable storage that are persistent across component restart or power on/off.','The organization conducting the inspection/assessment obtains and examines the hardware list to ensure the organization being inspected/assessed employs information system components defined in SC-34 (1), CCI 1215 with no writeable storage that are persistent across component restart or power on/off.'), ('001215','draft','2009-09-21','DISA FSO','policy','The organization defines the information system components to be employed with no writeable storage.','SC-34(1).2','The organization being inspected/assessed defines and documents the information system components to be employed with no writeable storage. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components to be employed with no writeable storage. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('001216','draft','2009-09-21','DISA FSO','policy','The organization protects the integrity of information prior to storage on read-only media.','SC-34(2).1','The organization being inspected/assessed documents and implements mechanisms to protect the integrity of the information prior to storage on read-only media.','The organization conducting the inspection/assessment obtains and examines the documented mechanisms to ensure the organization being inspected/assessed protects the integrity of the information prior to storage on read-only media.'), ('001217','draft','2009-09-22','DISA FSO','policy','The organization develops and documents a system and information integrity policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SI-1.2','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).'), ('001218','draft','2009-09-22','DISA FSO','policy','The organization disseminates the system and information integrity policy to organization-defined personnel or roles.','SI-1.3','DoD disseminates DoDI 8510.01 via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) that meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).'), ('001219','draft','2009-09-22','DISA FSO','policy','The organization reviews and updates system and information integrity policy in accordance with organization-defined frequency.','SI-1.6','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).'), ('001220','draft','2009-09-22','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the system and information integrity policy and associated system integrity controls.','SI-1.4','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) .'), ('001221','draft','2009-09-22','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the system and information integrity policy and associated system integrity controls.','SI-1.5','DoD disseminates DoDI 8510.01 via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) that meets the DoD requirement for a system and information integrity policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).'), ('001222','draft','2009-09-22','DISA FSO','policy','The organization reviews and updates system and information integrity procedures in accordance with organization-defined frequency.','SI-1.8','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).','Documenting and implementing the Risk Management Framework (RMF) for DoD IT (DoDI 8510.01) meets the DoD requirement for a system and information integrity procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, Risk Management Framework (RMF) for DoD IT (DoDI 8510.01).'), ('001223','draft','2009-09-22','DISA FSO','policy','The organization defines the frequency of system and information integrity policy reviews and updates.','SI-1.7','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10.'), ('001224','draft','2009-09-22','DISA FSO','policy','The organization defines the frequency of system and information integrity procedure reviews and updates.','SI-1.9','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('001225','draft','2009-09-22','DISA FSO','policy','The organization identifies information system flaws.','SI-2.1','The organization being inspected/assessed documents and implements a process to identify information system flaws. The process shall include review of the system through automated scans and manual checks to determine the existence of flaws such as IAVM, CVE, or other resources.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed identifies information system flaws.'), ('001226','draft','2009-09-22','DISA FSO','policy','The organization reports information system flaws.','SI-2.2','The organization being inspected/assessed reports information system flaws according to DoD Cybersecurity policy and organizational roles and responsibilities. The organization must report information system flaws in their POA&M.','The organization conducting the inspection/assessment obtains and examines the authorization package, verifies the POA&M is up to date and includes recently identified information system flaws, and verifies that the organization has notified appropriate personnel as defined by DoD Cybersecurity policy and organizational roles and responsibilities.'), ('001227','draft','2009-09-22','DISA FSO','policy','The organization corrects information system flaws.','SI-2.3','The organization being inspected/assessed corrects information system flaws within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).\n\nThe organization documents the corrections on their POA&M.\n\nDoD has defined the time period as within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization conducting the inspection/assessment obtains and examines the information system POA&M and examines the information system to ensure the organization being inspected/assessed corrects information system flaws.'), ('001228','draft','2009-09-22','DISA FSO','policy','The organization tests software updates related to flaw remediation for effectiveness before installation.','SI-2.4','The organization being inspected/assessed documents and implements a process to test software updates related to flaw remediation for effectiveness before installation. If the software update is being provided by a vendor who has documented the effectiveness of the update in fixing the affected IAVM/CVE, further testing by the organization may not be required.','The organization conducting the inspection/assessment obtains and examines the documented process and test results to ensure the organization being inspected/assessed tests software updates related to flaw remediation for effectiveness before installation.'), ('001229','draft','2009-09-22','DISA FSO','policy','The organization tests software updates related to flaw remediation for potential side effects before installation.','SI-2.5','The organization being inspected/assessed documents and implements a process for regression testing IAW CM-4 to identify any potential side effects before installation of software updates.','The organization conducting the inspection/assessment obtains and examines the documented process and test results to ensure the organization being inspected/assessed tests software updates related to flaw remediation for potential side effects before installation.'), ('001230','draft','2009-09-22','DISA FSO','policy','The organization incorporates flaw remediation into the organizational configuration management process.','SI-2.12','The organization being inspected/assessed documents within their configuration management plan, flaw remediation processes.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to ensure that it incorporates flaw remediation.'), ('001231','draft','2009-09-22','DISA FSO','policy','The organization centrally manages the flaw remediation process.','SI-2(1).1','The organization being inspected/assessed documents and implements a process to centrally manage the flaw remediation process.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed centrally manages the flaw remediation process.'), ('001232','draft','2009-09-22','DISA FSO','technical','The organization installs software updates automatically.',NULL,NULL,NULL), ('001233','draft','2009-09-22','DISA FSO','technical','The organization employs automated mechanisms on an organization-defined frequency to determine the state of information system components with regard to flaw remediation.','SI-2(2).1','The organization being inspected/assessed configures the information system to employ automated mechanisms continuously with HBSS; 30 days for any additional internal network scans not covered by HBSS; annually for external scans by (Computer Network Defense Service Provider) CNDSP to determine the state of information system components with regard to flaw remediation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1233. DoD has defined the frequency as continuously with HBSS; 30 days for any additional internal network scans not covered by HBSS; annually for external scans by (Computer Network Defense Service Provider) CNDSP.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ automated mechanisms continuously with HBSS; 30 days for any additional internal network scans not covered by HBSS; annually for external scans by (Computer Network Defense Service Provider) CNDSP to determine the state of information system components with regard to flaw remediation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1233. DoD has defined the frequency as continuously with HBSS; 30 days for any additional internal network scans not covered by HBSS; annually for external scans by (Computer Network Defense Service Provider) CNDSP.'), ('001234','draft','2009-09-22','DISA FSO','policy','The organization defines a frequency for employing automated mechanisms to determine the state of information system components with regard to flaw remediation.','SI-2(2).2','DoD has defined the frequency as continuously with HBSS; 30 days for any additional internal network scans not covered by HBSS; annually for external scans by (Computer Network Defense Service Provider) CNDSP.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as continuously with HBSS; 30 days for any additional internal network scans not covered by HBSS; annually for external scans by (Computer Network Defense Service Provider) CNDSP.'), ('001235','draft','2009-09-22','DISA FSO','policy','The organization measures the time between flaw identification and flaw remediation.','SI-2(3).1','The organization being inspected/assessed documents and implements a process to measure the time between flaw identification and flaw remediation. The organization must maintain an audit trail of flaw identification and flaw remediation.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of flaw identification and flaw remediation to ensure the organization being inspected/assessed measures the time between flaw identification and flaw remediation.'), ('001236','draft','2009-09-22','DISA FSO','policy','The organization defines benchmarks for the time taken to apply corrective actions after flaw identification.','SI-2(3).2','DoD has defined the benchmarks as within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the benchmarks as within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).'), ('001237','draft','2009-09-22','DISA FSO','technical','The organization employs automated patch management tools to facilitate flaw remediation to organization-defined information system components.',NULL,NULL,NULL), ('001238','draft','2009-09-22','DISA FSO','policy','The organization defines information system components for which automated patch management tools are to be employed to facilitate flaw remediation.',NULL,NULL,NULL), ('001239','draft','2009-09-22','DISA FSO','technical','The organization employs malicious code protection mechanisms at information system entry and exit points to detect and eradicate malicious code transported by electronic mail, electronic mail attachments, web accesses, removable media, or other common means or inserted through the exploitation of information system vulnerabilities.',NULL,NULL,NULL), ('001240','draft','2009-09-22','DISA FSO','technical','The organization updates malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy and procedures.','SI-3.5','The organization being inspected/assessed configures the information system to update malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy and procedures. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1240.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to update malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy and procedures. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1240.'), ('001241','draft','2009-09-22','DISA FSO','technical','The organization configures malicious code protection mechanisms to perform periodic scans of the information system on an organization-defined frequency.','SI-3.8','The organization being inspected/assessed configures malicious code protection mechanisms to perform periodic scans of the information system on every 7 days. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1241. DoD has defined the frequency as every 7 days.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures malicious code protection mechanisms to perform periodic scans of the information system on every 7 days. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1241. DoD has defined the frequency as every 7 days.'), ('001242','draft','2009-09-22','DISA FSO','technical','The organization configures malicious code protection mechanisms to perform real-time scans of files from external sources at endpoints as the files are downloaded, opened, or executed in accordance with organizational security policy.','SI-3.9','The organization being inspected/assessed configures malicious code protection mechanisms to perform real-time scans of files from external sources at endpoints as the files are downloaded, opened, or executed in accordance with organizational security policy. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1242.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures malicious code protection mechanisms to perform real-time scans of files from external sources at endpoints as the files are downloaded, opened, or executed in accordance with organizational security policy. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1242.'), ('001243','draft','2009-09-22','DISA FSO','technical','The organization configures malicious code protection mechanisms to perform organization-defined action(s) in response to malicious code detection.','SI-3.10','The organization being inspected/assessed configures malicious code protection mechanisms to perform block and quarantine malicious code and then send an alert to the administrator immediately in near real-time in response to malicious code detection. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1243. DoD has defined the actions as block and quarantine malicious code and then send an alert to the administrator immediately in near real-time.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures malicious code protection mechanisms to perform block and quarantine malicious code and then send an alert to the administrator immediately in near real-time in response to malicious code detection. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1243. DoD has defined the actions as block and quarantine malicious code and then send an alert to the administrator immediately in near real-time.'), ('001244','draft','2009-09-22','DISA FSO','policy','The organization defines one or more actions to perform in response to malicious code detection, such as blocking malicious code, quarantining malicious code, or sending alerts to administrators.','SI-3.11','DoD has defined the actions as block and quarantine malicious code and then send an alert to the administrator immediately in near real-time.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the actions as block and quarantine malicious code and then send an alert to the administrator immediately in near real-time.'), ('001245','draft','2009-09-22','DISA FSO','policy','The organization addresses the receipt of false positives during malicious code detection and eradication, and the resulting potential impact on the availability of the information system.','SI-3.12','The organization being inspected/assessed configures the information system to address the receipt of false positives during malicious code detection and eradication, and the resulting potential impact on the availability of the information system. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1245.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to address the receipt of false positives during malicious code detection and eradication, and the resulting potential impact on the availability of the information system. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1245.'), ('001246','draft','2009-09-22','DISA FSO','policy','The organization centrally manages malicious code protection mechanisms.','SI-3(1).1','The organization being inspected/assessed documents and implements a process to centrally manage malicious code protection mechanisms.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed centrally manages malicious code protection mechanisms.'), ('001247','draft','2009-09-22','DISA FSO','technical','The information system automatically updates malicious code protection mechanisms.','SI-3(2).1','The organization being inspected/assessed configures the information system to automatically update malicious code protection mechanisms. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1247.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically update malicious code protection mechanisms. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1247.'), ('001248','draft','2009-09-22','DISA FSO','technical','The information system prevents non-privileged users from circumventing malicious code protection capabilities.',NULL,NULL,NULL), ('001249','draft','2009-09-22','DISA FSO','technical','The information system updates malicious code protection mechanisms only when directed by a privileged user.','SI-3(4).1','The organization being inspected/assessed configures the information system to update malicious code protection mechanisms only when directed by a privileged user. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1249. This control enhancement may be appropriate for situations where for reasons of security or operational continuity, updates are only applied when selected/approved by designated organizational personnel.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to update malicious code protection mechanisms only when directed by a privileged user. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1249.'), ('001250','draft','2009-09-22','DISA FSO','technical','The organization does not allow users to introduce removable media into the information system.',NULL,NULL,NULL), ('001251','draft','2009-09-22','DISA FSO','policy','The organization tests malicious code protection mechanisms on an organization-defined frequency by introducing a known benign, non-spreading test case into the information system.','SI-3(6).1','The organization being inspected/assessed documents and implement a process to test malicious code protection mechanisms twice annually or when substantial changes are made to the malicious code protection mechanisms by introducing a known benign, non-spreading test case into the information system. DoD has defined the frequency as twice annually or when substantial changes are made to the malicious code protection mechanisms.','The organization conducting the inspection/assessment obtains and examines the documented process and test results to ensure the organization being inspected/assessed tests malicious code protection mechanisms twice annually or when substantial changes are made to the malicious code protection mechanisms by introducing a known benign, non-spreading test case into the information system. DoD has defined the frequency as twice annually or when substantial changes are made to the malicious code protection mechanisms.'), ('001252','draft','2009-09-22','DISA FSO','policy','The organization monitors events on the information system in accordance with organization-defined monitoring objectives and detects information system attacks.',NULL,NULL,NULL), ('001253','draft','2009-09-22','DISA FSO','policy','The organization defines the objectives of monitoring for attacks and indicators of potential attacks on the information system.','SI-4.1','DoD has defined the monitoring objectives as sensor placement and monitoring requirements within CJCSI 6510.01F.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the monitoring objectives as sensor placement and monitoring requirements within CJCSI 6510.01F.'), ('001254','draft','2009-09-22','DISA FSO','policy','The organization identifies unauthorized use of the information system.',NULL,NULL,NULL), ('001255','draft','2009-09-22','DISA FSO','policy','The organization deploys monitoring devices strategically within the information system to collect organization-determined essential information.','SI-4.8','The organization being inspected/assessed documents and implements a process to deploy monitoring devices strategically within the information system to collect organization determined essential information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed deploys monitoring devices strategically within the information system to collect organization determined essential information.'), ('001256','draft','2009-09-22','DISA FSO','policy','The organization deploys monitoring devices at ad hoc locations within the system to track specific types of transactions of interest to the organization.','SI-4.9','The organization being inspected/assessed documents and implements a process to deploy monitoring devices at ad hoc locations within the system to track specific types of transactions of interest to the organization.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed deploys monitoring devices at ad hoc locations within the system to track specific types of transactions of interest to the organization.'), ('001257','draft','2009-09-22','DISA FSO','policy','The organization heightens the level of information system monitoring activity whenever there is an indication of increased risk to organizational operations and assets, individuals, other organizations, or the Nation based on law enforcement information, intelligence information, or other credible sources of information.','SI-4.13','The organization being inspected/assessed documents and implements a process to heighten the level of information system monitoring activity whenever there is an indication of increased risk to organizational operations and assets, individuals, other organizations, or the Nation based on law enforcement information, intelligence information, or other credible sources of information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed heightens the level of information system monitoring activity whenever there is an indication of increased risk to organizational operations and assets, individuals, other organizations, or the Nation based on law enforcement information, intelligence information, or other credible sources of information.'), ('001258','draft','2009-09-22','DISA FSO','policy','The organization obtains legal opinion with regard to information system monitoring activities in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations.','SI-4.14','The organization being inspected/assessed obtains and documents legal opinion with regard to information system monitoring activities in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations.','The organization conducting the inspection/assessment obtains and examines the documented legal opinion to ensure the organization being inspected/assessed obtains legal opinion with regard to information system monitoring activities in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations.'), ('001259','draft','2009-09-22','DISA FSO','technical','The organization interconnects and configures individual intrusion detection tools into a systemwide intrusion detection system using common protocols.',NULL,NULL,NULL), ('001260','draft','2009-09-22','DISA FSO','policy','The organization employs automated tools to support near real-time analysis of events.','SI-4(2).1','The organization being inspected/assessed documents and implements automated tools to support near real-time analysis of events.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated tools to ensure the organization being inspected/assessed employs automated tools to support near real-time analysis of events. The organization being inspected/assessed may be required to demonstrate use of their automated tools.'), ('001261','draft','2009-09-22','DISA FSO','policy','The organization employs automated tools to integrate intrusion detection tools into access control and flow control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination.',NULL,NULL,NULL), ('001262','draft','2009-09-22','DISA FSO','technical','The information system monitors inbound and outbound communications for unusual or unauthorized activities or conditions.',NULL,NULL,NULL), ('001263','draft','2009-09-22','DISA FSO','technical','The information system provides near real-time alerts when any of the organization-defined list of compromise or potential compromise indicators occurs.',NULL,NULL,NULL), ('001264','draft','2009-09-22','DISA FSO','policy','The organization defines indicators of compromise or potential compromise to the security of the information system which will result in information system alerts being provided to organization-defined personnel or roles.','SI-4(5).1','DoD has defined the compromise indicators as real time intrusion detection and when there are threats identified by authoritative sources (e.g. CTOs) and IAW incident categories I, II, IV, & VII within CJCSM 6510.01B.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the compromise indicators as real time intrusion detection and when there are threats identified by authoritative sources (e.g. CTOs) and IAW incident categories I, II, IV, & VII within CJCSM 6510.01B.'), ('001265','draft','2009-09-22','DISA FSO','technical','The information system prevents non-privileged users from circumventing intrusion detection and prevention capabilities.',NULL,NULL,NULL), ('001266','draft','2009-09-22','DISA FSO','technical','The information system notifies an organization-defined list of incident response personnel (identified by name and/or by role) of detected suspicious events.','SI-4(7).1','The organization being inspected/assessed configures the information system to notify incident response personnel defined in the incident response plan of detected suspicious events. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1266. DoD has defined the incident response personnel as incident response personnel defined in the incident response plan.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify incident response personnel defined in the incident response plan of detected suspicious events. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1266. DoD has defined the incident response personnel as incident response personnel defined in the incident response plan.'), ('001267','draft','2009-09-22','DISA FSO','policy','The organization defines a list of incident response personnel (identified by name and/or by role) to be notified of detected suspicious events.','SI-4(7).2','DoD has defined the incident response personnel as incident response personnel defined in the incident response plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the incident response personnel as incident response personnel defined in the incident response plan.'), ('001268','draft','2009-09-22','DISA FSO','policy','The organization defines a list of least-disruptive actions to be taken by the information system to terminate suspicious events.','SI-4(7).3','The organization being inspected/assessed defines and documents a list of least-disruptive actions to be taken by the information system to terminate suspicious events. DoD has determined the least-disruptive actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list of least-disruptive actions to ensure the organization being inspected/assessed defines a list of least-disruptive actions to be taken by the information system to terminate suspicious events. DoD has determined the least-disruptive actions are not appropriate to define at the Enterprise level.'), ('001269','draft','2009-09-22','DISA FSO','technical','The organization protects information obtained from intrusion monitoring tools from unauthorized access, modification, and deletion.',NULL,NULL,NULL), ('001270','draft','2009-09-22','DISA FSO','policy','The organization tests intrusion monitoring tools at an organization-defined frequency.','SI-4(9).1','The organization being inspected/assessed documents and implements a process to test intrusion monitoring tools every 30 days. The organization must maintain an audit trail of test results. DoD has defined the frequency as every 30 days.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of test results to ensure the organization being inspected/assessed tests intrusion monitoring tools every 30 days. DoD has defined the frequency as every 30 days.'), ('001271','draft','2009-09-22','DISA FSO','policy','The organization defines the frequency for testing intrusion monitoring tools.','SI-4(9).2','DoD has defined the frequency as every 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 30 days.'), ('001272','draft','2009-09-22','DISA FSO','technical','The organization makes provisions so encrypted traffic is visible to information system monitoring tools.',NULL,NULL,NULL), ('001273','draft','2009-09-22','DISA FSO','policy','The organization analyzes outbound communications traffic at the external boundary of the information system to discover anomalies.','SI-4(11).1','The organization being inspected/assessed documents and implements a process to analyze outbound communications traffic at the external boundary of the information system to discover anomalies. The organization must maintain a record of any discovered anomalies.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of any discovered anomalies to ensure the organization being inspected/assessed analyzes outbound communications traffic at the external boundary of the information system to discover anomalies.'), ('001274','draft','2009-09-22','DISA FSO','policy','The organization employs automated mechanisms to alert security personnel of organization-defined inappropriate or unusual activities with security implications.','SI-4(12).1','The organization being inspected/assessed documents and implements automated mechanisms to alert security personnel when there are threats identified by authoritative sources (e.g. CTOs) and IAW with CJCSM 6510.01B. For automated alert mechanisms that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1274. DoD has defined the activities that trigger alerts as when there are threats identified by authoritative sources (e.g. CTOs) and IAW with CJCSM 6510.01B.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms used to alert security personnel when there are threats identified by authoritative sources (e.g. CTOs) and IAW with CJCSM 6510.01B. For automated alert mechanisms that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1274. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms. DoD has defined the activities that trigger alerts as when there are threats identified by authoritative sources (e.g. CTOs) and IAW with CJCSM 6510.01B.'), ('001275','draft','2009-09-22','DISA FSO','policy','The organization defines the activities which will trigger alerts to security personnel of inappropriate or unusual activities.','SI-4(12).2','DoD has defined the activities that trigger alerts as when there are threats identified by authoritative sources (e.g. CTOs) and IAW with CJCSM 6510.01B.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the activities that trigger alerts as when there are threats identified by authoritative sources (e.g. CTOs) and IAW with CJCSM 6510.01B.'), ('001276','draft','2009-09-22','DISA FSO','policy','The organization analyzes communications traffic/event patterns for the information system.','SI-4(13).1','The organization being inspected/assessed documents and implements a process to analyze communications traffic/event patterns for the information system. The organization must maintain a record of the analysis.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of analysis to ensure the organization being inspected/assessed analyzes communications traffic/event patterns for the information system.'), ('001277','draft','2009-09-22','DISA FSO','policy','The organization develops profiles representing common traffic patterns and/or events.','SI-4(13).2','The organization being inspected/assessed develops and documents profiles representing common traffic patterns and/or events.','The organization conducting the inspection/assessment obtains and examines the documented profiles to ensure the organization being inspected/assessed develops profiles representing common traffic patterns and/or events.'), ('001278','draft','2009-09-22','DISA FSO','policy','The organization uses the traffic/event profiles in tuning system monitoring devices to reduce the number of false positives to an organization-defined measure of false positives and the number of false negatives to an organization-defined measure of false negatives.',NULL,NULL,NULL), ('001279','draft','2009-09-22','DISA FSO','policy','The organization defines the respective measurements to which the organization must tune system monitoring devices to reduce the number of false positives.',NULL,NULL,NULL), ('001280','draft','2009-09-22','DISA FSO','policy','The organization defines the respective measurements to which the organization must tune system monitoring devices to reduce the number of false negatives.',NULL,NULL,NULL), ('001281','draft','2009-09-22','DISA FSO','policy','The organization employs a wireless intrusion detection system.',NULL,NULL,NULL), ('001282','draft','2009-09-22','DISA FSO','policy','The organization employs an intrusion detection system to monitor wireless communications traffic as the traffic passes from wireless to wireline networks.','SI-4(15).1','The organization being inspected/assessed documents and implements an intrusion detection system to monitor wireless communications traffic as the traffic passes from wireless to wireline networks.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified intrusion detection system to ensure the organization being inspected/assessed employs an intrusion detection system to monitor wireless communications traffic as the traffic passes from wireless to wireline networks. The organization being inspected/assessed may be required to demonstrate use of the intrusion detection system.'), ('001283','draft','2009-09-22','DISA FSO','policy','The organization correlates information from monitoring tools employed throughout the information system.','SI-4(16).1','The organization being inspected/assessed documents and implements a process to correlate information from monitoring tools employed throughout the information system.','The organization conducting the inspection/assessment obtains and examines the documented process and the correlated results to ensure the organization being inspected/assessed correlates information from monitoring tools employed throughout the information system.'), ('001284','draft','2009-09-22','DISA FSO','policy','The organization correlates information from monitoring physical, cyber, and supply chain activities to achieve integrated, organization-wide situational awareness.','SI-4(17).1','The organization being inspected/assessed documents and implements a process to correlate information from monitoring physical, cyber, and supply chain activities to achieve integrated, organization-wide situational awareness.','The organization conducting the inspection/assessment obtains and examines the documented process and the correlated results to ensure the organization being inspected/assessed correlates information from monitoring physical, cyber, and supply chain activities to achieve integrated, organization-wide situational awareness.'), ('001285','draft','2009-09-22','DISA FSO','policy','The organization receives information system security alerts, advisories, and directives from organization-defined external organizations on an ongoing basis.','SI-5.1','The organization being inspected/assessed receives information system security alerts, advisories, and directives from at a minimum, USCYBERCOM on an ongoing basis. DoD has defined the external organizations as at a minimum, USCYBERCOM.','The organization conducting the inspection/assessment obtains and examines alerts, advisories, and directives received by the organization being inspected/assessed to ensure they receive information system security alerts, advisories, and directives from at a minimum, USCYBERCOM on an ongoing basis. DoD has defined the external organizations as at a minimum, USCYBERCOM.'), ('001286','draft','2009-09-22','DISA FSO','policy','The organization generates internal security alerts, advisories, and directives as deemed necessary.','SI-5.3','The organization being inspected/assessed documents and implements a process to generate internal security alerts, advisories, and directives as deemed necessary.','The organization conducting the inspection/assessment obtains and examines documented process as well as the generated internal security alerts, advisories, and directives to ensure the organization being inspected/assessed generates internal security alerts, advisories, and directives as deemed necessary.'), ('001287','draft','2009-09-22','DISA FSO','policy','The organization disseminates security alerts, advisories, and directives to organization-defined personnel or roles, organization-defined elements within the organization, and/or organization-defined external organizations.','SI-5.4','The organization being inspected/assessed disseminates security alerts, advisories, and directives to the ISSO and ISSM and/or external organizations defined in SI-5, CCI 2694. DoD has defined the personnel or roles as the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines any applicable artifacts showing dissemination of security alerts, advisories, and directives to ensure the organization being inspected/assessed disseminates security alerts, advisories, and directives to the ISSO and ISSM and/or external organizations defined in SI-5, CCI 2694. DoD has defined the personnel or roles as the ISSO and ISSM.'), ('001288','draft','2009-09-22','DISA FSO','policy','The organization defines the personnel or roles to whom the organization will disseminate security alerts, advisories, and directives.','SI-5.5','DoD has defined the personnel or roles as the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSO and ISSM.'), ('001289','draft','2009-09-22','DISA FSO','policy','The organization implements security directives in accordance with established time frames, or notifies the issuing organization of the degree of noncompliance.','SI-5.8','The organization being inspected/assessed implements security directives in accordance with established time frames, or notifies the issuing organization of the degree of noncompliance.','The organization conducting the inspection/assessment examines the information system and obtains and examines records of compliance and/or non-compliance reporting to ensure that security directives have been implemented in accordance with established time frames, or notifies the issuing organization of the degree of noncompliance.'), ('001290','draft','2009-09-22','DISA FSO','policy','The organization employs automated mechanisms to make security alert and advisory information available throughout the organization.','SI-5(1).1','The organization being inspected/assessed documents and implements automated mechanisms to make security alert and advisory information available throughout the organization.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure the organization being inspected/assessed employs automated mechanisms to make security alert and advisory information available throughout the organization. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('001291','draft','2009-09-22','DISA FSO','technical','The information system verifies the correct operation of security functions in accordance with organization-defined conditions and in accordance with organization-defined frequency (if periodic verification).',NULL,NULL,NULL), ('001292','draft','2009-09-22','DISA FSO','policy','The organization defines the appropriate conditions, including the system transitional states if applicable, for verifying the correct operation of security functions.',NULL,NULL,NULL), ('001293','draft','2009-09-22','DISA FSO','policy','The organization defines the information system responses and alternative action(s) to anomalies discovered during security function verification.',NULL,NULL,NULL), ('001294','draft','2009-09-22','DISA FSO','technical','The information system notifies organization-defined personnel or roles of failed security verification tests.','SI-6.6','The organization being inspected/assessed configures the information system to notify the ISSO and ISSM of failed security verification tests. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1294. DoD has defined the personnel or roles as the ISSO and ISSM.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the ISSO and ISSM of failed security verification tests. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1294. DoD has defined the personnel or roles as the ISSO and ISSM.'), ('001295','draft','2009-09-22','DISA FSO','technical','The information system implements automated mechanisms to support the management of distributed security testing.','SI-6(2).1','The organization being inspected/assessed configures the information system to implement automated mechanisms to support the management of distributed security testing. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1295.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement automated mechanisms to support the management of distributed security testing. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1295.'), ('001296','draft','2009-09-22','DISA FSO','policy','The organization reports the results of security function verification to organization-defined personnel or roles.','SI-6(3).1','The organization being inspected/assessed documents and implements a process to report the result of security function verification to at a minimum, the ISSO and ISSM. The organization must maintain an audit trail of reporting. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reporting to ensure the organization being inspected/assessed reports the result of security function verification to at a minimum, the ISSO and ISSM. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('001297','draft','2009-09-22','DISA FSO','technical','The information system detects unauthorized changes to software and information.',NULL,NULL,NULL), ('001298','draft','2009-09-22','DISA FSO','policy','The organization reassesses the integrity of software and information by performing, on an organization-defined frequency, integrity scans of the information system.',NULL,NULL,NULL), ('001299','draft','2009-09-22','DISA FSO','policy','The organization defines the frequency of integrity scans to be performed on the information system.',NULL,NULL,NULL), ('001300','draft','2009-09-22','DISA FSO','policy','The organization employs automated tools that provide notification to organization-defined personnel or roles upon discovering discrepancies during integrity verification.','SI-7(2).1','The organization being inspected/assessed documents and implements automated tools that provide notification to at a minimum, the ISSO and ISSM upon discovering discrepancies during integrity verification. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated tools to ensure the organization being inspected/assessed employs automated tools that provide notification to at a minimum, the ISSO and ISSM upon discovering discrepancies during integrity verification. The organization being inspected/assessed may be required to demonstrate use of their identified automated tools. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('001301','draft','2009-09-22','DISA FSO','policy','The organization employs centrally managed integrity verification tools.','SI-7(3).1','The organization being inspected/assessed documents and implements centrally managed integrity verification tools.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified centrally managed integrity verification tools to ensure the organization being inspected/assessed employs centrally managed integrity verification tools. The organization being inspected/assessed may be required to demonstrate use of their identified integrity verification tools.'), ('001302','draft','2009-09-22','DISA FSO','policy','The organization requires use of tamper-evident packaging for organization-defined information system components during organization-defined conditions.',NULL,NULL,NULL), ('001303','draft','2009-09-22','DISA FSO','policy','The organization defines information system components that require tamper-evident packaging.',NULL,NULL,NULL), ('001304','draft','2009-09-22','DISA FSO','policy','The organization defines conditions (i.e., transportation from vendor to operational site, during operation, both) under which tamper-evident packaging must be used for organization-defined information system components.',NULL,NULL,NULL), ('001305','draft','2009-09-22','DISA FSO','technical','The organization employs spam protection mechanisms at information system entry and exit points to detect and take action on unsolicited messages transported by electronic mail, electronic mail attachments, web accesses, removable media, or other common means.',NULL,NULL,NULL), ('001306','draft','2009-09-22','DISA FSO','policy','The organization updates spam protection mechanisms when new releases are available in accordance with organizational configuration management policy and procedures.','SI-8.3','The organization being inspected/assessed documents and implements a process to update spam protection mechanisms when new releases are available in accordance with organizational configuration management policy and procedures.','The organization conducting the inspection/assessment obtains and examines the documented process and examines the spam protection mechanisms to ensure the organization being inspected/assessed updates spam protection mechanisms when new releases are available in accordance with organizational configuration management policy and procedures.'), ('001307','draft','2009-09-22','DISA FSO','policy','The organization centrally manages spam protection mechanisms.','SI-8(1).1','The organization being inspected/assessed documents and implements a process to centrally manage spam protection mechanisms.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed centrally manages spam protection mechanisms.'), ('001308','draft','2009-09-22','DISA FSO','technical','The information system automatically updates spam protection mechanisms.','SI-8(2).1','The organization being inspected/assessed configures the information system to automatically update spam protection mechanisms. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1308.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically update spam protection mechanisms. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1308.'), ('001309','draft','2009-09-22','DISA FSO','policy','The organization restricts the capability to input information to the information system to authorized personnel.',NULL,NULL,NULL), ('001310','draft','2009-09-22','DISA FSO','technical','The information system checks the validity of organization-defined inputs.','SI-10.1','The organization being inspected/assessed configures the information system to check the validity of all inputs except those identified specifically by the organization. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1310. DoD has defined the information inputs as all inputs except those identified specifically by the organization.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to check the validity of all inputs except those identified specifically by the organization. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1310. DoD has defined the information inputs as all inputs except those identified specifically by the organization.'), ('001311','draft','2009-09-22','DISA FSO','technical','The information system identifies potentially security-relevant error conditions.',NULL,NULL,NULL), ('001312','draft','2009-09-22','DISA FSO','technical','The information system generates error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.','SI-11.1','The organization being inspected/assessed configures the information system to generate error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1312.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to generate error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1312.'), ('001313','draft','2009-09-22','DISA FSO','policy','The organization defines sensitive or potentially harmful information that should not be contained in error logs and administrative messages.',NULL,NULL,NULL), ('001314','draft','2009-09-22','DISA FSO','technical','The information system reveals error messages only to organization-defined personnel or roles.','SI-11.2','The organization being inspected/assessed configures the information system to reveal error messages only to the ISSO, ISSM, and SCA. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1314. DoD has defined the personnel or roles as the ISSO, ISSM, and SCA.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to reveal error messages only to the ISSO, ISSM, and SCA. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1314. DoD has defined the personnel or roles as the ISSO, ISSM, and SCA.'), ('001315','draft','2009-09-22','DISA FSO','policy','The organization handles information within the information system and information output from the system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.','SI-12.1','The organization being inspected/assessed identifies and documents federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements which apply to the information within the information system. The organization documents and implements a process to handle information IAW those documented federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.','The organization conducting the inspection/assessment obtains and examines the documented list of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements which apply to the information within the information system, as well as the documented process for information handling to ensure the organization being inspected/assessed handles information within the information system and information output from the system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.'), ('001316','draft','2009-09-22','DISA FSO','policy','The organization protects the information system from harm by considering mean time to failure rates for an organization-defined list of information system components in specific environments of operation.',NULL,NULL,NULL), ('001317','draft','2009-09-22','DISA FSO','policy','The organization defines a list of information system components for which mean time to failure rates should be considered to protect the information system from harm.',NULL,NULL,NULL), ('001318','draft','2009-09-22','DISA FSO','policy','The organization provides substitute information system components.','SI-13.3','The organization being inspected/assessed documents and implements a process to provide substitute information system components.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides substitute information system components.'), ('001319','draft','2009-09-22','DISA FSO','policy','The organization takes information system components out of service by transferring component responsibilities to a substitute component no later than an organization-defined fraction or percentage of mean time to failure (MTTF).','SI-13(1).1','The organization being inspected/assessed documents and implements a process to take the information system components out of service by transferring component responsibilities to a substitute component no later than a fraction or percentage of mean time to failure defined in SI-13 (1), CCI 1320. The organization must maintain a log of component substitution.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the log of component substitution to ensure the organization being inspected/assessed takes the information system components out of service by transferring component responsibilities to a substitute component no later than a fraction or percentage of mean time to failure defined in SI-13 (1), CCI 1320.'), ('001320','draft','2009-09-22','DISA FSO','policy','The organization defines the maximum fraction or percentage of mean time to failure (MTTF) used to determine when information system components are taken out of service by transferring component responsibilities to substitute components.','SI-13(1).2','The organization being inspected/assessed defines and documents the maximum fraction or percentage of mean time to failure used to determine when information system components are taken out of service by transferring component responsibilities to substitute components. DoD has determined the fraction or percentage is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented fraction or percentage to ensure the organization being inspected/assessed defines the maximum fraction or percentage of mean time to failure used to determine when information system components are taken out of service by transferring component responsibilities to substitute components. DoD has determined the fraction or percentage is not appropriate to define at the Enterprise level.'), ('001321','draft','2009-09-22','DISA FSO','policy','The organization does not allow a process to execute without supervision for more than an organization-defined time period.','SI-7(16).1','The organization being inspected/assessed does not allow a process to execute without supervision for more than the time period defined in SI-7 (16), CCI 1322.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of process supervision to ensure the organization being inspected/assessed does not allow a process to execute without supervision for more than the time period defined in SI-7 (16), CCI 1322.'), ('001322','draft','2009-09-22','DISA FSO','policy','The organization defines a time period that is the longest a process is allowed to execute without supervision.','SI-7(16).2','The organization being inspected/assessed defines and documents a time period that is the most a process is allowed to execute without supervision. DoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure the organization being inspected/assessed defines a time period that is the most a process is allowed to execute without supervision. DoD has determined the time period is not appropriate to define at the Enterprise level.'), ('001323','draft','2009-09-22','DISA FSO','policy','The organization manually initiates a transfer between active and standby information system components in accordance with organization-defined frequency if the mean time to failure (MTTF) exceeds an organization-defined time period.',NULL,NULL,NULL), ('001324','draft','2009-09-22','DISA FSO','policy','The organization defines the minimum frequency at which the organization manually initiates a transfer between active and standby information system components if the mean time to failure (MTTF) exceeds the organization-defined time period.','SI-13(3).1','The organization being inspected/assessed defines and documents the minimum frequency at which the organization manually initiates a transfer between active and standby information system components if the mean time to failure exceeds the organization-defined time period. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the minimum frequency at which the organization manually initiates a transfer between active and standby information system components if the mean time to failure exceeds the organization-defined time period. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('001325','draft','2009-09-22','DISA FSO','policy','The organization defines a time period that the mean time to failure (MTTF) must exceed before the organization manually initiates a transfer between active and standby information system components.','SI-13(3).2','The organization being inspected/assessed defines and documents a time period that the mean time to failure must exceed before the organization manually initiates a transfer between active and standby information system components. The time period should be based on organizational need to maintain readiness of standby components. DoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure the organization being inspected/assessed defines a time period that the mean time to failure must exceed before the organization manually initiates a transfer between active and standby information system components. DoD has determined the time period is not appropriate to define at the Enterprise level.'), ('001326','draft','2009-09-22','DISA FSO','policy','The organization, if information system component failures are detected, ensures standby components are successfully and transparently installed within an organization-defined time period.','SI-13(4).1','The organization being inspected/assessed documents and implements a process to transparently install standby components within a time period defined in SI-13 (4), CCI 1327 if information system component failures are detected. The organization must maintain a log of standby component installation to include time periods.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the log of standby component installation to ensure the organization being inspected/assessed transparently installs standby components within a time period defined in SI-13 (4), CCI 1327 if information system component failures are detected.'), ('001327','draft','2009-09-22','DISA FSO','policy','The organization defines a time period for a standby information system component to be successfully and transparently installed for the information system component that has failed.','SI-13(4).2','The organization being inspected/assessed defines and documents a time period for a standby information system component to be successfully and transparently installed for the information system component that has failed\n\nDoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure the organization being inspected/assessed defines a time period for a standby information system component to be successfully and transparently installed for the information system component that has failed. DoD has determined the time period is not appropriate to define at the Enterprise level.'), ('001328','draft','2009-09-22','DISA FSO','technical','The organization, if an information system component failure is detected, activates an organization-defined alarm and/or automatically shuts down the information system.','SI-13(4).3','The organization being inspected/assessed configures the information system to activate an alarm defined in SI-13( 4), CCI 1329 and/or automatically shuts down the information system if an information system component failure is detected. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1328.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to activate an alarm defined in SI-13( 4), CCI 1329 and/or automatically shuts down the information system if an information system component failure is detected. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1328.'), ('001329','draft','2009-09-22','DISA FSO','policy','The organization defines the alarm to be activated when an information system component failure is detected.','SI-13(4).4','The organization being inspected/assessed defines and documents the alarm to be activated when an information system component failure is detected. DoD has determined the alarm is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented alarm to ensure the organization being inspected/assessed defines the alarm to be activated when an information system component failure is detected. DoD has determined the alarm is not appropriate to define at the Enterprise level.'), ('001330','draft','2009-09-22','DISA FSO','policy','The organization prohibits the use of unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information unless specifically permitted by the authorizing official.','AC-19(4).1','The organization being inspected/assessed documents and implements a process to prohibit the use of unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information unless specifically permitted by the authorizing official.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed prohibits the use of unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information unless specifically permitted by the authorizing official.'), ('001331','draft','2009-09-22','DISA FSO','policy','The organization prohibits connection of unclassified mobile devices to classified information systems.','AC-19(4).2','The organization being inspected/assessed documents and implements a process to prohibit connection of unclassified mobile devices to classified information systems.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed prohibits connection of unclassified mobile devices to classified information systems.'), ('001332','draft','2009-09-22','DISA FSO','policy','The organization requires approval from the authorizing official for the connection of unclassified mobile devices to unclassified information systems.','AC-19(4).3','The organization being inspected/assessed documents and implements a process to require approval from the authorizing official for the connection of unclassified mobile devices to unclassified information systems. The organization must maintain an audit trail of approvals.','The organization conducting the inspection/assessment obtains and examines the documented process and the audit trail of approvals to ensure the organization being inspected/assessed requires approval from the authorizing official for the connection of unclassified mobile devices to unclassified information systems.'), ('001333','draft','2009-09-22','DISA FSO','policy','The organization prohibits use of internal or external modems or wireless interfaces within unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information.','AC-19(4).4','The organization being inspected/assessed documents and implements a process to prohibit use of internal or external modems or wireless interfaces within unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed prohibits use of internal or external modems or wireless interfaces within unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information.'), ('001334','draft','2009-09-22','DISA FSO','policy','The organization requires that unclassified mobile devices used in facilities containing information systems processing, storing, or transmitting classified information and the information stored on those devices be subject to random reviews and inspections by organization-defined security officials.','AC-19(4).5','The organization being inspected/assessed documents and implements a process to require that unclassified mobile devices used in facilities containing information systems processing, storing, or transmitting classified information and the information stored on those devices are subject to random reviews and inspections by the ISSM/ISSO. DoD has defined the security officials as the ISSM/ISSO.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires that unclassified mobile devices used in facilities containing information systems processing, storing, or transmitting classified information and the information stored on those devices are subject to random reviews and inspections by the ISSM/ISSO. DoD has defined the security officials as the ISSM/ISSO.'), ('001335','draft','2009-09-22','DISA FSO','policy','The organization defines security officials to perform reviews and inspections of unclassified mobile devices in facilities containing information systems processing, storing, or transmitting classified information.','AC-19(4).6','DoD has defined the security officials as the ISSM/ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security officials as the ISSM/ISSO.'), ('001336','draft','2009-09-22','DISA FSO','policy','The organization retains individual training records for an organization-defined time period.','AT-4.3','The organization being inspected/assessed will maintain records training records for at least 5 years or 5 years after completion of a specific training program. DoD has defined the frequency as at least 5 years or 5 years after completion of a specific training program.','The organization conducting the inspection/assessment obtains and examines training records to ensure records have been maintained for at least 5 years or 5 years after completion of a specific training program. DoD has defined the frequency as at least 5 years or 5 years after completion of a specific training program.'), ('001337','draft','2009-09-22','DISA FSO','policy','The organization defines a time period for retaining individual training records.','AT-4.4','DoD has defined the frequency as at least 5 years or 5 years after completion of a specific training program.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least 5 years or 5 years after completion of a specific training program.'), ('001338','draft','2009-09-22','DISA FSO','technical','The information system associates the identity of the information producer with the information.',NULL,NULL,NULL), ('001339','draft','2009-09-22','DISA FSO','technical','The information system validates the binding of the information producer\'s identity to the information.',NULL,NULL,NULL), ('001340','draft','2009-09-22','DISA FSO','technical','The information system maintains reviewer/releaser identity and credentials within the established chain of custody for all information reviewed or released.','AU-10(3).1','The organization being inspected/assessed configures the information system to maintain reviewer/releaser identity and credentials within the established chain of custody for all information reviewed or released. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1340.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain reviewer/releaser identity and credentials within the established chain of custody for all information reviewed or released. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1340.'), ('001341','draft','2009-09-22','DISA FSO','technical','The information system validates the binding of the information reviewer identity to the information at the transfer or release points prior to release/transfer between organization-defined security domains.','AU-10(4).1','The organization being inspected/assessed configures the information system to validate the binding of the information reviewers identity at the transfer or release points between security domains defined in AU-10 (4), CCI 1907.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to validate the binding of the information reviewers identity at the transfer or release points between security domains defined in AU-10 (4), CCI 1907.'), ('001342','deprecated','2009-09-22','DISA FSO','technical','The organization employs either FIPS-validated or NSA-approved cryptography to implement digital signatures.',NULL,NULL,NULL), ('001343','draft','2009-09-22','DISA FSO','technical','The information system invokes a system shutdown in the event of an audit failure, unless an alternative audit capability exists.',NULL,NULL,NULL), ('001344','draft','2009-09-22','DISA FSO','policy','The organization specifies the permitted actions for each authorized information system process, role, and/or user in the audit and accountability policy.',NULL,NULL,NULL), ('001345','deprecated','2009-09-22','DISA FSO','technical','The organization employs automated mechanisms to alert security personnel of any organization-defined inappropriate or unusual activities with security implications.',NULL,NULL,NULL), ('001346','draft','2009-09-22','DISA FSO','policy','The organization defines a list of inappropriate or unusual activities with security implications that are to result in alerts to security personnel.',NULL,NULL,NULL), ('001347','draft','2009-09-22','DISA FSO','policy','The organization performs, in a physically dedicated information system, full-text analysis of privileged functions executed.',NULL,NULL,NULL), ('001348','draft','2009-09-22','DISA FSO','technical','The information system backs up audit records on an organization-defined frequency onto a different system or system component than the system or component being audited.','AU-9(2).1','The organization being inspected/assessed configures the information system to back up audit records at least every seven days. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1348. DoD has defined the frequency as every seven days.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to back up audit records at least every seven days. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1348. DoD has defined the frequency as every seven days.'), ('001349','draft','2009-09-22','DISA FSO','policy','The organization defines a frequency for backing up system audit records onto a different system or system component than the system or component being audited.','AU-9(2).2','DoD has defined the frequency as every seven days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every seven days.'), ('001350','draft','2009-09-22','DISA FSO','technical','The information system implements cryptographic mechanisms to protect the integrity of audit information.','AU-9(3).1','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the integrity of audit information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1350.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to implement cryptographic mechanisms to protect the integrity of audit information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1350.'), ('001351','draft','2009-09-22','DISA FSO','policy','The organization authorizes access to management of audit functionality to only an organization-defined subset of privileged users.','AU-9(4).2','The organization being inspected/assessed authorizes access to the management of audit functionality to only the subset of privileged users defined in AU-9 (4), CCI 1894.','The organization conducting the inspection/assessment obtains and examines the documentation of access authorizations for the management of audit functionality to ensure only the subset of privileged users defined in AU-9 (4), CCI 1894 have been granted access authorization.'), ('001352','draft','2009-09-22','DISA FSO','technical','The organization protects the audit records of non-local accesses to privileged accounts and the execution of privileged functions.',NULL,NULL,NULL), ('001353','draft','2009-09-22','DISA FSO','technical','The information system produces a system-wide (logical or physical) audit trail composed of audit records in a standardized format.','AU-12(2).1','The organization being inspected/assessed configures the information system to produce a system-wide (logical or physical) audit trail composed of audit records in a standardized format. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1353.','The organization conducting the inspection/assessment examines the information system to ensure the information system is configured to produce a system-wide (logical or physical) audit trail composed of audit records in a standardized format. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1353.'), ('001354','draft','2009-09-22','DISA FSO','policy','The organization manages information system accounts by deactivating temporary accounts that are no longer required.',NULL,NULL,NULL), ('001355','draft','2009-09-22','DISA FSO','policy','The organization manages information system accounts by deactivating accounts of terminated or transferred users.',NULL,NULL,NULL), ('001356','draft','2009-09-22','DISA FSO','technical','The organization monitors for atypical usage of information system accounts.',NULL,NULL,NULL), ('001357','draft','2009-09-22','DISA FSO','policy','The organization reports atypical usage to designated organizational officials.',NULL,NULL,NULL), ('001358','draft','2009-09-22','DISA FSO','policy','The organization establishes privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.','AC-2(7).1','The organization being inspected/assessed documents and implements a process to establish privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.','The organization conducting the inspection/assessment obtains and examines documented processes for privileged user account creation to ensure the organization being inspected/assessed establishes privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.'), ('001359','draft','2009-09-22','DISA FSO','policy','The organization tracks privileged role assignments.',NULL,NULL,NULL), ('001360','draft','2009-09-22','DISA FSO','policy','The organization monitors privileged role assignments.','AC-2(7).3','The organization being inspected/assessed implements a process to monitor privileged role assignments. The organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the audit trail of monitoring to ensure the organization being inspected/assessed monitors privileged role assignments.'), ('001361','draft','2009-09-24','DISA FSO','policy','The organization defines a time period after which temporary accounts are automatically terminated.','AC-2(2).2','DoD has defined the time period as 72 hours. The time period of 72 hours applies to temporary user accounts.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 72 hours. The time period of 72 hours applies to temporary user accounts.'), ('001362','draft','2009-09-22','DISA FSO','technical','The information system enforces a Discretionary Access Control (DAC) policy that allows users to specify and control sharing by named individuals or groups of individuals, or by both.',NULL,NULL,NULL), ('001363','draft','2009-09-22','DISA FSO','policy','The organization establishes a Discretionary Access Control (DAC) policy that allows users to specify and control sharing by named individuals or groups of individuals, or by both.',NULL,NULL,NULL), ('001365','draft','2009-09-24','DISA FSO','policy','The organization defines a time period after which emergency accounts are automatically terminated.','AC-2(2).3','DoD has defined the time period as never. The time period of never applies to emergency admin accounts.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as never. The time period of never applies to emergency admin accounts.'), ('001366','draft','2009-09-22','DISA FSO','policy','The organization defines user information to be encrypted or stored off-line in a secure location.',NULL,NULL,NULL), ('001367','draft','2009-09-22','DISA FSO','policy','The organization defines system information to be encrypted or stored off-line in a secure location.',NULL,NULL,NULL), ('001368','draft','2009-09-22','DISA FSO','technical','The information system enforces approved authorizations for controlling the flow of information within the system based on organization-defined information flow control policies.','AC-4.1','The organization being inspected/assessed configures the information system to enforce approved authorizations for controlling the flow of information within the system based on information flow control policies defined in AC-4, CCI 1548. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1368.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce approved authorizations for controlling the flow of information within the system based on information flow control policies defined in AC-4, CCI 1548. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1368.'), ('001371','draft','2009-09-22','DISA FSO','policy','The organization defines information security policy filters requiring fully enumerated formats which are to be implemented when transferring information between different security domains.','AC-4(14).1','The organization being inspected/assessed defines and documents information security policy filters requiring fully enumerated formats which are to be implemented when transferring information between different security domains. DoD has determined the information security policy filters are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information security policy filters to ensure the organization being inspected/assessed defines. information security policy filters requiring fully enumerated formats which are to be implemented when transferring information between different security domains. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('001372','draft','2009-09-22','DISA FSO','technical','The information system, when transferring information between different security domains, implements organization-defined security policy filters requiring fully enumerated formats that restrict data structure and content.','AC-4(14).2','The organization being inspected/assessed configures the information system to implement security policy filters defined in AC-4 (14), CCI 1371 requiring fully enumerated formats that restrict data structure and content. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1372.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement security policy filters defined in AC-4 (14), CCI 1371 requiring fully enumerated formats that restrict data structure and content. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1372.'), ('001373','draft','2009-09-22','DISA FSO','technical','The information system, when transferring information between different security domains, examines the information for the presence of organization-defined unsanctioned information.','AC-4(15).1','The organization being inspected/assessed configures the information system to examine the information for the presence of unsanctioned information defined in AC-4 (15), CCI 2203 when transferring information between different security domains. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1373.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to examine the information for the presence of unsanctioned information defined in AC-4 (15), CCI 2203 when transferring information between different security domains. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1373.'), ('001374','draft','2009-09-22','DISA FSO','technical','The information system, when transferring information between different security domains, prohibits the transfer of organization-defined unsanctioned information in accordance with the organization-defined security policy.','AC-4(15).2','The organization being inspected/assessed configures the information system to prohibit the transfer of unsanctioned information defined in AC-4 (15), CCI 2203 in accordance with the security policy defined in AC-4 (15), CCI 2204. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1374.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prohibit the transfer of unsanctioned information defined in AC-4 (15), CCI 2203 in accordance with the security policy defined in AC-4 (15), CCI 2204. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1374.'), ('001376','draft','2009-09-22','DISA FSO','technical','The information system uniquely identifies source domains for information transfer.',NULL,NULL,NULL), ('001377','draft','2009-09-22','DISA FSO','technical','The information system uniquely authenticates source domains for information transfer.',NULL,NULL,NULL), ('001380','draft','2009-09-22','DISA FSO','policy','The organization documents separation of duties of individuals.','AC-5.3','The organization being inspected/assessed documents separation of duties of individuals.','The organization conducting the inspection/assessment obtains and examines the documented separation of duties to ensure the organization being inspected/assessed documents separation of duties of individuals.'), ('001382','draft','2009-09-22','DISA FSO','policy','The organization defines the number of consecutive, unsuccessful login attempts to the mobile device.',NULL,NULL,NULL), ('001383','draft','2009-09-22','DISA FSO','technical','The information system provides additional protection for mobile devices accessed via login by purging information from the device after an organization-defined number of consecutive, unsuccessful login attempts to the mobile device.',NULL,NULL,NULL), ('001384','draft','2009-09-22','DISA FSO','technical','The information system, for publicly accessible systems, displays system use information organization-defined conditions before granting further access.','AC-8.8','The organization being inspected/assessed configures the information system to display the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems - Standard Consent Banner and User Agreement,\" March 2013 before granting further access for publicly accessible systems For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1384. DoD has defined the conditions as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems - Standard Consent Banner and User Agreement,\" March 2013.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems - Standard Consent Banner and User Agreement,\" March 2013 before granting further access for publicly accessible systems For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1384. DoD has defined the conditions as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems - Standard Consent Banner and User Agreement,\" March 2013.'), ('001385','draft','2009-09-22','DISA FSO','technical','The information system, for publicly accessible systems, displays references, if any, to monitoring that are consistent with privacy accommodations for such systems that generally prohibit those activities.','AC-8.10','The organization being inspected/assessed configures the information system to display references, if any, to monitoring that are consistent with privacy accommodations for such systems that generally prohibit those activities for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1385.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display references, if any, to monitoring that are consistent with privacy accommodations for such systems that generally prohibit those activities for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1385.'), ('001386','draft','2009-09-22','DISA FSO','technical','The information system, for publicly accessible systems, displays references, if any, to recording that are consistent with privacy accommodations for such systems that generally prohibit those activities.','AC-8.11','The organization being inspected/assessed configures the information system to display references, if any, to recording that are consistent with privacy accommodations for such systems that generally prohibit those activities for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1386.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display references, if any, to recording that are consistent with privacy accommodations for such systems that generally prohibit those activities for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1386.'), ('001387','draft','2009-09-22','DISA FSO','technical','The information system, for publicly accessible systems, displays references, if any, to auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities.','AC-8.12','The organization being inspected/assessed configures the information system to display references, if any, to auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1387.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display references, if any, to auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1387.'), ('001388','draft','2009-09-22','DISA FSO','technical','The information system, for publicly accessible systems, includes a description of the authorized uses of the system.','AC-8.13','The organization being inspected/assessed configures the information system to include a description of the authorized uses of the system for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1388.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to include a description of the authorized uses of the system for publicly accessible systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1388.'), ('001389','draft','2009-09-22','DISA FSO','policy','The organization defines the time period that the information system notifies the user of the number of successful logon/access attempts.','AC-9(2).1','DoD has determined this CCI is not applicable because this option is not selected.','DoD has determined this CCI is not applicable because this option is not selected.'), ('001390','draft','2009-09-22','DISA FSO','policy','The organization defines the time period that the information system notifies the user of the number of unsuccessful logon/access attempts.','AC-9(2).2','DoD has defined the time period as the time since the last successful login (for unsuccessful logon/access attempts). ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as the time since the last successful login (for unsuccessful logon/access attempts). '), ('001391','draft','2009-09-22','DISA FSO','technical','The information system notifies the user of the number of successful logins/accesses that occur during the organization-defined time period.','AC-9(2).3','DoD has determined this CCI is not applicable because this option is not selected.','DoD has determined this CCI is not applicable because this option is not selected.'), ('001392','draft','2009-09-22','DISA FSO','technical','The information system notifies the user of the number of unsuccessful login/access attempts that occur during organization-defined time period.','AC-9(2).4','The organization being inspected/assessed configures the information system to notify the user of the number of unsuccessful login/access attempts that occur during the time period defined in AC-9 (2), CCI 1389. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1392.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the user of the number of unsuccessful login/access attempts that occur during the time period defined in AC-9 (2), CCI 1389. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1392.'), ('001393','draft','2009-09-22','DISA FSO','policy','The organization defines the security-related characteristics/parameters of the user^s account which, when changed, will result in a notification being provided to the user during the organization-defined time period.','AC-9(3).1','DoD has defined the security-related characteristics/parameters as access and/or privilege parameters.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security-related characteristics/parameters as access and/or privilege parameters.'), ('001394','draft','2009-09-22','DISA FSO','policy','The organization defines the time period during which organization-defined security-related changes to the user^s account are to be tracked.','AC-9(3).2','DoD has defined the time period as since last successful login.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as since last successful login.'), ('001395','draft','2009-09-22','DISA FSO','technical','The information system notifies the user of changes to organization-defined security-related characteristics/parameters of the user^s account that occur during the organization-defined time period.','AC-9(3).3','The organization being inspected/assessed configures the information system to notify the user of changes to access and/or privilege parameters that occur since last successful login. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1395. DoD has defined the time period as since last successful login. DoD has defined the security-related characteristics/parameters as access and/or privilege parameters.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the user of changes to access and/or privilege parameters that occur since last successful login. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1395. DoD has defined the time period as since last successful login. DoD has defined the security-related characteristics/parameters as access and/or privilege parameters.'), ('001396','draft','2009-09-22','DISA FSO','policy','The organization defines security attributes for which the information system supports and maintains the bindings for information in storage.',NULL,NULL,NULL), ('001397','draft','2009-09-22','DISA FSO','policy','The organization defines security attributes for which the information system supports and maintains the bindings for information in process.',NULL,NULL,NULL), ('001398','draft','2009-09-22','DISA FSO','policy','The organization defines security attributes for which the information system supports and maintains the bindings for information in transmission.',NULL,NULL,NULL), ('001399','draft','2009-09-22','DISA FSO','technical','The information system supports and maintains the binding of organization-defined security attributes to information in storage.',NULL,NULL,NULL), ('001400','draft','2009-09-22','DISA FSO','technical','The information system supports and maintains the binding of organization-defined security attributes to information in process.',NULL,NULL,NULL), ('001401','draft','2009-09-22','DISA FSO','technical','The information system supports and maintains the binding of organization-defined security attributes to information in transmission.',NULL,NULL,NULL), ('001402','draft','2009-09-22','DISA FSO','policy','The organization monitors for unauthorized remote access to the information system.',NULL,NULL,NULL), ('001403','draft','2009-09-24','DISA FSO','technical','The information system automatically audits account modification actions.','AC-2(4).2','The organization being inspected/assessed configures the information system to automatically audit account modification actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1403.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically audit account modification actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1403.'), ('001404','draft','2009-09-24','DISA FSO','technical','The information system automatically audits account disabling actions.','AC-2(4).3','The organization being inspected/assessed configures the information system to automatically audit account disabling actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1404.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically audit account disabling actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1404.'), ('001405','draft','2009-09-24','DISA FSO','technical','The information system automatically audits account removal actions.','AC-2(4).4','The organization being inspected/assessed configures the information system to automatically audit account removal actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1405.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically audit account removal actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1405.'), ('001406','draft','2009-09-24','DISA FSO','policy','The organization defines a time period of expected inactivity when users are required to log out.','AC-2(5).3','DoD has defined the time period as at the end of the users standard work period unless otherwise defined in formal organizational policy.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as at the end of the users standard work period unless otherwise defined in formal organizational policy.'), ('001407','draft','2009-09-24','DISA FSO','policy','The organization administers privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.','AC-2(7).2','The organization being inspected/assessed documents and implements a process to administer privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.','The organization conducting the inspection/assessment obtains and examines documented processes for privileged user account creation to ensure the organization being inspected/assessed administers privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.'), ('001408','draft','2009-09-24','DISA FSO','policy','The organization defines privileged commands for which dual authorization is to be enforced.','AC-3(2).2','The organization being inspected/assessed defines and documents privileged commands for which dual authorization is to be enforced. DoD has determined the other actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented privileged commands to ensure they have been defined. DoD has determined the other actions are not appropriate to define at the Enterprise level.'), ('001409','draft','2009-09-24','DISA FSO','policy','The organization defines nondiscretionary access control policies to be enforced over the organization-defined set of users and resources, where the rule set for each policy specifies access control information employed by the policy rule set (e.g., position, nationality, age, project, time of day) and required relationships among the access control information to permit access.',NULL,NULL,NULL), ('001410','draft','2009-09-24','DISA FSO','policy','The organization defines the set of users and resources over which the information system is to enforce nondiscretionary access control policies.',NULL,NULL,NULL), ('001411','draft','2009-09-24','DISA FSO','policy','The organization defines security-relevant information to which the information system prevents access except during secure, non-operable system states.','AC-3(5).2','The organization being inspected/assessed defines and documents security-relevant information to which the information system prevents access except during secure, nonoperable system states. At a minimum, the security-relevant information shall include installing and updating crypto keys. DoD has determined the security-relevant information is not appropriate to define at the Enterprise level, but at a minimum, installing and updating crypto keys.','The organization conducting the inspection/assessment obtains and examines the documented security-relevant information to ensure it has been defined and at a minimum, includes installing and updating crypto keys. DoD has determined the security-relevant information is not appropriate to define at the Enterprise level, but at a minimum, installing and updating crypto keys.'), ('001412','draft','2009-09-24','DISA FSO','policy','The organization encrypts or stores off-line, in a secure location, organization-defined user information.',NULL,NULL,NULL), ('001413','draft','2009-09-24','DISA FSO','policy','The organization encrypts or stores off-line, in a secure location, organization-defined system information.',NULL,NULL,NULL), ('001414','draft','2009-09-24','DISA FSO','technical','The information system enforces approved authorizations for controlling the flow of information between interconnected systems based on organization-defined information flow control policies.','AC-4.2','The organization being inspected/assessed configures the information system to enforce approved authorizations for controlling the flow of information between interconnected systems based on information flow control policies defined in AC-4, CCI 1549. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1414.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce approved authorizations for controlling the flow of information between interconnected systems based on information flow control policies defined in AC-4, CCI 1549. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1414.'), ('001415','draft','2009-09-24','DISA FSO','policy','The organization defines limitations for the embedding of data types within other data types.','AC-4(5).2','The organization being inspected/assessed defines and documents the limitations of the embedding of data types within other data types. DoD has determined the limitations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented limitations to ensure the organization being inspected/assessed defines the limitations of the embedding of data types within other data types. DoD has determined the limitations are not appropriate to define at the Enterprise level.'), ('001416','draft','2009-09-24','DISA FSO','policy','The organization defines one-way information flows to be enforced by the information system.','AC-4(7).2','The organization being inspected/assessed defines and documents one-way information flows to be enforced by the information system. DoD has determined the one-way information flow is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented one-way information flows to ensure the organization being inspected/assessed defines one-way information flows to be enforced by the information system. DoD has determined the one-way information flow is not appropriate to define at the Enterprise level.'), ('001417','draft','2009-09-24','DISA FSO','policy','The organization defines security policy filters to be enforced by the information system and used as a basis for flow control decisions.','AC-4(8).2','The organization being inspected/assessed defines and documents security policy filters to be enforced by the information system and used as a basis for flow control decisions. DoD has determined the security policy filters are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policy filters to ensure the organization being inspected/assessed defines security policy filters to be enforced by the information system and used as a basis for flow control decisions. DoD has determined the security policy filters are not appropriate to define at the Enterprise level.'), ('001418','draft','2009-09-24','DISA FSO','policy','The organization defines security policy filters for which the information system enforces the use of human review.',NULL,NULL,NULL), ('001419','draft','2009-09-25','DISA FSO','policy','The organization defines the security functions or security-relevant information to which users of information system accounts, or roles, have access.','AC-6(2).2','DoD has defined the security functions and security-relevant information as any privileged security functions or security-relevant information.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security functions and security-relevant information as any privileged security functions or security-relevant information.'), ('001420','draft','2009-09-25','DISA FSO','policy','The organization defines the privileged commands to which network access is to be authorized only for organization-defined compelling operational needs.','AC-6(3).3','The organization being inspected/assessed defines and documents the privileged commands to which network access is to be authorized only for organization-defined compelling operational needs. DoD has determined the privileged commands are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented privileged commands to ensure the organization being inspected/assessed defines the privileged commands to which network access is to be authorized only for organization-defined compelling operational needs. DoD has determined the privileged commands are not appropriate to define at the Enterprise level.'), ('001421','draft','2009-09-25','DISA FSO','policy','The organization limits authorization to super user accounts on the information system to designated system administration personnel.',NULL,NULL,NULL), ('001422','draft','2009-09-25','DISA FSO','policy','The organization prohibits privileged access to the information system by non-organizational users.','AC-6(6).1','The organization being inspected/assessed implements as a step in the access authorization process, a check to prohibit privileged access to the information system by non-organizational users.','The organization conducting the inspection/assessment obtains and examines the access authorization process as well as a sampling of information system access agreements to ensure that the organization being inspected/assessed prohibits privileged access to the information system by non-organizational users.'), ('001423','draft','2009-09-25','DISA FSO','policy','The organization defines the time period in which the organization-defined maximum number of consecutive invalid logon attempts occur.','AC-7.3','DoD has defined the time period as 15 minutes.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 15 minutes.'), ('001424','draft','2009-09-25','DISA FSO','technical','The information system dynamically associates security attributes with organization-defined subjects in accordance with organization-defined security policies as information is created and combined.','AC-16(1).1','The organization being inspected/assessed configures the information system to dynamically associates security attributes with the subjects defined in AC-16 (1), CCI 2274 in accordance with the security policies defined in AC-16 (1), CCI 2273 as information is created and combined. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1424.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to dynamically associates security attributes with the subjects defined in AC-16 (1), CCI 2274 in accordance with the security policies defined in AC-16 (1), CCI 2273 as information is created and combined. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1424.'), ('001425','draft','2009-09-25','DISA FSO','technical','The information system provides authorized individuals (or processes acting on behalf of individuals) the capability to change the value of associated security attributes.','AC-16(2).1','The organization being inspected/assessed configures the information system to provide authorized individuals (or processes acting on behalf of individuals) the capability to change the value of associated security attributes. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1425.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provides authorized individuals (or processes acting on behalf of individuals) the capability to change the value of associated security attributes. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1425.'), ('001426','draft','2009-09-25','DISA FSO','technical','The information system maintains the binding of security attributes to information with sufficient assurance that the information--attribute association can be used as the basis for automated policy actions.',NULL,NULL,NULL), ('001427','draft','2009-09-25','DISA FSO','technical','The information system allows authorized users to associate security attributes with information.',NULL,NULL,NULL), ('001428','draft','2009-09-25','DISA FSO','technical','The information system displays security attributes in human-readable form on each object that the system transmits to output devices to identify organization-identified special dissemination, handling, or distribution instructions using organization-identified human-readable, standard naming conventions.','AC-16(5).1','The organization being inspected/assessed configures the information system to display security attributes in human readable form on each object that the system transmits to output devices to identify special dissemination, handling, or distribution instructions defined in AC-16 (5), CCI 1429 using human readable, standard naming conventions defined in AC-16 (5), CCI 1430. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1428.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display security attributes in human readable form on each object that the system transmits to output devices to identify special dissemination, handling, or distribution instructions defined in AC-16 (5), CCI 1429 using human readable, standard naming conventions defined in AC-16 (5), CCI 1430. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1428.'), ('001429','draft','2009-09-25','DISA FSO','policy','The organization identifies special dissemination, handling, or distribution instructions for identifying security attributes on output.','AC-16(5).2','DoD has defined the instructions as for instructions relating to classification, special dissemination, handling, or distribution instructions IAW DODI 5200.1R; for SCI and SAP, IAW Controlled Access Program Coordination Office (CAPCO) register. For all other instructions, not appropriate to define at the Enterprise level. The organization being inspected/assessed defines and documents special dissemination, handling, or distribution instructions not relating to classification, for identifying security attributes on output.','DoD has defined the instructions as for instructions relating to classification, special dissemination, handling, or distribution instructions IAW DODI 5200.1R; for SCI and SAP, IAW Controlled Access Program Coordination Office (CAPCO) register. For all other instructions, not appropriate to define at the Enterprise level. The organization conducting the inspection/assessment obtains and examines the documented instructions not relating to classification to ensure the organization being inspected/assessed identifies special dissemination, handling, or distribution instructions for identifying security attributes on output.'), ('001430','draft','2009-09-25','DISA FSO','policy','The organization identifies human-readable, standard naming conventions for identifying security attributes on output.','AC-16(5).3','DoD has defined the human readable, standard naming conventions for security attributes relating to classification as human readable, standard naming conventions IAW DODI 5200.1R; for TS SCI, IAW Controlled Access Program Coordination Office (CAPCO) register. For all other security attributes, not appropriate to define at the Enterprise level. The organization being inspected/assessed defines and documents all other security attributes not relating to classification.','DoD has defined the human readable, standard naming conventions for security attributes relating to classification as human readable, standard naming conventions IAW DODI 5200.1R; for TS SCI, IAW Controlled Access Program Coordination Office (CAPCO) register. For all other security attributes, not appropriate to define at the Enterprise level. The organization conducting the inspection/assessment obtains and examines the documented security attributes not relating to classification to ensure the organization being inspected/assessed identifies human readable, standard naming conventions for identifying security attributes on output.'), ('001431','draft','2009-09-25','DISA FSO','policy','The organization defines a frequency for monitoring for unauthorized remote connections to the information system.',NULL,NULL,NULL), ('001432','draft','2009-09-25','DISA FSO','policy','The organization takes appropriate action if an unauthorized remote connection to the information system is discovered.',NULL,NULL,NULL), ('001433','draft','2009-09-25','DISA FSO','policy','The organization defines a list of security functions and security-relevant information that for remote access sessions have organization-defined security measures employed and are audited.',NULL,NULL,NULL), ('001434','draft','2009-09-25','DISA FSO','policy','The organization defines additional security measures to be employed when an organization-defined list of security functions and security-relevant information is accessed remotely.',NULL,NULL,NULL), ('001435','draft','2009-09-25','DISA FSO','policy','The organization defines networking protocols within the information system deemed to be nonsecure.',NULL,NULL,NULL), ('001436','draft','2009-09-25','DISA FSO','technical','The organization disables organization-defined networking protocols within the information system deemed to be nonsecure except for explicitly identified components in support of specific operational requirements.',NULL,NULL,NULL), ('001437','draft','2009-09-25','DISA FSO','policy','The organization documents the rationale for the execution of privileged commands and access to security-relevant information in the security plan for the information system.',NULL,NULL,NULL), ('001438','draft','2009-09-25','DISA FSO','policy','The organization establishes usage restrictions for wireless access.','AC-18.1','The organization being inspected/assessed establishes and documents usage restrictions for wireless access.','The organization conducting the inspection/assessment obtains and examines documented usage restrictions to ensure the organization being inspected/assessed establishes usage restrictions for wireless access.'), ('001439','draft','2009-09-25','DISA FSO','policy','The organization establishes implementation guidance for wireless access.','AC-18.2','The organization being inspected/assessed establishes and documents implementation guidance for wireless access.','The organization conducting the inspection/assessment obtains and examines the documented implementation guidance to ensure the organization being inspected/assessed establishes implementation guidance for wireless access.'), ('001440','draft','2009-09-25','DISA FSO','policy','The organization monitors for unauthorized wireless access to the information system.',NULL,NULL,NULL), ('001441','draft','2009-09-25','DISA FSO','policy','The organization authorizes wireless access to the information system prior to allowing such connections.','AC-18.4','The organization being inspected/assessed authorizes wireless access to the information system prior to allowing such connections. The organization must maintain an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed authorizes wireless access to the information system prior to allowing such connections.'), ('001442','draft','2009-09-25','DISA FSO','policy','The organization enforces requirements for wireless connections to the information system.',NULL,NULL,NULL), ('001443','draft','2009-09-25','DISA FSO','technical','The information system protects wireless access to the system using authentication of users and/or devices.','AC-18(1).1','The organization being inspected/assessed configures the information system to protect wireless access to the system using authentication of users and/or devices. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1443.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect wireless access to the system using authentication of users and/or devices. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1443.'), ('001444','draft','2009-09-25','DISA FSO','technical','The information system protects wireless access to the system using encryption.','AC-18(1).2','The organization being inspected/assessed configures the information system to protect wireless access to the system using encryption. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1444.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect wireless access to the system using encryption. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1444.'), ('001445','draft','2009-09-25','DISA FSO','policy','The organization monitors for unauthorized wireless connections to the information system on an organization-defined frequency.',NULL,NULL,NULL), ('001446','draft','2009-09-25','DISA FSO','policy','The organization scans for unauthorized wireless access points on an organization-defined frequency.',NULL,NULL,NULL), ('001447','draft','2009-09-25','DISA FSO','policy','The organization defines a frequency of monitoring for unauthorized wireless connections to information system, including scans for unauthorized wireless access points.',NULL,NULL,NULL), ('001448','draft','2009-09-25','DISA FSO','policy','The organization takes appropriate action if an unauthorized wireless connection is discovered.',NULL,NULL,NULL), ('001449','draft','2009-09-25','DISA FSO','policy','The organization disables, when not intended for use, wireless networking capabilities internally embedded within information system components prior to issuance and deployment.','AC-18(3).1','The organization being inspected/assessed documents and implements a process to disable wireless networking capabilities internally embedded within information system components prior to issuance and deployment when not intended for use.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed disables, when not intended for use, wireless networking capabilities internally embedded within information system components prior to issuance and deployment. The organization conducting the inspection/assessment obtains and examines a sampling of information systems to ensure that any internally embedded wireless networking capabilities are disabled unless a documented need exists.'), ('001450','draft','2009-09-25','DISA FSO','policy','The organization does not allow users to independently configure wireless networking capabilities.',NULL,NULL,NULL), ('001451','draft','2009-09-25','DISA FSO','policy','The organization selects radio antennas and calibrates transmission power levels to reduce the probability that usable signals can be received outside of organization-controlled boundaries.','AC-18(5).1','The organization being inspected/assessed documents and implements a process to select radio antennas and calibrate transmission power levels to reduce the probability that usable signals can be received outside of organization-controlled boundaries.','The organization conducting the inspection/assessment obtains and examines the documentation from radio antenna installation to ensure that the organization being inspected/assessed selects radio antennas and calibrates transmission power levels to reduce the probability that usable signals can be received outside of organization-controlled boundaries.'), ('001452','draft','2009-05-25','DISA FSO','technical','The information system enforces the organization-defined time period during which the limit of consecutive invalid access attempts by a user is counted.',NULL,NULL,NULL), ('001453','draft','2009-09-29','DISA FSO','technical','The information system implements cryptographic mechanisms to protect the integrity of remote access sessions.','AC-17(2).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the integrity of remote access sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1453.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the integrity of remote access sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1453.'), ('001454','draft','2009-09-29','DISA FSO','technical','The organization ensures that remote sessions for accessing an organization-defined list of security functions and security-relevant information are audited.',NULL,NULL,NULL), ('001455','draft','2009-09-29','DISA FSO','policy','The organization explicitly identifies components needed in support of specific operational requirements.',NULL,NULL,NULL), ('001456','draft','2009-09-29','DISA FSO','policy','The organization defines locations that the organization deems to be of significant risk in accordance with organizational policies and procedures.',NULL,NULL,NULL), ('001457','draft','2009-09-29','DISA FSO','policy','The organization defines inspection and preventative measures to be applied on mobile devices returning from locations that the organization deems to be of significant risk in accordance with organizational policies and procedures.',NULL,NULL,NULL), ('001458','draft','2009-09-29','DISA FSO','policy','The organization requires that if classified information is found on mobile devices, the incident handling policy be followed.','AC-19(4).7','The organization being inspected/assessed documents and implements a process to require that if classified information is found on mobile devices, the incident handling policy is followed.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires that if classified information is found on mobile devices, the incident handling policy is followed.'), ('001459','draft','2009-09-29','DISA FSO','policy','The organization defines information system components that provide audit record generation capability.','AU-12.2','DoD has defined the information system components as all information system and network components.','DoD has defined the information system components as all information system and network components.'), ('001460','draft','2009-09-29','DISA FSO','policy','The organization monitors organization-defined open source information and/or information sites per organization-defined frequency for evidence of unauthorized exfiltration or disclosure of organizational information.','AU-13.1','The organization being inspected/assessed documents and implements a process to monitor open source information and/or information sites defined in AU-13, CCI 1915 for evidence of unauthorized exfiltration or disclosure of organizational information on a frequency defined in AU-13, CCI 1461. The organization must maintain an audit trail of monitoring activity.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring activity to ensure the organization being inspected/assessed monitors open source information and/or information sites defined in AU-13, CCI 1915 for evidence of unauthorized exfiltration or disclosure of organizational information on a frequency defined in AU-13, CCI 1461.'), ('001461','draft','2009-09-29','DISA FSO','policy','The organization defines a frequency for monitoring open source information and/or information sites for evidence of unauthorized exfiltration or disclosure of organizational information.','AU-13.2','The organization being inspected/assessed defines and documents the frequency for monitoring open source information and/or information sites for evidence of unauthorized exfiltration or disclosure of organizational information.\n\nDoD has determined that the frequency should be defined at the Component level, not appropriate to define at the Enterprise level. Note: The value in this control may not be used to deny reciprocal acceptance of a C&A (A&A) package.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency for monitoring open source information and/or information sites for evidence of unauthorized exfiltration or disclosure of organizational information.\n\nDoD has determined that the frequency should be defined at the Component level, not appropriate to define at the Enterprise level. Note: The value in this control may not be used to deny reciprocal acceptance of a C&A (A&A) package.'), ('001462','draft','2009-09-29','DISA FSO','technical','The information system provides the capability for authorized users to capture/record and log content related to a user session.','AU-14(2).1','The organization being inspected/assessed configures the information system to provide the capability for authorized users to capture/record and log content related to a user session. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1462.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for authorized users to capture/record and log content related to a user session. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1462.'), ('001463','draft','2009-09-29','DISA FSO','technical','The information system provides the capability to remotely view/hear all content related to an established user session in real time.',NULL,NULL,NULL), ('001464','draft','2009-09-29','DISA FSO','technical','The information system initiates session audits at system start-up.','AU-14(1).1','The organization being inspected/assessed configures the information system to initiate session audits at system start-up. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1464.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to initiate session audits at system start-up. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1464.'), ('001465','draft','2009-09-29','DISA FSO','policy','The organization establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to store organization-controlled information using the external information systems.',NULL,NULL,NULL), ('001466','draft','2009-09-29','DISA FSO','policy','The organization establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to transmit organization-controlled information using the external information systems.',NULL,NULL,NULL), ('001467','draft','2009-09-29','DISA FSO','policy','The organization prohibits authorized individuals from using an external information system to process organization-controlled information except in situations where the organization can verify the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.',NULL,NULL,NULL), ('001468','draft','2009-09-29','DISA FSO','policy','The organization prohibits authorized individuals from using an external information system to store organization-controlled information except in situations where the organization can verify the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.',NULL,NULL,NULL), ('001469','draft','2009-09-29','DISA FSO','policy','The organization prohibits authorized individuals from using an external information system to transmit organization-controlled information except in situations where the organization can verify the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.',NULL,NULL,NULL), ('001470','draft','2009-09-29','DISA FSO','policy','The organization defines information sharing circumstances where user discretion is required.','AC-21.2','The organization being inspected/assessed defines and documents information sharing circumstances where user discretion is required. DoD has determined the information sharing circumstances are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information sharing circumstances to ensure the organization being inspected/assessed defines information sharing circumstances where user discretion is required. DoD has determined the information sharing circumstances are not appropriate to define at the Enterprise level.'), ('001471','draft','2009-09-29','DISA FSO','policy','The organization employs organization-defined automated mechanisms or manual processes required to assist users in making information sharing/collaboration decisions.','AC-21.3','The organization being inspected/assessed implements the process defined in AC-21, CCI 1472 to assist users in making information sharing/collaboration decisions.','The organization conducting the inspection/assessment obtains and examines the documented process defined per AC-21, CCI 1472 to ensure the organization being inspected/assessed assists users in making information sharing/collaboration decisions.'), ('001472','draft','2009-09-29','DISA FSO','policy','The organization defines the automated mechanisms or manual processes required to assist users in making information sharing/collaboration decisions.','AC-21.4','The organization being inspected/assessed defines and documents the automated mechanisms or manual processes required to assist users in making information sharing/collaboration decisions. DoD has determined the automated mechanisms or manual processes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented automated mechanisms to ensure the organization being inspected/assessed defines the automated mechanisms or manual processes required to assist users in making information sharing/collaboration decisions. DoD has determined the automated mechanisms or manual processes are not appropriate to define at the Enterprise level.'), ('001473','draft','2009-09-29','DISA FSO','policy','The organization designates individuals authorized to post information onto a publicly accessible information system.','AC-22.1','The organization being inspected/assessed identifies and documents individuals authorized to post information onto a publicly accessible information system.','The organization conducting the inspection/assessment obtains and examines the list of individuals to ensure the organization being inspected/assessed designates individuals authorized to post information onto a publicly accessible information system.'), ('001474','draft','2009-09-29','DISA FSO','policy','The organization trains authorized individuals to ensure that publicly accessible information does not contain nonpublic information.','AC-22.2','The organization being inspected/assessed documents and implements a process to train authorized individuals to ensure that publicly accessible information does not contain nonpublic information. The organization must maintain an audit trail of the training conducted.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of the training conducted to ensure the organization being inspected/assessed trains authorized individuals to ensure that publicly accessible information does not contain nonpublic information.'), ('001475','draft','2009-09-29','DISA FSO','policy','The organization reviews the proposed content of information prior to posting onto the publicly accessible information system to ensure that nonpublic information is not included.','AC-22.3','The organization being inspected/assessed','The organization conducting the inspection/assessment obtains and examines'), ('001476','draft','2009-09-29','DISA FSO','policy','The organization reviews the content on the publicly accessible information system for nonpublic information on an organization-defined frequency.','AC-22.4','The organization being inspected/assessed documents and implements a process to review the content on the publicly accessible information system for nonpublic information on an organization-defined frequency. The organization must maintain an audit trail of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reviews to ensure the organization being inspected/assessed reviews the content on the publicly accessible information system for nonpublic information on an organization-defined frequency.'), ('001477','draft','2009-09-29','DISA FSO','policy','The organization defines a frequency for reviewing the content on the publicly accessible information system for nonpublic information.','AC-22.5','DoD has defined the frequency as every 90 days or as new information is posted.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 90 days or as new information is posted.'), ('001478','draft','2009-09-29','DISA FSO','policy','The organization removes nonpublic information from the publicly accessible information system, if discovered.','AC-22.6','The organization being inspected/assessed documents and implements a process to remove nonpublic information from the publicly accessible information system, if discovered.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed removes nonpublic information from the publicly accessible information system, if discovered.'), ('001479','draft','2009-09-29','DISA FSO','policy','The organization provides refresher security awareness training to all information system users (including managers, senior executives, and contractors) in accordance with the organization-defined frequency.','AT-2.4','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.','DoDD 8570.01 meets the DoD requirement for IA awareness training policy and procedures. DISA\'s DoD IA awareness CBT is the DoD baseline standard.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDD 8570.01.'), ('001480','draft','2009-09-29','DISA FSO','policy','The organization defines the frequency for providing refresher security awareness training to all information system users (including managers, senior executives, and contractors).','AT-2.1','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level (DoDD 8570.01). DoD has defined the frequency as annually.'), ('001481','draft','2009-09-29','DISA FSO','policy','The organization provides organization-defined personnel or roles with initial training in the employment and operation of environmental controls.','AT-3(1).1','The organization being inspected/assessed:\n1. Identifies and documents environmental controls that require training.\n2. Identifies the personnel defined in AT-3 (1), CCI 2050\n3. Ensures designated personnel receive this training.\n4. Maintains and monitors records of personnel who have received this training.','The organization conducting the inspection/assessment obtains and examines:\n1. Documentation of environmental controls that require training.\n2. Documented list of personnel defined in AT-3 (1), CCI 2050\n3. Ensures identified personnel have received the initial training.'), ('001482','draft','2009-09-29','DISA FSO','policy','The organization provides organization-defined personnel or roles with refresher training in the employment and operation of environmental controls in accordance with the organization-defined frequency.','AT-3(1).2','The organization being inspected/assessed:\n1. Identifies and documents environmental controls that require training.\n2. Identifies the personnel defined in AT-3 (1), CCI 2050\n3. Ensures designated personnel receive this training annually\n4. Maintains and monitors records of personnel who have received this training.\n\nDoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines:\n1. Documentation of environmental controls that require training.\n2. Documented list of personnel defined in AT-3 (1), CCI 2050\n3. Ensures identified personnel have received training annually.\n\nDoD has defined the frequency as annually.'), ('001483','draft','2009-09-29','DISA FSO','policy','The organization defines a frequency for providing employees with refresher training in the employment and operation of environmental controls.','AT-3(1).3','DoD has defined the frequency as annual.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annual.'), ('001484','draft','2009-09-29','DISA FSO','policy','The organization defines frequency of (or situation requiring) auditing for each identified event.','AU-2.6','DoD has defined the frequency as all auditable events defined in AU-2 (a) per occurrence.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as all auditable events defined in AU-2 (a) per occurrence.'), ('001485','draft','2009-09-29','DISA FSO','policy','The organization defines the events which are to be audited on the information system on an organization-defined frequency of (or situation requiring) auditing for each identified event.','AU-2.7','The organization being inspected/assessed defines and documents events which are to be audited on the information system. Events should be selected from the events the information system is capable of auditing as defined in AU-2 (a) and should be based on ongoing risk assessments of current threat information and environment.\n\nDoD has determined that the events are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines\nthe documented list of events which are to be audited on the information system to ensure those events have been defined.\n\nDoD has determined that the events are not appropriate to define at the Enterprise level.'), ('001486','draft','2009-09-29','DISA FSO','policy','The organization defines a frequency for reviewing and updating the list of organization-defined auditable events.','AU-2(3).2','DoD has defined the frequency as annually or more frequently upon changes to situational awareness of threats or vulnerabilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually or more frequently upon changes to situational awareness of threats or vulnerabilities.'), ('001487','draft','2009-09-29','DISA FSO','technical','The information system generates audit records containing information that establishes the identity of any individuals or subjects associated with the event.','AU-3.6','The organization being inspected/assessed configures the information system to generate audit records containing information that establishes the identity of any individuals or subjects associated with the event. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1487.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate audit records containing information that establishes the identity of any individuals or subjects associated with the event. The organization conducting the inspection/assessment reviews the audit records generated to ensure that the records contain information that establishes the identity of any individuals or subjects associated with the event. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1487.'), ('001488','draft','2009-09-29','DISA FSO','policy','The organization defines additional, more detailed information to be included in the audit records.','AU-3(1).2','The organization being inspected/assessed defines and documents additional, more detailed information to be included in the audit records. The additional information must include at a minimum, full-text recording of privileged commands or the individual identities of group account users. The additional information must provide sufficient detail to reconstruct events to determine cause of compromise and magnitude of damage, malfunction, or security violation.\n\nDoD has determined that additional, more detailed information must include, at a minimum, full-text recording of privileged commands or the individual identities of group account users. DoD has determined that all additional, more detailed information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list of additional more detailed information to be included in the audit records to ensure that:\n1. The list is defined; and\n2. The list includes full-text recording of privileged commands or the individual identities of group account users.\n\nDoD has determined that additional, more detailed information must include, at a minimum, full-text recording of privileged commands or the individual identities of group account users. DoD has determined that it is not appropriate to define at the Enterprise level.'), ('001489','draft','2009-09-29','DISA FSO','policy','The organization defines information system components for which generated audit records are centrally managed by the organization.',NULL,NULL,NULL), ('001490','draft','2009-09-29','DISA FSO','policy','The organization defines actions to be taken by the information system upon audit failure (e.g., shut down information system, overwrite oldest audit records, stop generating audit records).','AU-5.4','The organization being inspected/assessed will define and document actions to be taken by the information system upon audit failure. The organization shall consider trade-offs between the needs for system availability and audit integrity when defining the actions. Unless availability is an overriding concern, the default action should be to shut down the information system. DoD has determined that the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed has defined the actions to be taken by the information system upon audit failure. DoD has determined that the actions are not appropriate to define at the Enterprise level.'), ('001491','draft','2009-09-29','DISA FSO','policy','The organization correlates information from audit records with information obtained from monitoring physical access to further enhance the ability to identify suspicious, inappropriate, unusual, or malevolent activity.','AU-6(6).1','The organization being inspected/assessed will document and implement a process to correlate information from audit records with information obtained from monitoring physical access to further enhance the ability to identify suspicious, inappropriate, unusual, or malevolent activity.','The organization conducting the inspection/assessment obtains and examines the documented process and correlated results to ensure the organization being inspected/assessed correlates information from audit records with information obtained from monitoring physical access to further enhance the ability to identify suspicious, inappropriate, unusual, or malevolent activity.'), ('001492','draft','2009-09-29','DISA FSO','policy','The organization defines an authoritative time source for the synchronization of internal information system clocks.','AU-8(1).2','DoD has defined the authoritative time source as an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network (NIPRNet / SIPRNet) and/or the Global Positioning System (GPS).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the authoritative time source as an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network (NIPRNet / SIPRNet) and/or the Global Positioning System (GPS).'), ('001493','draft','2009-09-29','DISA FSO','technical','The information system protects audit tools from unauthorized access.','AU-9.4','The organization being inspected/assessed configures the information system to disallow unauthorized access to audit tools. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1493.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to disallow unauthorized access to audit tools. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1493.'), ('001494','draft','2009-09-29','DISA FSO','technical','The information system protects audit tools from unauthorized modification.','AU-9.5','The organization being inspected/assessed configures the information system to disallow unauthorized modification of audit tools. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1494.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to disallow unauthorized modification of audit tools. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1494.'), ('001495','draft','2009-09-29','DISA FSO','technical','The information system protects audit tools from unauthorized deletion.','AU-9.6','The organization being inspected/assessed configures the information system to disallow unauthorized deletion of audit tools. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1495.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to disallow unauthorized deletion of audit tools. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1495.'), ('001496','draft','2009-09-29','DISA FSO','technical','The information system implements cryptographic mechanisms to protect the integrity of audit tools.','AU-9(3).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the integrity of audit tools. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1496.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to implement cryptographic mechanisms to protect the integrity of audit tools. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1496.'), ('001497','draft','2009-09-29','DISA FSO','policy','The organization defines a frequency for the reviews and updates to the baseline configuration of the information system.','CM-2(1).2','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001498','draft','2009-09-29','DISA FSO','policy','The organization defines a time period after which proposed changes to the information system that have not been approved or disapproved are highlighted.','CM-3(1).5','DoD has defined the time period as 7 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 7 days.'), ('001499','draft','2009-09-29','DISA FSO','technical','The organization limits privileges to change software resident within software libraries.','CM-5(6).1','The organization being inspected/assessed documents and implements a process to limit privileges to accounts authorized to change software resident within software libraries. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1499.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed limits privileges to change software resident within software libraries. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1499.'), ('001500','draft','2009-09-29','DISA FSO','technical','The information system automatically implements organization-defined safeguards and countermeasures if security functions (or mechanisms) are changed inappropriately.',NULL,NULL,NULL), ('001501','draft','2009-09-29','DISA FSO','policy','The organization defines safeguards and countermeasures to be employed by the information system if security functions (or mechanisms) are changed inappropriately.',NULL,NULL,NULL), ('001502','draft','2009-09-29','DISA FSO','policy','The organization monitors changes to the configuration settings in accordance with organizational policies and procedures.','CM-6.11','The organization being inspected/assessed develops and documents a process for monitoring changes to the configuration settings in accordance with organizational policies and procedures.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed monitors changes to the configuration settings in accordance with organizational policies and procedures.'), ('001503','draft','2009-09-29','DISA FSO','policy','The organization controls changes to the configuration settings in accordance with organizational policies and procedures.','CM-6.12','The organization being inspected/assessed develops and documents a process for controlling changes to the configuration settings in accordance with organizational policies and procedures.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed controls changes to the configuration settings in accordance with organizational policies and procedures.'), ('001504','draft','2009-11-02','DISA FSO','policy','The organization develops and documents a personnel security policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PS-1.3','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.'), ('001505','draft','2009-11-02','DISA FSO','policy','The organization disseminates a personnel security policy to organization-defined personnel or roles.','PS-1.4','DoD disseminates DoD 5200.2-R via the DoD Issuance site: http://www.dtic.mil/whs/directives/corres/pub1.html to meet the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.'), ('001506','draft','2009-11-02','DISA FSO','policy','The organization reviews and updates the current personnel security policy in accordance with organization-defined frequency.','PS-1.7','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.'), ('001507','draft','2009-11-02','DISA FSO','policy','The organization defines the frequency with which to review and update the current personnel security policy.','PS-1.8','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('001508','draft','2009-11-02','DISA FSO','policy','The organization defines the frequency with which to review and update the current personnel security procedures.','PS-1.10','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('001509','draft','2009-11-02','DISA FSO','policy','The organization develops and documents procedures to facilitate the implementation of the personnel security policy and associated personnel security controls.','PS-1.6','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.'), ('001510','draft','2009-11-02','DISA FSO','policy','The organization disseminates personnel security procedures to organization-defined personnel or roles.','PS-1.5','DoD disseminates DoD 5200.2-R via the DoD Issuance site: http://www.dtic.mil/whs/directives/corres/pub1.html to meet the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.'), ('001511','draft','2009-11-02','DISA FSO','policy','The organization reviews and updates the current personnel security procedures in accordance with organization-defined frequency.','PS-1.9','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for personnel security policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD 5200.2-R.'), ('001512','draft','2009-11-02','DISA FSO','policy','The organization assigns a risk designation to all organizational positions.','PS-2.1','The organization being inspected/assessed will designate and document all organizational positions, to include government and contract positions, with the appropriate ADP/IT level designation, IAW DoD 5200.2-R.','The organization conducting the inspection/assessment obtains and examines documentation of the ADP/IT level designations.'), ('001513','draft','2009-11-02','DISA FSO','policy','The organization establishes screening criteria for individuals filling organizational positions.','PS-2.2','DoD 5200.2-R meets the DoD requirements for establishing screening criteria for individuals filling organizational positions.\n\nDoD organizations are automatically compliant with this CCI as they are covered at the DoD level by DoD 5200.2-R.','DoD 5200.2-R meets the DoD requirements for establishing screening criteria for individuals filling organizational positions.\n\nDoD organizations are automatically compliant with this CCI as they are covered at the DoD level by DoD 5200.2-R.'), ('001514','draft','2009-11-02','DISA FSO','policy','The organization reviews and updates position risk designations in accordance with organization-defined frequency.','PS-2.3','The organization being inspected/assessed reviews position risk designations annually and revises designations as required based on the reviews. Records of these reviews must be maintained as an audit trail. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment reviews the audit records of the position designation reviews to ensure reviews are done annually. DoD has defined the frequency as annually.'), ('001515','draft','2009-11-02','DISA FSO','policy','The organization defines the frequency with which to review and update position risk designations.','PS-2.4','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001516','draft','2009-11-02','DISA FSO','policy','The organization screens individuals prior to authorizing access to the information system.','PS-3.1','The organization being inspected/assessed will screen all government and contract personnel to ensure they meet the appropriate ADP/IT level designation requirements IAW DoD 5200.2-R prior to authorizing access to the information system.','The organization conducting the inspection/assessment obtains and examines the information system access list (AC-2) and compares a sampling of authorized users to manning documents (PS-2) to ensure access was granted appropriately IAW ADP/IT level designation requirements within DoD 5200.2-R.'), ('001517','draft','2009-11-02','DISA FSO','policy','The organization rescreens individuals with authorized access to the information system according to organization-defined conditions requiring rescreening, and where rescreening is so indicated, on the organization-defined frequency of such rescreening.','PS-3.2','The information system owner will rescreen individuals according to system owner defined list of conditions requiring rescreening (CCI-001518) individuals for access to the information system and frequency (CCI - 001519) of such rescreening. Rescreening actions will be maintained as an audit trail (AU-2).','The organization conducting the inspection/assessment obtains and examines audit records of rescreening actions to ensure the system owner is rescreening individuals according to a system owner-defined list of conditions requiring rescreening and, where re-screening is so indicated, based on the system owner-defined frequency of such rescreening.'), ('001518','draft','2009-11-02','DISA FSO','policy','The organization defines the conditions requiring rescreening of individuals with authorized access to the information system.','PS-3.3','The information system owner will develop and document the list of conditions requiring rescreening individuals for access to the information system. DoD has determined the list of conditions is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documentation of conditions requiring rescreening of individuals for access to the information system. DoD has determined the list of conditions is not appropriate to define at the Enterprise level.'), ('001519','draft','2009-11-02','DISA FSO','policy','The organization defines the frequency for rescreening individuals with authorized access to the information system when organization-defined conditions requiring rescreening are met.','PS-3.4','The information system owner will define and document the required frequency of rescreening for access to the information system. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documentation defining the required frequency for rescreening individuals for access to the system. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('001520','draft','2009-11-02','DISA FSO','policy','The organization ensures that individuals accessing an information system processing, storing, or transmitting classified information are cleared and indoctrinated to the highest classification level of the information to which they have access on the system.','PS-3(1).1','The organization being inspected/assessed ensures that individuals accessing an information system processing, storing, or transmitting classified information are cleared and indoctrinated to the highest classification level of the information to which they have access on the system.','The organization conducting the inspection/assessment obtains and examines security clearance data for all individuals using the classified information system and the system account list (AC-2) and compares lists to ensure all personnel accessing the system are cleared and indoctrinated to the highest classification level of the information to which they have access on the system.'), ('001521','draft','2009-11-02','DISA FSO','policy','The organization ensures that individuals accessing an information system processing, storing, or transmitting types of classified information which require formal indoctrination, are formally indoctrinated for all of the relevant types of information to which they have access on the system.','PS-3(2).1','The organization being inspected/assessed ensures that individuals accessing an information system processing, storing, or transmitting types of classified information (e.g. Special Access Programs (SAP), Restricted Data (RD), and Sensitive Compartmented Information (SCI)) which require formal indoctrination, is formally indoctrinated for all of the relevant types of information to which they have access on the system.','The organization conducting the inspection/assessment obtains and examines security clearance data for all individuals using the classified information system and the system account list (AC-2) and compares lists to ensure all personnel accessing the system are formally indoctrinated for all of the relevant types of information to which they have access on the system.'), ('001522','draft','2009-11-02','DISA FSO','policy','The organization, upon termination of individual employment, disables information system access within an organization-defined time period.','PS-4.1','The organization being inspected/assessed upon termination of individual employment, terminates information system access immediately and IAW organization security policy and procedures. The organization must retain an audit trail of account termination actions (AU-2). DoD has defined the time period as immediately.','The organization conducting the inspection/assessment obtains and examines organizational security policy and procedures documentation and audit records of account termination actions to ensure account termination actions are conducted immediately and IAW organizational security policy and procedures. DoD has defined the time period as immediately.'), ('001523','draft','2009-11-02','DISA FSO','policy','The organization, upon termination of individual employment, conducts exit interviews that include a discussion of organization-defined information security topics.','PS-4.4','The organization being inspected/assessed, conducts exit interviews that include a discussion of information security topics defined in PS-4, CCI 3024 upon termination of individual employment IAW organization security policy and procedures. The organization must retain an audit trail of conducted exit interviews (AU-2)','The organization conducting the inspection/assessment obtains and examines documentation of departed personnel and the audit trail of conducted exit interviews to ensure all departed personnel had exit interviews conducted that include a discussion of information security topics defined in PS-4, CCI 3024.'), ('001524','draft','2009-11-02','DISA FSO','policy','The organization, upon termination of individual employment, retrieves all security-related organizational information system-related property.','PS-4.6','The organization being inspected/assessed upon termination of individual employment retrieves all security-related organizational information systems-related property IAW organization security policy and procedures. The organization must retain an audit trail of all retrieved security-related organizational information systems-related property (AU-2).','The organization conducting the inspection/assessment obtains and examines appropriate organization security-related organizational information systems-related property documentation/logs and compares to audit trail of all retrieved security-related organizational information systems-related property (AU-2) to ensure all property has been retrieved.'), ('001525','draft','2009-11-02','DISA FSO','policy','The organization, upon termination of individual employment, retains access to organizational information formerly controlled by the terminated individual.','PS-4.7','The organization being inspected/assessed upon termination of individual employment retains access to organizational information formerly controlled by terminated individual IAW organization security policy and procedures. Organizational information formerly controlled by terminated individuals generally refers to online work-product including email files.','The organization conducting the inspection/assessment interviews appropriate IT and security personnel to validate the organization has procedures in place which, upon termination of individual\'s employment, will ensure it retains access to organizational information formerly controlled by the terminated individual.'), ('001526','draft','2009-11-02','DISA FSO','policy','The organization, upon termination of individual employment, retains access to organizational information systems formerly controlled by the terminated individual.','PS-4.8','The organization being inspected/assessed upon termination of individual employment retains access to organizational information systems formerly controlled by terminated individual IAW organization security policy and procedures. Organizational information systems formerly controlled by terminated individuals generally refers to issued hardware (e.g. laptops, BlackBerrys, PEDs, removable media, etc.)','The organization conducting the inspection/assessment interviews appropriate IT and security personnel to validate the organization has procedures in place which, upon termination of individual\'s employment, will ensure it retains access to organizational information systems formerly controlled by the terminated individual.'), ('001527','draft','2009-11-03','DISA FSO','policy','The organization reviews and confirms the ongoing operational need for current logical and physical access authorizations to information systems/facilities when individuals are reassigned or transferred to other positions within the organization.','PS-5.1','The organization being inspected/assessed reviews and confirms ongoing operational need for logical and physical access authorizations to information systems/facilities when individuals are reassigned or transferred to other positions within the organization. The organization must maintain an audit trail of reviews.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews to ensure that the organization has confirmed the ongoing operational need for logical and physical access authorizations to information systems/facilities when individuals are reassigned or transferred to other positions within the organization.'), ('001528','draft','2009-11-03','DISA FSO','policy','The organization initiates organization-defined transfer or reassignment actions within an organization-defined time period following the formal personnel transfer action.','PS-5.2','The organization being inspected/assessed initiates transfer or reassignment actions to ensure all system accesses no longer required are removed and actions to ensure all system accesses required due to the individual\'s new position are granted immediately when personnel are reassigned or transferred to other positions. DoD defines transfer or reassignment actions as actions to ensure all system accesses no longer required are removed. DoD defines the time period as immediately.','The organization conducting the inspection/assessment obtains and examines appropriate organization security-related organizational physical and logical access documentation/logs and compares to transferred personnel documentation to ensure appropriate logical and physical access have been revoked for previous positions and granted for new positions immediately. DoD defines the time period as immediately.'), ('001529','draft','2009-11-03','DISA FSO','policy','The organization defines transfer or reassignment actions to initiate within an organization-defined time period following the formal personnel transfer action.','PS-5.3','DoD defines transfer or reassignment actions as actions to ensure all system accesses no longer required are removed.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD defines transfer or reassignment actions as actions to ensure all system accesses no longer required are removed.'), ('001530','draft','2009-11-03','DISA FSO','policy','The organization defines the time period within which the organization initiates organization-defined transfer or reassignment actions following the formal personnel transfer action.','PS-5.4','DoD defines the time period as immediately.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD defines the time period as immediately.'), ('001531','draft','2009-11-03','DISA FSO','policy','The organization ensures that individuals requiring access to organizational information and information systems sign appropriate access agreements prior to being granted access.','PS-6.4','The organization being inspected/assessed will ensure all individuals have appropriate access agreements in place prior to being granted access to information and information systems. DD Form 2875 is the accepted DoD methodology of requesting and granting of access to information and information systems.','The organization conducting the inspection/assessment obtains a list of organizational individuals with active accounts and validates the existence of signed DD Form 2875 (paper or electronic) associated with a sampling of individuals selected from the list.'), ('001532','draft','2009-11-03','DISA FSO','policy','The organization reviews and updates access agreements for organizational information systems in accordance with organization-defined frequency.','PS-6.2','The organization being inspected/assessed reviews/updates the access agreements annually of employees who have signed access agreements. The purpose of this review/update is to ensure access agreements are current and departed employees no longer have access agreements. The organization must maintain an audit trail of the review and update activity for review. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail to ensure review/update occurred annually and departed employees no longer have valid access agreements.'), ('001533','draft','2009-11-03','DISA FSO','policy','The organization defines the frequency with which to review and update access agreements for organizational information systems.','PS-6.3','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001534','draft','2009-11-03','DISA FSO','policy','The organization ensures that access to information with special protection measures is granted only to individuals who have a valid access authorization that is demonstrated by assigned official government duties.',NULL,NULL,NULL), ('001535','draft','2009-11-03','DISA FSO','policy','The organization ensures that access to information with special protection measures is granted only to individuals who satisfy associated personnel security criteria.',NULL,NULL,NULL), ('001536','draft','2009-11-03','DISA FSO','policy','The organization ensures that access to classified information requiring special protection is granted only to individuals who have a valid access authorization that is demonstrated by assigned official government duties.','PS-6(2).1','The organization being inspected/assessed will grant access to classified information requiring special protection only to individuals who have a valid access authorization that is demonstrated by assigned official government duties. DD Form 2875 is the accepted DoD methodology of requesting and granting of access to information and information systems.','The organization conducting the inspection/assessment obtains a list of organizational individuals with active accounts and validates the existence of signed DD Form 2875 (paper or electronic) associated with individuals requiring access to classified information with special protection.'), ('001537','draft','2009-11-03','DISA FSO','policy','The organization ensures that access to classified information requiring special protection is granted only to individuals who satisfy associated personnel security criteria.','PS-6(2).2','The organization being inspected/assessed ensures all authorized access to classified information requiring special protection is granted only to those individuals who have satisfied the associated personnel security criteria. DD Form 2875 is the accepted DoD methodology of requesting and granting of access to information and information systems.','The organization conducting the inspection/assessment reviews access agreements; access authorizations; personnel security criteria; along with other relevant documents or records to ensure the organization has granted authorized access to classified information requiring special protection only to those individuals who have satisfied the associated personnel security criteria.'), ('001538','draft','2009-11-03','DISA FSO','policy','The organization ensures that access to classified information requiring special protection is granted only to individuals who have read, understood, and signed a nondisclosure agreement.','PS-6(2).3','The organization being inspected/assessed grants access to classified information requiring special protection only to individuals who have read, understood, and signed a nondisclosure agreement.','The organization conducting the inspection/assessment obtains and examines the access roster and requests the signed nondisclosure agreements of a sampling of individuals to validate the organization requires all access to classified information requiring special protection is granted only to individuals who have a signed nondisclosure agreement.'), ('001539','draft','2009-11-03','DISA FSO','policy','The organization establishes personnel security requirements including security roles and responsibilities for third-party providers.','PS-7.1','DoD 5220.22-M, DoD 5220.22-R, DoD 5200.2-R, DoD 8570.01-M and DoDI 3020.41 meet the DoD personnel security requirements including security roles and responsibilities for third-party providers.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoD 5220.22-M, DoD 5220.22-R, DoD 5200.2-R, DoD 8570.01-M and DoDI 3020.41.','DoD 5220.22-M, DoD 5220.22-R, DoD 5200.2-R, DoD 8570.01-M and DoDI 3020.41 meet the DoD personnel security requirements including security roles and responsibilities for third-party providers.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoD 5220.22-M, DoD 5220.22-R, DoD 5200.2-R, DoD 8570.01-M and DoDI 3020.41.'), ('001540','draft','2009-11-03','DISA FSO','policy','The organization documents personnel security requirements for third-party providers.','PS-7.3','The organization being inspected/assessed documents personnel security requirements for third-party providers.','The organization conducting the inspection/assessment obtains and examines the personnel security requirements to ensure the organization being inspected/assessed documents personnel security requirements for third-party providers.'), ('001541','draft','2009-11-03','DISA FSO','policy','The organization monitors third-party provider compliance with personnel security requirements.','PS-7.7','The organization being inspected/assessed monitors third-party provider compliance with personnel security requirements. The organization must maintain an audit trail of monitoring activity.','The organization conducting the inspection/assessment obtains and examines the audit trail of monitoring activity to ensure the organization being inspected/assessed monitors third-party provider compliance with personnel security requirements.'), ('001542','draft','2009-11-03','DISA FSO','policy','The organization employs a formal sanctions process for individuals failing to comply with established information security policies and procedures.','PS-8.1','The organization being inspected/assessed will develop formal procedures within the organizational security policy to employ formal sanctions for personnel failing to comply with established information security policies and procedures.','The organization conducting the inspection/assessment obtains and examines the organizational security policy to ensure it addresses formal procedures for sanctions and interviews security personnel to validate the organization employs a formal sanctions process for personnel failing to comply with established information security policies and procedures.'), ('001543','draft','2009-11-03','DISA FSO','policy','The organization disseminates the most recent information security program plan to appropriate entities in the organization that includes roles, responsibilities, management commitment, coordination among organizational entities, and compliance.',NULL,NULL,NULL), ('001544','draft','2009-11-30','DISA FSO','policy','The organization manages information system authenticators by ensuring that authenticators have sufficient strength of mechanism for their intended use.','IA-5.3','The organization being inspected/assessed documents and implements authenticator strength mechanisms sufficient for the intended use of the authenticators.','The organization conducting the inspection/assessment obtains and examines documented authenticator strength mechanisms to ensure that they are defined and that the mechanisms have sufficient strength for the intended use of the authenticators.'), ('001545','draft','2010-05-11','DISA FSO','policy','The organization defines a frequency for reviewing and updating the access control policy.','AC-1.8','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001546','draft','2010-05-11','DISA FSO','policy','The organization defines a frequency for reviewing and updating the access control procedures.','AC-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001547','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency on which it will review information system accounts for compliance with account management requirements.','AC-2.23','DoD has defined the frequency as at a minimum, annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at a minimum, annually.'), ('001548','draft','2010-05-11','DISA FSO','policy','The organization defines the information flow control policies for controlling the flow of information within the system.','AC-4.3','The organization being inspected/assessed defines and documents the information flow control policies for controlling the flow of information within the system. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information flow control policies to ensure the organization being inspected/assessed defines the information flow control policies for controlling the flow of information within the system. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.'), ('001549','draft','2010-05-11','DISA FSO','policy','The organization defines the information flow control policies for controlling the flow of information between interconnected systems.','AC-4.4','The organization being inspected/assessed defines and documents the information flow control policies for controlling the flow of information between interconnected systems. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information flow control policies to ensure the organization being inspected/assessed defines the information flow control policies for controlling the flow of information between interconnected systems. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.'), ('001550','draft','2010-05-11','DISA FSO','policy','The organization defines approved authorizations for controlling the flow of information within the system.','AC-4.5','The organization being inspected/assessed defines and documents approved authorizations for controlling the flow of information within the system.','The organization conducting the inspection/assessment obtains and examines the documented approved authorizations to ensure the organization being inspected/assessed defines approved authorizations for controlling the flow of information within the system.'), ('001551','draft','2010-05-11','DISA FSO','policy','The organization defines approved authorizations for controlling the flow of information between interconnected systems.','AC-4.6','The organization being inspected/assessed defines and documents approved authorizations for controlling the flow of information between interconnected systems.','The organization conducting the inspection/assessment obtains and examines the documented approved authorizations to ensure the organization being inspected/assessed defines approved authorizations for controlling the flow of information between interconnected systems.'), ('001552','draft','2010-05-11','DISA FSO','policy','The organization defines policy that allows or disallows information flows based on changing conditions or operational considerations.',NULL,NULL,NULL), ('001553','draft','2010-05-11','DISA FSO','policy','The organization defines the security policy filters that privileged administrators have the capability to enable/disable.','AC-4(10).2','The organization being inspected/assessed defines and documents the security policy filters that privileged administrators have the capability to enable/disable. DoD has determined the security policy filters are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policy filters to ensure the organization being inspected/assessed defines the security policy filters that privileged administrators have the capability to enable/disable. DoD has determined the security policy filters are not appropriate to define at the Enterprise level.'), ('001554','draft','2010-05-11','DISA FSO','policy','The organization defines the security policy filters that privileged administrators have the capability to configure.','AC-4(11).2','The organization being inspected/assessed defines and documents the security policy filters that privileged administrators have the capability to configure. DoD has determined the security policy filters are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policy filters to ensure the organization being inspected/assessed defines the security policy filters that privileged administrators have the capability to configure. DoD has determined the security policy filters are not appropriate to define at the Enterprise level.'), ('001555','draft','2010-05-11','DISA FSO','technical','The information system uniquely identifies destination domains for information transfer.',NULL,NULL,NULL), ('001556','draft','2010-05-11','DISA FSO','technical','The information system uniquely authenticates destination domains for information transfer.',NULL,NULL,NULL), ('001557','draft','2010-05-11','DISA FSO','technical','The information system tracks problems associated with the information transfer.',NULL,NULL,NULL), ('001558','draft','2010-05-11','DISA FSO','policy','The organization defines the security functions (deployed in hardware, software, and firmware) for which access must be explicitly authorized.','AC-6(1).1','DoD has defined the security functions as all functions not publicly accessible.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security functions as all functions not publicly accessible.'), ('001559','draft','2010-05-11','DISA FSO','policy','The organization identifies the individuals authorized to change the value of associated security attributes.','AC-16(2).2','The organization being inspected/assessed identifies and documents the individuals authorized to change the value of associated security attributes.','The organization conducting the inspection/assessment obtains and examines the documented individuals to ensure the organization being inspected/assessed identifies the individuals authorized to change the value of associated security attributes.'), ('001560','draft','2010-05-11','DISA FSO','policy','The organization identifies individuals (or processes acting on behalf of individuals) authorized to associate organization-defined security attributes with organization-defined objects.','AC-16(4).1','The organization being inspected/assessed identifies and documents individuals (or processes acting on behalf of individuals) authorized to associate security attributes defined in AC-16 (4), CCI 2288 with objects defined in AC-16 (4), CCI 2287.','The organization conducting the inspection/assessment obtains and examines the documented individuals to ensure the organization being inspected/assessed identifies individuals (or processes acting on behalf of individuals) authorized to associate security attributes defined in AC-16 (4), CCI 2288 with objects defined in AC-16 (4), CCI 2287.'), ('001561','draft','2010-05-11','DISA FSO','policy','The organization defines managed access control points for remote access to the information system.','AC-17(3).2','The organization being inspected/assessed defines and documents managed access control points for remote access to the information system.','The organization conducting the inspection/assessment obtains and examines the documented managed access points to ensure the organization being inspected/assessed defines managed access control points for remote access to the information system.'), ('001562','draft','2010-05-11','DISA FSO','policy','The organization defines the appropriate action(s) to be taken if an unauthorized remote connection is discovered.',NULL,NULL,NULL), ('001563','draft','2010-05-11','DISA FSO','policy','The organization defines the appropriate action(s) to be taken if an unauthorized wireless connection is discovered.',NULL,NULL,NULL), ('001564','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency of security awareness and training policy reviews and updates.','AT-1.5','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('001565','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency of security awareness and training procedure reviews and updates.','AT-1.10','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('001566','draft','2010-05-11','DISA FSO','policy','The organization provides organization-defined personnel or roles with initial training in the employment and operation of physical security controls.','AT-3(2).1','The organization being inspected/assessed:\n1. Identifies and documents physical security controls that require training.\n2. Identifies the personnel defined in AT-3 (2), CCI 2051\n3. Ensures designated personnel receive this training.\n4. Maintains and monitors records of personnel who have received this training.','The organization conducting the inspection/assessment obtains and examines:\n1. Documentation of physical security controls that require training.\n2. Documented list of personnel defined in AT-3 (2), CCI 2051\n3. Ensures identified personnel have received the initial training.'), ('001567','draft','2010-05-11','DISA FSO','policy','The organization provides organization-defined personnel or roles with refresher training in the employment and operation of physical security controls in accordance with the organization-defined frequency.','AT-3(2).2','The organization being inspected/assessed:\n1. Identifies and documents physical security controls that require training.\n2. Identifies personnel defined in AT-3 (2), CCI 2051\n3. Ensures designated personnel receive this training annually\n4. Maintains and monitors records of personnel who have received this training.\n\nDoD has defined the frequency as annual.','The organization conducting the inspection/assessment obtains and examines:\n1. Documentation of physical security controls that require training.\n2. Documented list of personnel defined in AT-3 (2), CCI 2051\n3. Ensures identified personnel have received training annually.\n\nDoD has defined the frequency as annual.'), ('001568','draft','2010-05-11','DISA FSO','policy','The organization defines a frequency for providing employees with refresher training in the employment and operation of physical security controls.','AT-3(2).3','DoD has defined the frequency as annual.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annual.'), ('001569','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency on which it will review and update the audit and accountability policy.','AU-1.8','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001570','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency on which it will review and update the audit and accountability procedures.','AU-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001571','draft','2010-05-11','DISA FSO','policy','The organization defines the information system auditable events.','AU-2.2','DoD has defined the information system auditable events as successful and unsuccessful attempts to access, modify, or delete privileges, security objects, security levels, or categories of information (e.g. classification levels). Successful and unsuccessful logon attempts, Privileged activities or other system level access, Starting and ending time for user access to the system, Concurrent logons from different workstations, Successful and unsuccessful accesses to objects, All program initiations, All direct access to the information system. All account creations, modifications, disabling, and terminations. All kernel module load, unload, and restart.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system auditable events as successful and unsuccessful attempts to access, modify, or delete privileges, security objects, security levels, or categories of information (e.g. classification levels). Successful and unsuccessful logon attempts, Privileged activities or other system level access, Starting and ending time for user access to the system, Concurrent logons from different workstations, Successful and unsuccessful accesses to objects, All program initiations, All direct access to the information system. All account creations, modifications, disabling, and terminations. All kernel module load, unload, and restart.'), ('001572','draft','2010-05-11','DISA FSO','policy','The organization defines the personnel or roles to be alerted in the event of an audit processing failure.','AU-5.2','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the SCA and ISSO, who shall be alerted in the event of audit processing failure. If there are no additional personnel or roles, the organization must also document that. DoD has defined the personnel or roles as at a minimum, the SCA and ISSO.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles who should be alerted in the event of audit processing failure to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles. DoD has defined the personnel or roles as at a minimum, the SCA and ISSO.'), ('001573','draft','2010-05-11','DISA FSO','policy','The organization defines whether to reject or delay network traffic that exceeds organization-defined thresholds.','AU-5(3).2','DoD has defined the action to take as delay.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the action to take as delay.'), ('001574','draft','2010-05-11','DISA FSO','technical','The information system rejects or delays, as defined by the organization, network traffic which exceed the organization-defined thresholds.','AU-5(3).3','The organization being inspected/assessed configures the information system to delay network communications traffic exceeding the thresholds defined in AU-5 (3), CCI 1859. DoD has defined the action to take as delay. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1574.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to delay network communications traffic exceeding the thresholds defined in AU-5 (3), CCI 1859. DoD has defined the action to take as delay. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1574.'), ('001575','draft','2010-05-11','DISA FSO','policy','The organization defines the system or system component for storing audit records that is a different system or system component than the system or component being audited.','AU-9(2).3','The organization being inspected/assessed defines and documents a system or storage media that will be used to store information system audit data different and separate from the system or media generating the audit data.','The organization conducting the inspection/assessment obtains and examines the information system or media documentation addressing the storage of backups of information system audit records; information system audit records; and any other relevant documents or records. The purpose of the reviews is to ensure the organization has defined and documented a system or storage media different from the system or media being audited.'), ('001576','deprecated','2010-05-11','DISA FSO','technical','The information system produces a system-wide (logical or physical) audit trail of information system audit records.',NULL,NULL,NULL), ('001577','draft','2010-05-11','DISA FSO','policy','The organization defines the information system components from which audit records are to be compiled into the system-wide audit trail.','AU-12(1).3','The organization being inspected/assessed will define and document the information system components from which audit records are to be compiled into the system-wide audit trail. The organization will periodically update this list to ensure it is current. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the system-wide audit trail documentation to ensure the organization being inspected/assessed maintains a current list of information system components. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('001578','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency to review and update the current security assessment and authorization procedures.','CA-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001579','draft','2010-05-11','DISA FSO','policy','The organization conducts security control assessments using organization-defined forms of testing in accordance with organization-defined frequency and assessment techniques.',NULL,NULL,NULL), ('001580','draft','2010-05-11','DISA FSO','policy','The organization identifies connections to external information systems (i.e., information systems outside of the authorization boundary).',NULL,NULL,NULL), ('001581','draft','2010-05-11','DISA FSO','policy','The organization defines personnel or roles to whom the security status of the organization and the information system should be reported.','CA-7.11','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('001582','draft','2010-05-11','DISA FSO','policy','The organization defines other forms of security assessments other than in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment; and performance/load testing that should be included as part of security control assessments.','CA-2(2).2','The organization being inspected/assessed defines and documents other forms of security assessments other than in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment and performance/load testing that should be included as part of security control assessments. DoD has determined the other forms of security assessments are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented other forms of security assessments to ensure the organization being inspected/assessed defines other forms of security assessments other than in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment and performance/load testing that should be included as part of security control assessments. DoD has determined the other forms of security assessments are not appropriate to define at the Enterprise level.'), ('001583','draft','2010-05-11','DISA FSO','policy','The organization selects announced or unannounced assessments for each form of security control assessment.','CA-2(2).3','The organization being inspected/assessed selects and documents whether announced or unannounced assessments are required for each form of security control assessment that was selected as part of CA-2 (2), CCI 2064. DoD has determined the announced or unannounced nature of the assessments is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list of security control assessment techniques defined in CA-2 (2), CCI 2064 and verifies that the security assessment plan defines whether the assessment is announced or unannounced.'), ('001584','draft','2010-05-11','DISA FSO','policy','The organization defines the frequency with which to review and update configuration management procedures.','CM-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001585','draft','2010-05-12','DISA FSO','policy','The organization defines the circumstances that require reviews and updates to the baseline configuration of the information system.','CM-2(1).4','DoD has defined the circumstances as baseline configuration changes or as events dictate such as changes due to USCYBERCOM tactical orders/ directives or cyber attacks.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the circumstances as baseline configuration changes or as events dictate such as changes due to USCYBERCOM tactical orders/ directives or cyber attacks.'), ('001586','draft','2010-05-12','DISA FSO','policy','The organization defines the configuration change control element (e.g., committee, board) responsible for coordinating and providing oversight for configuration change control activities.','CM-3.12','DoD has defined the configuration change control element as a configuration control board (CCB).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the configuration change control element as a configuration control board (CCB).'), ('001587','draft','2010-05-12','DISA FSO','policy','The organization, when analyzing new software in a separate test environment, looks for security impacts due to flaws, weaknesses, incompatibility, or intentional malice.',NULL,NULL,NULL), ('001588','draft','2010-05-12','DISA FSO','policy','The organization-defined security configuration checklists reflect the most restrictive mode consistent with operational requirements.','CM-6.4','DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) meet the DoD requirement for ensuring security configuration checklists reflect the most restrictive mode consistent with operational requirements.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.).','DoD security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.) meet the DoD requirement for ensuring security configuration checklists reflect the most restrictive mode consistent with operational requirements.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level security configuration or implementation guidance (e.g. STIGs, SRGs, NSA configuration guides, CTOs, DTMs etc.).'), ('001589','draft','2010-05-12','DISA FSO','technical','The organization incorporates detection of unauthorized, security-relevant configuration changes into the organization’s incident response capability to ensure they are tracked.',NULL,NULL,NULL), ('001590','deprecated','2010-05-12','DISA FSO','policy','The organization develops a list of software programs authorized to execute on the information system.',NULL,NULL,NULL), ('001591','deprecated','2010-05-12','DISA FSO','policy','The organization develops a list of software programs not authorized to execute on the information system.',NULL,NULL,NULL), ('001592','draft','2010-05-12','DISA FSO','policy','The organization defines the rules authorizing the terms and conditions of software program usage on the information system.','CM-7(2).1','The organization being inspected/assessed defines and documents their rules for approval of software program usage. For network capable software programs, the organization being inspected/assessed complies with DoDI 8551. DoD has determined that the rules authorizing the terms and conditions of software program usage on the information system are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the rules as well as the software list to ensure that all network capable software programs are DoDI 8551 compliant and that the rules authorizing the use of all other programs are defined. DoD has determined that the rules authorizing the terms and conditions of software program usage on the information system are not appropriate to define at the Enterprise level'), ('001593','deprecated','2010-05-12','DISA FSO','policy','The organization maintains a list of software programs authorized to execute on the information system.',NULL,NULL,NULL), ('001594','deprecated','2010-05-12','DISA FSO','policy','The organization maintains a list of software programs not authorized to execute on the information system.',NULL,NULL,NULL), ('001595','draft','2010-05-12','DISA FSO','policy','The organization maintains rules authorizing the terms and conditions of software program usage on the information system.',NULL,NULL,NULL), ('001596','draft','2010-05-12','DISA FSO','policy','The organization defines the frequency with which to review and update the current contingency planning procedures.','CP-1.9','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001597','draft','2010-05-12','DISA FSO','policy','The organization disseminates contingency planning procedures to organization-defined personnel or roles.','CP-1.5','DoD disseminates DoDI 8500.01 organization-wide via the DoD Issuances website. http://www.dtic.mil/whs/directives/corres/dir.html NIST disseminates NIST SP 800-34 via http://csrc.nist.gov/publications/PubsSPs.html','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.'), ('001598','draft','2010-05-12','DISA FSO','policy','The organization reviews and updates the current contingency planning procedures in accordance with the organization-defined frequency.','CP-1.10','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.','DoDI 8500.01 and NIST SP 800-34 meet the DoD requirements for contingency planning policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and NIST SP 800-34.'), ('001599','draft','2010-05-12','DISA FSO','policy','The organization sustains operational continuity of essential missions until full information system restoration at primary processing and/or storage sites.','CP-2(5).3','The organization being inspected/assessed develops and documents procedures within the contingency plan to sustain operational continuity of essential missions until full information system restoration at primary processing and/or storage sites.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it documents procedures to sustain operational continuity of essential missions until full information system restoration at primary processing and/or storage sites.'), ('001600','draft','2010-05-12','DISA FSO','policy','The organization sustains operational continuity of essential business functions until full information system restoration at primary processing and/or storage sites.','CP-2(5).4','The organization being inspected/assessed develops and documents procedures within the contingency plan to sustain operational continuity of essential business functions until full information system restoration at primary processing and/or storage sites.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it documents procedures to sustain operational continuity of essential business functions until full information system restoration at primary processing and/or storage sites.'), ('001601','draft','2010-05-12','DISA FSO','policy','The organization sustains operational continuity of essential missions at alternate processing and/or storage sites until information system restoration at primary processing and/or storage sites.','CP-2(6).3','The organization being inspected/assessed documents within their continuity plan a process for continuation of essential missions at alternate processing and/or storage sites until information system restoration at primary processing and/or storage sites.','The organization conducting the inspection/assessment obtains and examines the continuity plan to ensure the organization being inspected/assessed documents a process for continuation of essential missions at alternate processing and/or storage sites until information system restoration at primary processing and/or storage sites.'), ('001602','draft','2010-05-12','DISA FSO','policy','The organization sustains operational continuity of essential business functions at alternate processing and/or storage sites until information system restoration at primary processing and/or storage sites.','CP-2(6).4','The organization being inspected/assessed documents within their continuity plan a process for continuation of essential business functions at alternate processing and/or storage sites until information system restoration at primary processing and/or storage sites.','The organization conducting the inspection/assessment obtains and examines the continuity plan to ensure the organization being inspected/assessed documents a process for continuation of essential business functions at alternate processing and/or storage sites until information system restoration at primary processing and/or storage sites.'), ('001603','draft','2010-05-12','DISA FSO','policy','The contingency plan identifies the primary storage site hazards.',NULL,NULL,NULL), ('001604','draft','2010-05-12','DISA FSO','policy','The organization outlines explicit mitigation actions for organization identified accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster.','CP-6(3).2','The organization being inspected/assessed must identify and document in the contingency plan explicit mitigation actions for accessibility problems identified in CP-6 (3), CCI 509 to the alternate storage site in the event of an area-wide disruption or disaster.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure the organization has documented explicit mitigation actions for accessibility problems identified in CP-6 (3), CCI 509 to the alternate storage site in the event of an area-wide disruption or disaster.'), ('001605','draft','2010-05-12','DISA FSO','policy','The contingency plan identifies the primary processing site hazards.',NULL,NULL,NULL), ('001606','draft','2010-05-12','DISA FSO','policy','The organization outlines explicit mitigation actions for organization-identified potential accessibility problems to the alternate processing site in the event of an area-wide disruption or disaster.','CP-7(2).2','The organization being inspected/assessed must identify and document in the contingency plan explicit mitigation actions for accessibility problems identified in CP-7 (2), CCI 517 to the alternate processing site in the event of an area-wide disruption or disaster.','The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure the organization has documented explicit mitigation actions for accessibility problems identified in CP-7 (2), CCI 517 to the alternate processing site in the event of an area-wide disruption or disaster.'), ('001607','draft','2010-05-12','DISA FSO','policy','The organization establishes alternate telecommunications services to support the information system.',NULL,NULL,NULL), ('001608','draft','2010-05-12','DISA FSO','policy','The organization identifies the primary provider\'s telecommunications service hazards.',NULL,NULL,NULL), ('001609','draft','2010-05-12','DISA FSO','policy','The organization can activate the redundant secondary information system that is not collocated with the primary system without loss of information or disruption to operations.','CP-9(6).2','The organization being inspected/assessed establishes a service level agreement which will provide for redundant secondary system support that is not co-located with the primary system, and has configured the system so that it can be activated to accomplish system backups without a loss of information or operational disruption.','The organization conducting the inspection/assessment determines if the organization has established a service level agreement for a redundant secondary system support that is not co-located with the primary system, and has configured the system so it can be activated to accomplish system backups without a loss of information or operational disruption.'), ('001610','draft','2010-05-12','DISA FSO','policy','The organization defines the time period (by authenticator type) for changing/refreshing authenticators.','IA-5.17','DoD has defined the time period as CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as CAC - every 3 years, or 1 year from term of contract Password: 60 days Biometrics: every 3 years.'), ('001611','draft','2010-05-12','DISA FSO','policy','The organization defines the minimum number of special characters for password complexity enforcement.','IA-5(1).5','DoD has defined the minimum number of special characters for password complexity enforcement as one special character.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the minimum number of special characters for password complexity enforcement as one special character.'), ('001612','draft','2010-05-12','DISA FSO','policy','The organization defines the minimum number of upper case characters for password complexity enforcement.','IA-5(1).6','DoD has defined the minimum number of upper case characters for password complexity enforcement as one upper-case character.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the minimum number of upper case characters for password complexity enforcement as one upper-case character.'), ('001613','draft','2010-05-12','DISA FSO','policy','The organization defines the minimum number of lower case characters for password complexity enforcement.','IA-5(1).7','DoD has defined the minimum number of lower case characters for password complexity enforcement as one lower-case character.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the minimum number of lower case characters for password complexity enforcement as one lower-case character.'), ('001614','draft','2010-05-12','DISA FSO','policy','The organization defines the minimum number of numeric characters for password complexity enforcement.','IA-5(1).8','DoD has defined the minimum number of numeric characters for password complexity enforcement as one numeric character.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the minimum number of numeric characters for password complexity enforcement as one numeric character.'), ('001615','draft','2010-05-12','DISA FSO','policy','The organization defines the minimum number of characters that are changed when new passwords are created.','IA-5(1).11','DoD has defined the minimum number of characters as 50% of the minimum password length.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\nDoD has defined the minimum number of characters as 50% of the minimum password length.'), ('001616','draft','2010-05-12','DISA FSO','policy','The organization defines minimum password lifetime restrictions.','IA-5(1).16','DoD has defined the minimum password lifetime restrictions as 24 hours.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the minimum password lifetime restrictions as 24 hours.'), ('001617','draft','2010-05-12','DISA FSO','policy','The organization defines maximum password lifetime restrictions.','IA-5(1).17','DoD has defined the maximum password lifetime restrictions as 60 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the maximum password lifetime restrictions as 60 days.'), ('001618','draft','2010-05-12','DISA FSO','policy','The organization defines the number of generations for which password reuse is prohibited.','IA-5(1).19','DoD has defined the number of generations as a minimum of 5.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the number of generations as a minimum of 5.'), ('001619','draft','2010-05-12','DISA FSO','technical','The information system enforces password complexity by the minimum number of special characters used.','IA-5(1).9','The organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of special characters used. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1619.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce password complexity by the minimum number of special characters used. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1619.'), ('001620','draft','2010-05-12','DISA FSO','policy','The organization defines the types of and/or specific authenticators for which the registration process must be carried out in person before a designated registration authority with authorization by a designated organizational official (e.g., a supervisor).',NULL,NULL,NULL), ('001621','draft','2010-05-12','DISA FSO','policy','The organization implements organization-defined security safeguards to manage the risk of compromise due to individuals having accounts on multiple information systems.','IA-5(8).2','The organization being inspected/assessed documents and implements policies and user training including advising users not to use the same password for any of the following: Domains of differing classification levels. More than one domain of a classification level (e.g., internal agency network and Intelink). More than one privilege level (e.g., user, administrator).','The organization conducting the inspection/assessment obtains and examines the documented policies as well as training records to ensure that the organization being inspected/assessed implements policies and training advising users not to use the same password for any of the following: Domains of differing classification levels. More than one domain of a classification level (e.g., internal agency network and Intelink). More than one privilege level (e.g., user, administrator).'), ('001622','draft','2010-05-12','DISA FSO','policy','The organization identifies personnel with incident response roles and responsibilities with respect to the information system.',NULL,NULL,NULL), ('001623','draft','2010-05-12','DISA FSO','policy','The incident response training material addresses the procedures and activities necessary to fulfill identified organizational incident response roles and responsibilities.',NULL,NULL,NULL), ('001624','draft','2010-05-12','DISA FSO','policy','The organization documents the results of incident response tests.','IR-3.4','The organization being inspected/assessed will document the results of incident response tests.','The organization conducting the inspection/assessment obtains and examines:\n1. the organization\'s incident response plan to identify organization\'s testing schedule and,\n2. results of previous incident response tests to ensure the organization is documenting the results IAW their incident response plan.'), ('001625','draft','2010-05-12','DISA FSO','policy','The organization implements the resulting incident handling activity changes to incident response procedures, training, and testing/exercises accordingly.','IR-4.4','The organization being inspected/assessed will follow the latest incident response plan (IR-8) that has been revised (based on IR-4, CCI-000824) and disseminated. ','The organization conducting the inspection/assessment obtains and examines recent changes to the incident response plan (based on IR-4, CCI 000824) to verify that they have been disseminated and reviews the most recent after action report to ensure that changes have been followed. '), ('001626','draft','2010-05-12','DISA FSO','policy','The organization employs automated mechanisms to assist in the collection of security incident information.','IR-5(1).2','The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism. ','The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS.'), ('001627','draft','2010-05-12','DISA FSO','policy','The organization employs automated mechanisms to assist in the analysis of security incident information.','IR-5(1).3','The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism. ','The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS. '), ('001628','draft','2010-05-12','DISA FSO','policy','The organization defines a frequency with which to review and update the current system maintenance procedures.','MA-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('001629','draft','2010-05-12','DISA FSO','policy','The organization employs automated mechanisms to produce up-to-date, accurate, complete, and available records of all maintenance and repair actions needed, in process, and complete.',NULL,NULL,NULL), ('001630','draft','2010-05-12','DISA FSO','policy','Designated organizational personnel review the maintenance records of the non-local maintenance and diagnostic sessions.',NULL,NULL,NULL), ('001631','draft','2010-05-12','DISA FSO','policy','The organization, before removal from organizational facilities, and after the service is performed, inspects and sanitizes the component (with regard to potentially malicious software) before reconnecting the component to the information system.','MA-4(3).3','The organization being inspected/assessed sanitizes and inspects serviced components prior to reusing them on any information system. Alternatively, the organization being inspected/assessed complies with MA-4 (3) CCI 882.','The organization conducting the inspection/assessment obtains and examines maintenance procedures for all non-local maintenance and diagnostic services to ensure that the organization being inspected/assessed sanitizes and inspects serviced components prior to reusing them on any information system. Alternatively, the organization conducting the inspection/assessment ensures the organization being inspected/assessed complies with MA-4 (3) CCI 882.'), ('001632','draft','2010-05-12','DISA FSO','technical','The organization protects nonlocal maintenance sessions by separating the maintenance session from other network sessions with the information system by either physically separated communications paths or logically separated communications paths based upon encryption.','MA-4(4).3','The organization being inspected/assessed configures the information system to protect nonlocal maintenance sessions by separating the maintenance session from other network sessions with the information system by either physically separated communications paths or logically separated communications paths based upon encryption. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1632.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect nonlocal maintenance sessions by separating the maintenance session from other network sessions with the information system by either physically separated communications paths or logically separated communications paths based upon encryption. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1632.'), ('001633','draft','2010-05-12','DISA FSO','policy','The organization defines removable media types and information output requiring marking.',NULL,NULL,NULL), ('001634','draft','2010-05-12','DISA FSO','policy','The organization identifies authorized personnel with appropriate clearances and access authorizations for gaining physical access to the facility containing an information system that processes classified information.',NULL,NULL,NULL), ('001635','draft','2010-05-12','DISA FSO','policy','The organization removes individuals from the facility access list when access is no longer required.','PE-2.7','The organization being inspected/assessed will remove personnel from the authorized access list who no longer have approved access and revoke their credentials, as identified in actions per PE-2, CCI 914. The organization must document each removal and revocation action as an audit trail.','The organization conducting the inspection/assessment obtains and examines the review and approval actions documentation to ensure that personnel no longer requiring access have been removed from the authorized access list and their credentials have been revoked.'), ('001636','draft','2010-05-12','DISA FSO','policy','The organization defines the frequency with which to review and update the current security planning policy.','PL-1.6','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('001637','draft','2010-05-12','DISA FSO','policy','The organization reviews and updates the current security planning policy in accordance with organization-defined frequency.','PL-1.7','DoDI 8510.01 meets the requirements for a security planning policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the frequency as every 5 years.','DoDI 8510.01 meets the requirements for a security planning policy.\n\nDoD Components are automatically compliant with this CCI because they are covered by DoD level policy, DoDI 8510.01.\n\nDoD has defined the frequency as every 5 years.'), ('001638','draft','2010-05-12','DISA FSO','policy','The organization defines the frequency with which to review and update the current security planning procedures.','PL-1.10','DoD has defined the frequency as reviewed annually - updated as appropriate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate.'), ('001639','draft','2010-05-12','DISA FSO','policy','The organization makes readily available to individuals requiring access to the information system the rules that describe their responsibilities and expected behavior with regard to information and information system usage.','PL-4.2','The organization being inspected/assessed must disseminate to all information system users, via an information sharing capability, rules that describe information system user responsibilities and expected behavior with regard to information and information system usage, acceptable use policy (AUP). Organizations should disseminate the rules by providing to users and requiring signature of acceptance.','The organization conducting the inspection/assessment obtains and examines rules that describe information system user responsibilities via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated.'), ('001640','draft','2010-05-12','DISA FSO','policy','The organization updates the critical infrastructure and key resources protection plan that addresses information security issues.','PM-8.2','DoDD 3020.40 meets the DoD requirement for the development of a critical infrastructure and key resource protection plan.\n\nDoD components are automatically compliant with this CCI as they are covered by the DoD level, DoDD 3020.40.','DoDD 3020.40 meets the DoD requirement for the development of a critical infrastructure and key resource protection plan.\n\nDoD components are automatically compliant with this CCI as they are covered by the DoD level, DoDD 3020.40.'), ('001641','draft','2010-05-12','DISA FSO','policy','The organization defines the process for conducting random vulnerability scans on the information system and hosted applications.','RA-5.4','DoD has defined the requirement for vulnerability scanning periodicity of every 30 days. If the organization being inspected/assessed has determined a requirement for random scanning they must document that process. DoD has defined the frequency as every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization conducting the inspection/assessment obtains and examines random vulnerability process documentation (if applicable) to validate the organization has clearly defined and documented a process for conducting random vulnerability scans on the information system and hosted applications. If the organization being inspected/assessed has determined they have no requirement for random scanning, there is no requirement for a process.'), ('001642','draft','2010-05-12','DISA FSO','policy','The organization defines the organizational document in which risk assessment results are documented (e.g., security plan, risk assessment report).','RA-3.3','DoD has defined the document as a risk assessment report.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the document as a risk assessment report.'), ('001643','draft','2010-05-12','DISA FSO','policy','The organization scans for vulnerabilities in the information system and hosted applications in accordance with the organization-defined process for random scans.','RA-5.5','The organization being inspected/assessed will conduct random vulnerability scans every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).\n\nThe organization will document the vulnerability scans as an audit trail for future reference. The audit trail must be maintained IAW DoD, CYBERCOM, or component policies.\n\nDoD has defined the frequency as every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).\n.','The organization conducting the inspection/assessment obtains and examines\nthe vulnerability scanning results every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs) to verify compliance with the organization being inspected/assessed random vulnerability scanning process.\n\nDoD has defined the frequency as every 30 days or as directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).'), ('001644','draft','2010-05-12','DISA FSO','policy','The organization employs vulnerability scanning procedures that can demonstrate the depth of coverage (i.e., vulnerabilities checked).',NULL,NULL,NULL), ('001645','draft','2010-05-12','DISA FSO','policy','The organization identifies the information system components to which privileged access is authorized for selected organization-defined vulnerability scanning activities.','RA-5(5).2','DoD has defined the information system components as all information systems and infrastructure components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as all information systems and infrastructure components.'), ('001646','draft','2010-05-12','DISA FSO','policy','The organization defines the frequency with which to review and update the current system and services acquisition procedures.','SA-1.10','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'); INSERT INTO `cci` VALUES ('001647','draft','2010-05-12','DISA FSO','policy','The organization requires the use of a FIPS-validated, cryptographic module for a technology product that relies on cryptographic functionality to enforce its security policy when no U.S. Government Protection Profile exists for such a specific technology type.',NULL,NULL,NULL), ('001648','draft','2010-05-12','DISA FSO','policy','The organization makes available to authorized personnel the source code for the information system to permit analysis and testing.',NULL,NULL,NULL), ('001649','draft','2010-05-12','DISA FSO','policy','The organization identifies and documents (as appropriate) explicit rules to be enforced when governing the installation of software by users.',NULL,NULL,NULL), ('001650','draft','2010-05-12','DISA FSO','policy','The organization requires the information system developers to manage and control changes to the information system during development.',NULL,NULL,NULL), ('001651','draft','2010-05-12','DISA FSO','policy','The organization requires the information system integrators to manage and control changes to the information system during development.',NULL,NULL,NULL), ('001652','draft','2010-05-12','DISA FSO','policy','The organization requires the information system developers to manage and control changes to the information system during implementation.',NULL,NULL,NULL), ('001653','draft','2010-05-12','DISA FSO','policy','The organization requires the information system integrators to manage and control changes to the information system during implementation.',NULL,NULL,NULL), ('001654','draft','2010-05-12','DISA FSO','policy','The organization requires the information system developers to manage and control changes to the information system during modification.',NULL,NULL,NULL), ('001655','draft','2010-05-12','DISA FSO','policy','The organization requires the information system integrators to manage and control changes to the information system during modification.',NULL,NULL,NULL), ('001656','draft','2010-05-12','DISA FSO','policy','The organization defines the security functions of the information system to be isolated from nonsecurity functions.',NULL,NULL,NULL), ('001657','draft','2010-05-12','DISA FSO','policy','The organization defines the external boundary of the information system.',NULL,NULL,NULL), ('001658','draft','2010-05-12','DISA FSO','policy','The organization defines key internal boundaries of the information system.',NULL,NULL,NULL), ('001659','draft','2010-05-12','DISA FSO','policy','The organization defines the mediation necessary for public access to the organization\'s internal networks.',NULL,NULL,NULL), ('001660','draft','2010-05-12','DISA FSO','policy','The organization defines the measures to protect against unauthorized physical connections across boundary protections implemented at organization-defined managed interfaces.',NULL,NULL,NULL), ('001661','draft','2010-05-12','DISA FSO','policy','The organization defines the security functions, to minimally include information system authentication and re-authentication, within the information system to be included in a trusted communications path.','SC-11.2','DoD has defined the security functions as providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security functions as providers of authentication, reauthentication, and all privileged commands (administration, monitoring, and controlling).'), ('001662','draft','2010-05-12','DISA FSO','technical','The information system takes organization-defined corrective action when organization-defined unacceptable mobile code is identified.','SC-18(1).2','The organization being inspected/assessed configures the information system to take corrective actions defined in SC-18 (1), CCI 2457 when unacceptable mobile code defined in SC-18 (1), CCI 2458 is identified. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1662.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to take corrective actions defined in SC-18 (1), CCI 2457 when unacceptable mobile code defined in SC-18 (1), CCI 2458 is identified. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1662.'), ('001663','draft','2010-05-12','DISA FSO','technical','The information system, when operating as part of a distributed, hierarchical namespace, provides the means to enable verification of a chain of trust among parent and child domains (if the child supports secure resolution services).','SC-20.4','The organization being inspected/assessed installs and utilizes software capable of validating the chain of trust (Examples of software include dig, dnsviz, dnssec-debugger, dnssec validator for Mozilla, etc.). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1663.','The organization conducting the inspection/assessment utilizes DNSSEC diagnostic tools, such as dig, and performs queries which will exercise the data flow path for authoritative name resolution services where parent and child domains exist. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that pertains to CCI 1663.'), ('001664','draft','2010-05-12','DISA FSO','technical','The information system recognizes only session identifiers that are system-generated.','SC-23(3).3','The organization being inspected/assessed configures the information system to recognize only session identifiers that are system-generated. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1664.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to recognize only session identifiers that are system-generated. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1664.'), ('001665','draft','2010-05-12','DISA FSO','technical','The information system preserves organization-defined system state information in the event of a system failure.','SC-24.5','The organization being inspected/assessed configures the information system to preserve information necessary to determine cause of failure and to return to operations with least disruption to mission/ business processes in the event of a system failure. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1665. DoD has defined system state information as information necessary to determine cause of failure and to return to operations with least disruption to mission/ business processes.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to preserve information necessary to determine cause of failure and to return to operations with least disruption to mission/ business processes in the event of a system failure. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1665. DoD has defined system state information as information necessary to determine cause of failure and to return to operations with least disruption to mission/ business processes.'), ('001666','draft','2010-05-12','DISA FSO','policy','The organization employs cryptographic mechanisms to prevent unauthorized modification of information at rest unless otherwise protected by alternative physical measures.',NULL,NULL,NULL), ('001667','draft','2010-05-12','DISA FSO','policy','The organization compares the time measured between flaw identification and flaw remediation with organization-defined benchmarks.',NULL,NULL,NULL), ('001668','draft','2010-05-12','DISA FSO','technical','The organization employs malicious code protection mechanisms at workstations, servers, or mobile computing devices on the network to detect and eradicate malicious code transported by electronic mail, electronic mail attachments, web accesses, removable media, or other common means or inserted through the exploitation of information system vulnerabilities.',NULL,NULL,NULL), ('001669','draft','2010-05-12','DISA FSO','policy','The organization defines the frequency of testing malicious code protection mechanisms.','SI-3(6).2','DoD has defined the frequency as twice annually or when substantial changes are made to the malicious code protection mechanisms.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as twice annually or when substantial changes are made to the malicious code protection mechanisms.'), ('001670','draft','2010-05-12','DISA FSO','technical','The information system takes organization-defined least-disruptive actions to terminate suspicious events.','SI-4(7).4','The organization being inspected/assessed configures the information system to take least-disruptive actions defined in SI-4 (7), CCI 1268 to terminate suspicious events. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1670.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to take least-disruptive actions defined in SI-4 (7), CCI 1268 to terminate suspicious events. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1670.'), ('001671','draft','2010-05-12','DISA FSO','policy','The organization analyzes outbound communications traffic at selected organization-defined interior points within the system (e.g., subnetworks, subsystems) to discover anomalies.','SI-4(11).2','The organization being inspected/assessed documents and implements a process to analyze outbound communications traffic at selected interior points defined in SI-4 (11), CCI 2668 within the system (e.g., subnetworks, subsystems) to discover anomalies. The organization must maintain a record of any discovered anomalies.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of any discovered anomalies to ensure the organization being inspected/assessed analyzes outbound communications traffic at selected interior points defined in SI-4 (11), CCI 2668 within the system (e.g., subnetworks, subsystems) to discover anomalies.'), ('001672','draft','2010-05-12','DISA FSO','technical','The organization employs a wireless intrusion detection system to identify rogue wireless devices.',NULL,NULL,NULL), ('001673','draft','2010-05-12','DISA FSO','policy','The organization employs a wireless intrusion detection system to identify rogue wireless devices and to detect attack attempts and potential compromises/breaches to the information system.','SI-4(14).1','The organization being inspected/assessed documents and implements a wireless intrusion detection system to identify rogue wireless devices and to detect attack attempts and potential compromises/breaches to the information system.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified wireless intrusion detection system and the system hardware/software list to ensure the organization being inspected/assessed employs a wireless intrusion detection system to identify rogue wireless devices and to detect attack attempts and potential compromises/breaches to the information system. The organization being inspected/assessed may be required to demonstrate use of the wireless intrusion detection system.'), ('001674','draft','2010-05-12','DISA FSO','technical','The information system responds to security function anomalies in accordance with organization-defined responses and alternative action(s).',NULL,NULL,NULL), ('001675','draft','2010-05-12','DISA FSO','policy','The organization defines the personnel or roles that are to receive reports on the results of security function verification.','SI-6(3).2','DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('001676','draft','2010-05-12','DISA FSO','policy','The organization defines, for periodic security function verification, the frequency of the verifications.',NULL,NULL,NULL), ('001677','draft','2010-05-12','DISA FSO','technical','The organization employs spam protection mechanisms at workstations, servers, or mobile computing devices on the network to detect and take action on unsolicited messages transported by electronic mail, electronic mail attachments, web accesses, removable media, or other common means.',NULL,NULL,NULL), ('001678','draft','2010-05-12','DISA FSO','policy','The organization retains information within the information system and information output from the system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.','SI-12.2','The organization being inspected/assessed identifies and documents federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements which apply to the information within the information system. The organization documents and implements a process to retain information IAW those documented federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.','The organization conducting the inspection/assessment obtains and examines the documented list of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements which apply to the information within the information system, as well as the documented process for information retention to ensure the organization being inspected/assessed retains information within the information system and information output from the system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.'), ('001679','draft','2010-05-12','DISA FSO','policy','The organization provides a mechanism to exchange active and standby roles of the components.',NULL,NULL,NULL), ('001680','draft','2010-06-09','DISA FSO','policy','The organization develops an organization-wide information security program plan that includes the identification and assignment of roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PM-1.4','DoDI 8500.01 and the Knowledge Service meet the requirement for this CCI; individual organizations and system owners must provide documentation of common control implementation in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('001681','deprecated','2011-04-26','DISA FSO','policy','The organization defines the frequency at which each form of security control assessment should be conducted.',NULL,NULL,NULL), ('001682','draft','2011-05-03','DISA FSO','technical','The information system automatically removes or disables emergency accounts after an organization-defined time period for each type of account.','AC-2(2).4','The organization being inspected/assessed configures the information system to never automatically remove or disable emergency accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1682. DoD has defined the time period as never. ','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to never automatically remove or disable emergency accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1682. DoD has defined the time period as never.'), ('001683','draft','2011-05-03','DISA FSO','technical','The information system notifies organization-defined personnel or roles for account creation actions.','AC-2(4).5','The organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account creation actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1683. DoD has defined the personnel or roles as the system administrator and ISSO.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account creation actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1683. DoD has defined the personnel or roles as the system administrator and ISSO.'), ('001684','draft','2011-05-03','DISA FSO','technical','The information system notifies organization-defined personnel or roles for account modification actions.','AC-2(4).6','The organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account modification actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1684. DoD has defined the personnel or roles as the system administrator and ISSO.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account modification actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1684. DoD has defined the personnel or roles as the system administrator and ISSO.'), ('001685','draft','2011-05-03','DISA FSO','technical','The information system notifies organization-defined personnel or roles for account disabling actions.','AC-2(4).7','The organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account disabling actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1685. DoD has defined the personnel or roles as the system administrator and ISSO.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account disabling actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1685. DoD has defined the personnel or roles as the system administrator and ISSO.'), ('001686','draft','2011-05-03','DISA FSO','technical','The information system notifies organization-defined personnel or roles for account removal actions.','AC-2(4).8','The organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account removal actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1686. DoD has defined the personnel or roles as the system administrator and ISSO.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account removal actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1686. DoD has defined the personnel or roles as the system administrator and ISSO.'), ('001687','draft','2011-05-03','DISA FSO','policy','The organization ensures the use of mobile code to be deployed in information systems meets organization-defined mobile code requirements.','SC-18(2).3','The organization being inspected/assessed documents and implements a process to use mobile code IAW the requirements defined in CCI 1168.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed uses mobile code IAW the requirements defined in CCI 1168.'), ('001688','draft','2011-05-03','DISA FSO','policy','The organization ensures the acquisition of mobile code to be deployed in information systems meets organization-defined mobile code requirements.','SC-18(2).4','The organization being inspected/assessed documents and implements a process to acquire mobile code IAW the requirements defined in CCI 1168.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed acquire mobile code IAW the requirements defined in CCI 1168.'), ('001689','draft','2011-05-27','DISA FSO','policy','The organization, if an information system component failure is detected, automatically shuts down the information system.',NULL,NULL,NULL), ('001690','draft','2011-10-07','DISA FSO','policy','The organization protects, as required, vendor/manufacturer documentation that describes the security-relevant external interfaces to the information system.',NULL,NULL,NULL), ('001691','draft','2011-10-07','DISA FSO','policy','The organization makes available to authorized personnel vendor/manufacturer documentation that describes the security-relevant external interfaces to the information system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('001692','draft','2011-10-07','DISA FSO','policy','The organization makes available to authorized personnel vendor/manufacturer documentation that describes the low-level design of the information system in terms of modules and implementation details of the security controls employed within the system with sufficient detail to permit analysis and testing.',NULL,NULL,NULL), ('001693','draft','2011-10-07','DISA FSO','technical','The information system enforces a Discretionary Access Control (DAC) policy that limits propagation of access rights.',NULL,NULL,NULL), ('001694','draft','2011-10-07','DISA FSO','technical','The information system enforces a Discretionary Access Control (DAC) policy that includes or excludes access to the granularity of a single user.',NULL,NULL,NULL), ('001695','draft','2011-10-07','DISA FSO','technical','The information system prevents the execution of organization-defined unacceptable mobile code.','SC-18(3).2','The organization being inspected/assessed configures the information system to prevent the execution of unacceptable mobile code defined in CCI 2459.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1695.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent the execution of unacceptable mobile code defined in CCI 2459.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1695.'), ('001726','draft','2013-02-28','DISA FSO','policy','The organization uses software in accordance with contract agreements.','CM-10.1','The organization being inspected/assessed uses software in accordance with contract agreements.','The organization conducting the inspection/assessment obtains and examines a sampling of contract agreements and supporting evidence concerning the usage of software to ensure compliance with the contract agreements.'), ('001727','draft','2013-02-28','DISA FSO','policy','The organization uses software documentation in accordance with contract agreements.','CM-10.2','The organization being inspected/assessed uses software documentation in accordance with contract agreements.','The organization conducting the inspection/assessment obtains and examines a sampling of contract agreements associated with software documentation and supporting evidence concerning the usage of software documentation to ensure compliance with contract agreements.'), ('001728','draft','2013-02-28','DISA FSO','policy','The organization uses software in accordance with copyright laws.','CM-10.3','The organization being inspected/assessed uses software in accordance with copyright laws.','The organization conducting the inspection/assessment obtains and examines supporting evidence concerning the usage of software to ensure compliance with copyright laws.'), ('001729','draft','2013-02-28','DISA FSO','policy','The organization uses software documentation in accordance with copyright laws.','CM-10.4','The organization being inspected/assessed uses software documentation in accordance with copyright laws.','The organization conducting the inspection/assessment obtains and examines supporting evidence concerning the usage of software documentation to ensure compliance with copyright laws.'), ('001730','draft','2013-02-28','DISA FSO','policy','The organization tracks the use of software protected by quantity licenses to control copying of the software.','CM-10.5','The organization being inspected/assessed tracks the use of software protected by quantity licenses to control copying of the software. Software license tracking can be accomplished by manual methods (e.g., simple spreadsheets) or automated methods (e.g., specialized tracking applications) depending on organizational needs.','The organization conducting the inspection/assessment obtains and examines the tracking records to ensure the organization being inspected/assessed tracks the use of software protected by quantity licenses to control copying of the software.'), ('001731','draft','2013-02-28','DISA FSO','policy','The organization tracks the use of software documentation protected by quantity licenses to control distribution of the software documentation.','CM-10.6','The organization being inspected/assessed tracks the use of software documentation protected by quantity licenses to control distribution of the software documentation. Software license tracking can be accomplished by manual methods (e.g., simple spreadsheets) or automated methods (e.g., specialized tracking applications) depending on organizational needs.','The organization conducting the inspection/assessment obtains and examines the tracking records to ensure the organization being inspected/assessed tracks the use of software documentation protected by quantity licenses to control distribution of the software documentation.'), ('001732','draft','2013-02-28','DISA FSO','policy','The organization controls the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.','CM-10.9','The organization being inspected/assessed reviews and authorizes in order to control the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work. The organization must maintain an audit trail of peer-to-peer file sharing technology reviews and authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of peer-to-peer file sharing technology reviews and authorizations to ensure the organization being inspected/assessed controls the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.'), ('001733','draft','2013-02-28','DISA FSO','policy','The organization documents the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.','CM-10.10','The organization being inspected/assessed documents the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.','The organization conducting the inspection/assessment obtains and examines the documentation for the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.'), ('001734','draft','2013-02-28','DISA FSO','policy','The organization defines the restrictions to be followed on the use of open source software.','CM-10(1).1','DoD has defined the restrictions as IAW DoD Memorandum \"Clarifying Guidance Regarding Open Source Software (OSS)\" 16 Oct 2009 (http://dodcio.defense.gov/Home/Issuances/DoDCIOMemorandums.aspx).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the restrictions as IAW DoD Memorandum \"Clarifying Guidance Regarding Open Source Software (OSS)\" 16 Oct 2009 (http://dodcio.defense.gov/Home/Issuances/DoDCIOMemorandums.aspx).'), ('001735','draft','2013-02-28','DISA FSO','policy','The organization establishes organization-defined restrictions on the use of open source software.','CM-10(1).2','DoD Memorandum \"Clarifying Guidance Regarding Open Source Software (OSS)\" 16 Oct 2009 (http://dodcio.defense.gov/Home/Issuances/DoDCIOMemorandums.aspx) meets the DoD requirement for establishing restrictions on the use of open source software.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD Memorandum \"Clarifying Guidance Regarding Open Source Software (OSS).\"','DoD Memorandum \"Clarifying Guidance Regarding Open Source Software (OSS)\" 16 Oct 2009 (http://dodcio.defense.gov/Home/Issuances/DoDCIOMemorandums.aspx) meets the DoD requirement for establishing restrictions on the use of open source software.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoD Memorandum \"Clarifying Guidance Regarding Open Source Software (OSS).\"'), ('001736','draft','2013-02-28','DISA FSO','policy','The organization defines the previous versions of the baseline configuration of the information system required to support rollback.','CM-2(3).2','DoD has defined the previous versions as the previous approved baseline configuration of IS components for a minimum of 3 month.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the previous versions as the previous approved baseline configuration of IS components for a minimum of 3 month.'), ('001737','draft','2013-02-28','DISA FSO','policy','The organization defines the information systems, system components, or devices that are to have organization-defined configurations applied when located in areas of significant risk.','CM-2(7).1','The organization being inspected/assessed defines and documents, in the configuration management policy, the information systems, system components, or devices that are to have configurations defined in CM-2 (7), CCI 1738 applied when located in areas of significant risk. DoD has determined that this value is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines the information systems, system components, or devices that are to have configurations defined in CM-2 (7), CCI 1738 applied when located in areas of significant risk. DoD has determined that this value is not appropriate to define at the Enterprise level.'), ('001738','draft','2013-02-28','DISA FSO','policy','The organization defines the security configurations to be implemented on information systems, system components, or devices when they are located in areas of significant risk.','CM-2(7).2','The organization being inspected/assessed defines and documents, in the configuration management policy, the security configurations to be implemented on information systems, system components, or devices when they are located in areas of significant risk. DoD has determined that this value is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines the security configurations to be implemented on information systems, system components, or devices when they are located in areas of significant risk. DoD has determined that this value is not appropriate to define at the Enterprise level.'), ('001739','draft','2013-02-28','DISA FSO','policy','The organization issues organization-defined information systems, system components, or devices with organization-defined configurations to individuals traveling to locations the organization deems to be of significant risk.','CM-2(7).3','The organization being inspected/assessed issues information systems, system components, or devices as defined in CM-2 (7) CCI 1737 with configurations as defined in CM-2 (7) CCI 1738 to individuals traveling to locations the organization deems to be of significant risk.','The organization conducting the inspection/assessment interviews organizational personnel with configuration management responsibilities to ensure that individuals traveling to locations that the organization deems to be of significant risk are issued information systems, system components, or devices as defined in CM-2 (7) CCI 1737 with configurations as defined in CM-2 (7) CCI 1738.'), ('001740','draft','2013-02-28','DISA FSO','policy','The organization reviews proposed configuration-controlled changes to the information system.','CM-3.3','The organization being inspected/assessed conducts reviews of records documenting the proposed configuration controlled changes to each information system. The organization will maintain an audit trail of each proposed configuration controlled change. This action will be implemented by the CCB as defined in CM-3, CCI 1586.','The organization conducting the inspection/assessment obtains and examines the audit trail of a sampling of proposed configuration controlled changes to ensure the reviews are being conducted.'), ('001741','draft','2013-02-28','DISA FSO','policy','The organization documents configuration change decisions associated with the information system.','CM-3.4','The organization being inspected/assessed documents configuration change decisions associated with the information system. The organization must maintain an audit trail of configuration change decisions. This action will be implemented by the CCB as defined in CM-3, CCI 1586.','The organization conducting the inspection/assessment obtains and examines the audit trail documenting configuration change decisions associated with the information system to ensure the organization being inspected/assessed has documented their decisions.'), ('001742','draft','2013-02-28','DISA FSO','policy','The organization defines the approval authorities to be notified when proposed changes to the information system are received.','CM-3(1).3','DoD has defined the approval authorities as the configuration control board (CCB).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the approval authorities as the configuration control board (CCB).'), ('001743','draft','2013-02-28','DISA FSO','policy','The organization defines the security responses to be automatically implemented by the information system if baseline configurations are changed in an unauthorized manner.','CM-3(5).1','The organization being inspected/assessed defines and documents, in the configuration management policy, the security responses to be automatically implemented by the information system if baseline configurations are changed in an unauthorized manner. DoD has determined that the value is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines the security responses to be automatically implemented by the information system if baseline configurations are changed in an unauthorized manner. DoD has determined that the value is not appropriate to define at the Enterprise level.'), ('001744','draft','2013-02-28','DISA FSO','technical','The information system implements organization-defined security responses automatically if baseline configurations are changed in an unauthorized manner.','CM-3(5).2','The organization being inspected/assessed implements security responses, as defined in CM-3 (5), CCI 1743, automatically if baseline configurations are changed in an unauthorized manner. The information system must maintain an audit trail of automatic security responses to unauthorized changes in baseline configurations.','The organization conducting the inspection/assessment obtains and examines the audit trail to ensure the organization being inspected/assessed implements security responses, as defined in CM-3 (5), CCI 1743, automatically if baseline configurations are changed in an unauthorized manner.'), ('001745','draft','2013-02-28','DISA FSO','policy','The organization defines the security safeguards that are to be provided by the cryptographic mechanisms which are employed by the organization.','CM-3(6).1','DoD has defined the security safeguards as all security safeguards.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security safeguards as all security safeguards.'), ('001746','draft','2013-02-28','DISA FSO','policy','The organization ensures that cryptographic mechanisms used to provide organization-defined security safeguards are under configuration management.','CM-3(6).2','The organization being inspected/assessed ensures that cryptographic mechanisms used to provide all security safeguards are under configuration management. DoD has defined the security safeguards as all security safeguards.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure that cryptographic mechanisms used to provide all security safeguards are documented in the policy. DoD has defined the security safeguards as all security safeguards.'), ('001747','draft','2013-02-28','DISA FSO','policy','The organization defines critical software components the information system will prevent from being installed without verification the component has been digitally signed using a certificate that is recognized and approved by the organization.','CM-5(3).1','DoD has defined the software components as any software components when the vendor provides digitally signed products.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the software components as any software components when the vendor provides digitally signed products.'), ('001748','draft','2013-02-28','DISA FSO','policy','The organization defines critical firmware components the information system will prevent from being installed without verification the component has been digitally signed using a certificate that is recognized and approved by the organization.','CM-5(3).2','DoD has defined the critical firmware components as any firmware components when the vendor provides digitally signed products.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the critical firmware components as any firmware components when the vendor provides digitally signed products.'), ('001749','draft','2013-02-28','DISA FSO','technical','The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization.','CM-5(3).3','The organization being inspected/assessed documents and implements a process to prevent the installation of software onto any software components when the vendor provides digitally signed products without verification that software has been digitally signed using a certificate and approved by the organization.\n\nDoD has defined the software components as any software components when the vendor provides digitally signed products.','The organization conducting the inspection/assessment obtains and examines the documented process for preventing the installation of software onto any software components when the vendor provides digitally signed products without verification that software has been digitally signed using a certificate and approved by the organization.\n\nThe organization conducting the inspection/assessment reviews software on a sampling of the defined components to ensure that only software digitally signed by a defined CA is installed.\n\nDoD has defined the software components as any software components when the vendor provides digitally signed products.'), ('001750','draft','2013-02-28','DISA FSO','technical','The information system prevents the installation of organization-defined firmware components without verification the firmware component has been digitally signed using a certificate that is recognized and approved by the organization.','CM-5(3).4','The organization being inspected/assessed documents and implements a process to prevent the installation of firmware onto any firmware components when the vendor provides digitally signed products without verification that firmware has been digitally signed using a certificate and approved by the organization.\n\nDoD has defined the critical firmware components as any firmware components when the vendor provides digitally signed products.','The organization conducting the inspection/assessment obtains and examines the documented process for preventing the installation of firmware onto any firmware components when the vendor provides digitally signed products without verification that firmware has been digitally signed using a certificate and approved by the organization.\n\nThe organization conducting the inspection/assessment reviews firmware on a sampling of the defined components to ensure that only firmware digitally signed by a defined CA is installed.'), ('001751','draft','2013-02-28','DISA FSO','policy','The organization defines system-level information requiring enforcement of a dual authorization for information system changes.','CM-5(4).3','The organization being inspected/assessed defines and documents system-level information requiring enforcement of a dual authorization for information system changes.\n\nDoD has determined to the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented system-level information to ensure the organization being inspected/assessed defines the system-level information requiring enforcement of a dual authorization for information system changes.\n\nDoD has determined to the information is not appropriate to define at the Enterprise level.'), ('001752','draft','2013-02-28','DISA FSO','policy','The organization enforces dual authorization for changes to organization-defined system-level information.','CM-5(4).4','The organization being inspected/assessed documents and implements a process to enforce dual authorization for changes to system-level information defined in CM-5 (4), CCI 1751.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed enforces dual authorization for changes to system-level information defined in CM-5 (4), CCI 1751.'), ('001753','draft','2013-02-28','DISA FSO','policy','The organization limits privileges to change information system components within a production or operational environment.','CM-5(5).1','The organization being inspected/assessed documents and implements a process to limit privileges to change information system components within a production or operational environment.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed limits privileges to change information system components within a production or operational environment.'), ('001754','draft','2013-02-28','DISA FSO','policy','The organization limits privileges to change system-related information within a production or operational environment.','CM-5(5).2','The organization being inspected/assessed documents and implements a process to limit privileges to change system-related information within a production or operational environment.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed limits privileges to change system-related information within a production or operational environment.'), ('001755','draft','2013-02-28','DISA FSO','policy','The organization defines the information system components for which any deviation from the established configuration settings are to be identified, documented, and approved.','CM-6.9','DoD has defined the information system components as all configurable information system components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the information system components as all configurable information system components.'), ('001756','draft','2013-02-28','DISA FSO','policy','The organization defines the operational requirements on which the configuration settings for the organization-defined information system components are to be based.','CM-6.10','The organization being inspected/assessed must define and document in the system security plan, the requirements which may deviate from the approved configuration settings on the information system components defined in CM-6, CCI 1755. DoD has determined that it is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the system security plan to ensure the organization being inspected/assessed defines the requirements which may deviate from the approved configuration settings on the information system components defined in CM-6, CCI 1755. DoD has determined that it is not appropriate to define at the Enterprise level.'), ('001757','draft','2013-02-28','DISA FSO','policy','The organization defines the security safeguards the organization is to employ when responding to unauthorized changes to the organization-defined configuration settings.','CM-6(2).1','The organization being inspected/assessed must define and document in the configuration management policy, the security safeguards the organization is to employ when responding to unauthorized changes to the configuration settings defined in CM-6 (2), CCI 1758. DoD has determined that it is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines the security safeguards the organization is to employ when responding to unauthorized changes to the configuration settings defined in CM-6 (2), CCI 1758. DoD has determined that it is not appropriate to define at the Enterprise level.'), ('001758','draft','2013-02-28','DISA FSO','policy','The organization defines configuration settings for which the organization will employ organization-defined security safeguards in response to unauthorized changes.','CM-6(2).2','The organization being inspected/assessed must define and document in the configuration management policy, the configuration settings for which the organization will employ security safeguards defined in CM-6 (2), CCI 1757 in response to unauthorized changes. DoD has defined the configuration settings as security related configuration settings defined at the program/system level.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines the configuration settings for which the organization will employ security safeguards CM-6 (2), CCI 1757 in response to unauthorized changes. DoD has defined the configuration settings as security related configuration settings defined at the program/system level. '), ('001759','draft','2013-02-28','DISA FSO','policy','The organization employs organization-defined security safeguards to respond to unauthorized changes to organization-defined configuration settings.','CM-6(2).3','The organization being inspected/assessed documents and implements security safeguards defined in CM-6 (2), CCI 1757 to respond to unauthorized changes to security related configuration settings defined at the program/system level. The organization must maintain an audit trail of security safeguard implementation. DoD has defined the configuration settings as security related configuration settings defined at the program/system level. ','The organization conducting the inspection/assessment obtains and examines the documented process and the audit trail of security safeguard implementation to ensure the organization being inspected/assessed implements security safeguards defined in CM-6 (2), CCI 1757 to respond to unauthorized changes to security related configuration settings defined at the program/system level. DoD has defined the configuration settings as security related configuration settings defined at the program/system level. '), ('001760','draft','2013-02-28','DISA FSO','policy','The organization defines the frequency of information system reviews to identify unnecessary and/or nonsecure functions, ports, protocols, and services.','CM-7(1).2','DoD has defined the frequency as every 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 30 days.'), ('001761','draft','2013-02-28','DISA FSO','policy','The organization defines the functions, ports, protocols, and services within the information system that are to be disabled when deemed unnecessary and/or nonsecure.','CM-7(1).3','The organization being inspected/assessed must define and document in the system security plan, the functions, ports, protocols and services within the information system that are to be disabled when deemed unnecessary. DoD has determined that it is not appropriate to define unnecessary functions, ports, protocols and service at the Enterprise level. Nonsecure functions, ports, protocols and services are defined in DoDI 8551.01.','The organization conducting the inspection/assessment obtains and examines the system security plan to ensure the organization being inspected/assessed defines the functions, ports, protocols and services within the information system that are to be disabled when deemed unnecessary. DoD has determined that it is not appropriate to define unnecessary functions, ports, protocols and service at the Enterprise level. Nonsecure functions, ports, protocols and services are defined in DoDI 8551.01.'), ('001762','draft','2013-02-28','DISA FSO','technical','The organization disables organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure.','CM-7(1).4','The organization being inspected/assessed must disable functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure as defined in CM-7 (1), CCI 1761.','The organization conducting the inspection/assessment inspects the information system to ensure the organization being inspected/assessed disables functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure as defined in CM-7 (1), CCI 1761.'), ('001763','draft','2013-02-28','DISA FSO','policy','The organization defines the policies regarding software program usage and restrictions.','CM-7(2).2','The organization being inspected/assessed defines and documents their rules for approval of software program usage. For network capable software programs, the organization being inspected/assessed complies with DoDI 8551. DoD has determined that the rules authorizing the terms and conditions of software program usage on the information system are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the rules as well as the software list to ensure that all network capable software programs are DoDI 8551 compliant and that the rules authorizing the use of all other programs are defined. DoD has determined that the rules authorizing the terms and conditions of software program usage on the information system are not appropriate to define at the Enterprise level.'), ('001764','draft','2013-02-28','DISA FSO','technical','The information system prevents program execution in accordance with organization-defined policies regarding software program usage and restrictions, and/or rules authorizing the terms and conditions of software program usage.','CM-7(2).3','The organization being inspected/assessed configures the information system to prevent the execution of programs not authorized in accordance with CM-7 (2) CCIs 1592 and 1763.','The organization conducting the inspection/assessment examines the information systems to ensure the systems are configured to prevent the execution of programs not authorized in accordance with CM-7 (2) CCIs 1592 and 1763.'), ('001765','draft','2013-02-28','DISA FSO','policy','The organization defines the software programs not authorized to execute on the information system.','CM-7(4).1','The organization being inspected/assessed must define and document software programs not authorized to execute on the information system. For network capable software, the organization-defined list must include all software programs as defined IAW DoDI 8551.01. DoD has determined that a comprehensive list of unauthorized software programs is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list of software programs not authorized to execute to ensure that list is defined. The organization conducting the inspection/assessment reviews the list to ensure that any network capable software is included IAW DoDI 8551.01. DoD has determined that a comprehensive list of unauthorized software programs is not appropriate to define at the Enterprise level.'), ('001766','draft','2013-02-28','DISA FSO','policy','The organization identifies the organization-defined software programs not authorized to execute on the information system.','CM-7(4).2','The organization being inspected/assessed must define and document software programs not authorized to execute on the information system. For network capable software, the organization-defined list must include all software programs as defined IAW DoDI 8551.01.','The organization conducting the inspection/assessment obtains and examines the documented list of software programs not authorized to execute to ensure that list is defined. The organization conducting the inspection/assessment reviews the list to ensure that any network capable software is included IAW DoDI 8551.01.'), ('001767','draft','2013-02-28','DISA FSO','technical','The organization employs an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the information system.','CM-7(4).3','Within the DoD, this control cannot be implemented.','Within the DoD, this control cannot be implemented.'), ('001768','draft','2013-02-28','DISA FSO','policy','The organization defines the frequency on which it will review and update the list of unauthorized software programs.','CM-7(4).4','DoD has defined the frequency as monthly.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as monthly.'), ('001769','deprecated','2013-02-28','DISA FSO','policy','The organization defines the frequency on which it will update the list of unauthorized software programs.',NULL,NULL,NULL), ('001770','draft','2013-02-28','DISA FSO','policy','The organization reviews and updates the list of unauthorized software programs per organization-defined frequency.','CM-7(4).5','The organization being inspected/assessed documents and implements a process to review and update the list of unauthorized software programs monthly. The organization must maintain an audit trail of the review and update activity. DoD has defined the frequency as monthly.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reviews and updates to ensure that the organization being inspected/assessed reviews and updates the list of unauthorized software programs monthly. DoD has defined the frequency as monthly.'), ('001771','deprecated','2013-02-28','DISA FSO','policy','The organization updates the list of unauthorized software programs per organization-defined frequency.',NULL,NULL,NULL), ('001772','draft','2013-02-28','DISA FSO','policy','The organization defines the software programs authorized to execute on the information system.','CM-7(5).1','The organization being inspected/assessed must define and document software programs that are authorized to execute on the information system.\n\nDoD has determined that a comprehensive list of unauthorized software programs is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list of software programs that are authorized to execute to ensure that list is defined.\n\nDoD has determined that a comprehensive list of unauthorized software programs is not appropriate to define at the Enterprise level.'), ('001773','draft','2013-02-28','DISA FSO','policy','The organization identifies the organization-defined software programs authorized to execute on the information system.','CM-7(5).2','The organization being inspected/assessed must define and document software programs that are authorized to execute on the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of software programs that are authorized to execute to ensure that list is defined.'), ('001774','draft','2013-02-28','DISA FSO','technical','The organization employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the information system.','CM-7(5).3','The organization being inspected/assessed configures the information system to deny-all and only permit by exception the execution of authorized software programs on the information system.','The organization conducting the inspection/assessment examines the information system to ensure that it is configured to deny-all and only permit by exception the execution of authorized software programs on the information system.'), ('001775','draft','2013-02-28','DISA FSO','policy','The organization defines the frequency on which it will review and update the list of authorized software programs.','CM-7(5).4','DoD has defined the frequency as monthly.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as monthly.'), ('001776','deprecated','2013-02-28','DISA FSO','policy','The organization defines the frequency on which it will update the list of authorized software programs.',NULL,NULL,NULL), ('001777','draft','2013-02-28','DISA FSO','policy','The organization reviews and updates the list of authorized software programs per organization-defined frequency.','CM-7(5).5','The organization being inspected/assessed documents and implements a process to review and update the list of authorized software programs monthly. The organization must maintain an audit trail of the review and update activity. DoD has defined the frequency as monthly.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reviews and updates to ensure that the organization being inspected/assessed reviews and updates the list of authorized software programs monthly. DoD has defined the frequency as monthly.'), ('001778','deprecated','2013-02-28','DISA FSO','policy','The organization updates the list of authorized software programs per organization-defined frequency.',NULL,NULL,NULL), ('001779','draft','2013-02-28','DISA FSO','policy','The organization defines the frequency on which the information system component inventory is to be reviewed and updated.','CM-8.6','DoD has defined the frequency as at a minimum, annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as at a minimum, annually.'), ('001780','draft','2013-02-28','DISA FSO','policy','The organization reviews and updates the information system component inventory per organization-defined frequency.','CM-8.7','The organization being inspected/assessed documents and implements a process to review and update the information system component inventory at a minimum, annually.\n\nThe organization must maintain an audit trail of review and update activity.\n\nDoD has defined the frequency as at a minimum, annually.','The organization conducting the inspection/assessment obtains and examines the documented process for reviews and updates as well as the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates the information system component inventory at a minimum, annually.\n\nDoD has defined the frequency as at a minimum, annually.'), ('001781','deprecated','2013-03-01','DISA FSO','policy','The organization defines the frequency on which the information system component inventory is to be updated.',NULL,NULL,NULL), ('001782','deprecated','2013-03-01','DISA FSO','policy','The organization updates the information system component inventory per organization-defined frequency.',NULL,NULL,NULL), ('001783','draft','2013-03-01','DISA FSO','policy','The organization defines the personnel or roles to be notified when unauthorized hardware, software, and firmware components are detected within the information system.','CM-8(3).3','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the ISSO or ISSM, to be notified when unauthorized hardware, software, and firmware components are detected within the information system. If there are no additional personnel or roles, the organization must also document that. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles to be notified when unauthorized hardware, software, and firmware components are detected within the information system to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001784','draft','2013-03-01','DISA FSO','policy','When unauthorized hardware, software, and firmware components are detected within the information system, the organization takes action to disable network access by such components, isolates the components, and/or notifies organization-defined personnel or roles.','CM-8(3).4','The organization being inspected/assessed documents and implements a process to take action to disable network access by unauthorized software, hardware, and firmware components, isolate the components, and/or notify the ISSO and ISSM and others as the local organization deems appropriate. The organization must maintain an audit trail of actions taken upon detection of unauthorized software, hardware, and firmware components. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the documented process and audit trail for taking action upon detection of unauthorized components to ensure the organization being inspected/assessed takes action to disable network access by unauthorized software, hardware, and firmware components, isolate the components, and/or notify the ISSO and ISSM and others as the local organization deems appropriate. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001785','draft','2013-03-01','DISA FSO','policy','The organization provides a centralized repository for the inventory of information system components.','CM-8(7).1','The organization being inspected/assessed documents and implements a centralized repository for the inventory of information system components.','The organization conducting the inspection/assessment obtains and examines the documentation of a centralized repository to ensure the organization being inspected/assessed provides a centralized repository for the inventory of information system components.'), ('001786','draft','2013-03-01','DISA FSO','policy','The organization employs automated mechanisms to support tracking of information system components by geographic location.','CM-8(8).1','The organization being inspected/assessed documents and implements automated mechanisms to support tracking of information system components by geographic location.','The organization conducting the inspection/assessment obtains and examines the documentation of the automated mechanisms to ensure the organization being inspected/assessed employs automated mechanisms to support tracking of information system components by geographic location.'), ('001787','draft','2013-03-01','DISA FSO','policy','The organization defines the acquired information system components that are to be assigned to an information system.','CM-8(9).1','The organization being inspected/assessed defines and documents the acquired information system components that are to be assigned to an information system.\n\nAt no lower than the AO level, the organization must define and document the criteria for or types of information system components where assignment must be tracked. For example, all information system components that collect, store, or process information and are not themselves simply a storage media.\n\nDoD has determined that the acquired information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documentation of acquired information system components to ensure the organization being inspected/assessed defines the acquired information system components that are to be assigned to an information system. DoD has determined that the acquired information system components are not appropriate to define at the Enterprise level.'), ('001788','draft','2013-03-01','DISA FSO','policy','The organization assigns organization-defined acquired information system components to an information system.','CM-8(9).2','The organization being inspected/assessed assigns and documents the assignment of acquired information system components, as defined in CM-8 (9), CCI 1787, to an information system.','The organization conducting the inspection/assessment obtains and examines the documentation pertaining to the acquisition of information system components to ensure the organization being inspected/assessed assigns acquired information system components, as defined in CM-8 (9), CCI 1787, to an information system.'), ('001789','draft','2013-03-01','DISA FSO','policy','The organization receives an acknowledgement from the information system owner of the assignment of the acquired information system components to an information system.','CM-8(9).3','The organization being inspected/assessed documents and implements a process to ensure the organization receives an acknowledgement from the information system owner of the assignment of the acquired information system components to an information system. The organization must maintain an audit trail of the acknowledgements.','The organization conducting the inspection/assessment obtains and examines the documented process and audit trail of acknowledgements to ensure the organization being inspected/assessed receives an acknowledgement from the information system owner of the assignment of the acquired information system components to an information system.'), ('001790','draft','2013-03-01','DISA FSO','policy','The organization develops a configuration management plan for the information system that establishes a process for identifying configuration items throughout the system development life cycle.','CM-9.3','The organization being inspected/assessed will develop and document a configuration management plan for the information system that establishes a process for identifying configuration items throughout the system development life cycle.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to verify it establishes and documents a process for identifying configuration items throughout the system development life cycle.'), ('001791','draft','2013-03-01','DISA FSO','policy','The organization documents a configuration management plan for the information system that establishes a process for identifying configuration items throughout the system development life cycle.',NULL,NULL,NULL), ('001792','draft','2013-03-01','DISA FSO','policy','The organization implements a configuration management plan for the information system that establishes a process for identifying configuration items throughout the system development life cycle.','CM-9.4','The organization being inspected/assessed will implement a configuration management plan for the information system that establishes a process for identifying configuration items throughout the system development life cycle.','The organization conducting the inspection/assessment obtains and examines the configuration management plan as well as evidence of implementation (e.g., completed change requests, meeting minutes, and other relevant documents) to ensure the organization being inspected/assessed implements a configuration management plan for the information system that establishes a process for identifying configuration items throughout the system development life cycle. Checks should include verification that items being processed for CM are the items identified and that identified configuration items have not been changed without going through the documented process.'), ('001793','draft','2013-03-01','DISA FSO','policy','The organization develops a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.','CM-9.5','The organization being inspected/assessed will develop and document a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to ensure it establishes and documents a process for managing the configuration of the configuration items.'), ('001794','draft','2013-03-01','DISA FSO','policy','The organization documents a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.',NULL,NULL,NULL), ('001795','draft','2013-03-01','DISA FSO','policy','The organization implements a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.','CM-9.6','The organization being inspected/assessed will implement a configuration management plan that has a process for controlling changes to configuration items.','The organization conducting the inspection/assessment obtains and examines the configuration management plan as well as evidence of implementation (e.g., completed change requests, meeting minutes, and other relevant documents) to ensure the organization being inspected/assessed implements a configuration management plan for the information system that establishes a process for managing the configuration of the configuration items.'), ('001796','draft','2013-03-01','DISA FSO','policy','The organization develops a configuration management plan for the information system that places the configuration items under configuration management.','CM-9.9','The organization being inspected/assessed will develop and document a configuration management plan for the information system that places the configuration items under configuration management.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to ensure the organization being inspected/assessed documents that configuration items are placed under configuration management.'), ('001797','draft','2013-03-01','DISA FSO','policy','The organization documents a configuration management plan for the information system that places the configuration items under configuration management.',NULL,NULL,NULL), ('001798','draft','2013-03-01','DISA FSO','policy','The organization implements a configuration management plan for the information system that places the configuration items under configuration management.','CM-9.10','The organization being inspected/assessed will implement a configuration management plan for the information system that places the configuration items under configuration management.','The organization conducting the inspection/assessment obtains and examines the configuration management plan as well as evidence of implementation (e.g., completed change requests, meeting minutes, and other relevant documents) to ensure the organization being inspected/assessed implements a configuration management plan for the information system and that configuration items identified are under configuration management.'), ('001799','draft','2013-03-01','DISA FSO','policy','The organization develops and documents a configuration management plan for the information system that protects the configuration management plan from unauthorized disclosure and modification.','CM-9.11','The organization being inspected/assessed must develop and document a plan to protect the configuration management plan from unauthorized disclosure and modification. Measures must include marking, labeling, and handling to prevent improper disclosure. The organization being inspected/assessed must ensure that all changes to the CM plan are approved.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to verify that it identifies the protection measures.'), ('001800','deprecated','2013-03-01','DISA FSO','policy','The organization documents a configuration management plan for the information system that protects the configuration management plan from unauthorized disclosure and modification.',NULL,NULL,NULL), ('001801','draft','2013-03-01','DISA FSO','policy','The organization implements a configuration management plan for the information system that protects the configuration management plan from unauthorized disclosure and modification.','CM-9.12','The organization being inspected/assessed must implement a plan to protect the configuration management plan from unauthorized disclosure and modification. Measures must include marking, labeling, and handling to prevent improper disclosure. The organization being inspected/assessed must ensure that all changes to the CM plan are approved.','The organization conducting the inspection/assessment obtains and examines the configuration management plan to verify that the identified protection measures are implemented.'), ('001802','draft','2013-03-01','DISA FSO','policy','The organization tracks the use of software documentation protected by quantity licenses to control copying of the software documentation.','CM-10.7','The organization being inspected/assessed tracks the use of software documentation protected by quantity licenses to control copying of the software documentation. Software license tracking can be accomplished by manual methods (e.g., simple spreadsheets) or automated methods (e.g., specialized tracking applications) depending on organizational needs.','The organization conducting the inspection/assessment obtains and examines the tracking records to ensure the organization being inspected/assessed tracks the use of software documentation protected by quantity licenses to control copying of the software documentation.'), ('001803','draft','2013-03-01','DISA FSO','policy','The organization tracks the use of software protected by quantity licenses to control distribution of the software.','CM-10.8','The organization being inspected/assessed tracks the use of software protected by quantity licenses to control distribution of the software. Software license tracking can be accomplished by manual methods (e.g., simple spreadsheets) or automated methods (e.g., specialized tracking applications) depending on organizational needs.','The organization conducting the inspection/assessment obtains and examines the tracking records to ensure the organization being inspected/assessed tracks the use of software protected by quantity licenses to control distribution of the software.'), ('001804','draft','2013-03-01','DISA FSO','policy','The organization defines the policies for governing the installation of software by users.','CM-11.1','The organization being inspected/assessed must define policies governing the installation of software by users. DoD has determined the policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines policies governing the installation of software by users (e.g., user agreements, CM plan, etc.) to ensure the organization being inspected/assessed defines the policies for governing the installation of software by users. DoD has determined the policies are not appropriate to define at the Enterprise level.'), ('001805','draft','2013-03-01','DISA FSO','policy','The organization establishes organization-defined policies governing the installation of software by users.','CM-11.2','The organization being inspected/assessed documents their policies governing the installation of software by users (e.g., user agreements, CM plan, etc.).','The organization conducting the inspection/assessment obtains and examines documented policies governing the installation of software by users (e.g., user agreements, CM plan, etc.) to ensure the organization being inspected/assessed establishes policies governing the installation of software by users.'), ('001806','draft','2013-03-01','DISA FSO','policy','The organization defines methods to be employed to enforce the software installation policies.','CM-11.3','The organization being inspected/assessed must define and document the methods employed to enforce the software installation policies. DoD has determined the policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines documentation of the methods employed to ensure the organization being inspected/assessed defines methods to be employed to enforce the software installation policies. DoD has determined the policies are not appropriate to define at the Enterprise level.'), ('001807','draft','2013-03-01','DISA FSO','policy','The organization enforces software installation policies through organization-defined methods.','CM-11.4','The organization being inspected/assessed must enforce software installation policies as defined in CM-11, CCI 1804 through methods defined in CM-11, CCI 1806.','The organization conducting the inspection/assessment obtains and examines software installation policies defined in CM-11, CCI 1804 and inspects the methods defined in CM-11, CCI 1806 to verify they are properly implemented.'), ('001808','draft','2013-03-01','DISA FSO','policy','The organization defines the frequency on which it will monitor software installation policy compliance.','CM-11.5','DoD has defined the frequency as at least monthly.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least monthly.'), ('001809','draft','2013-03-01','DISA FSO','policy','The organization monitors software installation policy compliance per an organization-defined frequency.','CM-11.6','The organization being inspected/assessed must monitor software installation policy compliance at least monthly. The organization must maintain audit trails of monitoring activity. DoD has defined the frequency as at least monthly.','The organization conducting the inspection/assessment obtains and examines the audit trails of monitoring activities to ensure the organization being inspected/assessed monitors software installation policy compliance at least monthly. DoD has defined the frequency as at least monthly.'), ('001810','draft','2013-03-01','DISA FSO','policy','The organization defines the personnel or roles to be notified when unauthorized software is detected.','CM-11(1).1','The organization being inspected/assessed must define and document the personnel or roles to be notified when unauthorized software is detected. DoD has defined the personnel or roles that must be notified when unauthorized software is detected as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the documentation of the personnel or roles to be notified when unauthorized software is detected to ensure that ISSO and ISSM and others as the local organization deems appropriate are defined. DoD has defined the personnel or roles that must be notified when unauthorized software is detected as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001811','draft','2013-03-01','DISA FSO','technical','The information system alerts organization-defined personnel or roles when the unauthorized installation of software is detected.','CM-11(1).2','The organization being inspected/assessed must configure the information system to alert ISSO and ISSM and others as the local organization deems appropriate when the unauthorized installation of software is detected. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1811. DoD has defined the personnel or roles that must be notified when unauthorized software is detected as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the configuration of the automated mechanism or evidence that alerts are occurring when unauthorized software is installed to ensure the information system alerts the ISSO and ISSM and others as the local organization deems appropriate when the unauthorized installation of software is detected.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1811.\n\nDoD has defined the personnel or roles that must be notified when unauthorized software is detected as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001812','draft','2013-03-01','DISA FSO','technical','The information system prohibits user installation of software without explicit privileged status.','CM-11(2).1','The organization being inspected/assessed must configure the information system to prevent the installation of software by non-privileged users. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1812.','The organization conducting the inspection/assessment obtains and examines the configuration of the information system components to ensure that installation of software without explicit privileged status is prohibited. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1812.'), ('001813','draft','2013-03-01','DISA FSO','technical','The information system enforces access restrictions.','CM-5(1).1','The organization being inspected/assessed documents and implements a process to enforce access restrictions provided by the information system.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the configuration of the information system to ensure access restrictions are implemented.'), ('001814','draft','2013-03-01','DISA FSO','technical','The Information system supports auditing of the enforcement actions.','CM-5(1).2','The organization being inspected/assessed leverages only information systems which support auditing of enforcement actions.','The organization conducting the inspection/assessment reviews vendor documentation to ensure the information system supports auditing of the enforcement actions. If vendor documentation is not available, the organization conducting the inspection/assessment tests the information system for the capability.'), ('001815','draft','2013-03-01','DISA FSO','policy','The organization defines the security safeguards to be applied to devices when they return from areas of significant risk.','CM-2(7).4','The organization being inspected/assessed defines and documents, in the configuration management policy, the security safeguards to be applied to devices when they return from areas of significant risk. DoD has determined that this value is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the configuration management policy to ensure the organization being inspected/assessed defines the security safeguards to be applied to devices when they return from areas of significant risk. DoD has determined that this value is not appropriate to define at the Enterprise level.'), ('001816','draft','2013-03-01','DISA FSO','policy','The organization applies organization-defined security safeguards to devices when individuals return from areas of significant risk.','CM-2(7).5','The organization being inspected/assessed applies security safeguards as defined in CM-2 (7) CCI 1815 to devices when individuals return from areas of significant risk.','The organization conducting the inspection/assessment interviews organizational personnel with configuration management responsibilities to ensure that when individuals return from areas of significant risk, security safeguards as defined in CM-2 (7) CCI 1815 are applied to devices as defined in CM-2 (7) CCI 1737.'), ('001817','draft','2013-03-01','DISA FSO','policy','The organization, when analyzing changes to the information system, looks for security impacts due to flaws, weaknesses, incompatibility, or intentional malice.','CM-4(1).1','The organization being inspected/assessed documents within their process for analyzing changes to the information system, methods for identifying security impacts due to flaws, weaknesses, incompatibility, or intentional malice. The organization implements the documented process and must maintain a record of analysis.','The organization conducting the inspection/assessment obtains and examines the documented process and record of analysis to ensure the organization being inspected/assessed, when analyzing changes to the information system, looks for security impacts due to flaws, weaknesses, incompatibility, or intentional malice.'), ('001818','draft','2013-03-01','DISA FSO','policy','The organization analyzes changes to the information system in a separate test environment before installation in an operational environment.','CM-4(1).2','The organization being inspected/assessed documents and employs a policy to analyze changes to the information system in a separate test environment before installation in an operational environment, looking for security impacts due to flaws, weaknesses, incompatibility, or intentional malice. The organization must maintain records of analysis of changes to the information system.','The organization conducting the inspection/assessment obtains and examines the documented policy for analyzing changes as well as records of analysis to ensure the organization being inspected/assessed analyzes changes to the information system in a separate test environment before installation in an operational environment, looking for security impacts due to flaws, weaknesses, incompatibility, or intentional malice.'), ('001819','draft','2013-03-01','DISA FSO','policy','The organization implements approved configuration-controlled changes to the information system.','CM-3.5','The organization being inspected/assessed implements approved configuration-controlled changes to the information system. The organization must maintain an audit trail of the implementation of approved configuration-controlled changes.','The organization conducting the inspection/assessment obtains and examines the audit trail documenting the implementation of approved configuration-controlled changes to the information system to ensure the organization being inspected/assessed has implemented the approved changes.'), ('001820','deprecated','2013-03-01','DISA FSO','policy','The organization documents a configuration management policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.',NULL,NULL,NULL), ('001821','draft','2013-03-01','DISA FSO','policy','The organization defines the organizational personnel or roles to whom the configuration management policy is to be disseminated.','CM-1.1',' DoD has defined the organizational personnel or roles as all stakeholders in the configuration management process.',' The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the organizational personnel or roles as all stakeholders in the configuration management process.'), ('001822','draft','2013-03-01','DISA FSO','policy','The organization disseminates the configuration management policy to organization-defined personnel or roles.','CM-1.4','The organization being inspected/assessed disseminates a configuration management policy via an information sharing capability (e.g. portal, intranet, email, etc.) to all stakeholders in the configuration management process.\n\nDoD has defined the organizational personnel or roles as all stakeholders in the configuration management process.','The organization conducting the inspection/assessment obtains and examines the configuration management policy via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated.'), ('001823','deprecated','2013-03-01','DISA FSO','policy','The organization documents the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.',NULL,NULL,NULL), ('001824','draft','2013-03-01','DISA FSO','policy','The organization defines the organizational personnel or roles to whom the configuration management procedures are to be disseminated.','CM-1.2',' DoD has defined the organizational personnel or roles as all stakeholders in the configuration management process.',' The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the organizational personnel or roles as all stakeholders in the configuration management process.'), ('001825','draft','2013-03-01','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls.','CM-1.6','The organization being inspected/assessed disseminates the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls via an information sharing capability (e.g. portal, intranet, email, etc.) to all stakeholders in the configuration management process.\n\nDoD has defined the organizational personnel or roles as all stakeholders in the configuration management process.','The organization conducting the inspection/assessment obtains and examines the procedures to facilitate the implementation of the configuration management policy and associated configuration management controls via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated.'), ('001826','draft','2013-03-05','DISA FSO','policy','The organization defines the circumstances upon which the organization reviews the information system changes to determine whether unauthorized changes have occurred.','CM-5(2).4','DoD has defined the circumstances as when there is an incident or when planned changes have been performed.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the circumstances as when there is an incident or when planned changes have been performed.'), ('001827','draft','2013-03-05','DISA FSO','policy','The organization defines the frequency with which to review information system privileges.','CM-5(5).3','DoD has defined the frequency as every 90 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 90 days.'), ('001828','draft','2013-03-05','DISA FSO','policy','The organization defines the frequency with which to reevaluate information system privileges.','CM-5(5).4','DoD has defined the frequency as every 90 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 90 days.'), ('001829','draft','2013-03-05','DISA FSO','policy','The organization reviews information system privileges per an organization-defined frequency.','CM-5(5).5','The organization being inspected/assessed reviews information system privileges every 90 days. The organization must maintain the reviews as an audit trail. DoD has defined the frequency as every 90 days.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews to ensure the organization being inspected/assessed reviews information system privileges every 90 days . DoD has defined the frequency as every 90 days.'), ('001830','draft','2013-03-05','DISA FSO','policy','The organization reevaluates information system privileges per an organization-defined frequency.','CM-5(5).6','The organization being inspected/assessed reevaluates information system privileges every 90 days . The organization must maintain the reevaluations as an audit trail. DoD has defined the frequency as every 90 days.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews to ensure the organization being inspected/assessed reevaluates information system privileges every 90 days. DoD has defined the frequency as every 90 days.'), ('001831','deprecated','2013-03-14','DISA FSO','policy','The organization documents an audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.',NULL,NULL,NULL), ('001832','draft','2013-03-14','DISA FSO','policy','The organization disseminates the audit and accountability policy to organization-defined personnel or roles.','AU-1.4','The organization being inspected/assessed disseminates, via an information sharing capability, to the ISSO and ISSM and others as the local organization deems appropriate an audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.\n\nDoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the audit and accountability procedures via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated.'), ('001833','deprecated','2013-03-14','DISA FSO','policy','The organization documents procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.',NULL,NULL,NULL), ('001834','draft','2013-03-14','DISA FSO','policy','The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.','AU-1.6','The organization being inspected/assessed disseminates, via an information sharing capability, to the ISSO and ISSM and others as the local organization deems appropriate audit and accountability procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.\n\nDoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the audit and accountability procedures via the inspected organization\'s information sharing capability (e.g. portal, intranet, email, etc.) to ensure it has been disseminated.'), ('001835','deprecated','2013-03-14','DISA FSO','policy','The organization defines the frequency on which it will review the audit and accountability policy.',NULL,NULL,NULL), ('001836','deprecated','2013-03-14','DISA FSO','policy','The organization defines the frequency on which it will update the audit and accountability policy.',NULL,NULL,NULL), ('001837','deprecated','2013-03-14','DISA FSO','policy','The organization reviews the audit and accountability policy on an organization-defined frequency.',NULL,NULL,NULL), ('001838','deprecated','2013-03-14','DISA FSO','policy','The organization updates the audit and accountability policy on an organization-defined frequency.',NULL,NULL,NULL), ('001839','deprecated','2013-03-14','DISA FSO','policy','The organization defines the frequency on which it will review the audit and accountability procedures.',NULL,NULL,NULL), ('001840','deprecated','2013-03-14','DISA FSO','policy','The organization defines the frequency on which it will update the audit and accountability procedures.',NULL,NULL,NULL), ('001841','deprecated','2013-03-14','DISA FSO','policy','The organization reviews the audit and accountability procedures on an organization-defined frequency.',NULL,NULL,NULL), ('001842','deprecated','2013-03-14','DISA FSO','policy','The organization updates the audit and accountability procedures on an organization-defined frequency.',NULL,NULL,NULL), ('001843','deprecated','2013-03-14','DISA FSO','policy','The organization defines a frequency for updating the list of organization-defined auditable events.',NULL,NULL,NULL), ('001844','draft','2013-03-14','DISA FSO','technical','The information system provides centralized management and configuration of the content to be captured in audit records generated by organization-defined information system components.','AU-3(2).1','The organization being inspected/assessed configures the information system to provide centralized management and configuration of the content to be captured in audit records generated by all information system and network components. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1844. DoD has defined the information system components as all information system and network components.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to provide centralized management and configuration of the content to be captured in audit records generated by all information system and network components. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1844. DoD has defined the information system components as all information system and network components.'), ('001845','deprecated','2013-03-14','DISA FSO','technical','The information system provides centralized configuration of the content to be captured in audit records generated by organization-defined information system components.',NULL,NULL,NULL), ('001846','draft','2013-03-14','DISA FSO','policy','The organization defines information system components that will generate the audit records which are to be captured for centralized management of the content.','AU-3(2).2','DoD has defined the information system components as all information system and network components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as all information system and network components.'), ('001847','draft','2013-03-14','DISA FSO','policy','The organization defines information system components that will generate the audit records which are to be captured for centralized configuration of the content.','AU-3(2).3','DoD has defined the information system components as all information system and network components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as all information system and network components.'), ('001848','draft','2013-03-14','DISA FSO','policy','The organization defines the audit record storage requirements.','AU-4.1','The organization being inspected/assessed defines and documents the required audit record storage capacity. DoD has determined the audit record storage requirements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented audit record storage requirements to ensure the organization being inspected/assessed has defined those requirements. DoD has determined the audit record storage requirements are not appropriate to define at the Enterprise level.'), ('001849','draft','2013-03-14','DISA FSO','policy','The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.','AU-4.2','The organization being inspected/assessed allocates, and configures the information system to allocate audit record storage capacity as defined in AU-4, CCI 1848. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1849.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to allocate audit record storage capacity as defined in AU-4, CCI 1848. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1849.'), ('001850','draft','2013-03-14','DISA FSO','policy','The organization defines the frequency on which the information system off-loads audit records onto a different system or media than the system being audited.','AU-4(1).1','DoD has defined the frequency as at a minimum, real-time for interconnected systems and weekly for stand-alone systems.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at a minimum, real-time for interconnected systems and weekly for stand-alone systems.'), ('001851','draft','2013-03-14','DISA FSO','technical','The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.','AU-4(1).2','The organization being inspected/assessed configures the information system to off-load audit records at a minimum, in real-time for interconnected systems and weekly for stand-alone systems onto a different system or media than the system being audited. DoD has defined the frequency as at a minimum, real-time for interconnected systems and weekly for stand-alone systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1851.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to off-load audit records at a minimum, in real-time for interconnected systems and weekly for stand-alone systems onto a different system or media than the system being audited. DoD has defined the frequency as at a minimum, real-time for interconnected systems and weekly for stand-alone systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1851.'), ('001852','draft','2013-03-14','DISA FSO','policy','The organization defines the personnel, roles and/or locations to receive a warning when allocated audit record storage volume reaches a defined percentage of maximum audit records storage capacity.','AU-5(1).1','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the ISSO/PMO and ISSM, who shall receive a warning when allocated audit record storage volume reaches a defined percentage of maximum audit records storage capacity. If there are no additional personnel or roles, the organization must also document that.\n\nDoD has defined the personnel or roles as at a minimum, the ISSO/PMO and ISSM.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles who should receive a warning when allocated audit record storage volume reaches a defined percentage of maximum audit records storage capacity to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles beyond the ISSO/PMO and ISSM.\n\nDoD has defined the personnel or roles as at a minimum, the ISSO/PMO and ISSM.'), ('001853','draft','2013-03-14','DISA FSO','policy','The organization defines the time period within which organization-defined personnel, roles, and/or locations are to receive warnings when allocated audit record storage volume reaches an organization-defined percentage of maximum audit records storage capacity.','AU-5(1).2','DoD has defined the time period as immediate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediate.'), ('001854','draft','2013-03-14','DISA FSO','policy','The organization defines the percentage of maximum audit record storage capacity that is to be reached, at which time the information system will provide a warning to organization-defined personnel, roles, and/or locations.','AU-5(1).3','DoD has defined the percentage as 75 percent.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the percentage as 75 percent.'), ('001855','draft','2013-03-14','DISA FSO','technical','The information system provides a warning to organization-defined personnel, roles, and/or locations within an organization-defined time period when allocated audit record storage volume reaches an organization-defined percentage of repository maximum audit record storage capacity.','AU-5(1).4','The organization being inspected/assessed configures the information system to immediately provide a warning to personnel, roles, and/or locations defined in AU-5 (1), CCI 1852 when allocated audit record storage volume reaches 75 percent of repository maximum audit record storage capacity. DoD has defined the time period as immediate. DoD has defined the percentage as 75 percent. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1855.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to immediately provide a warning to personnel, roles, and/or locations defined in AU-5 (1), CCI 1852 when allocated audit record storage volume reaches 75 percent of repository maximum audit record storage capacity. DoD has defined the time period as immediate. DoD has defined the percentage as 75 percent. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1855.'), ('001856','draft','2013-03-14','DISA FSO','policy','The organization defines the real-time period within which the information system is to provide an alert when organization-defined audit failure events occur.','AU-5(2).2','DoD has defined the real-time period as immediate.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the real-time period as immediate.'), ('001857','draft','2013-03-14','DISA FSO','policy','The organization defines the personnel, roles, and/or locations to receive alerts when organization-defined audit failure events occur.','AU-5(2).3','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the SCA and ISSO, who shall receive alerts when all audit failure events occur. If there are no additional personnel or roles, the organization must also document that. DoD has defined the personnel or roles as at a minimum, the SCA and ISSO. DoD has defined the audit failure events as all.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles who should receive alerts when all audit failure events occur to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles. DoD has defined the audit failure events as all.'), ('001858','draft','2013-03-14','DISA FSO','technical','The information system provides a real-time alert in an organization-defined real-time period to organization-defined personnel, roles, and/or locations when organization-defined audit failure events requiring real-time alerts occur.','AU-5(2).4','The organization being inspected/assessed configures the information system to immediately provide a real-time alert to personnel, roles, and/or locations defined in AU-5 (2), CCI 1857 when all audit failure events requiring real-time alerts occur. DoD has defined the real-time period as immediate. DoD has defined the audit failure events as all. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1858.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configured the information system to immediately provide a real-time alert to personnel, roles, and/or locations defined in AU-5 (2), CCI 1857 when all audit failure events requiring real-time alerts occur. DoD has defined the real-time period as immediate. DoD has defined the audit failure events as all. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1858.'), ('001859','draft','2013-03-14','DISA FSO','policy','The organization defines the network communication traffic volume thresholds reflecting limits on auditing capacity, specifying when the information system will reject or delay network traffic that exceed those thresholds.','AU-5(3).4','The organization being inspected/assessed defines and documents the network communication traffic volume thresholds reflecting limits on auditing capacity, specifying when the information system will reject or delay network traffic that exceed those thresholds.','The organization conducting the inspection/assessment obtains and examines the documented network communication traffic volume thresholds to ensure they have been defined.'), ('001860','draft','2013-03-14','DISA FSO','policy','The organization defines the audit failures which, should they occur, will invoke an organization-defined system mode.','AU-5(4).1','DoD has defined the audit failures as all.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the audit failures as all.'), ('001861','draft','2013-03-14','DISA FSO','technical','The information system invokes an organization-defined system mode, in the event of organization-defined audit failures, unless an alternate audit capability exists.','AU-5(4).2','The organization being inspected/assessed configures the information system to invoke the system mode defined in AU-5 (4), CCI 2907 in the event all audit failures, unless an alternate audit capability exists. DoD has defined the audit failures as all. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1861. ','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed invokes the system mode defined in AU-5 (4), CCI 2907 in the event all audit failures, unless an alternate audit capability exists.\n\nDoD has defined the audit failures as all.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1861'), ('001862','draft','2013-03-15','DISA FSO','policy','The organization defines the types of inappropriate or unusual activity to be reviewed and analyzed in the audit records.','AU-6.3','The organization being inspected/assessed defines and documents the types of inappropriate or unusual activity to be reviewed and analyzed in the audit records. DoD has determined that the types of inappropriate or unusual activity are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented types of inappropriate or unusual activity to ensure they have been defined. DoD has determined that the types of inappropriate or unusual activity are not appropriate to define at the Enterprise level.'), ('001863','draft','2013-03-15','DISA FSO','policy','The organization defines the personnel or roles to receive the reports of organization-defined inappropriate or unusual activity.','AU-6.5','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the ISSO and ISSM, who shall receive the reports of inappropriate or unusual activity defined in AU-6, CCI 1862. If there are no additional personnel or roles, the organization must also document that. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles who should receive the reports of inappropriate or unusual activity defined in AU-6, CCI 1862 to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles.'), ('001864','draft','2013-03-15','DISA FSO','policy','The organization employs automated mechanisms to integrate audit review and analysis to support organizational processes for investigation of and response to suspicious activities.','AU-6(1).1','The organization being inspected/assessed identifies and implements automated mechanisms to integrate audit review and analysis. The goal is to support organizational investigation of and response to suspicious activities.','The organization conducting the inspection/assessment obtains and examines documentation identifying automated mechanisms to integrate audit review and analysis to ensure such mechanisms have been identified. The organization conducting the inspection/assessment examines the identified automated mechanisms to ensure they have been implemented.'), ('001865','draft','2013-03-15','DISA FSO','policy','The organization employs automated mechanisms to integrate reporting processes to support organizational investigation of and response to suspicious activities.','AU-6(1).2','The organization being inspected/assessed identifies and implements automated mechanisms to integrate reporting processes (e.g., centralized log analysis tools). The goal is to support organizational investigation of and response to suspicious activities.','The organization conducting the inspection/assessment obtains and examines documentation identifying automated mechanisms to integrate reporting processes to ensure such mechanisms have been identified. The organization conducting the inspection/assessment examines the identified automated mechanisms to ensure they have been implemented.'), ('001866','draft','2013-03-15','DISA FSO','policy','The organization defines the data/information to be collected from other sources to enhance its ability to identify inappropriate or unusual activity.','AU-6(5).1','The organization being inspected/assessed defines and documents the data/information to be collected from other sources to enhance its ability to identify inappropriate or unusual activity. If no additional data/information is to be collected, that should also be documented. DoD has determined that the data/information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines documented data/information from other sources to ensure the information has been defined. DoD has determined that the data/information is not appropriate to define at the Enterprise level.'), ('001867','draft','2013-03-15','DISA FSO','policy','The organization integrates analysis of audit records with analysis of vulnerability scanning information, performance data, information system monitoring information, and/or organization-defined data/information collected from other sources to further enhance its ability to identify inappropriate or unusual activity.','AU-6(5).2','The organization being inspected/assessed documents and implements a process to integrate the analysis of audit records with the data/information defined in AU-6 (5), CCI 1866 (if any) to further enhance its ability to identify inappropriate or unusual activity.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed integrates the analysis of audit records with the data/information defined in AU-6 (5), CCI 1866 (if any) to further enhance its ability to identify inappropriate or unusual activity.'), ('001868','draft','2013-03-15','DISA FSO','policy','The organization specifies the permitted actions for each information system process, role, and/or user associated with the review and analysis of audit information.','AU-6(7).1','The organization being inspected/assessed specifies and documents the permitted actions for each information system process, role, and/or user associated with the review and analysis of audit information.','The organization conducting the inspection/assessment obtains and examines the documented permitted actions to ensure the organization being inspected/assessed specifies the permitted actions for each information system process, role, and/or user associated with the review and analysis of audit information.'), ('001869','draft','2013-03-15','DISA FSO','policy','The organization specifies the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.','AU-6(7).2','The organization being inspected/assessed specifies and documents the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.','The organization conducting the inspection/assessment obtains and examines the documented permitted actions to ensure the organization being inspected/assessed specifies the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.'), ('001870','draft','2013-03-15','DISA FSO','policy','The organization performs a full-text analysis of audited privileged commands in a physically-distinct component or subsystem of the information system, or other information system that is dedicated to that analysis.','AU-6(8).1','The organization being inspected/assessed documents and implements a process to perform a full-text analysis of audited privileged commands in a physically-distinct component or subsystem of the information system, or other information system that is dedicated to that analysis.','The organization conducting the inspection/assessment obtains and examines the documented process and supporting records (e.g., analysis results) to ensure the organization being inspected/assessed performs a full-text analysis of audited privileged commands in a physically-distinct component or subsystem of the information system, or other information system that is dedicated to that analysis.'), ('001871','draft','2013-03-15','DISA FSO','policy','The organization correlates information from non-technical sources with audit information to enhance organization-wide situational awareness.','AU-6(9).1','The organization being inspected/assessed documents and implements a process to correlate information from non-technical sources with audit information to enhance organization-wide situational awareness.','The organization conducting the inspection/assessment obtains and examines the documented process and supporting records to ensure the organization being inspected/assessed correlates information from non-technical sources with audit information to enhance organization-wide situational awareness.'), ('001872','draft','2013-03-15','DISA FSO','policy','The organization adjusts the level of audit review and analysis within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.','AU-6(10).1','The organization being inspected/assessed documents and implements a process for adjusting the level of audit review within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information (e.g., INFOCON).','The organization conducting the inspection/assessment obtains and examines the documented process and supporting records to ensure the organization being inspected/assessed adjusts the level of audit review within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.'), ('001873','deprecated','2013-03-15','DISA FSO','policy','The organization adjusts the level of audit analysis within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.',NULL,NULL,NULL), ('001874','draft','2013-03-15','DISA FSO','policy','The organization adjusts the level of audit reporting within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.','AU-6(10).2','The organization being inspected/assessed documents and implements a process for adjusting the level of audit reporting within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information (e.g., INFOCON).','The organization conducting the inspection/assessment obtains and examines the documented process and supporting records to ensure the organization being inspected/assessed adjusts the level of audit reporting within the information system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.'), ('001875','draft','2013-03-15','DISA FSO','technical','The information system provides an audit reduction capability that supports on-demand audit review and analysis.','AU-7.1','The organization being inspected/assessed must employ information systems that provide an audit reduction capability that support on-demand audit review and analysis (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1875.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide an audit reduction capability that support on-demand audit review and analysis (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1875.'), ('001876','draft','2013-03-15','DISA FSO','technical','The information system provides an audit reduction capability that supports on-demand reporting requirements.','AU-7.2','The organization being inspected/assessed must employ information systems that provide an audit reduction capability that support on-demand reporting requirements (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1876.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide an audit reduction capability that supports on-demand reporting requirements (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1876.'), ('001877','draft','2013-03-15','DISA FSO','technical','The information system provides an audit reduction capability that supports after-the-fact investigations of security incidents.','AU-7.3','The organization being inspected/assessed must employ information systems that provide an audit reduction capability that support after-the-fact investigations of security incidents (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1877.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide an audit reduction capability that supports after-the-fact investigations of security incidents (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1877.'), ('001878','draft','2013-03-15','DISA FSO','technical','The information system provides a report generation capability that supports on-demand audit review and analysis.','AU-7.4','The organization being inspected/assessed must employ information systems that provide a report generation capability that support on-demand audit review and analysis (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1878.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide a report generation capability that supports on-demand audit review and analysis (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1878.'), ('001879','draft','2013-03-15','DISA FSO','technical','The information system provides a report generation capability that supports on-demand reporting requirements.','AU-7.5','The organization being inspected/assessed must employ information systems that provide a report generation capability that support on-demand reporting requirements (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1879.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide a report generation capability that supports on-demand reporting requirements (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1879.'), ('001880','draft','2013-03-15','DISA FSO','technical','The information system provides a report generation capability that supports after-the-fact investigations of security incidents.','AU-7.6','The organization being inspected/assessed must employ information systems that provide a report generation capability that support after-the-fact investigations of security incidents (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1880.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide a report generation capability that supports after-the-fact investigations of security incidents (either natively or through the use of third-party tools). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1880.'), ('001881','draft','2013-03-15','DISA FSO','technical','The information system provides an audit reduction capability that does not alter original content or time ordering of audit records.','AU-7.7','The organization being inspected/assessed must ensure that the audit reduction capability does not alter the original audit records. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1881.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs an audit reduction capability that does not alter original audit records. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1881.'), ('001882','draft','2013-03-15','DISA FSO','technical','The information system provides a report generation capability that does not alter original content or time ordering of audit records.','AU-7.8','The organization being inspected/assessed must ensure that the report generation capability does not alter the original audit records. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1882.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs a report generation capability that does not alter original audit records. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1882.'), ('001883','draft','2013-03-15','DISA FSO','policy','The organization defines the audit fields within audit records to be processed for events of interest by the information system.','AU-7(1).2','The organization being inspected/assessed must define and document the audit fields within audit records to be processed for events of interest by the information system. DoD has determined that the audit fields are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented audit fields to ensure the organization being inspected/assessed defines the audit fields within audit records to be processed for events of interest by the information system. DoD has determined that the audit fields are not appropriate to define at the Enterprise level.'), ('001884','draft','2013-03-15','DISA FSO','policy','The organization defines the audit fields within audit records to be sorted for events of interest by the information system.','AU-7(2).1','The organization being inspected/assessed must define and document the audit fields within audit records to be sorted for events of interest by the information system. DoD has determined that the audit fields are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented audit fields to ensure the organization being inspected/assessed defines the audit fields within audit records to be sorted for events of interest by the information system. DoD has determined that the audit fields are not appropriate to define at the Enterprise level.'), ('001885','draft','2013-03-15','DISA FSO','policy','The organization defines the audit fields within audit records to be searched for events of interest by the information system.','AU-7(2).2','The organization being inspected/assessed must define and document the audit fields within audit records to be searched for events of interest by the information system. DoD has determined that the audit fields are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented audit fields to ensure the organization being inspected/assessed defines the audit fields within audit records to be searched for events of interest by the information system. DoD has determined that the audit fields are not appropriate to define at the Enterprise level.'), ('001886','draft','2013-03-15','DISA FSO','technical','The information system provides the capability to sort audit records for events of interest based on the content of organization-defined audit fields within audit records.','AU-7(2).3','The organization being inspected/assessed must employ information systems that provide the capability to sort audit records for events of interest based on the content of audit fields within audit records as defined in AU-7 (2), CCI 1884. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1886.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide the capability to sort audit records for events of interest based on the content of audit fields within audit records as defined in AU-7 (2), CCI 1884. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1886.'), ('001887','draft','2013-03-15','DISA FSO','technical','The information system provides the capability to search audit records for events of interest based on the content of organization-defined audit fields within audit records.','AU-7(2).4','The organization being inspected/assessed must employ information systems that provide the capability to search audit records for events of interest based on the content of audit fields within audit records as defined in AU-7 (2), CCI 1885. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1887.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed employs information systems that provide the capability to search audit records for events of interest based on the content of audit fields within audit records as defined in AU-7 (2), CCI 1885. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1887.'), ('001888','draft','2013-03-15','DISA FSO','policy','The organization defines the granularity of time measurement for time stamps generated for audit records.','AU-8.2','DoD has defined the granularity of time measurement as one second.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the granularity of time measurement as one second.'), ('001889','draft','2013-03-15','DISA FSO','technical','The information system records time stamps for audit records that meet organization-defined granularity of time measurement.','AU-8.3','The organization being inspected/assessed configures the information system to generate time in the time stamps for audit records that meets one second granularity of time measurement. DoD has defined the granularity of time measurement as one second. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1889.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate time in the time stamps for audit records that meets one second granularity of time measurement. DoD has defined the granularity of time measurement as one second. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1889.'), ('001890','draft','2013-03-15','DISA FSO','technical','The information system records time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).','AU-8.4','The organization being inspected/assessed configures the information system to generate time stamps for audit records that contain time zones or time offsets that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1890.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to generate time stamps for audit records that contain time zones or time offsets that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1890.'), ('001891','draft','2013-03-15','DISA FSO','technical','The information system compares internal information system clocks on an organization-defined frequency with an organization-defined authoritative time source.','AU-8(1).3','The organization being inspected/assessed configures the information system to synchronize internal information system clocks every 24 hours for networked systems with an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network (NIPRNet / SIPRNet) and/or the Global Positioning System (GPS) when the time difference is greater than the difference defined in AU-8 (1), CCI 1892.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1891.\n\nDoD has defined the frequency as every 24 hours for networked systems.\n\nDoD has defined the authoritative time source as an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network (NIPRNet / SIPRNet) and/or the Global Positioning System (GPS).','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to synchronize internal information system clocks every 24 hours for networked systems with an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network (NIPRNet / SIPRNet) and/or the Global Positioning System (GPS) when the time difference is greater than the difference defined in AU-8 (1), CCI 1892.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1891.\n\nDoD has defined the frequency as every 24 hours for networked systems.\n\nDoD has defined the authoritative time source as an authoritative time server which is synchronized with redundant United States Naval Observatory (USNO) time servers as designated for the appropriate DoD network (NIPRNet / SIPRNet) and/or the Global Positioning System (GPS).'), ('001892','draft','2013-03-15','DISA FSO','policy','The organization defines the time difference which, when exceeded, will require the information system to synchronize the internal information system clocks to the organization-defined authoritative time source.','AU-8(1).4','The organization being inspected/assessed defines and documents the time difference, which, when exceeded, will require the information system to synchronize the internal information system clocks.\n\nDoD has determined the time difference is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time difference to ensure the organization being inspected/assessed defines the time difference which, when exceeded, will require the information system to synchronize the internal information system clocks.\n\nDoD has determined the time difference is not appropriate to define at the Enterprise level.'), ('001893','draft','2013-03-15','DISA FSO','technical','The information system identifies a secondary authoritative time source that is located in a different geographic region than the primary authoritative time source.','AU-8(2).1','The organization being inspected/assessed configures the information system to use a secondary authoritative time source that is located in a different geographic region than the primary authoritative time source. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1893.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed uses a secondary authoritative time source that is located in a different geographic region than the primary authoritative time source. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1893.'), ('001894','draft','2013-03-15','DISA FSO','policy','The organization defines the subset of privileged users who will be authorized access to the management of audit functionality.','AU-9(4).1','The organization being inspected/assessed defines and documents the subset of privileged users to be authorized access to the management of audit functionality. DoD has determined the subset of privileged users is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented subset of privileged users to be authorized access to the management of audit functionality, to ensure the organization being inspected/assessed defines and documents the subset of privileged users to be authorized access to the management of audit functionality. DoD has determined the subset of privileged users is not appropriate to define at the Enterprise level.'), ('001895','draft','2013-03-15','DISA FSO','policy','The organization defines the audit information requiring dual authorization for movement or deletion actions.','AU-9(5).1','The organization being inspected/assessed defines and documents the audit information requiring dual authorization for movement or deletion actions. DoD has determined the audit information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the definition of audit information requiring dual authorization for movement or deletion actions, to ensure the organization being inspected/assessed defines and documents the audit information requiring dual authorization for movement or deletion actions. DoD has determined the audit information is not appropriate to define at the Enterprise level.'), ('001896','draft','2013-03-15','DISA FSO','technical','The organization enforces dual authorization for movement and/or deletion of organization-defined audit information.','AU-9(5).2','The organization being inspected/assessed configures the information system to enforce dual authorization for movement and/or deletion of audit information defined in AU-9 (5), CCI 1895. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1896.','The organization conducting the inspection/assessment examines the information system to ensure that the organization being inspected/assessed has configured the information system to enforce dual authorization for movement and/or deletion of audit information defined in AU-9 (5), CCI 1895. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1896.'), ('001897','draft','2013-03-15','DISA FSO','policy','The organization defines the subset of privileged users who will be authorized read-only access to audit information.','AU-9(6).1','The organization being inspected/assessed defines and documents the subset of privileged users who will be authorized read-only access to audit information. DoD has determined that the subset of privileged users is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the subset of privileged users who will be authorized read-only access to audit information, to ensure the organization being inspected/assessed defines and documents subset of privileged users who will be authorized read-only access to audit information. DoD has determined that the subset of privileged users is not appropriate to define at the Enterprise level.'), ('001898','draft','2013-03-15','DISA FSO','policy','The organization authorizes read-only access to audit information to an organization-defined subset of privileged users.','AU-9(6).2','The organization being inspected/assessed authorizes read only access to audit information to only the subset of privileged users defined in AU-9 (6), CCI 1897.','The organization conducting the inspection/assessment obtains and examines the documentation of read only access authorizations for audit information to ensure only the subset of privileged users defined in AU-9 (6), CCI 1897 have been granted access authorization.'), ('001899','draft','2013-03-15','DISA FSO','policy','The organization defines the actions to be covered by non-repudiation.','AU-10.2','DoD has defined the actions to be covered by non-repudiation as actions defined by DoDI 8520.02 and DoDI 8520.03. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the actions to be covered by non-repudiation as actions defined by DoDI 8520.02 and DoDI 8520.03. '), ('001900','draft','2013-03-15','DISA FSO','policy','The organization defines the strength of binding to be applied to the binding of the identity of the information producer with the information.','AU-10(1).1','The organization being inspected/assessed defines and documents the strength of binding and where within the information system it has been implemented, to be applied to the binding of the identity of the information producer with the information. DoD has determined that the strength of binding is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented strength of binding to ensure the organization being inspected/assessed defines the strength of binding and where within the information system it has been implemented, to be applied to the binding of the identity of the information producer with the information. DoD has determined that the strength of binding is not appropriate to define at the Enterprise level.'), ('001901','draft','2013-03-15','DISA FSO','technical','The information system binds the identity of the information producer with the information to an organization-defined strength of binding.','AU-10(1).2','The organization being inspected/assessed configures the information system to bind the identify of the information producer with the information with the strength of binding defined in AU-10 (1) CCI 1900. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1901.','The organization conducting the inspection/assessment examines the information system to ensure the producer identity is bound to the information with the strength of binding defined in AU-10 (1) CCI 1900. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1901.'), ('001902','draft','2013-03-15','DISA FSO','technical','The information system provides the means for authorized individuals to determine the identity of the producer of the information.','AU-10(1).3','The organization being inspected/assessed configures the information system to provide a means for authorized individuals to determine the identity of the producer of the information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1902.','The organization conducting the inspection/assessment examines the information system to ensure authorized individuals are able to determine the identity of the producer of the information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1902.'), ('001903','draft','2013-03-15','DISA FSO','policy','The organization defines the frequency on which the information system is to validate the binding of the information producer identity to the information.','AU-10(2).1','DoD has defined the frequency as according to the tool\'s capability frequency, but at a minimum, upon first access or hourly in cases of continued access.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as according to the tool\'s capability frequency, but at a minimum, upon first access or hourly in cases of continued access.'), ('001904','draft','2013-03-15','DISA FSO','technical','The information system validates the binding of the information producer identity to the information at an organization-defined frequency.','AU-10(2).2','The organization being inspected/assessed configures the information system to validate the binding of the information producer identity to the information according to the tool\'s capability frequency, but at a minimum, upon first access or hourly in cases of continued access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1904. DoD has defined the frequency as according to the tool\'s capability frequency, but at a minimum, upon first access or hourly in cases of continued access.','The organization conducting the inspection/assessment examines the information system to ensure the information system is configured to validate the binding of the information producer identity to the information according to the tool\'s capability frequency, but at a minimum, upon first access or hourly in cases of continued access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1904. DoD has defined the frequency as according to the tool\'s capability frequency, but at a minimum, upon first access or hourly in cases of continued access.'), ('001905','draft','2013-03-15','DISA FSO','policy','The organization defines the actions to be performed in the event of an error when validating the binding of the information producer identity to the information.','AU-10(2).3','The organization being inspected/assessed defines and documents the actions to be performed in the event of an error when validating the binding of the information producer identity to the information. The organization should consider the system\'s environment and impact of the errors when defining the actions. Examples of actions include automated notification to administrators, halt system process or read action DoD has determined the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed defines the actions to be performed in the event of an error when validating the binding of the information producer identity to the information. DoD has determined the actions are not appropriate to define at the Enterprise level.'), ('001906','draft','2013-03-15','DISA FSO','technical','The information system performs organization-defined actions in the event of an error when validating the binding of the information producer identity to the information.','AU-10(2).4','The organization being inspected/assessed configures the information system to perform the actions defined in AU-10 (2), CCI 1905 in the event of an error when validating the binding of the information producer identity to the information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1906.','The organization conducting the inspection/assessment examines the information system to ensure the information system is configured to perform the actions defined in AU-10 (2), CCI 1905 in the event of an error when validating the binding of the information producer identity to the information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1906.'), ('001907','draft','2013-03-15','DISA FSO','policy','The organization defines the security domains which will require the information system validate the binding of the information reviewer identity to the information at the transfer or release points prior to release/transfer.','AU-10(4).2','The organization being inspected/assessed defines and documents the security domains which require the information system validate the binding of the information reviewer identity to the information at the transfer or release points prior to release/transfer. DoD has determined the security domains are not appropriate to define at the Enterprise level. Note: Security domain as defined by CNSSI 4009.','The organization conducting the inspection/assessment obtains and examines the documented security domains to ensure the organization being inspected/assessed defines the security domains which require the information system validate the binding of the information reviewer identity to the information at the transfer or release points prior to release/transfer. DoD has determined the security domains are not appropriate to define at the Enterprise level.'), ('001908','draft','2013-03-15','DISA FSO','policy','The organization defines the action the information system is to perform in the event of an information reviewer identity binding validation error.','AU-10(4).3','The organization being inspected/assessed defines and documents the actions the information system is to perform in the event of a information reviewer identity binding validation error. At a minimum, the actions must include alerting the data/information owner of a validation error on a reviewers identity.\n\nDoD has determined that all actions are not appropriate to define at the Enterprise level. At a minimum, the actions must include alerting the data/information owner of a validation error on a reviewers identity.','The organization conducting the inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed defines the actions the information system is to perform in the event of a information reviewer identity binding validation error. At a minimum, the actions must include alerting the data/information owner of a validation error on a reviewers identity.\n\nDoD has determined that all actions are not appropriate to define at the Enterprise level. At a minimum, the actions must include alerting the data/information owner of a validation error on a reviewers identity.'), ('001909','draft','2013-03-15','DISA FSO','technical','The information system performs organization-defined actions in the event of an information reviewer identity binding validation error.','AU-10(4).4','The organization being inspected/assessed configures the information system to perform actions defined in AU-10 (4), CCI 1908 in the event of an information reviewer identity binding validation error. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1909.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to perform actions defined in AU-10 (4), CCI 1908 in the event of an information reviewer identity binding validation error. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1909.'), ('001910','draft','2013-03-15','DISA FSO','policy','The organization defines the personnel or roles allowed to select which auditable events are to be audited by specific components of the information system.','AU-12.4','DoD has defined the personnel or roles as the ISSM or individuals appointed by the ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSM or individuals appointed by the ISSM.'), ('001911','draft','2013-03-15','DISA FSO','policy','The organization defines the selectable event criteria to be used as the basis for changes to the auditing to be performed on organization-defined information system components, by organization-defined individuals or roles, within organization-defined time thresholds.','AU-12(3).1','The organization being inspected/assessed defines and documents the selectable event criteria for which changed auditing is to be performed. DoD has determined the selectable event criteria is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented selectable event criteria to ensure the organization being inspected/assessed defines the selectable event criteria for which changed auditing is to be performed. DoD has determined the selectable event criteria is not appropriate to define at the Enterprise level.'), ('001912','draft','2013-03-15','DISA FSO','policy','The organization defines the time thresholds for organization-defined individuals or roles to change the auditing to be performed based on organization-defined selectable event criteria.','AU-12(3).2','The organization being inspected/assessed defines and documents the time thresholds for individuals or roles to change the auditing to be performed on information system components based on selectable event criteria defined in AU-12 (3), CCI 1911 occurs. DoD has determined the time thresholds are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time thresholds to ensure the organization being inspected/assessed defines the time thresholds for individuals or roles to change the auditing to be performed on information system components based on selectable event criteria defined in AU-12 (3), CCI 1911 occurs. DoD has determined the time thresholds are not appropriate to define at the Enterprise level.'), ('001913','draft','2013-03-15','DISA FSO','policy','The organization defines the individuals or roles that are to be provided the capability to change the auditing to be performed based on organization-defined selectable event criteria, within organization-defined time thresholds.','AU-12(3).3','The organization being inspected/assessed defines and documents the individuals or roles that are to be provided the capability to change the auditing to be performed based on the selectable event criteria defined in AU-12 (3), CCI 1911, within the time thresholds defined in AU-12 (3), CCI 1912. DoD has determined that the individuals or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented individuals or roles to ensure the organization being inspected/assessed defines the individuals or roles that are to be provided the capability to change the auditing to be performed based on the selectable event criteria defined in AU-12 (3), CCI 1911, within the time thresholds defined in AU-12 (3), CCI 1912. DoD has determined that the individuals or roles are not appropriate to define at the Enterprise level.'), ('001914','draft','2013-03-15','DISA FSO','technical','The information system provides the capability for organization-defined individuals or roles to change the auditing to be performed on organization-defined information system components based on organization-defined selectable event criteria within organization-defined time thresholds.','AU-12(3).4','The organization being inspected/assessed configures the information system to provide the capability for individuals or roles defined in AU-12 (3), CCI 1913 to change the auditing to be performed on information system components defined in AU-12 (3), CCI 2047 based on selectable event criteria defined in AU-12 (3), CCI 1911 within time thresholds defined in AU-12 (3), CCI 1912. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1914.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for individuals or roles defined in AU-12 (3), CCI 1913 to change the auditing to be performed on information system components defined in AU-12 (3), CCI 2047 based on selectable event criteria defined in AU-12 (3), CCI 1911 within time thresholds defined in AU-12 (3), CCI 1912. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1914.'), ('001915','draft','2013-03-15','DISA FSO','policy','The organization defines the open source information and/or information sites to be monitored for evidence of unauthorized exfiltration or disclosure of organizational information.','AU-13.3','The organization being inspected/assessed defines and documents the open source information and/or information sites to be monitored for evidence of unauthorized exfiltration or disclosure of organizational information.\n\nDoD has determined that open source information and/or information sites should be defined at the Component level, not appropriate to define at the Enterprise level. Note: The value in this control may not be used to deny reciprocal acceptance of a C&A (A&A) package.','The organization conducting the inspection/assessment obtains and examines the documented open source information and/or information sites to ensure the organization being inspected/assessed defines the open source information and/or information sites to be monitored for evidence of unauthorized exfiltration or disclosure of organizational information.\n\nDoD has determined that open source information and/or information sites should be defined at the Component level, not appropriate to define at the Enterprise level. Note: The value in this control may not be used to deny reciprocal acceptance of a C&A (A&A) package.'), ('001916','draft','2013-03-15','DISA FSO','policy','The organization employs automated mechanisms to determine if organizational information has been disclosed in an unauthorized manner.','AU-13(1).1','The organization being inspected/assessed documents and employs an automated mechanism to determine if organizational information has been disclosed in an unauthorized manner.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated mechanisms to ensure that the identified system determines if organizational information has been disclosed in an unauthorized manner. The organization being inspected/assessed may be required to demonstrate use of their identified automated mechanisms.'), ('001917','draft','2013-03-15','DISA FSO','policy','The organization defines the frequency for reviewing the open source information sites being monitored.','AU-13(2).1','The organization being inspected/assessed defines and documents the frequency for reviewing the open source information sites being monitored.\n\nDoD has determined that the frequency should be defined at the Component level, not appropriate to define at the Enterprise level. Note: The value in this control may not be used to deny reciprocal acceptance of a C&A (A&A) package.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency for reviewing the open source information sites being monitored.\n\nDoD has determined that the frequency should be defined at the Component level, not appropriate to define at the Enterprise level. Note: The value in this control may not be used to deny reciprocal acceptance of a C&A (A&A) package.'), ('001918','draft','2013-03-15','DISA FSO','policy','The organization reviews the open source information sites being monitored per organization-defined frequency.','AU-13(2).2','The organization being inspected/assessed documents and implements a process to review the open source information sites being monitored per the frequency defined in AU-13 (2), CCI 1917.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed reviews the open source information sites being monitored per the frequency defined in AU-13 (2), CCI 1917.'), ('001919','draft','2013-03-15','DISA FSO','technical','The information system provides the capability for authorized users to select a user session to capture/record or view/hear.','AU-14.1','The organization being inspected/assessed configures the information system to provide the capability for authorized users to select a user session to capture/record or view/hear. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1919.','The organization conducting the inspection/assessments examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for authorized users to select a user session to capture/record or view/hear. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1919.'), ('001920','draft','2013-03-15','DISA FSO','technical','The information system provides the capability for authorized users to remotely view/hear all content related to an established user session in real time.','AU-14(3).1','The organization being inspected/assessed configures the information system to provide the capability for authorized users to remotely view/hear all content related to an established user session in real time. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1920.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability for authorized users to remotely view/hear all content related to an established user session in real time. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1920.'), ('001921','draft','2013-03-15','DISA FSO','policy','The organization defines the alternative audit functionality to be provided in the event of a failure in the primary audit capability.','AU-15.1','The organization being inspected/assessed will define and document the alternative audit functionality to be provided in the event of a failure in the primary audit capability. The organization shall consider trade-offs between the needs for system availability and audit integrity when defining the actions. Unless availability is an overriding concern, the default action should be to shut down the information system. DoD has determined that the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented alternative audit functionality to ensure the organization being inspected/assessed has defined the alternative audit functionality to be provided in the event of a failure in the primary audit capability. DoD has determined that the actions are not appropriate to define at the Enterprise level.'), ('001922','draft','2013-03-15','DISA FSO','policy','The organization provides an alternative audit capability in the event of a failure in primary audit capability that provides organization-defined alternative audit functionality.','AU-15.2','The organization being inspected/assessed configures the information system to implement an alternative audit capability in the event of a failure in primary audit capability that provides the alternative audit functionality defined in AU-15, CCI 1921. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1922.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement an alternative audit capability in the event of a failure in primary audit capability that provides the alternative audit functionality defined in AU-15, CCI 1921. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1922.'), ('001923','draft','2013-03-15','DISA FSO','policy','The organization defines the audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries.','AU-16.1','The organization being inspected/assessed defines and documents the audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries. DoD has determined the methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented audit information to ensure the organization being inspected/assessed defines the audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries. DoD has determined the methods are not appropriate to define at the Enterprise level.'), ('001924','draft','2013-03-15','DISA FSO','policy','The organization defines the methods to be employed when coordinating audit information among external organizations when audit information is transmitted across organizational boundaries.','AU-16.2','The organization being inspected/assessed defines and documents the methods to be employed when coordinating audit information among external organizations when audit information is transmitted across organizational boundaries. DoD has determined the methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented methods to ensure the organization being inspected/assessed defines the methods to be employed when coordinating audit information among external organizations when audit information is transmitted across organizational boundaries. DoD has determined the methods are not appropriate to define at the Enterprise level.'), ('001925','draft','2013-03-15','DISA FSO','policy','The organization employs organization-defined methods for coordinating organization-defined audit information among external organizations when audit information is transmitted across organizational boundaries.','AU-16.3','The organization being inspected/assessed documents and implements a process to employ the methods defined in AU-16, CCI 1924 for coordinating audit information defined in AU-16, CCI 1923 among external organizations when audit information is transmitted across organizational boundaries.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs a process to employ the methods defined in AU-16, CCI 1924 for coordinating audit information defined in AU-16, CCI 1923 among external organizations when audit information is transmitted across organizational boundaries.'), ('001926','draft','2013-03-15','DISA FSO','policy','The organization requires that the identity of individuals be preserved in cross-organizational audit trails.','AU-16(1).1','The organization being inspected/assessed implements a process to ensure that the identity of individuals be preserved in cross organizational audit trails.','The organization conducting the inspection/assessment obtains and examines a sampling of cross organizational audit trails to ensure that the identify of individuals conducting audited actions is preserved.'), ('001927','draft','2013-03-15','DISA FSO','policy','The organization defines the organizations that will be provided cross-organizational audit information.','AU-16(2).1','The organization being inspected/assessed defines and documents the organizations that will be provided cross-organizational audit information. DoD has determined the cross-organizational sharing agreements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented organizations to ensure the organization being inspected/assessed defines the organizations that will be provided cross-organizational audit information. DoD has determined the cross-organizational sharing agreements are not appropriate to define at the Enterprise level.'), ('001928','draft','2013-03-15','DISA FSO','policy','The organization defines the cross-organizational sharing agreements to be established with organization-defined organizations authorized to be provided cross-organizational sharing of audit information.','AU-16(2).2','The organization being inspected/assessed defines and documents the cross-organizational sharing agreements to be established with organizations defined in AU-16 (2), CCI 1927 authorized to be provided cross-organizational sharing of audit information. DoD has determined the cross-organizational sharing agreements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented sharing agreements to ensure the organization being inspected/assessed defines the cross-organizational sharing agreements to be established with organizations defined in AU-16 (2), CCI 1927 authorized to be provided cross-organizational sharing of audit information. DoD has determined the cross-organizational sharing agreements are not appropriate to define at the Enterprise level.'), ('001929','draft','2013-03-15','DISA FSO','policy','The organization provides cross-organizational audit information to organization-defined organizations based on organization-defined cross organizational sharing agreements.','AU-16(2).3','The organization being inspected/assessed provides cross-organizational audit information to organizations defined in AU-16 (2), CCI 1927 based on cross organizational sharing agreements defined in AU-16 (2), CCI 1928.','The organization conducting the inspection/assessment obtains and examines the audit information that provides cross-organizational audit information to organizations defined in AU-16 (2), CCI 1927 based on cross organizational sharing agreements defined in AU-16 (2), CCI 1928.'), ('001930','draft','2013-04-08','DISA FSO','policy','The organization defines the organizational personnel or roles to whom the audit and accountability policy is to be disseminated.','AU-1.1','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the ISSO or ISSM, to whom the audit and accountability policy is to be disseminated. If there are no additional personnel or roles, the organization must also document that. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles to whom the audit and accountability policy is to be disseminated to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001931','draft','2013-04-08','DISA FSO','policy','The organization defines the organizational personnel or roles to whom the audit and accountability procedures are to be disseminated.','AU-1.2','The organization being inspected/assessed defines and documents any personnel or roles, in addition to the ISSO or ISSM, to whom the audit and accountability procedures are to be disseminated. If there are no additional personnel or roles, the organization must also document that. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.','The organization conducting the inspection/assessment obtains and examines the documented list of personnel or roles to whom the audit and accountability procedures are to be disseminated to ensure the organization being inspected/assessed has either defined additional personnel or roles, or identified that there are no additional personnel or roles. DoD has defined the personnel or roles as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001932','draft','2013-05-03','DISA FSO','policy','The organization documents an identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.',NULL,NULL,NULL), ('001933','draft','2013-05-03','DISA FSO','policy','The organization defines the personnel or roles to be recipients of the identification and authentication policy and the procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.','IA-1.1','DoD has defined the roles to be recipients of the identification and authentication policy and the procedures as the ISSO and ISSM and others as the local organization deems appropriate.\n\nDoDI 8520.02 and DoDI 8520.03 meet the DoD requirement for Identification and Authentication policy and procedures.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policies, DoDI 8520.02 and DoDI 8520.03.','DoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8520.02 and DoDI 8520.03.\n\nDoD has defined the roles to be recipients of the identification and authentication policy and the procedures as the ISSO and ISSM and others as the local organization deems appropriate.'), ('001934','draft','2013-05-03','DISA FSO','policy','The organization documents procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.',NULL,NULL,NULL), ('001935','draft','2013-05-03','DISA FSO','policy','The organization defines the strength of mechanism requirements for the device that is separate from the system gaining access to privileged accounts.','IA-2(6).1','For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.'), ('001936','draft','2013-05-03','DISA FSO','technical','The information system implements multifactor authentication for network access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access.','IA-2(6).2','The organization being inspected/assessed configures the information system to implement multifactor authentication for network access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1936.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for network access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1936.'), ('001937','draft','2013-05-03','DISA FSO','technical','The device used in the information system implementation of multifactor authentication for network access to privileged accounts meets organization-defined strength of mechanism requirements.','IA-2(6).3','The organization being inspected/assessed will use DoD PKI or a technology approved by their Authorizing Official that meet Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1937.','The organization conducting the inspection/assessment obtains and examines the device used to ensure that the device implemented for multifactor authentication for network access to privileged accounts meets Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1937.'), ('001938','draft','2013-05-03','DISA FSO','policy','The organization defines the strength of mechanism requirements for the device that is separate from the system gaining access to non-privileged accounts.','IA-2(7).1','For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.'), ('001939','draft','2013-05-03','DISA FSO','technical','The information system implements multifactor authentication for network access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access.','IA-2(7).2','The organization being inspected/assessed configures the information system to implement multifactor authentication for network access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1939.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for network access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1939,'), ('001940','draft','2013-05-03','DISA FSO','technical','The device used in the information system implementation of multifactor authentication for network access to non-privileged accounts meets organization-defined strength of mechanism requirements.','IA-2(7).3','The organization being inspected/assessed will use DoD PKI or a technology approved by their Authorizing Official that meet Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1940.','The organization conducting the inspection/assessment obtains and examines the device used to ensure that the device implemented for multifactor authentication for network access to non-privileged accounts meets Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1940.'), ('001941','draft','2013-05-03','DISA FSO','technical','The information system implements replay-resistant authentication mechanisms for network access to privileged accounts.','IA-2(8).1','The organization being inspected/assessed configures the information system to implement replay-resistant authentication mechanisms for network access to privileged accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1941.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement replay-resistant authentication mechanisms for network access to privileged accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1941.'), ('001942','draft','2013-05-03','DISA FSO','technical','The information system implements replay-resistant authentication mechanisms for network access to non-privileged accounts.','IA-2(9).1','The organization being inspected/assessed configures the information system to implement replay-resistant authentication mechanisms for network access to non-privileged accounts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1942.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement replay-resistant authentication mechanisms for network access to non-privileged accounts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1942.'), ('001943','draft','2013-05-03','DISA FSO','policy','The organization defines the information system accounts for which single sign-on capability will be provided.','IA-2(10).1','The organization being inspected/assessed defines and documents any accounts for which a single sign-on capability is provided. For single sign-on providers (creator/maintainer of the single sign-on user accounts) this will be a list of accounts or groups that are authorized to use single sign-on capability. For single sign-on services this will be a per provider list of accounts or groups authorized to use the service. DoD has determined the system services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list of system accounts to ensure the organization being inspected/assessed defines any accounts for which a single sign-on capability is provided. DoD has determined the system services are not appropriate to define at the Enterprise level.'), ('001944','draft','2013-05-03','DISA FSO','policy','The organization defines the information system services for which single sign-on capability will be provided.','IA-2(10).2','The organization being inspected/assessed defines and documents any services (e.g., websites) for which a single sign-on capability is provided. DoD has determined the system services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented system services to ensure the organization being inspected/assessed defines any services (e.g., websites) for which a single sign-on capability is provided. DoD has determined the system services are not appropriate to define at the Enterprise level.'), ('001945','draft','2013-05-03','DISA FSO','technical','The information system provides a single sign-on capability for an organization-defined list of information system accounts.','IA-2(10).3','The organization being inspected/assessed configures the information system to provide a single sign-on capability for the list of information system accounts defined in IA-2 (10), CCI 1943. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1945.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide a single sign-on capability for the list of information system accounts defined in IA-2 (10), CCI 1943. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1945.'), ('001946','draft','2013-05-03','DISA FSO','technical','The information system provides a single sign-on capability for an organization-defined list of information system services.','IA-2(10).4','The organization being inspected/assessed configures the information system to provide a single sign-on capability for the list of information system services defined in IA-2 (10), CCI 1944. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1946.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide a single sign-on capability for the list of information system services defined in IA-2 (10), CCI 1944. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1946.'), ('001947','draft','2013-05-03','DISA FSO','policy','The organization defines the strength of mechanism requirements for the device that is separate from the system gaining access and is to provide one factor of a multifactor authentication for remote access to privileged accounts.','IA-2(11).1','For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.'), ('001948','draft','2013-05-03','DISA FSO','technical','The information system implements multifactor authentication for remote access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access.','IA-2(11).2','The organization being inspected/assessed configures the information system to implement multifactor authentication for remote access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1948.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for remote access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1948.'), ('001949','draft','2013-05-03','DISA FSO','technical','The device used in the information system implementation of multifactor authentication for remote access to privileged accounts meets organization-defined strength of mechanism requirements.','IA-2(11).3','The organization being inspected/assessed will use DoD PKI or a technology approved by their Authorizing Official that meet Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1949.','The organization conducting the inspection/assessment obtains and examines the device used to ensure that the device implemented for multifactor authentication for remote access to privileged accounts meets Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1949.'), ('001950','draft','2013-05-03','DISA FSO','policy','The organization defines the strength of mechanism requirements for the device that is separate from the system gaining access and is to provide one factor of a multifactor authentication for remote access to non-privileged accounts.','IA-2(11).4','For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. For the strength of mechanism requirements DoD has defined requirements as DoD PKI or a technology approved by their Authorizing Official, FIPS 140-2, NIAP Certification, or NSA approval.'), ('001951','draft','2013-05-03','DISA FSO','technical','The information system implements multifactor authentication for remote access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access.','IA-2(11).5','The organization being inspected/assessed configures the information system to implement multifactor authentication for remote access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1951.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement multifactor authentication for remote access to non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1951.'), ('001952','draft','2013-05-03','DISA FSO','technical','The device used in the information system implementation of multifactor authentication for remote access to non-privileged accounts meets organization-defined strength of mechanism requirements.','IA-2(11).6','The organization being inspected/assessed will use DoD PKI or a technology approved by their Authorizing Official that meet Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1952.','The organization conducting the inspection/assessment obtains and examines the device used to ensure that the device implemented for multifactor authentication for remote access to non-privileged accounts meets Federal standards for authentication such as FIPS 140-2, NIAP Certification, or NSA approval. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1952.'), ('001953','draft','2013-05-03','DISA FSO','technical','The information system accepts Personal Identity Verification (PIV) credentials.','IA-2(12).1','The organization being inspected/assessed configures the information system to accept PIV/CAC authentication. This control enhancement applies to organizations implementing logical access control systems (LACS) and physical access control systems (PACS). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1953','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to accept PIV/CAC authentication. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1953.'), ('001954','draft','2013-05-03','DISA FSO','technical','The information system electronically verifies Personal Identity Verification (PIV) credentials.','IA-2(12).2','The organization being inspected/assessed configures the information system to verify PIV/CAC authentication. This control enhancement applies to organizations implementing logical access control systems (LACS) and physical access control systems (PACS). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1954.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to verify PIV/CAC authentication. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1954.'), ('001955','draft','2013-05-03','DISA FSO','policy','The organization defines the out-of-band authentication to be implemented by the information system under organization-defined conditions.','IA-2(13).1','The organization being inspected/assessed defines and documents the out-of-band authentication to be implemented by the information system under organization-defined conditions. DoD has determined the out-of-band authentication is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented out-of-band authentication to ensure the organization being inspected/assessed defines the out-of-band authentication to be implemented by the information system under organization-defined conditions. DoD has determined the out-of-band authentication is not appropriate to define at the Enterprise level.'), ('001956','draft','2013-05-03','DISA FSO','policy','The organization defines the conditions for which the information system implements organization-defined out-of-band authentication.','IA-2(13).2','The organization being inspected/assessed defines and documents the conditions for which the information system implements organization-defined out-of-band authentication. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure the organization being inspected/assessed defines the conditions for which the information system implements organization-defined out-of-band authentication. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('001957','draft','2013-05-03','DISA FSO','technical','The information system implements organization-defined out-of-band authentication under organization-defined conditions.','IA-2(13).3','The organization being inspected/assessed configures the information system to implement out-of-band authentication defined in IA-2 (13), CCI 1955 under conditions defined in IA-2 (13), CCI 1956. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1957.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement out-of-band authentication defined in IA-2 (13), CCI 1955 under conditions defined in IA-2 (13), CCI 1956. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1957.'), ('001958','draft','2013-05-03','DISA FSO','technical','The information system authenticates an organization-defined list of specific and/or types of devices before establishing a local, remote, or network connection.','IA-3.3','The organization being inspected/assessed configures the network infrastructure to authenticate all mobiles devices and network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs) before establishing a local, remote, network connection. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1958. DoD has defined the value as all mobile devices and network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs). ','The organization conducting the inspection/assessment examine a sampling of the network infrastructure device configurations to ensure devices connecting to the infrastructure are uniquely authenticated. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1958.'), ('001959','draft','2013-05-03','DISA FSO','policy','The organization defines the specific devices and/or type of devices the information system is to authenticate before establishing a connection.','IA-3(1).1','DoD has defined the value as all network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the value as all network connected endpoint devices (including but not limited to: workstations, printers, servers (outside a datacenter), VoIP Phones, VTC CODECs).'), ('001960','draft','2013-05-03','DISA FSO','policy','The organization defines the lease information to be assigned to devices.','IA-3(3).1','The organization being inspected/assessed defines and documents the lease information to be assigned to devices. DoD has determined the lease information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented lease information assigned to devices. DoD has determined the lease information is not appropriate to define at the Enterprise level.'), ('001961','draft','2013-05-03','DISA FSO','policy','The organization defines the lease duration to be assigned to devices.','IA-3(3).2','The organization being inspected/assessed defines and documents the lease duration to be assigned to devices. DoD has determined the lease duration is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented lease duration to ensure the organization being inspected/assessed defines the lease duration to be assigned to devices. DoD has determined the lease duration is not appropriate to define at the Enterprise level'), ('001962','draft','2013-05-03','DISA FSO','technical','The organization standardizes dynamic address allocation lease information assigned to devices in accordance with organization-defined lease information.','IA-3(3).3','The organization being inspected/assessed configures the information system to grant leases containing organization defined lease information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1962.','The organization conducting the inspection/assessment examines the information system granting the lease to ensure the organization configures the information system to implement dynamic address allocation in accordance with CCI 1961. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1962.'), ('001963','draft','2013-05-03','DISA FSO','technical','The organization standardizes dynamic address allocation lease duration assigned to devices in accordance with organization-defined lease duration.','IA-3(3).4','The organization being inspected/assessed configures the information system to grant the leases assigned to devices in accordance with organization-defined lease duration. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1963.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to grant the leases assigned to devices in accordance with organization-defined lease duration. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1963.'), ('001964','deprecated','2013-05-03','DISA FSO','policy','The organization defines the configuration management process that is to handle the device identification procedures.',NULL,NULL,NULL), ('001965','draft','2013-05-03','DISA FSO','policy','The organization defines the configuration management process that is to handle the device authentication procedures.','IA-3(4).1','The organization being inspected/assessed defines and documents the configuration management process that is to handle the device authentication procedures. DoD has determined the configuration management process is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented configuration management process to ensure the organization being inspected/assessed defines the configuration management process that is to handle the device authentication procedures. DoD has determined the configuration management process is not appropriate to define at the Enterprise level.'), ('001966','draft','2013-05-03','DISA FSO','policy','The organization ensures that device identification based on attestation is handled by the organization-defined configuration management process.','IA-3(4).2','The organization being inspected/assessed ensures that device identification based on attestation is handled by the configuration management process defined in IA-3 (4), CCI 1968.','The organization conducting the inspection/assessment obtains and examines the documented configuration management process to ensure the organization being inspected/assessed has device identification based on attestation handled via the configuration management process.'), ('001967','draft','2013-05-03','DISA FSO','technical','The information system authenticates organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection using bidirectional authentication that is cryptographically based.','IA-3(1).2','The organization being inspected/assessed configures the information system to use cryptographically based bidirectional authentication. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1967.','The organization conducting the inspection/assessment examine a sampling of the network infrastructure device configurations to ensure devices connecting to the infrastructure use cryptographically based bidirectional authentication. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1967.'), ('001968','draft','2013-05-03','DISA FSO','policy','The organization defines the configuration management process that is to handle the device identification procedures.','IA-3(4).3','The organization being inspected/assessed defines and documents the configuration management process that is to handle the device identification procedures. DoD has determined the configuration management process is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented configuration management process to ensure the organization being inspected/assessed defines the configuration management process that is to handle the device identification procedures. DoD has determined the configuration management process is not appropriate to define at the Enterprise level.'), ('001969','draft','2013-05-03','DISA FSO','policy','The organization ensures that device authentication based on attestation is handled by the organization-defined configuration management process.','IA-3(4).4','The organization being inspected/assessed ensures that device authentication based on attestation is handled by the configuration management process defined in IA-3 (4), CCI 1965.','The organization conducting the inspection/assessment obtains and examines the documented configuration management process to ensure the organization being inspected/assessed has device authentication based on attestation handled via the configuration management process.'), ('001970','draft','2013-05-03','DISA FSO','policy','The organization defines the personnel or roles that authorize the assignment of individual, group, role, and device identifiers.','IA-4.1','DoD has defined the personnel or roles as the ISSM or ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the personnel or roles as the ISSM or ISSO.'), ('001971','draft','2013-05-03','DISA FSO','policy','The organization manages information system identifiers by receiving authorization from organization-defined personnel or roles to assign an individual, group, role, or device identifier.','IA-4.2','The organization being inspected/assessed implements a process to manage information system identifiers by receiving authorization from the ISSM or ISSO to assign an individual, group, role or device identifier.\n\nDoD has defined the personnel or roles as the ISSM or ISSO.','The organization conducting the inspection/assessment obtains and examines documentation and system configuration information to ensure the organization being inspected/assessed manages information system identifiers by receiving authorization from the ISSM or ISSO to assign an individual, group, role or device identifier.\n\nDoD has defined the personnel or roles as the ISSM or ISSO.'), ('001972','draft','2013-05-03','DISA FSO','policy','The organization manages information system identifiers by selecting an identifier that identifies an individual, group, role, or device.','IA-4.3','The organization being inspected/assessed implements a process to manage information system identifiers by selecting an identifier that identifies an individual, group, role, or device.','The organization conducting the inspection/assessment obtains and examines documentation or system configuration information to ensure the organization being inspected/assessed manages information system identifiers by selecting an identifier that identifies an individual, group, role, or device.'), ('001973','draft','2013-05-03','DISA FSO','policy','The organization manages information system identifiers by assigning the identifier to the intended individual, group, role, or device.','IA-4.4','The organization being inspected/assessed implements a process to manage information system identifiers by assigning the identifier to the intended individual, group, role, or device.','The organization conducting the inspection/assessment obtains and examines documentation or system configuration information to ensure the organization being inspected/assessed manages information system identifiers by assigning the identifier to the intended individual, group, role, or device.'), ('001974','draft','2013-05-03','DISA FSO','policy','The organization defines the time period for which the reuse of identifiers is prohibited.','IA-4.5','DoD has defined the time period as 1 year for user identifiers (DoD is not going to specify value for device identifier).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 1 year for user identifiers (DoD is not going to specify value for device identifier).'), ('001975','draft','2013-05-03','DISA FSO','policy','The organization manages information system identifiers by preventing reuse of identifiers for an organization-defined time period.','IA-4.6','The organization being inspected/assessed implements a process for information system identifiers to prevent reuse of identifiers for 1 year for user identifiers (DoD is not going to specify value for device identifier). DoD has defined the time period as 1 year for user identifiers (DoD is not going to specify value for device identifier).','The organization conducting the inspection/assessment obtains and examines documentation or system configuration information to ensure the organization being inspected/assessed prevents the reuse of identifiers for 1 year for user identifiers (DoD is not going to specify value for device identifier). DoD has defined the time period as 1 year for user identifiers (DoD is not going to specify value for device identifier).'), ('001976','draft','2013-05-03','DISA FSO','technical','The information system dynamically manages identifiers.','IA-4(5).1','The organization being inspected/assessed configures the information system to dynamically manage identifiers. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1976.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to dynamically manage identifiers. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1976.'), ('001977','draft','2013-05-03','DISA FSO','policy','The organization defines the external organizations with which it will coordinate for cross-management of identifiers.','IA-4(6).1','DoD has defined the external organizations as any external organization that shares cross-organizational identifiers.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external organizations as any external organization that shares cross-organizational identifiers.'), ('001978','draft','2013-05-03','DISA FSO','policy','The organization coordinates with organization-defined external organizations for cross-organization management of identifiers.','IA-4(6).2','The organization being inspected/assessed documents and implements a process to coordinate with any external organization that shares cross-organizational identifiers. DoD has defined the external organizations as any external organization that shares cross-organizational identifiers.','The organization conducting the inspection/assessment obtains and examines the documentation (e.g., Service Level Agreements (SLAs), Memorandum of Understanding (MOU), Memorandum of Agreement (MOA), contracts, etc.) to ensure the organization being inspected/assessed implements a process to coordinate with any external organization that shares cross-organizational identifiers. DoD has defined the external organizations as any external organization that shares cross-organizational identifiers.'), ('001979','draft','2013-05-03','DISA FSO','policy','The organization requires the registration process to receive an individual identifier be conducted in person before a designated registration authority.','IA-4(7).1','The organization being inspected/assessed documents and implements a process to require the registration process to receive an individual identifier be conducted in person before a designated registration authority.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires the registration process to receive an individual identifier be conducted in person before a designated registration authority.'), ('001980','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by verifying, as part of the initial authenticator distribution, the identity of the individual, group, role, or device receiving the authenticator.','IA-5.1','The organization being inspected/assessed defines and documents procedures for the secure distribution of authenticators. The process shall include verification of the identify of the individual, group, role, or device receiving the authenticator.','The organization conducting the inspection/assessment obtains and examines the documented procedures for the secure distribution of authenticators to ensure they have been defined and that they include a method to verify the identify of the individual, group, role, or device receiving the authenticator.'), ('001981','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by establishing administrative procedures for initial authenticator distribution.','IA-5.4','The organization being inspected/assessed defines and documents procedures for the secure distribution of authenticators.','The organization conducting the inspection/assessment obtains and examines the documented procedures for the secure distribution of authenticators to ensure they have been defined.'), ('001982','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by establishing administrative procedures for lost/compromised authenticators.','IA-5.5','The organization being inspected/assessed defines and documents procedures for lost/compromised authenticators.','The organization conducting the inspection/assessment obtains and examines the documented procedures for lost/compromised authenticators to ensure they have been defined.'), ('001983','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by establishing administrative procedures for damaged authenticators.','IA-5.6','The organization being inspected/assessed defines and documents procedures for the secure disposal of damaged authenticators.','The organization conducting the inspection/assessment obtains and examines the documented procedures for the secure disposal of damaged authenticators to ensure they have been defined.'), ('001984','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by establishing administrative procedures for revoking authenticators.','IA-5.7','The organization being inspected/assessed defines and documents procedures for revoking authenticators.','The organization conducting the inspection/assessment obtains and examines the documented procedures for revoking authenticators to ensure the procedures are defined.'), ('001985','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by implementing administrative procedures for initial authenticator distribution.','IA-5.8','The organization being inspected/assessed implements administrative procedures for initial authenticator distribution as documented in IA-5, CCIs 1980 & 1981.','The organization conducting the inspection/assessment obtains and examines records of initial authenticator distribution and interviews individuals responsible for authenticator distribution to ensure that the organization being inspected/assessed implements the process as defined in IA-5, CCIs 1980 & 1981.'), ('001986','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by implementing administrative procedures for lost/compromised authenticators.','IA-5.9','The organization being inspected/assessed implements administrative procedures for the response to lost/compromised authenticators as documented in IA-5, CCI 1982.','The organization conducting the inspection/assessment obtains and examines documented procedures for the response to lost/compromised authenticators to ensure that the organization being inspected/assessed implements the process as defined in IA-5, CCI 1982.'), ('001987','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by implementing administrative procedures for damaged authenticators.','IA-5.10','The organization being inspected/assessed implements administrative procedures for the response to damaged authenticators as documented in IA-5, CCI 1983.','The organization conducting the inspection/assessment obtains and examines documented procedures for the response to damaged authenticators to ensure that the organization being inspected/assessed implements the process as defined in IA-5, CCI 1983.'), ('001988','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by implementing administrative procedures for revoking authenticators.','IA-5(5).1','The organization being inspected/assessed documents and enforces a requirement for developers/installers of information system components to provide unique authenticators or change default authenticators prior to delivery/installation.','The organization conducting the inspection/assessment obtains and examines the documented requirements placed upon developers/installers of information system components to ensure that there is a documented requirement to provide unique authenticators or change default authenticators prior to delivery/installation.'), ('001989','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by changing default content of authenticators prior to information system installation.','IA-5.12','The organization being inspected/assessed documents and implements a procedures to change default authenticators prior to information system installation.','The organization conducting the inspection/assessment obtains and examines the documented procedures to change default authenticators to ensure the procedures are defined. The organization conducting the inspection/assessment obtains and examines a sampling of authenticator age data for default accounts to ensure that default authenticators are changed prior to installation.'), ('001990','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by changing authenticators for group/role accounts when membership to those accounts changes.','IA-5.22','The organization being inspected/assessed documents and implements procedures for changing authenticators for group/role accounts when membership to those accounts changes.','The organization conducting the inspection/assessment obtains and examines the documented procedures for group/role authenticator change to ensure the procedures are defined and applied when membership to those accounts changes. The organization conducting the inspection/assessment obtains and examines a sampling of authenticator age data and documentation of personnel role changes to ensure that group/role authenticators are changed when membership changes.'), ('001991','draft','2013-05-03','DISA FSO','technical','The information system, for PKI-based authentication, implements a local cache of revocation data to support path discovery and validation in case of inability to access revocation information via the network.','IA-5(2).4','The information system must be configured to locally cache revocation data to support path discovery and validation in case of inability to access revocation information via the network. The information system may meet this requirement by locally caching certificate revocation lists (CRLs), Online Certificate Status Protocol (OCSP) responses, or a combination thereof. Cached revocation data must include revocation information from all PKIs serving known or anticipated users of the information system. Cached data must be refreshed with a frequency shorter than the life of the data (e.g. if a CRL is valid for 7 days, a new CRL must be retrieved and cached more frequently than every 7 days) to ensure that cached data is valid and not expired. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 1991.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to locally cache revocation data (CRLs and/or OCSP responses) to support path discovery and validation in case of inability to access revocation information via the network. The organization conducting the inspection/assessment examines the information system to ensure that revocation data is cached for all PKIs serving known or anticipated users of the information system. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured a process for the information system to refresh cached revocation data prior to the datas expiration. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 1991.'), ('001992','draft','2013-05-03','DISA FSO','policy','The organization defines the personnel or roles responsible for authorizing the organization^s registration authority accountable for the authenticator registration process.','IA-5(3).1','The DoD PKI Registration Authority (RA) Local Registration Authority (LRA) Certification Practice Statement (CPS) defines the nomination process for DoD PKI RAs. The NSS PKI DoD Registration Practice Statement (RPS) defines the nomination process for NSS PKI RAs for DoD.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI RA-LRA CPS and NSS PKI DoD RPS.','The DoD PKI RALRA CPS defines the nomination process for DoD PKI RAs. The NSS PKI DoD RPS defines the nomination process for NSS PKI RAs for DoD.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI RA-LRA CPS and NSS PKI DoD RPS.'), ('001993','draft','2013-05-03','DISA FSO','policy','The organization defines the registration authority accountable for the authenticator registration process.','IA-5(3).2','The DoD PKI Certificate Policy (CP) defines the role and responsibilities of a DoD PKI Registration Authority (RA). The NSS PKI CP defines the role and responsibilities of an NSS PKI RA.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.','The DoD PKI CP defines the role and responsibilities of a DoD PKI Registration Authority (RA). The NSS PKI CP defines the role and responsibilities of an NSS PKI RA.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.'), ('001994','draft','2013-05-03','DISA FSO','policy','The organization defines the types of and/or specific authenticators that are subject to the authenticator registration process.','IA-5(3).3','The DoD PKI Certificate Policy (CP) defines DoD PKI subscribers (entities identified as the subject of PKI certificates) and the authentication requirements for issuance of credentials to subscribers. The NSS PKI CP defines NSS PKI subscribers and the authentication requirements for issuance of credentials to subscribers.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.','The DoD PKI CP defines DoD PKI subscribers and the authentication requirements for issuance of credentials to subscribers. The NSS PKI CP defines NSS PKI subscribers and the authentication requirements for issuance of credentials to subscribers.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.'), ('001995','draft','2013-05-03','DISA FSO','policy','The organization requires that the registration process, to receive organization-defined types of and/or specific authenticators, be conducted in person, or by a trusted third-party, before an organization-defined registration authority with authorization by organization-defined personnel or roles.','IA-5(3).4','The DoD PKI Certificate Policy (CP) requires in-person authentication of DoD PKI applicants in accordance with each Certificate Management Authoritys (CMAs) Certification Practice Statement (CPS) prior to issuance of credentials. The NSS PKI CP requires in-person authentication of NSS PKI applicants by a Registration Authority (RA) or Trusted Agent (TA) prior to issuance of credentials.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.','The DoD PKI CP requires in-person authentication of DoD PKI applicants in accordance with each CMAs CPS prior to issuance of credentials. The NSS PKI CP requires in-person authentication of NSS PKI applicants by an RA or TA prior to issuance of credentials.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.'), ('001996','draft','2013-05-03','DISA FSO','policy','The organization defines the requirements required by the automated tools to determine if password authenticators are sufficiently strong.','IA-5(4).1','DoD has defined the requirements as the complexity as identified in IA-5 (1) Part A.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the requirements as the complexity as identified in IA-5 (1) Part A.'), ('001997','draft','2013-05-03','DISA FSO','policy','The organization employs automated tools to determine if password authenticators are sufficiently strong to satisfy organization-defined requirements.','IA-5(4).2','The organization being inspected/assessed implements automated tools to check passwords strength per the complexity requirements defined in IA-5 (1) Part A.','The organization conducting the inspection/assessment examines the automated tools and inspects the configuration of the automated tools to ensure that they are implemented to check password strength per the complexity requirements defined in IA-5 (1) Part A.'), ('001998','draft','2013-05-03','DISA FSO','policy','The organization requires developers/installers of information system components to provide unique authenticators or change default authenticators prior to delivery/installation.','IA-5.11','The organization being inspected/assessed implements administrative procedures for revoking authenticators as documented in IA-5, CCI 1984.','The organization conducting the inspection/assessment obtains and examines documented procedures for revoking authenticators to ensure that the organization being inspected/assessed implements the process as defined in IA-5, CCI 1984.'), ('001999','draft','2013-05-03','DISA FSO','policy','The organization defines the external organizations to be coordinated with for cross-organization management of credentials.','IA-5(9).2','DoD has defined the external organizations as any external organization that shares cross-organizational identifiers.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the external organizations as any external organization that shares cross-organizational identifiers.'), ('002000','draft','2013-05-03','DISA FSO','policy','The organization coordinates with organization-defined external organizations for cross-organization management of credentials.','IA-5(9).1','The organization being inspected/assessed documents and implements a process to coordinate with external organizations defined in IA-5 (9), CCI 1999 for cross-organization management of credentials. The organization maintains records of coordination.','The organization conducting the inspection/assessment obtains and examines the documented process and a sampling of coordination records to ensure the organization being inspected/assessed coordinates with external organizations defined in IA-5 (9), CCI 1999 for cross-organization management of credentials.'), ('002001','draft','2013-05-03','DISA FSO','technical','The information system dynamically provisions identities.','IA-5(10).1','The organization being inspected/assessed configures the information system to dynamically provision identities. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2001.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to dynamically provision identities. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2001.'), ('002002','draft','2013-05-03','DISA FSO','policy','The organization defines the token quality requirements to be employed by the information system mechanisms for token-based authentication.','IA-5(11).1','DoDI 8520.03 defines types of authentication credentials that are acceptable for authentication to different systems based on the systems information sensitivity levels and the users access environments. The definitions for credential strengths D, E and H found in DoDI 8520.03 Enclosure 3, Section 3 specifically deal with acceptable types of hardware PKI credentials.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD-level policy, DoDI 8520.03.','DoDI 8520.03 defines types of authentication credentials that are acceptable for authentication to different systems based on the systems information sensitivity levels and the users access environments. The definitions for credential strengths D, E and H found in DoDI 8520.03 Enclosure 3, Section 3 specifically deal with acceptable types of hardware PKI credentials.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD-level policy, DoDI 8520.03.'), ('002003','draft','2013-05-03','DISA FSO','technical','The information system, for token-based authentication, employs mechanisms that satisfy organization-defined token quality requirements.','IA-5(11).2','The information system performing hardware token-based authentication must be configured to accept only DoD-approved PKI credentials in accordance with DoDI 8520.02 and DoDI 8520.03. For unclassified systems, DoD-approved PKI credentials include DoD PKI credentials, External Certification Authority (ECA) PKI credentials, and DoD-approved external PKI credentials. For SIPRNet, DoD-approved PKI credentials include DoD PKI credentials and NSS PKI credentials. If the information system accepts DoD-approved external PKI credentials, the information system must be configured to accept only certificates at approved assurance levels, as represented by the Certificate Policy Object Identifiers (OIDs) asserted in the certificate. The current list of DoD-approved external PKIs and acceptable Object Identifiers (OIDs) for each approved external PKI is available at http://iase.disa.mil/pki-pke/interoperability.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to accept only DoD-approved PKI credentials in accordance with (IAW) DoDI 8520.02 and DoDI 8520.03. If the information system accepts DoD-approved external PKI credentials, the organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to accept only DoD-approved external PKI credentials that assert an approved Certificate Policy OID and reject credentials issued off of DoD-approved external PKIs that do not assert an approved OID.'), ('002004','draft','2013-05-03','DISA FSO','policy','The organization defines the biometric quality requirements to be employed by the information system mechanisms for biometric-based authentication.','IA-5(12).1','The organization being inspected/assessed defines and documents quality requirements to be employed by the information system mechanisms. Quality requirements shall include minimum requirements for accurate identification. NIST has draft documentation for biometrics available at http://csrc.nist.gov/publications/PubsSPs.html. DoD has determined the biometric quality requirements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines documented requirements to ensure they have been defined and include minimum requirements for accurate identification. DoD has determined the biometric quality requirements are not appropriate to define at the Enterprise level.'), ('002005','draft','2013-05-03','DISA FSO','technical','The information system, for biometric-based authentication, employs mechanisms that satisfy organization-defined biometric quality requirements.','IA-5(12).2','The organization being inspected/assessed configures the information system to employ mechanisms that satisfy biometric quality requirements as defined in IA-5 (12), CCI 2004 for biometric-based authentication. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2005.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ mechanisms that satisfy biometric quality requirements as defined in IA-5 (12), CCI 2004 for biometric-based authentication. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2005.'), ('002006','draft','2013-05-03','DISA FSO','policy','The organization defines the time period after which the use of cached authenticators is prohibited.','IA-5(13).1','The organization being inspected/assessed defines and documents the time period after which the use of cached authenticators are prohibited. DoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure it has been defined. DoD has determined the time period is not appropriate to define at the Enterprise level.'), ('002007','draft','2013-05-03','DISA FSO','technical','The information system prohibits the use of cached authenticators after an organization-defined time period.','IA-5(13).2','The organization being inspected/assessed configures the information system to prohibit the use of cached authenticators after an organization defined time period. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2007.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prohibit the use of cached authenticators after an organization defined time period. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2007.'), ('002008','draft','2013-05-03','DISA FSO','policy','The organization, for PKI-based authentication, employs a deliberate organization-wide methodology for managing the content of PKI trust stores installed across all platforms including networks, operating systems, browsers, and applications.','IA-5(14).1','DoD trust store management requirements are defined in information system components applicable STIGs and SRGs. All information systems are required to undergo a STIG compliance review as part of their certification and accreditation process prior to being granted an authority to operate.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD-level STIGs and SRGs.','DoD trust store management requirements are defined in information system components applicable STIGs and SRGs. All information systems are required to undergo a STIG compliance review as part of their certification and accreditation process prior to being granted an authority to operate.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD-level STIGs and SRGs.'), ('002009','draft','2013-05-03','DISA FSO','technical','The information system accepts Personal Identity Verification (PIV) credentials from other federal agencies.','IA-8(1).1','The information system performing hardware token-based authentication must be configured to accept DoD-approved external PKI PIV credentials to authenticate federal agency users in accordance with DoDI 8520.02 and DoDI 8520.03. The information system must be configured to accept only certificates at approved assurance levels, as represented by the Certificate Policy Object Identifiers (OIDs) asserted in the certificate. The current list of DoD-approved external PKIs and acceptable Object Identifiers (OIDs) for each approved external PKI is available at http://iase.disa.mil/pki-pke/interoperability. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2009.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to accept DoD-approved external PKI PIV credentials in accordance with DoDI 8520.02 and DoDI 8520.03. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to accept only DoD-approved external PKI PIV credentials that assert an approved Certificate Policy OID and reject credentials issued off of DoD-approved external PKIs that do not assert an approved OID. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2009.'), ('002010','draft','2013-05-03','DISA FSO','technical','The information system electronically verifies Personal Identity Verification (PIV) credentials from other federal agencies.','IA-8(1).2','The information system performing hardware token-based authentication must be configured to validate DoD-approved external PKI PIV credentials to authenticate federal agency users in accordance with RFC 5280. The information system must be configured to perform a revocation check as part of the certificate validation process. Revocation checking may be performed using certificate revocation lists (CRLs) published by the issuing PKI or Online Certificate Status Protocol (OCSP) services. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2010.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to validate DoD-approved external PKI PIV credentials in accordance with RFC 5280. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to perform a revocation check as part of the certificate validation process. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2010.'), ('002011','draft','2013-05-03','DISA FSO','technical','The information system accepts FICAM-approved third-party credentials.','IA-8(2).1','The organization being inspected/assessed configures the information system to accept Federal Identity, Credential, and Access Management (FICAM)-approved third-party credentials. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2011. FICAM Guidance is available at http://www.idmanagement.gov.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to accept FICAM-approved third-party credentials For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2011.'), ('002012','draft','2013-05-03','DISA FSO','policy','The organization defines the information systems which will employ only FICAM-approved information system components.','IA-8(3).1','The organization being inspected/assessed defines and documents the information systems which will employ only Federal Identity, Credential, and Access Management (FICAM)-approved information system components. DoD has determined the information systems are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems to ensure they have been defined. DoD has determined the information systems are not appropriate to define at the Enterprise level.'), ('002013','draft','2013-05-03','DISA FSO','policy','The organization employs only FICAM-approved information system components in organization-defined information systems to accept third-party credentials.','IA-8(3).2','The organization being inspected/assessed employs only Federal Identity, Credential, and Access Management (FICAM)-approved information system components to accept third-party credentials in information systems defined in IA-8 (3), CCI 2012. FICAM Guidance is available at http://www.idmanagement.gov.','The organization conducting the inspection/assessment obtains and examines the list of information system components in use to ensure the organization being inspected/assessed uses only FICAM-approved components in information systems defined in IA-8 (3), CCI 2012.'), ('002014','draft','2013-05-03','DISA FSO','technical','The information system conforms to FICAM-issued profiles.','IA-8(4).1','The organization being inspected/assessed configures the information system to conform to Federal Identity, Credential, and Access Management (FICAM)-issued profiles. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2014. FICAM Guidance is available at http://www.idmanagement.gov.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to conform to FICAM-issued profiles. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2014.'), ('002015','draft','2013-05-03','DISA FSO','technical','The information system accepts Personal Identity Verification-I (PIV-I) credentials.','IA-8(5).1','The information system performing hardware token-based authentication must be configured to accept DoD-approved external PKI PIV-I credentials in accordance with DoDI 8520.02, DoDI 8520.03, and DoD CIO Memorandum Department of Defense Requirements for Accepting Non-Federally Issued Identity Credentials dated 24 January 2013. The information system must be configured to accept only certificates at approved assurance levels, as represented by the Certificate Policy Object Identifiers (OIDs) asserted in the certificate. The current list of DoD-approved external PKIs and acceptable Object Identifiers (OIDs) for each approved external PKI is available at http://iase.disa.mil/pki-pke/interoperability. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2015.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to accept DoD-approved external PKI PIV-I credentials in accordance with DoDI 8520.02, DoDI 8520.03, and DoD CIO Memorandum Department of Defense Requirements for Accepting Non-Federally Issued Identity Credentials dated 24 January 2013. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to accept only DoD-approved external PKI PIV-I credentials that assert an approved Certificate Policy OID and reject credentials issued off of DoD-approved external PKIs that do not assert an approved OID. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2015.'), ('002016','draft','2013-05-03','DISA FSO','technical','The information system electronically verifies Personal Identity Verification-I (PIV-I) credentials.','IA-8(5).2','The information system performing hardware token-based authentication must be configured to validate DoD-approved external PKI PIV-I credentials in accordance with RFC 5280. The information system must be configured to perform a revocation check as part of the certificate validation process. Revocation checking may be performed using certificate revocation lists (CRLs) published by the issuing PKI or Online Certificate Status Protocol (OCSP) services. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2016.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to validate DoD-approved external PKI PIV-I credentials in accordance with RFC 5280. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed has configured the information system to perform a revocation check as part of the certificate validation process. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2016.'), ('002017','draft','2013-05-03','DISA FSO','policy','The organization defines the information system services requiring identification.','IA-9.1','The organization being inspected/assessed defines and documents the information system services requiring identification. DoD has determined the information system services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system services to ensure they have been defined. DoD has determined the information system services are not appropriate to define at the Enterprise level.'), ('002018','draft','2013-05-03','DISA FSO','policy','The organization defines the information system services requiring authentication.','IA-9.2','The organization being inspected/assessed defines and documents the information system services requiring authentication. DoD has determined the information system services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system services to ensure they have been defined. DoD has determined the information system services are not appropriate to define at the Enterprise level.'), ('002019','draft','2013-05-03','DISA FSO','policy','The organization defines the security safeguards to be used when identifying information system services.','IA-9.3','The organization being inspected/assessed defines and documents the security safeguards to be used when identifying information system services. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure they have been defined and offers sufficient security. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002020','draft','2013-05-03','DISA FSO','policy','The organization defines the security safeguards to be used when authenticating information system services.','IA-9.4','The organization being inspected/assessed defines and documents the security safeguards to be used when authenticating information system services. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure they have been defined and offers sufficient security. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002021','draft','2013-05-03','DISA FSO','policy','The organization identifies organization-defined information system services using organization-defined security safeguards.','IA-9.5','The organization being inspected/assessed documents and implements a process to identify information system services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed identifies information system services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.'), ('002022','draft','2013-05-03','DISA FSO','policy','The organization authenticates organization-defined information system services using organization-defined security safeguards.','IA-9.6','The organization being inspected/assessed documents and implements a process to authenticate information system services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed authenticates information system services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.'), ('002023','draft','2013-05-03','DISA FSO','policy','The organization ensures that service providers receive identification information.','IA-9(1).1','The organization being inspected/assessed implements a process to ensure that service providers receive identification information.','The organization conducting the inspection/assessment reviews the process to ensure that service providers receive identification information to ensure the process is effectively implemented.'), ('002024','draft','2013-05-03','DISA FSO','policy','The organization ensures that service providers validate identification information.','IA-9(1).2','The organization being inspected/assessed implements a process to ensure that service providers validate identification information.','The organization conducting the inspection/assessment reviews the process to ensure that service providers validate identification information to ensure the process is effectively implemented.'), ('002025','draft','2013-05-03','DISA FSO','policy','The organization ensures that service providers transmit identification information.','IA-9(1).3','The organization being inspected/assessed implements a process to ensure that service providers transmit identification information.','The organization conducting the inspection/assessment reviews the process to ensure that service providers transmit identification information to ensure the process is effectively implemented.'), ('002026','draft','2013-05-03','DISA FSO','policy','The organization ensures that service providers receive authentication information.','IA-9(1).4','The organization being inspected/assessed implements a process to ensure that service providers receive authentication information.','The organization conducting the inspection/assessment reviews the process to ensure that service providers receive authentication information to ensure the process is effectively implemented.'), ('002027','draft','2013-05-03','DISA FSO','policy','The organization ensures that service providers validate authentication information.','IA-9(1).5','The organization being inspected/assessed implements a process to ensure that service providers validate authentication information.','The organization conducting the inspection/assessment reviews the process to ensure that service providers validate authentication information to ensure the process is effectively implemented. .'), ('002028','draft','2013-05-03','DISA FSO','policy','The organization ensures that service providers transmit authentication information.','IA-9(1).6','The organization being inspected/assessed implements a process to ensure that service providers transmit authentication information.','The organization conducting the inspection/assessment reviews the process to ensure that service providers transmit authentication information to ensure the process is effectively implemented.'), ('002029','draft','2013-05-03','DISA FSO','policy','The organization defines the services between which identification decisions are to be transmitted.','IA-9(2).1','The organization being inspected/assessed defines and documents the services between which identification decisions are to be transmitted. DoD has determined the services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented services to ensure they have been defined. DoD has determined the services are not appropriate to define at the Enterprise level.'), ('002030','draft','2013-05-03','DISA FSO','policy','The organization defines the services between which authentication decisions are to be transmitted.','IA-9(2).2','The organization being inspected/assessed defines and documents the services between which authentication decisions are to be transmitted. DoD has determined the services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented services to ensure they have been defined. DoD has determined the services are not appropriate to define at the Enterprise level.'), ('002031','draft','2013-05-03','DISA FSO','policy','The organization ensures that identification decisions are transmitted between organization-defined services consistent with organizational policies.','IA-9(2).3','The organization being inspected/assessed implements a process to ensure that identification decisions are transmitted between services defined in IA-9 (2), CCI 2029 consistent with organizational policies.','The organization conducting the inspection/assessment reviews the process to ensure the organization being inspected/assessed implements policies for transmitting identification decisions between services defined in IA-9 (2), CCI 2029.'), ('002032','draft','2013-05-03','DISA FSO','policy','The organization ensures that authentication decisions are transmitted between organization-defined services consistent with organizational policies.','IA-9(2).4','The organization being inspected/assessed implements a process to ensure that authentication decisions are transmitted between services defined in IA-9 (2), CCI 2030 consistent with organizational policies.','The organization conducting the inspection/assessment reviews the process to ensure the organization being inspected/assessed implements policies for transmitting authentication decisions between services defined in IA-9 (2), CCI 2030.'), ('002033','draft','2013-05-03','DISA FSO','policy','The organization defines the specific circumstances or situations when individuals accessing an information system employ organization-defined supplemental authentication techniques or mechanisms.','IA-10.1','The organization being inspected/assessed defines and documents the specific circumstances or situations when individuals accessing an information system employ organization-defined supplemental authentication techniques or mechanisms. DoD has determined the circumstances or situations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances or situations to ensure they have been defined. DoD has determined the circumstances or situations are not appropriate to define at the Enterprise level.'), ('002034','draft','2013-05-03','DISA FSO','policy','The organization defines the supplemental authentication techniques or mechanisms to be employed in specific organization-defined circumstances or situations by individuals accessing the information system.','IA-10.2','The organization being inspected/assessed defines and documents the supplemental authentication techniques or mechanisms to be employed in specific organization-defined circumstances or situations by individuals accessing the information system. DoD has determined the supplemental authentication techniques or mechanisms are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented supplemental authentication techniques or mechanisms to ensure they have been defined. DoD has determined the supplemental authentication techniques or mechanisms are not appropriate to define at the Enterprise level.'), ('002035','draft','2013-05-03','DISA FSO','policy','The organization requires that individuals accessing the information system employ organization-defined supplemental authentication techniques or mechanisms under specific organization-defined circumstances or situations.','IA-10.3','The organization being inspected/assessed implements a process to require that individuals accessing the information system employ supplemental authentication techniques or mechanisms defined in IA-10, CCI 2034 under specific circumstances or situations defined in IA-10, CCI 2033.','The organization conducting the inspection/assessment reviews the process to ensure the organization being inspected/assessed requires that individuals accessing the information system employ supplemental authentication techniques or mechanisms defined in IA-10, CCI 2034 under specific circumstances or situations defined in IA-10, CCI 2033.'), ('002036','draft','2013-05-03','DISA FSO','policy','The organization defines the circumstances or situations under which users will be required to reauthenticate.','IA-11.1','The organization being inspected/assessed defines and documents the circumstances or situations when users will be required to reauthenticate. DoD has determined the circumstances or situations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances or situations to ensure they have been defined. DoD has determined the circumstances or situations are not appropriate to define at the Enterprise level.'), ('002037','draft','2013-05-03','DISA FSO','policy','The organization defines the circumstances or situations under which devices will be required to reauthenticate.','IA-11.2','The organization being inspected/assessed defines and documents the circumstances or situations when devices will be required to reauthenticate. DoD has determined the circumstances or situations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances or situations to ensure they have been defined. DoD has determined the circumstances or situations are not appropriate to define at the Enterprise level.'), ('002038','draft','2013-05-03','DISA FSO','technical','The organization requires users to reauthenticate upon organization-defined circumstances or situations requiring reauthentication.','IA-11.3','The organization being inspected/assessed implements a process to require users to reauthenticate when circumstances or situations requiring reauthentication as defined in IA-11, CCI 2036.','The organization conducting the inspection/assessment reviews the process to ensure the organization being inspected/assessed requires users to reauthenticate when circumstances or situations requiring reauthentication as defined in IA-11, CCI 2036.'), ('002039','draft','2013-05-03','DISA FSO','technical','The organization requires devices to reauthenticate upon organization-defined circumstances or situations requiring reauthentication.','IA-11.4','The organization being inspected/assessed implements a process to require devices to reauthenticate when circumstances or situations requiring reauthentication as defined in IA-11, CCI 2037.','The organization conducting the inspection/assessment reviews the process to ensure the organization being inspected/assessed requires devices to reauthenticate when circumstances or situations requiring reauthentication as defined in IA-11, CCI 2037.'), ('002040','draft','2013-05-03','DISA FSO','policy','The organization requires that the registration process to receive an individual identifier includes supervisor authorization.','IA-4(2).1','The organization being inspected/assessed documents and implements a process that requires supervisor authorization to assign individual identifiers.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires supervisor authorization to assign individual identifiers.'), ('002041','draft','2013-05-03','DISA FSO','technical','The information system allows the use of a temporary password for system logons with an immediate change to a permanent password.','IA-5(1).20','The organization being inspected/assessed configures the information system to allow the use of a temporary password for system logons with an immediate change to a permanent password. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2041.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to allow the use of a temporary password for system logons with an immediate change to a permanent password. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2041.'), ('002042','draft','2013-05-03','DISA FSO','policy','The organization manages information system authenticators by protecting authenticator content from unauthorized modification.','IA-5.18','The organization being inspected/assessed configures the information system to manage information system authenticators by protecting authenticator content from unauthorized modification. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2042.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to manage information system authenticators by protecting authenticator content from unauthorized modification. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2042.'), ('002043','draft','2013-05-03','DISA FSO','policy','The organization uses only FICAM-approved path discovery and validation products and services.','IA-5(15).1','The organization being inspected/assessed uses only Federal Identity, Credential, and Access Management (FICAM)-approved path discovery and validation products and services. FICAM Guidance is available at http://www.idmanagement.gov.','The organization conducting the inspection/assessment obtains and examines the list of path discovery and validation products and services in use to ensure the organization being inspected/assessed uses only FICAM-approved path discovery and validation products and services.'), ('002044','draft','2013-05-29','DISA FSO','policy','The organization defines measures to be employed to ensure that long-term audit records generated by the information system can be retrieved.','AU-11(1).1','The organization being inspected/assessed defines and documents measures to be employed to ensure that long-term audit records generated by the information system can be retrieved. DoD has determined that the measures are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented measures to ensure the organization being inspected/assessed defines measures to be employed to ensure that long-term audit records generated by the information system can be retrieved. DoD has determined that the measures are not appropriate to define at the Enterprise level.'), ('002045','draft','2013-05-29','DISA FSO','policy','The organization employs organization-defined measures to ensure that long-term audit records generated by the information system can be retrieved.','AU-11(1).2','The organization being inspected/assessed employs the measures defined in AU-11 (1), CCI 2044 to ensure that long-term audit records generated by the information system can be retrieved.','The organization conducting the inspection/assessment obtains and examines the documented measures to ensure the organization being inspected/assessed employs the measures defined in AU-11 (1), CCI 2044 to ensure that long-term audit records generated by the information system can be retrieved.'), ('002046','draft','2013-05-29','DISA FSO','technical','The information system synchronizes the internal system clocks to the authoritative time source when the time difference is greater than the organization-defined time period.','AU-8(1).5','The organization being inspected/assessed configures the information system to synchronize the internal system clocks to the authoritative time source when the time difference is greater than the time period defined in AU-8 (1), CCI 1892.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2046.','The organization conducting the inspection/assessment examines the information system to ensure the system synchronizes the internal system clocks to the authoritative time source when the time difference is greater than the time period defined in AU-8 (1), CCI 1892.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2046.'), ('002047','draft','2013-05-29','DISA FSO','policy','The organization defines the information system components on which the auditing that is to be performed can be changed by organization-defined individuals or roles.','AU-12(3).5','The organization being inspected/assessed defines and documents the information system components on which the auditing that is to be performed can be changed by individuals or roles defined in AU-12 (3), CCI 1913. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed has defined the information system components on which the auditing that is to be performed can be changed by the individuals or roles defined in AU-12 (3), CCI 1913. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002048','draft','2013-06-05','DISA FSO','policy','The organization defines the personnel or roles to whom the security awareness and training policy is disseminated.','AT-1.1','DoD has defined the roles as organizational personnel with security awareness and training responsibilities.\n\nDoD disseminates DoDD 8570.01 organization-wide via the DoD Issuances website.\nhttp://www.dtic.mil/whs/directives/corres/dir.html','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as organizational personnel with security awareness and training responsibilities.'), ('002049','draft','2013-06-05','DISA FSO','policy','The organization defines the personnel or roles to whom the security awareness and training procedures are disseminated.','AT-1.2','DoD has defined the roles as organizational personnel with security awareness and training responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as organizational personnel with security awareness and training responsibilities.'), ('002050','draft','2013-06-05','DISA FSO','policy','The organization defines the personnel or roles to whom initial and refresher training in the employment and operation of environmental controls is to be provided.','AT-3(1).4','The organization being inspected/assessed defines and documents the personnel or roles to whom initial and refresher training in the employment and operation of environmental controls is to be provided. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to whom initial and refresher training in the employment and operation of environmental controls is to be provided. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002051','draft','2013-06-05','DISA FSO','policy','The organization defines the personnel or roles to whom initial and refresher training in the employment and operation of physical security controls is to be provided.','AT-3(2).4','The organization being inspected/assessed defines and documents the personnel or roles to whom initial and refresher training in the employment and operation of physical security controls is to be provided. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to whom initial and refresher training in the employment and operation of physical security controls is to be provided. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002052','draft','2013-06-05','DISA FSO','policy','The organization includes practical exercises in security training that reinforce training objectives.','AT-3(3).1','The organization being inspected/assessed includes practical exercises in security training that reinforce training objectives.','The organization conducting the inspection/assessment obtains and examines the security training materials to ensure the organization being inspected/assessed includes practical exercises in security training that reinforce training objectives.'), ('002053','draft','2013-06-05','DISA FSO','policy','The organization provides training to its personnel on organization-defined indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems.','AT-3(4).1','The organization being inspected/assessed provides training to its personnel on indicators of malicious code defined in AT-3 (4), CCI 2054 to recognize suspicious communications and anomalous behavior in organizational information systems.','The organization conducting the inspection/assessment obtains and examines the training materials and indicators of malicious code defined in AT-3 (4), CCI 2054 to ensure the organization being inspected/assessed provides users with the means to recognize suspicious communications and anomalous behavior in organizational information systems.'), ('002054','draft','2013-06-05','DISA FSO','policy','The organization defines indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems.','AT-3(4).2','The organization being inspected/assessed defines and documents indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems. DoD has determined the indicators are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented indicators to ensure the organization being inspected/assessed defines indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems. DoD has determined the indicators are not appropriate to define at the Enterprise level.'), ('002055','draft','2013-06-05','DISA FSO','policy','The organization includes security awareness training on recognizing and reporting potential indicators of insider threat.','AT-2(2).1','The IA Awareness CBT, \"Cyber Awareness Challenge,\" and Virtual Training Environment (VTE) Courses: \"Introduction to Insider Threat\" and \"Monitoring for Insider Threat\" available on the IASE website meet the DoD requirement to include security awareness training on recognizing and reporting potential indicators of insider threat.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level training available on the IASE website.','The IA Awareness CBT, \"Cyber Awareness Challenge,\" and Virtual Training Environment (VTE) Courses: \"Introduction to Insider Threat\" and \"Monitoring for Insider Threat\" available on the IASE website meet the DoD requirement to include security awareness training on recognizing and reporting potential indicators of insider threat.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level training available on the IASE website.'), ('002056','draft','2013-06-11','DISA FSO','policy','The organization defines the time period the records of configuration-controlled changes are to be retained.','CM-3.7','DoD has defined the time period as a time period defined by the organization\'s CCB.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the time period as a time period defined by the organization\'s CCB.'), ('002057','draft','2013-06-11','DISA FSO','policy','The organization defines the personnel to be notified when approved changes to the information system are completed.','CM-3(1).8','The organization being inspected/assessed defines and documents the personnel to be notified when approved changes to the information system are completed, which must include, at a minimum, the CCB. DoD has defined the personnel as at a minimum, the CCB.','The organization conducting the inspection/assessment obtains and examines the documented personnel to ensure the organization being inspected/assessed defines the personnel to be notified when approved changes to the information system are completed, which must include, at a minimum, the CCB. DoD has defined the personnel as at a minimum, the CCB.'), ('002058','draft','2013-06-11','DISA FSO','policy','The organization employs automated mechanisms to notify organization-defined personnel when approved changes to the information system are completed.','CM-3(1).9','The organization being inspected/assessed notifies at a minimum, the CCB when approved changes to the information system are completed. The organization must maintain an audit trail of notifications of completed changes to the information system. DoD has defined the personnel as at a minimum, the CCB.','The organization conducting the inspection/assessment obtains and examines the audit trail of notifications of completed changes to the information system to ensure the organization being inspected/assessed notifies at a minimum, the CCB when approved changes to the information system are completed. DoD has defined the personnel as at a minimum, the CCB. '), ('002059','draft','2013-06-11','DISA FSO','policy','The organization defines the information system components for which the organization will employ automated mechanisms to centrally manage, apply, and verify configuration settings.','CM-6(1).4','The organization being inspected/assessed defines and documents the information system components for which the organization will employ automated mechanisms to centrally manage, apply, and verify configuration settings. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examine the documented information system components to ensure the organization being inspected/assessed defines the information system components for which the organization will employ automated mechanisms to centrally manage, apply, and verify configuration settings. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002060','deprecated','2013-06-21','DISA FSO','policy','The organization develops and documents a security assessment and authorization policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.',NULL,NULL,NULL), ('002061','draft','2013-06-21','DISA FSO','policy','The organization defines the personnel or roles to whom security assessment and authorization policy is to be disseminated.','CA-1.1','DoD has defined the personnel or roles as all personnel. DoD disseminates DoDI 8510.01 organization-wide via the DoD Issuances website. http://www.dtic.mil/whs/directives/corres/ins1.html','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all personnel.'), ('002062','draft','2013-06-21','DISA FSO','policy','The organization defines the personnel or roles to whom the security assessment and authorization procedures are to be disseminated.','CA-1.2','DoD has defined the personnel or roles as all personnel.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all personnel.'), ('002063','draft','2013-06-21','DISA FSO','policy','The organization defines the level of independence for assessors or assessment teams to conduct security control assessments of organizational information systems.','CA-2(1).2','The organization being inspected/assessed defines and documents the level of independence for assessors or assessment teams to conduct security control assessments of organizational information systems. DoD has determined the level of independence is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of independence to ensure the organization being inspected/assessed defines the level of independence for assessors or assessment teams to conduct security control assessments of organizational information systems. DoD has determined the level of independence is not appropriate to define at the Enterprise level.'), ('002064','draft','2013-06-21','DISA FSO','policy','The organization selects one or more security assessment techniques to be conducted.','CA-2(2).4','The organization being inspected/assessed selects and documents one or more security assessment techniques to be conducted. Techniques include in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment and performance/load testing, as well as any other techniques identified in CA-2 (2), CCI 1582. DoD has determined the other forms of security assessments are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the selected list of assessment techniques that are to be conducted to ensure the selections have been documented.'), ('002065','draft','2013-06-21','DISA FSO','policy','The organization defines the frequency at which to conduct security control assessments.','CA-2(2).5','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually.'), ('002066','draft','2013-06-21','DISA FSO','policy','The organization accepts the results of an assessment of the organization-defined information system performed by an organization-defined external organization when the assessment meets organization-defined requirements.','CA-2(3).1','The organization being inspected/assessed accepts the results of an assessment of the information system defined in CA-2 (3), CCI 2067 performed by external organization defined in CA-2 (3), CCI 2068 when the assessment meets requirements defined in CA-2 (3), CCI 2069. The organization must maintain records of acceptance or rejection of external organization assessment results.','The organization conducting the inspection/assessment obtains and examines a sampling of records of acceptance or rejection of external organization assessment results to ensure the organization being inspected/assessed accepts the results of an assessment of the information system defined in CA-2 (3), CCI 2067 performed by external organization defined in CA-2 (3), CCI 2068 when the assessment meets requirements defined in CA-2 (3), CCI 2069.'), ('002067','draft','2013-06-21','DISA FSO','policy','The organization defines the information systems for which they will accept the results of an assessment performed by an external organization.','CA-2(3).2','The organization being inspected/assessed defines and documents the information systems for which they will accept the results of an assessment performed by an external organization. DoD has determined the information systems are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems to ensure the organization being inspected/assessed defines the information systems for which they will accept the results of an assessment performed by an external organization. DoD has determined the information systems are not appropriate to define at the Enterprise level.'), ('002068','draft','2013-06-21','DISA FSO','policy','The organization defines the external organizations from which assessment results for organization-defined information systems will be accepted.','CA-2(3).3','The organization being inspected/assessed defines and documents the external organizations from which assessment results for organization-defined information systems will be accepted. DoD has determined the external organizations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented external organizations to ensure the organization being inspected/assessed defines the external organizations from which assessment results for organization-defined information systems will be accepted. DoD has determined the external organizations are not appropriate to define at the Enterprise level.'), ('002069','draft','2013-06-21','DISA FSO','policy','The organization defines the requirements the assessments for organization-defined information systems from organization-defined external organizations must meet.','CA-2(3).4','The organization being inspected/assessed defines and documents the requirements the assessments for organization-defined information systems from organization-defined external organizations must meet. DoD has determined the requirements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examine the documented requirements to ensure the organization being inspected/assessed defines the requirements the assessments for organization-defined information systems from organization-defined external organizations must meet. DoD has determined the requirements are not appropriate to define at the Enterprise level.'), ('002070','draft','2013-06-21','DISA FSO','policy','The organization^s security assessment plan describes the assessment team, and assessment roles and responsibilities.','CA-2.5','The organization being inspected/assessed lists their assessment team members and their associated assessment roles and responsibilities in the security assessment plan.','The organization conducting the inspection/assessment obtains and examines the security assessment plan to ensure the organization being inspected/assessed lists their assessment team members and their associated assessment roles and responsibilities in the security assessment plan.'), ('002071','draft','2013-06-21','DISA FSO','policy','The organization defines the individuals or roles to whom the results of the security control assessment are to be provided.','CA-2.10','DoD has defined the individuals or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the individuals or roles as at a minimum, the ISSO and ISSM.'), ('002072','draft','2013-06-21','DISA FSP','policy','The organization defines the unclassified, national security systems that are prohibited from directly connecting to an external network without the use of an organization-defined boundary protection device.','CA-3(1).2','DoD has defined the unclassified, national security systems as all unclassified NSS.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the unclassified, national security systems as all unclassified NSS.'), ('002073','draft','2013-06-21','DISA FSO','policy','The organization defines the boundary protection device to be used to connect organization-defined unclassified, national security systems to an external network.','CA-3(1).3','The organization being inspected/assessed defines and documents the boundary protection device to be used to connect organization-defined unclassified, national security systems to an external network. DoD has determined the boundary protection device is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented boundary protection device to ensure the organization being inspected/assessed defines the boundary protection device to be used to connect organization-defined unclassified, national security systems to an external network. DoD has determined the boundary protection device is not appropriate to define at the Enterprise level.'), ('002074','draft','2013-06-21','DISA FSO','policy','The organization defines the boundary protection device to be used for the direct connection of classified, national security system to an external network.','CA-3(2).2','The organization being inspected/assessed defines and documents the boundary protection device to be used for the direct connection of classified, national security system to an external network.\n\nDoD has determined the boundary protection device is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented boundary protection device to ensure the organization being inspected/assessed defines the boundary protection device to be used for the direct connection of classified, national security system to an external network.\n\nDoD has determined the boundary protection device is not appropriate to define at the Enterprise level.'), ('002075','draft','2013-06-21','DISA FSO','policy','The organization prohibits the direct connection of an organization-defined unclassified, non-national security system to an external network without the use of organization-defined boundary protection device.','CA-3(3).1','The organization being inspected/assessed does not connect any national security systems to an external network without the use of protection devices defined in CA-3 (3), CCI 2077.','The organization conducting the inspection/assessment obtains and examines network topology diagrams and examines the information system to ensure the organization being inspected/assessed does not connect any national security systems to an external network without the use of protection devices defined in CA-3 (3), CCI 2077.'), ('002076','draft','2013-06-21','DISA FSO','policy','The organization defines the unclassified, non-national security system that is prohibited from directly connecting to an external network without the use of an organization-defined boundary protection device.','CA-3(3).2','The organization being inspected/assessed defines and documents the unclassified, non-national security system that is prohibited from directly connecting to an external network without the use of an organization-defined boundary protection device. DoD has determined the unclassified, non-national security system is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented unclassified, non-national security system to ensure the organization being inspected/assessed defines the unclassified, non-national security system that is prohibited from directly connecting to an external network without the use of an organization-defined boundary protection device. DoD has determined the unclassified, non-national security system is not appropriate to define at the Enterprise level.'), ('002077','draft','2013-06-21','DISA FSO','policy','The organization defines the boundary protection device to be used to directly connect an organization-defined unclassified, non-national security system to an external network.','CA-3(3).3','The organization being inspected/assessed defines and documents the boundary protection device to be used to directly connect an organization-defined unclassified, non-national security system to an external network. DoD has determined the boundary protection device is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented boundary protection device to ensure the organization being inspected/assessed defines the boundary protection device to be used to directly connect an organization-defined unclassified, non-national security system to an external network. DoD has determined the boundary protection device is not appropriate to define at the Enterprise level.'), ('002078','draft','2013-06-21','DISA FSO','policy','The organization prohibits the direct connection of an organization-defined information system to a public network.','CA-3(4).1','The organization being inspected/assessed does not connect any information system defined in CA-3 (4), CCI 2079 to a public network.','The organization conducting the inspection/assessment obtains and examines network topology diagrams and examines the information system to ensure the organization being inspected/assessed does not connect any information system defined in CA-3 (4), CCI 2079 to a public network.'), ('002079','draft','2013-06-21','DISA FSO','policy','The organization defines the information system that is prohibited from directly connecting to a public network.','CA-3(4).2','The organization being inspected/assessed defines and documents the information system that is prohibited from directly connecting to a public network. DoD has determined the information system is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system to ensure the organization being inspected/assessed defines the information system that is prohibited from directly connecting to a public network. DoD has determined the information system is not appropriate to define at the Enterprise level.'), ('002080','draft','2013-06-21','DISA FSO','policy','The organization employs either an allow-all, deny-by-exception or a deny-all, permit-by-exception policy for allowing organization-defined information systems to connect to external information systems.','CA-3(5).1','The organization being inspected/assessed configures the information system to employ a deny-all, permit by exception policy for allowing any systems requiring external connectivity to connect to external information systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2080. DoD has defined the information systems as any systems requiring external connectivity.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ a deny-all, permit by exception policy for allowing any systems requiring external connectivity to connect to external information systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2080. DoD has defined the information systems as any systems requiring external connectivity.'), ('002081','draft','2013-06-21','DISA FSO','policy','The organization defines the information systems that employ either an allow-all, deny-by-exception or a deny-all, permit-by-exception policy for allowing connections to external information systems.','CA-3(5).2','DoD has defined the information systems as any systems requiring external connectivity.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information systems as any systems requiring external connectivity.'), ('002082','draft','2013-06-21','DISA FSO','policy','The organization selects either an allow-all, deny-by-exception or a deny-all, permit-by-exception policy for allowing organization-defined information systems to connect to external information systems.','CA-3(5).3','The organization being inspected/assessed selects deny-all, permit by exception policy for allowing any systems requiring external connectivity to connect to external information systems. DoD has defined the information systems as any systems requiring external connectivity.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed selects deny-all, permit by exception policy for allowing any systems requiring external connectivity to connect to external information systems. DoD has defined the information systems as any systems requiring external connectivity.'), ('002083','draft','2013-06-21','DISA FSO','policy','The organization reviews and updates Interconnection Security Agreements on an organization-defined frequency.','CA-3.5','The organization being inspected/assessed reviews and updates Interconnection Security Agreements at least annually. The organization must maintain an audit trail of reviews and updates. DoD has defined the frequency as at least annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates Interconnection Security Agreements at least annually. DoD has defined the frequency as at least annually.'), ('002084','draft','2013-06-21','DISA FSO','policy','The organization defines the frequency at which reviews and updates to the Interconnection Security Agreements must be conducted.','CA-3.6','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually.'), ('002085','draft','2013-06-21','DISA FSO','policy','The organization defines the level of independence the assessors or assessment teams must have to monitor the security controls in the information system on an ongoing basis.','CA-7(1).2','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002086','draft','2013-06-21','DISA FSO','policy','The organization employs trend analyses to determine if security control implementations, the frequency of continuous monitoring activities, and/or the types of activities used in the continuous monitoring process need to be modified based on empirical data.','CA-7(3).1','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002087','draft','2013-06-21','DISA FSO','policy','The organization establishes and defines the metrics to be monitored for the continuous monitoring program.','CA-7.2','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002088','draft','2013-06-21','DISA FSO','policy','The organization establishes and defines the frequencies for continuous monitoring.','CA-7.3','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002089','draft','2013-06-21','DISA FSO','policy','The organization establishes and defines the frequencies for assessments supporting continuous monitoring.','CA-7.4','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002090','draft','2013-06-21','DISA FSO','policy','The organization implements a continuous monitoring program that includes ongoing security status monitoring of organization-defined metrics in accordance with the organizational continuous monitoring strategy.','CA-7.6','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002091','draft','2013-06-21','DISA FSO','policy','The organization implements a continuous monitoring program that includes correlation and analysis of security-related information generated by assessments and monitoring.','CA-7.7','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002092','draft','2013-06-21','DISA FSO','policy','The organization implements a continuous monitoring program that includes response actions to address results of the analysis of security-related information.','CA-7.8','Future DoD-wide CM guidance to be published','Future DoD-wide CM guidance to be published'), ('002093','draft','2013-06-21','DISA FSO','policy','The organization conducts penetration testing in accordance with organization-defined frequency on organization-defined information systems or system components.','CA-8.1','The organization being inspected/assessed documents and implements a process to conduct penetration testing in accordance with the frequency defined in CA-8, CCI 2094 on information systems or system components defined in CA-8, CCI 2095. The organization must maintain a record of penetration test results.','The organization conducting the inspection/assessment obtains and examines the documented process as well as a sampling of the penetration test results to ensure the organization being inspected/assessed conducts penetration testing in accordance with the frequency defined in CA-8, CCI 2094 on information systems or system components defined in CA-8, CCI 2095.'), ('002094','draft','2013-06-21','DISA FSO','policy','The organization defines the frequency for conducting penetration testing on organization-defined information systems or system components.','CA-8.2','The organization being inspected/assessed defines and documents the frequency for conducting penetration testing on organization-defined information systems or system components. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency for conducting penetration testing on organization-defined information systems or system components. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('002095','draft','2013-06-21','DISA FSO','policy','The organization defines the information systems or system components on which penetration testing will be conducted.','CA-8.3','The organization being inspected/assessed defines and documents the information systems or system components on which penetration testing will be conducted. DoD has determined the information systems or system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems or system components to ensure the organization being inspected/assessed defines the information systems or system components on which penetration testing will be conducted. DoD has determined the information systems or system components are not appropriate to define at the Enterprise level.'), ('002096','draft','2013-06-21','DISA FSO','policy','The organization employs an independent penetration agent or penetration team to perform penetration testing on the information system or system components.','CA-8(1).1','The organization being inspected/assessed employs an independent penetration agent or penetration team to perform penetration testing on the information system or system components. The organization must maintain a record of penetration test results.','The organization conducting the inspection/assessment obtains and examines a sampling of the penetration test results to ensure the organization being inspected/assessed employs an independent penetration agent or penetration team to perform penetration testing on the information system or system components.'), ('002097','draft','2013-06-21','DISA FSP','policy','The organization defines red team exercises to simulate attempts by adversaries to compromise organizational information systems.','CA-8(2).1','The organization being inspected/assessed defines and documents red team exercises to simulate attempts by adversaries to compromise organizational information systems. DoD has determined the red team exercises are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented red team exercises to ensure the organization being inspected/assessed defines red team exercises to simulate attempts by adversaries to compromise organizational information systems. DoD has determined the red team exercises are not appropriate to define at the Enterprise level.'), ('002098','draft','2013-06-21','DISA FSO','policy','The organization defines rules of engagement for red team exercises to simulate attempts by adversaries to compromise organizational information systems.','CA-8(2).2','The organization being inspected/assessed defines and documents rules of engagement for red team exercise to simulate attempts by adversaries to compromise organizational information systems. DoD has determined the rules of engagement are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented rules of engagement to ensure the organization being inspected/assessed defines the rules of engagement for red team exercise to simulate attempts by adversaries to compromise organizational information systems. DoD has determined the rules of engagement are not appropriate to define at the Enterprise level.'), ('002099','draft','2013-06-21','DISA FSO','policy','The organization employs organization-defined red team exercises to simulate attempts by adversaries to compromise organizational information systems in accordance with organization-defined rules of engagement.','CA-8(2).3','The organization being inspected/assessed employs red team exercises defined in CA-8 (2), CCI 2097 to simulate attempts by adversaries to compromise organizational information systems in accordance with rules of engagement defined in CA-8 (2), CCI 2098. The organization must maintain a record of red team exercises and results.','The organization conducting the inspection/assessment obtains and examines the record of red team exercises and results to ensure the organization being inspected/assessed employs red team exercises defined in CA-8 (2), CCI 2097 to simulate attempts by adversaries to compromise organizational information systems in accordance with rules of engagement defined in CA-8 (2), CCI 2098.'), ('002100','draft','2013-06-21','DISA FSO','policy','The information system performs security compliance checks on constituent components prior to the establishment of the internal connection.','CA-9(1).1','The organization being inspected/assessed documents and implements a process to perform security compliance checks on constituent components prior to the establishment of the internal connection. The organization must maintain a record of security compliance checks.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of security compliance checks to ensure the organization being inspected/assessed performs security compliance checks on constituent components prior to the establishment of the internal connection.'), ('002101','draft','2013-06-21','DISA FSO','policy','The organization authorizes internal connections of organization-defined information system components or classes of components to the information system.','CA-9.1','The organization being inspected/assessed authorizes internal connections of information system components defined in CA-9, CCI 2102 or classes of components to the information system. The organization must maintain an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed authorizes internal connections of information system components defined in CA-9, CCI 2102 or classes of components to the information system.'), ('002102','draft','2013-06-21','DISA FSO','policy','The organization defines the information system components or classes of components that are authorized internal connections to the information system.','CA-9.2','The organization being inspected/assessed defines and documents the information system components or classes of components that that are authorized internal connections to the information system. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components or classes of components that that are authorized internal connections to the information system. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002103','draft','2013-06-21','DISA FSO','policy','The organization documents, for each internal connection, the interface characteristics.','CA-9.3','The organization being inspected/assessed documents, for each internal connection, the interface characteristics.','The organization conducting the inspection/assessment obtains and examines the documented interface characteristics as well as the network topology to ensure the organization being inspected/assessed documents, for each internal connection, the interface characteristics.'), ('002104','draft','2013-06-21','DISA FSO','policy','The organization documents, for each internal connection, the security requirements.','CA-9.4','The organization being inspected/assessed documents, for each internal connection, the security requirements.','The organization conducting the inspection/assessment obtains and examines the documented security requirements as well as the network topology to ensure the organization being inspected/assessed documents, for each internal connection, the security requirements.'), ('002105','draft','2013-06-21','DISA FSO','policy','The organization documents, for each internal connection, the nature of the information communicated.','CA-9.5','The organization being inspected/assessed documents, for each internal connection, the nature of the information communicated.','The organization conducting the inspection/assessment obtains and examines the documented nature of information communication as well as the network topology to ensure the organization being inspected/assessed documents, for each internal connection, the nature of the information communicated.'), ('002106','draft','2013-06-24','DISA FSO','policy','The organization documents the access control policy.',NULL,NULL,NULL), ('002107','draft','2013-06-24','DISA FSO','policy','The organization defines the personnel or roles to be recipients of the access control policy necessary to facilitate the implementation of the access control policy and associated access controls.','AC-1.1','DoD has defined the personnel or roles as all personnel.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all personnel.'), ('002108','draft','2013-06-24','DISA FSO','policy','The organization defines the personnel or roles to be recipients of the procedures necessary to facilitate the implementation of the access control policy and associated access controls.','AC-1.2','DoD has defined the personnel or roles as all personnel.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all personnel.'), ('002109','draft','2013-06-24','DISA FSO','policy','The organization documents procedures to facilitate the implementation of the access control policy and associated access controls.',NULL,NULL,NULL), ('002110','draft','2013-06-24','DISA FSO','policy','The organization defines the information system account types that support the organizational missions/business functions.','AC-2.1','The organization being inspected/assessed defines and documents the information system account types that support the organizational missions/business functions. DoD has determined the information system account types are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system account types to ensure the organization being inspected/assessed defines the information system account types that support the organizational missions/business functions. DoD has determined the information system account types are not appropriate to define at the Enterprise level.'), ('002111','draft','2013-06-24','DISA FSO','policy','The organization identifies and selects the organization-defined information system account types of information system accounts which support organizational missions/business functions.','AC-2.2','The account types are defined per AC-2, CCI 2110.','The account types are defined per AC-2, CCI 2110.'), ('002112','draft','2013-06-24','DISA FSO','policy','The organization assigns account managers for information system accounts.','AC-2.3','The organization being inspected/assessed documents personnel responsible for the management of system accounts.','The organization conducting the inspection/assessment obtains and examines the documented appointment of management personnel to ensure that the organization being inspected/assessed has documented personnel responsible for the management of system accounts.'), ('002113','draft','2013-06-24','DISA FSO','policy','The organization establishes conditions for role membership.','AC-2.5','The organization being inspected/assessed documents conditions for adding accounts as members of roles.','The organization conducting the inspection/assessment obtains and examines the documented conditions for adding accounts as members of roles to ensure that the conditions are established.'), ('002114','deprecated','2013-06-24','DISA FSO','policy','The organization specifies authorized users of the information system for each account.',NULL,NULL,NULL), ('002115','draft','2013-06-24','DISA FSO','policy','The organization specifies authorized users of the information system.','AC-2.6','The organization being inspected/assessed documents authorized users of the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of authorized users for a sampling of information system accounts to ensure that the authorized users are specified.'), ('002116','draft','2013-06-24','DISA FSO','policy','The organization specifies authorized group membership on the information system.','AC-2.7','The organization being inspected/assessed documents authorized group membership on the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of authorized groups for a sampling of information system accounts to ensure that the authorized groups are specified.'), ('002117','draft','2013-06-24','DISA FSO','policy','The organization specifies authorized role membership on the information system.','AC-2.8','The organization being inspected/assessed documents authorized role membership on the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of authorized roles for a sampling of information system accounts to ensure that the authorized roles are specified'), ('002118','draft','2013-06-24','DISA FSO','policy','The organization specifies access authorizations (i.e., privileges) for each account on the information system.','AC-2.9','The organization being inspected/assessed documents access authorizations (i.e., privileges) for each account on the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of access authorizations for a sampling of information system accounts to ensure that the access authorizations are specified.'), ('002119','draft','2013-06-24','DISA FSO','policy','The organization specifies other attributes for each account on the information system.','AC-2.10','The organization being inspected/assessed documents other attributes for each account on the information system.','The organization conducting the inspection/assessment obtains and examines the documented list of other attributes for a sampling of information system accounts to ensure that other attributes are specified.'), ('002120','draft','2013-06-24','DISA FSO','policy','The organization defines the personnel or roles authorized to approve the creation of information system accounts.','AC-2.12','DoD has defined the personnel or roles as the ISSM or ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSM or ISSO.'), ('002121','draft','2013-06-24','DISA FSO','policy','The organization defines the procedures or conditions to be employed when creating, enabling, modifying, disabling, and removing information system accounts.','AC-2.14','The organization being inspected/assessed defines and documents the procedures or conditions to be employed when creating, enabling, modifying, disabling, and removing information system accounts. DoD has determined the procedures or conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented procedures or conditions to ensure the organization being inspected/assessed defines the procedures or conditions to be employed when creating, enabling, modifying, disabling, and removing information system accounts. DoD has determined the procedures or conditions are not appropriate to define at the Enterprise level.'), ('002122','draft','2013-06-24','DISA FSO','policy','The organization monitors the use of information system accounts.','AC-2.15','The organization being inspected/assessed implements a process to monitor the use of information system accounts.','The organization conducting the inspection/assessment obtains and examines the audit trail to ensure that the organization being inspected/assessed implements a process to monitor the use of information system accounts.'), ('002123','draft','2013-06-24','DISA FSO','policy','The organization notifies account managers when accounts are no longer required.','AC-2.16','The organization being inspected/assessed implements a process to notify account managers when accounts are no longer required. The organization being inspected/assessed maintains an audit trail of notifications.','The organization conducting the inspection/assessment obtains and examines the audit trail of notifications to ensure the organization being inspected/assessed implements a process to notify account managers when accounts are no longer required.'), ('002124','draft','2013-06-24','DISA FSO','policy','The organization notifies account managers when users are terminated or transferred.','AC-2.17','The organization being inspected/assessed implements a process to notify account managers when users are terminated or transferred. The organization being inspected/assessed maintains an audit trail of notifications.','The organization conducting the inspection/assessment obtains and examines the audit trail of notifications to ensure the organization being inspected/assessed implements a process to notify account managers when users are terminated or transferred.'), ('002125','draft','2013-06-24','DISA FSO','policy','The organization notifies account managers when individual information system usage or need-to-know changes.','AC-2.18','The organization being inspected/assessed implements a process to notify account managers when individual information system usage or need-to-know changes. The organization being inspected/assessed maintains an audit trail of notifications.','The organization conducting the inspection/assessment obtains and examines the audit trail of notifications to ensure the organization being inspected/assessed implements a process to notify account managers when individual information system usage or need-to-know changes.'), ('002126','draft','2013-06-24','DISA FSO','policy','The organization authorizes access to the information system based on a valid access authorization.','AC-2.19','The organization being inspected/assessed authorizes access to the information system based on the access authorization process. The organization being inspected/assessed maintains an audit trail of approved access.','The organization conducting the inspection/assessment obtains and examines the audit trail of approved access to ensure the organization being inspected/assessed authorizes access to the information system based on the access authorization process.'), ('002127','draft','2013-06-24','DISA FSO','policy','The organization authorizes access to the information system based on intended system usage.','AC-2.20','The organization being inspected/assessed authorizes access to the information system based on intended system usage. The organization being inspected/assessed maintains an audit trail of approved access.','The organization conducting the inspection/assessment obtains and examines the audit trail of approved access to ensure the organization being inspected/assessed authorizes access to the information system based on intended system usage.'), ('002128','draft','2013-06-24','DISA FSO','policy','The organization authorizes access to the information system based on other attributes as required by the organization or associated missions/business functions.','AC-2.21','The organization being inspected/assessed authorizes access to the information system based on other attributes as required by the organization or associated missions/business functions. The organization being inspected/assessed maintains an audit trail of approved access.','The organization conducting the inspection/assessment obtains and examines the audit trail of approved access to ensure the organization being inspected/assessed authorizes access to the information system based on other attributes as required by the organization or associated missions/business functions.'), ('002129','draft','2013-06-24','DISA FSO','policy','The organization establishes a process for reissuing shared/group account credentials (if deployed) when individuals are removed from the group.','AC-2.24','The organization being inspected/assessed includes in the account management procedures a process for reissuing shared/group account credentials (if deployed) when individuals are removed from the group.','The organization conducting the inspection/assessment obtains and examines the account management procedures to ensure the organization being inspected/assessed includes in the account management procedures a process for reissuing shared/group account credentials (if deployed) when individuals are removed from the group.'), ('002130','draft','2013-06-24','DISA FSO','technical','The information system automatically audits account enabling actions.','AC-2(4).9','The organization being inspected/assessed configures the information system to automatically audit account enabling actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2130.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically audit account enabling actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2130.'), ('002131','draft','2013-06-24','DISA FSO','policy','The organization defines the personnel or roles to be notified on account creation, modification, enabling, disabling, and removal actions.','AC-2(4).10','DoD has defined the personnel or roles as the system administrator and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the system administrator and ISSO.'), ('002132','draft','2013-06-24','DISA FSO','technical','The information system notifies organization-defined personnel or roles for account enabling actions.','AC-2(4).11','The organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account enabling actions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2132. DoD has defined the personnel or roles as the system administrator and ISSO.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the system administrator and ISSO for account enabling actions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2132. DoD has defined the personnel or roles as the system administrator and ISSO.'), ('002133','draft','2013-06-24','DISA FSO ','policy','The organization defines other conditions when users are required to log out.','AC-2(5).1','The organization being inspected/assessed defines and documents the other conditions when users are required to log out. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure they have been defined. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002134','draft','2013-06-24','DISA FSO','policy','The organization defines a list of dynamic privilege management capabilities to be implemented by the information system.','AC-2(6).1','The organization being inspected/assessed defines and documents a list of dynamic privilege management capabilities to be implemented by the information system. DoD has determined the list is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented list to ensure the dynamic privilege management capabilities have been defined. DoD has determined the list is not appropriate to define at the Enterprise level.'), ('002135','draft','2013-06-24','DISA FSO','technical','The information system implements the organization-defined list of dynamic privilege management capabilities.','AC-2(6).2','The organization being inspected/assessed configures the information system to implement the list of dynamic privilege management capabilities defined in AC-2 (6), CCI 2134. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2135.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement the list of dynamic privilege management capabilities defined in AC-2 (6), CCI 2134. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2135.'), ('002136','draft','2013-06-24','DISA FSO','policy','The organization defines the actions to be taken when privileged role assignments are no longer appropriate.','AC-2(7).4','DoD has defined the actions as disables (or revokes) privileged user account.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the actions as disables (or revokes) privileged user account.'), ('002137','draft','2013-06-24','DISA FSO','policy','The organization takes organization-defined actions when privileged role assignments are no longer appropriate.','AC-2(7).5','The organization being inspected/assessed documents and implements a process to disable (or revoke) the privileged user account when privileged role assignments are no longer appropriate. The organization must maintain an audit trail of the actions taken. DoD has defined the actions as disables (or revokes) privileged user account.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of actions taken to ensure the organization being inspected/assessed disables (or revokes) the privileged user account when privileged role assignments are no longer appropriate.\nDoD has defined the actions as disables (or revokes) privileged user account.'), ('002138','draft','2013-06-24','DISA FSO','policy','The organization defines the information system accounts that can be dynamically created.','AC-2(8).1','The organization being inspected/assessed defines and documents the information system accounts that can be dynamically created. DoD has determined the information system accounts are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system accounts to ensure they have been defined. DoD has determined the information system accounts are not appropriate to define at the Enterprise level.'), ('002139','draft','2013-06-24','DISA FSO','technical','The information system creates organization-defined information system accounts dynamically.','AC-2(8).2','The organization being inspected/assessed configures the information system to dynamically create information system accounts defined in AC-2 (8), CCI 2138. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2139.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to dynamically create information system accounts defined in AC-2 (8), CCI 2138. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2139.'), ('002140','draft','2013-06-24','DISA FSO ','policy','The organization defines the conditions for establishing shared/group accounts.','AC-2(9).1','The organization being inspected/assessed defines and documents the conditions for establishing shared/group accounts. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure they have been defined. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002141','draft','2013-06-24','DISA FSO','policy','The organization only permits the use of shared/group accounts that meet organization-defined conditions for establishing shared/group accounts.','AC-2(9).2','The organization being inspected/assessed only permits the use of shared/group accounts that meet the conditions for establishing shared/group accounts defined in AC-2 (9), CCI 2140.','The organization conducting the inspection/assessment examines the shared/group accounts to ensure the organization being inspected/assessed only permits the use of shared/group accounts that meet the conditions for establishing shared/group accounts defined in AC-2 (9), CCI 2140.'), ('002142','draft','2013-06-24','DISA FSO','technical','The information system terminates shared/group account credentials when members leave the group.','AC-2(10).1','The organization being inspected/assessed configures the information system to terminate shared/group account credentials when members leave the group. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2142.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to terminate shared/group account credentials when members leave the group. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2142.'), ('002143','draft','2013-06-24','DISA FSO','policy','The organization defines the circumstances and/or usage conditions that are to be enforced for organization-defined information system accounts.','AC-2(11).1','The organization being inspected/assessed defines and documents the circumstances and/or usage conditions that are to be enforced for organization-defined information system accounts. DoD has determined the circumstances and/or usage conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances and/or usage conditions to ensure they have been defined. DoD has determined the circumstances and/or usage conditions are not appropriate to define at the Enterprise level.'), ('002144','draft','2013-06-24','DISA FSO ','policy','The organization defines the information system accounts that are to be subject to the enforcement of organization-defined circumstances and/or usage conditions.','AC-2(11).2','The organization being inspected/assessed defines and documents the information system accounts that are to be subject to the enforcement of organization-defined circumstances and/or usage conditions. DoD has determined the information system accounts are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system accounts to ensure they have been defined. DoD has determined the information system accounts are not appropriate to define at the Enterprise level.'), ('002145','draft','2013-06-24','DISA FSO','technical','The information system enforces organization-defined circumstances and/or usage conditions for organization-defined information system accounts.','AC-2(11).3','The organization being inspected/assessed configures the information system to enforce the circumstances and/or usage conditions defined in AC-2 (11), CCI 2143 for information system accounts defined in AC-2 (11), CCI 2144. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2145.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the circumstances and/or usage conditions defined in AC-2 (11), CCI 2143 for information system accounts defined in AC-2 (11), CCI 2144. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2145.'), ('002146','draft','2013-06-24','DISA FSO','policy','The organization defines atypical usage for which the information system accounts are to be monitored.','AC-2(12).1','The organization being inspected/assessed defines and documents atypical usage for which the information system accounts are to be monitored. DoD has determined atypical usage is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented atypical usage to ensure it has been defined. DoD has determined atypical usage is not appropriate to define at the Enterprise level.'), ('002147','draft','2013-06-24','DISA FSO','policy','The organization monitors information system accounts for organization-defined atypical use.','AC-2(12).2','The organization being inspected/assessed monitors information system accounts for atypical use defined in AC-2 (12), CCI 2146. The organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the audit trail of monitoring to ensure the organization being inspected/assessed monitors information system accounts for atypical use defined in AC-2 (12), CCI 2146.'), ('002148','draft','2013-06-24','DISA FSO','policy','The organization defines the personnel or roles to whom atypical usage of information system accounts are to be reported.','AC-2(12).3','DoD has defined the personnel or roles as at a minimum, the ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\nDoD has defined the personnel or roles as at a minimum, the ISSO.'), ('002149','draft','2013-06-24','DISA FSO','policy','The organization reports atypical usage of information system accounts to organization-defined personnel or roles.','AC-2(12).4','The organization being inspected/assessed documents and implements a process to report atypical usage defined in AC-2 (12), CCI 2146 of information system accounts to at a minimum, the ISSO.\nThe organization must maintain an audit trail of reporting.\nDoD has defined the personnel or roles as at a minimum, the ISSO.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reporting to ensure the organization being inspected/assessed reports atypical usage defined in AC-2 (12), CCI 2146 of information system accounts to at a minimum, the ISSO.\nDoD has defined the personnel or roles as at a minimum, the ISSO.'), ('002150','draft','2013-06-24','DISA FSO','policy','The organization defines the time period within which the accounts of users posing a significant risk are to be disabled after discovery of the risk.','AC-2(13).1','DoD has defined the time period as 30 minutes unless otherwise defined in formal organizational policy. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 30 minutes unless otherwise defined in formal organizational policy. '), ('002151','draft','2013-06-24','DISA FSO','policy','The organization disables accounts of users posing a significant risk within an organization-defined time period of discovery of the risk.','AC-2(13).2','The organization being inspected/assessed documents and implements a process to disable accounts of users posing a significant risk within 30 minutes unless otherwise defined in formal organizational policy. DoD has defined the time period as 30 minutes unless otherwise defined in formal organizational policy. ','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed disables accounts of users posing a significant risk within 30 minutes unless otherwise defined in formal organizational policy. DoD has defined the time period as 30 minutes unless otherwise defined in formal organizational policy. '), ('002152','draft','2013-06-24','DISA FSO','policy','The organization defines other actions necessary for which dual authorization is to be enforced.','AC-3(2).3','The organization being inspected/assessed defines and documents the other actions necessary for which dual authorization is to be enforced. DoD has determined the other actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented actions to ensure they have been defined. DoD has determined the other actions are not appropriate to define at the Enterprise level.'), ('002153','draft','2013-06-24','DISA FSO','policy','The organization defines the mandatory access control policies that are to be enforced over all subjects and objects.','AC-3(3).1','The organization being inspected/assessed defines and documents the mandatory access control policies that are to be enforced over all subjects and objects. DoD has determined the mandatory access control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented mandatory access control policies to ensure they have been defined. DoD has determined the mandatory access control policies are not appropriate to define at the Enterprise level.'), ('002154','draft','2013-06-24','DISA FSO','policy','The mandatory access control policy specifies that the policy is uniformly enforced across all subjects and objects within the boundary of the information system.','AC-3(3).2','The organization being inspected/assessed configures the information system to uniformly enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 across all subjects and objects within the boundary of the information system For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2154.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to uniformly enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 across all subjects and objects within the boundary of the information system For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2154.'), ('002155','draft','2013-06-24','DISA FSO','policy','The mandatory access control policy specifies that a subject that has been granted access to information is constrained from passing the information to unauthorized subjects or objects.','AC-3(3).3','The organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from passing the information to unauthorized subjects or objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2155.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from passing the information to unauthorized subjects or objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2155.'), ('002156','draft','2013-06-24','DISA FSO','policy','The mandatory access control policy specifies that a subject that has been granted access to information is constrained from granting its privileges to other subjects.','AC-3(3).4','The organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from granting its privileges to other subjects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2156.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from granting its privileges to other subjects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2156.'), ('002157','draft','2013-06-24','DISA FSO','policy','The mandatory access control policy specifies that a subject that has been granted access to information is constrained from changing one or more security attributes on subjects, objects, the information system, or information system components.','AC-3(3).5','The organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from changing one or more security attributes on subjects, objects, the information system, or information system components. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2157.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from changing one or more security attributes on subjects, objects, the information system, or information system components. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2157.'), ('002158','draft','2013-06-24','DISA FSO','policy','The mandatory access control policy specifies that a subject that has been granted access to information is constrained from choosing the security attributes to be associated with newly created or modified objects.','AC-3(3).6','The organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from choosing the security attributes to be associated with newly created or modified objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2158.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from choosing the security attributes to be associated with newly created or modified objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2158.'), ('002159','draft','2013-06-24','DISA FSO ','policy','The mandatory access control policy specifies that a subject that has been granted access to information is constrained from choosing the attribute values to be associated with newly created or modified objects.','AC-3(3).7','The organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from choosing the attribute values to be associated with newly created or modified objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2159.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from choosing the attribute values to be associated with newly created or modified objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2159.'), ('002160','draft','2013-06-24','DISA FSO','policy','The mandatory access control policy specifies that a subject that has been granted access to information is constrained from changing the rules governing access control.','AC-3(3).8','The organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from changing the rules governing access control. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2160.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the mandatory access control policies defined in AC-3 (3), CCI 2153 which specifies that a subject that has been granted access to information is constrained from changing the rules governing access control. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2160.'), ('002161','draft','2013-06-24','DISA FSO','policy','The organization defines subjects which may explicitly be granted organization-defined privileges such that they are not limited by some or all of the mandatory access control constraints.','AC-3(3).9','The organization being inspected/assessed defines and documents subjects which may explicitly be granted organization-defined privileges such that they are not limited by some or all of the mandatory access control constraints. DoD has determined that the subjects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented subjects to ensure they have been defined. DoD has determined that the subjects are not appropriate to define at the Enterprise level.'), ('002162','draft','2013-06-24','DISA FSO','policy','The organization defines the privileges that may explicitly be granted to organization-defined subjects such that they are not limited by some or all of the mandatory access control constraints.','AC-3(3).10','The organization being inspected/assessed defines and documents the privileges that may explicitly be granted to organization-defined subjects such that they are not limited by some or all of the mandatory access control constraints. DoD has determined the privileges are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented privileges to ensure they have been defined. DoD has determined the privileges are not appropriate to define at the Enterprise level.'), ('002163','draft','2013-06-24','DISA FSO','policy','The organization defines the discretionary access control policies the information system is to enforce over subjects and objects.','AC-3(4).1','The organization being inspected/assessed defines and documents the discretionary access control policies the information system is to enforce over subjects and objects. DoD has determined that the discretionary access control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented access control policies to ensure they have been defined. DoD has determined that the discretionary access control policies are not appropriate to define at the Enterprise level.'), ('002164','draft','2013-06-24','DISA FSO','policy','The organization specifies in the discretionary access control policies that a subject that has been granted access to information can do one or more of the following: pass the information to any other subjects or objects; grant its privileges to other subjects; change security attributes on subjects, objects, the information system, or the information system^s components; choose the security attributes to be associated with newly created or revised objects; and/or change the rules governing access control.','AC-3(4).2','The organization being inspected/assessed documents the discretionary access control policies that a subject which has been granted access to information can do one or more of the following: pass the information to any other subjects or objects; grant its privileges to other subjects; change security attributes on subjects, objects, the information system, or the information systems components; choose the security attributes to be associated with newly created or revised objects; and/or change the rules governing access control.','The organization conducting the inspection/assessment obtains and examines the documented discretionary access control policies to ensure the organization being inspected/assessed specifies that a subject which has been granted access to information can do one or more of the following: pass the information to any other subjects or objects; grant its privileges to other subjects; change security attributes on subjects, objects, the information system, or the information systems components; choose the security attributes to be associated with newly created or revised objects; and/or change the rules governing access control.'), ('002165','draft','2013-06-24','DISA FSO','technical','The information system enforces organization-defined discretionary access control policies over defined subjects and objects.','AC-3(4).3','The organization being inspected/assessed configures the information system to enforce the discretionary access control policies defined in AC-3 (4), CCI 2163 over defined subjects and objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2165.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the discretionary access control policies defined in AC-3 (4), CCI 2163 over defined subjects and objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2165.'), ('002166','draft','2013-06-24','DISA FSO','policy','The organization defines the role-based access control policies the information system is to enforce over all subjects and objects.','AC-3(7).1','The organization being inspected/assessed defines and documents the role-based access control policies the information system is to enforce over all subjects and objects.','The organization conducting the inspection/assessment obtains and examines the documented role-based access control policies to ensure the organization being inspected/assessed defines the role-based access control policies the information system is to enforce over all subjects and objects.'), ('002167','draft','2013-06-24','DISA FSO ','policy','The organization defines the subjects over which the information system will enforce a role-based access control policy.','AC-3(7).2','The organization being inspected/assessed defines and documents the subjects over which the information system will enforce a role-based access control policy.','The organization conducting the inspection/assessment obtains and examines the documented subjects to ensure the organization being inspected/assessed defines the subjects over which the information system will enforce a role-based access control policy.'), ('002168','draft','2013-06-24','DISA FSO','policy','The organization defines the objects over which the information system will enforce a role-based access control policy.','AC-3(7).3','The organization being inspected/assessed defines and documents the objects over which the information system will enforce a role-based access control policy.','The organization conducting the inspection/assessment obtains and examines the documented objects to ensure the organization being inspected/assessed defines the objects over which the information system will enforce a role-based access control policy.'), ('002169','draft','2013-06-24','DISA FSO','technical','The information system enforces a role-based access control policy over defined subjects and objects.','AC-3(7).4','The organization being inspected/assessed configures the information system to enforce a roles-based access control policy over defined subjects and objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2169.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce a roles-based access control policy over defined subjects and objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2169.'), ('002170','draft','2013-06-24','DISA FSO','policy','The information system controls access based upon organization-defined roles and users authorized to assume such roles.','AC-3(7).5','The organization being inspected/assessed configures the information system to control access based upon the roles and users defined in AC-3 (7), CCIs 2173 and 2174 authorized to assume such roles. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2170.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to control access based upon the roles and users defined in AC-3 (7), CCIs 2173 and 2174 authorized to assume such roles. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2170.'), ('002171','deprecated','2013-06-24','DISA FSO','technical','The information system enforces a role-based access control policy over organization-defined subjects.',NULL,NULL,NULL), ('002172','deprecated','2013-06-24','DISA FSO ','technical','The information system enforces a role-based access control policy over organization-defined objects.',NULL,NULL,NULL), ('002173','draft','2013-06-24','DISA FSO','policy','The organization defines the roles for which the information system will control access based upon the organization-defined role-based access control policy.','AC-3(7).6','The organization being inspected/assessed defines and documents the roles the information system will control access based upon the organization-defined role-based access control policy. DoD has determined the roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented roles to ensure the organization being inspected/assessed defines the roles the information system will control access based upon the organization-defined role-based access control policy. DoD has determined the roles are not appropriate to define at the Enterprise level.'), ('002174','draft','2013-06-24','DISA FSO','policy','The organization defines the users for which the information system will control access based upon the organization-defined role-based access control policy.','AC-3(7).7','The organization being inspected/assessed defines and documents the users the information system will control access based upon the organization-defined role-based access control policy. DoD has determined the users are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented roles to ensure the organization being inspected/assessed defines the users the information system will control access based upon the organization-defined role-based access control policy. DoD has determined the users are not appropriate to define at the Enterprise level.'), ('002175','deprecated','2013-06-24','DISA FSO','technical','The information system controls access based upon organization-defined roles authorized to assume such roles, employing the organization-defined role-based access control policy.',NULL,NULL,NULL), ('002176','deprecated','2013-06-24','DISA FSO','technical','The information system controls access based upon organization-defined users authorized to assume such roles, employing the organization-defined role-based access control policy.',NULL,NULL,NULL), ('002177','draft','2013-06-24','DISA FSO','policy','The organization defines the rules which will govern the timing of revocation of access authorizations.','AC-3(8).1','The organization being inspected/assessed defines and documents the rules which will govern the timing of revocation of access authorizations. DoD has determined the rules are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented rules to ensure the organization being inspected/assessed defines the rules which will govern the timing of revocation of access authorizations. DoD has determined the rules are not appropriate to define at the Enterprise level.'), ('002178','draft','2013-06-24','DISA FSO','technical','The information system enforces the revocation of access authorizations resulting from changes to the security attributes of subjects based on organization-defined rules governing the timing of revocations of access authorizations.','AC-3(8).2','The organization being inspected/assessed configures the information system to enforce the revocation of access authorizations resulting from changes to the security attributes of subjects based on the rules defined in AC-3 (8), CCI 2177 governing the timing of revocations of access authorizations. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2178.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the revocation of access authorizations resulting from changes to the security attributes of subjects based on the rules defined in AC-3 (8), CCI 2177 governing the timing of revocations of access authorizations. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2178.'), ('002179','draft','2013-06-24','DISA FSO','technical','The information system enforces the revocation of access authorizations resulting from changes to the security attributes of objects based on organization-defined rules governing the timing of revocations of access authorizations.','AC-3(8).3','The organization being inspected/assessed configures the information system to enforce the revocation of access authorizations resulting from changes to the security attributes of objects based on the rules defined in AC-3 (8), CCI 2177 governing the timing of revocations of access authorizations. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2179.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the revocation of access authorizations resulting from changes to the security attributes of objects based on the rules defined in AC-3 (8), CCI 2177 governing the timing of revocations of access authorizations. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2179.'), ('002180','draft','2013-06-24','DISA FSO','policy','The organization defines the security safeguards the organization-defined information system or system component is to provide to protect information released outside the established system boundary.','AC-3(9).1','The organization being inspected/assessed defines and documents the security safeguards the organization-defined information system or system component is to provide to protect information released outside the established system boundary. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards the organization-defined information system or system component is to provide to protect information released outside the established system boundary. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002181','draft','2013-06-24','DISA FSO','policy','The organization defines information systems or system components that are to provide organization-defined security safeguards to protect information received outside the established system boundary.','AC-3(9).2','The organization being inspected/assessed defines and documents the information systems or system components that are to provide organization-defined security safeguards to protect information received outside the established system boundary. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems or system components to ensure the organization being inspected/assessed defines the information systems or system components that are to provide organization-defined security safeguards to protect information received outside the established system boundary. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002182','draft','2013-06-24','DISA FSO','policy','The information system does not release information outside of the established system boundary unless the receiving organization-defined information system or system component provides organization-defined security safeguards.','AC-3(9).3','The organization being inspected/assessed configures the information system to not release information outside of the established system boundary unless the receiving information system or system component defined in AC-3 (9), CCI 2181 provides security safeguards defined in AC-3 (9), CCI 2180. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2182.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to not release information outside of the established system boundary unless the receiving information system or system component defined in AC-3 (9), CCI 2181 provides security safeguards defined in AC-3 (9), CCI 2180. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2182.'), ('002183','draft','2013-06-24','DISA FSO ','policy','The organization defines the security safeguards to be used to validate the appropriateness of the information designated for release.','AC-3(9).4','The organization being inspected/assessed defines and documents the security safeguards to be used to validate the appropriateness of the information designated for release. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be used to validate the appropriateness of the information designated for release. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002184','draft','2013-06-24','DISA FSO','policy','The information system does not release information outside of the established system boundary unless organization-defined security safeguards are used to validate the appropriateness of the information designated for release.','AC-3(9).5','The organization being inspected/assessed configures the information system to not release information outside of the established system boundary unless security safeguards defined in AC-3 (9), CCI 2183 are used to validate the appropriateness of the information designated for release. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2184.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to not release information outside of the established system boundary unless security safeguards defined in AC-3 (9), CCI 2183 are used to validate the appropriateness of the information designated for release. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2184.'), ('002185','draft','2013-06-24','DISA FSO','policy','The organization defines the conditions on which it will employ an audited override of automated access control mechanisms.','AC-3(10).1','The organization being inspected/assessed defines and documents the conditions in which it will employ an audited override of automated access control mechanisms. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure the organization being inspected/assessed defines the conditions in which it will employ an audited override of automated access control mechanisms. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002186','draft','2013-06-24','DISA FSO','technical','The organization employs an audited override of automated access control mechanisms under organization-defined conditions.','AC-3(10).2','The organization being inspected/assessed configures the information system to employ an audited override of automated access control mechanisms under conditions defined in AC-3 (10), CCI 2185. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2186.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ an audited override of automated access control mechanisms under conditions defined in AC-3 (10), CCI 2185. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2186.'), ('002187','draft','2013-06-24','DISA FSO','policy','The organization defines the security attributes to be used to enforce organization-defined information flow control policies.','AC-4(1).1','The organization being inspected/assessed defines and documents the security attributes to be used to enforce organization-defined information flow control policies. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines the security attributes to be used to enforce organization-defined information flow control policies. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002188','draft','2013-06-24','DISA FSO','policy','The organization defines the information, source, and destination objects with which the organization-defined security attributes are to be associated.','AC-4(1).2','The organization being inspected/assessed defines and documents the information, source and destination objects with which the organization-defined security attributes are to be associated. DoD has determined the information, source and destination objects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information, source, and destination objects to ensure the organization being inspected/assessed defines the information, source and destination objects with which the organization-defined security attributes are to be associated. DoD has determined the information, source and destination objects are not appropriate to define at the Enterprise level.'), ('002189','draft','2013-06-24','DISA FSO','policy','The organization defines the information flow control policies to be enforced for flow control decisions.','AC-4(1).3','The organization being inspected/assessed defines and documents the information flow control policies to be enforced for flow control decisions. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information flow control policies to ensure the organization being inspected/assessed defines the information flow control policies to be enforced for flow control decisions. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.'), ('002190','draft','2013-06-24','DISA FSO','technical','The information system uses organization-defined security attributes associated with organization-defined information, source, and destination objects to enforce organization-defined information flow control policies as a basis for flow control decisions.','AC-4(1).4','The organization being inspected/assessed configures the information system to use the security attributes defined in AC-4 (1), CCI 287 associated with the information, source, and destination objects defined in AC-4 (1), CCI 2188 to enforce information flow control policies defined in AC-4 (1), CCI 2189 as a basis for flow control decisions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2190.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to use the security attributes defined in AC-4 (1), CCI 287 associated with the information, source, and destination objects defined in AC-4 (1), CCI 2188 to enforce information flow control policies defined in AC-4 (1), CCI 2189 as a basis for flow control decisions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2190.'), ('002191','draft','2013-06-24','DISA FSO','policy','The organization defines the information flow control policies to be enforced by the information system using protected processing domains.','AC-4(2).2','The organization being inspected/assessed defines and documents the information flow control policies to be enforced by the information system using protected processing domains. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the information flow control policies to ensure the organization being inspected/assessed defines the information flow control policies to be enforced by the information system using protected processing domains. DoD has determined the information flow control policies are not appropriate to define at the Enterprise level.'), ('002192','draft','2013-06-24','DISA FSO','policy','The organization defines the policies the information system is to enforce to achieve dynamic information flow control.','AC-4(3).2','The organization being inspected/assessed defines and documents the policies the information system is to enforce to achieve dynamic information flow control. The policies shall address dynamic reconfiguration of data flow based upon predefined rules. DoD has determined the policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented policies to ensure the organization being inspected/assessed defines the policies the information system is to enforce to achieve dynamic information flow control. DoD has determined the policies are not appropriate to define at the Enterprise level'), ('002193','draft','2013-06-24','DISA FSO','policy','The organization defines procedures or methods to be employed by the information system to prevent encrypted information from bypassing content-checking mechanisms, such as decrypting the information, blocking the flow of the encrypted information, and/or terminating communications sessions attempting to pass encrypted information.','AC-4(4).2','The organization being inspected/assessed selects or defines, and documents the mechanism to prevent encrypted information from bypassing content-checking mechanisms, such as decrypting the information, blocking the flow of the encrypted information, and/or terminating communications sessions attempting to pass encrypted information. Alternatively, the organization may define their own procedure or method. DoD has determined the procedures or methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented mechanism to ensure the organization being inspected/assessed selects or defines the mechanism to prevent encrypted information from bypassing content-checking mechanisms. DoD has determined the procedures or methods are not appropriate to define at the Enterprise level.'), ('002194','draft','2013-06-24','DISA FSO','policy','The organization defines the metadata the information system uses to enforce information flow control.','AC-4(6).2','The organization being inspected/assessed defines and documents the metadata the information system uses to enforce information flow control. DoD has determined the metadata is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented metadata to ensure the organization being inspected/assessed defines the metadata the information system uses to enforce information flow control. DoD has determined the metadata is not appropriate to define at the Enterprise level.'), ('002195','draft','2013-06-24','DISA FSO','policy','The organization defines the information flows against which the organization-defined security policy filters are to be enforced.','AC-4(8).3','DoD has defined the information flows as all information flows.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information flows as all information flows.'), ('002196','draft','2013-06-24','DISA FSO','policy','The organization defines the information flows for which the information system will enforce the use of human reviews under organization-defined conditions.','AC-4(9).1','The organization being inspected/assessed defines and documents the information flows for which the information system will enforce the use of human reviews under organization-defined conditions. DoD has determined the information flows are not appropriate to define at the Enterprise level','The organization conducting the inspection/assessment obtains and examines the documented information flows to ensure the organization being inspected/assessed defines the information flows for which the information system will enforce the use of human reviews under organization-defined conditions. DoD has determined the information flows are not appropriate to define at the Enterprise level.'), ('002197','draft','2013-06-24','DISA FSO','policy','The organization defines the conditions which will require the use of human reviews of organization-defined information flows.','AC-4(9).2','The organization being inspected/assessed defines and documents the conditions which will require the use of human reviews of organization-defined information flows. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure the organization being inspected/assessed defines the conditions which will require the use of human reviews of organization-defined information flows. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002198','draft','2013-06-24','DISA FSO','technical','The information system enforces the use of human reviews for organization-defined information flows under organization-defined conditions.','AC-4(9).3','The organization being inspected/assessed configures the information system to enforce the use of human reviews for information flows defined in AC-4 (9), CCI 2196 under conditions defined in AC-4 (9), CCI 2197. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2198.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce the use of human reviews for information flows defined in AC-4 (9), CCI 2196 under conditions defined in AC-4 (9), CCI 2197. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2198.'), ('002199','draft','2013-06-24','DISA FSO','policy','The organization defines the conditions under which the information system provides the capability for privileged administrators to enable/disable organization-defined security policy filters.','AC-4(10).3','The organization being inspected/assessed defines and documents the conditions under which the information system provides the capability for privileged administrators to enable/disable organization-defined security policy filters. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure the organization being inspected/assessed defines the conditions under which the information system provides the capability for privileged administrators to enable/disable organization-defined security policy filters. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002200','draft','2013-06-24','DISA FSO','policy','The organization defines the data type identifiers to be used to validate data being transferred between different security domains.','AC-4(12).1','The organization being inspected/assessed defines and documents the data type identifiers to be used to validate data being transferred between different security domains. DoD has determined the data type identifiers are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented data type identifiers to ensure the organization being inspected/assessed defines the data type identifiers to be used to validate data being transferred between different security domains. DoD has determined the data type identifiers are not appropriate to define at the Enterprise level.'), ('002201','draft','2013-06-24','DISA FSO','technical','The information system, when transferring information between different security domains, uses organization-defined data type identifiers to validate data essential for information flow decisions.','AC-4(12).2','The organization being inspected/assessed configures the information system to use data type identifiers defined in AC-4 (12), CCI 2200 to validate data essential for information flow decisions when transferring information between different security domains. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2201.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to use data type identifiers defined in AC-4 (12), CCI 2200 to validate data essential for information flow decisions when transferring information between different security domains. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2201.'), ('002202','draft','2013-06-24','DISA FSO','policy','The organization defines the policy-relevant subcomponents into which information being transferred between different security domains is to be decomposed for submission to policy enforcement mechanisms.','AC-4(13).2','The organization being inspected/assessed defines and documents the policy relevant subcomponents into which information being transferred between different security domains is to be decomposed into for submission to policy enforcement mechanisms. DoD has determined the policy-relevant subcomponents are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented policy-relevant subcomponents to ensure the organization being inspected/assessed defines the policy relevant subcomponents into which information being transferred between different security domains is to be decomposed into for submission to policy enforcement mechanisms. DoD has determined the policy-relevant subcomponents are not appropriate to define at the Enterprise level.'), ('002203','draft','2013-06-24','DISA FSO ','policy','The organization defines the unsanctioned information the information system is to examine when transferring information between different security domains.','AC-4(15).3','The organization being inspected/assessed defines and documents the unsanctioned information for which the information system is to examine when transferring information between different security domains. DoD has determined the unsanctioned information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented unsanctioned information to ensure the organization being inspected/assessed defines the unsanctioned information for which the information system is to examine when transferring information between different security domains. DoD has determined the unsanctioned information is not appropriate to define at the Enterprise level.'), ('002204','draft','2013-06-24','DISA FSO ','policy','The organization defines a security policy which prohibits the transfer of unsanctioned information between different security domains.','AC-4(15).4','The organization being inspected/assessed defines and documents security policy which prohibits the transfer of unsanctioned information between different security domains. DoD has determined the security policy is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policy to ensure the organization being inspected/assessed defines security policy which prohibits the transfer of unsanctioned information between different security domains. DoD has determined the security policy is not appropriate to define at the Enterprise level.'), ('002205','draft','2013-06-24','DISA FSO ','technical','The information system uniquely identifies and authenticates source by organization, system, application, and/or individual for information transfer.','AC-4(17).1','The organization being inspected/assessed configures the information system to uniquely identify and authenticate source by organization, system, application, and/or individual for information transfer. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2205.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to uniquely identify and authenticate source by organization, system, application, and/or individual for information transfer. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2205.'), ('002206','deprecated','2013-06-24','DISA FSO ','technical','The information system uniquely authenticates source by organization, system, application, and/or individual for information transfer.',NULL,NULL,NULL), ('002207','draft','2013-06-24','DISA FSO ','technical','The information system uniquely identifies and authenticates destination by organization, system, application, and/or individual for information transfer.','AC-4(17).2','The organization being inspected/assessed configures the information system to uniquely and authenticate identify destination by organization, system, application, and/or individual for information transfer. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2207.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to uniquely identify and authenticate destination by organization, system, application, and/or individual for information transfer. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2207.'), ('002208','deprecated','2013-06-24','DISA FSO ','technical','The information system uniquely authenticates destination by organization, system, application, and/or individual for information transfer.',NULL,NULL,NULL), ('002209','draft','2013-06-24','DISA FSO ','policy','The organization defines the techniques to be used to bind security attributes to information.','AC-4(18).1','The organization being inspected/assessed defines and documents the techniques to be used to bind security attributes to information. DoD has determined the techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques to ensure the organization being inspected/assessed defines the techniques to be used to bind security attributes to information. DoD has determined the techniques are not appropriate to define at the Enterprise level'), ('002210','draft','2013-06-24','DISA FSO ','technical','The information system binds security attributes to information using organization-defined binding techniques to facilitate information flow policy enforcement.','AC-4(18).2','The organization being inspected/assessed configures the information system to bind security attributes to information using binding techniques defined in AC-4 (18), CCI 2209 to facilitate information flow policy enforcement. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2210.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to bind security attributes to information using binding techniques defined in AC-4 (18), CCI 2209 to facilitate information flow policy enforcement. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2210.'), ('002211','draft','2013-06-24','DISA FSO ','technical','The information system, when transferring information between different security domains, applies the same security policy filtering to metadata as it applies to data payloads.','AC-4(19).1','The organization being inspected/assessed configures the information system to apply the same security policy filtering to metadata as it applies to data payloads when transferring information between different security domains. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2211.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to apply the same security policy filtering to metadata as it applies to data payloads when transferring information between different security domains. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2211.'), ('002212','draft','2013-06-24','DISA FSO ','policy','The organization defines the solutions in approved configurations to be employed to control the flow of organization-defined information across security domains.','AC-4(20).1','The organization being inspected/assessed defines and documents the solutions in approved configurations to be employed to control the flow of information defined in AC-4 (20), CCI 2213 across security domains. DoD has determined the solutions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented solutions to ensure the organization being inspected/assessed defines the solutions in approved configurations to be employed to control the flow of information defined in AC-4 (20), CCI 2213 across security domains. DoD has determined the solutions are not appropriate to define at the Enterprise level.'), ('002213','draft','2013-06-24','DISA FSO','policy','The organization defines the information to be subjected to flow control across security domains.','AC-4(20).2','The organization being inspected/assessed defines and documents the information to be subjected to flow control across security domains. DoD has determined the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information to ensure the organization being inspected/assessed defines the information to be subjected to flow control across security domains. DoD has determined the information is not appropriate to define at the Enterprise level.'), ('002214','draft','2013-06-24','DISA FSO ','policy','The organization employs organization-defined solutions in approved configurations to control the flow of organization-defined information across security domains.','AC-4(20).3','The organization being inspected/assessed documents and implements solutions defined in AC-4 (20), CCI 2212 in approved configurations to control the flow of information defined in AC-4 (20), CCI 2213 across security domains.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs solutions defined in AC-4 (20), CCI 2212 in approved configurations to control the flow of information defined in AC-4 (20), CCI 2213 across security domains.'), ('002215','draft','2013-06-24','DISA FSO','policy','The organization defines the mechanisms and/or techniques to be used to logically or physically separate information flows.','AC-4(21).1','The organization being inspected/assessed defines and documents the mechanisms and/or techniques to be used to logically or physically separate information flows. DoD has determined the mechanisms are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented mechanisms to ensure the organization being inspected/assessed defines the mechanisms and/or techniques to be used to logically or physically separate information flows. DoD has determined the mechanisms are not appropriate to define at the Enterprise level.'), ('002216','draft','2013-06-24','DISA FSO','policy','The organization defines the types of information required to accomplish logical or physical separation of information flows.','AC-4(21).2','The organization being inspected/assessed defines and documents the types of information required to accomplish logical or physical separation of information flows. DoD has determined the types of information are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented types of information to ensure the organization being inspected/assessed defines the types of information required to accomplish logical or physical separation of information flows. DoD has determined the types of information are not appropriate to define at the Enterprise level.'), ('002217','draft','2013-06-24','DISA FSO','policy','The information system separates information flows logically or physically using organization-defined mechanisms and/or techniques to accomplish organization-defined required separations by types of information.','AC-4(21).3','The organization being inspected/assessed configures the information system to separate information flows logically or physically using mechanisms and/or techniques defined in AC-4 (21), CCI 2215 to accomplish required separations by types of information defined in AC-4 (21), CCI 2216. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2217.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to separate information flows logically or physically using mechanisms and/or techniques defined in AC-4 (21), CCI 2215 to accomplish required separations by types of information defined in AC-4 (21), CCI 2216. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2217.'), ('002218','draft','2013-06-24','DISA FSO','technical','The information system provides access from a single device to computing platforms, applications, or data residing on multiple different security domains, while preventing any information flow between the different security domains.','AC-4(22).1','The organization being inspected/assessed configures the information system to provide access from a single device to computing platforms, applications, or data residing on multiple different security domains, while preventing any information flow between the different security domains. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2218.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide access from a single device to computing platforms, applications, or data residing on multiple different security domains, while preventing any information flow between the different security domains. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2218.'), ('002219','draft','2013-06-24','DISA FSO','policy','The organization defines the duties of individuals that are to be separated.','AC-5.2','The organization being inspected/assessed defines and documents the duties of individuals that are to be separated. DoD has determined the duties are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented duties to ensure the organization being inspected/assessed defines the duties of individuals that are to be separated. DoD has determined the duties are not appropriate to define at the Enterprise level.'), ('002220','draft','2013-06-24','DISA FSO','policy','The organization defines information system access authorizations to support separation of duties.','AC-5.4','The organization being inspected/assessed defines and documents the information system access authorizations to support separation of duties.','The organization conducting the inspection/assessment obtains and examines the documented information system access authorizations to ensure the organization being inspected/assessed defines information system access authorizations to support separation of duties.'), ('002221','draft','2013-06-24','DISA FSO','policy','The organization defines the security-relevant information for which access must be explicitly authorized.','AC-6(1).2','DoD has defined the security-relevant information as all security-relevant information not publicly available.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security-relevant information as all security-relevant information not publicly available.'), ('002222','draft','2013-06-24','DISA FSO','policy','The organization explicitly authorizes access to organization-defined security functions.','AC-6(1).3','The organization being inspected/assessed documents and implements a process to explicitly authorize access to all functions not publicly accessible. Explicit authorization can be in the form of an acceptable use policy signed by the user at the time of access being granted. DoD has defined the security functions as all functions not publicly accessible.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed explicitly authorizes access to all functions not publicly accessible. DoD has defined the security functions as all functions not publicly accessible.'), ('002223','draft','2013-06-24','DISA FSO','policy','The organization explicitly authorizes access to organization-defined security-relevant information.','AC-6(1).4','The organization being inspected/assessed documents and implements a process to explicitly authorize access to all security-relevant information not publicly available. Explicit authorization can be in the form of an acceptable use policy signed by the user at the time of access being granted. DoD has defined the security-relevant information as all security-relevant information not publicly available.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed explicitly authorizes access to all security-relevant information not publicly available. DoD has defined the security-relevant information as all security-relevant information not publicly available.'), ('002224','draft','2013-06-24','DISA FSO','policy','The organization defines the compelling operational needs that must be met in order to be authorized network access to organization-defined privileged commands.','AC-6(3).4','The organization being inspected/assessed defines and documents the compelling operational needs that must be met in order to be authorized network access to organization-defined privileged commands. DoD has determined the compelling operational needs are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented compelling operational needs to ensure the organization being inspected/assessed defines the compelling operational needs that must be met in order to be authorized network access to organization-defined privileged commands. DoD has determined the compelling operational needs are not appropriate to define at the Enterprise level.'), ('002225','draft','2013-06-24','DISA FSO ','policy','The information system provides separate processing domains to enable finer-grained allocation of user privileges.','AC-6(4).1','The organization being inspected/assessed configures the information system to provide separate processing domains to enable finer-grained allocation of user privileges. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2225.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide separate processing domains to enable finer-grained allocation of user privileges. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2225.'), ('002226','draft','2013-06-24','DISA FSO','policy','The organization defines the personnel or roles to whom privileged accounts are to be restricted on the information system.','AC-6(5).1','The organization being inspected/assessed defines and documents the personnel or roles to whom privileged accounts are to be restricted on the information system. DoD has determined the personnel and roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to whom privileged accounts are to be restricted on the information system. DoD has determined the personnel and roles are not appropriate to define at the Enterprise level.'), ('002227','draft','2013-06-24','DISA FSO','policy','The organization restricts privileged accounts on the information system to organization-defined personnel or roles.','AC-6(5).2','The organization being inspected/assessed implements a process to only provide privileged accounts on the information system to personnel or roles defined in AC-6 (5), CCI 2226.','The organization conducting the inspection/assessment obtains and examines a sampling of information system access authorizations to ensure the organization being inspected/assessed implements a process to only provide privileged accounts on the information system to personnel or roles defined in AC-6 (5), CCI 2226.'), ('002228','draft','2013-06-24','DISA FSO','policy','The organization defines the frequency on which it conducts reviews of the privileges assigned to organization-defined roles or classes of users.','AC-6(7).1','DoD has defined the frequency as at a minimum, annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at a minimum, annually.'), ('002229','draft','2013-06-24','DISA FSO','policy','The organization defines the roles or classes of users that are to have their privileges reviewed on an organization-defined frequency.','AC-6(7).2','DoD has defined the roles or classes of users as all users.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the roles or classes of users as all users.'), ('002230','draft','2013-06-24','DISA FSO','policy','The organization reviews the privileges assigned to organization-defined roles or classes of users on an organization-defined frequency to validate the need for such privileges.','AC-6(7).3','The organization being inspected/assessed documents and implements a process to review the privileges assigned to all users at a minimum, annually to validate the need for such privileges. The organization must maintain an audit trail of reviews. DoD has defined the roles or classes of users as all users. DoD has defined the frequency as at a minimum, annually.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of reviews to ensure the organization being inspected/assessed reviews the privileges assigned to all users at a minimum, annually. to validate the need for such privileges. DoD has defined the roles or classes of users as all users. DoD has defined the frequency as at a minimum, annually.'), ('002231','draft','2013-06-24','DISA FSO','policy','The organization reassigns or removes privileges, if necessary, to correctly reflect organizational mission/business needs.','AC-19(5).1','The organization being inspected/assessed documents and implements a process for full-device encryption or container encryption to protect the integrity of information on mobile devices defined in AC-19 (5), CCI 2329.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs full-device encryption or container encryption to protect the integrity of information on mobile devices defined in AC-19 (5), CCI 2329.'), ('002232','draft','2013-06-24','DISA FSO','policy','The organization defines software that is restricted from executing at a higher privilege than users executing the software.','AC-6(8).1','DoD has defined the software as any software except software explicitly documented.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the software as any software except software explicitly documented.'), ('002233','draft','2013-06-24','DISA FSO','technical','The information system prevents organization-defined software from executing at higher privilege levels than users executing the software.','AC-6(8).2','The organization being inspected/assessed configures the information system to any software except software explicitly documented from executing at higher privilege levels than users executing the software. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2233. DoD has defined the software as any software except software explicitly documented.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent any software except software explicitly documented from executing at higher privilege levels than users executing the software. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2233. DoD has defined the software as any software except software explicitly documented.'), ('002234','draft','2013-06-24','DISA FSO','technical','The information system audits the execution of privileged functions.','AC-6(9).1','The organization being inspected/assessed configures the information system to audit the execution of privileged functions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2234.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to audit the execution of privileged functions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2234.'), ('002235','draft','2013-06-24','DISA FSO','technical','The information system prevents non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.','AC-6(10).1','The organization being inspected/assessed configures the information system to prevent non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2235.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2235.'), ('002236','draft','2013-06-24','DISA FSO','policy','The organization defines the time period the information system will automatically lock the account or node when the maximum number of unsuccessful logon attempts is exceeded.','AC-7.4','DoD has defined the time period as until released by an administrator.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as until released by an administrator.'), ('002237','draft','2013-06-24','DISA FSO','policy','The organization defines the delay algorithm to be employed by the information system to delay the next logon prompt when the maximum number of unsuccessful logon attempts is exceeded.','AC-7.5','DoD has defined the delay algorithm as a minimum of 5 seconds.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the delay algorithm as a minimum of 5 seconds.'), ('002238','draft','2013-06-24','DISA FSO','technical','The information system automatically locks the account or node for either an organization-defined time period, until the locked account or node is released by an administrator, or delays the next logon prompt according to the organization-defined delay algorithm when the maximum number of unsuccessful logon attempts is exceeded.','AC-7.6','The organization being inspected/assessed configures the information system to automatically lock the account or node until the locked account is released by an administrator and delays the next login prompt for a minimum of 5 seconds when the maximum number of unsuccessful attempts is exceeded. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2238. DoD has defined the delay algorithm as a minimum of 5 seconds. DoD has defined the time period as until released by an administrator.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically lock the account or node until the locked account is released by an administrator and delays the next login prompt for a minimum of 5 seconds when the maximum number of unsuccessful attempts is exceeded. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2238. DoD has defined the delay algorithm as a minimum of 5 seconds. DoD has defined the time period as until released by an administrator.'), ('002239','draft','2013-06-24','DISA FSO','policy','The organization defines the mobile devices that are to be purged/wiped by the information system after an organization-defined number of consecutive, unsuccessful device logon attempts.','AC-7(2).1','The organization being inspected/assessed defines and documents the mobile devices that are to be purged/wiped by the information system after an organization-defined number of consecutive, unsuccessful device logon attempts. Mobile devices may be defined in terms of manufacturer and model name. DoD has determined the mobile devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented mobile devices to ensure the organization being inspected/assessed defines the mobile devices that are to be purged/wiped by the information system after an organization-defined number of consecutive, unsuccessful device logon attempts. DoD has determined the mobile devices are not appropriate to define at the Enterprise level.'), ('002240','draft','2013-06-24','DISA FSO','policy','The organization defines the purging/wiping requirements/techniques to be used by the information system on organization-defined mobile devices after an organization-defined number of consecutive, unsuccessful device logon attempts.','AC-7(2).2','DoD has defined the purging/wiping requirements/techniques as requirements and techniques identified in NIST SP 800-88, \"Guidelines for Media Sanitization.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the purging/wiping requirements/techniques as requirements and techniques identified in NIST SP 800-88, \"Guidelines for Media Sanitization.\"'), ('002241','draft','2013-06-24','DISA FSO','policy','The organization defines the number of consecutive, unsuccessful device logon attempts after which the information system will purge/wipe organization-defined mobile devices.','AC-7(2).3','DoD has defined the number as 10.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the number as 10.'), ('002242','draft','2013-06-24','DISA FSO','technical','The information system purges/wipes information from organization-defined mobile devices based on organization-defined purging/wiping requirements/techniques after an organization-defined number of consecutive, unsuccessful device logon attempts.','AC-7(2).4','The organization being inspected/assessed configures the information system to purge/wipe information from mobile devices defined in AC-7 (2), CCI 2239 based on requirements and techniques identified in NIST SP 800-88, \"Guidelines for Media Sanitization\" after 10 consecutive, unsuccessful device logon attempts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2242. DoD has defined the number as 10. DoD has defined the purging/wiping requirements/techniques as requirements and techniques identified in NIST SP 800-88, \"Guidelines for Media Sanitization.\"','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to purge/wipe information from mobile devices defined in AC-7 (2), CCI 2239 based on requirements and techniques identified in NIST SP 800-88, \"Guidelines for Media Sanitization\" after 10 consecutive, unsuccessful device logon attempts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2242. DoD has defined the number as 10. DoD has defined the purging/wiping requirements/techniques as requirements and techniques identified in NIST SP 800-88, \"Guidelines for Media Sanitization.\"'), ('002243','draft','2013-06-24','DISA FSO','policy','The organization-defined information system use notification message or banner is to state that users are accessing a U.S. Government information system.','AC-8.3','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.'), ('002244','draft','2013-06-24','DISA FSO','policy','The organization-defined information system use notification message or banner is to state that information system usage may be monitored, recorded, and subject to audit.','AC-8.4','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.'), ('002245','draft','2013-06-24','DISA FSO','policy','The organization-defined information system use notification message or banner is to state that unauthorized use of the information system is prohibited and subject to criminal and civil penalties.','AC-8.5','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.'), ('002246','draft','2013-06-24','DISA FSO','policy','The organization-defined information system use notification message or banner is to state that use of the information system indicates consent to monitoring and recording.','AC-8.6','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.','DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013 meets the DoD requirements the information system use notification message or banner.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DTM 08-060.'), ('002247','draft','2013-06-24','DISA FSO','policy','The organization defines the use notification message or banner the information system displays to users before granting access to the system.','AC-8.2','DoD has defined the use notification message or banner as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the use notification message or banner as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013.'), ('002248','draft','2013-06-24','DISA FSO','policy','The organization defines the conditions of use which are to be displayed to users of the information system before granting further access.','AC-8.9','DoD has defined the conditions as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the conditions as the content of DTM 08-060, \"Policy on Use of Department of Defense (DoD) Information Systems Standard Consent Banner and User Agreement,\" March 2013.'), ('002249','draft','2013-06-24','DISA FSO','policy','The organization defines the information, in addition to the date and time of the last logon (access), to be included in the notification to the user upon successful logon (access).','AC-9(4).1','The organization being inspected/assessed defines and documents the information, in addition to the date and time of the last logon (access) to be included in the notification to the user upon successful logon (access). DoD has determined the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information to ensure the organization being inspected/assessed defines the information, in addition to the date and time of the last logon (access) to be included in the notification to the user upon successful logon (access). DoD has determined the information is not appropriate to define at the Enterprise level.'), ('002250','draft','2013-06-24','DISA FSO','technical','The information system notifies the user, upon successful logon (access), of the organization-defined information to be included in addition to the date and time of the last logon (access).','AC-9(4).2','The organization being inspected/assessed configures the information system to notify the user, upon successful logon (access), of the information defined in AC-9 (4), CCI 2249 to be included in addition to the date and time of the last logon (access). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2250. ','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to notify the user, upon successful logon (access), of the information defined in AC-9 (4), CCI 2249 to be included in addition to the date and time of the last logon (access). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2250.'), ('002251','deprecated','2013-06-24','DISA FSO','technical','The information system notifies the user, upon successful logon (access), of the date and time of the last logon (access).',NULL,NULL,NULL), ('002252','draft','2013-06-24','DISA FSO','policy','The organization defines the accounts and/or account types for which the information system will limit the number of concurrent sessions.','AC-10.3','DoD has defined the account types and/or accounts as all account types and/or accounts.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the account types and/or accounts as all account types and/or accounts.'), ('002253','deprecated','2013-06-24','DISA FSO','policy','The organization defines the account types for which the information system will limit the number of concurrent sessions.',NULL,NULL,NULL), ('002254','deprecated','2013-06-24','DISA FSO','policy','The organization defines the conditions or trigger events requiring session disconnect to be employed by the information system when automatically terminating a user session.',NULL,NULL,NULL), ('002255','deprecated','2013-06-24','DISA FSO','policy','The organization defines the user actions that can be performed on the information system without identification and authentication.',NULL,NULL,NULL), ('002256','draft','2013-06-24','DISA FSO','policy','The organization defines security attributes having organization-defined types of security attribute values which are associated with information in storage.','AC-16.1','The organization being inspected/assessed defines and documents the security attributes having organization-defined types of security attribute values which are associated with information in storage. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines security attributes having organization-defined types of security attribute values which are associated with information in storage. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002257','draft','2013-06-24','DISA FSO','policy','The organization defines security attributes having organization-defined types of security attribute values which are associated with information in process.','AC-16.2','The organization being inspected/assessed defines and documents the security attributes having organization-defined types of security attribute values which are associated with information in process. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines security attributes having organization-defined types of security attribute values process. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002258','draft','2013-06-24','DISA FSO','policy','The organization defines security attributes, having organization-defined types of security attribute values, which are associated with information in transmission.','AC-16.3','The organization being inspected/assessed defines and documents the security attributes having organization-defined types of security attribute values which are associated with information in transmission. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines security attributes having organization-defined types of security attribute values which are associated with information in transmission. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002259','draft','2013-06-24','DISA FSO','policy','The organization defines security attribute values associated with organization-defined types of security attributes for information in storage.','AC-16.4','The organization being inspected/assessed defines and documents the security attributes values associated with organization-defined types of security attributes for information in storage. DoD has determined the security attribute values are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attribute values to ensure the organization being inspected/assessed defines security attribute values associated with organization-defined types of security attributes for information in storage. DoD has determined the security attribute values are not appropriate to define at the Enterprise level.'), ('002260','draft','2013-06-24','DISA FSO','policy','The organization defines security attribute values associated with organization-defined types of security attributes for information in process.','AC-16.5','The organization being inspected/assessed defines and documents the security attributes values associated with organization-defined types of security attributes for information in process. DoD has determined the security attribute values are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attribute values to ensure the organization being inspected/assessed defines security attribute values associated with organization-defined types of security attributes for information in process. DoD has determined the security attribute values are not appropriate to define at the Enterprise level.'), ('002261','draft','2013-06-24','DISA FSO','policy','The organization defines security attribute values associated with organization-defined types of security attributes for information in transmission.','AC-16.6','The organization being inspected/assessed defines and documents the security attributes values associated with organization-defined types of security attributes for information in transmission. DoD has determined the security attribute values are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attribute values to ensure the organization being inspected/assessed defines security attribute values associated with organization-defined types of security attributes for information in transmission. DoD has determined the security attribute values are not appropriate to define at the Enterprise level.'), ('002262','draft','2013-06-24','DISA FSO','technical','The organization provides the means to associate organization-defined types of security attributes having organization-defined security attribute values with information in storage.','AC-16.7','The organization being inspected/assessed configures the information system to provide the means to associate types of security attributes in defined in AC-16, CCI 2256 having security attribute values defined in AC-16, CCI 2259 with information in storage. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2262.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the means to associate types of security attributes in defined in AC-16, CCI 2256 having security attribute values defined in AC-16, CCI 2259 with information in storage. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2262.'), ('002263','draft','2013-06-24','DISA FSO','technical','The organization provides the means to associate organization-defined types of security attributes having organization-defined security attribute values with information in process.','AC-16.8','The organization being inspected/assessed configures the information system to provide the means to associate types of security attributes in defined in AC-16, CCI 2257 having security attribute values defined in AC-16, CCI 2260 with information in process. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2263.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the means to associate types of security attributes in defined in AC-16, CCI 2257 having security attribute values defined in AC-16, CCI 2260 with information in process. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2263.'), ('002264','draft','2013-06-24','DISA FSO','technical','The organization provides the means to associate organization-defined types of security attributes having organization-defined security attribute values with information in transmission.','AC-16.9','The organization being inspected/assessed configures the information system to provide the means to associate types of security attributes in defined in AC-16, CCI 2258 having security attribute values defined in AC-16, CCI 2261 with information in transmission. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2264.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the means to associate types of security attributes in defined in AC-16, CCI 2258 having security attribute values defined in AC-16, CCI 2261 with information in transmission. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2264.'), ('002265','draft','2013-06-24','DISA FSO','policy','The organization ensures that the security attribute associations are made with the information.','AC-16.10','The organization being inspected/assessed documents and implements a process to ensure that the security attribute associations are made with the information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that the security attribute associations are made with the information.'), ('002266','draft','2013-06-24','DISA FSO','policy','The organization ensures that the security attribute associations are retained with the information.','AC-16.11','The organization being inspected/assessed documents and implements a process to ensure that the security attribute associations are retained with the information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that the security attribute associations are retained with the information.'), ('002267','draft','2013-06-24','DISA FSO','policy','The organization defines the security attributes that are permitted for organization-defined information systems.','AC-16.12','DoD has defined the security attributes as the security attributes defined in AC-16, CCIs 2256-2258.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security attributes as the security attributes defined in AC-16, CCIs 2256-2258.'), ('002268','draft','2013-06-24','DISA FSO','policy','The organization defines the information systems for which permitted organization-defined attributes are to be established.','AC-16.13','DoD has defined the information systems as all information systems.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information systems as all information systems.'), ('002269','draft','2013-06-24','DISA FSO','policy','The organization establishes the permitted organization-defined security attributes for organization-defined information systems.','AC-16.14','The organization being inspected/assessed establishes and documents the permitted security attributes for all information systems as a subset of the security attributes defined in AC-16, CCI 2267. DoD has defined the information systems as all information systems.','The organization conducting the inspection/assessment obtains and examines the documented list of permitted security attributes to ensure the organization being inspected/assessed has established the list of permitted security attributes for all information systems as a subset of the security attributes defined in AC-16, CCI 2267. DoD has defined the information systems as all information systems.'), ('002270','draft','2013-06-24','DISA FSO','policy','The organization defines the values or ranges permitted for each of the established security attributes.','AC-16.15','DoD has defined the values or ranges as the values defined in AC-16, CCIs 2259-2261.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the values or ranges as the values defined in AC-16, CCIs 2259-2261.'), ('002271','draft','2013-06-24','DISA FSO','policy','The organization determines the permitted organization-defined values or ranges for each of the established security attributes.','AC-16.16','The organization being inspected/assessed establishes and documents the permitted values or ranges for each of the established security attributes as a subset of the values or ranges defined in AC-16, CCI 2270.','The organization conducting the inspection/assessment obtains and examines the documented permitted values or ranges to ensure the organization being inspected/assessed has established the permitted values or ranges for each of the established security attributes as a subset of the values or ranges defined in AC-16, CCI 2270.'), ('002272','draft','2013-06-24','DISA FSO','technical','The information system dynamically associates security attributes with organization-defined objects in accordance with organization-defined security policies as information is created and combined.','AC-16(1).2','The organization being inspected/assessed configures the information system to dynamically associates security attributes with the objects defined in AC-16 (1), CCI 2275 in accordance with the security policies defined in AC-16 (1), CCI 2273 as information is created and combined. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2272.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to dynamically associates security attributes with the objects defined in AC-16 (1), CCI 2275 in accordance with the security policies defined in AC-16 (1), CCI 2273 as information is created and combined. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2272.'), ('002273','draft','2013-06-24','DISA FSO','policy','The organization defines the security policies the information system is to adhere to when dynamically associating security attributes with organization-defined subjects and objects.','AC-16(1).3','The organization being inspected/assessed defines and documents the security policies the information system is to adhere to when dynamically associating security attributes with organization-defined subjects and objects. DoD has determined the security policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policies to ensure the organization being inspected/assessed defines the security policies the information system is to adhere to when dynamically associating security attributes with organization-defined subjects and objects. DoD has determined the security policies are not appropriate to define at the Enterprise level.'), ('002274','draft','2013-06-24','DISA FSO','policy','The organization defines the subjects with which the information system is to dynamically associate security attributes as information is created and combined.','AC-16(1).4','The organization being inspected/assessed defines and documents the subjects the information system is to dynamically associate security attributes to as information is created and combined. DoD has determined the subjects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented objects to ensure the organization being inspected/assessed defines the subjects the information system is to dynamically associate security attributes to as information is created and combined. DoD has determined the subjects are not appropriate to define at the Enterprise level.'), ('002275','draft','2013-06-24','DISA FSO','policy','The organization defines the objects with which the information system is to dynamically associate security attributes as information is created and combined.','AC-16(1).5','The organization being inspected/assessed defines and documents the objects the information system is to dynamically associate security attributes to as information is created and combined. DoD has determined the objects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented objects to ensure the organization being inspected/assessed defines the objects the information system is to dynamically associate security attributes to as information is created and combined. DoD has determined the objects are not appropriate to define at the Enterprise level.'), ('002276','draft','2013-06-24','DISA FSO','policy','The organization identifies the individuals authorized to define the value of associated security attributes.','AC-16(2).3','The organization being inspected/assessed identifies and documents the individuals authorized to define the value of associated security attributes.','The organization conducting the inspection/assessment obtains and examines the documented individuals to ensure the organization being inspected/assessed identifies the individuals authorized to define the value of associated security attributes.'), ('002277','draft','2013-06-24','DISA FSO','technical','The information system provides authorized individuals (or processes acting on behalf of individuals) the capability to define the value of associated security attributes.','AC-16(2).4','The organization being inspected/assessed configures the information system to provide authorized individuals (or processes acting on behalf of individuals) the capability to define the value of associated security attributes. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2277.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide authorized individuals (or processes acting on behalf of individuals) the capability to define the value of associated security attributes. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2277.'), ('002278','draft','2013-06-24','DISA FSO','policy','The organization defines security attributes for which the association and integrity to organization-defined subjects and objects is maintained by the information system.','AC-16(3).1','he organization being inspected/assessed defines and documents the security attributes for which the association and integrity to organization-defined subjects and objects is maintained by the information system DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines the security attributes for which the association and integrity to organization-defined subjects and objects is maintained by the information system. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002279','draft','2013-06-24','DISA FSO','policy','The organization defines subjects for which the association and integrity of organization-defined security attributes is maintained by the information system.','AC-16(3).2','The organization being inspected/assessed defines and documents the subjects for which the association and integrity of organization-defined security attributes is maintained by the information system. DoD has determined the subjects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented subjects to ensure the organization being inspected/assessed defines the subjects for which the association and integrity of organization-defined security attributes is maintained by the information system. DoD has determined the subjects are not appropriate to define at the Enterprise level.'), ('002280','draft','2013-06-24','DISA FSO','policy','The organization defines objects for which the association and integrity of organization-defined security attributes is maintained by the information system.','AC-16(3).3','The organization being inspected/assessed defines and documents the objects for which the association and integrity of organization-defined security attributes is maintained by the information system. DoD has determined the objects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented subjects to ensure the organization being inspected/assessed defines the objects for which the association and integrity of organization-defined security attributes is maintained by the information system. DoD has determined the objects are not appropriate to define at the Enterprise level.'), ('002281','draft','2013-06-24','DISA FSO','technical','The information system maintains the association of organization-defined security attributes to organization-defined subjects.','AC-16(3).4','The organization being inspected/assessed configures the information system to maintain the association of the security attributes defined in AC-16 (3), CCI 2278 to subjects defined in AC-16 (3), CCI 2279. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2281.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain the association of the security attributes defined in AC-16 (3), CCI 2278 to subjects defined in AC-16 (3), CCI 2280 For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2281.'), ('002282','draft','2013-06-24','DISA FSO','technical','The information system maintains the association of organization-defined security attributes to organization-defined objects.','AC-16(3).5','The organization being inspected/assessed configures the information system to maintain the association of the security attributes defined in AC-16 (3), CCI 2278 to objects defined in AC-16 (3), CCI 2280. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2282.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain the association of the security attributes defined in AC-16 (3), CCI 2278 to objects defined in AC-16 (3), CCI 2280 For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2282.'), ('002283','draft','2013-06-24','DISA FSO','technical','The information system maintains the integrity of organization-defined security attributes associated with organization-defined subjects.','AC-16(3).6','The organization being inspected/assessed configures the information system to maintain the integrity of the security attributes defined in AC-16 (3), CCI 2278 to subjects defined in AC-16 (3), CCI 2279. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2283.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain the integrity of the security attributes defined in AC-16 (3), CCI 2278 to subjects defined in AC-16 (3), CCI 2279. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2283.'), ('002284','draft','2013-06-24','DISA FSO','technical','The information system maintains the integrity of organization-defined security attributes associated with organization-defined objects.','AC-16(3).7','The organization being inspected/assessed configures the information system to maintain the integrity of the security attributes defined in AC-16 (3), CCI 2278 to objects defined in AC-16 (3), CCI 2280. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2284.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information to maintain the integrity of the security attributes defined in AC-16 (3), CCI 2278 to objects defined in AC-16 (3), CCI 2280. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2284.'), ('002285','draft','2013-06-24','DISA FSO','policy','The organization identifies individuals (or processes acting on behalf of individuals) authorized to associate organization-defined security attributes with organization-defined subjects.','AC-16(4).2','The organization being inspected/assessed identifies and documents individuals (or processes acting on behalf of individuals) authorized to associate security attributes defined in AC-16 (4), CCI 2288 with subjects defined in AC-16 (4), CCI 2286.','The organization conducting the inspection/assessment obtains and examines the documented individuals to ensure the organization being inspected/assessed identifies individuals (or processes acting on behalf of individuals) authorized to associate security attributes defined in AC-16 (4), CCI 2288 with subjects defined in AC-16 (4), CCI 2286.'), ('002286','draft','2013-06-24','DISA FSO','policy','The organization defines the subjects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals).','AC-16(4).3','The organization being inspected/assessed defines and documents the subjects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals). DoD has defined the subjects as not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented objects to ensure the organization being inspected/assessed defines the subjects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals). DoD has defined the subjects as not appropriate to define at the Enterprise level.'), ('002287','draft','2013-06-24','DISA FSO','policy','The organization defines the objects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals).','AC-16(4).4','The organization being inspected/assessed defines and documents the objects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals). DoD has defined the objects as not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented objects to ensure the organization being inspected/assessed defines the objects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals). DoD has defined the objects as not appropriate to define at the Enterprise level.'), ('002288','draft','2013-06-24','DISA FSO','policy','The organization defines the security attributes authorized individuals (or processes acting on behalf of individuals) are permitted to associate with organization-defined subjects and objects.','AC-16(4).5','The organization being inspected/assessed defines and documents the security attributes authorized individuals (or processes acting on behalf of individuals) are permitted to associate with organization-defined subjects and objects. DoD has defined the security attributes as not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines the security attributes authorized individuals (or processes acting on behalf of individuals) are permitted to associate with organization-defined subjects and objects. DoD has defined the security attributes as not appropriate to define at the Enterprise level.'), ('002289','draft','2013-06-24','DISA FSO','technical','The information system supports the association of organization-defined security attributes with organization-defined subjects by authorized individuals (or processes acting on behalf of individuals).','AC-16(4).6','The organization being inspected/assessed configures the information system to support the association of security attributes defined in AC-16 (4), CCI 2288 with the subjects defined in AC-16 (4), CCI 2286 by authorized individuals (or processes acting on behalf of individuals). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2289.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to support the association of security attributes defined in AC-16 (4), CCI 2288 with the subjects defined in AC-16 (4), CCI 2286 by authorized individuals (or processes acting on behalf of individuals). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2289.'), ('002290','draft','2013-06-24','DISA FSO','technical','The information system supports the association of organization-defined security attributes with organization-defined objects by authorized individuals (or processes acting on behalf of individuals).','AC-16(4).7','The organization being inspected/assessed configures the information system to support the association of security attributes defined in AC-16 (4), CCI 2288 with the objects defined in AC-16 (4), CCI 2287 by authorized individuals (or processes acting on behalf of individuals). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2290.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to support the association of security attributes defined in AC-16 (4), CCI 2288 with the objects defined in AC-16 (4), CCI 2287 by authorized individuals (or processes acting on behalf of individuals). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2290.'), ('002291','draft','2013-06-24','DISA FSO','policy','The organization defines the security policies to be followed by personnel when associating organization-defined security attributes with organization-defined subjects and objects.','AC-16(6).1','The organization being inspected/assessed defines and documents the security policies to be followed by personnel when associating organization-defined security attributes with organization-defined subjects and objects. DoD has determined the security policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policies to ensure the organization being inspected/assessed defines the security policies to be followed by personnel when associating organization-defined security attributes with organization-defined subjects and objects. DoD has determined the security policies are not appropriate to define at the Enterprise level.'), ('002292','draft','2013-06-24','DISA FSO','policy','The organization defines the security attributes which are to be associated with organization-defined subjects and objects.','AC-16(6).2','The organization being inspected/assessed defines and documents the security attributes which are to be associated with organization-defined subjects and objects. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines the security attributes which are to be associated with organization-defined subjects and objects. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002293','draft','2013-06-24','DISA FSO','policy','The organization defines the subjects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies.','AC-16(6).3','The organization being inspected/assessed defines and documents the subjects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies. DoD has determined the subjects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented subjects to ensure the organization being inspected/assessed defines the subjects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies. DoD has determined the subjects are not appropriate to define at the Enterprise level.'), ('002294','draft','2013-06-24','DISA FSO','policy','The organization defines the objects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies.','AC-16(6).4','The organization being inspected/assessed defines and documents the objects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies. DoD has determined the objects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented objects to ensure the organization being inspected/assessed defines the objects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies. DoD has determined the objects are not appropriate to define at the Enterprise level.'), ('002295','draft','2013-06-24','DISA FSO','policy','The organization allows personnel to associate organization-defined security attributes with organization-defined subjects in accordance with organization-defined security policies.','AC-16(6).5','The organization being inspected/assessed documents and implements a process requiring personnel to associate security attributes defined in AC-16 (6), CCI 2292 with subjects defined in AC-16 (6), CCI 2293 in accordance with security policies defined in AC-16 (6), CCI 2291.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires personnel to associate security attributes defined in AC-16 (6), CCI 2292 with subjects defined in AC-16 (6), CCI 2293 in accordance with security policies defined in AC-16 (6), CCI 2291.'), ('002296','draft','2013-06-24','DISA FSO','policy','The organization allows personnel to associate organization-defined security attributes with organization-defined objects in accordance with organization-defined security policies.','AC-16(6).6','The organization being inspected/assessed documents and implements a process requiring personnel to associate security attributes defined in AC-16 (6), CCI 2292 with objects defined in AC-16 (6), CCI 2294 in accordance with security policies defined in AC-16 (6), CCI 2291.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires personnel to associate security attributes defined in AC-16 (6), CCI 2292 with objects defined in AC-16 (6), CCI 2294 in accordance with security policies defined in AC-16 (6), CCI 2291.'), ('002297','draft','2013-06-24','DISA FSO','policy','The organization allows personnel to maintain the association of organization-defined security attributes with organization-defined subjects in accordance with organization-defined security policies.','AC-16(6).7','The organization being inspected/assessed documents and implements a process requiring personnel to maintain the association of security attributes defined in AC-16 (6), CCI 2292 with subjects defined in AC-16 (6), CCI 2293 in accordance with security policies defined in AC-16 (6), CCI 2291.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires personnel to maintain the association of security attributes defined in AC-16 (6), CCI 2292 with subjects defined in AC-16 (6), CCI 2293 in accordance with security policies defined in AC-16 (6), CCI 2291.'), ('002298','draft','2013-06-24','DISA FSO','policy','The organization allows personnel to maintain the association of organization-defined security attributes with organization-defined objects in accordance with organization-defined security policies.','AC-16(6).8','The organization being inspected/assessed documents and implements a process requiring personnel to maintain the association of security attributes defined in AC-16 (6), CCI 2292 with objects defined in AC-16 (6), CCI 2294 in accordance with security policies defined in AC-16 (6), CCI 2291.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires personnel to maintain the association of security attributes defined in AC-16 (6), CCI 2292 with objects defined in AC-16 (6), CCI 2294 in accordance with security policies defined in AC-16 (6), CCI 2291.'), ('002299','draft','2013-06-24','DISA FSO','policy','The organization provides a consistent interpretation of security attributes transmitted between distributed information system components.','AC-16(7).1','The organization being inspected/assessed documents and implements a process to provide a consistent interpretation of security attributes transmitted between distributed information system components.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides a consistent interpretation of security attributes transmitted between distributed information system components.'), ('002300','draft','2013-06-24','DISA FSO','policy','The organization defines the techniques or technologies to be implemented when associating security attributes with information.','AC-16(8).1','The organization being inspected/assessed defines and documents the techniques or technologies to be implemented when associating security attributes with information. DoD has determined the technique or technologies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques and technologies to ensure the organization being inspected/assessed defines the techniques or technologies to be implemented when associating security attributes with information. DoD has determined the technique or technologies are not appropriate to define at the Enterprise level.'), ('002301','draft','2013-06-24','DISA FSO','policy','The organization defines the level of assurance to be provided when implementing organization-defined techniques or technologies in associating security attributes to information.','AC-16(8).2','The organization being inspected/assessed defines and documents the level of assurance to be provided when implementing organization-defined techniques or technologies in associating security attributes to information. DoD has determined the level of assurance is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of assurance to ensure the organization being inspected/assessed defines the level of assurance to be provided when implementing organization-defined techniques or technologies in associating security attributes to information. DoD has determined the level of assurance is not appropriate to define at the Enterprise level.'), ('002302','draft','2013-06-24','DISA FSO','technical','The information system implements organization-defined techniques or technologies with an organization-defined level of assurance in associating security attributes to information.','AC-16(8).3','The organization being inspected/assessed configures the information system to implement the techniques or technologies defined in AC-16 (8), CCI 2300 with the level of assurance defined in AC-16 (8), CCI 2301 in associating security attributes to information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2302.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement the techniques or technologies defined in AC-16 (8), CCI 2300 with the level of assurance defined in AC-16 (8), CCI 2301 in associating security attributes to information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2302.'), ('002303','draft','2013-06-24','DISA FSO ','policy','The organization defines the techniques or procedures to be employed to validate re-grading mechanisms.','AC-16(9).1','The organization being inspected/assessed defines and documents the techniques or procedures to be employed to validate re-grading mechanisms. DoD has determined the techniques or procedures are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques or procedures to ensure the organization being inspected/assessed defines the techniques or procedures to be employed to validate re-grading mechanisms. DoD has determined the techniques or procedures are not appropriate to define at the Enterprise level.'), ('002304','draft','2013-06-24','DISA FSO','policy','The organization ensures security attributes associated with information are reassigned only via re-grading mechanisms validated using organization-defined techniques or procedures.','AC-16(9).2','The organization being inspected/assessed documents and implements a process to ensure security attributes associated with information are reassigned only via re-grading mechanisms validated using techniques or procedures defined in AC-16 (9), CCI 2303.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures security attributes associated with information are reassigned only via re-grading mechanisms validated using techniques or procedures defined in AC-16 (9), CCI 2303.'), ('002305','draft','2013-06-24','DISA FSO','policy','The organization identifies individuals authorized to define or change the type and value of security attributes available for association with subjects and objects.','AC-16(10).1','The organization being inspected/assessed identifies and documents individuals authorized to define or change the type and value of security attributes available for association with subjects and objects.','The organization conducting the inspection/assessment obtains and examines the documented individuals to ensure the organization being inspected/assessed identifies individuals authorized to define or change the type and value of security attributes available for association with subjects and objects.'), ('002306','draft','2013-06-24','DISA FSO','technical','The information system provides authorized individuals the capability to define or change the type of security attributes available for association with subjects.','AC-16(10).2','The organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the type of security attributes available for association with subjects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2306.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the type of security attributes available for association with subjects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2306.'), ('002307','draft','2013-06-24','DISA FSO','technical','The information system provides authorized individuals the capability to define or change the value of security attributes available for association with subjects.','AC-16(10).3','The organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the value of security attributes available for association with subjects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2307.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the value of security attributes available for association with subjects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2307.'), ('002308','draft','2013-06-24','DISA FSO','technical','The information system provides authorized individuals the capability to define or change the type of security attributes available for association with objects.','AC-16(10).4','The organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the type of security attributes available for association with objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2308.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the type of security attributes available for association with objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2308.'), ('002309','draft','2013-06-24','DISA FSO','technical','The information system provides authorized individuals the capability to define or change the value of security attributes available for association with objects.','AC-16(10).5','The organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the value of security attributes available for association with objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2309.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide authorized individuals the capability to define or change the value of security attributes available for association with objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2309.'), ('002310','draft','2013-06-24','DISA FSO','policy','The organization establishes and documents usage restrictions for each type of remote access allowed.','AC-17.2','The organization being inspected/assessed establishes and documents usage restrictions for each type of remote access allowed.','The organization conducting the inspection/assessment obtains and examines the documented usage restrictions to ensure the organization being inspected/assessed establishes and documents usage restrictions for each type of remote access allowed.'), ('002311','draft','2013-06-24','DISA FSO','policy','The organization establishes and documents configuration/connection requirements for each type of remote access allowed.','AC-17.3','The organization being inspected/assessed establishes and documents configuration/connection requirements for each type of remote access allowed.','The organization conducting the inspection/assessment obtains and examines the documented requirements to ensure the organization being inspected/assessed establishes and documents configuration/connection requirements for each type of remote access allowed.'), ('002312','draft','2013-06-24','DISA FSO','policy','The organization establishes and documents implementation guidance for each type of remote access allowed.','AC-17.4','The organization being inspected/assessed establishes and documents implementation guidance for each type of remote access allowed.','The organization conducting the inspection/assessment obtains and examines the documented implementation guidance to ensure the organization being inspected/assessed establishes and documents implementation guidance for each type of remote access allowed.'), ('002313','deprecated','2013-06-24','DISA FSO','technical','The information system controls remote access methods.',NULL,NULL,NULL), ('002314','draft','2013-06-24','DISA FSO','technical','The information system controls remote access methods.','AC-17(1).2','The organization being inspected/assessed configures the information system to control remote access methods. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2314.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to control remote access methods. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2314.'), ('002315','draft','2013-06-24','DISA FSO','policy','The organization defines the number of managed network access control points through which the information system routes all remote access.','AC-17(3).3','The organization being inspected/assessed defines and documents the number of managed network access control points through which the information system routes all remote access. DoD has determined the number is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented number to ensure the organization being inspected/assessed defines the number of managed network access control points through which the information system routes all remote access. DoD has determined the number is not appropriate to define at the Enterprise level.'), ('002316','draft','2013-06-24','DISA FSO','policy','The organization authorizes access to security-relevant information via remote access only for organization-defined needs.','AC-17(4).2','The organization being inspected/assessed authorizes the access to security-relevant information via remote access only for needs defined in AC-17 (4), CCI 2318. The organization being inspected/assessed maintains an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed authorizes the access to security-relevant information via remote access only for needs defined in AC-17 (4), CCI 2318.'), ('002317','draft','2013-06-24','DISA FSO','policy','The organization defines the operational needs for when the execution of privileged commands via remote access is to be authorized.','AC-17(4).3','The organization being inspected/assessed defines and documents the operational needs when the execution of privileged commands via remote access is to be authorized. DoD has determined the operational needs are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented operational needs to ensure the organization being inspected/assessed defines the operational needs when the execution of privileged commands via remote access is to be authorized. DoD has determined the operational needs are not appropriate to define at the Enterprise level.'), ('002318','draft','2013-06-24','DISA FSO','policy','The organization defines the operational needs for when access to security-relevant information via remote access is to be authorized.','AC-17(4).4','The organization being inspected/assessed defines and documents the operational needs when access to security-relevant information via remote access is to be authorized. DoD has determined the operational needs are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented operational needs to ensure the organization being inspected/assessed defines the operational needs when access to security-relevant information via remote access is to be authorized. DoD has determined the operational needs are not appropriate to define at the Enterprise level.'), ('002319','draft','2013-06-24','DISA FSO','policy','The organization documents in the security plan for the information system the rationale for authorization of the execution of privilege commands via remote access.','AC-17(4).5','The organization being inspected/assessed documents in the security plan for the information system the rationale for authorization of the execution of privilege commands via remote access.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed documents in the security plan for the information system the rationale for authorization of the execution of privilege commands via remote access.'), ('002320','draft','2013-06-24','DISA FSO','policy','The organization documents in the security plan for the information system the rationale for authorization of access to security-relevant information via remote access.','AC-17(4).6','The organization being inspected/assessed documents in the security plan for the information system the rationale for authorization of access to security-relevant information via remote access.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed documents in the security plan for the information system the rationale for authorization of access to security-relevant information via remote access.'), ('002321','draft','2013-06-24','DISA FSO','policy','The organization defines the time period within which it disconnects or disables remote access to the information system.','AC-17(9).1','DoD has defined the time period as immediately.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediately.'), ('002322','draft','2013-06-24','DISA FSO','technical','The organization provides the capability to expeditiously disconnect or disable remote access to the information system within the organization-defined time period.','AC-17(9).2','The organization being inspected/assessed configures the information system to provide the capability to expeditiously disconnect or disable remote access to the information system immediately. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2322. DoD has defined the time period as immediately.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability to expeditiously disconnect or disable remote access to the information system immediately. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2322. DoD has defined the time period as immediately.'), ('002323','draft','2013-06-24','DISA FSO','policy','The organization establishes configuration/connection requirements for wireless access.','AC-18.3','The organization being inspected/assessed establishes and documents configuration/connection requirements for wireless access.','The organization conducting the inspection/assessment obtains and examines the documented configuration/connection requirements to ensure the organization being inspected/assessed establishes configuration/connection requirements for wireless access.'), ('002324','draft','2013-06-24','DISA FSO','policy','The organization identifies and explicitly authorizes users allowed to independently configure wireless networking capabilities.','AC-18(4).1','The organization being inspected/assessed identifies and explicitly authorizes users allowed to independently configure wireless networking capabilities. The organization must maintain an audit trail of authorizations.','The organization conducting the inspection/assessment obtains and examines the audit trail of authorizations to ensure the organization being inspected/assessed identifies and explicitly authorizes users allowed to independently configure wireless networking capabilities.'), ('002325','draft','2013-06-24','DISA FSO','policy','The organization establishes configuration requirements for organization-controlled mobile devices.','AC-19.3','DoD is automatically compliant with this CCI because existing STIGs establish configuration requirements for approved mobile devices.','DoD is automatically compliant with this CCI because existing STIGs establish configuration requirements for approved mobile devices.'), ('002326','draft','2013-06-24','DISA FSO','policy','The organization establishes connection requirements for organization-controlled mobile devices.','AC-19.4','The organization being inspected/assessed establishes and documents connection requirements for organization controlled mobile devices.','The organization conducting the inspection/assessment obtains and examines the documented connection requirements to ensure the organization being inspected/assessed establishes connection requirements for organization controlled mobile devices.'), ('002327','draft','2013-06-24','DISA FSO','policy','The organization defines the security policies which restrict the connection of classified mobile devices to classified information systems.','AC-19(4).8','The organization being inspected/assessed defines and documents the security policies which restrict the connection of classified mobile devices to classified information systems. DoD has determined the security policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security policies to ensure the organization being inspected/assessed defines the security policies which restrict the connection of classified mobile devices to classified information systems. DoD has determined the security policies are not appropriate to define at the Enterprise level.'), ('002328','draft','2013-06-24','DISA FSO','policy','The organization restricts the connection of classified mobile devices to classified information systems in accordance with organization-defined security policies.','AC-19(4).9','The organization being inspected/assessed documents and implements a process to restrict the connection of classified mobile devices to classified information systems in accordance with the security policies defined in AC-19 (4), CCI 2327.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed restricts the connection of classified mobile devices to classified information systems in accordance with the security policies defined in AC-19 (4), CCI 2327.'), ('002329','draft','2013-06-24','DISA FSO','policy','The organization defines the mobile devices that are to employ full-device or container encryption to protect the confidentiality and integrity of the information on the device.','AC-19(5).2','The organization being inspected/assessed defines and documents the mobile devices that are to employ full-device or container encryption to protect the confidentiality and integrity of the information on device. DoD has determined the mobile devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented mobile devices to ensure the organization being inspected/assessed defines the mobile devices that are to employ full-device or container encryption to protect the confidentiality and integrity of the information on device. DoD has determined the mobile devices are not appropriate to define at the Enterprise level.'), ('002330','draft','2013-06-24','DISA FSO','policy','The organization employs full-device encryption or container encryption to protect the confidentiality of information on organization-defined mobile devices.','AC-19(5).3','The organization being inspected/assessed documents and implements a process for full-device encryption or container encryption to protect the confidentiality of information on mobile devices defined in AC-19 (5), CCI 2329. ','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs full-device encryption or container encryption to protect the confidentiality of information on mobile devices defined in AC-19 (5), CCI 2329.'), ('002331','draft','2013-06-24','DISA FSO','policy','The organization employs full-device encryption or container encryption to protect the integrity of information on organization-defined mobile devices.','AC-6(7).4','The organization being inspected/assessed documents and implements a process to reassign or remove privileges, if necessary, to correctly reflect organizational mission/business needs.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed reassigns or removes privileges, if necessary, to correctly reflect organizational mission/business needs.'), ('002332','draft','2013-06-24','DISA FSO','policy','The organization establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to process, store, or transmit organization-controlled information using the external information systems.','AC-20.2','The organization being inspected/assessed establishes and documents the terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to process, store or transmit organization-controlled information using the external information systems.','The organization conducting the inspection/assessment obtains and examines the documented terms and conditions to ensure the organization being inspected/assessed establishes terms and conditions, consistent with any trust relationships established with other organizations owning, operating, and/or maintaining external information systems, allowing authorized individuals to process, store or transmit organization-controlled information using the external information systems.'), ('002333','draft','2013-06-24','DISA FSO','policy','The organization permits authorized individuals to use an external information system to access the information system only when the organization verifies the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.','AC-20(1).1','The organization being inspected/assessed documents and implements a process to permit authorized individuals to use an external information system to access the information system only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed permits authorized individuals to use an external information system to access the information system only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.'), ('002334','draft','2013-06-24','DISA FSO','policy','The organization permits authorized individuals to use an external information system to process organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.','AC-20(1).2','The organization being inspected/assessed documents and implements a process to permit authorized individuals to use an external information system to process organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed permits authorized individuals to use an external information system to process organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.'), ('002335','draft','2013-06-24','DISA FSO','policy','The organization permits authorized individuals to use an external information system to store organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.','AC-20(1).3','The organization being inspected/assessed documents and implements a process to permit authorized individuals to use an external information system to store organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed permits authorized individuals to use an external information system to store organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.'), ('002336','draft','2013-06-24','DISA FSO','policy','The organization permits authorized individuals to use an external information system to transmit organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organization^s information security policy and security plan.','AC-20(1).4','The organization being inspected/assessed documents and implements a process to permit authorized individuals to use an external information system to transmit organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed permits authorized individuals to use an external information system to transmit organization-controlled information only when the organization verifies the implementation of required security controls on the external system as specified in the organizations information security policy and security plan.'), ('002337','draft','2013-06-24','DISA FSO','policy','The organization permits authorized individuals to use an external information system to access the information system or to process, store, or transmit organization-controlled information only when the organization retains approved information system connection or processing agreements with the organizational entity hosting the external information system.','AC-20(1).5','The organization being inspected/assessed documents and implements a process to permit authorized individuals to use an external information system to access the information system or to process, store, or transmit organization-controlled information only when the organization retains approved information system connection or processing agreements with the organizational entity hosting the external information system.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed permits authorized individuals to use an external information system to access the information system or to process, store, or transmit organization-controlled information only when the organization retains approved information system connection or processing agreements with the organizational entity hosting the external information system.'), ('002338','draft','2013-06-24','DISA FSO','policy','The organization restricts or prohibits the use of non-organizationally owned information systems, system components, or devices to process, store, or transmit organizational information.','AC-20(3).1','The organization being inspected/assessed documents and implements a process to restrict or prohibit the use of non-organizationally owned information systems, system components, or devices to process, store, or transmit organizational information.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed restricts or prohibits the use of non-organizationally owned information systems, system components, or devices to process, store, or transmit organizational information.'), ('002339','draft','2013-06-24','DISA FSO','policy','The organization defines the network accessible storage devices that are to be prohibited from being used in external information systems.','AC-20(4).1','The organization being inspected/assessed defines and documents the network accessible storage devices that are to be prohibited from being used in external information systems. DoD has determined the network accessible storage devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented network accessible storage devices to ensure the organization being inspected/assessed defines the network accessible storage devices that are to be prohibited from being used in external information systems. DoD has determined the network accessible storage devices are not appropriate to define at the Enterprise level.'), ('002340','draft','2013-06-24','DISA FSO','policy','The organization prohibits the use of organization-defined network accessible storage devices in external information systems.','AC-20(4).2','The organization being inspected/assessed documents and implements a process to prohibit the use of network accessible storage devices defined in AC-20 (4), CCI 2339 in external information systems.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed prohibits the use of network accessible storage devices defined in AC-20 (4), CCI 2339 in external information systems.'), ('002341','draft','2013-06-25','DISA FSO','policy','The organization defines the information sharing restrictions to be enforced by the information system for information search and retrieval services.','AC-21(2).1','The organization being inspected/assessed defines and documents the information sharing restrictions to be enforced by the information system for information search and retrieval services. DoD has determined the information sharing restrictions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information sharing restrictions to ensure the organization being inspected/assessed defines the information sharing restrictions to be enforced by the information system for information search and retrieval services. DoD has determined the information sharing restrictions are not appropriate to define at the Enterprise level.'), ('002342','draft','2013-06-25','DISA FSO','technical','The information system implements information search and retrieval services that enforce organization-defined information sharing restrictions.','AC-21(2).2','The organization being inspected/assessed configures the information system to configure the information system to implement information search and retrieval services that enforce information sharing restrictions defined in AC-21 (2), CCI 2341. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2342.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement information search and retrieval services that enforce information sharing restrictions defined in AC-21 (2), CCI 2341. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2342.'), ('002343','draft','2013-06-25','DISA FSO','policy','The organization defines the data mining prevention techniques to be employed to adequately protect organization-defined data storage objects against data mining.','AC-23.1','The organization being inspected/assessed defines and documents the data mining prevention techniques to be employed to adequately protect organization-defined data storage objects against data mining. DoD has determined the data mining prevention techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented data mining prevention techniques to ensure the organization being inspected/assessed defines the data mining prevention techniques to be employed to adequately protect organization-defined data storage objects against data mining. DoD has determined the data mining prevention techniques are not appropriate to define at the Enterprise level.'), ('002344','draft','2013-06-25','DISA FSO','policy','The organization defines the data mining detection techniques to be employed to adequately detect data mining attempts against organization-defined data storage objects.','AC-23.2','The organization being inspected/assessed defines and documents the data mining detection techniques to be employed to adequately detect data mining attempts against organization-defined data storage objects. DoD has determined the data mining detection techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented data mining detection techniques to ensure the organization being inspected/assessed defines the data mining detection techniques to be employed to adequately detect data mining attempts against organization-defined data storage objects. DoD has determined the data mining detection techniques are not appropriate to define at the Enterprise level.'), ('002345','draft','2013-06-25','DISA FSO','policy','The organization defines the data storage objects that are to be protected against data mining attempts.','AC-23.3','The organization being inspected/assessed defines and documents the data storage objects that are to be protected against data mining attempts. DoD has determined the data storage objects are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented data storage objects to ensure the organization being inspected/assessed defines the data storage objects that are to be protected against data mining attempts. DoD has determined the data storage objects are not appropriate to define at the Enterprise level.'), ('002346','draft','2013-06-25','DISA FSO','technical','The organization employs organization-defined data mining prevention techniques for organization-defined data storage objects to adequately protect against data mining.','AC-23.4','The organization being inspected/assessed configures the information system to employ data mining prevention techniques defined in AC-23, CCI 2343 for data storage objects defined in AC-23, CCI 2345 to adequately detect data mining attempts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2346.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ data mining prevention techniques defined in AC-23, CCI 2343 for data storage objects defined in AC-23, CCI 2345 to adequately detect data mining attempts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2346.'), ('002347','draft','2013-06-25','DISA FSO','technical','The organization employs organization-defined data mining detection techniques for organization-defined data storage objects to adequately detect data mining attempts.','AC-23.5','The organization being inspected/assessed configures the information system to employ data mining detection techniques defined in AC-23, CCI 2344 for data storage objects defined in AC-23, CCI 2345 to adequately detect data mining attempts. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2347.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ data mining detection techniques defined in AC-23, CCI 2344 for data storage objects defined in AC-23, CCI 2345 to adequately detect data mining attempts. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2347.'), ('002348','draft','2013-06-25','DISA FSO','policy','The organization defines the access control decisions that are to be applied to each access request prior to access enforcement.','AC-24.1','The organization being inspected/assessed defines and documents the access control decisions that are to be applied to each access request prior to access enforcement. DoD has determined the access control decisions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented access control decisions to ensure the organization being inspected/assessed defines the access control decisions that are to be applied to each access request prior to access enforcement. DoD has determined the access control decisions are not appropriate to define at the Enterprise level.'), ('002349','draft','2013-06-25','DISA FSO','policy','The organization establishes procedures to ensure organization-defined access control decisions are applied to each access request prior to access enforcement.','AC-24.2','The organization being inspected/assessed establishes and documents procedures to ensure access control decisions defined in AC-24, CCI 2348 are applied to each access request prior to access enforcement.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed establishes procedures to ensure access control decisions defined in AC-24, CCI 2348 are applied to each access request prior to access enforcement.'), ('002350','draft','2013-06-25','DISA FSO','policy','The organization defines the access authorization information that is to be transmitted using organization-defined security safeguards to organization-defined information systems that enforce access control decisions.','AC-24(1).1','The organization being inspected/assessed defines and documents the access authorization information that is to be transmitted using organization-defined security safeguards to organization-defined information systems that enforce access control decisions. DoD has determined the access authorization information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented access authorization information to ensure the organization being inspected/assessed defines the access authorization information that is to be transmitted using organization-defined security safeguards to organization-defined information systems that enforce access control decisions. DoD has determined the access authorization information is not appropriate to define at the Enterprise level.'), ('002351','draft','2013-06-25','DISA FSO','policy','The organization defines the security safeguards to be employed when transmitting organization-defined access authorization information to organization-defined information systems that enforce access control decisions.','AC-24(1).2','The organization being inspected/assessed defines and documents the security safeguards to be employed when transmitting organization-defined access authorization information to organization-defined information systems that enforce access control decisions. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be employed when transmitting organization-defined access authorization information to organization-defined information systems that enforce access control decisions. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002352','draft','2013-06-25','DISA FSO','policy','The organization defines the information systems that are to be recipients of organization-defined access authorization information using organization-defined security safeguards.','AC-24(1).3','The organization being inspected/assessed defines and documents the information systems that are to be recipients of organization-defined access authorization information using organization-defined security safeguards. DoD has determined the information systems are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems to ensure the organization being inspected/assessed defines the information systems that are to be recipients of organization-defined access authorization information using organization-defined security safeguards. DoD has determined the information systems are not appropriate to define at the Enterprise level.'), ('002353','draft','2013-06-25','DISA FSO','technical','The information system transmits organization-defined access authorization information using organization-defined security safeguards to organization-defined information systems which enforce access control decisions.','AC-24(1).4','The organization being inspected/assessed configures the information system to transmit access authorization information defined in AC-24 (1), CCI 2350 using security safeguards defined in AC-24 (1), CCI 2351 to information systems defined in AC-24 (1), CCI 2352 which enforce access control decisions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2353.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to transmit access authorization information defined in AC-24 (1), CCI 2350 using security safeguards defined in AC-24 (1), CCI 2351 to information systems defined in AC-24 (1), CCI 2352 which enforce access control decisions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2353.'), ('002354','draft','2013-06-25','DISA FSO','policy','The organization defines the security attributes, not to include the identity of the user or process acting on behalf of the user, to be used as the basis for enforcing access control decisions.','AC-24(2).1','The organization being inspected/assessed defines and documents the security attributes, not to include the identity of the user or process acting on behalf of the user, to be used as the basis for enforcing access control decisions. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines the security attributes, not to include the identity of the user or process acting on behalf of the user, to be used as the basis for enforcing access control decisions. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002355','draft','2013-06-25','DISA FSO','technical','The information system enforces access control decisions based on organization-defined security attributes that do not include the identity of the user or process acting on behalf of the user.','AC-24(2).2','The organization being inspected/assessed configures the information system to enforce access control decisions based on security attributes defined in AC-24 (2), CCI 2354 that do not include the identity of the user or process acting on behalf of the user. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2355.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce access control decisions based on security attributes defined in AC-24 (2), CCI 2354 that do not include the identity of the user or process acting on behalf of the user. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2355.'), ('002356','draft','2013-06-25','DISA FSO','policy','The organization defines the access control policies to be implemented by the information system^s reference monitor.','AC-25.1','The organization being inspected/assessed defines and documents the access control policies to be implemented by the information system\'s reference monitor. DoD has determined the access control policies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented access control policies to ensure the organization being inspected/assessed defines the access control policies to be implemented by the information system\'s reference monitor. DoD has determined the access control policies are not appropriate to define at the Enterprise level.'), ('002357','draft','2013-06-25','DISA FSO','technical','The information system implements a reference monitor for organization-defined access control policies that is tamperproof.','AC-25.2','The organization being inspected/assessed configures the information system to implement a reference monitor for access control policies defined in AC-25, CCI 2356 that is tamperproof. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2357.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement a reference monitor for access control policies defined in AC-25, CCI 2356 that is tamperproof. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2357.'), ('002358','draft','2013-06-25','DISA FSO','technical','The information system implements a reference monitor for organization-defined access control policies that is always invoked.','AC-25.3','The organization being inspected/assessed configures the information system to implement a reference monitor for access control policies defined in AC-25, CCI 2356 that is always invoked. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2358.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement a reference monitor for access control policies defined in AC-25, CCI 2356 that is always invoked. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2358.'), ('002359','draft','2013-06-25','DISA FSO','technical','The information system implements a reference monitor for organization-defined access control policies that is small enough to be subject to analysis and testing, the completeness of which can be assured.','AC-25.4','The organization being inspected/assessed configures the information system to implement a reference monitor for access control policies defined in AC-25, CCI 2356 that is small enough to be subject to analysis and testing, the completeness of which can be assured. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2359.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement a reference monitor for access control policies defined in AC-25, CCI 2356 that is small enough to be subject to analysis and testing, the completeness of which can be assured. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2359.'), ('002360','draft','2013-06-26','DISA FSO','policy','The organization defines the conditions or trigger events requiring session disconnect to be employed by the information system when automatically terminating a user session.','AC-12.1','The organization being inspected/assessed defines and documents the conditions or trigger events requiring session disconnect to be employed by the information system when automatically terminating a user session. DoD has determined the conditions or trigger events are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions or trigger events to ensure the organization being inspected/assessed defines the conditions or trigger events requiring session disconnect to be employed by the information system when automatically terminating a user session. DoD has determined the conditions or trigger events are not appropriate to define at the Enterprise level.'), ('002361','draft','2013-06-26','DISA FSO','technical','The information system automatically terminates a user session after organization-defined conditions or trigger events requiring session disconnect.','AC-12.2','The organization being inspected/assessed configures the information system to automatically terminate a user session after conditions or trigger events requiring session disconnect, as defined in AC-12, CCI 2360. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2361.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically terminate a user session after conditions or trigger events requiring session disconnect, as defined in AC-12, CCI 2360. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2361.'), ('002362','draft','2013-06-26','DISA FSO','policy','The organization defines the resources requiring information system authentication in order to gain access.','AC-12(1).1','DoD has defined the resources as all.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the resources as all.'), ('002363','draft','2013-06-26','DISA FSO','technical','The information system provides a logout capability for user-initiated communications sessions whenever authentication is used to gain access to organization-defined information resources.','AC-12(1).2','The organization being inspected/assessed configures the information system to provide a logout capability for user-initiated communications sessions whenever authentication is used to gain access to all information resources. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2363. DoD has defined the resources as all.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide a logout capability for user-initiated communications sessions whenever authentication is used to gain access to all information resources. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2363. DoD has defined the resources as all.'), ('002364','draft','2013-06-26','DISA FSO','technical','The information system displays an explicit logout message to users indicating the reliable termination of authenticated communications sessions.','AC-12(1).3','The organization being inspected/assessed configures the information system to display an explicit logout message to users indicating the reliable termination of authenticated communications sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2364.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to display an explicit logout message to users indicating the reliable termination of authenticated communications sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2364.'), ('002365','draft','2013-06-26','DISA FSO','policy','The organization manages information system authenticators by requiring individuals to take specific security safeguards to protect authenticators.','IA-5.20','The organization being inspected/assessed documents within user agreements that individuals shall safeguard authenticators.','The organization conducting the inspection/assessment obtains and examines the user agreements of the organization being inspected/assessed to ensure that there are requirements for individuals to safeguard authenticators.'), ('002366','draft','2013-06-26','DISA FSO','policy','The organization manages information system authenticators by having devices implement specific security safeguards to protect authenticators.','IA-5.21','The organization being inspected/assessed configures the information system to manage information system authenticators by having devices implement, specific security safeguards to protect authenticators. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2366.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to manage information system authenticators by having devices implement, specific security safeguards to protect authenticators. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2366.'), ('002367','draft','2013-06-26','DISA FSO','policy','The organization ensures unencrypted static authenticators are not embedded in applications.','IA-5(7).3','The organization being inspected/assessed documents and implements requirements that static authenticators are not embedded in applications.','The organization conducting the inspection/assessment obtains and examines the requirements that static authenticators are not embedded in applications to ensure the organization being inspected/assessed ensures unencrypted static authenticators are not embedded in applications.'), ('002368','draft','2013-07-01','DISA FSO','policy','The organization defines the personnel or roles to whom the risk assessment policy is disseminated.','RA-1.1','DoD has defined the roles as at a minimum, the ISSM and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.'), ('002369','draft','2013-07-01','DISA FSO','policy','The organization defines the personnel or roles to whom the risk assessment procedures are disseminated.','RA-1.2','DoD has defined the roles as at a minimum, the ISSM and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.'), ('002370','draft','2013-07-01','DISA FSO','policy','The organization disseminates risk assessment results to organization-defined personnel or roles.','RA-3.6','The organization being inspected/assessed documents and implements a process to disseminates risk assessment results to the ISSM, ISSO, AO, and PM. DoD has defined the personnel or roles as the ISSM, ISSO, AO, and PM.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed disseminates the risk assessment results to the ISSM, ISSO, AO, and PM. DoD has defined the personnel or roles as the ISSM, ISSO, AO, and PM.'), ('002371','draft','2013-07-01','DISA FSO','policy','The organization defines the personnel or roles to whom the risk assessment results will be disseminated.','RA-3.7','DoD has defined the personnel or roles as the ISSM, ISSO, AO, and PM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSM, ISSO, AO, and PM.'), ('002372','draft','2013-07-01','DISA FSO','policy','The organization correlates the output from vulnerability scanning tools to determine the presence of multi-vulnerability/multi-hop attack vectors.','RA-5(10).1','The organization being inspected/assessed documents and implements a process to correlate the output from vulnerability scanning tools to determine the presence of multi-vulnerability/multi-hop attack vectors.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed correlates the output from vulnerability scanning tools to determine the presence of multi-vulnerability/ multi-hop attack vectors.'), ('002373','draft','2013-07-01','DISA FSO','policy','The organization employs vulnerability scanning procedures that can identify the breadth and depth of coverage (i.e., information system components scanned and vulnerabilities checked).','RA-5(3).1','The organization being inspected/assessed employs the DoD Enterprise scanning tool.','The organization conducting the inspection/assessment obtains and examines the software list or vulnerability scanning procedures to ensure the organization being inspected/assessed employs the DoD Enterprise scanning tool.'), ('002374','draft','2013-07-01','DISA FSO','policy','The organization defines the corrective actions when information about the information system is discoverable by adversaries.','RA-5(4).2','The organization being inspected/assessed defines and documents the corrective actions when information about the information system is discoverable by adversaries. DoD has determined the corrective actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented corrective actions to ensure the organization being inspected/assessed defines the corrective actions when information about the information system is discoverable by adversaries. DoD has determined the corrective actions are not appropriate to define at the Enterprise level.'), ('002375','draft','2013-07-02','DISA FSO','policy','The organization takes organization-defined corrective actions when information about the information system is discoverable by adversaries.','RA-5(4).3','The organization being inspected/assessed documents and implements a process to take the corrective actions defined in RA-5 (4), CCI 2374 when information about the information system is discoverable by adversaries. The organization must maintain a record of actions taken.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of actions taken to ensure the organization being inspected/assessed takes the corrective actions defined in RA-5 (4), CCI 2374 when information about the information system is discoverable by adversaries.'), ('002376','draft','2013-07-02','DISA FSO','policy','The organization defines the personnel or roles with whom the information obtained from the vulnerability scanning process and security control assessments will be shared.','RA-5.11','DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002377','draft','2013-07-02','DISA FSO','policy','The organization documents the system and communications protection policy.',NULL,NULL,NULL), ('002378','draft','2013-07-02','DISA FSO','policy','The organization defines the personnel or roles to be recipients of the system and communications protection policy.','SC-1.1','The organization being inspected/assessed defines and documents personnel or roles to be recipients of the system and communications protection policy. The personnel or roles must include at a minimum, the ISSM/ISSO. DoD has defined the personnel or roles as at a minimum, the ISSO/ISSM.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to be recipients of the system and communications protection policy. The personnel or roles must include at a minimum, the ISSM/ISSO. DoD has defined the personnel or roles as at a minimum, the ISSO/ISSM.'), ('002379','draft','2013-07-02','DISA FSO','policy','The organization documents procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.',NULL,NULL,NULL), ('002380','draft','2013-07-02','DISA FSO','policy','The organization defines the personnel or roles to be recipients of the procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.','SC-1.2','The organization being inspected/assessed defines and documents personnel or roles to be recipients of the procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls. The personnel or roles must include at a minimum, the ISSM/ISSO. DoD has defined the personnel or roles as at a minimum, the ISSO/ISSM.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to be recipients of the procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls. The personnel or roles must include at a minimum, the ISSM/ISSO. DoD has defined the personnel or roles as at a minimum, the ISSO/ISSM.'), ('002381','draft','2013-07-02','DISA FSO','technical','The organization minimizes the number of nonsecurity functions included within the isolation boundary containing security functions.','SC-3(3).1','The organization being inspected/assessed configures the information system to minimize the number of nonsecurity functions included within the isolation boundary containing security functions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2381.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to minimize the number of nonsecurity functions included within the isolation boundary containing security functions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2381.'), ('002382','draft','2013-07-02','DISA FSO','technical','The organization implements security functions as largely independent modules that maximize internal cohesiveness within modules and minimize coupling between modules.','SC-3(4).1','The organization being inspected/assessed configures the information system to implement security functions as largely independent modules that maximize internal cohesiveness within modules and minimize coupling between modules. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2382.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement security functions as largely independent modules that maximize internal cohesiveness within modules and minimize coupling between modules. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2382.'), ('002383','draft','2013-07-02','DISA FSO','policy','The organization defines the procedures to be employed to prevent unauthorized information transfer via shared resources when system processing explicitly switches between different information classification levels or security categories.','SC-4(2).1','The organization being inspected/assessed defines and documents the procedures to be employed to prevent the unauthorized information transfer via shared resources when system processing explicitly switches between different information classification levels or security categories. DoD has determined the procedures are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed defines the procedures to be employed to prevent the unauthorized information transfer via shared resources when system processing explicitly switches between different information classification levels or security categories. DoD has determined the procedures are not appropriate to define at the Enterprise level.'), ('002384','draft','2013-07-02','DISA FSO','technical','The information system prevents unauthorized information transfer via shared resources in accordance with organization-defined procedures when system processing explicitly switches between different information classification levels or security categories.','SC-4(2).2','The organization being inspected/assessed configures the information system to prevent unauthorized information transfer via shared resources in accordance with procedures defined in SC-4 (2), CCI 2383 when system processing explicitly switches between different information classification levels or security categories. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2384.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent unauthorized information transfer via shared resources in accordance with procedures defined in SC-4 (2), CCI 2383 when system processing explicitly switches between different information classification levels or security categories. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2384.'), ('002385','draft','2013-07-02','DISA FSO','technical','The information system protects against or limits the effects of organization-defined types of denial of service attacks by employing organization-defined security safeguards.','SC-5.2','The organization being inspected/assessed configures the information system to protect against or limits the effects of types of denial of service attacks defined in SC-5, CCI 1093 by employing security safeguards defined in SC-5, CCI 2386. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2385.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect against or limits the effects of types of denial of service attacks defined in SC-5, CCI 1093 by employing security safeguards defined in SC-5, CCI 2386. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2385.'), ('002386','draft','2013-07-02','DISA FSO','policy','The organization defines the security safeguards to be employed to protect the information system against, or limit the effects of, denial of service attacks.','SC-5.3','The organization being inspected/assessed defines and documents the security safeguards to be employed to protect the information system against, or limit the effects of, denial of service attacks. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be employed to protect the information system against, or limit the effects of, denial of service attacks. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002387','draft','2013-07-02','DISA FSO','policy','The organization defines the denial of service attacks against other information systems that the information system is to restrict the ability of individuals to launch.','SC-5(1).2','The organization being inspected/assessed defines and documents the denial of service attacks against other information systems the information system is to restrict the ability of individuals to launch. DoD has determined the denial of service attacks as not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented denial of service attacks to ensure the organization being inspected/assessed defines the denial of service attacks against other information systems the information system is to restrict the ability of individuals to launch. DoD has determined the denial of service attacks as not appropriate to define at the Enterprise level.'), ('002388','draft','2013-07-02','DISA FSO','policy','The organization defines a list of monitoring tools to be employed to detect indicators of denial of service attacks against the information system.','SC-5(3).1','The organization being inspected/assessed defines and documents a list of monitoring tools to be employed to detect indicators of denial of service attacks against the information system. DoD has determined the monitoring tools are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented monitoring tools to ensure the organization being inspected/assessed defines a list of monitoring tools to be employed to detect indicators of denial of service attacks against the information system. DoD has determined the monitoring tools are not appropriate to define at the Enterprise level.'), ('002389','draft','2013-07-02','DISA FSO','policy','The organization employs an organization-defined list of monitoring tools to detect indicators of denial of service attacks against the information system.','SC-5(3).2','The organization being inspected/assessed implements the monitoring tools defined in SC-5 (3), CCI 2388 to detect indicators of denial of service attacks against the information system.','The organization conducting the inspection/assessment obtains and examines the list of monitoring tools as defined in SC-5 (3), CCI 2388 and a sampling of monitoring results to ensure the organization being inspected/assessed employs organization-defined list of monitoring tools to detect indicators of denial of service attacks against the information system.'), ('002390','draft','2013-07-02','DISA FSO','policy','The organization defines the information system resources to be monitored to determine if sufficient resources exist to prevent effective denial of service attacks.','SC-5(3).3','The organization being inspected/assessed defines and documents the information system resources to be monitored to determine if sufficient resources exist to prevent effective denial of service attacks. DoD has determined the information system resources are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system resources to ensure the organization being inspected/assessed defines the information system resources to be monitored to determine if sufficient resources exist to prevent effective denial of service attacks. DoD has determined the information system resources are not appropriate to define at the Enterprise level.'), ('002391','draft','2013-07-02','DISA FSO','policy','The organization monitors organization-defined information system resources to determine if sufficient resources exist to prevent effective denial of service attacks.','SC-5(3).4','The organization being inspected/assessed monitors information system resources defined in SC-5 (3), CCI 2390 to determine if sufficient resources exist to prevent effective denial of service attacks.','The organization conducting the inspection/assessment obtains and examines the documented monitoring procedures and any available artifacts from the monitoring process to ensure the organization being inspected/assessed monitors information system resources defined in SC-5 (3), CCI 2390 to determine if sufficient resources exist to prevent effective denial of service attacks.'), ('002392','draft','2013-07-02','DISA FSO','policy','The organization defines the resources to be allocated to protect the availability of information system resources.','SC-6.1','The organization being inspected/assessed defines and documents the resources to be allocated to protect the availability of information system resources. DoD has determined the resources are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented resources to ensure the organization being inspected/assessed defines the resources to be allocated to protect the availability of information system resources. DoD has determined the resources are not appropriate to define at the Enterprise level.'), ('002393','draft','2013-07-02','DISA FSO','policy','The organization defines the security safeguards to be employed to protect the availability of information system resources.','SC-6.2','The organization being inspected/assessed defines and documents security safeguards to be employed to protect the availability of information system resources. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be employed to protect the availability of information system resources. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002394','draft','2013-07-02','DISA FSO','technical','The information system protects the availability of resources by allocating organization-defined resources based on priority, quota, and/or organization-defined security safeguards.','SC-6.3','The organization being inspected/assessed configures the information system to protect the availability of resources by allocating resources defined in SC-6, CCI 2392 based on priority, quota, and/or security safeguards defined in SC-6, CCI 2393. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2394.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect the availability of resources by allocating resources defined in SC-6, CCI 2392 based on priority, quota, and/or security safeguards defined in SC-6, CCI 2393. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2394.'), ('002395','draft','2013-07-02','DISA FSO','policy','The information system implements subnetworks for publicly accessible system components that are physically and/or logically separated from internal organizational networks.','SC-7.2','The organization being inspected/assessed designs the information system to leverage subnetworks so that publicly accessible system components are physically and/or logically separated from internal organizational networks.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying component partitioning to ensure the organization being inspected/assessed implements subnetworks for publicly accessible system components that are physically and/or logically separated from internal organizational networks.'), ('002396','draft','2013-07-02','DISA FSO','policy','The organization protects the confidentiality and integrity of the information being transmitted across each interface for each external telecommunication service.','SC-7(4).3','The organization being inspected/assessed documents and implements mechanisms to protect the confidentiality and integrity of the information being transmitted across each interface for each external telecommunication service.','The organization conducting the inspection/assessment obtains and examines the documented mechanisms to ensure the organization being inspected/assessed protects the confidentiality and integrity of the information being transmitted across each interface for each external telecommunication service.'), ('002397','draft','2013-07-02','DISA FSO','technical','The information system, in conjunction with a remote device, prevents the device from simultaneously establishing non-remote connections with the system and communicating via some other connection to resources in external networks.','SC-7(7).1','The organization being inspected/assessed configures the information system to prevent the device from simultaneously establishing non-remote connections with the system and communicating via some other connection to resources in external networks. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2397.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prevent the device from simultaneously establishing non-remote connections with the system and communicating via some other connection to resources in external networks. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2397.'), ('002398','draft','2013-07-02','DISA FSO','policy','The information system detects outgoing communications traffic posing a threat to external information systems.','SC-7(9).1','The organization being inspected/assessed configures the information system to detect outgoing communications traffic posing a threat to external information systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2398.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to detect outgoing communications traffic posing a threat to external information systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2398.'), ('002399','draft','2013-07-02','DISA FSO','policy','The information system denies outgoing communications traffic posing a threat to external information systems.','SC-7(9).2','The organization being inspected/assessed configures the information system to deny outgoing communications traffic posing a threat to external information systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2399.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to deny outgoing communications traffic posing a threat to external information systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2399.'), ('002400','draft','2013-07-02','DISA FSO','technical','The information system audits the identity of internal users associated with denied outgoing communications traffic posing a threat to external information systems.','SC-7(9).3','The organization being inspected/assessed configures the information system to audit the identity of internal users associated with denied outgoing communications traffic posing a threat to external information systems. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2400.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to audit the identity of internal users associated with denied outgoing communications traffic posing a threat to external information systems. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2400.'), ('002401','draft','2013-07-02','DISA FSO','policy','The organization defines the authorized sources from which the information system will allow incoming communications.','SC-7(11).1','The organization being inspected/assessed defines and documents the authorized sources from which the information system will allow incoming communications. DoD has determined the authorized sources are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented authorized sources to ensure the organization being inspected/assessed defines the authorized sources from which the information system will allow incoming communications. DoD has determined the authorized sources are not appropriate to define at the Enterprise level.'), ('002402','draft','2013-07-02','DISA FSO','policy','The organization defines the authorized destinations for routing inbound communications.','SC-7(11).2','The organization being inspected/assessed defines and documents the authorized destinations for routing inbound communications. DoD has determined the authorized destinations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented authorized destinations to ensure the organization being inspected/assessed defines the authorized destinations for routing inbound communications. DoD has determined the authorized destinations are not appropriate to define at the Enterprise level.'), ('002403','draft','2013-07-02','DISA FSO','technical','The information system only allows incoming communications from organization-defined authorized sources routed to organization-defined authorized destinations.','SC-7(11).3','The organization being inspected/assessed configures the information system to allow incoming communications from authorized sources defined in SC-7 (11), CCI 2401 routed to authorized destinations defined in SC-7 (11), CCI 2402. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2403.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to allow incoming communications from authorized sources defined in SC-7 (11), CCI 2401 routed to authorized destinations defined in SC-7 (11), CCI 2402. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2403.'), ('002404','draft','2013-07-02','DISA FSO','policy','The organization defines the host-based boundary protection mechanisms that are to be implemented at organization-defined information system components.','SC-7(12).1','DoD has defined the information system components as McAfee Host Intrusion Prevention (HIPS).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as McAfee Host Intrusion Prevention (HIPS).'), ('002405','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components at which organization-defined host-based boundary protection mechanisms will be implemented.','SC-7(12).2','DoD has defined the information system components as all information system components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as all information system components.'), ('002406','draft','2013-07-02','DISA FSO','policy','The organization implements organization-defined host-based boundary protection mechanisms at organization-defined information system components.','SC-7(12).3','The organization being inspected/assessed implements McAfee Host Intrusion Prevention (HIPS) on all information system components. DoD has defined the host-based boundary protection mechanisms as McAfee Host Intrusion Prevention (HIPS). DoD has defined the information system components as all information system components.','The organization conducting the inspection/assessment examines a sampling of information system components to ensure the organization being inspected/assessed implements McAfee Host Intrusion Prevention (HIPS) on all information system components. DoD has defined the host-based boundary protection mechanisms as McAfee Host Intrusion Prevention (HIPS). DoD has defined the information system components as all information system components.'), ('002407','draft','2013-07-02','DISA FSO','policy','The organization defines the managed interfaces at which the organization protects against unauthorized physical connections.','SC-7(14).3','DoD has defined the managed interfaces as internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the managed interfaces as internet access points, enclave LAN to WAN, cross domain solutions, and any DoD Approved Alternate Gateways.'), ('002408','draft','2013-07-02','DISA FSO','policy','The organization defines the independently configured communication clients, which are configured by end users and external service providers, between which the information system will block both inbound and outbound communications traffic.','SC-7(19).1','The organization being inspected/assessed defines and documents the independently configured communication clients, which are configured by end users and external service providers, between which the information system will block both inbound and outbound communications traffic. DoD has determined the communication clients are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented communication clients to ensure the organization being inspected/assessed defines the independently configured communication clients, which are configured by end users and external service providers, between which the information system will block both inbound and outbound communications traffic. DoD has determined the communication clients are not appropriate to define at the Enterprise level.'), ('002409','draft','2013-07-02','DISA FSO','technical','The information system blocks both inbound and outbound communications traffic between organization-defined communication clients that are independently configured by end users and external service providers.','SC-7(19).2','The organization being inspected/assessed configures the information system to block both inbound and outbound communications traffic between communication clients defined in SC-7 (19), CCI 2408 that are independently configured by end users and external service providers. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2409.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to block both inbound and outbound communications traffic between communication clients defined in SC-7 (19), CCI 2408 that are independently configured by end users and external service providers. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2409.'), ('002410','draft','2013-07-02','DISA FSO','policy','The organization defines information system components that are to be dynamically isolated/segregated from other components of the information system.','SC-7(20).1','The organization being inspected/assessed defines and documents information system components that are to be dynamically isolated/segregated from other components of the information system. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines information system components that are to be dynamically isolated/segregated from other components of the information system. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002411','draft','2013-07-02','DISA FSO','technical','The information system provides the capability to dynamically isolate/segregate organization-defined information system components from other components of the system.','SC-7(20).2','The organization being inspected/assessed configures the information system to provide the capability to dynamically isolate/segregate information system components defined in SC-7 (20), CCI 2410 from other components of the system. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2411.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability to dynamically isolate/segregate information system components defined in SC-7 (20), CCI 2410 from other components of the system. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2411.'), ('002412','deprecated','2013-07-02','DISA FSO','policy','The organization defines the information system components supporting organization-defined missions and/or business functions that are to be separated using boundary protection mechanisms.',NULL,NULL,NULL), ('002413','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components supporting organization-defined missions and/or business functions that are to be separated using boundary protection mechanisms.','SC-7(21).1','The organization being inspected/assessed defines and documents the information system components supporting organization-defined missions and/or business functions that are to be separated using boundary protection mechanisms. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components supporting organization-defined missions and/or business functions that are to be separated using boundary protection mechanisms. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002414','draft','2013-07-02','DISA FSO','policy','The organization defines the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components.','SC-7(21).2','The organization being inspected/assessed defines and documents the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components. DoD has determined the missions and/or business functions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented missions and/or business functions to ensure the organization being inspected/assessed defines the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components. DoD has determined the missions and/or business functions are not appropriate to define at the Enterprise level.'), ('002415','draft','2013-07-02','DISA FSO','policy','The organization employs boundary protection mechanisms to separate organization-defined information system components supporting organization-defined missions and/or business functions.','SC-7(21).3','The organization being inspected/assessed designs the information system to employ boundary protection mechanisms to separate information system components defined in SC-7 (21), CCI 2413 supporting missions and/or business functions defined in SC-7 (21), CCI 2414.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying component partitioning to ensure the organization being inspected/assessed employs boundary protection mechanisms to separate information system components defined in SC-7 (21), CCI 2413 supporting missions and/or business functions defined in SC-7 (21), CCI 2414.'), ('002416','draft','2013-07-02','DISA FSO','policy','The information system implements separate network addresses (i.e., different subnets) to connect to systems in different security domains.','SC-7(22).1','The organization being inspected/assessed designs the information system to implement separate network addresses (i.e., different subnets) to connect to systems in different security domains.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying component partitioning to ensure the organization being inspected/assessed implements separate network addresses (i.e., different subnets) to connect to systems in different security domains.'), ('002417','draft','2013-07-02','DISA FSO','technical','The information system disables feedback to senders on protocol format validation failure.','SC-7(23).1','The organization being inspected/assessed configures the information system to disable feedback to senders on protocol format validation failure For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2417.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to disable feedback to senders on protocol format validation failure For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2417.'), ('002418','draft','2013-07-02','DISA FSO','policy','The information system protects the confidentiality and/or integrity of transmitted information.','SC-8.1','The organization being inspected/assessed configures the information system to protect the confidentiality and/or integrity of transmitted information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2418.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to protect the confidentiality and/or integrity of transmitted information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2418.'), ('002419','draft','2013-07-02','DISA FSO','policy','The organization defines the alternative physical safeguards to be employed when cryptographic mechanisms are not implemented to protect information during transmission.','SC-8(1).1','DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).'), ('002420','draft','2013-07-02','DISA FSO','technical','The information system maintains the confidentiality and/or integrity of information during preparation for transmission.','SC-8(2).1','The organization being inspected/assessed configures the information system to maintain the confidentiality and integrity of information during preparation for transmission. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2420. DoD has defined the selection as both confidentiality and integrity.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain the confidentiality and integrity of information during preparation for transmission. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2420.'), ('002421','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to prevent unauthorized disclosure of information and/or detect changes to information during transmission unless otherwise protected by organization-defined alternative physical safeguards.','SC-8(1).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent unauthorized disclosure of information and detect changes to information during transmission unless otherwise protected by Protected Distribution System (PDS). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2421. DoD has defined the selection as both prevention of unauthorized disclosure and detection of changes to information. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent unauthorized disclosure of information and detect changes to information during transmission unless otherwise protected by Protected Distribution System (PDS). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2421. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).'), ('002422','draft','2013-07-02','DISA FSO','technical','The information system maintains the confidentiality and/or integrity of information during reception.','SC-8(2).2','The organization being inspected/assessed configures the information system to maintain the confidentiality and integrity of information during reception. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2422. DoD has defined the selection as both confidentiality and integrity.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain the confidentiality and integrity of information during reception. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2422.'), ('002423','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to protect message externals (e.g., message headers and routing information) unless otherwise protected by organization-defined alternative physical safeguards.','SC-8(3).1','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect message externals (e.g., message headers and routing information) unless otherwise protected by Protected Distribution System (PDS). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2423. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect message externals (e.g., message headers and routing information) unless otherwise protected by Protected Distribution System (PDS). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2423. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).'), ('002424','draft','2013-07-02','DISA FSO','policy','The organization defines the alternative physical safeguards to be employed when cryptographic mechanisms are not implemented by the information system.','SC-8(4).1','DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).'), ('002425','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to conceal or randomize communication patterns unless otherwise protected by organization-defined alternative physical safeguards.','SC-8(4).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to conceal or randomize communication patterns unless otherwise protected by Protected Distribution System (PDS). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2426. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to conceal or randomize communication patterns unless otherwise protected by Protected Distribution System (PDS). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2426. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).'), ('002426','draft','2013-07-02','DISA FSO','technical','The information system provides a trusted communications path that is logically isolated and distinguishable from other paths.','SC-11(1).1','The organization being inspected/assessed configures the information system to provide a trusted communications path that is logically isolated and distinguishable from other paths. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2426.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide a trusted communications path that is logically isolated and distinguishable from other paths. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2426.'), ('002427','draft','2013-07-02','DISA FSO','policy','The organization defines the alternative physical safeguards to be employed to protect message externals (e.g., message headers and routing information) when cryptographic mechanisms are not implemented.','SC-8(3).2','DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the alternative physical safeguards as Protected Distribution System (PDS).'), ('002428','draft','2013-07-02','DISA FSO','policy','The organization defines the requirements for cryptographic key generation to be employed within the information system.','SC-12.1','DoD has defined the requirements for key generation as requirements for key generation defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the requirements for key generation as requirements for key generation defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002429','draft','2013-07-02','DISA FSO','policy','The organization defines the requirements for cryptographic key distribution to be employed within the information system.','SC-12.2','DoD has defined the requirements for key distribution as requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the requirements for key distribution as requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002430','draft','2013-07-02','DISA FSO','policy','The organization defines the requirements for cryptographic key storage to be employed within the information system.','SC-12.3','DoD has defined the requirements for key storage as requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the requirements for key storage as requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002431','draft','2013-07-02','DISA FSO','policy','The organization defines the requirements for cryptographic key access to be employed within the information system.','SC-12.4','DoD has defined the requirements for key access as requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the requirements for key access as requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002432','draft','2013-07-02','DISA FSO','policy','The organization defines the requirements for cryptographic key destruction to be employed within the information system.','SC-12.5','DoD has defined the requirements for key destruction as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the requirements for key destruction as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002433','draft','2013-07-02','DISA FSO','policy','The organization establishes cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key generation.','SC-12.6','The organization being inspected/assessed documents and implements a process to establish cryptographic keys for required cryptography employed within the information system in accordance with requirements for key generation defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key generation as requirements for key generation defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes cryptographic keys for required cryptography employed within the information system in accordance with requirements for key generation defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key generation as requirements for key generation defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002434','draft','2013-07-02','DISA FSO','policy','The organization establishes cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key distribution.','SC-12.7','The organization being inspected/assessed documents and implements a process to establish cryptographic keys for required cryptography employed within the information system in accordance with requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key distribution as requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes cryptographic keys for required cryptography employed within the information system in accordance with requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key distribution as requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002435','draft','2013-07-02','DISA FSO','policy','The organization establishes cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key storage.','SC-12.8','The organization being inspected/assessed documents and implements a process to establish cryptographic keys for required cryptography employed within the information system in accordance with requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key storage as requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes cryptographic keys for required cryptography employed within the information system in accordance with requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key storage as requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002436','draft','2013-07-02','DISA FSO','policy','The organization establishes cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key access.','SC-12.9','The organization being inspected/assessed documents and implements a process to establish cryptographic keys for required cryptography employed within the information system in accordance with requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key access as requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes cryptographic keys for required cryptography employed within the information system in accordance with requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key access as requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002437','draft','2013-07-02','DISA FSO','policy','The organization establishes cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key destruction.','SC-12.10','The organization being inspected/assessed documents and implements a process to establish cryptographic keys for required cryptography employed within the information system in accordance with requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key destruction as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes cryptographic keys for required cryptography employed within the information system in accordance with requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key destruction as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002438','draft','2013-07-02','DISA FSO','policy','The organization manages cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key generation.','SC-12.11','The organization being inspected/assessed documents and implements a process to manage cryptographic keys for required cryptography employed within the information system in accordance with requirements for key destruction defined DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key generation as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed manages cryptographic keys for required cryptography employed within the information system in accordance with requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key generation as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002439','draft','2013-07-02','DISA FSO','policy','The organization manages cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key distribution.','SC-12.12','The organization being inspected/assessed documents and implements a process to manage cryptographic keys for required cryptography employed within the information system in accordance with requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key distribution as requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed manages cryptographic keys for required cryptography employed within the information system in accordance with requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key distribution as requirements for key distribution defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002440','draft','2013-07-02','DISA FSO','policy','The organization manages cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key storage.','SC-12.13','The organization being inspected/assessed documents and implements a process to manage cryptographic keys for required cryptography employed within the information system in accordance with requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key storage as requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed manages cryptographic keys for required cryptography employed within the information system in accordance with requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key storage as requirements for key storage defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002441','draft','2013-07-02','DISA FSO','policy','The organization manages cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key access.','SC-12.14','The organization being inspected/assessed documents and implements a process to manage cryptographic keys for required cryptography employed within the information system in accordance with requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key access as requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed manages cryptographic keys for required cryptography employed within the information system in accordance with requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key access as requirements for key access defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002442','draft','2013-07-02','DISA FSO','policy','The organization manages cryptographic keys for required cryptography employed within the information system in accordance with organization-defined requirements for key destruction.','SC-12.15','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed manages cryptographic keys for required cryptography employed within the information system in accordance with requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key destruction as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"','The organization being inspected/assessed documents and implements a process to manage cryptographic keys for required cryptography employed within the information system in accordance with requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\" DoD has defined the requirements for key destruction as requirements for key destruction defined in DoDI 8520.02 \"Public Key Infrastructure and Public Key Enabling\" and DoDI 8520.03 \"Identity Authentication for Information Systems.\"'), ('002443','draft','2013-07-02','DISA FSO','policy','The organization produces symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes.','SC-12(2).1','The organization being inspected/assessed documents and implements a process to produce symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes. An example process would be implementation of Key Management Infrastructure (KMI). DoD requires a minimum of NIST approved cryptography for unclassified systems. Classified systems require NSA approved cryptography.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed produces appropriate symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes.'), ('002444','draft','2013-07-02','DISA FSO','policy','The organization controls symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes.','SC-12(2).2','The organization being inspected/assessed documents and implements a process to control symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes. An example process would be implementation of Key Management Infrastructure (KMI). DoD requires a minimum of NIST approved cryptography for unclassified systems. Classified systems require NSA approved cryptography.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed controls appropriate symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes.'), ('002445','draft','2013-07-02','DISA FSO','policy','The organization distributes symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes.','SC-12(2).3','The organization being inspected/assessed documents and implements a process to distribute symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes. DoD requires a minimum of NIST approved cryptography for unclassified systems. Classified systems require NSA approved cryptography.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed distributes appropriate symmetric cryptographic keys using NIST FIPS-compliant or NSA-approved key management technology and processes.'), ('002446','draft','2013-07-02','DISA FSO','policy','The organization produces asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI Class 3 certificates or prepositioned keying material; or approved PKI Class 3 or Class 4 certificates and hardware security tokens that protect the user^s private key.','SC-12(3).1','The organization being inspected/assessed implements a process to produce asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI medium certificates or prepositioned keying material; or, approved PKI medium or FORTEZZA certificates and hardware security tokens that protect the user\'s private key.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of asymmetric cryptographic key production to ensure the organization being inspected/assessed produces asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI medium certificates or prepositioned keying material; or, approved PKI medium or FORTEZZA certificates and hardware security tokens that protect the user\'s private key.'), ('002447','draft','2013-07-02','DISA FSO','policy','The organization controls asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI Class 3 certificates or prepositioned keying material; or approved PKI Class 3 or Class 4 certificates and hardware security tokens that protect the user^s private key.','SC-12(3).2','The organization being inspected/assessed implements a process to control asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI medium certificates or prepositioned keying material; or, approved PKI medium or FORTEZZA certificates and hardware security tokens that protect the user\'s private key.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of asymmetric cryptographic key control to ensure the organization being inspected/assessed controls asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI medium certificates or prepositioned keying material; or, approved PKI medium or FORTEZZA certificates and hardware security tokens that protect the user\'s private key.'), ('002448','draft','2013-07-02','DISA FSO','policy','The organization distributes asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI Class 3 certificates or prepositioned keying material; or approved PKI Class 3 or Class 4 certificates and hardware security tokens that protect the user^s private key.','SC-12(3).3','The organization being inspected/assessed implements a process to distribute asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI medium certificates or prepositioned keying material; or, approved PKI medium or FORTEZZA certificates and hardware security tokens that protect the user\'s private key.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of asymmetric cryptographic key distribution to ensure the organization being inspected/assessed distributes asymmetric cryptographic keys using: NSA-approved key management technology and processes; approved PKI medium certificates or prepositioned keying material; or, approved PKI medium or FORTEZZA certificates and hardware security tokens that protect the user\'s private key.'), ('002449','draft','2013-07-02','DISA FSO','policy','The organization defines the cryptographic uses, and type of cryptography required for each use, to be implemented by the information system.','SC-13.1','DoD has defined the cryptographic uses and type of cryptography required for each use as protection of classified information: NSA-approved cryptography; provision of digital signatures and hashing: FIPS-validated cryptography.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the cryptographic uses and type of cryptography required for each use as protection of classified information: NSA-approved cryptography; provision of digital signatures and hashing: FIPS-validated cryptography.'), ('002450','draft','2013-07-02','DISA FSO','technical','The information system implements organization-defined cryptographic uses and type of cryptography required for each use in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.','SC-13.2','The organization being inspected/assessed configures the information system to implement, for, protection of classified information: NSA-approved cryptography; for provision of digital signatures and hashing: FIPS-validated cryptography in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2450. DoD has defined the cryptographic uses and type of cryptography required for each use as protection of classified information: NSA-approved cryptography; provision of digital signatures and hashing: FIPS-validated cryptography.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement, for, protection of classified information: NSA-approved cryptography; for provision of digital signatures and hashing: FIPS-validated cryptography in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2450. DoD has defined the cryptographic uses and type of cryptography required for each use as protection of classified information: NSA-approved cryptography; provision of digital signatures and hashing: FIPS-validated cryptography.'), ('002451','draft','2013-07-02','DISA FSO','policy','The organization defines the information systems or information system components from which collaborative computing devices in organization-defined secure work areas are to be disabled or removed.','SC-15(3).3','DoD has defined information systems or information system components as any device used that may incorporate camera, microphone, or smart board capability.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined information systems or information system components as any device used that may incorporate camera, microphone, or smart board capability.'), ('002452','draft','2013-07-02','DISA FSO','policy','The organization defines the online meetings and teleconferences for which the information system provides an explicit indication of current participants.','SC-15(4).1','DoD has defined the online meetings and teleconferences as all VTC and all IP based online meetings and conferences (excludes audio only teleconferences using traditional telephony).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the online meetings and teleconferences as all VTC and all IP based online meetings and conferences (excludes audio only teleconferences using traditional telephony).'), ('002453','draft','2013-07-02','DISA FSO','technical','The information system provides an explicit indication of current participants in organization-defined online meetings and teleconferences.','SC-15(4).2','The organization being inspected/assessed configures the information system to provide an explicit indication of current participants in all VTC and all IP based online meetings and conferences (excludes audio only teleconferences using traditional telephony). For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2453. DoD has defined the online meetings and teleconferences as all VTC and all IP based online meetings and conferences (excludes audio only teleconferences using traditional telephony).','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide an explicit indication of current participants in all VTC and all IP based online meetings and conferences (excludes audio only teleconferences using traditional telephony). For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2453. DoD has defined the online meetings and teleconferences as all VTC and all IP based online meetings and conferences (excludes audio only teleconferences using traditional telephony).'), ('002454','draft','2013-07-02','DISA FSO','policy','The organization defines the security attributes the information system is to associate with the information being exchanged between information systems and between information system components.','SC-16.2','The organization being inspected/assessed defines and documents the security attributes the information system is to associate with the information being exchanged between information systems and between information system components. DoD has determined the security attributes are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security attributes to ensure the organization being inspected/assessed defines the security attributes the information system is to associate with the information being exchanged between information systems and between information system components. DoD has determined the security attributes are not appropriate to define at the Enterprise level.'), ('002455','draft','2013-07-02','DISA FSO','technical','The information system associates organization-defined security attributes with information exchanged between information system components.','SC-16.3','The organization being inspected/assessed configures the information system to associate the security attributes defined in SC-16, CCI 2454 with information exchanged between information system components. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2455.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to associate the security attributes defined in SC-16, CCI 2454 with information exchanged between information system components. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2455.'), ('002456','draft','2013-07-02','DISA FSO','policy','The organization defines the certificate policy employed to issue public key certificates.','SC-17.2','DoD has defined the certificate policy as DoDI 8520.02, \"Public Key Infrastructure (PKI) and Public Key (PK) Enabling.\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the certificate policy as DoDI 8520.02, \"Public Key Infrastructure (PKI) and Public Key (PK) Enabling.'), ('002457','draft','2013-07-02','DISA FSO','policy','The organization defines the corrective actions to be taken when organization-defined unacceptable mobile code is identified.','SC-18(1).3','DoD has defined the corrective actions to be taken when organization-defined unacceptable mobile code is identified as the corrective actions defined in the Protection Profile for Web Browsers and Application SRG.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\nDoD has defined the corrective actions to be taken when organization-defined unacceptable mobile code is identified as the corrective actions defined in the Protection Profile for Web Browsers and Application SRG.'), ('002458','draft','2013-07-02','DISA FSO','policy','The organization defines what constitutes unacceptable mobile code for its information systems.','SC-18(1).4','The organization being inspected/assessed defines and documents unacceptable mobile code IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must define IAW the STIG/SRG guidance that pertains to CCI 2458.\nDoD has determined the unacceptable mobile code is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented acceptable and unacceptable mobile code and mobile code technologies to ensure the organization being inspected/assessed defines unacceptable mobile code IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has defined unacceptable mobile code IAW the applicable STIGs and SRGs pertaining to CCI 2458.\nDoD has determined the unacceptable mobile code is not appropriate to define at the Enterprise level.'), ('002459','draft','2013-07-02','DISA FSO','policy','The organization defines the unacceptable mobile code of which the information system is to prevent download and execution.','SC-18(3).3','The organization being inspected/assessed defines and documents unacceptable mobile code of which the information system is to prevent download and execution IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must define IAW the STIG/SRG guidance that pertains to CCI 2459.\nDoD has determined the unacceptable mobile code is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented unacceptable mobile code to ensure the organization being inspected/assessed defines unacceptable mobile code of which the information system is to prevent download and execution IAW the Protection Profile for Web Browsers and Application SRG.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has defined unacceptable mobile code IAW the applicable STIGs and SRGs pertaining to CCI 2459.\nDoD has determined the unacceptable mobile code is not appropriate to define at the Enterprise level.'), ('002460','draft','2013-07-02','DISA FSO','technical','The information system enforces organization-defined actions prior to executing mobile code.','SC-18(4).4','The organization being inspected/assessed configures the information system to prompt the user prior to executing the code.\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2460.\nDoD has defined the actions as the user be prompted.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prompt the user prior to executing the code.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2460.\nDoD has defined the actions as the user be prompted.'), ('002461','draft','2013-07-02','DISA FSO','policy','The organization allows execution of permitted mobile code only in confined virtual machine environments.','SC-18(5).1','The organization being inspected/assessed documents within the system and communications protection policy and implements mechanisms to allow the execution of permitted mobile code only in confined virtual machine environments.\n\nUnacceptable mobile code is defined in SC-18 (3).','The organization conducting the inspection/assessment obtains and examines the system and communications protection policy and inspects the information systems to ensure the organization being inspected/assessed implements mechanisms to allow the execution of permitted mobile code only in confined virtual machine environments.'), ('002462','draft','2013-07-02','DISA FSO','technical','The information system provides additional data integrity verification artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries.','SC-20.2','The organization being inspected/assessed configures the authoritative name server software for external queries to enable DNSSEC and creates resource records with digital signatures (RRSig) for each A record. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2462.','The organization conducting the inspection/assessment:\n1. inspects the configuration files for the presence of DNSSEC records for each A record hosted in a zone;\n2. utilizes DNSSEC diagnostic tools, such as dig; and\n3. performs queries which will exercise the data flow path for authoritative name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2462.'), ('002463','draft','2013-07-02','DISA FSO','technical','The information system provides data origin artifacts for internal name/address resolution queries.','SC-20(2).1','The organization being inspected/assessed configures the authoritative name server software for internal queries to enable DNSSEC and creates resource records with digital signatures (RRSig) for each A record. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2463.','The organization conducting the inspection/assessment:\n1. inspects the configuration files for the presence of DNSSEC records for each A record hosted in a zone;\n2. utilizes DNSSEC diagnostic tools, such as dig; and\n3. performs queries which will exercise the data flow path for authoritative name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2463.'), ('002464','draft','2013-07-02','DISA FSO','technical','The information system provides data integrity protection artifacts for internal name/address resolution queries.','SC-20(2).2','The organization being inspected/assessed configures the authoritative name server software for internal software to enable DNSSEC and creates resource records with digital signatures(RRSig) for each A record. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2464.','The organization conducting the inspection/assessment:\n1. inspects the configuration files for the presence of DNSSEC records for each A record hosted in a zone;\n2. utilizes DNSSEC diagnostic tools, such as dig; and\n3. performs queries which will exercise the data flow path for authoritative name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2464.'), ('002465','draft','2013-07-02','DISA FSO','technical','The information system requests data origin authentication verification on the name/address resolution responses the system receives from authoritative sources.','SC-21.1','The organization being inspected/assessed configures the:\n1. recursive/caching name server software to enable DNSSEC;\n2. software to enable DNSSEC validation; and\n3. software to establish a secure entry point trust anchor by installing key signing keys in the software configuration of trusted keys. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2465.','The organization conducting the inspection/assessment utilizes DNSSEC diagnostic tools, such as dig, and performs queries which will exercise the data flow path for recursive name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2465.'), ('002466','draft','2013-07-02','DISA FSO','technical','The information system requests data integrity verification on the name/address resolution responses the system receives from authoritative sources.','SC-21.2','The organization being inspected/assessed configures the:\n1. recursive/caching name server software to enable DNSSEC;\n2. software to enable DNSSEC validation; and\n3. software to establish a secure entry point trust anchor by installing key signing keys in the software configuration of trusted keys. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2466.','The organization conducting the inspection/assessment utilizes DNSSEC diagnostic tools, such as dig, and performs queries which will exercise the data flow path for recursive name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2466.'), ('002467','draft','2013-07-02','DISA FSO','technical','The information system performs data integrity verification on the name/address resolution responses the system receives from authoritative sources.','SC-21.3','The organization being inspected/assessed configures the:\n1. recursive/caching name server software to enable DNSSEC;\n2. software to enable DNSSEC validation; and\n3. software to establish a secure entry point trust anchor by installing key signing keys in the software configuration of trusted keys. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2467.','The organization conducting the inspection/assessment utilizes DNSSEC diagnostic tools, such as dig, and performs queries which will exercise the data flow path for recursive name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2467.'), ('002468','draft','2013-07-02','DISA FSO','technical','The information system performs data origin verification authentication on the name/address resolution responses the system receives from authoritative sources.','SC-21.4','The organization being inspected/assessed configures the:\n1. recursive/caching name server software to enable DNSSEC;\n2. software to enable DNSSEC validation; and\n3. software to establish a secure entry point trust anchor by installing key signing keys in the software configuration of trusted keys. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that determines the name server software configuration files and pertains to CCI 2468.','The organization conducting the inspection/assessment utilizes DNSSEC diagnostic tools, such as dig, and performs queries which will exercise the data flow path for recursive name resolution services. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs that determine the name server software configuration files and pertain to CCI 2468.'), ('002469','draft','2013-07-02','DISA FSO','policy','The organization defines the certificate authorities the information system will allow to be used on the information system.','SC-23(5).1','DoD has defined the certificate authorities as DoD PKI established certificate authorities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the certificate authorities as DoD PKI established certificate authorities.'), ('002470','draft','2013-07-02','DISA FSO','technical','The information system only allows the use of organization-defined certificate authorities for verification of the establishment of protected sessions.','SC-23(5).2','The organization being inspected/assessed configures the information system to allow the use of DoD PKI established certificate authorities for verification of the establishment of protected sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2470. DoD has defined the certificate authorities as DoD PKI established certificate authorities.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to allow the use of DoD PKI established certificate authorities for verification of the establishment of protected sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2470. DoD has defined the certificate authorities as DoD PKI established certificate authorities.'), ('002471','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components, with minimal functionality and information storage, to be employed.','SC-25.2','The organization being inspected/assessed defines and documents the information system components, with minimal functionality and information storage, to be employed. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components, with minimal functionality and information storage, to be employed. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002472','draft','2013-07-02','DISA FSO','policy','The organization defines the information at rest that is to be protected by the information system.','SC-28.2','The organization being inspected/assessed defines and documents the information at rest that is to be protected by the information system which must include, at a minimum, PII and classified information. DoD has determined the information at rest is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information at rest to ensure the organization being inspected/assessed defines and documents the information at rest that is to be protected by the information system which must include, at a minimum, PII and classified information. DoD has determined the information at rest is not appropriate to define at the Enterprise level.'), ('002473','draft','2013-07-02','DISA FSO','policy','The organization defines the information at rest for which cryptographic mechanisms will be implemented.','SC-28(1).1','The organization being inspected/assessed defines and documents the information at rest that is to be protected by the information system which must include, at a minimum, PII and classified information. DoD has determined the information at rest is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information at rest to ensure the organization being inspected/assessed defines and documents the information at rest that is to be protected by the information system which must include, at a minimum, PII and classified information. DoD has determined the information at rest is not appropriate to define at the Enterprise level.'), ('002474','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components which require the implementation of cryptographic mechanisms to prevent unauthorized disclosure and modification of organization-defined information at rest.','SC-28(1).2','DoD has defined the information system components as any information system components storing data defined in SC-28 (1), 2473.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as any information system components storing data defined in SC-28 (1), 2473.'), ('002475','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to prevent unauthorized modification of organization-defined information at rest on organization-defined information system components.','SC-28(1).3','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent unauthorized modification of information at rest defined in SC-28 (1), CCI 2473 on any information system components storing data defined in SC-28 (1), 2473. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2475. DoD has defined the information system components as any information system components storing data defined in SC-28 (1), 2473.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent unauthorized modification of information at rest defined in SC-28 (1), CCI 2473 on any information system components storing data defined in SC-28 (1), 2473. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2475. DoD has defined the information system components as any information system components storing data defined in SC-28 (1), 2473.'), ('002476','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to prevent unauthorized disclosure of organization-defined information at rest on organization-defined information system components.','SC-28(1).4','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent unauthorized disclosure of information at rest defined in SC-28 (1), CCI 2473 on any information system components storing data defined in SC-28 (1), 2473. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2476. DoD has defined the information system components as any information system components storing data defined in SC-28 (1), 2473.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent unauthorized disclosure of information at rest defined in SC-28 (1), CCI 2473 on any information system components storing data defined in SC-28 (1), 2473. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2476. DoD has defined the information system components as any information system components storing data defined in SC-28 (1), 2473.'), ('002477','draft','2013-07-02','DISA FSO','policy','The organization defines the information at rest to be removed from online storage and stored in an off-line secure location.','SC-28(2).1','The organization being inspected/assessed defines and documents the information at rest to be removed from on-line storage and stored in an off-line secure location. DoD has determined the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information to ensure the organization being inspected/assessed defines the information at rest to be removed from on-line storage and stored in an off-line secure location. DoD has determined the information is not appropriate to define at the Enterprise level.'), ('002478','draft','2013-07-02','DISA FSO','policy','The organization removes organization-defined information at rest from online storage.','SC-28(2).2','The organization being inspected/assessed documents and implements a process to remove information at rest defined in SC-28 (2), CCI 2477 from online storage.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed removes information at rest defined in SC-28 (2), CCI 2477 from online storage. Additionally, the organization conducting the inspection/assessment examines the information system to ensure that information defined in SC-28 (2), CCI 2477 is not stored on the information system.'), ('002479','draft','2013-07-02','DISA FSO','policy','The organization stores organization-defined information at rest in an off-line secure location.','SC-28(2).3','The organization being inspected/assessed documents and implements a process to store information at rest defined in SC-28 (2), CCI 2477 in an off-line secure location.','The organization conducting the inspection/assessment obtains and examines the documented process and off-line storage records to ensure the organization being inspected/assessed stores information at rest defined in SC-28 (2), CCI 2477 in an off-line secure location.'), ('002480','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components for which a diverse set of information technologies are to be employed.','SC-29.2','The organization being inspected/assessed defines and documents the information system components for which a diverse set of information technologies are to be employed. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components for which a diverse set of information technologies are to be employed. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002481','draft','2013-07-02','DISA FSP','policy','The organization employs virtualization techniques to support the deployment of a diversity of applications that are changed per organization-defined frequency.','SC-29(1).3','The organization being inspected/assessed designs the information system to employ virtualization techniques to support the deployment of a diversity of applications that are changed per the frequency defined in SC-29 (1), CCI 1204.','The organization conducting the inspection/assessment obtains and examines the hardware and software lists to ensure the organization being inspected/assessed employs virtualization techniques to support the deployment of a diversity of applications that are changed per the frequency defined in SC-29 (1), CCI 1204.'), ('002482','draft','2013-07-02','DISA FSO','policy','The organization defines the concealment and misdirection techniques employed for organization-defined information systems to confuse and mislead adversaries.','SC-30.1','The organization being inspected/assessed defines and documents the concealment and misdirection techniques employed for organization-defined information systems to confuse and mislead adversaries. DoD has determined the concealment and misdirection techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented concealment and misdirection techniques to ensure the organization being inspected/assessed defines the concealment and misdirection techniques employed for organization-defined information systems to confuse and mislead adversaries..\nDoD has determined the concealment and misdirection techniques are not appropriate to define at the Enterprise level.'), ('002483','draft','2013-07-02','DISA FSO','policy','The organization defines the information systems for which organization-defined concealment and misdirection techniques are to be employed.','SC-30.2','The organization being inspected/assessed defines and documents the information systems for which organization-defined concealment and misdirection techniques are to be employed. DoD has determined the information systems are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems to ensure the organization being inspected/assessed defines the information systems for which organization-defined concealment and misdirection techniques are to be employed. DoD has determined the information systems are not appropriate to define at the Enterprise level.'), ('002484','draft','2013-07-02','DISA FSO','policy','The organization defines the time periods at which it will employ organization-defined concealment and misdirection techniques on organization-defined information systems.','SC-30.3','The organization being inspected/assessed defines and documents the time periods at which it will employ organization-defined concealment and misdirection techniques on organization-defined information systems. DoD has determined the time periods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time periods to ensure the organization being inspected/assessed defines the time periods at which it will employ organization-defined concealment and misdirection techniques on organization-defined information systems. DoD has determined the time periods are not appropriate to define at the Enterprise level.'), ('002485','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined concealment and misdirection techniques for organization-defined information systems at organization-defined time periods to confuse and mislead adversaries.','SC-30.4','The organization being inspected/assessed designs the information system to employ concealment and misdirection techniques defined in SC-30, CCI 2482 for information systems defined in SC-30, 2483 at time periods defined in SC-30, CCI 2484 to confuse and mislead adversaries.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying concealment and misdirection techniques to ensure the organization being inspected/assessed employs concealment and misdirection techniques defined in SC-30, CCI 2482 for information systems defined in SC-30, 2483 at time periods defined in SC-30, CCI 2484 to confuse and mislead adversaries.'), ('002486','draft','2013-07-02','DISA FSO','policy','The organization defines the techniques to be employed to introduce randomness into organizational operations and assets.','SC-30(2).1','The organization being inspected/assessed defines and documents the techniques to be employed to introduce randomness into organizational operations and assets. DoD has determined the techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques to ensure the organization being inspected/assessed defines the techniques to be employed to introduce randomness into organizational operations and assets. DoD has determined the techniques are not appropriate to define at the Enterprise level.'), ('002487','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined techniques to introduce randomness into organizational operations.','SC-30(2).2','The organization being inspected/assessed employs techniques defined in SC-30 (2), CCI 2486 to introduce randomness into organizational operations.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of techniques used to introduce randomness to ensure the organization being inspected/assessed employs techniques defined in SC-30 (2), CCI 2486 to introduce randomness into organizational operations.'), ('002488','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined techniques to introduce randomness into organizational assets.','SC-30(2).3','The organization being inspected/assessed employs techniques defined in SC-30 (2), CCI 2486 to introduce randomness into organizational assets.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of techniques used to introduce randomness to ensure the organization being inspected/assessed employs techniques defined in SC-30 (2), CCI 2486 to introduce randomness into organizational assets.'), ('002489','draft','2013-07-02','DISA FSO','policy','The organization defines the processing and/or storage locations to be changed at random intervals or at an organization-defined frequency.','SC-30(3).1','The organization being inspected/assessed defines and documents the processing and/or storage locations to be changed at random intervals or at an organization-defined frequency. DoD has determined the processing and/or storage sites are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented processing and/or storage sites to ensure the organization being inspected/assessed defines the processing and/or storage locations to be changed at random intervals or at an organization-defined frequency. DoD has determined the processing and/or storage sites are not appropriate to define at the Enterprise level.'), ('002490','draft','2013-07-02','DISA FSO','policy','The organization defines the frequency at which it changes the location of organization-defined processing and/or storage.','SC-30(3).2','The organization being inspected/assessed defines and documents the frequency at which it changes the location of organization-defined processing and/or storage. The frequency can be defined as random time intervals. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency at which it changes the location of organization-defined processing and/or storage. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('002491','deprecated','2013-07-02','DISA FSO','policy','The organization changes the location of organization-defined processing and/or storage at an organization-defined time frequency or at random time intervals.',NULL,NULL,NULL), ('002492','draft','2013-07-02','DISA FSO','policy','The organization changes the location of organization-defined processing and/or storage at an organization-defined time frequency or at random time intervals.','SC-30(3).3','The organization being inspected/assessed documents and implements a process to change the location of the processing and/or storage defined in SC-30 (3), CCI 2489 at the time frequency defined in SC-30 (3), CCI 2490 or at random time intervals. The organization must maintain an audit trail of changes.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of changes to ensure the organization being inspected/assessed changes the location of the processing and/or storage defined in SC-30 (3), CCI 2489 at the time frequency defined in SC-30 (3), CCI 2490 or at random time intervals.'), ('002493','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components in which it will employ realistic but misleading information regarding its security state or posture.','SC-30(4).1','The organization being inspected/assessed defines and documents the information system components in which it will employ realistic but misleading information regarding its security state or posture. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components in which it will employ realistic but misleading information regarding its security state or posture. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002494','draft','2013-07-02','DISA FSO','policy','The organization employs realistic, but misleading, information in organization-defined information system components with regard to its security state or posture.','SC-30(4).2','The organization being inspected/assessed employs realistic, but misleading, information in information system components defined in SC-30 (4), CCI 2493 with regard to its security state or posture.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of methods to employ misinformation to ensure the organization being inspected/assessed employs realistic, but misleading, information in information system components defined in SC-30 (4), CCI 2493 with regard to its security state or posture.'), ('002495','draft','2013-07-02','DISA FSO','policy','The organization defines the techniques to be employed to hide or conceal organization-defined information system components.','SC-30(5).1','The organization being inspected/assessed defines and documents the techniques to be employed to hide or conceal organization-defined information system components. DoD has determined the techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques to ensure the organization being inspected/assessed defines the techniques to be employed to hide or conceal organization-defined information system components. DoD has determined the techniques are not appropriate to define at the Enterprise level.'), ('002496','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components to be hidden or concealed.','SC-30(5).2','The organization being inspected/assessed defines and documents the information system components to be hidden or concealed. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components to be hidden or concealed. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002497','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined techniques to hide or conceal organization-defined information system components.','SC-30(5).3','The organization being inspected/assessed employs techniques defined in SC-30 (5), CCI 2495 to hide or conceal information system components defined in SC-30 (5), CCI 2496.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of techniques to conceal information to ensure the organization being inspected/assessed employs techniques defined in SC-30 (5), CCI 2495 to hide or conceal information system components defined in SC-30 (5), CCI 2496.'), ('002498','draft','2013-07-02','DISA FSO','policy','The organization performs a covert channel analysis to identify those aspects of communications within the information system that are potential avenues for covert storage and/or timing channels.','SC-31.1','The organization being inspected/assessed performs a covert channel analysis to identify those aspects of communications within the information system that are potential avenues for covert storage and/or timing channels. The organization must maintain an audit trail of analyses.','The organization conducting the inspection/assessment obtains and examines the results of the analysis to ensure the organization being inspected/assessed performs a covert channel analysis to identify those aspects of communications within the information system that are potential avenues for covert storage and/or timing channels.'), ('002499','draft','2013-07-02','DISA FSO','policy','The organization estimates the maximum bandwidth of the covert storage and timing channels.','SC-31.2','The organization being inspected/assessed implements a process to estimate the maximum bandwidth of the covert storage and timing channels.','The organization conducting the inspection/assessment obtains and examines the estimate to ensure the organization being inspected/assessed estimates the maximum bandwidth of the covert storage and timing channels.'), ('002500','draft','2013-07-02','DISA FSO','policy','The organization defines the maximum bandwidth values to which covert storage and/or timing channels are to be reduced.','SC-31(2).1','The organization being inspected/assessed defines and documents the maximum bandwidth values to which covert storage and/or timing channels are to be reduced. DoD has determined the maximum bandwidth values are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented maximum bandwidth values to ensure the organization being inspected/assessed defines the maximum bandwidth values to which covert storage and/or timing channels are to be reduced. DoD has determined the maximum bandwidth values are not appropriate to define at the Enterprise level.'), ('002501','draft','2013-07-02','DISA FSO','policy','The organization reduces the maximum bandwidth for identified covert storage and/or timing channels to organization-defined values.','SC-31(2).2','The organization being inspected/assessed reduces the maximum bandwidth for identified covert storage and/or timing channels to values defined in SC-31 (2), CCI 2500.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of bandwidth reduction to ensure the organization being inspected/assessed reduces the maximum bandwidth for identified covert storage and/or timing channels to values defined in SC-31 (2), CCI 2500.'), ('002502','draft','2013-07-02','DISA FSO','policy','The organization defines the subset of identified covert channels in the operational environment of the information system that are to have the bandwidth measured.','SC-31(3).1','The organization being inspected/assessed defines and documents the subset of identified covert channels in the operational environment of the information system that are to have the bandwidth measured. DoD has determined the subset is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented subset of identified covert channels to ensure the organization being inspected/assessed defines the subset of identified covert channels in the operational environment of the information system that are to have the bandwidth measured. DoD has determined the subset is not appropriate to define at the Enterprise level.'), ('002503','draft','2013-07-02','DISA FSO','policy','The organization measures the bandwidth of an organization-defined subset of identified covert channels in the operational environment of the information system.','SC-31(3).2','The organization being inspected/assessed measures the bandwidth of a subset of identified covert channels defined in SC-31 (3), CCI 2502 in the operational environment of the information system.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of measurements to ensure the organization being inspected/assessed measures the bandwidth of a subset of identified covert channels defined in SC-31 (3), CCI 2502 in the operational environment of the information system.'), ('002504','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components into which the information system is partitioned.','SC-32.1','The organization being inspected/assessed defines and documents the information system components into which the information system is partitioned. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed defines the information system components into which the information system is partitioned. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002505','draft','2013-07-02','DISA FSO','policy','The organization defines the circumstances under which the information system components are to be physically separated to support partitioning.','SC-32.2','The organization being inspected/assessed defines and documents the circumstances under which the information system components are to be physically separated to support partitioning. DoD has determined the circumstances are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances to ensure the organization being inspected/assessed defines the circumstances under which the information system components are to be physically separated to support partitioning. DoD has determined the circumstances are not appropriate to define at the Enterprise level.'), ('002506','draft','2013-07-02','DISA FSO','policy','The organization partitions the information system into organization-defined information system components residing in separate physical domains or environments based on organization-defined circumstances for physical separation of components.','SC-32.3','The organization being inspected/assessed designs the information system to partition components defined in SC-32, CCI 2504 residing in separate physical domains or environments based on circumstances defined in SC-32, CCI 2505 for physical separation of components.','The organization conducting the inspection/assessment obtains and examines network topology diagrams, architecture documentation, or any other documentation identifying component partitioning to ensure the organization being inspected/assessed partitions components defined in SC-32, CCI 2504 residing in separate physical domains or environments based on circumstances defined in SC-32, CCI 2505 for physical separation of components.'), ('002507','draft','2013-07-02','DISA FSO','policy','The organization controls read-only media after information has been recorded onto the media.','SC-34(2).2','The organization being inspected/assessed documents and implements mechanisms to control the read-only media after information has been recorded onto the media.','The organization conducting the inspection/assessment obtains and examines the documented mechanisms to ensure the organization being inspected/assessed controls the read-only media after information has been recorded onto the media.'), ('002508','draft','2013-07-02','DISA FSO','policy','The organization defines the information system firmware components for which hardware-based, write-protect is employed.','SC-34(3).1','The organization being inspected/assessed defines and documents the information system firmware components for which hardware-based, write-protect is employed. DoD has determined the information system firmware components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system firmware components to ensure the organization being inspected/assessed defines the information system firmware components for which hardware-based, write-protect is employed. DoD has determined the information system firmware components are not appropriate to define at the Enterprise level.'), ('002509','draft','2013-07-02','DISA FSO','policy','The organization employs hardware-based, write-protect for organization-defined information system firmware components.','SC-34(3).2','The organization being inspected/assessed employs hardware-based, write-protect for information system firmware components defined in SC-34 (3), CCI 2508.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of hardware-based, write-protect to ensure the organization being inspected/assessed employs hardware-based, write-protect for information system firmware components defined in SC-34 (3), CCI 2508.'), ('002510','draft','2013-07-02','DISA FSO','policy','The organization defines the individuals authorized to manually disable hardware-based, write-protect for firmware modifications and re-enable the write-protect prior to returning to operational mode.','SC-34(3).3','The organization being inspected/assessed defines and documents the individuals authorized to manually disable hardware-based, write-protect for firmware modifications and re-enable the write-protect prior to returning to operational mode. DoD has determined the individuals are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented authorized individuals to ensure the organization being inspected/assessed defines the individuals authorized to manually disable hardware-based, write-protect for firmware modifications and re-enable the write-protect prior to returning to operational mode. DoD has determined the individuals are not appropriate to define at the Enterprise level.'), ('002511','draft','2013-07-02','DISA FSO','policy','The organization implements specific procedures for organization-defined authorized individuals to manually disable hardware-based, write-protect for firmware modifications.','SC-34(3).4','The organization being inspected/assessed documents and implements specific procedures for authorized individuals defined in SC-34 (3), CCI 2510 to manually disable hardware-based, write-protect for firmware modifications.','The organization conducting the inspection/assessment obtains and examines the documented procedures and a sampling of the information system components defined in SC-34 (3), CCI 2508 to ensure the organization being inspected/assessed implements specific procedures for authorized individuals defined in SC-34 (3), CCI 2510 to manually disable hardware-based, write-protect for firmware modifications.'), ('002512','draft','2013-07-02','DISA FSO','policy','The organization implements specific procedures for organization-defined authorized individuals to manually re-enable hardware write-protect prior to returning to operational mode.','SC-34(3).5','The organization being inspected/assessed documents and implements specific procedures for authorized individuals defined in SC-34 (3), CCI 2510 to manually re-enable the write-protect prior to returning to operational mode.','The organization conducting the inspection/assessment obtains and examines the documented procedures and a sampling of the information system components defined in SC-34 (3), CCI 2508 to ensure the organization being inspected/assessed implements specific procedures for authorized individuals defined in SC-34 (3), CCI 2510 to manually re-enable the write-protect prior to returning to operational mode.'), ('002513','draft','2013-07-02','DISA FSO','policy','The organization defines the processing that is to be distributed across multiple physical locations.','SC-36.1','The organization being inspected/assessed defines and documents the processing that is to be distributed across multiple physical locations. DoD has determined the processing is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented processing to ensure the organization being inspected/assessed defines the processing that is to be distributed across multiple physical locations. DoD has determined the processing is not appropriate to define at the Enterprise level.'), ('002514','draft','2013-07-02','DISA FSO','policy','The organization defines the storage that is to be distributed across multiple physical locations.','SC-36.2','The organization being inspected/assessed defines and documents the storage that is to be distributed across multiple physical locations. DoD has determined the storage is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented storage to ensure the organization being inspected/assessed defines the storage that is to be distributed across multiple physical locations. DoD has determined the storage is not appropriate to define at the Enterprise level.'), ('002515','draft','2013-07-02','DISA FSO','policy','The organization distributes organization-defined processing across multiple physical locations.','SC-36.3','The organization being inspected/assessed distributes processing defined in SC-36, CCI 2513 across multiple physical locations.','The organization conducting the inspection/assessment obtains and examines hardware lists and other applicable artifacts to ensure the organization being inspected/assessed distributes processing defined in SC-36, CCI 2513 across multiple physical locations.'), ('002516','draft','2013-07-02','DISA FSO','policy','The organization distributes organization-defined storage across multiple physical locations.','SC-36.4','The organization being inspected/assessed distributes storage defined in SC-36, CCI 2514 across multiple physical locations.','The organization conducting the inspection/assessment obtains and examines hardware lists and other applicable artifacts to ensure the organization being inspected/assessed distributes storage defined in SC-36, CCI 2514 across multiple physical locations.'), ('002517','draft','2013-07-02','DISA FSO','policy','The organization defines the distributed processing components that are to be polled to identify potential faults, errors, or compromises.','SC-36(1).1','The organization being inspected/assessed defines and documents the distributed processing components that are to be polled to identify potential faults, errors, or compromises. DoD has determined the distributed processing components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented distributed processing components to ensure the organization being inspected/assessed defines the distributed processing components that are to be polled to identify potential faults, errors, or compromises. DoD has determined the distributed processing components are not appropriate to define at the Enterprise level.'), ('002518','draft','2013-07-02','DISA FSO','policy','The organization defines the distributed storage components that are to be polled to identify potential faults, errors, or compromises.','SC-36(1).2','The organization being inspected/assessed defines and documents the distributed storage components that are to be polled to identify potential faults, errors, or compromises. DoD has determined the distributed storage components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented distributed storage components to ensure the organization being inspected/assessed defines the distributed storage components that are to be polled to identify potential faults, errors, or compromises. DoD has determined the distributed storage components are not appropriate to define at the Enterprise level.'), ('002519','draft','2013-07-02','DISA FSO','policy','The organization employs polling techniques to identify potential faults, errors, or compromises to organization-defined distributed processing components.','SC-36(1).3','The organization being inspected/assessed designs and configures the information system to employ polling techniques to identify potential faults, errors, or compromises to distributed processing components defined in SC-36 (1), CCI 2517. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2519.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ polling techniques to identify potential faults, errors, or compromises to distributed processing components defined in SC-36 (1), CCI 2517. If there is no applicable STIG for the polling technique in use, the organization conducting the inspection/assessment obtains and examines system design documents to ensure the organization being inspected/assessed employs polling techniques to identify potential faults, errors, or compromises to distributed processing components defined in SC-36 (1), CCI 2517. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2519.'), ('002520','draft','2013-07-02','DISA FSO','policy','The organization employs polling techniques to identify potential faults, errors, or compromises to organization-defined distributed storage components.','SC-36(1).4','The organization being inspected/assessed designs and configures the information system to employ polling techniques to identify potential faults, errors, or compromises to distributed storage components defined in SC-36 (1), CCI 2518. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2520.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to employ polling techniques to identify potential faults, errors, or compromises to distributed storage components defined in SC-36 (1), CCI 2518. If there is no applicable STIG for the polling technique in use, the organization conducting the inspection/assessment obtains and examines system design documents to ensure the organization being inspected/assessed employs polling techniques to identify potential faults, errors, or compromises to distributed storage components defined in SC-36 (1), CCI 2518. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2520.'), ('002521','draft','2013-07-02','DISA FSO','policy','The organization defines the out-of-band channels to be employed for the physical delivery or electronic transmission of organization-defined information, information system components, or devices.','SC-37.1','The organization being inspected/assessed defines and documents the out-of-band channels to be employed for the physical delivery or electronic transmission of organization-defined information, information system components, or devices. DoD has determined the out-of-band channels are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented out-of-band channels to ensure the organization being inspected/assessed defines the out-of-band channels to be employed for the physical delivery or electronic transmission of organization-defined information, information system components, or devices. DoD has determined the out-of-band channels are not appropriate to define at the Enterprise level.'), ('002522','draft','2013-07-02','DISA FSO','policy','The organization defines the information, information system components, or devices that are to be electronically transmitted or physically delivered via organization-defined out-of-band channels.','SC-37.2','The organization being inspected/assessed defines and documents the information, information system components or devices that are to be electronically transmitted or physically delivered via organization-defined out-of-band channels. DoD has determined the information, information system components, or devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information, information system components or devices to ensure the organization being inspected/assessed defines the information, information system components or devices that are to be electronically transmitted or physically delivered via organization-defined out-of-band channels. DoD has determined the information, information system components, or devices are not appropriate to define at the Enterprise level.'), ('002523','draft','2013-07-02','DISA FSO','policy','The organization defines the individuals or information systems authorized to be recipients of organization-defined information, information system components, or devices to be delivered by employing organization-defined out-of-band channels for electronic transmission or physical delivery.','SC-37.3','The organization being inspected/assessed defines and documents the individuals or information systems authorized to be recipients of organization-defined information, information system components, or devices to be delivered by employing organization-defined out-of-band channels for electronic transmission or physical delivery.\n\nDoD has determined the individuals or information systems are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information, information system components, or devices to ensure the organization being inspected/assessed defines the individuals or information systems authorized to be recipients of organization-defined information, information system components, or devices to be delivered by employing organization-defined out-of-band channels for electronic transmission or physical delivery. DoD has determined the individuals or information systems are not appropriate to define at the Enterprise level.'), ('002524','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined out-of-band channels for the electronic transmission or physical delivery of organization-defined information, information system components, or devices to organization-defined individuals or information systems.','SC-37.4','The organization being inspected/assessed employs out-of-band channels defined in SC-37, CCI 2521 for the electronic transmission or physical delivery of information, information system components, or devices defined in SC-37, CCI 2522 to individuals or information systems defined in SC-37, CCI 2523.','The organization conducting the inspection/assessment obtains and examines any applicable evidence of out-of-band channels to ensure the organization being inspected/assessed employs out-of-band channels defined in SC-37, CCI 2521 for the electronic transmission or physical delivery of information, information system components, or devices defined in SC-37, CCI 2522 to individuals or information systems defined in SC-37, CCI 2523.'), ('002525','draft','2013-07-02','DISA FSO','policy','The organization defines the security safeguards to be employed to ensure only organization-defined individuals or information systems receive organization-defined information, information system components, or devices.','SC-37(1).2','The organization being inspected/assessed defines and documents the security safeguards to be employed to ensure only organization-defined individuals or information systems receive organization-defined information, information system components or devices. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examine the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be employed to ensure only organization-defined individuals or information systems receive organization-defined information, information system components or devices. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002526','draft','2013-07-02','DISA FSO','policy','The organization defines the information, information system components, or devices which are to be received only by organization-defined individuals or information systems.','SC-37(1).3','The organization being inspected/assessed defines and documents the information, information system components or devices which are to be received only by organization-defined individuals or information systems. DoD has determined the information, information system components or devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information, information system components or devices to ensure the organization being inspected/assessed defines the information, information system components or devices which are to be received only by organization-defined individuals or information systems. DoD has determined the information, information system components or devices are not appropriate to define at the Enterprise level.'), ('002527','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined security safeguards to ensure only organization-defined individuals or information systems receive the organization-defined information, information system components, or devices.','SC-37(1).4','The organization being inspected/assessed implements security safeguards defined in SC-37 (1), CCI 2525 to ensure only individuals or information systems defined in SC-37 (1), CCI 2523 receive the information, information system components, or devices defined in SC-37 (1), CCI 2526. The organization must maintain an audit trail of security safeguard implementation.','The organization conducting the inspection/assessment obtains and examines the audit trail of security safeguard implementation to ensure the organization being inspected/assessed employs security safeguards defined in SC-37 (1), CCI 2525 to ensure only individuals or information systems defined in SC-37 (1), CCI 2523 receive the information, information system components, or devices defined in SC-37 (1), CCI 2526.'), ('002528','draft','2013-07-02','DISA FSO','policy','The organization defines the operations security safeguards to be employed to protect key organizational information throughout the system development life cycle.','SC-38.1','The organization being inspected/assessed defines and documents the operations security safeguards to be employed to protect key organizational information throughout the system development life cycle. DoD has determined the operations security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented operations security safeguards to ensure the organization being inspected/assessed defines the operations security safeguards to be employed to protect key organizational information throughout the system development life cycle. DoD has determined the operations security safeguards are not appropriate to define at the Enterprise level.'), ('002529','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined operations security safeguards to protect key organizational information throughout the system development life cycle.','SC-38.2','The organization being inspected/assessed implements operations security safeguards defined in SC-38, CCI 2528 to protect key organizational information throughout the system development life cycle. The organization must maintain an audit trail of security safeguard implementation.','The organization conducting the inspection/assessment obtains and examines the audit trail of security safeguard implementation to ensure the organization being inspected/assessed employs operations security safeguards defined in SC-38, CCI 2528 to protect key organizational information throughout the system development life cycle.'), ('002530','draft','2013-07-02','DISA FSO','technical','The information system maintains a separate execution domain for each executing process.','SC-39.1','The organization being inspected/assessed configures the information system to maintain a separate execution domain for each executing process. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2530.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain a separate execution domain for each executing process. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2530.'), ('002531','draft','2013-07-02','DISA FSO','technical','The information system implements underlying hardware separation mechanisms to facilitate process separation.','SC-39(1).1','The organization being inspected/assessed configures the information system to implement underlying hardware separation mechanisms to facilitate process separation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2531.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement underlying hardware separation mechanisms to facilitate process separation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2531.'), ('002532','draft','2013-07-02','DISA FSO','policy','The organization defines the multi-threaded processing in which a separate execution domain is maintained by the information system for each thread.','SC-39(2).1','The organization being inspected/assessed defines and documents the multi-threaded processing in which a separate execution domain is maintained by the information system for each thread. DoD has determined the multi-threaded processing is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented multi-thread processing to ensure the organization being inspected/assessed defines the multi-threaded processing in which a separate execution domain is maintained by the information system for each thread. DoD has determined the multi-threaded processing is not appropriate to define at the Enterprise level.'), ('002533','draft','2013-07-02','DISA FSO','technical','The information system maintains a separate execution domain for each thread in organization-defined multi-threaded processing.','SC-39(2).2','The organization being inspected/assessed configures the information system to maintain a separate execution domain for each thread in multi-threaded processing defined in SC-39 (2), CCI 2532. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2533.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to maintain a separate execution domain for each thread in multi-threaded processing defined in SC-39 (2), CCI 2532. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2533.'), ('002534','draft','2013-07-02','DISA FSO','policy','The organization defines types of signal parameter attacks or references to sources for such attacks from which the information system protects organization-defined wireless links.','SC-40.1','The organization being inspected/assessed defines and documents the types of signal parameter attacks or references to sources for such attacks from which the information system protects organization-defined wireless links. DoD has determined the signal parameter attacks or references to sources for such attacks are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented signal parameter attacks or references to sources for such attacks to ensure the organization being inspected/assessed defines types of signal parameter attacks or references to sources for such attacks from which the information system protects organization-defined wireless links. DoD has determined the signal parameter attacks or references to sources for such attacks are not appropriate to define at the Enterprise level.'), ('002535','draft','2013-07-02','DISA FSO','policy','The organization defines the external and internal wireless links the information system is to protect from organization-defined types of signal parameter attacks or references to sources for such attacks.','SC-40.2','DoD has defined the wireless links as all non-COTS wireless links.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the wireless links as all non-COTS wireless links.'), ('002536','draft','2013-07-02','DISA FSO','technical','The information system protects organization-defined external and internal wireless links from organization-defined types of signal parameter attacks or references to sources for such attacks.','SC-40.3','The organization being inspected/assessed designs the information system to protect all non-COTS wireless links from types of signal parameter attacks or references to sources for such attacks defined in SC-40, CCI 2534. DoD has defined the wireless links as all non-COTS wireless links.','The organization conducting the inspection/assessment obtains and examines design documentation for wireless links to ensure the organization being inspected/assessed protects all non-COTS wireless links from types of signal parameter attacks or references to sources for such attacks defined in SC-40, CCI 2534. DoD has defined the wireless links as all non-COTS wireless links.'), ('002537','draft','2013-07-02','DISA FSO','policy','The organization defines the level of protection against the effects of intentional electromagnetic interference to be achieved by implemented cryptographic mechanisms.','SC-40(1).1','The organization being inspected/assessed defines and documents the level of protection against the effects of intentional electromagnetic interference to be achieved by implemented cryptographic mechanisms. DoD has determined the level of protection is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of protection to ensure the organization being inspected/assessed defines the level of protection against the effects of intentional electromagnetic interference to be achieved by implemented cryptographic mechanisms. DoD has determined the level of protection is not appropriate to define at the Enterprise level.'), ('002538','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms that achieve an organization-defined level of protection against the effects of intentional electromagnetic interference.','SC-40(1).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms that achieve level of protection defined in SC-40 (1), CCI 2537 against the effects of intentional electromagnetic interference. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2538.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms that achieve level of protection defined in SC-40 (1), CCI 2537 against the effects of intentional electromagnetic interference. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2538.'), ('002539','draft','2013-07-02','DISA FSO','policy','The organization defines the level of reduction the information system is to implement to reduce the detection potential of wireless links.','SC-40(2).1','The organization being inspected/assessed defines and documents the level of reduction the information system is to implement to reduce the detection potential of wireless links. DoD has determined the level of reduction is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of reduction to ensure the organization being inspected/assessed defines the level of reduction the information system is to implement to reduce the detection potential of wireless links. DoD has determined the level of reduction is not appropriate to define at the Enterprise level.'), ('002540','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to reduce the detection potential of wireless links to an organization-defined level of reduction.','SC-40(2).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to reduce the detection potential of wireless links to the level of reduction defined in SC-40 (2), CCI 2539. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2540.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to reduce the detection potential of wireless links to the level of reduction defined in SC-40 (2), CCI 2539. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2540.'), ('002541','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to identify and reject wireless transmissions that are deliberate attempts to achieve imitative or manipulative communications deception based on signal parameters.','SC-40(3).1','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to identify and reject wireless transmissions that are deliberate attempts to achieve imitative or manipulative communications deception based on signal parameters. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2541.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to identify and reject wireless transmissions that are deliberate attempts to achieve imitative or manipulative communications deception based on signal parameters. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2541.'), ('002542','draft','2013-07-02','DISA FSO','policy','The organization defines the wireless transmitters that are to have cryptographic mechanisms implemented by the information system to prevent the identification of the wireless transmitters.','SC-40(4).1','The organization being inspected/assessed defines and documents the wireless transmitters that are to have cryptographic mechanisms implemented by the information system to prevent the identification of the wireless transmitters. DoD has determined the wireless transmitters are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented wireless transmitters to ensure the organization being inspected/assessed defines the wireless transmitters that are to have cryptographic mechanisms implemented by the information system to prevent the identification of the wireless transmitters. DoD has determined the wireless transmitters are not appropriate to define at the Enterprise level.'), ('002543','draft','2013-07-02','DISA FSO','technical','The information system implements cryptographic mechanisms to prevent the identification of organization-defined wireless transmitters by using the transmitter signal parameters.','SC-40(4).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent the identification of wireless transmitters defined in SC-40 (4), CCI 2542 by using the transmitter signal parameters. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2543.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to prevent the identification of wireless transmitters defined in SC-40 (4), CCI 2542 by using the transmitter signal parameters. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2543.'), ('002544','draft','2013-07-02','DISA FSO','policy','The organization defines the information systems or information system components on which organization-defined connection ports or input/output devices are to be physically disabled or removed.','SC-41.1','The organization being inspected/assessed defines and documents the information systems or information system components on which organization-defined connection ports or input/output devices are to be physically disabled or removed. DoD has determined the information systems or information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems or information system components to ensure the organization being inspected/assessed defines the information systems or information system components on which organization-defined connection ports or input/output devices are to be physically disabled or removed. DoD has determined the information systems or information system components are not appropriate to define at the Enterprise level.'), ('002545','draft','2013-07-02','DISA FSO','policy','The organization defines the connection ports or input/output devices that are to be physically disabled or removed from organization-defined information systems or information system components.','SC-41.2','The organization being inspected/assessed defines and documents the connection ports or input/output devices that are to be physically disabled or removed from organization-defined information systems or information system components. DoD has determined the connection ports or input/output devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented connection ports or input/output devices to ensure the organization being inspected/assessed defines the connection ports or input/output devices that are to be physically disabled or removed from organization-defined information systems or information system components. DoD has determined the connection ports or input/output devices are not appropriate to define at the Enterprise level.'), ('002546','draft','2013-07-02','DISA FSO','technical','The organization physically disables or removes organization-defined connection ports or input/output devices on organization-defined information systems or information system components.','SC-41.3','The organization being inspected/assessed physically disables or removes connection ports or input/output devices defined in SC-41, CCI 2545 on information systems or information system components defined in SC-41, CCI 2544.','The organization conducting the inspection/assessment examines a sampling of devices to ensure the organization being inspected/assessed physically disables or removes connection ports or input/output devices defined in SC-41, CCI 2545 on information systems or information system components defined in SC-41, CCI 2544.'), ('002547','draft','2013-07-02','DISA FSO','policy','The organization defines the exceptions where remote activation of sensors is allowed.','SC-42.1','The organization being inspected/assessed defines and documents the exceptions where remote activation of sensors is allowed. DoD has determined the exceptions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented exceptions to ensure the organization being inspected/assessed defines the exceptions where remote activation of sensors is allowed. DoD has determined the exceptions are not appropriate to define at the Enterprise level.'), ('002548','draft','2013-07-02','DISA FSO','technical','The information system prohibits the remote activation of environmental sensing capabilities except for the organization-defined exceptions where remote activation of sensors is allowed.','SC-42.2','The organization being inspected/assessed configures the information system to prohibit the remote activation of environmental sensing capabilities except for the exceptions defined in SC-42, CCI 2547 where remote activation of sensors is allowed. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2548.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to prohibit the remote activation of environmental sensing capabilities except for the exceptions defined in SC-42, CCI 2547 where remote activation of sensors is allowed. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2548.'), ('002549','draft','2013-07-02','DISA FSO','policy','The organization defines the class of users to receive explicit indication of sensor use.','SC-42.3','DoD has defined the class of users all users unless documented by exception.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the class of users all users unless documented by exception.'), ('002550','draft','2013-07-02','DISA FSO','technical','The information system provides an explicit indication of sensor use to the organization-defined class of users.','SC-42.4','The organization being inspected/assessed configures the information system to provide an explicit indication of sensor use to all users unless documented by exception. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2550. DoD has defined the class of users all users unless documented by exception.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide an explicit indication of sensor use to all users unless documented by exception. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2550. DoD has defined the class of users all users unless documented by exception.'), ('002551','draft','2013-07-02','DISA FSO','policy','The organization defines the sensors to be configured so that collected data or information is reported only to authorized individuals or roles.','SC-42(1).1','The organization being inspected/assessed defines and documents the sensors to be configured so that collected data or information is reported only to authorized individuals or roles. DoD has determined the sensors are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented sensors to ensure the organization being inspected/assessed defines the sensors to be configured so that collected data or information is reported only to authorized individuals or roles. DoD has determined the sensors are not appropriate to define at the Enterprise level.'), ('002552','draft','2013-07-02','DISA FSO','policy','The organization ensures that the information system is configured so that data or information collected by the organization-defined sensors is only reported to authorized individuals or roles.','SC-42(1).2','The organization being inspected/assessed documents and implements a process to ensure that the information system is configured so that data or information collected by the sensors defined in SC-42 (1), CCI 2551 is only reported to authorized individuals or roles.','The organization conducting the inspection/assessed obtains and examines the documented process as well as a sampling of devices to ensure the organization being inspected/assessed configures the information system so that data or information collected by the sensors defined in SC-42 (1), CCI 2551 is only reported to authorized individuals or roles.'), ('002553','draft','2013-07-02','DISA FSO','policy','The organization defines the measures to be employed to ensure data or information collected by organization-defined sensors is used only for authorized purposes.','SC-42(2).1','The organization being inspected/assessed defines and documents the measures to be employed to ensure data or information collected by sensors defined in SC-42 (2), CCI 2554 is used only for authorized purposes. DoD has determined the measures are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented measures to ensure the organization being inspected/assessed defines the measures to be employed to ensure data or information collected by sensors defined in SC-42 (2), CCI 2554 is used only for authorized purposes. DoD has determined the measures are not appropriate to define at the Enterprise level.'), ('002554','draft','2013-07-02','DISA FSO','policy','The organization defines the sensors that are to collect data or information for authorized purposes.','SC-42(2).2','The organization being inspected/assessed defines and documents the sensors that are to collect data or information for authorized purposes. DoD has determined the sensors are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented sensors to ensure the organization being inspected/assessed defines the sensors that are to collect data or information for authorized purposes. DoD has determined the sensors are not appropriate to define at the Enterprise level.'), ('002555','draft','2013-07-02','DISA FSO','policy','The organization employs organization-defined measures, so that data or information collected by organization-defined sensors is only used for authorized purposes.','SC-42(2).3','The organization being inspected/assessed employs measures defined in SC-42 (2), CCI 2553 so that data or information collected by sensors defined in SC-42 (2), CCI 2554 is only used for authorized purposes.','The organization conducting the inspection/assessment ensures the measures defined in SC-42 (2), CCI 2553 are employed so that data or information collected by sensors defined in SC-42 (2), CCI 2554 is only used for authorized purposes.'), ('002556','draft','2013-07-02','DISA FSO','policy','The organization defines the environmental sensing capabilities prohibited on devices used in organization-defined facilities, areas, or systems.','SC-42(3).1','DoD has defined the environmental sensing capabilities as environmental sensing capabilities such as the recording audio or imagery (still or video) or transmitting information (i.e., cell phones, two way radios).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\nDoD has defined the environmental sensing capabilities as environmental sensing capabilities such as the recording audio or imagery (still or video) or transmitting information (i.e., cell phones, two way radios).'), ('002557','draft','2013-07-02','DISA FSO','policy','The organization defines the facilities, areas, or systems where devices processing organization-defined environmental sensing capabilities are prohibited.','SC-42(3).2','DoD has defined the facilities, areas, and systems as spaces where Classified information is stored, processed, displayed, or discussed.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the facilities, areas, and systems as spaces where Classified information is stored, processed, displayed, or discussed.'), ('002558','draft','2013-07-02','DISA FSO','policy','The organization prohibits the use of devices possessing organization-defined environmental sensing capabilities in organization-defined facilities, areas, or systems.','SC-42(3).3','The organization being inspected/assessed documents and implements a process to prohibit the use of devices possessing environmental sensing capabilities such as the recording audio or imagery (still or video) or transmitting information (i.e., cell phones, two way radios) in spaces where Classified information is stored, processed, displayed, or discussed.\nDoD has defined the environmental sensing capabilities as environmental sensing capabilities such as the recording audio or imagery (still or video) or transmitting information (i.e., cell phones, two way radios).\nDoD has defined the facilities, areas, and systems as spaces where Classified information is stored, processed, displayed, or discussed.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed prohibits the use of devices possessing environmental sensing capabilities such as the recording audio or imagery (still or video) or transmitting information (i.e., cell phones, two way radios) in spaces where Classified information is stored, processed, displayed, or discussed.\nDoD has defined the environmental sensing capabilities as environmental sensing capabilities such as the recording audio or imagery (still or video) or transmitting information (i.e., cell phones, two way radios).\nDoD has defined the facilities, areas, and systems as spaces where Classified information is stored, processed, displayed, or discussed.'), ('002559','draft','2013-07-02','DISA FSO','policy','The organization defines the information system components for which usage restrictions and implementation guidance are to be established.','SC-43.1','DoD has defined the information system components as all information system components (through the use of an acceptable use agreement).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as all information system components (through the use of an acceptable use agreement).'), ('002560','draft','2013-07-02','DISA FSO','policy','The organization establishes usage restrictions and implementation guidance for organization-defined information system components based on the potential to cause damage to the information system if used maliciously.','SC-43.2','The organization being inspected/assessed develops and implements usage restrictions and implementation guidance for all information system components (through the use of an acceptable use agreement). DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). ','The organization conducting the inspection/assessment obtains and examines implementation guidance and usage restrictions and verifies that the organization has implemented them for all information system components (through the use of an acceptable use agreement). DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). '), ('002561','draft','2013-07-02','DISA FSO','policy','The organization authorizes the use of organization-defined information system components which have the potential to cause damage to the information system if used maliciously.','SC-43.3','The organization being inspected/assessed documents and implements a process to authorize the use of all information system components (through the use of an acceptable use agreement) which have the potential to cause damage to the information system if used maliciously. The organization must maintain an audit trail of authorizations. DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). ','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of authorizations to ensure the organization being inspected/assessed authorizes the use of all information system components (through the use of an acceptable use agreement) which have the potential to cause damage to the information system if used maliciously. DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). '), ('002562','draft','2013-07-02','DISA FSO','policy','The organization monitors the use of organization-defined information system components which have the potential to cause damage to the information system if used maliciously.','SC-43.4','The organization being inspected/assessed documents and implements a process to monitor the use of all information system components (through the use of an acceptable use agreement) which have the potential to cause damage to the information system if used maliciously. The organization must maintain an audit trail of monitoring. DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). ','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring to ensure the organization being inspected/assessed monitors the use of all information system components (through the use of an acceptable use agreement). DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). '), ('002563','draft','2013-07-02','DISA FSO','policy','The organization controls the use of organization-defined information system components which have the potential to cause damage to the information system if used maliciously.','SC-43.5','The organization being inspected/assessed documents and implements a process to control the use of all information system components (through the use of an acceptable use agreement) which have the potential to cause damage to the information system if used maliciously. DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). ','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed controls the use of all information system components (through the use of an acceptable use agreement). DoD has defined the information system components as all information system components (through the use of an acceptable use agreement). '), ('002564','draft','2013-07-02','DISA FSO','policy','The organization defines the information system, system component, or location where a detonation chamber (i.e., dynamic execution environments) capability is employed.','SC-44.1','The organization being inspected/assessed defines and documents the information system, system components, or location where a detonation chamber (i.e., dynamic execution environments) capability is employed. DoD has determined the defines the information system, system components, or location are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system, system components, or location to ensure the organization being inspected/assessed defines the information system, system components, or location where a detonation chamber (i.e., dynamic execution environments) capability is employed. DoD has determined the defines the information system, system components, or location are not appropriate to define at the Enterprise level.'), ('002565','draft','2013-07-02','DISA FSO','policy','The organization employs a detonation chamber (i.e., dynamic execution environments) capability within an organization-defined information system, system component, or location.','SC-44.2','The organization being inspected/assessed implements a detonation chamber (i.e., dynamic execution environments, sandbox) capability within an information system, system component, or location defined in SC-44, CCI 2564. The organization must maintain an audit trail of detonation chamber implementation.','The organization conducting the inspection/assessment obtains and examines the documented detonation chamber to ensure the organization being inspected/assessed employs a detonation chamber (i.e., dynamic execution environments, sandbox) capability within an information system, system component, or location defined in SC-44, CCI 2564.'), ('002566','draft','2013-07-09','DISA FSO','policy','The organization defines personnel or roles to whom a documented media protection policy and procedures will be disseminated.','MP-1.3','DoD has defined the personnel or roles as all users.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all users.'), ('002567','draft','2013-07-09','DISA FSO','policy','The organization reviews and approves media sanitization.','MP-6(1).1','The organization being inspected/assessed documents and implements a process for reviewing and approving media sanitization. The process must include procedures for reviewing and approving sanitization actions. The organization must maintain a record of media sanitization actions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of media sanitization actions to ensure the organization being inspected/assessed reviews and approves media sanitization actions.'), ('002568','draft','2013-07-09','DISA FSO','policy','The organization tracks and documents media sanitization.','MP-6(1).2','The organization being inspected/assessed documents and implements a process for tracking media sanitization. The process must include procedures for tracking sanitization actions. The organization must maintain a record of media sanitization actions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of media sanitization actions to ensure the organization being inspected/assessed tracks and documents media sanitization actions.'), ('002569','draft','2013-07-09','DISA FSO','policy','The organization verifies media sanitization.','MP-6(1).3','The organization being inspected/assessed documents and implements a process for media sanitization. The process must include procedures for verification of sanitization actions. The organization must maintain a record of media sanitization actions including verification information.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of media sanitization actions to ensure the organization being inspected/assessed verifies media sanitization actions.'), ('002570','draft','2013-07-09','DISA FSO','policy','The organization reviews and approves media disposal actions.','MP-6(1).4','The organization being inspected/assessed documents and implements a process for reviewing and approving media disposal. The process must include procedures for reviewing and approving disposal actions. The organization must maintain a record of media disposal actions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of media disposal actions to ensure the organization being inspected/assessed reviews and approves media disposal actions.'), ('002571','draft','2013-07-09','DISA FSO','policy','The organization tracks and documents media disposal actions.','MP-6(1).5','The organization being inspected/assessed documents and implements a process for tracking media disposal. The process must include procedures for tracking disposal actions. The organization must maintain a record of media disposal actions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of media disposal actions to ensure the organization being inspected/assessed tracks and documents media disposal actions.'), ('002572','draft','2013-07-09','DISA FSO','policy','The organization verifies media disposal actions.','MP-6(1).6','The organization being inspected/assessed documents and implements a process for media disposal. The process must include procedures for verification of disposal actions. The organization must maintain a record of media disposal actions including verification information.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of media disposal actions to ensure the organization being inspected/assessed verifies media disposal actions.'), ('002573','draft','2013-07-09','DISA FSO','policy','The organization enforces dual authorization for the sanitization of organization-defined information system media.','MP-6(7).1','The organization being inspected/assessed documents and implements a process for dual authorization for the sanitization of information system media defined in MP-6 (7), CCI 2574. The organization must maintain a record of sanitization actions for media defined in MP-6 (7), CCI 2574.','The organization conducting the inspection/assessment obtains and examines the documented process as well as a sampling of records of sanitization actions to ensure the organization being inspected/assessed enforces dual authorization for the sanitization of information system media defined in MP-6 (7), CCI 2574.'), ('002574','draft','2013-07-09','DISA FSO','policy','The organization defines the information system media that dual authorization is enforced for sanitization.','MP-6(7).2','The organization being inspected/assessed defines and documents the information system media that dual authorization should be enforced for sanitization. DoD has determined the information system media is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system media to ensure the organization being inspected/assessed defines the information system media that dual authorization should be enforced for sanitization. DoD has determined the information system media is not appropriate to define at the Enterprise level.'), ('002575','draft','2013-07-09','DISA FSO','policy','The organization defines information systems, system components, or devices from which information is to be purged/wiped, either remotely or under the organization-defined conditions.','MP-6(8).1','The organization being inspected/assessed defines and documents information systems, system components, or devices that information should be purged/wiped either remotely or under the organization-defined conditions. DoD has determined the information systems, system components, or devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems, system components, or devices to ensure the organization being inspected/assessed defines information systems, system components, or devices that information should be purged/wiped either remotely or under the organization-defined conditions. DoD has determined the information systems, system components, or devices are not appropriate to define at the Enterprise level.'), ('002576','draft','2013-07-09','DISA FSO','policy','The organization defines conditions under which information from organization-defined information systems, system components, or devices should be purged/wiped.','MP-6(8).2','The organization being inspected/assessed defines and documents conditions in which information from organization-defined information systems, system components, or devices should be purged/wiped. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure the organization being inspected/assessed defines conditions in which information from organization-defined information systems, system components, or devices should be purged/wiped. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002577','draft','2013-07-09','DISA FSO','policy','The organization provides the capability to purge/wipe information from organization-defined information systems, system components, or devices either remotely or under organization-defined conditions.','MP-6(8).3','The organization being inspected/assessed documents and implements a process to purge /wipe information from information systems, system components, or devices defined in MP-6 (8), CCI 2575 either remotely or under conditions defined in MP-6 (8), CCI 2576.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides the capability to purge /wipe information from information systems, system components, or devices defined in MP-6 (8), CCI 2575 either remotely or under conditions defined in MP-6 (8), CCI 2576.'), ('002578','draft','2013-07-09','DISA FSO','policy','The organization defines information system media to sanitize prior to disposal, release out of organizational control, or release for reuse using organization-defined sanitization techniques and procedures in accordance with applicable federal and organizational standards and policies.','MP-6.2','DoD has defined the information system media as all media.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system media as all media.'), ('002579','draft','2013-07-09','DISA FSO','policy','The organization defines the sanitization techniques and procedures to be used to sanitize organization-defined information system media prior to disposal, release out of organizational control, or release for reuse in accordance with applicable federal and organization standards and policies.','MP-6.3','DoD has defined the sanitization techniques as techniques and procedures IAW NIST SP 800-88.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the sanitization techniques as techniques and procedures IAW NIST SP 800-88.'), ('002580','draft','2013-07-09','DISA FSO','policy','The organization employs sanitization mechanisms with the strength and integrity commensurate with the security category or classification of the information.','MP-6.4','The organization being inspected/assessed implements sanitization mechanisms with the strength and integrity commensurate with the security category or classification of the information. The organization must maintain an audit trail of sanitization actions.','The organization conducting the inspection/assessment obtains and examines the audit trail of sanitization actions to ensure the organization being inspected/assessed implements sanitization mechanisms with the strength and integrity commensurate with the security category or classification of the information.'), ('002581','draft','2013-07-09','DISA FSO','policy','The organization defines the types of information system media to restrict or prohibit on organization-defined information systems or system components using organization-defined security safeguards.','MP-7.1','The organization being inspected/assessed defines and documents the types of information system media to restrict or prohibit on organization-defined information systems or system components using organization-defined security safeguards. DoD has determined the types of information system media are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented type of information system media to ensure the organization being inspected/assessed defines the types of information system media to restrict or prohibit on organization-defined information systems or system components using organization-defined security safeguards. DoD has determined the types of information system media are not appropriate to define at the Enterprise level.'), ('002582','draft','2013-07-09','DISA FSO','policy','The organization defines the information systems or system components on which to restrict or prohibit the use of organization-defined types of information system media using organization-defined security safeguards.','MP-7.2','The organization being inspected/assessed defines and documents the information systems or system components to restrict or prohibit the use of organization-defined types of information system media using organization-defined security safeguards. DoD has determined the information systems or system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems or system components to ensure the organization being inspected/assessed defines the information systems or system components to restrict or prohibit the use of organization-defined types of information system media using organization-defined security safeguards. DoD has determined the information systems or system components are not appropriate to define at the Enterprise level.'), ('002583','draft','2013-07-09','DISA FSO','policy','The organization defines the security safeguards to use for restricting or prohibiting the use of organization-defined types of information system media on organization-defined information systems or system components.','MP-7.3','The organization being inspected/assessed defines and documents the security safeguards to use for restricting or prohibiting the use of organization-defined types of information system media on organization-defined information systems or system components. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to use for restricting or prohibiting the use of organization-defined types of information system media on organization-defined information systems or system components. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002584','draft','2013-07-09','DISA FSO','policy','The organization restricts or prohibits the use of organization-defined types of information system media on organization-defined information systems or system components using organization-defined security safeguards.','MP-7.4','The organization being inspected/assessed documents and enforces controls for the use of media defined in MP-7, CCI 2581 on systems defined in MP-7, CCI 2582 using security safeguards defined in MP-7, CCI 2583.','The organization conducting the inspection/assessment obtains and examines the documented controls and examines information system procedures associated with the use of media to ensure the organization being inspected/assessed documents and enforces controls for the use of media defined in MP-7, CCI 2581 on systems defined in MP-7, CCI 2582 using security safeguards defined in MP-7, CCI 2583.'), ('002585','draft','2013-07-09','DISA FSO','policy','The organization prohibits the use of portable storage devices in organizational information systems when such devices have no identifiable owner.','MP-7(1).1','The organization being inspected/assessed does not use portable storage devices in organization information systems when such devices have no identifiable owner.','The organization conducting the inspection/assessment examines a sampling of portable storage devices used in the information system to ensure that the devices have an identifiable owner.'), ('002586','draft','2013-07-09','DISA FSO','policy','The organization prohibits the use of sanitization-resistant media in organizational information systems.','MP-7(2).1','The organization being inspected/assessed does not use sanitization-resistant media in organizational information systems.','The organization conducting the inspection/assessment examines a sampling of media used in the information system to ensure sanitization-resistant media is not used.'), ('002587','draft','2013-07-09','DISA FSO','policy','The organization documents information system media downgrading actions.','MP-8(1).1','The organization being inspected/assessed documents information system media downgrading actions.','The organization conducting the inspection/assessment obtains and examines the documented information system media downgrading actions to ensure the organization being inspected/assessed documents information system media downgrading actions.'), ('002588','draft','2013-07-09','DISA FSO','policy','The organization employs organization-defined tests of downgrading equipment in accordance with organization-defined frequency.','MP-8(2).1','The organization being inspected/assessed implements tests defined in MP-8 (2), CCI 2590 at a minimum annually to verify correct performance of equipment. The organization must maintain a record of tests. DoD has defined the frequency as at a minimum annually.','The organization conducting the inspection/assessment obtains and examines the record of tests to ensure the organization being inspected/assessed implements tests defined in MP-8 (2), CCI 2590 at a minimum annually to verify correct performance of equipment. DoD has defined the frequency as at a minimum annually. '), ('002589','draft','2013-07-09','DISA FSO','policy','The organization employs procedures to verify correct performance of organization-defined tests of downgrading equipment in accordance with organization-defined frequency.','MP-8(2).2','The organization being inspected/assessed implements tests defined in MP-8 (2), CCI 2590 at a minimum annually to verify correct performance of procedures. The organization must maintain a record of tests. DoD has defined the frequency as at a minimum annually.','The organization conducting the inspection/assessment obtains and examines the record of tests to ensure the organization being inspected/assessed implements tests defined in MP-8 (2), CCI 2590 at a minimum annually to verify correct performance of procedures. DoD has defined the frequency as at a minimum annually. '), ('002590','draft','2013-07-09','DISA FSO','policy','The organization defines tests to employ for downgrading equipment.','MP-8(2).3','The organization being inspected/assessed defines and documents tests to employ for downgrading equipment. DoD has determined the tests are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented tests to ensure the organization being inspected/assessed defines tests to employ for downgrading equipment. DoD has determined the tests are not appropriate to define at the Enterprise level.'), ('002591','draft','2013-07-09','DISA FSO','policy','The organization defines the frequency with which to employ tests of downgrading equipment and procedures to verify correct performance.','MP-8(2).4','DoD has defined the frequency as at a minimum annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at a minimum annually.'), ('002592','draft','2013-07-09','DISA FSO','policy','The organization defines Controlled Unclassified Information (CUI).','MP-8(3).1','DoD has defined the Controlled Unclassified Information (CUI) as any Controlled Unclassified Information (CUI).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the Controlled Unclassified Information (CUI) as any Controlled Unclassified Information (CUI).'), ('002593','draft','2013-07-09','DISA FSO','policy','The organization downgrades information system media containing organization-defined Controlled Unclassified Information (CUI) prior to public release in accordance with applicable federal and organizational standards and policies.','MP-8(3).2','The organization being inspected/assessed implements a process to downgrade information system media containing any Controlled Unclassified Information (CUI) prior to public release in accordance with applicable federal and organizational standards and policies. The organization must maintain a record of public release of media and a record of information system media downgrade. DoD has defined the Controlled Unclassified Information (CUI) as any Controlled Unclassified Information (CUI).','The organization conducting the inspection/assessment obtains and examines the record of public release of media as well as records of information system media downgrade to ensure the organization being inspected/assessed implements a process to downgrade information system media containing any Controlled Unclassified Information (CUI) prior to public release in accordance with applicable federal and organizational standards and policies. DoD has defined the Controlled Unclassified Information (CUI) as any Controlled Unclassified Information (CUI).'), ('002594','draft','2013-07-09','DISA FSO','policy','The organization downgrades information system media containing classified information prior to release to individuals without required access authorizations in accordance with NSA standards and policies.','MP-8(4).1','The organization being inspected/assessed implements a process to downgrade information system media containing classified information prior to release to individuals without required access authorizations in accordance with NSA standards and policies. The organization must maintain a record of release of media containing classified information and a record of information system media downgrade.','The organization conducting the inspection/assessment obtains and examines the record of release of media containing classified information as well as records of information system media downgrade to ensure the organization being inspected/assessed implements a process to downgrade information system media containing classified information prior to release to individuals without required access authorizations in accordance with NSA standards and policies.'), ('002595','deprecated','2013-07-09','DISA FSO','policy','The organization establishes an organization-defined information system media downgrading process that includes employing downgrading mechanisms with organization-defined strength and integrity.',NULL,NULL,NULL), ('002596','draft','2013-07-09','DISA FSO','policy','The organization establishes and defines an information system media downgrading process that includes employing downgrading mechanisms with organization-defined strength and integrity.','MP-8.1','The organization being inspected/assessed defines and documents an information system media downgrading process that includes employing downgrading mechanisms with organization-defined strength and integrity. DoD has determined the information system media downgrading process is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system media downgrading process to ensure the organization being inspected/assessed defines an information system media downgrading process that includes employing downgrading mechanisms with organization-defined strength and integrity. DoD has determined the information system media downgrading process is not appropriate to define at the Enterprise level.'), ('002597','draft','2013-07-09','DISA FSO','policy','The organization defines strength and integrity for downgrading mechanisms to establish an organization-defined information system media downgrading process.','MP-8.2','The organization being inspected/assessed defines and documents strength and integrity for downgrading mechanisms to establish an organization-defined information system media downgrading process. DoD has determined the strength and integrity are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented strength and integrity to ensure the organization being inspected/assessed defines strength and integrity for downgrading mechanisms to establish an organization-defined information system media downgrading process. DoD has determined the strength and integrity are not appropriate to define at the Enterprise level.'), ('002598','draft','2013-07-09','DISA FSO','policy','The organization ensures that the information system media downgrading process is commensurate with the security category and/or classification level of the information to be removed and the access authorizations of the potential recipients of the downgraded information.','MP-8.3','The organization being inspected/assessed includes within the process defined in MP-8, CCI 2596, processes which are commensurate with the security category and/or classification level of the information to be removed and the access authorizations of the potential recipients of the downgraded information.','The organization conducting the inspection/assessment obtains and examines the documented process defined in MP-8, CCI 2596 to ensure it is commensurate with the security category and/or classification level of the information to be removed and the access authorizations of the potential recipients of the downgraded information.'), ('002599','draft','2013-07-09','DISA FSO','policy','The organization defines and identifies the information system media requiring downgrading.','MP-8.4','The organization being inspected/assessed defines, identifies, and documents the information system media requiring downgrading. DoD has determined the information system media is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system media to ensure the organization being inspected/assessed defines and identifies the information system media requiring downgrading. DoD has determined the information system media is not appropriate to define at the Enterprise level.'), ('002600','draft','2013-07-09','DISA FSO','policy','The organization downgrades the identified information system media using the established process.','MP-8.5','The organization being inspected/assessed implements the process defined in MP-8, CCI 2596 to downgrade media defined in MP-8, CCI 2599. The organization must maintain a record of downgrade activities.','The organization conducting the inspection/assessment obtains and examines the record of downgrade activities to ensure the organization being inspected/assessed implements the process defined in MP-8, CCI 2596 to downgrade media defined in MP-8, CCI 2599.'), ('002601','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles to whom the system and information integrity policy and procedures are to be disseminated.','SI-1.1','DoD has defined the personnel or roles as all appointed information assurance personnel.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the personnel or roles as all appointed information assurance personnel.'), ('002602','draft','2013-07-11','DISA FSO','policy','The organization tests firmware updates related to flaw remediation for effectiveness before installation.','SI-2.6','The organization being inspected/assessed documents and implements a process to test firmware updates related to flaw remediation for effectiveness before installation. If the firmware update is being provided by a vendor who has documented the effectiveness of the update in fixing the affected IAVM/CVE, further testing by the organization may not be required.','The organization conducting the inspection/assessment obtains and examines the documented process and test results to ensure the organization being inspected/assessed tests firmware updates related to flaw remediation for effectiveness before installation.'), ('002603','draft','2013-07-11','DISA FSO','policy','The organization tests firmware updates related to flaw remediation for potential side effects before installation.','SI-2.7','The organization being inspected/assessed documents and implements a process for regression testing IAW CM-4 to identify any potential side effects before installation of software updates.','The organization conducting the inspection/assessment obtains and examines the documented process and test results to ensure the organization being inspected/assessed tests firmware updates related to flaw remediation for potential side effects before installation.'), ('002604','draft','2013-07-11','DISA FSO','policy','The organization defines the time period following the release of updates within which security-related software updates are to be installed.','SI-2.8','DoD has defined the time period as 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the time period as 30 days'), ('002605','draft','2013-07-11','DISA FSO','technical','The organization installs security-relevant software updates within an organization-defined time period of the release of the updates.','SI-2.9','The organization being inspected/assessed configures the information system to install security-relevant software updates within 30 days of the release of the updates\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2605.\nDoD has defined the time period as 30 days.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to install security-relevant software updates within 30 days of the release of the updates.\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2605.\nDoD has defined the time period as 30 days.'), ('002606','draft','2013-07-11','DISA FSO','policy','The organization defines the time period following the release of updates within which security-related firmware updates are to be installed.','SI-2.10','DoD has defined the time period as 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the time period as 30 days'), ('002607','draft','2013-07-11','DISA FSO','technical','The organization installs security-relevant firmware updates within an organization-defined time period of the release of the updates.','SI-2.11','The organization being inspected/assessed configures the information system to install security-relevant firmware updates within 30 days of the release of the updates.\n\nFor information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2607.\n\nDoD has defined the time period as 30 days.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to install security-relevant firmware updates within 30 days of the release of the updates.\n\nFor information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2607.\n\nDoD has defined the time period as 30 days.'), ('002608','draft','2013-07-11','DISA FSO','policy','The organization establishes organization-defined benchmarks for the time taken to apply corrective actions after flaw identification.','SI-2(3).3','The organization being inspected/assessed implements benchmarks for the time taken to apply corrective actions after flaw identification IAW the period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).\n\nDoD has defined the benchmarks as within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).','The organization conducting the inspection/assessment obtains and examines records of corrective actions taken to ensure the organization being inspected/assessed implements benchmarks for the time taken to apply corrective actions after flaw identification IAW the period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).\n\nDoD has defined the benchmarks as within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, STIGs).'), ('002609','draft','2013-07-11','DISA FSO','policy','The organization defines the information system components on which organization-defined security-relevant software updates will be automatically installed.','SI-2(5).1','The organization being inspected/assessed defines and documents the information system components on which organization-defined security-relevant software updates will be automatically installed. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components on which organization-defined security-relevant software updates will be automatically installed. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002610','draft','2013-07-11','DISA FSO','policy','The organization defines the information system components on which organization-defined security-relevant firmware updates will be automatically installed.','SI-2(5).2','The organization being inspected/assessed defines and documents the information system components on which organization-defined security-relevant firmware updates will be automatically installed. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components on which organization-defined security-relevant firmware updates will be automatically installed. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002611','draft','2013-07-11','DISA FSO','policy','The organization defines the security-relevant software updates to be automatically installed on organization-defined information system components.','SI-2(5).3','The organization being inspected/assessed defines and documents the security-relevant software updates to be automatically installed on organization-defined information system components. DoD has determined the security-relevant software updates are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security-relevant software updates to ensure the organization being inspected/assessed defines the security-relevant software updates to be automatically installed on organization-defined information system components. DoD has determined the security-relevant software updates are not appropriate to define at the Enterprise level.'), ('002612','draft','2013-07-11','DISA FSO','policy','The organization defines the security-relevant firmware updates to be automatically installed on organization-defined information system components.','SI-2(5).4','The organization being inspected/assessed defines and documents the security-relevant firmware updates to be automatically installed on organization-defined information system components. DoD has determined the security-relevant firmware updates are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security-relevant firmware updates to ensure the organization being inspected/assessed defines the security-relevant firmware updates to be automatically installed on organization-defined information system components. DoD has determined the security-relevant firmware updates are not appropriate to define at the Enterprise level.'), ('002613','draft','2013-07-11','DISA FSO','technical','The organization installs organization-defined security-relevant software updates automatically to organization-defined information system components.','SI-2(5).5','The organization being inspected/assessed configures the information system to install security-relevant software updates defined in SI-2 (5), CCI 2611 automatically to information system components defined in SI-2 (5), CCI 2609. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2613.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to install security-relevant software updates defined in SI-2 (5), CCI 2611 automatically to information system components defined in SI-2 (5), CCI 2609. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2613.'), ('002614','draft','2013-07-11','DISA FSO','technical','The organization installs organization-defined security-relevant firmware updates automatically to organization-defined information system components.','SI-2(5).6','The organization being inspected/assessed configures the information system to install security-relevant firmware updates defined in SI-2 (5), CCI 2612 automatically to information system components defined in SI-2 (5), CCI 2610. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2614.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to install security-relevant firmware updates defined in SI-2 (5), CCI 2612 automatically to information system components defined in SI-2 (5), CCI 2610. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2614.'), ('002615','draft','2013-07-11','DISA FSO','policy','The organization defines the software components to be removed (e.g., previous versions) after updated versions have been installed.','SI-2(6).1','DoD has defined the software components as all upgraded/replaced software components that are no longer required for operation.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the software components as all upgraded/replaced software components that are no longer required for operation.'), ('002616','draft','2013-07-11','DISA FSO','policy','The organization defines the firmware components to be removed (e.g., previous versions) after updated versions have been installed.','SI-2(6).2','DoD has defined the firmware components as all upgraded/replaced firmware components that are no longer required for operation.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the firmware components as all upgraded/replaced firmware components that are no longer required for operation.'), ('002617','draft','2013-07-11','DISA FSO','technical','The organization removes organization-defined software components (e.g., previous versions) after updated versions have been installed.','SI-2(6).3','The organization being inspected/assessed configures the information system to remove all upgraded/replaced software components that are no longer required for operation (e.g., previous versions) after updated versions have been installed. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2617. DoD has defined the software components as all upgraded/replaced software components that are no longer required for operation.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to remove all upgraded/replaced software components that are no longer required for operation (e.g., previous versions) after updated versions have been installed. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2617. DoD has defined the software components as all upgraded/replaced software components that are no longer required for operation.'), ('002618','draft','2013-07-11','DISA FSO','technical','The organization removes organization-defined firmware components (e.g., previous versions) after updated versions have been installed.','SI-2(6).4','The organization being inspected/assessed configures the information system to remove all upgraded/replaced firmware components that are no longer required for operation e.g., previous versions) after updated versions have been installed. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2618. DoD has defined the firmware components as all upgraded/replaced firmware components that are no longer required for operation.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to remove all upgraded/replaced firmware components that are no longer required for operation (e.g., previous versions) after updated versions have been installed. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2618. DoD has defined the firmware components as all upgraded/replaced firmware components that are no longer required for operation.'), ('002619','draft','2013-07-11','DISA FSO','policy','The organization employs malicious code protection mechanisms at information system entry points to detect malicious code.','SI-3.1','The organization being inspected/assessed identifies and documents the information system entry points and implements malicious code protection mechanisms at those entry points to detect malicious code. Information system entry and exit points include, for example, firewalls, electronic mail servers, web servers, proxy servers, remote-access servers, workstations, notebook computers, and mobile devices. Malicious code protection mechanisms include, for example, anti-virus signature definitions and reputation-based technologies.','The organization conducting the inspection/assessment examines the information system architecture as well as the organization\'s documentation of information system entry points and verifies that malicious code protection mechanisms are implemented.'), ('002620','draft','2013-07-11','DISA FSO','policy','The organization employs malicious code protection mechanisms at information system exit points to detect malicious code.','SI-3.2','The organization being inspected/assessed identifies and documents the information system exit points and implements malicious code protection mechanisms at those exit points to detect malicious code. Information system entry and exit points include, for example, firewalls, electronic mail servers, web servers, proxy servers, remote-access servers, workstations, notebook computers, and mobile devices. Malicious code protection mechanisms include, for example, anti-virus signature definitions and reputation-based technologies.','The organization conducting the inspection/assessment examines the information system architecture as well as the organization\'s documentation of information system exit points and verifies that malicious code protection mechanisms are implemented.'), ('002621','draft','2013-07-11','DISA FSO','policy','The organization employs malicious code protection mechanisms at information system entry points to eradicate malicious code.','SI-3.3','The organization being inspected/assessed configures the malicious code protection mechanisms identified in SI-3, CCI 2619 to eradicate malicious code.','The organization conducting the inspection/assessment examines the information system architecture as well as the organization\'s documentation of information system entry points and verifies that malicious code protection mechanisms are implemented to eradicate malicious code.'), ('002622','draft','2013-07-11','DISA FSO','policy','The organization employs malicious code protection mechanisms at information system exit points to eradicate malicious code.','SI-3.4','The organization being inspected/assessed configures the malicious code protection mechanisms identified in SI-3, CCI 2620 to eradicate malicious code.','The organization conducting the inspection/assessment examines the information system architecture as well as the organization\'s documentation of information system exit points and verifies that malicious code protection mechanisms are implemented to eradicate malicious code.'), ('002623','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency for performing periodic scans of the information system for malicious code.','SI-3.6','DoD has defined the frequency as every 7 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as every 7 days.'), ('002624','draft','2013-07-11','DISA FSO','policy','The organization configures malicious code protection mechanisms to perform real-time scans of files from external sources at network entry/exit points as the files are downloaded, opened, or executed in accordance with organizational security policy.','SI-3.7','The organization being inspected/assessed configures the malicious code protection mechanisms to perform real-time scans of files from external sources at network entry/exit points as the files are downloaded, opened, or executed in accordance with organizational security policy. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2624.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures malicious code protection mechanisms to perform real-time scans of files from external sources at network entry/exit points as the files are downloaded, opened, or executed in accordance with organizational security policy. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2624.'), ('002625','draft','2013-07-11','DISA FSO','policy','The organization, when testing malicious code protection mechanisms, verifies the detection of the test case occurs.','SI-3(6).3','The organization being inspected/assessed verifies the detection of the test case occurs when testing malicious code protection mechanisms. The organization must maintain an audit trail of test cases and successful or failed detection.','The organization conducting the inspection/assessment obtains and examines the audit trail of test cases and successful or failed detection to ensure the organization being inspected/assessed verifies the detection of the test case occurs when testing malicious code protection mechanisms.'), ('002626','draft','2013-07-11','DISA FSO','policy','The organization, when testing malicious code protection mechanisms, verifies the incident reporting of the test case occurs.','SI-3(6).4','The organization being inspected/assessed verifies the incident reporting of the test case occurs when testing malicious code protection mechanisms. The organization must maintain an audit trail of test cases and success or failure.','The organization conducting the inspection/assessment obtains and examines the audit trail of test cases and success or failure to ensure the organization being inspected/assessed verifies the incident reporting of the test case occurs when testing malicious code protection mechanisms.'), ('002627','draft','2013-07-11','DISA FSO','technical','The information system implements nonsignature-based malicious code detection mechanisms.','SI-3(7).1','The organization being inspected/assessed configures the information system to implement nonsignature-based malicious code detection mechanisms. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2627. Nonsignature-based detection mechanisms include, for example, the use of heuristics to detect, analyze, and describe the characteristics or behavior of malicious code and to provide safeguards against malicious code for which signatures do not yet exist or for which existing signatures may not be effective.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement nonsignature-based malicious code detection mechanisms. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2627.'), ('002628','draft','2013-07-11','DISA FSO','policy','The organization defines the unauthorized operating system commands that are to be detected through the kernel application programming interface by organization-defined information system hardware components.','SI-3(8).1','The organization being inspected/assessed defines and documents the unauthorized operating system commands that are to be detected through the kernel application programming interface by organization-defined information system hardware components. DoD has determined the unauthorized operating system commands are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented unauthorized operating system commands to ensure the organization being inspected/assessed defines the unauthorized operating system commands that are to be detected through the kernel application programming interface by organization-defined information system hardware components. DoD has determined the unauthorized operating system commands are not appropriate to define at the Enterprise level.'), ('002629','draft','2013-07-11','DISA FSO','policy','The organization defines the information system hardware components that are to detect organization-defined unauthorized operating system commands through the kernel programming application interface.','SI-3(8).2','The organization being inspected/assessed defines and documents the information system hardware components that are to detect organization-defined unauthorized operating system commands through the kernel application interface. DoD has determined the information system hardware components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system hardware components to ensure the organization being inspected/assessed defines the information system hardware components that are to detect organization-defined unauthorized operating system commands through the kernel application interface. DoD has determined the information system hardware components are not appropriate to define at the Enterprise level.'), ('002630','draft','2013-07-11','DISA FSO','technical','The information system detects organization-defined unauthorized operating system commands through the kernel application programming interface at organization-defined information system hardware components.','SI-3(8).3','The organization being inspected/assessed configures the information system to detect unauthorized operating system commands defined in SI-3 (8), CCI 2628 through the kernel application programming interface at information system hardware components defined in SI-3 (8), CCI 2629. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2630.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to detect unauthorized operating system commands defined in SI-3 (8), CCI 2628 through the kernel application programming interface at information system hardware components defined in SI-3 (8), CCI 2629. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2630.'), ('002631','draft','2013-07-11','DISA FSO','technical','The information system issues a warning, audits the command execution, or prevents the execution of the command when organization-defined unauthorized operating system commands are detected.','SI-3(8).4','The organization being inspected/assessed configures the information system to issue a warning, audits the command execution, or prevents the execution of the command when unauthorized operating system commands defined in SI-3 (8), CCI 2628 are detected. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2631.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to issue a warning, audits the command execution, or prevents the execution of the command when unauthorized operating system commands defined in SI-3 (8), CCI 2628 are detected. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2631.'), ('002632','draft','2013-07-11','DISA FSO','policy','The organization defines the remote commands that are to be authenticated using organization-defined safeguards for malicious code protection.','SI-3(9).1','The organization being inspected/assessed defines and documents the remote commands that are to be authenticated using organization-defined safeguards for malicious code protection. DoD has determined the remote commands are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented remote commands to ensure the organization being inspected/assessed defines the remote commands that are to be authenticated using organization-defined safeguards for malicious code protection. DoD has determined the remote commands are not appropriate to define at the Enterprise level.'), ('002633','draft','2013-07-11','DISA FSO','policy','The organization defines the security safeguards to be implemented to authenticate organization-defined remote commands for malicious code protection.','SI-3(9).2','The organization being inspected/assessed defines and documents the security safeguards to be implemented to authenticate organization-defined remote commands for malicious code protection. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be implemented to authenticate organization-defined remote commands for malicious code protection. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002634','draft','2013-07-11','DISA FSO','policy','The organization defines the tools to be employed to analyze the characteristics and behavior of malicious code.','SI-3(10).1','The organization being inspected/assessed defines and documents the tools to be employed to analyze the characteristics and behavior of malicious code. DoD has determined the tools are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented tools to ensure the organization being inspected/assessed defines the tools to be employed to analyze the characteristics and behavior of malicious code. DoD has determined the tools are not appropriate to define at the Enterprise level.'), ('002635','draft','2013-07-11','DISA FSO','policy','The organization defines the techniques to be employed to analyze the characteristics and behavior of malicious code.','SI-3(10).2','The organization being inspected/assessed defines and documents the techniques to be employed to analyze the characteristics and behavior of malicious code. DoD has determined the techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques to ensure the organization being inspected/assessed defines the techniques to be employed to analyze the characteristics and behavior of malicious code. DoD has determined the techniques are not appropriate to define at the Enterprise level.'), ('002636','draft','2013-07-11','DISA FSO','policy','The organization employs organization-defined tools to analyze the characteristics and behavior of malicious code.','SI-3(10).3','The organization being inspected/assessed documents and implements tools defined in SI-3 (10), CCI 2634 to analyze the characteristics and behavior of malicious code.','The organization conducting the inspection/assessment obtains and examines the documented tools to ensure the organization being inspected/assessed employs tools defined in SI-3 (10), CCI 2634 to analyze the characteristics and behavior of malicious code.'), ('002637','draft','2013-07-11','DISA FSO','technical','The information system implements organization-defined security safeguards to authenticate organization-defined remote commands for malicious code protection.','SI-3(9).3','The organization being inspected/assessed configures the information system to implement security safeguards defined in SI-3 (9), CCI 2633 to authenticate remote commands for malicious code protection defined in SI-3 (9), CCI 2632. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2637.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement security safeguards defined in SI-3 (9), CCI 2633 to authenticate remote commands for malicious code protection defined in SI-3 (9), CCI 2632. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2637.'), ('002638','draft','2013-07-11','DISA FSO','policy','The organization employs organization-defined techniques to analyze the characteristics and behavior of malicious code.','SI-3(10).4','The organization being inspected/assessed documents and implements techniques defined in SI-3 (10), CCI 2635 to analyze the characteristics and behavior of malicious code.','The organization conducting the inspection/assessment obtains and examines the documented techniques to ensure the organization being inspected/assessed employs techniques defined in SI-3 (10), CCI 2635 to analyze the characteristics and behavior of malicious code.'), ('002639','draft','2013-07-11','DISA FSO','policy','The organization incorporates the results from malicious code analysis into organizational incident response processes.','SI-3(10).5','The organization being inspected/assessed incorporates the results from malicious code analysis into organizational incident response processes.','The organization conducting the inspection/assessment obtains and examines the organizational incident response processes to ensure the organization being inspected/assessed incorporates the results from malicious code analysis into organizational incident response processes.'), ('002640','draft','2013-07-11','DISA FSO','policy','The organization incorporates the results from malicious code analysis into organizational flaw remediation processes.','SI-3(10).6','The organization being inspected/assessed incorporates the results from malicious code analysis into organizational flaw remediation processes.','The organization conducting the inspection/assessment obtains and examines the flaw remediation processes to ensure the organization being inspected/assessed incorporates the results from malicious code analysis into organizational flaw remediation processes.'), ('002641','draft','2013-07-11','DISA FSO','policy','The organization monitors the information system to detect attacks and indicators of potential attacks in accordance with organization-defined monitoring objectives.','SI-4.2','The organization being inspected/assessed documents and implements a process to monitor the information system to detect attacks and indicators of potential attacks in accordance with sensor placement and monitoring requirements within CJCSI 6510.01F. The organization must maintain an audit trail of monitoring. DoD has defined the monitoring objectives as sensor placement and monitoring requirements within CJCSI 6510.01F.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring to ensure the organization being inspected/assessed monitors the information system to detect attacks and indicators of potential attacks in accordance with sensor placement and monitoring requirements within CJCSI 6510.01F.'), ('002642','draft','2013-07-11','DISA FSO','policy','The organization monitors the information system to detect unauthorized local connections.','SI-4.3','The organization being inspected/assessed documents and implements a process to monitor the information system to detect unauthorized local connections. The organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring to ensure the organization being inspected/assessed monitors the information system to detect unauthorized local connections.'), ('002643','draft','2013-07-11','DISA FSO','policy','The organization monitors the information system to detect unauthorized network connections.','SI-4.4','The organization being inspected/assessed documents and implements a process to monitor the information system to detect unauthorized network connections. The organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring to ensure the organization being inspected/assessed monitors the information system to detect unauthorized network connections.'), ('002644','draft','2013-07-11','DISA FSO','policy','The organization monitors the information system to detect unauthorized remote connections.','SI-4.5','The organization being inspected/assessed documents and implements a process to monitor information system to detect unauthorized remote connections. The organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring to ensure the organization being inspected/assessed monitors the information system to detect unauthorized remote connections.'), ('002645','draft','2013-07-11','DISA FSO','policy','The organization defines the techniques and methods to be used to identify unauthorized use of the information system.','SI-4.6','The organization being inspected/assessed defines and documents the techniques and methods to be used to identify unauthorized use of the information system. DoD has determined the techniques and methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented techniques to ensure the organization being inspected/assessed defines the techniques and methods to be used to identify unauthorized use of the information system. DoD has determined the techniques and methods are not appropriate to define at the Enterprise level.'), ('002646','draft','2013-07-11','DISA FSO','policy','The organization identifies unauthorized use of the information system through organization-defined techniques and methods.','SI-4.7','The organization being inspected/assessed identifies unauthorized use of the information system through techniques and methods defined in SI-4, CCI 2645. The organization must maintain an audit trail of identified instances of unauthorized use.','The organization conducting the inspection/assessment obtains and examines the audit trail of identified instances of unauthorized use to ensure the organization being inspected/assessed identifies unauthorized use of the information system through techniques and methods defined in SI-4, CCI 2645.'), ('002647','draft','2013-07-11','DISA FSO','policy','The organization protects information obtained from intrusion-monitoring tools from unauthorized access.','SI-4.10','The organization being inspected/assessed documents and implements a process to protect information obtained from intrusion-monitoring tools from unauthorized access.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed protects information obtained from intrusion-monitoring tools from unauthorized access.'), ('002648','draft','2013-07-11','DISA FSO','policy','The organization protects information obtained from intrusion-monitoring tools from unauthorized modification.','SI-4.11','The organization being inspected/assessed documents and implements a process to protect information obtained from intrusion-monitoring tools from unauthorized modification.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed protects information obtained from intrusion-monitoring tools from unauthorized modification.'), ('002649','draft','2013-07-11','DISA FSO','policy','The organization protects information obtained from intrusion-monitoring tools from unauthorized deletion.','SI-4.12','The organization being inspected/assessed documents and implements a process to protect information obtained from intrusion-monitoring tools from unauthorized deletion.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed protects information obtained from intrusion-monitoring tools from unauthorized deletion.'), ('002650','draft','2013-07-11','DISA FSO','policy','The organization defines the information system monitoring information that is to be provided the organization-defined personnel or roles.','SI-4.15','The organization being inspected/assessed defines and documents the information system monitoring information that is to be provided the organization-defined personnel or roles. DoD has determined the information system monitoring information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system monitoring information to ensure the organization being inspected/assessed defines the information system monitoring information that is to be provided the organization-defined personnel or roles. DoD has determined the information system monitoring information is not appropriate to define at the Enterprise level.'), ('002651','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles that are to be provided organization-defined information system monitoring information.','SI-4.16','The organization being inspected/assessed defines and documents the personnel or roles that are to be provided organization-defined information system monitoring information. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles that are to be provided organization-defined information system monitoring information. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002652','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency at which the organization will provide the organization-defined information system monitoring information to organization-defined personnel or roles.','SI-4.17','The organization being inspected/assessed defines and documents the frequency at which the organization will provide the organization-defined information system monitoring information to organization-defined personnel or roles DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency at which the organization will provide the organization-defined information system monitoring information to organization-defined personnel or roles. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('002653','deprecated','2013-07-11','DISA FSO','policy','The organization provides organization-defined information system monitoring information to organization-defined personnel or roles as needed or per organization-defined frequency.',NULL,NULL,NULL), ('002654','draft','2013-07-11','DISA FSO','policy','The organization provides organization-defined information system monitoring information to organization-defined personnel or roles as needed or per organization-defined frequency.','SI-4.18','The organization being inspected/assessed provides information system monitoring information defined in SI-4, CCI 2650 to personnel or roles defined in SI-4, CCI 2651 as needed or per the frequency defined in SI-4, CCI 2652. The organization must maintain an audit trail of when information is provided.','The organization conducting the inspection/assessment obtains and examines the audit trail of when information is provided to ensure the organization being inspected/assessed provides information system monitoring information defined in SI-4, CCI 2650 to personnel or roles defined in SI-4, CCI 2651 as needed or per the frequency defined in SI-4, CCI 2652.'), ('002655','draft','2013-07-11','DISA FSO','policy','The organization connects individual intrusion detection tools into an information system-wide intrusion detection system.','SI-4(1).1','The organization being inspected/assessed connects individual intrusion detection tools into an information system-wide intrusion detection system.','The organization conducting the inspection/assessment examines the information system-wide intrusion detection system architecture and individuals tools to ensure the organization being inspected/assessed connects individual intrusion detection tools into an information system-wide intrusion detection system.'), ('002656','draft','2013-07-11','DISA FSO','technical','The organization configures individual intrusion detection tools into an information system-wide intrusion detection system.','SI-4(1).2','The organization being inspected/assessed configures individual intrusion detection tools into an information system-wide intrusion detection system. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2656.','The organization conducting the inspection/assessment examines the information system-wide intrusion detection system to ensure the organization being inspected/assessed configures individual intrusion detection tools into an information system-wide intrusion detection system. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2656.'), ('002657','draft','2013-07-11','DISA FSO','policy','The organization employs automated tools to integrate intrusion detection tools into access control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination.','SI-4(3).1','The organization being inspected/assessed documents and implements automated tools to integrate intrusion detection tools into access control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated tools to ensure the organization being inspected/assessed employs automated tools to integrate intrusion detection tools into access control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination. The organization being inspected/assessed may be required to demonstrate use of their automated tools.'), ('002658','draft','2013-07-11','DISA FSO','policy','The organization employs automated tools to integrate intrusion detection tools into flow control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination.','SI-4(3).2','The organization being inspected/assessed documents and implements automated tools to integrate intrusion detection tools into flow control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination.','The organization conducting the inspection/assessment obtains and examines documentation of the use of the identified automated tools to ensure the organization being inspected/assessed employs automated tools to integrate intrusion detection tools into flow control mechanisms for rapid response to attacks by enabling reconfiguration of these mechanisms in support of attack isolation and elimination. The organization being inspected/assessed may be required to demonstrate use of their automated tools.'), ('002659','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency on which it will monitor inbound communications for unusual or unauthorized activities or conditions.','SI-4(4).1','DoD has defined the frequency as continuously.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as continuously.'), ('002660','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency on which it will monitor outbound communications for unusual or unauthorized activities or conditions.','SI-4(4).2','DoD has defined the frequency as continuously.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as continuously.'), ('002661','draft','2013-07-11','DISA FSO','technical','The information system monitors inbound communications traffic per organization-defined frequency for unusual or unauthorized activities or conditions.','SI-4(4).3','The organization being inspected/assessed configures the information system to monitor inbound communications traffic continuously for unusual or unauthorized activities or conditions. DoD has defined the frequency as continuously.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to monitor inbound communications traffic continuously for unusual or unauthorized activities or conditions. DoD has defined the frequency as continuously.'), ('002662','draft','2013-07-11','DISA FSO','technical','The information system monitors outbound communications traffic per organization-defined frequency for unusual or unauthorized activities or conditions.','SI-4(4).4','The organization being inspected/assessed configures the information system to monitor outbound communications traffic continuously for unusual or unauthorized activities or conditions. DoD has defined the frequency as continuously.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to monitor outbound communications traffic continuously for unusual or unauthorized activities or conditions. DoD has defined the frequency as continuously.'), ('002663','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles to receive information system alerts when organization-defined indicators of compromise or potential compromise occur.','SI-4(5).2','DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO. '), ('002664','draft','2013-07-11','DISA FSO','technical','The information system alerts organization-defined personnel or roles when organization-defined compromise indicators reflect the occurrence of a compromise or a potential compromise.','SI-4(5).3','The organization being inspected/assessed configures the information system to alert at a minimum, the ISSM and ISSO when real time intrusion detection and when there are threats identified by authoritative sources (e.g. CTOs) and IAW incident categories I, II, IV, & VII within CJCSM 6510.01B reflect the occurrence of a compromise or a potential compromise. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2664. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO. DoD has defined the compromise indicators as real time intrusion detection and when there are threats identified by authoritative sources (e.g. CTOs) and IAW incident categories I, II, IV, & VII within CJCSM 6510.01B.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to alert at a minimum, the ISSM and ISSO when real time intrusion detection and when there are threats identified by authoritative sources (e.g. CTOs) and IAW incident categories I, II, IV, & VII within CJCSM 6510.01B reflect the occurrence of a compromise or a potential compromise. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2664. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO. DoD has defined the compromise indicators as real time intrusion detection and when there are threats identified by authoritative sources (e.g. CTOs) and IAW incident categories I, II, IV, & VII within CJCSM 6510.01B.'), ('002665','draft','2013-07-11','DISA FSO','policy','The organization defines the encrypted communications traffic that is to be visible to organization-defined information system monitoring tools.','SI-4(10).1','The organization being inspected/assessed defines and documents the encrypted communications traffic that are to be visible to organization-defined information system monitoring tools. DoD has determined the encrypted traffic is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented encrypted traffic to ensure the organization being inspected/assessed defines the encrypted communications traffic that are to be visible to organization-defined information system monitoring tools. DoD has determined the encrypted traffic is not appropriate to define at the Enterprise level.'), ('002666','draft','2013-07-11','DISA FSO','policy','The organization defines the information system monitoring tools that will have visibility into organization-defined encrypted communications traffic.','SI-4(10).2','The organization being inspected/assessed defines and documents the information system monitoring tools that will have visibility into organization-defined encrypted communications traffic. DoD has determined the information system monitoring tools are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system monitoring tools to ensure the organization being inspected/assessed defines the information system monitoring tools that will have visibility into organization-defined encrypted communications traffic. DoD has determined the information system monitoring tools are not appropriate to define at the Enterprise level.'), ('002667','draft','2013-07-11','DISA FSO','policy','The organization makes provisions so that organization-defined encrypted communications traffic is visible to organization-defined information system monitoring tools.','SI-4(10).3','The organization being inspected/assessed makes provisions so that encrypted communications traffic defined in SI-4 (10), CCI 2665 is visible to information system monitoring tools defined in SI-4 (10), CCI 2666.','The organization conducting the inspection/assessment examines the information system architecture to verify that the encrypted communications traffic is visible to information system monitoring tools defined in SI-4 (10), CCI 2666.'), ('002668','draft','2013-07-11','DISA FSO','policy','The organization defines the interior points within the information system (e.g., subnetworks, subsystems) where outbound communications will be analyzed to discover anomalies.','SI-4(11).3','The organization being inspected/assessed defines and documents the interior points within the information system (e.g., subnetworks, subsystems) where outbound communications will be analyzed to discover anomalies. DoD has determined the interior points are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented interior points to ensure the organization being inspected/assessed defines the interior points within the information system (e.g., subnetworks, subsystems) where outbound communications will be analyzed to discover anomalies. DoD has determined the interior points are not appropriate to define at the Enterprise level.'), ('002669','draft','2013-07-11','DISA FSO','policy','The organization uses the traffic/event profiles in tuning system-monitoring devices to reduce the number of false positives and false negatives.','SI-4(13).3','The organization being inspected/assessed documents and implements a process to use the traffic/event profiles in tuning system-monitoring devices to reduce the number of false positives and false negatives. The organization must maintain an audit log of tuning events.','The organization conducting the inspection/assessment obtains and examines the documented process as well as audit logs of tuning events to ensure the organization being inspected/assessed uses the traffic/event profiles in tuning system-monitoring devices to reduce the number of false positives and false negatives.'), ('002670','draft','2013-07-11','DISA FSO','policy','The organization defines the interior points within the system (e.g., subsystems, subnetworks) where outbound communications will be analyzed to detect covert exfiltration of information.','SI-4(18).1','The organization being inspected/assessed defines and documents the interior points within the system (e.g., subsystems, subnetworks) where outbound communications will be analyzed to detect covert exfiltration of information. DoD has determined the interior points are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented interior points to ensure the organization being inspected/assessed defines the interior points within the system (e.g., subsystems, subnetworks) where outbound communications will be analyzed to detect covert exfiltration of information. DoD has determined the interior points are not appropriate to define at the Enterprise level.'), ('002671','draft','2013-07-11','','policy','The organization analyzes outbound communications traffic at the external boundary of the information system (i.e., system perimeter) to detect covert exfiltration of information.','SI-4(18).2','The organization being inspected/assessed documents and implements a process to analyze outbound communications traffic at the external boundary of the information system (i.e., system perimeter) to detect covert exfiltration of information. The organization must maintain a record of the analysis.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of analysis to ensure the organization being inspected/assessed analyzes outbound communications traffic at the external boundary of the information system (i.e., system perimeter) to detect covert exfiltration of information.'), ('002672','draft','2013-07-11','DISA FSO','policy','The organization analyzes outbound communications traffic at organization-defined interior points within the system (e.g., subsystems, subnetworks) to detect covert exfiltration of information.','SI-4(18).3','The organization being inspected/assessed documents and implements a process to analyze outbound communications traffic at interior points defined in SI-4 (18), CCI 2670 within the system (e.g., subsystems, subnetworks) to detect covert exfiltration of information. The organization must maintain a record of the analysis.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of analysis to ensure the organization being inspected/assessed analyzes outbound communications traffic at interior points defined in SI-4 (18), CCI 2670 within the system (e.g., subsystems, subnetworks) to detect covert exfiltration of information.'), ('002673','draft','2013-07-11','DISA FSO','policy','The organization defines the additional monitoring to be implemented for individuals identified as posing an increased level of risk.','SI-4(19).1','The organization being inspected/assessed defines and documents the additional monitoring to be implemented for individuals identified as posing an increased level of risk. DoD has determined the additional monitoring is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented additional monitoring to ensure the organization being inspected/assessed defines the additional monitoring to be implemented for individuals identified as posing an increased level of risk. DoD has determined the additional monitoring is not appropriate to define at the Enterprise level.'), ('002674','draft','2013-07-11','DISA FSO','policy','The organization defines the sources that may be used to identify individuals who pose an increased level of risk.','SI-4(19).2','The organization being inspected/assessed defines and documents the sources that may be used to identify individuals who pose an increased level of risk. DoD has determined the sources are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented sources to ensure the organization being inspected/assessed defines the sources that may be used to identify individuals who pose an increased level of risk. DoD has determined the sources are not appropriate to define at the Enterprise level.'), ('002675','draft','2013-07-11','DISA FSO','policy','The organization implements organization-defined additional monitoring of individuals who have been identified by organization-defined sources as posing an increased level of risk.','SI-4(19).3','The organization being inspected/assessed implements additional monitoring defined in SI-4 (19), CCI 2673 of individuals who have been identified by sources defined in SI-4 (19), CCI 2674 as posing an increased level of risk. The organization must maintain an audit trail of additional monitoring.','The organization conducting the inspection/assessment obtains and examines the audit trail of additional monitoring to ensure the organization being inspected/assessed implements additional monitoring defined in SI-4 (19), CCI 2673 of individuals who have been identified by sources defined in SI-4 (19), CCI 2674 as posing an increased level of risk.'), ('002676','draft','2013-07-11','DISA FSO','policy','The organization defines additional monitoring to be implemented for privileged users.','SI-4(20).1','The organization being inspected/assessed defines and documents additional monitoring to be implemented for privileged users. DoD has determined the additional monitoring is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented additional monitoring to ensure the organization being inspected/assessed defines additional monitoring to be implemented for privileged users. DoD has determined the additional monitoring is not appropriate to define at the Enterprise level.'), ('002677','draft','2013-07-11','DISA FSO','policy','The organization implements organization-defined additional monitoring of privileged users.','SI-4(20).2','The organization being inspected/assessed implements additional monitoring defined in SI-4 (20), CCI 2676 of privileged users. The organization must maintain an audit trail of additional monitoring.','The organization conducting the inspection/assessment obtains and examines the audit trail of additional monitoring to ensure the organization being inspected/assessed implements additional monitoring defined in SI-4 (20), CCI 2676 of privileged users.'), ('002678','draft','2013-07-11','DISA FSO','policy','The organization defines additional monitoring to be implemented for individuals during an organization-defined probationary period.','SI-4(21).1','The organization being inspected/assessed defines and documents additional monitoring to be implemented for individuals during an organization-defined probationary period. DoD has determined the additional monitoring is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented additional monitoring to ensure the organization being inspected/assessed defines additional monitoring to be implemented for individuals during an organization-defined probationary period. DoD has determined the additional monitoring is not appropriate to define at the Enterprise level.'), ('002679','draft','2013-07-11','DISA FSO','policy','The organization defines the probationary period during which additional monitoring will be implemented for individuals.','SI-4(21).2','The organization defines and documents the probationary period during which additional monitoring will be implemented for individuals. DoD has determined the probationary period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented probationary period to ensure the organization being inspected/assessed defines the probationary period during which additional monitoring will be implemented for individuals. DoD has determined the probationary period is not appropriate to define at the Enterprise level.'), ('002680','draft','2013-07-11','DISA FSO','policy','The organization implements organization-defined additional monitoring of individuals during an organization-defined probationary period.','SI-4(21).3','The organization being inspected/assessed implements additional monitoring defined in SI-4 (21), CCI 2678 of individuals during the probationary period defined in SI-4 (21), CCI 2679. The organization must maintain an audit trail of additional monitoring.','The organization conducting the inspection/assessment obtains and examines the audit trail of additional monitoring to ensure the organization being inspected/assessed implements additional monitoring defined in SI-4 (21), CCI 2678 of individuals during the probationary period defined in SI-4 (21), CCI 2679.'), ('002681','draft','2013-07-11','DISA FSO','policy','The organization defines the authorization or approval process for network services.','SI-4(22).1','DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002682','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles to be alerted when unauthorized or unapproved network services are detected.','SI-4(22).2','DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002683','draft','2013-07-11','DISA FSO','policy','The information system detects network services that have not been authorized or approved by the organization-defined authorization or approval processes.','SI-4(22).3','The organization being inspected/assessed documents and implements a process to detect network services that have not been authorized or approved by at a minimum, the ISSO and ISSM. For network service detection mechanisms that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2683. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines the documented process, and examines the implemented detection mechanisms to ensure the organization being inspected/assessed implements a process to detect network services that have not been authorized or approved by at a minimum, the ISSO and ISSM.\nFor network service detection mechanisms that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2683.\nDoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002684','draft','2013-07-11','DISA FSO','technical','The information system audits and/or alerts organization-defined personnel when unauthorized network services are detected.','SI-4(22).4','The organization being inspected/assessed configures the information system to audit and/or alert at a minimum, the ISSO and ISSM when unauthorized network services are detected. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2684. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to audit and/or alert at a minimum, the ISSO and ISSM when unauthorized network services are detected. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2684. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002685','draft','2013-07-11','DISA FSO','policy','The organization defines the host-based monitoring mechanisms to be implemented at organization-defined information system components.','SI-4(23).1','DoD has defined the host-based monitoring mechanisms as HBSS.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the host-based monitoring mechanisms as HBSS.'), ('002686','draft','2013-07-11','DISA FSO','policy','The organization defines the information system components at which organization-defined host-based monitoring mechanisms are to be implemented.','SI-4(23).2','DoD has defined the information system components as all components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system components as all components.'), ('002687','draft','2013-07-11','DISA FSO','policy','The organization implements organization-defined host-based monitoring mechanisms at organization-defined information system components.','SI-4(23).3','The organization being inspected/assessed documents and implements HBSS at all components. DoD has defined the host-based monitoring mechanisms as HBSS. DoD has defined the information system components as all components.','The organization conducting the inspection/assessment obtains and examines documentation of the use of HBSS to ensure the organization being inspected/assessed implements HBSS at all components. The organization being inspected/assessed may be required to demonstrate use of HBSS. DoD has defined the host-based monitoring mechanisms as HBSS. DoD has defined the information system components as all components.'), ('002688','draft','2013-07-11','DISA FSO','technical','The information system discovers indicators of compromise.','SI-4(24).1','The organization being inspected/assessed configures the information system to discover indicators of compromise. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2688.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to discover indicators of compromise. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2688.'), ('002689','draft','2013-07-11','DISA FSO','technical','The information system collects indicators of compromise.','SI-4(24).2','The organization being inspected/assessed configures the information system to collect indicators of compromise. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2689.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to collect indicators of compromise. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2689.'), ('002690','draft','2013-07-11','DISA FSO','technical','The information system distributes indicators of compromise.','SI-4(24).3','The organization being inspected/assessed configures the information system to distribute indicators of compromise. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2690.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to distribute indicators of compromise. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2690.'), ('002691','draft','2013-07-11','DISA FSO','technical','The information system uses indicators of compromise.','SI-4(24).4','The organization being inspected/assessed configures the information system to use indicators of compromise to react to known indicators and prevent future exploitation of them. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2691.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to use indicators of compromise to react to known indicators and prevent future exploitation of them. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2691.'), ('002692','draft','2013-07-11','DISA FSO','policy','The organization defines the external organizations from which it receives information system security alerts, advisories, and directives.','SI-5.2','DoD has defined the external organizations as at a minimum, USCYBERCOM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external organizations as at a minimum, USCYBERCOM.'), ('002693','draft','2013-07-11','DISA FSO','policy','The organization defines the elements within the organization to whom the organization will disseminate security alerts, advisories, and directives.','SI-5.6','DoD has determined the elements are not applicable as elements are not selected as recipients of security alerts, advisories and directives.','DoD has determined the elements are not applicable as elements are not selected as recipients of security alerts, advisories and directives.'), ('002694','draft','2013-07-11','DISA FSO','policy','The organization defines the external organizations to which the organization will disseminate security alerts, advisories, and directives.','SI-5.7','DoD has defined the external organizations as CNDSP Tier 1 for vetting. The CNDSP Tier 1 will pass the information to the accredited Tier 2 CNDSPs. Tier 2 CNDSPs are responsible for ensuring all Tier 3 entities receive the information. Tier 3 organizations will ensure all local Op Centers/LAN shops receive information (i.e. Component IT System and Security Personnel) (e.g. ISSM, ISSOs, and system administrators).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external organizations as CNDSP Tier 1 for vetting. The CNDSP Tier 1 will pass the information to the accredited Tier 2 CNDSPs. Tier 2 CNDSPs are responsible for ensuring all Tier 3 entities receive the information. Tier 3 organizations will ensure all local Op Centers/LAN shops receive information (i.e. Component IT System and Security Personnel) (e.g. ISSM, ISSOs, and system administrators).'), ('002695','draft','2013-07-11','DISA FSO','policy','The organization defines the security functions that require verification of correct operation.','SI-6.1','The organization being inspected/assessed defines and documents the security functions that require verification of correct operation. DoD has determined the security functions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security functions to ensure the organization being inspected/assessed defines the security functions that require verification of correct operation. DoD has determined the security functions are not appropriate to define at the Enterprise level.'), ('002696','draft','2013-07-11','DISA FSO','technical','The information system verifies correct operation of organization-defined security functions.','SI-6.2','The organization being inspected/assessed configures the information system to verify correct operation of security functions defined in SI-6, CCI 2695. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2696.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to verify correct operation of security functions defined in SI-6, CCI 2695. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2696.'), ('002697','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency at which it will verify correct operation of organization-defined security functions.','SI-6.3','DoD has defined the frequency as 30 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as 30 days.'), ('002698','draft','2013-07-11','DISA FSO','policy','The organization defines the system transitional states when the information system will verify correct operation of organization-defined security functions.','SI-6.4','DoD has defined the system transitional states as upon system startup, and/or restart, upon command by user with appropriate privileges.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the system transitional states as upon system startup, and/or restart, upon command by user with appropriate privileges.'), ('002699','draft','2013-07-11','DISA FSO','technical','The information system performs verification of the correct operation of organization-defined security functions: when the system is in an organization-defined transitional state; upon command by a user with appropriate privileges; and/or on an organization-defined frequency.','SI-6.5','The organization being inspected/assessed configures the information system to perform verification of the correct operation of security functions defined in SI-6, CCI 1294: when the system is in a transitional state defined in SI-6, CCI 2698; upon command by a user with appropriate privileges; and/or 30 days. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2699. DoD has defined the frequency as 30 days.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to perform verification of the correct operation of security functions defined in SI-6, CCI 1294: when the system is in a transitional state defined in SI-6, CCI 2698; upon command by a user with appropriate privileges; and/or 30 days. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2699. DoD has defined the frequency as 30 days.'), ('002700','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles to be notified when security verification tests fail.','SI-6.7','DoD has defined the personnel or roles as the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSO and ISSM.'), ('002701','draft','2013-07-11','DISA FSO','policy','The organization defines alternative action(s) to be taken when the information system discovers anomalies in the operation of organization-defined security functions.','SI-6.8','DoD has defined the alternative action(s) as notifies system administrator.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the alternative action(s) as notifies system administrator.'), ('002702','draft','2013-07-11','DISA FSO','technical','The information system shuts the information system down, restarts the information system, and/or initiates organization-defined alternative action(s) when anomalies in the operation of the organization-defined security functions are discovered.','SI-6.9','The organization being inspected/assessed configures the information system to shut the information system down, restarts the information system, and/or notifies system administrator when anomalies in the operation of the security functions defined in SI-6, CCI 2695 are discovered. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2702. DoD has defined the alternative action(s) as notifies system administrator.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to shut the information system down, restarts the information system, and/or notifies system administrator when anomalies in the operation of the security functions defined in SI-6, CCI 2695 are discovered. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2702. DoD has defined the alternative action(s) as notifies system administrator.'), ('002703','draft','2013-07-11','DISA FSO','policy','The organization defines the software, firmware, and information which will be subjected to integrity verification tools to detect unauthorized changes.','SI-7.1','The organization being inspected/assessed defines and documents the software, firmware, and information which will be subjected to integrity verification tools to detect unauthorized changes. DoD has determined the software, firmware, and information are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented software, firmware, and information to ensure the organization being inspected/assessed defines the software, firmware, and information which will be subjected to integrity verification tools to detect unauthorized changes. DoD has determined the software, firmware, and information are not appropriate to define at the Enterprise level.'), ('002704','draft','2013-07-11','DISA FSO','policy','The organization employs integrity verification tools to detect unauthorized changes to organization-defined software, firmware, and information.','SI-7.2','The organization being inspected/assessed designs the information system to employ integrity verification tools to detect unauthorized changes to software, firmware, and information defined in SI-7, CCI 2703.','The organization conducting the inspection/assessment obtains and examines the hardware/software lists and any other documentation applicable to integrity verification tools to ensure the organization being inspected/assessed employs integrity verification tools to detect unauthorized changes to software, firmware, and information defined in SI-7, CCI 2703.'), ('002705','draft','2013-07-11','DISA FSO','policy','The organization defines the software on which integrity checks will be performed.','SI-7(1).1','The organization being inspected/assessed defines and documents the software on which integrity checks will be performed. DoD has determined the software is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented software to ensure the organization being inspected/assessed defines the firmware on which integrity checks will be performed. DoD has determined the software is not appropriate to define at the Enterprise level.'), ('002706','draft','2013-07-11','DISA FSO','policy','The organization defines the firmware on which integrity checks will be performed.','SI-7(1).2','The organization being inspected/assessed defines and documents the firmware on which integrity checks will be performed. DoD has determined the firmware is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented firmware to ensure the organization being inspected/assessed defines the firmware on which integrity checks will be performed. DoD has determined the firmware is not appropriate to define at the Enterprise level.'), ('002707','draft','2013-07-11','DISA FSO','policy','The organization defines the information on which integrity checks will be performed.','SI-7(1).3','The organization being inspected/assessed defines and documents the information on which integrity checks will be performed. DoD has determined the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information to ensure the organization being inspected/assessed defines the information on which integrity checks will be performed. DoD has determined the information is not appropriate to define at the Enterprise level.'), ('002708','draft','2013-07-11','DISA FSO','policy','The organization defines the transitional state or security-relevant events when the information system will perform integrity checks on software, firmware, and information.','SI-7(1).4','The organization being inspected/assessed defines and documents the transitional state or security-relevant events when the information system will perform integrity checks on software, firmware and information. DoD has determined the transitional state or security-relevant events are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented transitional state or security-relevant event to ensure the organization being inspected/assessed defines the transitional state or security-relevant events when the information system will perform integrity checks on software, firmware and information. DoD has determined the transitional state or security-relevant events are not appropriate to define at the Enterprise level.'), ('002709','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency at which it will perform integrity checks of software, firmware, and information.','SI-7(1).5','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('002710','draft','2013-07-11','DISA FSO','technical','The information system performs an integrity check of organization-defined software at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.','SI-7(1).6','The organization being inspected/assessed configures the information system to perform an integrity check of software defined in SI-7 (1), CCI 2705 at startup, at transitional states or security-relevant events defined in SI-7 (1), CCI 2708, or annually. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2710. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to perform an integrity check of software defined in SI-7 (1), CCI 2705 at startup, at transitional states or security-relevant events defined in SI-7 (1), CCI 2708, or annually. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2710. DoD has defined the frequency as annually.'), ('002711','draft','2013-07-11','DISA FSO','technical','The information system performs an integrity check of organization-defined firmware at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.','SI-7(1).7','The organization being inspected/assessed configures the information system to perform an integrity check of firmware defined in SI-7 (1), CCI 2706 at startup, at transitional states or security-relevant events defined in SI-7 (1), CCI 2708, or annually. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2711. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to perform an integrity check of firmware defined in SI-7 (1), CCI 2706 at startup, at transitional states or security-relevant events defined in SI-7 (1), CCI 2708, or annually. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2711. DoD has defined the frequency as annually.'), ('002712','draft','2013-07-11','DISA FSO','technical','The information system performs an integrity check of organization-defined information at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.','SI-7(1).8','The organization being inspected/assessed configures the information system to perform an integrity check of information defined in SI-7 (1), CCI 2707 at startup, at transitional states or security-relevant events defined in SI-7 (1), CCI 2708, or annually. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2712. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to perform an integrity check of information defined in SI-7 (1), CCI 2707 at startup, at transitional states or security-relevant events defined in SI-7 (1), CCI 2708, or annually. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2712. DoD has defined the frequency as annually.'), ('002713','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles to be notified when discrepancies are discovered during integrity verification.','SI-7(2).2','DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002714','draft','2013-07-11','DISA FSO','policy','The organization defines the security safeguards that are to be employed when integrity violations are discovered.','SI-7(5).1','The organization being inspected/assessed defines and documents the security safeguards that are to be employed when integrity violations are discovered. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards that are to be employed when integrity violations are discovered. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002715','draft','2013-07-11','DISA FSO','technical','The information system automatically shuts the information system down, restarts the information system, and/or implements organization-defined security safeguards when integrity violations are discovered.','SI-7(5).2','The organization being inspected/assessed configures the information system to automatically shut the information system down, restart the information system, and/or implement security safeguards defined in SI-7 (5), CCI 2714 when integrity violations are discovered. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2715.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to automatically shut the information system down, restart the information system, and/or implement security safeguards defined in SI-7 (5), CCI 2714 when integrity violations are discovered. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2715.'), ('002716','draft','2013-07-11','DISA FSO','technical','The information system implements cryptographic mechanisms to detect unauthorized changes to software.','SI-7(6).1','The organization being inspected/assessed configures the information system to implement FIPS-approved cryptographic mechanisms to detect unauthorized changes to software. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2716.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement FIPS-approved cryptographic mechanisms to detect unauthorized changes to software. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2716.'), ('002717','draft','2013-07-11','DISA FSO','technical','The information system implements cryptographic mechanisms to detect unauthorized changes to firmware.','SI-7(6).2','The organization being inspected/assessed configures the information system to implement FIPS-approved cryptographic mechanisms to detect unauthorized changes to firmware. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2717.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement FIPS-approved cryptographic mechanisms to detect unauthorized changes to firmware. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2717.'), ('002718','draft','2013-07-11','DISA FSO','technical','The information system implements cryptographic mechanisms to detect unauthorized changes to information.','SI-7(6).3','The organization being inspected/assessed configures the information system to implement FIPS-approved cryptographic mechanisms to detect unauthorized changes to information. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2718.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement FIPS-approved cryptographic mechanisms to detect unauthorized changes to information. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2718.'), ('002719','draft','2013-07-11','DISA FSO','policy','The organization defines the unauthorized security-relevant changes to the information system that are to be incorporated into the organizational incident response capability.','SI-7(7).1','The organization being inspected/assessed defines and documents the unauthorized security-relevant changes to the information system that are to be incorporated into the organizational incident response capability. DoD has determined the security-relevant changes to the information are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security-relevant changes to the information to ensure the organization being inspected/assessed defines the unauthorized security-relevant changes to the information system that are to be incorporated into the organizational incident response capability. DoD has determined the security-relevant changes to the information are not appropriate to define at the Enterprise level.'), ('002720','draft','2013-07-11','DISA FSO','policy','The organization incorporates the detection of unauthorized organization-defined security-relevant changes to the information system into the organizational incident response capability.','SI-7(7).2','The organization being inspected/assessed incorporates the detection of unauthorized security-relevant changes to the information system defined in SI-7 (7), CCI 2719 into the organizational incident response capability.','The organization conducting the inspection/assessment examines the organizational incident response capability to ensure the organization being inspected/assessed incorporates the detection of unauthorized security-relevant changes to the information system defined in SI-7 (7), CCI 2719.'), ('002721','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles that are to be alerted by the information system when it detects a potential integrity violation.','SI-7(8).1','DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002722','draft','2013-07-11','DISA FSO','policy','The organization defines other actions that can be taken when the information system detects a potential integrity violation.','SI-7(8).2','The organization being inspected/assessed defines and documents other actions that can be taken when the information system detects a potential integrity violation. DoD has determined the other actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented other actions to ensure the organization being inspected/assessed defines other actions that can be taken when the information system detects a potential integrity violation. DoD has determined the other actions are not appropriate to define at the Enterprise level.'), ('002723','draft','2013-07-11','DISA FSO','technical','The information system, upon detection of a potential integrity violation, provides the capability to audit the event.','SI-7(8).3','The organization being inspected/assessed configures the information system to provide the capability to audit the event upon detection of a potential integrity violation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2723.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability to audit the event upon detection of a potential integrity violation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2723.'), ('002724','draft','2013-07-11','DISA FSO','technical','The information system, upon detection of a potential integrity violation, initiates one or more of the following actions: generates an audit record; alerts the current user; alerts organization-defined personnel or roles; and/or organization-defined other actions.','SI-7(8).4','The organization being inspected/assessed configures the information system to initiate one or more of following actions: generates an audit record; alerts current user; alerts at a minimum, the ISSO and ISSM; and/or other actions defined in SI-7 (8), CCI 2722 upon detection of a potential integrity violation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2724. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to initiate one or more of following actions: generates an audit record; alerts current user; alerts at a minimum, the ISSO and ISSM; and/or other actions defined in SI-7 (8), CCI 2722 upon detection of a potential integrity violation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2724. DoD has defined the personnel or roles as at a minimum, the ISSO and ISSM.'), ('002725','draft','2013-07-11','DISA FSO','policy','The organization defines the devices which will have the integrity of the boot process verified.','SI-7(9).1','DoD has defined the devices as all devices capable of verification of the boot process.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the devices as all devices capable of verification of the boot process.'), ('002726','draft','2013-07-11','DISA FSO','technical','The information system verifies the integrity of the boot process of organization-defined devices.','SI-7(9).2','The organization being inspected/assessed configures the information system to verify the integrity of the boot process of all devices capable of verification of the boot process. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2726. DoD has defined the devices as all devices capable of verification of the boot process.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to verify the integrity of the boot process of all devices capable of verification of the boot process. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2726. DoD has defined the devices as all devices capable of verification of the boot process.'), ('002727','draft','2013-07-11','DISA FSO','policy','The organization defines the security safeguards to be implemented to protect the integrity of the boot firmware in organization-defined devices.','SI-7(10).1','The organization being inspected/assessed defines and documents the security safeguards to be implemented to protect the integrity of the boot firmware in organization-defined devices. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be implemented to protect the integrity of the boot firmware in organization-defined devices. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002728','draft','2013-07-11','DISA FSO','policy','The organization defines the devices on which organization-defined security safeguards will be implemented to protect the integrity of the boot firmware.','SI-7(10).2','The organization being inspected/assessed defines and documents the devices on which organization-defined security safeguards will be implemented to protect the integrity of the boot firmware. DoD has determined the devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented devices to ensure the organization being inspected/assessed defines the devices on which organization-defined security safeguards will be implemented to protect the integrity of the boot firmware. DoD has determined the devices are not appropriate to define at the Enterprise level.'), ('002729','draft','2013-07-11','DISA FSO','technical','The information system implements organization-defined security safeguards to protect the integrity of boot firmware in organization-defined devices.','SI-7(10).3','The organization being inspected/assessed configures the information system to implement security safeguards defined in SI-7 (10), CCI 2727 to protect the integrity of boot firmware in devices defined in SI-7 (10), CCI 2728. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2729.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement security safeguards defined in SI-7 (10), CCI 2727 to protect the integrity of boot firmware in devices defined in SI-7 (10), CCI 2728. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2729.'), ('002730','draft','2013-07-11','DISA FSO','policy','The organization defines the user-installed software that is to be executed in a confined physical or virtual machine environment with limited privileges.','SI-7(11).1','The organization being inspected/assessed defines and documents the user-installed software that is to be executed in a confined physical or virtual machine environment with limited privileges. DoD has determined the user-installed software is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented user-installed software to ensure the organization being inspected/assessed defines the user-installed software that is to be executed in a confined physical or virtual machine environment with limited privileges. DoD has determined the user-installed software is not appropriate to define at the Enterprise level.'), ('002731','draft','2013-07-11','DISA FSO','policy','The organization requires that organization-defined user-installed software execute in a confined physical or virtual machine environment with limited privileges.','SI-7(11).2','The organization being inspected/assessed requires that user-installed software defined in SI-7 (11), CCI 2730 execute in a confined physical or virtual machine environment with limited privileges.','The organization conducting the inspection/assessment examines the information system to ensure that software defined in SI-7 (11), CCI 2730 executes in a confined physical or virtual machine environment with limited privileges.'), ('002732','draft','2013-07-11','DISA FSO','policy','The organization defines the user-installed software that is to have its integrity verified prior to execution.','SI-7(12).1','DoD has defined the user-installed software as all user installed software (NOTE: the key is the term \"user installed.\").','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the user-installed software as all user installed software (NOTE: the key is the term \"user installed.\").'), ('002733','draft','2013-07-11','DISA FSO','policy','The organization requires that the integrity of organization-defined user-installed software be verified prior to execution.','SI-7(12).2','The organization being inspected/assessed requires that the integrity of all user installed software (NOTE: the key is the term \"user installed.\") be verified prior to execution. DoD has defined the user-installed software as all user installed software (NOTE: the key is the term \"user installed.\").','The organization conducting the inspection/assessment examines the information system to ensure that all user installed software (NOTE: the key is the term \"user installed.\") is verified prior to execution. DoD has defined the user-installed software as all user installed software (NOTE: the key is the term \"user installed.\").'), ('002734','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles which have the authority to explicitly approve binary or machine-executable code.','SI-7(13).1','DoD has defined has personnel or roles as the ISSO or ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined has personnel or roles as the ISSO or ISSM.'), ('002735','draft','2013-07-11','DISA FSO','policy','The organization allows execution of binary or machine-executable code obtained from sources with limited or no warranty and without the provision of source code only in confined physical or virtual machine environments.','SI-7(13).2','The organization being inspected/assessed allows execution of binary or machine-executable code obtained from sources without vendor support or with no warranty and without the provision of source code only in confined physical or virtual machine environments.','The organization conducting the inspection/assessment obtains and examines the software list and examines the information system to ensure the organization being inspected/assessed allows execution of binary or machine-executable code obtained from sources without vendor support or with no warranty and without the provision of source code only in confined physical or virtual machine environments.'), ('002736','draft','2013-07-11','DISA FSO','policy','The organization allows execution of binary or machine-executable code obtained from sources with limited or no warranty and without the provision of source code only with the explicit approval of organization-defined personnel or roles.','SI-7(13).3','The organization being inspected/assessed allows execution of binary or machine-executable code obtained from sources without vendor support or with no warranty and without the provision of source code only with the explicit approval of the ISSO or ISSM. DoD has defined has personnel or roles as the ISSO or ISSM.','The organization conducting the inspection/assessment obtains and examines the software list and examines the information system to ensure the organization being inspected/assessed allows execution of binary or machine-executable code obtained from sources without vendor support or with no warranty and without the provision of source code only with the explicit approval of the ISSO or ISSM. DoD has defined has personnel or roles as the ISSO or ISSM.'), ('002737','draft','2013-07-11','DISA FSO','policy','The organization prohibits the use of binary or machine-executable code from sources with limited or no warranty and without the provision of source code.','SI-7(14).1','The organization being inspected/assessed prohibits the use of binary or machine-executable code obtained from sources without vendor support or with no warranty and without the provision of source code.','The organization conducting the inspection/assessment obtains and examines the software list and examines the information system to ensure the organization being inspected/assessed prohibits the use of binary or machine-executable code obtained from sources without vendor support or with no warranty and without the provision of source code.'), ('002738','draft','2013-07-11','DISA FSO','policy','The organization provides exceptions to the source code requirement only for compelling mission/operational requirements and with the approval of the authorizing official.','SI-7(14).2','The organization being inspected/assessed documents and provides exceptions to the source code requirement only for compelling mission/operational requirements and with the approval of the authorizing official.','The organization conducting the inspection/assessment obtains and examines the documented exceptions to the source code requirement to ensure the organization being inspected/assessed provides justification and approval of the authorizing official for all exceptions to the source code requirement.'), ('002739','draft','2013-07-11','DISA FSO','policy','The organization defines the software or firmware components on which cryptographic mechanisms are to be implemented to support authentication prior to installation.','SI-7(15).1','DoD has defined the software or firmware components as all software and firmware from vendors/sources that provide cryptographic mechanisms to enable the validation of code authenticity and integrity.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the software or firmware components as all software and firmware from vendors/sources that provide cryptographic mechanisms to enable the validation of code authenticity and integrity.'), ('002740','draft','2013-07-11','DISA FSO','technical','The information system implements cryptographic mechanisms to authenticate organization-defined software or firmware components prior to installation.','SI-7(15).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to authenticate all software and firmware from vendors/sources that provide cryptographic mechanisms to enable the validation of code authenticity and integrity prior to installation. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2740. DoD has defined the software or firmware components as all software and firmware from vendors/sources that provide cryptographic mechanisms to enable the validation of code authenticity and integrity.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to authenticate all software and firmware from vendors/sources that provide cryptographic mechanisms to enable the validation of code authenticity and integrity prior to installation. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2740. DoD has defined the software or firmware components as all software and firmware from vendors/sources that provide cryptographic mechanisms to enable the validation of code authenticity and integrity.'), ('002741','draft','2013-07-11','DISA FSO','policy','The organization employs spam protection mechanisms at information system entry points to detect and take action on unsolicited messages.','SI-8.1','The organization being inspected/assessed implements spam protection mechanisms at information system entry points to detect and take action on unsolicited messages.','The organization conducting the inspection/assessment obtains and examines the hardware/software list to ensure the organization being inspected/assessed implements spam protection mechanisms at information system entry points to detect and take action on unsolicited messages. The organization may be required to demonstrate the use of the identified spam protection mechanisms.'), ('002742','draft','2013-07-11','DISA FSO','policy','The organization employs spam protection mechanisms at information system exit points to detect and take action on unsolicited messages.','SI-8.2','The organization being inspected/assessed implements spam protection mechanisms at information system exit points to detect and take action on unsolicited messages.','The organization conducting the inspection/assessment obtains and examines the hardware/software list to ensure the organization being inspected/assessed implements spam protection mechanisms at information system exit points to detect and take action on unsolicited messages. The organization may be required to demonstrate the use of the identified spam protection mechanisms.'), ('002743','draft','2013-07-11','DISA FSO','technical','The information system implements spam protection mechanisms with a learning capability to more effectively identify legitimate communications traffic.','SI-8(3).1','The organization being inspected/assessed configures the information system to implement spam protection mechanisms with a learning capability to more effectively identify legitimate communications traffic. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2743.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement spam protection mechanisms with a learning capability to more effectively identify legitimate communications traffic. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2743.'), ('002744','draft','2013-07-11','DISA FSO','policy','The organization defines the inputs on which the information system is to conduct validity checks.','SI-10.2','The organization being inspected/assessed defines and documents specific inputs which do not require validity checks. DoD has defined the information inputs as all inputs except those identified specifically by the organization.','The organization conducting the DoD has defined the information inputs as all inputs except those identified specifically by the organization.'), ('002745','draft','2013-07-11','DISA FSO','policy','The organization defines the inputs for which the information system provides a manual override capability for input validation.','SI-10(1).1','The organization being inspected/assessed defines and documents the inputs for which the information system provides a manual override capability for input validation. DoD has determined the inputs are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented inputs to ensure the organization being inspected/assessed defines the inputs for which the information system provides a manual override capability for input validation. DoD has determined the inputs are not appropriate to define at the Enterprise level.'), ('002746','draft','2013-07-11','DISA FSO','technical','The information system provides a manual override capability for input validation of organization-defined inputs.','SI-10(1).2','The organization being inspected/assessed configures the information system to provide a manual override capability for input validation of inputs defined in SI-10 (1), CCI 2745. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2746.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide a manual override capability for input validation of inputs defined in SI-10 (1), CCI 2745. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2746.'), ('002747','draft','2013-07-11','DISA FSO','policy','The organization defines the individuals who have the authorization to use the manual override capability for input validation.','SI-10(1).3','The organization being inspected/assessed defines and documents the authorized individuals who have the capability to use the manual override capability for input validation. DoD has determined the authorized individuals are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented authorized individuals to ensure the organization being inspected/assessed defines the authorized individuals who have the capability to use the manual override capability for input validation. DoD has determined the authorized individuals are not appropriate to define at the Enterprise level.'), ('002748','draft','2013-07-11','DISA FSO','technical','The information system restricts the use of the manual override capability to only organization-defined authorized individuals.','SI-10(1).4','The organization being inspected/assessed configures the information system to restrict the use of the manual override capability to only the authorized individuals defined in SI-10 (1), CCI 2747. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2748.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to restrict the use of the manual override capability to only the authorized individuals defined in SI-10 (1), CCI 2747. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2748.'), ('002749','draft','2013-07-11','DISA FSO','technical','The information system audits the use of the manual override capability.','SI-10(1).5','The organization being inspected/assessed configures the information system to audit the use of the manual override capability. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2749.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to audit the use of the manual override capability. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2749.'), ('002750','draft','2013-07-11','DISA FSO','policy','The organization defines the time period within which input validation errors are to be reviewed.','SI-10(2).1','The organization being inspected/assessed defines and documents the time period within which input validation errors are reviewed. DoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure the organization being inspected/assessed defines the time period within which input validation errors are reviewed. DoD has determined the time period is not appropriate to define at the Enterprise level.'), ('002751','draft','2013-07-11','DISA FSO','policy','The organization defines the time period within which input validation errors are to be resolved.','SI-10(2).2','The organization being inspected/assessed defines and documents the time period within which input validation errors are resolved. DoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure the organization being inspected/assessed defines the time period within which input validation errors are resolved. DoD has determined the time period is not appropriate to define at the Enterprise level.'), ('002752','draft','2013-07-11','DISA FSO','policy','The organization ensures that input validation errors are reviewed within an organization-defined time period.','SI-10(2).3','The organization being inspected/assessed documents and implements a process to review input validation errors within the time period defined in SI-10 (2), CCI 2750. The organization must maintain records of review.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of review to ensure the organization being inspected/assessed reviews input validation errors within the time period defined in SI-10 (2), CCI 2750.'), ('002753','draft','2013-07-11','DISA FSO','policy','The organization ensures that input validation errors are resolved within an organization-defined time period.','SI-10(2).4','The organization being inspected/assessed documents and implements a process to resolve input validation errors within the time period defined in SI-10 (2), CCI 2751. The organization must maintain records of resolution.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of resolution to ensure the organization being inspected/assessed resolves input validation errors within the time period defined in SI-10 (2), CCI 2751.'), ('002754','draft','2013-07-11','DISA FSO','policy','The information system behaves in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.','SI-10(3).1','The organization being inspected/assessed documents proper behavior that reflects organizational and system objectives for when invalid inputs are received. The organization being inspected/assessed configures the information system to behave in the documented manner when invalid inputs are received. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2754.','The organization conducting the inspection/assessment obtains and examines the documented behavior to ensure the organization being inspected/assessed documents proper behavior that reflects organizational and system objectives for when invalid inputs are received. The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to behave in the documented manner when invalid inputs are received. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2754.'), ('002755','draft','2013-07-11','DISA FSO','policy','The organization accounts for timing interactions among information system components in determining appropriate responses for invalid inputs.','SI-10(4).1','The organization being inspected/assessed designs the information system to account for timing interactions among information system components in determining appropriate responses for invalid inputs.','The organization conducting the inspection/assessment obtains and examines system design artifacts to ensure the organization being inspected/assessed accounts for timing interactions among information system components in determining appropriate responses for invalid inputs.'), ('002756','draft','2013-07-11','DISA FSO','policy','The organization defines the trusted sources to which the usage of information inputs will be restricted (e.g., whitelisting).','SI-10(5).1','The organization being inspected/assessed defines and documents the trusted sources to which the usage of information inputs will be restricted (e.g., whitelisting). DoD has determined the trusted sources are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented trusted sources to ensure the organization being inspected/assessed defines the trusted sources to which the usage of information inputs will be restricted (e.g., whitelisting). DoD has determined the trusted sources are not appropriate to define at the Enterprise level.'), ('002757','draft','2013-07-11','DISA FSO','policy','The organization defines the acceptable formats to which information inputs are restricted.','SI-10(5).2','The organization being inspected/assessed defines and documents the acceptable formats to which information inputs are restricted. DoD has determined the acceptable formats are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented acceptable formats to ensure the organization being inspected/assessed defines the acceptable formats to which information inputs are restricted. DoD has determined the acceptable formats are not appropriate to define at the Enterprise level.'), ('002758','draft','2013-07-11','DISA FSO','policy','The organization restricts the use of information inputs to organization-defined trusted sources and/or organization-defined formats.','SI-10(5).3','The organization being inspected/assessed designs the information system to restrict the use of information inputs to trusted sources defined in SI-10 (5), CCI 2756 and/or formats defined in SI-10 (5), CCI 2757.','The organization conducting the inspection/assessment obtains and examines system design artifacts to ensure the organization being inspected/assessed restricts the use of information inputs to trusted sources defined in SI-10 (5), CCI 2756 and/or formats defined in SI-10 (5), CCI 2757.'), ('002759','draft','2013-07-11','DISA FSO','policy','The organization defines the personnel or roles to whom error messages are to be revealed.','SI-11.3','DoD has defined the personnel or roles as the ISSO, ISSM, and SCA.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSO, ISSM, and SCA.'), ('002760','draft','2013-07-11','DISA FSO','policy','The organization determines mean time to failure (MTTF) for organization-defined information system components in specific environments of operation.','SI-13.1','The organization being inspected/assessed determines through testing or research and documents the mean time to failure (MTTF) for any component within a system requiring high availability in specific environments of operation. DoD has defined the system components as any component within a system requiring high availability.','The organization conducting the inspection/assessment obtains and examines documented mean time to failure (MTTF) to ensure the organization being inspected/assessed has determined the mean time to failure (MTTF) for any component within a system requiring high availability in specific environments of operation. DoD has defined the system components as any component within a system requiring high availability.'), ('002761','draft','2013-07-11','DISA FSO','policy','The organization defines the system components in specific environments of operation for which the mean time to failure (MTTF) is to be determined.','SI-13.2','DoD has defined the system components as any component within a system requiring high availability.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the system components as any component within a system requiring high availability.'), ('002762','draft','2013-07-11','DISA FSO','policy','The organization defines the mean time to failure (MTTF) substitution criteria to be employed as a means to determine the need to exchange active and standby components.','SI-13.4','The organization being inspected/assessed defines and documents the mean time to failure substitution criteria to be employed as a means to determine the need to exchange active and standby components. DoD has determined the mean time to failure is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented mean time to failure to ensure the organization being inspected/assessed defines the mean time to failure substitution criteria to be employed as a means to determine the need to exchange active and standby components. DoD has determined the mean time to failure is not appropriate to define at the Enterprise level.'), ('002763','draft','2013-07-11','DISA FSO','policy','The organization provides a means to exchange active and standby components in accordance with the organization-defined mean time to failure (MTTF) substitution criteria.','SI-13.5','The organization being inspected/assessed documents and implements a process to exchange active and standby components in accordance with the mean time to failure substitution criteria defined in SI-13, CCI 2762.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides a means to exchange active and standby components in accordance with the mean time to failure substitution criteria defined in SI-13, CCI 2762.'), ('002764','draft','2013-07-11','DISA FSO','policy','The organization defines non-persistent information system components and services to be implemented.','SI-14.1','The organization being inspected/assessed defines and documents non-persistent information system components and services to be implemented. DoD has determined the information system components and services are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components and services to ensure the organization being inspected/assessed defines non-persistent information system components and services to be implemented. DoD has determined the information system components and services are not appropriate to define at the Enterprise level.'), ('002765','draft','2013-07-11','DISA FSO','policy','The organization defines the frequency at which it will terminate organization-defined non-persistent information system components and services.','SI-14.2','The organization being inspected/assessed defines and documents the frequency at which it will terminate organization-defined non-persistent information system components and services. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency at which it will terminate organization-defined non-persistent information system components and services. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('002766','draft','2013-07-11','DISA FSO','policy','The organization implements organization-defined non-persistence information system components and services that are initiated in a known state.','SI-14.3','The organization being inspected/assessed designs the information system to implement non-persistence information system components and services defined in SI-14, CCI 2764 that are initiated in a known state.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed implements non-persistence information system components and services defined in SI-14, CCI 2764 that are initiated in a known state.'), ('002767','draft','2013-07-11','DISA FSO','policy','The organization implements organization-defined non-persistence information system components and services that are terminated upon end of session of use and/or periodically at an organization-defined frequency.','SI-14.4','The organization being inspected/assessed designs the information system to implement non-persistence information system components and services defined in SI-14, CCI 2764 that are terminated upon end of session of use and/or periodically at the frequency defined in SI-14, CCI 2765.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed implements non-persistence information system components and services defined in SI-14, CCI 2764 that are terminated upon end of session of use and/or periodically at the frequency defined in SI-14, CCI 2765.'), ('002768','draft','2013-07-11','DISA FSO','policy','The organization defines the trusted sources from which it obtains software and data employed during the refreshing of non-persistent information system components and services.','SI-14(1).1','The organization being inspected/assessed defines and documents the trusted sources from which it obtains software and data employed during the refreshing of non-persistent information system component and service. DoD has determined the trusted sources are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented trusted sources to ensure the organization being inspected/assessed defines the trusted sources from which it obtains software and data employed during the refreshing of non-persistent information system component and service. DoD has determined the trusted sources are not appropriate to define at the Enterprise level.'), ('002769','draft','2013-07-11','DISA FSO','policy','The organization ensures that software and data employed during non-persistent information system component and service refreshes are obtained from organization-defined trusted sources.','SI-14(1).2','The organization being inspected/assessed documents and implements a process to obtain software and data used during non-persistent information system component and service refreshes from trusted sources defined in SI-14 (1), CCI 2768.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that software and data used during non-persistent information system component and service refreshes from trusted sources defined in SI-14 (1), CCI 2768.'), ('002770','draft','2013-07-11','DISA FSO','policy','The organization defines the software programs and/or applications from which the information system is to validate the information output to ensure the information is consistent with expected content.','SI-15.1','The organization being inspected/assessed defines and documents the software programs and/or applications from which the information system is to validate the information output to ensure the information is consistent with expected content. DoD has determined the software programs and/or applications are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented software programs and/or applications to ensure the organization being inspected/assessed defines the software programs and/or applications from which the information system is to validate the information output to ensure the information is consistent with expected content. DoD has determined the software programs and/or applications are not appropriate to define at the Enterprise level.'), ('002771','draft','2013-07-11','DISA FSO','technical','The information system validates information output from organization-defined software programs and/or applications to ensure that the information is consistent with the expected content.','SI-15.2','The organization being inspected/assessed configures the information system to validate information output from software programs and/or applications defined in SI-15, CCI 2770 to ensure that the information is consistent with the expected content. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2771.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to validate information output from software programs and/or applications defined in SI-15, CCI 2770 to ensure that the information is consistent with the expected content. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2771.'), ('002772','deprecated','2013-07-11','DISA FSO','policy','The organization defines the security safeguards to be implemented to protect the information system^s memory from unauthorized code execution.',NULL,NULL,NULL), ('002773','draft','2013-07-11','DISA FSO','policy','The organization defines the fail-safe procedures to be implemented by the information system when organization-defined failure conditions occur.','SI-17.1','The organization being inspected/assessed defines and documents the fail-safe procedures to be implemented by the information system when organization-defined failure conditions occur. DoD has determined the fail-safe procedures are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented fail-safe procedures to ensure the organization being inspected/assessed defines the fail-safe procedures to be implemented by the information system when organization-defined failure conditions occur. DoD has determined the fail-safe procedures are not appropriate to define at the Enterprise level.'), ('002774','draft','2013-07-11','DISA FSO','policy','The organization defines the failure conditions which, when they occur, will result in the information system implementing organization-defined fail-safe procedures.','SI-17.2','The organization being inspected/assessed defines and documents the failure conditions which, when they occur, will result in the information system implementing organization-defined fail-safe procedures. DoD has determined the failure conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented failure conditions to ensure the organization being inspected/assessed defines the failure conditions which, when they occur, will result in the information system implementing organization-defined fail-safe procedures. DoD has determined the failure conditions are not appropriate to define at the Enterprise level.'), ('002775','draft','2013-07-11','DISA FSO','technical','The information system implements organization-defined fail-safe procedures when organization-defined failure conditions occur.','SI-17.3','The organization being inspected/assessed configures the information system to implement fail-safe procedures defined in SI-17, CCI 2773 when failure conditions defined in SI-17, CCI 2774 occur. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2775.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement fail-safe procedures defined in SI-17, CCI 2773 when failure conditions defined in SI-17, CCI 2774 occur. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2775.'), ('002776','draft','2013-07-12','DISA FSO','policy','The organization defines the personnel or roles to whom the incident response policy is disseminated.','IR-1.1','DoD has defined the roles as all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.'), ('002777','draft','2013-07-12','DISA FSO','policy','The organization defines the personnel or roles to whom the incident response procedures are disseminated.','IR-1.2','DoD has defined the roles as all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as all personnel identified as stakeholders in the incident response process, as well as the ISSM and ISSO.'), ('002778','draft','2013-07-12','DISA FSO','policy','The organization defines the time period in which information system users who assume an incident response role or responsibility receive incident response training.','IR-2.2','DoD has defined the time period as 30 working days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 30 working days.'), ('002779','draft','2013-07-12','DISA FSO','policy','The organization provides incident response training to information system users consistent with assigned roles and responsibilities when required by information system changes.','IR-2.5','The organization being inspected/assessed documents and implements a process to provide incident response training to information system users, other than general users, consistent with assigned roles and responsibilities when required by information system changes. For general users, DoD components are automatically compliant with the requirement based on DoDD 8570.01 requirements for IA awareness training. The organization must maintain a record of training.','The organization conducting the inspection/assessment obtains and examines the documented process as well as training records for a sampling of information system users to ensure the organization being inspected/assessed provides incident response training to information system users, other than general users, consistent with assigned roles and responsibilities when required by information system changes. For general users, DoD components are automatically compliant with the requirement based on DoDD 8570.01 requirements for IA awareness training. '), ('002780','draft','2013-07-12','DISA FSO','policy','The organization coordinates incident response testing with organizational elements responsible for related plans.','IR-3(2).1','The organization being inspected/assessed documents within their incident response testing plan, the necessary support from all responsible organizational elements for incident response testing.','The organization conducting the inspection/assessment obtains and examines the incident response testing plan to ensure the organization being inspected/assessed coordinates incident response testing with organizational elements responsible for related plans.'), ('002781','draft','2013-07-12','DISA FSO','policy','The organization defines the information system components for dynamic reconfiguration as part of the incident response capability.','IR-4(2).2','The organization being inspected/assessed defines and documents the information system components for dynamic reconfiguration as part of the incident response capability. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components for dynamic reconfiguration as part of the incident response capability.'), ('002782','draft','2013-07-12','DISA FSO','policy','The organization implements an incident handling capability for insider threats.','IR-4(6).1','The organization being inspected/assessed documents within their incident response plan and implements plans to respond to incidents related to insider threats.','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as a sampling of incident after action reports to ensure the organization being inspected/assessed implements incident handling capability for insider threats.'), ('002783','draft','2013-07-12','DISA FSO','policy','The organization coordinates an incident handling capability for insider threats across organization-defined components or elements of the organization.','IR-4(7).1','The organization being inspected/assessed documents within their incident response plan, the responsibilities of each element of the organization defined in IR-4 (7), CCI 2784.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed coordinates incident handling capability for insider threats across components or elements of the organization defined in IR-4 (7), CCI 2784.'), ('002784','draft','2013-07-12','DISA FSO','policy','The organization defines components or elements of the organization across which an incident handling capability for insider threats will be coordinated.','IR-4(7).2','The organization being inspected/assessed defines and documents components or elements of the organization in which incident handling capability for insider threats will be coordinated. DoD has determined the components or elements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented components or elements to ensure the organization being inspected/assessed defines components or elements of the organization in which incident handling capability for insider threats will be coordinated. DoD has determined the components or elements are not appropriate to define at the Enterprise level.'), ('002785','draft','2013-07-12','DISA FSO','policy','The organization coordinates with organization-defined external organizations to correlate and share organization-defined incident information to achieve a cross-organization perspective on incident awareness and more effective incident responses.','IR-4(8).1','The organization being inspected/assessed coordinates with external organizations defined in IR-4 (8), CCI 2786 to correlate and share incident information defined in IR-4 (8), CCI 2787 to achieve a cross-organization perspective on incident awareness and more effective incident responses.','The organization conducting the inspection/assessment obtains and examines reports, meeting minutes, or other evidence that the organization being inspected/assessed is coordinating with external organizations defined in IR-4 (8), CCI 2786 to correlate and share incident information defined in IR-4 (8), CCI 2787 to achieve a cross-organization perspective on incident awareness and more effective incident responses.'), ('002786','draft','2013-07-12','DISA FSO','policy','The organization defines external organizations with which to correlate and share organization-defined incident information.','IR-4(8).2','The organization being inspected/assessed defines and documents external organizations with whom they will correlate and share organization-defined incident information.\n\nDoD has determined the external organizations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented external organizations to ensure the organization being inspected/assessed defines external organizations to correlate and share organization-defined incident information.\n\nDoD has determined the external organizations are not appropriate to define at the Enterprise level.'), ('002787','draft','2013-07-12','DISA FSO','policy','The organization defines incident information to correlate and share with organization-defined external organizations.','IR-4(8).3','The organization being inspected/assessed defines and documents what incident information will be correlated and shared with each external organization defined in IR-4 (8), CCI 2786.\n\nDoD has determined the incident information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented incident information to ensure the organization being inspected/assessed defines what incident information will be correlated and shared with each external organization defined in IR-4 (8), CCI 2786.\n\nDoD has determined the incident information is not appropriate to define at the Enterprise level.'), ('002788','draft','2013-07-12','DISA FSO','policy','The organization employs organization-defined dynamic response capabilities to effectively respond to security incidents.','IR-4(9).1','The organization being inspected/assessed implements at a minimum, the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT) to effectively respond to security incidents. DoD has defined the dynamic response capabilities as at a minimum, the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT). ','The organization conducting the inspection/assessment obtains and examines incident response logs to ensure that they reflect the use of at a minimum, the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT). DoD has defined the dynamic response capabilities as at a minimum, the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT). '), ('002789','draft','2013-07-12','DISA FSO','policy','The organization defines dynamic response capabilities to effectively respond to security incidents.','IR-4(9).2','DoD has defined the dynamic response capabilities as at a minimum, the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the dynamic response capabilities as at a minimum, the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT).'), ('002790','draft','2013-07-12','DISA FSO','policy','The organization coordinates incident handling activities involving supply chain events with other organizations involved in the supply chain.','IR-4(10).1','The organization being inspected/assessed documents and implements a process to coordinate incident handling activities involving supply chain events with other organizations involved in the supply chain.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed coordinates incident handling activities involving supply chain events with other organizations involved in the supply chain.'), ('002791','draft','2013-07-12','DISA FSO','policy','The organization defines authorities to whom security incident information is reported.','IR-6.4','DoD has defined the authorities as the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the authorities as the appropriate CIRT/CERT (such as US-CERT, DoD CERT, IC CERT).'), ('002792','draft','2013-07-12','DISA FSO','policy','The organization defines personnel or roles to whom information system vulnerabilities associated with reported security incident information are reported.','IR-6(2).2','The organization being inspected/assessed defines and documents personnel or roles to whom information system vulnerabilities associated with reported security incident information are reported. The personnel shall be identified IAW CJCSM 6510.01B. DoD has determined the personnel are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel to ensure the organization being inspected/assessed defines personnel or roles to whom information system vulnerabilities associated with reported security incident information are reported IAW CJCSM 6510.01B.'), ('002793','draft','2013-07-12','DISA FSO','policy','The organization provides security incident information to other organizations involved in the supply chain for information systems or information system components related to the incident.','IR-6(3).1','The organization being inspected/assessed documents and implement a process to provide security incident information to other organizations involved in the supply chain for information systems or information system components related to the incident.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides security incident information to other organizations involved in the supply chain for information systems or information system components related to the incident.'), ('002794','draft','2013-07-12','DISA FSO','policy','The organization develops an incident response plan.','IR-8.1','The organization being inspected/assessed develops and documents an incident response plan.','The organization conducting the inspection/assessment obtains and examines the documented incident response plan to ensure the organization being inspected/assessed develops an incident response plan.'), ('002795','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan provides the organization with a roadmap for implementing its incident response capability.','IR-8.2','The organization being inspected/assessed defines and documents within their incident response plan, a roadmap for implementing its incident response capability.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed provides within their plan, a roadmap for implementing its incident response capability.'), ('002796','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan describes the structure and organization of the incident response capability.','IR-8.3','The organization being inspected/assessed defines and documents within their incident response plan, the structure and organization of the incident response capability.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed describes within their plan, the structure and organization of the incident response capability.'), ('002797','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan provides a high-level approach for how the incident response capability fits into the overall organization.','IR-8.4','The organization being inspected/assessed defines and documents within their incident response plan, a high-level approach for how the incident response capability fits into the overall organization.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed provides within their plan, a high-level approach for how the incident response capability fits into the overall organization.'), ('002798','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan meets the unique requirements of the organization, which relate to mission, size, structure, and functions.','IR-8.5','The organization being inspected/assessed will ensure their incident response plan meets the unique requirements of the organization, which relate to mission, size, structure, and functions.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure it meets the unique requirements of the organization being inspected/assessed, which relate to mission, size, structure, and functions.'), ('002799','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan defines reportable incidents.','IR-8.6','The organization being inspected/assessed defines and document within their incident response plan, reportable incidents IAW CJCSM 6510.01B Table B-A-2. ','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed defines reportable incidents IAW CJCSM 6510.01B Table B-A-2. '), ('002800','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan provides metrics for measuring the incident response capability within the organization.','IR-8.7','The organization being inspected/assessed defines and documents within their incident response plan, metrics for measuring the incident response capability within the organization IAW CJCSM 6510.01B, Enclosure A.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed defines metrics for measuring the incident response capability within the organization IAW CJCSM 6510.01B, Enclosure A.'), ('002801','draft','2013-07-12','DISA FSO','policy','The organization^s incident response plan defines the resources and management support needed to effectively maintain and mature an incident response capability.','IR-8.8','The organization being inspected/assessed defines and documents within their incident response plan, the resources and management support needed to effectively maintain and mature an incident response capability.','The organization conducting the inspection/assessment obtains and examines the incident response plan to ensure the organization being inspected/assessed defines within their plan, the resources and management support needed to effectively maintain and mature an incident response capability.'), ('002802','draft','2013-07-12','DISA FSO','policy','The organization defines personnel or roles to review and approve the incident response plan.','IR-8.9','DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.'), ('002803','draft','2013-07-12','DISA FSO','policy','The organization defines incident response personnel (identified by name and/or by role) and organizational elements to whom incident response plan changes will be communicated.','IR-8.17','DoD has defined the incident response personnel as all stakeholders identified in the incident response plan, not later than 30 days after the change is made.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the incident response personnel as all stakeholders identified in the incident response plan, not later than 30 days after the change is made.'), ('002804','draft','2013-07-12','DISA FSO','policy','The organization protects the incident response plan from unauthorized disclosure and modification.','IR-8.18','The organization being inspected/assessed protects the incident response plan from unauthorized disclosure and modification.','The organization conducting the inspection/assessment obtains and examines artifacts which identify how the incident response plan is protected to ensure the organization being inspected/assessed protects the incident response plan from unauthorized disclosure and modification.'), ('002805','draft','2013-07-12','DISA FSO','policy','The organization responds to information spills by identifying the specific information involved in the information system contamination.','IR-9.1','The organization being inspected/assessed documents within their incident response plan, a process to identify the specific information involved in the information system contamination. ','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as after action reports of incidents to ensure that specific information involved in the information system contamination is identified.'), ('002806','draft','2013-07-12','DISA FSO','policy','The organization responds to information spills by alerting organization-defined personnel or roles of the information spill using a method of communication not associated with the spill.','IR-9.2','The organization being inspected/assessed documents within their incident response plan, a process to alert at a minimum, the Originating Classification Authority (OCA), the information owner/originator, the ISSM, the activity security manager, and the responsible computer incident response center of the information spill using a method of communication not associated with the spill.\n\nDoD has defined the personnel or roles as at a minimum, the OCA, the information owner/originator, the ISSM, the activity security manager, and the responsible computer incident response center.','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as after action reports of incidents to ensure that at a minimum, the OCA, the information owner/originator, the ISSM, the activity security manager, and the responsible computer incident response center were alerted of the information spill using a method of communication not associated with the spill.\n\nDoD has defined the personnel or roles as at a minimum, the OCA, the information owner/originator, the ISSM, the activity security\nmanager, and the responsible computer incident response center.'), ('002807','draft','2013-07-12','DISA FSO','policy','The organization defines personnel or roles to be alerted of information spills using a method of communication not associated with the spill.','IR-9.3','DoD has defined the personnel or roles as at a minimum, the OCA, the information owner/originator, the ISSM, the activity security manager, and the responsible computer incident response center. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the OCA, the information owner/originator, the ISSM, the activity security manager, and the responsible computer incident response center. '), ('002808','draft','2013-07-12','DISA FSO','policy','The organization responds to information spills by isolating the contaminated information system or system component.','IR-9.4','The organization being inspected/assessed documents within their incident response plan, a process to isolate the contaminated information system or system component. ','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as after action reports of incidents to ensure that the organization being inspected/assessed isolates contaminated information system or system component.'), ('002809','draft','2013-07-12','DISA FSO','policy','The organization responds to information spills by eradicating the information from the contaminated information system or component.','IR-9.5','The organization being inspected/assessed documents within their incident response plan, a process to eradicate the information from the contaminated information system or component. ','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as after action reports of incidents to ensure that the organization being inspected/assessed eradicates the information from the contaminated information system or component.'), ('002810','draft','2013-07-12','DISA FSO','policy','The organization responds to information spills by identifying other information systems or system components that may have been subsequently contaminated.','IR-9.6','The organization being inspected/assessed documents within their incident response plan, a process to identify other information systems or system components that may have been subsequently contaminated. ','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as after action reports of incidents to ensure that the organization being inspected/assessed identifies other information systems or system components that may have been subsequently contaminated.'), ('002811','draft','2013-07-12','DISA FSO','policy','The organization responds to information spills by performing other organization-defined actions.','IR-9.7','The organization being inspected/assessed documents within their incident response plan, processes to perform actions defined in IR-9, CCI 2812. ','The organization conducting the inspection/assessment obtains and examines the incident response plan as well as after action reports of incidents to ensure that the organization being inspected/assessed performs actions defined in IR-9, CCI 2812.'), ('002812','draft','2013-07-12','DISA FSO','policy','The organization defines other actions required to respond to information spills.','IR-9.8','The organization being inspected/assessed\ndefines and documents additional actions to be taken in response to spillage incidents. The actions must include the following:\n1)consider the information system as classified at the same level as the spilled information until the appropriate remediation processes have been executed and verified;\n2) Include the investigative team members and questions identified in CNSS Instruction 1001 in investigation of the incident;\n3) Protect information regarding the incident from disclosure.\n\nDoD has determined the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented additional actions to ensure the organization being inspected/assessed defines other actions required to respond to information spills. DoD has determined the actions are not appropriate to define at the Enterprise level'), ('002813','draft','2013-07-12','DISA FSO','policy','The organization assigns organization-defined personnel or roles with responsibility for responding to information spills.','IR-9(1).1','The organization being inspected/assessed appoints personnel or roles defined in IR-9 (1), CCI 2815 as having the responsibility for responding to information spills. ','The organization conducting the inspection/assessment obtains and examines appointment letters to ensure the organization being inspected/assessed appoints personnel or roles defined in IR-9 (1), CCI 2815 as having the responsibility for responding to information spills. '), ('002814','deprecated','2013-07-12','DISA FSO','policy','The organization assigns organization-defined personnel or roles with responsibility for responding to information spills.',NULL,NULL,NULL), ('002815','draft','2013-07-12','DISA FSO','policy','The organization defines personnel or roles to whom responsibility for responding to information spills will be assigned.','IR-9(1).2','The organization being inspected/assessed defines and documents personnel or roles to whom responsibility for responding to information spills will be assigned. The personnel must include the ISSO and ISSM. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines personnel or roles to whom responsibility for responding to information spills will be assigned, which must include the ISSO and ISSM. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002816','draft','2013-07-12','DISA FSO','policy','The organization provides information spillage response training according to an organization-defined frequency.','IR-9(2).1','The organization being inspected/assessed documents and implements a process to provide information spillage response training annually. The organization must maintain a record of training. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the training records for a sampling of incident response personnel to ensure the organization being inspected/assessed provides information spillage response training annually. DoD has defined the frequency as annually.'), ('002817','draft','2013-07-12','DISA FSO','policy','The organization defines the frequency with which to provide information spillage response training.','IR-9(2).2','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('002818','draft','2013-07-12','DISA FSO','policy','The organization implements organization-defined procedures to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.','IR-9(3).1','The organization being inspected/assessed implements procedures defined in IR-9 (3), CCI 2819 to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.','The organization conducting the inspection/assessment obtains and examines the documented procedures defined in IR-9 (3), CCI 2819 as well as after action reports of incidents to ensure the organization being inspected/assessed implements procedures defined in IR-9 (3), CCI 2819 to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.'), ('002819','draft','2013-07-12','DISA FSO','policy','The organization defines procedures to implement to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.','IR-9(3).2','The organization being inspected/assessed defines and documents procedures to implement to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions. DoD has determined the procedures are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed defines procedures to implement to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions. DoD has determined the procedures are not appropriate to define at the Enterprise level.'), ('002820','draft','2013-07-12','DISA FSO','policy','The organization employs organization-defined security safeguards for personnel exposed to information not within assigned access authorizations.','IR-9(4).1','The organization being inspected/assessed documents and implements a process to employ security safeguards defined in IR-9 (4), CCI 2821 for personnel exposed to information not within assigned access authorizations. ','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs security safeguards defined in IR-9 (4), CCI 2821 for personnel exposed to information not within assigned access authorizations. '), ('002821','draft','2013-07-12','DISA FSO','policy','The organization defines security safeguards to employ for personnel exposed to information not within assigned access authorizations.','IR-9(4).2','The organization being inspected/assessed defines and documents security safeguards to employ for personnel exposed to information not within assigned access authorizations. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines security safeguards to employ for personnel exposed to information not within assigned access authorizations. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002822','draft','2013-07-12','DISA FSO','policy','The organization establishes an integrated team of forensic/malicious code analysts, tool developers, and real-time operations personnel.','IR-10.1','The organization being inspected/assessed establishes an integrated team of forensic/malicious code analysts, tool developers, and real-time operations personnel. The organization appoints team members and defines and documents roles and responsibilities for each member.','The organization conducting the inspection/assessment obtains and examines appointments to the integrated team as well as the documented roles and responsibilities to ensure the organization being inspected/assessed establishes an integrated team of forensic/malicious code analysts, tool developers, and real-time operations personnel.'), ('002823','draft','2013-07-12','DISA FSO','policy','The organization defines the security safeguards to be implemented to protect the information system^s memory from unauthorized code execution.','SI-16.1','The organization being inspected/assessed defines and documents the security safeguards to be implemented to protect the information system\'s memory from unauthorized code execution. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be implemented to protect the information system\'s memory from unauthorized code execution. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002824','draft','2013-07-12','DISA FSO','technical','The information system implements organization-defined security safeguards to protect its memory from unauthorized code execution.','SI-16.2','The organization being inspected/assessed configures the information system to implement security safeguards defined in SI-16, CCI 2823 to protect its memory from unauthorized code execution. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2824.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement security safeguards defined in SI-16, CCI 2823 to protect its memory from unauthorized code execution. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2824.'), ('002825','draft','2013-07-20','DISA FSO','policy','The organization defines personnel or roles to whom the contingency planning policy is to be disseminated.','CP-1.3','DoD has defined the personnel or roles as all stakeholders identified in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all stakeholders identified in the contingency plan.'), ('002826','draft','2013-07-20','DISA FSO','policy','The organization defines personnel or roles to whom the contingency planning procedures are disseminated.','CP-1.6','DoD has defined the personnel or roles as all stakeholders identified in the contingency plan.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all stakeholders identified in the contingency plan.'), ('002827','draft','2013-07-20','DISA FSO','policy','The organization coordinates its contingency plan with the contingency plans of external service providers to ensure that contingency requirements can be satisfied.','CP-2(7).1','The organization being inspected/assessed implements service level agreements and/or memorandums of agreement with external service providers necessary for the conduct of contingency plans to ensure that contingency requirements can be satisfied.','The organization conducting the inspection/assessment obtains and examines service level agreements and/or memorandums of agreement with external service providers to ensure the organization being inspected/assessed coordinates with those providers.'), ('002828','draft','2013-07-20','DISA FSO','policy','The organization identifies critical information system assets supporting essential missions.','CP-2(8).1','The organization being inspected/assessed identifies and documents critical information system assets supporting essential missions.','The organization conducting the inspection/assessment obtains and examines the documented list of critical information system assets supporting essential missions to ensure the organization being inspected/assessed identifies those assets.'), ('002829','draft','2013-07-20','DISA FSO','policy','The organization identifies critical information system assets supporting essential business functions.','CP-2(8).2','The organization being inspected/assessed identifies and documents critical information system assets supporting essential business functions.','The organization conducting the inspection/assessment obtains and examines the documented list of critical information system assets supporting essential business functions to ensure the organization being inspected/assessed identifies those assets.'), ('002830','draft','2013-07-20','DISA FSO','policy','The organization defines the personnel or roles who review and approve the contingency plan for the information system.','CP-2.16','DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSM and ISSO.'), ('002831','draft','2013-07-20','DISA FSO','policy','The organization defines a list of key contingency personnel (identified by name and/or by role) and organizational elements to whom contingency plan changes are to be communicated.','CP-2.27','DoD has defined the list as all stakeholders identified in the contingency plan','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the list as all stakeholders identified in the contingency plan'), ('002832','draft','2013-07-20','DISA FSO','policy','The organization protects the contingency plan from unauthorized disclosure and modification.','CP-2.28','The organization being inspected/assessed documents and implements a process to protect the contingency plan from unauthorized disclosure and modification.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed protects the contingency plan from unauthorized disclosure and modification.'), ('002833','draft','2013-07-20','DISA FSO','policy','The organization defines the time period that contingency training is to be provided to information system users consistent with assigned roles and responsibilities within assuming a contingency role or responsibility.','CP-3.2','DoD has defined the time period as at a maximum, 10 working days. ','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as at a maximum, 10 working days. '), ('002834','draft','2013-07-20','DISA FSO','policy','The organization provides contingency training to information system users consistent with assigned roles and responsibilities when required by information system changes.','CP-3.3','The organization being inspected/assessed will update contingency training materials when required by information system changes and provide that training to personnel with contingency roles and responsibilities IAW CP-2, CCI 449. The organization will maintain documentation of the training activity dates, location, and personnel for audit trail purposes and future reference (e.g., scheduling refresher training, etc.).','The organization conducting the inspection/assessment obtains and examines training materials and documentation of training activities to determine whether the materials are accurate in consideration of the state of the information system and content of the contingency plan. The organization ensures that training is provided to users consistent with assigned roles and responsibilities.'), ('002835','draft','2013-07-20','DISA FSO','policy','The organization tests the contingency plan at the alternate processing site to evaluate the capabilities of the alternate processing site to support contingency operations.','CP-4(2).2','The organization being inspected/assessed will perform contingency plan testing at the alternate processing site to evaluate the capabilities of the alternate processing site to support contingency operations. The organization must maintain a record of test results.','The organization conducting the inspection/assessment obtains and examines the test results to ensure the organization being inspected/assessed tests the contingency plan at the alternate processing site to evaluate the capabilities of the alternate processing site to support contingency operations.'), ('002836','draft','2013-07-20','DISA FSO','policy','The organization ensures that the alternate storage site provides information security safeguards equivalent to that of the primary site.','CP-6.2','The organization being inspected/assessed documents the information security safeguards that are in place at both the primary and alternate sites and evidence that the alternate site was approved based on an assessment that security is equivalent at the alternate site.','The organization conducting the inspection/assessment obtains and examines the documentation of the primary/alternate site information security safeguards that are in place as well as evidence that the alternate site was approved based on an assessment that security is equivalent at the alternate site.'), ('002837','draft','2013-07-20','DISA FSO','policy','The organization plans for circumstances that preclude returning to the primary processing site.','CP-7(6).1','The organization being inspected/assessed documents a process to be followed in the event of circumstances that preclude returning to the primary processing site.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed plans for circumstances that preclude returning to the primary processing site.'), ('002838','draft','2013-07-20','DISA FSO','policy','The organization prepares for circumstances that preclude returning to the primary processing site.','CP-7(6).2','The organization being inspected/assessed makes the resources available necessary to implement the plan documented IAW CP-7 (6), CCI 2837.','The organization conducting the inspection/assessment obtains and examines system resource lists or agreements with external support providers to ensure the organization being inspected/assessed prepares for circumstances that preclude returning to the primary processing site.'), ('002839','draft','2013-07-20','DISA FSO','policy','The organization defines information system operations that are permitted to transfer and resume at an alternate processing site for essential missions/business functions when the primary processing capabilities are unavailable.','CP-7.4','The organization being inspected/assessed defines and documents information system operations that are permitted to transfer and resume at an alternate processing sites for essential missions/business functions when the primary processing capabilities are unavailable. DoD has determined the information system operations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system operations to ensure the organization being inspected/assessed defines information system operations that are permitted to transfer and resume at an alternate processing sites for essential missions/business functions when the primary processing capabilities are unavailable. DoD has determined the information system operations are not appropriate to define at the Enterprise level.'), ('002840','draft','2013-07-20','DISA FSO','policy','The organization defines the information system operations to be resumed for essential missions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-8.5','The organization being inspected/assessed defines and documents the information system operations to be resumed for essential missions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites. DoD has determined the information system operations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system operations to ensure the organization being inspected/assessed defines the information system operations to be resumed for essential missions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites. DoD has determined the information system operations are not appropriate to define at the Enterprise level.'), ('002841','draft','2013-07-20','DISA FSO','policy','The organization defines the information system operations to be resumed for essential business functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-8.6','The organization being inspected/assessed defines and documents the information system operations to be resumed for essential business functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites. DoD has determined the information system operations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system operations to ensure the organization being inspected/assessed defines the information system operations to be resumed for essential business functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites. DoD has determined the information system operations are not appropriate to define at the Enterprise level.'), ('002842','draft','2013-07-20','DISA FSO','policy','The organization reviews provider contingency plans to ensure that the plans meet organizational contingency requirements.','CP-8(4).3','The organization being inspected/assessed obtains and examines provider contingency plans to ensure the plans meet organizational contingency requirements. The organization must maintain an audit trail of reviews.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews to ensure the organization being inspected/assessed reviews provider contingency plans to ensure that the plans meet organizational contingency requirements.'), ('002843','draft','2013-07-20','DISA FSO','policy','The organization defines the frequency with which to obtain evidence of contingency testing by providers.','CP-8(4).4','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually.'), ('002844','draft','2013-07-20','DISA FSO','policy','The organization defines the frequency with which to obtain evidence of contingency training by providers.','CP-8(4).5','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at least annually.'), ('002845','draft','2013-07-20','DISA FSO','policy','The organization obtains evidence of contingency testing by providers in accordance with organization-defined frequency.','CP-8(4).6','The organization being inspected/assessed obtains and maintains evidence of contingency testing by providers to ensure that the training is tested at least annually. DoD has defined the frequency as at least annually.','The organization conducting the inspection/assessment obtains and examines the evidence of contingency testing to ensure that the organization being inspected/assessed obtains evidence that contingency testing is conducted by providers at least annually. DoD has defined the frequency as at least annually.'), ('002846','draft','2013-07-20','DISA FSO','policy','The organization obtains evidence of contingency training by providers in accordance with organization-defined frequency.','CP-8(4).7','The organization being inspected/assessed obtains and maintains evidence of contingency training by providers to ensure that the training is provided at least annually. DoD has defined the frequency as at least annually.','The organization conducting the inspection/assessment obtains and examines the evidence of contingency training to ensure that the organization being inspected/assessed obtains evidence that contingency training is conducted by providers at least annually. DoD has defined the frequency as at least annually.'), ('002847','draft','2013-07-20','DISA FSO','policy','The organization defines the frequency with which to test alternate telecommunication services.','CP-8(5).1','DoD has defined the frequency as at least annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level DoD has defined the frequency as at least annually.'), ('002848','draft','2013-07-20','DISA FSO','policy','The organization tests alternate telecommunication services per organization-defined frequency.','CP-8(5).2','The organization being inspected/assessed documents and implements a process to test alternate telecommunication services at least annually. The organization must maintain a record of tests. DoD has defined the frequency as at least annually.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of tests to ensure the organization being inspected/assessed tests alternate telecommunication services at least annually. DoD has defined the frequency as at least annually.'), ('002849','draft','2013-07-20','DISA FSO','policy','The organization defines critical information system software and other security-related information, of which backup copies must be stored in a separate facility or in a fire-rated container.','CP-9(3).1','The organization being inspected/assessed defines and documents critical information system software and other security-related information which backup copies must be stored in a separate facility or in a fire-rated container. DoD has determined the critical information system software and other security-related information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented critical information system software and other security-related information to ensure the organization being inspected/assessed defines critical information system software and other security-related information which backup copies must be stored in a separate facility or in a fire-rated container. DoD has determined the critical information system software and other security-related information is not appropriate to define at the Enterprise level.'), ('002850','draft','2013-07-20','DISA FSO','policy','The organization stores backup copies of organization-defined critical information system software and other security-related information in a separate facility or in a fire-rated container that is not collocated with the operational system.','CP-9(3).2','The organization being inspected/assessed stores backup copies of critical information system software and other security-related information defined in CP-9 (3), CCI 2849 in a separate facility or in a fire-rated container that is not collocated with the operational system. The organization must maintain a record of where software is stored.','The organization conducting the inspection/assessment obtains and examines the record of where software is stored to ensure the organization being inspected/assessed stores backup copies of critical information system software and other security-related information defined in CP-9 (3), CCI 2849 in a separate facility or in a fire-rated container that is not collocated with the operational system.'), ('002851','draft','2013-07-20','DISA FSO','policy','The organization defines the backup information that requires dual authorization for deletion or destruction.','CP-9(7).1','The organization being inspected/assessed defines and documents the backup information that requires dual authorization for deletion or destruction. DoD has determined the backup information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented backup information to ensure the organization being inspected/assessed defines the backup information that requires dual authorization for deletion or destruction. DoD has determined the backup information is not appropriate to define at the Enterprise level.'), ('002852','draft','2013-07-20','DISA FSO','policy','The organization enforces dual authorization for the deletion or destruction of organization-defined backup information.','CP-9(7).2','The organization being inspected/assessed documents and implements a process for dual authorization for the deletion or destruction of backup information defined in CP-9 (7), CCI 2851. The organization must maintain a record of deletion or destruction of information defined in CP-9 (7), CCI 2851.','The organization conducting the inspection/assessment obtains and examines the documented process and record of deletion and destruction to ensure the organization being inspected/assessed enforces dual authorization for the deletion or destruction of backup information defined in CP-9 (7), CCI 2851.'), ('002853','draft','2013-07-20','DISA FSO','technical','The information system provides the capability to employ organization-defined alternative communications protocols in support of maintaining continuity of operations.','CP-11.1','The organization being inspected/assessed configures the information system to provide the capability to employ alternative communications protocols defined in CP-11, CCI 2854 in support of maintaining continuity of operations. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2853.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to provide the capability to employ alternative communications protocols defined in CP-11, CCI 2854 in support of maintaining continuity of operations. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2853.'), ('002854','draft','2013-07-20','DISA FSO','policy','The organization defines the alternative communications protocols the information system must be capable of providing in support of maintaining continuity of operations.','CP-11.2','The organization being inspected/assessed defines and documents the alternative communications protocols the information systems must be capable of providing in support of maintaining continuity of operations. DoD has determined the alternative communications protocols are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented alternative communications protocols to ensure the organization being inspected/assessed defines the alternative communications protocols the information systems must be capable of providing in support of maintaining continuity of operations. DoD has determined the alternative communications protocols are not appropriate to define at the Enterprise level.'), ('002855','draft','2013-07-20','DISA FSO','technical','The information system, when organization-defined conditions are detected, enters a safe mode of operation with organization-defined restrictions of safe mode of operation.','CP-12.1','The organization being inspected/assessed configures the information system to enter a safe mode of operation with restrictions of safe mode of operation defined in CP-12, CCI 2857 when conditions defined in CP-12, CCI 2856 are detected. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2855.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enter a safe mode of operation with restrictions of safe mode of operation defined in CP-12, CCI 2857 when conditions defined in CP-12, CCI 2856 are detected. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2855.'), ('002856','draft','2013-07-20','DISA FSO','policy','The organization defines the conditions that, when detected, the information system enters a safe mode of operation with organization-defined restrictions of safe mode of operation.','CP-12.2','The organization being inspected/assessed defines and documents the conditions, that when detected, the information system enters a safe mode of operation with organization-defined restrictions of safe mode of operation. DoD has determined the conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented conditions to ensure the organization being inspected/assessed defines the conditions, that when detected, the information system enters a safe mode of operation with organization-defined restrictions of safe mode of operation. DoD has determined the conditions are not appropriate to define at the Enterprise level.'), ('002857','draft','2013-07-20','DISA FSO','policy','The organization defines the restrictions of the safe mode of operation that the information system will enter when organization-defined conditions are detected.','CP-12.3','The organization being inspected/assessed defines and documents the restrictions of safe mode of operation that the information system will enter when organization-defined conditions are detected. DoD has determined the restrictions on safe mode of operation are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented restrictions to ensure the organization being inspected/assessed defines the restrictions of safe mode of operation that the information system will enter when organization-defined conditions are detected. DoD has determined the restrictions on safe mode of operation are not appropriate to define at the Enterprise level.'), ('002858','draft','2013-07-20','DISA FSO','policy','The organization employs organization-defined alternative or supplemental security mechanisms for satisfying organization-defined security functions when the primary means of implementing the security function is unavailable or compromised.','CP-13.1','The organization being inspected/assessed documents and implement a process to employ alternative or supplemental security mechanisms defined in CP-13, CCI 2859 for satisfying security functions defined in CP-13, CCI 2860 when the primary means of implementing the security function is unavailable or compromised.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs alternative or supplemental security mechanisms defined in CP-13, CCI 2859 for satisfying security functions defined in CP-13, CCI 2860 when the primary means of implementing the security function is unavailable or compromised.'), ('002859','draft','2013-07-20','DISA FSO','policy','The organization defines the alternative or supplemental security mechanisms that will be employed for satisfying organization-defined security functions when the primary means of implementing the security function is unavailable or compromised.','CP-13.2','The organization being inspected/assessed defines and documents the alternative or supplemental security mechanisms that will be employed for satisfying organization-defined security functions when the primary means of implementing the security function is unavailable or compromised. DoD has determined the alternative or supplemental security mechanisms are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented alternative or supplemental security mechanisms to ensure the organization being inspected/assessed defines the alternative or supplemental security mechanisms that will be employed for satisfying organization-defined security functions when the primary means of implementing the security function is unavailable or compromised. DoD has determined the alternative or supplemental security mechanisms are not appropriate to define at the Enterprise level.'), ('002860','draft','2013-07-20','DISA FSO','policy','The organization defines the security functions that must be satisfied when the primary means of implementing the security function is unavailable or compromised.','CP-13.3','The organization being inspected/assessed defines and documents the security functions that must be satisfied when the primary means of implementing the security function is unavailable or compromised. DoD has determined the security functions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security functions to ensure the organization being inspected/assessed defines the security functions that must be satisfied when the primary means of implementing the security function is unavailable or compromised. DoD has determined the security functions are not appropriate to define at the Enterprise level.'), ('002861','draft','2013-07-22','DISA FSO','policy','The organization defines the personnel or roles to whom a system maintenance policy is disseminated.','MA-1.1','DoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.'), ('002862','draft','2013-07-22','DISA FSO','policy','The organization defines the personnel or roles to whom system maintenance procedures are to be disseminated.','MA-1.2','DoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the SCA, ISSO, and maintenance personnel as needed by role in maintaining the system.'), ('002863','draft','2013-07-22','DISA FSO','policy','The organization employs automated mechanisms to schedule, conduct, and document repairs.','MA-2(2).1','The organization being inspected/assessed documents and implements automated mechanisms to schedule, conduct, and document repairs.','The organization conducting the inspection/assessment obtains and examines the documentation of automated mechanisms to ensure the organization being inspected/assessed employs automated mechanisms to schedule, conduct, and document repairs.'), ('002864','draft','2013-07-22','DISA FSO','policy','The organization produces up-to date, accurate, and complete records of all maintenance requested, scheduled, in process, and completed.','MA-2(2).3','The organization being inspected/assessed produces and maintains up-to date, accurate, and complete records of all maintenance requested, scheduled, in process, and completed.','The organization conducting the inspection/assessment obtains and examines the records of maintenance to ensure the organization being inspected/assessed produces up-to date, accurate, and complete records of all maintenance requested, scheduled, in process, and completed.'), ('002865','draft','2013-07-22','DISA FSO','policy','The organization produces up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed.','MA-2(2).4','The organization being inspected/assessed produces and maintains up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed.','The organization conducting the inspection/assessment obtains and examines the records of repair actions to ensure the organization being inspected/assessed produces up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed.'), ('002866','draft','2013-07-22','DISA FSO','policy','The organization schedules maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.1','The organization being inspected/assessed schedules maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements. The organization must maintain a record of maintenance.','The organization conducting the inspection/assessment obtains and examines the record of maintenance to ensure the organization being inspected/assessed schedules maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002867','draft','2013-07-22','DISA FSO','policy','The organization performs maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.2','The organization being inspected/assessed implements a process to perform maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements. The organization must maintain a record of maintenance procedures followed.','The organization conducting the inspection/assessment obtains and examines the record of maintenance procedures followed to ensure the organization being inspected/assessed performs maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002868','draft','2013-07-22','DISA FSO','policy','The organization documents maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.3','The organization being inspected/assessed documents maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','The organization conducting the inspection/assessment obtains and examines documentation of maintenance to ensure the organization being inspected/assessed documents maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002869','draft','2013-07-22','DISA FSO','policy','The organization reviews records of maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.4','The organization being inspected/assessed documents and implements a process to review records of maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews records of maintenance on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002870','draft','2013-07-22','DISA FSO','policy','The organization schedules repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.5','The organization being inspected/assessed schedules repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements. The organization must maintain a record of repairs.','The organization conducting the inspection/assessment obtains and examines the record of repairs to ensure the organization being inspected/assessed schedules repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002871','draft','2013-07-22','DISA FSO','policy','The organization performs repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.6','The organization being inspected/assessed implements a process to perform repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements. The organization must maintain a record of repair procedures followed.','The organization conducting the inspection/assessment obtains and examines the record of repair procedures followed to ensure the organization being inspected/assessed performs repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002872','draft','2013-07-22','DISA FSO','policy','The organization documents repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.7','The organization being inspected/assessed documents repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','The organization conducting the inspection/assessment obtains and examines documentation of repairs to ensure the organization being inspected/assessed documents repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002873','draft','2013-07-22','DISA FSO','policy','The organization reviews records of repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-2.8','The organization being inspected/assessed documents and implements a process to review records of repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews records of repairs on information system components in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002874','draft','2013-07-22','DISA FSO','policy','The organization defines the personnel or roles who can explicitly approve the removal of the information system or system components from organizational facilities for off-site maintenance or repairs.','MA-2.11','The organization being inspected/assessed defines and documents the personnel or roles who can explicitly approve the removal of the information system or system components from organizational facilities for off-site maintenance or repairs. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles who can explicitly approve the removal of the information system or system components from organizational facilities for off-site maintenance or repairs. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002875','draft','2013-07-22','DISA FSO','policy','The organization includes organization-defined maintenance-related information in organizational maintenance records.','MA-2.14','The organization being inspected/assessed includes maintenance-related information defined in MA-2, CCI 2876 in organizational maintenance records.','The organization conducting the inspection/assessment obtains and examines maintenance records to ensure they include maintenance-related information defined in MA-2, CCI 2876.'), ('002876','draft','2013-07-22','DISA FSO','policy','The organization defines the maintenance-related information to include in organizational maintenance records.','MA-2.15','The organization being inspected/assessed defines and documents the maintenance-related information to include in organizational maintenance records. DoD has determined the maintenance-related information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented maintenance-related information to ensure the organization being inspected/assessed defines the maintenance-related information to include in organizational maintenance records. DoD has determined the maintenance-related information is not appropriate to define at the Enterprise level.'), ('002877','deprecated','2013-07-22','DISA FSO','policy','The organization prevents the unauthorized removal of maintenance equipment containing organizational information by verifying that there is no organizational information contained on the equipment.',NULL,NULL,NULL), ('002878','deprecated','2013-07-22','DISA FSO','policy','The organization prevents the unauthorized removal of maintenance equipment containing organizational information by sanitizing or destroying the equipment.',NULL,NULL,NULL), ('002879','deprecated','2013-07-22','DISA FSO','policy','The organization prevents the unauthorized removal of maintenance equipment containing organizational information by retaining the equipment within the facility.',NULL,NULL,NULL), ('002880','deprecated','2013-07-22','DISA FSO','policy','The organization prevents the unauthorized removal of maintenance equipment containing organizational information by retaining the equipment within the facility.',NULL,NULL,NULL), ('002881','deprecated','2013-07-22','DISA FSO','policy','The organization prevents the unauthorized removal of maintenance equipment containing organizational information by obtaining an exemption from organization-defined personnel or roles explicitly authorizing removal of the equipment from the facility.',NULL,NULL,NULL), ('002882','draft','2013-07-22','DISA FSO','policy','The organization defines the personnel or roles who can provide an exemption that explicitly authorizes removal of equipment from the facility.','MA-3(3).2','The organization being inspected/assessed defines and documents the personnel or roles who can provide an exemption that explicitly authorizes removal of equipment from the facility. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles who can provide an exemption that explicitly authorizes removal of equipment from the facility. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002883','draft','2013-07-22','DISA FSO','technical','The information system restricts the use of maintenance tools to authorized personnel only.','MA-3(4).1','The organization being inspected/assessed configures the information system to restrict the use of maintenance tools to authorized personnel only. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2883.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to restrict the use of maintenance tools to authorized personnel only. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2883.'), ('002884','draft','2013-07-22','DISA FSO','technical','The organization audits nonlocal maintenance and diagnostic sessions^ organization-defined audit events.','MA-4(1).1','The organization being inspected/assessed configures the information system to audit nonlocal maintenance and diagnostic sessions\' organization-defined audit events. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2884.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to audit nonlocal maintenance and diagnostic sessions\' organization-defined audit events. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2884.'), ('002885','draft','2013-07-22','DISA FSO','policy','The organization defines the nonlocal maintenance and diagnostic session audit events to audit.','MA-4(1).2','The organization being inspected/assessed defines and documents the nonlocal maintenance and diagnostic session audit events to audit. DoD has determined the audit events are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented audit events to ensure the organization being inspected/assessed defines the nonlocal maintenance and diagnostic session audit events to audit. DoD has determined the audit events are not appropriate to define at the Enterprise level.'), ('002886','draft','2013-07-22','DISA FSO','policy','The organization reviews the records of the nonlocal maintenance and diagnostic sessions.','MA-4(1).3','The organization being inspected/assessed documents and implements a process to review the records of the nonlocal maintenance and diagnostic sessions. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews the records of the nonlocal maintenance and diagnostic sessions.'), ('002887','draft','2013-07-22','DISA FSO','policy','The organization defines the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions.','MA-4(4).2','The organization being inspected/assessed defines and documents the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions. DoD has determined the authenticators are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented authenticators to ensure the organization being inspected/assessed defines the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions. DoD has determined the authenticators are not appropriate to define at the Enterprise level.'), ('002888','draft','2013-07-22','DISA FSO','policy','The organization defines the personnel or roles authorized to approve each nonlocal maintenance session.',NULL,NULL,NULL), ('002889','draft','2013-07-22','DISA FSO','policy','The organization notifies organization-defined personnel or roles of the date and time of planned nonlocal maintenance.','MA-4(5).4','The organization being inspected/assessed documents and implements a process to notify the user base which could be impacted by the maintenance event of the date and time of planned nonlocal maintenance. DoD has defined the personnel or roles as the user base which could be impacted by the maintenance event.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed notifies the user base which could be impacted by the maintenance event of the date and time of planned nonlocal maintenance. DoD has defined the personnel or roles as the user base which could be impacted by the maintenance event.'), ('002890','draft','2013-07-22','DISA FSO','technical','The information system implements cryptographic mechanisms to protect the integrity of nonlocal maintenance and diagnostic communications.','MA-4(6).1','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the integrity of nonlocal maintenance and diagnostic communications. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2890.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the integrity of nonlocal maintenance and diagnostic communications. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2890.'), ('002891','draft','2013-07-22','DISA FSO','technical','The information system implements remote disconnect verification at the termination of nonlocal maintenance and diagnostic sessions.','MA-4(7).1','The organization being inspected/assessed configures the information system to implement remote disconnect verification at the termination of nonlocal maintenance and diagnostic sessions. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2891.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement remote disconnect verification at the termination of nonlocal maintenance and diagnostic sessions. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2891.'), ('002892','draft','2013-07-22','DISA FSO','policy','The organization develops and implements alternate security safeguards in the event an information system component cannot be sanitized, removed, or disconnected from the system.','MA-5(1).4','The organization being inspected/assessed documents and implements alternate security safeguards in the event an information system component cannot be sanitized, removed, or disconnected from the system.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed develops and implements alternate security safeguards in the event an information system component cannot be sanitized, removed, or disconnected from the system.'), ('002893','draft','2013-07-22','DISA FSO','policy','The organization ensures that non-escorted personnel performing maintenance activities not directly associated with the information system but in the physical proximity of the system, have required access authorization.','MA-5(5).1','The organization being inspected/assessed documents and implements a process to ensure that non-escorted personnel performing maintenance activities not directly associated with the information system but in the physical proximity of the system, have required access authorization.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that non-escorted personnel performing maintenance activities not directly associated with the information system but in the physical proximity of the system, have required access authorization.'), ('002894','draft','2013-07-22','DISA FSO','policy','The organization ensures that non-escorted personnel performing maintenance on the information system have required access authorizations.','MA-5.3','The organization being inspected/assessed documents and implements a process to ensure that non-escorted personnel performing maintenance on the information system have required access authorizations. The organization must maintain a record of personnel performing maintenance on the information system.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of personnel performing maintenance on the information system to ensure the organization being inspected/assessed ensures that non-escorted personnel performing maintenance on the information system have required access authorizations.'), ('002895','draft','2013-07-22','DISA FSO','policy','The organization designates organizational personnel with required access authorizations and technical competence to supervise the maintenance activities of personnel who do not possess the required access authorizations.','MA-5.4','The organization being inspected/assessed defines and documents organizational personnel with required access authorizations and technical competence to supervise the maintenance activities of personnel who do not possess the required access authorizations.','The organization conducting the inspection/assessment obtains and examines documented organizational personnel to ensure the organization being inspected/assessed designates organizational personnel with required access authorizations and technical competence to supervise the maintenance activities of personnel who do not possess the required access authorizations.'), ('002896','draft','2013-07-22','DISA FSO','policy','The organization defines the information system components for which it obtains maintenance support and/or spare parts.','MA-6.2','The organization being inspected/assessed defines and documents the information system components for which it obtains maintenance support and/or spare parts. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components for which it obtains maintenance support and/or spare parts. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002897','draft','2013-07-22','DISA FSO','policy','The organization defines a time period for obtaining maintenance support and/or spare parts for organization-defined information system components after a failure.','MA-6.3','DoD has defined the time period as within 24 hours (Low and Moderate Availability) or immediately upon failure for (High Availability).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as within 24 hours (Low and Moderate Availability) or immediately upon failure for (High Availability).'), ('002898','draft','2013-07-22','DISA FSO','policy','The organization performs preventive maintenance on organization-defined information system components at organization-defined time intervals.','MA-6(1).1','The organization being inspected/assessed performs preventive maintenance on information system components defined in MA-6 (1), CCI 2899 at time intervals defined in MA-6 (1), CCI 2900. The organization must maintain schedules and records of preventive maintenance.','The organization conducting the inspection/assessment obtains and examines schedules and records of preventive maintenance to ensure the organization being inspected/assessed performs preventive maintenance on information system components defined in MA-6 (1), CCI 2899 at time intervals defined in MA-6 (1), CCI 2900.'), ('002899','draft','2013-07-22','DISA FSO','policy','The organization defines information system components on which to perform preventive maintenance.','MA-6(1).2','The organization being inspected/assessed defines and documents information system components on which to perform preventive maintenance. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines information system components on which to perform preventive maintenance. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002900','draft','2013-07-22','DISA FSO','policy','The organization defines time intervals at which to perform preventive maintenance on organization-defined information system components.','MA-6(1).3','The organization being inspected/assessed defines and documents time intervals to perform preventive maintenance on organization-defined information system components. Time periods must be determined based on methods of determining what preventive (or other) failure management policies to apply include, for example, original equipment manufacturer (OEM) recommendations, statistical failure records, requirements of codes, legislation, or regulations within a jurisdiction, expert opinion, maintenance that has already been conducted on similar equipment, or measured values and performance indications. DoD has determined the time intervals are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time intervals to ensure the organization being inspected/assessed defines time intervals to perform preventive maintenance on organization-defined information system components. DoD has determined the time intervals are not appropriate to define at the Enterprise level.'), ('002901','draft','2013-07-22','DISA FSO','policy','The organization performs predictive maintenance on organization-defined information system components at organization-defined intervals.','MA-6(2).1','The organization being inspected/assessed performs predictive maintenance on information system components defined in MA-6 (2), CCI 2902 at time intervals defined in MA-6 (2), CCI 2903. The organization must maintain schedules and records of predictive maintenance.','The organization conducting the inspection/assessment obtains and examines schedules and records of predictive maintenance to ensure the organization being inspected/assessed performs predictive maintenance on information system components defined in MA-6 (2), CCI 2902 at time intervals defined in MA-6 (2), CCI 2903.'), ('002902','draft','2013-07-22','DISA FSO','policy','The organization defines information system components on which to perform predictive maintenance.','MA-6(2).2','The organization being inspected/assessed defines and documents information system components on which to perform predictive maintenance. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines information system components on which to perform predictive maintenance. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('002903','draft','2013-07-22','DISA FSO','policy','The organization defines time intervals at which to perform predictive maintenance on organization-defined information system components.','MA-6(2).3','The organization being inspected/assessed defines and documents time intervals to perform predictive maintenance on organization-defined information system components. DoD has determined the time intervals are not appropriate to define at the Enterprise level','The organization conducting the inspection/assessment obtains and examines the documented time intervals to ensure the organization being inspected/assessed defines time intervals to perform predictive maintenance on organization-defined information system components. DoD has determined the time intervals are not appropriate to define at the Enterprise level.'); INSERT INTO `cci` VALUES ('002904','draft','2013-07-22','DISA FSO','policy','The organization employs automated mechanisms to transfer predictive maintenance data to a computerized maintenance management system.','MA-6(3).1','The organization being inspected/assessed documents and implements automated mechanisms to transfer predictive maintenance data to a computerized maintenance management system.','The organization conducting the inspection/assessment obtains and examines documentation of automated mechanisms to ensure the organization being inspected/assessed employs automated mechanisms to transfer predictive maintenance data to a computerized maintenance management system.'), ('002905','draft','2013-08-12','DISA FSO','policy','The organization employs automated mechanisms to schedule, conduct, and document maintenance.','MA-2(2).2','The organization being inspected/assessed documents and implements automated mechanisms to schedule, conduct, and document maintenance.','The organization conducting the inspection/assessment obtains and examines the documentation of automated mechanisms to ensure the organization being inspected/assessed employs automated mechanisms to schedule, conduct, and document maintenance.'), ('002906','draft','2013-08-13','DISA FSO','policy','The organization defines the vulnerability scanning activities in which the information system implements privileged access authorization to organization-identified information system components.','RA-5(5).3','The organization being inspected/assessed defines and documents the vulnerability scanning activities in which the information system implements privileged access authorization to organization-identified information system components. DoD has determined the vulnerability scanning activities are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented vulnerability scanning activities to ensure the organization being inspected/assessed defines the vulnerability scanning activities in which the information system implements privileged access authorization to organization-identified information system components. DoD has determined the vulnerability scanning activities are not appropriate to define at the Enterprise level.'), ('002907','draft','2013-08-22','DISA FSO','policy','The organization defines the system mode to be invoked, such as a full system shutdown, a partial system shutdown, or a degraded operational mode with limited mission/business functionality available, in the event of organization-defined audit failures.','AU-5(4).3','The organization being inspected/assessed defines and documents the system mode to be invoked. Possible examples of system modes include a full system shutdown, a partial system shutdown, or a degraded operational mode with limited mission/business functionality available.','The organization conducting the inspection/assessment obtains and examines the documented system mode to ensure the organization being inspected/assessed defines the system mode to be invoked.'), ('002908','draft','2013-08-27','DISA FSO','policy','The organization defines the personnel or roles to whom a physical and environmental protection policy is disseminated.','PE-1.1','DoD has defined the roles as organizational personnel with physical and environmental protection responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as organizational personnel with physical and environmental protection responsibilities.'), ('002909','draft','2013-08-27','DISA FSO','policy','The organization defines the personnel or roles to whom the physical and environmental protection procedures are disseminated.','PE-1.2','DoD has defined the roles as organizational personnel with physical and environmental protection responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as organizational personnel with physical and environmental protection responsibilities.'), ('002910','draft','2013-08-27','DISA FSO','policy','The organization approves a list of individuals with authorized access to the facility where the information system resides.','PE-2.2','The organization being inspected/assessed formally approves a list of individuals currently authorized to access the facility where the information system resides.','The organization conducting the inspection/assessment obtains and examines the list of individuals currently authorized to access the facility where the information system resides and ensures it is formally approved.'), ('002911','draft','2013-08-27','DISA FSO','policy','The organization maintains a list of individuals with authorized access to the facility where the information system resides.','PE-2.3','The organization being inspected/assessed maintains a list of individuals currently authorized to access the facility where the information system resides.','The organization conducting the inspection/assessment obtains and examines the list of individuals to ensure the organization being inspected/assessed maintains a list of individuals currently authorized to access the facility where the information system resides.'), ('002912','draft','2013-08-27','DISA FSO','policy','The organization defines a list of acceptable forms of identification for visitor access to the facility where the information system resides.','PE-2(2).2','The organization being inspected/assessed defines and documents a list of acceptable forms of identification for visitor access to the facility where the information system resides. DoD has determined the list of acceptable forms of identification are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented a list of acceptable forms of identification to ensure the organization being inspected/assessed defines a list of acceptable forms of identification for visitor access to the facility where the information system resides. DoD has determined the list of acceptable forms of identification are not appropriate to define at the Enterprise level.'), ('002913','draft','2013-08-27','DISA FSO','policy','The organization restricts unescorted access to the facility where the information system resides to personnel with one or more of the following: security clearances for all information contained within the system; formal access authorizations for all information contained within the system; need for access to all information contained within the system; organization-defined credentials.','PE-2(3).1','The organization being inspected/assessed defines and documents the requirements that must be met before unescorted access to the facility where the information system resides will be granted. These requirements will be selected from: security clearances for all information contained within the system; formal access authorizations for all information contained within the system; need for access to all information contained within the system; credentials defined in PE-2 (3), CCI 2914. This requirement must be documented within the organization\'s physical security policy.','The organization conducting the inspection/assessment obtains and examines the physical security policy to ensure the organization being inspected/assessed has selected one or more of the physical security requirements that must be met before unescorted access to the facility where the information system resides is granted'), ('002914','draft','2013-08-27','DISA FSO','policy','The organization defines the credentials required for personnel to have unescorted access to the facility where the information system resides.','PE-2(3).2','The organization being inspected/assessed defines and documents the credentials required for personnel to have unescorted access to the facility where the information system resides. DoD has determined the credentials are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented credentials to ensure the organization being inspected/assessed defines the credentials required for personnel to have unescorted access to the facility where the information system resides. DoD has determined the credentials are not appropriate to define at the Enterprise level.'), ('002915','draft','2013-08-27','DISA FSO','policy','The organization defines the entry/exit points to the facility where the information system resides.','PE-3.2','The organization being inspected/assessed defines and documents the entry/exit points to the facility where the information system resides. DoD has determined the entry/exit points are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented entry/exit points and inspects the facility to ensure that all entry/exit points are documented. DoD has determined the entry/exit points are not appropriate to define at the Enterprise level.'), ('002916','draft','2013-08-27','DISA FSO','policy','The organization defines the physical access control systems/devices or guards that control ingress/egress to the facility where the information system resides.','PE-3.5','The organization being inspected/assessed defines and documents the physical access control systems/devices or guards that control ingress/egress to the facility. DoD has determined the physical access control systems/devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented physical access control systems/devices to ensure the organization being inspected/assessed defines the physical access control systems/devices or guards that control ingress/egress to the facility. DoD has determined the physical access control systems/devices are not appropriate to define at the Enterprise level.'), ('002917','draft','2013-08-27','DISA FSO','policy','The organization maintains physical access audit logs for organization-defined entry/exit points to the facility where the information system resides.','PE-3.6','The organization being inspected/assessed maintains physical access audit logs for entry/exit points defined in PE-3, CCI 2918.','The organization conducting the inspection/assessment obtains and examines the physical access audit logs and compares the logged entry with known access to those entry points to ensure the organization being inspected/assessed maintains physical access audit logs for entry/exit points defined in PE-3, CCI 2918. Instances of access that will be compared with the audit logs include, at a minimum, access as part of the inspection/assessment. Comparison of other entry/exit events required elsewhere in system documentation that would have occurred before the inspection/assessment such as daily checks and scheduled maintenance are strongly encouraged and help to establish a history of compliance/non-compliance.'), ('002918','draft','2013-08-27','DISA FSO','policy','The organization defines entry/exit points to the facility where the information system resides that require physical access audit logs be maintained.','PE-3.7','The organization being inspected/assessed defines and documents entry/exit points that require physical access audit logs be maintained. DoD has determined the entry/exit points are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented entry/exit points to ensure the organization being inspected/assessed defines entry/exit points that require physical access audit logs be maintained. DoD has determined the entry/exit points are not appropriate to define at the Enterprise level.'), ('002919','draft','2013-08-27','DISA FSO','policy','The organization provides organization-defined security safeguards to control access to areas within the facility where the information system resides officially designated as publicly accessible.','PE-3.8','The organization being inspected/assessed provides security safeguards defined in PE-3, CCI 2920 to control access to areas within the facility officially designated as publicly accessible. The organization must document which areas are officially designated as publicly accessible.','The organization conducting the inspection/assessment obtains and examines the documentation of areas officially designated as publicly accessible to ensure the organization being inspected/assessed provides security safeguards defined in PE-3, CCI 2920 to control access to areas within the facility officially designated as publicly accessible.'), ('002920','draft','2013-08-27','DISA FSO','policy','The organization defines security safeguards to control access to areas within the facility where the information system resides officially designated as publicly accessible.','PE-3.9','The organization being inspected/assessed defines and documents security safeguards to control access to areas within the facility officially designated as publicly accessible. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines security safeguards to control access to areas within the facility officially designated as publicly accessible. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002921','draft','2013-08-27','DISA FSO','policy','The organization escorts visitors in the facility where the information system resides during organization-defined circumstances requiring visitor escorts.','PE-3.10','The organization being inspected/assessed documents and implements a process to escort visitors during circumstances defined in PE-3, CCI 2922 requiring visitor escorts.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed escorts visitors during circumstances defined in PE-3, CCI 2922 requiring visitor escorts.'), ('002922','draft','2013-08-27','DISA FSO','policy','The organization defines circumstances requiring visitor escorts in the facility where the information system resides.','PE-3.11','The organization being inspected/assessed defines and documents circumstances requiring visitor escorts. DoD has determined the circumstances are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances to ensure the organization being inspected/assessed defines circumstances requiring visitor escorts. DoD has determined the circumstances are not appropriate to define at the Enterprise level.'), ('002923','draft','2013-08-27','DISA FSO','policy','The organization monitors visitor activity in the facility where the information system resides during organization-defined circumstances requiring visitor monitoring.','PE-3.12','The organization being inspected/assessed documents and implements a process to monitor visitor activity during circumstances defined in PE-3, CCI 2924 requiring visitor monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed monitors visitor activity during circumstances defined in PE-3, CCI 2924 requiring visitor monitoring.'), ('002924','draft','2013-08-27','DISA FSO','policy','The organization defines circumstances requiring visitor monitoring in the facility where the information system resides.','PE-3.13','The organization being inspected/assessed defines and documents circumstances requiring visitor monitoring. DoD has determined the circumstances are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented circumstances to ensure the organization being inspected/assessed defines circumstances requiring visitor monitoring. DoD has determined the circumstances are not appropriate to define at the Enterprise level.'), ('002925','draft','2013-08-27','DISA FSO','policy','The organization defines the physical access devices to inventory.','PE-3.17','DoD has defined the physical access devices as minimally keys or any other physical token used to gain access.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the physical access devices as minimally keys or any other physical token used to gain access.'), ('002926','draft','2013-08-27','DISA FSO','policy','The organization defines the physical spaces containing one or more components of the information system that require physical access authorizations and controls at the facility where the information system resides.','PE-3(1).2','The organization being inspected/assessed defines and documents the physical spaces containing one or more components of the information system that require physical access authorizations and controls at the facility. DoD has determined the physical spaces are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented physical spaces to ensure the organization being inspected/assessed defines the physical spaces containing one or more components of the information system that require physical access authorizations and controls at the facility. DoD has determined the physical spaces are not appropriate to define at the Enterprise level.'), ('002927','draft','2013-08-27','DISA FSO','policy','The organization defines the frequency with which to perform security checks at the physical boundary of the facility or information system for unauthorized exfiltration of information or removal of information system components.','PE-3(2).2','DoD has defined the frequency as at a minimum, annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as at a minimum, annually.'), ('002928','draft','2013-08-27','DISA FSO','policy','The organization defines security safeguards to detect and prevent physical tampering or alteration of organization-defined hardware components within the information system.','PE-3(5).2','The organization being inspected/assessed defines and documents security safeguards to detect and prevent physical tampering or alteration of organization-defined hardware components within the information system. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines security safeguards to detect and prevent physical tampering or alteration of organization-defined hardware components within the information system. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002929','draft','2013-08-27','DISA FSO','policy','The organization defines hardware components within the information system for which to employ organization-defined security safeguards to detect and prevent physical tampering or alteration.','PE-3(5).3','The organization being inspected/assessed defines and documents hardware components within the information system to employ organization-defined security safeguards to detect and prevent physical tampering or alteration. DoD has determined the hardware components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented hardware components to ensure the organization being inspected/assessed defines hardware components within the information system to employ organization-defined security safeguards to detect and prevent physical tampering or alteration. DoD has determined the hardware components are not appropriate to define at the Enterprise level.'), ('002930','draft','2013-08-27','DISA FSO','policy','The organization defines information system distribution and transmission lines within organizational facilities to control physical access to using organization-defined security safeguards.','PE-4.2','The organization being inspected/assessed defines and documents information system distribution and transmission lines within organizational facilities to control physical access using organization-defined security safeguards. If transmission lines carry classified information, a protected distribution system (PDS) must be used to transmit unencrypted classified information through an area of lesser classification or control. For additional information, see NSTISSI No. 7003. DoD has determined the information system distribution and transmission lines are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system distribution and transmission lines to ensure the organization being inspected/assessed defines information system distribution and transmission lines within organizational facilities to control physical access using organization-defined security safeguards. DoD has determined the information system distribution and transmission lines are not appropriate to define at the Enterprise level.'), ('002931','draft','2013-08-27','DISA FSO','policy','The organization defines security safeguards to control physical access to organization-defined information system distribution and transmission lines within organizational facilities.','PE-4.3','The organization being inspected/assessed defines and documents security safeguards to control physical access to organization-defined information system distribution and transmission lines within organizational facilities. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines security safeguards to control physical access to organization-defined information system distribution and transmission lines within organizational facilities. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('002932','draft','2013-08-27','DISA FSO','policy','The organization controls physical access to output from organization-defined output devices.','PE-5(1).1','The organization being inspected/assessed documents and implements a process to control physical access to output from output devices defined in PE-5 (1), CCI 2933.','The organization conducting the inspection/assessment obtains and examines the documented process and inspects the physical access controls surrounding a sampling of output devices to ensure the organization being inspected/assessed controls physical access to output from output devices defined in PE-5 (1), CCI 2933.'), ('002933','draft','2013-08-27','DISA FSO','policy','The organization defines output devices for which physical access to output is controlled.','PE-5(1).2','The organization being inspected/assessed defines and documents output devices for which physical access to output is controlled. DoD has determined the output devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented output devices to ensure the organization being inspected/assessed defines output devices for which physical access to output is controlled. DoD has determined the output devices are not appropriate to define at the Enterprise level.'), ('002934','draft','2013-08-27','DISA FSO','policy','The organization ensures that only authorized individuals receive output from organization-defined output devices.','PE-5(1).3','The organization being inspected/assessed documents and implements a process to ensure that only authorized individuals receive output from the output device defined in PE-5 (1), CCI 2933.','The organization conducting the inspection/assessment obtains and examines the documented process and inspects the physical access controls surrounding a sampling of output devices to ensure the organization being inspected/assessed ensures that only authorized individuals receive output from the output device defined in PE-5 (1), CCI 2933.'), ('002935','draft','2013-08-27','DISA FSO','policy','The information system controls physical access to output from organization-defined output devices.','PE-5(2).1','The organization being inspected/assessed configures the information system to control physical access to output from output devices defined in PE-5 (1), CCI 2933. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2935.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to control physical access to output from output devices defined in PE-5 (1), CCI 2933. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2935.'), ('002936','draft','2013-08-27','DISA FSO','policy','The information system links individual identity to receipt of output from organization-defined output devices.','PE-5(2).2','The organization being inspected/assessed configures the information system to link individual identity to receipt of the output from the output device defined in PE-5 (1), CCI 2933. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 2936.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to link individual identity to receipt of the output from the output device defined in PE-5 (1), CCI 2933. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 2936.'), ('002937','draft','2013-08-27','DISA FSO','policy','The organization marks organization-defined information system output devices indicating the appropriate security marking of the information permitted to be output from the device.','PE-5(3).1','The organization being inspected/assessed marks all devices if the organizational facility contains classified information indicating the appropriate security marking of the information permitted to be output from the device. DoD has defined the information system output devices as all devices if the organizational facility contains classified information.','The organization conducting the inspection/assessment inspects a sampling of information system components to ensure the organization being inspected/assessed marks all devices if the organizational facility contains classified information indicating the appropriate security marking of the information permitted to be output from the device. DoD has defined the information system output devices as all devices if the organizational facility contains classified information.'), ('002938','draft','2013-08-27','DISA FSO','policy','The organization defines the information system output devices marked indicating the appropriate security marking of the information permitted to be output from the device.','PE-5(3).2','DoD has defined the information system output devices as all devices if the organizational facility contains classified information.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the information system output devices as all devices if the organizational facility contains classified information.'), ('002939','draft','2013-08-27','DISA FSO','policy','The organization monitors physical access to the facility where the information system resides to detect and respond to physical security incidents.','PE-6.1','The organization being inspected/assessed will implement monitoring procedures to ensure physical access intrusion alarms and surveillance equipment are actively monitored to detect and respond to all physical access security incidents.','The organization conducting the inspection/assessment obtains and examines the inspected organization\'s monitoring procedures addressing physical access monitoring. Organizational personnel with physical access monitoring responsibilities are to be interviewed. The objective of the reviews and interviews is to validate the organization is actively monitoring its physical access intrusion alarms and surveillance equipment to detect and respond to all physical access security incidents.'), ('002940','draft','2013-08-27','DISA FSO','policy','The organization reviews physical access logs upon occurrence of organization-defined events or potential indications of events.','PE-6.2','The organization being inspected/assessed documents and implements a process to review physical access logs upon occurrence of events or potential indications of events defined in PE-6, CCI 2941. The organization must maintain records of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of reviews to ensure the organization being inspected/assessed reviews physical access logs upon occurrence of events or potential indications of events defined in PE-6, CCI 2941.'), ('002941','draft','2013-08-27','DISA FSO','policy','The organization defines events or potential indications of events requiring review of physical access logs.','PE-6.3','The organization being inspected/assessed defines and documents events or potential indications of events requiring review of physical access logs. DoD has determined the events or potential indications of events are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented events or potential indications of events to ensure the organization being inspected/assessed defines events or potential indications of events requiring review of physical access logs. DoD has determined the events or potential indications of events are not appropriate to define at the Enterprise level.'), ('002942','draft','2013-08-27','DISA FSO','policy','The organization employs automated mechanisms to recognize organization-defined classes/types of intrusions.','PE-6(2).1','The organization being inspected/assessed implements automated mechanisms to recognize classes/types of intrusions defined in PE-6 (2), CCI 2943.','The organization conducting the inspection/assessment obtains and examines hardware/software lists and/or any other documentation showing the use of automated intrusion detection systems to ensure the organization being inspected/assessed implements automated mechanisms to recognize classes/types of intrusions defined in PE-6 (2), CCI 2943.'), ('002943','draft','2013-08-27','DISA FSO','policy','The organization defines classes/types of intrusions to recognize using automated mechanisms.','PE-6(2).2','The organization being inspected/assessed defines and documents classes/types of intrusions to recognize using automated mechanisms. DoD has determined the classes/types of intrusions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented classes/types of intrusion to ensure the organization being inspected/assessed defines classes/types of intrusions to recognize using automated mechanisms. DoD has determined the classes/types of intrusions are not appropriate to define at the Enterprise level.'), ('002944','draft','2013-08-27','DISA FSO','policy','The organization employs automated mechanisms to initiate organization-defined response actions to organization-defined classes/types of intrusions.','PE-6(2).3','The organization being inspected/assessed implements automated mechanisms to initiate response actions defined in PE-6 (2), CCI 2945 to classes/types of intrusions defined in PE-6 (2), CCI 2943.','The organization conducting the inspection/assessment obtains and examines hardware/software lists and/or any other documentation showing the use of automated intrusion detection systems to ensure the organization being inspected/assessed implements automated mechanisms to initiate response actions defined in PE-6 (2), CCI 2945 to classes/types of intrusions defined in PE-6 (2), CCI 2943.'), ('002945','draft','2013-08-27','DISA FSO','policy','The organization defines response actions to initiate when organization-defined classes/types of intrusions are recognized.','PE-6(2).4','The organization being inspected/assessed defines and documents response actions to initiate when organization-defined classes/types of intrusions are recognized. DoD has determined the response actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented response actions to ensure the organization being inspected/assessed defines response actions to initiate when organization-defined classes/types of intrusions are recognized. DoD has determined the response actions are not appropriate to define at the Enterprise level.'), ('002946','draft','2013-08-27','DISA FSO','policy','The organization employs video surveillance of organization-defined operational areas.','PE-6(3).1','The organization being inspected/assessed documents and implements video surveillance of operational areas defined in PE-6 (3), CCI 2947.','The organization conducting the inspection/assessment obtains and examines the documentation of video surveillance a sampling of recorded video surveillance to ensure the organization being inspected/assessed employs video surveillance of operational areas defined in PE-6 (3), CCI 2947.'), ('002947','draft','2013-08-27','DISA FSO','policy','The organization defines the operational areas in which to employ video surveillance.','PE-6(3).2','The organization being inspected/assessed defines and documents the operational areas to employ video surveillance. DoD has determined the operational areas are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented operational areas to ensure the organization being inspected/assessed defines the operational areas to employ video surveillance. DoD has determined the operational areas are not appropriate to define at the Enterprise level.'), ('002948','draft','2013-08-27','DISA FSO','policy','The organization retains video surveillance recordings for an organization-defined time period.','PE-6(3).3','The organization being inspected/assessed documents and implements a process to retain video surveillance recordings for at a minimum 90 days. DoD has defined the time period as at a minimum 90 days.','The organization conducting the inspection/assessment obtains and examines the documented process and a sampling of recordings from within 90 days to ensure the organization being inspected/assessed retains video surveillance recordings for at a minimum 90 days. DoD has defined the time period as at a minimum 90 days.'), ('002949','draft','2013-08-27','DISA FSO','policy','The organization defines the time period to retain video surveillance recordings.','PE-6(3).4','DoD has defined the time period as at a minimum 90 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as at a minimum 90 days.'), ('002950','draft','2013-08-27','DISA FSO','policy','The organization monitors physical access to the information system in addition to the physical access monitoring of the facility as organization-defined physical spaces containing one or more components of the information system.','PE-6(4).1','The organization being inspected/assessed documents and implements a process to monitor physical access to the information system in addition to the physical access monitoring of the facility as physical spaces containing one or more components of the information system defined in PE-6 (4), CCI 2951. The organization must maintain records of monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of monitoring to ensure the organization being inspected/assessed monitors physical access to the information system in addition to the physical access monitoring of the facility as physical spaces containing one or more components of the information system defined in PE-6 (4), CCI 2951.'), ('002951','draft','2013-08-27','DISA FSO','policy','The organization defines physical spaces containing one or more components of the information system in which physical access is monitored.','PE-6(4).2','The organization being inspected/assessed defines and documents physical spaces containing one or more components of the information system in which physical access is monitored. DoD has determined the physical spaces are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented physical spaces to ensure the organization being inspected/assessed defines physical spaces containing one or more components of the information system in which physical access is monitored. DoD has determined the physical spaces are not appropriate to define at the Enterprise level.'), ('002952','draft','2013-08-27','DISA FSO','policy','The organization defines the time period to maintain visitor access records to the facility where the information system resides.','PE-8.2','DoD has defined the time period as at least one year.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as at least one year.'), ('002953','draft','2013-08-27','DISA FSO','policy','The organization employs redundant power cabling paths that are physically separated by an organization-defined distance.','PE-9(1).1','The organization being inspected/assessed employs redundant power cabling paths that are physically separated by the distance defined in PE-9 (1), CCI 2954.','The organization conducting the inspection/assessment obtains and examines cabling diagrams or, if unavailable, inspects power cabling configuration to ensure the organization being inspected/assessed employs redundant power cabling paths that are physically separated by the distance defined in PE-9 (1), CCI 2954.'), ('002954','draft','2013-08-27','DISA FSO','policy','The organization defines the distance by which to physically separate redundant power cabling paths.','PE-9(1).2','The organization being inspected/assessed defines and documents the distance to physically separate redundant power cabling paths. DoD has determined the distance is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented distance to ensure the organization being inspected/assessed defines the distance to physically separate redundant power cabling paths. DoD has determined the distance is not appropriate to define at the Enterprise level.'), ('002955','draft','2013-08-29','DISA FSO','policy','The organization provides a short-term uninterruptible power supply to facilitate an orderly shutdown of the information system and/or transition of the information system to long-term alternate power in the event of a primary power source loss.','PE-11.1','The organization being inspected/assessed implements an uninterruptible power supply with sufficient capacity to support orderly shutdown of the system or transition the system to long-term alternate power in the event of a primary power source loss.','The organization conducting the inspection/assessment obtains and examines documentation identifying the capacity of the implemented uninterruptible power supply, documentation identifying the power requirements of the system, and documentation identifying the contingency plan in the event of primary power source loss to ensure the organization being inspected/assessed provides uninterruptible power supply with sufficient capacity to support orderly shutdown of the system or transition the system to long-term alternate power in the event of a primary power source loss.'), ('002956','draft','2013-08-29','DISA FSO','policy','The organization provides a long-term alternate power supply for the information system that is self-contained.','PE-11(2).1','The organization being inspected/assessed implements a long-term alternate power supply for the information system that is self-contained.','The organization conducting the inspection/assessment obtains and examines documentation identifying the implemented alternate power supply to ensure the organization being inspected/assessed implements a long-term alternate power supply for the information system that is self-contained.'), ('002957','draft','2013-08-29','DISA FSO','policy','The organization provides a long-term alternate power supply for the information system that is not reliant on external power generation.','PE-11(2).2','The organization being inspected/assessed implements a long-term alternate power supply for the information system that is not reliant on external power generation.','The organization conducting the inspection/assessment obtains and examines documentation identifying the implemented alternate power supply to ensure the organization being inspected/assessed implements a long-term alternate power supply for the information system that is not reliant on external power generation.'), ('002958','draft','2013-08-29','DISA FSO','policy','The organization provides a long-term alternate power supply for the information system that is capable of maintaining minimally required operational capability or full operational capability in the event of an extended loss of the primary power source.','PE-11(2).3','The organization being inspected/assessed implements a long-term alternate power supply for the information system that is capable of maintaining minimally required operational capability or full operational capability in the event of an extended loss of the primary power source.','The organization conducting the inspection/assessment obtains and examines documentation identifying the implemented alternate power supply to ensure the organization being inspected/assessed implements a long-term alternate power supply for the information system that is capable of maintaining minimally required operational capability or full operational capability in the event of an extended loss of the primary power source.'), ('002959','draft','2013-08-29','DISA FSO','policy','The organization provides emergency lighting for all areas within the facility supporting essential missions.','PE-12(1).1','The organization being inspected/assessed implements emergency lighting for all areas within the facility supporting essential missions.','The organization conducting the inspection/assessment inspects areas within the facility supporting essential missions to ensure emergency lighting is implemented.'), ('002960','draft','2013-08-29','DISA FSO','policy','The organization provides emergency lighting for all areas within the facility supporting essential business functions.','PE-12(1).2','The organization being inspected/assessed implements emergency lighting for all areas within the facility supporting essential business functions.','The organization conducting the inspection/assessment inspects areas within the facility supporting essential business functions to ensure emergency lighting is implemented.'), ('002961','draft','2013-08-29','DISA FSO','policy','The organization employs fire detection devices/systems for the information system that activate automatically.','PE-13(1).1','The organization being inspected/assessed documents and implements fire detection devices/systems for the information system that activate automatically.','The organization conducting the inspection/assessment obtains and examines the documented evidence of fire detection devices/systems to ensure the organization being inspected/assessed employs fire detection devices/systems for the information system that activate automatically.'), ('002962','draft','2013-08-29','DISA FSO','policy','The organization employs fire detection devices/systems for the information system that automatically activate to notify organization-defined personnel or roles and organization-defined emergency responders in the event of a fire.','PE-13(1).2','The organization being inspected/assessed documents and implements fire detection devices/systems for the information system that automatically activate to notify personnel or roles defined in PE-13 (1), CCI 2963 and emergency responders defined in PE-13 (1), CCI 2964 in the event of a fire.','The organization conducting the inspection/assessment obtains and examines the documented evidence of fire detection devices/systems to ensure the organization being inspected/assessed employs fire detection devices/systems for the information system that automatically activate to notify personnel or roles defined in PE-13 (1), CCI 2963 and emergency responders defined in PE-13 (1), CCI 2964 in the event of a fire.'), ('002963','draft','2013-08-29','DISA FSO','policy','The organization defines the personnel or roles to be notified in the event of a fire.','PE-13(1).3','The organization being inspected/assessed defines and documents the personnel or roles to be notified in the event of a fire. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to be notified in the event of a fire. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002964','draft','2013-08-29','DISA FSO','policy','The organization defines the emergency responders to be notified in the event of a fire.','PE-13(1).4','The organization being inspected/assessed defines and documents the emergency responders to be notified in the event of a fire. DoD has determined the emergency responders are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented emergency responders to ensure the organization being inspected/assessed defines the emergency responders to be notified in the event of a fire. DoD has determined the emergency responders are not appropriate to define at the Enterprise level.'), ('002965','draft','2013-08-29','DISA FSO','policy','The organization employs fire suppression devices/systems for the information system that provide automatic notification of any activation to organization-defined personnel or roles and organization-defined emergency responders.','PE-13(2).1','The organization being inspected/assessed documents and implements fire suppression devices/systems for the information system that provide automatic notification of any activation to organization-defined personnel or roles and organization defined emergency responders.','The organization conducting the inspection/assessment obtains and examines the documented evidence of fire detection devices/systems to ensure the organization being inspected/assessed employs fire suppression devices/systems for the information system that provide automatic notification of any activation to organization-defined personnel or roles and organization defined emergency responders.'), ('002966','draft','2013-08-29','DISA FSO','policy','The organization defines the personnel or roles to be automatically notified of any activation of fire suppression devices/systems for the information system.','PE-13(2).2','The organization being inspected/assessed defines and documents the personnel or roles to be automatically notified of any activation of fire suppression devices/systems for the information system. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to be automatically notified of any activation of fire suppression devices/systems for the information system. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002967','draft','2013-08-29','DISA FSO','policy','The organization defines the emergency responders to be automatically notified of any activation of fire suppression devices/systems for the information system.','PE-13(2).3','The organization being inspected/assessed defines and documents the emergency responders to be automatically notified of any activation of fire suppression devices/systems for the information system. DoD has determined the emergency responders are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented emergency responders to ensure the organization being inspected/assessed defines the emergency responders to be automatically notified of any activation of fire suppression devices/systems for the information system. DoD has determined the emergency responders are not appropriate to define at the Enterprise level.'), ('002968','draft','2013-08-29','DISA FSO','policy','The organization ensures that the facility undergoes, on an organization-defined frequency, fire protection inspections by authorized and qualified inspectors.','PE-13(4).1','The organization being inspected/assessed implements a process to undergo fire protection inspections by authorized and qualified inspectors annually. The organization must maintain a record of inspections. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the record of inspections to ensure the organization being inspected/assessed implements a process to undergo fire protection inspections by authorized and qualified inspectors annually. DoD has defined the frequency as annually.'), ('002969','draft','2013-08-29','DISA FSO','policy','The organization defines a frequency with which the facility undergoes fire protection inspections.','PE-13(4).2','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('002970','draft','2013-08-29','DISA FSO','policy','The organization resolves deficiencies identified during facility fire protection inspections within an organization-defined time period.','PE-13(4).3','The organization being inspected/assessed resolves deficiencies identified during facility fire protection inspections within 60 days. DoD has defined the time period as 60 days.','The organization conducting the inspection/assessment obtains and examines past facility fire protection inspection reports and inspects the facility to ensure all deficiencies identified are resolved in 60 days. DoD has defined the time period as 60 days.'), ('002971','draft','2013-08-29','DISA FSO','policy','The organization defines the time period within which to resolve deficiencies identified during facility fire protection inspections.','PE-13(4).4','DoD has defined the time period as 60 days.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as 60 days.'), ('002972','draft','2013-08-29','DISA FSO','policy','The organization employs automated mechanisms to detect the presence of water in the vicinity of the information system and alerts organization-defined personnel or roles.','PE-15(1).1','The organization being inspected/assessed documents and implements automated mechanisms to detect the presence of water in the vicinity of the information system and alerts personnel or roles defined in PE-15 (1), CCI 2973.','The organization conducting the inspection/assessment obtains and examines documentation identifying water detection mechanisms to ensure the organization being inspected/assessed implements automated mechanisms to detect the presence of water in the vicinity of the information system and alerts personnel or roles defined in PE-15 (1), CCI 2973.'), ('002973','draft','2013-08-29','DISA FSO','policy','The organization defines the personnel or roles to be alerted when automated mechanisms detect the presence of water in the vicinity of the information system.','PE-15(1).2','The organization being inspected/assessed defines and documents the personnel or roles to be alerted when automated mechanisms detect the presence of water in the vicinity of the information system. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to be alerted when automated mechanisms detect the presence of water in the vicinity of the information system. DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('002974','draft','2013-08-29','DISA FSO','policy','The organization defines types of information system components to authorize, monitor, and control entering and exiting the facility and to maintain records.','PE-16.5','DoD has defined the types of information system components as all system components.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the types of information system components as all system components.'), ('002975','draft','2013-08-29','DISA FSO','policy','The organization defines security controls to employ at alternate work sites.','PE-17.2','The organization being inspected/assessed defines and documents security controls to employ at alternate work sites, which must include all applicable building and safety codes for the information system\'s environment DoD has determined the security controls are not appropriate to define at the Enterprise level, but must include all applicable building and safety codes for the information system\'s environment.','The organization conducting the inspection/assessment obtains and examines the documented security controls to ensure the organization being inspected/assessed defines security controls to employ at alternate work sites, which must include all applicable building and safety codes for the information system\'s environment. DoD has determined the security controls are not appropriate to define at the Enterprise level, but must include all applicable building and safety codes for the information system\'s environment.'), ('002976','draft','2013-08-29','DISA FSO','policy','The organization defines physical and environmental hazards that could cause potential damage to information system components within the facility.','PE-18.3','The organization being inspected/assessed defines and documents physical and environmental hazards that could cause potential damage to information system components within the facility. DoD has determined the physical and environmental hazards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented physical and environmental hazards to ensure the organization being inspected/assessed defines physical and environmental hazards that could cause potential damage to information system components within the facility. DoD has determined the physical and environmental hazards are not appropriate to define at the Enterprise level.'), ('002977','draft','2013-08-29','DISA FSO','policy','The organization plans the location or site of the facility where the information system resides with regard to physical and environmental hazards.','PE-18(1).1','The organization being inspected/assessed plans the location or site of the facility where the information system resides with regard to physical and environmental hazards. The organization must document the rationale for planning the location or site of the facility.','The organization conducting the inspection/assessment obtains and examines the documented rationale to ensure the organization being inspected/assessed plans the location or site of the facility where the information system resides with regard to physical and environmental hazards.'), ('002978','draft','2013-08-29','DISA FSO','policy','The organization considers the physical and environmental hazards in its risk mitigation strategy for existing facilities.','PE-18(1).2','The organization being inspected/assessed considers the physical and environmental hazards in its risk mitigation strategy for existing facilities. The organization must document the risk assessment.','The organization conducting the inspection/assessment obtains and examines the physical and environmental risk assessment to ensure the organization being inspected/assessed considers the physical and environmental hazards in its risk mitigation strategy for existing facilities.'), ('002979','draft','2013-08-29','DISA FSO','policy','The organization employs organization-defined asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas.','PE-20.1','The organization being inspected/assessed implements asset location technologies defined in PE-20, CCI 2980 to track and monitor the location and movement of assets defined in PE-20, CCI 2981 within controlled areas defined in PE-20, CCI 2982.','The organization conducting the inspection/assessment obtains and examines documentation reflecting asset location technologies in use to ensure the organization being inspected/assessed implements asset location technologies defined in PE-20, CCI 2980 to track and monitor the location and movement of assets defined in PE-20, CCI 2981 within controlled areas defined in PE-20, CCI 2982.'), ('002980','draft','2013-08-29','DISA FSO','policy','The organization defines asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas.','PE-20.2','The organization being inspected/assessed defines and documents asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas. DoD has determined the asset location technologies are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented asset location technologies to ensure the organization being inspected/assessed defines asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas. DoD has determined the asset location technologies are not appropriate to define at the Enterprise level.'), ('002981','draft','2013-08-29','DISA FSO','policy','The organization defines the assets within the organization-defined controlled areas which are to be tracked and monitored for their location and movement.','PE-20.3','The organization being inspected/assessed defines and documents the assets within the organization-defined controlled areas which are to be tracked and monitored for their location and movement. DoD has determined the assets are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented assets to ensure the organization being inspected/assessed defines the assets within the organization-defined controlled areas which are to be tracked and monitored for their location and movement. DoD has determined the assets are not appropriate to define at the Enterprise level.'), ('002982','draft','2013-08-29','DISA FSO','policy','The organization defines controlled areas where the location and movement of organization-defined assets are tracked and monitored.','PE-20.4','The organization being inspected/assessed defines and documents controlled areas that the location and movement of organization-defined assets are tracked and monitored. DoD has determined the controlled areas are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented controlled areas to ensure the organization being inspected/assessed defines controlled areas that the location and movement of organization-defined assets are tracked and monitored. DoD has determined the controlled areas are not appropriate to define at the Enterprise level.'), ('002983','draft','2013-08-29','DISA FSO','policy','The organization ensures that asset location technologies are employed in accordance with applicable federal laws, Executive Orders, directives, regulations, policies, standards, and guidance.','PE-20.5','The organization being inspected/assessed identifies and documents any federal laws, Executive Orders, directives, regulations, policies, standards, and guidance applicable to the asset location technologies in use. In particular, the organization identifies any requirements to protect the privacy of personnel transporting assets being tracked. The organization documents a process to meet the applicable requirements in their documentation of asset tracking technologies (PE-20, CCI 2980).','The organization conducting the inspection/assessment obtains and examines the documented list of any federal laws, Executive Orders, directives, regulations, policies, standards, and guidance applicable to the asset location technologies in use, as well as the documentation of asset tracking technologies per PE-20, CCI 2980, to ensure that the organization being inspected/assessed identifies any requirements (particularly privacy requirements) applicable to the asset tracking methodologies in use, and to ensure that the organization implements a process to meet those identified requirements.'), ('002984','draft','2013-08-29','DISA FSO','policy','The organization develops an organization-wide information security program plan that reflects coordination among organizational entities responsible for the different aspects of information security (i.e., technical, physical, personnel, cyber-physical).','PM-1.5','DoDI 8500.01 and the Knowledge Service meet the requirement for this CCI; individual organizations and system owners must provide documentation of common control implementation in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002985','draft','2013-08-29','DISA FSO','policy','The organization disseminates an organization-wide information security program plan that provides an overview of the requirements for the security program and a description of the security program management controls and common controls in place or planned for meeting those requirements.','PM-1.2','DoD disseminates DoDI 8500.01 organization-wide via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) and the Knowledge Service is available via: https://rmfks.osd.mil.\n\nDoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002986','draft','2013-08-29','DISA FSO','policy','The organization disseminates an organization-wide information security program plan that includes the identification and assignment of roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PM-1.3','DoD disseminates DoDI 8500.01 organization-wide via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) and the Knowledge Service is available via: https://rmfks.osd.mil.\n\nDoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002987','draft','2013-08-29','DISA FSO','policy','The organization disseminates an organization-wide information security program plan that reflects coordination among organizational entities responsible for the different aspects of information security (i.e., technical, physical, personnel, cyber-physical).','PM-1.6','DoD disseminates DoDI 8500.01 organization-wide via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) and the Knowledge Service is available via: https://rmfks.osd.mil.\n\nDoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002988','draft','2013-08-29','DISA FSO','policy','The organization disseminates an organization-wide information security program plan that is approved by a senior official with responsibility and accountability for the risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.','PM-1.7','DoD disseminates DoDI 8500.01 organization-wide via the DoD Issuances website (http://www.dtic.mil/whs/directives/corres/dir.html) and the Knowledge Service is available via: https://rmfks.osd.mil.\n\nDoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002989','draft','2013-08-29','DISA FSO','policy','The organization protects the information security program plan from unauthorized disclosure.','PM-1.12','DoD documents and implements methods to protect the information security program plan from unauthorized disclosure by marking, labeling, and handling to prevent unauthorized disclosure. DoD ensures that all changes to the information security program plan are approved.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002990','draft','2013-08-29','DISA FSO','policy','The organization protects the information security program plan from unauthorized modification.','PM-1.13','DoD documents and implements methods to protect the information security program plan from unauthorized disclosure by marking, labeling, and handling to prevent unauthorized modification. DoD ensures that all changes to the information security program plan are approved.','DoD components are automatically compliant with this CCI as they are covered at the DoD level by DoDI 8500.01 and the Knowledge Service. If the organization or system owner is utilizing common controls they must be documented in their Security Plan.'), ('002991','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that plans of action and milestones for the security program and associated organizational information systems are developed.','PM-4.2','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to develop a process for plans of action and milestones for the security program.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to develop a process for plans of action and milestones for the security program.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.'), ('002992','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that plans of action and milestones for the security program and associated organizational information systems are reported in accordance with OMB FISMA reporting requirements.','PM-4.4','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to implement a process ensuring that the plans of action and milestones for the security program are reported in accordance with OMB FISMA reporting requirements.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.','DoDI 8510.01 and the Knowledge Service meet the DoD requirements to implement a process ensuring that the plans of action and milestones for the security program are reported in accordance with OMB FISMA reporting requirements.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8510.01 and the Knowledge Service.'), ('002993','draft','2013-08-29','DISA FSO','policy','The organization reviews plans of action and milestones for the security program and associated organization information systems for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-4.5','The organization being inspected/assessed documents and implements a process to review plans of action and milestones for the security program and associated organization information systems for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews plans of action and milestones for the security program and associated organization information systems for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.'), ('002994','draft','2013-08-29','DISA FSO','policy','The organization reviews and updates the risk management strategy in accordance with organization-defined frequency or as required, to address organizational changes.','PM-9.3','DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy.\n\nDoD components are automatically compliant with this CCI because they are covered by the DoD Risk Management Framework (DoDI 8510.01).','DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy.\n\nDoD components are automatically compliant with this CCI because they are covered by DoD Risk Management Framework (DoDI 8510.01).'), ('002995','draft','2013-08-29','DISA FSO','policy','The organization defines the frequency with which to review and update the risk management strategy to address organizational changes.','PM-9.4','DoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as reviewed annually - updated as appropriate but at least within 10 years of date of issuance.'), ('002996','draft','2013-08-29','DISA FSO','policy','The organization implements an insider threat program that includes a cross-discipline insider threat incident handling team.','PM-12.1','The organization being inspected/assessed documents and implements an insider threat program that includes a cross-discipline insider threat incident handling team.','The organization conducting the inspection/assessment obtains and examines the documented insider threat program to ensure the organization being inspected/assessed implements an insider threat program that includes a cross-discipline insider threat incident handling team.'), ('002997','draft','2013-08-29','DISA FSO','policy','The organization establishes an information security workforce development and improvement program.','PM-13.1','DoD 8570.01-M, \"Information Assurance Workforce Improvement Program\" meets the DoD requirement to establish an information security workforce development and improvement program.\n\nDoD components are automatically complaint with this CCI as they are covered at the DoD level, DoDI 8570.01-M.','DoD 8570.01-M meets the DoD requirement to establish an information security workforce development and improvement program.\n\nDoD components are automatically complaint with this CCI as they are covered at the DoD level, DoDI 8570.01-M.'), ('002998','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are developed.','PM-14.1','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are developed.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are developed.'), ('002999','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are maintained.','PM-14.2','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are maintained.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are maintained.'), ('003000','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security training activities associated with organizational information systems are developed.','PM-14.3','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security training activities associated with organizational information systems are developed.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security training activities associated with organizational information systems are developed.'), ('003001','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security training activities associated with organizational information systems are maintained.','PM-14.4','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security training activities associated with organizational information systems are maintained.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security training activities associated with organizational information systems are maintained.'), ('003002','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems are developed.','PM-14.5','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems are developed.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems are developed.'), ('003003','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems are maintained.','PM-14.6','The organization being inspected/assessed documents and implements a process for conducting security monitoring activities associated with organizational information systems are maintained.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems are maintained.'), ('003004','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security testing associated with organizational information systems continue to be executed in a timely manner.','PM-14.7','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security testing associated with organizational information systems continue to be executed in a timely manner. The organization must maintain records of execution.','The organization conducting the inspection/assessment obtains and examines the documented process as well as records of execution to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security testing associated with organizational information systems continue to be executed in a timely manner.'), ('003005','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security training associated with organizational information systems continue to be executed in a timely manner.','PM-14.8','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security training associated with organizational information systems continue to be executed in a timely manner. The organization must maintain records of execution.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of execution to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security training associated with organizational information systems continue to be executed in a timely manner.'), ('003006','draft','2013-08-29','DISA FSO','policy','The organization implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems continue to be executed in a timely manner.','PM-14.9','The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems continue to be executed in a timely manner. The organization must maintain records of execution.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of execution to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational information systems continue to be executed in a timely manner.'), ('003007','draft','2013-08-29','DISA FSO','policy','The organization reviews testing plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-14.10','The organization being inspected/assessed documents and implements a process to review testing plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews testing plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.'), ('003008','draft','2013-08-29','DISA FSO','policy','The organization reviews training plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-14.11','The organization being inspected/assessed reviews training plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews training plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.'), ('003009','draft','2013-08-29','DISA FSO','policy','The organization reviews monitoring plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-14.12','The organization being inspected/assessed reviews monitoring plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions. The organization must maintain a record of reviews.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews monitoring plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.'), ('003010','draft','2013-08-29','DISA FSO','policy','The organization establishes and institutionalizes contact with selected groups and associations within the security community to facilitate ongoing security education and training for organizational personnel.','PM-15.1','The organization being inspected/assessed establishes and institutionalizes contact with selected groups and associations within the security community to facilitate ongoing security education and training for organizational personnel.','The organization conducting the inspection/assessment obtains and examines artifacts showing contact to ensure the organization being inspected/assessed establishes and institutionalizes contact with selected groups and associations within the security community to facilitate ongoing security education and training for organizational personnel.'), ('003011','draft','2013-08-29','DISA FSO','policy','The organization establishes and institutionalizes contact with selected groups and associations within the security community to maintain currency with recommended security practices, techniques, and technologies.','PM-15.2','The organization being inspected/assessed establishes and institutionalizes contact with selected groups and associations within the security community to maintain currency with recommended security practices, techniques, and technologies.','The organization conducting the inspection/assessment obtains and examines artifacts showing contact to ensure the organization being inspected/assessed establishes and institutionalizes contact with selected groups and associations within the security community to maintain currency with recommended security practices, techniques, and technologies.'), ('003012','draft','2013-08-29','DISA FSO','policy','The organization establishes and institutionalizes contact with selected groups and associations within the security community to share current security-related information including threats, vulnerabilities, and incidents.','PM-15.3','The organization being inspected/assessed establishes and institutionalizes contact with selected groups and associations within the security community to share current security-related information including threats, vulnerabilities, and incidents.','The organization conducting the inspection/assessment obtains and examines artifacts showing contact to ensure the organization being inspected/assessed establishes and institutionalizes contact with selected groups and associations within the security community to share current security-related information including threats, vulnerabilities, and incidents.'), ('003013','draft','2013-08-29','DISA FSO','policy','The organization implements a threat awareness program that includes a cross-organization information-sharing capability.','PM-16.1','The organization being inspected/assessed documents and implements a threat awareness program that includes a cross-organization information-sharing capability.','The organization conducting the inspection/assessment obtains and examines the documented threat awareness program to ensure the organization being inspected/assessed implements a threat awareness program that includes a cross-organization information-sharing capability.'), ('003014','draft','2013-08-30','DISA FSO','technical','The information system enforces organization-defined mandatory access control policies over all subjects and objects.','AC-3(3).11','The organization being inspected/assessed configures the information system to enforce mandatory access control policies defined in AC-3 (3), CCI 2153 over all subjects and objects. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 3014.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to enforce mandatory access control policies defined in AC-3 (3), CCI 2153 over all subjects and objects. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 3014.'), ('003015','draft','2013-08-30','DISA FSO','policy','The mandatory access control policy specifies that organization-defined subjects may explicitly be granted organization-defined privileges such that they are not limited by some or all of the mandatory access control constraints.','AC-3(3).12','The organization being inspected/assessed configures the information system to explicitly grant privileges defined in AC-3 (3), CCI 2162 such that they are not limited by some or all of the mandatory access control constraints. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 3015.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to explicitly grant privileges defined in AC-3 (3), CCI 2162 such that they are not limited by some or all of the mandatory access control constraints. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 3015.'), ('003016','draft','2013-09-12','DISA FSO','policy','The organization, upon termination of individual employment, notifies organization-defined personnel or roles within an organization-defined time period.','PS-4.9','The organization being inspected/assessed notifies at a minimum, the ISSO and personnel responsible for revoking credentials immediately or within 24 hours upon termination of individual employment. The organization must maintain records of termination notification. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials. DoD has defined the time period as immediately or within 24 hours.','The organization conducting the inspection/assessment obtains and examines records of termination notification to ensure the organization being inspected/assessed notifies at a minimum, the ISSO and personnel responsible for revoking credentials immediately or within 24 hours upon termination of individual employment. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials. DoD has defined the time period as immediately or within 24 hours.'), ('003017','draft','2013-09-12','DISA FSO','policy','The organization defines the personnel or roles to whom a personnel security policy is disseminated.','PS-1.1','DoD has defined the roles as organizational personnel with access control responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as organizational personnel with access control responsibilities.'), ('003018','draft','2013-09-12','DISA FSO','policy','The organization defines the personnel or roles to whom the personnel security procedures are disseminated.','PS-1.2','DoD has defined the roles as organizational personnel with access control responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as organizational personnel with access control responsibilities.'), ('003019','draft','2013-09-12','DISA FSO','policy','The organization ensures that individuals accessing an information system processing, storing, or transmitting information requiring special protection have valid access authorizations that are demonstrated by assigned official government duties.','PS-3(3).1','The organization being inspected/assessed documents and implements a process to ensure that individuals accessing an information system processing, storing, or transmitting information requiring special protection have valid access authorizations that are demonstrated by assigned official government duties.','The organization conducting the inspection/assessment obtains and examines the documented process and a sampling of access authorizations to ensure individuals accessing an information system processing, storing, or transmitting information requiring special protection have valid access authorizations that are demonstrated by assigned official government duties.'), ('003020','draft','2013-09-12','DISA FSO','policy','The organization ensures that individuals accessing an information system processing, storing, or transmitting information requiring special protection satisfy organization-defined additional personnel screening criteria.','PS-3(3).2','The organization being inspected/assessed documents and implements a process to ensure that individuals accessing an information system processing, storing, or transmitting information requiring special protection satisfy additional personnel screening criteria defined in PS-3 (3), CCI 3021.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process to ensure that individuals accessing an information system processing, storing, or transmitting information requiring special protection satisfy additional personnel screening criteria defined in PS-3 (3), CCI 3021.'), ('003021','draft','2013-09-12','DISA FSO','policy','The organization defines additional personnel screening criteria that individuals accessing an information system processing, storing, or transmitting information requiring protection must satisfy.','PS-3(3).3','The organization being inspected/assessed defines and documents additional personnel screening criteria that individuals accessing an information system processing, storing, or transmitting information requiring protection must satisfy. DoD has determined the additional personnel screening criteria is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented additional personnel screening criteria to ensure the organization being inspected/assessed defines additional personnel screening criteria that individuals accessing an information system processing, storing, or transmitting information requiring protection must satisfy. DoD has determined the additional personnel screening criteria is not appropriate to define at the Enterprise level.'), ('003022','draft','2013-09-12','DISA FSO','policy','The organization defines the time period within which to disable information system access upon termination of individual employment.','PS-4.2','DoD has defined the time period as immediately.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediately.'), ('003023','draft','2013-09-12','DISA FSO','policy','The organization, upon termination of individual employment, terminates/revokes any authenticators/credentials associated with the individual.','PS-4.3','The organization being inspected/assessed documents and implements a process to terminate/revoke any authenticators/credentials associated with the individual upon termination of individual employment. The organization must maintain records of termination/revocation of any authenticators/credentials.','The organization conducting the inspection/assessment obtains and examines the documented process as well as a sampling of records of termination/revocation of any authenticators/credentials to ensure the organization being inspected/assessed terminates/revokes any authenticators/credentials associated with the individual upon termination of individual employment.'), ('003024','draft','2013-09-12','DISA FSO','policy','The organization defines information security topics to be discussed while conducting exit interviews.','PS-4.5','The organization being inspected/assessed defines and documents information security topics to be discussed while conducting exit interviews. DoD has determined the information security topics are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information security topics to ensure the organization being inspected/assessed defines information security topics to be discussed while conducting exit interviews. DoD has determined the information security topics are not appropriate to define at the Enterprise level.'), ('003025','draft','2013-09-12','DISA FSO','policy','The organization defines personnel or roles to notify upon termination of individual employment.','PS-4.10','DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials.'), ('003026','draft','2013-09-12','DISA FSO','policy','The organization defines the time period within which to notify organization-defined personnel or roles upon termination of individual employment.','PS-4.11','DoD has defined the time period as immediately or within 24 hours.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediately or within 24 hours.'), ('003027','draft','2013-09-12','DISA FSO','policy','The organization notifies terminated individuals of applicable, legally binding post-employment requirements for the protection of organizational information.','PS-4(1).1','The organization being inspected/assessed notifies terminated individuals of applicable, legally binding post-employment requirements for the protection of organizational information. The organization must maintain a record of notifications of post-employment requirements.','The organization conducting the inspection/assessment obtains and examines the record of notifications of post-employment requirements to ensure the organization being inspected/assessed notifies terminated individuals of applicable, legally binding post-employment requirements for the protection of organizational information.'), ('003028','draft','2013-09-12','DISA FSO','policy','The organization requires terminated individuals to sign an acknowledgment of post-employment requirements as part of the organizational termination process.','PS-4(1).2','The organization being inspected/assessed documents within their personnel security procedures the requirement for terminated individuals to sign an acknowledgment of post-employment requirements as part of the organizational termination process.','The organization conducting the inspection/assessment obtains and examines the personnel security procedures and a sampling of signed acknowledgments of post-employment requirements to ensure the organization being inspected/assessed requires terminated individuals to sign an acknowledgment of post-employment requirements as part of the organizational termination process.'), ('003029','draft','2013-09-12','DISA FSO','policy','The organization employs automated mechanisms to notify organization-defined personnel or roles upon termination of an individual.','PS-4(2).1','The organization being inspected/assessed implements automated mechanisms to notify at a minimum, the ISSO and personnel responsible for revoking credentials upon termination of an individual. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials.','The organization conducting the inspection/assessment examines the configuration of the automated mechanism and any records of notification sent to ensure the organization being inspected/assessed implements automated mechanisms to notify at a minimum, the ISSO and personnel responsible for revoking credentials upon termination of an individual. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials.'), ('003030','draft','2013-09-12','DISA FSO','policy','The organization defines the personnel or roles to be notified by automated mechanism upon termination of an individual.','PS-4(2).2','DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for revoking credentials.'), ('003031','draft','2013-09-12','DISA FSO','policy','The organization modifies access authorization as needed to correspond with any changes in operational need due to reassignment or transfer.','PS-5.5','The organization being inspected/assessed documents and implements a process to modify access authorization as needed to correspond with any changes in operational need due to reassignment or transfer.','The organization conducting the inspection/assessment obtains and examines the documented process and a sampling of accounts of users recently transferred or reassigned to ensure the organization being inspected/assessed modifies access authorization as needed to correspond with any changes in operational need due to reassignment or transfer.'), ('003032','draft','2013-09-12','DISA FSO','policy','The organization notifies organization-defined personnel or roles within an organization-defined time period when individuals are transferred or reassigned to other positions within the organization.','PS-5.6','The organization being inspected/assessed notifies at a minimum, the ISSO and personnel responsible for transferring credentials within 24 hours when individuals are transferred or reassigned to other positions within the organization. The organization must maintain records of transfer/reassignment notifications. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials. DoD has defined the time period as within 24 hours.','The organization conducting the inspection/assessment obtains and examines records of transfer/reassignment notifications to ensure the organization being inspected/assessed notifies at a minimum, the ISSO and personnel responsible for transferring credentials within 24 hours when individuals are transferred or reassigned to other positions within the organization. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials. DoD has defined the time period as within 24 hours.'), ('003033','draft','2013-09-12','DISA FSO','policy','The organization defines personnel or roles to be notified when individuals are transferred or reassigned to other positions within the organization.','PS-5.7','DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials.'), ('003034','draft','2013-09-12','DISA FSO','policy','The organization defines the time period within which organization-defined personnel or roles are to be notified when individuals are transferred or reassigned to other positions within the organization.','PS-5.8','DoD has defined the time period as immediately.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediately.'), ('003035','draft','2013-09-12','DISA FSO','policy','The organization develops and documents access agreements for organizational information systems.','PS-6.1','The organization being inspected/assessed develops and documents access agreements for organizational information systems.','The organization conducting the inspection/assessment obtains and examines the documented access agreements to ensure the organization being inspected/assessed develops and documents access agreements for organizational information systems.'), ('003036','draft','2013-09-12','DISA FSO','policy','The organization ensures that individuals requiring access to organizational information and information systems re-sign access agreements to maintain access to organizational information systems when access agreements have been updated or in accordance with organization-defined frequency.','PS-6.5','The organization being inspected/assessed requires that individuals re-sign access agreements to maintain access to organizational information systems when access agreements have been updated or when there is a change to the user\'s level of access.\n\nDoD has defined the frequency as when there is a change to the user\'s level of access.','The organization conducting the inspection/assessment obtains and examines a sampling of re-signed access agreements to ensure the organization being inspected/assessed requires that individuals re-sign access agreements to maintain access to organizational information systems when access agreements have been updated or when there is a change to the user\'s level of access.\n\nDoD has defined the frequency as when there is a change to the user\'s level of access.'), ('003037','draft','2013-09-12','DISA FSO','policy','The organization defines the frequency for individuals requiring access to organization information and information systems to re-sign access agreements.','PS-6.6','DoD has defined the frequency as when there is a change to the user\'s level of access.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as when there is a change to the user\'s level of access.'), ('003038','draft','2013-09-12','DISA FSO','policy','The organization notifies individuals of applicable, legally binding post-employment requirements for protection of organizational information.','PS-6(3).1','The organization being inspected/assessed notifies individuals of applicable, legally binding post-employment requirements for protection of organizational information. The organization must maintain records of notifications of post-employment requirements for protection of organizational information.','The organization conducting the inspection/assessment obtains and examines the records of notifications of post-employment requirements for protection of organizational information to ensure the organization being inspected/assessed notifies individuals of applicable, legally binding post-employment requirements for protection of organizational information.'), ('003039','draft','2013-09-12','DISA FSO','policy','The organization requires individuals to sign an acknowledgement of legally binding post-employment requirements for protection of organizational information, if applicable, as part of granting initial access to covered information.','PS-6(3).2','The organization being inspected/assessed documents and implements a process to require individuals to sign an acknowledgement of legally binding post-employment requirements for protection of organizational information, if applicable, as part of granting initial access to covered information.','The organization conducting the inspection/assessment obtains and examines the documented process and a sampling of signed acknowledgements to ensure the organization being inspected/assessed requires individuals to sign an acknowledgement of legally binding post-employment requirements for protection of organizational information, if applicable, as part of granting initial access to covered information.'), ('003040','draft','2013-09-12','DISA FSO','policy','The organization requires third-party providers to comply with personnel security policies and procedures established by the organization.','PS-7.2','The organization being inspected/assessed documents and implements a process to require third-party providers to comply with personnel security policies and procedures established by the organization.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires third-party providers to comply with personnel security policies and procedures established by the organization.'), ('003041','draft','2013-09-12','DISA FSO','policy','The organization requires third-party providers to notify organization-defined personnel or roles of any personnel transfers or terminations of third-party personnel who possess organizational credentials and/or badges, or who have information system privileges within an organization-defined time period.','PS-7.4','The organization being inspected/assessed documents and implements a process to require third-party providers to notify at a minimum, the ISSO and personnel responsible for transferring credentials of any personnel transfers or terminations of third-party personnel who possess organizational credentials and/or badges, or who have information system privileges immediately. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials. DoD has defined the time period as immediately.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires third-party providers to notify at a minimum, the ISSO and personnel responsible for transferring credentials of any personnel transfers or terminations of third-party personnel who possess organizational credentials and/or badges, or who have information system privileges immediately. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials. DoD has defined the time period as immediately.'), ('003042','draft','2013-09-12','DISA FSO','policy','The organization defines personnel or roles whom third-party providers are to notify when third-party personnel who possess organizational credentials and /or badges or who have information system privileges are transferred or terminated.','PS-7.5','DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO and personnel responsible for transferring credentials.'), ('003043','draft','2013-09-12','DISA FSO','policy','The organization defines the time period for third-party providers to notify organization-defined personnel or roles when third-party personnel who possess organizational credentials and /or badges or who have information system privileges are transferred or terminated.','PS-7.6','DoD has defined the time period as immediately.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediately.'), ('003044','draft','2013-09-12','DISA FSO','policy','The organization notifies organization-defined personnel or roles within an organization-defined time period when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.','PS-8.3','The organization being inspected/assessed notifies at a minimum, the ISSO immediately when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction. The organization must maintain records of notifications of employee sanctions. DoD has defined the personnel or roles as at a minimum, the ISSO. DoD has defined the time period as immediately.','The organization conducting the inspection/assessment obtains and examines the records of notifications of employee sanctions to ensure the organization being inspected/assessed notifies at a minimum, the ISSO immediately when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction. DoD has defined the personnel or roles as at a minimum, the ISSO. DoD has defined the time period as immediately.'), ('003045','draft','2013-09-12','DISA FSO','policy','The organization defines personnel or roles who are to be notified when a formal employee sanctions process is initiated.','PS-8.4','DoD has defined the personnel or roles as at a minimum, the ISSO.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO.'), ('003046','draft','2013-09-12','DISA FSO','policy','The organization defines the time period within which to notify organization-defined personnel or roles when a formal employee sanctions process is initiated.','PS-8.2','DoD has defined the time period as immediately.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the time period as immediately.'), ('003047','draft','2013-09-23','DISA FSO','policy','The organization defines the personnel or roles to whom a security planning policy is disseminated.','PL-1.1','DoD has defined the roles as all organizational personnel with planning responsibilities or information security responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as all personnel organizational personnel with planning responsibilities or information security responsibilities.'), ('003048','draft','2013-09-23','DISA FSO','policy','The organization defines the personnel or roles to whom the security planning procedures are disseminated.','PL-1.2','DoD has defined the roles as all organizational personnel with planning responsibilities or information security responsibilities.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the roles as all organizational personnel with planning responsibilities or information security responsibilities.'), ('003049','draft','2013-09-23','DISA FSO','policy','The organization develops a security plan for the information system.','PL-2.1','The organization being inspected/assessed develops and documents a security plan for the information system.','The organization conducting the inspection/assessment obtains and examines the documented security plan to ensure the organization being inspected/assessed develops a security plan for the information system.'), ('003050','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system is consistent with the organization^s enterprise architecture.','PL-2.2','The organization being inspected/assessed defines a security plan for the information system which is consistent with the organization\'s enterprise architecture.','The organization conducting the inspection/assessment obtains and examines the security plan and the enterprise architecture to ensure the organization\'s security plan for the information system is consistent with the organization\'s enterprise architecture.'), ('003051','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system explicitly defines the authorization boundary for the system.','PL-2.3','The organization being inspected/assessed explicitly defines within the security plan the authorization boundary for the system.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed explicitly defines within the security plan the authorization boundary for the system.'), ('003052','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system describes the operational context of the information system in terms of missions and business processes.','PL-2.4','The organization being inspected/assessed describes within the security plan the operational context of the information system in terms of missions and business processes.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed describes within the security plan the operational context of the information system in terms of missions and business processes.'), ('003053','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system provides the security categorization of the information system, including supporting rationale.','PL-2.5','The organization being inspected/assessed defines within the security plan the security categorization of the information system including supporting rationale.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed defines within the security plan the security categorization of the information system including supporting rationale.'), ('003054','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system describes the operational environment for the information system and relationships with, or connections to, other information systems.','PL-2.6','The organization being inspected/assessed describes within the security plan the operational environment for the information system and relationships with or connections to other information systems.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed describes within the security plan the operational environment for the information system and relationships with or connections to other information systems.'), ('003055','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system provides an overview of the security requirements for the system.','PL-2.7','The organization being inspected/assessed documents within the security plan, an overview of the security requirements for the system.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed their security plan for the information system provides an overview of the security requirements for the system'), ('003056','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system identifies any relevant overlays, if applicable.','PL-2.8','The organization being inspected/assessed identifies within the security plan any relevant overlays, if applicable.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed identifies within the security plan any relevant overlays, if applicable.'), ('003057','draft','2013-09-23','DISA FSO','policy','The organization^s security plan for the information system describes the security controls in place or planned for meeting those requirements, including a rationale for the tailoring decisions.','PL-2.9','The organization being inspected/assessed describes within the security plan the security controls in place or planned for meeting those requirements including a rationale for the tailoring and supplementation decisions.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed describes within the security plan the security controls in place or planned for meeting those requirements including a rationale for the tailoring and supplementation decisions.'), ('003058','deprecated','2013-09-23','DISA FSO','policy','The organization distributes copies of the security plan to organization-defined personnel or roles.',NULL,NULL,NULL), ('003059','draft','2013-09-23','DISA FSO','policy','The organization distributes copies of the security plan to organization-defined personnel or roles.','PL-2.11','The organization being inspected/assessed distributes copies of the security plan to, at a minimum, the ISSO, ISSM and SCA via the organization\'s information sharing portal. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.','The organization conducting the inspection/assessment obtains and examines the security plan via the organization\'s information sharing portal to ensure the organization being inspected/assessed distributes copies of the security plan to at a minimum, the ISSO, ISSM and SCA via the organization\'s information sharing portal. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.'), ('003060','draft','2013-09-23','DISA FSO','policy','The organization defines the personnel or roles to whom copies of the security plan are distributed.','PL-2.12','DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.'), ('003061','draft','2013-09-23','DISA FSO','policy','The organization communicates subsequent changes to the security plan to organization-defined personnel or roles.','PL-2.13','The organization being inspected/assessed distributes changes to the security plan to, at a minimum, the ISSO, ISSM and SCA via the organization\'s information sharing portal. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.','The organization conducting the inspection/assessment examines the organization\'s information sharing portal to ensure at a minimum, the ISSO, ISSM and SCA have been provided changes to the security plan. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.'), ('003062','draft','2013-09-23','DISA FSO','policy','The organization defines the personnel or roles to whom changes to the security plan are communicated.','PL-2.14','DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM and SCA.'), ('003063','draft','2013-09-23','DISA FSO','policy','The organization protects the security plan from unauthorized disclosure.','PL-2.18','The organization being inspected/assessed documents and implements a process to protect the security plan from unauthorized disclosure.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed protects the security plan from unauthorized disclosure.'), ('003064','draft','2013-09-23','DISA FSO','policy','The organization protects the security plan from unauthorized modification.','PL-2.19','The organization being inspected/assessed documents and implements a process to protect the security plan from unauthorized modification.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed protects the security plan from unauthorized modification.'), ('003065','draft','2013-09-23','DISA FSO','policy','The organization plans and coordinates security-related activities affecting the information system with organization-defined individuals or groups before conducting such activities in order to reduce the impact on other organizational entities.','PL-2(3).1','The organization being inspected/assessed defines and documents within the security plan, the planning and coordination of security-related activities affecting the information system with individuals or groups defined in PL-2 (3), CCI 3067 before conducting such activities in order to reduce the impact on other organizational entities.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed plans and coordinates of security-related activities affecting the information system with individuals or groups defined in PL-2 (3), CCI 3067 before conducting such activities in order to reduce the impact on other organizational entities.'), ('003066','deprecated','2013-09-23','DISA FSO','policy','The organization defines the individuals or groups with whom security-related activities are planned and coordinated.',NULL,NULL,NULL), ('003067','draft','2013-09-23','DISA FSO','policy','The organization defines the individuals or groups with whom security-related activities are planned and coordinated.','PL-2(3).2','The organization being inspected/assessed defines and documents the individuals or groups with whom security-related activities are planned and coordinated. DoD has determined the individuals or groups are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented individuals or groups to ensure the organization being inspected/assessed defines the individuals or groups with whom security-related activities are planned and coordinated. DoD has determined the individuals or groups are not appropriate to define at the Enterprise level.'), ('003068','draft','2013-09-23','DISA FSO','policy','The organization reviews and updates the rules of behavior in accordance with organization-defined frequency.','PL-4.4','The organization being inspected/assessed reviews and updates the rules of behavior annually. The organization must maintain an audit trail of reviews and updates. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates the rules of behavior annually. DoD has defined the frequency as annually.'), ('003069','draft','2013-09-23','DISA FSO','policy','The organization defines the frequency with which to review and update the rules of behavior.','PL-4.5','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('003070','draft','2013-09-23','DISA FSO','policy','The organization requires individuals who have signed a previous version of the rules of behavior to read and resign when the rules of behavior are revised/updated.','PL-4.6','The organization being inspected/assessed documents and implements a process to require individuals who have signed a previous version of the rules of behavior to read and resign when the rules of behavior are revised/updated. The signed acknowledgment portion of this control may be satisfied by the security awareness training and role-based security training programs conducted by organizations if such training includes rules of behavior.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requires individuals who have signed a previous version of the rules of behavior to read and resign when the rules of behavior are revised/updated.'), ('003071','draft','2013-09-23','DISA FSO','policy','The organization develops a security Concept of Operations (CONOPS) for the information system containing, at a minimum, how the organization intends to operate the system from the perspective of information security.','PL-7.1','The organization being inspected/assessed develops and documents a security Concept of Operations (CONOPS) for the information system containing at a minimum, how the organization intends to operate the system from the perspective of information security.','The organization conducting the inspection/assessment obtains and examines the security CONOPS to ensure the organization being inspected/assessed develops a security CONOPS for the information system containing at a minimum, how the organization intends to operate the system from the perspective of information security.'), ('003072','draft','2013-09-23','DISA FSO','policy','The organization develops an information security architecture for the information system.','PL-8.1','The organization being inspected/assessed develops and documents an information security architecture for the information system.','The organization conducting the inspection/assessment obtains and examines the documented information security architecture to ensure the organization being inspected/assessed develops an information security architecture for the information system.'), ('003073','draft','2013-09-23','DISA FSO','policy','The organization^s information security architecture for the information system describes the overall philosophy, requirements, and approach to be taken with regard to protecting the confidentiality, integrity, and availability of organizational information.','PL-8.2','The organization being inspected/assessed describes within the information security architecture for the information system, the overall philosophy, requirements, and approach to be taken with regard to protecting the confidentiality, integrity, and availability of organizational information.','The organization conducting the inspection/assessment obtains and examines the information security architecture to ensure the organization being inspected/assessed describes within the information security architecture for the information system, the overall philosophy, requirements, and approach to be taken with regard to protecting the confidentiality, integrity, and availability of organizational information.'), ('003074','draft','2013-09-23','DISA FSO','policy','The organization^s information security architecture for the information system describes how the information security architecture is integrated into and supports the enterprise architecture.','PL-8.3','The organization being inspected/assessed describes within the information security architecture for the information system, how the information security architecture is integrated into and supports the enterprise architecture.','The organization conducting the inspection/assessment obtains and examines the information security architecture to ensure the organization being inspected/assessed describes within the information security architecture for the information system, how the information security architecture is integrated into and supports the enterprise architecture.'), ('003075','draft','2013-09-23','DISA FSO','policy','The organization^s information security architecture for the information system describes any information security assumptions about, and dependencies on, external services.','PL-8.4','The organization being inspected/assessed describes within the information security architecture for the information system, any information security assumptions about, and dependencies on, external services.','The organization conducting the inspection/assessment obtains and examines the information security architecture to ensure the organization being inspected/assessed describes within the information security architecture for the information system, any information security assumptions about, and dependencies on, external services.'), ('003076','draft','2013-09-23','DISA FSO','policy','The organization reviews and updates the information security architecture in accordance with organization-defined frequency to reflect updates in the enterprise architecture.','PL-8.5','The organization being inspected/assessed reviews and updates the information security architecture annually to reflect updates in the enterprise architecture. The organization must maintain an audit trail of reviews and updates. DoD has defined the frequency as annually.','The organization conducting the inspection/assessment obtains and examines the audit trail of reviews and updates to ensure the organization being inspected/assessed reviews and updates the information security architecture annually to reflect updates in the enterprise architecture. DoD has defined the frequency as annually.'), ('003077','draft','2013-09-23','DISA FSO','policy','The organization defines the frequency with which to review and update the information system architecture.','PL-8.6','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as annually.'), ('003078','draft','2013-09-23','DISA FSO','policy','The organization ensures that planned information security architecture changes are reflected in the security plan.','PL-8.7','The organization being inspected/assessed includes planned information security architecture changes in the security plan.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed includes planned information security architecture changes in the security plan.'), ('003079','draft','2013-09-23','DISA FSO','policy','The organization ensures that planned information security architecture changes are reflected in the security Concept of Operations (CONOPS).','PL-8.8','The organization being inspected/assessed includes planned information security architecture changes in the security Concept of Operations (CONOPS).','The organization conducting the inspection/assessment obtains and examines security CONOPS to ensure the organization being inspected/assessed includes planned information security architecture changes in the security CONOPS.'), ('003080','draft','2013-09-23','DISA FSO','policy','The organization ensures that planned information security architecture changes are reflected in organizational procurements/acquisitions.','PL-8.9','The organization being inspected/assessed includes planned information security architecture changes in organizational procurements/acquisitions.','The organization conducting the inspection/assessment obtains and examines a sampling of procurement materials to ensure the organization being inspected/assessed includes planned information security architecture changes in organizational procurements/acquisitions.'), ('003081','draft','2013-09-23','DISA FSO','policy','The organization designs its security architecture using a defense-in-depth approach that allocates organization-defined security safeguards to organization-defined locations.','PL-8(1).1','The organization being inspected/assessed designs and documents its security architecture using a defense-in-depth approach that allocates security safeguards defined in PL-8 (1), CCI 3083 to locations defined in PL-8 (1), CCI 3085.','The organization conducting the inspection/assessment obtains and examines the security architecture to ensure the organization being inspected/assessed designs its security architecture using a defense-in-depth approach that allocates security safeguards defined in PL-8 (1), CCI 3083 to locations defined in PL-8 (1), CCI 3085.'), ('003082','draft','2013-09-23','DISA FSO','policy','The organization designs its security architecture using a defense-in-depth approach that allocates organization-defined security safeguards to organization-defined architectural layers.','PL-8(1).2','The organization being inspected/assessed designs and documents its security architecture using a defense-in-depth approach that allocates security safeguards defined in PL-8 (1), CCI 3084 to architectural layers defined in PL-8 (1), CCI 3086.','The organization conducting the inspection/assessment obtains and examines the security architecture to ensure the organization being inspected/assessed designs its security architecture using a defense-in-depth approach that allocates security safeguards defined in PL-8 (1), CCI 3084 to architectural layers defined in PL-8 (1), CCI 3086.'), ('003083','draft','2013-09-23','DISA FSO','policy','The organization defines the security safeguards to be allocated to organization-defined locations.','PL-8(1).3','The organization being inspected/assessed defines and documents the security safeguards to be allocated to organization-defined locations. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be allocated to organization-defined locations. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003084','draft','2013-09-23','DISA FSO','policy','The organization defines the security safeguards to be allocated to organization-defined architectural layers.','PL-8(1).4','The organization being inspected/assessed defines and documents the security safeguards to be allocated to organization-defined architectural layers. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be allocated to organization-defined architectural layers. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003085','draft','2013-09-23','DISA FSO','policy','The organization defines the locations to which it allocates organization-defined security safeguards in the security architecture.','PL-8(1).5','The organization being inspected/assessed defines and documents the locations to which it allocates organization-defined security safeguards in the security architecture. DoD has determined the locations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented locations to ensure the organization being inspected/assessed defines the locations to which it allocates organization-defined security safeguards in the security architecture. DoD has determined the locations are not appropriate to define at the Enterprise level.'), ('003086','draft','2013-09-23','DISA FSO','policy','The organization defines the architectural layers to which it allocates organization-defined security safeguards in the security architecture.','PL-8(1).6','The organization being inspected/assessed defines and documents the architectural layers to which it allocates organization-defined security safeguards in the security architecture. DoD has determined the architectural layers are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented architectural layers to ensure the organization being inspected/assessed defines the architectural layers to which it allocates organization-defined security safeguards in the security architecture. DoD has determined the architectural layers are not appropriate to define at the Enterprise level.'), ('003087','draft','2013-09-23','DISA FSO','policy','The organization designs its security architecture using a defense-in-depth approach that ensures that the allocated security safeguards operate in a coordinated and mutually reinforcing manner.','PL-8(1).7','The organization being inspected/assessed designs and documents its security architecture using a defense-in-depth approach that ensures that the allocated security safeguards operate in a coordinated and mutually reinforcing manner.','The organization conducting the inspection/assessment obtains and examines security architecture to ensure the organization being inspected/assessed designs its security architecture using a defense-in-depth approach that ensures that the allocated security safeguards operate in a coordinated and mutually reinforcing manner.'), ('003088','draft','2013-09-23','DISA FSO','policy','The organization requires that organization-defined security safeguards allocated to organization-defined locations and architectural layers be obtained from different suppliers.','PL-8(2).1','The organization being inspected/assessed obtains from different suppliers security safeguards defined in PL-8 (1), CCIs 3083 and 3084 allocated to locations and architectural layers defined in PL-8 (1) CCIs 3085 and 3086.','The organization conducting the inspection/assessment obtains and examines procurement records to ensure that different suppliers are used to procure security safeguards defined in PL-8 (1), CCIs 3083 and 3084 allocated to locations and architectural layers defined in PL-8 (1) CCIs 3085 and 3086.'), ('003089','draft','2013-09-23','DISA FSO','policy','The organization defines the personnel or roles to whom the system and services acquisition policy is disseminated.','SA-1.1','DoD has defined the personnel or roles as all personnel.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all personnel.'), ('003090','draft','2013-09-23','DISA FSO','policy','The organization defines the personnel or roles to whom procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are disseminated.','SA-1.2','DoD has defined the personnel or roles as all personnel.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all personnel.'), ('003091','draft','2013-09-23','DISA FSO','policy','The organization determines information security requirements for the information system or information system service in mission/business process planning.','SA-2.1','The organization being inspected/assessed determines and documents information security requirements for the information system or information system service in mission/business process planning.','The organization conducting the inspection/assessment obtains and examines the documented information security requirements to ensure the organization being inspected/assessed determines information security requirements for the information system or information system service in mission/business process planning.'), ('003092','draft','2013-09-23','DISA FSO','policy','The organization defines a system development life cycle that is used to manage the information system.','SA-3.2','The organization being inspected/assessed defines and documents a system development life cycle that is used to manage the information system. DoD has determined the system development life cycle is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented system development life cycle to ensure the organization being inspected/assessed defines a system development life cycle that is used to manage the information system. DoD has determined the system development life cycle is not appropriate to define at the Enterprise level.'), ('003093','draft','2013-09-23','DISA FSO','policy','The organization integrates the organizational information security risk management process into system development life cycle activities.','SA-3.5','The organization being inspected/assessed documents and implements a process to integrate the organizational information security risk management process into system development life cycle activities.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed integrates the organizational information security risk management process into system development life cycle activities.'), ('003094','draft','2013-09-23','DISA FSO','policy','The organization includes the security functional requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.1','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, the security functional requirements, explicitly or by reference, IAW DoDI 8580.1.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes the security functional requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs including DoDI 8580.1.'), ('003095','draft','2013-09-23','DISA FSO','policy','The organization includes the security strength requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.2','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, the security strength requirements, explicitly or by reference, IAW DoDI 8580.1.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes the security strength requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs including DoDI 8580.1.'), ('003096','draft','2013-09-23','DISA FSO','policy','The organization includes the security assurance requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.3','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, the security assurance requirements, explicitly or by reference, IAW DoDI 8580.1.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes the security assurance requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs including DoDI 8580.1.'), ('003097','draft','2013-09-23','DISA FSO','policy','The organization includes the security-related documentation requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.4','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, the security-related documentation requirements, explicitly or by reference.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes the security-related documentation requirements, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.'), ('003098','draft','2013-09-23','DISA FSO','policy','The organization includes requirements for protecting security-related documentation, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.5','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, requirements for protecting security-related documentation, explicitly or by reference.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes requirements for protecting security-related documentation, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.'), ('003099','draft','2013-09-23','DISA FSO','policy','The organization includes description of the information system development environment and environment in which the system is intended to operate, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.6','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, a description of the information system development environment and environment in which the system is intended to operate, explicitly or by reference.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes a description of the information system development environment and environment in which the system is intended to operate, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.'), ('003100','draft','2013-09-23','DISA FSO','policy','The organization includes acceptance criteria, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.','SA-4.7','The organization being inspected/assessed documents within contracts/agreements for the information system, system component, or information system service, acceptance criteria, explicitly or by reference.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed includes acceptance criteria, explicitly or by reference, in the acquisition contract for the information system, system component, or information system service in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, guidelines, and organizational mission/business needs.'), ('003101','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide design information for the security controls to be employed that includes security-relevant external system interfaces, high-level design, low-level design, source code, hardware schematics, and/or organization-defined design information at an organization-defined level of detail.','SA-4(2).1','The organization being inspected/assessed defines and documents in contracts/agreements, the design information for the security controls that the developer will employ in the information system to include security-relevant external system interfaces, high-level design, low-level design, source code, hardware schematics and/or design/information defined in SA-4 (2), CCI 3103 at the level of detail defined in SA-4 (2), CCI 3105.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires the developer of the information system, system component, or information system service to provide design information for the security controls to be employed that includes security-relevant external system interfaces, high-level design, low-level design, source code and/or hardware schematics and/or design/information defined in SA-4 (2), CCI 3103 at the level of detail defined in SA-4 (2), CCI 3105.'), ('003102','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide implementation information for the security controls to be employed that includes security-relevant external system interfaces, high-level design, low-level design, source code, hardware schematics, and/or organization-defined implementation information at an organization-defined level of detail.','SA-4(2).2','The organization being inspected/assessed defines and documents in contracts/agreements, the implementation information for the security controls that the developer will employ in the information system to include security-relevant external system interfaces, high-level design, low-level design, source code and/or hardware schematics and/or implementation information defined in SA-4 (2), CCI 3104 at the level of detail defined in SA-4 (2), CCI 3106.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires the developer of the information system, system component, or information system service to provide implementation information for the security controls to be employed that includes security-relevant external system interfaces, high-level design, low-level design, source code and/or hardware schematics and/or implementation information defined in SA-4 (2), CCI 3104 at the level of detail defined in SA-4 (2), CCI 3106.'), ('003103','draft','2013-09-23','DISA FSO','policy','The organization defines the design information that the developer of the information system, system component, or information system service is required to provide for the security controls to be employed.','SA-4(2).3','The organization being inspected/assessed defines and documents the design information that the developer of the information system, system component, or information system service is required to provide for the security controls to be employed. DoD has determined the design information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented design information to ensure the organization being inspected/assessed defines the design information that the developer of the information system, system component, or information system service is required to provide for the security controls to be employed. DoD has determined the design information is not appropriate to define at the Enterprise level.'), ('003104','draft','2013-09-23','DISA FSO','policy','The organization defines the implementation information that the developer of the information system, system component, or information system service is required to provide for the security controls to be employed.','SA-4(2).4','The organization being inspected/assessed defines and documents the implementation information that the developer of the information system, system component, or information system service is required to provide for the security controls to be employed. DoD has determined the implementation information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented implementation information to ensure the organization being inspected/assessed defines the implementation information that the developer of the information system, system component, or information system service is required to provide for the security controls to be employed. DoD has determined the implementation information is not appropriate to define at the Enterprise level.'), ('003105','draft','2013-09-23','DISA FSO','policy','The organization defines the level of detail for the design information of the security controls that is required to be provided by the developer of the information system, system component, or information system services.','SA-4(2).5','The organization being inspected/assessed defines and documents the level of detail the design information of the security controls is required to be provided by the developer of the information system, system component, or information system services. DoD has determined the level of detail is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of detail to ensure the organization being inspected/assessed defines the level of detail the design information of the security controls is required to be provided by the developer of the information system, system component, or information system services. DoD has determined the level of detail is not appropriate to define at the Enterprise level.'), ('003106','draft','2013-09-23','DISA FSO','policy','The organization defines the level of detail for the implementation information of the security controls that is required to be provided by the developer of the information system, system component, or information system services.','SA-4(2).6','The organization being inspected/assessed defines and documents the level of detail the implementation information of the security controls is required to be provided by the developer of the information system, system component, or information system services. DoD has determined the level of detail is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of detail to ensure the organization being inspected/assessed defines the level of detail the implementation information of the security controls is required to be provided by the developer of the information system, system component, or information system services. DoD has determined the level of detail is not appropriate to define at the Enterprise level.'), ('003107','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to demonstrate the use of a system development life cycle that includes organization-defined state-of-the-practice system/security engineering methods, software development methods, testing/evaluation/validation techniques, and quality control processes.','SA-4(3).1','The organization being inspected/assessed defines and documents within contracts/agreements, a requirement for the developer to demonstrate the use of a system development life cycle that includes the state-of-the-practice system/security engineering methods, software development methods, testing/evaluation/validation techniques, and quality control processes defined in SA-4 (3), CCI 3108.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires the developer of the information system, system component, or information system service to demonstrate the use of a system development life cycle that includes the state-of-the-practice system/security engineering methods, software development methods, testing/evaluation/validation techniques, and quality control processes defined in SA-4 (3), CCI 3108.'), ('003108','draft','2013-09-23','DISA FSO','policy','The organization defines the state-of-the-practice system/security engineering methods, software development methods, testing/evaluation/validation techniques, and quality control processes that the developer of the information system, system component, or information system service is required to include when demonstrating the use of a system development life cycle.','SA-4(3).2','The organization being inspected/assessed defines and documents within contracts/agreements, the requirement for the developer to provide information regarding the state-of-the-practice system/security engineering methods, software development methods, testing/evaluation/validation techniques, and quality control processes.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed defines the state-of-the-practice system/security engineering methods, software development methods, testing/evaluation/validation techniques, and quality control processes that the developer of the information system, system component, or information system service needs to include when demonstrating the use of a system development life cycle.'), ('003109','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to deliver the system, component, or service with organization-defined security configurations implemented.','SA-4(5).1','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer of the information system, system component, or information system service to deliver the system, component, or service with security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.\n\nDoD has defined the security configurations as security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires he developer of the information system, system component, or information system service to deliver the system, component, or service with security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.\n\nDoD has defined the security configurations as security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.'), ('003110','draft','2013-09-23','DISA FSO','policy','The organization defines the security configurations required to be implemented when the developer delivers the information system, system component, or information system service.','SA-4(5).2','DoD has defined the security configurations as security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the security configurations as security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.'), ('003111','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to use the organization-defined security configurations as the default for any subsequent system, component, or service reinstallation or upgrade.','SA-4(5).3','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer of the information system, system component, or information system service to use the applicable requirements from DoDI 8510.01 and STIGs/SRGs as the default for any subsequent system, component, or service reinstallation or upgrade.\n\nDoD has defined the security configurations as security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires the developer of the information system, system component, or information system service to use the applicable requirements from DoDI 8510.01 and STIGs/SRGs as the default for any subsequent system, component, or service reinstallation or upgrade.\n\nDoD has defined the security configurations as security configurations identified by the applicable requirements from DoDI 8510.01 and STIGs/SRGs.'), ('003112','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce a plan for the continuous monitoring of security control effectiveness that contains an organization-defined level of detail.','SA-4(8).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce a plan for the continuous monitoring of security control effectiveness that contains the level of detail defined in SA-4 (8), CCI 3113.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce a plan for the continuous monitoring of security control effectiveness that contains the level of detail defined in SA-4 (8), CCI 3113.'), ('003113','draft','2013-09-23','DISA FSO','policy','The organization defines the level of detail to be contained in the plan for the continuous monitoring of security control effectiveness that the developer of the information system, system component, or information system services is required to produce.','SA-4(8).2','The organization being inspected/assessed defines and documents the level of detail to be contained in the plan for the continuous monitoring of security control effectiveness that the developer of the information system, system component, or information system services is required to produce. DoD has determined the level of detail is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented level of detail to ensure the organization being inspected/assessed defines the level of detail to be contained in the plan for the continuous monitoring of security control effectiveness that the developer of the information system, system component, or information system services is required to produce. DoD has determined the level of detail is not appropriate to define at the Enterprise level.'), ('003114','draft','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to identify early in the system development life cycle, the functions, ports, protocols, and services intended for organizational use.','SA-4(9).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service identify early in the system development life cycle, the functions, ports, protocols, and services intended for organizational use.\n\nPorts identified shall be assessed and planned for in light of DISA\'s PPSM requirements.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service identify early in the system development life cycle, the functions, ports, protocols, and services intended for organizational use.'), ('003115','deprecated','2013-09-23','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to identify early in the system development life cycle, the functions, ports, protocols, and services intended for organizational use.',NULL,NULL,NULL), ('003116','draft','2013-09-23','DISA FSO','policy','The organization employs only information technology products on the FIPS 201-approved products list for Personal Identity Verification (PIV) capability implemented within organizational information systems.','SA-4(10).1','The organization being inspected/assessed employs DoD approved PKI tokens for identity verification.','The organization conducting the inspection/assessment examines the information system to ensure DoD approved PKI tokens are implemented for identity verification.'), ('003117','draft','2013-09-23','DISA FSO','policy','The organization centrally manages organization-defined security controls and related processes.','PL-9.1','DoDI 8500.01, DoDI 8510.01, and CNSSI 1253 meet the DoD requirements for centrally managing security controls and related processes.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and CNSSI 1253.','DoDI 8500.01, DoDI 8510.01, and CNSSI 1253 meet the DoD requirements for centrally managing security controls and related processes.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DoD level policy, DoDI 8500.01 and CNSSI 1253.'), ('003118','draft','2013-09-23','DISA FSO','policy','The organization defines security controls and related processes to be centrally managed.','PL-9.2','DoD has defined the security controls and related processes to be centrally managed as CNSSI 1253, DoDI 8510.01, and DoDI 8500.01.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the security controls and related processes to be centrally managed as CNSSI 1253, DoDI 8510.01, and DoDI 8500.01.'), ('003119','draft','2013-09-23','DISA FSO','policy','The organization employs a technical surveillance countermeasures survey at organization-defined locations on an organization-defined frequency or when organization-defined events or indicators occur.','RA-6.1','The organization being inspected/assessed documents and implements a process to employ a technical surveillance countermeasures survey at locations defined in RA-6, CCI 3120 on a frequency defined in RA-6, CCI 3121 or when events or indicators defined in RA-6, CCI 3122 occur. The organization must maintain a record of surveys.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of surveys to ensure the organization being inspected/assessed employs a technical surveillance countermeasures survey at locations defined in RA-6, CCI 3120 on a frequency defined in RA-6, CCI 3121 or when events or indicators defined in RA-6, CCI 3122 occur.'), ('003120','draft','2013-09-23','DISA FSO','policy','The organization defines the locations where technical surveillance countermeasures surveys are to be employed.','RA-6.2','The organization being inspected/assessed defines and documents the locations where technical surveillance countermeasures surveys are to be employed. DoD has determined the locations are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented locations to ensure the organization being inspected/assessed defines the locations where technical surveillance countermeasures surveys are to be employed. DoD has determined the locations are not appropriate to define at the Enterprise level.'), ('003121','draft','2013-09-23','DISA FSO','policy','The organization defines the frequency on which to employ technical surveillance countermeasures surveys.','RA-6.3','The organization being inspected/assessed defines and documents the frequency on which to employ technical surveillance countermeasures surveys. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency on which to employ technical surveillance countermeasures surveys. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('003122','draft','2013-09-23','DISA FSO','policy','The organization defines the events or indicators upon which technical surveillance countermeasures surveys are to be employed.','RA-6.4','The organization being inspected/assessed defines and documents the events or indicators upon which technical surveillance countermeasures surveys are to be employed. DoD has determined the events or indicators are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented events or indicators to ensure the organization being inspected/assessed defines the events or indicators upon which technical surveillance countermeasures surveys are to be employed. DoD has determined the events or indicators are not appropriate to define at the Enterprise level.'), ('003123','draft','2013-09-24','DISA FSO','technical','The information system implements cryptographic mechanisms to protect the confidentiality of nonlocal maintenance and diagnostic communications.','MA-4(6).2','The organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the confidentiality of nonlocal maintenance and diagnostic communications. For information system components that have applicable STIGs or SRGs, the organization being inspected/assessed must comply with the STIG/SRG guidance that pertains to CCI 3123.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed configures the information system to implement cryptographic mechanisms to protect the confidentiality of nonlocal maintenance and diagnostic communications. For information system components that have applicable STIGs or SRGs, the organization conducting the inspection/assessment evaluates the components to ensure that the organization being inspected/assessed has configured the information system in compliance with the applicable STIGs and SRGs pertaining to CCI 3123.'), ('003124','draft','2013-09-30','DISA FSO','policy','The organization obtains administrator documentation for the information system, system component, or information system service that describes secure configuration of the system, component, or service.','SA-5.1','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide administrator documentation for the information system, system component or information system service that describe secure configuration of the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide administrator documentation for the information system, system component or information system service that describe secure configuration of the system, component, or service.'), ('003125','draft','2013-09-30','DISA FSO','policy','The organization obtains administrator documentation for the information system, system component, or information system service that describes secure installation of the system, component, or service.','SA-5.2','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide administrator documentation for the information system, system component or information system service that describe secure installation of the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide administrator documentation for the information system, system component or information system service that describe secure installation of the system, component, or service.'), ('003126','draft','2013-09-30','DISA FSO','policy','The organization obtains administrator documentation for the information system, system component, or information system service that describes secure operation of the system, component, or service.','SA-5.3','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide administrator documentation for the information system, system component or information system service that describe secure operation of the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide administrator documentation for the information system, system component or information system service that describe secure operation of the system, component, or service.'), ('003127','draft','2013-09-30','DISA FSO','policy','The organization obtains administrator documentation for the information system, system component, or information system services that describes effective use and maintenance of security functions/mechanisms.','SA-5.4','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide administrator documentation for the information system, system component or information system service that describe effective use and maintenance of security functions/mechanisms.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide administrator documentation for the information system, system component or information system service that describe effective use and maintenance of security functions/mechanisms.'), ('003128','draft','2013-09-30','DISA FSO','policy','The organization obtains administrator documentation for the information system, system component, or information system service that describes known vulnerabilities regarding configuration and use of administrative (i.e., privileged) functions.','SA-5.5','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide administrator documentation for the information system, system component or information system service that describe known vulnerabilities regarding configuration and use of administrative (i.e. privileged) functions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide administrator documentation for the information system, system component or information system service that describe known vulnerabilities regarding configuration and use of administrative (i.e. privileged) functions.'), ('003129','draft','2013-09-30','DISA FSO','policy','The organization obtains user documentation for the information system, system component, or information system service that describes user-accessible security functions/mechanisms and how to effectively use those security functions/mechanisms.','SA-5.6','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide user documentation for the information system, system component or information system service that describes user-accessible security functions/mechanisms and how to effectively use those security functions/mechanisms.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide user documentation for the information system, system component or information system service that describes user-accessible security functions/mechanisms and how to effectively use those security functions/mechanisms.'), ('003130','draft','2013-09-30','DISA FSO','policy','The organization obtains user documentation for the information system, system component, or information system service that describes methods for user interaction which enables individuals to use the system, component, or service in a more secure manner.','SA-5.7','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide user documentation for the information system, system component or information system service that describes methods for user interaction which enables individuals to use the system, component, or service in a more secure manner.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide user documentation for the information system, system component or information system service that describes methods for user interaction which enables individuals to use the system, component, or service in a more secure manner.'), ('003131','draft','2013-09-30','DISA FSO','policy','The organization obtains user documentation for the information system, system component, or information system service that describes user responsibilities in maintaining the security of the system, component, or service.','SA-5.8','The organization being inspected/assessed documents within contracts/agreements, requirements that the developer provide user documentation for the information system, system component or information system service that describes user responsibilities in maintaining the security of the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer provide user documentation for the information system, system component or information system service that describes user responsibilities in maintaining the security of the system, component, or service.'), ('003132','draft','2013-09-30','DISA FSO','policy','The organization takes organization-defined actions in response to attempts to obtain either unavailable or nonexistent documentation for the information system, system component, or information system service.','SA-5.9','The organization being inspected/assessed takes actions defined in SA-5, CCI 3133 in response to attempts to obtain either unavailable or nonexistent documentation for information system, system component, or information system service.\n\nThe organization must maintain a record of actions taken.\n\nDoD has determined the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the record of actions taken to ensure the organization being inspected/assessed takes actions defined in SA-5, CCI 3133 in response to attempts to obtain either unavailable or nonexistent documentation for information system, system component, or information system service.\n\nDoD has determined the actions are not appropriate to define at the Enterprise level.'), ('003133','draft','2013-09-30','DISA FSO','policy','The organization defines actions to be taken in response to attempts to obtain either unavailable or nonexistent documentation for the information system, system component, or information system service.','SA-5.10','The organization being inspected/assessed defines and documents actions to be taken in response to attempts to obtain either unavailable or nonexistent documentation for information system, system component, or information system service.\n\nDoD has determined the actions are not appropriate to define at the Enterprise level.','The organization conducting inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed defines action to be taken in response to attempts to obtain either unavailable or nonexistent documentation for information system, system component, or information system service.\n\nDoD has determined the actions are not appropriate to define at the Enterprise level.'), ('003134','draft','2013-09-30','DISA FSO','policy','The organization protects information system, system component, or information system service documentation as required, in accordance with the risk management strategy.','SA-5.12','The organization being inspected/assessed documents and implements processes to store and handle information system, system component, or information system service documentation as required, in accordance with the risk management strategy.','The organization conducting the inspection/assessment obtains and examines the documented processes to ensure the organization being inspected/assessed stores and handles information system, system component, or information system service documentation as required, in accordance with the risk management strategy.'), ('003135','draft','2013-09-30','DISA FSO','policy','The organization distributes information system, system component, or information system service documentation to organization-defined personnel or roles.','SA-5.13','The organization being inspected/assessed distributes information system, system component, or information system service documentation to at a minimum, the ISSO, ISSM, and SCA, via an information sharing capability. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and SCA.','The organization conducting the inspection/assessment obtains and examines the information system, system component, or information system service documentation via the organization\'s information sharing capability to ensure the organization being inspected/assessed distributes information system, system component, or information system service documentation to at a minimum, the ISSO, ISSM, and SCA. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and SCA.'), ('003136','draft','2013-09-30','DISA FSO','policy','The organization defines the personnel or roles to whom information system, system component, or information system service documentation is to be distributed.','SA-5.14','DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and SCA.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and SCA.'), ('003137','draft','2013-09-30','DISA FSO','policy','The organization defines security controls that providers of external information system services employ in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.','SA-9.3','DoD has defined the security controls as security controls defined by CNSSI 1253.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the security controls as security controls defined by CNSSI 1253.'), ('003138','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined processes, methods, and techniques to monitor security control compliance by external service providers on an ongoing basis.','SA-9.8','The organization being inspected/assessed implements the processes, methods, and techniques defined in SA-9, CCI 3139 to monitor security control compliance by external service providers on an ongoing basis. The organization must maintain records of monitoring.','The organization conducting the inspection/assessment obtains and examines the records of monitoring to ensure the organization being inspected/assessed implements the processes, methods, and techniques defined in SA-9, CCI 3139 to monitor security control compliance by external service providers on an ongoing basis.'), ('003139','draft','2013-09-30','DISA FSO','policy','The organization defines processes, methods, and techniques to employ to monitor security control compliance by external service providers on an ongoing basis.','SA-9.9','The organization being inspected/assessed defines and documents processes, methods, and techniques to employ to monitor security control compliance by external service providers on an ongoing basis. DoD has determined the processes, methods, and techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented processes, methods, and techniques to ensure the organization being inspected/assessed defines processes, methods, and techniques to employ to monitor security control compliance by external service providers on an ongoing basis.'), ('003140','draft','2013-09-30','DISA FSO','policy','The organization conducts an organizational assessment of risk prior to the acquisition or outsourcing of dedicated information security services.','SA-9(1).1','The organization being inspected/assessed documents and implements a process to conduct an organizational assessment of risk prior to the acquisition or outsourcing of dedicated information security services. The organization must maintain a record of risk assessment.','The organization conducting the inspection/assessment obtains and examines a list of acquired or outsourced information security services and the record of risk assessment to ensure the organization being inspected/assessed conducts an organizational assessment of risk prior to the acquisition or outsourcing of dedicated information security services.'), ('003141','draft','2013-09-30','DISA FSO','policy','The organization ensures that the acquisition or outsourcing of dedicated information security services is approved by organization-defined personnel or roles.','SA-9(1).2','The organization being inspected/assessed ensures that the acquisition or outsourcing of dedicated information security services is approved by the DoD Component CIO or their delegate(s). The organization must maintain a record of approvals. DoD has defined the personnel or roles the DoD Component CIO or their delegate(s).','The organization conducting the inspection/assessment obtains and examines a list of acquired or outsourced information security services as well as the record of approvals to ensure the organization being inspected/assessed ensures that the acquisition or outsourcing of dedicated information security services is approved by the DoD Component CIO or their delegate(s). DoD has defined the personnel or roles the DoD Component CIO or their delegate(s).'), ('003142','draft','2013-09-30','DISA FSO','policy','The organization defines the personnel or roles authorized to approve the acquisition or outsourcing of dedicated information security services.','SA-9(1).3','DoD has defined the personnel or roles the DoD Component CIO or their delegate(s).','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles the DoD Component CIO or their delegate(s).'), ('003143','draft','2013-09-30','DISA FSO','policy','The organization requires providers of organization-defined external information system services to identify the functions, ports, protocols, and other services required for the use of such services.','SA-9(2).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that providers of all external information system services identify the functions, ports, protocols, and other services required for the use of such services.\n\nDoD has defined the external information system services as all external information system services.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that providers of all external information system services identify the functions, ports, protocols, and other services required for the use of such services.\n\nDoD has defined the external information system services as all external information system services.'), ('003144','draft','2013-09-30','DISA FSO','policy','The organization defines the external information system services for which the providers are required to identify the functions, ports, protocols, and other services required for the use of such services.','SA-9(2).2','DoD has defined the external information system services as all external information system services.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external information system services as all external information system services.'), ('003145','draft','2013-09-30','DISA FSO','policy','The organization establishes trust relationships with external service providers based on organization-defined security requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-9(3).1','The organization being inspected/assessed establishes trust relationships with external service providers based on security requirements, properties, factors, or conditions defining acceptable trust relationship defined in SA-9 (3), CCI 3148.','The organization conducting the inspection/assessment obtains and examines a list of trust relationships with external service providers to ensure those relationships are established based on security requirements, properties, factors, or conditions defining acceptable trust relationship defined in SA-9 (3), CCI 3148.'), ('003146','draft','2013-09-30','DISA FSO','policy','The organization documents trust relationships with external service providers based on organization-defined security requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-9(3).2','The organization being inspected/assessed documents trust relationships with external service providers based on security requirements, properties, factors, or conditions defining acceptable trust relationships defined in SA-9 (3), CCI 3148.','The organization conducting the inspection/assessment obtains and examines the list of trust relationship with external service providers to ensure it is documented.'), ('003147','draft','2013-09-30','DISA FSO','policy','The organization maintains trust relationships with external service providers based on organization-defined security requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-9(3).3','The organization being inspected/assessed maintains trust relationships with external service providers based on security requirements, properties, factors, or conditions defining acceptable trust relationships defined in SA-9 (3), CCI 3148.','The organization conducting the inspection/assessment obtains and examines a list of trust relationships with external service providers to ensure those relationships are maintained based on security requirements, properties, factors, or conditions defining acceptable trust relationship defined in SA-9 (3), CCI 3148.'), ('003148','draft','2013-09-30','DISA FSO','policy','The organization defines security requirements, properties, factors, or conditions defining acceptable trust relationships with external service providers.','SA-9(3).4','The organization being inspected/assessed defines and documents security requirements, properties, factors, or conditions defining acceptable trust relationships with external service providers. DoD has determined the security requirements, properties, factors, or conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security requirements, properties, factors, or conditions to ensure the organization being inspected/assessed defines security requirements, properties, factors, or conditions defining acceptable trust relationships with external service providers. DoD has determined the security requirements, properties, factors, or conditions are not appropriate to define at the Enterprise level.'), ('003149','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined security safeguards to ensure that the interests of organization-defined external service providers are consistent with and reflect organizational interests.','SA-9(4).1','The organization being inspected/assessed employs the security safeguards defined in SA-9 (4), CCI 3150 to ensure that the interests of all external service providers from whom services are solicited are consistent with and reflect organizational interests. The organization must maintain records of safeguard review. DoD has defined the external service providers as all external service providers from whom services are solicited.','The organization conducting the inspection/assessment obtains and examines a list of external service providers as well as records of safeguard review to ensure the organization being inspected/assessed employs the security safeguards defined in SA-9 (4), CCI 3150 to ensure that the interests of all external service providers from whom services are solicited are consistent with and reflect organizational interests. DoD has defined the external service providers as all external service providers from whom services are solicited.'), ('003150','draft','2013-09-30','DISA FSO','policy','The organization defines security safeguards to employ to ensure that the interests of organization-defined external service providers are consistent with and reflect organizational interests.','SA-9(4).2','The organization being inspected/assessed defines and documents security safeguards to employ to ensure that the interests of organization-defined external service providers are consistent with and reflect organizational interests. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines security safeguards to employ to ensure that the interests of organization-defined external service providers are consistent with and reflect organizational interests. DoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003151','draft','2013-09-30','DISA FSO','policy','The organization defines external service providers whose interests are consistent with and reflect organizational interests.','SA-9(4).3','DoD has defined the external service providers as all external service providers from whom services are solicited.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external service providers as all external service providers from whom services are solicited.'), ('003152','draft','2013-09-30','DISA FSO','policy','The organization restricts the location of information processing, information/data, and/or information system services to organization-defined locations based on organization-defined requirements or conditions.','SA-9(5).1','The organization being inspected/assessed restricts the location of information processing, information/data, and/or information system services to locations defined in SA-9 (5), CCI 3153 based on requirements or conditions defined in SA-9 (5), CCI 3154.','The organization conducting the inspection/assessment obtains and examines a list of locations of information processing, information/data, and/or information system services to ensure the organization being inspected/assessed restricts the location of information processing, information/data, and/or information system services to locations defined in SA-9 (5), CCI 3153 based on requirements or conditions defined in SA-9 (5), CCI 3154.'), ('003153','draft','2013-09-30','DISA FSO','policy','The organization defines the locations for which to restrict information processing, information/data, and/or information system services based on organization-defined requirements or conditions.','SA-9(5).2','The organization being inspected/assessed defines and documents the locations to restrict information processing, information/data, and/or information system services based on organization-defined requirements or conditions.\n\nDefinitions should take into account regulatory guidelines in place to protect the data being stored or processed.\n\nDoD has determined the location is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented locations to ensure the organization being inspected/assessed defines the locations to restrict information processing, information/data, and/or information system services based on organization-defined requirements or conditions. DoD has determined the location is not appropriate to define at the Enterprise level.'), ('003154','draft','2013-09-30','DISA FSO','policy','The organization defines the requirements or conditions on which to base restricting the location of information processing, information/data, and/or information system services to organization-defined locations.','SA-9(5).3','The organization being inspected/assessed defines and documents the requirements or conditions on which to base restricting the location of information processing, information/data, and/or information system services to organization-defined locations.\n\nDefinitions should take into account regulatory guidelines in place to protect the data being stored or processed.\n\nDoD has determined the requirements or conditions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented requirements or conditions to ensure the organization being inspected/assessed defines the requirements or conditions on which to base restricting the location of information processing, information/data, and/or information system services to organization-defined locations. DoD has determined the requirements or conditions are not appropriate to define at the Enterprise level.'), ('003155','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform configuration management during system, component, or service design, development, implementation and/or operation.','SA-10.1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service perform configuration management during system, component or service design, development, implementation and/or operation. The configuration management process applies to:\n1. Documentation developed or used in the lifecycle, including requirements and interface specifications;\n2. Elements including design libraries;\n3. Tools including design tools and test tools;\n4. Technical data including test data; and\n5. Information on element and system lifecycle processes','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires the developer of the information system, system component, or information system service perform configuration management during system, component or service design, development, implementation and/or operation.'), ('003156','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to document the integrity of changes to organization-defined configuration items under configuration management.','SA-10.2','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service document the integrity of changes to configuration items under configuration management defined in SA-10, CCI 3159.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the integrity of changes to configuration items under configuration management defined in SA-10, CCI 3159.'), ('003157','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to manage the integrity of changes to organization-defined configuration items under configuration management.','SA-10.3','The organization being inspected/assessed requires within contracts/agreements the requirement that the developer of the information system, system component, or information system service manage the integrity of changes to configuration items under configuration management defined in SA-10, CCI 3159.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service manage the integrity of changes to configuration items under configuration management defined in SA-10, CCI 3159.'), ('003158','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to control the integrity of changes to organization-defined configuration items under configuration management.','SA-10.4','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service control the integrity of changes to configuration items under configuration management defined in SA-10, CCI 3159.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service control the integrity of changes to configuration items under configuration management defined in SA-10, CCI 3159.'), ('003159','draft','2013-09-30','DISA FSO','policy','The organization defines the configuration items under configuration management that require the integrity of changes to be documented, managed and controlled.','SA-10.5','The organization being inspected/assessed defines and documents the configuration items under configuration management that require the integrity of changes to be documented, managed and controlled. DoD has determined the configuration items are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented configuration items to ensure the organization being inspected/assessed defines the configuration items under configuration management that require the integrity of changes to be documented, managed and controlled. DoD has determined the configuration items are not appropriate to define at the Enterprise level.'), ('003160','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to document the potential security impacts of approved changes to the system, component, or service.','SA-10.8','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service document the potential security impacts of approved changes to the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the potential security impacts of approved changes to the system, component, or service.'), ('003161','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to track security flaws within the system, component, or service.','SA-10.9','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service track security flaws within the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service track security flaws within the system, component, or service.'), ('003162','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to track flaw resolution within the system, component, or service.','SA-10.10','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service track flaw resolution within the system, component, or service.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service track flaw resolution within the system, component, or service.'), ('003163','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to report findings of security flaws and flaw resolution within the system, component, or service to organization-defined personnel.','SA-10.11','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service report security flaws and flaw resolution within the system, component, or service findings to at a minimum, the ISSO and ISSM.\n\nDoD has defined the personnel as at a minimum, the ISSO and ISSM.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service report security flaws and flaw resolution within the system, component, or service findings to at a minimum, the ISSO and ISSM.\n\n DoD has defined the personnel as at a minimum, the ISSO and ISSM.'), ('003164','draft','2013-09-30','DISA FSO','policy','The organization defines the personnel to whom security flaw findings and flaw resolution within the system, component, or service are reported.','SA-10.12','DoD has defined the personnel as at a minimum, the ISSO and ISSM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel as at a minimum, the ISSO and ISSM.'), ('003165','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to enable integrity verification of hardware components.','SA-10(3).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service enable integrity verification of hardware components.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service enable integrity verification of hardware components.'), ('003166','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions.','SA-10(4).1','The organization being inspected/assessed documents within contracts/agreements the requirement that the developer of the information system, system component, or information system service employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions.'), ('003167','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to employ tools for comparing newly generated versions of software/firmware source code with previous versions.','SA-10(4).2','The organization being inspected/assessed documents within contracts/agreements the requirement that the developer of the information system, system component, or information system service employ tools for comparing newly generated versions of software/firmware source code with previous versions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service employ tools for comparing newly generated versions of software/firmware source code with previous versions.'), ('003168','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to employ tools for comparing newly generated versions of object code with previous versions.','SA-10(4).3','The organization being inspected/assessed documents within contracts/agreements the requirement that the developer of the information system, system component, or information system service employ tools for comparing newly generated versions of object code with previous versions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service employ tools for comparing newly generated versions of object code with previous versions.'), ('003169','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to maintain the integrity of the mapping between the master build data (hardware drawings and software/firmware code) describing the current version of security-relevant hardware, software, and firmware and the on-site master copy of the data for the current version.','SA-10(5).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service maintain the integrity of the mapping between the master build data (hardware drawings and software/firmware code) describing the current version of security-relevant hardware, software, and firmware and the on-site master copy of the data for the current version.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service maintain the integrity of the mapping between the master build data (hardware drawings and software/firmware code) describing the current version of security-relevant hardware, software, and firmware and the on-site master copy of the data for the current version.'), ('003170','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to execute procedures for ensuring that security-relevant hardware, software, and firmware updates distributed to the organization are exactly as specified by the master copies.','SA-10(6).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service execute procedures for ensuring that security-relevant hardware, software, and firmware updates distributed to the organization are exactly as specified by the master copies.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service execute procedures for ensuring that security-relevant hardware, software, and firmware updates distributed to the organization are exactly as specified by the master copies.'), ('003171','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to create a security assessment plan.','SA-11.1','The organization being inspected/assessed requires that the developer create and document a security assessment plan that includes:\n1. The types of analyses, testing, evaluation, and reviews of software and firmware components;\n2. The degree of rigor to be applied; and\n3. The types of artifacts produced during those processes.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service create a security assessment plan.'), ('003172','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to implement a security assessment plan.','SA-11.2','The organization being inspected/assessed requires that the developer implement the security assessment plan developed in SA-11, CCI 003171.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service implement a security assessment plan.'), ('003173','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform unit, integration, system, and/or regression testing/evaluation at an organization-defined depth and coverage.','SA-11.3','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service perform unit, integration, system, and/or regression testing/evaluation at depth and coverage defined in SA-11, CCI 3174.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform unit, integration, system, and/or regression testing/evaluation at depth and coverage defined in SA-11, CCI 3174.'), ('003174','draft','2013-09-30','DISA FSO','policy','The organization defines the depth and coverage at which to perform unit, integration, system, and/or regression testing/evaluation.','SA-11.4','The organization being inspected/assessed defines and documents the depth and coverage to perform unit, integration, system, and/or regression testing/evaluation. Examples of approaches or tool types that could be required are:\n1. Approaches such as static analyses, dynamic analyses, binary analysis, or a hybrid of the three approaches; and\n2. Tools such as web-based application scanners, static analysis tools, binary analyzers.\n\nDoD has determined the depth and coverage are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented depth and coverage to ensure the organization being inspected/assessed defines the depth and coverage to perform unit, integration, system, and/or regression testing/evaluation. DoD has determined the depth and coverage are not appropriate to define at the Enterprise level.'), ('003175','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce evidence of the execution of the security assessment plan.','SA-11.5','The organization being inspected/assessed requires the developer to produce and provide evidence of the execution of the security assessment plan.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce evidence of the execution of the security assessment plan.'), ('003176','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce the results of the security testing/evaluation.','SA-11.6','The organization being inspected/assessed requires the developer to produce and provide results of the security testing/evaluation.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce the results of the security testing/evaluation.'), ('003177','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to implement a verifiable flaw remediation process.','SA-11.7','The organization being inspected/assessed requires the developer to implement a verifiable flaw remediation process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service implement a verifiable flaw remediation process.'), ('003178','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to correct flaws identified during security testing/evaluation.','SA-11.8','The organization being inspected/assessed requires the developer to correct flaws identified during security testing/evaluation and to document and provide evidence that the flaws were corrected.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service correct flaws identified during security testing/evaluation and provide evidence.'), ('003179','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to employ static code analysis tools to identify common flaws.','SA-11(1).1','The organization being inspected/assessed includes the requirement within contracts/agreements that the developer of the information system, system component, or information system service employ static code analysis tools to identify common flaws.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service employ static code analysis tools to identify common flaws.'), ('003180','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to document the results of static code analysis.','SA-11(1).2','The organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the type of static code analysis that was performed and the results (including defects).','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the results of static code analysis.'), ('003181','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform threat and vulnerability analysis.','SA-11(2).1','The organization being inspected/assessed requires the developer to document and perform threat and vulnerability analysis to ensure that design or implementation changes, and resulting vulnerabilities, are accounted for early in the life cycle.\n\nThreat analysis may be performed through the use of open source threat information. Vulnerability analyses should be informed by system design documentation and may include static analyses, dynamic analyses, simulations, and penetration testing. The developer must document the type of vulnerability analysis that was performed, the results (including defects) and any follow on actions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform threat and vulnerability analysis.'), ('003182','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform testing/evaluation of the as-built system, component, or service subsequent to threat and vulnerability analysis.','SA-11(2).2','The organization being inspected/assessed requires within contracts/agreements that the developer the information system, system component, or information system service perform testing/evaluation of the as-built system, component, or service based on threat and vulnerability analysis.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform testing/evaluation of the as-built system, component, or service subsequent to threat and vulnerability analysis.'), ('003183','draft','2013-09-30','DISA FSO','policy','The organization requires an independent agent satisfying organization-defined independence criteria to verify the correct implementation of the developer security assessment plan.','SA-11(3).1','The organization being inspected/assessed requires within contracts/agreements that an independent agent satisfying independence criteria defined in SA-11 (3), CCI 3185 verify the correct implementation of the developer security assessment plan.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that an independent agent satisfying independence criteria defined in SA-11 (3), CCI 3185 verify the correct implementation of the developer security assessment plan.'), ('003184','draft','2013-09-30','DISA FSO','policy','The organization requires an independent agent satisfying organization-defined independence criteria to verify the evidence produced during security testing/evaluation.','SA-11(3).2','The organization being inspected/assessed requires within contracts/agreements that an independent agent satisfying independence criteria defined in SA-11 (3), CCI 3185 verify the evidence produced during security testing/evaluation.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that an independent agent satisfying independence criteria defined in SA-11 (3), CCI 3185 verify the evidence produced during security testing/evaluation.'), ('003185','draft','2013-09-30','DISA FSO','policy','The organization defines the independence criteria the independent agent must satisfy prior to verifying the correct implementation of the developer security assessment plan and the evidence produced during security testing/evaluation.','SA-11(3).3','The organization being inspected/assessed defines and documents the independence criteria the independent agent must satisfy prior to verifying the correct implementation of the developer security assessment plan and the evidence produced during security testing/evaluation. DoD has determined the independence criteria is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented independence criteria to ensure the organization being inspected/assessed defines the independence criteria the independent agent must satisfy prior to verifying the correct implementation of the developer security assessment plan and the evidence produced during security testing/evaluation. DoD has determined the independence criteria is not appropriate to define at the Enterprise level.'), ('003186','draft','2013-09-30','DISA FSO','policy','The organization ensures that the independent agent either is provided with sufficient information to complete the verification process or has been granted the authority to obtain such information.','SA-11(3).4','The organization being inspected/assessed provides the independent agent with sufficient information and access/authority to complete the verification process. The organization must maintain a record of information provided.','The organization conducting the inspection/assessment obtains and examines the record of information provided to ensure the organization being inspected/assessed provides the independent agent with sufficient information and access/authority to complete the verification process.'), ('003187','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform a manual code review of organization-defined specific code using organization-defined processes, procedures, and/or techniques.','SA-11(4).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service perform a manual code review of specific code defined in SA-11 (4), CCI 3188 using processes, procedures, and/or techniques defined in SA-11 (4), CCI 3189.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform a manual code review of specific code defined in SA-11 (4), CCI 3188 using processes, procedures, and/or techniques defined in SA-11 (4), CCI 3189.'), ('003188','draft','2013-09-30','DISA FSO','policy','The organization defines the specific code for which the developer of the information system, system component, or information system service is required to perform a manual code review using organization-defined process, procedures, and/or techniques.','SA-11(4).2','The organization being inspected/assessed defines and documents the specific code that requires the developer of the information system, system component, or information system service to perform a manual code review against using organization-defined process, procedures, and/or techniques.\n\nThe defined code shall include:\n1. random samples; and\n2. critical software and firmware components of information systems.\n\nDoD has determined the specific code is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented specific code to ensure the organization being inspected/assessed defines the specific code that requires the developer of the information system, system component, or information system service to perform a manual code review against using organization-defined process, procedures, and/or techniques. DoD has determined the specific code is not appropriate to define at the Enterprise level.'), ('003189','draft','2013-09-30','DISA FSO','policy','The organization defines the processes, procedures, and/or techniques to be used by the developer of the information system, system component, or information system service to perform a manual code review of organization-defined specific code.','SA-11(4).3','The organization being inspected/assessed requires in contracts/agreements that the developer define and document the processes, procedures, and/or techniques to be used to perform a manual code review of organization-defined specific code.\n\nManual code reviews identify weaknesses which are generally unavailable to more automated analytic tools and techniques such as static or dynamic analysis. Manual code reviews should be performed in conjunction with automated testing, such as static or dynamic analysis, to provide greater levels of analysis.\n\nDoD has determined the processes, procedures, and/or techniques are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented processes, procedures, and/or techniques to ensure the organization being inspected/assessed defines the processes, procedures, and/or techniques to be used by the developer of the information system, system component, or information system service to perform a manual code review of organization-defined specific code. DoD has determined the processes, procedures, and/or techniques are not appropriate to define at the Enterprise level.'), ('003190','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform penetration testing at an organization-defined breadth/depth and with organization-defined constraints.','SA-11(5).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service perform penetration testing at a breadth/depth defined in SA-11 (5), CCI 3191 and with constraints defined in SA-11 (5), CCI 3192.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform penetration testing at a breadth/depth defined in SA-11 (5), CCI 3191 and with constraints defined in SA-11 (5), CCI 3192.'), ('003191','draft','2013-09-30','DISA FSO','policy','The organization defines the breadth/depth at which the developer of the information system, system component, or information system service is required to perform penetration testing.','SA-11(5).2','The organization being inspected/assessed defines and documents the breadth/depth the developer of the information system, system component, or information system service is required to perform penetration testing. DoD has determined the breadth/depth are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented breadth/depth to ensure the organization being inspected/assessed defines the breadth/depth the developer of the information system, system component, or information system service is required to perform penetration testing. DoD has determined the constraints are not appropriate to define at the Enterprise level.'), ('003192','draft','2013-09-30','DISA FSO','policy','The organization defines the constraints on penetration testing performed by the developer of the information system, system component, or information system service.','SA-11(5).3','The organization being inspected/assessed defines and documents the constraints on penetration testing performed by developer of the information system, system component, or information system service.\n\nPenetration testing should use all available information technology product documentation (e.g., product/system design specifications, source code, and administrator/operator manuals) and can include, for example, white, gray, or black box testing to attempt circumventing security features of the information technology product or system. Penetration testing should be performed:\n1. by skilled security professionals working in controlled environments to simulate and execute adversary actions; and\n2. in conjunction with automated and manual code reviews to provide greater levels of analysis than would ordinarily be possible.\n\nDoD has determined the constraints are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented constraints to ensure the organization being inspected/assessed defines the constraints on penetration testing performed by developer of the information system, system component, or information system service. DoD has determined the constraints are not appropriate to define at the Enterprise level.'), ('003193','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform attack surface reviews.','SA-11(6).1','The organization being inspected/assessed requires within contracts/agreements that the developer perform and document attack surface reviews to uncover any accessible areas where weaknesses or deficiencies in the design and functionality of information systems (including the hardware, software, and firmware components) provide opportunities for adversaries to exploit vulnerabilities.\n\nAttack surface reviews may include:\n1. Analyzing both design and implementation changes to information systems;\n2. Testing the system with debug options off, or making the debug capabilities inaccessible to unauthorized users;\n3. Mitigating attack vectors generated as a result of the changes. Correction of identified flaws includes, for example, deprecation of unsafe functions; and\n4. Using configuration documents that describe how to configure OTS elements to limit their functionality or increase their security. These include DISA Security Technical Implementation Guides (STIGs) and NSA Security configuration guides. Perform this as early in the lifecycle as possible, so that unnecessary or dangerous functionality is not depended upon or does not go unnoticed.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform and document attack surface reviews.'), ('003194','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to verify that the scope of security testing/evaluation provides complete coverage of required security controls at an organization-defined depth of testing/evaluation.','SA-11(7).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service verify that the scope of security testing/evaluation provides complete coverage of required security controls at the depth of testing/evaluation defined in SA-11 (7), CCI 3195.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service verify that the scope of security testing/evaluation provides complete coverage of required security controls at the depth of testing/evaluation defined in SA-11 (7), CCI 3195.'), ('003195','draft','2013-09-30','DISA FSO','policy','The organization defines the depth of testing/evaluation to which the developer of the information system, system component, or information system service is required to verify that the scope of security testing/evaluation provides complete coverage of the required security controls.','SA-11(7).2','The organization being inspected/assessed defines and documents the depth of testing/evaluation to which the developer of the information system, system component, or information system service is required to verify that the scope of security testing/evaluation provides complete coverage of the required security controls.\n\n The developer can accomplish scope verification through a variety of analytic techniques that provide an increasing level of assurance corresponding to the degree of formality of the analysis. High levels of assurance can be provided by the use of formal modeling and analysis techniques including theorem provers, model checkers, and correlation between control implementation and corresponding test cases.\n\nDoD has determined the depth of testing/evaluation is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented depth of testing/evaluation to ensure the organization being inspected/assessed defines the depth of testing/evaluation to which the developer of the information system, system component, or information system service is required to verify that the scope of security testing/evaluation provides complete coverage of the required security controls. DoD has determined the depth of testing/evaluation is not appropriate to define at the Enterprise level.'), ('003196','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to employ dynamic code analysis tools to identify common flaws.','SA-11(8).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service employ dynamic code analysis tools to identify common flaws.\n\nDynamic code analysis tools include fuzz testing, using simulation, and white and black box testing. Dynamic code analysis should be performed in conjunction with static code analysis to provide greater levels of analysis.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service employ dynamic code analysis tools to identify common flaws.'), ('003197','draft','2013-09-30','DISA FSO ','policy','The organization requires the developer of the information system, system component, or information system service to document the results of the dynamic code analysis.','SA-11(8).2','The organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the type of dynamic analysis that was performed and the results (including defects).','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the results of the dynamic code analysis.'), ('003198','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined tailored acquisition strategies, contract tools, and procurement methods for the purchase of the information system, system component, or information system service from suppliers.','SA-12(1).1','The organization being inspected/assessed implements IAW the DoDI 5200.44 \"Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN) tailored acquisition strategies, contract tools, and procurement methods defined in SA-12 (1), CCI 3199 as a means to mitigate supply chain risk.\n\nThe organization being inspected/assessed must maintain documentation tracing the strategies, tools, and methods implemented to the organization-defined strategies, tools, and methods.','The organization conducting the inspection/assessment obtains and examines documentation tracing the strategies, tools, and methods implemented to the organization-defined strategies, tools, and methods to ensure that the tailored acquisition strategies, contract tools, and procurement methods identified in SA-12 (1), CCI 3199 have been implemented.'), ('003199','draft','2013-09-30','DISA FSO','policy','The organization defines tailored acquisition strategies, contract tools, and procurement methods to employ for the purchase of the information system, system component, or information system service from suppliers.','SA-12(1).2','The organization being inspected/assessed defines and documents the tailored acquisition strategies, contract tools, and procurement methods IAW DoDI 5200.44, \"Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN).\" Examples include:\n1. Transferring a portion of the risk to the developer or supplier through the use of contract language and incentives;\n2. Using contract language that requires the implementation of SCRM throughout the system lifecycle in applicable contracts and other acquisition and assistance instruments (grants, cooperative agreements, Cooperative Research and Development Agreements (CRADAs),and other transactions) examples include:\na. Language outlined in the Defense Acquisition Guidebook section 13.13. Contracting;\nb. Language requiring the use of protected mechanisms to deliver elements and data about elements, processes, and delivery mechanisms;\nc. Language that articulates that requirements flow down supply chain tiers to sub-prime suppliers.\n3. Incentives for suppliers that:\na. Implement required security safeguards and SCRM best practices;\nb. Promote transparency into their organizational processes and security practices;\nc. Provide additional vetting of the processes and security practices of subordinate suppliers, critical information system components, and services; and\nd. Implement contract to reduce SC risk down the contract stack.\n4. Gaining insight into supplier security practices;\n5. Using contract language and incentives to enable more robust risk management later in the lifecycle;\n6. Using a centralized intermediary or Blind Buy approaches to acquire element(s) to hide actual usage locations from an untrustworthy supplier or adversary;\n7. Exercise the authorities provided in section 806 of the 2011 NDAA, through Public Law 111-383 referenced in the Defense Federal Acquisition Regulation Supplement (DFAR); interim rule part 252.239-7018 Supply Chain Risk.\n\nDoD has determined the tailored acquisition strategies, contract tools, and procurement methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documentation containing the tailored acquisition strategies, contract tools, and procurement methods to ensure they have been defined IAW DoDI 5200.44, \"Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN).\"\n\nDoD has determined the tailored acquisition strategies, contract tools, and procurement methods are not appropriate to define at the Enterprise level.'), ('003200','draft','2013-09-30','DISA FSO','policy','The organization conducts a supplier review prior to entering into a contractual agreement to acquire the information system, system component, or information system service.','SA-12(2).1','The organization being inspected/assessed documents and implements a process to conduct a supplier review prior to entering into a contractual agreement to acquire the information system, system component, or information system service. Examples of items that can be considered in the review are the suppliers:\n1. Organization and process certifications;\n2. Security policies, procedures, and activities across the lifecycle;\n3. Supply chain and the criteria and methodology for selecting/managing their suppliers/service providers;\n4. Financials to determine if the supplier is financially stable;\n5. Foreign Ownership, Control, and Influence;\n6. Past performance and any documented supply chain incidents;\n7. Business relationships; and\n8. Maturity of business processes.\n\nThe organization must maintain a record of supplier review.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of supplier review to ensure the organization being inspected/assessed documents and implements a process to conduct a supplier review prior to entering into a contractual agreement to acquire the information system, system component, or information system service.'), ('003201','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined security safeguards to limit harm from potential adversaries identifying and targeting the organizational supply chain.','SA-12(5).1','The organization being inspected/assessed employs security safeguards defined in SA-12 (5), CCI 3202 to limit harm from potential adversaries identifying and targeting the organizational supply chain.\n\nThe organization must maintain a record of security safeguards employed.','The organization conducting the inspection/assessment obtains and examines the record of security safeguards supplied to ensure the organization being inspected/assessed employs security safeguards defined in SA-12 (5), CCI 3202 to limit harm from potential adversaries identifying and targeting the organizational supply chain.'), ('003202','draft','2013-09-30','DISA FSO','policy','The organization defines security safeguards to employ to limit harm from potential adversaries identifying and targeting the organizational supply chain.','SA-12(5).2','The organization being inspected/assessed defines and documents security safeguards to employ to limit harm from potential adversaries identifying and targeting the organizational supply chain IAW DoDI 5200.44.\n\nExamples of security safeguards that the organization should consider implementing to limit the harm from potential adversaries targeting the organizational supply chain, are:\n1. Using trusted physical delivery mechanisms that do not permit access to the element during delivery (ship via a protected carrier, use cleared/official couriers, or a diplomatic pouch);\n2. Using trusted electronic delivery of products and services (require downloading from approved, verification-enhanced sites);\n3. Avoiding the purchase of custom configurations, where feasible;\n4. Using procurement carve outs (i.e., exclusions to commitments or obligations), where feasible;\n5. Using defensive design approaches;\n6. Employing system OPSEC principles;\n7. Employing a diverse set of suppliers;\n8. Employing approved vendor lists with standing reputations in industry;\n9. Using a centralized intermediary and Blind Buy approaches to acquire element(s) to hide actual usage locations from an untrustworthy supplier or adversary Employing inventory management policies and processes;\n10. Using flexible agreements during each acquisition and procurement phase so that it is possible to meet emerging needs or requirements to address supply chain risk without requiring complete revision or re-competition of an acquisition or procurement;\n11. Using international, national, commercial or government standards to increase potential supply base;\n12. Limiting the disclosure of information that can become publicly available; and\n13. Minimizing the time between purchase decisions and required delivery.\nOrganizations should reference the SCRM Key Practices and Implementation Guide for DoD for additional guidance.\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The conducting the inspection/assessment obtains and examines the documented security safeguards to ensure they have been defined IAW DoDI 5200.44.\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003203','draft','2013-09-30','DISA FSO','policy','The organization conducts an assessment of the information system, system component, or information system service prior to selection, acceptance, or update.','SA-12(7).1','The organization being inspected/assessed or an independent, third-party entity must perform and document assessments that may include static analyses, dynamic analyses, simulations, white, gray, and black box testing, fuzz testing, penetration testing, and ensure that components or services are genuine (e.g., using tags, cryptographic hash verifications, or digital signatures). Where possible, testing should employ threat profiles based on the threats that the system is likely to face in the operational environment.','The organization conducting the inspection/assessment obtains and examines documented assessment(s) that were conducted by the organization prior to selection, acceptance, or update to ensure that the organization being inspected/assessed is assessing information systems, system components, or information system services prior to selection, acceptance, or update.'), ('003204','deprecated','2013-09-30','DISA FSO','policy','The organization conducts an assessment of the information system, system component, or information system service prior to selection, acceptance, or update.',NULL,NULL,NULL), ('003205','draft','2013-09-30','DISA FSO','policy','The organization uses all-source intelligence analysis of suppliers and potential suppliers of the information system, system component, or information system service.','SA-12(8).1','The organization being inspected/assessed documents and implements a process IAW DoDI 5200.44 to use all-source intelligence analysis of suppliers and potential suppliers of the information system, system component, or information system service.\n\nAll-source intelligence of suppliers that the organization may use includes:\n1. Defense Intelligence Agency (DIA) Threat Assessment Center (TAC), the enterprise focal point for supplier threat assessments for the DoD acquisition community risks;\n2. Other U.S. Government resources including:\na. Government Industry Data Exchange Program (GIDEP) Database where government and industry can record issues with suppliers, including counterfeits; and\nb. System for Award Management (SAM) Database of companies that are barred from doing business with the US Government.\n3. Open source and commercial research.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process IAW DoDI 5200.44 to use all-source intelligence analysis of suppliers and potential suppliers of the information system, system component, or information system service.'), ('003206','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined Operations Security (OPSEC) safeguards in accordance with classification guides to protect supply chain-related information for the information system, system component, or information system service.','SA-12(9).1','The organization being inspected/assessed implements Operations Security (OPSEC) safeguards defined in SA-12 (9), CCI 3206 to protect supply chain-related information for the information system, system component, or information system service.','The organization conducting the inspection/assessment obtains and examines any applicable artifacts showing the use of OPSEC safeguards to ensure the organization being inspected/assessed implements OPSEC safeguards defined in SA-12 (9), CCI 3206 to protect supply chain-related information for the information system, system component, or information system service.\n\nDoD has determined the OPSEC safeguards are not appropriate to define at the Enterprise level.'), ('003207','deprecated','2013-09-30','DISA FSO','policy','The organization employs organization-defined tailored acquisition strategies, contract tools, and procurement methods for the purchase of the information system, system component, or information system service from suppliers.',NULL,NULL,NULL), ('003208','deprecated','2013-09-30','DISA FSO','policy','The organization employs organization-defined tailored acquisition strategies, contract tools, and procurement methods for the purchase of the information system, system component, or information system service from suppliers.',NULL,NULL,NULL), ('003209','deprecated','2013-09-30','DISA FSO','policy','The organization employs organization-defined tailored acquisition strategies, contract tools, and procurement methods for the purchase of the information system, system component, or information system service from suppliers.',NULL,NULL,NULL), ('003210','draft','2013-09-30','DISA FSO','policy','The organization defines the Operations Security (OPSEC) safeguards to be employed in accordance with classification guides to protect supply chain-related information for the information system, system component, or information system service.','SA-12(9).2','The organization being inspected/assessed defines and documents Operations Security (OPSEC) safeguards IAW DoDD 5205.02E, DoD Manual 5205.02, and DoDI 5200.44.\n\nOPSEC safeguards may include:\n1. Limiting the disclosure of information needed to design, develop, test, produce, deliver, and support the element for example, supplier identities, supplier processes, potential suppliers, security requirements, design specifications, testing and evaluation result, and system/component configurations, including the use of direct shipping, blind buys, etc.;\n2. Extending supply chain awareness, education, and training for suppliers, intermediate users, and end users;\n3. Extending the range of OPSEC tactics, techniques, and procedures to potential suppliers, contracted suppliers, or sub-prime contractor tier of suppliers; and\n4. Using centralized support and maintenance services to minimize direct interactions between end users and original suppliers.\n\nDoD has determined the OPSEC safeguards are not appropriate to define at the Enterprise level.','The organization being inspected/assessed obtains and examines the documented OPSEC safeguards to ensure they have been defined IAW DoDD 5205.02E, DoD Manual 5205.02, and DoDI 5200.44.\n\nDoD has determined the OPSEC safeguards are not appropriate to define at the Enterprise level.'), ('003211','deprecated','2013-09-30','DISA FSO','policy','The organization defines the Operations Security (OPSEC) safeguards to be employed in accordance with classification guides to protect supply chain-related information for the information system, system component, or information system service.',NULL,NULL,NULL), ('003212','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined security safeguards to validate that the information system or system component received is genuine and has not been altered.','SA-12(10).1','The organization being inspected/assessed employs security safeguards to validate that the information system or system component received is genuine and has not been altered defined in SA-12 (10), CCI 3213. The organization must maintain a record of information system validation. The record must identify what safeguards are applied.\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the record of information system validation to ensure the organization being inspected/assessed employs security safeguards defined in SA-12 (10), CCI 3213 to validate that the information system or system component received is genuine and has not been altered.\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003213','draft','2013-09-30','DISA FSO','policy','The organization defines the security safeguards to be employed to validate that the information system or system component received is genuine and has not been altered.','SA-12(10).2','The organization being inspected/assessed defines and documents security safeguards to validate that the information system or system component received is genuine and has not been altered IAW DoDI 5200.44.\n\nSecurity safeguards may:\n1. Examine for:\na. Evidence of unauthorized tampering/modification, intentional bugging/subversion, or harmful features;\nb. Indicators of weaknesses such as unexpected size/dimensions, substandard workmanship, mismatched serial number or bar code, altered/ unexpected/ counterfeit trademarks or markings, or XRF (x-ray fluorescence); and\nc. Newly manufactured (not refurbished) elements and for valid licensing (including support agreements).\n2. Include:\na. Acceptance testing;\nb. Anti-tamper mechanisms (tamper-resistant and tamper-evident packaging, anti-tamper fence);\nc. Contact angle analysis and chemical surface analysis;\nd. Encryption (in motion and at rest);\ne. Watermarking mechanisms;\nf. Optical/nanotechnology tagging;\ng. Side-channel analysis;\nh. Performance and sub-element baseline; and\ni. Difficult-to-forge marks (such as digital signatures and hologram tags).\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure they have been defined IAW DoDI 5200.44.\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003214','draft','2013-09-30','DISA FSO','policy','The organization employs organizational analysis, independent third-party analysis, organizational penetration testing and/or independent third-party penetration testing of organization-defined supply chain elements, processes, and actors associated with the information system, system component, or information system service.','SA-12(11).1','The organization being inspected/assessed documents and implements processes to employ organizational analysis, independent third-party analysis, organizational penetration testing and/or independent third-party penetration testing of supply chain elements, processes and actors defined in SA-12 (11), CCI 3215 associated with the information system, system component, or information system service.\n\nPenetration testing/analysis should be performed:\n1. On potential system elements before accepting the system;\n2. As a realistic simulation of the active adversarys known adversary tactics, techniques, procedures (TTPs), and tools; and\n3. Throughout the lifecycle on physical and logical systems, elements, and processes.','The organization conducting the inspection/assessment obtains and examines the documented processes to ensure the organization being inspected/assessed employs organizational analysis, independent third-party analysis, organizational penetration testing and/or independent third-party penetration testing of supply chain elements, processes and actors defined in SA-12 (11), CCI 3215 associated with the information system, system component, or information system service.'), ('003215','draft','2013-09-30','DISA FSO','policy','The organization defines the supply chain elements, processes, and actors associated with the information system, system component, or information system service for organizational analysis, independent third-party analysis, organizational penetration testing and/or independent third-party penetration testing.','SA-12(11).2','The organization being inspected/assessed defines and documents the supply chain elements, processes, and actors associated with the information system, system component, or information system service for organizational analysis, independent third-party analysis, organizational penetration testing and/or independent third-party penetration testing.\n\nPenetration testing should be performed throughout the lifecycle on physical and logical systems, elements, and processes including:\n1. Hardware, software, and firmware development processes;\n2. Shipping/handling procedures;\n3. Personnel and physical security programs;\n4. Configuration management tools/measures to maintain provenance; and\n5. Any other programs, processes, or procedures associated with the production/distribution of supply chain elements.\n\nThe elements, processes, and actors must be defined IAW DoDI 5200.44.\n\nDoD has determined the elements, processes, and actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented supply chain elements, processes, and actors to ensure the organization being inspected/assessed defines the supply chain elements, processes, and actors associated with the information system, system component, or information system service for organizational analysis, independent third-party analysis, organizational penetration testing and/or independent third-party penetration testing IAW DoDI 5200.44. DoD has determined the elements, processes, and actions are not appropriate to define at the Enterprise level.'), ('003216','draft','2013-09-30','DISA FSO','policy','The organization establishes inter-organizational agreements with entities involved in the supply chain for the information system, system component, or information system service.','SA-12(12).1','The organization being inspected/assessed establishes and documents inter-organizational agreements with entities involved in the supply chain for the information system, system component, or information system service.','The organization conducting the inspection/assessment obtains and examines the documented inter-organizational agreements to ensure the organization being inspected/assessed establishes inter-organizational agreements with entities involved in the supply chain for the information system, system component, or information system service.'), ('003217','draft','2013-09-30','DISA FSO','policy','The organization establishes inter-organizational procedures with entities involved in the supply chain for the information system, system component, or information system service.','SA-12(12).2','The organization being inspected/assessed establishes and documents inter-organizational procedures with entities involved in the supply chain for the information system, system component, or information system service.','The organization conducting the inspection/assessment obtains and examines the documented inter-organizational procedures to ensure the organization being inspected/assessed establishes inter-organizational procedures with entities involved in the supply chain for the information system, system component, or information system service.'), ('003218','draft','2013-09-30','DISA FSO','policy','The organization employs organization-defined security safeguards to ensure an adequate supply of organization-defined critical information system components.','SA-12(13).1','The organization being inspected/assessed documents and implements a process to employ security safeguards defined in SA-12 (13), CCI 3219 to ensure an adequate supply of critical information system components defined in SA-12 (13), CCI 3220.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs security safeguards defined by SA-12 (13), CCI 3219 to ensure an adequate supply of critical information system components defined in SA-12 (13), CCI 3220.'), ('003219','draft','2013-09-30','DISA FSO','policy','The organization defines the security safeguards to be employed to ensure an adequate supply of organization-defined critical information system components.','SA-12(13).2','The organization being inspected/assessed defines and documents the security safeguards to be employed to ensure an adequate supply of organization-defined critical information system components.\n\nThe organization should employ security safeguards for critical materials, production, assembly, testing, packaging, delivery, and sustainment objects and determine what will be needed and when, and how quickly, for system and system element replacements. Safeguards include:\n1. Storing critical element spares near or with systems so that they can be rapidly replaced;\n2. Stockpiling of spare components to ensure operation during mission-critical times;\n3. Using multiple delivery paths and suppliers;\n4. Having a variety of vetted delivery paths;\n5. Using trusted and cleared contacts and shipping via a protected carrier (such as using cleared/official couriers, or a diplomatic pouch);\n6. Proactively manage the life cycle of their products through Diminishing Manufacturing Sources and Material Shortages (DMSMS). This may involve advance purchase and inventory of spare parts while they are widely available and verifiable.\n\n DoD has determined the security safeguards are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security safeguards to ensure the organization being inspected/assessed defines the security safeguards to be employed to ensure an adequate supply of organization-defined critical information system components.\n\nDoD has determined the security safeguards are not appropriate to define at the Enterprise level.'), ('003220','draft','2013-09-30','DISA FSO','policy','The organization defines the critical information system components for which organization-defined security safeguards are employed to ensure adequate supply.','SA-12(13).3','The organization being inspected/assessed defines and documents the critical information system components for which organization-defined security safeguards are employed to ensure adequate supply. DoD has determined the critical information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented critical information system components to ensure the organization being inspected/assessed defines the critical information system components for which organization-defined security safeguards are employed to ensure adequate supply. DoD has determined the critical information system components are not appropriate to define at the Enterprise level.'), ('003221','draft','2013-09-30','DISA FSO','policy','The organization establishes unique identification of organization-defined supply chain elements, processes, and actors for the information system, system component, or information system service.','SA-12(14).1','The organization being inspected/assessed establishes and documents unique identification of supply chain elements, processes, and actors defined in SA-12 (14), CCI 3223.','The organization conducting the inspection/assessment obtains and examines the documented unique identification of supply chain elements, processes, and actors to ensure the organization being inspected/assessed establishes unique identification of supply chain elements, processes, and actors defined in SA-12 (14), CCI 3223 for the information system, system component, or information system service.'), ('003222','draft','2013-09-30','DISA FSO','policy','The organization retains unique identification of organization-defined supply chain elements, processes, and actors for the information system, system component, or information system service.','SA-12(14).2','The organization being inspected/assessed retains previous versions of the unique identification of supply chain elements, processes, and actors documented IAW SA-12 (14), CCI 3221.','The organization conducting the inspection/assessment obtains and examines previous versions of the identification of supply chain elements, processes, and actors documented IAW SA-12 (14), CCI 3221 to ensure the organization being inspected/assessed retains unique identification of supply chain elements, processes, and actors.'), ('003223','draft','2013-09-30','DISA FSO','policy','The organization defines the supply chain elements, processes, and actors for the information system, system component, or information system service to establish and retain unique identification.','SA-12(14).3','The organization being inspected/assessed defines and documents the supply chain elements, processes, and actors for the information system, system component, or information system service to establish and retain unique identification. The elements, processes, and actors must be defined IAW DoDI 5200.44.\n\nThe organization should consider employing:\n1. Procedures for proposing, evaluating, and justifying relevant changes to system/component provenance for their impact on components, processes, systems, missions, and exposure to supply chain risks;\n2. Procedures for allocating responsibilities for the creation, maintenance, and monitoring of provenance are documented;\n3. Methods for tracking relevant purchasing, shipping, receiving, or transfer activities, including records of reviewer signatures for comparison;\n4. Processes for transferring provenance responsibility for systems or components between organizations across physical and logical boundaries including any approvals required;\n5. Procedures for tracking and documenting chain of custody of the system or component (Labeling (using serial numbers) and tagging (using radio-frequency identification [RFID] tags); and\n6. Security reviews for evaluating and vetting key personnel employed by acquirers or suppliers in any capacity (full-time employee, part-time employee, consultant, contractor, subcontractor, vendor, agent, etc.)\n\nDoD has determined the elements, processes, and actors are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented elements, processes, and actors to ensure the organization being inspected/assessed defines the supply chain elements, processes, and actors for the information system, system component, or information system service to establish and retain unique identification IAW DoDI 5200.44. DoD has determined the elements, processes, and actors are not appropriate to define at the Enterprise level.'), ('003224','draft','2013-09-30','DISA FSO','policy','The organization establishes a process to address weaknesses or deficiencies in supply chain elements identified during independent or organizational assessments of such elements.','SA-12(15).1','The organization being inspected/assessed documents and implements a process to address weaknesses or deficiencies in supply chain elements identified during independent or organizational assessments of such elements.\n\nThe organization being inspected/assessed will perform follow-on actions to address the weaknesses and deficiencies identified during assessments of supply chain (SC) elements (e.g., penetration testing, audits, verification/validation activities). Follow on actions may include:\n1. Performing failure or forensic analysis on elements and processes to determine the cause of failure. Isolate and diagnose the elements of the component that are not performing properly and assess the origin and mechanisms of the failure. Assess the impact of the failure, ways to detect failures, and mitigating actions (including ways to detect failures and preventing future occurrences);\n2. Initiate a plan to remediate vulnerabilities immediately upon detection which include:\na. Identifying the weakness associated with the vulnerability;\nb. Determining the root cause and context; and\nc. Remediating the vulnerability, depending on the likelihood of its exploitation and the severity of its consequences.\n3. Coordinating SC incident management activities with other organizations to ensure consistent and effective management of SC risk incidents; and\n4. Following established procedures for reporting incidents. If no procedure has been established, determine what information should flow in and out, to who, and in what circumstances;\n5. Establishing and maintain SC risk incident reporting connectivity to local, regional, and national incident management processes where established (e.g., IAVA, CERT/CC, US CERT, FBI, FISMA reporting), and possibly intelligence processes.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes a process to address weaknesses or deficiencies in supply chain elements identified during independent or organizational assessments of such elements.'), ('003225','draft','2013-09-30','DISA FSO','policy','The organization describes the trustworthiness required in the organization-defined information system, information system component, or information system service supporting its critical missions/business functions.','SA-13.1','The organization being inspected/assessed documents within its security plan the trustworthiness required in the information system, information system component, or information system service defined in SA-13, CCI 3226 supporting its critical missions/business functions.','The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed documents within its security plan the trustworthiness required in the information system, information system component, or information system service defined in SA-13, CCI 3226 supporting its critical missions/business functions.'), ('003226','draft','2013-09-30','DISA FSO','policy','The organization defines the information system, information system component, or information system service supporting its critical missions/business functions in which the trustworthiness must be described.','SA-13.2','The organization being inspected/assessed defines and documents the information system, information system component, or information system service supporting its critical missions/business functions in which the trustworthiness must be described. DoD has determined the information system, information system component, or information system service is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system, information system component, or information system service to ensure the organization being inspected/assessed defines the information system, information system component, or information system service supporting its critical missions/business functions in which the trustworthiness must be described. DoD has determined the information system, information system component, or information system service is not appropriate to define at the Enterprise level.'), ('003227','draft','2013-09-30','DISA FSO','policy','The organization implements an organization-defined assurance overlay to achieve trustworthiness required to support its critical missions/business functions.','SA-13.3','The organization being inspected/assessed implements an assurance overlay defined in SA-13, CCI 3228 to achieve trustworthiness required to support its critical missions/business functions.','The organization conducting the inspection/assessment examines the information system to ensure the organization being inspected/assessed implements an assurance overlay defined in SA-13, CCI 3228 to achieve trustworthiness required to support its critical missions/business functions.'), ('003228','draft','2013-09-30','DISA FSO','policy','The organization defines an assurance overlay to be implemented to achieve trustworthiness required to support its critical missions/business functions.','SA-13.4','The organization being inspected/assessed defines and documents an assurance overlay to be implemented to achieve trustworthiness required to support its critical missions/business functions. DoD has determined the assurance overlay is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented assurance overlay to ensure the organization being inspected/assessed defines an assurance overlay to be implemented to achieve trustworthiness required to support its critical missions/business functions. DoD has determined the assurance overlay is not appropriate to define at the Enterprise level.'), ('003229','draft','2013-09-30','DISA FSO','policy','The organization identifies critical information system components by performing a criticality analysis for organization-defined information systems, information system components, or information system services at organization-defined decision points in the system development life cycle.','SA-14.1','The organization being inspected/assessed identifies and documents critical information system components by performing a criticality analysis for information systems, information system components, or information system services IAW DoDI 5200.44. Information systems include all DoD Information Technology.\n\nCriticality analysis is the primary method by which a program identifies mission-critical functions and associated components. Criticality analysis includes the following iterative steps:\n1. Identify and group mission threads.\n2. Decompose the mission threads into their mission-critical functions and assign them criticality levels.\n3. Map the mission-critical functions to the system architecture and identify the defined system components (hardware, software, and firmware) that implement those functions (i.e., components that are critical to the mission effectiveness of the system or an interfaced network).\n4. Allocate criticality levels to those components that have been defined.\n\nCriticality levels are determined by assessing the relative impact on the systems ability to complete its mission if the function and associated component fails. Level I is total mission failure, Level II is significant/unacceptable degradation, Level III is partial/acceptable, and Level IV is negligible.\n\nOnce the program has identified critical components through the criticality analysis, the program systems engineers and SSEs can use the results along with the vulnerability assessment and threat assessment to determine the risk.\n\nThe organization should reference the Defense Acquisition Guidebook (DAG) Chapter 13 for more information.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed identifies critical information system components by performing a criticality analysis for information systems, information system components, or information system services IAW DoDI 5200.44.'), ('003230','draft','2013-09-30','DISA FSO','policy','The organization identifies critical information system functions by performing a criticality analysis for organization-defined information systems, information system components, or information system services at organization-defined decision points in the system development life cycle.','SA-14.2','The organization being inspected/assessed identifies and documents critical information system functions by performing a criticality analysis for information systems, information system components, or information system services IAW DoDI 5200.44.\n\nCriticality analysis is the primary method by which a program identifies mission-critical functions and associated components. Criticality analysis includes the following iterative steps:\n1. Identify and group mission threads.\n2. Decompose the mission threads into their mission-critical functions and assign them criticality levels.\n3. Map the mission-critical functions to the system architecture and identify the defined system components (hardware, software, and firmware) that implement those functions (i.e., components that are critical to the mission effectiveness of the system or an interfaced network).\n4. Allocate criticality levels to those components that have been defined.\n\nCriticality levels are determined by assessing the relative impact on the systems ability to complete its mission if the function and associated component fails. Level I is total mission failure, Level II is significant/unacceptable degradation, Level III is partial/acceptable, and Level IV is negligible.\n\nOnce the program has identified critical functions through the criticality analysis, the program systems engineers and SSEs can use the results along with the vulnerability assessment and threat assessment to determine the risk.\n\nThe organization should reference the Defense Acquisition Guidebook (DAG) Chapter 13 for more information.','The organization conducting the inspection/assessment obtains and examines the documented information system functions to ensure the organization being inspected/assessed identifies critical information system functions by performing a criticality analysis for information systems, information system components, or information system services IAW DoDI 5200.44.'), ('003231','draft','2013-09-30','DISA FSO','policy','The organization defines the information systems, information system components, or information system services for which the organization identifies critical information system components and functions for criticality analysis.','SA-14.3','The organization being inspected/assessed defines and documents the information systems, information system components, or information system services for which the organization identifies critical information system components and functions for criticality analysis IAW DoDI 5200.44.\n\nThe organization should perform Criticality Analysis to identify and prioritize mission-critical functions and critical components in accordance with the DoDI 5200.44. The criticality analysis allows a program to focus attention (and resources) on the system capabilities, mission-critical functions that matter most. Mission-critical functions are those functions of the system that, if corrupted or disabled, would likely lead to mission failure or degradation. Mission-critical components are primarily the elements of the system (hardware, software, and firmware) that implement critical functions; however, system components that perform defensive functions to protect inherently critical components and other components with unmediated access to inherently critical components, may themselves be mission critical.\n\nDoD has determined the decision points are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems, information system components, or information system services to ensure they have been defined IAW DoDI 5200.44.\n\nDoD has determined the information systems, information system components, or information system services are not appropriate to define at the Enterprise level.'), ('003232','draft','2013-09-30','DISA FSO','policy','The organization defines the decision points in the system development life cycle at which to perform a criticality analysis to identify critical information system components and functions for organization-defined information systems, information system components, or information system services.','SA-14.4','The organization being inspected/assessed defines and documents the decision points in the system development life cycle at which to perform a criticality analysis to identify critical information system components and functions for organization-defined information systems, information system components , or information system services IAW DoDI 5200.44 and DoDI 5000.2.\n\nCriticality analysis is an iterative process that should be performed whenever an architecture or design is being developed or modified and executed across the acquisition lifecycle, building on growing maturity and updated information, in preparation for acquisition milestone reviews, and at other points in the acquisition lifecycle as defined by the DoDI 5000.2.\n\nA DoD program needs to perform criticality analysis throughout the acquisition life cycle. As a minimum, DoD programs need to perform / update a criticality analysis, along with the threat assessment, vulnerability assessment, risk assessment, cost-benefit trade-off and countermeasure selection, before each technical review.\n\nDoD has determined the decision points are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented decision points to ensure they have been defined IAW DoDI 5200.44 and DoDI 5000.2.\n\n\nDoD has determined the decision points are not appropriate to define at the Enterprise level.'), ('003233','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to follow a documented development process.','SA-15.1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service to follow a documented development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service to follow a documented development process.'), ('003234','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process explicitly addresses security requirements.','SA-15.2','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service explicitly addresses security requirements.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service explicitly addresses security requirements.'), ('003235','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process identifies the standards used in the development process.','SA-15.3','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service identifies the standards used in the development process, for example, programming languages and computer-aided design (CAD) systems.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service identifies the standards used in the development process.'), ('003236','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process identifies the tools used in the development process.','SA-15.4','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service identifies the tools used in the development process, for example, programming languages and computer-aided design (CAD) systems.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service identifies the tools used in the development process.'), ('003237','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process documents the specific tool options and tool configurations used in the development process.','SA-15.5','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service documents the specific tool options and tool configurations used in the development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service documents the specific tool options and tool configurations used in the development process.'), ('003238','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process documents changes to the process and/or tools used in development.','SA-15.6','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service documents changes to the process and/or tools used in development.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service documents changes to the process and/or tools used in development.'), ('003239','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process manages changes to the process and/or tools used in development.','SA-15.7','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service document a process to manage changes to the process and/or tools used in development.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document a process to manage changes to the process and/or tools used in development.'), ('003240','draft','2013-09-30','DISA FSO','policy','The documented information system, system component, or information system service development process ensures the integrity of changes to the process and/or tools used in development.','SA-15.8','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service document the integrity of changes to the process and/or tools used in development.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service document the integrity of changes to the process and/or tools used in development.'), ('003241','draft','2013-09-30','DISA FSO','policy','The organization reviews the development process in accordance with organization-defined frequency to determine if the development process selected and employed can satisfy organization-defined security requirements.','SA-15.9','The organization being inspected/assessed documents and implements a process to review the development process before first use and annually thereafter to determine if the development process selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. Reviews of development processes can include, for example, the use of capability maturity model integration (CMMI) to determine the potential effectiveness of such processes.\n\nThe organization must maintain a record of reviews.\n\nDoD has defined the frequency as before first use and annually thereafter.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews the development process before first use and annually thereafter to determine if the development process selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. DoD has defined the frequency as before first use and annually thereafter.'), ('003242','draft','2013-09-30','DISA FSO','policy','The organization reviews the development standards in accordance with organization-defined frequency to determine if the development standards selected and employed can satisfy organization-defined security requirements.','SA-15.10','The organization being inspected/assessed documents and implements a process to review the development standards before first use and annually thereafter to determine if the development standards selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. The organization must maintain a record of reviews. DoD has defined the frequency as before first use and annually thereafter.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews the development standards before first use and annually thereafter to determine if the development standards selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. DoD has defined the frequency as before first use and annually thereafter.'), ('003243','draft','2013-09-30','DISA FSO','policy','The organization reviews the development tools in accordance with organization-defined frequency to determine if the development tools selected and employed can satisfy organization-defined security requirements.','SA-15.11','The organization being inspected/assessed documents and implements a process to review the development tools before first use and annually thereafter to determine if the development tools selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. The organization must maintain a record of reviews. DoD has defined the frequency as before first use and annually thereafter.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews the development tools before first use and annually thereafter to determine if the development tools selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. DoD has defined the frequency as before first use and annually thereafter.'), ('003244','draft','2013-09-30','DISA FSO','policy','The organization reviews the development tool options/configurations in accordance with organization-defined frequency to determine if the development tool options/configurations selected and employed can satisfy organization-defined security requirements.','SA-15.12','The organization being inspected/assessed documents and implements a process to review the development tool options/configurations before first use and annually thereafter to determine if the development tool options/configurations selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. The organization must maintain a record of reviews. DoD has defined the frequency as before first use and annually thereafter.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reviews to ensure the organization being inspected/assessed reviews the development tool options/configurations before first use and annually thereafter to determine if the development tool options/configurations selected and employed can satisfy the security requirements defined in SA-15, CCI 3246. DoD has defined the frequency as before first use and annually thereafter.'), ('003245','draft','2013-09-30','DISA FSO','policy','The organization defines the frequency on which to review the development process, standards, tools, and tool options/configurations to determine if the process, standards, tools, and tool options/configurations selected and employed can satisfy organization-defined security requirements.','SA-15.13','DoD has defined the frequency as before first use and annually thereafter.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the frequency as before first use and annually thereafter.'), ('003246','draft','2013-09-30','DISA FSO','policy','The organization defines the security requirements that must be satisfied by conducting a review of the development process, standards, tools, and tool options/configurations.','SA-15.14','The organization being inspected/assessed defines and documents the security requirements that must be satisfied by conducting a review of the development process, standards, tools, and tool options/configurations. DoD has determined the security requirements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented security requirements to ensure the organization being inspected/assessed defines the security requirements that must be satisfied by conducting a review of the development process, standards, tools, and tool options/configurations. DoD has determined the security requirements are not appropriate to define at the Enterprise level.'), ('003247','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to define quality metrics at the beginning of the development process.','SA-15(1).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service define quality metrics at the beginning of the development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service define quality metrics at the beginning of the development process.'), ('003248','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide evidence of meeting the quality metrics in accordance with organization-defined frequency, organization-defined program review milestones and/or upon delivery.','SA-15(1).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service provide evidence of meeting the quality metrics in accordance with the frequency defined in SA-15 (1), CCI 3249, at a minimum, program review milestones IAW DoD Memorandum \"Document Streamlining - Program Protection Plan (PPP)\" and/or upon delivery.\n\nDoD has defined the program review milestones as at a minimum, program review milestones IAW DoD Memorandum \"Document Streamlining - Program Protection Plan (PPP).\"','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service provide evidence of meeting the quality metrics in accordance with the frequency defined in SA-15 (1), CCI 3249, at a minimum, program review milestones IAW DoD Memorandum \"Document Streamlining - Program Protection Plan (PPP)\" and/or upon delivery.\n\nDoD has defined the program review milestones as at a minimum, program review milestones IAW DoD Memorandum \"Document Streamlining - Program Protection Plan (PPP).\"'), ('003249','draft','2013-09-30','DISA FSO','policy','The organization defines the frequency on which the developer of the information system, system component, or information system service is required to provide evidence of meeting the quality metrics.','SA-15(1).3','The organization being inspected/assessed defines and documents the frequency that is required by the developer of the information system, system component, or information system service to provide evidence of meeting the quality metrics. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency that is required by the developer of the information system, system component, or information system service to provide evidence of meeting the quality metrics. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('003250','draft','2013-09-30','DISA FSO','policy','The organization defines the program review milestones at which the developer of the information system, system component, or information system service is required to provide evidence of meeting the quality metrics.','SA-15(1).4','DoD has defined the program review milestones as at a minimum, program review milestones IAW DoD Memorandum \"Document Streamlining - Program Protection Plan (PPP).\"','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the program review milestones as at a minimum, program review milestones IAW DoD Memorandum \"Document Streamlining - Program Protection Plan (PPP).\"'), ('003251','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to select a security tracking tool for use during the development process.','SA-15(2).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service select a security tracking tool for use during the development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service select a security tracking tool for use during the development process.'), ('003252','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to employ a security tracking tool for use during the development process.','SA-15(2).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service employ a security tracking tool for use during the development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service employ a security tracking tool for use during the development process.'), ('003253','draft','2013-09-30','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to perform a criticality analysis at an organization-defined breadth/depth and at organization-defined decision points in the system development life cycle.','SA-15(3).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service perform a criticality analysis at the breadth/depth IAW DoDI 5200.44.\n\nThe organization should develop Request for Proposals (RFPs) and other contract language that require contractors to perform Criticality Analyses (CAs) periodically. Developer input into criticality analysis provides detailed design documentation for information system components (e.g., functional specifications, high-level designs, low-level designs, and source code/hardware schematics). Criticality Analysis should be conducted in accordance with the DoDI 5200.44 and the DoDI 5000.2.\n\nOnce the program has identified critical functions through the criticality analysis, the program systems engineers and SSEs can use the results along with the vulnerability assessment and threat assessment to determine the risk.\n\nThe organization should reference the Defense Acquisition Guidebook (DAG) Chapter 13 for more information.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform a criticality analysis at the breadth/depth IAW DoDI 5200.44.'), ('003254','draft','2013-09-30','DISA FSO','policy','The organization defines the breadth/depth at which the developer of the information system, system component, or information system service is required to perform a criticality analysis.','SA-15(3).2','The organization being inspected/assessed defines and documents the breadth/depth the developer of the information system, system component, or information system service is required to perform a criticality analysis IAW DoDI 5200.44.\n\nThe criticality analysis allows a program to focus attention (and resources) on the system capabilities, mission-critical functions that matter most. Mission-critical functions are those functions of the system that, if corrupted or disabled, would likely lead to mission failure or degradation. Mission-critical components are primarily the elements of the system (hardware, software, and firmware) that implement critical functions; however, system components that perform defensive functions to protect inherently critical components and other components with unmediated access to inherently critical components, may themselves be mission critical.\n\nCriticality analysis is the primary method by which a program identifies mission-critical functions and associated components. Criticality analysis includes the following iterative steps:\n1. Identify and group mission threads.\n2. Decompose the mission threads into their mission-critical functions and assign them criticality levels.\n3. Map the mission-critical functions to the system architecture and identify the defined system components (hardware, software, and firmware) that implement those functions (i.e., components that are critical to the mission effectiveness of the system or an interfaced network).\n4. Allocate criticality levels to those components that have been defined.\n\nCriticality levels are determined by assessing the relative impact on the systems ability to complete its mission if the function and associated component fails. Level I is total mission failure, Level II is significant/unacceptable degradation, Level III is partial/acceptable, and Level IV is negligible.\n\nThe organization should reference the Defense Acquisition Guidebook (DAG) Chapter 13 for more information.\n\nDoD has determined the breadth/depth are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented breadth/depth to ensure the organization being inspected/assessed defines the breadth/depth the developer of the information system, system component, or information system service is required to perform a criticality analysis IAW DoDI 5200.44.\n\nDoD has determined the breadth/depth are not appropriate to define at the Enterprise level.'), ('003255','draft','2013-09-30','DISA FSO','policy','The organization defines decision points in the system development life cycle at which the developer of the information system, system component, or information system service is required to perform a criticality analysis.','SA-15(3).3','The organization being inspected/assessed defines and documents decision points in the system development life cycle the developer of the information system, system component, or information system service is required to perform a criticality analysis IAW DoDI 5200.44 and DoDI 5000.2.\n\nCriticality analysis is an iterative process that should be performed whenever an architecture or design is being developed or modified and executed across the acquisition lifecycle, building on growing maturity and updated information.\n\nCriticality analysis is performed throughout the acquisition life cycle. As a minimum, the developer should support the performing and update a criticality analysis, along with the threat assessment, vulnerability assessment, risk assessment, cost-benefit trade-off and countermeasure selection, before each technical review.','The organization conducting the inspection/assessment obtains and examines the documented decision points to ensure the organization being inspected/assessed defines decision points in the system development life cycle the developer of the information system, system component, or information system service is required to perform a criticality analysis IAW DoDI 5200.44 and DoDI 5000.2.\n\nDoD has determined the decision points are not appropriate to define at the Enterprise level.'), ('003256','draft','2013-09-30','DISA FSO','policy','The organization requires that developers perform threat modeling for the information system at an organization-defined breadth/depth.','SA-15(4).1','The organization being inspected/assessed requires within contracts/agreements that the developers perform threat modeling for the information system at the breadth/depth defined in SA-15 (4), CCI 3258.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developers perform threat modeling for the information system at the breadth/depth defined in SA-15 (4), CCI 3258.'), ('003257','draft','2013-09-30','DISA FSO','policy','The organization requires that developers perform a vulnerability analysis for the information system at an organization-defined breadth/depth.','SA-15(4).2','The organization being inspected/assessed requires within contracts/agreements that the developers perform a vulnerability analysis for the information system at the breadth/depth defined in SA-15 (4), CCI 3259 to inform design or implementation changes and resulting vulnerabilities are accounted for during development . Vulnerability analysis should consider a review of system design and may include static analyses, dynamic analyses, simulations, and penetration testing. The developer should document the type of vulnerability analysis that was performed, the results (including defects) and any follow on actions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developers perform a vulnerability analysis for the information system at the breadth/depth defined in SA-15 (4), CCI 3259.'), ('003258','draft','2013-09-30','DISA FSO','policy','The organization defines the breadth/depth at which threat modeling for the information system must be performed by developers.','SA-15(4).3','The organization being inspected/assessed requires within contracts/agreements that the developers perform threat modeling for the information system at the breadth/depth defined in SA-15 (4), CCI 3258.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developers perform threat modeling for the information system at the breadth/depth defined in SA-15 (4), CCI 3258.'), ('003259','draft','2013-09-30','DISA FSO','policy','The organization defines the breadth/depth at which vulnerability analysis for the information system must be performed by developers.','SA-15(4).4','The organization being inspected/assessed requires within contracts/agreements that the developers perform a vulnerability analysis for the information system at the breadth/depth defined in SA-15 (4), CCI 3259 to inform design or implementation changes and resulting vulnerabilities are accounted for during development . Vulnerability analysis should consider a review of system design and may include static analyses, dynamic analyses, simulations, and penetration testing. The developer should document the type of vulnerability analysis that was performed, the results (including defects) and any follow on actions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developers perform a vulnerability analysis for the information system at the breadth/depth defined in SA-15 (4), CCI 3259.'), ('003260','draft','2013-09-30','DISA FSO','policy','Threat modeling performed by the developer for the information system uses organization-defined information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels.','SA-15(4).5','The organization being inspected/assessed requires within contracts/agreements that the developer\'s threat modeling include the use of information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels defined in SA-15 (4), CCI 3262.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed documents within their contracts/agreements, their requirement that the developer\'s threat modeling include the use of information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels defined in SA-15 (4), CCI 3262.'), ('003261','draft','2013-09-30','DISA FSO','policy','Vulnerability analysis performed by the developer for the information system uses organization-defined information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels.','SA-15(4).6','The organization being inspected/assessed requires within contracts/agreements that the developer\'s vulnerability analysis include the use of information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels defined in SA-15 (4), CCI 3263. Vulnerability analysis should consider a review of system design and may include static analyses, dynamic analyses, simulations, and penetration testing. The developer should document the type of vulnerability analysis that was performed, the results (including defects) and any follow on actions.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed documents within their contracts/agreements, their requirement that the developer\'s vulnerability analysis include the use of information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels defined in SA-15 (4), CCI 3263.'), ('003262','draft','2013-09-30','DISA FSO','policy','The organization defines information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used to perform threat modeling for the information system by the developer.','SA-15(4).7','The organization being inspected/assessed defines and documents information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used to perform threat modeling for the information system by the developer. DoD has determined the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information to ensure the organization being inspected/assessed defines information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used to perform threat modeling for the information system by the developer. DoD has determined the information is not appropriate to define at the Enterprise level.'), ('003263','draft','2013-09-30','DISA FSO','policy','The organization defines information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used to perform a vulnerability analysis for the information system by the developer.','SA-15(4).8','The organization being inspected/assessed defines and documents information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used to perform a vulnerability analysis for the information system by the developer. DoD has determined the information is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information to ensure the organization being inspected/assessed defines information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used to perform a vulnerability analysis for the information system by the developer. DoD has determined the information is not appropriate to define at the Enterprise level.'), ('003264','draft','2013-09-30','DISA FSO','policy','The organization requires the threat modeling performed by the developers employ organization-defined tools and methods.','SA-15(4).9','The organization being inspected/assessed requires within contracts/agreements that the threat modeling performed by the developers employ the tools and methods defined in SA-15 (4), CCI 3266.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the threat modeling performed by the developers employ the tools and methods defined in SA-15 (4), CCI 3266.'), ('003265','draft','2013-09-30','DISA FSO','policy','The organization requires the vulnerability analysis performed by the developers employ organization-defined tools and methods.','SA-15(4).10','The organization being inspected/assessed requires within contracts/agreements that the vulnerability analysis performed by the developers employ the tools and methods defined in SA-15 (4), CCI 3267.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the vulnerability analysis performed by the developers employ the tools and methods defined in SA-15 (4), CCI 3267.'), ('003266','draft','2013-09-30','DISA FSO','policy','The organization defines tools and methods to be employed to perform threat modeling for the information system by the developer.','SA-15(4).11','The organization being inspected/assessed defines and documents tools and methods to be employed to perform threat modeling for the information system by the developer. DoD has determined the tools and methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented tools and methods to ensure the organization being inspected/assessed defines tools and methods to be employed to perform threat modeling for the information system by the developer. DoD has determined the tools and methods are not appropriate to define at the Enterprise level.'), ('003267','draft','2013-09-30','DISA FSO','policy','The organization defines tools and methods to be employed to perform a vulnerability analysis for the information system by the developer.','SA-15(4).12','The organization being inspected/assessed defines and documents tools and methods to be employed to perform a vulnerability analysis for the information system by the developer. DoD has determined the tools and methods are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented tools and methods to ensure the organization being inspected/assessed defines tools and methods to be employed to perform a vulnerability analysis for the information system by the developer. DoD has determined the tools and methods are not appropriate to define at the Enterprise level.'), ('003268','draft','2013-09-30','DISA FSO','policy','The organization requires that developers performing threat modeling for the information system produce evidence that meets organization-defined acceptance criteria.','SA-15(4).13','The organization being inspected/assessed requires within contracts/agreements that the developers performing threat modeling for the information system produces evidence that meet the acceptance criteria defined in SA-15 (4), CCI 3270.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developers performing threat modeling for the information system produces evidence that meet the acceptance criteria defined in SA-15 (4), CCI 3270.'), ('003269','draft','2013-09-30','DISA FSO','policy','The organization requires that developers performing vulnerability analysis for the information system produce evidence that meets organization-defined acceptance criteria.','SA-15(4).14','The organization being inspected/assessed requires within contracts/agreements that the developers performing vulnerability analysis for the information system produces evidence that meet the acceptance criteria defined in SA-15 (4), CCI 3271.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the vulnerability analysis performed by the developers performing vulnerability analysis for the information system produces evidence that meet the acceptance criteria defined in SA-15 (4), CCI 3271.'), ('003270','draft','2013-09-30','DISA FSO','policy','The organization defines the acceptance criteria that must be met when threat modeling of the information system is performed by the developer.','SA-15(4).15','The organization being inspected/assessed defines and documents the acceptance criteria that must be met when threat modeling of the information system is performed by the developer. DoD has determined the acceptance criteria is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented acceptance criteria to ensure the organization being inspected/assessed defines the acceptance criteria that must be met when threat modeling of the information system is performed by the developer. DoD has determined the acceptance criteria is not appropriate to define at the Enterprise level.'), ('003271','draft','2013-10-03','DISA FSO','policy','The organization defines the acceptance criteria that must be met when vulnerability analysis of the information system is performed by the developer.','SA-15(4).16','The organization being inspected/assessed defines and documents the acceptance criteria that must be met when vulnerability analysis of the information system is performed by the developer. DoD has determined the acceptance criteria is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented acceptance criteria to ensure the organization being inspected/assessed defines the acceptance criteria that must be met when vulnerability analysis of the information system is performed by the developer. DoD has determined the acceptance criteria is not appropriate to define at the Enterprise level.'), ('003272','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to reduce attack surfaces to organization-defined thresholds.','SA-15(5).1','The organization being inspected/assessed requires the developer to perform attack surface reduction activities to reduce risk to organizations by giving attackers less opportunity to exploit weaknesses or vulnerabilities.\n\nAttack surface reduction may include:\n1. Testing and delivering the system with debug options off, or making the debug capabilities inaccessible to unauthorized users;\n2. Applying the principle of least privilege;\n3. Applying the principle of least functionality (i.e., restricting ports, protocols, functions, and services), deprecating unsafe functions, and eliminating application programming interfaces (APIs) that are vulnerable to cyber attacks; and\n4. Employing layered defenses.\n5. Using trusted physical delivery mechanisms that do not permit access to the element during delivery (ship via a protected carrier, use cleared/official couriers, or a diplomatic pouch);\n6. Using trusted logical delivery of products and services (require downloading from approved, verification-enhanced sites);\n7. Avoiding the purchase of custom configurations;\n8. Using procurement carve outs (i.e., exclusions to commitments or obligations);\n9. Using defensive design approaches;\n10. Minimizing the time between purchase decisions and required delivery;\n11. Employing a diverse set of suppliers;\n12. Employing approved vendor lists with standing reputations in industry;\n13. Diversifying and disperse how the product is acquired (e.g. Spot Markets); and\n14. Employing inventory management policies and processes.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service reduce attack surfaces to thresholds defined in SA-15 (5), CCI 3273.'), ('003273','draft','2013-10-03','DISA FSO','policy','The organization defines the thresholds to which the developer of the information system, system component, or information system service is required to reduce attack surfaces.','SA-15(5).2','The organization being inspected/assessed defines and documents the thresholds that the developer of the information system, system component, or information system service is required to reduce attack surfaces. DoD has determined the thresholds are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented thresholds to ensure the organization being inspected/assessed defines the thresholds that the developer of the information system, system component, or information system service is required to reduce attack surfaces. DoD has determined the thresholds are not appropriate to define at the Enterprise level.'), ('003274','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to implement an explicit process to continuously improve the development process.','SA-15(6).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service implement an explicit process to continuously improve the development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service implement an explicit process to continuously improve the development process.'), ('003275','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system services to perform an automated vulnerability analysis using organization-defined tools.','SA-15(7).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service perform an automated vulnerability analysis using the tools defined in SA-15 (7), CCI 3276.\n\nThe organization should require the developer to perform automated vulnerability analysis which may include dynamic analyses, static analyses, and regression testing tools. Automated testing should be performed in conjunction with manual testing to provide greater levels of analysis.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service perform an automated vulnerability analysis using the tools defined in SA-15 (7), CCI 3276.'), ('003276','draft','2013-10-03','DISA FSO','policy','The organization defines the tools the developer of the information system, system component, or information system services uses to perform an automated vulnerability analysis.','SA-15(7).2','The organization being inspected/assessed defines and documents the tools the developer of the information system, system component, or information system services uses to perform an automated vulnerability analysis. DoD has determined the tools are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented tools to ensure the organization being inspected/assessed defines the tools the developer of the information system, system component, or information system services uses to perform an automated vulnerability analysis. DoD has determined the tools are not appropriate to define at the Enterprise level.'), ('003277','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system services to determine the exploitation potential for discovered vulnerabilities.','SA-15(7).3','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service determine the exploitation potential for discovered vulnerabilities.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service determine the exploitation potential for discovered vulnerabilities.'), ('003278','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system services to determine potential risk mitigations for delivered vulnerabilities.','SA-15(7).4','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service determine potential risk mitigations for delivered vulnerabilities.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service determine potential risk mitigations for delivered vulnerabilities.'), ('003279','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system services to deliver the outputs of the tools and results of the vulnerability analysis to organization-defined personnel or roles.','SA-15(7).5','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service deliver the outputs of the tools and results of the vulnerability analysis to the ISSO, ISSM, and PM.\n\nDoD has defined the personnel or roles as the ISSO, ISSM, and PM.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service deliver the outputs of the tools and results of the vulnerability analysis to the ISSO, ISSM, and PM.\n\nDoD has defined the personnel or roles as the ISSO, ISSM, and PM.'), ('003280','draft','2013-10-03','DISA FSO','policy','The organization defines the personnel or roles to whom the outputs of the tools and results of the vulnerability analysis are delivered.','SA-15(7).6','DoD has defined the personnel or roles as the ISSO, ISSM, and PM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as the ISSO, ISSM, and PM.'), ('003281','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to use threat modeling from similar systems, components, or services to inform the current development process.','SA-15(8).1','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service use threat modeling from similar systems, components, or services to inform the current development process.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service use threat modeling from similar systems, components, or services to inform the current development process.'), ('003282','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to use vulnerability analysis from similar systems, components, or services to inform the current development process.','SA-15(8).2','The organization being inspected/assessed requires within contracts/agreements that the developer of the information system, system component, or information system service use vulnerability analysis from similar systems, components, or services to inform the current development process and potential design or implementation issues. Authoritative vulnerability information is available from a variety of public and private sector sources including, for example, the National Vulnerability Database and the Government/Industry Data Exchange Program (GIDEP).','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service use vulnerability analysis from similar systems, components, or services to inform the current development process.'), ('003283','draft','2013-10-03','DISA FSO','policy','The organization approves the use of live data in development environments for the information system, system component, or information system service.','SA-15(9).1','The organization being inspected/assessed documents and implements a process to approve the use of live data in development environments for the information system, system component, or information system service. The organization must maintain a record of approvals.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of approvals to ensure the organization being inspected/assessed approves the use of live data in development environments for the information system, system component, or information system service.'), ('003284','draft','2013-10-03','DISA FSO','policy','The organization approves the use of live data in test environments for the information system, system component, or information system service.','SA-15(9).2','The organization being inspected/assessed documents and implements a process to approve the use of live data in test environments for the information system, system component, or information system service. The organization must maintain a record of approvals.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of approvals to ensure the organization being inspected/assessed approves the use of live data in test environments for the information system, system component, or information system service.'), ('003285','draft','2013-10-03','DISA FSO','policy','The organization documents the use of live data in development environments for the information system, system component, or information system service.','SA-15(9).3','The organization being inspected/assessed documents the use of live data in development environments for the information system, system component, or information system service.','The organization conducting the inspection/assessment obtains and examines the documented use of live data in test environments to ensure the organization being inspected/assessed documents the use of live data in development environments for the information system, system component, or information system service.'), ('003286','draft','2013-10-03','DISA FSO','policy','The organization documents the use of live data in test environments for the information system, system component, or information system service.','SA-15(9).4','The organization being inspected/assessed documents the use of live data in test environments for the information system, system component, or information system service.','The organization conducting the inspection/assessment obtains and examines the documented use of live data in test environments to ensure the organization being inspected/assessed documents the use of live data in test environments for the information system, system component, or information system service.'), ('003287','draft','2013-10-03','DISA FSO','policy','The organization controls the use of live data in development environments for the information system, system component, or information system service.','SA-15(9).5','The organization being inspected/assessed documents and implements a process to control the use of live data in development environments for the information system, system component, or information system service. The Enclave Test and Development STIG identifies requirements for test and development environments.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed controls the use of live data in development environments for the information system, system component, or information system service.'), ('003288','draft','2013-10-03','DISA FSO','policy','The organization controls the use of live data in test environments for the information system, system component, or information system service.','SA-15(9).6','The organization being inspected/assessed documents and implements a process to control the use of live data in test environments for the information system, system component, or information system service. The Enclave Test and Development STIG identifies requirements for test and development environments.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed controls the use of live data in test environments for the information system, system component, or information system service.'), ('003289','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide an incident response plan.','SA-15(10).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service provide an incident response plan.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service provide an incident response plan.'), ('003290','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system or system component to archive the system or component to be released or delivered together with the corresponding evidence supporting the final security review.','SA-15(11).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service be released or delivered together with the corresponding evidence supporting the final security review.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service be released or delivered together with the corresponding evidence supporting the final security review.'), ('003291','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide organization-defined training on the correct use and operation of the implemented security functions, controls, and/or mechanisms.','SA-16.1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service provide training defined in SA-16, CCI 3292 on the correct use and operation of the implemented security functions, controls, and/or mechanisms.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service provide training defined in SA-16, CCI 3292 on the correct use and operation of the implemented security functions, controls, and/or mechanisms.'), ('003292','draft','2013-10-03','DISA FSO','policy','The organization defines the training the developer of the information system, system component, or information system service is required to provide on the correct use and operation of the implemented security functions, controls, and/or mechanisms.','SA-16.2','The organization being inspected/assessed defines and documents the training the developer of the information system, system component, or information system service is required to provide on the correct use and operation of the implemented security functions, controls, and/or mechanisms. DoD has determined the training is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented training to ensure the organization being inspected/assessed defines the training the developer of the information system, system component, or information system service is required to provide on the correct use and operation of the implemented security functions, controls, and/or mechanisms. DoD has determined the training is not appropriate to define at the Enterprise level.'), ('003293','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce a design specification and security architecture.','SA-17.1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce a design specification and security architecture.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce a design specification and security architecture.'), ('003294','draft','2013-10-03','DISA FSO','policy','The design specification and security architecture is consistent with and supportive of the organization^s security architecture which is established within and is an integrated part of the organization^s enterprise architecture.','SA-17.2','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer produce a design specification and security architecture that is consistent with and supportive of the organization\'s security architecture which is established within and is interrogated part of the organization\'s enterprise architecture.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer produce a design specification and security architecture that is consistent with and supportive of the organization\'s security architecture which is established within and is interrogated part of the organization\'s enterprise architecture.'), ('003295','draft','2013-10-03','DISA FSO','policy','The design specification and security architecture accurately and completely describes the required security functionality.','SA-17.3','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer produce a design specification and security architecture that accurately and completely describes the required security functionality.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer produce a design specification and security architecture that accurately and completely describes the required security functionality.'), ('003296','draft','2013-10-03','DISA FSO','policy','The design specification and security architecture accurately and completely describes the allocation of security controls among physical and logical components.','SA-17.4','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer produce a design specification and security architecture that accurately and completely describes the allocation of security controls among physical and logical components.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer produce a design specification and security architecture that accurately and completely describes the allocation of security controls among physical and logical components.'), ('003297','draft','2013-10-03','DISA FSO','policy','The design specification and security architecture expresses how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection.','SA-17.5','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer produce a design specification and security architecture that expresses how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer produce a design specification and security architecture that expresses how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection.'), ('003298','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system to produce, as an integral part of the development process, a formal policy model describing the organization-defined elements of organizational security policy to be enforced.','SA-17(1).1','The organization being inspected/assessed documents within contracts/agreements,, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal policy model describing the elements of organizational security policy defined in SA-17 (1), CCI 3299 to be enforced.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal policy model describing the elements of organizational security policy defined in SA-17 (1), CCI 3299 to be enforced.'), ('003299','draft','2013-10-03','DISA FSO','policy','The organization defines the elements of organization security policy to be described in the formal policy model for enforcement on the information system, system component, or information system service.','SA-17(1).2','The organization being inspected/assessed defines and documents the elements of organization security policy to be described in the formal policy model for enforcement on the information system, system component, or information system service. DoD has determined the elements are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented elements to ensure the organization being inspected/assessed defines the elements of organization security policy to be described in the formal policy model for enforcement on the information system, system component, or information system service. DoD has determined the elements are not appropriate to define at the Enterprise level.'), ('003300','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational security policy when implemented.','SA-17(1).3','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational security policy when implemented.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements o ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational security policy when implemented.'), ('003301','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to define security-relevant hardware.','SA-17(2).1','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service define security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service define security-relevant software.'), ('003302','deprecated','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to define security-relevant hardware.',NULL,NULL,NULL), ('003303','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to define security-relevant software.','SA-17(2).2','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service define security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service define security-relevant software.'), ('003304','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to define security-relevant firmware.','SA-17(2).3','The organization being inspected/assessed documents within contracts/agreements, the requirement that the developer of the information system, system component, or information system service define security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service define security-relevant firmware.'), ('003305','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide a rationale that the definition for security-relevant hardware is complete.','SA-17(2).4','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service provide a rationale that the definition for security-relevant hardware is complete.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service provide a rationale that the definition for security-relevant hardware is complete.'), ('003306','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide a rationale that the definition for security-relevant software is complete.','SA-17(2).5','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service provide a rationale that the definition for security-relevant software is complete.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service provide a rationale that the definition for security-relevant software is complete.'), ('003307','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to provide a rationale that the definition for security-relevant firmware is complete.','SA-17(2).6','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service provide a rationale that the definition for security-relevant firmware is complete.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service provide a rationale that the definition for security-relevant firmware is complete.'), ('003308','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.','SA-17(3).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.'), ('003309','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant software in terms of exceptions, error messages, and effects.','SA-17(3).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant software in terms of exceptions, error messages, and effects.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant software in terms of exceptions, error messages, and effects.'), ('003310','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','SA-17(3).3','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.'), ('003311','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via proof to the extent feasible with additional informal demonstration as necessary, that the formal top-level specification is consistent with the formal policy model.','SA-17(3).4','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via proof to the extent feasible with additional informal demonstration as necessary, that the formal top-level specification is consistent with the formal policy model.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via proof to the extent feasible with additional informal demonstration as necessary, that the formal top-level specification is consistent with the formal policy model.'), ('003312','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant hardware.','SA-17(3).5','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant hardware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant hardware.'), ('003313','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant software.','SA-17(3).6','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant software.'), ('003314','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant firmware.','SA-17(3).7','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant firmware.'), ('003315','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show that the formal top-level specification is an accurate description of the implemented security-relevant hardware.','SA-17(3).8','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show that the formal top-level specification is an accurate description of the implemented security-relevant hardware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show that the formal top-level specification is an accurate description of the implemented security-relevant hardware.'), ('003316','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show that the formal top-level specification is an accurate description of the implemented security-relevant software.','SA-17(3).9','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show that the formal top-level specification is an accurate description of the implemented security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show that the formal top-level specification is an accurate description of the implemented security-relevant software.'), ('003317','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show that the formal top-level specification is an accurate description of the implemented security-relevant firmware.','SA-17(3).10','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show that the formal top-level specification is an accurate description of the implemented security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show that the formal top-level specification is an accurate description of the implemented security-relevant firmware.'), ('003318','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to describe the security-relevant hardware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant hardware.','SA-17(3).11','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service describe the security-relevant firmware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant hardware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service describe the security-relevant firmware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant hardware.'), ('003319','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to describe the security-relevant software mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant software.','SA-17(3).12','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service describe the security-relevant software mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service describe the security-relevant software mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant software.'), ('003320','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to describe the security-relevant firmware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant firmware.','SA-17(3).13','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service describe the security-relevant firmware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service describe the security-relevant firmware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant firmware.'), ('003321','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.','SA-17(4).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.'), ('003322','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant software in terms of exceptions, error messages, and effects.','SA-17(4).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.'), ('003323','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','SA-17(4).3','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.'), ('003324','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration or convincing argument with formal methods as feasible that the descriptive top-level specification is consistent with the formal policy model.','SA-17(4).4','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration or convincing argument with formal methods as feasible that the descriptive top-level specification is consistent with the formal policy model.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration or convincing argument with formal methods as feasible that the descriptive top-level specification is consistent with the formal policy model.'), ('003325','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant hardware.','SA-17(4).5','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant hardware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant hardware.'), ('003326','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant software.','SA-17(4).6','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant software.'), ('003327','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant firmware.','SA-17(4).7','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant firmware.'), ('003328','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware.','SA-17(4).8','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware.'), ('003329','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant software.','SA-17(4).9','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant software.'), ('003330','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant firmware.','SA-17(4).10','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant firmware.'), ('003331','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to describe the security-relevant hardware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant hardware.','SA-17(4).11','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service describe the security-relevant hardware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant hardware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service describe the security-relevant hardware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant hardware.'), ('003332','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to describe the security-relevant software mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant software.','SA-17(4).12','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service describe the security-relevant software mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant software.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service describe the security-relevant software mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant software.'), ('003333','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to describe the security-relevant firmware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant firmware.','SA-17(4).13','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service describe the security-relevant firmware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant firmware.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service describe the security-relevant firmware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant firmware.'), ('003334','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to design and structure the security-relevant hardware to use a complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(5).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service design and structure the security-relevant hardware to use a complete, conceptually simple protection mechanism with precisely defined semantics.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service design and structure the security-relevant hardware to use a complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003335','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to design and structure the security-relevant software to use a complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(5).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service design and structure the security-relevant software to use a complete, conceptually simple protection mechanism with precisely defined semantics.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service design and structure the security-relevant software to use a complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003336','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to design and structure the security-relevant firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(5).3','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service design and structure the security-relevant firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service design and structure the security-relevant firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003337','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to internally structure the security-relevant hardware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(5).4','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service internally structure the security-relevant hardware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service internally structure the security-relevant hardware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003338','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to internally structure the security-relevant software with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(5).5','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service internally structure the security-relevant software with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service internally structure the security-relevant software with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003339','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service to internally structure the security-relevant firmware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(5).6','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service internally structure the security-relevant firmware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service internally structure the security-relevant firmware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003340','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, component, or information system service to structure security-relevant hardware to facilitate testing.','SA-17(6).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service structure security-relevant hardware to facilitate testing.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service structure security-relevant hardware to facilitate testing.'), ('003341','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, component, or information system service to structure security-relevant software to facilitate testing.','SA-17(6).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service structure security-relevant software to facilitate testing.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service structure security-relevant software to facilitate testing.'), ('003342','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, component, or information system service to structure security-relevant firmware to facilitate testing.','SA-17(6).3','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service structure security-relevant firmware to facilitate testing.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service structure security-relevant firmware to facilitate testing.'), ('003343','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, component, or information system service to structure security-relevant hardware to facilitate controlling access with least privilege.','SA-17(7).1','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service structure security-relevant hardware to facilitate controlling access with least privilege.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service structure security-relevant hardware to facilitate controlling access with least privilege.'), ('003344','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, component, or information system service to structure security-relevant software to facilitate controlling access with least privilege.','SA-17(7).2','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service structure security-relevant software to facilitate controlling access with least privilege.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service structure security-relevant software to facilitate controlling access with least privilege.'), ('003345','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, component, or information system service to structure security-relevant firmware to facilitate controlling access with least privilege.','SA-17(7).3','The organization being inspected/assessed documents within the contracts/agreements, the requirement that the developer of the information system, system component, or information system service structure security-relevant firmware to facilitate controlling access with least privilege.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of the information system, system component, or information system service structure security-relevant firmware to facilitate controlling access with least privilege.'), ('003346','draft','2013-10-03','DISA FSO','policy','The organization implements a tamper protection program for the information system, system component, or information system service.','SA-18.1','The organization being inspected/assessed documents and implements a tamper protection program for the information system, system component, or information system service.','The organization conducting the inspection/assessment obtains and examines the documented tamper protection program to ensure the organization being inspected/assessed implements a tamper protection program for the information system, system component, or information system service.'), ('003347','draft','2013-10-03','DISA FSO','policy','The organization employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including design.','SA-18(1).1','The organization being inspected/assessed documents and implements a process to employ anti-tamper technologies and techniques during multiple phases in the system development life cycle including design.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including design.'), ('003348','draft','2013-10-03','DISA FSO','policy','The organization employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including development.','SA-18(1).2','The organization being inspected/assessed documents and implements a process to employ anti-tamper technologies and techniques during multiple phases in the system development life cycle including development.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including development.'), ('003349','draft','2013-10-03','DISA FSO','policy','The organization employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including integration.','SA-18(1).3','The organization being inspected/assessed documents and implements a process to employ anti-tamper technologies and techniques during multiple phases in the system development life cycle including integration.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including integration.'), ('003350','draft','2013-10-03','DISA FSO','policy','The organization employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including operations.','SA-18(1).4','The organization being inspected/assessed documents and implements a process to employ anti-tamper technologies and techniques during multiple phases in the system development life cycle including operations.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including operations.'), ('003351','draft','2013-10-03','DISA FSO','policy','The organization employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including maintenance.','SA-18(1).5','The organization being inspected/assessed documents and implements a process to employ anti-tamper technologies and techniques during multiple phases in the system development life cycle including maintenance.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs anti-tamper technologies and techniques during multiple phases in the system development life cycle including maintenance.'), ('003352','draft','2013-10-03','DISA FSO','policy','The organization inspects organization-defined information systems, system components, or devices at random, at an organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering.','SA-18(2).1','The organization being inspected/assessed documents and implements a process to inspect information systems, system components, or devices defined in SA-18 (2), CCI 3353 at random, at a frequency defined in SA-18 (2), CCI 3354, and/or upon indications of need for inspection defined in SA-18 (2), CCI 3355 to detect tampering. The organization must maintain a record of inspections.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of inspections to ensure the organization being inspected/assessed inspects information systems, system components, or devices defined in SA-18 (2), CCI 3353 at random, at a frequency defined in SA-18 (2), CCI 3354, and/or upon indications of need for inspection defined in SA-18 (2), CCI 3355 to detect tampering.'), ('003353','draft','2013-10-03','DISA FSO','policy','The organization defines the information systems, system components, or devices to inspect at random, at an organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering.','SA-18(2).2','The organization being inspected/assessed defines and documents the information systems, system components, or devices to inspect at random, at organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering. DoD has determined the information systems, system components, or devices are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information systems, system components, or devices to ensure the organization being inspected/assessed defines the information systems, system components, or devices to inspect at random, at organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering. DoD has determined the information systems, system components, or devices are not appropriate to define at the Enterprise level.'), ('003354','draft','2013-10-03','DISA FSO','policy','The organization defines the frequency on which to inspect organization-defined information systems, system components, or devices to detect tampering.','SA-18(2).3','The organization being inspected/assessed defines and documents the frequency to inspect organization-defined information systems, system, components, or devices to detect tampering. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency to inspect organization-defined information systems, system, components, or devices to detect tampering. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('003355','draft','2013-10-03','DISA FSO','policy','The organization defines indications of need for inspection to detect tampering during inspections of organization-defined information systems, system components, or devices.','SA-18(2).4','The organization being inspected/assessed defines and documents indications of need for inspection to detect tampering during inspections of organization-defined information systems, system components, or devices. DoD has determined the indications are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented indications to ensure the organization being inspected/assessed defines indications of need for inspection to detect tampering during inspections of organization-defined information systems, system components, or devices. DoD has determined the indications are not appropriate to define at the Enterprise level.'), ('003356','draft','2013-10-03','DISA FSO','policy','The organization develops an anti-counterfeit policy that includes the means to detect counterfeit components from entering the information system.','SA-19.1','The organization being inspected/assessed develops and documents an anti-counterfeit policy that include the means to detect counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the documented anti-counterfeit policy to ensure the organization being inspected/assessed develops an anti-counterfeit policy that include the means to detect counterfeit components from entering the information system.'), ('003357','draft','2013-10-03','DISA FSO','policy','The organization develops an anti-counterfeit policy that includes the means to prevent counterfeit components from entering the information system.','SA-19.2','The organization being inspected/assessed develops and documents an anti-counterfeit policy that include the means to prevent counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the documented anti-counterfeit policy to ensure the organization being inspected/assessed develops an anti-counterfeit policy that include the means to prevent counterfeit components from entering the information system.'), ('003358','draft','2013-10-03','DISA FSO','policy','The organization develops anti-counterfeit procedures that include the means to detect counterfeit components from entering the information system.','SA-19.3','The organization being inspected/assessed develops and documents anti-counterfeit procedures that include the means to detect counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the documented anti-counterfeit procedures to ensure the organization being inspected/assessed develops anti-counterfeit procedures that include the means to detect counterfeit components from entering the information system.'), ('003359','draft','2013-10-03','DISA FSO','policy','The organization develops anti-counterfeit procedures that include the means to prevent counterfeit components from entering the information system.','SA-19.4','The organization being inspected/assessed develops and documents anti-counterfeit procedures that include the means to prevent counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the documented anti-counterfeit procedures to ensure the organization being inspected/assessed develops anti-counterfeit procedures that include the means to prevent counterfeit components from entering the information system.'), ('003360','draft','2013-10-03','DISA FSO','policy','The organization implements an anti-counterfeit policy that includes the means to detect counterfeit components from entering the information system.','SA-19.5','The organization being inspected/assessed implements the policy defined in SA-19, CCIs 3356 that include the means to detect counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the policy defined in SA-19, CCIs 3356 and any artifacts applicable to counterfeit components to ensure the organization being inspected/assessed implements the policy defined in SA-19, CCIs 3356 that include the means to detect counterfeit components from entering the information system.'), ('003361','draft','2013-10-03','DISA FSO','policy','The organization implements an anti-counterfeit policy that includes the means to prevent counterfeit components from entering the information system.','SA-19.6','The organization being inspected/assessed implements the policy defined in SA-19, CCIs 3357 that include the means to prevent counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the policy defined in SA-19, CCIs 3357 and any artifacts applicable to counterfeit components to ensure the organization being inspected/assessed implements the policy defined in SA-19, CCIs 3357 that include the means to detect counterfeit components from entering the information system.'), ('003362','draft','2013-10-03','DISA FSO','policy','The organization implements anti-counterfeit procedures that include the means to detect counterfeit components from entering the information system.','SA-19.7','The organization being inspected/assessed implements the procedures defined in SA-19, CCIs 3358 that include the means to detect counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the procedures defined in SA-19, CCIs 3358 and any artifacts applicable to counterfeit components to ensure the organization being inspected/assessed implements the procedures defined in SA-19, CCIs 3358 that include the means to detect counterfeit components from entering the information system.'), ('003363','draft','2013-10-03','DISA FSO','policy','The organization implements anti-counterfeit procedures that include the means to prevent counterfeit components from entering the information system.','SA-19.8','The organization being inspected/assessed implements the procedures defined in SA-19, CCIs 3359 that include the means to prevent counterfeit components from entering the information system.','The organization conducting the inspection/assessment obtains and examines the procedures defined in SA-19, CCIs 3359 and any artifacts applicable to counterfeit components to ensure the organization being inspected/assessed implements the procedures defined in SA-19, CCIs 3359 that include the means to prevent counterfeit components from entering the information system.'), ('003364','draft','2013-10-03','DISA FSO','policy','The organization reports counterfeit information system components to the source of the counterfeit component, organization-defined external reporting organizations, and/or organization-defined personnel or roles.','SA-19.9','The organization being inspected/assessed documents and implements a process to report counterfeit information system components to source of counterfeit component, at a minimum, USCYBERCOM. And/or at a minimum, the ISSO, ISSM, and PM. The organization must maintain a record of reporting. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and PM. DoD has defined the external reporting organizations as at a minimum, USCYBERCOM.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of reporting to ensure the organization being inspected/assessed reports counterfeit information system components to source of counterfeit component, at a minimum, USCYBERCOM. And/or at a minimum, the ISSO, ISSM, and PM.'), ('003365','draft','2013-10-03','DISA FSO','policy','The organization defines the external reporting organizations to which counterfeit information system components are to be reported.','SA-19.10','DoD has defined the external reporting organizations as at a minimum, USCYBERCOM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the external reporting organizations as at a minimum, USCYBERCOM'), ('003366','draft','2013-10-03','DISA FSO','policy','The organization defines the personnel or roles to whom counterfeit information system components are to be reported.','SA-19.11','DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and PM.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as at a minimum, the ISSO, ISSM, and PM.'), ('003367','draft','2013-10-03','DISA FSO','policy','The organization trains organization-defined personnel or roles to detect counterfeit information system components (including hardware, software, and firmware).','SA-19(1).1','The organization being inspected/assessed documents and implements a process to train personnel or roles defined in SA-19 (1), CCI 3368 to detect counterfeit information system components (including hardware, software, and firmware). The organization must maintain a record of training.','The organization conducting the inspection/assessment obtains and examines the documented process, the list of personnel responsible for detecting counterfeit information system components, as well as the record of training to ensure the organization being inspected/assessed trains personnel or roles defined in SA-19 (1), CCI 3368 to detect counterfeit information system components (including hardware, software, and firmware).'), ('003368','draft','2013-10-03','DISA FSO','policy','The organization defines the personnel or roles to be trained to detect counterfeit information system components (including hardware, software, and firmware).','SA-19(1).2','The organization being inspected/assessed defines and documents the personnel or roles to be trained to detect counterfeit information system components (including hardware, software, and firmware). DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented personnel or roles to ensure the organization being inspected/assessed defines the personnel or roles to be trained to detect counterfeit information system components (including hardware, software, and firmware). DoD has determined the personnel or roles are not appropriate to define at the Enterprise level.'), ('003369','draft','2013-10-03','DISA FSO','policy','The organization maintains configuration control over organization-defined information system components awaiting service/repair.','SA-19(2).1','The organization being inspected/assessed documents and implements a process to maintain configuration control over information system components defined in SA-19 (2), CCI 3370 awaiting service/repair.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed maintains configuration control l over information system components defined in SA-19 (2), CCI 3370 awaiting service/repair.'), ('003370','draft','2013-10-03','DISA FSO','policy','The organization defines the information system components awaiting service/repair over which configuration control must be maintained.','SA-19(2).2','The organization being inspected/assessed defines and documents the information system components awaiting service/repair in which configuration control must be maintained. DoD has determined the information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system components to ensure the organization being inspected/assessed defines the information system components awaiting service/repair in which configuration control must be maintained. DoD has determined the information system components are not appropriate to define at the Enterprise level.'), ('003371','draft','2013-10-03','DISA FSO','policy','The organization maintains configuration control over serviced/repaired components awaiting return to service.','SA-19(2).3','The organization being inspected/assessed documents and implements a process to maintain configuration control over serviced/repaired components awaiting return to service.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed maintains configuration control over serviced/repaired components awaiting return to service.'), ('003372','draft','2013-10-03','DISA FSO','policy','The organization defines the support from external providers to be provided for unsupported information system components.','SA-22(1).1','The organization being inspected/assessed defines and documents the support from external providers to be provided for unsupported information system components. DoD has determined the support from external providers is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented support to ensure the organization being inspected/assessed defines the support from external providers to be provided for unsupported information system components. DoD has determined the support from external providers is not appropriate to define at the Enterprise level.'), ('003373','draft','2013-10-03','DISA FSO','policy','The organization provides in-house support and/or organization-defined support from external providers for unsupported information system components.','SA-22(1).2','The organization being inspected/assessed documents and implements a process to provide in-house support and/or support from external providers defined in SA-22 (1), CCI 3372 for unsupported information system components.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides in-house support and/or support from external providers defined in SA-22 (1), CCI 3372 for unsupported information system components.'), ('003374','draft','2013-10-03','DISA FSO','policy','The organization documents approval for the continued use of unsupported system components required to satisfy mission/business needs.','SA-22.2','The organization being inspected/assessed documents approval for the continued use of unsupported system components required to satisfy mission/business needs.','The organization conducting the inspection/assessment obtains and examines the hardware and software lists as well as the documented approvals to ensure the organization being inspected/assessed documents approval for the continued use of unsupported system components required to satisfy mission/business needs.'), ('003375','draft','2013-10-03','DISA FSO','policy','The organization provides justification for the continued use of unsupported system components required to satisfy mission/business needs.','SA-22.3','The organization being inspected/assessed documents justification for the continued use of unsupported system components required to satisfy mission/business needs.','The organization conducting the inspection/assessment obtains and examines the documented justification as well as the hardware and software lists to ensure the organization being inspected/assessed provides justification for the continued use of unsupported system components required to satisfy mission/business needs.'), ('003376','draft','2013-10-03','DISA FSO','policy','The organization replaces information system components when support for the components is no longer available from the developer, vendor, or manufacturer.','SA-22.1','The organization being inspected/assessed documents and implements a process to replace information system components when support for the components is no longer available from the developer, vendor, or manufacturer.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the hardware and software lists to ensure the organization being inspected/assessed replaces information system components when support for the components is no longer available from the developer, vendor, or manufacturer.'), ('003377','draft','2013-10-03','DISA FSO','policy','The organization defines the actions the developer of the information system, system component, or information system service must take to ensure the required screening criteria are satisfied.','SA-21(1).1','The organization being inspected/assessed defines and documents the actions the developer of the information system, system component, or information system service must take to ensure the required screening criteria are satisfied. DoD has determined the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed defines the actions the developer of the information system, system component, or information system service must take to ensure the required screening criteria are satisfied. DoD has determined the actions are not appropriate to define at the Enterprise level.'), ('003378','draft','2013-10-03','DISA FSO','policy','The organization defines the actions the developer of the information system, system component, or information system service must take to ensure the required access authorizations are satisfied.','SA-21(1).2','The organization being inspected/assessed defines and documents the actions the developer of the information system, system component, or information system service must take to ensure the required access authorizations are satisfied. DoD has determined the actions are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed defines the actions the developer of the information system, system component, or information system service must take to ensure the required access authorizations are satisfied. DoD has determined the actions are not appropriate to define at the Enterprise level.'), ('003379','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service take organization-defined actions to ensure the required screening criteria are satisfied.','SA-21(1).3','The organization being inspected/assessed documents within the contracts/agreements the requirement that the developer of information system, system component, or information system service take actions defined in SA-21 (1), CCI 3377 to ensure the required screening criteria are satisfied.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of information system, system component, or information system service take actions defined in SA-21 (1), CCI 3377 to ensure the required screening criteria are satisfied.'), ('003380','draft','2013-10-03','DISA FSO','policy','The organization requires the developer of the information system, system component, or information system service take organization-defined actions to ensure the required access authorizations are satisfied.','SA-21(1).4','The organization being inspected/assessed documents within the contracts/agreements the requirement that the developer of information system, system component, or information system service take actions defined in SA-21 (1), CCI 3378 to ensure the required access authorizations are satisfied.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of information system, system component, or information system service take actions defined in SA-21 (1), CCI 3378 to ensure the required access authorizations are satisfied.'), ('003381','draft','2013-10-03','DISA FSO','policy','The organization defines additional personnel screening criteria that must be satisfied by the developer of an organization-defined information system, system component, or information system service.','SA-21.4','The organization being inspected/assessed defines and documents additional personnel screening criteria that must be satisfied by the developer of organization-defined information system, system component, or information system service.\n\nDoD has determined the additional personnel screening criteria is not appropriate to define at the Enterprise level.\n\nThe organization should ensure that the developer is trustworthy by performing a review of the developer that may include:\n1. Organization and process certifications;\n2. Security policies, procedures, and activities across the lifecycle;\n3. Supply chain and how suppliers select/manage their suppliers/service providers;\n4. Financials to determine if the supplier is financially stable;\n5. Foreign Ownership, Control, and Influence;\n6. Past performance and vulnerabilities;\n7. Business relationships;\n8. Maturity of business processes; and\n9. Developer screening practices that may include::\na. Evaluating and vetting key personnel through security reviews (including clearance, satisfactory background checks, citizenship, and nationality) by acquirers or suppliers in any capacity (full-time employee, part-time employee, consultant, contractor, subcontractor, vendor, agent, etc.);\nb. Reevaluating personnel through security reviews and assessments on a periodic basis or upon occurrence of specific significant events.','The organization conducting the inspection/assessment obtains and examines the documented additional personnel screening criteria to ensure the organization being inspected/assessed defines additional personnel screening criteria that must be satisfied by the developer of organization-defined information system, system component, or information system service. DoD has determined the additional personnel screening criteria is not appropriate to define at the Enterprise level.'), ('003382','draft','2013-10-03','DISA FSO','policy','The organization requires that the developer of an organization-defined information system, system component, or information system service satisfy organization-defined additional personnel screening criteria.','SA-21.5','The organization being inspected/assessed requires within contracts that the developer of information system, system component, or information system service defined in SA-21, CCI 3384 satisfy additional personnel screening criteria defined in SA-21, CCI 3381.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of information system, system component, or information system service defined in SA-21, CCI 3384 satisfy additional personnel screening criteria defined in SA-21, CCI 3381.'), ('003383','draft','2013-10-03','DISA FSO','policy','The organization defines the official government duties to be assigned to the developer of an organization-defined information system, system component, or information system service.','SA-21.2','The organization being inspected/assessed defines and documents the official government duties to be assigned to the developer of organization-defined information system, system component, or information system service. DoD has determined the official government duties are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented official government duties to ensure the organization being inspected/assessed defines the official government duties to be assigned to the developer of organization-defined information system, system component, or information system service. DoD has determined the official government duties are not appropriate to define at the Enterprise level.'), ('003384','draft','2013-10-03','DISA FSO','policy','The organization defines the information system, system component, or information system service which requires the information system developer to have appropriate access authorizations and satisfy additional personnel screening criteria.','SA-21.1','The organization being inspected/assessed defines and documents the information system, system component, or information system service which require the information system developer to have appropriate access authorizations and satisfy additional personnel screening criteria. DoD has determined the information system, system component, or information system service is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information system, system component, or information system service to ensure the organization being inspected/assessed defines the information system, system component, or information system service which require the information system developer to have appropriate access authorizations and satisfy additional personnel screening criteria. DoD has determined the information system, system component, or information system service is not appropriate to define at the Enterprise level.'), ('003385','draft','2013-10-03','DISA FSO','policy','The organization requires that the developer of an organization-defined information system, system component, or information system service have appropriate access authorizations as determined by assigned organization-defined official government duties.','SA-21.3','The organization being inspected/assessed requires within contracts that the developer of information system, system component, or information system service defined in SA-21, CCI 3384 have appropriate access authorizations as determined by assigned official government duties defined in SA-21, CCI 3383.','The organization conducting the inspection/assessment obtains and examines the contracts/agreements to ensure the organization being inspected/assessed requires that the developer of information system, system component, or information system service defined in SA-21, CCI 3384 have appropriate access authorizations as determined by assigned official government duties defined in SA-21, CCI 3383.'), ('003386','draft','2013-10-03','DISA FSO','policy','The organization defines the critical information system components to re-implement or custom develop.','SA-20.1','The organization being inspected/assessed defines and documents the critical information system components to re-implement or custom develop. DoD has determined the critical information system components are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented critical information system components to ensure the organization being inspected/assessed defines the critical information system components to re-implement or custom develop. DoD has determined the critical information system components are not appropriate to define at the Enterprise level.'), ('003387','draft','2013-10-03','DISA FSO','policy','The organization re-implements or custom develops organization-defined critical information system components.','SA-20.2','The organization being inspected/assessed re-implements or custom develops critical information system components defined in SA-20, CCI 3386.','The organization conducting the inspection/assessment obtains and examines hardware and software lists to ensure that no commercial off-the-shelf components are used as critical information system components defined in SA-20, CCI 3386.'), ('003388','draft','2013-10-03','DISA FSO','policy','The organization defines the frequency on which to scan for counterfeit information system components.','SA-19(4).1','The organization being inspected/assessed defines and documents the frequency to scan for counterfeit information system components. DoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines the frequency to scan for counterfeit information system components. DoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('003389','draft','2013-10-03','DISA FSO','policy','The organization scans for counterfeit information system components in accordance with organization-defined frequency.','SA-19(4).2','The organization being inspected/assessed documents and implements a process to scan for counterfeit information system components in accordance with the frequency defined in SA-19 (4), CCI 3388. The organization must maintain a record of scans.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of scans to ensure the organization being inspected/assessed scans for counterfeit information system components in accordance with the frequency defined in SA-19 (4), CCI 3388.'), ('003390','draft','2013-10-03','DISA FSO','policy','The organization defines the techniques and methods used to dispose of information system components.','SA-19(3).1','DoD has defined the techniques and methods as defined IAW DoD Manual 5200.01.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the techniques and methods as defined IAW DoD Manual 5200.01.'), ('003391','draft','2013-10-03','DISA FSO','policy','The organization disposes of information system components using organization-defined techniques and methods.','SA-19(3).2','The organization being inspected/assessed documents and implements a process to dispose of information system components using techniques and methods defined IAW DoD Manual 5200.01. The organization must maintain a record of disposal. DoD has defined the techniques and methods as defined IAW DoD Manual 5200.01.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the record of disposal to ensure the organization being inspected/assessed disposes of information system components using techniques and methods defined IAW DoD Manual 5200.01. DoD has defined the techniques and methods as defined IAW DoD Manual 5200.01.'), ('003392','draft','2013-11-07','DISA FSO','policy','The organization determines and documents the legal authority that permits the collection of personally identifiable information (PII), either generally or in support of a specific program or information system need.','AP-1.1','The organization being inspected/assessed identifies and documents in applicable privacy notices and privacy impact assessment, the legal authority applicable to the information system permitting the collection of PII IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, and DoDD 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documented the legal authority that permits the collection of PII, and that such collection is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation.'), ('003393','draft','2013-11-07','DISA FSO','policy','The organization determines and documents the legal authority that permits the use of personally identifiable information (PII), either generally or in support of a specific program or information system need.','AP-1.2','The organization being inspected/assessed identifies and documents in applicable privacy notices and privacy impact assessment, the legal authority applicable to the information system permitting the collection of PII IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, and DoDD 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documented the legal authority that permits the use of PII, and that such use is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation.'), ('003394','draft','2013-11-07','DISA FSO','policy','The organization determines and documents the legal authority that permits the maintenance of personally identifiable information (PII), either generally or in support of a specific program or information system need.','AP-1.3','The organization being inspected/assessed identifies and documents in applicable privacy notices and privacy impact assessment, the legal authority applicable to the information system permitting the collection of PII IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, and DoDD 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documented the legal authority that permits the maintenance of PII, and that such maintenance is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation.'), ('003395','draft','2013-11-07','DISA FSO','policy','The organization determines and documents the legal authority that permits the sharing of personally identifiable information (PII), either generally or in support of a specific program or information system need.','AP-1.4','The organization being inspected/assessed identifies and documents in applicable privacy notices and privacy impact assessment, the legal authority applicable to the information system permitting the collection of PII IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, and DoDD 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documented the legal authority that permits the dissemination or sharing of PII, and that such dissemination or sharing is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation.'), ('003396','draft','2013-11-07','DISA FSO','policy','The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is collected.','AP-2.1','The organization being inspected/assessed ensures the PII collected by the specific program or information system is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation, for example, but not limited to, the Privacy Act system of records notice (SORN) or Privacy Impact Assessment (PIA). The privacy documentation shall be IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, Section 208 of the E-Gov Act of 2002 (Public Law 107-347) and DoDI 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy notices and privacy impact assessment to ensure the organization being inspected/assessed describes, in its privacy notices, the purpose(s) for which PII is collected.'), ('003397','draft','2013-11-07','DISA FSO','policy','The organization appoints a Senior Agency Official for Privacy (SAOP)/Chief Privacy Officer (CPO) accountable for developing, implementing, and maintaining an organization-wide governance and privacy program to ensure compliance with all applicable laws and regulations regarding the collection, use, maintenance, sharing, and disposal of personally identifiable information (PII) by programs and information systems.','AR-1.1','The Senior Agency Official for Privacy (SAOP) is appointed at the DoD enterprise level. The SAOP is accountable for developing, implementing and maintaining the DoD-enterprise level governance and privacy program, which can be augmented with a Component level guidance and privacy program.\n\n\nThe Component Senior Official for Privacy is accountable for developing, implementing and maintaining the Component level governance and privacy program.\n\nThe organization being inspected/assessed appoints and documents a Component Senior Official for privacy.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has document the appointment of component Senior Official for privacy.'), ('003398','draft','2013-11-07','DISA FSO','policy','The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is used.','AP-2.2','The organization being inspected/assessed ensures the PII collected by the specific program or information system is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation, for example, but not limited to, the Privacy Act system of records notice (SORN) or Privacy Impact Assessment (PIA). The privacy documentation shall be IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, Section 208 of the E-Gov Act of 2002 (Public Law 107-347) and DoDI 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy notices and privacy impact assessment to ensure the organization being inspected/assessed describes, in its privacy notices, the purpose(s) for which PII is used.'), ('003399','draft','2013-11-07','DISA FSO','policy','The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is maintained.','AP-2.3','The organization being inspected/assessed ensures the PII collected by the specific program or information system is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation, for example, but not limited to, the Privacy Act system of records notice (SORN) or Privacy Impact Assessment (PIA). The privacy documentation shall be IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, Section 208 of the E-Gov Act of 2002 (Public Law 107-347) and DoDI 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy notices and privacy impact assessment to ensure the organization being inspected/assessed describes, in its privacy notices, the purpose(s) for which PII is maintained.'), ('003400','draft','2013-11-07','DISA FSO','policy','The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is shared.','AP-2.4','The organization being inspected/assessed ensures the PII collected by the specific program or information system is related to, and compatible with, the purpose and scope of the authority described in the privacy documentation, for example, but not limited to, the Privacy Act system of records notice (SORN) or Privacy Impact Assessment (PIA). The privacy documentation shall be IAW 5 USC 552a, DoDD 5400.11, DoD 5400.11-R, Section 208 of the E-Gov Act of 2002 (Public Law 107-347) and DoDI 5400.16.','The organization conducting the inspection/assessment obtains and examines the applicable privacy notices and privacy impact assessment to ensure the organization being inspected/assessed describes, in its privacy notices, the purpose(s) for which PII is shared.'), ('003401','draft','2013-11-07','DISA FSO','policy','The organization monitors federal privacy laws and policy for changes that affect the privacy program.','AR-1.2','The organization being inspected/assessed documents and implements a repeatable business process by which it monitors federal privacy laws and policy for changes that affect the privacy program.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has a documented repeatable business process by which it monitors federal privacy laws and policy for changes that affect the privacy program.'), ('003402','draft','2013-11-07','DISA FSO','policy','The organization defines the allocation of budget resources sufficient to implement and operate the organization-wide privacy program.','AR-1.3','The organization being inspected/assessed defines and documents the allocation of budget resources sufficient to implement and operate the organization-wide privacy program.\n\nDoD has determined the allocation of budget resources is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented allocation to ensure the organization being inspected/assessed defines the allocation of budget resources sufficient to implement and operate the organization-wide privacy program.\n\nDoD has determined the allocation of budget resources is not appropriate to define at the Enterprise level.'), ('003403','draft','2013-11-07','DISA FSO','policy','The organization defines the allocation of staffing resources sufficient to implement and operate the organization-wide privacy program.','AR-1.4','The organization being inspected/assessed defines and documents the allocation of staffing resources sufficient to implement and operate the organization-wide privacy program.\n\nDoD has determined the allocation of staffing resources is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented allocation to ensure the organization being inspected/assessed defines the allocation of staffing resources sufficient to implement and operate the organization-wide privacy program.\n\nDoD has determined the allocation of staffing resources is not appropriate to define at the Enterprise level.'), ('003404','draft','2013-11-07','DISA FSO','policy','The organization allocates sufficient organization-defined budget resources to implement and operate the organization-wide privacy program.','AR-1.5','The organization being inspected/assessed documents and implements a process for the allocation of sufficient organization-defined budget resources to implement and operate the organization-wide privacy program.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documents which demonstrate allocation of sufficient organization-defined budget resources to implement and operate the organization-wide privacy program.'), ('003405','draft','2013-11-07','DISA FSO','policy','The organization allocates sufficient organization-defined staffing resources to implement and operate the organization-wide privacy program.','AR-1.6','The organization being inspected/assessed documents and implements a process for the allocation of sufficient organization-defined staffing resources to implement and operate the organization-wide privacy program.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documents which demonstrate allocation of sufficient organization-defined staffing resources to implement and operate the organization-wide privacy program.'), ('003406','draft','2013-11-07','DISA FSO','policy','The organization develops a strategic organizational privacy plan for implementing applicable privacy controls, policies, and procedures.','AR-1.7','The organization being inspected/assessed documents and implements a strategic organizational privacy plan for implementing applicable privacy controls, policies, and procedures.\n\nThe DoD has determined that this CCI is not applicable until the policy is issued.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documents which demonstrate a strategic organizational privacy plan for implementing applicable privacy controls, policies, and procedures.\n\nThe DoD has determined that this CCI is not applicable until the policy is issued.'), ('003407','draft','2013-11-07','DISA FSO','policy','The organization develops operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).','AR-1.8','The organization being inspected/assessed documents and implements operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.','The organization conducting the inspection/assessment obtains and examines the applicable privacy documentation to ensure the organization being inspected/assessed has documents which demonstrate operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.'), ('003408','draft','2013-11-07','DISA FSO','policy','The organization disseminates operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).','AR-1.9','The organization being inspected/assessed disseminates via an information sharing capability, operational privacy policies and procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.','The organization conducting the inspection/assessment obtains and examines the operational privacy policies and procedures via the organization\'s information sharing capability to ensure the organization being inspected/assessed disseminates operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII and procedures which implement these policies.'), ('003409','draft','2013-11-07','DISA FSO','policy','The organization implements operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).','AR-1.10','The organization being inspected/assessed documents and implements operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.','The organization conducting the inspection/assessment obtains and examines the operational privacy policies to ensure the organization being inspected/assessed implements operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.'), ('003410','draft','2013-11-07','DISA FSO','policy','The organization develops operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).','AR-1.11','The organization being inspected/assessed defines and documents operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.','The organization conducting the inspection/assessment obtains and examines the documented operational privacy procedures to ensure the organization being inspected/assessed develops operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.'), ('003411','draft','2013-11-07','DISA FSO','policy','The organization disseminates operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).','AR-1.12','The organization being inspected/assessed disseminates via an information sharing capability, the operational privacy procedures which implement the applicable privacy and security controls for programs, information systems, or technologies involving PII.','The organization conducting the inspection/assessment obtains and examines via the organization\'s information sharing capability the operational privacy procedures to ensure it has been disseminated.'), ('003412','draft','2013-11-07','DISA FSO','policy','The organization implements operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).','AR-1.13','The organization being inspected/assessed documents and implements operational privacy procedures which implement the applicable privacy and security controls for programs, information systems, or technologies involving PII.','The organization conducting the inspection/assessment obtains and examines the operational privacy procedures to ensure the organization being inspected/assessed implements operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving PII.'), ('003413','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency, minimally biennially, on which the privacy plan, policies, and procedures are to be updated.','AR-1.14','DoD has defined the frequency as at a minimum, biennially.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as at a minimum, biennially.'), ('003414','draft','2013-11-07','DISA FSO','policy','The organization updates the privacy plan per organization-defined frequency.','AR-1.15','The organization being inspected/assessed updates the privacy plan at a minimum, biennially.\n\nThe organization must maintain records of updates.\n\nDoD has defined the frequency as at a minimum, biennially.','The organization conducting the inspection/assessment obtains and examines records of updates to ensure the organization being inspected/assessed updates the privacy plan at a minimum, biennially.\n\nDoD has defined the frequency as at a minimum, biennially.'), ('003415','draft','2013-11-07','DISA FSO','policy','The organization updates the privacy policies per organization-defined frequency.','AR-1.16','The organization being inspected/assessed updates the privacy policies at a minimum, biennially.\n\nThe organization must maintain records of updates.\n\nDoD has defined the frequency as at a minimum, biennially.','The organization conducting the inspection/assessment obtains and examines records of updates to ensure the organization being inspected/assessed updates the privacy policies at a minimum, biennially.\n\nDoD has defined the frequency as at a minimum, biennially.'), ('003416','draft','2013-11-07','DISA FSO','policy','The organization updates the privacy procedures per organization-defined frequency.','AR-1.17','The organization being inspected/assessed updates privacy procedures at a minimum, biennially.\n\nThe organization must maintain records of updates.\n\nDoD has defined the frequency as at a minimum, biennially.','The organization conducting the inspection/assessment obtains and examines records of updates to ensure the organization being inspected/assessed updates privacy procedures at a minimum, biennially.\n\nDoD has defined the frequency as at a minimum, biennially.'), ('003417','draft','2013-11-07','DISA FSO','policy','The organization documents a privacy risk management process which assesses the privacy risk to individuals.','AR-2.1','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals.','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals.'), ('003418','draft','2013-11-07','DISA FSO','policy','The organization implements a privacy risk management process which assesses the privacy risk to individuals.','AR-2.2','The organization being inspected/assessed implements a privacy risk management process which assesses the privacy risk to individuals.','The organization conducting the inspection/assessment obtains and examines the documents which implement a privacy risk management process which assesses the privacy risk to individuals.'), ('003419','draft','2013-11-07','DISA FSO','policy','The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the collection of personally identifiable information (PII).','AR-2.3','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals resulting from the collection of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals resulting from the collection of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)'), ('003420','draft','2013-11-07','DISA FSO','policy','The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the sharing of personally identifiable information (PII).','AR-2.4','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals resulting from t sharing of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals resulting from the sharing of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)'), ('003421','draft','2013-11-07','DISA FSO','policy','The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the storing of personally identifiable information (PII).','AR-2.5','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals resulting from the storing of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals resulting from the storing of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)'), ('003422','draft','2013-11-07','DISA FSO','policy','The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the transmitting of personally identifiable information (PII).','AR-2.6','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals resulting from the transmitting of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals resulting from the transmitting of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)'), ('003423','draft','2013-11-07','DISA FSO','policy','The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the use of personally identifiable information (PII).','AR-2.7','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals resulting from the use of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals resulting from the use of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)'), ('003424','draft','2013-11-07','DISA FSO','policy','The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the disposal of personally identifiable information (PII).','AR-2.8','The organization being inspected/assessed documents a privacy risk management process which assesses the privacy risk to individuals resulting from the disposal of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)','The organization conducting the inspection/assessment obtains and examines the documented privacy risk management process which assesses the privacy risk to individuals resulting from the disposal of PII. (http://iatraining.disa.mil/eta/piiv2/launchPage.htm)'), ('003425','draft','2013-11-07','DISA FSO','policy','The organization conducts Privacy Impact Assessments (PIAs) for information systems, programs, or other activities that pose a privacy risk in accordance with applicable law, OMB policy, or any existing organizational policies and procedures.','AR-2.9','The organization being inspected/assessed documents and implements a process to conduct Privacy Impact Assessments (PIAs) for information systems, programs, or other activities that pose a privacy risk in accordance with applicable law, OMB policy, or any existing organizational policies and procedures.\n\nOnly applies to non national security systems.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed conducts Privacy Impact Assessments (PIAs) for information systems, programs, or other activities that pose a privacy risk in accordance with applicable law, OMB policy, or any existing organizational policies and procedures.'), ('003426','draft','2013-11-07','DISA FSO','policy','The organization establishes privacy roles for contractors.','AR-3.1','The organization being inspected/assessed establishes and documents privacy roles for contractors.','The organization conducting the inspection/assessment obtains and examines the documented privacy roles for contractors.'), ('003427','draft','2013-11-07','DISA FSO','policy','The organization establishes privacy responsibilities for contractors.','AR-3.2','The organization being inspected/assessed establishes and documents privacy responsibilities for contractors.','The organization conducting the inspection/assessment obtains and examines the documented privacy responsibilities for contractors.'), ('003428','draft','2013-11-07','DISA FSO','policy','The organization establishes access requirements for contractors.','AR-3.3','The organization being inspected/assessed establishes and documents access requirements for contractors.','The organization conducting the inspection/assessment obtains and examines the access requirements for contractors.'), ('003429','draft','2013-11-07','DISA FSO','policy','The organization establishes privacy roles for service providers.','AR-3.4','The organization being inspected/assessed establishes and documents privacy roles for service providers.','The organization conducting the inspection/assessment obtains and examines the privacy roles established for service providers.'), ('003430','draft','2013-11-07','DISA FSO','policy','The organization establishes privacy responsibilities for service providers.','AR-3.5','The organization being inspected/assessed establishes and documents privacy responsibilities for service providers.','The organization conducting the inspection/assessment obtains and examines the privacy responsibilities established for service providers.'), ('003431','draft','2013-11-07','DISA FSO','policy','The organization establishes access requirements for service providers.','AR-3.6','The organization being inspected/assessed establishes and documents access requirements for service providers.','The organization conducting the inspection/assessment obtains and examines the access requirements established for service providers.'), ('003432','draft','2013-11-07','DISA FSO','policy','The organization includes privacy requirements in contracts.','AR-3.7','The organization being inspected/assessed includes the privacy requirements from Federal Acquisition Regulation Subpart 24.1, 48 CFR Part 24 and Part 39.105, and DoDD 5400.11 in contracts.','The organization conducting the inspection/assessment obtains and examines a representative sample and business procedures which ensure all contracts include the privacy requirements from Federal Acquisition Regulation Subpart 24.1, 48 CFR Part 24 and Part 39.105, and DoDD 5400.11.'), ('003433','draft','2013-11-07','DISA FSO','policy','The organization includes privacy requirements in other acquisition-related documents.','AR-3.8','The organization being inspected/assessed includes the privacy requirements from Federal Acquisition Regulation Subpart 24.1, 48 CFR Part 24 and Part 39.105, and DoDD 5400.11 in other acquisition-related documents.','The organization conducting the inspection/assessment obtains and examines the business procedures and a representative sample of the documents to demonstrate all other acquisition-related documents applicable to the information system include the privacy requirements from Federal Acquisition Regulation Subpart 24.1, 48 CFR Part 24 and Part 39.105, and DoDD 5400.11.'), ('003434','deprecated','2013-11-07','DISA FSO','policy','The organization defines the frequency for monitoring privacy controls and internal privacy policy to ensure effective implementation.','AR-4.1','DoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.'), ('003435','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency for auditing privacy controls and internal privacy policy to ensure effective implementation.','AR-4.2','DoD has defined the frequency as every three years or as required by major system change.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as every three years or as required by major system change.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.'), ('003436','draft','2013-11-07','DISA FSO','policy','The organization monitors privacy controls, per organization-defined frequency, to ensure effective implementation.','AR-4.3','The organization being inspected/assessed documents and implements a process to monitor privacy controls to ensure effective implementation.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed monitors privacy controls to ensure effective implementation.'), ('003437','draft','2013-11-07','DISA FSO','policy','The organization monitors internal privacy policy to ensure effective implementation.','AR-4.4','The organization being inspected/assessed documents and implements a process to monitor internal privacy policy to ensure effective implementation.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed monitors internal privacy policy to ensure effective implementation.'), ('003438','draft','2013-11-07','DISA FSO','policy','The organization audits privacy controls, per organization-defined frequency, to ensure effective implementation.','AR-4.5','The organization being inspected/assessed documents and implements a process to audit privacy controls, every three years or as required by major system change, to ensure effective implementation.\n\nThe organization must maintain an audit trail.\n\nDoD has defined the frequency as every three years or as required by major system change.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail to ensure the organization being inspected/assessed audits privacy controls, every three years or as required by major system change, to ensure effective implementation.\n\nDoD has defined the frequency as every three years or as required by major system change.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.'), ('003439','draft','2013-11-07','DISA FSO','policy','The organization audits internal privacy policy, per organization-defined frequency, to ensure effective implementation.','AR-4.6','The organization being inspected/assessed documents and implements a process to audit privacy controls, every three years or as required by major system change, to ensure effective implementation.\n\nThe organization must maintain an audit trail.\n\nDoD has defined the frequency as every three years or as required by major system change.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail to ensure the organization being inspected/assessed audits privacy controls, every three years or as required by major system change, to ensure effective implementation.\n\nDoD has defined the frequency as every three years or as required by major system change.\n\nDoD has defined the frequency as upon a change in the privacy, security or authorization posture of the system and not to exceed every three years.'), ('003440','draft','2013-11-07','DISA FSO','policy','The organization develops a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.','AR-5.1','The organization being inspected/assessed documents whether the IASE PII Training provides personnel with the information necessary to understand their roles and responsibilities, or if additional organization-specific training is required. If organization-specific training is required, the organization being inspected/assessed defines and documents the unique privacy needs which must be addressed by training.','The organization conducting the inspection/assessment obtains and examines the documented evidence of a review as to whether the IASE provided PII training provides personnel with the information necessary to understand their roles and responsibilities. If the documented review indicates that organization-specific training is necessary, then the organization conducting the inspection/assessment obtains and examines documentation identifying the unique privacy needs which must be addressed by training to ensure they are identified.'), ('003441','draft','2013-11-07','DISA FSO','policy','The organization implements a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.','AR-5.2','If the organization being inspected/assessed identifies IAW AR-5, CCI 3440 that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization being inspected/assessed documents and implements a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.','The organization conducting the inspection/assessment obtains and examines the documented results of the review conducted IAW AR-5, CCI 3440. If the review indicates that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization conducting the inspection/assessment obtains and examines the documented training and awareness strategy to ensure that it implements training aimed at ensuring that personnel understand privacy responsibilities and procedures.'), ('003442','draft','2013-11-07','DISA FSO','policy','The organization updates a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.','AR-5.3','If the organization being inspected/assessed identifies IAW AR-5, CCI 3440 that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization being inspected/assessed documents and implements a process to update the comprehensive training and awareness strategy.','The organization conducting the inspection/assessment obtains and examines the documented results of the review conducted IAW AR-5, CCI 3440. If the review indicates that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization conducting the inspection/assessment obtains and examines the documented update process for the training and awareness strategy to ensure that the organization being inspected/assessed updates the strategy.'), ('003443','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency, minimally annually, for administering its basic privacy training.','AR-5.4','The organization being inspected/assessed documents whether the IASE PII Training provides personnel with the information necessary to understand their roles and responsibilities, or if additional organization-specific training is required. If organization-specific training is required, the organization being inspected/assessed defines and documents the unique privacy needs which must be addressed by training.','The organization conducting the inspection/assessment obtains and examines the documented evidence of a review as to whether the IASE provided PII training provides personnel with the information necessary to understand their roles and responsibilities. If the documented review indicates that organization-specific training is necessary, then the organization conducting the inspection/assessment obtains and examines documentation identifying the unique privacy needs which must be addressed by training to ensure they are identified.'), ('003444','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency, minimally annually, for administering the targeted, role-based privacy training for personnel having responsibility for personally identifiable information (PII) or for activities that involve PII.','AR-5.5','If the organization being inspected/assessed identifies IAW AR-5, CCI 3440 that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization being inspected/assessed documents and implements a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.','The organization conducting the inspection/assessment obtains and examines the documented results of the review conducted IAW AR-5, CCI 3440. If the review indicates that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization conducting the inspection/assessment obtains and examines the documented training and awareness strategy to ensure that it implements training aimed at ensuring that personnel understand privacy responsibilities and procedures.'), ('003445','draft','2013-11-07','DISA FSO','policy','The organization administers basic privacy training per the organization-defined frequency.','AR-5.6','If the organization being inspected/assessed identifies IAW AR-5, CCI 3440 that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization being inspected/assessed documents and implements a process to update the comprehensive training and awareness strategy.','The organization conducting the inspection/assessment obtains and examines the documented results of the review conducted IAW AR-5, CCI 3440. If the review indicates that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization conducting the inspection/assessment obtains and examines the documented update process for the training and awareness strategy to ensure that the organization being inspected/assessed updates the strategy.'), ('003446','draft','2013-11-07','DISA FSO','policy','The organization administers, per organization-defined frequency, targeted, role-based privacy training for personnel having responsibility for personally identifiable information (PII) or for activities that involve PII.','AR-5.7','The organization follows its strategy and plan for administering targeted, role-based privacy training.','The organization conducting the inspection/assessment reviews evidence of the organization being inspected providing annual targeted, role-based privacy training. DoD Components that have determined and documented adequate justification that DoD-wide privacy training and awareness activities provide evidence to demonstrate its personnel are taking this training annually.'), ('003447','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency, minimally annually, on which personnel certify acceptance of responsibilities for privacy requirements.','AR-5.8','DoD has defined the frequency as annually.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as annually.'), ('003448','draft','2013-11-07','DISA FSO','policy','The organization ensures personnel certify (manually or electronically) acceptance of responsibilities for privacy requirements per organization-defined frequency.','AR-5.9','The organization being inspected/assessed must ensure that personnel certify (manually or electronically) acceptance of responsibilities for privacy requirements at least annually. This can be achieved either through inclusion of these requirements within and annually recertifying their existing AUP, or via a separate acceptance method.','The organization conducting the inspection/assessment obtains and examines the documented results of the review conducted IAW AR-5, CCI 3440. If the review indicates that IASE provided PII training meets the needs of the organization then the organization is automatically compliant. Otherwise, the organization conducting the inspection/assessment obtains and examines the documented certification process as well as a representative sample of employee certification records to ensure that the organization being inspected/assessed ensures personnel certify (manually or electronically) acceptance of responsibilities for privacy requirements per organization-defined frequency.'), ('003449','draft','2013-11-07','DISA FSO','policy','The organization develops reports for the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.','AR-6.1','The organization being inspected/assessed documents and implements a process to provide all input required by Defense Privacy and Civil Liberties Office (DPLCO), DA&M and/or the OCIO to support the reporting OMB, Congress and the other oversight bodies.','The organization conducting the inspection/assessment obtains and examines the documented process as well as reports generated to ensure the organization being inspected/assessed provides all input required by Defense Privacy and Civil Liberties Office (DPLCO), DA&M and/or the OCIO to support the reporting OMB, Congress and the other oversight bodies.'), ('003450','draft','2013-11-07','DISA FSO','policy','The organization disseminates reports to the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.','AR-6.2','Only designated officials, such as the Senior Agency Official for Privacy (SAOP), respond to external reporting requirements on behalf of the DoD. The Defense Civil Liberties and Privacy Office (DPCLO) meets the requirement to disseminate reports to the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.\n\nDoD Components are automatically compliant with this control because they are covered by the DPCLO and the action is performed by the DA&M and/or OCIO.','The DPCLO meets the requirement to disseminate reports to the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.\n\nDoD Components are automatically compliant with this control because they are covered by the DPCLO and the action is performed by the DA&M and/or OCIO.'), ('003451','draft','2013-11-07','DISA FSO','policy','The organization updates reports for the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.','AR-6.3','The organization being inspected/assessed provides the necessary inputs to external privacy reports as mandated by the DPCLO and OCIO to ensure the organization being inspected/assessed updates reports for the OMB, Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.','The organization conducting the inspection/assessment reviews evidence of contributions of updated inputs to external privacy reports as mandated by the DPCLO and OCIO to ensure the organization being inspected/assessed updates reports for the OMB, Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.'), ('003452','draft','2013-11-07','DISA FSO','policy','The organization develops reports for senior management and other personnel with responsibility for monitoring privacy program progress and compliance.','AR-6.4','The organization being inspected/assessed provides the necessary inputs to support DoD\'s internal privacy reporting requirements. For example, DoD Components are required to report to the Defense Privacy Office the status and metrics for internal periodic Privacy Act System of Records Notices (SORN) reviews. DoD 5400.11-R, sections C8.1-3 establish policy for DoD Component compliance DPCLO requirements for DoD Privacy Reports.','The organization conducting the inspection/assessment reviews evidence of contributions to internal privacy reports as mandated by the DPLCO and OCIO to ensure the organization being inspected/assessed develops reports for senior management and other personnel with responsibility for monitoring privacy program progress and compliance.'), ('003453','draft','2013-11-07','DISA FSO','policy','The organization disseminates reports to senior management and other personnel with responsibility for monitoring privacy program progress and compliance.','AR-6.5','The organization being inspected/assessed provides the necessary inputs to support DoD\'s internal privacy reports to the appropriate personnel in a timely manner.','The organization conducting the inspection/assessment reviews evidence of contributions to internal privacy reports as mandated by the DPCLO and OCIO to ensure the organization being inspected/assessed disseminates reports to senior management and other personnel with responsibility for monitoring privacy program progress and compliance.'), ('003454','draft','2013-11-07','DISA FSO','policy','The organization updates reports for senior management and other personnel with responsibility for monitoring privacy program progress and compliance.','AR-6.6','The organization being inspected/assessed provides the necessary inputs to support any required updates to DoD\'s internal privacy reports.','The organization conducting the inspection/assessment reviews evidence of contributions of updated inputs to internal privacy reports as mandated by the DPCLO and OCIO to ensure the organization being inspected/assessed updates reports for senior management and other personnel with responsibility for monitoring privacy program progress and compliance.'), ('003455','draft','2013-11-07','DISA FSO','policy','The organization designs information systems to support privacy by automating privacy controls.','AR-7.1','To the extent feasible, when designing information systems, the organization being inspected/assessed employs technologies and system capabilities that automate privacy controls on the collection, use, retention, and disclosure of personally identifiable information (PII).\n\nFor example, when sharing records between systems, design the system to only share PII data fields within a record that are relevant to the purpose of sharing rather than sending the entire record (which may contain PII data fields that are not relevant to the purpose for sharing). Privacy requirements and controls should be identified during the concept and requirements development phases of system design, and design decisions should be documented in appropriate system artifacts throughout (e.g. system design documents, system security plans, interconnection security agreements, and Privacy Impact Assessments). By building privacy controls into system design and development, DoD Components mitigate privacy risks to PII, thereby reducing the likelihood of information system breaches and other privacy-related incidents. DoD Components also plan for and conduct periodic reviews of systems to determine the need for updates to maintain compliance with the Privacy Act as well as the DoD\'s and DoD Component\'s privacy policies. Regardless of whether automated privacy controls are employed, DoD Components regularly monitor information system use and sharing of PII to ensure that the use/sharing is consistent with the authorized purposes identified in the Privacy Act and/or in the public notice of organizations (e.g. System of Records Notices), or in a manner compatible with those purposes.','The organization conducting the inspection/assessment :\n1. reviews policies and procedures that govern the organization\'s systems engineering lifecycle to ensure privacy requirements are included in the process.,\n2. obtains and examines system design documents and examines the information system to ensure it includes automated privacy controls,\n3. examines plans for periodic reviews to ensure they are commensurate with the privacy risks identified for the system and that they are occurring based on the planned frequency; and\n4. when available, examines results of reviews and associated action plans to address findings to ensure they are being addressed.'), ('003456','draft','2013-11-07','DISA FSO','policy','The organization, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the date of each disclosure of a record.','AR-8.1','The organization being inspected/assessed documents and implements a process, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, to include the date of each disclosure of a record.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the date of each disclosure of a record.'), ('003457','draft','2013-11-07','DISA FSO','policy','The organization, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the nature of each disclosure of a record.','AR-8.2','The organization being inspected/assessed documents and implements a process, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, to include the nature of each disclosure of a record.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the nature of each disclosure of a record.'), ('003458','draft','2013-11-07','DISA FSO','policy','The organization, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the purpose of each disclosure of a record.','AR-8.3','The organization being inspected/assessed documents and implements a process as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, to include the purpose of each disclosure of a record.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the purpose of each disclosure of a record.'), ('003459','draft','2013-11-07','DISA FSO','policy','The organization keeps an accurate accounting of disclosures of Privacy Act information held in each system of records under its control.','AR-8.4','The organization being inspected/assessed documents and implements a process to keep an accurate accounting of disclosures of Privacy Act information held in each system of records under its control.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed keeps an accurate accounting of disclosures of Privacy Act information held in each system of records under its control.'), ('003460','draft','2013-11-07','DISA FSO','policy','The organization, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the name and address of the person or agency to which the disclosure was made.','AR-8.5','The organization being inspected/assessed documents and implements a process, as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, to include the name and address of the person or agency to which the disclosure was made.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed as part of the accurate accounting of disclosures of Privacy Act information held in each system of records under its control, includes the name and address of the person or agency to which the disclosure was made.'), ('003461','draft','2013-11-07','DISA FSO','policy','The organization retains the accounting of disclosures for the life of the record or five years after the disclosure is made, whichever is longer.','AR-8.6','The organization being inspected/assessed documents and implements a process to retain the accounting of disclosures for the life of the record or five years after the disclosure is made, whichever is longer.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed retains the accounting of disclosures for the life of the record or five years after the disclosure is made, whichever is longer.'), ('003462','draft','2013-11-07','DISA FSO','policy','The organization makes the accounting of disclosures available to the person named in the record upon request.','AR-8.7','The organization being inspected/assessed documents and implements a process to make the accounting of disclosures available to the person named in the record upon request.\n\nNOTE: The system of the record might have an exemption that prevents the accounting of disclosures to the person named in the record. This must be spelled out in the SORN.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed makes the accounting of disclosures available to the person named in the record upon request.\n\nNOTE: The system of the record might have an exemption that prevents the accounting of disclosures to the person named in the record. This must be spelled out in the SORN.'), ('003463','draft','2013-11-07','DISA FSO','policy','The organization confirms to the greatest extent practicable upon collection or creation of personally identifiable information (PII), the accuracy of that information.','DI-1.1','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed confirms to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs.'), ('003464','draft','2013-11-07','DISA FSO','policy','The organization confirms to the greatest extent practicable upon collection or creation of personally identifiable information (PII), the relevancy of that information.','DI-1.2','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable upon collection or creation of PII, the relevancy of that information collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable upon collection or creation of PII, the relevancy of that information collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs'), ('003465','draft','2013-11-07','DISA FSO','policy','The organization confirms to the greatest extent practicable upon collection or creation of personally identifiable information (PII), the timeliness of that information.','DI-1.3','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable upon collection or creation of PII, the timeliness of that information collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable upon collection or creation of PII, the timeliness of that information collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs'), ('003466','draft','2013-11-07','DISA FSO','policy','The organization confirms to the greatest extent practicable upon collection or creation of personally identifiable information (PII), the completeness of that information.','DI-1.4','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable upon collection or creation of PII, the completeness of that information collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs.','The organization being inspected/assessed documents and implements a process to confirm to the greatest extent practicable upon collection or creation of PII, the completeness of that information collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs.'), ('003467','draft','2013-11-07','DISA FSO','policy','The organization collects personally identifiable information (PII) directly from the individual to the greatest extent practicable.','DI-1.5','The organization being inspected/assessed documents and implements a process to collect information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed collects information to the greatest extent practicable directly from the subject individual when the information may result in adverse determinations about an individual\'s rights, benefits, and privileges under Federal programs.'), ('003468','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency on which it will check for, and correct as necessary, inaccurate or outdated personally identifiable information (PII) used by its programs or systems.','DI-1.6','DoD has defined the frequency as when changes warrant corrections.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as when changes warrant corrections.'), ('003469','draft','2013-11-07','DISA FSO','policy','The organization checks for, and corrects as necessary, any inaccurate or outdated personally identifiable information (PII) used by its programs or systems on an organization-defined frequency.','DI-1.7','The organization being inspected/assessed documents and implements a process to checks for, and correct as necessary, any inaccurate or outdated PII used by its programs or systems when changes warrant corrections.\n\nDoD has defined the frequency as when changes warrant corrections.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed checks for, and corrects as necessary, any inaccurate or outdated PII used by its programs or systems when changes warrant corrections.\n\nDoD has defined the frequency as when changes warrant corrections.'), ('003470','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines ensuring the quality of disseminated Privacy Act information.','DI-1.8','The organization being inspected/assessed defines and issues PII quality assurance guidelines IAW DoD 5400.11-R to ensure accuracy, relevance, timeliness, and completion of PII prior to its dissemination. Quality guidelines are tailored as necessary for specific programs or systems.','The organization conducting the inspection/assessment reviews the PII quality guidelines for the organization being inspected/assessed against documentation for the program or system to ensure quality thresholds are being met.'), ('003471','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines ensuring the utility of disseminated Privacy Act information.','DI-1.9','The organization being inspected/assessed defines and issues PII utility guidelines IAW DoD 5400.11-R. Utility guidelines are tailored as necessary for specific programs or systems. Utility of information covered under the Privacy Act is strictly limited to an authorized purpose and need-to-know. When evaluating options for greater PII utility, consult with the DoD Component\'s privacy office.','The organization conducting the inspection/assessment reviews the PII utility guidelines for the organization being inspected/assessed against documentation for the program or system to ensure utility thresholds are being met and that PII is not shared other than as allowed by policy or notice.'), ('003472','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines ensuring the objectivity of disseminated Privacy Act information.','DI-1.10','The organization being inspected/assessed defines and issues PII objectivity guidelines IAW DoD 5400.11-R. Objectivity guidelines are tailored as necessary for specific programs or systems.','The organization conducting the inspection/assessment reviews the PII objectivity guidelines for the organization being inspected/assessed against documentation for the program or system to ensure objectivity thresholds are being met.'), ('003473','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines ensuring the integrity of disseminated Privacy Act information.','DI-1.11','The organization being inspected/assessed defines and issues PII integrity guidelines IAW DoD 5400.11-R. Integrity guidelines are tailored as necessary for specific programs or systems.','The organization conducting the inspection/assessment reviews the PII integrity guidelines for the organization being inspected/assessed against documentation for the program or system to ensure integrity thresholds are being met.'), ('003474','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines maximizing the quality of disseminated Privacy Act information.','DI-1.12','The organization being inspected/assessed defines and issues PII quality guidelines IAW DoD 5400.11-R. Quality guidelines are tailored as necessary for specific programs or systems.','The organization conducting the inspection/assessment reviews the PII quality guidelines for the organization being inspected/assessed against documentation for the program or system to ensure quality thresholds are being met.'), ('003475','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines maximizing the utility of disseminated Privacy Act information.','DI-1.13','The organization being inspected/assessed defines and issues PII utility guidelines IAW DoD 5400.11-R. Utility guidelines are tailored as necessary for specific programs or systems. Utility of information covered under the Privacy Act is strictly limited to an authorized purpose and need-to-know. When evaluating options for greater PII utility, consult with the DoD Component\'s privacy office.','The organization conducting the inspection/assessment reviews the PII utility guidelines for the organization being inspected/assessed against documentation for the program or system to ensure utility thresholds are being met and that PII is not shared other than as allowed by policy or notice.'), ('003476','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines maximizing the objectivity of disseminated Privacy Act information.','DI-1.14','The organization being inspected/assessed defines and issues PII objectivity guidelines IAW DoD 5400.11-R. Objectivity guidelines are tailored as necessary for specific programs or systems.','The organization conducting the inspection/assessment reviews the PII objectivity guidelines for the organization being inspected/assessed against documentation for the program or system to ensure objectivity thresholds are being met.'), ('003477','draft','2013-11-07','DISA FSO','policy','The organization issues guidelines maximizing the integrity of disseminated Privacy Act information.','DI-1.15','The organization being inspected/assessed defines and issues PII integrity guidelines IAW DoD 5400.11-R. Integrity guidelines are tailored as necessary for specific programs or systems.','The organization conducting the inspection/assessment reviews the PII integrity guidelines for the organization being inspected/assessed against documentation for the program or system to ensure integrity thresholds are being met.'), ('003478','draft','2013-11-07','DISA FSO','policy','The organization requests the individual or individual^s authorized representative validate personally identifiable information (PII) during the collection process.','DI-1(1).1','The organization being inspected/assessed documents and implements a process to request the individual or individual\'s authorized representative validate PII during the collection process.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requests the individual or individual\'s authorized representative validate PII during the collection process.'), ('003479','draft','2013-11-07','DISA FSO','policy','The organization defines the frequency on which it will request the individual, or individual^s authorized representative, revalidate that personally identifiable information (PII) collected is still accurate.','DI-1(2).1','The organization being inspected/assessed defines and documents the frequency on which it will request the individual, or individual\'s authorized representative, revalidate that PII collected is still accurate. The frequency should be as often as is necessary to ensure the PII is accurate, relevant, timely, and complete; commensurate with the impact of the determination to an individual\'s rights, benefits, or privileges as determined by the system owner in consultation with the organization\'s privacy office.\n\nDoD has determined the frequency is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented frequency to ensure the organization being inspected/assessed defines and documents the frequency on which it will request the individual, or individual\'s authorized representative, revalidate that PII collected is still accurate.\n\nDoD has determined the frequency is not appropriate to define at the Enterprise level.'), ('003480','draft','2013-11-07','DISA FSO','policy','On an organization-defined frequency, the organization requests the individual, or individual^s authorized representative, revalidate that personally identifiable information (PII) collected is still accurate.','DI-1(2).2','The organization being inspected/assessed documents and implements a process to request the individual, or individual\'s authorized representative, revalidate that PII collected is still accurate, as frequently as is necessary to ensure the PII is accurate, relevant, timely, and complete; commensurate with the impact of the determination to an individual\'s rights, benefits, or privileges as determined by the system owner in consultation with the organization\'s privacy office.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed requests the individual, or individual\'s authorized representative, revalidate that PII collected is still accurate. as frequently as is necessary to ensure the PII is accurate, relevant, timely, and complete; commensurate with the impact of the determination to an individual\'s rights, benefits, or privileges as determined by the system owner in consultation with the organization\'s privacy office.'), ('003481','draft','2013-11-07','DISA FSO','policy','The organization documents processes to ensure the integrity of personally identifiable information (PII) through existing security controls.','DI-2.1','The organization being inspected/assessed documents and implements the necessary security controls to protect the integrity of PII it maintains. Selection of security controls should be documented in relevant security documentation.\n\nNOTE: This applies to the security control for systems involved in computer matching agreements.','The organization conducting the inspection/assessment obtains and examines system documentation that discusses the selection of security controls and their relevance to privacy and confirms controls are in place for systems that maintain PII.\n\nNOTE: This applies to the security control for systems involved in computer matching agreements.'), ('003482','draft','2013-11-07','DISA FSO','policy','The organization, when appropriate, establishes a Data Integrity Board.','DI-2.2','The Defense Privacy and Civil Liberties Office (DPCLO) is responsible for meeting the requirements to establish a Data Integrity Board.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DPCLO.','The DPCLO is responsible for meeting the requirements to establish a Data Integrity Board.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DPCLO.'), ('003483','draft','2013-11-07','DISA FSO','policy','The organization^s Data Integrity Board oversees the organizational Computer Matching Agreements.','DI-2.3','The Defense Privacy and Civil Liberties Office (DPCLO) is responsible for the Data Integrity Board overseeing the organizational Computer Matching Agreements.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DPCLO.','The DPCLO is responsible for the Data Integrity Board overseeing the organizational Computer Matching Agreements.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DPCLO.'), ('003484','draft','2013-11-07','DISA FSO','policy','The organization^s Data Integrity Board ensures the Computer Matching Agreements comply with the computer matching provisions of the Privacy Act.','DI-2.4','The Defense Privacy and Civil Liberties Office (DPCLO) is responsible for the Data Integrity Board ensuring the Computer Matching Agreements comply with the computer matching provisions of the Privacy Act.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DPCLO.','The DPCLO is responsible for the Data Integrity Board ensuring the Computer Matching Agreements comply with the computer matching provisions of the Privacy Act.\n\nDoD Components are automatically compliant with this CCI because they are covered by the DPCLO.'), ('003485','draft','2013-11-07','DISA FSO','policy','The organization publishes Computer Matching Agreements on its public website.','DI-2(1).1','The Defense Privacy and Civil Liberties Office (DPCLO) is responsible for publishing Computer Matching Agreements on its public website.\n\nDoD Components are automatically compliant with this control because they are covered by the DPCLO.','The Defense Privacy and Civil Liberties Office (DPCLO) is responsible for publishing Computer Matching Agreements on its public website.\n\nDoD Components are automatically compliant with this control because they are covered by the DPCLO.'), ('003486','draft','2013-11-08','DISA FSO','policy','The organization identifies the minimum personally identifiable information (PII) elements that are relevant and necessary to accomplish the legally authorized purpose of collection.','DM-1.1','The organization being inspected/assessed documents and implements a process to identify the minimum personally identifiable information (PII) elements that are relevant and necessary to accomplish the legally authorized purpose of collection.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed identifies the minimum personally identifiable information (PII) elements that are relevant and necessary to accomplish the legally authorized purpose of collection.'), ('003487','draft','2013-11-08','DISA FSO','policy','The organization limits the collection and retention of personally identifiable information (PII) to the minimum elements identified for the purposes described in the published privacy notice.','DM-1.2','The organization being inspected/assessed documents and implements a process to limit the collection and retention of PII to the minimum elements identified for the purposes described in the published SORN and Privacy Act Statement.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed limits the collection and retention of PII to the minimum elements identified for the purposes described in the published SORN and Privacy Act Statement.'), ('003488','draft','2013-11-08','DISA FSO','policy','The organization limits the collection and retention of personally identifiable information (PII) to the minimum elements identified for the purposes which the individual has provided consent.','DM-1.3','The organization being inspected/assessed documents and implements a process to limit the collection and retention of PII to the minimum elements identified for the purposes which the individual has provided consent.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed limits the collection and retention of PII to the minimum elements identified for the purposes which the individual has provided consent.'), ('003489','draft','2013-11-08','DISA FSO','policy','The organization defines the frequency, minimally annually, for conducting reviews of its personally identifiable information (PII) holdings.','DM-1.4','DoD has defines the frequency as annually as part of the agency\'s report under FISMA.','DoD has defines the frequency as annually as part of the agency\'s report under FISMA.'), ('003490','draft','2013-11-08','DISA FSO','policy','The organization conducts an initial evaluation of personally identifiable information (PII) holdings.','DM-1.5','The organization being inspected/assessed documents and implements a process to conduct an initial evaluation of PII holdings.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed conducts an initial evaluation of PII holdings'), ('003491','draft','2013-11-08','DISA FSO','policy','The organization establishes a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure that only PII identified in the notice is collected and retained.','DM-1.6','The organization being inspected/assessed establishes and documents a schedule for regularly reviewing the PII holdings at least annually as part of the agency\'s report under FISMA to ensure that only PII identified in the notice is collected and retained.\n\nDoD has defined the frequency as at least annually as part of the agency\'s report under FISMA.','The organization conducting the inspection/assessment obtains and examines the documented schedule to ensure the organization being inspected/assessed establishes a schedule for regularly reviewing the PII holdings at least annually as part of the agency\'s report under FISMA to ensure that only PII identified in the notice is collected and retained.\n\nDoD has defined the frequency as at least annually as part of the agency\'s report under FISMA.'), ('003492','draft','2013-11-08','DISA FSO','policy','The organization follows a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure that only PII identified in the notice is collected and retained.','DM-1.7','The organization being inspected/assessed documents and implements a process to follow a schedule for regularly reviewing the PII holdings per the frequency defined in DM-1, CCI 3489 to ensure that only PII identified in the notice is collected and retained.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed follows a schedule for regularly reviewing the PII holdings per the frequency defined in DM-1, CCI 3489 to ensure that only PII identified in the notice is collected and retained.'), ('003493','draft','2013-11-08','DISA FSO','policy','The organization establishes a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure the PII continues to be necessary to accomplish the legally authorized purpose.','DM-1.8','The organization being inspected/assessed establishes and documents a schedule for regularly reviewing the PII holdings per the frequency defined in DM-1, CCI 3489 to ensure the PII continues to be necessary to accomplish the legally authorized purpose.','The organization conducting the inspection/assessment obtains and examines the documented schedule to ensure the organization being inspected/assessed establishes a schedule for regularly reviewing the PII holdings per the frequency defined in DM-1, CCI 3489 to ensure the PII continues to be necessary to accomplish the legally authorized purpose.'), ('003494','draft','2013-11-08','DISA FSO','policy','The organization follows a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure the PII continues to be necessary to accomplish the legally authorized purpose.','DM-1.9','The organization being inspected/assessed documents and implements a process to follow a schedule for regularly reviewing the PII holdings per the frequency defined in DM-1, CCI 3489 to ensure the PII continues to be necessary to accomplish the legally authorized purpose.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed follows a schedule for regularly reviewing the PII holdings per the frequency defined in DM-1, CCI 3489 to ensure the PII continues to be necessary to accomplish the legally authorized purpose.'), ('003495','draft','2013-11-08','DISA FSO','policy','The organization, where feasible and within the limits of technology, locates and removes/redacts specified personally identifiable information (PII).','DM-1(1).1','The organization being inspected/assessed documents and implements a process to locate and remove/redact specified PII, where feasible and within the limits of technology.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed where feasible and within the limits of technology, locates and removes/redacts specified PII.'), ('003496','draft','2013-11-08','DISA FSO','policy','The organization, where feasible and within the limits of technology, uses anonymization and de-identification techniques to permit use of the retained Privacy Act information while reducing its sensitivity and reducing the risk resulting from disclosure.','DM-1(1).2','The organization being inspected/assessed documents and implements a process to use anonymization and de-identification techniques, where feasible and within the limits of technology, to permit use of the retained Privacy Act information while reducing its sensitivity and reducing the risk resulting from disclosure.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed, where feasible and within the limits of technology, uses anonymization and de-identification techniques to permit use of the retained Privacy Act information while reducing its sensitivity and reducing the risk resulting from disclosure.'), ('003497','draft','2013-11-08','DISA FSO','policy','The organization defines the time period for retaining each collection of personally identifiable information (PII) that is required to fulfill the purpose(s) identified in the published privacy notice or required by law.','DM-2.1','The organization being inspected/assessed must define and document the time period IAW the NARA-approved Records Schedule and the Privacy Act System of Records Notice.\n\nDoD has determined the time period is not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented time period to ensure the organization being inspected/assessed define and document the time period IAW the NARA-approved Records Schedule and the Privacy Act System of Records Notice.\n\nDoD has determined the time period is not appropriate to define at the Enterprise level.'), ('003498','draft','2013-11-08','DISA FSO','policy','The organization retains each collection of personally identifiable information (PII) for the organization-defined time period to fulfill the purpose(s) identified in the published privacy notice or as required by law.','DM-2.2','The organization being inspected/assessed documents and implements a process to retain each collection of PII for the time period defined DM-2, CCI 3497 to fulfill the purpose(s) identified in the published SORN and Privacy Act Statement or as required by law.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed retains each collection of PII for the time period defined in DM-2, CCI 3497 to fulfill the purpose(s) identified in the published SORN and Privacy Act Statement or as required by law.'), ('003499','draft','2013-11-08','DISA FSO','policy','The organization disposes of, destroys, erases, and/or anonymizes the personally identifiable information (PII), regardless of the method of storage, in accordance with a NARA-approved record retention schedule.','DM-2.3','The organization being inspected/assessed documents and implements a process to dispose of, destroy, erase, and/or anonymize the PII, regardless of the method of storage, in accordance with a NARA-approved record retention schedule.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed disposes of, destroys, erases, and/or anonymizes the PII, regardless of the method of storage, in accordance with a NARA-approved record retention schedule.'), ('003500','draft','2013-11-08','DISA FSO','policy','The organization disposes of, destroys, erases, and/or anonymizes the personally identifiable information (PII), regardless of the method of storage, in a manner that prevents loss, theft, misuse, or unauthorized access.','DM-2.4','The organization being inspected/assessed documents and implements a process to dispose of, destroy, erase, and/or anonymize the PII, regardless of the method of storage, in a manner that prevents loss, theft, misuse, or unauthorized access.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed disposes of, destroys, erases, and/or anonymizes the PII, regardless of the method of storage, in a manner that prevents loss, theft, misuse, or unauthorized access.'), ('003501','draft','2013-11-08','DISA FSO','policy','The organization defines the techniques or methods to be employed to ensure the secure deletion or destruction of personally identifiable information (PII) (including originals, copies, and archived records).','DM-2.5','DoD has defined the techniques or methods as techniques and methods IAW DoD 5400.11-R.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the techniques or methods as techniques and methods IAW DoD 5400.11-R.'), ('003502','draft','2013-11-08','DISA FSO','policy','The organization uses organization-defined techniques or methods to ensure secure deletion or destruction of personally identifiable information (PII) (including originals, copies, and archived records).','DM-2.6','The organization being inspected/assessed documents and implements a process to use techniques and methods IAW DoD 5400.11-R to ensure secure deletion or destruction of PII (including originals, copies, and archived records).\n\nDoD has defined the techniques or methods as techniques and methods IAW DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed uses techniques and methods IAW DoD 5400.11-R to ensure secure deletion or destruction of PII (including originals, copies, and archived records).\n\nDoD has defined the techniques or methods as techniques and methods IAW DoD 5400.11-R.'), ('003503','draft','2013-11-08','DISA FSO','policy','The organization, where feasible, configures its information systems to record the date personally identifiable information (PII) is collected, created, or updated.','DM-2(1).1','The organization being inspected/assessed documents and implements a process to configure, where feasible, its information systems to record the date PII is collected, created, or updated.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed configures, where feasible, its information systems to record the date PII is collected, created, or updated.'), ('003504','deprecated','2013-11-08','DISA FSO','policy','The organization, where feasible, configures its information systems to record the date personally identifiable information (PII) is created.',NULL,NULL,NULL), ('003505','deprecated','2013-11-08','DISA FSO','policy','The organization, where feasible, configures its information systems to record the date personally identifiable information (PII) is updated.',NULL,NULL,NULL), ('003506','draft','2013-11-08','DISA FSO','policy','The organization, where feasible, configures its information systems to record when personally identifiable information (PII) is to be deleted or archived under an approved record retention schedule.','DM-2(1).2','The organization being inspected/assessed documents and implements a process to configure, where feasible, its information systems to record when PII is to be deleted or archived under a NARA-approved record retention schedule.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed, where feasible, configures its information systems to record when PII is to be deleted or archived under a NARA-approved record retention schedule.'), ('003507','draft','2013-11-08','DISA FSO','policy','The organization develops policies that minimize the use of personally identifiable information (PII) for testing.','DM-3.1','The organization being inspected/assessed develops and documents policies that minimize the use of PII for testing.','The organization conducting the inspection/assessment obtains and examines the documented policies to ensure the organization being inspected/assessed develops policies that minimize the use of PII for testing.'), ('003508','draft','2013-11-08','DISA FSO','policy','The organization develops policies that minimize the use of personally identifiable information (PII) for training.','DM-3.2','The organization being inspected/assessed develops and documents policies that minimize the use of PII for training.','The organization conducting the inspection/assessment obtains and examines the documented policies to ensure the organization being inspected/assessed develops policies that minimize the use of PII for training.'), ('003509','draft','2013-11-08','DISA FSO','policy','The organization develops policies that minimize the use of personally identifiable information (PII) for research.','DM-3.3','The organization being inspected/assessed develops and documents policies that minimize the use of PII for research.','The organization conducting the inspection/assessment obtains and examines the documented policies to ensure the organization being inspected/assessed develops policies that minimize the use of PII for research.'), ('003510','draft','2013-11-08','DISA FSO','policy','The organization develops procedures that minimize the use of personally identifiable information (PII) for testing.','DM-3.4','The organization being inspected/assessed develops and documents procedures that minimize the use of PII for testing.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed develops procedures that minimize the use of PII for testing.'), ('003511','draft','2013-11-08','DISA FSO','policy','The organization develops procedures that minimize the use of personally identifiable information (PII) for training.','DM-3.5','The organization being inspected/assessed develops and documents procedures that minimize the use of PII for training.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed develops procedures that minimize the use of PII for training.'), ('003512','draft','2013-11-08','DISA FSO','policy','The organization develops procedures that minimize the use of personally identifiable information (PII) for research.','DM-3.6','The organization being inspected/assessed develops and documents procedures that minimize the use of PII for research.','The organization conducting the inspection/assessment obtains and examines the documented procedures to ensure the organization being inspected/assessed develops procedures that minimize the use of PII for research.'), ('003513','draft','2013-11-08','DISA FSO','policy','The organization implements controls to protect personally identifiable information (PII) used for testing.','DM-3.7','The organization being inspected/assessed will complete a Privacy Impact Assessment (PIA) for any information system that uses PII for testing and implement the identified controls.','The organization conducting the inspection/assessment obtains and examines the PIA for all information systems using PII for testing to ensure the PIA is completed and approved. The organization conducting the inspection/assessment inspects the information system to ensure the organization being inspected/assessed has properly implemented the controls identified in the PIA to protect PII.'), ('003514','draft','2013-11-08','DISA FSO','policy','The organization implements controls to protect personally identifiable information (PII) used for training.','DM-3.8','The organization being inspected/assessed will complete a Privacy Impact Assessment (PIA) for any information system that uses PII for training and implement the identified controls.','The organization conducting the inspection/assessment obtains and examines the PIA for all information systems using PII for training to ensure the PIA is completed and approved. The organization conducting the inspection/assessment inspects the information system to ensure the organization being inspected/assessed has properly implemented the controls identified in the PIA to protect PII.'), ('003515','draft','2013-11-08','DISA FSO','policy','The organization implements controls to protect personally identifiable information (PII) used for research.','DM-3.9','The organization being inspected/assessed will complete a Privacy Impact Assessment (PIA) for any information system that uses PII for research and implement the identified controls.','The organization conducting the inspection/assessment obtains and examines the PIA for all information systems using PII for research to ensure the PIA is completed and approved. The organization conducting the inspection/assessment inspects the information system to ensure the organization being inspected/assessed has properly implemented the controls identified in the PIA to protect PII.'), ('003516','draft','2013-11-08','DISA FSO','policy','The organization, where feasible, uses techniques to minimize the risk to privacy of using personally identifiable information (PII) for research.','DM-3(1).1','The organization being inspected/assessed documents and implements\ntechniques (such as de-identification or anonymization) to minimize the risk\nto privacy of using PII for research. Where such techniques aren\'t feasible due to the parameters of the research, the organization will document the justification for not implementing such techniques.','The organization conducting the inspection/assessment obtains and examines the documented techniques to minimize the risk to privacy of using PII for research and verifies that these techniques are being used\nor that the justifications for not using them are documented.'), ('003517','draft','2013-11-08','DISA FSO','policy','The organization, where feasible, uses techniques to minimize the risk to privacy of using personally identifiable information (PII) for testing.','DM-3(1).2','The organization being inspected/assessed documents and implements\ntechniques (such as de-identification or anonymization) to minimize the risk\nto privacy of using PII for testing. Where such techniques aren\'t feasible due to the parameters of the testing, the organization will document the justification for not implementing such techniques.','The organization conducting the inspection/assessment obtains and examines the documented techniques to minimize the risk to privacy of using PII for testing and verifies that these techniques are being used\nor that the justifications for not using them are documented.'), ('003518','draft','2013-11-08','DISA FSO','policy','The organization, where feasible, uses techniques to minimize the risk to privacy of using personally identifiable information (PII) for training.','DM-3(1).3','The organization being inspected/assessed documents and implements\ntechniques (such as de-identification or anonymization) to minimize the risk\nto privacy of using PII for training. Where such techniques aren\'t feasible due to the parameters of the training, the organization will document the justification\nfor not implementing such training.','The organization conducting the inspection/assessment obtains and examines the documented techniques to minimize the risk to privacy of using PII for training and verifies that these techniques are being used\nor that the justifications for not using them are documented.'), ('003519','draft','2013-11-08','DISA FSO','policy','The organization provides means, where feasible and appropriate, for individuals to authorize the collection of personally identifiable information (PII) prior to its collection.','IP-1.1','The organization being inspected/assessed documents and implements a procedure for individuals to authorize the collection of personally identifiable\ninformation (PII) prior to its collection. Minimally, where individual\nauthorization is not feasible or appropriate, the organization will notify\nusers that PII is being collected.','The organization conducting the inspection/assessment obtains and examines the documented procedure as well as a sampling of artifacts related to the authorization of collection of PII to ensure the organization being inspected/assessed provides means, where feasible and appropriate, for individuals to authorize the collection of PII prior to its collection. Where authorization is not feasible or appropriate, the organization conducting the inspection/assessment ensures that the organization notifies users that PII is being collected.'), ('003520','draft','2013-11-08','DISA FSO','policy','The organization provides means, where feasible and appropriate, for individuals to authorize the use of personally identifiable information (PII) prior to its collection.','IP-1.2','The organization being inspected/assessed documents and implements a procedure for individuals to authorize the use of personally identifiable\ninformation (PII) prior to its collection. Minimally, where individual\nauthorization is not feasible or appropriate, the organization will notify\nusers that PII is being used.','The organization conducting the inspection/assessment obtains and examines the documented procedure as well as a sampling of artifacts related to the authorization of the use of PII to ensure the organization being inspected/assessed provides means, where feasible and appropriate, for individuals to authorize the use of PII prior to its collection. Where authorization is not feasible or appropriate, the organization conducting the inspection/assessment ensures that the organization notifies users that PII is being used.'), ('003521','draft','2013-11-08','DISA FSO','policy','The organization provides means, where feasible and appropriate, for individuals to authorize the maintaining of personally identifiable information (PII) prior to its collection.','IP-1.3','The organization being inspected/assessed documents and implements a procedure for individuals to authorize the maintaining of personally identifiable\ninformation (PII) prior to its collection. Minimally, where individual\nauthorization is not feasible or appropriate, the organization will notify\nusers that PII is being maintained.','The organization conducting the inspection/assessment obtains and examines the documented procedure as well as a sampling of artifacts related to the authorization of the maintaining of PII to ensure the organization being inspected/assessed provides means, where feasible and appropriate, for individuals to authorize the maintaining of PII prior to its collection. Where authorization is not feasible or appropriate, the organization conducting the inspection/assessment ensures that the organization notifies users that PII is being maintained.'), ('003522','draft','2013-11-08','','policy','The organization provides means, where feasible and appropriate, for individuals to authorize sharing of personally identifiable information (PII) prior to its collection.','IP-1.4','The organization being inspected/assessed documents and implements a procedure for individuals to authorize the sharing of personally identifiable\ninformation (PII) prior to its collection. Minimally, where individual\nauthorization is not feasible or appropriate, the organization will notify\nusers that PII is being shared.','The organization conducting the inspection/assessment obtains and examines the documented procedure as well as a sampling of artifacts related to the authorization of the sharing of PII to ensure the organization being inspected/assessed provides means, where feasible and appropriate, for individuals to authorize the sharing of PII prior to its collection. Where authorization is not feasible or appropriate, the organization conducting the inspection/assessment ensures that the organization notifies users that PII is being shared.'), ('003523','draft','2013-11-08','DISA FSO','policy','The organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the collection of personally identifiable information (PII).','IP-1.5','The organization being inspected/assessed documents and implements a procedure for individuals to understand the consequences of decisions to approve or decline the authorization of the collection of PII.','The organization conducting the inspection/assessment obtains and examines the documented procedure to ensure the organization being inspected/assessed provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the collection of PII.'), ('003524','draft','2013-11-08','DISA FSO','policy','The organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the use of personally identifiable information (PII).','IP-1.6','The organization being inspected/assessed documents and implements a procedure for individuals to understand the consequences of decisions to approve or decline the authorization of the use of PII.','The organization conducting the inspection/assessment obtains and examines the documented procedure to ensure the organization being inspected/assessed provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the use of PII.'), ('003525','draft','2013-11-08','DISA FSO','policy','The organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the dissemination of personally identifiable information (PII).','IP-1.7','The organization being inspected/assessed documents and implements a procedure for individuals to understand the consequences of decisions to approve or decline the authorization of the dissemination of PII.','The organization conducting the inspection/assessment obtains and examines the documented procedure to ensure the organization being inspected/assessed provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the dissemination of PII.'), ('003526','draft','2013-11-08','DISA FSO','policy','The organization provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the retention of personally identifiable information (PII).','IP-1.8','The organization being inspected/assessed documents and implements a procedure for individuals to understand the consequences of decisions to approve or decline the authorization of the retention of PII.','The organization conducting the inspection/assessment obtains and examines the documented procedure to ensure the organization being inspected/assessed provides appropriate means for individuals to understand the consequences of decisions to approve or decline the authorization of the retention of PII.'), ('003527','draft','2013-11-08','DISA FSO','policy','The organization obtains consent, where feasible and appropriate, from individuals prior to any new uses or disclosure of previously collected personally identifiable information (PII).','IP-1.9','The organization being inspected/assessed documents and implements a process to obtain consent, where feasible and appropriate, from individuals prior to any new uses or disclosure of previously collected PII. Minimally, where consent is not feasible or appropriate, the organization will notify users of new uses or disclosure of previously collected PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed obtains consent, where feasible and appropriate, from individuals prior to any new uses or disclosure of previously collected PII. Where consent is not feasible or appropriate, the organization conducting the inspection/assessment ensures that the organization notifies users of new uses or disclosure of previously collected PII.'), ('003528','draft','2013-11-08','DISA FSO','policy','The organization ensures that individuals are aware of all uses of personally identifiable information (PII) not initially described in the public notice that was in effect at the time the organization collected the PII.','IP-1.10','The organization being inspected/assessed documents and implements a process to ensure that individuals are aware of all uses of PII not initially described in the SORN and Privacy Act Statement that was in effect at the time the organization collected the PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that individuals are aware of all uses of PII not initially described in the SORN and Privacy Act Statement that was in effect at the time the organization collected the PII.'), ('003529','draft','2013-11-08','DISA FSO','policy','The organization ensures that individuals, where feasible, consent to all uses of personally identifiable information (PII) not initially described in the public notice that was in effect at the time the organization collected the PII.','IP-1.11','The organization being inspected/assessed documents and implements a process to ensure that individuals, where feasible, consent to all uses of PII not initially described in the SORN and Privacy Act Statement that was in effect at the time the organization collected the PII. Minimally, where consent is not feasible or appropriate, the organization will notify users of all uses of PII not initially described in the SORN and Privacy Act Statement that was in effect at the time the organization collected the PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed ensures that individuals, where feasible, consent to all uses of PII not initially described in the SORN and Privacy Act Statement that was in effect at the time the organization collected the PII. Where consent is not feasible or appropriate, the organization conducting the inspection/assessment ensures that the organization notifies users of PII not initially described in the SORN and Privacy Act Statement that was in effect at the time the organization collected the PII.'), ('003530','draft','2013-11-08','DISA FSO','policy','The organization implements mechanisms to support itemized or tiered consent for specific uses of personally identifiable information (PII) data.','IP-1(1).1','The organization implements mechanisms to support itemized or tiered consent for specific uses of PII data.','The organization conducting the inspection/assessment obtains and examines documentation of the itemized or tiered consent methods used by the organization to ensure the organization being inspected/assessed provides individuals, where feasible, consent to each tier of use requested.'), ('003531','draft','2013-11-08','DISA FSO','policy','The organization provides individuals the ability to have access to their personally identifiable information (PII) maintained in its system(s) of records.','IP-2.1','The organization being inspected/assessed provides for public access to records in systems of records IAW the SORN. PII not included in the Privacy Act System of Records may be accessed through a Freedom of Information Act Request. At a minimum the organization shall provide access to an individuals own PII IAW both DoDD 5400.11 and DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines documentation of how the organization provides an individual with access to his own PII to ensure the organization being inspected/assessed provides individuals access to his own PII IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003532','draft','2013-11-08','DISA FSO','policy','The organization publishes rules and regulations governing how individuals may request access to records maintained in a Privacy Act system of records.','IP-2.2','The organization being inspected/assessed provides for public access to records in systems of records IAW the SORN. PII not included in the Privacy Act System of Records may be accessed through a Freedom of Information Act Request. At a minimum the organization shall provide access to an individuals own PII IAW both DoDD 5400.11 and DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines documentation of how the organization provides an individual with access to his own PII to ensure the organization being inspected/assessed provides individuals access to his own PII IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003533','deprecated','2013-11-08','DISA FSO','policy','The organization publishes regulations governing how individuals may request access to records maintained in a Privacy Act system of records.','IP-2.3','The organization being inspected/assessed provides for public access to records in systems of records IAW the SORN. PII not included in the Privacy Act System of Records may be accessed through a Freedom of Information Act Request. At a minimum the organization shall provide access to an individuals own PII IAW both DoDD 5400.11 and DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines documentation of how the organization provides an individual with access to his own PII to ensure the organization being inspected/assessed provides individuals access to his own PII IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003534','draft','2013-11-08','DISA FSO','policy','The organization publishes access procedures for Privacy Act systems of records in System of Records Notices (SORNs).','IP-2.4','The organization being inspected/assessed provides for public access to records in systems of records IAW the SORN. PII not included in the Privacy Act System of Records may be accessed through a Freedom of Information Act Request. At a minimum the organization shall provide access to an individuals own PII IAW both DoDD 5400.11 and DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines documentation of how the organization provides an individual with access to his own PII to ensure the organization being inspected/assessed provides individuals access to his own PII IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003535','draft','2013-11-08','DISA FSO','policy','The organization adheres to Privacy Act requirements for the proper processing of Privacy Act requests.','IP-2.5','The organization being inspected/assessed provides for public access to records in systems of records IAW the SORN. PII not included in the Privacy Act System of Records may be accessed through a Freedom of Information Act Request. At a minimum the organization shall provide access to an individuals own PII IAW both DoDD 5400.11 and DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines documentation of how the organization provides an individual with access to his own PII to ensure the organization being inspected/assessed provides individuals access to his own PII IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003536','draft','2013-11-08','DISA FSO','policy','The organization adheres to OMB policies and guidance for the proper processing of Privacy Act requests.','IP-2.6','The organization being inspected/assessed provides for public access to records in systems of records IAW the SORN. PII not included in the Privacy Act System of Records may be accessed through a Freedom of Information Act Request. At a minimum the organization shall provide access to an individuals own PII IAW both DoDD 5400.11 and DoD 5400.11-R.','The organization conducting the inspection/assessment obtains and examines documentation of how the organization provides an individual with access to his own PII to ensure the organization being inspected/assessed provides individuals access to his own PII IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003537','draft','2013-11-08','DISA FSO','policy','The organization provides a process for individuals to have inaccurate personally identifiable information (PII) maintained by the organization corrected or amended, as appropriate.','IP-3.1','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R for individuals to have inaccurate PII maintained by the organization corrected or amended, as appropriate.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides a process IAW DoDD 5400.11 and DoD 5400.11-R for individuals to have inaccurate PII maintained by the organization corrected or amended, as appropriate.'), ('003538','draft','2013-11-08','DISA FSO','policy','The organization establishes a process for disseminating corrections or amendments of the personally identifiable information (PII) to other authorized users of the PII, such as external information-sharing partners.','IP-3.2','The organization being inspected/assessed establishes and documents a process IAW DoDD 5400.11 and DoD 5400.11-R for disseminating corrections or amendments of the PII to other authorized users of the PII, such as external information-sharing partners.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes a process IAW DoDD 5400.11 and DoD 5400.11-R for disseminating corrections or amendments of the PII to other authorized users of the PII, such as external information-sharing partners.'), ('003539','draft','2013-11-08','DISA FSO','policy','The organization establishes a process, where feasible and appropriate, to notify affected individuals that their personally identifiable information (PII) information has been corrected or amended.','IP-3.3','The organization being inspected/assessed establishes and documents a process IAW DoDD 5400.11 and DoD 5400.11-R where feasible and appropriate, to notify affected individuals that their PII information has been corrected or amended.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed establishes a process IAW DoDD 5400.11 and DoD 5400.11-R, where feasible and appropriate, to notify affected individuals that their PII information has been corrected or amended.'), ('003540','draft','2013-11-08','DISA FSO','policy','The organization implements a process for receiving complaints, concerns, or questions from individuals about the organizational privacy practices.','IP-4.1','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and for receiving privacy-related complaints, grievances, concerns, or questions from individuals','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process IAW DoD 5400.11-R and OMB Memorandum M-08-09 for receiving complaints, grievances, concerns, or questions from individuals about: (1) organizational privacy process and procedural issues (consent, collection, and appropriate notice); (2) redress issues (non-Privacy Act inquiries seeking resolution of difficulties or concerns about privacy matters); (3) operational issues (inquiries regarding Privacy Act matters not including Privacy Act requests for access and/or corrections); and (4) a complaint or grievance against the organization or one of its employees concerning any right granted by DoD 5400.11-R.'), ('003541','draft','2013-11-08','DISA FSO','policy','The organization implements a process for responding to complaints, concerns, or questions from individuals about the organizational privacy practices.','IP-4.2','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and for responding to privacy-related complaints, grievances, concerns, or questions from individuals','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process IAW DoD 5400.11-R and OMB Memorandum M-08-09 for processing complaints, grievances, concerns, or questions from individuals about: (1) organizational privacy process and procedural issues (consent, collection, and appropriate notice); (2) redress issues (non-Privacy Act inquiries seeking resolution of difficulties or concerns about privacy matters); (3) operational issues (inquiries regarding Privacy Act matters not including Privacy Act requests for access and/or corrections); and (4) a complaint or grievance against the organization or one of its employees concerning any right granted by DoD 5400.11-R.'), ('003542','draft','2013-11-08','DISA FSO','policy','The organization defines the time period within which it must respond to complaints, concerns, or questions from individuals about the organizational privacy practices.','IP-4(1).1','DoD has defined the time period as 30 days within receipt of the initial complaint.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the time period as 30 days within receipt of the initial complaint.'), ('003543','draft','2013-11-08','DISA FSO','policy','The organization responds to complaints, concerns, or questions from individuals about the organizational privacy practices within the organization-defined time period.','IP-4(1).2','The organization being inspected/assessed documents and implements a process to respond to complaints, concerns, or questions from individuals about the organizational privacy practices within 30 days within receipt of the initial complaint.\n\nDoD has defined the time period as 30 days within receipt of the initial complaint.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed responds to complaints, concerns, or questions from individuals about the organizational privacy practices within 30 days within receipt of the initial complaint.\n\nDoD has defined the time period as 30 days within receipt of the initial complaint.'), ('003544','draft','2013-11-08','DISA FSO','policy','The organization defines the frequency on which it will update the inventory that contains a listing of all programs and information systems identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.1','DoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.'), ('003545','draft','2013-11-08','DISA FSO','policy','The organization establishes an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.2','The organization being inspected/assessed establishes and documents an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing PII.','The organization conducting the inspection/assessment obtains and examines the documented inventory to ensure the organization being inspected/assessed establishes an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing PII.'), ('003546','draft','2013-11-08','DISA FSO','policy','The organization establishes an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.3','The organization being inspected/assessed establishes and documents an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing PII.','The organization conducting the inspection/assessment obtains and examines the documented inventory to ensure the organization being inspected/assessed establishes an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing PII.'), ('003547','draft','2013-11-08','DISA FSO','policy','The organization maintains an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.4','The organization being inspected/assessed documents and implements a process to maintain an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed maintains an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing PII.'), ('003548','draft','2013-11-08','DISA FSO','policy','The organization maintains an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.5','The organization being inspected/assessed documents and implements a process to maintain an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed maintains an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing PII.'), ('003549','draft','2013-11-08','DISA FSO','policy','The organization updates, per organization-defined frequency, an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.6','The organization being inspected/assessed documents and implements a process to update, within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs, an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing PII.\n\nThe organization must maintain an audit trail of updates.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of updates to ensure the organization being inspected/assessed updates, within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs, an inventory that contains a listing of all programs identified as collecting, using, maintaining, or sharing PII.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.'), ('003550','draft','2013-11-08','DISA FSO','policy','The organization updates, per organization-defined frequency, an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing personally identifiable information (PII).','SE-1.7','The organization being inspected/assessed documents and implements a process to update, within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs, an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing PII.\n\nThe organization must maintain an audit trail of updates.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of updates to ensure the organization being inspected/assessed updates, within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs, an inventory that contains a listing of all information systems identified as collecting, using, maintaining, or sharing PII.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.'), ('003551','draft','2013-11-08','DISA FSO','policy','The organization defines the frequency for providing each update of the personally identifiable information (PII) inventory to the CIO or information security official.','SE-1.8','DoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.','The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.'), ('003552','draft','2013-11-08','DISA FSO','policy','The organization provides each update of the personally identifiable information (PII) inventory to the CIO or information security official, per organization-defined frequency, to support the establishment of information security requirements for all new or modified information systems containing PII.','SE-1.9','The organization being inspected/assessed documents and implements a process to provide each update of the PII inventory to the CIO or information security official, within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs, to support the establishment of information security requirements for all new or modified information systems containing PII.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides each update of the PII inventory to the CIO or information security official, within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs, to support the establishment of information security requirements for all new or modified information systems containing PII.\n\nDoD has defined the frequency as within three years of PIA approval and when a significant system change or a change in privacy or security posture occurs.'), ('003553','draft','2013-11-08','DISA FSO','policy','The organization develops a Privacy Incident Response Plan.','SE-2.1','The organization being inspected/assessed develops and documents a Privacy Incident Response Plan. The revision of DoD 5400.11-R into a manual provides DoD-enterprise-level guidance on breach reporting. Components may decide to augment this with their own incident response plan. The privacy incident response plan may be included as a part of the organization\'s existing response plan.','The organization conducting the inspection/assessment obtains and examines the documented Privacy Incident Response Plan to ensure the organization being inspected/assessed develops a Privacy Incident Response Plan.'), ('003554','draft','2013-11-08','DISA FSO','policy','The organization implements a Privacy Incident Response Plan.','SE-2.2','The organization being inspected/assessed implements a Privacy Incident Response Plan. The revision of DoD 5400.11-R into a manual provides DoD-enterprise-level guidance on breach reporting. Components may decide to augment this with their own incident response plan.','The organization conducting the inspection/assessment obtains and examines the documented Privacy Incident Response Plan to ensure the organization being inspected/assessed implements a Privacy Incident Response Plan.'), ('003555','draft','2013-11-08','DISA FSO','policy','The organization provides an organized and effective response to privacy incidents in accordance with the organizational Privacy Incident Response Plan.','SE-2.3','The organization being inspected/assessed documents and implements a process to provides an organized and effective response to privacy incidents in accordance with the organizational Privacy Incident Response Plan. The revision of DoD 5400.11-R into a manual provides DoD-enterprise-level guidance on breach reporting. Components may decide to augment this with their own incident response plan. The privacy incident response plan, which may be included as a part of your existing response plan.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides an organized and effective response to privacy incidents in accordance with the organizational Privacy Incident Response Plan.'), ('003556','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to the public regarding its activities that impact privacy, including its collection, use, sharing, safeguarding, maintenance, and disposal of personally identifiable information (PII).','TR-1.1','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to the public regarding its activities that impact privacy, including its collection, use, sharing, safeguarding, maintenance, and disposal of personally identifiable information (PII).','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice to the public IAW DoD 5400.11-R and DoDI 5400.16 regarding its activities that impact privacy, including its collection, use, sharing, safeguarding, maintenance, and disposal of personally identifiable information (PII).'), ('003557','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to individuals regarding its activities that impact privacy, including its collection, use, sharing, safeguarding, maintenance, and disposal of personally identifiable information (PII).','TR-1.2','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective information to individuals regarding its activities that impact privacy, including its collection, use, sharing, safeguarding, maintenance, and disposal of PII. The process may include use of the SORN, PIA, or through the Privacy Act Statement on forms used to collect PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to individuals regarding its activities that impact privacy, including its collection, use, sharing, safeguarding, maintenance, and disposal of PII.'), ('003558','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to the public regarding its authority for collecting personally identifiable information (PII).','TR-1.3','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to the public regarding its authority for collecting PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to the public regarding its authority for collecting PII.'), ('003559','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to individuals regarding its authority for collecting personally identifiable information (PII).','TR-1.4','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to individuals regarding its authority for collecting PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAWIAW DoD 5400.11-R and DoDI 5400.16 to individuals regarding its authority for collecting PII.'), ('003560','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to the public regarding the choices, if any, individuals may have regarding how the organization uses personally identifiable information (PII).','TR-1.5','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to the public regarding the choices, if any, individuals may have regarding how the organization uses PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to the public regarding the choices, if any, individuals may have regarding how the organization uses PII.'), ('003561','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to individuals regarding the choices, if any, individuals may have regarding how the organization uses personally identifiable information (PII).','TR-1.6','The organization being inspected/assessed documents and implements a process to provide IAW DoD 5400.11-R and DoDI 5400.16 effective notice to individuals regarding the choices, if any, individuals may have regarding how the organization uses PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to individuals regarding the choices, if any, individuals may have regarding how the organization uses PII.'), ('003562','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to the public regarding the consequences of exercising or not exercising the choices regarding how the organization uses personally identifiable information (PII).','TR-1.7','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to the public regarding the consequences of exercising or not exercising the choices regarding how the organization uses PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to the public regarding the consequences of exercising or not exercising the choices regarding how the organization uses PII.'), ('003563','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to individuals regarding the consequences of exercising or not exercising the choices regarding how the organization uses personally identifiable information (PII).','TR-1.8','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to individuals regarding the consequences of exercising or not exercising the choices regarding how the organization uses PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to individuals regarding the consequences of exercising or not exercising the choices regarding how the organization uses PII.'), ('003564','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to the public regarding the ability of individuals to access personally identifiable information (PII).','TR-1.9','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to the public regarding the ability to access PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to the public regarding the ability to access PII.'), ('003565','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to individuals regarding the ability to access personally identifiable information (PII).','TR-1.10','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to individuals regarding the ability to access PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to individuals regarding the ability to access PII.'), ('003566','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to the public regarding the ability to have personally identifiable information (PII) amended or corrected if necessary.','TR-1.11','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to the public regarding the ability to have PII amended or corrected if necessary.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to the public regarding the ability to have PII amended or corrected if necessary.'), ('003567','draft','2013-11-08','DISA FSO','policy','The organization provides effective notice to individuals regarding the ability to have personally identifiable information (PII) amended or corrected if necessary.','TR-1.12','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to provide effective notice to individuals regarding the ability to have PII amended or corrected if necessary.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides effective notice IAW DoD 5400.11-R and DoDI 5400.16 to individuals regarding the ability to have PII amended or corrected if necessary.'), ('003568','draft','2013-11-08','DISA FSO','policy','The organization describes the personally identifiable information (PII) the organization collects.','TR-1.13','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 the PII the organization collects.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes the PII the organization collects IAW DoD 5400.11-R and DoDI 5400.16'), ('003569','draft','2013-11-08','DISA FSO','policy','The organization describes the purpose(s) for which it collects the personally identifiable information (PII).','TR-1.14','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 the purpose(s) for which it collects the PII information.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes the purpose(s) for which it collects the PII information IAW DoD 5400.11-R and DoDI 5400.16'), ('003570','draft','2013-11-08','DISA FSO','policy','The organization describes how the organization uses personally identifiable information (PII) internally.','TR-1.15','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 how the organization uses PII internally.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes how the organization uses PII internally IAW DoD 5400.11-R and DoDI 5400.16'), ('003571','draft','2013-11-08','DISA FSO','policy','The organization describes whether the organization shares personally identifiable information (PII) with external entities.','TR-1.16','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 whether the organization shares PII with external entities.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes whether the organization shares PII with external entities IAW DoD 5400.11-R and DoDI 5400.16.'), ('003572','draft','2013-11-08','DISA FSO','policy','The organization describes the categories of those external entities with whom personally identifiable information (PII) is shared.','TR-1.17','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 the categories of those external entities with whom PII is shared.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes the categories of those external entities with whom PII is shared IAW DoD 5400.11-R and DoDI 5400.16'), ('003573','draft','2013-11-08','DISA FSO','policy','The organization describes the purposes for sharing personally identifiable information (PII) with external entities.','TR-1.18','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 the purposes for sharing PII with external entities.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes the purposes for sharing PII with external entities IAW DoD 5400.11-R and DoDI 5400.16'), ('003574','draft','2013-11-08','DISA FSO','policy','The organization describes whether individuals have the ability to consent to specific uses or sharing of personally identifiable information (PII).','TR-1.19','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 whether individuals have the ability to consent to specific uses or sharing of PII.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes whether individuals have the ability to consent to specific uses or sharing of PII IAW DoD 5400.11-R and DoDI 5400.16'), ('003575','draft','2013-11-08','DISA FSO','policy','The organization describes how individuals may exercise their consent regarding specific uses or sharing of personally identifiable information (PII).','TR-1.20','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 how individuals may exercise their consent regarding specific uses or sharing of PII.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes how individuals may exercise their consent regarding specific uses or sharing of PII IAW DoD 5400.11-R and DoDI 5400.16.'), ('003576','draft','2013-11-08','DISA FSO','policy','The organization describes how individuals may obtain access to personally identifiable information (PII).','TR-1.21','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 how individuals may obtain access to PII.','The organization being inspected/assessed obtains and examines the documented description to ensure the organization being inspected/assessed describes how individuals may obtain access to PII IAW DoD 5400.11-R and DoDI 5400.16.'), ('003577','draft','2013-11-08','DISA FSO','policy','The organization describes how the personally identifiable information (PII) will be protected.','TR-1.22','The organization being inspected/assessed describes and documents IAW DoD 5400.11-R and DoDI 5400.16 how the PII will be protected.','The organization conducting the inspection/assessment obtains and examines the documented description to ensure the organization being inspected/assessed describes how the PII will be protected IAW DoD 5400.11-R and DoDI 5400.16.'), ('003578','draft','2013-11-08','DISA FSO','policy','The organization revises its public notices to reflect changes in practice or policy that affect personally identifiable information (PII), before or as soon as practicable after the change.','TR-1.23','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to revise its public notices to reflect changes in practice or policy that affect PII, before or as soon as practicable after the change.\n\nThe organization must maintain an audit trail of revisions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of revisions to ensure the organization being inspected/assessed revises its public notices, IAW DoD 5400.11-R and DoDI 5400.16, to reflect changes in practice or policy that affect PII, before or as soon as practicable after the change.'), ('003579','draft','2013-11-08','DISA FSO','policy','The organization revises its public notices to reflect changes in practice or policy that impact privacy, before or as soon as practicable after the change.','TR-1.24','The organization being inspected/assessed documents and implements a process IAW DoD 5400.11-R and DoDI 5400.16 to revise its public notices to reflect changes in practice or policy that impact privacy, before or as soon as practicable after the change.\n\nThe organization must maintain an audit trail of revisions.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of revisions to ensure the organization being inspected/assessed revises its public notices IAW DoD 5400.11-R and DoDI 5400.16 to reflect changes in practice or policy that impact privacy, before or as soon as practicable after the change.'), ('003580','draft','2013-11-08','DISA FSO','policy','The organization provides real-time notice and/or layered notice when it collects personally identifiable information (PII).','TR-1(1).1','The organization being inspected/assessed documents and implements a process to provide real-time notice and/or layered notice when it collects PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed provides real-time notice and/or layered notice when it collects PII.'), ('003581','draft','2013-11-08','DISA FSO','policy','The organization publishes System of Records Notices (SORNs) in the Federal Register, subject to required oversight processes, for systems containing personally identifiable information (PII).','TR-2.1','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to publish System of Records Notices (SORNs) in the Federal Register, subject to required oversight processes, for systems containing PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed publishes IAW DoDD 5400.11 and DoD 5400.11-R System of Records Notices (SORNs) in the Federal Register, subject to required oversight processes, for systems containing PII.'), ('003582','draft','2013-11-08','DISA FSO','policy','The organization keeps System of Records Notices (SORNs) current.','TR-2.2','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to review System of Records Notices (SORNs) every two years and to updated as necessary to keep current.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed keeps System of Records Notices (SORNs) current IAW DoDD 5400.11 and DoD 5400.11-R by reviewing the SORNs every two years and updating as necessary.'), ('003583','draft','2013-11-08','DISA FSO','policy','The organization includes Privacy Act Statements on its forms that collect personally identifiable information (PII), or on separate forms that can be retained by individuals, to provide additional formal notice to individuals from whom the information is being collected.','TR-2.3','The organization being inspected/assesse documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to include Privacy Act Statements on its forms that collect PII, or on separate forms that can be retained by individuals, to provide additional formal notice to individuals from whom the information is being collected.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed, IAW DoDD 5400.11 and DoD 5400.11-R, includes Privacy Act Statements on its forms that collect PII, or on separate forms that can be retained by individuals, to provide additional formal notice to individuals from whom the information is being collected.'), ('003584','draft','2013-11-08','DISA FSO','policy','The organization publishes System of Records Notices (SORNs) on its public website.','TR-2(1).1','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to publish their Component level System of Records Notices (SORNs) on its public website.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed publishes their Component level System of Records Notices (SORNs) on its public websites IAW DoDD 5400.11 and DoD 5400.11-R.'), ('003585','draft','2013-11-08','DISA FSO','policy','The organization ensures the public has access to information about its privacy activities.','TR-3.1','DoDD 5400.11, DoD 5400.11-R, DoDI 5400.16, publication of both Privacy Impact Assessments and System of Records Notices, as well as, if published, Service or DoD Component level privacy regulations, meet this control\'s requirement to make public information about the organizations\' privacy activities.\n\nThe organization being inspected/assessed documents any Service or Component level privacy regulations it has published.','DoDD 5400.11, DoD 5400.11-R, DoDI 5400.16, publication of both Privacy Impact Assessments and System of Records Notices, as well as, if published, Service or DoD Component level privacy regulations, meet this control\'s to make publicly accessible information about the organizations\' privacy activities.\n\nThe organization conducting the inspection/assessment obtains and examines the published Service or Component level privacy regulations to ensure the organization being inspected/assessed, has made those regulations public.'), ('003586','draft','2013-11-08','DISA FSO','policy','The organization ensures the public is able to communicate with its Senior Agency Official for Privacy (SAOP)/Chief Privacy Officer (CPO).','TR-3.2','If the DoD Component has identified a Chief Privacy Officer, the DoD Component shall provide a phone number and e-mail address on its web site to enable the public to communicate with its Chief Privacy Officer. If the DoD Component is serviced by another DoD Component\'s Chief Privacy Officer, the DoD Component will provide a phone number and e-mail address for that Officer.\n\nThe organization being inspected/assessed documents the web site on which it has published a phone number and e-mail address on its web site to enable the public to communicate with its Chief Privacy Officer.','The organization conducting the inspection/assessment obtains and examines the documented web site to ensure the organization being inspected/assessed, has provided a phone number and e-mail address that permits the public to communicate with its Chief Privacy Officer.'), ('003587','draft','2013-11-08','DISA FSO','policy','The organization ensures its privacy practices are publicly available through organizational websites or otherwise.','TR-3.3','If the DoD Component has a Component level Privacy regulation, the DoD Component shall provide public access to that regulation on the Component\'s web site.\n\nThe organization being inspected/assessed documents the web site on which it has published its Component level privacy regulation.','If the DoD Component has a Component level Privacy regulation, the DoD Component shall provide public access to that regulation on the Component\'s web site.\n\nThe organization conducting the inspection/assessment obtains and examines the documented web site to ensure the organization being inspected/assessed, has provided public access to the Component level privacy regulation.'), ('003588','draft','2013-11-08','DISA FSO','policy','The organization uses personally identifiable information (PII) internally only for the authorized purpose(s) identified in the Privacy Act and/or in public notices.','UL-1.1','The organization being inspected/assessed documents and implements a process to use personally identifiable information (PII) internally only for the authorized purpose(s) identified in the Privacy Act and/or in public notices.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed uses personally identifiable information (PII) internally only for the authorized purpose(s) identified in the Privacy Act and/or in public notices.'), ('003589','draft','2013-11-08','DISA FSO','policy','The organization shares personally identifiable information (PII) externally, only for the authorized purposes identified in the Privacy Act and/or described in its notice(s) or for a purpose that is compatible with those purposes.','UL-2.1','The organization being inspected/assessed documents and implements a process to share IAW DoDD 5400.11 and DoD 5400.11-R, PII externally, only for the authorized purposes or for a purpose that is compatible with those purposes. Planned use of PII must be identified and documented as an authorized purposes in the corresponding SORN, PIA, security plan, or other system-specific document.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed shares IAW DoD 5400.11, PII externally, only for the authorized purposes or for a purpose that is compatible with those purposes. Planned use of PII must be identified and documented as an authorized purposes in the corresponding SORN, PIA, security plan, or other system-specific document.'), ('003590','draft','2013-11-08','DISA FSO','policy','The organization, where appropriate, enters into Memoranda of Understanding, Memoranda of Agreement, Letters of Intent, Computer Matching Agreements, or similar agreements, with third parties that specifically describe the personally identifiable information (PII) covered.','UL-2.2','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to enter into Memoranda of Understanding, Memoranda of Agreement, Letters of Intent, Computer Matching Agreements, or similar agreements, where appropriate, with third parties that specifically describe the PII covered.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed, IAW DoDD 5400.11 and DoD 5400.11-R, enters into Memoranda of Understanding, Memoranda of Agreement, Letters of Intent, Computer Matching Agreements, or similar agreements, where appropriate, with third parties that specifically describe the PII covered.'), ('003591','draft','2013-11-08','DISA FSO','policy','The organization, where appropriate, enters into Memoranda of Understanding, Memoranda of Agreement, Letters of Intent, Computer Matching Agreements, or similar agreements, with third parties that specifically enumerate the purposes for which the personally identifiable information (PII) may be used.','UL-2.3','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to enter into Memoranda of Understanding, Memoranda of Agreement, Letters of Intent, Computer Matching Agreements, or similar agreements, where appropriate, with third parties that specifically enumerate the purposes for which the PII may be used.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed, IAW DoDD 5400.11 and DoD 5400.11-R, enters into Memoranda of Understanding, Memoranda of Agreement, Letters of Intent, Computer Matching Agreements, or similar agreements, where appropriate, with third parties that specifically enumerate the purposes for which the PII may be used.'), ('003592','draft','2013-11-08','DISA FSO','policy','The organization monitors its staff on the authorized sharing of personally identifiable information (PII) with third parties.','UL-2.4','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to monitor its staff on the authorized sharing of PII with third parties.\n\nThe organization must maintain an audit trail of monitoring.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of monitoring to ensure the organization being inspected/assessed monitors its staff, IAW DoDD 5400.11 and DoD 5400.11-R, on the authorized sharing of PII with third parties.'), ('003593','draft','2013-11-08','DISA FSO','policy','The organization audits its staff on the authorized sharing of personally identifiable information (PII) with third parties.','UL-2.5','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R, to audit its staff on the authorized sharing of PII with third parties.\n\nThe organization must maintain records of audits.','The organization conducting the inspection/assessment obtains and examines the documented process as well as the records of audits to ensure the organization being inspected/assessed audits its staff, IAW DoDD 5400.11 and DoD 5400.11-R, on the authorized sharing of PII with third parties.'), ('003594','draft','2013-11-08','DISA FSO','policy','The organization trains its staff on the authorized sharing of personally identifiable information (PII) with third parties.','UL-2.6','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to train its staff on the authorized sharing of PII with third parties.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed trains its staff, IAW DoDD 5400.11 and DoD 5400.11-R, on the authorized sharing of PII with third parties.'), ('003595','draft','2013-11-08','DISA FSO','policy','The organization trains its staff on the consequences of unauthorized use or sharing of personally identifiable information (PII).','UL-2.7','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to train its staff on the consequences of unauthorized use or sharing of PII.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed trains its staff, IAW DoDD 5400.11 and DoD 5400.11-R, on the consequences of unauthorized use or sharing of PII.'), ('003596','draft','2013-11-08','DISA FSO','policy','The organization evaluates any proposed new instances of sharing personally identifiable information (PII) with third parties to assess whether the sharing is authorized.','UL-2.8','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to evaluate any proposed new instances of sharing PII with third parties to assess whether the sharing is authorized.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed evaluates IAW DoDD 5400.11 and DoD 5400.11-R any proposed new instances of sharing PII with third parties to assess whether the sharing is authorized.'), ('003597','draft','2013-11-08','DISA FSO','policy','The organization evaluates any proposed new instances of sharing personally identifiable information (PII) with third parties to assess whether additional or new public notice is required.','UL-2.9','The organization being inspected/assessed documents and implements a process IAW DoDD 5400.11 and DoD 5400.11-R to evaluate any proposed new instances of sharing PII with third parties to assess whether additional or new public notice is required.','The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed evaluates IAW DoDD 5400.11 and DoD 5400.11-R any proposed new instances of sharing PII with third parties to assess whether additional or new public notice is required.'), ('003599','draft','2016-06-07','DISA FSO','policy','The organization defines the individuals or information systems to be the only recipients of organization-defined information, information system components, or devices, by employing organization-defined security safeguards.','SC-37(1).1','The organization being inspected/assessed defines and documents the individuals or information systems that are the only recipients of organization-defined information, information system components, or devices, and employed organization-defined security safeguards. DoD has determined the individuals or information systems are not appropriate to define at the Enterprise level.','The organization conducting the inspection/assessment obtains and examines the documented information, information system components, or devices to ensure the organization being inspected/assessed defines the individuals or information systems authorized to be recipients of organization-defined information, information system components, or devices, and has employed organization-defined security safeguards. DoD has determined the individuals or information systems are not appropriate to define at the Enterprise level.'); /*!40000 ALTER TABLE `cci` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `cci_reference_map` -- LOCK TABLES `cci_reference_map` WRITE; /*!40000 ALTER TABLE `cci_reference_map` DISABLE KEYS */; INSERT INTO `cci_reference_map` VALUES (21392,'001545','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b 1','AC-1b.1.','AC-1'), (21393,'001546','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b 2','AC-1b.2.','AC-1'), (21394,'000001','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1','AC-1a.1.','AC-1'), (21395,'000004','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 2','AC-1a.2.','AC-1'), (21396,'000002','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1','AC-1a.1.','AC-1'), (21397,'000003','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b 1','AC-1b.1.','AC-1'), (21398,'000005','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 2','AC-1a.2.','AC-1'), (21399,'000006','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b 2','AC-1b.2.','AC-1'), (21400,'001547','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 j','AC-2j.','AC-2'), (21401,'000008','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 c','AC-2c.','AC-2'), (21402,'000010','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 e','AC-2e.','AC-2'), (21403,'000011','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f.','AC-2'), (21404,'000012','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 j','AC-2j.','AC-2'), (21405,'000015','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (1)','AC-2 (1)','AC-2 (1)'), (21406,'000016','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2 (2)','AC-2 (2)'), (21407,'000017','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3)','AC-2 (3)','AC-2 (3)'), (21408,'000018','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21409,'000019','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (5)','AC-2 (5)','AC-2 (5)'), (21410,'001361','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2 (2)','AC-2 (2)'), (21411,'001365','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2 (2)','AC-2 (2)'), (21412,'000217','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3)','AC-2 (3)','AC-2 (3)'), (21413,'001403','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21414,'001404','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21415,'001405','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21416,'001406','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (5)','AC-2 (5)','AC-2 (5)'), (21417,'001407','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (a)','AC-2 (7)(a)','AC-2 (7)'), (21418,'001358','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (a)','AC-2 (7)(a)','AC-2 (7)'), (21419,'001360','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (b)','AC-2 (7)(b)','AC-2 (7)'), (21420,'001682','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2 (2)','AC-2 (2)'), (21421,'001683','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21422,'001684','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21423,'001685','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21424,'001686','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (21425,'001548','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), (21426,'001549','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), (21427,'001550','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), (21428,'001551','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), (21429,'001553','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (10)','AC-4 (10)','AC-4 (10)'), (21430,'001554','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (11)','AC-4 (11)','AC-4 (11)'), (21431,'000026','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (2)','AC-4 (2)','AC-4 (2)'), (21432,'000027','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (3)','AC-4 (3)','AC-4 (3)'), (21433,'000028','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (4)','AC-4 (4)','AC-4 (4)'), (21434,'000029','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (5)','AC-4 (5)','AC-4 (5)'), (21435,'000030','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (6)','AC-4 (6)','AC-4 (6)'), (21436,'000031','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (7)','AC-4 (7)','AC-4 (7)'), (21437,'000032','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8)','AC-4 (8)','AC-4 (8)'), (21438,'000034','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (10)','AC-4 (10)','AC-4 (10)'), (21439,'000035','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (11)','AC-4 (11)','AC-4 (11)'), (21440,'000219','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (13)','AC-4 (13)','AC-4 (13)'), (21441,'001414','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), (21442,'001415','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (5)','AC-4 (5)','AC-4 (5)'), (21443,'001416','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (7)','AC-4 (7)','AC-4 (7)'), (21444,'001417','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8)','AC-4 (8)','AC-4 (8)'), (21445,'001368','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), (21446,'001371','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (14)','AC-4 (14)','AC-4 (14)'), (21447,'001372','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (14)','AC-4 (14)','AC-4 (14)'), (21448,'001373','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4 (15)','AC-4 (15)'), (21449,'001374','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4 (15)','AC-4 (15)'), (21450,'001558','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1)','AC-6 (1)','AC-6 (1)'), (21451,'000039','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (2)','AC-6 (2)','AC-6 (2)'), (21452,'000041','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6 (3)','AC-6 (3)'), (21453,'000042','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6 (3)','AC-6 (3)'), (21454,'000225','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6','AC-6','AC-6'), (21455,'001419','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (2)','AC-6 (2)','AC-6 (2)'), (21456,'001420','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6 (3)','AC-6 (3)'), (21457,'001422','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (6)','AC-6 (6)','AC-6 (6)'), (21458,'001559','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16 (2)','AC-16 (2)'), (21459,'001560','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (21460,'001424','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16 (1)','AC-16 (1)'), (21461,'001425','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16 (2)','AC-16 (2)'), (21462,'001428','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16 (5)','AC-16 (5)'), (21463,'001429','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16 (5)','AC-16 (5)'), (21464,'001430','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16 (5)','AC-16 (5)'), (21465,'001561','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (3)','AC-17 (3)','AC-17 (3)'), (21466,'000063','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a.','AC-17'), (21467,'000065','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 b','AC-17b.','AC-17'), (21468,'000067','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (1)','AC-17 (1)','AC-17 (1)'), (21469,'000068','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (2)','AC-17 (2)','AC-17 (2)'), (21470,'000069','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (3)','AC-17 (3)','AC-17 (3)'), (21471,'000070','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17 (4)(a)','AC-17 (4)'), (21472,'000072','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (6)','AC-17 (6)','AC-17 (6)'), (21473,'001453','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (2)','AC-17 (2)','AC-17 (2)'), (21474,'001438','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 a','AC-18a.','AC-18'), (21475,'001439','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 a','AC-18a.','AC-18'), (21476,'001441','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 b','AC-18b.','AC-18'), (21477,'001443','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (1)','AC-18 (1)','AC-18 (1)'), (21478,'001444','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (1)','AC-18 (1)','AC-18 (1)'), (21479,'001449','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (3)','AC-18 (3)','AC-18 (3)'), (21480,'001451','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (5)','AC-18 (5)','AC-18 (5)'), (21481,'001564','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b 1','AT-1b.1.','AT-1'), (21482,'001565','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b 2','AT-1b.2.','AT-1'), (21483,'000100','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1','AT-1a.1.','AT-1'), (21484,'000101','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1','AT-1a.1.','AT-1'), (21485,'000102','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b 1','AT-1b.1.','AT-1'), (21486,'000103','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 2','AT-1a.2.','AT-1'), (21487,'000104','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 2','AT-1a.2.','AT-1'), (21488,'000105','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b 2','AT-1b.2.','AT-1'), (21489,'001566','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3 (2)','AT-3 (2)'), (21490,'001567','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3 (2)','AT-3 (2)'), (21491,'001568','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3 (2)','AT-3 (2)'), (21492,'000108','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 a','AT-3a.','AT-3'), (21493,'000109','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 b','AT-3b.','AT-3'), (21494,'000110','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 c','AT-3c.','AT-3'), (21495,'000111','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 c','AT-3c.','AT-3'), (21496,'001481','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3 (1)','AT-3 (1)'), (21497,'001482','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3 (1)','AT-3 (1)'), (21498,'001483','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3 (1)','AT-3 (1)'), (21499,'001569','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 1','AU-1b.1.','AU-1'), (21500,'001570','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 2','AU-1b.2.','AU-1'), (21501,'000117','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1','AU-1a.1.','AU-1'), (21502,'000119','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 1','AU-1b.1.','AU-1'), (21503,'000120','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a.2.','AU-1'), (21504,'000122','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 2','AU-1b.2.','AU-1'), (21505,'001571','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 a','AU-2a.','AU-2'), (21506,'000123','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 a','AU-2a.','AU-2'), (21507,'000124','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 b','AU-2b.','AU-2'), (21508,'000125','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 c','AU-2c.','AU-2'), (21509,'000126','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 d','AU-2d.','AU-2'), (21510,'000127','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 (3)','AU-2 (3)','AU-2 (3)'), (21511,'001484','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 d','AU-2d.','AU-2'), (21512,'001485','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 d','AU-2d.','AU-2'), (21513,'001486','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 (3)','AU-2 (3)','AU-2 (3)'), (21514,'001572','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 a','AU-5a.','AU-5'), (21515,'001573','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (3)','AU-5 (3)','AU-5 (3)'), (21516,'000139','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 a','AU-5a.','AU-5'), (21517,'000140','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 b','AU-5b.','AU-5'), (21518,'000145','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (3)','AU-5 (3)','AU-5 (3)'), (21519,'000147','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5 (2)','AU-5 (2)'), (21520,'001490','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 b','AU-5b.','AU-5'), (21521,'001575','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (2)','AU-9 (2)','AU-9 (2)'), (21522,'000162','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9','AU-9','AU-9'), (21523,'000163','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9','AU-9','AU-9'), (21524,'000164','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9','AU-9','AU-9'), (21525,'000165','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (1)','AU-9 (1)','AU-9 (1)'), (21526,'001348','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (2)','AU-9 (2)','AU-9 (2)'), (21527,'001349','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (2)','AU-9 (2)','AU-9 (2)'), (21528,'001350','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (3)','AU-9 (3)','AU-9 (3)'), (21529,'001351','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (4)','AU-9 (4)','AU-9 (4)'), (21530,'001493','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9','AU-9','AU-9'), (21531,'001494','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9','AU-9','AU-9'), (21532,'001495','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9','AU-9','AU-9'), (21533,'001496','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (3)','AU-9 (3)','AU-9 (3)'), (21534,'001576','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12 (1)','AU-12 (1)'), (21535,'001577','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12 (1)','AU-12 (1)'), (21536,'000169','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 a','AU-12a.','AU-12'), (21537,'000171','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 b','AU-12b.','AU-12'), (21538,'000172','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 c','AU-12c.','AU-12'), (21539,'000173','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12 (1)','AU-12 (1)'), (21540,'000174','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12 (1)','AU-12 (1)'), (21541,'001459','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 a','AU-12a.','AU-12'), (21542,'001353','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (2)','AU-12 (2)','AU-12 (2)'), (21543,'001578','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b 2','CA-1b.2.','CA-1'), (21544,'000238','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b 1','CA-1b.1.','CA-1'), (21545,'000239','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1','CA-1a.1.','CA-1'), (21546,'000240','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1','CA-1a.1.','CA-1'), (21547,'000240','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1','CA-1a.1.','CA-1'), (21548,'000241','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b 1','CA-1b.1.','CA-1'), (21549,'000242','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a.2.','CA-1'), (21550,'000243','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a.2.','CA-1'), (21551,'000244','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b 2','CA-1b.2.','CA-1'), (21552,'000245','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 a','CA-2a.','CA-2'), (21553,'000246','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 a 1','CA-2a.1.','CA-2'), (21554,'000247','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 a 2','CA-2a.2.','CA-2'), (21555,'000248','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 a 3','CA-2a.3.','CA-2'), (21556,'000251','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 b','CA-2b.','CA-2'), (21557,'000252','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 b','CA-2b.','CA-2'), (21558,'000253','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 c','CA-2c.','CA-2'), (21559,'000254','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 d','CA-2d.','CA-2'), (21560,'000255','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (1)','CA-2 (1)','CA-2 (1)'), (21561,'000256','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2 (2)','CA-2 (2)'), (21562,'000257','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 a','CA-3a.','CA-3'), (21563,'000258','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 b','CA-3b.','CA-3'), (21564,'000259','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 b','CA-3b.','CA-3'), (21565,'000260','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 b','CA-3b.','CA-3'), (21566,'000262','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (1)','CA-3 (1)','CA-3 (1)'), (21567,'000263','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (2)','CA-3 (2)','CA-3 (2)'), (21568,'001581','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g.','CA-7'), (21569,'001582','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2 (2)','CA-2 (2)'), (21570,'001583','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2 (2)','CA-2 (2)'), (21571,'000274','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7','CA-7','CA-7'), (21572,'000279','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 c','CA-7c.','CA-7'), (21573,'000280','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g.','CA-7'), (21574,'000281','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g.','CA-7'), (21575,'000282','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (1)','CA-7 (1)','CA-7 (1)'), (21576,'001681','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2 (2)','CA-2 (2)'), (21577,'001584','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b 2','CM-1b.2.','CM-1'), (21578,'000286','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b 1','CM-1b.1.','CM-1'), (21579,'000287','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1','CM-1a.1.','CM-1'), (21580,'000289','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b 1','CM-1b.1.','CM-1'), (21581,'000290','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a.2.','CM-1'), (21582,'000292','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b 2','CM-1b.2.','CM-1'), (21583,'001585','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (1) (b)','CM-2 (1)(b)','CM-2 (1)'), (21584,'000293','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2','CM-2','CM-2'), (21585,'000294','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2','CM-2','CM-2'), (21586,'000295','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2','CM-2','CM-2'), (21587,'000296','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (1) (a)','CM-2 (1)(a)','CM-2 (1)'), (21588,'000297','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (1) (b)','CM-2 (1)(b)','CM-2 (1)'), (21589,'000298','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (1) (c)','CM-2 (1)(c)','CM-2 (1)'), (21590,'000299','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (1) (c)','CM-2 (1)(c)','CM-2 (1)'), (21591,'000300','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2 (2)','CM-2 (2)'), (21592,'000301','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2 (2)','CM-2 (2)'), (21593,'000302','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2 (2)','CM-2 (2)'), (21594,'000303','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2 (2)','CM-2 (2)'), (21595,'000304','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (3)','CM-2 (3)','CM-2 (3)'), (21596,'000311','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (6)','CM-2 (6)','CM-2 (6)'), (21597,'000312','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (6)','CM-2 (6)','CM-2 (6)'), (21598,'001497','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (1) (a)','CM-2 (1)(a)','CM-2 (1)'), (21599,'001586','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g.','CM-3'), (21600,'001586','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3 (4)','CM-3 (4)'), (21601,'000313','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 a','CM-3a.','CM-3'), (21602,'000314','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 b','CM-3b.','CM-3'), (21603,'000316','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 e','CM-3e.','CM-3'), (21604,'000318','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 f','CM-3f.','CM-3'), (21605,'000319','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g.','CM-3'), (21606,'000320','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g.','CM-3'), (21607,'000321','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g.','CM-3'), (21608,'000322','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (a)','CM-3 (1)(a)','CM-3 (1)'), (21609,'000323','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (b)','CM-3 (1)(b)','CM-3 (1)'), (21610,'000324','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (c)','CM-3 (1)(c)','CM-3 (1)'), (21611,'000325','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (d)','CM-3 (1)(d)','CM-3 (1)'), (21612,'000326','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (e)','CM-3 (1)(e)','CM-3 (1)'), (21613,'000327','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (2)','CM-3 (2)','CM-3 (2)'), (21614,'000328','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (2)','CM-3 (2)','CM-3 (2)'), (21615,'000329','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (2)','CM-3 (2)','CM-3 (2)'), (21616,'000330','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (3)','CM-3 (3)','CM-3 (3)'), (21617,'000331','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (3)','CM-3 (3)','CM-3 (3)'), (21618,'000332','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3 (4)','CM-3 (4)'), (21619,'001498','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (c)','CM-3 (1)(c)','CM-3 (1)'), (21620,'000333','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-4','CM-4','CM-4'), (21621,'000335','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4 (2)','CM-4 (2)'), (21622,'000336','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4 (2)','CM-4 (2)'), (21623,'000337','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4 (2)','CM-4 (2)'), (21624,'001588','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 a','CM-6a.','CM-6'), (21625,'000363','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 a','CM-6a.','CM-6'), (21626,'000364','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 a','CM-6a.','CM-6'), (21627,'000365','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 a','CM-6a.','CM-6'), (21628,'000366','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 b','CM-6b.','CM-6'), (21629,'000367','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c.','CM-6'), (21630,'000368','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c.','CM-6'), (21631,'000369','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c.','CM-6'), (21632,'000370','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6 (1)','CM-6 (1)'), (21633,'000371','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6 (1)','CM-6 (1)'), (21634,'000372','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6 (1)','CM-6 (1)'), (21635,'001502','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 d','CM-6d.','CM-6'), (21636,'001503','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 d','CM-6d.','CM-6'), (21637,'001592','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (2)','CM-7 (2)','CM-7 (2)'), (21638,'000380','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 b','CM-7b.','CM-7'), (21639,'000381','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 a','CM-7a.','CM-7'), (21640,'000382','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 b','CM-7b.','CM-7'), (21641,'000384','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (a)','CM-7 (1)(a)','CM-7 (1)'), (21642,'000387','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (3)','CM-7 (3)','CM-7 (3)'), (21643,'000388','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (3)','CM-7 (3)','CM-7 (3)'), (21644,'001596','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b 2','CP-1b.2.','CP-1'), (21645,'001597','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 2','CP-1a.2.','CP-1'), (21646,'001598','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b 2','CP-1b.2.','CP-1'), (21647,'000437','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b 1','CP-1b.1.','CP-1'), (21648,'000438','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1','CP-1a.1.','CP-1'), (21649,'000439','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1','CP-1a.1.','CP-1'), (21650,'000440','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b 1','CP-1b.1.','CP-1'), (21651,'000441','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 2','CP-1a.2.','CP-1'), (21652,'001599','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2 (5)','CP-2 (5)'), (21653,'001600','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2 (5)','CP-2 (5)'), (21654,'001601','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2 (6)','CP-2 (6)'), (21655,'001602','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2 (6)','CP-2 (6)'), (21656,'000443','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 1','CP-2a.1.','CP-2'), (21657,'000444','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 1','CP-2a.1.','CP-2'), (21658,'000445','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 1','CP-2a.1.','CP-2'), (21659,'000446','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 2','CP-2a.2.','CP-2'), (21660,'000447','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 2','CP-2a.2.','CP-2'), (21661,'000448','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 2','CP-2a.2.','CP-2'), (21662,'000449','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 3','CP-2a.3.','CP-2'), (21663,'000450','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a.4.','CP-2'), (21664,'000451','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a.4.','CP-2'), (21665,'000452','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a.4.','CP-2'), (21666,'000453','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a.4.','CP-2'), (21667,'000454','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a.4.','CP-2'), (21668,'000455','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a.4.','CP-2'), (21669,'000456','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 5','CP-2a.5.','CP-2'), (21670,'000457','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 6','CP-2a.6.','CP-2'), (21671,'000458','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 b','CP-2b.','CP-2'), (21672,'000459','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 b','CP-2b.','CP-2'), (21673,'000460','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 c','CP-2c.','CP-2'), (21674,'000461','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 d','CP-2d.','CP-2'), (21675,'000462','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 d','CP-2d.','CP-2'), (21676,'000463','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e.','CP-2'), (21677,'000464','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e.','CP-2'), (21678,'000465','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e.','CP-2'), (21679,'000466','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e.','CP-2'), (21680,'000468','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 f','CP-2f.','CP-2'), (21681,'000469','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (1)','CP-2 (1)','CP-2 (1)'), (21682,'000470','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (2)','CP-2 (2)','CP-2 (2)'), (21683,'000471','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (2)','CP-2 (2)','CP-2 (2)'), (21684,'000472','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (2)','CP-2 (2)','CP-2 (2)'), (21685,'000473','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2 (3)','CP-2 (3)'), (21686,'000474','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2 (3)','CP-2 (3)'), (21687,'000475','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2 (3)','CP-2 (3)'), (21688,'000476','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2 (3)','CP-2 (3)'), (21689,'000477','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (4)','CP-2 (4)','CP-2 (4)'), (21690,'000478','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (4)','CP-2 (4)','CP-2 (4)'), (21691,'000479','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (4)','CP-2 (4)','CP-2 (4)'), (21692,'000480','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (4)','CP-2 (4)','CP-2 (4)'), (21693,'000481','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2 (5)','CP-2 (5)'), (21694,'000482','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2 (5)','CP-2 (5)'), (21695,'000483','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2 (6)','CP-2 (6)'), (21696,'000484','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2 (6)','CP-2 (6)'), (21697,'001604','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (3)','CP-6 (3)','CP-6 (3)'), (21698,'000505','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 a','CP-6a.','CP-6'), (21699,'000507','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (1)','CP-6 (1)','CP-6 (1)'), (21700,'000508','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (2)','CP-6 (2)','CP-6 (2)'), (21701,'000509','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (3)','CP-6 (3)','CP-6 (3)'), (21702,'001606','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (2)','CP-7 (2)','CP-7 (2)'), (21703,'000510','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a.','CP-7'), (21704,'000513','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a.','CP-7'), (21705,'000514','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a.','CP-7'), (21706,'000515','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 b','CP-7b.','CP-7'), (21707,'000516','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (1)','CP-7 (1)','CP-7 (1)'), (21708,'000517','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (2)','CP-7 (2)','CP-7 (2)'), (21709,'000518','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (3)','CP-7 (3)','CP-7 (3)'), (21710,'000519','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (4)','CP-7 (4)','CP-7 (4)'), (21711,'000520','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (4)','CP-7 (4)','CP-7 (4)'), (21712,'000521','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 c','CP-7c.','CP-7'), (21713,'000522','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), (21714,'000523','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), (21715,'000524','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), (21716,'000525','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), (21717,'000526','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (a)','CP-8 (1)(a)','CP-8 (1)'), (21718,'000527','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (a)','CP-8 (1)(a)','CP-8 (1)'), (21719,'000528','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (b)','CP-8 (1)(b)','CP-8 (1)'), (21720,'000529','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (b)','CP-8 (1)(b)','CP-8 (1)'), (21721,'000530','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (2)','CP-8 (2)','CP-8 (2)'), (21722,'000531','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (3)','CP-8 (3)','CP-8 (3)'), (21723,'000532','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (a)','CP-8 (4)(a)','CP-8 (4)'), (21724,'000533','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (a)','CP-8 (4)(a)','CP-8 (4)'), (21725,'001609','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (6)','CP-9 (6)','CP-9 (6)'), (21726,'000534','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (a)','CP-9(a)','CP-9'), (21727,'000535','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (a)','CP-9(a)','CP-9'), (21728,'000536','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (b)','CP-9(b)','CP-9'), (21729,'000537','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (b)','CP-9(b)','CP-9'), (21730,'000538','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (c) ','CP-9(c)','CP-9'), (21731,'000539','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (c) ','CP-9(c)','CP-9'), (21732,'000540','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (d)','CP-9(d)','CP-9'), (21733,'000541','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (1)','CP-9 (1)','CP-9 (1)'), (21734,'000542','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (1)','CP-9 (1)','CP-9 (1)'), (21735,'000543','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (2)','CP-9 (2)','CP-9 (2)'), (21736,'000547','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (5)','CP-9 (5)','CP-9 (5)'), (21737,'000548','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (5)','CP-9 (5)','CP-9 (5)'), (21738,'000549','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (6)','CP-9 (6)','CP-9 (6)'), (21739,'001610','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 g','IA-5g.','IA-5'), (21740,'001611','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21741,'001612','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21742,'001613','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21743,'001614','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21744,'001615','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (b)','IA-5 (1)(b)','IA-5 (1)'), (21745,'001616','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (d)','IA-5 (1)(d)','IA-5 (1)'), (21746,'001617','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (d)','IA-5 (1)(d)','IA-5 (1)'), (21747,'001618','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (e)','IA-5 (1)(e)','IA-5 (1)'), (21748,'001619','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21749,'001621','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (8)','IA-5 (8)','IA-5 (8)'), (21750,'000176','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 b','IA-5b.','IA-5'), (21751,'000179','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 f','IA-5f.','IA-5'), (21752,'000180','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 f','IA-5f.','IA-5'), (21753,'000181','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 f','IA-5f.','IA-5'), (21754,'000182','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 g','IA-5g.','IA-5'), (21755,'000183','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 h','IA-5h.','IA-5'), (21756,'000184','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 i','IA-5i.','IA-5'), (21757,'000185','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (a)','IA-5 (2)(a)','IA-5 (2)'), (21758,'000186','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (b)','IA-5 (2)(b)','IA-5 (2)'), (21759,'000187','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (c)','IA-5 (2)(c)','IA-5 (2)'), (21760,'000201','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (6)','IA-5 (6)','IA-5 (6)'), (21761,'000202','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (7)','IA-5 (7)','IA-5 (7)'), (21762,'000204','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (8)','IA-5 (8)','IA-5 (8)'), (21763,'000192','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21764,'000193','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21765,'000194','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21766,'000195','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (b)','IA-5 (1)(b)','IA-5 (1)'), (21767,'000196','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (c)','IA-5 (1)(c)','IA-5 (1)'), (21768,'000197','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (c)','IA-5 (1)(c)','IA-5 (1)'), (21769,'000198','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (d)','IA-5 (1)(d)','IA-5 (1)'), (21770,'000199','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (d)','IA-5 (1)(d)','IA-5 (1)'), (21771,'000200','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (e)','IA-5 (1)(e)','IA-5 (1)'), (21772,'000203','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (7)','IA-5 (7)','IA-5 (7)'), (21773,'000205','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5 (1)(a)','IA-5 (1)'), (21774,'001544','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 c','IA-5c.','IA-5'), (21775,'000813','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a','IR-2a.','IR-2'), (21776,'000814','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 c','IR-2c.','IR-2'), (21777,'000815','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 c','IR-2c.','IR-2'), (21778,'000816','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 (1)','IR-2 (1)','IR-2 (1)'), (21779,'000817','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 (2)','IR-2 (2)','IR-2 (2)'), (21780,'001624','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), (21781,'000818','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), (21782,'000819','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), (21783,'000820','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), (21784,'000821','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (1)','IR-3 (1)','IR-3 (1)'), (21785,'001625','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 c','IR-4c.','IR-4'), (21786,'000822','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 a','IR-4a.','IR-4'), (21787,'000823','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 b','IR-4b.','IR-4'), (21788,'000824','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 c','IR-4c.','IR-4'), (21789,'000825','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (1)','IR-4 (1)','IR-4 (1)'), (21790,'000826','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (2)','IR-4 (2)','IR-4 (2)'), (21791,'000827','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (3)','IR-4 (3)','IR-4 (3)'), (21792,'000828','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (3)','IR-4 (3)','IR-4 (3)'), (21793,'000829','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (4)','IR-4 (4)','IR-4 (4)'), (21794,'000830','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (5)','IR-4 (5)','IR-4 (5)'), (21795,'000831','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (5)','IR-4 (5)','IR-4 (5)'), (21796,'001626','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5 (1)','IR-5 (1)'), (21797,'001627','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5 (1)','IR-5 (1)'), (21798,'000832','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-5','IR-5','IR-5'), (21799,'000833','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5 (1)','IR-5 (1)'), (21800,'001628','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b 2','MA-1b.2.','MA-1'), (21801,'000854','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b 1','MA-1b.1.','MA-1'), (21802,'000855','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 2','MA-1a.2.','MA-1'), (21803,'000856','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 2','MA-1a.2.','MA-1'), (21804,'000857','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b 2','MA-1b.2.','MA-1'), (21805,'000851','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b 1','MA-1b.1.','MA-1'), (21806,'000852','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1','MA-1a.1.','MA-1'), (21807,'000853','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1','MA-1a.1.','MA-1'), (21808,'000859','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 b','MA-2b.','MA-2'), (21809,'000860','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 c','MA-2c.','MA-2'), (21810,'000861','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 d','MA-2d.','MA-2'), (21811,'000862','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 e','MA-2e.','MA-2'), (21812,'001631','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (3) (b)','MA-4 (3)(b)','MA-4 (3)'), (21813,'001632','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (b)','MA-4 (4)(b)','MA-4 (4)'), (21814,'000873','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 a','MA-4a.','MA-4'), (21815,'000874','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 a','MA-4a.','MA-4'), (21816,'000876','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 b','MA-4b.','MA-4'), (21817,'000877','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 c','MA-4c.','MA-4'), (21818,'000878','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 d','MA-4d.','MA-4'), (21819,'000879','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 e','MA-4e.','MA-4'), (21820,'000881','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (2)','MA-4 (2)','MA-4 (2)'), (21821,'000882','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (3) (a)','MA-4 (3)(a)','MA-4 (3)'), (21822,'000883','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (3) (b)','MA-4 (3)(b)','MA-4 (3)'), (21823,'000884','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (a)','MA-4 (4)(a)','MA-4 (4)'), (21824,'000886','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (b)','MA-4 (5)(b)','MA-4 (5)'), (21825,'000887','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (a)','MA-4 (5)(a)','MA-4 (5)'), (21826,'001010','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 a','MP-3a.','MP-3'), (21827,'001011','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 b','MP-3b.','MP-3'), (21828,'001012','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 b','MP-3b.','MP-3'), (21829,'001013','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 b','MP-3b.','MP-3'), (21830,'001635','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 d','PE-2d.','PE-2'), (21831,'000912','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 a','PE-2a.','PE-2'), (21832,'000913','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 b','PE-2b.','PE-2'), (21833,'000914','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 c','PE-2c.','PE-2'), (21834,'000915','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 c','PE-2c.','PE-2'), (21835,'000916','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (1)','PE-2 (1)','PE-2 (1)'), (21836,'000917','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (2)','PE-2 (2)','PE-2 (2)'), (21837,'001636','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 b 1','PL-1b.1.','PL-1'), (21838,'001637','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 b 1','PL-1b.1.','PL-1'), (21839,'001638','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 b 2','PL-1b.2.','PL-1'), (21840,'000563','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1','PL-1a.1.','PL-1'), (21841,'000564','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1','PL-1a.1.','PL-1'), (21842,'000566','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 2','PL-1a.2.','PL-1'), (21843,'000567','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 2','PL-1a.2.','PL-1'), (21844,'000568','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 b 2','PL-1b.2.','PL-1'), (21845,'001639','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a.','PL-4'), (21846,'000592','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a.','PL-4'), (21847,'000593','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 b','PL-4b.','PL-4'), (21848,'000594','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 (1)','PL-4 (1)','PL-4 (1)'), (21849,'000595','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 (1)','PL-4 (1)','PL-4 (1)'), (21850,'001640','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-8','PM-8','PM-8'), (21851,'000216','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-8','PM-8','PM-8'), (21852,'001641','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a.','RA-5'), (21853,'001643','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a.','RA-5'), (21854,'001645','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (5)','RA-5 (5)','RA-5 (5)'), (21855,'001054','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a.','RA-5'), (21856,'001055','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a.','RA-5'), (21857,'001056','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a.','RA-5'), (21858,'001057','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 b','RA-5b.','RA-5'), (21859,'001058','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 c','RA-5c.','RA-5'), (21860,'001059','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 d','RA-5d.','RA-5'), (21861,'001060','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 d','RA-5d.','RA-5'), (21862,'001061','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 e','RA-5e.','RA-5'), (21863,'001062','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (1)','RA-5 (1)','RA-5 (1)'), (21864,'001063','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (2)','RA-5 (2)','RA-5 (2)'), (21865,'001064','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (2)','RA-5 (2)','RA-5 (2)'), (21866,'001066','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (4)','RA-5 (4)','RA-5 (4)'), (21867,'001067','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (5)','RA-5 (5)','RA-5 (5)'), (21868,'001068','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (6)','RA-5 (6)','RA-5 (6)'), (21869,'001071','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (8)','RA-5 (8)','RA-5 (8)'), (21870,'001642','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 b','RA-3b.','RA-3'), (21871,'001048','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 a','RA-3a.','RA-3'), (21872,'001049','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 b','RA-3b.','RA-3'), (21873,'001050','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 c','RA-3c.','RA-3'), (21874,'001051','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 c','RA-3c.','RA-3'), (21875,'001052','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 e','RA-3e.','RA-3'), (21876,'001053','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 e','RA-3e.','RA-3'), (21877,'000610','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 b','SA-2b.','SA-2'), (21878,'000611','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 b','SA-2b.','SA-2'), (21879,'000612','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 b','SA-2b.','SA-2'), (21880,'000613','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 c','SA-2c.','SA-2'), (21881,'000614','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 c','SA-2c.','SA-2'), (21882,'000623','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (1)','SA-4 (1)','SA-4 (1)'), (21883,'000631','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (6) (a)','SA-4 (6)(a)','SA-4 (6)'), (21884,'000633','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (6) (b)','SA-4 (6)(b)','SA-4 (6)'), (21885,'000634','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (7) (a)','SA-4 (7)(a)','SA-4 (7)'), (21886,'000635','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (7) (b)','SA-4 (7)(b)','SA-4 (7)'), (21887,'000642','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 c','SA-5c.','SA-5'), (21888,'000692','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 c','SA-10c.','SA-10'), (21889,'000694','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 d','SA-10d.','SA-10'), (21890,'000698','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (1)','SA-10 (1)','SA-10 (1)'), (21891,'000700','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (2)','SA-10 (2)','SA-10 (2)'), (21892,'001084','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-3','SC-3','SC-3'), (21893,'001085','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (1)','SC-3 (1)','SC-3 (1)'), (21894,'001086','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (2)','SC-3 (2)','SC-3 (2)'), (21895,'001089','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (5)','SC-3 (5)','SC-3 (5)'), (21896,'001097','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 a','SC-7a.','SC-7'), (21897,'001098','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 c','SC-7c.','SC-7'), (21898,'001101','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (3)','SC-7 (3)','SC-7 (3)'), (21899,'001102','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (a)','SC-7 (4)(a)','SC-7 (4)'), (21900,'001103','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (b)','SC-7 (4)(b)','SC-7 (4)'), (21901,'001105','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (d)','SC-7 (4)(d)','SC-7 (4)'), (21902,'001106','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (e)','SC-7 (4)(e)','SC-7 (4)'), (21903,'001107','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (e)','SC-7 (4)(e)','SC-7 (4)'), (21904,'001108','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (e)','SC-7 (4)(e)','SC-7 (4)'), (21905,'001109','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (5)','SC-7 (5)','SC-7 (5)'), (21906,'001112','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (8)','SC-7 (8)','SC-7 (8)'), (21907,'001113','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (8)','SC-7 (8)','SC-7 (8)'), (21908,'001114','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (8)','SC-7 (8)','SC-7 (8)'), (21909,'001116','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (10)','SC-7 (10)','SC-7 (10)'), (21910,'001119','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (13)','SC-7 (13)','SC-7 (13)'), (21911,'001120','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (13)','SC-7 (13)','SC-7 (13)'), (21912,'001121','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (14)','SC-7 (14)','SC-7 (14)'), (21913,'001122','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (14)','SC-7 (14)','SC-7 (14)'), (21914,'001123','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (15)','SC-7 (15)','SC-7 (15)'), (21915,'001124','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (16)','SC-7 (16)','SC-7 (16)'), (21916,'001125','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (17)','SC-7 (17)','SC-7 (17)'), (21917,'001126','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (18)','SC-7 (18)','SC-7 (18)'), (21918,'001661','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-11','SC-11','SC-11'), (21919,'001135','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-11','SC-11','SC-11'), (21920,'001662','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18 (1)','SC-18 (1)'), (21921,'001162','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 b','SC-18b.','SC-18'), (21922,'001163','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 c','SC-18c.','SC-18'), (21923,'001164','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 c','SC-18c.','SC-18'), (21924,'001165','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 c','SC-18c.','SC-18'), (21925,'001166','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18 (1)','SC-18 (1)'), (21926,'001167','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18 (2)','SC-18 (2)'), (21927,'001168','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18 (2)','SC-18 (2)'), (21928,'001169','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (3)','SC-18 (3)','SC-18 (3)'), (21929,'001170','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18 (4)','SC-18 (4)'), (21930,'001171','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18 (4)','SC-18 (4)'), (21931,'001172','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18 (4)','SC-18 (4)'), (21932,'001160','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 a','SC-18a.','SC-18'), (21933,'001161','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 b','SC-18b.','SC-18'), (21934,'001687','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18 (2)','SC-18 (2)'), (21935,'001688','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18 (2)','SC-18 (2)'), (21936,'001695','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (3)','SC-18 (3)','SC-18 (3)'), (21937,'001663','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 b','SC-20b.','SC-20'), (21938,'001178','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 a','SC-20a.','SC-20'), (21939,'001179','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 b','SC-20b.','SC-20'), (21940,'001664','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (3)','SC-23 (3)','SC-23 (3)'), (21941,'001184','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23','SC-23','SC-23'), (21942,'001185','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (1)','SC-23 (1)','SC-23 (1)'), (21943,'001188','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (3)','SC-23 (3)','SC-23 (3)'), (21944,'001189','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (3)','SC-23 (3)','SC-23 (3)'), (21945,'001665','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), (21946,'001190','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), (21947,'001191','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), (21948,'001192','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), (21949,'001193','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), (21950,'001199','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28','SC-28','SC-28'), (21951,'001225','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 a','SI-2a.','SI-2'), (21952,'001226','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 a','SI-2a.','SI-2'), (21953,'001227','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 a','SI-2a.','SI-2'), (21954,'001228','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b.','SI-2'), (21955,'001229','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b.','SI-2'), (21956,'001230','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 d','SI-2d.','SI-2'), (21957,'001231','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (1)','SI-2 (1)','SI-2 (1)'), (21958,'001233','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2 (2)','SI-2 (2)'), (21959,'001234','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2 (2)','SI-2 (2)'), (21960,'001235','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (3) (a)','SI-2 (3)(a)','SI-2 (3)'), (21961,'001236','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (3) (b)','SI-2 (3)(b)','SI-2 (3)'), (21962,'001669','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (a)','SI-3 (6)(a)','SI-3 (6)'), (21963,'001240','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 b','SI-3b.','SI-3'), (21964,'001241','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c.1.','SI-3'), (21965,'001242','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c.1.','SI-3'), (21966,'001243','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 2','SI-3c.2.','SI-3'), (21967,'001244','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 2','SI-3c.2.','SI-3'), (21968,'001245','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 d','SI-3d.','SI-3'), (21969,'001246','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (1)','SI-3 (1)','SI-3 (1)'), (21970,'001247','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (2)','SI-3 (2)','SI-3 (2)'), (21971,'001249','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (4)','SI-3 (4)','SI-3 (4)'), (21972,'001251','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (a)','SI-3 (6)(a)','SI-3 (6)'), (21973,'001670','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7)','SI-4 (7)','SI-4 (7)'), (21974,'001671','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (11)','SI-4 (11)','SI-4 (11)'), (21975,'001673','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (14)','SI-4 (14)','SI-4 (14)'), (21976,'001253','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 1','SI-4a.1.','SI-4'), (21977,'001255','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 c','SI-4c.','SI-4'), (21978,'001256','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 c','SI-4c.','SI-4'), (21979,'001257','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 e','SI-4e.','SI-4'), (21980,'001258','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 f','SI-4f.','SI-4'), (21981,'001260','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (2)','SI-4 (2)','SI-4 (2)'), (21982,'001264','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (5)','SI-4 (5)','SI-4 (5)'), (21983,'001266','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7)','SI-4 (7)','SI-4 (7)'), (21984,'001267','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7)','SI-4 (7)','SI-4 (7)'), (21985,'001268','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7)','SI-4 (7)','SI-4 (7)'), (21986,'001270','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (9)','SI-4 (9)','SI-4 (9)'), (21987,'001271','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (9)','SI-4 (9)','SI-4 (9)'), (21988,'001273','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (11)','SI-4 (11)','SI-4 (11)'), (21989,'001274','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (12)','SI-4 (12)','SI-4 (12)'), (21990,'001275','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (12)','SI-4 (12)','SI-4 (12)'), (21991,'001276','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (13) (a)','SI-4 (13)(a)','SI-4 (13)'), (21992,'001277','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (13) (b)','SI-4 (13)(b)','SI-4 (13)'), (21993,'001282','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (15)','SI-4 (15)','SI-4 (15)'), (21994,'001283','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (16)','SI-4 (16)','SI-4 (16)'), (21995,'001284','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (17)','SI-4 (17)','SI-4 (17)'), (21996,'001675','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (3)','SI-6 (3)','SI-6 (3)'), (21997,'001294','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 c','SI-6c.','SI-6'), (21998,'001295','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (2)','SI-6 (2)','SI-6 (2)'), (21999,'001296','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (3)','SI-6 (3)','SI-6 (3)'), (22000,'001306','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 b','SI-8b.','SI-8'), (22001,'001307','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 (1)','SI-8 (1)','SI-8 (1)'), (22002,'001308','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 (2)','SI-8 (2)','SI-8 (2)'), (22003,'001678','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-12','SI-12','SI-12'), (22004,'001315','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-12','SI-12','SI-12'), (22005,'001318','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 b','SI-13b.','SI-13'), (22006,'001319','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (1)','SI-13 (1)','SI-13 (1)'), (22007,'001320','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (1)','SI-13 (1)','SI-13 (1)'), (22008,'001321','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (16)','SI-7 (16)','SI-7 (16)'), (22009,'001322','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (16)','SI-7 (16)','SI-7 (16)'), (22010,'001323','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (3)','SI-13 (3)','SI-13 (3)'), (22011,'001324','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (3)','SI-13 (3)','SI-13 (3)'), (22012,'001325','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (3)','SI-13 (3)','SI-13 (3)'), (22013,'001326','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (a)','SI-13 (4)(a)','SI-13 (4)'), (22014,'001327','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (a)','SI-13 (4)(a)','SI-13 (4)'), (22015,'001328','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (b)','SI-13 (4)(b)','SI-13 (4)'), (22016,'001329','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (b)','SI-13 (4)(b)','SI-13 (4)'), (22017,'001680','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 2','PM-1a.2.','PM-1'), (22018,'000073','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 1','PM-1a.1.','PM-1'), (22019,'000074','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 4','PM-1a.4.','PM-1'), (22020,'000075','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 b','PM-1b.','PM-1'), (22021,'000076','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 b','PM-1b.','PM-1'), (22022,'000077','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 c','PM-1c.','PM-1'), (22023,'000021','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (2)','AC-3 (2)','AC-3 (2)'), (22024,'000024','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (5)','AC-3 (5)','AC-3 (5)'), (22025,'000213','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3','AC-3','AC-3'), (22026,'001408','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (2)','AC-3 (2)','AC-3 (2)'), (22027,'001411','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (5)','AC-3 (5)','AC-3 (5)'), (22028,'000036','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 a','AC-5a.','AC-5'), (22029,'001380','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 b','AC-5b.','AC-5'), (22030,'000043','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7','AC-7','AC-7'), (22031,'000044','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 a','AC-7a.','AC-7'), (22032,'001423','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7','AC-7','AC-7'), (22033,'000048','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a','AC-8a.','AC-8'), (22034,'000050','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 b','AC-8b.','AC-8'), (22035,'001384','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 1','AC-8c.1.','AC-8'), (22036,'001385','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 2','AC-8c.2.','AC-8'), (22037,'001386','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 2','AC-8c.2.','AC-8'), (22038,'001387','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 2','AC-8c.2.','AC-8'), (22039,'001388','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 3','AC-8c.3.','AC-8'), (22040,'000052','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9','AC-9','AC-9'), (22041,'000053','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (1)','AC-9 (1)','AC-9 (1)'), (22042,'001389','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9 (2)','AC-9 (2)'), (22043,'001390','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9 (2)','AC-9 (2)'), (22044,'001391','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9 (2)','AC-9 (2)'), (22045,'001392','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9 (2)','AC-9 (2)'), (22046,'001393','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (3)','AC-9 (3)','AC-9 (3)'), (22047,'001394','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (3)','AC-9 (3)','AC-9 (3)'), (22048,'001395','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (3)','AC-9 (3)','AC-9 (3)'), (22049,'000054','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), (22050,'000055','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), (22051,'000056','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 b','AC-11b.','AC-11'), (22052,'000057','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 a','AC-11a.','AC-11'), (22053,'000058','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 a','AC-11a.','AC-11'), (22054,'000059','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 a','AC-11a.','AC-11'), (22055,'000060','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 (1)','AC-11 (1)','AC-11 (1)'), (22056,'000061','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-14 a','AC-14a.','AC-14'), (22057,'000232','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-14 b','AC-14b.','AC-14'), (22058,'000264','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 a','CA-5a.','CA-5'), (22059,'000265','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 b','CA-5b.','CA-5'), (22060,'000266','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 b','CA-5b.','CA-5'), (22061,'000267','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5 (1)','CA-5 (1)'), (22062,'000268','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5 (1)','CA-5 (1)'), (22063,'000269','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5 (1)','CA-5 (1)'), (22064,'000270','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 a','CA-6a.','CA-6'), (22065,'000271','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 b','CA-6b.','CA-6'), (22066,'000272','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 c','CA-6c.','CA-6'), (22067,'000273','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 c','CA-6c.','CA-6'), (22068,'000082','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a.','AC-19'), (22069,'000083','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a.','AC-19'), (22070,'000084','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 b','AC-19b.','AC-19'), (22071,'001458','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (4)','AC-19 (4)(b)(4)','AC-19 (4)'), (22072,'001330','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (a)','AC-19 (4)(a)','AC-19 (4)'), (22073,'001331','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (1)','AC-19 (4)(b)(1)','AC-19 (4)'), (22074,'001332','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (2)','AC-19 (4)(b)(2)','AC-19 (4)'), (22075,'001333','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (3)','AC-19 (4)(b)(3)','AC-19 (4)'), (22076,'001334','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (4)','AC-19 (4)(b)(4)','AC-19 (4)'), (22077,'001335','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (4)','AC-19 (4)(b)(4)','AC-19 (4)'), (22078,'000093','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a','AC-20a.','AC-20'), (22079,'000097','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (2)','AC-20 (2)','AC-20 (2)'), (22080,'000098','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 a','AC-21a.','AC-21'), (22081,'000099','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 (1)','AC-21 (1)','AC-21 (1)'), (22082,'001470','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 a','AC-21a.','AC-21'), (22083,'001471','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 b','AC-21b.','AC-21'), (22084,'001472','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 b','AC-21b.','AC-21'), (22085,'000106','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 a','AT-2a.','AT-2'), (22086,'000107','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (1)','AT-2 (1)','AT-2 (1)'), (22087,'000112','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 b','AT-2b.','AT-2'), (22088,'001479','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 c','AT-2c.','AT-2'), (22089,'001480','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-2','AT-2','AT-2'), (22090,'000113','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 a','AT-4a.','AT-4'), (22091,'000114','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 a','AT-4a.','AT-4'), (22092,'001336','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 b','AT-4b.','AT-4'), (22093,'001337','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 b','AT-4b.','AT-4'), (22094,'000130','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3','AU-3','AU-3'), (22095,'000131','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3','AU-3','AU-3'), (22096,'000132','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3','AU-3','AU-3'), (22097,'000133','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3','AU-3','AU-3'), (22098,'000134','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3','AU-3','AU-3'), (22099,'000135','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (1)','AU-3 (1)','AU-3 (1)'), (22100,'001487','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3','AU-3','AU-3'), (22101,'001488','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (1)','AU-3 (1)','AU-3 (1)'), (22102,'000148','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a.','AU-6'), (22103,'000149','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 b','AU-6b.','AU-6'), (22104,'000151','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a.','AU-6'), (22105,'000153','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (3)','AU-6 (3)','AU-6 (3)'), (22106,'000154','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (4)','AU-6 (4)','AU-6 (4)'), (22107,'001491','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (6)','AU-6 (6)','AU-6 (6)'), (22108,'000158','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (1)','AU-7 (1)','AU-7 (1)'), (22109,'000159','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 a','AU-8a.','AU-8'), (22110,'000161','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 (1) (a)','AU-8 (1)(a)','AU-8 (1)'), (22111,'001492','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 (1) (a)','AU-8 (1)(a)','AU-8 (1)'), (22112,'000166','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10','AU-10','AU-10'), (22113,'001340','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (3)','AU-10 (3)','AU-10 (3)'), (22114,'001341','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (a)','AU-10 (4)(a)','AU-10 (4)'), (22115,'000167','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-11','AU-11','AU-11'), (22116,'000168','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-11','AU-11','AU-11'), (22117,'000206','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-6','IA-6','IA-6'), (22118,'000209','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), (22119,'000210','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), (22120,'000211','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), (22121,'000212','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-7','PM-7','PM-7'), (22122,'000078','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-2','PM-2','PM-2'), (22123,'000080','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 a','PM-3a.','PM-3'), (22124,'000081','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 b','PM-3b.','PM-3'), (22125,'000141','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 c','PM-3c.','PM-3'), (22126,'000142','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a.1.','PM-4'), (22127,'000170','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 2','PM-4a.2.','PM-4'), (22128,'000207','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-5','PM-5','PM-5'), (22129,'000227','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 a','PM-9a.','PM-9'), (22130,'000228','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 b','PM-9b.','PM-9'), (22131,'000229','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 a','PM-10a.','PM-10'), (22132,'000230','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 a','PM-10a.','PM-10'), (22133,'000231','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 a','PM-10a.','PM-10'), (22134,'000233','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 b','PM-10b.','PM-10'), (22135,'000234','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 c','PM-10c.','PM-10'), (22136,'000235','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 a','PM-11a.','PM-11'), (22137,'000236','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 b','PM-11b.','PM-11'), (22138,'001460','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-13','AU-13','AU-13'), (22139,'001461','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-13','AU-13','AU-13'), (22140,'000338','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22141,'000339','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22142,'000340','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22143,'000341','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22144,'000342','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22145,'000343','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22146,'000344','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22147,'000345','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), (22148,'000348','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (2)','CM-5 (2)','CM-5 (2)'), (22149,'000349','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (2)','CM-5 (2)','CM-5 (2)'), (22150,'000350','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (2)','CM-5 (2)','CM-5 (2)'), (22151,'000353','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5 (4)','CM-5 (4)'), (22152,'000354','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5 (4)','CM-5 (4)'), (22153,'001499','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (6)','CM-5 (6)','CM-5 (6)'), (22154,'000389','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 1','CM-8a.1.','CM-8'), (22155,'000390','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 1','CM-8a.1.','CM-8'), (22156,'000392','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 2','CM-8a.2.','CM-8'), (22157,'000393','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 2','CM-8a.2.','CM-8'), (22158,'000395','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 3','CM-8a.3.','CM-8'), (22159,'000396','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 3','CM-8a.3.','CM-8'), (22160,'000398','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 4','CM-8a.4.','CM-8'), (22161,'000399','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 4','CM-8a.4.','CM-8'), (22162,'000400','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 4','CM-8a.4.','CM-8'), (22163,'000408','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (1)','CM-8 (1)','CM-8 (1)'), (22164,'000409','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (1)','CM-8 (1)','CM-8 (1)'), (22165,'000410','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (1)','CM-8 (1)','CM-8 (1)'), (22166,'000411','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8 (2)','CM-8 (2)'), (22167,'000412','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8 (2)','CM-8 (2)'), (22168,'000413','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8 (2)','CM-8 (2)'), (22169,'000414','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8 (2)','CM-8 (2)'), (22170,'000415','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (a)','CM-8 (3)(a)','CM-8 (3)'), (22171,'000416','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (a)','CM-8 (3)(a)','CM-8 (3)'), (22172,'000418','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (4)','CM-8 (4)','CM-8 (4)'), (22173,'000419','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (5)','CM-8 (5)','CM-8 (5)'), (22174,'000420','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (6)','CM-8 (6)','CM-8 (6)'), (22175,'000421','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 a','CM-9a.','CM-9'), (22176,'000422','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 a','CM-9a.','CM-9'), (22177,'000423','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 a','CM-9a.','CM-9'), (22178,'000424','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c.','CM-9'), (22179,'000425','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c.','CM-9'), (22180,'000426','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c.','CM-9'), (22181,'000436','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 (1)','CM-9 (1)','CM-9 (1)'), (22182,'000485','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 c','CP-3c.','CP-3'), (22183,'000486','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a','CP-3a.','CP-3'), (22184,'000487','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 c','CP-3c.','CP-3'), (22185,'000488','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 (1)','CP-3 (1)','CP-3 (1)'), (22186,'000489','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 (2)','CP-3 (2)','CP-3 (2)'), (22187,'000490','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 a','CP-4a.','CP-4'), (22188,'000492','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 a','CP-4a.','CP-4'), (22189,'000494','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 a','CP-4a.','CP-4'), (22190,'000496','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 b','CP-4b.','CP-4'), (22191,'000497','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 c','CP-4c.','CP-4'), (22192,'000498','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (1)','CP-4 (1)','CP-4 (1)'), (22193,'000500','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (2) (a)','CP-4 (2)(a)','CP-4 (2)'), (22194,'000502','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (3)','CP-4 (3)','CP-4 (3)'), (22195,'000504','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (4)4','CP-4 (4)4.','CP-4 (4)'), (22196,'000968','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (3)','PE-13 (3)','PE-13 (3)'), (22197,'000965','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13','PE-13','PE-13'), (22198,'000971','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 a','PE-14a.','PE-14'), (22199,'000972','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 a','PE-14a.','PE-14'), (22200,'000973','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 b','PE-14b.','PE-14'), (22201,'000974','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 b','PE-14b.','PE-14'), (22202,'000975','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 (1)','PE-14 (1)','PE-14 (1)'), (22203,'000976','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 (2)','PE-14 (2)','PE-14 (2)'), (22204,'000977','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-15','PE-15','PE-15'), (22205,'000978','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-15','PE-15','PE-15'), (22206,'000979','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-15','PE-15','PE-15'), (22207,'001182','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-22','SC-22','SC-22'), (22208,'001183','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-22','SC-22','SC-22'), (22209,'001173','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-19 a','SC-19a.','SC-19'), (22210,'001174','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-19 a','SC-19a.','SC-19'), (22211,'001175','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-19 b','SC-19b.','SC-19'), (22212,'001176','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-19 b','SC-19b.','SC-19'), (22213,'001177','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-19 b','SC-19b.','SC-19'), (22214,'000550','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10','CP-10','CP-10'), (22215,'000551','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10','CP-10','CP-10'), (22216,'000552','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10','CP-10','CP-10'), (22217,'000553','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (2)','CP-10 (2)','CP-10 (2)'), (22218,'000556','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (4)','CP-10 (4)','CP-10 (4)'), (22219,'000557','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (4)','CP-10 (4)','CP-10 (4)'), (22220,'000558','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (5)','SI-13 (5)','SI-13 (5)'), (22221,'000559','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (5)','SI-13 (5)','SI-13 (5)'), (22222,'000560','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (6)','CP-10 (6)','CP-10 (6)'), (22223,'000561','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (6)','CP-10 (6)','CP-10 (6)'), (22224,'000562','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (6)','CP-10 (6)','CP-10 (6)'), (22225,'000571','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 9','PL-2a.9.','PL-2'), (22226,'000572','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 c','PL-2c.','PL-2'), (22227,'000573','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 c','PL-2c.','PL-2'), (22228,'000574','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 d','PL-2d.','PL-2'), (22229,'000577','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 b','PL-7b.','PL-7'), (22230,'000578','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 b','PL-7b.','PL-7'), (22231,'001646','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b 2','SA-1b.2.','SA-1'), (22232,'000601','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b 1','SA-1b.1.','SA-1'), (22233,'000602','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1','SA-1a.1.','SA-1'), (22234,'000603','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1','SA-1a.1.','SA-1'), (22235,'000604','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b 1','SA-1b.1.','SA-1'), (22236,'000605','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 2','SA-1a.2.','SA-1'), (22237,'000606','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 2','SA-1a.2.','SA-1'), (22238,'000607','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b 2','SA-1b.2.','SA-1'), (22239,'000615','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a.','SA-3'), (22240,'000616','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 b','SA-3b.','SA-3'), (22241,'000618','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 c','SA-3c.','SA-3'), (22242,'000664','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), (22243,'000665','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), (22244,'000666','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), (22245,'000667','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), (22246,'000668','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), (22247,'000669','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 a','SA-9a.','SA-9'), (22248,'000670','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 a','SA-9a.','SA-9'), (22249,'000671','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 b','SA-9b.','SA-9'), (22250,'000672','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 b','SA-9b.','SA-9'), (22251,'000673','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 b','SA-9b.','SA-9'), (22252,'000674','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 b','SA-9b.','SA-9'), (22253,'000722','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12','SA-12','SA-12'), (22254,'000723','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12','SA-12','SA-12'), (22255,'000756','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1','IA-1a.1.','IA-1'), (22256,'000757','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1','IA-1a.1.','IA-1'), (22257,'000758','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b 1','IA-1b.1.','IA-1'), (22258,'000759','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b 1','IA-1b.1.','IA-1'), (22259,'000760','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 2','IA-1a.2.','IA-1'), (22260,'000761','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 2','IA-1a.2.','IA-1'), (22261,'000762','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b 2','IA-1b.2.','IA-1'), (22262,'000763','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b 2','IA-1b.2.','IA-1'), (22263,'000764','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2','IA-2','IA-2'), (22264,'000765','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (1)','IA-2 (1)','IA-2 (1)'), (22265,'000766','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (2)','IA-2 (2)','IA-2 (2)'), (22266,'000767','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (3)','IA-2 (3)','IA-2 (3)'), (22267,'000768','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (4)','IA-2 (4)','IA-2 (4)'), (22268,'000770','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (5)','IA-2 (5)','IA-2 (5)'), (22269,'000777','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3','IA-3','IA-3'), (22270,'000778','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3','IA-3','IA-3'), (22271,'000783','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (b)','IA-3 (3)(b)','IA-3 (3)'), (22272,'000794','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 e','IA-4e.','IA-4'), (22273,'000795','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 e','IA-4e.','IA-4'), (22274,'000796','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (1)','IA-4 (1)','IA-4 (1)'), (22275,'000799','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (3)','IA-4 (3)','IA-4 (3)'), (22276,'000800','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (4)','IA-4 (4)','IA-4 (4)'), (22277,'000801','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (4)','IA-4 (4)','IA-4 (4)'), (22278,'000803','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-7','IA-7','IA-7'), (22279,'000804','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8','IA-8','IA-8'), (22280,'000805','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1','IR-1a.1.','IR-1'), (22281,'000806','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1','IR-1a.1.','IR-1'), (22282,'000807','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b 1','IR-1b.1.','IR-1'), (22283,'000808','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b 1','IR-1b.1.','IR-1'), (22284,'000809','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 2','IR-1a.2.','IR-1'), (22285,'000810','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 2','IR-1a.2.','IR-1'), (22286,'000811','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b 2','IR-1b.2.','IR-1'), (22287,'000812','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b 2','IR-1b.2.','IR-1'), (22288,'000834','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 a','IR-6a.','IR-6'), (22289,'000835','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 a','IR-6a.','IR-6'), (22290,'000836','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 b','IR-6b.','IR-6'), (22291,'000837','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (1)','IR-6 (1)','IR-6 (1)'), (22292,'000838','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (2)','IR-6 (2)','IR-6 (2)'), (22293,'000839','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-7','IR-7','IR-7'), (22294,'000840','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-7 (1)','IR-7 (1)','IR-7 (1)'), (22295,'000841','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-7 (2) (a)','IR-7 (2)(a)','IR-7 (2)'), (22296,'000842','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-7 (2) (b)','IR-7 (2)(b)','IR-7 (2)'), (22297,'000844','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 8','IR-8a.8.','IR-8'), (22298,'000845','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 b','IR-8b.','IR-8'), (22299,'000846','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 b','IR-8b.','IR-8'), (22300,'000847','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 c','IR-8c.','IR-8'), (22301,'000848','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 c','IR-8c.','IR-8'), (22302,'000849','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 d','IR-8d.','IR-8'), (22303,'000850','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 e','IR-8e.','IR-8'), (22304,'000865','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3','MA-3','MA-3'), (22305,'000866','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3','MA-3','MA-3'), (22306,'000867','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3','MA-3','MA-3'), (22307,'000869','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (1)','MA-3 (1)','MA-3 (1)'), (22308,'000870','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (2)','MA-3 (2)','MA-3 (2)'), (22309,'000871','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3)','MA-3 (3)','MA-3 (3)'), (22310,'000890','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 a','MA-5a.','MA-5'), (22311,'000891','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 a','MA-5a.','MA-5'), (22312,'000893','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (a)','MA-5 (1)(a)','MA-5 (1)'), (22313,'000894','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (a) (1)','MA-5 (1)(a)(1)','MA-5 (1)'), (22314,'000895','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (a) (2)','MA-5 (1)(a)(2)','MA-5 (1)'), (22315,'000897','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (2)','MA-5 (2)','MA-5 (2)'), (22316,'000898','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (3)','MA-5 (3)','MA-5 (3)'), (22317,'000899','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (4) (a)','MA-5 (4)(a)','MA-5 (4)'), (22318,'000900','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (4) (b)','MA-5 (4)(b)','MA-5 (4)'), (22319,'000903','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6','MA-6','MA-6'), (22320,'000904','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1','PE-1a.1.','PE-1'), (22321,'000905','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1','PE-1a.1.','PE-1'), (22322,'000906','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b 1','PE-1b.1.','PE-1'), (22323,'000907','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b 1','PE-1b.1.','PE-1'), (22324,'000908','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 2','PE-1a.2.','PE-1'), (22325,'000909','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 2','PE-1a.2.','PE-1'), (22326,'000910','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b 2','PE-1b.2.','PE-1'), (22327,'000911','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b 2','PE-1b.2.','PE-1'), (22328,'000919','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a','PE-3a.','PE-3'), (22329,'000920','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 1','PE-3a.1.','PE-3'), (22330,'000921','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 2','PE-3a.2.','PE-3'), (22331,'000923','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 e','PE-3e.','PE-3'), (22332,'000924','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 f','PE-3f.','PE-3'), (22333,'000925','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 f','PE-3f.','PE-3'), (22334,'000926','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 g','PE-3g.','PE-3'), (22335,'000927','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 g','PE-3g.','PE-3'), (22336,'000928','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (1)','PE-3 (1)','PE-3 (1)'), (22337,'000929','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (2)','PE-3 (2)','PE-3 (2)'), (22338,'000930','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (3)','PE-3 (3)','PE-3 (3)'), (22339,'000931','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (4)','PE-3 (4)','PE-3 (4)'), (22340,'000932','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (4)','PE-3 (4)','PE-3 (4)'), (22341,'000933','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (5)','PE-3 (5)','PE-3 (5)'), (22342,'000934','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (6)','PE-3 (6)','PE-3 (6)'), (22343,'000935','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (6)','PE-3 (6)','PE-3 (6)'), (22344,'000936','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-4','PE-4','PE-4'), (22345,'000937','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5','PE-5','PE-5'), (22346,'000939','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b.','PE-6'), (22347,'000940','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b.','PE-6'), (22348,'000941','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 c','PE-6c.','PE-6'), (22349,'000942','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (1)','PE-6 (1)','PE-6 (1)'), (22350,'000947','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 a','PE-8a.','PE-8'), (22351,'000948','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 b','PE-8b.','PE-8'), (22352,'000949','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 b','PE-8b.','PE-8'), (22353,'000950','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 (1)','PE-8 (1)','PE-8 (1)'), (22354,'000952','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-9','PE-9','PE-9'), (22355,'000954','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (2)','PE-9 (2)','PE-9 (2)'), (22356,'000955','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (2)','PE-9 (2)','PE-9 (2)'), (22357,'000956','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 a','PE-10a.','PE-10'), (22358,'000957','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 b','PE-10b.','PE-10'), (22359,'000958','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 b','PE-10b.','PE-10'), (22360,'000959','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 c','PE-10c.','PE-10'), (22361,'000961','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (1)','PE-11 (1)','PE-11 (1)'), (22362,'000963','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-12','PE-12','PE-12'), (22363,'000981','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-16','PE-16','PE-16'), (22364,'000982','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-16','PE-16','PE-16'), (22365,'000983','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-16','PE-16','PE-16'), (22366,'000984','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-16','PE-16','PE-16'), (22367,'000985','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 a','PE-17a.','PE-17'), (22368,'000987','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 b','PE-17b.','PE-17'), (22369,'000988','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 c','PE-17c.','PE-17'), (22370,'000989','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-18','PE-18','PE-18'), (22371,'000991','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-18','PE-18','PE-18'), (22372,'000993','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-19','PE-19','PE-19'), (22373,'000994','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-19 (1)','PE-19 (1)','PE-19 (1)'), (22374,'000995','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1','MP-1a.1.','MP-1'), (22375,'000996','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1','MP-1a.1.','MP-1'), (22376,'000997','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b 1','MP-1b.1.','MP-1'), (22377,'000998','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b 1','MP-1b.1.','MP-1'), (22378,'000999','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 2','MP-1a.2.','MP-1'), (22379,'001000','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 2','MP-1a.2.','MP-1'), (22380,'001001','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b 2','MP-1b.2.','MP-1'), (22381,'001002','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b 2','MP-1b.2.','MP-1'), (22382,'001003','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-2','MP-2','MP-2'), (22383,'001004','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-2','MP-2','MP-2'), (22384,'001005','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-2','MP-2','MP-2'), (22385,'001007','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 (2)','MP-4 (2)','MP-4 (2)'), (22386,'001008','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 (2)','MP-4 (2)','MP-4 (2)'), (22387,'001014','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a.','MP-4'), (22388,'001015','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a.','MP-4'), (22389,'001016','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a.','MP-4'), (22390,'001018','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 b','MP-4b.','MP-4'), (22391,'001020','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a.','MP-5'), (22392,'001021','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a.','MP-5'), (22393,'001022','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a.','MP-5'), (22394,'001023','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 b','MP-5b.','MP-5'), (22395,'001024','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 d','MP-5d.','MP-5'), (22396,'001025','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 c','MP-5c.','MP-5'), (22397,'001026','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 (3)','MP-5 (3)','MP-5 (3)'), (22398,'001027','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 (4)','MP-5 (4)','MP-5 (4)'), (22399,'001028','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 a','MP-6a.','MP-6'), (22400,'001030','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (2)','MP-6 (2)','MP-6 (2)'), (22401,'001031','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (2)','MP-6 (2)','MP-6 (2)'), (22402,'001032','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (3)','MP-6 (3)','MP-6 (3)'), (22403,'001033','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (3)','MP-6 (3)','MP-6 (3)'), (22404,'001037','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1','RA-1a.1.','RA-1'), (22405,'001038','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1','RA-1a.1.','RA-1'), (22406,'001039','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b 1','RA-1b.1.','RA-1'), (22407,'001040','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b 1','RA-1b.1.','RA-1'), (22408,'001041','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 2','RA-1a.2.','RA-1'), (22409,'001042','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 2','RA-1a.2.','RA-1'), (22410,'001043','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b 2','RA-1b.2.','RA-1'), (22411,'001044','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b 2','RA-1b.2.','RA-1'), (22412,'001045','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 a','RA-2a.','RA-2'), (22413,'001046','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 b','RA-2b.','RA-2'), (22414,'001047','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 c','RA-2c.','RA-2'), (22415,'001074','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1','SC-1a.1.','SC-1'), (22416,'001075','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1','SC-1a.1.','SC-1'), (22417,'001076','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b 1','SC-1b.1.','SC-1'), (22418,'001077','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b 1','SC-1b.1.','SC-1'), (22419,'001078','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a.2.','SC-1'), (22420,'001079','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a.2.','SC-1'), (22421,'001080','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b 2','SC-1b.2.','SC-1'), (22422,'001081','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b 2','SC-1b.2.','SC-1'), (22423,'001082','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-2','SC-2','SC-2'), (22424,'001083','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-2 (1)','SC-2 (1)','SC-2 (1)'), (22425,'001090','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-4','SC-4','SC-4'), (22426,'001093','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5','SC-5','SC-5'), (22427,'001094','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (1)','SC-5 (1)','SC-5 (1)'), (22428,'001095','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (2)','SC-5 (2)','SC-5 (2)'), (22429,'001133','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-10','SC-10','SC-10'), (22430,'001134','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-10','SC-10','SC-10'), (22431,'001139','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (1)','SC-12 (1)','SC-12 (1)'), (22432,'001150','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 a','SC-15a.','SC-15'), (22433,'001151','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 a','SC-15a.','SC-15'), (22434,'001152','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 b','SC-15b.','SC-15'), (22435,'001153','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (1)','SC-15 (1)','SC-15 (1)'), (22436,'001155','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (3)','SC-15 (3)','SC-15 (3)'), (22437,'001156','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (3)','SC-15 (3)','SC-15 (3)'), (22438,'001157','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), (22439,'001158','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (1)','SC-16 (1)','SC-16 (1)'), (22440,'001159','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-17','SC-17','SC-17'), (22441,'001194','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-25','SC-25','SC-25'), (22442,'001195','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-26','SC-26','SC-26'), (22443,'001196','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-35','SC-35','SC-35'), (22444,'001197','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-27','SC-27','SC-27'), (22445,'001198','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-27','SC-27','SC-27'), (22446,'001201','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-29','SC-29','SC-29'), (22447,'001203','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-29 (1)','SC-29 (1)','SC-29 (1)'), (22448,'001204','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-29 (1)','SC-29 (1)','SC-29 (1)'), (22449,'001207','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (1)','SC-31 (1)','SC-31 (1)'), (22450,'001210','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 a','SC-34a.','SC-34'), (22451,'001211','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 b','SC-34b.','SC-34'), (22452,'001212','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34','SC-34','SC-34'), (22453,'001213','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 b','SC-34b.','SC-34'), (22454,'001214','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (1)','SC-34 (1)','SC-34 (1)'), (22455,'001215','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (1)','SC-34 (1)','SC-34 (1)'), (22456,'001216','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (2)','SC-34 (2)','SC-34 (2)'), (22457,'001217','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 1','SI-1a.1.','SI-1'), (22458,'001218','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 1','SI-1a.1.','SI-1'), (22459,'001219','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b 1','SI-1b.1.','SI-1'), (22460,'001220','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 2','SI-1a.2.','SI-1'), (22461,'001221','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 2','SI-1a.2.','SI-1'), (22462,'001222','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b 2','SI-1b.2.','SI-1'), (22463,'001223','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b 1','SI-1b.1.','SI-1'), (22464,'001224','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b 2','SI-1b.2.','SI-1'), (22465,'001285','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 a','SI-5a.','SI-5'), (22466,'001286','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 b','SI-5b.','SI-5'), (22467,'001287','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c.','SI-5'), (22468,'001288','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c.','SI-5'), (22469,'001289','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 d','SI-5d.','SI-5'), (22470,'001290','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 (1)','SI-5 (1)','SI-5 (1)'), (22471,'001300','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (2)','SI-7 (2)','SI-7 (2)'), (22472,'001301','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (3)','SI-7 (3)','SI-7 (3)'), (22473,'001310','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10','SI-10','SI-10'), (22474,'001312','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-11 a','SI-11a.','SI-11'), (22475,'001314','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-11 b','SI-11b.','SI-11'), (22476,'001462','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 (2)','AU-14 (2)','AU-14 (2)'), (22477,'001464','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 (1)','AU-14 (1)','AU-14 (1)'), (22478,'001473','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 a','AC-22a.','AC-22'), (22479,'001474','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 b','AC-22b.','AC-22'), (22480,'001475','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 c','AC-22c.','AC-22'), (22481,'001476','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 d','AC-22d.','AC-22'), (22482,'001477','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 d','AC-22d.','AC-22'), (22483,'001478','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 d','AC-22d.','AC-22'), (22484,'001504','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1','PS-1a.1.','PS-1'), (22485,'001505','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1','PS-1a.1.','PS-1'), (22486,'001506','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b 2','PS-1b.2.','PS-1'), (22487,'001507','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b 1','PS-1b.1.','PS-1'), (22488,'001508','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b 2','PS-1b.2.','PS-1'), (22489,'001509','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 2','PS-1a.2.','PS-1'), (22490,'001510','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 2','PS-1a.2.','PS-1'), (22491,'001511','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b 2','PS-1b.2.','PS-1'), (22492,'001512','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 a','PS-2a.','PS-2'), (22493,'001513','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 b','PS-2b.','PS-2'), (22494,'001514','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 c','PS-2c.','PS-2'), (22495,'001515','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 c','PS-2c.','PS-2'), (22496,'001516','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 a','PS-3a.','PS-3'), (22497,'001517','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 b','PS-3b.','PS-3'), (22498,'001518','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 b','PS-3b.','PS-3'), (22499,'001519','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 b','PS-3b.','PS-3'), (22500,'001520','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (1)','PS-3 (1)','PS-3 (1)'), (22501,'001521','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (2)','PS-3 (2)','PS-3 (2)'), (22502,'001522','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 a','PS-4a.','PS-4'), (22503,'001523','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 c','PS-4c.','PS-4'), (22504,'001524','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 d','PS-4d.','PS-4'), (22505,'001525','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 e','PS-4e.','PS-4'), (22506,'001526','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 e','PS-4e.','PS-4'), (22507,'001527','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 a','PS-5a.','PS-5'), (22508,'001528','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 b','PS-5b.','PS-5'), (22509,'001529','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 b','PS-5b.','PS-5'), (22510,'001530','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 b','PS-5b.','PS-5'), (22511,'001531','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 1','PS-6c.1.','PS-6'), (22512,'001532','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 b','PS-6b.','PS-6'), (22513,'001533','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 b','PS-6b.','PS-6'), (22514,'001536','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (2) (a)','PS-6 (2)(a)','PS-6 (2)'), (22515,'001537','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (2) (b)','PS-6 (2)(b)','PS-6 (2)'), (22516,'001538','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (2) (c)','PS-6 (2)(c)','PS-6 (2)'), (22517,'001539','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 a','PS-7a.','PS-7'), (22518,'001540','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 c','PS-7c.','PS-7'), (22519,'001541','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 e','PS-7e.','PS-7'), (22520,'001542','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 a','PS-8a.','PS-8'), (22521,'002106','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1','AC-1a.1.','AC-1'), (22522,'002107','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1','AC-1a.1.','AC-1'), (22523,'002108','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1','AC-1a.1.','AC-1'), (22524,'002109','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 2','AC-1a.2.','AC-1'), (22525,'002110','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 a','AC-2a.','AC-2'), (22526,'002111','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 a','AC-2a.','AC-2'), (22527,'002112','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 b','AC-2b.','AC-2'), (22528,'002113','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 c','AC-2c.','AC-2'), (22529,'002114','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d','AC-2d.','AC-2'), (22530,'002115','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d','AC-2d.','AC-2'), (22531,'002116','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d','AC-2d.','AC-2'), (22532,'002117','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d','AC-2d.','AC-2'), (22533,'002118','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d','AC-2d.','AC-2'), (22534,'002119','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d','AC-2d.','AC-2'), (22535,'002120','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 e','AC-2e.','AC-2'), (22536,'002121','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f.','AC-2'), (22537,'002122','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 g','AC-2g.','AC-2'), (22538,'002123','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h 1','AC-2h.1.','AC-2'), (22539,'002124','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h 2','AC-2h.2.','AC-2'), (22540,'002125','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h 3','AC-2h.3.','AC-2'), (22541,'002126','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 1 ','AC-2i.1 .','AC-2'), (22542,'002127','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 2 ','AC-2i.2 .','AC-2'), (22543,'002128','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 3 ','AC-2i.3 .','AC-2'), (22544,'002129','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 k','AC-2k.','AC-2'), (22545,'002130','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (22546,'002131','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (22547,'002132','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2 (4)','AC-2 (4)'), (22548,'002133','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (5)','AC-2 (5)','AC-2 (5)'), (22549,'002134','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (6)','AC-2 (6)','AC-2 (6)'), (22550,'002135','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (6)','AC-2 (6)','AC-2 (6)'), (22551,'002136','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (c)','AC-2 (7)(c)','AC-2 (7)'), (22552,'002137','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (c)','AC-2 (7)(c)','AC-2 (7)'), (22553,'002138','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2 (8)','AC-2 (8)'), (22554,'002139','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2 (8)','AC-2 (8)'), (22555,'002140','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (9)','AC-2 (9)','AC-2 (9)'), (22556,'002141','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (9)','AC-2 (9)','AC-2 (9)'), (22557,'002142','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (10)','AC-2 (10)','AC-2 (10)'), (22558,'002143','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (11)','AC-2 (11)','AC-2 (11)'), (22559,'002144','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (11)','AC-2 (11)','AC-2 (11)'), (22560,'002145','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (11)','AC-2 (11)','AC-2 (11)'), (22561,'002146','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (a)','AC-2 (12)(a)','AC-2 (12)'), (22562,'002147','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (a)','AC-2 (12)(a)','AC-2 (12)'), (22563,'002148','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (b)','AC-2 (12)(b)','AC-2 (12)'), (22564,'002149','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (b)','AC-2 (12)(b)','AC-2 (12)'), (22565,'002150','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (13)','AC-2 (13)','AC-2 (13)'), (22566,'002151','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (13)','AC-2 (13)','AC-2 (13)'), (22567,'002152','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (2)','AC-3 (2)','AC-3 (2)'), (22568,'002153','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3)','AC-3 (3)','AC-3 (3)'), (22569,'002154','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (a)','AC-3 (3)(a)','AC-3 (3)'), (22570,'002155','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (1)','AC-3 (3)(b)(1)','AC-3 (3)'), (22571,'002156','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (2)','AC-3 (3)(b)(2)','AC-3 (3)'), (22572,'002157','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (3)','AC-3 (3)(b)(3)','AC-3 (3)'), (22573,'002158','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (4)','AC-3 (3)(b)(4)','AC-3 (3)'), (22574,'002159','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (4)','AC-3 (3)(b)(4)','AC-3 (3)'), (22575,'002160','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (5)','AC-3 (3)(b)(5)','AC-3 (3)'), (22576,'002161','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (c)','AC-3 (3)(c)','AC-3 (3)'), (22577,'002162','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (c)','AC-3 (3)(c)','AC-3 (3)'), (22578,'002163','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4)','AC-3 (4)','AC-3 (4)'), (22579,'002164','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4) ','AC-3 (4)','AC-3 (4)'), (22580,'002165','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4)','AC-3 (4)','AC-3 (4)'), (22581,'002166','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22582,'002167','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22583,'002168','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22584,'002169','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22585,'002170','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22586,'002171','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22587,'002172','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22588,'002173','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22589,'002174','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22590,'002175','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22591,'002176','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3 (7)','AC-3 (7)'), (22592,'002177','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (8)','AC-3 (8)','AC-3 (8)'), (22593,'002178','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (8)','AC-3 (8)','AC-3 (8)'), (22594,'002179','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (8)','AC-3 (8)','AC-3 (8)'), (22595,'002180','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (a)','AC-3 (9)(a)','AC-3 (9)'), (22596,'002181','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (a)','AC-3 (9)(a)','AC-3 (9)'), (22597,'002182','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (a)','AC-3 (9)(a)','AC-3 (9)'), (22598,'002183','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (b)','AC-3 (9)(b)','AC-3 (9)'), (22599,'002184','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (b)','AC-3 (9)(b)','AC-3 (9)'), (22600,'002185','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (10)','AC-3 (10)','AC-3 (10)'), (22601,'002186','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (10)','AC-3 (10)','AC-3 (10)'), (22602,'003014','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3)','AC-3 (3)','AC-3 (3)'), (22603,'003015','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (c)','AC-3 (3)(c)','AC-3 (3)'), (22604,'002187','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4 (1)','AC-4 (1)'), (22605,'002188','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4 (1)','AC-4 (1)'), (22606,'002189','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4 (1)','AC-4 (1)'), (22607,'002190','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4 (1)','AC-4 (1)'), (22608,'002191','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (2)','AC-4 (2)','AC-4 (2)'), (22609,'002192','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (3)','AC-4 (3)','AC-4 (3)'), (22610,'002193','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (4)','AC-4 (4)','AC-4 (4)'), (22611,'002194','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (6)','AC-4 (6)','AC-4 (6)'), (22612,'002195','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8)','AC-4 (8)','AC-4 (8)'), (22613,'002196','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (9)','AC-4 (9)','AC-4 (9)'), (22614,'002197','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (9)','AC-4 (9)','AC-4 (9)'), (22615,'002198','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (9)','AC-4 (9)','AC-4 (9)'), (22616,'002199','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (10)','AC-4 (10)','AC-4 (10)'), (22617,'002200','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (12)','AC-4 (12)','AC-4 (12)'), (22618,'002201','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (12)','AC-4 (12)','AC-4 (12)'), (22619,'002202','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (13)','AC-4 (13)','AC-4 (13)'), (22620,'002203','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4 (15)','AC-4 (15)'), (22621,'002204','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4 (15)','AC-4 (15)'), (22622,'002205','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (17)','AC-4 (17)','AC-4 (17)'), (22623,'002206','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (17)','AC-4 (17)','AC-4 (17)'), (22624,'002207','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (17)','AC-4 (17)','AC-4 (17)'), (22625,'002208','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (17)','AC-4 (17)','AC-4 (17)'), (22626,'002209','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (18)','AC-4 (18)','AC-4 (18)'), (22627,'002210','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (18)','AC-4 (18)','AC-4 (18)'), (22628,'002211','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (19)','AC-4 (19)','AC-4 (19)'), (22629,'002212','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (20)','AC-4 (20)','AC-4 (20)'), (22630,'002213','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (20)','AC-4 (20)','AC-4 (20)'), (22631,'002214','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (20)','AC-4 (20)','AC-4 (20)'), (22632,'002215','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (21)','AC-4 (21)','AC-4 (21)'), (22633,'002216','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (21)','AC-4 (21)','AC-4 (21)'), (22634,'002217','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (21)','AC-4 (21)','AC-4 (21)'), (22635,'002218','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (22)','AC-4 (22)','AC-4 (22)'), (22636,'002219','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 a','AC-5a.','AC-5'), (22637,'002220','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 c','AC-5c.','AC-5'), (22638,'002221','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1)','AC-6 (1)','AC-6 (1)'), (22639,'002222','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1)','AC-6 (1)','AC-6 (1)'), (22640,'002223','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1)','AC-6 (1)','AC-6 (1)'), (22641,'002224','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6 (3)','AC-6 (3)'), (22642,'002225','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (4)','AC-6 (4)','AC-6 (4)'), (22643,'002226','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (5)','AC-6 (5)','AC-6 (5)'), (22644,'002227','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (5)','AC-6 (5)','AC-6 (5)'), (22645,'002228','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (a)','AC-6 (7)(a)','AC-6 (7)'), (22646,'002229','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (a)','AC-6 (7)(a)','AC-6 (7)'), (22647,'002230','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (a)','AC-6 (7)(a)','AC-6 (7)'), (22648,'002231','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (b)','AC-6 (7)(b)','AC-6 (7)'), (22649,'002232','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (8)','AC-6 (8)','AC-6 (8)'), (22650,'002233','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (8)','AC-6 (8)','AC-6 (8)'), (22651,'002234','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (9)','AC-6 (9)','AC-6 (9)'), (22652,'002235','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (10)','AC-6 (10)','AC-6 (10)'), (22653,'002236','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 b','AC-7b.','AC-7'), (22654,'002237','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 b','AC-7b.','AC-7'), (22655,'002238','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 b','AC-7b.','AC-7'), (22656,'002239','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7 (2)','AC-7 (2)'), (22657,'002240','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7 (2)','AC-7 (2)'), (22658,'002241','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7 (2)','AC-7 (2)'), (22659,'002242','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7 (2)','AC-7 (2)'), (22660,'002243','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 1','AC-8a.1.','AC-8'), (22661,'002244','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 2','AC-8a.2.','AC-8'), (22662,'002245','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 3','AC-8a.3.','AC-8'), (22663,'002246','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 4','AC-8a.4.','AC-8'), (22664,'002247','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a','AC-8a.','AC-8'), (22665,'002248','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 1','AC-8c.1.','AC-8'), (22666,'002249','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (4)','AC-9 (4)','AC-9 (4)'), (22667,'002250','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (4)','AC-9 (4)','AC-9 (4)'), (22668,'002251','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (4)','AC-9 (4)','AC-9 (4)'), (22669,'002252','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), (22670,'002253','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), (22671,'002255','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-14 a','AC-14a.','AC-14'), (22672,'002256','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22673,'002257','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22674,'002258','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22675,'002259','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22676,'002260','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22677,'002261','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22678,'002262','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22679,'002263','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22680,'002264','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a.','AC-16'), (22681,'002265','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 b','AC-16b.','AC-16'), (22682,'002266','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 b','AC-16b.','AC-16'), (22683,'002267','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c.','AC-16'), (22684,'002268','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c.','AC-16'), (22685,'002269','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c.','AC-16'), (22686,'002270','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 d','AC-16d.','AC-16'), (22687,'002271','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 d','AC-16d.','AC-16'), (22688,'002272','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16 (1)','AC-16 (1)'), (22689,'002273','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16 (1)','AC-16 (1)'), (22690,'002274','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16 (1)','AC-16 (1)'), (22691,'002275','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16 (1)','AC-16 (1)'), (22692,'002276','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16 (2)','AC-16 (2)'), (22693,'002277','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16 (2)','AC-16 (2)'), (22694,'002278','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22695,'002279','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22696,'002280','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22697,'002281','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22698,'002282','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22699,'002283','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22700,'002284','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16 (3)','AC-16 (3)'), (22701,'002285','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (22702,'002286','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (22703,'002287','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (22704,'002288','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (22705,'002289','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (22706,'002290','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16 (4)','AC-16 (4)'), (22707,'002291','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22708,'002292','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22709,'002293','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22710,'002294','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22711,'002295','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22712,'002296','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22713,'002297','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22714,'002298','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16 (6)','AC-16 (6)'), (22715,'002299','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (7)','AC-16 (7)','AC-16 (7)'), (22716,'002300','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16 (8)','AC-16 (8)'), (22717,'002301','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16 (8)','AC-16 (8)'), (22718,'002302','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16 (8)','AC-16 (8)'), (22719,'002303','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (9)','AC-16 (9)','AC-16 (9)'), (22720,'002304','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (9)','AC-16 (9)','AC-16 (9)'), (22721,'002305','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16 (10)','AC-16 (10)'), (22722,'002306','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16 (10)','AC-16 (10)'), (22723,'002307','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16 (10)','AC-16 (10)'), (22724,'002308','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16 (10)','AC-16 (10)'), (22725,'002309','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16 (10)','AC-16 (10)'), (22726,'002310','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a.','AC-17'), (22727,'002311','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a.','AC-17'), (22728,'002312','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a.','AC-17'), (22729,'002313','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (1)','AC-17 (1)','AC-17 (1)'), (22730,'002314','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (1)','AC-17 (1)','AC-17 (1)'), (22731,'002315','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (3)','AC-17 (3)','AC-17 (3)'), (22732,'002316','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17 (4)(a)','AC-17 (4)'), (22733,'002317','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17 (4)(a)','AC-17 (4)'), (22734,'002318','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17 (4)(a)','AC-17 (4)'), (22735,'002319','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (b)','AC-17 (4)(b)','AC-17 (4)'), (22736,'002320','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (b)','AC-17 (4)(b)','AC-17 (4)'), (22737,'002321','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (9)','AC-17 (9)','AC-17 (9)'), (22738,'002322','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (9)','AC-17 (9)','AC-17 (9)'), (22739,'002323','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 a','AC-18a.','AC-18'), (22740,'002324','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (4)','AC-18 (4)','AC-18 (4)'), (22741,'002325','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a.','AC-19'), (22742,'002326','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a.','AC-19'), (22743,'002327','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (c)','AC-19 (4)(c)','AC-19 (4)'), (22744,'002328','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (c)','AC-19 (4)(c)','AC-19 (4)'), (22745,'002329','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (5)','AC-19 (5)','AC-19 (5)'), (22746,'002330','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (5)','AC-19 (5)','AC-19 (5)'), (22747,'002331','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (5)','AC-19 (5)','AC-19 (5)'), (22748,'002332','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 b','AC-20b.','AC-20'), (22749,'002333','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (a)','AC-20 (1)(a)','AC-20 (1)'), (22750,'002334','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (a)','AC-20 (1)(a)','AC-20 (1)'), (22751,'002335','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (a)','AC-20 (1)(a)','AC-20 (1)'), (22752,'002336','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (a)','AC-20 (1)(a)','AC-20 (1)'), (22753,'002337','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (b)','AC-20 (1)(b)','AC-20 (1)'), (22754,'002338','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (3)','AC-20 (3)','AC-20 (3)'), (22755,'002339','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (4)','AC-20 (4)','AC-20 (4)'), (22756,'002340','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (4)','AC-20 (4)','AC-20 (4)'), (22757,'002341','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 (2)','AC-21 (2)','AC-21 (2)'), (22758,'002342','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 (2)','AC-21 (2)','AC-21 (2)'), (22759,'002343','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), (22760,'002344','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), (22761,'002345','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), (22762,'002346','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), (22763,'002347','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), (22764,'002348','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24','AC-24','AC-24'), (22765,'002349','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24','AC-24','AC-24'), (22766,'002350','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24 (1)','AC-24 (1)'), (22767,'002351','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24 (1)','AC-24 (1)'), (22768,'002352','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24 (1)','AC-24 (1)'), (22769,'002353','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24 (1)','AC-24 (1)'), (22770,'002354','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (2)','AC-24 (2)','AC-24 (2)'), (22771,'002355','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (2)','AC-24 (2)','AC-24 (2)'), (22772,'002356','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), (22773,'002357','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), (22774,'002358','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), (22775,'002359','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), (22776,'002048','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1','AT-1a.1.','AT-1'), (22777,'002049','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 2','AT-1a.2.','AT-1'), (22778,'002055','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (2)','AT-2 (2)','AT-2 (2)'), (22779,'002050','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3 (1)','AT-3 (1)'), (22780,'002051','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3 (2)','AT-3 (2)'), (22781,'002052','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (3)','AT-3 (3)','AT-3 (3)'), (22782,'002053','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (4)','AT-3 (4)','AT-3 (4)'), (22783,'002054','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (4)','AT-3 (4)','AT-3 (4)'), (22784,'001831','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1','AU-1a.1.','AU-1'), (22785,'001832','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1','AU-1a.1.','AU-1'), (22786,'001833','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a.2.','AU-1'), (22787,'001834','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a.2.','AU-1'), (22788,'001835','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 1','AU-1b.1.','AU-1'), (22789,'001836','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 1','AU-1b.1.','AU-1'), (22790,'001837','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 1','AU-1b.1.','AU-1'), (22791,'001838','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 1','AU-1b.1.','AU-1'), (22792,'001839','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 2','AU-1b.2.','AU-1'), (22793,'001840','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 2','AU-1b.2.','AU-1'), (22794,'001841','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 2','AU-1b.2.','AU-1'), (22795,'001842','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b 2','AU-1b.2.','AU-1'), (22796,'001930','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1','AU-1a.1.','AU-1'), (22797,'001931','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a.2.','AU-1'), (22798,'001843','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 (3)','AU-2 (3)','AU-2 (3)'), (22799,'001844','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (2)','AU-3 (2)','AU-3 (2)'), (22800,'001845','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (2)','AU-3 (2)','AU-3 (2)'), (22801,'001846','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (2)','AU-3 (2)','AU-3 (2)'), (22802,'001847','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (2)','AU-3 (2)','AU-3 (2)'), (22803,'001848','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-4','AU-4','AU-4'), (22804,'001849','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-4','AU-4','AU-4'), (22805,'001850','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-4 (1)','AU-4 (1)','AU-4 (1)'), (22806,'001851','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-4 (1)','AU-4 (1)','AU-4 (1)'), (22807,'001852','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5 (1)','AU-5 (1)'), (22808,'001853','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5 (1)','AU-5 (1)'), (22809,'001854','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5 (1)','AU-5 (1)'), (22810,'001855','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5 (1)','AU-5 (1)'), (22811,'001856','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5 (2)','AU-5 (2)'), (22812,'001857','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5 (2)','AU-5 (2)'), (22813,'001858','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5 (2)','AU-5 (2)'), (22814,'001859','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (3)','AU-5 (3)','AU-5 (3)'), (22815,'001860','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (4)','AU-5 (4)','AU-5 (4)'), (22816,'001861','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (4)','AU-5 (4)','AU-5 (4)'), (22817,'002907','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (4)','AU-5 (4)','AU-5 (4)'), (22818,'001862','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a.','AU-6'), (22819,'001863','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 b','AU-6b.','AU-6'), (22820,'001864','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (1)','AU-6 (1)','AU-6 (1)'), (22821,'001865','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (1)','AU-6 (1)','AU-6 (1)'), (22822,'001866','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (5)','AU-6 (5)','AU-6 (5)'), (22823,'001867','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (5)','AU-6 (5)','AU-6 (5)'), (22824,'001868','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (7)','AU-6 (7)','AU-6 (7)'), (22825,'001869','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (7)','AU-6 (7)','AU-6 (7)'), (22826,'001870','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (8)','AU-6 (8)','AU-6 (8)'), (22827,'001871','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (9)','AU-6 (9)','AU-6 (9)'), (22828,'001872','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (10)','AU-6 (10)','AU-6 (10)'), (22829,'001873','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (10)','AU-6 (10)','AU-6 (10)'), (22830,'001874','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (10)','AU-6 (10)','AU-6 (10)'), (22831,'001875','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a.','AU-7'), (22832,'001876','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a.','AU-7'), (22833,'001877','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a.','AU-7'), (22834,'001878','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a.','AU-7'), (22835,'001879','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a.','AU-7'), (22836,'001880','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a.','AU-7'), (22837,'001881','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 b','AU-7b.','AU-7'), (22838,'001882','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 b','AU-7b.','AU-7'), (22839,'001883','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (1)','AU-7 (1)','AU-7 (1)'), (22840,'001884','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (2)','AU-7 (2)','AU-7 (2)'), (22841,'001885','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (2)','AU-7 (2)','AU-7 (2)'), (22842,'001886','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (2)','AU-7 (2)','AU-7 (2)'), (22843,'001887','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (2)','AU-7 (2)','AU-7 (2)'), (22844,'001888','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 b','AU-8b.','AU-8'), (22845,'001889','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 b','AU-8b.','AU-8'), (22846,'001890','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 b','AU-8b.','AU-8'), (22847,'001891','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 (1) (a)','AU-8 (1)(a)','AU-8 (1)'), (22848,'001892','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 (1) (b)','AU-8 (1)(b)','AU-8 (1)'), (22849,'001893','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 (2)','AU-8 (2)','AU-8 (2)'), (22850,'002046','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 (1) (b)','AU-8 (1)(b)','AU-8 (1)'), (22851,'001894','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (4)','AU-9 (4)','AU-9 (4)'), (22852,'001895','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (5)','AU-9 (5)','AU-9 (5)'), (22853,'001896','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (5)','AU-9 (5)','AU-9 (5)'), (22854,'001897','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (6)','AU-9 (6)','AU-9 (6)'), (22855,'001898','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (6)','AU-9 (6)','AU-9 (6)'), (22856,'001899','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10','AU-10','AU-10'), (22857,'001900','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (1) (a)','AU-10 (1)(a)','AU-10 (1)'), (22858,'001901','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (1) (a)','AU-10 (1)(a)','AU-10 (1)'), (22859,'001902','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (1) (b)','AU-10 (1)(b)','AU-10 (1)'), (22860,'001903','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (a)','AU-10 (2)(a)','AU-10 (2)'), (22861,'001904','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (a)','AU-10 (2)(a)','AU-10 (2)'), (22862,'001905','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (b)','AU-10 (2)(b)','AU-10 (2)'), (22863,'001906','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (b)','AU-10 (2)(b)','AU-10 (2)'), (22864,'001907','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (a)','AU-10 (4)(a)','AU-10 (4)'), (22865,'001908','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (b)','AU-10 (4)(b)','AU-10 (4)'), (22866,'001909','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (b)','AU-10 (4)(b)','AU-10 (4)'), (22867,'002044','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-11 (1)','AU-11 (1)','AU-11 (1)'), (22868,'002045','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-11 (1)','AU-11 (1)','AU-11 (1)'), (22869,'001910','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 b','AU-12b.','AU-12'), (22870,'001911','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12 (3)','AU-12 (3)'), (22871,'001912','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12 (3)','AU-12 (3)'), (22872,'001913','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12 (3)','AU-12 (3)'), (22873,'001914','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12 (3)','AU-12 (3)'), (22874,'002047','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12 (3)','AU-12 (3)'), (22875,'001915','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-13','AU-13','AU-13'), (22876,'001916','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (1)','AU-13 (1)','AU-13 (1)'), (22877,'001917','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (2)','AU-13 (2)','AU-13 (2)'), (22878,'001918','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (2)','AU-13 (2)','AU-13 (2)'), (22879,'001919','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-14','AU-14','AU-14'), (22880,'001920','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 (3)','AU-14 (3)','AU-14 (3)'), (22881,'001921','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-15','AU-15','AU-15'), (22882,'001922','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-15','AU-15','AU-15'), (22883,'001923','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16','AU-16','AU-16'), (22884,'001924','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16','AU-16','AU-16'), (22885,'001925','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16','AU-16','AU-16'), (22886,'001926','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (1)','AU-16 (1)','AU-16 (1)'), (22887,'001927','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (2)','AU-16 (2)','AU-16 (2)'), (22888,'001928','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (2)','AU-16 (2)','AU-16 (2)'), (22889,'001929','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (2)','AU-16 (2)','AU-16 (2)'), (22890,'002060','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1','CA-1a.1.','CA-1'), (22891,'002061','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1','CA-1a.1.','CA-1'), (22892,'002062','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a.2.','CA-1'), (22893,'002063','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (1)','CA-2 (1)','CA-2 (1)'), (22894,'002064','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2 (2)','CA-2 (2)'), (22895,'002065','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2 (2)','CA-2 (2)'), (22896,'002066','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2 (3)','CA-2 (3)'), (22897,'002067','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2 (3)','CA-2 (3)'), (22898,'002068','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2 (3)','CA-2 (3)'), (22899,'002069','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2 (3)','CA-2 (3)'), (22900,'002070','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 a 3','CA-2a.3.','CA-2'), (22901,'002071','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 d','CA-2d.','CA-2'), (22902,'002072','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (1)','CA-3 (1)','CA-3 (1)'), (22903,'002073','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (1)','CA-3 (1)','CA-3 (1)'), (22904,'002074','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (2)','CA-3 (2)','CA-3 (2)'), (22905,'002075','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (3)','CA-3 (3)','CA-3 (3)'), (22906,'002076','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (3)','CA-3 (3)','CA-3 (3)'), (22907,'002077','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (3)','CA-3 (3)','CA-3 (3)'), (22908,'002078','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (4)','CA-3 (4)','CA-3 (4)'), (22909,'002079','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (4)','CA-3 (4)','CA-3 (4)'), (22910,'002080','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (5)','CA-3 (5)','CA-3 (5)'), (22911,'002081','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (5)','CA-3 (5)','CA-3 (5)'), (22912,'002082','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (5)','CA-3 (5)','CA-3 (5)'), (22913,'002083','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 c','CA-3c.','CA-3'), (22914,'002084','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 c','CA-3c.','CA-3'), (22915,'002085','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (1)','CA-7 (1)','CA-7 (1)'), (22916,'002086','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (3)','CA-7 (3)','CA-7 (3)'), (22917,'002087','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 a','CA-7a.','CA-7'), (22918,'002088','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 b','CA-7b.','CA-7'), (22919,'002089','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 b','CA-7b.','CA-7'), (22920,'002090','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 d','CA-7d.','CA-7'), (22921,'002091','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 e','CA-7e.','CA-7'), (22922,'002092','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 f','CA-7f.','CA-7'), (22923,'002093','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8','CA-8','CA-8'), (22924,'002094','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8','CA-8','CA-8'), (22925,'002095','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8','CA-8','CA-8'), (22926,'002096','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (1)','CA-8 (1)','CA-8 (1)'), (22927,'002097','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (2)','CA-8 (2)','CA-8 (2)'), (22928,'002098','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (2)','CA-8 (2)','CA-8 (2)'), (22929,'002099','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (2)','CA-8 (2)','CA-8 (2)'), (22930,'002100','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (1)','CA-9 (1)','CA-9 (1)'), (22931,'002101','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (a)','CA-9(a)','CA-9'), (22932,'002102','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (a)','CA-9(a)','CA-9'), (22933,'002103','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), (22934,'002104','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), (22935,'002105','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), (22936,'001820','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1','CM-1a.1.','CM-1'), (22937,'001821','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1','CM-1a.1.','CM-1'), (22938,'001822','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1','CM-1a.1.','CM-1'), (22939,'001823','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a.2.','CM-1'), (22940,'001824','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a.2.','CM-1'), (22941,'001825','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a.2.','CM-1'), (22942,'001736','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (3)','CM-2 (3)','CM-2 (3)'), (22943,'001737','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (a)','CM-2 (7)(a)','CM-2 (7)'), (22944,'001738','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (a)','CM-2 (7)(a)','CM-2 (7)'), (22945,'001739','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (a)','CM-2 (7)(a)','CM-2 (7)'), (22946,'001815','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (b)','CM-2 (7)(b)','CM-2 (7)'), (22947,'001816','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (b)','CM-2 (7)(b)','CM-2 (7)'), (22948,'001740','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 b','CM-3b.','CM-3'), (22949,'001741','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 c','CM-3c.','CM-3'), (22950,'001742','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (b)','CM-3 (1)(b)','CM-3 (1)'), (22951,'001743','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (5)','CM-3 (5)','CM-3 (5)'), (22952,'001744','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (5)','CM-3 (5)','CM-3 (5)'), (22953,'001745','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (6)','CM-3 (6)','CM-3 (6)'), (22954,'001746','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (6)','CM-3 (6)','CM-3 (6)'), (22955,'001819','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 d','CM-3d.','CM-3'), (22956,'002056','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 e','CM-3e.','CM-3'), (22957,'002057','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (f)','CM-3 (1)(f)','CM-3 (1)'), (22958,'002058','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (f)','CM-3 (1)(f)','CM-3 (1)'), (22959,'001817','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (1)','CM-4 (1)','CM-4 (1)'), (22960,'001818','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (1)','CM-4 (1)','CM-4 (1)'), (22961,'001747','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (3)','CM-5 (3)','CM-5 (3)'), (22962,'001748','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (3)','CM-5 (3)','CM-5 (3)'), (22963,'001749','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (3)','CM-5 (3)','CM-5 (3)'), (22964,'001750','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (3)','CM-5 (3)','CM-5 (3)'), (22965,'001751','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5 (4)','CM-5 (4)'), (22966,'001752','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5 (4)','CM-5 (4)'), (22967,'001753','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (a)','CM-5 (5)(a)','CM-5 (5)'), (22968,'001754','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (a)','CM-5 (5)(a)','CM-5 (5)'), (22969,'001813','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (1)','CM-5 (1)','CM-5 (1)'), (22970,'001814','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (1)','CM-5 (1)','CM-5 (1)'), (22971,'001826','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (2)','CM-5 (2)','CM-5 (2)'), (22972,'001827','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (b)','CM-5 (5)(b)','CM-5 (5)'), (22973,'001828','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (b)','CM-5 (5)(b)','CM-5 (5)'), (22974,'001829','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (b)','CM-5 (5)(b)','CM-5 (5)'), (22975,'001830','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (b)','CM-5 (5)(b)','CM-5 (5)'), (22976,'001755','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c.','CM-6'), (22977,'001756','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c.','CM-6'), (22978,'001757','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (2)','CM-6 (2)','CM-6 (2)'), (22979,'001758','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (2)','CM-6 (2)','CM-6 (2)'), (22980,'001759','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (2)','CM-6 (2)','CM-6 (2)'), (22981,'002059','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6 (1)','CM-6 (1)'), (22982,'001760','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (a)','CM-7 (1)(a)','CM-7 (1)'), (22983,'001761','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (b)','CM-7 (1)(b)','CM-7 (1)'), (22984,'001762','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (b)','CM-7 (1)(b)','CM-7 (1)'), (22985,'001763','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (2)','CM-7 (2)','CM-7 (2)'), (22986,'001764','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (2)','CM-7 (2)','CM-7 (2)'), (22987,'001765','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (a)','CM-7 (4)(a)','CM-7 (4)'), (22988,'001766','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (a)','CM-7 (4)(a)','CM-7 (4)'), (22989,'001767','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (b)','CM-7 (4)(b)','CM-7 (4)'), (22990,'001768','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (c)','CM-7 (4)(c)','CM-7 (4)'), (22991,'001769','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (c)','CM-7 (4)(c)','CM-7 (4)'), (22992,'001770','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (c)','CM-7 (4)(c)','CM-7 (4)'), (22993,'001771','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (c)','CM-7 (4)(c)','CM-7 (4)'), (22994,'001772','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (a)','CM-7 (5)(a)','CM-7 (5)'), (22995,'001773','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (a)','CM-7 (5)(a)','CM-7 (5)'), (22996,'001774','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (b)','CM-7 (5)(b)','CM-7 (5)'), (22997,'001775','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (c)','CM-7 (5)(c)','CM-7 (5)'), (22998,'001776','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (c)','CM-7 (5)(c)','CM-7 (5)'), (22999,'001777','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (c)','CM-7 (5)(c)','CM-7 (5)'), (23000,'001778','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (c)','CM-7 (5)(c)','CM-7 (5)'), (23001,'001779','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 b','CM-8b.','CM-8'), (23002,'001780','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 b','CM-8b.','CM-8'), (23003,'001781','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 b','CM-8b.','CM-8'), (23004,'001782','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 b','CM-8b.','CM-8'), (23005,'001783','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (b)','CM-8 (3)(b)','CM-8 (3)'), (23006,'001784','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (b)','CM-8 (3)(b)','CM-8 (3)'), (23007,'001785','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (7)','CM-8 (7)','CM-8 (7)'), (23008,'001786','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (8)','CM-8 (8)','CM-8 (8)'), (23009,'001787','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (9) (a)','CM-8 (9)(a)','CM-8 (9)'), (23010,'001788','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (9) (a)','CM-8 (9)(a)','CM-8 (9)'), (23011,'001789','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (9) (b)','CM-8 (9)(b)','CM-8 (9)'), (23012,'001790','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b.','CM-9'), (23013,'001791','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b.','CM-9'), (23014,'001792','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b.','CM-9'), (23015,'001793','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b.','CM-9'), (23016,'001794','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b.','CM-9'), (23017,'001795','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b.','CM-9'), (23018,'001796','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c.','CM-9'), (23019,'001797','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c.','CM-9'), (23020,'001798','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c.','CM-9'), (23021,'001799','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 d','CM-9d.','CM-9'), (23022,'001800','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 d','CM-9d.','CM-9'), (23023,'001801','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 d','CM-9d.','CM-9'), (23024,'001726','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a.','CM-10'), (23025,'001727','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a.','CM-10'), (23026,'001728','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a.','CM-10'), (23027,'001729','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a.','CM-10'), (23028,'001730','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b.','CM-10'), (23029,'001731','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b.','CM-10'), (23030,'001732','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 c','CM-10c.','CM-10'), (23031,'001733','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 c','CM-10c.','CM-10'), (23032,'001734','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 (1)','CM-10 (1)','CM-10 (1)'), (23033,'001735','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 (1)','CM-10 (1)','CM-10 (1)'), (23034,'001802','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b.','CM-10'), (23035,'001803','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b.','CM-10'), (23036,'001804','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 a','CM-11a.','CM-11'), (23037,'001805','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 a','CM-11a.','CM-11'), (23038,'001806','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 b','CM-11b.','CM-11'), (23039,'001807','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 b','CM-11b.','CM-11'), (23040,'001808','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 c','CM-11c.','CM-11'), (23041,'001809','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 c','CM-11c.','CM-11'), (23042,'001810','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 (1)','CM-11 (1)','CM-11 (1)'), (23043,'001811','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 (1)','CM-11 (1)','CM-11 (1)'), (23044,'001812','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 (2)','CM-11 (2)','CM-11 (2)'), (23045,'002825','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1','CP-1a.1.','CP-1'), (23046,'002826','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 2','CP-1a.2.','CP-1'), (23047,'002827','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (7)','CP-2 (7)','CP-2 (7)'), (23048,'002828','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (8)','CP-2 (8)','CP-2 (8)'), (23049,'002829','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (8)','CP-2 (8)','CP-2 (8)'), (23050,'002830','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 6','CP-2a.6.','CP-2'), (23051,'002831','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 f','CP-2f.','CP-2'), (23052,'002832','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 g','CP-2g.','CP-2'), (23053,'002833','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a','CP-3a.','CP-3'), (23054,'002834','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 b','CP-3b.','CP-3'), (23055,'002835','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (2) (b)','CP-4 (2)(b)','CP-4 (2)'), (23056,'002836','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 b','CP-6b.','CP-6'), (23057,'002837','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (6)','CP-7 (6)','CP-7 (6)'), (23058,'002838','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (6)','CP-7 (6)','CP-7 (6)'), (23059,'002839','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a.','CP-7'), (23060,'002840','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), (23061,'002841','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), (23062,'002842','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (b)','CP-8 (4)(b)','CP-8 (4)'), (23063,'002843','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c) ','CP-8 (4)(c)','CP-8 (4)'), (23064,'002844','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c) ','CP-8 (4)(c)','CP-8 (4)'), (23065,'002845','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c) ','CP-8 (4)(c)','CP-8 (4)'), (23066,'002846','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c) ','CP-8 (4)(c)','CP-8 (4)'), (23067,'002847','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (5)','CP-8 (5)','CP-8 (5)'), (23068,'002848','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (5)','CP-8 (5)','CP-8 (5)'), (23069,'002849','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (3)','CP-9 (3)','CP-9 (3)'), (23070,'002850','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (3)','CP-9 (3)','CP-9 (3)'), (23071,'002851','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (7)','CP-9 (7)','CP-9 (7)'), (23072,'002852','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (7)','CP-9 (7)','CP-9 (7)'), (23073,'002853','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-11','CP-11','CP-11'), (23074,'002854','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-11','CP-11','CP-11'), (23075,'002855','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-12','CP-12','CP-12'), (23076,'002856','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-12','CP-12','CP-12'), (23077,'002857','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-12','CP-12','CP-12'), (23078,'002858','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-13','CP-13','CP-13'), (23079,'002859','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-13','CP-13','CP-13'), (23080,'002860','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','CP-13','CP-13','CP-13'), (23081,'001932','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1','IA-1a.1.','IA-1'), (23082,'001933','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1','IA-1a.1.','IA-1'), (23083,'001934','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 2','IA-1a.2.','IA-1'), (23084,'001935','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (6)','IA-2 (6)','IA-2 (6)'), (23085,'001936','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (6)','IA-2 (6)','IA-2 (6)'), (23086,'001937','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (6)','IA-2 (6)','IA-2 (6)'), (23087,'001938','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (7)','IA-2 (7)','IA-2 (7)'), (23088,'001939','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (7)','IA-2 (7)','IA-2 (7)'), (23089,'001940','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (7)','IA-2 (7)','IA-2 (7)'), (23090,'001941','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (8)','IA-2 (8)','IA-2 (8)'), (23091,'001942','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (9)','IA-2 (9)','IA-2 (9)'), (23092,'001943','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2 (10)','IA-2 (10)'), (23093,'001944','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2 (10)','IA-2 (10)'), (23094,'001945','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2 (10)','IA-2 (10)'), (23095,'001946','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2 (10)','IA-2 (10)'), (23096,'001947','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (11)','IA-2 (11)','IA-2 (11)'), (23097,'001948','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (11)','IA-2 (11)','IA-2 (11)'), (23098,'001949','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (11)','IA-2 (11)','IA-2 (11)'), (23099,'001950','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (11)','IA-2 (11)','IA-2 (11)'), (23100,'001951','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (11)','IA-2 (11)','IA-2 (11)'), (23101,'001952','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (11)','IA-2 (11)','IA-2 (11)'), (23102,'001953','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (12)','IA-2 (12)','IA-2 (12)'), (23103,'001954','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (12)','IA-2 (12)','IA-2 (12)'), (23104,'001955','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (13)','IA-2 (13)','IA-2 (13)'), (23105,'001956','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (13)','IA-2 (13)','IA-2 (13)'), (23106,'001957','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (13)','IA-2 (13)','IA-2 (13)'), (23107,'001958','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3','IA-3','IA-3'), (23108,'001959','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (1)','IA-3 (1)','IA-3 (1)'), (23109,'001960','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3 (3)(a)','IA-3 (3)'), (23110,'001961','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3 (3)(a)','IA-3 (3)'), (23111,'001962','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3 (3)(a)','IA-3 (3)'), (23112,'001963','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3 (3)(a)','IA-3 (3)'), (23113,'001964','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3 (4)','IA-3 (4)'), (23114,'001965','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3 (4)','IA-3 (4)'), (23115,'001966','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3 (4)','IA-3 (4)'), (23116,'001967','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (1)','IA-3 (1)','IA-3 (1)'), (23117,'001968','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3 (4)','IA-3 (4)'), (23118,'001969','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3 (4)','IA-3 (4)'), (23119,'001970','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 a','IA-4a.','IA-4'), (23120,'001971','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 a','IA-4a.','IA-4'), (23121,'001972','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 b','IA-4b.','IA-4'), (23122,'001973','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 c','IA-4c.','IA-4'), (23123,'001974','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 d','IA-4d.','IA-4'), (23124,'001975','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 d','IA-4d.','IA-4'), (23125,'001976','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (5)','IA-4 (5)','IA-4 (5)'), (23126,'001977','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (6)','IA-4 (6)','IA-4 (6)'), (23127,'001978','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (6)','IA-4 (6)','IA-4 (6)'), (23128,'001979','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (7)','IA-4 (7)','IA-4 (7)'), (23129,'002040','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (2)','IA-4 (2)','IA-4 (2)'), (23130,'001980','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 a','IA-5a.','IA-5'), (23131,'001981','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23132,'001982','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23133,'001983','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23134,'001984','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23135,'001985','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23136,'001986','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23137,'001987','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23138,'001988','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d.','IA-5'), (23139,'001989','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 e','IA-5e.','IA-5'), (23140,'001990','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 j','IA-5j.','IA-5'), (23141,'001991','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (d)','IA-5 (2)(d)','IA-5 (2)'), (23142,'001992','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (3)','IA-5 (3)','IA-5 (3)'), (23143,'001993','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (3)','IA-5 (3)','IA-5 (3)'), (23144,'001994','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (3)','IA-5 (3)','IA-5 (3)'), (23145,'001995','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (3)','IA-5 (3)','IA-5 (3)'), (23146,'001996','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (4)','IA-5 (4)','IA-5 (4)'), (23147,'001997','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (4)','IA-5 (4)','IA-5 (4)'), (23148,'001998','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (5)','IA-5 (5)','IA-5 (5)'), (23149,'001999','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (9)','IA-5 (9)','IA-5 (9)'), (23150,'002000','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (9)','IA-5 (9)','IA-5 (9)'), (23151,'002001','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (10)','IA-5 (10)','IA-5 (10)'), (23152,'002002','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (11)','IA-5 (11)','IA-5 (11)'), (23153,'002003','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (11)','IA-5 (11)','IA-5 (11)'), (23154,'002004','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (12)','IA-5 (12)','IA-5 (12)'), (23155,'002005','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (12)','IA-5 (12)','IA-5 (12)'), (23156,'002006','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (13)','IA-5 (13)','IA-5 (13)'), (23157,'002007','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (13)','IA-5 (13)','IA-5 (13)'), (23158,'002008','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (14)','IA-5 (14)','IA-5 (14)'), (23159,'002041','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (f)','IA-5 (1)(f)','IA-5 (1)'), (23160,'002042','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 h','IA-5h.','IA-5'), (23161,'002043','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (15)','IA-5 (15)','IA-5 (15)'), (23162,'002365','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 i','IA-5i.','IA-5'), (23163,'002366','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 i','IA-5i.','IA-5'), (23164,'002367','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (7)','IA-5 (7)','IA-5 (7)'), (23165,'002009','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (1)','IA-8 (1)','IA-8 (1)'), (23166,'002010','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (1)','IA-8 (1)','IA-8 (1)'), (23167,'002011','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (2)','IA-8 (2)','IA-8 (2)'), (23168,'002012','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (3)','IA-8 (3)','IA-8 (3)'), (23169,'002013','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (3)','IA-8 (3)','IA-8 (3)'), (23170,'002014','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (4)','IA-8 (4)','IA-8 (4)'), (23171,'002015','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (5)','IA-8 (5)','IA-8 (5)'), (23172,'002016','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (5)','IA-8 (5)','IA-8 (5)'), (23173,'002017','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), (23174,'002018','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), (23175,'002019','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), (23176,'002020','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), (23177,'002021','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), (23178,'002022','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), (23179,'002023','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (1)','IA-9 (1)','IA-9 (1)'), (23180,'002024','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (1)','IA-9 (1)','IA-9 (1)'), (23181,'002025','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (1)','IA-9 (1)','IA-9 (1)'), (23182,'002026','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (1)','IA-9 (1)','IA-9 (1)'), (23183,'002027','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (1)','IA-9 (1)','IA-9 (1)'), (23184,'002028','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (1)','IA-9 (1)','IA-9 (1)'), (23185,'002029','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (2)','IA-9 (2)','IA-9 (2)'), (23186,'002030','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (2)','IA-9 (2)','IA-9 (2)'), (23187,'002031','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (2)','IA-9 (2)','IA-9 (2)'), (23188,'002032','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-9 (2)','IA-9 (2)','IA-9 (2)'), (23189,'002033','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-10','IA-10','IA-10'), (23190,'002034','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-10','IA-10','IA-10'), (23191,'002035','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-10','IA-10','IA-10'), (23192,'002036','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-11','IA-11','IA-11'), (23193,'002037','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-11','IA-11','IA-11'), (23194,'002038','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-11','IA-11','IA-11'), (23195,'002039','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IA-11','IA-11','IA-11'), (23196,'002776','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1','IR-1a.1.','IR-1'), (23197,'002777','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 2','IR-1a.2.','IR-1'), (23198,'002778','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a','IR-2a.','IR-2'), (23199,'002779','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 b','IR-2b.','IR-2'), (23200,'002780','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (2)','IR-3 (2)','IR-3 (2)'), (23201,'002781','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (2)','IR-4 (2)','IR-4 (2)'), (23202,'002782','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (6)','IR-4 (6)','IR-4 (6)'), (23203,'002783','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (7)','IR-4 (7)','IR-4 (7)'), (23204,'002784','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (7)','IR-4 (7)','IR-4 (7)'), (23205,'002785','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (8)','IR-4 (8)','IR-4 (8)'), (23206,'002786','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (8)','IR-4 (8)','IR-4 (8)'), (23207,'002787','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (8)','IR-4 (8)','IR-4 (8)'), (23208,'002788','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (9)','IR-4 (9)','IR-4 (9)'), (23209,'002789','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (9)','IR-4 (9)','IR-4 (9)'), (23210,'002790','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (10)','IR-4 (10)','IR-4 (10)'), (23211,'002791','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 b','IR-6b.','IR-6'), (23212,'002792','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (2)','IR-6 (2)','IR-6 (2)'), (23213,'002793','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (3)','IR-6 (3)','IR-6 (3)'), (23214,'002794','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a','IR-8a.','IR-8'), (23215,'002795','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 1','IR-8a.1.','IR-8'), (23216,'002796','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 2','IR-8a.2.','IR-8'), (23217,'002797','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 3','IR-8a.3.','IR-8'), (23218,'002798','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 4','IR-8a.4.','IR-8'), (23219,'002799','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 5','IR-8a.5.','IR-8'), (23220,'002800','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 6','IR-8a.6.','IR-8'), (23221,'002801','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 7','IR-8a.7.','IR-8'), (23222,'002802','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 8','IR-8a.8.','IR-8'), (23223,'002803','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 e','IR-8e.','IR-8'), (23224,'002804','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 f','IR-8f.','IR-8'), (23225,'002805','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 a','IR-9a.','IR-9'), (23226,'002806','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 b','IR-9b.','IR-9'), (23227,'002807','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 b','IR-9b.','IR-9'), (23228,'002808','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 c','IR-9c.','IR-9'), (23229,'002809','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 d','IR-9d.','IR-9'), (23230,'002810','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 e','IR-9e.','IR-9'), (23231,'002811','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 f','IR-9f.','IR-9'), (23232,'002812','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 f','IR-9f.','IR-9'), (23233,'002813','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (1)','IR-9 (1)','IR-9 (1)'), (23234,'002814','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (1)','IR-9 (1)','IR-9 (1)'), (23235,'002815','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (1)','IR-9 (1)','IR-9 (1)'), (23236,'002816','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (2)','IR-9 (2)','IR-9 (2)'), (23237,'002817','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (2)','IR-9 (2)','IR-9 (2)'), (23238,'002818','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (3)','IR-9 (3)','IR-9 (3)'), (23239,'002819','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (3)','IR-9 (3)','IR-9 (3)'), (23240,'002820','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (4)','IR-9 (4)','IR-9 (4)'), (23241,'002821','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (4)','IR-9 (4)','IR-9 (4)'), (23242,'002822','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IR-10','IR-10','IR-10'), (23243,'002861','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1','MA-1a.1.','MA-1'), (23244,'002862','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 2','MA-1a.2.','MA-1'), (23245,'002863','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (a)','MA-2 (2)(a)','MA-2 (2)'), (23246,'002864','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (b)','MA-2 (2)(b)','MA-2 (2)'), (23247,'002865','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (b)','MA-2 (2)(b)','MA-2 (2)'), (23248,'002866','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23249,'002867','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a ','MA-2a..','MA-2'), (23250,'002868','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23251,'002869','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23252,'002870','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23253,'002871','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23254,'002872','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23255,'002873','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a.','MA-2'), (23256,'002874','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 c','MA-2c.','MA-2'), (23257,'002875','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 f','MA-2f.','MA-2'), (23258,'002876','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 f','MA-2f.','MA-2'), (23259,'002905','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (a)','MA-2 (2)(a)','MA-2 (2)'), (23260,'002877','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (a)','MA-3 (3)(a)','MA-3 (3)'), (23261,'002878','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (b)','MA-3 (3)(b)','MA-3 (3)'), (23262,'002879','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (c)','MA-3 (3)(c)','MA-3 (3)'), (23263,'002880','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (c)','MA-3 (3)(c)','MA-3 (3)'), (23264,'002881','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (d)','MA-3 (3)(d)','MA-3 (3)'), (23265,'002882','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (d)','MA-3 (3)(d)','MA-3 (3)'), (23266,'002883','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (4)','MA-3 (4)','MA-3 (4)'), (23267,'002884','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (1) (a)','MA-4 (1)(a)','MA-4 (1)'), (23268,'002885','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (1) (a)','MA-4 (1)(a)','MA-4 (1)'), (23269,'002886','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (1) (b)','MA-4 (1)(b)','MA-4 (1)'), (23270,'002887','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (a)','MA-4 (4)(a)','MA-4 (4)'), (23271,'002888','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (a)','MA-4 (5)(a)','MA-4 (5)'), (23272,'002889','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (b)','MA-4 (5)(b)','MA-4 (5)'), (23273,'002890','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (6)','MA-4 (6)','MA-4 (6)'), (23274,'002891','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (7)','MA-4 (7)','MA-4 (7)'), (23275,'003123','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (6)','MA-4 (6)','MA-4 (6)'), (23276,'002892','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (b)','MA-5 (1)(b)','MA-5 (1)'), (23277,'002893','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (5)','MA-5 (5)','MA-5 (5)'), (23278,'002894','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 b','MA-5b.','MA-5'), (23279,'002895','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 c','MA-5c.','MA-5'), (23280,'002896','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6','MA-6','MA-6'), (23281,'002897','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6','MA-6','MA-6'), (23282,'002898','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (1)','MA-6 (1)','MA-6 (1)'), (23283,'002899','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (1)','MA-6 (1)','MA-6 (1)'), (23284,'002900','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (1)','MA-6 (1)','MA-6 (1)'), (23285,'002901','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (2)','MA-6 (2)','MA-6 (2)'), (23286,'002902','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (2)','MA-6 (2)','MA-6 (2)'), (23287,'002903','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (2)','MA-6 (2)','MA-6 (2)'), (23288,'002904','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (3)','MA-6 (3)','MA-6 (3)'), (23289,'002566','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1','MP-1a.1.','MP-1'), (23290,'002567','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6 (1)','MP-6 (1)'), (23291,'002568','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6 (1)','MP-6 (1)'), (23292,'002569','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6 (1)','MP-6 (1)'), (23293,'002570','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6 (1)','MP-6 (1)'), (23294,'002571','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6 (1)','MP-6 (1)'), (23295,'002572','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6 (1)','MP-6 (1)'), (23296,'002573','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (7)','MP-6 (7)','MP-6 (7)'), (23297,'002574','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (7)','MP-6 (7)','MP-6 (7)'), (23298,'002575','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (8)','MP-6 (8)','MP-6 (8)'), (23299,'002576','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (8)','MP-6 (8)','MP-6 (8)'), (23300,'002577','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (8)','MP-6 (8)','MP-6 (8)'), (23301,'002578','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 a','MP-6a.','MP-6'), (23302,'002579','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 a','MP-6a.','MP-6'), (23303,'002580','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 b','MP-6b.','MP-6'), (23304,'002581','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-7','MP-7','MP-7'), (23305,'002582','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-7','MP-7','MP-7'), (23306,'002583','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-7','MP-7','MP-7'), (23307,'002584','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-7','MP-7','MP-7'), (23308,'002585','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (1)','MP-7 (1)','MP-7 (1)'), (23309,'002586','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (2)','MP-7 (2)','MP-7 (2)'), (23310,'002587','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (1)','MP-8 (1)','MP-8 (1)'), (23311,'002588','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8 (2)','MP-8 (2)'), (23312,'002589','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8 (2)','MP-8 (2)'), (23313,'002590','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8 (2)','MP-8 (2)'), (23314,'002591','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8 (2)','MP-8 (2)'), (23315,'002592','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (3)','MP-8 (3)','MP-8 (3)'), (23316,'002593','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (3)','MP-8 (3)','MP-8 (3)'), (23317,'002594','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (4)','MP-8 (4)','MP-8 (4)'), (23318,'002595','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 a','MP-8a.','MP-8'), (23319,'002596','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 a','MP-8a.','MP-8'), (23320,'002597','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 a','MP-8a.','MP-8'), (23321,'002598','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 b','MP-8b.','MP-8'), (23322,'002599','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 c','MP-8c.','MP-8'), (23323,'002600','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 d','MP-8d.','MP-8'), (23324,'002908','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1','PE-1a.1.','PE-1'), (23325,'002909','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 2','PE-1a.2.','PE-1'), (23326,'002910','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 a','PE-2a.','PE-2'), (23327,'002911','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 a','PE-2a.','PE-2'), (23328,'002912','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (2)','PE-2 (2)','PE-2 (2)'), (23329,'002913','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (3)','PE-2 (3)','PE-2 (3)'), (23330,'002914','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (3)','PE-2 (3)','PE-2 (3)'), (23331,'002915','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a','PE-3a.','PE-3'), (23332,'002916','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 2','PE-3a.2.','PE-3'), (23333,'002917','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 b','PE-3b.','PE-3'), (23334,'002918','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 b','PE-3b.','PE-3'), (23335,'002919','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 c','PE-3c.','PE-3'), (23336,'002920','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 c','PE-3c.','PE-3'), (23337,'002921','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d.','PE-3'), (23338,'002922','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d.','PE-3'), (23339,'002923','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d.','PE-3'), (23340,'002924','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d.','PE-3'), (23341,'002925','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 f','PE-3f.','PE-3'), (23342,'002926','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (1)','PE-3 (1)','PE-3 (1)'), (23343,'002927','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (2)','PE-3 (2)','PE-3 (2)'), (23344,'002928','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (5)','PE-3 (5)','PE-3 (5)'), (23345,'002929','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (5)','PE-3 (5)','PE-3 (5)'), (23346,'002930','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-4','PE-4','PE-4'), (23347,'002931','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-4','PE-4','PE-4'), (23348,'002932','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (1) (a)','PE-5 (1)(a)','PE-5 (1)'), (23349,'002933','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (1) (a)','PE-5 (1)(a)','PE-5 (1)'), (23350,'002934','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (1) (b)','PE-5 (1)(b)','PE-5 (1)'), (23351,'002935','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (2) (a)','PE-5 (2)(a)','PE-5 (2)'), (23352,'002936','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (2) (b)','PE-5 (2)(b)','PE-5 (2)'), (23353,'002937','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (3)','PE-5 (3)','PE-5 (3)'), (23354,'002938','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (3)','PE-5 (3)','PE-5 (3)'), (23355,'002939','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 a','PE-6a.','PE-6'), (23356,'002940','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b.','PE-6'), (23357,'002941','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b.','PE-6'), (23358,'002942','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6 (2)','PE-6 (2)'), (23359,'002943','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6 (2)','PE-6 (2)'), (23360,'002944','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6 (2)','PE-6 (2)'), (23361,'002945','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6 (2)','PE-6 (2)'), (23362,'002946','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3)','PE-6 (3)','PE-6 (3)'), (23363,'002947','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3)','PE-6 (3)','PE-6 (3)'), (23364,'002948','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3)','PE-6 (3)','PE-6 (3)'), (23365,'002949','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3)','PE-6 (3)','PE-6 (3)'), (23366,'002950','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (4)','PE-6 (4)','PE-6 (4)'), (23367,'002951','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (4)','PE-6 (4)','PE-6 (4)'), (23368,'002952','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 a','PE-8a.','PE-8'), (23369,'002953','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (1)','PE-9 (1)','PE-9 (1)'), (23370,'002954','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (1)','PE-9 (1)','PE-9 (1)'), (23371,'002955','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-11','PE-11','PE-11'), (23372,'002956','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (2) (a)','PE-11 (2)(a)','PE-11 (2)'), (23373,'002957','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (2) (b)','PE-11 (2)(b)','PE-11 (2)'), (23374,'002958','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (2) (c)','PE-11 (2)(c)','PE-11 (2)'), (23375,'002959','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-12 (1)','PE-12 (1)','PE-12 (1)'), (23376,'002960','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-12 (1)','PE-12 (1)','PE-12 (1)'), (23377,'002961','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13 (1)','PE-13 (1)'), (23378,'002962','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13 (1)','PE-13 (1)'), (23379,'002963','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13 (1)','PE-13 (1)'), (23380,'002964','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13 (1)','PE-13 (1)'), (23381,'002965','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2)','PE-13 (2)','PE-13 (2)'), (23382,'002966','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2)','PE-13 (2)','PE-13 (2)'), (23383,'002967','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2)','PE-13 (2)','PE-13 (2)'), (23384,'002968','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13 (4)','PE-13 (4)'), (23385,'002969','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13 (4)','PE-13 (4)'), (23386,'002970','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13 (4)','PE-13 (4)'), (23387,'002971','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13 (4)','PE-13 (4)'), (23388,'002972','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-15 (1)','PE-15 (1)','PE-15 (1)'), (23389,'002973','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-15 (1)','PE-15 (1)','PE-15 (1)'), (23390,'002974','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-16','PE-16','PE-16'), (23391,'002975','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 a','PE-17a.','PE-17'), (23392,'002976','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-18','PE-18','PE-18'), (23393,'002977','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-18 (1)','PE-18 (1)','PE-18 (1)'), (23394,'002978','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-18 (1)','PE-18 (1)','PE-18 (1)'), (23395,'003047','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1','PL-1a.1.','PL-1'), (23396,'003048','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 2','PL-1a.2.','PL-1'), (23397,'003049','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a','PL-2a.','PL-2'), (23398,'003050','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 1','PL-2a.1.','PL-2'), (23399,'003051','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 2','PL-2a.2.','PL-2'), (23400,'003052','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 3','PL-2a.3.','PL-2'), (23401,'003053','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 4','PL-2a.4.','PL-2'), (23402,'003054','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 5','PL-2a.5.','PL-2'), (23403,'003055','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 6','PL-2a.6.','PL-2'), (23404,'003056','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 7','PL-2a.7.','PL-2'), (23405,'003057','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 8','PL-2a.8.','PL-2'), (23406,'003058','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b.','PL-2'), (23407,'003059','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b.','PL-2'), (23408,'003060','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b.','PL-2'), (23409,'003061','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b.','PL-2'), (23410,'003062','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b.','PL-2'), (23411,'003063','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 e','PL-2e.','PL-2'), (23412,'003064','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 e','PL-2e.','PL-2'), (23413,'003065','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 (3)','PL-2 (3)','PL-2 (3)'), (23414,'003066','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 (3)','PL-2 (3)','PL-2 (3)'), (23415,'003067','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 (3)','PL-2 (3)','PL-2 (3)'), (23416,'003068','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 c','PL-4c.','PL-4'), (23417,'003069','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 c','PL-4c.','PL-4'), (23418,'003070','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 d','PL-4d.','PL-4'), (23419,'003071','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 a','PL-7a.','PL-7'), (23420,'003072','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a','PL-8a.','PL-8'), (23421,'003073','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 1','PL-8a.1.','PL-8'), (23422,'003074','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 2','PL-8a.2.','PL-8'), (23423,'003075','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 3','PL-8a.3.','PL-8'), (23424,'003076','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 b','PL-8b.','PL-8'), (23425,'003077','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 b','PL-8b.','PL-8'), (23426,'003078','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c.','PL-8'), (23427,'003079','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c.','PL-8'), (23428,'003080','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c.','PL-8'), (23429,'003081','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8 (1)(a)','PL-8 (1)'), (23430,'003082','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8 (1)(a)','PL-8 (1)'), (23431,'003083','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8 (1)(a)','PL-8 (1)'), (23432,'003084','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8 (1)(a)','PL-8 (1)'), (23433,'003085','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8 (1)(a)','PL-8 (1)'), (23434,'003086','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8 (1)(a)','PL-8 (1)'), (23435,'003087','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (b)','PL-8 (1)(b)','PL-8 (1)'), (23436,'003088','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (2)','PL-8 (2)','PL-8 (2)'), (23437,'003017','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1','PS-1a.1.','PS-1'), (23438,'003018','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 2','PS-1a.2.','PS-1'), (23439,'003019','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (3) (a)','PS-3 (3)(a)','PS-3 (3)'), (23440,'003020','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (3) (b)','PS-3 (3)(b)','PS-3 (3)'), (23441,'003021','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (3) (b)','PS-3 (3)(b)','PS-3 (3)'), (23442,'003016','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 f','PS-4f.','PS-4'), (23443,'003022','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 a','PS-4a.','PS-4'), (23444,'003023','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 b','PS-4b.','PS-4'), (23445,'003024','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 c','PS-4c.','PS-4'), (23446,'003025','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 f','PS-4f.','PS-4'), (23447,'003026','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 f','PS-4f.','PS-4'), (23448,'003027','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (1) (a)','PS-4 (1)(a)','PS-4 (1)'), (23449,'003028','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (1) (b)','PS-4 (1)(b)','PS-4 (1)'), (23450,'003029','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (2)','PS-4 (2)','PS-4 (2)'), (23451,'003030','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (2)','PS-4 (2)','PS-4 (2)'), (23452,'003031','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 c','PS-5c.','PS-5'), (23453,'003032','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 d','PS-5d.','PS-5'), (23454,'003033','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 d','PS-5d.','PS-5'), (23455,'003034','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 d','PS-5d.','PS-5'), (23456,'003035','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 a','PS-6a.','PS-6'), (23457,'003036','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 2','PS-6c.2.','PS-6'), (23458,'003037','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 2','PS-6c.2.','PS-6'), (23459,'003038','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (3) (a)','PS-6 (3)(a)','PS-6 (3)'), (23460,'003039','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (3) (b)','PS-6 (3)(b)','PS-6 (3)'), (23461,'003040','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 b','PS-7b.','PS-7'), (23462,'003041','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 d','PS-7d.','PS-7'), (23463,'003042','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 d','PS-7d.','PS-7'), (23464,'003043','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 d','PS-7d.','PS-7'), (23465,'003044','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 b','PS-8b.','PS-8'), (23466,'003045','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 b','PS-8b.','PS-8'), (23467,'003046','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 b','PS-8b.','PS-8'), (23468,'002368','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1','RA-1a.1.','RA-1'), (23469,'002369','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 2','RA-1a.2.','RA-1'), (23470,'002370','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 d','RA-3d.','RA-3'), (23471,'002371','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 d','RA-3d.','RA-3'), (23472,'002372','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (10)','RA-5 (10)','RA-5 (10)'), (23473,'002373','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (3)','RA-5 (3)','RA-5 (3)'), (23474,'002374','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (4)','RA-5 (4)','RA-5 (4)'), (23475,'002375','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (4)','RA-5 (4)','RA-5 (4)'), (23476,'002376','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 e','RA-5e.','RA-5'), (23477,'002906','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (5)','RA-5 (5)','RA-5 (5)'), (23478,'003119','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), (23479,'003120','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), (23480,'003121','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), (23481,'003122','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), (23482,'003089','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1','SA-1a.1.','SA-1'), (23483,'003090','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 2','SA-1a.2.','SA-1'), (23484,'003091','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 a ','SA-2a..','SA-2'), (23485,'003092','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a.','SA-3'), (23486,'003093','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 d','SA-3d.','SA-3'), (23487,'003094','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 a','SA-4a.','SA-4'), (23488,'003095','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 b','SA-4b.','SA-4'), (23489,'003096','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 c','SA-4c.','SA-4'), (23490,'003097','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 d','SA-4d.','SA-4'), (23491,'003098','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 e','SA-4e.','SA-4'), (23492,'003099','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 f','SA-4f.','SA-4'), (23493,'003100','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 g','SA-4g.','SA-4'), (23494,'003101','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4 (2)','SA-4 (2)'), (23495,'003102','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4 (2)','SA-4 (2)'), (23496,'003103','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4 (2)','SA-4 (2)'), (23497,'003104','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4 (2)','SA-4 (2)'), (23498,'003105','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4 (2)','SA-4 (2)'), (23499,'003106','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4 (2)','SA-4 (2)'), (23500,'003107','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3)','SA-4 (3)','SA-4 (3)'), (23501,'003108','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3)','SA-4 (3)','SA-4 (3)'), (23502,'003109','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (5) (a)','SA-4 (5)(a)','SA-4 (5)'), (23503,'003110','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (5) (a)','SA-4 (5)(a)','SA-4 (5)'), (23504,'003111','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (5) (b)','SA-4 (5)(b)','SA-4 (5)'), (23505,'003112','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (8)','SA-4 (8)','SA-4 (8)'), (23506,'003113','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (8)','SA-4 (8)','SA-4 (8)'), (23507,'003114','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (9)','SA-4 (9)','SA-4 (9)'), (23508,'003115','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (9)','SA-4 (9)','SA-4 (9)'), (23509,'003116','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (10)','SA-4 (10)','SA-4 (10)'), (23510,'003124','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 1','SA-5a.1.','SA-5'), (23511,'003125','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 1','SA-5a.1.','SA-5'), (23512,'003126','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 1','SA-5a.1.','SA-5'), (23513,'003127','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 2','SA-5a.2.','SA-5'), (23514,'003128','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 3','SA-5a.3.','SA-5'), (23515,'003129','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 1','SA-5b.1.','SA-5'), (23516,'003130','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 2','SA-5b.2.','SA-5'), (23517,'003131','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 3','SA-5b.3.','SA-5'), (23518,'003132','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 c','SA-5c.','SA-5'), (23519,'003133','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 c','SA-5c.','SA-5'), (23520,'003134','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 d','SA-5d.','SA-5'), (23521,'003135','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 e','SA-5e.','SA-5'), (23522,'003136','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 e','SA-5e.','SA-5'), (23523,'003137','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 a','SA-9a.','SA-9'), (23524,'003138','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 c','SA-9c.','SA-9'), (23525,'003139','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 c','SA-9c.','SA-9'), (23526,'003140','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (1) (a)','SA-9(1)(a)','SA-9'), (23527,'003141','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (1) (b)','SA-9 (1)(b)','SA-9 (1)'), (23528,'003142','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (1) (b)','SA-9 (1)(b)','SA-9 (1)'), (23529,'003143','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (2)','SA-9 (2)','SA-9 (2)'), (23530,'003144','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (2)','SA-9 (2)','SA-9 (2)'), (23531,'003145','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9 (3)','SA-9 (3)'), (23532,'003146','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9 (3)','SA-9 (3)'), (23533,'003147','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9 (3)','SA-9 (3)'), (23534,'003148','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9 (3)','SA-9 (3)'), (23535,'003149','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (4)','SA-9 (4)','SA-9 (4)'), (23536,'003150','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (4)','SA-9 (4)','SA-9 (4)'), (23537,'003151','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (4)','SA-9 (4)','SA-9 (4)'), (23538,'003152','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (5)','SA-9 (5)','SA-9 (5)'), (23539,'003153','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (5)','SA-9 (5)','SA-9 (5)'), (23540,'003154','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (5)','SA-9 (5)','SA-9 (5)'), (23541,'003155','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 a','SA-10a.','SA-10'), (23542,'003156','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b.','SA-10'), (23543,'003157','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b.','SA-10'), (23544,'003158','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b.','SA-10'), (23545,'003159','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b.','SA-10'), (23546,'003160','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 d','SA-10d.','SA-10'), (23547,'003161','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e.','SA-10'), (23548,'003162','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e.','SA-10'), (23549,'003163','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e.','SA-10'), (23550,'003164','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e.','SA-10'), (23551,'003165','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (3)','SA-10 (3)','SA-10 (3)'), (23552,'003166','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (4)','SA-10 (4)','SA-10 (4)'), (23553,'003167','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (4)','SA-10 (4)','SA-10 (4)'), (23554,'003168','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (4)','SA-10 (4)','SA-10 (4)'), (23555,'003169','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (5)','SA-10 (5)','SA-10 (5)'), (23556,'003170','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (6)','SA-10 (6)','SA-10 (6)'), (23557,'003171','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 a','SA-11a.','SA-11'), (23558,'003172','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 a','SA-11a.','SA-11'), (23559,'003173','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 b','SA-11b.','SA-11'), (23560,'003174','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 b','SA-11b.','SA-11'), (23561,'003175','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 c','SA-11c.','SA-11'), (23562,'003176','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 c','SA-11c.','SA-11'), (23563,'003177','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 d','SA-11d.','SA-11'), (23564,'003178','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 e','SA-11e.','SA-11'), (23565,'003179','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (1)','SA-11 (1)','SA-11 (1)'), (23566,'003180','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (1)','SA-11 (1)','SA-11 (1)'), (23567,'003181','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2)','SA-11 (2)','SA-11 (2)'), (23568,'003182','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2)','SA-11 (2)','SA-11 (2)'), (23569,'003183','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11 (3)(a)','SA-11 (3)'), (23570,'003184','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11 (3)(a)','SA-11 (3)'), (23571,'003185','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11 (3)(a)','SA-11 (3)'), (23572,'003186','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (b)','SA-11 (3)(b)','SA-11 (3)'), (23573,'003187','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (4)','SA-11 (4)','SA-11 (4)'), (23574,'003188','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (4)','SA-11 (4)','SA-11 (4)'), (23575,'003189','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (4)','SA-11 (4)','SA-11 (4)'), (23576,'003190','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5)','SA-11 (5)','SA-11 (5)'), (23577,'003191','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5)','SA-11 (5)','SA-11 (5)'), (23578,'003192','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5)','SA-11 (5)','SA-11 (5)'), (23579,'003193','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (6)','SA-11 (6)','SA-11 (6)'), (23580,'003194','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (7)','SA-11 (7)','SA-11 (7)'), (23581,'003195','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (7)','SA-11 (7)','SA-11 (7)'), (23582,'003196','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (8)','SA-11 (8)','SA-11 (8)'), (23583,'003197','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (8)','SA-11 (8)','SA-11 (8)'), (23584,'003198','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (1)','SA-12 (1)','SA-12 (1)'), (23585,'003199','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (1)','SA-12 (1)','SA-12 (1)'), (23586,'003200','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (2)','SA-12 (2)','SA-12 (2)'), (23587,'003201','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (5)','SA-12 (5)','SA-12 (5)'), (23588,'003202','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (5)','SA-12 (5)','SA-12 (5)'), (23589,'003203','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (7)','SA-12 (7)','SA-12 (7)'), (23590,'003204','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (7)','SA-12 (7)','SA-12 (7)'), (23591,'003205','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (8)','SA-12 (8)','SA-12 (8)'), (23592,'003206','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (9)','SA-12 (9)','SA-12 (9)'), (23593,'003207','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (1)','SA-12 (1)','SA-12 (1)'), (23594,'003208','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (1)','SA-12 (1)','SA-12 (1)'), (23595,'003209','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (1)','SA-12 (1)','SA-12 (1)'), (23596,'003210','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (9)','SA-12 (9)','SA-12 (9)'), (23597,'003211','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (9)','SA-12 (9)','SA-12 (9)'), (23598,'003212','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (10)','SA-12 (10)','SA-12 (10)'), (23599,'003213','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (10)','SA-12 (10)','SA-12 (10)'), (23600,'003214','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (11)','SA-12 (11)','SA-12 (11)'), (23601,'003215','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (11)','SA-12 (11)','SA-12 (11)'), (23602,'003216','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (12)','SA-12 (12)','SA-12 (12)'), (23603,'003217','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (12)','SA-12 (12)','SA-12 (12)'), (23604,'003218','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (13)','SA-12 (13)','SA-12 (13)'), (23605,'003219','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (13)','SA-12 (13)','SA-12 (13)'), (23606,'003220','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (13)','SA-12 (13)','SA-12 (13)'), (23607,'003221','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (14)','SA-12 (14)','SA-12 (14)'), (23608,'003222','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (14)','SA-12 (14)','SA-12 (14)'), (23609,'003223','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (14)','SA-12 (14)','SA-12 (14)'), (23610,'003224','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-12 (15)','SA-12 (15)','SA-12 (15)'), (23611,'003225','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-13 a','SA-13a.','SA-13'), (23612,'003226','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-13 a','SA-13a.','SA-13'), (23613,'003227','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-13 b','SA-13b.','SA-13'), (23614,'003228','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-13 b','SA-13b.','SA-13'), (23615,'003229','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-14','SA-14','SA-14'), (23616,'003230','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-14','SA-14','SA-14'), (23617,'003231','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-14','SA-14','SA-14'), (23618,'003232','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-14','SA-14','SA-14'), (23619,'003233','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15','SA-15','SA-15'), (23620,'003234','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 1','SA-15a.1.','SA-15'), (23621,'003235','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 2','SA-15a.2.','SA-15'), (23622,'003236','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 2','SA-15a.2.','SA-15'), (23623,'003237','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 3','SA-15a.3.','SA-15'), (23624,'003238','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 4','SA-15a.4.','SA-15'), (23625,'003239','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 4','SA-15a.4.','SA-15'), (23626,'003240','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 4','SA-15a.4.','SA-15'), (23627,'003241','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b.','SA-15'), (23628,'003242','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b.','SA-15'), (23629,'003243','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b.','SA-15'), (23630,'003244','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b.','SA-15'), (23631,'003245','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b.','SA-15'), (23632,'003246','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b.','SA-15'), (23633,'003247','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (a)','SA-15 (1)(a)','SA-15 (1)'), (23634,'003248','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (b)','SA-15 (1)(b)','SA-15 (1)'), (23635,'003249','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (b)','SA-15 (1)(b)','SA-15 (1)'), (23636,'003250','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (b)','SA-15 (1)(b)','SA-15 (1)'), (23637,'003251','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (2)','SA-15 (2)','SA-15 (2)'), (23638,'003252','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (2)','SA-15 (2)','SA-15 (2)'), (23639,'003253','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3)','SA-15 (3)','SA-15 (3)'), (23640,'003254','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3)','SA-15 (3)','SA-15 (3)'), (23641,'003255','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3)','SA-15 (3)','SA-15 (3)'), (23642,'003256','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4)','SA-15 (4)','SA-15 (4)'), (23643,'003257','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4)','SA-15 (4)','SA-15 (4)'), (23644,'003258','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4)','SA-15 (4)','SA-15 (4)'), (23645,'003259','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4)','SA-15 (4)','SA-15 (4)'), (23646,'003260','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (a)','SA-15 (4)(a)','SA-15 (4)'), (23647,'003261','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (a)','SA-15 (4)(a)','SA-15 (4)'), (23648,'003262','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (a)','SA-15 (4)(a)','SA-15 (4)'), (23649,'003263','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (a)','SA-15 (4)(a)','SA-15 (4)'), (23650,'003264','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (b)','SA-15 (4)(b)','SA-15 (4)'), (23651,'003265','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (b)','SA-15 (4)(b)','SA-15 (4)'), (23652,'003266','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (b)','SA-15 (4)(b)','SA-15 (4)'), (23653,'003267','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (b)','SA-15 (4)(b)','SA-15 (4)'), (23654,'003268','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (c)','SA-15 (4)(c)','SA-15 (4)'), (23655,'003269','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (c)','SA-15 (4)(c)','SA-15 (4)'), (23656,'003270','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (c)','SA-15 (4)(c)','SA-15 (4)'), (23657,'003271','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (4) (c)','SA-15 (4)(c)','SA-15 (4)'), (23658,'003272','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (5)','SA-15 (5)','SA-15 (5)'), (23659,'003273','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (5)','SA-15 (5)','SA-15 (5)'), (23660,'003274','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (6)','SA-15 (6)','SA-15 (6)'), (23661,'003275','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (a)','SA-15 (7)(a)','SA-15 (7)'), (23662,'003276','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (a)','SA-15 (7)(a)','SA-15 (7)'), (23663,'003277','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (b)','SA-15 (7)(b)','SA-15 (7)'), (23664,'003278','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (c)','SA-15 (7)(c)','SA-15 (7)'), (23665,'003279','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (d)','SA-15 (7)(d)','SA-15 (7)'), (23666,'003280','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (d)','SA-15 (7)(d)','SA-15 (7)'), (23667,'003281','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (8)','SA-15 (8)','SA-15 (8)'), (23668,'003282','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (8)','SA-15 (8)','SA-15 (8)'), (23669,'003283','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (9)','SA-15 (9)','SA-15 (9)'), (23670,'003284','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (9)','SA-15 (9)','SA-15 (9)'), (23671,'003285','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (9)','SA-15 (9)','SA-15 (9)'), (23672,'003286','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (9)','SA-15 (9)','SA-15 (9)'), (23673,'003287','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (9)','SA-15 (9)','SA-15 (9)'), (23674,'003288','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (9)','SA-15 (9)','SA-15 (9)'), (23675,'003289','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (10)','SA-15 (10)','SA-15 (10)'), (23676,'003290','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (11)','SA-15 (11)','SA-15 (11)'), (23677,'003291','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-16','SA-16','SA-16'), (23678,'003292','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-16','SA-16','SA-16'), (23679,'003293','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17','SA-17','SA-17'), (23680,'003294','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 a','SA-17a.','SA-17'), (23681,'003295','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 b','SA-17b.','SA-17'), (23682,'003296','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 b','SA-17b.','SA-17'), (23683,'003297','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 c','SA-17c.','SA-17'), (23684,'003298','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (a)','SA-17 (1)(a)','SA-17 (1)'), (23685,'003299','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (a)','SA-17 (1)(a)','SA-17 (1)'), (23686,'003300','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (b)','SA-17 (1)(b)','SA-17 (1)'), (23687,'003301','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17 (2)(a)','SA-17 (2)'), (23688,'003302','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17 (2)(a)','SA-17 (2)'), (23689,'003303','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17 (2)(a)','SA-17 (2)'), (23690,'003304','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17 (2)(a)','SA-17 (2)'), (23691,'003305','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17 (2)(a)','SA-17 (2)'), (23692,'003306','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (b)','SA-17 (2)(b)','SA-17 (2)'), (23693,'003307','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (b)','SA-17 (2)(b)','SA-17 (2)'), (23694,'003308','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (a)','SA-17 (3)(a)','SA-17 (3)'), (23695,'003309','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (a)','SA-17 (3)(a)','SA-17 (3)'), (23696,'003310','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (a)','SA-17 (3)(a)','SA-17 (3)'), (23697,'003311','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (b)','SA-17 (3)(b)','SA-17 (3)'), (23698,'003312','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (c)','SA-17 (3)(c)','SA-17 (3)'), (23699,'003313','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (c)','SA-17 (3)(c)','SA-17 (3)'), (23700,'003314','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (c)','SA-17 (3)(c)','SA-17 (3)'), (23701,'003315','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (d)','SA-17 (3)(d)','SA-17 (3)'), (23702,'003316','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (d)','SA-17 (3)(d)','SA-17 (3)'), (23703,'003317','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (d)','SA-17 (3)(d)','SA-17 (3)'), (23704,'003318','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (e)','SA-17 (3)(e)','SA-17 (3)'), (23705,'003319','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (e)','SA-17 (3)(e)','SA-17 (3)'), (23706,'003320','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (e)','SA-17 (3)(e)','SA-17 (3)'), (23707,'003321','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (a)','SA-17 (4)(a)','SA-17 (4)'), (23708,'003322','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (a)','SA-17 (4)(a)','SA-17 (4)'), (23709,'003323','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (a)','SA-17 (4)(a)','SA-17 (4)'), (23710,'003324','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (b)','SA-17 (4)(b)','SA-17 (4)'), (23711,'003325','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (c)','SA-17 (4)(c)','SA-17 (4)'), (23712,'003326','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (c)','SA-17 (4)(c)','SA-17 (4)'), (23713,'003327','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (c)','SA-17 (4)(c)','SA-17 (4)'), (23714,'003328','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (d)','SA-17 (4)(d)','SA-17 (4)'), (23715,'003329','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (d)','SA-17 (4)(d)','SA-17 (4)'), (23716,'003330','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (d)','SA-17 (4)(d)','SA-17 (4)'), (23717,'003331','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (e)','SA-17 (4)(e)','SA-17 (4)'), (23718,'003332','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (e)','SA-17 (4)(e)','SA-17 (4)'), (23719,'003333','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (e)','SA-17 (4)(e)','SA-17 (4)'), (23720,'003334','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (a)','SA-17 (5)(a)','SA-17 (5)'), (23721,'003335','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (a)','SA-17 (5)(a)','SA-17 (5)'), (23722,'003336','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (a)','SA-17 (5)(a)','SA-17 (5)'), (23723,'003337','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (b)','SA-17 (5)(b)','SA-17 (5)'), (23724,'003338','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (b)','SA-17 (5)(b)','SA-17 (5)'), (23725,'003339','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (b)','SA-17 (5)(b)','SA-17 (5)'), (23726,'003340','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (6)','SA-17 (6)','SA-17 (6)'), (23727,'003341','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (6)','SA-17 (6)','SA-17 (6)'), (23728,'003342','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (6)','SA-17 (6)','SA-17 (6)'), (23729,'003343','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (7)','SA-17 (7)','SA-17 (7)'), (23730,'003344','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (7)','SA-17 (7)','SA-17 (7)'), (23731,'003345','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (7)','SA-17 (7)','SA-17 (7)'), (23732,'003346','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18','SA-18','SA-18'), (23733,'003347','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (1)','SA-18 (1)','SA-18 (1)'), (23734,'003348','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (1)','SA-18 (1)','SA-18 (1)'), (23735,'003349','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (1)','SA-18 (1)','SA-18 (1)'), (23736,'003350','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (1)','SA-18 (1)','SA-18 (1)'), (23737,'003351','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (1)','SA-18 (1)','SA-18 (1)'), (23738,'003352','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (2)','SA-18 (2)','SA-18 (2)'), (23739,'003353','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (2)','SA-18 (2)','SA-18 (2)'), (23740,'003354','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (2)','SA-18 (2)','SA-18 (2)'), (23741,'003355','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-18 (2)','SA-18 (2)','SA-18 (2)'), (23742,'003356','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23743,'003357','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23744,'003358','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23745,'003359','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23746,'003360','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23747,'003361','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23748,'003362','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23749,'003363','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 a','SA-19a.','SA-19'), (23750,'003364','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 b','SA-19b.','SA-19'), (23751,'003365','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 b','SA-19b.','SA-19'), (23752,'003366','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 b','SA-19b.','SA-19'), (23753,'003367','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (1)','SA-19 (1)','SA-19 (1)'), (23754,'003368','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (1)','SA-19 (1)','SA-19 (1)'), (23755,'003369','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (2)','SA-19 (2)','SA-19 (2)'), (23756,'003370','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (2)','SA-19 (2)','SA-19 (2)'), (23757,'003371','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (2)','SA-19 (2)','SA-19 (2)'), (23758,'003388','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (4)','SA-19 (4)','SA-19 (4)'), (23759,'003389','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (4)','SA-19 (4)','SA-19 (4)'), (23760,'003390','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (3)','SA-19 (3)','SA-19 (3)'), (23761,'003391','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-19 (3)','SA-19 (3)','SA-19 (3)'), (23762,'003386','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-20','SA-20','SA-20'), (23763,'003387','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-20','SA-20','SA-20'), (23764,'003377','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 (1)','SA-21 (1)','SA-21 (1)'), (23765,'003378','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 (1)','SA-21 (1)','SA-21 (1)'), (23766,'003379','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 (1)','SA-21 (1)','SA-21 (1)'), (23767,'003380','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 (1)','SA-21 (1)','SA-21 (1)'), (23768,'003381','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 b','SA-21b.','SA-21'), (23769,'003382','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 b','SA-21b.','SA-21'), (23770,'003383','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 a','SA-21a.','SA-21'), (23771,'003384','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 ','SA-21','SA-21'), (23772,'003385','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 a','SA-21a.','SA-21'), (23773,'002377','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1','SC-1a.1.','SC-1'), (23774,'002378','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1','SC-1a.1.','SC-1'), (23775,'002379','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a.2.','SC-1'), (23776,'002380','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a.2.','SC-1'), (23777,'002381','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (3)','SC-3 (3)','SC-3 (3)'), (23778,'002382','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (4)','SC-3 (4)','SC-3 (4)'), (23779,'002383','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-4 (2)','SC-4 (2)','SC-4 (2)'), (23780,'002384','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-4 (2)','SC-4 (2)','SC-4 (2)'), (23781,'002385','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5','SC-5','SC-5'), (23782,'002386','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5','SC-5','SC-5'), (23783,'002387','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (1)','SC-5 (1)','SC-5 (1)'), (23784,'002388','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (a)','SC-5 (3)(a)','SC-5 (3)'), (23785,'002389','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (a)','SC-5 (3)(a)','SC-5 (3)'), (23786,'002390','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (b)','SC-5 (3)(b)','SC-5 (3)'), (23787,'002391','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (b)','SC-5 (3)(b)','SC-5 (3)'), (23788,'002392','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-6','SC-6','SC-6'), (23789,'002393','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-6','SC-6','SC-6'), (23790,'002394','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-6','SC-6','SC-6'), (23791,'002395','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 b','SC-7b.','SC-7'), (23792,'002396','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (c)','SC-7 (4)(c)','SC-7 (4)'), (23793,'002397','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (7)','SC-7 (7)','SC-7 (7)'), (23794,'002398','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (9) (a)','SC-7 (9)(a)','SC-7 (9)'), (23795,'002399','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (9) (a)','SC-7 (9)(a)','SC-7 (9)'), (23796,'002400','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (9) (b)','SC-7 (9)(b)','SC-7 (9)'), (23797,'002401','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (11)','SC-7 (11)','SC-7 (11)'), (23798,'002402','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (11)','SC-7 (11)','SC-7 (11)'), (23799,'002403','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (11)','SC-7 (11)','SC-7 (11)'), (23800,'002404','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (12)','SC-7 (12)','SC-7 (12)'), (23801,'002405','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (12)','SC-7 (12)','SC-7 (12)'), (23802,'002406','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (12)','SC-7 (12)','SC-7 (12)'), (23803,'002407','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (14)','SC-7 (14)','SC-7 (14)'), (23804,'002408','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (19)','SC-7 (19)','SC-7 (19)'), (23805,'002409','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (19)','SC-7 (19)','SC-7 (19)'), (23806,'002410','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (20)','SC-7 (20)','SC-7 (20)'), (23807,'002411','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (20)','SC-7 (20)','SC-7 (20)'), (23808,'002412','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7 (21)','SC-7 (21)'), (23809,'002413','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7 (21)','SC-7 (21)'), (23810,'002414','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7 (21)','SC-7 (21)'), (23811,'002415','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7 (21)','SC-7 (21)'), (23812,'002416','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (22)','SC-7 (22)','SC-7 (22)'), (23813,'002417','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (23)','SC-7 (23)','SC-7 (23)'), (23814,'002418','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8','SC-8','SC-8'), (23815,'002419','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (1)','SC-8 (1)','SC-8 (1)'), (23816,'002420','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (2)','SC-8 (2)','SC-8 (2)'), (23817,'002421','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (1)','SC-8 (1)','SC-8 (1)'), (23818,'002422','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (2)','SC-8 (2)','SC-8 (2)'), (23819,'002423','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (3)','SC-8 (3)','SC-8 (3)'), (23820,'002424','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (4)','SC-8 (4)','SC-8 (4)'), (23821,'002425','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (4)','SC-8 (4)','SC-8 (4)'), (23822,'002427','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (3)','SC-8 (3)','SC-8 (3)'), (23823,'002426','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 (1)','SC-11 (1)','SC-11 (1)'), (23824,'002428','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23825,'002429','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23826,'002430','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23827,'002431','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23828,'002432','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23829,'002433','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23830,'002434','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23831,'002435','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23832,'002436','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23833,'002437','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23834,'002438','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23835,'002439','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23836,'002440','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23837,'002441','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23838,'002442','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), (23839,'002443','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (2)','SC-12 (2)','SC-12 (2)'), (23840,'002444','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (2)','SC-12 (2)','SC-12 (2)'), (23841,'002445','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (2)','SC-12 (2)','SC-12 (2)'), (23842,'002446','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12 (3)','SC-12 (3)'), (23843,'002447','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12 (3)','SC-12 (3)'), (23844,'002448','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12 (3)','SC-12 (3)'), (23845,'002449','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-13','SC-13','SC-13'), (23846,'002450','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-13','SC-13','SC-13'), (23847,'002451','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (3)','SC-15 (3)','SC-15 (3)'), (23848,'002452','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (4)','SC-15 (4)','SC-15 (4)'), (23849,'002453','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (4)','SC-15 (4)','SC-15 (4)'), (23850,'002454','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), (23851,'002455','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), (23852,'002456','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-17','SC-17','SC-17'), (23853,'002457','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18 (1)','SC-18 (1)'), (23854,'002458','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18 (1)','SC-18 (1)'), (23855,'002459','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (3)','SC-18 (3)','SC-18 (3)'), (23856,'002460','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18 (4)','SC-18 (4)'), (23857,'002461','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (5)','SC-18 (5)','SC-18 (5)'), (23858,'002462','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 a','SC-20a.','SC-20'), (23859,'002463','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 (2)','SC-20 (2)','SC-20 (2)'), (23860,'002464','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 (2)','SC-20 (2)','SC-20 (2)'), (23861,'002465','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), (23862,'002466','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), (23863,'002467','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), (23864,'002468','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), (23865,'002469','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (5)','SC-23 (5)','SC-23 (5)'), (23866,'002470','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (5)','SC-23 (5)','SC-23 (5)'), (23867,'002471','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-25','SC-25','SC-25'), (23868,'002472','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28','SC-28','SC-28'), (23869,'002473','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28 (1)','SC-28 (1)'), (23870,'002474','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28 (1)','SC-28 (1)'), (23871,'002475','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28 (1)','SC-28 (1)'), (23872,'002476','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28 (1)','SC-28 (1)'), (23873,'002477','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (2)','SC-28 (2)','SC-28 (2)'), (23874,'002478','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (2)','SC-28 (2)','SC-28 (2)'), (23875,'002479','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (2)','SC-28 (2)','SC-28 (2)'), (23876,'002480','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-29','SC-29','SC-29'), (23877,'002481','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-29 (1)','SC-29 (1)','SC-29 (1)'), (23878,'002482','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), (23879,'002483','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), (23880,'002484','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), (23881,'002485','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), (23882,'002486','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (2)','SC-30 (2)','SC-30 (2)'), (23883,'002487','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (2)','SC-30 (2)','SC-30 (2)'), (23884,'002488','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (2)','SC-30 (2)','SC-30 (2)'), (23885,'002489','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30 (3)','SC-30 (3)'), (23886,'002490','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30 (3)','SC-30 (3)'), (23887,'002491','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30 (3)','SC-30 (3)'), (23888,'002492','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30 (3)','SC-30 (3)'), (23889,'002493','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (4)','SC-30 (4)','SC-30 (4)'), (23890,'002494','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (4)','SC-30 (4)','SC-30 (4)'), (23891,'002495','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (5)','SC-30 (5)','SC-30 (5)'), (23892,'002496','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (5)','SC-30 (5)','SC-30 (5)'), (23893,'002497','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (5)','SC-30 (5)','SC-30 (5)'), (23894,'002498','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 a','SC-31a.','SC-31'), (23895,'002499','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 b','SC-31b.','SC-31'), (23896,'002500','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (2)','SC-31 (2)','SC-31 (2)'), (23897,'002501','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (2)','SC-31 (2)','SC-31 (2)'), (23898,'002502','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (3)','SC-31 (3)','SC-31 (3)'), (23899,'002503','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (3)','SC-31 (3)','SC-31 (3)'), (23900,'002504','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-32','SC-32','SC-32'), (23901,'002505','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-32','SC-32','SC-32'), (23902,'002506','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-32','SC-32','SC-32'), (23903,'002507','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (2)','SC-34 (2)','SC-34 (2)'), (23904,'002508','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (3) (a)','SC-34 (3)(a)','SC-34 (3)'), (23905,'002509','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (3) (a)','SC-34 (3)(a)','SC-34 (3)'), (23906,'002510','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (3) (b)','SC-34 (3)(b)','SC-34 (3)'), (23907,'002511','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (3) (b)','SC-34 (3)(b)','SC-34 (3)'), (23908,'002512','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (3) (b)','SC-34 (3)(b)','SC-34 (3)'), (23909,'002513','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), (23910,'002514','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), (23911,'002515','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), (23912,'002516','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), (23913,'002517','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1)','SC-36 (1)','SC-36 (1)'), (23914,'002518','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1)','SC-36 (1)','SC-36 (1)'), (23915,'002519','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1)','SC-36 (1)','SC-36 (1)'), (23916,'002520','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1)','SC-36 (1)','SC-36 (1)'), (23917,'002521','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), (23918,'002522','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), (23919,'002523','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), (23920,'002524','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), (23921,'002525','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37 (1)','SC-37 (1)'), (23922,'002526','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37 (1)','SC-37 (1)'), (23923,'002527','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37 (1)','SC-37 (1)'), (23924,'003599','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37 (1)','SC-37 (1)'), (23925,'002528','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-38','SC-38','SC-38'), (23926,'002529','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-38','SC-38','SC-38'), (23927,'002530','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-39','SC-39','SC-39'), (23928,'002531','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-39 (1)','SC-39 (1)','SC-39 (1)'), (23929,'002532','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-39 (2)','SC-39 (2)','SC-39 (2)'), (23930,'002533','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-39 (2)','SC-39 (2)','SC-39 (2)'), (23931,'002534','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40','SC-40','SC-40'), (23932,'002535','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40','SC-40','SC-40'), (23933,'002536','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40','SC-40','SC-40'), (23934,'002537','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (1)','SC-40 (1)','SC-40 (1)'), (23935,'002538','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (1)','SC-40 (1)','SC-40 (1)'), (23936,'002539','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (2)','SC-40 (2)','SC-40 (2)'), (23937,'002540','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (2)','SC-40 (2)','SC-40 (2)'), (23938,'002541','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (3)','SC-40 (3)','SC-40 (3)'), (23939,'002542','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (4)','SC-40 (4)','SC-40 (4)'), (23940,'002543','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (4)','SC-40 (4)','SC-40 (4)'), (23941,'002544','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-41','SC-41','SC-41'), (23942,'002545','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-41','SC-41','SC-41'), (23943,'002546','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-41','SC-41','SC-41'), (23944,'002547','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 a','SC-42a.','SC-42'), (23945,'002548','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 a','SC-42a.','SC-42'), (23946,'002549','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 b','SC-42b.','SC-42'), (23947,'002550','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 b','SC-42b.','SC-42'), (23948,'002551','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (1)','SC-42 (1)','SC-42 (1)'), (23949,'002552','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (1)','SC-42 (1)','SC-42 (1)'), (23950,'002553','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (2)','SC-42 (2)','SC-42 (2)'), (23951,'002554','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (2)','SC-42 (2)','SC-42 (2)'), (23952,'002555','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (2)','SC-42 (2)','SC-42 (2)'), (23953,'002556','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (3)','SC-42 (3)','SC-42 (3)'), (23954,'002557','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (3)','SC-42 (3)','SC-42 (3)'), (23955,'002558','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (3)','SC-42 (3)','SC-42 (3)'), (23956,'002559','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 a','SC-43a.','SC-43'), (23957,'002560','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 a','SC-43a.','SC-43'), (23958,'002561','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 b','SC-43b.','SC-43'), (23959,'002562','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 b','SC-43b.','SC-43'), (23960,'002563','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 b','SC-43b.','SC-43'), (23961,'002564','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-44','SC-44','SC-44'), (23962,'002565','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SC-44','SC-44','SC-44'), (23963,'002601','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a','SI-1a.','SI-1'), (23964,'002602','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b.','SI-2'), (23965,'002603','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b.','SI-2'), (23966,'002604','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c.','SI-2'), (23967,'002605','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c.','SI-2'), (23968,'002606','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c.','SI-2'), (23969,'002607','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c.','SI-2'), (23970,'002608','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (3) (b)','SI-2 (3)(b)','SI-2 (3)'), (23971,'002609','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2 (5)','SI-2 (5)'), (23972,'002610','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2 (5)','SI-2 (5)'), (23973,'002611','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2 (5)','SI-2 (5)'), (23974,'002612','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2 (5)','SI-2 (5)'), (23975,'002613','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2 (5)','SI-2 (5)'), (23976,'002614','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2 (5)','SI-2 (5)'), (23977,'002615','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2 (6)','SI-2 (6)'), (23978,'002616','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2 (6)','SI-2 (6)'), (23979,'002617','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2 (6)','SI-2 (6)'), (23980,'002618','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2 (6)','SI-2 (6)'), (23981,'002619','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 a','SI-3a.','SI-3'), (23982,'002620','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 a','SI-3a.','SI-3'), (23983,'002621','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 a','SI-3a.','SI-3'), (23984,'002622','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 a','SI-3a.','SI-3'), (23985,'002623','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c.1.','SI-3'), (23986,'002624','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c.1.','SI-3'), (23987,'002625','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (b)','SI-3 (6)(b)','SI-3 (6)'), (23988,'002626','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (b)','SI-3 (6)(b)','SI-3 (6)'), (23989,'002627','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (7)','SI-3 (7)','SI-3 (7)'), (23990,'002628','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8)','SI-3 (8)','SI-3 (8)'), (23991,'002629','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8)','SI-3 (8)','SI-3 (8)'), (23992,'002630','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8)','SI-3 (8)','SI-3 (8)'), (23993,'002631','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8)','SI-3 (8)','SI-3 (8)'), (23994,'002632','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (9)','SI-3 (9)','SI-3 (9)'), (23995,'002633','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (9)','SI-3 (9)','SI-3 (9)'), (23996,'002634','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3 (10)(a)','SI-3 (10)'), (23997,'002635','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3 (10)(a)','SI-3 (10)'), (23998,'002636','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3 (10)(a)','SI-3 (10)'), (23999,'002637','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (9)','SI-3 (9)','SI-3 (9)'), (24000,'002638','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3 (10)(a)','SI-3 (10)'), (24001,'002639','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (b)','SI-3 (10)(b)','SI-3 (10)'), (24002,'002640','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (b)','SI-3 (10)(b)','SI-3 (10)'), (24003,'002641','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 1','SI-4a.1.','SI-4'), (24004,'002642','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 2','SI-4a.2.','SI-4'), (24005,'002643','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 2','SI-4a.2.','SI-4'), (24006,'002644','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 2','SI-4a.2.','SI-4'), (24007,'002645','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 b','SI-4b.','SI-4'), (24008,'002646','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 b','SI-4b.','SI-4'), (24009,'002647','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 d','SI-4d.','SI-4'), (24010,'002648','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 d','SI-4d.','SI-4'), (24011,'002649','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 d','SI-4d.','SI-4'), (24012,'002650','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g.','SI-4'), (24013,'002651','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g.','SI-4'), (24014,'002652','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g.','SI-4'), (24015,'002653','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4','SI-4','SI-4'), (24016,'002654','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g.','SI-4'), (24017,'002655','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (1)','SI-4 (1)','SI-4 (1)'), (24018,'002656','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (1)','SI-4 (1)','SI-4 (1)'), (24019,'002657','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (3)','SI-4 (3)','SI-4 (3)'), (24020,'002658','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (3)','SI-4 (3)','SI-4 (3)'), (24021,'002659','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4)','SI-4 (4)','SI-4 (4)'), (24022,'002660','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4)','SI-4 (4)','SI-4 (4)'), (24023,'002661','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4)','SI-4 (4)','SI-4 (4)'), (24024,'002662','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4)','SI-4 (4)','SI-4 (4)'), (24025,'002663','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (5)','SI-4 (5)','SI-4 (5)'), (24026,'002664','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (5)','SI-4 (5)','SI-4 (5)'), (24027,'002665','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4 (10)','SI-4 (10)'), (24028,'002666','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4 (10)','SI-4 (10)'), (24029,'002667','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4 (10)','SI-4 (10)'), (24030,'002668','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (11)','SI-4 (11)','SI-4 (11)'), (24031,'002669','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (13) (c)','SI-4 (13)(c)','SI-4 (13)'), (24032,'002670','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (18)','SI-4 (18)','SI-4 (18)'), (24033,'002671','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (18)','SI-4 (18)','SI-4 (18)'), (24034,'002672','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (18)','SI-4 (18)','SI-4 (18)'), (24035,'002673','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (19)','SI-4 (19)','SI-4 (19)'), (24036,'002674','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (19)','SI-4 (19)','SI-4 (19)'), (24037,'002675','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (19)','SI-4 (19)','SI-4 (19)'), (24038,'002676','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (20)','SI-4 (20)','SI-4 (20)'), (24039,'002677','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (20)','SI-4 (20)','SI-4 (20)'), (24040,'002678','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (21)','SI-4 (21)','SI-4 (21)'), (24041,'002679','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (21)','SI-4 (21)','SI-4 (21)'), (24042,'002680','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (21)','SI-4 (21)','SI-4 (21)'), (24043,'002681','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22)','SI-4 (22)','SI-4 (22)'), (24044,'002682','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22)','SI-4 (22)','SI-4 (22)'), (24045,'002683','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22)','SI-4 (22)','SI-4 (22)'), (24046,'002684','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22)','SI-4 (22)','SI-4 (22)'), (24047,'002685','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (23)','SI-4 (23)','SI-4 (23)'), (24048,'002686','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (23)','SI-4 (23)','SI-4 (23)'), (24049,'002687','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (23)','SI-4 (23)','SI-4 (23)'), (24050,'002688','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4 (24)','SI-4 (24)'), (24051,'002689','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4 (24)','SI-4 (24)'), (24052,'002690','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4 (24)','SI-4 (24)'), (24053,'002691','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4 (24)','SI-4 (24)'), (24054,'002692','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 a','SI-5a.','SI-5'), (24055,'002693','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c.','SI-5'), (24056,'002694','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c.','SI-5'), (24057,'002695','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 a','SI-6a.','SI-6'), (24058,'002696','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 a','SI-6a.','SI-6'), (24059,'002697','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b.','SI-6'), (24060,'002698','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b.','SI-6'), (24061,'002699','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b.','SI-6'), (24062,'002700','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 c','SI-6c.','SI-6'), (24063,'002701','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 d','SI-6d.','SI-6'), (24064,'002702','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 d','SI-6d.','SI-6'), (24065,'002703','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7','SI-7','SI-7'), (24066,'002704','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7','SI-7','SI-7'), (24067,'002705','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24068,'002706','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24069,'002707','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24070,'002708','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24071,'002709','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24072,'002710','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24073,'002711','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24074,'002712','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7 (1)','SI-7 (1)'), (24075,'002713','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (2)','SI-7 (2)','SI-7 (2)'), (24076,'002714','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (5)','SI-7 (5)','SI-7 (5)'), (24077,'002715','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (5)','SI-7 (5)','SI-7 (5)'), (24078,'002716','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (6)','SI-7 (6)','SI-7 (6)'), (24079,'002717','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (6)','SI-7 (6)','SI-7 (6)'), (24080,'002718','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (6)','SI-7 (6)','SI-7 (6)'), (24081,'002719','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (7)','SI-7 (7)','SI-7 (7)'), (24082,'002720','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (7)','SI-7 (7)','SI-7 (7)'), (24083,'002721','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7 (8)','SI-7 (8)'), (24084,'002722','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7 (8)','SI-7 (8)'), (24085,'002723','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7 (8)','SI-7 (8)'), (24086,'002724','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7 (8)','SI-7 (8)'), (24087,'002725','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (9)','SI-7 (9)','SI-7 (9)'), (24088,'002726','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (9)','SI-7 (9)','SI-7 (9)'), (24089,'002727','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (10)','SI-7 (10)','SI-7 (10)'), (24090,'002728','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (10)','SI-7 (10)','SI-7 (10)'), (24091,'002729','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (10)','SI-7 (10)','SI-7 (10)'), (24092,'002730','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (11)','SI-7 (11)','SI-7 (11)'), (24093,'002731','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (11)','SI-7 (11)','SI-7 (11)'), (24094,'002732','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (12)','SI-7 (12)','SI-7 (12)'), (24095,'002733','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (12)','SI-7 (12)','SI-7 (12)'), (24096,'002734','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (13)','SI-7 (13)','SI-7 (13)'), (24097,'002735','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (13)','SI-7 (13)','SI-7 (13)'), (24098,'002736','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (13)','SI-7 (13)','SI-7 (13)'), (24099,'002737','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (14) (a)','SI-7 (14)(a)','SI-7 (14)'), (24100,'002738','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (14) (b)','SI-7 (14)(b)','SI-7 (14)'), (24101,'002739','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (15)','SI-7 (15)','SI-7 (15)'), (24102,'002740','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (15)','SI-7 (15)','SI-7 (15)'), (24103,'002741','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 a','SI-8a.','SI-8'), (24104,'002742','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 a','SI-8a.','SI-8'), (24105,'002743','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 (3)','SI-8 (3)','SI-8 (3)'), (24106,'002744','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10','SI-10','SI-10'), (24107,'002745','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (a)','SI-10 (1)(a)','SI-10 (1)'), (24108,'002746','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (a)','SI-10 (1)(a)','SI-10 (1)'), (24109,'002747','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (b)','SI-10 (1)(b)','SI-10 (1)'), (24110,'002748','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (b)','SI-10 (1)(b)','SI-10 (1)'), (24111,'002749','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (c)','SI-10 (1)(c)','SI-10 (1)'), (24112,'002750','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10 (2)','SI-10 (2)'), (24113,'002751','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10 (2)','SI-10 (2)'), (24114,'002752','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10 (2)','SI-10 (2)'), (24115,'002753','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10 (2)','SI-10 (2)'), (24116,'002754','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (3)','SI-10 (3)','SI-10 (3)'), (24117,'002755','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (4)','SI-10 (4)','SI-10 (4)'), (24118,'002756','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (5)','SI-10 (5)','SI-10 (5)'), (24119,'002757','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (5)','SI-10 (5)','SI-10 (5)'), (24120,'002758','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (5)','SI-10 (5)','SI-10 (5)'), (24121,'002759','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-11 b','SI-11b.','SI-11'), (24122,'002760','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 a','SI-13a.','SI-13'), (24123,'002761','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 a','SI-13a.','SI-13'), (24124,'002762','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 b','SI-13b.','SI-13'), (24125,'002763','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 b','SI-13b.','SI-13'), (24126,'002764','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), (24127,'002765','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), (24128,'002766','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), (24129,'002767','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), (24130,'002768','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (1)','SI-14 (1)','SI-14 (1)'), (24131,'002769','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (1)','SI-14 (1)','SI-14 (1)'), (24132,'002770','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-15','SI-15','SI-15'), (24133,'002771','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-15','SI-15','SI-15'), (24134,'002772','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-15','SI-15','SI-15'), (24135,'002984','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 3','PM-1a.3.','PM-1'), (24136,'002985','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 1','PM-1a.1.','PM-1'), (24137,'002986','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 2','PM-1a.2.','PM-1'), (24138,'002987','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 3','PM-1a.3.','PM-1'), (24139,'002988','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 4','PM-1a.4.','PM-1'), (24140,'002989','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 d','PM-1d.','PM-1'), (24141,'002990','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 d','PM-1d.','PM-1'), (24142,'002991','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a.1.','PM-4'), (24143,'002992','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 3','PM-4a.3.','PM-4'), (24144,'002993','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 b','PM-4b.','PM-4'), (24145,'002994','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 c','PM-9c.','PM-9'), (24146,'002995','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 c','PM-9c.','PM-9'), (24147,'002996','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-12','PM-12','PM-12'), (24148,'002997','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-13','PM-13','PM-13'), (24149,'002998','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a.1.','PM-14'), (24150,'002999','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a.1.','PM-14'), (24151,'003000','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a.1.','PM-14'), (24152,'003001','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a.1.','PM-14'), (24153,'003002','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a.1.','PM-14'), (24154,'003003','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a.1.','PM-14'), (24155,'003004','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a.2.','PM-14'), (24156,'003005','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a.2.','PM-14'), (24157,'003006','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a.2.','PM-14'), (24158,'003007','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 b','PM-14b.','PM-14'), (24159,'003008','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 b','PM-14b.','PM-14'), (24160,'003009','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 b','PM-14b.','PM-14'), (24161,'003010','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 a','PM-15a.','PM-15'), (24162,'003011','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 b','PM-15b.','PM-15'), (24163,'003012','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 c','PM-15c.','PM-15'), (24164,'003013','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PM-16','PM-16','PM-16'), (24165,'003392','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-1','AP-1','AP-1'), (24166,'003393','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-1','AP-1','AP-1'), (24167,'003394','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-1','AP-1','AP-1'), (24168,'003395','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-1','AP-1','AP-1'), (24169,'003396','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-2','AP-2','AP-2'), (24170,'003398','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-2','AP-2','AP-2'), (24171,'003399','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-2','AP-2','AP-2'), (24172,'003400','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AP-2','AP-2','AP-2'), (24173,'003397','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 a','AR-1a.','AR-1'), (24174,'003401','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 b','AR-1b.','AR-1'), (24175,'003402','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 c','AR-1c.','AR-1'), (24176,'003403','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 c','AR-1c.','AR-1'), (24177,'003404','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 c','AR-1c.','AR-1'), (24178,'003405','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 c','AR-1c.','AR-1'), (24179,'003406','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 d','AR-1d.','AR-1'), (24180,'003407','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 e','AR-1e.','AR-1'), (24181,'003408','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 e','AR-1e.','AR-1'), (24182,'003409','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 e','AR-1e.','AR-1'), (24183,'003410','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 e','AR-1e.','AR-1'), (24184,'003411','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 e','AR-1e.','AR-1'), (24185,'003412','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 e','AR-1e.','AR-1'), (24186,'003413','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 f','AR-1f.','AR-1'), (24187,'003414','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 f','AR-1f.','AR-1'), (24188,'003415','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 f','AR-1f.','AR-1'), (24189,'003416','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-1 f','AR-1f.','AR-1'), (24190,'003417','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24191,'003418','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24192,'003419','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24193,'003420','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24194,'003421','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24195,'003422','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24196,'003423','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24197,'003424','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 a','AR-2a.','AR-2'), (24198,'003425','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-2 b','AR-2b.','AR-2'), (24199,'003426','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 a','AR-3a.','AR-3'), (24200,'003427','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 a','AR-3a.','AR-3'), (24201,'003428','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 a','AR-3a.','AR-3'), (24202,'003429','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 a','AR-3a.','AR-3'), (24203,'003430','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 a','AR-3a.','AR-3'), (24204,'003431','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 a','AR-3a.','AR-3'), (24205,'003432','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 b','AR-3b.','AR-3'), (24206,'003433','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-3 b','AR-3b.','AR-3'), (24207,'003434','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-4','AR-4','AR-4'), (24208,'003435','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-4','AR-4','AR-4'), (24209,'003436','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-4','AR-4','AR-4'), (24210,'003437','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-4','AR-4','AR-4'), (24211,'003438','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-4','AR-4','AR-4'), (24212,'003439','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-4','AR-4','AR-4'), (24213,'003440','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 a','AR-5a.','AR-5'), (24214,'003441','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 a','AR-5a.','AR-5'), (24215,'003442','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 a','AR-5a.','AR-5'), (24216,'003443','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 b','AR-5b.','AR-5'), (24217,'003444','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 b','AR-5b.','AR-5'), (24218,'003445','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 b','AR-5b.','AR-5'), (24219,'003446','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 b','AR-5b.','AR-5'), (24220,'003447','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 c','AR-5c.','AR-5'), (24221,'003448','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-5 c','AR-5c.','AR-5'), (24222,'003449','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-6','AR-6','AR-6'), (24223,'003450','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-6','AR-6','AR-6'), (24224,'003451','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-6','AR-6','AR-6'), (24225,'003452','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-6','AR-6','AR-6'), (24226,'003453','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-6','AR-6','AR-6'), (24227,'003454','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-6','AR-6','AR-6'), (24228,'003455','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-7','AR-7','AR-7'), (24229,'003456','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 a (1)','AR-8a(1)','AR-8'), (24230,'003457','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 a (1)','AR-8a(1)','AR-8'), (24231,'003458','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 a (1)','AR-8a(1)','AR-8'), (24232,'003459','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 a (1)','AR-8a(1)','AR-8'), (24233,'003460','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 a (2)','AR-8a(2)','AR-8'), (24234,'003461','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 b','AR-8b.','AR-8'), (24235,'003462','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AR-8 c','AR-8c.','AR-8'), (24236,'003463','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 a','DI-1a.','DI-1'), (24237,'003464','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 a','DI-1a.','DI-1'), (24238,'003465','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 a','DI-1a.','DI-1'), (24239,'003466','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 a','DI-1a.','DI-1'), (24240,'003467','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 b','DI-1b.','DI-1'), (24241,'003468','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 c','DI-1c.','DI-1'), (24242,'003469','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 c','DI-1c.','DI-1'), (24243,'003470','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24244,'003471','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24245,'003472','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24246,'003473','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24247,'003474','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24248,'003475','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24249,'003476','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24250,'003477','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 d','DI-1d.','DI-1'), (24251,'003478','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 (1)','DI-1 (1)','DI-1 (1)'), (24252,'003479','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 (2)','DI-1 (2)','DI-1 (2)'), (24253,'003480','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-1 (2)','DI-1 (2)','DI-1 (2)'), (24254,'003481','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-2 a','DI-2a.','DI-2'), (24255,'003482','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-2 b','DI-2b.','DI-2'), (24256,'003483','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-2 b','DI-2b.','DI-2'), (24257,'003484','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-2 b','DI-2b.','DI-2'), (24258,'003485','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DI-2 (1)','DI-2 (1)','DI-2 (1)'), (24259,'003486','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 a','DM-1a.','DM-1'), (24260,'003487','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 b','DM-1b.','DM-1'), (24261,'003488','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 b','DM-1b.','DM-1'), (24262,'003489','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 c','DM-1c.','DM-1'), (24263,'003490','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 c','DM-1c.','DM-1'), (24264,'003491','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 c','DM-1c.','DM-1'), (24265,'003492','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 c','DM-1c.','DM-1'), (24266,'003493','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 c','DM-1c.','DM-1'), (24267,'003494','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 c','DM-1c.','DM-1'), (24268,'003495','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 (1)','DM-1 (1)','DM-1 (1)'), (24269,'003496','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-1 (1)','DM-1 (1)','DM-1 (1)'), (24270,'003497','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 a','DM-2a.','DM-2'), (24271,'003498','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 a','DM-2a.','DM-2'), (24272,'003499','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 b','DM-2b.','DM-2'), (24273,'003500','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 b','DM-2b.','DM-2'), (24274,'003501','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 c','DM-2c.','DM-2'), (24275,'003502','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 c','DM-2c.','DM-2'), (24276,'003503','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 (1)','DM-2 (1)','DM-2 (1)'), (24277,'003504','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 (1)','DM-2 (1)','DM-2 (1)'), (24278,'003505','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 (1)','DM-2 (1)','DM-2 (1)'), (24279,'003506','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-2 (1)','DM-2 (1)','DM-2 (1)'), (24280,'003507','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 a','DM-3a.','DM-3'), (24281,'003508','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 a','DM-3a.','DM-3'), (24282,'003509','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 a','DM-3a.','DM-3'), (24283,'003510','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 a','DM-3a.','DM-3'), (24284,'003511','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 a','DM-3a.','DM-3'), (24285,'003512','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 a','DM-3a.','DM-3'), (24286,'003513','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 b','DM-3b.','DM-3'), (24287,'003514','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 b','DM-3b.','DM-3'), (24288,'003515','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 b','DM-3b.','DM-3'), (24289,'003516','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 (1)','DM-3 (1)','DM-3 (1)'), (24290,'003517','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 (1)','DM-3 (1)','DM-3 (1)'), (24291,'003518','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','DM-3 (1)','DM-3 (1)','DM-3 (1)'), (24292,'003519','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 a','IP-1a.','IP-1'), (24293,'003520','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 a','IP-1a.','IP-1'), (24294,'003521','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 a','IP-1a.','IP-1'), (24295,'003522','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 a','IP-1a.','IP-1'), (24296,'003523','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 b','IP-1b.','IP-1'), (24297,'003524','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 b','IP-1b.','IP-1'), (24298,'003525','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 b','IP-1b.','IP-1'), (24299,'003526','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 b','IP-1b.','IP-1'), (24300,'003527','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 c','IP-1c.','IP-1'), (24301,'003528','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 d','IP-1d.','IP-1'), (24302,'003529','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 d','IP-1d.','IP-1'), (24303,'003530','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-1 (1)','IP-1 (1)','IP-1 (1)'), (24304,'003531','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-2 a','IP-2a.','IP-2'), (24305,'003532','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-2 b','IP-2b.','IP-2'), (24306,'003533','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-2 b','IP-2b.','IP-2'), (24307,'003534','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-2 c','IP-2c.','IP-2'), (24308,'003535','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-2 d','IP-2d.','IP-2'), (24309,'003536','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-2 d','IP-2d.','IP-2'), (24310,'003537','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-3 a','IP-3a.','IP-3'), (24311,'003538','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-3 b','IP-3b.','IP-3'), (24312,'003539','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-3 b','IP-3b.','IP-3'), (24313,'003540','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-4','IP-4','IP-4'), (24314,'003541','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-4','IP-4','IP-4'), (24315,'003542','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-4 (1)','IP-4 (1)','IP-4 (1)'), (24316,'003543','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','IP-4 (1)','IP-4 (1)','IP-4 (1)'), (24317,'003544','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24318,'003545','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24319,'003546','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24320,'003547','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24321,'003548','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24322,'003549','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24323,'003550','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 a','SE-1a.','SE-1'), (24324,'003551','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 b','SE-1b.','SE-1'), (24325,'003552','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-1 b','SE-1b.','SE-1'), (24326,'003553','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-2 a','SE-2a.','SE-2'), (24327,'003554','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-2 a','SE-2a.','SE-2'), (24328,'003555','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SE-2 b','SE-2b.','SE-2'), (24329,'003556','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24330,'003557','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24331,'003558','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24332,'003559','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24333,'003560','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24334,'003561','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24335,'003562','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24336,'003563','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24337,'003564','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24338,'003565','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24339,'003566','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24340,'003567','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 a','TR-1a.','TR-1'), (24341,'003568','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24342,'003569','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24343,'003570','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24344,'003571','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24345,'003572','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24346,'003573','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24347,'003574','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24348,'003575','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24349,'003576','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24350,'003577','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 b','TR-1b.','TR-1'), (24351,'003578','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 c','TR-1c.','TR-1'), (24352,'003579','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 c','TR-1c.','TR-1'), (24353,'003580','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-1 (1)','TR-1 (1)','TR-1 (1)'), (24354,'003581','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-2 a','TR-2a.','TR-2'), (24355,'003582','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-2 b','TR-2b.','TR-2'), (24356,'003583','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-2 c','TR-2c.','TR-2'), (24357,'003584','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-2 (1)','TR-2 (1)','TR-2 (1)'), (24358,'003585','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-3 a','TR-3a.','TR-3'), (24359,'003586','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-3 a','TR-3a.','TR-3'), (24360,'003587','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','TR-3 b','TR-3b.','TR-3'), (24361,'003588','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-1','UL-1','UL-1'), (24362,'003589','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 a','UL-2a.','UL-2'), (24363,'003590','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 b','UL-2b.','UL-2'), (24364,'003591','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 b','UL-2b.','UL-2'), (24365,'003592','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 c','UL-2c.','UL-2'), (24366,'003593','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 c','UL-2c.','UL-2'), (24367,'003594','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 c','UL-2c.','UL-2'), (24368,'003595','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 c','UL-2c.','UL-2'), (24369,'003596','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 d','UL-2d.','UL-2'), (24370,'003597','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','UL-2 d','UL-2d.','UL-2'), (24371,'002254','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-12','AC-12','AC-12'), (24372,'002360','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-12','AC-12','AC-12'), (24373,'002361','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-12','AC-12','AC-12'), (24374,'002362','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (1)','AC-12 (1)','AC-12 (1)'), (24375,'002363','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (1)','AC-12 (1)','AC-12 (1)'), (24376,'002364','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (1)','AC-12 (1)','AC-12 (1)'), (24377,'002979','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-20 a','PE-20a.','PE-20'), (24378,'002980','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-20 a','PE-20a.','PE-20'), (24379,'002981','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-20 a','PE-20a.','PE-20'), (24380,'002982','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-20 a','PE-20a.','PE-20'), (24381,'002983','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PE-20 b','PE-20b.','PE-20'), (24382,'003372','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 (1)','SA-22 (1)','SA-22 (1)'), (24383,'003373','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 (1)','SA-22 (1)','SA-22 (1)'), (24384,'003374','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 b','SA-22b.','SA-22'), (24385,'003375','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 b','SA-22b.','SA-22'), (24386,'003376','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 a','SA-22a.','SA-22'), (24387,'002773','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-17','SI-17','SI-17'), (24388,'002774','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-17','SI-17','SI-17'), (24389,'002775','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-17','SI-17','SI-17'), (24390,'002823','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-16','SI-16','SI-16'), (24391,'002824','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','SI-16','SI-16','SI-16'), (24392,'003117','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-9','PL-9','PL-9'), (24393,'003118','NIST','NIST SP 800-53 Revision 4','4','http://csrc.nist.gov/publications/PubsSPs.html','PL-9','PL-9','PL-9'); /*!40000 ALTER TABLE `cci_reference_map` ENABLE KEYS */; UNLOCK TABLES; /*!40101 SET SQL_MODE=@OLD_SQL_MODE */; /*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */; /*!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS */; /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */; -- Dump completed on 2020-05-20 20:35:08 ================================================ FILE: api/source/service/migrations/sql/0001/down/10-collection-created.sql ================================================ ALTER TABLE `collection` DROP COLUMN `created`; ================================================ FILE: api/source/service/migrations/sql/0001/up/10-collection-created.sql ================================================ ALTER TABLE `collection` ADD COLUMN `created` DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP AFTER `metadata`; ================================================ FILE: api/source/service/migrations/sql/0002/down/10-collection-description.sql ================================================ ALTER TABLE `collection` DROP COLUMN `description`; ================================================ FILE: api/source/service/migrations/sql/0002/up/10-collection-description.sql ================================================ ALTER TABLE `collection` ADD COLUMN `description` VARCHAR(255) NULL AFTER `name`; ================================================ FILE: api/source/service/migrations/sql/0003/up/10-asset-mac-fqdn.sql ================================================ ALTER TABLE `asset` ADD COLUMN `mac` VARCHAR(17) NULL AFTER `ip`; ALTER TABLE `asset` ADD COLUMN `fqdn` VARCHAR(255) NULL AFTER `name`; ================================================ FILE: api/source/service/migrations/sql/0004/up/10-user-data.sql ================================================ ALTER TABLE `user_data` DROP COLUMN `display`, DROP COLUMN `email`, DROP COLUMN `globalAccess`, DROP COLUMN `canCreateCollection`, DROP COLUMN `canAdmin`, DROP COLUMN `metadata`, DROP COLUMN `disabled`; ALTER TABLE `user_data` ADD COLUMN `lastClaims` json DEFAULT ('{}'); ================================================ FILE: api/source/service/migrations/sql/0005/down/10-v-current-rev.sql ================================================ ALTER VIEW `v_current_rev` AS select `rr`.`revId` AS `revId`,`rr`.`benchmarkId` AS `benchmarkId`,`rr`.`version` AS `version`,`rr`.`release` AS `release`,`rr`.`benchmarkDate` AS `benchmarkDate`,`rr`.`benchmarkDateSql` AS `benchmarkDateSql`,`rr`.`status` AS `status`,`rr`.`statusDate` AS `statusDate`,`rr`.`description` AS `description`,`rr`.`active` AS `active`,`rr`.`groupCount` AS `groupCount`,`rr`.`ruleCount` AS `ruleCount`,`rr`.`checkCount` AS `checkCount`,`rr`.`fixCount` AS `fixCount`,`rr`.`ovalCount` AS `ovalCount` from (select `r`.`revId` AS `revId`,`r`.`benchmarkId` AS `benchmarkId`,`r`.`version` AS `version`,`r`.`release` AS `release`,`r`.`benchmarkDate` AS `benchmarkDate`,`r`.`benchmarkDateSql` AS `benchmarkDateSql`,`r`.`status` AS `status`,`r`.`statusDate` AS `statusDate`,`r`.`description` AS `description`,`r`.`active` AS `active`,`r`.`groupCount` AS `groupCount`,`r`.`ruleCount` AS `ruleCount`,`r`.`checkCount` AS `checkCount`,`r`.`fixCount` AS `fixCount`,(select count(`rule_oval_map`.`roId`) from `rule_oval_map` where (`rule_oval_map`.`benchmarkId` = `r`.`benchmarkId`)) AS `ovalCount`,row_number() OVER (PARTITION BY `r`.`benchmarkId` ORDER BY (`r`.`version` + 0) desc,(`r`.`release` + 0) desc ) AS `rn` from `revision` `r` where (`r`.`status` = 'accepted')) `rr` where (`rr`.`rn` = 1); DELETE from current_rev; INSERT INTO current_rev ( revId, benchmarkId, `version`, `release`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, ruleCount, checkCount, fixCount, ovalCount) SELECT revId, benchmarkId, `version`, `release`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, ruleCount, checkCount, fixCount, ovalCount FROM v_current_rev; DELETE FROM current_group_rule; INSERT INTO current_group_rule (groupId, ruleId, benchmarkId) SELECT rg.groupId, rgr.ruleId, cr.benchmarkId from current_rev cr left join rev_group_map rg on rg.revId=cr.revId left join rev_group_rule_map rgr on rgr.rgId=rg.rgId order by rg.groupId,rgr.ruleId,cr.benchmarkId; ================================================ FILE: api/source/service/migrations/sql/0005/up/10-v-current-rev.sql ================================================ ALTER VIEW `v_current_rev` AS select `rr`.`revId` AS `revId`, `rr`.`benchmarkId` AS `benchmarkId`, `rr`.`version` AS `version`, `rr`.`release` AS `release`, `rr`.`benchmarkDate` AS `benchmarkDate`, `rr`.`benchmarkDateSql` AS `benchmarkDateSql`, `rr`.`status` AS `status`, `rr`.`statusDate` AS `statusDate`, `rr`.`description` AS `description`, `rr`.`active` AS `active`, `rr`.`groupCount` AS `groupCount`, `rr`.`ruleCount` AS `ruleCount`, `rr`.`checkCount` AS `checkCount`, `rr`.`fixCount` AS `fixCount`, `rr`.`ovalCount` AS `ovalCount` from ( select `r`.`revId` AS `revId`, `r`.`benchmarkId` AS `benchmarkId`, `r`.`version` AS `version`, `r`.`release` AS `release`, `r`.`benchmarkDate` AS `benchmarkDate`, `r`.`benchmarkDateSql` AS `benchmarkDateSql`, `r`.`status` AS `status`, `r`.`statusDate` AS `statusDate`, `r`.`description` AS `description`, `r`.`active` AS `active`, `r`.`groupCount` AS `groupCount`, `r`.`ruleCount` AS `ruleCount`, `r`.`checkCount` AS `checkCount`, `r`.`fixCount` AS `fixCount`, (select count(`rule_oval_map`.`roId`) from `rule_oval_map` where (`rule_oval_map`.`benchmarkId` = `r`.`benchmarkId`)) AS `ovalCount`, row_number() OVER ( PARTITION BY `r`.`benchmarkId` ORDER BY FIELD(status, 'draft', 'accepted') desc, (`r`.`version` + 0) desc, (`r`.`release` + 0) desc ) AS `rn` from `revision` `r`) `rr` where (`rr`.`rn` = 1); DELETE from current_rev; INSERT INTO current_rev ( revId, benchmarkId, `version`, `release`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, ruleCount, checkCount, fixCount, ovalCount) SELECT revId, benchmarkId, `version`, `release`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, ruleCount, checkCount, fixCount, ovalCount FROM v_current_rev; DELETE FROM current_group_rule; INSERT INTO current_group_rule (groupId, ruleId, benchmarkId) SELECT rg.groupId, rgr.ruleId, cr.benchmarkId from current_rev cr left join rev_group_map rg on rg.revId=cr.revId left join rev_group_rule_map rgr on rgr.rgId=rg.rgId order by rg.groupId,rgr.ruleId,cr.benchmarkId; ================================================ FILE: api/source/service/migrations/sql/0006/up/10-v-current-rev.sql ================================================ ALTER VIEW `v_current_rev` AS select `rr`.`revId` AS `revId`, `rr`.`benchmarkId` AS `benchmarkId`, `rr`.`version` AS `version`, `rr`.`release` AS `release`, `rr`.`benchmarkDate` AS `benchmarkDate`, `rr`.`benchmarkDateSql` AS `benchmarkDateSql`, `rr`.`status` AS `status`, `rr`.`statusDate` AS `statusDate`, `rr`.`description` AS `description`, `rr`.`active` AS `active`, `rr`.`groupCount` AS `groupCount`, `rr`.`ruleCount` AS `ruleCount`, `rr`.`checkCount` AS `checkCount`, `rr`.`fixCount` AS `fixCount`, `rr`.`ovalCount` AS `ovalCount` from ( select `r`.`revId` AS `revId`, `r`.`benchmarkId` AS `benchmarkId`, `r`.`version` AS `version`, `r`.`release` AS `release`, `r`.`benchmarkDate` AS `benchmarkDate`, `r`.`benchmarkDateSql` AS `benchmarkDateSql`, `r`.`status` AS `status`, `r`.`statusDate` AS `statusDate`, `r`.`description` AS `description`, `r`.`active` AS `active`, `r`.`groupCount` AS `groupCount`, `r`.`ruleCount` AS `ruleCount`, `r`.`checkCount` AS `checkCount`, `r`.`fixCount` AS `fixCount`, (select count(distinct `ro`.`ruleId`) from `rule_oval_map` `ro` where `ro`.`ruleId` IN ( SELECT `rgr`.`ruleId` from `rev_group_map` `rg` inner join `rev_group_rule_map` `rgr` on `rg`.`rgId` = `rgr`.`rgId` WHERE `rg`.`revId` = `r`.`revId`)) AS `ovalCount`, row_number() OVER ( PARTITION BY `r`.`benchmarkId` ORDER BY FIELD(status, 'draft', 'accepted') desc, (`r`.`version` + 0) desc, (`r`.`release` + 0) desc ) AS `rn` from `revision` `r`) `rr` where (`rr`.`rn` = 1); DELETE from current_rev; INSERT INTO current_rev ( revId, benchmarkId, `version`, `release`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, ruleCount, checkCount, fixCount, ovalCount) SELECT revId, benchmarkId, `version`, `release`, benchmarkDate, benchmarkDateSql, status, statusDate, description, active, groupCount, ruleCount, checkCount, fixCount, ovalCount FROM v_current_rev; DELETE FROM current_group_rule; INSERT INTO current_group_rule (groupId, ruleId, benchmarkId) SELECT rg.groupId, rgr.ruleId, cr.benchmarkId from current_rev cr left join rev_group_map rg on rg.revId=cr.revId left join rev_group_rule_map rgr on rgr.rgId=rg.rgId order by rg.groupId,rgr.ruleId,cr.benchmarkId; ================================================ FILE: api/source/service/migrations/sql/current/10-stigman-tables.sql ================================================ -- MySQL dump 10.13 Distrib 8.0.44, for Linux (x86_64) -- -- Host: 127.0.0.1 Database: stigman -- ------------------------------------------------------ -- Server version 8.0.44 /*!40101 SET @OLD_COLLATION_CONNECTION=@@COLLATION_CONNECTION */; /*!40103 SET @OLD_TIME_ZONE=@@TIME_ZONE */; /*!40103 SET TIME_ZONE='+00:00' */; /*!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 */; /*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */; /*!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' */; /*!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 */; -- -- Table structure for table `_migrations` -- DROP TABLE IF EXISTS `_migrations`; CREATE TABLE `_migrations` ( `createdAt` datetime DEFAULT CURRENT_TIMESTAMP, `updatedAt` datetime DEFAULT NULL ON UPDATE CURRENT_TIMESTAMP, `name` varchar(128) DEFAULT NULL ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `asset` -- DROP TABLE IF EXISTS `asset`; CREATE TABLE `asset` ( `assetId` int NOT NULL AUTO_INCREMENT, `name` varchar(255) NOT NULL, `fqdn` varchar(255) DEFAULT NULL, `collectionId` int NOT NULL, `ip` varchar(255) DEFAULT NULL, `mac` varchar(255) DEFAULT NULL, `description` varchar(255) DEFAULT NULL, `noncomputing` bit(1) NOT NULL DEFAULT b'0', `metadata` json NOT NULL, `state` enum('enabled','disabled') NOT NULL, `stateDate` datetime DEFAULT NULL, `stateUserId` int DEFAULT NULL, `isEnabled` tinyint GENERATED ALWAYS AS ((case when (`state` = _utf8mb4'enabled') then 1 else NULL end)) STORED, PRIMARY KEY (`assetId`), UNIQUE KEY `INDEX_NAME_COLLECTION_ENABLED` (`name`,`collectionId`,`isEnabled`), KEY `INDEX_COMPUTING` (`noncomputing`), KEY `INDEX_COLLECTIONID` (`collectionId`), KEY `idx_state` (`state`), CONSTRAINT `FK_ASSET_2` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `cci` -- DROP TABLE IF EXISTS `cci`; CREATE TABLE `cci` ( `cci` varchar(20) NOT NULL, `status` varchar(20) NOT NULL, `publishdate` date NOT NULL, `contributor` varchar(255) NOT NULL, `type` varchar(20) NOT NULL, `definition` text NOT NULL, `apAcronym` varchar(20) DEFAULT NULL, `implementation` text, `assessmentProcedure` text, PRIMARY KEY (`cci`), KEY `ap` (`apAcronym`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `cci_reference_map` -- DROP TABLE IF EXISTS `cci_reference_map`; CREATE TABLE `cci_reference_map` ( `cciRefId` int NOT NULL AUTO_INCREMENT, `cci` varchar(20) NOT NULL, `creator` varchar(255) NOT NULL, `title` varchar(255) NOT NULL, `version` varchar(255) NOT NULL, `location` varchar(255) NOT NULL, `indexDisa` varchar(255) NOT NULL, `textRefNist` varchar(255) NOT NULL, `parentControl` varchar(255) NOT NULL, PRIMARY KEY (`cciRefId`), KEY `cci` (`cci`), KEY `textRefNist` (`textRefNist`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `check_content` -- DROP TABLE IF EXISTS `check_content`; CREATE TABLE `check_content` ( `ccId` int NOT NULL AUTO_INCREMENT, `digest` binary(32) GENERATED ALWAYS AS (unhex(sha2(`content`,256))) STORED, `content` text NOT NULL, PRIMARY KEY (`ccId`), UNIQUE KEY `digest_UNIQUE` (`digest`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection` -- DROP TABLE IF EXISTS `collection`; CREATE TABLE `collection` ( `collectionId` int NOT NULL AUTO_INCREMENT, `name` varchar(45) NOT NULL, `description` varchar(255) DEFAULT NULL, `settings` json NOT NULL, `metadata` json NOT NULL, `created` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP, `state` enum('enabled','disabled','cloning') NOT NULL, `createdUserId` int DEFAULT NULL, `stateDate` datetime DEFAULT NULL, `stateUserId` int DEFAULT NULL, `isNameUnavailable` tinyint GENERATED ALWAYS AS ((case when ((`state` = _utf8mb4'cloning') or (`state` = _utf8mb4'enabled')) then 1 else NULL end)) VIRTUAL, `isEnabled` tinyint GENERATED ALWAYS AS ((case when (`state` = _utf8mb4'enabled') then 1 else NULL end)) STORED, PRIMARY KEY (`collectionId`), UNIQUE KEY `index2` (`name`,`isEnabled`), UNIQUE KEY `index3` (`name`,`isNameUnavailable`), KEY `idx_state` (`state`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection_grant` -- DROP TABLE IF EXISTS `collection_grant`; CREATE TABLE `collection_grant` ( `grantId` int NOT NULL AUTO_INCREMENT, `collectionId` int NOT NULL, `userId` int DEFAULT NULL, `userGroupId` int DEFAULT NULL, `roleId` int NOT NULL, PRIMARY KEY (`grantId`), UNIQUE KEY `INDEX_USER` (`userId`,`collectionId`), UNIQUE KEY `INDEX_USER_GROUP` (`userGroupId`,`collectionId`), KEY `INDEX_COLLECTION` (`collectionId`,`roleId`), CONSTRAINT `fk_collection_grant_1` FOREIGN KEY (`userId`) REFERENCES `user_data` (`userId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_2` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_3` FOREIGN KEY (`userGroupId`) REFERENCES `user_group` (`userGroupId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection_grant_acl` -- DROP TABLE IF EXISTS `collection_grant_acl`; CREATE TABLE `collection_grant_acl` ( `cgAclId` int NOT NULL AUTO_INCREMENT, `grantId` int NOT NULL, `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs DEFAULT NULL, `assetId` int DEFAULT NULL, `clId` int DEFAULT NULL, `access` enum('none','r','rw') NOT NULL, `modifiedUserId` int DEFAULT NULL, `modifiedDate` datetime DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, PRIMARY KEY (`cgAclId`), KEY `fk_collection_grant_acl_1` (`grantId`), KEY `fk_collection_grant_acl_2` (`assetId`,`benchmarkId`), KEY `fk_collection_grant_acl_3` (`benchmarkId`,`assetId`), KEY `fk_collection_grant_acl_4` (`clId`,`benchmarkId`), CONSTRAINT `fk_collection_grant_acl_1` FOREIGN KEY (`grantId`) REFERENCES `collection_grant` (`grantId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_acl_2` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_acl_3` FOREIGN KEY (`benchmarkId`) REFERENCES `stig` (`benchmarkId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_acl_4` FOREIGN KEY (`clId`) REFERENCES `collection_label` (`clId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_grant_acl_5` FOREIGN KEY (`benchmarkId`, `assetId`) REFERENCES `stig_asset_map` (`benchmarkId`, `assetId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection_label` -- DROP TABLE IF EXISTS `collection_label`; CREATE TABLE `collection_label` ( `clId` int NOT NULL AUTO_INCREMENT, `collectionId` int NOT NULL, `name` varchar(36) NOT NULL, `description` varchar(45) DEFAULT NULL, `color` varchar(6) NOT NULL, `uuid` binary(16) NOT NULL, PRIMARY KEY (`clId`), UNIQUE KEY `colname` (`collectionId`,`name`), KEY `index4` (`uuid`), CONSTRAINT `fk_collection_label_1` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection_label_asset_map` -- DROP TABLE IF EXISTS `collection_label_asset_map`; CREATE TABLE `collection_label_asset_map` ( `claId` int NOT NULL AUTO_INCREMENT, `assetId` int NOT NULL, `clId` int NOT NULL, PRIMARY KEY (`claId`), UNIQUE KEY `index4` (`assetId`,`clId`), KEY `fk_collection_label_asset_map_2` (`clId`), CONSTRAINT `fk_collection_label_asset_map_1` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_collection_label_asset_map_2` FOREIGN KEY (`clId`) REFERENCES `collection_label` (`clId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `collection_rev_map` -- DROP TABLE IF EXISTS `collection_rev_map`; CREATE TABLE `collection_rev_map` ( `crId` int NOT NULL AUTO_INCREMENT, `collectionId` int NOT NULL, `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs DEFAULT NULL, `revId` varchar(255) NOT NULL, PRIMARY KEY (`crId`), UNIQUE KEY `index_collection_benchmark` (`collectionId`,`benchmarkId`), KEY `index_revId` (`revId`), CONSTRAINT `fk_collection_rev_map_1` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `config` -- DROP TABLE IF EXISTS `config`; CREATE TABLE `config` ( `key` varchar(45) NOT NULL, `value` varchar(255) NOT NULL, PRIMARY KEY (`key`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `current_rev` -- DROP TABLE IF EXISTS `current_rev`; CREATE TABLE `current_rev` ( `revId` varchar(255) NOT NULL, `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs DEFAULT NULL, `version` int NOT NULL, `release` varchar(45) NOT NULL, `benchmarkDate` varchar(45) DEFAULT NULL, `benchmarkDateSql` date DEFAULT NULL, `status` varchar(45) DEFAULT NULL, `statusDate` varchar(45) DEFAULT NULL, `marking` varchar(10) DEFAULT NULL, `description` varchar(4000) DEFAULT NULL, `active` tinyint DEFAULT NULL, `groupCount` int NOT NULL DEFAULT '0', `ruleCount` int GENERATED ALWAYS AS (((`highCount` + `mediumCount`) + `lowCount`)) STORED, `checkCount` int NOT NULL DEFAULT '0', `fixCount` int NOT NULL DEFAULT '0', `lowCount` int NOT NULL DEFAULT '0', `mediumCount` int NOT NULL DEFAULT '0', `highCount` int NOT NULL DEFAULT '0', PRIMARY KEY (`revId`), UNIQUE KEY `index2` (`benchmarkId`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `default_rev` -- DROP TABLE IF EXISTS `default_rev`; CREATE TABLE `default_rev` ( `vdId` int NOT NULL AUTO_INCREMENT, `collectionId` int NOT NULL, `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs NOT NULL, `revId` varchar(255) NOT NULL, `revisionPinned` tinyint NOT NULL, PRIMARY KEY (`vdId`), UNIQUE KEY `index2` (`collectionId`,`benchmarkId`), KEY `index3` (`benchmarkId`), KEY `index4` (`revId`), CONSTRAINT `fk_default_rev_2` FOREIGN KEY (`collectionId`) REFERENCES `collection` (`collectionId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Temporary view structure for view `enabled_asset` -- DROP TABLE IF EXISTS `enabled_asset`; /*!50001 DROP VIEW IF EXISTS `enabled_asset`*/; /*!50001 CREATE VIEW `enabled_asset` AS SELECT 1 AS `assetId`, 1 AS `name`, 1 AS `fqdn`, 1 AS `collectionId`, 1 AS `ip`, 1 AS `mac`, 1 AS `description`, 1 AS `noncomputing`, 1 AS `metadata`, 1 AS `state`, 1 AS `stateDate`, 1 AS `stateUserId`, 1 AS `isEnabled`*/; -- -- Temporary view structure for view `enabled_collection` -- DROP TABLE IF EXISTS `enabled_collection`; /*!50001 DROP VIEW IF EXISTS `enabled_collection`*/; /*!50001 CREATE VIEW `enabled_collection` AS SELECT 1 AS `collectionId`, 1 AS `name`, 1 AS `description`, 1 AS `settings`, 1 AS `metadata`, 1 AS `created`, 1 AS `state`, 1 AS `createdUserId`, 1 AS `stateDate`, 1 AS `stateUserId`, 1 AS `isNameUnavailable`, 1 AS `isEnabled`*/; -- -- Table structure for table `fix_text` -- DROP TABLE IF EXISTS `fix_text`; CREATE TABLE `fix_text` ( `ftId` int NOT NULL AUTO_INCREMENT, `digest` binary(32) GENERATED ALWAYS AS (unhex(sha2(`text`,256))) STORED, `text` text NOT NULL, PRIMARY KEY (`ftId`), UNIQUE KEY `digest_UNIQUE` (`digest`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `job` -- DROP TABLE IF EXISTS `job`; CREATE TABLE `job` ( `jobId` int NOT NULL AUTO_INCREMENT, `name` varchar(45) NOT NULL, `description` varchar(255) DEFAULT NULL, `createdBy` int DEFAULT NULL, `updatedBy` int DEFAULT NULL, `created` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), `updated` timestamp(3) NULL DEFAULT NULL ON UPDATE CURRENT_TIMESTAMP(3), PRIMARY KEY (`jobId`), UNIQUE KEY `idx_job_name` (`name`), KEY `fk_job_updatedBy` (`updatedBy`), KEY `fk_job_createdBy` (`createdBy`), CONSTRAINT `fk_job_createdBy` FOREIGN KEY (`createdBy`) REFERENCES `user_data` (`userId`) ON DELETE RESTRICT, CONSTRAINT `fk_job_updatedBy` FOREIGN KEY (`updatedBy`) REFERENCES `user_data` (`userId`) ON DELETE RESTRICT ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `job_run` -- DROP TABLE IF EXISTS `job_run`; CREATE TABLE `job_run` ( `jrId` int NOT NULL AUTO_INCREMENT, `jobId` int NOT NULL, `runId` binary(16) NOT NULL, `state` varchar(255) DEFAULT NULL, `created` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), `updated` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3) ON UPDATE CURRENT_TIMESTAMP(3), PRIMARY KEY (`jrId`), UNIQUE KEY `idx_job_run_runId` (`runId`), KEY `fk_job_run_jobId` (`jobId`), CONSTRAINT `fk_job_run_jobId` FOREIGN KEY (`jobId`) REFERENCES `job` (`jobId`) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `job_task_map` -- DROP TABLE IF EXISTS `job_task_map`; CREATE TABLE `job_task_map` ( `jtId` int NOT NULL AUTO_INCREMENT, `jobId` int NOT NULL, `taskId` int NOT NULL, `created` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), `updated` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3) ON UPDATE CURRENT_TIMESTAMP(3), PRIMARY KEY (`jtId`), KEY `fk_job_task_jobId` (`jobId`), KEY `fk_job_task_taskId` (`taskId`), CONSTRAINT `fk_job_task_jobId` FOREIGN KEY (`jobId`) REFERENCES `job` (`jobId`) ON DELETE CASCADE, CONSTRAINT `fk_job_task_taskId` FOREIGN KEY (`taskId`) REFERENCES `task` (`taskId`) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `result` -- DROP TABLE IF EXISTS `result`; CREATE TABLE `result` ( `resultId` int NOT NULL AUTO_INCREMENT, `api` varchar(32) NOT NULL, `ckl` varchar(32) NOT NULL, `cklb` varchar(32) NOT NULL, `abbr` varchar(2) NOT NULL, `en` varchar(64) NOT NULL, PRIMARY KEY (`resultId`), UNIQUE KEY `RESULT_API` (`api`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_group_rule_cci_map` -- DROP TABLE IF EXISTS `rev_group_rule_cci_map`; CREATE TABLE `rev_group_rule_cci_map` ( `rgrccId` int NOT NULL AUTO_INCREMENT, `rgrId` int NOT NULL, `cci` varchar(20) NOT NULL, PRIMARY KEY (`rgrccId`), UNIQUE KEY `index2` (`rgrId`,`cci`), KEY `index3` (`cci`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rev_group_rule_map` -- DROP TABLE IF EXISTS `rev_group_rule_map`; CREATE TABLE `rev_group_rule_map` ( `rgrId` int NOT NULL AUTO_INCREMENT, `revId` varchar(255) DEFAULT NULL, `groupId` varchar(45) DEFAULT NULL, `groupTitle` varchar(255) DEFAULT NULL, `groupSeverity` varchar(45) DEFAULT NULL, `ruleId` varchar(255) DEFAULT NULL, `version` varchar(45) DEFAULT NULL, `title` varchar(1000) DEFAULT NULL, `severity` varchar(45) DEFAULT NULL, `weight` varchar(45) DEFAULT NULL, `vulnDiscussion` text, `falsePositives` text, `falseNegatives` text, `documentable` varchar(45) DEFAULT NULL, `mitigations` text, `severityOverrideGuidance` text, `potentialImpacts` text, `thirdPartyTools` text, `mitigationControl` text, `responsibility` varchar(255) DEFAULT NULL, `iaControls` varchar(255) DEFAULT NULL, `checkSystem` varchar(255) DEFAULT NULL, `checkDigest` binary(32) DEFAULT NULL, `fixref` varchar(255) DEFAULT NULL, `fixDigest` binary(32) DEFAULT NULL, PRIMARY KEY (`rgrId`), UNIQUE KEY `rev_group_rule_UNIQUE` (`revId`,`groupId`,`ruleId`), KEY `idx_rgrm_ruleId` (`ruleId`), KEY `index5` (`fixDigest`), KEY `idx_version_check_digest` (`version`,`checkDigest`), CONSTRAINT `fk_rev_group_rule_map_1` FOREIGN KEY (`revId`) REFERENCES `revision` (`revId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `review` -- DROP TABLE IF EXISTS `review`; CREATE TABLE `review` ( `reviewId` int NOT NULL AUTO_INCREMENT, `assetId` int DEFAULT NULL, `ruleId` varchar(45) DEFAULT NULL, `resultId` int DEFAULT NULL, `detail` mediumtext, `comment` mediumtext, `autoResult` bit(1) DEFAULT b'0', `ts` datetime NOT NULL, `userId` int DEFAULT NULL, `statusId` int NOT NULL, `statusText` varchar(512) DEFAULT NULL, `statusUserId` int DEFAULT NULL, `statusTs` datetime DEFAULT NULL, `metadata` json NOT NULL DEFAULT (json_object()), `touchTs` datetime GENERATED ALWAYS AS (greatest(`ts`,`statusTs`)) STORED, `resultEngine` json DEFAULT NULL, `reProduct` varchar(255) GENERATED ALWAYS AS (json_unquote(json_extract(`resultEngine`,_utf8mb4'$.product'))) VIRTUAL, `reType` varchar(255) GENERATED ALWAYS AS (json_unquote(json_extract(`resultEngine`,_utf8mb4'$.type'))) VIRTUAL, `reAuthority` varchar(255) GENERATED ALWAYS AS (json_unquote(json_extract(`resultEngine`,_utf8mb4'$.overrides[0].authority'))) VIRTUAL, `version` varchar(45) NOT NULL, `checkDigest` binary(32) NOT NULL, PRIMARY KEY (`reviewId`), KEY `INDEX_RESULTID` (`resultId`), KEY `INDEX_RULEID` (`ruleId`), KEY `INDEX_STATUSID` (`statusId`), KEY `idx_vcd` (`version`,`checkDigest`), KEY `idx_asset_vcd` (`assetId`,`version`,`checkDigest`), KEY `idx_reProduct` (`reProduct`), KEY `idx_reType` (`reType`), KEY `idx_reAuthority` (`reAuthority`), CONSTRAINT `FK_REVIEWS_1` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `review_history` -- DROP TABLE IF EXISTS `review_history`; CREATE TABLE `review_history` ( `historyId` bigint unsigned NOT NULL AUTO_INCREMENT, `reviewId` int NOT NULL, `resultId` int NOT NULL, `detail` mediumtext, `comment` mediumtext, `autoResult` bit(1) DEFAULT NULL, `ts` datetime NOT NULL, `userId` int DEFAULT NULL, `statusId` int NOT NULL, `statusText` varchar(512) DEFAULT NULL, `statusUserId` int DEFAULT NULL, `statusTs` datetime DEFAULT NULL, `touchTs` datetime DEFAULT NULL, `resultEngine` json DEFAULT NULL, `reProduct` varchar(255) GENERATED ALWAYS AS (json_unquote(json_extract(`resultEngine`,_utf8mb4'$.product'))) VIRTUAL, `reType` varchar(255) GENERATED ALWAYS AS (json_unquote(json_extract(`resultEngine`,_utf8mb4'$.type'))) VIRTUAL, `reAuthority` varchar(255) GENERATED ALWAYS AS (json_unquote(json_extract(`resultEngine`,_utf8mb4'$.overrides[0].authority'))) VIRTUAL, `ruleId` varchar(45) DEFAULT NULL, PRIMARY KEY (`historyId`), KEY `index_reviewId` (`reviewId`), KEY `idx_reProduct` (`reProduct`), KEY `idx_reType` (`reType`), KEY `idx_reAuthority` (`reAuthority`), CONSTRAINT `fk_review_history_1` FOREIGN KEY (`reviewId`) REFERENCES `review` (`reviewId`) ON DELETE CASCADE ON UPDATE RESTRICT ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `revision` -- DROP TABLE IF EXISTS `revision`; CREATE TABLE `revision` ( `revId` varchar(255) NOT NULL, `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs DEFAULT NULL, `version` int NOT NULL, `release` varchar(45) NOT NULL, `revisionStr` varchar(45) GENERATED ALWAYS AS (concat(_utf8mb4'V',`version`,_utf8mb4'R',`release`)) VIRTUAL, `benchmarkDate` varchar(45) DEFAULT NULL, `benchmarkDateSql` date DEFAULT NULL, `status` varchar(45) DEFAULT NULL, `statusDate` varchar(45) DEFAULT NULL, `marking` varchar(10) DEFAULT NULL, `description` varchar(4000) DEFAULT NULL, `active` tinyint DEFAULT '1', `groupCount` int NOT NULL DEFAULT '0', `ruleCount` int GENERATED ALWAYS AS (((`highCount` + `mediumCount`) + `lowCount`)) STORED, `checkCount` int NOT NULL DEFAULT '0', `fixCount` int NOT NULL DEFAULT '0', `lowCount` int NOT NULL DEFAULT '0', `mediumCount` int NOT NULL DEFAULT '0', `highCount` int NOT NULL DEFAULT '0', PRIMARY KEY (`revId`), UNIQUE KEY `uidx_revision_benchmarkId_version_release` (`benchmarkId`,`version`,`release`), KEY `idx_revision_benchmark_revisionStr` (`benchmarkId`,`revisionStr`), CONSTRAINT `FK_REVISION_1` FOREIGN KEY (`benchmarkId`) REFERENCES `stig` (`benchmarkId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `rule_version_check_digest` -- DROP TABLE IF EXISTS `rule_version_check_digest`; CREATE TABLE `rule_version_check_digest` ( `ruleId` varchar(255) NOT NULL, `version` varchar(45) NOT NULL, `checkDigest` binary(32) NOT NULL, PRIMARY KEY (`ruleId`), KEY `index_vcd` (`version`,`checkDigest`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `severity_cat_map` -- DROP TABLE IF EXISTS `severity_cat_map`; CREATE TABLE `severity_cat_map` ( `id` int NOT NULL AUTO_INCREMENT, `severity` varchar(45) NOT NULL, `cat` int NOT NULL, `roman` varchar(45) NOT NULL, PRIMARY KEY (`id`), KEY `idx_scm_severity` (`severity`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `status` -- DROP TABLE IF EXISTS `status`; CREATE TABLE `status` ( `statusId` int NOT NULL, `api` varchar(16) NOT NULL, `en` varchar(16) NOT NULL, PRIMARY KEY (`statusId`), UNIQUE KEY `IDX_API` (`api`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `stig` -- DROP TABLE IF EXISTS `stig`; CREATE TABLE `stig` ( `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs NOT NULL, `title` varchar(255) NOT NULL, PRIMARY KEY (`benchmarkId`), KEY `idx_benchmark_title` (`title`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `stig_asset_map` -- DROP TABLE IF EXISTS `stig_asset_map`; CREATE TABLE `stig_asset_map` ( `saId` int NOT NULL AUTO_INCREMENT, `benchmarkId` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_0900_as_cs DEFAULT NULL, `assetId` int NOT NULL, `userIds` json DEFAULT NULL, `minTs` datetime DEFAULT NULL, `maxTs` datetime DEFAULT NULL, `saved` int DEFAULT NULL, `savedResultEngine` int DEFAULT NULL, `submitted` int DEFAULT NULL, `submittedResultEngine` int DEFAULT NULL, `rejected` int DEFAULT NULL, `rejectedResultEngine` int DEFAULT NULL, `accepted` int DEFAULT NULL, `acceptedResultEngine` int DEFAULT NULL, `highCount` int DEFAULT NULL, `mediumCount` int DEFAULT NULL, `lowCount` int DEFAULT NULL, `notchecked` int DEFAULT NULL, `notcheckedResultEngine` int DEFAULT NULL, `notapplicable` int DEFAULT NULL, `notapplicableResultEngine` int DEFAULT NULL, `pass` int DEFAULT NULL, `passResultEngine` int DEFAULT NULL, `fail` int DEFAULT NULL, `failResultEngine` int DEFAULT NULL, `unknown` int DEFAULT NULL, `unknownResultEngine` int DEFAULT NULL, `error` int DEFAULT NULL, `errorResultEngine` int DEFAULT NULL, `notselected` int DEFAULT NULL, `notselectedResultEngine` int DEFAULT NULL, `informational` int DEFAULT NULL, `informationalResultEngine` int DEFAULT NULL, `fixed` int DEFAULT NULL, `fixedResultEngine` int DEFAULT NULL, `maxTouchTs` datetime DEFAULT NULL, `assessedHighCount` int DEFAULT NULL, `assessedMediumCount` int DEFAULT NULL, `assessedLowCount` int DEFAULT NULL, PRIMARY KEY (`saId`), UNIQUE KEY `IDX_BAID` (`benchmarkId`,`assetId`), KEY `IDX_ASSETID` (`assetId`), CONSTRAINT `FK_STIG_ASSET_MAP_1` FOREIGN KEY (`assetId`) REFERENCES `asset` (`assetId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `FK_STIG_ASSET_MAP_2` FOREIGN KEY (`benchmarkId`) REFERENCES `stig` (`benchmarkId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `task` -- DROP TABLE IF EXISTS `task`; CREATE TABLE `task` ( `taskId` int NOT NULL AUTO_INCREMENT, `name` varchar(45) NOT NULL, `description` varchar(255) DEFAULT NULL, `command` varchar(255) NOT NULL, PRIMARY KEY (`taskId`), UNIQUE KEY `idx_task_name` (`name`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `task_output` -- DROP TABLE IF EXISTS `task_output`; CREATE TABLE `task_output` ( `seq` int NOT NULL AUTO_INCREMENT, `ts` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3), `runId` binary(16) DEFAULT NULL, `taskId` int DEFAULT NULL, `type` varchar(45) NOT NULL, `message` varchar(255) NOT NULL, PRIMARY KEY (`seq`), KEY `fk_task_output_runId` (`runId`), KEY `fk_task_output_taskId` (`taskId`), CONSTRAINT `fk_task_output_runId` FOREIGN KEY (`runId`) REFERENCES `job_run` (`runId`) ON DELETE CASCADE, CONSTRAINT `fk_task_output_taskId` FOREIGN KEY (`taskId`) REFERENCES `task` (`taskId`) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `user_data` -- DROP TABLE IF EXISTS `user_data`; CREATE TABLE `user_data` ( `userId` int NOT NULL AUTO_INCREMENT, `username` varchar(255) NOT NULL, `created` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP, `lastAccess` int DEFAULT NULL, `lastClaims` json DEFAULT (_utf8mb4'{}'), `status` enum('available','unavailable') NOT NULL DEFAULT 'available', `statusDate` datetime NOT NULL DEFAULT (`created`), `statusUser` int DEFAULT NULL, `webPreferences` json NOT NULL DEFAULT (_utf8mb4'{"darkMode": true, "lastWhatsNew": "2000-01-01"}'), PRIMARY KEY (`userId`), UNIQUE KEY `INDEX_username` (`username`), KEY `INDEX_status` (`status`) ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `user_group` -- DROP TABLE IF EXISTS `user_group`; CREATE TABLE `user_group` ( `userGroupId` int NOT NULL AUTO_INCREMENT, `name` varchar(255) NOT NULL, `description` varchar(255) DEFAULT NULL, `createdUserId` int NOT NULL, `createdDate` datetime DEFAULT CURRENT_TIMESTAMP, `modifiedUserId` int NOT NULL, `modifiedDate` datetime DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, PRIMARY KEY (`userGroupId`), UNIQUE KEY `idx_name` (`name`), KEY `fk_user_group_1_idx` (`createdUserId`), KEY `fk_user_group_2_idx` (`modifiedUserId`), CONSTRAINT `fk_user_group_1` FOREIGN KEY (`createdUserId`) REFERENCES `user_data` (`userId`) ON DELETE RESTRICT ON UPDATE RESTRICT, CONSTRAINT `fk_user_group_2` FOREIGN KEY (`modifiedUserId`) REFERENCES `user_data` (`userId`) ON DELETE RESTRICT ON UPDATE RESTRICT ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Table structure for table `user_group_user_map` -- DROP TABLE IF EXISTS `user_group_user_map`; CREATE TABLE `user_group_user_map` ( `ugumId` int NOT NULL AUTO_INCREMENT, `userGroupId` int NOT NULL, `userId` int NOT NULL, PRIMARY KEY (`ugumId`), UNIQUE KEY `INDEX_UG_USER` (`userGroupId`,`userId`), KEY `fk_user_group_map_2_idx` (`userId`), CONSTRAINT `fk_user_group_map_1` FOREIGN KEY (`userGroupId`) REFERENCES `user_group` (`userGroupId`) ON DELETE CASCADE ON UPDATE CASCADE, CONSTRAINT `fk_user_group_map_2` FOREIGN KEY (`userId`) REFERENCES `user_data` (`userId`) ON DELETE CASCADE ON UPDATE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_0900_ai_ci; -- -- Temporary view structure for view `v_current_rev` -- DROP TABLE IF EXISTS `v_current_rev`; /*!50001 DROP VIEW IF EXISTS `v_current_rev`*/; /*!50001 CREATE VIEW `v_current_rev` AS SELECT 1 AS `revId`, 1 AS `benchmarkId`, 1 AS `version`, 1 AS `release`, 1 AS `benchmarkDate`, 1 AS `benchmarkDateSql`, 1 AS `status`, 1 AS `statusDate`, 1 AS `marking`, 1 AS `description`, 1 AS `active`, 1 AS `groupCount`, 1 AS `ruleCount`, 1 AS `lowCount`, 1 AS `mediumCount`, 1 AS `highCount`, 1 AS `checkCount`, 1 AS `fixCount`*/; -- -- Temporary view structure for view `v_default_rev` -- DROP TABLE IF EXISTS `v_default_rev`; /*!50001 DROP VIEW IF EXISTS `v_default_rev`*/; /*!50001 CREATE VIEW `v_default_rev` AS SELECT 1 AS `collectionId`, 1 AS `benchmarkId`, 1 AS `revId`, 1 AS `revisionPinned`*/; -- -- Temporary view structure for view `v_latest_rev` -- DROP TABLE IF EXISTS `v_latest_rev`; /*!50001 DROP VIEW IF EXISTS `v_latest_rev`*/; /*!50001 CREATE VIEW `v_latest_rev` AS SELECT 1 AS `revId`, 1 AS `benchmarkId`, 1 AS `revisionStr`*/; -- -- Dumping events for database 'stigman' -- /*!50106 SET @save_time_zone= @@TIME_ZONE */ ; /*!50106 DROP EVENT IF EXISTS `job-1-stigman` */; DELIMITER $ /*!50003 SET @saved_col_connection = @@collation_connection */ $ /*!50003 SET collation_connection = utf8mb4_0900_ai_ci */ $ /*!50003 SET @saved_sql_mode = @@sql_mode */ $ /*!50003 SET sql_mode = 'IGNORE_SPACE,ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION' */ $ /*!50003 SET @saved_time_zone = @@time_zone */ $ /*!50003 SET time_zone = 'SYSTEM' */ $ /*!50106 CREATE*/ /*!50117 */ /*!50106 EVENT `job-1-stigman` ON SCHEDULE EVERY 1 DAY STARTS '2025-10-01 05:00:00' ON COMPLETION NOT PRESERVE DISABLE DO CALL run_job(1, NULL) */ $ /*!50003 SET time_zone = @saved_time_zone */ $ /*!50003 SET sql_mode = @saved_sql_mode */ $ /*!50003 SET collation_connection = @saved_col_connection */ $ DELIMITER ; /*!50106 SET TIME_ZONE= @save_time_zone */ ; -- -- Dumping routines for database 'stigman' -- /*!50003 DROP PROCEDURE IF EXISTS `analyze_tables` */; /*!50003 SET @saved_col_connection = @@collation_connection */ ; /*!50003 SET collation_connection = utf8mb4_0900_ai_ci */ ; /*!50003 SET @saved_sql_mode = @@sql_mode */ ; /*!50003 SET sql_mode = 'IGNORE_SPACE,ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION' */ ; DELIMITER $ CREATE PROCEDURE `analyze_tables`(IN in_tables JSON) BEGIN DECLARE v_itemCount INT; DECLARE v_currentCount INT; DECLARE v_table VARCHAR(255); DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; IF err_msg = NULL THEN SET err_msg = ''; END IF; CALL task_output('error',concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info', 'task started'); select JSON_LENGTH(in_tables) INTO v_itemCount; SET v_currentCount = 0; WHILE v_currentCount < v_itemCount DO SET v_table = json_unquote(json_extract(in_tables, concat('$[', v_currentCount, ']'))); CALL task_output('info', concat('analyze table: ', v_table)); SET @sql = CONCAT('ANALYZE TABLE ', v_table); PREPARE stmt_analyze_tables FROM @sql; EXECUTE stmt_analyze_tables; DEALLOCATE PREPARE stmt_analyze_tables; SET v_currentCount = v_currentCount + 1; END WHILE; CALL task_output('info', 'task finished'); END $ DELIMITER ; /*!50003 SET sql_mode = @saved_sql_mode */ ; /*!50003 SET collation_connection = @saved_col_connection */ ; /*!50003 DROP PROCEDURE IF EXISTS `delete_disabled` */; /*!50003 SET @saved_col_connection = @@collation_connection */ ; /*!50003 SET collation_connection = utf8mb4_0900_ai_ci */ ; /*!50003 SET @saved_sql_mode = @@sql_mode */ ; /*!50003 SET sql_mode = 'IGNORE_SPACE,ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION' */ ; DELIMITER $ CREATE PROCEDURE `delete_disabled`() BEGIN DECLARE v_incrementValue INT DEFAULT 10000; DECLARE v_curMinId BIGINT DEFAULT 1; DECLARE v_curMaxId BIGINT DEFAULT v_incrementValue + 1; DECLARE v_numCollectionIds INT; DECLARE v_numAssetIds INT; DECLARE v_numReviewIds INT; DECLARE v_numHistoryIds INT; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error', concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info','task started'); drop temporary table if exists t_collectionIds; create temporary table t_collectionIds (seq INT AUTO_INCREMENT PRIMARY KEY) select collectionId from collection where isEnabled is null; select max(seq) into v_numCollectionIds from t_collectionIds; CALL task_output('info', concat('found ', ifnull(v_numCollectionIds, 0), ' collections to delete')); drop temporary table if exists t_assetIds; create temporary table t_assetIds (seq INT AUTO_INCREMENT PRIMARY KEY) select assetId from asset where isEnabled is null or collectionId in (select collectionId from t_collectionIds); select max(seq) into v_numAssetIds from t_assetIds; CALL task_output('info', concat('found ', ifnull(v_numAssetIds, 0), ' assets to delete')); drop temporary table if exists t_reviewIds; create temporary table t_reviewIds (seq INT AUTO_INCREMENT PRIMARY KEY) select reviewId from review where assetId in (select assetId from t_assetIds); select max(seq) into v_numReviewIds from t_reviewIds; CALL task_output('info', concat('found ', ifnull(v_numReviewIds, 0), ' reviews to delete')); drop temporary table if exists t_historyIds; create temporary table t_historyIds (seq INT AUTO_INCREMENT PRIMARY KEY) select historyId from review_history where reviewId in (select reviewId from t_reviewIds); select max(seq) into v_numHistoryIds from t_historyIds; CALL task_output('info', concat('found ', ifnull(v_numHistoryIds, 0), ' history records to delete')); IF v_numHistoryIds > 0 THEN CALL task_output('info', concat('deleting ', v_numHistoryIds, ' history records')); REPEAT delete from review_history where historyId IN ( select historyId from t_historyIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_historyIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numReviewIds > 0 THEN CALL task_output('info', concat('deleting ', v_numReviewIds, ' reviews')); REPEAT delete from review where reviewId IN ( select reviewId from t_reviewIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_reviewIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numAssetIds > 0 THEN CALL task_output('info', concat('deleting ', v_numAssetIds, ' assets')); REPEAT delete from asset where assetId IN ( select assetId from t_assetIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_assetIds; SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; IF v_numCollectionIds > 0 THEN CALL task_output('info', concat('deleting ', v_numCollectionIds, ' collections')); REPEAT delete from collection where collectionId IN ( select collectionId from t_collectionIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; drop temporary table if exists t_collectionIds; CALL task_output('info', 'task finished'); END $ DELIMITER ; /*!50003 SET sql_mode = @saved_sql_mode */ ; /*!50003 SET collation_connection = @saved_col_connection */ ; /*!50003 DROP PROCEDURE IF EXISTS `delete_unmapped` */; /*!50003 SET @saved_col_connection = @@collation_connection */ ; /*!50003 SET collation_connection = utf8mb4_0900_ai_ci */ ; /*!50003 SET @saved_sql_mode = @@sql_mode */ ; /*!50003 SET sql_mode = 'IGNORE_SPACE,ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION' */ ; DELIMITER $ CREATE PROCEDURE `delete_unmapped`(IN in_context VARCHAR(255)) BEGIN DECLARE v_numReviewIds INT; DECLARE v_numHistoryIds INT; DECLARE v_incrementValue INT DEFAULT 10000; DECLARE v_curMinId BIGINT DEFAULT 1; DECLARE v_curMaxId BIGINT DEFAULT v_incrementValue + 1; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error',concat('code: ', err_code, ' message: ', err_msg)); RESIGNAL; END; -- Runtime context is available via user variables (null if running outside a job) CALL task_output('info', 'task started'); drop temporary table if exists t_reviewIds; create temporary table t_reviewIds (seq INT AUTO_INCREMENT PRIMARY KEY, reviewId INT); -- Context-specific logic IF in_context = 'system' THEN INSERT into t_reviewIds (reviewId) select r.reviewId from review r left join rev_group_rule_map rgr on (r.version = rgr.version and r.checkDigest = rgr.checkDigest) where rgr.rgrId is null; ELSEIF in_context = 'asset' THEN INSERT into t_reviewIds (reviewId) select r.reviewId from review r left join rev_group_rule_map rgr on (r.version = rgr.version and r.checkDigest = rgr.checkDigest) left join revision on (rgr.revId = revision.revId) left join stig_asset_map sa on (r.assetId = sa.assetId and revision.benchmarkId = sa.benchmarkId) group by r.reviewId having count(sa.saId) = 0; END IF; select max(seq) into v_numReviewIds from t_reviewIds; CALL task_output('info', concat('found ', ifnull(v_numReviewIds, 0), ' reviews to delete')); IF v_numReviewIds > 0 THEN drop temporary table if exists t_historyIds; create temporary table t_historyIds (seq INT AUTO_INCREMENT PRIMARY KEY) select historyId from review_history where reviewId in (select reviewId from t_reviewIds); select max(seq) into v_numHistoryIds from t_historyIds; CALL task_output('info', concat('found ', ifnull(v_numHistoryIds, 0), ' history records to delete')); IF v_numHistoryIds > 0 THEN CALL task_output('info', concat('deleting ', v_numHistoryIds, ' history records')); SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; REPEAT delete from review_history where historyId IN ( select historyId from t_historyIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; CALL task_output('info', concat('deleting ', v_numReviewIds, ' reviews')); SET v_curMinId = 1; SET v_curMaxId = v_curMinId + v_incrementValue; REPEAT delete from review where reviewId IN ( select reviewId from t_reviewIds where seq >= v_curMinId and seq < v_curMaxId ); SET v_curMinId = v_curMinId + v_incrementValue; SET v_curMaxId = v_curMaxId + v_incrementValue; UNTIL ROW_COUNT() = 0 END REPEAT; END IF; CALL task_output('info', 'task finished'); END $ DELIMITER ; /*!50003 SET sql_mode = @saved_sql_mode */ ; /*!50003 SET collation_connection = @saved_col_connection */ ; /*!50003 DROP PROCEDURE IF EXISTS `run_job` */; /*!50003 SET @saved_col_connection = @@collation_connection */ ; /*!50003 SET collation_connection = utf8mb4_0900_ai_ci */ ; /*!50003 SET @saved_sql_mode = @@sql_mode */ ; /*!50003 SET sql_mode = 'IGNORE_SPACE,ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION' */ ; DELIMITER $ CREATE PROCEDURE `run_job`( IN in_jobId INT, IN in_runIdStr VARCHAR(36) ) main:BEGIN DECLARE v_done INT DEFAULT FALSE; DECLARE v_jrId INT; DECLARE v_numTasks INT; DECLARE v_currentTaskId INT; DECLARE v_currentTaskName VARCHAR(255); DECLARE v_currentCommand VARCHAR(255); DECLARE v_currentTaskNum INT DEFAULT 0; DECLARE v_param_string TEXT; DECLARE cur CURSOR FOR SELECT jt.taskId, t.name, t.command FROM job_task_map jt inner join task t on (jt.taskId = t.taskId) WHERE jobId = in_jobId ORDER BY jtId ASC; DECLARE CONTINUE HANDLER FOR NOT FOUND SET v_done = TRUE; DECLARE EXIT HANDLER FOR SQLEXCEPTION BEGIN DECLARE err_code INT; DECLARE err_msg TEXT; GET STACKED DIAGNOSTICS CONDITION 1 err_code = MYSQL_ERRNO, err_msg = MESSAGE_TEXT; CALL task_output('error', concat('code: ', err_code, ' message: ', err_msg)); UPDATE job_run SET state = 'failed' WHERE runId = @runId; END; -- setup runtime context (null if running outside a job) IF in_runIdStr IS NOT NULL AND in_runIdStr REGEXP '^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$' THEN SET @runId = UUID_TO_BIN(in_runIdStr, 1); ELSE SET @runId = UUID_TO_BIN(UUID(), 1); END IF; SET @taskId = NULL; INSERT INTO job_run(jobId, runId, state) VALUES (in_jobId, @runId, 'running'); CALL task_output('info', concat('run started for jobId ', in_jobId)); -- Get the number of tasks for the job SELECT COUNT(*) INTO v_numTasks FROM job_task_map WHERE jobId = in_jobId; IF v_numTasks = 0 THEN CALL task_output('error', 'no tasks to run'); UPDATE job_run SET state = 'failed' WHERE runId = @runId AND state = 'running'; LEAVE main; -- No tasks to run, exit the procedure END IF; OPEN cur; read_loop: LOOP FETCH cur INTO v_currentTaskId, v_currentTaskName, v_currentCommand; IF v_done THEN LEAVE read_loop; END IF; SET v_currentTaskNum = v_currentTaskNum + 1; SET @sql = CONCAT('CALL ', v_currentCommand); PREPARE stmt_run_job FROM @sql; CALL task_output('info', concat('Beginning task ', v_currentTaskName, ' (', v_currentTaskNum, '/', v_numTasks, ')')); SET @taskId = v_currentTaskId; EXECUTE stmt_run_job; DEALLOCATE PREPARE stmt_run_job; SET @taskId = NULL; CALL task_output('info', concat('Ended task ', v_currentTaskName, ' (', v_currentTaskNum, '/', v_numTasks, ')')); END LOOP; CLOSE cur; -- === Post-task-loop logic === UPDATE job_run SET state = 'completed' WHERE runId = @runId AND state = 'running'; CALL task_output('info', concat('run completed for jobId ', in_jobId)); END $ DELIMITER ; /*!50003 SET sql_mode = @saved_sql_mode */ ; /*!50003 SET collation_connection = @saved_col_connection */ ; /*!50003 DROP PROCEDURE IF EXISTS `task_output` */; /*!50003 SET @saved_col_connection = @@collation_connection */ ; /*!50003 SET collation_connection = utf8mb4_0900_ai_ci */ ; /*!50003 SET @saved_sql_mode = @@sql_mode */ ; /*!50003 SET sql_mode = 'IGNORE_SPACE,ONLY_FULL_GROUP_BY,STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION' */ ; DELIMITER $ CREATE PROCEDURE `task_output`( IN in_type VARCHAR(45), IN in_message VARCHAR(255) ) BEGIN IF in_message IS NULL THEN SET in_message = ''; END IF; insert into task_output (runId, taskId, type, message) values (@runId, @taskId, in_type, in_message); END $ DELIMITER ; /*!50003 SET sql_mode = @saved_sql_mode */ ; /*!50003 SET collation_connection = @saved_col_connection */ ; -- -- Final view structure for view `enabled_asset` -- /*!50001 DROP VIEW IF EXISTS `enabled_asset`*/; /*!50001 SET @saved_col_connection = @@collation_connection */; /*!50001 SET collation_connection = utf8mb4_0900_ai_ci */; /*!50001 CREATE ALGORITHM=UNDEFINED */ /*!50001 VIEW `enabled_asset` AS select `asset`.`assetId` AS `assetId`,`asset`.`name` AS `name`,`asset`.`fqdn` AS `fqdn`,`asset`.`collectionId` AS `collectionId`,`asset`.`ip` AS `ip`,`asset`.`mac` AS `mac`,`asset`.`description` AS `description`,`asset`.`noncomputing` AS `noncomputing`,`asset`.`metadata` AS `metadata`,`asset`.`state` AS `state`,`asset`.`stateDate` AS `stateDate`,`asset`.`stateUserId` AS `stateUserId`,`asset`.`isEnabled` AS `isEnabled` from `asset` where (`asset`.`state` = 'enabled') */; /*!50001 SET collation_connection = @saved_col_connection */; -- -- Final view structure for view `enabled_collection` -- /*!50001 DROP VIEW IF EXISTS `enabled_collection`*/; /*!50001 SET @saved_col_connection = @@collation_connection */; /*!50001 SET collation_connection = utf8mb4_0900_ai_ci */; /*!50001 CREATE ALGORITHM=UNDEFINED */ /*!50001 VIEW `enabled_collection` AS select `collection`.`collectionId` AS `collectionId`,`collection`.`name` AS `name`,`collection`.`description` AS `description`,`collection`.`settings` AS `settings`,`collection`.`metadata` AS `metadata`,`collection`.`created` AS `created`,`collection`.`state` AS `state`,`collection`.`createdUserId` AS `createdUserId`,`collection`.`stateDate` AS `stateDate`,`collection`.`stateUserId` AS `stateUserId`,`collection`.`isNameUnavailable` AS `isNameUnavailable`,`collection`.`isEnabled` AS `isEnabled` from `collection` where (`collection`.`state` = 'enabled') */; /*!50001 SET collation_connection = @saved_col_connection */; -- -- Final view structure for view `v_current_rev` -- /*!50001 DROP VIEW IF EXISTS `v_current_rev`*/; /*!50001 SET @saved_col_connection = @@collation_connection */; /*!50001 SET collation_connection = utf8mb4_0900_ai_ci */; /*!50001 CREATE ALGORITHM=UNDEFINED */ /*!50001 VIEW `v_current_rev` AS select `rr`.`revId` AS `revId`,`rr`.`benchmarkId` AS `benchmarkId`,`rr`.`version` AS `version`,`rr`.`release` AS `release`,`rr`.`benchmarkDate` AS `benchmarkDate`,`rr`.`benchmarkDateSql` AS `benchmarkDateSql`,`rr`.`status` AS `status`,`rr`.`statusDate` AS `statusDate`,`rr`.`marking` AS `marking`,`rr`.`description` AS `description`,`rr`.`active` AS `active`,`rr`.`groupCount` AS `groupCount`,`rr`.`ruleCount` AS `ruleCount`,`rr`.`lowCount` AS `lowCount`,`rr`.`mediumCount` AS `mediumCount`,`rr`.`highCount` AS `highCount`,`rr`.`checkCount` AS `checkCount`,`rr`.`fixCount` AS `fixCount` from (select `r`.`revId` AS `revId`,`r`.`benchmarkId` AS `benchmarkId`,`r`.`version` AS `version`,`r`.`release` AS `release`,`r`.`benchmarkDate` AS `benchmarkDate`,`r`.`benchmarkDateSql` AS `benchmarkDateSql`,`r`.`status` AS `status`,`r`.`statusDate` AS `statusDate`,`r`.`marking` AS `marking`,`r`.`description` AS `description`,`r`.`active` AS `active`,`r`.`groupCount` AS `groupCount`,`r`.`ruleCount` AS `ruleCount`,`r`.`lowCount` AS `lowCount`,`r`.`mediumCount` AS `mediumCount`,`r`.`highCount` AS `highCount`,`r`.`checkCount` AS `checkCount`,`r`.`fixCount` AS `fixCount`,row_number() OVER (PARTITION BY `r`.`benchmarkId` ORDER BY field(`r`.`status`,'draft','accepted') desc,(`r`.`version` + 0) desc,(`r`.`release` + 0) desc ) AS `rn` from `revision` `r`) `rr` where (`rr`.`rn` = 1) */; /*!50001 SET collation_connection = @saved_col_connection */; -- -- Final view structure for view `v_default_rev` -- /*!50001 DROP VIEW IF EXISTS `v_default_rev`*/; /*!50001 SET @saved_col_connection = @@collation_connection */; /*!50001 SET collation_connection = utf8mb4_0900_ai_ci */; /*!50001 CREATE ALGORITHM=UNDEFINED */ /*!50001 VIEW `v_default_rev` AS select distinct `a`.`collectionId` AS `collectionId`,`sa`.`benchmarkId` AS `benchmarkId`,(case when (`crm`.`revId` is not null) then `crm`.`revId` else `cr`.`revId` end) AS `revId`,(case when (`crm`.`revId` is not null) then 1 else 0 end) AS `revisionPinned` from (((`asset` `a` join `stig_asset_map` `sa` on((`a`.`assetId` = `sa`.`assetId`))) left join `current_rev` `cr` on((`sa`.`benchmarkId` = `cr`.`benchmarkId`))) left join `collection_rev_map` `crm` on(((`sa`.`benchmarkId` = `crm`.`benchmarkId`) and (`a`.`collectionId` = `crm`.`collectionId`)))) */; /*!50001 SET collation_connection = @saved_col_connection */; -- -- Final view structure for view `v_latest_rev` -- /*!50001 DROP VIEW IF EXISTS `v_latest_rev`*/; /*!50001 SET @saved_col_connection = @@collation_connection */; /*!50001 SET collation_connection = utf8mb4_0900_ai_ci */; /*!50001 CREATE ALGORITHM=UNDEFINED */ /*!50001 VIEW `v_latest_rev` AS select `rr`.`revId` AS `revId`,`rr`.`benchmarkId` AS `benchmarkId`,concat('V',`rr`.`version`,'R',`rr`.`release`) AS `revisionStr` from (select `r`.`revId` AS `revId`,`r`.`benchmarkId` AS `benchmarkId`,`r`.`version` AS `version`,`r`.`release` AS `release`,row_number() OVER (PARTITION BY `r`.`benchmarkId` ORDER BY field(`r`.`status`,'draft','accepted') desc,(`r`.`version` + 0) desc,(`r`.`release` + 0) desc ) AS `rn` from `revision` `r`) `rr` where (`rr`.`rn` = 1) */; /*!50001 SET collation_connection = @saved_col_connection */; /*!40103 SET TIME_ZONE=@OLD_TIME_ZONE */; /*!40101 SET SQL_MODE=@OLD_SQL_MODE */; /*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */; /*!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS */; /*!40101 SET COLLATION_CONNECTION=@OLD_COLLATION_CONNECTION */; /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */; -- Dump completed on 2026-03-09 22:40:40 ================================================ FILE: api/source/service/migrations/sql/current/20-stigman-static.sql ================================================ -- MySQL dump 10.13 Distrib 8.0.44, for Linux (x86_64) -- -- Host: 127.0.0.1 Database: stigman -- ------------------------------------------------------ -- Server version 8.0.44 /*!40101 SET @OLD_COLLATION_CONNECTION=@@COLLATION_CONNECTION */; /*!40103 SET @OLD_TIME_ZONE=@@TIME_ZONE */; /*!40103 SET TIME_ZONE='+00:00' */; /*!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 */; /*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */; /*!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' */; /*!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 */; -- -- Dumping data for table `result` -- LOCK TABLES `result` WRITE; /*!40000 ALTER TABLE `result` DISABLE KEYS */; INSERT INTO `result` VALUES (1,'notchecked','Not_Reviewed','not_reviewed','NR','Not checked'),(2,'notapplicable','Not_Applicable','not_applicable','NA','Not Applicable'),(3,'pass','NotAFinding','not_a_finding','NF','Not a Finding'),(4,'fail','Open','open','O','Open'),(5,'unknown','Not_Reviewed','not_reviewed','U','Unknown'),(6,'error','Not_Reviewed','not_reviewed','E','Error'),(7,'notselected','Not_Reviewed','not_reviewed','NS','Not selected'),(8,'informational','Not_Reviewed','not_reviewed','I','Informational'),(9,'fixed','NotAFinding','not_a_finding','NF','Fixed'); /*!40000 ALTER TABLE `result` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `status` -- LOCK TABLES `status` WRITE; /*!40000 ALTER TABLE `status` DISABLE KEYS */; INSERT INTO `status` VALUES (0,'saved','Saved'),(1,'submitted','Submitted'),(2,'rejected','Rejected'),(3,'accepted','Accepted'); /*!40000 ALTER TABLE `status` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `_migrations` -- LOCK TABLES `_migrations` WRITE; /*!40000 ALTER TABLE `_migrations` DISABLE KEYS */; INSERT INTO `_migrations` VALUES ('2023-03-09 16:11:04',NULL,'0000.js'),('2023-03-09 16:11:04',NULL,'0001.js'),('2023-03-09 16:11:04',NULL,'0002.js'),('2023-03-09 16:11:04',NULL,'0003.js'),('2023-03-09 16:11:04',NULL,'0004.js'),('2023-03-09 16:11:04',NULL,'0005.js'),('2023-03-09 16:11:04',NULL,'0006.js'),('2023-03-09 16:11:05',NULL,'0007.js'),('2023-03-09 16:11:06',NULL,'0008.js'),('2023-03-09 16:11:06',NULL,'0009.js'),('2023-03-09 16:11:06',NULL,'0010.js'),('2023-03-09 16:11:07',NULL,'0011.js'),('2023-03-09 16:11:07',NULL,'0012.js'),('2023-03-09 16:11:07',NULL,'0013.js'),('2023-03-09 16:11:07',NULL,'0014.js'),('2023-03-09 16:11:07',NULL,'0015.js'),('2023-03-09 16:11:08',NULL,'0016.js'),('2023-03-09 16:11:08',NULL,'0017.js'),('2023-03-09 16:11:08',NULL,'0018.js'),('2023-03-09 16:11:09',NULL,'0019.js'),('2023-03-09 16:11:10',NULL,'0020.js'),('2023-04-11 14:14:58',NULL,'0021.js'),('2023-04-26 13:06:02',NULL,'0022.js'),('2023-07-18 14:50:40',NULL,'0023.js'),('2023-09-05 14:19:13',NULL,'0024.js'),('2023-09-05 14:19:14',NULL,'0025.js'),('2023-09-05 14:19:14',NULL,'0026.js'),('2023-09-05 14:19:14',NULL,'0027.js'),('2024-03-26 12:40:20',NULL,'0028.js'),('2024-05-14 21:39:38',NULL,'0029.js'),('2024-05-14 21:40:06',NULL,'0031.js'),('2024-07-24 14:40:24',NULL,'0032.js'),('2025-02-05 17:47:29',NULL,'0033.js'),('2025-02-05 17:47:29',NULL,'0034.js'),('2025-02-05 17:48:18',NULL,'0035.js'),('2025-02-05 17:48:18',NULL,'0036.js'),('2025-05-13 22:25:35',NULL,'0037.js'),('2025-05-13 22:25:45',NULL,'0038.js'),('2025-05-13 22:25:45',NULL,'0039.js'),('2025-05-13 22:25:45',NULL,'0040.js'),('2025-10-04 20:54:44',NULL,'0041.js'),('2025-10-04 20:54:44',NULL,'0042.js'),('2025-10-04 20:54:44',NULL,'0043.js'),('2025-10-04 20:54:45',NULL,'0044.js'),('2025-10-04 20:54:45',NULL,'0045.js'),('2026-03-09 22:40:20',NULL,'0046.js'); /*!40000 ALTER TABLE `_migrations` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `task` -- LOCK TABLES `task` WRITE; /*!40000 ALTER TABLE `task` DISABLE KEYS */; INSERT INTO `task` VALUES (1,'WipeDeletedObjects','Wipe deleted collections and assets and their associated reviews','delete_disabled()'),(2,'DeleteUnmappedReviews','Delete reviews that no longer match any rule in the system','delete_unmapped(\"system\")'),(3,'DeleteUnmappedAssetReviews','Delete reviews that no longer match an asset\'s assigned rules','delete_unmapped(\"asset\")'),(4,'AnalyzeReviewTables','Analyze database tables for performance','analyze_tables(JSON_ARRAY(\"reviews\", \"review_history\"))'); /*!40000 ALTER TABLE `task` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `job` -- LOCK TABLES `job` WRITE; /*!40000 ALTER TABLE `job` DISABLE KEYS */; INSERT INTO `job` VALUES (1,'Cleanup Database','Wipe deleted collections and assets and their associated reviews',NULL,NULL,'2025-10-04 20:54:45.057',NULL),(2,'Delete Unmapped Reviews','Delete reviews that no longer match any rule in the system',NULL,NULL,'2025-10-04 20:54:45.057',NULL),(3,'Delete Unmapped Asset Reviews','Delete reviews that no longer match an asset\'s assigned rules',NULL,NULL,'2025-10-04 20:54:45.057',NULL); /*!40000 ALTER TABLE `job` ENABLE KEYS */; UNLOCK TABLES; -- -- Dumping data for table `job_task_map` -- LOCK TABLES `job_task_map` WRITE; /*!40000 ALTER TABLE `job_task_map` DISABLE KEYS */; INSERT INTO `job_task_map` VALUES (1,1,1,'2025-10-04 20:54:45.079','2025-10-04 20:54:45.079'),(2,1,4,'2025-10-04 20:54:45.079','2025-10-04 20:54:45.079'),(3,2,2,'2025-10-04 20:54:45.079','2025-10-04 20:54:45.079'),(4,2,4,'2025-10-04 20:54:45.079','2025-10-04 20:54:45.079'),(5,3,3,'2025-10-04 20:54:45.079','2025-10-04 20:54:45.079'),(6,3,4,'2025-10-04 20:54:45.079','2025-10-04 20:54:45.079'); /*!40000 ALTER TABLE `job_task_map` ENABLE KEYS */; UNLOCK TABLES; /*!40103 SET TIME_ZONE=@OLD_TIME_ZONE */; /*!40101 SET SQL_MODE=@OLD_SQL_MODE */; /*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */; /*!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS */; /*!40101 SET COLLATION_CONNECTION=@OLD_COLLATION_CONNECTION */; /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */; -- Dump completed on 2026-03-09 22:40:40 ALTER TABLE job AUTO_INCREMENT=100; ALTER TABLE job_task_map AUTO_INCREMENT=1000; ================================================ FILE: api/source/service/migrations/sql/current/31-rev5-cci-data.sql ================================================ -- /*!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 */; /*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */; /*!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' */; /*!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 */; -- -- Data for table `cci` -- LOCK TABLES `cci` WRITE; /*!40000 ALTER TABLE `cci` DISABLE KEYS */; INSERT INTO `cci` VALUES ('000002','draft','2009-09-14','DISA FSO','policy','Disseminate the organization-level; mission/business process-level; and/or system-level access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance to organization-defined personnel or roles.','AC-01a.','N/A','Determine if: - an access control policy is developed and documented. - the access control policy is disseminated to [AC-01_ODP[01]; personnel or roles to whom the access control policy is to be disseminated is/are defined].'), ('000003','draft','2009-09-14','DISA FSO','policy','Review and update the current access control policy on an organization-defined frequency.','AC-01c.01','N/A','Determine if: - the current access control policy is reviewed and updated [AC-01_ODP[05]; the frequency at which the current access control policy is reviewed and updated is defined]. - the current access control policy is reviewed and updated following [AC-01_ODP[06]; events that would require the current access control policy to be reviewed and updated are defined].'), ('000005','draft','2009-09-14','DISA FSO','policy','Disseminate procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level access control policy and associated access controls to the organization-defined personnel or roles.','AC-01a.02','N/A','Determine if: - access control procedures to facilitate the implementation of the access control policy and associated controls are developed and documented. - the access control procedures are disseminated to [AC-01_ODP[02]; personnel or roles to whom the access control procedures are to be disseminated is/are defined].'), ('000006','draft','2009-09-14','DISA FSO','policy','Review and update the current access control procedures on an organization-defined frequency.','AC-01c.02','N/A','Determine if: - the current access control procedures are reviewed and updated [AC-01_ODP[07]; the frequency at which the current access control procedures are reviewed and updated is defined;]. - the current access control procedures are reviewed and updated following [AC-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('000010','draft','2009-05-13','DISA FSO','policy','Require approvals by organization-defined personnel or roles for requests to create accounts.','AC-02e.','N/A','Determine if approvals are required by [AC-02_ODP[03]; personnel or roles required to approve requests to create accounts is/are defined] for requests to create accounts.'), ('000011','draft','2009-05-13','DISA FSO','policy','Create, enable, modify, disable, and remove system accounts in accordance with organization-defined procedures.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('000012','draft','2009-09-14','DISA FSO','policy','Review accounts for compliance with account management requirements per organization-defined frequency.','AC-02j.','N/A','Determine if accounts are reviewed for compliance with account management requirements [AC-02_ODP[10]; the frequency of account review is defined].'), ('000015','draft','2009-05-13','DISA FSO','technical','Support the management of system accounts using organization-defined automated mechanisms.','AC-02(01)','N/A','Determine if the management of system accounts is supported using [AC-02(01)_ODP; automated mechanisms used to support the management of system accounts are defined].'), ('000016','draft','2009-05-13','DISA FSO','technical','Automatically remove or disable temporary and emergency accounts after an organization-defined time-period for each type of account.','AC-02(02)','N/A','Determine if temporary and emergency accounts are automatically [AC-02(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {remove; disable}] after [AC-02(02)_ODP[02]; the time period after which to automatically remove or disable temporary or emergency accounts is defined].'), ('000017','draft','2009-05-13','DISA FSO','technical','Disable accounts when the accounts have been inactive for the organization-defined time-period.','AC-02(03)(d)','N/A','Determine if accounts are disabled within [AC-02(03)_ODP[01]; time period within which to disable accounts is defined] when the accounts have been inactive for [AC-02(03)_ODP[02]; time period for account inactivity before disabling is defined].'), ('000018','draft','2009-05-13','DISA FSO','technical','Automatically audit account creation actions.','AC-02(04)','N/A','Determine if: - account creation is automatically audited. - account modification is automatically audited. - account enabling is automatically audited. - account disabling is automatically audited. - account removal actions are automatically audited.'), ('000019','draft','2009-09-14','DISA FSO','policy','Require that users log out in accordance with the organization-defined time-period of expected inactivity or description of when to log out.','AC-02(05)','N/A','Determine if users are required to log out when [AC-02(05)_ODP; the time period of expected inactivity or description of when to log out is defined].'), ('000021','draft','2009-05-13','DISA FSO','technical','Enforce dual authorization for organization-defined privileged commands and/or other organization-defined actions.','AC-03(02)','N/A','Determine if dual authorization is enforced for [AC-03(02)_ODP; privileged commands and/or other actions requiring dual authorization are defined].'), ('000024','draft','2009-09-14','DISA FSO','technical','Prevent access to organization-defined security-relevant information except during secure, non-operable system states.','AC-03(05)','N/A','Determine if access to [AC-03(05)_ODP; security-relevant information to which access is prevented except during secure, non-operable system states is defined] is prevented except during secure, non-operable system states.'), ('000026','draft','2009-05-13','DISA FSO','technical','Use protected processing domains to enforce organization-defined information flow control policies as a basis for flow control decisions.','AC-04(02)','N/A','Determine if protected processing domains are used to enforce [AC-04(02)_ODP; information flow control policies to be enforced by use of protected processing domains are defined] as a basis for flow control decisions.'), ('000027','draft','2009-05-13','DISA FSO','technical','Enforce organization-defined information flow control policies.','AC-04(03)','N/A','Determine if [AC-04(03)_ODP; information flow control policies to be enforced are defined] are enforced.'), ('000028','draft','2009-05-13','DISA FSO','policy','Prevent encrypted information from bypassing organization-defined flow control mechanisms by employing organization-defined procedures or methods.','AC-04(04)','N/A','Determine if encrypted information is prevented from bypassing [AC-04(04)_ODP[01]; information flow control mechanisms that encrypted information is prevented from bypassing are defined] by [AC-04(04)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {decrypting the information; blocking the flow of the encrypted information; terminating communications sessions attempting to pass encrypted information; [AC-04(04)_ODP[03]; the organization-defined procedure or method used to prevent encrypted information from bypassing information flow control mechanisms is defined (if selected)]].'), ('000029','draft','2009-05-13','DISA FSO','technical','Enforce organization-defined limitations on embedding data types within other data types.','AC-04(05)','N/A','Determine if [AC-04(05)_ODP; limitations on embedding data types within other data types are defined] are enforced on embedding data types within other data types.'), ('000030','draft','2009-05-13','DISA FSO','technical','Enforce information flow control based on organization-defined metadata.','AC-04(06)','N/A','Determine if information flow control enforcement is based on [AC-04(06)_ODP; metadata on which to base enforcement of information flow control is defined].'), ('000031','draft','2009-05-13','DISA FSO','technical','Enforce one-way information flows using hardware-based flow control mechanisms.','AC-04(07)','N/A','Determine if one-way information flows are enforced through hardware-based flow control mechanisms.'), ('000032','draft','2009-09-14','DISA FSO','technical','Enforce information flow control using organization-defined security policy filters as a basis for flow control decisions for organization-defined information flows.','AC-04(08)(a)','N/A','Determine if: - information flow control is enforced using [AC-04(08)_ODP[01]; security policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[03]; information flows for which information flow control is enforced by security filters are defined]. - information flow control is enforced using [AC-04(08)_ODP[02]; privacy policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[04]; information flows for which information flow control is enforced by privacy filters are defined].'), ('000034','draft','2009-05-13','DISA FSO','technical','Provide the capability for privileged administrators to enable and disable organization-defined security or privacy filters under organization-defined conditions.','AC-04(10)','N/A','Determine if: - capability is provided for privileged administrators to enable and disable [AC-04(10)_ODP[01]; security policy filters that privileged administrators have the capability to enable and disable are defined] under [AC-04(10)_ODP[03]; conditions under which privileged administrators have the capability to enable and disable security policy filters are defined]. - capability is provided for privileged administrators to enable and disable [AC-04(10)_ODP[02]; privacy policy filters that privileged administrators have the capability to enable and disable are defined] under [AC-04(10)_ODP[04]; conditions under which privileged administrators have the capability to enable and disable privacy policy filters are defined].'), ('000035','draft','2009-09-14','DISA FSO','technical','Provide the capability for privileged administrators to configure the organization-defined security or privacy policy filters to support different security or privacy policies.','AC-04(11)','N/A','Determine if: - capability is provided for privileged administrators to configure [AC-04(11)_ODP[01]; security policy filters that privileged administrators have the capability to configure to support different security and privacy policies are defined] to support different security or privacy policies. - capability is provided for privileged administrators to configure [AC-04(11)_ODP[02]; privacy policy filters that privileged administrators have the capability to configure to support different security and privacy policies are defined] to support different security or privacy policies.'), ('000039','draft','2009-09-14','DISA FSO','policy','Require that users of system accounts, or roles, with access to organization-defined security functions or security-relevant information, use non-privileged accounts or roles, when accessing nonsecurity functions.','AC-06(02)','N/A','Determine if users of system accounts (or roles) with access to [AC-06(02)_ODP; security functions or security-relevant information, the access to which requires users to use non-privileged accounts to access non-security functions, are defined] are required to use non-privileged accounts or roles when accessing non-security functions.'), ('000041','draft','2009-05-19','DISA FSO','policy','Authorize network access to organization-defined privileged commands only for organization-defined compelling operational needs.','AC-06(03)','N/A','Determine if: - network access to [AC-06(03)_ODP[01]; privileged commands to which network access is to be authorized only for compelling operational needs are defined] is authorized only for [AC-06(03)_ODP[02]; compelling operational needs necessitating network access to privileged commands are defined]. - the rationale for authorizing network access to privileged commands is documented in the security plan for the system.'), ('000042','draft','2009-05-19','DISA FSO','policy','Document the rationale for authorized network access to organization-defined privileged commands in the security plan for the system.','AC-06(03)','N/A','Determine if: - network access to [AC-06(03)_ODP[01]; privileged commands to which network access is to be authorized only for compelling operational needs are defined] is authorized only for [AC-06(03)_ODP[02]; compelling operational needs necessitating network access to privileged commands are defined]. - the rationale for authorizing network access to privileged commands is documented in the security plan for the system.'), ('000043','draft','2009-05-19','DISA FSO','policy','Defines the maximum number of consecutive invalid logon attempts to the information system by a user during an organization-defined time period.','AC-07a.','N/A','Determine if a limit of [AC-07_ODP[01]; the number of consecutive invalid logon attempts by a user allowed during a time period is defined] consecutive invalid logon attempts by a user during [AC-07_ODP[02]; the time period to which the number of consecutive invalid logon attempts by a user is limited is defined] is enforced.'), ('000044','draft','2009-09-14','DISA FSO','technical','Enforce the organization-defined limit of consecutive invalid logon attempts by a user during the organization-defined time period.','AC-07a.','N/A','Determine if a limit of [AC-07_ODP[01]; the number of consecutive invalid logon attempts by a user allowed during a time period is defined] consecutive invalid logon attempts by a user during [AC-07_ODP[02]; the time period to which the number of consecutive invalid logon attempts by a user is limited is defined] is enforced.'), ('000048','draft','2009-05-19','DISA FSO','technical','Display an organization-defined system use notification message or banner to users before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidelines.','AC-08a.','N/A','Determine if [AC-08_ODP[01]; system use notification message or banner to be displayed by the system to users before granting access to the system is defined] is displayed to users before granting access to the system that provides privacy and security notices consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('000050','draft','2009-09-14','DISA FSO','technical','Retain the notification message or banner on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access the system.','AC-08b.','N/A','Determine if the notification message or banner is retained on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access the system.'), ('000052','draft','2009-09-14','DISA FSO','technical','Notify the user, upon successful logon (access) to the system, of the date and time of the last logon (access).','AC-09','N/A','Determine if the user is notified, upon successful logon to the system, of the date and time of the last logon.'), ('000053','draft','2009-09-14','DISA FSO','technical','Notify the user, upon successful logon/access, of the number of unsuccessful logon/access attempts since the last successful logon/access.','AC-09(01)','N/A','Determine if the user is notified, upon successful logon, of the number of unsuccessful logon attempts since the last successful logon.'), ('000054','draft','2009-05-19','DISA FSO','technical','Limit the number of concurrent sessions for each organization-defined account and/or account type to an organization-defined number.','AC-10','N/A','Determine if the number of concurrent sessions for each [AC-10_ODP[01]; accounts and/or account types for which to limit the number of concurrent sessions is defined] is limited to [AC-10_ODP[02]; the number of concurrent sessions to be allowed for each account and/or account type is defined].'), ('000055','draft','2009-05-19','DISA FSO','policy','Defines the maximum number of concurrent sessions to be allowed for each organization-defined account and/or account type.','AC-10','N/A','Determine if the number of concurrent sessions for each [AC-10_ODP[01]; accounts and/or account types for which to limit the number of concurrent sessions is defined] is limited to [AC-10_ODP[02]; the number of concurrent sessions to be allowed for each account and/or account type is defined].'), ('000056','draft','2009-09-14','DISA FSO','technical','Retain the device lock until the user reestablishes access using established identification and authentication procedures.','AC-11b.','N/A','Determine if device lock is retained until the user re-establishes access using established identification and authentication procedures.'), ('000057','draft','2009-05-19','DISA FSO','technical','Prevent further access to the system by initiating a device lock after organization-defined time period of inactivity; and/or requiring the user to initiate a device lock before leaving the system unattended.','AC-11a.','N/A','Determine if further access to the system is prevented by [AC-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {initiating a device lock after [AC-11_ODP[02]; time period of inactivity after which a device lock is initiated is defined (if selected)] of inactivity; requiring the user to initiate a device lock before leaving the system unattended}].'), ('000059','draft','2009-09-14','DISA FSO','policy','Defines the time-period of inactivity after which the system initiates a device lock.','AC-11a.','N/A','Determine if further access to the system is prevented by [AC-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {initiating a device lock after [AC-11_ODP[02]; time period of inactivity after which a device lock is initiated is defined (if selected)] of inactivity; requiring the user to initiate a device lock before leaving the system unattended}].'), ('000060','draft','2009-05-19','DISA FSO','technical','Conceal, via the device lock, information previously visible on the display with a publicly viewable image.','AC-11(01)','N/A','Determine if information previously visible on the display is concealed, via device lock, with a publicly viewable image.'), ('000061','draft','2009-09-14','DISA FSO','policy','Identify organization-defined user actions that can be performed on the system without identification or authentication consistent with organizational missions/business functions.','AC-14a.','N/A','Determine if [AC-14_ODP; user actions that can be performed on the system without identification or authentication are defined] that can be performed on the system without identification or authentication consistent with organizational mission and business functions are identified.'), ('000065','draft','2009-09-14','DISA FSO','policy','Authorize remote access to the system prior to allowing such connections.','AC-17b.','N/A','Determine if each type of remote access to the system is authorized prior to allowing such connections.'), ('000067','draft','2009-09-14','DISA FSO','technical','Employ automated mechanisms to monitor remote access methods.','AC-17(01)','N/A','Determine if: - automated mechanisms are employed to monitor remote access methods. - automated mechanisms are employed to control remote access methods.'), ('000068','draft','2009-09-14','DISA FSO','technical','Implement cryptographic mechanisms to protect the confidentiality of remote access sessions.','AC-17(02)','N/A','Determine if cryptographic mechanisms are implemented to protect the confidentiality and integrity of remote access sessions.'), ('000069','draft','2009-05-19','DISA FSO','policy','Route all remote accesses through authorized and managed network access control points.','AC-17(03)','N/A','Determine if remote accesses are routed through authorized and managed network access control points.'), ('000070','draft','2009-05-19','DISA FSO','policy','Authorize the execution of privileged commands via remote access only in a format that provides assessable evidence for organization-defined needs.','AC-17(04)(a)','N/A','Determine if: - the execution of privileged commands via remote access is authorized only in a format that provides assessable evidence. - access to security-relevant information via remote access is authorized only in a format that provides assessable evidence. - the execution of privileged commands via remote access is authorized only for the following needs: [AC-17(04)_ODP[01]; needs requiring execution of privileged commands via remote access are defined]. - access to security-relevant information via remote access is authorized only for the following needs: [AC-17(04)_ODP[02]; needs requiring access to security-relevant information via remote access are defined].'), ('000072','draft','2009-09-25','DISA FSO','policy','Protect information about remote access mechanisms from unauthorized use and disclosure.','AC-17(06)','N/A','Determine if information about remote access mechanisms is protected from unauthorized use and disclosure.'), ('000073','draft','2009-11-03','DISA FSO','policy','Develop an organization-wide information security program plan that provides an overview of the requirements for the security program and a description of the security program management controls and common controls in place or planned for meeting those requirements.','PM-01a.01','N/A','Determine if: - the information security program plan provides an overview of the requirements for the security program. - the information security program plan provides a description of the security program management controls in place or planned for meeting those requirements. - the information security program plan provides a description of the common controls in place or planned for meeting those requirements.'), ('000074','draft','2009-11-03','DISA FSO','policy','Develop an organization-wide information security program plan that is approved by a senior official with responsibility and accountability for the risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.','PM-01a.04','N/A','Determine if the information security program plan is approved by a senior official with responsibility and accountability for the risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.'), ('000075','draft','2009-11-03','DISA FSO','policy','Review and update the organization-wide information security program plan on an organization-defined frequency.','PM-01b.','N/A','Determine if: - the information security program plan is reviewed and updated [PM-01_ODP[01]; the frequency at which to review and update the organization-wide information security program plan is defined]. - the information security program plan is reviewed and updated following [PM-01_ODP[02]; events that trigger the review and update of the organization-wide information security program plan are defined].'), ('000076','draft','2009-11-03','DISA FSO','policy','Defines the frequency with which to review and update the organization-wide information security program plan.','PM-01b.','N/A','Determine if: - the information security program plan is reviewed and updated [PM-01_ODP[01]; the frequency at which to review and update the organization-wide information security program plan is defined]. - the information security program plan is reviewed and updated following [PM-01_ODP[02]; events that trigger the review and update of the organization-wide information security program plan are defined].'), ('000078','draft','2009-11-03','DISA FSO','policy','Appoint a Senior Information Security Officer with the mission and resources to coordinate, develop, implement, and maintain an organization-wide information security program.','PM-02','N/A','Determine if: - a senior agency information security officer is appointed. - the senior agency information security officer is provided with the mission and resources to coordinate an organization-wide information security program. - the senior agency information security officer is provided with the mission and resources to develop an organization-wide information security program. - the senior agency information security officer is provided with the mission and resources to implement an organization-wide information security program. - the senior agency information security officer is provided with the mission and resources to maintain an organization-wide information security program.'), ('000080','draft','2009-11-03','DISA FSO','policy','Include the resources needed to implement the information security programs in capital planning and investment requests and document all exceptions to this requirement.','PM-03a.','N/A','Determine if: - the resources needed to implement the information security program are included in capital planning and investment requests, and all exceptions are documented. - the resources needed to implement the privacy program are included in capital planning and investment requests, and all exceptions are documented.'), ('000083','draft','2009-05-19','DISA FSO','policy','Establish implementation guidance for organization-controlled mobile devices, to include when such devices are outside of controlled areas.','AC-19a.','N/A','Determine if: - configuration requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area. - connection requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area. - implementation guidance is established for organization-controlled mobile devices, including when such devices are outside of the controlled area.'), ('000084','draft','2009-09-14','DISA FSO','policy','Authorize connection of mobile devices to organizational systems.','AC-19b.','N/A','Determine if the connection of mobile devices to organizational systems is authorized.'), ('000093','draft','2009-09-14','DISA FSO','policy','Establish organization-defined terms and conditions, and/or identify organization-defined controls asserted to be implemented on external systems, consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to access the system from the external systems.','AC-20a.01','N/A','Determine if [AC-20_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish [AC-20_ODP[02]; terms and conditions consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]; identify [AC-20_ODP[03]; controls asserted to be implemented on external systems consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]}]]] is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to access the system from external systems (if applicable).'), ('000097','draft','2009-09-14','DISA FSO','policy','Restrict the use of organization-controlled portable storage devices by authorized individuals on external systems using organization-defined restrictions.','AC-20(02)','N/A','Determine if the use of organization-controlled portable storage devices by authorized individuals is restricted on external systems using [AC-20(02)_ODP; restrictions on the use of organization-controlled portable storage devices by authorized individuals on external systems are defined].'), ('000098','draft','2009-05-19','DISA FSO','policy','Enable authorized users to determine whether access authorizations assigned to the sharing partner match the information''s access and use restrictions for organization-defined information sharing circumstances where user discretion is required.','AC-21a.','N/A','Determine if authorized users are enabled to determine whether access authorizations assigned to a sharing partner match the information''s access and use restrictions for [AC-21_ODP[01]; information-sharing circumstances where user discretion is required to determine whether access authorizations assigned to a sharing partner match the information''s access and use restrictions are defined].'), ('000099','draft','2009-05-19','DISA FSO','policy','Employ organization-defined automated mechanisms to enforce information-sharing decisions by authorized users based on access authorizations of sharing partners and access restrictions on information to be shared.','AC-21(01)','N/A','Determine if [AC-21(01)_ODP; automated mechanisms employed to enforce information-sharing decisions by authorized users are defined] are employed to enforce information-sharing decisions by authorized users based on access authorizations of sharing partners and access restrictions on information to be shared.'), ('000100','draft','2009-05-20','DISA FSO','policy','Develop and document an organization level, mission/business process-level, or system-level awareness and training policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','AT-01a.01(a)','N/A','Determine if: - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy addresses purpose. - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy addresses scope. - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy addresses roles. - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy addresses responsibilities. - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy addresses management commitment. - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy addresses coordination among organizational entities. - the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level} awareness and training policy addresses compliance.'), ('000101','draft','2009-05-20','DISA FSO','policy','Disseminate an organization level, mission/business process-level, or system-level awareness and training policy to organization-defined personnel or roles.','AT-01a.','N/A','Determine if: - an awareness and training policy is developed and documented. - the awareness and training policy is disseminated to [AT-01_ODP[01]; personnel or roles to whom the awareness and training policy is to be disseminated is/are defined].'), ('000102','draft','2009-05-20','DISA FSO','policy','Review and update the current security awareness and training policy in accordance with organization-defined frequency.','AT-01c.01','N/A','Determine if: - the current awareness and training policy is reviewed and updated [AT-01_ODP[05]; the frequency at which the current awareness and training policy is reviewed and updated is defined]. - the current awareness and training policy is reviewed and updated following [AT-01_ODP[06]; events that would require the current awareness and training policy to be reviewed and updated are defined].'), ('000103','draft','2009-05-20','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the awareness and training policy and associated awareness and training controls.','AT-01a.02','N/A','Determine if: - awareness and training procedures to facilitate the implementation of the awareness and training policy and associated access controls are developed and documented. - the awareness and training procedures are disseminated to [AT-01_ODP[02]; personnel or roles to whom the awareness and training procedures are to be disseminated is/are defined].'), ('000104','draft','2009-05-20','DISA FSO','policy','Disseminate organization-level; mission/business process-level; or system-level awareness and training procedures to organization-defined personnel or roles.','AT-01a.02','N/A','Determine if: - awareness and training procedures to facilitate the implementation of the awareness and training policy and associated access controls are developed and documented. - the awareness and training procedures are disseminated to [AT-01_ODP[02]; personnel or roles to whom the awareness and training procedures are to be disseminated is/are defined].'), ('000105','draft','2009-05-20','DISA FSO','policy','Review and update the current security awareness and training procedures in accordance with an organization-defined frequency.','AT-01c.02','N/A','Determine if: - the current awareness and training procedures are reviewed and updated [AT-01_ODP[07]; the frequency at which the current awareness and training procedures are reviewed and updated is defined]. - the current awareness and training procedures are reviewed and updated following [AT-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('000106','draft','2009-09-14','DISA FSO','policy','Provide basic security literacy training to system users (including managers, senior executives, and contractors) as part of initial training for new users.','AT-02a.01','N/A','Determine if: - security literacy training is provided to system users (including managers, senior executives, and contractors) as part of initial training for new users. - privacy literacy training is provided to system users (including managers, senior executives, and contractors) as part of initial training for new users. - security literacy training is provided to system users (including managers, senior executives, and contractors) [AT-02_ODP[01]; the frequency at which to provide security literacy training to system users (including managers, senior executives, and contractors) after initial training is defined] thereafter. - privacy literacy training is provided to system users (including managers, senior executives, and contractors) [AT-02_ODP[02]; the frequency at which to provide privacy literacy training to system users (including managers, senior executives, and contractors) after initial training is defined] thereafter.'), ('000107','draft','2009-05-20','DISA FSO','policy','Provide practical exercises in literacy training that simulate events and incidents.','AT-02(01)','N/A','Determine if practical exercises in literacy training that simulate events and incidents are provided.'), ('000108','draft','2009-05-20','DISA FSO','policy','Provide role-based security training to personnel with organization-defined roles and responsibilities before authorizing access to the system, information, or performing assigned duties.','AT-03a.01','N/A','Determine if: - role-based security training is provided to [AT-03_ODP[01]; roles and responsibilities for role-based security training are defined] before authorizing access to the system, information, or performing assigned duties. - role-based privacy training is provided to [AT-03_ODP[02]; roles and responsibilities for role-based privacy training are defined] before authorizing access to the system, information, or performing assigned duties. - role-based security training is provided to [AT-03_ODP[01]; roles and responsibilities for role-based security training are defined] [AT-03_ODP[03]; the frequency at which to provide role-based security and privacy training to assigned personnel after initial training is defined] thereafter. - role-based privacy training is provided to [AT-03_ODP[02]; roles and responsibilities for role-based privacy training are defined] [AT-03_ODP[03]; the frequency at which to provide role-based security and privacy training to assigned personnel after initial training is defined] thereafter.'), ('000109','draft','2009-05-20','DISA FSO','policy','Provide role-based security training to personnel with organization-defined roles and responsibilities when required by system changes.','AT-03a.02','N/A','Determine if: - role-based security training is provided to personnel with assigned security roles and responsibilities when required by system changes. - role-based privacy training is provided to personnel with assigned security roles and responsibilities when required by system changes.'), ('000112','draft','2009-05-20','DISA FSO','policy','Provide basic security awareness training to system users (including managers, senior executives, and contractors) when required by system changes or following organization-defined events.','AT-02a.02','N/A','Determine if: - security literacy training is provided to system users (including managers, senior executives, and contractors) when required by system changes or following [AT-02_ODP[03]; events that require security literacy training for system users are defined]. - privacy literacy training is provided to system users (including managers, senior executives, and contractors) when required by system changes or following [AT-02_ODP[04]; events that require privacy literacy training for system users are defined].'), ('000113','draft','2009-09-14','DISA FSO','policy','Document individual security training activities, including security awareness training and specific system security training.','AT-04a.','N/A','Determine if: - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are documented. - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are monitored.'), ('000114','draft','2009-09-14','DISA FSO','policy','Monitor individual information security training activities, including security awareness training and specific security training.','AT-04a.','N/A','Determine if: - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are documented. - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are monitored.'), ('000117','draft','2009-05-20','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','AU-01a.01(a)','N/A','Determine if: - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses purpose. - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses scope. - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses roles. - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses responsibilities. - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses management commitment. - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses coordination among organizational entities. - the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy addresses compliance.'), ('000119','draft','2009-05-20','DISA FSO','policy','Review and update the current audit and accountability policy on an organization-defined frequency.','AU-01c.01','N/A','Determine if: - the current audit and accountability policy is reviewed and updated [AU-01_ODP[05]; the frequency at which the current audit and accountability policy is reviewed and updated is defined]. - the current audit and accountability policy is reviewed and updated following [AU-01_ODP[06]; events that would require the current audit and accountability policy to be reviewed and updated are defined.]'), ('000120','draft','2009-05-20','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.','AU-01a.02','N/A','Determine if: - audit and accountability procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls are developed and documented. - the audit and accountability procedures are disseminated to [AU-01_ODP[02]; personnel or roles to whom the audit and accountability procedures are to be disseminated is/are defined].'), ('000122','draft','2009-05-20','DISA FSO','policy','Review and update the current audit and accountability procedures on an organization-defined frequency.','AU-01c.02','N/A','Determine if: - the current audit and accountability procedures are reviewed and updated [AU-01_ODP[07]; the frequency at which the current audit and accountability procedures are reviewed and updated is defined]. - the current audit and accountability procedures are reviewed and updated following [AU-01_ODP[08]; events that would require audit and accountability procedures to be reviewed and updated are defined].'), ('000123','draft','2009-09-15','DISA FSO','policy','Identify the organization-defined event types that the system is capable of logging in support of the audit function.','AU-02a.','N/A','Determine if [AU-02_ODP[01]; the event types that the system is capable of logging in support of the audit function are defined] that the system is capable of logging are identified in support of the audit logging function.'), ('000124','draft','2009-09-15','DISA FSO','policy','Coordinate the event logging function with other organizational entities requiring audit-related information to guide and inform the selection criteria for events to be logged.','AU-02b.','N/A','Determine if the event logging function is coordinated with other organizational entities requiring audit-related information to guide and inform the selection criteria for events to be logged.'), ('000125','draft','2009-09-15','DISA FSO','policy','Provide a rationale for why the event types selected for logging are deemed to be adequate for support after-the-fact investigations of incidents.','AU-02d.','N/A','Determine if a rationale is provided for why the event types selected for logging are deemed to be adequate to support after-the-fact investigations of incidents.'), ('000126','draft','2009-09-15','DISA FSO','policy','Specify the organization-defined event types (subset of the event types defined in AU-2a) along with the frequency of (or situation requiring logging for each identified event type.','AU-02c.','N/A','Determine if: - [AU-02_ODP[02]; the event types (subset of AU-02_ODP[01]) for logging within the system are defined] are specified for logging within the system. - the specified event types are logged within the system [AU-02_ODP[03]; the frequency or situation requiring logging for each specified event type is defined].'), ('000130','draft','2009-05-20','DISA FSO','technical','Ensure that audit records contain information that establishes what type of event occurred.','AU-03a.','N/A','Determine if audit records contain information that establishes what type of event occurred.'), ('000131','draft','2009-05-20','DISA FSO','technical','Ensure that audit records containing information that establishes when the event occurred.','AU-03b.','N/A','Determine if audit records contain information that establishes when the event occurred.'), ('000132','draft','2009-05-20','DISA FSO','technical','Ensure that audit records containing information that establishes where the event occurred.','AU-03c.','N/A','Determine if audit records contain information that establishes where the event occurred.'), ('000133','draft','2009-05-20','DISA FSO','technical','Ensure that audit records containing information that establishes the source of the event.','AU-03d.','N/A','Determine if audit records contain information that establishes the source of the event.'), ('000134','draft','2009-05-20','DISA FSO','technical','Ensure that audit records containing information that establishes the outcome of the event.','AU-03e.','N/A','Determine if audit records contain information that establishes the outcome of the event.'), ('000135','draft','2009-05-20','DISA FSO','technical','Generate audit records containing the organization-defined additional information that is to be included in the audit records.','AU-03(01)','N/A','Determine if generated audit records contain the following [AU-03(01)_ODP; additional information to be included in audit records is defined].'), ('000139','draft','2009-09-15','DISA FSO','technical','Alert organization-defined personnel or roles within an organization-defined time period in the event of an audit logging process failure.','AU-05a.','N/A','Determine if [AU-05_ODP[01]; personnel or roles receiving audit logging process failure alerts are defined] are alerted in the event of an audit logging process failure within [AU-05_ODP[02]; time period for personnel or roles receiving audit logging process failure alerts is defined].'), ('000140','draft','2009-05-20','DISA FSO','technical','Take organization-defined actions upon audit failure include, shutting down the system, overwriting oldest audit records, and stopping the generation of audit records.','AU-05b.','N/A','Determine if [AU-05_ODP[03]; additional actions to be taken in the event of an audit logging process failure are defined] are taken in the event of an audit logging process failure.'), ('000141','draft','2009-11-03','DISA FSO','policy','Make available for expenditure, the planned information security resources.','PM-03c.','N/A','Determine if: - information security resources are made available for expenditure as planned. - privacy resources are made available for expenditure as planned.'), ('000142','draft','2009-11-03','DISA FSO','policy','Implement a process to ensure that plans of action and milestones for the information security program and the associated organizational systems are maintained.','PM-04a.01','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are maintained.'), ('000145','draft','2009-05-20','DISA FSO','policy','Enforce configurable network communications traffic volume thresholds reflecting limits on audit log storage capacity by delaying or rejecting network traffic above those organization-defined thresholds.','AU-05(03)','N/A','Determine if: - configurable network communications traffic volume thresholds reflecting limits on audit log storage capacity are enforced. - network traffic is [AU-05(03)_ODP; one or more of the following PARAMETER VALUES is/are selected: {reject; delay}] if network traffic volume is above configured thresholds.'), ('000147','draft','2009-05-22','DISA FSO','policy','Defines the audit logging failure events requiring real-time alerts.','AU-05(02)','N/A','Determine if an alert is provided within [AU-05(02)_ODP[01]; real-time period requiring alerts when audit failure events (defined in AU-05(02)_ODP[03]) occur is defined] to [AU-05(02)_ODP[02]; personnel, roles, and/or locations to be alerted in real time when audit failure events (defined in AU-05(02)_ODP[03]) occur is/are defined] when [AU-05(02)_ODP[03]; audit logging failure events requiring real-time alerts are defined] occur.'), ('000148','draft','2009-05-22','DISA FSO','policy','Review and analyze system audit records on an organization-defined frequency for indications of organization-defined inappropriate or unusual activity.','AU-06a.','N/A','Determine if system audit records are reviewed and analyzed [AU-06_ODP[01]; frequency at which system audit records are reviewed and analyzed is defined] for indications of [AU-06_ODP[02]; inappropriate or unusual activity is defined] and the potential impact of the inappropriate or unusual activity.'), ('000149','draft','2009-05-22','DISA FSO','policy','Report any findings to organization-defined personnel or roles for indications of organization-defined inappropriate or unusual activity.','AU-06b.','N/A','Determine if findings are reported to [AU-06_ODP[03]; personnel or roles to receive findings from reviews and analyses of system records is/are defined].'), ('000151','draft','2009-09-15','DISA FSO','policy','Defines the frequency for the review and analysis of system audit records for organization-defined inappropriate or unusual activity.','AU-06a.','N/A','Determine if system audit records are reviewed and analyzed [AU-06_ODP[01]; frequency at which system audit records are reviewed and analyzed is defined] for indications of [AU-06_ODP[02]; inappropriate or unusual activity is defined] and the potential impact of the inappropriate or unusual activity.'), ('000153','draft','2009-05-22','DISA FSO','policy','Analyze and correlate audit records across different repositories to gain organization-wide situational awareness.','AU-06(03)','N/A','Determine if audit records across different repositories are analyzed and correlated to gain organization-wide situational awareness.'), ('000154','draft','2009-05-22','DISA FSO','technical','Provide the capability to centrally review and analyze audit records from multiple components within the system.','AU-06(04)','N/A','Determine if: - the capability to centrally review and analyze audit records from multiple components within the system is provided. - the capability to centrally review and analyze audit records from multiple components within the system is implemented.'), ('000158','draft','2009-05-22','DISA FSO','technical','Provide the capability to process, sort, and search audit records for events of interest based on organization-defined audit fields within audit records.','AU-07(01)','N/A','Determine if: - the capability to process, sort, and search audit records for events of interest based on [AU-07(01)_ODP; fields within audit records that can be processed, sorted, or searched are defined] are provided. - the capability to process, sort, and search audit records for events of interest based on [AU-07(01)_ODP; fields within audit records that can be processed, sorted, or searched are defined] are implemented.'), ('000159','draft','2009-05-22','DISA FSO','technical','Use internal system clocks to generate time stamps for audit records.','AU-08a.','N/A','Determine if internal system clocks are used to generate timestamps for audit records.'), ('000162','draft','2009-05-22','DISA FSO','technical','Protect audit information from unauthorized access.','AU-09a.','N/A','Determine if audit information and audit logging tools are protected from unauthorized access, modification, and deletion.'), ('000163','draft','2009-05-22','DISA FSO','technical','Protect audit information from unauthorized modification.','AU-09a.','N/A','Determine if audit information and audit logging tools are protected from unauthorized access, modification, and deletion.'), ('000164','draft','2009-05-22','DISA FSO','technical','Protect audit information from unauthorized deletion.','AU-09a.','N/A','Determine if audit information and audit logging tools are protected from unauthorized access, modification, and deletion.'), ('000165','draft','2009-05-22','DISA FSO','policy','Write audit records to hardware-enforced, write-once media.','AU-09(01)','N/A','Determine if audit trails are written to hardware-enforced, write-once media.'), ('000166','draft','2009-05-22','DISA FSO','technical','Provide irrefutable evidence that an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.','AU-10','N/A','Determine if irrefutable evidence is provided that an individual (or process acting on behalf of an individual) has performed [AU-10_ODP; actions to be covered by non-repudiation are defined].'), ('000167','draft','2009-05-22','DISA FSO','policy','Retain audit records for an organization-defined time period to provide support for after-the-fact investigations of incidents and to meet regulatory and organizational information retention requirements.','AU-11','N/A','Determine if audit records are retained for [AU-11_ODP; a time period to retain audit records that is consistent with the records retention policy is defined] to provide support for after-the-fact investigations of incidents and to meet regulatory and organizational information retention requirements.'), ('000168','draft','2009-09-15','DISA FSO','policy','Defines the time period for retention of audit records, which is consistent with its records retention policy, to provide support for after-the-fact investigations of incidents and meet regulatory and organizational information retention requirements.','AU-11','N/A','Determine if audit records are retained for [AU-11_ODP; a time period to retain audit records that is consistent with the records retention policy is defined] to provide support for after-the-fact investigations of incidents and to meet regulatory and organizational information retention requirements.'), ('000169','draft','2009-05-22','DISA FSO','technical','Provide audit record generation capability for the event types the system is capable of auditing as defined in AU-2 a on organization-defined information system components.','AU-12a.','N/A','Determine if audit record generation capability for the event types the system is capable of auditing (defined in AU-02_ODP[01]) is provided by [AU-12_ODP[01]; system components that provide an audit record generation capability for the events types (defined in AU-02_ODP[02]) are defined].'), ('000170','draft','2009-11-03','DISA FSO','policy','Implement a process to ensure that plans of action and milestones for the security program and associated organizational systems document the remedial information security actions to adequately respond to risk to organizational operations and assets, individuals, other organizations, and the Nation.','PM-04a.02','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems document remedial information security risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems document remedial privacy risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems document remedial supply chain risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation.'), ('000171','draft','2009-09-15','DISA FSO','technical','Allow organization-defined personnel or roles to select the event types that are to be logged by specific components of the system.','AU-12b.','N/A','Determine if [AU-12_ODP[02]; personnel or roles allowed to select the event types that are to be logged by specific components of the system is/are defined] is/are allowed to select the event types that are to be logged by specific components of the system.'), ('000172','draft','2009-09-15','DISA FSO','technical','Generate audit records for the event types defined in AU-2 c that include the audit record content defined in AU-3.','AU-12c.','N/A','Determine if audit records for the event types defined in AU-02_ODP[02] that include the audit record content defined in AU-03 are generated.'), ('000173','draft','2009-09-15','DISA FSO','policy','Defines the level of tolerance for relationship between time stamps of individual records in the audit trail that will be used for correlation.','AU-12(01)','N/A','Determine if audit records from [AU-12(01)_ODP[01]; system components from which audit records are to be compiled into a system-wide (logical or physical) audit trail are defined] are compiled into a system-wide (logical or physical) audit trail that is time-correlated to within [AU-12(01)_ODP[02]; level of tolerance for the relationship between timestamps of individual records in the audit trail is defined].'), ('000174','draft','2009-05-22','DISA FSO','technical','Compile audit records from organization-defined information system components into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance for relationship between time stamps of individual records in the audit trail.','AU-12(01)','N/A','Determine if audit records from [AU-12(01)_ODP[01]; system components from which audit records are to be compiled into a system-wide (logical or physical) audit trail are defined] are compiled into a system-wide (logical or physical) audit trail that is time-correlated to within [AU-12(01)_ODP[02]; level of tolerance for the relationship between timestamps of individual records in the audit trail is defined].'), ('000176','draft','2009-05-22','DISA FSO','policy','Manage system authenticators by establishing initial authenticator content for authenticators issued by the organization.','IA-05b.','N/A','Determine if system authenticators are managed through the establishment of initial authenticator content for any authenticators issued by the organization.'), ('000182','draft','2009-05-22','DISA FSO','policy','Manage system authenticators by changing or refreshing authenticators in accordance with the organization-defined time period by authenticator type or when organization-defined events occur.','IA-05f.','N/A','Determine if system authenticators are managed through the change or refreshment of authenticators [IA-05_ODP[01]; a time period for changing or refreshing authenticators by authenticator type is defined] or when [IA-05_ODP[02]; events that trigger the change or refreshment of authenticators are defined] occur.'), ('000183','draft','2009-05-22','DISA FSO','policy','Manage system authenticators by protecting authenticator content from unauthorized disclosure.','IA-05g.','N/A','Determine if system authenticators are managed through the protection of authenticator content from unauthorized disclosure and modification.'), ('000184','draft','2009-05-22','DISA FSO','policy','Manage system authenticators by requiring individuals to take, and having devices implement, specific security controls to protect authenticators.','IA-05h.','N/A','Determine if: - system authenticators are managed through the requirement for individuals to take specific controls to protect authenticators. - system authenticators are managed through the requirement for devices to implement specific controls to protect authenticators.'), ('000185','draft','2009-09-15','DISA FSO','technical','For public key-based authentication, validate certificates by constructing and verifying a certification path to an accepted trust anchor including checking certificate status information.','IA-05(02)(b)(01)','N/A','Determine if when public key infrastructure (PKI) is used, certificates are validated by constructing and verifying a certification path to an accepted trust anchor, including checking certificate status information.'), ('000186','draft','2009-09-15','DISA FSO','technical','For public key-based authentication, enforce authorized access to the corresponding private key.','IA-05(02)(a)(01)','N/A','Determine if authorized access to the corresponding private key is enforced for public key-based authentication.'), ('000187','draft','2009-09-15','DISA FSO','technical','For public key-based authentication, map the authenticated identity to the account of the individual or group.','IA-05(02)(a)(02)','N/A','Determine if the authenticated identity is mapped to the account of the individual or group for public key-based authentication.'), ('000197','draft','2009-09-15','DISA FSO','technical','For password-based authentication, transmit passwords only over cryptographically-protected channels.','IA-05(01)(c)','N/A','Determine if for password-based authentication, passwords are only transmitted over cryptographically protected channels.'), ('000201','draft','2009-05-22','DISA FSO','policy','Protect authenticators commensurate with the security category of the information to which use of the authenticator permits access.','IA-05(06)','N/A','Determine if authenticators are protected commensurate with the security category of the information to which use of the authenticator permits access.'), ('000204','draft','2009-05-22','DISA FSO','policy','Defines the security controls required to manage the risk of compromise due to individuals having accounts on multiple systems.','IA-05(08)','N/A','Determine if [IA-05(08)_ODP; security controls implemented to manage the risk of compromise due to individuals having accounts on multiple systems are defined] are implemented to manage the risk of compromise due to individuals having accounts on multiple systems.'), ('000206','draft','2009-05-22','DISA FSO','technical','Obscure feedback of authentication information during the authentication process to protect the information from possible exploitation and use by unauthorized individuals.','IA-06','N/A','Determine if the feedback of authentication information is obscured during the authentication process to protect the information from possible exploitation and use by unauthorized individuals.'), ('000209','draft','2009-11-03','DISA FSO','policy','Develop the results of information security measures of performance.','PM-06','N/A','Determine if: - information security measures of performance are developed. - information security measures of performance are monitored. - the results of information security measures of performance are reported. - privacy measures of performance are developed. - privacy measures of performance are monitored. - the results of privacy measures of performance are reported.'), ('000210','draft','2009-11-03','DISA FSO','policy','Monitor the results of information security measures of performance.','PM-06','N/A','Determine if: - information security measures of performance are developed. - information security measures of performance are monitored. - the results of information security measures of performance are reported. - privacy measures of performance are developed. - privacy measures of performance are monitored. - the results of privacy measures of performance are reported.'), ('000211','draft','2009-11-03','DISA FSO','policy','Report on the results of information security measures of performance.','PM-06','N/A','Determine if: - information security measures of performance are developed. - information security measures of performance are monitored. - the results of information security measures of performance are reported. - privacy measures of performance are developed. - privacy measures of performance are monitored. - the results of privacy measures of performance are reported.'), ('000212','draft','2009-11-03','DISA FSO','policy','Develop an enterprise architecture with consideration for information security and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-07','N/A','Determine if: - an enterprise architecture is developed with consideration for information security. - an enterprise architecture is maintained with consideration for information security. - an enterprise architecture is developed with consideration for privacy. - an enterprise architecture is maintained with consideration for privacy. - an enterprise architecture is developed with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation. - an enterprise architecture is maintained with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation.'), ('000213','draft','2009-09-14','DISA FSO','technical','Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies.','AC-03','N/A','Determine if approved authorizations for logical access to information and system resources are enforced in accordance with applicable access control policies.'), ('000216','draft','2009-11-03','DISA FSO','policy','Address information security issues in the development and documentation of a critical infrastructure and key resources protection plan.','PM-08','N/A','Determine if: - information security issues are addressed in the development of a critical infrastructure and key resources protection plan. - information security issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - information security issues are addressed in the update of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the development of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the update of a critical infrastructure and key resources protection plan.'), ('000217','draft','2009-09-24','DISA FSO','policy','Defines a time period after which inactive accounts are automatically disabled.',NULL,'N/A',NULL), ('000219','draft','2009-09-14','DISA FSO','technical','When transferring information between different security domains, decompose information into organization-defined policy-relevant subcomponents for submission to policy enforcement mechanisms.','AC-04(13)','N/A','Determine if when transferring information between different security domains, information is decomposed into [AC-04(13)_ODP; policy-relevant subcomponents into which to decompose information for submission to policy enforcement mechanisms are defined] for submission to policy enforcement mechanisms.'), ('000225','draft','2009-09-14','DISA FSO','policy','Employ the principle of least privilege, allowing only authorized accesses for users (or processes acting on behalf of users) which are necessary to accomplish assigned organizational tasks.','AC-06','N/A','Determine if the principle of least privilege is employed, allowing only authorized accesses for users (or processes acting on behalf of users) that are necessary to accomplish assigned organizational tasks.'), ('000227','draft','2009-11-03','DISA FSO','policy','Develop a comprehensive strategy to manage security risk to organizational operations and assets, individuals, other organizations, and the Nation associated with the operation and use of information systems.','PM-09a.01','N/A','Determine if a comprehensive strategy is developed to manage security risk to organizational operations and assets, individuals, other organizations, and the Nation associated with the operation and use of organizational systems.'), ('000228','draft','2009-11-03','DISA FSO','policy','Implement the risk management strategy consistently across the organization.','PM-09b.','N/A','Determine if the risk management strategy is implemented consistently across the organization.'), ('000232','draft','2009-09-14','DISA FSO','policy','Document and provide supporting rationale in the security plan for the system, user actions not requiring identification and authentication.','AC-14b.','N/A','Determine if: - user actions not requiring identification or authentication are documented in the security plan for the system. - a rationale for user actions not requiring identification or authentication is provided in the security plan for the system.'), ('000233','draft','2009-11-03','DISA FSO','policy','Designate individuals to fulfill specific roles and responsibilities within the organizational risk management process.','PM-10b.','N/A','Determine if individuals are designated to fulfill specific roles and responsibilities within the organizational risk management process.'), ('000234','draft','2009-11-03','DISA FSO','policy','Integrate the authorization processes into an organization-wide risk management program.','PM-10c.','N/A','Determine if the authorization processes are integrated into an organization-wide risk management program.'), ('000235','draft','2009-11-04','DISA FSO','policy','Define organizational mission and business processes with consideration for information security and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-11a.','N/A','Determine if: - organizational mission and business processes are defined with consideration for information security. - organizational mission and business processes are defined with consideration for privacy. - organizational mission and business processes are defined with consideration for the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.'), ('000236','draft','2009-11-04','DISA FSO','policy','Determine information protection needs arising from the defined mission and business processes.','PM-11b.','N/A','Determine if: - information protection needs arising from the defined mission and business processes are determined. - personally identifiable information processing needs arising from the defined mission and business processes are determined.'), ('000238','draft','2009-09-15','DISA FSO','policy','Defines the frequency to review and update the current assessment, authorization, and monitoring policy.','CA-01c.01','N/A','Determine if: - the current assessment, authorization, and monitoring policy is reviewed and updated [CA-01_ODP[05]; the frequency at which the current assessment, authorization, and monitoring policy is reviewed and updated is defined]. - the current assessment, authorization, and monitoring policy is reviewed and updated following [CA-01_ODP[06]; events that would require the current assessment, authorization, and monitoring policy to be reviewed and updated are defined].'), ('000239','draft','2009-09-15','DISA FSO','policy','Develop and document an organization-level; mission/business process; system-level assessment, authorization, and monitoring policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','CA-01a.01(a)','N/A','Determine if: - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy addresses purpose. - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy addresses scope. - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level};] assessment, authorization, and monitoring policy addresses roles. - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy addresses responsibilities. - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy addresses management commitment. - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy addresses coordination among organizational entities. - the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy addresses compliance.'), ('000240','draft','2009-09-15','DISA FSO','policy','Disseminates to organization-defined personnel or roles an organization-level; mission/business process; system-level assessment, authorization, and monitoring policy.','CA-01a.','N/A','Determine if: - an assessment, authorization, and monitoring policy is developed and documented. - the assessment, authorization, and monitoring policy is disseminated to [CA-01_ODP[01]; personnel or roles to whom the assessment, authorization, and monitoring policy is to be disseminated is/are defined].'), ('000241','draft','2009-09-15','DISA FSO','policy','Review and update the current assessment, authorization, and monitoring policy on an organization-defined frequency.','CA-01c.01','N/A','Determine if: - the current assessment, authorization, and monitoring policy is reviewed and updated [CA-01_ODP[05]; the frequency at which the current assessment, authorization, and monitoring policy is reviewed and updated is defined]. - the current assessment, authorization, and monitoring policy is reviewed and updated following [CA-01_ODP[06]; events that would require the current assessment, authorization, and monitoring policy to be reviewed and updated are defined].'), ('000242','draft','2009-09-15','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls.','CA-01a.02','N/A','Determine if: - assessment, authorization, and monitoring procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls are developed and documented. - the assessment, authorization, and monitoring procedures are disseminated to [CA-01_ODP[02]; personnel or roles to whom the assessment, authorization, and monitoring procedures are to be disseminated is/are defined].'), ('000243','draft','2009-09-15','DISA FSO','policy','Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls.','CA-01a.02','N/A','Determine if: - assessment, authorization, and monitoring procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls are developed and documented. - the assessment, authorization, and monitoring procedures are disseminated to [CA-01_ODP[02]; personnel or roles to whom the assessment, authorization, and monitoring procedures are to be disseminated is/are defined].'), ('000244','draft','2009-09-15','DISA FSO','policy','Review and update the current assessment, authorization, and monitoring procedures on an organization-defined frequency.','CA-01c.02','N/A','Determine if: - the current assessment, authorization, and monitoring procedures are reviewed and updated [CA-01_ODP[07]; the frequency at which the current assessment, authorization, and monitoring procedures are reviewed and updated is defined]. - the current assessment, authorization, and monitoring procedures are reviewed and updated following [CA-01_ODP[08]; events that would require assessment, authorization, and monitoring procedures to be reviewed and updated are defined].'), ('000246','draft','2009-09-15','DISA FSO','policy','Develop a control assessment plan that describes the scope of the assessment including controls and control enhancements under assessment.','CA-02b.01','N/A','Determine if a control assessment plan is developed that describes the scope of the assessment, including controls and control enhancements under assessment.'), ('000247','draft','2009-09-15','DISA FSO','policy','Develop a control assessment plan that describes the scope of the assessment including assessment procedures to be used to determine control effectiveness.','CA-02b.02','N/A','Determine if a control assessment plan is developed that describes the scope of the assessment, including assessment procedures to be used to determine control effectiveness.'), ('000248','draft','2009-09-15','DISA FSO','policy','Develop a control assessment plan that describes the scope of the assessment including assessment environment.','CA-02b.03','N/A','Determine if: - a control assessment plan is developed that describes the scope of the assessment, including the assessment environment. - a control assessment plan is developed that describes the scope of the assessment, including the assessment team. - a control assessment plan is developed that describes the scope of the assessment, including assessment roles and responsibilities.'), ('000251','draft','2009-09-15','DISA FSO','policy','Assess the controls in the systems and its environment of operation on an organization-defined frequency, to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements.','CA-02d.','N/A','Determine if: - controls are assessed in the system and its environment of operation [CA-02_ODP[01]; the frequency at which to assess controls in the system and its environment of operation is defined] to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established security requirements. - controls are assessed in the system and its environment of operation [CA-02_ODP[01]; the frequency at which to assess controls in the system and its environment of operation is defined] to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established privacy requirements.'), ('000252','draft','2009-09-15','DISA FSO','policy','Defines the frequency on which the security controls in the system and its environment of operation are assessed.','CA-02d.','N/A','Determine if: - controls are assessed in the system and its environment of operation [CA-02_ODP[01]; the frequency at which to assess controls in the system and its environment of operation is defined] to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established security requirements. - controls are assessed in the system and its environment of operation [CA-02_ODP[01]; the frequency at which to assess controls in the system and its environment of operation is defined] to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established privacy requirements.'), ('000253','draft','2009-09-15','DISA FSO','policy','Produce a control assessment report that document the results of the assessment.',NULL,'N/A',NULL), ('000254','draft','2009-09-15','DISA FSO','policy','Provide the results of the control assessment to organization-defined individuals or roles.','CA-02f.','N/A','Determine if the results of the control assessment are provided to [CA-02_ODP[02]; individuals or roles to whom control assessment results are to be provided are defined].'), ('000255','draft','2009-09-15','DISA FSO','policy','Employ independent assessors or assessment teams to conduct control assessments.','CA-02(01)','N/A','Determine if independent assessors or assessment teams are employed to conduct control assessments.'), ('000256','draft','2009-09-15','DISA FSO','policy','Include as part of the control assessments, announced or unannounced, on an organization-defined frequency, in-depth monitoring; security instrumentation; automated security test cases; vulnerability scanning; malicious user testing; insider threat assessment; performance and load testing; data leakage or data loss assessment; and/or organization-defined other forms of assessment.','CA-02(02)','N/A','Determine if [CA-02(02)_ODP[01]; frequency at which to include specialized assessments as part of the control assessment is defined] [CA-02(02)_ODP[02]; one of the following PARAMETER VALUES is selected: {announced; unannounced}] [CA-02(02)_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {in-depth monitoring; security instrumentation; automated security test cases; vulnerability scanning; malicious user testing; insider threat assessment; performance and load testing; data leakage or data loss assessment; [CA-02(02)_ODP[04]; other forms of assessment are defined (if selected)]}] are included as part of control assessments.'), ('000258','draft','2009-09-15','DISA FSO','policy','Document, as part of each exchange agreement, the interface characteristics.','CA-03b.','N/A','Determine if: - the interface characteristics are documented as part of each exchange agreement. - security requirements are documented as part of each exchange agreement. - privacy requirements are documented as part of each exchange agreement. - controls are documented as part of each exchange agreement. - responsibilities for each system are documented as part of each exchange agreement. - the impact level of the information communicated is documented as part of each exchange agreement.'), ('000259','draft','2009-09-15','DISA FSO','policy','Document, as part of each exchange agreement, the security requirements, controls and responsibilities for each system, and the impact level of the information communicated.','CA-03b.','N/A','Determine if: - the interface characteristics are documented as part of each exchange agreement. - security requirements are documented as part of each exchange agreement. - privacy requirements are documented as part of each exchange agreement. - controls are documented as part of each exchange agreement. - responsibilities for each system are documented as part of each exchange agreement. - the impact level of the information communicated is documented as part of each exchange agreement.'), ('000264','draft','2009-09-15','DISA FSO','policy','Develop a plan of action and milestones for the system to document the planned remediation actions of the organization to correct weaknesses or deficiencies noted during the assessment of the controls and to reduce or eliminate known vulnerabilities in the system.','CA-05a.','N/A','Determine if a plan of action and milestones for the system is developed to document the planned remediation actions of the organization to correct weaknesses or deficiencies noted during the assessment of the controls and to reduce or eliminate known vulnerabilities in the system.'), ('000265','draft','2009-09-15','DISA FSO','policy','Defines the frequency with which to update the existing plan of action and milestones for the system.','CA-05b.','N/A','Determine if existing plan of action and milestones are updated [CA-05_ODP; the frequency at which to update an existing plan of action and milestones based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities is defined] based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities.'), ('000266','draft','2009-09-15','DISA FSO','policy','Update, on an organization-defined frequency, the existing plan of action and milestones based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities.','CA-05b.','N/A','Determine if existing plan of action and milestones are updated [CA-05_ODP; the frequency at which to update an existing plan of action and milestones based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities is defined] based on the findings from control assessments, independent audits or reviews, and continuous monitoring activities.'), ('000267','draft','2009-09-15','DISA FSO','policy','Ensure the accuracy of the plan of action and milestones for the system using organization-defined automated mechanisms.','CA-05(01)','N/A','Determine if [CA-05(01)_ODP; automated mechanisms used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system are defined] are used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system.'), ('000268','draft','2009-09-15','DISA FSO','policy','Ensure the currency of the plan of action and milestones for the system using organization-defined automated mechanisms.','CA-05(01)','N/A','Determine if [CA-05(01)_ODP; automated mechanisms used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system are defined] are used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system.'), ('000269','draft','2009-09-15','DISA FSO','policy','Ensure the availability of the plan of action and milestones for the system using organization-defined automated mechanisms.','CA-05(01)','N/A','Determine if [CA-05(01)_ODP; automated mechanisms used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system are defined] are used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system.'), ('000270','draft','2009-09-15','DISA FSO','policy','Assign a senior official as the authorizing official for the system.','CA-06a.','N/A','Determine if a senior official is assigned as the authorizing official for the system.'), ('000271','draft','2009-09-15','DISA FSO','policy','Ensure the authorizing official for the system authorizes the system to operate before commencing operations.','CA-06c.02','N/A','Determine if before commencing operations, the authorizing official for the system authorizes the system to operate.'), ('000272','draft','2009-09-15','DISA FSO','policy','Update the authorization on an organization-defined frequency.','CA-06e.','N/A','Determine if the authorizations are updated [CA-06_ODP; frequency at which to update the authorizations is defined].'), ('000273','draft','2009-09-15','DISA FSO','policy','Defines the frequency with which to update the authorizations.','CA-06e.','N/A','Determine if the authorizations are updated [CA-06_ODP; frequency at which to update the authorizations is defined].'), ('000274','draft','2009-09-15','DISA FSO','policy','Develop a continuous monitoring strategy.','CA-07','N/A','Determine if: - a system-level continuous monitoring strategy is developed. - system-level continuous monitoring is implemented in accordance with the organization-level continuous monitoring strategy.'), ('000279','draft','2009-09-15','DISA FSO','policy','Implement ongoing control assessments in accordance with the continuous monitoring strategy.','CA-07c.','N/A','Determine if system-level continuous monitoring includes ongoing control assessments in accordance with the continuous monitoring strategy.'), ('000280','draft','2009-09-15','DISA FSO','policy','Implement a continuous monitoring program that includes reporting the security status to organization-defined personnel or roles on an organization-defined frequency.','CA-07g.','N/A','Determine if: - system-level continuous monitoring includes reporting the security status of the system to [CA-07_ODP[04]; personnel or roles to whom the security status of the system is reported are defined] [CA-07_ODP[05]; frequency at which the security status of the system is reported is defined]. - system-level continuous monitoring includes reporting the privacy status of the system to [CA-07_ODP[06]; personnel or roles to whom the privacy status of the system is reported are defined] [CA-07_ODP[07]; frequency at which the privacy status of the system is reported is defined].'), ('000281','draft','2009-09-15','DISA FSO','policy','Defines the frequency with which to report the security status to organization-defined personnel or roles.','CA-07g.','N/A','Determine if: - system-level continuous monitoring includes reporting the security status of the system to [CA-07_ODP[04]; personnel or roles to whom the security status of the system is reported are defined] [CA-07_ODP[05]; frequency at which the security status of the system is reported is defined]. - system-level continuous monitoring includes reporting the privacy status of the system to [CA-07_ODP[06]; personnel or roles to whom the privacy status of the system is reported are defined] [CA-07_ODP[07]; frequency at which the privacy status of the system is reported is defined].'), ('000282','draft','2009-09-15','DISA FSO','policy','Employ independent assessors or assessment teams to monitor the controls in the system on an ongoing basis.','CA-07(01)','N/A','Determine if independent assessors or assessment teams are employed to monitor the controls in the system on an ongoing basis.'), ('000286','draft','2009-09-17','DISA FSO','policy','Defines the frequency with which to review and update the configuration management policies.','CM-01c.01','N/A','Determine if: - the current configuration management policy is reviewed and updated [CM-01_ODP[05]; the frequency at which the current configuration management policy is reviewed and updated is defined]. - the current configuration management policy is reviewed and updated following [CM-01_ODP[06]; events that would require the current configuration management policy to be reviewed and updated are defined].'), ('000287','draft','2009-09-17','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level configuration management policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','CM-01a.01(a)','N/A','Determine if: - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses purpose. - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses scope. - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses roles. - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses responsibilities. - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses management commitment. - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses coordination among organizational entities. - the [CM-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the configuration management policy addresses compliance.'), ('000289','draft','2009-09-17','DISA FSO','policy','Review and update, on an organization-defined frequency, the configuration management policy.','CM-01c.01','N/A','Determine if: - the current configuration management policy is reviewed and updated [CM-01_ODP[05]; the frequency at which the current configuration management policy is reviewed and updated is defined]. - the current configuration management policy is reviewed and updated following [CM-01_ODP[06]; events that would require the current configuration management policy to be reviewed and updated are defined].'), ('000290','draft','2009-09-17','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level configuration management policy and the associated configuration management controls.','CM-01a.02','N/A','Determine if: - configuration management procedures to facilitate the implementation of the configuration management policy and associated configuration management controls are developed and documented. - the configuration management procedures are disseminated to [CM-01_ODP[02]; personnel or roles to whom the configuration management procedures are to be disseminated is/are defined].'), ('000292','draft','2009-09-17','DISA FSO','policy','Review and update, on an organization-defined frequency, the procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level configuration management policy and associated configuration management controls.','CM-01a.02','N/A','Determine if: - configuration management procedures to facilitate the implementation of the configuration management policy and associated configuration management controls are developed and documented. - the configuration management procedures are disseminated to [CM-01_ODP[02]; personnel or roles to whom the configuration management procedures are to be disseminated is/are defined].'), ('000295','draft','2009-09-17','DISA FSO','policy','Maintain, under configuration control, a current baseline configuration of the system.','CM-02a.','N/A','Determine if: - a current baseline configuration of the system is developed and documented. - a current baseline configuration of the system is maintained under configuration control.'), ('000296','draft','2009-09-17','DISA FSO','policy','Review and update the baseline configuration of the system on an organization-defined frequency.','CM-02b.01','N/A','Determine if the baseline configuration of the system is reviewed and updated [CM-02_ODP[01]; the frequency of baseline configuration review and update is defined].'), ('000297','draft','2009-09-17','DISA FSO','policy','Review and update the baseline configuration of the system when required due to organization-defined circumstances.','CM-02b.02','N/A','Determine if the baseline configuration of the system is reviewed and updated when required due to [CM-02_ODP[02]; the circumstances requiring baseline configuration review and update are defined].'), ('000300','draft','2009-09-17','DISA FSO','policy','Maintain complete configuration of the system using organization-defined automated mechanisms.','CM-02(02)','N/A','Determine if: - the currency of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the completeness of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the accuracy of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the availability of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined].'), ('000301','draft','2009-09-17','DISA FSO','policy','Maintain current configuration of the system using organization-defined automated mechanisms.','CM-02(02)','N/A','Determine if: - the currency of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the completeness of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the accuracy of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the availability of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined].'), ('000302','draft','2009-09-17','DISA FSO','policy','Maintain accurate configuration of the system using organization-defined automated mechanisms.','CM-02(02)','N/A','Determine if: - the currency of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the completeness of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the accuracy of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the availability of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined].'), ('000303','draft','2009-09-17','DISA FSO','policy','Maintain available configuration of the system using organization-defined automated mechanisms.','CM-02(02)','N/A','Determine if: - the currency of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the completeness of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the accuracy of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the availability of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined].'), ('000304','draft','2009-09-17','DISA FSO','policy','Retain organization-defined number of previous versions of baseline configurations of the system to support rollback.','CM-02(03)','N/A','Determine if [CM-02(03)_ODP; the number of previous baseline configuration versions to be retained is defined] of previous baseline configuration version(s) of the system is/are retained to support rollback.'), ('000311','draft','2009-09-17','DISA FSO','policy','Maintain a baseline configuration for system development environments that is managed separately from the operational baseline configuration.','CM-02(06)','N/A','Determine if: - a baseline configuration for system development environments that is managed separately from the operational baseline configuration is maintained. - a baseline configuration for test environments that is managed separately from the operational baseline configuration is maintained.'), ('000312','draft','2009-09-17','DISA FSO','policy','Maintain a baseline configuration for system test environments that is managed separately from the operational baseline configuration.','CM-02(06)','N/A','Determine if: - a baseline configuration for system development environments that is managed separately from the operational baseline configuration is maintained. - a baseline configuration for test environments that is managed separately from the operational baseline configuration is maintained.'), ('000313','draft','2009-09-17','DISA FSO','policy','Determine and document the types of changes to the system that are configuration-controlled.','CM-03a.','N/A','Determine if the types of changes to the system that are configuration-controlled are determined and documented.'), ('000314','draft','2009-09-17','DISA FSO','policy','Approve or disapprove configuration-controlled changes to the system, with explicit consideration for security impact analyses.','CM-03b.','N/A','Determine if: - proposed configuration-controlled changes to the system are reviewed. - proposed configuration-controlled changes to the system are approved or disapproved with explicit consideration for security and privacy impact analyses.'), ('000316','draft','2009-09-17','DISA FSO','policy','Retain records of configuration-controlled changes to the system for an organization-defined time period.','CM-03e.','N/A','Determine if records of configuration-controlled changes to the system are retained for [CM-03_ODP[01]; the time period to retain records of configuration-controlled changes is defined].'), ('000318','draft','2009-09-17','DISA FSO','policy','Monitor and review activities associated with configuration-controlled changes to the system.','CM-03f.','N/A','Determine if: - activities associated with configuration-controlled changes to the system are monitored. - activities associated with configuration-controlled changes to the system are reviewed.'), ('000319','draft','2009-09-17','DISA FSO','policy','Coordinate and provides oversight for configuration change control activities through an organization-defined configuration change control element that convenes at the organization-defined frequency, and/or for any organization-defined configuration change conditions.','CM-03g.','N/A','Determine if: - configuration change control activities are coordinated and overseen by [CM-03_ODP[02]; the configuration change control element responsible for coordinating and overseeing change control activities is defined]. - the configuration control element convenes [CM-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[CM-03_ODP[04]; the frequency at which the configuration control element convenes is defined (if selected)]; when [CM-03_ODP[05]; configuration change conditions that prompt the configuration control element to convene are defined (if selected)]}]].'), ('000320','draft','2009-09-17','DISA FSO','policy','Defines the frequency with which to convene the configuration change control element.','CM-03g.','N/A','Determine if: - configuration change control activities are coordinated and overseen by [CM-03_ODP[02]; the configuration change control element responsible for coordinating and overseeing change control activities is defined]. - the configuration control element convenes [CM-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[CM-03_ODP[04]; the frequency at which the configuration control element convenes is defined (if selected)]; when [CM-03_ODP[05]; configuration change conditions that prompt the configuration control element to convene are defined (if selected)]}]].'), ('000321','draft','2009-09-17','DISA FSO','policy','Defines configuration change conditions that prompt the configuration change control element to convene.','CM-03g.','N/A','Determine if: - configuration change control activities are coordinated and overseen by [CM-03_ODP[02]; the configuration change control element responsible for coordinating and overseeing change control activities is defined]. - the configuration control element convenes [CM-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[CM-03_ODP[04]; the frequency at which the configuration control element convenes is defined (if selected)]; when [CM-03_ODP[05]; configuration change conditions that prompt the configuration control element to convene are defined (if selected)]}]].'), ('000322','draft','2009-09-17','DISA FSO','policy','Use organization-defined automated mechanisms to document proposed changes to the system.','CM-03(01)(a)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to document proposed changes to the system.'), ('000323','draft','2009-09-17','DISA FSO','policy','Use organization-defined automated mechanisms to notify organization-defined approval authorities of proposed changes to the system and request change approval.','CM-03(01)(b)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to notify [CM-03(01)_ODP[02]; approval authorities to be notified of and request approval for proposed changes to the system are defined] of proposed changes to the system and request change approval.'), ('000324','draft','2009-09-17','DISA FSO','policy','Use organization-defined automated mechanisms to highlight proposed changes to the system that have not been approved or disapproved by an organization-defined time period.','CM-03(01)(c)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to highlight proposed changes to the system that have not been approved or disapproved within [CM-03(01)_ODP[03]l the time period after which to highlight changes that have not been approved or disapproved is defined].'), ('000325','draft','2009-09-17','DISA FSO','policy','Use organization-defined automated mechanisms to prohibit changes to the system until designated approvals are received.','CM-03(01)(d)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to prohibit changes to the system until designated approvals are received.'), ('000326','draft','2009-09-17','DISA FSO','policy','Use organization-defined automated mechanisms to document all changes to the system.','CM-03(01)(e)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to document all changes to the system.'), ('000327','draft','2009-09-17','DISA FSO','policy','Tests changes to the system before finalizing the implementation of the changes.','CM-03(02)','N/A','Determine if: - changes to the system are tested before finalizing the implementation of the changes. - changes to the system are validated before finalizing the implementation of the changes. - changes to the system are documented before finalizing the implementation of the changes.'), ('000328','draft','2009-09-17','DISA FSO','policy','Validate changes to the system before finalizing the implementation of the changes.','CM-03(02)','N/A','Determine if: - changes to the system are tested before finalizing the implementation of the changes. - changes to the system are validated before finalizing the implementation of the changes. - changes to the system are documented before finalizing the implementation of the changes.'), ('000329','draft','2009-09-17','DISA FSO','policy','Document changes to the system before finalizing the implementation of the changes.','CM-03(02)','N/A','Determine if: - changes to the system are tested before finalizing the implementation of the changes. - changes to the system are validated before finalizing the implementation of the changes. - changes to the system are documented before finalizing the implementation of the changes.'), ('000330','draft','2009-09-17','DISA FSO','policy','Implement changes to the current system baseline using organization-defined automated mechanisms.','CM-03(03)','N/A','Determine if: - changes to the current system baseline are implemented using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined]. - the updated baseline is deployed across the installed base using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined].'), ('000331','draft','2009-09-17','DISA FSO','policy','Deploy the updated system baseline across the installed base using organization-defined automated mechanism.','CM-03(03)','N/A','Determine if: - changes to the current system baseline are implemented using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined]. - the updated baseline is deployed across the installed base using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined].'), ('000332','draft','2009-09-17','DISA FSO','policy','Require an organization-defined security representative to be a member of the organization-defined configuration change control element.','CM-03(04)','N/A','Determine if: - [CM-03(04)_ODP[01]; security representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined]. - [CM-03(04)_ODP[02]; privacy representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined].'), ('000333','draft','2009-09-18','DISA FSO','policy','Analyze changes to the system to determine potential security impacts prior to change implementation.','CM-04','N/A','Determine if: - changes to the system are analyzed to determine potential security impacts prior to change implementation. - changes to the system are analyzed to determine potential privacy impacts prior to change implementation.'), ('000335','draft','2009-09-18','DISA FSO','policy','After system changes, verify that the impacted controls are implemented correctly, meeting the security requirements for the system.','CM-04(02)','N/A','Determine if: - the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes. - the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.'), ('000336','draft','2009-09-18','DISA FSO','policy','After system changes, verify that the impacted controls are operating as intended, meeting the security requirements for the system.','CM-04(02)','N/A','Determine if: - the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes. - the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.'), ('000337','draft','2009-09-18','DISA FSO','policy','After system changes, verify that the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system.','CM-04(02)','N/A','Determine if: - the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes. - the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.'), ('000340','draft','2009-09-18','DISA FSO','policy','Approve physical access restrictions associated with changes to the system.','CM-05','N/A','Determine if: - physical access restrictions associated with changes to the system are defined and documented. - physical access restrictions associated with changes to the system are approved. - physical access restrictions associated with changes to the system are enforced. - logical access restrictions associated with changes to the system are defined and documented. - logical access restrictions associated with changes to the system are approved. - logical access restrictions associated with changes to the system are enforced.'), ('000341','draft','2009-09-18','DISA FSO','policy','Enforce physical access restrictions associated with changes to the system.','CM-05','N/A','Determine if: - physical access restrictions associated with changes to the system are defined and documented. - physical access restrictions associated with changes to the system are approved. - physical access restrictions associated with changes to the system are enforced. - logical access restrictions associated with changes to the system are defined and documented. - logical access restrictions associated with changes to the system are approved. - logical access restrictions associated with changes to the system are enforced.'), ('000344','draft','2009-09-18','DISA FSO','policy','Approve logical access restrictions associated with changes to the system.','CM-05','N/A','Determine if: - physical access restrictions associated with changes to the system are defined and documented. - physical access restrictions associated with changes to the system are approved. - physical access restrictions associated with changes to the system are enforced. - logical access restrictions associated with changes to the system are defined and documented. - logical access restrictions associated with changes to the system are approved. - logical access restrictions associated with changes to the system are enforced.'), ('000345','draft','2009-09-18','DISA FSO','policy','Enforce logical access restrictions associated with changes to the system.','CM-05','N/A','Determine if: - physical access restrictions associated with changes to the system are defined and documented. - physical access restrictions associated with changes to the system are approved. - physical access restrictions associated with changes to the system are enforced. - logical access restrictions associated with changes to the system are defined and documented. - logical access restrictions associated with changes to the system are approved. - logical access restrictions associated with changes to the system are enforced.'), ('000353','draft','2009-09-18','DISA FSO','policy','Defines system components requiring enforcement of a dual authorization for system changes.','CM-05(04)','N/A','Determine if: - dual authorization for implementing changes to [CM-05(04)_ODP[01]; system components requiring dual authorization for changes are defined] is enforced. - dual authorization for implementing changes to [CM-05(04)_ODP[02]; system-level information requiring dual authorization for changes is defined] is enforced.'), ('000354','draft','2009-09-18','DISA FSO','policy','Enforce dual authorization for implementing changes to organization-defined system components.','CM-05(04)','N/A','Determine if: - dual authorization for implementing changes to [CM-05(04)_ODP[01]; system components requiring dual authorization for changes are defined] is enforced. - dual authorization for implementing changes to [CM-05(04)_ODP[02]; system-level information requiring dual authorization for changes is defined] is enforced.'), ('000366','draft','2009-09-18','DISA FSO','policy','Implement the security configuration settings.','CM-06b.','N/A','Determine if the configuration settings documented in CM-06a are implemented.'), ('000367','draft','2009-09-18','DISA FSO','policy','Identify any deviations from the established configuration settings for organization-defined system components based on organization-defined operational requirements.','CM-06c.','N/A','Determine if: - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are identified and documented based on [CM-06_ODP[03]; operational requirements necessitating approval of deviations are defined]. - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are approved.'), ('000368','draft','2009-09-18','DISA FSO','policy','Document any deviations from the established configuration settings for organization-defined system components based on organization-defined operational requirements.','CM-06c.','N/A','Determine if: - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are identified and documented based on [CM-06_ODP[03]; operational requirements necessitating approval of deviations are defined]. - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are approved.'), ('000369','draft','2009-09-18','DISA FSO','policy','Approve any deviations from the established configuration settings for organization-defined system components based on organization-defined operational requirements.','CM-06c.','N/A','Determine if: - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are identified and documented based on [CM-06_ODP[03]; operational requirements necessitating approval of deviations are defined]. - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are approved.'), ('000370','draft','2009-09-18','DISA FSO','policy','Manage configuration settings for organization-defined system components using organization-defined automated mechanisms.','CM-06(01)','N/A','Determine if: - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are managed using [CM-06(01)_ODP[02]; automated mechanisms to manage configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are applied using [CM-06(01)_ODP[03]; automated mechanisms to apply configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are verified using [CM-06(01)_ODP[04]; automated mechanisms to verify configuration settings are defined].'), ('000371','draft','2009-09-18','DISA FSO','policy','Apply configuration settings for organization-defined system components using organization-defined automated mechanisms.','CM-06(01)','N/A','Determine if: - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are managed using [CM-06(01)_ODP[02]; automated mechanisms to manage configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are applied using [CM-06(01)_ODP[03]; automated mechanisms to apply configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are verified using [CM-06(01)_ODP[04]; automated mechanisms to verify configuration settings are defined].'), ('000372','draft','2009-09-18','DISA FSO','policy','Verify configuration settings for organization-defined system components using organization-defined automated mechanisms.','CM-06(01)','N/A','Determine if: - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are managed using [CM-06(01)_ODP[02]; automated mechanisms to manage configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are applied using [CM-06(01)_ODP[03]; automated mechanisms to apply configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are verified using [CM-06(01)_ODP[04]; automated mechanisms to verify configuration settings are defined].'), ('000380','draft','2009-09-18','DISA FSO','policy','Defines prohibited or restricted functions, system ports, protocols, software and/or services for the system.','CM-07b.','N/A','Determine if: - the use of [CM-07_ODP[02]; functions to be prohibited or restricted are defined] is prohibited or restricted. - the use of [CM-07_ODP[03]; ports to be prohibited or restricted are defined] is prohibited or restricted. - the use of [CM-07_ODP[04]; protocols to be prohibited or restricted are defined] is prohibited or restricted. - the use of [CM-07_ODP[05]; software to be prohibited or restricted is defined] is prohibited or restricted. - the use of [CM-07_ODP[06]; services to be prohibited or restricted are defined] is prohibited or restricted.'), ('000381','draft','2009-09-18','DISA FSO','technical','Configure the system to provide only organization-defined mission essential capabilities.','CM-07a.','N/A','Determine if the system is configured to provide only [CM-07_ODP[01]; mission-essential capabilities for the system are defined].'), ('000382','draft','2009-09-18','DISA FSO','technical','Configure the system to prohibit or restrict the use of organization-defined prohibited or restricted functions, system ports, protocols, software, and/or services.','CM-07b.','N/A','Determine if: - the use of [CM-07_ODP[02]; functions to be prohibited or restricted are defined] is prohibited or restricted. - the use of [CM-07_ODP[03]; ports to be prohibited or restricted are defined] is prohibited or restricted. - the use of [CM-07_ODP[04]; protocols to be prohibited or restricted are defined] is prohibited or restricted. - the use of [CM-07_ODP[05]; software to be prohibited or restricted is defined] is prohibited or restricted. - the use of [CM-07_ODP[06]; services to be prohibited or restricted are defined] is prohibited or restricted.'), ('000384','draft','2009-09-18','DISA FSO','policy','Review the system per organization-defined frequency to identify unnecessary and nonsecure functions, ports, protocols, software, and services.','CM-07(01)(a)','N/A','Determine if the system is reviewed [CM-07(01)_ODP[01]; the frequency at which to review the system to identify unnecessary and/or non-secure functions, ports, protocols, software, and/or services is defined] to identify unnecessary and/or non-secure functions, ports, protocols, software, and services.'), ('000387','draft','2009-09-18','DISA FSO','policy','Defines registration requirements for functions, ports, protocols, and services.','CM-07(03)','N/A','Determine if [CM-07(03)_ODP; registration requirements for functions, ports, protocols, and services are defined] are complied with.'), ('000388','draft','2009-09-18','DISA FSO','policy','Ensure compliance with organization-defined registration requirements for functions, ports, protocols, and services.','CM-07(03)','N/A','Determine if [CM-07(03)_ODP; registration requirements for functions, ports, protocols, and services are defined] are complied with.'), ('000398','draft','2009-09-18','DISA FSO','policy','Defines information deemed necessary to achieve effective system component accountability.','CM-08a.05','N/A','Determine if an inventory of system components that includes [CM-08_ODP[01]; information deemed necessary to achieve effective system component accountability is defined] is developed and documented.'), ('000408','draft','2009-09-18','DISA FSO','policy','Update the inventory of system components as part of component installations.','CM-08(01)','N/A','Determine if: - the inventory of system components is updated as part of component installations. - the inventory of system components is updated as part of component removals. - the inventory of system components is updated as part of system updates.'), ('000409','draft','2009-09-18','DISA FSO','policy','Update the inventory of system components as part of component removals.','CM-08(01)','N/A','Determine if: - the inventory of system components is updated as part of component installations. - the inventory of system components is updated as part of component removals. - the inventory of system components is updated as part of system updates.'), ('000410','draft','2009-09-18','DISA FSO','policy','Update the inventory of system components as part of system updates.','CM-08(01)','N/A','Determine if: - the inventory of system components is updated as part of component installations. - the inventory of system components is updated as part of component removals. - the inventory of system components is updated as part of system updates.'), ('000411','draft','2009-09-18','DISA FSO','policy','Maintain the currency of the inventory of system components using organization-defined automated mechanisms.','CM-08(02)','N/A','Determine if: - [CM-08(02)_ODP[01]; automated mechanisms used to maintain the currency of the system component inventory are defined] are used to maintain the currency of the system component inventory. - [CM-08(02)_ODP[02]; automated mechanisms used to maintain the completeness of the system component inventory are defined] are used to maintain the completeness of the system component inventory. - [CM-08(02)_ODP[03]; automated mechanisms used to maintain the accuracy of the system component inventory are defined] are used to maintain the accuracy of the system component inventory. - [CM-08(02)_ODP[04]; automated mechanisms used to maintain the availability of the system component inventory are defined] are used to maintain the availability of the system component inventory.'), ('000412','draft','2009-09-18','DISA FSO','policy','Maintain the completeness of the inventory of system components using organization-defined automated mechanisms.','CM-08(02)','N/A','Determine if: - [CM-08(02)_ODP[01]; automated mechanisms used to maintain the currency of the system component inventory are defined] are used to maintain the currency of the system component inventory. - [CM-08(02)_ODP[02]; automated mechanisms used to maintain the completeness of the system component inventory are defined] are used to maintain the completeness of the system component inventory. - [CM-08(02)_ODP[03]; automated mechanisms used to maintain the accuracy of the system component inventory are defined] are used to maintain the accuracy of the system component inventory. - [CM-08(02)_ODP[04]; automated mechanisms used to maintain the availability of the system component inventory are defined] are used to maintain the availability of the system component inventory.'), ('000413','draft','2009-09-18','DISA FSO','policy','Maintain the accuracy of the inventory of system components using organization-defined automated mechanisms.','CM-08(02)','N/A','Determine if: - [CM-08(02)_ODP[01]; automated mechanisms used to maintain the currency of the system component inventory are defined] are used to maintain the currency of the system component inventory. - [CM-08(02)_ODP[02]; automated mechanisms used to maintain the completeness of the system component inventory are defined] are used to maintain the completeness of the system component inventory. - [CM-08(02)_ODP[03]; automated mechanisms used to maintain the accuracy of the system component inventory are defined] are used to maintain the accuracy of the system component inventory. - [CM-08(02)_ODP[04]; automated mechanisms used to maintain the availability of the system component inventory are defined] are used to maintain the availability of the system component inventory.'), ('000414','draft','2009-09-18','DISA FSO','policy','Maintain the availability of the inventory of system components using organization-defined automated mechanisms.','CM-08(02)','N/A','Determine if: - [CM-08(02)_ODP[01]; automated mechanisms used to maintain the currency of the system component inventory are defined] are used to maintain the currency of the system component inventory. - [CM-08(02)_ODP[02]; automated mechanisms used to maintain the completeness of the system component inventory are defined] are used to maintain the completeness of the system component inventory. - [CM-08(02)_ODP[03]; automated mechanisms used to maintain the accuracy of the system component inventory are defined] are used to maintain the accuracy of the system component inventory. - [CM-08(02)_ODP[04]; automated mechanisms used to maintain the availability of the system component inventory are defined] are used to maintain the availability of the system component inventory.'), ('000415','draft','2009-09-18','DISA FSO','policy','Defines the frequency of employing automated mechanisms to detect the presence of unauthorized hardware, software, and firmware components within the system.','CM-08(03)(a)','N/A','Determine if: - the presence of unauthorized hardware within the system is detected using [CM-08(03)_ODP[01]; automated mechanisms used to detect the presence of unauthorized hardware within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined]. - the presence of unauthorized software within the system is detected using [CM-08(03)_ODP[02]; automated mechanisms used to detect the presence of unauthorized software within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined;]. - the presence of unauthorized firmware within the system is detected using [CM-08(03)_ODP[03]; automated mechanisms used to detect the presence of unauthorized firmware within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined].'), ('000416','draft','2009-09-18','DISA FSO','policy','Detect the presence of unauthorized hardware, software, and firmware components within the system using organization-defined automated mechanisms, on an organization-defined frequency.','CM-08(03)(a)','N/A','Determine if: - the presence of unauthorized hardware within the system is detected using [CM-08(03)_ODP[01]; automated mechanisms used to detect the presence of unauthorized hardware within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined]. - the presence of unauthorized software within the system is detected using [CM-08(03)_ODP[02]; automated mechanisms used to detect the presence of unauthorized software within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined;]. - the presence of unauthorized firmware within the system is detected using [CM-08(03)_ODP[03]; automated mechanisms used to detect the presence of unauthorized firmware within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined].'), ('000418','draft','2009-09-18','DISA FSO','policy','Include in the system component inventory information, a means for identifying by name, position, and/or role, individuals responsible and accountable for administering those components.','CM-08(04)','N/A','Determine if individuals responsible and accountable for administering system components are identified by [CM-08(04)_ODP; one or more of the following PARAMETER VALUES is/are selected: {name; position; role}] in the system component inventory.'), ('000420','draft','2009-09-18','DISA FSO','policy','Include assessed component configurations and any approved deviations to current deployed configurations in the system component inventory.','CM-08(06)','N/A','Determine if: - assessed component configurations are included in the system component inventory. - any approved deviations to current deployed configurations are included in the system component inventory.'), ('000423','draft','2009-09-18','DISA FSO','policy','Implement a configuration management plan for the system that addresses roles, responsibilities, and configuration management processes and procedures.','CM-09a.','N/A','Determine if: - the configuration management plan addresses roles. - the configuration management plan addresses responsibilities. - the configuration management plan addresses configuration management processes and procedures.'), ('000426','draft','2009-09-18','DISA FSO','policy','Implement a configuration management plan for the system that defines the configuration items for the system.','CM-09c.','N/A','Determine if: - the configuration management plan defines the configuration items for the system. - the configuration management plan places the configuration items under configuration management.'), ('000436','draft','2009-09-18','DISA FSO','policy','Assign responsibility for developing the configuration management process to organizational personnel that are not directly involved in system development.','CM-09(01)','N/A','Determine if the responsibility for developing the configuration management process is assigned to organizational personnel who are not directly involved in system development.'), ('000437','draft','2009-09-18','DISA FSO','policy','Defines the frequency with which to review and update the current contingency planning policy.','CP-01c.01','N/A','Determine if: - the current contingency planning policy is reviewed and updated [CP-01_ODP[05]; the frequency at which the current contingency planning policy is reviewed and updated is defined]. - the current contingency planning policy is reviewed and updated following [CP-01_ODP[06]; events that would require the current contingency planning policy to be reviewed and updated are defined].'), ('000438','draft','2009-09-18','DISA FSO','policy','Develop and document an organizational-level; mission/business process-level; and/or system-level contingency planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','CP-01a.01(a)','N/A','Determine if: - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses purpose. - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses scope. - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses roles. - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses responsibilities. - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses management commitment. - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses coordination among organizational entities. - the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy addresses compliance.'), ('000439','draft','2009-09-18','DISA FSO','policy','Disseminate an organizational-level; mission/business process-level; and/or system-level contingency planning policy to organization-defined personnel or roles.','CP-01a.','N/A','Determine if: - a contingency planning policy is developed and documented. - the contingency planning policy is disseminated to [CP-01_ODP[01]; personnel or roles to whom the contingency planning policy is to be disseminated is/are defined].'), ('000440','draft','2009-09-18','DISA FSO','policy','Review and update the current contingency planning policy in accordance with an organization-defined frequency.','CP-01c.01','N/A','Determine if: - the current contingency planning policy is reviewed and updated [CP-01_ODP[05]; the frequency at which the current contingency planning policy is reviewed and updated is defined]. - the current contingency planning policy is reviewed and updated following [CP-01_ODP[06]; events that would require the current contingency planning policy to be reviewed and updated are defined].'), ('000441','draft','2009-09-18','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls.','CP-01a.02','N/A','Determine if: - contingency planning procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls are developed and documented. - the contingency planning procedures are disseminated to [CP-01_ODP[02]; personnel or roles to whom the contingency planning procedures are to be disseminated is/are defined].'), ('000443','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that identifies essential missions.','CP-02a.01','N/A','Determine if a contingency plan for the system is developed that identifies essential mission and business functions and associated contingency requirements.'), ('000444','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that identifies essential business functions.','CP-02a.01','N/A','Determine if a contingency plan for the system is developed that identifies essential mission and business functions and associated contingency requirements.'), ('000445','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that identifies associated contingency requirements.','CP-02a.01','N/A','Determine if a contingency plan for the system is developed that identifies essential mission and business functions and associated contingency requirements.'), ('000446','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that provides recovery objectives.','CP-02a.02','N/A','Determine if: - a contingency plan for the system is developed that provides recovery objectives. - a contingency plan for the system is developed that provides restoration priorities. - a contingency plan for the system is developed that provides metrics.'), ('000447','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that provides restoration priorities.','CP-02a.02','N/A','Determine if: - a contingency plan for the system is developed that provides recovery objectives. - a contingency plan for the system is developed that provides restoration priorities. - a contingency plan for the system is developed that provides metrics.'), ('000448','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that provides metrics.','CP-02a.02','N/A','Determine if: - a contingency plan for the system is developed that provides recovery objectives. - a contingency plan for the system is developed that provides restoration priorities. - a contingency plan for the system is developed that provides metrics.'), ('000449','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that addresses contingency roles, responsibilities, assigned individuals with contact information.','CP-02a.03','N/A','Determine if: - a contingency plan for the system is developed that addresses contingency roles. - a contingency plan for the system is developed that addresses contingency responsibilities. - a contingency plan for the system is developed that addresses assigned individuals with contact information.'), ('000456','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that addresses eventual, full system restoration without deterioration of the controls originally planned and implemented.','CP-02a.05','N/A','Determine if a contingency plan for the system is developed that addresses eventual, full-system restoration without deterioration of the controls originally planned and implemented.'), ('000457','draft','2009-09-18','DISA FSO','policy','Develop a contingency plan for the system that is reviewed and approved by organization-defined personnel or roles.','CP-02a.07','N/A','Determine if: - a contingency plan for the system is developed that is reviewed by [CP-02_ODP[01]; personnel or roles to review a contingency plan is/are defined]. - a contingency plan for the system is developed that is approved by [CP-02_ODP[02]; personnel or roles to approve a contingency plan is/are defined].'), ('000458','draft','2009-09-18','DISA FSO','policy','Defines the key contingency personnel (identified by name and/or by role) and organizational elements designated to receive copies of the contingency plan.','CP-02b.','N/A','Determine if: - copies of the contingency plan are distributed to [CP-02_ODP[03]; key contingency personnel (identified by name and/or by role) to whom copies of the contingency plan are distributed are defined]. - copies of the contingency plan are distributed to [CP-02_ODP[04]; key contingency organizational elements to which copies of the contingency plan are distributed are defined].'), ('000459','draft','2009-09-18','DISA FSO','policy','Distributes copies of the contingency plan to an organization-defined list of key contingency personnel (identified by name and/or by role) and organizational elements.','CP-02b.','N/A','Determine if: - copies of the contingency plan are distributed to [CP-02_ODP[03]; key contingency personnel (identified by name and/or by role) to whom copies of the contingency plan are distributed are defined]. - copies of the contingency plan are distributed to [CP-02_ODP[04]; key contingency organizational elements to which copies of the contingency plan are distributed are defined].'), ('000460','draft','2009-09-18','DISA FSO','policy','Coordinate contingency planning activities with incident handling activities.','CP-02c.','N/A','Determine if contingency planning activities are coordinated with incident handling activities.'), ('000461','draft','2009-09-18','DISA FSO','policy','Defines the frequency with which to review the contingency plan for the system.','CP-02d.','N/A','Determine if the contingency plan for the system is reviewed [CP-02_ODP[05]; frequency of contingency plan review is defined].'), ('000462','draft','2009-09-18','DISA FSO','policy','Reviews the contingency plan for the system in accordance with organization-defined frequency.','CP-02d.','N/A','Determine if the contingency plan for the system is reviewed [CP-02_ODP[05]; frequency of contingency plan review is defined].'), ('000463','draft','2009-09-18','DISA FSO','policy','Updates the contingency plan to address changes to the organization.','CP-02e.','N/A','Determine if: - the contingency plan is updated to address changes to the organization, system, or environment of operation. - the contingency plan is updated to address problems encountered during contingency plan implementation, execution, or testing.'), ('000464','draft','2009-09-18','DISA FSO','policy','Updates the contingency plan to address changes to the system.','CP-02e.','N/A','Determine if: - the contingency plan is updated to address changes to the organization, system, or environment of operation. - the contingency plan is updated to address problems encountered during contingency plan implementation, execution, or testing.'), ('000465','draft','2009-09-18','DISA FSO','policy','Updates the contingency plan to address changes to the environment of operation.','CP-02e.','N/A','Determine if: - the contingency plan is updated to address changes to the organization, system, or environment of operation. - the contingency plan is updated to address problems encountered during contingency plan implementation, execution, or testing.'), ('000466','draft','2009-09-18','DISA FSO','policy','Updates the contingency plan to address problems encountered during contingency plan implementation, execution, or testing.','CP-02e.','N/A','Determine if: - the contingency plan is updated to address changes to the organization, system, or environment of operation. - the contingency plan is updated to address problems encountered during contingency plan implementation, execution, or testing.'), ('000468','draft','2009-09-18','DISA FSO','policy','Communicates contingency plan changes to an organization-defined list of key contingency personnel (identified by name and/or by role) and organizational elements.','CP-02f.','N/A','Determine if: - contingency plan changes are communicated to [CP-02_ODP[06]; key contingency personnel (identified by name and/or by role) to communicate changes to are defined]. - contingency plan changes are communicated to [CP-02_ODP[07]; key contingency organizational elements to communicate changes to are defined].'), ('000469','draft','2009-09-18','DISA FSO','policy','Coordinate contingency plan development with organizational elements responsible for related plans.','CP-02(01)','N/A','Determine if contingency plan development is coordinated with organizational elements responsible for related plans.'), ('000470','draft','2009-09-18','DISA FSO','policy','Conduct capacity planning so that necessary capacity for information processing exists during contingency operations.','CP-02(02)','N/A','Determine if: - capacity planning is conducted so that the necessary capacity exists during contingency operations for information processing. - capacity planning is conducted so that the necessary capacity exists during contingency operations for telecommunications. - capacity planning is conducted so that the necessary capacity exists during contingency operations for environmental support.'), ('000471','draft','2009-09-18','DISA FSO','policy','Conduct capacity planning so that necessary capacity for telecommunications exists during contingency operations.','CP-02(02)','N/A','Determine if: - capacity planning is conducted so that the necessary capacity exists during contingency operations for information processing. - capacity planning is conducted so that the necessary capacity exists during contingency operations for telecommunications. - capacity planning is conducted so that the necessary capacity exists during contingency operations for environmental support.'), ('000472','draft','2009-09-18','DISA FSO','policy','Conduct capacity planning so that necessary capacity for environmental support exists during contingency operations.','CP-02(02)','N/A','Determine if: - capacity planning is conducted so that the necessary capacity exists during contingency operations for information processing. - capacity planning is conducted so that the necessary capacity exists during contingency operations for telecommunications. - capacity planning is conducted so that the necessary capacity exists during contingency operations for environmental support.'), ('000473','draft','2009-09-18','DISA FSO','policy','Defines the time period for planning the resumption of essential missions as a result of contingency plan activation.','CP-02(03)','N/A','Determine if the resumption of [CP-02(03)_ODP[01]; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions are planned for within [CP-02(03)_ODP[02]; the contingency plan activation time period within which to resume mission and business functions is defined] of contingency plan activation.'), ('000474','draft','2009-09-18','DISA FSO','policy','Defines the time period for planning the resumption of essential business functions as a result of contingency plan activation.','CP-02(03)','N/A','Determine if the resumption of [CP-02(03)_ODP[01]; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions are planned for within [CP-02(03)_ODP[02]; the contingency plan activation time period within which to resume mission and business functions is defined] of contingency plan activation.'), ('000475','draft','2009-09-18','DISA FSO','policy','Plan for the resumption of all or essential mission functions within the organization-defined time period of contingency plan activation.','CP-02(03)','N/A','Determine if the resumption of [CP-02(03)_ODP[01]; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions are planned for within [CP-02(03)_ODP[02]; the contingency plan activation time period within which to resume mission and business functions is defined] of contingency plan activation.'), ('000476','draft','2009-09-18','DISA FSO','policy','Plan for the resumption of all or essential business functions within the organization-defined time period of contingency plan activation.','CP-02(03)','N/A','Determine if the resumption of [CP-02(03)_ODP[01]; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions are planned for within [CP-02(03)_ODP[02]; the contingency plan activation time period within which to resume mission and business functions is defined] of contingency plan activation.'), ('000481','draft','2009-09-18','DISA FSO','policy','Plan for the continuance of all or essential missions with little or no loss of operational continuity.','CP-02(05)','N/A','Determine if: - the continuance of [CP-02(05)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions with minimal or no loss of operational continuity is planned for. - continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('000482','draft','2009-09-18','DISA FSO','policy','Plan for the continuance of all or essential business functions with little or no loss of operational continuity.','CP-02(05)','N/A','Determine if: - the continuance of [CP-02(05)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions with minimal or no loss of operational continuity is planned for. - continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('000483','draft','2009-09-18','DISA FSO','policy','Plan for the transfer of all or essential mission functions to alternate processing and/or storage sites with minimal or no loss of operational continuity.','CP-02(06)','N/A','Determine if: - the transfer of [CP-02(06)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions to alternate processing and/or storage sites with minimal or no loss of operational continuity is planned for. - operational continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('000484','draft','2009-09-18','DISA FSO','policy','Plan for the transfer of all or essential business functions to alternate processing and/or storage sites with minimal or no loss of operational continuity.','CP-02(06)','N/A','Determine if: - the transfer of [CP-02(06)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions to alternate processing and/or storage sites with minimal or no loss of operational continuity is planned for. - operational continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('000485','draft','2009-09-21','DISA FSO','policy','Defines the frequency of contingency training to system users.','CP-03a.03','N/A','Determine if contingency training is provided to system users consistent with assigned roles and responsibilities [CP-03_ODP[02]; frequency at which to provide training to system users with a contingency role or responsibility is defined] thereafter.'), ('000486','draft','2009-09-21','DISA FSO','policy','Provide contingency training to system users consistent with assigned roles and responsibilities within an organization-defined time period of assuming a contingency role or responsibility.','CP-03a.01','N/A','Determine if contingency training is provided to system users consistent with assigned roles and responsibilities within [CP-03_ODP[01]; the time period within which to provide contingency training after assuming a contingency role or responsibility is defined] of assuming a contingency role or responsibility.'), ('000487','draft','2009-09-21','DISA FSO','policy','Provide contingency training to system users consistent with assigned roles and responsibilities in accordance with organization-defined frequency.','CP-03a.03','N/A','Determine if contingency training is provided to system users consistent with assigned roles and responsibilities [CP-03_ODP[02]; frequency at which to provide training to system users with a contingency role or responsibility is defined] thereafter.'), ('000488','draft','2009-09-21','DISA FSO','policy','Incorporate simulated events into contingency training to facilitate effective response by personnel in crisis situations.','CP-03(01)','N/A','Determine if simulated events are incorporated into contingency training to facilitate effective response by personnel in crisis situations.'), ('000489','draft','2009-09-21','DISA FSO','policy','Employ mechanisms used in operations to provide a more thorough and realistic contingency training environment.','CP-03(02)','N/A','Determine if mechanisms used in operations are employed to provide a more thorough and realistic contingency training environment.'), ('000490','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to test the contingency plan for the system.','CP-04a.','N/A','Determine if: - the contingency plan for the system is tested [CP-04_ODP[01]; frequency of testing the contingency plan for the system is defined]. - [CP-04_ODP[02]; tests for determining the effectiveness of the contingency plan are defined] are used to determine the effectiveness of the plan. - [CP-04_ODP[03]; tests for determining readiness to execute the contingency plan are defined] are used to determine the readiness to execute the plan.'), ('000492','draft','2009-09-21','DISA FSO','policy','Defines the contingency plan tests to be conducted for the system.','CP-04a.','N/A','Determine if: - the contingency plan for the system is tested [CP-04_ODP[01]; frequency of testing the contingency plan for the system is defined]. - [CP-04_ODP[02]; tests for determining the effectiveness of the contingency plan are defined] are used to determine the effectiveness of the plan. - [CP-04_ODP[03]; tests for determining readiness to execute the contingency plan are defined] are used to determine the readiness to execute the plan.'), ('000494','draft','2009-09-21','DISA FSO','policy','Test the contingency plan for the system in accordance with organization-defined frequency using organization-defined tests to determine the effectiveness of the plan and the organizational readiness to execute the plan.','CP-04a.','N/A','Determine if: - the contingency plan for the system is tested [CP-04_ODP[01]; frequency of testing the contingency plan for the system is defined]. - [CP-04_ODP[02]; tests for determining the effectiveness of the contingency plan are defined] are used to determine the effectiveness of the plan. - [CP-04_ODP[03]; tests for determining readiness to execute the contingency plan are defined] are used to determine the readiness to execute the plan.'), ('000496','draft','2009-09-21','DISA FSO','policy','Review the contingency plan test results.','CP-04b.','N/A','Determine if the contingency plan test results are reviewed.'), ('000497','draft','2009-09-21','DISA FSO','policy','Initiate corrective actions, if needed, after reviewing the contingency plan test results.','CP-04c.','N/A','Determine if corrective actions are initiated, if needed.'), ('000498','draft','2009-09-21','DISA FSO','policy','Coordinate contingency plan testing with organizational elements responsible for related plans.','CP-04(01)','N/A','Determine if contingency plan testing is coordinated with organizational elements responsible for related plans.'), ('000500','draft','2009-09-21','DISA FSO','policy','Test the contingency plan at the alternate processing site to familiarize contingency personnel with the facility and available resources.','CP-04(02)(a)','N/A','Determine if the contingency plan is tested at the alternate processing site to familiarize contingency personnel with the facility and available resources.'), ('000502','draft','2009-09-21','DISA FSO','policy','Test the contingency plan using organization-defined automated mechanisms.','CP-04(03)','N/A','Determine if the contingency plan is tested using [CP-04(03)_ODP; automated mechanisms for contingency plan testing are defined].'), ('000504','draft','2009-09-21','DISA FSO','policy','Include a full recovery and reconstitution of the system to a known state as part of contingency plan testing.','CP-04(04)','N/A','Determine if: - a full recovery of the system to a known state is included as part of contingency plan testing. - a full reconstitution of the system to a known state is included as part of contingency plan testing.'), ('000505','draft','2009-09-21','DISA FSO','policy','Establish an alternate storage site, including necessary agreements to permit the storage of system backup information.','CP-06a.','N/A','Determine if: - an alternate storage site is established. - establishment of the alternate storage site includes necessary agreements to permit the storage and retrieval of system backup information.'), ('000507','draft','2009-09-21','DISA FSO','policy','Identify an alternate storage site that is sufficiently separated from the primary storage site to reduce susceptibility to the same threats.','CP-06(01)','N/A','Determine if an alternate storage site that is sufficiently separated from the primary storage site is identified to reduce susceptibility to the same threats.'), ('000508','draft','2009-09-21','DISA FSO','policy','Configure the alternate storage site to facilitate recovery operations in accordance with recovery time and recovery point objectives.','CP-06(02)','N/A','Determine if: - the alternate storage site is configured to facilitate recovery operations in accordance with recovery time objectives. - the alternate storage site is configured to facilitate recovery operations in accordance with recovery point objectives.'), ('000509','draft','2009-09-21','DISA FSO','policy','Identify potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster.','CP-06(03)','N/A','Determine if: - potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster are identified. - explicit mitigation actions to address identified accessibility problems are outlined.'), ('000510','draft','2009-09-21','DISA FSO','policy','Defines the time-period consistent with recovery time and recovery point objectives for essential missions/business functions to permit the transfer and resumption of organization-defined system operations at an alternate processing site when the primary processing capabilities are unavailable.','CP-07a.','N/A','Determine if an alternate processing site, including necessary agreements to permit the transfer and resumption of [CP-07_ODP[01]; system operations for essential mission and business functions are defined] for essential mission and business functions, is established within [CP-07_ODP[02]; time period consistent with recovery time and recovery point objectives is defined] when the primary processing capabilities are unavailable.'), ('000513','draft','2009-09-21','DISA FSO','policy','Establish an alternate processing site including necessary agreements to permit the transfer and resumption of organization-defined system operations for essential mission functions within an organization-defined time period consistent with recovery time and recovery point objectives when the primary processing capabilities are unavailable.','CP-07a.','N/A','Determine if an alternate processing site, including necessary agreements to permit the transfer and resumption of [CP-07_ODP[01]; system operations for essential mission and business functions are defined] for essential mission and business functions, is established within [CP-07_ODP[02]; time period consistent with recovery time and recovery point objectives is defined] when the primary processing capabilities are unavailable.'), ('000514','draft','2009-09-21','DISA FSO','policy','Establish an alternate processing site including necessary agreements to permit the transfer and resumption of organization-defined system operations for essential business functions within an organization-defined time period consistent with recovery time and recovery point objectives when the primary processing capabilities are unavailable.','CP-07a.','N/A','Determine if an alternate processing site, including necessary agreements to permit the transfer and resumption of [CP-07_ODP[01]; system operations for essential mission and business functions are defined] for essential mission and business functions, is established within [CP-07_ODP[02]; time period consistent with recovery time and recovery point objectives is defined] when the primary processing capabilities are unavailable.'), ('000515','draft','2009-09-21','DISA FSO','policy','Make available at the alternate processing site, the equipment and supplies required to transfer and resume operations or put contracts in place to support delivery to the site within the organization-defined time period for transfer and resumption.','CP-07b.','N/A','Determine if: - the equipment and supplies required to transfer operations are made available at the alternate processing site or if contracts are in place to support delivery to the site within [CP-07_ODP[02]; time period consistent with recovery time and recovery point objectives is defined] for transfer. - the equipment and supplies required to resume operations are made available at the alternate processing site or if contracts are in place to support delivery to the site within [CP-07_ODP[02]; time period consistent with recovery time and recovery point objectives is defined] for resumption.'), ('000516','draft','2009-09-21','DISA FSO','policy','Identify an alternate processing site that is sufficiently separated from the primary processing site to reduce susceptibility to the same threats.','CP-07(01)','N/A','Determine if an alternate processing site that is sufficiently separated from the primary processing site to reduce susceptibility to the same threats is identified.'), ('000517','draft','2009-09-21','DISA FSO','policy','Identify potential accessibility problems to the alternate processing site in the event of an area-wide disruption or disaster.','CP-07(02)','N/A','Determine if: - potential accessibility problems to alternate processing sites in the event of an area-wide disruption or disaster are identified. - explicit mitigation actions to address identified accessibility problems are outlined.'), ('000518','draft','2009-09-21','DISA FSO','policy','Develop alternate processing site agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives).','CP-07(03)','N/A','Determine if alternate processing site agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed.'), ('000519','draft','2009-09-21','DISA FSO','policy','Prepare the alternate processing site so that the site can serve as the operational site supporting essential missions.','CP-07(04)','N/A','Determine if the alternate processing site is prepared so that the site can serve as the operational site supporting essential mission and business functions.'), ('000520','draft','2009-09-21','DISA FSO','policy','Prepare the alternate processing site so that the site can serve as the operational site supporting essential business functions.','CP-07(04)','N/A','Determine if the alternate processing site is prepared so that the site can serve as the operational site supporting essential mission and business functions.'), ('000521','draft','2009-09-21','DISA FSO','policy','Provide controls at the alternate processing site that are equivalent to those at the primary site.','CP-07c.','N/A','Determine if controls provided at the alternate processing site are equivalent to those at the primary site.'), ('000522','draft','2009-09-21','DISA FSO','policy','Defines the time-period within which to permit the resumption of organization-defined system operations for essential mission functions when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-08','N/A','Determine if alternate telecommunications services, including necessary agreements to permit the resumption of [CP-08_ODP[01]; system operations to be resumed for essential mission and business functions are defined], are established for essential mission and business functions within [CP-08_ODP[02]; time period within which to resume essential mission and business functions when the primary telecommunications capabilities are unavailable is defined] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.'), ('000523','draft','2009-09-21','DISA FSO','policy','Defines the time-period within which to permit the resumption of organization-defined system operations for essential business functions when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-08','N/A','Determine if alternate telecommunications services, including necessary agreements to permit the resumption of [CP-08_ODP[01]; system operations to be resumed for essential mission and business functions are defined], are established for essential mission and business functions within [CP-08_ODP[02]; time period within which to resume essential mission and business functions when the primary telecommunications capabilities are unavailable is defined] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.'), ('000524','draft','2009-09-21','DISA FSO','policy','Establish alternate telecommunication services, including necessary agreements to permit the resumption of organization-defined system operations for essential mission functions within an organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-08','N/A','Determine if alternate telecommunications services, including necessary agreements to permit the resumption of [CP-08_ODP[01]; system operations to be resumed for essential mission and business functions are defined], are established for essential mission and business functions within [CP-08_ODP[02]; time period within which to resume essential mission and business functions when the primary telecommunications capabilities are unavailable is defined] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.'), ('000525','draft','2009-09-21','DISA FSO','policy','Establish alternate telecommunication services, including necessary agreements to permit the resumption of organization-defined system operations for essential business functions within an organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-08','N/A','Determine if alternate telecommunications services, including necessary agreements to permit the resumption of [CP-08_ODP[01]; system operations to be resumed for essential mission and business functions are defined], are established for essential mission and business functions within [CP-08_ODP[02]; time period within which to resume essential mission and business functions when the primary telecommunications capabilities are unavailable is defined] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.'), ('000526','draft','2009-09-21','DISA FSO','policy','Develop primary telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives).','CP-08(01)(a)','N/A','Determine if: - primary telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed. - alternate telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed.'), ('000527','draft','2009-09-21','DISA FSO','policy','Develop alternate telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives).','CP-08(01)(a)','N/A','Determine if: - primary telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed. - alternate telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives) are developed.'), ('000530','draft','2009-09-21','DISA FSO','policy','Obtain alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services.','CP-08(02)','N/A','Determine if alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services are obtained.'), ('000531','draft','2009-09-21','DISA FSO','policy','Obtain alternate telecommunications services from providers that are separated from primary service providers to reduce susceptibility to the same threats.','CP-08(03)','N/A','Determine if alternate telecommunications services from providers that are separated from primary service providers are obtained to reduce susceptibility to the same threats.'), ('000532','draft','2009-09-21','DISA FSO','policy','Require primary telecommunications service providers to have contingency plans.','CP-08(04)(a)','N/A','Determine if: - primary telecommunications service providers are required to have contingency plans. - alternate telecommunications service providers are required to have contingency plans.'), ('000533','draft','2009-09-21','DISA FSO','policy','Require alternate telecommunications service providers to have contingency plans.','CP-08(04)(a)','N/A','Determine if: - primary telecommunications service providers are required to have contingency plans. - alternate telecommunications service providers are required to have contingency plans.'), ('000534','draft','2009-09-21','DISA FSO','policy','Defines the frequency of conducting user-level information backups to support recovery time objectives and recovery point objectives.','CP-09a.','N/A','Determine if backups of user-level information contained in [CP-09_ODP[01]; system components for which to conduct backups of user-level information is defined] are conducted [CP-09_ODP[02]; frequency at which to conduct backups of user-level information consistent with recovery time and recovery point objectives is defined].'), ('000535','draft','2009-09-21','DISA FSO','policy','Conduct backups of user-level information contained in organization-defined system components per organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-09a.','N/A','Determine if backups of user-level information contained in [CP-09_ODP[01]; system components for which to conduct backups of user-level information is defined] are conducted [CP-09_ODP[02]; frequency at which to conduct backups of user-level information consistent with recovery time and recovery point objectives is defined].'), ('000536','draft','2009-09-21','DISA FSO','policy','Defines the frequency of conducting system-level information backups to support recovery time objectives and recovery point objectives.','CP-09b.','N/A','Determine if backups of system-level information contained in the system are conducted [CP-09_ODP[03]; frequency at which to conduct backups of system-level information consistent with recovery time and recovery point objectives is defined].'), ('000537','draft','2009-09-21','DISA FSO','policy','Conduct backups of system-level information contained in the system per organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-09b.','N/A','Determine if backups of system-level information contained in the system are conducted [CP-09_ODP[03]; frequency at which to conduct backups of system-level information consistent with recovery time and recovery point objectives is defined].'), ('000538','draft','2009-09-21','DISA FSO','policy','Defines the frequency of conducting system documentation backups, including security-related documentation, to support recovery time objectives and recovery point objectives.','CP-09c.','N/A','Determine if backups of system documentation, including security- and privacy-related documentation are conducted [CP-09_ODP[04]; frequency at which to conduct backups of system documentation consistent with recovery time and recovery point objectives is defined].'), ('000539','draft','2009-09-21','DISA FSO','policy','Conduct backups of system documentation, including security-related documentation, per an organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-09c.','N/A','Determine if backups of system documentation, including security- and privacy-related documentation are conducted [CP-09_ODP[04]; frequency at which to conduct backups of system documentation consistent with recovery time and recovery point objectives is defined].'), ('000541','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to test backup information to verify media reliability and information integrity.','CP-09(01)','N/A','Determine if: - backup information is tested [CP-09(01)_ODP[01]; frequency at which to test backup information for media reliability is defined] to verify media reliability. - backup information is tested [CP-09(01)_ODP[02]; frequency at which to test backup information for information integrity is defined] to verify information integrity.'), ('000542','draft','2009-09-21','DISA FSO','policy','Test backup information per an organization-defined frequency to verify media reliability and information integrity.','CP-09(01)','N/A','Determine if: - backup information is tested [CP-09(01)_ODP[01]; frequency at which to test backup information for media reliability is defined] to verify media reliability. - backup information is tested [CP-09(01)_ODP[02]; frequency at which to test backup information for information integrity is defined] to verify information integrity.'), ('000543','draft','2009-09-21','DISA FSO','policy','Use a sample of backup information in the restoration of selected system functions as part of contingency plan testing.','CP-09(02)','N/A','Determine if a sample of backup information in the restoration of selected system functions is used as part of contingency plan testing.'), ('000547','draft','2009-09-21','DISA FSO','policy','Defines the time-period and transfer rate of the system backup information to the alternate storage site consistent with the recovery time and recovery point objectives.','CP-09(05)','N/A','Determine if: - system backup information is transferred to the alternate storage site for [CP-09(05)_ODP[01]; time period consistent with recovery time and recovery point objectives is defined]. - system backup information is transferred to the alternate storage site [CP-09(05)_ODP[02]; transfer rate consistent with recovery time and recovery point objectives is defined].'), ('000548','draft','2009-09-21','DISA FSO','policy','Transfer system backup information to the alternate storage site in accordance with the organization-defined time period and transfer rate consistent with the recovery time and recovery point objectives.','CP-09(05)','N/A','Determine if: - system backup information is transferred to the alternate storage site for [CP-09(05)_ODP[01]; time period consistent with recovery time and recovery point objectives is defined]. - system backup information is transferred to the alternate storage site [CP-09(05)_ODP[02]; transfer rate consistent with recovery time and recovery point objectives is defined].'), ('000549','draft','2009-09-21','DISA FSO','policy','Maintain a redundant secondary system that is not collocated with the primary system.','CP-09(06)','N/A','Determine if: - system backup is conducted by maintaining a redundant secondary system that is not collocated with the primary system. - system backup is conducted by maintaining a redundant secondary system that can be activated without loss of information or disruption to operations.'), ('000553','draft','2009-09-21','DISA FSO','policy','Implement transaction recovery for systems that are transaction-based.','CP-10(02)','N/A','Determine if transaction recovery is implemented for systems that are transaction-based.'), ('000556','draft','2009-09-21','DISA FSO','policy','Defines restoration time periods within which to restore system components from configuration-controlled and integrity-protected information representing a known, operational state for the components.','CP-10(04)','N/A','Determine if the capability to restore system components within [CP-10(04)_ODP; restoration time period within which to restore system components to a known, operational state is defined] from configuration-controlled and integrity-protected information representing a known, operational state for the components is provided.'), ('000557','draft','2009-09-21','DISA FSO','policy','Provide the capability to restore information system components within organization-defined restoration time periods from configuration-controlled and integrity-protected information representing a known, operational state for the components.','CP-10(04)','N/A','Determine if the capability to restore system components within [CP-10(04)_ODP; restoration time period within which to restore system components to a known, operational state is defined] from configuration-controlled and integrity-protected information representing a known, operational state for the components is provided.'), ('000558','draft','2009-09-21','DISA FSO','policy','Defines the real-time or near-real-time failover capability to be provided for the system.','SI-13(05)','N/A','Determine if [SI-13(05)_ODP[01]; one of the following PARAMETER VALUES is selected: {real-time; near real-time}] [SI-13(05)_ODP[02]; a failover capability for the system has been defined] is provided for the system.'), ('000559','draft','2009-09-21','DISA FSO','policy','Provide real-time or near-real-time organization-defined failover capability for the system.','SI-13(05)','N/A','Determine if [SI-13(05)_ODP[01]; one of the following PARAMETER VALUES is selected: {real-time; near real-time}] [SI-13(05)_ODP[02]; a failover capability for the system has been defined] is provided for the system.'), ('000563','draft','2009-09-21','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and or system-level planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PL-01a.01(a)','N/A','Determine if: - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses purpose. - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses scope. - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses roles. - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses responsibilities. - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses management commitment. - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses coordination among organizational entities. - the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy addresses compliance.'), ('000564','draft','2009-09-21','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; and or system-level planning policy to organization-defined personnel or roles.','PL-01a.','N/A','Determine if: - a planning policy is developed and documented. - the planning policy is disseminated to [PL-01_ODP[01]; personnel or roles to whom the planning policy is to be disseminated is/are defined].'), ('000566','draft','2009-09-21','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the planning policy and associated planning controls.','PL-01a.02','N/A','Determine if: - planning procedures to facilitate the implementation of the planning policy and associated planning controls are developed and documented. - the planning procedures are disseminated to [PL-01_ODP[02]; personnel or roles to whom the planning procedures are to be disseminated is/are defined].'), ('000567','draft','2009-09-21','DISA FSO','policy','Disseminates planning procedures to organization-defined personnel or roles.','PL-01a.02','N/A','Determine if: - planning procedures to facilitate the implementation of the planning policy and associated planning controls are developed and documented. - the planning procedures are disseminated to [PL-01_ODP[02]; personnel or roles to whom the planning procedures are to be disseminated is/are defined].'), ('000568','draft','2009-09-21','DISA FSO','policy','Review and update the current planning procedures in accordance with organization-defined frequency.','PL-01c.02','N/A','Determine if: - the current planning procedures are reviewed and updated [PL-01_ODP[07]; the frequency with which the current planning procedures are reviewed and updated is defined]. - the current planning procedures are reviewed and updated following [PL-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('000571','draft','2009-09-21','DISA FSO','policy','Develop security and privacy plans for the system that are reviewed and approved by the authorizing official or designated representative prior to plan implementation.','PL-02a.15','N/A','Determine if: - a security plan for the system is developed that is reviewed and approved by the authorizing official or designated representative prior to plan implementation. - a privacy plan for the system is developed that is reviewed and approved by the authorizing official or designated representative prior to plan implementation.'), ('000572','draft','2009-09-21','DISA FSO','policy','Defines the frequency for reviewing the plans for the system.','PL-02c.','N/A','Determine if plans are reviewed [PL-02_ODP[03]; frequency to review system security and privacy plans is defined].'), ('000573','draft','2009-09-21','DISA FSO','policy','Review the plans in accordance with organization-defined frequency.','PL-02c.','N/A','Determine if plans are reviewed [PL-02_ODP[03]; frequency to review system security and privacy plans is defined].'), ('000574','draft','2009-09-21','DISA FSO','policy','Update the plans to address changes to the system and environment of operation or problems identified during plan implementation or control assessments.','PL-02d.','N/A','Determine if: - plans are updated to address changes to the system and environment of operations. - plans are updated to address problems identified during the plan implementation. - plans are updated to address problems identified during control assessments.'), ('000577','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review and update the CONOPS.','PL-07b.','N/A','Determine if the CONOPS is reviewed and updated [PL-07_ODP; frequency for review and update of the Concept of Operations (CONOPS) is defined].'), ('000578','draft','2009-09-21','DISA FSO','policy','Review and update the CONOPS in accordance with organization-defined frequency.','PL-07b.','N/A','Determine if the CONOPS is reviewed and updated [PL-07_ODP; frequency for review and update of the Concept of Operations (CONOPS) is defined].'), ('000592','draft','2009-09-21','DISA FSO','policy','Establish the rules that describe their responsibilities and expected behavior, for information and system usage, for individuals requiring access to the system.','PL-04a.','N/A','Determine if: - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system. - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system.'), ('000593','draft','2009-09-21','DISA FSO','policy','Receive a documented acknowledgement from such individuals, indicating that they have read, understand, and agree to abide by the rules of behavior, before authorizing access to information and the system.','PL-04b.','N/A','Determine if before authorizing access to information and the system, a documented acknowledgement from such individuals indicating that they have read, understand, and agree to abide by the rules of behavior is received.'), ('000594','draft','2009-09-21','DISA FSO','policy','Include in the rules of behavior, restrictions on the use of social media, social networking sites, and external sites/applications.','PL-04(01)(a)','N/A','Determine if the rules of behavior include restrictions on the use of social media, social networking sites, and external sites/applications.'), ('000595','draft','2009-09-21','DISA FSO','policy','Include in the rules of behavior, restrictions on posting organizational information on public websites.','PL-04(01)(b)','N/A','Determine if the rules of behavior include restrictions on posting organizational information on public websites.'), ('000601','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review and update the current system and services acquisition policy.','SA-01c.01','N/A','Determine if: - the system and services acquisition policy is reviewed and updated [SA-01_ODP[05]; the frequency at which the current system and services acquisition policy is reviewed and updated is defined]. - the current system and services acquisition policy is reviewed and updated following [SA-01_ODP[06]; events that would require the current system and services acquisition policy to be reviewed and updated are defined].'), ('000602','draft','2009-09-21','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level system and services acquisition policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SA-01a.01(a)','N/A','Determine if: - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses purpose. - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses scope. - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses roles. - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses responsibilities. - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses management commitment. - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses coordination among organizational entities. - the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy addresses compliance.'), ('000603','draft','2009-09-21','DISA FSO','policy','Disseminate to organization-defined personnel or roles an organization-level; mission/business process-level; and/or system-level system and services acquisition policy.','SA-01a.','N/A','Determine if: - a system and services acquisition policy is developed and documented. - the system and services acquisition policy is disseminated to [SA-01_ODP[01]; personnel or roles to whom the system and services acquisition policy is to be disseminated is/are defined].'), ('000604','draft','2009-09-21','DISA FSO','policy','Review and update the current system and services acquisition policy in accordance with organization-defined frequency.','SA-01c.01','N/A','Determine if: - the system and services acquisition policy is reviewed and updated [SA-01_ODP[05]; the frequency at which the current system and services acquisition policy is reviewed and updated is defined]. - the current system and services acquisition policy is reviewed and updated following [SA-01_ODP[06]; events that would require the current system and services acquisition policy to be reviewed and updated are defined].'), ('000605','draft','2009-09-21','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls.','SA-01a.02','N/A','Determine if: - system and services acquisition procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are developed and documented. - the system and services acquisition procedures are disseminated to [SA-01_ODP[02]; personnel or roles to whom the system and services acquisition procedures are to be disseminated is/are defined].'), ('000606','draft','2009-09-21','DISA FSO','policy','Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls.','SA-01a.02','N/A','Determine if: - system and services acquisition procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are developed and documented. - the system and services acquisition procedures are disseminated to [SA-01_ODP[02]; personnel or roles to whom the system and services acquisition procedures are to be disseminated is/are defined].'), ('000607','draft','2009-09-21','DISA FSO','policy','Review and update the current system and services acquisition procedures in accordance with organization-defined frequency.','SA-01c.02','N/A','Determine if: - the current system and services acquisition procedures are reviewed and updated [SA-01_ODP[07]; the frequency at which the current system and services acquisition procedures are reviewed and updated is defined]. - the current system and services acquisition procedures are reviewed and updated following [SA-01_ODP[08]; events that would require the system and services acquisition procedures to be reviewed and updated are defined].'), ('000610','draft','2009-09-21','DISA FSO','policy','Determine the resources required to protect the system or system service as part of the organizational capital planning and investment control process.','SA-02b.','N/A','Determine if: - the resources required to protect the system or system service are determined and documented as part of the organizational capital planning and investment control process. - the resources required to protect the system or system service are allocated as part of the organizational capital planning and investment control process.'), ('000611','draft','2009-09-21','DISA FSO','policy','Document the resources required to protect the system or system service as part of the organizational capital planning and investment control process.','SA-02b.','N/A','Determine if: - the resources required to protect the system or system service are determined and documented as part of the organizational capital planning and investment control process. - the resources required to protect the system or system service are allocated as part of the organizational capital planning and investment control process.'), ('000612','draft','2009-09-21','DISA FSO','policy','Allocate the resources required to protect the system or system service as part of the organizational capital planning and investment control process.','SA-02b.','N/A','Determine if: - the resources required to protect the system or system service are determined and documented as part of the organizational capital planning and investment control process. - the resources required to protect the system or system service are allocated as part of the organizational capital planning and investment control process.'), ('000613','draft','2009-09-21','DISA FSO','policy','Establish a discrete line item for information security in organizational programming documentation.','SA-02c.','N/A','Determine if: - a discrete line item for information security is established in organizational programming and budgeting documentation. - a discrete line item for privacy is established in organizational programming and budgeting documentation.'), ('000614','draft','2009-09-21','DISA FSO','policy','Establish a discrete line item for information security in organizational budgeting documentation.','SA-02c.','N/A','Determine if: - a discrete line item for information security is established in organizational programming and budgeting documentation. - a discrete line item for privacy is established in organizational programming and budgeting documentation.'), ('000615','draft','2009-09-21','DISA FSO','policy','Manage the system using an organization-defined system development life cycle that incorporates information security considerations.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('000616','draft','2009-09-21','DISA FSO','policy','Define and document information system security roles and responsibilities throughout the system development life cycle.','SA-03b.','N/A','Determine if: - information security roles and responsibilities are defined and documented throughout the system development life cycle. - privacy roles and responsibilities are defined and documented throughout the system development life cycle.'), ('000618','draft','2009-09-21','DISA FSO','policy','Identify individuals having information system security roles and responsibilities.','SA-03c.','N/A','Determine if: - individuals with information security roles and responsibilities are identified. - individuals with privacy roles and responsibilities are identified.'), ('000623','draft','2009-09-21','DISA FSO','policy','Require the developer of the system, system component, or system service to provide a description of the functional properties of the controls to be implemented.','SA-04(01)','N/A','Determine if the developer of the system, system component, or system service is required to provide a description of the functional properties of the controls to be implemented.'), ('000631','draft','2009-09-21','DISA FSO','policy','Employ only government off-the-shelf or commercial off-the-shelf information assurance and information assurance-enabled information technology products that compose an NSA-approved solution to protect classified information when the networks used to transmit the information are at a lower classification level than the information being transmitted.','SA-04(06)(a)','N/A','Determine if only government off-the-shelf or commercial off-the-shelf information assurance and information assurance-enabled information technology products that compose an NSA-approved solution to protect classified information when the networks used to transmit the information are at a lower classification level than the information being transmitted are employed.'), ('000633','draft','2009-09-21','DISA FSO','policy','Ensure that government off-the-shelf or commercial-off-the-shelf information assurance and information assurance-enabled information technology products have been evaluated and/or validated by NSA or in accordance with NSA-approved procedures.','SA-04(06)(b)','N/A','Determine if these products have been evaluated and/or validated by NSA or in accordance with NSA-approved procedures.'), ('000634','draft','2009-09-21','DISA FSO','policy','Limit the use of commercially provided information assurance and information assurance-enabled information technology products to those products that have been successfully evaluated against a National Information Assurance partnership (NIAP)-approved Protection Profile for a specific technology type, if such a profile exists.','SA-04(07)(a)','N/A','Determine if the use of commercially provided information assurance and information assurance-enabled information technology products is limited to those products that have been successfully evaluated against a National Information Assurance partnership (NIAP)-approved Protection Profile for a specific technology type, if such a profile exists.'), ('000635','draft','2009-09-21','DISA FSO','policy','Require, if no NIAP-approved Protection Profile exists for a specific technology type but a commercially provided information technology product relies on cryptographic functionality to enforce its security policy, that the cryptographic module is FIPS-validated or NSA-approved.','SA-04(07)(b)','N/A','Determine if no NIAP-approved Protection Profile exists for a specific technology type but a commercially provided information technology product relies on cryptographic functionality to enforce its security policy, that cryptographic module is required to be FIPS-validated or NSA-approved.'), ('000642','draft','2009-09-21','DISA FSO','policy','Document attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent.','SA-05c.','N/A','Determine if: - attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent is documented. - after attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent, [SA-05_ODP[01]; actions to take when system, system component, or system service documentation is either unavailable or nonexistent are defined] are taken in response.'), ('000664','draft','2009-09-21','DISA FSO','policy','Apply organization-defined systems security and privacy engineering principles in the specification of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('000665','draft','2009-09-21','DISA FSO','policy','Apply organization-defined systems security and privacy engineering principles in the design of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('000666','draft','2009-09-21','DISA FSO','policy','Apply organization-defined systems security and privacy engineering principles in the development of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('000667','draft','2009-09-21','DISA FSO','policy','Apply organization-defined systems security and privacy engineering principles in the implementation of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('000668','draft','2009-09-21','DISA FSO','policy','Apply organization-defined systems security and privacy engineering principles in the modification of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('000669','draft','2009-09-21','DISA FSO','policy','Require that providers of external system services comply with organizational security requirements.',NULL,'N/A',NULL), ('000692','draft','2009-09-22','DISA FSO','policy','Require the developer of the system, system component, or system service to implement only organization-approved changes to the system, component, or service.','SA-10c.','N/A','Determine if the developer of the system, system component, or system service is required to implement only organization-approved changes to the system, component, or service.'), ('000694','draft','2009-09-22','DISA FSO','policy','Require the developer of the system, system component, or system service to document approved changes to the system, component, or service.','SA-10d.','N/A','Determine if: - the developer of the system, system component, or system service is required to document approved changes to the system, component, or service. - the developer of the system, system component, or system service is required to document the potential security impacts of approved changes. - the developer of the system, system component, or system service is required to document the potential privacy impacts of approved changes.'), ('000698','draft','2009-09-22','DISA FSO','policy','Require the developer of the system, system component, or system service to enable integrity verification of software and firmware components.','SA-10(01)','N/A','Determine if the developer of the system, system component, or system service is required to enable integrity verification of software and firmware components.'), ('000700','draft','2009-09-22','DISA FSO','policy','Provide an alternate configuration management process using organizational personnel in the absence of a dedicated developer configuration management team.','SA-10(02)','N/A','Determine if an alternate configuration management process has been provided using organizational personnel in the absence of a dedicated developer configuration management team.'), ('000757','draft','2009-09-17','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; and/or system-level identification and authentication policy to organization-defined personnel.','IA-01a.','N/A','Determine if: - an identification and authentication policy is developed and documented. - the identification and authentication policy is disseminated to [IA-01_ODP[01]; personnel or roles to whom the identification and authentication policy is to be disseminated are defined].'), ('000758','draft','2009-09-17','DISA FSO','policy','Review and update the current identification and authentication policy in accordance with the organization-defined frequency.','IA-01c.01','N/A','Determine if: - the current identification and authentication policy is reviewed and updated [IA-01_ODP[05]; the frequency at which the current identification and authentication policy is reviewed and updated is defined]. - the current identification and authentication policy is reviewed and updated following [IA-01_ODP[06]; events that would require the current identification and authentication policy to be reviewed and updated are defined].'), ('000759','draft','2009-09-17','DISA FSO','policy','Defines a frequency for reviewing and updating the identification and authentication policy.','IA-01c.01','N/A','Determine if: - the current identification and authentication policy is reviewed and updated [IA-01_ODP[05]; the frequency at which the current identification and authentication policy is reviewed and updated is defined]. - the current identification and authentication policy is reviewed and updated following [IA-01_ODP[06]; events that would require the current identification and authentication policy to be reviewed and updated are defined].'), ('000762','draft','2009-09-17','DISA FSO','policy','Review and update the current identification and authentication procedures in accordance with the organization-defined frequency.','IA-01c.02','N/A','Determine if: - the current identification and authentication procedures are reviewed and updated [IA-01_ODP[07]; the frequency at which the current identification and authentication procedures are reviewed and updated is defined]. - the current identification and authentication procedures are reviewed and updated following [IA-01_ODP[08]; events that would require identification and authentication procedures to be reviewed and updated are defined].'), ('000763','draft','2009-09-17','DISA FSO','policy','Defines a frequency for reviewing and updating the identification and authentication procedures.','IA-01c.02','N/A','Determine if: - the current identification and authentication procedures are reviewed and updated [IA-01_ODP[07]; the frequency at which the current identification and authentication procedures are reviewed and updated is defined]. - the current identification and authentication procedures are reviewed and updated following [IA-01_ODP[08]; events that would require identification and authentication procedures to be reviewed and updated are defined].'), ('000764','draft','2009-09-17','DISA FSO','technical','Uniquely identify and authenticate organizational users and associate that unique identification with processes acting on behalf of those users.','IA-02','N/A','Determine if: - organizational users are uniquely identified and authenticated. - the unique identification of authenticated organizational users is associated with processes acting on behalf of those users.'), ('000765','draft','2009-09-17','DISA FSO','technical','Implement multifactor authentication for access to privileged accounts.','IA-02(01)','N/A','Determine if multi-factor authentication is implemented for access to privileged accounts.'), ('000766','draft','2009-09-17','DISA FSO','technical','Implement multifactor authentication for access to non-privileged accounts.','IA-02(02)','N/A','Determine if multi-factor authentication for access to non-privileged accounts is implemented.'), ('000777','draft','2009-09-17','DISA FSO','policy','Defines devices and/or types of devices for which identification and authentication is required before establishing a connection.','IA-03','N/A','Determine if [IA-03_ODP[01]; devices and/or types of devices to be uniquely identified and authenticated before establishing a connection are defined] are uniquely identified and authenticated before establishing a [IA-03_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {local; remote; network}] connection.'), ('000778','draft','2009-09-17','DISA FSO','technical','Uniquely identify organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection.','IA-03','N/A','Determine if [IA-03_ODP[01]; devices and/or types of devices to be uniquely identified and authenticated before establishing a connection are defined] are uniquely identified and authenticated before establishing a [IA-03_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {local; remote; network}] connection.'), ('000783','draft','2009-09-17','DISA FSO','technical','Audit lease information when assigned to a device.','IA-03(03)(b)','N/A','Determine if lease information is audited when assigned to a device.'), ('000796','draft','2009-09-17','DISA FSO','policy','Prohibit the use of system account identifiers that are the same as public identifiers for individual accounts.','IA-04(01)','N/A','Determine if the use of system account identifiers that are the same as public identifiers is prohibited for individual accounts.'), ('000800','draft','2009-09-17','DISA FSO','policy','Defines characteristics for identifying individual status.','IA-04(04)','N/A','Determine if individual identifiers are managed by uniquely identifying each individual as [IA-04(04)_ODP; characteristics used to identify individual status is defined].'), ('000801','draft','2009-09-17','DISA FSO','policy','Manage individual identifiers by uniquely identifying each individual as organization-defined characteristics identifying individual status.','IA-04(04)','N/A','Determine if individual identifiers are managed by uniquely identifying each individual as [IA-04(04)_ODP; characteristics used to identify individual status is defined].'), ('000803','draft','2009-09-17','DISA FSO','technical','Implement mechanisms for authentication to a cryptographic module that meet the requirements of applicable laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.','IA-07','N/A','Determine if mechanisms for authentication to a cryptographic module are implemented that meet the requirements of applicable laws, executive orders, directives, policies, regulations, standards, and guidelines for such authentication.'), ('000804','draft','2009-09-17','DISA FSO','technical','Uniquely identify and authenticate non-organizational users or processes acting on behalf of non-organizational users.','IA-08','N/A','Determine if non-organizational users or processes acting on behalf of non-organizational users are uniquely identified and authenticated.'), ('000805','draft','2009-09-17','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level incident response policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','IR-01a.01(a)','N/A','Determine if: - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses purpose. - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses scope. - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses roles. - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses responsibilities. - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses management commitment. - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses coordination among organizational entities. - the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy addresses compliance.'), ('000806','draft','2009-09-17','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; and/or system-level incident response policy to organization-defined personnel or roles.','IR-01a.','N/A','Determine if: - an incident response policy is developed and documented. - the incident response policy is disseminated to [IR-01_ODP[01]; personnel or roles to whom the incident response policy is to be disseminated is/are defined].'), ('000807','draft','2009-09-17','DISA FSO','policy','Review and update the current incident response policy in accordance with organization-defined frequency.','IR-01c.01','N/A','Determine if: - the current incident response policy is reviewed and updated [IR-01_ODP[05]; the frequency at which the current incident response policy is reviewed and updated is defined]. - the current incident response policy is reviewed and updated following [IR-01_ODP[06]; events that would require the current incident response policy to be reviewed and updated are defined].'), ('000808','draft','2009-09-17','DISA FSO','policy','Defines the frequency with which to review and update the current incident response policy.','IR-01c.01','N/A','Determine if: - the current incident response policy is reviewed and updated [IR-01_ODP[05]; the frequency at which the current incident response policy is reviewed and updated is defined]. - the current incident response policy is reviewed and updated following [IR-01_ODP[06]; events that would require the current incident response policy to be reviewed and updated are defined].'), ('000809','draft','2009-09-17','DISA FSO','policy','Develop and document procedures to facilitate the implementation of incident response policy and associated incident response controls.','IR-01a.02','N/A','Determine if: - incident response procedures to facilitate the implementation of the incident response policy and associated incident response controls are developed and documented. - the incident response procedures are disseminated to [IR-01_ODP[02]; personnel or roles to whom the incident response procedures are to be disseminated is/are defined].'), ('000810','draft','2009-09-17','DISA FSO','policy','Disseminate the incident response procedures to organization-defined personnel or roles.','IR-01a.02','N/A','Determine if: - incident response procedures to facilitate the implementation of the incident response policy and associated incident response controls are developed and documented. - the incident response procedures are disseminated to [IR-01_ODP[02]; personnel or roles to whom the incident response procedures are to be disseminated is/are defined].'), ('000811','draft','2009-09-17','DISA FSO','policy','Review and update the current incident response procedures in accordance with organization-defined frequency.','IR-01c.02','N/A','Determine if: - the current incident response procedures are reviewed and updated [IR-01_ODP[07]; the frequency at which the current incident response procedures are reviewed and updated is defined]. - the current incident response procedures are reviewed and updated following [IR-01_ODP[08]; events that would require the incident response procedures to be reviewed and updated are defined].'), ('000812','draft','2009-09-17','DISA FSO','policy','Defines the frequency with which to review and update the current incident response procedures.','IR-01c.02','N/A','Determine if: - the current incident response procedures are reviewed and updated [IR-01_ODP[07]; the frequency at which the current incident response procedures are reviewed and updated is defined]. - the current incident response procedures are reviewed and updated following [IR-01_ODP[08]; events that would require the incident response procedures to be reviewed and updated are defined].'), ('000813','draft','2009-09-17','DISA FSO','policy','Provide incident response training to system users consistent with assigned roles and responsibilities within an organization-defined time period of assuming an incident response role or responsibility.','IR-02a.01','N/A','Determine if incident response training is provided to system users consistent with assigned roles and responsibilities within [IR-02_ODP[01]; a time period within which incident response training is to be provided to system users assuming an incident response role or responsibility is defined] of assuming an incident response role or responsibility or acquiring system access.'), ('000814','draft','2009-09-17','DISA FSO','policy','Provide incident response training in accordance with organization-defined frequency.','IR-02a.03','N/A','Determine if incident response training is provided to system users consistent with assigned roles and responsibilities [IR-02_ODP[02]; frequency at which to provide incident response training to users is defined] thereafter.'), ('000815','draft','2009-09-17','DISA FSO','policy','Defines a frequency for incident response training.',NULL,'N/A',NULL), ('000816','draft','2009-09-17','DISA FSO','policy','Incorporate simulated events into incident response training to facilitate effective response by personnel in crisis situations.','IR-02(01)','N/A','Determine if simulated events are incorporated into incident response training to facilitate the required response by personnel in crisis situations.'), ('000817','draft','2009-09-17','DISA FSO','policy','Provide an incident response training environment using organization-defined automated mechanisms.','IR-02(02)','N/A','Determine if an incident response training environment is provided using [IR-02(02)_ODP; automated mechanisms used in an incident response training environment are defined].'), ('000818','draft','2009-09-17','DISA FSO','policy','Test the effectiveness of the incident response capability for the system on an organization-defined frequency using organization-defined tests.','IR-03','N/A','Determine if the effectiveness of the incident response capability for the system is tested [IR-03_ODP[01]; frequency at which to test the effectiveness of the incident response capability for the system is defined] using [IR-03_ODP[02]; tests used to test the effectiveness of the incident response capability for the system are defined].'), ('000819','draft','2009-09-17','DISA FSO','policy','Defines a frequency for incident response tests.','IR-03','N/A','Determine if the effectiveness of the incident response capability for the system is tested [IR-03_ODP[01]; frequency at which to test the effectiveness of the incident response capability for the system is defined] using [IR-03_ODP[02]; tests used to test the effectiveness of the incident response capability for the system are defined].'), ('000820','draft','2009-09-17','DISA FSO','policy','Defines tests for incident response.','IR-03','N/A','Determine if the effectiveness of the incident response capability for the system is tested [IR-03_ODP[01]; frequency at which to test the effectiveness of the incident response capability for the system is defined] using [IR-03_ODP[02]; tests used to test the effectiveness of the incident response capability for the system are defined].'), ('000821','draft','2009-09-17','DISA FSO','policy','Test the incident response capability using organization-defined automated mechanisms.','IR-03(01)','N/A','Determine if the incident response capability is tested using [IR-03(01)_ODP; automated mechanisms used to test the incident response capability are defined].'), ('000822','draft','2009-09-18','DISA FSO','policy','Implement an incident handling capability for incidents that is consistent with the incident response plan and includes preparation, detection and analysis, containment, eradication, and recovery.','IR-04a.','N/A','Determine if: - an incident handling capability for incidents is implemented that is consistent with the incident response plan. - the incident handling capability for incidents includes preparation. - the incident handling capability for incidents includes detection and analysis. - the incident handling capability for incidents includes containment. - the incident handling capability for incidents includes eradication. - the incident handling capability for incidents includes recovery.'), ('000823','draft','2009-09-18','DISA FSO','policy','Coordinate incident handling activities with contingency planning activities.','IR-04b.','N/A','Determine if incident handling activities are coordinated with contingency planning activities.'), ('000825','draft','2009-09-18','DISA FSO','policy','Support the incident handling process using organization-defined automated mechanisms.','IR-04(01)','N/A','Determine if the incident handling process is supported using [IR-04(01)_ODP; automated mechanisms used to support the incident handling process are defined].'), ('000826','draft','2009-09-18','DISA FSO','policy','Include organization-defined types of dynamic reconfiguration for organization-defined system components as part of the incident response capability.','IR-04(02)','N/A','Determine if [IR-04(02)_ODP[01]; types of dynamic reconfiguration for system components are defined] for [IR-04(02)_ODP[02]; system components that require dynamic reconfiguration are defined] are included as part of the incident response capability.'), ('000827','draft','2009-09-18','DISA FSO','policy','Identify organization-defined classes of incidents for which organization-defined actions are to be taken to ensure continuation of organizational mission and business functions.','IR-04(03)','N/A','Determine if: - [IR-04(03)_ODP[01]; classes of incidents requiring an organization-defined action (defined in IR-04(03)_ODP[02]) to be taken are defined] are identified. - [IR-04(03)_ODP[02]; actions to be taken in response to organization-defined classes of incidents are defined] are taken in response to those incidents (defined in IR-04(03)_ODP[01]) to ensure the continuation of organizational mission and business functions.'), ('000828','draft','2009-09-18','DISA FSO','policy','Identify actions to take in response to organization-defined classes of incidents to ensure continuation of organizational missions and business functions.','IR-04(03)','N/A','Determine if: - [IR-04(03)_ODP[01]; classes of incidents requiring an organization-defined action (defined in IR-04(03)_ODP[02]) to be taken are defined] are identified. - [IR-04(03)_ODP[02]; actions to be taken in response to organization-defined classes of incidents are defined] are taken in response to those incidents (defined in IR-04(03)_ODP[01]) to ensure the continuation of organizational mission and business functions.'), ('000829','draft','2009-09-18','DISA FSO','policy','Correlate incident information and individual incident responses to achieve an organization-wide perspective on incident awareness and response.','IR-04(04)','N/A','Determine if incident information and individual incident responses are correlated to achieve an organization-wide perspective on incident awareness and response.'), ('000830','draft','2009-09-18','DISA FSO','policy','Defines security violations that, if detected, initiate a configurable capability to automatically disable the system.','IR-04(05)','N/A','Determine if a configurable capability is implemented to automatically disable the system if [IR-04(05)_ODP; security violations that automatically disable a system are defined] are detected.'), ('000831','draft','2009-09-18','DISA FSO','technical','Implement a configurable capability to automatically disable the system if organization-defined security violations are detected.','IR-04(05)','N/A','Determine if a configurable capability is implemented to automatically disable the system if [IR-04(05)_ODP; security violations that automatically disable a system are defined] are detected.'), ('000832','draft','2009-09-18','DISA FSO','policy','Track and document incidents.','IR-05','N/A','Determine if: - incidents are tracked. - incidents are documented.'), ('000834','draft','2009-09-18','DISA FSO','policy','Defines a time period for personnel to report suspected incidents to the organizational incident response capability.','IR-06a.','N/A','Determine if personnel is/are required to report suspected incidents to the organizational incident response capability within [IR-06_ODP[01]; time period for personnel to report suspected incidents to the organizational incident response capability is defined].'), ('000835','draft','2009-09-18','DISA FSO','policy','Require personnel to report suspected incidents to the organizational incident response capability within the organization-defined time period.','IR-06a.','N/A','Determine if personnel is/are required to report suspected incidents to the organizational incident response capability within [IR-06_ODP[01]; time period for personnel to report suspected incidents to the organizational incident response capability is defined].'), ('000836','draft','2009-09-18','DISA FSO','policy','Report incident information to organization-defined authorities.','IR-06b.','N/A','Determine if incident information is reported to [IR-06_ODP[02]; authorities to whom incident information is to be reported are defined].'), ('000837','draft','2009-09-18','DISA FSO','policy','Report incidents using organization-defined automated mechanisms.','IR-06(01)','N/A','Determine if incidents are reported using [IR-06(01)_ODP; automated mechanisms used for reporting incidents are defined].'), ('000838','draft','2009-09-18','DISA FSO','policy','Report system vulnerabilities associated with reported incidents to organization-defined personnel or roles.','IR-06(02)','N/A','Determine if system vulnerabilities associated with reported incidents are reported to [IR-06(02)_ODP; personnel or roles to whom system vulnerabilities associated with reported incidents are reported to is/are defined].'), ('000839','draft','2009-09-18','DISA FSO','policy','Provide an incident response support resource, integral to the organizational incident response capability, that offers advice and assistance to users of the system for the handling and reporting of incidents.','IR-07','N/A','Determine if: - an incident response support resource, integral to the organizational incident response capability, is provided. - the incident response support resource offers advice and assistance to users of the system for the response and reporting of incidents.'), ('000841','draft','2009-09-18','DISA FSO','policy','Establish a direct, cooperative relationship between its incident response capability and external providers of system protection capability.','IR-07(02)(a)','N/A','Determine if a direct, cooperative relationship is established between its incident response capability and external providers of the system protection capability.'), ('000842','draft','2009-09-18','DISA FSO','policy','Identify organizational incident response team members to the external providers.','IR-07(02)(b)','N/A','Determine if organizational incident response team members are identified to the external providers.'), ('000844','draft','2009-09-18','DISA FSO','policy','Develop an incident response plan that is reviewed and approved by organization-defined personnel or roles on an organization-defined frequency.','IR-08a.09','N/A','Determine if an incident response plan is developed that is reviewed and approved by [IR-08_ODP[01]; personnel or roles that review and approve the incident response plan is/are identified] [IR-08_ODP[02]; the frequency at which to review and approve the incident response plan is defined].'), ('000845','draft','2009-09-18','DISA FSO','policy','Defines incident response personnel (identified by name and/or by role) and organizational elements to whom copies of the incident response plan are distributed.','IR-08b.','N/A','Determine if: - copies of the incident response plan are distributed to [IR-08_ODP[04]; incident response personnel (identified by name and/or by role) to whom copies of the incident response plan are to be distributed is/are defined]. - copies of the incident response plan are distributed to [IR-08_ODP[05]; organizational elements to which copies of the incident response plan are to be distributed are defined].'), ('000846','draft','2009-09-18','DISA FSO','policy','Distributes copies of the incident response plan to organization-defined incident response personnel (identified by name and/or by role) and organizational elements.','IR-08b.','N/A','Determine if: - copies of the incident response plan are distributed to [IR-08_ODP[04]; incident response personnel (identified by name and/or by role) to whom copies of the incident response plan are to be distributed is/are defined]. - copies of the incident response plan are distributed to [IR-08_ODP[05]; organizational elements to which copies of the incident response plan are to be distributed are defined].'), ('000849','draft','2009-09-18','DISA FSO','policy','Update the incident response plan to address system and organizational changes or problems encountered during plan implementation, execution, or testing.','IR-08c.','N/A','Determine if the incident response plan is updated to address system and organizational changes or problems encountered during plan implementation, execution, or testing.'), ('000850','draft','2009-09-18','DISA FSO','policy','Communicate incident response plan changes to organization-defined incident response personnel (identified by name and/or by role) and organizational elements.','IR-08d.','N/A','Determine if: - incident response plan changes are communicated to [IR-08_ODP[06]; incident response personnel (identified by name and/or by role) to whom changes to the incident response plan is/are communicated are defined]. - incident response plan changes are communicated to [IR-08_ODP[07]; organizational elements to which changes to the incident response plan are communicated are defined].'), ('000851','draft','2009-09-18','DISA FSO','policy','Defines the frequency with which to review and update the current system maintenance policy.','MA-01c.01','N/A','Determine if: - the current maintenance policy is reviewed and updated [MA-01_ODP[05]; the frequency with which the current maintenance policy is reviewed and updated is defined]. - the current maintenance policy is reviewed and updated following [MA-01_ODP[06]; events that would require the current maintenance policy to be reviewed and updated are defined].'), ('000852','draft','2009-09-18','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level maintenance policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','MA-01a.01(a)','N/A','Determine if: - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses purpose. - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses scope. - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses roles. - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses responsibilities. - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses management commitment. - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses coordination among organizational entities. - the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy addresses compliance.'), ('000853','draft','2009-09-18','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; and/or system-level maintenance policy to organization-defined personnel or roles.','MA-01a.','N/A','Determine if: - a maintenance policy is developed and documented. - the maintenance policy is disseminated to [MA-01_ODP[01]; personnel or roles to whom the maintenance policy is to be disseminated is/are defined].'), ('000854','draft','2009-09-18','DISA FSO','policy','Review and update the current maintenance policy in accordance with organization-defined frequency.','MA-01c.01','N/A','Determine if: - the current maintenance policy is reviewed and updated [MA-01_ODP[05]; the frequency with which the current maintenance policy is reviewed and updated is defined]. - the current maintenance policy is reviewed and updated following [MA-01_ODP[06]; events that would require the current maintenance policy to be reviewed and updated are defined].'), ('000855','draft','2009-09-18','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the system maintenance policy and associated system maintenance controls.','MA-01a.02','N/A','Determine if: - maintenance procedures to facilitate the implementation of the maintenance policy and associated maintenance controls are developed and documented. - Determine if the maintenance procedures are disseminated to [MA-01_ODP[02]; personnel or roles to whom the maintenance procedures are to be disseminated is/are defined].'), ('000856','draft','2009-09-18','DISA FSO','policy','Disseminate procedures to facilitate the implementation of the system maintenance policy and associated system maintenance controls to organization-defined personnel or roles.','MA-01a.02','N/A','Determine if: - maintenance procedures to facilitate the implementation of the maintenance policy and associated maintenance controls are developed and documented. - Determine if the maintenance procedures are disseminated to [MA-01_ODP[02]; personnel or roles to whom the maintenance procedures are to be disseminated is/are defined].'), ('000857','draft','2009-09-18','DISA FSO','policy','Review and update the current maintenance procedures in accordance with organization-defined frequency.','MA-01c.02','N/A','Determine if: - the current maintenance procedures are reviewed and updated [MA-01_ODP[07]; the frequency with which the current maintenance procedures are reviewed and updated is defined]. - the current maintenance procedures are reviewed and updated following [MA-01_ODP[08]; events that would require the maintenance procedures to be reviewed and updated are defined].'), ('000860','draft','2009-09-18','DISA FSO','policy','Require that organization-defines personnel or roles explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance, repair, or replacement.','MA-02c.','N/A','Determine if [MA-02_ODP[01]; personnel or roles required to explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance or repairs is/are defined] is/are required to explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance, repair, or replacement.'), ('000861','draft','2009-09-18','DISA FSO','policy','Sanitize equipment to remove organization-defined information from associated media prior to removal from organizational facilities for off-site maintenance, repairs or replacement.','MA-02d.','N/A','Determine if equipment is sanitized to remove [MA-02_ODP[02]; information to be removed from associated media prior to removal from organizational facilities for off-site maintenance, repair, or replacement is defined] from associated media prior to removal from organizational facilities for off-site maintenance, repair, or replacement.'), ('000862','draft','2009-09-18','DISA FSO','policy','Check all potentially impacted controls to verify that the controls are still functioning properly following maintenance, repair or replacement actions.','MA-02e.','N/A','Determine if all potentially impacted controls are checked to verify that the controls are still functioning properly following maintenance, repair, or replacement actions.'), ('000865','draft','2009-09-18','DISA FSO','policy','Approve the use of system maintenance tools.',NULL,'N/A',NULL), ('000866','draft','2009-09-18','DISA FSO','policy','Control the use of system maintenance tools.',NULL,'N/A',NULL), ('000867','draft','2009-09-18','DISA FSO','policy','Monitor the use of system maintenance tools.','MA-03a.','N/A','Determine if: - the use of system maintenance tools is approved. - the use of system maintenance tools is controlled. - the use of system maintenance tools is monitored.'), ('000869','draft','2009-09-18','DISA FSO','policy','Inspect the maintenance tools used by maintenance personnel for improper or unauthorized modifications.','MA-03(01)','N/A','Determine if maintenance tools used by maintenance personnel are inspected for improper or unauthorized modifications.'), ('000870','draft','2009-09-18','DISA FSO','policy','Check media containing diagnostic and test programs for malicious code before the media are used in the system.','MA-03(02)','N/A','Determine if media containing diagnostic and test programs are checked for malicious code before the media are used in the system.'), ('000871','draft','2009-09-18','DISA FSO','policy','Prevent the unauthorized removal of maintenance equipment containing organizational information by: (a) verifying that there is no organizational information contained on the equipment; (b) sanitizing or destroying the equipment; (c) retaining the equipment within the facility; or (d) obtaining an exemption from organization-defined personnel or roles explicitly authorizing removal of the equipment from the facility.','MA-03(03)(a)','N/A','Determine if the removal of maintenance equipment containing organizational information is prevented by verifying that there is no organizational information contained on the equipment.'), ('000873','draft','2009-09-18','DISA FSO','policy','Approve nonlocal maintenance and diagnostic activities.','MA-04a.','N/A','Determine if: - nonlocal maintenance and diagnostic activities are approved. - nonlocal maintenance and diagnostic activities are monitored.'), ('000874','draft','2009-09-18','DISA FSO','policy','Monitor nonlocal maintenance and diagnostic activities.','MA-04a.','N/A','Determine if: - nonlocal maintenance and diagnostic activities are approved. - nonlocal maintenance and diagnostic activities are monitored.'), ('000876','draft','2009-09-18','DISA FSO','policy','Allow the use of nonlocal maintenance and diagnostic tools only as consistent with organizational policy and documented in the security plan for the system.','MA-04b.','N/A','Determine if: - the use of nonlocal maintenance and diagnostic tools are allowed only as consistent with organizational policy. - the use of nonlocal maintenance and diagnostic tools are documented in the security plan for the system.'), ('000877','draft','2009-09-18','DISA FSO','technical','Employ strong authentication in the establishment of nonlocal maintenance and diagnostic sessions.','MA-04c.','N/A','Determine if strong authentication is employed in the establishment of nonlocal maintenance and diagnostic sessions.'), ('000878','draft','2009-09-18','DISA FSO','policy','Maintain records for nonlocal maintenance and diagnostic activities.','MA-04d.','N/A','Determine if records for nonlocal maintenance and diagnostic activities are maintained.'), ('000882','draft','2009-09-18','DISA FSO','policy','Require that nonlocal maintenance and diagnostic services be performed from a system that implements a security capability comparable to the capability implemented on the system being serviced.','MA-04(03)(a)','N/A','Determine if: - nonlocal maintenance services are required to be performed from a system that implements a security capability comparable to the capability implemented on the system being serviced. - nonlocal diagnostic services are required to be performed from a system that implements a security capability comparable to the capability implemented on the system being serviced.'), ('000883','draft','2009-09-18','DISA FSO','policy','Remove the component to be serviced from the system prior to nonlocal maintenance or diagnostic services; sanitize the component (for organizational information).','MA-04(03)(b)','N/A','Determine if: - the component to be serviced is removed from the system prior to nonlocal maintenance or diagnostic services. - the component to be serviced is sanitized (for organizational information). - the component is inspected and sanitized (for potentially malicious software) after the service is performed and before reconnecting the component to the system.'), ('000884','draft','2009-09-18','DISA FSO','technical','Protect nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.','MA-04(04)(a)','N/A','Determine if nonlocal maintenance sessions are protected by employing [MA-04(04)_ODP; authenticators that are replay resistant are defined].'), ('000886','draft','2009-09-18','DISA FSO','policy','Defines the personnel or roles to be notified of the date and time of planned nonlocal maintenance.','MA-04(05)(b)','N/A','Determine if [MA-04(05)_ODP[02]; personnel and roles to be notified of the date and time of planned nonlocal maintenance is/are defined] is/are notified of the date and time of planned nonlocal maintenance.'), ('000887','draft','2009-09-18','DISA FSO','policy','Require the approval of each nonlocal maintenance session by organization-defined personnel or roles.','MA-04(05)(a)','N/A','Determine if the approval of each nonlocal maintenance session is required by [MA-04(05)_ODP[01]; personnel or roles required to approve each nonlocal maintenance session is/are defined].'), ('000890','draft','2009-09-18','DISA FSO','policy','Establish a process for maintenance personnel authorization.','MA-05a.','N/A','Determine if: - a process for maintenance personnel authorization is established. - a list of authorized maintenance organizations or personnel is maintained.'), ('000891','draft','2009-09-18','DISA FSO','policy','Maintain a list of authorized maintenance organizations or personnel.','MA-05a.','N/A','Determine if: - a process for maintenance personnel authorization is established. - a list of authorized maintenance organizations or personnel is maintained.'), ('000893','draft','2009-09-18','DISA FSO','policy','Implement procedures for the use of maintenance personnel that lack appropriate security clearances or are not U.S. citizens.',NULL,'N/A',NULL), ('000894','draft','2009-09-18','DISA FSO','policy','Requires maintenance personnel who do not have needed access authorizations, clearances, or formal access approvals to be escorted and supervised during the performance of maintenance and diagnostic activities on the system by approved organizational personnel who are fully cleared, have appropriate access authorizations, and are technically qualified.','MA-05(01)(a)(01)','N/A','Determine if procedures for the use of maintenance personnel who lack appropriate security clearances or are not U.S. citizens are implemented and include approved organizational personnel who are fully cleared, have appropriate access authorizations, and are technically qualified escorting and supervising maintenance personnel without the needed access authorization during the performance of maintenance and diagnostic activities.'), ('000895','draft','2009-09-18','DISA FSO','policy','Require that, prior to initiating maintenance or diagnostic activities by personnel who do not have needed access authorizations, clearances or formal access approvals, all volatile information storage components within the system be sanitized and all nonvolatile storage media be removed or physically disconnected from the system and secured.','MA-05(01)(a)(02)','N/A','Determine if procedures for the use of maintenance personnel who lack appropriate security clearances or are not U.S. citizens are implemented and include all volatile information storage components within the system being sanitized and all non-volatile storage media being removed or physically disconnected from the system and secured prior to initiating maintenance or diagnostic activities.'), ('000897','draft','2009-09-18','DISA FSO','policy','Verify that personnel performing maintenance and diagnostic activities on a system processing, storing, or transmitting classified information possess security clearances and formal access approvals for at least the highest classification level and for all compartments of information on the system.','MA-05(02)','N/A','Determine if: - personnel performing maintenance and diagnostic activities on a system processing, storing, or transmitting classified information possess security clearances for at least the highest classification level and for compartments of information on the system. - personnel performing maintenance and diagnostic activities on a system processing, storing, or transmitting classified information possess formal access approvals for at least the highest classification level and for compartments of information on the system.'), ('000898','draft','2009-09-18','DISA FSO','policy','Verify that personnel performing maintenance and diagnostic activities on a system processing, storing, or transmitting classified information are U.S. citizens.','MA-05(03)','N/A','Determine if personnel performing maintenance and diagnostic activities on a system processing, storing, or transmitting classified information are U.S. citizens.'), ('000899','draft','2009-09-18','DISA FSO','policy','Ensure that cleared foreign nationals with appropriate security clearances are used to conduct maintenance and diagnostic activities on classified systems only when the systems are jointly owned and operated by the United States and foreign allied governments, or owned and operated solely by foreign allied governments.','MA-05(04)(a)','N/A','Determine if foreign nationals with appropriate security clearances are used to conduct maintenance and diagnostic activities on classified systems only when the systems are jointly owned and operated by the United States and foreign allied governments or owned and operated solely by foreign allied governments.'), ('000900','draft','2009-09-18','DISA FSO','policy','Ensure that that approvals, consents, and detailed operational conditions regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified systems are fully documented within Memoranda of Agreements.','MA-05(04)(b)','N/A','Determine if: - approvals regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified systems are fully documented within Memoranda of Agreements. - consents regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified systems are fully documented within Memoranda of Agreements. - detailed operational conditions regarding the use of foreign nationals to conduct maintenance and diagnostic activities on classified systems are fully documented within Memoranda of Agreements.'), ('000903','draft','2009-09-18','DISA FSO','policy','Obtain maintenance support and/or spare parts for organization-defined system components within an organization-defined time period of failure.','MA-06','N/A','Determine if maintenance support and/or spare parts are obtained for [MA-06_ODP[01]; system components for which maintenance support and/or spare parts are obtained are defined] within [MA-06_ODP[02]; time period within which maintenance support and/or spare parts are to be obtained after a failure are defined] of failure.'), ('000904','draft','2009-09-21','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level physical and environmental protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PE-01a.01(a)','N/A','Determine if: - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses purpose. - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses scope. - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses roles. - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses responsibilities. - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses management commitment. - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses coordination among organizational entities. - the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy addresses compliance.'), ('000905','draft','2009-09-21','DISA FSO','policy','Disseminate a physical and environmental protection policy to organization-defined personnel or roles.','PE-01a.','N/A','Determine if: - a physical and environmental protection policy is developed and documented. - the physical and environmental protection policy is disseminated to [PE-01_ODP[01]; personnel or roles to whom the physical and environmental protection policy is to be disseminated is/are defined].'), ('000906','draft','2009-09-21','DISA FSO','policy','Review and update the current physical and environmental protection policy in accordance with organization-defined frequency.','PE-01c.01','N/A','Determine if: - the current physical and environmental protection policy is reviewed and updated [PE-01_ODP[05]; the frequency at which the current physical and environmental protection policy is reviewed and updated is defined]. - the current physical and environmental protection policy is reviewed and updated following [PE-01_ODP[06]; events that would require the current physical and environmental protection policy to be reviewed and updated are defined].'), ('000907','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review and update the physical and environmental protection policy.','PE-01c.01','N/A','Determine if: - the current physical and environmental protection policy is reviewed and updated [PE-01_ODP[05]; the frequency at which the current physical and environmental protection policy is reviewed and updated is defined]. - the current physical and environmental protection policy is reviewed and updated following [PE-01_ODP[06]; events that would require the current physical and environmental protection policy to be reviewed and updated are defined].'), ('000908','draft','2009-09-21','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the physical and environmental protection policy and associated physical and environmental protection controls.','PE-01a.02','N/A','Determine if: - physical and environmental protection procedures to facilitate the implementation of the physical and environmental protection policy and associated physical and environmental protection controls are developed and documented. - the physical and environmental protection procedures are disseminated to [PE-01_ODP[02]; personnel or roles to whom the physical and environmental protection procedures are to be disseminated is/are defined].'), ('000909','draft','2009-09-21','DISA FSO','policy','Disseminate physical and environmental protection procedures to organization-defined personnel or roles.','PE-01a.02','N/A','Determine if: - physical and environmental protection procedures to facilitate the implementation of the physical and environmental protection policy and associated physical and environmental protection controls are developed and documented. - the physical and environmental protection procedures are disseminated to [PE-01_ODP[02]; personnel or roles to whom the physical and environmental protection procedures are to be disseminated is/are defined].'), ('000910','draft','2009-09-21','DISA FSO','policy','Review and update the current physical and environmental protection procedures in accordance with organization-defined frequency.','PE-01c.02','N/A','Determine if: - the current physical and environmental protection procedures are reviewed and updated [PE-01_ODP[07]; the frequency at which the current physical and environmental protection procedures are reviewed and updated is defined]. - the current physical and environmental protection procedures are reviewed and updated following [PE-01_ODP[08]; events that would require the physical and environmental protection procedures to be reviewed and updated are defined].'), ('000911','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review and update the physical and environmental protection procedures.','PE-01c.02','N/A','Determine if: - the current physical and environmental protection procedures are reviewed and updated [PE-01_ODP[07]; the frequency at which the current physical and environmental protection procedures are reviewed and updated is defined]. - the current physical and environmental protection procedures are reviewed and updated following [PE-01_ODP[08]; events that would require the physical and environmental protection procedures to be reviewed and updated are defined].'), ('000912','draft','2009-09-21','DISA FSO','policy','Develop a list of individuals with authorized access to the facility where the system resides.','PE-02a.','N/A','Determine if: - a list of individuals with authorized access to the facility where the system resides has been developed. - the list of individuals with authorized access to the facility where the system resides has been approved. - the list of individuals with authorized access to the facility where the system resides has been maintained.'), ('000913','draft','2009-09-21','DISA FSO','policy','Issue authorization credentials for facility access.','PE-02b.','N/A','Determine if authorization credentials are issued for facility access.'), ('000914','draft','2009-09-21','DISA FSO','policy','Review the access list detailing authorized facility access by individuals in accordance with organization-defined frequency.','PE-02c.','N/A','Determine if the access list detailing authorized facility access by individuals is reviewed [PE-02_ODP; frequency at which to review the access list detailing authorized facility access by individuals is defined].'), ('000915','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review the access list detailing authorized facility access by individuals.','PE-02c.','N/A','Determine if the access list detailing authorized facility access by individuals is reviewed [PE-02_ODP; frequency at which to review the access list detailing authorized facility access by individuals is defined].'), ('000916','draft','2009-09-21','DISA FSO','policy','Authorize physical access to the facility where the system resides based on position or role.','PE-02(01)','N/A','Determine if physical access to the facility where the system resides is authorized based on position or role.'), ('000917','draft','2009-09-21','DISA FSO','policy','Require two forms of identification from an organization-defined list of acceptable forms of identification for visitor access to the facility where the system resides.','PE-02(02)','N/A','Determine if two forms of identification are required from [PE-02(02)_ODP; a list of acceptable forms of identification for visitor access to the facility where the system resides is defined] for visitor access to the facility where the system resides.'), ('000920','draft','2009-09-21','DISA FSO','policy','Verify individual access authorizations before granting access to the facility.','PE-03a.01','N/A','Determine if physical access authorizations are enforced at [PE-03_ODP[01]; entry and exit points to the facility in which the system resides are defined] by verifying individual access authorizations before granting access to the facility.'), ('000923','draft','2009-09-21','DISA FSO','policy','Secure keys, combinations, and other physical access devices.','PE-03e.','N/A','Determine if: - keys are secured. - combinations are secured. - other physical access devices are secured.'), ('000924','draft','2009-09-21','DISA FSO','policy','Inventory organization-defined physical access devices on an organization-defined frequency.','PE-03f.','N/A','Determine if [PE-03_ODP[07]; physical access devices to be inventoried are defined] are inventoried [PE-03_ODP[08]; frequency at which to inventory physical access devices is defined].'), ('000925','draft','2009-09-21','DISA FSO','policy','Defines the frequency for conducting inventories of organization-defined physical access devices.','PE-03f.','N/A','Determine if [PE-03_ODP[07]; physical access devices to be inventoried are defined] are inventoried [PE-03_ODP[08]; frequency at which to inventory physical access devices is defined].'), ('000926','draft','2009-09-21','DISA FSO','policy','Change combinations and keys in accordance with organization-defined frequency and/or when keys are lost, combinations are compromised, or when individuals possessing the keys or combinations are transferred or terminated.','PE-03g.','N/A','Determine if: - combinations are changed [PE-03_ODP[09]; frequency at which to change combinations is defined], when combinations are compromised, or when individuals possessing the combinations are transferred or terminated. - keys are changed [PE-03_ODP[10]; frequency at which to change keys is defined], when keys are lost, or when individuals possessing the keys are transferred or terminated.'), ('000927','draft','2009-09-21','DISA FSO','policy','Defines a frequency for changing combinations and keys.','PE-03g.','N/A','Determine if: - combinations are changed [PE-03_ODP[09]; frequency at which to change combinations is defined], when combinations are compromised, or when individuals possessing the combinations are transferred or terminated. - keys are changed [PE-03_ODP[10]; frequency at which to change keys is defined], when keys are lost, or when individuals possessing the keys are transferred or terminated.'), ('000928','draft','2009-09-21','DISA FSO','policy','Enforce physical access authorizations to the system in addition to the physical access controls for the facility where the system resides at organization-defined physical spaces containing one or more components of the system.','PE-03(01)','N/A','Determine if: - physical access authorizations to the system are enforced. - physical access controls are enforced for the facility at [PE-03(01)_ODP; physical spaces containing one or more components of the system are defined].'), ('000929','draft','2009-09-21','DISA FSO','policy','Perform security checks in accordance with organization-defined frequency at the physical boundary of the facility or system for unauthorized exfiltration of information or removal of system components.','PE-03(02)','N/A','Determine if security checks are performed [PE-03(02)_ODP; the frequency at which to perform security checks at the physical perimeter of the facility or system for exfiltration of information or removal of system components is defined] at the physical perimeter of the facility or system for exfiltration of information or removal of system components.'), ('000930','draft','2009-09-21','DISA FSO','policy','Employ guards to control every physical access point to the facility where the system resides 24 hours per day, 7 days per week.','PE-03(03)','N/A','Determine if guards are employed to control [PE-03(03)_ODP; physical access points to the facility where the system resides are defined] to the facility where the system resides 24 hours per day, 7 days per week.'), ('000931','draft','2009-09-21','DISA FSO','policy','Use lockable physical casings to protect organization-defined system components from unauthorized physical access.','PE-03(04)','N/A','Determine if lockable physical casings are used to protect [PE-03(04)_ODP; system components to be protected from unauthorized physical access are defined] from unauthorized access.'), ('000932','draft','2009-09-21','DISA FSO','policy','Defines system components to be protected from unauthorized physical access using lockable physical casings.','PE-03(04)','N/A','Determine if lockable physical casings are used to protect [PE-03(04)_ODP; system components to be protected from unauthorized physical access are defined] from unauthorized access.'), ('000933','draft','2009-09-21','DISA FSO','policy','Employ organization-defined anti-tamper technologies to deter and/or prevent physical tampering or alteration of organization-defined hardware components within the system.','PE-03(05)','N/A','Determine if [PE-03(05)_ODP[01]; anti-tamper technologies to be employed are defined] are employed to [PE-03(05)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {detect; prevent}] physical tampering or alteration of [PE-03(05)_ODP[03]; hardware components to be protected from physical tampering or alteration are defined] within the system.'), ('000936','draft','2009-09-21','DISA FSO','policy','Control physical access to organization-defined system distribution and transmission lines within organizational facilities using organization-defined security controls.','PE-04','N/A','Determine if physical access to [PE-04_ODP[01]; system distribution and transmission lines requiring physical access controls are defined] within organizational facilities is controlled using [PE-04_ODP[02]; security controls to be implemented to control physical access to system distribution and transmission lines within the organizational facility are defined].'), ('000937','draft','2009-09-21','DISA FSO','policy','Control physical access to output from organization-defined output devices to prevent unauthorized individuals from obtaining the output.','PE-05','N/A','Determine if physical access to output from [PE-05_ODP; output devices that require physical access control to output are defined] is controlled to prevent unauthorized individuals from obtaining the output.'), ('000939','draft','2009-09-21','DISA FSO','policy','Review physical access logs in accordance with organization-defined frequency.','PE-06b.','N/A','Determine if: - physical access logs are reviewed [PE-06_ODP[01]; the frequency at which to review physical access logs is defined]. - physical access logs are reviewed upon occurrence of [PE-06_ODP[02]; events or potential indication of events requiring physical access logs to be reviewed are defined].'), ('000940','draft','2009-09-21','DISA FSO','policy','Defines a frequency for reviewing physical access logs.','PE-06b.','N/A','Determine if: - physical access logs are reviewed [PE-06_ODP[01]; the frequency at which to review physical access logs is defined]. - physical access logs are reviewed upon occurrence of [PE-06_ODP[02]; events or potential indication of events requiring physical access logs to be reviewed are defined].'), ('000941','draft','2009-09-21','DISA FSO','policy','Coordinate results of reviews and investigations with the organization''s incident response capability.','PE-06c.','N/A','Determine if: - results of reviews are coordinated with organizational incident response capabilities. - results of investigations are coordinated with organizational incident response capabilities.'), ('000942','draft','2009-09-21','DISA FSO','policy','Monitor physical access to the facility where the system resides using physical intrusion alarms and surveillance equipment.','PE-06(01)','N/A','Determine if: - physical access to the facility where the system resides is monitored using physical intrusion alarms. - physical access to the facility where the system resides is monitored using physical surveillance equipment.'), ('000947','draft','2009-09-21','DISA FSO','policy','Maintain visitor access records to the facility where the system resides for an organization-defined time period.','PE-08a.','N/A','Determine if visitor access records for the facility where the system resides are maintained for [PE-08_ODP[01]; time period for which to maintain visitor access records for the facility where the system resides is defined].'), ('000948','draft','2009-09-21','DISA FSO','policy','Review visitor access records in accordance with organization-defined frequency.','PE-08b.','N/A','Determine if visitor access records are reviewed [PE-08_ODP[02]; the frequency at which to review visitor access records is defined].'), ('000949','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review the visitor access records for the facility where the system resides.','PE-08b.','N/A','Determine if visitor access records are reviewed [PE-08_ODP[02]; the frequency at which to review visitor access records is defined].'), ('000950','draft','2009-09-21','DISA FSO','policy','Maintain and review visitor access records using organization-defined automated mechanisms.','PE-08(01)','N/A','Determine if: - visitor access records are maintained using [PE-08(01)_ODP[01]; automated mechanisms used to maintain visitor access records are defined]. - visitor access records are reviewed using [PE-08(01)_ODP[02]; automated mechanisms used to review visitor access records are defined].'), ('000952','draft','2009-09-21','DISA FSO','policy','Protect power equipment and power cabling for the system from damage and destruction.','PE-09','N/A','Determine if: - power equipment for the system is protected from damage and destruction. - power cabling for the system is protected from damage and destruction.'), ('000954','draft','2009-09-21','DISA FSO','policy','Employ automatic voltage controls for organization-defined critical system components.','PE-09(02)','N/A','Determine if automatic voltage controls for [PE-09(02)_ODP; the critical system components that require automatic voltage controls are defined] are employed.'), ('000955','draft','2009-09-21','DISA FSO','policy','Defines critical system components that require automatic voltage controls.','PE-09(02)','N/A','Determine if automatic voltage controls for [PE-09(02)_ODP; the critical system components that require automatic voltage controls are defined] are employed.'), ('000956','draft','2009-09-21','DISA FSO','policy','Provides the capability of shutting off power to the organization-defined system or individual system components in emergency situations.','PE-10a.','N/A','Determine if the capability to shut off power to [PE-10_ODP[01]; system or individual system components that require the capability to shut off power in emergency situations is/are defined] in emergency situations is provided.'), ('000957','draft','2009-09-21','DISA FSO','policy','Place emergency shutoff switches or devices in an organization-defined location by system or system component to facilitate access for authorized personnel.','PE-10b.','N/A','Determine if emergency shutoff switches or devices are placed in [PE-10_ODP[02]; location of emergency shutoff switches or devices by system or system component is defined] to facilitate access for authorized personnel.'), ('000958','draft','2009-09-21','DISA FSO','policy','Defines a location for emergency shutoff switches or devices by system or system component.','PE-10b.','N/A','Determine if emergency shutoff switches or devices are placed in [PE-10_ODP[02]; location of emergency shutoff switches or devices by system or system component is defined] to facilitate access for authorized personnel.'), ('000959','draft','2009-09-21','DISA FSO','policy','Protect emergency power shutoff capability from unauthorized activation.','PE-10c.','N/A','Determine if the emergency power shutoff capability is protected from unauthorized activation.'), ('000961','draft','2009-09-21','DISA FSO','policy','Provide an alternate power supply for the system that is activated manually or automatically and that can maintain minimally required operational capability in the event of an extended loss of the primary power source.','PE-11(01)','N/A','Determine if: - an alternate power supply provided for the system is activated [PE-11(01)_ODP; one of the following PARAMETER VALUES is selected: {manually; automatically}]. - the alternate power supply provided for the system can maintain minimally required operational capability in the event of an extended loss of the primary power source.'), ('000963','draft','2009-09-21','DISA FSO','policy','Employ and maintains automatic emergency lighting for the information system that activates in the event of a power outage or disruption and that covers emergency exits and evacuation routes within the facility.','PE-12','N/A','Determine if: - automatic emergency lighting that activates in the event of a power outage or disruption is employed for the system. - automatic emergency lighting that activates in the event of a power outage or disruption is maintained for the system. - automatic emergency lighting for the system covers emergency exits within the facility. - automatic emergency lighting for the system covers evacuation routes within the facility.'), ('000965','draft','2009-09-21','DISA FSO','policy','Employ and maintain fire detection and suppression systems that are supported by an independent energy source.','PE-13','N/A','Determine if: - fire detection systems are employed. - employed fire detection systems are supported by an independent energy source. - employed fire detection systems are maintained. - fire suppression systems are employed. - employed fire suppression systems are supported by an independent energy source. - employed fire suppression systems are maintained.'), ('000968','draft','2009-09-21','DISA FSO','policy','Employ an automatic fire suppression capability for the system when the facility is not staffed on a continuous basis.','PE-13(02)(b)','N/A','Determine if an automatic fire suppression capability is employed when the facility is not staffed on a continuous basis.'), ('000971','draft','2009-09-21','DISA FSO','policy','Maintain temperature; humidity; pressure; radiation; and/or organization-defined environmental control levels within the facility where the system resides at organization-defined acceptable levels.','PE-14a.','N/A','Determine if [PE-14_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {temperature; humidity; pressure; radiation; [PE-14_ODP[02]; environmental control(s) for which to maintain a specified level in the facility where the system resides are defined (if selected)]}] levels are maintained at [PE-14_ODP[03]; acceptable levels for environmental controls are defined] within the facility where the system resides.'), ('000972','draft','2009-09-21','DISA FSO','policy','Defines acceptable temperature, humidity, pressure, radiation, and/or organization-defined environmental control levels to be maintained within the facility where the system resides.','PE-14a.','N/A','Determine if [PE-14_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {temperature; humidity; pressure; radiation; [PE-14_ODP[02]; environmental control(s) for which to maintain a specified level in the facility where the system resides are defined (if selected)]}] levels are maintained at [PE-14_ODP[03]; acceptable levels for environmental controls are defined] within the facility where the system resides.'), ('000973','draft','2009-09-21','DISA FSO','policy','Monitor environmental control levels in accordance with organization-defined frequency.','PE-14b.','N/A','Determine if environmental control levels are monitored [PE-14_ODP[04]; frequency at which to monitor environmental control levels is defined].'), ('000974','draft','2009-09-21','DISA FSO','policy','Defines a frequency for monitoring environmental control levels.','PE-14b.','N/A','Determine if environmental control levels are monitored [PE-14_ODP[04]; frequency at which to monitor environmental control levels is defined].'), ('000975','draft','2009-09-21','DISA FSO','policy','Employ organization-defined automatic environmental controls in the facility to prevent fluctuations potentially harmful to the system.','PE-14(01)','N/A','Determine if [PE-14(01)_ODP; automatic environmental controls to prevent fluctuations that are potentially harmful to the system are defined] are employed in the facility to prevent fluctuations that are potentially harmful to the system.'), ('000976','draft','2009-09-21','DISA FSO','policy','Employ environmental control monitoring that provides an alarm or notification of changes potentially harmful to personnel or equipment to organization-defined personnel or roles.','PE-14(02)','N/A','Determine if: - environmental control monitoring is employed. - the environmental control monitoring capability provides an alarm or notification to [PE-14(02)_ODP; personnel or roles to be notified by environmental control monitoring when environmental changes are potentially harmful to personnel or equipment is/are defined] when changes are potentially harmful to personnel or equipment.'), ('000977','draft','2009-09-21','DISA FSO','policy','Protect the system from damage resulting from water leakage by providing master shutoff or isolation valves that are accessible.','PE-15','N/A','Determine if: - the system is protected from damage resulting from water leakage by providing master shutoff or isolation valves. - the master shutoff or isolation valves are accessible. - the master shutoff or isolation valves are working properly. - the master shutoff or isolation valves are known to key personnel.'), ('000978','draft','2009-09-21','DISA FSO','policy','Protect the system from damage resulting from water leakage by providing master shutoff or isolation valves that are working properly.','PE-15','N/A','Determine if: - the system is protected from damage resulting from water leakage by providing master shutoff or isolation valves. - the master shutoff or isolation valves are accessible. - the master shutoff or isolation valves are working properly. - the master shutoff or isolation valves are known to key personnel.'), ('000979','draft','2009-09-21','DISA FSO','policy','Key personnel have knowledge of the master water shutoff or isolation valves.','PE-15','N/A','Determine if: - the system is protected from damage resulting from water leakage by providing master shutoff or isolation valves. - the master shutoff or isolation valves are accessible. - the master shutoff or isolation valves are working properly. - the master shutoff or isolation valves are known to key personnel.'), ('000981','draft','2009-09-21','DISA FSO','policy','Authorize organization-defined types of system components entering and exiting the facility.','PE-16a.','N/A','Determine if: - [PE-16_ODP[01]; types of system components to be authorized and controlled when entering the facility are defined] are authorized when entering the facility. - [PE-16_ODP[01]; types of system components to be authorized and controlled when entering the facility are defined] are controlled when entering the facility. - [PE-16_ODP[02]; types of system components to be authorized and controlled when exiting the facility are defined] are authorized when exiting the facility. - [PE-16_ODP[02]; types of system components to be authorized and controlled when exiting the facility are defined] are controlled when exiting the facility.'), ('000983','draft','2009-09-21','DISA FSO','policy','Control organization-defined types of system components entering and exiting the facility.','PE-16a.','N/A','Determine if: - [PE-16_ODP[01]; types of system components to be authorized and controlled when entering the facility are defined] are authorized when entering the facility. - [PE-16_ODP[01]; types of system components to be authorized and controlled when entering the facility are defined] are controlled when entering the facility. - [PE-16_ODP[02]; types of system components to be authorized and controlled when exiting the facility are defined] are authorized when exiting the facility. - [PE-16_ODP[02]; types of system components to be authorized and controlled when exiting the facility are defined] are controlled when exiting the facility.'), ('000984','draft','2009-09-21','DISA FSO','policy','Maintain records of system components.','PE-16b.','N/A','Determine if records of the system components are maintained.'), ('000985','draft','2009-09-21','DISA FSO','policy','Employ organization-defined controls at alternate work sites.','PE-17b.','N/A','Determine if [PE-17_ODP[02]; controls to be employed at alternate work sites are defined] are employed at alternate work sites.'), ('000987','draft','2009-09-21','DISA FSO','policy','Assess as feasible, the effectiveness of controls at alternate work sites.','PE-17c.','N/A','Determine if the effectiveness of controls at alternate work sites is assessed.'), ('000988','draft','2009-09-21','DISA FSO','policy','Provide a means for employees to communicate with information security personnel in case of incidents.','PE-17d.','N/A','Determine if a means for employees to communicate with information security and privacy personnel in case of incidents is provided.'), ('000989','draft','2009-09-21','DISA FSO','policy','Position system components within the facility to minimize potential damage from organization-defined physical and environmental hazards.','PE-18','N/A','Determine if system components are positioned within the facility to minimize potential damage from [PE-18_ODP; physical and environmental hazards that could result in potential damage to system components within the facility are defined] and to minimize the opportunity for unauthorized access.'), ('000991','draft','2009-09-21','DISA FSO','policy','Position system components within the facility to minimize the opportunity for unauthorized access.','PE-18','N/A','Determine if system components are positioned within the facility to minimize potential damage from [PE-18_ODP; physical and environmental hazards that could result in potential damage to system components within the facility are defined] and to minimize the opportunity for unauthorized access.'), ('000993','draft','2009-09-21','DISA FSO','policy','Protect the system from information leakage due to electromagnetic signals emanations.','PE-19','N/A','Determine if the system is protected from information leakage due to electromagnetic signal emanations.'), ('000995','draft','2009-09-21','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level media protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','MP-01a.01(a)','N/A','Determine if: - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy addresses purpose. - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy addresses scope. - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy addresses roles. - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy addresses responsibilities. - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy addresses management commitment. - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy addresses coordination among organizational entities. - the [MP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] media protection policy compliance.'), ('000996','draft','2009-09-21','DISA FSO','policy','Disseminates a media protection policy to organization-defined personnel or roles.','MP-01a.','N/A','Determine if: - a media protection policy is developed and documented. - the media protection policy is disseminated to [MP-01_ODP[01]; personnel or roles to whom the media protection policy is to be disseminated is/are defined].'), ('000997','draft','2009-09-21','DISA FSO','policy','Review and update the current media protection policy in accordance with organization-defined frequency.','MP-01c.01','N/A','Determine if: - the current media protection policy is reviewed and updated [MP-01_ODP[05]; the frequency with which the current media protection policy is reviewed and updated is defined]. - the current media protection policy is reviewed and updated following [MP-01_ODP[06]; events that would require the current media protection policy to be reviewed and updated are defined].'), ('000998','draft','2009-09-21','DISA FSO','policy','Defines a frequency for reviewing and updating the current media protection policy.','MP-01c.01','N/A','Determine if: - the current media protection policy is reviewed and updated [MP-01_ODP[05]; the frequency with which the current media protection policy is reviewed and updated is defined]. - the current media protection policy is reviewed and updated following [MP-01_ODP[06]; events that would require the current media protection policy to be reviewed and updated are defined].'), ('000999','draft','2009-09-21','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the media protection policy and associated media protection controls.','MP-01a.02','N/A','Determine if: - media protection procedures to facilitate the implementation of the media protection policy and associated media protection controls are developed and documented. - the media protection procedures are disseminated to [MP-01_ODP[02]; personnel or roles to whom the media protection procedures are to be disseminated is/are defined].'), ('001000','draft','2009-09-21','DISA FSO','policy','Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the media protection policy and associated media protection controls.','MP-01a.02','N/A','Determine if: - media protection procedures to facilitate the implementation of the media protection policy and associated media protection controls are developed and documented. - the media protection procedures are disseminated to [MP-01_ODP[02]; personnel or roles to whom the media protection procedures are to be disseminated is/are defined].'), ('001001','draft','2009-09-21','DISA FSO','policy','Review and update the current media protection procedures in accordance with organization-defined frequency.','MP-01c.02','N/A','Determine if: - the current media protection procedures are reviewed and updated [MP-01_ODP[07]; the frequency with which the current media protection procedures are reviewed and updated is defined]. - the current media protection procedures are reviewed and updated following [MP-01_ODP[08]; events that would require media protection procedures to be reviewed and updated are defined].'), ('001002','draft','2009-09-21','DISA FSO','policy','Defines a frequency for reviewing and updating the current media protection procedures.','MP-01c.02','N/A','Determine if: - the current media protection procedures are reviewed and updated [MP-01_ODP[07]; the frequency with which the current media protection procedures are reviewed and updated is defined]. - the current media protection procedures are reviewed and updated following [MP-01_ODP[08]; events that would require media protection procedures to be reviewed and updated are defined].'), ('001003','draft','2009-09-21','DISA FSO','policy','Restrict access to organization-defined types of digital and/or non-digital media to organization-defined personnel or roles.','MP-02','N/A','Determine if: - access to [MP-02_ODP[01]; types of digital media to which access is restricted are defined] is restricted to [MP-02_ODP[02]; personnel or roles authorized to access digital media is/are defined]. - access to [MP-02_ODP[03]; types of non-digital media to which access is restricted are defined] is restricted to [MP-02_ODP[04]; personnel or roles authorized to access non-digital media is/are defined].'), ('001004','draft','2009-09-21','DISA FSO','policy','Defines types of digital and/or non-digital media for which the organization restricts access.','MP-02','N/A','Determine if: - access to [MP-02_ODP[01]; types of digital media to which access is restricted are defined] is restricted to [MP-02_ODP[02]; personnel or roles authorized to access digital media is/are defined]. - access to [MP-02_ODP[03]; types of non-digital media to which access is restricted are defined] is restricted to [MP-02_ODP[04]; personnel or roles authorized to access non-digital media is/are defined].'), ('001005','draft','2009-09-21','DISA FSO','policy','Defines personnel or roles from which to restrict access to organization-defined types of digital and/or non-digital media.','MP-02','N/A','Determine if: - access to [MP-02_ODP[01]; types of digital media to which access is restricted are defined] is restricted to [MP-02_ODP[02]; personnel or roles authorized to access digital media is/are defined]. - access to [MP-02_ODP[03]; types of non-digital media to which access is restricted are defined] is restricted to [MP-02_ODP[04]; personnel or roles authorized to access non-digital media is/are defined].'), ('001007','draft','2009-09-21','DISA FSO','policy','Restrict access to media storage areas using organization-defined automated mechanisms.','MP-04(02)','N/A','Determine if: - access to media storage areas is restricted using [MP-04(02)_ODP[01]; automated mechanisms to restrict access to media storage areas are defined]. - access attempts to media storage areas are logged using [MP-04(02)_ODP[02]; automated mechanisms to log access attempts to media storage areas are defined]. - access granted to media storage areas is logged using [MP-04(02)_ODP[03]; automated mechanisms to log access granted to media storage areas are defined].'), ('001008','draft','2009-09-21','DISA FSO','policy','Log access attempts and access granted using organization-defined automated mechanisms.','MP-04(02)','N/A','Determine if: - access to media storage areas is restricted using [MP-04(02)_ODP[01]; automated mechanisms to restrict access to media storage areas are defined]. - access attempts to media storage areas are logged using [MP-04(02)_ODP[02]; automated mechanisms to log access attempts to media storage areas are defined]. - access granted to media storage areas is logged using [MP-04(02)_ODP[03]; automated mechanisms to log access granted to media storage areas are defined].'), ('001010','draft','2009-09-21','DISA FSO','policy','Mark system media indicating the distribution limitations, handling caveats, and applicable security markings (if any) of the information.','MP-03a.','N/A','Determine if system media is marked to indicate distribution limitations, handling caveats, and applicable security markings (if any) of the information.'), ('001011','draft','2009-09-21','DISA FSO','policy','Exempt organization-defined types of system media from marking as long as the media remain within organization-defined controlled areas.','MP-03b.','N/A','Determine if [MP-03_ODP[01]; types of system media exempt from marking when remaining in controlled areas are defined] remain within [MP-03_ODP[02]; controlled areas where media is exempt from marking are defined].'), ('001012','draft','2009-09-21','DISA FSO','policy','Defines types of system media to exempt from marking as long as the media remain within organization-defined controlled areas.','MP-03b.','N/A','Determine if [MP-03_ODP[01]; types of system media exempt from marking when remaining in controlled areas are defined] remain within [MP-03_ODP[02]; controlled areas where media is exempt from marking are defined].'), ('001013','draft','2009-09-21','DISA FSO','policy','Defines controlled areas where organization-defined types of system media are exempt from being marked.','MP-03b.','N/A','Determine if [MP-03_ODP[01]; types of system media exempt from marking when remaining in controlled areas are defined] remain within [MP-03_ODP[02]; controlled areas where media is exempt from marking are defined].'), ('001015','draft','2009-09-21','DISA FSO','policy','Defines types of digital and/or non-digital media to physically control and securely store within organization-defined controlled areas.','MP-04a.','N/A','Determine if: - [MP-04_ODP[01]; types of digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[02]; types of non-digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[03]; types of digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[05]; controlled areas within which to securely store digital media are defined]. - [MP-04_ODP[04]; types of non-digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[06]; controlled areas within which to securely store non-digital media are defined].'), ('001016','draft','2009-09-21','DISA FSO','policy','Defines controlled areas where organization-defined types of digital and/or non-digital media are physically controlled and securely stored.','MP-04a.','N/A','Determine if: - [MP-04_ODP[01]; types of digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[02]; types of non-digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[03]; types of digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[05]; controlled areas within which to securely store digital media are defined]. - [MP-04_ODP[04]; types of non-digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[06]; controlled areas within which to securely store non-digital media are defined].'), ('001021','draft','2009-09-21','DISA FSO','policy','Defines types of system media protected and controlled during transport outside of controlled areas.','MP-05a.','N/A','Determine if: - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are protected during transport outside of controlled areas using [MP-05_ODP[02]; controls used to protect system media outside of controlled areas are defined]. - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are controlled during transport outside of controlled areas using [MP-05_ODP[03]; controls used to control system media outside of controlled areas are defined].'), ('001022','draft','2009-09-21','DISA FSO','policy','Defines controls to be used to protect and control organization-defined types of system media during transport outside of controlled areas.','MP-05a.','N/A','Determine if: - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are protected during transport outside of controlled areas using [MP-05_ODP[02]; controls used to protect system media outside of controlled areas are defined]. - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are controlled during transport outside of controlled areas using [MP-05_ODP[03]; controls used to control system media outside of controlled areas are defined].'), ('001023','draft','2009-09-21','DISA FSO','policy','Maintain accountability for system media during transport outside of controlled areas.','MP-05b.','N/A','Determine if accountability for system media is maintained during transport outside of controlled areas.'), ('001024','draft','2009-09-21','DISA FSO','policy','Restrict the activities associated with the transport of system media to authorized personnel.','MP-05d.','N/A','Determine if: - personnel authorized to conduct media transport activities is/are identified. - activities associated with the transport of system media are restricted to identified authorized personnel.'), ('001025','draft','2009-09-21','DISA FSO','policy','Document activities associated with the transport of system media.','MP-05c.','N/A','Determine if activities associated with the transport of system media are documented.'), ('001026','draft','2009-09-21','DISA FSO','policy','Employ an identified custodian during transport of system media outside of controlled areas.','MP-05(03)','N/A','Determine if: - a custodian to transport system media outside of controlled areas is identified. - the identified custodian is employed during the transport of system media outside of controlled areas.'), ('001028','draft','2009-09-21','DISA FSO','policy','Sanitize organization-defined system media prior to disposal, release out of organizational control, or release for reuse using organization-defined sanitization techniques and procedures.','MP-06a.','N/A','Determine if: - [MP-06_ODP[01]; system media to be sanitized prior to disposal is defined] is sanitized using [MP-06_ODP[04]; sanitization techniques and procedures to be used for sanitization prior to disposal are defined] prior to disposal. - [MP-06_ODP[02]; system media to be sanitized prior to release from organizational control is defined] is sanitized using [MP-06_ODP[05]; sanitization techniques and procedures to be used for sanitization prior to release from organizational control are defined] prior to release from organizational control. - [MP-06_ODP[03]; system media to be sanitized prior to release for reuse is defined] is sanitized using [MP-06_ODP[06]; sanitization techniques and procedures to be used for sanitization prior to release for reuse are defined] prior to release for reuse.'), ('001031','draft','2009-09-21','DISA FSO','policy','Defines a frequency for testing sanitization equipment and procedures to ensure that the intended sanitization is being achieved.','MP-06(02)','N/A','Determine if: - sanitization equipment is tested [MP-06(02)_ODP[01]; frequency with which to test sanitization equipment is defined] to ensure that the intended sanitization is being achieved. - sanitization procedures are tested [MP-06(02)_ODP[02]; frequency with which to test sanitization procedures is defined] to ensure that the intended sanitization is being achieved.'), ('001032','draft','2009-09-21','DISA FSO','policy','Apply nondestructive sanitization techniques to portable storage devices prior to connecting such devices to the system in accordance with organization-defined circumstances requiring sanitization of portable storage devices.','MP-06(03)','N/A','Determine if non-destructive sanitization techniques are applied to portable storage devices prior to connecting such devices to the system under [MP-06(03)_ODP; circumstances requiring sanitization of portable storage devices are defined].'), ('001033','draft','2009-09-21','DISA FSO','policy','Defines circumstances requiring sanitization of portable storage devices prior to connecting such devices to the system.','MP-06(03)','N/A','Determine if non-destructive sanitization techniques are applied to portable storage devices prior to connecting such devices to the system under [MP-06(03)_ODP; circumstances requiring sanitization of portable storage devices are defined].'), ('001037','draft','2009-09-21','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; system-level risk assessment policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','RA-01a.01(a)','N/A','Determine if: - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses purpose. - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses scope. - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses roles. - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses responsibilities. - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses management commitment. - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses coordination among organizational entities. - the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy addresses compliance.'), ('001038','draft','2009-09-21','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; system-level risk assessment policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance to organization-defined personnel or roles.','RA-01a.','N/A','Determine if: - a risk assessment policy is developed and documented. - the risk assessment policy is disseminated to [RA-01_ODP[01; personnel or roles to whom the risk assessment policy is to be disseminated is/are defined].'), ('001039','draft','2009-09-21','DISA FSO','policy','Review and update the current risk assessment policy in accordance with organization-defined frequency.','RA-01c.01','N/A','Determine if: - the current risk assessment policy is reviewed and updated [RA-01_ODP[05]; the frequency at which the current risk assessment policy is reviewed and updated is defined]. - the current risk assessment policy is reviewed and updated following [RA-01_ODP[06]; events that would require the current risk assessment policy to be reviewed and updated are defined].'), ('001040','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review and update the current risk assessment policy.','RA-01c.01','N/A','Determine if: - the current risk assessment policy is reviewed and updated [RA-01_ODP[05]; the frequency at which the current risk assessment policy is reviewed and updated is defined]. - the current risk assessment policy is reviewed and updated following [RA-01_ODP[06]; events that would require the current risk assessment policy to be reviewed and updated are defined].'), ('001041','draft','2009-09-21','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls.','RA-01a.02','N/A','Determine if: - risk assessment procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls are developed and documented. - the risk assessment procedures are disseminated to [RA-01_ODP[02]; personnel or roles to whom the risk assessment procedures are to be disseminated is/are defined].'), ('001042','draft','2009-09-21','DISA FSO','policy','Disseminate risk assessment procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls to organization-defined personnel or roles.','RA-01a.02','N/A','Determine if: - risk assessment procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls are developed and documented. - the risk assessment procedures are disseminated to [RA-01_ODP[02]; personnel or roles to whom the risk assessment procedures are to be disseminated is/are defined].'), ('001043','draft','2009-09-21','DISA FSO','policy','Review and update the current risk assessment procedures in accordance with organization-defined frequency.','RA-01c.02','N/A','Determine if: - the current risk assessment procedures are reviewed and updated [RA-01_ODP[07]; the frequency at which the current risk assessment procedures are reviewed and updated is defined]. - the current risk assessment procedures are reviewed and updated following [RA-01_ODP[08]; events that would require risk assessment procedures to be reviewed and updated are defined].'), ('001044','draft','2009-09-21','DISA FSO','policy','Defines the frequency with which to review and update the current risk assessment procedures.','RA-01c.02','N/A','Determine if: - the current risk assessment procedures are reviewed and updated [RA-01_ODP[07]; the frequency at which the current risk assessment procedures are reviewed and updated is defined]. - the current risk assessment procedures are reviewed and updated following [RA-01_ODP[08]; events that would require risk assessment procedures to be reviewed and updated are defined].'), ('001046','draft','2009-09-21','DISA FSO','policy','Document the security categorization results including supporting rationale in the security plan for the system.','RA-02b.','N/A','Determine if the security categorization results, including supporting rationale, are documented in the security plan for the system.'), ('001047','draft','2009-09-21','DISA FSO','policy','Verify the security categorization decision is reviewed and approved by the authorizing official or authorizing official designated representative.','RA-02c.','N/A','Determine if the authorizing official or authorizing official designated representative reviews and approves the security categorization decision.'), ('001048','draft','2009-09-21','DISA FSO','policy','Conduct a risk assessment, including determining the likelihood and magnitude of harm, from the unauthorized access, use, disclosure, disruption, modification, or destruction of the system, the information it processes, stores, or transmits, and any related information.','RA-03a.02','N/A','Determine if a risk assessment is conducted to determine the likelihood and magnitude of harm from unauthorized access, use, disclosure, disruption, modification, or destruction of the system; the information it processes, stores, or transmits; and any related information.'), ('001049','draft','2009-09-21','DISA FSO','policy','Document risk assessment results in the organization-defined document.','RA-03c.','N/A','Determine if risk assessment results are documented in [RA-03_ODP[01]; one of the following PARAMETER VALUES is selected: {security and privacy plans; risk assessment report; [RA-03_ODP[02]; a document in which risk assessment results are to be documented (if not documented in the security and privacy plans or risk assessment report) is defined (if selected)]}].'), ('001050','draft','2009-09-21','DISA FSO','policy','Review risk assessment results on an organization-defined frequency.','RA-03d.','N/A','Determine if risk assessment results are reviewed [RA-03_ODP[03]; the frequency to review risk assessment results is defined].'), ('001051','draft','2009-09-21','DISA FSO','policy','Defines a frequency for reviewing risk assessment results.','RA-03d.','N/A','Determine if risk assessment results are reviewed [RA-03_ODP[03]; the frequency to review risk assessment results is defined].'), ('001052','draft','2009-09-21','DISA FSO','policy','Update the risk assessment on an organization-defined frequency or when there are significant changes to the system, its environment of operation, or other conditions that may impact the security or privacy state of the system.','RA-03f.','N/A','Determine if the risk assessment is updated [RA-03_ODP[05]; the frequency to update the risk assessment is defined] or when there are significant changes to the system, its environment of operation, or other conditions that may impact the security or privacy state of the system.'), ('001053','draft','2009-09-21','DISA FSO','policy','Defines a frequency for updating the risk assessment.','RA-03f.','N/A','Determine if the risk assessment is updated [RA-03_ODP[05]; the frequency to update the risk assessment is defined] or when there are significant changes to the system, its environment of operation, or other conditions that may impact the security or privacy state of the system.'), ('001054','draft','2009-09-21','DISA FSO','policy','Monitor and scan for vulnerabilities in the system and hosted applications on an organization-defined frequency and/or randomly in accordance with organization-defined process.','RA-05a.','N/A','Determine if: - systems and hosted applications are monitored for vulnerabilities [RA-05_ODP[01]; frequency for monitoring systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported. - systems and hosted applications are scanned for vulnerabilities [RA-05_ODP[02]; frequency for scanning systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported.'), ('001055','draft','2009-09-21','DISA FSO','policy','Defines a frequency for scanning for vulnerabilities in the system and hosted applications, and/or randomly in accordance with organization-defined process.','RA-05a.','N/A','Determine if: - systems and hosted applications are monitored for vulnerabilities [RA-05_ODP[01]; frequency for monitoring systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported. - systems and hosted applications are scanned for vulnerabilities [RA-05_ODP[02]; frequency for scanning systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported.'), ('001056','draft','2009-09-21','DISA FSO','policy','Monitor and scan for vulnerabilities in the system and hosted applications when new vulnerabilities potentially affecting the system/applications are identified and reported.','RA-05a.','N/A','Determine if: - systems and hosted applications are monitored for vulnerabilities [RA-05_ODP[01]; frequency for monitoring systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported. - systems and hosted applications are scanned for vulnerabilities [RA-05_ODP[02]; frequency for scanning systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported.'), ('001057','draft','2009-09-21','DISA FSO','policy','Employ vulnerability monitoring tools and techniques that facilitate interoperability among tools and automate parts of the vulnerability management process by using standards for: enumerating platforms, software flaws, and improper configurations.','RA-05b.01','N/A','Determine if vulnerability monitoring tools and techniques are employed to automate parts of the vulnerability management process by using standards for enumerating platforms, software flaws, and improper configurations.'), ('001058','draft','2009-09-21','DISA FSO','policy','Analyze vulnerability scan reports and results from vulnerability monitoring.','RA-05c.','N/A','Determine if vulnerability scan reports and results from vulnerability monitoring are analyzed.'), ('001059','draft','2009-09-21','DISA FSO','policy','Remediate legitimate vulnerabilities in organization-defined response times in accordance with an organizational assessment risk.','RA-05d.','N/A','Determine if legitimate vulnerabilities are remediated [RA-05_ODP[03]; response times to remediate legitimate vulnerabilities in accordance with an organizational assessment of risk are defined] in accordance with an organizational assessment of risk.'), ('001060','draft','2009-09-21','DISA FSO','policy','Defines response times for remediating legitimate vulnerabilities in accordance with an organization assessment of risk.','RA-05d.','N/A','Determine if legitimate vulnerabilities are remediated [RA-05_ODP[03]; response times to remediate legitimate vulnerabilities in accordance with an organizational assessment of risk are defined] in accordance with an organizational assessment of risk.'), ('001061','draft','2009-09-21','DISA FSO','policy','Share information obtained from the vulnerability monitoring process and control assessments with organization-defined personnel or roles to help eliminate similar vulnerabilities in other systems.','RA-05e.','N/A','Determine if information obtained from the vulnerability monitoring process and control assessments is shared with [RA-05_ODP[04]; personnel or roles with whom information obtained from the vulnerability scanning process and control assessments is to be shared] to help eliminate similar vulnerabilities in other systems.'), ('001063','draft','2009-09-21','DISA FSO','policy','Update the system vulnerabilities scanned on an organization-defined frequency, prior to a new scan, and/or when new vulnerabilities are identified and reported.','RA-05(02)','N/A','Determine if the system vulnerabilities to be scanned are updated [RA-05(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[RA-05(02)_ODP[02]; the frequency for updating the system vulnerabilities to be scanned is defined (if selected)]; prior to a new scan; when new vulnerabilities are identified and reported}].'), ('001064','draft','2009-09-21','DISA FSO','policy','Defines a frequency for updating the system vulnerabilities scanned.','RA-05(02)','N/A','Determine if the system vulnerabilities to be scanned are updated [RA-05(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[RA-05(02)_ODP[02]; the frequency for updating the system vulnerabilities to be scanned is defined (if selected)]; prior to a new scan; when new vulnerabilities are identified and reported}].'), ('001066','draft','2009-09-21','DISA FSO','policy','Determine information about the system that is discoverable.','RA-05(04)','N/A','Determine if: - information about the system is discoverable. - [RA-05(04)_ODP; corrective actions to be taken if information about the system is discoverable are defined] are taken when information about the system is confirmed as discoverable.'), ('001067','draft','2009-09-21','DISA FSO','technical','Implement privileged access authorization to organization-identified system components for organization-defined vulnerability scanning activities.','RA-05(05)','N/A','Determine if privileged access authorization is implemented to [RA-05(05)_ODP[01]; system components to which privileged access is authorized for selected vulnerability scanning activities are defined] for [RA-05(05)_ODP[02]; vulnerability scanning activities selected for privileged access authorization to system components are defined].'), ('001068','draft','2009-09-21','DISA FSO','policy','Compare the results of multiple vulnerability scans using organization-defined automated mechanisms.','RA-05(06)','N/A','Determine if the results of multiple vulnerability scans are compared using [RA-05(06)_ODP; automated mechanisms to compare the results of multiple vulnerability scans are defined].'), ('001071','draft','2009-09-21','DISA FSO','policy','Review historic audit logs to determine if a vulnerability identified in the organization-defined system has been previously exploited within an organization-defined time period.','RA-05(08)','N/A','Determine if historic audit logs are reviewed to determine if a vulnerability identified in a [RA-05(08)_ODP[01]; a system whose historic audit logs are to be reviewed is defined] has been previously exploited within [RA-05(08)_ODP[02]; a time period for a potential previous exploit of a system is defined].'), ('001075','draft','2009-09-21','DISA FSO','policy','Disseminates to organization-defined personnel or roles the organization-level; mission/business process-level; and/or system-level system and communications protection policy.','SC-01a.','N/A','Determine if: - a system and communications protection policy is developed and documented. - the system and communications protection policy is disseminated to [SC-01_ODP[01]; personnel or roles to whom the system and communications protection policy is to be disseminated is/are defined].'), ('001076','draft','2009-09-21','DISA FSO','policy','Review and update the current system and communications protection policy in accordance with organization-defined frequency.','SC-01c.01','N/A','Determine if: - the current system and communications protection policy is reviewed and updated [SC-01_ODP[05]; the frequency at which the current system and communications protection policy is reviewed and updated is defined]. - the current system and communications protection policy is reviewed and updated following [SC-01_ODP[06]; events that would require the current system and communications protection policy to be reviewed and updated are defined].'), ('001077','draft','2009-09-21','DISA FSO','policy','Defines the frequency for reviewing and updating the current system and communications protection policy.','SC-01c.01','N/A','Determine if: - the current system and communications protection policy is reviewed and updated [SC-01_ODP[05]; the frequency at which the current system and communications protection policy is reviewed and updated is defined]. - the current system and communications protection policy is reviewed and updated following [SC-01_ODP[06]; events that would require the current system and communications protection policy to be reviewed and updated are defined].'), ('001079','draft','2009-09-21','DISA FSO','policy','Disseminates to organization-defined personnel or roles the procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.','SC-01a.02','N/A','Determine if: - system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls are developed and documented. - the system and communications protection procedures are disseminated to [SC-01_ODP[02]; personnel or roles to whom the system and communications protection procedures are to be disseminated is/are defined].'), ('001080','draft','2009-09-21','DISA FSO','policy','Review and update the current system and communications protection procedures in accordance with organization-defined frequency.','SC-01c.02','N/A','Determine if: - the current system and communications protection procedures are reviewed and updated [SC-01_ODP[07]; the frequency at which the current system and communications protection procedures are reviewed and updated is defined]. - the current system and communications protection procedures are reviewed and updated following [SC-01_ODP[08]; events that would require the system and communications protection procedures to be reviewed and updated are defined].'), ('001081','draft','2009-09-21','DISA FSO','policy','Defines the frequency for reviewing and updating the current system and communications protection procedures.','SC-01c.02','N/A','Determine if: - the current system and communications protection procedures are reviewed and updated [SC-01_ODP[07]; the frequency at which the current system and communications protection procedures are reviewed and updated is defined]. - the current system and communications protection procedures are reviewed and updated following [SC-01_ODP[08]; events that would require the system and communications protection procedures to be reviewed and updated are defined].'), ('001082','draft','2009-09-21','DISA FSO','technical','Separate user functionality, including user interface services, from system management functionality.','SC-02','N/A','Determine if user functionality, including user interface services, is separated from system management functionality.'), ('001083','draft','2009-09-21','DISA FSO','technical','Prevent the presentation of system management functionality at an interface for non-privileged users.','SC-02(01)','N/A','Determine if the presentation of system management functionality is prevented at interfaces to non-privileged users.'), ('001084','draft','2009-09-21','DISA FSO','technical','Isolate security functions from nonsecurity functions.','SC-03','N/A','Determine if security functions are isolated from non-security functions.'), ('001085','draft','2009-09-21','DISA FSO','technical','Employ hardware separation mechanisms to implement security function isolation.','SC-03(01)','N/A','Determine if hardware separation mechanisms are employed to implement security function isolation.'), ('001086','draft','2009-09-21','DISA FSO','technical','Isolate security functions enforcing access and information flow control from both nonsecurity functions and from other security functions.','SC-03(02)','N/A','Determine if: - security functions enforcing access control are isolated from non-security functions. - security functions enforcing access control are isolated from other security functions. - security functions enforcing information flow control are isolated from non-security functions. - security functions enforcing information flow control are isolated from other security functions.'), ('001089','draft','2009-09-21','DISA FSO','technical','Implement security functions as a layered structure minimizing interactions between layers of the design and avoiding any dependence by lower layers on the functionality or correctness of higher layers.','SC-03(05)','N/A','Determine if security functions are implemented as a layered structure, minimizing interactions between layers of the design and avoiding any dependence by lower layers on the functionality or correctness of higher layers.'), ('001090','draft','2009-09-21','DISA FSO','technical','Prevent unauthorized and unintended information transfer via shared system resources.','SC-04','N/A','Determine if: - unauthorized information transfer via shared system resources is prevented. - unintended information transfer via shared system resources is prevented.'), ('001093','draft','2009-09-21','DISA FSO','policy','Defines the types of denial-of-service events for protecting against or limiting the effects of the denial-of-service events.','SC-05a.','N/A','Determine if the effects of [SC-05_ODP[01]; types of denial-of-service events to be protected against or limited are defined] are [SC-05_ODP[02]; one of the following PARAMETER VALUES is selected: {protect against; limit}].'), ('001094','draft','2009-09-21','DISA FSO','technical','Restrict the ability of individuals to launch organization-defined denial of service attacks against other systems.','SC-05(01)','N/A','Determine if the ability of individuals to launch [SC-05(01)_ODP; denial-of-service attacks for which to restrict the ability of individuals to launch are defined] against other systems is restricted.'), ('001095','draft','2009-09-21','DISA FSO','technical','Manage capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial-of-service attacks.','SC-05(02)','N/A','Determine if capacity, bandwidth, or other redundancies to limit the effects of information flooding denial-of-service attacks are managed.'), ('001097','draft','2009-09-21','DISA FSO','policy','Monitor and control communications at the external managed interfaces to the system and at key managed interfaces within the system.','SC-07a.','N/A','Determine if: - communications at external managed interfaces to the system are monitored. - communications at external managed interfaces to the system are controlled. - communications at key internal managed interfaces within the system are monitored. - communications at key internal managed interfaces within the system are controlled.'), ('001098','draft','2009-09-21','DISA FSO','policy','Connect to external networks or systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security architecture.','SC-07c.','N/A','Determine if external networks or systems are only connected to through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.'), ('001101','draft','2009-09-21','DISA FSO','policy','Limit the number of external network connections to the system.','SC-07(03)','N/A','Determine if the number of external network connections to the system is limited.'), ('001102','draft','2009-09-21','DISA FSO','policy','Implement a managed interface for each external telecommunication service.','SC-07(04)(a)','N/A','Determine if a managed interface is implemented for each external telecommunication service.'), ('001103','draft','2009-09-21','DISA FSO','policy','Establish a traffic flow policy for each managed interface for each external telecommunication service.','SC-07(04)(b)','N/A','Determine if a traffic flow policy is established for each managed interface.'), ('001105','draft','2009-09-21','DISA FSO','policy','Document each exception to the traffic flow policy with a supporting mission or business need and duration of that need.','SC-07(04)(d)','N/A','Determine if each exception to the traffic flow policy is documented with a supporting mission or business need and duration of that need.'), ('001106','draft','2009-09-21','DISA FSO','policy','Review exceptions to the traffic flow policy on an organization-defined frequency for each external telecommunication service.','SC-07(04)(e)','N/A','Determine if: - exceptions to the traffic flow policy are reviewed [SC-07(04)_ODP; the frequency at which to review exceptions to traffic flow policy is defined]. - exceptions to the traffic flow policy that are no longer supported by an explicit mission or business need are removed.'), ('001107','draft','2009-09-21','DISA FSO','policy','Defines a frequency for the review of exceptions to the traffic flow policy for each external telecommunication service.','SC-07(04)(e)','N/A','Determine if: - exceptions to the traffic flow policy are reviewed [SC-07(04)_ODP; the frequency at which to review exceptions to traffic flow policy is defined]. - exceptions to the traffic flow policy that are no longer supported by an explicit mission or business need are removed.'), ('001108','draft','2009-09-21','DISA FSO','policy','Remove traffic flow policy exceptions that are no longer supported by an explicit mission or business need for each external telecommunication service.','SC-07(04)(e)','N/A','Determine if: - exceptions to the traffic flow policy are reviewed [SC-07(04)_ODP; the frequency at which to review exceptions to traffic flow policy is defined]. - exceptions to the traffic flow policy that are no longer supported by an explicit mission or business need are removed.'), ('001109','draft','2009-09-21','DISA FSO','technical','Deny network communications traffic by default and allow network communications traffic by exception at managed interfaces; and/or for organization-defined systems.','SC-07(05)','N/A','Determine if: - network communications traffic is denied by default [SC-07(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {at managed interfaces; for [SC-07(05)_ODP[02]; systems for which network communications traffic is denied by default and network communications traffic is allowed by exception are defined (if selected)]}]. - network communications traffic is allowed by exception [SC-07(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {at managed interfaces; for [SC-07(05)_ODP[02]; systems for which network communications traffic is denied by default and network communications traffic is allowed by exception are defined (if selected)]}].'), ('001112','draft','2009-09-21','DISA FSO','policy','Route organization-defined internal communications traffic to organization-defined external networks through authenticated proxy servers at managed interfaces.','SC-07(08)','N/A','Determine if [SC-07(08)_ODP[01]; internal communications traffic to be routed to external networks is defined] is routed to [SC-07(08)_ODP[02]; external networks to which internal communications traffic is to be routed are defined] through authenticated proxy servers at managed interfaces.'), ('001113','draft','2009-09-21','DISA FSO','policy','Defines the internal communications traffic to be routed to external networks.','SC-07(08)','N/A','Determine if [SC-07(08)_ODP[01]; internal communications traffic to be routed to external networks is defined] is routed to [SC-07(08)_ODP[02]; external networks to which internal communications traffic is to be routed are defined] through authenticated proxy servers at managed interfaces.'), ('001114','draft','2009-09-21','DISA FSO','policy','Defines the external networks to which organization-defined internal communications traffic should be routed.','SC-07(08)','N/A','Determine if [SC-07(08)_ODP[01]; internal communications traffic to be routed to external networks is defined] is routed to [SC-07(08)_ODP[02]; external networks to which internal communications traffic is to be routed are defined] through authenticated proxy servers at managed interfaces.'), ('001116','draft','2009-09-21','DISA FSO','policy','Prevent the exfiltration of information.','SC-07(10)(a)','N/A','Determine if the exfiltration of information is prevented.'), ('001119','draft','2009-09-21','DISA FSO','policy','Isolate organization-defined information security tools, mechanisms, and support components from other internal system components by implementing physically separate subnetworks with managed interfaces to other components of the system.','SC-07(13)','N/A','Determine if [SC-07(13)_ODP; information security tools, mechanisms, and support components to be isolated from other internal system components are defined] are isolated from other internal system components by implementing physically separate subnetworks with managed interfaces to other components of the system.'), ('001120','draft','2009-09-21','DISA FSO','policy','Defines the information security tools, mechanisms, and support components to be isolated.','SC-07(13)','N/A','Determine if [SC-07(13)_ODP; information security tools, mechanisms, and support components to be isolated from other internal system components are defined] are isolated from other internal system components by implementing physically separate subnetworks with managed interfaces to other components of the system.'), ('001121','draft','2009-09-21','DISA FSO','policy','Protect against unauthorized physical connections at organization-defined managed interfaces.','SC-07(14)','N/A','Determine if [SC-07(14)_ODP; managed interfaces to be protected against unauthorized physical connections are defined] are protected against unauthorized physical connections.'), ('001123','draft','2009-09-21','DISA FSO','policy','Route networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.','SC-07(15)','N/A','Determine if: - networked, privileged accesses are routed through a dedicated, managed interface for purposes of access control. - networked, privileged accesses are routed through a dedicated, managed interface for purposes of auditing.'), ('001124','draft','2009-09-21','DISA FSO','technical','Prevent discovery of specific system components that represent a managed interface.','SC-07(16)','N/A','Determine if the discovery of specific system components that represent a managed interface is prevented.'), ('001125','draft','2009-09-21','DISA FSO','technical','Enforce adherence to protocol formats.','SC-07(17)','N/A','Determine if adherence to protocol formats is enforced.'), ('001126','draft','2009-09-21','DISA FSO','technical','Prevent systems from entering unsecure states in the event of an operational failure of a boundary protection device.','SC-07(18)','N/A','Determine if systems are prevented from entering unsecure states in the event of an operational failure of a boundary protection device.'), ('001133','draft','2009-09-21','DISA FSO','technical','Terminate the network connection associated with a communications session at the end of the session or after an organization-defined time period of inactivity.','SC-10','N/A','Determine if the network connection associated with a communication session is terminated at the end of the session or after [SC-10_ODP; a time period of inactivity after which the system terminates a network connection associated with a communication session is defined] of inactivity.'), ('001134','draft','2009-09-21','DISA FSO','policy','Defines the time period of inactivity after which the system terminates a network connection associated with a communications session.','SC-10','N/A','Determine if the network connection associated with a communication session is terminated at the end of the session or after [SC-10_ODP; a time period of inactivity after which the system terminates a network connection associated with a communication session is defined] of inactivity.'), ('001135','draft','2009-09-21','DISA FSO','policy','Provide a physically or logically isolated trusted communication path for communication between the user and the trusted components of the system.','SC-11a.','N/A','Determine if a [SC-11_ODP[01]; one of the following PARAMETER VALUES is selected: {physically; logically}] isolated trusted communication path is provided for communications between the user and the trusted components of the system.'), ('001139','draft','2009-09-21','DISA FSO','policy','Maintain availability of information in the event of the loss of cryptographic keys by users.','SC-12(01)','N/A','Determine if information availability is maintained in the event of the loss of cryptographic keys by users.'), ('001150','draft','2009-09-21','DISA FSO','technical','Prohibit remote activation of collaborative computing devices and applications, excluding the organization-defined exceptions where remote activation is to be allowed.','SC-15a.','N/A','Determine if remote activation of collaborative computing devices and applications is prohibited except [SC-15_ODP; exceptions where remote activation is to be allowed are defined].'), ('001151','draft','2009-09-21','DISA FSO','policy','Defines exceptions to the prohibition of collaborative computing devices where remote activation is to be allowed.','SC-15a.','N/A','Determine if remote activation of collaborative computing devices and applications is prohibited except [SC-15_ODP; exceptions where remote activation is to be allowed are defined].'), ('001152','draft','2009-09-21','DISA FSO','technical','Provide an explicit indication of use to users physically present at collaborative computing devices.','SC-15b.','N/A','Determine if an explicit indication of use is provided to users physically present at the devices.'), ('001153','draft','2009-09-21','DISA FSO','technical','Provide physical or logical disconnect of collaborative computing devices in a manner that supports ease of use.','SC-15(01)','N/A','Determine if the [SC-15(01)_ODP; one or more of the following PARAMETER VALUES is/are selected: {physical; logical}] disconnect of collaborative computing devices is/are provided in a manner that supports ease of use.'), ('001155','draft','2009-09-21','DISA FSO','policy','Disable or remove collaborative computing devices and applications from organization-defined systems or system components in organization-defined secure work areas.','SC-15(03)','N/A','Determine if collaborative computing devices and applications are disabled or removed from [SC-15(03)_ODP[01]; systems or system components from which collaborative computing devices are to be disabled or removed are defined] in [SC-15(03)_ODP[02]; secure work areas where collaborative computing devices are to be disabled or removed from systems or system components are defined].'), ('001156','draft','2009-09-21','DISA FSO','policy','Defines secure work areas where collaborative computing devices and applications are to be disabled or removed.','SC-15(03)','N/A','Determine if collaborative computing devices and applications are disabled or removed from [SC-15(03)_ODP[01]; systems or system components from which collaborative computing devices are to be disabled or removed are defined] in [SC-15(03)_ODP[02]; secure work areas where collaborative computing devices are to be disabled or removed from systems or system components are defined].'), ('001157','draft','2009-09-21','DISA FSO','policy','Associate organization-defined security attributes with information exchanged between systems.','SC-16','N/A','Determine if: - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between system components. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between system components.'), ('001158','draft','2009-09-21','DISA FSO','technical','Verify the integrity of transmitted security attributes.','SC-16(01)','N/A','Determine if: - the integrity of transmitted security attributes is verified. - the integrity of transmitted privacy attributes is verified.'), ('001159','draft','2009-09-21','DISA FSO','policy','Issue public key certificates under an organization-defined certificate policy or obtain public key certificates from an approved service provider.','SC-17a.','N/A','Determine if public key certificates are issued under [SC-17_ODP; a certificate policy for issuing public key certificates is defined], or public key certificates are obtained from an approved service provider.'), ('001160','draft','2009-09-21','DISA FSO','policy','Defines acceptable and unacceptable mobile code and mobile code technologies.','SC-18a.','N/A','Determine if: - acceptable mobile code is defined. - unacceptable mobile code is defined. - acceptable mobile code technologies are defined. - unacceptable mobile code technologies are defined.'), ('001163','draft','2009-09-21','DISA FSO','policy','Authorize the use of mobile code within the system.','SC-18b.','N/A','Determine if: - the use of mobile code is authorized within the system. - the use of mobile code is monitored within the system. - the use of mobile code is controlled within the system.'), ('001164','draft','2009-09-21','DISA FSO','policy','Monitor the use of mobile code within the system.','SC-18b.','N/A','Determine if: - the use of mobile code is authorized within the system. - the use of mobile code is monitored within the system. - the use of mobile code is controlled within the system.'), ('001165','draft','2009-09-21','DISA FSO','policy','Control the use of mobile code within the system.','SC-18b.','N/A','Determine if: - the use of mobile code is authorized within the system. - the use of mobile code is monitored within the system. - the use of mobile code is controlled within the system.'), ('001166','draft','2009-09-21','DISA FSO','technical','Identify organization-defined unacceptable mobile code.','SC-18(01)','N/A','Determine if: - [SC-18(01)_ODP[01]; unacceptable mobile code to be identified is defined] is identified. - [SC-18(01)_ODP[02]; corrective actions to be taken when unacceptable mobile code is identified are defined] are taken if unacceptable mobile code is identified.'), ('001167','draft','2009-09-21','DISA FSO','policy','Verify that the development of mobile code to be deployed in information systems meets organization-defined mobile code requirements.','SC-18(02)','N/A','Determine if: - the acquisition of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the development of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the use of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined].'), ('001168','draft','2009-09-21','DISA FSO','policy','Defines mobile code requirements for the acquisition, development, and use of mobile code.','SC-18(02)','N/A','Determine if: - the acquisition of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the development of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the use of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined].'), ('001169','draft','2009-09-21','DISA FSO','technical','Prevent the download of organization-defined unacceptable mobile code.','SC-18(03)','N/A','Determine if: - the download of [SC-18(03)_ODP; unacceptable mobile code to be prevented from downloading and executing is defined] is prevented. - the execution of [SC-18(03)_ODP; unacceptable mobile code to be prevented from downloading and executing is defined] is prevented.'), ('001170','draft','2009-09-21','DISA FSO','technical','Prevents the automatic execution of mobile code in organization-defined software applications.','SC-18(04)','N/A','Determine if: - the automatic execution of mobile code in [SC-18(04)_ODP[01]; software applications in which the automatic execution of mobile code is to be prevented are defined] is prevented. - [SC-18(04)_ODP[02]; actions to be enforced by the system prior to executing mobile code are defined] are enforced prior to executing mobile code.'), ('001171','draft','2009-09-21','DISA FSO','policy','Defines software applications in which automatic mobile code execution is to be prohibited.','SC-18(04)','N/A','Determine if: - the automatic execution of mobile code in [SC-18(04)_ODP[01]; software applications in which the automatic execution of mobile code is to be prevented are defined] is prevented. - [SC-18(04)_ODP[02]; actions to be enforced by the system prior to executing mobile code are defined] are enforced prior to executing mobile code.'), ('001172','draft','2009-09-21','DISA FSO','policy','Defines actions to be enforced before executing mobile code.','SC-18(04)','N/A','Determine if: - the automatic execution of mobile code in [SC-18(04)_ODP[01]; software applications in which the automatic execution of mobile code is to be prevented are defined] is prevented. - [SC-18(04)_ODP[02]; actions to be enforced by the system prior to executing mobile code are defined] are enforced prior to executing mobile code.'), ('001178','draft','2009-09-21','DISA FSO','technical','Provide additional data origin authentication artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries.','SC-20a.','N/A','Determine if: - additional data origin authentication is provided along with the authoritative name resolution data that the system returns in response to external name/address resolution queries. - integrity verification artifacts are provided along with the authoritative name resolution data that the system returns in response to external name/address resolution queries.'), ('001179','draft','2009-09-21','DISA FSO','technical','Provides the means to indicate the security status of child zones, when operating as part of a distributed, hierarchical namespace.','SC-20b.','N/A','Determine if: - the means to indicate the security status of child zones (and if the child supports secure resolution services) is provided when operating as part of a distributed, hierarchical namespace. - the means to enable verification of a chain of trust among parent and child domains when operating as part of a distributed, hierarchical namespace is provided.'), ('001182','draft','2009-09-21','DISA FSO','policy','Ensure the systems that collectively provide name/address resolution service for an organization are fault-tolerant.','SC-22','N/A','Determine if: - the systems that collectively provide name/address resolution services for an organization are fault-tolerant. - the systems that collectively provide name/address resolution services for an organization implement internal role separation. - the systems that collectively provide name/address resolution services for an organization implement external role separation.'), ('001183','draft','2009-09-21','DISA FSO','policy','Ensure the systems that collectively provide name/address resolution service for an organization implement internal/external role separation.','SC-22','N/A','Determine if: - the systems that collectively provide name/address resolution services for an organization are fault-tolerant. - the systems that collectively provide name/address resolution services for an organization implement internal role separation. - the systems that collectively provide name/address resolution services for an organization implement external role separation.'), ('001184','draft','2009-09-21','DISA FSO','technical','Protect the authenticity of communications sessions.','SC-23','N/A','Determine if the authenticity of communication sessions is protected.'), ('001185','draft','2009-09-21','DISA FSO','technical','Invalidate session identifiers upon user logout or other session termination.','SC-23(01)','N/A','Determine if session identifiers are invalidated upon user logout or other session termination.'), ('001188','draft','2009-09-21','DISA FSO','technical','Generate a unique session identifier for each session with organization-defined randomness requirements.','SC-23(03)','N/A','Determine if: - a unique session identifier is generated for each session with [SC-23(03)_ODP; randomness requirements for generating a unique session identifier for each session are defined]. - only system-generated session identifiers are recognized.'), ('001189','draft','2009-09-21','DISA FSO','policy','Defines randomness requirements for generating unique session identifiers.','SC-23(03)','N/A','Determine if: - a unique session identifier is generated for each session with [SC-23(03)_ODP; randomness requirements for generating a unique session identifier for each session are defined]. - only system-generated session identifiers are recognized.'), ('001190','draft','2009-09-21','DISA FSO','technical','Fail to an organization-defined known-system state for the list of organization-defined types of system failures on organization-defined system components on the indicated components while preserving organization-defined system state information in failure.','SC-24','N/A','Determine if [SC-24_ODP[01]; types of system failures for which the system components fail to a known state are defined] fail to a [SC-24_ODP[02]; known system state to which system components fail in the event of a system failure is defined] while preserving [SC-24_ODP[03]; system state information to be preserved in the event of a system failure is defined] in failure.'), ('001191','draft','2009-09-21','DISA FSO','policy','Defines the known system state the system should fail to in the event of an organization-defined system failure.','SC-24','N/A','Determine if [SC-24_ODP[01]; types of system failures for which the system components fail to a known state are defined] fail to a [SC-24_ODP[02]; known system state to which system components fail in the event of a system failure is defined] while preserving [SC-24_ODP[03]; system state information to be preserved in the event of a system failure is defined] in failure.'), ('001192','draft','2009-09-21','DISA FSO','policy','Defines types of system failures for which should fail to an organization-defined known system state.','SC-24','N/A','Determine if [SC-24_ODP[01]; types of system failures for which the system components fail to a known state are defined] fail to a [SC-24_ODP[02]; known system state to which system components fail in the event of a system failure is defined] while preserving [SC-24_ODP[03]; system state information to be preserved in the event of a system failure is defined] in failure.'), ('001193','draft','2009-09-21','DISA FSO','policy','Defines system state information that should be preserved in the event of a system failure.','SC-24','N/A','Determine if [SC-24_ODP[01]; types of system failures for which the system components fail to a known state are defined] fail to a [SC-24_ODP[02]; known system state to which system components fail in the event of a system failure is defined] while preserving [SC-24_ODP[03]; system state information to be preserved in the event of a system failure is defined] in failure.'), ('001194','draft','2009-09-21','DISA FSO','policy','Employ minimal functionality and information storage on organization-defined information system components.','SC-25','N/A','Determine if: - minimal functionality for [SC-25_ODP; system components to be employed with minimal functionality and information storage are defined] is employed. - minimal information storage on [SC-25_ODP; system components to be employed with minimal functionality and information storage are defined] is allocated.'), ('001195','draft','2009-09-21','DISA FSO','policy','Include components within organizational systems specifically designed to be the target of malicious attacks for detecting, deflecting, and analyzing such attacks.','SC-26','N/A','Determine if: - components within organizational systems specifically designed to be the target of malicious attacks are included to detect such attacks. - components within organizational systems specifically designed to be the target of malicious attacks are included to deflect such attacks. - components within organizational systems specifically designed to be the target of malicious attacks are included to analyze such attacks.'), ('001196','draft','2009-09-21','DISA FSO','policy','Include system components that proactively seek to identify network-based malicious code or malicious websites.','SC-35','N/A','Determine if system components that proactively seek to identify network-based malicious code or malicious websites are included.'), ('001197','draft','2009-09-21','DISA FSO','policy','Include within organizational systems organization-defined platform-independent applications.','SC-27','N/A','Determine if [SC-27_ODP; platform-independent applications to be included within organizational systems are defined] are included within organizational systems.'), ('001198','draft','2009-09-21','DISA FSO','policy','Defines applications that are platform independent.','SC-27','N/A','Determine if [SC-27_ODP; platform-independent applications to be included within organizational systems are defined] are included within organizational systems.'), ('001199','draft','2009-09-21','DISA FSO','technical','Protects the confidentiality and/or integrity of organization-defined information at rest.','SC-28','N/A','Determine if the [SC-28_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] of [SC-28_ODP[02]; information at rest requiring protection is defined] is/are protected.'), ('001201','draft','2009-09-21','DISA FSO','policy','Employ a diverse set of information technologies for organization-defined system components in the implementation of the system.','SC-29','N/A','Determine if a diverse set of information technologies is employed for [SC-29_ODP; system components requiring a diverse set of information technologies to be employed in the implementation of the system are defined] in the implementation of the system.'), ('001203','draft','2009-09-21','DISA FSO','policy','Employ virtualization techniques to support the deployment of a diversity of operating systems that are changed on an organization-defined frequency.','SC-29(01)','N/A','Determine if virtualization techniques are employed to support the deployment of a diverse range of operating systems and applications that are changed [SC-29(01)_ODP; the frequency at which to change the diversity of operating systems and applications deployed using virtualization techniques is defined].'), ('001204','draft','2009-09-21','DISA FSO','policy','Defines the frequency of changes to operating systems and applications to support a diversity of deployments.','SC-29(01)','N/A','Determine if virtualization techniques are employed to support the deployment of a diverse range of operating systems and applications that are changed [SC-29(01)_ODP; the frequency at which to change the diversity of operating systems and applications deployed using virtualization techniques is defined].'), ('001207','draft','2009-09-21','DISA FSO','policy','Test a subset of the identified covert channels to determine which channels are exploitable.','SC-31(01)','N/A','Determine if a subset of the identified covert channels is tested to determine the channels that are exploitable.'), ('001210','draft','2009-09-21','DISA FSO','technical','For organization-defined system components, load and execute the operating environment from hardware-enforced, read-only media.','SC-34a.','N/A','Determine if the operating environment for [SC-34_ODP[01]; system components for which the operating environment and applications are to be loaded and executed from hardware-enforced, read-only media are defined] is loaded and executed from hardware-enforced, read-only media.'), ('001211','draft','2009-09-21','DISA FSO','technical','For organization-defined system components, load and execute organization-defined applications from hardware-enforced, read-only media.','SC-34b.','N/A','Determine if [SC-34_ODP[02]; applications to be loaded and executed from hardware-enforced, read-only media are defined] for [SC-34_ODP[01]; system components for which the operating environment and applications are to be loaded and executed from hardware-enforced, read-only media are defined] are loaded and executed from hardware-enforced, read-only media.'), ('001212','draft','2009-09-21','DISA FSO','policy','Defines system components on which the operating environment and organization-defined applications are loaded and executed from hardware-enforced, read-only media.',NULL,'N/A',NULL), ('001213','draft','2009-09-21','DISA FSO','policy','Defines applications that will be loaded and executed from hardware-enforced, read-only media.','SC-34b.','N/A','Determine if [SC-34_ODP[02]; applications to be loaded and executed from hardware-enforced, read-only media are defined] for [SC-34_ODP[01]; system components for which the operating environment and applications are to be loaded and executed from hardware-enforced, read-only media are defined] are loaded and executed from hardware-enforced, read-only media.'), ('001214','draft','2009-09-21','DISA FSO','policy','Employ organization-defined system components with no writeable storage that is persistent across component restart or power on/off.','SC-34(01)','N/A','Determine if [SC-34(01)_ODP; system components to be employed with no writeable storage are defined] are employed with no writeable storage that is persistent across component restart or power on/off.'), ('001215','draft','2009-09-21','DISA FSO','policy','Defines the system components to be employed with no writeable storage.','SC-34(01)','N/A','Determine if [SC-34(01)_ODP; system components to be employed with no writeable storage are defined] are employed with no writeable storage that is persistent across component restart or power on/off.'), ('001216','draft','2009-09-21','DISA FSO','policy','Protect the integrity of information prior to storage on read-only media.','SC-34(02)','N/A','Determine if: - the integrity of information is protected prior to storage on read-only media. - the media is controlled after such information has been recorded onto the media.'), ('001217','draft','2009-09-22','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system level system and information integrity policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SC-34(02)','N/A','Determine if: - the integrity of information is protected prior to storage on read-only media. - the media is controlled after such information has been recorded onto the media.'), ('001218','draft','2009-09-22','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; and/or system level system and information integrity policy to organization-defined personnel or roles.','SI-01a.','N/A','Determine if: - a system and information integrity policy is developed and documented. - the system and information integrity policy is disseminated to [SI-01_ODP[01]; personnel or roles to whom the system and information integrity policy is to be disseminated is/are defined].'), ('001219','draft','2009-09-22','DISA FSO','policy','Review and update the current system and information integrity policy in accordance with organization-defined frequency.','SI-01c.01','N/A','Determine if: - the current system and information integrity policy is reviewed and updated [SI-01_ODP[05]; the frequency at which the current system and information integrity policy is reviewed and updated is defined]. - the current system and information integrity policy is reviewed and updated following [SI-01_ODP[06]; events that would require the current system and information integrity policy to be reviewed and updated are defined].'), ('001220','draft','2009-09-22','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system level system and information integrity policy and associated system integrity controls.','SI-01a.02','N/A','Determine if: - system and information integrity procedures to facilitate the implementation of the system and information integrity policy and associated system and information integrity controls are developed and documented. - the system and information integrity procedures are disseminated to [SI-01_ODP[02]; personnel or roles to whom the system and information integrity procedures are to be disseminated is/are defined].'), ('001221','draft','2009-09-22','DISA FSO','policy','Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the system and information integrity policy and associated system and information integrity controls.','SI-01a.02','N/A','Determine if: - system and information integrity procedures to facilitate the implementation of the system and information integrity policy and associated system and information integrity controls are developed and documented. - the system and information integrity procedures are disseminated to [SI-01_ODP[02]; personnel or roles to whom the system and information integrity procedures are to be disseminated is/are defined].'), ('001222','draft','2009-09-22','DISA FSO','policy','Review and update the current system and information integrity procedures in accordance with organization-defined frequency.','SI-01c.02','N/A','Determine if: - the current system and information integrity procedures are reviewed and updated [SI-01_ODP[07]; the frequency at which the current system and information integrity procedures are reviewed and updated is defined]. - the current system and information integrity procedures are reviewed and updated following [SI-01_ODP[08]; events that would require the system and information integrity procedures to be reviewed and updated are defined].'), ('001223','draft','2009-09-22','DISA FSO','policy','Defines the frequency for reviewing and updating the current system and information integrity policy.','SI-01c.01','N/A','Determine if: - the current system and information integrity policy is reviewed and updated [SI-01_ODP[05]; the frequency at which the current system and information integrity policy is reviewed and updated is defined]. - the current system and information integrity policy is reviewed and updated following [SI-01_ODP[06]; events that would require the current system and information integrity policy to be reviewed and updated are defined].'), ('001224','draft','2009-09-22','DISA FSO','policy','Defines the frequency for reviewing and updating the current system and information integrity procedures.','SI-01c.02','N/A','Determine if: - the current system and information integrity procedures are reviewed and updated [SI-01_ODP[07]; the frequency at which the current system and information integrity procedures are reviewed and updated is defined]. - the current system and information integrity procedures are reviewed and updated following [SI-01_ODP[08]; events that would require the system and information integrity procedures to be reviewed and updated are defined].'), ('001225','draft','2009-09-22','DISA FSO','policy','Identify system flaws.','SI-02a.','N/A','Determine if: - system flaws are identified. - system flaws are reported. - system flaws are corrected.'), ('001226','draft','2009-09-22','DISA FSO','policy','Report system flaws.','SI-02a.','N/A','Determine if: - system flaws are identified. - system flaws are reported. - system flaws are corrected.'), ('001227','draft','2009-09-22','DISA FSO','policy','Correct system flaws.','SI-02a.','N/A','Determine if: - system flaws are identified. - system flaws are reported. - system flaws are corrected.'), ('001228','draft','2009-09-22','DISA FSO','policy','Test software updates related to flaw remediation for effectiveness before installation.','SI-02b.','N/A','Determine if: - software updates related to flaw remediation are tested for effectiveness before installation. - software updates related to flaw remediation are tested for potential side effects before installation. - firmware updates related to flaw remediation are tested for effectiveness before installation. - firmware updates related to flaw remediation are tested for potential side effects before installation.'), ('001229','draft','2009-09-22','DISA FSO','policy','Test software updates related to flaw remediation for potential side effects before installation.','SI-02b.','N/A','Determine if: - software updates related to flaw remediation are tested for effectiveness before installation. - software updates related to flaw remediation are tested for potential side effects before installation. - firmware updates related to flaw remediation are tested for effectiveness before installation. - firmware updates related to flaw remediation are tested for potential side effects before installation.'), ('001230','draft','2009-09-22','DISA FSO','policy','Incorporate flaw remediation into the organizational configuration management process.','SI-02d.','N/A','Determine if flaw remediation is incorporated into the organizational configuration management process.'), ('001235','draft','2009-09-22','DISA FSO','policy','Measure the time between flaw identification and flaw remediation.','SI-02(03)(a)','N/A','Determine if the time between flaw identification and flaw remediation is measured.'), ('001236','draft','2009-09-22','DISA FSO','policy','Defines benchmarks for the time taken to apply corrective actions after flaw identification.','SI-02(03)(b)','N/A','Determine if [SI-02(03)_ODP; the benchmarks for taking corrective actions are defined] for taking corrective actions have been established.'), ('001241','draft','2009-09-22','DISA FSO','technical','Configure malicious code protection mechanisms to perform periodic scans of the system on an organization-defined frequency.','SI-03c.01','N/A','Determine if: - malicious code protection mechanisms are configured to perform periodic scans of the system [SI-03_ODP[02]; the frequency at which malicious code protection mechanisms perform scans is defined]. - malicious code protection mechanisms are configured to perform real-time scans of files from external sources at [SI-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {endpoint; network entry and exit points}] as the files are downloaded, opened, or executed in accordance with organizational policy.'), ('001243','draft','2009-09-22','DISA FSO','technical','Configure malicious code protection mechanisms to block malicious code; quarantine malicious code; and/or take organization-defined action(s) in response to malicious code detection.','SI-03c.02','N/A','Determine if: - malicious code protection mechanisms are configured to [SI-03_ODP[04]; one or more of the following PARAMETER VALUES is/are selected: {block malicious code; quarantine malicious code; take [SI-03_ODP[05]; action to be taken in response to malicious code detection are defined (if selected)}] in response to malicious code detection. - malicious code protection mechanisms are configured to send alerts to [SI-03_ODP[06]; personnel or roles to be alerted when malicious code is detected is/are defined] in response to malicious code detection.'), ('001244','draft','2009-09-22','DISA FSO','policy','Defines one or more actions to perform in response to malicious code detection, such as blocking malicious code, quarantining malicious code, or sending alerts to administrators.','SI-03c.02','N/A','Determine if: - malicious code protection mechanisms are configured to [SI-03_ODP[04]; one or more of the following PARAMETER VALUES is/are selected: {block malicious code; quarantine malicious code; take [SI-03_ODP[05]; action to be taken in response to malicious code detection are defined (if selected)}] in response to malicious code detection. - malicious code protection mechanisms are configured to send alerts to [SI-03_ODP[06]; personnel or roles to be alerted when malicious code is detected is/are defined] in response to malicious code detection.'), ('001245','draft','2009-09-22','DISA FSO','policy','Address the receipt of false positives during malicious code detection and eradication, and the resulting potential impact on the availability of the system.','SI-03d.','N/A','Determine if the receipt of false positives during malicious code detection and eradication and the resulting potential impact on the availability of the system are addressed.'), ('001249','draft','2009-09-22','DISA FSO','technical','Update malicious code protection mechanisms only when directed by a privileged user.','SI-03(04)','N/A','Determine if malicious code protection mechanisms are updated only when directed by a privileged user.'), ('001251','draft','2009-09-22','DISA FSO','policy','Test malicious code protection mechanisms on an organization-defined frequency by introducing a known benign code into the system.','SI-03(06)(a)','N/A','Determine if malicious code protection mechanisms are tested [SI-03(06)_ODP; the frequency at which to test malicious code protection mechanisms is defined] by introducing known benign code into the system.'), ('001253','draft','2009-09-22','DISA FSO','policy','Defines the objectives of monitoring for attacks and indicators of potential attacks on the system.','SI-04a.01','N/A','Determine if the system is monitored to detect attacks and indicators of potential attacks in accordance with [SI-04_ODP[01]; monitoring objectives to detect attacks and indicators of potential attacks on the system are defined].'), ('001255','draft','2009-09-22','DISA FSO','policy','Invoke internal monitoring capabilities or deploy monitoring devices strategically within the system to collect organization-determined essential information.','SI-04c.01','N/A','Determine if internal monitoring capabilities are invoked or monitoring devices are deployed strategically within the system to collect organization-determined essential information.'), ('001256','draft','2009-09-22','DISA FSO','policy','Invoke internal monitoring capabilities or deploy monitoring devices at ad hoc locations within the system to track specific types of transactions of interest to the organization.','SI-04c.02','N/A','Determine if internal monitoring capabilities are invoked or monitoring devices are deployed at ad hoc locations within the system to track specific types of transactions of interest to the organization.'), ('001257','draft','2009-09-22','DISA FSO','policy','Adjust the level of system monitoring activity when there is a change in increased risk to organizational operations and assets, individuals, other organizations, or the Nation.','SI-04e.','N/A','Determine if the level of system monitoring activity is adjusted when there is a change in risk to organizational operations and assets, individuals, other organizations, or the Nation.'), ('001258','draft','2009-09-22','DISA FSO','policy','Obtain legal opinion with regard to system monitoring activities.','SI-04f.','N/A','Determine if a legal opinion regarding system monitoring activities is obtained.'), ('001260','draft','2009-09-22','DISA FSO','policy','Employ automated tools to support near real-time analysis of events.','SI-04(02)','N/A','Determine if automated tools and mechanisms are employed to support a near real-time analysis of events.'), ('001264','draft','2009-09-22','DISA FSO','policy','Defines the indicators of compromise or potential compromise which will result in system alerts being provided to organization-defined personnel or roles.','SI-04(05)','N/A','Determine if [SI-04(05)_ODP[01]; personnel or roles to be alerted when indications of compromise or potential compromise occur is/are defined] are alerted when system-generated [SI-04(05)_ODP[02]; compromise indicators are defined] occur.'), ('001266','draft','2009-09-22','DISA FSO','technical','Notify an organization-defined incident response personnel (identified by name and/or by role) of detected suspicious events.','SI-04(07)(a)','N/A','Determine if [SI-04(07)_ODP[01]; incident response personnel (identified by name and/or by role) to be notified of detected suspicious events is/are defined] are notified of detected suspicious events.'), ('001267','draft','2009-09-22','DISA FSO','policy','Defines incident response personnel (identified by name and/or by role) to be notified of detected suspicious events.','SI-04(07)(a)','N/A','Determine if [SI-04(07)_ODP[01]; incident response personnel (identified by name and/or by role) to be notified of detected suspicious events is/are defined] are notified of detected suspicious events.'), ('001268','draft','2009-09-22','DISA FSO','policy','Defines the least-disruptive actions to be taken by system to terminate suspicious events.','SI-04(07)(b)','N/A','Determine if [SI-04(07)_ODP[02]; least-disruptive actions to terminate suspicious events are defined] are taken upon the detection of suspicious events.'), ('001270','draft','2009-09-22','DISA FSO','policy','Test intrusion monitoring tools at an organization-defined frequency.','SI-04(09)','N/A','Determine if intrusion-monitoring tools and mechanisms are tested [SI-04(09)_ODP; a frequency at which to test intrusion-monitoring tools and mechanisms is defined].'), ('001271','draft','2009-09-22','DISA FSO','policy','Defines the frequency for testing intrusion monitoring tools.','SI-04(09)','N/A','Determine if intrusion-monitoring tools and mechanisms are tested [SI-04(09)_ODP; a frequency at which to test intrusion-monitoring tools and mechanisms is defined].'), ('001273','draft','2009-09-22','DISA FSO','policy','Analyze outbound communications traffic at the external interfaces to the system to discover anomalies.','SI-04(11)','N/A','Determine if: - outbound communications traffic at the external interfaces to the system is analyzed to discover anomalies. - outbound communications traffic at [SI-04(11)_ODP; interior points within the system where communications traffic is to be analyzed are defined] is analyzed to discover anomalies. '), ('001274','draft','2009-09-22','DISA FSO','policy','Alert organization-defined personnel or roles using organization-defined automated mechanisms when inappropriate or unusual activities with security or privacy implications.','SI-04(12)','N/A','Determine if [SI-04(12)_ODP[01]; personnel or roles to be alerted when indications of inappropriate or unusual activity with security or privacy implications occur is/are defined] is/are alerted using [SI-04(12)_ODP[02]; automated mechanisms used to alert personnel or roles are defined] when [SI-04(12)_ODP[03]; activities that trigger alerts to personnel or are defined] indicate inappropriate or unusual activities with security or privacy implications.'), ('001275','draft','2009-09-22','DISA FSO','policy','Defines the activities which will trigger alerts to security personnel of inappropriate or unusual activities.','SI-04(12)','N/A','Determine if [SI-04(12)_ODP[01]; personnel or roles to be alerted when indications of inappropriate or unusual activity with security or privacy implications occur is/are defined] is/are alerted using [SI-04(12)_ODP[02]; automated mechanisms used to alert personnel or roles are defined] when [SI-04(12)_ODP[03]; activities that trigger alerts to personnel or are defined] indicate inappropriate or unusual activities with security or privacy implications.'), ('001276','draft','2009-09-22','DISA FSO','policy','Analyze communications traffic and event patterns for the system.','SI-04(13)(a)','N/A','Determine if: - communications traffic for the system is analyzed. - event patterns for the system are analyzed.'), ('001277','draft','2009-09-22','DISA FSO','policy','Develop profiles representing common traffic and event patterns.','SI-04(13)(b)','N/A','Determine if: - profiles representing common traffic are developed. - profiles representing event patterns are developed.'), ('001282','draft','2009-09-22','DISA FSO','policy','Employ an intrusion detection system to monitor wireless communications traffic as the traffic passes from wireless to wireline networks.','SI-04(15)','N/A','Determine if an intrusion detection system is employed to monitor wireless communications traffic as the traffic passes from wireless to wireline networks.'), ('001283','draft','2009-09-22','DISA FSO','policy','Correlate information from monitoring tools employed throughout the system.','SI-04(16)','N/A','Determine if information from monitoring tools and mechanisms employed throughout the system is correlated.'), ('001284','draft','2009-09-22','DISA FSO','policy','Correlate information from monitoring physical, cyber, and supply chain activities to achieve integrated, organization-wide situational awareness.','SI-04(17)','N/A','Determine if information from monitoring physical, cyber, and supply chain activities are correlated to achieve integrated, organization-wide situational awareness.'), ('001285','draft','2009-09-22','DISA FSO','policy','Receive system security alerts, advisories, and directives from organization-defined external organizations on an ongoing basis.','SI-05a.','N/A','Determine if system security alerts, advisories, and directives are received from [SI-05_ODP[01]; external organizations from whom system security alerts, advisories, and directives are to be received on an ongoing basis are defined] on an ongoing basis.'), ('001286','draft','2009-09-22','DISA FSO','policy','Generate internal security alerts, advisories, and directives as deemed necessary.','SI-05b.','N/A','Determine if internal security alerts, advisories, and directives are generated as deemed necessary.'), ('001287','draft','2009-09-22','DISA FSO','policy','Disseminate security alerts, advisories, and directives to organization-defined personnel or roles, organization-defined elements within the organization, and/or organization-defined external organizations.','SI-05c.','N/A','Determine if security alerts, advisories, and directives are disseminated to [SI-05_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[SI-05_ODP[03]; personnel or roles to whom security alerts, advisories, and directives are to be disseminated is/are defined (if selected)]; [SI-05_ODP[04]; elements within the organization to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]; [SI-05_ODP[05]; external organizations to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]}].'), ('001288','draft','2009-09-22','DISA FSO','policy','Defines the personnel or roles to whom the organization will disseminate security alerts, advisories, and directives.','SI-05c.','N/A','Determine if security alerts, advisories, and directives are disseminated to [SI-05_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[SI-05_ODP[03]; personnel or roles to whom security alerts, advisories, and directives are to be disseminated is/are defined (if selected)]; [SI-05_ODP[04]; elements within the organization to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]; [SI-05_ODP[05]; external organizations to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]}].'), ('001289','draft','2009-09-22','DISA FSO','policy','Implement security directives in accordance with established time frames, or notify the issuing organization of the degree of noncompliance.','SI-05d.','N/A','Determine if security directives are implemented in accordance with established time frames or if the issuing organization is notified of the degree of noncompliance.'), ('001290','draft','2009-09-22','DISA FSO','policy','Broadcast security alert and advisory information throughout the organization using organization-defined automated mechanisms.','SI-05(01)','N/A','Determine if [SI-05(01)_ODP; automated mechanisms used to broadcast security alert and advisory information throughout the organization are defined] are used to broadcast security alert and advisory information throughout the organization.'), ('001294','draft','2009-09-22','DISA FSO','technical','Alert organization-defined personnel or roles of failed security verification tests.','SI-06c.','N/A','Determine if: - [SI-06_ODP[06]; personnel or roles to be alerted of failed security and privacy verification tests is/are defined] is/are alerted to failed security verification tests. - [SI-06_ODP[06]; personnel or roles to be alerted of failed security and privacy verification tests is/are defined] is/are alerted to failed privacy verification tests.'), ('001295','draft','2009-09-22','DISA FSO','technical','Implement automated mechanisms to support the management of distributed security function testing.','SI-06(02)','N/A','Determine if: - automated mechanisms are implemented to support the management of distributed security function testing. - automated mechanisms are implemented to support the management of distributed privacy function testing.'), ('001296','draft','2009-09-22','DISA FSO','policy','Report the results of security function verification to organization-defined personnel or roles.','SI-06(03)','N/A','Determine if: - the results of security function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined]. - the results of privacy function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined].'), ('001300','draft','2009-09-22','DISA FSO','policy','Employ automated tools that provide notification to organization-defined personnel or roles upon discovering discrepancies during integrity verification.','SI-07(02)','N/A','Determine if automated tools that provide notification to [SI-07(02)_ODP; personnel or roles to whom notification is to be provided upon discovering discrepancies during integrity verification is/are defined] upon discovering discrepancies during integrity verification are employed.'), ('001301','draft','2009-09-22','DISA FSO','policy','Employ centrally managed integrity verification tools.','SI-07(03)','N/A','Determine if centrally managed integrity verification tools are employed.'), ('001308','draft','2009-09-22','DISA FSO','technical','Automatically update spam protection mechanisms on an organization-defined frequency.','SI-08(02)','N/A','Determine if spam protection mechanisms are automatically updated [SI-08(02)_ODP; the frequency at which to automatically update spam protection mechanisms is defined].'), ('001310','draft','2009-09-22','DISA FSO','technical','Checks the validity of organization-defined information inputs to the system.','SI-10','N/A','Determine if the validity of the [SI-10_ODP; information inputs to the system requiring validity checks are defined] is checked.'), ('001312','draft','2009-09-22','DISA FSO','technical','Generate error messages that provide information necessary for corrective actions without revealing information that could be exploited.','SI-11a.','N/A','Determine if error messages that provide the information necessary for corrective actions are generated without revealing information that could be exploited.'), ('001314','draft','2009-09-22','DISA FSO','technical','Reveal error messages only to organization-defined personnel or roles.','SI-11b.','N/A','Determine if error messages are revealed only to [SI-11_ODP; personnel or roles to whom error messages are to be revealed is/are defined].'), ('001315','draft','2009-09-22','DISA FSO','policy','Manage information within the system and information output from the system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.','SI-12','N/A','Determine if: - information within the system is managed in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements. - information within the system is retained in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements. - information output from the system is managed in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements. - information output from the system is retained in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements.'), ('001318','draft','2009-09-22','DISA FSO','policy','Provide substitute system components.','SI-13b.','N/A','Determine if substitute system components and a means to exchange active and standby components are provided in accordance with [SI-13_ODP[02]; mean time to failure (MTTF) substitution criteria to be used as a means to exchange active and standby components are defined].'), ('001319','draft','2009-09-22','DISA FSO','policy','Take system components out of service by transferring component responsibilities to a substitute component no later than an organization-defined fraction or percentage of mean time to failure (MTTF).','SI-13(01)','N/A','Determine if system components are taken out of service by transferring component responsibilities to substitute components no later than [SI-13(01)_ODP; the fraction or percentage of mean time to failure within which to transfer the responsibilities of a system component to a substitute component is defined] of mean time to failure.'), ('001320','draft','2009-09-22','DISA FSO','policy','Defines the maximum fraction or percentage of mean time to failure (MTTF) used to determine when system components are taken out of service by transferring component responsibilities to substitute components.','SI-13(01)','N/A','Determine if system components are taken out of service by transferring component responsibilities to substitute components no later than [SI-13(01)_ODP; the fraction or percentage of mean time to failure within which to transfer the responsibilities of a system component to a substitute component is defined] of mean time to failure.'), ('001321','draft','2009-09-22','DISA FSO','policy','Prohibit processes from executing without supervision for more than an organization-defined time period.','SI-07(16)','N/A','Determine if processes are prohibited from executing without supervision for more than [SI-07(16)_ODP; the maximum time period permitted for processes to execute without supervision is defined].'), ('001322','draft','2009-09-22','DISA FSO','policy','Defines a time period that is the longest a process is allowed to execute without supervision.','SI-07(16)','N/A','Determine if processes are prohibited from executing without supervision for more than [SI-07(16)_ODP; the maximum time period permitted for processes to execute without supervision is defined].'), ('001323','draft','2009-09-22','DISA FSO','policy','Manually initiate transfers between active and standby system components when the use of the active component reaches an organization-defined percentage of the mean time to failure.','SI-13(03)','N/A','Determine if transfers are initiated manually between active and standby system components when the use of the active component reaches [SI-13(03)_ODP; the percentage of the mean time to failure for transfers to be manually initiated is defined] of the mean time to failure.'), ('001326','draft','2009-09-22','DISA FSO','policy','If system component failures are detected, ensure standby components are successfully and transparently installed within an organization-defined time period.','SI-13(04)(a)','N/A','Determine if the standby components are successfully and transparently installed within [SI-13(04)_ODP[01]; time period for standby components to be installed is defined] if system component failures are detected.'), ('001327','draft','2009-09-22','DISA FSO','policy','Defines a time period for a standby system component to be successfully and transparently installed for the system component that has failed.','SI-13(04)(a)','N/A','Determine if the standby components are successfully and transparently installed within [SI-13(04)_ODP[01]; time period for standby components to be installed is defined] if system component failures are detected.'), ('001328','draft','2009-09-22','DISA FSO','technical','If system component failures are detected, activate an organization-defined alarm, automatically shut down the system, and/or organization-defined action.','SI-13(04)(b)','N/A','Determine if [SI-13(04)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {activate [SI-13(04)_ODP[03]; alarm to be activated when system component failures are detected is defined (if selected)]; automatically shut down the system; [SI-13(04)_ODP[04]; action to be taken when system component failures are detected is defined (if selected)]}] are performed if system component failures are detected.'), ('001329','draft','2009-09-22','DISA FSO','policy','Defines the alarm to be activated when a system component failure is detected.','SI-13(04)(b)','N/A','Determine if [SI-13(04)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {activate [SI-13(04)_ODP[03]; alarm to be activated when system component failures are detected is defined (if selected)]; automatically shut down the system; [SI-13(04)_ODP[04]; action to be taken when system component failures are detected is defined (if selected)]}] are performed if system component failures are detected.'), ('001330','draft','2009-09-22','DISA FSO','policy','Prohibit the use of unclassified mobile devices in facilities containing systems processing, storing, or transmitting classified information unless specifically permitted by the authorizing official.','AC-19(04)(a)','N/A','Determine if the use of unclassified mobile devices in facilities containing systems processing, storing, or transmitting classified information is prohibited unless specifically permitted by the authorizing official.'), ('001331','draft','2009-09-22','DISA FSO','policy','Prohibit the connection of unclassified mobile devices to classified systems.','AC-19(04)(b)(01)','N/A','Determine if prohibition of the connection of unclassified mobile devices to classified systems is enforced on individuals permitted by an authorizing official to use unclassified mobile devices in facilities containing systems processing, storing, or transmitting classified information.'), ('001332','draft','2009-09-22','DISA FSO','policy','Connection of unclassified mobile devices to unclassified systems requires approval from the authorizing official.','AC-19(04)(b)(02)','N/A','Determine if approval by the authorizing official for the connection of unclassified mobile devices to unclassified systems is enforced on individuals permitted to use unclassified mobile devices in facilities containing systems processing, storing, or transmitting classified information.'), ('001333','draft','2009-09-22','DISA FSO','policy','Use of internal or external modems or wireless interfaces within the unclassified mobile devices is prohibited.','AC-19(04)(b)(03)','N/A','Determine if prohibition of the use of internal or external modems or wireless interfaces within unclassified mobile devices is enforced on individuals permitted by an authorizing official to use unclassified mobile devices in facilities containing systems processing, storing, or transmitting classified information.'), ('001334','draft','2009-09-22','DISA FSO','policy','Require unclassified mobile devices used in facilities containing systems processing, storing, or transmitting classified information and the information stored on those devices be subject to random reviews and inspections by organization-defined security officials.','AC-19(04)(b)(04)','N/A','Determine if: - random review and inspection of unclassified mobile devices and the information stored on those devices by [AC-19(04)_ODP[01]; security officials responsible for the review and inspection of unclassified mobile devices and the information stored on those devices are defined] are enforced. - following of the incident handling policy is enforced if classified information is found during a random review and inspection of unclassified mobile devices.'), ('001335','draft','2009-09-22','DISA FSO','policy','Defines security officials to perform reviews and inspections of unclassified mobile devices in facilities containing systems processing, storing, or transmitting classified information.','AC-19(04)(b)(04)','N/A','Determine if: - random review and inspection of unclassified mobile devices and the information stored on those devices by [AC-19(04)_ODP[01]; security officials responsible for the review and inspection of unclassified mobile devices and the information stored on those devices are defined] are enforced. - following of the incident handling policy is enforced if classified information is found during a random review and inspection of unclassified mobile devices.'), ('001336','draft','2009-09-22','DISA FSO','policy','Retain individual training records for an organization-defined time-period.','AT-04b.','N/A','Determine if individual training records are retained for [AT-04_ODP; time period for retaining individual training records is defined].'), ('001337','draft','2009-09-22','DISA FSO','policy','Defines the time period for retaining individual training records.','AT-04b.','N/A','Determine if individual training records are retained for [AT-04_ODP; time period for retaining individual training records is defined].'), ('001340','draft','2009-09-22','DISA FSO','technical','Maintain reviewer or releaser identity and credentials within the established chain of custody for all information reviewed or released.','AU-10(03)','N/A','Determine if reviewer or releaser credentials are maintained within the established chain of custody for information reviewed or released.'), ('001341','draft','2009-09-22','DISA FSO','technical','Validate the binding of the information reviewer identity to the information at the transfer or release points prior to release or transfer between organization-defined security domains.','AU-10(04)(a)','N/A','Determine if the binding of the information reviewer identity to the information at the transfer or release points prior to release or transfer between [AU-10(04)_ODP[01]; security domains for which the binding of the information reviewer identity to the information is to be validated at transfer or release are defined].'), ('001348','draft','2009-09-22','DISA FSO','technical','Store audit records on an organization-defined frequency in a repository that is part of a physically different system or system component than the system or component being audited.','AU-09(02)','N/A','Determine if audit records are stored [AU-09(02)_ODP; the frequency of storing audit records in a repository is defined] in a repository that is part of a physically different system or system component than the system or component being audited.'), ('001349','draft','2009-09-22','DISA FSO','policy','Defines a frequency for storing audit records in a repository that is part of a physically different system or system component than the system or component being audited.','AU-09(02)','N/A','Determine if audit records are stored [AU-09(02)_ODP; the frequency of storing audit records in a repository is defined] in a repository that is part of a physically different system or system component than the system or component being audited.'), ('001350','draft','2009-09-22','DISA FSO','technical','Implement cryptographic mechanisms to protect the integrity of audit information.','AU-09(03)','N/A','Determine if cryptographic mechanisms to protect the integrity of audit information and audit tools are implemented.'), ('001351','draft','2009-09-22','DISA FSO','policy','Authorize access to management of audit logging functionality to only an organization-defined subset of privileged users or roles.','AU-09(04)','N/A','Determine if access to management of audit logging functionality is authorized only to [AU-09(04)_ODP; a subset of privileged users or roles authorized to access management of audit logging functionality is defined].'), ('001353','draft','2009-09-22','DISA FSO','technical','Produce a system-wide (logical or physical) audit trail composed of audit records in a standardized format.','AU-12(02)','N/A','Determine if a system-wide (logical or physical) audit trail composed of audit records is produced in a standardized format.'), ('001358','draft','2009-09-22','DISA FSO','policy','Establish privileged user accounts in accordance with a role-based access scheme; or an attribute-based access scheme.','AC-02(07)(a)','N/A','Determine if privileged user accounts are established and administered in accordance with [AC-02(07)_ODP; one of the following PARAMETER VALUES is selected: {a role-based access scheme; an attribute-based access scheme}].'), ('001360','draft','2009-09-22','DISA FSO','policy','Monitor privileged role assignments.','AC-02(07)(b)','N/A','Determine if privileged role or attribute assignments are monitored.'), ('001361','draft','2009-09-24','DISA FSO','policy','Defines a time period after which temporary accounts are automatically terminated.','AC-02(02)','N/A','Determine if temporary and emergency accounts are automatically [AC-02(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {remove; disable}] after [AC-02(02)_ODP[02]; the time period after which to automatically remove or disable temporary or emergency accounts is defined].'), ('001365','draft','2009-09-24','DISA FSO','policy','Defines a time period after which emergency accounts are automatically terminated.','AC-02(02)','N/A','Determine if temporary and emergency accounts are automatically [AC-02(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {remove; disable}] after [AC-02(02)_ODP[02]; the time period after which to automatically remove or disable temporary or emergency accounts is defined].'), ('001368','draft','2009-09-22','DISA FSO','technical','Enforce approved authorizations for controlling the flow of information within the system based on organization-defined information flow control policies.','AC-04','N/A','Determine if approved authorizations are enforced for controlling the flow of information within the system and between connected systems based on [AC-04_ODP; information flow control policies within the system and between connected systems are defined].'), ('001371','draft','2009-09-22','DISA FSO','policy','Defines security or privacy policy filters requiring fully enumerated formats which are to be implemented when transferring information between different security domains.','AC-04(14)','N/A','Determine if: - when transferring information between different security domains, implemented [AC-04(14)_ODP[01]; security policy filters to be implemented that require fully enumerated formats restricting data structure and content have been defined] require fully enumerated formats that restrict data structure and content. - when transferring information between different security domains, implemented [AC-04(14)_ODP[02]; privacy policy filters to be implemented that require fully enumerated formats restricting data structure and content are defined] require fully enumerated formats that restrict data structure and content.'), ('001372','draft','2009-09-22','DISA FSO','technical','When transferring information between different security domains, implement organization-defined security or privacy policy filters requiring fully enumerated formats that restrict data structure and content.','AC-04(14)','N/A','Determine if: - when transferring information between different security domains, implemented [AC-04(14)_ODP[01]; security policy filters to be implemented that require fully enumerated formats restricting data structure and content have been defined] require fully enumerated formats that restrict data structure and content. - when transferring information between different security domains, implemented [AC-04(14)_ODP[02]; privacy policy filters to be implemented that require fully enumerated formats restricting data structure and content are defined] require fully enumerated formats that restrict data structure and content.'), ('001373','draft','2009-09-22','DISA FSO','technical','When transferring information between different security domains, examine the information for the presence of organization-defined unsanctioned information.','AC-04(15)','N/A','Determine if: - when transferring information between different security domains, information is examined for the presence of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[02]; security policy that requires the transfer of unsanctioned information between different security domains to be prohibited is defined (if selected)]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[03]; privacy policy that requires the transfer of organization-defined unsanctioned information between different security domains to be prohibited is defined (if selected)].'), ('001374','draft','2009-09-22','DISA FSO','technical','When transferring information between different security domains, prohibit the transfer of such information in accordance with the organization-defined security or privacy policy.','AC-04(15)','N/A','Determine if: - when transferring information between different security domains, information is examined for the presence of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[02]; security policy that requires the transfer of unsanctioned information between different security domains to be prohibited is defined (if selected)]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[03]; privacy policy that requires the transfer of organization-defined unsanctioned information between different security domains to be prohibited is defined (if selected)].'), ('001384','draft','2009-09-22','DISA FSO','technical','For publicly accessible systems, display system use information with organization-defined conditions before granting further access to the publicly accessible system.','AC-08c.01','N/A','Determine if for publicly accessible systems, system use information [AC-08_ODP[02]; conditions for system use to be displayed by the system before granting further access are defined] is displayed before granting further access to the publicly accessible system.'), ('001385','draft','2009-09-22','DISA FSO','technical','For publicly accessible systems, displays references, if any, to monitoring that are consistent with privacy accommodations for such systems that generally prohibit those activities.','AC-08c.02','N/A','Determine if for publicly accessible systems, any references to monitoring, recording, or auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities are displayed.'), ('001386','draft','2009-09-22','DISA FSO','technical','For publicly accessible systems, displays references, if any, to recording that are consistent with privacy accommodations for such systems that generally prohibit those activities.','AC-08c.02','N/A','Determine if for publicly accessible systems, any references to monitoring, recording, or auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities are displayed.'), ('001387','draft','2009-09-22','DISA FSO','technical','For publicly accessible systems, displays references, if any, to auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities.','AC-08c.02','N/A','Determine if for publicly accessible systems, any references to monitoring, recording, or auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities are displayed.'), ('001388','draft','2009-09-22','DISA FSO','technical','For publicly accessible systems, includes a description of the authorized uses of the system.','AC-08c.03','N/A','Determine if for publicly accessible systems, a description of the authorized uses of the system is included.'), ('001389','draft','2009-09-22','DISA FSO','policy','Defines the time period that the system notifies the user of the number of successful logon/access attempts.','AC-09(02)','N/A','Determine if the user is notified, upon successful logon, of the number of [AC-09(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {successful logons; unsuccessful logon attempts; both}] during [AC-09(02)_ODP[02]; the time period for which the system notifies the user of the number of successful logons, unsuccessful logon attempts, or both is defined].'), ('001390','draft','2009-09-22','DISA FSO','policy','Defines the time period that the system notifies the user of the number of unsuccessful logon/access attempts.','AC-09(02)','N/A','Determine if the user is notified, upon successful logon, of the number of [AC-09(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {successful logons; unsuccessful logon attempts; both}] during [AC-09(02)_ODP[02]; the time period for which the system notifies the user of the number of successful logons, unsuccessful logon attempts, or both is defined].'), ('001391','draft','2009-09-22','DISA FSO','technical','Notify the user, upon successful logon, of the number of successful logons/accesses during the organization-defined time period.','AC-09(02)','N/A','Determine if the user is notified, upon successful logon, of the number of [AC-09(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {successful logons; unsuccessful logon attempts; both}] during [AC-09(02)_ODP[02]; the time period for which the system notifies the user of the number of successful logons, unsuccessful logon attempts, or both is defined].'), ('001392','draft','2009-09-22','DISA FSO','technical','Notify the user, upon successful logon, of the number of unsuccessful logon/access attempts during the organization-defined time period.','AC-09(02)','N/A','Determine if the user is notified, upon successful logon, of the number of [AC-09(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {successful logons; unsuccessful logon attempts; both}] during [AC-09(02)_ODP[02]; the time period for which the system notifies the user of the number of successful logons, unsuccessful logon attempts, or both is defined].'), ('001393','draft','2009-09-22','DISA FSO','policy','Defines the security-related characteristics/parameters of the user''s account which, when changed, will result in a notification being provided to the user during the organization-defined time period.','AC-09(03)','N/A','Determine if the user is notified, upon successful logon, of changes to [AC-09(03)_ODP[01]; changes to security-related characteristics or parameters of the user''s account that require notification are defined] during [AC-09(03)_ODP[02]; the time period for which the system notifies the user of changes to security-related characteristics or parameters of the user''s account is defined].'), ('001394','draft','2009-09-22','DISA FSO','policy','Defines the time period during which organization-defined security-related changes to the user''s account are to be tracked.','AC-09(03)','N/A','Determine if the user is notified, upon successful logon, of changes to [AC-09(03)_ODP[01]; changes to security-related characteristics or parameters of the user''s account that require notification are defined] during [AC-09(03)_ODP[02]; the time period for which the system notifies the user of changes to security-related characteristics or parameters of the user''s account is defined].'), ('001395','draft','2009-09-22','DISA FSO','technical','Notify the user, upon successful logon, of changes to organization-defined security-related characteristics/parameters of the user''s account during the organization-defined time-period.','AC-09(03)','N/A','Determine if the user is notified, upon successful logon, of changes to [AC-09(03)_ODP[01]; changes to security-related characteristics or parameters of the user''s account that require notification are defined] during [AC-09(03)_ODP[02]; the time period for which the system notifies the user of changes to security-related characteristics or parameters of the user''s account is defined].'), ('001403','draft','2009-09-24','DISA FSO','technical','Automatically audit account modification actions.','AC-02(04)','N/A','Determine if: - account creation is automatically audited. - account modification is automatically audited. - account enabling is automatically audited. - account disabling is automatically audited. - account removal actions are automatically audited.'), ('001404','draft','2009-09-24','DISA FSO','technical','Automatically audit account disabling actions.','AC-02(04)','N/A','Determine if: - account creation is automatically audited. - account modification is automatically audited. - account enabling is automatically audited. - account disabling is automatically audited. - account removal actions are automatically audited.'), ('001405','draft','2009-09-24','DISA FSO','technical','Automatically audit account removal actions.','AC-02(04)','N/A','Determine if: - account creation is automatically audited. - account modification is automatically audited. - account enabling is automatically audited. - account disabling is automatically audited. - account removal actions are automatically audited.'), ('001406','draft','2009-09-24','DISA FSO','policy','Defines a time period of expected inactivity when users are required to log out.','AC-02(05)','N/A','Determine if users are required to log out when [AC-02(05)_ODP; the time period of expected inactivity or description of when to log out is defined].'), ('001407','draft','2009-09-24','DISA FSO','policy','Administer privileged user accounts in accordance with a role-based access scheme; or an attribute-based access scheme.','AC-02(07)(a)','N/A','Determine if privileged user accounts are established and administered in accordance with [AC-02(07)_ODP; one of the following PARAMETER VALUES is selected: {a role-based access scheme; an attribute-based access scheme}].'), ('001408','draft','2009-09-24','DISA FSO','policy','Defines privileged commands for which dual authorization is to be enforced.','AC-03(02)','N/A','Determine if dual authorization is enforced for [AC-03(02)_ODP; privileged commands and/or other actions requiring dual authorization are defined].'), ('001411','draft','2009-09-24','DISA FSO','policy','Defines security-relevant information to which the system prevents access except during secure, non-operable system states.','AC-03(05)','N/A','Determine if access to [AC-03(05)_ODP; security-relevant information to which access is prevented except during secure, non-operable system states is defined] is prevented except during secure, non-operable system states.'), ('001414','draft','2009-09-24','DISA FSO','technical','Enforce approved authorizations for controlling the flow of information between connected systems based on organization-defined information flow control policies.','AC-04','N/A','Determine if approved authorizations are enforced for controlling the flow of information within the system and between connected systems based on [AC-04_ODP; information flow control policies within the system and between connected systems are defined].'), ('001415','draft','2009-09-24','DISA FSO','policy','Defines limitations for the embedding of data types within other data types.','AC-04(05)','N/A','Determine if [AC-04(05)_ODP; limitations on embedding data types within other data types are defined] are enforced on embedding data types within other data types.'), ('001417','draft','2009-09-24','DISA FSO','policy','Defines security policy filters to be enforced and used as a basis for flow control decisions.','AC-04(08)(a)','N/A','Determine if: - information flow control is enforced using [AC-04(08)_ODP[01]; security policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[03]; information flows for which information flow control is enforced by security filters are defined]. - information flow control is enforced using [AC-04(08)_ODP[02]; privacy policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[04]; information flows for which information flow control is enforced by privacy filters are defined].'), ('001419','draft','2009-09-25','DISA FSO','policy','Defines the security functions or security-relevant information to which users of system accounts, or roles, have access.','AC-06(02)','N/A','Determine if users of system accounts (or roles) with access to [AC-06(02)_ODP; security functions or security-relevant information, the access to which requires users to use non-privileged accounts to access non-security functions, are defined] are required to use non-privileged accounts or roles when accessing non-security functions.'), ('001420','draft','2009-09-25','DISA FSO','policy','Defines the privileged commands to which network access is to be authorized only for organization-defined compelling operational needs.','AC-06(03)','N/A','Determine if: - network access to [AC-06(03)_ODP[01]; privileged commands to which network access is to be authorized only for compelling operational needs are defined] is authorized only for [AC-06(03)_ODP[02]; compelling operational needs necessitating network access to privileged commands are defined]. - the rationale for authorizing network access to privileged commands is documented in the security plan for the system.'), ('001422','draft','2009-09-25','DISA FSO','policy','Prohibit privileged access to the system by non-organizational users.','AC-06(06)','N/A','Determine if privileged access to the system by non-organizational users is prohibited.'), ('001423','draft','2009-09-25','DISA FSO','policy','Defines the time period in which the organization-defined maximum number of consecutive invalid logon attempts occur.','AC-07a.','N/A','Determine if a limit of [AC-07_ODP[01]; the number of consecutive invalid logon attempts by a user allowed during a time period is defined] consecutive invalid logon attempts by a user during [AC-07_ODP[02]; the time period to which the number of consecutive invalid logon attempts by a user is limited is defined] is enforced.'), ('001424','draft','2009-09-25','DISA FSO','technical','Dynamically associate security attributes with organization-defined subjects in accordance with organization-defined security policies as information is created and combined.',NULL,'N/A',NULL), ('001425','draft','2009-09-25','DISA FSO','technical','Provides authorized individuals (or processes acting on behalf of individuals) the capability to change the value of associated security attributes.',NULL,'N/A',NULL), ('001428','draft','2009-09-25','DISA FSO','technical','Display security attributes in human-readable form on each object that the system transmits to output devices to identify organization-identified special dissemination, handling, or distribution instructions using organization-identified human-readable, standard naming conventions.','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('001429','draft','2009-09-25','DISA FSO','policy','Identify special dissemination, handling, or distribution instructions for identifying security attributes on output.','AC-16(05)','N/A','Determine if: - security attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined]. - privacy attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined].'), ('001430','draft','2009-09-25','DISA FSO','policy','Identify human-readable, standard naming conventions for identifying security attributes on output.','AC-16(05)','N/A','Determine if: - security attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined]. - privacy attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined].'), ('001439','draft','2009-09-25','DISA FSO','policy','Establish implementation guidance for wireless access.','AC-18a.','N/A','Determine if: - configuration requirements are established for each type of wireless access. - connection requirements are established for each type of wireless access. - implementation guidance is established for each type of wireless access.'), ('001441','draft','2009-09-25','DISA FSO','policy','Authorize each type of wireless access to the system prior to allowing such connections.','AC-18b.','N/A','Determine if each type of wireless access to the system is authorized prior to allowing such connections.'), ('001443','draft','2009-09-25','DISA FSO','technical','Protect wireless access to the system using authentication of users and/or devices.','AC-18(01)','N/A','Determine if: - wireless access to the system is protected using authentication of [AC-18(01)_ODP; one or more of the following PARAMETER VALUES is/are selected: {users; devices}]. - wireless access to the system is protected using encryption.'), ('001444','draft','2009-09-25','DISA FSO','technical','Protect wireless access to the system using encryption.','AC-18(01)','N/A','Determine if: - wireless access to the system is protected using authentication of [AC-18(01)_ODP; one or more of the following PARAMETER VALUES is/are selected: {users; devices}]. - wireless access to the system is protected using encryption.'), ('001449','draft','2009-09-25','DISA FSO','policy','Disable, when not intended for use, wireless networking capabilities internally embedded within system components prior to issuance and deployment.','AC-18(03)','N/A','Determine if when not intended for use, wireless networking capabilities embedded within system components are disabled prior to issuance and deployment.'), ('001451','draft','2009-09-25','DISA FSO','policy','Select radio antennas and calibrate transmission power levels to reduce the probability that signals from wireless access points can be received outside of organization-controlled boundaries.','AC-18(05)','N/A','Determine if: - radio antennas are selected to reduce the probability that signals from wireless access points can be received outside of organization-controlled boundaries. - transmission power levels are calibrated to reduce the probability that signals from wireless access points can be received outside of organization-controlled boundaries.'), ('001453','draft','2009-09-29','DISA FSO','technical','Implement cryptographic mechanisms to protect the integrity of remote access sessions.','AC-17(02)','N/A','Determine if cryptographic mechanisms are implemented to protect the confidentiality and integrity of remote access sessions.'), ('001458','draft','2009-09-29','DISA FSO','policy','If classified information is found on mobile devices, the incident handling policy is to be followed.','AC-19(04)(b)(04)','N/A','Determine if: - random review and inspection of unclassified mobile devices and the information stored on those devices by [AC-19(04)_ODP[01]; security officials responsible for the review and inspection of unclassified mobile devices and the information stored on those devices are defined] are enforced. - following of the incident handling policy is enforced if classified information is found during a random review and inspection of unclassified mobile devices.'), ('001459','draft','2009-09-29','DISA FSO','policy','Defines system components that provide audit record generation capability.','AU-12a.','N/A','Determine if audit record generation capability for the event types the system is capable of auditing (defined in AU-02_ODP[01]) is provided by [AU-12_ODP[01]; system components that provide an audit record generation capability for the events types (defined in AU-02_ODP[02]) are defined].'), ('001460','draft','2009-09-29','DISA FSO','policy','Monitor organization-defined open source information and/or information sites per organization-defined frequency for evidence of unauthorized disclosure of organizational information.','AU-13a.','N/A','Determine if [AU-13_ODP[01]; open-source information and/or information sites to be monitored for evidence of unauthorized disclosure of organizational information is/are defined] is/are monitored [AU-13_ODP[02]; the frequency with which open-source information and/or information sites are monitored for evidence of unauthorized disclosure of organizational information is defined] for evidence of unauthorized disclosure of organizational information.'), ('001461','draft','2009-09-29','DISA FSO','policy','Defines a frequency for monitoring open source information and/or information sites for evidence of unauthorized exfiltration or disclosure of organizational information.','AU-13a.','N/A','Determine if [AU-13_ODP[01]; open-source information and/or information sites to be monitored for evidence of unauthorized disclosure of organizational information is/are defined] is/are monitored [AU-13_ODP[02]; the frequency with which open-source information and/or information sites are monitored for evidence of unauthorized disclosure of organizational information is defined] for evidence of unauthorized disclosure of organizational information.'), ('001464','draft','2009-09-29','DISA FSO','technical','Initiates session audits automatically at system start-up.','AU-14(01)','N/A','Determine if session audits are initiated automatically at system start-up.'), ('001470','draft','2009-09-29','DISA FSO','policy','Defines information sharing circumstances where user discretion is required.','AC-21a.','N/A','Determine if authorized users are enabled to determine whether access authorizations assigned to a sharing partner match the information''s access and use restrictions for [AC-21_ODP[01]; information-sharing circumstances where user discretion is required to determine whether access authorizations assigned to a sharing partner match the information''s access and use restrictions are defined].'), ('001471','draft','2009-09-29','DISA FSO','policy','Employ organization-defined automated mechanisms or manual processes required to assist users in making information sharing/collaboration decisions.','AC-21b.','N/A','Determine if [AC-21_ODP[02]; automated mechanisms or manual processes that assist users in making information-sharing and collaboration decisions are defined] are employed to assist users in making information-sharing and collaboration decisions.'), ('001472','draft','2009-09-29','DISA FSO','policy','Defines the automated mechanisms or manual processes required to assist users in making information sharing/collaboration decisions.','AC-21b.','N/A','Determine if [AC-21_ODP[02]; automated mechanisms or manual processes that assist users in making information-sharing and collaboration decisions are defined] are employed to assist users in making information-sharing and collaboration decisions.'), ('001473','draft','2009-09-29','DISA FSO','policy','Designate individuals authorized to post information onto a publicly accessible system.','AC-22a.','N/A','Determine if designated individuals are authorized to make information publicly accessible.'), ('001474','draft','2009-09-29','DISA FSO','policy','Train authorized individuals to ensure that publicly accessible information does not contain nonpublic information.','AC-22b.','N/A','Determine if authorized individuals are trained to ensure that publicly accessible information does not contain non-public information.'), ('001475','draft','2009-09-29','DISA FSO','policy','Review the proposed content of information prior to posting onto the publicly accessible system to ensure that nonpublic information is not included.','AC-22c.','N/A','Determine if the proposed content of information is reviewed prior to posting onto the publicly accessible system to ensure that non-public information is not included.'), ('001476','draft','2009-09-29','DISA FSO','policy','Review the content on the publicly accessible system for nonpublic information on an organization-defined frequency.','AC-22d.','N/A','Determine if: - the content on the publicly accessible system is reviewed for non-public information [AC-22_ODP; the frequency at which to review the content on the publicly accessible system for non-public information is defined]. - non-public information is removed from the publicly accessible system, if discovered.'), ('001477','draft','2009-09-29','DISA FSO','policy','Defines a frequency for reviewing the content on the publicly accessible system for nonpublic information.','AC-22d.','N/A','Determine if: - the content on the publicly accessible system is reviewed for non-public information [AC-22_ODP; the frequency at which to review the content on the publicly accessible system for non-public information is defined]. - non-public information is removed from the publicly accessible system, if discovered.'), ('001478','draft','2009-09-29','DISA FSO','policy','Remove nonpublic information from the publicly accessible system, if discovered.','AC-22d.','N/A','Determine if: - the content on the publicly accessible system is reviewed for non-public information [AC-22_ODP; the frequency at which to review the content on the publicly accessible system for non-public information is defined]. - non-public information is removed from the publicly accessible system, if discovered.'), ('001481','draft','2009-09-29','DISA FSO','policy','Provide organization-defined personnel or roles with initial training in the employment and operation of environmental controls.','AT-03(01)','N/A','Determine if [AT-03(01)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of environmental controls are defined] are provided with initial and refresher training [AT-03(01)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of environmental controls is defined] in the employment and operation of environmental controls.'), ('001482','draft','2009-09-29','DISA FSO','policy','Provide organization-defined personnel or roles with refresher training in the employment and operation of environmental controls in accordance with the organization-defined frequency.','AT-03(01)','N/A','Determine if [AT-03(01)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of environmental controls are defined] are provided with initial and refresher training [AT-03(01)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of environmental controls is defined] in the employment and operation of environmental controls.'), ('001483','draft','2009-09-29','DISA FSO','policy','Defines a frequency for providing employees with refresher training in the employment and operation of environmental controls.','AT-03(01)','N/A','Determine if [AT-03(01)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of environmental controls are defined] are provided with initial and refresher training [AT-03(01)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of environmental controls is defined] in the employment and operation of environmental controls.'), ('001484','draft','2009-09-29','DISA FSO','policy','Defines the frequency of (or situation requiring) logging for each identified event.','AU-02c.','N/A','Determine if: - [AU-02_ODP[02]; the event types (subset of AU-02_ODP[01]) for logging within the system are defined] are specified for logging within the system. - the specified event types are logged within the system [AU-02_ODP[03]; the frequency or situation requiring logging for each specified event type is defined].'), ('001485','draft','2009-09-29','DISA FSO','policy','Defines the event types for logging within the system.','AU-02c.','N/A','Determine if: - [AU-02_ODP[02]; the event types (subset of AU-02_ODP[01]) for logging within the system are defined] are specified for logging within the system. - the specified event types are logged within the system [AU-02_ODP[03]; the frequency or situation requiring logging for each specified event type is defined].'), ('001487','draft','2009-09-29','DISA FSO','technical','Ensure that audit records containing information that establishes the identity of any individuals, subjects, or objects/entities associated with the event.','AU-03f.','N/A','Determine if audit records contain information that establishes the identity of any individuals, subjects, or objects/entities associated with the event.'), ('001488','draft','2009-09-29','DISA FSO','policy','Defines the additional information to be included in the audit records.','AU-03(01)','N/A','Determine if generated audit records contain the following [AU-03(01)_ODP; additional information to be included in audit records is defined].'), ('001490','draft','2009-09-29','DISA FSO','policy','Defines the actions to be taken by the system upon audit failure, including shutting down the system, overwriting oldest audit records, and stopping the generation of audit records.','AU-05b.','N/A','Determine if [AU-05_ODP[03]; additional actions to be taken in the event of an audit logging process failure are defined] are taken in the event of an audit logging process failure.'), ('001491','draft','2009-09-29','DISA FSO','policy','Correlate information from audit records with information obtained from monitoring physical access to further enhance the ability to identify suspicious, inappropriate, unusual, or malevolent activity.','AU-06(06)','N/A','Determine if information from audit records is correlated with information obtained from monitoring physical access to further enhance the ability to identify suspicious, inappropriate, unusual, or malevolent activity.'), ('001493','draft','2009-09-29','DISA FSO','technical','Protect audit tools from unauthorized access.','AU-09a.','N/A','Determine if audit information and audit logging tools are protected from unauthorized access, modification, and deletion.'), ('001494','draft','2009-09-29','DISA FSO','technical','Protect audit tools from unauthorized modification.','AU-09a.','N/A','Determine if audit information and audit logging tools are protected from unauthorized access, modification, and deletion.'), ('001495','draft','2009-09-29','DISA FSO','technical','Protect audit tools from unauthorized deletion.','AU-09a.','N/A','Determine if audit information and audit logging tools are protected from unauthorized access, modification, and deletion.'), ('001496','draft','2009-09-29','DISA FSO','technical','Implement cryptographic mechanisms to protect the integrity of audit tools.','AU-09(03)','N/A','Determine if cryptographic mechanisms to protect the integrity of audit information and audit tools are implemented.'), ('001497','draft','2009-09-29','DISA FSO','policy','Defines a frequency for the review and update to the baseline configuration of the system.','CM-02b.01','N/A','Determine if the baseline configuration of the system is reviewed and updated [CM-02_ODP[01]; the frequency of baseline configuration review and update is defined].'), ('001498','draft','2009-09-29','DISA FSO','policy','Defines a time period after which proposed changes to the system that have not been approved or disapproved are highlighted.','CM-03(01)(c)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to highlight proposed changes to the system that have not been approved or disapproved within [CM-03(01)_ODP[03]l the time period after which to highlight changes that have not been approved or disapproved is defined].'), ('001499','draft','2009-09-29','DISA FSO','technical','Limit privileges to change software resident within software libraries.','CM-05(06)','N/A','Determine if privileges to change software resident within software libraries are limited.'), ('001504','draft','2009-11-02','DISA FSO','policy','Develop and document an organization-level; mission/business process-level; and/or system-level personnel security policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PS-01a.01(a)','N/A','Determine if: - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses purpose. - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses scope. - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses roles. - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses responsibilities. - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses management commitment. - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses coordination among organizational entities. - the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy addresses compliance.'), ('001505','draft','2009-11-02','DISA FSO','policy','Disseminate an organization-level; mission/business process-level; and/or system-level personnel security policy to organization-defined personnel or roles.','PS-01a.','N/A','Determine if: - a personnel security policy is developed and documented. - the personnel security policy is disseminated to [PS-01_ODP[01]; personnel or roles to whom the personnel security policy is to be disseminated is/are defined].'), ('001506','draft','2009-11-02','DISA FSO','policy','Review and update the current personnel security policy in accordance with organization-defined frequency.','PS-01c.01','N/A','Determine if: - the current personnel security policy is reviewed and updated [PS-01_ODP[05]; the frequency at which the current personnel security policy is reviewed and updated is defined]. - the current personnel security policy is reviewed and updated following [PS-01_ODP[06]; events that would require the current personnel security policy to be reviewed and updated are defined].'), ('001507','draft','2009-11-02','DISA FSO','policy','Defines the frequency with which to review and update the current personnel security policy.','PS-01c.01','N/A','Determine if: - the current personnel security policy is reviewed and updated [PS-01_ODP[05]; the frequency at which the current personnel security policy is reviewed and updated is defined]. - the current personnel security policy is reviewed and updated following [PS-01_ODP[06]; events that would require the current personnel security policy to be reviewed and updated are defined].'), ('001508','draft','2009-11-02','DISA FSO','policy','Defines the frequency with which to review and update the current personnel security procedures.','PS-01c.02','N/A','Determine if: - the current personnel security procedures are reviewed and updated [PS-01_ODP[07]; the frequency at which the current personnel security procedures are reviewed and updated is defined]. - the current personnel security procedures are reviewed and updated following [PS-01_ODP[08]; events that would require the personnel security procedures to be reviewed and updated are defined].'), ('001509','draft','2009-11-02','DISA FSO','policy','Develop and document procedures to facilitate the implementation of the personnel security policy and associated personnel security controls.','PS-01a.02','N/A','Determine if: - Determine if personnel security procedures to facilitate the implementation of the personnel security policy and associated personnel security controls are developed and documented. - the personnel security procedures are disseminated to [PS-01_ODP[02]; personnel or roles to whom the personnel security procedures are to be disseminated is/are defined].'), ('001510','draft','2009-11-02','DISA FSO','policy','Disseminate personnel security procedures to organization-defined personnel or roles.','PS-01a.02','N/A','Determine if: - Determine if personnel security procedures to facilitate the implementation of the personnel security policy and associated personnel security controls are developed and documented. - the personnel security procedures are disseminated to [PS-01_ODP[02]; personnel or roles to whom the personnel security procedures are to be disseminated is/are defined].'), ('001511','draft','2009-11-02','DISA FSO','policy','Review and update the current personnel security procedures in accordance with organization-defined frequency.',NULL,'N/A',NULL), ('001512','draft','2009-11-02','DISA FSO','policy','Assign a risk designation to all organizational positions.','PS-02a.','N/A','Determine if a risk designation is assigned to all organizational positions.'), ('001513','draft','2009-11-02','DISA FSO','policy','Establish screening criteria for individuals filling organizational positions.','PS-02b.','N/A','Determine if screening criteria are established for individuals filling organizational positions.'), ('001514','draft','2009-11-02','DISA FSO','policy','Review and update position risk designations in accordance with organization-defined frequency.','PS-02c.','N/A','Determine if position risk designations are reviewed and updated [PS-02_ODP; the frequency at which to review and update position risk designations is defined].'), ('001515','draft','2009-11-02','DISA FSO','policy','Defines the frequency with which to review and update position risk designations.','PS-02c.','N/A','Determine if position risk designations are reviewed and updated [PS-02_ODP; the frequency at which to review and update position risk designations is defined].'), ('001516','draft','2009-11-02','DISA FSO','policy','Screen individuals prior to authorizing access to the system.','PS-03a.','N/A','Determine if individuals are screened prior to authorizing access to the system.'), ('001517','draft','2009-11-02','DISA FSO','policy','Rescreen individuals with authorized access to the system in accordance with organization-defined conditions requiring rescreening, and where rescreening is so indicated, on the organization-defined frequency of rescreening.','PS-03b.','N/A','Determine if: - individuals are rescreened in accordance with [PS-03_ODP[01]; conditions requiring rescreening of individuals are defined]. - where rescreening is so indicated, individuals are rescreened [PS-03_ODP[02]; the frequency of rescreening individuals where it is so indicated is defined].'), ('001518','draft','2009-11-02','DISA FSO','policy','Defines the conditions requiring rescreening of individuals with authorized access to the system.','PS-03b.','N/A','Determine if: - individuals are rescreened in accordance with [PS-03_ODP[01]; conditions requiring rescreening of individuals are defined]. - where rescreening is so indicated, individuals are rescreened [PS-03_ODP[02]; the frequency of rescreening individuals where it is so indicated is defined].'), ('001519','draft','2009-11-02','DISA FSO','policy','Defines the frequency for rescreening individuals with authorized access to the information system when organization-defined conditions requiring rescreening are met.','PS-03b.','N/A','Determine if: - individuals are rescreened in accordance with [PS-03_ODP[01]; conditions requiring rescreening of individuals are defined]. - where rescreening is so indicated, individuals are rescreened [PS-03_ODP[02]; the frequency of rescreening individuals where it is so indicated is defined].'), ('001520','draft','2009-11-02','DISA FSO','policy','Verify that individuals accessing a system processing, storing, or transmitting classified information are cleared and indoctrinated to the highest classification level of the information to which they have access on the system.','PS-03(01)','N/A','Determine if: - individuals accessing a system processing, storing, or transmitting classified information are cleared. - individuals accessing a system processing, storing, or transmitting classified information are indoctrinated to the highest classification level of the information to which they have access on the system.'), ('001521','draft','2009-11-02','DISA FSO','policy','Verify that individuals accessing a system processing, storing, or transmitting types of classified information which require formal indoctrination, are formally indoctrinated for all of the relevant types of information to which they have access on the system.','PS-03(02)','N/A','Determine if individuals accessing a system processing, storing, or transmitting types of classified information that require formal indoctrination are formally indoctrinated for all of the relevant types of information to which they have access on the system.'), ('001522','draft','2009-11-02','DISA FSO','policy','Upon termination of individual employment, disable system access within an organization-defined time period.','PS-04a.','N/A','Determine if upon termination of individual employment, system access is disabled within [PS-04_ODP[01]; a time period within which to disable system access is defined].'), ('001523','draft','2009-11-02','DISA FSO','policy','Upon termination of individual employment, conduct exit interviews that include a discussion of organization-defined information security topics.','PS-04c.','N/A','Determine if upon termination of individual employment, exit interviews that include a discussion of [PS-04_ODP[02]; information security topics to be discussed when conducting exit interviews are defined] are conducted.'), ('001524','draft','2009-11-02','DISA FSO','policy','Upon termination of individual employment, retrieve all security-related organizational system-related property.','PS-04d.','N/A','Determine if upon termination of individual employment, all security-related organizational system-related property is retrieved.'), ('001525','draft','2009-11-02','DISA FSO','policy','Upon termination of individual employment, retain access to organizational information formerly controlled by the terminated individual.','PS-04e.','N/A','Determine if upon termination of individual employment, access to organizational information and systems formerly controlled by the terminated individual are retained.'), ('001526','draft','2009-11-02','DISA FSO','policy','Upon termination of individual employment, retain access to organizational systems formerly controlled by the terminated individual.','PS-04e.','N/A','Determine if upon termination of individual employment, access to organizational information and systems formerly controlled by the terminated individual are retained.'), ('001527','draft','2009-11-03','DISA FSO','policy','Review and confirm the ongoing operational need for current logical and physical access authorizations to systems and facilities when individuals are reassigned or transferred to other positions within the organization.','PS-05a.','N/A','Determine if the ongoing operational need for current logical and physical access authorizations to systems and facilities are reviewed and confirmed when individuals are reassigned or transferred to other positions within the organization.'), ('001528','draft','2009-11-03','DISA FSO','policy','Initiate organization-defined transfer or reassignment actions within an organization-defined time period following the formal personnel transfer action.','PS-05b.','N/A','Determine if [PS-05_ODP[01]; transfer or reassignment actions to be initiated following transfer or reassignment are defined] are initiated within [PS-05_ODP[02]; the time period within which transfer or reassignment actions must occur following transfer or reassignment is defined].'), ('001529','draft','2009-11-03','DISA FSO','policy','Defines transfer or reassignment actions to initiate within an organization-defined time period following the formal personnel transfer action.','PS-05b.','N/A','Determine if [PS-05_ODP[01]; transfer or reassignment actions to be initiated following transfer or reassignment are defined] are initiated within [PS-05_ODP[02]; the time period within which transfer or reassignment actions must occur following transfer or reassignment is defined].'), ('001530','draft','2009-11-03','DISA FSO','policy','Defines the time period within which the organization initiates organization-defined transfer or reassignment actions following the formal personnel transfer action.','PS-05b.','N/A','Determine if [PS-05_ODP[01]; transfer or reassignment actions to be initiated following transfer or reassignment are defined] are initiated within [PS-05_ODP[02]; the time period within which transfer or reassignment actions must occur following transfer or reassignment is defined].'), ('001532','draft','2009-11-03','DISA FSO','policy','Review and update the access agreements for organizational systems in accordance with organization-defined frequency.','PS-06b.','N/A','Determine if the access agreements are reviewed and updated [PS-06_ODP[01]; the frequency at which to review and update access agreements is defined].'), ('001533','draft','2009-11-03','DISA FSO','policy','Defines the frequency with which to review and update access agreements for organizational systems.','PS-06b.','N/A','Determine if the access agreements are reviewed and updated [PS-06_ODP[01]; the frequency at which to review and update access agreements is defined].'), ('001536','draft','2009-11-03','DISA FSO','policy','Verify that access to classified information requiring special protection is granted only to individuals who have a valid access authorization that is demonstrated by assigned official government duties.','PS-06(02)(a)','N/A','Determine if access to classified information requiring special protection is granted only to individuals who have a valid access authorization that is demonstrated by assigned official government duties.'), ('001537','draft','2009-11-03','DISA FSO','policy','Verify that access to classified information requiring special protection is granted only to individuals who satisfy associated personnel security criteria.','PS-06(02)(b)','N/A','Determine if access to classified information requiring special protection is granted only to individuals who satisfy associated personnel security criteria.'), ('001538','draft','2009-11-03','DISA FSO','policy','Verify that access to classified information requiring special protection is granted only to individuals who have read, understood, and signed a nondisclosure agreement.','PS-06(02)(c)','N/A','Determine if access to classified information requiring special protection is granted only to individuals who have read, understood, and signed a non-disclosure agreement.'), ('001539','draft','2009-11-03','DISA FSO','policy','Establish personnel security requirements including security roles and responsibilities for external providers.','PS-07a.','N/A','Determine if personnel security requirements are established, including security roles and responsibilities for external providers.'), ('001540','draft','2009-11-03','DISA FSO','policy','Document personnel security requirements.','PS-07c.','N/A','Determine if personnel security requirements are documented.'), ('001541','draft','2009-11-03','DISA FSO','policy','Monitor provider compliance with personnel security requirements.','PS-07e.','N/A','Determine if provider compliance with personnel security requirements is monitored.'), ('001544','draft','2009-11-30','DISA FSO','policy','Manage system authenticators by ensuring that authenticators have sufficient strength of mechanism for their intended use.','IA-05c.','N/A','Determine if system authenticators are managed to ensure that authenticators have sufficient strength of mechanism for their intended use.'), ('001545','draft','2010-05-11','DISA FSO','policy','Defines a frequency for reviewing and updating the access control policy.','AC-01c.01','N/A','Determine if: - the current access control policy is reviewed and updated [AC-01_ODP[05]; the frequency at which the current access control policy is reviewed and updated is defined]. - the current access control policy is reviewed and updated following [AC-01_ODP[06]; events that would require the current access control policy to be reviewed and updated are defined].'), ('001546','draft','2010-05-11','DISA FSO','policy','Defines a frequency for reviewing and updating the access control procedures.','AC-01c.02','N/A','Determine if: - the current access control procedures are reviewed and updated [AC-01_ODP[07]; the frequency at which the current access control procedures are reviewed and updated is defined;]. - the current access control procedures are reviewed and updated following [AC-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('001547','draft','2010-05-11','DISA FSO','policy','Defines the frequency on which it will review information system accounts for compliance with account management requirements.','AC-02j.','N/A','Determine if accounts are reviewed for compliance with account management requirements [AC-02_ODP[10]; the frequency of account review is defined].'), ('001548','draft','2010-05-11','DISA FSO','policy','Defines the information flow control policies for controlling the flow of information within the system.','AC-04','N/A','Determine if approved authorizations are enforced for controlling the flow of information within the system and between connected systems based on [AC-04_ODP; information flow control policies within the system and between connected systems are defined].'), ('001549','draft','2010-05-11','DISA FSO','policy','Defines the information flow control policies for controlling the flow of information between interconnected systems.','AC-04','N/A','Determine if approved authorizations are enforced for controlling the flow of information within the system and between connected systems based on [AC-04_ODP; information flow control policies within the system and between connected systems are defined].'), ('001553','draft','2010-05-11','DISA FSO','policy','Defines security or privacy policy filters that privileged administrators have the capability to enable and disable.','AC-04(10)','N/A','Determine if: - capability is provided for privileged administrators to enable and disable [AC-04(10)_ODP[01]; security policy filters that privileged administrators have the capability to enable and disable are defined] under [AC-04(10)_ODP[03]; conditions under which privileged administrators have the capability to enable and disable security policy filters are defined]. - capability is provided for privileged administrators to enable and disable [AC-04(10)_ODP[02]; privacy policy filters that privileged administrators have the capability to enable and disable are defined] under [AC-04(10)_ODP[04]; conditions under which privileged administrators have the capability to enable and disable privacy policy filters are defined].'), ('001554','draft','2010-05-11','DISA FSO','policy','Defines the security or privacy policy filters that privileged administrators have the capability to configure.','AC-04(11)','N/A','Determine if: - capability is provided for privileged administrators to configure [AC-04(11)_ODP[01]; security policy filters that privileged administrators have the capability to configure to support different security and privacy policies are defined] to support different security or privacy policies. - capability is provided for privileged administrators to configure [AC-04(11)_ODP[02]; privacy policy filters that privileged administrators have the capability to configure to support different security and privacy policies are defined] to support different security or privacy policies.'), ('001558','draft','2010-05-11','DISA FSO','policy','Defines the security functions (deployed in hardware, software, and firmware) for which access must be authorized.','AC-06(01)(a)','N/A','Determine if: - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[02]; security functions (deployed in hardware) for authorized access are defined]. - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[03]; security functions (deployed in software) for authorized access are defined]. - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[04]; security functions (deployed in firmware) for authorized access are defined].'), ('001564','draft','2010-05-11','DISA FSO','policy','Defines the frequency of security awareness and training policy reviews and updates.','AT-01c.01','N/A','Determine if: - the current awareness and training policy is reviewed and updated [AT-01_ODP[05]; the frequency at which the current awareness and training policy is reviewed and updated is defined]. - the current awareness and training policy is reviewed and updated following [AT-01_ODP[06]; events that would require the current awareness and training policy to be reviewed and updated are defined].'), ('001565','draft','2010-05-11','DISA FSO','policy','Defines the frequency of security awareness and training procedure reviews and updates.','AT-01c.02','N/A','Determine if: - the current awareness and training procedures are reviewed and updated [AT-01_ODP[07]; the frequency at which the current awareness and training procedures are reviewed and updated is defined]. - the current awareness and training procedures are reviewed and updated following [AT-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('001566','draft','2010-05-11','DISA FSO','policy','Provide organization-defined personnel or roles with initial training in the employment and operation of physical security controls.','AT-03(02)','N/A','Determine if [AT-03(02)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of physical security controls is/are defined] is/are provided with initial and refresher training [AT-03(02)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of physical security controls is defined] in the employment and operation of physical security controls.'), ('001567','draft','2010-05-11','DISA FSO','policy','Provide organization-defined personnel or roles with refresher training, thereafter, in the employment and operation of physical security controls in accordance with the organization-defined frequency.','AT-03(02)','N/A','Determine if [AT-03(02)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of physical security controls is/are defined] is/are provided with initial and refresher training [AT-03(02)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of physical security controls is defined] in the employment and operation of physical security controls.'), ('001568','draft','2010-05-11','DISA FSO','policy','Defines a frequency for providing employees with refresher training in the employment and operation of physical security controls.','AT-03(02)','N/A','Determine if [AT-03(02)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of physical security controls is/are defined] is/are provided with initial and refresher training [AT-03(02)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of physical security controls is defined] in the employment and operation of physical security controls.'), ('001569','draft','2010-05-11','DISA FSO','policy','Defines the frequency on which the current audit and accountability policy will be reviewed and updated.','AU-01c.01','N/A','Determine if: - the current audit and accountability policy is reviewed and updated [AU-01_ODP[05]; the frequency at which the current audit and accountability policy is reviewed and updated is defined]. - the current audit and accountability policy is reviewed and updated following [AU-01_ODP[06]; events that would require the current audit and accountability policy to be reviewed and updated are defined.]'), ('001570','draft','2010-05-11','DISA FSO','policy','Defines the frequency on which the current audit and accountability procedures will be reviewed and updated.','AU-01c.02','N/A','Determine if: - the current audit and accountability procedures are reviewed and updated [AU-01_ODP[07]; the frequency at which the current audit and accountability procedures are reviewed and updated is defined]. - the current audit and accountability procedures are reviewed and updated following [AU-01_ODP[08]; events that would require audit and accountability procedures to be reviewed and updated are defined].'), ('001571','draft','2010-05-11','DISA FSO','policy','Defines the event types that the system is capable of logging in support of the audit function.','AU-02a.','N/A','Determine if [AU-02_ODP[01]; the event types that the system is capable of logging in support of the audit function are defined] that the system is capable of logging are identified in support of the audit logging function.'), ('001572','draft','2010-05-11','DISA FSO','policy','Defines the personnel or roles to be alerted in the event of an audit logging process failure.','AU-05a.','N/A','Determine if [AU-05_ODP[01]; personnel or roles receiving audit logging process failure alerts are defined] are alerted in the event of an audit logging process failure within [AU-05_ODP[02]; time period for personnel or roles receiving audit logging process failure alerts is defined].'), ('001573','draft','2010-05-11','DISA FSO','policy','Defines whether to reject or delay network traffic that exceeds organization-defined thresholds.','AU-05(03)','N/A','Determine if: - configurable network communications traffic volume thresholds reflecting limits on audit log storage capacity are enforced. - network traffic is [AU-05(03)_ODP; one or more of the following PARAMETER VALUES is/are selected: {reject; delay}] if network traffic volume is above configured thresholds.'), ('001577','draft','2010-05-11','DISA FSO','policy','Defines the system components from which audit records are to be compiled into the system-wide audit trail.','AU-12(01)','N/A','Determine if audit records from [AU-12(01)_ODP[01]; system components from which audit records are to be compiled into a system-wide (logical or physical) audit trail are defined] are compiled into a system-wide (logical or physical) audit trail that is time-correlated to within [AU-12(01)_ODP[02]; level of tolerance for the relationship between timestamps of individual records in the audit trail is defined].'), ('001578','draft','2010-05-11','DISA FSO','policy','Defines the frequency to review and update the current assessment, authorization, and monitoring procedures.','CA-01c.02','N/A','Determine if: - the current assessment, authorization, and monitoring procedures are reviewed and updated [CA-01_ODP[07]; the frequency at which the current assessment, authorization, and monitoring procedures are reviewed and updated is defined]. - the current assessment, authorization, and monitoring procedures are reviewed and updated following [CA-01_ODP[08]; events that would require assessment, authorization, and monitoring procedures to be reviewed and updated are defined].'), ('001582','draft','2010-05-11','DISA FSO','policy','Defines other forms of control assessments other than in-depth monitoring; security instrumentation; automated security test cases; vulnerability scanning; malicious user testing; insider threat assessment; performance and load testing; data leakage or data loss assessment that should be included as part of the control assessments.','CA-02(02)','N/A','Determine if [CA-02(02)_ODP[01]; frequency at which to include specialized assessments as part of the control assessment is defined] [CA-02(02)_ODP[02]; one of the following PARAMETER VALUES is selected: {announced; unannounced}] [CA-02(02)_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {in-depth monitoring; security instrumentation; automated security test cases; vulnerability scanning; malicious user testing; insider threat assessment; performance and load testing; data leakage or data loss assessment; [CA-02(02)_ODP[04]; other forms of assessment are defined (if selected)]}] are included as part of control assessments.'), ('001584','draft','2010-05-11','DISA FSO','policy','Defines the frequency with which to review and update configuration management procedures.','CM-01c.02','N/A','Determine if: - the current configuration management procedures are reviewed and updated [CM-01_ODP[07]; the frequency at which the current configuration management procedures are reviewed and updated is defined]. - the current configuration management procedures are reviewed and updated following [CM-01_ODP[08]; events that would require configuration management procedures to be reviewed and updated are defined].'), ('001585','draft','2010-05-12','DISA FSO','policy','Defines the circumstances that require reviews and updates to the baseline configuration of the system.','CM-02b.02','N/A','Determine if the baseline configuration of the system is reviewed and updated when required due to [CM-02_ODP[02]; the circumstances requiring baseline configuration review and update are defined].'), ('001586','draft','2010-05-12','DISA FSO','policy','Defines the configuration change control element responsible for coordinating and providing oversight for configuration change control activities.','CM-03g.','N/A','Determine if: - configuration change control activities are coordinated and overseen by [CM-03_ODP[02]; the configuration change control element responsible for coordinating and overseeing change control activities is defined]. - the configuration control element convenes [CM-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[CM-03_ODP[04]; the frequency at which the configuration control element convenes is defined (if selected)]; when [CM-03_ODP[05]; configuration change conditions that prompt the configuration control element to convene are defined (if selected)]}]].'), ('001592','draft','2010-05-12','DISA FSO','policy','Defines the rules authorizing the terms and conditions of software program usage on the system.','CM-07(02)','N/A','Determine if program execution is prevented in accordance with [CM-07(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[CM-07(02)_ODP[02]; policies, rules of behavior, and/or access agreements regarding software program usage and restrictions are defined (if selected)]; rules authorizing the terms and conditions of software program usage}].'), ('001596','draft','2010-05-12','DISA FSO','policy','Defines the frequency with which to review and update the current contingency planning procedures.','CP-01c.02','N/A','Determine if: - the current contingency planning procedures are reviewed and updated [CP-01_ODP[07]; the frequency at which the current contingency planning procedures are reviewed and updated is defined]. - the current contingency planning procedures are reviewed and updated following [CP-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('001597','draft','2010-05-12','DISA FSO','policy','Disseminate contingency planning procedures to organization-defined personnel or roles.','CP-01a.02','N/A','Determine if: - contingency planning procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls are developed and documented. - the contingency planning procedures are disseminated to [CP-01_ODP[02]; personnel or roles to whom the contingency planning procedures are to be disseminated is/are defined].'), ('001598','draft','2010-05-12','DISA FSO','policy','Review and update the current contingency planning procedures in accordance with the organization-defined frequency.','CP-01c.02','N/A','Determine if: - the current contingency planning procedures are reviewed and updated [CP-01_ODP[07]; the frequency at which the current contingency planning procedures are reviewed and updated is defined]. - the current contingency planning procedures are reviewed and updated following [CP-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('001599','draft','2010-05-12','DISA FSO','policy','Sustain operational continuity of essential missions until full system restoration at primary processing and/or storage sites.','CP-02(05)','N/A','Determine if: - the continuance of [CP-02(05)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions with minimal or no loss of operational continuity is planned for. - continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('001600','draft','2010-05-12','DISA FSO','policy','Sustains operational continuity of essential business functions until full system restoration at primary processing and/or storage sites.','CP-02(05)','N/A','Determine if: - the continuance of [CP-02(05)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions with minimal or no loss of operational continuity is planned for. - continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('001601','draft','2010-05-12','DISA FSO','policy','Sustain operational continuity of essential mission functions at alternate processing and/or storage sites until system restoration to primary processing and/or storage sites.','CP-02(06)','N/A','Determine if: - the transfer of [CP-02(06)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions to alternate processing and/or storage sites with minimal or no loss of operational continuity is planned for. - operational continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('001602','draft','2010-05-12','DISA FSO','policy','Sustain operational continuity of essential business functions at alternate processing and/or storage sites until system restoration at primary processing and/or storage sites.','CP-02(06)','N/A','Determine if: - the transfer of [CP-02(06)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions to alternate processing and/or storage sites with minimal or no loss of operational continuity is planned for. - operational continuity is sustained until full system restoration at primary processing and/or storage sites.'), ('001604','draft','2010-05-12','DISA FSO','policy','Outline explicit mitigation actions for potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster.','CP-06(03)','N/A','Determine if: - potential accessibility problems to the alternate storage site in the event of an area-wide disruption or disaster are identified. - explicit mitigation actions to address identified accessibility problems are outlined.'), ('001606','draft','2010-05-12','DISA FSO','policy','Identify potential accessibility problems to outline explicit mitigation actions.','CP-07(02)','N/A','Determine if: - potential accessibility problems to alternate processing sites in the event of an area-wide disruption or disaster are identified. - explicit mitigation actions to address identified accessibility problems are outlined.'), ('001609','draft','2010-05-12','DISA FSO','policy','Activate the redundant secondary system that is not collocated with the primary system without loss of information or disruption to operations.','CP-09(06)','N/A','Determine if: - system backup is conducted by maintaining a redundant secondary system that is not collocated with the primary system. - system backup is conducted by maintaining a redundant secondary system that can be activated without loss of information or disruption to operations.'), ('001610','draft','2010-05-12','DISA FSO','policy','Defines the time-period (by authenticator type) for changing/refreshing authenticators.','IA-05f.','N/A','Determine if system authenticators are managed through the change or refreshment of authenticators [IA-05_ODP[01]; a time period for changing or refreshing authenticators by authenticator type is defined] or when [IA-05_ODP[02]; events that trigger the change or refreshment of authenticators are defined] occur.'), ('001621','draft','2010-05-12','DISA FSO','policy','Implement organization-defined security controls to manage the risk of compromise due to individuals having accounts on multiple systems.','IA-05(08)','N/A','Determine if [IA-05(08)_ODP; security controls implemented to manage the risk of compromise due to individuals having accounts on multiple systems are defined] are implemented to manage the risk of compromise due to individuals having accounts on multiple systems.'), ('001625','draft','2010-05-12','DISA FSO','policy','Implement the resulting incident handling activity changes to incident response procedures, training, and testing accordingly.','IR-04c.','N/A','Determine if: - lessons learned from ongoing incident handling activities are incorporated into incident response procedures, training, and testing. - the changes resulting from the incorporated lessons learned are implemented accordingly.'), ('001628','draft','2010-05-12','DISA FSO','policy','Defines a frequency with which to review and update the current maintenance procedures.','MA-01c.02','N/A','Determine if: - the current maintenance procedures are reviewed and updated [MA-01_ODP[07]; the frequency with which the current maintenance procedures are reviewed and updated is defined]. - the current maintenance procedures are reviewed and updated following [MA-01_ODP[08]; events that would require the maintenance procedures to be reviewed and updated are defined].'), ('001631','draft','2010-05-12','DISA FSO','policy','After the service is performed, inspect and sanitize the component (for potentially malicious software) before reconnecting the component to the system.','MA-04(03)(b)','N/A','Determine if: - the component to be serviced is removed from the system prior to nonlocal maintenance or diagnostic services. - the component to be serviced is sanitized (for organizational information). - the component is inspected and sanitized (for potentially malicious software) after the service is performed and before reconnecting the component to the system.'), ('001632','draft','2010-05-12','DISA FSO','technical','Protect nonlocal maintenance sessions by separating the maintenance session from other network sessions with the system by either physically separated communications paths or logically separated communications paths based upon encryption.','MA-04(04)(b)(01)','N/A','Determine if nonlocal maintenance sessions are protected by separating maintenance sessions from other network sessions with the system by physically separated communication paths.'), ('001635','draft','2010-05-12','DISA FSO','policy','Remove individuals from the facility access list when access is no longer required.','PE-02d.','N/A','Determine if individuals are removed from the facility access list when access is no longer required.'), ('001636','draft','2010-05-12','DISA FSO','policy','Defines the frequency with which to review and update the current planning policy.','PL-01c.01','N/A','Determine if: - the current planning policy is reviewed and updated [PL-01_ODP[05]; the frequency with which the current planning policy is reviewed and updated is defined]. - the current planning policy is reviewed and updated following [PL-01_ODP[06]; events that would require the current planning policy to be reviewed and updated are defined].'), ('001637','draft','2010-05-12','DISA FSO','policy','Review and update the current planning policy in accordance with organization-defined frequency.','PL-01c.01','N/A','Determine if: - the current planning policy is reviewed and updated [PL-01_ODP[05]; the frequency with which the current planning policy is reviewed and updated is defined]. - the current planning policy is reviewed and updated following [PL-01_ODP[06]; events that would require the current planning policy to be reviewed and updated are defined].'), ('001638','draft','2010-05-12','DISA FSO','policy','Defines the frequency with which to review and update the current planning procedures.','PL-01c.02','N/A','Determine if: - the current planning procedures are reviewed and updated [PL-01_ODP[07]; the frequency with which the current planning procedures are reviewed and updated is defined]. - the current planning procedures are reviewed and updated following [PL-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('001640','draft','2010-05-12','DISA FSO','policy','Address information security issues in the updating of a critical infrastructure and key resources protection plan.','PM-08','N/A','Determine if: - information security issues are addressed in the development of a critical infrastructure and key resources protection plan. - information security issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - information security issues are addressed in the update of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the development of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the update of a critical infrastructure and key resources protection plan.'), ('001641','draft','2010-05-12','DISA FSO','policy','Defines the process for conducting random vulnerability scans on the system and hosted applications.','RA-05a.','N/A','Determine if: - systems and hosted applications are monitored for vulnerabilities [RA-05_ODP[01]; frequency for monitoring systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported. - systems and hosted applications are scanned for vulnerabilities [RA-05_ODP[02]; frequency for scanning systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported.'), ('001642','draft','2010-05-12','DISA FSO','policy','Defines the organizational document in which risk assessment results are documented (e.g., security plan, privacy plan; risk assessment report).',NULL,'N/A',NULL), ('001643','draft','2010-05-12','DISA FSO','policy','Monitor and scan for vulnerabilities in the system and hosted applications in accordance with the organization-defined process for random scans.','RA-05a.','N/A','Determine if: - systems and hosted applications are monitored for vulnerabilities [RA-05_ODP[01]; frequency for monitoring systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported. - systems and hosted applications are scanned for vulnerabilities [RA-05_ODP[02]; frequency for scanning systems and hosted applications for vulnerabilities is defined] and when new vulnerabilities potentially affecting the system are identified and reported.'), ('001645','draft','2010-05-12','DISA FSO','policy','The organization identifies the information system components to which privileged access is authorized for selected organization-defined vulnerability scanning activities.','RA-05(05)','N/A','Determine if privileged access authorization is implemented to [RA-05(05)_ODP[01]; system components to which privileged access is authorized for selected vulnerability scanning activities are defined] for [RA-05(05)_ODP[02]; vulnerability scanning activities selected for privileged access authorization to system components are defined].'), ('001646','draft','2010-05-12','DISA FSO','policy','Defines the frequency with which to review and update the current system and services acquisition procedures.','SA-01c.02','N/A','Determine if: - the current system and services acquisition procedures are reviewed and updated [SA-01_ODP[07]; the frequency at which the current system and services acquisition procedures are reviewed and updated is defined]. - the current system and services acquisition procedures are reviewed and updated following [SA-01_ODP[08]; events that would require the system and services acquisition procedures to be reviewed and updated are defined].'), ('001661','draft','2010-05-12','DISA FSO','policy','Defines the security functions, to at a minimum, include system authentication and re-authentication, for permitting users to invoke the trusted communications path.','SC-11b.','N/A','Determine if users are permitted to invoke the trusted communication path for communications between the user and the [SC-11_ODP[02]; security functions of the system are defined] of the system, including authentication and re-authentication, at a minimum.'), ('001662','draft','2010-05-12','DISA FSO','technical','Take organization-defined corrective action when organization-defined unacceptable mobile code is identified.','SC-18(01)','N/A','Determine if: - [SC-18(01)_ODP[01]; unacceptable mobile code to be identified is defined] is identified. - [SC-18(01)_ODP[02]; corrective actions to be taken when unacceptable mobile code is identified are defined] are taken if unacceptable mobile code is identified.'), ('001663','draft','2010-05-12','DISA FSO','technical','The information system, when operating as part of a distributed, hierarchical namespace, provides the means to enable verification of a chain of trust among parent and child domains (if the child supports secure resolution services).','SC-20b.','N/A','Determine if: - the means to indicate the security status of child zones (and if the child supports secure resolution services) is provided when operating as part of a distributed, hierarchical namespace. - the means to enable verification of a chain of trust among parent and child domains when operating as part of a distributed, hierarchical namespace is provided.'), ('001664','draft','2010-05-12','DISA FSO','technical','Recognize only session identifiers that are system-generated.','SC-23(03)','N/A','Determine if: - a unique session identifier is generated for each session with [SC-23(03)_ODP; randomness requirements for generating a unique session identifier for each session are defined]. - only system-generated session identifiers are recognized.'), ('001665','draft','2010-05-12','DISA FSO','technical','Preserve organization-defined system state information in the event of a system failure.','SC-24','N/A','Determine if [SC-24_ODP[01]; types of system failures for which the system components fail to a known state are defined] fail to a [SC-24_ODP[02]; known system state to which system components fail in the event of a system failure is defined] while preserving [SC-24_ODP[03]; system state information to be preserved in the event of a system failure is defined] in failure.'), ('001669','draft','2010-05-12','DISA FSO','policy','Defines the frequency of testing malicious code protection mechanisms.','SI-03(06)(a)','N/A','Determine if malicious code protection mechanisms are tested [SI-03(06)_ODP; the frequency at which to test malicious code protection mechanisms is defined] by introducing known benign code into the system.'), ('001670','draft','2010-05-12','DISA FSO','technical','Take organization-defined least-disruptive actions to terminate suspicious events.','SI-04(07)(b)','N/A','Determine if [SI-04(07)_ODP[02]; least-disruptive actions to terminate suspicious events are defined] are taken upon the detection of suspicious events.'), ('001671','draft','2010-05-12','DISA FSO','policy','Analyze outbound communications traffic at selected organization-defined interior points within the system to discover anomalies.','SI-04(11)','N/A','Determine if: - outbound communications traffic at the external interfaces to the system is analyzed to discover anomalies. - outbound communications traffic at [SI-04(11)_ODP; interior points within the system where communications traffic is to be analyzed are defined] is analyzed to discover anomalies. '), ('001673','draft','2010-05-12','DISA FSO','policy','Employ a wireless intrusion detection system to identify rogue wireless devices and to detect attack attempts and potential compromises or breaches to the system.','SI-04(14)','N/A','Determine if: - a wireless intrusion detection system is employed to identify rogue wireless devices. - a wireless intrusion detection system is employed to detect attack attempts on the system. - a wireless intrusion detection system is employed to detect potential compromises or breaches to the system.'), ('001675','draft','2010-05-12','DISA FSO','policy','Defines the personnel or roles that are to receive reports on the results of security function verification.','SI-06(03)','N/A','Determine if: - the results of security function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined]. - the results of privacy function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined].'), ('001678','draft','2010-05-12','DISA FSO','policy','Retain information within the system and information output from the system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and operational requirements.','SI-12','N/A','Determine if: - information within the system is managed in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements. - information within the system is retained in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements. - information output from the system is managed in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements. - information output from the system is retained in accordance with applicable laws, Executive Orders, directives, regulations, policies, standards, guidelines, and operational requirements.'), ('001680','draft','2010-06-09','DISA FSO','policy','Develop an organization-wide information security program plan that includes the identification and assignment of roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PM-01a.02','N/A','Determine if: - the information security program plan includes the identification and assignment of roles. - the information security program plan includes the identification and assignment of responsibilities. - the information security program plan addresses management commitment. - the information security program plan addresses coordination among organizational entities. - the information security program plan addresses compliance.'), ('001682','draft','2011-05-03','DISA FSO','technical','Automatically remove or disable emergency accounts after an organization-defined time period for each type of account.','AC-02(02)','N/A','Determine if temporary and emergency accounts are automatically [AC-02(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {remove; disable}] after [AC-02(02)_ODP[02]; the time period after which to automatically remove or disable temporary or emergency accounts is defined].'), ('001687','draft','2011-05-03','DISA FSO','policy','Verify that the use of mobile code deployed in system meets organization-defined mobile code requirements.','SC-18(02)','N/A','Determine if: - the acquisition of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the development of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the use of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined].'), ('001688','draft','2011-05-03','DISA FSO','policy','Verify the acquisition of mobile code deployed in the system meets organization-defined mobile code requirements.','SC-18(02)','N/A','Determine if: - the acquisition of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the development of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined]. - the use of mobile code to be deployed in the system meets [SC-18(02)_ODP; mobile code requirements for the acquisition, development, and use of mobile code to be deployed in the system are defined].'), ('001695','draft','2011-10-07','DISA FSO','technical','Prevent the execution of organization-defined unacceptable mobile code.','SC-18(03)','N/A','Determine if: - the download of [SC-18(03)_ODP; unacceptable mobile code to be prevented from downloading and executing is defined] is prevented. - the execution of [SC-18(03)_ODP; unacceptable mobile code to be prevented from downloading and executing is defined] is prevented.'), ('001726','draft','2013-02-28','DISA FSO','policy','Use software in accordance with contract agreements.','CM-10a.','N/A','Determine if software and associated documentation are used in accordance with contract agreements and copyright laws.'), ('001727','draft','2013-02-28','DISA FSO','policy','Use software documentation in accordance with contract agreements.','CM-10a.','N/A','Determine if software and associated documentation are used in accordance with contract agreements and copyright laws.'), ('001728','draft','2013-02-28','DISA FSO','policy','Use software in accordance with copyright laws.','CM-10a.','N/A','Determine if software and associated documentation are used in accordance with contract agreements and copyright laws.'), ('001729','draft','2013-02-28','DISA FSO','policy','Use software documentation in accordance with copyright laws.','CM-10a.','N/A','Determine if software and associated documentation are used in accordance with contract agreements and copyright laws.'), ('001730','draft','2013-02-28','DISA FSO','policy','Track the use of software protected by quantity licenses to control copying of the software.','CM-10b.','N/A','Determine if the use of software and associated documentation protected by quantity licenses is tracked to control copying and distribution.'), ('001731','draft','2013-02-28','DISA FSO','policy','Track the use of software documentation protected by quantity licenses to control distribution of the software documentation.','CM-10b.','N/A','Determine if the use of software and associated documentation protected by quantity licenses is tracked to control copying and distribution.'), ('001732','draft','2013-02-28','DISA FSO','policy','Control the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.','CM-10c.','N/A','Determine if the use of peer-to-peer file sharing technology is controlled and documented to ensure that peer-to-peer file sharing is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.'), ('001733','draft','2013-02-28','DISA FSO','policy','Document the use of peer-to-peer file sharing technology to ensure that this capability is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.','CM-10c.','N/A','Determine if the use of peer-to-peer file sharing technology is controlled and documented to ensure that peer-to-peer file sharing is not used for the unauthorized distribution, display, performance, or reproduction of copyrighted work.'), ('001734','draft','2013-02-28','DISA FSO','policy','Defines the restrictions to be followed on the use of open source software.','CM-10(01)','N/A','Determine if [CM-10(01)_ODP; restrictions on the use of open-source software are defined] are established for the use of open-source software.'), ('001735','draft','2013-02-28','DISA FSO','policy','Establish organization-defined restrictions on the use of open source software.','CM-10(01)','N/A','Determine if [CM-10(01)_ODP; restrictions on the use of open-source software are defined] are established for the use of open-source software.'), ('001736','draft','2013-02-28','DISA FSO','policy','Defines the number of previous versions of the baseline configuration of the system required to support rollback.','CM-02(03)','N/A','Determine if [CM-02(03)_ODP; the number of previous baseline configuration versions to be retained is defined] of previous baseline configuration version(s) of the system is/are retained to support rollback.'), ('001737','draft','2013-02-28','DISA FSO','policy','Defines the systems or system components that are to have organization-defined configurations applied when located in areas of significant risk.','CM-02(07)(a)','N/A','Determine if [CM-02(07)_ODP[01]; the systems or system components to be issued when individuals travel to high-risk areas are defined] with [CM-02(07)_ODP[02]; configurations for systems or system components to be issued when individuals travel to high-risk areas are defined] are issued to individuals traveling to locations that the organization deems to be of significant risk.'), ('001738','draft','2013-02-28','DISA FSO','policy','Defines the configurations to be implemented on systems and system components when they are located in areas of significant risk.','CM-02(07)(a)','N/A','Determine if [CM-02(07)_ODP[01]; the systems or system components to be issued when individuals travel to high-risk areas are defined] with [CM-02(07)_ODP[02]; configurations for systems or system components to be issued when individuals travel to high-risk areas are defined] are issued to individuals traveling to locations that the organization deems to be of significant risk.'), ('001739','draft','2013-02-28','DISA FSO','policy','Issue organization-defined systems or system components with organization-defined configurations to individuals traveling to locations the organization deems to be of significant risk.','CM-02(07)(a)','N/A','Determine if [CM-02(07)_ODP[01]; the systems or system components to be issued when individuals travel to high-risk areas are defined] with [CM-02(07)_ODP[02]; configurations for systems or system components to be issued when individuals travel to high-risk areas are defined] are issued to individuals traveling to locations that the organization deems to be of significant risk.'), ('001740','draft','2013-02-28','DISA FSO','policy','Review proposed configuration-controlled changes to the system.','CM-03b.','N/A','Determine if: - proposed configuration-controlled changes to the system are reviewed. - proposed configuration-controlled changes to the system are approved or disapproved with explicit consideration for security and privacy impact analyses.'), ('001741','draft','2013-02-28','DISA FSO','policy','Document configuration change decisions associated with the system.','CM-03c.','N/A','Determine if configuration change decisions associated with the system are documented.'), ('001742','draft','2013-02-28','DISA FSO','policy','Defines the approval authorities to be notified when proposed changes to the system are received.','CM-03(01)(b)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to notify [CM-03(01)_ODP[02]; approval authorities to be notified of and request approval for proposed changes to the system are defined] of proposed changes to the system and request change approval.'), ('001743','draft','2013-02-28','DISA FSO','policy','Defines the security responses to be automatically implemented if baseline configurations are changed in an unauthorized manner.','CM-03(05)','N/A','Determine if [CM-03(05)_ODP; security responses to be automatically implemented are defined] are automatically implemented if baseline configurations are changed in an unauthorized manner.'), ('001744','draft','2013-02-28','DISA FSO','technical','Implement organization-defined security responses automatically if baseline configurations are changed in an unauthorized manner.','CM-03(05)','N/A','Determine if [CM-03(05)_ODP; security responses to be automatically implemented are defined] are automatically implemented if baseline configurations are changed in an unauthorized manner.'), ('001745','draft','2013-02-28','DISA FSO','policy','Defines the controls that are to be provided by the cryptographic mechanisms are under configuration management.','CM-03(06)','N/A','Determine if cryptographic mechanisms used to provide [CM-03(06)_ODP; controls provided by cryptographic mechanisms that are to be under configuration management are defined] are under configuration management.'), ('001746','draft','2013-02-28','DISA FSO','policy','Ensure that cryptographic mechanisms used to provide organization-defined control are under configuration management.','CM-03(06)','N/A','Determine if cryptographic mechanisms used to provide [CM-03(06)_ODP; controls provided by cryptographic mechanisms that are to be under configuration management are defined] are under configuration management.'), ('001751','draft','2013-02-28','DISA FSO','policy','Defines system-level information requiring enforcement of a dual authorization for system changes.','CM-05(04)','N/A','Determine if: - dual authorization for implementing changes to [CM-05(04)_ODP[01]; system components requiring dual authorization for changes are defined] is enforced. - dual authorization for implementing changes to [CM-05(04)_ODP[02]; system-level information requiring dual authorization for changes is defined] is enforced.'), ('001752','draft','2013-02-28','DISA FSO','policy','Enforce dual authorization for implementing changes to organization-defined system-level information.','CM-05(04)','N/A','Determine if: - dual authorization for implementing changes to [CM-05(04)_ODP[01]; system components requiring dual authorization for changes are defined] is enforced. - dual authorization for implementing changes to [CM-05(04)_ODP[02]; system-level information requiring dual authorization for changes is defined] is enforced.'), ('001753','draft','2013-02-28','DISA FSO','policy','Limit privileges to change system components within a production or operational environment.','CM-05(05)(a)','N/A','Determine if: - privileges to change system components within a production or operational environment are limited. - privileges to change system-related information within a production or operational environment are limited.'), ('001754','draft','2013-02-28','DISA FSO','policy','Limit privileges to change system-related information within a production or operational environment.','CM-05(05)(a)','N/A','Determine if: - privileges to change system components within a production or operational environment are limited. - privileges to change system-related information within a production or operational environment are limited.'), ('001755','draft','2013-02-28','DISA FSO','policy','Defines the system components for which any deviation from the established configuration settings are to be identified, documented, and approved.','CM-06c.','N/A','Determine if: - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are identified and documented based on [CM-06_ODP[03]; operational requirements necessitating approval of deviations are defined]. - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are approved.'), ('001756','draft','2013-02-28','DISA FSO','policy','Defines the operational requirements on which the configuration settings for the organization-defined system components are to be based.','CM-06c.','N/A','Determine if: - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are identified and documented based on [CM-06_ODP[03]; operational requirements necessitating approval of deviations are defined]. - any deviations from established configuration settings for [CM-06_ODP[02]; system components for which approval of deviations is needed are defined] are approved.'), ('001757','draft','2013-02-28','DISA FSO','policy','Defines the actions to employ when responding to unauthorized changes to the organization-defined configuration settings.','CM-06(02)','N/A','Determine if [CM-06(02)_ODP[01]; actions to be taken upon an unauthorized change are defined] are taken in response to unauthorized changes to [CM-06(02)_ODP[02]; configuration settings requiring action upon an unauthorized change are defined].'), ('001758','draft','2013-02-28','DISA FSO','policy','Defines the configuration settings for which to employ organization-defined actions in response to unauthorized changes.','CM-06(02)','N/A','Determine if [CM-06(02)_ODP[01]; actions to be taken upon an unauthorized change are defined] are taken in response to unauthorized changes to [CM-06(02)_ODP[02]; configuration settings requiring action upon an unauthorized change are defined].'), ('001759','draft','2013-02-28','DISA FSO','policy','Take organization-defined actions in response to unauthorized changes to organization-defined configuration settings.','CM-06(02)','N/A','Determine if [CM-06(02)_ODP[01]; actions to be taken upon an unauthorized change are defined] are taken in response to unauthorized changes to [CM-06(02)_ODP[02]; configuration settings requiring action upon an unauthorized change are defined].'), ('001760','draft','2013-02-28','DISA FSO','policy','Defines the frequency of system reviews to identify unnecessary and/or nonsecure functions, ports, protocols, software, and services.','CM-07(01)(a)','N/A','Determine if the system is reviewed [CM-07(01)_ODP[01]; the frequency at which to review the system to identify unnecessary and/or non-secure functions, ports, protocols, software, and/or services is defined] to identify unnecessary and/or non-secure functions, ports, protocols, software, and services.'), ('001761','draft','2013-02-28','DISA FSO','policy','Defines the functions, ports, protocols, software, and services within the information system that are to be disabled or removed when deemed unnecessary and/or nonsecure.','CM-07(01)(b)','N/A','Determine if: - [CM-07(01)_ODP[02]; functions to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed. - [CM-07(01)_ODP[03]; ports to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed. - [CM-07(01)_ODP[04]; protocols to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed. - [CM-07(01)_ODP[05]; software to be disabled or removed when deemed unnecessary or non-secure is defined] deemed to be unnecessary and/or non-secure is disabled or removed. - [CM-07(01)_ODP[06]; services to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed.'), ('001762','draft','2013-02-28','DISA FSO','technical','Disable or remove organization-defined functions, ports, protocols, software, and services within the system deemed to be unnecessary and/or nonsecure.','CM-07(01)(b)','N/A','Determine if: - [CM-07(01)_ODP[02]; functions to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed. - [CM-07(01)_ODP[03]; ports to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed. - [CM-07(01)_ODP[04]; protocols to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed. - [CM-07(01)_ODP[05]; software to be disabled or removed when deemed unnecessary or non-secure is defined] deemed to be unnecessary and/or non-secure is disabled or removed. - [CM-07(01)_ODP[06]; services to be disabled or removed when deemed unnecessary or non-secure are defined] deemed to be unnecessary and/or non-secure are disabled or removed.'), ('001763','draft','2013-02-28','DISA FSO','policy','Defines the policies regarding software program usage and restrictions.','CM-07(02)','N/A','Determine if program execution is prevented in accordance with [CM-07(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[CM-07(02)_ODP[02]; policies, rules of behavior, and/or access agreements regarding software program usage and restrictions are defined (if selected)]; rules authorizing the terms and conditions of software program usage}].'), ('001764','draft','2013-02-28','DISA FSO','technical','Prevent program execution in accordance with organization-defined policies, rules of behavior, and/or access agreements regarding software program usage and restrictions; rules authorizing the terms and conditions of software program usage.','CM-07(02)','N/A','Determine if program execution is prevented in accordance with [CM-07(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[CM-07(02)_ODP[02]; policies, rules of behavior, and/or access agreements regarding software program usage and restrictions are defined (if selected)]; rules authorizing the terms and conditions of software program usage}].'), ('001765','draft','2013-02-28','DISA FSO','policy','Defines the software programs not authorized to execute on the system.','CM-07(04)(a)','N/A','Determine if [CM-07(04)_ODP[01]; software programs not authorized to execute on the system are defined] are identified.'), ('001766','draft','2013-02-28','DISA FSO','policy','Identify the organization-defined software programs not authorized to execute on the system.','CM-07(04)(a)','N/A','Determine if [CM-07(04)_ODP[01]; software programs not authorized to execute on the system are defined] are identified.'), ('001767','draft','2013-02-28','DISA FSO','technical','Employ an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the system.','CM-07(04)(b)','N/A','Determine if an allow-all, deny-by-exception policy is employed to prohibit the execution of unauthorized software programs on the system.'), ('001768','draft','2013-02-28','DISA FSO','policy','Defines the frequency on which the list of unauthorized software programs will be reviewed and updated.','CM-07(04)(c)','N/A','Determine if the list of unauthorized software programs is reviewed and updated [CM-07(04)_ODP[02]; frequency at which to review and update the list of unauthorized software programs is defined].'), ('001770','draft','2013-02-28','DISA FSO','policy','Review and update the list of unauthorized software programs per organization-defined frequency.','CM-07(04)(c)','N/A','Determine if the list of unauthorized software programs is reviewed and updated [CM-07(04)_ODP[02]; frequency at which to review and update the list of unauthorized software programs is defined].'), ('001772','draft','2013-02-28','DISA FSO','policy','Defines the software programs authorized to execute on the system.','CM-07(05)(a)','N/A','Determine if [CM-07(05)_ODP[01]; software programs authorized to execute on the system are defined] are identified.'), ('001773','draft','2013-02-28','DISA FSO','policy','Identify the organization-defined software programs authorized to execute on the system.','CM-07(05)(a)','N/A','Determine if [CM-07(05)_ODP[01]; software programs authorized to execute on the system are defined] are identified.'), ('001774','draft','2013-02-28','DISA FSO','technical','Employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the system.','CM-07(05)(b)','N/A','Determine if a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the system is employed.'), ('001775','draft','2013-02-28','DISA FSO','policy','Defines the frequency on which the list of authorized software programs will be reviewed and updated.','CM-07(05)(c)','N/A','Determine if the list of authorized software programs is reviewed and updated [CM-07(05)_ODP[02]; frequency at which to review and update the list of authorized software programs is defined].'), ('001777','draft','2013-02-28','DISA FSO','policy','Review and update the list of authorized software programs per organization-defined frequency.','CM-07(05)(c)','N/A','Determine if the list of authorized software programs is reviewed and updated [CM-07(05)_ODP[02]; frequency at which to review and update the list of authorized software programs is defined].'), ('001779','draft','2013-02-28','DISA FSO','policy','Defines the frequency on which the system component inventory is to be reviewed and updated.','CM-08b.','N/A','Determine if the system component inventory is reviewed and updated [CM-08_ODP[02]; frequency at which to review and update the system component inventory is defined].'), ('001780','draft','2013-02-28','DISA FSO','policy','Review and update the system component inventory per organization-defined frequency.','CM-08b.','N/A','Determine if the system component inventory is reviewed and updated [CM-08_ODP[02]; frequency at which to review and update the system component inventory is defined].'), ('001783','draft','2013-03-01','DISA FSO','policy','Defines the personnel or roles to be notified when unauthorized hardware, software, and firmware components are detected within the system.','CM-08(03)(b)','N/A','Determine if: - [CM-08(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {disable network access by unauthorized components; isolate unauthorized components; notify [CM-08(03)_ODP[06]; personnel or roles to be notified when unauthorized components are detected is/are defined (if selected)]}] are taken when unauthorized hardware is detected. - [CM-08(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {disable network access by unauthorized components; isolate unauthorized components; notify [CM-08(03)_ODP[06]; personnel or roles to be notified when unauthorized components are detected is/are defined (if selected)]}] are taken when unauthorized software is detected. - [CM-08(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {disable network access by unauthorized components; isolate unauthorized components; notify [CM-08(03)_ODP[06]; personnel or roles to be notified when unauthorized components are detected is/are defined (if selected)]}] are taken when unauthorized software is detected.'), ('001784','draft','2013-03-01','DISA FSO','policy','When unauthorized hardware, software, and firmware components are detected within the system, the organization takes action to disable network access by such components, isolates the components, and/or notifies organization-defined personnel or roles.','CM-08(03)(b)','N/A','Determine if: - [CM-08(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {disable network access by unauthorized components; isolate unauthorized components; notify [CM-08(03)_ODP[06]; personnel or roles to be notified when unauthorized components are detected is/are defined (if selected)]}] are taken when unauthorized hardware is detected. - [CM-08(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {disable network access by unauthorized components; isolate unauthorized components; notify [CM-08(03)_ODP[06]; personnel or roles to be notified when unauthorized components are detected is/are defined (if selected)]}] are taken when unauthorized software is detected. - [CM-08(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {disable network access by unauthorized components; isolate unauthorized components; notify [CM-08(03)_ODP[06]; personnel or roles to be notified when unauthorized components are detected is/are defined (if selected)]}] are taken when unauthorized software is detected.'), ('001785','draft','2013-03-01','DISA FSO','policy','Provide a centralized repository for the inventory of system components.','CM-08(07)','N/A','Determine if a centralized repository for the system component inventory is provided.'), ('001786','draft','2013-03-01','DISA FSO','policy','Support the tracking of system components by geographic location using organization-defined automated mechanisms.','CM-08(08)','N/A','Determine if [CM-08(08)_ODP; automated mechanisms for tracking components are defined] are used to support the tracking of system components by geographic location.'), ('001788','draft','2013-03-01','DISA FSO','policy','Assign system components to a system.','CM-08(09)(a)','N/A','Determine if system components are assigned to a system.'), ('001789','draft','2013-03-01','DISA FSO','policy','Receive an acknowledgement from organization-defined personnel or roles of the acquired system components to a system.','CM-08(09)(b)','N/A','Determine if an acknowledgement of the component assignment is received from [CM-08(09)_ODP; personnel or roles from which to receive an acknowledgement is/are defined].'), ('001792','draft','2013-03-01','DISA FSO','policy','Implement a configuration management plan for the system that establishes a process for identifying configuration items throughout the system development life cycle.','CM-09b.','N/A','Determine if: - the configuration management plan establishes a process for identifying configuration items throughout the system development life cycle. - the configuration management plan establishes a process for managing the configuration of the configuration items.'), ('001795','draft','2013-03-01','DISA FSO','policy','Implement a configuration management plan for the system that establishes a process for managing the configuration of the configuration items.','CM-09b.','N/A','Determine if: - the configuration management plan establishes a process for identifying configuration items throughout the system development life cycle. - the configuration management plan establishes a process for managing the configuration of the configuration items.'), ('001798','draft','2013-03-01','DISA FSO','policy','Implement a configuration management plan for the system that places the configuration items under configuration management.','CM-09c.','N/A','Determine if: - the configuration management plan defines the configuration items for the system. - the configuration management plan places the configuration items under configuration management.'), ('001799','draft','2013-03-01','DISA FSO','policy','Develop and document a configuration management plan for the system that protects the configuration management plan from unauthorized disclosure and modification.','CM-09e.','N/A','Determine if: - the configuration management plan is protected from unauthorized disclosure. - the configuration management plan is protected from unauthorized modification.'), ('001801','draft','2013-03-01','DISA FSO','policy','Implement a configuration management plan for the system that protects the configuration management plan from unauthorized disclosure and modification.','CM-09e.','N/A','Determine if: - the configuration management plan is protected from unauthorized disclosure. - the configuration management plan is protected from unauthorized modification.'), ('001802','draft','2013-03-01','DISA FSO','policy','Track the use of software documentation protected by quantity licenses to control copying of the software documentation.','CM-10b.','N/A','Determine if the use of software and associated documentation protected by quantity licenses is tracked to control copying and distribution.'), ('001803','draft','2013-03-01','DISA FSO','policy','Track the use of software protected by quantity licenses to control distribution of the software.','CM-10b.','N/A','Determine if the use of software and associated documentation protected by quantity licenses is tracked to control copying and distribution.'), ('001804','draft','2013-03-01','DISA FSO','policy','Defines the policies for governing the installation of software by users.','CM-11a.','N/A','Determine if [CM-11_ODP[01]; policies governing the installation of software by users are defined] governing the installation of software by users are established.'), ('001805','draft','2013-03-01','DISA FSO','policy','Establish organization-defined policies governing the installation of software by users.','CM-11a.','N/A','Determine if [CM-11_ODP[01]; policies governing the installation of software by users are defined] governing the installation of software by users are established.'), ('001806','draft','2013-03-01','DISA FSO','policy','Defines methods to be employed to enforce the software installation policies.','CM-11b.','N/A','Determine if software installation policies are enforced through [CM-11_ODP[02]; methods used to enforce software installation policies are defined].'), ('001807','draft','2013-03-01','DISA FSO','policy','Enforce software installation policies through organization-defined methods.','CM-11b.','N/A','Determine if software installation policies are enforced through [CM-11_ODP[02]; methods used to enforce software installation policies are defined].'), ('001808','draft','2013-03-01','DISA FSO','policy','Defines the frequency on which it will monitor software installation policy compliance.','CM-11c.','N/A','Determine if compliance with [CM-11_ODP[01]; policies governing the installation of software by users are defined] is monitored [CM-11_ODP[03]; frequency with which to monitor compliance is defined].'), ('001809','draft','2013-03-01','DISA FSO','policy','Monitor software installation policy compliance per an organization-defined frequency.','CM-11c.','N/A','Determine if compliance with [CM-11_ODP[01]; policies governing the installation of software by users are defined] is monitored [CM-11_ODP[03]; frequency with which to monitor compliance is defined].'), ('001813','draft','2013-03-01','DISA FSO','technical','Enforce access restrictions using organization-defined mechanisms.','CM-05(01)(a)','N/A','Determine if access restrictions for change are enforced using [CM-05(01)_ODP; mechanisms used to automate the enforcement of access restrictions are defined].'), ('001815','draft','2013-03-01','DISA FSO','policy','Defines the controls to be applied to devices when individuals return from areas of significant risk.','CM-02(07)(b)','N/A','Determine if [CM-02(07)_ODP[03]; the controls to be applied when the individuals return from travel are defined] are applied to the systems or system components when the individuals return from travel.'), ('001816','draft','2013-03-01','DISA FSO','policy','Apply organization-defined controls to the systems or components when the individuals return from travel.','CM-02(07)(b)','N/A','Determine if [CM-02(07)_ODP[03]; the controls to be applied when the individuals return from travel are defined] are applied to the systems or system components when the individuals return from travel.'), ('001817','draft','2013-03-01','DISA FSO','policy','When analyzing changes to the system, looks for privacy impacts due to flaws, weaknesses, incompatibility, or intentional malice.','CM-04(01)','N/A','Determine if: - changes to the system are analyzed in a separate test environment before implementation in an operational environment. - changes to the system are analyzed for security impacts due to flaws. - changes to the system are analyzed for privacy impacts due to flaws. - changes to the system are analyzed for security impacts due to weaknesses. - changes to the system are analyzed for privacy impacts due to weaknesses. - changes to the system are analyzed for privacy impacts due to incompatibility. - changes to the system are analyzed for privacy impacts due to incompatibility. - changes to the system are analyzed for security impacts due to intentional malice. - changes to the system are analyzed for privacy impacts due to intentional malice.'), ('001818','draft','2013-03-01','DISA FSO','policy','Analyze changes to the system in a separate test environment before installation in an operational environment.','CM-04(01)','N/A','Determine if: - changes to the system are analyzed in a separate test environment before implementation in an operational environment. - changes to the system are analyzed for security impacts due to flaws. - changes to the system are analyzed for privacy impacts due to flaws. - changes to the system are analyzed for security impacts due to weaknesses. - changes to the system are analyzed for privacy impacts due to weaknesses. - changes to the system are analyzed for privacy impacts due to incompatibility. - changes to the system are analyzed for privacy impacts due to incompatibility. - changes to the system are analyzed for security impacts due to intentional malice. - changes to the system are analyzed for privacy impacts due to intentional malice.'), ('001819','draft','2013-03-01','DISA FSO','policy','Implement approved configuration-controlled changes to the system.','CM-03d.','N/A','Determine if approved configuration-controlled changes to the system are implemented.'), ('001821','draft','2013-03-01','DISA FSO','policy','Defines the organizational personnel or roles to whom the organization-level; mission/business process-level; and/or system-level configuration management policy is to be disseminated.','CM-01a.','N/A','Determine if: - a configuration management policy is developed and documented. - the configuration management policy is disseminated to [CM-01_ODP[01]; personnel or roles to whom the configuration management policy is to be disseminated is/are defined].'), ('001822','draft','2013-03-01','DISA FSO','policy','Disseminate the organization-level; mission/business process-level; and/or system-level configuration management policy to organization-defined personnel or roles.','CM-01a.','N/A','Determine if: - a configuration management policy is developed and documented. - the configuration management policy is disseminated to [CM-01_ODP[01]; personnel or roles to whom the configuration management policy is to be disseminated is/are defined].'), ('001824','draft','2013-03-01','DISA FSO','policy','Defines the organizational personnel or roles to whom the organization-level; mission/business process-level; and/or system-level configuration management procedures are to be disseminated.','CM-01a.02','N/A','Determine if: - configuration management procedures to facilitate the implementation of the configuration management policy and associated configuration management controls are developed and documented. - the configuration management procedures are disseminated to [CM-01_ODP[02]; personnel or roles to whom the configuration management procedures are to be disseminated is/are defined].'), ('001825','draft','2013-03-01','DISA FSO','policy','Disseminate to organization-defined personnel or roles the procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level configuration management policy and associated configuration management controls.','CM-01a.02','N/A','Determine if: - configuration management procedures to facilitate the implementation of the configuration management policy and associated configuration management controls are developed and documented. - the configuration management procedures are disseminated to [CM-01_ODP[02]; personnel or roles to whom the configuration management procedures are to be disseminated is/are defined].'), ('001832','draft','2013-03-14','DISA FSO','policy','Disseminate the organization-level; mission/business process-level; and/or system-level audit and accountability policy to organization-defined personnel or roles.','AU-01a.','N/A','Determine if: - an audit and accountability policy is developed and documented. - the audit and accountability policy is disseminated to [AU-01_ODP[01]; personnel or roles to whom the audit and accountability policy is to be disseminated is/are defined].'), ('001834','draft','2013-03-14','DISA FSO','policy','Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.','AU-01a.02','N/A','Determine if: - audit and accountability procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls are developed and documented. - the audit and accountability procedures are disseminated to [AU-01_ODP[02]; personnel or roles to whom the audit and accountability procedures are to be disseminated is/are defined].'), ('001848','draft','2013-03-14','DISA FSO','policy','Defines the audit log retention requirements for allocating audit log storage capacity.','AU-04','N/A','Determine if audit log storage capacity is allocated to accommodate [AU-04_ODP; audit log retention requirements are defined].'), ('001849','draft','2013-03-14','DISA FSO','technical','Allocate audit log storage capacity to accommodate organization-defined audit log retention requirements.','AU-04','N/A','Determine if audit log storage capacity is allocated to accommodate [AU-04_ODP; audit log retention requirements are defined].'), ('001850','draft','2013-03-14','DISA FSO','policy','Defines the frequency to off-load audit records onto a different system or media than the system being audited.','AU-04(01)','N/A','Determine if audit logs are transferred [AU-04(01)_ODP; the frequency of audit logs transferred to a different system, system component, or media other than the system or system component conducting the logging is defined] to a different system, system component, or media other than the system or system component conducting the logging.'), ('001851','draft','2013-03-14','DISA FSO','technical','Transfer audit logs per organization-defined frequency to a different system, system component, or media than the system or system component conducting the logging.','AU-04(01)','N/A','Determine if audit logs are transferred [AU-04(01)_ODP; the frequency of audit logs transferred to a different system, system component, or media other than the system or system component conducting the logging is defined] to a different system, system component, or media other than the system or system component conducting the logging.'), ('001852','draft','2013-03-14','DISA FSO','policy','Defines the personnel, roles and/or locations to receive a warning when allocated audit log storage volume reaches a defined percentage of maximum audit log storage capacity.','AU-05(01)','N/A','Determine if a warning is provided to [AU-05(01)_ODP[01]; personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity] within [AU-05(01)_ODP[02]; time period for defined personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity is defined] when allocated audit log storage volume reaches [AU-05(01)_ODP[03]; percentage of repository maximum audit log storage capacity is defined] of repository maximum audit log storage capacity.'), ('001853','draft','2013-03-14','DISA FSO','policy','Defines the time period within which organization-defined personnel, roles, and/or locations are to receive warnings when allocated audit log storage volume reaches an organization-defined percentage of maximum audit log storage capacity.','AU-05(01)','N/A','Determine if a warning is provided to [AU-05(01)_ODP[01]; personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity] within [AU-05(01)_ODP[02]; time period for defined personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity is defined] when allocated audit log storage volume reaches [AU-05(01)_ODP[03]; percentage of repository maximum audit log storage capacity is defined] of repository maximum audit log storage capacity.'), ('001854','draft','2013-03-14','DISA FSO','policy','Defines the percentage of maximum audit log storage capacity that is to be reached, at which time the system will provide a warning to organization-defined personnel, roles, and/or locations.','AU-05(01)','N/A','Determine if a warning is provided to [AU-05(01)_ODP[01]; personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity] within [AU-05(01)_ODP[02]; time period for defined personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity is defined] when allocated audit log storage volume reaches [AU-05(01)_ODP[03]; percentage of repository maximum audit log storage capacity is defined] of repository maximum audit log storage capacity.'), ('001855','draft','2013-03-14','DISA FSO','technical','Provide a warning to organization-defined personnel, roles, and/or locations within an organization-defined time period when allocated audit log storage volume reaches an organization-defined percentage of repository maximum audit log storage capacity.','AU-05(01)','N/A','Determine if a warning is provided to [AU-05(01)_ODP[01]; personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity] within [AU-05(01)_ODP[02]; time period for defined personnel, roles, and/or locations to be warned when allocated audit log storage volume reaches a percentage of repository maximum audit log storage capacity is defined] when allocated audit log storage volume reaches [AU-05(01)_ODP[03]; percentage of repository maximum audit log storage capacity is defined] of repository maximum audit log storage capacity.'), ('001856','draft','2013-03-14','DISA FSO','policy','Defines the real-time period in which to provide an alert when organization-defined audit failure events occur.','AU-05(02)','N/A','Determine if an alert is provided within [AU-05(02)_ODP[01]; real-time period requiring alerts when audit failure events (defined in AU-05(02)_ODP[03]) occur is defined] to [AU-05(02)_ODP[02]; personnel, roles, and/or locations to be alerted in real time when audit failure events (defined in AU-05(02)_ODP[03]) occur is/are defined] when [AU-05(02)_ODP[03]; audit logging failure events requiring real-time alerts are defined] occur.'), ('001857','draft','2013-03-14','DISA FSO','policy','Defines the personnel, roles, and/or locations to receive alerts when organization-defined audit failure events occur.','AU-05(02)','N/A','Determine if an alert is provided within [AU-05(02)_ODP[01]; real-time period requiring alerts when audit failure events (defined in AU-05(02)_ODP[03]) occur is defined] to [AU-05(02)_ODP[02]; personnel, roles, and/or locations to be alerted in real time when audit failure events (defined in AU-05(02)_ODP[03]) occur is/are defined] when [AU-05(02)_ODP[03]; audit logging failure events requiring real-time alerts are defined] occur.'), ('001858','draft','2013-03-14','DISA FSO','technical','Provide an alert in an organization-defined real-time-period to organization-defined personnel, roles, and/or locations when organization-defined audit failure events requiring real-time alerts occur.','AU-05(02)','N/A','Determine if an alert is provided within [AU-05(02)_ODP[01]; real-time period requiring alerts when audit failure events (defined in AU-05(02)_ODP[03]) occur is defined] to [AU-05(02)_ODP[02]; personnel, roles, and/or locations to be alerted in real time when audit failure events (defined in AU-05(02)_ODP[03]) occur is/are defined] when [AU-05(02)_ODP[03]; audit logging failure events requiring real-time alerts are defined] occur.'), ('001859','draft','2013-03-14','DISA FSO','policy','Defines the network communication traffic volume thresholds reflecting limits on auditing capacity, specifying when the information system will reject or delay network traffic that exceed those thresholds.','AU-05(03)','N/A','Determine if: - configurable network communications traffic volume thresholds reflecting limits on audit log storage capacity are enforced. - network traffic is [AU-05(03)_ODP; one or more of the following PARAMETER VALUES is/are selected: {reject; delay}] if network traffic volume is above configured thresholds.'), ('001860','draft','2013-03-14','DISA FSO','policy','Defines the audit logging failures which, should they occur, will invoke an organization-defined system mode.','AU-05(04)','N/A','Determine if [AU-05(04)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {full system shutdown; partial system shutdown; degraded operational mode with limited mission or business functionality available}] is/are invoked in the event of [AU-05(04)_ODP[02]; audit logging failures that trigger a change in operational mode are defined], unless an alternate audit logging capability exists.'), ('001861','draft','2013-03-14','DISA FSO','technical','Invoke a full system shutdown, partial system shutdown, or degraded operational mode with limited mission or business functionality available in the event of organization-defined audit logging failures, unless an alternate audit logging capability exists.','AU-05(04)','N/A','Determine if [AU-05(04)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {full system shutdown; partial system shutdown; degraded operational mode with limited mission or business functionality available}] is/are invoked in the event of [AU-05(04)_ODP[02]; audit logging failures that trigger a change in operational mode are defined], unless an alternate audit logging capability exists.'), ('001862','draft','2013-03-15','DISA FSO','policy','Defines the types of inappropriate or unusual activity to be reviewed and analyzed in the audit records.','AU-06a.','N/A','Determine if system audit records are reviewed and analyzed [AU-06_ODP[01]; frequency at which system audit records are reviewed and analyzed is defined] for indications of [AU-06_ODP[02]; inappropriate or unusual activity is defined] and the potential impact of the inappropriate or unusual activity.'), ('001863','draft','2013-03-15','DISA FSO','policy','Defines the personnel or roles to receive the reports of organization-defined inappropriate or unusual activity.','AU-06b.','N/A','Determine if findings are reported to [AU-06_ODP[03]; personnel or roles to receive findings from reviews and analyses of system records is/are defined].'), ('001864','draft','2013-03-15','DISA FSO','policy','Integrate audit review and analysis using organization-defined automated mechanisms.','AU-06(01)','N/A','Determine if audit record review, analysis, and reporting processes are integrated using [AU-06(01)_ODP; automated mechanisms used for integrating audit record review, analysis, and reporting processes are defined].'), ('001865','draft','2013-03-15','DISA FSO','policy','Integrate reporting processes using organization-defined automated mechanisms.','AU-06(01)','N/A','Determine if audit record review, analysis, and reporting processes are integrated using [AU-06(01)_ODP; automated mechanisms used for integrating audit record review, analysis, and reporting processes are defined].'), ('001866','draft','2013-03-15','DISA FSO','policy','Defines the data/information to be collected from other sources to enhance its ability to identify inappropriate or unusual activity.','AU-06(05)','N/A','Determine if analysis of audit records is integrated with analysis of [AU-06(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {vulnerability scanning information; performance data; system monitoring information; [AU-06(05)_ODP[02]; data/information collected from other sources to be analyzed is defined (if selected)}]] to further enhance the ability to identify inappropriate or unusual activity.'), ('001867','draft','2013-03-15','DISA FSO','policy','Integrate analysis of audit records with analysis of vulnerability scanning information, performance data, system monitoring information, and/or organization-defined data/information collected from other sources to further enhance the ability to identify inappropriate or unusual activity.','AU-06(05)','N/A','Determine if analysis of audit records is integrated with analysis of [AU-06(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {vulnerability scanning information; performance data; system monitoring information; [AU-06(05)_ODP[02]; data/information collected from other sources to be analyzed is defined (if selected)}]] to further enhance the ability to identify inappropriate or unusual activity.'), ('001868','draft','2013-03-15','DISA FSO','policy','Specify the permitted actions for each information system process, role, and/or user associated with the review and analysis of audit information.','AU-06(07)','N/A','Determine if the permitted actions for each [AU-06(07)_ODP; one or more of the following PARAMETER VALUES is/are selected: {system process; role; user}] associated with the review, analysis, and reporting of audit record information are specified.'), ('001869','draft','2013-03-15','DISA FSO','policy','Specify the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.','AU-06(07)','N/A','Determine if the permitted actions for each [AU-06(07)_ODP; one or more of the following PARAMETER VALUES is/are selected: {system process; role; user}] associated with the review, analysis, and reporting of audit record information are specified.'), ('001870','draft','2013-03-15','DISA FSO','policy','Perform a full-text analysis of logged privileged commands in a physically-distinct component or subsystem of the system, or other system that is dedicated to that analysis.','AU-06(08)','N/A','Determine if a full text analysis of logged privileged commands in a physically distinct component or subsystem of the system or other system that is dedicated to that analysis is performed.'), ('001871','draft','2013-03-15','DISA FSO','policy','Correlate information from non-technical sources with audit record information to enhance organization-wide situational awareness.','AU-06(09)','N/A','Determine if information from non-technical sources is correlated with audit record information to enhance organization-wide situational awareness.'), ('001875','draft','2013-03-15','DISA FSO','technical','Provide an audit reduction capability that supports on-demand audit review and analysis.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('001876','draft','2013-03-15','DISA FSO','technical','Provide an audit reduction capability that supports on-demand reporting requirements.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('001877','draft','2013-03-15','DISA FSO','technical','Provide an audit reduction capability that supports after-the-fact investigations of incidents.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('001878','draft','2013-03-15','DISA FSO','technical','Provide a report generation capability that supports on-demand audit review and analysis.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('001879','draft','2013-03-15','DISA FSO','policy','Provide a report generation capability that supports on-demand reporting requirements.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('001880','draft','2013-03-15','DISA FSO','technical','Provide a report generation capability that supports after-the-fact investigations of security incidents.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('001881','draft','2013-03-15','DISA FSO','technical','Provide an audit reduction capability that does not alter original content or time ordering of audit records.','AU-07b.','N/A','Determine if: - an audit record reduction and report generation capability is provided that does not alter the original content or time ordering of audit records. - an audit record reduction and report generation capability is implemented that does not alter the original content or time ordering of audit records.'), ('001882','draft','2013-03-15','DISA FSO','technical','Provide a report generation capability that does not alter original content or time ordering of audit records.','AU-07b.','N/A','Determine if: - an audit record reduction and report generation capability is provided that does not alter the original content or time ordering of audit records. - an audit record reduction and report generation capability is implemented that does not alter the original content or time ordering of audit records.'), ('001883','draft','2013-03-15','DISA FSO','policy','Defines the audit fields within audit records to be processed, sorted, and searched for events of interest by the system.','AU-07(01)','N/A','Determine if: - the capability to process, sort, and search audit records for events of interest based on [AU-07(01)_ODP; fields within audit records that can be processed, sorted, or searched are defined] are provided. - the capability to process, sort, and search audit records for events of interest based on [AU-07(01)_ODP; fields within audit records that can be processed, sorted, or searched are defined] are implemented.'), ('001888','draft','2013-03-15','DISA FSO','policy','Defines the granularity of time measurement for time stamps generated for audit records.','AU-08b.','N/A','Determine if timestamps are recorded for audit records that meet [AU-08_ODP; granularity of time measurement for audit record timestamps is defined] and that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or include the local time offset as part of the timestamp.'), ('001889','draft','2013-03-15','DISA FSO','technical','Record time stamps for audit records that meet organization-defined granularity of time measurement.','AU-08b.','N/A','Determine if timestamps are recorded for audit records that meet [AU-08_ODP; granularity of time measurement for audit record timestamps is defined] and that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or include the local time offset as part of the timestamp.'), ('001890','draft','2013-03-15','DISA FSO','technical','Record time stamps for audit records that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or that include the local time offset as part of the time stamp.','AU-08b.','N/A','Determine if timestamps are recorded for audit records that meet [AU-08_ODP; granularity of time measurement for audit record timestamps is defined] and that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or include the local time offset as part of the timestamp.'), ('001894','draft','2013-03-15','DISA FSO','policy','Defines the subset of privileged users who will be authorized access to the management of audit functionality.','AU-09(04)','N/A','Determine if access to management of audit logging functionality is authorized only to [AU-09(04)_ODP; a subset of privileged users or roles authorized to access management of audit logging functionality is defined].'), ('001895','draft','2013-03-15','DISA FSO','policy','Defines the audit information requiring dual authorization for movement or deletion actions.','AU-09(05)','N/A','Determine if dual authorization is enforced for the [AU-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {movement; deletion}] of [AU-09(05)_ODP[02]; audit information for which dual authorization is to be enforced is defined].'), ('001896','draft','2013-03-15','DISA FSO','technical','Enforce dual authorization for movement and/or deletion of organization-defined audit information.','AU-09(05)','N/A','Determine if dual authorization is enforced for the [AU-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {movement; deletion}] of [AU-09(05)_ODP[02]; audit information for which dual authorization is to be enforced is defined].'), ('001897','draft','2013-03-15','DISA FSO','policy','Defines the subset of privileged users or roles who will be authorized read-only access to audit information.','AU-09(06)','N/A','Determine if read-only access to audit information is authorized to [AU-09(06)_ODP; a subset of privileged users or roles with authorized read-only access to audit information is defined].'), ('001898','draft','2013-03-15','DISA FSO','policy','Authorize read-only access to audit information to an organization-defined subset of privileged users or roles.','AU-09(06)','N/A','Determine if read-only access to audit information is authorized to [AU-09(06)_ODP; a subset of privileged users or roles with authorized read-only access to audit information is defined].'), ('001899','draft','2013-03-15','DISA FSO','policy','Defines the actions to be covered by non-repudiation.','AU-10','N/A','Determine if irrefutable evidence is provided that an individual (or process acting on behalf of an individual) has performed [AU-10_ODP; actions to be covered by non-repudiation are defined].'), ('001900','draft','2013-03-15','DISA FSO','policy','Defines the strength of binding to be applied to the binding of the identity of the information producer with the information.','AU-10(01)(a)','N/A','Determine if the identity of the information producer is bound with the information to [AU-10(01)_ODP; the strength of binding between the identity of the information producer and the information is defined].'), ('001901','draft','2013-03-15','DISA FSO','technical','Bind the identity of the information producer with the information to an organization-defined strength of binding.','AU-10(01)(a)','N/A','Determine if the identity of the information producer is bound with the information to [AU-10(01)_ODP; the strength of binding between the identity of the information producer and the information is defined].'), ('001902','draft','2013-03-15','DISA FSO','technical','Provide the means for authorized individuals to determine the identity of the producer of the information.','AU-10(01)(b)','N/A','Determine if the means for authorized individuals to determine the identity of the producer of the information is provided.'), ('001903','draft','2013-03-15','DISA FSO','policy','Defines the frequency on which the system is to validate the binding of the information producer identity to the information.','AU-10(02)(a)','N/A','Determine if the binding of the information producer identity to the information is validated at [AU-10(02)_ODP[01]; the frequency at which to validate the binding of the information producer identity to the information is defined].'), ('001904','draft','2013-03-15','DISA FSO','technical','Validate the binding of the information producer identity to the information at an organization-defined frequency.','AU-10(02)(a)','N/A','Determine if the binding of the information producer identity to the information is validated at [AU-10(02)_ODP[01]; the frequency at which to validate the binding of the information producer identity to the information is defined].'), ('001905','draft','2013-03-15','DISA FSO','policy','Defines the actions to be performed in the event of an error when validating the binding of the information producer identity to the information.','AU-10(02)(b)','N/A','Determine if [AU-10(02)_ODP[02]; the actions to be performed in the event of a validation error are defined] in the event of a validation error are performed.'), ('001906','draft','2013-03-15','DISA FSO','technical','Perform organization-defined actions in the event of an error when validating the binding of the information producer identity to the information.','AU-10(02)(b)','N/A','Determine if [AU-10(02)_ODP[02]; the actions to be performed in the event of a validation error are defined] in the event of a validation error are performed.'), ('001907','draft','2013-03-15','DISA FSO','policy','Defines the security domains which will require the system validate the binding of the information reviewer identity to the information at the transfer or release points prior to release/transfer.','AU-10(04)(a)','N/A','Determine if the binding of the information reviewer identity to the information at the transfer or release points prior to release or transfer between [AU-10(04)_ODP[01]; security domains for which the binding of the information reviewer identity to the information is to be validated at transfer or release are defined].'), ('001908','draft','2013-03-15','DISA FSO','policy','Defines the action the system is to perform in the event of an information reviewer identity binding validation error.',NULL,'N/A',NULL), ('001909','draft','2013-03-15','DISA FSO','technical','Perform organization-defined actions in the event of an information reviewer identity binding validation error.','AU-10(04)(b)','N/A','Determine if [AU-10(04)_ODP[02]; actions to be performed in the event of a validation error are defined] are performed in the event of a validation error.'), ('001910','draft','2013-03-15','DISA FSO','policy','Defines the personnel or roles allowed to select which event types are to be logged by specific components of the system.','AU-12b.','N/A','Determine if [AU-12_ODP[02]; personnel or roles allowed to select the event types that are to be logged by specific components of the system is/are defined] is/are allowed to select the event types that are to be logged by specific components of the system.'), ('001911','draft','2013-03-15','DISA FSO','policy','Defines the selectable event criteria to be used as the basis for changes to the auditing to be performed on organization-defined system components, by organization-defined individuals or roles, within organization-defined time thresholds.','AU-12(03)','N/A','Determine if: - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is provided. - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is implemented.'), ('001912','draft','2013-03-15','DISA FSO','policy','Defines the time thresholds for organization-defined individuals or roles to change the auditing to be performed based on organization-defined selectable event criteria.','AU-12(03)','N/A','Determine if: - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is provided. - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is implemented.'), ('001913','draft','2013-03-15','DISA FSO','policy','Defines the individuals or roles that are to be provided the capability to change the auditing to be performed based on organization-defined selectable event criteria, within organization-defined time thresholds.','AU-12(03)','N/A','Determine if: - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is provided. - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is implemented.'), ('001914','draft','2013-03-15','DISA FSO','technical','Provide the capability for organization-defined individuals or roles to change the logging to be performed on organization-defined system components based on organization-defined selectable event criteria within organization-defined time thresholds.','AU-12(03)','N/A','Determine if: - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is provided. - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is implemented.'), ('001915','draft','2013-03-15','DISA FSO','policy','Defines the open source information and/or information sites to be monitored for evidence of unauthorized exfiltration or disclosure of organizational information.',NULL,'N/A',NULL), ('001917','draft','2013-03-15','DISA FSO','policy','Defines the frequency for reviewing the open source information sites being monitored.','AU-13(02)','N/A','Determine if the list of open-source information sites being monitored is reviewed [AU-13(02)_ODP; the frequency at which to review the open-source information sites being monitored is defined].'), ('001918','draft','2013-03-15','DISA FSO','policy','Review the open source information sites being monitored per organization-defined frequency.','AU-13(02)','N/A','Determine if the list of open-source information sites being monitored is reviewed [AU-13(02)_ODP; the frequency at which to review the open-source information sites being monitored is defined].'), ('001919','draft','2013-03-15','DISA FSO','technical','Provide the capability for organization-defined users or roles to select a user session to record; view; hear; or log the content of a user session under organization-defined circumstances.','AU-14a.','N/A','Determine if: - [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] are provided with the capability to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined]. - the capability for [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined] is implemented.'), ('001920','draft','2013-03-15','DISA FSO','technical','Provide the capability for authorized users to remotely view and hear content related to an established user session in real time.','AU-14(03)','N/A','Determine if: - the capability for authorized users to remotely view and hear content related to an established user session in real time is provided. - the capability for authorized users to remotely view and hear content related to an established user session in real time is implemented.'), ('001923','draft','2013-03-15','DISA FSO','policy','Defines the audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries.','AU-16','N/A','Determine if [AU-16_ODP[01]; methods for coordinating audit information among external organizations when audit information is transmitted across organizational boundaries are defined] for coordinating [AU-16_ODP[02]; audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries is defined] among external organizations when audit information is transmitted across organizational boundaries are employed.'), ('001924','draft','2013-03-15','DISA FSO','policy','Defines the methods to be employed when coordinating audit information among external organizations when audit information is transmitted across organizational boundaries.','AU-16','N/A','Determine if [AU-16_ODP[01]; methods for coordinating audit information among external organizations when audit information is transmitted across organizational boundaries are defined] for coordinating [AU-16_ODP[02]; audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries is defined] among external organizations when audit information is transmitted across organizational boundaries are employed.'), ('001925','draft','2013-03-15','DISA FSO','policy','Employ organization-defined methods for coordinating organization-defined audit information among external organizations when audit information is transmitted across organizational boundaries.','AU-16','N/A','Determine if [AU-16_ODP[01]; methods for coordinating audit information among external organizations when audit information is transmitted across organizational boundaries are defined] for coordinating [AU-16_ODP[02]; audit information to be coordinated among external organizations when audit information is transmitted across organizational boundaries is defined] among external organizations when audit information is transmitted across organizational boundaries are employed.'), ('001926','draft','2013-03-15','DISA FSO','policy','Preserve the identity of individuals in cross-organizational audit trails.','AU-16(01)','N/A','Determine if the identity of individuals in cross-organizational audit trails is preserved.'), ('001927','draft','2013-03-15','DISA FSO','policy','Defines the organizations that will be provided cross-organizational audit information.','AU-16(02)','N/A','Determine if cross-organizational audit information is provided to [AU-16(02)_ODP[01]; organizations with which cross-organizational audit information is to be shared are defined] based on [AU-16(02)_ODP[02]; cross-organizational sharing agreements to be used when providing cross-organizational audit information to organizations are defined].'), ('001928','draft','2013-03-15','DISA FSO','policy','Defines the cross-organizational sharing agreements to be established with organization-defined organizations authorized to be provided cross-organizational sharing of audit information.','AU-16(02)','N/A','Determine if cross-organizational audit information is provided to [AU-16(02)_ODP[01]; organizations with which cross-organizational audit information is to be shared are defined] based on [AU-16(02)_ODP[02]; cross-organizational sharing agreements to be used when providing cross-organizational audit information to organizations are defined].'), ('001929','draft','2013-03-15','DISA FSO','policy','Provide cross-organizational audit information to organization-defined organizations based on organization-defined cross organizational sharing agreements.','AU-16(02)','N/A','Determine if cross-organizational audit information is provided to [AU-16(02)_ODP[01]; organizations with which cross-organizational audit information is to be shared are defined] based on [AU-16(02)_ODP[02]; cross-organizational sharing agreements to be used when providing cross-organizational audit information to organizations are defined].'), ('001930','draft','2013-04-08','DISA FSO','policy','Defines the personnel or roles to whom the organization-level; mission/business process-level; and/or system-level audit and accountability policy is to be disseminated.','AU-01a.','N/A','Determine if: - an audit and accountability policy is developed and documented. - the audit and accountability policy is disseminated to [AU-01_ODP[01]; personnel or roles to whom the audit and accountability policy is to be disseminated is/are defined].'), ('001931','draft','2013-04-08','DISA FSO','policy','Defines the personnel or roles to whom the audit and accountability procedures are to be disseminated.','AU-01a.02','N/A','Determine if: - audit and accountability procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls are developed and documented. - the audit and accountability procedures are disseminated to [AU-01_ODP[02]; personnel or roles to whom the audit and accountability procedures are to be disseminated is/are defined].'), ('001941','draft','2013-05-03','DISA FSO','technical','Implement replay-resistant authentication mechanisms for access to privileged accounts and/or non-privileged accounts.','IA-02(08)','N/A','Determine if replay-resistant authentication mechanisms for access to [IA-02(08)_ODP; one or more of the following PARAMETER VALUES is/are selected: {privileged accounts; non-privileged accounts}] are implemented.'), ('001943','draft','2013-05-03','DISA FSO','policy','Defines the system accounts for which single sign-on capability will be provided.','IA-02(10)','N/A','Determine if a single sign-on capability is provided for [IA-02(10)_ODP; system accounts and services for which a single sign-on capability must be provided are defined].'), ('001944','draft','2013-05-03','DISA FSO','policy','Defines the system services for which single sign-on capability will be provided.','IA-02(10)','N/A','Determine if a single sign-on capability is provided for [IA-02(10)_ODP; system accounts and services for which a single sign-on capability must be provided are defined].'), ('001945','draft','2013-05-03','DISA FSO','technical','Provide a single sign-on capability for organization-defined system accounts.','IA-02(10)','N/A','Determine if a single sign-on capability is provided for [IA-02(10)_ODP; system accounts and services for which a single sign-on capability must be provided are defined].'), ('001946','draft','2013-05-03','DISA FSO','technical','Provide a single sign-on capability for organization-defined system services.','IA-02(10)','N/A','Determine if a single sign-on capability is provided for [IA-02(10)_ODP; system accounts and services for which a single sign-on capability must be provided are defined].'), ('001953','draft','2013-05-03','DISA FSO','technical','Accept Personal Identity Verification-compliant credentials.','IA-02(12)','N/A','Determine if Personal Identity Verification-compliant credentials are accepted and electronically verified.'), ('001954','draft','2013-05-03','DISA FSO','technical','Electronically verify Personal Identity Verification-compliant credentials.','IA-02(12)','N/A','Determine if Personal Identity Verification-compliant credentials are accepted and electronically verified.'), ('001955','draft','2013-05-03','DISA FSO','policy','Defines the out-of-band authentication to be implemented under organization-defined conditions.','IA-02(13)','N/A','Determine if [IA-02(13)_ODP[01]; out-of-band authentication mechanisms to be implemented are defined] mechanisms are implemented under [IA-02(13)_ODP[02]; conditions under which out-of-band authentication is to be implemented are defined].'), ('001956','draft','2013-05-03','DISA FSO','policy','Defines the conditions for implementing organization-defined out-of-band authentication.','IA-02(13)','N/A','Determine if [IA-02(13)_ODP[01]; out-of-band authentication mechanisms to be implemented are defined] mechanisms are implemented under [IA-02(13)_ODP[02]; conditions under which out-of-band authentication is to be implemented are defined].'), ('001957','draft','2013-05-03','DISA FSO','technical','Implement organization-defined out-of-band authentication mechanisms under organization-defined conditions.','IA-02(13)','N/A','Determine if [IA-02(13)_ODP[01]; out-of-band authentication mechanisms to be implemented are defined] mechanisms are implemented under [IA-02(13)_ODP[02]; conditions under which out-of-band authentication is to be implemented are defined].'), ('001958','draft','2013-05-03','DISA FSO','technical','Authenticate organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection.','IA-03','N/A','Determine if [IA-03_ODP[01]; devices and/or types of devices to be uniquely identified and authenticated before establishing a connection are defined] are uniquely identified and authenticated before establishing a [IA-03_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {local; remote; network}] connection.'), ('001959','draft','2013-05-03','DISA FSO','policy','Defines the devices and/or types of devices the system is to authenticate before establishing a connection.','IA-03(01)','N/A','Determine if [IA-03(01)_ODP[01]; devices and/or types of devices requiring use of cryptographically based, bidirectional authentication to authenticate before establishing one or more connections are defined] are authenticated before establishing [IA-03(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {local; remote; network}] connection using bidirectional authentication that is cryptographically based.'), ('001960','draft','2013-05-03','DISA FSO','policy','Defines the lease information to be assigned to devices.','IA-03(03)(a)','N/A','Determine if: - dynamic address allocation lease information assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[01]; lease information to be employed to standardize dynamic address allocation for devices is defined]. - dynamic address allocation lease duration assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[02]; lease duration to be employed to standardize dynamic address allocation for devices is defined].'), ('001961','draft','2013-05-03','DISA FSO','policy','Defines the lease duration to be assigned to devices.','IA-03(03)(a)','N/A','Determine if: - dynamic address allocation lease information assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[01]; lease information to be employed to standardize dynamic address allocation for devices is defined]. - dynamic address allocation lease duration assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[02]; lease duration to be employed to standardize dynamic address allocation for devices is defined].'), ('001962','draft','2013-05-03','DISA FSO','technical','Where addresses are allocated dynamically, standardize dynamic address allocation lease information assigned to devices in accordance with organization-defined lease information.','IA-03(03)(a)','N/A','Determine if: - dynamic address allocation lease information assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[01]; lease information to be employed to standardize dynamic address allocation for devices is defined]. - dynamic address allocation lease duration assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[02]; lease duration to be employed to standardize dynamic address allocation for devices is defined].'), ('001963','draft','2013-05-03','DISA FSO','technical','Where addresses are allocated dynamically, standardize dynamic address allocation lease duration assigned to devices in accordance with organization-defined lease duration.','IA-03(03)(a)','N/A','Determine if: - dynamic address allocation lease information assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[01]; lease information to be employed to standardize dynamic address allocation for devices is defined]. - dynamic address allocation lease duration assigned to devices where addresses are allocated dynamically are standardized in accordance with [IA-03(03)_ODP[02]; lease duration to be employed to standardize dynamic address allocation for devices is defined].'), ('001965','draft','2013-05-03','DISA FSO','policy','Defines the configuration management process that is to handle the device authentication procedures.','IA-03(04)','N/A','Determine if device identification and authentication are handled based on attestation by [IA-03(04)_ODP; configuration management process to be employed to handle device identification and authentication based on attestation is defined].'), ('001966','draft','2013-05-03','DISA FSO','policy','Handle device identification based on attestation is handled by the organization-defined configuration management process.','IA-03(04)','N/A','Determine if device identification and authentication are handled based on attestation by [IA-03(04)_ODP; configuration management process to be employed to handle device identification and authentication based on attestation is defined].'), ('001967','draft','2013-05-03','DISA FSO','technical','Authenticate organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection using bidirectional authentication that is cryptographically based.','IA-03(01)','N/A','Determine if [IA-03(01)_ODP[01]; devices and/or types of devices requiring use of cryptographically based, bidirectional authentication to authenticate before establishing one or more connections are defined] are authenticated before establishing [IA-03(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {local; remote; network}] connection using bidirectional authentication that is cryptographically based.'), ('001968','draft','2013-05-03','DISA FSO','policy','Defines the configuration management process that is to handle the device identification procedures.','IA-03(04)','N/A','Determine if device identification and authentication are handled based on attestation by [IA-03(04)_ODP; configuration management process to be employed to handle device identification and authentication based on attestation is defined].'), ('001969','draft','2013-05-03','DISA FSO','policy','Handle device authentication based on attestation is handled by the organization-defined configuration management process.','IA-03(04)','N/A','Determine if device identification and authentication are handled based on attestation by [IA-03(04)_ODP; configuration management process to be employed to handle device identification and authentication based on attestation is defined].'), ('001970','draft','2013-05-03','DISA FSO','policy','Defines the personnel or roles that authorize the assignment of individual, group, role, and device identifiers.','IA-04a.','N/A','Determine if system identifiers are managed by receiving authorization from [IA-04_ODP[01]; personnel or roles from whom authorization must be received to assign an identifier are defined] to assign to an individual, group, role, or device identifier.'), ('001971','draft','2013-05-03','DISA FSO','policy','Manage system identifiers by receiving authorization from organization-defined personnel or roles to assign an individual, group, role, or device identifier.','IA-04a.','N/A','Determine if system identifiers are managed by receiving authorization from [IA-04_ODP[01]; personnel or roles from whom authorization must be received to assign an identifier are defined] to assign to an individual, group, role, or device identifier.'), ('001972','draft','2013-05-03','DISA FSO','policy','Manage system identifiers by selecting an identifier that identifies an individual, group, role, or device.','IA-04b.','N/A','Determine if system identifiers are managed by selecting an identifier that identifies an individual, group, role, service, or device.'), ('001973','draft','2013-05-03','DISA FSO','policy','Manage system identifiers by assigning the identifier to the intended individual, group, role, or device.','IA-04c.','N/A','Determine if system identifiers are managed by assigning the identifier to the intended individual, group, role, service, or device.'), ('001974','draft','2013-05-03','DISA FSO','policy','Defines the time period for which the reuse of identifiers is prohibited.','IA-04d.','N/A','Determine if system identifiers are managed by preventing reuse of identifiers for [IA-04_ODP[02]; a time period for preventing reuse of identifiers is defined].'), ('001975','draft','2013-05-03','DISA FSO','policy','Manage system identifiers by preventing reuse of identifiers for an organization-defined time period.','IA-04d.','N/A','Determine if system identifiers are managed by preventing reuse of identifiers for [IA-04_ODP[02]; a time period for preventing reuse of identifiers is defined].'), ('001976','draft','2013-05-03','DISA FSO','technical','Manage individual identifiers dynamically in accordance with organization-defined identifier policy.','IA-04(05)','N/A','Determine if individual identifiers are dynamically managed in accordance with [IA-04(05)_ODP; a dynamic identifier policy for managing individual identifiers is defined].'), ('001977','draft','2013-05-03','DISA FSO','policy','Defines the external organizations with which it will coordinate for cross-management of identifiers.','IA-04(06)','N/A','Determine if cross-organization management of identifiers is coordinated with [IA-04(06)_ODP; external organizations with whom to coordinate the cross-organization management of identifiers are defined].'), ('001978','draft','2013-05-03','DISA FSO','policy','Coordinate with organization-defined external organizations for cross-organization management of identifiers.','IA-04(06)','N/A','Determine if cross-organization management of identifiers is coordinated with [IA-04(06)_ODP; external organizations with whom to coordinate the cross-organization management of identifiers are defined].'), ('001980','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by verifying, as part of the initial authenticator distribution, the identity of the individual, group, role, service, or device receiving the authenticator.','IA-05a.','N/A','Determine if system authenticators are managed through the verification of the identity of the individual, group, role, service, or device receiving the authenticator as part of the initial authenticator distribution.'), ('001981','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by establishing administrative procedures for initial authenticator distribution.','IA-05d.','N/A','Determine if system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators.'), ('001984','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by establishing administrative procedures for revoking authenticators.','IA-05d.','N/A','Determine if system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators.'), ('001985','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by implementing administrative procedures for initial authenticator distribution.','IA-05d.','N/A','Determine if system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators.'), ('001988','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by implementing administrative procedures for revoking authenticators.','IA-05d.','N/A','Determine if system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators.'), ('001990','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by changing authenticators for group or role accounts when membership to those accounts changes.','IA-05i.','N/A','Determine if system authenticators are managed through the change of authenticators for group or role accounts when membership to those accounts changes.'), ('001998','draft','2013-05-03','DISA FSO','policy','Require developers and installers of system components to provide unique authenticators or change default authenticators prior to delivery and installation.','IA-05(05)','N/A','Determine if developers and installers of system components are required to provide unique authenticators or change default authenticators prior to delivery and installation.'), ('002001','draft','2013-05-03','DISA FSO','technical','Bind identities and authenticators dynamically using organization-defined binding rules.','IA-05(10)','N/A','Determine if identities and authenticators are dynamically bound using [IA-05(10)_ODP; rules for dynamically binding identities and authenticators are defined].'), ('002004','draft','2013-05-03','DISA FSO','policy','Defines the biometric quality requirements to be employed by the mechanisms for biometric-based authentication.','IA-05(12)','N/A','Determine if mechanisms that satisfy [IA-05(12)_ODP; biometric quality requirements for biometric-based authentication are defined] are employed for biometric-based authentication.'), ('002005','draft','2013-05-03','DISA FSO','technical','For biometric-based authentication, employ mechanisms that satisfy organization-defined biometric quality requirements.','IA-05(12)','N/A','Determine if mechanisms that satisfy [IA-05(12)_ODP; biometric quality requirements for biometric-based authentication are defined] are employed for biometric-based authentication.'), ('002006','draft','2013-05-03','DISA FSO','policy','Defines the time period after which the use of cached authenticators is prohibited.','IA-05(13)','N/A','Determine if the use of cached authenticators is prohibited after [IA-05(13)_ODP; the time period after which the use of cached authenticators is prohibited is defined].'), ('002007','draft','2013-05-03','DISA FSO','technical','Prohibit the use of cached authenticators after an organization-defined time period.','IA-05(13)','N/A','Determine if the use of cached authenticators is prohibited after [IA-05(13)_ODP; the time period after which the use of cached authenticators is prohibited is defined].'), ('002008','draft','2013-05-03','DISA FSO','policy','For PKI-based authentication, employs an organization-wide methodology for managing the content of PKI trust stores installed across all platforms including networks, operating systems, browsers, and applications.','IA-05(14)','N/A','Determine if an organization-wide methodology for managing the content of PKI trust stores is employed across all platforms, including networks, operating systems, browsers, and applications for PKI-based authentication.'), ('002009','draft','2013-05-03','DISA FSO','technical','Accept Personal Identity Verification-compliant credentials from other federal agencies.','IA-08(01)','N/A','Determine if: - Personal Identity Verification-compliant credentials from other federal agencies are accepted. - Personal Identity Verification-compliant credentials from other federal agencies are electronically verified.'), ('002010','draft','2013-05-03','DISA FSO','technical','Electronically verify Personal Identity Verification-compliant credentials from other federal agencies.','IA-08(01)','N/A','Determine if: - Personal Identity Verification-compliant credentials from other federal agencies are accepted. - Personal Identity Verification-compliant credentials from other federal agencies are electronically verified.'), ('002015','draft','2013-05-03','DISA FSO','technical','Accept federated or PKI credentials that meet organization-defined policy.',NULL,'N/A',NULL), ('002016','draft','2013-05-03','DISA FSO','technical','Verify federated PKI credentials that meet organization-defined policy.',NULL,'N/A',NULL), ('002018','draft','2013-05-03','DISA FSO','policy','Defines the system services and applications requiring authentication.','IA-09','N/A','Determine if [IA-09_ODP; system services and applications to be uniquely identified and authenticated are defined] are uniquely identified and authenticated before establishing communications with devices, users, or other services or applications.'), ('002021','draft','2013-05-03','DISA FSO','policy','Uniquely identify organization-defined system services and applications before establishing communications with devices, users, or other services or applications.','IA-09','N/A','Determine if [IA-09_ODP; system services and applications to be uniquely identified and authenticated are defined] are uniquely identified and authenticated before establishing communications with devices, users, or other services or applications.'), ('002022','draft','2013-05-03','DISA FSO','policy','Uniquely authenticate organization-defined system services and applications before establishing communications with devices, users, or other services or applications.','IA-09','N/A','Determine if [IA-09_ODP; system services and applications to be uniquely identified and authenticated are defined] are uniquely identified and authenticated before establishing communications with devices, users, or other services or applications.'), ('002033','draft','2013-05-03','DISA FSO','policy','Defines the specific circumstances or situations when individuals accessing the system employ organization-defined supplemental authentication techniques or mechanisms.','IA-10','N/A','Determine if individuals accessing the system are required to employ [IA-10_ODP[01]; supplemental authentication techniques or mechanisms to be employed when accessing the system under specific circumstances or situations are defined] under specific [IA-10_ODP[02]; circumstances or situations that require individuals accessing the system to employ supplemental authentication techniques or mechanisms are defined].'), ('002034','draft','2013-05-03','DISA FSO','policy','Defines the supplemental authentication techniques or mechanisms to be employed in specific organization-defined circumstances or situations by individuals accessing the system.','IA-10','N/A','Determine if individuals accessing the system are required to employ [IA-10_ODP[01]; supplemental authentication techniques or mechanisms to be employed when accessing the system under specific circumstances or situations are defined] under specific [IA-10_ODP[02]; circumstances or situations that require individuals accessing the system to employ supplemental authentication techniques or mechanisms are defined].'), ('002035','draft','2013-05-03','DISA FSO','policy','Require individuals accessing the system employ organization-defined supplemental authentication techniques or mechanisms under specific organization-defined circumstances or situations.','IA-10','N/A','Determine if individuals accessing the system are required to employ [IA-10_ODP[01]; supplemental authentication techniques or mechanisms to be employed when accessing the system under specific circumstances or situations are defined] under specific [IA-10_ODP[02]; circumstances or situations that require individuals accessing the system to employ supplemental authentication techniques or mechanisms are defined].'), ('002036','draft','2013-05-03','DISA FSO','policy','Defines the circumstances or situations under which users will be required to reauthenticate.','IA-11','N/A','Determine if users are required to re-authenticate when [IA-11_ODP; circumstances or situations requiring re-authentication are defined].'), ('002038','draft','2013-05-03','DISA FSO','technical','The organization requires users to reauthenticate upon organization-defined circumstances or situations requiring reauthentication.',NULL,'N/A',NULL), ('002042','draft','2013-05-03','DISA FSO','policy','Manage system authenticators by protecting authenticator content from unauthorized modification.','IA-05g.','N/A','Determine if system authenticators are managed through the protection of authenticator content from unauthorized disclosure and modification.'), ('002044','draft','2013-05-29','DISA FSO','policy','Defines measures to be employed to ensure that long-term audit records generated by the system can be retrieved.','AU-11(01)','N/A','Determine if [AU-11(01)_ODP; measures to be employed to ensure that long-term audit records generated by the system can be retrieved are defined] are employed to ensure that long-term audit records generated by the system can be retrieved.'), ('002045','draft','2013-05-29','DISA FSO','policy','Employ organization-defined measures to ensure that long-term audit records generated by the information system can be retrieved.','AU-11(01)','N/A','Determine if [AU-11(01)_ODP; measures to be employed to ensure that long-term audit records generated by the system can be retrieved are defined] are employed to ensure that long-term audit records generated by the system can be retrieved.'), ('002047','draft','2013-05-29','DISA FSO','policy','Defines the system components on which the auditing that is to be performed can be changed by organization-defined individuals or roles.','AU-12(03)','N/A','Determine if: - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is provided. - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is implemented.'), ('002048','draft','2013-06-05','DISA FSO','policy','Defines the personnel or roles to whom the awareness and training policy is disseminated.','AT-01a.','N/A','Determine if: - an awareness and training policy is developed and documented. - the awareness and training policy is disseminated to [AT-01_ODP[01]; personnel or roles to whom the awareness and training policy is to be disseminated is/are defined].'), ('002049','draft','2013-06-05','DISA FSO','policy','Defines the personnel or roles to whom the organization-level; mission/business process-level; system-level awareness and training procedures are disseminated.','AT-01a.02','N/A','Determine if: - awareness and training procedures to facilitate the implementation of the awareness and training policy and associated access controls are developed and documented. - the awareness and training procedures are disseminated to [AT-01_ODP[02]; personnel or roles to whom the awareness and training procedures are to be disseminated is/are defined].'), ('002050','draft','2013-06-05','DISA FSO','policy','Defines the personnel or roles to whom initial and refresher training in the employment and operation of environmental controls is to be provided.','AT-03(01)','N/A','Determine if [AT-03(01)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of environmental controls are defined] are provided with initial and refresher training [AT-03(01)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of environmental controls is defined] in the employment and operation of environmental controls.'), ('002051','draft','2013-06-05','DISA FSO','policy','Defines the personnel or roles to whom initial and refresher training in the employment and operation of physical security controls is to be provided.','AT-03(02)','N/A','Determine if [AT-03(02)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of physical security controls is/are defined] is/are provided with initial and refresher training [AT-03(02)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of physical security controls is defined] in the employment and operation of physical security controls.'), ('002052','draft','2013-06-05','DISA FSO','policy','Provide practical exercises in security training that reinforce training objectives.','AT-03(03)','N/A','Determine if: - practical exercises in security training that reinforce training objectives are provided. - practical exercises in privacy training that reinforce training objectives are provided.'), ('002055','draft','2013-06-05','DISA FSO','policy','Provide literacy training on recognizing and reporting potential indicators of insider threat.','AT-02(02)','N/A','Determine if: - literacy training on recognizing potential indicators of insider threat is provided. - literacy training on reporting potential indicators of insider threat is provided.'), ('002056','draft','2013-06-11','DISA FSO','policy','Defines the time period the records of configuration-controlled changes are to be retained.','CM-03d.','N/A','Determine if approved configuration-controlled changes to the system are implemented.'), ('002057','draft','2013-06-11','DISA FSO','policy','Defines the personnel to be notified when approved changes to the system are completed.','CM-03(01)(f)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to notify [CM-03(01)_ODP[04]; personnel to be notified when approved changes are complete is/are defined] when approved changes to the system are completed.'), ('002058','draft','2013-06-11','DISA FSO','policy','Employ automated mechanisms to notify organization-defined personnel when approved changes to the system are completed.','CM-03(01)(f)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to notify [CM-03(01)_ODP[04]; personnel to be notified when approved changes are complete is/are defined] when approved changes to the system are completed.'), ('002059','draft','2013-06-11','DISA FSO','policy','Defines the system components for which the organization will employ automated mechanisms to centrally manage, apply, and verify configuration settings.','CM-06(01)','N/A','Determine if: - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are managed using [CM-06(01)_ODP[02]; automated mechanisms to manage configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are applied using [CM-06(01)_ODP[03]; automated mechanisms to apply configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are verified using [CM-06(01)_ODP[04]; automated mechanisms to verify configuration settings are defined].'), ('002061','draft','2013-06-21','DISA FSO','policy','Defines the personnel or roles to whom the organization-level; mission/business process; system-level assessment, authorization, and monitoring policy is to be disseminated.','CA-01a.','N/A','Determine if: - an assessment, authorization, and monitoring policy is developed and documented. - the assessment, authorization, and monitoring policy is disseminated to [CA-01_ODP[01]; personnel or roles to whom the assessment, authorization, and monitoring policy is to be disseminated is/are defined].'), ('002062','draft','2013-06-21','DISA FSO','policy','Defines the personnel or roles to whom the assessment, authorization, monitoring procedures are to be disseminated.','CA-01a.02','N/A','Determine if: - assessment, authorization, and monitoring procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls are developed and documented. - the assessment, authorization, and monitoring procedures are disseminated to [CA-01_ODP[02]; personnel or roles to whom the assessment, authorization, and monitoring procedures are to be disseminated is/are defined].'), ('002065','draft','2013-06-21','DISA FSO','policy','Defines the frequency at which to conduct control assessments.','CA-02(02)','N/A','Determine if [CA-02(02)_ODP[01]; frequency at which to include specialized assessments as part of the control assessment is defined] [CA-02(02)_ODP[02]; one of the following PARAMETER VALUES is selected: {announced; unannounced}] [CA-02(02)_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {in-depth monitoring; security instrumentation; automated security test cases; vulnerability scanning; malicious user testing; insider threat assessment; performance and load testing; data leakage or data loss assessment; [CA-02(02)_ODP[04]; other forms of assessment are defined (if selected)]}] are included as part of control assessments.'), ('002066','draft','2013-06-21','DISA FSO','policy','Leverage the results of control assessments of the organization-defined system performed by an organization-defined external organization when the assessment meets organization-defined requirements.','CA-02(03)','N/A','Determine if the results of control assessments performed by [CA-02(03)_ODP[01]; external organizations from which the results of control assessments are leveraged are defined] on [CA-02(03)_ODP[02]; system on which a control assessment was performed by an external organization is defined] are leveraged when the assessment meets [CA-02(03)_ODP[03]; requirements to be met by the control assessment performed by an external organization on the system are defined].'), ('002067','draft','2013-06-21','DISA FSO','policy','Defines the system for which the results of control assessments will be leveraged.',NULL,'N/A',NULL), ('002068','draft','2013-06-21','DISA FSO','policy','Defines the external organizations from which control assessment results for organization-defined systems will be accepted.','CA-02(03)','N/A','Determine if the results of control assessments performed by [CA-02(03)_ODP[01]; external organizations from which the results of control assessments are leveraged are defined] on [CA-02(03)_ODP[02]; system on which a control assessment was performed by an external organization is defined] are leveraged when the assessment meets [CA-02(03)_ODP[03]; requirements to be met by the control assessment performed by an external organization on the system are defined].'), ('002069','draft','2013-06-21','DISA FSO','policy','Defines the requirements the control assessments for organization-defined systems from organization-defined external organizations must meet.','CA-02(03)','N/A','Determine if the results of control assessments performed by [CA-02(03)_ODP[01]; external organizations from which the results of control assessments are leveraged are defined] on [CA-02(03)_ODP[02]; system on which a control assessment was performed by an external organization is defined] are leveraged when the assessment meets [CA-02(03)_ODP[03]; requirements to be met by the control assessment performed by an external organization on the system are defined].'), ('002070','draft','2013-06-21','DISA FSO','policy','Develop a control assessment plan that describes the scope of the assessment including assessment team, and assessment roles and responsibilities.','CA-02b.03','N/A','Determine if: - a control assessment plan is developed that describes the scope of the assessment, including the assessment environment. - a control assessment plan is developed that describes the scope of the assessment, including the assessment team. - a control assessment plan is developed that describes the scope of the assessment, including assessment roles and responsibilities.'), ('002071','draft','2013-06-21','DISA FSO','policy','Defines the individuals or roles to whom the results of the control assessment are to be provided.','CA-02f.','N/A','Determine if the results of the control assessment are provided to [CA-02_ODP[02]; individuals or roles to whom control assessment results are to be provided are defined].'), ('002083','draft','2013-06-21','DISA FSO','policy','Review and update the agreements on an organization-defined frequency.','CA-03c.','N/A','Determine if agreements are reviewed and updated [CA-03_ODP[03]; the frequency at which to review and update agreements is defined].'), ('002084','draft','2013-06-21','DISA FSO','policy','Defines the frequency at which reviews and updates to the agreements must be conducted.','CA-03c.','N/A','Determine if agreements are reviewed and updated [CA-03_ODP[03]; the frequency at which to review and update agreements is defined].'), ('002086','draft','2013-06-21','DISA FSO','policy','Employ trend analyses to determine if control implementations, the frequency of continuous monitoring activities, and the types of activities used in the continuous monitoring process need to be modified based on empirical data.','CA-07(03)','N/A','Determine if: - trend analysis is employed to determine if control implementations used in the continuous monitoring process need to be modified based on empirical data. - trend analysis is employed to determine if the frequency of continuous monitoring activities used in the continuous monitoring process needs to be modified based on empirical data. - trend analysis is employed to determine if the types of activities used in the continuous monitoring process need to be modified based on empirical data.'), ('002087','draft','2013-06-21','DISA FSO','policy','Establish organization-defined system-level metrics to be monitored.','CA-07a.','N/A','Determine if system-level continuous monitoring includes establishment of the following system-level metrics to be monitored: [CA-07_ODP[01]; system-level metrics to be monitored are defined].'), ('002088','draft','2013-06-21','DISA FSO','policy','Establish organization-defined frequencies for monitoring.','CA-07b.','N/A','Determine if: - system-level continuous monitoring includes established [CA-07_ODP[02]; frequencies at which to monitor control effectiveness are defined] for monitoring. - system-level continuous monitoring includes established [CA-07_ODP[03]; frequencies at which to assess control effectiveness are defined] for assessment of control effectiveness.'), ('002090','draft','2013-06-21','DISA FSO','policy','Implement ongoing monitoring of system and organization-defined metrics in accordance with the continuous monitoring strategy.','CA-07d.','N/A','Determine if system-level continuous monitoring includes ongoing monitoring of system and organization-defined metrics in accordance with the continuous monitoring strategy.'), ('002091','draft','2013-06-21','DISA FSO','policy','Implement a continuous monitoring program that includes correlation and analysis of information generated by assessments and monitoring.','CA-07e.','N/A','Determine if system-level continuous monitoring includes correlation and analysis of information generated by control assessments and monitoring.'), ('002092','draft','2013-06-21','DISA FSO','policy','Implement a continuous monitoring program that includes response actions to address results of the analysis of control assessment and monitoring information.','CA-07f.','N/A','Determine if system-level continuous monitoring includes response actions to address the results of the analysis of control assessment and monitoring information.'), ('002093','draft','2013-06-21','DISA FSO','policy','Conduct penetration testing in accordance with organization-defined frequency on organization-defined systems or system components.','CA-08','N/A','Determine if penetration testing is conducted [CA-08_ODP[01]; frequency at which to conduct penetration testing on systems or system components is defined] on [CA-08_ODP[02]; systems or system components on which penetration testing is to be conducted are defined].'), ('002094','draft','2013-06-21','DISA FSO','policy','Defines the frequency for conducting penetration testing on organization-defined systems or system components.','CA-08','N/A','Determine if penetration testing is conducted [CA-08_ODP[01]; frequency at which to conduct penetration testing on systems or system components is defined] on [CA-08_ODP[02]; systems or system components on which penetration testing is to be conducted are defined].'), ('002095','draft','2013-06-21','DISA FSO','policy','Defines the systems or system components on which penetration testing will be conducted.','CA-08','N/A','Determine if penetration testing is conducted [CA-08_ODP[01]; frequency at which to conduct penetration testing on systems or system components is defined] on [CA-08_ODP[02]; systems or system components on which penetration testing is to be conducted are defined].'), ('002096','draft','2013-06-21','DISA FSO','policy','Employ an independent penetration agent or penetration team to perform penetration testing on the system or system components.','CA-08(01)','N/A','Determine if an independent penetration testing agent or team is employed to perform penetration testing on the system or system components.'), ('002097','draft','2013-06-21','DISA FSP','policy','Defines red team exercises to simulate attempts by adversaries to compromise organizational systems.','CA-08(02)','N/A','Determine if [CA-08(02)_ODP; red team exercises to simulate attempts by adversaries to compromise organizational systems are defined] are employed to simulate attempts by adversaries to compromise organizational systems in accordance with applicable rules of engagement.'), ('002099','draft','2013-06-21','DISA FSO','policy','Employ organization-defined red team exercises to simulate attempts by adversaries to compromise organizational systems in accordance with applicable rules of engagement.','CA-08(02)','N/A','Determine if [CA-08(02)_ODP; red team exercises to simulate attempts by adversaries to compromise organizational systems are defined] are employed to simulate attempts by adversaries to compromise organizational systems in accordance with applicable rules of engagement.'), ('002100','draft','2013-06-21','DISA FSO','policy','Perform security compliance checks on constituent components prior to the establishment of the internal connection.','CA-09(01)','N/A','Determine if: - security compliance checks are performed on constituent system components prior to the establishment of the internal connection. - privacy compliance checks are performed on constituent system components prior to the establishment of the internal connection.'), ('002101','draft','2013-06-21','DISA FSO','policy','Authorizes internal connections of organization-defined system components or classes of components to the system.','CA-09a.','N/A','Determine if internal connections of [CA-09_ODP[01]; system components or classes of components requiring internal connections to the system are defined] to the system are authorized.'), ('002102','draft','2013-06-21','DISA FSO','policy','Defines the system components or classes of components that are authorized internal connections to the system.','CA-09a.','N/A','Determine if internal connections of [CA-09_ODP[01]; system components or classes of components requiring internal connections to the system are defined] to the system are authorized.'), ('002103','draft','2013-06-21','DISA FSO','policy','Document, for each internal connection, the interface characteristics.','CA-09b.','N/A','Determine if: - for each internal connection, the interface characteristics are documented. - for each internal connection, the security requirements are documented. - for each internal connection, the privacy requirements are documented. - for each internal connection, the nature of the information communicated is documented.'), ('002104','draft','2013-06-21','DISA FSO','policy','Document, for each internal connection, the security requirements.','CA-09b.','N/A','Determine if: - for each internal connection, the interface characteristics are documented. - for each internal connection, the security requirements are documented. - for each internal connection, the privacy requirements are documented. - for each internal connection, the nature of the information communicated is documented.'), ('002105','draft','2013-06-21','DISA FSO','policy','Document, for each internal connection, the nature of the information communicated.','CA-09b.','N/A','Determine if: - for each internal connection, the interface characteristics are documented. - for each internal connection, the security requirements are documented. - for each internal connection, the privacy requirements are documented. - for each internal connection, the nature of the information communicated is documented.'), ('002107','draft','2013-06-24','DISA FSO','policy','Defines the personnel or roles to be recipients of the organization-level; mission/business process-level; and/or system-level access control policy necessary to facilitate the implementation of the access control policy and associated access controls.','AC-01a.','N/A','Determine if: - an access control policy is developed and documented. - the access control policy is disseminated to [AC-01_ODP[01]; personnel or roles to whom the access control policy is to be disseminated is/are defined].'), ('002108','draft','2013-06-24','DISA FSO','policy','Defines the personnel or roles to be recipients of the procedures necessary to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level access control policy and associated access controls.','AC-01a.02','N/A','Determine if: - access control procedures to facilitate the implementation of the access control policy and associated controls are developed and documented. - the access control procedures are disseminated to [AC-01_ODP[02]; personnel or roles to whom the access control procedures are to be disseminated is/are defined].'), ('002112','draft','2013-06-24','DISA FSO','policy','Assign account managers.','AC-02b.','N/A','Determine if account managers are assigned.'), ('002115','draft','2013-06-24','DISA FSO','policy','Specify authorized users of the system.','AC-02d.01','N/A','Determine if authorized users of the system are specified.'), ('002116','draft','2013-06-24','DISA FSO','policy','Specify authorized users of the group.','AC-02d.02','N/A','Determine if group and role membership are specified.'), ('002117','draft','2013-06-24','DISA FSO','policy','Specify authorized users of the role membership.','AC-02d.02','N/A','Determine if group and role membership are specified.'), ('002118','draft','2013-06-24','DISA FSO','policy','Specify authorized access authorizations (i.e., privileges) for each account.','AC-02d.03','N/A','Determine if: - access authorizations (i.e., privileges) are specified for each account. - [AC-02_ODP[02]; attributes (as required) for each account are defined] are specified for each account. '), ('002119','draft','2013-06-24','DISA FSO','policy','Specify organization-attributes (as required) for each account on the system.','AC-02d.03','N/A','Determine if: - access authorizations (i.e., privileges) are specified for each account. - [AC-02_ODP[02]; attributes (as required) for each account are defined] are specified for each account. '), ('002120','draft','2013-06-24','DISA FSO','policy','Defines the personnel or roles authorized to approve the creation of accounts.','AC-02e.','N/A','Determine if approvals are required by [AC-02_ODP[03]; personnel or roles required to approve requests to create accounts is/are defined] for requests to create accounts.'), ('002121','draft','2013-06-24','DISA FSO','policy','Defines the procedures to be employed when creating, enabling, modifying, disabling, and removing information system accounts.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('002122','draft','2013-06-24','DISA FSO','policy','Monitor the use of accounts.','AC-02g.','N/A','Determine if the use of accounts is monitored.'), ('002123','draft','2013-06-24','DISA FSO','policy','Notify account managers and organization-defined personnel or roles within an organization-defined time-period when accounts are no longer required.','AC-02h.01','N/A','Determine if account managers and [AC-02_ODP[05]; personnel or roles to be notified is/are defined] are notified within [AC-02_ODP[06]; time period within which to notify account managers when accounts are no longer required is defined] when accounts are no longer required.'), ('002124','draft','2013-06-24','DISA FSO','policy','Notify account managers and organization-defined personnel or roles within an organization-defined time-period when users are terminated or transferred.','AC-02h.02','N/A','Determine if account managers and [AC-02_ODP[05]; personnel or roles to be notified is/are defined] are notified within [AC-02_ODP[07]; time period within which to notify account managers when users are terminated or transferred is defined] when users are terminated or transferred.'), ('002125','draft','2013-06-24','DISA FSO','policy','Notify account managers and organization-defined personnel or roles within an organization-defined time-period when system usage or need-to-know changes for an individual.','AC-02h.03','N/A','Determine if account managers and [AC-02_ODP[05]; personnel or roles to be notified is/are defined] are notified within [AC-02_ODP[08]; time period within which to notify account managers when system usage or the need to know changes for an individual is defined] when system usage or the need to know changes for an individual.'), ('002126','draft','2013-06-24','DISA FSO','policy','Authorize access to the system based on a valid access authorization.','AC-02i.01','N/A','Determine if access to the system is authorized based on a valid access authorization.'), ('002127','draft','2013-06-24','DISA FSO','policy','Authorize access to the system based on intended system usage.','AC-02i.02','N/A','Determine if access to the system is authorized based on intended system usage.'), ('002128','draft','2013-06-24','DISA FSO','policy','Authorize access to the system based on organization-defined attributes (as required).','AC-02i.03','N/A','Determine if access to the system is authorized based on [AC-02_ODP[09]; attributes needed to authorize system access (as required) are defined].'), ('002129','draft','2013-06-24','DISA FSO','policy','Establish and implement a process for changing shared or group account authenticators (if deployed) when individuals are removed from the group.','AC-02k.','N/A','Determine if: - a process is established for changing shared or group account authenticators (if deployed) when individuals are removed from the group. - a process is implemented for changing shared or group account authenticators (if deployed) when individuals are removed from the group.'), ('002130','draft','2013-06-24','DISA FSO','technical','Automatically audit account enabling actions.','AC-02(04)','N/A','Determine if: - account creation is automatically audited. - account modification is automatically audited. - account enabling is automatically audited. - account disabling is automatically audited. - account removal actions are automatically audited.'), ('002133','draft','2013-06-24','DISA FSO ','policy','Defines other conditions when users are required to log out.','AC-02(05)','N/A','Determine if users are required to log out when [AC-02(05)_ODP; the time period of expected inactivity or description of when to log out is defined].'), ('002134','draft','2013-06-24','DISA FSO','policy','Defines a list of dynamic privilege management capabilities to be implemented.','AC-02(06)','N/A','Determine if [AC-02(06)_ODP; dynamic privilege management capabilities are defined] are implemented.'), ('002135','draft','2013-06-24','DISA FSO','technical','Implement the organization-defined list of dynamic privilege management capabilities.','AC-02(06)','N/A','Determine if [AC-02(06)_ODP; dynamic privilege management capabilities are defined] are implemented.'), ('002137','draft','2013-06-24','DISA FSO','policy','Revoke access when privileged role or attribute assignments are no longer appropriate.','AC-02(07)(d)','N/A','Determine if access is revoked when privileged role or attribute assignments are no longer appropriate.'), ('002138','draft','2013-06-24','DISA FSO','policy','Defines the system accounts that can be dynamically created.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('002139','draft','2013-06-24','DISA FSO','technical','Create organization-defined system accounts dynamically.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('002140','draft','2013-06-24','DISA FSO ','policy','Defines the conditions for establishing shared/group accounts.','AC-02(09)','N/A','Determine if the use of shared and group accounts is only permitted if [AC-02(09)_ODP; conditions for establishing shared and group accounts are defined] are met.'), ('002141','draft','2013-06-24','DISA FSO','policy','Only permit the use of shared and group accounts that meet organization-defined conditions for establishing shared and group accounts.','AC-02(09)','N/A','Determine if the use of shared and group accounts is only permitted if [AC-02(09)_ODP; conditions for establishing shared and group accounts are defined] are met.'), ('002143','draft','2013-06-24','DISA FSO','policy','Defines the circumstances and/or usage conditions that are to be enforced for organization-defined information system accounts.','AC-02(11)','N/A','Determine if [AC-02(11)_ODP[01]; circumstances and/or usage conditions to be enforced for system accounts are defined] for [AC-02(11)_ODP[02]; system accounts subject to enforcement of circumstances and/or usage conditions are defined] are enforced.'), ('002144','draft','2013-06-24','DISA FSO ','policy','Defines the system accounts that are to be subject to the enforcement of organization-defined circumstances and/or usage conditions.','AC-02(11)','N/A','Determine if [AC-02(11)_ODP[01]; circumstances and/or usage conditions to be enforced for system accounts are defined] for [AC-02(11)_ODP[02]; system accounts subject to enforcement of circumstances and/or usage conditions are defined] are enforced.'), ('002145','draft','2013-06-24','DISA FSO','technical','Enforce organization-defined circumstances and/or usage conditions for organization-defined system accounts.','AC-02(11)','N/A','Determine if [AC-02(11)_ODP[01]; circumstances and/or usage conditions to be enforced for system accounts are defined] for [AC-02(11)_ODP[02]; system accounts subject to enforcement of circumstances and/or usage conditions are defined] are enforced.'), ('002146','draft','2013-06-24','DISA FSO','policy','Defines atypical usage for which the system accounts are to be monitored.','AC-02(12)(a)','N/A','Determine if system accounts are monitored for [AC-02(12)_ODP[01]; atypical usage for which to monitor system accounts is defined].'), ('002147','draft','2013-06-24','DISA FSO','policy','Monitor system accounts for organization-defined atypical usage.','AC-02(12)(a)','N/A','Determine if system accounts are monitored for [AC-02(12)_ODP[01]; atypical usage for which to monitor system accounts is defined].'), ('002148','draft','2013-06-24','DISA FSO','policy','Defines the personnel or roles to whom atypical usage of system accounts are to be reported.','AC-02(12)(b)','N/A','Determine if atypical usage of system accounts is reported to [AC-02(12)_ODP[02]; personnel or roles to report atypical usage is/are defined].'), ('002149','draft','2013-06-24','DISA FSO','policy','Report atypical usage of system accounts to organization-defined personnel or roles.','AC-02(12)(b)','N/A','Determine if atypical usage of system accounts is reported to [AC-02(12)_ODP[02]; personnel or roles to report atypical usage is/are defined].'), ('002150','draft','2013-06-24','DISA FSO','policy','Defines the time period within which the accounts of users posing a significant risk are to be disabled after discovery of the risk.','AC-02(13)','N/A','Determine if accounts of individuals are disabled within [AC-02(13)_ODP[01]; time period within which to disable accounts of individuals who are discovered to pose significant risk is defined] of discovery of [AC-02(13)_ODP[02]; significant risks leading to disabling accounts are defined].'), ('002151','draft','2013-06-24','DISA FSO','policy','Disable accounts of individuals within an organization-defined time-period of discovery of organization-defined significant risk.','AC-02(13)','N/A','Determine if accounts of individuals are disabled within [AC-02(13)_ODP[01]; time period within which to disable accounts of individuals who are discovered to pose significant risk is defined] of discovery of [AC-02(13)_ODP[02]; significant risks leading to disabling accounts are defined].'), ('002152','draft','2013-06-24','DISA FSO','policy','Defines other actions necessary for which dual authorization is to be enforced.','AC-03(02)','N/A','Determine if dual authorization is enforced for [AC-03(02)_ODP; privileged commands and/or other actions requiring dual authorization are defined].'), ('002153','draft','2013-06-24','DISA FSO','policy','Defines the mandatory access control policies that are to be enforced over all subjects and objects.','AC-03(03)','N/A','Determine if: - [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] is enforced over the set of covered objects specified in the policy.'), ('002154','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy is uniformly enforced across the covered subjects and objects within the system.','AC-03(03)(a)','N/A','Determine if: - [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] is uniformly enforced across the covered subjects within the system. - [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] is uniformly enforced across the covered objects within the system.'), ('002155','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information is constrained from passing the information to unauthorized subjects or objects.','AC-03(03)(b)(01)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that a subject that has been granted access to information is constrained from passing the information to unauthorized subjects or objects are enforced.'), ('002156','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information is constrained from granting its privileges to other subjects.','AC-03(03)(b)(02)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that a subject that has been granted access to information is constrained from granting its privileges to other subjects are enforced.'), ('002157','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information is constrained from changing one or more security attributes on subjects, objects, the system, or system components.','AC-03(03)(b)(03)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that a subject that has been granted access to information is constrained from changing one of more security attributes (specified by the policy) on subjects, objects, the system, or system components are enforced.'), ('002158','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information is constrained from choosing the security attributes to be associated with newly created or modified objects.','AC-03(03)(b)(04)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that a subject that has been granted access to information is constrained from choosing the security attributes and attribute values (specified by the policy) to be associated with newly created or modified objects are enforced.'), ('002159','draft','2013-06-24','DISA FSO ','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information is constrained from choosing the attribute values to be associated with newly created or modified objects.','AC-03(03)(b)(04)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that a subject that has been granted access to information is constrained from choosing the security attributes and attribute values (specified by the policy) to be associated with newly created or modified objects are enforced.'), ('002160','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information is constrained from changing the rules governing access control.','AC-03(03)(b)(05)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that a subject that has been granted access to information is constrained from changing the rules governing access control are enforced.'), ('002161','draft','2013-06-24','DISA FSO','policy','Defines subjects which may explicitly be granted organization-defined privileges such that they are not limited by any of the mandatory access control constraints.','AC-03(03)(c)','N/A','Determine if [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] and [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] specifying that [AC-03(03)_ODP[03]; subjects to be explicitly granted privileges are defined] may explicitly be granted [AC-03(03)_ODP[04]; privileges to be explicitly granted to subjects are defined] such that they are not limited by any defined subset (or all) of the above constraints are enforced.'), ('002162','draft','2013-06-24','DISA FSO','policy','Defines the privileges that may explicitly be granted to organization-defined subjects such that they are not limited by any of the mandatory access control constraints.','AC-03(04)','N/A','Determine if: - [AC-03(04)_ODP[01]; discretionary access control policy enforced over the set of covered subjects is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(04)_ODP[02]; discretionary access control policy enforced over the set of covered objects is defined] is enforced over the set of covered objects specified in the policy.'), ('002163','draft','2013-06-24','DISA FSO','policy','Defines the discretionary access control policies the information system is to enforce over subjects and objects.',NULL,'N/A',NULL), ('002164','draft','2013-06-24','DISA FSO','policy','Enforce organization-defined discretionary access control policy that over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information can do one or more of the following: pass the information to any other subjects or objects; grant its privileges to other subjects; change security attributes on subjects, objects, the system, or the system''s components; choose the security attributes to be associated with newly created or revised objects; and/or change the rules governing access control.',NULL,'N/A',NULL), ('002165','draft','2013-06-24','DISA FSO','technical','Enforce organization-defined discretionary access control policies over defined subjects and objects.',NULL,'N/A',NULL), ('002166','draft','2013-06-24','DISA FSO','policy','Defines the role-based access control policies to enforce over all subjects and objects.','AC-03(07)','N/A','Determine if: - a role-based access control policy is enforced over defined subjects. - a role-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(07)_ODP[01]; roles upon which to base control of access are defined] and [AC-03(07)_ODP[02]; users authorized to assume roles (defined in AC-03(07)_ODP[01]) are defined.]'), ('002169','draft','2013-06-24','DISA FSO','technical','Enforce a role-based access control policy over defined subjects and objects based upon organization-defined roles and users authorized to assume such roles.','AC-03(07)','N/A','Determine if: - a role-based access control policy is enforced over defined subjects. - a role-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(07)_ODP[01]; roles upon which to base control of access are defined] and [AC-03(07)_ODP[02]; users authorized to assume roles (defined in AC-03(07)_ODP[01]) are defined.]'), ('002170','draft','2013-06-24','DISA FSO','policy','Control access based upon organization-defined roles and users authorized to assume such roles.','AC-03(07)','N/A','Determine if: - a role-based access control policy is enforced over defined subjects. - a role-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(07)_ODP[01]; roles upon which to base control of access are defined] and [AC-03(07)_ODP[02]; users authorized to assume roles (defined in AC-03(07)_ODP[01]) are defined.]'), ('002173','draft','2013-06-24','DISA FSO','policy','Defines the roles authorized to control access based upon the role-based access control policy.','AC-03(07)','N/A','Determine if: - a role-based access control policy is enforced over defined subjects. - a role-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(07)_ODP[01]; roles upon which to base control of access are defined] and [AC-03(07)_ODP[02]; users authorized to assume roles (defined in AC-03(07)_ODP[01]) are defined.]'), ('002174','draft','2013-06-24','DISA FSO','policy','Defines the users authorized to control access based upon the role-based access control policy.','AC-03(07)','N/A','Determine if: - a role-based access control policy is enforced over defined subjects. - a role-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(07)_ODP[01]; roles upon which to base control of access are defined] and [AC-03(07)_ODP[02]; users authorized to assume roles (defined in AC-03(07)_ODP[01]) are defined.]'), ('002177','draft','2013-06-24','DISA FSO','policy','Defines the rules governing the timing of revocation of access authorizations.','AC-03(08)','N/A','Determine if: - revocation of access authorizations is enforced, resulting from changes to the security attributes of subjects based on [AC-03(08)_ODP; rules governing the timing of revocations of access authorizations are defined]. - revocation of access authorizations is enforced resulting from changes to the security attributes of objects based on [AC-03(08)_ODP; rules governing the timing of revocations of access authorizations are defined].'), ('002178','draft','2013-06-24','DISA FSO','technical','Enforce the revocation of access authorizations resulting from changes to the security attributes of subjects based on organization-defined rules governing the timing of revocations of access authorizations.','AC-03(08)','N/A','Determine if: - revocation of access authorizations is enforced, resulting from changes to the security attributes of subjects based on [AC-03(08)_ODP; rules governing the timing of revocations of access authorizations are defined]. - revocation of access authorizations is enforced resulting from changes to the security attributes of objects based on [AC-03(08)_ODP; rules governing the timing of revocations of access authorizations are defined].'), ('002179','draft','2013-06-24','DISA FSO','technical','Enforce the revocation of access authorizations resulting from changes to the security attributes of objects based on organization-defined rules governing the timing of revocations of access authorizations.','AC-03(08)','N/A','Determine if: - revocation of access authorizations is enforced, resulting from changes to the security attributes of subjects based on [AC-03(08)_ODP; rules governing the timing of revocations of access authorizations are defined]. - revocation of access authorizations is enforced resulting from changes to the security attributes of objects based on [AC-03(08)_ODP; rules governing the timing of revocations of access authorizations are defined].'), ('002180','draft','2013-06-24','DISA FSO','policy','Defines the controls the organization-defined system or system component is to provide to protect information released outside the established system boundary.','AC-03(09)(a)','N/A','Determine if information is released outside of the system only if the receiving [AC-03(09)_ODP[01]; the outside system or system component to which to release information is defined] provides [AC-03(09)_ODP[02]; controls to be provided by the outside system or system component (defined in AC-03(09)_ODP[01]) are defined].'), ('002181','draft','2013-06-24','DISA FSO','policy','Defines system or system components that are to provide organization-defined controls to protect information received outside the established system boundary.','AC-03(09)(a)','N/A','Determine if information is released outside of the system only if the receiving [AC-03(09)_ODP[01]; the outside system or system component to which to release information is defined] provides [AC-03(09)_ODP[02]; controls to be provided by the outside system or system component (defined in AC-03(09)_ODP[01]) are defined].'), ('002182','draft','2013-06-24','DISA FSO','policy','Release information outside of the established system boundary only if organization-defined system or system components provides organization-defined controls.','AC-03(09)(a)','N/A','Determine if information is released outside of the system only if the receiving [AC-03(09)_ODP[01]; the outside system or system component to which to release information is defined] provides [AC-03(09)_ODP[02]; controls to be provided by the outside system or system component (defined in AC-03(09)_ODP[01]) are defined].'), ('002183','draft','2013-06-24','DISA FSO ','policy','Defines the controls to be used to validate the appropriateness of the information designated for release.','AC-03(09)(b)','N/A','Determine if information is released outside of the system only if [AC-03(09)_ODP[03]; controls used to validate appropriateness of information to be released are defined] are used to validate the appropriateness of the information designated for release.'), ('002184','draft','2013-06-24','DISA FSO','policy','Release information outside of the established system boundary only if organization-defined controls are used to validate the appropriateness of the information designated for release.','AC-03(09)(b)','N/A','Determine if information is released outside of the system only if [AC-03(09)_ODP[03]; controls used to validate appropriateness of information to be released are defined] are used to validate the appropriateness of the information designated for release.'), ('002185','draft','2013-06-24','DISA FSO','policy','Defines the conditions on which it will employ an audited override of automated access control mechanisms.','AC-03(10)','N/A','Determine if an audited override of automated access control mechanisms is employed under [AC-03(10)_ODP[01]; conditions under which to employ an audited override of automated access control mechanisms are defined] by [AC-03(10)_ODP[02]; roles allowed to employ an audited override of automated access control mechanisms are defined].'), ('002186','draft','2013-06-24','DISA FSO','technical','Employ an audited override of automated access control mechanisms under organization-defined conditions by organization-defined roles.','AC-03(10)','N/A','Determine if an audited override of automated access control mechanisms is employed under [AC-03(10)_ODP[01]; conditions under which to employ an audited override of automated access control mechanisms are defined] by [AC-03(10)_ODP[02]; roles allowed to employ an audited override of automated access control mechanisms are defined].'), ('002187','draft','2013-06-24','DISA FSO','policy','Defines the security attributes to be used to enforce organization-defined information flow control policies.','AC-04(01)','N/A','Determine if: - [AC-04(01)_ODP[01]; security attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[03]; information objects to be associated with information security attributes are defined], [AC-04(01)_ODP[05]; source objects to be associated with information security attributes are defined], and [AC-04(01)_ODP[07]; destination objects to be associated with information security attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions. - [AC-04(01)_ODP[02]; privacy attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[04]; information objects to be associated with privacy attributes are defined], [AC-04(01)_ODP[06]; source objects to be associated with privacy attributes are defined], and [AC-04(01)_ODP[08]; destination objects to be associated with privacy attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions.'), ('002188','draft','2013-06-24','DISA FSO','policy','Defines the information, source, and destination objects with which the organization-defined security attributes are to be associated.','AC-04(01)','N/A','Determine if: - [AC-04(01)_ODP[01]; security attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[03]; information objects to be associated with information security attributes are defined], [AC-04(01)_ODP[05]; source objects to be associated with information security attributes are defined], and [AC-04(01)_ODP[07]; destination objects to be associated with information security attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions. - [AC-04(01)_ODP[02]; privacy attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[04]; information objects to be associated with privacy attributes are defined], [AC-04(01)_ODP[06]; source objects to be associated with privacy attributes are defined], and [AC-04(01)_ODP[08]; destination objects to be associated with privacy attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions.'), ('002189','draft','2013-06-24','DISA FSO','policy','Defines the information flow control policies to be enforced for flow control decisions.','AC-04(01)','N/A','Determine if: - [AC-04(01)_ODP[01]; security attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[03]; information objects to be associated with information security attributes are defined], [AC-04(01)_ODP[05]; source objects to be associated with information security attributes are defined], and [AC-04(01)_ODP[07]; destination objects to be associated with information security attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions. - [AC-04(01)_ODP[02]; privacy attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[04]; information objects to be associated with privacy attributes are defined], [AC-04(01)_ODP[06]; source objects to be associated with privacy attributes are defined], and [AC-04(01)_ODP[08]; destination objects to be associated with privacy attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions.'), ('002190','draft','2013-06-24','DISA FSO','technical','Use organization-defined security attributes associated with organization-defined information, source, and destination objects to enforce organization-defined information flow control policies as a basis for flow control decisions.','AC-04(01)','N/A','Determine if: - [AC-04(01)_ODP[01]; security attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[03]; information objects to be associated with information security attributes are defined], [AC-04(01)_ODP[05]; source objects to be associated with information security attributes are defined], and [AC-04(01)_ODP[07]; destination objects to be associated with information security attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions. - [AC-04(01)_ODP[02]; privacy attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[04]; information objects to be associated with privacy attributes are defined], [AC-04(01)_ODP[06]; source objects to be associated with privacy attributes are defined], and [AC-04(01)_ODP[08]; destination objects to be associated with privacy attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions.'), ('002191','draft','2013-06-24','DISA FSO','policy','Defines the information flow control policies to be enforced by the information system using protected processing domains.','AC-04(02)','N/A','Determine if protected processing domains are used to enforce [AC-04(02)_ODP; information flow control policies to be enforced by use of protected processing domains are defined] as a basis for flow control decisions.'), ('002192','draft','2013-06-24','DISA FSO','policy','Defines the policies to enforce dynamic information flow control.','AC-04(03)','N/A','Determine if [AC-04(03)_ODP; information flow control policies to be enforced are defined] are enforced.'), ('002193','draft','2013-06-24','DISA FSO','policy','Defines procedures or methods to be employed to prevent encrypted information from bypassing flow control mechanisms, such as decrypting the information, blocking the flow of the encrypted information, and/or terminating communications sessions attempting to pass encrypted information.','AC-04(04)','N/A','Determine if encrypted information is prevented from bypassing [AC-04(04)_ODP[01]; information flow control mechanisms that encrypted information is prevented from bypassing are defined] by [AC-04(04)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {decrypting the information; blocking the flow of the encrypted information; terminating communications sessions attempting to pass encrypted information; [AC-04(04)_ODP[03]; the organization-defined procedure or method used to prevent encrypted information from bypassing information flow control mechanisms is defined (if selected)]].'), ('002194','draft','2013-06-24','DISA FSO','policy','Defines the metadata the information system uses to enforce information flow control.','AC-04(06)','N/A','Determine if information flow control enforcement is based on [AC-04(06)_ODP; metadata on which to base enforcement of information flow control is defined].'), ('002195','draft','2013-06-24','DISA FSO','policy','Defines the information flows against which the organization-defined security or privacy policy filters are to be enforced.','AC-04(08)(a)','N/A','Determine if: - information flow control is enforced using [AC-04(08)_ODP[01]; security policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[03]; information flows for which information flow control is enforced by security filters are defined]. - information flow control is enforced using [AC-04(08)_ODP[02]; privacy policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[04]; information flows for which information flow control is enforced by privacy filters are defined].'), ('002196','draft','2013-06-24','DISA FSO','policy','Defines the information flows for which will enforce the use of human reviews under organization-defined conditions.','AC-04(09)','N/A','Determine if human reviews are used for [AC-04(09)_ODP[01]; information flows requiring the use of human reviews are defined] under [AC-04(09)_ODP[02]; conditions under which the use of human reviews for information flows are to be enforced are defined].'), ('002197','draft','2013-06-24','DISA FSO','policy','Defines the conditions which will require the use of human reviews of organization-defined information flows.','AC-04(09)','N/A','Determine if human reviews are used for [AC-04(09)_ODP[01]; information flows requiring the use of human reviews are defined] under [AC-04(09)_ODP[02]; conditions under which the use of human reviews for information flows are to be enforced are defined].'), ('002198','draft','2013-06-24','DISA FSO','policy','Enforce the use of human reviews for organization-defined information flows under organization-defined conditions.','AC-04(09)','N/A','Determine if human reviews are used for [AC-04(09)_ODP[01]; information flows requiring the use of human reviews are defined] under [AC-04(09)_ODP[02]; conditions under which the use of human reviews for information flows are to be enforced are defined].'), ('002199','draft','2013-06-24','DISA FSO','policy','Defines the conditions that provides the capability for privileged administrators to enable and disable organization-defined security policy filters.','AC-04(10)','N/A','Determine if: - capability is provided for privileged administrators to enable and disable [AC-04(10)_ODP[01]; security policy filters that privileged administrators have the capability to enable and disable are defined] under [AC-04(10)_ODP[03]; conditions under which privileged administrators have the capability to enable and disable security policy filters are defined]. - capability is provided for privileged administrators to enable and disable [AC-04(10)_ODP[02]; privacy policy filters that privileged administrators have the capability to enable and disable are defined] under [AC-04(10)_ODP[04]; conditions under which privileged administrators have the capability to enable and disable privacy policy filters are defined].'), ('002200','draft','2013-06-24','DISA FSO','policy','Defines the data type identifiers to be used to validate data being transferred between different security domains.','AC-04(12)','N/A','Determine if when transferring information between different security domains, [AC-04(12)_ODP; data type identifiers to be used to validate data essential for information flow decisions are defined] are used to validate data essential for information flow decisions.'), ('002201','draft','2013-06-24','DISA FSO','technical','When transferring information between different security domains, use organization-defined data type identifiers to validate data essential for information flow decisions.','AC-04(12)','N/A','Determine if when transferring information between different security domains, [AC-04(12)_ODP; data type identifiers to be used to validate data essential for information flow decisions are defined] are used to validate data essential for information flow decisions.'), ('002202','draft','2013-06-24','DISA FSO','policy','Defines the policy-relevant subcomponents into which information being transferred between different security domains is to be decomposed for submission to policy enforcement mechanisms.','AC-04(13)','N/A','Determine if when transferring information between different security domains, information is decomposed into [AC-04(13)_ODP; policy-relevant subcomponents into which to decompose information for submission to policy enforcement mechanisms are defined] for submission to policy enforcement mechanisms.'), ('002203','draft','2013-06-24','DISA FSO ','policy','Defines the unsanctioned information when transferring information between different security domains.','AC-04(15)','N/A','Determine if: - when transferring information between different security domains, information is examined for the presence of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[02]; security policy that requires the transfer of unsanctioned information between different security domains to be prohibited is defined (if selected)]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[03]; privacy policy that requires the transfer of organization-defined unsanctioned information between different security domains to be prohibited is defined (if selected)].'), ('002204','draft','2013-06-24','DISA FSO ','policy','Defines the security or privacy policy which prohibits the transfer of unsanctioned information between different security domains.','AC-04(15)','N/A','Determine if: - when transferring information between different security domains, information is examined for the presence of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[02]; security policy that requires the transfer of unsanctioned information between different security domains to be prohibited is defined (if selected)]. - when transferring information between different security domains, transfer of [AC-04(15)_ODP[01]; unsanctioned information to be detected is defined] is prohibited in accordance with the [AC-04(15)_ODP[03]; privacy policy that requires the transfer of organization-defined unsanctioned information between different security domains to be prohibited is defined (if selected)].'), ('002205','draft','2013-06-24','DISA FSO ','technical','Uniquely identify and authenticate source by organization, system, application, service, and/or individual for information transfer.','AC-04(17)','N/A','Determine if source and destination points are uniquely identified and authenticated by [AC-04(17)_ODP; one or more of the following PARAMETER VALUES is/are selected: {organization, system, application, service, individual}] for information transfer.'), ('002207','draft','2013-06-24','DISA FSO ','technical','Uniquely identify and authenticate destination points by organization, system, application, service, and/or individual for information transfer.','AC-04(17)','N/A','Determine if source and destination points are uniquely identified and authenticated by [AC-04(17)_ODP; one or more of the following PARAMETER VALUES is/are selected: {organization, system, application, service, individual}] for information transfer.'), ('002211','draft','2013-06-24','DISA FSO ','technical','When transferring information between different security domains, implement organization-defined security or privacy filters on metadata.','AC-04(19)','N/A','Determine if: - when transferring information between different security domains, [AC-04(19)_ODP[01]; security policy filters to be implemented on metadata are defined (if selected)] are implemented on metadata. - when transferring information between different security domains, [AC-04(19)_ODP[02]; privacy policy filters to be implemented on metadata are defined (if selected)] are implemented on metadata.'), ('002212','draft','2013-06-24','DISA FSO ','policy','Defines the solutions in approved configurations to be employed to control the flow of organization-defined information across security domains.','AC-04(20)','N/A','Determine if [AC-04(20)_ODP[01]; solutions in approved configurations to control the flow of information across security domains are defined] are employed to control the flow of [AC-04(20)_ODP[02]; information to be controlled when it flows across security domains is defined] across security domains.'), ('002213','draft','2013-06-24','DISA FSO','policy','Defines the information to be subjected to flow control across security domains.','AC-04(20)','N/A','Determine if [AC-04(20)_ODP[01]; solutions in approved configurations to control the flow of information across security domains are defined] are employed to control the flow of [AC-04(20)_ODP[02]; information to be controlled when it flows across security domains is defined] across security domains.'), ('002214','draft','2013-06-24','DISA FSO ','policy','Employ organization-defined solutions in approved configurations to control the flow of organization-defined information across security domains.','AC-04(20)','N/A','Determine if [AC-04(20)_ODP[01]; solutions in approved configurations to control the flow of information across security domains are defined] are employed to control the flow of [AC-04(20)_ODP[02]; information to be controlled when it flows across security domains is defined] across security domains.'), ('002215','draft','2013-06-24','DISA FSO','policy','Defines the mechanisms and/or techniques to be used to logically or physically separate information flows.','AC-04(21)','N/A','Determine if: - information flows are separated logically using [AC-04(21)_ODP[01]; mechanisms and/or techniques used to logically separate information flows are defined (if selected)] to accomplish [AC-04(21)_ODP[03]; required separations by types of information are defined]. - information flows are separated physically using [AC-04(21)_ODP[02]; mechanisms and/or techniques used to physically separate information flows are defined (if selected)] to accomplish [AC-04(21)_ODP[03]; required separations by types of information are defined].'), ('002216','draft','2013-06-24','DISA FSO','policy','Defines the types of information required to accomplish logical or physical separation of information flows.','AC-04(21)','N/A','Determine if: - information flows are separated logically using [AC-04(21)_ODP[01]; mechanisms and/or techniques used to logically separate information flows are defined (if selected)] to accomplish [AC-04(21)_ODP[03]; required separations by types of information are defined]. - information flows are separated physically using [AC-04(21)_ODP[02]; mechanisms and/or techniques used to physically separate information flows are defined (if selected)] to accomplish [AC-04(21)_ODP[03]; required separations by types of information are defined].'), ('002217','draft','2013-06-24','DISA FSO','policy','Separate information flows logically or physically using organization-defined mechanisms and/or techniques to accomplish organization-defined required separations by types of information.','AC-04(21)','N/A','Determine if: - information flows are separated logically using [AC-04(21)_ODP[01]; mechanisms and/or techniques used to logically separate information flows are defined (if selected)] to accomplish [AC-04(21)_ODP[03]; required separations by types of information are defined]. - information flows are separated physically using [AC-04(21)_ODP[02]; mechanisms and/or techniques used to physically separate information flows are defined (if selected)] to accomplish [AC-04(21)_ODP[03]; required separations by types of information are defined].'), ('002218','draft','2013-06-24','DISA FSO','technical','Provide access from a single device to computing platforms, applications, or data residing on multiple different security domains, while preventing any information flow between the different security domains.','AC-04(22)','N/A','Determine if access is provided from a single device to computing platforms, applications, or data that reside in multiple different security domains while preventing information flow between the different security domains.'), ('002219','draft','2013-06-24','DISA FSO','policy','Defines the duties of individuals requiring separation.','AC-05a.','N/A','Determine if [AC-05_ODP; duties of individuals requiring separation are defined] are identified and documented.'), ('002220','draft','2013-06-24','DISA FSO','policy','Define system access authorizations to support separation of duties.','AC-05a.','N/A','Determine if [AC-05_ODP; duties of individuals requiring separation are defined] are identified and documented.'), ('002221','draft','2013-06-24','DISA FSO','policy','Defines the security-relevant information for which access must be explicitly authorized.','AC-06(01)(b)','N/A','Determine if access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[05]; security-relevant information for authorized access is defined].'), ('002222','draft','2013-06-24','DISA FSO','policy','Authorize access for organization-defined individuals or roles to organization-defined security functions (deployed in hardware, software, and firmware).','AC-06(01)(a)','N/A','Determine if: - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[02]; security functions (deployed in hardware) for authorized access are defined]. - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[03]; security functions (deployed in software) for authorized access are defined]. - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[04]; security functions (deployed in firmware) for authorized access are defined].'), ('002223','draft','2013-06-24','DISA FSO','policy','Authorize access for organization-defined individuals or roles to organization-defined security-relevant information.','AC-06(01)(b)','N/A','Determine if access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[05]; security-relevant information for authorized access is defined].'), ('002224','draft','2013-06-24','DISA FSO','policy','Defines the compelling operational needs that must be met in order to be authorized network access to organization-defined privileged commands.','AC-06(03)','N/A','Determine if: - network access to [AC-06(03)_ODP[01]; privileged commands to which network access is to be authorized only for compelling operational needs are defined] is authorized only for [AC-06(03)_ODP[02]; compelling operational needs necessitating network access to privileged commands are defined]. - the rationale for authorizing network access to privileged commands is documented in the security plan for the system.'), ('002225','draft','2013-06-24','DISA FSO ','policy','Provide separate processing domains to enable finer-grained allocation of user privileges.','AC-06(04)','N/A','Determine if separate processing domains are provided to enable finer-grain allocation of user privileges.'), ('002226','draft','2013-06-24','DISA FSO','policy','Defines the personnel or roles to whom privileged accounts are to be restricted on the information system.','AC-06(05)','N/A','Determine if privileged accounts on the system are restricted to [AC-06(05)_ODP; personnel or roles to which privileged accounts on the system are to be restricted is/are defined].'), ('002227','draft','2013-06-24','DISA FSO','policy','Restrict privileged accounts on the system to organization-defined personnel or roles.','AC-06(05)','N/A','Determine if privileged accounts on the system are restricted to [AC-06(05)_ODP; personnel or roles to which privileged accounts on the system are to be restricted is/are defined].'), ('002228','draft','2013-06-24','DISA FSO','policy','Defines the frequency on which it conducts reviews of the privileges assigned to organization-defined roles or classes of users.','AC-06(07)(a)','N/A','Determine if privileges assigned to [AC-06(07)_ODP[02]; roles or classes of users to which privileges are assigned are defined] are reviewed [AC-06(07)_ODP[01]; the frequency at which to review the privileges assigned to roles or classes of users is defined] to validate the need for such privileges.'), ('002229','draft','2013-06-24','DISA FSO','policy','Defines the roles or classes of users that are to have their privileges reviewed on an organization-defined frequency.','AC-06(07)(a)','N/A','Determine if privileges assigned to [AC-06(07)_ODP[02]; roles or classes of users to which privileges are assigned are defined] are reviewed [AC-06(07)_ODP[01]; the frequency at which to review the privileges assigned to roles or classes of users is defined] to validate the need for such privileges.'), ('002230','draft','2013-06-24','DISA FSO','policy','Review, on an organization-defined frequency, the privileges assigned to organization-defined roles or classes of users to validate the need for such privileges.','AC-06(07)(a)','N/A','Determine if privileges assigned to [AC-06(07)_ODP[02]; roles or classes of users to which privileges are assigned are defined] are reviewed [AC-06(07)_ODP[01]; the frequency at which to review the privileges assigned to roles or classes of users is defined] to validate the need for such privileges.'), ('002231','draft','2013-06-24','DISA FSO','policy','Reassign or remove privileges, if necessary, to correctly reflect organizational mission and business needs.','AC-06(07)(b)','N/A','Determine if privileges are reassigned or removed, if necessary, to correctly reflect organizational mission and business needs.'), ('002232','draft','2013-06-24','DISA FSO','policy','Defines the software that is prevented from executing at a higher privilege than users executing the software.','AC-06(08)','N/A','Determine if [AC-06(08)_ODP; software to be prevented from executing at higher privilege levels than users executing the software is defined] is prevented from executing at higher privilege levels than users executing the software.'), ('002233','draft','2013-06-24','DISA FSO','technical','Prevent the organization-defined software from executing at higher privilege levels than users executing the software.','AC-06(08)','N/A','Determine if [AC-06(08)_ODP; software to be prevented from executing at higher privilege levels than users executing the software is defined] is prevented from executing at higher privilege levels than users executing the software.'), ('002234','draft','2013-06-24','DISA FSO','technical','Log the execution of privileged functions.','AC-06(09)','N/A','Determine if the execution of privileged functions is logged.'), ('002235','draft','2013-06-24','DISA FSO','technical','Prevent non-privileged users from executing privileged functions.','AC-06(10)','N/A','Determine if non-privileged users are prevented from executing privileged functions.'), ('002236','draft','2013-06-24','DISA FSO','policy','Defines the time period the information system will automatically lock the account or node when the maximum number of unsuccessful logon attempts is exceeded.','AC-07b.','N/A','Determine if automatically [AC-07_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {lock the account or node for [AC-07_ODP[04]; time period for an account or node to be locked is defined (if selected);]; lock the account or node until released by an administrator; delay next logon prompt per [AC-07_ODP[05]; delay algorithm for the next logon prompt is defined (if selected)]; notify system administrator; take other [AC-07_ODP[06]; other action to be taken when the maximum number of unsuccessful attempts is exceeded is defined (if selected)]]]] when the maximum number of unsuccessful attempts is exceeded.'), ('002237','draft','2013-06-24','DISA FSO','policy','Defines the delay algorithm to delay the next logon prompt when the maximum number of unsuccessful logon attempts is exceeded.','AC-07b.','N/A','Determine if automatically [AC-07_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {lock the account or node for [AC-07_ODP[04]; time period for an account or node to be locked is defined (if selected);]; lock the account or node until released by an administrator; delay next logon prompt per [AC-07_ODP[05]; delay algorithm for the next logon prompt is defined (if selected)]; notify system administrator; take other [AC-07_ODP[06]; other action to be taken when the maximum number of unsuccessful attempts is exceeded is defined (if selected)]]]] when the maximum number of unsuccessful attempts is exceeded.'), ('002238','draft','2013-06-24','DISA FSO','technical','Automatically lock the account or node for either an organization-defined time period, until the locked account or node is released by an administrator, or delays the next logon prompt according to the organization-defined delay algorithm when the maximum number of unsuccessful logon attempts is exceeded.','AC-07b.','N/A','Determine if automatically [AC-07_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {lock the account or node for [AC-07_ODP[04]; time period for an account or node to be locked is defined (if selected);]; lock the account or node until released by an administrator; delay next logon prompt per [AC-07_ODP[05]; delay algorithm for the next logon prompt is defined (if selected)]; notify system administrator; take other [AC-07_ODP[06]; other action to be taken when the maximum number of unsuccessful attempts is exceeded is defined (if selected)]]]] when the maximum number of unsuccessful attempts is exceeded.'), ('002239','draft','2013-06-24','DISA FSO','policy','Defines the mobile devices that are to be purged or wiped after an organization-defined number of consecutive, unsuccessful device logon attempts.','AC-07(02)','N/A','Determine if information is purged or wiped from [AC-07(02)_ODP[01]; mobile devices to be purged or wiped of information are defined] based on [AC-07(02)_ODP[02]; purging or wiping requirements and techniques to be used when mobile devices are purged or wiped of information are defined] after [AC-07(02)_ODP[03]; the number of consecutive, unsuccessful logon attempts before the information is purged or wiped from mobile devices is defined] consecutive, unsuccessful device logon attempts.'), ('002240','draft','2013-06-24','DISA FSO','policy','Defines the purging or wiping requirements and techniques to be used on organization-defined mobile devices after an organization-defined number of consecutive, unsuccessful device logon attempts.','AC-07(02)','N/A','Determine if information is purged or wiped from [AC-07(02)_ODP[01]; mobile devices to be purged or wiped of information are defined] based on [AC-07(02)_ODP[02]; purging or wiping requirements and techniques to be used when mobile devices are purged or wiped of information are defined] after [AC-07(02)_ODP[03]; the number of consecutive, unsuccessful logon attempts before the information is purged or wiped from mobile devices is defined] consecutive, unsuccessful device logon attempts.'), ('002241','draft','2013-06-24','DISA FSO','policy','Defines the number of consecutive, unsuccessful device logon attempts after which the organization-defined mobile devices will be purged or wiped.','AC-07(02)','N/A','Determine if information is purged or wiped from [AC-07(02)_ODP[01]; mobile devices to be purged or wiped of information are defined] based on [AC-07(02)_ODP[02]; purging or wiping requirements and techniques to be used when mobile devices are purged or wiped of information are defined] after [AC-07(02)_ODP[03]; the number of consecutive, unsuccessful logon attempts before the information is purged or wiped from mobile devices is defined] consecutive, unsuccessful device logon attempts.'), ('002242','draft','2013-06-24','DISA FSO','technical','Purge or wipe information from organization-defined mobile devices based on organization-defined purging or wiping requirements and techniques after an organization-defined number of consecutive, unsuccessful device logon attempts.','AC-07(02)','N/A','Determine if information is purged or wiped from [AC-07(02)_ODP[01]; mobile devices to be purged or wiped of information are defined] based on [AC-07(02)_ODP[02]; purging or wiping requirements and techniques to be used when mobile devices are purged or wiped of information are defined] after [AC-07(02)_ODP[03]; the number of consecutive, unsuccessful logon attempts before the information is purged or wiped from mobile devices is defined] consecutive, unsuccessful device logon attempts.'), ('002243','draft','2013-06-24','DISA FSO','policy','Organization-defined system use notification message or banner is to state that users are accessing a U.S. Government system.','AC-08a.01','N/A','Determine if the system use notification states that users are accessing a U.S. Government system.'), ('002244','draft','2013-06-24','DISA FSO','policy','Organization-defined system use notification message or banner is to state that system usage may be monitored, recorded, and subject to audit.','AC-08a.02','N/A','Determine if the system use notification states that system usage may be monitored, recorded, and subject to audit.'), ('002245','draft','2013-06-24','DISA FSO','policy','Organization-defined system use notification message or banner is to state that unauthorized use of the system is prohibited and subject to criminal and civil penalties.','AC-08a.03','N/A','Determine if the system use notification states that unauthorized use of the system is prohibited and subject to criminal and civil penalties.'), ('002246','draft','2013-06-24','DISA FSO','policy','Organization-defined system use notification message or banner is to state that use of the system indicates consent to monitoring and recording.','AC-08a.04','N/A','Determine if the system use notification states that use of the system indicates consent to monitoring and recording.'), ('002247','draft','2013-06-24','DISA FSO','policy','Defines the use notification message or banner the system displays to users before granting access to the system.','AC-08a.','N/A','Determine if [AC-08_ODP[01]; system use notification message or banner to be displayed by the system to users before granting access to the system is defined] is displayed to users before granting access to the system that provides privacy and security notices consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('002248','draft','2013-06-24','DISA FSO','policy','Defines the conditions of use which are to be displayed to users of the system before granting further access.','AC-08c.01','N/A','Determine if for publicly accessible systems, system use information [AC-08_ODP[02]; conditions for system use to be displayed by the system before granting further access are defined] is displayed before granting further access to the publicly accessible system.'), ('002249','draft','2013-06-24','DISA FSO','policy','Defines the additional information to be included in the notification to the user upon successful logon.','AC-09(04)','N/A','Determine if the user is notified, upon successful logon, of [AC-09(04)_ODP; additional information about which to notify the user is defined].'), ('002250','draft','2013-06-24','DISA FSO','technical','Notify the user, upon successful logon, of the following additional information: organization-defined additional information.','AC-09(04)','N/A','Determine if the user is notified, upon successful logon, of [AC-09(04)_ODP; additional information about which to notify the user is defined].'), ('002252','draft','2013-06-24','DISA FSO','policy','Defines the accounts and/or account types for which will limit the number of concurrent sessions.','AC-10','N/A','Determine if the number of concurrent sessions for each [AC-10_ODP[01]; accounts and/or account types for which to limit the number of concurrent sessions is defined] is limited to [AC-10_ODP[02]; the number of concurrent sessions to be allowed for each account and/or account type is defined].'), ('002256','draft','2013-06-24','DISA FSO','policy','Defines security attributes having organization-defined types of security attribute values which are associated with information in storage.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002257','draft','2013-06-24','DISA FSO','policy','Defines security attributes having organization-defined types of security attribute values which are associated with information in process.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002258','draft','2013-06-24','DISA FSO','policy','Defines security attributes, having organization-defined types of security attribute values, which are associated with information in transmission.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002259','draft','2013-06-24','DISA FSO','policy','Defines security attribute values associated with organization-defined types of security attributes for information in storage.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002260','draft','2013-06-24','DISA FSO','policy','Defines security attribute values associated with organization-defined types of security attributes for information in process.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002261','draft','2013-06-24','DISA FSO','policy','Defines security attribute values associated with organization-defined types of security attributes for information in transmission.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002262','draft','2013-06-24','DISA FSO','technical','Provide the means to associate organization-defined types of security attributes having organization-defined security attribute values with information in storage.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002263','draft','2013-06-24','DISA FSO','technical','Provide the means to associate organization-defined types of security attributes having organization-defined security attribute values with information in process.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002264','draft','2013-06-24','DISA FSO','technical','Provide the means to associate organization-defined types of security attributes having organization-defined security attribute values with information in transmission.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('002265','draft','2013-06-24','DISA FSO','policy','Ensure that the attribute associations are made and retained with the information.','AC-16b.','N/A','Determine if: - attribute associations are made. - attribute associations are retained with the information.'), ('002266','draft','2013-06-24','DISA FSO','policy','Ensure that the security attribute associations are retained with the information.','AC-16b.','N/A','Determine if: - attribute associations are made. - attribute associations are retained with the information.'), ('002267','draft','2013-06-24','DISA FSO','policy','Defines the security attributes that are permitted for organization-defined systems.','AC-16c.','N/A','Determine if: - the following permitted security attributes are established from the attributes defined in AC-16_ODP[01] for [AC-16_ODP[05]; systems for which permitted security attributes are to be established are defined]: [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined]. - the following permitted privacy attributes are established from the attributes defined in AC-16_ODP[02] for [AC-16_ODP[06]; systems for which permitted privacy attributes are to be established are defined]: [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined].'), ('002268','draft','2013-06-24','DISA FSO','policy','Defines the systems for which permitted organization-defined attributes are to be established.','AC-16c.','N/A','Determine if: - the following permitted security attributes are established from the attributes defined in AC-16_ODP[01] for [AC-16_ODP[05]; systems for which permitted security attributes are to be established are defined]: [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined]. - the following permitted privacy attributes are established from the attributes defined in AC-16_ODP[02] for [AC-16_ODP[06]; systems for which permitted privacy attributes are to be established are defined]: [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined].'), ('002269','draft','2013-06-24','DISA FSO','policy','Establish the following permitted organization-defined security attributes in AC-16a for organization-defined systems.','AC-16c.','N/A','Determine if: - the following permitted security attributes are established from the attributes defined in AC-16_ODP[01] for [AC-16_ODP[05]; systems for which permitted security attributes are to be established are defined]: [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined]. - the following permitted privacy attributes are established from the attributes defined in AC-16_ODP[02] for [AC-16_ODP[06]; systems for which permitted privacy attributes are to be established are defined]: [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined].'), ('002270','draft','2013-06-24','DISA FSO','policy','Defines the attribute values or ranges permitted for each of the established security attributes.','AC-16d.','N/A','Determine if the following permitted attribute values or ranges for each of the established attributes are determined: [AC-16_ODP[09]; attribute values or ranges for established attributes are defined].'), ('002271','draft','2013-06-24','DISA FSO','policy','Determine organization-defined attribute values or ranges for each of the established attributes.','AC-16d.','N/A','Determine if the following permitted attribute values or ranges for each of the established attributes are determined: [AC-16_ODP[09]; attribute values or ranges for established attributes are defined].'), ('002272','draft','2013-06-24','DISA FSO','technical','Dynamically associate security attributes with organization-defined objects in accordance with organization-defined security policies as information is created and combined.',NULL,'N/A',NULL), ('002273','draft','2013-06-24','DISA FSO','policy','Defines the security policies to adhere to when dynamically associating security attributes with organization-defined subjects and objects.',NULL,'N/A',NULL), ('002274','draft','2013-06-24','DISA FSO','policy','Defines the subjects with which the system is to dynamically associate security attributes as information is created and combined.',NULL,'N/A',NULL), ('002275','draft','2013-06-24','DISA FSO','policy','Defines the objects with which the system is to dynamically associate security attributes as information is created and combined.',NULL,'N/A',NULL), ('002277','draft','2013-06-24','DISA FSO','technical','Provides authorized individuals (or processes acting on behalf of individuals) the capability to define the value of associated security attributes.','AC-16(02)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to define or change the value of associated security attributes. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to define or change the value of associated privacy attributes.'), ('002278','draft','2013-06-24','DISA FSO','policy','Defines the security attributes for which the association and integrity to organization-defined subjects and objects is maintained.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002279','draft','2013-06-24','DISA FSO','policy','Defines the subjects for which the association and integrity of organization-defined security attributes is maintained.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002280','draft','2013-06-24','DISA FSO','policy','Defines the objects for which the association and integrity of organization-defined security attributes is maintained.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002281','draft','2013-06-24','DISA FSO','technical','Maintain the association of organization-defined security attributes to organization-defined subjects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002282','draft','2013-06-24','DISA FSO','technical','Maintain the association of organization-defined security attributes to organization-defined objects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002283','draft','2013-06-24','DISA FSO','technical','Maintain the integrity of organization-defined security attributes associated with organization-defined subjects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002284','draft','2013-06-24','DISA FSO','technical','Maintain the integrity of organization-defined security attributes associated with organization-defined objects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('002286','draft','2013-06-24','DISA FSO','policy','Defines the subjects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('002287','draft','2013-06-24','DISA FSO','policy','Defines the objects with which organization-defined security attributes may be associated by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('002288','draft','2013-06-24','DISA FSO','policy','Defines the security attributes authorized individuals (or processes acting on behalf of individuals) are permitted to associate with organization-defined subjects and objects.','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('002289','draft','2013-06-24','DISA FSO','technical','Provide the capability to associate organization-defined security attributes with organization-defined subjects by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('002290','draft','2013-06-24','DISA FSO','technical','Provide the capability to associate organization-defined security attributes with organization-defined objects by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('002291','draft','2013-06-24','DISA FSO','policy','Defines the security policies to be followed by personnel when associating organization-defined security attributes with organization-defined subjects and objects.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002292','draft','2013-06-24','DISA FSO','policy','Defines the security attributes which are to be associated with organization-defined subjects and objects.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002293','draft','2013-06-24','DISA FSO','policy','Defines the subjects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002294','draft','2013-06-24','DISA FSO','policy','Defines the objects to be associated, and that association maintained, with organization-defined security attributes in accordance with organization-defined security policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002295','draft','2013-06-24','DISA FSO','policy','Require personnel to associate organization-defined security attributes with organization-defined subjects in accordance with organization-defined security policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002296','draft','2013-06-24','DISA FSO','policy','Require personnel to associate organization-defined security attributes with organization-defined objects in accordance with organization-defined security policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002297','draft','2013-06-24','DISA FSO','policy','Require personnel to maintain the association of organization-defined security attributes with organization-defined subjects in accordance with organization-defined security policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002298','draft','2013-06-24','DISA FSO','policy','Require personnel to maintain the association of organization-defined security attributes with organization-defined objects in accordance with organization-defined security policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('002299','draft','2013-06-24','DISA FSO','policy','Provide a consistent interpretation of security attributes transmitted between distributed system components.','AC-16(07)','N/A','Determine if: - a consistent interpretation of security attributes transmitted between distributed system components is provided. - Determine if a consistent interpretation of privacy attributes transmitted between distributed system components is provided.'), ('002300','draft','2013-06-24','DISA FSO','policy','Defines the techniques and technologies to be implemented when associating security attributes with information.','AC-16(08)','N/A','Determine if: - [AC-16(08)_ODP[01]; techniques and technologies to be implemented in associating security attributes to information are defined] are implemented in associating security attributes to information. - [AC-16(08)_ODP[02]; techniques and technologies to be implemented in associating privacy attributes to information are defined] are implemented in associating privacy attributes to information.'), ('002301','draft','2013-06-24','DISA FSO','policy','Defines the level of assurance to be provided when implementing organization-defined techniques and technologies in associating security attributes to information.','AC-16(08)','N/A','Determine if: - [AC-16(08)_ODP[01]; techniques and technologies to be implemented in associating security attributes to information are defined] are implemented in associating security attributes to information. - [AC-16(08)_ODP[02]; techniques and technologies to be implemented in associating privacy attributes to information are defined] are implemented in associating privacy attributes to information.'), ('002302','draft','2013-06-24','DISA FSO','technical','Implement organization-defined techniques and technologies with an organization-defined level of assurance in associating security attributes to information.','AC-16(08)','N/A','Determine if: - [AC-16(08)_ODP[01]; techniques and technologies to be implemented in associating security attributes to information are defined] are implemented in associating security attributes to information. - [AC-16(08)_ODP[02]; techniques and technologies to be implemented in associating privacy attributes to information are defined] are implemented in associating privacy attributes to information.'), ('002303','draft','2013-06-24','DISA FSO ','policy','Defines the techniques or procedures to be employed to validate re-grading mechanisms.','AC-16(09)','N/A','Determine if: - security attributes associated with information are changed only via regrading mechanisms validated using [AC-16(09)_ODP[01]; techniques or procedures used to validate regrading mechanisms for security attributes are defined]. - privacy attributes associated with information are changed only via regrading mechanisms validated using [AC-16(09)_ODP[02]; techniques or procedures used to validate regrading mechanisms for privacy attributes are defined].'), ('002304','draft','2013-06-24','DISA FSO','policy','Change security attributes associated with information are reassigned only via re-grading mechanisms validated using organization-defined techniques or procedures.','AC-16(09)','N/A','Determine if: - security attributes associated with information are changed only via regrading mechanisms validated using [AC-16(09)_ODP[01]; techniques or procedures used to validate regrading mechanisms for security attributes are defined]. - privacy attributes associated with information are changed only via regrading mechanisms validated using [AC-16(09)_ODP[02]; techniques or procedures used to validate regrading mechanisms for privacy attributes are defined].'), ('002306','draft','2013-06-24','DISA FSO','technical','Provide authorized individuals the capability to define or change the type of security attributes available for association with subjects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('002307','draft','2013-06-24','DISA FSO','technical','Provide authorized individuals the capability to define or change the value of security attributes available for association with subjects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('002308','draft','2013-06-24','DISA FSO','technical','Provide authorized individuals the capability to define or change the type of security attributes available for association with objects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('002309','draft','2013-06-24','DISA FSO','technical','Provide authorized individuals the capability to define or change the value of security attributes available for association with objects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('002310','draft','2013-06-24','DISA FSO','policy','Establish and document usage restrictions for each type of remote access allowed.','AC-17a.','N/A','Determine if: - usage restrictions are established and documented for each type of remote access allowed. - configuration/connection requirements are established and documented for each type of remote access allowed. - implementation guidance is established and documented for each type of remote access allowed.'), ('002311','draft','2013-06-24','DISA FSO','policy','Establish and document configuration/connection requirements for each type of remote access allowed.','AC-17a.','N/A','Determine if: - usage restrictions are established and documented for each type of remote access allowed. - configuration/connection requirements are established and documented for each type of remote access allowed. - implementation guidance is established and documented for each type of remote access allowed.'), ('002312','draft','2013-06-24','DISA FSO','policy','Establish and document implementation guidance for each type of remote access allowed.','AC-17a.','N/A','Determine if: - usage restrictions are established and documented for each type of remote access allowed. - configuration/connection requirements are established and documented for each type of remote access allowed. - implementation guidance is established and documented for each type of remote access allowed.'), ('002314','draft','2013-06-24','DISA FSO','technical','Employ automated mechanisms to control remote access methods.','AC-17(01)','N/A','Determine if: - automated mechanisms are employed to monitor remote access methods. - automated mechanisms are employed to control remote access methods.'), ('002316','draft','2013-06-24','DISA FSO','policy','Authorize access to security-relevant information via remote access only in a format that provides assessable evidence for organization-defined needs.','AC-17(04)(a)','N/A','Determine if: - the execution of privileged commands via remote access is authorized only in a format that provides assessable evidence. - access to security-relevant information via remote access is authorized only in a format that provides assessable evidence. - the execution of privileged commands via remote access is authorized only for the following needs: [AC-17(04)_ODP[01]; needs requiring execution of privileged commands via remote access are defined]. - access to security-relevant information via remote access is authorized only for the following needs: [AC-17(04)_ODP[02]; needs requiring access to security-relevant information via remote access are defined].'), ('002317','draft','2013-06-24','DISA FSO','policy','Defines the needs for when the execution of privileged commands via remote access is to be authorized.','AC-17(04)(a)','N/A','Determine if: - the execution of privileged commands via remote access is authorized only in a format that provides assessable evidence. - access to security-relevant information via remote access is authorized only in a format that provides assessable evidence. - the execution of privileged commands via remote access is authorized only for the following needs: [AC-17(04)_ODP[01]; needs requiring execution of privileged commands via remote access are defined]. - access to security-relevant information via remote access is authorized only for the following needs: [AC-17(04)_ODP[02]; needs requiring access to security-relevant information via remote access are defined].'), ('002318','draft','2013-06-24','DISA FSO','policy','Defines the needs for when access to security-relevant information via remote access is to be authorized.','AC-17(04)(a)','N/A','Determine if: - the execution of privileged commands via remote access is authorized only in a format that provides assessable evidence. - access to security-relevant information via remote access is authorized only in a format that provides assessable evidence. - the execution of privileged commands via remote access is authorized only for the following needs: [AC-17(04)_ODP[01]; needs requiring execution of privileged commands via remote access are defined]. - access to security-relevant information via remote access is authorized only for the following needs: [AC-17(04)_ODP[02]; needs requiring access to security-relevant information via remote access are defined].'), ('002319','draft','2013-06-24','DISA FSO','policy','Document the rationale for authorization of the execution of privilege commands via remote access.','AC-17(04)(b)','N/A','Determine if the rationale for remote access is documented in the security plan for the system.'), ('002320','draft','2013-06-24','DISA FSO','policy','Document the rationale for authorization of access to security-relevant information via remote access.','AC-17(04)(b)','N/A','Determine if the rationale for remote access is documented in the security plan for the system.'), ('002321','draft','2013-06-24','DISA FSO','policy','Defines the time-period within which it disconnects or disables remote access to the system.','AC-17(09)','N/A','Determine if the capability to disconnect or disable remote access to the system within [AC-17(09)_ODP; the time period within which to disconnect or disable remote access to the system is defined] is provided.'), ('002322','draft','2013-06-24','DISA FSO','technical','Provide the capability to disconnect or disable remote access to the system within the organization-defined time period.','AC-17(09)','N/A','Determine if the capability to disconnect or disable remote access to the system within [AC-17(09)_ODP; the time period within which to disconnect or disable remote access to the system is defined] is provided.'), ('002323','draft','2013-06-24','DISA FSO','policy','Establish configuration requirements and connection requirements for wireless access.','AC-18a.','N/A','Determine if: - configuration requirements are established for each type of wireless access. - connection requirements are established for each type of wireless access. - implementation guidance is established for each type of wireless access.'), ('002324','draft','2013-06-24','DISA FSO','policy','Identify and explicitly authorize users allowed to independently configure wireless networking capabilities.','AC-18(04)','N/A','Determine if: - users allowed to independently configure wireless networking capabilities are identified. - users allowed to independently configure wireless networking capabilities are explicitly authorized.'), ('002325','draft','2013-06-24','DISA FSO','policy','Establish configuration requirements for organization-controlled mobile devices, to include when such devices are outside of controlled areas.','AC-19a.','N/A','Determine if: - configuration requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area. - connection requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area. - implementation guidance is established for organization-controlled mobile devices, including when such devices are outside of the controlled area.'), ('002326','draft','2013-06-24','DISA FSO','policy','Establish connection requirements for organization-controlled mobile devices, to include when such devices are outside of controlled areas.','AC-19a.','N/A','Determine if: - configuration requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area. - connection requirements are established for organization-controlled mobile devices, including when such devices are outside of the controlled area. - implementation guidance is established for organization-controlled mobile devices, including when such devices are outside of the controlled area.'), ('002327','draft','2013-06-24','DISA FSO','policy','Defines the security policies which restrict the connection of classified mobile devices to classified systems.','AC-19(04)(c)','N/A','Determine if the connection of classified mobile devices to classified systems is restricted in accordance with [AC-19(04)_ODP[02]; security policies restricting the connection of classified mobile devices to classified systems are defined].'), ('002328','draft','2013-06-24','DISA FSO','policy','Restrict the connection of classified mobile devices to classified systems in accordance with organization-defined security policies.','AC-19(04)(c)','N/A','Determine if the connection of classified mobile devices to classified systems is restricted in accordance with [AC-19(04)_ODP[02]; security policies restricting the connection of classified mobile devices to classified systems are defined].'), ('002329','draft','2013-06-24','DISA FSO','policy','Defines the mobile devices that are to employ full-device or container encryption to protect the confidentiality and integrity of the information on the device.','AC-19(05)','N/A','Determine if [AC-19(05)_ODP[01]; one of the following PARAMETER VALUES is selected: {full-device encryption; container-based encryption}] is employed to protect the confidentiality and integrity of information on [AC-19(05)_ODP[02]; mobile devices on which to employ encryption are defined].'), ('002330','draft','2013-06-24','DISA FSO','policy','Employ full-device encryption or container encryption to protect the confidentiality of information on organization-defined mobile devices.','AC-19(05)','N/A','Determine if [AC-19(05)_ODP[01]; one of the following PARAMETER VALUES is selected: {full-device encryption; container-based encryption}] is employed to protect the confidentiality and integrity of information on [AC-19(05)_ODP[02]; mobile devices on which to employ encryption are defined].'), ('002331','draft','2013-06-24','DISA FSO','policy','Employ full-device encryption or container encryption to protect the integrity of information on organization-defined mobile devices.','AC-19(05)','N/A','Determine if [AC-19(05)_ODP[01]; one of the following PARAMETER VALUES is selected: {full-device encryption; container-based encryption}] is employed to protect the confidentiality and integrity of information on [AC-19(05)_ODP[02]; mobile devices on which to employ encryption are defined].'), ('002332','draft','2013-06-24','DISA FSO','policy','Establish organization-defined terms and conditions, and/or identify organization-defined controls asserted to be implemented on external systems, consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to process, store, or transmit organization-controlled information using the external systems.','AC-20a.02','N/A','Determine if [AC-20_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish [AC-20_ODP[02]; terms and conditions consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]; identify [AC-20_ODP[03]; controls asserted to be implemented on external systems consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]}]]] is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to process, store, or transmit organization-controlled information using external systems (if applicable).'), ('002337','draft','2013-06-24','DISA FSO','policy','Permit authorized individuals to use an external system to access the system or to process, store, or transmit organization-controlled information only after the system retains approved system connection or processing agreements with the organizational entity hosting the external system.','AC-20(01)(b)','N/A','Determine if authorized individuals are permitted to use an external system to access the system or to process, store, or transmit organization-controlled information only after retention of approved system connection or processing agreements with the organizational entity hosting the external system (if applicable).'), ('002338','draft','2013-06-24','DISA FSO','policy','Restrict the use of non-organizationally owned systems or system components to process, store, or transmit organizational information using organization-defined restrictions.','AC-20(03)','N/A','Determine if the use of non-organizationally owned systems or system components to process, store, or transmit organizational information is restricted using [AC-20(03)_ODP; restrictions on the use of non-organizationally owned systems or system components to process, store, or transmit organizational information are defined].'), ('002339','draft','2013-06-24','DISA FSO','policy','Defines the network accessible storage devices that are to be prohibited from being used in external systems.','AC-20(04)','N/A','Determine if the use of [AC-20(04)_ODP; network-accessible storage devices prohibited from use in external systems are defined] is prohibited in external systems.'), ('002340','draft','2013-06-24','DISA FSO','policy','Prohibit the use of organization-defined network accessible storage devices in external systems.','AC-20(04)','N/A','Determine if the use of [AC-20(04)_ODP; network-accessible storage devices prohibited from use in external systems are defined] is prohibited in external systems.'), ('002341','draft','2013-06-25','DISA FSO','policy','Defines the information sharing restrictions to be enforced when implementing information search and retrieval services.','AC-21(02)','N/A','Determine if information search and retrieval services that enforce [AC-21(02)_ODP; information-sharing restrictions to be enforced by information search and retrieval services are defined] are implemented.'), ('002342','draft','2013-06-25','DISA FSO','technical','Implement information search and retrieval services that enforce organization-defined information sharing restrictions.','AC-21(02)','N/A','Determine if information search and retrieval services that enforce [AC-21(02)_ODP; information-sharing restrictions to be enforced by information search and retrieval services are defined] are implemented.'), ('002343','draft','2013-06-25','DISA FSO','policy','Defines the data mining prevention techniques to be employed to protect organization-defined data storage objects against data mining.','AC-23','N/A','Determine if [AC-23_ODP[01]; data mining prevention and detection techniques are defined] are employed for [AC-23_ODP[02]; data storage objects to be protected against unauthorized data mining are defined] to detect and protect against unauthorized data mining.'), ('002344','draft','2013-06-25','DISA FSO','policy','Defines the data mining detection techniques to be employed to detect data mining attempts against organization-defined data storage objects.','AC-23','N/A','Determine if [AC-23_ODP[01]; data mining prevention and detection techniques are defined] are employed for [AC-23_ODP[02]; data storage objects to be protected against unauthorized data mining are defined] to detect and protect against unauthorized data mining.'), ('002345','draft','2013-06-25','DISA FSO','policy','Defines the data storage objects that are to be protected against data mining attempts.','AC-23','N/A','Determine if [AC-23_ODP[01]; data mining prevention and detection techniques are defined] are employed for [AC-23_ODP[02]; data storage objects to be protected against unauthorized data mining are defined] to detect and protect against unauthorized data mining.'), ('002346','draft','2013-06-25','DISA FSO','technical','Employ organization-defined data mining prevention techniques for organization-defined data storage objects to protect against unauthorized data mining.','AC-23','N/A','Determine if [AC-23_ODP[01]; data mining prevention and detection techniques are defined] are employed for [AC-23_ODP[02]; data storage objects to be protected against unauthorized data mining are defined] to detect and protect against unauthorized data mining.'), ('002347','draft','2013-06-25','DISA FSO','technical','Employ organization-defined data mining detection techniques for organization-defined data storage objects to detect data mining attempts.','AC-23','N/A','Determine if [AC-23_ODP[01]; data mining prevention and detection techniques are defined] are employed for [AC-23_ODP[02]; data storage objects to be protected against unauthorized data mining are defined] to detect and protect against unauthorized data mining.'), ('002348','draft','2013-06-25','DISA FSO','policy','Defines the access control decisions that are to be applied to each access request prior to access enforcement.','AC-24','N/A','Determine if [AC-24_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish procedures; implement mechanisms}] are taken to ensure that [AC-24_ODP[02]; access control decisions applied to each access request prior to access enforcement are defined] are applied to each access request prior to access enforcement.'), ('002349','draft','2013-06-25','DISA FSO','policy','Establish procedures or implement mechanisms to ensure organization-defined access control decisions are applied to each access request prior to access enforcement.','AC-24','N/A','Determine if [AC-24_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish procedures; implement mechanisms}] are taken to ensure that [AC-24_ODP[02]; access control decisions applied to each access request prior to access enforcement are defined] are applied to each access request prior to access enforcement.'), ('002350','draft','2013-06-25','DISA FSO','policy','Defines the access authorization information that is to be transmitted using organization-defined security safeguards to organization-defined systems that enforce access control decisions.','AC-24(01)','N/A','Determine if [AC-24(01)_ODP[01]; access authorization information transmitted to systems that enforce access control decisions is defined] is transmitted using [AC-24(01)_ODP[02]; controls to be used when authorization information is transmitted to systems that enforce access control decisions are defined] to [AC-24(01)_ODP[03]; systems that enforce access control decisions are defined] that enforce access control decisions.'), ('002351','draft','2013-06-25','DISA FSO','policy','Defines the controls to be employed when transmitting organization-defined access authorization information to organization-defined systems that enforce access control decisions.','AC-24(01)','N/A','Determine if [AC-24(01)_ODP[01]; access authorization information transmitted to systems that enforce access control decisions is defined] is transmitted using [AC-24(01)_ODP[02]; controls to be used when authorization information is transmitted to systems that enforce access control decisions are defined] to [AC-24(01)_ODP[03]; systems that enforce access control decisions are defined] that enforce access control decisions.'), ('002352','draft','2013-06-25','DISA FSO','policy','Defines the systems that are to be recipients of organization-defined access authorization information using organization-defined security safeguards.','AC-24(01)','N/A','Determine if [AC-24(01)_ODP[01]; access authorization information transmitted to systems that enforce access control decisions is defined] is transmitted using [AC-24(01)_ODP[02]; controls to be used when authorization information is transmitted to systems that enforce access control decisions are defined] to [AC-24(01)_ODP[03]; systems that enforce access control decisions are defined] that enforce access control decisions.'), ('002353','draft','2013-06-25','DISA FSO','technical','Transmit organization-defined access authorization information using organization-defined controls to organization-defined systems that enforce access control decisions.','AC-24(01)','N/A','Determine if [AC-24(01)_ODP[01]; access authorization information transmitted to systems that enforce access control decisions is defined] is transmitted using [AC-24(01)_ODP[02]; controls to be used when authorization information is transmitted to systems that enforce access control decisions are defined] to [AC-24(01)_ODP[03]; systems that enforce access control decisions are defined] that enforce access control decisions.'), ('002354','draft','2013-06-25','DISA FSO','policy','Defines the security attributes, not to include the identity of the user or process acting on behalf of the user, to be used as the basis for enforcing access control decisions.','AC-24(02)','N/A','Determine if: - access control decisions are enforced based on [AC-24(02)_ODP[01]; security attributes that do not include the identity of the user or process acting on behalf of the user are defined (if selected)] that do not include the identity of the user or process acting on behalf of the user (if selected). - access control decisions are enforced based on [AC-24(02)_ODP[02]; privacy attributes that do not include the identity of the user or process acting on behalf of the user are defined (if selected)] that do not include the identity of the user or process acting on behalf of the user (if selected).'), ('002355','draft','2013-06-25','DISA FSO','technical','Enforce access control decisions based on organization-defined security or privacy attributes that do not include the identity of the user or process acting on behalf of the user.','AC-24(02)','N/A','Determine if: - access control decisions are enforced based on [AC-24(02)_ODP[01]; security attributes that do not include the identity of the user or process acting on behalf of the user are defined (if selected)] that do not include the identity of the user or process acting on behalf of the user (if selected). - access control decisions are enforced based on [AC-24(02)_ODP[02]; privacy attributes that do not include the identity of the user or process acting on behalf of the user are defined (if selected)] that do not include the identity of the user or process acting on behalf of the user (if selected).'), ('002356','draft','2013-06-25','DISA FSO','policy','Defines the access control policies to be implemented by the reference monitor.','AC-25','N/A','Determine if a reference monitor is implemented for [AC-25_ODP; access control policies for which a reference monitor is implemented are defined] that is tamper-proof, always invoked, and small enough to be subject to analysis and testing, the completeness of which can be assured.'), ('002357','draft','2013-06-25','DISA FSO','technical','Implement a reference monitor for organization-defined access control policies that is tamperproof.','AC-25','N/A','Determine if a reference monitor is implemented for [AC-25_ODP; access control policies for which a reference monitor is implemented are defined] that is tamper-proof, always invoked, and small enough to be subject to analysis and testing, the completeness of which can be assured.'), ('002358','draft','2013-06-25','DISA FSO','technical','Implement a reference monitor for organization-defined access control policies that is always invoked.','AC-25','N/A','Determine if a reference monitor is implemented for [AC-25_ODP; access control policies for which a reference monitor is implemented are defined] that is tamper-proof, always invoked, and small enough to be subject to analysis and testing, the completeness of which can be assured.'), ('002359','draft','2013-06-25','DISA FSO','technical','Implement a reference monitor for organization-defined access control policies that is small enough to be subject to analysis and testing, the completeness of which can be assured.','AC-25','N/A','Determine if a reference monitor is implemented for [AC-25_ODP; access control policies for which a reference monitor is implemented are defined] that is tamper-proof, always invoked, and small enough to be subject to analysis and testing, the completeness of which can be assured.'), ('002360','draft','2013-06-26','DISA FSO','policy','Defines the conditions or trigger events requiring session disconnect when automatically terminating a user session.','AC-12','N/A','Determine if a user session is automatically terminated after [AC-12_ODP; conditions or trigger events requiring session disconnect are defined].'), ('002361','draft','2013-06-26','DISA FSO','technical','Automatically terminate a user session after organization-defined conditions or trigger events requiring session disconnect.','AC-12','N/A','Determine if a user session is automatically terminated after [AC-12_ODP; conditions or trigger events requiring session disconnect are defined].'), ('002362','draft','2013-06-26','DISA FSO','policy','Defines the information resources requiring authentication in order to gain access.','AC-12(01)','N/A','Determine if a logout capability is provided for user-initiated communications sessions whenever authentication is used to gain access to [AC-12(01)_ODP; information resources for which a logout capability for user-initiated communications sessions is required are defined].'), ('002363','draft','2013-06-26','DISA FSO','technical','Provide a logout capability for user-initiated communications sessions whenever authentication is used to gain access to organization-defined information resources.','AC-12(01)','N/A','Determine if a logout capability is provided for user-initiated communications sessions whenever authentication is used to gain access to [AC-12(01)_ODP; information resources for which a logout capability for user-initiated communications sessions is required are defined].'), ('002364','draft','2013-06-26','DISA FSO','technical','Display an explicit logout message to users indicating the reliable termination of authenticated communications sessions.','AC-12(02)','N/A','Determine if an explicit logout message is displayed to users indicating the termination of authenticated communication sessions.'), ('002368','draft','2013-07-01','DISA FSO','policy','Defines the personnel or roles to whom the organization-level; mission/business process-level; system-level risk assessment policy is disseminated.','RA-01a.','N/A','Determine if: - a risk assessment policy is developed and documented. - the risk assessment policy is disseminated to [RA-01_ODP[01; personnel or roles to whom the risk assessment policy is to be disseminated is/are defined].'), ('002369','draft','2013-07-01','DISA FSO','policy','Defines the personnel or roles to whom the risk assessment procedures are disseminated.','RA-01a.02','N/A','Determine if: - risk assessment procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls are developed and documented. - the risk assessment procedures are disseminated to [RA-01_ODP[02]; personnel or roles to whom the risk assessment procedures are to be disseminated is/are defined].'), ('002370','draft','2013-07-01','DISA FSO','policy','Disseminate risk assessment results to organization-defined personnel or roles.','RA-03e.','N/A','Determine if risk assessment results are disseminated to [RA-03_ODP[04]; personnel or roles to whom risk assessment results are to be disseminated is/are defined].'), ('002371','draft','2013-07-01','DISA FSO','policy','Defines the personnel or roles to whom the risk assessment results will be disseminated.','RA-03e.','N/A','Determine if risk assessment results are disseminated to [RA-03_ODP[04]; personnel or roles to whom risk assessment results are to be disseminated is/are defined].'), ('002372','draft','2013-07-01','DISA FSO','policy','Correlate the output from vulnerability scanning tools to determine the presence of multi-vulnerability and multi-hop attack vectors.','RA-05(10)','N/A','Determine if the output from vulnerability scanning tools is correlated to determine the presence of multi-vulnerability and multi-hop attack vectors.'), ('002373','draft','2013-07-01','DISA FSO','policy','Define the breadth and depth of vulnerability scanning coverage (i.e., information system components scanned and vulnerabilities checked).','RA-05(03)','N/A','Determine if the breadth and depth of vulnerability scanning coverage are defined.'), ('002374','draft','2013-07-01','DISA FSO','policy','Defines the corrective actions if unintended information about the system is discovered.','RA-05(04)','N/A','Determine if: - information about the system is discoverable. - [RA-05(04)_ODP; corrective actions to be taken if information about the system is discoverable are defined] are taken when information about the system is confirmed as discoverable.'), ('002375','draft','2013-07-02','DISA FSO','policy','Take organization-defined corrective actions if information about the system is discovered.','RA-05(04)','N/A','Determine if: - information about the system is discoverable. - [RA-05(04)_ODP; corrective actions to be taken if information about the system is discoverable are defined] are taken when information about the system is confirmed as discoverable.'), ('002376','draft','2013-07-02','DISA FSO','policy','Defines the personnel or roles with whom the information obtained from the vulnerability monitoring process and control assessments will be shared.','RA-05e.','N/A','Determine if information obtained from the vulnerability monitoring process and control assessments is shared with [RA-05_ODP[04]; personnel or roles with whom information obtained from the vulnerability scanning process and control assessments is to be shared] to help eliminate similar vulnerabilities in other systems.'), ('002378','draft','2013-07-02','DISA FSO','policy','Defines the personnel or roles to be recipients of the organization-level; mission/business process-level; and/or system-level system and communications protection policy.','SC-01a.','N/A','Determine if: - a system and communications protection policy is developed and documented. - the system and communications protection policy is disseminated to [SC-01_ODP[01]; personnel or roles to whom the system and communications protection policy is to be disseminated is/are defined].'), ('002380','draft','2013-07-02','DISA FSO','policy','Defines the personnel or roles to be recipients of the procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.','SC-01a.02','N/A','Determine if: - system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls are developed and documented. - the system and communications protection procedures are disseminated to [SC-01_ODP[02]; personnel or roles to whom the system and communications protection procedures are to be disseminated is/are defined].'), ('002381','draft','2013-07-02','DISA FSO','technical','Minimize the number of nonsecurity functions included within the isolation boundary containing security functions.','SC-03(03)','N/A','Determine if the number of non-security functions included within the isolation boundary containing security functions is minimized.'), ('002382','draft','2013-07-02','DISA FSO','technical','Implement security functions as largely independent modules that maximize internal cohesiveness within modules and minimize coupling between modules.','SC-03(04)','N/A','Determine if: - security functions are implemented as largely independent modules that maximize internal cohesiveness within modules. - security functions are implemented as largely independent modules that minimize coupling between modules.'), ('002383','draft','2013-07-02','DISA FSO','policy','Defines the procedures to be employed to prevent unauthorized information transfer via shared resources when system processing explicitly switches between different information classification levels or security categories.','SC-04(02)','N/A','Determine if unauthorized information transfer via shared resources is prevented in accordance with [SC-04(02)_ODP; procedures to prevent unauthorized information transfer via shared resources are defined] when system processing explicitly switches between different information classification levels or security categories.'), ('002384','draft','2013-07-02','DISA FSO','technical','Prevent unauthorized information transfer via shared resources in accordance with organization-defined procedures when system processing explicitly switches between different information classification levels or security categories.','SC-04(02)','N/A','Determine if unauthorized information transfer via shared resources is prevented in accordance with [SC-04(02)_ODP; procedures to prevent unauthorized information transfer via shared resources are defined] when system processing explicitly switches between different information classification levels or security categories.'), ('002385','draft','2013-07-02','DISA FSO','technical','Protect against or limit the effects of organization-defined types of denial-of-service events.','SC-05a.','N/A','Determine if the effects of [SC-05_ODP[01]; types of denial-of-service events to be protected against or limited are defined] are [SC-05_ODP[02]; one of the following PARAMETER VALUES is selected: {protect against; limit}].'), ('002387','draft','2013-07-02','DISA FSO','policy','Defines the denial of service attacks against other systems that the system is to restrict the ability of individuals to launch.','SC-05(01)','N/A','Determine if the ability of individuals to launch [SC-05(01)_ODP; denial-of-service attacks for which to restrict the ability of individuals to launch are defined] against other systems is restricted.'), ('002388','draft','2013-07-02','DISA FSO','policy','Defines the monitoring tools to be employed to detect indicators of denial-of-service attacks against the system.',NULL,'N/A',NULL), ('002389','draft','2013-07-02','DISA FSO','policy','Employ organization-defined monitoring tools to detect indicators of denial-of-service attacks against, or launched from, the system.',NULL,'N/A',NULL), ('002390','draft','2013-07-02','DISA FSO','policy','Defines the system resources to be monitored to determine if sufficient resources exist to prevent effective denial-of-service attacks.',NULL,'N/A',NULL), ('002391','draft','2013-07-02','DISA FSO','policy','Monitor organization-defined system resources to determine if sufficient resources exist to prevent effective denial-of-service attacks.',NULL,'N/A',NULL), ('002392','draft','2013-07-02','DISA FSO','policy','Defines the resources to be allocated to protect the availability of system resources.','SC-06','N/A','Determine if the availability of resources is protected by allocating [SC-06_ODP[01]; resources to be allocated to protect the availability of resources are defined] by [SC-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {priority; quota; [SC-06_ODP[03]; controls to protect the availability of resources are defined (if selected)]}].'), ('002393','draft','2013-07-02','DISA FSO','policy','Defines the controls to be employed to protect the availability of system resources.','SC-06','N/A','Determine if the availability of resources is protected by allocating [SC-06_ODP[01]; resources to be allocated to protect the availability of resources are defined] by [SC-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {priority; quota; [SC-06_ODP[03]; controls to protect the availability of resources are defined (if selected)]}].'), ('002394','draft','2013-07-02','DISA FSO','technical','Protect the availability of resources by allocating organization-defined resources based on priority, quota, and/or organization-defined controls.','SC-06','N/A','Determine if the availability of resources is protected by allocating [SC-06_ODP[01]; resources to be allocated to protect the availability of resources are defined] by [SC-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {priority; quota; [SC-06_ODP[03]; controls to protect the availability of resources are defined (if selected)]}].'), ('002395','draft','2013-07-02','DISA FSO','policy','Implement subnetworks for publicly accessible system components that are physically and/or logically separated from internal organizational networks.','SC-07b.','N/A','Determine if subnetworks for publicly accessible system components are [SC-07_ODP; one of the following PARAMETER VALUES is selected: {physically; logically}] separated from internal organizational networks.'), ('002396','draft','2013-07-02','DISA FSO','policy','Protect the confidentiality and integrity of the information being transmitted across each interface for each external telecommunication service.','SC-07(04)(c)','N/A','Determine if: - the confidentiality of the information being transmitted across each interface is protected. - the integrity of the information being transmitted across each interface is protected.'), ('002397','draft','2013-07-02','DISA FSO','technical','Prevent split tunneling for remote devices connecting to organizational systems unless the split tunnel is securely provisioned using organization-defined safeguards.','SC-07(07)','N/A','Determine if split tunneling is prevented for remote devices connecting to organizational systems unless the split tunnel is securely provisioned using [SC-07(07)_ODP; safeguards to securely provision split tunneling are defined].'), ('002398','draft','2013-07-02','DISA FSO','policy','Detect outgoing communications traffic posing a threat to external systems.','SC-07(09)(a)','N/A','Determine if: - outgoing communications traffic posing a threat to external systems is detected. - outgoing communications traffic posing a threat to external systems is denied. '), ('002399','draft','2013-07-02','DISA FSO','policy','Deny outgoing communications traffic posing a threat to external systems.','SC-07(09)(a)','N/A','Determine if: - outgoing communications traffic posing a threat to external systems is detected. - outgoing communications traffic posing a threat to external systems is denied. '), ('002400','draft','2013-07-02','DISA FSO','technical','Audit the identity of internal users associated with denied outgoing communications traffic posing a threat to external systems.','SC-07(09)(b)','N/A','Determine if the identity of internal users associated with denied communications is audited.'), ('002401','draft','2013-07-02','DISA FSO','policy','Defines the authorized sources from which the system will allow incoming communications.','SC-07(11)','N/A','Determine if only incoming communications from [SC-07(11)_ODP[01]; authorized sources of incoming communications to be routed are defined] are allowed to be routed to [SC-07(11)_ODP[02]; authorized destinations to which incoming communications from authorized sources may be routed are defined].'), ('002402','draft','2013-07-02','DISA FSO','policy','Defines the authorized destinations for routing inbound communications.','SC-07(11)','N/A','Determine if only incoming communications from [SC-07(11)_ODP[01]; authorized sources of incoming communications to be routed are defined] are allowed to be routed to [SC-07(11)_ODP[02]; authorized destinations to which incoming communications from authorized sources may be routed are defined].'), ('002403','draft','2013-07-02','DISA FSO','technical','Only allow incoming communications from organization-defined authorized sources routed to organization-defined authorized destinations.','SC-07(11)','N/A','Determine if only incoming communications from [SC-07(11)_ODP[01]; authorized sources of incoming communications to be routed are defined] are allowed to be routed to [SC-07(11)_ODP[02]; authorized destinations to which incoming communications from authorized sources may be routed are defined].'), ('002404','draft','2013-07-02','DISA FSO','policy','Defines the host-based boundary protection mechanisms that are to be implemented at organization-defined system components.','SC-07(12)','N/A','Determine if [SC-07(12)_ODP[01]; host-based boundary protection mechanisms to be implemented are defined] are implemented at [SC-07(12)_ODP[02]; system components where host-based boundary protection mechanisms are to be implemented are defined].'), ('002405','draft','2013-07-02','DISA FSO','policy','Defines the system components at which organization-defined host-based boundary protection mechanisms will be implemented.','SC-07(12)','N/A','Determine if [SC-07(12)_ODP[01]; host-based boundary protection mechanisms to be implemented are defined] are implemented at [SC-07(12)_ODP[02]; system components where host-based boundary protection mechanisms are to be implemented are defined].'), ('002406','draft','2013-07-02','DISA FSO','policy','Implement organization-defined host-based boundary protection mechanisms at organization-defined system components.','SC-07(12)','N/A','Determine if [SC-07(12)_ODP[01]; host-based boundary protection mechanisms to be implemented are defined] are implemented at [SC-07(12)_ODP[02]; system components where host-based boundary protection mechanisms are to be implemented are defined].'), ('002407','draft','2013-07-02','DISA FSO','policy','Defines the managed interfaces at which protect against unauthorized physical connections.','SC-07(14)','N/A','Determine if [SC-07(14)_ODP; managed interfaces to be protected against unauthorized physical connections are defined] are protected against unauthorized physical connections.'), ('002408','draft','2013-07-02','DISA FSO','policy','Defines the communication clients that are independently configured by end users and external service providers which will block both inbound and outbound communications traffic.','SC-07(19)','N/A','Determine if: - inbound communications traffic is blocked between [SC-07(19)_ODP; communication clients that are independently configured by end users and external service providers are defined] that are independently configured by end users and external service providers. - outbound communications traffic is blocked between [SC-07(19)_ODP; communication clients that are independently configured by end users and external service providers are defined] that are independently configured by end users and external service providers.'), ('002409','draft','2013-07-02','DISA FSO','technical','Block inbound and outbound communications traffic between organization-defined communication clients that are independently configured by end users and external service providers.','SC-07(19)','N/A','Determine if: - inbound communications traffic is blocked between [SC-07(19)_ODP; communication clients that are independently configured by end users and external service providers are defined] that are independently configured by end users and external service providers. - outbound communications traffic is blocked between [SC-07(19)_ODP; communication clients that are independently configured by end users and external service providers are defined] that are independently configured by end users and external service providers.'), ('002410','draft','2013-07-02','DISA FSO','policy','Defines system components that are to be dynamically isolated from other system components.','SC-07(20)','N/A','Determine if the capability to dynamically isolate [SC-07(20)_ODP; system components to be dynamically isolated from other system components are defined] from other system components is provided.'), ('002411','draft','2013-07-02','DISA FSO','technical','Provide the capability to dynamically isolate organization-defined system components from other system components.','SC-07(20)','N/A','Determine if the capability to dynamically isolate [SC-07(20)_ODP; system components to be dynamically isolated from other system components are defined] from other system components is provided.'), ('002413','draft','2013-07-02','DISA FSO','policy','Defines the system components supporting organization-defined missions and/or business functions that are to be isolated using boundary protection mechanisms.','SC-07(21)','N/A','Determine if boundary protection mechanisms are employed to isolate [SC-07(21)_ODP[01]; system components to be isolated by boundary protection mechanisms are defined] supporting [SC-07(21)_ODP[02]; missions and/or business functions to be supported by system components isolated by boundary protection mechanisms are defined].'), ('002414','draft','2013-07-02','DISA FSO','policy','Defines the missions and/or business functions for which boundary protection mechanisms will be employed to isolate the supporting organization-defined system components.','SC-07(21)','N/A','Determine if boundary protection mechanisms are employed to isolate [SC-07(21)_ODP[01]; system components to be isolated by boundary protection mechanisms are defined] supporting [SC-07(21)_ODP[02]; missions and/or business functions to be supported by system components isolated by boundary protection mechanisms are defined].'), ('002415','draft','2013-07-02','DISA FSO','policy','Employ boundary protection mechanisms to isolate organization-defined system components supporting organization-defined missions and/or business functions.','SC-07(21)','N/A','Determine if boundary protection mechanisms are employed to isolate [SC-07(21)_ODP[01]; system components to be isolated by boundary protection mechanisms are defined] supporting [SC-07(21)_ODP[02]; missions and/or business functions to be supported by system components isolated by boundary protection mechanisms are defined].'), ('002416','draft','2013-07-02','DISA FSO','policy','Implement separate network addresses to connect to systems in different security domains.','SC-07(22)','N/A','Determine if separate network addresses are implemented to connect to systems in different security domains.'), ('002417','draft','2013-07-02','DISA FSO','technical','Disable feedback to senders on protocol format validation failure.','SC-07(23)','N/A','Determine if feedback to senders is disabled on protocol format validation failure.'), ('002418','draft','2013-07-02','DISA FSO','policy','Protect the confidentiality and/or integrity of transmitted information.','SC-08','N/A','Determine if the [SC-08_ODP; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] of transmitted information is/are protected.'), ('002420','draft','2013-07-02','DISA FSO','technical','Maintain the confidentiality and/or integrity of information during preparation for transmission.','SC-08(02)','N/A','Determine if: - information [SC-08(02)_ODP; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] is/are maintained during preparation for transmission. - information [SC-08(02)_ODP; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] is/are maintained during reception.'), ('002421','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to prevent unauthorized disclosure of information and/or detect changes to information during transmission.','SC-08(01)','N/A','Determine if cryptographic mechanisms are implemented to [SC-08(01)_ODP; one or more of the following PARAMETER VALUES is/are selected: {prevent unauthorized disclosure of information; detect changes to information}] during transmission.'), ('002422','draft','2013-07-02','DISA FSO','technical','Maintain the confidentiality and/or integrity of information during reception.','SC-08(02)','N/A','Determine if: - information [SC-08(02)_ODP; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] is/are maintained during preparation for transmission. - information [SC-08(02)_ODP; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] is/are maintained during reception.'), ('002423','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to protect message externals unless otherwise protected by organization-defined alternative physical controls.','SC-08(03)','N/A','Determine if cryptographic mechanisms are implemented to protect message externals unless otherwise protected by [SC-08(03)_ODP; alternative physical controls to protect message externals are defined].'), ('002424','draft','2013-07-02','DISA FSO','policy','Defines the alternative physical controls to be employed when cryptographic mechanisms to conceal or randomize communication patterns are not implemented.','SC-08(04)','N/A','Determine if cryptographic mechanisms are implemented to conceal or randomize communication patterns unless otherwise protected by [SC-08(04)_ODP; alternative physical controls to protect against unauthorized disclosure of communication patterns are defined].'), ('002425','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to conceal or randomize communication patterns unless otherwise protected by organization-defined alternative physical controls.','SC-08(04)','N/A','Determine if cryptographic mechanisms are implemented to conceal or randomize communication patterns unless otherwise protected by [SC-08(04)_ODP; alternative physical controls to protect against unauthorized disclosure of communication patterns are defined].'), ('002426','draft','2013-07-02','DISA FSO','technical','Provide a trusted communications path that is irrefutably distinguishable from other communications paths.','SC-11(01)(a)','N/A','Determine if a trusted communication path that is irrefutably distinguishable from other communication paths is provided.'), ('002427','draft','2013-07-02','DISA FSO','policy','Defines the alternative physical controls to be employed to protect message externals when cryptographic mechanisms are not implemented.','SC-08(03)','N/A','Determine if cryptographic mechanisms are implemented to protect message externals unless otherwise protected by [SC-08(03)_ODP; alternative physical controls to protect message externals are defined].'), ('002428','draft','2013-07-02','DISA FSO','policy','Defines the requirements for cryptographic key generation to be employed within the system.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002429','draft','2013-07-02','DISA FSO','policy','Defines the requirements for cryptographic key distribution to be employed within the system.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002430','draft','2013-07-02','DISA FSO','policy','Defines the requirements for cryptographic key storage to be employed within the system.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002431','draft','2013-07-02','DISA FSO','policy','Defines the requirements for cryptographic key access to be employed within the system.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002432','draft','2013-07-02','DISA FSO','policy','Defines the requirements for cryptographic key destruction to be employed within the system.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002433','draft','2013-07-02','DISA FSO','policy','Establish cryptographic keys when cryptography is employed within the system in accordance with organization-defined requirements for key generation.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002434','draft','2013-07-02','DISA FSO','policy','Establish cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key distribution.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002435','draft','2013-07-02','DISA FSO','policy','Establish cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key storage.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002436','draft','2013-07-02','DISA FSO','policy','Establish cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key access.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002437','draft','2013-07-02','DISA FSO','policy','Establish cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key destruction.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002438','draft','2013-07-02','DISA FSO','policy','Manage cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key generation.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002439','draft','2013-07-02','DISA FSO','policy','Manage cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key distribution.',NULL,'N/A',NULL), ('002440','draft','2013-07-02','DISA FSO','policy','Manage cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key storage.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002441','draft','2013-07-02','DISA FSO','policy','Manage cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key access.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002442','draft','2013-07-02','DISA FSO','policy','Manage cryptographic keys when cryptography employed within the system in accordance with organization-defined requirements for key destruction.','SC-12','N/A','Determine if: - cryptographic keys are established when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined]. - cryptographic keys are managed when cryptography is employed within the system in accordance with [SC-12_ODP; requirements for key generation, distribution, storage, access, and destruction are defined].'), ('002443','draft','2013-07-02','DISA FSO','policy','Produce symmetric cryptographic keys using NIST FIPS-validated or NSA-approved key management technology and processes.','SC-12(02)','N/A','Determine if: - symmetric cryptographic keys are produced using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes. - symmetric cryptographic keys are controlled using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes. - symmetric cryptographic keys are distributed using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes.'), ('002444','draft','2013-07-02','DISA FSO','policy','Control symmetric cryptographic keys using NIST FIPS-validated or NSA-approved key management technology and processes.','SC-12(02)','N/A','Determine if: - symmetric cryptographic keys are produced using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes. - symmetric cryptographic keys are controlled using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes. - symmetric cryptographic keys are distributed using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes.'), ('002445','draft','2013-07-02','DISA FSO','policy','Distribute symmetric cryptographic keys using NIST FIPS-validated or NSA-approved key management technology and processes.','SC-12(02)','N/A','Determine if: - symmetric cryptographic keys are produced using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes. - symmetric cryptographic keys are controlled using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes. - symmetric cryptographic keys are distributed using [SC-12(02)_ODP; one of the following PARAMETER VALUES is selected: {NIST FIPS-validated; NSA-approved}] key management technology and processes.'), ('002446','draft','2013-07-02','DISA FSO','policy','Produce asymmetric cryptographic keys using: NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; or certificates issued in accordance with organization-defined requirements.','SC-12(03)','N/A','Determine if: - asymmetric cryptographic keys are produced using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are controlled using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are distributed using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}].'), ('002447','draft','2013-07-02','DISA FSO','policy','Control asymmetric cryptographic keys using: NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; or certificates issued in accordance with organization-defined requirements.','SC-12(03)','N/A','Determine if: - asymmetric cryptographic keys are produced using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are controlled using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are distributed using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}].'), ('002448','draft','2013-07-02','DISA FSO','policy','Distribute asymmetric cryptographic keys using: NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; or certificates issued in accordance with organization-defined requirements.','SC-12(03)','N/A','Determine if: - asymmetric cryptographic keys are produced using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are controlled using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are distributed using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}].'), ('002449','draft','2013-07-02','DISA FSO','policy','Defines the cryptographic uses, and type of cryptography required for each use, to be implemented by the system.',NULL,'N/A',NULL), ('002450','draft','2013-07-02','DISA FSO','technical','Implement organization-defined types of cryptography for each specified cryptography use.','SC-13a.','N/A','Determine if [SC-13_ODP[01]; cryptographic uses are defined] are identified.'), ('002451','draft','2013-07-02','DISA FSO','policy','Defines the systems or system components from which collaborative computing devices and applications in organization-defined secure work areas are to be disabled or removed.','SC-15(03)','N/A','Determine if collaborative computing devices and applications are disabled or removed from [SC-15(03)_ODP[01]; systems or system components from which collaborative computing devices are to be disabled or removed are defined] in [SC-15(03)_ODP[02]; secure work areas where collaborative computing devices are to be disabled or removed from systems or system components are defined].'), ('002452','draft','2013-07-02','DISA FSO','policy','Defines the online meetings and teleconferences for which the system provides an explicit indication of current participants.','SC-15(04)','N/A','Determine if an explicit indication of current participants in [SC-15(04)_ODP; online meetings and teleconferences for which an explicit indication of current participants is to be provided are defined] is provided.'), ('002453','draft','2013-07-02','DISA FSO','technical','Provide an explicit indication of current participants in organization-defined online meetings and teleconferences.',NULL,'N/A',NULL), ('002454','draft','2013-07-02','DISA FSO','policy','Defines the security attributes to associate with the information being exchanged between systems and between system components.','SC-16','N/A','Determine if: - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between system components. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between system components.'), ('002455','draft','2013-07-02','DISA FSO','technical','Associate organization-defined security attributes with information exchanged between system components.','SC-16','N/A','Determine if: - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between system components. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between system components.'), ('002456','draft','2013-07-02','DISA FSO','policy','Defines the certificate policy employed to issue public key certificates.','SC-15(04)','N/A','Determine if an explicit indication of current participants in [SC-15(04)_ODP; online meetings and teleconferences for which an explicit indication of current participants is to be provided are defined] is provided.'), ('002457','draft','2013-07-02','DISA FSO','policy','Defines the corrective actions to be taken when organization-defined unacceptable mobile code is identified.','SC-18(01)','N/A','Determine if: - [SC-18(01)_ODP[01]; unacceptable mobile code to be identified is defined] is identified. - [SC-18(01)_ODP[02]; corrective actions to be taken when unacceptable mobile code is identified are defined] are taken if unacceptable mobile code is identified.'), ('002458','draft','2013-07-02','DISA FSO','policy','Defines what constitutes unacceptable mobile code by using corrective actions.','SC-18(01)','N/A','Determine if: - [SC-18(01)_ODP[01]; unacceptable mobile code to be identified is defined] is identified. - [SC-18(01)_ODP[02]; corrective actions to be taken when unacceptable mobile code is identified are defined] are taken if unacceptable mobile code is identified.'), ('002459','draft','2013-07-02','DISA FSO','policy','Defines the unacceptable mobile code to prevent download and execution.','SC-18(03)','N/A','Determine if: - the download of [SC-18(03)_ODP; unacceptable mobile code to be prevented from downloading and executing is defined] is prevented. - the execution of [SC-18(03)_ODP; unacceptable mobile code to be prevented from downloading and executing is defined] is prevented.'), ('002460','draft','2013-07-02','DISA FSO','technical','Enforce organization-defined actions prior to executing mobile code.','SC-18(04)','N/A','Determine if: - the automatic execution of mobile code in [SC-18(04)_ODP[01]; software applications in which the automatic execution of mobile code is to be prevented are defined] is prevented. - [SC-18(04)_ODP[02]; actions to be enforced by the system prior to executing mobile code are defined] are enforced prior to executing mobile code.'), ('002461','draft','2013-07-02','DISA FSO','policy','Allow execution of permitted mobile code only in confined virtual machine environments.','SC-18(05)','N/A','Determine if execution of permitted mobile code is allowed only in confined virtual machine environments.'), ('002462','draft','2013-07-02','DISA FSO','technical','Provide additional data integrity verification artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries.','SC-20a.','N/A','Determine if: - additional data origin authentication is provided along with the authoritative name resolution data that the system returns in response to external name/address resolution queries. - integrity verification artifacts are provided along with the authoritative name resolution data that the system returns in response to external name/address resolution queries.'), ('002463','draft','2013-07-02','DISA FSO','technical','Provide data origin artifacts for internal name/address resolution queries.','SC-20(02)','N/A','Determine if: - data origin artifacts are provided for internal name/address resolution queries. - integrity protection artifacts are provided for internal name/address resolution queries.'), ('002464','draft','2013-07-02','DISA FSO','technical','Provide data integrity protection artifacts for internal name/address resolution queries.','SC-20(02)','N/A','Determine if: - data origin artifacts are provided for internal name/address resolution queries. - integrity protection artifacts are provided for internal name/address resolution queries.'), ('002465','draft','2013-07-02','DISA FSO','technical','Request data origin authentication verification on the name/address resolution responses the system receives from authoritative sources.','SC-21','N/A','Determine if: - data origin authentication is requested for the name/address resolution responses that the system receives from authoritative sources. - data origin authentication is performed on the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is requested for the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is performed on the name/address resolution responses that the system receives from authoritative sources.'), ('002466','draft','2013-07-02','DISA FSO','technical','Request data integrity verification on the name/address resolution responses the system receives from authoritative sources.','SC-21','N/A','Determine if: - data origin authentication is requested for the name/address resolution responses that the system receives from authoritative sources. - data origin authentication is performed on the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is requested for the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is performed on the name/address resolution responses that the system receives from authoritative sources.'), ('002467','draft','2013-07-02','DISA FSO','technical','Perform data integrity verification on the name/address resolution responses the system receives from authoritative sources.','SC-21','N/A','Determine if: - data origin authentication is requested for the name/address resolution responses that the system receives from authoritative sources. - data origin authentication is performed on the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is requested for the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is performed on the name/address resolution responses that the system receives from authoritative sources.'), ('002468','draft','2013-07-02','DISA FSO','technical','Perform data origin verification authentication on the name/address resolution responses the system receives from authoritative sources.','SC-21','N/A','Determine if: - data origin authentication is requested for the name/address resolution responses that the system receives from authoritative sources. - data origin authentication is performed on the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is requested for the name/address resolution responses that the system receives from authoritative sources. - data integrity verification is performed on the name/address resolution responses that the system receives from authoritative sources.'), ('002469','draft','2013-07-02','DISA FSO','policy','Defines the certificate authorities allowed to be used for verification of the establishment of protected sessions.','SC-23(05)','N/A','Determine if only the use of [SC-23(05)_ODP; certificate authorities to be allowed for verification of the establishment of protected sessions are defined] for verification of the establishment of protected sessions is allowed.'), ('002470','draft','2013-07-02','DISA FSO','technical','Only allow the use of organization-defined certificate authorities for verification of the establishment of protected sessions.','SC-23(05)','N/A','Determine if only the use of [SC-23(05)_ODP; certificate authorities to be allowed for verification of the establishment of protected sessions are defined] for verification of the establishment of protected sessions is allowed.'), ('002471','draft','2013-07-02','DISA FSO','policy','Defines the system components, with minimal functionality and information storage, to be employed.','SC-25','N/A','Determine if: - minimal functionality for [SC-25_ODP; system components to be employed with minimal functionality and information storage are defined] is employed. - minimal information storage on [SC-25_ODP; system components to be employed with minimal functionality and information storage are defined] is allocated.'), ('002472','draft','2013-07-02','DISA FSO','policy','Defines the information at rest that is to be protected.','SC-28','N/A','Determine if the [SC-28_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {confidentiality; integrity}] of [SC-28_ODP[02]; information at rest requiring protection is defined] is/are protected.'), ('002473','draft','2013-07-02','DISA FSO','policy','Defines the information at rest for which cryptographic mechanisms will be implemented.','SC-28(01)','N/A','Determine if: - cryptographic mechanisms are implemented to prevent unauthorized disclosure of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02]; system components or media requiring cryptographic protection is/are defined]. - cryptographic mechanisms are implemented to prevent unauthorized modification of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02; system components or media requiring cryptographic protection is/are defined].'), ('002474','draft','2013-07-02','DISA FSO','policy','Defines the system components which require the implementation of cryptographic mechanisms to prevent unauthorized disclosure and modification of organization-defined information at rest.','SC-28(01)','N/A','Determine if: - cryptographic mechanisms are implemented to prevent unauthorized disclosure of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02]; system components or media requiring cryptographic protection is/are defined]. - cryptographic mechanisms are implemented to prevent unauthorized modification of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02; system components or media requiring cryptographic protection is/are defined].'), ('002475','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to prevent unauthorized modification of organization-defined information at rest on organization-defined system components.','SC-28(01)','N/A','Determine if: - cryptographic mechanisms are implemented to prevent unauthorized disclosure of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02]; system components or media requiring cryptographic protection is/are defined]. - cryptographic mechanisms are implemented to prevent unauthorized modification of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02; system components or media requiring cryptographic protection is/are defined].'), ('002476','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to prevent unauthorized disclosure of organization-defined information at rest on organization-defined system components.','SC-28(01)','N/A','Determine if: - cryptographic mechanisms are implemented to prevent unauthorized disclosure of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02]; system components or media requiring cryptographic protection is/are defined]. - cryptographic mechanisms are implemented to prevent unauthorized modification of [SC-28(01)_ODP[01]; information requiring cryptographic protection is defined] at rest on [SC-28(01)_ODP[02; system components or media requiring cryptographic protection is/are defined].'), ('002477','draft','2013-07-02','DISA FSO','policy','Defines the information to be removed from online storage and stored in an offline secure location.','SC-28(02)','N/A','Determine if: - [SC-28(02)_ODP; information to be removed from online storage and stored offline in a secure location is defined] is removed from online storage. - [SC-28(02)_ODP; information to be removed from online storage and stored offline in a secure location is defined] is stored offline in a secure location.'), ('002478','draft','2013-07-02','DISA FSO','policy','Remove organization-defined information from online storage.','SC-28(02)','N/A','Determine if: - [SC-28(02)_ODP; information to be removed from online storage and stored offline in a secure location is defined] is removed from online storage. - [SC-28(02)_ODP; information to be removed from online storage and stored offline in a secure location is defined] is stored offline in a secure location.'), ('002479','draft','2013-07-02','DISA FSO','policy','Store organization-defined information in an offline secure location.','SC-28(02)','N/A','Determine if: - [SC-28(02)_ODP; information to be removed from online storage and stored offline in a secure location is defined] is removed from online storage. - [SC-28(02)_ODP; information to be removed from online storage and stored offline in a secure location is defined] is stored offline in a secure location.'), ('002480','draft','2013-07-02','DISA FSO','policy','Defines the system components for which a diverse set of information technologies are to be employed.','SC-29','N/A','Determine if a diverse set of information technologies is employed for [SC-29_ODP; system components requiring a diverse set of information technologies to be employed in the implementation of the system are defined] in the implementation of the system.'), ('002481','draft','2013-07-02','DISA FSP','policy','Employ virtualization techniques to support the deployment of a diversity of applications that are changed per organization-defined frequency.','SC-29(01)','N/A','Determine if virtualization techniques are employed to support the deployment of a diverse range of operating systems and applications that are changed [SC-29(01)_ODP; the frequency at which to change the diversity of operating systems and applications deployed using virtualization techniques is defined].'), ('002482','draft','2013-07-02','DISA FSO','policy','Defines the concealment and misdirection techniques employed for organization-defined systems to confuse and mislead adversaries.','SC-30','N/A','Determine if [SC-30_ODP[01]; concealment and misdirection techniques to be employed to confuse and mislead adversaries potentially targeting systems are defined] are employed for [SC-30_ODP[02]; systems for which concealment and misdirection techniques are to be employed are defined] for [SC-30_ODP[03]; time periods to employ concealment and misdirection techniques for systems are defined] to confuse and mislead adversaries.'), ('002483','draft','2013-07-02','DISA FSO','policy','Defines the systems for which organization-defined concealment and misdirection techniques are to be employed.','SC-30','N/A','Determine if [SC-30_ODP[01]; concealment and misdirection techniques to be employed to confuse and mislead adversaries potentially targeting systems are defined] are employed for [SC-30_ODP[02]; systems for which concealment and misdirection techniques are to be employed are defined] for [SC-30_ODP[03]; time periods to employ concealment and misdirection techniques for systems are defined] to confuse and mislead adversaries.'), ('002484','draft','2013-07-02','DISA FSO','policy','Defines the time periods at which to employ organization-defined concealment and misdirection techniques on organization-defined systems.','SC-30','N/A','Determine if [SC-30_ODP[01]; concealment and misdirection techniques to be employed to confuse and mislead adversaries potentially targeting systems are defined] are employed for [SC-30_ODP[02]; systems for which concealment and misdirection techniques are to be employed are defined] for [SC-30_ODP[03]; time periods to employ concealment and misdirection techniques for systems are defined] to confuse and mislead adversaries.'), ('002485','draft','2013-07-02','DISA FSO','policy','Employ organization-defined concealment and misdirection techniques for organization-defined systems at organization-defined time periods to confuse and mislead adversaries.','SC-30','N/A','Determine if [SC-30_ODP[01]; concealment and misdirection techniques to be employed to confuse and mislead adversaries potentially targeting systems are defined] are employed for [SC-30_ODP[02]; systems for which concealment and misdirection techniques are to be employed are defined] for [SC-30_ODP[03]; time periods to employ concealment and misdirection techniques for systems are defined] to confuse and mislead adversaries.'), ('002486','draft','2013-07-02','DISA FSO','policy','Defines the techniques to be employed to introduce randomness into organizational operations and assets.','SC-30(02)','N/A','Determine if [SC-30(02)_ODP; techniques employed to introduce randomness into organizational operations and assets are defined] are employed to introduce randomness into organizational operations and assets.'), ('002487','draft','2013-07-02','DISA FSO','policy','Employ organization-defined techniques to introduce randomness into organizational operations.','SC-30(02)','N/A','Determine if [SC-30(02)_ODP; techniques employed to introduce randomness into organizational operations and assets are defined] are employed to introduce randomness into organizational operations and assets.'), ('002488','draft','2013-07-02','DISA FSO','policy','Employ organization-defined techniques to introduce randomness into organizational assets.','SC-30(02)','N/A','Determine if [SC-30(02)_ODP; techniques employed to introduce randomness into organizational operations and assets are defined] are employed to introduce randomness into organizational operations and assets.'), ('002489','draft','2013-07-02','DISA FSO','policy','Defines the processing and/or storage locations to be changed at random intervals or at an organization-defined frequency.','SC-30(03)','N/A','Determine if the location of [SC-30(03)_ODP[01]; processing and/or storage locations to be changed are defined] is changed [SC-30(03)_ODP[02]; one of the following PARAMETER VALUES is selected: {[SC-30(03)_ODP[03]; time frequency at which to change the location of processing and/or storage is defined (if selected)]; random time intervals}].'), ('002490','draft','2013-07-02','DISA FSO','policy','Defines the frequency at which the location of organization-defined processing and/or storage changes.','SC-30(03)','N/A','Determine if the location of [SC-30(03)_ODP[01]; processing and/or storage locations to be changed are defined] is changed [SC-30(03)_ODP[02]; one of the following PARAMETER VALUES is selected: {[SC-30(03)_ODP[03]; time frequency at which to change the location of processing and/or storage is defined (if selected)]; random time intervals}].'), ('002492','draft','2013-07-02','DISA FSO','policy','Change the location of organization-defined processing and/or storage at an organization-defined time frequency or at random time intervals.','SC-30(03)','N/A','Determine if the location of [SC-30(03)_ODP[01]; processing and/or storage locations to be changed are defined] is changed [SC-30(03)_ODP[02]; one of the following PARAMETER VALUES is selected: {[SC-30(03)_ODP[03]; time frequency at which to change the location of processing and/or storage is defined (if selected)]; random time intervals}].'), ('002493','draft','2013-07-02','DISA FSO','policy','Defines the system components in which it will employ realistic but misleading information regarding its security state or posture.','SC-30(04)','N/A','Determine if realistic but misleading information about the security state or posture of [SC-30(04)_ODP; system components for which realistic but misleading information about their security state or posture is employed are defined] is employed.'), ('002494','draft','2013-07-02','DISA FSO','policy','Employ realistic, but misleading, information in organization-defined system components about its security state or posture.','SC-30(04)','N/A','Determine if realistic but misleading information about the security state or posture of [SC-30(04)_ODP; system components for which realistic but misleading information about their security state or posture is employed are defined] is employed.'), ('002495','draft','2013-07-02','DISA FSO','policy','Defines the techniques to be employed to hide or conceal organization-defined system components.','SC-30(05)','N/A','Determine if [SC-30(05)_ODP[01]; techniques to be employed to hide or conceal system components are defined] are employed to hide or conceal [SC-30(05)_ODP[02]; system components to be hidden or concealed using techniques (defined in SC-30(05)_ODP[01]) are defined].'), ('002496','draft','2013-07-02','DISA FSO','policy','Defines the system components to be hidden or concealed.','SC-30(05)','N/A','Determine if [SC-30(05)_ODP[01]; techniques to be employed to hide or conceal system components are defined] are employed to hide or conceal [SC-30(05)_ODP[02]; system components to be hidden or concealed using techniques (defined in SC-30(05)_ODP[01]) are defined].'), ('002497','draft','2013-07-02','DISA FSO','policy','Employ organization-defined techniques to hide or conceal organization-defined system components.','SC-30(05)','N/A','Determine if [SC-30(05)_ODP[01]; techniques to be employed to hide or conceal system components are defined] are employed to hide or conceal [SC-30(05)_ODP[02]; system components to be hidden or concealed using techniques (defined in SC-30(05)_ODP[01]) are defined].'), ('002498','draft','2013-07-02','DISA FSO','policy','Perform a covert channel analysis to identify those aspects of communications within the system that are potential avenues for covert storage and/or timing channels.','SC-31a.','N/A','Determine if a covert channel analysis is performed to identify those aspects of communications within the system that are potential avenues for covert [SC-31_ODP; one or more of the following PARAMETER VALUES is/are selected: {storage; timing}] channels.'), ('002499','draft','2013-07-02','DISA FSO','policy','Estimate the maximum bandwidth of the covert storage and timing channels.','SC-31b.','N/A','Determine if the maximum bandwidth of those channels is estimated.'), ('002500','draft','2013-07-02','DISA FSO','policy','Defines the maximum bandwidth values to which covert storage and/or timing channels are to be reduced.','SC-31(02)','N/A','Determine if the maximum bandwidth for identified covert [SC-31(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {storage; timing}] channels is reduced to [SC-31(02)_ODP[02]; values for the maximum bandwidth for identified covert channels are defined].'), ('002501','draft','2013-07-02','DISA FSO','policy','Reduce the maximum bandwidth for identified covert storage and/or timing channels to organization-defined values.','SC-31(02)','N/A','Determine if the maximum bandwidth for identified covert [SC-31(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {storage; timing}] channels is reduced to [SC-31(02)_ODP[02]; values for the maximum bandwidth for identified covert channels are defined].'), ('002502','draft','2013-07-02','DISA FSO','policy','Defines the subset of identified covert channels in the operational environment of the system that are to have the bandwidth measured.','SC-31(03)','N/A','Determine if the bandwidth of [SC-31(03)_ODP; subset of identified covert channels whose bandwidth is to be measured in the operational environment of the system is defined] is measured in the operational environment of the system.'), ('002503','draft','2013-07-02','DISA FSO','policy','Measure the bandwidth of an organization-defined subset of identified covert channels in the operational environment of the information system.','SC-31(03)','N/A','Determine if the bandwidth of [SC-31(03)_ODP; subset of identified covert channels whose bandwidth is to be measured in the operational environment of the system is defined] is measured in the operational environment of the system.'), ('002504','draft','2013-07-02','DISA FSO','policy','Defines the system components into which the system is partitioned.','SC-32','N/A','Determine if the system is partitioned into [SC-32_ODP[01]; system components to reside in separate physical or logical domains or environments based on circumstances for the physical or logical separation of components are defined] residing in separate [SC-32_ODP[02]; one of the following PARAMETER VALUES is selected: {physical; logical}] domains or environments based on [SC-32_ODP[03]; circumstances for the physical or logical separation of components are defined].'), ('002505','draft','2013-07-02','DISA FSO','policy','Defines the circumstances under which the system components are to be physically or logically separated to support partitioning.','SC-32','N/A','Determine if the system is partitioned into [SC-32_ODP[01]; system components to reside in separate physical or logical domains or environments based on circumstances for the physical or logical separation of components are defined] residing in separate [SC-32_ODP[02]; one of the following PARAMETER VALUES is selected: {physical; logical}] domains or environments based on [SC-32_ODP[03]; circumstances for the physical or logical separation of components are defined].'), ('002506','draft','2013-07-02','DISA FSO','policy','Partition the system into organization-defined system components residing in separate physical or logical domains or environments based on organization-defined circumstances for physical or logical separation of components.','SC-32','N/A','Determine if the system is partitioned into [SC-32_ODP[01]; system components to reside in separate physical or logical domains or environments based on circumstances for the physical or logical separation of components are defined] residing in separate [SC-32_ODP[02]; one of the following PARAMETER VALUES is selected: {physical; logical}] domains or environments based on [SC-32_ODP[03]; circumstances for the physical or logical separation of components are defined].'), ('002507','draft','2013-07-02','DISA FSO','policy','Control read-only media after information has been recorded onto the media.',NULL,'N/A',NULL), ('002508','draft','2013-07-02','DISA FSO','policy','Defines the system firmware components for which hardware-based, write-protect is employed.','SC-51a.','N/A','Determine if hardware-based write-protect for [SC-51_ODP[01]; system firmware components requiring hardware-based write-protect are defined] is employed.'), ('002509','draft','2013-07-02','DISA FSO','policy','Employ hardware-based, write-protect for organization-defined information system firmware components.','SC-51a.','N/A','Determine if hardware-based write-protect for [SC-51_ODP[01]; system firmware components requiring hardware-based write-protect are defined] is employed.'), ('002510','draft','2013-07-02','DISA FSO','policy','Defines the individuals authorized to manually disable hardware-based, write-protect for firmware modifications and re-enable the write-protect prior to returning to operational mode.','SC-51b.','N/A','Determine if: - specific procedures are implemented for [SC-51_ODP[02]; authorized individuals requiring procedures for disabling and re-enabling hardware write-protect are defined] to manually disable hardware write-protect for firmware modifications. - specific procedures are implemented for [SC-51_ODP[02]; authorized individuals requiring procedures for disabling and re-enabling hardware write-protect are defined] to re-enable the write-protect prior to returning to operational mode.'), ('002511','draft','2013-07-02','DISA FSO','policy','Implement specific procedures for organization-defined authorized individuals to manually disable hardware-based, write-protect for firmware modifications.','SC-51b.','N/A','Determine if: - specific procedures are implemented for [SC-51_ODP[02]; authorized individuals requiring procedures for disabling and re-enabling hardware write-protect are defined] to manually disable hardware write-protect for firmware modifications. - specific procedures are implemented for [SC-51_ODP[02]; authorized individuals requiring procedures for disabling and re-enabling hardware write-protect are defined] to re-enable the write-protect prior to returning to operational mode.'), ('002512','draft','2013-07-02','DISA FSO','policy','Implement specific procedures for organization-defined authorized individuals to manually re-enable hardware write-protect prior to returning to operational mode.','SC-51b.','N/A','Determine if: - specific procedures are implemented for [SC-51_ODP[02]; authorized individuals requiring procedures for disabling and re-enabling hardware write-protect are defined] to manually disable hardware write-protect for firmware modifications. - specific procedures are implemented for [SC-51_ODP[02]; authorized individuals requiring procedures for disabling and re-enabling hardware write-protect are defined] to re-enable the write-protect prior to returning to operational mode.'), ('002513','draft','2013-07-02','DISA FSO','policy','Defines the processing that is to be distributed across multiple physical locations or logical domains.','SC-36','N/A','Determine if: - [SC-36_ODP[01]; processing components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[02]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}]. - [SC-36_ODP[03]; storage components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[04]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}].'), ('002514','draft','2013-07-02','DISA FSO','policy','Defines the storage components that is to be distributed across multiple physical locations or logical domains.','SC-36','N/A','Determine if: - [SC-36_ODP[01]; processing components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[02]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}]. - [SC-36_ODP[03]; storage components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[04]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}].'), ('002515','draft','2013-07-02','DISA FSO','policy','Distributes organization-defined processing across multiple physical locations or logical domains.','SC-36','N/A','Determine if: - [SC-36_ODP[01]; processing components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[02]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}]. - [SC-36_ODP[03]; storage components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[04]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}].'), ('002516','draft','2013-07-02','DISA FSO','policy','Distributes organization-defined storage components across multiple physical locations or logical domains.','SC-36','N/A','Determine if: - [SC-36_ODP[01]; processing components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[02]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}]. - [SC-36_ODP[03]; storage components to be distributed across multiple locations/domains are defined] are distributed across [SC-36_ODP[04]; one of the following PARAMETER VALUES is selected: {physical locations; logical domains}].'), ('002517','draft','2013-07-02','DISA FSO','policy','Defines the distributed processing components that are to be polled to identify potential faults, errors, or compromises.','SC-36(01)(a)','N/A','Determine if polling techniques are employed to identify potential faults, errors, or compromises to [SC-36(01)_ODP[01]; distributed processing and storage components for which polling techniques are to be employed to identify potential faults, errors, or compromises are defined].'), ('002518','draft','2013-07-02','DISA FSO','policy','Defines the distributed storage components that are to be polled to identify potential faults, errors, or compromises.','SC-36(01)(a)','N/A','Determine if polling techniques are employed to identify potential faults, errors, or compromises to [SC-36(01)_ODP[01]; distributed processing and storage components for which polling techniques are to be employed to identify potential faults, errors, or compromises are defined].'), ('002519','draft','2013-07-02','DISA FSO','policy','Employ polling techniques to identify potential faults, errors, or compromises to organization-defined distributed processing components.','SC-36(01)(a)','N/A','Determine if polling techniques are employed to identify potential faults, errors, or compromises to [SC-36(01)_ODP[01]; distributed processing and storage components for which polling techniques are to be employed to identify potential faults, errors, or compromises are defined].'), ('002520','draft','2013-07-02','DISA FSO','policy','Employ polling techniques to identify potential faults, errors, or compromises to organization-defined distributed storage components.','SC-36(01)(a)','N/A','Determine if polling techniques are employed to identify potential faults, errors, or compromises to [SC-36(01)_ODP[01]; distributed processing and storage components for which polling techniques are to be employed to identify potential faults, errors, or compromises are defined].'), ('002521','draft','2013-07-02','DISA FSO','policy','Defines the out-of-band channels to be employed for the physical delivery or electronic transmission of organization-defined information, system components, or devices.','SC-37','N/A','Determine if [SC-37_ODP[01]; out-of-band channels to be employed for the physical delivery or electronic transmission of information, system components, or devices to individuals or the system are defined] are employed for the physical delivery or electronic transmission of [SC-37_ODP[02]; information, system components, or devices to employ out-of-band-channels for physical delivery or electronic transmission are defined] to [SC-37_ODP[03]; individuals or systems to which physical delivery or electronic transmission of information, system components, or devices is to be achieved via the employment of out-of-band channels are defined].'), ('002522','draft','2013-07-02','DISA FSO','policy','Defines the information, system components, or devices that are to be electronically transmitted or physically delivered via organization-defined out-of-band channels.','SC-37','N/A','Determine if [SC-37_ODP[01]; out-of-band channels to be employed for the physical delivery or electronic transmission of information, system components, or devices to individuals or the system are defined] are employed for the physical delivery or electronic transmission of [SC-37_ODP[02]; information, system components, or devices to employ out-of-band-channels for physical delivery or electronic transmission are defined] to [SC-37_ODP[03]; individuals or systems to which physical delivery or electronic transmission of information, system components, or devices is to be achieved via the employment of out-of-band channels are defined].'), ('002523','draft','2013-07-02','DISA FSO','policy','Defines the individuals or systems authorized to be recipients of organization-defined information, system components, or devices to be delivered by employing organization-defined out-of-band channels for electronic transmission or physical delivery.','SC-37','N/A','Determine if [SC-37_ODP[01]; out-of-band channels to be employed for the physical delivery or electronic transmission of information, system components, or devices to individuals or the system are defined] are employed for the physical delivery or electronic transmission of [SC-37_ODP[02]; information, system components, or devices to employ out-of-band-channels for physical delivery or electronic transmission are defined] to [SC-37_ODP[03]; individuals or systems to which physical delivery or electronic transmission of information, system components, or devices is to be achieved via the employment of out-of-band channels are defined].'), ('002524','draft','2013-07-02','DISA FSO','policy','Employ organization-defined out-of-band channels for the physical delivery or electronic transmission of organization-defined information, system components, or devices to organization-defined individuals or systems.','SC-37','N/A','Determine if [SC-37_ODP[01]; out-of-band channels to be employed for the physical delivery or electronic transmission of information, system components, or devices to individuals or the system are defined] are employed for the physical delivery or electronic transmission of [SC-37_ODP[02]; information, system components, or devices to employ out-of-band-channels for physical delivery or electronic transmission are defined] to [SC-37_ODP[03]; individuals or systems to which physical delivery or electronic transmission of information, system components, or devices is to be achieved via the employment of out-of-band channels are defined].'), ('002525','draft','2013-07-02','DISA FSO','policy','Defines the controls to be employed to ensure only organization-defined individuals or systems receive organization-defined information, system components, or devices.','SC-37(01)','N/A','Determine if [SC-37(01)_ODP[01]; controls to be employed to ensure that only designated individuals or systems receive specific information, system components, or devices are defined] are employed to ensure that only [SC-37(01)_ODP[02]; individuals or systems designated to receive specific information, system components, or devices are defined] receive [SC-37(01)_ODP[03]; information, system components, or devices that only individuals or systems are designated to receive are defined].'), ('002526','draft','2013-07-02','DISA FSO','policy','Defines the information, system components, or devices which are to be received only by organization-defined individuals or systems.','SC-37(01)','N/A','Determine if [SC-37(01)_ODP[01]; controls to be employed to ensure that only designated individuals or systems receive specific information, system components, or devices are defined] are employed to ensure that only [SC-37(01)_ODP[02]; individuals or systems designated to receive specific information, system components, or devices are defined] receive [SC-37(01)_ODP[03]; information, system components, or devices that only individuals or systems are designated to receive are defined].'), ('002527','draft','2013-07-02','DISA FSO','policy','Employ organization-defined controls to ensure only organization-defined individuals or systems receive the organization-defined information, system components, or devices.','SC-37(01)','N/A','Determine if [SC-37(01)_ODP[01]; controls to be employed to ensure that only designated individuals or systems receive specific information, system components, or devices are defined] are employed to ensure that only [SC-37(01)_ODP[02]; individuals or systems designated to receive specific information, system components, or devices are defined] receive [SC-37(01)_ODP[03]; information, system components, or devices that only individuals or systems are designated to receive are defined].'), ('002528','draft','2013-07-02','DISA FSO','policy','Defines the operations security controls to be employed to protect key organizational information throughout the system development life cycle.','SC-38','N/A','Determine if [SC-38_ODP; operations security controls to be employed to protect key organizational information throughout the system development life cycle are defined] are employed to protect key organizational information throughout the system development life cycle.'), ('002529','draft','2013-07-02','DISA FSO','policy','Employ organization-defined operations security controls to protect key organizational information throughout the system development life cycle.','SC-38','N/A','Determine if [SC-38_ODP; operations security controls to be employed to protect key organizational information throughout the system development life cycle are defined] are employed to protect key organizational information throughout the system development life cycle.'), ('002530','draft','2013-07-02','DISA FSO','technical','Maintain a separate execution domain for each executing system process.','SC-39','N/A','Determine if a separate execution domain is maintained for each executing system process.'), ('002531','draft','2013-07-02','DISA FSO','technical','Implement hardware separation mechanisms to facilitate process isolation.','SC-39(01)','N/A','Determine if hardware separation is implemented to facilitate process isolation.'), ('002532','draft','2013-07-02','DISA FSO','policy','Defines the multi-threaded processing in which a separate execution domain is maintained by the system for each thread.','SC-39(02)','N/A','Determine if a separate execution domain is maintained for each thread in [SC-39(02)_ODP; multi-thread processing for which a separate execution domain is to be maintained for each thread is defined].'), ('002533','draft','2013-07-02','DISA FSO','technical','Maintain a separate execution domain for each thread in organization-defined multi-threaded processing.','SC-39(02)','N/A','Determine if a separate execution domain is maintained for each thread in [SC-39(02)_ODP; multi-thread processing for which a separate execution domain is to be maintained for each thread is defined].'), ('002534','draft','2013-07-02','DISA FSO','policy','Defines types of signal parameter attacks or references to sources for such attacks from which the system protects organization-defined wireless links.','SC-40','N/A','Determine if: - external [SC-40_ODP[01]; external wireless links to be protected from particular types of signal parameter attacks are defined] are protected from [SC-40_ODP[02]; types of signal parameter attacks or references to sources for such attacks from which to protect external wireless links are defined]. - internal [SC-40_ODP[03]; internal wireless links to be protected from particular types of signal parameter attacks are defined] are protected from [SC-40_ODP[04]; types of signal parameter attacks or references to sources for such attacks from which to protect internal wireless links are defined].'), ('002535','draft','2013-07-02','DISA FSO','policy','Defines the external and internal wireless links the system is to protect from organization-defined types of signal parameter attacks or references to sources for such attacks.','SC-40','N/A','Determine if: - external [SC-40_ODP[01]; external wireless links to be protected from particular types of signal parameter attacks are defined] are protected from [SC-40_ODP[02]; types of signal parameter attacks or references to sources for such attacks from which to protect external wireless links are defined]. - internal [SC-40_ODP[03]; internal wireless links to be protected from particular types of signal parameter attacks are defined] are protected from [SC-40_ODP[04]; types of signal parameter attacks or references to sources for such attacks from which to protect internal wireless links are defined].'), ('002536','draft','2013-07-02','DISA FSO','technical','Protect organization-defined external and internal wireless links from organization-defined types of signal parameter attacks or references to sources for such attacks.','SC-40','N/A','Determine if: - external [SC-40_ODP[01]; external wireless links to be protected from particular types of signal parameter attacks are defined] are protected from [SC-40_ODP[02]; types of signal parameter attacks or references to sources for such attacks from which to protect external wireless links are defined]. - internal [SC-40_ODP[03]; internal wireless links to be protected from particular types of signal parameter attacks are defined] are protected from [SC-40_ODP[04]; types of signal parameter attacks or references to sources for such attacks from which to protect internal wireless links are defined].'), ('002537','draft','2013-07-02','DISA FSO','policy','Defines the level of protection against the effects of intentional electromagnetic interference to be achieved by implemented cryptographic mechanisms.','SC-40(01)','N/A','Determine if cryptographic mechanisms that achieve [SC-40(01)_ODP; level of protection to be employed against the effects of intentional electromagnetic interference is defined] against the effects of intentional electromagnetic interference are implemented.'), ('002538','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms that achieve an organization-defined level of protection against the effects of intentional electromagnetic interference.','SC-40(01)','N/A','Determine if cryptographic mechanisms that achieve [SC-40(01)_ODP; level of protection to be employed against the effects of intentional electromagnetic interference is defined] against the effects of intentional electromagnetic interference are implemented.'), ('002539','draft','2013-07-02','DISA FSO','policy','Defines the level of reduction the system is to implement to reduce the detection potential of wireless links.','SC-40(02)','N/A','Determine if cryptographic mechanisms to reduce the detection potential of wireless links to [SC-40(02)_ODP; the level of reduction to be achieved to reduce the detection potential of wireless links is defined] are implemented.'), ('002540','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to reduce the detection potential of wireless links to an organization-defined level of reduction.','SC-40(02)','N/A','Determine if cryptographic mechanisms to reduce the detection potential of wireless links to [SC-40(02)_ODP; the level of reduction to be achieved to reduce the detection potential of wireless links is defined] are implemented.'), ('002541','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to identify and reject wireless transmissions that are deliberate attempts to achieve imitative or manipulative communications deception based on signal parameters.','SC-40(03)','N/A','Determine if cryptographic mechanisms are implemented to identify and reject wireless transmissions that are deliberate attempts to achieve imitative or manipulative communications deception based on signal parameters.'), ('002542','draft','2013-07-02','DISA FSO','policy','Defines the wireless transmitters that are to have cryptographic mechanisms implemented to prevent the identification of the wireless transmitters.','SC-40(04)','N/A','Determine if cryptographic mechanisms are implemented to prevent the identification of [SC-40(04)_ODP; wireless transmitters for which cryptographic mechanisms are to be implemented are defined] by using the transmitter signal parameters.'), ('002543','draft','2013-07-02','DISA FSO','technical','Implement cryptographic mechanisms to prevent the identification of organization-defined wireless transmitters by using the transmitter signal parameters.','SC-40(04)','N/A','Determine if cryptographic mechanisms are implemented to prevent the identification of [SC-40(04)_ODP; wireless transmitters for which cryptographic mechanisms are to be implemented are defined] by using the transmitter signal parameters.'), ('002544','draft','2013-07-02','DISA FSO','policy','Defines the systems or system components on which organization-defined connection ports or input/output devices are to be physically or logically disabled or removed.','SC-41','N/A','Determine if [SC-41_ODP[01]; connection ports or input/output devices to be disabled or removed are defined] are [SC-41_ODP[02]; one of the following PARAMETER VALUES is selected: {physically; logically}] disabled or removed on [SC-41_ODP[03]; systems or system components with connection ports or input/output devices to be disabled or removed are defined].'), ('002545','draft','2013-07-02','DISA FSO','policy','Defines the connection ports or input/output devices that are to be physically or logically disabled or removed from organization-defined systems or system components.','SC-41','N/A','Determine if [SC-41_ODP[01]; connection ports or input/output devices to be disabled or removed are defined] are [SC-41_ODP[02]; one of the following PARAMETER VALUES is selected: {physically; logically}] disabled or removed on [SC-41_ODP[03]; systems or system components with connection ports or input/output devices to be disabled or removed are defined].'), ('002546','draft','2013-07-02','DISA FSO','technical','Physically or logically disable or remove organization-defined connection ports or input/output devices on organization-defined systems or system components.','SC-41','N/A','Determine if [SC-41_ODP[01]; connection ports or input/output devices to be disabled or removed are defined] are [SC-41_ODP[02]; one of the following PARAMETER VALUES is selected: {physically; logically}] disabled or removed on [SC-41_ODP[03]; systems or system components with connection ports or input/output devices to be disabled or removed are defined].'), ('002547','draft','2013-07-02','DISA FSO','policy','Defines the exceptions where remote activation of sensors is allowed.','SC-42a.','N/A','Determine if [SC-42_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {the use of devices possessing [SC-42_ODP[02]; environmental sensing capabilities in devices are defined (if selected)] in [SC-42_ODP[03]; facilities, areas, or systems where the use of devices possessing environmental sensing capabilities is prohibited are defined (if selected)]; the remote activation of environmental sensing capabilities on organizational systems or system components with the following exceptions: [SC-42_ODP[04]; exceptions where remote activation of sensors is allowed are defined (if selected)]}] is/are prohibited.'), ('002548','draft','2013-07-02','DISA FSO','technical','Prohibit the use of devices possessing organization-defined environmental sensing capabilities in organization-defined facilities, areas, or systems; and/or the remote activation of environmental sensing capabilities on organizational systems or system components except for the organization-defined exceptions where remote activation of sensors is allowed.','SC-42a.','N/A','Determine if [SC-42_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {the use of devices possessing [SC-42_ODP[02]; environmental sensing capabilities in devices are defined (if selected)] in [SC-42_ODP[03]; facilities, areas, or systems where the use of devices possessing environmental sensing capabilities is prohibited are defined (if selected)]; the remote activation of environmental sensing capabilities on organizational systems or system components with the following exceptions: [SC-42_ODP[04]; exceptions where remote activation of sensors is allowed are defined (if selected)]}] is/are prohibited.'), ('002549','draft','2013-07-02','DISA FSO','policy','Defines the class of users to receive explicit indication of sensor use.','SC-42b.','N/A','Determine if an explicit indication of sensor use is provided to [SC-42_ODP[05]; group of users to whom an explicit indication of sensor use is to be provided is defined].'), ('002550','draft','2013-07-02','DISA FSO','technical','Provide an explicit indication of sensor use to the organization-defined class of users.','SC-42b.','N/A','Determine if an explicit indication of sensor use is provided to [SC-42_ODP[05]; group of users to whom an explicit indication of sensor use is to be provided is defined].'), ('002551','draft','2013-07-02','DISA FSO','policy','Defines the sensors to be configured so that collected data or information is reported only to authorized individuals or roles.','SC-42(01)','N/A','Determine if the system is configured so that data or information collected by the [SC-42(01)_ODP; sensors to be used to collect data or information are defined] is only reported to authorized individuals or roles.'), ('002552','draft','2013-07-02','DISA FSO','policy','Verify that the system is configured so that data or information collected by the organization-defined sensors is only reported to authorized individuals or roles.','SC-42(01)','N/A','Determine if the system is configured so that data or information collected by the [SC-42(01)_ODP; sensors to be used to collect data or information are defined] is only reported to authorized individuals or roles.'), ('002553','draft','2013-07-02','DISA FSO','policy','Defines the measures to be employed to ensure data or information collected by organization-defined sensors is used only for authorized purposes.','SC-42(02)','N/A','Determine if [SC-42(02)_ODP; measures to be employed so that data or information collected by sensors is only used for authorized purposes are defined] are employed so that data or information collected by [SC-42(01)_ODP; sensors to be used to collect data or information are defined] is only used for authorized purposes.'), ('002554','draft','2013-07-02','DISA FSO','policy','Defines the sensors that are to collect data or information for authorized purposes.','SC-42(02)','N/A','Determine if [SC-42(02)_ODP; measures to be employed so that data or information collected by sensors is only used for authorized purposes are defined] are employed so that data or information collected by [SC-42(01)_ODP; sensors to be used to collect data or information are defined] is only used for authorized purposes.'), ('002555','draft','2013-07-02','DISA FSO','policy','Employ organization-defined measures, so that data or information collected by organization-defined sensors is only used for authorized purposes.','SC-42(02)','N/A','Determine if [SC-42(02)_ODP; measures to be employed so that data or information collected by sensors is only used for authorized purposes are defined] are employed so that data or information collected by [SC-42(01)_ODP; sensors to be used to collect data or information are defined] is only used for authorized purposes.'), ('002556','draft','2013-07-02','DISA FSO','policy','Defines the environmental sensing capabilities prohibited on devices used in organization-defined facilities, areas, or systems.','SC-42a.','N/A','Determine if [SC-42_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {the use of devices possessing [SC-42_ODP[02]; environmental sensing capabilities in devices are defined (if selected)] in [SC-42_ODP[03]; facilities, areas, or systems where the use of devices possessing environmental sensing capabilities is prohibited are defined (if selected)]; the remote activation of environmental sensing capabilities on organizational systems or system components with the following exceptions: [SC-42_ODP[04]; exceptions where remote activation of sensors is allowed are defined (if selected)]}] is/are prohibited.'), ('002557','draft','2013-07-02','DISA FSO','policy','Defines the facilities, areas, or systems where devices processing organization-defined environmental sensing capabilities are prohibited.','SC-42a.','N/A','Determine if [SC-42_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {the use of devices possessing [SC-42_ODP[02]; environmental sensing capabilities in devices are defined (if selected)] in [SC-42_ODP[03]; facilities, areas, or systems where the use of devices possessing environmental sensing capabilities is prohibited are defined (if selected)]; the remote activation of environmental sensing capabilities on organizational systems or system components with the following exceptions: [SC-42_ODP[04]; exceptions where remote activation of sensors is allowed are defined (if selected)]}] is/are prohibited.'), ('002559','draft','2013-07-02','DISA FSO','policy','Defines the system components for which usage restrictions and implementation guidance are to be established.','SC-43a.','N/A','Determine if usage restrictions and implementation guidelines are established for [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined].'), ('002560','draft','2013-07-02','DISA FSO','policy','Establish usage restrictions and implementation guidance for organization-defined system components based on the potential to cause damage to the system if used maliciously.','SC-43a.','N/A','Determine if usage restrictions and implementation guidelines are established for [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined].'), ('002561','draft','2013-07-02','DISA FSO','policy','Authorize the use of organization-defined system components which have the potential to cause damage to the system if used maliciously.','SC-43b.','N/A','Determine if: - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is authorized within the system. - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is monitored within the system. - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is controlled within the system.'), ('002562','draft','2013-07-02','DISA FSO','policy','Monitor the use of organization-defined system components which have the potential to cause damage to the system if used maliciously.','SC-43b.','N/A','Determine if: - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is authorized within the system. - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is monitored within the system. - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is controlled within the system.'), ('002563','draft','2013-07-02','DISA FSO','policy','Control the use of organization-defined system components which have the potential to cause damage to the system if used maliciously.','SC-43b.','N/A','Determine if: - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is authorized within the system. - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is monitored within the system. - the use of [SC-43_ODP; the components for which usage restrictions and implementation guidance are to be established are defined] is controlled within the system.'), ('002564','draft','2013-07-02','DISA FSO','policy','Defines the system, system component, or location where a detonation chamber capability is employed.','SC-44','N/A','Determine if a detonation chamber capability is employed within the [SC-44_ODP; the system, system component, or location where a detonation chamber capability is to be employed is defined].'), ('002565','draft','2013-07-02','DISA FSO','policy','Employ a detonation chamber capability within an organization-defined system, system component, or location.','SC-44','N/A','Determine if a detonation chamber capability is employed within the [SC-44_ODP; the system, system component, or location where a detonation chamber capability is to be employed is defined].'), ('002566','draft','2013-07-09','DISA FSO','policy','Defines personnel or roles to whom a media protection policy and procedures will be disseminated.','MP-01a.','N/A','Determine if: - a media protection policy is developed and documented. - the media protection policy is disseminated to [MP-01_ODP[01]; personnel or roles to whom the media protection policy is to be disseminated is/are defined].'), ('002567','draft','2013-07-09','DISA FSO','policy','Review and approve media sanitization.','MP-06(01)','N/A','Determine if: - media sanitization and disposal actions are reviewed. - media sanitization and disposal actions are approved. - media sanitization and disposal actions are tracked. - media sanitization and disposal actions are documented. - media sanitization and disposal actions are verified.'), ('002568','draft','2013-07-09','DISA FSO','policy','Track and document media sanitization.','MP-06(01)','N/A','Determine if: - media sanitization and disposal actions are reviewed. - media sanitization and disposal actions are approved. - media sanitization and disposal actions are tracked. - media sanitization and disposal actions are documented. - media sanitization and disposal actions are verified.'), ('002569','draft','2013-07-09','DISA FSO','policy','Verify media sanitization.','MP-06(01)','N/A','Determine if: - media sanitization and disposal actions are reviewed. - media sanitization and disposal actions are approved. - media sanitization and disposal actions are tracked. - media sanitization and disposal actions are documented. - media sanitization and disposal actions are verified.'), ('002570','draft','2013-07-09','DISA FSO','policy','Review and approve media disposal actions.','MP-06(01)','N/A','Determine if: - media sanitization and disposal actions are reviewed. - media sanitization and disposal actions are approved. - media sanitization and disposal actions are tracked. - media sanitization and disposal actions are documented. - media sanitization and disposal actions are verified.'), ('002571','draft','2013-07-09','DISA FSO','policy','Track and document media disposal actions.','MP-06(01)','N/A','Determine if: - media sanitization and disposal actions are reviewed. - media sanitization and disposal actions are approved. - media sanitization and disposal actions are tracked. - media sanitization and disposal actions are documented. - media sanitization and disposal actions are verified.'), ('002572','draft','2013-07-09','DISA FSO','policy','Verify media disposal actions.','MP-06(01)','N/A','Determine if: - media sanitization and disposal actions are reviewed. - media sanitization and disposal actions are approved. - media sanitization and disposal actions are tracked. - media sanitization and disposal actions are documented. - media sanitization and disposal actions are verified.'), ('002573','draft','2013-07-09','DISA FSO','policy','Enforce dual authorization for the sanitization of organization-defined system media.','MP-06(07)','N/A','Determine if dual authorization for sanitization of [MP-06(07)_ODP; system media to be sanitized using dual authorization is defined] is enforced.'), ('002574','draft','2013-07-09','DISA FSO','policy','Defines the system media that dual authorization is enforced for sanitization.','MP-06(07)','N/A','Determine if dual authorization for sanitization of [MP-06(07)_ODP; system media to be sanitized using dual authorization is defined] is enforced.'), ('002575','draft','2013-07-09','DISA FSO','policy','Defines systems or system components from which information is purged or wiped, either remotely or under the organization-defined conditions.','MP-06(08)','N/A','Determine if the capability to purge or wipe information from [MP-06(08)_ODP[01]; systems or system components to purge or wipe information either remotely or under specific conditions are defined] [MP-06(08)_ODP[02]; one of the following PARAMETER VALUES is selected: {remotely; under [MP-06(08)_ODP[03]; conditions under which information is to be purged or wiped are defined (if selected)]}] is provided.'), ('002576','draft','2013-07-09','DISA FSO','policy','Defines conditions under which information from organization-defined systems or system components are to be purged or wiped.','MP-06(08)','N/A','Determine if the capability to purge or wipe information from [MP-06(08)_ODP[01]; systems or system components to purge or wipe information either remotely or under specific conditions are defined] [MP-06(08)_ODP[02]; one of the following PARAMETER VALUES is selected: {remotely; under [MP-06(08)_ODP[03]; conditions under which information is to be purged or wiped are defined (if selected)]}] is provided.'), ('002577','draft','2013-07-09','DISA FSO','policy','Provide the capability to purge or wipe information from organization-defined systems, system components either remotely or under organization-defined conditions.','MP-06(08)','N/A','Determine if the capability to purge or wipe information from [MP-06(08)_ODP[01]; systems or system components to purge or wipe information either remotely or under specific conditions are defined] [MP-06(08)_ODP[02]; one of the following PARAMETER VALUES is selected: {remotely; under [MP-06(08)_ODP[03]; conditions under which information is to be purged or wiped are defined (if selected)]}] is provided.'), ('002578','draft','2013-07-09','DISA FSO','policy','Defines system media to sanitize prior to disposal, release out of organizational control, or release for reuse using organization-defined sanitization techniques and procedures.','MP-06a.','N/A','Determine if: - [MP-06_ODP[01]; system media to be sanitized prior to disposal is defined] is sanitized using [MP-06_ODP[04]; sanitization techniques and procedures to be used for sanitization prior to disposal are defined] prior to disposal. - [MP-06_ODP[02]; system media to be sanitized prior to release from organizational control is defined] is sanitized using [MP-06_ODP[05]; sanitization techniques and procedures to be used for sanitization prior to release from organizational control are defined] prior to release from organizational control. - [MP-06_ODP[03]; system media to be sanitized prior to release for reuse is defined] is sanitized using [MP-06_ODP[06]; sanitization techniques and procedures to be used for sanitization prior to release for reuse are defined] prior to release for reuse.'), ('002579','draft','2013-07-09','DISA FSO','policy','Defines the sanitization techniques and procedures to be used to sanitize organization-defined system media prior to disposal, release out of organizational control, or release for reuse.','MP-06a.','N/A','Determine if: - [MP-06_ODP[01]; system media to be sanitized prior to disposal is defined] is sanitized using [MP-06_ODP[04]; sanitization techniques and procedures to be used for sanitization prior to disposal are defined] prior to disposal. - [MP-06_ODP[02]; system media to be sanitized prior to release from organizational control is defined] is sanitized using [MP-06_ODP[05]; sanitization techniques and procedures to be used for sanitization prior to release from organizational control are defined] prior to release from organizational control. - [MP-06_ODP[03]; system media to be sanitized prior to release for reuse is defined] is sanitized using [MP-06_ODP[06]; sanitization techniques and procedures to be used for sanitization prior to release for reuse are defined] prior to release for reuse.'), ('002580','draft','2013-07-09','DISA FSO','policy','Employ sanitization mechanisms with the strength and integrity commensurate with the security category or classification of the information.','MP-06b.','N/A','Determine if sanitization mechanisms with strength and integrity commensurate with the security category or classification of the information are employed.'), ('002581','draft','2013-07-09','DISA FSO','policy','Defines the types of system media to restrict or prohibit on organization-defined systems or system components using organization-defined controls.','MP-07a.','N/A','Determine if the use of [MP-07_ODP[01]; types of system media to be restricted or prohibited from use on systems or system components are defined] is [MP-07_ODP[02]; one of the following PARAMETER VALUES is selected: {restrict; prohibit}] on [MP-07_ODP[03]; systems or system components on which the use of specific types of system media to be restricted or prohibited are defined] using [MP-07_ODP[04]; controls to restrict or prohibit the use of specific types of system media on systems or system components are defined].'), ('002582','draft','2013-07-09','DISA FSO','policy','Defines the systems or system components on which to restrict or prohibit the use of organization-defined types of system media using organization-defined controls.','MP-07a.','N/A','Determine if the use of [MP-07_ODP[01]; types of system media to be restricted or prohibited from use on systems or system components are defined] is [MP-07_ODP[02]; one of the following PARAMETER VALUES is selected: {restrict; prohibit}] on [MP-07_ODP[03]; systems or system components on which the use of specific types of system media to be restricted or prohibited are defined] using [MP-07_ODP[04]; controls to restrict or prohibit the use of specific types of system media on systems or system components are defined].'), ('002583','draft','2013-07-09','DISA FSO','policy','Defines the controls to use for restricting or prohibiting the use of organization-defined types of system media on organization-defined systems or system components.','MP-07a.','N/A','Determine if the use of [MP-07_ODP[01]; types of system media to be restricted or prohibited from use on systems or system components are defined] is [MP-07_ODP[02]; one of the following PARAMETER VALUES is selected: {restrict; prohibit}] on [MP-07_ODP[03]; systems or system components on which the use of specific types of system media to be restricted or prohibited are defined] using [MP-07_ODP[04]; controls to restrict or prohibit the use of specific types of system media on systems or system components are defined].'), ('002584','draft','2013-07-09','DISA FSO','policy','Restrict or prohibit the use of organization-defined types of system media on organization-defined systems or system components using organization-defined controls.','MP-07a.','N/A','Determine if the use of [MP-07_ODP[01]; types of system media to be restricted or prohibited from use on systems or system components are defined] is [MP-07_ODP[02]; one of the following PARAMETER VALUES is selected: {restrict; prohibit}] on [MP-07_ODP[03]; systems or system components on which the use of specific types of system media to be restricted or prohibited are defined] using [MP-07_ODP[04]; controls to restrict or prohibit the use of specific types of system media on systems or system components are defined].'), ('002585','draft','2013-07-09','DISA FSO','policy','Prohibit the use of portable storage devices in organizational systems when such devices have no identifiable owner.','MP-07b.','N/A','Determine if the use of portable storage devices in organizational systems is prohibited when such devices have no identifiable owner.'), ('002586','draft','2013-07-09','DISA FSO','policy','Prohibit the use of sanitization-resistant media in organizational systems.','MP-07(02)','N/A','Determine if: - sanitization-resistant media is identified. - the use of sanitization-resistant media in organizational systems is prohibited.'), ('002587','draft','2013-07-09','DISA FSO','policy','Document system media downgrading actions.','MP-08(01)','N/A','Determine if system media downgrading actions are documented.'), ('002591','draft','2013-07-09','DISA FSO','policy','Defines the frequency with which to test downgrading equipment and procedures to ensure correct performance.','MP-08(02)','N/A','Determine if: - downgrading equipment is tested [MP-08(02)_ODP[01]; the frequency with which to test downgrading equipment is defined] to ensure that downgrading actions are being achieved. - downgrading procedures are tested [MP-08(02)_ODP[02]; the frequency with which to test downgrading procedures is defined] to ensure that downgrading actions are being achieved.'), ('002593','draft','2013-07-09','DISA FSO','policy','Downgrade system media containing Controlled Unclassified Information (CUI) prior to public release.','MP-08(03)','N/A','Determine if: - system media containing controlled unclassified information is identified. - system media containing controlled unclassified information is downgraded prior to public release.'), ('002594','draft','2013-07-09','DISA FSO','policy','Downgrade system media containing classified information prior to release to individuals without required access authorizations.','MP-08(04)','N/A','Determine if: - system media containing classified information is identified. - system media containing classified information is downgraded prior to release to individuals without required access authorizations.'), ('002600','draft','2013-07-09','DISA FSO','policy','Downgrade the identified system media using the established process.','MP-08d.','N/A','Determine if the identified system media is downgraded using the [MP-08_ODP[01]; a system media downgrading process is defined].'), ('002601','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles to whom the system and information integrity policy and procedures are to be disseminated.','SI-01a.','N/A','Determine if: - a system and information integrity policy is developed and documented. - the system and information integrity policy is disseminated to [SI-01_ODP[01]; personnel or roles to whom the system and information integrity policy is to be disseminated is/are defined].'), ('002602','draft','2013-07-11','DISA FSO','policy','Test firmware updates related to flaw remediation for effectiveness before installation.','SI-02b.','N/A','Determine if: - software updates related to flaw remediation are tested for effectiveness before installation. - software updates related to flaw remediation are tested for potential side effects before installation. - firmware updates related to flaw remediation are tested for effectiveness before installation. - firmware updates related to flaw remediation are tested for potential side effects before installation.'), ('002603','draft','2013-07-11','DISA FSO','policy','Test firmware updates related to flaw remediation for potential side effects before installation.','SI-02b.','N/A','Determine if: - software updates related to flaw remediation are tested for effectiveness before installation. - software updates related to flaw remediation are tested for potential side effects before installation. - firmware updates related to flaw remediation are tested for effectiveness before installation. - firmware updates related to flaw remediation are tested for potential side effects before installation.'), ('002604','draft','2013-07-11','DISA FSO','policy','Defines the time period following the release of updates within which security-related software updates are to be installed.','SI-02c.','N/A','Determine if: - security-relevant software updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates. - security-relevant firmware updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates.'), ('002605','draft','2013-07-11','DISA FSO','technical','Install security-relevant software updates within an organization-defined time period of the release of the updates.','SI-02c.','N/A','Determine if: - security-relevant software updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates. - security-relevant firmware updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates.'), ('002606','draft','2013-07-11','DISA FSO','policy','Defines the time period following the release of updates within which security-related firmware updates are to be installed.','SI-02c.','N/A','Determine if: - security-relevant software updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates. - security-relevant firmware updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates.'), ('002607','draft','2013-07-11','DISA FSO','technical','Install security-relevant firmware updates within an organization-defined time period of the release of the updates.','SI-02c.','N/A','Determine if: - security-relevant software updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates. - security-relevant firmware updates are installed within [SI-02_ODP; time period within which to install security-relevant software updates after the release of the updates is defined] of the release of the updates.'), ('002608','draft','2013-07-11','DISA FSO','policy','Establish organization-defined benchmarks for the time taken to apply corrective actions after flaw identification.','SI-02(03)(b)','N/A','Determine if [SI-02(03)_ODP; the benchmarks for taking corrective actions are defined] for taking corrective actions have been established.'), ('002609','draft','2013-07-11','DISA FSO','policy','Defines the system components on which organization-defined security-relevant software updates will be automatically installed.','SI-02(05)','N/A','Determine if [SI-02(05)_ODP[01]; security-relevant software and firmware updates to be automatically installed to system components are defined] are installed automatically to [SI-02(05)_ODP[02]; system components requiring security-relevant software updates to be automatically installed are defined].'), ('002610','draft','2013-07-11','DISA FSO','policy','Defines the system components on which organization-defined security-relevant firmware updates will be automatically installed.','SI-02(05)','N/A','Determine if [SI-02(05)_ODP[01]; security-relevant software and firmware updates to be automatically installed to system components are defined] are installed automatically to [SI-02(05)_ODP[02]; system components requiring security-relevant software updates to be automatically installed are defined].'), ('002611','draft','2013-07-11','DISA FSO','policy','Defines the security-relevant software updates to be automatically installed on organization-defined system components.','SI-02(05)','N/A','Determine if [SI-02(05)_ODP[01]; security-relevant software and firmware updates to be automatically installed to system components are defined] are installed automatically to [SI-02(05)_ODP[02]; system components requiring security-relevant software updates to be automatically installed are defined].'), ('002612','draft','2013-07-11','DISA FSO','policy','Defines the security-relevant firmware updates to be automatically installed on organization-defined system components.','SI-02(05)','N/A','Determine if [SI-02(05)_ODP[01]; security-relevant software and firmware updates to be automatically installed to system components are defined] are installed automatically to [SI-02(05)_ODP[02]; system components requiring security-relevant software updates to be automatically installed are defined].'), ('002613','draft','2013-07-11','DISA FSO','technical','Install organization-defined security-relevant software updates automatically to organization-defined system components.','SI-02(05)','N/A','Determine if [SI-02(05)_ODP[01]; security-relevant software and firmware updates to be automatically installed to system components are defined] are installed automatically to [SI-02(05)_ODP[02]; system components requiring security-relevant software updates to be automatically installed are defined].'), ('002614','draft','2013-07-11','DISA FSO','technical','Install organization-defined security-relevant firmware updates automatically to organization-defined system components.','SI-02(05)','N/A','Determine if [SI-02(05)_ODP[01]; security-relevant software and firmware updates to be automatically installed to system components are defined] are installed automatically to [SI-02(05)_ODP[02]; system components requiring security-relevant software updates to be automatically installed are defined].'), ('002615','draft','2013-07-11','DISA FSO','policy','Defines the software components to remove previous versions after updated versions have been installed.','SI-02(06)','N/A','Determine if previous versions of [SI-02(06)_ODP; software and firmware components to be removed after updated versions have been installed are defined] are removed after updated versions have been installed.'), ('002616','draft','2013-07-11','DISA FSO','policy','Defines the firmware components to remove previous versions after updated versions have been installed.','SI-02(06)','N/A','Determine if previous versions of [SI-02(06)_ODP; software and firmware components to be removed after updated versions have been installed are defined] are removed after updated versions have been installed.'), ('002617','draft','2013-07-11','DISA FSO','technical','Remove previous versions of organization-defined software components after updated versions have been installed.','SI-02(06)','N/A','Determine if previous versions of [SI-02(06)_ODP; software and firmware components to be removed after updated versions have been installed are defined] are removed after updated versions have been installed.'), ('002618','draft','2013-07-11','DISA FSO','technical','Remove previous versions of organization-defined firmware components after updated versions have been installed.','SI-02(06)','N/A','Determine if previous versions of [SI-02(06)_ODP; software and firmware components to be removed after updated versions have been installed are defined] are removed after updated versions have been installed.'), ('002623','draft','2013-07-11','DISA FSO','policy','Defines the frequency for performing periodic scans of the system for malicious code.','SI-03c.01','N/A','Determine if: - malicious code protection mechanisms are configured to perform periodic scans of the system [SI-03_ODP[02]; the frequency at which malicious code protection mechanisms perform scans is defined]. - malicious code protection mechanisms are configured to perform real-time scans of files from external sources at [SI-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {endpoint; network entry and exit points}] as the files are downloaded, opened, or executed in accordance with organizational policy.'), ('002624','draft','2013-07-11','DISA FSO','technical','Configure malicious code protection mechanisms to perform real-time scans of files from external sources at endpoint; and/or network entry and exit points as the files are downloaded, opened, or executed in accordance with organizational policy.','SI-03c.01','N/A','Determine if: - malicious code protection mechanisms are configured to perform periodic scans of the system [SI-03_ODP[02]; the frequency at which malicious code protection mechanisms perform scans is defined]. - malicious code protection mechanisms are configured to perform real-time scans of files from external sources at [SI-03_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {endpoint; network entry and exit points}] as the files are downloaded, opened, or executed in accordance with organizational policy.'), ('002625','draft','2013-07-11','DISA FSO','policy','When testing malicious code protection mechanisms, verify the detection of the code.','SI-03(06)(b)','N/A','Determine if: - the detection of (benign test) code occurs. - the associated incident reporting occurs.'), ('002626','draft','2013-07-11','DISA FSO','policy','When testing malicious code protection mechanisms, verify the associated incident reporting of the code occurs.','SI-03(06)(b)','N/A','Determine if: - the detection of (benign test) code occurs. - the associated incident reporting occurs.'), ('002628','draft','2013-07-11','DISA FSO','policy','Defines the unauthorized operating system commands that are to be detected through the kernel application programming interface on organization-defined system hardware components.','SI-03(08)(a)','N/A','Determine if [SI-03(08)_ODP[01]; system hardware components for which unauthorized operating system commands are to be detected through the kernel application programming interface are defined] are detected through the kernel application programming interface on [SI-03(08)_ODP[02]; unauthorized operating system commands to be detected are defined].'), ('002629','draft','2013-07-11','DISA FSO','policy','Defines the system hardware components that are to detect organization-defined unauthorized operating system commands through the kernel programming application interface.','SI-03(08)(a)','N/A','Determine if [SI-03(08)_ODP[01]; system hardware components for which unauthorized operating system commands are to be detected through the kernel application programming interface are defined] are detected through the kernel application programming interface on [SI-03(08)_ODP[02]; unauthorized operating system commands to be detected are defined].'), ('002630','draft','2013-07-11','DISA FSO','technical','Detect organization-defined unauthorized operating system commands through the kernel application programming interface at organization-defined system hardware components.','SI-03(08)(a)','N/A','Determine if [SI-03(08)_ODP[01]; system hardware components for which unauthorized operating system commands are to be detected through the kernel application programming interface are defined] are detected through the kernel application programming interface on [SI-03(08)_ODP[02]; unauthorized operating system commands to be detected are defined].'), ('002631','draft','2013-07-11','DISA FSO','technical','Issue a warning; audit the command execution; and/or prevent the execution of the command when organization-defined unauthorized operating system commands are detected.','SI-03(08)(b)','N/A','Determine if [SI-03(08)_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {issue a warning; audit the command execution; prevent the execution of the command}] is/are performed.'), ('002634','draft','2013-07-11','DISA FSO','policy','Defines the tools to be employed to analyze the characteristics and behavior of malicious code.','SI-03(10)(a)','N/A','Determine if [SI-03(10)_ODP; tools and techniques to be employed to analyze the characteristics and behavior of malicious code are defined] are employed to analyze the characteristics and behavior of malicious code.'), ('002635','draft','2013-07-11','DISA FSO','policy','Defines the techniques to be employed to analyze the characteristics and behavior of malicious code.','SI-03(10)(a)','N/A','Determine if [SI-03(10)_ODP; tools and techniques to be employed to analyze the characteristics and behavior of malicious code are defined] are employed to analyze the characteristics and behavior of malicious code.'), ('002636','draft','2013-07-11','DISA FSO','policy','Employ organization-defined tools to analyze the characteristics and behavior of malicious code.','SI-03(10)(a)','N/A','Determine if [SI-03(10)_ODP; tools and techniques to be employed to analyze the characteristics and behavior of malicious code are defined] are employed to analyze the characteristics and behavior of malicious code.'), ('002638','draft','2013-07-11','DISA FSO','policy','Employ organization-defined techniques to analyze the characteristics and behavior of malicious code.','SI-03(10)(a)','N/A','Determine if [SI-03(10)_ODP; tools and techniques to be employed to analyze the characteristics and behavior of malicious code are defined] are employed to analyze the characteristics and behavior of malicious code.'), ('002639','draft','2013-07-11','DISA FSO','policy','Incorporate the results from malicious code analysis into organizational incident response processes.','SI-03(10)(b)','N/A','Determine if: - the results from malicious code analysis are incorporated into organizational incident response processes. - the results from malicious code analysis are incorporated into organizational flaw remediation processes.'), ('002640','draft','2013-07-11','DISA FSO','policy','Incorporate the results from malicious code analysis into organizational flaw remediation processes.','SI-03(10)(b)','N/A','Determine if: - the results from malicious code analysis are incorporated into organizational incident response processes. - the results from malicious code analysis are incorporated into organizational flaw remediation processes.'), ('002641','draft','2013-07-11','DISA FSO','policy','Monitor the system to detect attacks and indicators of potential attacks in accordance with organization-defined monitoring objectives.','SI-04a.01','N/A','Determine if the system is monitored to detect attacks and indicators of potential attacks in accordance with [SI-04_ODP[01]; monitoring objectives to detect attacks and indicators of potential attacks on the system are defined].'), ('002642','draft','2013-07-11','DISA FSO','policy','Monitor the system to detect unauthorized local connections.','SI-04a.02','N/A','Determine if: - the system is monitored to detect unauthorized local connections. - the system is monitored to detect unauthorized network connections. - the system is monitored to detect unauthorized remote connections.'), ('002643','draft','2013-07-11','DISA FSO','policy','Monitor the system to detect unauthorized network connections.','SI-04a.02','N/A','Determine if: - the system is monitored to detect unauthorized local connections. - the system is monitored to detect unauthorized network connections. - the system is monitored to detect unauthorized remote connections.'), ('002644','draft','2013-07-11','DISA FSO','policy','Monitor the system to detect unauthorized remote connections.','SI-04a.02','N/A','Determine if: - the system is monitored to detect unauthorized local connections. - the system is monitored to detect unauthorized network connections. - the system is monitored to detect unauthorized remote connections.'), ('002645','draft','2013-07-11','DISA FSO','policy','Defines the techniques and methods to be used to identify unauthorized use of the system.','SI-04b.','N/A','Determine if unauthorized use of the system is identified through [SI-04_ODP[02]; techniques and methods used to identify unauthorized use of the system are defined].'), ('002646','draft','2013-07-11','DISA FSO','policy','Identify unauthorized use of the system through organization-defined techniques and methods.','SI-04b.','N/A','Determine if unauthorized use of the system is identified through [SI-04_ODP[02]; techniques and methods used to identify unauthorized use of the system are defined].'), ('002650','draft','2013-07-11','DISA FSO','policy','Defines the system monitoring information that is to be provided the organization-defined personnel or roles.','SI-04g.','N/A','Determine if [SI-04_ODP[03]; system monitoring information to be provided to personnel or roles is defined] is provided to [SI-04_ODP[04]; personnel or roles to whom system monitoring information is to be provided is/are defined] [SI-04_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {as needed; [SI-04_ODP[06]; a frequency for providing system monitoring to personnel or roles is defined (if selected)]}].'), ('002651','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles that are to be provided organization-defined system monitoring information.','SI-04g.','N/A','Determine if [SI-04_ODP[03]; system monitoring information to be provided to personnel or roles is defined] is provided to [SI-04_ODP[04]; personnel or roles to whom system monitoring information is to be provided is/are defined] [SI-04_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {as needed; [SI-04_ODP[06]; a frequency for providing system monitoring to personnel or roles is defined (if selected)]}].'), ('002652','draft','2013-07-11','DISA FSO','policy','Defines the frequency at which the organization will provide the organization-defined system monitoring information to organization-defined personnel or roles.','SI-04g.','N/A','Determine if [SI-04_ODP[03]; system monitoring information to be provided to personnel or roles is defined] is provided to [SI-04_ODP[04]; personnel or roles to whom system monitoring information is to be provided is/are defined] [SI-04_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {as needed; [SI-04_ODP[06]; a frequency for providing system monitoring to personnel or roles is defined (if selected)]}].'), ('002654','draft','2013-07-11','DISA FSO','policy','Provide organization-defined system monitoring information to organization-defined personnel or roles as needed, and/or per organization-defined frequency.','SI-04g.','N/A','Determine if [SI-04_ODP[03]; system monitoring information to be provided to personnel or roles is defined] is provided to [SI-04_ODP[04]; personnel or roles to whom system monitoring information is to be provided is/are defined] [SI-04_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {as needed; [SI-04_ODP[06]; a frequency for providing system monitoring to personnel or roles is defined (if selected)]}].'), ('002655','draft','2013-07-11','DISA FSO','policy','Connect individual intrusion detection tools into a system-wide intrusion detection system.','SI-04(01)','N/A','Determine if: - individual intrusion detection tools are connected to a system-wide intrusion detection system. - individual intrusion detection tools are configured into a system-wide intrusion detection system.'), ('002656','draft','2013-07-11','DISA FSO','technical','Configure individual intrusion detection tools into a system-wide intrusion detection system.','SI-04(01)','N/A','Determine if: - individual intrusion detection tools are connected to a system-wide intrusion detection system. - individual intrusion detection tools are configured into a system-wide intrusion detection system.'), ('002657','draft','2013-07-11','DISA FSO','policy','Employ automated tools to integrate intrusion detection tools into access control mechanisms.','SI-04(03)','N/A','Determine if: - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into access control mechanisms. - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into flow control mechanisms.'), ('002658','draft','2013-07-11','DISA FSO','policy','Employ automated tools to integrate intrusion detection tools into flow control mechanisms.','SI-04(03)','N/A','Determine if: - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into access control mechanisms. - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into flow control mechanisms.'), ('002659','draft','2013-07-11','DISA FSO','policy','Defines the frequency on which it will monitor inbound communications for unusual or unauthorized activities or conditions.','SI-04(04)(b)','N/A','Determine if: - inbound communications traffic is monitored [SI-04(04)_ODP[01]; the frequency at which to monitor inbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[02]; unusual or unauthorized activities or conditions that are to be monitored in inbound communications traffic are defined]. - outbound communications traffic is monitored [SI-04(04)_ODP[03]; the frequency at which to monitor outbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[04]; unusual or unauthorized activities or conditions that are to be monitored in outbound communications traffic are defined].'), ('002660','draft','2013-07-11','DISA FSO','policy','Defines the frequency on which it will monitor outbound communications for unusual or unauthorized activities or conditions.','SI-04(04)(b)','N/A','Determine if: - inbound communications traffic is monitored [SI-04(04)_ODP[01]; the frequency at which to monitor inbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[02]; unusual or unauthorized activities or conditions that are to be monitored in inbound communications traffic are defined]. - outbound communications traffic is monitored [SI-04(04)_ODP[03]; the frequency at which to monitor outbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[04]; unusual or unauthorized activities or conditions that are to be monitored in outbound communications traffic are defined].'), ('002661','draft','2013-07-11','DISA FSO','technical','Monitor inbound communications traffic per organization-defined frequency for organization-defined unusual or unauthorized activities or conditions.','SI-04(04)(b)','N/A','Determine if: - inbound communications traffic is monitored [SI-04(04)_ODP[01]; the frequency at which to monitor inbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[02]; unusual or unauthorized activities or conditions that are to be monitored in inbound communications traffic are defined]. - outbound communications traffic is monitored [SI-04(04)_ODP[03]; the frequency at which to monitor outbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[04]; unusual or unauthorized activities or conditions that are to be monitored in outbound communications traffic are defined].'), ('002662','draft','2013-07-11','DISA FSO','technical','Monitor outbound communications traffic per organization-defined frequency for organization-defined unusual or unauthorized activities or conditions.','SI-04(04)(b)','N/A','Determine if: - inbound communications traffic is monitored [SI-04(04)_ODP[01]; the frequency at which to monitor inbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[02]; unusual or unauthorized activities or conditions that are to be monitored in inbound communications traffic are defined]. - outbound communications traffic is monitored [SI-04(04)_ODP[03]; the frequency at which to monitor outbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[04]; unusual or unauthorized activities or conditions that are to be monitored in outbound communications traffic are defined].'), ('002663','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles to receive alerts when organization-defined indicators of compromise or potential compromise occur.','SI-04(05)','N/A','Determine if [SI-04(05)_ODP[01]; personnel or roles to be alerted when indications of compromise or potential compromise occur is/are defined] are alerted when system-generated [SI-04(05)_ODP[02]; compromise indicators are defined] occur.'), ('002664','draft','2013-07-11','DISA FSO','technical','Alert organization-defined personnel or roles when organization-defined compromise indicators generate the occurrence of a compromise or a potential compromise.','SI-04(05)','N/A','Determine if [SI-04(05)_ODP[01]; personnel or roles to be alerted when indications of compromise or potential compromise occur is/are defined] are alerted when system-generated [SI-04(05)_ODP[02]; compromise indicators are defined] occur.'), ('002665','draft','2013-07-11','DISA FSO','policy','Defines the encrypted communications traffic that is to be visible to organization-defined system monitoring tools.','SI-04(10)','N/A','Determine if provisions are made so that [SI-04(10)_ODP[01]; encrypted communications traffic to be made visible to system monitoring tools and mechanisms is defined] is visible to [SI-04(10)_ODP[02]; system monitoring tools and mechanisms to be provided access to encrypted communications traffic are defined].'), ('002666','draft','2013-07-11','DISA FSO','policy','Defines the system monitoring tools that will have visibility into organization-defined encrypted communications traffic.','SI-04(10)','N/A','Determine if provisions are made so that [SI-04(10)_ODP[01]; encrypted communications traffic to be made visible to system monitoring tools and mechanisms is defined] is visible to [SI-04(10)_ODP[02]; system monitoring tools and mechanisms to be provided access to encrypted communications traffic are defined].'), ('002667','draft','2013-07-11','DISA FSO','policy','Make provisions so that organization-defined encrypted communications traffic is visible to organization-defined system monitoring tools.','SI-04(10)','N/A','Determine if provisions are made so that [SI-04(10)_ODP[01]; encrypted communications traffic to be made visible to system monitoring tools and mechanisms is defined] is visible to [SI-04(10)_ODP[02]; system monitoring tools and mechanisms to be provided access to encrypted communications traffic are defined].'), ('002668','draft','2013-07-11','DISA FSO','policy','Defines the interior points within the system where outbound communications will be analyzed to discover anomalies.','SI-04(11)','N/A','Determine if: - outbound communications traffic at the external interfaces to the system is analyzed to discover anomalies. - outbound communications traffic at [SI-04(11)_ODP; interior points within the system where communications traffic is to be analyzed are defined] is analyzed to discover anomalies. '), ('002669','draft','2013-07-11','DISA FSO','policy','Use the traffic and event profiles in tuning system-monitoring devices.','SI-04(13)(c)','N/A','Determine if: - traffic profiles are used in tuning system-monitoring devices. - event profiles are used in tuning system-monitoring devices.'), ('002670','draft','2013-07-11','DISA FSO','policy','Defines the interior points within the system where outbound communications will be analyzed to detect covert exfiltration of information.','SI-04(18)','N/A','Determine if: - outbound communications traffic is analyzed at interfaces external to the system to detect covert exfiltration of information. - outbound communications traffic is analyzed at [SI-04(18)_ODP; interior points within the system where communications traffic is to be analyzed are defined] to detect covert exfiltration of information.'), ('002671','draft','2013-07-11','DISA FSO','policy','Analyze outbound communications traffic at the external interfaces of the system to detect covert exfiltration of information.','SI-04(18)','N/A','Determine if: - outbound communications traffic is analyzed at interfaces external to the system to detect covert exfiltration of information. - outbound communications traffic is analyzed at [SI-04(18)_ODP; interior points within the system where communications traffic is to be analyzed are defined] to detect covert exfiltration of information.'), ('002672','draft','2013-07-11','DISA FSO','policy','Analyze outbound communications traffic at organization-defined interior points within the system to detect covert exfiltration of information.','SI-04(18)','N/A','Determine if: - outbound communications traffic is analyzed at interfaces external to the system to detect covert exfiltration of information. - outbound communications traffic is analyzed at [SI-04(18)_ODP; interior points within the system where communications traffic is to be analyzed are defined] to detect covert exfiltration of information.'), ('002673','draft','2013-07-11','DISA FSO','policy','Defines the additional monitoring to be implemented for individuals identified as posing an increased level of risk.','SI-04(19)','N/A','Determine if [SI-04(19)_ODP[01]; additional monitoring of individuals who have been identified as posing an increased level of risk is defined] is implemented on individuals who have been identified by [SI-04(19)_ODP[02]; sources that identify individuals who pose an increased level of risk are defined] as posing an increased level of risk.'), ('002674','draft','2013-07-11','DISA FSO','policy','Defines the sources that may be used to identify individuals who pose an increased level of risk.','SI-04(19)','N/A','Determine if [SI-04(19)_ODP[01]; additional monitoring of individuals who have been identified as posing an increased level of risk is defined] is implemented on individuals who have been identified by [SI-04(19)_ODP[02]; sources that identify individuals who pose an increased level of risk are defined] as posing an increased level of risk.'), ('002675','draft','2013-07-11','DISA FSO','policy','Implement organization-defined additional monitoring of individuals who have been identified by organization-defined sources as posing an increased level of risk.','SI-04(19)','N/A','Determine if [SI-04(19)_ODP[01]; additional monitoring of individuals who have been identified as posing an increased level of risk is defined] is implemented on individuals who have been identified by [SI-04(19)_ODP[02]; sources that identify individuals who pose an increased level of risk are defined] as posing an increased level of risk.'), ('002676','draft','2013-07-11','DISA FSO','policy','Defines additional monitoring to be implemented for privileged users.','SI-04(20)','N/A','Determine if [SI-04(20)_ODP; additional monitoring of privileged users is defined] of privileged users is implemented.'), ('002677','draft','2013-07-11','DISA FSO','policy','Implement organization-defined additional monitoring of privileged users.','SI-04(20)','N/A','Determine if [SI-04(20)_ODP; additional monitoring of privileged users is defined] of privileged users is implemented.'), ('002678','draft','2013-07-11','DISA FSO','policy','Defines additional monitoring to be implemented for individuals during an organization-defined probationary period.','SI-04(21)','N/A','Determine if [SI-04(21)_ODP[01]; additional monitoring to be implemented on individuals during probationary periods is defined] of individuals is implemented during [SI-04(21)_ODP[02]; the probationary period of individuals is defined].'), ('002679','draft','2013-07-11','DISA FSO','policy','Defines the probationary period during which additional monitoring will be implemented for individuals.','SI-04(21)','N/A','Determine if [SI-04(21)_ODP[01]; additional monitoring to be implemented on individuals during probationary periods is defined] of individuals is implemented during [SI-04(21)_ODP[02]; the probationary period of individuals is defined].'), ('002680','draft','2013-07-11','DISA FSO','policy','Implement organization-defined additional monitoring of individuals during an organization-defined probationary period.','SI-04(21)','N/A','Determine if [SI-04(21)_ODP[01]; additional monitoring to be implemented on individuals during probationary periods is defined] of individuals is implemented during [SI-04(21)_ODP[02]; the probationary period of individuals is defined].'), ('002681','draft','2013-07-11','DISA FSO','policy','Defines the authorization or approval process for network services.','SI-04(22)(a)','N/A','Determine if network services that have not been authorized or approved by [SI-04(22)_ODP[01]; authorization or approval processes for network services are defined] are detected.'), ('002682','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles to be alerted when unauthorized or unapproved network services are detected.','SI-04(22)(a)','N/A','Determine if network services that have not been authorized or approved by [SI-04(22)_ODP[01]; authorization or approval processes for network services are defined] are detected.'), ('002683','draft','2013-07-11','DISA FSO','policy','Detect network services that have not been authorized or approved by the organization-defined authorization or approval processes.','SI-04(22)(a)','N/A','Determine if network services that have not been authorized or approved by [SI-04(22)_ODP[01]; authorization or approval processes for network services are defined] are detected.'), ('002684','draft','2013-07-11','DISA FSO','technical','Audit and/or alert organization-defined personnel when unauthorized network services are detected.','SI-04(22)(b)','N/A','Determine if [SI-04(22)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {audit; alert [SI-04(22)_ODP[03]; personnel or roles to be alerted upon the detection of network services that have not been authorized or approved by authorization or approval processes is/are defined (if selected)]}] is/are initiated when network services that have not been authorized or approved by authorization or approval processes are detected.'), ('002685','draft','2013-07-11','DISA FSO','policy','Defines the host-based monitoring mechanisms to be implemented at organization-defined system components.','SI-04(23)','N/A','Determine if [SI-04(23)_ODP[01]; host-based monitoring mechanisms to be implemented on system components are defined] are implemented on [SI-04(23)_ODP[02]; system components where host-based monitoring is to be implemented are defined].'), ('002686','draft','2013-07-11','DISA FSO','policy','Defines the system components at which organization-defined host-based monitoring mechanisms are to be implemented.','SI-04(23)','N/A','Determine if [SI-04(23)_ODP[01]; host-based monitoring mechanisms to be implemented on system components are defined] are implemented on [SI-04(23)_ODP[02]; system components where host-based monitoring is to be implemented are defined].'), ('002687','draft','2013-07-11','DISA FSO','policy','Implement organization-defined host-based monitoring mechanisms at organization-defined system components.','SI-04(23)','N/A','Determine if [SI-04(23)_ODP[01]; host-based monitoring mechanisms to be implemented on system components are defined] are implemented on [SI-04(23)_ODP[02]; system components where host-based monitoring is to be implemented are defined].'), ('002688','draft','2013-07-11','DISA FSO','technical','Discover indicators of compromise.','SI-04(24)','N/A','Determine if: - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are discovered. - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are collected. - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are distributed to [SI-04(24)_ODP[02]; personnel or roles to whom indicators of compromise are to be distributed is/are defined].'), ('002689','draft','2013-07-11','DISA FSO','technical','Collect indicators of compromise.','SI-04(24)','N/A','Determine if: - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are discovered. - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are collected. - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are distributed to [SI-04(24)_ODP[02]; personnel or roles to whom indicators of compromise are to be distributed is/are defined].'), ('002690','draft','2013-07-11','DISA FSO','technical','Distribute indicators of compromise provided by organization-defined sources, to organization-defined personnel or roles.','SI-04(24)','N/A','Determine if: - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are discovered. - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are collected. - indicators of compromise provided by [SI-04(24)_ODP[01]; sources that provide indicators of compromise are defined] are distributed to [SI-04(24)_ODP[02]; personnel or roles to whom indicators of compromise are to be distributed is/are defined].'), ('002692','draft','2013-07-11','DISA FSO','policy','Defines the external organizations from which it receives information system security alerts, advisories, and directives.','SI-05a.','N/A','Determine if system security alerts, advisories, and directives are received from [SI-05_ODP[01]; external organizations from whom system security alerts, advisories, and directives are to be received on an ongoing basis are defined] on an ongoing basis.'), ('002693','draft','2013-07-11','DISA FSO','policy','Defines the elements within the organization to whom the organization will disseminate security alerts, advisories, and directives.','SI-05c.','N/A','Determine if security alerts, advisories, and directives are disseminated to [SI-05_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[SI-05_ODP[03]; personnel or roles to whom security alerts, advisories, and directives are to be disseminated is/are defined (if selected)]; [SI-05_ODP[04]; elements within the organization to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]; [SI-05_ODP[05]; external organizations to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]}].'), ('002694','draft','2013-07-11','DISA FSO','policy','Defines the external organizations to which the organization will disseminate security alerts, advisories, and directives.','SI-05c.','N/A','Determine if security alerts, advisories, and directives are disseminated to [SI-05_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[SI-05_ODP[03]; personnel or roles to whom security alerts, advisories, and directives are to be disseminated is/are defined (if selected)]; [SI-05_ODP[04]; elements within the organization to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]; [SI-05_ODP[05]; external organizations to whom security alerts, advisories, and directives are to be disseminated are defined (if selected)]}].'), ('002695','draft','2013-07-11','DISA FSO','policy','Defines the security functions that require verification of correct operation.','SI-06a.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified to be operating correctly. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified to be operating correctly.'), ('002696','draft','2013-07-11','DISA FSO','technical','Verify correct operation of organization-defined security functions.','SI-06a.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified to be operating correctly. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified to be operating correctly.'), ('002697','draft','2013-07-11','DISA FSO','policy','Defines the frequency at which it will verify correct operation of organization-defined security functions.','SI-06b.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}]. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}].'), ('002698','draft','2013-07-11','DISA FSO','policy','Defines the system transitional states when the system will verify correct operation of organization-defined security functions.','SI-06b.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}]. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}].'), ('002699','draft','2013-07-11','DISA FSO','technical','Perform verification of the correct operation of organization-defined security functions: when the system is in an organization-defined transitional state; upon command by a user with appropriate privileges; and/or on an organization-defined frequency.',NULL,'N/A',NULL), ('002700','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles to be notified when security verification tests fail.','SI-06c.','N/A','Determine if: - [SI-06_ODP[06]; personnel or roles to be alerted of failed security and privacy verification tests is/are defined] is/are alerted to failed security verification tests. - [SI-06_ODP[06]; personnel or roles to be alerted of failed security and privacy verification tests is/are defined] is/are alerted to failed privacy verification tests.'), ('002701','draft','2013-07-11','DISA FSO','policy','Defines alternative action(s) to be taken when anomalies in the operation of organization-defined security functions are discovered.','SI-06d.','N/A','Determine if [SI-06_ODP[07]; one or more of the following PARAMETER VALUES is/are selected: {shut the system down; restart the system; [SI-06_ODP[08]; alternative action(s) to be performed when anomalies are discovered are defined (if selected)]}] is/are initiated when anomalies are discovered.'), ('002702','draft','2013-07-11','DISA FSO','technical','Shut the system down, restart the system, and/or initiate organization-defined alternative action(s) when anomalies in the operation of the organization-defined security functions are discovered.','SI-06d.','N/A','Determine if [SI-06_ODP[07]; one or more of the following PARAMETER VALUES is/are selected: {shut the system down; restart the system; [SI-06_ODP[08]; alternative action(s) to be performed when anomalies are discovered are defined (if selected)]}] is/are initiated when anomalies are discovered.'), ('002703','draft','2013-07-11','DISA FSO','policy','Defines the software, firmware, and information which will be subjected to integrity verification tools to detect unauthorized changes.',NULL,'N/A',NULL), ('002704','draft','2013-07-11','DISA FSO','policy','Employ integrity verification tools to detect unauthorized changes to organization-defined software, firmware, and information.','SI-07a.','N/A','Determine if: - integrity verification tools are employed to detect unauthorized changes to [SI-07_ODP[01]; software requiring integrity verification tools to be employed to detect unauthorized changes is defined]. - integrity verification tools are employed to detect unauthorized changes to [SI-07_ODP[02]; firmware requiring integrity verification tools to be employed to detect unauthorized changes is defined]. - integrity verification tools are employed to detect unauthorized changes to [SI-07_ODP[03]; information requiring integrity verification tools to be employed to detect unauthorized changes is defined].'), ('002705','draft','2013-07-11','DISA FSO','policy','Defines the software on which integrity checks will be performed.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002706','draft','2013-07-11','DISA FSO','policy','Defines the firmware on which integrity checks will be performed.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002707','draft','2013-07-11','DISA FSO','policy','Defines the information on which integrity checks will be performed.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002708','draft','2013-07-11','DISA FSO','policy','Defines the transitional state or security-relevant events when performing integrity checks on software, firmware, and information.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002709','draft','2013-07-11','DISA FSO','policy','Defines the frequency at which integrity checks of software, firmware, and information will be performed.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002710','draft','2013-07-11','DISA FSO','technical','Perform an integrity check of organization-defined software at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002711','draft','2013-07-11','DISA FSO','technical','Perform an integrity check of organization-defined firmware at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002712','draft','2013-07-11','DISA FSO','technical','Perform an integrity check of organization-defined information at startup, at organization-defined transitional states or security-relevant events, or on an organization-defined frequency.','SI-07(01)','N/A','Determine if: - an integrity check of [SI-07(01)_ODP[01]; software on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[03]; transitional states or security-relevant events requiring integrity checks (on software) are defined (if selected)]; [SI-07(01)_ODP[04]; frequency with which to perform an integrity check (on software) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[05]; firmware on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[06]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[07]; transitional states or security-relevant events requiring integrity checks (on firmware) are defined (if selected)]; [SI-07(01)_ODP[08]; frequency with which to perform an integrity check (on firmware) is defined (if selected)]}]. - an integrity check of [SI-07(01)_ODP[09]; information on which an integrity check is to be performed is defined] is performed [SI-07(01)_ODP[10]; one or more of the following PARAMETER VALUES is/are selected: {at startup; at [SI-07(01)_ODP[11]; transitional states or security-relevant events requiring integrity checks (of information) are defined (if selected)]; [SI-07(01)_ODP[12]; frequency with which to perform an integrity check (of information) is defined (if selected)]}].'), ('002713','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles to be notified when discrepancies are discovered during integrity verification.','SI-07(02)','N/A','Determine if automated tools that provide notification to [SI-07(02)_ODP; personnel or roles to whom notification is to be provided upon discovering discrepancies during integrity verification is/are defined] upon discovering discrepancies during integrity verification are employed.'), ('002714','draft','2013-07-11','DISA FSO','policy','Defines the controls that are to be employed when integrity violations are discovered.','SI-07(05)','N/A','Determine if [SI-07(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {shut down the system; restart the system; implement [SI-07(05)_ODP[02]; controls to be implemented automatically when integrity violations are discovered are defined (if selected)]}] are automatically performed when integrity violations are discovered.'), ('002715','draft','2013-07-11','DISA FSO','technical','Automatically shut the system down, restart the system, and/or implement organization-defined controls when integrity violations are discovered.','SI-07(05)','N/A','Determine if [SI-07(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {shut down the system; restart the system; implement [SI-07(05)_ODP[02]; controls to be implemented automatically when integrity violations are discovered are defined (if selected)]}] are automatically performed when integrity violations are discovered.'), ('002716','draft','2013-07-11','DISA FSO','technical','Implement cryptographic mechanisms to detect unauthorized changes to software.','SI-07(06)','N/A','Determine if: - cryptographic mechanisms are implemented to detect unauthorized changes to software. - cryptographic mechanisms are implemented to detect unauthorized changes to firmware. - cryptographic mechanisms are implemented to detect unauthorized changes to information.'), ('002717','draft','2013-07-11','DISA FSO','technical','Implement cryptographic mechanisms to detect unauthorized changes to firmware.','SI-07(06)','N/A','Determine if: - cryptographic mechanisms are implemented to detect unauthorized changes to software. - cryptographic mechanisms are implemented to detect unauthorized changes to firmware. - cryptographic mechanisms are implemented to detect unauthorized changes to information.'), ('002718','draft','2013-07-11','DISA FSO','technical','Implement cryptographic mechanisms to detect unauthorized changes to information.','SI-07(06)','N/A','Determine if: - cryptographic mechanisms are implemented to detect unauthorized changes to software. - cryptographic mechanisms are implemented to detect unauthorized changes to firmware. - cryptographic mechanisms are implemented to detect unauthorized changes to information.'), ('002719','draft','2013-07-11','DISA FSO','policy','Defines the unauthorized security-relevant changes to the system that are to be incorporated into the organizational incident response capability.','SI-07(07)','N/A','Determine if the detection of [SI-07(07)_ODP; security-relevant changes to the system are defined] are incorporated into the organizational incident response capability.'), ('002720','draft','2013-07-11','DISA FSO','policy','Incorporate the detection of organization-defined security-relevant unauthorized changes into the organizational incident response capability.','SI-07(07)','N/A','Determine if the detection of [SI-07(07)_ODP; security-relevant changes to the system are defined] are incorporated into the organizational incident response capability.'), ('002721','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles that are to be alerted when a potential integrity violation is detected.','SI-07(08)','N/A','Determine if: - the capability to audit an event upon the detection of a potential integrity violation is provided. - [SI-07(08)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {generate an audit record; alert current user; alert [SI-07(08)_ODP[02]; personnel or roles to be alerted upon the detection of a potential integrity violation is/are defined (if selected)]; [SI-07(08)_ODP[03]; other actions to be taken upon the detection of a potential integrity violation are defined (if selected)]}] is/are initiated upon the detection of a potential integrity violation.'), ('002722','draft','2013-07-11','DISA FSO','policy','Defines other actions that can be taken when a potential integrity violation is detected.','SI-07(08)','N/A','Determine if: - the capability to audit an event upon the detection of a potential integrity violation is provided. - [SI-07(08)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {generate an audit record; alert current user; alert [SI-07(08)_ODP[02]; personnel or roles to be alerted upon the detection of a potential integrity violation is/are defined (if selected)]; [SI-07(08)_ODP[03]; other actions to be taken upon the detection of a potential integrity violation are defined (if selected)]}] is/are initiated upon the detection of a potential integrity violation.'), ('002723','draft','2013-07-11','DISA FSO','technical','Upon detection of a potential integrity violation, provides the capability to audit the event.','SI-07(08)','N/A','Determine if: - the capability to audit an event upon the detection of a potential integrity violation is provided. - [SI-07(08)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {generate an audit record; alert current user; alert [SI-07(08)_ODP[02]; personnel or roles to be alerted upon the detection of a potential integrity violation is/are defined (if selected)]; [SI-07(08)_ODP[03]; other actions to be taken upon the detection of a potential integrity violation are defined (if selected)]}] is/are initiated upon the detection of a potential integrity violation.'), ('002724','draft','2013-07-11','DISA FSO','technical','Upon detection of a potential integrity violation, initiate one or more of the following actions: generate an audit record; alert the current user; alert organization-defined personnel or roles; and/or organization-defined other actions.','SI-07(08)','N/A','Determine if: - the capability to audit an event upon the detection of a potential integrity violation is provided. - [SI-07(08)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {generate an audit record; alert current user; alert [SI-07(08)_ODP[02]; personnel or roles to be alerted upon the detection of a potential integrity violation is/are defined (if selected)]; [SI-07(08)_ODP[03]; other actions to be taken upon the detection of a potential integrity violation are defined (if selected)]}] is/are initiated upon the detection of a potential integrity violation.'), ('002725','draft','2013-07-11','DISA FSO','policy','Defines the system component which will have the integrity of the boot process verified.','SI-07(09)','N/A','Determine if the integrity of the boot process of [SI-07(09)_ODP; system components requiring integrity verification of the boot process are defined] is verified.'), ('002726','draft','2013-07-11','DISA FSO','technical','Verify the integrity of the boot process of organization-defined system components.','SI-07(09)','N/A','Determine if the integrity of the boot process of [SI-07(09)_ODP; system components requiring integrity verification of the boot process are defined] is verified.'), ('002727','draft','2013-07-11','DISA FSO','policy','Defines the mechanisms to be implemented to protect the integrity of the boot firmware in organization-defined system components.','SI-07(10)','N/A','Determine if [SI-07(10)_ODP[01]; mechanisms to be implemented to protect the integrity of boot firmware in system components are defined] are implemented to protect the integrity of boot firmware in [SI-07(10)_ODP[02]; system components requiring mechanisms to protect the integrity of boot firmware are defined].'), ('002728','draft','2013-07-11','DISA FSO','policy','Defines the system components on which organization-defined mechanisms will be implemented to protect the integrity of the boot firmware.','SI-07(10)','N/A','Determine if [SI-07(10)_ODP[01]; mechanisms to be implemented to protect the integrity of boot firmware in system components are defined] are implemented to protect the integrity of boot firmware in [SI-07(10)_ODP[02]; system components requiring mechanisms to protect the integrity of boot firmware are defined].'), ('002729','draft','2013-07-11','DISA FSO','technical','Implement organization-defined mechanisms to protect the integrity of boot firmware in organization-defined system components.','SI-07(10)','N/A','Determine if [SI-07(10)_ODP[01]; mechanisms to be implemented to protect the integrity of boot firmware in system components are defined] are implemented to protect the integrity of boot firmware in [SI-07(10)_ODP[02]; system components requiring mechanisms to protect the integrity of boot firmware are defined].'), ('002732','draft','2013-07-11','DISA FSO','policy','Defines the user-installed software that is to have its integrity verified prior to execution.','SI-07(12)','N/A','Determine if the integrity of [SI-07(12)_ODP; user-installed software requiring integrity verification prior to execution is defined] is verified prior to execution.'), ('002733','draft','2013-07-11','DISA FSO','policy','Require that the integrity of organization-defined user-installed software be verified prior to execution.','SI-07(12)','N/A','Determine if the integrity of [SI-07(12)_ODP; user-installed software requiring integrity verification prior to execution is defined] is verified prior to execution.'), ('002739','draft','2013-07-11','DISA FSO','policy','Defines the software or firmware components on which cryptographic mechanisms are to be implemented to support authentication prior to installation.','SI-07(15)','N/A','Determine if cryptographic mechanisms are implemented to authenticate [SI-07(15)_ODP; software or firmware components to be authenticated by cryptographic mechanisms prior to installation are defined] prior to installation.'), ('002740','draft','2013-07-11','DISA FSO','technical','Implement cryptographic mechanisms to authenticate organization-defined software or firmware components prior to installation.','SI-07(15)','N/A','Determine if cryptographic mechanisms are implemented to authenticate [SI-07(15)_ODP; software or firmware components to be authenticated by cryptographic mechanisms prior to installation are defined] prior to installation.'), ('002741','draft','2013-07-11','DISA FSO','policy','Employ spam protection mechanisms at system entry points to detect and take action on unsolicited messages.','SI-08a.','N/A','Determine if: - spam protection mechanisms are employed at system entry points to detect unsolicited messages. - spam protection mechanisms are employed at system exit points to detect unsolicited messages. - spam protection mechanisms are employed at system entry points to act on unsolicited messages. - spam protection mechanisms are employed at system exit points to act on unsolicited messages.'), ('002742','draft','2013-07-11','DISA FSO','policy','Employ spam protection mechanisms at system exit points to detect and take action on unsolicited messages.','SI-08a.','N/A','Determine if: - spam protection mechanisms are employed at system entry points to detect unsolicited messages. - spam protection mechanisms are employed at system exit points to detect unsolicited messages. - spam protection mechanisms are employed at system entry points to act on unsolicited messages. - spam protection mechanisms are employed at system exit points to act on unsolicited messages.'), ('002743','draft','2013-07-11','DISA FSO','technical','Implement spam protection mechanisms with a learning capability to more effectively identify legitimate communications traffic.','SI-08(03)','N/A','Determine if spam protection mechanisms with a learning capability are implemented to more effectively identify legitimate communications traffic.'), ('002744','draft','2013-07-11','DISA FSO','policy','Defines the inputs on which the system is to conduct validity checks.','SI-10','N/A','Determine if the validity of the [SI-10_ODP; information inputs to the system requiring validity checks are defined] is checked.'), ('002745','draft','2013-07-11','DISA FSO','policy','Defines the inputs defined in base control (SI-10), which provide a manual override capability for input validation.','SI-10(01)(a)','N/A','Determine if a manual override capability for the validation of [SI-10_ODP; information inputs to the system requiring validity checks are defined] is provided.'), ('002746','draft','2013-07-11','DISA FSO','technical','Provide a manual override capability for input validation of organization-defined inputs defined in base control (SI-10).','SI-10(01)(a)','N/A','Determine if a manual override capability for the validation of [SI-10_ODP; information inputs to the system requiring validity checks are defined] is provided.'), ('002747','draft','2013-07-11','DISA FSO','policy','Defines the individuals who have the authorization to use the manual override capability for input validation.','SI-10(01)(b)','N/A','Determine if the use of the manual override capability is restricted to only [SI-10(01)_ODP; authorized individuals who can use the manual override capability are defined].'), ('002748','draft','2013-07-11','DISA FSO','technical','Restrict the use of the manual override capability to only organization-defined authorized individuals.','SI-10(01)(b)','N/A','Determine if the use of the manual override capability is restricted to only [SI-10(01)_ODP; authorized individuals who can use the manual override capability are defined].'), ('002749','draft','2013-07-11','DISA FSO','technical','Audit the use of the manual override capability.','SI-10(01)(c)','N/A','Determine if the use of the manual override capability is audited.'), ('002750','draft','2013-07-11','DISA FSO','policy','Defines the time-period within which input validation errors are to be reviewed.','SI-10(02)','N/A','Determine if: - input validation errors are reviewed within [SI-10(02)_ODP[01]; the time period within which input validation errors are to be reviewed is defined]. - input validation errors are resolved within [SI-10(02)_ODP[02]; the time period within which input validation errors are to be resolved is defined].'), ('002751','draft','2013-07-11','DISA FSO','policy','Defines the time-period within which input validation errors are to be resolved.','SI-10(02)','N/A','Determine if: - input validation errors are reviewed within [SI-10(02)_ODP[01]; the time period within which input validation errors are to be reviewed is defined]. - input validation errors are resolved within [SI-10(02)_ODP[02]; the time period within which input validation errors are to be resolved is defined].'), ('002752','draft','2013-07-11','DISA FSO','policy','Review input validation errors within an organization-defined time period.','SI-10(02)','N/A','Determine if: - input validation errors are reviewed within [SI-10(02)_ODP[01]; the time period within which input validation errors are to be reviewed is defined]. - input validation errors are resolved within [SI-10(02)_ODP[02]; the time period within which input validation errors are to be resolved is defined].'), ('002753','draft','2013-07-11','DISA FSO','policy','Resolve input validation errors within an organization-defined time period.','SI-10(02)','N/A','Determine if: - input validation errors are reviewed within [SI-10(02)_ODP[01]; the time period within which input validation errors are to be reviewed is defined]. - input validation errors are resolved within [SI-10(02)_ODP[02]; the time period within which input validation errors are to be resolved is defined].'), ('002754','draft','2013-07-11','DISA FSO','policy','Verify that the system behaves in a predictable and documented manner that reflects organizational and system objectives when invalid inputs are received.','SI-10(03)','N/A','Determine if: - the system behaves in a predictable manner when invalid inputs are received. - the system behaves in a documented manner when invalid inputs are received.'), ('002755','draft','2013-07-11','DISA FSO','policy','Account for timing interactions among system components in determining appropriate responses for invalid inputs.','SI-10(04)','N/A','Determine if timing interactions among system components are accounted for in determining appropriate responses for invalid inputs.'), ('002756','draft','2013-07-11','DISA FSO','policy','Defines the trusted sources to which the usage of information inputs will be restricted (e.g., whitelisting).','SI-10(05)','N/A','Determine if the use of information inputs is restricted to [SI-10(05)_ODP[01]; trusted sources to which the use of information inputs is to be restricted are defined] and/or [SI-10(05)_ODP[02]; formats to which the use of information inputs is to be restricted are defined].'), ('002757','draft','2013-07-11','DISA FSO','policy','Defines the acceptable formats to which information inputs are restricted.','SI-10(05)','N/A','Determine if the use of information inputs is restricted to [SI-10(05)_ODP[01]; trusted sources to which the use of information inputs is to be restricted are defined] and/or [SI-10(05)_ODP[02]; formats to which the use of information inputs is to be restricted are defined].'), ('002758','draft','2013-07-11','DISA FSO','policy','Restrict the use of information inputs to organization-defined trusted sources and/or organization-defined formats.','SI-10(05)','N/A','Determine if the use of information inputs is restricted to [SI-10(05)_ODP[01]; trusted sources to which the use of information inputs is to be restricted are defined] and/or [SI-10(05)_ODP[02]; formats to which the use of information inputs is to be restricted are defined].'), ('002759','draft','2013-07-11','DISA FSO','policy','Defines the personnel or roles to whom error messages are to be revealed.','SI-11b.','N/A','Determine if error messages are revealed only to [SI-11_ODP; personnel or roles to whom error messages are to be revealed is/are defined].'), ('002760','draft','2013-07-11','DISA FSO','policy','Determines mean time to failure (MTTF) for organization-defined system components in specific environments of operation.','SI-13a.','N/A','Determine if mean time to failure (MTTF) is determined for [SI-13_ODP[01]; system components for which mean time to failure (MTTF) should be determined are defined] in specific environments of operation.'), ('002761','draft','2013-07-11','DISA FSO','policy','Defines the system components in specific environments of operation for which the mean time to failure (MTTF) is to be determined.','SI-13a.','N/A','Determine if mean time to failure (MTTF) is determined for [SI-13_ODP[01]; system components for which mean time to failure (MTTF) should be determined are defined] in specific environments of operation.'), ('002762','draft','2013-07-11','DISA FSO','policy','Defines the mean time to failure (MTTF) substitution criteria to be employed as a means to determine the need to exchange active and standby components.','SI-13b.','N/A','Determine if substitute system components and a means to exchange active and standby components are provided in accordance with [SI-13_ODP[02]; mean time to failure (MTTF) substitution criteria to be used as a means to exchange active and standby components are defined].'), ('002763','draft','2013-07-11','DISA FSO','policy','Provide a means to exchange active and standby components in accordance with the organization-defined mean time to failure (MTTF) substitution criteria.','SI-13b.','N/A','Determine if substitute system components and a means to exchange active and standby components are provided in accordance with [SI-13_ODP[02]; mean time to failure (MTTF) substitution criteria to be used as a means to exchange active and standby components are defined].'), ('002764','draft','2013-07-11','DISA FSO','policy','Defines non-persistent system components and services to be implemented.','SI-14','N/A','Determine if: - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] that are initiated in a known state are implemented. - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] are terminated [SI-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {upon end of session of use; [SI-14_ODP[03]; the frequency at which to terminate non-persistent components and services that are initiated in a known state is defined (if selected)]}].'), ('002765','draft','2013-07-11','DISA FSO','policy','Defines the frequency at which the organization-defined non-persistent system components and services will be terminated.','SI-14','N/A','Determine if: - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] that are initiated in a known state are implemented. - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] are terminated [SI-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {upon end of session of use; [SI-14_ODP[03]; the frequency at which to terminate non-persistent components and services that are initiated in a known state is defined (if selected)]}].'), ('002766','draft','2013-07-11','DISA FSO','policy','Implement organization-defined non-persistence system components and services that are initiated in a known state.','SI-14','N/A','Determine if: - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] that are initiated in a known state are implemented. - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] are terminated [SI-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {upon end of session of use; [SI-14_ODP[03]; the frequency at which to terminate non-persistent components and services that are initiated in a known state is defined (if selected)]}].'), ('002767','draft','2013-07-11','DISA FSO','policy','Implement organization-defined non-persistence system components and services that are terminated upon end of session of use and/or periodically at an organization-defined frequency.','SI-14','N/A','Determine if: - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] that are initiated in a known state are implemented. - non-persistent [SI-14_ODP[01]; non-persistent system components and services to be implemented are defined] are terminated [SI-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {upon end of session of use; [SI-14_ODP[03]; the frequency at which to terminate non-persistent components and services that are initiated in a known state is defined (if selected)]}].'), ('002768','draft','2013-07-11','DISA FSO','policy','Defines the trusted sources from which it obtains software and data employed during the refreshing of non-persistent system components and services.','SI-14(01)','N/A','Determine if the software and data employed during system component and service refreshes are obtained from [SI-14(01)_ODP; trusted sources to obtain software and data for system component and service refreshes are defined].'), ('002769','draft','2013-07-11','DISA FSO','policy','Obtain software and data employed during non-persistent system component and service refreshes are obtained from organization-defined trusted sources.','SI-14(01)','N/A','Determine if the software and data employed during system component and service refreshes are obtained from [SI-14(01)_ODP; trusted sources to obtain software and data for system component and service refreshes are defined].'), ('002770','draft','2013-07-11','DISA FSO','policy','Defines the software programs and/or applications from which the system is to validate the information output to ensure the information is consistent with expected content.','SI-15','N/A','Determine if information output from [SI-15_ODP; software programs and/or applications whose information output requires validation are defined] is validated to ensure that the information is consistent with the expected content.'), ('002771','draft','2013-07-11','DISA FSO','technical','Validate information output from organization-defined software programs and/or applications to ensure that the information is consistent with the expected content.','SI-15','N/A','Determine if information output from [SI-15_ODP; software programs and/or applications whose information output requires validation are defined] is validated to ensure that the information is consistent with the expected content.'), ('002773','draft','2013-07-11','DISA FSO','policy','Defines the fail-safe procedures to be implemented when organization-defined failure conditions occur.','SI-17','N/A','Determine if [SI-17_ODP[01]; fail-safe procedures associated with failure conditions are defined] are implemented when [SI-17_ODP[02]; a list of failure conditions requiring fail-safe procedures is defined] occur.'), ('002774','draft','2013-07-11','DISA FSO','policy','Defines the failure conditions which, when they occur, will result in the information system implementing organization-defined fail-safe procedures.','SI-17','N/A','Determine if [SI-17_ODP[01]; fail-safe procedures associated with failure conditions are defined] are implemented when [SI-17_ODP[02]; a list of failure conditions requiring fail-safe procedures is defined] occur.'), ('002775','draft','2013-07-11','DISA FSO','technical','Implement organization-defined fail-safe procedures when organization-defined failure conditions occur.','SI-17','N/A','Determine if [SI-17_ODP[01]; fail-safe procedures associated with failure conditions are defined] are implemented when [SI-17_ODP[02]; a list of failure conditions requiring fail-safe procedures is defined] occur.'), ('002776','draft','2013-07-12','DISA FSO','policy','Defines the personnel or roles to whom the organization-level; mission/business process-level; and/or system-level incident response policy is disseminated.','IR-01a.','N/A','Determine if: - an incident response policy is developed and documented. - the incident response policy is disseminated to [IR-01_ODP[01]; personnel or roles to whom the incident response policy is to be disseminated is/are defined].'), ('002777','draft','2013-07-12','DISA FSO','policy','Defines the personnel or roles to whom the incident response procedures are disseminated.','IR-01a.02','N/A','Determine if: - incident response procedures to facilitate the implementation of the incident response policy and associated incident response controls are developed and documented. - the incident response procedures are disseminated to [IR-01_ODP[02]; personnel or roles to whom the incident response procedures are to be disseminated is/are defined].'), ('002778','draft','2013-07-12','DISA FSO','policy','Defines the time period in which system users who assume an incident response role or responsibility receive incident response training.','IR-02a.01','N/A','Determine if incident response training is provided to system users consistent with assigned roles and responsibilities within [IR-02_ODP[01]; a time period within which incident response training is to be provided to system users assuming an incident response role or responsibility is defined] of assuming an incident response role or responsibility or acquiring system access.'), ('002779','draft','2013-07-12','DISA FSO','policy','Provide incident response training to system users consistent with assigned roles and responsibilities when required by system changes.','IR-02a.02','N/A','Determine if incident response training is provided to system users consistent with assigned roles and responsibilities when required by system changes.'), ('002780','draft','2013-07-12','DISA FSO','policy','Coordinate incident response testing with organizational elements responsible for related plans.','IR-03(02)','N/A','Determine if incident response testing is coordinated with organizational elements responsible for related plans.'), ('002781','draft','2013-07-12','DISA FSO','policy','Defines the system components for dynamic reconfiguration as part of the incident response capability.','IR-04(02)','N/A','Determine if [IR-04(02)_ODP[01]; types of dynamic reconfiguration for system components are defined] for [IR-04(02)_ODP[02]; system components that require dynamic reconfiguration are defined] are included as part of the incident response capability.'), ('002782','draft','2013-07-12','DISA FSO','policy','Implement an incident handling capability for incidents involving insider threats.','IR-04(06)','N/A','Determine if an incident handling capability is implemented for incidents involving insider threats.'), ('002785','draft','2013-07-12','DISA FSO','policy','Coordinate with organization-defined external organizations to correlate and share organization-defined incident information to achieve a cross-organization perspective on incident awareness and more effective incident responses.','IR-04(08)','N/A','Determine if there is coordination with [IR-04(08)_ODP[01]; external organizations with whom organizational incident information is to be coordinated and shared are defined] to correlate and share [IR-04(08)_ODP[02]; incident information to be correlated and shared with organization-defined external organizations are defined] to achieve a cross-organization perspective on incident awareness and more effective incident responses.'), ('002786','draft','2013-07-12','DISA FSO','policy','Defines external organizations with which to correlate and share organization-defined incident information.','IR-04(08)','N/A','Determine if there is coordination with [IR-04(08)_ODP[01]; external organizations with whom organizational incident information is to be coordinated and shared are defined] to correlate and share [IR-04(08)_ODP[02]; incident information to be correlated and shared with organization-defined external organizations are defined] to achieve a cross-organization perspective on incident awareness and more effective incident responses.'), ('002787','draft','2013-07-12','DISA FSO','policy','Defines incident information to correlate and share with organization-defined external organizations.','IR-04(08)','N/A','Determine if there is coordination with [IR-04(08)_ODP[01]; external organizations with whom organizational incident information is to be coordinated and shared are defined] to correlate and share [IR-04(08)_ODP[02]; incident information to be correlated and shared with organization-defined external organizations are defined] to achieve a cross-organization perspective on incident awareness and more effective incident responses.'), ('002788','draft','2013-07-12','DISA FSO','policy','Employ organization-defined dynamic response capabilities to effectively respond to incidents.','IR-04(09)','N/A','Determine if [IR-04(09)_ODP; dynamic response capabilities to be employed to respond to incidents are defined] are employed to respond to incidents.'), ('002789','draft','2013-07-12','DISA FSO','policy','Defines dynamic response capabilities to effectively respond to incidents.','IR-04(09)','N/A','Determine if [IR-04(09)_ODP; dynamic response capabilities to be employed to respond to incidents are defined] are employed to respond to incidents.'), ('002790','draft','2013-07-12','DISA FSO','policy','Coordinate incident handling activities involving supply chain events with other organizations involved in the supply chain.','IR-04(10)','N/A','Determine if incident handling activities involving supply chain events are coordinated with other organizations involved in the supply chain.'), ('002791','draft','2013-07-12','DISA FSO','policy','Defines authorities to whom incident information is reported.','IR-06b.','N/A','Determine if incident information is reported to [IR-06_ODP[02]; authorities to whom incident information is to be reported are defined].'), ('002792','draft','2013-07-12','DISA FSO','policy','Defines personnel or roles to whom system vulnerabilities associated with reported incident information are reported.','IR-06(02)','N/A','Determine if system vulnerabilities associated with reported incidents are reported to [IR-06(02)_ODP; personnel or roles to whom system vulnerabilities associated with reported incidents are reported to is/are defined].'), ('002793','draft','2013-07-12','DISA FSO','policy','Provide incident information to other organizations involved in the supply chain or supply chain governance for systems or system components related to the incident.','IR-06(03)','N/A','Determine if incident information is provided to the provider of the product or service and other organizations involved in the supply chain or supply chain governance for systems or system components related to the incident.'), ('002794','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan.',NULL,'N/A',NULL), ('002795','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that provides the organization with a roadmap for implementing its incident response capability.','IR-08a.01','N/A','Determine if an incident response plan is developed that provides the organization with a roadmap for implementing its incident response capability.'), ('002796','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that describes the structure and organization of the incident response capability.','IR-08a.02','N/A','Determine if an incident response plan is developed that describes the structure and organization of the incident response capability.'), ('002797','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that provides a high-level approach for how the incident response capability fits into the overall organization.','IR-08a.03','N/A','Determine if an incident response plan is developed that provides a high-level approach for how the incident response capability fits into the overall organization.'), ('002798','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that meets the unique requirements of the organization, which relate to mission, size, structure, and functions.','IR-08a.04','N/A','Determine if an incident response plan is developed that meets the unique requirements of the organization with regard to mission, size, structure, and functions.'), ('002799','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that defines reportable incidents.','IR-08a.05','N/A','Determine if an incident response plan is developed that defines reportable incidents.'), ('002800','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that provides metrics for measuring the incident response capability within the organization.','IR-08a.06','N/A','Determine if an incident response plan is developed that provides metrics for measuring the incident response capability within the organization.'), ('002801','draft','2013-07-12','DISA FSO','policy','Develop an incident response plan that defines the resources and management support needed to effectively maintain and mature an incident response capability.','IR-08a.07','N/A','Determine if an incident response plan is developed that defines the resources and management support needed to effectively maintain and mature an incident response capability.'), ('002802','draft','2013-07-12','DISA FSO','policy','Defines personnel or roles to review and approve the incident response plan.','IR-08a.09','N/A','Determine if an incident response plan is developed that is reviewed and approved by [IR-08_ODP[01]; personnel or roles that review and approve the incident response plan is/are identified] [IR-08_ODP[02]; the frequency at which to review and approve the incident response plan is defined].'), ('002803','draft','2013-07-12','DISA FSO','policy','Defines incident response personnel (identified by name and/or by role) and organizational elements to whom incident response plan changes will be communicated.','IR-08d.','N/A','Determine if: - incident response plan changes are communicated to [IR-08_ODP[06]; incident response personnel (identified by name and/or by role) to whom changes to the incident response plan is/are communicated are defined]. - incident response plan changes are communicated to [IR-08_ODP[07]; organizational elements to which changes to the incident response plan are communicated are defined].'), ('002804','draft','2013-07-12','DISA FSO','policy','Protect the incident response plan from unauthorized disclosure and modification.','IR-08e.','N/A','Determine if: - the incident response plan is protected from unauthorized disclosure. - the incident response plan is protected from unauthorized modification.'), ('002805','draft','2013-07-12','DISA FSO','policy','Respond to information spills by identifying the specific information involved in the system contamination.','IR-09b.','N/A','Determine if the specific information involved in the system contamination is identified in response to information spills.'), ('002806','draft','2013-07-12','DISA FSO','policy','Respond to information spills by alerting organization-defined personnel or roles of the information spill using a method of communication not associated with the spill.','IR-09c.','N/A','Determine if [IR-09_ODP[02]; personnel or roles to be alerted of the information spill using a method of communication not associated with the spill is/are defined] is/are alerted of the information spill using a method of communication not associated with the spill.'), ('002807','draft','2013-07-12','DISA FSO','policy','Defines the personnel or roles to be alerted of information spills using a method of communication not associated with the spill.','IR-09c.','N/A','Determine if [IR-09_ODP[02]; personnel or roles to be alerted of the information spill using a method of communication not associated with the spill is/are defined] is/are alerted of the information spill using a method of communication not associated with the spill.'), ('002808','draft','2013-07-12','DISA FSO','policy','Respond to information spills by isolating the contaminated system or system component.','IR-09c.','N/A','Determine if [IR-09_ODP[02]; personnel or roles to be alerted of the information spill using a method of communication not associated with the spill is/are defined] is/are alerted of the information spill using a method of communication not associated with the spill.'), ('002809','draft','2013-07-12','DISA FSO','policy','Respond to information spills by eradicating the information from the contaminated system or component.','IR-09e.','N/A','Determine if the information is eradicated from the contaminated system or component in response to information spills.'), ('002810','draft','2013-07-12','DISA FSO','policy','Respond to information spills by identifying other systems or system components that may have been subsequently contaminated.','IR-09f.','N/A','Determine if other systems or system components that may have been subsequently contaminated are identified in response to information spills.'), ('002811','draft','2013-07-12','DISA FSO','policy','Respond to information spills by performing additional organization-defined actions.','IR-09g.','N/A','Determine if [IR-09_ODP[03]; actions to be performed are defined] are performed in response to information spills.'), ('002812','draft','2013-07-12','DISA FSO','policy','Defines additional actions required to respond to information spills.','IR-09g.','N/A','Determine if [IR-09_ODP[03]; actions to be performed are defined] are performed in response to information spills.'), ('002816','draft','2013-07-12','DISA FSO','policy','Provide information spillage response training according to an organization-defined frequency.','IR-09(02)','N/A','Determine if information spillage response training is provided [IR-09(02)_ODP; frequency at which to provide information spillage response training is defined].'), ('002817','draft','2013-07-12','DISA FSO','policy','Defines the frequency with which to provide information spillage response training.','IR-09(02)','N/A','Determine if information spillage response training is provided [IR-09(02)_ODP; frequency at which to provide information spillage response training is defined].'), ('002818','draft','2013-07-12','DISA FSO','policy','Implement organization-defined procedures to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.','IR-09(03)','N/A','Determine if [IR-09(03)_ODP; procedures to be implemented to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions are defined] are implemented to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.'), ('002819','draft','2013-07-12','DISA FSO','policy','Defines the procedures to be implemented to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.','IR-09(03)','N/A','Determine if [IR-09(03)_ODP; procedures to be implemented to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions are defined] are implemented to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.'), ('002820','draft','2013-07-12','DISA FSO','policy','Employ organization-defined controls for personnel exposed to information not within assigned access authorizations.','IR-09(04)','N/A','Determine if [IR-09(04)_ODP; controls employed for personnel exposed to information not within assigned access authorizations are defined] are employed for personnel exposed to information not within assigned access authorizations.'), ('002821','draft','2013-07-12','DISA FSO','policy','Defines the controls to be employed for personnel exposed to information not within assigned access authorizations.','IR-09(04)','N/A','Determine if [IR-09(04)_ODP; controls employed for personnel exposed to information not within assigned access authorizations are defined] are employed for personnel exposed to information not within assigned access authorizations.'), ('002823','draft','2013-07-12','DISA FSO','policy','Defines the controls to be implemented to protect the system memory from unauthorized code execution.','SI-16','N/A','Determine if [SI-16_ODP; controls to be implemented to protect the system memory from unauthorized code execution are defined] are implemented to protect the system memory from unauthorized code execution.'), ('002824','draft','2013-07-12','DISA FSO','technical','Implement organization-defined controls to protect the system memory from unauthorized code execution.','SI-16','N/A','Determine if [SI-16_ODP; controls to be implemented to protect the system memory from unauthorized code execution are defined] are implemented to protect the system memory from unauthorized code execution.'), ('002825','draft','2013-07-20','DISA FSO','policy','Defines the personnel or roles to whom the organizational-level; mission/business process-level; and/or system-level contingency planning policy is to be disseminated.','CP-01a.','N/A','Determine if: - a contingency planning policy is developed and documented. - the contingency planning policy is disseminated to [CP-01_ODP[01]; personnel or roles to whom the contingency planning policy is to be disseminated is/are defined].'), ('002826','draft','2013-07-20','DISA FSO','policy','Defines personnel or roles to whom the contingency planning procedures are disseminated.','CP-01a.02','N/A','Determine if: - contingency planning procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls are developed and documented. - the contingency planning procedures are disseminated to [CP-01_ODP[02]; personnel or roles to whom the contingency planning procedures are to be disseminated is/are defined].'), ('002827','draft','2013-07-20','DISA FSO','policy','Coordinate the contingency plan with the contingency plans of external service providers to ensure that contingency requirements can be satisfied.','CP-02(07)','N/A','Determine if the contingency plan is coordinated with the contingency plans of external service providers to ensure that contingency requirements can be satisfied.'), ('002828','draft','2013-07-20','DISA FSO','policy','Identify critical system assets supporting all or essential mission functions.','CP-02(08)','N/A','Determine if critical system assets supporting [CP-02(08)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions are identified.'), ('002829','draft','2013-07-20','DISA FSO','policy','Identify critical system assets supporting all or essential business functions.','CP-02(08)','N/A','Determine if critical system assets supporting [CP-02(08)_ODP; one of the following PARAMETER VALUES is selected: {all; essential}] mission and business functions are identified.'), ('002830','draft','2013-07-20','DISA FSO','policy','Defines the personnel or roles who review and approve the contingency plan for the system.','CP-02a.07','N/A','Determine if: - a contingency plan for the system is developed that is reviewed by [CP-02_ODP[01]; personnel or roles to review a contingency plan is/are defined]. - a contingency plan for the system is developed that is approved by [CP-02_ODP[02]; personnel or roles to approve a contingency plan is/are defined].'), ('002831','draft','2013-07-20','DISA FSO','policy','Defines a list of key contingency personnel (identified by name and/or by role) and organizational elements to whom contingency plan changes are to be communicated.','CP-02f.','N/A','Determine if: - contingency plan changes are communicated to [CP-02_ODP[06]; key contingency personnel (identified by name and/or by role) to communicate changes to are defined]. - contingency plan changes are communicated to [CP-02_ODP[07]; key contingency organizational elements to communicate changes to are defined].'), ('002832','draft','2013-07-20','DISA FSO','policy','Protects the contingency plan from unauthorized disclosure and modification.','CP-02h.','N/A','Determine if: - the contingency plan is protected from unauthorized disclosure. - the contingency plan is protected from unauthorized modification.'), ('002833','draft','2013-07-20','DISA FSO','policy','Defines the time period that contingency training is to be provided to system users consistent with assigned roles and responsibilities within assuming a contingency role or responsibility.','CP-03a.01','N/A','Determine if contingency training is provided to system users consistent with assigned roles and responsibilities within [CP-03_ODP[01]; the time period within which to provide contingency training after assuming a contingency role or responsibility is defined] of assuming a contingency role or responsibility.'), ('002834','draft','2013-07-20','DISA FSO','policy','Provide contingency training to system users consistent with assigned roles and responsibilities when required by system changes.','CP-03a.02','N/A','Determine if contingency training is provided to system users consistent with assigned roles and responsibilities when required by system changes.'), ('002835','draft','2013-07-20','DISA FSO','policy','Test the contingency plan at the alternate processing site to evaluate the capabilities of the alternate processing site to support contingency operations.','CP-04(02)(b)','N/A','Determine if the contingency plan is tested at the alternate processing site to evaluate the capabilities of the alternate processing site to support contingency operations.'), ('002836','draft','2013-07-20','DISA FSO','policy','Ensure that the alternate storage site provides security controls equivalent to that of the primary site.','CP-06b.','N/A','Determine if the alternate storage site provides controls equivalent to that of the primary site.'), ('002837','draft','2013-07-20','DISA FSO','policy','Plan for circumstances that preclude returning to the primary processing site.','CP-07(06)','N/A','Determine if: - circumstances that preclude returning to the primary processing site are planned for. - circumstances that preclude returning to the primary processing site are prepared for.'), ('002838','draft','2013-07-20','DISA FSO','policy','Prepare for circumstances that preclude returning to the primary processing site.','CP-07(06)','N/A','Determine if: - circumstances that preclude returning to the primary processing site are planned for. - circumstances that preclude returning to the primary processing site are prepared for.'), ('002839','draft','2013-07-20','DISA FSO','policy','Defines system operations that are permitted to transfer and resume at an alternate processing site for essential missions/business functions when the primary processing capabilities are unavailable.','CP-07a.','N/A','Determine if an alternate processing site, including necessary agreements to permit the transfer and resumption of [CP-07_ODP[01]; system operations for essential mission and business functions are defined] for essential mission and business functions, is established within [CP-07_ODP[02]; time period consistent with recovery time and recovery point objectives is defined] when the primary processing capabilities are unavailable.'), ('002840','draft','2013-07-20','DISA FSO','policy','Defines the system operations to be resumed for essential mission functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-08','N/A','Determine if alternate telecommunications services, including necessary agreements to permit the resumption of [CP-08_ODP[01]; system operations to be resumed for essential mission and business functions are defined], are established for essential mission and business functions within [CP-08_ODP[02]; time period within which to resume essential mission and business functions when the primary telecommunications capabilities are unavailable is defined] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.'), ('002841','draft','2013-07-20','DISA FSO','policy','Defines the system operations to be resumed for essential business functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.','CP-08','N/A','Determine if alternate telecommunications services, including necessary agreements to permit the resumption of [CP-08_ODP[01]; system operations to be resumed for essential mission and business functions are defined], are established for essential mission and business functions within [CP-08_ODP[02]; time period within which to resume essential mission and business functions when the primary telecommunications capabilities are unavailable is defined] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.'), ('002842','draft','2013-07-20','DISA FSO','policy','Review provider contingency plans to ensure that the plans meet organizational contingency requirements.','CP-08(04)(b)','N/A','Determine if provider contingency plans are reviewed to ensure that the plans meet organizational contingency requirements.'), ('002843','draft','2013-07-20','DISA FSO','policy','Defines the frequency with which to obtain evidence of contingency testing by providers.','CP-08(04)(c)','N/A','Determine if: - evidence of contingency testing by providers is obtained [CP-08(04)_ODP[01]; frequency at which to obtain evidence of contingency testing by providers is defined]. - evidence of contingency training by providers is obtained [CP-08(04)_ODP[02]; frequency at which to obtain evidence of contingency training by providers is defined].'), ('002844','draft','2013-07-20','DISA FSO','policy','Defines the frequency with which to obtain evidence of contingency training by providers.','CP-08(04)(c)','N/A','Determine if: - evidence of contingency testing by providers is obtained [CP-08(04)_ODP[01]; frequency at which to obtain evidence of contingency testing by providers is defined]. - evidence of contingency training by providers is obtained [CP-08(04)_ODP[02]; frequency at which to obtain evidence of contingency training by providers is defined].'), ('002845','draft','2013-07-20','DISA FSO','policy','Obtain evidence of contingency testing by providers in accordance with organization-defined frequency.','CP-08(04)(c)','N/A','Determine if: - evidence of contingency testing by providers is obtained [CP-08(04)_ODP[01]; frequency at which to obtain evidence of contingency testing by providers is defined]. - evidence of contingency training by providers is obtained [CP-08(04)_ODP[02]; frequency at which to obtain evidence of contingency training by providers is defined].'), ('002846','draft','2013-07-20','DISA FSO','policy','Obtain evidence of contingency training by providers in accordance with organization-defined frequency.','CP-08(04)(c)','N/A','Determine if: - evidence of contingency testing by providers is obtained [CP-08(04)_ODP[01]; frequency at which to obtain evidence of contingency testing by providers is defined]. - evidence of contingency training by providers is obtained [CP-08(04)_ODP[02]; frequency at which to obtain evidence of contingency training by providers is defined].'), ('002847','draft','2013-07-20','DISA FSO','policy','Defines the frequency with which to test alternate telecommunication services.','CP-08(05)','N/A','Determine if alternate telecommunications services are tested [CP-08(05)_ODP; frequency at which alternate telecommunications services are tested is defined].'), ('002848','draft','2013-07-20','DISA FSO','policy','Test alternate telecommunication services per organization-defined frequency.','CP-08(05)','N/A','Determine if alternate telecommunications services are tested [CP-08(05)_ODP; frequency at which alternate telecommunications services are tested is defined].'), ('002849','draft','2013-07-20','DISA FSO','policy','Defines critical system software and other security-related information, of which backup copies must be stored in a separate facility or in a fire-rated container.','CP-09(03)','N/A','Determine if backup copies of [CP-09(03)_ODP; critical system software and other security-related information backups to be stored in a separate facility are defined] are stored in a separate facility or in a fire rated container that is not collocated with the operational system.'), ('002850','draft','2013-07-20','DISA FSO','policy','Store backup copies of organization-defined critical system software and other security-related information in a separate facility or in a fire-rated container that is not collocated with the operational system.','CP-09(03)','N/A','Determine if backup copies of [CP-09(03)_ODP; critical system software and other security-related information backups to be stored in a separate facility are defined] are stored in a separate facility or in a fire rated container that is not collocated with the operational system.'), ('002851','draft','2013-07-20','DISA FSO','policy','Defines the backup information that requires dual authorization for deletion or destruction.','CP-09(07)','N/A','Determine if dual authorization for the deletion or destruction of [CP-09(07)_ODP; backup information for which to enforce dual authorization in order to delete or destroy is defined] is enforced.'), ('002852','draft','2013-07-20','DISA FSO','policy','Enforce dual authorization for the deletion or destruction of organization-defined backup information.','CP-09(07)','N/A','Determine if dual authorization for the deletion or destruction of [CP-09(07)_ODP; backup information for which to enforce dual authorization in order to delete or destroy is defined] is enforced.'), ('002853','draft','2013-07-20','DISA FSO','technical','Provide the capability to employ organization-defined alternative communications protocols in support of maintaining continuity of operations.','CP-11','N/A','Determine if the capability to employ [CP-11_ODP; alternative communications protocols in support of maintaining continuity of operations are defined] are provided in support of maintaining continuity of operations.'), ('002854','draft','2013-07-20','DISA FSO','policy','Defines the alternative communications protocols the system must be capable of providing in support of maintaining continuity of operations.','CP-11','N/A','Determine if the capability to employ [CP-11_ODP; alternative communications protocols in support of maintaining continuity of operations are defined] are provided in support of maintaining continuity of operations.'), ('002855','draft','2013-07-20','DISA FSO','technical','When organization-defined conditions are detected, enters a safe mode of operation with organization-defined restrictions of safe mode of operation.','CP-12','N/A','Determine if a safe mode of operation is entered with [CP-12_ODP[01]; restrictions for safe mode of operation are defined] when [CP-12_ODP[02]; conditions detected to enter a safe mode of operation are defined] are detected.'), ('002856','draft','2013-07-20','DISA FSO','policy','Defines the conditions that, when detected, the system enters a safe mode of operation with organization-defined restrictions of safe mode of operation.','CP-12','N/A','Determine if a safe mode of operation is entered with [CP-12_ODP[01]; restrictions for safe mode of operation are defined] when [CP-12_ODP[02]; conditions detected to enter a safe mode of operation are defined] are detected.'), ('002857','draft','2013-07-20','DISA FSO','policy','Defines the restrictions of the safe mode of operation that the system will enter when organization-defined conditions are detected.','CP-12','N/A','Determine if a safe mode of operation is entered with [CP-12_ODP[01]; restrictions for safe mode of operation are defined] when [CP-12_ODP[02]; conditions detected to enter a safe mode of operation are defined] are detected.'), ('002858','draft','2013-07-20','DISA FSO','policy','Employ organization-defined alternative or supplemental security mechanisms for satisfying organization-defined security functions when the primary means of implementing the security function is unavailable or compromised.','CP-13','N/A','Determine if [CP-13_ODP[01]; alternative or supplemental security mechanisms are defined] are employed for satisfying [CP-13_ODP[02]; security functions are defined] when the primary means of implementing the security function is unavailable or compromised.'), ('002859','draft','2013-07-20','DISA FSO','policy','Defines the alternative or supplemental security mechanisms that will be employed for satisfying organization-defined security functions when the primary means of implementing the security function is unavailable or compromised.','CP-13','N/A','Determine if [CP-13_ODP[01]; alternative or supplemental security mechanisms are defined] are employed for satisfying [CP-13_ODP[02]; security functions are defined] when the primary means of implementing the security function is unavailable or compromised.'), ('002860','draft','2013-07-20','DISA FSO','policy','Defines the security functions that must be satisfied when the primary means of implementing the security function is unavailable or compromised.','CP-13','N/A','Determine if [CP-13_ODP[01]; alternative or supplemental security mechanisms are defined] are employed for satisfying [CP-13_ODP[02]; security functions are defined] when the primary means of implementing the security function is unavailable or compromised.'), ('002861','draft','2013-07-22','DISA FSO','policy','Defines the personnel or roles to whom an organization-level; mission/business process-level; and/or system-level maintenance policy is disseminated.','MA-01a.','N/A','Determine if: - a maintenance policy is developed and documented. - the maintenance policy is disseminated to [MA-01_ODP[01]; personnel or roles to whom the maintenance policy is to be disseminated is/are defined].'), ('002862','draft','2013-07-22','DISA FSO','policy','Defines the personnel or roles to whom system maintenance procedures are to be disseminated.','MA-01a.02','N/A','Determine if: - maintenance procedures to facilitate the implementation of the maintenance policy and associated maintenance controls are developed and documented. - Determine if the maintenance procedures are disseminated to [MA-01_ODP[02]; personnel or roles to whom the maintenance procedures are to be disseminated is/are defined].'), ('002864','draft','2013-07-22','DISA FSO','policy','Produce up-to date, accurate, and complete records of all maintenance requested, scheduled, in process, and completed.','MA-02(02)(b)','N/A','Determine if: - up-to date, accurate, and complete records of all maintenance actions requested, scheduled, in process, and completed are produced. - up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed are produced. - up-to date, accurate, and complete records of all replacement actions requested, scheduled, in process, and completed are produced.'), ('002865','draft','2013-07-22','DISA FSO','policy','Produce up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed.','MA-02(02)(b)','N/A','Determine if: - up-to date, accurate, and complete records of all maintenance actions requested, scheduled, in process, and completed are produced. - up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed are produced. - up-to date, accurate, and complete records of all replacement actions requested, scheduled, in process, and completed are produced.'), ('002866','draft','2013-07-22','DISA FSO','policy','Schedule maintenance on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002868','draft','2013-07-22','DISA FSO','policy','Document records of maintenance on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002869','draft','2013-07-22','DISA FSO','policy','Review records of maintenance on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002870','draft','2013-07-22','DISA FSO','policy','Schedule repair on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002872','draft','2013-07-22','DISA FSO','policy','Document repair on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002873','draft','2013-07-22','DISA FSO','policy','Review records of repairs on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('002874','draft','2013-07-22','DISA FSO','policy','Defines the personnel or roles who can explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance, repairs or replacement.','MA-02c.','N/A','Determine if [MA-02_ODP[01]; personnel or roles required to explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance or repairs is/are defined] is/are required to explicitly approve the removal of the system or system components from organizational facilities for off-site maintenance, repair, or replacement.'), ('002875','draft','2013-07-22','DISA FSO','policy','Include organization-defined information in organizational maintenance records.','MA-02f.','N/A','Determine if [MA-02_ODP[03]; information to be included in organizational maintenance records is defined] is included in organizational maintenance records.'), ('002876','draft','2013-07-22','DISA FSO','policy','Defines the information to include in organizational maintenance records.','MA-02f.','N/A','Determine if [MA-02_ODP[03]; information to be included in organizational maintenance records is defined] is included in organizational maintenance records.'), ('002882','draft','2013-07-22','DISA FSO','policy','Defines the personnel or roles who can provide an exemption that explicitly authorizes removal of equipment from the facility.','MA-03(03)(d)','N/A','Determine if the removal of maintenance equipment containing organizational information is prevented by obtaining an exemption from [MA-03(03)_ODP; personnel or roles who can authorize removal of equipment from the facility is/are defined] explicitly authorizing removal of the equipment from the facility.'), ('002883','draft','2013-07-22','DISA FSO','technical','Restrict the use of maintenance tools to authorized personnel only.','MA-03(04)','N/A','Determine if the use of maintenance tools is restricted to authorized personnel only.'), ('002884','draft','2013-07-22','DISA FSO','technical','Log organization-defined audit events for nonlocal maintenance and diagnostic sessions.','MA-04(01)(a)','N/A','Determine if: - [MA-04(01)_ODP[01]; audit events to be logged for nonlocal maintenance are defined] are logged for nonlocal maintenance sessions. - [MA-04(01)_ODP[02]; audit events to be logged for diagnostic sessions are defined] are logged for nonlocal diagnostic sessions.'), ('002885','draft','2013-07-22','DISA FSO','policy','Defines the audit events for logged for nonlocal maintenance and diagnostic sessions.','MA-04(01)(a)','N/A','Determine if: - [MA-04(01)_ODP[01]; audit events to be logged for nonlocal maintenance are defined] are logged for nonlocal maintenance sessions. - [MA-04(01)_ODP[02]; audit events to be logged for diagnostic sessions are defined] are logged for nonlocal diagnostic sessions.'), ('002886','draft','2013-07-22','DISA FSO','policy','Review the audit records of the maintenance and diagnostic sessions to detect anomalous behavior.','MA-04(01)(b)','N/A','Determine if: - the audit records of the maintenance sessions are reviewed to detect anomalous behavior. - the audit records of the diagnostic sessions are reviewed to detect anomalous behavior.'), ('002887','draft','2013-07-22','DISA FSO','policy','Defines the authenticators that are replay resistant which will be employed to protect nonlocal maintenance sessions.','MA-04(04)(a)','N/A','Determine if nonlocal maintenance sessions are protected by employing [MA-04(04)_ODP; authenticators that are replay resistant are defined].'), ('002888','draft','2013-07-22','DISA FSO','policy','Defines the personnel or roles authorized to approve each nonlocal maintenance session.','MA-04(05)(a)','N/A','Determine if the approval of each nonlocal maintenance session is required by [MA-04(05)_ODP[01]; personnel or roles required to approve each nonlocal maintenance session is/are defined].'), ('002889','draft','2013-07-22','DISA FSO','policy','Notify organization-defined personnel or roles of the date and time of planned nonlocal maintenance.','MA-04(05)(b)','N/A','Determine if [MA-04(05)_ODP[02]; personnel and roles to be notified of the date and time of planned nonlocal maintenance is/are defined] is/are notified of the date and time of planned nonlocal maintenance.'), ('002890','draft','2013-07-22','DISA FSO','technical','Implement organization-defined cryptographic mechanisms to protect the integrity of nonlocal maintenance and diagnostic communications.','MA-04(06)','N/A','Determine if: - [MA-04(06)_ODP; cryptographic mechanisms to be implemented to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications are defined] are implemented to protect the integrity of nonlocal maintenance and diagnostic communications. - [MA-04(06)_ODP; cryptographic mechanisms to be implemented to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications are defined] are implemented to protect the confidentiality of nonlocal maintenance and diagnostic communications.'), ('002891','draft','2013-07-22','DISA FSO','technical','Verify session and network connection termination after the completion of nonlocal maintenance and diagnostic sessions.','MA-04(07)','N/A','Determine if: - session connection termination is verified after the completion of nonlocal maintenance and diagnostic sessions. - network connection termination is verified after the completion of nonlocal maintenance and diagnostic sessions.'), ('002893','draft','2013-07-22','DISA FSO','policy','Ensure that non-escorted personnel performing maintenance activities not directly associated with the system but in the physical proximity of the system, have required access authorization.','MA-05(05)','N/A','Determine if non-escorted personnel performing maintenance activities not directly associated with the system but in the physical proximity of the system have required access authorizations.'), ('002894','draft','2013-07-22','DISA FSO','policy','Verify that non-escorted personnel performing maintenance on the system possess the required access authorizations.','MA-05b.','N/A','Determine if non-escorted personnel performing maintenance on the system possess the required access authorizations.'), ('002895','draft','2013-07-22','DISA FSO','policy','Designate organizational personnel with required access authorizations and technical competence to supervise the maintenance activities of personnel who do not possess the required access authorizations.','MA-05c.','N/A','Determine if organizational personnel with required access authorizations and technical competence is/are designated to supervise the maintenance activities of personnel who do not possess the required access authorizations.'), ('002896','draft','2013-07-22','DISA FSO','policy','Defines the system components for which it obtains maintenance support and/or spare parts.','MA-06','N/A','Determine if maintenance support and/or spare parts are obtained for [MA-06_ODP[01]; system components for which maintenance support and/or spare parts are obtained are defined] within [MA-06_ODP[02]; time period within which maintenance support and/or spare parts are to be obtained after a failure are defined] of failure.'), ('002897','draft','2013-07-22','DISA FSO','policy','Defines a time period for obtaining maintenance support and/or spare parts for organization-defined system components after a failure.','MA-06','N/A','Determine if maintenance support and/or spare parts are obtained for [MA-06_ODP[01]; system components for which maintenance support and/or spare parts are obtained are defined] within [MA-06_ODP[02]; time period within which maintenance support and/or spare parts are to be obtained after a failure are defined] of failure.'), ('002898','draft','2013-07-22','DISA FSO','policy','Perform preventive maintenance on organization-defined information system components at organization-defined time intervals.','MA-06(01)','N/A','Determine if preventive maintenance is performed on [MA-06(01)_ODP[01]; system components on which preventive maintenance is to be performed are defined] at [MA-06(01)_ODP[02]; time intervals within which preventive maintenance is to be performed on system components are defined].'), ('002899','draft','2013-07-22','DISA FSO','policy','Defines system components on which to perform preventive maintenance.','MA-06(01)','N/A','Determine if preventive maintenance is performed on [MA-06(01)_ODP[01]; system components on which preventive maintenance is to be performed are defined] at [MA-06(01)_ODP[02]; time intervals within which preventive maintenance is to be performed on system components are defined].'), ('002900','draft','2013-07-22','DISA FSO','policy','Defines time intervals at which to perform preventive maintenance on organization-defined system components.','MA-06(01)','N/A','Determine if preventive maintenance is performed on [MA-06(01)_ODP[01]; system components on which preventive maintenance is to be performed are defined] at [MA-06(01)_ODP[02]; time intervals within which preventive maintenance is to be performed on system components are defined].'), ('002901','draft','2013-07-22','DISA FSO','policy','Perform predictive maintenance on organization-defined system components at organization-defined intervals.','MA-06(02)','N/A','Determine if predictive maintenance is performed on [MA-06(02)_ODP[01]; system components on which predictive maintenance is to be performed are defined] at [MA-06(02)_ODP[02]; time intervals within which predictive maintenance is to be performed are defined].'), ('002902','draft','2013-07-22','DISA FSO','policy','Defines system components on which to perform predictive maintenance.','MA-06(02)','N/A','Determine if predictive maintenance is performed on [MA-06(02)_ODP[01]; system components on which predictive maintenance is to be performed are defined] at [MA-06(02)_ODP[02]; time intervals within which predictive maintenance is to be performed are defined].'), ('002903','draft','2013-07-22','DISA FSO','policy','Defines time intervals at which to perform predictive maintenance on organization-defined system components.','MA-06(02)','N/A','Determine if predictive maintenance is performed on [MA-06(02)_ODP[01]; system components on which predictive maintenance is to be performed are defined] at [MA-06(02)_ODP[02]; time intervals within which predictive maintenance is to be performed are defined].'), ('002904','draft','2013-07-22','DISA FSO','policy','Transfer predictive maintenance data to a maintenance management system using organization-defined automated mechanisms.','MA-06(03)','N/A','Determine if predictive maintenance data is transferred to a maintenance management system using [MA-06(03)_ODP; automated mechanisms used to transfer predictive maintenance data to a maintenance management system are defined].'), ('002906','draft','2013-08-13','DISA FSO','policy','Defines the vulnerability scanning activities in which the system implements privileged access authorization to organization-identified system components.','RA-05(05)','N/A','Determine if privileged access authorization is implemented to [RA-05(05)_ODP[01]; system components to which privileged access is authorized for selected vulnerability scanning activities are defined] for [RA-05(05)_ODP[02]; vulnerability scanning activities selected for privileged access authorization to system components are defined].'), ('002907','draft','2013-08-22','DISA FSO','policy','Defines the system mode to be invoked, such as a full system shutdown, a partial system shutdown, or a degraded operational mode with limited mission or business functionality available, in the event of organization-defined audit logging failures.','AU-05(04)','N/A','Determine if [AU-05(04)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {full system shutdown; partial system shutdown; degraded operational mode with limited mission or business functionality available}] is/are invoked in the event of [AU-05(04)_ODP[02]; audit logging failures that trigger a change in operational mode are defined], unless an alternate audit logging capability exists.'), ('002908','draft','2013-08-27','DISA FSO','policy','Defines the personnel or roles to whom an organization-level; mission/business process-level; and/or system-level physical and environmental protection policy is disseminated.','PE-01a.','N/A','Determine if: - a physical and environmental protection policy is developed and documented. - the physical and environmental protection policy is disseminated to [PE-01_ODP[01]; personnel or roles to whom the physical and environmental protection policy is to be disseminated is/are defined].'), ('002909','draft','2013-08-27','DISA FSO','policy','Defines the personnel or roles to whom the physical and environmental protection procedures are disseminated.','PE-01a.02','N/A','Determine if: - physical and environmental protection procedures to facilitate the implementation of the physical and environmental protection policy and associated physical and environmental protection controls are developed and documented. - the physical and environmental protection procedures are disseminated to [PE-01_ODP[02]; personnel or roles to whom the physical and environmental protection procedures are to be disseminated is/are defined].'), ('002910','draft','2013-08-27','DISA FSO','policy','Approve a list of individuals with authorized access to the facility where the system resides.','PE-02a.','N/A','Determine if: - a list of individuals with authorized access to the facility where the system resides has been developed. - the list of individuals with authorized access to the facility where the system resides has been approved. - the list of individuals with authorized access to the facility where the system resides has been maintained.'), ('002911','draft','2013-08-27','DISA FSO','policy','Maintain a list of individuals with authorized access to the facility where the system resides.','PE-02a.','N/A','Determine if: - a list of individuals with authorized access to the facility where the system resides has been developed. - the list of individuals with authorized access to the facility where the system resides has been approved. - the list of individuals with authorized access to the facility where the system resides has been maintained.'), ('002912','draft','2013-08-27','DISA FSO','policy','Defines a list of acceptable forms of identification for visitor access to the facility where the system resides.','PE-02(02)','N/A','Determine if two forms of identification are required from [PE-02(02)_ODP; a list of acceptable forms of identification for visitor access to the facility where the system resides is defined] for visitor access to the facility where the system resides.'), ('002913','draft','2013-08-27','DISA FSO','policy','Restrict unescorted access to the facility where the system resides to personnel with one or more of the following: security clearances for all information contained within the system; formal access authorizations for all information contained within the system; need for access to all information contained within the system; organization-defined physical access authorizations.','PE-02(03)','N/A','Determine if unescorted access to the facility where the system resides is restricted to personnel with [PE-02(03)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security clearances for all information contained within the system; formal access authorizations for all information contained within the system; need for access to all information contained within the system; [PE-02(03)_ODP[02]; physical access authorizations for unescorted access to the facility where the system resides are defined (if selected)]}].'), ('002914','draft','2013-08-27','DISA FSO','policy','Defines the credentials required for personnel to have unescorted access to the facility where the system resides.','PE-02(03)','N/A','Determine if unescorted access to the facility where the system resides is restricted to personnel with [PE-02(03)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security clearances for all information contained within the system; formal access authorizations for all information contained within the system; need for access to all information contained within the system; [PE-02(03)_ODP[02]; physical access authorizations for unescorted access to the facility where the system resides are defined (if selected)]}].'), ('002915','draft','2013-08-27','DISA FSO','policy','Defines the entry and exit points to the facility where the system resides.',NULL,'N/A',NULL), ('002916','draft','2013-08-27','DISA FSO','policy','Defines the physical access control systems or devices or guards that control ingress and egress to the facility where the system resides.','PE-03a.02','N/A','Determine if physical access authorizations are enforced at [PE-03_ODP[01]; entry and exit points to the facility in which the system resides are defined] by controlling ingress and egress to the facility using [PE-03_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[PE-03_ODP[03]; physical access control systems or devices used to control ingress and egress to the facility are defined (if selected)]; guards}].'), ('002917','draft','2013-08-27','DISA FSO','policy','Maintain physical access audit logs for organization-defined entry/exit points to the facility where the system resides.','PE-03b.','N/A','Determine if physical access audit logs are maintained for [PE-03_ODP[04]; entry or exit points for which physical access logs are maintained are defined].'), ('002918','draft','2013-08-27','DISA FSO','policy','Defines entry and exit points to the facility where the system resides that require physical access audit logs be maintained.','PE-03b.','N/A','Determine if physical access audit logs are maintained for [PE-03_ODP[04]; entry or exit points for which physical access logs are maintained are defined].'), ('002919','draft','2013-08-27','DISA FSO','policy','Control access to areas within the facility designated as publicly accessible by implementing organization-defined access controls.','PE-03c.','N/A','Determine if access to areas within the facility designated as publicly accessible are maintained by implementing [PE-03_ODP[05]; physical access controls to control access to areas within the facility designated as publicly accessible are defined].'), ('002920','draft','2013-08-27','DISA FSO','policy','Defines physical access controls to control access to areas within the facility designated as publicly accessible.','PE-03c.','N/A','Determine if access to areas within the facility designated as publicly accessible are maintained by implementing [PE-03_ODP[05]; physical access controls to control access to areas within the facility designated as publicly accessible are defined].'), ('002921','draft','2013-08-27','DISA FSO','policy','Escort visitors in the facility where the system resides during organization-defined circumstances requiring visitor escorts.','PE-03d.','N/A','Determine if: - visitors are escorted. - visitor activity is controlled [PE-03_ODP[06]; circumstances requiring visitor escorts and control of visitor activity are defined].'), ('002922','draft','2013-08-27','DISA FSO','policy','Defines circumstances requiring visitor escorts in the facility where the system resides.','PE-03d.','N/A','Determine if: - visitors are escorted. - visitor activity is controlled [PE-03_ODP[06]; circumstances requiring visitor escorts and control of visitor activity are defined].'), ('002923','draft','2013-08-27','DISA FSO','policy','Monitor visitor activity in the facility where the system resides during organization-defined circumstances requiring visitor monitoring.','PE-03d.','N/A','Determine if: - visitors are escorted. - visitor activity is controlled [PE-03_ODP[06]; circumstances requiring visitor escorts and control of visitor activity are defined].'), ('002924','draft','2013-08-27','DISA FSO','policy','Define circumstances requiring visitor monitoring in the facility where the system resides.','PE-03d.','N/A','Determine if: - visitors are escorted. - visitor activity is controlled [PE-03_ODP[06]; circumstances requiring visitor escorts and control of visitor activity are defined].'), ('002925','draft','2013-08-27','DISA FSO','policy','Defines the physical access devices to inventory.','PE-03f.','N/A','Determine if [PE-03_ODP[07]; physical access devices to be inventoried are defined] are inventoried [PE-03_ODP[08]; frequency at which to inventory physical access devices is defined].'), ('002926','draft','2013-08-27','DISA FSO','policy','Defines the physical spaces containing one or more components of the system that require physical access authorizations and controls at the facility where the system resides.','PE-03(01)','N/A','Determine if: - physical access authorizations to the system are enforced. - physical access controls are enforced for the facility at [PE-03(01)_ODP; physical spaces containing one or more components of the system are defined].'), ('002927','draft','2013-08-27','DISA FSO','policy','Defines the frequency with which to perform security checks at the physical boundary of the facility or system for exfiltration of information or removal of system components.','PE-03(02)','N/A','Determine if security checks are performed [PE-03(02)_ODP; the frequency at which to perform security checks at the physical perimeter of the facility or system for exfiltration of information or removal of system components is defined] at the physical perimeter of the facility or system for exfiltration of information or removal of system components.'), ('002928','draft','2013-08-27','DISA FSO','policy','Defines anti-tamper technologies to detect and prevent physical tampering or alteration of organization-defined hardware components within the system.','PE-03(05)','N/A','Determine if [PE-03(05)_ODP[01]; anti-tamper technologies to be employed are defined] are employed to [PE-03(05)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {detect; prevent}] physical tampering or alteration of [PE-03(05)_ODP[03]; hardware components to be protected from physical tampering or alteration are defined] within the system.'), ('002929','draft','2013-08-27','DISA FSO','policy','Defines hardware components within the system for which to employ organization-defined security safeguards to detect and prevent physical tampering or alteration.','PE-03(05)','N/A','Determine if [PE-03(05)_ODP[01]; anti-tamper technologies to be employed are defined] are employed to [PE-03(05)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {detect; prevent}] physical tampering or alteration of [PE-03(05)_ODP[03]; hardware components to be protected from physical tampering or alteration are defined] within the system.'), ('002930','draft','2013-08-27','DISA FSO','policy','Defines system distribution and transmission lines within organizational facilities to control physical access to using organization-defined security controls.','PE-04','N/A','Determine if physical access to [PE-04_ODP[01]; system distribution and transmission lines requiring physical access controls are defined] within organizational facilities is controlled using [PE-04_ODP[02]; security controls to be implemented to control physical access to system distribution and transmission lines within the organizational facility are defined].'), ('002931','draft','2013-08-27','DISA FSO','policy','Defines security controls to control physical access to organization-defined system distribution and transmission lines within organizational facilities.','PE-04','N/A','Determine if physical access to [PE-04_ODP[01]; system distribution and transmission lines requiring physical access controls are defined] within organizational facilities is controlled using [PE-04_ODP[02]; security controls to be implemented to control physical access to system distribution and transmission lines within the organizational facility are defined].'), ('002939','draft','2013-08-27','DISA FSO','policy','Monitor physical access to the facility where the system resides to detect and respond to physical security incidents.','PE-06a.','N/A','Determine if physical access to the facility where the system resides is monitored to detect and respond to physical security incidents.'), ('002940','draft','2013-08-27','DISA FSO','policy','Review physical access logs upon occurrence of organization-defined events or potential indications of events.','PE-06b.','N/A','Determine if: - physical access logs are reviewed [PE-06_ODP[01]; the frequency at which to review physical access logs is defined]. - physical access logs are reviewed upon occurrence of [PE-06_ODP[02]; events or potential indication of events requiring physical access logs to be reviewed are defined].'), ('002941','draft','2013-08-27','DISA FSO','policy','Defines events or potential indications of events requiring review of physical access logs.','PE-06b.','N/A','Determine if: - physical access logs are reviewed [PE-06_ODP[01]; the frequency at which to review physical access logs is defined]. - physical access logs are reviewed upon occurrence of [PE-06_ODP[02]; events or potential indication of events requiring physical access logs to be reviewed are defined].'), ('002942','draft','2013-08-27','DISA FSO','policy','Recognize organization-defined classes or types of intrusions, using organization-defined automated mechanisms.','PE-06(02)','N/A','Determine if: - [PE-06(02)_ODP[01]; classes or types of intrusions to be recognized by automated mechanisms are defined] are recognized. - [PE-06(02)_ODP[02]; response actions to be initiated by automated mechanisms when organization-defined classes or types of intrusions are recognized are defined] are initiated using [PE-06(02)_ODP[03]; automated mechanisms used to recognize classes or types of intrusions and initiate response actions (defined in PE-06(02)_ODP) are defined].'), ('002943','draft','2013-08-27','DISA FSO','policy','Defines the classes or types of intrusions to recognize using automated mechanisms.','PE-06(02)','N/A','Determine if: - [PE-06(02)_ODP[01]; classes or types of intrusions to be recognized by automated mechanisms are defined] are recognized. - [PE-06(02)_ODP[02]; response actions to be initiated by automated mechanisms when organization-defined classes or types of intrusions are recognized are defined] are initiated using [PE-06(02)_ODP[03]; automated mechanisms used to recognize classes or types of intrusions and initiate response actions (defined in PE-06(02)_ODP) are defined].'), ('002944','draft','2013-08-27','DISA FSO','policy','Initiate organization-defined response actions to organization-defined classes or types of intrusions, using organization-defined automated mechanisms.','PE-06(02)','N/A','Determine if: - [PE-06(02)_ODP[01]; classes or types of intrusions to be recognized by automated mechanisms are defined] are recognized. - [PE-06(02)_ODP[02]; response actions to be initiated by automated mechanisms when organization-defined classes or types of intrusions are recognized are defined] are initiated using [PE-06(02)_ODP[03]; automated mechanisms used to recognize classes or types of intrusions and initiate response actions (defined in PE-06(02)_ODP) are defined].'), ('002945','draft','2013-08-27','DISA FSO','policy','Defines the response actions to initiate when organization-defined classes or types of intrusions are recognized.','PE-06(02)','N/A','Determine if: - [PE-06(02)_ODP[01]; classes or types of intrusions to be recognized by automated mechanisms are defined] are recognized. - [PE-06(02)_ODP[02]; response actions to be initiated by automated mechanisms when organization-defined classes or types of intrusions are recognized are defined] are initiated using [PE-06(02)_ODP[03]; automated mechanisms used to recognize classes or types of intrusions and initiate response actions (defined in PE-06(02)_ODP) are defined].'), ('002946','draft','2013-08-27','DISA FSO','policy','Employ video surveillance of organization-defined operational areas.','PE-06(03)(a)','N/A','Determine if video surveillance of [PE-06(03)_ODP[01]; operational areas where video surveillance is to be employed are defined] is employed.'), ('002947','draft','2013-08-27','DISA FSO','policy','Defines the operational areas in which to employ video surveillance.','PE-06(03)(a)','N/A','Determine if video surveillance of [PE-06(03)_ODP[01]; operational areas where video surveillance is to be employed are defined] is employed.'), ('002948','draft','2013-08-27','DISA FSO','policy','Retain video surveillance recordings for an organization-defined time period.','PE-06(03)(c)','N/A','Determine if video recordings are retained for [PE-06(03)_ODP[03]; time period for which to retain video recordings is defined].'), ('002949','draft','2013-08-27','DISA FSO','policy','Defines the time period to retain video surveillance recordings.','PE-06(03)(c)','N/A','Determine if video recordings are retained for [PE-06(03)_ODP[03]; time period for which to retain video recordings is defined].'), ('002950','draft','2013-08-27','DISA FSO','policy','Monitor physical access to the system in addition to the physical access monitoring of the facility as organization-defined physical spaces containing one or more components of the system.','PE-06(04)','N/A','Determine if physical access to the system is monitored in addition to the physical access monitoring of the facility at [PE-06(04)_ODP; physical spaces containing one or more components of the system are defined].'), ('002951','draft','2013-08-27','DISA FSO','policy','Defines physical spaces containing one or more components of the system in which physical access is monitored.','PE-06(04)','N/A','Determine if physical access to the system is monitored in addition to the physical access monitoring of the facility at [PE-06(04)_ODP; physical spaces containing one or more components of the system are defined].'), ('002952','draft','2013-08-27','DISA FSO','policy','Defines the time period to maintain visitor access records to the facility where the system resides.','PE-08a.','N/A','Determine if visitor access records for the facility where the system resides are maintained for [PE-08_ODP[01]; time period for which to maintain visitor access records for the facility where the system resides is defined].'), ('002953','draft','2013-08-27','DISA FSO','policy','Employ redundant power cabling paths that are physically separated by an organization-defined distance.','PE-09(01)','N/A','Determine if redundant power cabling paths that are physically separated by [PE-09(01)_ODP; distance by which redundant power cabling paths are to be physically separated is defined] are employed.'), ('002954','draft','2013-08-27','DISA FSO','policy','Defines the distance by which to physically separate redundant power cabling paths.','PE-09(01)','N/A','Determine if redundant power cabling paths that are physically separated by [PE-09(01)_ODP; distance by which redundant power cabling paths are to be physically separated is defined] are employed.'), ('002955','draft','2013-08-29','DISA FSO','policy','Provide an uninterruptible power supply to facilitate an orderly shutdown of the system, and/or transition of the system to long-term alternate power in the event of a primary power source loss.','PE-11','N/A','Determine if an uninterruptible power supply is provided to facilitate [PE-11_ODP; one of the following PARAMETER VALUES is selected: {an orderly shutdown of the system; transition of the system to long-term alternate power}] in the event of a primary power source loss.'), ('002956','draft','2013-08-29','DISA FSO','policy','Provide an alternate power supply for the system that is activated manually or automatically and that is self-contained.','PE-11(02)(a)','N/A','Determine if the alternate power supply provided for the system is self-contained.'), ('002957','draft','2013-08-29','DISA FSO','policy','Provide an alternate power supply for the system that is activated manually or automatically and that is not reliant on external power generation.','PE-11(02)(b)','N/A','Determine if the alternate power supply provided for the system is not reliant on external power generation.'), ('002958','draft','2013-08-29','DISA FSO','policy','Provide an alternate power supply for the system that is activated manually or automatically and that is capable of maintaining minimally required operational capability or full operational capability in the event of an extended loss of the primary power source.','PE-11(02)(c)','N/A','Determine if the alternate power supply provided for the system is capable of maintaining [PE-11(02)_ODP[02]; one of the following PARAMETER VALUES is selected: {minimally required operational capability; full operational capability}] in the event of an extended loss of the primary power source.'), ('002959','draft','2013-08-29','DISA FSO','policy','Provide emergency lighting for all areas within the facility supporting essential mission functions.','PE-12(01)','N/A','Determine if emergency lighting is provided for all areas within the facility supporting essential mission and business functions.'), ('002960','draft','2013-08-29','DISA FSO','policy','Provide emergency lighting for all areas within the facility supporting essential business functions.','PE-12(01)','N/A','Determine if emergency lighting is provided for all areas within the facility supporting essential mission and business functions.'), ('002961','draft','2013-08-29','DISA FSO','policy','Employ fire detection systems for the system that activate automatically.','PE-13(01)','N/A','Determine if: - fire detection systems that activate automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed in the event of a fire.'), ('002962','draft','2013-08-29','DISA FSO','policy','Employ fire detection systems for the system that automatically activate to notify organization-defined personnel or roles and organization-defined emergency responders in the event of a fire.','PE-13(01)','N/A','Determine if: - fire detection systems that activate automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed in the event of a fire.'), ('002963','draft','2013-08-29','DISA FSO','policy','Defines the personnel or roles to be notified in the event of a fire.','PE-13(01)','N/A','Determine if: - fire detection systems that activate automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed in the event of a fire.'), ('002964','draft','2013-08-29','DISA FSO','policy','Defines the emergency responders to be notified in the event of a fire.','PE-13(01)','N/A','Determine if: - fire detection systems that activate automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed in the event of a fire. - fire detection systems that notify [PE-13(01)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed in the event of a fire.'), ('002965','draft','2013-08-29','DISA FSO','policy','Employ fire suppression systems that activate automatically and notify organization-defined personnel or roles and organization-defined emergency responders.','PE-13(02)(a)','N/A','Determine if: - fire suppression systems that activate automatically are employed. - fire suppression systems that notify [PE-13(02)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed. - fire suppression systems that notify [PE-13(02)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed.'), ('002966','draft','2013-08-29','DISA FSO','policy','Defines the personnel or roles to be automatically notified of any activation of fire suppression systems.','PE-13(02)(a)','N/A','Determine if: - fire suppression systems that activate automatically are employed. - fire suppression systems that notify [PE-13(02)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed. - fire suppression systems that notify [PE-13(02)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed.'), ('002967','draft','2013-08-29','DISA FSO','policy','Defines the emergency responders to be automatically notified of any activation of fire suppression systems.','PE-13(02)(a)','N/A','Determine if: - fire suppression systems that activate automatically are employed. - fire suppression systems that notify [PE-13(02)_ODP[01]; personnel or roles to be notified in the event of a fire is/are defined] automatically are employed. - fire suppression systems that notify [PE-13(02)_ODP[02]; emergency responders to be notified in the event of a fire are defined] automatically are employed.'), ('002968','draft','2013-08-29','DISA FSO','policy','Ensure that the facility undergoes, on an organization-defined frequency, fire protection inspections by authorized and qualified inspectors.','PE-13(04)','N/A','Determine if: - the facility undergoes fire protection inspections [PE-13(04)_ODP[01]; the frequency for conducting fire protection inspections on the facility is defined] by authorized and qualified inspectors. - the identified deficiencies from fire protection inspections are resolved within [PE-13(04)_ODP[02]; a time period for resolving deficiencies identified by fire protection inspections is defined].'), ('002969','draft','2013-08-29','DISA FSO','policy','Defines a frequency with which the facility undergoes fire protection inspections.','PE-13(04)','N/A','Determine if: - the facility undergoes fire protection inspections [PE-13(04)_ODP[01]; the frequency for conducting fire protection inspections on the facility is defined] by authorized and qualified inspectors. - the identified deficiencies from fire protection inspections are resolved within [PE-13(04)_ODP[02]; a time period for resolving deficiencies identified by fire protection inspections is defined].'), ('002970','draft','2013-08-29','DISA FSO','policy','Ensure the identified deficiencies are resolved within an organization-defined time period.','PE-13(04)','N/A','Determine if: - the facility undergoes fire protection inspections [PE-13(04)_ODP[01]; the frequency for conducting fire protection inspections on the facility is defined] by authorized and qualified inspectors. - the identified deficiencies from fire protection inspections are resolved within [PE-13(04)_ODP[02]; a time period for resolving deficiencies identified by fire protection inspections is defined].'), ('002971','draft','2013-08-29','DISA FSO','policy','Defines the time period within which to resolve deficiencies identified during facility fire protection inspections.','PE-13(04)','N/A','Determine if: - the facility undergoes fire protection inspections [PE-13(04)_ODP[01]; the frequency for conducting fire protection inspections on the facility is defined] by authorized and qualified inspectors. - the identified deficiencies from fire protection inspections are resolved within [PE-13(04)_ODP[02]; a time period for resolving deficiencies identified by fire protection inspections is defined].'), ('002973','draft','2013-08-29','DISA FSO','policy','Defines the personnel or roles to be alerted when automated mechanisms detect the presence of water near the system.','PE-15(01)','N/A','Determine if: - the presence of water near the system can be detected automatically. - [PE-15(01)_ODP[01]; personnel or roles to be alerted when the presence of water is detected near the system is/are defined] is/are alerted using [PE-15(01)_ODP[02]; automated mechanisms used to detect the presence of water near the system are defined].'), ('002974','draft','2013-08-29','DISA FSO','policy','Defines types of system components to authorize and control entering and exiting the facility and to maintain records.','PE-16a.','N/A','Determine if: - [PE-16_ODP[01]; types of system components to be authorized and controlled when entering the facility are defined] are authorized when entering the facility. - [PE-16_ODP[01]; types of system components to be authorized and controlled when entering the facility are defined] are controlled when entering the facility. - [PE-16_ODP[02]; types of system components to be authorized and controlled when exiting the facility are defined] are authorized when exiting the facility. - [PE-16_ODP[02]; types of system components to be authorized and controlled when exiting the facility are defined] are controlled when exiting the facility.'), ('002975','draft','2013-08-29','DISA FSO','policy','Defines controls to employ at alternate work sites.','PE-17b.','N/A','Determine if [PE-17_ODP[02]; controls to be employed at alternate work sites are defined] are employed at alternate work sites.'), ('002976','draft','2013-08-29','DISA FSO','policy','Defines physical and environmental hazards that could cause potential damage to system components within the facility.','PE-18','N/A','Determine if system components are positioned within the facility to minimize potential damage from [PE-18_ODP; physical and environmental hazards that could result in potential damage to system components within the facility are defined] and to minimize the opportunity for unauthorized access.'), ('002979','draft','2013-08-29','DISA FSO','policy','Employ organization-defined asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas.','PE-20','N/A','Determine if [PE-20_ODP[01]; asset location technologies to be employed to track and monitor the location and movement of assets is defined] are employed to track and monitor the location and movement of [PE-20_ODP[02]; assets whose location and movement are to be tracked and monitored are defined] within [PE-20_ODP[03]; controlled areas within which asset location and movement are to be tracked and monitored are defined].'), ('002980','draft','2013-08-29','DISA FSO','policy','Defines asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas.','PE-20','N/A','Determine if [PE-20_ODP[01]; asset location technologies to be employed to track and monitor the location and movement of assets is defined] are employed to track and monitor the location and movement of [PE-20_ODP[02]; assets whose location and movement are to be tracked and monitored are defined] within [PE-20_ODP[03]; controlled areas within which asset location and movement are to be tracked and monitored are defined].'), ('002981','draft','2013-08-29','DISA FSO','policy','Defines the assets within the organization-defined controlled areas which are to be tracked and monitored for their location and movement.','PE-20','N/A','Determine if [PE-20_ODP[01]; asset location technologies to be employed to track and monitor the location and movement of assets is defined] are employed to track and monitor the location and movement of [PE-20_ODP[02]; assets whose location and movement are to be tracked and monitored are defined] within [PE-20_ODP[03]; controlled areas within which asset location and movement are to be tracked and monitored are defined].'), ('002982','draft','2013-08-29','DISA FSO','policy','Defines controlled areas where the location and movement of organization-defined assets are tracked and monitored.','PE-20','N/A','Determine if [PE-20_ODP[01]; asset location technologies to be employed to track and monitor the location and movement of assets is defined] are employed to track and monitor the location and movement of [PE-20_ODP[02]; assets whose location and movement are to be tracked and monitored are defined] within [PE-20_ODP[03]; controlled areas within which asset location and movement are to be tracked and monitored are defined].'), ('002984','draft','2013-08-29','DISA FSO','policy','Develop an organization-wide information security program plan that reflects the coordination among organizational entities responsible for information security.','PM-01a.03','N/A','Determine if the information security program plan reflects the coordination among the organizational entities responsible for information security.'), ('002985','draft','2013-08-29','DISA FSO','policy','Disseminate an organization-wide information security program plan that provides an overview of the requirements for the security program and a description of the security program management controls and common controls in place or planned for meeting those requirements.','PM-01a.','N/A','Determine if: - an organization-wide information security program plan is developed. - the information security program plan is disseminated.'), ('002986','draft','2013-08-29','DISA FSO','policy','Disseminate an organization-wide information security program plan that includes the identification and assignment of roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PM-01a.02','N/A','Determine if: - the information security program plan includes the identification and assignment of roles. - the information security program plan includes the identification and assignment of responsibilities. - the information security program plan addresses management commitment. - the information security program plan addresses coordination among organizational entities. - the information security program plan addresses compliance.'), ('002987','draft','2013-08-29','DISA FSO','policy','Disseminate an organization-wide information security plan that reflects the coordination among organizational entities responsible for information security.','PM-01a.','N/A','Determine if: - an organization-wide information security program plan is developed. - the information security program plan is disseminated.'), ('002988','draft','2013-08-29','DISA FSO','policy','Disseminate an organization-wide information security program plan that is approved by a senior official with responsibility and accountability for the risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.','PM-01a.','N/A','Determine if: - an organization-wide information security program plan is developed. - the information security program plan is disseminated.'), ('002989','draft','2013-08-29','DISA FSO','policy','Protect the information security program plan from unauthorized disclosure.','PM-01c.','N/A','Determine if: - the information security program plan is protected from unauthorized disclosure. - the information security program plan is protected from unauthorized modification.'), ('002990','draft','2013-08-29','DISA FSO','policy','Protect the information security program plan from unauthorized modification.','PM-01c.','N/A','Determine if: - the information security program plan is protected from unauthorized disclosure. - the information security program plan is protected from unauthorized modification.'), ('002991','draft','2013-08-29','DISA FSO','policy','Implement a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed.','PM-04a.01','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are maintained.'), ('002993','draft','2013-08-29','DISA FSO','policy','Review plans of action and milestones for the security program and associated organization systems for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-04b.','N/A','Determine if: - plans of action and milestones are reviewed for consistency with the organizational risk management strategy. - plans of action and milestones are reviewed for consistency with organization-wide priorities for risk response actions.'), ('002994','draft','2013-08-29','DISA FSO','policy','Review and update the risk management strategy in accordance with organization-defined frequency or as required, to address organizational changes.','PM-09c.','N/A','Determine if the risk management strategy is reviewed and updated [PM-09_ODP; the frequency at which to review and update the risk management strategy is defined] or as required to address organizational changes.'), ('002995','draft','2013-08-29','DISA FSO','policy','Defines the frequency with which to review and update the risk management strategy to address organizational changes.','PM-09c.','N/A','Determine if the risk management strategy is reviewed and updated [PM-09_ODP; the frequency at which to review and update the risk management strategy is defined] or as required to address organizational changes.'), ('002996','draft','2013-08-29','DISA FSO','policy','Implement an insider threat program that includes a cross-discipline insider threat incident handling team.','PM-12','N/A','Determine if an insider threat program that includes a cross-discipline insider threat incident handling team is implemented.'), ('002997','draft','2013-08-29','DISA FSO','policy','Establish a security workforce development and improvement program.','PM-13','N/A','Determine if: - a security workforce development and improvement program is established. - privacy workforce development and improvement program is established.'), ('002998','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are developed.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('002999','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are maintained.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('003000','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security training activities associated with organizational systems are developed.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('003001','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security training activities associated with organizational systems are maintained.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('003002','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational systems are developed.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('003003','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational systems are maintained.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('003004','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security testing associated with organizational systems continue to be executed.','PM-14a.02','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems continue to be executed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems continue to be executed.'), ('003005','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security training associated with organizational systems continue to be executed.','PM-14a.02','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems continue to be executed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems continue to be executed.'), ('003006','draft','2013-08-29','DISA FSO','policy','Implement a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational systems continue to be executed.','PM-14a.02','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems continue to be executed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems continue to be executed.'), ('003007','draft','2013-08-29','DISA FSO','policy','Review testing plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-14b.','N/A','Determine if: - testing plans are reviewed for consistency with the organizational risk management strategy. - training plans are reviewed for consistency with the organizational risk management strategy. - monitoring plans are reviewed for consistency with the organizational risk management strategy. - testing plans are reviewed for consistency with organization-wide priorities for risk response actions. - training plans are reviewed for consistency with organization-wide priorities for risk response actions. - monitoring plans are reviewed for consistency with organization-wide priorities for risk response actions.'), ('003008','draft','2013-08-29','DISA FSO','policy','Review training plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-14b.','N/A','Determine if: - testing plans are reviewed for consistency with the organizational risk management strategy. - training plans are reviewed for consistency with the organizational risk management strategy. - monitoring plans are reviewed for consistency with the organizational risk management strategy. - testing plans are reviewed for consistency with organization-wide priorities for risk response actions. - training plans are reviewed for consistency with organization-wide priorities for risk response actions. - monitoring plans are reviewed for consistency with organization-wide priorities for risk response actions.'), ('003009','draft','2013-08-29','DISA FSO','policy','Review monitoring plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.','PM-14b.','N/A','Determine if: - testing plans are reviewed for consistency with the organizational risk management strategy. - training plans are reviewed for consistency with the organizational risk management strategy. - monitoring plans are reviewed for consistency with the organizational risk management strategy. - testing plans are reviewed for consistency with organization-wide priorities for risk response actions. - training plans are reviewed for consistency with organization-wide priorities for risk response actions. - monitoring plans are reviewed for consistency with organization-wide priorities for risk response actions.'), ('003010','draft','2013-08-29','DISA FSO','policy','Establish and institutionalize contact with selected groups and associations within the security community to facilitate ongoing security education and training for organizational personnel.','PM-15a.','N/A','Determine if: - contact is established and institutionalized with selected groups and associations within the security community to facilitate ongoing security education and training for organizational personnel. - contact is established and institutionalized with selected groups and associations within the privacy community to facilitate ongoing privacy education and training for organizational personnel.'), ('003011','draft','2013-08-29','DISA FSO','policy','Establish and institutionalize contact with selected groups and associations within the security community to maintain currency with recommended security practices, techniques, and technologies.','PM-15b.','N/A','Determine if: - contact is established and institutionalized with selected groups and associations within the security community to maintain currency with recommended security practices, techniques, and technologies. - contact is established and institutionalized with selected groups and associations within the privacy community to maintain currency with recommended privacy practices, techniques, and technologies.'), ('003012','draft','2013-08-29','DISA FSO','policy','Establish and institutionalize contact with selected groups and associations within the security community to share current security information including threats, vulnerabilities, and incidents.','PM-15c.','N/A','Determine if: - contact is established and institutionalized with selected groups and associations within the security community to share current security information, including threats, vulnerabilities, and incidents. - contact is established and institutionalized with selected groups and associations within the privacy community to share current privacy information, including threats, vulnerabilities, and incidents.'), ('003013','draft','2013-08-29','DISA FSO','policy','Implement a threat awareness program that includes a cross-organization information-sharing capability for threat intelligence.','PM-16','N/A','Determine if a threat awareness program that includes a cross-organization information-sharing capability for threat intelligence is implemented.'), ('003014','draft','2013-08-30','DISA FSO','technical','Enforce organization-defined mandatory access control policies over all subjects and objects.','AC-03(03)','N/A','Determine if: - [AC-03(03)_ODP[01]; mandatory access control policy enforced over the set of covered subjects is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(03)_ODP[02]; mandatory access control policy enforced over the set of covered objects is defined] is enforced over the set of covered objects specified in the policy.'), ('003015','draft','2013-08-30','DISA FSO','policy','Specifies that organization-defined subjects may explicitly be granted organization-defined privileges such that they are not limited by any defined subset (or all) of the above constraints.',NULL,'N/A',NULL), ('003017','draft','2013-09-12','DISA FSO','policy','Defines the personnel or roles to whom an organization-level; mission/business process-level; and/or system-level personnel security policy is disseminated.','PS-01a.','N/A','Determine if: - a personnel security policy is developed and documented. - the personnel security policy is disseminated to [PS-01_ODP[01]; personnel or roles to whom the personnel security policy is to be disseminated is/are defined].'), ('003018','draft','2013-09-12','DISA FSO','policy','Defines the personnel or roles to whom the personnel security procedures are disseminated.','PS-01a.02','N/A','Determine if: - Determine if personnel security procedures to facilitate the implementation of the personnel security policy and associated personnel security controls are developed and documented. - the personnel security procedures are disseminated to [PS-01_ODP[02]; personnel or roles to whom the personnel security procedures are to be disseminated is/are defined].'), ('003019','draft','2013-09-12','DISA FSO','policy','Verify that individuals accessing a system processing, storing, or transmitting information requiring special protection have valid access authorizations that are demonstrated by assigned official government duties.','PS-03(03)(a)','N/A','Determine if individuals accessing a system processing, storing, or transmitting information requiring special protection have valid access authorizations that are demonstrated by assigned official government duties.'), ('003020','draft','2013-09-12','DISA FSO','policy','Verify that individuals accessing a system processing, storing, or transmitting information requiring special protection satisfy organization-defined additional personnel screening criteria.','PS-03(03)(b)','N/A','Determine if individuals accessing a system processing, storing, or transmitting information requiring special protection satisfy [PS-03(03)_ODP; additional personnel screening criteria to be satisfied for individuals accessing a system processing, storing, or transmitting information requiring special protection are defined].'), ('003021','draft','2013-09-12','DISA FSO','policy','Defines additional personnel screening criteria that individuals accessing a system processing, storing, or transmitting information requiring protection must satisfy.','PS-03(03)(b)','N/A','Determine if individuals accessing a system processing, storing, or transmitting information requiring special protection satisfy [PS-03(03)_ODP; additional personnel screening criteria to be satisfied for individuals accessing a system processing, storing, or transmitting information requiring special protection are defined].'), ('003022','draft','2013-09-12','DISA FSO','policy','Defines the time period within which to disable system access upon termination of individual employment.','PS-04a.','N/A','Determine if upon termination of individual employment, system access is disabled within [PS-04_ODP[01]; a time period within which to disable system access is defined].'), ('003023','draft','2013-09-12','DISA FSO','policy','Upon termination of individual employment, terminate or revoke any authenticators and credentials associated with the individual.','PS-04b.','N/A','Determine if upon termination of individual employment, any authenticators and credentials are terminated or revoked.'), ('003024','draft','2013-09-12','DISA FSO','policy','Defines information security topics to be discussed while conducting exit interviews.','PS-04c.','N/A','Determine if upon termination of individual employment, exit interviews that include a discussion of [PS-04_ODP[02]; information security topics to be discussed when conducting exit interviews are defined] are conducted.'), ('003027','draft','2013-09-12','DISA FSO','policy','Notify terminated individuals of applicable, legally binding post-employment requirements for the protection of organizational information.','PS-04(01)(a)','N/A','Determine if terminated individuals are notified of applicable, legally binding post-employment requirements for the protection of organizational information.'), ('003028','draft','2013-09-12','DISA FSO','policy','Require terminated individuals to sign an acknowledgment of post-employment requirements as part of the organizational termination process.','PS-04(01)(b)','N/A','Determine if terminated individuals are required to sign an acknowledgement of post-employment requirements as part of the organizational termination process.'), ('003029','draft','2013-09-12','DISA FSO','policy','Use organization-defined automated mechanisms to notify organization-defined personnel or roles of individual termination actions; and/or disable access to system resources.','PS-04(02)','N/A','Determine if [PS-04(02)_ODP[01]; automated mechanisms to notify personnel or roles of individual termination actions and/or to disable access to system resources are defined] are used to [PS-04(02)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {notify [PS-04(02)_ODP[03]; personnel or roles to be notified upon termination of an individual is/are defined (if selected)] of individual termination actions; disable access to system resources}].'), ('003030','draft','2013-09-12','DISA FSO','policy','Defines the personnel or roles to be notified by automated mechanism of individual termination actions, and/or disable access to system resources.','PS-04(02)','N/A','Determine if [PS-04(02)_ODP[01]; automated mechanisms to notify personnel or roles of individual termination actions and/or to disable access to system resources are defined] are used to [PS-04(02)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {notify [PS-04(02)_ODP[03]; personnel or roles to be notified upon termination of an individual is/are defined (if selected)] of individual termination actions; disable access to system resources}].'), ('003031','draft','2013-09-12','DISA FSO','policy','Modify access authorization as needed to correspond with any changes in operational need due to reassignment or transfer.','PS-05c.','N/A','Determine if access authorization is modified as needed to correspond with any changes in operational need due to reassignment or transfer.'), ('003032','draft','2013-09-12','DISA FSO','policy','Notify organization-defined personnel or roles within an organization-defined time period when individuals are transferred or reassigned to other positions within the organization.','PS-05d.','N/A','Determine if [PS-05_ODP[03]; personnel or roles to be notified when individuals are reassigned or transferred to other positions within the organization is/are defined] are notified within [PS-05_ODP[04]; time period within which to notify organization-defined personnel or roles when individuals are reassigned or transferred to other positions within the organization is defined].'), ('003033','draft','2013-09-12','DISA FSO','policy','Defines personnel or roles to be notified when individuals are transferred or reassigned to other positions within the organization.','PS-05d.','N/A','Determine if [PS-05_ODP[03]; personnel or roles to be notified when individuals are reassigned or transferred to other positions within the organization is/are defined] are notified within [PS-05_ODP[04]; time period within which to notify organization-defined personnel or roles when individuals are reassigned or transferred to other positions within the organization is defined].'), ('003034','draft','2013-09-12','DISA FSO','policy','Defines the time period within which organization-defined personnel or roles are to be notified when individuals are transferred or reassigned to other positions within the organization.','PS-05d.','N/A','Determine if [PS-05_ODP[03]; personnel or roles to be notified when individuals are reassigned or transferred to other positions within the organization is/are defined] are notified within [PS-05_ODP[04]; time period within which to notify organization-defined personnel or roles when individuals are reassigned or transferred to other positions within the organization is defined].'), ('003035','draft','2013-09-12','DISA FSO','policy','Develop and document access agreements for organizational systems.','PS-06a.','N/A','Determine if access agreements are developed and documented for organizational systems.'), ('003038','draft','2013-09-12','DISA FSO','policy','Notify individuals of applicable, legally binding post-employment requirements for protection of organizational information.','PS-06(03)(a)','N/A','Determine if individuals are notified of applicable, legally binding post-employment requirements for the protection of organizational information.'), ('003039','draft','2013-09-12','DISA FSO','policy','Require individuals to sign an acknowledgement of legally binding post-employment requirements for protection of organizational information, if applicable, as part of granting initial access to covered information.','PS-06(03)(b)','N/A','Determine if individuals are required to sign an acknowledgement of applicable, legally binding post-employment requirements as part of being granted initial access to covered information.'), ('003041','draft','2013-09-12','DISA FSO','policy','Require external providers to notify organization-defined personnel or roles of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges, or who have system privileges within an organization-defined time period.','PS-07d.','N/A','Determine if external providers are required to notify [PS-07_ODP[01]; personnel or roles to be notified of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges is/are defined] of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges within [PS-07_ODP[02]; time period within which third-party providers are required to notify organization-defined personnel or roles of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges is defined].'), ('003042','draft','2013-09-12','DISA FSO','policy','Defines personnel or roles whom external providers are to notify when external personnel who possess organizational credentials and /or badges or who have system privileges are transferred or terminated.','PS-07d.','N/A','Determine if external providers are required to notify [PS-07_ODP[01]; personnel or roles to be notified of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges is/are defined] of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges within [PS-07_ODP[02]; time period within which third-party providers are required to notify organization-defined personnel or roles of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges is defined].'), ('003043','draft','2013-09-12','DISA FSO','policy','Defines the time period for external providers to notify organization-defined personnel or roles when external personnel who possess organizational credentials and/or badges, or who have system privileges are transferred or terminated.','PS-07d.','N/A','Determine if external providers are required to notify [PS-07_ODP[01]; personnel or roles to be notified of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges is/are defined] of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges within [PS-07_ODP[02]; time period within which third-party providers are required to notify organization-defined personnel or roles of any personnel transfers or terminations of external personnel who possess organizational credentials and/or badges or who have system privileges is defined].'), ('003044','draft','2013-09-12','DISA FSO','policy','Notify organization-defined personnel or roles within an organization-defined time period when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.','PS-08b.','N/A','Determine if [PS-08_ODP[01]; personnel or roles to be notified when a formal employee sanctions process is initiated is/are defined] is/are notified within [PS-08_ODP[02]; the time period within which organization-defined personnel or roles must be notified when a formal employee sanctions process is initiated is defined] when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.'), ('003045','draft','2013-09-12','DISA FSO','policy','Defines personnel or roles who are to be notified when a formal employee sanctions process is initiated.','PS-08b.','N/A','Determine if [PS-08_ODP[01]; personnel or roles to be notified when a formal employee sanctions process is initiated is/are defined] is/are notified within [PS-08_ODP[02]; the time period within which organization-defined personnel or roles must be notified when a formal employee sanctions process is initiated is defined] when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.'), ('003046','draft','2013-09-12','DISA FSO','policy','Defines the time period within which to notify organization-defined personnel or roles when a formal employee sanctions process is initiated.','PS-08b.','N/A','Determine if [PS-08_ODP[01]; personnel or roles to be notified when a formal employee sanctions process is initiated is/are defined] is/are notified within [PS-08_ODP[02]; the time period within which organization-defined personnel or roles must be notified when a formal employee sanctions process is initiated is defined] when a formal employee sanctions process is initiated, identifying the individual sanctioned and the reason for the sanction.'), ('003047','draft','2013-09-23','DISA FSO','policy','Defines the personnel or roles to whom the planning policy is disseminated.','PL-01a.','N/A','Determine if: - a planning policy is developed and documented. - the planning policy is disseminated to [PL-01_ODP[01]; personnel or roles to whom the planning policy is to be disseminated is/are defined].'), ('003048','draft','2013-09-23','DISA FSO','policy','Defines the personnel or roles to whom the planning procedures are disseminated.','PL-01a.02','N/A','Determine if: - planning procedures to facilitate the implementation of the planning policy and associated planning controls are developed and documented. - the planning procedures are disseminated to [PL-01_ODP[02]; personnel or roles to whom the planning procedures are to be disseminated is/are defined].'), ('003049','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system.',NULL,'N/A',NULL), ('003050','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that are consistent with the organization''s enterprise architecture.','PL-02a.01','N/A','Determine if: - a security plan for the system is developed that is consistent with the organization''s enterprise architecture. - a privacy plan for the system is developed that is consistent with the organization''s enterprise architecture.'), ('003051','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that explicitly defines the authorization boundary for the system.','PL-02a.02','N/A','Determine if: - a security plan for the system is developed that explicitly defines the constituent system components. - a privacy plan for the system is developed that explicitly defines the constituent system components.'), ('003052','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that describes the operational context of the system in terms of missions and business processes.','PL-02a.03','N/A','Determine if: - a security plan for the system is developed that describes the operational context of the system in terms of mission and business processes. - a privacy plan for the system is developed that describes the operational context of the system in terms of mission and business processes.'), ('003053','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that provide the security categorization of the system, including supporting rationale.','PL-02a.06','N/A','Determine if: - a security plan for the system is developed that provides the security categorization of the system, including supporting rationale. - a privacy plan for the system is developed that provides the security categorization of the system, including supporting rationale.'), ('003054','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that describe the operational environment for the system and any dependencies on or connections to, other systems or system components.','PL-02a.09','N/A','Determine if: - a security plan for the system is developed that describes the operational environment for the system and any dependencies on or connections to other systems or system components. - a privacy plan for the system is developed that describes the operational environment for the system and any dependencies on or connections to other systems or system components.'), ('003055','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that provide an overview of the security and privacy requirements for the system.','PL-02a.10','N/A','Determine if: - a security plan for the system is developed that provides an overview of the security requirements for the system. - a privacy plan for the system is developed that provides an overview of the privacy requirements for the system.'), ('003056','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that identify any relevant control baselines or overlays, if applicable.','PL-02a.11','N/A','Determine if: - a security plan for the system is developed that identifies any relevant control baselines or overlays, if applicable. - a privacy plan for the system is developed that identifies any relevant control baselines or overlays, if applicable.'), ('003057','draft','2013-09-23','DISA FSO','policy','Develop security and privacy plans for the system that describe the controls in place or planned for meeting the security and privacy requirements, including a rationale for any tailoring decisions.','PL-02a.12','N/A','Determine if: - a security plan for the system is developed that describes the controls in place or planned for meeting the security requirements, including rationale for any tailoring decisions. - a privacy plan for the system is developed that describes the controls in place or planned for meeting the privacy requirements, including rationale for any tailoring decisions.'), ('003059','draft','2013-09-23','DISA FSO','policy','Distribute copies of the plans to organization-defined personnel or roles.','PL-02b.','N/A','Determine if: - copies of the plans are distributed to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned]. - subsequent changes to the plans are communicated to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned].'), ('003060','draft','2013-09-23','DISA FSO','policy','Defines the personnel or roles to whom copies of the plans are distributed.','PL-02b.','N/A','Determine if: - copies of the plans are distributed to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned]. - subsequent changes to the plans are communicated to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned].'), ('003061','draft','2013-09-23','DISA FSO','policy','Communicate subsequent changes to the plans to organization-defined personnel or roles.','PL-02b.','N/A','Determine if: - copies of the plans are distributed to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned]. - subsequent changes to the plans are communicated to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned].'), ('003062','draft','2013-09-23','DISA FSO','policy','Defines the personnel or roles to whom changes to the plans are communicated.','PL-02b.','N/A','Determine if: - copies of the plans are distributed to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned]. - subsequent changes to the plans are communicated to [PL-02_ODP[02]; personnel or roles to receive distributed copies of the system security and privacy plans is/are assigned].'), ('003063','draft','2013-09-23','DISA FSO','policy','Protect the plans from unauthorized disclosure.','PL-02e.','N/A','Determine if: - plans are protected from unauthorized disclosure. - plans are protected from unauthorized modification.'), ('003064','draft','2013-09-23','DISA FSO','policy','Protect the plans from unauthorized modification.','PL-02e.','N/A','Determine if: - plans are protected from unauthorized disclosure. - plans are protected from unauthorized modification.'), ('003068','draft','2013-09-23','DISA FSO','policy','Review and update the rules of behavior in accordance with organization-defined frequency.','PL-04c.','N/A','Determine if rules of behavior are reviewed and updated [PL-04_ODP[01]; frequency for reviewing and updating the rules of behavior is defined].'), ('003069','draft','2013-09-23','DISA FSO','policy','Defines the frequency with which to review and update the rules of behavior.','PL-04c.','N/A','Determine if rules of behavior are reviewed and updated [PL-04_ODP[01]; frequency for reviewing and updating the rules of behavior is defined].'), ('003070','draft','2013-09-23','DISA FSO','policy','Require individuals who have acknowledged a previous version of the rules of behavior to read and re-acknowledge, on an organization-defined frequency, and/or when the rules of behavior are revised or updated.','PL-04d.','N/A','Determine if individuals who have acknowledged a previous version of the rules of behavior are required to read and reacknowledge [PL-04_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[PL-04_ODP[03]; frequency for individuals to read and re-acknowledge the rules of behavior is defined (if selected)]; when the rules are revised or updated}].'), ('003071','draft','2013-09-23','DISA FSO','policy','Develop a security Concept of Operations (CONOPS) for the system describing how the organization intends to operate the system from the perspective of information security.','PL-07a.','N/A','Determine if a CONOPS for the system describing how the organization intends to operate the system from the perspective of information security and privacy is developed.'), ('003072','draft','2013-09-23','DISA FSO','policy','Develop security architectures for the system.',NULL,'N/A',NULL), ('003073','draft','2013-09-23','DISA FSO','policy','Develop security architectures for the system that describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.','PL-08a.01','N/A','Determine if a security architecture for the system describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.'), ('003074','draft','2013-09-23','DISA FSO','policy','Develop security architectures for the system that describe how the architectures are integrated into and support the enterprise architecture.','PL-08a.03','N/A','Determine if: - a security architecture for the system describes how the architecture is integrated into and supports the enterprise architecture. - a privacy architecture for the system describes how the architecture is integrated into and supports the enterprise architecture.'), ('003075','draft','2013-09-23','DISA FSO','policy','Develop security architectures for the system that describe any assumptions about, and dependencies on, external systems and services.','PL-08a.04','N/A','Determine if: - a security architecture for the system describes any assumptions about and dependencies on external systems and services. - a privacy architecture for the system describes any assumptions about and dependencies on external systems and services.'), ('003076','draft','2013-09-23','DISA FSO','policy','Review and update the architectures in accordance with organization-defined frequency to reflect updates in the enterprise architecture.','PL-08b.','N/A','Determine if changes in the enterprise architecture are reviewed and updated [PL-08_ODP; frequency for review and update to reflect changes in the enterprise architecture] to reflect changes in the enterprise architecture.'), ('003077','draft','2013-09-23','DISA FSO','policy','Defines the frequency with which to review and update the system architecture.','PL-08b.','N/A','Determine if changes in the enterprise architecture are reviewed and updated [PL-08_ODP; frequency for review and update to reflect changes in the enterprise architecture] to reflect changes in the enterprise architecture.'), ('003078','draft','2013-09-23','DISA FSO','policy','Reflect planned security architecture changes in the security plans.','PL-08c.','N/A','Determine if: - planned architecture changes are reflected in the security plan. - planned architecture changes are reflected in the privacy plan. - planned architecture changes are reflected in the Concept of Operations (CONOPS). - planned architecture changes are reflected in criticality analysis. - planned architecture changes are reflected in organizational procedures. - planned architecture changes are reflected in procurements and acquisitions.'), ('003079','draft','2013-09-23','DISA FSO','policy','Reflect planned security architecture changes in the security Concept of Operations (CONOPS).','PL-08c.','N/A','Determine if: - planned architecture changes are reflected in the security plan. - planned architecture changes are reflected in the privacy plan. - planned architecture changes are reflected in the Concept of Operations (CONOPS). - planned architecture changes are reflected in criticality analysis. - planned architecture changes are reflected in organizational procedures. - planned architecture changes are reflected in procurements and acquisitions.'), ('003080','draft','2013-09-23','DISA FSO','policy','Reflect planned security architecture changes in the security organizational procurements and acquisitions.','PL-08c.','N/A','Determine if: - planned architecture changes are reflected in the security plan. - planned architecture changes are reflected in the privacy plan. - planned architecture changes are reflected in the Concept of Operations (CONOPS). - planned architecture changes are reflected in criticality analysis. - planned architecture changes are reflected in organizational procedures. - planned architecture changes are reflected in procurements and acquisitions.'), ('003081','draft','2013-09-23','DISA FSO','policy','Design the security architecture for the system using a defense-in-depth approach that allocates organization-defined controls to organization-defined locations.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('003082','draft','2013-09-23','DISA FSO','policy','Design the security architecture for the system using a defense-in-depth approach that allocates organization-defined controls to organization-defined architectural layers.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('003083','draft','2013-09-23','DISA FSO','policy','Defines the controls to be allocated to organization-defined locations for the security architecture.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('003084','draft','2013-09-23','DISA FSO','policy','Defines the controls to be allocated to organization-defined architectural layers.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('003085','draft','2013-09-23','DISA FSO','policy','Defines the locations to which the system allocates organization-defined controls in the security architecture.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('003086','draft','2013-09-23','DISA FSO','policy','Defines the architectural layers to which the system allocates organization-defined controls in the security architecture.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('003087','draft','2013-09-23','DISA FSO','policy','Design the security architecture for the system using a defense-in-depth approach that ensures that the allocated controls operate in a coordinated and mutually reinforcing manner.','PL-08(01)(b)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that ensures the allocated controls operate in a coordinated and mutually reinforcing manner. - the privacy architecture for the system is designed using a defense-in-depth approach that ensures the allocated controls operate in a coordinated and mutually reinforcing manner.'), ('003088','draft','2013-09-23','DISA FSO','policy','Require that organization-defined controls allocated to organization-defined locations and architectural layers be obtained from different suppliers.','PL-08(02)','N/A','Determine if [PL-08(02)_ODP[01]; controls to be allocated are defined] that are allocated to [PL-08(02)_ODP[02]; locations and architectural layers are defined] are required to be obtained from different suppliers.'), ('003089','draft','2013-09-23','DISA FSO','policy','Defines the personnel or roles to whom the organization-level; mission/business process-level; and/or system-level system and services acquisition policy is disseminated.','SA-01a.','N/A','Determine if: - a system and services acquisition policy is developed and documented. - the system and services acquisition policy is disseminated to [SA-01_ODP[01]; personnel or roles to whom the system and services acquisition policy is to be disseminated is/are defined].'), ('003090','draft','2013-09-23','DISA FSO','policy','Defines the personnel or roles to whom procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are disseminated.','SA-01a.02','N/A','Determine if: - system and services acquisition procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are developed and documented. - the system and services acquisition procedures are disseminated to [SA-01_ODP[02]; personnel or roles to whom the system and services acquisition procedures are to be disseminated is/are defined].'), ('003091','draft','2013-09-23','DISA FSO','policy','Determine the high-level information security requirements for the system or system service in mission and business process planning.','SA-02a.','N/A','Determine if: - the high-level information security requirements for the system or system service are determined in mission and business process planning. - the high-level privacy requirements for the system or system service are determined in mission and business process planning.'), ('003092','draft','2013-09-23','DISA FSO','policy','Defines a system development life cycle that is used to manage the system.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('003093','draft','2013-09-23','DISA FSO','policy','Integrate the organizational information security risk management process into system development life cycle activities.','SA-03d.','N/A','Determine if: - organizational information security risk management processes are integrated into system development life cycle activities. - organizational privacy risk management processes are integrated into system development life cycle activities.'), ('003094','draft','2013-09-23','DISA FSO','policy','Include the security functional requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the system, system component, or system service.','SA-04a.','N/A','Determine if: - security functional requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - privacy functional requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003095','draft','2013-09-23','DISA FSO','policy','Include the strength of mechanism requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04b.','N/A','Determine if strength of mechanism requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003096','draft','2013-09-23','DISA FSO','policy','Include the security assurance requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04c.','N/A','Determine if: - security assurance requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - privacy assurance requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003097','draft','2013-09-23','DISA FSO','policy','Include the security documentation requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04e.','N/A','Determine if: - security documentation requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - privacy documentation requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003098','draft','2013-09-23','DISA FSO','policy','Include the requirements for protecting security documentation, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04f.','N/A','Determine if: - requirements for protecting security documentation, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - requirements for protecting privacy documentation, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003099','draft','2013-09-23','DISA FSO','policy','Include the description of the system development environment and environment in which the system is intended to operate, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04g.','N/A','Determine if the description of the system development environment and environment in which the system is intended to operate, requirements, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003100','draft','2013-09-23','DISA FSO','policy','Include the acceptance criteria, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04i.','N/A','Determine if acceptance criteria requirements and descriptions are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('003101','draft','2013-09-23','DISA FSO','policy','Require the developer of the system, system component, or system service to provide design information for the controls that includes security-relevant external system interfaces, high-level design, low-level design, source code, hardware schematics, and/or organization-defined design information at an organization-defined level of detail.','SA-04(02)','N/A','Determine if the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using [SA-04(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security-relevant external system interfaces; high-level design; low-level design; source code or hardware schematics; [SA-04(02)_ODP[02]; design and implementation information is defined (if selected)]}] at [SA-04(02)_ODP[03]; level of detail is defined].'), ('003102','draft','2013-09-23','DISA FSO','policy','Require the developer of the system, system component, or system service to provide implementation information for the controls that includes security-relevant external system interfaces, high-level design, low-level design, source code, hardware schematics, and/or organization-defined implementation information at an organization-defined level of detail.','SA-04(02)','N/A','Determine if the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using [SA-04(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security-relevant external system interfaces; high-level design; low-level design; source code or hardware schematics; [SA-04(02)_ODP[02]; design and implementation information is defined (if selected)]}] at [SA-04(02)_ODP[03]; level of detail is defined].'), ('003103','draft','2013-09-23','DISA FSO','policy','Defines the design information that the developer of the system, system component, or system service is required to provide for the controls to be designed.','SA-04(02)','N/A','Determine if the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using [SA-04(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security-relevant external system interfaces; high-level design; low-level design; source code or hardware schematics; [SA-04(02)_ODP[02]; design and implementation information is defined (if selected)]}] at [SA-04(02)_ODP[03]; level of detail is defined].'), ('003104','draft','2013-09-23','DISA FSO','policy','Defines the implementation information that the developer of the system, system component, or system service is required to provide for the security controls to be implemented.','SA-04(02)','N/A','Determine if the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using [SA-04(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security-relevant external system interfaces; high-level design; low-level design; source code or hardware schematics; [SA-04(02)_ODP[02]; design and implementation information is defined (if selected)]}] at [SA-04(02)_ODP[03]; level of detail is defined].'), ('003105','draft','2013-09-23','DISA FSO','policy','Defines the level of detail for the design information of the controls that is required to be provided by the developer of the information system, system component, or information system services.','SA-04(02)','N/A','Determine if the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using [SA-04(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security-relevant external system interfaces; high-level design; low-level design; source code or hardware schematics; [SA-04(02)_ODP[02]; design and implementation information is defined (if selected)]}] at [SA-04(02)_ODP[03]; level of detail is defined].'), ('003106','draft','2013-09-23','DISA FSO','policy','Defines the level of detail for the implementation information of the security controls that is required to be provided by the developer of the information system, system component, or information system services.','SA-04(02)','N/A','Determine if the developer of the system, system component, or system service is required to provide design and implementation information for the controls that includes using [SA-04(02)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {security-relevant external system interfaces; high-level design; low-level design; source code or hardware schematics; [SA-04(02)_ODP[02]; design and implementation information is defined (if selected)]}] at [SA-04(02)_ODP[03]; level of detail is defined].'), ('003109','draft','2013-09-23','DISA FSO','policy','Require the developer of the system, system component, or system service to deliver the system, component, or service with organization-defined security configurations implemented.','SA-04(05)(a)','N/A','Determine if the developer of the system, system component, or system service is required to deliver the system, component, or service with [SA-04(05)_ODP; security configurations for the system, component, or service are defined] implemented.'), ('003110','draft','2013-09-23','DISA FSO','policy','Defines the security configurations required to be implemented when the developer delivers the system, system component, or system service.','SA-04(05)(a)','N/A','Determine if the developer of the system, system component, or system service is required to deliver the system, component, or service with [SA-04(05)_ODP; security configurations for the system, component, or service are defined] implemented.'), ('003111','draft','2013-09-23','DISA FSO','policy','Requires the developer of the system, system component, or system service to use the configurations as the default for any subsequent system, component, or service reinstallation or upgrade.','SA-04(05)(b)','N/A','Determine if the configurations are used as the default for any subsequent system, component, or service reinstallation or upgrade.'), ('003112','draft','2013-09-23','DISA FSO','policy','Require the developer of the system, system component, or system service to produce a plan for the continuous monitoring of control effectiveness that is consistent with the continuous monitoring program of the organization.','SA-04(08)','N/A','Determine if the developer of the system, system component, or system service is required to produce a plan for the continuous monitoring of control effectiveness that is consistent with the continuous monitoring program of the organization.'), ('003114','draft','2013-09-23','DISA FSO','policy','Require the developer of the system, system component, or system service to identify the functions, ports, protocols, and services intended for organizational use.','SA-04(09)','N/A','Determine if: - the developer of the system, system component, or system service is required to identify the functions intended for organizational use. - the developer of the system, system component, or system service is required to identify the ports intended for organizational use. - the developer of the system, system component, or system service is required to identify the protocols intended for organizational use. - the developer of the system, system component, or system service is required to identify the services intended for organizational use.'), ('003116','draft','2013-09-23','DISA FSO','policy','Employ only information technology products on the FIPS 201-approved products list for Personal Identity Verification (PIV) capability implemented within organizational systems.','SA-04(10)','N/A','Determine if only information technology products on the FIPS 201-approved products list for the Personal Identity Verification (PIV) capability implemented within organizational systems are employed.'), ('003117','draft','2013-09-23','DISA FSO','policy','Centrally manage organization-defined controls and related processes.','PL-09','N/A','Determine if [PL-09_ODP; security and privacy controls and related processes to be centrally managed are defined] are centrally managed.'), ('003118','draft','2013-09-23','DISA FSO','policy','Defines the controls and related processes to be centrally managed.','PL-09','N/A','Determine if [PL-09_ODP; security and privacy controls and related processes to be centrally managed are defined] are centrally managed.'), ('003119','draft','2013-09-23','DISA FSO','policy','Employ a technical surveillance countermeasures survey at organization-defined locations on an organization-defined frequency or when organization-defined events or indicators occur.','RA-06','N/A','Determine if a technical surveillance countermeasures survey is employed at [RA-06_ODP[01]; locations to employ technical surveillance countermeasure surveys are defined] [RA-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[RA-06_ODP[03]; the frequency at which to employ technical surveillance countermeasure surveys is defined (if selected)]; when [RA-06_ODP[04]; events or indicators which, if they occur, trigger a technical surveillance countermeasures survey are defined (if selected)]}].'), ('003120','draft','2013-09-23','DISA FSO','policy','Defines the locations where technical surveillance countermeasures surveys are to be employed.','RA-06','N/A','Determine if a technical surveillance countermeasures survey is employed at [RA-06_ODP[01]; locations to employ technical surveillance countermeasure surveys are defined] [RA-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[RA-06_ODP[03]; the frequency at which to employ technical surveillance countermeasure surveys is defined (if selected)]; when [RA-06_ODP[04]; events or indicators which, if they occur, trigger a technical surveillance countermeasures survey are defined (if selected)]}].'), ('003121','draft','2013-09-23','DISA FSO','policy','Defines the frequency on which to employ technical surveillance countermeasures surveys.','RA-06','N/A','Determine if a technical surveillance countermeasures survey is employed at [RA-06_ODP[01]; locations to employ technical surveillance countermeasure surveys are defined] [RA-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[RA-06_ODP[03]; the frequency at which to employ technical surveillance countermeasure surveys is defined (if selected)]; when [RA-06_ODP[04]; events or indicators which, if they occur, trigger a technical surveillance countermeasures survey are defined (if selected)]}].'), ('003122','draft','2013-09-23','DISA FSO','policy','Defines the events or indicators upon which technical surveillance countermeasures surveys are to be employed.','RA-06','N/A','Determine if a technical surveillance countermeasures survey is employed at [RA-06_ODP[01]; locations to employ technical surveillance countermeasure surveys are defined] [RA-06_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[RA-06_ODP[03]; the frequency at which to employ technical surveillance countermeasure surveys is defined (if selected)]; when [RA-06_ODP[04]; events or indicators which, if they occur, trigger a technical surveillance countermeasures survey are defined (if selected)]}].'), ('003123','draft','2013-09-24','DISA FSO','technical','Implement organization-defined cryptographic mechanisms to protect the confidentiality of nonlocal maintenance and diagnostic communications.','MA-04(06)','N/A','Determine if: - [MA-04(06)_ODP; cryptographic mechanisms to be implemented to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications are defined] are implemented to protect the integrity of nonlocal maintenance and diagnostic communications. - [MA-04(06)_ODP; cryptographic mechanisms to be implemented to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications are defined] are implemented to protect the confidentiality of nonlocal maintenance and diagnostic communications.'), ('003124','draft','2013-09-30','DISA FSO','policy','Obtain or develop administrator documentation for the system, system component, or system service that describes secure configuration of the system, component, or service.','SA-05a.01','N/A','Determine if: - administrator documentation for the system, system component, or system service that describes the secure configuration of the system, component, or service is obtained or developed. - administrator documentation for the system, system component, or system service that describes the secure installation of the system, component, or service is obtained or developed. - administrator documentation for the system, system component, or system service that describes the secure operation of the system, component, or service is obtained or developed.'), ('003125','draft','2013-09-30','DISA FSO','policy','Obtain or develop administrator documentation for the system, system component, or system service that describes secure installation of the system, component, or service.','SA-05a.01','N/A','Determine if: - administrator documentation for the system, system component, or system service that describes the secure configuration of the system, component, or service is obtained or developed. - administrator documentation for the system, system component, or system service that describes the secure installation of the system, component, or service is obtained or developed. - administrator documentation for the system, system component, or system service that describes the secure operation of the system, component, or service is obtained or developed.'), ('003126','draft','2013-09-30','DISA FSO','policy','Obtain or develop administrator documentation for the system, system component, or system service that describes secure operation of the system, component, or service.','SA-05a.01','N/A','Determine if: - administrator documentation for the system, system component, or system service that describes the secure configuration of the system, component, or service is obtained or developed. - administrator documentation for the system, system component, or system service that describes the secure installation of the system, component, or service is obtained or developed. - administrator documentation for the system, system component, or system service that describes the secure operation of the system, component, or service is obtained or developed.'), ('003127','draft','2013-09-30','DISA FSO','policy','Obtain or develop administrator documentation for the system, system component, or system services that describes effective use and maintenance of security functions and mechanisms.','SA-05a.02','N/A','Determine if: - administrator documentation for the system, system component, or system service that describes the effective use of security functions and mechanisms is obtained or developed. - administrator documentation for the system, system component, or system service that describes the effective maintenance of security functions and mechanisms is obtained or developed. - administrator documentation for the system, system component, or system service that describes the effective use of privacy functions and mechanisms is obtained or developed. - administrator documentation for the system, system component, or system service that describes the effective maintenance of privacy functions and mechanisms is obtained or developed.'), ('003128','draft','2013-09-30','DISA FSO','policy','Obtain or develop administrator documentation for the system, system component, or system service that describes known vulnerabilities regarding configuration and use of administrative or privileged functions.','SA-05a.03','N/A','Determine if: - administrator documentation for the system, system component, or system service that describes known vulnerabilities regarding the configuration of administrative or privileged functions is obtained or developed. - administrator documentation for the system, system component, or system service that describes known vulnerabilities regarding the use of administrative or privileged functions is obtained or developed.'), ('003129','draft','2013-09-30','DISA FSO','policy','Obtain or develop user documentation for the system, system component, or system service that describes user-accessible security functions and mechanisms and how to effectively use those functions and mechanisms.','SA-05b.01','N/A','Determine if: - user documentation for the system, system component, or system service that describes user-accessible security functions and mechanisms is obtained or developed. - user documentation for the system, system component, or system service that describes how to effectively use those (user-accessible security) functions and mechanisms is obtained or developed. - user documentation for the system, system component, or system service that describes user-accessible privacy functions and mechanisms is obtained or developed. - user documentation for the system, system component, or system service that describes how to effectively use those (user-accessible privacy) functions and mechanisms is obtained or developed.'), ('003130','draft','2013-09-30','DISA FSO','policy','Obtain or develop user documentation for the system, system component, or system service that describes methods for user interaction which enables individuals to use the system, component, or service in a more secure manner.','SA-05b.02','N/A','Determine if: - user documentation for the system, system component, or system service that describes methods for user interaction, which enable individuals to use the system, component, or service in a more secure manner is obtained or developed. - user documentation for the system, system component, or system service that describes methods for user interaction, which enable individuals to use the system, component, or service to protect individual privacy is obtained or developed.'), ('003131','draft','2013-09-30','DISA FSO','policy','Obtain or develop user documentation for the system, system component, or system service that describes user responsibilities in maintaining the security of the system, component, or service.','SA-05b.03','N/A','Determine if: - user documentation for the system, system component, or system service that describes user responsibilities for maintaining the security of the system, component, or service is obtained or developed. - user documentation for the system, system component, or system service that describes user responsibilities for maintaining the privacy of individuals is obtained or developed.'), ('003132','draft','2013-09-30','DISA FSO','policy','Take organization-defined actions in response to attempts to obtain either unavailable or nonexistent documentation for the system, system component, or system service.','SA-05c.','N/A','Determine if: - attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent is documented. - after attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent, [SA-05_ODP[01]; actions to take when system, system component, or system service documentation is either unavailable or nonexistent are defined] are taken in response.'), ('003133','draft','2013-09-30','DISA FSO','policy','Defines actions to be taken in response to attempts to obtain either unavailable or nonexistent documentation for the system, system component, or system service.','SA-05c.','N/A','Determine if: - attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent is documented. - after attempts to obtain system, system component, or system service documentation when such documentation is either unavailable or nonexistent, [SA-05_ODP[01]; actions to take when system, system component, or system service documentation is either unavailable or nonexistent are defined] are taken in response.'), ('003135','draft','2013-09-30','DISA FSO','policy','Distribute system, system component, or system service documentation to organization-defined personnel or roles.','SA-05d.','N/A','Determine if documentation is distributed to [SA-05_ODP[02]; personnel or roles to distribute system documentation to is/are defined].'), ('003136','draft','2013-09-30','DISA FSO','policy','Defines the personnel or roles to whom system, system component, or system service documentation is to be distributed.','SA-05d.','N/A','Determine if documentation is distributed to [SA-05_ODP[02]; personnel or roles to distribute system documentation to is/are defined].'), ('003138','draft','2013-09-30','DISA FSO','policy','Employ organization-defined processes, methods, and techniques to monitor control compliance by external service providers on an ongoing basis.','SA-09c.','N/A','Determine if [SA-09_ODP[02]; processes, methods, and techniques employed to monitor control compliance by external service providers are defined] are employed to monitor control compliance by external service providers on an ongoing basis.'), ('003139','draft','2013-09-30','DISA FSO','policy','Defines processes, methods, and techniques to employ to monitor control compliance by external service providers on an ongoing basis.','SA-09c.','N/A','Determine if [SA-09_ODP[02]; processes, methods, and techniques employed to monitor control compliance by external service providers are defined] are employed to monitor control compliance by external service providers on an ongoing basis.'), ('003140','draft','2013-09-30','DISA FSO','policy','Conduct an organizational assessment of risk prior to the acquisition or outsourcing of information security services.','SA-09(01)(a)','N/A','Determine if an organizational assessment of risk is conducted prior to the acquisition or outsourcing of information security services.'), ('003141','draft','2013-09-30','DISA FSO','policy','Verify that the acquisition or outsourcing of dedicated information security services is approved by organization-defined personnel or roles.','SA-09(01)(b)','N/A','Determine if [SA-09(01)_ODP; personnel or roles that approve the acquisition or outsourcing of dedicated information security services is/are defined] approve the acquisition or outsourcing of dedicated information security services.'), ('003142','draft','2013-09-30','DISA FSO','policy','Defines the personnel or roles authorized to approve the acquisition or outsourcing of dedicated information security services.','SA-09(01)(b)','N/A','Determine if [SA-09(01)_ODP; personnel or roles that approve the acquisition or outsourcing of dedicated information security services is/are defined] approve the acquisition or outsourcing of dedicated information security services.'), ('003143','draft','2013-09-30','DISA FSO','policy','Require providers of organization-defined external system services to identify the functions, ports, protocols, and other services required for the use of such services.','SA-09(02)','N/A','Determine if providers of [SA-09(02)_ODP; external system services that require the identification of functions, ports, protocols, and other services are defined] are required to identify the functions, ports, protocols, and other services required for the use of such services.'), ('003144','draft','2013-09-30','DISA FSO','policy','Defines the external system services for which the providers are required to identify the functions, ports, protocols, and other services required for the use of such services.','SA-09(02)','N/A','Determine if providers of [SA-09(02)_ODP; external system services that require the identification of functions, ports, protocols, and other services are defined] are required to identify the functions, ports, protocols, and other services required for the use of such services.'), ('003145','draft','2013-09-30','DISA FSO','policy','Establish trust relationships with external service providers based on organization-defined security requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('003146','draft','2013-09-30','DISA FSO','policy','Document trust relationships with external service providers based on organization-defined security requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('003147','draft','2013-09-30','DISA FSO','policy','Maintain trust relationships with external service providers based on organization-defined security requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('003148','draft','2013-09-30','DISA FSO','policy','Defines security requirements, properties, factors, or conditions defining acceptable trust relationships with external service providers.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('003149','draft','2013-09-30','DISA FSO','policy','Take organization-defined actions to verify that the interests of organization-defined external service providers are consistent with and reflect organizational interests.','SA-09(04)','N/A','Determine if [SA-09(04)_ODP[02]; actions to be taken to verify that the interests of external service providers are consistent with and reflect organizational interests are defined] are taken to verify that the interests of [SA-09(04)_ODP[01]; external service providers are defined] are consistent with and reflect organizational interests.'), ('003150','draft','2013-09-30','DISA FSO','policy','Defines the actions taken to verify that the interests of organization-defined external service providers are consistent with and reflect organizational interests.','SA-09(04)','N/A','Determine if [SA-09(04)_ODP[02]; actions to be taken to verify that the interests of external service providers are consistent with and reflect organizational interests are defined] are taken to verify that the interests of [SA-09(04)_ODP[01]; external service providers are defined] are consistent with and reflect organizational interests.'), ('003151','draft','2013-09-30','DISA FSO','policy','Defines external service providers whose interests are consistent with and reflect organizational interests.','SA-09(04)','N/A','Determine if [SA-09(04)_ODP[02]; actions to be taken to verify that the interests of external service providers are consistent with and reflect organizational interests are defined] are taken to verify that the interests of [SA-09(04)_ODP[01]; external service providers are defined] are consistent with and reflect organizational interests.'), ('003152','draft','2013-09-30','DISA FSO','policy','Restrict the location of information processing, information or data, and/or system services to organization-defined locations based on organization-defined requirements or conditions.','SA-09(05)','N/A','Determine if based on [SA-09(05)_ODP[03]; requirements or conditions for restricting the location of [SA-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {information processing; information or data; system services}] are defined] is/are restricted to [SA-09(05)_ODP[02]; locations where [SA-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {information processing; information or data; system services}] is/are to be restricted are defined].'), ('003153','draft','2013-09-30','DISA FSO','policy','Defines the locations for which to restrict information processing, information or data, and/or system services based on organization-defined requirements or conditions.','SA-09(05)','N/A','Determine if based on [SA-09(05)_ODP[03]; requirements or conditions for restricting the location of [SA-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {information processing; information or data; system services}] are defined] is/are restricted to [SA-09(05)_ODP[02]; locations where [SA-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {information processing; information or data; system services}] is/are to be restricted are defined].'), ('003154','draft','2013-09-30','DISA FSO','policy','Defines the requirements or conditions on which to base restricting the location of information processing, information or data, and/or system services to organization-defined locations.','SA-09(05)','N/A','Determine if based on [SA-09(05)_ODP[03]; requirements or conditions for restricting the location of [SA-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {information processing; information or data; system services}] are defined] is/are restricted to [SA-09(05)_ODP[02]; locations where [SA-09(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {information processing; information or data; system services}] is/are to be restricted are defined].'), ('003155','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to perform configuration management during system, component, or service design, development, implementation, operation and/or disposal.','SA-10a.','N/A','Determine if the developer of the system, system component, or system service is required to perform configuration management during system, component, or service [SA-10_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {design; development; implementation; operation; disposal}].'), ('003156','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to document the integrity of changes to organization-defined configuration items under configuration management.','SA-10b.','N/A','Determine if: - the developer of the system, system component, or system service is required to document the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to manage the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to control the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined].'), ('003157','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to manage the integrity of changes to organization-defined configuration items under configuration management.','SA-10b.','N/A','Determine if: - the developer of the system, system component, or system service is required to document the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to manage the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to control the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined].'), ('003158','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to control the integrity of changes to organization-defined configuration items under configuration management.','SA-10b.','N/A','Determine if: - the developer of the system, system component, or system service is required to document the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to manage the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to control the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined].'), ('003159','draft','2013-09-30','DISA FSO','policy','Defines the configuration items under configuration management that require the integrity of changes to be documented, managed and controlled.','SA-10b.','N/A','Determine if: - the developer of the system, system component, or system service is required to document the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to manage the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined]. - the developer of the system, system component, or system service is required to control the integrity of changes to [SA-10_ODP[02]; configuration items under configuration management are defined].'), ('003160','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to document the potential security impacts of approved changes to the system, component, or service.','SA-10d.','N/A','Determine if: - the developer of the system, system component, or system service is required to document approved changes to the system, component, or service. - the developer of the system, system component, or system service is required to document the potential security impacts of approved changes. - the developer of the system, system component, or system service is required to document the potential privacy impacts of approved changes.'), ('003161','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to track security flaws within the system, component, or service.','SA-10e.','N/A','Determine if: - the developer of the system, system component, or system service is required to track security flaws within the system, component, or service. - the developer of the system, system component, or system service is required to track security flaw resolutions within the system, component, or service. - the developer of the system, system component, or system service is required to report findings to [SA-10_ODP[03]; personnel to whom security flaws and flaw resolutions within the system, component, or service are reported is/are defined].'), ('003162','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to track flaw resolution within the system, component, or service.','SA-10e.','N/A','Determine if: - the developer of the system, system component, or system service is required to track security flaws within the system, component, or service. - the developer of the system, system component, or system service is required to track security flaw resolutions within the system, component, or service. - the developer of the system, system component, or system service is required to report findings to [SA-10_ODP[03]; personnel to whom security flaws and flaw resolutions within the system, component, or service are reported is/are defined].'), ('003163','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to report findings of security flaws and flaw resolution within the system, component, or service to organization-defined personnel.','SA-10e.','N/A','Determine if: - the developer of the system, system component, or system service is required to track security flaws within the system, component, or service. - the developer of the system, system component, or system service is required to track security flaw resolutions within the system, component, or service. - the developer of the system, system component, or system service is required to report findings to [SA-10_ODP[03]; personnel to whom security flaws and flaw resolutions within the system, component, or service are reported is/are defined].'), ('003164','draft','2013-09-30','DISA FSO','policy','Defines the personnel to whom security flaw findings and flaw resolution within the system, component, or service are reported.','SA-10e.','N/A','Determine if: - the developer of the system, system component, or system service is required to track security flaws within the system, component, or service. - the developer of the system, system component, or system service is required to track security flaw resolutions within the system, component, or service. - the developer of the system, system component, or system service is required to report findings to [SA-10_ODP[03]; personnel to whom security flaws and flaw resolutions within the system, component, or service are reported is/are defined].'), ('003165','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to enable integrity verification of hardware components.','SA-10(03)','N/A','Determine if the developer of the system, system component, or system service is required to enable integrity verification of hardware components.'), ('003166','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions.','SA-10(04)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions. - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of source code with previous versions. - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of object code with previous versions. '), ('003167','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to employ tools for comparing newly generated versions of source code with previous versions.','SA-10(04)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions. - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of source code with previous versions. - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of object code with previous versions. '), ('003168','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to employ tools for comparing newly generated versions of object code with previous versions.','SA-10(04)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of security-relevant hardware descriptions with previous versions. - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of source code with previous versions. - the developer of the system, system component, or system service is required to employ tools for comparing newly generated versions of object code with previous versions. '), ('003169','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to maintain the integrity of the mapping between the master build data describing the current version of security-relevant hardware, software, and firmware and the on-site master copy of the data for the current version.','SA-10(05)','N/A','Determine if the developer of the system, system component, or system service is required to maintain the integrity of the mapping between the master build data describing the current version of security-relevant hardware, software, and firmware and the on-site master copy of the data for the current version.'), ('003170','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to execute procedures for ensuring that security-relevant hardware, software, and firmware updates distributed to the organization are exactly as specified by the master copies.','SA-10(06)','N/A','Determine if the developer of the system, system component, or system service is required to execute procedures for ensuring that security-relevant hardware, software, and firmware updates distributed to the organization are exactly as specified by the master copies.'), ('003171','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to develop a plan for ongoing security control assessment.','SA-11a.','N/A','Determine if: - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for privacy assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing privacy assessments.'), ('003172','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to implement a plan for ongoing security control assessment.','SA-11a.','N/A','Determine if: - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for privacy assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing privacy assessments.'), ('003173','draft','2013-09-30','DISA FSO','policy','Requires the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to perform unit, integration, system, and/or regression testing/evaluation on an organization-defined frequency, at an organization-defined depth and coverage.','SA-11b.','N/A','Determine if the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to perform [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation [SA-11_ODP[02]; frequency at which to conduct [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation is defined] at [SA-11_ODP[03]; depth and coverage of [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation is defined].'), ('003174','draft','2013-09-30','DISA FSO','policy','Defines the depth and coverage at which to perform unit, integration, system, and/or regression testing/evaluation on an organization-defined frequency.','SA-11b.','N/A','Determine if the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to perform [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation [SA-11_ODP[02]; frequency at which to conduct [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation is defined] at [SA-11_ODP[03]; depth and coverage of [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation is defined].'), ('003175','draft','2013-09-30','DISA FSO','policy','Requires the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to produce evidence of the execution of the assessment plan.','SA-11c.','N/A','Determine if: - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to produce evidence of the execution of the assessment plan. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to produce the results of the testing and evaluation.'), ('003176','draft','2013-09-30','DISA FSO','policy','Requires the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to produce the results of the testing and evaluation.','SA-11c.','N/A','Determine if: - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to produce evidence of the execution of the assessment plan. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to produce the results of the testing and evaluation.'), ('003177','draft','2013-09-30','DISA FSO','policy','Requires the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to implement a verifiable flaw remediation process.','SA-11d.','N/A','Determine if the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a verifiable flaw remediation process.'), ('003178','draft','2013-09-30','DISA FSO','policy','Requires the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to correct flaws identified during testing/evaluation.','SA-11e.','N/A','Determine if the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to correct flaws identified during testing and evaluation.'), ('003179','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to employ static code analysis tools to identify common flaws.','SA-11(01)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ static code analysis tools to identify common flaws. - the developer of the system, system component, or system service is required to employ static code analysis tools to document the results of the analysis.'), ('003180','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to document the results of static code analysis.','SA-11(01)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ static code analysis tools to identify common flaws. - the developer of the system, system component, or system service is required to employ static code analysis tools to document the results of the analysis.'), ('003181','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to perform threat modeling and vulnerability analyses during development.',NULL,'N/A',NULL), ('003182','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to perform threat modeling and vulnerability analysis during subsequent testing and evaluation of the system, component, or service.',NULL,'N/A',NULL), ('003183','draft','2013-09-30','DISA FSO','policy','Require an independent agent satisfying organization-defined independence criteria to verify the correct implementation of the developer security assessment plan.','SA-11(03)(a)','N/A','Determine if: - an independent agent is required to satisfy [SA-11(03)_ODP; independence criteria to be satisfied by an independent agent are defined] to verify the correct implementation of the developer security assessment plan and the evidence produced during testing and evaluation. - an independent agent is required to satisfy [SA-11(03)_ODP; independence criteria to be satisfied by an independent agent are defined] to verify the correct implementation of the developer privacy assessment plan and the evidence produced during testing and evaluation.'), ('003184','draft','2013-09-30','DISA FSO','policy','Require an independent agent satisfying organization-defined independence criteria to verify the evidence produced during security testing and evaluation.','SA-11(03)(a)','N/A','Determine if: - an independent agent is required to satisfy [SA-11(03)_ODP; independence criteria to be satisfied by an independent agent are defined] to verify the correct implementation of the developer security assessment plan and the evidence produced during testing and evaluation. - an independent agent is required to satisfy [SA-11(03)_ODP; independence criteria to be satisfied by an independent agent are defined] to verify the correct implementation of the developer privacy assessment plan and the evidence produced during testing and evaluation.'), ('003185','draft','2013-09-30','DISA FSO','policy','Defines the independence criteria the independent agent must satisfy prior to verifying the correct implementation of the developer security assessment plan and the evidence produced during security testing and evaluation.','SA-11(03)(a)','N/A','Determine if: - an independent agent is required to satisfy [SA-11(03)_ODP; independence criteria to be satisfied by an independent agent are defined] to verify the correct implementation of the developer security assessment plan and the evidence produced during testing and evaluation. - an independent agent is required to satisfy [SA-11(03)_ODP; independence criteria to be satisfied by an independent agent are defined] to verify the correct implementation of the developer privacy assessment plan and the evidence produced during testing and evaluation.'), ('003186','draft','2013-09-30','DISA FSO','policy','Verify that the independent agent either is provided with sufficient information to complete the verification process or has been granted the authority to obtain such information.','SA-11(03)(b)','N/A','Determine if the independent agent is provided with sufficient information to complete the verification process or granted the authority to obtain such information.'), ('003187','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to perform a manual code review of organization-defined specific code using organization-defined processes, procedures, and/or techniques.','SA-11(04)','N/A','Determine if the developer of the system, system component, or system service is required to perform a manual code review of [SA-11(04)_ODP[01]; specific code requiring manual code review is defined] using [SA-11(04)_ODP[02]; processes, procedures, and/or techniques used for manual code reviews are defined].'), ('003188','draft','2013-09-30','DISA FSO','policy','Defines the specific code for which the developer of the system, system component, or system service is required to perform a manual code review using organization-defined process, procedures, and/or techniques.','SA-11(04)','N/A','Determine if the developer of the system, system component, or system service is required to perform a manual code review of [SA-11(04)_ODP[01]; specific code requiring manual code review is defined] using [SA-11(04)_ODP[02]; processes, procedures, and/or techniques used for manual code reviews are defined].'), ('003189','draft','2013-09-30','DISA FSO','policy','Defines the processes, procedures, and/or techniques to be used by the developer of the system, system component, or system service to perform a manual code review of organization-defined specific code.','SA-11(04)','N/A','Determine if the developer of the system, system component, or system service is required to perform a manual code review of [SA-11(04)_ODP[01]; specific code requiring manual code review is defined] using [SA-11(04)_ODP[02]; processes, procedures, and/or techniques used for manual code reviews are defined].'), ('003191','draft','2013-09-30','DISA FSO','policy','Defines the breadth and depth at which the developer of the system, system component, or system service is required to perform penetration testing.','SA-11(05)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform penetration testing at the following level of rigor: [SA-11(05)_ODP[01]; the breadth of penetration testing is defined]. - the developer of the system, system component, or system service is required to perform penetration testing at the following level of rigor: [SA-11(05)_ODP[02]; the depth of penetration testing is defined].'), ('003192','draft','2013-09-30','DISA FSO','policy','Defines the constraints on penetration testing performed by the developer of the system, system component, or system service.','SA-11(05)(b)','N/A','Determine if the developer of the system, system component, or system service is required to perform penetration testing under [SA-11(05)_ODP[03]; constraints of penetration testing are defined].'), ('003193','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to perform attack surface reviews.','SA-11(06)','N/A','Determine if the developer of the system, system component, or system service is required to perform attack surface reviews.'), ('003194','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to verify that the scope of testing and evaluation provides complete coverage of required controls at an organization-defined depth of testing and evaluation.','SA-11(07)','N/A','Determine if: - the developer of the system, system component, or system service is required to verify that the scope of testing and evaluation provides complete coverage of the required controls at [SA-11(07)_ODP[01]; the breadth of testing and evaluation of required controls is defined]. - the developer of the system, system component, or system service is required to verify that the scope of testing and evaluation provides complete coverage of the required controls at [SA-11(07)_ODP[02]; the depth of testing and evaluation of required controls is defined].'), ('003195','draft','2013-09-30','DISA FSO','policy','Defines the depth of testing and evaluation to which the developer of the system, system component, or system service is required to verify that the scope of security testing and evaluation provides complete coverage of the required controls.','SA-11(07)','N/A','Determine if: - the developer of the system, system component, or system service is required to verify that the scope of testing and evaluation provides complete coverage of the required controls at [SA-11(07)_ODP[01]; the breadth of testing and evaluation of required controls is defined]. - the developer of the system, system component, or system service is required to verify that the scope of testing and evaluation provides complete coverage of the required controls at [SA-11(07)_ODP[02]; the depth of testing and evaluation of required controls is defined].'), ('003196','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to employ dynamic code analysis tools to identify common flaws.','SA-11(08)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ dynamic code analysis tools to identify common flaws. - the developer of the system, system component, or system service is required to document the results of the analysis.'), ('003197','draft','2013-09-30','DISA FSO ','policy','Require the developer of the system, system component, or system service to document the results of the dynamic code analysis.','SA-11(08)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ dynamic code analysis tools to identify common flaws. - the developer of the system, system component, or system service is required to document the results of the analysis.'), ('003233','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process.',NULL,'N/A',NULL), ('003234','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that explicitly addresses security requirements.','SA-15a.01','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process that explicitly addresses security requirements. - the developer of the system, system component, or system service is required to follow a documented development process that explicitly addresses privacy requirements.'), ('003235','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that identifies the standards used in the development process.','SA-15a.02','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process that identifies the standards used in the development process. - the developer of the system, system component, or system service is required to follow a documented development process that identifies the tools used in the development process.'), ('003236','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that identifies the tools used in the development process.','SA-15a.02','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process that identifies the standards used in the development process. - the developer of the system, system component, or system service is required to follow a documented development process that identifies the tools used in the development process.'), ('003237','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that documents the specific tool options and tool configurations used in the development process.','SA-15a.03','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process that documents the specific tool used in the development process. - the developer of the system, system component, or system service is required to follow a documented development process that documents the specific tool configurations used in the development process.'), ('003238','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that documents changes to the process and/or tools used in development.','SA-15a.04','N/A','Determine if the developer of the system, system component, or system service is required to follow a documented development process that documents, manages, and ensures the integrity of changes to the process and/or tools used in development.'), ('003239','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that manages changes to the process and/or tools used in development.','SA-15a.04','N/A','Determine if the developer of the system, system component, or system service is required to follow a documented development process that documents, manages, and ensures the integrity of changes to the process and/or tools used in development.'), ('003240','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to follow a documented development process that ensures the integrity of changes to the process and/or tools used in development.','SA-15a.04','N/A','Determine if the developer of the system, system component, or system service is required to follow a documented development process that documents, manages, and ensures the integrity of changes to the process and/or tools used in development.'), ('003241','draft','2013-09-30','DISA FSO','policy','Review the development process in accordance with organization-defined frequency to determine if the development process selected and employed can satisfy organization-defined security requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('003242','draft','2013-09-30','DISA FSO','policy','Review the development standards in accordance with organization-defined frequency to determine if the development standards selected and employed can satisfy organization-defined security requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('003243','draft','2013-09-30','DISA FSO','policy','Review the development tools in accordance with organization-defined frequency to determine if the development tools selected and employed can satisfy organization-defined security requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('003244','draft','2013-09-30','DISA FSO','policy','Review the development tool options/configurations in accordance with organization-defined frequency to determine if the development tool options and tool configurations selected and employed can satisfy organization-defined security requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('003245','draft','2013-09-30','DISA FSO','policy','Defines the frequency on which to review the development process, standards, tools, and tool options/configurations to determine if the process, standards, tools, and tool options and tool configurations selected and employed can satisfy organization-defined security requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('003246','draft','2013-09-30','DISA FSO','policy','Defines the security requirements that must be satisfied by conducting a review of the development process, standards, tools, and tool options and tool configurations.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('003247','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to define quality metrics at the beginning of the development process.','SA-15(01)(a)','N/A','Determine if the developer of the system, system component, or system service is required to define quality metrics at the beginning of the development process.'), ('003248','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to provide evidence of meeting the quality metrics in accordance with organization-defined frequency, organization-defined program review milestones, and/or upon delivery.','SA-15(01)(b)','N/A','Determine if the developer of the system, system component, or system service is required to provide evidence of meeting the quality metrics [SA-15(01)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[SA-15(01)_ODP[02]; frequency at which to provide evidence of meeting the quality metrics is defined (if selected)]; [SA-15(01)_ODP[03]; program review milestones are defined (if selected)]; upon delivery}].'), ('003249','draft','2013-09-30','DISA FSO','policy','Defines the frequency on which the developer of the system, system component, or system service is required to provide evidence of meeting the quality metrics.','SA-15(01)(b)','N/A','Determine if the developer of the system, system component, or system service is required to provide evidence of meeting the quality metrics [SA-15(01)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[SA-15(01)_ODP[02]; frequency at which to provide evidence of meeting the quality metrics is defined (if selected)]; [SA-15(01)_ODP[03]; program review milestones are defined (if selected)]; upon delivery}].'), ('003250','draft','2013-09-30','DISA FSO','policy','Defines the program review milestones at which the developer of the information system, system component, or information system service is required to provide evidence of meeting the quality metrics.','SA-15(01)(b)','N/A','Determine if the developer of the system, system component, or system service is required to provide evidence of meeting the quality metrics [SA-15(01)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {[SA-15(01)_ODP[02]; frequency at which to provide evidence of meeting the quality metrics is defined (if selected)]; [SA-15(01)_ODP[03]; program review milestones are defined (if selected)]; upon delivery}].'), ('003251','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to select a security tracking tool for use during the development process.','SA-15(02)','N/A','Determine if: - the developer of the system, system component, or system service is required to select and employ security tracking tools for use during the development process. - the developer of the system, system component, or system service is required to select and employ privacy tracking tools for use during the development process.'), ('003252','draft','2013-09-30','DISA FSO','policy','Require the developer of the system, system component, or system service to employ a security tracking tool for use during the development process.','SA-15(02)','N/A','Determine if: - the developer of the system, system component, or system service is required to select and employ security tracking tools for use during the development process. - the developer of the system, system component, or system service is required to select and employ privacy tracking tools for use during the development process.'), ('003254','draft','2013-09-30','DISA FSO','policy','Defines the breadth/depth of criticality analysis at which the developer of the system, system component, or system service is required to perform a criticality analysis.','SA-15(03)(b)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform a criticality analysis at the following rigor level: [SA-15(03)_ODP[02]; the breadth of criticality analysis is defined]. - the developer of the system, system component, or system service is required to perform a criticality analysis at the following rigor level: [SA-15(03)_ODP[03]; the depth of criticality analysis is defined].'), ('003255','draft','2013-09-30','DISA FSO','policy','Defines decision points in the system development life cycle at which the developer of the system, system component, or system service is required to perform a criticality analysis.','SA-15(03)(a)','N/A','Determine if the developer of the system, system component, or system service is required to perform a criticality analysis at [SA-15(03)_ODP[01]; decision points in the system development life cycle are defined] in the system development life cycle.'), ('003272','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to reduce attack surfaces to organization-defined thresholds.','SA-15(05)','N/A','Determine if the developer of the system, system component, or system service is required to reduce attack surfaces to [SA-15(05)_ODP; thresholds to which attack surfaces are to be reduced are defined].'), ('003273','draft','2013-10-03','DISA FSO','policy','Defines the thresholds to which the developer of the system, system component, or system service is required to reduce attack surfaces.','SA-15(05)','N/A','Determine if the developer of the system, system component, or system service is required to reduce attack surfaces to [SA-15(05)_ODP; thresholds to which attack surfaces are to be reduced are defined].'), ('003274','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to implement an explicit process to continuously improve the development process.','SA-15(06)','N/A','Determine if the developer of the system, system component, or system service is required to implement an explicit process to continuously improve the development process.'), ('003275','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system services, on an organization-defined frequency, to perform an automated vulnerability analysis using organization-defined tools.','SA-15(07)(a)','N/A','Determine if the developer of the system, system component, or system service is required to perform automated vulnerability analysis [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] using [SA-15(07)_ODP[02]; tools used to perform automated vulnerability analysis are defined].'), ('003276','draft','2013-10-03','DISA FSO','policy','Defines the tools the developer of the system, system component, or system services uses to perform an automated vulnerability analysis.','SA-15(07)(a)','N/A','Determine if the developer of the system, system component, or system service is required to perform automated vulnerability analysis [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] using [SA-15(07)_ODP[02]; tools used to perform automated vulnerability analysis are defined].'), ('003277','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system services, on an organization-defined frequency, to determine the exploitation potential for discovered vulnerabilities.','SA-15(07)(b)','N/A','Determine if the developer of the system, system component, or system service is required to determine the exploitation potential for discovered vulnerabilities [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined].'), ('003278','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system services, on an organization-defined frequency, to determine potential risk mitigations for delivered vulnerabilities.','SA-15(07)(c)','N/A','Determine if the developer of the system, system component, or system service is required to determine potential risk mitigations [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] for delivered vulnerabilities.'), ('003279','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system services, on an organization-defined frequency, to deliver the outputs of the tools and results of the vulnerability analysis to organization-defined personnel or roles.','SA-15(07)(d)','N/A','Determine if the developer of the system, system component, or system service is required to deliver the outputs of the tools and results of the analysis [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] to [SA-15(07)_ODP[03]; personnel or roles to whom the outputs of tools and results of the analysis are to be delivered is/are defined].'), ('003280','draft','2013-10-03','DISA FSO','policy','Defines the personnel or roles to whom the outputs of the tools and results of the vulnerability analysis are delivered.','SA-15(07)(d)','N/A','Determine if the developer of the system, system component, or system service is required to deliver the outputs of the tools and results of the analysis [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] to [SA-15(07)_ODP[03]; personnel or roles to whom the outputs of tools and results of the analysis are to be delivered is/are defined].'), ('003281','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to use threat modeling from similar systems, components, or services to inform the current development process.','SA-15(08)','N/A','Determine if: - the developer of the system, system component, or system service is required to use threat modeling from similar systems, components, or services to inform the current development process. - the developer of the system, system component, or system service is required to use vulnerability analyses from similar systems, components, or services to inform the current development process.'), ('003282','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to use vulnerability analysis from similar systems, components, or services to inform the current development process.','SA-15(08)','N/A','Determine if: - the developer of the system, system component, or system service is required to use threat modeling from similar systems, components, or services to inform the current development process. - the developer of the system, system component, or system service is required to use vulnerability analyses from similar systems, components, or services to inform the current development process.'), ('003289','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to provide an incident response plan.','SA-15(10)','N/A','Determine if: - the developer of the system, system component, or system service is required to provide an incident response plan. - the developer of the system, system component, or system service is required to implement an incident response plan. - the developer of the system, system component, or system service is required to test an incident response plan.'), ('003290','draft','2013-10-03','DISA FSO','policy','Require the developer of the system or system component to archive the system or component to be released or delivered together with the corresponding evidence supporting the final security review.','SA-15(11)','N/A','Determine if the developer of the system or system component is required to archive the system or component to be released or delivered together with the corresponding evidence supporting the final security and privacy review.'), ('003291','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to provide organization-defined training on the correct use and operation of the implemented security functions, controls, and/or mechanisms.','SA-16','N/A','Determine if the developer of the system, system component, or system service is required to provide [SA-16_ODP; training on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms provided by the developer of the system, system component, or system service is defined] on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms.'), ('003292','draft','2013-10-03','DISA FSO','policy','Defines the training the developer of the system, system component, or system service is required to provide on the correct use and operation of the implemented security functions, controls, and/or mechanisms.','SA-16','N/A','Determine if the developer of the system, system component, or system service is required to provide [SA-16_ODP; training on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms provided by the developer of the system, system component, or system service is defined] on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms.'), ('003293','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce a design specification and security architecture.',NULL,'N/A',NULL), ('003294','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce a design specification and security architecture that is consistent with and supportive of the organization''s security architecture which is established within and is an integrated part of the organization''s enterprise architecture.','SA-17a.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that are consistent with the organization''s security architecture, which is an integral part the organization''s enterprise architecture. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that are consistent with the organization''s privacy architecture, which is an integral part the organization''s enterprise architecture.'), ('003295','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce a design specification and security architecture that accurately and completely describes the required security functionality.','SA-17b.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that accurately and completely describe the required security functionality and the allocation of controls among physical and logical components. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that accurately and completely describe the required privacy functionality and the allocation of controls among physical and logical components.'), ('003296','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce a design specification and security architecture that accurately and completely describes the allocation of security controls among physical and logical components.','SA-17b.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that accurately and completely describe the required security functionality and the allocation of controls among physical and logical components. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that accurately and completely describe the required privacy functionality and the allocation of controls among physical and logical components.'), ('003297','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce a design specification and security architecture that expresses how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection.','SA-17c.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that express how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that express how individual privacy functions, mechanisms, and services work together to provide required privacy capabilities and a unified approach to protection.'), ('003298','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system to produce, as an integral part of the development process, a formal policy model describing the organization-defined elements of organizational security policy to be enforced.','SA-17(01)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[01]; organizational security policy to be enforced is defined] to be enforced. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[02]; organizational privacy policy to be enforced is defined] to be enforced.'), ('003299','draft','2013-10-03','DISA FSO','policy','Defines the elements of organizational security policy to be described in the formal policy model for enforcement on the system, system component, or system service.','SA-17(01)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[01]; organizational security policy to be enforced is defined] to be enforced. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[02]; organizational privacy policy to be enforced is defined] to be enforced.'), ('003300','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational security policy when implemented.','SA-17(01)(b)','N/A','Determine if: - the developer of the system, system component, or system service is required to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational security policy when implemented. - the developer of the system, system component, or system service is required to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational privacy policy when implemented.'), ('003301','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to define security-relevant hardware.','SA-17(02)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to define security-relevant hardware. - the developer of the system, system component, or system service is required to define security-relevant software. - the developer of the system, system component, or system service is required to define security-relevant firmware. '), ('003303','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to define security-relevant software.','SA-17(02)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to define security-relevant hardware. - the developer of the system, system component, or system service is required to define security-relevant software. - the developer of the system, system component, or system service is required to define security-relevant firmware. '), ('003304','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to define security-relevant firmware.','SA-17(02)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to define security-relevant hardware. - the developer of the system, system component, or system service is required to define security-relevant software. - the developer of the system, system component, or system service is required to define security-relevant firmware. '), ('003305','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to provide a rationale that the definition for security-relevant hardware is complete.','SA-17(02)(b)','N/A','Determine if the developer of the system, system component, or system service is required to provide a rationale that the definition for security-relevant hardware, software, and firmware is complete.'), ('003306','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to provide a rationale that the definition for security-relevant software is complete.','SA-17(02)(b)','N/A','Determine if the developer of the system, system component, or system service is required to provide a rationale that the definition for security-relevant hardware, software, and firmware is complete.'), ('003307','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to provide a rationale that the definition for security-relevant firmware is complete.','SA-17(02)(b)','N/A','Determine if the developer of the system, system component, or system service is required to provide a rationale that the definition for security-relevant hardware, software, and firmware is complete.'), ('003308','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.','SA-17(03)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of error messages. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of effects.'), ('003309','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant software in terms of exceptions, error messages, and effects.','SA-17(03)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of error messages. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of effects.'), ('003310','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce, as an integral part of the development process, a formal top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','SA-17(03)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of error messages. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of effects.'), ('003311','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via proof to the extent feasible with additional informal demonstration as necessary, that the formal top-level specification is consistent with the formal policy model.','SA-17(03)(b)','N/A','Determine if the developer of the system, system component, or system service is required to show proof that the formal top-level specification is consistent with the formal policy model to the extent feasible with additional informal demonstration as necessary.'), ('003312','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant hardware.','SA-17(03)(c)','N/A','Determine if the developer of the system, system component, or system service is required to show via informal demonstration that the formal top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware.'), ('003313','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant software.','SA-17(03)(c)','N/A','Determine if the developer of the system, system component, or system service is required to show via informal demonstration that the formal top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware.'), ('003314','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration, that the formal top-level specification completely covers the interfaces to security-relevant firmware.','SA-17(03)(c)','N/A','Determine if the developer of the system, system component, or system service is required to show via informal demonstration that the formal top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware.'), ('003315','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show that the formal top-level specification is an accurate description of the implemented security-relevant hardware.','SA-17(03)(d)','N/A','Determine if the developer of the system, system component, or system service is required to show that the formal top-level specification is an accurate description of the implemented security-relevant hardware, software, and firmware.'), ('003316','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show that the formal top-level specification is an accurate description of the implemented security-relevant software.','SA-17(03)(d)','N/A','Determine if the developer of the system, system component, or system service is required to show that the formal top-level specification is an accurate description of the implemented security-relevant hardware, software, and firmware.'), ('003317','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show that the formal top-level specification is an accurate description of the implemented security-relevant firmware.','SA-17(03)(d)','N/A','Determine if the developer of the system, system component, or system service is required to show that the formal top-level specification is an accurate description of the implemented security-relevant hardware, software, and firmware.'), ('003318','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to describe the security-relevant hardware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant hardware.','SA-17(03)(e)','N/A','Determine if the developer of the system, system component, or system service is required to describe the security-relevant hardware, software, and firmware mechanisms that are not addressed in the formal top-level specification but are strictly internal to the security-relevant hardware, software, and firmware.'), ('003319','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to describe the security-relevant software mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant software.','SA-17(03)(e)','N/A','Determine if the developer of the system, system component, or system service is required to describe the security-relevant hardware, software, and firmware mechanisms that are not addressed in the formal top-level specification but are strictly internal to the security-relevant hardware, software, and firmware.'), ('003320','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to describe the security-relevant firmware mechanisms not addressed in the formal top-level specification but strictly internal to the security-relevant firmware.','SA-17(03)(e)','N/A','Determine if the developer of the system, system component, or system service is required to describe the security-relevant hardware, software, and firmware mechanisms that are not addressed in the formal top-level specification but are strictly internal to the security-relevant hardware, software, and firmware.'), ('003321','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant hardware in terms of exceptions, error messages, and effects.','SA-17(04)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of error messages. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of effects.'), ('003322','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant software in terms of exceptions, error messages, and effects.','SA-17(04)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of error messages. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of effects.'), ('003323','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant firmware in terms of exceptions, error messages, and effects.','SA-17(04)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of error messages. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce an informal, descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of effects.'), ('003324','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration or convincing argument with formal methods as feasible that the descriptive top-level specification is consistent with the formal policy model.','SA-17(04)(b)','N/A','Determine if the developer of the system, system component, or system service is required to show via [SA-17(04)_ODP; one of the following PARAMETER VALUES is selected: {informal demonstration, convincing argument with formal methods as feasible}] that the descriptive top-level specification is consistent with the formal policy model.'), ('003325','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant hardware.','SA-17(04)(c)','N/A','Determine if the developer of the system, system component, or system service is required to show via informal demonstration that the descriptive top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware.'), ('003326','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant software.','SA-17(04)(c)','N/A','Determine if the developer of the system, system component, or system service is required to show via informal demonstration that the descriptive top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware.'), ('003327','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show via informal demonstration, that the descriptive top-level specification completely covers the interfaces to security-relevant firmware.','SA-17(04)(c)','N/A','Determine if the developer of the system, system component, or system service is required to show via informal demonstration that the descriptive top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware.'), ('003328','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware.','SA-17(04)(d)','N/A','Determine if the developer of the system, system component, or system service is required to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware, software, and firmware.'), ('003329','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant software.','SA-17(04)(d)','N/A','Determine if the developer of the system, system component, or system service is required to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware, software, and firmware.'), ('003330','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant firmware.','SA-17(04)(d)','N/A','Determine if the developer of the system, system component, or system service is required to show that the descriptive top-level specification is an accurate description of the interfaces to security-relevant hardware, software, and firmware.'), ('003331','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to describe the security-relevant hardware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant hardware.','SA-17(04)(e)','N/A','Determine if the developer of the system, system component, or system service is required to describe the security-relevant hardware, software, and firmware mechanisms that are not addressed in the descriptive top-level specification but are strictly internal to the security-relevant hardware, software, and firmware.'), ('003332','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to describe the security-relevant software mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant software.','SA-17(04)(e)','N/A','Determine if the developer of the system, system component, or system service is required to describe the security-relevant hardware, software, and firmware mechanisms that are not addressed in the descriptive top-level specification but are strictly internal to the security-relevant hardware, software, and firmware.'), ('003333','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to describe the security-relevant firmware mechanisms not addressed in the descriptive top-level specification but strictly internal to the security-relevant firmware.','SA-17(04)(e)','N/A','Determine if the developer of the system, system component, or system service is required to describe the security-relevant hardware, software, and firmware mechanisms that are not addressed in the descriptive top-level specification but are strictly internal to the security-relevant hardware, software, and firmware.'), ('003334','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to design and structure the security-relevant hardware to use a complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(05)(a)','N/A','Determine if the developer of the system, system component, or system service is required to design and structure the security-relevant hardware, software, and firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003335','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to design and structure the security-relevant software to use a complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(05)(a)','N/A','Determine if the developer of the system, system component, or system service is required to design and structure the security-relevant hardware, software, and firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003336','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to design and structure the security-relevant firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(05)(a)','N/A','Determine if the developer of the system, system component, or system service is required to design and structure the security-relevant hardware, software, and firmware to use a complete, conceptually simple protection mechanism with precisely defined semantics.'), ('003337','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to internally structure the security-relevant hardware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(05)(b)','N/A','Determine if the developer of the system, system component, or system service is required to internally structure the security-relevant hardware, software, and firmware with specific regard for this mechanism.'), ('003338','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to internally structure the security-relevant software with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(05)(b)','N/A','Determine if the developer of the system, system component, or system service is required to internally structure the security-relevant hardware, software, and firmware with specific regard for this mechanism.'), ('003339','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, system component, or system service to internally structure the security-relevant firmware with specific regard for the complete, conceptually simple protection mechanism with precisely defined semantics.','SA-17(05)(b)','N/A','Determine if the developer of the system, system component, or system service is required to internally structure the security-relevant hardware, software, and firmware with specific regard for this mechanism.'), ('003340','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, component, or system service to structure security-relevant hardware to facilitate testing.','SA-17(06)','N/A','Determine if the developer of the system, system component, or system service is required to structure security-relevant hardware, software, and firmware to facilitate testing.'), ('003341','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, component, or system service to structure security-relevant software to facilitate testing.','SA-17(06)','N/A','Determine if the developer of the system, system component, or system service is required to structure security-relevant hardware, software, and firmware to facilitate testing.'), ('003342','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, component, or system service to structure security-relevant firmware to facilitate testing.','SA-17(06)','N/A','Determine if the developer of the system, system component, or system service is required to structure security-relevant hardware, software, and firmware to facilitate testing.'), ('003343','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, component, or system service to structure security-relevant hardware to facilitate controlling access with least privilege.','SA-17(07)','N/A','Determine if the developer of the system, system component, or system service is required to structure security-relevant hardware, software, and firmware to facilitate controlling access with least privilege.'), ('003344','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, component, or system service to structure security-relevant software to facilitate controlling access with least privilege.','SA-17(07)','N/A','Determine if the developer of the system, system component, or system service is required to structure security-relevant hardware, software, and firmware to facilitate controlling access with least privilege.'), ('003345','draft','2013-10-03','DISA FSO','policy','Require the developer of the system, component, or system service to structure security-relevant firmware to facilitate controlling access with least privilege.','SA-17(07)','N/A','Determine if the developer of the system, system component, or system service is required to structure security-relevant hardware, software, and firmware to facilitate controlling access with least privilege.'), ('003372','draft','2013-10-03','DISA FSO','policy','Define the support from external providers to be provided for alternative sources for continued support for unsupported system components.','SA-22b.','N/A','Determine if [SA-22_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {in-house support; [SA-22_ODP[02]; support from external providers is defined (if selected)]}] provide options for alternative sources for continued support for unsupported components.'), ('003373','draft','2013-10-03','DISA FSO','policy','Provide in-house support and/or organization-defined support from external providers for alternative sources for continued support for unsupported components.','SA-22b.','N/A','Determine if [SA-22_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {in-house support; [SA-22_ODP[02]; support from external providers is defined (if selected)]}] provide options for alternative sources for continued support for unsupported components.'), ('003376','draft','2013-10-03','DISA FSO','policy','Replace system components when support for the components is no longer available from the developer, vendor, or manufacturer.','SA-22a.','N/A','Determine if system components are replaced when support for the components is no longer available from the developer, vendor, or manufacturer.'), ('003381','draft','2013-10-03','DISA FSO','policy','Defines additional personnel screening criteria that must be satisfied by the developer of an organization-defined system, system component, or system service.','SA-21b.','N/A','Determine if the developer of [SA-21_ODP[01]; the system, systems component, or system service that the developer has access to is/are defined] is required to satisfy [SA-21_ODP[03]; additional personnel screening criteria for the developer are defined].'), ('003382','draft','2013-10-03','DISA FSO','policy','Require that the developer of an organization-defined system, system component, or system service satisfies organization-defined additional personnel screening criteria.','SA-21b.','N/A','Determine if the developer of [SA-21_ODP[01]; the system, systems component, or system service that the developer has access to is/are defined] is required to satisfy [SA-21_ODP[03]; additional personnel screening criteria for the developer are defined].'), ('003383','draft','2013-10-03','DISA FSO','policy','Defines the official government duties to be assigned to the developer of an organization-defined system, system component, or system service.','SA-21a.','N/A','Determine if the developer of [SA-21_ODP[01]; the system, systems component, or system service that the developer has access to is/are defined] is required to have appropriate access authorizations as determined by assigned [SA-21_ODP[02]; official government duties assigned to the developer are defined].'), ('003384','draft','2013-10-03','DISA FSO','policy','Defines the system, system component, or system service which requires the system developer to have appropriate access authorizations, satisfy additional personnel screening criteria, and provide information that the access authorizations and screening criteria are satisfied.',NULL,'N/A',NULL), ('003385','draft','2013-10-03','DISA FSO','policy','Require that the developer of an organization-defined system, system component, or system service has appropriate access authorizations as determined by assigned organization-defined official government duties.','SA-21a.','N/A','Determine if the developer of [SA-21_ODP[01]; the system, systems component, or system service that the developer has access to is/are defined] is required to have appropriate access authorizations as determined by assigned [SA-21_ODP[02]; official government duties assigned to the developer are defined].'), ('003386','draft','2013-10-03','DISA FSO','policy','Defines the critical system components to re-implement or custom develop.','SA-20','N/A','Determine if [SA-20_ODP; critical system components to be reimplemented or custom-developed are defined] are reimplemented or custom-developed.'), ('003387','draft','2013-10-03','DISA FSO','policy','Re-implement or custom develops organization-defined critical system components.','SA-20','N/A','Determine if [SA-20_ODP; critical system components to be reimplemented or custom-developed are defined] are reimplemented or custom-developed.'), ('003601','draft','2022-03-01','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level access control policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','AC-01a.01(b)','N/A','Determine if the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('003602','draft','2022-03-01','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','AC-01a.01(a)','N/A','Determine if: - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses purpose. - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses scope. - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses roles. - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses responsibilities. - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses management commitment. - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses coordination among organizational entities. - the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy addresses compliance.'), ('003603','draft','2022-03-01','DISA','policy','Disseminate the organization-level; mission/business process-level; and/or system-level access control policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines to organization-defined personnel or roles.','AC-01a.01(b)','N/A','Determine if the [AC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] access control policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('003604','draft','2022-03-01','DISA','policy','Develop and document procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level access control policy and the associated access control.','AC-01a.02','N/A','Determine if: - access control procedures to facilitate the implementation of the access control policy and associated controls are developed and documented. - the access control procedures are disseminated to [AC-01_ODP[02]; personnel or roles to whom the access control procedures are to be disseminated is/are defined].'), ('003605','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the development and documentation of the access control policy and procedures.','AC-01b.','N/A','Determine if the [AC-01_ODP[04]; an official to manage the access control policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the access control policy and procedures.'), ('003606','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the dissemination of the access control policy and procedures.','AC-01b.','N/A','Determine if the [AC-01_ODP[04]; an official to manage the access control policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the access control policy and procedures.'), ('003607','draft','2022-03-01','DISA','policy','Defines the official designated to manage the development, documentation, and dissemination of the access control policy and procedures.','AC-01b.','N/A','Determine if the [AC-01_ODP[04]; an official to manage the access control policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the access control policy and procedures.'), ('003608','draft','2022-03-01','DISA','policy','Review and update the current access control policy following organization-defined events.','AC-01c.01','N/A','Determine if: - the current access control policy is reviewed and updated [AC-01_ODP[05]; the frequency at which the current access control policy is reviewed and updated is defined]. - the current access control policy is reviewed and updated following [AC-01_ODP[06]; events that would require the current access control policy to be reviewed and updated are defined].'), ('003609','draft','2022-03-01','DISA','policy','Defines the events following reviewing and updating the current access control policy.','AC-01c.01','N/A','Determine if: - the current access control policy is reviewed and updated [AC-01_ODP[05]; the frequency at which the current access control policy is reviewed and updated is defined]. - the current access control policy is reviewed and updated following [AC-01_ODP[06]; events that would require the current access control policy to be reviewed and updated are defined].'), ('003610','draft','2022-03-01','DISA','policy','Review and update the current access control procedures following organization-defined events.','AC-01c.02','N/A','Determine if: - the current access control procedures are reviewed and updated [AC-01_ODP[07]; the frequency at which the current access control procedures are reviewed and updated is defined;]. - the current access control procedures are reviewed and updated following [AC-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('003611','draft','2022-03-01','DISA','policy','Defines the events following reviewing and updating the current access control procedures.','AC-01c.02','N/A','Determine if: - the current access control procedures are reviewed and updated [AC-01_ODP[07]; the frequency at which the current access control procedures are reviewed and updated is defined;]. - the current access control procedures are reviewed and updated following [AC-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('003612','draft','2022-03-01','DISA','policy','Define and document the types of accounts allowed and specifically prohibited for use within the system.','AC-02a.','N/A','Determine if: - account types allowed for use within the system are defined and documented. - account types specifically prohibited for use within the system are defined and documented.'), ('003613','draft','2022-03-01','DISA','policy','Require organization-defined prerequisites and criteria for group membership.','AC-02c.','N/A','Determine if [AC-02_ODP[01]; prerequisites and criteria for group and role membership are defined] for group and role membership are required.'), ('003614','draft','2022-03-01','DISA','policy','Require organization-defined prerequisites and criteria for role membership.','AC-02c.','N/A','Determine if [AC-02_ODP[01]; prerequisites and criteria for group and role membership are defined] for group and role membership are required.'), ('003615','draft','2022-03-01','DISA','policy','Defines the prerequisites and criteria for group and role membership.','AC-02c.','N/A','Determine if [AC-02_ODP[01]; prerequisites and criteria for group and role membership are defined] for group and role membership are required.'), ('003616','draft','2022-03-01','DISA','policy','Defines the attributes (as required) for each account.','AC-02d.03','N/A','Determine if: - access authorizations (i.e., privileges) are specified for each account. - [AC-02_ODP[02]; attributes (as required) for each account are defined] are specified for each account. '), ('003617','draft','2022-03-01','DISA','policy','Create, enable, modify, disable, and remove system accounts in accordance with organization-defined policy.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('003618','draft','2022-03-01','DISA','policy','Create, enable, modify, disable, and remove system accounts in accordance with organization-defined criteria.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('003619','draft','2022-03-01','DISA','policy','Create, enable, modify, disable, and remove system accounts in accordance with organization-defined prerequisites.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('003620','draft','2022-03-01','DISA','policy','Defines the policy to be employed when creating, enabling, modifying, disabling, and removing information system accounts.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('003621','draft','2022-03-01','DISA','policy','Defines the prerequisites to be employed when creating, enabling, modifying, disabling, and removing information system accounts.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('003622','draft','2022-03-01','DISA','policy','Defines the criteria to be employed when creating, enabling, modifying, disabling, and removing information system accounts.','AC-02f.','N/A','Determine if: - accounts are created in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are enabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are modified in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are disabled in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined]. - accounts are removed in accordance with [AC-02_ODP[04]; policy, procedures, prerequisites, and criteria for account creation, enabling, modification, disabling, and removal are defined].'), ('003623','draft','2022-03-01','DISA','policy','Defines the personnel or roles of whom to notify when accounts are no longer required; when users are terminated or transferred; and when system usage or need-to-know changes for an individual.',NULL,'N/A',NULL), ('003624','draft','2022-03-01','DISA','policy','Defines the time period of when to notify account managers for each situation.',NULL,'N/A',NULL), ('003625','draft','2022-03-01','DISA','policy','Defines the attributes (as required) for authorizing access to the system.','AC-02i.03','N/A','Determine if access to the system is authorized based on [AC-02_ODP[09]; attributes needed to authorize system access (as required) are defined].'), ('003626','draft','2022-03-01','DISA','policy','Align account management processes with personnel termination and transfer processes.','AC-02l.','N/A','Determine if: - account management processes are aligned with personnel termination processes. - account management processes are aligned with personnel transfer processes.'), ('003627','draft','2022-03-01','DISA','technical','Disable accounts when the accounts have expired.','AC-02(03)(a)','N/A','Determine if accounts are disabled within [AC-02(03)_ODP[01]; time period within which to disable accounts is defined] when the accounts have expired.'), ('003628','draft','2022-03-01','DISA','technical','Disable accounts when the accounts are no longer associated to a user.','AC-02(03)(b)','N/A','Determine if accounts are disabled within [AC-02(03)_ODP[01]; time period within which to disable accounts is defined] when the accounts are no longer associated with a user or individual.'), ('003629','draft','2022-03-01','DISA','technical','Disable accounts when the accounts are in violation of organizational policy.','AC-02(03)(c)','N/A','Determine if accounts are disabled within [AC-02(03)_ODP[01]; time period within which to disable accounts is defined] when the accounts are in violation of organizational policy.'), ('003630','draft','2022-03-01','DISA','policy','Monitor changes to roles or attributes.','AC-02(07)(c)','N/A','Determine if changes to roles or attributes are monitored.'), ('003631','draft','2022-03-01','DISA','technical','Defines the system accounts that can be dynamically activated.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('003632','draft','2022-03-01','DISA','technical','Activate organization-defined system accounts dynamically.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('003633','draft','2022-03-01','DISA','technical','Defines the system accounts that can be dynamically managed.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('003634','draft','2022-03-01','DISA','technical','Manage organization-defined system accounts dynamically.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('003635','draft','2022-03-01','DISA','technical','Defines the system accounts that can be dynamically deactivated.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('003636','draft','2022-03-01','DISA','technical','Deactivate organization-defined system accounts dynamically.','AC-02(08)','N/A','Determine if: - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are created dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are activated dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are managed dynamically. - [AC-02(08)_ODP; system accounts that are dynamically created, activated, managed, and deactivated are defined] are deactivated dynamically.'), ('003637','draft','2022-03-01','DISA','policy','Defines the significant risks that may be discovered requiring disabled accounts of individuals.','AC-02(13)','N/A','Determine if accounts of individuals are disabled within [AC-02(13)_ODP[01]; time period within which to disable accounts of individuals who are discovered to pose significant risk is defined] of discovery of [AC-02(13)_ODP[02]; significant risks leading to disabling accounts are defined].'), ('003638','draft','2022-03-01','DISA','technical','Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can pass the information to any other subjects or objects.','AC-03(04)(a)','N/A','Determine if [AC-03(04)_ODP[01]; discretionary access control policy enforced over the set of covered subjects is defined] and [AC-03(04)_ODP[02]; discretionary access control policy enforced over the set of covered objects is defined] are enforced where the policy specifies that a subject that has been granted access to information can pass the information to any other subjects or objects.'), ('003639','draft','2022-03-01','DISA','technical','Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can grant its privileges to other subjects.','AC-03(04)(b)','N/A','Determine if [AC-03(04)_ODP[01]; discretionary access control policy enforced over the set of covered subjects is defined] and [AC-03(04)_ODP[02]; discretionary access control policy enforced over the set of covered objects is defined] are enforced where the policy specifies that a subject that has been granted access to information can grant its privileges to other subjects.'), ('003640','draft','2022-03-01','DISA','technical','Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can change security attributes on subjects, objects, the system, or the system''s components.','AC-03(04)(c)','N/A','Determine if [AC-03(04)_ODP[01]; discretionary access control policy enforced over the set of covered subjects is defined] and [AC-03(04)_ODP[02]; discretionary access control policy enforced over the set of covered objects is defined] are enforced where the policy specifies that a subject that has been granted access to information can change security attributes on subjects, objects, the system, or the system''s components.'), ('003641','draft','2022-03-01','DISA','technical','Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can choose the security attributes to be associated with newly created or revised objects.','AC-03(04)(d)','N/A','Determine if [AC-03(04)_ODP[01]; discretionary access control policy enforced over the set of covered subjects is defined] and [AC-03(04)_ODP[02]; discretionary access control policy enforced over the set of covered objects is defined] are enforced where the policy specifies that a subject that has been granted access to information can choose the security attributes to be associated with newly created or revised objects.'), ('003642','draft','2022-03-01','DISA','technical','Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can change the rules governing access control.','AC-03(04)(e)','N/A','Determine if [AC-03(04)_ODP[01]; discretionary access control policy enforced over the set of covered subjects is defined] and [AC-03(04)_ODP[02]; discretionary access control policy enforced over the set of covered objects is defined] are enforced where the policy specifies that a subject that has been granted access to information can change the rules governing access control.'), ('003643','draft','2022-03-01','DISA','policy','Defines the organization-defined roles for which it will employ an audited override of automated access control mechanisms.','AC-03(10)','N/A','Determine if an audited override of automated access control mechanisms is employed under [AC-03(10)_ODP[01]; conditions under which to employ an audited override of automated access control mechanisms are defined] by [AC-03(10)_ODP[02]; roles allowed to employ an audited override of automated access control mechanisms are defined].'), ('003644','draft','2022-03-01','DISA','technical','Restrict direct access to data repositories containing organization-defined information types.','AC-03(11)','N/A','Determine if access to data repositories containing [AC-03(11)_ODP; information types requiring restricted access to data repositories are defined] is restricted.'), ('003645','draft','2022-03-01','DISA','technical','Defines the information types of which to restrict direct access to data repositories.','AC-03(11)','N/A','Determine if access to data repositories containing [AC-03(11)_ODP; information types requiring restricted access to data repositories are defined] is restricted.'), ('003646','draft','2022-03-01','DISA','technical','Require applications to assert, as part of the installation process, the access needed to the organization-defined system applications and functions.','AC-03(12)(a)','N/A','Determine if as part of the installation process, applications are required to assert the access needed to the following system applications and functions: [AC-03(12)_ODP; system applications and functions requiring access assertion are defined].'), ('003647','draft','2022-03-01','DISA','technical','Defines the organization-defined system applications and functions as required of the applications as part of the installation process.','AC-03(12)(a)','N/A','Determine if as part of the installation process, applications are required to assert the access needed to the following system applications and functions: [AC-03(12)_ODP; system applications and functions requiring access assertion are defined].'), ('003648','draft','2022-03-01','DISA','technical','Require applications to provide an enforcement mechanism to prevent other-than-asserted access.','AC-03(12)(b)','N/A','Determine if an enforcement mechanism to prevent unauthorized access is provided.'), ('003649','draft','2022-03-01','DISA','technical','Approve access changed after initial installations of the application.','AC-03(12)(c)','N/A','Determine if access changes after initial installation of the application are approved.'), ('003650','draft','2022-03-01','DISA','technical','Enforce attribute-based access control policy over defined subjects and objects based upon organization-defined attributes to assume access permissions.','AC-03(13)','N/A','Determine if: - the attribute-based access control policy is enforced over defined subjects. - the attribute-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(13)_ODP; attributes to assume access permissions are defined].'), ('003651','draft','2022-03-01','DISA','technical','Defines the attributes to assume access permissions for enforcing attribute-based access control policy.','AC-03(13)','N/A','Determine if: - the attribute-based access control policy is enforced over defined subjects. - the attribute-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(13)_ODP; attributes to assume access permissions are defined].'), ('003652','draft','2022-03-01','DISA','technical','Enforce attribute-based control access over defined subjects and objects based upon organization-defined attributes to assume access permissions.','AC-03(13)','N/A','Determine if: - the attribute-based access control policy is enforced over defined subjects. - the attribute-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(13)_ODP; attributes to assume access permissions are defined].'), ('003653','draft','2022-03-01','DISA','technical','Defines the attributes to assume access permissions for enforcing attribute-based control access.','AC-03(13)','N/A','Determine if: - the attribute-based access control policy is enforced over defined subjects. - the attribute-based access control policy is enforced over defined objects. - access is controlled based on [AC-03(13)_ODP; attributes to assume access permissions are defined].'), ('003654','draft','2022-03-01','DISA','technical','Provide organization-defined mechanisms to enable individuals to have access to the following elements of their personally identifiable information: organization-defined elements.','AC-03(14)','N/A','Determine if [AC-03(14)_ODP[01]; mechanisms enabling individuals to have access to elements of their personally identifiable information are defined] are provided to enable individuals to have access to [AC-03(14)_ODP[02]; elements of personally identifiable information to which individuals have access are defined] of their personally identifiable information.'), ('003655','draft','2022-03-01','DISA','technical','Defines the mechanisms to be provided for access to elements of personally identifiable information.','AC-03(14)','N/A','Determine if [AC-03(14)_ODP[01]; mechanisms enabling individuals to have access to elements of their personally identifiable information are defined] are provided to enable individuals to have access to [AC-03(14)_ODP[02]; elements of personally identifiable information to which individuals have access are defined] of their personally identifiable information.'), ('003656','draft','2022-03-01','DISA','technical','Defines the elements of personally identifiable information.','AC-03(14)','N/A','Determine if [AC-03(14)_ODP[01]; mechanisms enabling individuals to have access to elements of their personally identifiable information are defined] are provided to enable individuals to have access to [AC-03(14)_ODP[02]; elements of personally identifiable information to which individuals have access are defined] of their personally identifiable information.'), ('003657','draft','2022-03-01','DISA','technical','Enforce organization-defined mandatory access control policy over the set of covered subjects and objects specified in the policy.','AC-03(15)(a)','N/A','Determine if: - [AC-03(15)_ODP[01]; a mandatory access control policy enforced over the set of covered subjects specified in the policy is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(15)_ODP[02]; a mandatory access control policy enforced over the set of covered objects specified in the policy is defined] is enforced over the set of covered objects specified in the policy.'), ('003658','deprecated','2022-03-01','DISA','technical','Defines the mandatory access control policies that are to be enforced over all subjects and objects.','AC-03(15)(a)','N/A','Determine if: - [AC-03(15)_ODP[01]; a mandatory access control policy enforced over the set of covered subjects specified in the policy is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(15)_ODP[02]; a mandatory access control policy enforced over the set of covered objects specified in the policy is defined] is enforced over the set of covered objects specified in the policy.'), ('003659','draft','2022-03-01','DISA','technical','Enforce organization-defined discretionary access control policy over the set of covered subjects and objects specified in the policy.','AC-03(15)(b)','N/A','Determine if: - [AC-03(15)_ODP[03]; a discretionary access control policy enforced over the set of covered subjects specified in the policy is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(15)_ODP[04]; a discretionary access control policy enforced over the set of covered objects specified in the policy is defined] is enforced over the set of covered objects specified in the policy.'), ('003660','draft','2022-03-01','DISA','technical','Defines the discretionary access control policies the system is to enforce over subjects and objects.','AC-03(15)(b)','N/A','Determine if: - [AC-03(15)_ODP[03]; a discretionary access control policy enforced over the set of covered subjects specified in the policy is defined] is enforced over the set of covered subjects specified in the policy. - [AC-03(15)_ODP[04]; a discretionary access control policy enforced over the set of covered objects specified in the policy is defined] is enforced over the set of covered objects specified in the policy.'), ('003661','draft','2022-03-01','DISA','technical','Defines the privacy attributes to be used to enforce organization-defined information flow control policies.','AC-04(01)','N/A','Determine if: - [AC-04(01)_ODP[01]; security attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[03]; information objects to be associated with information security attributes are defined], [AC-04(01)_ODP[05]; source objects to be associated with information security attributes are defined], and [AC-04(01)_ODP[07]; destination objects to be associated with information security attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions. - [AC-04(01)_ODP[02]; privacy attributes to be associated with information, source, and destination objects are defined] associated with [AC-04(01)_ODP[04]; information objects to be associated with privacy attributes are defined], [AC-04(01)_ODP[06]; source objects to be associated with privacy attributes are defined], and [AC-04(01)_ODP[08]; destination objects to be associated with privacy attributes are defined] are used to enforce [AC-04(01)_ODP[09]; information flow control policies as a basis for enforcement of flow control decisions are defined] as a basis for flow control decisions.'), ('003662','draft','2022-03-01','DISA','policy','Defines the information flow control mechanisms to prevent the bypassing of encrypted information.','AC-04(04)','N/A','Determine if encrypted information is prevented from bypassing [AC-04(04)_ODP[01]; information flow control mechanisms that encrypted information is prevented from bypassing are defined] by [AC-04(04)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {decrypting the information; blocking the flow of the encrypted information; terminating communications sessions attempting to pass encrypted information; [AC-04(04)_ODP[03]; the organization-defined procedure or method used to prevent encrypted information from bypassing information flow control mechanisms is defined (if selected)]].'), ('003663','draft','2022-03-01','DISA','technical','Enforce information flow control using organization-defined privacy policy filters as a basis for flow control decisions for organization-defined information flows.','AC-04(08)(a)','N/A','Determine if: - information flow control is enforced using [AC-04(08)_ODP[01]; security policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[03]; information flows for which information flow control is enforced by security filters are defined]. - information flow control is enforced using [AC-04(08)_ODP[02]; privacy policy filters to be used as a basis for enforcing information flow control are defined] as a basis for flow control decisions for [AC-04(08)_ODP[04]; information flows for which information flow control is enforced by privacy filters are defined].'), ('003664','draft','2022-03-01','DISA','technical','Enforce information flow control using block; strip; modify and/or quarantine data after a filter processing failure in accordance with organization-defined security or privacy policy.','AC-04(08)(b)','N/A','Determine if [AC-04(08)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {block; strip; modify; quarantine}] data after a filter processing failure in accordance with [AC-04(08)_ODP[06]; security policy identifying actions to be taken after a filter processing failure are defined]; [AC-04(08)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {block; strip; modify; quarantine}] data after a filter processing failure in accordance with [AC-04(08)_ODP[07]; privacy policy identifying actions to be taken after a filter processing failure are defined].'), ('003665','draft','2022-03-01','DISA','technical','Defines the security or privacy policy to be enforced using block; strip; modify and/or quarantine data after a filter processing failure.','AC-04(08)(b)','N/A','Determine if [AC-04(08)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {block; strip; modify; quarantine}] data after a filter processing failure in accordance with [AC-04(08)_ODP[06]; security policy identifying actions to be taken after a filter processing failure are defined]; [AC-04(08)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {block; strip; modify; quarantine}] data after a filter processing failure in accordance with [AC-04(08)_ODP[07]; privacy policy identifying actions to be taken after a filter processing failure are defined].'), ('003666','draft','2022-03-01','DISA','technical','Defines the security or privacy policy filters implemented when transferring information between security domains.','AC-04(19)','N/A','Determine if: - when transferring information between different security domains, [AC-04(19)_ODP[01]; security policy filters to be implemented on metadata are defined (if selected)] are implemented on metadata. - when transferring information between different security domains, [AC-04(19)_ODP[02]; privacy policy filters to be implemented on metadata are defined (if selected)] are implemented on metadata.'), ('003667','draft','2022-03-01','DISA','policy','When transferring information between security domains, modify non-releasable information by implementing organization-defined modification action.','AC-04(23)','N/A','Determine if when transferring information between security domains, non-releasable information is modified by implementing [AC-04(23)_ODP; modification action implemented on non-releasable information is defined].'), ('003668','draft','2022-03-01','DISA','policy','Defines the modification action when transferring information between different security domains.','AC-04(23)','N/A','Determine if when transferring information between security domains, non-releasable information is modified by implementing [AC-04(23)_ODP; modification action implemented on non-releasable information is defined].'), ('003669','draft','2022-03-01','DISA','technical','When transferring information between different security domains, parse incoming data into an internal normalized format.','AC-04(24)','N/A','Determine if: - when transferring information between different security domains, incoming data is parsed into an internal, normalized format. - when transferring information between different security domains, the data is regenerated to be consistent with its intended specification.'), ('003670','draft','2022-03-01','DISA','technical','When transferring information between different security domains, regenerate the data to be consistent with its intended specification.','AC-04(24)','N/A','Determine if: - when transferring information between different security domains, incoming data is parsed into an internal, normalized format. - when transferring information between different security domains, the data is regenerated to be consistent with its intended specification.'), ('003671','draft','2022-03-01','DISA','technical','When transferring information between different security domains, sanitize data to minimize delivery of malicious content, command and control of malicious code, malicious code augmentation, and steganography encoded data; spillage of sensitive information in accordance with organization-defined policy.','AC-04(25)','N/A','Determine if when transferring information between different security domains, data is sanitized to minimize [AC-04(25)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {delivery of malicious content, command and control of malicious code, malicious code augmentation, and steganography-encoded data; spillage of sensitive information}] in accordance with [AC-04(25)_ODP[02]; policy for sanitizing data is defined].'), ('003672','draft','2022-03-01','DISA','technical','Defines the policy when transferring information between different security domains.','AC-04(25)','N/A','Determine if when transferring information between different security domains, data is sanitized to minimize [AC-04(25)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {delivery of malicious content, command and control of malicious code, malicious code augmentation, and steganography-encoded data; spillage of sensitive information}] in accordance with [AC-04(25)_ODP[02]; policy for sanitizing data is defined].'), ('003673','draft','2022-03-01','DISA','policy','When transferring information between different security domains, record and audit content filtering actions and results for the information being filtered.','AC-04(26)','N/A','Determine if: - when transferring information between different security domains, content-filtering actions are recorded and audited. - when transferring information between different security domains, results for the information being filtered are recorded and audited.'), ('003674','draft','2022-03-01','DISA','technical','When transferring information between different security domains, implement content filtering solutions that provide redundant and independent filtering mechanisms for each data type.','AC-04(27)','N/A','Determine if when transferring information between security domains, implemented content filtering solutions provide redundant and independent filtering mechanisms for each data type.'), ('003675','draft','2022-03-01','DISA','technical','When transferring information between different security domains, implement a linear content filter pipeline that is enforced with discretionary and mandatory access controls.','AC-04(28)','N/A','Determine if when transferring information between security domains, a linear content filter pipeline is implemented that is enforced with discretionary and mandatory access controls.'), ('003676','draft','2022-03-01','DISA','policy','When transferring information between different security domains, employ content filter orchestration engines to ensure that content filtering mechanisms successfully complete execution without errors.','AC-04(29)(a)','N/A','Determine if when transferring information between security domains, content filter orchestration engines are employed to ensure that content-filtering mechanisms successfully complete execution without errors.'), ('003677','draft','2022-03-01','DISA','policy','When transferring information between different security domains, employ content filter orchestration engines to ensure that content filtering actions occur in the correct order and comply with organization-defined policy.','AC-04(29)(b)','N/A','Determine if: - when transferring information between security domains, content filter orchestration engines are employed to ensure that content-filtering actions occur in the correct order. - when transferring information between security domains, content filter orchestration engines are employed to ensure that content-filtering actions comply with [AC-04(29)_ODP; policy for content-filtering actions is defined].'), ('003678','draft','2022-03-01','DISA','technical','When transferring information between different security domains, implement content filtering mechanisms using multiple processes.','AC-04(30)','N/A','Determine if when transferring information between security domains, content-filtering mechanisms using multiple processes are implemented.'), ('003679','draft','2022-03-01','DISA','technical','When transferring information between different security domains, prevent the transfer of failed content to the receiving domain.','AC-04(31)','N/A','Determine if when transferring information between different security domains, the transfer of failed content to the receiving domain is prevented.'), ('003680','draft','2022-03-01','DISA','technical','When transferring information between different security domains, the process that transfers information between filter pipelines does not filter message content.','AC-04(32)(a)','N/A','Determine if when transferring information between different security domains, the process that transfers information between filter pipelines does not filter message content.'), ('003681','draft','2022-03-01','DISA','technical','When transferring information between different security domains, the process that transfers information between filter pipelines validates filtering metadata.','AC-04(32)(b)','N/A','Determine if when transferring information between different security domains, the process that transfers information between filter pipelines validates filtering metadata.'), ('003682','draft','2022-03-01','DISA','technical','When transferring information between different security domains, the process that transfers information between filter pipelines ensures the content associated with the filtering metadata has successfully completed filtering.','AC-04(32)(c)','N/A','Determine if when transferring information between different security domains, the process that transfers information between filter pipelines ensures that the content with the filtering metadata has successfully completed filtering.'), ('003683','draft','2022-03-01','DISA','technical','When transferring information between different security domains, the process that transfers information between filter pipelines transfers the content to the destination filter pipeline.','AC-04(32)(d)','N/A','Determine if when transferring information between different security domains, the process that transfers information between filter pipelines transfers the content to the destination filter pipeline.'), ('003684','draft','2022-03-01','DISA','policy','Identify and document organization-defined duties of individuals requiring separation.','AC-05b.','N/A','Determine if system access authorizations to support separation of duties are defined.'), ('003685','draft','2022-03-01','DISA','policy','Defines the individuals or roles who authorize access to organization-defined security functions.','AC-06(01)(a)','N/A','Determine if: - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[02]; security functions (deployed in hardware) for authorized access are defined]. - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[03]; security functions (deployed in software) for authorized access are defined]. - access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[04]; security functions (deployed in firmware) for authorized access are defined].'), ('003686','draft','2022-03-01','DISA','policy','Defines the individuals or roles who authorize access to organization-defined security-relevant information.','AC-06(01)(b)','N/A','Determine if access is authorized for [AC-06(01)_ODP[01]; individuals and roles with authorized access to security functions and security-relevant information are defined] to [AC-06(01)_ODP[05]; security-relevant information for authorized access is defined].'), ('003687','draft','2022-03-01','DISA','policy','Limit the number of unsuccessful biometric logon attempts to an organization-defined number.','AC-07(03)','N/A','Determine if unsuccessful biometric logon attempts are limited to [AC-07(03)_ODP; the number of unsuccessful biometric logon attempts is defined].'), ('003688','draft','2022-03-01','DISA','policy','Defines the number of allowed unsuccessful biometric logon attempts.','AC-07(03)','N/A','Determine if unsuccessful biometric logon attempts are limited to [AC-07(03)_ODP; the number of unsuccessful biometric logon attempts is defined].'), ('003689','draft','2022-03-01','DISA','policy','Allow the use of organization-defined authentication factors that are different from the primary authentication factors after the number of organization-defined consecutive invalid logon attempts have been exceeded.','AC-07(04)(a)','N/A','Determine if [AC-07(04)_ODP[01]; authentication factors allowed to be used that are different from the primary authentication factors are defined] that are different from the primary authentication factors are allowed to be used after the number of organization-defined consecutive invalid logon attempts have been exceeded.'), ('003690','draft','2022-03-01','DISA','policy','Defines the authentication factors after a number of organization-defined consecutive invalid logon attempts have been executed.','AC-07(04)(a)','N/A','Determine if [AC-07(04)_ODP[01]; authentication factors allowed to be used that are different from the primary authentication factors are defined] that are different from the primary authentication factors are allowed to be used after the number of organization-defined consecutive invalid logon attempts have been exceeded.'), ('003691','draft','2022-03-01','DISA','policy','Enforce a limit of organization-defined number consecutive invalid logon attempts through use of the alternative factors by a user during a organization-defined time period.','AC-07(04)(b)','N/A','Determine if a limit of [AC-07(04)_ODP[02]; the number of consecutive, invalid logon attempts through the use of alternative factors for which to enforce a limit by a user is defined] consecutive invalid logon attempts through the use of the alternative factors by the user during a [AC-07(04)_ODP[03]; time period during which a user can attempt logons through alternative factors is defined] is enforced.'), ('003692','draft','2022-03-01','DISA','policy','Defines the number enforced for logon attempts.','AC-07(04)(b)','N/A','Determine if a limit of [AC-07(04)_ODP[02]; the number of consecutive, invalid logon attempts through the use of alternative factors for which to enforce a limit by a user is defined] consecutive invalid logon attempts through the use of the alternative factors by the user during a [AC-07(04)_ODP[03]; time period during which a user can attempt logons through alternative factors is defined] is enforced.'), ('003693','draft','2022-03-01','DISA','technical','Display an explicit message to users indicating that the session will end at an organization-defined time until end of session.','AC-12(03)','N/A','Determine if an explicit message to users is displayed indicating that the session will end in [AC-12(03)_ODP; time until the end of session for display to users is defined].'), ('003694','draft','2022-03-01','DISA','technical','Defines the time until end of session, indicating the session will end.','AC-12(03)','N/A','Determine if an explicit message to users is displayed indicating that the session will end in [AC-12(03)_ODP; time until the end of session for display to users is defined].'), ('003695','draft','2022-03-01','DISA','policy','Defines the user actions that can be performed on the system without identification or authentication consistent with organizational missions/business functions.','AC-14a.','N/A','Determine if [AC-14_ODP; user actions that can be performed on the system without identification or authentication are defined] that can be performed on the system without identification or authentication consistent with organizational mission and business functions are identified.'), ('003696','draft','2022-03-01','DISA','policy','Defines privacy attributes having organization-defined types of privacy attribute values which are associated with information in storage.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('003697','draft','2022-03-01','DISA','policy','Defines privacy attributes having organization-defined types of privacy attribute values which are associated with information in process.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('003698','draft','2022-03-01','DISA','policy','Defines privacy attributes, having organization-defined types of privacy attribute values, which are associated with information in transmission.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('003699','draft','2022-03-01','DISA','policy','Defines privacy attribute values associated with organization-defined types of privacy attributes for information in storage.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('003700','draft','2022-03-01','DISA','policy','Defines privacy attribute values associated with organization-defined types of privacy attributes for information in process.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('003701','draft','2022-03-01','DISA','policy','Defines privacy attribute values associated with organization-defined types of privacy attributes for information in transmission.','AC-16a.','N/A','Determine if: - the means to associate [AC-16_ODP[01]; types of security attributes to be associated with information security attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[03]; security attribute values for types of security attributes are defined] for information in storage, in process, and/or in transmission are provided. - the means to associate [AC-16_ODP[02]; types of privacy attributes to be associated with privacy attribute values for information in storage, in process, and/or in transmission are defined] with [AC-16_ODP[04]; privacy attribute values for types of privacy attributes are defined] for information in storage, in process, and/or in transmission are provided.'), ('003702','draft','2022-03-01','DISA','policy','Ensure that the privacy attribute associations are made with the information.','AC-16b.','N/A','Determine if: - attribute associations are made. - attribute associations are retained with the information.'), ('003703','draft','2022-03-01','DISA','policy','Ensure that the privacy attribute associations are restrained with the information.','AC-16b.','N/A','Determine if: - attribute associations are made. - attribute associations are retained with the information.'), ('003704','draft','2022-03-01','DISA','policy','Establish the following permitted organization-defined privacy attributes defined in AC-16a for organization-defined systems.','AC-16c.','N/A','Determine if: - the following permitted security attributes are established from the attributes defined in AC-16_ODP[01] for [AC-16_ODP[05]; systems for which permitted security attributes are to be established are defined]: [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined]. - the following permitted privacy attributes are established from the attributes defined in AC-16_ODP[02] for [AC-16_ODP[06]; systems for which permitted privacy attributes are to be established are defined]: [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined].'), ('003705','draft','2022-03-01','DISA','policy','Defines the privacy attributes that are permitted for organization-defined systems.','AC-16c.','N/A','Determine if: - the following permitted security attributes are established from the attributes defined in AC-16_ODP[01] for [AC-16_ODP[05]; systems for which permitted security attributes are to be established are defined]: [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined]. - the following permitted privacy attributes are established from the attributes defined in AC-16_ODP[02] for [AC-16_ODP[06]; systems for which permitted privacy attributes are to be established are defined]: [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined].'), ('003706','draft','2022-03-01','DISA','policy','Defines the attribute values or ranges permitted for each of the established privacy attributes.','AC-16d.','N/A','Determine if the following permitted attribute values or ranges for each of the established attributes are determined: [AC-16_ODP[09]; attribute values or ranges for established attributes are defined].'), ('003707','draft','2022-03-01','DISA','policy','Audit changes to the attributes.','AC-16e.','N/A','Determine if changes to attributes are audited.'), ('003708','draft','2022-03-01','DISA','policy','Review organization-defined security attributes for applicability on an organization-defined frequency.','AC-16f.','N/A','Determine if: - [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[10]; the frequency at which to review security attributes for applicability is defined]. - [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[11]; the frequency at which to review privacy attributes for applicability is defined].'), ('003709','draft','2022-03-01','DISA','policy','Review organization-defined privacy attributes for applicability on an organization-defined frequency.','AC-16f.','N/A','Determine if: - [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[10]; the frequency at which to review security attributes for applicability is defined]. - [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[11]; the frequency at which to review privacy attributes for applicability is defined].'), ('003710','draft','2022-03-01','DISA','policy','Defines the security and privacy attributes to be reviewed for applicability.','AC-16f.','N/A','Determine if: - [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[10]; the frequency at which to review security attributes for applicability is defined]. - [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[11]; the frequency at which to review privacy attributes for applicability is defined].'), ('003711','draft','2022-03-01','DISA','policy','Defines the frequency of which the security and privacy attributes will be reviewed.','AC-16f.','N/A','Determine if: - [AC-16_ODP[07]; security attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[10]; the frequency at which to review security attributes for applicability is defined]. - [AC-16_ODP[08]; privacy attributes defined as part of AC-16a that are permitted for systems are defined] are reviewed for applicability [AC-16_ODP[11]; the frequency at which to review privacy attributes for applicability is defined].'), ('003712','draft','2022-03-01','DISA','technical','Dynamically associate privacy attributes with organization-defined subjects in accordance with organization-defined privacy policies as information is created and combined.','AC-16(01)','N/A','Determine if: - security attributes are dynamically associated with [AC-16(01)_ODP[01]; subjects with which security attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following security policies as information is created and combined: [AC-16(01)_ODP[05]; security policies requiring dynamic association of security attributes with subjects and objects are defined]. - security attributes are dynamically associated with [AC-16(01)_ODP[02]; objects with which security attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following security policies as information is created and combined: [AC-16(01)_ODP[05]; security policies requiring dynamic association of security attributes with subjects and objects are defined]. - privacy attributes are dynamically associated with [AC-16(01)_ODP[03]; subjects with which privacy attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following privacy policies as information is created and combined: [AC-16(01)_ODP[06]; privacy policies requiring dynamic association of privacy attributes with subjects and objects are defined.] - privacy attributes are dynamically associated with [AC-16(01)_ODP[04]; objects with which privacy attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following privacy policies as information is created and combined: [AC-16(01)_ODP[06]; privacy policies requiring dynamic association of privacy attributes with subjects and objects are defined].'), ('003713','draft','2022-03-01','DISA','technical','Dynamically associate privacy attributes with organization-defined objects in accordance with organization-defined privacy policies as information is created and combined.','AC-16(01)','N/A','Determine if: - security attributes are dynamically associated with [AC-16(01)_ODP[01]; subjects with which security attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following security policies as information is created and combined: [AC-16(01)_ODP[05]; security policies requiring dynamic association of security attributes with subjects and objects are defined]. - security attributes are dynamically associated with [AC-16(01)_ODP[02]; objects with which security attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following security policies as information is created and combined: [AC-16(01)_ODP[05]; security policies requiring dynamic association of security attributes with subjects and objects are defined]. - privacy attributes are dynamically associated with [AC-16(01)_ODP[03]; subjects with which privacy attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following privacy policies as information is created and combined: [AC-16(01)_ODP[06]; privacy policies requiring dynamic association of privacy attributes with subjects and objects are defined.] - privacy attributes are dynamically associated with [AC-16(01)_ODP[04]; objects with which privacy attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following privacy policies as information is created and combined: [AC-16(01)_ODP[06]; privacy policies requiring dynamic association of privacy attributes with subjects and objects are defined].'), ('003714','draft','2022-03-01','DISA','technical','Defines the privacy policies to adhere to when dynamically associating security attributes with organization-defined subjects and objects.','AC-16(01)','N/A','Determine if: - security attributes are dynamically associated with [AC-16(01)_ODP[01]; subjects with which security attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following security policies as information is created and combined: [AC-16(01)_ODP[05]; security policies requiring dynamic association of security attributes with subjects and objects are defined]. - security attributes are dynamically associated with [AC-16(01)_ODP[02]; objects with which security attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following security policies as information is created and combined: [AC-16(01)_ODP[05]; security policies requiring dynamic association of security attributes with subjects and objects are defined]. - privacy attributes are dynamically associated with [AC-16(01)_ODP[03]; subjects with which privacy attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following privacy policies as information is created and combined: [AC-16(01)_ODP[06]; privacy policies requiring dynamic association of privacy attributes with subjects and objects are defined.] - privacy attributes are dynamically associated with [AC-16(01)_ODP[04]; objects with which privacy attributes are to be dynamically associated as information is created and combined are defined] in accordance with the following privacy policies as information is created and combined: [AC-16(01)_ODP[06]; privacy policies requiring dynamic association of privacy attributes with subjects and objects are defined].'), ('003715','draft','2022-03-01','DISA','technical','Provides authorized individuals (or processes acting on behalf of individuals) the capability to change the value of associated privacy attributes.','AC-16(02)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to define or change the value of associated security attributes. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to define or change the value of associated privacy attributes.'), ('003716','draft','2022-03-01','DISA','technical','Provides authorized individuals (or processes acting on behalf of individuals) the capability to define the value of associated privacy attributes.','AC-16(02)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to define or change the value of associated security attributes. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to define or change the value of associated privacy attributes.'), ('003717','draft','2022-03-01','DISA','technical','Defines the privacy attributes for which the association and integrity to organization-defined subjects and objects is maintained.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('003718','draft','2022-03-01','DISA','technical','Maintain the association of organization-defined privacy attributes to organization-defined subjects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('003719','draft','2022-03-01','DISA','technical','Maintain the association of organization-defined privacy attributes to organization-defined objects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('003720','draft','2022-03-01','DISA','technical','Maintain the integrity of organization-defined privacy attributes associated with organization-defined subjects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('003721','draft','2022-03-01','DISA','technical','Maintain the integrity of organization-defined privacy attributes associated with organization-defined objects.','AC-16(03)','N/A','Determine if: - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[03]; subjects requiring the association and integrity of security attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[01]; security attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[04]; objects requiring the association and integrity of security attributes to such objects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[05]; subjects requiring the association and integrity of privacy attributes to such subjects to be maintained are defined] is maintained. - the association and integrity of [AC-16(03)_ODP[02]; privacy attributes that require association and integrity maintenance are defined] to [AC-16(03)_ODP[06]; objects requiring the association and integrity of privacy attributes to such objects to be maintained are defined] is maintained.'), ('003722','draft','2022-03-01','DISA','technical','Defines the subjects with which organization-defined privacy attributes may be associated by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('003723','draft','2022-03-01','DISA','technical','Defines the objects with which organization-defined privacy attributes may be associated by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('003724','draft','2022-03-01','DISA','technical','Defines the privacy attributes authorized individuals (or processes acting on behalf of individuals) are permitted to associate with organization-defined subjects and objects.','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('003725','draft','2022-03-01','DISA','technical','Provide the capability to associate organization-defined privacy attributes with organization-defined subjects by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('003726','draft','2022-03-01','DISA','technical','Provide the capability to associate organization-defined privacy attributes with organization-defined objects by authorized individuals (or processes acting on behalf of individuals).','AC-16(04)','N/A','Determine if: - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[01]; security attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[05]; subjects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[02]; security attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[06]; objects requiring the association of security attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[03]; privacy attributes to be associated with subjects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[07]; subjects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined]. - authorized individuals (or processes acting on behalf of individuals) are provided with the capability to associate [AC-16(04)_ODP[04]; privacy attributes to be associated with objects by authorized individuals (or processes acting on behalf of individuals) are defined] with [AC-16(04)_ODP[08]; objects requiring the association of privacy attributes by authorized individuals (or processes acting on behalf of individuals) are defined].'), ('003727','draft','2022-03-01','DISA','technical','Displays privacy attributes in human-readable form on each object that the system transmits to output devices to identify organization-identified special dissemination, handling, or distribution instructions using organization-identified human-readable, standard naming conventions.','AC-16(05)','N/A','Determine if: - security attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined]. - privacy attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined].'), ('003728','draft','2022-03-01','DISA','technical','Identifies special dissemination, handling, or distribution instructions for identifying privacy attributes on output.','AC-16(05)','N/A','Determine if: - security attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined]. - privacy attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined].'), ('003729','draft','2022-03-01','DISA','technical','Identifies human-readable, standard naming conventions for identifying privacy attributes on output.','AC-16(05)','N/A','Determine if: - security attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined]. - privacy attributes are displayed in human-readable form on each object that the system transmits to output devices to identify [AC-16(05)_ODP[01]; special dissemination, handling, or distribution instructions to be used for each object that the system transmits to output devices are defined] using [AC-16(05)_ODP[02]; human-readable, standard naming conventions for the security and privacy attributes to be displayed in human-readable form on each object that the system transmits to output devices are defined].'), ('003730','draft','2022-03-01','DISA','policy','Defines the privacy policies to be followed by personnel when associating organization-defined privacy attributes with organization-defined subjects and objects.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003731','draft','2022-03-01','DISA','policy','Defines the privacy attributes which are to be associated with organization-defined subjects and objects.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003732','draft','2022-03-01','DISA','policy','Defines the subjects to be associated, and that association maintained, with organization-defined privacy attributes in accordance with organization-defined privacy policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003733','draft','2022-03-01','DISA','policy','Defines the objects to be associated, and that association maintained, with organization-defined privacy attributes in accordance with organization-defined privacy policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003734','draft','2022-03-01','DISA','policy','Require personnel to associate organization-defined privacy attributes with organization-defined subjects in accordance with organization-defined privacy policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003735','draft','2022-03-01','DISA','policy','Require personnel to associate organization-defined privacy attributes with organization-defined objects in accordance with organization-defined privacy policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003736','draft','2022-03-01','DISA','policy','Require personnel to maintain the association of organization-defined privacy attributes with organization-defined subjects in accordance with organization-defined privacy policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003737','draft','2022-03-01','DISA','policy','Require personnel to maintain the association of organization-defined privacy attributes with organization-defined objects in accordance with organization-defined privacy policies.','AC-16(06)','N/A','Determine if: - personnel are required to associate and maintain the association of [AC-16(06)_ODP[01]; security attributes to be associated with subjects are defined] with [AC-16(06)_ODP[05]; subjects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[02]; security attributes to be associated with objects are defined] with [AC-16(06)_ODP[06]; objects to be associated with information security attributes are defined] in accordance with [AC-16(06)_ODP[09]; security policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[03]; privacy attributes to be associated with subjects are defined] with [AC-16(06)_ODP[07]; subjects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects]. - personnel are required to associate and maintain the association of [AC-16(06)_ODP[04]; privacy attributes to be associated with objects are defined] with [AC-16(06)_ODP[08]; objects to be associated with privacy attributes are defined] in accordance with [AC-16(06)_ODP[10]; privacy policies that require personnel to associate and maintain the association of security and privacy attributes with subjects and objects].'), ('003738','draft','2022-03-01','DISA','policy','Provide a consistent interpretation of privacy attributes transmitted between distributed system components.','AC-16(07)','N/A','Determine if: - a consistent interpretation of security attributes transmitted between distributed system components is provided. - Determine if a consistent interpretation of privacy attributes transmitted between distributed system components is provided.'), ('003739','draft','2022-03-01','DISA','technical','Defines the techniques and technologies to be implemented when associating security attributes to information.','AC-16(08)','N/A','Determine if: - [AC-16(08)_ODP[01]; techniques and technologies to be implemented in associating security attributes to information are defined] are implemented in associating security attributes to information. - [AC-16(08)_ODP[02]; techniques and technologies to be implemented in associating privacy attributes to information are defined] are implemented in associating privacy attributes to information.'), ('003740','draft','2022-03-01','DISA','technical','Defines the level of assurance to be provided when implementing organization-defined techniques and technologies in associating privacy attributes to information.','AC-16(08)','N/A','Determine if: - [AC-16(08)_ODP[01]; techniques and technologies to be implemented in associating security attributes to information are defined] are implemented in associating security attributes to information. - [AC-16(08)_ODP[02]; techniques and technologies to be implemented in associating privacy attributes to information are defined] are implemented in associating privacy attributes to information.'), ('003741','draft','2022-03-01','DISA','technical','Implement organization-defined techniques and technologies with an organization-defined level of assurance in associating privacy attributes to information.','AC-16(08)','N/A','Determine if: - [AC-16(08)_ODP[01]; techniques and technologies to be implemented in associating security attributes to information are defined] are implemented in associating security attributes to information. - [AC-16(08)_ODP[02]; techniques and technologies to be implemented in associating privacy attributes to information are defined] are implemented in associating privacy attributes to information.'), ('003742','draft','2022-03-01','DISA','policy','Change privacy attributes associated with information are reassigned only via re-grading mechanisms validated using organization-defined techniques or procedures.','AC-16(09)','N/A','Determine if: - security attributes associated with information are changed only via regrading mechanisms validated using [AC-16(09)_ODP[01]; techniques or procedures used to validate regrading mechanisms for security attributes are defined]. - privacy attributes associated with information are changed only via regrading mechanisms validated using [AC-16(09)_ODP[02]; techniques or procedures used to validate regrading mechanisms for privacy attributes are defined].'), ('003743','draft','2022-03-01','DISA','policy','Provide authorized individuals the capability to define or change the type of privacy attributes available for association with subjects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('003744','draft','2022-03-01','DISA','policy','Provide authorized individuals the capability to define or change the value of privacy attributes available for association with subjects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('003745','draft','2022-03-01','DISA','policy','Provide authorized individuals the capability to define or change the type of privacy attributes available for association with objects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('003746','draft','2022-03-01','DISA','policy','Provide authorized individuals the capability to define or change the value of privacy attributes available for association with objects.','AC-16(10)','N/A','Determine if: - authorized individuals are provided with the capability to define or change the type and value of security attributes available for association with subjects and objects. - authorized individuals are provided with the capability to define or change the type and value of privacy attributes available for association with subjects and objects.'), ('003747','draft','2022-03-01','DISA','technical','Implement organization-defined mechanisms to authenticate organization-defined remote commands.','AC-17(10)','N/A','Determine if [AC-17(10)_ODP[01]; mechanisms implemented to authenticate remote commands are defined] are implemented to authenticate [AC-17(10)_ODP[02]; remote commands to be authenticated by mechanisms are defined].'), ('003748','draft','2022-03-01','DISA','technical','Defines the mechanisms used to authenticate organization-defined remote commands.','AC-17(10)','N/A','Determine if [AC-17(10)_ODP[01]; mechanisms implemented to authenticate remote commands are defined] are implemented to authenticate [AC-17(10)_ODP[02]; remote commands to be authenticated by mechanisms are defined].'), ('003749','draft','2022-03-01','DISA','technical','Defines the remote commands used for implementing organization-defined mechanisms.','AC-17(10)','N/A','Determine if [AC-17(10)_ODP[01]; mechanisms implemented to authenticate remote commands are defined] are implemented to authenticate [AC-17(10)_ODP[02]; remote commands to be authenticated by mechanisms are defined].'), ('003750','draft','2022-03-01','DISA','policy','Defines the terms and conditions for accessing the system from external systems.','AC-20a.01','N/A','Determine if [AC-20_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish [AC-20_ODP[02]; terms and conditions consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]; identify [AC-20_ODP[03]; controls asserted to be implemented on external systems consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]}]]] is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to access the system from external systems (if applicable).'), ('003751','draft','2022-03-01','DISA','policy','Defines the controls asserted to be implemented on external systems allowing individuals to access the system from external systems.','AC-20a.01','N/A','Determine if [AC-20_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish [AC-20_ODP[02]; terms and conditions consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]; identify [AC-20_ODP[03]; controls asserted to be implemented on external systems consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]}]]] is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to access the system from external systems (if applicable).'), ('003752','draft','2022-03-01','DISA','policy','Defines the terms and conditions for processing, storing, or transmitting organization-controlled information using external systems.','AC-20a.02','N/A','Determine if [AC-20_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish [AC-20_ODP[02]; terms and conditions consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]; identify [AC-20_ODP[03]; controls asserted to be implemented on external systems consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]}]]] is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to process, store, or transmit organization-controlled information using external systems (if applicable).'), ('003753','draft','2022-03-01','DISA','policy','Defines the controls asserted to be implemented on external systems allowing individuals to process, store, or transmit organization-controlled information using external systems.','AC-20a.02','N/A','Determine if [AC-20_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {establish [AC-20_ODP[02]; terms and conditions consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]; identify [AC-20_ODP[03]; controls asserted to be implemented on external systems consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems are defined (if selected)]}]]] is/are consistent with the trust relationships established with other organizations owning, operating, and/or maintaining external systems, allowing authorized individuals to process, store, or transmit organization-controlled information using external systems (if applicable).'), ('003754','draft','2022-03-01','DISA','policy','Prohibit the use of organizationally-defined types of external systems.','AC-20b.','N/A','Determine if the use of [AC-20_ODP[04]; types of external systems prohibited from use are defined] is prohibited (if applicable).'), ('003755','draft','2022-03-01','DISA','policy','Defines the types of external systems that are prohibited.','AC-20b.','N/A','Determine if the use of [AC-20_ODP[04]; types of external systems prohibited from use are defined] is prohibited (if applicable).'), ('003756','draft','2022-03-01','DISA','policy','Permit authorized individuals to use an external system to access the system or to process, store, or transmit organization-controlled information only after verification of the implementation of controls on the external system as specified in the organization''s security policy and security plan.','AC-20(01)(a)','N/A','Determine if authorized individuals are permitted to use an external system to access the system or to process, store, or transmit organization-controlled information only after verification of the implementation of controls on the external system as specified in the organization''s security and privacy policies and security and privacy plans (if applicable).'), ('003757','draft','2022-03-01','DISA','policy','Permit authorized individuals to use an external system to access the system or to process, store, or transmit organization-controlled information only after verification of the implementation of controls on the external system as specified in the organization''s privacy policy and privacy plan.','AC-20(01)(a)','N/A','Determine if authorized individuals are permitted to use an external system to access the system or to process, store, or transmit organization-controlled information only after verification of the implementation of controls on the external system as specified in the organization''s security and privacy policies and security and privacy plans (if applicable).'), ('003758','draft','2022-03-01','DISA','policy','Defines the restrictions for the use of organization-controlled portable storage devices.','AC-20(02)','N/A','Determine if the use of organization-controlled portable storage devices by authorized individuals is restricted on external systems using [AC-20(02)_ODP; restrictions on the use of organization-controlled portable storage devices by authorized individuals on external systems are defined].'), ('003759','draft','2022-03-01','DISA','policy','Prohibit the use of organization-controlled portable storage devices by authorized individuals on external systems.','AC-20(05)','N/A','Determine if the use of organization-controlled portable storage devices by authorized individuals is prohibited on external systems.'), ('003760','draft','2022-03-01','DISA','technical','Defines the privacy attributes, not to include the identity of the user or process acting on behalf of the user, to be used as the basis for enforcing access control decisions.','AC-24(02)','N/A','Determine if: - access control decisions are enforced based on [AC-24(02)_ODP[01]; security attributes that do not include the identity of the user or process acting on behalf of the user are defined (if selected)] that do not include the identity of the user or process acting on behalf of the user (if selected). - access control decisions are enforced based on [AC-24(02)_ODP[02]; privacy attributes that do not include the identity of the user or process acting on behalf of the user are defined (if selected)] that do not include the identity of the user or process acting on behalf of the user (if selected).'), ('003761','draft','2022-03-01','DISA','policy','Develop and document an organization level, mission/business process-level, or system-level awareness and training policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','AT-01a.01(b)','N/A','Determine if the [AT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] awareness and training policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('003762','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the development and documentation of the awareness and training policy.','AT-01b.','N/A','Determine if the [AT-01_ODP[04]; an official to manage the awareness and training policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the awareness and training policy and procedures.'), ('003763','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the dissemination of the awareness and training policy.','AT-01b.','N/A','Determine if the [AT-01_ODP[04]; an official to manage the awareness and training policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the awareness and training policy and procedures.'), ('003764','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the development and documentation of the awareness and training procedures.','AT-01b.','N/A','Determine if the [AT-01_ODP[04]; an official to manage the awareness and training policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the awareness and training policy and procedures.'), ('003765','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the dissemination of the awareness and training procedures.','AT-01b.','N/A','Determine if the [AT-01_ODP[04]; an official to manage the awareness and training policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the awareness and training policy and procedures.'), ('003766','draft','2022-03-01','DISA','policy','Provide basic privacy awareness training to system users (including managers, senior executives, and contractors) when required by system changes or following organization-defined events.','AT-02a.02','N/A','Determine if: - security literacy training is provided to system users (including managers, senior executives, and contractors) when required by system changes or following [AT-02_ODP[03]; events that require security literacy training for system users are defined]. - privacy literacy training is provided to system users (including managers, senior executives, and contractors) when required by system changes or following [AT-02_ODP[04]; events that require privacy literacy training for system users are defined].'), ('003767','draft','2022-03-01','DISA','policy','Employ organization-defined awareness techniques to increase the security awareness of system users.','AT-02b.','N/A','Determine if [AT-02_ODP[05]; techniques to be employed to increase the security and privacy awareness of system users are defined] are employed to increase the security and privacy awareness of system users.'), ('003768','draft','2022-03-01','DISA','policy','Employ organization-defined awareness techniques to increase the privacy awareness of system users.','AT-02b.','N/A','Determine if [AT-02_ODP[05]; techniques to be employed to increase the security and privacy awareness of system users are defined] are employed to increase the security and privacy awareness of system users.'), ('003769','draft','2022-03-01','DISA','policy','Defines the awareness techniques for to increase security and privacy awareness of system uses.','AT-02b.','N/A','Determine if [AT-02_ODP[05]; techniques to be employed to increase the security and privacy awareness of system users are defined] are employed to increase the security and privacy awareness of system users.'), ('003770','draft','2022-03-01','DISA','policy','Update literacy training and awareness content on an organization-defined frequency.','AT-02c.','N/A','Determine if: - literacy training and awareness content is updated [AT-02_ODP[06]; the frequency at which to update literacy training and awareness content is defined]. - literacy training and awareness content is updated following [AT-02_ODP[07]; events that would require literacy training and awareness content to be updated are defined].'), ('003771','draft','2022-03-01','DISA','policy','Update literacy training and awareness content following organization-defined event.','AT-02c.','N/A','Determine if: - literacy training and awareness content is updated [AT-02_ODP[06]; the frequency at which to update literacy training and awareness content is defined]. - literacy training and awareness content is updated following [AT-02_ODP[07]; events that would require literacy training and awareness content to be updated are defined].'), ('003772','draft','2022-03-01','DISA','policy','Defines the frequency for updating literacy training and awareness content.','AT-02c.','N/A','Determine if: - literacy training and awareness content is updated [AT-02_ODP[06]; the frequency at which to update literacy training and awareness content is defined]. - literacy training and awareness content is updated following [AT-02_ODP[07]; events that would require literacy training and awareness content to be updated are defined].'), ('003773','draft','2022-03-01','DISA','policy','Defines the events following updating literacy training and awareness content.','AT-02c.','N/A','Determine if: - literacy training and awareness content is updated [AT-02_ODP[06]; the frequency at which to update literacy training and awareness content is defined]. - literacy training and awareness content is updated following [AT-02_ODP[07]; events that would require literacy training and awareness content to be updated are defined].'), ('003774','draft','2022-03-01','DISA','policy','Incorporate lessons learned from internal or external security incidents or breaches into literacy training and awareness techniques.','AT-02d.','N/A','Determine if lessons learned from internal or external security incidents or breaches are incorporated into literacy training and awareness techniques.'), ('003775','draft','2022-03-01','DISA','policy','Provide literacy training on recognizing and reporting potential and actual instances of social engineering.','AT-02(03)','N/A','Determine if: - literacy training on recognizing potential and actual instances of social engineering is provided. - literacy training on reporting potential and actual instances of social engineering is provided. - literacy training on recognizing potential and actual instances of social mining is provided. - literacy training on reporting potential and actual instances of social mining is provided.'), ('003776','draft','2022-03-01','DISA','policy','Provide literacy training on recognizing and reporting potential and actual instances of social mining.','AT-02(03)','N/A','Determine if: - literacy training on recognizing potential and actual instances of social engineering is provided. - literacy training on reporting potential and actual instances of social engineering is provided. - literacy training on recognizing potential and actual instances of social mining is provided. - literacy training on reporting potential and actual instances of social mining is provided.'), ('003777','draft','2022-03-01','DISA','policy','Provide literacy training on recognize suspicious communications and anomalous behavior in organizational systems using organization-defined indicators of malicious code.','AT-02(04)','N/A','Determine if literacy training on recognizing suspicious communications and anomalous behavior in organizational systems using [AT-02(04)_ODP; indicators of malicious code are defined] is provided.'), ('003778','draft','2022-03-01','DISA','policy','Defines the indicators of malicious code used to recognize suspicious communications and anomalous behavior in organizational systems.','AT-02(04)','N/A','Determine if literacy training on recognizing suspicious communications and anomalous behavior in organizational systems using [AT-02(04)_ODP; indicators of malicious code are defined] is provided.'), ('003779','draft','2022-03-01','DISA','policy','Provide literacy training on the advanced persistent threat.','AT-02(05)','N/A','Determine if literacy training on the advanced persistent threat is provided.'), ('003780','draft','2022-03-01','DISA','policy','Provide literacy training on the cyber threat environment.','AT-02(06)(a)','N/A','Determine if literacy training on the cyber threat environment is provided.'), ('003781','draft','2022-03-01','DISA','policy','Reflect current cyber threat information in system operations.','AT-02(06)(b)','N/A','Determine if system operations reflects current cyber threat information.'), ('003782','draft','2022-03-01','DISA','policy','Defines the roles and responsibilities of the personnel providing role-based security and privacy training.',NULL,'N/A',NULL), ('003783','draft','2022-03-01','DISA','policy','Provide role-based privacy training to personnel with organization-defined roles and responsibilities before authorizing access to the system, information, or performing assigned duties.','AT-03a.01','N/A','Determine if: - role-based security training is provided to [AT-03_ODP[01]; roles and responsibilities for role-based security training are defined] before authorizing access to the system, information, or performing assigned duties. - role-based privacy training is provided to [AT-03_ODP[02]; roles and responsibilities for role-based privacy training are defined] before authorizing access to the system, information, or performing assigned duties. - role-based security training is provided to [AT-03_ODP[01]; roles and responsibilities for role-based security training are defined] [AT-03_ODP[03]; the frequency at which to provide role-based security and privacy training to assigned personnel after initial training is defined] thereafter. - role-based privacy training is provided to [AT-03_ODP[02]; roles and responsibilities for role-based privacy training are defined] [AT-03_ODP[03]; the frequency at which to provide role-based security and privacy training to assigned personnel after initial training is defined] thereafter.'), ('003784','draft','2022-03-01','DISA','policy','Provide role-based privacy training to personnel with organization-defined roles and responsibilities when required by system changes.','AT-03a.02','N/A','Determine if: - role-based security training is provided to personnel with assigned security roles and responsibilities when required by system changes. - role-based privacy training is provided to personnel with assigned security roles and responsibilities when required by system changes.'), ('003785','draft','2022-03-01','DISA','policy','Update role-based training content on an organization-defined frequency.','AT-03b.','N/A','Determine if: - role-based training content is updated [AT-03_ODP[04]; the frequency at which to update role-based training content is defined]. - role-based training content is updated following [AT-03_ODP[05]; events that require role-based training content to be updated are defined].'), ('003786','draft','2022-03-01','DISA','policy','Defines the frequency of which the role-based training content is updated.','AT-03b.','N/A','Determine if: - role-based training content is updated [AT-03_ODP[04]; the frequency at which to update role-based training content is defined]. - role-based training content is updated following [AT-03_ODP[05]; events that require role-based training content to be updated are defined].'), ('003787','draft','2022-03-01','DISA','policy','Update role-based training content following organization-defined events.','AT-03b.','N/A','Determine if: - role-based training content is updated [AT-03_ODP[04]; the frequency at which to update role-based training content is defined]. - role-based training content is updated following [AT-03_ODP[05]; events that require role-based training content to be updated are defined].'), ('003788','draft','2022-03-01','DISA','policy','Defines the events following updating role-based training content.','AT-03b.','N/A','Determine if: - role-based training content is updated [AT-03_ODP[04]; the frequency at which to update role-based training content is defined]. - role-based training content is updated following [AT-03_ODP[05]; events that require role-based training content to be updated are defined].'), ('003789','draft','2022-03-01','DISA','policy','Incorporate lessons learned from internal or external security incidents or breaches into role-based training.','AT-03c.','N/A','Determine if lessons learned from internal or external security incidents or breaches are incorporated into role-based training.'), ('003790','draft','2022-03-01','DISA','policy','Provide practical exercises in privacy training that reinforce training objectives.','AT-03(03)','N/A','Determine if: - practical exercises in security training that reinforce training objectives are provided. - practical exercises in privacy training that reinforce training objectives are provided.'), ('003791','draft','2022-03-01','DISA','policy','Defines the frequency for providing training in the employment and operation of personally identifiable information processing and transparency controls to personnel or roles.','AT-03(05)','N/A','Determine if [AT-03(05)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of personally identifiable information processing and transparency controls is/are defined] are provided with initial and refresher training [AT-03(05)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of personally identifiable information processing and transparency controls is defined] in the employment and operation of personally identifiable information processing and transparency controls.'), ('003792','draft','2022-03-01','DISA','policy','Provide organization-defined personnel or roles with initial training in the employment and operation of personally identifiable information processing and transparency controls.','AT-03(05)','N/A','Determine if [AT-03(05)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of personally identifiable information processing and transparency controls is/are defined] are provided with initial and refresher training [AT-03(05)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of personally identifiable information processing and transparency controls is defined] in the employment and operation of personally identifiable information processing and transparency controls.'), ('003793','draft','2022-03-01','DISA','policy','Defines the personnel or roles who are to be provided training in the employment and operation of personally identifiable information processing and transparency controls.','AT-03(05)','N/A','Determine if [AT-03(05)_ODP[01]; personnel or roles to be provided with initial and refresher training in the employment and operation of personally identifiable information processing and transparency controls is/are defined] are provided with initial and refresher training [AT-03(05)_ODP[02]; the frequency at which to provide refresher training in the employment and operation of personally identifiable information processing and transparency controls is defined] in the employment and operation of personally identifiable information processing and transparency controls.'), ('003794','draft','2022-03-01','DISA','policy','Document individual privacy training activities, including privacy awareness training and specific system privacy training.','AT-04a.','N/A','Determine if: - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are documented. - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are monitored.'), ('003795','draft','2022-03-01','DISA','policy','Monitor individual information privacy training activities, including privacy awareness training and specific privacy training.','AT-04a.','N/A','Determine if: - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are documented. - information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy training, are monitored.'), ('003796','draft','2022-03-01','DISA','policy','Provide feedback on organizational training results to organization-defined personnel on an organization-defined frequency.','AT-06','N/A','Determine if feedback on organizational training results is provided [AT-06_ODP[01]; frequency at which to provide feedback on organizational training results is defined] to [AT-06_ODP[02]; personnel to whom feedback on organizational training results will be provided is/are assigned].'), ('003797','draft','2022-03-01','DISA','policy','Defines the frequency of which feedback is provided on organizational training results.','AT-06','N/A','Determine if feedback on organizational training results is provided [AT-06_ODP[01]; frequency at which to provide feedback on organizational training results is defined] to [AT-06_ODP[02]; personnel to whom feedback on organizational training results will be provided is/are assigned].'), ('003798','draft','2022-03-01','DISA','policy','Defines the organizational personnel or roles who provide feedback on organizational training results.','AT-06','N/A','Determine if feedback on organizational training results is provided [AT-06_ODP[01]; frequency at which to provide feedback on organizational training results is defined] to [AT-06_ODP[02]; personnel to whom feedback on organizational training results will be provided is/are assigned].'), ('003799','draft','2022-03-01','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level audit and accountability policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','AU-01a.01(b)','N/A','Determine if the [AU-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] of the audit and accountability policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.'), ('003800','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the development and documentation of the audit and accountability policy.','AU-01b.','N/A','Determine if the [AU-01_ODP[04]; an official to manage the audit and accountability policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures.'), ('003801','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the dissemination of the audit and accountability policy.','AU-01b.','N/A','Determine if the [AU-01_ODP[04]; an official to manage the audit and accountability policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures.'), ('003802','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the development and documentation of the audit and accountability procedures.','AU-01b.','N/A','Determine if the [AU-01_ODP[04]; an official to manage the audit and accountability policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures.'), ('003803','draft','2022-03-01','DISA','policy','Designate an organization-defined official to manage the dissemination of the audit and accountability procedures.','AU-01b.','N/A','Determine if the [AU-01_ODP[04]; an official to manage the audit and accountability policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures.'), ('003804','draft','2022-03-01','DISA','policy','Defines the official designated for managing the development, documentation, and dissemination of the audit and accountability policy.','AU-01b.','N/A','Determine if the [AU-01_ODP[04]; an official to manage the audit and accountability policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures.'), ('003805','draft','2022-03-01','DISA','policy','Defines the official designated for managing the development, documentation, and dissemination of the audit and accountability procedures.','AU-01b.','N/A','Determine if the [AU-01_ODP[04]; an official to manage the audit and accountability policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the audit and accountability policy and procedures.'), ('003806','draft','2022-03-02','DISA','policy','Review and update the current audit and accountability policy following organization-defined events.','AU-01c.01','N/A','Determine if: - the current audit and accountability policy is reviewed and updated [AU-01_ODP[05]; the frequency at which the current audit and accountability policy is reviewed and updated is defined]. - the current audit and accountability policy is reviewed and updated following [AU-01_ODP[06]; events that would require the current audit and accountability policy to be reviewed and updated are defined.]'), ('003807','draft','2022-03-02','DISA','policy','Defines the events following reviewing and updating the current audit and accountability policy.','AU-01c.01','N/A','Determine if: - the current audit and accountability policy is reviewed and updated [AU-01_ODP[05]; the frequency at which the current audit and accountability policy is reviewed and updated is defined]. - the current audit and accountability policy is reviewed and updated following [AU-01_ODP[06]; events that would require the current audit and accountability policy to be reviewed and updated are defined.]'), ('003808','draft','2022-03-02','DISA','policy','Review and update the current audit and accountability procedures following organization-defined events.','AU-01c.02','N/A','Determine if: - the current audit and accountability procedures are reviewed and updated [AU-01_ODP[07]; the frequency at which the current audit and accountability procedures are reviewed and updated is defined]. - the current audit and accountability procedures are reviewed and updated following [AU-01_ODP[08]; events that would require audit and accountability procedures to be reviewed and updated are defined].'), ('003809','draft','2022-03-02','DISA','policy','Defines the events following reviewing and updating the current audit and accountability procedures.','AU-01c.02','N/A','Determine if: - the current audit and accountability procedures are reviewed and updated [AU-01_ODP[07]; the frequency at which the current audit and accountability procedures are reviewed and updated is defined]. - the current audit and accountability procedures are reviewed and updated following [AU-01_ODP[08]; events that would require audit and accountability procedures to be reviewed and updated are defined].'), ('003810','draft','2022-03-02','DISA','policy','Review and update the event types selected for logging on an organization-defined frequency.','AU-02e.','N/A','Determine if the event types selected for logging are reviewed and updated [AU-02_ODP[04]; the frequency of event types selected for logging are reviewed and updated].'), ('003811','draft','2022-03-02','DISA','policy','Defines the frequency at which the event types selected for logging will be reviewed and updated.','AU-02e.','N/A','Determine if the event types selected for logging are reviewed and updated [AU-02_ODP[04]; the frequency of event types selected for logging are reviewed and updated].'), ('003812','draft','2022-03-02','DISA','policy','Limit personally identifiable information contained in audit records to organization-defined elements identified in the privacy risk assessment.','AU-03(03)','N/A','Determine if personally identifiable information contained in audit records is limited to [AU-03(03)_ODP; elements identified in the privacy risk assessment are defined] identified in the privacy risk assessment.'), ('003813','draft','2022-03-02','DISA','policy','Defines the elements identified in the privacy risk assessment for limiting personally identifiable information contained in audit records.','AU-03(03)','N/A','Determine if personally identifiable information contained in audit records is limited to [AU-03(03)_ODP; elements identified in the privacy risk assessment are defined] identified in the privacy risk assessment.'), ('003814','draft','2022-03-02','DISA','policy','Defines the time-period for the alert in the event of an audit process failure.','AU-05a.','N/A','Determine if [AU-05_ODP[01]; personnel or roles receiving audit logging process failure alerts are defined] are alerted in the event of an audit logging process failure within [AU-05_ODP[02]; time period for personnel or roles receiving audit logging process failure alerts is defined].'), ('003815','draft','2022-03-02','DISA','policy','Provide an alternate audit logging capability in the event of a failure in primary audit logging capability that implements organization-defined alternate audit logging functionality.','AU-05(05)','N/A','Determine if an alternate audit logging capability is provided in the event of a failure in primary audit logging capability that implements [AU-05(05)_ODP; an alternate audit logging functionality in the event of a failure in primary audit logging capability is defined].'), ('003816','draft','2022-03-02','DISA','policy','Defines the alternate audit logging functionality in the event of a failure in primary audit logging capability.','AU-05(05)','N/A','Determine if an alternate audit logging capability is provided in the event of a failure in primary audit logging capability that implements [AU-05(05)_ODP; an alternate audit logging functionality in the event of a failure in primary audit logging capability is defined].'), ('003817','draft','2022-03-02','DISA','policy','Review and analyze the potential impact of the organization-defined inappropriate or unusual activity.','AU-06a.','N/A','Determine if system audit records are reviewed and analyzed [AU-06_ODP[01]; frequency at which system audit records are reviewed and analyzed is defined] for indications of [AU-06_ODP[02]; inappropriate or unusual activity is defined] and the potential impact of the inappropriate or unusual activity.'), ('003818','draft','2022-03-02','DISA','policy','Adjust the level of audit review and analysis within the system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.','AU-06c.','N/A','Determine if the level of audit record review, analysis, and reporting within the system is adjusted when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.'), ('003819','draft','2022-03-02','DISA','policy','Adjust the level of audit reporting within the system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.','AU-06c.','N/A','Determine if the level of audit record review, analysis, and reporting within the system is adjusted when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.'), ('003820','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for integrating audit record review, analysis, and reporting processes.','AU-06(01)','N/A','Determine if audit record review, analysis, and reporting processes are integrated using [AU-06(01)_ODP; automated mechanisms used for integrating audit record review, analysis, and reporting processes are defined].'), ('003821','draft','2022-03-02','DISA','technical','Implement the capability to centrally review and analyze audit records from multiple components within the system.','AU-06(04)','N/A','Determine if: - the capability to centrally review and analyze audit records from multiple components within the system is provided. - the capability to centrally review and analyze audit records from multiple components within the system is implemented.'), ('003822','draft','2022-03-02','DISA','technical','Implement an audit reduction capability that supports on-demand audit review and analysis.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('003823','draft','2022-03-02','DISA','technical','Implement an audit reduction capability that supports on-demand reporting requirements.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('003824','draft','2022-03-02','DISA','technical','Implement an audit reduction capability that supports after-the-fact investigations of incidents.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('003825','draft','2022-03-02','DISA','technical','Implement a report generation capability that supports on-demand audit review and analysis.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('003826','draft','2022-03-02','DISA','technical','Implement a report generation capability that supports on-demand reporting requirements.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('003827','draft','2022-03-02','DISA','technical','Implement a report generation capability that supports after-the-fact investigations of incidents.','AU-07a.','N/A','Determine if: - an audit record reduction and report generation capability is provided that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents. - if an audit record reduction and report generation capability is implemented that supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents.'), ('003828','draft','2022-03-02','DISA','technical','Implement an audit reduction capability that does not alter original content or time ordering of audit records.','AU-07b.','N/A','Determine if: - an audit record reduction and report generation capability is provided that does not alter the original content or time ordering of audit records. - an audit record reduction and report generation capability is implemented that does not alter the original content or time ordering of audit records.'), ('003829','draft','2022-03-02','DISA','technical','Implement a report generation capability that does not alter original content or time ordering of audit records.','AU-07b.','N/A','Determine if: - an audit record reduction and report generation capability is provided that does not alter the original content or time ordering of audit records. - an audit record reduction and report generation capability is implemented that does not alter the original content or time ordering of audit records.'), ('003830','draft','2022-03-02','DISA','technical','Implement the capability to process, sort, and search audit records for events of interest based on organization-defined audit fields within audit records.','AU-07(01)','N/A','Determine if: - the capability to process, sort, and search audit records for events of interest based on [AU-07(01)_ODP; fields within audit records that can be processed, sorted, or searched are defined] are provided. - the capability to process, sort, and search audit records for events of interest based on [AU-07(01)_ODP; fields within audit records that can be processed, sorted, or searched are defined] are implemented.'), ('003831','draft','2022-03-02','DISA','technical','Alert organization-defined personnel or roles upon detection of unauthorized access, modification, or deletion of audit information.','AU-09b.','N/A','Determine if [AU-09_ODP; personnel or roles to be alerted upon detection of unauthorized access, modification, or deletion of audit information is/are defined] are alerted upon detection of unauthorized access, modification, or deletion of audit information.'), ('003832','draft','2022-03-02','DISA','technical','Defines the personnel or roles to be alerted upon detection of unauthorized access, modification, or deletion of audit information.','AU-09b.','N/A','Determine if [AU-09_ODP; personnel or roles to be alerted upon detection of unauthorized access, modification, or deletion of audit information is/are defined] are alerted upon detection of unauthorized access, modification, or deletion of audit information.'), ('003833','draft','2022-03-02','DISA','policy','Store audit information on a component running a different operating system than the system component being audited.','AU-09(07)','N/A','Determine if audit information is stored on a component running a different operating system than the system or component being audited.'), ('003834','draft','2022-03-02','DISA','technical','Implement the capability for organization-defined individuals or roles to change the auditing to be performed on organization-defined system components based on organization-defined selectable event criteria within organization-defined time thresholds.','AU-12(03)','N/A','Determine if: - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is provided. - the capability for [AU-12(03)_ODP[01]; individuals or roles authorized to change the logging on system components are defined] to change the logging to be performed on [AU-12(03)_ODP[02]; system components on which logging is to be performed are defined] based on [AU-12(03)_ODP[03]; selectable event criteria with which change logging is to be performed are defined] within [AU-12(03)_ODP[04]; time thresholds in which logging actions are to change is defined] is implemented.'), ('003835','draft','2022-03-02','DISA','technical','Provide the capability for auditing the parameters of user query events for data sets containing personally identifiable information.','AU-12(04)','N/A','Determine if: - the capability to audit the parameters of user query events for data sets containing personally identifiable information is provided. - the capability to audit the parameters of user query events for data sets containing personally identifiable information is implemented.'), ('003836','draft','2022-03-02','DISA','technical','Implement the capability for auditing the parameters of user query events for data sets containing personally identifiable information.','AU-12(04)','N/A','Determine if: - the capability to audit the parameters of user query events for data sets containing personally identifiable information is provided. - the capability to audit the parameters of user query events for data sets containing personally identifiable information is implemented.'), ('003837','draft','2022-03-02','DISA','policy','If an information disclosure is discovered, notify organization-defined personnel or roles.','AU-13b.01','N/A','Determine if [AU-13_ODP[03]; personnel or roles to be notified if an information disclosure is discovered is/are defined] are notified if an information disclosure is discovered.'), ('003838','draft','2022-03-02','DISA','policy','Defines the personnel or roles to be notified if an information disclosure is discovered.','AU-13b.01','N/A','Determine if [AU-13_ODP[03]; personnel or roles to be notified if an information disclosure is discovered is/are defined] are notified if an information disclosure is discovered.'), ('003839','draft','2022-03-02','DISA','policy','If an information disclosure is discovered, take organization-defined additional actions.','AU-13b.02','N/A','Determine if [AU-13_ODP[04]; additional actions to be taken if an information disclosure is discovered are defined] are taken if an information disclosure is discovered.'), ('003840','draft','2022-03-02','DISA','policy','Defines the additional actions to be taken if an information disclosure is discovered.','AU-13b.02','N/A','Determine if [AU-13_ODP[04]; additional actions to be taken if an information disclosure is discovered are defined] are taken if an information disclosure is discovered.'), ('003841','draft','2022-03-02','DISA','policy','Monitor open-source information and information sites using organization-defined automated mechanisms.','AU-13(01)','N/A','Determine if open-source information and information sites are monitored using [AU-13(01)_ODP; automated mechanisms for monitoring open-source information and information sites are defined].'), ('003842','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for monitoring open-source information.','AU-13(01)','N/A','Determine if open-source information and information sites are monitored using [AU-13(01)_ODP; automated mechanisms for monitoring open-source information and information sites are defined].'), ('003843','draft','2022-03-02','DISA','policy','Employ discovery techniques, processes, and tools to determine if external entities are replicating organizational information in an unauthorized manner.','AU-13(03)','N/A','Determine if discovery techniques, processes, and tools are employed to determine if external entities are replicating organizational information in an unauthorized manner.'), ('003844','draft','2022-03-02','DISA','technical','Implement the capability for organization-defined users or roles to select a user session to record; view; hear; and/or log the content of a user session under organization-defined circumstances.','AU-14a.','N/A','Determine if: - [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] are provided with the capability to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined]. - the capability for [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined] is implemented.'), ('003845','draft','2022-03-02','DISA','technical','Defines users or roles who will provide and implement the capability to record; view; hear; and/or log the content of a user session under organization-defined circumstances.','AU-14a.','N/A','Determine if: - [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] are provided with the capability to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined]. - the capability for [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined] is implemented.'), ('003846','draft','2022-03-02','DISA','technical','Defines the circumstances to record; view; hear; and/or log the content of a user session.','AU-14a.','N/A','Determine if: - [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] are provided with the capability to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined]. - the capability for [AU-14_ODP[01]; users or roles who can audit the content of a user session are defined] to [AU-14_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {record; view; hear; log}] the content of a user session under [AU-14_ODP[03]; circumstances under which the content of a user session can be audited are defined] is implemented.'), ('003847','draft','2022-03-02','DISA','technical','Develop, integrate, and use session auditing activities in consultation with legal counsel and in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.','AU-14b.','N/A','Determine if: - session auditing activities are developed in consultation with legal counsel and in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. - session auditing activities are integrated in consultation with legal counsel and in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines. - session auditing activities are used in consultation with legal counsel and in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.'), ('003848','draft','2022-03-02','DISA','technical','Implement the capability for authorized users to remotely view and hear content related to an established user session in real time.','AU-14(03)','N/A','Determine if: - the capability for authorized users to remotely view and hear content related to an established user session in real time is provided. - the capability for authorized users to remotely view and hear content related to an established user session in real time is implemented.'), ('003849','draft','2022-03-02','DISA','policy','Disseminate an organization-level; mission/business process; system-level assessment, authorization, and monitoring policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','CA-01a.01(b)','N/A','Determine if the [CA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] assessment, authorization, and monitoring policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.'), ('003850','draft','2022-03-02','DISA','policy','Defines the personnel or roles to whom the assessment, authorization, and monitoring policy is to be disseminated.','CA-01a.02','N/A','Determine if: - assessment, authorization, and monitoring procedures to facilitate the implementation of the assessment, authorization, and monitoring policy and associated assessment, authorization, and monitoring controls are developed and documented. - the assessment, authorization, and monitoring procedures are disseminated to [CA-01_ODP[02]; personnel or roles to whom the assessment, authorization, and monitoring procedures are to be disseminated is/are defined].'), ('003851','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the development and documentation of the assessment, authorization, and monitoring policy.','CA-01b.','N/A','Determine if the [CA-01_ODP[04]; an official to manage the assessment, authorization, and monitoring policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the assessment, authorization, and monitoring policy and procedures.'), ('003852','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the development and documentation of the assessment, authorization, and monitoring procedures.','CA-01b.','N/A','Determine if the [CA-01_ODP[04]; an official to manage the assessment, authorization, and monitoring policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the assessment, authorization, and monitoring policy and procedures.'), ('003853','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the dissemination of the assessment, authorization, and monitoring policy.','CA-01b.','N/A','Determine if the [CA-01_ODP[04]; an official to manage the assessment, authorization, and monitoring policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the assessment, authorization, and monitoring policy and procedures.'), ('003854','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the dissemination of the assessment, authorization, and monitoring procedures.','CA-01b.','N/A','Determine if the [CA-01_ODP[04]; an official to manage the assessment, authorization, and monitoring policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the assessment, authorization, and monitoring policy and procedures.'), ('003855','draft','2022-03-02','DISA','policy','Review and update the current assessment, authorization, and monitoring policy following organization-defined events.','CA-01c.01','N/A','Determine if: - the current assessment, authorization, and monitoring policy is reviewed and updated [CA-01_ODP[05]; the frequency at which the current assessment, authorization, and monitoring policy is reviewed and updated is defined]. - the current assessment, authorization, and monitoring policy is reviewed and updated following [CA-01_ODP[06]; events that would require the current assessment, authorization, and monitoring policy to be reviewed and updated are defined].'), ('003856','draft','2022-03-02','DISA','policy','Defines the events following reviewing and updating the current assessment, authorization, and monitoring policy.','CA-01c.01','N/A','Determine if: - the current assessment, authorization, and monitoring policy is reviewed and updated [CA-01_ODP[05]; the frequency at which the current assessment, authorization, and monitoring policy is reviewed and updated is defined]. - the current assessment, authorization, and monitoring policy is reviewed and updated following [CA-01_ODP[06]; events that would require the current assessment, authorization, and monitoring policy to be reviewed and updated are defined].'), ('003857','draft','2022-03-02','DISA','policy','Review and update the current assessment and authorization procedures following organization-defined events.','CA-01c.02','N/A','Determine if: - the current assessment, authorization, and monitoring procedures are reviewed and updated [CA-01_ODP[07]; the frequency at which the current assessment, authorization, and monitoring procedures are reviewed and updated is defined]. - the current assessment, authorization, and monitoring procedures are reviewed and updated following [CA-01_ODP[08]; events that would require assessment, authorization, and monitoring procedures to be reviewed and updated are defined].'), ('003858','draft','2022-03-02','DISA','policy','Defines the events following reviewing and updating the current assessment, authorization, and monitoring procedures.','CA-01c.02','N/A','Determine if: - the current assessment, authorization, and monitoring procedures are reviewed and updated [CA-01_ODP[07]; the frequency at which the current assessment, authorization, and monitoring procedures are reviewed and updated is defined]. - the current assessment, authorization, and monitoring procedures are reviewed and updated following [CA-01_ODP[08]; events that would require assessment, authorization, and monitoring procedures to be reviewed and updated are defined].'), ('003859','draft','2022-03-02','DISA','policy','Select the appropriate assessor or assessment team for the type of assessment to be conducted.','CA-02a.','N/A','Determine if an appropriate assessor or assessment team is selected for the type of assessment to be conducted.'), ('003860','draft','2022-03-02','DISA','policy','Ensure the control assessment plan is reviewed and approved by the authorizing official or designated representative prior to conducting the assessment.','CA-02c.','N/A','Determine if the control assessment plan is reviewed and approved by the authorizing official or designated representative prior to conducting the assessment.'), ('003861','draft','2022-03-02','DISA','policy','Assess the controls in the systems and its environment of operation on an organization-defined frequency, to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the privacy requirements.','CA-02d.','N/A','Determine if: - controls are assessed in the system and its environment of operation [CA-02_ODP[01]; the frequency at which to assess controls in the system and its environment of operation is defined] to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established security requirements. - controls are assessed in the system and its environment of operation [CA-02_ODP[01]; the frequency at which to assess controls in the system and its environment of operation is defined] to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established privacy requirements.'), ('003862','draft','2022-03-02','DISA','policy','Approve and manage the exchange of information between the system and other systems using interconnection security agreements; information exchange security agreements; memoranda of understanding or agreement; service level agreements; user agreement; and/or nondisclosure agreements with an organization-defined type of agreement.','CA-03a.','N/A','Determine if the exchange of information between the system and other systems is approved and managed using [CA-03_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {interconnection security agreements; information exchange security agreements; memoranda of understanding or agreement; service level agreements; user agreements; non-disclosure agreements; [CA-03_ODP[02]; the type of agreement used to approve and manage the exchange of information is defined (if selected)]}].'), ('003863','draft','2022-03-02','DISA','policy','Document, as part of each exchange agreement, the privacy requirements, controls and responsibilities for each system, and the impact level of the information communicated.','CA-03b.','N/A','Determine if: - the interface characteristics are documented as part of each exchange agreement. - security requirements are documented as part of each exchange agreement. - privacy requirements are documented as part of each exchange agreement. - controls are documented as part of each exchange agreement. - responsibilities for each system are documented as part of each exchange agreement. - the impact level of the information communicated is documented as part of each exchange agreement.'), ('003864','draft','2022-03-02','DISA','policy','Verify that individuals or systems transferring data between interconnecting systems have the requisite authorizations (i.e., write permissions or privileges) prior to accepting such data.','CA-03(06)','N/A','Determine if individuals or systems transferring data between interconnecting systems have the requisite authorizations (i.e., write permissions or privileges) prior to accepting such data.'), ('003865','draft','2022-03-02','DISA','policy','Identify transitive (downstream) information exchanges with other systems through the systems identified in CA-3a.','CA-03(07)(a)','N/A','Determine if transitive (downstream) information exchanges with other systems through the systems identified in CA-03a are identified.'), ('003866','draft','2022-03-02','DISA','policy','Take measures to ensure that transitive (downstream) information exchanges cease when the controls on identified transitive (downstream) systems cannot be verified or validated.','CA-03(07)(b)','N/A','Determine if measures are taken to ensure that transitive (downstream) information exchanges cease when the controls on identified transitive (downstream) systems cannot be verified or validated.'), ('003867','draft','2022-03-02','DISA','policy','Defines the automated mechanisms to ensure the accuracy, currency, and availability of the plan of actions and milestones.','CA-05(01)','N/A','Determine if [CA-05(01)_ODP; automated mechanisms used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system are defined] are used to ensure the accuracy, currency, and availability of the plan of action and milestones for the system.'), ('003868','draft','2022-03-02','DISA','policy','Assign a senior official as the authorizing official for common controls available for inheritance by organizational systems.','CA-06b.','N/A','Determine if a senior official is assigned as the authorizing official for common controls available for inheritance by organizational systems.'), ('003869','draft','2022-03-02','DISA','policy','Ensure the authorizing official accepts the use of common controls inherited by the system, before commencing operations.','CA-06c.01','N/A','Determine if before commencing operations, the authorizing official for the system accepts the use of common controls inherited by the system.'), ('003870','draft','2022-03-02','DISA','policy','Ensure that the authorizing official for common controls authorizes the use of those controls for inheritance by organizational systems.','CA-06d.','N/A','Determine if the authorizing official for common controls authorizes the use of those controls for inheritance by organizational systems.'), ('003871','draft','2022-03-02','DISA','policy','Employ a joint authorization process for the system that includes multiple authorizing officials from the same organization conducting the authorization.','CA-06(01)','N/A','Determine if: - a joint authorization process is employed for the system. - the joint authorization process employed for the system includes multiple authorizing officials from the same organization conducting the authorization.'), ('003872','draft','2022-03-02','DISA','policy','Employ a joint authorization process for the system that includes multiple authorizing officials with at least one authorizing official from an organization external to the organization conducting the authorization.','CA-06(02)','N/A','Determine if: - a joint authorization process is employed for the system. - the joint authorization process employed for the system includes multiple authorizing officials with at least one authorizing official from an organization external to the organization conducting the authorization.'), ('003873','draft','2022-03-02','DISA','policy','Implement continuous monitoring in accordance with the organization-level continuous monitoring strategy.','CA-07','N/A','Determine if: - a system-level continuous monitoring strategy is developed. - system-level continuous monitoring is implemented in accordance with the organization-level continuous monitoring strategy.'), ('003874','draft','2022-03-02','DISA','policy','Defines the system-level metrics to be monitored.','CA-07a.','N/A','Determine if system-level continuous monitoring includes establishment of the following system-level metrics to be monitored: [CA-07_ODP[01]; system-level metrics to be monitored are defined].'), ('003875','draft','2022-03-02','DISA','policy','Establish organization-defined frequencies for assessment of control effectiveness.','CA-07b.','N/A','Determine if: - system-level continuous monitoring includes established [CA-07_ODP[02]; frequencies at which to monitor control effectiveness are defined] for monitoring. - system-level continuous monitoring includes established [CA-07_ODP[03]; frequencies at which to assess control effectiveness are defined] for assessment of control effectiveness.'), ('003876','draft','2022-03-02','DISA','policy','Defines the frequencies for monitoring of control effectiveness.','CA-07b.','N/A','Determine if: - system-level continuous monitoring includes established [CA-07_ODP[02]; frequencies at which to monitor control effectiveness are defined] for monitoring. - system-level continuous monitoring includes established [CA-07_ODP[03]; frequencies at which to assess control effectiveness are defined] for assessment of control effectiveness.'), ('003877','draft','2022-03-02','DISA','policy','Defines the frequencies for assessment of control effectiveness.','CA-07b.','N/A','Determine if: - system-level continuous monitoring includes established [CA-07_ODP[02]; frequencies at which to monitor control effectiveness are defined] for monitoring. - system-level continuous monitoring includes established [CA-07_ODP[03]; frequencies at which to assess control effectiveness are defined] for assessment of control effectiveness.'), ('003878','draft','2022-03-02','DISA','policy','Develop ongoing control assessments in accordance with the continuous monitoring strategy.','CA-07c.','N/A','Determine if system-level continuous monitoring includes ongoing control assessments in accordance with the continuous monitoring strategy.'), ('003879','draft','2022-03-02','DISA','policy','Implement a continuous monitoring program that includes reporting the privacy status to organization-defined personnel or roles on an organization-defined frequency.','CA-07g.','N/A','Determine if: - system-level continuous monitoring includes reporting the security status of the system to [CA-07_ODP[04]; personnel or roles to whom the security status of the system is reported are defined] [CA-07_ODP[05]; frequency at which the security status of the system is reported is defined]. - system-level continuous monitoring includes reporting the privacy status of the system to [CA-07_ODP[06]; personnel or roles to whom the privacy status of the system is reported are defined] [CA-07_ODP[07]; frequency at which the privacy status of the system is reported is defined].'), ('003880','draft','2022-03-02','DISA','policy','Defines the frequency with which to report the privacy status to organization-defined personnel or roles.','CA-07g.','N/A','Determine if: - system-level continuous monitoring includes reporting the security status of the system to [CA-07_ODP[04]; personnel or roles to whom the security status of the system is reported are defined] [CA-07_ODP[05]; frequency at which the security status of the system is reported is defined]. - system-level continuous monitoring includes reporting the privacy status of the system to [CA-07_ODP[06]; personnel or roles to whom the privacy status of the system is reported are defined] [CA-07_ODP[07]; frequency at which the privacy status of the system is reported is defined].'), ('003881','draft','2022-03-02','DISA','policy','Ensure risk monitoring is an integral part of the continuous monitoring strategy that includes effectiveness monitoring.','CA-07(04)(a)','N/A','Determine if effectiveness monitoring is included in risk monitoring,'), ('003882','draft','2022-03-02','DISA','policy','Ensure risk monitoring is an integral part of the continuous monitoring strategy that includes compliance monitoring.','CA-07(04)(b)','N/A','Determine if compliance monitoring is included in risk monitoring,'), ('003883','draft','2022-03-02','DISA','policy','Ensure risk monitoring is an integral part of the continuous monitoring strategy that includes change monitoring.','CA-07(04)(c)','N/A','Determine if change monitoring is included in risk monitoring.'), ('003884','draft','2022-03-02','DISA','policy','Employ organization-defined actions to validate that policies are established.','CA-07(05)','N/A','Determine if: - [CA-07(05)_ODP[01; actions to validate that policies are established are defined] are employed to validate that policies are established. - [CA-07(05)_ODP[02]; actions to validate that implemented controls are operating in a consistent manner are defined] are employed to validate that implemented controls are operating in a consistent manner.'), ('003885','draft','2022-03-02','DISA','policy','Employ organization-defined actions to validate that implemented controls are operating in a consistent manner.','CA-07(05)','N/A','Determine if: - [CA-07(05)_ODP[01; actions to validate that policies are established are defined] are employed to validate that policies are established. - [CA-07(05)_ODP[02]; actions to validate that implemented controls are operating in a consistent manner are defined] are employed to validate that implemented controls are operating in a consistent manner.'), ('003886','draft','2022-03-02','DISA','policy','Defines the actions used to validate policies.','CA-07(05)','N/A','Determine if: - [CA-07(05)_ODP[01; actions to validate that policies are established are defined] are employed to validate that policies are established. - [CA-07(05)_ODP[02]; actions to validate that implemented controls are operating in a consistent manner are defined] are employed to validate that implemented controls are operating in a consistent manner.'), ('003887','draft','2022-03-02','DISA','policy','Ensure the accuracy, currency, and availability of monitoring results for the system using organization-defined automated mechanisms.','CA-07(06)','N/A','Determine if [CA-07(06)_ODP; automated mechanisms used to ensure the accuracy, currency, and availability of monitoring results for the system are defined] are used to ensure the accuracy, currency, and availability of monitoring results for the system.'), ('003888','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for ensuring accuracy, currency, and availability of monitoring results.','CA-07(06)','N/A','Determine if [CA-07(06)_ODP; automated mechanisms used to ensure the accuracy, currency, and availability of monitoring results for the system are defined] are used to ensure the accuracy, currency, and availability of monitoring results for the system.'), ('003889','draft','2022-03-02','DISA','policy','Employ a penetration testing process, on an organization-defined frequency, that includes announced or unannounced attempts to bypass or circumvent controls associated with physical access points to the facility.','CA-08(03)','N/A','Determine if the penetration testing process includes [CA-08(03)_ODP[01]; frequency at which to employ penetration testing that attempts to bypass or circumvent controls associated with physical access points to the facility is defined] [CA-08(03)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {announced; unannounced}] attempts to bypass or circumvent controls associated with physical access points to facility.'), ('003890','draft','2022-03-02','DISA','policy','Defines the frequency the penetration testing process will be employed.','CA-08(03)','N/A','Determine if the penetration testing process includes [CA-08(03)_ODP[01]; frequency at which to employ penetration testing that attempts to bypass or circumvent controls associated with physical access points to the facility is defined] [CA-08(03)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {announced; unannounced}] attempts to bypass or circumvent controls associated with physical access points to facility.'), ('003891','draft','2022-03-02','DISA','policy','Document, for each internal connection, the privacy requirements.','CA-09b.','N/A','Determine if: - for each internal connection, the interface characteristics are documented. - for each internal connection, the security requirements are documented. - for each internal connection, the privacy requirements are documented. - for each internal connection, the nature of the information communicated is documented.'), ('003892','draft','2022-03-02','DISA','policy','Terminate internal system connections after organization-defined conditions.','CA-09c.','N/A','Determine if internal system connections are terminated after [CA-09_ODP[02]; conditions requiring termination of internal connections are defined].'), ('003893','draft','2022-03-02','DISA','policy','Defines the conditions for terminating internal system connections.','CA-09c.','N/A','Determine if internal system connections are terminated after [CA-09_ODP[02]; conditions requiring termination of internal connections are defined].'), ('003894','draft','2022-03-02','DISA','policy','Review on an organization-defined frequency the continued need for each internal connection.','CA-09d.','N/A','Determine if the continued need for each internal connection is reviewed [CA-09_ODP[03]; frequency at which to review the continued need for each internal connection is defined].'), ('003895','draft','2022-03-02','DISA','policy','Defines the frequency for reviewing each internal connection.','CA-09d.','N/A','Determine if the continued need for each internal connection is reviewed [CA-09_ODP[03]; frequency at which to review the continued need for each internal connection is defined].'), ('003896','draft','2022-03-02','DISA','policy','Perform privacy compliance checks on constituent components prior to the establishment of the internal connection.','CA-09(01)','N/A','Determine if: - security compliance checks are performed on constituent system components prior to the establishment of the internal connection. - privacy compliance checks are performed on constituent system components prior to the establishment of the internal connection.'), ('003897','draft','2022-03-02','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level configuration management policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','CM-01a.01(b)','N/A','Determine if the configuration management policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('003898','draft','2022-03-02','DISA','policy','Defines the official to manage the development, documentation, and dissemination of the configuration management policy.','CM-01b.','N/A','Determine if the [CM-01_ODP[04]; an official to manage the configuration management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures.'), ('003899','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the development and documentation of the configuration management policy.','CM-01b.','N/A','Determine if the [CM-01_ODP[04]; an official to manage the configuration management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures.'), ('003900','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the dissemination of the configuration management policy.','CM-01b.','N/A','Determine if the [CM-01_ODP[04]; an official to manage the configuration management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures.'), ('003901','draft','2022-03-02','DISA','policy','Defines the official to manage the development, documentation, and dissemination of the configuration management procedures.','CM-01b.','N/A','Determine if the [CM-01_ODP[04]; an official to manage the configuration management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures.'), ('003902','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the development and documentation of the configuration management procedures.','CM-01b.','N/A','Determine if the [CM-01_ODP[04]; an official to manage the configuration management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures.'), ('003903','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the dissemination of the configuration management procedures.','CM-01b.','N/A','Determine if the [CM-01_ODP[04]; an official to manage the configuration management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the configuration management policy and procedures.'), ('003904','draft','2022-03-02','DISA','policy','Review and update the configuration management policy following organization-defined events.','CM-01c.01','N/A','Determine if: - the current configuration management policy is reviewed and updated [CM-01_ODP[05]; the frequency at which the current configuration management policy is reviewed and updated is defined]. - the current configuration management policy is reviewed and updated following [CM-01_ODP[06]; events that would require the current configuration management policy to be reviewed and updated are defined].'), ('003905','draft','2022-03-02','DISA','policy','Defines the events for when the policy will be reviewed and updated.','CM-01c.01','N/A','Determine if: - the current configuration management policy is reviewed and updated [CM-01_ODP[05]; the frequency at which the current configuration management policy is reviewed and updated is defined]. - the current configuration management policy is reviewed and updated following [CM-01_ODP[06]; events that would require the current configuration management policy to be reviewed and updated are defined].'), ('003906','draft','2022-03-02','DISA','policy','Review and update, on an organization-defined frequency, the current configuration management procedures.','CM-01c.02','N/A','Determine if: - the current configuration management procedures are reviewed and updated [CM-01_ODP[07]; the frequency at which the current configuration management procedures are reviewed and updated is defined]. - the current configuration management procedures are reviewed and updated following [CM-01_ODP[08]; events that would require configuration management procedures to be reviewed and updated are defined].'), ('003907','draft','2022-03-02','DISA','policy','Review and update the configuration management procedures following organization-defined events.','CM-01c.02','N/A','Determine if: - the current configuration management procedures are reviewed and updated [CM-01_ODP[07]; the frequency at which the current configuration management procedures are reviewed and updated is defined]. - the current configuration management procedures are reviewed and updated following [CM-01_ODP[08]; events that would require configuration management procedures to be reviewed and updated are defined].'), ('003908','draft','2022-03-02','DISA','policy','Defines the events for when the procedures will be reviewed and updated.','CM-01c.02','N/A','Determine if: - the current configuration management procedures are reviewed and updated [CM-01_ODP[07]; the frequency at which the current configuration management procedures are reviewed and updated is defined]. - the current configuration management procedures are reviewed and updated following [CM-01_ODP[08]; events that would require configuration management procedures to be reviewed and updated are defined].'), ('003909','draft','2022-03-02','DISA','policy','Develop and document, under configuration control, a current baseline configuration of the system.','CM-02a.','N/A','Determine if: - a current baseline configuration of the system is developed and documented. - a current baseline configuration of the system is maintained under configuration control.'), ('003910','draft','2022-03-02','DISA','policy','Review and update the baseline configuration of the system when system components are installed or upgraded.','CM-02b.03','N/A','Determine if the baseline configuration of the system is reviewed and updated when system components are installed or upgraded.'), ('003911','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for maintaining the currency, completeness, accuracy, and availability of the baseline configuration of the system.','CM-02(02)','N/A','Determine if: - the currency of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the completeness of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the accuracy of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined]. - the availability of the baseline configuration of the system is maintained using [CM-02(02)_ODP; automated mechanisms for maintaining baseline configuration of the system are defined].'), ('003912','draft','2022-03-02','DISA','policy','Approve or disapprove configuration-controlled changes to the system, with explicit consideration for privacy impact analyses.','CM-03b.','N/A','Determine if: - proposed configuration-controlled changes to the system are reviewed. - proposed configuration-controlled changes to the system are approved or disapproved with explicit consideration for security and privacy impact analyses.'), ('003913','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for documenting proposed changes to the system.','CM-03(01)(a)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to document proposed changes to the system.'), ('003914','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for notifying approval authorities of proposed changes to the system and request change proposal.','CM-03(01)(b)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to notify [CM-03(01)_ODP[02]; approval authorities to be notified of and request approval for proposed changes to the system are defined] of proposed changes to the system and request change approval.'), ('003915','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for highlighting proposed changes to the system that have not been approved or disapproved within an organization-defined time period.','CM-03(01)(c)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to highlight proposed changes to the system that have not been approved or disapproved within [CM-03(01)_ODP[03]l the time period after which to highlight changes that have not been approved or disapproved is defined].'), ('003916','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for prohibiting changes to the system until designated approvals are received.','CM-03(01)(d)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to prohibit changes to the system until designated approvals are received.'), ('003917','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for documenting all changes to the system.','CM-03(01)(e)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to document all changes to the system.'), ('003918','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for notifying organization-defined personnel when approved changes to the system are completed.','CM-03(01)(f)','N/A','Determine if [CM-03(01)_ODP[01]; mechanisms used to automate configuration change control are defined] are used to notify [CM-03(01)_ODP[04]; personnel to be notified when approved changes are complete is/are defined] when approved changes to the system are completed.'), ('003919','draft','2022-03-02','DISA','policy','Defines the automated mechanisms to implement changes to the current system baseline.','CM-03(03)','N/A','Determine if: - changes to the current system baseline are implemented using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined]. - the updated baseline is deployed across the installed base using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined].'), ('003920','draft','2022-03-02','DISA','policy','Defines the automated mechanisms to deploy the updated baselines across the installed base.','CM-03(03)','N/A','Determine if: - changes to the current system baseline are implemented using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined]. - the updated baseline is deployed across the installed base using [CM-03(03)_ODP; mechanisms used to automate the implementation of changes and deployment of the updated baseline across the installed base are defined].'), ('003921','draft','2022-03-02','DISA','policy','Require an organization-defined privacy representative to be a member of the organization-defined configuration change control element.','CM-03(04)','N/A','Determine if: - [CM-03(04)_ODP[01]; security representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined]. - [CM-03(04)_ODP[02]; privacy representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined].'), ('003922','draft','2022-03-02','DISA','policy','Defines the security representatives required to be members of the configuration change control element.','CM-03(04)','N/A','Determine if: - [CM-03(04)_ODP[01]; security representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined]. - [CM-03(04)_ODP[02]; privacy representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined].'), ('003923','draft','2022-03-02','DISA','policy','Defines the privacy representatives required to be members of the configuration change control element.','CM-03(04)','N/A','Determine if: - [CM-03(04)_ODP[01]; security representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined]. - [CM-03(04)_ODP[02]; privacy representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined].'), ('003924','draft','2022-03-02','DISA','policy','Defines the configuration change control element required for security and privacy representatives.','CM-03(04)','N/A','Determine if: - [CM-03(04)_ODP[01]; security representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined]. - [CM-03(04)_ODP[02]; privacy representatives required to be members of the change control element are defined] are required to be members of the [CM-03(04)_ODP[03]; the configuration change control element of which the security and privacy representatives are to be members is defined].'), ('003925','draft','2022-03-02','DISA','policy','Review changes to the system on an organization-defined frequency or when there are organization-defined circumstances to determine whether unauthorized changes have occurred.','CM-03(07)','N/A','Determine if changes to the system are reviewed [CM-03(07)_ODP[01]; the frequency at which changes are to be reviewed is defined] or when [CM-03(07)_ODP[02]; the circumstances under which changes are to be reviewed are defined] to determine whether unauthorized changes have occurred.'), ('003926','draft','2022-03-02','DISA','policy','Defines the frequency for reviewing changes to the system.','CM-03(07)','N/A','Determine if changes to the system are reviewed [CM-03(07)_ODP[01]; the frequency at which changes are to be reviewed is defined] or when [CM-03(07)_ODP[02]; the circumstances under which changes are to be reviewed are defined] to determine whether unauthorized changes have occurred.'), ('003927','draft','2022-03-02','DISA','policy','Defines the circumstances for determining whether unauthorized changes to the system have occurred.','CM-03(07)','N/A','Determine if changes to the system are reviewed [CM-03(07)_ODP[01]; the frequency at which changes are to be reviewed is defined] or when [CM-03(07)_ODP[02]; the circumstances under which changes are to be reviewed are defined] to determine whether unauthorized changes have occurred.'), ('003928','draft','2022-03-02','DISA','technical','Prevent or restrict changes to the configuration of the system under organization-defined circumstances.','CM-03(08)','N/A','Determine if changes to the configuration of the system are prevented or restricted under [CM-03(08)_ODP; the circumstances under which changes are to be prevented or restricted are defined].'), ('003929','draft','2022-03-02','DISA','technical','Defines the circumstances for preventing or restricting changes to the configuration of the system.','CM-03(08)','N/A','Determine if changes to the configuration of the system are prevented or restricted under [CM-03(08)_ODP; the circumstances under which changes are to be prevented or restricted are defined].'), ('003930','draft','2022-03-02','DISA','policy','Analyze changes to the system to determine potential privacy impacts prior to change implementation.','CM-04','N/A','Determine if: - changes to the system are analyzed to determine potential security impacts prior to change implementation. - changes to the system are analyzed to determine potential privacy impacts prior to change implementation.'), ('003931','draft','2022-03-02','DISA','policy','When analyzing changes to the system, looks for security impacts due to flaws, weaknesses, incompatibility, or intentional malice.','CM-04(01)','N/A','Determine if: - changes to the system are analyzed in a separate test environment before implementation in an operational environment. - changes to the system are analyzed for security impacts due to flaws. - changes to the system are analyzed for privacy impacts due to flaws. - changes to the system are analyzed for security impacts due to weaknesses. - changes to the system are analyzed for privacy impacts due to weaknesses. - changes to the system are analyzed for privacy impacts due to incompatibility. - changes to the system are analyzed for privacy impacts due to incompatibility. - changes to the system are analyzed for security impacts due to intentional malice. - changes to the system are analyzed for privacy impacts due to intentional malice.'), ('003932','draft','2022-03-02','DISA','policy','After system changes, verify that the impacted controls are implemented correctly, meeting the privacy requirements for the system.','CM-04(02)','N/A','Determine if: - the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes. - the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.'), ('003933','draft','2022-03-02','DISA','policy','After system changes, verify that the impacted controls are operating as intended, meeting the privacy requirements for the system.','CM-04(02)','N/A','Determine if: - the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes. - the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.'), ('003934','draft','2022-03-02','DISA','policy','After system changes, verify that the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system.','CM-04(02)','N/A','Determine if: - the impacted controls are implemented correctly with regard to meeting the security requirements for the system after system changes. - the impacted controls are implemented correctly with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the security requirements for the system after system changes. - the impacted controls are operating as intended with regard to meeting the privacy requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the security requirements for the system after system changes. - the impacted controls are producing the desired outcome with regard to meeting the privacy requirements for the system after system changes.'), ('003935','draft','2022-03-02','DISA','policy','Define and document physical access restrictions associated with changes to the system.','CM-05','N/A','Determine if: - physical access restrictions associated with changes to the system are defined and documented. - physical access restrictions associated with changes to the system are approved. - physical access restrictions associated with changes to the system are enforced. - logical access restrictions associated with changes to the system are defined and documented. - logical access restrictions associated with changes to the system are approved. - logical access restrictions associated with changes to the system are enforced.'), ('003936','draft','2022-03-02','DISA','policy','Define and document logical access restrictions associated with changes to the system.','CM-05','N/A','Determine if: - physical access restrictions associated with changes to the system are defined and documented. - physical access restrictions associated with changes to the system are approved. - physical access restrictions associated with changes to the system are enforced. - logical access restrictions associated with changes to the system are defined and documented. - logical access restrictions associated with changes to the system are approved. - logical access restrictions associated with changes to the system are enforced.'), ('003937','draft','2022-03-02','DISA','technical','Defines the automated mechanisms to enforce access restrictions.','CM-05(01)(a)','N/A','Determine if access restrictions for change are enforced using [CM-05(01)_ODP; mechanisms used to automate the enforcement of access restrictions are defined].'), ('003938','draft','2022-03-02','DISA','technical','Automatically generate audit records of the enforcement actions.','CM-05(01)(b)','N/A','Determine if audit records of enforcement actions are automatically generated.'), ('003939','draft','2022-03-02','DISA','policy','Defines the frequency with which to review and reevaluate system privileges.','CM-05(05)(b)','N/A','Determine if: - privileges are reviewed [CM-05(05)_ODP[01; frequency at which to review privileges is defined]. - privileges are reevaluated [CM-05(05)_ODP[02]; frequency at which to reevaluate privileges is defined].'), ('003940','draft','2022-03-02','DISA','policy','Review and reevaluate system privileges per an organization-defined frequency.','CM-05(05)(b)','N/A','Determine if: - privileges are reviewed [CM-05(05)_ODP[01; frequency at which to review privileges is defined]. - privileges are reevaluated [CM-05(05)_ODP[02]; frequency at which to reevaluate privileges is defined].'), ('003941','draft','2022-03-02','DISA','policy','Establish and document configuration settings for components employed within the system that reflect the most restrictive mode consistent with operational requirements using organization-defined common secure configurations.','CM-06a.','N/A','Determine if configuration settings that reflect the most restrictive mode consistent with operational requirements are established and documented for components employed within the system using [CM-06_ODP[01]; common secure configurations to establish and document configuration settings for components employed within the system are defined].'), ('003942','draft','2022-03-02','DISA','policy','Defines the common secure configurations for establishing and documenting configuration settings within the system, that reflect the most restrictive mode consistent with operational requirements.','CM-06a.','N/A','Determine if configuration settings that reflect the most restrictive mode consistent with operational requirements are established and documented for components employed within the system using [CM-06_ODP[01]; common secure configurations to establish and document configuration settings for components employed within the system are defined].'), ('003943','draft','2022-03-02','DISA','policy','Monitor changes to the configuration settings in accordance with organizational policies.','CM-06d.','N/A','Determine if: - changes to the configuration settings are monitored in accordance with organizational policies and procedures. - changes to the configuration settings are controlled in accordance with organizational policies and procedures.'), ('003944','draft','2022-03-02','DISA','policy','Monitor changes to the configuration settings in accordance with organizational procedures.','CM-06d.','N/A','Determine if: - changes to the configuration settings are monitored in accordance with organizational policies and procedures. - changes to the configuration settings are controlled in accordance with organizational policies and procedures.'), ('003945','draft','2022-03-02','DISA','policy','Control changes to the configuration settings in accordance with organizational policies.','CM-06d.','N/A','Determine if: - changes to the configuration settings are monitored in accordance with organizational policies and procedures. - changes to the configuration settings are controlled in accordance with organizational policies and procedures.'), ('003946','draft','2022-03-02','DISA','policy','Control changes to the configuration settings in accordance with organizational procedures.','CM-06d.','N/A','Determine if: - changes to the configuration settings are monitored in accordance with organizational policies and procedures. - changes to the configuration settings are controlled in accordance with organizational policies and procedures.'), ('003947','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for managing, applying, and verifying configuration settings.','CM-06(01)','N/A','Determine if: - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are managed using [CM-06(01)_ODP[02]; automated mechanisms to manage configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are applied using [CM-06(01)_ODP[03]; automated mechanisms to apply configuration settings are defined]. - configuration settings for [CM-06(01)_ODP[01]; system components for which to manage, apply, and verify configuration settings are defined] are verified using [CM-06(01)_ODP[04]; automated mechanisms to verify configuration settings are defined].'), ('003948','draft','2022-03-02','DISA','policy','Defines the mission essential capabilities for configuring the system.','CM-07a.','N/A','Determine if the system is configured to provide only [CM-07_ODP[01]; mission-essential capabilities for the system are defined].'), ('003949','draft','2022-03-02','DISA','policy','Require that organization-defined user-installed software in a confined physical or virtual machine environment with limited privileges.','CM-07(06)','N/A','Determine if [CM-07(06)_ODP; user-installed software required to be executed in a confined environment is defined] is required to be executed in a confined physical or virtual machine environment with limited privileges.'), ('003950','draft','2022-03-02','DISA','policy','Defines the user-installed software required for executing in a confined physical or virtual machine environment with limited privileges.','CM-07(06)','N/A','Determine if [CM-07(06)_ODP; user-installed software required to be executed in a confined environment is defined] is required to be executed in a confined physical or virtual machine environment with limited privileges.'), ('003951','draft','2022-03-02','DISA','policy','Allow execution of binary or machine-executable code only in confined physical or virtual machine environments and with the explicit approval of organization-defined personnel or roles when such code is obtained from sources with limited or no warranty.','CM-07(07)(a)','N/A','Determine if the execution of binary or machine-executable code obtained from sources with limited or no warranty is only allowed with the explicit approval of [CM-07(07)_ODP; personnel or roles to explicitly approve execution of binary or machine-executable code is/are defined].'), ('003952','draft','2022-03-02','DISA','policy','Defines the personnel or roles who allow execution of binary or machine-executable code only in confined physical or virtual machine environments when such code is obtained from sources with limited or no warranty.','CM-07(07)(a)','N/A','Determine if the execution of binary or machine-executable code obtained from sources with limited or no warranty is only allowed with the explicit approval of [CM-07(07)_ODP; personnel or roles to explicitly approve execution of binary or machine-executable code is/are defined].'), ('003953','draft','2022-03-02','DISA','policy','Allow execution of binary or machine-executable code only in confined physical or virtual machine environments and with the explicit approval of organization-defined personnel or roles when such code is without the provision of source code.','CM-07(07)(b)','N/A','Determine if the execution of binary or machine-executable code without the provision of source code is only allowed with the explicit approval of [CM-07(07)_ODP; personnel or roles to explicitly approve execution of binary or machine-executable code is/are defined].'), ('003954','draft','2022-03-02','DISA','policy','Defines the personnel or roles who allow execution of binary or machine-executable code only in confined physical or virtual machine environments when such code is without the provision of source code.','CM-07(07)(b)','N/A','Determine if the execution of binary or machine-executable code without the provision of source code is only allowed with the explicit approval of [CM-07(07)_ODP; personnel or roles to explicitly approve execution of binary or machine-executable code is/are defined].'), ('003955','draft','2022-03-02','DISA','policy','Prohibit the use of binary or machine-executable code from sources with limited or no warranty or without the provision of source code.','CM-07(08)(a)','N/A','Determine if the use of binary or machine-executable code is prohibited when it originates from sources with limited or no warranty or without the provision of source code.'), ('003956','draft','2022-03-02','DISA','policy','Allow exceptions only for compelling mission or operational requirements and with the approval of the authorizing official.','CM-07(08)(b)','N/A','Determine if: - exceptions to the prohibition of binary or machine-executable code from sources with limited or no warranty or without the provision of source code are allowed only for compelling mission or operational requirements. - exceptions to the prohibition of binary or machine-executable code from sources with limited or no warranty or without the provision of source code are allowed only with the approval of the authorizing official.'), ('003957','draft','2022-03-02','DISA','policy','Identify organization-defined hardware components authorized for system use.','CM-07(09)(a)','N/A','Determine if [CM-07(09)_ODP[01]; hardware components authorized for system use are defined] are identified.'), ('003958','draft','2022-03-02','DISA','policy','Defines the hardware components to be identified for authorized system use.','CM-07(09)(a)','N/A','Determine if [CM-07(09)_ODP[01]; hardware components authorized for system use are defined] are identified.'), ('003959','draft','2022-03-02','DISA','policy','Prohibit the use or connection of unauthorized hardware components.','CM-07(09)(b)','N/A','Determine if the use or connection of unauthorized hardware components is prohibited.'), ('003960','draft','2022-03-02','DISA','policy','Review and update the list of authorized hardware components on an organization-defined frequency.','CM-07(09)(c)','N/A','Determine if the list of authorized hardware components is reviewed and updated [CM-07(09)_ODP[02]; frequency at which to review and update the list of authorized hardware components is defined].'), ('003961','draft','2022-03-02','DISA','policy','Defines the frequency the hardware components are reviewed and updated.','CM-07(09)(c)','N/A','Determine if the list of authorized hardware components is reviewed and updated [CM-07(09)_ODP[02]; frequency at which to review and update the list of authorized hardware components is defined].'), ('003962','draft','2022-03-02','DISA','policy','Develop and document an inventory of system components that accurately reflects the system.','CM-08a.01','N/A','Determine if an inventory of system components that accurately reflects the system is developed and documented.'), ('003963','draft','2022-03-02','DISA','policy','Develop and document an inventory of system components that includes all components within the system.','CM-08a.02','N/A','Determine if an inventory of system components that includes all components within the system is developed and documented.'), ('003964','draft','2022-03-02','DISA','policy','Develop and document an inventory of system components that does not include duplicate accounting of components or components assigned to any other system.','CM-08a.03','N/A','Determine if an inventory of system components that does not include duplicate accounting of components or components assigned to any other system is developed and documented.'), ('003965','draft','2022-03-02','DISA','policy','Develop and document an inventory of system components that is at the level of granularity deemed necessary for tracking.','CM-08a.04','N/A','Determine if an inventory of system components that is at the level of granularity deemed necessary for tracking and reporting is developed and documented.'), ('003966','draft','2022-03-02','DISA','policy','Develop and document an inventory of system components that is at the level of granularity deemed necessary for reporting.','CM-08a.04','N/A','Determine if an inventory of system components that is at the level of granularity deemed necessary for tracking and reporting is developed and documented.'), ('003967','draft','2022-03-02','DISA','policy','Develop and document an inventory of system components that includes organization-defined information deemed necessary to achieve effective system component accountability.','CM-08a.05','N/A','Determine if an inventory of system components that includes [CM-08_ODP[01]; information deemed necessary to achieve effective system component accountability is defined] is developed and documented.'), ('003968','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for maintaining the currency, completeness, accuracy, and availability of the inventory of the system components.','CM-08(02)','N/A','Determine if: - [CM-08(02)_ODP[01]; automated mechanisms used to maintain the currency of the system component inventory are defined] are used to maintain the currency of the system component inventory. - [CM-08(02)_ODP[02]; automated mechanisms used to maintain the completeness of the system component inventory are defined] are used to maintain the completeness of the system component inventory. - [CM-08(02)_ODP[03]; automated mechanisms used to maintain the accuracy of the system component inventory are defined] are used to maintain the accuracy of the system component inventory. - [CM-08(02)_ODP[04]; automated mechanisms used to maintain the availability of the system component inventory are defined] are used to maintain the availability of the system component inventory.'), ('003969','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for detecting the presence of unauthorized hardware, software, and firmware components within the system.','CM-08(03)(a)','N/A','Determine if: - the presence of unauthorized hardware within the system is detected using [CM-08(03)_ODP[01]; automated mechanisms used to detect the presence of unauthorized hardware within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined]. - the presence of unauthorized software within the system is detected using [CM-08(03)_ODP[02]; automated mechanisms used to detect the presence of unauthorized software within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined;]. - the presence of unauthorized firmware within the system is detected using [CM-08(03)_ODP[03]; automated mechanisms used to detect the presence of unauthorized firmware within the system are defined] [CM-08(03)_ODP[04]; frequency at which automated mechanisms are used to detect the presence of unauthorized system components within the system is defined].'), ('003970','draft','2022-03-02','DISA','policy','Defines the automated mechanisms for supporting the tracking of system components by geographic location.','CM-08(08)','N/A','Determine if [CM-08(08)_ODP; automated mechanisms for tracking components are defined] are used to support the tracking of system components by geographic location.'), ('003971','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that addresses roles, responsibilities, and configuration management processes.','CM-09a.','N/A','Determine if: - the configuration management plan addresses roles. - the configuration management plan addresses responsibilities. - the configuration management plan addresses configuration management processes and procedures.'), ('003972','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that addresses roles, responsibilities, and configuration management procedures.','CM-09a.','N/A','Determine if: - the configuration management plan addresses roles. - the configuration management plan addresses responsibilities. - the configuration management plan addresses configuration management processes and procedures.'), ('003973','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that establishes a process for identifying configuration items throughout the system development life cycle.','CM-09b.','N/A','Determine if: - the configuration management plan establishes a process for identifying configuration items throughout the system development life cycle. - the configuration management plan establishes a process for managing the configuration of the configuration items.'), ('003974','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that establishes a process for managing the configuration of the configuration items.','CM-09b.','N/A','Determine if: - the configuration management plan establishes a process for identifying configuration items throughout the system development life cycle. - the configuration management plan establishes a process for managing the configuration of the configuration items.'), ('003975','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that defines the configuration items for the system.','CM-09c.','N/A','Determine if: - the configuration management plan defines the configuration items for the system. - the configuration management plan places the configuration items under configuration management.'), ('003976','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that places the configuration items under configuration management.','CM-09c.','N/A','Determine if: - the configuration management plan defines the configuration items for the system. - the configuration management plan places the configuration items under configuration management.'), ('003977','draft','2022-03-02','DISA','policy','Develop and document a configuration management plan for the system that is reviewed and approved by organization-defined personnel or roles.','CM-09d.','N/A','Determine if the configuration management plan is reviewed and approved by [CM-09_ODP; personnel or roles to review and approve the configuration management plan is/are defined].'), ('003978','draft','2022-03-02','DISA','policy','Defines the personnel or roles for those who review and approve the configuration management plan.','CM-09d.','N/A','Determine if the configuration management plan is reviewed and approved by [CM-09_ODP; personnel or roles to review and approve the configuration management plan is/are defined].'), ('003979','draft','2022-03-02','DISA','policy','Implement a configuration management plan for the system that is reviewed and approved by organization-defined personnel or roles.','CM-09d.','N/A','Determine if the configuration management plan is reviewed and approved by [CM-09_ODP; personnel or roles to review and approve the configuration management plan is/are defined].'), ('003980','draft','2022-03-02','DISA','technical','Allow user installation of software only with explicit privileged status.','CM-11(02)','N/A','Determine if user installation of software is allowed only with explicit privileged status.'), ('003981','draft','2022-03-02','DISA','technical','Enforce and monitor compliance with software installation policies using organization-defined automated mechanisms.','CM-11(03)','N/A','Determine if: - compliance with software installation policies is enforced using [CM-11(03)_ODP[01]; automated mechanisms used to enforce compliance are defined]. - compliance with software installation policies is monitored using [CM-11(03)_ODP[02]; automated mechanisms used to monitor compliance are defined].'), ('003982','draft','2022-03-02','DISA','policy','Identify and document the location of the organization-defined information on which the information is processed and stored.','CM-12a.','N/A','Determine if: - the location of [CM-12_ODP; information for which the location is to be identified and documented is defined] is identified and documented. - the specific system components on which [CM-12_ODP; information for which the location is to be identified and documented is defined] is processed are identified and documented. - the specific system components on which [CM-12_ODP; information for which the location is to be identified and documented is defined] is stored are identified and documented.'), ('003983','draft','2022-03-02','DISA','policy','Identify and document the specific system components on which the organization-defined information is processed and stored.','CM-12a.','N/A','Determine if: - the location of [CM-12_ODP; information for which the location is to be identified and documented is defined] is identified and documented. - the specific system components on which [CM-12_ODP; information for which the location is to be identified and documented is defined] is processed are identified and documented. - the specific system components on which [CM-12_ODP; information for which the location is to be identified and documented is defined] is stored are identified and documented.'), ('003984','draft','2022-03-02','DISA','policy','Defines the information on which the location and specific system components are processed and stored.','CM-12a.','N/A','Determine if: - the location of [CM-12_ODP; information for which the location is to be identified and documented is defined] is identified and documented. - the specific system components on which [CM-12_ODP; information for which the location is to be identified and documented is defined] is processed are identified and documented. - the specific system components on which [CM-12_ODP; information for which the location is to be identified and documented is defined] is stored are identified and documented.'), ('003985','draft','2022-03-02','DISA','policy','Identify and document the users who have access to the system where the information is processed and stored.','CM-12b.','N/A','Determine if: - the users who have access to the system and system components where [CM-12_ODP; information for which the location is to be identified and documented is defined] is processed are identified and documented. - the users who have access to the system and system components where [CM-12_ODP; information for which the location is to be identified and documented is defined] is stored are identified and documented.'), ('003986','draft','2022-03-02','DISA','policy','Identify and document the users who have access to the system components where the information is processed and stored.','CM-12b.','N/A','Determine if: - the users who have access to the system and system components where [CM-12_ODP; information for which the location is to be identified and documented is defined] is processed are identified and documented. - the users who have access to the system and system components where [CM-12_ODP; information for which the location is to be identified and documented is defined] is stored are identified and documented.'), ('003987','draft','2022-03-02','DISA','policy','Document changes to the location (i.e., system or system components) where the information is processed and stored.','CM-12c.','N/A','Determine if: - changes to the location (i.e., system or system components) where [CM-12_ODP; information for which the location is to be identified and documented is defined] is processed are documented. - changes to the location (i.e., system or system components) where [CM-12_ODP; information for which the location is to be identified and documented is defined] is stored are documented.'), ('003988','draft','2022-03-02','DISA','policy','Use automated tools to identify organization-defined information by information type on organization-defined components to ensure adequate controls are in place to protect organizational information.','CM-12(01)','N/A','Determine if automated tools are used to identify [CM-12(01)_ODP[01]; information to be protected is defined by information type] on [CM-12(01)_ODP[02]; system components where the information is located are defined] to ensure that controls are in place to protect organizational information and individual privacy.'), ('003989','draft','2022-03-02','DISA','policy','Defines the information by information type for identifying automated tools.','CM-12(01)','N/A','Determine if automated tools are used to identify [CM-12(01)_ODP[01]; information to be protected is defined by information type] on [CM-12(01)_ODP[02]; system components where the information is located are defined] to ensure that controls are in place to protect organizational information and individual privacy.'), ('003990','draft','2022-03-02','DISA','policy','Defines the system components used to ensure controls are in place to protect organizational information and individual privacy.','CM-12(01)','N/A','Determine if automated tools are used to identify [CM-12(01)_ODP[01]; information to be protected is defined by information type] on [CM-12(01)_ODP[02]; system components where the information is located are defined] to ensure that controls are in place to protect organizational information and individual privacy.'), ('003991','draft','2022-03-02','DISA','policy','Develop and document a map of system data actions.','CM-13','N/A','Determine if a map of system data actions is developed and documented.'), ('003992','draft','2022-03-02','DISA','policy','Prevent the installation of organization-defined software and firmware components without verification that the component has been digitally signed using a certificate that is recognized and approved by the organization.','CM-14','N/A','Determine if: - the installation of [CM-14_ODP[01]; software components requiring verification of a digitally signed certificate before installation are defined] is prevented unless it is verified that the software has been digitally signed using a certificate recognized and approved by the organization. - the installation of [CM-14_ODP[02]; firmware components requiring verification of a digitally signed certificate before installation are defined] is prevented unless it is verified that the firmware has been digitally signed using a certificate recognized and approved by the organization.'), ('003993','draft','2022-03-02','DISA','policy','Defines the software and firmware for preventing installation without verification that the component has been digitally signed.','CM-14','N/A','Determine if: - the installation of [CM-14_ODP[01]; software components requiring verification of a digitally signed certificate before installation are defined] is prevented unless it is verified that the software has been digitally signed using a certificate recognized and approved by the organization. - the installation of [CM-14_ODP[02]; firmware components requiring verification of a digitally signed certificate before installation are defined] is prevented unless it is verified that the firmware has been digitally signed using a certificate recognized and approved by the organization.'), ('003994','draft','2022-03-02','DISA','policy','Develop and document an organizational-level; mission/business process-level; and/or system-level contingency planning policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','CP-01a.01(b)','N/A','Determine if the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('003995','draft','2022-03-02','DISA','policy','Disseminate an organizational-level; mission/business process-level; and/or system-level contingency planning policy to organization-defined personnel or roles that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','CP-01a.01(b)','N/A','Determine if the [CP-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] contingency planning policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('003996','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage development and documentation of the contingency planning policy.','CP-01b.','N/A','Determine if the [CP-01_ODP[04]; an official to manage the contingency planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the contingency planning policy and procedures.'), ('003997','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage dissemination of the contingency planning policy.','CP-01b.','N/A','Determine if the [CP-01_ODP[04]; an official to manage the contingency planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the contingency planning policy and procedures.'), ('003998','draft','2022-03-02','DISA','policy','Defines the official designated to manage the development, documentation, and dissemination of the contingency policy.','CP-01b.','N/A','Determine if the [CP-01_ODP[04]; an official to manage the contingency planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the contingency planning policy and procedures.'), ('003999','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the development and documentation of the contingency planning procedures.','CP-01b.','N/A','Determine if the [CP-01_ODP[04]; an official to manage the contingency planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the contingency planning policy and procedures.'), ('004000','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage the dissemination of the contingency procedures.',NULL,'N/A',NULL), ('004001','draft','2022-03-02','DISA','policy','Defines the official designated to manage the development, documentation, and dissemination of the contingency procedures.','CP-01b.','N/A','Determine if the [CP-01_ODP[04]; an official to manage the contingency planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the contingency planning policy and procedures.'), ('004002','draft','2022-03-02','DISA','policy','Review and update the current contingency planning policy following organization-defined events.','CP-01c.01','N/A','Determine if: - the current contingency planning policy is reviewed and updated [CP-01_ODP[05]; the frequency at which the current contingency planning policy is reviewed and updated is defined]. - the current contingency planning policy is reviewed and updated following [CP-01_ODP[06]; events that would require the current contingency planning policy to be reviewed and updated are defined].'), ('004003','draft','2022-03-02','DISA','policy','Defines the events with which to review and update the current contingency planning policy.','CP-01c.01','N/A','Determine if: - the current contingency planning policy is reviewed and updated [CP-01_ODP[05]; the frequency at which the current contingency planning policy is reviewed and updated is defined]. - the current contingency planning policy is reviewed and updated following [CP-01_ODP[06]; events that would require the current contingency planning policy to be reviewed and updated are defined].'), ('004004','draft','2022-03-02','DISA','policy','Review and update the current contingency planning procedures following organization-defined events.','CP-01c.02','N/A','Determine if: - the current contingency planning procedures are reviewed and updated [CP-01_ODP[07]; the frequency at which the current contingency planning procedures are reviewed and updated is defined]. - the current contingency planning procedures are reviewed and updated following [CP-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('004005','draft','2022-03-02','DISA','policy','Defines the events with which to review and update the current contingency planning procedures.','CP-01c.02','N/A','Determine if: - the current contingency planning procedures are reviewed and updated [CP-01_ODP[07]; the frequency at which the current contingency planning procedures are reviewed and updated is defined]. - the current contingency planning procedures are reviewed and updated following [CP-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('004006','draft','2022-03-02','DISA','policy','Develop a contingency plan for the system that addresses maintaining essential mission functions despite a system disruption, compromise, or failure.','CP-02a.04','N/A','Determine if a contingency plan for the system is developed that addresses maintaining essential mission and business functions despite a system disruption, compromise, or failure.'), ('004007','draft','2022-03-02','DISA','policy','Develop a contingency plan for the system that addresses maintaining essential business functions despite a system disruption, compromise, or failure.','CP-02a.04','N/A','Determine if a contingency plan for the system is developed that addresses maintaining essential mission and business functions despite a system disruption, compromise, or failure.'), ('004008','draft','2022-03-02','DISA','policy','Develop a contingency plan for the system that addresses the sharing of contingency information.','CP-02a.06','N/A','Determine if a contingency plan for the system is developed that addresses the sharing of contingency information.'), ('004009','draft','2022-03-02','DISA','policy','Incorporate lessons learned from contingency plan testing, training, or actual contingency activities into contingency testing and training.','CP-02g.','N/A','Determine if: - lessons learned from contingency plan testing or actual contingency activities are incorporated into contingency testing. - lessons learned from contingency plan training or actual contingency activities are incorporated into contingency testing and training.'), ('004010','draft','2022-03-02','DISA','policy','Review and update contingency training content on an organization-defined frequency.','CP-03b.','N/A','Determine if: - the contingency plan training content is reviewed and updated [CP-03_ODP[03]; frequency at which to review and update contingency training content is defined]. - the contingency plan training content is reviewed and updated following [CP-03_ODP[04]; events necessitating review and update of contingency training are defined].'), ('004011','draft','2022-03-02','DISA','policy','Defines the frequency the contingency training content will be reviewed and updated.','CP-03b.','N/A','Determine if: - the contingency plan training content is reviewed and updated [CP-03_ODP[03]; frequency at which to review and update contingency training content is defined]. - the contingency plan training content is reviewed and updated following [CP-03_ODP[04]; events necessitating review and update of contingency training are defined].'), ('004012','draft','2022-03-02','DISA','policy','Review and update contingency training content following organization-defined events.','CP-03b.','N/A','Determine if: - the contingency plan training content is reviewed and updated [CP-03_ODP[03]; frequency at which to review and update contingency training content is defined]. - the contingency plan training content is reviewed and updated following [CP-03_ODP[04]; events necessitating review and update of contingency training are defined].'), ('004013','draft','2022-03-02','DISA','policy','Defines the events for which the contingency training content will be reviewed and updated.','CP-03b.','N/A','Determine if: - the contingency plan training content is reviewed and updated [CP-03_ODP[03]; frequency at which to review and update contingency training content is defined]. - the contingency plan training content is reviewed and updated following [CP-03_ODP[04]; events necessitating review and update of contingency training are defined].'), ('004014','draft','2022-03-02','DISA','policy','Defines the automated mechanisms to test the contingency plan.','CP-04(03)','N/A','Determine if the contingency plan is tested using [CP-04(03)_ODP; automated mechanisms for contingency plan testing are defined].'), ('004015','draft','2022-03-02','DISA','policy','Employ organization-defined mechanisms to organization-defined system or system component to disrupt and adversely affect the system or system component.','CP-04(05)','N/A','Determine if [CP-04(05)_ODP[01]; mechanisms employed to disrupt and adversely affect the system or system component are defined] are employed to disrupt and adversely affect the [CP-04(05)_ODP[02]; system or system component on which to apply disruption mechanisms are defined].'), ('004016','draft','2022-03-02','DISA','policy','Defines the mechanisms employed to disrupt and adversely affect the system or system component.','CP-04(05)','N/A','Determine if [CP-04(05)_ODP[01]; mechanisms employed to disrupt and adversely affect the system or system component are defined] are employed to disrupt and adversely affect the [CP-04(05)_ODP[02]; system or system component on which to apply disruption mechanisms are defined].'), ('004017','draft','2022-03-02','DISA','policy','Defines the system or system component used to employ organization-defined mechanisms.','CP-04(05)','N/A','Determine if [CP-04(05)_ODP[01]; mechanisms employed to disrupt and adversely affect the system or system component are defined] are employed to disrupt and adversely affect the [CP-04(05)_ODP[02]; system or system component on which to apply disruption mechanisms are defined].'), ('004018','draft','2022-03-02','DISA','policy','Establish an alternate storage site, including necessary agreements to permit the retrieval of system backup information.','CP-06a.','N/A','Determine if: - an alternate storage site is established. - establishment of the alternate storage site includes necessary agreements to permit the storage and retrieval of system backup information.'), ('004019','draft','2022-03-02','DISA','policy','Request Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness in the event that the primary and/or alternate telecommunications services are provided by a common carrier.','CP-08(01)(b)','N/A','Determine if Telecommunications Service Priority is requested for all telecommunications services used for national security emergency preparedness if the primary and/or alternate telecommunications services are provided by a common carrier.'), ('004020','draft','2022-03-02','DISA','policy','Defines the system components to conduct backups of user level information.','CP-09a.','N/A','Determine if backups of user-level information contained in [CP-09_ODP[01]; system components for which to conduct backups of user-level information is defined] are conducted [CP-09_ODP[02]; frequency at which to conduct backups of user-level information consistent with recovery time and recovery point objectives is defined].'), ('004021','draft','2022-03-02','DISA','policy','Conduct backups of system documentation, including privacy-related documentation, per an organization-defined frequency that is consistent with recovery time and recovery point objectives.','CP-09c.','N/A','Determine if backups of system documentation, including security- and privacy-related documentation are conducted [CP-09_ODP[04]; frequency at which to conduct backups of system documentation consistent with recovery time and recovery point objectives is defined].'), ('004022','draft','2022-03-02','DISA','policy','Protect the confidentiality of backup information.','CP-09d.','N/A','Determine if: - the confidentiality of backup information is protected. - the integrity of backup information is protected. - the availability of backup information is protected.'), ('004023','draft','2022-03-02','DISA','policy','Protect integrity of backup information.','CP-09d.','N/A','Determine if: - the confidentiality of backup information is protected. - the integrity of backup information is protected. - the availability of backup information is protected.'), ('004024','draft','2022-03-02','DISA','policy','Protect the availability of backup information.','CP-09d.','N/A','Determine if: - the confidentiality of backup information is protected. - the integrity of backup information is protected. - the availability of backup information is protected.'), ('004025','draft','2022-03-02','DISA','policy','Implement cryptographic mechanisms to prevent unauthorized disclosure of organization-defined backup information.','CP-09(08)','N/A','Determine if cryptographic mechanisms are implemented to prevent unauthorized disclosure and modification of [CP-09(08)_ODP; backup information to protect against unauthorized disclosure and modification is defined].'), ('004026','draft','2022-03-02','DISA','policy','Implement cryptographic mechanisms to prevent unauthorized modification of organization-defined backup information.','CP-09(08)','N/A','Determine if cryptographic mechanisms are implemented to prevent unauthorized disclosure and modification of [CP-09(08)_ODP; backup information to protect against unauthorized disclosure and modification is defined].'), ('004027','draft','2022-03-02','DISA','policy','Defines the backup information which is protected by cryptographic mechanisms preventing unauthorized disclosure and modification.','CP-09(08)','N/A','Determine if cryptographic mechanisms are implemented to prevent unauthorized disclosure and modification of [CP-09(08)_ODP; backup information to protect against unauthorized disclosure and modification is defined].'), ('004028','draft','2022-03-02','DISA','policy','Provide for the recovery and reconstitution of the system to a known state within an organization-defined time-period consistent with recovery time and recovery point objectives after a disruption, compromise, or failure.','CP-10','N/A','Determine if: - the recovery of the system to a known state is provided within [CP-10_ODP[01]; time period consistent with recovery time and recovery point objectives for the recovery of the system is determined] after a disruption, compromise, or failure. - a reconstitution of the system to a known state is provided within [CP-10_ODP[02]; time period consistent with recovery time and recovery point objectives for the reconstitution of the system is determined] after a disruption, compromise, or failure.'), ('004029','draft','2022-03-02','DISA','policy','Defines the time-period consistent with recovery time and recovery point objectives for the recovery and reconstitution of the system.','CP-10','N/A','Determine if: - the recovery of the system to a known state is provided within [CP-10_ODP[01]; time period consistent with recovery time and recovery point objectives for the recovery of the system is determined] after a disruption, compromise, or failure. - a reconstitution of the system to a known state is provided within [CP-10_ODP[02]; time period consistent with recovery time and recovery point objectives for the reconstitution of the system is determined] after a disruption, compromise, or failure.'), ('004030','draft','2022-03-02','DISA','policy','Protect system components used for recovery and reconstitution.','CP-10(06)','N/A','Determine if system components used for recovery and reconstitution are protected.'), ('004031','draft','2022-03-02','DISA','policy','Defines the personnel or roles the organization-level; mission/business process-level; and/or system-level identification and authorization policy is disseminated to.','IA-01a.','N/A','Determine if: - an identification and authentication policy is developed and documented. - the identification and authentication policy is disseminated to [IA-01_ODP[01]; personnel or roles to whom the identification and authentication policy is to be disseminated are defined].'), ('004032','draft','2022-03-02','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level identification and authorization policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination, among organizational entities, and compliance.','IA-01a.01(a)','N/A','Determine if: - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses purpose. - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses scope. - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses roles. - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses responsibilities. - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses management commitment. - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses coordination among organizational entities. - the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy addresses compliance.'), ('004033','draft','2022-03-02','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level identification and authorization policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','IA-01a.01(b)','N/A','Determine if the [IA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] identification and authentication policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.'), ('004034','draft','2022-03-02','DISA','policy','Develop and document the procedures to facilitate the implementation of the identification and authorization policy and the associated identification and authentication controls.','IA-01a.02','N/A','Determine if: - identification and authentication procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls are developed and documented. - Determine if the identification and authentication procedures are disseminated to [IA-01_ODP[02]; personnel or roles to whom the identification and authentication procedures are to be disseminated is/are defined].'), ('004035','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage development and documentation of the identification and authentication policy.','IA-01b.','N/A','Determine if the [IA-01_ODP[04]; an official to manage the identification and authentication policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures.'), ('004036','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage dissemination of the identification and authentication policy.','IA-01b.','N/A','Determine if the [IA-01_ODP[04]; an official to manage the identification and authentication policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures.'), ('004037','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage development and documentation of the identification and authentication procedures.','IA-01b.','N/A','Determine if the [IA-01_ODP[04]; an official to manage the identification and authentication policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures.'), ('004038','draft','2022-03-02','DISA','policy','Designate an organization-defined official to manage dissemination of the identification and authentication procedures.','IA-01b.','N/A','Determine if the [IA-01_ODP[04]; an official to manage the identification and authentication policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures.'), ('004039','draft','2022-03-02','DISA','policy','Defines the official designated to managing the development, documentation, and dissemination of the identification and authentication policy.','IA-01b.','N/A','Determine if the [IA-01_ODP[04]; an official to manage the identification and authentication policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures.'), ('004040','draft','2022-03-02','DISA','policy','Defines the official designated to managing the development, documentation, and dissemination of the identification and authentication procedures.','IA-01b.','N/A','Determine if the [IA-01_ODP[04]; an official to manage the identification and authentication policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the identification and authentication policy and procedures.'), ('004041','draft','2022-03-02','DISA','policy','Review and update the current identification and authentication policy following organization-defined events.','IA-01c.01','N/A','Determine if: - the current identification and authentication policy is reviewed and updated [IA-01_ODP[05]; the frequency at which the current identification and authentication policy is reviewed and updated is defined]. - the current identification and authentication policy is reviewed and updated following [IA-01_ODP[06]; events that would require the current identification and authentication policy to be reviewed and updated are defined].'), ('004042','draft','2022-03-02','DISA','policy','Defines the events following reviewing and updating the current identification and authentication policy.','IA-01c.01','N/A','Determine if: - the current identification and authentication policy is reviewed and updated [IA-01_ODP[05]; the frequency at which the current identification and authentication policy is reviewed and updated is defined]. - the current identification and authentication policy is reviewed and updated following [IA-01_ODP[06]; events that would require the current identification and authentication policy to be reviewed and updated are defined].'), ('004043','draft','2022-03-02','DISA','policy','Review and update the current identification and authentication procedures following organization-defined events.','IA-01c.02','N/A','Determine if: - the current identification and authentication procedures are reviewed and updated [IA-01_ODP[07]; the frequency at which the current identification and authentication procedures are reviewed and updated is defined]. - the current identification and authentication procedures are reviewed and updated following [IA-01_ODP[08]; events that would require identification and authentication procedures to be reviewed and updated are defined].'), ('004044','draft','2022-03-02','DISA','policy','Defines the events following reviewing and updating the current identification and authentication procedures.','IA-01c.02','N/A','Determine if: - the current identification and authentication procedures are reviewed and updated [IA-01_ODP[07]; the frequency at which the current identification and authentication procedures are reviewed and updated is defined]. - the current identification and authentication procedures are reviewed and updated following [IA-01_ODP[08]; events that would require identification and authentication procedures to be reviewed and updated are defined].'), ('004045','draft','2022-03-02','DISA','policy','Require users to be individually authenticated before granting access to the shared accounts or resources.','IA-02(05)','N/A','Determine if users are required to be individually authenticated before granting access to the shared accounts or resources when shared accounts or authenticators are employed.'), ('004046','draft','2022-03-02','DISA','technical','Implement multi-factor authentication for local; network; and/or remote access to privileged accounts; and/or non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access.','IA-02(06)(a)','N/A','Determine if multi-factor authentication is implemented for [IA-02(06)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {local; network; remote}] access to [IA-02(06)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {privileged accounts; non-privileged accounts}] such that one of the factors is provided by a device separate from the system gaining access.'), ('004047','draft','2022-03-02','DISA','technical','Implement multi-factor authentication for local; network; and/or remote access to privileged accounts; and/or non-privileged accounts such that the device meets organization-defined strength of mechanism requirements.','IA-02(06)(b)','N/A','Determine if multi-factor authentication is implemented for [IA-02(06)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {local; network; remote}] access to [IA-02(06)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {privileged accounts; non-privileged accounts}] such that the device meets [IA-02(06)_ODP[03]; the strength of mechanism requirements to be enforced by a device separate from the system gaining access to accounts is defined].'), ('004048','draft','2022-03-02','DISA','technical','Defines the strength of mechanism requirements for implementing multi-factor authentication.','IA-02(06)(b)','N/A','Determine if multi-factor authentication is implemented for [IA-02(06)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {local; network; remote}] access to [IA-02(06)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {privileged accounts; non-privileged accounts}] such that the device meets [IA-02(06)_ODP[03]; the strength of mechanism requirements to be enforced by a device separate from the system gaining access to accounts is defined].'), ('004049','draft','2022-03-02','DISA','technical','Defines the dynamic identifier policy for managing individual identifiers dynamically.','IA-04(05)','N/A','Determine if individual identifiers are dynamically managed in accordance with [IA-04(05)_ODP; a dynamic identifier policy for managing individual identifiers is defined].'), ('004050','draft','2022-03-02','DISA','policy','Generate pairwise pseudonymous identifiers.','IA-04(08)','N/A','Determine if pairwise pseudonymous identifiers are generated.'), ('004051','draft','2022-03-02','DISA','policy','Maintain the attributes for each uniquely identified individual, device, or service in organization-defined protected central storage.','IA-04(09)','N/A','Determine if the attributes for each uniquely identified individual, device, or service are maintained in [IA-04(09)_ODP; protected central storage used to maintain the attributes for each uniquely identified individual, device, or service is defined].'), ('004052','draft','2022-03-02','DISA','policy','Defines the protected central storage for maintaining the attributes for each uniquely individual, device or service.','IA-04(09)','N/A','Determine if the attributes for each uniquely identified individual, device, or service are maintained in [IA-04(09)_ODP; protected central storage used to maintain the attributes for each uniquely identified individual, device, or service is defined].'), ('004053','draft','2022-03-02','DISA','policy','Manage system authenticators by establishing administrative procedures for lost/compromised or damaged authenticators.','IA-05d.','N/A','Determine if system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators.'), ('004054','draft','2022-03-02','DISA','policy','Manage system authenticators by implementing administrative procedures for lost/compromised or damaged authenticators.','IA-05d.','N/A','Determine if system authenticators are managed through the establishment and implementation of administrative procedures for initial authenticator distribution; lost, compromised, or damaged authenticators; and the revocation of authenticators.'), ('004055','draft','2022-03-02','DISA','policy','Manage system authenticators by changing default authenticators prior to first use.','IA-05e.','N/A','Determine if system authenticators are managed through the change of default authenticators prior to first use.'), ('004056','draft','2022-03-02','DISA','policy','Defines the events for when to change or refresh authenticators.','IA-05f.','N/A','Determine if system authenticators are managed through the change or refreshment of authenticators [IA-05_ODP[01]; a time period for changing or refreshing authenticators by authenticator type is defined] or when [IA-05_ODP[02]; events that trigger the change or refreshment of authenticators are defined] occur.'), ('004057','draft','2022-03-02','DISA','policy','Defines the frequency for updating commonly used, expected, or compromised passwords, when they are suspected of being compromised directly or indirectly.','IA-05(01)(a)','N/A','Determine if for password-based authentication, a list of commonly used, expected, or compromised passwords is maintained and updated [IA-05(01)_ODP[01]; the frequency at which to update the list of commonly used, expected, or compromised passwords is defined] and when organizational passwords are suspected to have been compromised directly or indirectly.'), ('004058','draft','2022-03-02','DISA','technical','For password-based authentication, maintain a list of commonly used, expected, or compromised passwords on an organization-defined frequency.','IA-05(01)(a)','N/A','Determine if for password-based authentication, a list of commonly used, expected, or compromised passwords is maintained and updated [IA-05(01)_ODP[01]; the frequency at which to update the list of commonly used, expected, or compromised passwords is defined] and when organizational passwords are suspected to have been compromised directly or indirectly.'), ('004059','draft','2022-03-02','DISA','technical','For password-based authentication, update the list of passwords on an organization-defined frequency.','IA-05(01)(a)','N/A','Determine if for password-based authentication, a list of commonly used, expected, or compromised passwords is maintained and updated [IA-05(01)_ODP[01]; the frequency at which to update the list of commonly used, expected, or compromised passwords is defined] and when organizational passwords are suspected to have been compromised directly or indirectly.'), ('004060','draft','2022-03-02','DISA','technical','For password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.','IA-05(01)(a)','N/A','Determine if for password-based authentication, a list of commonly used, expected, or compromised passwords is maintained and updated [IA-05(01)_ODP[01]; the frequency at which to update the list of commonly used, expected, or compromised passwords is defined] and when organizational passwords are suspected to have been compromised directly or indirectly.'), ('004061','draft','2022-03-02','DISA','technical','For password-based authentication, verify when users create or update passwords, that the passwords are not found on the list of commonly-used, expected, or compromised passwords in IA-5 (1) (a).','IA-05(01)(b)','N/A','Determine if for password-based authentication when passwords are created or updated by users, the passwords are verified not to be found on the list of commonly used, expected, or compromised passwords in IA-05(01)(a).'), ('004062','draft','2022-03-02','DISA','technical','For password-based authentication, store passwords using an approved salted key derivation function, preferably using a keyed hash.','IA-05(01)(d)','N/A','Determine if for password-based authentication, passwords are stored using an approved salted key derivation function, preferably using a keyed hash.'), ('004063','draft','2022-03-02','DISA','technical','For password-based authentication, require immediate selection of a new password upon account recovery.','IA-05(01)(e)','N/A','Determine if for password-based authentication, immediate selection of a new password is required upon account recovery.'), ('004064','draft','2022-03-02','DISA','technical','For password-based authentication, allow user selection of long passwords and passphrases, including spaces and all printable characters.','IA-05(01)(f)','N/A','Determine if for password-based authentication, user selection of long passwords and passphrases is allowed, including spaces and all printable characters.'), ('004065','draft','2022-03-02','DISA','technical','For password-based authentication, employ automated tools to assist the user in selecting strong password authenticators.','IA-05(01)(g)','N/A','Determine if for password-based authentication, automated tools are employed to assist the user in selecting strong password authenticators.'), ('004066','draft','2022-03-02','DISA','technical','For password-based authentication, enforce organization-defined composition and complexity rules.','IA-05(01)(h)','N/A','Determine if for password-based authentication, [IA-05(01)_ODP[02]; authenticator composition and complexity rules are defined] are enforced.'), ('004067','draft','2022-03-02','DISA','policy','Defines the composition and complexity rules to be enforced.','IA-05(01)(h)','N/A','Determine if for password-based authentication, [IA-05(01)_ODP[02]; authenticator composition and complexity rules are defined] are enforced.'), ('004068','draft','2022-03-02','DISA','technical','For public key-based authentication, implement a local cache of revocation data to support path discovery and validation.','IA-05(02)(b)(02)','N/A','Determine if when public key infrastructure (PKI) is used, a local cache of revocation data is implemented to support path discovery and validation.'), ('004069','draft','2022-03-02','DISA','policy','Ensure that the unencrypted static authenticators are not embedded in applications or other forms of static storage.','IA-05(07)','N/A','Determine if unencrypted static authenticators are not embedded in applications or other forms of static storage.'), ('004070','draft','2022-03-02','DISA','policy','Use organization-defined external organizations to federate credentials.','IA-05(09)','N/A','Determine if [IA-05(09)_ODP; external organizations to be used for federating credentials are defined] are used to federate credentials.'), ('004071','draft','2022-03-02','DISA','policy','Defines the external organizations used to federate credentials.','IA-05(09)','N/A','Determine if [IA-05(09)_ODP; external organizations to be used for federating credentials are defined] are used to federate credentials.'), ('004072','draft','2022-03-02','DISA','technical','Defines the binding rules for binding identities and authenticators.','IA-05(10)','N/A','Determine if identities and authenticators are dynamically bound using [IA-05(10)_ODP; rules for dynamically binding identities and authenticators are defined].'), ('004073','draft','2022-03-02','DISA','policy','Use only General Services Administration-approved and validated products and services for identity, credential, and access management.','IA-05(15)','N/A','Determine if only General Services Administration-approved products and services are used for identity, credential, and access management.'), ('004074','draft','2022-03-02','DISA','policy','Require that the issuance of organization-defined types of and/or specific authenticators be conducted in person or by a trusted external party before the organization-defined registration authority with authorization by organization-defined personnel or roles.','IA-05(16)','N/A','Determine if the issuance of [IA-05(16)_ODP[01]; types of and/or specific authenticators to be issued are defined] is required to be conducted [IA-05(16)_ODP[02]; one of the following PARAMETER VALUES is selected: {in person; by a trusted external party}] before [IA-05(16)_ODP[03]; the registration authority that issues authenticators is defined] with authorization by [IA-05(16)_ODP[04]; the personnel or roles who authorize the issuance of authenticators are defined].'), ('004075','draft','2022-03-02','DISA','policy','Defines types of and/or specific authenticators to be conducted in person or by a trusted external party before the organization-defined registration authority.','IA-05(16)','N/A','Determine if the issuance of [IA-05(16)_ODP[01]; types of and/or specific authenticators to be issued are defined] is required to be conducted [IA-05(16)_ODP[02]; one of the following PARAMETER VALUES is selected: {in person; by a trusted external party}] before [IA-05(16)_ODP[03]; the registration authority that issues authenticators is defined] with authorization by [IA-05(16)_ODP[04]; the personnel or roles who authorize the issuance of authenticators are defined].'), ('004076','draft','2022-03-02','DISA','policy','Defines the registration authority who conducts the issuance of organization-defined types of and/or specific authenticators.','IA-05(16)','N/A','Determine if the issuance of [IA-05(16)_ODP[01]; types of and/or specific authenticators to be issued are defined] is required to be conducted [IA-05(16)_ODP[02]; one of the following PARAMETER VALUES is selected: {in person; by a trusted external party}] before [IA-05(16)_ODP[03]; the registration authority that issues authenticators is defined] with authorization by [IA-05(16)_ODP[04]; the personnel or roles who authorize the issuance of authenticators are defined].'), ('004077','draft','2022-03-02','DISA','policy','Defines the personnel or roles who authorize the issuance of organization-defined types of and/or specific authenticators.','IA-05(16)','N/A','Determine if the issuance of [IA-05(16)_ODP[01]; types of and/or specific authenticators to be issued are defined] is required to be conducted [IA-05(16)_ODP[02]; one of the following PARAMETER VALUES is selected: {in person; by a trusted external party}] before [IA-05(16)_ODP[03]; the registration authority that issues authenticators is defined] with authorization by [IA-05(16)_ODP[04]; the personnel or roles who authorize the issuance of authenticators are defined].'), ('004078','draft','2022-03-02','DISA','technical','Employ presentation attack detection mechanisms for biometric-based authentication.','IA-05(17)','N/A','Determine if presentation attack detection mechanisms are employed for biometric-based authentication.'), ('004079','draft','2022-03-02','DISA','technical','Employ organization-defined password managers to generate and manage passwords.','IA-05(18)(a)','N/A','Determine if [IA-05(18)_ODP[01]; password managers employed for generating and managing passwords are defined] are employed to generate and manage passwords.'), ('004080','draft','2022-03-02','DISA','technical','Defines the password managers employed to generate and manage passwords.',NULL,'N/A',NULL), ('004081','draft','2022-03-02','DISA','technical','Protect the passwords using organization-defined controls.','IA-05(18)(b)','N/A','Determine if the passwords are protected using [IA-05(18)_ODP[02]; controls for protecting passwords are defined].'), ('004082','draft','2022-03-02','DISA','technical','Defines the controls for protecting the passwords.','IA-05(18)(b)','N/A','Determine if the passwords are protected using [IA-05(18)_ODP[02]; controls for protecting passwords are defined].'), ('004083','draft','2022-03-02','DISA','technical','Accept only external credentials that are NIST compliant.','IA-08(02)(a)','N/A','Determine if only external authenticators that are NIST-compliant are accepted.'), ('004084','draft','2022-03-02','DISA','technical','Document and maintain a list of accepted external authenticators.','IA-08(02)(b)','N/A','Determine if: - a list of accepted external authenticators is documented. - a list of accepted external authenticators is maintained.'), ('004085','draft','2022-03-02','DISA','technical','Conform to organization-defined identity management profiles for identity management.','IA-08(04)','N/A','Determine if there is conformance with [IA-08(04)_ODP; identity management profiles are defined] for identity management.'), ('004086','draft','2022-03-02','DISA','technical','Defines the identity management profiles for conforming to the profiles for identity management.','IA-08(04)','N/A','Determine if there is conformance with [IA-08(04)_ODP; identity management profiles are defined] for identity management.'), ('004087','draft','2022-03-02','DISA','technical','Defines the policy for accepting and verifying federated or PKI credentials.','IA-08(05)','N/A','Determine if: - federated or PKI credentials that meet [IA-08(05)_ODP; a policy for using federated or PKI credentials is defined] are accepted. - federated or PKI credentials that meet [IA-08(05)_ODP; a policy for using federated or PKI credentials is defined] are verified.'), ('004088','draft','2022-03-02','DISA','policy','Implement organization-defined measures to disassociate user attributes or identifier assertion relationships among individuals.','IA-08(06)','N/A','Determine if [IA-08(06)_ODP; disassociability measures are defined] to disassociate user attributes or identifier assertion relationships among individuals, credential service providers, and relying parties are implemented.'), ('004089','draft','2022-03-02','DISA','policy','Implement organization-defined measures to disassociate user attributes or identifier assertion relationships among credential service providers.','IA-08(06)','N/A','Determine if [IA-08(06)_ODP; disassociability measures are defined] to disassociate user attributes or identifier assertion relationships among individuals, credential service providers, and relying parties are implemented.'), ('004090','draft','2022-03-02','DISA','policy','Implement organization-defined measures to disassociate user attributes or identifier assertion relationships among relying parties.','IA-05(18)(a)','N/A','Determine if [IA-05(18)_ODP[01]; password managers employed for generating and managing passwords are defined] are employed to generate and manage passwords.'), ('004091','draft','2022-03-02','DISA','policy','Defines the measures to be implemented to disassociate user attributes or identifier assertion relationships among individuals, credential service providers, and relying parties.',NULL,'N/A',NULL), ('004092','draft','2022-03-02','DISA','policy','Identity proof users that require accounts for logical access to systems based on appropriate identity assurance level requirements as specified in applicable standards.','IA-12a.','N/A','Determine if users who require accounts for logical access to systems based on appropriate identity assurance level requirements as specified in applicable standards and guidelines are identity proofed.'), ('004093','draft','2022-03-02','DISA','policy','Identity proof users that require accounts for logical access to systems based on appropriate identity assurance level requirements as specified in applicable guidelines.','IA-12a.','N/A','Determine if users who require accounts for logical access to systems based on appropriate identity assurance level requirements as specified in applicable standards and guidelines are identity proofed.'), ('004094','draft','2022-03-02','DISA','policy','Resolve user identities to a unique individual.','IA-12b.','N/A','Determine if user identities are resolved to a unique individual.'), ('004095','draft','2022-03-02','DISA','policy','Collect identity evidence.','IA-12c.','N/A','Determine if: - identity evidence is collected. - identity evidence is validated. - identity evidence is verified.'), ('004096','draft','2022-03-02','DISA','policy','Validate identity evidence.',NULL,'N/A',NULL), ('004097','draft','2022-03-02','DISA','policy','Verify identity evidence.','IA-12c.','N/A','Determine if: - identity evidence is collected. - identity evidence is validated. - identity evidence is verified.'), ('004098','draft','2022-03-02','DISA','policy','Require that the registration process to receive an account for logical access includes supervisor or sponsor authorization.','IA-12c.','N/A','Determine if: - identity evidence is collected. - identity evidence is validated. - identity evidence is verified.'), ('004099','draft','2022-03-02','DISA','policy','Require evidence of individual identification be presented to the registration authority.','IA-12(02)','N/A','Determine if evidence of individual identification is presented to the registration authority.'), ('004100','draft','2022-03-02','DISA','policy','Require that the presented identity evidence be validated through organizational defined methods of validation.','IA-12(03)','N/A','Determine if the presented identity evidence is validated and verified through [IA-12(03)_ODP; methods of validation and verification of identity evidence are defined].'), ('004101','draft','2022-03-02','DISA','policy','Require that the presented identity evidence be verified through organizational defined methods of verification.','IA-12(03)','N/A','Determine if the presented identity evidence is validated and verified through [IA-12(03)_ODP; methods of validation and verification of identity evidence are defined].'), ('004102','draft','2022-03-02','DISA','policy','Defines the methods of validation required for presenting identity evidence.','IA-12(03)','N/A','Determine if the presented identity evidence is validated and verified through [IA-12(03)_ODP; methods of validation and verification of identity evidence are defined].'), ('004103','draft','2022-03-02','DISA','policy','Defines the methods of verification required for presenting identity evidence.','IA-12(03)','N/A','Determine if the presented identity evidence is validated and verified through [IA-12(03)_ODP; methods of validation and verification of identity evidence are defined].'), ('004104','draft','2022-03-02','DISA','policy','Require that the validation of identity evidence be conducted in person before a designated registration authority.','IA-12(04)','N/A','Determine if the validation and verification of identity evidence is conducted in person before a designated registration authority.'), ('004105','draft','2022-03-02','DISA','policy','Require that the verification of identity evidence be conducted in person before a designated registration authority.','IA-12(04)','N/A','Determine if the validation and verification of identity evidence is conducted in person before a designated registration authority.'), ('004106','draft','2022-03-02','DISA','policy','Require that a registration code or notice of proofing be delivered through an out-of-band channel to verify the users address (physical or digital) of record.','IA-12(05)','N/A','Determine if a [IA-12(05)_ODP; one of the following PARAMETER VALUES is selected: {registration code; notice of proofing}] is delivered through an out-of-band channel to verify the user''s address (physical or digital) of record.'), ('004107','draft','2022-03-03','DISA','policy','Accept externally-proofed identities at an organization-defined identity assurance level.','IA-12(06)','N/A','Determine if externally proofed identities are accepted [IA-12(06)_ODP; an identity assurance level for accepting externally proofed identities is defined].'), ('004108','draft','2022-03-03','DISA','policy','Defines the identity assurance level by accepting externally-proofed identities.','IA-12(06)','N/A','Determine if externally proofed identities are accepted [IA-12(06)_ODP; an identity assurance level for accepting externally proofed identities is defined].'), ('004109','draft','2022-03-03','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level incident response policy that is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.','IR-01a.01(b)','N/A','Determine if the [IR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] incident response policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004110','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the incident response policy.','IR-01b.','N/A','Determine if the [IR-01_ODP[04]; an official to manage the incident response policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the incident response policy and procedures.'), ('004111','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the incident response procedures.','IR-01b.','N/A','Determine if the [IR-01_ODP[04]; an official to manage the incident response policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the incident response policy and procedures.'), ('004112','draft','2022-03-03','DISA','policy','Defines the official designated to manage the incident response policy and procedures.','IR-01b.','N/A','Determine if the [IR-01_ODP[04]; an official to manage the incident response policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the incident response policy and procedures.'), ('004113','draft','2022-03-03','DISA','policy','Review and update the current incident response policy following organization-defined events.','IR-01c.01','N/A','Determine if: - the current incident response policy is reviewed and updated [IR-01_ODP[05]; the frequency at which the current incident response policy is reviewed and updated is defined]. - the current incident response policy is reviewed and updated following [IR-01_ODP[06]; events that would require the current incident response policy to be reviewed and updated are defined].'), ('004114','draft','2022-03-03','DISA','policy','Defines the events for reviewing and updating the current incident response policy.','IR-01c.01','N/A','Determine if: - the current incident response policy is reviewed and updated [IR-01_ODP[05]; the frequency at which the current incident response policy is reviewed and updated is defined]. - the current incident response policy is reviewed and updated following [IR-01_ODP[06]; events that would require the current incident response policy to be reviewed and updated are defined].'), ('004115','draft','2022-03-03','DISA','policy','Review and update the current incident response procedures following organization-defined events.','IR-01c.02','N/A','Determine if: - the current incident response procedures are reviewed and updated [IR-01_ODP[07]; the frequency at which the current incident response procedures are reviewed and updated is defined]. - the current incident response procedures are reviewed and updated following [IR-01_ODP[08]; events that would require the incident response procedures to be reviewed and updated are defined].'), ('004116','draft','2022-03-03','DISA','policy','Defines the events for reviewing and updating the current incident response procedures.','IR-01c.02','N/A','Determine if: - the current incident response procedures are reviewed and updated [IR-01_ODP[07]; the frequency at which the current incident response procedures are reviewed and updated is defined]. - the current incident response procedures are reviewed and updated following [IR-01_ODP[08]; events that would require the incident response procedures to be reviewed and updated are defined].'), ('004117','draft','2022-03-03','DISA','policy','Defines the automated mechanisms to provide an incident response training environment.','IR-02(02)','N/A','Determine if an incident response training environment is provided using [IR-02(02)_ODP; automated mechanisms used in an incident response training environment are defined].'), ('004118','draft','2022-03-03','DISA','policy','Provide incident response training on how to identify and respond to a breach, including the organization''s process for reporting a breach.','IR-02(03)','N/A','Determine if: - incident response training on how to identify and respond to a breach is provided. - incident response training on the organization''s process for reporting a breach is provided.'), ('004119','draft','2022-03-03','DISA','policy','Defines the automated mechanisms to test the incident response capability.','IR-03(01)','N/A','Determine if the incident response capability is tested using [IR-03(01)_ODP; automated mechanisms used to test the incident response capability are defined].'), ('004120','draft','2022-03-03','DISA','policy','Use qualitative data from testing to determine the effectiveness of incident response processes.','IR-03(03)(a)','N/A','Determine if: - qualitative data from testing are used to determine the effectiveness of incident response processes. - quantitative data from testing are used to determine the effectiveness of incident response processes.'), ('004121','draft','2022-03-03','DISA','policy','Use quantitative data from testing to determine the effectiveness of incident response processes.','IR-03(03)(a)','N/A','Determine if: - qualitative data from testing are used to determine the effectiveness of incident response processes. - quantitative data from testing are used to determine the effectiveness of incident response processes.'), ('004122','draft','2022-03-03','DISA','policy','Use qualitative data from testing to continuously improve incident response processes.','IR-03(03)(b)','N/A','Determine if: - qualitative data from testing are used to continuously improve incident response processes. - quantitative data from testing are used to continuously improve incident response processes.'), ('004123','draft','2022-03-03','DISA','policy','Use quantitative data from testing to continuously improve incident response processes.','IR-03(03)(b)','N/A','Determine if: - qualitative data from testing are used to continuously improve incident response processes. - quantitative data from testing are used to continuously improve incident response processes.'), ('004124','draft','2022-03-03','DISA','policy','Use qualitative data from testing to provide incident response measures and metrics that are accurate.','IR-03(03)(c)','N/A','Determine if: - qualitative data from testing are used to provide incident response measures and metrics that are accurate. - quantitative data from testing are used to provide incident response measures and metrics that are accurate. - qualitative data from testing are used to provide incident response measures and metrics that are consistent. - quantitative data from testing are used to provide incident response measures and metrics that are consistent. - qualitative data from testing are used to provide incident response measures and metrics in a reproducible format. - quantitative data from testing are used to provide incident response measures and metrics in a reproducible format.'), ('004125','draft','2022-03-03','DISA','policy','Use quantitative data from testing to provide incident response measures and metrics that are accurate.','IR-03(03)(c)','N/A','Determine if: - qualitative data from testing are used to provide incident response measures and metrics that are accurate. - quantitative data from testing are used to provide incident response measures and metrics that are accurate. - qualitative data from testing are used to provide incident response measures and metrics that are consistent. - quantitative data from testing are used to provide incident response measures and metrics that are consistent. - qualitative data from testing are used to provide incident response measures and metrics in a reproducible format. - quantitative data from testing are used to provide incident response measures and metrics in a reproducible format.'), ('004126','draft','2022-03-03','DISA','policy','Use qualitative data from testing to provide incident response measures and metrics that are consistent.','IR-03(03)(c)','N/A','Determine if: - qualitative data from testing are used to provide incident response measures and metrics that are accurate. - quantitative data from testing are used to provide incident response measures and metrics that are accurate. - qualitative data from testing are used to provide incident response measures and metrics that are consistent. - quantitative data from testing are used to provide incident response measures and metrics that are consistent. - qualitative data from testing are used to provide incident response measures and metrics in a reproducible format. - quantitative data from testing are used to provide incident response measures and metrics in a reproducible format.'), ('004127','draft','2022-03-03','DISA','policy','Use quantitative data from testing to provide incident response measures and metrics that are consistent.','IR-03(03)(c)','N/A','Determine if: - qualitative data from testing are used to provide incident response measures and metrics that are accurate. - quantitative data from testing are used to provide incident response measures and metrics that are accurate. - qualitative data from testing are used to provide incident response measures and metrics that are consistent. - quantitative data from testing are used to provide incident response measures and metrics that are consistent. - qualitative data from testing are used to provide incident response measures and metrics in a reproducible format. - quantitative data from testing are used to provide incident response measures and metrics in a reproducible format.'), ('004128','draft','2022-03-03','DISA','policy','Use qualitative data from testing to provide incident response measures and metrics that are in a reproducible format.','IR-03(03)(c)','N/A','Determine if: - qualitative data from testing are used to provide incident response measures and metrics that are accurate. - quantitative data from testing are used to provide incident response measures and metrics that are accurate. - qualitative data from testing are used to provide incident response measures and metrics that are consistent. - quantitative data from testing are used to provide incident response measures and metrics that are consistent. - qualitative data from testing are used to provide incident response measures and metrics in a reproducible format. - quantitative data from testing are used to provide incident response measures and metrics in a reproducible format.'), ('004129','draft','2022-03-03','DISA','policy','Use quantitative data from testing to provide incident response measures and metrics that are in a reproducible format.','IR-03(03)(c)','N/A','Determine if: - qualitative data from testing are used to provide incident response measures and metrics that are accurate. - quantitative data from testing are used to provide incident response measures and metrics that are accurate. - qualitative data from testing are used to provide incident response measures and metrics that are consistent. - quantitative data from testing are used to provide incident response measures and metrics that are consistent. - qualitative data from testing are used to provide incident response measures and metrics in a reproducible format. - quantitative data from testing are used to provide incident response measures and metrics in a reproducible format.'), ('004130','draft','2022-03-03','DISA','policy','Incorporate lessons learned from ongoing incident handling activities into incident response procedures.','IR-04c.','N/A','Determine if: - lessons learned from ongoing incident handling activities are incorporated into incident response procedures, training, and testing. - the changes resulting from the incorporated lessons learned are implemented accordingly.'), ('004131','draft','2022-03-03','DISA','policy','Incorporate lessons learned from ongoing incident handling activities into incident response training.','IR-04c.','N/A','Determine if: - lessons learned from ongoing incident handling activities are incorporated into incident response procedures, training, and testing. - the changes resulting from the incorporated lessons learned are implemented accordingly.'), ('004132','draft','2022-03-03','DISA','policy','Incorporate lessons learned from ongoing incident handling activities into incident response testing.','IR-04c.','N/A','Determine if: - lessons learned from ongoing incident handling activities are incorporated into incident response procedures, training, and testing. - the changes resulting from the incorporated lessons learned are implemented accordingly.'), ('004133','draft','2022-03-03','DISA','policy','Ensure the rigor of incident handling activities are comparable and predictable across the organization.','IR-04d.','N/A','Determine if: - the rigor of incident handling activities is comparable and predictable across the organization. - the intensity of incident handling activities is comparable and predictable across the organization. - the scope of incident handling activities is comparable and predictable across the organization. - the results of incident handling activities are comparable and predictable across the organization.'), ('004134','draft','2022-03-03','DISA','policy','Ensure the intensity of incident handling activities are comparable and predictable across the organization.','IR-04d.','N/A','Determine if: - the rigor of incident handling activities is comparable and predictable across the organization. - the intensity of incident handling activities is comparable and predictable across the organization. - the scope of incident handling activities is comparable and predictable across the organization. - the results of incident handling activities are comparable and predictable across the organization.'), ('004135','draft','2022-03-03','DISA','policy','Ensure the scope of incident handling activities are comparable and predictable across the organization.','IR-04d.','N/A','Determine if: - the rigor of incident handling activities is comparable and predictable across the organization. - the intensity of incident handling activities is comparable and predictable across the organization. - the scope of incident handling activities is comparable and predictable across the organization. - the results of incident handling activities are comparable and predictable across the organization.'), ('004136','draft','2022-03-03','DISA','policy','Ensure the results of incident handling activities are comparable and predictable across the organization.','IR-04d.','N/A','Determine if: - the rigor of incident handling activities is comparable and predictable across the organization. - the intensity of incident handling activities is comparable and predictable across the organization. - the scope of incident handling activities is comparable and predictable across the organization. - the results of incident handling activities are comparable and predictable across the organization.'), ('004137','draft','2022-03-03','DISA','policy','Defines the automated mechanisms for supporting the incident handling process.','IR-04(01)','N/A','Determine if the incident handling process is supported using [IR-04(01)_ODP; automated mechanisms used to support the incident handling process are defined].'), ('004138','draft','2022-03-03','DISA','policy','Defines the types of dynamic reconfiguration for system components.','IR-04(02)','N/A','Determine if [IR-04(02)_ODP[01]; types of dynamic reconfiguration for system components are defined] for [IR-04(02)_ODP[02]; system components that require dynamic reconfiguration are defined] are included as part of the incident response capability.'), ('004139','draft','2022-03-03','DISA','policy','Defines the classes of incidents to identify actions in response to those incidents.','IR-04(03)','N/A','Determine if: - [IR-04(03)_ODP[01]; classes of incidents requiring an organization-defined action (defined in IR-04(03)_ODP[02]) to be taken are defined] are identified. - [IR-04(03)_ODP[02]; actions to be taken in response to organization-defined classes of incidents are defined] are taken in response to those incidents (defined in IR-04(03)_ODP[01]) to ensure the continuation of organizational mission and business functions.'), ('004140','draft','2022-03-03','DISA','policy','Defines the actions to take in response to organization-defined classes of incidents to ensure continuation of organizational mission and business functions.','IR-04(03)','N/A','Determine if: - [IR-04(03)_ODP[01]; classes of incidents requiring an organization-defined action (defined in IR-04(03)_ODP[02]) to be taken are defined] are identified. - [IR-04(03)_ODP[02]; actions to be taken in response to organization-defined classes of incidents are defined] are taken in response to those incidents (defined in IR-04(03)_ODP[01]) to ensure the continuation of organizational mission and business functions.'), ('004141','draft','2022-03-03','DISA','policy','Coordinate an incident handling capability for insider threats that includes organization-defined entities.','IR-04(07)','N/A','Determine if: - an incident handling capability is coordinated for insider threats. - the coordinated incident handling capability includes [IR-04(07)_ODP; entities that require coordination for an incident handling capability for insider threats are defined].'), ('004142','draft','2022-03-03','DISA','policy','Defines the organizational entities for coordinating an incident handling capability for insider threats.','IR-04(07)','N/A','Determine if: - an incident handling capability is coordinated for insider threats. - the coordinated incident handling capability includes [IR-04(07)_ODP; entities that require coordination for an incident handling capability for insider threats are defined].'), ('004143','draft','2022-03-03','DISA','policy','Establish and maintain an integrated incident response team that can be deployed to any location identified by the organization in an organization-defined time period.','IR-04(11)','N/A','Determine if: - an integrated incident response team is established and maintained. - the integrated incident response team can be deployed to any location identified by the organization in [IR-04(11)_ODP; the time period within which an integrated incident response team can be deployed is defined].'), ('004144','draft','2022-03-03','DISA','policy','Defines the time period for establishing and maintaining an integrated incident response team that can be deployed to any location identified by the organization.','IR-04(11)','N/A','Determine if: - an integrated incident response team is established and maintained. - the integrated incident response team can be deployed to any location identified by the organization in [IR-04(11)_ODP; the time period within which an integrated incident response team can be deployed is defined].'), ('004145','draft','2022-03-03','DISA','policy','Analyze malicious code and/or other residual artifacts remaining in the system after the incident.','IR-04(12)','N/A','Determine if: - malicious code remaining in the system is analyzed after the incident. - other residual artifacts remaining in the system (if any) are analyzed after the incident.'), ('004146','draft','2022-03-03','DISA','policy','Analyze anomalous or suspected adversarial behavior in or related to organization-defined environments or resources.','IR-04(13)','N/A','Determine if anomalous or suspected adversarial behavior in or related to [IR-04(13)_ODP; environments or resources which may contain or may be related to anomalous or suspected adversarial behavior are defined] are analyzed.'), ('004147','draft','2022-03-03','DISA','policy','Defines the environments or resources for analyzing anomalous or suspected adversarial behavior.','IR-04(13)','N/A','Determine if anomalous or suspected adversarial behavior in or related to [IR-04(13)_ODP; environments or resources which may contain or may be related to anomalous or suspected adversarial behavior are defined] are analyzed.'), ('004148','draft','2022-03-03','DISA','policy','Establish and maintain a security operations center.','IR-04(14)','N/A','Determine if: - a security operations center is established. - a security operations center is maintained.'), ('004149','draft','2022-03-03','DISA','policy','Manage public relations associated with an incident.','IR-04(15)(a)','N/A','Determine if public relations associated with an incident are managed.'), ('004150','draft','2022-03-03','DISA','policy','Employ measures to repair the reputation of the organization.','IR-04(15)(b)','N/A','Determine if measures are employed to repair the reputation of the organization.'), ('004151','draft','2022-03-03','DISA','policy','Track incidents using organization-defined automated mechanisms.','IR-05(01)','N/A','Determine if: - incidents are tracked using [IR-05(01)_ODP[01]; automated mechanisms used to track incidents are defined]. - incident information is collected using [IR-05(01)_ODP[02]; automated mechanisms used to collect incident information are defined]. - incident information is analyzed using [IR-05(01)_ODP[03]; automated mechanisms used to analyze incident information are defined].'), ('004152','draft','2022-03-03','DISA','policy','Collect incident information using organization-defined automated mechanisms.','IR-05(01)','N/A','Determine if: - incidents are tracked using [IR-05(01)_ODP[01]; automated mechanisms used to track incidents are defined]. - incident information is collected using [IR-05(01)_ODP[02]; automated mechanisms used to collect incident information are defined]. - incident information is analyzed using [IR-05(01)_ODP[03]; automated mechanisms used to analyze incident information are defined].'), ('004153','draft','2022-03-03','DISA','policy','Analyze incident information using organization-defined automated mechanisms.','IR-05(01)','N/A','Determine if: - incidents are tracked using [IR-05(01)_ODP[01]; automated mechanisms used to track incidents are defined]. - incident information is collected using [IR-05(01)_ODP[02]; automated mechanisms used to collect incident information are defined]. - incident information is analyzed using [IR-05(01)_ODP[03]; automated mechanisms used to analyze incident information are defined].'), ('004154','draft','2022-03-03','DISA','policy','Defines the automated mechanisms to track, collect, and analyze incident information.','IR-05(01)','N/A','Determine if: - incidents are tracked using [IR-05(01)_ODP[01]; automated mechanisms used to track incidents are defined]. - incident information is collected using [IR-05(01)_ODP[02]; automated mechanisms used to collect incident information are defined]. - incident information is analyzed using [IR-05(01)_ODP[03]; automated mechanisms used to analyze incident information are defined].'), ('004155','draft','2022-03-03','DISA','policy','Defines the automated mechanisms for reporting incidents.','IR-06(01)','N/A','Determine if incidents are reported using [IR-06(01)_ODP; automated mechanisms used for reporting incidents are defined].'), ('004156','draft','2022-03-03','DISA','policy','Provide incident information to the provider of the product or service.','IR-06(03)','N/A','Determine if incident information is provided to the provider of the product or service and other organizations involved in the supply chain or supply chain governance for systems or system components related to the incident.'), ('004157','draft','2022-03-03','DISA','policy','Develop an incident response plan that addresses the sharing of incident information.','IR-08a.08','N/A','Determine if an incident response plan is developed that addresses the sharing of incident information.'), ('004158','draft','2022-03-03','DISA','policy','Defines the frequency organization-defined personnel or roles will review and approve the incident response plan.','IR-08a.09','N/A','Determine if an incident response plan is developed that is reviewed and approved by [IR-08_ODP[01]; personnel or roles that review and approve the incident response plan is/are identified] [IR-08_ODP[02]; the frequency at which to review and approve the incident response plan is defined].'), ('004159','draft','2022-03-03','DISA','policy','Develop an incident response plan that explicitly designates responsibility for incident response to organization-defined entities, personnel, or roles.','IR-08a.10','N/A','Determine if an incident response plan is developed that explicitly designates responsibility for incident response to [IR-08_ODP[03]; entities, personnel, or roles with designated responsibility for incident response are defined].'), ('004160','draft','2022-03-03','DISA','policy','Include a process to determine if notice to individuals or other organizations, including oversight organizations, is needed, in the Incident Response Plan for breaches involving Personally Identifiable Information.','IR-08(01)(a)','N/A','Determine if the incident response plan for breaches involving personally identifiable information includes a process to determine if notice to individuals or other organizations, including oversight organizations, is needed.'), ('004161','draft','2022-03-03','DISA','policy','Include an assessment process to determine the extent of the harm, embarrassment, inconvenience, or unfairness to affected individuals and any mechanisms to mitigate such harms in the Incident Response Plan for breaches involving Personally Identifiable Information.','IR-08(01)(b)','N/A','Determine if the incident response plan for breaches involving personally identifiable information includes an assessment process to determine the extent of the harm, embarrassment, inconvenience, or unfairness to affected individuals and any mechanisms to mitigate such harms.'), ('004162','draft','2022-03-03','DISA','policy','Include identification of applicable privacy requirements in the Incident Response Plan for breaches involving Personally Identifiable Information.','IR-08(01)(c)','N/A','Determine if the incident response plan for breaches involving personally identifiable information includes the identification of applicable privacy requirements.'), ('004163','draft','2022-03-03','DISA','policy','Respond to information spills by assigning organization-defined personnel or roles with responsibility for responding to information spills.','IR-09a.','N/A','Determine if [IR-09_ODP[01]; personnel or roles assigned the responsibility for responding to information spills is/are defined] is/are assigned the responsibility to respond to information spills.'), ('004164','draft','2022-03-03','DISA','policy','Defines the personnel or roles who will respond to information spills.','IR-09a.','N/A','Determine if [IR-09_ODP[01]; personnel or roles assigned the responsibility for responding to information spills is/are defined] is/are assigned the responsibility to respond to information spills.'), ('004165','draft','2022-03-03','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level maintenance policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','MA-01a.01(b)','N/A','Determine if the [MA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] maintenance policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004166','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the development, documentation, and dissemination of the maintenance policy.','MA-01b.','N/A','Determine if the [MA-01_ODP[04]; an official to manage the maintenance policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the maintenance policy and procedures.'), ('004167','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the development, documentation, and dissemination of the maintenance procedures.','MA-01b.','N/A','Determine if the [MA-01_ODP[04]; an official to manage the maintenance policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the maintenance policy and procedures.'), ('004168','draft','2022-03-03','DISA','policy','Defines the official who will manage the development, documentation, and dissemination of the maintenance policy.','MA-01b.','N/A','Determine if the [MA-01_ODP[04]; an official to manage the maintenance policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the maintenance policy and procedures.'), ('004169','draft','2022-03-03','DISA','policy','Defines the official who will manage the development, documentation, and dissemination of the maintenance procedures.','MA-01b.','N/A','Determine if the [MA-01_ODP[04]; an official to manage the maintenance policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the maintenance policy and procedures.'), ('004170','draft','2022-03-03','DISA','policy','Review and update the current maintenance policy following organization-defined events.','MA-01c.01','N/A','Determine if: - the current maintenance policy is reviewed and updated [MA-01_ODP[05]; the frequency with which the current maintenance policy is reviewed and updated is defined]. - the current maintenance policy is reviewed and updated following [MA-01_ODP[06]; events that would require the current maintenance policy to be reviewed and updated are defined].'), ('004171','draft','2022-03-03','DISA','policy','Defines the events following reviewing and updating the current maintenance policy.','MA-01c.01','N/A','Determine if: - the current maintenance policy is reviewed and updated [MA-01_ODP[05]; the frequency with which the current maintenance policy is reviewed and updated is defined]. - the current maintenance policy is reviewed and updated following [MA-01_ODP[06]; events that would require the current maintenance policy to be reviewed and updated are defined].'), ('004172','draft','2022-03-03','DISA','policy','Review and update the current maintenance procedures following organization-defined events.','MA-01c.02','N/A','Determine if: - the current maintenance procedures are reviewed and updated [MA-01_ODP[07]; the frequency with which the current maintenance procedures are reviewed and updated is defined]. - the current maintenance procedures are reviewed and updated following [MA-01_ODP[08]; events that would require the maintenance procedures to be reviewed and updated are defined].'), ('004173','draft','2022-03-03','DISA','policy','Defines the events following reviewing and updating the current maintenance procedures.','MA-01c.02','N/A','Determine if: - the current maintenance procedures are reviewed and updated [MA-01_ODP[07]; the frequency with which the current maintenance procedures are reviewed and updated is defined]. - the current maintenance procedures are reviewed and updated following [MA-01_ODP[08]; events that would require the maintenance procedures to be reviewed and updated are defined].'), ('004174','draft','2022-03-03','DISA','policy','Schedule replacement on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('004175','draft','2022-03-03','DISA','policy','Document replacement on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('004176','draft','2022-03-03','DISA','policy','Review records of replacement on system components in accordance with manufacturer or vendor specifications and/or organizational requirements.','MA-02a.','N/A','Determine if: - maintenance, repair, and replacement of system components are scheduled in accordance with manufacturer or vendor specifications and/or organizational requirements. - maintenance, repair, and replacement of system components are documented in accordance with manufacturer or vendor specifications and/or organizational requirements. - records of maintenance, repair, and replacement of system components are reviewed in accordance with manufacturer or vendor specifications and/or organizational requirements.'), ('004177','draft','2022-03-03','DISA','policy','Approve all maintenance activities, whether performed on site or remotely.','MA-02b.','N/A','Determine if: - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are approved. - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are monitored.'), ('004178','draft','2022-03-03','DISA','policy','Monitor all maintenance activities, whether performed on site or remotely.','MA-02b.','N/A','Determine if: - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are approved. - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are monitored.'), ('004179','draft','2022-03-03','DISA','policy','Approve all maintenance activities, whether the system or system components are serviced on site or removed to another location.','MA-02b.','N/A','Determine if: - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are approved. - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are monitored.'), ('004180','draft','2022-03-03','DISA','policy','Monitor all maintenance activities, whether the system or system components are serviced on site or removed to another location.','MA-02b.','N/A','Determine if: - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are approved. - all maintenance activities, whether performed on site or remotely and whether the system or system components are serviced on site or removed to another location, are monitored.'), ('004181','draft','2022-03-03','DISA','policy','Defines the information to be removed from associated media.','MA-02d.','N/A','Determine if equipment is sanitized to remove [MA-02_ODP[02]; information to be removed from associated media prior to removal from organizational facilities for off-site maintenance, repair, or replacement is defined] from associated media prior to removal from organizational facilities for off-site maintenance, repair, or replacement.'), ('004182','draft','2022-03-03','DISA','policy','Schedule maintenance, repair, and replacement actions for the system using organization-defined automated mechanisms.','MA-02(02)(a)','N/A','Determine if: - [MA-02(02)_ODP[01]; automated mechanisms used to schedule maintenance, repair, and replacement actions for the system are defined] are used to schedule maintenance, repair, and replacement actions for the system. - [MA-02(02)_ODP[02]; automated mechanisms used to conduct maintenance, repair, and replacement actions for the system are defined] are used to conduct maintenance, repair, and replacement actions for the system. - [MA-02(02)_ODP[03]; automated mechanisms used to document maintenance, repair, and replacement actions for the system are defined] are used to document maintenance, repair, and replacement actions for the system.'), ('004183','draft','2022-03-03','DISA','policy','Conduct maintenance, repair, and replacement actions for the system using organization-defined automated mechanisms.','MA-02(02)(a)','N/A','Determine if: - [MA-02(02)_ODP[01]; automated mechanisms used to schedule maintenance, repair, and replacement actions for the system are defined] are used to schedule maintenance, repair, and replacement actions for the system. - [MA-02(02)_ODP[02]; automated mechanisms used to conduct maintenance, repair, and replacement actions for the system are defined] are used to conduct maintenance, repair, and replacement actions for the system. - [MA-02(02)_ODP[03]; automated mechanisms used to document maintenance, repair, and replacement actions for the system are defined] are used to document maintenance, repair, and replacement actions for the system.'), ('004184','draft','2022-03-03','DISA','policy','Document maintenance, repair, and replacement actions for the system using organization-defined automated mechanisms.','MA-02(02)(a)','N/A','Determine if: - [MA-02(02)_ODP[01]; automated mechanisms used to schedule maintenance, repair, and replacement actions for the system are defined] are used to schedule maintenance, repair, and replacement actions for the system. - [MA-02(02)_ODP[02]; automated mechanisms used to conduct maintenance, repair, and replacement actions for the system are defined] are used to conduct maintenance, repair, and replacement actions for the system. - [MA-02(02)_ODP[03]; automated mechanisms used to document maintenance, repair, and replacement actions for the system are defined] are used to document maintenance, repair, and replacement actions for the system.'), ('004185','draft','2022-03-03','DISA','policy','Produce up-to date, accurate, and complete records of all replacement actions requested, scheduled, in process, and completed.','MA-02(02)(b)','N/A','Determine if: - up-to date, accurate, and complete records of all maintenance actions requested, scheduled, in process, and completed are produced. - up-to date, accurate, and complete records of all repair actions requested, scheduled, in process, and completed are produced. - up-to date, accurate, and complete records of all replacement actions requested, scheduled, in process, and completed are produced.'), ('004186','draft','2022-03-03','DISA','policy','Review previously approved system maintenance tools on an organization-defined frequency.','MA-03b.','N/A','Determine if previously approved system maintenance tools are reviewed [MA-03_ODP frequency; frequency at which to review previously approved system maintenance tools is defined].'), ('004187','draft','2022-03-03','DISA','policy','Defines the frequency for reviewing previously approved system maintenance tools.','MA-03b.','N/A','Determine if previously approved system maintenance tools are reviewed [MA-03_ODP frequency; frequency at which to review previously approved system maintenance tools is defined].'), ('004188','draft','2022-03-03','DISA','policy','Monitor the use of maintenance tools that execute with increased privilege.','MA-03(05)','N/A','Determine if the use of maintenance tools that execute with increased privilege is monitored.'), ('004189','draft','2022-03-03','DISA','policy','Inspect the maintenance tools to ensure the latest software updates and patches are installed.','MA-03(06)','N/A','Determine if maintenance tools are inspected to ensure that the latest software updates and patches are installed.'), ('004190','draft','2022-03-03','DISA','policy','Terminate session when nonlocal maintenance is completed.','MA-04e.','N/A','Determine if: - session connections are terminated when nonlocal maintenance is completed. - network connections are terminated when nonlocal maintenance is completed.'), ('004191','draft','2022-03-03','DISA','policy','Terminate network connection when nonlocal maintenance is completed.','MA-04e.','N/A','Determine if: - session connections are terminated when nonlocal maintenance is completed. - network connections are terminated when nonlocal maintenance is completed.'), ('004192','draft','2022-03-03','DISA','technical','Protect nonlocal maintenance sessions by separating the maintenance session from other network sessions with the system by logically separated communications paths.','MA-04(04)(b)(02)','N/A','Determine if nonlocal maintenance sessions are protected by logically separated communication paths.'), ('004193','draft','2022-03-03','DISA','policy','Defines the cryptographic mechanisms for protecting the integrity and confidentiality of nonlocal maintenance and diagnostic communications.','MA-04(06)','N/A','Determine if: - [MA-04(06)_ODP; cryptographic mechanisms to be implemented to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications are defined] are implemented to protect the integrity of nonlocal maintenance and diagnostic communications. - [MA-04(06)_ODP; cryptographic mechanisms to be implemented to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications are defined] are implemented to protect the confidentiality of nonlocal maintenance and diagnostic communications.'), ('004194','draft','2022-03-03','DISA','policy','Develop organization-defined alternate controls in the event a system component cannot be sanitized, removed, or disconnected from the system.','MA-05(01)(b)','N/A','Determine if [MA-05(01)_ODP; alternate controls to be developed and implemented in the event that a system component cannot be sanitized, removed, or disconnected from the system are defined] are developed and implemented in the event that a system cannot be sanitized, removed, or disconnected from the system.'), ('004195','draft','2022-03-03','DISA','policy','Implement organization-defined alternate controls in the event a system component cannot be sanitized, removed, or disconnected from the system.','MA-05(01)(b)','N/A','Determine if [MA-05(01)_ODP; alternate controls to be developed and implemented in the event that a system component cannot be sanitized, removed, or disconnected from the system are defined] are developed and implemented in the event that a system cannot be sanitized, removed, or disconnected from the system.'), ('004196','draft','2022-03-03','DISA','policy','Defines alternate controls in the event a system component cannot be sanitized, removed, or disconnected from the system.','MA-05(01)(b)','N/A','Determine if [MA-05(01)_ODP; alternate controls to be developed and implemented in the event that a system component cannot be sanitized, removed, or disconnected from the system are defined] are developed and implemented in the event that a system cannot be sanitized, removed, or disconnected from the system.'), ('004197','draft','2022-03-03','DISA','policy','Defines the automated mechanisms for transferring predictive maintenance data to a maintenance system.','MA-06(03)','N/A','Determine if predictive maintenance data is transferred to a maintenance management system using [MA-06(03)_ODP; automated mechanisms used to transfer predictive maintenance data to a maintenance management system are defined].'), ('004198','draft','2022-03-03','DISA','policy','Restrict or prohibit field maintenance on organization-defined systems or system components to organization-defined trusted maintenance facilities.','MA-07','N/A','Determine if field maintenance on [MA-07_ODP[01]; systems or system components on which field maintenance is restricted or prohibited to trusted maintenance facilities are defined] are restricted or prohibited to [MA-07_ODP[02]; trusted maintenance facilities that are not restricted or prohibited from conducting field maintenance are defined].'), ('004199','draft','2022-03-03','DISA','policy','Defines the systems or system components which restrict or prohibit field maintenance.','MA-07','N/A','Determine if field maintenance on [MA-07_ODP[01]; systems or system components on which field maintenance is restricted or prohibited to trusted maintenance facilities are defined] are restricted or prohibited to [MA-07_ODP[02]; trusted maintenance facilities that are not restricted or prohibited from conducting field maintenance are defined].'), ('004200','draft','2022-03-03','DISA','policy','Defines the trusted maintenance facilities which the systems or system components restrict or prohibit field maintenance.','MA-07','N/A','Determine if field maintenance on [MA-07_ODP[01]; systems or system components on which field maintenance is restricted or prohibited to trusted maintenance facilities are defined] are restricted or prohibited to [MA-07_ODP[02]; trusted maintenance facilities that are not restricted or prohibited from conducting field maintenance are defined].'), ('004201','draft','2022-03-03','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level media protection policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','MP-01a.01(b)','N/A','Determine if the media protection policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004202','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the development and documentation of the media protection policy.','MP-01b.','N/A','Determine if the [MP-01_ODP[04]; an official to manage the media protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the media protection policy and procedures.'), ('004203','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the dissemination of the media protection policy.','MP-01b.','N/A','Determine if the [MP-01_ODP[04]; an official to manage the media protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the media protection policy and procedures.'), ('004204','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage development and documentation of the media protection procedures.','MP-01b.','N/A','Determine if the [MP-01_ODP[04]; an official to manage the media protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the media protection policy and procedures.'), ('004205','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage dissemination of the media protection procedures.','MP-01b.','N/A','Determine if the [MP-01_ODP[04]; an official to manage the media protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the media protection policy and procedures.'), ('004206','draft','2022-03-03','DISA','policy','Defines the official designated to manage the development, documentation, and dissemination of the media protection policy and procedures.','MP-01b.','N/A','Determine if the [MP-01_ODP[04]; an official to manage the media protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the media protection policy and procedures.'), ('004207','draft','2022-03-03','DISA','policy','Review and update the current media protection policy following organization-defined events.','MP-01c.01','N/A','Determine if: - the current media protection policy is reviewed and updated [MP-01_ODP[05]; the frequency with which the current media protection policy is reviewed and updated is defined]. - the current media protection policy is reviewed and updated following [MP-01_ODP[06]; events that would require the current media protection policy to be reviewed and updated are defined].'), ('004208','draft','2022-03-03','DISA','policy','Defines the events following reviewing and updating the current media policy.','MP-01c.01','N/A','Determine if: - the current media protection policy is reviewed and updated [MP-01_ODP[05]; the frequency with which the current media protection policy is reviewed and updated is defined]. - the current media protection policy is reviewed and updated following [MP-01_ODP[06]; events that would require the current media protection policy to be reviewed and updated are defined].'), ('004209','draft','2022-03-03','DISA','policy','Review and update the current media protection procedures following organization-defined events.','MP-01c.02','N/A','Determine if: - the current media protection procedures are reviewed and updated [MP-01_ODP[07]; the frequency with which the current media protection procedures are reviewed and updated is defined]. - the current media protection procedures are reviewed and updated following [MP-01_ODP[08]; events that would require media protection procedures to be reviewed and updated are defined].'), ('004210','draft','2022-03-03','DISA','policy','Defines the events following reviewing and updating the current media procedures.','MP-01c.02','N/A','Determine if: - the current media protection procedures are reviewed and updated [MP-01_ODP[07]; the frequency with which the current media protection procedures are reviewed and updated is defined]. - the current media protection procedures are reviewed and updated following [MP-01_ODP[08]; events that would require media protection procedures to be reviewed and updated are defined].'), ('004211','draft','2022-03-03','DISA','policy','Physically control and securely store organization-defined types of digital and/or non-digital media within organization-defined controlled areas.','MP-04a.','N/A','Determine if: - [MP-04_ODP[01]; types of digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[02]; types of non-digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[03]; types of digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[05]; controlled areas within which to securely store digital media are defined]. - [MP-04_ODP[04]; types of non-digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[06]; controlled areas within which to securely store non-digital media are defined].'), ('004212','draft','2022-03-03','DISA','policy','Securely store organization-defined types of digital and/or non-digital media within organization-defined controlled areas.','MP-04a.','N/A','Determine if: - [MP-04_ODP[01]; types of digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[02]; types of non-digital media to be physically controlled are defined (if selected)] are physically controlled. - [MP-04_ODP[03]; types of digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[05]; controlled areas within which to securely store digital media are defined]. - [MP-04_ODP[04]; types of non-digital media to be securely stored are defined (if selected)] are securely stored within [MP-04_ODP[06]; controlled areas within which to securely store non-digital media are defined].'), ('004213','draft','2022-03-03','DISA','policy','Protect system media types defined in MP-4a until the media are destroyed or sanitized using approved equipment.','MP-04b.','N/A','Determine if system media types (defined in MP-04_ODP[01], MP-04_ODP[02], MP-04_ODP[03], MP-04_ODP[04]) are protected until the media are destroyed or sanitized using approved equipment, techniques, and procedures.'), ('004214','draft','2022-03-03','DISA','policy','Protect system media types defined in MP-4a until the media are destroyed or sanitized using approved techniques.','MP-04b.','N/A','Determine if system media types (defined in MP-04_ODP[01], MP-04_ODP[02], MP-04_ODP[03], MP-04_ODP[04]) are protected until the media are destroyed or sanitized using approved equipment, techniques, and procedures.'), ('004215','draft','2022-03-03','DISA','policy','Protect system media types defined in MP-4a until the media are destroyed or sanitized using approved procedures.','MP-04b.','N/A','Determine if system media types (defined in MP-04_ODP[01], MP-04_ODP[02], MP-04_ODP[03], MP-04_ODP[04]) are protected until the media are destroyed or sanitized using approved equipment, techniques, and procedures.'), ('004216','draft','2022-03-03','DISA','policy','Defines the automated mechanisms which restrict access to media storage areas and log access attempts and access granted.','MP-04(02)','N/A','Determine if: - access to media storage areas is restricted using [MP-04(02)_ODP[01]; automated mechanisms to restrict access to media storage areas are defined]. - access attempts to media storage areas are logged using [MP-04(02)_ODP[02]; automated mechanisms to log access attempts to media storage areas are defined]. - access granted to media storage areas is logged using [MP-04(02)_ODP[03]; automated mechanisms to log access granted to media storage areas are defined].'), ('004217','draft','2022-03-03','DISA','policy','Protect organization-defined types of system media during transport outside of controlled areas using organization-defined controls.','MP-05a.','N/A','Determine if: - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are protected during transport outside of controlled areas using [MP-05_ODP[02]; controls used to protect system media outside of controlled areas are defined]. - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are controlled during transport outside of controlled areas using [MP-05_ODP[03]; controls used to control system media outside of controlled areas are defined].'), ('004218','draft','2022-03-03','DISA','policy','Control organization-defined types of system media during transport outside of controlled areas using organization-defined controls.','MP-05a.','N/A','Determine if: - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are protected during transport outside of controlled areas using [MP-05_ODP[02]; controls used to protect system media outside of controlled areas are defined]. - [MP-05_ODP[01]; types of system media to protect and control during transport outside of controlled areas are defined] are controlled during transport outside of controlled areas using [MP-05_ODP[03]; controls used to control system media outside of controlled areas are defined].'), ('004219','draft','2022-03-03','DISA','policy','Test sanitization equipment in accordance with the organization-defined frequency to ensure that the intended sanitization is being achieved.','MP-06(02)','N/A','Determine if: - sanitization equipment is tested [MP-06(02)_ODP[01]; frequency with which to test sanitization equipment is defined] to ensure that the intended sanitization is being achieved. - sanitization procedures are tested [MP-06(02)_ODP[02]; frequency with which to test sanitization procedures is defined] to ensure that the intended sanitization is being achieved.'), ('004220','draft','2022-03-03','DISA','policy','Test sanitization procedures in accordance with the organization-defined frequency to ensure that the intended sanitization is being achieved.','MP-06(02)','N/A','Determine if: - sanitization equipment is tested [MP-06(02)_ODP[01]; frequency with which to test sanitization equipment is defined] to ensure that the intended sanitization is being achieved. - sanitization procedures are tested [MP-06(02)_ODP[02]; frequency with which to test sanitization procedures is defined] to ensure that the intended sanitization is being achieved.'), ('004221','draft','2022-03-03','DISA','policy','Establish an organization-defined system media downgrading process that includes employing downgrading mechanisms with strength and integrity commensurate with the security category or classification of the information.','MP-08a.','N/A','Determine if: - a [MP-08_ODP[01]; a system media downgrading process is defined] is established. - the [MP-08_ODP[01]; a system media downgrading process is defined] includes employing downgrading mechanisms with strength and integrity commensurate with the security category or classification of the information.'), ('004222','draft','2022-03-03','DISA','policy','Defines the system media downgrading process that includes employing downgrading mechanisms with strength and integrity commensurate with the security category or classification of the information.','MP-08a.','N/A','Determine if: - a [MP-08_ODP[01]; a system media downgrading process is defined] is established. - the [MP-08_ODP[01]; a system media downgrading process is defined] includes employing downgrading mechanisms with strength and integrity commensurate with the security category or classification of the information.'), ('004223','draft','2022-03-03','DISA','policy','Verify that the system media downgrading process is commensurate with the security category and/or classification level of the information to be removed.','MP-08b.','N/A','Determine if: - there is verification that the system media downgrading process is commensurate with the security category and/or classification level of the information to be removed. - there is verification that the system media downgrading process is commensurate with the access authorizations of the potential recipients of the downgraded information.'), ('004224','draft','2022-03-03','DISA','policy','Verify that the system media downgrading process is commensurate with the access authorizations of the potential recipients of the downgraded information.','MP-08b.','N/A','Determine if: - there is verification that the system media downgrading process is commensurate with the security category and/or classification level of the information to be removed. - there is verification that the system media downgrading process is commensurate with the access authorizations of the potential recipients of the downgraded information.'), ('004225','draft','2022-03-03','DISA','policy','Identify organization-defined system media requiring downgrading.','MP-08c.','N/A','Determine if [MP-08_ODP[02]; system media requiring downgrading is defined] is identified.'), ('004226','draft','2022-03-03','DISA','policy','Defines the system media requiring downgrading.','MP-08c.','N/A','Determine if [MP-08_ODP[02]; system media requiring downgrading is defined] is identified.'), ('004227','draft','2022-03-03','DISA','policy','Test downgrading equipment on an organization-defined frequency to ensure that intended downgrading actions are being achieved.','MP-08(02)','N/A','Determine if: - downgrading equipment is tested [MP-08(02)_ODP[01]; the frequency with which to test downgrading equipment is defined] to ensure that downgrading actions are being achieved. - downgrading procedures are tested [MP-08(02)_ODP[02]; the frequency with which to test downgrading procedures is defined] to ensure that downgrading actions are being achieved.'), ('004228','draft','2022-03-03','DISA','policy','Test downgrading procedures on an organization-defined frequency to ensure that intended downgrading actions are being achieved.','MP-08(02)','N/A','Determine if: - downgrading equipment is tested [MP-08(02)_ODP[01]; the frequency with which to test downgrading equipment is defined] to ensure that downgrading actions are being achieved. - downgrading procedures are tested [MP-08(02)_ODP[02]; the frequency with which to test downgrading procedures is defined] to ensure that downgrading actions are being achieved.'), ('004229','draft','2022-03-03','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level physical and environmental protection policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','PE-01a.01(b)','N/A','Determine if the [PE-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] physical and environmental protection policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004230','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the development and documentation of the physical and environmental protection policy.','PE-01b.','N/A','Determine if the [PE-01_ODP[04]; an official to manage the physical and environmental protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures.'), ('004231','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the dissemination of the physical and environmental protection policy.','PE-01b.','N/A','Determine if the [PE-01_ODP[04]; an official to manage the physical and environmental protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures.'), ('004232','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage development and documentation of the physical and environmental protection procedures.','PE-01b.','N/A','Determine if the [PE-01_ODP[04]; an official to manage the physical and environmental protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures.'), ('004233','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage dissemination of the physical and environmental protection procedures.','PE-01b.','N/A','Determine if the [PE-01_ODP[04]; an official to manage the physical and environmental protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures.'), ('004234','draft','2022-03-03','DISA','policy','Defines the official who will manage the physical and environmental policy.','PE-01b.','N/A','Determine if the [PE-01_ODP[04]; an official to manage the physical and environmental protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures.'), ('004235','draft','2022-03-03','DISA','policy','Defines the official who will manage the physical and environmental procedures.','PE-01b.','N/A','Determine if the [PE-01_ODP[04]; an official to manage the physical and environmental protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the physical and environmental protection policy and procedures.'), ('004236','draft','2022-03-03','DISA','policy','Review and update the current physical and environmental protection policy following organization-defined events.','PE-01c.01','N/A','Determine if: - the current physical and environmental protection policy is reviewed and updated [PE-01_ODP[05]; the frequency at which the current physical and environmental protection policy is reviewed and updated is defined]. - the current physical and environmental protection policy is reviewed and updated following [PE-01_ODP[06]; events that would require the current physical and environmental protection policy to be reviewed and updated are defined].'), ('004237','draft','2022-03-03','DISA','policy','Defines the events following reviewing and updating the current physical and environmental protection policy.','PE-01c.01','N/A','Determine if: - the current physical and environmental protection policy is reviewed and updated [PE-01_ODP[05]; the frequency at which the current physical and environmental protection policy is reviewed and updated is defined]. - the current physical and environmental protection policy is reviewed and updated following [PE-01_ODP[06]; events that would require the current physical and environmental protection policy to be reviewed and updated are defined].'), ('004238','draft','2022-03-03','DISA','policy','Review and update the current physical and environmental protection procedures following organization-defined events.','PE-01c.02','N/A','Determine if: - the current physical and environmental protection procedures are reviewed and updated [PE-01_ODP[07]; the frequency at which the current physical and environmental protection procedures are reviewed and updated is defined]. - the current physical and environmental protection procedures are reviewed and updated following [PE-01_ODP[08]; events that would require the physical and environmental protection procedures to be reviewed and updated are defined].'), ('004239','draft','2022-03-03','DISA','policy','Defines the events following reviewing and updating the current physical and environmental protection procedures.','PE-01c.02','N/A','Determine if: - the current physical and environmental protection procedures are reviewed and updated [PE-01_ODP[07]; the frequency at which the current physical and environmental protection procedures are reviewed and updated is defined]. - the current physical and environmental protection procedures are reviewed and updated following [PE-01_ODP[08]; events that would require the physical and environmental protection procedures to be reviewed and updated are defined].'), ('004240','draft','2022-03-03','DISA','policy','Enforce physical access authorizations at organization-defined entry points to the facility where the system resides.',NULL,'N/A',NULL), ('004241','draft','2022-03-03','DISA','policy','Enforce physical access authorizations at organization-defined exit points to the facility where the system resides.',NULL,'N/A',NULL), ('004242','draft','2022-03-03','DISA','policy','Control ingress to the facility where the information system resides using one or more organization-defined physical access control systems or devices or guards.','PE-03a.02','N/A','Determine if physical access authorizations are enforced at [PE-03_ODP[01]; entry and exit points to the facility in which the system resides are defined] by controlling ingress and egress to the facility using [PE-03_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[PE-03_ODP[03]; physical access control systems or devices used to control ingress and egress to the facility are defined (if selected)]; guards}].'), ('004243','draft','2022-03-03','DISA','policy','Control egress to the facility where the information system resides using one or more organization-defined physical access control systems or devices or guards.','PE-03a.02','N/A','Determine if physical access authorizations are enforced at [PE-03_ODP[01]; entry and exit points to the facility in which the system resides are defined] by controlling ingress and egress to the facility using [PE-03_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[PE-03_ODP[03]; physical access control systems or devices used to control ingress and egress to the facility are defined (if selected)]; guards}].'), ('004244','draft','2022-03-03','DISA','policy','Limit access using physical barriers.','PE-03(07)','N/A','Determine if physical barriers are used to limit access.'), ('004245','draft','2022-03-03','DISA','policy','Employ access control vestibules at organization-defined locations within the facility.','PE-03(08)','N/A','Determine if access control vestibules are employed at [PE-03(08)_ODP; locations within the facility where access control vestibules are to be employed are defined].'), ('004246','draft','2022-03-03','DISA','policy','Defines the locations within the facility where the access control vestibules are employed.','PE-03(08)','N/A','Determine if access control vestibules are employed at [PE-03(08)_ODP; locations within the facility where access control vestibules are to be employed are defined].'), ('004247','draft','2022-03-03','DISA','technical','Link individual identity to receipt of output from output devices.','PE-05(02)','N/A','Determine if individual identity is linked to the receipt of output from output devices.'), ('004248','draft','2022-03-03','DISA','policy','Defines the automated mechanisms for recognizing organization-defined classes or types of intrusions and initiating organization-defined response actions.','PE-06(02)','N/A','Determine if: - [PE-06(02)_ODP[01]; classes or types of intrusions to be recognized by automated mechanisms are defined] are recognized. - [PE-06(02)_ODP[02]; response actions to be initiated by automated mechanisms when organization-defined classes or types of intrusions are recognized are defined] are initiated using [PE-06(02)_ODP[03]; automated mechanisms used to recognize classes or types of intrusions and initiate response actions (defined in PE-06(02)_ODP) are defined].'), ('004249','draft','2022-03-03','DISA','policy','Review video recordings on an organization-defined frequency.','PE-06(03)(b)','N/A','Determine if video recordings are reviewed [PE-06(03)_ODP[02]; frequency at which to review video recordings is defined].'), ('004250','draft','2022-03-03','DISA','policy','Defines the frequency with which to review video recordings.','PE-06(03)(b)','N/A','Determine if video recordings are reviewed [PE-06(03)_ODP[02]; frequency at which to review video recordings is defined].'), ('004251','draft','2022-03-03','DISA','policy','Report anomalies in visitor access records to organization-defined personnel.','PE-08c.','N/A','Determine if visitor access records anomalies are reported to [PE-08_ODP[03]; personnel to whom visitor access records anomalies are reported to is/are defined].'), ('004252','draft','2022-03-03','DISA','policy','Defines the personnel who are to report anomalies in visitor access records.','PE-08c.','N/A','Determine if visitor access records anomalies are reported to [PE-08_ODP[03]; personnel to whom visitor access records anomalies are reported to is/are defined].'), ('004253','draft','2022-03-03','DISA','policy','Defines the automated mechanisms for maintaining and reviewing visitor access records.','PE-08(01)','N/A','Determine if: - visitor access records are maintained using [PE-08(01)_ODP[01]; automated mechanisms used to maintain visitor access records are defined]. - visitor access records are reviewed using [PE-08(01)_ODP[02]; automated mechanisms used to review visitor access records are defined].'), ('004254','draft','2022-03-03','DISA','policy','Limit personally identifiable information contained in visitor access records to the organization-defined elements identified in the privacy risk assessment.','PE-08(03)','N/A','Determine if personally identifiable information contained in visitor access records is limited to [PE-08(03)_ODP; elements identified in the privacy risk assessment to limit personally identifiable information contained in visitor access logs are defined] identified in the privacy risk assessment.'), ('004255','draft','2022-03-03','DISA','policy','Defines the elements identified in the privacy risk assessment for limiting personally identifiable information contained in visitor access records.','PE-08(03)','N/A','Determine if personally identifiable information contained in visitor access records is limited to [PE-08(03)_ODP; elements identified in the privacy risk assessment to limit personally identifiable information contained in visitor access logs are defined] identified in the privacy risk assessment.'), ('004256','draft','2022-03-03','DISA','policy','Defines the system or individual system components that provide the capability of shutting off power in emergency situations.','PE-10a.','N/A','Determine if the capability to shut off power to [PE-10_ODP[01]; system or individual system components that require the capability to shut off power in emergency situations is/are defined] in emergency situations is provided.'), ('004257','draft','2022-03-03','DISA','policy','Defines the automatic environmental controls for preventing potentially harmful fluctuations to the system.','PE-14(01)','N/A','Determine if [PE-14(01)_ODP; automatic environmental controls to prevent fluctuations that are potentially harmful to the system are defined] are employed in the facility to prevent fluctuations that are potentially harmful to the system.'), ('004258','draft','2022-03-03','DISA','policy','Defines the personnel or roles who employ environmental control monitoring that provides an alarm or notification of changes potentially harmful to personnel or equipment.','PE-14(02)','N/A','Determine if: - environmental control monitoring is employed. - the environmental control monitoring capability provides an alarm or notification to [PE-14(02)_ODP; personnel or roles to be notified by environmental control monitoring when environmental changes are potentially harmful to personnel or equipment is/are defined] when changes are potentially harmful to personnel or equipment.'), ('004259','draft','2022-03-03','DISA','policy','Detect the presence of water near the system.','PE-15(01)','N/A','Determine if: - the presence of water near the system can be detected automatically. - [PE-15(01)_ODP[01]; personnel or roles to be alerted when the presence of water is detected near the system is/are defined] is/are alerted using [PE-15(01)_ODP[02]; automated mechanisms used to detect the presence of water near the system are defined].'), ('004260','draft','2022-03-03','DISA','policy','Alert organization-defined personnel or roles of the presence of water near the system using organization-defined automated mechanisms.','PE-15(01)','N/A','Determine if: - the presence of water near the system can be detected automatically. - [PE-15(01)_ODP[01]; personnel or roles to be alerted when the presence of water is detected near the system is/are defined] is/are alerted using [PE-15(01)_ODP[02]; automated mechanisms used to detect the presence of water near the system are defined].'), ('004261','draft','2022-03-03','DISA','policy','Defines the automated mechanisms for detecting the presence of water and alerting organization-defined personnel or roles.','PE-15(01)','N/A','Determine if: - the presence of water near the system can be detected automatically. - [PE-15(01)_ODP[01]; personnel or roles to be alerted when the presence of water is detected near the system is/are defined] is/are alerted using [PE-15(01)_ODP[02]; automated mechanisms used to detect the presence of water near the system are defined].'), ('004262','draft','2022-03-03','DISA','policy','Determine and document the organization-defined alternate work sites allowed for use by employees.','PE-17a.','N/A','Determine if [PE-17_ODP[01]; alternate work sites allowed for use by employees are defined] are determined and documented.'), ('004263','draft','2022-03-03','DISA','policy','Provide a means for employees to communicate with information privacy personnel in case of incidents.','PE-17d.','N/A','Determine if a means for employees to communicate with information security and privacy personnel in case of incidents is provided.'), ('004264','draft','2022-03-03','DISA','policy','Protect system components, associated data communications, and networks in accordance with national Emissions Security policies based on the security category or classification of the information.','PE-19(01)','N/A','Determine if: - system components are protected in accordance with national emissions security policies and procedures based on the security category or classification of the information. - associated data communications are protected in accordance with national emissions security policies and procedures based on the security category or classification of the information. - networks are protected in accordance with national emissions security policies and procedures based on the security category or classification of the information.'), ('004265','draft','2022-03-03','DISA','policy','Protect system components, associated data communications, and networks in accordance with national Emissions Security procedures based on the security category or classification of the information.','PE-19(01)','N/A','Determine if: - system components are protected in accordance with national emissions security policies and procedures based on the security category or classification of the information. - associated data communications are protected in accordance with national emissions security policies and procedures based on the security category or classification of the information. - networks are protected in accordance with national emissions security policies and procedures based on the security category or classification of the information.'), ('004266','draft','2022-03-03','DISA','policy','Employ organization-defined protective measures against electromagnetic pulse damage for organization-defined systems and system components.','PE-21','N/A','Determine if [PE-21_ODP[01]; protective measures to be employed against electromagnetic pulse damage are defined] are employed against electromagnetic pulse damage for [PE-21_ODP[02]; system and system components requiring protection against electromagnetic pulse damage are defined].'), ('004267','draft','2022-03-03','DISA','policy','Defines the protective measure employed against electromagnetic pulse damage for organization-defined systems and system components.','PE-21','N/A','Determine if [PE-21_ODP[01]; protective measures to be employed against electromagnetic pulse damage are defined] are employed against electromagnetic pulse damage for [PE-21_ODP[02]; system and system components requiring protection against electromagnetic pulse damage are defined].'), ('004268','draft','2022-03-03','DISA','policy','Defines the systems and system components in which organization-defined protective measures are employed against electromagnetic pulse damage.','PE-21','N/A','Determine if [PE-21_ODP[01]; protective measures to be employed against electromagnetic pulse damage are defined] are employed against electromagnetic pulse damage for [PE-21_ODP[02]; system and system components requiring protection against electromagnetic pulse damage are defined].'), ('004269','draft','2022-03-03','DISA','policy','Mark organization-defined system hardware components indicating the impact or classification level of the information permitted to be processed, stored, or transmitted by the hardware component.','PE-22','N/A','Determine if [PE-22_ODP; system hardware components to be marked indicating the impact level or classification level of the information permitted to be processed, stored, or transmitted by the hardware component are defined] are marked indicating the impact level or classification level of the information permitted to be processed, stored, or transmitted by the hardware component.'), ('004270','draft','2022-03-03','DISA','policy','Defines the system hardware components which are marked, indicating the impact or classification level of the information permitted to be processed, stored, or transmitted by the hardware component.','PE-22','N/A','Determine if [PE-22_ODP; system hardware components to be marked indicating the impact level or classification level of the information permitted to be processed, stored, or transmitted by the hardware component are defined] are marked indicating the impact level or classification level of the information permitted to be processed, stored, or transmitted by the hardware component.'), ('004271','draft','2022-03-03','DISA','policy','Plan the location or site of the facility where the system resides considering physical and environmental hazards.','PE-23a.','N/A','Determine if the location or site of the facility where the system resides is planned considering physical and environmental hazards.'), ('004272','draft','2022-03-03','DISA','policy','For existing facilities, consider the physical and environmental hazards in the organizational risk management strategy.','PE-23b.','N/A','Determine if for existing facilities, physical and environmental hazards are considered in the organizational risk management strategy.'), ('004273','draft','2022-03-03','DISA','policy','Develop and document an organization-level; mission/business process-level; and or system-level planning policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','PL-01a.01(b)','N/A','Determine if the [PL-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] planning policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004274','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the development and documentation of the planning policy and procedures.','PL-01b.','N/A','Determine if the [PL-01_ODP[04]; an official to manage the planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the planning policy and procedures.'), ('004275','draft','2022-03-03','DISA','policy','Designate an organization-defined official to manage the dissemination of the planning policy and procedures.','PL-01b.','N/A','Determine if the [PL-01_ODP[04]; an official to manage the planning policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the planning policy and procedures.'), ('004276','draft','2022-03-03','DISA','policy','Review and update the current planning policy following organization-defined events.','PL-01c.01','N/A','Determine if: - the current planning policy is reviewed and updated [PL-01_ODP[05]; the frequency with which the current planning policy is reviewed and updated is defined]. - the current planning policy is reviewed and updated following [PL-01_ODP[06]; events that would require the current planning policy to be reviewed and updated are defined].'), ('004277','draft','2022-03-03','DISA','policy','Review and update the current planning procedures following organization-defined events.','PL-01c.02','N/A','Determine if: - the current planning procedures are reviewed and updated [PL-01_ODP[07]; the frequency with which the current planning procedures are reviewed and updated is defined]. - the current planning procedures are reviewed and updated following [PL-01_ODP[08]; events that would require procedures to be reviewed and updated are defined].'), ('004278','draft','2022-03-03','DISA','policy','Develop security and privacy plans for the system that identify the individuals that fulfill system roles and responsibilities.','PL-02a.04','N/A','Determine if: - a security plan for the system is developed that identifies the individuals that fulfill system roles and responsibilities. - a privacy plan for the system is developed that identifies the individuals that fulfill system roles and responsibilities.'), ('004279','draft','2022-03-03','DISA','policy','Develop security and privacy plans for the system that identify the information types processed, stored, and transmitted by the system.','PL-02a.05','N/A','Determine if: - a security plan for the system is developed that identifies the information types processed, stored, and transmitted by the system. - a privacy plan for the system is developed that identifies the information types processed, stored, and transmitted by the system.'), ('004280','draft','2022-03-03','DISA','policy','Develop security and privacy plans for the system that describe any specific threats to the system that are of concern to the organization.','PL-02a.07','N/A','Determine if: - a security plan for the system is developed that describes any specific threats to the system that are of concern to the organization. - a privacy plan for the system is developed that describes any specific threats to the system that are of concern to the organization.'), ('004281','draft','2022-03-03','DISA','policy','Develop security and privacy plans for the system that provide the results of a privacy risk assessment for the systems processing personally identifiable information.','PL-02a.08','N/A','Determine if: - a security plan for the system is developed that provides the results of a privacy risk assessment for systems processing personally identifiable information. - a privacy plan for the system is developed that provides the results of a privacy risk assessment for systems processing personally identifiable information.'), ('004282','draft','2022-03-03','DISA','policy','Develop security and privacy plans for the system that include risk determinations for security and privacy architecture and design decisions.','PL-02a.13','N/A','Determine if: - a security plan for the system is developed that includes risk determinations for security architecture and design decisions. - a privacy plan for the system is developed that includes risk determinations for privacy architecture and design decisions.'), ('004283','draft','2022-03-03','DISA','policy','Develop security and privacy plans for the system that include security- and privacy-related activities affecting the system that require planning and coordination with organization-defined individuals or groups.','PL-02a.14','N/A','Determine if: - a security plan for the system is developed that includes security-related activities affecting the system that require planning and coordination with [PL-02_ODP[01]; individuals or groups with whom security and privacy-related activities affecting the system that require planning and coordination is/are assigned]. - a privacy plan for the system is developed that includes privacy-related activities affecting the system that require planning and coordination with [PL-02_ODP[01]; individuals or groups with whom security and privacy-related activities affecting the system that require planning and coordination is/are assigned].'), ('004284','draft','2022-03-03','DISA','policy','Establish the rules describing the responsibilities and expected behavior, for security, for individuals requiring access to the system.','PL-04a.','N/A','Determine if: - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system. - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system.'), ('004285','draft','2022-03-03','DISA','policy','Establish the rules describing the responsibilities and expected behavior, for privacy, for individuals requiring access to the system.','PL-04a.','N/A','Determine if: - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system. - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system.'), ('004286','draft','2022-03-03','DISA','policy','Provide the rules describing the responsibilities and expected behavior, for information and system usage, for individuals requiring access to the system.','PL-04a.','N/A','Determine if: - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system. - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system.'), ('004287','draft','2022-03-03','DISA','policy','Provide the rules describing the responsibilities and expected behavior, for security, for individuals requiring access to the system.','PL-04a.','N/A','Determine if: - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system. - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system.'), ('004288','draft','2022-03-03','DISA','policy','Provide the rules describing the responsibilities and expected behavior, for privacy, for individuals requiring access to the system.','PL-04a.','N/A','Determine if: - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are established for individuals requiring access to the system. - rules that describe responsibilities and expected behavior for information and system usage, security, and privacy are provided to individuals requiring access to the system.'), ('004289','draft','2022-03-03','DISA','policy','Defines the frequency individuals are required to read and re-acknowledge the rules of behavior whenever the rules are revised or updated.','PL-04d.','N/A','Determine if individuals who have acknowledged a previous version of the rules of behavior are required to read and reacknowledge [PL-04_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[PL-04_ODP[03]; frequency for individuals to read and re-acknowledge the rules of behavior is defined (if selected)]; when the rules are revised or updated}].'), ('004290','draft','2022-03-03','DISA','policy','Include in the rules of behavior, restrictions on use of organization-provided identifiers (e.g., email addresses) and authentication secrets (e.g., passwords) for creating accounts on external sites/applications.','PL-04(01)(c)','N/A','Determine if the rules of behavior include restrictions on the use of organization-provided identifiers (e.g., email addresses) and authentication secrets (e.g., passwords) for creating accounts on external sites/applications.'), ('004291','draft','2022-03-03','DISA','policy','Develop a security Concept of Operations (CONOPS) for the system describing how the organization intends to operate the system from the perspective of information privacy.','PL-07a.','N/A','Determine if a CONOPS for the system describing how the organization intends to operate the system from the perspective of information security and privacy is developed.'), ('004292','draft','2022-03-03','DISA','policy','Develop privacy architectures for the system.',NULL,'N/A',NULL), ('004293','draft','2022-03-03','DISA','policy','Develop privacy architectures for the system that describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.','PL-08a.01','N/A','Determine if a security architecture for the system describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.'), ('004294','draft','2022-03-03','DISA','policy','Develop security architectures for the system that describe the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals.','PL-08a.02','N/A','Determine if a privacy architecture describes the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals.'), ('004295','draft','2022-03-03','DISA','policy','Develop privacy architectures for the system that describe the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals.','PL-08a.02','N/A','Determine if a privacy architecture describes the requirements and approach to be taken for processing personally identifiable information to minimize privacy risk to individuals.'), ('004296','draft','2022-03-03','DISA','policy','Develop privacy architectures for the system that describe how the architectures are integrated into and support the enterprise architecture.','PL-08a.03','N/A','Determine if: - a security architecture for the system describes how the architecture is integrated into and supports the enterprise architecture. - a privacy architecture for the system describes how the architecture is integrated into and supports the enterprise architecture.'), ('004297','draft','2022-03-03','DISA','policy','Develop privacy architectures for the system that describe any assumptions about, and dependencies on, external systems and services.','PL-08a.04','N/A','Determine if: - a security architecture for the system describes any assumptions about and dependencies on external systems and services. - a privacy architecture for the system describes any assumptions about and dependencies on external systems and services.'), ('004298','draft','2022-03-03','DISA','policy','Reflect planned privacy architecture changes in the privacy plans.','PL-08c.','N/A','Determine if: - planned architecture changes are reflected in the security plan. - planned architecture changes are reflected in the privacy plan. - planned architecture changes are reflected in the Concept of Operations (CONOPS). - planned architecture changes are reflected in criticality analysis. - planned architecture changes are reflected in organizational procedures. - planned architecture changes are reflected in procurements and acquisitions.'), ('004299','draft','2022-03-03','DISA','policy','Reflect planned privacy architecture changes in the privacy Concept of Operations (CONOPS).','PL-08c.','N/A','Determine if: - planned architecture changes are reflected in the security plan. - planned architecture changes are reflected in the privacy plan. - planned architecture changes are reflected in the Concept of Operations (CONOPS). - planned architecture changes are reflected in criticality analysis. - planned architecture changes are reflected in organizational procedures. - planned architecture changes are reflected in procurements and acquisitions.'), ('004300','draft','2022-03-03','DISA','policy','Reflect planned privacy architecture changes in the privacy organizational procurements and acquisitions.','PL-08c.','N/A','Determine if: - planned architecture changes are reflected in the security plan. - planned architecture changes are reflected in the privacy plan. - planned architecture changes are reflected in the Concept of Operations (CONOPS). - planned architecture changes are reflected in criticality analysis. - planned architecture changes are reflected in organizational procedures. - planned architecture changes are reflected in procurements and acquisitions.'), ('004301','draft','2022-03-03','DISA','policy','Design the privacy architecture for the system using a defense-in-depth approach that allocates organization-defined controls to organization-defined locations.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('004302','draft','2022-03-03','DISA','policy','Design the privacy architecture for the system using a defense-in-depth approach that allocates organization-defined controls to organization-defined architectural layers.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('004303','draft','2022-03-03','DISA','policy','Defines the controls to be allocated to organization-defined locations for the privacy architecture.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('004304','draft','2022-03-03','DISA','policy','Defines the controls to be allocated to the organization-defined privacy architectural layers.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('004305','draft','2022-03-03','DISA','policy','Defines the locations to which the system allocates organization-defined controls in the privacy architecture.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('004306','draft','2022-03-03','DISA','policy','Defines the architectural layers to which the system allocates organization-defined controls in the privacy architecture.','PL-08(01)(a)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined]. - the privacy architecture for the system is designed using a defense-in-depth approach that allocates [PL-08(01)_ODP[01]; controls to be allocated are defined] to [PL-08(01)_ODP[02]; locations and architectural layers are defined].'), ('004307','draft','2022-03-03','DISA','policy','Design the privacy architecture for the system using a defense-in-depth approach that ensures that the allocated controls operate in a coordinated and mutually reinforcing manner.','PL-08(01)(b)','N/A','Determine if: - the security architecture for the system is designed using a defense-in-depth approach that ensures the allocated controls operate in a coordinated and mutually reinforcing manner. - the privacy architecture for the system is designed using a defense-in-depth approach that ensures the allocated controls operate in a coordinated and mutually reinforcing manner.'), ('004308','draft','2022-03-03','DISA','policy','Defines the controls that are allocated to the organization-defined locations and architectural layers.','PL-08(02)','N/A','Determine if [PL-08(02)_ODP[01]; controls to be allocated are defined] that are allocated to [PL-08(02)_ODP[02]; locations and architectural layers are defined] are required to be obtained from different suppliers.'), ('004309','draft','2022-03-03','DISA','policy','Defines the locations and architectural layers that are obtained from different suppliers.','PL-08(02)','N/A','Determine if [PL-08(02)_ODP[01]; controls to be allocated are defined] that are allocated to [PL-08(02)_ODP[02]; locations and architectural layers are defined] are required to be obtained from different suppliers.'), ('004310','draft','2022-03-03','DISA','policy','Select a control baseline for the system.','PL-10','N/A','Determine if a control baseline for the system is selected.'), ('004311','draft','2022-03-03','DISA','policy','Tailor the selected control baseline by applying specified tailoring actions.','PL-11','N/A','Determine if the selected control baseline is tailored by applying specified tailoring actions.'), ('004312','draft','2022-03-03','DISA','policy','Review and update the organization-wide information security program plan following organization-defined events.','PM-01b.','N/A','Determine if: - the information security program plan is reviewed and updated [PM-01_ODP[01]; the frequency at which to review and update the organization-wide information security program plan is defined]. - the information security program plan is reviewed and updated following [PM-01_ODP[02]; events that trigger the review and update of the organization-wide information security program plan are defined].'), ('004313','draft','2022-03-03','DISA','policy','Defines the events for reviewing and updating the organization-wide information security program plan.','PM-01b.','N/A','Determine if: - the information security program plan is reviewed and updated [PM-01_ODP[01]; the frequency at which to review and update the organization-wide information security program plan is defined]. - the information security program plan is reviewed and updated following [PM-01_ODP[02]; events that trigger the review and update of the organization-wide information security program plan are defined].'), ('004314','draft','2022-03-03','DISA','policy','Include the resources needed to implement the information security programs in capital planning and investment requests.','PM-03a.','N/A','Determine if: - the resources needed to implement the information security program are included in capital planning and investment requests, and all exceptions are documented. - the resources needed to implement the privacy program are included in capital planning and investment requests, and all exceptions are documented.'), ('004315','draft','2022-03-03','DISA','policy','Include the resources needed to implement the information privacy programs in capital planning and investment requests.',NULL,'N/A',NULL), ('004316','draft','2022-03-03','DISA','policy','Prepare documentation required for addressing information security programs in capital planning and investment requests in accordance with applicable laws, Executive Orders, directives, policies, regulations, and standards.','PM-03a.','N/A','Determine if: - the resources needed to implement the information security program are included in capital planning and investment requests, and all exceptions are documented. - the resources needed to implement the privacy program are included in capital planning and investment requests, and all exceptions are documented.'), ('004317','draft','2022-03-03','DISA','policy','Prepare documentation required for addressing information privacy programs in capital planning and investment requests in accordance with applicable laws, Executive Orders, directives, policies, regulations, and standards.','PM-03b.','N/A','Determine if: - the documentation required for addressing the information security program in capital planning and investment requests is prepared in accordance with applicable laws, executive orders, directives, policies, regulations, standards. - the documentation required for addressing the privacy program in capital planning and investment requests is prepared in accordance with applicable laws, executive orders, directives, policies, regulations, standards.'), ('004318','draft','2022-03-03','DISA','policy','Make available for expenditure, the planned information privacy resources.','PM-03c.','N/A','Determine if: - information security resources are made available for expenditure as planned. - privacy resources are made available for expenditure as planned.'), ('004319','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the privacy program and the associated organizational systems are maintained.','PM-04a.01','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are maintained.'), ('004320','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed.','PM-04a.01','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are maintained.'), ('004321','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the supply chain risk management programs and the associated organizational systems are maintained.','PM-04a.01','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are maintained.'), ('004322','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the supply chain risk management programs and the associated organizational systems are developed.','PM-04a.01','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the information security program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are maintained. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are developed. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are maintained.'), ('004323','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the privacy program and associated organizational systems document the remedial information privacy actions to adequately respond to risk to organizational operations and assets, individuals, other organizations, and the Nation.','PM-04a.02','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems document remedial information security risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems document remedial privacy risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems document remedial supply chain risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation.'), ('004324','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems document the remedial information supply chain risk management actions to adequately respond to risk to organizational operations and assets, individuals, other organizations, and the Nation.','PM-04a.02','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security program and associated organizational systems document remedial information security risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation. - a process to ensure that plans of action and milestones for the privacy program and associated organizational systems document remedial privacy risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation. - a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems document remedial supply chain risk management actions to adequately respond to risks to organizational operations and assets, individuals, other organizations, and the Nation.'), ('004325','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the security program and associated organizational systems are reported in accordance with established reporting requirements.','PM-04a.03','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security risk management programs and associated organizational systems are reported in accordance with established reporting requirements. - a process to ensure that plans of action and milestones for the privacy risk management programs and associated organizational systems are reported in accordance with established reporting requirements. - a process to ensure that plans of action and milestones for the supply chain risk management programs and associated organizational systems are reported in accordance with established reporting requirements.'), ('004326','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the privacy program and associated organizational systems are reported in accordance with established reporting requirements.','PM-04a.03','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security risk management programs and associated organizational systems are reported in accordance with established reporting requirements. - a process to ensure that plans of action and milestones for the privacy risk management programs and associated organizational systems are reported in accordance with established reporting requirements. - a process to ensure that plans of action and milestones for the supply chain risk management programs and associated organizational systems are reported in accordance with established reporting requirements.'), ('004327','draft','2022-03-03','DISA','policy','Implement a process to ensure that plans of action and milestones for the supply chain risk management program and associated organizational systems are reported in accordance with established reporting requirements.','PM-04a.03','N/A','Determine if: - a process to ensure that plans of action and milestones for the information security risk management programs and associated organizational systems are reported in accordance with established reporting requirements. - a process to ensure that plans of action and milestones for the privacy risk management programs and associated organizational systems are reported in accordance with established reporting requirements. - a process to ensure that plans of action and milestones for the supply chain risk management programs and associated organizational systems are reported in accordance with established reporting requirements.'), ('004328','draft','2022-03-03','DISA','policy','Develop an inventory of organizational systems.','PM-05','N/A','Determine if: - an inventory of organizational systems is developed. - the inventory of organizational systems is updated [PM-05_ODP; the frequency at which to update the inventory of organizational systems is defined].'), ('004329','draft','2022-03-03','DISA','policy','Update, on an organization-defined frequency, an inventory of organizational systems.','PM-05','N/A','Determine if: - an inventory of organizational systems is developed. - the inventory of organizational systems is updated [PM-05_ODP; the frequency at which to update the inventory of organizational systems is defined].'), ('004330','draft','2022-03-03','DISA','policy','Defines the frequency with which to update the inventory of organizational systems.','PM-05','N/A','Determine if: - an inventory of organizational systems is developed. - the inventory of organizational systems is updated [PM-05_ODP; the frequency at which to update the inventory of organizational systems is defined].'), ('004331','draft','2022-03-03','DISA','policy','Establish an inventory of all systems, applications, and projects that process personally identifiable information.','PM-05(01)','N/A','Determine if: - an inventory of all systems, applications, and projects that process personally identifiable information is established. - an inventory of all systems, applications, and projects that process personally identifiable information is maintained. - an inventory of all systems, applications, and projects that process personally identifiable information is updated [PM-05(01)_ODP; the frequency at which to update the inventory of systems, applications, and projects that process personally identifiable information is defined].'), ('004332','draft','2022-03-03','DISA','policy','Maintain an inventory of all systems, applications, and projects that process personally identifiable information.','PM-05(01)','N/A','Determine if: - an inventory of all systems, applications, and projects that process personally identifiable information is established. - an inventory of all systems, applications, and projects that process personally identifiable information is maintained. - an inventory of all systems, applications, and projects that process personally identifiable information is updated [PM-05(01)_ODP; the frequency at which to update the inventory of systems, applications, and projects that process personally identifiable information is defined].'), ('004333','draft','2022-03-03','DISA','policy','Update on an organization-defined frequency, an inventory of all systems, applications, and projects that process personally identifiable information.','PM-05(01)','N/A','Determine if: - an inventory of all systems, applications, and projects that process personally identifiable information is established. - an inventory of all systems, applications, and projects that process personally identifiable information is maintained. - an inventory of all systems, applications, and projects that process personally identifiable information is updated [PM-05(01)_ODP; the frequency at which to update the inventory of systems, applications, and projects that process personally identifiable information is defined].'), ('004334','draft','2022-03-03','DISA','policy','Defines the frequency of which an inventory of all systems, applications, and projects that process personally identifiable information will be updated.','PM-05(01)','N/A','Determine if: - an inventory of all systems, applications, and projects that process personally identifiable information is established. - an inventory of all systems, applications, and projects that process personally identifiable information is maintained. - an inventory of all systems, applications, and projects that process personally identifiable information is updated [PM-05(01)_ODP; the frequency at which to update the inventory of systems, applications, and projects that process personally identifiable information is defined].'), ('004335','draft','2022-03-03','DISA','policy','Develop the results of information privacy measures of performance.','PM-06','N/A','Determine if: - information security measures of performance are developed. - information security measures of performance are monitored. - the results of information security measures of performance are reported. - privacy measures of performance are developed. - privacy measures of performance are monitored. - the results of privacy measures of performance are reported.'), ('004336','draft','2022-03-03','DISA','policy','Monitor the results of information privacy measures of performance.','PM-06','N/A','Determine if: - information security measures of performance are developed. - information security measures of performance are monitored. - the results of information security measures of performance are reported. - privacy measures of performance are developed. - privacy measures of performance are monitored. - the results of privacy measures of performance are reported.'), ('004337','draft','2022-03-03','DISA','policy','Report on the results of information privacy measures of performance.','PM-06','N/A','Determine if: - information security measures of performance are developed. - information security measures of performance are monitored. - the results of information security measures of performance are reported. - privacy measures of performance are developed. - privacy measures of performance are monitored. - the results of privacy measures of performance are reported.'), ('004338','draft','2022-03-03','DISA','policy','Develop an enterprise architecture with consideration for information privacy and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-07','N/A','Determine if: - an enterprise architecture is developed with consideration for information security. - an enterprise architecture is maintained with consideration for information security. - an enterprise architecture is developed with consideration for privacy. - an enterprise architecture is maintained with consideration for privacy. - an enterprise architecture is developed with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation. - an enterprise architecture is maintained with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation.'), ('004339','draft','2022-03-03','DISA','policy','Maintain an enterprise architecture with consideration for information security and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-07','N/A','Determine if: - an enterprise architecture is developed with consideration for information security. - an enterprise architecture is maintained with consideration for information security. - an enterprise architecture is developed with consideration for privacy. - an enterprise architecture is maintained with consideration for privacy. - an enterprise architecture is developed with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation. - an enterprise architecture is maintained with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation.'), ('004340','draft','2022-03-03','DISA','policy','Maintain an enterprise architecture with consideration for information privacy and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-07','N/A','Determine if: - an enterprise architecture is developed with consideration for information security. - an enterprise architecture is maintained with consideration for information security. - an enterprise architecture is developed with consideration for privacy. - an enterprise architecture is maintained with consideration for privacy. - an enterprise architecture is developed with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation. - an enterprise architecture is maintained with consideration for the resulting risk to organizational operations and assets, individuals, other organizations, and the Nation.'), ('004341','draft','2022-03-03','DISA','policy','Offload organization-defined non-essential functions or services to other systems, system components, or an external provider.','PM-07(01)','N/A','Determine if [PM-07(01)_ODP; non-essential functions or services to be offloaded are defined] are offloaded to other systems, system components, or an external provider.'), ('004342','draft','2022-03-03','DISA','policy','Defines the non-essential functions or services to be offloaded to other systems, system components, or an external provider.','PM-07(01)','N/A','Determine if [PM-07(01)_ODP; non-essential functions or services to be offloaded are defined] are offloaded to other systems, system components, or an external provider.'), ('004343','draft','2022-03-03','DISA','policy','Address information privacy issues in the development and documentation of a critical infrastructure and key resources protection plan.','PM-08','N/A','Determine if: - information security issues are addressed in the development of a critical infrastructure and key resources protection plan. - information security issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - information security issues are addressed in the update of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the development of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the update of a critical infrastructure and key resources protection plan.'), ('004344','draft','2022-03-03','DISA','policy','Address information privacy issues in the updating of a critical infrastructure and key resources protection plan.','PM-08','N/A','Determine if: - information security issues are addressed in the development of a critical infrastructure and key resources protection plan. - information security issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - information security issues are addressed in the update of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the development of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the documentation of a critical infrastructure and key resources protection plan. - privacy issues are addressed in the update of a critical infrastructure and key resources protection plan.'), ('004345','draft','2022-03-03','DISA','policy','Develop a comprehensive strategy to manage privacy risk to individuals resulting from the authorized processing of personally identifiable information.','PM-09a.02','N/A','Determine if a comprehensive strategy is developed to manage privacy risk to individuals resulting from the authorized processing of personally identifiable information.'), ('004346','draft','2022-03-03','DISA','policy','Manage the security state of organizational systems and the environments in which those systems operate through authorization processes.','PM-10a.','N/A','Determine if: - the security state of organizational systems and the environments in which those systems operate are managed through authorization processes. - the privacy state of organizational systems and the environments in which those systems operate are managed through authorization processes.'), ('004347','draft','2022-03-03','DISA','policy','Manage the privacy state of organizational systems and the environments in which those systems operate through authorization processes.','PM-10a.','N/A','Determine if: - the security state of organizational systems and the environments in which those systems operate are managed through authorization processes. - the privacy state of organizational systems and the environments in which those systems operate are managed through authorization processes.'), ('004348','draft','2022-03-03','DISA','policy','Define organizational mission and business processes with consideration for information privacy and the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.','PM-11a.','N/A','Determine if: - organizational mission and business processes are defined with consideration for information security. - organizational mission and business processes are defined with consideration for privacy. - organizational mission and business processes are defined with consideration for the resulting risk to organizational operations, organizational assets, individuals, other organizations, and the Nation.'), ('004349','draft','2022-03-03','DISA','policy','Determine personally identifiable information processing needs arising from the defined mission and business processes.','PM-11b.','N/A','Determine if: - information protection needs arising from the defined mission and business processes are determined. - personally identifiable information processing needs arising from the defined mission and business processes are determined.'), ('004350','draft','2022-03-03','DISA','policy','Review and revise the mission and business processes on an organization-defined frequency.','PM-11c.','N/A','Determine if the mission and business processes are reviewed and revised [PM-11_ODP; the frequency at which to review and revise the mission and business processes is defined].'), ('004351','draft','2022-03-03','DISA','policy','Defines the frequency at which the mission and business processes are reviewed and revised.','PM-11c.','N/A','Determine if the mission and business processes are reviewed and revised [PM-11_ODP; the frequency at which to review and revise the mission and business processes is defined].'), ('004352','draft','2022-03-03','DISA','policy','Establish a privacy workforce development and improvement program.','PM-13','N/A','Determine if: - a security workforce development and improvement program is established. - privacy workforce development and improvement program is established.'), ('004353','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy testing activities associated with organizational systems are developed.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('004354','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy testing activities associated with organizational systems are maintained.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('004355','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy training activities associated with organizational systems are developed.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('004356','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy training activities associated with organizational systems are maintained.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('004357','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy monitoring activities associated with organizational systems are developed.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('004358','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy monitoring activities associated with organizational information systems are maintained.','PM-14a.01','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems are maintained. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are developed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems are maintained.'), ('004359','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy testing associated with organizational systems continue to be executed.','PM-14a.02','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems continue to be executed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems continue to be executed.'), ('004360','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy training associated with organizational systems continue to be executed.','PM-14a.02','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems continue to be executed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems continue to be executed.'), ('004361','draft','2022-03-03','DISA','policy','Implement a process for ensuring that organizational plans for conducting privacy monitoring activities associated with organizational systems continue to be executed.','PM-14a.02','N/A','Determine if: - a process is implemented for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational systems continue to be executed. - a process is implemented for ensuring that organizational plans for conducting privacy testing, training, and monitoring activities associated with organizational systems continue to be executed.'), ('004362','draft','2022-03-03','DISA','policy','Establish and institutionalize contact with selected groups and associations within the privacy community to facilitate ongoing privacy education and training for organizational personnel.','PM-15a.','N/A','Determine if: - contact is established and institutionalized with selected groups and associations within the security community to facilitate ongoing security education and training for organizational personnel. - contact is established and institutionalized with selected groups and associations within the privacy community to facilitate ongoing privacy education and training for organizational personnel.'), ('004363','draft','2022-03-03','DISA','policy','Establish and institutionalize contact with selected groups and associations within the privacy community to maintain currency with recommended privacy practices, techniques, and technologies.','PM-15b.','N/A','Determine if: - contact is established and institutionalized with selected groups and associations within the security community to maintain currency with recommended security practices, techniques, and technologies. - contact is established and institutionalized with selected groups and associations within the privacy community to maintain currency with recommended privacy practices, techniques, and technologies.'), ('004364','draft','2022-03-03','DISA','policy','Establish and institutionalize contact with selected groups and associations within the privacy community to share current privacy information including threats, vulnerabilities, and incidents.','PM-15c.','N/A','Determine if: - contact is established and institutionalized with selected groups and associations within the security community to share current security information, including threats, vulnerabilities, and incidents. - contact is established and institutionalized with selected groups and associations within the privacy community to share current privacy information, including threats, vulnerabilities, and incidents.'), ('004365','draft','2022-03-03','DISA','policy','Employ automated means to maximize the effectiveness of sharing threat intelligence information.','PM-16(01)','N/A','Determine if automated mechanisms are employed to maximize the effectiveness of sharing threat intelligence information.'), ('004366','draft','2022-03-03','DISA','policy','Establish policy to ensure that the requirements for the protection of Controlled Unclassified Information that is processed, stored or transmitted on external systems, are implemented in accordance with applicable laws, Executive Orders, directives, policies, regulations, and standards.','PM-17a.','N/A','Determine if: - policy is established to ensure that requirements for the protection of controlled unclassified information that is processed, stored, or transmitted on external systems are implemented in accordance with applicable laws, executive orders, directives, policies, regulations, and standards. - procedures are established to ensure that requirements for the protection of controlled unclassified information that is processed, stored, or transmitted on external systems are implemented in accordance with applicable laws, executive orders, directives, policies, regulations, and standards.'), ('004367','draft','2022-03-03','DISA','policy','Establish procedures to ensure that the requirements for the protection of Controlled Unclassified Information that is processed, stored or transmitted on external systems, are implemented in accordance with applicable laws, Executive Orders, directives, policies, regulations, and standards.','PM-17a.','N/A','Determine if: - policy is established to ensure that requirements for the protection of controlled unclassified information that is processed, stored, or transmitted on external systems are implemented in accordance with applicable laws, executive orders, directives, policies, regulations, and standards. - procedures are established to ensure that requirements for the protection of controlled unclassified information that is processed, stored, or transmitted on external systems are implemented in accordance with applicable laws, executive orders, directives, policies, regulations, and standards.'), ('004368','draft','2022-03-03','DISA','policy','Review and update the policy for Controlled Unclassified Information on an organization-defined frequency.','PM-17b.','N/A','Determine if: - policy is reviewed and updated [PM-17_ODP[01]; the frequency at which to review and update the policy is defined]. - procedures are reviewed and updated [PM-17_ODP[02]; the frequency at which to review and update the procedures is defined].'), ('004369','draft','2022-03-03','DISA','policy','Defines the frequency in which the policy for Controlled Unclassified information is reviewed and updated.','PM-17b.','N/A','Determine if: - policy is reviewed and updated [PM-17_ODP[01]; the frequency at which to review and update the policy is defined]. - procedures are reviewed and updated [PM-17_ODP[02]; the frequency at which to review and update the procedures is defined].'), ('004370','draft','2022-03-03','DISA','policy','Review and update the procedures for Controlled Unclassified Information on an organization-defined frequency.','PM-17b.','N/A','Determine if: - policy is reviewed and updated [PM-17_ODP[01]; the frequency at which to review and update the policy is defined]. - procedures are reviewed and updated [PM-17_ODP[02]; the frequency at which to review and update the procedures is defined].'), ('004371','draft','2022-03-03','DISA','policy','Defines the frequency in which the procedures for Controlled Unclassified information is reviewed and updated.','PM-17b.','N/A','Determine if: - policy is reviewed and updated [PM-17_ODP[01]; the frequency at which to review and update the policy is defined]. - procedures are reviewed and updated [PM-17_ODP[02]; the frequency at which to review and update the procedures is defined].'), ('004372','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program.','PM-18a.','N/A','Determine if: - an organization-wide privacy program plan that provides an overview of the agency''s privacy program is developed. - the privacy program plan is disseminated.'), ('004373','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program.','PM-18a.','N/A','Determine if: - an organization-wide privacy program plan that provides an overview of the agency''s privacy program is developed. - the privacy program plan is disseminated.'), ('004374','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and includes a description of the structure of the privacy program and the resources dictated to the privacy program.','PM-18a.01','N/A','Determine if: - the privacy program plan includes a description of the structure of the privacy program. - the privacy program plan includes a description of the resources dedicated to the privacy program.'), ('004375','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and includes a description of the structure of the privacy program and the resources dictated to the privacy program.','PM-18a.01','N/A','Determine if: - the privacy program plan includes a description of the structure of the privacy program. - the privacy program plan includes a description of the resources dedicated to the privacy program.'), ('004376','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and provides an overview of the requirements for the privacy program.','PM-18a.02','N/A','Determine if: - the privacy program plan provides an overview of the requirements for the privacy program. - the privacy program plan provides a description of the privacy program management controls in place or planned for meeting the requirements of the privacy program. - the privacy program plan provides a description of common controls in place or planned for meeting the requirements of the privacy program.'), ('004377','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and provides an overview of the requirements for the privacy program.','PM-18a.02','N/A','Determine if: - the privacy program plan provides an overview of the requirements for the privacy program. - the privacy program plan provides a description of the privacy program management controls in place or planned for meeting the requirements of the privacy program. - the privacy program plan provides a description of common controls in place or planned for meeting the requirements of the privacy program.'), ('004378','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and a description of the privacy program management controls and common controls in place or planned for meeting those requirements.','PM-18a.02','N/A','Determine if: - the privacy program plan provides an overview of the requirements for the privacy program. - the privacy program plan provides a description of the privacy program management controls in place or planned for meeting the requirements of the privacy program. - the privacy program plan provides a description of common controls in place or planned for meeting the requirements of the privacy program.'), ('004379','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and a description of the privacy program management controls and common controls in place or planned for meeting those requirements.','PM-18a.02','N/A','Determine if: - the privacy program plan provides an overview of the requirements for the privacy program. - the privacy program plan provides a description of the privacy program management controls in place or planned for meeting the requirements of the privacy program. - the privacy program plan provides a description of common controls in place or planned for meeting the requirements of the privacy program.'), ('004380','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and includes the role of the Senior Agency Official for Privacy and the identification and assignment of the roles of other privacy officials and staff and their responsibilities.','PM-18a.03','N/A','Determine if: - the privacy program plan includes the role of the senior agency official for privacy. - the privacy program plan includes the identification and assignment of the roles of other privacy officials and staff and their responsibilities.'), ('004381','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and includes the role of the Senior Agency Official for Privacy and the identification and assignment of the roles of other privacy officials and staff and their responsibilities.','PM-18a.03','N/A','Determine if: - the privacy program plan includes the role of the senior agency official for privacy. - the privacy program plan includes the identification and assignment of the roles of other privacy officials and staff and their responsibilities.'), ('004382','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and describes management commitment, compliance, and the strategic goals and objectives of the privacy program.','PM-18a.04','N/A','Determine if: - the privacy program plan describes management commitment. - the privacy program plan describes compliance. - the privacy program plan describes the strategic goals and objectives of the privacy program.'), ('004383','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and describes management commitment, compliance, and the strategic goals and objectives of the privacy program.','PM-18a.04','N/A','Determine if: - the privacy program plan describes management commitment. - the privacy program plan describes compliance. - the privacy program plan describes the strategic goals and objectives of the privacy program.'), ('004384','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and reflects coordination among organizational entities responsible for the different aspects of privacy.','PM-18a.05','N/A','Determine if the privacy program plan reflects coordination among organizational entities responsible for the different aspects of privacy.'), ('004385','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and reflects coordination among organizational entities responsible for the different aspects of privacy.','PM-18a.05','N/A','Determine if the privacy program plan reflects coordination among organizational entities responsible for the different aspects of privacy.'), ('004386','draft','2022-03-03','DISA','policy','Develop an organization-wide privacy program plan that provides an overview of the agency''s privacy program and is approved by a senior official with responsibility and accountability for the privacy risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.','PM-18a.06','N/A','Determine if the privacy program plan is approved by a senior official with responsibility and accountability for the privacy risk being incurred by organizational operations (including, mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.'), ('004387','draft','2022-03-03','DISA','policy','Disseminate an organization-wide privacy program plan that provides an overview of the agency''s privacy program and is approved by a senior official with responsibility and accountability for the privacy risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.','PM-18a.06','N/A','Determine if the privacy program plan is approved by a senior official with responsibility and accountability for the privacy risk being incurred by organizational operations (including, mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.'), ('004388','draft','2022-03-03','DISA','policy','Update the plan on an organization-defined frequency.','PM-18a.06','N/A','Determine if the privacy program plan is approved by a senior official with responsibility and accountability for the privacy risk being incurred by organizational operations (including, mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.'), ('004389','draft','2022-03-03','DISA','policy','Update the plan to address changes in federal privacy laws and policy and organizational changes and problems identified during plan implementation or privacy control assessments.','PM-18b.','N/A','Determine if: - the privacy program plan is updated [PM-18_ODP; the frequency of updates to the privacy program plan is defined]. - the privacy program plan is updated to address changes in federal privacy laws and policies. - the privacy program plan is updated to address organizational changes. - the privacy program plan is updated to address problems identified during plan implementation or privacy control assessments.'), ('004390','draft','2022-03-03','DISA','policy','Appoint a Senior Agency Official for Privacy with the authority, mission, accountability, and resources to coordinate applicable privacy requirements.','PM-19','N/A','Determine if: - a senior agency official for privacy with authority, mission, accountability, and resources is appointed. - the senior agency official for privacy coordinates applicable privacy requirements. - the senior agency official for privacy develops applicable privacy requirements. - the senior agency official for privacy implements applicable privacy requirements. - the senior agency official for privacy manages privacy risks through the organization-wide privacy program.'), ('004391','draft','2022-03-03','DISA','policy','Appoint a Senior Agency Official for Privacy with the authority, mission, accountability, and resources to develop applicable privacy requirements.','PM-19','N/A','Determine if: - a senior agency official for privacy with authority, mission, accountability, and resources is appointed. - the senior agency official for privacy coordinates applicable privacy requirements. - the senior agency official for privacy develops applicable privacy requirements. - the senior agency official for privacy implements applicable privacy requirements. - the senior agency official for privacy manages privacy risks through the organization-wide privacy program.'), ('004392','draft','2022-03-03','DISA','policy','Appoint a Senior Agency Official for Privacy with the authority, mission, accountability, and resources to implement applicable privacy requirements.','PM-19','N/A','Determine if: - a senior agency official for privacy with authority, mission, accountability, and resources is appointed. - the senior agency official for privacy coordinates applicable privacy requirements. - the senior agency official for privacy develops applicable privacy requirements. - the senior agency official for privacy implements applicable privacy requirements. - the senior agency official for privacy manages privacy risks through the organization-wide privacy program.'), ('004393','draft','2022-03-03','DISA','policy','Appoint a Senior Agency Official for Privacy with the authority, mission, accountability, and resources to manage privacy risks through the organization-wide privacy program.','PM-19','N/A','Determine if: - a senior agency official for privacy with authority, mission, accountability, and resources is appointed. - the senior agency official for privacy coordinates applicable privacy requirements. - the senior agency official for privacy develops applicable privacy requirements. - the senior agency official for privacy implements applicable privacy requirements. - the senior agency official for privacy manages privacy risks through the organization-wide privacy program.'), ('004394','draft','2022-03-03','DISA','policy','Maintain a central resource webpage on the organization''s principle public website that serves as a central source of information about the organization''s privacy plan.','PM-20','N/A','Determine if: - a central resource webpage is maintained on the organization''s principal public website. - the webpage serves as a central source of information about the organization''s privacy program.'), ('004395','draft','2022-03-03','DISA','policy','Ensure that the public has access to information about organizational privacy activities.','PM-20a.','N/A','Determine if: - the webpage ensures that the public has access to information about organizational privacy activities. - the webpage ensures that the public can communicate with its senior agency official for privacy.'), ('004396','draft','2022-03-03','DISA','policy','Ensure that the public can communicate with its Senior Agency Official for Privacy.','PM-20a.','N/A','Determine if: - the webpage ensures that the public has access to information about organizational privacy activities. - the webpage ensures that the public can communicate with its senior agency official for privacy.'), ('004397','draft','2022-03-03','DISA','policy','Ensure that organizational privacy practices and reports are publicly available.','PM-20b.','N/A','Determine if: - the webpage ensures that organizational privacy practices are publicly available. - the webpage ensures that organizational privacy reports are publicly available.'), ('004398','draft','2022-03-03','DISA','policy','Employ publicly facing email addresses and/or phone lines to enable the public to provide feedback and/or direct questions to privacy offices regarding privacy practices.','PM-20c.','N/A','Determine if the webpage employs publicly facing email addresses and/or phone numbers to enable the public to provide feedback and/or direct questions to privacy offices regarding privacy practices.'), ('004399','draft','2022-03-03','DISA','policy','Develop and post privacy policies on all external-facing websites, mobile applications, and other digital services that are written in plain language.','PM-20(01)(a)','N/A','Determine if: - the privacy policies are written in plain language. - the privacy policies are organized in a way that is easy to understand and navigate.'), ('004400','draft','2022-03-03','DISA','policy','Develop and post privacy policies on all external-facing websites, mobile applications, and other digital services that are organized in a way that is easy to understand and navigate.','PM-20(01)(a)','N/A','Determine if: - the privacy policies are written in plain language. - the privacy policies are organized in a way that is easy to understand and navigate.'), ('004401','draft','2022-03-03','DISA','policy','Develop and post privacy policies on all external-facing websites, mobile applications, and other digital services that provide information needed by the public to make an informed about whether and how to interact with the organization.','PM-20(01)(b)','N/A','Determine if: - the privacy policies provide the information needed by the public to make an informed decision about whether to interact with the organization. - the privacy policies provide the information needed by the public to make an informed decision about how to interact with the organization.'), ('004402','draft','2022-03-03','DISA','policy','Develop and post privacy policies on all external-facing websites, mobile applications, and other digital services that are updated whenever the organization makes a substantive change to the practices it describes.','PM-20(01)(c)','N/A','Determine if: - the privacy policies are updated whenever the organization makes a substantive change to the practices it describes. - the privacy policies include a time/date stamp to inform the public of the date of the most recent changes.'), ('004403','draft','2022-03-03','DISA','policy','Develop and post privacy policies on all external-facing websites, mobile applications, and other digital services that includes a time/date stamp to inform the public of the date of the most recent changes.','PM-20(01)(c)','N/A','Determine if: - the privacy policies are updated whenever the organization makes a substantive change to the practices it describes. - the privacy policies include a time/date stamp to inform the public of the date of the most recent changes.'), ('004404','draft','2022-03-03','DISA','policy','Develop an accurate accounting of disclosures of personally identifiable information.','PM-21a.','N/A','Determine if an accurate accounting of disclosures of personally identifiable information is developed and maintained.'), ('004405','draft','2022-03-03','DISA','policy','Maintain an accurate accounting of disclosures of personally identifiable information.','PM-21a.','N/A','Determine if an accurate accounting of disclosures of personally identifiable information is developed and maintained.'), ('004406','draft','2022-03-03','DISA','policy','Develop an accurate accounting of disclosures of personally identifiable information, including date, nature, and purpose of each disclosure of a record.','PM-21a.01','N/A','Determine if: - the accounting includes the date of each disclosure. - the accounting includes the nature of each disclosure. - the accounting includes the purpose of each disclosure.'), ('004407','draft','2022-03-03','DISA','policy','Maintain an accurate accounting of disclosures of personally identifiable information, including date, nature, and purpose of each disclosure of a record.','PM-21a.01','N/A','Determine if: - the accounting includes the date of each disclosure. - the accounting includes the nature of each disclosure. - the accounting includes the purpose of each disclosure.'), ('004408','draft','2022-03-03','DISA','policy','Develop an accurate accounting of disclosures of personally identifiable information, including name and address, or other contact information of the individual or organization to which the disclosure was made.','PM-21a.02','N/A','Determine if: - the accounting includes the name of the individual or organization to whom the disclosure was made. - the accounting includes the address or other contact information of the individual or organization to whom the disclosure was made.'), ('004409','draft','2022-03-03','DISA','policy','Maintain an accurate accounting of disclosures of personally identifiable information, including name and address, or other contact information of the individual or organization to which the disclosure was made.','PM-21a.02','N/A','Determine if: - the accounting includes the name of the individual or organization to whom the disclosure was made. - the accounting includes the address or other contact information of the individual or organization to whom the disclosure was made.'), ('004410','draft','2022-03-03','DISA','policy','Retain the accounting of disclosures for the length of the time the personally identifiable information is maintained or five years after the disclosure is made, whichever is longer.','PM-21b.','N/A','Determine if the accounting of disclosures is retained for the length of time that the personally identifiable information is maintained or five years after the disclosure is made, whichever is longer.'), ('004411','draft','2022-03-03','DISA','policy','Make the accounting of disclosures available to the individual to whom the personally identifiable information relates upon request.','PM-21c.','N/A','Determine if the accounting of disclosures is made available to the individual to whom the personally identifiable information relates upon request.'), ('004412','draft','2022-03-03','DISA','policy','Develop and document organization-wide policies for reviewing for the accuracy, relevance, timeliness, and completeness of personally identifiable information across the information life cycle.','PM-22a.','N/A','Determine if: - the policies address reviewing the accuracy of personally identifiable information across the information life cycle. - the policies address reviewing the relevance of personally identifiable information across the information life cycle. - the policies address reviewing the timeliness of personally identifiable information across the information life cycle. - the policies address reviewing the completeness of personally identifiable information across the information life cycle. - the procedures address reviewing the accuracy of personally identifiable information across the information life cycle. - the procedures address reviewing the relevance of personally identifiable information across the information life cycle. - the procedures address reviewing the timeliness of personally identifiable information across the information life cycle. - the procedures address reviewing the completeness of personally identifiable information across the information life cycle.'), ('004413','draft','2022-03-03','DISA','policy','Develop and document organization-wide procedures for reviewing for the accuracy, relevance, timeliness, and completeness of personally identifiable information across the information life cycle.','PM-22a.','N/A','Determine if: - the policies address reviewing the accuracy of personally identifiable information across the information life cycle. - the policies address reviewing the relevance of personally identifiable information across the information life cycle. - the policies address reviewing the timeliness of personally identifiable information across the information life cycle. - the policies address reviewing the completeness of personally identifiable information across the information life cycle. - the procedures address reviewing the accuracy of personally identifiable information across the information life cycle. - the procedures address reviewing the relevance of personally identifiable information across the information life cycle. - the procedures address reviewing the timeliness of personally identifiable information across the information life cycle. - the procedures address reviewing the completeness of personally identifiable information across the information life cycle.'), ('004414','draft','2022-03-03','DISA','policy','Develop and document organization-wide policies for correcting or deleting inaccurate or outdated personally identifiable information.','PM-22b.','N/A','Determine if: - the policies address correcting or deleting inaccurate or outdated personally identifiable information. - the procedures address correcting or deleting inaccurate or outdated personally identifiable information.'), ('004415','draft','2022-03-03','DISA','policy','Develop and document organization-wide procedures for correcting or deleting inaccurate or outdated personally identifiable information.','PM-22b.','N/A','Determine if: - the policies address correcting or deleting inaccurate or outdated personally identifiable information. - the procedures address correcting or deleting inaccurate or outdated personally identifiable information.'), ('004416','draft','2022-03-03','DISA','policy','Develop and document organization-wide policies for disseminating notice of corrected or deleted personally identifiable information to individuals or other appropriate entities.','PM-22c.','N/A','Determine if: - the policies address disseminating notice of corrected or deleted personally identifiable information to individuals or other appropriate entities. - the procedures address disseminating notice of corrected or deleted personally identifiable information to individuals or other appropriate entities.'), ('004417','draft','2022-03-03','DISA','policy','Develop and document organization-wide procedures for disseminating notice of corrected or deleted personally identifiable information to individuals or other appropriate entities.','PM-22c.','N/A','Determine if: - the policies address disseminating notice of corrected or deleted personally identifiable information to individuals or other appropriate entities. - the procedures address disseminating notice of corrected or deleted personally identifiable information to individuals or other appropriate entities.'), ('004418','draft','2022-03-03','DISA','policy','Develop and document organization-wide policies for appeals of adverse decisions on correction or deletion requests.','PM-22d.','N/A','Determine if: - the policies address appeals of adverse decisions on correction or deletion requests. - the procedures address appeals of adverse decisions on correction or deletion requests.'), ('004419','draft','2022-03-03','DISA','policy','Develop and document organization-wide procedures for appeals of adverse decisions on correction or deletion requests.','PM-22d.','N/A','Determine if: - the policies address appeals of adverse decisions on correction or deletion requests. - the procedures address appeals of adverse decisions on correction or deletion requests.'), ('004420','draft','2022-03-03','DISA','policy','Establish a Data Governance Body consisting of organization-defined roles with organization-defined responsibilities.','PM-23','N/A','Determine if a Data Governance Body consisting of [PM-23_ODP[01]; the roles of a Data Governance Body are defined] with [PM-23_ODP[02]; the responsibilities of a Data Governance Body are defined] is established.'), ('004421','draft','2022-03-03','DISA','policy','Defines the roles that are established by the Data Governance Body.','PM-23','N/A','Determine if a Data Governance Body consisting of [PM-23_ODP[01]; the roles of a Data Governance Body are defined] with [PM-23_ODP[02]; the responsibilities of a Data Governance Body are defined] is established.'), ('004422','draft','2022-03-03','DISA','policy','Defines the responsibilities the Data Governance Body establishes.','PM-23','N/A','Determine if a Data Governance Body consisting of [PM-23_ODP[01]; the roles of a Data Governance Body are defined] with [PM-23_ODP[02]; the responsibilities of a Data Governance Body are defined] is established.'), ('004423','draft','2022-03-03','DISA','policy','Establish a Data Integrity Board to review proposals to conduct or participate in a matching program.','PM-24a.','N/A','Determine if the Data Integrity Board reviews proposals to conduct or participate in a matching program.'), ('004424','draft','2022-03-03','DISA','policy','Establish a Data Integrity Board to conduct an annual review of all matching programs in which the agency has participated.','PM-24b.','N/A','Determine if the Data Integrity Board conducts an annual review of all matching programs in which the agency has participated.'), ('004425','draft','2022-03-03','DISA','policy','Develop and document policies that address the use of personally identifiable information for internal testing, training, and research.','PM-25a.','N/A','Determine if: - policies that address the use of personally identifiable information for internal testing are developed and documented. - policies that address the use of personally identifiable information for internal training are developed and documented. - policies that address the use of personally identifiable information for internal research are developed and documented. - procedures that address the use of personally identifiable information for internal testing are developed and documented. - procedures that address the use of personally identifiable information for internal training are developed and documented. - procedures that address the use of personally identifiable information for internal research are developed and documented. - policies that address the use of personally identifiable information for internal testing are implemented. - policies that address the use of personally identifiable information for training are implemented. - policies that address the use of personally identifiable information for research are implemented. - procedures that address the use of personally identifiable information for internal testing are implemented. - procedures that address the use of personally identifiable information for training are implemented. - procedures that address the use of personally identifiable information for research are implemented.'), ('004426','draft','2022-03-03','DISA','policy','Develop and document procedures that address the use of personally identifiable information for internal testing, training, and research.','PM-25a.','N/A','Determine if: - policies that address the use of personally identifiable information for internal testing are developed and documented. - policies that address the use of personally identifiable information for internal training are developed and documented. - policies that address the use of personally identifiable information for internal research are developed and documented. - procedures that address the use of personally identifiable information for internal testing are developed and documented. - procedures that address the use of personally identifiable information for internal training are developed and documented. - procedures that address the use of personally identifiable information for internal research are developed and documented. - policies that address the use of personally identifiable information for internal testing are implemented. - policies that address the use of personally identifiable information for training are implemented. - policies that address the use of personally identifiable information for research are implemented. - procedures that address the use of personally identifiable information for internal testing are implemented. - procedures that address the use of personally identifiable information for training are implemented. - procedures that address the use of personally identifiable information for research are implemented.'), ('004427','draft','2022-03-03','DISA','policy','Implement policies that address the use of personally identifiable information for internal testing, training, and research.','PM-25a.','N/A','Determine if: - policies that address the use of personally identifiable information for internal testing are developed and documented. - policies that address the use of personally identifiable information for internal training are developed and documented. - policies that address the use of personally identifiable information for internal research are developed and documented. - procedures that address the use of personally identifiable information for internal testing are developed and documented. - procedures that address the use of personally identifiable information for internal training are developed and documented. - procedures that address the use of personally identifiable information for internal research are developed and documented. - policies that address the use of personally identifiable information for internal testing are implemented. - policies that address the use of personally identifiable information for training are implemented. - policies that address the use of personally identifiable information for research are implemented. - procedures that address the use of personally identifiable information for internal testing are implemented. - procedures that address the use of personally identifiable information for training are implemented. - procedures that address the use of personally identifiable information for research are implemented.'), ('004428','draft','2022-03-03','DISA','policy','Implement procedures that address the use of personally identifiable information for internal testing, training, and research.','PM-25a.','N/A','Determine if: - policies that address the use of personally identifiable information for internal testing are developed and documented. - policies that address the use of personally identifiable information for internal training are developed and documented. - policies that address the use of personally identifiable information for internal research are developed and documented. - procedures that address the use of personally identifiable information for internal testing are developed and documented. - procedures that address the use of personally identifiable information for internal training are developed and documented. - procedures that address the use of personally identifiable information for internal research are developed and documented. - policies that address the use of personally identifiable information for internal testing are implemented. - policies that address the use of personally identifiable information for training are implemented. - policies that address the use of personally identifiable information for research are implemented. - procedures that address the use of personally identifiable information for internal testing are implemented. - procedures that address the use of personally identifiable information for training are implemented. - procedures that address the use of personally identifiable information for research are implemented.'), ('004429','draft','2022-03-03','DISA','policy','Limit or minimize the amount of personally identifiable information used for internal testing, training, and research purposes.','PM-25b.','N/A','Determine if: - the amount of personally identifiable information used for internal testing purposes is limited or minimized. - the amount of personally identifiable information used for internal training purposes is limited or minimized. - the amount of personally identifiable information used for internal research purposes is limited or minimized.'), ('004430','draft','2022-03-03','DISA','policy','Authorize the use of personally identifiable information when such information is required for internal testing, training, and research.','PM-25c.','N/A','Determine if: - the required use of personally identifiable information for internal testing is authorized. - the required use of personally identifiable information for internal training is authorized. - the required use of personally identifiable information for internal research is authorized.'), ('004431','draft','2022-03-03','DISA','policy','Review and update policies on an organization-defined frequency.','PM-25d.','N/A','Determine if: - policies are reviewed [PM-25_ODP[01]; the frequency for reviewing policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - policies are updated [PM-25_ODP[02]; the frequency for updating policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are reviewed [PM-25_ODP[03]; the frequency for reviewing procedures that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are updated [PM-25_ODP[04]; the frequency for updating procedures that address the use of personally identifiable information for internal testing, training, and research is defined].'), ('004432','draft','2022-03-03','DISA','policy','Defines the frequency of which the policies should be reviewed and updated.','PM-25d.','N/A','Determine if: - policies are reviewed [PM-25_ODP[01]; the frequency for reviewing policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - policies are updated [PM-25_ODP[02]; the frequency for updating policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are reviewed [PM-25_ODP[03]; the frequency for reviewing procedures that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are updated [PM-25_ODP[04]; the frequency for updating procedures that address the use of personally identifiable information for internal testing, training, and research is defined].'), ('004433','draft','2022-03-04','DISA','policy','Review and update procedures on an organization-defined frequency.','PM-25d.','N/A','Determine if: - policies are reviewed [PM-25_ODP[01]; the frequency for reviewing policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - policies are updated [PM-25_ODP[02]; the frequency for updating policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are reviewed [PM-25_ODP[03]; the frequency for reviewing procedures that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are updated [PM-25_ODP[04]; the frequency for updating procedures that address the use of personally identifiable information for internal testing, training, and research is defined].'), ('004434','draft','2022-03-04','DISA','policy','Defines the frequency of which the procedures should be reviewed and updated.','PM-25d.','N/A','Determine if: - policies are reviewed [PM-25_ODP[01]; the frequency for reviewing policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - policies are updated [PM-25_ODP[02]; the frequency for updating policies that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are reviewed [PM-25_ODP[03]; the frequency for reviewing procedures that address the use of personally identifiable information for internal testing, training, and research is defined]. - procedures are updated [PM-25_ODP[04]; the frequency for updating procedures that address the use of personally identifiable information for internal testing, training, and research is defined].'), ('004435','draft','2022-03-04','DISA','policy','Implement a process for receiving and responding to complaints, concerns or questions from individuals about the organizational security practices.','PM-26','N/A','Determine if: - a process for receiving complaints, concerns, or questions from individuals about organizational security and privacy practices is implemented. - a process for responding to complaints, concerns, or questions from individuals about organizational security and privacy practices is implemented.'), ('004436','draft','2022-03-04','DISA','policy','Implement a process for receiving and responding to complaints, concerns or questions from individuals about the organizational privacy practices.','PM-26','N/A','Determine if: - a process for receiving complaints, concerns, or questions from individuals about organizational security and privacy practices is implemented. - a process for responding to complaints, concerns, or questions from individuals about organizational security and privacy practices is implemented.'), ('004437','draft','2022-03-04','DISA','policy','Implement mechanisms that are easy to use.','PM-26a.','N/A','Determine if: - the complaint management process includes mechanisms that are easy to use by the public. - the complaint management process includes mechanisms that are readily accessible by the public.'), ('004438','draft','2022-03-04','DISA','policy','Implement mechanisms that are readily available by the public.','PM-26a.','N/A','Determine if: - the complaint management process includes mechanisms that are easy to use by the public. - the complaint management process includes mechanisms that are readily accessible by the public.'), ('004439','draft','2022-03-04','DISA','policy','Implement all information necessary for successfully filing complaints.','PM-26b.','N/A','Determine if the complaint management process includes all information necessary for successfully filing complaints.'), ('004440','draft','2022-03-04','DISA','policy','Implement tracking mechanisms to ensure all complaints received are reviewed and appropriately addressed within an organization-defined time period.','PM-26c.','N/A','Determine if: - the complaint management process includes tracking mechanisms to ensure that all complaints are reviewed within [PM-26_ODP[01]; the time period in which complaints (including concerns or questions) from individuals are to be reviewed is defined]. - the complaint management process includes tracking mechanisms to ensure that all complaints are addressed within [PM-26_ODP[02]; the time period in which complaints (including concerns or questions) from individuals are to be addressed is defined].'), ('004441','draft','2022-03-04','DISA','policy','Defines the time period of which the tracking mechanisms to ensure all complaints received are reviewed and addressed.','PM-26c.','N/A','Determine if: - the complaint management process includes tracking mechanisms to ensure that all complaints are reviewed within [PM-26_ODP[01]; the time period in which complaints (including concerns or questions) from individuals are to be reviewed is defined]. - the complaint management process includes tracking mechanisms to ensure that all complaints are addressed within [PM-26_ODP[02]; the time period in which complaints (including concerns or questions) from individuals are to be addressed is defined].'), ('004442','draft','2022-03-04','DISA','policy','Implement acknowledgement of receipt of complaints, concerns, or questions from individuals within an organization-defined time period.','PM-26d.','N/A','Determine if the complaint management process includes acknowledging the receipt of complaints, concerns, or questions from individuals within [PM-26_ODP[03]; the time period for acknowledging the receipt of complaints is defined].'), ('004443','draft','2022-03-04','DISA','policy','Defines the time period for acknowledging the receipt of complaints, concerns, or questions from individuals.','PM-26d.','N/A','Determine if the complaint management process includes acknowledging the receipt of complaints, concerns, or questions from individuals within [PM-26_ODP[03]; the time period for acknowledging the receipt of complaints is defined].'), ('004444','draft','2022-03-04','DISA','policy','Implement response to complaints, concerns, or questions from individuals within an organization-defined time period.','PM-26e.','N/A','Determine if the complaint management process includes responding to complaints, concerns, or questions from individuals within [PM-26_ODP[04]; the time period for responding to complaints is defined].'), ('004445','draft','2022-03-04','DISA','policy','Defines the time period for response to complaints, concerns, or questions from individuals.','PM-26e.','N/A','Determine if the complaint management process includes responding to complaints, concerns, or questions from individuals within [PM-26_ODP[04]; the time period for responding to complaints is defined].'), ('004446','draft','2022-03-04','DISA','policy','Develop organization-defined privacy reports.',NULL,'N/A',NULL), ('004447','draft','2022-03-04','DISA','policy','Defines the privacy reports that are to be developed.',NULL,'N/A',NULL), ('004448','draft','2022-03-04','DISA','policy','Disseminate privacy reports to organization-defined oversight bodies to demonstrate accountability with statutory, regulatory, and policy privacy program mandates.','PM-27a.01','N/A','Determine if the privacy reports are disseminated to [PM-27_ODP[02]; privacy oversight bodies are defined] to demonstrate accountability with statutory, regulatory, and policy privacy mandates.'), ('004449','draft','2022-03-04','DISA','policy','Develop privacy reports for organization-defined officials and other personnel with responsibility for monitoring privacy program progress and compliance.','PM-27a.02','N/A','Determine if: - the privacy reports are disseminated to [PM-27_ODP[03]; officials responsible for monitoring privacy program compliance are defined]. - the privacy reports are disseminated to other personnel responsible for monitoring privacy program compliance.'), ('004450','draft','2022-03-04','DISA','policy','Disseminate privacy reports for organization-defined officials and other personnel with responsibility for monitoring privacy program compliance.','PM-27a.02','N/A','Determine if: - the privacy reports are disseminated to [PM-27_ODP[03]; officials responsible for monitoring privacy program compliance are defined]. - the privacy reports are disseminated to other personnel responsible for monitoring privacy program compliance.'), ('004451','draft','2022-03-04','DISA','policy','Defines the officials responsible for monitoring privacy program compliance.','PM-27a.02','N/A','Determine if: - the privacy reports are disseminated to [PM-27_ODP[03]; officials responsible for monitoring privacy program compliance are defined]. - the privacy reports are disseminated to other personnel responsible for monitoring privacy program compliance.'), ('004452','draft','2022-03-04','DISA','policy','Review and update privacy reports on an organization-defined frequency.','PM-27b.','N/A','Determine if the privacy reports are reviewed and updated [PM-27_ODP[04]; the frequency for reviewing and updating privacy reports is defined].'), ('004453','draft','2022-03-04','DISA','policy','Defines the frequency of which the privacy reports are reviewed and updated.','PM-27b.','N/A','Determine if the privacy reports are reviewed and updated [PM-27_ODP[04]; the frequency for reviewing and updating privacy reports is defined].'), ('004454','draft','2022-03-04','DISA','policy','Identify and document assumptions affecting risk assessments, risk response, and risk monitoring.','PM-28a.01','N/A','Determine if: - assumptions affecting risk assessments are identified and documented. - assumptions affecting risk responses are identified and documented. - assumptions affecting risk monitoring are identified and documented.'), ('004455','draft','2022-03-04','DISA','policy','Identify and document constraints affecting risk assessments, risk response, and risk monitoring.','PM-28a.02','N/A','Determine if: - constraints affecting risk assessments are identified and documented. - constraints affecting risk responses are identified and documented. - constraints affecting risk monitoring are identified and documented.'), ('004456','draft','2022-03-04','DISA','policy','Identify and document priorities and trade-offs considered by the organization for managing risk.','PM-28a.03','N/A','Determine if: - priorities considered by the organization for managing risk are identified and documented. - trade-offs considered by the organization for managing risk are identified and documented.'), ('004457','draft','2022-03-04','DISA','policy','Identify and document the organizational risk tolerance.','PM-28a.04','N/A','Determine if organizational risk tolerance is identified and documented.'), ('004458','draft','2022-03-04','DISA','policy','Distribute the results of risk framing activities to organization-defined personnel.','PM-28b.','N/A','Determine if the results of risk framing activities are distributed to [PM-28_ODP[01]; the personnel to receive the results of risk framing activities is/are defined].'), ('004459','draft','2022-03-04','DISA','policy','Defines the personnel to distribute the results of risk framing activities.','PM-28b.','N/A','Determine if the results of risk framing activities are distributed to [PM-28_ODP[01]; the personnel to receive the results of risk framing activities is/are defined].'), ('004460','draft','2022-03-04','DISA','policy','Review and update risk framing considerations on an organization-defined frequency.','PM-28c.','N/A','Determine if risk framing considerations are reviewed and updated [PM-28_ODP[02]; the frequency for reviewing and updating risk framing considerations is defined].'), ('004461','draft','2022-03-04','DISA','policy','Defines the frequency for reviewing and updating risk framing considerations.','PM-28c.','N/A','Determine if risk framing considerations are reviewed and updated [PM-28_ODP[02]; the frequency for reviewing and updating risk framing considerations is defined].'), ('004462','draft','2022-03-04','DISA','policy','Appoint a Senior Accountable Official for Risk Management to align organizational information security management processes with strategic, operational, and budgetary planning processes.','PM-29a.','N/A','Determine if: - a Senior Accountable Official for Risk Management is appointed. - a Senior Accountable Official for Risk Management aligns information security and privacy management processes with strategic, operational, and budgetary planning processes.'), ('004463','draft','2022-03-04','DISA','policy','Appoint a Senior Accountable Official for Risk Management to align organizational information privacy management processes with strategic, operational, and budgetary planning processes.','PM-29a.','N/A','Determine if: - a Senior Accountable Official for Risk Management is appointed. - a Senior Accountable Official for Risk Management aligns information security and privacy management processes with strategic, operational, and budgetary planning processes.'), ('004464','draft','2022-03-04','DISA','policy','Establish a Risk Executive (function) to view and analyze risk from an organization-wide perspective.','PM-29b.','N/A','Determine if: - a Risk Executive (function) is established. - a Risk Executive (function) views and analyzes risk from an organization-wide perspective. - a Risk Executive (function) ensures that the management of risk is consistent across the organization.'), ('004465','draft','2022-03-04','DISA','policy','Establish a Risk Executive (function) to ensure management of risk is consistent across the organization.','PM-29b.','N/A','Determine if: - a Risk Executive (function) is established. - a Risk Executive (function) views and analyzes risk from an organization-wide perspective. - a Risk Executive (function) ensures that the management of risk is consistent across the organization.'), ('004466','draft','2022-03-04','DISA','policy','Develop an organization-wide strategy for managing supply chain risks associated with the development of systems, system components, and system services.','PM-30a.','N/A','Determine if: - an organization-wide strategy for managing supply chain risks is developed. - the supply chain risk management strategy addresses risks associated with the development of systems. - the supply chain risk management strategy addresses risks associated with the development of system components. - the supply chain risk management strategy addresses risks associated with the development of system services. - the supply chain risk management strategy addresses risks associated with the acquisition of systems. - the supply chain risk management strategy addresses risks associated with the acquisition of system components. - the supply chain risk management strategy addresses risks associated with the acquisition of system services. - the supply chain risk management strategy addresses risks associated with the maintenance of systems. - the supply chain risk management strategy addresses risks associated with the maintenance of system components. - the supply chain risk management strategy addresses risks associated with the maintenance of system services. - the supply chain risk management strategy addresses risks associated with the disposal of systems. - the supply chain risk management strategy addresses risks associated with the disposal of system components. - the supply chain risk management strategy addresses risks associated with the disposal of system services.'), ('004467','draft','2022-03-04','DISA','policy','Develop an organization-wide strategy for managing supply chain risks associated with the acquisition of systems, system components, and system services.','PM-30a.','N/A','Determine if: - an organization-wide strategy for managing supply chain risks is developed. - the supply chain risk management strategy addresses risks associated with the development of systems. - the supply chain risk management strategy addresses risks associated with the development of system components. - the supply chain risk management strategy addresses risks associated with the development of system services. - the supply chain risk management strategy addresses risks associated with the acquisition of systems. - the supply chain risk management strategy addresses risks associated with the acquisition of system components. - the supply chain risk management strategy addresses risks associated with the acquisition of system services. - the supply chain risk management strategy addresses risks associated with the maintenance of systems. - the supply chain risk management strategy addresses risks associated with the maintenance of system components. - the supply chain risk management strategy addresses risks associated with the maintenance of system services. - the supply chain risk management strategy addresses risks associated with the disposal of systems. - the supply chain risk management strategy addresses risks associated with the disposal of system components. - the supply chain risk management strategy addresses risks associated with the disposal of system services.'), ('004468','draft','2022-03-04','DISA','policy','Develop an organization-wide strategy for managing supply chain risks associated with the maintenance of systems, system components, and system services.','PM-30a.','N/A','Determine if: - an organization-wide strategy for managing supply chain risks is developed. - the supply chain risk management strategy addresses risks associated with the development of systems. - the supply chain risk management strategy addresses risks associated with the development of system components. - the supply chain risk management strategy addresses risks associated with the development of system services. - the supply chain risk management strategy addresses risks associated with the acquisition of systems. - the supply chain risk management strategy addresses risks associated with the acquisition of system components. - the supply chain risk management strategy addresses risks associated with the acquisition of system services. - the supply chain risk management strategy addresses risks associated with the maintenance of systems. - the supply chain risk management strategy addresses risks associated with the maintenance of system components. - the supply chain risk management strategy addresses risks associated with the maintenance of system services. - the supply chain risk management strategy addresses risks associated with the disposal of systems. - the supply chain risk management strategy addresses risks associated with the disposal of system components. - the supply chain risk management strategy addresses risks associated with the disposal of system services.'), ('004469','draft','2022-03-04','DISA','policy','Develop an organization-wide strategy for managing supply chain risks associated with the disposal of systems, system components, and system services.','PM-30a.','N/A','Determine if: - an organization-wide strategy for managing supply chain risks is developed. - the supply chain risk management strategy addresses risks associated with the development of systems. - the supply chain risk management strategy addresses risks associated with the development of system components. - the supply chain risk management strategy addresses risks associated with the development of system services. - the supply chain risk management strategy addresses risks associated with the acquisition of systems. - the supply chain risk management strategy addresses risks associated with the acquisition of system components. - the supply chain risk management strategy addresses risks associated with the acquisition of system services. - the supply chain risk management strategy addresses risks associated with the maintenance of systems. - the supply chain risk management strategy addresses risks associated with the maintenance of system components. - the supply chain risk management strategy addresses risks associated with the maintenance of system services. - the supply chain risk management strategy addresses risks associated with the disposal of systems. - the supply chain risk management strategy addresses risks associated with the disposal of system components. - the supply chain risk management strategy addresses risks associated with the disposal of system services.'), ('004470','draft','2022-03-04','DISA','policy','Implement the supply chain risk management strategy consistently across the organization.','PM-30b.','N/A','Determine if the supply chain risk management strategy is implemented consistently across the organization.'), ('004471','draft','2022-03-04','DISA','policy','Review and update the supply chain risk management strategy on an organization-defined frequency or as required, to address organizational changes.','PM-30c.','N/A','Determine if the supply chain risk management strategy is reviewed and updated [PM-30_ODP; the frequency for reviewing and updating the supply chain risk management strategy is defined] or as required to address organizational changes.'), ('004472','draft','2022-03-04','DISA','policy','Defines the frequency of which the supply chain risk management strategy will be reviewed and updated.','PM-30c.','N/A','Determine if the supply chain risk management strategy is reviewed and updated [PM-30_ODP; the frequency for reviewing and updating the supply chain risk management strategy is defined] or as required to address organizational changes.'), ('004473','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy establishing organization-defined metrics to be monitored.','PM-31a.','N/A','Determine if continuous monitoring programs are implemented that include establishing [PM-31_ODP[01]; the metrics for organization-wide continuous monitoring are defined] to be monitored.'), ('004474','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include establishing organization-wide metrics to be monitored.','PM-31a.','N/A','Determine if continuous monitoring programs are implemented that include establishing [PM-31_ODP[01]; the metrics for organization-wide continuous monitoring are defined] to be monitored.'), ('004475','draft','2022-03-04','DISA','policy','Defines the metrics for developing and implementing continuous monitoring programs.','PM-31a.','N/A','Determine if continuous monitoring programs are implemented that include establishing [PM-31_ODP[01]; the metrics for organization-wide continuous monitoring are defined] to be monitored.'), ('004476','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy establishing organization-defined frequencies for monitoring.','PM-31b.','N/A','Determine if: - continuous monitoring programs are implemented that establish [PM-31_ODP[02]; the frequency for monitoring is defined] for monitoring. - continuous monitoring programs are implemented that establish [PM-31_ODP[03]; the frequency for assessing control effectiveness is defined] for assessment of control effectiveness.'), ('004477','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy establishing organization-defined frequencies for assessment of control effectiveness.','PM-31b.','N/A','Determine if: - continuous monitoring programs are implemented that establish [PM-31_ODP[02]; the frequency for monitoring is defined] for monitoring. - continuous monitoring programs are implemented that establish [PM-31_ODP[03]; the frequency for assessing control effectiveness is defined] for assessment of control effectiveness.'), ('004478','draft','2022-03-04','DISA','policy','Defines the frequencies for developing and implementing continuous monitoring programs for monitoring.','PM-31b.','N/A','Determine if: - continuous monitoring programs are implemented that establish [PM-31_ODP[02]; the frequency for monitoring is defined] for monitoring. - continuous monitoring programs are implemented that establish [PM-31_ODP[03]; the frequency for assessing control effectiveness is defined] for assessment of control effectiveness.'), ('004479','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include establishing organization-wide frequencies for monitoring.','PM-31b.','N/A','Determine if: - continuous monitoring programs are implemented that establish [PM-31_ODP[02]; the frequency for monitoring is defined] for monitoring. - continuous monitoring programs are implemented that establish [PM-31_ODP[03]; the frequency for assessing control effectiveness is defined] for assessment of control effectiveness.'), ('004480','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include establishing organization-wide frequencies for assessment of control effectiveness.','PM-31b.','N/A','Determine if: - continuous monitoring programs are implemented that establish [PM-31_ODP[02]; the frequency for monitoring is defined] for monitoring. - continuous monitoring programs are implemented that establish [PM-31_ODP[03]; the frequency for assessing control effectiveness is defined] for assessment of control effectiveness.'), ('004481','draft','2022-03-04','DISA','policy','Defines the frequencies for developing and implementing continuous monitoring programs for assessment of control effectiveness.','PM-31b.','N/A','Determine if: - continuous monitoring programs are implemented that establish [PM-31_ODP[02]; the frequency for monitoring is defined] for monitoring. - continuous monitoring programs are implemented that establish [PM-31_ODP[03]; the frequency for assessing control effectiveness is defined] for assessment of control effectiveness.'), ('004482','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy for ongoing monitoring of organizationally-defined metrics in accordance with the continuous monitoring strategy.','PM-31c.','N/A','Determine if continuous monitoring programs are implemented that include monitoring [PM-31_ODP[01]; the metrics for organization-wide continuous monitoring are defined] on an ongoing basis in accordance with the continuous monitoring strategy.'), ('004483','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include ongoing monitoring of organizationally-defined metrics in accordance with the continuous monitoring strategy.','PM-31c.','N/A','Determine if continuous monitoring programs are implemented that include monitoring [PM-31_ODP[01]; the metrics for organization-wide continuous monitoring are defined] on an ongoing basis in accordance with the continuous monitoring strategy.'), ('004484','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy for correlation and analysis of information generated by control assessments and monitoring.','PM-31d.','N/A','Determine if: - continuous monitoring programs are implemented that include correlating information generated by control assessments and monitoring. - continuous monitoring programs are implemented that include analyzing information generated by control assessments and monitoring.'), ('004485','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include correlation and analysis of information generated by control assessments and monitoring.','PM-31d.','N/A','Determine if: - continuous monitoring programs are implemented that include correlating information generated by control assessments and monitoring. - continuous monitoring programs are implemented that include analyzing information generated by control assessments and monitoring.'), ('004486','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy for response actions to address results of the analysis of control assessment and monitoring information.','PM-31e.','N/A','Determine if: - continuous monitoring programs are implemented that include response actions to address the analysis of control assessment information. - continuous monitoring programs are implemented that include response actions to address the analysis of monitoring information.'), ('004487','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include response actions to address results of the analysis of control assessment and monitoring information.','PM-31e.','N/A','Determine if: - continuous monitoring programs are implemented that include response actions to address the analysis of control assessment information. - continuous monitoring programs are implemented that include response actions to address the analysis of monitoring information.'), ('004488','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy for reporting the security status of organizational systems to organization-defined personnel or roles on an organization-defined frequency.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004489','draft','2022-03-04','DISA','policy','Develop an organization-wide continuous monitoring strategy for reporting the privacy status of organizational systems to organization-defined personnel or roles on an organization-defined frequency.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004490','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include reporting the security status of organizational systems to organization-defined personnel or roles on an organization-defined frequency.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004491','draft','2022-03-04','DISA','policy','Implement continuous monitoring programs that include reporting the privacy status of organizational systems to organization-defined personnel or roles on an organization-defined frequency.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004492','draft','2022-03-04','DISA','policy','Defines the personnel or roles for whom to report the security status of organizational systems.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004493','draft','2022-03-04','DISA','policy','Defines the personnel or roles for whom to report the privacy status of organizational systems.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004494','draft','2022-03-04','DISA','policy','Defines the frequency of reporting the security status of organizational systems to organization-defined personnel or roles.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004495','draft','2022-03-04','DISA','policy','Defines the frequency of reporting the privacy status of organizational systems to organization-defined personnel or roles.','PM-31f.','N/A','Determine if: - continuous monitoring programs are implemented that include reporting the security status of organizational systems to [PM-31_ODP[04]; the personnel or roles for reporting the security status of organizational systems to is/are defined] [PM-31_ODP[06]; the frequency at which to report the security status of organizational systems is defined]. - continuous monitoring programs are implemented that include reporting the privacy status of organizational systems to [PM-31_ODP[05]; the personnel or roles for reporting the privacy status of organizational systems to is/are defined] [PM-31_ODP[07]; the frequency at which to report the privacy status of organizational systems is defined].'), ('004496','draft','2022-03-04','DISA','policy','Analyze organization-defined systems or system components supporting mission essential services or functions to ensure that the information resources are being used consistent with their intended purpose.','PM-32','N/A','Determine if [PM-32_ODP; the systems or system components supporting mission-essential services or functions are defined] supporting mission-essential services or functions are analyzed to ensure that the information resources are being used in a manner that is consistent with their intended purpose.'), ('004497','draft','2022-03-04','DISA','policy','Defines the systems or system components that are used to analyze mission essential services or functions.','PM-32','N/A','Determine if [PM-32_ODP; the systems or system components supporting mission-essential services or functions are defined] supporting mission-essential services or functions are analyzed to ensure that the information resources are being used in a manner that is consistent with their intended purpose.'), ('004498','draft','2022-03-04','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level personnel security policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','PS-01a.01(b)','N/A','Determine if the [PS-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personnel security policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004499','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the development and documentation of the personnel security policy.','PS-01b.','N/A','Determine if the [PS-01_ODP[04]; an official to manage the personnel security policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures.'), ('004500','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the dissemination of the personnel security policy.','PS-01b.','N/A','Determine if the [PS-01_ODP[04]; an official to manage the personnel security policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures.'), ('004501','draft','2022-03-04','DISA','policy','Defines the official who will manage the personnel security policy.','PS-01b.','N/A','Determine if the [PS-01_ODP[04]; an official to manage the personnel security policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures.'), ('004502','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage development and documentation of the personnel security procedures.','PS-01b.','N/A','Determine if the [PS-01_ODP[04]; an official to manage the personnel security policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures.'), ('004503','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the dissemination of the personnel security procedures.','PS-01b.','N/A','Determine if the [PS-01_ODP[04]; an official to manage the personnel security policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures.'), ('004504','draft','2022-03-04','DISA','policy','Defines the official who will manage the personnel security procedures.','PS-01b.','N/A','Determine if the [PS-01_ODP[04]; an official to manage the personnel security policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personnel security policy and procedures.'), ('004505','draft','2022-03-04','DISA','policy','Review and update the current personnel security policy following organization-defined events.','PS-01c.01','N/A','Determine if: - the current personnel security policy is reviewed and updated [PS-01_ODP[05]; the frequency at which the current personnel security policy is reviewed and updated is defined]. - the current personnel security policy is reviewed and updated following [PS-01_ODP[06]; events that would require the current personnel security policy to be reviewed and updated are defined].'), ('004506','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current personnel security policy.','PS-01c.01','N/A','Determine if: - the current personnel security policy is reviewed and updated [PS-01_ODP[05]; the frequency at which the current personnel security policy is reviewed and updated is defined]. - the current personnel security policy is reviewed and updated following [PS-01_ODP[06]; events that would require the current personnel security policy to be reviewed and updated are defined].'), ('004507','draft','2022-03-04','DISA','policy','Review and update the current personnel security procedures following organization-defined events.','PS-01c.02','N/A','Determine if: - the current personnel security procedures are reviewed and updated [PS-01_ODP[07]; the frequency at which the current personnel security procedures are reviewed and updated is defined]. - the current personnel security procedures are reviewed and updated following [PS-01_ODP[08]; events that would require the personnel security procedures to be reviewed and updated are defined].'), ('004508','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current personnel security procedures.','PS-01c.02','N/A','Determine if: - the current personnel security procedures are reviewed and updated [PS-01_ODP[07]; the frequency at which the current personnel security procedures are reviewed and updated is defined]. - the current personnel security procedures are reviewed and updated following [PS-01_ODP[08]; events that would require the personnel security procedures to be reviewed and updated are defined].'), ('004509','draft','2022-03-04','DISA','policy','Verify that individuals accessing a system processing, storing, or transmitting organization-defined information types meet organization-defined citizenship requirements.','PS-03(04)','N/A','Determine if individuals accessing a system processing, storing, or transmitting [PS-03(04)_ODP[01]; information types that are processed, stored, or transmitted by a system that require individuals accessing the system to meet PS-03(04)_ODP[02] citizenship requirements are defined] meet [PS-03(04)_ODP[02]; citizenship requirements to be met by individuals to access a system processing, storing, or transmitting information are defined].'), ('004510','draft','2022-03-04','DISA','policy','Defines the information types that meet the organization-defined citizenship requirement.','PS-03(04)','N/A','Determine if individuals accessing a system processing, storing, or transmitting [PS-03(04)_ODP[01]; information types that are processed, stored, or transmitted by a system that require individuals accessing the system to meet PS-03(04)_ODP[02] citizenship requirements are defined] meet [PS-03(04)_ODP[02]; citizenship requirements to be met by individuals to access a system processing, storing, or transmitting information are defined].'), ('004511','draft','2022-03-04','DISA','policy','Defines the citizenship requirements for individuals accessing a system, storing, or transmitting organization-defined information types.','PS-03(04)','N/A','Determine if individuals accessing a system processing, storing, or transmitting [PS-03(04)_ODP[01]; information types that are processed, stored, or transmitted by a system that require individuals accessing the system to meet PS-03(04)_ODP[02] citizenship requirements are defined] meet [PS-03(04)_ODP[02]; citizenship requirements to be met by individuals to access a system processing, storing, or transmitting information are defined].'), ('004512','draft','2022-03-04','DISA','policy','Defines the automated mechanisms for notifying organization-defined personnel or roles of individual termination actions; and/or disable access to system resources.','PS-04(02)','N/A','Determine if [PS-04(02)_ODP[01]; automated mechanisms to notify personnel or roles of individual termination actions and/or to disable access to system resources are defined] are used to [PS-04(02)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {notify [PS-04(02)_ODP[03]; personnel or roles to be notified upon termination of an individual is/are defined (if selected)] of individual termination actions; disable access to system resources}].'), ('004513','draft','2022-03-04','DISA','policy','Verify that individuals requiring access to organizational information sign appropriate access agreements prior to being granted access.','PS-06c.01','N/A','Determine if individuals requiring access to organizational information and systems sign appropriate access agreements prior to being granted access.'), ('004514','draft','2022-03-04','DISA','policy','Verify that individuals requiring access to organizational systems sign appropriate access agreements prior to being granted access.','PS-06c.01','N/A','Determine if individuals requiring access to organizational information and systems sign appropriate access agreements prior to being granted access.'), ('004515','draft','2022-03-04','DISA','policy','Verify that individuals requiring access to organizational information re-sign access agreements to maintain access to organizational information systems when access agreements have been updated or in accordance with organization-defined frequency.','PS-06c.02','N/A','Determine if individuals requiring access to organizational information and systems re-sign access agreements to maintain access to organizational systems when access agreements have been updated or [PS-06_ODP[02]; the frequency at which to re-sign access agreements to maintain access to organizational information is defined].'), ('004516','draft','2022-03-04','DISA','policy','Verify that individuals requiring access to organizational systems re-sign access agreements to maintain access to organizational information systems when access agreements have been updated or in accordance with organization-defined frequency.','PS-06c.02','N/A','Determine if individuals requiring access to organizational information and systems re-sign access agreements to maintain access to organizational systems when access agreements have been updated or [PS-06_ODP[02]; the frequency at which to re-sign access agreements to maintain access to organizational information is defined].'), ('004517','draft','2022-03-04','DISA','policy','Defines the frequency for individuals requiring access to organizational information to re-sign access agreements.','PS-06c.02','N/A','Determine if individuals requiring access to organizational information and systems re-sign access agreements to maintain access to organizational systems when access agreements have been updated or [PS-06_ODP[02]; the frequency at which to re-sign access agreements to maintain access to organizational information is defined].'), ('004518','draft','2022-03-04','DISA','policy','Defines the frequency for individuals requiring access to organizational systems to re-sign access agreements.','PS-06c.02','N/A','Determine if individuals requiring access to organizational information and systems re-sign access agreements to maintain access to organizational systems when access agreements have been updated or [PS-06_ODP[02]; the frequency at which to re-sign access agreements to maintain access to organizational information is defined].'), ('004519','draft','2022-03-04','DISA','policy','Require external providers to comply with personnel security policies established by the organization.','PS-07b.','N/A','Determine if external providers are required to comply with personnel security policies and procedures established by the organization.'), ('004520','draft','2022-03-04','DISA','policy','Require external providers to comply with personnel security procedures established by the organization.','PS-07b.','N/A','Determine if external providers are required to comply with personnel security policies and procedures established by the organization.'), ('004521','draft','2022-03-04','DISA','policy','Employ a formal sanctions process for individuals failing to comply with established information security policies.','PS-08a.','N/A','Determine if a formal sanctions process is employed for individuals failing to comply with established information security and privacy policies and procedures.'), ('004522','draft','2022-03-04','DISA','policy','Employ a formal sanctions process for individuals failing to comply with established information security procedures.','PS-08a.','N/A','Determine if a formal sanctions process is employed for individuals failing to comply with established information security and privacy policies and procedures.'), ('004523','draft','2022-03-04','DISA','policy','Incorporate security roles and responsibilities into organizational position descriptions.','PS-09','N/A','Determine if: - security roles and responsibilities are incorporated into organizational position descriptions. - privacy roles and responsibilities are incorporated into organizational position descriptions.'), ('004524','draft','2022-03-04','DISA','policy','Incorporate privacy roles and responsibilities into organizational position descriptions.','PS-09','N/A','Determine if: - security roles and responsibilities are incorporated into organizational position descriptions. - privacy roles and responsibilities are incorporated into organizational position descriptions.'), ('004525','draft','2022-03-04','DISA','policy','Develop and document organization-level; mission/business process-level; and/or system level personally identifiable information processing and transparency policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','PT-01a.01(a)','N/A','Determine if: - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses purpose. - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses scope. - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses roles. - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses responsibilities. - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses management commitment. - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses coordination among organizational entities. - the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy addresses compliance.'), ('004526','draft','2022-03-04','DISA','policy','Disseminate organization-level; mission/business process-level; and/or system level personally identifiable information processing and transparency policy to organization-defined personnel or roles.','PT-01a.','N/A','Determine if: - a personally identifiable information processing and transparency policy is developed and documented. - the personally identifiable information processing and transparency policy is disseminated to [PT-01_ODP[01]; personnel or roles to whom the personally identifiable information processing and transparency policy is to be disseminated is/are defined].'), ('004527','draft','2022-03-04','DISA','policy','Defines the personnel or roles to whom the organization-level; mission/business process-level; and/or system level personally identifiable information processing and transparency policy is to be disseminated.','PT-01a.','N/A','Determine if: - a personally identifiable information processing and transparency policy is developed and documented. - the personally identifiable information processing and transparency policy is disseminated to [PT-01_ODP[01]; personnel or roles to whom the personally identifiable information processing and transparency policy is to be disseminated is/are defined].'), ('004528','draft','2022-03-04','DISA','policy','Develop and document organization-level; mission/business process-level; and/or system level personally identifiable information processing and transparency policy that is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.','PT-01a.01(b)','N/A','Determine if the [PT-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] personally identifiable information processing and transparency policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004529','draft','2022-03-04','DISA','policy','Develop and document procedures to facilitate the implementation of the personally identifiable information processing and transparency policy and the associated personally identifiable information processing and transparency controls.','PT-01a.02','N/A','Determine if: - personally identifiable information processing and transparency procedures to facilitate the implementation of the personally identifiable information processing and transparency policy and associated personally identifiable information processing and transparency controls are developed and documented. - the personally identifiable information processing and transparency procedures are disseminated to [PT-01_ODP[02]; personnel or roles to whom the personally identifiable information processing and transparency procedures are to be disseminated is/are defined].'), ('004530','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the development and documentation of the personally identifiable information processing and transparency policy.','PT-01b.','N/A','Determine if the [PT-01_ODP[04]; an official to manage the personally identifiable information processing and transparency policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personally identifiable information processing and transparency policy and procedures.'), ('004531','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the development and documentation of the personally identifiable information processing and transparency procedures.','PT-01b.','N/A','Determine if the [PT-01_ODP[04]; an official to manage the personally identifiable information processing and transparency policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personally identifiable information processing and transparency policy and procedures.'), ('004532','draft','2022-03-04','DISA','policy','Defines the official designated to manage the development, documentation, and dissemination of the personally identifiable information processing and transparency policy and procedures.','PT-01b.','N/A','Determine if the [PT-01_ODP[04]; an official to manage the personally identifiable information processing and transparency policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the personally identifiable information processing and transparency policy and procedures.'), ('004533','draft','2022-03-04','DISA','policy','Review and update the current personally identifiable information processing and transparency policy on an organization-defined frequency.','PT-01c.01','N/A','Determine if: - the current personally identifiable information processing and transparency policy is reviewed and updated [PT-01_ODP[05]; the frequency at which the current personally identifiable information processing and transparency policy is reviewed and updated is defined]. - the current personally identifiable information processing and transparency policy is reviewed and updated following [PT-01_ODP[06]; events that would require the current personally identifiable information processing and transparency policy to be reviewed and updated are defined].'), ('004534','draft','2022-03-04','DISA','policy','Review and update the current personally identifiable information processing and transparency policy following organization-defined events.','PT-01c.01','N/A','Determine if: - the current personally identifiable information processing and transparency policy is reviewed and updated [PT-01_ODP[05]; the frequency at which the current personally identifiable information processing and transparency policy is reviewed and updated is defined]. - the current personally identifiable information processing and transparency policy is reviewed and updated following [PT-01_ODP[06]; events that would require the current personally identifiable information processing and transparency policy to be reviewed and updated are defined].'), ('004535','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current personally identifiable processing and transparency policy.','PT-01c.01','N/A','Determine if: - the current personally identifiable information processing and transparency policy is reviewed and updated [PT-01_ODP[05]; the frequency at which the current personally identifiable information processing and transparency policy is reviewed and updated is defined]. - the current personally identifiable information processing and transparency policy is reviewed and updated following [PT-01_ODP[06]; events that would require the current personally identifiable information processing and transparency policy to be reviewed and updated are defined].'), ('004536','draft','2022-03-04','DISA','policy','Review and update the current personally identifiable information processing and transparency procedures on an organization-defined frequency.','PT-01c.02','N/A','Determine if: - the current personally identifiable information processing and transparency procedures are reviewed and updated [PT-01_ODP[07]; the frequency at which the current personally identifiable information processing and transparency procedures are reviewed and updated is defined]. - the current personally identifiable information processing and transparency procedures are reviewed and updated following [PT-01_ODP[08]; events that would require the personally identifiable information processing and transparency procedures to be reviewed and updated are defined].'), ('004537','draft','2022-03-04','DISA','policy','Review and update the current personally identifiable information processing and transparency procedures following organization-defined events.','PT-01c.02','N/A','Determine if: - the current personally identifiable information processing and transparency procedures are reviewed and updated [PT-01_ODP[07]; the frequency at which the current personally identifiable information processing and transparency procedures are reviewed and updated is defined]. - the current personally identifiable information processing and transparency procedures are reviewed and updated following [PT-01_ODP[08]; events that would require the personally identifiable information processing and transparency procedures to be reviewed and updated are defined].'), ('004538','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current personally identifiable processing and transparency procedures.','PT-01c.02','N/A','Determine if: - the current personally identifiable information processing and transparency procedures are reviewed and updated [PT-01_ODP[07]; the frequency at which the current personally identifiable information processing and transparency procedures are reviewed and updated is defined]. - the current personally identifiable information processing and transparency procedures are reviewed and updated following [PT-01_ODP[08]; events that would require the personally identifiable information processing and transparency procedures to be reviewed and updated are defined].'), ('004539','draft','2022-03-04','DISA','policy','Determine and document the organization-defined authority that permits the organization-defined processing of personally identifiable information.','PT-02a.','N/A','Determine if the [PT-02_ODP[01]; the authority to permit the processing (defined in PT-02_ODP[02]) of personally identifiable information is defined] that permits the [PT-02_ODP[02]; the type of processing of personally identifiable information is defined] of personally identifiable information is determined and documented.'), ('004540','draft','2022-03-04','DISA','policy','Defines the authority who will permit the organization-defined processing of personally identifiable information.','PT-02a.','N/A','Determine if the [PT-02_ODP[01]; the authority to permit the processing (defined in PT-02_ODP[02]) of personally identifiable information is defined] that permits the [PT-02_ODP[02]; the type of processing of personally identifiable information is defined] of personally identifiable information is determined and documented.'), ('004541','draft','2022-03-04','DISA','policy','Defines the processing of the personally identifiable information.','PT-02a.','N/A','Determine if the [PT-02_ODP[01]; the authority to permit the processing (defined in PT-02_ODP[02]) of personally identifiable information is defined] that permits the [PT-02_ODP[02]; the type of processing of personally identifiable information is defined] of personally identifiable information is determined and documented.'), ('004542','draft','2022-03-04','DISA','policy','Restrict the organization-defined processing of personally identifiable information to only that which is authorized.','PT-02b.','N/A','Determine if the [PT-02_ODP[03]; the type of processing of personally identifiable information to be restricted is defined] of personally identifiable information is restricted to only that which is authorized.'), ('004543','draft','2022-03-04','DISA','policy','Defines the processing of the personally identifiable information to only that which is authorized.','PT-02b.','N/A','Determine if the [PT-02_ODP[03]; the type of processing of personally identifiable information to be restricted is defined] of personally identifiable information is restricted to only that which is authorized.'), ('004544','draft','2022-03-04','DISA','technical','Attach data tags containing organization-defined authorized processing to organization-defined elements of personally identifiable information.','PT-02(01)','N/A','Determine if data tags containing [PT-02(01)_ODP[01]; the authorized processing of personally identifiable information is defined] are attached to [PT-02(01)_ODP[02]; elements of personally identifiable information to be tagged are defined].'), ('004545','draft','2022-03-04','DISA','technical','Defines the authorized processing which will attach data tags to organization-defined elements of personally identifiable information.','PT-02(01)','N/A','Determine if data tags containing [PT-02(01)_ODP[01]; the authorized processing of personally identifiable information is defined] are attached to [PT-02(01)_ODP[02]; elements of personally identifiable information to be tagged are defined].'), ('004546','draft','2022-03-04','DISA','technical','Defines the elements of personally identifiable information containing organization-defined authorized processing.','PT-02(01)','N/A','Determine if data tags containing [PT-02(01)_ODP[01]; the authorized processing of personally identifiable information is defined] are attached to [PT-02(01)_ODP[02]; elements of personally identifiable information to be tagged are defined].'), ('004547','draft','2022-03-04','DISA','policy','Manage enforcement of the authorized processing of personally identifiable information using organization-defined automated mechanisms.','PT-02(02)','N/A','Determine if enforcement of the authorized processing of personally identifiable information is managed using [PT-02(02)_ODP; automated mechanisms used to manage enforcement of the authorized processing of personally identifiable information are defined].'), ('004548','draft','2022-03-04','DISA','policy','Defines the automated mechanisms for managing enforcement of the authorized processing of personally identifiable information.','PT-02(02)','N/A','Determine if enforcement of the authorized processing of personally identifiable information is managed using [PT-02(02)_ODP; automated mechanisms used to manage enforcement of the authorized processing of personally identifiable information are defined].'), ('004549','draft','2022-03-04','DISA','policy','Identify and document the organization-defined purpose(s) for processing personally identifiable information.','PT-03a.','N/A','Determine if the [PT-03_ODP[01]; the purpose(s) for processing personally identifiable information is/are defined] for processing personally identifiable information is/are identified and documented.'), ('004550','draft','2022-03-04','DISA','policy','Defines the purpose(s) of identifying and documenting personally identifiable information.','PT-03a.','N/A','Determine if the [PT-03_ODP[01]; the purpose(s) for processing personally identifiable information is/are defined] for processing personally identifiable information is/are identified and documented.'), ('004551','draft','2022-03-04','DISA','policy','Describe the purpose(s) in the public privacy notices and policies of the organization.','PT-03b.','N/A','Determine if: - the purpose(s) is/are described in the public privacy notices of the organization. - the purpose(s) is/are described in the policies of the organization.'), ('004552','draft','2022-03-04','DISA','policy','Restrict the organization-defined processing of personally identifiable information to only that which is compatible with the identified purpose(s).','PT-03c.','N/A','Determine if the [PT-03_ODP[02]; the processing of personally identifiable information to be restricted is defined] of personally identifiable information are restricted to only that which is compatible with the identified purpose(s).'), ('004553','draft','2022-03-04','DISA','policy','Defines the processing of personally identifiable information to only that which is compatible with the identified purpose(s).','PT-03c.','N/A','Determine if the [PT-03_ODP[02]; the processing of personally identifiable information to be restricted is defined] of personally identifiable information are restricted to only that which is compatible with the identified purpose(s).'), ('004554','draft','2022-03-04','DISA','policy','Monitor changes in processing personally identifiable information.','PT-03d.','N/A','Determine if: - changes in the processing of personally identifiable information are monitored. - [PT-03_ODP[03]; mechanisms to be implemented for ensuring any changes in the processing of personally identifiable information are made in accordance with requirements are defined] are implemented to ensure that any changes are made in accordance with [PT-03_ODP[04]; requirements for changing the processing of personally identifiable information are defined].'), ('004555','draft','2022-03-04','DISA','policy','Implement organization-defined mechanisms to ensure that any changes are made in accordance with organization-defined requirements.','PT-03d.','N/A','Determine if: - changes in the processing of personally identifiable information are monitored. - [PT-03_ODP[03]; mechanisms to be implemented for ensuring any changes in the processing of personally identifiable information are made in accordance with requirements are defined] are implemented to ensure that any changes are made in accordance with [PT-03_ODP[04]; requirements for changing the processing of personally identifiable information are defined].'), ('004556','draft','2022-03-04','DISA','policy','Defines the mechanisms for ensuring any changes are made in accordance with organization-defined requirements.','PT-03d.','N/A','Determine if: - changes in the processing of personally identifiable information are monitored. - [PT-03_ODP[03]; mechanisms to be implemented for ensuring any changes in the processing of personally identifiable information are made in accordance with requirements are defined] are implemented to ensure that any changes are made in accordance with [PT-03_ODP[04]; requirements for changing the processing of personally identifiable information are defined].'), ('004557','draft','2022-03-04','DISA','policy','Defines the requirements for implementing organization-defined mechanisms.','PT-03d.','N/A','Determine if: - changes in the processing of personally identifiable information are monitored. - [PT-03_ODP[03]; mechanisms to be implemented for ensuring any changes in the processing of personally identifiable information are made in accordance with requirements are defined] are implemented to ensure that any changes are made in accordance with [PT-03_ODP[04]; requirements for changing the processing of personally identifiable information are defined].'), ('004558','draft','2022-03-04','DISA','technical','Attach data tags containing organization-defined processing purposes to organization-defined elements of personally identifiable information.','PT-03(01)','N/A','Determine if data tags containing [PT-03(01)_ODP[01]; processing purposes to be contained in data tags are defined] are attached to [PT-03(01)_ODP[02]; elements of personally identifiable information to be tagged are defined].'), ('004559','draft','2022-03-04','DISA','technical','Defines the elements of personally identifiable information containing organization-defined processing purposes.','PT-03(01)','N/A','Determine if data tags containing [PT-03(01)_ODP[01]; processing purposes to be contained in data tags are defined] are attached to [PT-03(01)_ODP[02]; elements of personally identifiable information to be tagged are defined].'), ('004560','draft','2022-03-04','DISA','policy','Track processing purposes of personally identifiable information using organization-defined automated mechanisms.','PT-03(02)','N/A','Determine if the processing purposes of personally identifiable information are tracked using [PT-03(02)_ODP; automated mechanisms for tracking the processing purposes of personally identifiable information are defined].'), ('004561','draft','2022-03-04','DISA','policy','Implement organization-defined tools or mechanisms for individuals to consent to the processing of their personally identifiable information prior to its collection that facilitate individuals'' informed decision-making.','PT-04','N/A','Determine if the [PT-04_ODP; the tools or mechanisms to be implemented for individuals to consent to the processing of their personally identifiable information are defined] are implemented for individuals to consent to the processing of their personally identifiable information prior to its collection that facilitate individual''s informed decision-making.'), ('004562','draft','2022-03-04','DISA','policy','Defines the tools or mechanisms for individuals to consent to the processing of their personally identifiable information prior to its collection that facilitate individuals'' informed decision-making.','PT-04','N/A','Determine if the [PT-04_ODP; the tools or mechanisms to be implemented for individuals to consent to the processing of their personally identifiable information are defined] are implemented for individuals to consent to the processing of their personally identifiable information prior to its collection that facilitate individual''s informed decision-making.'), ('004563','draft','2022-03-04','DISA','policy','Provide organization-defined mechanisms to allow individuals to tailor processing permissions to selected elements of personally identifiable information.','PT-04(01)','N/A','Determine if [PT-04(01)_ODP; tailoring mechanisms for processing selected elements of personally identifiable information permissions are defined] are provided to allow individuals to tailor processing permissions to selected elements of personally identifiable information.'), ('004564','draft','2022-03-04','DISA','policy','Defines the mechanisms for allowing individuals to tailor processing permissions to selected elements of personally identifiable information.','PT-04(01)','N/A','Determine if [PT-04(01)_ODP; tailoring mechanisms for processing selected elements of personally identifiable information permissions are defined] are provided to allow individuals to tailor processing permissions to selected elements of personally identifiable information.'), ('004565','draft','2022-03-04','DISA','policy','Present organization-defined consent mechanisms to individuals at an organization-defined frequency and in conjunction with organization-defined personally identifiable information processing.','PT-04(02)','N/A','Determine if [PT-04(02)_ODP[01]; consent mechanisms to be presented to individuals are defined] are presented to individuals [PT-04(02)_ODP[02]; the frequency at which to present consent mechanisms to individuals is defined] and in conjunction with [PT-04(02)_ODP[03]; personally identifiable information processing to be presented in conjunction with organization-defined consent mechanisms is defined].'), ('004566','draft','2022-03-04','DISA','policy','Defines the frequency for presenting organization-defined consent mechanisms to individuals.','PT-04(02)','N/A','Determine if [PT-04(02)_ODP[01]; consent mechanisms to be presented to individuals are defined] are presented to individuals [PT-04(02)_ODP[02]; the frequency at which to present consent mechanisms to individuals is defined] and in conjunction with [PT-04(02)_ODP[03]; personally identifiable information processing to be presented in conjunction with organization-defined consent mechanisms is defined].'), ('004567','draft','2022-03-04','DISA','policy','Defines the consent mechanisms needed by individuals on an organization-defined frequency, with organization-defined personally identifiable information processing.','PT-04(02)','N/A','Determine if [PT-04(02)_ODP[01]; consent mechanisms to be presented to individuals are defined] are presented to individuals [PT-04(02)_ODP[02]; the frequency at which to present consent mechanisms to individuals is defined] and in conjunction with [PT-04(02)_ODP[03]; personally identifiable information processing to be presented in conjunction with organization-defined consent mechanisms is defined].'), ('004568','draft','2022-03-04','DISA','policy','Defines the personally identifiable information processing needed for presenting organization-defined consent mechanisms to individuals.','PT-04(02)','N/A','Determine if [PT-04(02)_ODP[01]; consent mechanisms to be presented to individuals are defined] are presented to individuals [PT-04(02)_ODP[02]; the frequency at which to present consent mechanisms to individuals is defined] and in conjunction with [PT-04(02)_ODP[03]; personally identifiable information processing to be presented in conjunction with organization-defined consent mechanisms is defined].'), ('004569','draft','2022-03-04','DISA','policy','Implement organization-defined tools or mechanisms for individuals to revoke consent to the processing of their personally identifiable information.','PT-04(03)','N/A','Determine if the [PT-04(03)_ODP; the tools or mechanisms to be implemented for revoking consent to the processing of personally identifiable information are defined] are implemented for individuals to revoke consent to the processing of their personally identifiable information.'), ('004570','draft','2022-03-04','DISA','policy','Defines the tools or mechanisms for individuals to revoke consent to the processing of their personally identifiable information.','PT-04(03)','N/A','Determine if the [PT-04(03)_ODP; the tools or mechanisms to be implemented for revoking consent to the processing of personally identifiable information are defined] are implemented for individuals to revoke consent to the processing of their personally identifiable information.'), ('004571','draft','2022-03-04','DISA','policy','Provide notice to individuals about the processing of personally identifiable information that is available to individuals upon first interacting with an organization, and subsequently at an organization-defined frequency.','PT-05a.','N/A','Determine if: - a notice to individuals about the processing of personally identifiable information is provided such that the notice is available to individuals upon first interacting with an organization. - a notice to individuals about the processing of personally identifiable information is provided such that the notice is subsequently available to individuals [PT-05_ODP[01]; the frequency at which a notice is provided to individuals after initial interaction with an organization is defined].'), ('004572','draft','2022-03-04','DISA','policy','Defines the frequency for providing notice to individuals about the processing of personally identifiable information that is available to individuals upon first interacting with an organization.','PT-05a.','N/A','Determine if: - a notice to individuals about the processing of personally identifiable information is provided such that the notice is available to individuals upon first interacting with an organization. - a notice to individuals about the processing of personally identifiable information is provided such that the notice is subsequently available to individuals [PT-05_ODP[01]; the frequency at which a notice is provided to individuals after initial interaction with an organization is defined].'), ('004573','draft','2022-03-04','DISA','policy','Provide notice to individuals about the processing of personally identifiable information is clear and easy-to-understand, expressing information about personally identifiable information processing in plain language.','PT-05b.','N/A','Determine if a notice to individuals about the processing of personally identifiable information is provided that is clear, easy-to-understand, and expresses information about personally identifiable information processing in plain language.'), ('004574','draft','2022-03-04','DISA','policy','Provide notice to individuals about the processing of personally identifiable information that identifies the authority that authorizes the processing of personally identifiable information.','PT-05c.','N/A','Determine if a notice to individuals about the processing of personally identifiable information that identifies the authority that authorizes the processing of personally identifiable information is provided.'), ('004575','draft','2022-03-04','DISA','policy','Provide notice to individuals about the processing of personally identifiable information that identifies the purposes for which personally identifiable information is to be processes.','PT-05d.','N/A','Determine if a notice to individuals about the processing of personally identifiable information that identifies the purpose for which personally identifiable information is to be processed is provided.'), ('004576','draft','2022-03-04','DISA','policy','Provide notice to individuals about the processing of personally identifiable information that includes organization-defined information.','PT-05e.','N/A','Determine if a notice to individuals about the processing of personally identifiable information which includes [PT-05_ODP[02]; information to be included with the notice about the processing of personally identifiable information is defined] is provided.'), ('004577','draft','2022-03-04','DISA','policy','Defines the information that includes providing notice to individuals about the processing of personally identifiable information.','PT-05e.','N/A','Determine if a notice to individuals about the processing of personally identifiable information which includes [PT-05_ODP[02]; information to be included with the notice about the processing of personally identifiable information is defined] is provided.'), ('004578','draft','2022-03-04','DISA','policy','Present notice of personally identifiable information processing to individuals at a time and location where the individual provides personally identifiable information or in conjunction with a data action or organization-defined frequency.','PT-05(01)','N/A','Determine if a notice of personally identifiable information processing is presented to individuals at a time and location where the individual provides personally identifiable information, in conjunction with a data action, or [PT-05(01)_ODP; the frequency at which to present a notice of personally identifiable information processing is defined].'), ('004579','draft','2022-03-04','DISA','policy','Defines the frequency for presenting notice of personally identifiable information processing to individuals at a time and location where the individual provides personally identifiable information or in conjunction with a data action.','PT-05(01)','N/A','Determine if a notice of personally identifiable information processing is presented to individuals at a time and location where the individual provides personally identifiable information, in conjunction with a data action, or [PT-05(01)_ODP; the frequency at which to present a notice of personally identifiable information processing is defined].'), ('004580','draft','2022-03-04','DISA','policy','Include Privacy Act statements on forms that collect information that will be maintained in a Privacy Act system of records, or provide Privacy Act statements on separate forms that can be retained by individuals.','PT-05(02)','N/A','Determine if Privacy Act statements are included on forms that collect information that will be maintained in a Privacy Act system of records, or Privacy Act statements are provided on separate forms that can be retained by individuals.'), ('004581','draft','2022-03-04','DISA','policy','For systems that process information that will be maintained in a Privacy Act system of records: draft system of records notices in accordance with OMB guidance.','PT-06a.','N/A','Determine if: - system of records notices are drafted in accordance with OMB guidance for systems that process information that will be maintained in a Privacy Act system of records. - new and significantly modified system of records notices are submitted to the OMB and appropriate congressional committees for advance review for systems that process information that will be maintained in a Privacy Act system of records.'), ('004582','draft','2022-03-04','DISA','policy','For systems that process information that will be maintained in a Privacy Act system of records: submit new and significantly modified system of records notices to the OMB and appropriate committees for advance review.','PT-06a.','N/A','Determine if: - system of records notices are drafted in accordance with OMB guidance for systems that process information that will be maintained in a Privacy Act system of records. - new and significantly modified system of records notices are submitted to the OMB and appropriate congressional committees for advance review for systems that process information that will be maintained in a Privacy Act system of records.'), ('004583','draft','2022-03-04','DISA','policy','For systems that process information that will be maintained in a Privacy Act system of records: publish system of records notices in the Federal Register.','PT-06b.','N/A','Determine if system of records notices are published in the Federal Register for systems that process information that will be maintained in a Privacy Act system of records.'), ('004584','draft','2022-03-04','DISA','policy','For systems that process information that will be maintained in a Privacy Act system of records: keep system of records notices accurate, up-to-date, and scoped in accordance with policy.','PT-06c.','N/A','Determine if system of records notices are kept accurate, up-to-date, and scoped in accordance with policy for systems that process information that will be maintained in a Privacy Act system of records.'), ('004585','draft','2022-03-04','DISA','policy','Review all routine uses published in the system of records notice at an organization-defined frequency to ensure continued accuracy.','PT-06(01)','N/A','Determine if all routine uses published in the system of records notice are reviewed [PT-06(01)_ODP; the frequency at which to review all routine uses published in the system of records notice is defined] to ensure continued accuracy, and to ensure that routine uses continue to be compatible with the purpose for which the information was collected.'), ('004586','draft','2022-03-04','DISA','policy','Defines the frequency for reviewing all routine uses in published in the system of records notice.','PT-06(01)','N/A','Determine if all routine uses published in the system of records notice are reviewed [PT-06(01)_ODP; the frequency at which to review all routine uses published in the system of records notice is defined] to ensure continued accuracy, and to ensure that routine uses continue to be compatible with the purpose for which the information was collected.'), ('004587','draft','2022-03-04','DISA','policy','Review all routine uses published in the system of records notice at an organization-defined frequency to ensure that routine uses continue to be compatible with the purpose for which the information was collected.','PT-06(01)','N/A','Determine if all routine uses published in the system of records notice are reviewed [PT-06(01)_ODP; the frequency at which to review all routine uses published in the system of records notice is defined] to ensure continued accuracy, and to ensure that routine uses continue to be compatible with the purpose for which the information was collected.'), ('004588','draft','2022-03-04','DISA','policy','Review all Privacy Act exemptions claimed for the system of records at organization-defined frequency to ensure they remain appropriate and necessary with law.','PT-06(02)','N/A','Determine if: - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they remain appropriate and necessary in accordance with law. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they have been promulgated as regulations. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they are accurately described in the system of records notice.'), ('004589','draft','2022-03-04','DISA','policy','Review all Privacy Act exemptions claimed for the system of records at organization-defined frequency to ensure they have been promulgated as regulations.','PT-06(02)','N/A','Determine if: - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they remain appropriate and necessary in accordance with law. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they have been promulgated as regulations. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they are accurately described in the system of records notice.'), ('004590','draft','2022-03-04','DISA','policy','Review all Privacy Act exemptions claimed for the system of records at organization-defined frequency to ensure that they are accurately described in the system of records notice.','PT-06(02)','N/A','Determine if: - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they remain appropriate and necessary in accordance with law. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they have been promulgated as regulations. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they are accurately described in the system of records notice.'), ('004591','draft','2022-03-04','DISA','policy','Defines the frequency for reviewing all Privacy Act exemptions claimed for the system of records.','PT-06(02)','N/A','Determine if: - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they remain appropriate and necessary in accordance with law. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they have been promulgated as regulations. - all Privacy Act exemptions claimed for the system of records are reviewed [PT-06(02)_ODP; the frequency at which to review all Privacy Act exemptions claimed for the system of records is defined] to ensure that they are accurately described in the system of records notice.'), ('004592','draft','2022-03-04','DISA','policy','Apply organization-defined processing conditions for specific categories of personally identifiable information.','PT-07','N/A','Determine if [PT-07_ODP; processing conditions to be applied for specific categories of personally identifiable information are defined] are applied for specific categories of personally identifiable information.'), ('004593','draft','2022-03-04','DISA','policy','Defines the processing conditions for applying specific categories of personally identifiable information.','PT-07','N/A','Determine if [PT-07_ODP; processing conditions to be applied for specific categories of personally identifiable information are defined] are applied for specific categories of personally identifiable information.'), ('004594','draft','2022-03-04','DISA','policy','When a system processes Social Security numbers: eliminate unnecessary collection, maintenance, and use of Social Security numbers, and explore alternatives to their use as a personal identifier.','PT-07(01)(a)','N/A','Determine if: - when a system processes Social Security numbers, the unnecessary collection, maintenance, and use of Social Security numbers are eliminated. - when a system processes Social Security numbers, alternatives to the use of Social Security Numbers as a personal identifier are explored.'), ('004595','draft','2022-03-04','DISA','policy','When a system processes Social Security numbers: do not deny any individuals any right, benefit, or privilege provided by law because of such individuals'' refusal to disclose his or her Social Security number.','PT-07(01)(b)','N/A','Determine if when a system processes Social Security numbers, individual rights, benefits, or privileges provided by law are not denied because of an individual''s refusal to disclose their Social Security number.'), ('004596','draft','2022-03-04','DISA','policy','When a system processes Social Security numbers: inform any individual who is asked to disclose his or Social Security number whether that disclosure is mandatory or voluntary, by what statutory or other authority such number is solicited, and what uses will be made of it.','PT-07(01)(c)','N/A','Determine if: - when a system processes Social Security numbers, any individual who is asked to disclose their Social Security number is informed whether that disclosure is mandatory or voluntary, by what statutory or other authority such number is solicited, and what uses will be made of it. - when a system processes Social Security numbers, any individual who is asked to disclose their Social Security number is informed by what statutory or other authority the number is solicited. - when a system processes Social Security numbers, any individual who is asked to disclose their Social Security number is informed what uses will be made of it.'), ('004597','draft','2022-03-04','DISA','policy','Prohibit the processing of information describing how any individual exercises rights guaranteed by the First Amendment unless expressly authorized by statue or by the individual or unless pertinent to and within the scope of an authorized law enforcement activity.','PT-07(02)','N/A','Determine if the processing of information describing how any individual exercises rights guaranteed by the First Amendment is prohibited unless expressly authorized by statute or by the individual or unless pertinent to and within the scope of an authorized law enforcement activity.'), ('004598','draft','2022-03-04','DISA','policy','When a system or organization processes information for the purpose of conducting a matching program: obtain approval from the Data Integrity Board to conduct the matching program.','PT-08a.','N/A','Determine if approval to conduct the matching program is obtained from the Data Integrity Board when a system or organization processes information for the purpose of conducting a matching program.'), ('004599','draft','2022-03-04','DISA','policy','When a system or organization processes information for the purpose of conducting a matching program: develop and enter into a computer matching agreement.','PT-08b.','N/A','Determine if: - a computer matching agreement is developed when a system or organization processes information for the purpose of conducting a matching program. - a computer matching agreement is entered into when a system or organization processes information for the purpose of conducting a matching program.'), ('004600','draft','2022-03-04','DISA','policy','When a system or organization processes information for the purpose of conducting a matching program: publish a matching notice in the Federal Register.','PT-08c.','N/A','Determine if a matching notice is published in the Federal Register when a system or organization processes information for the purpose of conducting a matching program.'), ('004601','draft','2022-03-04','DISA','policy','When a system or organization processes information for the purpose of conducting a matching program: independently verify the information produced by the matching program before taking adverse action against an individual, if required.','PT-08d.','N/A','Determine if the information produced by the matching program is independently verified before taking adverse action against an individual, if required, when a system or organization processes information for the purpose of conducting a matching program.'), ('004602','draft','2022-03-04','DISA','policy','When a system or organization processes information for the purpose of conducting a matching program: provide individuals with notice and an opportunity to contest the findings before taking adverse action against an individual.','PT-08e.','N/A','Determine if: - individuals are provided with notice when a system or organization processes information for the purpose of conducting a matching program. - individuals are provided with an opportunity to contest the findings before adverse action is taken against them when a system or organization processes information for the purpose of conducting a matching program.'), ('004603','draft','2022-03-04','DISA','policy','Develop and document an organization-level; mission/business process-level; system-level risk assessment policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','RA-01a.01(b)','N/A','Determine if the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.'), ('004604','draft','2022-03-04','DISA','policy','Disseminate an organization-level; mission/business process-level; system-level risk assessment policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines, to organization-defined personnel or roles.','RA-01a.01(b)','N/A','Determine if the [RA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] risk assessment policy is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.'), ('004605','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the development and documentation of the risk assessment policy.','RA-01b.','N/A','Determine if the [RA-01_ODP[04]; an official to manage the risk assessment policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures.'), ('004606','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the dissemination of the risk assessment policy.','RA-01b.','N/A','Determine if the [RA-01_ODP[04]; an official to manage the risk assessment policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures.'), ('004607','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage development and documentation of the risk assessment procedures.','RA-01b.','N/A','Determine if the [RA-01_ODP[04]; an official to manage the risk assessment policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures.'), ('004608','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage dissemination of the risk assessment procedures.','RA-01b.','N/A','Determine if the [RA-01_ODP[04]; an official to manage the risk assessment policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures.'), ('004609','draft','2022-03-04','DISA','policy','Defines the official designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures.','RA-01b.','N/A','Determine if the [RA-01_ODP[04]; an official to manage the risk assessment policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the risk assessment policy and procedures.'), ('004610','draft','2022-03-04','DISA','policy','Review and update the current risk assessment policy following organization-defined events.','RA-01c.01','N/A','Determine if: - the current risk assessment policy is reviewed and updated [RA-01_ODP[05]; the frequency at which the current risk assessment policy is reviewed and updated is defined]. - the current risk assessment policy is reviewed and updated following [RA-01_ODP[06]; events that would require the current risk assessment policy to be reviewed and updated are defined].'), ('004611','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current risk assessment policy.','RA-01c.01','N/A','Determine if: - the current risk assessment policy is reviewed and updated [RA-01_ODP[05]; the frequency at which the current risk assessment policy is reviewed and updated is defined]. - the current risk assessment policy is reviewed and updated following [RA-01_ODP[06]; events that would require the current risk assessment policy to be reviewed and updated are defined].'), ('004612','draft','2022-03-04','DISA','policy','Review and update the current risk assessment procedures following organization-defined events.','RA-01c.02','N/A','Determine if: - the current risk assessment procedures are reviewed and updated [RA-01_ODP[07]; the frequency at which the current risk assessment procedures are reviewed and updated is defined]. - the current risk assessment procedures are reviewed and updated following [RA-01_ODP[08]; events that would require risk assessment procedures to be reviewed and updated are defined].'), ('004613','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current risk assessment procedures.','RA-01c.02','N/A','Determine if: - the current risk assessment procedures are reviewed and updated [RA-01_ODP[07]; the frequency at which the current risk assessment procedures are reviewed and updated is defined]. - the current risk assessment procedures are reviewed and updated following [RA-01_ODP[08]; events that would require risk assessment procedures to be reviewed and updated are defined].'), ('004614','draft','2022-03-04','DISA','policy','Categorize the system and information it processes.','RA-02a.','N/A','Determine if the system and the information it processes, stores, and transmits are categorized.'), ('004615','draft','2022-03-04','DISA','policy','Categorize the system and information it stores.','RA-02a.','N/A','Determine if the system and the information it processes, stores, and transmits are categorized.'), ('004616','draft','2022-03-04','DISA','policy','Categorize the system and information it transmits.','RA-02a.','N/A','Determine if the system and the information it processes, stores, and transmits are categorized.'), ('004617','draft','2022-03-04','DISA','policy','Conduct a impact-level categorization of organizational systems to obtain additional granularity on system impact levels.','RA-02(01)','N/A','Determine if an impact-level prioritization of organizational systems is conducted to obtain additional granularity on system impact levels.'), ('004618','draft','2022-03-04','DISA','policy','Conduct a risk assessment, including identifying threats to the system.','RA-03a.01','N/A','Determine if a risk assessment is conducted to identify threats to and vulnerabilities in the system.'), ('004619','draft','2022-03-04','DISA','policy','Conduct a risk assessment, including identifying vulnerabilities in the system.','RA-03a.01','N/A','Determine if a risk assessment is conducted to identify threats to and vulnerabilities in the system.'), ('004620','draft','2022-03-04','DISA','policy','Conduct a risk assessment, including determining the likelihood and impact of adverse effects on individuals arising from the processing of personally-identifiable information.','RA-03a.03','N/A','Determine if a risk assessment is conducted to determine the likelihood and impact of adverse effects on individuals arising from the processing of personally identifiable information.'), ('004621','draft','2022-03-04','DISA','policy','Integrate risk assessment results from the organization.','RA-03b.','N/A','Determine if risk assessment results and risk management decisions from the organization and mission or business process perspectives are integrated with system-level risk assessments.'), ('004622','draft','2022-03-04','DISA','policy','Integrate risk management decisions from the organization.','RA-03b.','N/A','Determine if risk assessment results and risk management decisions from the organization and mission or business process perspectives are integrated with system-level risk assessments.'), ('004623','draft','2022-03-04','DISA','policy','Integrate mission or business process perspectives with system-level risk assessments.','RA-03b.','N/A','Determine if risk assessment results and risk management decisions from the organization and mission or business process perspectives are integrated with system-level risk assessments.'), ('004624','draft','2022-03-04','DISA','policy','Assess supply chain risks associated with organization-defined systems, system components, and system services.','RA-03(01)(a)','N/A','Determine if supply chain risks associated with [RA-03(01)_ODP[01]; systems, system components, and system services to assess supply chain risks are defined] are assessed.'), ('004625','draft','2022-03-04','DISA','policy','Defines the systems, system-components, and system services for assessing supply chain risks.','RA-03(01)(a)','N/A','Determine if supply chain risks associated with [RA-03(01)_ODP[01]; systems, system components, and system services to assess supply chain risks are defined] are assessed.'), ('004626','draft','2022-03-04','DISA','policy','Update the supply chain risk assessment on an organization-defined frequency when there are significant changes to the relevant supply chain, or when changes to the system, environments of operation, or other conditions may necessitate a change in the supply chain.','RA-03(01)(b)','N/A','Determine if the supply chain risk assessment is updated [RA-03(01)_ODP[02]; the frequency at which to update the supply chain risk assessment is defined], when there are significant changes to the relevant supply chain, or when changes to the system, environments of operation, or other conditions may necessitate a change in the supply chain.'), ('004627','draft','2022-03-04','DISA','policy','Defines the frequency for updating the supply chain assessment.','RA-03(01)(b)','N/A','Determine if the supply chain risk assessment is updated [RA-03(01)_ODP[02]; the frequency at which to update the supply chain risk assessment is defined], when there are significant changes to the relevant supply chain, or when changes to the system, environments of operation, or other conditions may necessitate a change in the supply chain.'), ('004628','draft','2022-03-04','DISA','policy','Use all-source intelligence to assist in the analysis of risk.','RA-03(02)','N/A','Determine if all-source intelligence is used to assist in the analysis of risk.'), ('004629','draft','2022-03-04','DISA','policy','Determine the current cyber threat environment on an ongoing basis using organization-defined means.','RA-03(03)','N/A','Determine if the current cyber threat environment is determined on an ongoing basis using [RA-03(03)_ODP; means to determine the current cyber threat environment on an ongoing basis].'), ('004630','draft','2022-03-04','DISA','policy','Defines the means for determining the current threat environment.','RA-03(03)','N/A','Determine if the current cyber threat environment is determined on an ongoing basis using [RA-03(03)_ODP; means to determine the current cyber threat environment on an ongoing basis].'), ('004631','draft','2022-03-04','DISA','policy','Employ organization-defined advanced automation and analytics capabilities to predict and identify risks to organization-defined systems or system components.','RA-03(03)','N/A','Determine if the current cyber threat environment is determined on an ongoing basis using [RA-03(03)_ODP; means to determine the current cyber threat environment on an ongoing basis].'), ('004632','draft','2022-03-04','DISA','policy','Defines the advanced automation and analytics capabilities for predicting and identifying risks to organization-defined systems or system components.','RA-03(04)','N/A','Determine if: - [RA-03(04)_ODP[01]; advanced automation capabilities to predict and identify risks are defined] are employed to predict and identify risks to [RA-03(04)_ODP[02]; systems or system components where advanced automation and analytics capabilities are to be employed are defined]. - [RA-03(04)_ODP[03]; advanced analytics capabilities to predict and identify risks are defined] are employed to predict and identify risks to [RA-03(04)_ODP[02]; systems or system components where advanced automation and analytics capabilities are to be employed are defined].'), ('004633','draft','2022-03-04','DISA','policy','Defines the systems or system components for employing advanced automation and analytics capabilities.','RA-03(04)','N/A','Determine if: - [RA-03(04)_ODP[01]; advanced automation capabilities to predict and identify risks are defined] are employed to predict and identify risks to [RA-03(04)_ODP[02]; systems or system components where advanced automation and analytics capabilities are to be employed are defined]. - [RA-03(04)_ODP[03]; advanced analytics capabilities to predict and identify risks are defined] are employed to predict and identify risks to [RA-03(04)_ODP[02]; systems or system components where advanced automation and analytics capabilities are to be employed are defined].'), ('004634','draft','2022-03-04','DISA','policy','Employ vulnerability monitoring tools and techniques that facilitate interoperability among tools and automate parts of the vulnerability management process by using standards for: formatting checklists and test procedures.','RA-05b.02','N/A','Determine if vulnerability monitoring tools and techniques are employed to facilitate interoperability among tools and to automate parts of the vulnerability management process by using standards for formatting checklists and test procedures.'), ('004635','draft','2022-03-04','DISA','policy','Employ vulnerability monitoring tools and techniques that facilitate interoperability among tools and automate parts of the vulnerability management process by using standards for: measuring vulnerability impact.','RA-05b.03','N/A','Determine if vulnerability monitoring tools and techniques are employed to facilitate interoperability among tools and to automate parts of the vulnerability management process by using standards for measuring vulnerability impact.'), ('004636','draft','2022-03-04','DISA','policy','Employ vulnerability monitoring tools that include the capability to readily update the vulnerabilities to be scanned.','RA-05f.','N/A','Determine if vulnerability monitoring tools that include the capability to readily update the vulnerabilities to be scanned are employed.'), ('004637','draft','2022-03-04','DISA','policy','Defines the automated mechanisms for comparing the results of multiple vulnerability scans.','RA-05(06)','N/A','Determine if the results of multiple vulnerability scans are compared using [RA-05(06)_ODP; automated mechanisms to compare the results of multiple vulnerability scans are defined].'), ('004638','draft','2022-03-04','DISA','policy','Defines the system in which will be identified for determining if a vulnerability has been exploited.','RA-05(08)','N/A','Determine if historic audit logs are reviewed to determine if a vulnerability identified in a [RA-05(08)_ODP[01]; a system whose historic audit logs are to be reviewed is defined] has been previously exploited within [RA-05(08)_ODP[02]; a time period for a potential previous exploit of a system is defined].'), ('004639','draft','2022-03-04','DISA','policy','Defines the time period for reviewing historic audit logs to determine if a vulnerability identified has been exploited.','RA-05(08)','N/A','Determine if historic audit logs are reviewed to determine if a vulnerability identified in a [RA-05(08)_ODP[01]; a system whose historic audit logs are to be reviewed is defined] has been previously exploited within [RA-05(08)_ODP[02]; a time period for a potential previous exploit of a system is defined].'), ('004640','draft','2022-03-04','DISA','policy','Establish a public reporting channel for receiving reports of vulnerabilities in organizational systems and system components.','RA-05(11)','N/A','Determine if a public reporting channel is established for receiving reports of vulnerabilities in organizational systems and system components.'), ('004641','draft','2022-03-04','DISA','policy','Respond to findings from security assessments.','RA-07','N/A','Determine if: - findings from security assessments are responded to in accordance with organizational risk tolerance. - findings from privacy assessments are responded to in accordance with organizational risk tolerance. - findings from monitoring are responded to in accordance with organizational risk tolerance. - findings from audits are responded to in accordance with organizational risk tolerance.'), ('004642','draft','2022-03-04','DISA','policy','Respond to findings from privacy assessments.','RA-07','N/A','Determine if: - findings from security assessments are responded to in accordance with organizational risk tolerance. - findings from privacy assessments are responded to in accordance with organizational risk tolerance. - findings from monitoring are responded to in accordance with organizational risk tolerance. - findings from audits are responded to in accordance with organizational risk tolerance.'), ('004643','draft','2022-03-04','DISA','policy','Respond to findings from monitoring.','RA-07','N/A','Determine if: - findings from security assessments are responded to in accordance with organizational risk tolerance. - findings from privacy assessments are responded to in accordance with organizational risk tolerance. - findings from monitoring are responded to in accordance with organizational risk tolerance. - findings from audits are responded to in accordance with organizational risk tolerance.'), ('004644','draft','2022-03-04','DISA','policy','Respond to findings from audits in accordance with organizational risk tolerance.','RA-07','N/A','Determine if: - findings from security assessments are responded to in accordance with organizational risk tolerance. - findings from privacy assessments are responded to in accordance with organizational risk tolerance. - findings from monitoring are responded to in accordance with organizational risk tolerance. - findings from audits are responded to in accordance with organizational risk tolerance.'), ('004645','draft','2022-03-04','DISA','policy','Conduct privacy impact assessments for systems, programs, or other activities before developing or procuring information technology that processes personally identifiable information.','RA-08a.','N/A','Determine if privacy impact assessments are conducted for systems, programs, or other activities before developing or procuring information technology that processes personally identifiable information.'), ('004646','draft','2022-03-04','DISA','policy','Conduct privacy impact assessments for systems, programs, or other activities before initiating a new collection of personally identifiable information that will be processes using information technology.','RA-08b.','N/A','Determine if: - privacy impact assessments are conducted for systems, programs, or other activities before initiating a collection of personally identifiable information that will be processed using information technology. - privacy impact assessments are conducted for systems, programs, or other activities before initiating a collection of personally identifiable information that includes personally identifiable information permitting the physical or virtual (online) contacting of a specific individual, if identical questions have been posed to, or identical reporting requirements imposed on, ten or more individuals, other than agencies, instrumentalities, or employees of the federal government.'), ('004647','draft','2022-03-04','DISA','policy','Conduct privacy impact assessments for systems, programs, or other activities before initiating a new collection of personally identifiable information that includes personally identifiable information permitting the physical or virtual (online) contacting of a specific individual, if identical questions have been posed to, or identical reporting requirements imposed on, ten or more persons, other than agencies, instrumentalities, or employees of the Federal Government.','RA-08b.','N/A','Determine if: - privacy impact assessments are conducted for systems, programs, or other activities before initiating a collection of personally identifiable information that will be processed using information technology. - privacy impact assessments are conducted for systems, programs, or other activities before initiating a collection of personally identifiable information that includes personally identifiable information permitting the physical or virtual (online) contacting of a specific individual, if identical questions have been posed to, or identical reporting requirements imposed on, ten or more individuals, other than agencies, instrumentalities, or employees of the federal government.'), ('004648','draft','2022-03-04','DISA','policy','Identify critical system components and functions by performing a criticality analysis for organization-defined systems, system components, or system services at organization-defined decision points in the system development life cycle.','RA-09','N/A','Determine if critical system components and functions are identified by performing a criticality analysis for [RA-09_ODP[01]; systems, system components, or system services to be analyzed for criticality are defined] at [RA-09_ODP[02]; decision points in the system development life cycle when a criticality analysis is to be performed are defined].'), ('004649','draft','2022-03-04','DISA','policy','Defines the system, system components, or system services to perform a criticality analysis for identifying critical system components and functions.','RA-09','N/A','Determine if critical system components and functions are identified by performing a criticality analysis for [RA-09_ODP[01]; systems, system components, or system services to be analyzed for criticality are defined] at [RA-09_ODP[02]; decision points in the system development life cycle when a criticality analysis is to be performed are defined].'), ('004650','draft','2022-03-04','DISA','policy','Defines the decision points in the system development life cycle at which organization-defined system, system components, or system services to perform a criticality analysis for identifying critical system components and functions.','RA-09','N/A','Determine if critical system components and functions are identified by performing a criticality analysis for [RA-09_ODP[01]; systems, system components, or system services to be analyzed for criticality are defined] at [RA-09_ODP[02]; decision points in the system development life cycle when a criticality analysis is to be performed are defined].'), ('004651','draft','2022-03-04','DISA','policy','Establish and maintain a cyber threat hunting capability to search for indicators of compromise in organizational systems.','RA-10a.01','N/A','Determine if a cyber threat capability is established and maintained to search for indicators of compromise in organizational systems.'), ('004652','draft','2022-03-04','DISA','policy','Establish and maintain a cyber threat hunting capability to detect, track, and disrupt threats that evade existing controls.','RA-10a.02','N/A','Determine if a cyber threat capability is established and maintained to detect, track, and disrupt threats that evade existing controls.'), ('004653','draft','2022-03-04','DISA','policy','Employ the threat hunting capability on an organization-defined frequency.','RA-10b.','N/A','Determine if the threat hunting capability is employed [RA-10_ODP; the frequency at which to employ the threat hunting capability is defined].'), ('004654','draft','2022-03-04','DISA','policy','Defines the frequency for employing the threat hunting capability.','RA-10b.','N/A','Determine if the threat hunting capability is employed [RA-10_ODP; the frequency at which to employ the threat hunting capability is defined].'), ('004655','draft','2022-03-04','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level system and services acquisition policy that is consistent with applicable laws, Executive Orders, directives, regulations, polices, standards, and guidelines.','SA-01a.01(b)','N/A','Determine if the [SA-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and services acquisition policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004656','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage development and documentation of the system and services acquisition policy.','SA-01b.','N/A','Determine if the [SA-01_ODP[04]; an official to manage the system and services acquisition policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures.'), ('004657','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage dissemination of the system and services acquisition policy.','SA-01b.','N/A','Determine if the [SA-01_ODP[04]; an official to manage the system and services acquisition policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures.'), ('004658','draft','2022-03-04','DISA','policy','Defines the official designated to manage development and documentation of the system and services acquisition policy.','SA-01b.','N/A','Determine if the [SA-01_ODP[04]; an official to manage the system and services acquisition policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures.'), ('004659','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the development and documentation of the system and services acquisition procedures.','SA-01b.','N/A','Determine if the [SA-01_ODP[04]; an official to manage the system and services acquisition policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures.'), ('004660','draft','2022-03-04','DISA','policy','Designate an organization-defined official to manage the dissemination of the system and services acquisition procedures.','SA-01b.','N/A','Determine if the [SA-01_ODP[04]; an official to manage the system and services acquisition policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures.'), ('004661','draft','2022-03-04','DISA','policy','Defines the official designated to manage the system and services acquisition procedures.','SA-01b.','N/A','Determine if the [SA-01_ODP[04]; an official to manage the system and services acquisition policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and services acquisition policy and procedures.'), ('004662','draft','2022-03-04','DISA','policy','Review and update the current system and services acquisition policy following organization-defined events.','SA-01c.01','N/A','Determine if: - the system and services acquisition policy is reviewed and updated [SA-01_ODP[05]; the frequency at which the current system and services acquisition policy is reviewed and updated is defined]. - the current system and services acquisition policy is reviewed and updated following [SA-01_ODP[06]; events that would require the current system and services acquisition policy to be reviewed and updated are defined].'), ('004663','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current system and services acquisition policy.','SA-01c.01','N/A','Determine if: - the system and services acquisition policy is reviewed and updated [SA-01_ODP[05]; the frequency at which the current system and services acquisition policy is reviewed and updated is defined]. - the current system and services acquisition policy is reviewed and updated following [SA-01_ODP[06]; events that would require the current system and services acquisition policy to be reviewed and updated are defined].'), ('004664','draft','2022-03-04','DISA','policy','Review and update the current system and services acquisition procedures following organization-defined events.','SA-01c.02','N/A','Determine if: - the current system and services acquisition procedures are reviewed and updated [SA-01_ODP[07]; the frequency at which the current system and services acquisition procedures are reviewed and updated is defined]. - the current system and services acquisition procedures are reviewed and updated following [SA-01_ODP[08]; events that would require the system and services acquisition procedures to be reviewed and updated are defined].'), ('004665','draft','2022-03-04','DISA','policy','Defines the events following reviewing and updating the current system and services acquisition procedures.','SA-01c.02','N/A','Determine if: - the current system and services acquisition procedures are reviewed and updated [SA-01_ODP[07]; the frequency at which the current system and services acquisition procedures are reviewed and updated is defined]. - the current system and services acquisition procedures are reviewed and updated following [SA-01_ODP[08]; events that would require the system and services acquisition procedures to be reviewed and updated are defined].'), ('004666','draft','2022-03-04','DISA','policy','Determine the high-level information privacy requirements for the system or system service in mission and business process planning.','SA-02a.','N/A','Determine if: - the high-level information security requirements for the system or system service are determined in mission and business process planning. - the high-level privacy requirements for the system or system service are determined in mission and business process planning.'), ('004667','draft','2022-03-04','DISA','policy','Establish a discrete line item for information privacy in organizational programming documentation.','SA-02c.','N/A','Determine if: - a discrete line item for information security is established in organizational programming and budgeting documentation. - a discrete line item for privacy is established in organizational programming and budgeting documentation.'), ('004668','draft','2022-03-04','DISA','policy','Establish a discrete line item for information privacy in organizational budgeting documentation.','SA-02c.','N/A','Determine if: - a discrete line item for information security is established in organizational programming and budgeting documentation. - a discrete line item for privacy is established in organizational programming and budgeting documentation.'), ('004669','draft','2022-03-04','DISA','policy','Acquire the system using an organization-defined system development life cycle that incorporates information security considerations.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004670','draft','2022-03-04','DISA','policy','Acquire the system using an organization-defined system development life cycle that incorporates information privacy considerations.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004671','draft','2022-03-04','DISA','policy','Develop the system using an organization-defined system development life cycle that incorporates information security considerations.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004672','draft','2022-03-04','DISA','policy','Develop the system using an organization-defined system development life cycle that incorporates information privacy considerations.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004673','draft','2022-03-04','DISA','policy','Manage the system using an organization-defined system development life cycle that incorporates information privacy considerations.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004674','draft','2022-03-04','DISA','policy','Defines a system development life cycle that is used to develop the system.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004675','draft','2022-03-04','DISA','policy','Defines a system development life cycle that is used to acquire the system.','SA-03a.','N/A','Determine if: - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates information security considerations. - the system is acquired, developed, and managed using [SA-03_ODP; system development life cycle is defined] that incorporates privacy considerations.'), ('004676','draft','2022-03-04','DISA','policy','Define and document information system privacy roles and responsibilities throughout the system development life cycle.','SA-03b.','N/A','Determine if: - information security roles and responsibilities are defined and documented throughout the system development life cycle. - privacy roles and responsibilities are defined and documented throughout the system development life cycle.'), ('004677','draft','2022-03-04','DISA','policy','Identify individuals having information system privacy roles and responsibilities.','SA-03c.','N/A','Determine if: - individuals with information security roles and responsibilities are identified. - individuals with privacy roles and responsibilities are identified.'), ('004678','draft','2022-03-04','DISA','policy','Integrate the organizational information privacy risk management process into system development life cycle activities.','SA-03d.','N/A','Determine if: - organizational information security risk management processes are integrated into system development life cycle activities. - organizational privacy risk management processes are integrated into system development life cycle activities.'), ('004679','draft','2022-03-04','DISA','policy','Protect system preproduction environments commensurate with risk throughout the system development life cycle for the system, system component, or system service.','SA-03(01)','N/A','Determine if system pre-production environments are protected commensurate with risk throughout the system development life cycle for the system, system component, or system service.'), ('004680','draft','2022-03-04','DISA','policy','Approve the use of live data in preproduction environments for the system, system component, or system service.','SA-03(02)(a)','N/A','Determine if: - the use of live data in pre-production environments is approved for the system, system component, or system service. - the use of live data in pre-production environments is documented for the system, system component, or system service. - the use of live data in pre-production environments is controlled for the system, system component, or system service.'), ('004681','draft','2022-03-04','DISA','policy','Document the use of live data in preproduction environments for the system, system component, or system service.','SA-03(02)(a)','N/A','Determine if: - the use of live data in pre-production environments is approved for the system, system component, or system service. - the use of live data in pre-production environments is documented for the system, system component, or system service. - the use of live data in pre-production environments is controlled for the system, system component, or system service.'), ('004682','draft','2022-03-04','DISA','policy','Control the use of live data in preproduction environments for the system, system component, or system service.','SA-03(02)(a)','N/A','Determine if: - the use of live data in pre-production environments is approved for the system, system component, or system service. - the use of live data in pre-production environments is documented for the system, system component, or system service. - the use of live data in pre-production environments is controlled for the system, system component, or system service.'), ('004683','draft','2022-03-04','DISA','policy','Protect preproduction environments for the system, system component, or system service at the same impact or classification level as any live data in use within the preproduction environments.','SA-03(02)(b)','N/A','Determine if pre-production environments for the system, system component, or system service are protected at the same impact or classification level as any live data in use within the pre-production environments.'), ('004684','draft','2022-03-04','DISA','policy','Plan for a technology refresh schedule to support the system throughout the system development life cycle.','SA-03(03)','N/A','Determine if: - a technology refresh schedule is planned for the system throughout the system development life cycle. - a technology refresh schedule is implemented for the system throughout the system development life cycle.'), ('004685','draft','2022-03-04','DISA','policy','Implement technology refresh schedule to support the system throughout the system development life cycle.','SA-03(03)','N/A','Determine if: - a technology refresh schedule is planned for the system throughout the system development life cycle. - a technology refresh schedule is implemented for the system throughout the system development life cycle.'), ('004686','draft','2022-03-04','DISA','policy','Defines the organization-defined contract language for including the requirements, descriptions, and criteria in the acquisition contract for the system, system component, or system service.',NULL,'N/A',NULL), ('004687','draft','2022-03-04','DISA','policy','Include the privacy functional requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04a.','N/A','Determine if: - security functional requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - privacy functional requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004688','draft','2022-03-04','DISA','policy','Include the privacy assurance requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04c.','N/A','Determine if: - security assurance requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - privacy assurance requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004689','draft','2022-03-04','DISA','policy','Include the controls needed to satisfy security requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04d.','N/A','Determine if: - controls needed to satisfy the security requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - controls needed to satisfy the privacy requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004690','draft','2022-03-04','DISA','policy','Include the controls needed to satisfy privacy requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04d.','N/A','Determine if: - controls needed to satisfy the security requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - controls needed to satisfy the privacy requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004691','draft','2022-03-04','DISA','policy','Include the privacy documentation requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04e.','N/A','Determine if: - security documentation requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - privacy documentation requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004692','deprecated','2022-03-04','DISA','policy','Include the requirements for protecting security documentation, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04f.','N/A','Determine if: - requirements for protecting security documentation, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - requirements for protecting privacy documentation, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004693','draft','2022-03-04','DISA','policy','Include the requirements for protecting privacy documentation, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04f.','N/A','Determine if: - requirements for protecting security documentation, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - requirements for protecting privacy documentation, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service.'), ('004694','draft','2022-03-04','DISA','policy','Include the allocation of responsibility or identification of parties responsible for information security, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04h.','N/A','Determine if: - the allocation of responsibility or identification of parties responsible for information security requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - the allocation of responsibility or identification of parties responsible for privacy requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}]. - the allocation of responsibility or identification of parties responsible for supply chain risk management requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}].'), ('004695','draft','2022-03-04','DISA','policy','Include the allocation of responsibility or identification of parties responsible for information privacy, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04h.','N/A','Determine if: - the allocation of responsibility or identification of parties responsible for information security requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - the allocation of responsibility or identification of parties responsible for privacy requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}]. - the allocation of responsibility or identification of parties responsible for supply chain risk management requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}].'), ('004696','draft','2022-03-04','DISA','policy','Include the allocation of responsibility or identification of parties responsible for supply chain risk management, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.','SA-04h.','N/A','Determine if: - the allocation of responsibility or identification of parties responsible for information security requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}] in the acquisition contract for the system, system component, or system service. - the allocation of responsibility or identification of parties responsible for privacy requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}]. - the allocation of responsibility or identification of parties responsible for supply chain risk management requirements, descriptions, and criteria are included explicitly or by reference using [SA-04_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {standardized contract language; [SA-04_ODP[02]; contract language is defined (if selected)]}].'), ('004697','draft','2022-03-04','DISA','policy','Require the developer of the system, system component, or system service to demonstrate the use of a system development life cycle process that includes organization-defined systems engineering methods.','SA-04(03)(a)','N/A','Determine if the developer of the system, system component, or system service is required to demonstrate the use of a system development life cycle process that includes [SA-04(03)_ODP[01]; systems engineering methods are defined].'), ('004698','draft','2022-03-04','DISA','policy','Defines the systems engineering methods for demonstrating the use of a system development life cycle process.','SA-04(03)(a)','N/A','Determine if the developer of the system, system component, or system service is required to demonstrate the use of a system development life cycle process that includes [SA-04(03)_ODP[01]; systems engineering methods are defined].'), ('004699','draft','2022-03-04','DISA','policy','Require the developer of the system, system component, or system service to demonstrate the use of a system development life cycle process that includes organization-defined system security engineering methods and/or privacy engineering methods.','SA-04(03)(b)','N/A','Determine if the developer of the system, system component, or system service is required to demonstrate the use of a system development life cycle process that includes [SA-04(03)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[SA-04(03)_ODP[03]; system security engineering methods are defined (if selected)]; [SA-04(03)_ODP[04]; privacy engineering methods are defined (if selected)]}].'), ('004700','draft','2022-03-04','DISA','policy','Defines the system security engineering methods and/or privacy engineering methods for demonstrating the use of a system development life cycle process.','SA-04(03)(b)','N/A','Determine if the developer of the system, system component, or system service is required to demonstrate the use of a system development life cycle process that includes [SA-04(03)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {[SA-04(03)_ODP[03]; system security engineering methods are defined (if selected)]; [SA-04(03)_ODP[04]; privacy engineering methods are defined (if selected)]}].'), ('004701','draft','2022-03-04','DISA','policy','Require the developer of the system, system component, or system service to demonstrate the use of a system development life cycle process that includes organization-defined software development methods; testing; evaluation, assessment, verification, and validation methods, and quality control processes.','SA-04(03)(c)','N/A','Determine if the developer of the system, system component, or system service is required to demonstrate the use of a system development life cycle process that includes [SA-04(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {[SA-04(03)_ODP[06]; software development methods are defined (if selected)]; [SA-04(03)_ODP[07]; testing, evaluation, assessment, verification, and validation methods are defined (if selected)]; [SA-04(03)_ODP[08]; quality control processes are defined (if selected)]}].'), ('004702','draft','2022-03-04','DISA','policy','Defines the software development methods; testing; evaluation, assessment, verification, and validation methods, and quality control processes for demonstrating the use of a system development life cycle process.','SA-04(03)(c)','N/A','Determine if the developer of the system, system component, or system service is required to demonstrate the use of a system development life cycle process that includes [SA-04(03)_ODP[05]; one or more of the following PARAMETER VALUES is/are selected: {[SA-04(03)_ODP[06]; software development methods are defined (if selected)]; [SA-04(03)_ODP[07]; testing, evaluation, assessment, verification, and validation methods are defined (if selected)]; [SA-04(03)_ODP[08]; quality control processes are defined (if selected)]}].'), ('004703','draft','2022-03-04','DISA','policy','Include organization-defined Privacy Act requirements in the acquisition contract for the operation of a system of records on behalf of an organization to accomplish an organizational mission or function.','SA-04(11)','N/A','Determine if [SA-04(11)_ODP; Privacy Act requirements for the operation of a system of records are defined] are defined in the acquisition contract for the operation of a system of records on behalf of an organization to accomplish an organizational mission or function.'), ('004704','draft','2022-03-04','DISA','policy','Defines the Privacy Act requirements to include in the acquisition contract.','SA-04(11)','N/A','Determine if [SA-04(11)_ODP; Privacy Act requirements for the operation of a system of records are defined] are defined in the acquisition contract for the operation of a system of records on behalf of an organization to accomplish an organizational mission or function.'), ('004705','draft','2022-03-04','DISA','policy','Include organizational data ownership requirements in the acquisition contract.','SA-04(12)(a)','N/A','Determine if organizational data ownership requirements are included in the acquisition contract.'), ('004706','draft','2022-03-04','DISA','policy','Require all data to be removed from the contractor''s system and returned to the organization within an organization-defined time frame.','SA-04(12)(b)','N/A','Determine if all data to be removed from the contractor''s system and returned to the organization is required within [SA-04(12)_ODP; time frame to remove data from a contractor system and return it to the organization is defined].'), ('004707','draft','2022-03-04','DISA','policy','Defines the time frame for returning the data removed from the contractor''s system.','SA-04(12)(b)','N/A','Determine if all data to be removed from the contractor''s system and returned to the organization is required within [SA-04(12)_ODP; time frame to remove data from a contractor system and return it to the organization is defined].'), ('004708','draft','2022-03-04','DISA','policy','Obtain or develop administrator documentation for the system, system component, or system services that describes effective use and maintenance of privacy functions and mechanisms.','SA-05a.02','N/A','Determine if: - administrator documentation for the system, system component, or system service that describes the effective use of security functions and mechanisms is obtained or developed. - administrator documentation for the system, system component, or system service that describes the effective maintenance of security functions and mechanisms is obtained or developed. - administrator documentation for the system, system component, or system service that describes the effective use of privacy functions and mechanisms is obtained or developed. - administrator documentation for the system, system component, or system service that describes the effective maintenance of privacy functions and mechanisms is obtained or developed.'), ('004709','draft','2022-03-04','DISA','policy','Obtain or develop user documentation for the system, system component, or system service that describes user-accessible privacy functions and mechanisms and how to effectively use those functions and mechanisms.','SA-05b.01','N/A','Determine if: - user documentation for the system, system component, or system service that describes user-accessible security functions and mechanisms is obtained or developed. - user documentation for the system, system component, or system service that describes how to effectively use those (user-accessible security) functions and mechanisms is obtained or developed. - user documentation for the system, system component, or system service that describes user-accessible privacy functions and mechanisms is obtained or developed. - user documentation for the system, system component, or system service that describes how to effectively use those (user-accessible privacy) functions and mechanisms is obtained or developed.'), ('004710','draft','2022-03-04','DISA','policy','Obtain or develop user documentation for the system, system component, or system service that describes methods for user interaction which enables individuals to protect individual privacy.','SA-05b.02','N/A','Determine if: - user documentation for the system, system component, or system service that describes methods for user interaction, which enable individuals to use the system, component, or service in a more secure manner is obtained or developed. - user documentation for the system, system component, or system service that describes methods for user interaction, which enable individuals to use the system, component, or service to protect individual privacy is obtained or developed.'), ('004711','draft','2022-03-04','DISA','policy','Obtain or develop user documentation for the system, system component, or system service that describes user responsibilities in maintaining the privacy of individuals.','SA-05b.03','N/A','Determine if: - user documentation for the system, system component, or system service that describes user responsibilities for maintaining the security of the system, component, or service is obtained or developed. - user documentation for the system, system component, or system service that describes user responsibilities for maintaining the privacy of individuals is obtained or developed.'), ('004712','draft','2022-03-04','DISA','policy','Defines the systems security and privacy engineering principles applied to the specification of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('004713','draft','2022-03-04','DISA','policy','Defines the systems security engineering principles applied to the design of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('004714','draft','2022-03-04','DISA','policy','Defines the systems security engineering principles applied to the development of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('004715','draft','2022-03-04','DISA','policy','Defines the systems security engineering principles applied to the implementation of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('004716','draft','2022-03-04','DISA','policy','Defines the systems security engineering principles applied to the modification of the system and system components.','SA-08','N/A','Determine if: - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[01]; systems security engineering principles are defined] are applied in the modification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the specification of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the design of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the development of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the implementation of the system and system components. - [SA-08_ODP[02]; privacy engineering principles are defined] are applied in the modification of the system and system components.'), ('004717','draft','2022-03-04','DISA','policy','Implement the security design principle of clear abstractions.','SA-08(01)','N/A','Determine if the security design principle of clear abstractions is implemented.'), ('004718','draft','2022-03-04','DISA','policy','Implement the security design principle of least common mechanism in organization-defined systems or system components.','SA-08(02)','N/A','Determine if [SA-08(02)_ODP; systems or system components that implement the security design principle of least common mechanism are defined] implement the security design principle of least common mechanism.'), ('004719','draft','2022-03-04','DISA','policy','Defines the systems or system components which will implement the security design principle of least common mechanism.','SA-08(02)','N/A','Determine if [SA-08(02)_ODP; systems or system components that implement the security design principle of least common mechanism are defined] implement the security design principle of least common mechanism.'), ('004720','draft','2022-03-04','DISA','policy','Implement the security design principles of modularity and layering in organization-defined systems or system components.','SA-08(03)','N/A','Determine if: - [SA-08(03)_ODP[01]; systems or system components that implement the security design principle of modularity are defined] implement the security design principle of modularity. - [SA-08(03)_ODP[02]; systems or system components that implement the security design principle of layering are defined] implement the security design principle of layering.'), ('004721','draft','2022-03-04','DISA','policy','Defines the systems or system components which will implement the security design principles of modularity and layering.','SA-08(03)','N/A','Determine if: - [SA-08(03)_ODP[01]; systems or system components that implement the security design principle of modularity are defined] implement the security design principle of modularity. - [SA-08(03)_ODP[02]; systems or system components that implement the security design principle of layering are defined] implement the security design principle of layering.'), ('004722','draft','2022-03-04','DISA','policy','Implement the security design principle of partially ordered dependencies in organization-defined systems or system components.','SA-08(04)','N/A','Determine if [SA-08(04)_ODP; systems or system components that implement the security design principle of partially ordered dependencies are defined] implement the security design principle of partially ordered dependencies.'), ('004723','draft','2022-03-04','DISA','policy','Defines the systems or system components which will implement the security design principle of partially ordered dependencies.','SA-08(04)','N/A','Determine if [SA-08(04)_ODP; systems or system components that implement the security design principle of partially ordered dependencies are defined] implement the security design principle of partially ordered dependencies.'), ('004724','draft','2022-03-04','DISA','policy','Implement the security design principle of efficiently mediated access in organization-defined systems or system components.','SA-08(05)','N/A','Determine if [SA-08(05)_ODP; systems or system components that implement the security design principle of efficiently mediated access are defined] implement the security design principle of efficiently mediated access.'), ('004725','draft','2022-03-04','DISA','policy','Defines the systems or system components which will implement the security design principle of efficiently mediated access.','SA-08(05)','N/A','Determine if [SA-08(05)_ODP; systems or system components that implement the security design principle of efficiently mediated access are defined] implement the security design principle of efficiently mediated access.'), ('004726','draft','2022-03-04','DISA','policy','Implement the security design principle of minimized sharing in organization-defined systems or system components.','SA-08(06)','N/A','Determine if [SA-08(06)_ODP; systems or system components that implement the security design principle of minimized sharing are defined] implement the security design principle of minimized sharing.'), ('004727','draft','2022-03-04','DISA','policy','Defines the systems or system components which will implement the security design principle of minimized sharing.','SA-08(06)','N/A','Determine if [SA-08(06)_ODP; systems or system components that implement the security design principle of minimized sharing are defined] implement the security design principle of minimized sharing.'), ('004728','draft','2022-03-04','DISA','policy','Implement the security design principle of reduced complexity in organization-defined systems or system components.','SA-08(07)','N/A','Determine if [SA-08(07)_ODP; systems or system components that implement the security design principle of reduced complexity are defined] implement the security design principle of reduced complexity.'), ('004729','draft','2022-03-04','DISA','policy','Defines the systems or system components which will implement the security design principle of reduced complexity.','SA-08(07)','N/A','Determine if [SA-08(07)_ODP; systems or system components that implement the security design principle of reduced complexity are defined] implement the security design principle of reduced complexity.'), ('004730','draft','2022-03-04','DISA','policy','Implement the security design principle of secure evolvability in organization-defined systems or system components.','SA-08(08)','N/A','Determine if [SA-08(08)_ODP; systems or system components that implement the security design principle of secure evolvability are defined] implement the security design principle of secure evolvability.'), ('004731','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of secure evolvability.','SA-08(08)','N/A','Determine if [SA-08(08)_ODP; systems or system components that implement the security design principle of secure evolvability are defined] implement the security design principle of secure evolvability.'), ('004732','draft','2022-03-07','DISA','policy','Implement the security design principle of trusted components in organization-defined systems or system components.','SA-08(09)','N/A','Determine if [SA-08(09)_ODP; systems or system components that implement the security design principle of trusted components are defined] implement the security design principle of trusted components.'), ('004733','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of trusted components.','SA-08(09)','N/A','Determine if [SA-08(09)_ODP; systems or system components that implement the security design principle of trusted components are defined] implement the security design principle of trusted components.'), ('004734','draft','2022-03-07','DISA','policy','Implement the security design principle of hierarchical trust in organization-defined systems or system components.','SA-08(10)','N/A','Determine if [SA-08(10)_ODP; systems or system components that implement the security design principle of hierarchical trust are defined] implement the security design principle of hierarchical trust.'), ('004735','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of hierarchical trust.','SA-08(10)','N/A','Determine if [SA-08(10)_ODP; systems or system components that implement the security design principle of hierarchical trust are defined] implement the security design principle of hierarchical trust.'), ('004736','draft','2022-03-07','DISA','policy','Implement the security design principle of inverse modification threshold in organization-defined systems or system components.','SA-08(11)','N/A','Determine if [SA-08(11)_ODP; systems or system components that implement the security design principle of inverse modification threshold are defined] implement the security design principle of inverse modification threshold.'), ('004737','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of inverse modification threshold.','SA-08(11)','N/A','Determine if [SA-08(11)_ODP; systems or system components that implement the security design principle of inverse modification threshold are defined] implement the security design principle of inverse modification threshold.'), ('004738','draft','2022-03-07','DISA','policy','Implement the security design principle of hierarchical protection in organization-defined systems or system components.','SA-08(12)','N/A','Determine if [SA-08(12)_ODP; systems or system components that implement the security design principle of hierarchical protection are defined] implement the security design principle of hierarchical protection.'), ('004739','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of hierarchical protection.','SA-08(12)','N/A','Determine if [SA-08(12)_ODP; systems or system components that implement the security design principle of hierarchical protection are defined] implement the security design principle of hierarchical protection.'), ('004740','draft','2022-03-07','DISA','policy','Implement the security design principle of minimized security elements in organization-defined systems or system components.','SA-08(13)','N/A','Determine if [SA-08(13)_ODP; systems or system components that implement the security design principle of minimized security elements are defined] implement the security design principle of minimized security elements.'), ('004741','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of minimized security elements.','SA-08(13)','N/A','Determine if [SA-08(13)_ODP; systems or system components that implement the security design principle of minimized security elements are defined] implement the security design principle of minimized security elements.'), ('004742','draft','2022-03-07','DISA','policy','Implement the security design principle of least privilege in organization-defined systems or system components.','SA-08(14)','N/A','Determine if [SA-08(14)_ODP; systems or system components that implement the security design principle of least privilege are defined] implement the security design principle of least privilege.'), ('004743','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of least privilege.','SA-08(14)','N/A','Determine if [SA-08(14)_ODP; systems or system components that implement the security design principle of least privilege are defined] implement the security design principle of least privilege.'), ('004744','draft','2022-03-07','DISA','policy','Implement the security design principle of predicate permission in organization-defined systems or system components.','SA-08(15)','N/A','Determine if [SA-08(15)_ODP; systems or system components that implement the security design principle of predicate permission are defined] implement the security design principle of predicate permission.'), ('004745','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of predicate permission.','SA-08(15)','N/A','Determine if [SA-08(15)_ODP; systems or system components that implement the security design principle of predicate permission are defined] implement the security design principle of predicate permission.'), ('004746','draft','2022-03-07','DISA','policy','Implement the security design principle of self-reliant trustworthiness in organization-defined systems or system components.','SA-08(16)','N/A','Determine if [SA-08(16)_ODP; systems or system components that implement the security design principle of self-reliant trustworthiness are defined] implement the security design principle of self-reliant trustworthiness.'), ('004747','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of self-reliant trustworthiness.','SA-08(16)','N/A','Determine if [SA-08(16)_ODP; systems or system components that implement the security design principle of self-reliant trustworthiness are defined] implement the security design principle of self-reliant trustworthiness.'), ('004748','draft','2022-03-07','DISA','policy','Implement the security design principle of secure distributed composition in organization-defined systems or system components.','SA-08(17)','N/A','Determine if [SA-08(17)_ODP; systems or system components that implement the security design principle of secure distributed composition are defined] implement the security design principle of secure distributed composition.'), ('004749','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of secure distributed composition.','SA-08(17)','N/A','Determine if [SA-08(17)_ODP; systems or system components that implement the security design principle of secure distributed composition are defined] implement the security design principle of secure distributed composition.'), ('004750','draft','2022-03-07','DISA','policy','Implement the security design principle of trusted communication channels in organization-defined systems or system components.','SA-08(18)','N/A','Determine if [SA-08(18)_ODP; systems or system components that implement the security design principle of trusted communications channels are defined] implement the security design principle of trusted communications channels.'), ('004751','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of trusted communication channels.','SA-08(18)','N/A','Determine if [SA-08(18)_ODP; systems or system components that implement the security design principle of trusted communications channels are defined] implement the security design principle of trusted communications channels.'), ('004752','draft','2022-03-07','DISA','policy','Implement the security design principle of continuous protection in organization-defined systems or system components.','SA-08(19)','N/A','Determine if [SA-08(19)_ODP; systems or system components that implement the security design principle of continuous protection are defined] implement the security design principle of continuous protection.'), ('004753','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of continuous protection.','SA-08(19)','N/A','Determine if [SA-08(19)_ODP; systems or system components that implement the security design principle of continuous protection are defined] implement the security design principle of continuous protection.'), ('004754','draft','2022-03-07','DISA','policy','Implement the security design principle of secure metadata management in organization-defined systems or system components.','SA-08(20)','N/A','Determine if [SA-08(20)_ODP; systems or system components that implement the security design principle of secure metadata management are defined] implement the security design principle of secure metadata management.'), ('004755','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of secure metadata management.','SA-08(20)','N/A','Determine if [SA-08(20)_ODP; systems or system components that implement the security design principle of secure metadata management are defined] implement the security design principle of secure metadata management.'), ('004756','draft','2022-03-07','DISA','policy','Implement the security design principle of self-analysis in organization-defined systems or system components.','SA-08(21)','N/A','Determine if [SA-08(21)_ODP; systems or system components that implement the security design principle of self-analysis are defined] implement the security design principle of self-analysis.'), ('004757','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of self-analysis.','SA-08(21)','N/A','Determine if [SA-08(21)_ODP; systems or system components that implement the security design principle of self-analysis are defined] implement the security design principle of self-analysis.'), ('004758','draft','2022-03-07','DISA','policy','Implement the security design principle of accountability and traceability in organization-defined systems or system components.','SA-08(22)','N/A','Determine if: - [SA-08(22)_ODP[01]; systems or system components that implement the security design principle of accountability are defined] implement the security design principle of accountability. - [SA-08(22)_ODP[02]; systems or system components that implement the security design principle of traceability are defined] implement the security design principle of traceability.'), ('004759','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of accountability and traceability.','SA-08(22)','N/A','Determine if: - [SA-08(22)_ODP[01]; systems or system components that implement the security design principle of accountability are defined] implement the security design principle of accountability. - [SA-08(22)_ODP[02]; systems or system components that implement the security design principle of traceability are defined] implement the security design principle of traceability.'), ('004760','draft','2022-03-07','DISA','policy','Implement the security design principle of secure defaults in organization-defined systems or system components.','SA-08(23)','N/A','Determine if [SA-08(23)_ODP; systems or system components that implement the security design principle of secure defaults are defined] implement the security design principle of secure defaults.'), ('004761','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of secure defaults.','SA-08(23)','N/A','Determine if [SA-08(23)_ODP; systems or system components that implement the security design principle of secure defaults are defined] implement the security design principle of secure defaults.'), ('004762','draft','2022-03-07','DISA','policy','Implement the security design principle of secure failure and recovery in organization-defined systems or system components.','SA-08(24)','N/A','Determine if: - [SA-08(24)_ODP[01]; systems or system components that implement the security design principle of secure failure are defined] implement the security design principle of secure failure. - [SA-08(24)_ODP[02]; systems or system components that implement the security design principle of secure recovery are defined] implement the security design principle of secure recovery. '), ('004763','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of secure failure and recovery.','SA-08(24)','N/A','Determine if: - [SA-08(24)_ODP[01]; systems or system components that implement the security design principle of secure failure are defined] implement the security design principle of secure failure. - [SA-08(24)_ODP[02]; systems or system components that implement the security design principle of secure recovery are defined] implement the security design principle of secure recovery. '), ('004764','draft','2022-03-07','DISA','policy','Implement the security design principle of economic security in organization-defined systems or system components.','SA-08(25)','N/A','Determine if [SA-08(25)_ODP; systems or system components that implement the security design principle of economic security are defined] implement the security design principle of economic security.'), ('004765','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of economic security.','SA-08(25)','N/A','Determine if [SA-08(25)_ODP; systems or system components that implement the security design principle of economic security are defined] implement the security design principle of economic security.'), ('004766','draft','2022-03-07','DISA','policy','Implement the security design principle of performance security in organization-defined systems or system components.','SA-08(26)','N/A','Determine if [SA-08(26)_ODP; systems or system components that implement the security design principle of performance security are defined] implement the security design principle of performance security.'), ('004767','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of performance security.','SA-08(26)','N/A','Determine if [SA-08(26)_ODP; systems or system components that implement the security design principle of performance security are defined] implement the security design principle of performance security.'), ('004768','draft','2022-03-07','DISA','policy','Implement the security design principle of human factored security in organization-defined systems or system components.','SA-08(27)','N/A','Determine if [SA-08(27)_ODP; systems or system components that implement the security design principle of human factored security are defined] implement the security design principle of human factored security.'), ('004769','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of human factored security.','SA-08(27)','N/A','Determine if [SA-08(27)_ODP; systems or system components that implement the security design principle of human factored security are defined] implement the security design principle of human factored security.'), ('004770','draft','2022-03-07','DISA','policy','Implement the security design principle of acceptable security in organization-defined systems or system components.','SA-08(28)','N/A','Determine if [SA-08(28)_ODP; systems or system components that implement the security design principle of acceptable security are defined] implement the security design principle of acceptable security.'), ('004771','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of acceptable security.','SA-08(28)','N/A','Determine if [SA-08(28)_ODP; systems or system components that implement the security design principle of acceptable security are defined] implement the security design principle of acceptable security.'), ('004772','draft','2022-03-07','DISA','policy','Implement the security design principle of repeatable and documented procedures in organization-defined systems or system components.','SA-08(29)','N/A','Determine if [SA-08(29)_ODP; systems or system components that implement the security design principle of repeatable and documented procedures are defined] implement the security design principle of repeatable and documented procedures.'), ('004773','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of repeatable and documented procedures.','SA-08(29)','N/A','Determine if [SA-08(29)_ODP; systems or system components that implement the security design principle of repeatable and documented procedures are defined] implement the security design principle of repeatable and documented procedures.'), ('004774','draft','2022-03-07','DISA','policy','Implement the security design principle of procedural rigor in organization-defined systems or system components.','SA-08(30)','N/A','Determine if [SA-08(30)_ODP; systems or system components that implement the security design principle of procedural rigor are defined] implement the security design principle of procedural rigor.'), ('004775','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of procedural rigor.','SA-08(30)','N/A','Determine if [SA-08(30)_ODP; systems or system components that implement the security design principle of procedural rigor are defined] implement the security design principle of procedural rigor.'), ('004776','draft','2022-03-07','DISA','policy','Implement the security design principle of secure system modification in organization-defined systems or system components.','SA-08(31)','N/A','Determine if [SA-08(31)_ODP; systems or system components that implement the security design principle of secure system modification are defined] implement the security design principle of secure system modification.'), ('004777','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of secure system modification.','SA-08(31)','N/A','Determine if [SA-08(31)_ODP; systems or system components that implement the security design principle of secure system modification are defined] implement the security design principle of secure system modification.'), ('004778','draft','2022-03-07','DISA','policy','Implement the security design principle of sufficient documentation in organization-defined systems or system components.','SA-08(32)','N/A','Determine if [SA-08(32)_ODP; systems or system components that implement the security design principle of sufficient documentation are defined] implement the security design principle of sufficient documentation.'), ('004779','draft','2022-03-07','DISA','policy','Defines the systems or system components which will implement the security design principle of sufficient documentation.','SA-08(32)','N/A','Determine if [SA-08(32)_ODP; systems or system components that implement the security design principle of sufficient documentation are defined] implement the security design principle of sufficient documentation.'), ('004780','draft','2022-03-07','DISA','policy','Implement the privacy principle of minimization using organization-defined processes.','SA-08(33)','N/A','Determine if the privacy principle of minimization is implemented using [SA-08(33)_ODP; processes that implement the privacy principle of minimization are defined].'), ('004781','draft','2022-03-07','DISA','policy','Defines the processes for implementing the privacy principle of minimization.','SA-08(33)','N/A','Determine if the privacy principle of minimization is implemented using [SA-08(33)_ODP; processes that implement the privacy principle of minimization are defined].'), ('004782','draft','2022-03-07','DISA','policy','Require that providers of external system services comply with organizational privacy requirements.','SA-09a.','N/A','Determine if: - providers of external system services comply with organizational security requirements. - providers of external system services comply with organizational privacy requirements. - providers of external system services employ [SA-09_ODP[01]; controls to be employed by external system service providers are defined].'), ('004783','draft','2022-03-07','DISA','policy','Require that providers of external system services employ organization-defined controls.','SA-09a.','N/A','Determine if: - providers of external system services comply with organizational security requirements. - providers of external system services comply with organizational privacy requirements. - providers of external system services employ [SA-09_ODP[01]; controls to be employed by external system service providers are defined].'), ('004784','draft','2022-03-07','DISA','policy','Defines the controls for complying with organizational security and privacy requirements.','SA-09a.','N/A','Determine if: - providers of external system services comply with organizational security requirements. - providers of external system services comply with organizational privacy requirements. - providers of external system services employ [SA-09_ODP[01]; controls to be employed by external system service providers are defined].'), ('004785','draft','2022-03-07','DISA','policy','Define and document organizational oversight with regard to external system services.','SA-09b.','N/A','Determine if: - organizational oversight with regard to external system services are defined and documented. - user roles and responsibilities with regard to external system services are defined and documented.'), ('004786','draft','2022-03-07','DISA','policy','Define and document user roles and responsibilities with regard to external system services.','SA-09b.','N/A','Determine if: - organizational oversight with regard to external system services are defined and documented. - user roles and responsibilities with regard to external system services are defined and documented.'), ('004787','draft','2022-03-07','DISA','policy','Establish trust relationships with external service providers based on organization-defined privacy requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('004788','draft','2022-03-07','DISA','policy','Document trust relationships with external service providers based on organization-defined privacy requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('004789','draft','2022-03-07','DISA','policy','Maintain trust relationships with external service providers based on organization-defined privacy requirements, properties, factors, or conditions defining acceptable trust relationships.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('004790','draft','2022-03-07','DISA','policy','Defines privacy requirements, properties, factors, or conditions defining acceptable trust relationships with external service providers.','SA-09(03)','N/A','Determine if: - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[01]; security requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are established and documented. - trust relationships with external service provides based on [SA-09(03)_ODP[02]; privacy requirements, properties, factors, or conditions defining acceptable trust relationships on which a trust relationship is maintained are defined] are maintained.'), ('004791','draft','2022-03-07','DISA','policy','Maintain exclusive control of cryptographic keys for encrypted material stored or transmitted through an external system.','SA-09(06)','N/A','Determine if exclusive control of cryptographic keys is maintained for encrypted material stored or transmitted through an external system.'), ('004792','draft','2022-03-07','DISA','policy','Provide the capability to check the integrity of organizational information while it resides in the external system.','SA-09(07)','N/A','Determine if the capability is provided to check the integrity of information while it resides in the external system.'), ('004793','draft','2022-03-07','DISA','policy','Restrict the geographic location of information processing and data storage to facilities located within the legal jurisdictional boundary of the United States.','SA-09(08)','N/A','Determine if the geographic location of information processing and data storage is restricted to facilities located within the legal jurisdictional boundary of the United States.'), ('004794','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to document the potential privacy impacts of approved changes to the system, component, or service.','SA-10d.','N/A','Determine if: - the developer of the system, system component, or system service is required to document approved changes to the system, component, or service. - the developer of the system, system component, or system service is required to document the potential security impacts of approved changes. - the developer of the system, system component, or system service is required to document the potential privacy impacts of approved changes.'), ('004795','draft','2022-03-07','DISA','policy','Require organization-defined security and privacy representatives to be included in the organization-defined configuration change management and control process.','SA-10(07)','N/A','Determine if: - [SA-10(07)_ODP[01]; security representatives to be included in the configuration change management and control process are defined] are required to be included in the [SA-10(07)_ODP[03]; configuration change management and control processes in which security representatives are required to be included are defined]. - [SA-10(07)_ODP[02]; privacy representatives to be included in the configuration change management and control process are defined] are required to be included in the [SA-10(07)_ODP[04]; configuration change management and control processes in which privacy representatives are required to be included are defined].'), ('004796','draft','2022-03-07','DISA','policy','Defines the security and privacy representatives to be included the organization-defined configuration change management and control process.','SA-10(07)','N/A','Determine if: - [SA-10(07)_ODP[01]; security representatives to be included in the configuration change management and control process are defined] are required to be included in the [SA-10(07)_ODP[03]; configuration change management and control processes in which security representatives are required to be included are defined]. - [SA-10(07)_ODP[02]; privacy representatives to be included in the configuration change management and control process are defined] are required to be included in the [SA-10(07)_ODP[04]; configuration change management and control processes in which privacy representatives are required to be included are defined].'), ('004797','draft','2022-03-07','DISA','policy','Defines the configuration change management and control process required for the organization-defined security and privacy representatives.','SA-10(07)','N/A','Determine if: - [SA-10(07)_ODP[01]; security representatives to be included in the configuration change management and control process are defined] are required to be included in the [SA-10(07)_ODP[03]; configuration change management and control processes in which security representatives are required to be included are defined]. - [SA-10(07)_ODP[02]; privacy representatives to be included in the configuration change management and control process are defined] are required to be included in the [SA-10(07)_ODP[04]; configuration change management and control processes in which privacy representatives are required to be included are defined].'), ('004798','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to develop a plan for ongoing privacy control assessment.','SA-11a.','N/A','Determine if: - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for privacy assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing privacy assessments.'), ('004799','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to implement a plan for ongoing privacy control assessment.','SA-11a.','N/A','Determine if: - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing security assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to develop a plan for privacy assessments. - the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to implement a plan for ongoing privacy assessments.'), ('004800','draft','2022-03-07','DISA','policy','Defines the frequency that the unit, integration, system, and/or regression testing/evaluation is performed at an organization-defined depth and coverage.','SA-11b.','N/A','Determine if the developer of the system, system component, or system service is required at all post-design stages of the system development life cycle to perform [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation [SA-11_ODP[02]; frequency at which to conduct [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation is defined] at [SA-11_ODP[03]; depth and coverage of [SA-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {unit; integration; system; regression}] testing/evaluation is defined].'), ('004801','draft','2022-03-07','DISA','policy','Use the following contextual information.','SA-11(02)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined].'), ('004802','draft','2022-03-07','DISA','policy','Defines the information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels.','SA-11(02)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that uses [SA-11(02)_ODP[01]; information concerning impact, environment of operations, known or assumed threats, and acceptable risk levels to be used as contextual information for threat modeling and vulnerability analyses is defined].'), ('004803','draft','2022-03-07','DISA','policy','Employ the following tools and methods.','SA-11(02)(b)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined].'), ('004804','draft','2022-03-07','DISA','policy','Defines the tools and methods to be employed.','SA-11(02)(b)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that employs [SA-11(02)_ODP[02]; the tools and methods to be employed for threat modeling and vulnerability analyses are defined].'), ('004805','draft','2022-03-07','DISA','policy','Conduct the modeling and analyses as the following level of rigor.','SA-11(02)(c)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling at [SA-11(02)_ODP[03]; the breadth and depth of threat modeling to be conducted is defined] during development of the system, component, or service. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that conducts modeling and analyses at [SA-11(02)_ODP[04]; the breadth and depth of vulnerability analyses to be conducted is defined].'), ('004806','draft','2022-03-07','DISA','policy','Defines the breadth and depth of modeling and analyses the level of rigor will be conducted.','SA-11(02)(c)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling at [SA-11(02)_ODP[03]; the breadth and depth of threat modeling to be conducted is defined] during development of the system, component, or service. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that conducts modeling and analyses at [SA-11(02)_ODP[04]; the breadth and depth of vulnerability analyses to be conducted is defined].'), ('004807','draft','2022-03-07','DISA','policy','Produces evidence that meets the following acceptance criteria.','SA-11(02)(d)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined].'), ('004808','draft','2022-03-07','DISA','policy','Defines the acceptance criteria that meets the requirement for producing evidence.','SA-11(02)(d)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined].'), ('004809','draft','2022-03-07','DISA','policy','Require an independent agent satisfying organization-defined independence criteria to verify the correct implementation of the developer privacy assessment plan.','SA-11(02)(d)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined].'), ('004810','draft','2022-03-07','DISA','policy','Require an independent agent satisfying organization-defined independence criteria to verify the evidence produced during privacy testing and evaluation.','SA-11(02)(d)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined].'), ('004811','draft','2022-03-07','DISA','policy','Defines the independence criteria the independent agent must satisfy prior to verifying the correct implementation of the developer privacy assessment plan and the evidence produced during privacy testing and evaluation.','SA-11(02)(d)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform threat modeling during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform threat modeling during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[05]; acceptance criteria to be met by produced evidence for threat modeling are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during development of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined]. - the developer of the system, system component, or system service is required to perform vulnerability analyses during the subsequent testing and evaluation of the system, component, or service that produces evidence that meets [SA-11(02)_ODP[06]; acceptance criteria to be met by produced evidence for vulnerability analyses are defined].'), ('004812','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to perform penetration testing at an organization-defined breadth and depth of testing.','SA-11(05)(a)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform penetration testing at the following level of rigor: [SA-11(05)_ODP[01]; the breadth of penetration testing is defined]. - the developer of the system, system component, or system service is required to perform penetration testing at the following level of rigor: [SA-11(05)_ODP[02]; the depth of penetration testing is defined].'), ('004813','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to perform penetration testing under organization-defined constraints.','SA-11(05)(b)','N/A','Determine if the developer of the system, system component, or system service is required to perform penetration testing under [SA-11(05)_ODP[03]; constraints of penetration testing are defined].'), ('004814','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to employ interactive application security testing tools to identify flaws.','SA-11(09)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ interactive application security testing tools to identify flaws. - the developer of the system, system component, or system service is required to document the results of flaw identification.'), ('004815','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to employ interactive application security testing tools to document the results.','SA-11(09)','N/A','Determine if: - the developer of the system, system component, or system service is required to employ interactive application security testing tools to identify flaws. - the developer of the system, system component, or system service is required to document the results of flaw identification.'), ('004816','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to follow a documented development process that explicitly addresses privacy requirements.','SA-15a.01','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process that explicitly addresses security requirements. - the developer of the system, system component, or system service is required to follow a documented development process that explicitly addresses privacy requirements.'), ('004817','draft','2022-03-07','DISA','policy','Review the development process in accordance with organization-defined frequency to determine if the development process selected and employed can satisfy organization-defined privacy requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('004818','draft','2022-03-07','DISA','policy','Review the development standards in accordance with organization-defined frequency to determine if the development standards selected and employed can satisfy organization-defined privacy requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('004819','draft','2022-03-07','DISA','policy','Review the development tools in accordance with organization-defined frequency to determine if the development tools selected and employed can satisfy organization-defined privacy requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('004820','draft','2022-03-07','DISA','policy','Review the development tool options/configurations in accordance with organization-defined frequency to determine if the development tool options and tool configurations selected and employed can satisfy organization-defined privacy requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('004821','draft','2022-03-07','DISA','policy','Defines the frequency on which to review the development process, standards, tools, and tool options/configurations to determine if the process, standards, tools, and tool options and tool configurations selected and employed can satisfy organization-defined privacy requirements.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('004822','draft','2022-03-07','DISA','policy','Defines the privacy requirements that must be satisfied by conducting a review of the development process, standards, tools, and tool options and tool configurations.','SA-15b.','N/A','Determine if: - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[02]; security requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined]. - the developer of the system, system component, or system service is required to follow a documented development process in which the development process, standards, tools, tool options, and tool configurations are reviewed [SA-15_ODP[01]; frequency at which to review the development process, standards, tools, tool options, and tool configurations is defined] to determine that the process, standards, tools, tool options, and tool configurations selected and employed satisfy [SA-15_ODP[03]; privacy requirements to be satisfied by the process, standards, tools, tool options, and tool configurations are defined].'), ('004823','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to select a privacy tracking tool for use during the development process.','SA-15(02)','N/A','Determine if: - the developer of the system, system component, or system service is required to select and employ security tracking tools for use during the development process. - the developer of the system, system component, or system service is required to select and employ privacy tracking tools for use during the development process.'), ('004824','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to employ a privacy tracking tool for use during the development process.','SA-15(02)','N/A','Determine if: - the developer of the system, system component, or system service is required to select and employ security tracking tools for use during the development process. - the developer of the system, system component, or system service is required to select and employ privacy tracking tools for use during the development process.'), ('004825','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to perform a criticality analysis at the organization-defined decision points in the system development life cycle.','SA-15(03)(a)','N/A','Determine if the developer of the system, system component, or system service is required to perform a criticality analysis at [SA-15(03)_ODP[01]; decision points in the system development life cycle are defined] in the system development life cycle.'), ('004826','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to perform a criticality analysis at an organization-defined breadth/depth of criticality analysis.','SA-15(03)(b)','N/A','Determine if: - the developer of the system, system component, or system service is required to perform a criticality analysis at the following rigor level: [SA-15(03)_ODP[02]; the breadth of criticality analysis is defined]. - the developer of the system, system component, or system service is required to perform a criticality analysis at the following rigor level: [SA-15(03)_ODP[03]; the depth of criticality analysis is defined].'), ('004827','draft','2022-03-07','DISA','policy','Defines the frequency for performing an automated vulnerability analysis using organization-defined tools.','SA-15(07)(a)','N/A','Determine if the developer of the system, system component, or system service is required to perform automated vulnerability analysis [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] using [SA-15(07)_ODP[02]; tools used to perform automated vulnerability analysis are defined].'), ('004828','draft','2022-03-07','DISA','policy','Defines the frequency for determining the exploitation potential for discovered vulnerabilities.','SA-15(07)(b)','N/A','Determine if the developer of the system, system component, or system service is required to determine the exploitation potential for discovered vulnerabilities [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined].'), ('004829','draft','2022-03-07','DISA','policy','Defines the frequency for determining potential risk mitigations for delivered vulnerabilities.','SA-15(07)(c)','N/A','Determine if the developer of the system, system component, or system service is required to determine potential risk mitigations [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] for delivered vulnerabilities.'), ('004830','draft','2022-03-07','DISA','policy','Defines the frequency for delivering the outputs of the tools and results of the vulnerability analysis to organization-defined personnel or roles.','SA-15(07)(d)','N/A','Determine if the developer of the system, system component, or system service is required to deliver the outputs of the tools and results of the analysis [SA-15(07)_ODP[01]; frequency at which to conduct vulnerability analysis is defined] to [SA-15(07)_ODP[03]; personnel or roles to whom the outputs of tools and results of the analysis are to be delivered is/are defined].'), ('004831','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to implement an incident response plan.','SA-15(10)','N/A','Determine if: - the developer of the system, system component, or system service is required to provide an incident response plan. - the developer of the system, system component, or system service is required to implement an incident response plan. - the developer of the system, system component, or system service is required to test an incident response plan.'), ('004832','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to test an incident response plan.','SA-15(10)','N/A','Determine if: - the developer of the system, system component, or system service is required to provide an incident response plan. - the developer of the system, system component, or system service is required to implement an incident response plan. - the developer of the system, system component, or system service is required to test an incident response plan.'), ('004833','draft','2022-03-07','DISA','policy','Require the developer of the system or system component to archive the system or component to be released or delivered together with the corresponding evidence supporting the final privacy review.','SA-15(11)','N/A','Determine if the developer of the system or system component is required to archive the system or component to be released or delivered together with the corresponding evidence supporting the final security and privacy review.'), ('004834','draft','2022-03-07','DISA','policy','Require the developer of the system or system component to minimize the use of personally identifiable information in development and test environments.','SA-15(12)','N/A','Determine if the developer of the system or system component is required to minimize the use of personally identifiable information in development and test environments.'), ('004835','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to provide organization-defined training on the correct use and operation of the implemented privacy functions, controls, and/or mechanisms.','SA-16','N/A','Determine if the developer of the system, system component, or system service is required to provide [SA-16_ODP; training on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms provided by the developer of the system, system component, or system service is defined] on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms.'), ('004836','draft','2022-03-07','DISA','policy','Defines the training the developer of the system, system component, or information system service is required to provide on the correct use and operation of the implemented privacy functions, controls, and/or mechanisms.','SA-16','N/A','Determine if the developer of the system, system component, or system service is required to provide [SA-16_ODP; training on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms provided by the developer of the system, system component, or system service is defined] on the correct use and operation of the implemented security and privacy functions, controls, and/or mechanisms.'), ('004837','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to produce a privacy architecture.',NULL,'N/A',NULL), ('004838','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to produce a privacy architecture that is consistent with and supportive of the organization''s privacy architecture which is established within and is an integrated part of the organization''s enterprise architecture.','SA-17a.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that are consistent with the organization''s security architecture, which is an integral part the organization''s enterprise architecture. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that are consistent with the organization''s privacy architecture, which is an integral part the organization''s enterprise architecture.'), ('004839','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to produce a privacy architecture that accurately and completely describes the required privacy functionality.','SA-17b.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that accurately and completely describe the required security functionality and the allocation of controls among physical and logical components. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that accurately and completely describe the required privacy functionality and the allocation of controls among physical and logical components.'), ('004840','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to produce a privacy architecture that accurately and completely describes the allocation of privacy controls among physical and logical components.','SA-17b.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that accurately and completely describe the required security functionality and the allocation of controls among physical and logical components. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that accurately and completely describe the required privacy functionality and the allocation of controls among physical and logical components.'), ('004841','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to produce a privacy architecture that expresses how individual privacy functions, mechanisms, and services work together to provide required privacy capabilities and a unified approach to protection.','SA-17c.','N/A','Determine if: - the developer of the system, system component, or system service is required to produce a design specification and security architecture that express how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection. - the developer of the system, system component, or system service is required to produce a design specification and privacy architecture that express how individual privacy functions, mechanisms, and services work together to provide required privacy capabilities and a unified approach to protection.'), ('004842','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system to produce, as an integral part of the development process, a formal policy model describing the organization-defined elements of organizational privacy policy to be enforced.','SA-17(01)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[01]; organizational security policy to be enforced is defined] to be enforced. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[02]; organizational privacy policy to be enforced is defined] to be enforced.'), ('004843','draft','2022-03-07','DISA','policy','Defines the elements of organizational privacy policy to be described in the formal policy model for enforcement on the system, system component, or system service.','SA-17(01)(a)','N/A','Determine if: - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[01]; organizational security policy to be enforced is defined] to be enforced. - as an integral part of the development process, the developer of the system, system component, or system service is required to produce a formal policy model describing the [SA-17(01)_ODP[02]; organizational privacy policy to be enforced is defined] to be enforced.'), ('004844','draft','2022-03-07','DISA','policy','Require the developer of the system, system component, or system service to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational privacy policy when implemented.','SA-17(01)(b)','N/A','Determine if: - the developer of the system, system component, or system service is required to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational security policy when implemented. - the developer of the system, system component, or system service is required to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational privacy policy when implemented.'), ('004845','draft','2022-03-07','DISA','policy','Design organization-defined critical systems or system components with coordinated behavior to implement organization-defined capabilities, by system or component.','SA-17(08)','N/A','Determine if [SA-17(08)_ODP[01]; critical systems or system components are defined] are designed with coordinated behavior to implement [SA-17(08)_ODP[02]; capabilities to be implemented by systems or components are defined].'), ('004846','draft','2022-03-07','DISA','policy','Defines the critical systems or system components for implementing organization-defined capabilities, by system or component.','SA-17(08)','N/A','Determine if [SA-17(08)_ODP[01]; critical systems or system components are defined] are designed with coordinated behavior to implement [SA-17(08)_ODP[02]; capabilities to be implemented by systems or components are defined].'), ('004847','draft','2022-03-07','DISA','policy','Defines the capabilities, by system or component, for designing organization-defined critical systems or system components.','SA-17(08)','N/A','Determine if [SA-17(08)_ODP[01]; critical systems or system components are defined] are designed with coordinated behavior to implement [SA-17(08)_ODP[02]; capabilities to be implemented by systems or components are defined].'), ('004848','draft','2022-03-07','DISA','policy','Use different designs for organization-defined critical systems or system components to satisfy a common set of requirements or to provide equivalent functionality.','SA-17(09)','N/A','Determine if different designs are used for [SA-17(09)_ODP; critical systems or system components to be designed differently are defined] to satisfy a common set of requirements or to provide equivalent functionality.'), ('004849','draft','2022-03-07','DISA','policy','Defines the critical systems or system components for satisfying a common set of requirements or to provide equivalent functionality.','SA-17(09)','N/A','Determine if different designs are used for [SA-17(09)_ODP; critical systems or system components to be designed differently are defined] to satisfy a common set of requirements or to provide equivalent functionality.'), ('004850','draft','2022-03-07','DISA','policy','Employ design; modification; augmentation; and/or reconfiguration on organization-defined systems or system components supporting mission essential services or functions to increase the trustworthiness in those systems or components.','SA-23','N/A','Determine if [SA-23_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {design modification; augmentation; reconfiguration}] is employed on [SA-23_ODP[02]; systems or system components supporting mission-essential services or functions are defined] supporting essential services or functions to increase the trustworthiness in those systems or components.'), ('004851','draft','2022-03-07','DISA','policy','Defines the systems or system components for supporting mission essential services or functions.','SA-23','N/A','Determine if [SA-23_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {design modification; augmentation; reconfiguration}] is employed on [SA-23_ODP[02]; systems or system components supporting mission-essential services or functions are defined] supporting essential services or functions to increase the trustworthiness in those systems or components.'), ('004852','draft','2022-03-07','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level system and communications protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SC-01a.01(a)','N/A','Determine if: - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses purpose. - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses scope. - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses roles. - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses responsibilities. - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses management commitment. - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses coordination among organizational entities. - the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy addresses compliance.'), ('004853','draft','2022-03-07','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system-level a system and communications protection policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','SC-01a.01(b)','N/A','Determine if the [SC-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business-process-level; system-level}] system and communications protection policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004854','draft','2022-03-07','DISA','policy','Develop and document system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls.','SC-01a.02','N/A','Determine if: - system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls are developed and documented. - the system and communications protection procedures are disseminated to [SC-01_ODP[02]; personnel or roles to whom the system and communications protection procedures are to be disseminated is/are defined].'), ('004855','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the development and documentation of the system and communications protection policy.','SC-01b.','N/A','Determine if the [SC-01_ODP[04]; an official to manage the system and communications protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures.'), ('004856','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the development and documentation of the system and communications protection procedures.','SC-01b.','N/A','Determine if the [SC-01_ODP[04]; an official to manage the system and communications protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures.'), ('004857','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the dissemination of the system and communications protection policy.','SC-01b.','N/A','Determine if the [SC-01_ODP[04]; an official to manage the system and communications protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures.'), ('004858','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the dissemination of the system and communications protection procedures.','SC-01b.','N/A','Determine if the [SC-01_ODP[04]; an official to manage the system and communications protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures.'), ('004859','draft','2022-03-07','DISA','policy','Defines the official to manage the development, documentation, and dissemination of the system and communications protection policy.','SC-01b.','N/A','Determine if the [SC-01_ODP[04]; an official to manage the system and communications protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures.'), ('004860','draft','2022-03-07','DISA','policy','Defines the official to manage the development, documentation, and dissemination of the system and communications protection procedures.','SC-01b.','N/A','Determine if the [SC-01_ODP[04]; an official to manage the system and communications protection policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and communications protection policy and procedures.'), ('004861','draft','2022-03-07','DISA','policy','Review and update the current system and communications protection policy following organization-defined events.','SC-01c.01','N/A','Determine if: - the current system and communications protection policy is reviewed and updated [SC-01_ODP[05]; the frequency at which the current system and communications protection policy is reviewed and updated is defined]. - the current system and communications protection policy is reviewed and updated following [SC-01_ODP[06]; events that would require the current system and communications protection policy to be reviewed and updated are defined].'), ('004862','draft','2022-03-07','DISA','policy','Defines the events following reviewing and updating the current system and communications protection policy.','SC-01c.01','N/A','Determine if: - the current system and communications protection policy is reviewed and updated [SC-01_ODP[05]; the frequency at which the current system and communications protection policy is reviewed and updated is defined]. - the current system and communications protection policy is reviewed and updated following [SC-01_ODP[06]; events that would require the current system and communications protection policy to be reviewed and updated are defined].'), ('004863','draft','2022-03-07','DISA','policy','Review and update the current system and communications protection procedures following organization-defined events.','SC-01c.02','N/A','Determine if: - the current system and communications protection procedures are reviewed and updated [SC-01_ODP[07]; the frequency at which the current system and communications protection procedures are reviewed and updated is defined]. - the current system and communications protection procedures are reviewed and updated following [SC-01_ODP[08]; events that would require the system and communications protection procedures to be reviewed and updated are defined].'), ('004864','draft','2022-03-07','DISA','policy','Defines the events following reviewing and updating the current system and communications protection procedures.','SC-01c.02','N/A','Determine if: - the current system and communications protection procedures are reviewed and updated [SC-01_ODP[07]; the frequency at which the current system and communications protection procedures are reviewed and updated is defined]. - the current system and communications protection procedures are reviewed and updated following [SC-01_ODP[08]; events that would require the system and communications protection procedures to be reviewed and updated are defined].'), ('004865','draft','2022-03-07','DISA','technical','Store state information from applications and software separately.','SC-02(02)','N/A','Determine if state information is stored separately from applications and software.'), ('004866','draft','2022-03-07','DISA','technical','Employ organization-defined controls by type of denial-of-service to achieve the denial-of-service objective.','SC-05b.','N/A','Determine if [SC-05_ODP[03]; controls to achieve the denial-of-service objective by type of denial-of-service event are defined] are employed to achieve the denial-of-service protection objective.'), ('004867','draft','2022-03-07','DISA','technical','Defines the controls by type of denial-of-service event by employing the controls to achieve the denial-of-service objective.','SC-05b.','N/A','Determine if [SC-05_ODP[03]; controls to achieve the denial-of-service objective by type of denial-of-service event are defined] are employed to achieve the denial-of-service protection objective.'), ('004868','draft','2022-03-07','DISA','technical','Connect to external networks or systems only through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational privacy architecture.','SC-07c.','N/A','Determine if external networks or systems are only connected to through managed interfaces consisting of boundary protection devices arranged in accordance with an organizational security and privacy architecture.'), ('004869','draft','2022-03-07','DISA','policy','Prevent unauthorized exchange of control plane traffic with external networks.','SC-07(04)(f)','N/A','Determine if unauthorized exchanges of control plan traffic with external networks are prevented.'), ('004870','draft','2022-03-07','DISA','policy','Publish information to enable remote networks to detect unauthorized control plane traffic from internal networks.','SC-07(04)(g)','N/A','Determine if information is published to enable remote networks to detect unauthorized control plane traffic from internal networks.'), ('004871','draft','2022-03-07','DISA','policy','Filter unauthorized control plane traffic from external networks.','SC-07(04)(h)','N/A','Determine if unauthorized control plane traffic is filtered from external networks.'), ('004872','draft','2022-03-07','DISA','technical','Defines the systems that will deny network communications traffic by default and allow network communications traffic by exception.','SC-07(05)','N/A','Determine if: - network communications traffic is denied by default [SC-07(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {at managed interfaces; for [SC-07(05)_ODP[02]; systems for which network communications traffic is denied by default and network communications traffic is allowed by exception are defined (if selected)]}]. - network communications traffic is allowed by exception [SC-07(05)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {at managed interfaces; for [SC-07(05)_ODP[02]; systems for which network communications traffic is denied by default and network communications traffic is allowed by exception are defined (if selected)]}].'), ('004873','draft','2022-03-07','DISA','technical','Defines the safeguards to prevent split tunneling for remote devices connecting to organizational systems.','SC-07(07)','N/A','Determine if split tunneling is prevented for remote devices connecting to organizational systems unless the split tunnel is securely provisioned using [SC-07(07)_ODP; safeguards to securely provision split tunneling are defined].'), ('004874','draft','2022-03-07','DISA','policy','Conduct exfiltration tests at an organization-defined frequency.','SC-07(10)(b)','N/A','Determine if exfiltration tests are conducted [SC-07(10)_ODP; the frequency for conducting exfiltration tests is defined].'), ('004875','draft','2022-03-07','DISA','policy','Defines the frequency to conduct exfiltration tests.','SC-07(10)(b)','N/A','Determine if exfiltration tests are conducted [SC-07(10)_ODP; the frequency for conducting exfiltration tests is defined].'), ('004876','draft','2022-03-07','DISA','policy','For systems that process personally identifiable information, apply organization-defined processing rules to data elements of personally identifiable information.','SC-07(24)(a)','N/A','Determine if [SC-07(24)_ODP; processing rules for systems that process personally identifiable information are defined] are applied to data elements of personally identifiable information on systems that process personally identifiable information.'), ('004877','draft','2022-03-07','DISA','policy','Defines processing rules to be applied to data elements of personally identifiable information.','SC-07(24)(a)','N/A','Determine if [SC-07(24)_ODP; processing rules for systems that process personally identifiable information are defined] are applied to data elements of personally identifiable information on systems that process personally identifiable information.'), ('004878','draft','2022-03-07','DISA','policy','For systems that process personally identifiable information, monitor for permitted processing at the external boundary of the system and at key internal boundaries within the system.','SC-07(24)(b)','N/A','Determine if: - permitted processing is monitored at the external interfaces to the systems that process personally identifiable information. - permitted processing is monitored at key internal boundaries within the systems that process personally identifiable information.'), ('004879','draft','2022-03-07','DISA','policy','For systems that process personally identifiable information, document each processing exception.','SC-07(24)(c)','N/A','Determine if each processing exception is documented for systems that process personally identifiable information.'), ('004880','draft','2022-03-07','DISA','policy','For systems that process personally identifiable information, review and remove exceptions that are no longer supported.','SC-07(24)(d)','N/A','Determine if: - exceptions for systems that process personally identifiable information are reviewed. - exceptions for systems that process personally identifiable information that are no longer supported are removed.'), ('004881','draft','2022-03-07','DISA','policy','Prohibit the direct connection of organization-defined unclassified national security system to an external network without the use of organization-defined boundary protection device.','SC-07(25)','N/A','Determine if the direct connection of [SC-07(25)_ODP[01]; the unclassified national security system prohibited from directly connecting to an external network is defined] to an external network without the use of [SC-07(25)_ODP[02]; the boundary protection device required for a direct connection to an external network is defined] is prohibited.'), ('004882','draft','2022-03-07','DISA','policy','Defines the unclassified national security system that is prohibited from connecting to an external network without the use of organization-defined boundary protection device.','SC-07(25)','N/A','Determine if the direct connection of [SC-07(25)_ODP[01]; the unclassified national security system prohibited from directly connecting to an external network is defined] to an external network without the use of [SC-07(25)_ODP[02]; the boundary protection device required for a direct connection to an external network is defined] is prohibited.'), ('004883','draft','2022-03-07','DISA','policy','Defines the boundary protection device that prohibits the direct connection of organization-defined unclassified national security system to an external system.','SC-07(25)','N/A','Determine if the direct connection of [SC-07(25)_ODP[01]; the unclassified national security system prohibited from directly connecting to an external network is defined] to an external network without the use of [SC-07(25)_ODP[02]; the boundary protection device required for a direct connection to an external network is defined] is prohibited.'), ('004884','draft','2022-03-07','DISA','policy','Prohibit the direct connection of a classified national security system to an external network without the use of organization-defined boundary protection device.','SC-07(26)','N/A','Determine if the direct connection of classified national security system to an external network without the use of a [SC-07(26)_ODP; the boundary protection device required for a direct connection to an external network is defined] is prohibited.'), ('004885','draft','2022-03-07','DISA','policy','Defines the boundary protection device that prohibits the direct connection of a classified national security system to an external system.','SC-07(26)','N/A','Determine if the direct connection of classified national security system to an external network without the use of a [SC-07(26)_ODP; the boundary protection device required for a direct connection to an external network is defined] is prohibited.'), ('004886','draft','2022-03-07','DISA','policy','Prohibit the direct connection of organization-defined unclassified non-national security system to an external network without the use of organization-defined boundary protection device.','SC-07(27)','N/A','Determine if the direct connection of [SC-07(27)_ODP[01]; the unclassified, non-national security system prohibited from directly connecting to an external network is defined] to an external network without the use of a [SC-07(27)_ODP[02]; the boundary protection device required for a direct connection of unclassified, non-national security system to an external network is defined] is prohibited.'), ('004887','draft','2022-03-07','DISA','policy','Defines the unclassified non-national security system that is prohibited from connecting to an external network without the use of organization-defined boundary protection device.','SC-07(27)','N/A','Determine if the direct connection of [SC-07(27)_ODP[01]; the unclassified, non-national security system prohibited from directly connecting to an external network is defined] to an external network without the use of a [SC-07(27)_ODP[02]; the boundary protection device required for a direct connection of unclassified, non-national security system to an external network is defined] is prohibited.'), ('004888','draft','2022-03-07','DISA','policy','Defines the boundary protection device that prohibits the direct connection of organization-defined unclassified non-national security system to an external system.','SC-07(27)','N/A','Determine if the direct connection of [SC-07(27)_ODP[01]; the unclassified, non-national security system prohibited from directly connecting to an external network is defined] to an external network without the use of a [SC-07(27)_ODP[02]; the boundary protection device required for a direct connection of unclassified, non-national security system to an external network is defined] is prohibited.'), ('004889','draft','2022-03-07','DISA','policy','Prohibit the direct connection of organization-defined system to a public network.','SC-07(28)','N/A','Determine if the direct connection of the [SC-07(28)_ODP; the system that is prohibited from directly connecting to a public network is defined] to a public network is prohibited.'), ('004890','draft','2022-03-07','DISA','policy','Defines the system that prohibits the direct connection to a public network.','SC-07(28)','N/A','Determine if the direct connection of the [SC-07(28)_ODP; the system that is prohibited from directly connecting to a public network is defined] to a public network is prohibited.'), ('004891','draft','2022-03-07','DISA','technical','Implement physically or logically separate subnetworks to isolate organization-defined critical system components and functions.','SC-07(29)','N/A','Determine if subnetworks are separated [SC-07(29)_ODP[01]; one of the following PARAMETER VALUES is selected: {physically; logically}] to isolate [SC-07(29)_ODP[02]; critical system components and functions to be isolated are defined].'), ('004892','draft','2022-03-07','DISA','technical','Defines the critical system components to implement physically or logically separate subnetworks.','SC-07(29)','N/A','Determine if subnetworks are separated [SC-07(29)_ODP[01]; one of the following PARAMETER VALUES is selected: {physically; logically}] to isolate [SC-07(29)_ODP[02]; critical system components and functions to be isolated are defined].'), ('004893','draft','2022-03-07','DISA','technical','Implement organization-defined protection distribution system to prevent unauthorized disclosure of information, and/or detect changes to information during transmission.','SC-08(05)','N/A','Determine if the [SC-08(05)_ODP[01]; the protected distribution system is defined] is implemented to [SC-08(05)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {prevent unauthorized disclosure of information; detect changes to information}] during transmission.'), ('004894','draft','2022-03-07','DISA','technical','Defines the protected distribution system for preventing unauthorized disclosure of information, and/or detect changes to information during transmission.','SC-08(05)','N/A','Determine if the [SC-08(05)_ODP[01]; the protected distribution system is defined] is implemented to [SC-08(05)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {prevent unauthorized disclosure of information; detect changes to information}] during transmission.'), ('004895','draft','2022-03-07','DISA','technical','Permit users to invoke the trusted communications path for communications between the user and the organization-defined security functions, including at a minimum, authentication and re-authentication.','SC-11b.','N/A','Determine if users are permitted to invoke the trusted communication path for communications between the user and the [SC-11_ODP[02]; security functions of the system are defined] of the system, including authentication and re-authentication, at a minimum.'), ('004896','draft','2022-03-07','DISA','technical','Initiates the trusted communications path for communications between the organization-defined security functions of the system and the user.','SC-11(01)(b)','N/A','Determine if the trusted communication path for communications between the [SC-11(01)_ODP; security functions of the system are defined] of the system and the user is initiated.'), ('004897','draft','2022-03-07','DISA','technical','Defines the security functions to be initiated between the system and the user for trusted communications path for communications.','SC-11(01)(b)','N/A','Determine if the trusted communication path for communications between the [SC-11(01)_ODP; security functions of the system are defined] of the system and the user is initiated.'), ('004898','draft','2022-03-07','DISA','policy','Defines requirements for certificates that are issued for producing, controlling, and distributing asymmetric cryptographic keys.','SC-12(03)','N/A','Determine if: - asymmetric cryptographic keys are produced using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are controlled using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}]. - asymmetric cryptographic keys are distributed using [SC-12(03)_ODP; one of the following PARAMETER VALUES is selected: {NSA-approved key management technology and processes; prepositioned keying material; DoD-approved or DoD-issued Medium Assurance PKI certificates; DoD-approved or DoD-issued Medium Hardware Assurance PKI certificates and hardware security tokens that protect the user''s private key; certificates issued in accordance with organization-defined requirements}].'), ('004899','draft','2022-03-07','DISA','policy','Maintain physical control of cryptographic keys when store information is encrypted by external service providers.','SC-12(06)','N/A','Determine if physical control of cryptographic keys is maintained when stored information is encrypted by external service providers.'), ('004900','draft','2022-03-07','DISA','technical','Determine the organization-defined cryptographic uses.','SC-13b.','N/A','Determine if [SC-13_ODP[02]; types of cryptography for each specified cryptographic use are defined] for each specified cryptographic use (defined in SC-13_ODP[01]) are implemented.'), ('004901','draft','2022-03-07','DISA','technical','Associate organization-defined privacy attributes with information exchanged between systems.','SC-16','N/A','Determine if: - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between system components. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between system components.'), ('004902','draft','2022-03-07','DISA','technical','Associate organization-defined privacy attributes with information exchanged between system components.','SC-16','N/A','Determine if: - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between system components. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between system components.'), ('004903','draft','2022-03-07','DISA','policy','Defines the privacy attributes to associate with the information being exchanged between systems and between system components.','SC-16','N/A','Determine if: - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[01]; security attributes to be associated with information exchanged are defined] are associated with information exchanged between system components. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between systems. - [SC-16_ODP[02]; privacy attributes to be associated with information exchanged are defined] are associated with information exchanged between system components.'), ('004904','draft','2022-03-07','DISA','technical','Verify the integrity of transmitted privacy attributes.','SC-16(01)','N/A','Determine if: - the integrity of transmitted security attributes is verified. - the integrity of transmitted privacy attributes is verified.'), ('004905','draft','2022-03-07','DISA','technical','Implement anti-spoofing mechanisms to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.','SC-16(02)','N/A','Determine if anti-spoofing mechanisms are implemented to prevent adversaries from falsifying the security attributes indicating the successful application of the security process.'), ('004906','draft','2022-03-07','DISA','technical','Implement organization-defined mechanisms or techniques to bind security attributes to transmitted information.','SC-16(03)','N/A','Determine if [SC-16(03)_ODP; mechanisms or techniques to bind security and privacy attributes to transmitted information are defined] are implemented to bind security and privacy attributes to transmitted information.'), ('004907','draft','2022-03-07','DISA','technical','Implement organization-defined mechanisms or techniques to bind privacy attributes to transmitted information.','SC-16(03)','N/A','Determine if [SC-16(03)_ODP; mechanisms or techniques to bind security and privacy attributes to transmitted information are defined] are implemented to bind security and privacy attributes to transmitted information.'), ('004908','draft','2022-03-07','DISA','technical','Defines the mechanisms or techniques for binding security and privacy attributes to transmitted information.','SC-16(03)','N/A','Determine if [SC-16(03)_ODP; mechanisms or techniques to bind security and privacy attributes to transmitted information are defined] are implemented to bind security and privacy attributes to transmitted information.'), ('004909','draft','2022-03-07','DISA','policy','Include only approved trust anchors in trust stores or certificate stores managed by the organization.','SC-17b.','N/A','Determine if only approved trust anchors are included in trust stores or certificate stores managed by the organization.'), ('004910','draft','2022-03-07','DISA','policy','Provide protected storage for cryptographic keys with organization-defined safeguards and/or hardware protected key store.','SC-28(03)','N/A','Determine if protected storage for cryptographic keys is provided using [SC-28(03)_ODP[01]; one of the following PARAMETER VALUES is selected: {[SC-28(03)_ODP[02]; safeguards for protecting the storage of cryptographic keys are defined (if selected)]; hardware-protected key store}].'), ('004911','draft','2022-03-07','DISA','policy','Defines the safeguards for providing protected storage for cryptographic keys.','SC-28(03)','N/A','Determine if protected storage for cryptographic keys is provided using [SC-28(03)_ODP[01]; one of the following PARAMETER VALUES is selected: {[SC-28(03)_ODP[02]; safeguards for protecting the storage of cryptographic keys are defined (if selected)]; hardware-protected key store}].'), ('004912','draft','2022-03-07','DISA','policy','Partition privileged functions into separate physical domains.','SC-32(01)','N/A','Determine if privileged functions are partitioned into separate physical domains.'), ('004913','draft','2022-03-07','DISA','policy','Takes organization-defined actions in response to identified faults, errors, or compromises.','SC-36(01)(b)','N/A','Determine if [SC-36(01)_ODP[02]; actions to be taken in response to identified faults, errors, or compromise are defined] are taken in response to identified faults, errors, or compromise.'), ('004914','draft','2022-03-07','DISA','policy','Defines actions to take in response to identified faults, errors, or compromises.','SC-36(01)(b)','N/A','Determine if [SC-36(01)_ODP[02]; actions to be taken in response to identified faults, errors, or compromise are defined] are taken in response to identified faults, errors, or compromise.'), ('004915','draft','2022-03-07','DISA','policy','Synchronize the organization-defined duplicate systems or system components.','SC-36(02)','N/A','Determine if [SC-36(02)_ODP; duplicate systems or system components to be synchronized are defined] are synchronized.'), ('004916','draft','2022-03-07','DISA','policy','Defines the duplicate systems or system components to be synchronized.','SC-36(02)','N/A','Determine if [SC-36(02)_ODP; duplicate systems or system components to be synchronized are defined] are synchronized.'), ('004917','draft','2022-03-07','DISA','policy','Defines sensors to facilitate an individual''s awareness that personally identifiable information is being collected.','SC-42(04)','N/A','Determine if [SC-42(04)_ODP[01]; measures to facilitate an individual''s awareness that personally identifiable information is being collected are defined] are employed to facilitate an individual''s awareness that personally identifiable information is being collected by [SC-42(04)_ODP[02]; sensors that collect personally identifiable information are defined].'), ('004918','draft','2022-03-07','DISA','policy','Defines measures to facility an individual''s awareness that personally identifiable information is being collected.','SC-42(04)','N/A','Determine if [SC-42(04)_ODP[01]; measures to facilitate an individual''s awareness that personally identifiable information is being collected are defined] are employed to facilitate an individual''s awareness that personally identifiable information is being collected by [SC-42(04)_ODP[02]; sensors that collect personally identifiable information are defined].'), ('004919','draft','2022-03-07','DISA','policy','Employ organization-defined measures to facilitate an individual''s awareness that personally identifiable information is being collected by organization-defined sensors.','SC-42(04)','N/A','Determine if [SC-42(04)_ODP[01]; measures to facilitate an individual''s awareness that personally identifiable information is being collected are defined] are employed to facilitate an individual''s awareness that personally identifiable information is being collected by [SC-42(04)_ODP[02]; sensors that collect personally identifiable information are defined].'), ('004920','draft','2022-03-07','DISA','policy','Defines sensors that are configured to minimize the collection of information about individuals that is not needed.','SC-42(05)','N/A','Determine if the [SC-42(05)_ODP; the sensors that are configured to minimize the collection of unneeded information about individuals are defined] configured to minimize the collection of information about individuals that is not needed are employed.'), ('004921','draft','2022-03-07','DISA','policy','Employ organization-defined sensors that are configured to minimize the collection of information about individuals that is not needed.','SC-42(05)','N/A','Determine if the [SC-42(05)_ODP; the sensors that are configured to minimize the collection of unneeded information about individuals are defined] configured to minimize the collection of information about individuals that is not needed are employed.'), ('004922','draft','2022-03-07','DISA','technical','Synchronize system clocks within and between systems or system components.','SC-45','N/A','Determine if system clocks are synchronized within and between systems and system components.'), ('004923','draft','2022-03-07','DISA','technical','Compare the internal system clocks on an organization-defined frequency with organization-defined authoritative time source.','SC-45(01)(a)','N/A','Determine if the internal system clocks are compared [SC-45(01)_ODP[01]; the frequency at which to compare the internal system clocks with the authoritative time source is defined] with [SC-45(01)_ODP[02]; the authoritative time source to which internal system clocks are to be compared is defined].'), ('004924','draft','2022-03-07','DISA','technical','Defines the frequency for comparing the internal system clocks with organization-defined authoritative time source.','SC-45(01)(a)','N/A','Determine if the internal system clocks are compared [SC-45(01)_ODP[01]; the frequency at which to compare the internal system clocks with the authoritative time source is defined] with [SC-45(01)_ODP[02]; the authoritative time source to which internal system clocks are to be compared is defined].'), ('004925','draft','2022-03-07','DISA','technical','Defines the time source used for comparing the internal system clocks.','SC-45(01)(a)','N/A','Determine if the internal system clocks are compared [SC-45(01)_ODP[01]; the frequency at which to compare the internal system clocks with the authoritative time source is defined] with [SC-45(01)_ODP[02]; the authoritative time source to which internal system clocks are to be compared is defined].'), ('004926','draft','2022-03-07','DISA','technical','Synchronize the internal system clocks to the authoritative time source when the time difference is greater than organization-defined time period.','SC-45(01)(b)','N/A','Determine if the internal system clocks are synchronized with the authoritative time source when the time difference is greater than [SC-45(01)_ODP[03]; the time period to compare the internal system clocks with the authoritative time source is defined].'), ('004927','draft','2022-03-07','DISA','technical','Defines the time period for synchronizing the internal system clocks to the authoritative time source.','SC-45(01)(b)','N/A','Determine if the internal system clocks are synchronized with the authoritative time source when the time difference is greater than [SC-45(01)_ODP[03]; the time period to compare the internal system clocks with the authoritative time source is defined].'), ('004928','draft','2022-03-07','DISA','technical','Identify a secondary authoritative time source that is in a different geographic region than the primary authoritative time source.','SC-45(02)(a)','N/A','Determine if a secondary authoritative time source is identified that is in a different geographic region than the primary authoritative time source.'), ('004929','draft','2022-03-07','DISA','technical','Synchronize the internal system clocks to the secondary authoritative time source if the primary authoritative time source is unavailable.','SC-45(02)(b)','N/A','Determine if the internal system clocks are synchronized to the secondary authoritative time source if the primary authoritative time source is unavailable.'), ('004930','draft','2022-03-07','DISA','technical','Implement a policy enforcement mechanism physically or logically between the physical and/or network interfaces for the connecting security domains.','SC-46','N/A','Determine if a policy enforcement mechanism is [SC-46_ODP; one of the following PARAMETER VALUES is selected: {physically; logically}] implemented between the physical and/or network interfaces for the connecting security domains.'), ('004931','draft','2022-03-07','DISA','policy','Establish organization-defined alternate communications paths for system operations organizational command and control.','SC-47','N/A','Determine if [SC-47_ODP; alternate communication paths for system operations and operational command and control are defined] are established for system operations and operational command and control.'), ('004932','draft','2022-03-07','DISA','policy','Relocate organization-defined sensors and monitoring capabilities to organization-defined locations under organization-defined conditions or circumstances.','SC-48','N/A','Determine if [SC-48_ODP[01]; sensors and monitoring capabilities to be relocated are defined] are relocated to [SC-48_ODP[02]; locations to where sensors and monitoring capabilities are to be relocated are defined] under [SC-48_ODP[03]; conditions or circumstances for relocating sensors and monitoring capabilities are defined].'), ('004933','draft','2022-03-07','DISA','policy','Defines the sensors and monitoring capabilities to be relocated to organization-defined locations.','SC-48','N/A','Determine if [SC-48_ODP[01]; sensors and monitoring capabilities to be relocated are defined] are relocated to [SC-48_ODP[02]; locations to where sensors and monitoring capabilities are to be relocated are defined] under [SC-48_ODP[03]; conditions or circumstances for relocating sensors and monitoring capabilities are defined].'), ('004934','draft','2022-03-07','DISA','policy','Defines the locations of which the organization-defined sensors and monitoring capabilities will be relocated.','SC-48','N/A','Determine if [SC-48_ODP[01]; sensors and monitoring capabilities to be relocated are defined] are relocated to [SC-48_ODP[02]; locations to where sensors and monitoring capabilities are to be relocated are defined] under [SC-48_ODP[03]; conditions or circumstances for relocating sensors and monitoring capabilities are defined].'), ('004935','draft','2022-03-07','DISA','policy','Defines the conditions or circumstances of which the organization-defined sensors and monitoring capabilities are relocated.','SC-48','N/A','Determine if [SC-48_ODP[01]; sensors and monitoring capabilities to be relocated are defined] are relocated to [SC-48_ODP[02]; locations to where sensors and monitoring capabilities are to be relocated are defined] under [SC-48_ODP[03]; conditions or circumstances for relocating sensors and monitoring capabilities are defined].'), ('004936','draft','2022-03-07','DISA','policy','Dynamically relocate organization-defined sensors and monitoring capabilities to organization-defined locations under organization-defined conditions or circumstances.','SC-48(01)','N/A','Determine if [SC-48(01)_ODP[01]; sensors and monitoring capabilities to be dynamically relocated are defined] are dynamically relocated to [SC-48(01)_ODP[02]; locations to where sensors and monitoring capabilities are to be dynamically relocated are defined] under [SC-48(01)_ODP[03]; conditions or circumstances for dynamically relocating sensors and monitoring capabilities are defined].'), ('004937','draft','2022-03-07','DISA','policy','Defines the sensors and monitoring capabilities to be dynamically relocated to organization-defined locations.','SC-48(01)','N/A','Determine if [SC-48(01)_ODP[01]; sensors and monitoring capabilities to be dynamically relocated are defined] are dynamically relocated to [SC-48(01)_ODP[02]; locations to where sensors and monitoring capabilities are to be dynamically relocated are defined] under [SC-48(01)_ODP[03]; conditions or circumstances for dynamically relocating sensors and monitoring capabilities are defined].'), ('004938','draft','2022-03-07','DISA','policy','Defines the locations of which the organization-defined sensors and monitoring capabilities will be dynamically relocated.','SC-48(01)','N/A','Determine if [SC-48(01)_ODP[01]; sensors and monitoring capabilities to be dynamically relocated are defined] are dynamically relocated to [SC-48(01)_ODP[02]; locations to where sensors and monitoring capabilities are to be dynamically relocated are defined] under [SC-48(01)_ODP[03]; conditions or circumstances for dynamically relocating sensors and monitoring capabilities are defined].'), ('004939','draft','2022-03-07','DISA','policy','Defines the conditions or circumstances of which the organization-defined sensors and monitoring capabilities are dynamically relocated.','SC-48(01)','N/A','Determine if [SC-48(01)_ODP[01]; sensors and monitoring capabilities to be dynamically relocated are defined] are dynamically relocated to [SC-48(01)_ODP[02]; locations to where sensors and monitoring capabilities are to be dynamically relocated are defined] under [SC-48(01)_ODP[03]; conditions or circumstances for dynamically relocating sensors and monitoring capabilities are defined].'), ('004940','draft','2022-03-07','DISA','policy','Implement hardware-enforced separation and policy enforcement mechanisms between organization-defined security domains.','SC-49','N/A','Determine if hardware-enforced separation and policy enforcement mechanisms are implemented between [SC-49_ODP; security domains requiring hardware-enforced separation and policy enforcement mechanisms are defined].'), ('004941','draft','2022-03-07','DISA','policy','Defines the security domains for implementing hardware-enforced separation and policy enforcement mechanisms.','SC-49','N/A','Determine if hardware-enforced separation and policy enforcement mechanisms are implemented between [SC-49_ODP; security domains requiring hardware-enforced separation and policy enforcement mechanisms are defined].'), ('004942','draft','2022-03-07','DISA','policy','Implement software-enforced separation and policy enforcement mechanisms between organization-defined security domains.','SC-50','N/A','Determine if software-enforced separation and policy enforcement mechanisms are implemented between [SC-50_ODP; security domains requiring software-enforced separation and policy enforcement mechanisms are defined].'), ('004943','draft','2022-03-07','DISA','policy','Defines the security domains for implementing software-enforced separation and policy enforcement mechanisms.','SC-50','N/A','Determine if software-enforced separation and policy enforcement mechanisms are implemented between [SC-50_ODP; security domains requiring software-enforced separation and policy enforcement mechanisms are defined].'), ('004944','draft','2022-03-07','DISA','policy','Develop and document an organization-level; mission/business process-level; and/or system level system and information integrity policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.','SI-01a.01(b)','N/A','Determine if the [SI-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] system and information integrity policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('004945','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the development and documentation of the system and information integrity policy.','SI-01b.','N/A','Determine if the [SI-01_ODP[04]; an official to manage the system and information integrity policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures.'), ('004946','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the dissemination of the system and information integrity policy.','SI-01b.','N/A','Determine if the [SI-01_ODP[04]; an official to manage the system and information integrity policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures.'), ('004947','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the development and documentation of the system and information integrity procedures.','SI-01b.','N/A','Determine if the [SI-01_ODP[04]; an official to manage the system and information integrity policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures.'), ('004948','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the dissemination of the system and information integrity procedures.','SI-01b.','N/A','Determine if the [SI-01_ODP[04]; an official to manage the system and information integrity policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures.'), ('004949','draft','2022-03-07','DISA','policy','Defines the official designated for managing the development, documentation, and dissemination of the system and information integrity policy.','SI-01b.','N/A','Determine if the [SI-01_ODP[04]; an official to manage the system and information integrity policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures.'), ('004950','draft','2022-03-07','DISA','policy','Defines the official designated for managing the development, documentation, and dissemination of the system and information integrity procedures.','SI-01b.','N/A','Determine if the [SI-01_ODP[04]; an official to manage the system and information integrity policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the system and information integrity policy and procedures.'), ('004951','draft','2022-03-07','DISA','policy','Review and update the current system and information integrity policy following organization-defined events.','SI-01c.01','N/A','Determine if: - the current system and information integrity policy is reviewed and updated [SI-01_ODP[05]; the frequency at which the current system and information integrity policy is reviewed and updated is defined]. - the current system and information integrity policy is reviewed and updated following [SI-01_ODP[06]; events that would require the current system and information integrity policy to be reviewed and updated are defined].'), ('004952','draft','2022-03-07','DISA','policy','Defines the events following reviewing and updating the current system and information integrity policy.','SI-01c.01','N/A','Determine if: - the current system and information integrity policy is reviewed and updated [SI-01_ODP[05]; the frequency at which the current system and information integrity policy is reviewed and updated is defined]. - the current system and information integrity policy is reviewed and updated following [SI-01_ODP[06]; events that would require the current system and information integrity policy to be reviewed and updated are defined].'), ('004953','draft','2022-03-07','DISA','policy','Review and update the current system and information integrity procedures following organization-defined events.','SI-01c.02','N/A','Determine if: - the current system and information integrity procedures are reviewed and updated [SI-01_ODP[07]; the frequency at which the current system and information integrity procedures are reviewed and updated is defined]. - the current system and information integrity procedures are reviewed and updated following [SI-01_ODP[08]; events that would require the system and information integrity procedures to be reviewed and updated are defined].'), ('004954','draft','2022-03-07','DISA','policy','Defines the events following reviewing and updating the current system and information integrity procedures.','SI-01c.02','N/A','Determine if: - the current system and information integrity procedures are reviewed and updated [SI-01_ODP[07]; the frequency at which the current system and information integrity procedures are reviewed and updated is defined]. - the current system and information integrity procedures are reviewed and updated following [SI-01_ODP[08]; events that would require the system and information integrity procedures to be reviewed and updated are defined].'), ('004955','draft','2022-03-07','DISA','policy','Determine if system components have applicable security-related software updates installed using organization-defined mechanisms on an organization-defined frequency.','SI-02(02)','N/A','Determine if system components have applicable security-relevant software and firmware updates installed [SI-02(02)_ODP[02]; the frequency at which to determine if applicable security-relevant software and firmware updates are installed on system components is defined] using [SI-02(02)_ODP[01]; automated mechanisms to determine if applicable security-relevant software and firmware updates are installed on system components are defined].'), ('004956','draft','2022-03-07','DISA','policy','Determine if system components have applicable security-related firmware updates installed using organization-defined mechanisms on an organization-defined frequency.','SI-02(02)','N/A','Determine if system components have applicable security-relevant software and firmware updates installed [SI-02(02)_ODP[02]; the frequency at which to determine if applicable security-relevant software and firmware updates are installed on system components is defined] using [SI-02(02)_ODP[01]; automated mechanisms to determine if applicable security-relevant software and firmware updates are installed on system components are defined].'), ('004957','draft','2022-03-07','DISA','policy','Defines a frequency for installing security-relevant software updates using organization-defined automated mechanisms.','SI-02(02)','N/A','Determine if system components have applicable security-relevant software and firmware updates installed [SI-02(02)_ODP[02]; the frequency at which to determine if applicable security-relevant software and firmware updates are installed on system components is defined] using [SI-02(02)_ODP[01]; automated mechanisms to determine if applicable security-relevant software and firmware updates are installed on system components are defined].'), ('004958','draft','2022-03-07','DISA','policy','Defines a frequency for installing security-relevant firmware updates using organization-defined automated mechanisms.','SI-02(02)','N/A','Determine if system components have applicable security-relevant software and firmware updates installed [SI-02(02)_ODP[02]; the frequency at which to determine if applicable security-relevant software and firmware updates are installed on system components is defined] using [SI-02(02)_ODP[01]; automated mechanisms to determine if applicable security-relevant software and firmware updates are installed on system components are defined].'), ('004959','draft','2022-03-07','DISA','policy','Defines the automated mechanisms for determining if system components have applicable security-related software updates installed.','SI-02(02)','N/A','Determine if system components have applicable security-relevant software and firmware updates installed [SI-02(02)_ODP[02]; the frequency at which to determine if applicable security-relevant software and firmware updates are installed on system components is defined] using [SI-02(02)_ODP[01]; automated mechanisms to determine if applicable security-relevant software and firmware updates are installed on system components are defined].'), ('004960','draft','2022-03-07','DISA','policy','Defines the automated mechanisms for determining if system components have applicable security-related firmware updates installed.','SI-02(02)','N/A','Determine if system components have applicable security-relevant software and firmware updates installed [SI-02(02)_ODP[02]; the frequency at which to determine if applicable security-relevant software and firmware updates are installed on system components is defined] using [SI-02(02)_ODP[01]; automated mechanisms to determine if applicable security-relevant software and firmware updates are installed on system components are defined].'), ('004961','draft','2022-03-07','DISA','policy','Employ automated patch management tools to facilitate flaw remediation to the organization-defined system components.','SI-02(04)','N/A','Determine if automated patch management tools are employed to facilitate flaw remediation to [SI-02(04)_ODP; the system components requiring automated patch management tools to facilitate flaw remediation are defined].'), ('004962','draft','2022-03-07','DISA','policy','Defines the system components on which patch management tools to facilitate flaw remediation are employed.','SI-02(04)','N/A','Determine if automated patch management tools are employed to facilitate flaw remediation to [SI-02(04)_ODP; the system components requiring automated patch management tools to facilitate flaw remediation are defined].'), ('004963','draft','2022-03-07','DISA','policy','Implement signature based and/or non-signature based malicious code protection mechanisms at system entry and exit points to detect and eradicate malicious code.','SI-03a.','N/A','Determine if: - [SI-03_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {signature-based; non-signature-based}] malicious code protection mechanisms are implemented at system entry and exit points to detect malicious code. - [SI-03_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {signature-based; non-signature-based}] malicious code protection mechanisms are implemented at system entry and exit points to eradicate malicious code.'), ('004964','draft','2022-03-07','DISA','policy','Automatically update malicious code protection mechanisms as new releases are available in accordance with organizational configuration management policy.','SI-03b.','N/A','Determine if malicious code protection mechanisms are updated automatically as new releases are available in accordance with organizational configuration management policy and procedures.'), ('004965','draft','2022-03-07','DISA','policy','Automatically update malicious code protection mechanisms as new releases are available in accordance with organizational configuration management procedures.','SI-03b.','N/A','Determine if malicious code protection mechanisms are updated automatically as new releases are available in accordance with organizational configuration management policy and procedures.'), ('004966','draft','2022-03-07','DISA','policy','Configure malicious code protection mechanisms to send alerts to organization-defined personnel in response to malicious code detection.','SI-03c.02','N/A','Determine if: - malicious code protection mechanisms are configured to [SI-03_ODP[04]; one or more of the following PARAMETER VALUES is/are selected: {block malicious code; quarantine malicious code; take [SI-03_ODP[05]; action to be taken in response to malicious code detection are defined (if selected)}] in response to malicious code detection. - malicious code protection mechanisms are configured to send alerts to [SI-03_ODP[06]; personnel or roles to be alerted when malicious code is detected is/are defined] in response to malicious code detection.'), ('004967','draft','2022-03-07','DISA','policy','Analyze detected events and anomalies.','SI-04d.','N/A','Determine if: - detected events are analyzed. - detected anomalies are analyzed.'), ('004968','draft','2022-03-07','DISA','technical','Employ automated mechanisms to support near real-time analysis of events.','SI-04(02)','N/A','Determine if automated tools and mechanisms are employed to support a near real-time analysis of events.'), ('004969','draft','2022-03-07','DISA','technical','Employ automated mechanisms to integrate intrusion detection mechanisms into access control mechanisms.','SI-04(03)','N/A','Determine if: - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into access control mechanisms. - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into flow control mechanisms.'), ('004970','draft','2022-03-07','DISA','technical','Employ automated mechanisms to integrate intrusion detection mechanisms into flow control mechanisms.','SI-04(03)','N/A','Determine if: - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into access control mechanisms. - automated tools and mechanisms are employed to integrate intrusion detection tools and mechanisms into flow control mechanisms.'), ('004971','draft','2022-03-07','DISA','technical','Determine criteria for unusual or unauthorized activities or conditions for inbound communications traffic.','SI-04(04)(a)','N/A','Determine if: - criteria for unusual or unauthorized activities or conditions for inbound communications traffic are defined. - criteria for unusual or unauthorized activities or conditions for outbound communications traffic are defined.'), ('004972','draft','2022-03-07','DISA','technical','Determine criteria for unusual or unauthorized activities or conditions for outbound communications traffic.','SI-04(04)(a)','N/A','Determine if: - criteria for unusual or unauthorized activities or conditions for inbound communications traffic are defined. - criteria for unusual or unauthorized activities or conditions for outbound communications traffic are defined.'), ('004973','draft','2022-03-07','DISA','technical','Defines the unusual or unauthorized activities or conditions that will be monitored for inbound communications traffic.','SI-04(04)(b)','N/A','Determine if: - inbound communications traffic is monitored [SI-04(04)_ODP[01]; the frequency at which to monitor inbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[02]; unusual or unauthorized activities or conditions that are to be monitored in inbound communications traffic are defined]. - outbound communications traffic is monitored [SI-04(04)_ODP[03]; the frequency at which to monitor outbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[04]; unusual or unauthorized activities or conditions that are to be monitored in outbound communications traffic are defined].'), ('004974','draft','2022-03-07','DISA','technical','Defines the unusual or unauthorized activities or conditions that will be monitored for outbound communications traffic.','SI-04(04)(b)','N/A','Determine if: - inbound communications traffic is monitored [SI-04(04)_ODP[01]; the frequency at which to monitor inbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[02]; unusual or unauthorized activities or conditions that are to be monitored in inbound communications traffic are defined]. - outbound communications traffic is monitored [SI-04(04)_ODP[03]; the frequency at which to monitor outbound communications traffic for unusual or unauthorized activities or conditions is defined] for [SI-04(04)_ODP[04]; unusual or unauthorized activities or conditions that are to be monitored in outbound communications traffic are defined].'), ('004975','draft','2022-03-07','DISA','policy','Test intrusion monitoring mechanisms at an organization-defined frequency.','SI-04(09)','N/A','Determine if intrusion-monitoring tools and mechanisms are tested [SI-04(09)_ODP; a frequency at which to test intrusion-monitoring tools and mechanisms is defined].'), ('004976','draft','2022-03-07','DISA','policy','Defines the frequency for testing intrusion monitoring mechanisms.','SI-04(09)','N/A','Determine if intrusion-monitoring tools and mechanisms are tested [SI-04(09)_ODP; a frequency at which to test intrusion-monitoring tools and mechanisms is defined].'), ('004977','draft','2022-03-07','DISA','policy','Defines the encrypted communications traffic that is to be visible to organization-defined system monitoring mechanisms.','SI-04(10)','N/A','Determine if provisions are made so that [SI-04(10)_ODP[01]; encrypted communications traffic to be made visible to system monitoring tools and mechanisms is defined] is visible to [SI-04(10)_ODP[02]; system monitoring tools and mechanisms to be provided access to encrypted communications traffic are defined].'), ('004978','draft','2022-03-07','DISA','policy','Defines the system monitoring mechanisms that will have visibility into organization-defined encrypted communications traffic.','SI-04(10)','N/A','Determine if provisions are made so that [SI-04(10)_ODP[01]; encrypted communications traffic to be made visible to system monitoring tools and mechanisms is defined] is visible to [SI-04(10)_ODP[02]; system monitoring tools and mechanisms to be provided access to encrypted communications traffic are defined].'), ('004979','draft','2022-03-07','DISA','policy','Make provisions so that organization-defined encrypted communications traffic is visible to organization-defined system monitoring mechanisms.','SI-04(10)','N/A','Determine if provisions are made so that [SI-04(10)_ODP[01]; encrypted communications traffic to be made visible to system monitoring tools and mechanisms is defined] is visible to [SI-04(10)_ODP[02]; system monitoring tools and mechanisms to be provided access to encrypted communications traffic are defined].'), ('004980','draft','2022-03-07','DISA','policy','Defines the personnel or roles to receive alerts when indications of inappropriate or unusual activities with security or privacy occur.','SI-04(12)','N/A','Determine if [SI-04(12)_ODP[01]; personnel or roles to be alerted when indications of inappropriate or unusual activity with security or privacy implications occur is/are defined] is/are alerted using [SI-04(12)_ODP[02]; automated mechanisms used to alert personnel or roles are defined] when [SI-04(12)_ODP[03]; activities that trigger alerts to personnel or are defined] indicate inappropriate or unusual activities with security or privacy implications.'), ('004981','draft','2022-03-07','DISA','policy','Correlate information from monitoring mechanisms employed throughout the system.','SI-04(16)','N/A','Determine if information from monitoring tools and mechanisms employed throughout the system is correlated.'), ('004982','draft','2022-03-07','DISA','technical','Provide visibility into network traffic at external and key internal system interfaces to optimize the effectiveness of monitoring devices.','SI-04(25)','N/A','Determine if: - visibility into network traffic at external system interfaces is provided to optimize the effectiveness of monitoring devices. - visibility into network traffic at key internal system interfaces is provided to optimize the effectiveness of monitoring devices.'), ('004983','draft','2022-03-07','DISA','policy','Defines the automated mechanisms for broadcasting security alert and advisory information.','SI-05(01)','N/A','Determine if [SI-05(01)_ODP; automated mechanisms used to broadcast security alert and advisory information throughout the organization are defined] are used to broadcast security alert and advisory information throughout the organization.'), ('004984','draft','2022-03-07','DISA','policy','Defines the privacy functions that require verification of correct operation.','SI-06a.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified to be operating correctly. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified to be operating correctly.'), ('004985','draft','2022-03-07','DISA','technical','Verify correct operation of organization-defined privacy functions.','SI-06a.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified to be operating correctly. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified to be operating correctly.'), ('004986','draft','2022-03-07','DISA','policy','Defines the frequency at which it will verify correct operation of organization-defined privacy functions.','SI-06b.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}]. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}].'), ('004987','draft','2022-03-07','DISA','policy','Defines the system transitional states when the system will verify correct operation of organization-defined privacy functions.','SI-06b.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}]. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}].'), ('004988','draft','2022-03-07','DISA','technical','Perform verification of the correct operation of organization-defined privacy functions: when the system is in an organization-defined transitional state; upon command by a user with appropriate privileges; and/or on an organization-defined frequency.','SI-06b.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}]. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}].'), ('004989','draft','2022-03-07','DISA','technical','Alert organization-defined personnel or roles of failed privacy verification tests.','SI-06b.','N/A','Determine if: - [SI-06_ODP[01]; security functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}]. - [SI-06_ODP[02]; privacy functions to be verified for correct operation are defined] are verified [SI-06_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {[SI-06_ODP[04]; system transitional states requiring the verification of security and privacy functions are defined; (if selected]; upon command by user with appropriate privilege; [SI-06_ODP[05]; frequency at which to verify the correct operation of security and privacy functions is defined; (if selected]}].'), ('004990','draft','2022-03-07','DISA','policy','Defines the personnel or roles to be notified when privacy verification tests fail.','SI-06c.','N/A','Determine if: - [SI-06_ODP[06]; personnel or roles to be alerted of failed security and privacy verification tests is/are defined] is/are alerted to failed security verification tests. - [SI-06_ODP[06]; personnel or roles to be alerted of failed security and privacy verification tests is/are defined] is/are alerted to failed privacy verification tests.'), ('004991','draft','2022-03-07','DISA','policy','Defines alternative action(s) to be taken when anomalies in the operation of organization-defined privacy functions are discovered.','SI-06d.','N/A','Determine if [SI-06_ODP[07]; one or more of the following PARAMETER VALUES is/are selected: {shut the system down; restart the system; [SI-06_ODP[08]; alternative action(s) to be performed when anomalies are discovered are defined (if selected)]}] is/are initiated when anomalies are discovered.'), ('004992','draft','2022-03-07','DISA','technical','Shut the system down, restart the system, and/or initiate organization-defined alternative action(s) when anomalies in the operation of the organization-defined privacy functions are discovered.','SI-06d.','N/A','Determine if [SI-06_ODP[07]; one or more of the following PARAMETER VALUES is/are selected: {shut the system down; restart the system; [SI-06_ODP[08]; alternative action(s) to be performed when anomalies are discovered are defined (if selected)]}] is/are initiated when anomalies are discovered.'), ('004993','draft','2022-03-07','DISA','technical','Implement automated mechanisms to support the management of distributed privacy function testing.','SI-06(02)','N/A','Determine if: - automated mechanisms are implemented to support the management of distributed security function testing. - automated mechanisms are implemented to support the management of distributed privacy function testing.'), ('004994','draft','2022-03-07','DISA','policy','Report the results of privacy function verification to organization-defined personnel or roles.','SI-06(03)','N/A','Determine if: - the results of security function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined]. - the results of privacy function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined].'), ('004995','draft','2022-03-07','DISA','policy','Defines the personnel or roles that are to receive reports on the results of privacy function verification.','SI-06(03)','N/A','Determine if: - the results of security function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined]. - the results of privacy function verification are reported to [SI-06(03)_ODP; personnel or roles designated to receive the results of security and privacy function verification is/are defined].'), ('004996','draft','2022-03-07','DISA','policy','Take organization-defined actions when unauthorized changes to the software, firmware, and information are detected.','SI-07b.','N/A','Determine if: - [SI-07_ODP[04]; actions to be taken when unauthorized changes to software are detected are defined] are taken when unauthorized changes to the software are detected. - [SI-07_ODP[05]; actions to be taken when unauthorized changes to firmware are detected are defined] are taken when unauthorized changes to the firmware are detected. - [SI-07_ODP[06]; actions to be taken when unauthorized changes to information are detected are defined] are taken when unauthorized changes to the information are detected.'), ('004997','draft','2022-03-07','DISA','policy','Defines the actions to be taken when unauthorized changes to the software, firmware, and information are detected.','SI-07b.','N/A','Determine if: - [SI-07_ODP[04]; actions to be taken when unauthorized changes to software are detected are defined] are taken when unauthorized changes to the software are detected. - [SI-07_ODP[05]; actions to be taken when unauthorized changes to firmware are detected are defined] are taken when unauthorized changes to the firmware are detected. - [SI-07_ODP[06]; actions to be taken when unauthorized changes to information are detected are defined] are taken when unauthorized changes to the information are detected.'), ('004998','draft','2022-03-07','DISA','technical','Implement organization-defined controls for application self-protection at runtime.','SI-07(17)','N/A','Determine if [SI-07(17)_ODP; controls to be implemented for application self-protection at runtime are defined] are implemented for application self-protection at runtime.'), ('004999','draft','2022-03-07','DISA','policy','Defines the controls to be implemented for runtime application self-protection.','SI-07(17)','N/A','Determine if [SI-07(17)_ODP; controls to be implemented for application self-protection at runtime are defined] are implemented for application self-protection at runtime.'), ('005000','draft','2022-03-07','DISA','policy','Update spam protection mechanisms when new releases are available in accordance with organizational configuration management policy.','SI-08b.','N/A','Determine if spam protection mechanisms are updated when new releases are available in accordance with organizational configuration management policies and procedures.'), ('005001','draft','2022-03-07','DISA','policy','Update spam protection mechanisms when new releases are available in accordance with organizational configuration management procedures.','SI-08b.','N/A','Determine if spam protection mechanisms are updated when new releases are available in accordance with organizational configuration management policies and procedures.'), ('005002','draft','2022-03-07','DISA','policy','Defines the frequency for updating spam protection mechanisms.','SI-08(02)','N/A','Determine if spam protection mechanisms are automatically updated [SI-08(02)_ODP; the frequency at which to automatically update spam protection mechanisms is defined].'), ('005003','draft','2022-03-07','DISA','technical','Prevent untrusted data injections.','SI-10(06)','N/A','Determine if untrusted data injections are prevented.'), ('005004','draft','2022-03-07','DISA','policy','Limit personally identifiable information being processed in the information life cycle to the organization-defined elements of personally identifiable information.','SI-12(01)','N/A','Determine if personally identifiable information being processed in the information life cycle is limited to [SI-12(01)_ODP; elements of personally identifiable information being processed in the information life cycle are defined].'), ('005005','draft','2022-03-07','DISA','policy','Defines the elements of personally identifiable information being processed in the information life cycle.','SI-12(01)','N/A','Determine if personally identifiable information being processed in the information life cycle is limited to [SI-12(01)_ODP; elements of personally identifiable information being processed in the information life cycle are defined].'), ('005006','draft','2022-03-07','DISA','policy','Use organization-defined techniques to minimize the use of personally identifiable information for research, testing, or training, in accordance with the privacy risk assessment.','SI-12(02)','N/A','Determine if: - [SI-12(02)_ODP[01]; techniques used to minimize the use of personally identifiable information for research are defined] are used to minimize the use of personally identifiable information for research. - [SI-12(02)_ODP[02]; techniques used to minimize the use of personally identifiable information for testing are defined] are used to minimize the use of personally identifiable information for testing. - [SI-12(02)_ODP[03]; techniques used to minimize the use of personally identifiable information for training are defined] are used to minimize the use of personally identifiable information for training.'), ('005007','draft','2022-03-07','DISA','policy','Defines the techniques for minimizing the use of personally identifiable information for research, testing, or training.','SI-12(02)','N/A','Determine if: - [SI-12(02)_ODP[01]; techniques used to minimize the use of personally identifiable information for research are defined] are used to minimize the use of personally identifiable information for research. - [SI-12(02)_ODP[02]; techniques used to minimize the use of personally identifiable information for testing are defined] are used to minimize the use of personally identifiable information for testing. - [SI-12(02)_ODP[03]; techniques used to minimize the use of personally identifiable information for training are defined] are used to minimize the use of personally identifiable information for training.'), ('005008','draft','2022-03-07','DISA','policy','Use organization-defined techniques to dispose of, destroy, or erase information following the retention period.','SI-12(03)','N/A','Determine if: - [SI-12(03)_ODP[01]; techniques used to dispose of information following the retention period are defined] are used to dispose of information following the retention period. - [SI-12(03)_ODP[02]; techniques used to destroy information following the retention period are defined] are used to destroy information following the retention period. - [SI-12(03)_ODP[03]; techniques used to erase information following the retention period are defined] are used to erase information following the retention period. '), ('005009','draft','2022-03-07','DISA','policy','Defines the percentage of the mean time to failure used to manually initiate transfer between active and standby system components.','SI-13(03)','N/A','Determine if transfers are initiated manually between active and standby system components when the use of the active component reaches [SI-13(03)_ODP; the percentage of the mean time to failure for transfers to be manually initiated is defined] of the mean time to failure.'), ('005010','draft','2022-03-07','DISA','policy','Defines the action to be taken when system failures are detected.','SI-13(04)(b)','N/A','Determine if [SI-13(04)_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {activate [SI-13(04)_ODP[03]; alarm to be activated when system component failures are detected is defined (if selected)]; automatically shut down the system; [SI-13(04)_ODP[04]; action to be taken when system component failures are detected is defined (if selected)]}] are performed if system component failures are detected.'), ('005011','draft','2022-03-07','DISA','policy','Refresh organization-defined information on an organization-defined frequency, or generate organization-defined information on demand.','SI-14(02)(a)','N/A','Determine if [SI-14(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {refresh [SI-14(02)_ODP[02]; the information to be refreshed is defined (if selected)] [SI-14(02)_ODP[03]; the frequency at which to refresh information is defined (if selected)]; generate [SI-14(02)_ODP[04]; the information to be generated is defined (if selected)] on demand}] is performed.'), ('005012','draft','2022-03-07','DISA','policy','Defines the information to be refreshed on an organization-defined frequency.','SI-14(02)(a)','N/A','Determine if [SI-14(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {refresh [SI-14(02)_ODP[02]; the information to be refreshed is defined (if selected)] [SI-14(02)_ODP[03]; the frequency at which to refresh information is defined (if selected)]; generate [SI-14(02)_ODP[04]; the information to be generated is defined (if selected)] on demand}] is performed.'), ('005013','draft','2022-03-07','DISA','policy','Defines the frequency at which to refresh organization-defined information.','SI-14(02)(a)','N/A','Determine if [SI-14(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {refresh [SI-14(02)_ODP[02]; the information to be refreshed is defined (if selected)] [SI-14(02)_ODP[03]; the frequency at which to refresh information is defined (if selected)]; generate [SI-14(02)_ODP[04]; the information to be generated is defined (if selected)] on demand}] is performed.'), ('005014','draft','2022-03-07','DISA','policy','Defines the information to be generated on demand.','SI-14(02)(a)','N/A','Determine if [SI-14(02)_ODP[01]; one of the following PARAMETER VALUES is selected: {refresh [SI-14(02)_ODP[02]; the information to be refreshed is defined (if selected)] [SI-14(02)_ODP[03]; the frequency at which to refresh information is defined (if selected)]; generate [SI-14(02)_ODP[04]; the information to be generated is defined (if selected)] on demand}] is performed.'), ('005015','draft','2022-03-07','DISA','policy','Delete information when no longer needed.','SI-14(02)(b)','N/A','Determine if information is deleted when no longer needed.'), ('005016','draft','2022-03-07','DISA','policy','Refresh connections to the system on demand.','SI-14(03)','N/A','Determine if: - connections to the system are established on demand. - connections to the system are terminated after [SI-14(03)_ODP; one of the following PARAMETER VALUES is selected: {completion of a request; a period of non-use}].'), ('005017','draft','2022-03-07','DISA','policy','Terminate connections after completion of a request, or a period of non-use.','SI-14(03)','N/A','Determine if: - connections to the system are established on demand. - connections to the system are terminated after [SI-14(03)_ODP; one of the following PARAMETER VALUES is selected: {completion of a request; a period of non-use}].'), ('005018','draft','2022-03-07','DISA','policy','Check the accuracy, relevance, timeliness, and completeness of personally identifiable information across the information life cycle, on an organization-defined frequency.','SI-18a.','N/A','Determine if: - the accuracy of personally identifiable information across the information life cycle is checked [SI-18_ODP[01]; the frequency at which to check the accuracy of personally identifiable information across the information life cycle is defined]. - the relevance of personally identifiable information across the information life cycle is checked [SI-18_ODP[02]; the frequency at which to check the relevance of personally identifiable information across the information life cycle is defined]. - the timeliness of personally identifiable information across the information life cycle is checked [SI-18_ODP[03]; the frequency at which to check the timeliness of personally identifiable information across the information life cycle is defined]. - the completeness of personally identifiable information across the information life cycle is checked [SI-18_ODP[04]; the frequency at which to check the completeness of personally identifiable information across the information life cycle is defined].'), ('005019','draft','2022-03-07','DISA','policy','Defines the frequency for checking the accuracy, relevance, timeliness, and completeness of personally identifiable information.','SI-18a.','N/A','Determine if: - the accuracy of personally identifiable information across the information life cycle is checked [SI-18_ODP[01]; the frequency at which to check the accuracy of personally identifiable information across the information life cycle is defined]. - the relevance of personally identifiable information across the information life cycle is checked [SI-18_ODP[02]; the frequency at which to check the relevance of personally identifiable information across the information life cycle is defined]. - the timeliness of personally identifiable information across the information life cycle is checked [SI-18_ODP[03]; the frequency at which to check the timeliness of personally identifiable information across the information life cycle is defined]. - the completeness of personally identifiable information across the information life cycle is checked [SI-18_ODP[04]; the frequency at which to check the completeness of personally identifiable information across the information life cycle is defined].'), ('005020','draft','2022-03-07','DISA','policy','Correct or delete inaccurate or outdated personally identifiable information.','SI-18b.','N/A','Determine if inaccurate or outdated personally identifiable information is corrected or deleted.'), ('005021','draft','2022-03-07','DISA','policy','Correct or delete personally identifiable information that is inaccurate or outdated, incorrectly determined regarding impact, or incorrectly de-identified using organization-defined mechanisms.','SI-18(01)','N/A','Determine if [SI-18(01)_ODP; automated mechanisms used to correct or delete personally identifiable information that is inaccurate, outdated, incorrectly determined regarding impact, or incorrectly de-identified are defined] are used to correct or delete personally identifiable information that is inaccurate, outdated, incorrectly determined regarding impact, or incorrectly de-identified.'), ('005022','draft','2022-03-07','DISA','policy','Defines the automated mechanisms for identifying inaccurate or outdated, incorrectly determined regarding impact, or incorrectly de-identified personally identifiable information.','SI-18(01)','N/A','Determine if [SI-18(01)_ODP; automated mechanisms used to correct or delete personally identifiable information that is inaccurate, outdated, incorrectly determined regarding impact, or incorrectly de-identified are defined] are used to correct or delete personally identifiable information that is inaccurate, outdated, incorrectly determined regarding impact, or incorrectly de-identified.'), ('005023','draft','2022-03-07','DISA','policy','Employ data tags to automate the correction or deletion of personally identifiable information across the information life cycle within organizational systems.','SI-18(02)','N/A','Determine if data tags are employed to automate the correction or deletion of personally identifiable information across the information life cycle within organizational systems.'), ('005024','draft','2022-03-07','DISA','policy','Collect personally identifiable information directly from the individual.','SI-18(03)','N/A','Determine if personally identifiable information is collected directly from the individual.'), ('005025','draft','2022-03-07','DISA','policy','Correct or delete personally identifiable information upon request by individuals or their designated representatives.','SI-18(04)','N/A','Determine if personally identifiable information is corrected or deleted upon request by individuals or their designated representatives.'), ('005026','draft','2022-03-07','DISA','policy','Notify organization-defined recipients of personally identifiable information that the personally identifiable information has been corrected or deleted.','SI-18(05)','N/A','Determine if [SI-18(05)_ODP; recipients of personally identifiable information to be notified when the personally identifiable information has been corrected or deleted are defined] and individuals are notified when the personally identifiable information has been corrected or deleted.'), ('005027','draft','2022-03-07','DISA','policy','Defines the recipients of personally identifiable information who are to be notified when the personally identifiable information is corrected or deleted.','SI-18(05)','N/A','Determine if [SI-18(05)_ODP; recipients of personally identifiable information to be notified when the personally identifiable information has been corrected or deleted are defined] and individuals are notified when the personally identifiable information has been corrected or deleted.'), ('005028','draft','2022-03-07','DISA','policy','Notify individuals that the personally identifiable information has been corrected or deleted.','SI-18(05)','N/A','Determine if [SI-18(05)_ODP; recipients of personally identifiable information to be notified when the personally identifiable information has been corrected or deleted are defined] and individuals are notified when the personally identifiable information has been corrected or deleted.'), ('005029','draft','2022-03-07','DISA','policy','Remove the following elements of personally identifiable information from datasets.','SI-19a.','N/A','Determine if [SI-19_ODP[01]; elements of personally identifiable information to be removed from datasets are defined] are removed from datasets.'), ('005030','draft','2022-03-07','DISA','policy','Defines the elements of personally identifiable information to be removed from datasets.','SI-19a.','N/A','Determine if [SI-19_ODP[01]; elements of personally identifiable information to be removed from datasets are defined] are removed from datasets.'), ('005031','draft','2022-03-07','DISA','policy','Evaluate organization-defined frequency for effectiveness of de-identification.','SI-19b.','N/A','Determine if the effectiveness of de-identification is evaluated [SI-19_ODP[02]; the frequency at which to evaluate the effectiveness of de-identification is defined].'), ('005032','draft','2022-03-07','DISA','policy','Defines the frequency for evaluating for effectiveness of de-identification.','SI-19b.','N/A','Determine if the effectiveness of de-identification is evaluated [SI-19_ODP[02]; the frequency at which to evaluate the effectiveness of de-identification is defined].'), ('005033','draft','2022-03-07','DISA','policy','De-identify the dataset upon collection by not collecting personally identifiable information.','SI-19(01)','N/A','Determine if the dataset is de-identified upon collection by not collecting personally identifiable information.'), ('005034','draft','2022-03-07','DISA','policy','Prohibit archiving personally identifiable information elements if those elements in a dataset will not be needed after the dataset is archived.','SI-19(02)','N/A','Determine if the archiving of personally identifiable information elements is prohibited if those elements in a dataset will not be needed after the dataset is archived.'), ('005035','draft','2022-03-07','DISA','policy','Remove personally identifiable information elements from a dataset prior to its release if those elements in the dataset do not need to be part of the data release.','SI-19(03)','N/A','Determine if personally identifiable information elements are removed from a dataset prior to its release if those elements in the dataset do not need to be part of the data release.'), ('005036','draft','2022-03-07','DISA','technical','Remove, mask, encrypt, hash, or replace direct identifiers in a dataset.','SI-19(04)','N/A','Determine if direct identifiers in a dataset are removed, masked, encrypted, hashed, or replaced.'), ('005037','draft','2022-03-07','DISA','policy','Manipulate numerical data, contingency tables, and statistical findings so that no individual or organization is identifiable in the results of the analysis.','SI-19(05)','N/A','Determine if: - numerical data is manipulated so that no individual or organization is identifiable in the results of the analysis. - contingency tables are manipulated so that no individual or organization is identifiable in the results of the analysis. - statistical findings are manipulated so that no individual or organization is identifiable in the results of the analysis.'), ('005038','draft','2022-03-07','DISA','policy','Prevent disclosure of personally identifiable information by adding non-deterministic noise to the results of mathematical operations before the results are reported.','SI-19(06)','N/A','Determine if the disclosure of personally identifiable information is prevented by adding non-deterministic noise to the results of mathematical operations before the results are reported.'), ('005039','draft','2022-03-07','DISA','policy','Perform de-identification using validated algorithms and software that is validated to implement the algorithms.','SI-19(07)','N/A','Determine if: - de-identification is performed using validated algorithms. - de-identification is performed using software that is validated to implement the algorithms.'), ('005040','draft','2022-03-07','DISA','policy','Perform a motivated intruder test on the de-identified dataset to determine if the identified data remains or if the de-identified data can be re-identified.','SI-19(08)','N/A','Determine if a motivated intruder test is performed on the de-identified dataset to determine if the identified data remains or if the de-identified data can be re-identified.'), ('005041','draft','2022-03-07','DISA','policy','Embed data or capabilities in the following systems or system components to determine if organizational data has been exfiltrated or improperly removed from the organization.','SI-20','N/A','Determine if data or capabilities are embedded in [SI-20_ODP; the systems or system components with data or capabilities to be embedded are defined] to determine if organizational data has been exfiltrated or improperly removed from the organization.'), ('005042','draft','2022-03-07','DISA','policy','Defines the systems or system components used to determine if organizational data has been exfiltrated or improperly removed from the organization.','SI-20','N/A','Determine if data or capabilities are embedded in [SI-20_ODP; the systems or system components with data or capabilities to be embedded are defined] to determine if organizational data has been exfiltrated or improperly removed from the organization.'), ('005043','draft','2022-03-07','DISA','policy','Refresh organization-defined information at organization-defined frequencies or generate the information on demand and delete the information when no longer needed.','SI-21','N/A','Determine if the [SI-21_ODP[01]; the information to be refreshed is defined] is refreshed [SI-21_ODP[02]; the frequencies at which to refresh information are defined] or is generated on demand and deleted when no longer needed.'), ('005044','draft','2022-03-07','DISA','policy','Defines the information to be refreshed at organization-defined frequencies or generate the information on demand and delete the information when no longer needed.','SI-21','N/A','Determine if the [SI-21_ODP[01]; the information to be refreshed is defined] is refreshed [SI-21_ODP[02]; the frequencies at which to refresh information are defined] or is generated on demand and deleted when no longer needed.'), ('005045','draft','2022-03-07','DISA','policy','Defines the frequencies for refreshing organization-defined information.','SI-21','N/A','Determine if the [SI-21_ODP[01]; the information to be refreshed is defined] is refreshed [SI-21_ODP[02]; the frequencies at which to refresh information are defined] or is generated on demand and deleted when no longer needed.'), ('005046','draft','2022-03-07','DISA','policy','Identify the following alternate sources of information for organization-defined essential functions and services.','SI-22a.','N/A','Determine if [SI-22_ODP[01]; alternative information sources for essential functions and services are defined] for [SI-22_ODP[02]; essential functions and services that require alternative sources of information are defined] are identified.'), ('005047','draft','2022-03-07','DISA','policy','Defines the alternative information sources for identifying organization-defined essential functions and services.','SI-22a.','N/A','Determine if [SI-22_ODP[01]; alternative information sources for essential functions and services are defined] for [SI-22_ODP[02]; essential functions and services that require alternative sources of information are defined] are identified.'), ('005048','draft','2022-03-07','DISA','policy','Use an alternate information source for the execution of essential functions or services on organization-defined systems or system components when the primary source of information is corrupted or unavailable.','SI-22b.','N/A','Determine if an alternative information source is used for the execution of essential functions or services on [SI-22_ODP[03]; systems or system components that require an alternative information source for the execution of essential functions or services are defined] when the primary source of information is corrupted or unavailable.'), ('005049','draft','2022-03-07','DISA','policy','Defines the systems or system components used as an alternate information source for the execution of essential functions or services when the primary source of information is corrupted or unavailable.','SI-22b.','N/A','Determine if an alternative information source is used for the execution of essential functions or services on [SI-22_ODP[03]; systems or system components that require an alternative information source for the execution of essential functions or services are defined] when the primary source of information is corrupted or unavailable.'), ('005050','draft','2022-03-07','DISA','policy','Based on organization-defined circumstances, fragment the following information.','SI-23a.','N/A','Determine if under [SI-23_ODP[01]; circumstances that require information fragmentation are defined], [SI-23_ODP[02]; the information to be fragmented is defined] is fragmented.'), ('005051','draft','2022-03-07','DISA','policy','Defines the information for fragmentation.','SI-23a.','N/A','Determine if under [SI-23_ODP[01]; circumstances that require information fragmentation are defined], [SI-23_ODP[02]; the information to be fragmented is defined] is fragmented.'), ('005052','draft','2022-03-07','DISA','policy','Defines the circumstances for fragmenting organization-defined information.','SI-23a.','N/A','Determine if under [SI-23_ODP[01]; circumstances that require information fragmentation are defined], [SI-23_ODP[02]; the information to be fragmented is defined] is fragmented.'), ('005053','draft','2022-03-07','DISA','policy','Based on organization-defined circumstances, distribute the fragmented information across the following systems or system components.','SI-23b.','N/A','Determine if under [SI-23_ODP[01]; circumstances that require information fragmentation are defined], the fragmented information is distributed across [SI-23_ODP[03]; systems or system components across which the fragmented information is to be distributed are defined].'), ('005054','draft','2022-03-07','DISA','policy','Defines the systems or system components used to distribute fragmented information.','SI-23b.','N/A','Determine if under [SI-23_ODP[01]; circumstances that require information fragmentation are defined], the fragmented information is distributed across [SI-23_ODP[03]; systems or system components across which the fragmented information is to be distributed are defined].'), ('005055','draft','2022-03-07','DISA','policy','Defines the circumstances for distributing fragmented information across organization-defined systems or system components.','SI-23b.','N/A','Determine if under [SI-23_ODP[01]; circumstances that require information fragmentation are defined], the fragmented information is distributed across [SI-23_ODP[03]; systems or system components across which the fragmented information is to be distributed are defined].'), ('005056','draft','2022-03-07','DISA','policy','Disseminate an organization-level, mission/business process-level, and/or system-level supply chain risk management policy to organization-defined personnel or roles.','SR-01a.','N/A','Determine if: - a supply chain risk management policy is developed and documented. - the supply chain risk management policy is disseminated to [SR-01_ODP[01]; personnel or roles to whom supply chain risk management policy is to be disseminated to is/are defined].'), ('005057','draft','2022-03-07','DISA','policy','Develop and document an organization-level, mission/business process-level, and/or system-level supply chain risk management policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.','SR-01a.01(a)','N/A','Determine if: - the [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses purpose. - the [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses scope. - [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses roles. - the [SR-01_ODP[03];one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses responsibilities. - the [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses management commitment. - the [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses coordination among organizational entities. - the [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy addresses compliance.'), ('005058','draft','2022-03-07','DISA','policy','Develop and document organization-level, mission/business process-level, and/or system-level supply chain risk management policy that is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.','SR-01a.01(b)','N/A','Determine if the [SR-01_ODP[03]; one or more of the following PARAMETER VALUES is/are selected: {organization-level; mission/business process-level; system-level}] supply chain risk management policy is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.'), ('005059','draft','2022-03-07','DISA','policy','Develop and document procedures to facilitate the implementation of the supply chain risk management policy and the associated supply chain risk management controls.','SR-01a.02','N/A','Determine if: - supply chain risk management procedures to facilitate the implementation of the supply chain risk management policy and the associated supply chain risk management controls are developed and documented. - the supply chain risk management procedures are disseminated to [SR-01_ODP[02]; personnel or roles to whom supply chain risk management procedures are disseminated to is/are defined].'), ('005060','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the development and documentation of the supply chain risk management policy.','SR-01b.','N/A','Determine if the [SR-01_ODP[04]; an official to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures.'), ('005061','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the development and documentation of the supply chain risk management procedures.','SR-01b.','N/A','Determine if the [SR-01_ODP[04]; an official to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures.'), ('005062','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the dissemination of the supply chain risk management policy.','SR-01b.','N/A','Determine if the [SR-01_ODP[04]; an official to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures.'), ('005063','draft','2022-03-07','DISA','policy','Designate an organization-defined official to manage the dissemination of the supply chain risk management procedures.','SR-01b.','N/A','Determine if the [SR-01_ODP[04]; an official to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures is defined] is designated to manage the development, documentation, and dissemination of the supply chain risk management policy and procedures.'), ('005064','draft','2022-03-07','DISA','policy','Review and update the current supply chain risk management policy on an organization-defined frequency.','SR-01c.01','N/A','Determine if: - the current supply chain risk management policy is reviewed and updated [SR-01_ODP[05]; the frequency at which the current supply chain risk management policy is reviewed and updated is defined]. - the current supply chain risk management policy is reviewed and updated following [SR-01_ODP[06]; events that require the current supply chain risk management policy to be reviewed and updated are defined].'), ('005065','draft','2022-03-07','DISA','policy','Defines the frequency for reviewing and updating the current supply chain risk management policy.','SR-01c.01','N/A','Determine if: - the current supply chain risk management policy is reviewed and updated [SR-01_ODP[05]; the frequency at which the current supply chain risk management policy is reviewed and updated is defined]. - the current supply chain risk management policy is reviewed and updated following [SR-01_ODP[06]; events that require the current supply chain risk management policy to be reviewed and updated are defined].'), ('005066','draft','2022-03-07','DISA','policy','Review and update the current supply chain risk management policy following organization-defined events.','SR-01c.01','N/A','Determine if: - the current supply chain risk management policy is reviewed and updated [SR-01_ODP[05]; the frequency at which the current supply chain risk management policy is reviewed and updated is defined]. - the current supply chain risk management policy is reviewed and updated following [SR-01_ODP[06]; events that require the current supply chain risk management policy to be reviewed and updated are defined].'), ('005067','draft','2022-03-07','DISA','policy','Defines the events following reviewing and updating the current supply chain risk management policy.','SR-01c.01','N/A','Determine if: - the current supply chain risk management policy is reviewed and updated [SR-01_ODP[05]; the frequency at which the current supply chain risk management policy is reviewed and updated is defined]. - the current supply chain risk management policy is reviewed and updated following [SR-01_ODP[06]; events that require the current supply chain risk management policy to be reviewed and updated are defined].'), ('005068','draft','2022-03-07','DISA','policy','Review and update the current supply chain risk management procedures on an organization-defined frequency.','SR-01c.02','N/A','Determine if: - the current supply chain risk management procedures are reviewed and updated [SR-01_ODP[07]; the frequency at which the current supply chain risk management procedure is reviewed and updated is defined]. - the current supply chain risk management procedures are reviewed and updated following [SR-01_ODP[08]; events that require the supply chain risk management procedures to be reviewed and updated are defined].'), ('005069','draft','2022-03-07','DISA','policy','Defines the frequency for reviewing and updating the current supply chain risk management procedures.','SR-01c.02','N/A','Determine if: - the current supply chain risk management procedures are reviewed and updated [SR-01_ODP[07]; the frequency at which the current supply chain risk management procedure is reviewed and updated is defined]. - the current supply chain risk management procedures are reviewed and updated following [SR-01_ODP[08]; events that require the supply chain risk management procedures to be reviewed and updated are defined].'), ('005070','draft','2022-03-07','DISA','policy','Review and update the current supply chain risk management procedures following organization-defined events.','SR-01c.02','N/A','Determine if: - the current supply chain risk management procedures are reviewed and updated [SR-01_ODP[07]; the frequency at which the current supply chain risk management procedure is reviewed and updated is defined]. - the current supply chain risk management procedures are reviewed and updated following [SR-01_ODP[08]; events that require the supply chain risk management procedures to be reviewed and updated are defined].'), ('005071','draft','2022-03-07','DISA','policy','Defines the events following reviewing and updating the current supply chain risk management procedures.','SR-01c.02','N/A','Determine if: - the current supply chain risk management procedures are reviewed and updated [SR-01_ODP[07]; the frequency at which the current supply chain risk management procedure is reviewed and updated is defined]. - the current supply chain risk management procedures are reviewed and updated following [SR-01_ODP[08]; events that require the supply chain risk management procedures to be reviewed and updated are defined].'), ('005072','draft','2022-03-07','DISA','policy','Develop a plan for managing supply chain risks associated with the research and development, design, manufacturing, acquisition, delivery, integration, operations and maintenance, and disposal of the following systems, system components, or system services.','SR-02a.','N/A','Determine if: - a plan for managing supply chain risks is developed. - the supply chain risk management plan addresses risks associated with the research and development of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the design of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the manufacturing of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the acquisition of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the delivery of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the integration of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the operation and maintenance of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the disposal of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined].'), ('005073','draft','2022-03-07','DISA','policy','Defines the systems, system components, or system services that a plan for managing supply chain risks are developed.','SR-02a.','N/A','Determine if: - a plan for managing supply chain risks is developed. - the supply chain risk management plan addresses risks associated with the research and development of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the design of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the manufacturing of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the acquisition of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the delivery of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the integration of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the operation and maintenance of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined]. - the supply chain risk management plan addresses risks associated with the disposal of [SR-02_ODP[01]; systems, system components, or system services for which a supply chain risk management plan is developed are defined].'), ('005074','draft','2022-03-07','DISA','policy','Review and update the supply chain risk management plan on an organization-defined frequency, or as required, to address threat, organizational or environmental changes.','SR-02b.','N/A','Determine if the supply chain risk management plan is reviewed and updated [SR-02_ODP[02]; the frequency at which to review and update the supply chain risk management plan is defined] or as required to address threat, organizational, or environmental changes.'), ('005075','draft','2022-03-07','DISA','policy','Defines the frequency for reviewing and updating the supply chain risk management plan.','SR-02b.','N/A','Determine if the supply chain risk management plan is reviewed and updated [SR-02_ODP[02]; the frequency at which to review and update the supply chain risk management plan is defined] or as required to address threat, organizational, or environmental changes.'), ('005076','draft','2022-03-07','DISA','policy','Protect the supply chain risk management plan from unauthorized disclosure and modification.','SR-02c.','N/A','Determine if: - the supply chain risk management plan is protected from unauthorized disclosure. - the supply chain risk management plan is protected from unauthorized modification.'), ('005077','draft','2022-03-07','DISA','policy','Establish a supply chain risk management team consisting of organization-defined personnel, roles, and responsibilities to lead and support the following SCRM activities.','SR-02(01)','N/A','Determine if a supply chain risk management team consisting of [SR-02(01)_ODP[01]; the personnel, roles, and responsibilities of the supply chain risk management team are defined] is established to lead and support [SR-02(01)_ODP[02]; supply chain risk management activities are defined].'), ('005078','draft','2022-03-07','DISA','policy','Defines the supply chain risk management activities that will be led by a supply chain risk management team consisting of organization-defined personnel, roles, and responsibilities.','SR-02(01)','N/A','Determine if a supply chain risk management team consisting of [SR-02(01)_ODP[01]; the personnel, roles, and responsibilities of the supply chain risk management team are defined] is established to lead and support [SR-02(01)_ODP[02]; supply chain risk management activities are defined].'), ('005079','draft','2022-03-07','DISA','policy','Defines the personnel, roles, and responsibilities who lead and support organization-defined supply chain risk management activities.','SR-02(01)','N/A','Determine if a supply chain risk management team consisting of [SR-02(01)_ODP[01]; the personnel, roles, and responsibilities of the supply chain risk management team are defined] is established to lead and support [SR-02(01)_ODP[02]; supply chain risk management activities are defined].'), ('005080','draft','2022-03-07','DISA','policy','Establish a process of processes to identify and address weaknesses or deficiencies in the supply chain elements of organization-defined system or system components in coordination with organization-defined supply chain personnel.','SR-03a.','N/A','Determine if: - a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined]. - the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined] is/are coordinated with [SR-03_ODP[02]; supply chain personnel with whom to coordinate the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes is/are defined].'), ('005081','draft','2022-03-07','DISA','policy','Defines the system or system processes which establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain elements.','SR-03a.','N/A','Determine if: - a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined]. - the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined] is/are coordinated with [SR-03_ODP[02]; supply chain personnel with whom to coordinate the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes is/are defined].'), ('005082','draft','2022-03-07','DISA','policy','Defines the supply chain personnel who, in coordination, establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain elements.','SR-03a.','N/A','Determine if: - a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined]. - the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined] is/are coordinated with [SR-03_ODP[02]; supply chain personnel with whom to coordinate the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes is/are defined].'), ('005083','draft','2022-03-07','DISA','policy','Establish a process of processes to identify and address weaknesses or deficiencies in the processes of organization-defined system or system components in coordination with organization-defined supply chain personnel.','SR-03a.','N/A','Determine if: - a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined]. - the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined] is/are coordinated with [SR-03_ODP[02]; supply chain personnel with whom to coordinate the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes is/are defined].'), ('005084','draft','2022-03-07','DISA','policy','Defines the system or system processes which establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain processes.','SR-03a.','N/A','Determine if: - a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined]. - the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined] is/are coordinated with [SR-03_ODP[02]; supply chain personnel with whom to coordinate the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes is/are defined].'), ('005085','draft','2022-03-07','DISA','policy','Defines the supply chain personnel who, in coordination, establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain processes.','SR-03a.','N/A','Determine if: - a process or processes is/are established to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined]. - the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes of [SR-03_ODP[01]; the system or system component requiring a process or processes to identify and address weaknesses or deficiencies is defined] is/are coordinated with [SR-03_ODP[02]; supply chain personnel with whom to coordinate the process or processes to identify and address weaknesses or deficiencies in the supply chain elements and processes is/are defined].'), ('005086','draft','2022-03-07','DISA','policy','Employ the following controls to protect against supply chain risks to the system, system component, or system service.','SR-03b.','N/A','Determine if [SR-03_ODP[03]; supply chain controls employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events are defined] are employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events.'), ('005087','draft','2022-03-07','DISA','policy','Limit the harm or consequences from supply chain-related events.','SR-03b.','N/A','Determine if [SR-03_ODP[03]; supply chain controls employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events are defined] are employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events.'), ('005088','draft','2022-03-07','DISA','policy','Defines the supply chain controls employed for protecting against supply chain risks to the system, system component, or system service.','SR-03b.','N/A','Determine if [SR-03_ODP[03]; supply chain controls employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events are defined] are employed to protect against supply chain risks to the system, system component, or system service and to limit the harm or consequences from supply chain-related events.'), ('005089','draft','2022-03-07','DISA','policy','Document the selected and implemented supply chain processes and controls in security and privacy plans, supply chain risk management plan, or organization-defined document.','SR-03c.','N/A','Determine if the selected and implemented supply chain processes and controls are documented in [SR-03_ODP[04]; one or more of the following PARAMETER VALUES is/are selected: {security and privacy plans; supply chain risk management plan; [SR-03_ODP[05]; the document identifying the selected and implemented supply chain processes and controls is defined (if selected)]}].'), ('005090','draft','2022-03-07','DISA','policy','Defines the document which contains supply chain processes and controls.','SR-03c.','N/A','Determine if the selected and implemented supply chain processes and controls are documented in [SR-03_ODP[04]; one or more of the following PARAMETER VALUES is/are selected: {security and privacy plans; supply chain risk management plan; [SR-03_ODP[05]; the document identifying the selected and implemented supply chain processes and controls is defined (if selected)]}].'), ('005091','draft','2022-03-07','DISA','policy','Employ a diverse set of sources for the following system components and services.','SR-03(01)','N/A','Determine if: - a diverse set of sources is employed for [SR-03(01)_ODP[01]; system components with a diverse set of sources are defined]. - a diverse set of sources is employed for [SR-03(01)_ODP[02]; services with a diverse set of sources are defined].'), ('005092','draft','2022-03-07','DISA','policy','Defines the system or system components and services which employ a diverse set of sources.','SR-03(01)','N/A','Determine if: - a diverse set of sources is employed for [SR-03(01)_ODP[01]; system components with a diverse set of sources are defined]. - a diverse set of sources is employed for [SR-03(01)_ODP[02]; services with a diverse set of sources are defined].'), ('005093','draft','2022-03-07','DISA','policy','Employ the following controls to limit harm from potential adversaries identifying and targeting the organizational supply chain.','SR-03(02)','N/A','Determine if [SR-03(02)_ODP; controls to limit harm from potential supply chain adversaries are defined] are employed to limit harm from potential adversaries identifying and targeting the organizational supply chain.'), ('005094','draft','2022-03-07','DISA','policy','Defines the controls to be employed to limit harm from potential adversaries identifying and targeting the organizational supply chain.','SR-03(02)','N/A','Determine if [SR-03(02)_ODP; controls to limit harm from potential supply chain adversaries are defined] are employed to limit harm from potential adversaries identifying and targeting the organizational supply chain.'), ('005095','draft','2022-03-07','DISA','policy','Ensure that the controls included in the contracts of prime contractors are also included in the contracts of subcontractors.','SR-03(03)','N/A','Determine if the controls included in the contracts of prime contractors are also included in the contracts of subcontractors.'), ('005096','draft','2022-03-07','DISA','policy','Document valid provenance of the following systems, system components, and associated data.','SR-04','N/A','Determine if: - valid provenance is documented for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is monitored for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is maintained for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined].'), ('005097','draft','2022-03-07','DISA','policy','Monitor valid provenance of the following systems, system components, and associated data.','SR-04','N/A','Determine if: - valid provenance is documented for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is monitored for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is maintained for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined].'), ('005098','draft','2022-03-07','DISA','policy','Maintain valid provenance of the following systems, system components, and associated data.','SR-04','N/A','Determine if: - valid provenance is documented for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is monitored for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is maintained for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined].'), ('005099','draft','2022-03-07','DISA','policy','Defines the systems, system components, and associated data for documenting, monitoring, and maintaining valid provenance.','SR-04','N/A','Determine if: - valid provenance is documented for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is monitored for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined]. - valid provenance is maintained for [SR-04_ODP; systems, system components, and associated data that require valid provenance are defined].'), ('005100','draft','2022-03-07','DISA','policy','Establish and maintain unique identification of the following supply chain elements, processes, and personnel associated with the identified system and critical system components.','SR-04(01)','N/A','Determine if: - unique identification of [SR-04(01)_ODP; supply chain elements, processes, and personnel associated with systems and critical system components that require unique identification are defined] is established. - unique identification of [SR-04(01)_ODP; supply chain elements, processes, and personnel associated with systems and critical system components that require unique identification are defined] is maintained.'), ('005101','draft','2022-03-07','DISA','policy','Defines the supply chain elements, processes, and personnel associated with organization-defined systems and critical system components for establishing and maintaining unique identification.','SR-04(01)','N/A','Determine if: - unique identification of [SR-04(01)_ODP; supply chain elements, processes, and personnel associated with systems and critical system components that require unique identification are defined] is established. - unique identification of [SR-04(01)_ODP; supply chain elements, processes, and personnel associated with systems and critical system components that require unique identification are defined] is maintained.'), ('005102','draft','2022-03-07','DISA','policy','Establish and maintain unique identification of the following systems and critical components for tracking through the supply chain.','SR-04(02)','N/A','Determine if: - the unique identification of [SR-04(02)_ODP; systems and critical system components that require unique identification for tracking through the supply chain are defined] is established for tracking through the supply chain. - the unique identification of [SR-04(02)_ODP; systems and critical system components that require unique identification for tracking through the supply chain are defined] is maintained for tracking through the supply chain.'), ('005103','draft','2022-03-07','DISA','policy','Defines the systems and critical system components for tracking through the supply chain.','SR-04(02)','N/A','Determine if: - the unique identification of [SR-04(02)_ODP; systems and critical system components that require unique identification for tracking through the supply chain are defined] is established for tracking through the supply chain. - the unique identification of [SR-04(02)_ODP; systems and critical system components that require unique identification for tracking through the supply chain are defined] is maintained for tracking through the supply chain.'), ('005104','draft','2022-03-07','DISA','policy','Employ the following controls to validate that the system or system component received is genuine.','SR-04(03)','N/A','Determine if: - [SR-04(03)_ODP[01]; controls to validate that the system or system component received is genuine are defined] are employed to validate that the system or system component received is genuine. - [SR-04(03)_ODP[02]; controls to validate that the system or system component received has not been altered are defined] are employed to validate that the system or system component received has not been altered.'), ('005105','draft','2022-03-07','DISA','policy','Employ the following controls to validate that the system or system component received has not been altered.','SR-04(03)','N/A','Determine if: - [SR-04(03)_ODP[01]; controls to validate that the system or system component received is genuine are defined] are employed to validate that the system or system component received is genuine. - [SR-04(03)_ODP[02]; controls to validate that the system or system component received has not been altered are defined] are employed to validate that the system or system component received has not been altered.'), ('005106','draft','2022-03-07','DISA','policy','Defines the controls for validating that the system or system component received is genuine.','SR-04(03)','N/A','Determine if: - [SR-04(03)_ODP[01]; controls to validate that the system or system component received is genuine are defined] are employed to validate that the system or system component received is genuine. - [SR-04(03)_ODP[02]; controls to validate that the system or system component received has not been altered are defined] are employed to validate that the system or system component received has not been altered.'), ('005107','draft','2022-03-07','DISA','policy','Defines the controls for validating that the system or system component received has not been altered.','SR-04(03)','N/A','Determine if: - [SR-04(03)_ODP[01]; controls to validate that the system or system component received is genuine are defined] are employed to validate that the system or system component received is genuine. - [SR-04(03)_ODP[02]; controls to validate that the system or system component received has not been altered are defined] are employed to validate that the system or system component received has not been altered.'), ('005108','draft','2022-03-07','DISA','policy','Employ organization-defined controls to ensure the integrity of the system and system components by validating the internal composition and provenance of critical or mission essential technologies, products, and services.','SR-04(04)','N/A','Determine if: - [SR-04(04)_ODP[01]; controls employed to ensure that the integrity of the system and system component are defined] are employed to ensure the integrity of the system and system components. - [SR-04(04)_ODP[02]; an analysis method to be conducted to validate the internal composition and provenance of critical or mission-essential technologies, products, and services to ensure the integrity of the system and system component is defined] is conducted to ensure the integrity of the system and system components.'), ('005109','draft','2022-03-07','DISA','policy','Defines the controls for ensuring the integrity of the system and system components.','SR-04(04)','N/A','Determine if: - [SR-04(04)_ODP[01]; controls employed to ensure that the integrity of the system and system component are defined] are employed to ensure the integrity of the system and system components. - [SR-04(04)_ODP[02]; an analysis method to be conducted to validate the internal composition and provenance of critical or mission-essential technologies, products, and services to ensure the integrity of the system and system component is defined] is conducted to ensure the integrity of the system and system components.'), ('005110','draft','2022-03-07','DISA','policy','Conduct organization-defined analysis to ensure the integrity of the system and system components by validating the internal composition and provenance of critical or mission essential technologies, products, and services.','SR-04(04)','N/A','Determine if: - [SR-04(04)_ODP[01]; controls employed to ensure that the integrity of the system and system component are defined] are employed to ensure the integrity of the system and system components. - [SR-04(04)_ODP[02]; an analysis method to be conducted to validate the internal composition and provenance of critical or mission-essential technologies, products, and services to ensure the integrity of the system and system component is defined] is conducted to ensure the integrity of the system and system components.'), ('005111','draft','2022-03-07','DISA','policy','Defines the analysis for ensuring the integrity of the system and system components.','SR-04(04)','N/A','Determine if: - [SR-04(04)_ODP[01]; controls employed to ensure that the integrity of the system and system component are defined] are employed to ensure the integrity of the system and system components. - [SR-04(04)_ODP[02]; an analysis method to be conducted to validate the internal composition and provenance of critical or mission-essential technologies, products, and services to ensure the integrity of the system and system component is defined] is conducted to ensure the integrity of the system and system components.'), ('005112','draft','2022-03-07','DISA','policy','Employ the following acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks.','SR-05','N/A','Determine if: - [SR-05_ODP; acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks are defined] are employed to protect against supply chain risks. - [SR-05_ODP; acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks are defined] are employed to identify supply chain risks. - [SR-05_ODP; acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks are defined] are employed to mitigate supply chain risks.'), ('005113','draft','2022-03-07','DISA','policy','Defines the acquisition strategies, contract tools, and procurement methods for protecting against, identifying, and mitigating supply chain risks.','SR-05','N/A','Determine if: - [SR-05_ODP; acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks are defined] are employed to protect against supply chain risks. - [SR-05_ODP; acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks are defined] are employed to identify supply chain risks. - [SR-05_ODP; acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks are defined] are employed to mitigate supply chain risks.'), ('005114','draft','2022-03-07','DISA','policy','Employ the following controls to ensure an adequate supply of organization-defined critical system components.','SR-05(01)','N/A','Determine if [SR-05(01)_ODP[01]; controls to ensure an adequate supply of critical system components are defined] are employed to ensure an adequate supply of [SR-05(01)_ODP[02]; critical system components of which an adequate supply is required are defined].'), ('005115','draft','2022-03-07','DISA','policy','Defines the controls for ensuring an adequate supply of organization-defined critical system components.','SR-05(01)','N/A','Determine if [SR-05(01)_ODP[01]; controls to ensure an adequate supply of critical system components are defined] are employed to ensure an adequate supply of [SR-05(01)_ODP[02]; critical system components of which an adequate supply is required are defined].'), ('005116','draft','2022-03-07','DISA','policy','Defines the critical system components that the organization-defined controls ensure an adequate supply of.','SR-05(01)','N/A','Determine if [SR-05(01)_ODP[01]; controls to ensure an adequate supply of critical system components are defined] are employed to ensure an adequate supply of [SR-05(01)_ODP[02]; critical system components of which an adequate supply is required are defined].'), ('005117','draft','2022-03-07','DISA','policy','Access the system, system component, or system service prior to selection, acceptance, modification, or update.','SR-05(02)','N/A','Determine if: - the system, system component, or system service is assessed prior to selection. - the system, system component, or system service is assessed prior to acceptance. - the system, system component, or system service is assessed prior to modification. - the system, system component, or system service is assessed prior to update.'), ('005118','draft','2022-03-07','DISA','policy','Access and review the supply chain-related risks associated with suppliers or contractors and the system, system component, or system service they provide on an organization-defined frequency.','SR-06','N/A','Determine if the supply chain-related risks associated with suppliers or contractors and the systems, system components, or system services they provide are assessed and reviewed [SR-06_ODP; the frequency at which to assess and review the supply chain-related risks associated with suppliers or contractors and the systems, system components, or system services they provide is defined].'), ('005119','draft','2022-03-07','DISA','policy','Defines the frequency for assessing and reviewing the supply chain risks.','SR-06','N/A','Determine if the supply chain-related risks associated with suppliers or contractors and the systems, system components, or system services they provide are assessed and reviewed [SR-06_ODP; the frequency at which to assess and review the supply chain-related risks associated with suppliers or contractors and the systems, system components, or system services they provide is defined].'), ('005120','draft','2022-03-07','DISA','policy','Employ organizational analysis, independent third-party analysis, organizational testing, and/or independent third-party testing of the following supply chain elements, processes, and actors associated with the system, system component, or system service.','SR-06(01)','N/A','Determine if [SR-06(01)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {organizational analysis; independent third-party analysis; organizational testing; independent third-party testing}] is/are employed on [SR-06(01)_ODP[02]; supply chain elements, processes, and actors to be analyzed and tested are defined] associated with the system, system component, or system service.'), ('005121','draft','2022-03-07','DISA','policy','Defines the supply chain elements, processes, and actors for employing organizational analysis, independent third-party analysis, organizational testing, and/or independent third-party testing.','SR-06(01)','N/A','Determine if [SR-06(01)_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {organizational analysis; independent third-party analysis; organizational testing; independent third-party testing}] is/are employed on [SR-06(01)_ODP[02]; supply chain elements, processes, and actors to be analyzed and tested are defined] associated with the system, system component, or system service.'), ('005122','draft','2022-03-07','DISA','policy','Employ the following Operations Security (OPSEC) controls to protect supply chain-related information for the system, system component, or system service.','SR-07','N/A','Determine if [SR-07_ODP; Operations Security (OPSEC) controls to protect supply chain-related information for the system, system component, or system service are defined] are employed to protect supply chain-related information for the system, system component, or system service.'), ('005123','draft','2022-03-07','DISA','policy','Defines the Operations Security (OPSEC) controls that protect supply chain-related information for the system, system component, or system service.','SR-07','N/A','Determine if [SR-07_ODP; Operations Security (OPSEC) controls to protect supply chain-related information for the system, system component, or system service are defined] are employed to protect supply chain-related information for the system, system component, or system service.'), ('005124','draft','2022-03-07','DISA','policy','Establish agreements and procedures with entities involved in the supply chain for the system, system component, or system service for the notification of supply chain compromises, results of assessments or audits, and/or organization-defined information.','SR-08','N/A','Determine if agreements and procedures are established with entities involved in the supply chain for the system, system components, or system service for [SR-08_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {notification of supply chain compromises; [SR-08_ODP[02]; information for which agreements and procedures are to be established are defined (if selected)]}].'), ('005125','draft','2022-03-07','DISA','policy','Defines the information for establishing agreements and procedures with entities involved in the supply chain for the system, system component, or system service.','SR-08','N/A','Determine if agreements and procedures are established with entities involved in the supply chain for the system, system components, or system service for [SR-08_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {notification of supply chain compromises; [SR-08_ODP[02]; information for which agreements and procedures are to be established are defined (if selected)]}].'), ('005126','draft','2022-03-07','DISA','policy','Implement a tamper protection program for the system, system component, or system service.','SR-09','N/A','Determine if a tamper protection program is implemented for the system, system component, or system service.'), ('005127','draft','2022-03-07','DISA','policy','Employ anti-tamper technologies, tool, and techniques throughout the system development life cycle.','SR-09(01)','N/A','Determine if anti-tamper technologies, tools, and techniques are employed throughout the system development life cycle.'), ('005128','draft','2022-03-07','DISA','policy','Inspect the following systems or system components at random, at organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering.','SR-10','N/A','Determine if [SR-10_ODP[01]; systems or system components that require inspection are defined] are inspected [SR-10_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at random; at [SR-10_ODP[03]; frequency at which to inspect systems or system components is defined (if selected)]; upon [SR-10_ODP[04]; indications of the need for an inspection of systems or system components are defined (if selected)]}] to detect tampering.'), ('005129','draft','2022-03-07','DISA','policy','Defines the frequency for inspecting systems or system components.','SR-10','N/A','Determine if [SR-10_ODP[01]; systems or system components that require inspection are defined] are inspected [SR-10_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at random; at [SR-10_ODP[03]; frequency at which to inspect systems or system components is defined (if selected)]; upon [SR-10_ODP[04]; indications of the need for an inspection of systems or system components are defined (if selected)]}] to detect tampering.'), ('005130','draft','2022-03-07','DISA','policy','Defines the indications of need for inspection for detecting tampering.','SR-10','N/A','Determine if [SR-10_ODP[01]; systems or system components that require inspection are defined] are inspected [SR-10_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at random; at [SR-10_ODP[03]; frequency at which to inspect systems or system components is defined (if selected)]; upon [SR-10_ODP[04]; indications of the need for an inspection of systems or system components are defined (if selected)]}] to detect tampering.'), ('005131','draft','2022-03-07','DISA','policy','Defines the system or system components which will be inspected at random, at organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering.','SR-10','N/A','Determine if [SR-10_ODP[01]; systems or system components that require inspection are defined] are inspected [SR-10_ODP[02]; one or more of the following PARAMETER VALUES is/are selected: {at random; at [SR-10_ODP[03]; frequency at which to inspect systems or system components is defined (if selected)]; upon [SR-10_ODP[04]; indications of the need for an inspection of systems or system components are defined (if selected)]}] to detect tampering.'), ('005132','draft','2022-03-07','DISA','policy','Develop and document anti-counterfeit policy that include the means to detect and prevent counterfeit components from entering the system.','SR-11a.','N/A','Determine if: - an anti-counterfeit policy is developed and implemented. - anti-counterfeit procedures are developed and implemented. - the anti-counterfeit procedures include the means to detect counterfeit components entering the system. - the anti-counterfeit procedures include the means to prevent counterfeit components from entering the system.'), ('005133','draft','2022-03-07','DISA','policy','Develop and document anti-counterfeit procedures that include the means to detect and prevent counterfeit components from entering the system.','SR-11a.','N/A','Determine if: - an anti-counterfeit policy is developed and implemented. - anti-counterfeit procedures are developed and implemented. - the anti-counterfeit procedures include the means to detect counterfeit components entering the system. - the anti-counterfeit procedures include the means to prevent counterfeit components from entering the system.'), ('005134','draft','2022-03-07','DISA','policy','Report counterfeit system components to source of counterfeit component, organization-defined external reporting organizations, and/or organization-defined personnel or roles.','SR-11b.','N/A','Determine if counterfeit system components are reported to [SR-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {source of counterfeit component; [SR-11_ODP[02]; external reporting organizations to whom counterfeit system components are to be reported is/are defined (if selected)]; [SR-11_ODP[03]; personnel or roles to whom counterfeit system components are to be reported is/are defined (if selected)]}].'), ('005135','draft','2022-03-07','DISA','policy','Defines the external reporting organizations who report counterfeit system components.','SR-11b.','N/A','Determine if counterfeit system components are reported to [SR-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {source of counterfeit component; [SR-11_ODP[02]; external reporting organizations to whom counterfeit system components are to be reported is/are defined (if selected)]; [SR-11_ODP[03]; personnel or roles to whom counterfeit system components are to be reported is/are defined (if selected)]}].'), ('005136','draft','2022-03-07','DISA','policy','Defines the personnel or roles who report counterfeit system components.','SR-11b.','N/A','Determine if counterfeit system components are reported to [SR-11_ODP[01]; one or more of the following PARAMETER VALUES is/are selected: {source of counterfeit component; [SR-11_ODP[02]; external reporting organizations to whom counterfeit system components are to be reported is/are defined (if selected)]; [SR-11_ODP[03]; personnel or roles to whom counterfeit system components are to be reported is/are defined (if selected)]}].'), ('005137','draft','2022-03-07','DISA','policy','Train organization-defined personnel or roles to detect counterfeit system components including hardware, software, and firmware.','SR-11(01)','N/A','Determine if [SR-11(01)_ODP; personnel or roles requiring training to detect counterfeit system components (including hardware, software, and firmware) is/are defined] are trained to detect counterfeit system components (including hardware, software, and firmware).'), ('005138','draft','2022-03-07','DISA','policy','Defines the personnel or roles who are trained to detect counterfeit system components (including hardware, software, and firmware).','SR-11(01)','N/A','Determine if [SR-11(01)_ODP; personnel or roles requiring training to detect counterfeit system components (including hardware, software, and firmware) is/are defined] are trained to detect counterfeit system components (including hardware, software, and firmware).'), ('005139','draft','2022-03-07','DISA','policy','Maintain configuration control over the following system components awaiting service or repair.','SR-11(02)','N/A','Determine if: - configuration control over [SR-11(02)_ODP; system components requiring configuration control are defined] awaiting service or repair is maintained. - configuration control over serviced or repaired [SR-11(02)_ODP; system components requiring configuration control are defined] awaiting return to service is maintained.'), ('005140','draft','2022-03-07','DISA','policy','Maintain configuration control over serviced or repaired components awaiting return to service.','SR-11(02)','N/A','Determine if: - configuration control over [SR-11(02)_ODP; system components requiring configuration control are defined] awaiting service or repair is maintained. - configuration control over serviced or repaired [SR-11(02)_ODP; system components requiring configuration control are defined] awaiting return to service is maintained.'), ('005141','draft','2022-03-07','DISA','policy','Defines the system components awaiting service or repair.','SR-11(02)','N/A','Determine if: - configuration control over [SR-11(02)_ODP; system components requiring configuration control are defined] awaiting service or repair is maintained. - configuration control over serviced or repaired [SR-11(02)_ODP; system components requiring configuration control are defined] awaiting return to service is maintained.'), ('005142','draft','2022-03-07','DISA','policy','Scan for counterfeit system components on an organization-defined frequency.','SR-11(03)','N/A','Determine if scanning for counterfeit system components is conducted [SR-11(03)_ODP; the frequency at which to scan for counterfeit system components is defined].'), ('005143','draft','2022-03-07','DISA','policy','Defines the frequency for which the counterfeit system components are scanned.','SR-11(03)','N/A','Determine if scanning for counterfeit system components is conducted [SR-11(03)_ODP; the frequency at which to scan for counterfeit system components is defined].'), ('005144','draft','2022-03-07','DISA','policy','Dispose of organization-defined data, documentation, tools, or system components using the following techniques and methods.','SR-12','N/A','Determine if [SR-12_ODP[01]; data, documentation, tools, or system components to be disposed of are defined] are disposed of using [SR-12_ODP[02]; techniques and methods for disposing of data, documentation, tools, or system components are defined].'), ('005145','draft','2022-03-07','DISA','policy','Defines the data, documentation, tools, or system components which are to be disposed of using organization-defined techniques and methods.','SR-12','N/A','Determine if [SR-12_ODP[01]; data, documentation, tools, or system components to be disposed of are defined] are disposed of using [SR-12_ODP[02]; techniques and methods for disposing of data, documentation, tools, or system components are defined].'), ('005146','draft','2022-03-07','DISA','policy','Defines the techniques or methods used to dispose of organization-defined data, documentation, tools, or system components.','SR-12','N/A','Determine if [SR-12_ODP[01]; data, documentation, tools, or system components to be disposed of are defined] are disposed of using [SR-12_ODP[02]; techniques and methods for disposing of data, documentation, tools, or system components are defined].'), ('005147','draft','2022-03-08','DISA','policy','Provide basic privacy literacy training to system users (including managers, senior executives, and contractors) as part of initial training for new users.','AT-02a.01','N/A','Determine if: - security literacy training is provided to system users (including managers, senior executives, and contractors) as part of initial training for new users. - privacy literacy training is provided to system users (including managers, senior executives, and contractors) as part of initial training for new users. - security literacy training is provided to system users (including managers, senior executives, and contractors) [AT-02_ODP[01]; the frequency at which to provide security literacy training to system users (including managers, senior executives, and contractors) after initial training is defined] thereafter. - privacy literacy training is provided to system users (including managers, senior executives, and contractors) [AT-02_ODP[02]; the frequency at which to provide privacy literacy training to system users (including managers, senior executives, and contractors) after initial training is defined] thereafter.'), ('005149','draft','2023-07-17','DISA FSO','policy','Implement organization-defined measures to disassociate individuals from audit information transmitted across organizational boundaries.',NULL,'N/A',NULL), ('005150','draft','2023-07-17','DISA FSO','policy','Identify, prioritize, and assess suppliers of critical or mission-essential technologies, products, and services.',NULL,'N/A',NULL), ('005151','draft','2024-11-18','DISA','policy','Review and update incident response training content at an organization-defined frequency and following organization-defined events.',NULL,'N/A',NULL), ('005152','draft','2024-11-18','DISA','policy','Defines the frequency to review and update incident response training content.',NULL,'N/A',NULL), ('005153','draft','2024-11-18','DISA','policy','Defines events that require the review and update of incident response training content.',NULL,'N/A',NULL), ('005154','draft','2024-11-18','DISA','policy','Increase the availability of incident response information and support using organization-defined automated mechanisms.',NULL,'N/A',NULL), ('005155','draft','2025-01-23','DISA','policy','Employ identity providers and authorization servers to manage user, device, and non-person entity (NPE) identities, attributes, and access rights supporting authentication and authorization decisions in accordance with organization-defined identification and authentication policy using organization-defined mechanisms.',NULL,'N/A',NULL), ('005156','draft','2025-01-23','DISA','policy','Cryptographic keys that protect access tokens are generated, managed, and protected from disclosure and misuse.',NULL,'N/A',NULL), ('005157','draft','2025-01-23','DISA','policy','The private keys used to sign assertions and tokens are protected commensurate with the impact of the system and information resources that can be accessed.',NULL,'N/A',NULL), ('005158','draft','2025-01-23','DISA','technical','Assertions are generated in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005159','draft','2025-01-23','DISA','technical','Assertions are issued in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005160','draft','2025-01-23','DISA','technical','Assertions are refreshed in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005161','draft','2025-01-23','DISA','technical','Assertions are revoked in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005162','draft','2025-01-23','DISA','technical','Assertions are time-restricted in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005163','draft','2025-01-23','DISA','technical','Assertions are audience-restricted in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005164','draft','2025-01-23','DISA','technical','Access tokens are generated in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005165','draft','2025-01-23','DISA','technical','Access tokens are issued in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005166','draft','2025-01-23','DISA','technical','Access tokens are refreshed in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005167','draft','2025-01-23','DISA','technical','Access tokens are revoked in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005168','draft','2025-01-23','DISA','technical','Access tokens are time-restricted in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL), ('005169','draft','2025-01-23','DISA','technical','Access tokens are audience-restricted in accordance with organization-defined identification and authentication policy.',NULL,'N/A',NULL); /*!40000 ALTER TABLE `cci` ENABLE KEYS */; UNLOCK TABLES; -- -- Data for table `cci_reference_map` -- LOCK TABLES `cci_reference_map` WRITE; /*!40000 ALTER TABLE `cci_reference_map` DISABLE KEYS */; INSERT INTO `cci_reference_map` (`cci`, `creator`, `title`, `version`, `location`, `indexDisa`, `textRefNist`, `parentControl`) VALUES ('000002','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1 (a)','AC-1a1(a)','AC-1'), ('000003','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 1','AC-1c1','AC-1'), ('000005','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 2','AC-1a2','AC-1'), ('000006','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 2','AC-1c2','AC-1'), ('000010','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 e','AC-2e','AC-2'), ('000011','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('000012','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 j','AC-2j','AC-2'), ('000015','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (1)','AC-2(1)','AC-2'), ('000016','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2(2)','AC-2'), ('000017','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3) (d)','AC-2(3)(d)','AC-2'), ('000018','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2(4)','AC-2'), ('000019','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (5)','AC-2(5)','AC-2'), ('000021','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (2)','AC-3(2)','AC-3'), ('000024','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (5)','AC-3(5)','AC-3'), ('000026','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (2)','AC-4(2)','AC-4'), ('000027','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (3)','AC-4(3)','AC-4'), ('000028','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (4)','AC-4(4)','AC-4'), ('000029','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (5)','AC-4(5)','AC-4'), ('000030','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (6)','AC-4(6)','AC-4'), ('000031','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (7)','AC-4(7)','AC-4'), ('000032','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8) (a)','AC-4(8)(a)','AC-4'), ('000034','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (10)','AC-4(10)','AC-4'), ('000035','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (11)','AC-4(11)','AC-4'), ('000039','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (2)','AC-6(2)','AC-6'), ('000041','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6(3)','AC-6'), ('000042','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6(3)','AC-6'), ('000043','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 a','AC-7a','AC-7'), ('000044','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 a','AC-7a','AC-7'), ('000048','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a','AC-8a','AC-8'), ('000050','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 b','AC-8b','AC-8'), ('000052','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9','AC-9','AC-9'), ('000053','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (1)','AC-9(1)','AC-9'), ('000054','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), ('000055','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), ('000056','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 b','AC-11b','AC-11'), ('000057','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 a','AC-11a','AC-11'), ('000059','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 a','AC-11a','AC-11'), ('000060','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-11 (1)','AC-11(1)','AC-11'), ('000061','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-14 a','AC-14a','AC-14'), ('000065','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 b','AC-17b','AC-17'), ('000067','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (1)','AC-17(1)','AC-17'), ('000068','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (2)','AC-17(2)','AC-17'), ('000069','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (3)','AC-17(3)','AC-17'), ('000070','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17(4)(a)','AC-17'), ('000072','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (6)','AC-17(6)','AC-17'), ('000073','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 1','PM-1a1','PM-1'), ('000074','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 4','PM-1a4','PM-1'), ('000075','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 b','PM-1b','PM-1'), ('000076','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 b','PM-1b','PM-1'), ('000078','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-2','PM-2','PM-2'), ('000080','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 a','PM-3a','PM-3'), ('000083','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a','AC-19'), ('000084','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 b','AC-19b','AC-19'), ('000093','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a 1','AC-20a1','AC-20'), ('000097','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (2)','AC-20(2)','AC-20'), ('000098','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 a','AC-21a','AC-21'), ('000099','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 (1)','AC-21(1)','AC-21'), ('000100','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1 (a)','AT-1a1(a)','AT-1'), ('000101','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1 (a)','AT-1a1(a)','AT-1'), ('000102','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 c 1','AT-1c1','AT-1'), ('000103','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 2','AT-1a2','AT-1'), ('000104','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 2','AT-1a2','AT-1'), ('000105','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 c 2','AT-1c2','AT-1'), ('000106','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 a 1','AT-2a1','AT-2'), ('000107','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (1)','AT-2(1)','AT-2'), ('000108','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 a 1','AT-3a1','AT-3'), ('000109','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 a 2','AT-3a2','AT-3'), ('000112','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 a 2','AT-2a2','AT-2'), ('000113','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 a','AT-4a','AT-4'), ('000114','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 a','AT-4a','AT-4'), ('000117','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1 (a)','AU-1a1(a)','AU-1'), ('000119','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 1','AU-1c1','AU-1'), ('000120','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a2','AU-1'), ('000122','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 2','AU-1c2','AU-1'), ('000123','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 a','AU-2a','AU-2'), ('000124','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 b','AU-2b','AU-2'), ('000125','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 d','AU-2d','AU-2'), ('000126','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 c','AU-2c','AU-2'), ('000130','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 a','AU-3a','AU-3'), ('000131','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 b','AU-3b','AU-3'), ('000132','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 c','AU-3c','AU-3'), ('000133','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 d','AU-3d','AU-3'), ('000134','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 e','AU-3e','AU-3'), ('000135','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (1)','AU-3(1)','AU-3'), ('000139','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 a','AU-5a','AU-5'), ('000140','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 b','AU-5b','AU-5'), ('000141','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 c','PM-3c','PM-3'), ('000142','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a1','PM-4'), ('000145','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (3)','AU-5(3)','AU-5'), ('000147','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5(2)','AU-5'), ('000148','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a','AU-6'), ('000149','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 b','AU-6b','AU-6'), ('000151','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a','AU-6'), ('000153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (3)','AU-6(3)','AU-6'), ('000154','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (4)','AU-6(4)','AU-6'), ('000158','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (1)','AU-7(1)','AU-7'), ('000159','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 a','AU-8a','AU-8'), ('000162','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 a','AU-9a','AU-9'), ('000163','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 a','AU-9a','AU-9'), ('000164','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 a','AU-9a','AU-9'), ('000165','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (1)','AU-9(1)','AU-9'), ('000166','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10','AU-10','AU-10'), ('000167','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-11','AU-11','AU-11'), ('000168','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-11','AU-11','AU-11'), ('000169','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 a','AU-12a','AU-12'), ('000170','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 2','PM-4a2','PM-4'), ('000171','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 b','AU-12b','AU-12'), ('000172','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 c','AU-12c','AU-12'), ('000173','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12(1)','AU-12'), ('000174','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12(1)','AU-12'), ('000176','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 b','IA-5b','IA-5'), ('000182','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 f','IA-5f','IA-5'), ('000183','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 g','IA-5g','IA-5'), ('000184','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 h','IA-5h','IA-5'), ('000185','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (b) (1)','IA-5(2)(b)(1)','IA-5'), ('000186','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (a) (1)','IA-5(2)(a)(1)','IA-5'), ('000187','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (a) (2)','IA-5(2)(a)(2)','IA-5'), ('000197','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (c)','IA-5(1)(c)','IA-5'), ('000201','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (6)','IA-5(6)','IA-5'), ('000204','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (8)','IA-5(8)','IA-5'), ('000206','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-6','IA-6','IA-6'), ('000209','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), ('000210','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), ('000211','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), ('000212','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-7','PM-7','PM-7'), ('000213','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3','AC-3','AC-3'), ('000216','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-8','PM-8','PM-8'), ('000217','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3)','AC-2(3)','AC-2'), ('000219','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (13)','AC-4(13)','AC-4'), ('000225','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6','AC-6','AC-6'), ('000227','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 a 1','PM-9a1','PM-9'), ('000228','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 b','PM-9b','PM-9'), ('000232','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-14 b','AC-14b','AC-14'), ('000233','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 b','PM-10b','PM-10'), ('000234','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 c','PM-10c','PM-10'), ('000235','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 a','PM-11a','PM-11'), ('000236','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 b','PM-11b','PM-11'), ('000238','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 1','CA-1c1','CA-1'), ('000239','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1 (a)','CA-1a1(a)','CA-1'), ('000240','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1 (a)','CA-1a1(a)','CA-1'), ('000241','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 1','CA-1c1','CA-1'), ('000242','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a2','CA-1'), ('000243','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a2','CA-1'), ('000244','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 2','CA-1c2','CA-1'), ('000246','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 b 1','CA-2b1','CA-2'), ('000247','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 b 2','CA-2b2','CA-2'), ('000248','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 b 3','CA-2b3','CA-2'), ('000251','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 d','CA-2d','CA-2'), ('000252','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 d','CA-2d','CA-2'), ('000253','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 e','CA-2e','CA-2'), ('000254','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 f','CA-2f','CA-2'), ('000255','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (1)','CA-2(1)','CA-2'), ('000256','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2(2)','CA-2'), ('000258','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 b','CA-3b','CA-3'), ('000259','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 b','CA-3b','CA-3'), ('000264','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 a','CA-5a','CA-5'), ('000265','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 b','CA-5b','CA-5'), ('000266','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 b','CA-5b','CA-5'), ('000267','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5(1)','CA-5'), ('000268','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5(1)','CA-5'), ('000269','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5(1)','CA-5'), ('000270','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 a','CA-6a','CA-6'), ('000271','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 c 2','CA-6c2','CA-6'), ('000272','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 e','CA-6e','CA-6'), ('000273','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 e','CA-6e','CA-6'), ('000274','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7','CA-7','CA-7'), ('000279','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 c','CA-7c','CA-7'), ('000280','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g','CA-7'), ('000281','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g','CA-7'), ('000282','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (1)','CA-7(1)','CA-7'), ('000286','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 1','CM-1c1','CM-1'), ('000287','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1 (a)','CM-1a1(a)','CM-1'), ('000289','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 1','CM-1c1','CM-1'), ('000290','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a2','CM-1'), ('000292','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a2','CM-1'), ('000295','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 a','CM-2a','CM-2'), ('000296','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 b 1','CM-2b1','CM-2'), ('000297','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 b 2','CM-2b2','CM-2'), ('000300','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2(2)','CM-2'), ('000301','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2(2)','CM-2'), ('000302','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2(2)','CM-2'), ('000303','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2(2)','CM-2'), ('000304','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (3)','CM-2(3)','CM-2'), ('000311','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (6)','CM-2(6)','CM-2'), ('000312','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (6)','CM-2(6)','CM-2'), ('000313','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 a','CM-3a','CM-3'), ('000314','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 b','CM-3b','CM-3'), ('000316','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 e','CM-3e','CM-3'), ('000318','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 f','CM-3f','CM-3'), ('000319','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g','CM-3'), ('000320','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g','CM-3'), ('000321','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g','CM-3'), ('000322','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (a)','CM-3(1)(a)','CM-3'), ('000323','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (b)','CM-3(1)(b)','CM-3'), ('000324','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (c)','CM-3(1)(c)','CM-3'), ('000325','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (d)','CM-3(1)(d)','CM-3'), ('000326','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (e)','CM-3(1)(e)','CM-3'), ('000327','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (2)','CM-3(2)','CM-3'), ('000328','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (2)','CM-3(2)','CM-3'), ('000329','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (2)','CM-3(2)','CM-3'), ('000330','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (3)','CM-3(3)','CM-3'), ('000331','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (3)','CM-3(3)','CM-3'), ('000332','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3(4)','CM-3'), ('000333','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4','CM-4','CM-4'), ('000335','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4(2)','CM-4'), ('000336','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4(2)','CM-4'), ('000337','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4(2)','CM-4'), ('000340','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), ('000341','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), ('000344','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), ('000345','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), ('000353','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5(4)','CM-5'), ('000354','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5(4)','CM-5'), ('000366','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 b','CM-6b','CM-6'), ('000367','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c','CM-6'), ('000368','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c','CM-6'), ('000369','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c','CM-6'), ('000370','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6(1)','CM-6'), ('000371','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6(1)','CM-6'), ('000372','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6(1)','CM-6'), ('000380','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 b','CM-7b','CM-7'), ('000381','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 a','CM-7a','CM-7'), ('000382','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 b','CM-7b','CM-7'), ('000384','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (a)','CM-7(1)(a)','CM-7'), ('000387','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (3)','CM-7(3)','CM-7'), ('000388','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (3)','CM-7(3)','CM-7'), ('000398','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 5','CM-8a5','CM-8'), ('000408','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (1)','CM-8(1)','CM-8'), ('000409','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (1)','CM-8(1)','CM-8'), ('000410','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (1)','CM-8(1)','CM-8'), ('000411','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8(2)','CM-8'), ('000412','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8(2)','CM-8'), ('000413','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8(2)','CM-8'), ('000414','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8(2)','CM-8'), ('000415','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (a)','CM-8(3)(a)','CM-8'), ('000416','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (a)','CM-8(3)(a)','CM-8'), ('000418','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (4)','CM-8(4)','CM-8'), ('000420','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (6)','CM-8(6)','CM-8'), ('000423','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 a','CM-9a','CM-9'), ('000426','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c','CM-9'), ('000436','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 (1)','CM-9(1)','CM-9'), ('000437','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 1','CP-1c1','CP-1'), ('000438','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1 (a)','CP-1a1(a)','CP-1'), ('000439','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1 (a)','CP-1a1(a)','CP-1'), ('000440','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 1','CP-1c1','CP-1'), ('000441','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 2','CP-1a2','CP-1'), ('000443','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 1','CP-2a1','CP-2'), ('000444','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 1','CP-2a1','CP-2'), ('000445','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 1','CP-2a1','CP-2'), ('000446','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 2','CP-2a2','CP-2'), ('000447','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 2','CP-2a2','CP-2'), ('000448','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 2','CP-2a2','CP-2'), ('000449','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 3','CP-2a3','CP-2'), ('000456','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 5','CP-2a5','CP-2'), ('000457','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 7','CP-2a7','CP-2'), ('000458','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 b','CP-2b','CP-2'), ('000459','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 b','CP-2b','CP-2'), ('000460','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 c','CP-2c','CP-2'), ('000461','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 d','CP-2d','CP-2'), ('000462','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 d','CP-2d','CP-2'), ('000463','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e','CP-2'), ('000464','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e','CP-2'), ('000465','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e','CP-2'), ('000466','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 e','CP-2e','CP-2'), ('000468','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 f','CP-2f','CP-2'), ('000469','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (1)','CP-2(1)','CP-2'), ('000470','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (2)','CP-2(2)','CP-2'), ('000471','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (2)','CP-2(2)','CP-2'), ('000472','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (2)','CP-2(2)','CP-2'), ('000473','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2(3)','CP-2'), ('000474','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2(3)','CP-2'), ('000475','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2(3)','CP-2'), ('000476','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (3)','CP-2(3)','CP-2'), ('000481','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2(5)','CP-2'), ('000482','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2(5)','CP-2'), ('000483','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2(6)','CP-2'), ('000484','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2(6)','CP-2'), ('000485','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a 3','CP-3a3','CP-3'), ('000486','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a 1','CP-3a1','CP-3'), ('000487','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a 3','CP-3a3','CP-3'), ('000488','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 (1)','CP-3(1)','CP-3'), ('000489','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 (2)','CP-3(2)','CP-3'), ('000490','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 a','CP-4a','CP-4'), ('000492','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 a','CP-4a','CP-4'), ('000494','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 a','CP-4a','CP-4'), ('000496','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 b','CP-4b','CP-4'), ('000497','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 c','CP-4c','CP-4'), ('000498','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (1)','CP-4(1)','CP-4'), ('000500','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (2) (a)','CP-4(2)(a)','CP-4'), ('000502','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (3)','CP-4(3)','CP-4'), ('000504','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (4)','CP-4(4)','CP-4'), ('000505','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 a','CP-6a','CP-6'), ('000507','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (1)','CP-6(1)','CP-6'), ('000508','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (2)','CP-6(2)','CP-6'), ('000509','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (3)','CP-6(3)','CP-6'), ('000510','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a','CP-7'), ('000513','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a','CP-7'), ('000514','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a','CP-7'), ('000515','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 b','CP-7b','CP-7'), ('000516','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (1)','CP-7(1)','CP-7'), ('000517','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (2)','CP-7(2)','CP-7'), ('000518','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (3)','CP-7(3)','CP-7'), ('000519','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (4)','CP-7(4)','CP-7'), ('000520','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (4)','CP-7(4)','CP-7'), ('000521','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 c','CP-7c','CP-7'), ('000522','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), ('000523','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), ('000524','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), ('000525','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), ('000526','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (a)','CP-8(1)(a)','CP-8'), ('000527','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (a)','CP-8(1)(a)','CP-8'), ('000530','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (2)','CP-8(2)','CP-8'), ('000531','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (3)','CP-8(3)','CP-8'), ('000532','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (a)','CP-8(4)(a)','CP-8'), ('000533','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (a)','CP-8(4)(a)','CP-8'), ('000534','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (a)','CP-9(a)','CP-9'), ('000535','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (a)','CP-9(a)','CP-9'), ('000536','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (b)','CP-9(b)','CP-9'), ('000537','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (b)','CP-9(b)','CP-9'), ('000538','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (c)','CP-9(c)','CP-9'), ('000539','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (c)','CP-9(c)','CP-9'), ('000541','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (1)','CP-9(1)','CP-9'), ('000542','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (1)','CP-9(1)','CP-9'), ('000543','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (2)','CP-9(2)','CP-9'), ('000547','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (5)','CP-9(5)','CP-9'), ('000548','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (5)','CP-9(5)','CP-9'), ('000549','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (6)','CP-9(6)','CP-9'), ('000553','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (2)','CP-10(2)','CP-10'), ('000556','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (4)','CP-10(4)','CP-10'), ('000557','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (4)','CP-10(4)','CP-10'), ('000558','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (5)','SI-13(5)','SI-13'), ('000559','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (5)','SI-13(5)','SI-13'), ('000563','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1 (a)','PL-1a1(a)','PL-1'), ('000564','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1 (a)','PL-1a1(a)','PL-1'), ('000566','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 2','PL-1a2','PL-1'), ('000567','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 2','PL-1a2','PL-1'), ('000568','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 c 2','PL-1c2','PL-1'), ('000571','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 15','PL-2a15','PL-2'), ('000572','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 c','PL-2c','PL-2'), ('000573','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 c','PL-2c','PL-2'), ('000574','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 d','PL-2d','PL-2'), ('000577','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 b','PL-7b','PL-7'), ('000578','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 b','PL-7b','PL-7'), ('000592','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a','PL-4'), ('000593','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 b','PL-4b','PL-4'), ('000594','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 (1) (a)','PL-4(1)(a)','PL-4'), ('000595','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 (1) (b)','PL-4(1)(b)','PL-4'), ('000601','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 1','SA-1c1','SA-1'), ('000602','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1 (a)','SA-1a1(a)','SA-1'), ('000603','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1','SA-1a1','SA-1'), ('000604','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 1','SA-1c1','SA-1'), ('000605','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 2','SA-1a2','SA-1'), ('000606','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 2','SA-1a2','SA-1'), ('000607','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 2','SA-1c2','SA-1'), ('000610','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 b','SA-2b','SA-2'), ('000611','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 b','SA-2b','SA-2'), ('000612','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 b','SA-2b','SA-2'), ('000613','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 c','SA-2c','SA-2'), ('000614','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 c','SA-2c','SA-2'), ('000615','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('000616','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 b','SA-3b','SA-3'), ('000618','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 c','SA-3c','SA-3'), ('000623','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (1)','SA-4(1)','SA-4'), ('000631','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (6) (a)','SA-4(6)(a)','SA-4'), ('000633','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (6) (b)','SA-4(6)(b)','SA-4'), ('000634','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (7) (a)','SA-4(7)(a)','SA-4'), ('000635','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (7) (b)','SA-4(7)(b)','SA-4'), ('000642','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 c','SA-5c','SA-5'), ('000664','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('000665','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('000666','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('000667','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('000668','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('000669','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9','SA-9','SA-9'), ('000692','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 c','SA-10c','SA-10'), ('000694','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 d','SA-10d','SA-10'), ('000698','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (1)','SA-10(1)','SA-10'), ('000700','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (2)','SA-10(2)','SA-10'), ('000757','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1 (a)','IA-1a1(a)','IA-1'), ('000758','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 1','IA-1c1','IA-1'), ('000759','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 1','IA-1c1','IA-1'), ('000762','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 2','IA-1c2','IA-1'), ('000763','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 2','IA-1c2','IA-1'), ('000764','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2','IA-2','IA-2'), ('000765','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (1)','IA-2(1)','IA-2'), ('000766','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (2)','IA-2(2)','IA-2'), ('000777','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3','IA-3','IA-3'), ('000778','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3','IA-3','IA-3'), ('000783','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (b)','IA-3(3)(b)','IA-3'), ('000796','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (1)','IA-4(1)','IA-4'), ('000800','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (4)','IA-4(4)','IA-4'), ('000801','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (4)','IA-4(4)','IA-4'), ('000803','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-7','IA-7','IA-7'), ('000804','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8','IA-8','IA-8'), ('000805','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1 (a)','IR-1a1(a)','IR-1'), ('000806','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1 (a)','IR-1a1(a)','IR-1'), ('000807','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 1','IR-1c1','IR-1'), ('000808','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 1','IR-1c1','IR-1'), ('000809','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 2','IR-1a2','IR-1'), ('000810','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 2','IR-1a2','IR-1'), ('000811','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 2','IR-1c2','IR-1'), ('000812','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 2','IR-1c2','IR-1'), ('000813','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a 1','IR-2a1','IR-2'), ('000814','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a 3','IR-2a3','IR-2'), ('000815','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a 3','IR-2a3','IR-2'), ('000816','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 (1)','IR-2(1)','IR-2'), ('000817','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 (2)','IR-2(2)','IR-2'), ('000818','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), ('000819','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), ('000820','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3','IR-3','IR-3'), ('000821','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (1)','IR-3(1)','IR-3'), ('000822','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 a','IR-4a','IR-4'), ('000823','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 b','IR-4b','IR-4'), ('000825','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (1)','IR-4(1)','IR-4'), ('000826','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (2)','IR-4(2)','IR-4'), ('000827','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (3)','IR-4(3)','IR-4'), ('000828','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (3)','IR-4(3)','IR-4'), ('000829','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (4)','IR-4(4)','IR-4'), ('000830','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (5)','IR-4(5)','IR-4'), ('000831','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (5)','IR-4(5)','IR-4'), ('000832','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-5','IR-5','IR-5'), ('000834','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 a','IR-6a','IR-6'), ('000835','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 a','IR-6a','IR-6'), ('000836','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 b','IR-6b','IR-6'), ('000837','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (1)','IR-6(1)','IR-6'), ('000838','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (2)','IR-6(2)','IR-6'), ('000839','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-7','IR-7','IR-7'), ('000841','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-7 (2) (a)','IR-7(2)(a)','IR-7'), ('000842','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-7 (2) (b)','IR-7(2)(b)','IR-7'), ('000844','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 9','IR-8a9','IR-8'), ('000845','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 b','IR-8b','IR-8'), ('000846','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 b','IR-8b','IR-8'), ('000849','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 c','IR-8c','IR-8'), ('000850','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 d','IR-8d','IR-8'), ('000851','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 1','MA-1c1','MA-1'), ('000852','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1 (a)','MA-1a1(a)','MA-1'), ('000853','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1','MA-1a1','MA-1'), ('000854','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 1','MA-1c1','MA-1'), ('000855','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 2','MA-1a2','MA-1'), ('000856','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 2','MA-1a2','MA-1'), ('000857','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 2','MA-1c2','MA-1'), ('000860','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 c','MA-2c','MA-2'), ('000861','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 d','MA-2d','MA-2'), ('000862','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 e','MA-2e','MA-2'), ('000865','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 a','MA-3a','MA-3'), ('000866','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 a','MA-3a','MA-3'), ('000867','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 a','MA-3a','MA-3'), ('000869','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (1)','MA-3(1)','MA-3'), ('000870','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (2)','MA-3(2)','MA-3'), ('000871','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3)','MA-3(3)','MA-3'), ('000873','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 a','MA-4a','MA-4'), ('000874','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 a','MA-4a','MA-4'), ('000876','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 b','MA-4b','MA-4'), ('000877','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 c','MA-4c','MA-4'), ('000878','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 d','MA-4d','MA-4'), ('000882','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (3) (a)','MA-4(3)(a)','MA-4'), ('000883','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (3) (b)','MA-4(3)(b)','MA-4'), ('000884','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (a)','MA-4(4)(a)','MA-4'), ('000886','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (b)','MA-4(5)(b)','MA-4'), ('000887','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (a)','MA-4(5)(a)','MA-4'), ('000890','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 a','MA-5a','MA-5'), ('000891','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 a','MA-5a','MA-5'), ('000893','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (a)','MA-5(1)(a)','MA-5'), ('000894','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (a) (1)','MA-5(1)(a)(1)','MA-5'), ('000895','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (a) (2)','MA-5(1)(a)(2)','MA-5'), ('000897','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (2)','MA-5(2)','MA-5'), ('000898','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (3)','MA-5(3)','MA-5'), ('000899','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (4) (a)','MA-5(4)(a)','MA-5'), ('000900','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (4) (b)','MA-5(4)(b)','MA-5'), ('000903','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6','MA-6','MA-6'), ('000904','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1 (a)','PE-1a1(a)','PE-1'), ('000905','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1','PE-1a1','PE-1'), ('000906','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 1','PE-1c1','PE-1'), ('000907','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 1','PE-1c1','PE-1'), ('000908','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 2','PE-1a2','PE-1'), ('000909','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 2','PE-1a2','PE-1'), ('000910','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 2','PE-1c2','PE-1'), ('000911','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 2','PE-1c2','PE-1'), ('000912','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 a','PE-2a','PE-2'), ('000913','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 b','PE-2b','PE-2'), ('000914','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 c','PE-2c','PE-2'), ('000915','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 c','PE-2c','PE-2'), ('000916','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (1)','PE-2(1)','PE-2'), ('000917','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (2)','PE-2(2)','PE-2'), ('000920','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 1','PE-3a1','PE-3'), ('000923','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 e','PE-3e','PE-3'), ('000924','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 f','PE-3f','PE-3'), ('000925','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 f','PE-3f','PE-3'), ('000926','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 g','PE-3g','PE-3'), ('000927','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 g','PE-3g','PE-3'), ('000928','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (1)','PE-3(1)','PE-3'), ('000929','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (2)','PE-3(2)','PE-3'), ('000930','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (3)','PE-3(3)','PE-3'), ('000931','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (4)','PE-3(4)','PE-3'), ('000932','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (4)','PE-3(4)','PE-3'), ('000933','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (5)','PE-3(5)','PE-3'), ('000936','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-4','PE-4','PE-4'), ('000937','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-5','PE-5','PE-5'), ('000939','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b','PE-6'), ('000940','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b','PE-6'), ('000941','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 c','PE-6c','PE-6'), ('000942','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (1)','PE-6(1)','PE-6'), ('000947','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 a','PE-8a','PE-8'), ('000948','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 b','PE-8b','PE-8'), ('000949','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 b','PE-8b','PE-8'), ('000950','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 (1)','PE-8(1)','PE-8'), ('000952','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-9','PE-9','PE-9'), ('000954','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (2)','PE-9(2)','PE-9'), ('000955','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (2)','PE-9(2)','PE-9'), ('000956','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 a','PE-10a','PE-10'), ('000957','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 b','PE-10b','PE-10'), ('000958','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 b','PE-10b','PE-10'), ('000959','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 c','PE-10c','PE-10'), ('000961','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (1)','PE-11(1)','PE-11'), ('000963','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-12','PE-12','PE-12'), ('000965','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13','PE-13','PE-13'), ('000968','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2) (b)','PE-13(2)(b)','PE-13'), ('000971','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 a','PE-14a','PE-14'), ('000972','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 a','PE-14a','PE-14'), ('000973','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 b','PE-14b','PE-14'), ('000974','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 b','PE-14b','PE-14'), ('000975','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 (1)','PE-14(1)','PE-14'), ('000976','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 (2)','PE-14(2)','PE-14'), ('000977','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15','PE-15','PE-15'), ('000978','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15','PE-15','PE-15'), ('000979','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15','PE-15','PE-15'), ('000981','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-16 a','PE-16a','PE-16'), ('000983','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-16 a','PE-16a','PE-16'), ('000984','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-16 b','PE-16b','PE-16'), ('000985','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 b','PE-17b','PE-17'), ('000987','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 c','PE-17c','PE-17'), ('000988','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 d','PE-17d','PE-17'), ('000989','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-18','PE-18','PE-18'), ('000991','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-18','PE-18','PE-18'), ('000993','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-19','PE-19','PE-19'), ('000995','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1 (a)','MP-1a1(a)','MP-1'), ('000996','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1','MP-1a1','MP-1'), ('000997','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 1','MP-1c1','MP-1'), ('000998','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 1','MP-1c1','MP-1'), ('000999','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 2','MP-1a2','MP-1'), ('001000','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 2','MP-1a2','MP-1'), ('001001','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 2','MP-1c2','MP-1'), ('001002','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 2','MP-1c2','MP-1'), ('001003','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-2','MP-2','MP-2'), ('001004','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-2','MP-2','MP-2'), ('001005','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-2','MP-2','MP-2'), ('001007','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 (2)','MP-4(2)','MP-4'), ('001008','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 (2)','MP-4(2)','MP-4'), ('001010','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 a','MP-3a','MP-3'), ('001011','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 b','MP-3b','MP-3'), ('001012','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 b','MP-3b','MP-3'), ('001013','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-3 b','MP-3b','MP-3'), ('001015','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a','MP-4'), ('001016','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a','MP-4'), ('001021','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a','MP-5'), ('001022','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a','MP-5'), ('001023','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 b','MP-5b','MP-5'), ('001024','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 d','MP-5d','MP-5'), ('001025','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 c','MP-5c','MP-5'), ('001026','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 (3)','MP-5(3)','MP-5'), ('001028','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 a','MP-6a','MP-6'), ('001031','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (2)','MP-6(2)','MP-6'), ('001032','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (3)','MP-6(3)','MP-6'), ('001033','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (3)','MP-6(3)','MP-6'), ('001037','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1 (a)','RA-1a1(a)','RA-1'), ('001038','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1 (a)','RA-1a1(a)','RA-1'), ('001039','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 1','RA-1c1','RA-1'), ('001040','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 1','RA-1c1','RA-1'), ('001041','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 2','RA-1a2','RA-1'), ('001042','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 2','RA-1a2','RA-1'), ('001043','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 2','RA-1c2','RA-1'), ('001044','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 2','RA-1c2','RA-1'), ('001046','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 b','RA-2b','RA-2'), ('001047','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 c','RA-2c','RA-2'), ('001048','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 a 2','RA-3a2','RA-3'), ('001049','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 c','RA-3c','RA-3'), ('001050','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 d','RA-3d','RA-3'), ('001051','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 d','RA-3d','RA-3'), ('001052','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 f','RA-3f','RA-3'), ('001053','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 f','RA-3f','RA-3'), ('001054','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a','RA-5'), ('001055','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a','RA-5'), ('001056','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a','RA-5'), ('001057','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 b 1','RA-5b1','RA-5'), ('001058','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 c','RA-5c','RA-5'), ('001059','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 d','RA-5d','RA-5'), ('001060','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 d','RA-5d','RA-5'), ('001061','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 e','RA-5e','RA-5'), ('001063','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (2)','RA-5(2)','RA-5'), ('001064','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (2)','RA-5(2)','RA-5'), ('001066','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (4)','RA-5(4)','RA-5'), ('001067','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (5)','RA-5(5)','RA-5'), ('001068','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (6)','RA-5(6)','RA-5'), ('001071','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (8)','RA-5(8)','RA-5'), ('001075','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1','SC-1a1','SC-1'), ('001076','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 1','SC-1c1','SC-1'), ('001077','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 1','SC-1c1','SC-1'), ('001079','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a2','SC-1'), ('001080','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 2','SC-1c2','SC-1'), ('001081','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 2','SC-1c2','SC-1'), ('001082','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-2','SC-2','SC-2'), ('001083','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-2 (1)','SC-2(1)','SC-2'), ('001084','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-3','SC-3','SC-3'), ('001085','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (1)','SC-3(1)','SC-3'), ('001086','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (2)','SC-3(2)','SC-3'), ('001089','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (5)','SC-3(5)','SC-3'), ('001090','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-4','SC-4','SC-4'), ('001093','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 a','SC-5a','SC-5'), ('001094','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (1)','SC-5(1)','SC-5'), ('001095','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (2)','SC-5(2)','SC-5'), ('001097','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 a','SC-7a','SC-7'), ('001098','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 c','SC-7c','SC-7'), ('001101','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (3)','SC-7(3)','SC-7'), ('001102','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (a)','SC-7(4)(a)','SC-7'), ('001103','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (b)','SC-7(4)(b)','SC-7'), ('001105','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (d)','SC-7(4)(d)','SC-7'), ('001106','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (e)','SC-7(4)(e)','SC-7'), ('001107','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (e)','SC-7(4)(e)','SC-7'), ('001108','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (e)','SC-7(4)(e)','SC-7'), ('001109','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (5)','SC-7(5)','SC-7'), ('001112','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (8)','SC-7(8)','SC-7'), ('001113','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (8)','SC-7(8)','SC-7'), ('001114','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (8)','SC-7(8)','SC-7'), ('001116','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (10) (a)','SC-7(10)(a)','SC-7'), ('001119','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (13)','SC-7(13)','SC-7'), ('001120','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (13)','SC-7(13)','SC-7'), ('001121','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (14)','SC-7(14)','SC-7'), ('001123','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (15)','SC-7(15)','SC-7'), ('001124','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (16)','SC-7(16)','SC-7'), ('001125','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (17)','SC-7(17)','SC-7'), ('001126','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (18)','SC-7(18)','SC-7'), ('001133','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-10','SC-10','SC-10'), ('001134','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-10','SC-10','SC-10'), ('001135','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 a','SC-11a','SC-11'), ('001139','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (1)','SC-12(1)','SC-12'), ('001150','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 a','SC-15a','SC-15'), ('001151','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 a','SC-15a','SC-15'), ('001152','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 b','SC-15b','SC-15'), ('001153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (1)','SC-15(1)','SC-15'), ('001155','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (3)','SC-15(3)','SC-15'), ('001156','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (3)','SC-15(3)','SC-15'), ('001157','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), ('001158','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (1)','SC-16(1)','SC-16'), ('001159','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-17 a','SC-17a','SC-17'), ('001160','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 a','SC-18a','SC-18'), ('001163','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 b','SC-18b','SC-18'), ('001164','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 b','SC-18b','SC-18'), ('001165','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 b','SC-18b','SC-18'), ('001166','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18(1)','SC-18'), ('001167','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18(2)','SC-18'), ('001168','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18(2)','SC-18'), ('001169','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (3)','SC-18(3)','SC-18'), ('001170','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18(4)','SC-18'), ('001171','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18(4)','SC-18'), ('001172','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18(4)','SC-18'), ('001178','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 a','SC-20a','SC-20'), ('001179','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 b','SC-20b','SC-20'), ('001182','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-22','SC-22','SC-22'), ('001183','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-22','SC-22','SC-22'), ('001184','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23','SC-23','SC-23'), ('001185','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (1)','SC-23(1)','SC-23'), ('001188','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (3)','SC-23(3)','SC-23'), ('001189','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (3)','SC-23(3)','SC-23'), ('001190','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), ('001191','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), ('001192','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), ('001193','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), ('001194','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-25','SC-25','SC-25'), ('001195','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-26','SC-26','SC-26'), ('001196','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-35','SC-35','SC-35'), ('001197','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-27','SC-27','SC-27'), ('001198','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-27','SC-27','SC-27'), ('001199','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28','SC-28','SC-28'), ('001201','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-29','SC-29','SC-29'), ('001203','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-29 (1)','SC-29(1)','SC-29'), ('001204','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-29 (1)','SC-29(1)','SC-29'), ('001207','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (1)','SC-31(1)','SC-31'), ('001210','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 a','SC-34a','SC-34'), ('001211','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 b','SC-34b','SC-34'), ('001212','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34','SC-34','SC-34'), ('001213','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 b','SC-34b','SC-34'), ('001214','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (1)','SC-34(1)','SC-34'), ('001215','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (1)','SC-34(1)','SC-34'), ('001216','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (2)','SC-34(2)','SC-34'), ('001217','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 1 (a)','SI-1a1(a)','SI-1'), ('001218','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 1','SI-1a1','SI-1'), ('001219','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 1','SI-1c1','SI-1'), ('001220','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 2','SI-1a2','SI-1'), ('001221','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 2','SI-1a2','SI-1'), ('001222','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 2','SI-1c2','SI-1'), ('001223','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 1','SI-1c1','SI-1'), ('001224','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 2','SI-1c2','SI-1'), ('001225','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 a','SI-2a','SI-2'), ('001226','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 a','SI-2a','SI-2'), ('001227','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 a','SI-2a','SI-2'), ('001228','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b','SI-2'), ('001229','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b','SI-2'), ('001230','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 d','SI-2d','SI-2'), ('001235','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (3) (a)','SI-2(3)(a)','SI-2'), ('001236','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (3) (b)','SI-2(3)(b)','SI-2'), ('001241','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c1','SI-3'), ('001243','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 2','SI-3c2','SI-3'), ('001244','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 2','SI-3c2','SI-3'), ('001245','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 d','SI-3d','SI-3'), ('001249','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (4)','SI-3(4)','SI-3'), ('001251','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (a)','SI-3(6)(a)','SI-3'), ('001253','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 1','SI-4a1','SI-4'), ('001255','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 c 1','SI-4c1','SI-4'), ('001256','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 c 2','SI-4c2','SI-4'), ('001257','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 e','SI-4e','SI-4'), ('001258','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 f','SI-4f','SI-4'), ('001260','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (2)','SI-4(2)','SI-4'), ('001264','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (5)','SI-4(5)','SI-4'), ('001266','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7) (a)','SI-4(7)(a)','SI-4'), ('001267','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7) (a)','SI-4(7)(a)','SI-4'), ('001268','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7) (b)','SI-4(7)(b)','SI-4'), ('001270','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (9)','SI-4(9)','SI-4'), ('001271','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (9)','SI-4(9)','SI-4'), ('001273','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (11)','SI-4(11)','SI-4'), ('001274','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (12)','SI-4(12)','SI-4'), ('001275','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (12)','SI-4(12)','SI-4'), ('001276','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (13) (a)','SI-4(13)(a)','SI-4'), ('001277','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (13) (b)','SI-4(13)(b)','SI-4'), ('001282','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (15)','SI-4(15)','SI-4'), ('001283','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (16)','SI-4(16)','SI-4'), ('001284','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (17)','SI-4(17)','SI-4'), ('001285','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 a','SI-5a','SI-5'), ('001286','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 b','SI-5b','SI-5'), ('001287','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c','SI-5'), ('001288','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c','SI-5'), ('001289','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 d','SI-5d','SI-5'), ('001290','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 (1)','SI-5(1)','SI-5'), ('001294','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 c','SI-6c','SI-6'), ('001295','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (2)','SI-6(2)','SI-6'), ('001296','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (3)','SI-6(3)','SI-6'), ('001300','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (2)','SI-7(2)','SI-7'), ('001301','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (3)','SI-7(3)','SI-7'), ('001308','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 (2)','SI-8(2)','SI-8'), ('001310','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10','SI-10','SI-10'), ('001312','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-11 a','SI-11a','SI-11'), ('001314','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-11 b','SI-11b','SI-11'), ('001315','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12','SI-12','SI-12'), ('001318','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 b','SI-13b','SI-13'), ('001319','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (1)','SI-13(1)','SI-13'), ('001320','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (1)','SI-13(1)','SI-13'), ('001321','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (16)','SI-7(16)','SI-7'), ('001322','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (16)','SI-7(16)','SI-7'), ('001323','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (3)','SI-13(3)','SI-13'), ('001326','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (a)','SI-13(4)(a)','SI-13'), ('001327','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (a)','SI-13(4)(a)','SI-13'), ('001328','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (b)','SI-13(4)(b)','SI-13'), ('001329','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (b)','SI-13(4)(b)','SI-13'), ('001330','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (a)','AC-19(4)(a)','AC-19'), ('001331','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (1)','AC-19(4)(b)(1)','AC-19'), ('001332','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (2)','AC-19(4)(b)(2)','AC-19'), ('001333','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (3)','AC-19(4)(b)(3)','AC-19'), ('001334','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (4)','AC-19(4)(b)(4)','AC-19'), ('001335','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (4)','AC-19(4)(b)(4)','AC-19'), ('001336','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 b','AT-4b','AT-4'), ('001337','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 b','AT-4b','AT-4'), ('001340','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (3)','AU-10(3)','AU-10'), ('001341','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (a)','AU-10(4)(a)','AU-10'), ('001348','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (2)','AU-9(2)','AU-9'), ('001349','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (2)','AU-9(2)','AU-9'), ('001350','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (3)','AU-9(3)','AU-9'), ('001351','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (4)','AU-9(4)','AU-9'), ('001353','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (2)','AU-12(2)','AU-12'), ('001358','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (a)','AC-2(7)(a)','AC-2'), ('001360','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (b)','AC-2(7)(b)','AC-2'), ('001361','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2(2)','AC-2'), ('001365','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2(2)','AC-2'), ('001368','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), ('001371','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (14)','AC-4(14)','AC-4'), ('001372','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (14)','AC-4(14)','AC-4'), ('001373','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4(15)','AC-4'), ('001374','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4(15)','AC-4'), ('001384','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 1','AC-8c1','AC-8'), ('001385','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 2','AC-8c2','AC-8'), ('001386','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 2','AC-8c2','AC-8'), ('001387','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 2','AC-8c2','AC-8'), ('001388','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 3','AC-8c3','AC-8'), ('001389','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9(2)','AC-9'), ('001390','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9(2)','AC-9'), ('001391','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9(2)','AC-9'), ('001392','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (2)','AC-9(2)','AC-9'), ('001393','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (3)','AC-9(3)','AC-9'), ('001394','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (3)','AC-9(3)','AC-9'), ('001395','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (3)','AC-9(3)','AC-9'), ('001403','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2(4)','AC-2'), ('001404','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2(4)','AC-2'), ('001405','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2(4)','AC-2'), ('001406','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (5)','AC-2(5)','AC-2'), ('001407','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (a)','AC-2(7)(a)','AC-2'), ('001408','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (2)','AC-3(2)','AC-3'), ('001411','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (5)','AC-3(5)','AC-3'), ('001414','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), ('001415','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (5)','AC-4(5)','AC-4'), ('001417','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8) (a)','AC-4(8)(a)','AC-4'), ('001419','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (2)','AC-6(2)','AC-6'), ('001420','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6(3)','AC-6'), ('001422','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (6)','AC-6(6)','AC-6'), ('001423','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 a','AC-7a','AC-7'), ('001424','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('001425','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16(2)','AC-16'), ('001428','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16(5)','AC-16'), ('001429','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16(5)','AC-16'), ('001430','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16(5)','AC-16'), ('001439','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 a','AC-18a','AC-18'), ('001441','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 b','AC-18b','AC-18'), ('001443','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (1)','AC-18(1)','AC-18'), ('001444','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (1)','AC-18(1)','AC-18'), ('001449','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (3)','AC-18(3)','AC-18'), ('001451','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (5)','AC-18(5)','AC-18'), ('001453','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (2)','AC-17(2)','AC-17'), ('001458','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (b) (4)','AC-19(4)(b)(4)','AC-19'), ('001459','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 a','AU-12a','AU-12'), ('001460','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 a','AU-13a','AU-13'), ('001461','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 a','AU-13a','AU-13'), ('001464','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 (1)','AU-14(1)','AU-14'), ('001470','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 a','AC-21a','AC-21'), ('001471','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 b','AC-21b','AC-21'), ('001472','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 b','AC-21b','AC-21'), ('001473','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 a','AC-22a','AC-22'), ('001474','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 b','AC-22b','AC-22'), ('001475','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 c','AC-22c','AC-22'), ('001476','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 d','AC-22d','AC-22'), ('001477','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 d','AC-22d','AC-22'), ('001478','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-22 d','AC-22d','AC-22'), ('001481','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3(1)','AT-3'), ('001482','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3(1)','AT-3'), ('001483','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3(1)','AT-3'), ('001484','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 c','AU-2c','AU-2'), ('001485','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 c','AU-2c','AU-2'), ('001487','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 f','AU-3f','AU-3'), ('001488','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (1)','AU-3(1)','AU-3'), ('001490','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 b','AU-5b','AU-5'), ('001491','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (6)','AU-6(6)','AU-6'), ('001493','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 a','AU-9a','AU-9'), ('001494','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 a','AU-9a','AU-9'), ('001495','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 a','AU-9a','AU-9'), ('001496','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (3)','AU-9(3)','AU-9'), ('001497','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 b 1','CM-2b1','CM-2'), ('001498','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (c)','CM-3(1)(c)','CM-3'), ('001499','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (6)','CM-5(6)','CM-5'), ('001504','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1 (a)','PS-1a1(a)','PS-1'), ('001505','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1','PS-1a1','PS-1'), ('001506','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 1','PS-1c1','PS-1'), ('001507','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 1','PS-1c1','PS-1'), ('001508','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 2','PS-1c2','PS-1'), ('001509','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 2','PS-1a2','PS-1'), ('001510','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 2','PS-1a2','PS-1'), ('001511','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 2','PS-1c2','PS-1'), ('001512','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 a','PS-2a','PS-2'), ('001513','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 b','PS-2b','PS-2'), ('001514','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 c','PS-2c','PS-2'), ('001515','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-2 c','PS-2c','PS-2'), ('001516','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 a','PS-3a','PS-3'), ('001517','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 b','PS-3b','PS-3'), ('001518','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 b','PS-3b','PS-3'), ('001519','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 b','PS-3b','PS-3'), ('001520','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (1)','PS-3(1)','PS-3'), ('001521','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (2)','PS-3(2)','PS-3'), ('001522','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 a','PS-4a','PS-4'), ('001523','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 c','PS-4c','PS-4'), ('001524','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 d','PS-4d','PS-4'), ('001525','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 e','PS-4e','PS-4'), ('001526','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 e','PS-4e','PS-4'), ('001527','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 a','PS-5a','PS-5'), ('001528','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 b','PS-5b','PS-5'), ('001529','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 b','PS-5b','PS-5'), ('001530','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 b','PS-5b','PS-5'), ('001532','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 b','PS-6b','PS-6'), ('001533','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 b','PS-6b','PS-6'), ('001536','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (2) (a)','PS-6(2)(a)','PS-6'), ('001537','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (2) (b)','PS-6(2)(b)','PS-6'), ('001538','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (2) (c)','PS-6(2)(c)','PS-6'), ('001539','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 a','PS-7a','PS-7'), ('001540','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 c','PS-7c','PS-7'), ('001541','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 e','PS-7e','PS-7'), ('001544','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 c','IA-5c','IA-5'), ('001545','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 1','AC-1c1','AC-1'), ('001546','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 2','AC-1c2','AC-1'), ('001547','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 j','AC-2j','AC-2'), ('001548','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), ('001549','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4','AC-4','AC-4'), ('001553','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (10)','AC-4(10)','AC-4'), ('001554','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (11)','AC-4(11)','AC-4'), ('001558','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1) (a)','AC-6(1)(a)','AC-6'), ('001564','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 c 1','AT-1c1','AT-1'), ('001565','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 c 2','AT-1c2','AT-1'), ('001566','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3(2)','AT-3'), ('001567','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3(2)','AT-3'), ('001568','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3(2)','AT-3'), ('001569','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 1','AU-1c1','AU-1'), ('001570','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 2','AU-1c2','AU-1'), ('001571','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 a','AU-2a','AU-2'), ('001572','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 a','AU-5a','AU-5'), ('001573','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (3)','AU-5(3)','AU-5'), ('001577','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (1)','AU-12(1)','AU-12'), ('001578','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 2','CA-1c2','CA-1'), ('001582','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2(2)','CA-2'), ('001584','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 2','CM-1c2','CM-1'), ('001585','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 b 2','CM-2b2','CM-2'), ('001586','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 g','CM-3g','CM-3'), ('001592','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (2)','CM-7(2)','CM-7'), ('001596','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 2','CP-1c2','CP-1'), ('001597','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 2','CP-1a2','CP-1'), ('001598','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 2','CP-1c2','CP-1'), ('001599','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2(5)','CP-2'), ('001600','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (5)','CP-2(5)','CP-2'), ('001601','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2(6)','CP-2'), ('001602','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (6)','CP-2(6)','CP-2'), ('001604','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 (3)','CP-6(3)','CP-6'), ('001606','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (2)','CP-7(2)','CP-7'), ('001609','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (6)','CP-9(6)','CP-9'), ('001610','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 f','IA-5f','IA-5'), ('001621','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (8)','IA-5(8)','IA-5'), ('001625','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 c','IR-4c','IR-4'), ('001628','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 2','MA-1c2','MA-1'), ('001631','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (3) (b)','MA-4(3)(b)','MA-4'), ('001632','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (b) (1)','MA-4(4)(b)(1)','MA-4'), ('001635','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 d','PE-2d','PE-2'), ('001636','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 c 1','PL-1c1','PL-1'), ('001637','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 c 1','PL-1c1','PL-1'), ('001638','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 c 2','PL-1c2','PL-1'), ('001640','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-8','PM-8','PM-8'), ('001641','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a','RA-5'), ('001642','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 c','RA-3c','RA-3'), ('001643','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 a','RA-5a','RA-5'), ('001645','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (5)','RA-5(5)','RA-5'), ('001646','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 2','SA-1c2','SA-1'), ('001661','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 b','SC-11b','SC-11'), ('001662','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18(1)','SC-18'), ('001663','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 b','SC-20b','SC-20'), ('001664','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (3)','SC-23(3)','SC-23'), ('001665','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-24','SC-24','SC-24'), ('001669','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (a)','SI-3(6)(a)','SI-3'), ('001670','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (7) (b)','SI-4(7)(b)','SI-4'), ('001671','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (11)','SI-4(11)','SI-4'), ('001673','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (14)','SI-4(14)','SI-4'), ('001675','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (3)','SI-6(3)','SI-6'), ('001678','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12','SI-12','SI-12'), ('001680','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 2','PM-1a2','PM-1'), ('001682','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (2)','AC-2(2)','AC-2'), ('001687','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18(2)','SC-18'), ('001688','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (2)','SC-18(2)','SC-18'), ('001695','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (3)','SC-18(3)','SC-18'), ('001726','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a','CM-10'), ('001727','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a','CM-10'), ('001728','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a','CM-10'), ('001729','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 a','CM-10a','CM-10'), ('001730','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b','CM-10'), ('001731','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b','CM-10'), ('001732','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 c','CM-10c','CM-10'), ('001733','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 c','CM-10c','CM-10'), ('001734','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 (1)','CM-10(1)','CM-10'), ('001735','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 (1)','CM-10(1)','CM-10'), ('001736','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (3)','CM-2(3)','CM-2'), ('001737','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (a)','CM-2(7)(a)','CM-2'), ('001738','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (a)','CM-2(7)(a)','CM-2'), ('001739','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (a)','CM-2(7)(a)','CM-2'), ('001740','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 b','CM-3b','CM-3'), ('001741','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 c','CM-3c','CM-3'), ('001742','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (b)','CM-3(1)(b)','CM-3'), ('001743','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (5)','CM-3(5)','CM-3'), ('001744','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (5)','CM-3(5)','CM-3'), ('001745','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (6)','CM-3(6)','CM-3'), ('001746','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (6)','CM-3(6)','CM-3'), ('001751','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5(4)','CM-5'), ('001752','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (4)','CM-5(4)','CM-5'), ('001753','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (a)','CM-5(5)(a)','CM-5'), ('001754','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (a)','CM-5(5)(a)','CM-5'), ('001755','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c','CM-6'), ('001756','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 c','CM-6c','CM-6'), ('001757','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (2)','CM-6(2)','CM-6'), ('001758','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (2)','CM-6(2)','CM-6'), ('001759','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (2)','CM-6(2)','CM-6'), ('001760','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (a)','CM-7(1)(a)','CM-7'), ('001761','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (b)','CM-7(1)(b)','CM-7'), ('001762','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (1) (b)','CM-7(1)(b)','CM-7'), ('001763','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (2)','CM-7(2)','CM-7'), ('001764','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (2)','CM-7(2)','CM-7'), ('001765','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (a)','CM-7(4)(a)','CM-7'), ('001766','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (a)','CM-7(4)(a)','CM-7'), ('001767','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (b)','CM-7(4)(b)','CM-7'), ('001768','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (c)','CM-7(4)(c)','CM-7'), ('001770','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (4) (c)','CM-7(4)(c)','CM-7'), ('001772','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (a)','CM-7(5)(a)','CM-7'), ('001773','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (a)','CM-7(5)(a)','CM-7'), ('001774','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (b)','CM-7(5)(b)','CM-7'), ('001775','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (c)','CM-7(5)(c)','CM-7'), ('001777','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (5) (c)','CM-7(5)(c)','CM-7'), ('001779','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 b','CM-8b','CM-8'), ('001780','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 b','CM-8b','CM-8'), ('001783','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (b)','CM-8(3)(b)','CM-8'), ('001784','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (b)','CM-8(3)(b)','CM-8'), ('001785','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (7)','CM-8(7)','CM-8'), ('001786','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (8)','CM-8(8)','CM-8'), ('001788','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (9) (a)','CM-8(9)(a)','CM-8'), ('001789','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (9) (b)','CM-8(9)(b)','CM-8'), ('001792','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b','CM-9'), ('001795','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b','CM-9'), ('001798','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c','CM-9'), ('001799','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 e','CM-9e','CM-9'), ('001801','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 e','CM-9e','CM-9'), ('001802','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b','CM-10'), ('001803','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-10 b','CM-10b','CM-10'), ('001804','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 a','CM-11a','CM-11'), ('001805','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 a','CM-11a','CM-11'), ('001806','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 b','CM-11b','CM-11'), ('001807','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 b','CM-11b','CM-11'), ('001808','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 c','CM-11c','CM-11'), ('001809','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 c','CM-11c','CM-11'), ('001813','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (1) (a)','CM-5(1)(a)','CM-5'), ('001815','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (b)','CM-2(7)(b)','CM-2'), ('001816','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (7) (b)','CM-2(7)(b)','CM-2'), ('001817','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (1)','CM-4(1)','CM-4'), ('001818','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (1)','CM-4(1)','CM-4'), ('001819','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 d','CM-3d','CM-3'), ('001821','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1 (a)','CM-1a1(a)','CM-1'), ('001822','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1 (a)','CM-1a1(a)','CM-1'), ('001824','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a2','CM-1'), ('001825','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 2','CM-1a2','CM-1'), ('001832','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1 (a)','AU-1a1(a)','AU-1'), ('001834','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a2','AU-1'), ('001848','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-4','AU-4','AU-4'), ('001849','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-4','AU-4','AU-4'), ('001850','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-4 (1)','AU-4(1)','AU-4'), ('001851','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-4 (1)','AU-4(1)','AU-4'), ('001852','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5(1)','AU-5'), ('001853','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5(1)','AU-5'), ('001854','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5(1)','AU-5'), ('001855','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (1)','AU-5(1)','AU-5'), ('001856','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5(2)','AU-5'), ('001857','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5(2)','AU-5'), ('001858','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (2)','AU-5(2)','AU-5'), ('001859','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (3)','AU-5(3)','AU-5'), ('001860','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (4)','AU-5(4)','AU-5'), ('001861','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (4)','AU-5(4)','AU-5'), ('001862','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a','AU-6'), ('001863','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 b','AU-6b','AU-6'), ('001864','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (1)','AU-6(1)','AU-6'), ('001865','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (1)','AU-6(1)','AU-6'), ('001866','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (5)','AU-6(5)','AU-6'), ('001867','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (5)','AU-6(5)','AU-6'), ('001868','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (7)','AU-6(7)','AU-6'), ('001869','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (7)','AU-6(7)','AU-6'), ('001870','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (8)','AU-6(8)','AU-6'), ('001871','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (9)','AU-6(9)','AU-6'), ('001875','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('001876','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('001877','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('001878','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('001879','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('001880','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('001881','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 b','AU-7b','AU-7'), ('001882','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 b','AU-7b','AU-7'), ('001883','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (1)','AU-7(1)','AU-7'), ('001888','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 b','AU-8b','AU-8'), ('001889','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 b','AU-8b','AU-8'), ('001890','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-8 b','AU-8b','AU-8'), ('001894','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (4)','AU-9(4)','AU-9'), ('001895','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (5)','AU-9(5)','AU-9'), ('001896','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (5)','AU-9(5)','AU-9'), ('001897','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (6)','AU-9(6)','AU-9'), ('001898','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (6)','AU-9(6)','AU-9'), ('001899','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10','AU-10','AU-10'), ('001900','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (1) (a)','AU-10(1)(a)','AU-10'), ('001901','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (1) (a)','AU-10(1)(a)','AU-10'), ('001902','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (1) (b)','AU-10(1)(b)','AU-10'), ('001903','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (a)','AU-10(2)(a)','AU-10'), ('001904','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (a)','AU-10(2)(a)','AU-10'), ('001905','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (b)','AU-10(2)(b)','AU-10'), ('001906','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (2) (b)','AU-10(2)(b)','AU-10'), ('001907','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (a)','AU-10(4)(a)','AU-10'), ('001908','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (b)','AU-10(4)(b)','AU-10'), ('001909','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-10 (4) (b)','AU-10(4)(b)','AU-10'), ('001910','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 b','AU-12b','AU-12'), ('001911','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12(3)','AU-12'), ('001912','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12(3)','AU-12'), ('001913','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12(3)','AU-12'), ('001914','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12(3)','AU-12'), ('001915','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 a','AU-13a','AU-13'), ('001917','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (2)','AU-13(2)','AU-13'), ('001918','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (2)','AU-13(2)','AU-13'), ('001919','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 a','AU-14a','AU-14'), ('001920','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 (3)','AU-14(3)','AU-14'), ('001923','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16','AU-16','AU-16'), ('001924','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16','AU-16','AU-16'), ('001925','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16','AU-16','AU-16'), ('001926','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (1)','AU-16(1)','AU-16'), ('001927','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (2)','AU-16(2)','AU-16'), ('001928','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (2)','AU-16(2)','AU-16'), ('001929','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (2)','AU-16(2)','AU-16'), ('001930','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1','AU-1a1','AU-1'), ('001931','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 2','AU-1a2','AU-1'), ('001941','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (8)','IA-2(8)','IA-2'), ('001943','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2(10)','IA-2'), ('001944','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2(10)','IA-2'), ('001945','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2(10)','IA-2'), ('001946','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (10)','IA-2(10)','IA-2'), ('001953','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (12)','IA-2(12)','IA-2'), ('001954','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (12)','IA-2(12)','IA-2'), ('001955','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (13)','IA-2(13)','IA-2'), ('001956','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (13)','IA-2(13)','IA-2'), ('001957','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (13)','IA-2(13)','IA-2'), ('001958','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3','IA-3','IA-3'), ('001959','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (1)','IA-3(1)','IA-3'), ('001960','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3(3)(a)','IA-3'), ('001961','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3(3)(a)','IA-3'), ('001962','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3(3)(a)','IA-3'), ('001963','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (3) (a)','IA-3(3)(a)','IA-3'), ('001965','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3(4)','IA-3'), ('001966','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3(4)','IA-3'), ('001967','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (1)','IA-3(1)','IA-3'), ('001968','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3(4)','IA-3'), ('001969','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-3 (4)','IA-3(4)','IA-3'), ('001970','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 a','IA-4a','IA-4'), ('001971','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 a','IA-4a','IA-4'), ('001972','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 b','IA-4b','IA-4'), ('001973','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 c','IA-4c','IA-4'), ('001974','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 d','IA-4d','IA-4'), ('001975','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 d','IA-4d','IA-4'), ('001976','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (5)','IA-4(5)','IA-4'), ('001977','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (6)','IA-4(6)','IA-4'), ('001978','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (6)','IA-4(6)','IA-4'), ('001980','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 a','IA-5a','IA-5'), ('001981','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d','IA-5'), ('001984','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d','IA-5'), ('001985','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d','IA-5'), ('001988','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d','IA-5'), ('001990','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 i','IA-5i','IA-5'), ('001998','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (5)','IA-5(5)','IA-5'), ('002001','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (10)','IA-5(10)','IA-5'), ('002004','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (12)','IA-5(12)','IA-5'), ('002005','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (12)','IA-5(12)','IA-5'), ('002006','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (13)','IA-5(13)','IA-5'), ('002007','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (13)','IA-5(13)','IA-5'), ('002008','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (14)','IA-5(14)','IA-5'), ('002009','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (1)','IA-8(1)','IA-8'), ('002010','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (1)','IA-8(1)','IA-8'), ('002015','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (5)','IA-8(5)','IA-8'), ('002016','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (5)','IA-8(5)','IA-8'), ('002018','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), ('002021','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), ('002022','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-9','IA-9','IA-9'), ('002033','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-10','IA-10','IA-10'), ('002034','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-10','IA-10','IA-10'), ('002035','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-10','IA-10','IA-10'), ('002036','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-11','IA-11','IA-11'), ('002038','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-11','IA-11','IA-11'), ('002042','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 g','IA-5g','IA-5'), ('002044','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-11 (1)','AU-11(1)','AU-11'), ('002045','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-11 (1)','AU-11(1)','AU-11'), ('002047','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12(3)','AU-12'), ('002048','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1 (a)','AT-1a1(a)','AT-1'), ('002049','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 2','AT-1a2','AT-1'), ('002050','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (1)','AT-3(1)','AT-3'), ('002051','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (2)','AT-3(2)','AT-3'), ('002052','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (3)','AT-3(3)','AT-3'), ('002055','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (2)','AT-2(2)','AT-2'), ('002056','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 e','CM-3e','CM-3'), ('002057','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (f)','CM-3(1)(f)','CM-3'), ('002058','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (f)','CM-3(1)(f)','CM-3'), ('002059','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6(1)','CM-6'), ('002061','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1 (a)','CA-1a1(a)','CA-1'), ('002062','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a2','CA-1'), ('002065','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (2)','CA-2(2)','CA-2'), ('002066','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2(3)','CA-2'), ('002067','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2(3)','CA-2'), ('002068','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2(3)','CA-2'), ('002069','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 (3)','CA-2(3)','CA-2'), ('002070','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 b 3','CA-2b3','CA-2'), ('002071','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 f','CA-2f','CA-2'), ('002083','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 c','CA-3c','CA-3'), ('002084','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 c','CA-3c','CA-3'), ('002086','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (3)','CA-7(3)','CA-7'), ('002087','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 a','CA-7a','CA-7'), ('002088','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 b','CA-7b','CA-7'), ('002090','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 d','CA-7d','CA-7'), ('002091','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 e','CA-7e','CA-7'), ('002092','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 f','CA-7f','CA-7'), ('002093','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8','CA-8','CA-8'), ('002094','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8','CA-8','CA-8'), ('002095','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8','CA-8','CA-8'), ('002096','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (1)','CA-8(1)','CA-8'), ('002097','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (2)','CA-8(2)','CA-8'), ('002099','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (2)','CA-8(2)','CA-8'), ('002100','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (1)','CA-9(1)','CA-9'), ('002101','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (a)','CA-9(a)','CA-9'), ('002102','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (a)','CA-9(a)','CA-9'), ('002103','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), ('002104','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), ('002105','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), ('002107','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1 (a)','AC-1a1(a)','AC-1'), ('002108','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 2','AC-1a2','AC-1'), ('002112','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 b','AC-2b','AC-2'), ('002115','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d 1','AC-2d1','AC-2'), ('002116','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d 2','AC-2d2','AC-2'), ('002117','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d 2','AC-2d2','AC-2'), ('002118','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d 3','AC-2d3','AC-2'), ('002119','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d 3','AC-2d3','AC-2'), ('002120','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 e','AC-2e','AC-2'), ('002121','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('002122','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 g','AC-2g','AC-2'), ('002123','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h 1','AC-2h1','AC-2'), ('002124','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h 2','AC-2h2','AC-2'), ('002125','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h 3','AC-2h3','AC-2'), ('002126','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 1','AC-2i1','AC-2'), ('002127','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 2','AC-2i2','AC-2'), ('002128','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 3','AC-2i3','AC-2'), ('002129','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 k','AC-2k','AC-2'), ('002130','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (4)','AC-2(4)','AC-2'), ('002133','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (5)','AC-2(5)','AC-2'), ('002134','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (6)','AC-2(6)','AC-2'), ('002135','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (6)','AC-2(6)','AC-2'), ('002137','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (d)','AC-2(7)(d)','AC-2'), ('002138','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('002139','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('002140','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (9)','AC-2(9)','AC-2'), ('002141','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (9)','AC-2(9)','AC-2'), ('002143','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (11)','AC-2(11)','AC-2'), ('002144','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (11)','AC-2(11)','AC-2'), ('002145','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (11)','AC-2(11)','AC-2'), ('002146','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (a)','AC-2(12)(a)','AC-2'), ('002147','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (a)','AC-2(12)(a)','AC-2'), ('002148','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (b)','AC-2(12)(b)','AC-2'), ('002149','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (12) (b)','AC-2(12)(b)','AC-2'), ('002150','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (13)','AC-2(13)','AC-2'), ('002151','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (13)','AC-2(13)','AC-2'), ('002152','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (2)','AC-3(2)','AC-3'), ('002153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3)','AC-3(3)','AC-3'), ('002153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (15) (a)','AC-3(15)(a)','AC-3'), ('002154','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (a)','AC-3(3)(a)','AC-3'), ('002155','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (1)','AC-3(3)(b)(1)','AC-3'), ('002156','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (2)','AC-3(3)(b)(2)','AC-3'), ('002157','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (3)','AC-3(3)(b)(3)','AC-3'), ('002158','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (4)','AC-3(3)(b)(4)','AC-3'), ('002159','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (4)','AC-3(3)(b)(4)','AC-3'), ('002160','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (b) (5)','AC-3(3)(b)(5)','AC-3'), ('002161','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (c)','AC-3(3)(c)','AC-3'), ('002162','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (c)','AC-3(3)(c)','AC-3'), ('002163','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4)','AC-3(4)','AC-3'), ('002164','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4)','AC-3(4)','AC-3'), ('002165','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4)','AC-3(4)','AC-3'), ('002166','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3(7)','AC-3'), ('002169','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3(7)','AC-3'), ('002170','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3(7)','AC-3'), ('002173','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3(7)','AC-3'), ('002174','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (7)','AC-3(7)','AC-3'), ('002177','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (8)','AC-3(8)','AC-3'), ('002178','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (8)','AC-3(8)','AC-3'), ('002179','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (8)','AC-3(8)','AC-3'), ('002180','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (a)','AC-3(9)(a)','AC-3'), ('002181','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (a)','AC-3(9)(a)','AC-3'), ('002182','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (a)','AC-3(9)(a)','AC-3'), ('002183','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (b)','AC-3(9)(b)','AC-3'), ('002184','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (9) (b)','AC-3(9)(b)','AC-3'), ('002185','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (10)','AC-3(10)','AC-3'), ('002186','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (10)','AC-3(10)','AC-3'), ('002187','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4(1)','AC-4'), ('002188','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4(1)','AC-4'), ('002189','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4(1)','AC-4'), ('002190','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4(1)','AC-4'), ('002191','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (2)','AC-4(2)','AC-4'), ('002192','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (3)','AC-4(3)','AC-4'), ('002193','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (4)','AC-4(4)','AC-4'), ('002194','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (6)','AC-4(6)','AC-4'), ('002195','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8) (a)','AC-4(8)(a)','AC-4'), ('002196','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (9)','AC-4(9)','AC-4'), ('002197','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (9)','AC-4(9)','AC-4'), ('002198','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (9)','AC-4(9)','AC-4'), ('002199','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (10)','AC-4(10)','AC-4'), ('002200','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (12)','AC-4(12)','AC-4'), ('002201','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (12)','AC-4(12)','AC-4'), ('002202','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (13)','AC-4(13)','AC-4'), ('002203','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4(15)','AC-4'), ('002204','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (15)','AC-4(15)','AC-4'), ('002205','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (17)','AC-4(17)','AC-4'), ('002207','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (17)','AC-4(17)','AC-4'), ('002211','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (19)','AC-4(19)','AC-4'), ('002212','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (20)','AC-4(20)','AC-4'), ('002213','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (20)','AC-4(20)','AC-4'), ('002214','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (20)','AC-4(20)','AC-4'), ('002215','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (21)','AC-4(21)','AC-4'), ('002216','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (21)','AC-4(21)','AC-4'), ('002217','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (21)','AC-4(21)','AC-4'), ('002218','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (22)','AC-4(22)','AC-4'), ('002219','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 a','AC-5a','AC-5'), ('002220','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 b','AC-5b','AC-5'), ('002221','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1) (b)','AC-6(1)(b)','AC-6'), ('002222','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1) (a)','AC-6(1)(a)','AC-6'), ('002223','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1) (b)','AC-6(1)(b)','AC-6'), ('002224','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (3)','AC-6(3)','AC-6'), ('002225','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (4)','AC-6(4)','AC-6'), ('002226','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (5)','AC-6(5)','AC-6'), ('002227','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (5)','AC-6(5)','AC-6'), ('002228','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (a)','AC-6(7)(a)','AC-6'), ('002229','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (a)','AC-6(7)(a)','AC-6'), ('002230','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (a)','AC-6(7)(a)','AC-6'), ('002231','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (7) (b)','AC-6(7)(b)','AC-6'), ('002232','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (8)','AC-6(8)','AC-6'), ('002233','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (8)','AC-6(8)','AC-6'), ('002234','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (9)','AC-6(9)','AC-6'), ('002235','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (10)','AC-6(10)','AC-6'), ('002236','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 b','AC-7b','AC-7'), ('002237','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 b','AC-7b','AC-7'), ('002238','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 b','AC-7b','AC-7'), ('002239','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7(2)','AC-7'), ('002240','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7(2)','AC-7'), ('002241','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7(2)','AC-7'), ('002242','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (2)','AC-7(2)','AC-7'), ('002243','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 1','AC-8a1','AC-8'), ('002244','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 2','AC-8a2','AC-8'), ('002245','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 3','AC-8a3','AC-8'), ('002246','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a 4','AC-8a4','AC-8'), ('002247','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 a','AC-8a','AC-8'), ('002248','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-8 c 1','AC-8c1','AC-8'), ('002249','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (4)','AC-9(4)','AC-9'), ('002250','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-9 (4)','AC-9(4)','AC-9'), ('002252','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-10','AC-10','AC-10'), ('002256','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002257','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002258','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002259','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002260','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002261','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002262','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002263','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002264','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('002265','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 b','AC-16b','AC-16'), ('002266','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 b','AC-16b','AC-16'), ('002267','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c','AC-16'), ('002268','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c','AC-16'), ('002269','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c','AC-16'), ('002270','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 d','AC-16d','AC-16'), ('002271','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 d','AC-16d','AC-16'), ('002272','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('002273','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('002274','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('002275','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('002277','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16(2)','AC-16'), ('002278','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002279','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002280','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002281','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002282','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002283','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002284','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('002286','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('002287','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('002288','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('002289','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('002290','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('002291','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002292','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002293','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002294','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002295','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002296','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002297','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002298','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('002299','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (7)','AC-16(7)','AC-16'), ('002300','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16(8)','AC-16'), ('002301','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16(8)','AC-16'), ('002302','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16(8)','AC-16'), ('002303','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (9)','AC-16(9)','AC-16'), ('002304','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (9)','AC-16(9)','AC-16'), ('002306','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('002307','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('002308','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('002309','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('002310','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a','AC-17'), ('002311','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a','AC-17'), ('002312','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 a','AC-17a','AC-17'), ('002314','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (1)','AC-17(1)','AC-17'), ('002316','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17(4)(a)','AC-17'), ('002317','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17(4)(a)','AC-17'), ('002318','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (a)','AC-17(4)(a)','AC-17'), ('002319','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (b)','AC-17(4)(b)','AC-17'), ('002320','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (4) (b)','AC-17(4)(b)','AC-17'), ('002321','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (9)','AC-17(9)','AC-17'), ('002322','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (9)','AC-17(9)','AC-17'), ('002323','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 a','AC-18a','AC-18'), ('002324','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-18 (4)','AC-18(4)','AC-18'), ('002325','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a','AC-19'), ('002326','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 a','AC-19a','AC-19'), ('002327','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (c)','AC-19(4)(c)','AC-19'), ('002328','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (4) (c)','AC-19(4)(c)','AC-19'), ('002329','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (5)','AC-19(5)','AC-19'), ('002330','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (5)','AC-19(5)','AC-19'), ('002331','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-19 (5)','AC-19(5)','AC-19'), ('002332','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a 2','AC-20a2','AC-20'), ('002337','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (b)','AC-20(1)(b)','AC-20'), ('002338','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (3)','AC-20(3)','AC-20'), ('002339','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (4)','AC-20(4)','AC-20'), ('002340','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (4)','AC-20(4)','AC-20'), ('002341','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 (2)','AC-21(2)','AC-21'), ('002342','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-21 (2)','AC-21(2)','AC-21'), ('002343','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), ('002344','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), ('002345','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), ('002346','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), ('002347','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-23','AC-23','AC-23'), ('002348','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24','AC-24','AC-24'), ('002349','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24','AC-24','AC-24'), ('002350','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24(1)','AC-24'), ('002351','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24(1)','AC-24'), ('002352','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24(1)','AC-24'), ('002353','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (1)','AC-24(1)','AC-24'), ('002354','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (2)','AC-24(2)','AC-24'), ('002355','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (2)','AC-24(2)','AC-24'), ('002356','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), ('002357','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), ('002358','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), ('002359','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-25','AC-25','AC-25'), ('002360','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12','AC-12','AC-12'), ('002361','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12','AC-12','AC-12'), ('002362','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (1)','AC-12(1)','AC-12'), ('002363','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (1)','AC-12(1)','AC-12'), ('002364','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (2)','AC-12(2)','AC-12'), ('002368','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1 (a)','RA-1a1(a)','RA-1'), ('002369','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 2','RA-1a2','RA-1'), ('002370','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 e','RA-3e','RA-3'), ('002371','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 e','RA-3e','RA-3'), ('002372','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (10)','RA-5(10)','RA-5'), ('002373','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (3)','RA-5(3)','RA-5'), ('002374','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (4)','RA-5(4)','RA-5'), ('002375','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (4)','RA-5(4)','RA-5'), ('002376','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 e','RA-5e','RA-5'), ('002378','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1','SC-1a1','SC-1'), ('002380','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a2','SC-1'), ('002381','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (3)','SC-3(3)','SC-3'), ('002382','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-3 (4)','SC-3(4)','SC-3'), ('002383','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-4 (2)','SC-4(2)','SC-4'), ('002384','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-4 (2)','SC-4(2)','SC-4'), ('002385','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 a','SC-5a','SC-5'), ('002387','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (1)','SC-5(1)','SC-5'), ('002388','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (a)','SC-5(3)(a)','SC-5'), ('002389','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (a)','SC-5(3)(a)','SC-5'), ('002390','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (b)','SC-5(3)(b)','SC-5'), ('002391','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 (3) (b)','SC-5(3)(b)','SC-5'), ('002392','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-6','SC-6','SC-6'), ('002393','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-6','SC-6','SC-6'), ('002394','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-6','SC-6','SC-6'), ('002395','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 b','SC-7b','SC-7'), ('002396','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (c)','SC-7(4)(c)','SC-7'), ('002397','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (7)','SC-7(7)','SC-7'), ('002398','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (9) (a)','SC-7(9)(a)','SC-7'), ('002399','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (9) (a)','SC-7(9)(a)','SC-7'), ('002400','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (9) (b)','SC-7(9)(b)','SC-7'), ('002401','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (11)','SC-7(11)','SC-7'), ('002402','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (11)','SC-7(11)','SC-7'), ('002403','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (11)','SC-7(11)','SC-7'), ('002404','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (12)','SC-7(12)','SC-7'), ('002405','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (12)','SC-7(12)','SC-7'), ('002406','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (12)','SC-7(12)','SC-7'), ('002407','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (14)','SC-7(14)','SC-7'), ('002408','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (19)','SC-7(19)','SC-7'), ('002409','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (19)','SC-7(19)','SC-7'), ('002410','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (20)','SC-7(20)','SC-7'), ('002411','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (20)','SC-7(20)','SC-7'), ('002413','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7(21)','SC-7'), ('002414','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7(21)','SC-7'), ('002415','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (21)','SC-7(21)','SC-7'), ('002416','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (22)','SC-7(22)','SC-7'), ('002417','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (23)','SC-7(23)','SC-7'), ('002418','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8','SC-8','SC-8'), ('002420','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (2)','SC-8(2)','SC-8'), ('002421','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (1)','SC-8(1)','SC-8'), ('002422','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (2)','SC-8(2)','SC-8'), ('002423','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (3)','SC-8(3)','SC-8'), ('002424','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (4)','SC-8(4)','SC-8'), ('002425','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (4)','SC-8(4)','SC-8'), ('002426','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 (1) (a)','SC-11(1)(a)','SC-11'), ('002427','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (3)','SC-8(3)','SC-8'), ('002428','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002429','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002430','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002431','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002432','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002433','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002434','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002435','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002436','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002437','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002438','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002439','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002440','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002441','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002442','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12','SC-12','SC-12'), ('002443','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (2)','SC-12(2)','SC-12'), ('002444','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (2)','SC-12(2)','SC-12'), ('002445','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (2)','SC-12(2)','SC-12'), ('002446','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12(3)','SC-12'), ('002447','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12(3)','SC-12'), ('002448','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12(3)','SC-12'), ('002449','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-13','SC-13','SC-13'), ('002450','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-13 b','SC-13b','SC-13'), ('002451','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (3)','SC-15(3)','SC-15'), ('002452','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (4)','SC-15(4)','SC-15'), ('002453','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-15 (4)','SC-15(4)','SC-15'), ('002454','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), ('002455','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), ('002456','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-17 a','SC-17a','SC-17'), ('002457','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18(1)','SC-18'), ('002458','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (1)','SC-18(1)','SC-18'), ('002459','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (3)','SC-18(3)','SC-18'), ('002460','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (4)','SC-18(4)','SC-18'), ('002461','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-18 (5)','SC-18(5)','SC-18'), ('002462','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 a','SC-20a','SC-20'), ('002463','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 (2)','SC-20(2)','SC-20'), ('002464','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-20 (2)','SC-20(2)','SC-20'), ('002465','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), ('002466','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), ('002467','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), ('002468','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-21','SC-21','SC-21'), ('002469','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (5)','SC-23(5)','SC-23'), ('002470','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-23 (5)','SC-23(5)','SC-23'), ('002471','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-25','SC-25','SC-25'), ('002472','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28','SC-28','SC-28'), ('002473','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28(1)','SC-28'), ('002474','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28(1)','SC-28'), ('002475','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28(1)','SC-28'), ('002476','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (1)','SC-28(1)','SC-28'), ('002477','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (2)','SC-28(2)','SC-28'), ('002478','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (2)','SC-28(2)','SC-28'), ('002479','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (2)','SC-28(2)','SC-28'), ('002480','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-29','SC-29','SC-29'), ('002481','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-29 (1)','SC-29(1)','SC-29'), ('002482','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), ('002483','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), ('002484','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), ('002485','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30','SC-30','SC-30'), ('002486','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (2)','SC-30(2)','SC-30'), ('002487','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (2)','SC-30(2)','SC-30'), ('002488','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (2)','SC-30(2)','SC-30'), ('002489','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30(3)','SC-30'), ('002490','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30(3)','SC-30'), ('002492','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (3)','SC-30(3)','SC-30'), ('002493','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (4)','SC-30(4)','SC-30'), ('002494','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (4)','SC-30(4)','SC-30'), ('002495','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (5)','SC-30(5)','SC-30'), ('002496','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (5)','SC-30(5)','SC-30'), ('002497','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-30 (5)','SC-30(5)','SC-30'), ('002498','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 a','SC-31a','SC-31'), ('002499','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 b','SC-31b','SC-31'), ('002500','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (2)','SC-31(2)','SC-31'), ('002501','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (2)','SC-31(2)','SC-31'), ('002502','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (3)','SC-31(3)','SC-31'), ('002503','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-31 (3)','SC-31(3)','SC-31'), ('002504','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-32','SC-32','SC-32'), ('002505','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-32','SC-32','SC-32'), ('002506','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-32','SC-32','SC-32'), ('002507','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-34 (2)','SC-34(2)','SC-34'), ('002508','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-51 a','SC-51a','SC-51'), ('002509','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-51 a','SC-51a','SC-51'), ('002510','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-51 b','SC-51b','SC-51'), ('002511','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-51 b','SC-51b','SC-51'), ('002512','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-51 b','SC-51b','SC-51'), ('002513','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), ('002514','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), ('002515','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), ('002516','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36','SC-36','SC-36'), ('002517','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1) (a)','SC-36(1)(a)','SC-36'), ('002518','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1) (a)','SC-36(1)(a)','SC-36'), ('002519','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1) (a)','SC-36(1)(a)','SC-36'), ('002520','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1) (a)','SC-36(1)(a)','SC-36'), ('002521','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), ('002522','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), ('002523','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37(1)','SC-37'), ('002523','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), ('002524','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37','SC-37','SC-37'), ('002525','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37(1)','SC-37'), ('002526','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37(1)','SC-37'), ('002527','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-37 (1)','SC-37(1)','SC-37'), ('002528','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-38','SC-38','SC-38'), ('002529','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-38','SC-38','SC-38'), ('002530','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-39','SC-39','SC-39'), ('002531','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-39 (1)','SC-39(1)','SC-39'), ('002532','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-39 (2)','SC-39(2)','SC-39'), ('002533','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-39 (2)','SC-39(2)','SC-39'), ('002534','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40','SC-40','SC-40'), ('002535','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40','SC-40','SC-40'), ('002536','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40','SC-40','SC-40'), ('002537','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (1)','SC-40(1)','SC-40'), ('002538','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (1)','SC-40(1)','SC-40'), ('002539','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (2)','SC-40(2)','SC-40'), ('002540','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (2)','SC-40(2)','SC-40'), ('002541','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (3)','SC-40(3)','SC-40'), ('002542','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (4)','SC-40(4)','SC-40'), ('002543','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-40 (4)','SC-40(4)','SC-40'), ('002544','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-41','SC-41','SC-41'), ('002545','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-41','SC-41','SC-41'), ('002546','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-41','SC-41','SC-41'), ('002547','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 a','SC-42a','SC-42'), ('002548','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 a','SC-42a','SC-42'), ('002549','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 b','SC-42b','SC-42'), ('002550','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 b','SC-42b','SC-42'), ('002551','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (1)','SC-42(1)','SC-42'), ('002552','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (1)','SC-42(1)','SC-42'), ('002553','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (2)','SC-42(2)','SC-42'), ('002554','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (2)','SC-42(2)','SC-42'), ('002555','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (2)','SC-42(2)','SC-42'), ('002556','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 a','SC-42a','SC-42'), ('002557','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 a','SC-42a','SC-42'), ('002559','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 a','SC-43a','SC-43'), ('002560','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 a','SC-43a','SC-43'), ('002561','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 b','SC-43b','SC-43'), ('002562','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 b','SC-43b','SC-43'), ('002563','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-43 b','SC-43b','SC-43'), ('002564','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-44','SC-44','SC-44'), ('002565','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-44','SC-44','SC-44'), ('002566','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1','MP-1a1','MP-1'), ('002567','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6(1)','MP-6'), ('002568','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6(1)','MP-6'), ('002569','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6(1)','MP-6'), ('002570','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6(1)','MP-6'), ('002571','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6(1)','MP-6'), ('002572','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (1)','MP-6(1)','MP-6'), ('002573','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (7)','MP-6(7)','MP-6'), ('002574','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (7)','MP-6(7)','MP-6'), ('002575','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (8)','MP-6(8)','MP-6'), ('002576','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (8)','MP-6(8)','MP-6'), ('002577','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (8)','MP-6(8)','MP-6'), ('002578','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 a','MP-6a','MP-6'), ('002579','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 a','MP-6a','MP-6'), ('002580','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 b','MP-6b','MP-6'), ('002581','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (a)','MP-7(a)','MP-7'), ('002582','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (a)','MP-7(a)','MP-7'), ('002583','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (a)','MP-7(a)','MP-7'), ('002584','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (a)','MP-7(a)','MP-7'), ('002585','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (b)','MP-7(b)','MP-7'), ('002586','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-7 (2)','MP-7(2)','MP-7'), ('002587','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (1)','MP-8(1)','MP-8'), ('002591','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8(2)','MP-8'), ('002593','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (3)','MP-8(3)','MP-8'), ('002594','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (4)','MP-8(4)','MP-8'), ('002600','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 d','MP-8d','MP-8'), ('002601','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a','SI-1a','SI-1'), ('002602','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b','SI-2'), ('002603','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 b','SI-2b','SI-2'), ('002604','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c','SI-2'), ('002605','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c','SI-2'), ('002606','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c','SI-2'), ('002607','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 c','SI-2c','SI-2'), ('002608','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (3) (b)','SI-2(3)(b)','SI-2'), ('002609','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2(5)','SI-2'), ('002610','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2(5)','SI-2'), ('002611','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2(5)','SI-2'), ('002612','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2(5)','SI-2'), ('002613','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2(5)','SI-2'), ('002614','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (5)','SI-2(5)','SI-2'), ('002615','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2(6)','SI-2'), ('002616','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2(6)','SI-2'), ('002617','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2(6)','SI-2'), ('002618','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (6)','SI-2(6)','SI-2'), ('002623','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c1','SI-3'), ('002624','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 1','SI-3c1','SI-3'), ('002625','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (b)','SI-3(6)(b)','SI-3'), ('002626','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (6) (b)','SI-3(6)(b)','SI-3'), ('002628','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8) (a)','SI-3(8)(a)','SI-3'), ('002629','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8) (a)','SI-3(8)(a)','SI-3'), ('002630','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8) (a)','SI-3(8)(a)','SI-3'), ('002631','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (8) (b)','SI-3(8)(b)','SI-3'), ('002634','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3(10)(a)','SI-3'), ('002635','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3(10)(a)','SI-3'), ('002636','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3(10)(a)','SI-3'), ('002638','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (a)','SI-3(10)(a)','SI-3'), ('002639','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (b)','SI-3(10)(b)','SI-3'), ('002640','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 (10) (b)','SI-3(10)(b)','SI-3'), ('002641','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 1','SI-4a1','SI-4'), ('002642','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 2','SI-4a2','SI-4'), ('002643','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 2','SI-4a2','SI-4'), ('002644','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 a 2','SI-4a2','SI-4'), ('002645','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 b','SI-4b','SI-4'), ('002646','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 b','SI-4b','SI-4'), ('002650','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g','SI-4'), ('002651','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g','SI-4'), ('002652','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g','SI-4'), ('002654','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 g','SI-4g','SI-4'), ('002655','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (1)','SI-4(1)','SI-4'), ('002656','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (1)','SI-4(1)','SI-4'), ('002657','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (3)','SI-4(3)','SI-4'), ('002658','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (3)','SI-4(3)','SI-4'), ('002659','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (b)','SI-4(4)(b)','SI-4'), ('002660','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (b)','SI-4(4)(b)','SI-4'), ('002661','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (b)','SI-4(4)(b)','SI-4'), ('002662','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (b)','SI-4(4)(b)','SI-4'), ('002663','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (5)','SI-4(5)','SI-4'), ('002664','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (5)','SI-4(5)','SI-4'), ('002665','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4(10)','SI-4'), ('002666','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4(10)','SI-4'), ('002667','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4(10)','SI-4'), ('002668','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (11)','SI-4(11)','SI-4'), ('002669','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (13) (c)','SI-4(13)(c)','SI-4'), ('002670','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (18)','SI-4(18)','SI-4'), ('002671','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (18)','SI-4(18)','SI-4'), ('002672','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (18)','SI-4(18)','SI-4'), ('002673','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (19)','SI-4(19)','SI-4'), ('002674','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (19)','SI-4(19)','SI-4'), ('002675','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (19)','SI-4(19)','SI-4'), ('002676','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (20)','SI-4(20)','SI-4'), ('002677','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (20)','SI-4(20)','SI-4'), ('002678','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (21)','SI-4(21)','SI-4'), ('002679','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (21)','SI-4(21)','SI-4'), ('002680','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (21)','SI-4(21)','SI-4'), ('002681','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22) (a)','SI-4(22)(a)','SI-4'), ('002682','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22) (a)','SI-4(22)(a)','SI-4'), ('002683','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22) (a)','SI-4(22)(a)','SI-4'), ('002684','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (22) (b)','SI-4(22)(b)','SI-4'), ('002685','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (23)','SI-4(23)','SI-4'), ('002686','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (23)','SI-4(23)','SI-4'), ('002687','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (23)','SI-4(23)','SI-4'), ('002688','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4(24)','SI-4'), ('002689','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4(24)','SI-4'), ('002690','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (24)','SI-4(24)','SI-4'), ('002692','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 a','SI-5a','SI-5'), ('002693','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c','SI-5'), ('002694','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 c','SI-5c','SI-5'), ('002695','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 a','SI-6a','SI-6'), ('002696','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 a','SI-6a','SI-6'), ('002697','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b','SI-6'), ('002698','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b','SI-6'), ('002699','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b','SI-6'), ('002700','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 c','SI-6c','SI-6'), ('002701','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 d','SI-6d','SI-6'), ('002702','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 d','SI-6d','SI-6'), ('002703','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7','SI-7','SI-7'), ('002704','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 a','SI-7a','SI-7'), ('002705','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002706','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002707','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002708','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002709','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002710','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002711','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002712','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (1)','SI-7(1)','SI-7'), ('002713','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (2)','SI-7(2)','SI-7'), ('002714','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (5)','SI-7(5)','SI-7'), ('002715','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (5)','SI-7(5)','SI-7'), ('002716','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (6)','SI-7(6)','SI-7'), ('002717','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (6)','SI-7(6)','SI-7'), ('002718','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (6)','SI-7(6)','SI-7'), ('002719','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (7)','SI-7(7)','SI-7'), ('002720','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (7)','SI-7(7)','SI-7'), ('002721','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7(8)','SI-7'), ('002722','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7(8)','SI-7'), ('002723','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7(8)','SI-7'), ('002724','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (8)','SI-7(8)','SI-7'), ('002725','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (9)','SI-7(9)','SI-7'), ('002726','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (9)','SI-7(9)','SI-7'), ('002727','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (10)','SI-7(10)','SI-7'), ('002728','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (10)','SI-7(10)','SI-7'), ('002729','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (10)','SI-7(10)','SI-7'), ('002732','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (12)','SI-7(12)','SI-7'), ('002733','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (12)','SI-7(12)','SI-7'), ('002739','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (15)','SI-7(15)','SI-7'), ('002740','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (15)','SI-7(15)','SI-7'), ('002741','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 a','SI-8a','SI-8'), ('002742','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 a','SI-8a','SI-8'), ('002743','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 (3)','SI-8(3)','SI-8'), ('002744','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10','SI-10','SI-10'), ('002745','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (a)','SI-10(1)(a)','SI-10'), ('002746','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (a)','SI-10(1)(a)','SI-10'), ('002747','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (b)','SI-10(1)(b)','SI-10'), ('002748','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (b)','SI-10(1)(b)','SI-10'), ('002749','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (1) (c)','SI-10(1)(c)','SI-10'), ('002750','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10(2)','SI-10'), ('002751','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10(2)','SI-10'), ('002752','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10(2)','SI-10'), ('002753','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (2)','SI-10(2)','SI-10'), ('002754','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (3)','SI-10(3)','SI-10'), ('002755','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (4)','SI-10(4)','SI-10'), ('002756','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (5)','SI-10(5)','SI-10'), ('002757','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (5)','SI-10(5)','SI-10'), ('002758','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (5)','SI-10(5)','SI-10'), ('002759','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-11 b','SI-11b','SI-11'), ('002760','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 a','SI-13a','SI-13'), ('002761','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 a','SI-13a','SI-13'), ('002762','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 b','SI-13b','SI-13'), ('002763','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 b','SI-13b','SI-13'), ('002764','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), ('002765','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), ('002766','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), ('002767','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14','SI-14','SI-14'), ('002768','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (1)','SI-14(1)','SI-14'), ('002769','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (1)','SI-14(1)','SI-14'), ('002770','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-15','SI-15','SI-15'), ('002771','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-15','SI-15','SI-15'), ('002773','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-17','SI-17','SI-17'), ('002774','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-17','SI-17','SI-17'), ('002775','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-17','SI-17','SI-17'), ('002776','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1 (a)','IR-1a1(a)','IR-1'), ('002777','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 2','IR-1a2','IR-1'), ('002778','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a 1','IR-2a1','IR-2'), ('002779','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 a 2','IR-2a2','IR-2'), ('002780','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (2)','IR-3(2)','IR-3'), ('002781','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (2)','IR-4(2)','IR-4'), ('002782','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (6)','IR-4(6)','IR-4'), ('002785','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (8)','IR-4(8)','IR-4'), ('002786','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (8)','IR-4(8)','IR-4'), ('002787','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (8)','IR-4(8)','IR-4'), ('002788','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (9)','IR-4(9)','IR-4'), ('002789','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (9)','IR-4(9)','IR-4'), ('002790','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (10)','IR-4(10)','IR-4'), ('002791','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 b','IR-6b','IR-6'), ('002792','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (2)','IR-6(2)','IR-6'), ('002793','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (3)','IR-6(3)','IR-6'), ('002794','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a','IR-8a','IR-8'), ('002795','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 1','IR-8a1','IR-8'), ('002796','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 2','IR-8a2','IR-8'), ('002797','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 3','IR-8a3','IR-8'), ('002798','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 4','IR-8a4','IR-8'), ('002799','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 5','IR-8a5','IR-8'), ('002800','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 6','IR-8a6','IR-8'), ('002801','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 7','IR-8a7','IR-8'), ('002802','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 9','IR-8a9','IR-8'), ('002803','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 d','IR-8d','IR-8'), ('002804','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 e','IR-8e','IR-8'), ('002805','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 b','IR-9b','IR-9'), ('002806','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 c','IR-9c','IR-9'), ('002807','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 c','IR-9c','IR-9'), ('002808','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 d','IR-9d','IR-9'), ('002809','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 e','IR-9e','IR-9'), ('002810','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 f','IR-9f','IR-9'), ('002811','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 g','IR-9g','IR-9'), ('002812','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 g','IR-9g','IR-9'), ('002816','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (2)','IR-9(2)','IR-9'), ('002817','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (2)','IR-9(2)','IR-9'), ('002818','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (3)','IR-9(3)','IR-9'), ('002819','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (3)','IR-9(3)','IR-9'), ('002820','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (4)','IR-9(4)','IR-9'), ('002821','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 (4)','IR-9(4)','IR-9'), ('002823','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-16','SI-16','SI-16'), ('002824','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-16','SI-16','SI-16'), ('002825','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1 (a)','CP-1a1(a)','CP-1'), ('002826','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 2','CP-1a2','CP-1'), ('002827','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (7)','CP-2(7)','CP-2'), ('002828','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (8)','CP-2(8)','CP-2'), ('002829','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 (8)','CP-2(8)','CP-2'), ('002830','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 7','CP-2a7','CP-2'), ('002831','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 f','CP-2f','CP-2'), ('002832','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 h','CP-2h','CP-2'), ('002833','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a 1','CP-3a1','CP-3'), ('002834','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 a 2','CP-3a2','CP-3'), ('002835','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (2) (b)','CP-4(2)(b)','CP-4'), ('002836','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 b','CP-6b','CP-6'), ('002837','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (6)','CP-7(6)','CP-7'), ('002838','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 (6)','CP-7(6)','CP-7'), ('002839','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-7 a','CP-7a','CP-7'), ('002840','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), ('002841','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8','CP-8','CP-8'), ('002842','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (b)','CP-8(4)(b)','CP-8'), ('002843','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c)','CP-8(4)(c)','CP-8'), ('002844','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c)','CP-8(4)(c)','CP-8'), ('002845','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c)','CP-8(4)(c)','CP-8'), ('002846','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (4) (c)','CP-8(4)(c)','CP-8'), ('002847','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (5)','CP-8(5)','CP-8'), ('002848','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (5)','CP-8(5)','CP-8'), ('002849','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (3)','CP-9(3)','CP-9'), ('002850','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (3)','CP-9(3)','CP-9'), ('002851','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (7)','CP-9(7)','CP-9'), ('002852','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (7)','CP-9(7)','CP-9'), ('002853','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-11','CP-11','CP-11'), ('002854','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-11','CP-11','CP-11'), ('002855','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-12','CP-12','CP-12'), ('002856','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-12','CP-12','CP-12'), ('002857','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-12','CP-12','CP-12'), ('002858','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-13','CP-13','CP-13'), ('002859','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-13','CP-13','CP-13'), ('002860','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-13','CP-13','CP-13'), ('002861','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1 (a)','MA-1a1(a)','MA-1'), ('002862','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 2','MA-1a2','MA-1'), ('002864','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (b)','MA-2(2)(b)','MA-2'), ('002865','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (b)','MA-2(2)(b)','MA-2'), ('002866','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('002868','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('002869','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('002870','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('002872','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('002873','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('002874','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 c','MA-2c','MA-2'), ('002875','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 f','MA-2f','MA-2'), ('002876','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 f','MA-2f','MA-2'), ('002882','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (3) (d)','MA-3(3)(d)','MA-3'), ('002883','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (4)','MA-3(4)','MA-3'), ('002884','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (1) (a)','MA-4(1)(a)','MA-4'), ('002885','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (1) (a)','MA-4(1)(a)','MA-4'), ('002886','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (1) (b)','MA-4(1)(b)','MA-4'), ('002887','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (a)','MA-4(4)(a)','MA-4'), ('002888','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (a)','MA-4(5)(a)','MA-4'), ('002889','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (5) (b)','MA-4(5)(b)','MA-4'), ('002890','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (6)','MA-4(6)','MA-4'), ('002891','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (7)','MA-4(7)','MA-4'), ('002893','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (5)','MA-5(5)','MA-5'), ('002894','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 b','MA-5b','MA-5'), ('002895','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 c','MA-5c','MA-5'), ('002896','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6','MA-6','MA-6'), ('002897','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6','MA-6','MA-6'), ('002898','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (1)','MA-6(1)','MA-6'), ('002899','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (1)','MA-6(1)','MA-6'), ('002900','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (1)','MA-6(1)','MA-6'), ('002901','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (2)','MA-6(2)','MA-6'), ('002902','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (2)','MA-6(2)','MA-6'), ('002903','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (2)','MA-6(2)','MA-6'), ('002904','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (3)','MA-6(3)','MA-6'), ('002906','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (5)','RA-5(5)','RA-5'), ('002907','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (4)','AU-5(4)','AU-5'), ('002908','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1','PE-1a1','PE-1'), ('002909','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 2','PE-1a2','PE-1'), ('002910','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 a','PE-2a','PE-2'), ('002911','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 a','PE-2a','PE-2'), ('002912','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (2)','PE-2(2)','PE-2'), ('002913','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (3)','PE-2(3)','PE-2'), ('002914','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-2 (3)','PE-2(3)','PE-2'), ('002915','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a','PE-3a','PE-3'), ('002916','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 2','PE-3a2','PE-3'), ('002917','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 b','PE-3b','PE-3'), ('002918','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 b','PE-3b','PE-3'), ('002919','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 c','PE-3c','PE-3'), ('002920','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 c','PE-3c','PE-3'), ('002921','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d','PE-3'), ('002922','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d','PE-3'), ('002923','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d','PE-3'), ('002924','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 d','PE-3d','PE-3'), ('002925','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 f','PE-3f','PE-3'), ('002926','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (1)','PE-3(1)','PE-3'), ('002927','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (2)','PE-3(2)','PE-3'), ('002928','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (5)','PE-3(5)','PE-3'), ('002929','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (5)','PE-3(5)','PE-3'), ('002930','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-4','PE-4','PE-4'), ('002931','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-4','PE-4','PE-4'), ('002939','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 a','PE-6a','PE-6'), ('002940','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b','PE-6'), ('002941','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 b','PE-6b','PE-6'), ('002942','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6(2)','PE-6'), ('002943','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6(2)','PE-6'), ('002944','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6(2)','PE-6'), ('002945','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6(2)','PE-6'), ('002946','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3) (a)','PE-6(3)(a)','PE-6'), ('002947','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3) (a)','PE-6(3)(a)','PE-6'), ('002948','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3) (c)','PE-6(3)(c)','PE-6'), ('002949','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3) (c)','PE-6(3)(c)','PE-6'), ('002950','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (4)','PE-6(4)','PE-6'), ('002951','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (4)','PE-6(4)','PE-6'), ('002952','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 a','PE-8a','PE-8'), ('002953','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (1)','PE-9(1)','PE-9'), ('002954','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-9 (1)','PE-9(1)','PE-9'), ('002955','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-11','PE-11','PE-11'), ('002956','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (2) (a)','PE-11(2)(a)','PE-11'), ('002957','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (2) (b)','PE-11(2)(b)','PE-11'), ('002958','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-11 (2) (c)','PE-11(2)(c)','PE-11'), ('002959','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-12 (1)','PE-12(1)','PE-12'), ('002960','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-12 (1)','PE-12(1)','PE-12'), ('002961','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13(1)','PE-13'), ('002962','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13(1)','PE-13'), ('002963','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13(1)','PE-13'), ('002964','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (1)','PE-13(1)','PE-13'), ('002965','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2) (a)','PE-13(2)(a)','PE-13'), ('002966','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2) (a)','PE-13(2)(a)','PE-13'), ('002967','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (2) (a)','PE-13(2)(a)','PE-13'), ('002968','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13(4)','PE-13'), ('002969','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13(4)','PE-13'), ('002970','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13(4)','PE-13'), ('002971','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-13 (4)','PE-13(4)','PE-13'), ('002973','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15 (1)','PE-15(1)','PE-15'), ('002974','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-16 a','PE-16a','PE-16'), ('002975','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 b','PE-17b','PE-17'), ('002976','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-18','PE-18','PE-18'), ('002979','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-20','PE-20','PE-20'), ('002980','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-20','PE-20','PE-20'), ('002981','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-20','PE-20','PE-20'), ('002982','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-20','PE-20','PE-20'), ('002984','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 3','PM-1a3','PM-1'), ('002985','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 1','PM-1a1','PM-1'), ('002986','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 2','PM-1a2','PM-1'), ('002987','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 3','PM-1a3','PM-1'), ('002988','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 a 4','PM-1a4','PM-1'), ('002989','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 c','PM-1c','PM-1'), ('002990','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 c','PM-1c','PM-1'), ('002991','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a1','PM-4'), ('002993','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 b','PM-4b','PM-4'), ('002994','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 c','PM-9c','PM-9'), ('002995','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 c','PM-9c','PM-9'), ('002996','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-12','PM-12','PM-12'), ('002997','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-13','PM-13','PM-13'), ('002998','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('002999','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('003000','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('003001','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('003002','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('003003','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('003004','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a2','PM-14'), ('003005','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a2','PM-14'), ('003006','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a2','PM-14'), ('003007','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 b','PM-14b','PM-14'), ('003008','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 b','PM-14b','PM-14'), ('003009','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 b','PM-14b','PM-14'), ('003010','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 a','PM-15a','PM-15'), ('003011','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 b','PM-15b','PM-15'), ('003012','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 c','PM-15c','PM-15'), ('003013','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-16','PM-16','PM-16'), ('003014','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3)','AC-3(3)','AC-3'), ('003015','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (3) (c)','AC-3(3)(c)','AC-3'), ('003017','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1','PS-1a1','PS-1'), ('003018','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 2','PS-1a2','PS-1'), ('003019','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (3) (a)','PS-3(3)(a)','PS-3'), ('003020','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (3) (b)','PS-3(3)(b)','PS-3'), ('003021','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (3) (b)','PS-3(3)(b)','PS-3'), ('003022','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 a','PS-4a','PS-4'), ('003023','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 b','PS-4b','PS-4'), ('003024','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 c','PS-4c','PS-4'), ('003027','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (1) (a)','PS-4(1)(a)','PS-4'), ('003028','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (1) (b)','PS-4(1)(b)','PS-4'), ('003029','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (2)','PS-4(2)','PS-4'), ('003030','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (2)','PS-4(2)','PS-4'), ('003031','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 c','PS-5c','PS-5'), ('003032','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 d','PS-5d','PS-5'), ('003033','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 d','PS-5d','PS-5'), ('003034','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-5 d','PS-5d','PS-5'), ('003035','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 a','PS-6a','PS-6'), ('003038','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (3) (a)','PS-6(3)(a)','PS-6'), ('003039','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 (3) (b)','PS-6(3)(b)','PS-6'), ('003041','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 d','PS-7d','PS-7'), ('003042','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 d','PS-7d','PS-7'), ('003043','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 d','PS-7d','PS-7'), ('003044','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 b','PS-8b','PS-8'), ('003045','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 b','PS-8b','PS-8'), ('003046','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 b','PS-8b','PS-8'), ('003047','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1 (a)','PL-1a1(a)','PL-1'), ('003048','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 2','PL-1a2','PL-1'), ('003049','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a','PL-2a','PL-2'), ('003050','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 1','PL-2a1','PL-2'), ('003051','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 2','PL-2a2','PL-2'), ('003052','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 3','PL-2a3','PL-2'), ('003053','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 6','PL-2a6','PL-2'), ('003054','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 9','PL-2a9','PL-2'), ('003055','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 10','PL-2a10','PL-2'), ('003056','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 11','PL-2a11','PL-2'), ('003057','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 12','PL-2a12','PL-2'), ('003059','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b','PL-2'), ('003060','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b','PL-2'), ('003061','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b','PL-2'), ('003062','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 b','PL-2b','PL-2'), ('003063','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 e','PL-2e','PL-2'), ('003064','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 e','PL-2e','PL-2'), ('003068','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 c','PL-4c','PL-4'), ('003069','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 c','PL-4c','PL-4'), ('003070','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 d','PL-4d','PL-4'), ('003071','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 a','PL-7a','PL-7'), ('003072','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a','PL-8a','PL-8'), ('003073','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 1','PL-8a1','PL-8'), ('003074','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 3','PL-8a3','PL-8'), ('003075','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 4','PL-8a4','PL-8'), ('003076','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 b','PL-8b','PL-8'), ('003077','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 b','PL-8b','PL-8'), ('003078','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c','PL-8'), ('003079','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c','PL-8'), ('003080','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c','PL-8'), ('003081','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('003082','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('003083','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('003084','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('003085','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('003086','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('003087','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (b)','PL-8(1)(b)','PL-8'), ('003088','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (2)','PL-8(2)','PL-8'), ('003089','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1 (a)','SA-1a1(a)','SA-1'), ('003090','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 2','SA-1a2','SA-1'), ('003091','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 a','SA-2a','SA-2'), ('003092','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('003093','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 d','SA-3d','SA-3'), ('003094','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 a','SA-4a','SA-4'), ('003095','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 b','SA-4b','SA-4'), ('003096','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 c','SA-4c','SA-4'), ('003097','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 e','SA-4e','SA-4'), ('003098','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 f','SA-4f','SA-4'), ('003099','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 g','SA-4g','SA-4'), ('003100','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 i','SA-4i','SA-4'), ('003101','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4(2)','SA-4'), ('003102','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4(2)','SA-4'), ('003103','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4(2)','SA-4'), ('003104','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4(2)','SA-4'), ('003105','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4(2)','SA-4'), ('003106','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (2)','SA-4(2)','SA-4'), ('003109','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (5) (a)','SA-4(5)(a)','SA-4'), ('003110','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (5) (a)','SA-4(5)(a)','SA-4'), ('003111','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (5) (b)','SA-4(5)(b)','SA-4'), ('003112','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (8)','SA-4(8)','SA-4'), ('003114','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (9)','SA-4(9)','SA-4'), ('003116','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (10)','SA-4(10)','SA-4'), ('003117','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-9','PL-9','PL-9'), ('003118','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-9','PL-9','PL-9'), ('003119','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), ('003120','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), ('003121','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), ('003122','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-6','RA-6','RA-6'), ('003123','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (6)','MA-4(6)','MA-4'), ('003124','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 1','SA-5a1','SA-5'), ('003125','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 1','SA-5a1','SA-5'), ('003126','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 1','SA-5a1','SA-5'), ('003127','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 2','SA-5a2','SA-5'), ('003128','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 3','SA-5a3','SA-5'), ('003129','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 1','SA-5b1','SA-5'), ('003130','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 2','SA-5b2','SA-5'), ('003131','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 3','SA-5b3','SA-5'), ('003132','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 c','SA-5c','SA-5'), ('003133','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 c','SA-5c','SA-5'), ('003135','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 d','SA-5d','SA-5'), ('003136','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 d','SA-5d','SA-5'), ('003138','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 c','SA-9c','SA-9'), ('003139','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 c','SA-9c','SA-9'), ('003140','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (1) (a)','SA-9(1)(a)','SA-9'), ('003141','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (1) (b)','SA-9(1)(b)','SA-9'), ('003142','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (1) (b)','SA-9(1)(b)','SA-9'), ('003143','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (2)','SA-9(2)','SA-9'), ('003144','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (2)','SA-9(2)','SA-9'), ('003145','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('003146','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('003147','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('003148','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('003149','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (4)','SA-9(4)','SA-9'), ('003150','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (4)','SA-9(4)','SA-9'), ('003151','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (4)','SA-9(4)','SA-9'), ('003152','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (5)','SA-9(5)','SA-9'), ('003153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (5)','SA-9(5)','SA-9'), ('003154','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (5)','SA-9(5)','SA-9'), ('003155','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 a','SA-10a','SA-10'), ('003156','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b','SA-10'), ('003157','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b','SA-10'), ('003158','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b','SA-10'), ('003159','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 b','SA-10b','SA-10'), ('003160','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 d','SA-10d','SA-10'), ('003161','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e','SA-10'), ('003162','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e','SA-10'), ('003163','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e','SA-10'), ('003164','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 e','SA-10e','SA-10'), ('003165','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (3)','SA-10(3)','SA-10'), ('003166','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (4)','SA-10(4)','SA-10'), ('003167','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (4)','SA-10(4)','SA-10'), ('003168','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (4)','SA-10(4)','SA-10'), ('003169','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (5)','SA-10(5)','SA-10'), ('003170','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (6)','SA-10(6)','SA-10'), ('003171','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 a','SA-11a','SA-11'), ('003172','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 a','SA-11a','SA-11'), ('003173','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 b','SA-11b','SA-11'), ('003174','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 b','SA-11b','SA-11'), ('003175','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 c','SA-11c','SA-11'), ('003176','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 c','SA-11c','SA-11'), ('003177','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 d','SA-11d','SA-11'), ('003178','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 e','SA-11e','SA-11'), ('003179','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (1)','SA-11(1)','SA-11'), ('003180','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (1)','SA-11(1)','SA-11'), ('003181','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2)','SA-11(2)','SA-11'), ('003182','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2)','SA-11(2)','SA-11'), ('003183','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11(3)(a)','SA-11'), ('003184','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11(3)(a)','SA-11'), ('003185','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11(3)(a)','SA-11'), ('003186','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (b)','SA-11(3)(b)','SA-11'), ('003187','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (4)','SA-11(4)','SA-11'), ('003188','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (4)','SA-11(4)','SA-11'), ('003189','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (4)','SA-11(4)','SA-11'), ('003191','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5) (a)','SA-11(5)(a)','SA-11'), ('003192','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5) (b)','SA-11(5)(b)','SA-11'), ('003193','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (6)','SA-11(6)','SA-11'), ('003194','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (7)','SA-11(7)','SA-11'), ('003195','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (7)','SA-11(7)','SA-11'), ('003196','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (8)','SA-11(8)','SA-11'), ('003197','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (8)','SA-11(8)','SA-11'), ('003233','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a','SA-15a','SA-15'), ('003234','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 1','SA-15a1','SA-15'), ('003235','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 2','SA-15a2','SA-15'), ('003236','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 2','SA-15a2','SA-15'), ('003237','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 3','SA-15a3','SA-15'), ('003238','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 4','SA-15a4','SA-15'), ('003239','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 4','SA-15a4','SA-15'), ('003240','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 4','SA-15a4','SA-15'), ('003241','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('003242','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('003243','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('003244','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('003245','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('003246','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('003247','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (a)','SA-15(1)(a)','SA-15'), ('003248','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (b)','SA-15(1)(b)','SA-15'), ('003249','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (b)','SA-15(1)(b)','SA-15'), ('003250','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (1) (b)','SA-15(1)(b)','SA-15'), ('003251','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (2)','SA-15(2)','SA-15'), ('003252','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (2)','SA-15(2)','SA-15'), ('003254','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3) (b)','SA-15(3)(b)','SA-15'), ('003255','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3) (a)','SA-15(3)(a)','SA-15'), ('003272','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (5)','SA-15(5)','SA-15'), ('003273','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (5)','SA-15(5)','SA-15'), ('003274','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (6)','SA-15(6)','SA-15'), ('003275','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (a)','SA-15(7)(a)','SA-15'), ('003276','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (a)','SA-15(7)(a)','SA-15'), ('003277','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (b)','SA-15(7)(b)','SA-15'), ('003278','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (c)','SA-15(7)(c)','SA-15'), ('003279','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (d)','SA-15(7)(d)','SA-15'), ('003280','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (d)','SA-15(7)(d)','SA-15'), ('003281','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (8)','SA-15(8)','SA-15'), ('003282','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (8)','SA-15(8)','SA-15'), ('003289','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (10)','SA-15(10)','SA-15'), ('003290','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (11)','SA-15(11)','SA-15'), ('003291','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-16','SA-16','SA-16'), ('003292','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-16','SA-16','SA-16'), ('003293','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17','SA-17','SA-17'), ('003294','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 a','SA-17a','SA-17'), ('003295','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 b','SA-17b','SA-17'), ('003296','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 b','SA-17b','SA-17'), ('003297','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 c','SA-17c','SA-17'), ('003298','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (a)','SA-17(1)(a)','SA-17'), ('003299','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (a)','SA-17(1)(a)','SA-17'), ('003300','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (b)','SA-17(1)(b)','SA-17'), ('003301','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17(2)(a)','SA-17'), ('003303','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17(2)(a)','SA-17'), ('003304','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (a)','SA-17(2)(a)','SA-17'), ('003305','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (b)','SA-17(2)(b)','SA-17'), ('003306','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (b)','SA-17(2)(b)','SA-17'), ('003307','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (2) (b)','SA-17(2)(b)','SA-17'), ('003308','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (a)','SA-17(3)(a)','SA-17'), ('003309','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (a)','SA-17(3)(a)','SA-17'), ('003310','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (a)','SA-17(3)(a)','SA-17'), ('003311','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (b)','SA-17(3)(b)','SA-17'), ('003312','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (c)','SA-17(3)(c)','SA-17'), ('003313','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (c)','SA-17(3)(c)','SA-17'), ('003314','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (c)','SA-17(3)(c)','SA-17'), ('003315','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (d)','SA-17(3)(d)','SA-17'), ('003316','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (d)','SA-17(3)(d)','SA-17'), ('003317','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (d)','SA-17(3)(d)','SA-17'), ('003318','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (e)','SA-17(3)(e)','SA-17'), ('003319','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (e)','SA-17(3)(e)','SA-17'), ('003320','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (3) (e)','SA-17(3)(e)','SA-17'), ('003321','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (a)','SA-17(4)(a)','SA-17'), ('003322','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (a)','SA-17(4)(a)','SA-17'), ('003323','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (a)','SA-17(4)(a)','SA-17'), ('003324','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (b)','SA-17(4)(b)','SA-17'), ('003325','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (c)','SA-17(4)(c)','SA-17'), ('003326','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (c)','SA-17(4)(c)','SA-17'), ('003327','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (c)','SA-17(4)(c)','SA-17'), ('003328','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (d)','SA-17(4)(d)','SA-17'), ('003329','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (d)','SA-17(4)(d)','SA-17'), ('003330','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (d)','SA-17(4)(d)','SA-17'), ('003331','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (e)','SA-17(4)(e)','SA-17'), ('003332','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (e)','SA-17(4)(e)','SA-17'), ('003333','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (4) (e)','SA-17(4)(e)','SA-17'), ('003334','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (a)','SA-17(5)(a)','SA-17'), ('003335','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (a)','SA-17(5)(a)','SA-17'), ('003336','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (a)','SA-17(5)(a)','SA-17'), ('003337','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (b)','SA-17(5)(b)','SA-17'), ('003338','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (b)','SA-17(5)(b)','SA-17'), ('003339','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (5) (b)','SA-17(5)(b)','SA-17'), ('003340','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (6)','SA-17(6)','SA-17'), ('003341','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (6)','SA-17(6)','SA-17'), ('003342','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (6)','SA-17(6)','SA-17'), ('003343','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (7)','SA-17(7)','SA-17'), ('003344','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (7)','SA-17(7)','SA-17'), ('003345','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (7)','SA-17(7)','SA-17'), ('003372','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 b','SA-22b','SA-22'), ('003373','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 b','SA-22b','SA-22'), ('003376','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-22 a','SA-22a','SA-22'), ('003381','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 b','SA-21b','SA-21'), ('003382','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 b','SA-21b','SA-21'), ('003383','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 a','SA-21a','SA-21'), ('003384','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-21','SA-21','SA-21'), ('003385','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-21 a','SA-21a','SA-21'), ('003386','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-20','SA-20','SA-20'), ('003387','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-20','SA-20','SA-20'), ('003601','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1 (b)','AC-1a1(b)','AC-1'), ('003602','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1 (a)','AC-1a1(a)','AC-1'), ('003603','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 1 (b)','AC-1a1(b)','AC-1'), ('003604','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 a 2','AC-1a2','AC-1'), ('003605','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b','AC-1b','AC-1'), ('003606','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b','AC-1b','AC-1'), ('003607','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 b','AC-1b','AC-1'), ('003608','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 1','AC-1c1','AC-1'), ('003609','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 1','AC-1c1','AC-1'), ('003610','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 2','AC-1c2','AC-1'), ('003611','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-1 c 2','AC-1c2','AC-1'), ('003612','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 a','AC-2a','AC-2'), ('003613','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 c','AC-2c','AC-2'), ('003614','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 c','AC-2c','AC-2'), ('003615','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 c','AC-2c','AC-2'), ('003616','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 d 3','AC-2d3','AC-2'), ('003617','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('003618','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('003619','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('003620','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('003621','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('003622','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 f','AC-2f','AC-2'), ('003623','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h','AC-2h','AC-2'), ('003624','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 h','AC-2h','AC-2'), ('003625','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 i 3','AC-2i3','AC-2'), ('003626','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 l','AC-2l','AC-2'), ('003627','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3) (a)','AC-2(3)(a)','AC-2'), ('003628','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3) (b)','AC-2(3)(b)','AC-2'), ('003629','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (3) (c)','AC-2(3)(c)','AC-2'), ('003630','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (7) (c)','AC-2(7)(c)','AC-2'), ('003631','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('003632','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('003633','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('003634','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('003635','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('003636','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (8)','AC-2(8)','AC-2'), ('003637','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-2 (13)','AC-2(13)','AC-2'), ('003638','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4) (a)','AC-3(4)(a)','AC-3'), ('003639','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4) (b)','AC-3(4)(b)','AC-3'), ('003640','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4) (c)','AC-3(4)(c)','AC-3'), ('003641','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4) (d)','AC-3(4)(d)','AC-3'), ('003642','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (4) (e)','AC-3(4)(e)','AC-3'), ('003643','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (10)','AC-3(10)','AC-3'), ('003644','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (11)','AC-3(11)','AC-3'), ('003645','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (11)','AC-3(11)','AC-3'), ('003646','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (12) (a)','AC-3(12)(a)','AC-3'), ('003647','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (12) (a)','AC-3(12)(a)','AC-3'), ('003648','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (12) (b)','AC-3(12)(b)','AC-3'), ('003649','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (12) (c)','AC-3(12)(c)','AC-3'), ('003650','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (13)','AC-3(13)','AC-3'), ('003651','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (13)','AC-3(13)','AC-3'), ('003652','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (13)','AC-3(13)','AC-3'), ('003653','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (13)','AC-3(13)','AC-3'), ('003654','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (14)','AC-3(14)','AC-3'), ('003655','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (14)','AC-3(14)','AC-3'), ('003656','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (14)','AC-3(14)','AC-3'), ('003657','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (15) (a)','AC-3(15)(a)','AC-3'), ('003658','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (15) (a)','AC-3(15)(a)','AC-3'), ('003659','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (15) (b)','AC-3(15)(b)','AC-3'), ('003660','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-3 (15) (b)','AC-3(15)(b)','AC-3'), ('003661','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (1)','AC-4(1)','AC-4'), ('003662','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (4)','AC-4(4)','AC-4'), ('003663','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8) (a)','AC-4(8)(a)','AC-4'), ('003664','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8) (b)','AC-4(8)(b)','AC-4'), ('003665','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (8) (b)','AC-4(8)(b)','AC-4'), ('003666','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (19)','AC-4(19)','AC-4'), ('003667','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (23)','AC-4(23)','AC-4'), ('003668','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (23)','AC-4(23)','AC-4'), ('003669','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (24)','AC-4(24)','AC-4'), ('003670','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (24)','AC-4(24)','AC-4'), ('003671','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (25)','AC-4(25)','AC-4'), ('003672','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (25)','AC-4(25)','AC-4'), ('003673','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (26)','AC-4(26)','AC-4'), ('003674','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (27)','AC-4(27)','AC-4'), ('003675','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (28)','AC-4(28)','AC-4'), ('003676','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (29) (a)','AC-4(29)(a)','AC-4'), ('003677','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (29) (b)','AC-4(29)(b)','AC-4'), ('003678','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (30)','AC-4(30)','AC-4'), ('003679','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (31)','AC-4(31)','AC-4'), ('003680','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (32) (a)','AC-4(32)(a)','AC-4'), ('003681','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (32) (b)','AC-4(32)(b)','AC-4'), ('003682','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (32) (c)','AC-4(32)(c)','AC-4'), ('003683','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-4 (32) (d)','AC-4(32)(d)','AC-4'), ('003684','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-5 a','AC-5a','AC-5'), ('003685','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1) (a)','AC-6(1)(a)','AC-6'), ('003686','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-6 (1) (b)','AC-6(1)(b)','AC-6'), ('003687','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (3)','AC-7(3)','AC-7'), ('003688','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (3)','AC-7(3)','AC-7'), ('003689','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (4) (a)','AC-7(4)(a)','AC-7'), ('003690','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (4) (a)','AC-7(4)(a)','AC-7'), ('003691','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (4) (b)','AC-7(4)(b)','AC-7'), ('003692','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-7 (4) (b)','AC-7(4)(b)','AC-7'), ('003693','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (3)','AC-12(3)','AC-12'), ('003694','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-12 (3)','AC-12(3)','AC-12'), ('003695','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-14 a','AC-14a','AC-14'), ('003696','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('003697','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('003698','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('003699','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('003700','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('003701','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 a','AC-16a','AC-16'), ('003702','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 b','AC-16b','AC-16'), ('003703','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 b','AC-16b','AC-16'), ('003704','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c','AC-16'), ('003705','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 c','AC-16c','AC-16'), ('003706','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 d','AC-16d','AC-16'), ('003707','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 e','AC-16e','AC-16'), ('003708','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 f','AC-16f','AC-16'), ('003709','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 f','AC-16f','AC-16'), ('003710','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 f','AC-16f','AC-16'), ('003711','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 f','AC-16f','AC-16'), ('003712','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('003713','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('003714','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (1)','AC-16(1)','AC-16'), ('003715','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16(2)','AC-16'), ('003716','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (2)','AC-16(2)','AC-16'), ('003717','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('003718','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('003719','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('003720','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('003721','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (3)','AC-16(3)','AC-16'), ('003722','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('003723','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('003724','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('003725','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('003726','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (4)','AC-16(4)','AC-16'), ('003727','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16(5)','AC-16'), ('003728','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16(5)','AC-16'), ('003729','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (5)','AC-16(5)','AC-16'), ('003730','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003731','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003732','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003733','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003734','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003735','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003736','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003737','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (6)','AC-16(6)','AC-16'), ('003738','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (7)','AC-16(7)','AC-16'), ('003739','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16(8)','AC-16'), ('003740','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16(8)','AC-16'), ('003741','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (8)','AC-16(8)','AC-16'), ('003742','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (9)','AC-16(9)','AC-16'), ('003743','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('003744','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('003745','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('003746','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-16 (10)','AC-16(10)','AC-16'), ('003747','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (10)','AC-17(10)','AC-17'), ('003748','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (10)','AC-17(10)','AC-17'), ('003749','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-17 (10)','AC-17(10)','AC-17'), ('003750','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a 1','AC-20a1','AC-20'), ('003751','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a 1','AC-20a1','AC-20'), ('003752','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a 2','AC-20a2','AC-20'), ('003753','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 a 2','AC-20a2','AC-20'), ('003754','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 b','AC-20b','AC-20'), ('003755','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 b','AC-20b','AC-20'), ('003756','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (a)','AC-20(1)(a)','AC-20'), ('003757','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (1) (a)','AC-20(1)(a)','AC-20'), ('003758','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (2)','AC-20(2)','AC-20'), ('003759','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-20 (5)','AC-20(5)','AC-20'), ('003760','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AC-24 (2)','AC-24(2)','AC-24'), ('003761','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 a 1 (b)','AT-1a1(b)','AT-1'), ('003762','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b','AT-1b','AT-1'), ('003763','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b','AT-1b','AT-1'), ('003764','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b','AT-1b','AT-1'), ('003765','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-1 b','AT-1b','AT-1'), ('003766','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 a 2','AT-2a2','AT-2'), ('003767','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 b','AT-2b','AT-2'), ('003768','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 b','AT-2b','AT-2'), ('003769','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 b','AT-2b','AT-2'), ('003770','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 c','AT-2c','AT-2'), ('003771','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 c','AT-2c','AT-2'), ('003772','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 c','AT-2c','AT-2'), ('003773','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 c','AT-2c','AT-2'), ('003774','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 d','AT-2d','AT-2'), ('003775','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (3)','AT-2(3)','AT-2'), ('003776','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (3)','AT-2(3)','AT-2'), ('003777','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (4)','AT-2(4)','AT-2'), ('003778','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (4)','AT-2(4)','AT-2'), ('003779','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (5)','AT-2(5)','AT-2'), ('003780','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (6) (a)','AT-2(6)(a)','AT-2'), ('003781','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 (6) (b)','AT-2(6)(b)','AT-2'), ('003782','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 a','AT-3a','AT-3'), ('003783','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 a 1','AT-3a1','AT-3'), ('003784','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 a 2','AT-3a2','AT-3'), ('003785','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 b','AT-3b','AT-3'), ('003786','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 b','AT-3b','AT-3'), ('003787','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 b','AT-3b','AT-3'), ('003788','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 b','AT-3b','AT-3'), ('003789','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 c','AT-3c','AT-3'), ('003790','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (3)','AT-3(3)','AT-3'), ('003791','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (5)','AT-3(5)','AT-3'), ('003792','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (5)','AT-3(5)','AT-3'), ('003793','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-3 (5)','AT-3(5)','AT-3'), ('003794','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 a','AT-4a','AT-4'), ('003795','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-4 a','AT-4a','AT-4'), ('003796','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-6','AT-6','AT-6'), ('003797','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-6','AT-6','AT-6'), ('003798','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-6','AT-6','AT-6'), ('003799','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 a 1 (b)','AU-1a1(b)','AU-1'), ('003800','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b','AU-1b','AU-1'), ('003801','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b','AU-1b','AU-1'), ('003802','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b','AU-1b','AU-1'), ('003803','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b','AU-1b','AU-1'), ('003804','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b','AU-1b','AU-1'), ('003805','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 b','AU-1b','AU-1'), ('003806','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 1','AU-1c1','AU-1'), ('003807','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 1','AU-1c1','AU-1'), ('003808','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 2','AU-1c2','AU-1'), ('003809','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-1 c 2','AU-1c2','AU-1'), ('003810','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 e','AU-2e','AU-2'), ('003811','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-2 e','AU-2e','AU-2'), ('003812','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (3)','AU-3(3)','AU-3'), ('003813','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-3 (3)','AU-3(3)','AU-3'), ('003814','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 a','AU-5a','AU-5'), ('003815','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (5)','AU-5(5)','AU-5'), ('003816','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-5 (5)','AU-5(5)','AU-5'), ('003817','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 a','AU-6a','AU-6'), ('003818','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 c','AU-6c','AU-6'), ('003819','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 c','AU-6c','AU-6'), ('003820','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (1)','AU-6(1)','AU-6'), ('003821','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-6 (4)','AU-6(4)','AU-6'), ('003822','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('003823','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('003824','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('003825','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('003826','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('003827','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 a','AU-7a','AU-7'), ('003828','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 b','AU-7b','AU-7'), ('003829','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 b','AU-7b','AU-7'), ('003830','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-7 (1)','AU-7(1)','AU-7'), ('003831','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 b','AU-9b','AU-9'), ('003832','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 b','AU-9b','AU-9'), ('003833','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-9 (7)','AU-9(7)','AU-9'), ('003834','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (3)','AU-12(3)','AU-12'), ('003835','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (4)','AU-12(4)','AU-12'), ('003836','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-12 (4)','AU-12(4)','AU-12'), ('003837','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 b 1','AU-13b1','AU-13'), ('003838','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 b 1','AU-13b1','AU-13'), ('003839','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 b 2','AU-13b2','AU-13'), ('003840','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 b 2','AU-13b2','AU-13'), ('003841','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (1)','AU-13(1)','AU-13'), ('003842','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (1)','AU-13(1)','AU-13'), ('003843','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-13 (3)','AU-13(3)','AU-13'), ('003844','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 a','AU-14a','AU-14'), ('003845','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 a','AU-14a','AU-14'), ('003846','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 a','AU-14a','AU-14'), ('003847','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 b','AU-14b','AU-14'), ('003848','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-14 (3)','AU-14(3)','AU-14'), ('003849','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 1 (b)','CA-1a1(b)','CA-1'), ('003850','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 a 2','CA-1a2','CA-1'), ('003851','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b','CA-1b','CA-1'), ('003852','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b','CA-1b','CA-1'), ('003853','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b','CA-1b','CA-1'), ('003854','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 b','CA-1b','CA-1'), ('003855','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 1','CA-1c1','CA-1'), ('003856','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 1','CA-1c1','CA-1'), ('003857','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 2','CA-1c2','CA-1'), ('003858','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-1 c 2','CA-1c2','CA-1'), ('003859','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 a','CA-2a','CA-2'), ('003860','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 c','CA-2c','CA-2'), ('003861','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-2 d','CA-2d','CA-2'), ('003862','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 a','CA-3a','CA-3'), ('003863','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 b','CA-3b','CA-3'), ('003864','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (6)','CA-3(6)','CA-3'), ('003865','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (7) (a)','CA-3(7)(a)','CA-3'), ('003866','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-3 (7) (b)','CA-3(7)(b)','CA-3'), ('003867','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-5 (1)','CA-5(1)','CA-5'), ('003868','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 b','CA-6b','CA-6'), ('003869','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 c 1','CA-6c1','CA-6'), ('003870','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 d','CA-6d','CA-6'), ('003871','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 (1)','CA-6(1)','CA-6'), ('003872','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-6 (2)','CA-6(2)','CA-6'), ('003873','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7','CA-7','CA-7'), ('003874','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 a','CA-7a','CA-7'), ('003875','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 b','CA-7b','CA-7'), ('003876','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 b','CA-7b','CA-7'), ('003877','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 b','CA-7b','CA-7'), ('003878','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 c','CA-7c','CA-7'), ('003879','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g','CA-7'), ('003880','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 g','CA-7g','CA-7'), ('003881','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (4) (a)','CA-7(4)(a)','CA-7'), ('003882','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (4) (b)','CA-7(4)(b)','CA-7'), ('003883','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (4) (c)','CA-7(4)(c)','CA-7'), ('003884','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (5)','CA-7(5)','CA-7'), ('003885','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (5)','CA-7(5)','CA-7'), ('003886','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (5)','CA-7(5)','CA-7'), ('003887','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (6)','CA-7(6)','CA-7'), ('003888','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-7 (6)','CA-7(6)','CA-7'), ('003889','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (3)','CA-8(3)','CA-8'), ('003890','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-8 (3)','CA-8(3)','CA-8'), ('003891','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (b)','CA-9(b)','CA-9'), ('003892','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (c)','CA-9(c)','CA-9'), ('003893','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (c)','CA-9(c)','CA-9'), ('003894','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (d)','CA-9(d)','CA-9'), ('003895','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (d)','CA-9(d)','CA-9'), ('003896','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CA-9 (1)','CA-9(1)','CA-9'), ('003897','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 a 1 (b)','CM-1a1(b)','CM-1'), ('003898','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b','CM-1b','CM-1'), ('003899','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b','CM-1b','CM-1'), ('003900','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b','CM-1b','CM-1'), ('003901','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b','CM-1b','CM-1'), ('003902','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b','CM-1b','CM-1'), ('003903','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 b','CM-1b','CM-1'), ('003904','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 1','CM-1c1','CM-1'), ('003905','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 1','CM-1c1','CM-1'), ('003906','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 2','CM-1c2','CM-1'), ('003907','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 2','CM-1c2','CM-1'), ('003908','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-1 c 2','CM-1c2','CM-1'), ('003909','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 a','CM-2a','CM-2'), ('003910','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 b 3','CM-2b3','CM-2'), ('003911','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-2 (2)','CM-2(2)','CM-2'), ('003912','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 b','CM-3b','CM-3'), ('003913','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (a)','CM-3(1)(a)','CM-3'), ('003914','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (b)','CM-3(1)(b)','CM-3'), ('003915','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (c)','CM-3(1)(c)','CM-3'), ('003916','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (d)','CM-3(1)(d)','CM-3'), ('003917','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (e)','CM-3(1)(e)','CM-3'), ('003918','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (1) (f)','CM-3(1)(f)','CM-3'), ('003919','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (3)','CM-3(3)','CM-3'), ('003920','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (3)','CM-3(3)','CM-3'), ('003921','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3(4)','CM-3'), ('003922','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3(4)','CM-3'), ('003923','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3(4)','CM-3'), ('003924','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (4)','CM-3(4)','CM-3'), ('003925','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (7)','CM-3(7)','CM-3'), ('003926','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (7)','CM-3(7)','CM-3'), ('003927','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (7)','CM-3(7)','CM-3'), ('003928','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (8)','CM-3(8)','CM-3'), ('003929','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-3 (8)','CM-3(8)','CM-3'), ('003930','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4','CM-4','CM-4'), ('003931','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (1)','CM-4(1)','CM-4'), ('003932','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4(2)','CM-4'), ('003933','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4(2)','CM-4'), ('003934','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-4 (2)','CM-4(2)','CM-4'), ('003935','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), ('003936','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5','CM-5','CM-5'), ('003937','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (1) (a)','CM-5(1)(a)','CM-5'), ('003938','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (1) (b)','CM-5(1)(b)','CM-5'), ('003939','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (b)','CM-5(5)(b)','CM-5'), ('003940','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-5 (5) (b)','CM-5(5)(b)','CM-5'), ('003941','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 a','CM-6a','CM-6'), ('003942','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 a','CM-6a','CM-6'), ('003943','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 d','CM-6d','CM-6'), ('003944','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 d','CM-6d','CM-6'), ('003945','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 d','CM-6d','CM-6'), ('003946','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 d','CM-6d','CM-6'), ('003947','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-6 (1)','CM-6(1)','CM-6'), ('003948','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 a','CM-7a','CM-7'), ('003949','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (6)','CM-7(6)','CM-7'), ('003950','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (6)','CM-7(6)','CM-7'), ('003951','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (7) (a)','CM-7(7)(a)','CM-7'), ('003952','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (7) (a)','CM-7(7)(a)','CM-7'), ('003953','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (7) (b)','CM-7(7)(b)','CM-7'), ('003954','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (7) (b)','CM-7(7)(b)','CM-7'), ('003955','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (8) (a)','CM-7(8)(a)','CM-7'), ('003956','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (8) (b)','CM-7(8)(b)','CM-7'), ('003957','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (9) (a)','CM-7(9)(a)','CM-7'), ('003958','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (9) (a)','CM-7(9)(a)','CM-7'), ('003959','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (9) (b)','CM-7(9)(b)','CM-7'), ('003960','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (9) (c)','CM-7(9)(c)','CM-7'), ('003961','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-7 (9) (c)','CM-7(9)(c)','CM-7'), ('003962','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 1','CM-8a1','CM-8'), ('003963','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 2','CM-8a2','CM-8'), ('003964','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 3','CM-8a3','CM-8'), ('003965','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 4','CM-8a4','CM-8'), ('003966','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 4','CM-8a4','CM-8'), ('003967','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 a 5','CM-8a5','CM-8'), ('003968','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (2)','CM-8(2)','CM-8'), ('003969','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (3) (a)','CM-8(3)(a)','CM-8'), ('003970','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-8 (8)','CM-8(8)','CM-8'), ('003971','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 a','CM-9a','CM-9'), ('003972','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 a','CM-9a','CM-9'), ('003973','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b','CM-9'), ('003974','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 b','CM-9b','CM-9'), ('003975','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c','CM-9'), ('003976','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 c','CM-9c','CM-9'), ('003977','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 d','CM-9d','CM-9'), ('003978','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 d','CM-9d','CM-9'), ('003979','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-9 d','CM-9d','CM-9'), ('003980','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 (2)','CM-11(2)','CM-11'), ('003981','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-11 (3)','CM-11(3)','CM-11'), ('003982','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 a','CM-12a','CM-12'), ('003983','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 a','CM-12a','CM-12'), ('003984','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 a','CM-12a','CM-12'), ('003985','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 b','CM-12b','CM-12'), ('003986','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 b','CM-12b','CM-12'), ('003987','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 c','CM-12c','CM-12'), ('003988','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 (1)','CM-12(1)','CM-12'), ('003989','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 (1)','CM-12(1)','CM-12'), ('003990','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-12 (1)','CM-12(1)','CM-12'), ('003991','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-13','CM-13','CM-13'), ('003992','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-14','CM-14','CM-14'), ('003993','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CM-14','CM-14','CM-14'), ('003994','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1 (b)','CP-1a1(b)','CP-1'), ('003995','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 a 1 (b)','CP-1a1(b)','CP-1'), ('003996','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b','CP-1b','CP-1'), ('003997','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b','CP-1b','CP-1'), ('003998','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b','CP-1b','CP-1'), ('003999','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b','CP-1b','CP-1'), ('004000','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b','CP-1b','CP-1'), ('004001','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 b','CP-1b','CP-1'), ('004002','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 1','CP-1c1','CP-1'), ('004003','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 1','CP-1c1','CP-1'), ('004004','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 2','CP-1c2','CP-1'), ('004005','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-1 c 2','CP-1c2','CP-1'), ('004006','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a4','CP-2'), ('004007','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 4','CP-2a4','CP-2'), ('004008','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 a 6','CP-2a6','CP-2'), ('004009','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-2 g','CP-2g','CP-2'), ('004010','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 b','CP-3b','CP-3'), ('004011','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 b','CP-3b','CP-3'), ('004012','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 b','CP-3b','CP-3'), ('004013','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-3 b','CP-3b','CP-3'), ('004014','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (3)','CP-4(3)','CP-4'), ('004015','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (5)','CP-4(5)','CP-4'), ('004016','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (5)','CP-4(5)','CP-4'), ('004017','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-4 (5)','CP-4(5)','CP-4'), ('004018','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-6 a','CP-6a','CP-6'), ('004019','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-8 (1) (b)','CP-8(1)(b)','CP-8'), ('004020','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (a)','CP-9(a)','CP-9'), ('004021','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (c)','CP-9(c)','CP-9'), ('004022','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (d)','CP-9(d)','CP-9'), ('004023','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (d)','CP-9(d)','CP-9'), ('004024','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (d)','CP-9(d)','CP-9'), ('004025','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (8)','CP-9(8)','CP-9'), ('004026','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (8)','CP-9(8)','CP-9'), ('004027','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-9 (8)','CP-9(8)','CP-9'), ('004028','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-10','CP-10','CP-10'), ('004029','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-10','CP-10','CP-10'), ('004030','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','CP-10 (6)','CP-10(6)','CP-10'), ('004031','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1','IA-1a1','IA-1'), ('004032','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1 (a)','IA-1a1(a)','IA-1'), ('004033','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 1 (b)','IA-1a1(b)','IA-1'), ('004034','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 a 2','IA-1a2','IA-1'), ('004035','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b','IA-1b','IA-1'), ('004036','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b','IA-1b','IA-1'), ('004037','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b','IA-1b','IA-1'), ('004038','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b','IA-1b','IA-1'), ('004039','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b','IA-1b','IA-1'), ('004040','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 b','IA-1b','IA-1'), ('004041','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 1','IA-1c1','IA-1'), ('004042','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 1','IA-1c1','IA-1'), ('004043','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 2','IA-1c2','IA-1'), ('004044','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-1 c 2','IA-1c2','IA-1'), ('004045','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (5)','IA-2(5)','IA-2'), ('004046','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (6) (a)','IA-2(6)(a)','IA-2'), ('004047','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (6) (b)','IA-2(6)(b)','IA-2'), ('004048','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-2 (6) (b)','IA-2(6)(b)','IA-2'), ('004049','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (5)','IA-4(5)','IA-4'), ('004050','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (8)','IA-4(8)','IA-4'), ('004051','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (9)','IA-4(9)','IA-4'), ('004052','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-4 (9)','IA-4(9)','IA-4'), ('004053','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d','IA-5'), ('004054','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 d','IA-5d','IA-5'), ('004055','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 e','IA-5e','IA-5'), ('004056','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 f','IA-5f','IA-5'), ('004057','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5(1)(a)','IA-5'), ('004058','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5(1)(a)','IA-5'), ('004059','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5(1)(a)','IA-5'), ('004060','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (a)','IA-5(1)(a)','IA-5'), ('004061','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (b)','IA-5(1)(b)','IA-5'), ('004062','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (d)','IA-5(1)(d)','IA-5'), ('004063','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (e)','IA-5(1)(e)','IA-5'), ('004064','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (f)','IA-5(1)(f)','IA-5'), ('004065','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (g)','IA-5(1)(g)','IA-5'), ('004066','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (h)','IA-5(1)(h)','IA-5'), ('004067','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (1) (h)','IA-5(1)(h)','IA-5'), ('004068','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (2) (b) (2)','IA-5(2)(b)(2)','IA-5'), ('004069','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (7)','IA-5(7)','IA-5'), ('004070','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (9)','IA-5(9)','IA-5'), ('004071','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (9)','IA-5(9)','IA-5'), ('004072','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (10)','IA-5(10)','IA-5'), ('004073','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (15)','IA-5(15)','IA-5'), ('004074','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (16)','IA-5(16)','IA-5'), ('004075','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (16)','IA-5(16)','IA-5'), ('004076','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (16)','IA-5(16)','IA-5'), ('004077','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (16)','IA-5(16)','IA-5'), ('004078','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (17)','IA-5(17)','IA-5'), ('004079','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (18) (a)','IA-5(18)(a)','IA-5'), ('004080','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (18) (a)','IA-5(18)(a)','IA-5'), ('004081','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (18) (b)','IA-5(18)(b)','IA-5'), ('004082','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-5 (18) (b)','IA-5(18)(b)','IA-5'), ('004083','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (2) (a)','IA-8(2)(a)','IA-8'), ('004084','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (2) (b)','IA-8(2)(b)','IA-8'), ('004085','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (4)','IA-8(4)','IA-8'), ('004086','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (4)','IA-8(4)','IA-8'), ('004087','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (5)','IA-8(5)','IA-8'), ('004088','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (6)','IA-8(6)','IA-8'), ('004089','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (6)','IA-8(6)','IA-8'), ('004090','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (6)','IA-8(6)','IA-8'), ('004091','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-8 (6)','IA-8(6)','IA-8'), ('004092','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 a','IA-12a','IA-12'), ('004093','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 a','IA-12a','IA-12'), ('004094','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 b','IA-12b','IA-12'), ('004095','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 c','IA-12c','IA-12'), ('004096','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 c','IA-12c','IA-12'), ('004097','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 c','IA-12c','IA-12'), ('004098','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (1)','IA-12(1)','IA-12'), ('004099','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (2)','IA-12(2)','IA-12'), ('004100','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (3)','IA-12(3)','IA-12'), ('004101','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (3)','IA-12(3)','IA-12'), ('004102','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (3)','IA-12(3)','IA-12'), ('004103','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (3)','IA-12(3)','IA-12'), ('004104','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (4)','IA-12(4)','IA-12'), ('004105','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (4)','IA-12(4)','IA-12'), ('004106','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (5)','IA-12(5)','IA-12'), ('004107','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (6)','IA-12(6)','IA-12'), ('004108','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-12 (6)','IA-12(6)','IA-12'), ('004109','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 a 1 (b)','IR-1a1(b)','IR-1'), ('004110','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b','IR-1b','IR-1'), ('004111','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b','IR-1b','IR-1'), ('004112','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 b','IR-1b','IR-1'), ('004113','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 1','IR-1c1','IR-1'), ('004114','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 1','IR-1c1','IR-1'), ('004115','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 2','IR-1c2','IR-1'), ('004116','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-1 c 2','IR-1c2','IR-1'), ('004117','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 (2)','IR-2(2)','IR-2'), ('004118','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 (3)','IR-2(3)','IR-2'), ('004119','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (1)','IR-3(1)','IR-3'), ('004120','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (a)','IR-3(3)(a)','IR-3'), ('004121','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (a)','IR-3(3)(a)','IR-3'), ('004122','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (b)','IR-3(3)(b)','IR-3'), ('004123','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (b)','IR-3(3)(b)','IR-3'), ('004124','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (c)','IR-3(3)(c)','IR-3'), ('004125','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (c)','IR-3(3)(c)','IR-3'), ('004126','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (c)','IR-3(3)(c)','IR-3'), ('004127','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (c)','IR-3(3)(c)','IR-3'), ('004128','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (c)','IR-3(3)(c)','IR-3'), ('004129','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-3 (3) (c)','IR-3(3)(c)','IR-3'), ('004130','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 c','IR-4c','IR-4'), ('004131','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 c','IR-4c','IR-4'), ('004132','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 c','IR-4c','IR-4'), ('004133','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 d','IR-4d','IR-4'), ('004134','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 d','IR-4d','IR-4'), ('004135','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 d','IR-4d','IR-4'), ('004136','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 d','IR-4d','IR-4'), ('004137','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (1)','IR-4(1)','IR-4'), ('004138','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (2)','IR-4(2)','IR-4'), ('004139','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (3)','IR-4(3)','IR-4'), ('004140','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (3)','IR-4(3)','IR-4'), ('004141','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (7)','IR-4(7)','IR-4'), ('004142','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (7)','IR-4(7)','IR-4'), ('004143','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (11)','IR-4(11)','IR-4'), ('004144','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (11)','IR-4(11)','IR-4'), ('004145','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (12)','IR-4(12)','IR-4'), ('004146','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (13)','IR-4(13)','IR-4'), ('004147','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (13)','IR-4(13)','IR-4'), ('004148','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (14)','IR-4(14)','IR-4'), ('004149','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (15) (a)','IR-4(15)(a)','IR-4'), ('004150','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-4 (15) (b)','IR-4(15)(b)','IR-4'), ('004151','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5(1)','IR-5'), ('004152','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5(1)','IR-5'), ('004153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5(1)','IR-5'), ('004154','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-5 (1)','IR-5(1)','IR-5'), ('004155','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (1)','IR-6(1)','IR-6'), ('004156','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-6 (3)','IR-6(3)','IR-6'), ('004157','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 8','IR-8a8','IR-8'), ('004158','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 9','IR-8a9','IR-8'), ('004159','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 a 10','IR-8a10','IR-8'), ('004160','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 (1) (a)','IR-8(1)(a)','IR-8'), ('004161','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 (1) (b)','IR-8(1)(b)','IR-8'), ('004162','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-8 (1) (c)','IR-8(1)(c)','IR-8'), ('004163','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 a','IR-9a','IR-9'), ('004164','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-9 a','IR-9a','IR-9'), ('004165','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 a 1 (b)','MA-1a1(b)','MA-1'), ('004166','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b','MA-1b','MA-1'), ('004167','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b','MA-1b','MA-1'), ('004168','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b','MA-1b','MA-1'), ('004169','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 b','MA-1b','MA-1'), ('004170','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 1','MA-1c1','MA-1'), ('004171','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 1','MA-1c1','MA-1'), ('004172','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 2','MA-1c2','MA-1'), ('004173','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-1 c 2','MA-1c2','MA-1'), ('004174','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('004175','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('004176','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 a','MA-2a','MA-2'), ('004177','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 b','MA-2b','MA-2'), ('004178','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 b','MA-2b','MA-2'), ('004179','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 b','MA-2b','MA-2'), ('004180','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 b','MA-2b','MA-2'), ('004181','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 d','MA-2d','MA-2'), ('004182','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (a)','MA-2(2)(a)','MA-2'), ('004183','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (a)','MA-2(2)(a)','MA-2'), ('004184','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (a)','MA-2(2)(a)','MA-2'), ('004185','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-2 (2) (b)','MA-2(2)(b)','MA-2'), ('004186','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 b','MA-3b','MA-3'), ('004187','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 b','MA-3b','MA-3'), ('004188','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (5)','MA-3(5)','MA-3'), ('004189','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-3 (6)','MA-3(6)','MA-3'), ('004190','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 e','MA-4e','MA-4'), ('004191','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 e','MA-4e','MA-4'), ('004192','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (4) (b) (2)','MA-4(4)(b)(2)','MA-4'), ('004193','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-4 (6)','MA-4(6)','MA-4'), ('004194','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (b)','MA-5(1)(b)','MA-5'), ('004195','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (b)','MA-5(1)(b)','MA-5'), ('004196','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-5 (1) (b)','MA-5(1)(b)','MA-5'), ('004197','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-6 (3)','MA-6(3)','MA-6'), ('004198','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-7','MA-7','MA-7'), ('004199','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-7','MA-7','MA-7'), ('004200','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MA-7','MA-7','MA-7'), ('004201','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 a 1 (b)','MP-1a1(b)','MP-1'), ('004202','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b','MP-1b','MP-1'), ('004203','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b','MP-1b','MP-1'), ('004204','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b','MP-1b','MP-1'), ('004205','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b','MP-1b','MP-1'), ('004206','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 b','MP-1b','MP-1'), ('004207','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 1','MP-1c1','MP-1'), ('004208','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 1','MP-1c1','MP-1'), ('004209','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 2','MP-1c2','MP-1'), ('004210','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-1 c 2','MP-1c2','MP-1'), ('004211','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a','MP-4'), ('004212','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 a','MP-4a','MP-4'), ('004213','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 b','MP-4b','MP-4'), ('004214','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 b','MP-4b','MP-4'), ('004215','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 b','MP-4b','MP-4'), ('004216','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-4 (2)','MP-4(2)','MP-4'), ('004217','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a','MP-5'), ('004218','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-5 a','MP-5a','MP-5'), ('004219','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (2)','MP-6(2)','MP-6'), ('004220','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-6 (2)','MP-6(2)','MP-6'), ('004221','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 a','MP-8a','MP-8'), ('004222','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 a','MP-8a','MP-8'), ('004223','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 b','MP-8b','MP-8'), ('004224','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 b','MP-8b','MP-8'), ('004225','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 c','MP-8c','MP-8'), ('004226','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 c','MP-8c','MP-8'), ('004227','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8(2)','MP-8'), ('004228','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','MP-8 (2)','MP-8(2)','MP-8'), ('004229','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 a 1 (b)','PE-1a1(b)','PE-1'), ('004230','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b','PE-1b','PE-1'), ('004231','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b','PE-1b','PE-1'), ('004232','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b','PE-1b','PE-1'), ('004233','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b','PE-1b','PE-1'), ('004234','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b','PE-1b','PE-1'), ('004235','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 b','PE-1b','PE-1'), ('004236','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 1','PE-1c1','PE-1'), ('004237','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 1','PE-1c1','PE-1'), ('004238','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 2','PE-1c2','PE-1'), ('004239','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-1 c 2','PE-1c2','PE-1'), ('004240','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a','PE-3a','PE-3'), ('004241','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a','PE-3a','PE-3'), ('004242','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 2','PE-3a2','PE-3'), ('004243','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 a 2','PE-3a2','PE-3'), ('004244','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (7)','PE-3(7)','PE-3'), ('004245','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (8)','PE-3(8)','PE-3'), ('004246','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-3 (8)','PE-3(8)','PE-3'), ('004247','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-5 (2)','PE-5(2)','PE-5'), ('004248','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (2)','PE-6(2)','PE-6'), ('004249','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3) (b)','PE-6(3)(b)','PE-6'), ('004250','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-6 (3) (b)','PE-6(3)(b)','PE-6'), ('004251','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 c','PE-8c','PE-8'), ('004252','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 c','PE-8c','PE-8'), ('004253','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 (1)','PE-8(1)','PE-8'), ('004254','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 (3)','PE-8(3)','PE-8'), ('004255','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-8 (3)','PE-8(3)','PE-8'), ('004256','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-10 a','PE-10a','PE-10'), ('004257','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 (1)','PE-14(1)','PE-14'), ('004258','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-14 (2)','PE-14(2)','PE-14'), ('004259','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15 (1)','PE-15(1)','PE-15'), ('004260','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15 (1)','PE-15(1)','PE-15'), ('004261','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-15 (1)','PE-15(1)','PE-15'), ('004262','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 a','PE-17a','PE-17'), ('004263','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-17 d','PE-17d','PE-17'), ('004264','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-19 (1)','PE-19(1)','PE-19'), ('004265','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-19 (1)','PE-19(1)','PE-19'), ('004266','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-21','PE-21','PE-21'), ('004267','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-21','PE-21','PE-21'), ('004268','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-21','PE-21','PE-21'), ('004269','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-22','PE-22','PE-22'), ('004270','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-22','PE-22','PE-22'), ('004271','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-23 a','PE-23a','PE-23'), ('004272','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PE-23 b','PE-23b','PE-23'), ('004273','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 a 1 (b)','PL-1a1(b)','PL-1'), ('004274','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 b','PL-1b','PL-1'), ('004275','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 b','PL-1b','PL-1'), ('004276','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 c 1','PL-1c1','PL-1'), ('004277','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-1 c 2','PL-1c2','PL-1'), ('004278','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 4','PL-2a4','PL-2'), ('004279','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 5','PL-2a5','PL-2'), ('004280','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 7','PL-2a7','PL-2'), ('004281','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 8','PL-2a8','PL-2'), ('004282','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 13','PL-2a13','PL-2'), ('004283','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-2 a 14','PL-2a14','PL-2'), ('004284','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a','PL-4'), ('004285','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a','PL-4'), ('004286','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a','PL-4'), ('004287','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a','PL-4'), ('004288','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 a','PL-4a','PL-4'), ('004289','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 d','PL-4d','PL-4'), ('004290','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-4 (1) (c)','PL-4(1)(c)','PL-4'), ('004291','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-7 a','PL-7a','PL-7'), ('004292','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a','PL-8a','PL-8'), ('004293','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 1','PL-8a1','PL-8'), ('004294','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 2','PL-8a2','PL-8'), ('004295','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 2','PL-8a2','PL-8'), ('004296','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 3','PL-8a3','PL-8'), ('004297','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 a 4','PL-8a4','PL-8'), ('004298','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c','PL-8'), ('004299','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c','PL-8'), ('004300','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 c','PL-8c','PL-8'), ('004301','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('004302','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('004303','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('004304','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('004305','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('004306','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (a)','PL-8(1)(a)','PL-8'), ('004307','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (1) (b)','PL-8(1)(b)','PL-8'), ('004308','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (2)','PL-8(2)','PL-8'), ('004309','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-8 (2)','PL-8(2)','PL-8'), ('004310','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-10','PL-10','PL-10'), ('004311','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PL-11','PL-11','PL-11'), ('004312','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 b','PM-1b','PM-1'), ('004313','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-1 b','PM-1b','PM-1'), ('004314','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 a','PM-3a','PM-3'), ('004315','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 a','PM-3a','PM-3'), ('004316','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 b','PM-3b','PM-3'), ('004317','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 b','PM-3b','PM-3'), ('004318','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-3 c','PM-3c','PM-3'), ('004319','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a1','PM-4'), ('004320','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a1','PM-4'), ('004321','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a1','PM-4'), ('004322','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 1','PM-4a1','PM-4'), ('004323','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 2','PM-4a2','PM-4'), ('004324','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 2','PM-4a2','PM-4'), ('004325','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 3','PM-4a3','PM-4'), ('004326','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 3','PM-4a3','PM-4'), ('004327','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-4 a 3','PM-4a3','PM-4'), ('004328','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5','PM-5','PM-5'), ('004329','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5','PM-5','PM-5'), ('004330','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5','PM-5','PM-5'), ('004331','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5 (1)','PM-5(1)','PM-5'), ('004332','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5 (1)','PM-5(1)','PM-5'), ('004333','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5 (1)','PM-5(1)','PM-5'), ('004334','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-5 (1)','PM-5(1)','PM-5'), ('004335','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), ('004336','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), ('004337','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-6','PM-6','PM-6'), ('004338','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-7','PM-7','PM-7'), ('004339','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-7','PM-7','PM-7'), ('004340','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-7','PM-7','PM-7'), ('004341','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-7 (1)','PM-7(1)','PM-7'), ('004342','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-7 (1)','PM-7(1)','PM-7'), ('004343','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-8','PM-8','PM-8'), ('004344','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-8','PM-8','PM-8'), ('004345','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-9 a 2','PM-9a2','PM-9'), ('004346','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 a','PM-10a','PM-10'), ('004347','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-10 a','PM-10a','PM-10'), ('004348','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 a','PM-11a','PM-11'), ('004349','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 b','PM-11b','PM-11'), ('004350','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 c','PM-11c','PM-11'), ('004351','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-11 c','PM-11c','PM-11'), ('004352','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-13','PM-13','PM-13'), ('004353','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('004354','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('004355','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('004356','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('004357','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('004358','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 1','PM-14a1','PM-14'), ('004359','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a2','PM-14'), ('004360','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a2','PM-14'), ('004361','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-14 a 2','PM-14a2','PM-14'), ('004362','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 a','PM-15a','PM-15'), ('004363','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 b','PM-15b','PM-15'), ('004364','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-15 c','PM-15c','PM-15'), ('004365','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-16 (1)','PM-16(1)','PM-16'), ('004366','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-17 a','PM-17a','PM-17'), ('004367','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-17 a','PM-17a','PM-17'), ('004368','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-17 b','PM-17b','PM-17'), ('004369','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-17 b','PM-17b','PM-17'), ('004370','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-17 b','PM-17b','PM-17'), ('004371','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-17 b','PM-17b','PM-17'), ('004372','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a','PM-18a','PM-18'), ('004373','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a','PM-18a','PM-18'), ('004374','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 1','PM-18a1','PM-18'), ('004375','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 1','PM-18a1','PM-18'), ('004376','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 2','PM-18a2','PM-18'), ('004377','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 2','PM-18a2','PM-18'), ('004378','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 2','PM-18a2','PM-18'), ('004379','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 2','PM-18a2','PM-18'), ('004380','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 3','PM-18a3','PM-18'), ('004381','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 3','PM-18a3','PM-18'), ('004382','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 4','PM-18a4','PM-18'), ('004383','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 4','PM-18a4','PM-18'), ('004384','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 5','PM-18a5','PM-18'), ('004385','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 5','PM-18a5','PM-18'), ('004386','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 6','PM-18a6','PM-18'), ('004387','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 6','PM-18a6','PM-18'), ('004388','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 a 6','PM-18a6','PM-18'), ('004389','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-18 b','PM-18b','PM-18'), ('004390','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-19','PM-19','PM-19'), ('004391','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-19','PM-19','PM-19'), ('004392','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-19','PM-19','PM-19'), ('004393','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-19','PM-19','PM-19'), ('004394','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20','PM-20','PM-20'), ('004395','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 a','PM-20a','PM-20'), ('004396','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 a','PM-20a','PM-20'), ('004397','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 b','PM-20b','PM-20'), ('004398','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 c','PM-20c','PM-20'), ('004399','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 (1) (a)','PM-20(1)(a)','PM-20'), ('004400','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 (1) (a)','PM-20(1)(a)','PM-20'), ('004401','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 (1) (b)','PM-20(1)(b)','PM-20'), ('004402','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 (1) (c)','PM-20(1)(c)','PM-20'), ('004403','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-20 (1) (c)','PM-20(1)(c)','PM-20'), ('004404','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 a','PM-21a','PM-21'), ('004405','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 a','PM-21a','PM-21'), ('004406','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 a 1','PM-21a1','PM-21'), ('004407','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 a 1','PM-21a1','PM-21'), ('004408','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 a 2','PM-21a2','PM-21'), ('004409','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 a 2','PM-21a2','PM-21'), ('004410','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 b','PM-21b','PM-21'), ('004411','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-21 c','PM-21c','PM-21'), ('004412','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 a','PM-22a','PM-22'), ('004413','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 a','PM-22a','PM-22'), ('004414','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 b','PM-22b','PM-22'), ('004415','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 b','PM-22b','PM-22'), ('004416','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 c','PM-22c','PM-22'), ('004417','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 c','PM-22c','PM-22'), ('004418','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 d','PM-22d','PM-22'), ('004419','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-22 d','PM-22d','PM-22'), ('004420','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-23','PM-23','PM-23'), ('004421','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-23','PM-23','PM-23'), ('004422','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-23','PM-23','PM-23'), ('004423','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-24 a','PM-24a','PM-24'), ('004424','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-24 b','PM-24b','PM-24'), ('004425','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 a','PM-25a','PM-25'), ('004426','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 a','PM-25a','PM-25'), ('004427','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 a','PM-25a','PM-25'), ('004428','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 a','PM-25a','PM-25'), ('004429','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 b','PM-25b','PM-25'), ('004430','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 c','PM-25c','PM-25'), ('004431','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 d','PM-25d','PM-25'), ('004432','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 d','PM-25d','PM-25'), ('004433','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 d','PM-25d','PM-25'), ('004434','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-25 d','PM-25d','PM-25'), ('004435','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26','PM-26','PM-26'), ('004436','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26','PM-26','PM-26'), ('004437','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 a','PM-26a','PM-26'), ('004438','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 a','PM-26a','PM-26'), ('004439','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 b','PM-26b','PM-26'), ('004440','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 c','PM-26c','PM-26'), ('004441','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 c','PM-26c','PM-26'), ('004442','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 d','PM-26d','PM-26'), ('004443','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 d','PM-26d','PM-26'), ('004444','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 e','PM-26e','PM-26'), ('004445','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-26 e','PM-26e','PM-26'), ('004446','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27','PM-27','PM-27'), ('004447','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27','PM-27','PM-27'), ('004448','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27 a 1','PM-27a1','PM-27'), ('004449','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27 a 2','PM-27a2','PM-27'), ('004450','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27 a 2','PM-27a2','PM-27'), ('004451','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27 a 2','PM-27a2','PM-27'), ('004452','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27 b','PM-27b','PM-27'), ('004453','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-27 b','PM-27b','PM-27'), ('004454','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 a 1','PM-28a1','PM-28'), ('004455','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 a 2','PM-28a2','PM-28'), ('004456','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 a 3','PM-28a3','PM-28'), ('004457','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 a 4','PM-28a4','PM-28'), ('004458','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 b','PM-28b','PM-28'), ('004459','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 b','PM-28b','PM-28'), ('004460','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 c','PM-28c','PM-28'), ('004461','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-28 c','PM-28c','PM-28'), ('004462','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-29 a','PM-29a','PM-29'), ('004463','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-29 a','PM-29a','PM-29'), ('004464','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-29 b','PM-29b','PM-29'), ('004465','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-29 b','PM-29b','PM-29'), ('004466','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 a','PM-30a','PM-30'), ('004467','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 a','PM-30a','PM-30'), ('004468','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 a','PM-30a','PM-30'), ('004469','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 a','PM-30a','PM-30'), ('004470','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 b','PM-30b','PM-30'), ('004471','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 c','PM-30c','PM-30'), ('004472','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 c','PM-30c','PM-30'), ('004473','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 a','PM-31a','PM-31'), ('004474','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 a','PM-31a','PM-31'), ('004475','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 a','PM-31a','PM-31'), ('004476','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 b','PM-31b','PM-31'), ('004477','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 b','PM-31b','PM-31'), ('004478','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 b','PM-31b','PM-31'), ('004479','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 b','PM-31b','PM-31'), ('004480','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 b','PM-31b','PM-31'), ('004481','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 b','PM-31b','PM-31'), ('004482','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 c','PM-31c','PM-31'), ('004483','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 c','PM-31c','PM-31'), ('004484','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 d','PM-31d','PM-31'), ('004485','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 d','PM-31d','PM-31'), ('004486','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 e','PM-31e','PM-31'), ('004487','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 e','PM-31e','PM-31'), ('004488','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004489','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004490','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004491','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004492','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004493','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004494','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004495','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-31 f','PM-31f','PM-31'), ('004496','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-32','PM-32','PM-32'), ('004497','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-32','PM-32','PM-32'), ('004498','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 a 1 (b)','PS-1a1(b)','PS-1'), ('004499','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b','PS-1b','PS-1'), ('004500','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b','PS-1b','PS-1'), ('004501','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b','PS-1b','PS-1'), ('004502','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b','PS-1b','PS-1'), ('004503','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b','PS-1b','PS-1'), ('004504','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 b','PS-1b','PS-1'), ('004505','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 1','PS-1c1','PS-1'), ('004506','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 1','PS-1c1','PS-1'), ('004507','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 2','PS-1c2','PS-1'), ('004508','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-1 c 2','PS-1c2','PS-1'), ('004509','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (4)','PS-3(4)','PS-3'), ('004510','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (4)','PS-3(4)','PS-3'), ('004511','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-3 (4)','PS-3(4)','PS-3'), ('004512','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-4 (2)','PS-4(2)','PS-4'), ('004513','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 1','PS-6c1','PS-6'), ('004514','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 1','PS-6c1','PS-6'), ('004515','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 2','PS-6c2','PS-6'), ('004516','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 2','PS-6c2','PS-6'), ('004517','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 2','PS-6c2','PS-6'), ('004518','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-6 c 2','PS-6c2','PS-6'), ('004519','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 b','PS-7b','PS-7'), ('004520','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-7 b','PS-7b','PS-7'), ('004521','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 a','PS-8a','PS-8'), ('004522','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-8 a','PS-8a','PS-8'), ('004523','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-9','PS-9','PS-9'), ('004524','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PS-9','PS-9','PS-9'), ('004525','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 a 1 (a)','PT-1a1(a)','PT-1'), ('004526','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 a','PT-1a','PT-1'), ('004527','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 a','PT-1a','PT-1'), ('004528','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 a 1 (b)','PT-1a1(b)','PT-1'), ('004529','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 a 2','PT-1a2','PT-1'), ('004530','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 b','PT-1b','PT-1'), ('004531','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 b','PT-1b','PT-1'), ('004532','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 b','PT-1b','PT-1'), ('004533','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 c 1','PT-1c1','PT-1'), ('004534','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 c 1','PT-1c1','PT-1'), ('004535','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 c 1','PT-1c1','PT-1'), ('004536','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 c 2','PT-1c2','PT-1'), ('004537','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 c 2','PT-1c2','PT-1'), ('004538','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-1 c 2','PT-1c2','PT-1'), ('004539','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 a','PT-2a','PT-2'), ('004540','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 a','PT-2a','PT-2'), ('004541','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 a','PT-2a','PT-2'), ('004542','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 b','PT-2b','PT-2'), ('004543','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 b','PT-2b','PT-2'), ('004544','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 (1)','PT-2(1)','PT-2'), ('004545','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 (1)','PT-2(1)','PT-2'), ('004546','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 (1)','PT-2(1)','PT-2'), ('004547','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 (2)','PT-2(2)','PT-2'), ('004548','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-2 (2)','PT-2(2)','PT-2'), ('004549','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 a','PT-3a','PT-3'), ('004550','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 a','PT-3a','PT-3'), ('004551','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 b','PT-3b','PT-3'), ('004552','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 c','PT-3c','PT-3'), ('004553','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 c','PT-3c','PT-3'), ('004554','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 d','PT-3d','PT-3'), ('004555','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 d','PT-3d','PT-3'), ('004556','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 d','PT-3d','PT-3'), ('004557','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 d','PT-3d','PT-3'), ('004558','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 (1)','PT-3(1)','PT-3'), ('004559','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 (1)','PT-3(1)','PT-3'), ('004560','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-3 (2)','PT-3(2)','PT-3'), ('004561','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4','PT-4','PT-4'), ('004562','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4','PT-4','PT-4'), ('004563','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (1)','PT-4(1)','PT-4'), ('004564','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (1)','PT-4(1)','PT-4'), ('004565','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (2)','PT-4(2)','PT-4'), ('004566','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (2)','PT-4(2)','PT-4'), ('004567','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (2)','PT-4(2)','PT-4'), ('004568','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (2)','PT-4(2)','PT-4'), ('004569','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (3)','PT-4(3)','PT-4'), ('004570','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-4 (3)','PT-4(3)','PT-4'), ('004571','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 a','PT-5a','PT-5'), ('004572','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 a','PT-5a','PT-5'), ('004573','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 b','PT-5b','PT-5'), ('004574','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 c','PT-5c','PT-5'), ('004575','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 d','PT-5d','PT-5'), ('004576','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 e','PT-5e','PT-5'), ('004577','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 e','PT-5e','PT-5'), ('004578','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 (1)','PT-5(1)','PT-5'), ('004579','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 (1)','PT-5(1)','PT-5'), ('004580','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-5 (2)','PT-5(2)','PT-5'), ('004581','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 a','PT-6a','PT-6'), ('004582','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 a','PT-6a','PT-6'), ('004583','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 b','PT-6b','PT-6'), ('004584','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 c','PT-6c','PT-6'), ('004585','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (1)','PT-6(1)','PT-6'), ('004586','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (1)','PT-6(1)','PT-6'), ('004587','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (1)','PT-6(1)','PT-6'), ('004588','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (2)','PT-6(2)','PT-6'), ('004589','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (2)','PT-6(2)','PT-6'), ('004590','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (2)','PT-6(2)','PT-6'), ('004591','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-6 (2)','PT-6(2)','PT-6'), ('004592','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-7','PT-7','PT-7'), ('004593','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-7','PT-7','PT-7'), ('004594','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-7 (1) (a)','PT-7(1)(a)','PT-7'), ('004595','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-7 (1) (b)','PT-7(1)(b)','PT-7'), ('004596','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-7 (1) (c)','PT-7(1)(c)','PT-7'), ('004597','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-7 (2)','PT-7(2)','PT-7'), ('004598','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-8 a','PT-8a','PT-8'), ('004599','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-8 b','PT-8b','PT-8'), ('004600','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-8 c','PT-8c','PT-8'), ('004601','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-8 d','PT-8d','PT-8'), ('004602','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PT-8 e','PT-8e','PT-8'), ('004603','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1 (b)','RA-1a1(b)','RA-1'), ('004604','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 a 1 (b)','RA-1a1(b)','RA-1'), ('004605','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b','RA-1b','RA-1'), ('004606','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b','RA-1b','RA-1'), ('004607','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b','RA-1b','RA-1'), ('004608','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b','RA-1b','RA-1'), ('004609','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 b','RA-1b','RA-1'), ('004610','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 1','RA-1c1','RA-1'), ('004611','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 1','RA-1c1','RA-1'), ('004612','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 2','RA-1c2','RA-1'), ('004613','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-1 c 2','RA-1c2','RA-1'), ('004614','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 a','RA-2a','RA-2'), ('004615','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 a','RA-2a','RA-2'), ('004616','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 a','RA-2a','RA-2'), ('004617','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-2 (1)','RA-2(1)','RA-2'), ('004618','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 a 1','RA-3a1','RA-3'), ('004619','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 a 1','RA-3a1','RA-3'), ('004620','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 a 3','RA-3a3','RA-3'), ('004621','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 b','RA-3b','RA-3'), ('004622','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 b','RA-3b','RA-3'), ('004623','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 b','RA-3b','RA-3'), ('004624','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (1) (a)','RA-3(1)(a)','RA-3'), ('004625','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (1) (a)','RA-3(1)(a)','RA-3'), ('004626','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (1) (b)','RA-3(1)(b)','RA-3'), ('004627','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (1) (b)','RA-3(1)(b)','RA-3'), ('004628','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (2)','RA-3(2)','RA-3'), ('004629','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (3)','RA-3(3)','RA-3'), ('004630','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (3)','RA-3(3)','RA-3'), ('004631','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (4)','RA-3(4)','RA-3'), ('004632','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (4)','RA-3(4)','RA-3'), ('004633','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-3 (4)','RA-3(4)','RA-3'), ('004634','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 b 2','RA-5b2','RA-5'), ('004635','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 b 3','RA-5b3','RA-5'), ('004636','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 f','RA-5f','RA-5'), ('004637','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (6)','RA-5(6)','RA-5'), ('004638','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (8)','RA-5(8)','RA-5'), ('004639','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (8)','RA-5(8)','RA-5'), ('004640','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-5 (11)','RA-5(11)','RA-5'), ('004641','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-7','RA-7','RA-7'), ('004642','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-7','RA-7','RA-7'), ('004643','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-7','RA-7','RA-7'), ('004644','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-7','RA-7','RA-7'), ('004645','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-8 a','RA-8a','RA-8'), ('004646','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-8 b 1','RA-8b1','RA-8'), ('004647','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-8 b 2','RA-8b2','RA-8'), ('004648','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-9','RA-9','RA-9'), ('004649','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-9','RA-9','RA-9'), ('004650','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-9','RA-9','RA-9'), ('004651','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-10 a 1','RA-10a1','RA-10'), ('004652','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-10 a 2','RA-10a2','RA-10'), ('004653','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-10 b','RA-10b','RA-10'), ('004654','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','RA-10 b','RA-10b','RA-10'), ('004655','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 a 1 (b)','SA-1a1(b)','SA-1'), ('004656','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b','SA-1b','SA-1'), ('004657','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b','SA-1b','SA-1'), ('004658','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b','SA-1b','SA-1'), ('004659','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b','SA-1b','SA-1'), ('004660','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b','SA-1b','SA-1'), ('004661','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 b','SA-1b','SA-1'), ('004662','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 1','SA-1c1','SA-1'), ('004663','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 1','SA-1c1','SA-1'), ('004664','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 2','SA-1c2','SA-1'), ('004665','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-1 c 2','SA-1c2','SA-1'), ('004666','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 a','SA-2a','SA-2'), ('004667','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 c','SA-2c','SA-2'), ('004668','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-2 c','SA-2c','SA-2'), ('004669','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004670','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004671','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004672','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004673','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004674','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004675','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 a','SA-3a','SA-3'), ('004676','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 b','SA-3b','SA-3'), ('004677','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 c','SA-3c','SA-3'), ('004678','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 d','SA-3d','SA-3'), ('004679','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (1)','SA-3(1)','SA-3'), ('004680','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (2) (a)','SA-3(2)(a)','SA-3'), ('004681','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (2) (a)','SA-3(2)(a)','SA-3'), ('004682','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (2) (a)','SA-3(2)(a)','SA-3'), ('004683','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (2) (b)','SA-3(2)(b)','SA-3'), ('004684','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (3)','SA-3(3)','SA-3'), ('004685','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-3 (3)','SA-3(3)','SA-3'), ('004686','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4','SA-4','SA-4'), ('004687','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 a','SA-4a','SA-4'), ('004688','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 c','SA-4c','SA-4'), ('004689','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 d','SA-4d','SA-4'), ('004690','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 d','SA-4d','SA-4'), ('004691','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 e','SA-4e','SA-4'), ('004692','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 f','SA-4f','SA-4'), ('004693','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 f','SA-4f','SA-4'), ('004694','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 h','SA-4h','SA-4'), ('004695','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 h','SA-4h','SA-4'), ('004696','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 h','SA-4h','SA-4'), ('004697','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3) (a)','SA-4(3)(a)','SA-4'), ('004698','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3) (a)','SA-4(3)(a)','SA-4'), ('004699','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3) (b)','SA-4(3)(b)','SA-4'), ('004700','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3) (b)','SA-4(3)(b)','SA-4'), ('004701','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3) (c)','SA-4(3)(c)','SA-4'), ('004702','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (3) (c)','SA-4(3)(c)','SA-4'), ('004703','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (11)','SA-4(11)','SA-4'), ('004704','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (11)','SA-4(11)','SA-4'), ('004705','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (12) (a)','SA-4(12)(a)','SA-4'), ('004706','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (12) (b)','SA-4(12)(b)','SA-4'), ('004707','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-4 (12) (b)','SA-4(12)(b)','SA-4'), ('004708','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 a 2','SA-5a2','SA-5'), ('004709','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 1','SA-5b1','SA-5'), ('004710','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 2','SA-5b2','SA-5'), ('004711','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-5 b 3','SA-5b3','SA-5'), ('004712','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('004713','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('004714','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('004715','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('004716','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8','SA-8','SA-8'), ('004717','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (1)','SA-8(1)','SA-8'), ('004718','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (2)','SA-8(2)','SA-8'), ('004719','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (2)','SA-8(2)','SA-8'), ('004720','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (3)','SA-8(3)','SA-8'), ('004721','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (3)','SA-8(3)','SA-8'), ('004722','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (4)','SA-8(4)','SA-8'), ('004723','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (4)','SA-8(4)','SA-8'), ('004724','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (5)','SA-8(5)','SA-8'), ('004725','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (5)','SA-8(5)','SA-8'), ('004726','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (6)','SA-8(6)','SA-8'), ('004727','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (6)','SA-8(6)','SA-8'), ('004728','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (7)','SA-8(7)','SA-8'), ('004729','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (7)','SA-8(7)','SA-8'), ('004730','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (8)','SA-8(8)','SA-8'), ('004731','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (8)','SA-8(8)','SA-8'), ('004732','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (9)','SA-8(9)','SA-8'), ('004733','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (9)','SA-8(9)','SA-8'), ('004734','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (10)','SA-8(10)','SA-8'), ('004735','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (10)','SA-8(10)','SA-8'), ('004736','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (11)','SA-8(11)','SA-8'), ('004737','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (11)','SA-8(11)','SA-8'), ('004738','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (12)','SA-8(12)','SA-8'), ('004739','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (12)','SA-8(12)','SA-8'), ('004740','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (13)','SA-8(13)','SA-8'), ('004741','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (13)','SA-8(13)','SA-8'), ('004742','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (14)','SA-8(14)','SA-8'), ('004743','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (14)','SA-8(14)','SA-8'), ('004744','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (15)','SA-8(15)','SA-8'), ('004745','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (15)','SA-8(15)','SA-8'), ('004746','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (16)','SA-8(16)','SA-8'), ('004747','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (16)','SA-8(16)','SA-8'), ('004748','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (17)','SA-8(17)','SA-8'), ('004749','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (17)','SA-8(17)','SA-8'), ('004750','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (18)','SA-8(18)','SA-8'), ('004751','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (18)','SA-8(18)','SA-8'), ('004752','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (19)','SA-8(19)','SA-8'), ('004753','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (19)','SA-8(19)','SA-8'), ('004754','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (20)','SA-8(20)','SA-8'), ('004755','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (20)','SA-8(20)','SA-8'), ('004756','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (21)','SA-8(21)','SA-8'), ('004757','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (21)','SA-8(21)','SA-8'), ('004758','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (22)','SA-8(22)','SA-8'), ('004759','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (22)','SA-8(22)','SA-8'), ('004760','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (23)','SA-8(23)','SA-8'), ('004761','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (23)','SA-8(23)','SA-8'), ('004762','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (24)','SA-8(24)','SA-8'), ('004763','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (24)','SA-8(24)','SA-8'), ('004764','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (25)','SA-8(25)','SA-8'), ('004765','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (25)','SA-8(25)','SA-8'), ('004766','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (26)','SA-8(26)','SA-8'), ('004767','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (26)','SA-8(26)','SA-8'), ('004768','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (27)','SA-8(27)','SA-8'), ('004769','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (27)','SA-8(27)','SA-8'), ('004770','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (28)','SA-8(28)','SA-8'), ('004771','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (28)','SA-8(28)','SA-8'), ('004772','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (29)','SA-8(29)','SA-8'), ('004773','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (29)','SA-8(29)','SA-8'), ('004774','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (30)','SA-8(30)','SA-8'), ('004775','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (30)','SA-8(30)','SA-8'), ('004776','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (31)','SA-8(31)','SA-8'), ('004777','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (31)','SA-8(31)','SA-8'), ('004778','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (32)','SA-8(32)','SA-8'), ('004779','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (32)','SA-8(32)','SA-8'), ('004780','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (33)','SA-8(33)','SA-8'), ('004781','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-8 (33)','SA-8(33)','SA-8'), ('004782','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 a','SA-9a','SA-9'), ('004783','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 a','SA-9a','SA-9'), ('004784','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 a','SA-9a','SA-9'), ('004785','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 b','SA-9b','SA-9'), ('004786','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 b','SA-9b','SA-9'), ('004787','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('004788','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('004789','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('004790','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (3)','SA-9(3)','SA-9'), ('004791','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (6)','SA-9(6)','SA-9'), ('004792','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (7)','SA-9(7)','SA-9'), ('004793','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-9 (8)','SA-9(8)','SA-9'), ('004794','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 d','SA-10d','SA-10'), ('004795','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (7)','SA-10(7)','SA-10'), ('004796','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (7)','SA-10(7)','SA-10'), ('004797','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-10 (7)','SA-10(7)','SA-10'), ('004798','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 a','SA-11a','SA-11'), ('004799','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 a','SA-11a','SA-11'), ('004800','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 b','SA-11b','SA-11'), ('004801','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (a)','SA-11(2)(a)','SA-11'), ('004802','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (a)','SA-11(2)(a)','SA-11'), ('004803','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (b)','SA-11(2)(b)','SA-11'), ('004804','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (b)','SA-11(2)(b)','SA-11'), ('004805','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (c)','SA-11(2)(c)','SA-11'), ('004806','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (c)','SA-11(2)(c)','SA-11'), ('004807','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (d)','SA-11(2)(d)','SA-11'), ('004808','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (2) (d)','SA-11(2)(d)','SA-11'), ('004809','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11(3)(a)','SA-11'), ('004810','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11(3)(a)','SA-11'), ('004811','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (3) (a)','SA-11(3)(a)','SA-11'), ('004812','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5) (a)','SA-11(5)(a)','SA-11'), ('004813','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (5) (b)','SA-11(5)(b)','SA-11'), ('004814','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (9)','SA-11(9)','SA-11'), ('004815','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-11 (9)','SA-11(9)','SA-11'), ('004816','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 a 1','SA-15a1','SA-15'), ('004817','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('004818','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('004819','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('004820','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('004821','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('004822','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 b','SA-15b','SA-15'), ('004823','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (2)','SA-15(2)','SA-15'), ('004824','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (2)','SA-15(2)','SA-15'), ('004825','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3) (a)','SA-15(3)(a)','SA-15'), ('004826','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (3) (b)','SA-15(3)(b)','SA-15'), ('004827','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (a)','SA-15(7)(a)','SA-15'), ('004828','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (b)','SA-15(7)(b)','SA-15'), ('004829','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (c)','SA-15(7)(c)','SA-15'), ('004830','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (7) (d)','SA-15(7)(d)','SA-15'), ('004831','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (10)','SA-15(10)','SA-15'), ('004832','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (10)','SA-15(10)','SA-15'), ('004833','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (11)','SA-15(11)','SA-15'), ('004834','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-15 (12)','SA-15(12)','SA-15'), ('004835','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-16','SA-16','SA-16'), ('004836','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-16','SA-16','SA-16'), ('004837','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17','SA-17','SA-17'), ('004838','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 a','SA-17a','SA-17'), ('004839','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 b','SA-17b','SA-17'), ('004840','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 b','SA-17b','SA-17'), ('004841','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 c','SA-17c','SA-17'), ('004842','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (a)','SA-17(1)(a)','SA-17'), ('004843','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (a)','SA-17(1)(a)','SA-17'), ('004844','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (1) (b)','SA-17(1)(b)','SA-17'), ('004845','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (8)','SA-17(8)','SA-17'), ('004846','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (8)','SA-17(8)','SA-17'), ('004847','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (8)','SA-17(8)','SA-17'), ('004848','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (9)','SA-17(9)','SA-17'), ('004849','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-17 (9)','SA-17(9)','SA-17'), ('004850','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-23','SA-23','SA-23'), ('004851','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SA-23','SA-23','SA-23'), ('004852','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1 (a)','SC-1a1(a)','SC-1'), ('004853','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 1 (b)','SC-1a1(b)','SC-1'), ('004854','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 a 2','SC-1a2','SC-1'), ('004855','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b','SC-1b','SC-1'), ('004856','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b','SC-1b','SC-1'), ('004857','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b','SC-1b','SC-1'), ('004858','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b','SC-1b','SC-1'), ('004859','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b','SC-1b','SC-1'), ('004860','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 b','SC-1b','SC-1'), ('004861','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 1','SC-1c1','SC-1'), ('004862','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 1','SC-1c1','SC-1'), ('004863','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 2','SC-1c2','SC-1'), ('004864','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-1 c 2','SC-1c2','SC-1'), ('004865','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-2 (2)','SC-2(2)','SC-2'), ('004866','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 b','SC-5b','SC-5'), ('004867','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-5 b','SC-5b','SC-5'), ('004868','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 c','SC-7c','SC-7'), ('004869','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (f)','SC-7(4)(f)','SC-7'), ('004870','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (g)','SC-7(4)(g)','SC-7'), ('004871','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (4) (h)','SC-7(4)(h)','SC-7'), ('004872','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (5)','SC-7(5)','SC-7'), ('004873','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (7)','SC-7(7)','SC-7'), ('004874','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (10) (b)','SC-7(10)(b)','SC-7'), ('004875','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (10) (b)','SC-7(10)(b)','SC-7'), ('004876','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (24) (a)','SC-7(24)(a)','SC-7'), ('004877','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (24) (a)','SC-7(24)(a)','SC-7'), ('004878','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (24) (b)','SC-7(24)(b)','SC-7'), ('004879','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (24) (c)','SC-7(24)(c)','SC-7'), ('004880','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (24) (d)','SC-7(24)(d)','SC-7'), ('004881','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (25)','SC-7(25)','SC-7'), ('004882','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (25)','SC-7(25)','SC-7'), ('004883','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (25)','SC-7(25)','SC-7'), ('004884','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (26)','SC-7(26)','SC-7'), ('004885','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (26)','SC-7(26)','SC-7'), ('004886','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (27)','SC-7(27)','SC-7'), ('004887','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (27)','SC-7(27)','SC-7'), ('004888','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (27)','SC-7(27)','SC-7'), ('004889','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (28)','SC-7(28)','SC-7'), ('004890','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (28)','SC-7(28)','SC-7'), ('004891','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (29)','SC-7(29)','SC-7'), ('004892','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-7 (29)','SC-7(29)','SC-7'), ('004893','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (5)','SC-8(5)','SC-8'), ('004894','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-8 (5)','SC-8(5)','SC-8'), ('004895','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 b','SC-11b','SC-11'), ('004896','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 (1) (b)','SC-11(1)(b)','SC-11'), ('004897','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-11 (1) (b)','SC-11(1)(b)','SC-11'), ('004898','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (3)','SC-12(3)','SC-12'), ('004899','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-12 (6)','SC-12(6)','SC-12'), ('004900','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-13 a','SC-13a','SC-13'), ('004901','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), ('004902','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), ('004903','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16','SC-16','SC-16'), ('004904','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (1)','SC-16(1)','SC-16'), ('004905','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (2)','SC-16(2)','SC-16'), ('004906','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (3)','SC-16(3)','SC-16'), ('004907','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (3)','SC-16(3)','SC-16'), ('004908','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-16 (3)','SC-16(3)','SC-16'), ('004909','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-17 b','SC-17b','SC-17'), ('004910','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (3)','SC-28(3)','SC-28'), ('004911','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-28 (3)','SC-28(3)','SC-28'), ('004912','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-32 (1)','SC-32(1)','SC-32'), ('004913','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1) (b)','SC-36(1)(b)','SC-36'), ('004914','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (1) (b)','SC-36(1)(b)','SC-36'), ('004915','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (2)','SC-36(2)','SC-36'), ('004916','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-36 (2)','SC-36(2)','SC-36'), ('004917','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (4)','SC-42(4)','SC-42'), ('004918','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (4)','SC-42(4)','SC-42'), ('004919','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (4)','SC-42(4)','SC-42'), ('004920','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (5)','SC-42(5)','SC-42'), ('004921','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-42 (5)','SC-42(5)','SC-42'), ('004922','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45','SC-45','SC-45'), ('004923','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (1) (a)','SC-45(1)(a)','SC-45'), ('004924','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (1) (a)','SC-45(1)(a)','SC-45'), ('004925','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (1) (a)','SC-45(1)(a)','SC-45'), ('004926','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (1) (b)','SC-45(1)(b)','SC-45'), ('004927','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (1) (b)','SC-45(1)(b)','SC-45'), ('004928','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (2) (a)','SC-45(2)(a)','SC-45'), ('004929','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-45 (2) (b)','SC-45(2)(b)','SC-45'), ('004930','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-46','SC-46','SC-46'), ('004931','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-47','SC-47','SC-47'), ('004932','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48','SC-48','SC-48'), ('004933','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48','SC-48','SC-48'), ('004934','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48','SC-48','SC-48'), ('004935','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48','SC-48','SC-48'), ('004936','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48 (1)','SC-48(1)','SC-48'), ('004937','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48 (1)','SC-48(1)','SC-48'), ('004938','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48 (1)','SC-48(1)','SC-48'), ('004939','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-48 (1)','SC-48(1)','SC-48'), ('004940','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-49','SC-49','SC-49'), ('004941','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-49','SC-49','SC-49'), ('004942','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-50','SC-50','SC-50'), ('004943','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SC-50','SC-50','SC-50'), ('004944','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 a 1 (b)','SI-1a1(b)','SI-1'), ('004945','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b','SI-1b','SI-1'), ('004946','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b','SI-1b','SI-1'), ('004947','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b','SI-1b','SI-1'), ('004948','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b','SI-1b','SI-1'), ('004949','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b','SI-1b','SI-1'), ('004950','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 b','SI-1b','SI-1'), ('004951','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 1','SI-1c1','SI-1'), ('004952','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 1','SI-1c1','SI-1'), ('004953','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 2','SI-1c2','SI-1'), ('004954','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-1 c 2','SI-1c2','SI-1'), ('004955','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2(2)','SI-2'), ('004956','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2(2)','SI-2'), ('004957','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2(2)','SI-2'), ('004958','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2(2)','SI-2'), ('004959','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2(2)','SI-2'), ('004960','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (2)','SI-2(2)','SI-2'), ('004961','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (4)','SI-2(4)','SI-2'), ('004962','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-2 (4)','SI-2(4)','SI-2'), ('004963','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 a','SI-3a','SI-3'), ('004964','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 b','SI-3b','SI-3'), ('004965','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 b','SI-3b','SI-3'), ('004966','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-3 c 2','SI-3c2','SI-3'), ('004967','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 d','SI-4d','SI-4'), ('004968','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (2)','SI-4(2)','SI-4'), ('004969','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (3)','SI-4(3)','SI-4'), ('004970','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (3)','SI-4(3)','SI-4'), ('004971','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (a)','SI-4(4)(a)','SI-4'), ('004972','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (a)','SI-4(4)(a)','SI-4'), ('004973','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (b)','SI-4(4)(b)','SI-4'), ('004974','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (4) (b)','SI-4(4)(b)','SI-4'), ('004975','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (9)','SI-4(9)','SI-4'), ('004976','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (9)','SI-4(9)','SI-4'), ('004977','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4(10)','SI-4'), ('004978','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4(10)','SI-4'), ('004979','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (10)','SI-4(10)','SI-4'), ('004980','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (12)','SI-4(12)','SI-4'), ('004981','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (16)','SI-4(16)','SI-4'), ('004982','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-4 (25)','SI-4(25)','SI-4'), ('004983','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-5 (1)','SI-5(1)','SI-5'), ('004984','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 a','SI-6a','SI-6'), ('004985','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 a','SI-6a','SI-6'), ('004986','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b','SI-6'), ('004987','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b','SI-6'), ('004988','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 b','SI-6b','SI-6'), ('004989','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 c','SI-6c','SI-6'), ('004990','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 c','SI-6c','SI-6'), ('004991','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 d','SI-6d','SI-6'), ('004992','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 d','SI-6d','SI-6'), ('004993','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (2)','SI-6(2)','SI-6'), ('004994','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (3)','SI-6(3)','SI-6'), ('004995','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-6 (3)','SI-6(3)','SI-6'), ('004996','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 b','SI-7b','SI-7'), ('004997','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 b','SI-7b','SI-7'), ('004998','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (17)','SI-7(17)','SI-7'), ('004999','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-7 (17)','SI-7(17)','SI-7'), ('005000','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 b','SI-8b','SI-8'), ('005001','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 b','SI-8b','SI-8'), ('005002','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-8 (2)','SI-8(2)','SI-8'), ('005003','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-10 (6)','SI-10(6)','SI-10'), ('005004','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12 (1)','SI-12(1)','SI-12'), ('005005','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12 (1)','SI-12(1)','SI-12'), ('005006','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12 (2)','SI-12(2)','SI-12'), ('005007','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12 (2)','SI-12(2)','SI-12'), ('005008','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-12 (3)','SI-12(3)','SI-12'), ('005009','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (3)','SI-13(3)','SI-13'), ('005010','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-13 (4) (b)','SI-13(4)(b)','SI-13'), ('005011','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (2) (a)','SI-14(2)(a)','SI-14'), ('005012','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (2) (a)','SI-14(2)(a)','SI-14'), ('005013','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (2) (a)','SI-14(2)(a)','SI-14'), ('005014','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (2) (a)','SI-14(2)(a)','SI-14'), ('005015','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (2) (b)','SI-14(2)(b)','SI-14'), ('005016','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (3)','SI-14(3)','SI-14'), ('005017','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-14 (3)','SI-14(3)','SI-14'), ('005018','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 a','SI-18a','SI-18'), ('005019','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 a','SI-18a','SI-18'), ('005020','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 b 1','SI-18b1','SI-18'), ('005021','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (1)','SI-18(1)','SI-18'), ('005022','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (1)','SI-18(1)','SI-18'), ('005023','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (2)','SI-18(2)','SI-18'), ('005024','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (3)','SI-18(3)','SI-18'), ('005025','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (4)','SI-18(4)','SI-18'), ('005026','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (5)','SI-18(5)','SI-18'), ('005027','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (5)','SI-18(5)','SI-18'), ('005028','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-18 (5)','SI-18(5)','SI-18'), ('005029','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 a','SI-19a','SI-19'), ('005030','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 a','SI-19a','SI-19'), ('005031','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 b','SI-19b','SI-19'), ('005032','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 b','SI-19b','SI-19'), ('005033','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (1)','SI-19(1)','SI-19'), ('005034','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (2)','SI-19(2)','SI-19'), ('005035','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (3)','SI-19(3)','SI-19'), ('005036','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (4)','SI-19(4)','SI-19'), ('005037','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (5)','SI-19(5)','SI-19'), ('005038','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (6)','SI-19(6)','SI-19'), ('005039','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (7)','SI-19(7)','SI-19'), ('005040','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-19 (8)','SI-19(8)','SI-19'), ('005041','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-20','SI-20','SI-20'), ('005042','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-20','SI-20','SI-20'), ('005043','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-21','SI-21','SI-21'), ('005044','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-21','SI-21','SI-21'), ('005045','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-21','SI-21','SI-21'), ('005046','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-22 a','SI-22a','SI-22'), ('005047','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-22 a','SI-22a','SI-22'), ('005048','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-22 b','SI-22b','SI-22'), ('005049','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-22 b','SI-22b','SI-22'), ('005050','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-23 a','SI-23a','SI-23'), ('005051','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-23 a','SI-23a','SI-23'), ('005052','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-23 a','SI-23a','SI-23'), ('005053','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-23 b','SI-23b','SI-23'), ('005054','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-23 b','SI-23b','SI-23'), ('005055','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SI-23 b','SI-23b','SI-23'), ('005056','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 a 1','SR-1a1','SR-1'), ('005057','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 a 1 (a)','SR-1a1(a)','SR-1'), ('005058','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 a 1 (b)','SR-1a1(b)','SR-1'), ('005059','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 a 2','SR-1a2','SR-1'), ('005060','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 b','SR-1b','SR-1'), ('005061','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 b','SR-1b','SR-1'), ('005062','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 b','SR-1b','SR-1'), ('005063','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 b','SR-1b','SR-1'), ('005064','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 1','SR-1c1','SR-1'), ('005065','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 1','SR-1c1','SR-1'), ('005066','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 1','SR-1c1','SR-1'), ('005067','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 1','SR-1c1','SR-1'), ('005068','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 2','SR-1c2','SR-1'), ('005069','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 2','SR-1c2','SR-1'), ('005070','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 2','SR-1c2','SR-1'), ('005071','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-1 c 2','SR-1c2','SR-1'), ('005072','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 a','SR-2a','SR-2'), ('005073','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 a','SR-2a','SR-2'), ('005074','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 b','SR-2b','SR-2'), ('005075','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 b','SR-2b','SR-2'), ('005076','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 c','SR-2c','SR-2'), ('005077','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 (1)','SR-2(1)','SR-2'), ('005078','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 (1)','SR-2(1)','SR-2'), ('005079','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-2 (1)','SR-2(1)','SR-2'), ('005080','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 a','SR-3a','SR-3'), ('005081','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 a','SR-3a','SR-3'), ('005082','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 a','SR-3a','SR-3'), ('005083','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 a','SR-3a','SR-3'), ('005084','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 a','SR-3a','SR-3'), ('005085','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 a','SR-3a','SR-3'), ('005086','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 b','SR-3b','SR-3'), ('005087','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 b','SR-3b','SR-3'), ('005088','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 b','SR-3b','SR-3'), ('005089','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 c','SR-3c','SR-3'), ('005090','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 c','SR-3c','SR-3'), ('005091','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 (1)','SR-3(1)','SR-3'), ('005092','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 (1)','SR-3(1)','SR-3'), ('005093','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 (2)','SR-3(2)','SR-3'), ('005094','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 (2)','SR-3(2)','SR-3'), ('005095','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-3 (3)','SR-3(3)','SR-3'), ('005096','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4','SR-4','SR-4'), ('005097','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4','SR-4','SR-4'), ('005098','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4','SR-4','SR-4'), ('005099','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4','SR-4','SR-4'), ('005100','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (1)','SR-4(1)','SR-4'), ('005101','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (1)','SR-4(1)','SR-4'), ('005102','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (2)','SR-4(2)','SR-4'), ('005103','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (2)','SR-4(2)','SR-4'), ('005104','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (3)','SR-4(3)','SR-4'), ('005105','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (3)','SR-4(3)','SR-4'), ('005106','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (3)','SR-4(3)','SR-4'), ('005107','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (3)','SR-4(3)','SR-4'), ('005108','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (4)','SR-4(4)','SR-4'), ('005109','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (4)','SR-4(4)','SR-4'), ('005110','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (4)','SR-4(4)','SR-4'), ('005111','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-4 (4)','SR-4(4)','SR-4'), ('005112','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-5','SR-5','SR-5'), ('005113','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-5','SR-5','SR-5'), ('005114','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-5 (1)','SR-5(1)','SR-5'), ('005115','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-5 (1)','SR-5(1)','SR-5'), ('005116','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-5 (1)','SR-5(1)','SR-5'), ('005117','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-5 (2)','SR-5(2)','SR-5'), ('005118','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-6','SR-6','SR-6'), ('005119','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-6','SR-6','SR-6'), ('005120','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-6 (1)','SR-6(1)','SR-6'), ('005121','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-6 (1)','SR-6(1)','SR-6'), ('005122','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-7','SR-7','SR-7'), ('005123','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-7','SR-7','SR-7'), ('005124','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-8','SR-8','SR-8'), ('005125','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-8','SR-8','SR-8'), ('005126','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-9','SR-9','SR-9'), ('005127','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-9 (1)','SR-9(1)','SR-9'), ('005128','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-10','SR-10','SR-10'), ('005129','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-10','SR-10','SR-10'), ('005130','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-10','SR-10','SR-10'), ('005131','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-10','SR-10','SR-10'), ('005132','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 a','SR-11a','SR-11'), ('005133','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 a','SR-11a','SR-11'), ('005134','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 b','SR-11b','SR-11'), ('005135','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 b','SR-11b','SR-11'), ('005136','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 b','SR-11b','SR-11'), ('005137','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (1)','SR-11(1)','SR-11'), ('005138','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (1)','SR-11(1)','SR-11'), ('005139','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (2)','SR-11(2)','SR-11'), ('005140','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (2)','SR-11(2)','SR-11'), ('005141','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (2)','SR-11(2)','SR-11'), ('005142','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (3)','SR-11(3)','SR-11'), ('005143','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-11 (3)','SR-11(3)','SR-11'), ('005144','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-12','SR-12','SR-12'), ('005145','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-12','SR-12','SR-12'), ('005146','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','SR-12','SR-12','SR-12'), ('005147','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AT-2 a 1','AT-2a1','AT-2'), ('005149','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','AU-16 (3)','AU-16(3)','AU-16'), ('005150','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','PM-30 (1)','PM-30(1)','PM-30'), ('005151','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 b','IR-2b','IR-2'), ('005152','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 b','IR-2b','IR-2'), ('005153','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-2 b','IR-2b','IR-2'), ('005154','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IR-7 (1)','IR-7(1)','IR-7'), ('005155','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13','IA-13','IA-13'), ('005156','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (01)','IA-13(01)','IA-13'), ('005157','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (02)','IA-13(02)','IA-13'), ('005158','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (a)','IA-13(03)(a)','IA-13'), ('005159','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (b)','IA-13(03)(b)','IA-13'), ('005160','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (c)','IA-13(03)(c)','IA-13'), ('005161','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (d)','IA-13(03)(d)','IA-13'), ('005162','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (e)','IA-13(03)(e)','IA-13'), ('005163','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (f)','IA-13(03)(f)','IA-13'), ('005164','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (a)','IA-13(03)(a)','IA-13'), ('005165','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (b)','IA-13(03)(b)','IA-13'), ('005166','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (c)','IA-13(03)(c)','IA-13'), ('005167','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (d)','IA-13(03)(d)','IA-13'), ('005168','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (e)','IA-13(03)(e)','IA-13'), ('005169','NIST','NIST SP 800-53 Revision 5','5','http://csrc.nist.gov/publications/PubsSPs.html','IA-13 (03) (f)','IA-13(03)(f)','IA-13'); /*!40000 ALTER TABLE `cci_reference_map` ENABLE KEYS */; UNLOCK TABLES; /*!40101 SET SQL_MODE=@OLD_SQL_MODE */; /*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */; /*!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS */; /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */; ================================================ FILE: api/source/service/migrations/sql/generateSchema.sh ================================================ #!/bin/bash # Use this script to generate the current schema and static data for the 'stigman' database. # It will produce two SQL scripts which will be used in the stig manager application to recreate a new database schema in its most recent state. #NEEDS: mysqldump #How to use: # 1. Ensure that the MySQL server is running and that the 'stigman' database is accessible and in its most recent state. # 2. Run this script from the command line. # 3. When stig-manager is started, it will automatically run the SQL scripts to create the database schema and insert the static data. #List of table names for static data. static_data_tables="result status _migrations task job job_task_map" # Export the schema of all tables in the 'stigman' database into a SQL file, # removing any AUTO_INCREMENT attribute values to prevent conflicts with existing data when imported # and removing statements that trigger a mysql2 bug when changing client character set # The '--no-data' flag means no table row data will be dumped, only the schema. # The '--no-create-db' flag prevents the inclusion of CREATE DATABASE statements in the dump. mysqldump -h 127.0.0.1 -P 3306 -u root -prootpw --routines --events --no-data --no-create-db stigman | sed --expression='s/ AUTO_INCREMENT=[0-9]\+//' \ --expression='s/DEFINER=`stigman`@`%` *//' \ --expression '/SQL SECURITY DEFINER/d' \ --expression='s/;;/$/g' | awk 'tolower($0) !~ /character_set|set names/' > 10-stigman-tables.sql # Export only the data from specific tables listed in $static_data_tables into a separate SQL file. # '--no-create-info' flag ensures that table creation statements are not included, just the row insertions. mysqldump -h 127.0.0.1 -P 3306 -u root -prootpw --no-create-info stigman $static_data_tables | awk 'tolower($0) !~ /character_set|set names/' > 20-stigman-static.sql echo "ALTER TABLE job AUTO_INCREMENT=100;" >> 20-stigman-static.sql echo "ALTER TABLE job_task_map AUTO_INCREMENT=1000;" >> 20-stigman-static.sql ================================================ FILE: api/source/service/utils.js ================================================ const mysql = require('mysql2/promise') const config = require('../utils/config') const logger = require('../utils/logger') const retry = require('async-retry') const Umzug = require('umzug') const path = require('path') const fs = require("fs") const semverGte = require('semver/functions/gte') const semverCoerce = require('semver/functions/coerce') const Importer = require('./migrations/lib/mysql-import.js') const state = require('../utils/state') const minMySqlVersion = '8.0.24' let _this = this let initAttempt = 0 let NetKeepAlive if (!process.pkg) { // pkg does not support the dynamic loading used by net-keepalive. // Therefore, support for TCP_USER_TIMEOUT is excluded from binaries built with pkg. NetKeepAlive = require('net-keepalive') } const PoolMonitor = require('../utils/PoolMonitor.js') /** * Performs a preflight connection check by getting and releasing a connection from the pool. */ async function preflightConnection () { logger.writeDebug('mysql', 'preflight', { attempt: ++initAttempt }) const connection = await _this.pool.getConnection() await connection.release() } /** * Retrieves the MySQL version from the database. * @returns {Promise} The MySQL version. */ async function getMySqlVersion () { let [result] = await _this.pool.query('SELECT VERSION() as version') return result[0].version } /** * Retrieves the count of tables in the database. * @returns {Promise} The number of tables. */ async function getTableCount () { let [tables] = await _this.pool.query('SHOW TABLES') return tables.length } /** * Checks if the provided MySQL version is acceptable. * @param {string} version - The MySQL version to check. * @returns {boolean} True if the version is acceptable, false otherwise. */ function isOkVersion(version) { return semverGte(semverCoerce(version), semverCoerce(minMySqlVersion)) } /** * Performs database migrations using Umzug. * @returns {Promise} The list of executed migrations. */ async function doMigrations() { // Perform migrations const umzug = new Umzug({ migrations: { path: path.join(__dirname, './migrations'), params: [_this.pool] }, storage: path.join(__dirname, './migrations/lib/umzug-mysql-storage'), storageOptions: { pool: _this.pool } }) if (config.database.revert) { const migrations = await umzug.executed() if (migrations.length) { logger.writeInfo('mysql', 'migration', { message: 'MySQL schema will revert the last migration and terminate' }) await umzug.down() } else { logger.writeInfo('mysql', 'migration', { message: 'MySQL schema has no migrations to revert' }) } logger.writeInfo('mysql', 'migration', { message: 'MySQL revert migration has completed' }) state.setState('stop') } const migrations = await umzug.pending() if (migrations.length > 0) { logger.writeInfo('mysql', 'migration', { message: `MySQL schema requires ${migrations.length} update${migrations.length > 1 ? 's' : ''}` }) await umzug.up() logger.writeInfo('mysql', 'migration', { message: `All migrations performed successfully` }) } else { logger.writeInfo('mysql', 'migration', { message: `MySQL schema is up to date` }) } return umzug.executed() } /** * Sets up the initial database schema by importing SQL files. */ async function setupInitialSchema(){ logger.writeInfo('mysql', 'schema', { message: 'setting up new schema.' }) const importer = new Importer(_this.pool) const dir = path.join(__dirname, 'migrations', 'sql', 'current') const files = await fs.promises.readdir(dir) try { for (const file of files) { logger.writeInfo('mysql', 'schema', {status: 'running', name: file }) await importer.import(path.join(dir, file)) } } catch (e) { logger.writeError('mysql', 'schema', {status: 'error', files, message: e.message }) throw new Error(`failed to setup initial schema, ${e.message}`) } logger.writeInfo('mysql', 'schema', { message: 'schema setup complete.' }) } /** * Sets up the database schema by checking the number of tables and performing migrations if necessary. */ async function setupSchema() { try { // Check the number of tables in the database const numTables = await getTableCount() if (numTables === 0) { await setupInitialSchema() } const migrated = await doMigrations() config.lastMigration = parseInt(migrated[migrated.length -1].file.substring(0,4)) } catch (error) { logger.writeError('mysql', 'initalization', { message: error.message }) throw new Error('Failed during database initialization or migration.') } } /** * Resolves a database TLS certificate path. * Detects if the path is absolute or relative and returns the appropriate resolved path. * Relative paths are resolved relative to the /tls directory for backward compatibility. * * @param {string} certPath - The certificate path from configuration * @returns {string} The resolved absolute path */ function resolveDbCertPath(certPath) { if (path.isAbsolute(certPath)) { // Path is already absolute, use it directly return certPath } else { // Path is relative, resolve it relative to the /tls directory (legacy behavior) return path.join(__dirname, '..', 'tls', certPath) } } /** * Generates the pool configuration object based on the application configuration. * @returns {Object} The pool configuration object. */ function getPoolConfig() { const poolConfig = { connectionLimit : config.database.maxConnections, timezone: 'Z', host: config.database.host, port: config.database.port, user: config.database.username, database: config.database.schema, decimalNumbers: true, charset: 'utf8mb4_0900_ai_ci', keepAliveInitialDelay: 10000, connectAttributes: { program_name: 'stig-manager' }, typeCast: function (field, next) { if ((field.type === "BIT") && (field.length === 1)) { let bytes = field.buffer() || [0] return( bytes[ 0 ] === 1 ) } return next() } } if (config.database.password) { poolConfig.password = config.database.password } if (config.database.tls.ca_file || config.database.tls.cert_file || config.database.tls.key_file) { const sslConfig = {} if (config.database.tls.ca_file) { sslConfig.ca = fs.readFileSync(resolveDbCertPath(config.database.tls.ca_file)) } if (config.database.tls.cert_file) { sslConfig.cert = fs.readFileSync(resolveDbCertPath(config.database.tls.cert_file)) } if (config.database.tls.key_file) { sslConfig.key = fs.readFileSync(resolveDbCertPath(config.database.tls.key_file)) } poolConfig.ssl = sslConfig } return poolConfig } /** * Patches the pool to emit a 'remove' event when a connection is removed. * @param {Object} promisePool - The mysql2 PromisePool object. */ function patchRemoveConnection(promisePool) { const originalRemoveConnection = promisePool.pool._removeConnection promisePool.pool._removeConnection = function (connection) { originalRemoveConnection.call(promisePool.pool, connection) promisePool.emit('remove', connection) } } /** * Retry function for the pool monitor to attempt to restore pool connections. */ async function poolMonitorRetryFn () { try { logger.writeInfo('mysql', 'restore', { message: 'attempting to restore pool connection' }) await preflightConnection() logger.writeInfo('mysql', 'restore', { message: `connection suceeded` }) const version = await getMySqlVersion() if (!isOkVersion(version)) { const connection = await _this.pool.getConnection() connection.connection.destroy() throw new Error(`MySQL release ${version} is too old. Update to release ${minMySqlVersion} or later.`) } else { await setupSchema() logger.writeInfo('mysql', 'restore', { success: true, version, message: 'pool connection restored' }) } } catch (e) { logger.writeError('mysql', 'restore', { success: false, message: e.message }) throw e } } /** * Retry function for bootstrapping the database connection. * @param {Function} fn - The function to retry. * @returns {Promise} The result of the retried function. */ async function bootstrapRetryFn (fn) { return retry(fn, { retries: config.settings.dependencyRetries, factor: 1, minTimeout: 5 * 1000, maxTimeout: 5 * 1000, onRetry: (error) => { logger.writeError('mysql', 'preflight', { success: false, message: error.message }) } }) } /** * Formats a Node.js socket object into a string representation. * * @param {net.Socket} socket - The Node.js socket object. * @returns {string|undefined} A string representation of the socket's local and remote addresses and ports, or undefined if the socket is not connected. */ function formatSocket(socket) { return socket.localAddress ? `${socket.localAddress}:${socket.localPort} -> ${socket.remoteAddress}:${socket.remotePort}` : undefined } /** * Attaches event handlers to the pool for connection and removal events. * @param {Object} pool - The mysql2 PromisePool object. */ function attachPoolEventHandlers(pool) { pool.on('connection', function (connection) { const socket = formatSocket(connection.stream) connection.on('error', function (error) { logger.writeError('mysql', 'connectionEvent', { event: 'error', socket, message: error.message }) }) logger.writeInfo('mysql', 'poolEvent', { event: 'connection', socket }) NetKeepAlive?.setUserTimeout(connection.stream, 20000) connection.query('SET SESSION group_concat_max_len=10000000') }) pool.on('remove', function (connection) { const socket = formatSocket(connection.stream) logger.writeInfo('mysql', 'poolEvent', { event: 'remove', socket, remaining: pool.pool._allConnections.toArray().length, authorized: connection.authorized }) }) } module.exports.initializeDatabase = async function () { try { // Create the connection pool const poolConfig = getPoolConfig() logger.writeDebug('mysql', 'poolConfig', { ...poolConfig }) _this.pool = mysql.createPool(poolConfig) attachPoolEventHandlers(_this.pool) new PoolMonitor({pool: _this.pool, state, retryInterval: 20000, retryFn: poolMonitorRetryFn}) state.dbPool = _this.pool // Try to create a pool connection, will retry every 5 seconds await bootstrapRetryFn(preflightConnection) // Check the MySQL version const version = await getMySqlVersion() if (!isOkVersion(version)) { logger.writeError('mysql', 'preflight', { success: false, message: `MySQL release ${version} is too old. Update to release ${minMySqlVersion} or later.` }) throw new Error('MySQL release is too old.') } else { logger.writeInfo('mysql', 'preflight', {success: true, version }) } // Patch the pool to emit a 'remove' event when a connection is removed patchRemoveConnection(_this.pool) // Setup the schema, will scaffold if necessary and run migrations await setupSchema() state.setDbStatus(true) } catch (err) { state.setDbStatus(false) throw err } } module.exports.parseRevisionStr = function (revisionStr) { const ro = {} if (revisionStr !== 'latest') { const results = /V(\d+)R(\d+(\.\d+)?)/.exec(revisionStr) ro.version = results[1] ro.release = results[2] ro.table = 'revision' ro.table_alias = 'r' ro.predicates = ' and r.version = ? and r.release = ? ' } else { ro.version = null ro.release = null ro.table = 'current_rev' ro.table_alias = 'cr' ro.predicates = '' } return ro } module.exports.selectCollectionByAssetId = async function (assetId) { const [rows] = await _this.pool.query(`SELECT c.* from enabled_asset a left join enabled_collection c using (collectionId) where a.assetId = ?`, [assetId]) return rows[0] } module.exports.getGrantByAssetId = async function (assetId, grants) { const row = await _this.selectCollectionByAssetId(assetId) return row ? grants[row.collectionId] : null } module.exports.getUserAssetStigAccess = async function ({assetId, benchmarkId, grants}) { const grant = await _this.getGrantByAssetId(assetId, grants) if (!grant) return 'none' const binds = [assetId, benchmarkId] const sql = `with ${_this.cteAclEffective({grantIds: grant.grantIds})} select coalesce(ae.access, 'rw') as access from stig_asset_map sa inner join enabled_asset a on sa.assetId = a.assetId ${grant.roleId === 1 ? 'inner' : 'left'} join cteAclEffective ae using (saId) where sa.assetId = ? and sa.benchmarkId = ?` const [rows] = await _this.pool.query(sql, binds) return rows[0]?.access ?? 'none' } /** * updateStatsAssetStig * @param {PoolConnection} connection * @param {Object} param1 * @param {string} param1.collectionId * @param {string} param1.assetId * @param {string} param1.benchmarkId * @param {string[]} param1.rules */ module.exports.updateStatsAssetStig = async function(connection, { collectionId, collectionIds, assetId, assetIds, assetBenchmarkIds, benchmarkId, benchmarkIds, rules, saIds }) { if (!connection) { throw new Error ('Connection required')} // Handle optional predicates, let predicates = ['sa.assetId IS NOT NULL AND sa.benchmarkId IS NOT NULL'] let binds = [] let whereClause = '' if (rules && rules.length > 0) { predicates.push(`sa.benchmarkId IN (SELECT DISTINCT benchmarkId from rev_group_rule_map left join revision using (revId) where ruleId IN ?)`) binds.push( [rules] ) } if (collectionId) { predicates.push('a.collectionId = ?') binds.push(collectionId) } if (collectionIds) { predicates.push('a.collectionId IN ?') binds.push([collectionIds]) } if (assetId) { predicates.push('a.assetId = ?') binds.push(assetId) } if (assetIds) { predicates.push('a.assetId IN ?') binds.push([assetIds]) } if (assetBenchmarkIds) { predicates.push(`a.assetId IN (select assetId from stig_asset_map where benchmarkId in ?)`) binds.push([assetBenchmarkIds]) } if (benchmarkId) { predicates.push('sa.benchmarkId = ?') binds.push(benchmarkId) } if (benchmarkIds) { predicates.push('sa.benchmarkId IN ?') binds.push([benchmarkIds]) } if (saIds) { predicates.push('sa.saId IN ?') binds.push([saIds]) } if (predicates.length > 0) { whereClause = `where ${predicates.join(' and ')}` } const sqlUpdate = ` with source as ( select sa.assetId, sa.benchmarkId, min(review.ts) as minTs, max(review.ts) as maxTs, max(review.touchTs) as maxTouchTs, sum(CASE WHEN review.statusId = 0 THEN 1 ELSE 0 END) as saved, sum(CASE WHEN review.resultEngine is not null and review.statusId = 0 THEN 1 ELSE 0 END) as savedResultEngine, sum(CASE WHEN review.statusId = 1 THEN 1 ELSE 0 END) as submitted, sum(CASE WHEN review.resultEngine is not null and review.statusId = 1 THEN 1 ELSE 0 END) as submittedResultEngine, sum(CASE WHEN review.statusId = 2 THEN 1 ELSE 0 END) as rejected, sum(CASE WHEN review.resultEngine is not null and review.statusId = 2 THEN 1 ELSE 0 END) as rejectedResultEngine, sum(CASE WHEN review.statusId = 3 THEN 1 ELSE 0 END) as accepted, sum(CASE WHEN review.resultEngine is not null and review.statusId = 3 THEN 1 ELSE 0 END) as acceptedResultEngine, sum(CASE WHEN review.resultId=4 and rgr.severity='high' THEN 1 ELSE 0 END) as highCount, sum(CASE WHEN review.resultId=4 and rgr.severity='medium' THEN 1 ELSE 0 END) as mediumCount, sum(CASE WHEN review.resultId=4 and rgr.severity='low' THEN 1 ELSE 0 END) as lowCount, sum(CASE WHEN (review.resultId in (2,3,4)) and rgr.severity='high' THEN 1 ELSE 0 END) as assessedHighCount, sum(CASE WHEN (review.resultId in (2,3,4)) and rgr.severity='medium' THEN 1 ELSE 0 END) as assessedMediumCount, sum(CASE WHEN (review.resultId in (2,3,4)) and rgr.severity='low' THEN 1 ELSE 0 END) as assessedLowCount, sum(CASE WHEN review.resultId = 1 THEN 1 ELSE 0 END) as notchecked, sum(CASE WHEN review.resultEngine is not null and review.resultId = 1 THEN 1 ELSE 0 END) as notcheckedResultEngine, sum(CASE WHEN review.resultId = 2 THEN 1 ELSE 0 END) as notapplicable, sum(CASE WHEN review.resultEngine is not null and review.resultId = 2 THEN 1 ELSE 0 END) as notapplicableResultEngine, sum(CASE WHEN review.resultId = 3 THEN 1 ELSE 0 END) as pass, sum(CASE WHEN review.resultEngine is not null and review.resultId = 3 THEN 1 ELSE 0 END) as passResultEngine, sum(CASE WHEN review.resultId = 4 THEN 1 ELSE 0 END) as fail, sum(CASE WHEN review.resultEngine is not null and review.resultId = 4 THEN 1 ELSE 0 END) as failResultEngine, sum(CASE WHEN review.resultId = 5 THEN 1 ELSE 0 END) as unknown, sum(CASE WHEN review.resultEngine is not null and review.resultId = 5 THEN 1 ELSE 0 END) as unknownResultEngine, sum(CASE WHEN review.resultId = 6 THEN 1 ELSE 0 END) as error, sum(CASE WHEN review.resultEngine is not null and review.resultId = 6 THEN 1 ELSE 0 END) as errorResultEngine, sum(CASE WHEN review.resultId = 7 THEN 1 ELSE 0 END) as notselected, sum(CASE WHEN review.resultEngine is not null and review.resultId = 7 THEN 1 ELSE 0 END) as notselectedResultEngine, sum(CASE WHEN review.resultId = 8 THEN 1 ELSE 0 END) as informational, sum(CASE WHEN review.resultEngine is not null and review.resultId = 8 THEN 1 ELSE 0 END) as informationalResultEngine, sum(CASE WHEN review.resultId = 9 THEN 1 ELSE 0 END) as fixed, sum(CASE WHEN review.resultEngine is not null and review.resultId = 9 THEN 1 ELSE 0 END) as fixedResultEngine from enabled_asset a inner join enabled_collection ec on a.collectionId = ec.collectionId left join stig_asset_map sa using (assetId) left join default_rev dr on (sa.benchmarkId = dr.benchmarkId and a.collectionId = dr.collectionId) left join rev_group_rule_map rgr on dr.revId = rgr.revId left join rule_version_check_digest rvcd on rgr.ruleId = rvcd.ruleId left join review on (rvcd.version=review.version and rvcd.checkDigest=review.checkDigest and review.assetId=sa.assetId) ${whereClause} group by sa.assetId, sa.benchmarkId ) update stig_asset_map sam inner join source on sam.assetId = source.assetId and source.benchmarkId = sam.benchmarkId set sam.minTs = source.minTs, sam.maxTs = source.maxTs, sam.maxTouchTs = source.maxTouchTs, sam.saved = source.saved, sam.savedResultEngine = source.savedResultEngine, sam.submitted = source.submitted, sam.submittedResultEngine = source.submittedResultEngine, sam.rejected = source.rejected, sam.rejectedResultEngine = source.rejectedResultEngine, sam.accepted = source.accepted, sam.acceptedResultEngine = source.acceptedResultEngine, sam.highCount = source.highCount, sam.mediumCount = source.mediumCount, sam.lowCount = source.lowCount, sam.assessedHighCount = source.assessedHighCount, sam.assessedMediumCount = source.assessedMediumCount, sam.assessedLowCount = source.assessedLowCount, sam.notchecked = source.notchecked, sam.notcheckedResultEngine = source.notcheckedResultEngine, sam.notapplicable = source.notapplicable, sam.notapplicableResultEngine = source.notapplicableResultEngine, sam.pass = source.pass, sam.passResultEngine = source.passResultEngine, sam.fail = source.fail, sam.failResultEngine = source.failResultEngine, sam.unknown = source.unknown, sam.unknownResultEngine = source.unknownResultEngine, sam.error = source.error, sam.errorResultEngine = source.errorResultEngine, sam.notselected = source.notselected, sam.notselectedResultEngine = source.notselectedResultEngine, sam.informational = source.informational, sam.informationalResultEngine = source.informationalResultEngine, sam.fixed = source.fixed, sam.fixedResultEngine = source.fixedResultEngine ` let stats [stats] = await connection.query(sqlUpdate, binds) return stats } module.exports.uuidToSqlString = function (uuid) { return { toSqlString: function () { return `UUID_TO_BIN(${mysql.escape(uuid)},1)` } } } module.exports.makeQueryString = function ({ctes = [], hints= [], columns, joins, predicates, groupBy, orderBy, format = false}) { if (joins instanceof Set) joins = Array.from(joins) if (groupBy instanceof Set) groupBy = Array.from(groupBy) const query = `${ctes.length ? 'WITH ' + ctes.join(', \n') : ''} SELECT ${hints.length ? '/*+ ' + hints.join(' ') + '*/' : ''} ${columns.join(',\n ')} FROM ${joins.join('\n ')} ${predicates?.statements.length ? 'WHERE\n ' + predicates.statements.join(' and\n ') : ''} ${groupBy?.length ? 'GROUP BY\n ' + groupBy.join(',\n ') : ''} ${orderBy?.length ? 'ORDER BY\n ' + orderBy.join(',\n ') : ''} ` return format? mysql.format(query, predicates.binds) : query } module.exports.CONTEXT_ALL = 'all' module.exports.CONTEXT_DEPT = 'department' module.exports.CONTEXT_USER = 'user' module.exports.REVIEW_RESULT_API = { 'notchecked': 1, 'notapplicable': 2, 'pass': 3, 'fail': 4, 'unknown': 5, 'error': 6, 'notselected': 7, 'informational': 8, 'fixed': 9 } module.exports.REVIEW_ACTION_API = { 'remediate': 1, 'mitigate': 2, 'exception': 3 } module.exports.REVIEW_STATUS_API = { 'saved': 0, 'submitted': 1, 'rejected': 2, 'accepted': 3 } module.exports.WRITE_ACTION = { CREATE: 0, REPLACE: 1, UPDATE: 2 } module.exports.retryOnDeadlock = async function (fn, statusObj = {}) { const retryFunction = async function (bail) { try { return await fn() } catch (e) { if (e.code === 'ER_LOCK_DEADLOCK') { throw(e) } bail(e) } } statusObj.retries = 0 return await retry(retryFunction, { retries: 15, factor: 1, minTimeout: 200, maxTimeout: 200, onRetry: () => { ++statusObj.retries } }) } module.exports.retryOnDeadlock2 = async function ({ transactionFn, statusObj = {}, beforeReleaseFn, afterRollbackFn}) { const connection = await _this.pool.getConnection() const retryFunction = async function (bail) { try { await connection.query('START TRANSACTION') const transactionReturn = await transactionFn(connection) await connection.commit() await connection.release() return transactionReturn } catch (e) { if (e.code === 'ER_LOCK_DEADLOCK') { throw(e) } await connection.rollback() afterRollbackFn?.(connection) beforeReleaseFn?.(connection) await connection.release() bail(e) } } statusObj.retries = 0 return await retry(retryFunction, { retries: 15, factor: 1, minTimeout: 200, maxTimeout: 200, onRetry: () => { ++statusObj.retries } }) // return returnValue } exports.createAssetValidation = async function({ assets, collectionId}) { const assetJson = JSON.stringify(assets) const validationQuery = ` WITH cteFails AS ( SELECT jt.positionA, jt.positionB, jt.positionL, jt.name, jt.benchmarkId, jt.labelName, a.name AS matchedName, s.benchmarkId AS matchedBenchmarkId, cl.clId AS matchedClId FROM JSON_TABLE(?, '$[*]' COLUMNS ( positionA FOR ORDINALITY, name VARCHAR(255) PATH '$.name', NESTED PATH '$.stigs[*]' COLUMNS (positionB FOR ORDINALITY, benchmarkId VARCHAR(255) PATH '$'), NESTED PATH '$.labelNames[*]' COLUMNS (positionL FOR ORDINALITY, labelName VARCHAR(255) PATH '$') ) ) AS jt LEFT JOIN enabled_asset a ON jt.name = a.name AND a.collectionId = ? LEFT JOIN stig s ON jt.benchmarkId COLLATE utf8mb4_0900_ai_ci = s.benchmarkId COLLATE utf8mb4_0900_ai_ci LEFT JOIN collection_label cl ON jt.labelName = cl.name AND cl.collectionId = ? ) SELECT 'name exists' AS failure, JSON_OBJECT('assetIndex', positionA, 'name', name) AS detail FROM cteFails WHERE name IS NOT NULL AND matchedName IS NOT NULL UNION SELECT 'unknown benchmarkId', JSON_OBJECT('assetIndex', positionA, 'name', name, 'benchmarkIdIndex', positionB, 'benchmarkId', benchmarkId) FROM cteFails WHERE benchmarkId IS NOT NULL AND matchedBenchmarkId IS NULL AND matchedName IS NULL UNION SELECT 'unknown labelName', JSON_OBJECT('assetIndex', positionA, 'name', name, 'labelIndex', positionL, 'labelName', labelName) FROM cteFails WHERE labelName IS NOT NULL AND matchedClId IS NULL AND matchedName IS NULL ` const [results] = await _this.pool.query(validationQuery, [assetJson, collectionId, collectionId]) return results } module.exports.pruneCollectionRevMap = async function (connection) { const sql = `delete crm from collection_rev_map crm left join( select distinct a.collectionId, sa.benchmarkId from stig_asset_map sa left join enabled_asset a using (assetId)) maps using (collectionId, benchmarkId) where maps.collectionId is null` await (connection ?? _this.pool).query(sql) } module.exports.updateDefaultRev = async function (connection, {collectionId, collectionIds, benchmarkId}) { const predicates = [] const binds = [] let whereClause = '' if (collectionId) { predicates.push(`collectionId = ?`) binds.push(collectionId) } if (collectionIds) { predicates.push(`collectionId IN ?`) binds.push([collectionIds]) } if (benchmarkId) { predicates.push(`benchmarkId = ?`) binds.push(benchmarkId) } if (predicates.length > 0) { whereClause = `where ${predicates.join(' and ')}` } const sqlDelete = `DELETE FROM default_rev ${whereClause}` const sqlInsert = `INSERT INTO default_rev(collectionId, benchmarkId, revId, revisionPinned) SELECT collectionId, benchmarkId, revId, revisionPinned FROM v_default_rev ${whereClause}` await (connection ?? _this.pool).query(sqlDelete, binds) await (connection ?? _this.pool).query(sqlInsert, binds) } module.exports.jsonArrayAggDistinct = function (valueStr) { return `cast(concat('[', group_concat(distinct ${valueStr}), ']') as json)` } module.exports.jsonArrayAgg = function ({value, orderBy = '', distinct = false}) { return `cast(concat('[', group_concat(${distinct ? 'distinct ' : ''}${value} ${orderBy ? `order by ${orderBy}` : ''}), ']') as json)` } module.exports.sqlGrantees = function ({collectionId, collectionIds, userId, username, nameMatch, includeColumnCollectionId = true, returnCte = false}) { const predicates = { statements: [], binds: [] } if (collectionId) { predicates.statements.push('cg.collectionId = ?') predicates.binds.push(collectionId) } if (collectionIds) { predicates.statements.push('cg.collectionId IN (?)') predicates.binds.push(collectionIds) } if (userId) { predicates.statements.push('ud.userId = ?') predicates.binds.push(userId) } if (username) { let matchStr = '= ?' if ( nameMatch && nameMatch !== 'exact') { matchStr = 'LIKE ?' switch (nameMatch) { case 'startsWith': username = `${username}%` break case 'endsWith': username = `%${username}` break case 'contains': username = `%${username}%` break } } predicates.statements.push(`ud.username ${matchStr}`) predicates.binds.push(username) } // final query will be a UNION of sqlDirectGrants and sqlGroupGrants const sqlDirectGrants = `select ${includeColumnCollectionId ? 'cg.collectionId,' : ''} cast(cg.userId as char) as userId, cg.roleId, json_array(json_object('userId', cast(ud.userId as char),'username', ud.username)) as grantees, json_array(cg.grantId) as grantIds from collection_grant cg inner join enabled_collection c on (cg.collectionId = c.collectionId) left join user_data ud on cg.userId = ud.userId where cg.userId is not null ${predicates.statements.length ? `and ${predicates.statements.join(' and ')}` : ''}` const sqlFormattedDirectGrants = mysql.format(sqlDirectGrants, predicates.binds) const sqlGroupGrants = `select ${includeColumnCollectionId ? 'collectionId,' : ''} userId, roleId, grantees, grantIds from (select ROW_NUMBER() OVER(PARTITION BY ugu.userId, cg.collectionId ORDER BY cg.roleId desc) as rn, ${includeColumnCollectionId ? 'cg.collectionId,' : ''} cast(ugu.userId as char) as userId, cg.roleId, json_arrayagg(json_object('userGroupId', cast(cg.userGroupId as char),'name', ug.name)) OVER (PARTITION BY ugu.userId, cg.collectionId, cg.roleId) as grantees, json_arrayagg(cg.grantId) OVER (PARTITION BY ugu.userId, cg.collectionId, cg.roleId) as grantIds from collection_grant cg inner join enabled_collection c on cg.collectionId = c.collectionId left join user_group_user_map ugu on cg.userGroupId = ugu.userGroupId left join user_group ug on ugu.userGroupId = ug.userGroupId left join user_data ud on ugu.userId = ud.userId left join collection_grant cgDirect on (cg.collectionId = cgDirect.collectionId and ugu.userId = cgDirect.userId) where cg.userGroupId is not null and cgDirect.userId is null ${predicates.statements.length ? `and ${predicates.statements.join(' and ')}` : ''} ) dt where dt.rn = 1` const sqlFormattedGroupGrants = mysql.format(sqlGroupGrants, predicates.binds) const sqlFormatted = `${sqlFormattedDirectGrants} union ${sqlFormattedGroupGrants}` return returnCte ? `cteGrantees as (${sqlFormatted})` : sqlFormatted } module.exports.cteAclEffective = function ({grantIds = [], includeColumnCollectionId = true, inClauseTable = 'cteGrantees', inClauseColumn = 'grantIds', inClauseUserId = ''}) { const inClause = grantIds.length ? '?' : `select jt.grantId from ${inClauseTable} left join json_table (${inClauseTable}.${inClauseColumn}, '$[*]' COLUMNS (grantId INT PATH '$')) jt on true${inClauseUserId ? ` where ${inClauseTable}.userId = ${inClauseUserId}` : ''}` const sql = `cteAclRules as (select${includeColumnCollectionId ? ' a.collectionId,' : ''} sa.saId, cga.access, case when cga.benchmarkId is not null then 1 else 0 end + case when cga.assetId is not null then 1 else 0 end + case when cga.assetId is not null and cga.benchmarkId is not null then 1 else 0 end + case when cga.clId is not null then 1 else 0 end as specificity from collection_grant_acl cga left join collection_grant cg on cga.grantId = cg.grantId left join collection_label_asset_map cla on cga.clId = cla.clId left join collection_label cl on cla.clId = cl.clId inner join stig_asset_map sa on ( case when cga.assetId is not null then cga.assetId = sa.assetId else true end and case when cga.benchmarkId is not null then cga.benchmarkId = sa.benchmarkId else true end and case when cga.clId is not null then cla.assetId = sa.assetId else true end) inner join enabled_asset a on sa.assetId = a.assetId and cg.collectionId = a.collectionId where cga.grantId in (${inClause}) ), cteAclRulesRanked as ( select /*+ NO_MERGE() */ ${includeColumnCollectionId ? ' collectionId,' : ''} saId, access, row_number() over (partition by saId order by specificity desc, access asc) as rn from cteAclRules), cteAclEffective as (select${includeColumnCollectionId ? ' collectionId,' : ''} saId, access from cteAclRulesRanked where rn = 1 and access != 'none')` const sqlFormatted = mysql.format(sql, [grantIds]) return sqlFormatted } module.exports.selectInvalidUserIds = async function (userIds) { const sql = `select jt.inUserId as userId,ud.status from JSON_TABLE(?,'$[*]' COLUMNS( inUserId INT PATH '$')) as jt left join user_data ud on jt.inUserId = ud.userId where ud.userId is null or ud.status='unavailable'` const [results] = await _this.pool.query(sql, [JSON.stringify(userIds)]) return results } ================================================ FILE: api/source/specification/log-socket.yaml ================================================ asyncapi: 3.0.0 info: title: Log Stream WebSocket API version: 1.0.0 description: | WebSocket API for streaming log messages with token-based authentication. Provides real-time log streaming after successful JWT token authorization. Stream Control: - Clients must send 'stream-start' command to begin receiving log messages - Clients can send 'stream-stop' command to stop receiving log messages - Only authorized clients can send stream control commands contact: name: STIG Manager Team license: name: MIT servers: development: host: localhost:64001 protocol: ws description: Development log stream server pathname: /socket/log-socket channels: logStream: address: /socket/log-socket messages: AuthorizeRequest: $ref: '#/components/messages/AuthorizeRequest' AuthorizeResponse: $ref: '#/components/messages/AuthorizeResponse' LogMessage: $ref: '#/components/messages/LogMessage' ErrorMessage: $ref: '#/components/messages/ErrorMessage' InfoMessage: $ref: '#/components/messages/InfoMessage' CloseMessage: $ref: '#/components/messages/CloseMessage' CommandMessage: $ref: '#/components/messages/CommandMessage' operations: receiveAuthorizeResponse: action: receive channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/AuthorizeResponse' description: Server receives authorization tokens from clients sendAuthorizeRequest: action: send channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/AuthorizeRequest' description: Server sends authorization prompts or token expiration notices sendLog: action: send channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/LogMessage' description: Server sends log messages to authorized clients after receiving stream-start command sendError: action: send channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/ErrorMessage' description: Server sends error messages sendInfo: action: send channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/InfoMessage' description: Server sends informational messages sendClose: action: send channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/CloseMessage' description: Server sends close notification before terminating connection receiveCommand: action: receive channel: $ref: '#/channels/logStream' messages: - $ref: '#/channels/logStream/messages/CommandMessage' description: Server receives stream control commands from authorized clients (stream-start, stream-stop) components: messages: AuthorizeRequest: name: authorize title: Authorization Request summary: Server requests authorization or notifies of token expiration payload: $ref: '#/components/schemas/AuthorizeRequestPayload' examples: - name: initialRequest payload: type: authorize data: null - name: tokenExpired payload: type: authorize data: "token expired" LogMessage: name: log title: Log Message summary: Server sends log data to authorized clients payload: $ref: '#/components/schemas/LogMessagePayload' examples: - name: transactionLog payload: type: log data: timestamp: "2025-09-03T10:30:00Z" level: 3 component: "rest" type: "transaction" message: "API request processed" ErrorMessage: name: error title: Error Message summary: Server sends error information payload: $ref: '#/components/schemas/ErrorMessagePayload' examples: - name: authError payload: type: error data: "Authorization failed: missing token" - name: unexpectedMessage payload: type: error data: "Unexpected message type" InfoMessage: name: info title: Info Message summary: Server sends informational messages payload: $ref: '#/components/schemas/InfoMessagePayload' examples: - name: authSuccess payload: type: info data: "Authorization successful" CloseMessage: name: close title: Close Message summary: Server notifies client before closing connection payload: $ref: '#/components/schemas/CloseMessagePayload' examples: - name: closing payload: type: close data: "Closing connection" CommandMessage: name: command title: Command Message summary: Client sends stream control commands to server description: | Clients can send the following commands to control log streaming: - `stream-start`: Begin receiving log messages (requires authorization). Optionally include filters to limit which logs are streamed. - `stream-stop`: Stop receiving log messages payload: $ref: '#/components/schemas/CommandMessagePayload' examples: - name: streamStart summary: Start log streaming payload: type: command data: command: "stream-start" - name: streamStartWithFilter summary: Start log streaming with filters payload: type: command data: command: "stream-start" filter: logLevels: [1, 2] components: ["rest"] - name: streamStop summary: Stop log streaming payload: type: command data: command: "stream-stop" AuthorizeResponse: name: authorize title: Authorization Response summary: Client sends JWT token for authorization payload: $ref: '#/components/schemas/AuthorizeResponsePayload' examples: - name: tokenAuth payload: type: authorize data: token: "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..." schemas: AuthorizeRequestPayload: type: object properties: type: const: authorize data: type: object description: Authorization state notice properties: state: type: string enum: ["unauthorized", "authorized"] reason: type: string description: Optional reason for unauthorized state (e.g., "token expired") required: - state additionalProperties: false AuthorizeResponsePayload: type: object properties: type: const: authorize data: type: object required: - token properties: token: type: string description: JWT token for authentication additionalProperties: false LogMessagePayload: type: object properties: type: const: log data: type: object description: Log entry object with timestamp, level, component, etc. additionalProperties: true ErrorMessagePayload: type: object properties: type: const: error data: type: string description: Error description InfoMessagePayload: type: object properties: type: const: info data: type: object description: Informational message CloseMessagePayload: type: object properties: type: const: close data: type: string description: Close reason CommandMessagePayload: type: object properties: type: const: command data: oneOf: - $ref: '#/components/schemas/StreamStartCommandData' - $ref: '#/components/schemas/StreamStopCommandData' StreamStartCommandData: type: object required: - command properties: command: const: "stream-start" description: Instructs the server to begin sending log messages to this client. Client must be authorized. filter: type: object description: Optional filter criteria. Only logs matching the filter will be sent. properties: level: type: array items: type: integer minimum: 1 maximum: 4 description: Array of log levels to include (e.g., [1, 2] for error and warn levels) uniqueItems: true component: type: array items: type: string description: Array of component names to include (e.g., ["rest", "auth"]) uniqueItems: true additionalProperties: false additionalProperties: false StreamStopCommandData: type: object required: - command properties: command: const: "stream-stop" description: Instructs the server to stop sending log messages to this client. additionalProperties: false ================================================ FILE: api/source/specification/stig-manager.yaml ================================================ openapi: 3.0.1 info: title: STIG Manager API description: An API for managing evaluations of Security Technical Implementation Guide (STIG) assessments. contact: name: STIG Manager OSS Project url: https://github.com/NUWCDIVNPT/stig-manager version: 'v1' servers: - url: 'http://localhost:64001/api' paths: /assets: get: tags: - Asset summary: Return a list of Assets accessible to the requester operationId: getAssets parameters: - $ref: '#/components/parameters/CollectionIdQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/NameQuery' - $ref: '#/components/parameters/NameMatchQuery' - $ref: '#/components/parameters/MetadataQuery' - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/AssetProjectionQuery' responses: '200': description: AssetProjected array response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Asset summary: Create an Asset operationId: createAsset parameters: - $ref: '#/components/parameters/AssetProjectionQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/AssetCreateOrReplace' responses: '201': description: AssetProjected response content: application/json: schema: $ref: '#/components/schemas/AssetProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' '422': description: Unprocessable Entity content: application/json: schema: $ref: '#/components/schemas/ClientErrorBadAssetPost' security: - oauth: - 'stig-manager:collection' patch: tags: - Asset summary: Delete one or more Assets operationId: patchAssets parameters: - $ref: '#/components/parameters/CollectionIdQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/AssetsPatchRequest' responses: '200': description: AssetsPatch response content: application/json: schema: $ref: '#/components/schemas/AssetsPatchResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}': parameters: - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/AssetProjectionQuery' get: tags: - Asset summary: Return an Asset operationId: getAsset responses: '200': description: AssetProjected response content: application/json: schema: $ref: '#/components/schemas/AssetProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Asset summary: Merge provided properties with an Asset operationId: updateAsset requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/AssetUpdate' responses: '200': description: AssetProjected response content: application/json: schema: $ref: '#/components/schemas/AssetProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' put: tags: - Asset summary: Set all properties of an Asset operationId: replaceAsset requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/AssetCreateOrReplace' responses: '200': description: AssetProjected response content: application/json: schema: $ref: '#/components/schemas/AssetProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Asset summary: Delete an Asset operationId: deleteAsset responses: '200': description: AssetProjected response content: application/json: schema: $ref: '#/components/schemas/AssetProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}/checklists': parameters: - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - name: format in: query description: The format of the response. schema: type: string default: ckl enum: - ckl - cklb get: tags: - Asset summary: Return a multi-STIG CKL for an Asset and its mapped STIGs operationId: getChecklistByAsset responses: '200': description: Review response content: application/xml: schema: $ref: '#/components/schemas/ChecklistCkl' application/json: schema: $ref: '#/components/schemas/ChecklistCklb' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}/checklists/{benchmarkId}/{revisionStr}': parameters: - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/BenchmarkIdPath' - $ref: '#/components/parameters/RevisionStrPath' get: tags: - Asset summary: Return JSON summary, or CKL(B) file, or XCCDF file for an Asset and STIG operationId: getChecklistByAssetStig parameters: - name: format in: query description: The format of the response. schema: type: string default: json enum: - json - json-access - ckl - cklb - xccdf - name: projection in: query description: Additional fields to include in JSON checklist responses. schema: type: array items: type: string enum: - rule - detail - comment style: form explode: true responses: '200': description: A JSON array of Checklist summary items or a CKL content: application/json: schema: oneOf: - $ref: '#/components/schemas/ChecklistAssetStig' - $ref: '#/components/schemas/ChecklistJsonAccess' - $ref: '#/components/schemas/ChecklistCklb' application/xml: schema: oneOf: - $ref: '#/components/schemas/ChecklistCkl' - $ref: '#/components/schemas/ChecklistXccdf' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}/metadata': parameters: - $ref: '#/components/parameters/AssetIdPath' get: tags: - Asset summary: Return the metadata for Asset operationId: getAssetMetadata responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Asset summary: Merge the provided object to a Assetmetadata operationId: patchAssetMetadata requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/Metadata' responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' put: tags: - Asset summary: Set a Asset metadata to the provided object operationId: putAssetMetadata requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/Metadata' responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}/metadata/keys': parameters: - $ref: '#/components/parameters/AssetIdPath' get: tags: - Asset summary: Return the keys of the provided Asset's metadata operationId: getAssetMetadataKeys responses: '200': description: MetadataKeys response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetadataKey' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/assets/{assetId}/metadata/keys/{key}': parameters: - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/MetadataKeyPath' get: tags: - Asset summary: Return the value of the provided Asset metadata key operationId: getAssetMetadataValue responses: '200': description: MetadataValue response content: application/json: schema: $ref: '#/components/schemas/MetadataValue' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Asset summary: Set the value of the provided Asset metadata key to the provided string operationId: putAssetMetadataValue requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/MetadataValue' responses: '204': description: Empty to avoid large response after putting key with large value default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Asset summary: Remove the provided Asset metadata key operationId: deleteAssetMetadataKey responses: '204': description: Empty to avoid large response after deleting key with large value default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}/stigs': parameters: - $ref: '#/components/parameters/AssetIdPath' get: tags: - Asset summary: Return an Asset's STIG assignments operationId: getStigsByAsset responses: '200': description: STIG array response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetStigResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' # put: # tags: # - Asset # summary: UNIMPLEMENTED Set all the STIG assignments of an Asset # operationId: attachStigsToAsset # requestBody: # required: true # content: # application/json: # schema: # type: array # minItems: 1 # items: # type: string # responses: # '200': # description: Asset response # content: # application/json: # schema: # $ref: '#/components/schemas/Asset' # default: # description: unexpected error # content: # application/json: # schema: # $ref: '#/components/schemas/Error' # security: # - oauth: # - 'stig-manager:collection' delete: tags: - Asset summary: Delete all STIG assignments to an Asset operationId: removeStigsFromAsset responses: '200': description: STIG array response content: application/json: schema: type: array items: $ref: '#/components/schemas/STIG' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/assets/{assetId}/stigs/{benchmarkId}': parameters: - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/BenchmarkIdPath' put: tags: - Asset summary: Assign a STIG to an Asset operationId: attachStigToAsset responses: '200': description: STIG array response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetStigResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Asset summary: Delete a STIG assignment to an Asset operationId: removeStigFromAsset responses: '200': description: STIG array response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetStigResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' /collections: parameters: - $ref: '#/components/parameters/ElevateQuery' get: tags: - Collection summary: Return a list of Collections accessible to the requester description: '' operationId: getCollections parameters: - $ref: '#/components/parameters/NameQuery' - $ref: '#/components/parameters/NameMatchQuery' - $ref: '#/components/parameters/MetadataQuery' - $ref: '#/components/parameters/CollectionsProjectionQuery' responses: '200': description: CollectionsProjected response content: application/json: schema: type: array items: $ref: '#/components/schemas/CollectionsProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Collection summary: Create a Collection description: | The `settings` property is optional and can be partially provided. - If `settings` is not provided, the Collection will be created with the default settings. The default settings are: ``` { fields: { detail: { enabled: 'always', required: 'always' }, comment: { enabled: 'findings', required: 'findings' } }, status: { canAccept: true, resetCriteria: 'result', minAcceptGrant: 3 }, history: { maxReviews: 5 } importOptions: { autoStatus: 'saved', unreviewed: 'commented', unreviewedCommented: 'informational', emptyDetail: 'replace', emptyComment: 'ignore', updateAssetProps: false, allowCustom: true } ``` operationId: createCollection parameters: - $ref: '#/components/parameters/CollectionProjectionQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/CollectionCreateOrReplace' responses: '201': description: CollectionProjected response content: application/json: schema: $ref: '#/components/schemas/CollectionProjected' '400': description: Client Error content: application/json: schema: $ref: '#/components/schemas/ClientErrorDuplicateCollection' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}': parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/CollectionProjectionQuery' get: tags: - Collection summary: Return a Collection description: '' operationId: getCollection responses: '200': description: CollectionProjected response content: application/json: schema: $ref: '#/components/schemas/CollectionProjected' '204': description: No Content default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Collection summary: Merge provided properties with a Collection operationId: updateCollection requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/CollectionUpdate' responses: '200': description: CollectionProjected response content: application/json: schema: $ref: '#/components/schemas/CollectionProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' put: tags: - Collection summary: Set all properties of a Collection description: | See the description of path `POST /collections` for notes about the `settings` property operationId: replaceCollection requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/CollectionCreateOrReplace' responses: '200': description: CollectionProjected response content: application/json: schema: $ref: '#/components/schemas/CollectionProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Collection summary: Delete a Collection operationId: deleteCollection responses: '200': description: CollectionProjected response content: application/json: schema: $ref: '#/components/schemas/CollectionProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/archive/ckl': post: tags: - Collection summary: Return a ZIP archive containing CKL files for the supplied Assets and STIGs operationId: postCklArchiveByCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/CklModeQuery' requestBody: required: true description: An array of '#/components/schemas/AssetStigSelection'. content: application/json: schema: type: array minItems: 1 uniqueItems: true items: $ref: '#/components/schemas/AssetStigSelection' responses: '200': description: ZIP file stream content: application/zip: schema: type: string format: binary default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/archive/cklb': post: tags: - Collection summary: Return a ZIP archive containing CKLB files for the supplied Assets and STIGs operationId: postCklbArchiveByCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/CklModeQuery' requestBody: required: true description: An array of '#/components/schemas/AssetStigSelection'. content: application/json: schema: type: array minItems: 1 uniqueItems: true items: $ref: '#/components/schemas/AssetStigSelection' responses: '200': description: ZIP file stream content: application/zip: schema: type: string format: binary default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/assets': parameters: - $ref: '#/components/parameters/CollectionIdPath' post: tags: - Asset - Collection summary: Create Multiple Assets operationId: createAssets parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetProjectionQuery' - $ref: '#/components/parameters/DryRunQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/AssetCreateBatch' responses: '200': description: Dry Run Failure content: application/json: schema: $ref: '#/components/schemas/ClientErrorBadAssetPost' '201': description: Array of AssetProjected responses content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetProjected' '204': description: Dry run successful. Validation passed, but no data was persisted. default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/archive/xccdf': post: tags: - Collection summary: Return a ZIP archive containing XCCDF results for the supplied Assets and STIGs operationId: postXccdfArchiveByCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' requestBody: required: true description: An array of '#/components/schemas/AssetStigSelection'. content: application/json: schema: type: array minItems: 1 items: $ref: '#/components/schemas/AssetStigSelection' responses: '200': description: ZIP file stream content: application/zip: schema: type: string format: binary default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/checklists/{benchmarkId}/{revisionStr}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdPath' - $ref: '#/components/parameters/RevisionStrPath' get: tags: - Collection summary: Return the Checklist for the supplied Collection and STIG operationId: getChecklistByCollectionStig responses: '200': description: ChecklistCollectionStig response content: application/json: schema: type: array items: $ref: '#/components/schemas/ChecklistCollectionStig' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/clone': post: tags: - Collection summary: Clone an existing Collection to a new Collection description: | Cloning large Collections can take several minutes! Users may see a performance impact when accessing the source Collection during this time.

Making changes to the source Collection while it is being cloned may lead to inconsistent results in the cloned Collection.

Before proceeding, it is recommended you warn Users that they refrain from modifying components of the source Collection while the cloning process is underway. operationId: cloneCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/CollectionProjectionQuery' requestBody: required: true description: CollectionClone request body content: application/json: schema: $ref: '#/components/schemas/CollectionCloneRequest' responses: '200': description: See the description for '#/components/schemas/CollectionCloneResponse' content: application/x-ndjson: schema: $ref: '#/components/schemas/CollectionCloneResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/export-to/{dstCollectionId}': post: tags: - Collection summary: Export reviews from a source Collection to a destination Collection description: | Exports reviews (result, detail and comment) from a `srcCollection` to a `dstCollection`, creating Assets in `dstCollection` if they do not exist. The `status` property of existing reviews in `dstCollection` are reset, if necessary, in accordance with the Collection settings. operationId: exportToCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/DstCollectionIdPath' requestBody: required: true description: An array of '#/components/schemas/AssetStigSelection'. The number of array items must conform to the minItems/maxItems properties content: application/json: schema: type: array minItems: 1 maxItems: 100 uniqueItems: true items: $ref: '#/components/schemas/AssetStigSelection' responses: '200': description: See the description for '#/components/schemas/CollectionExportToResponse' content: application/x-ndjson: schema: $ref: '#/components/schemas/CollectionExportToResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/findings': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/FindingAggregatorQuery' - name: acceptedOnly in: query schema: type: boolean default: false - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/AssetIdQuery' - $ref: '#/components/parameters/FindingProjectionQuery' get: tags: - Collection summary: Return the Findings for the specified Collection operationId: getFindingsByCollection responses: '200': description: CollectionFinding response content: application/json: schema: type: array items: $ref: '#/components/schemas/FindingProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/grants': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/ElevateQuery' get: tags: - Collection summary: Return all collection grants operationId: getGrantsByCollection responses: '200': description: Collection Grant array response content: application/json: schema: type: array items: $ref: '#/components/schemas/Grant' '403': $ref: '#/components/responses/Forbidden' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Collection summary: Add Grants to a Collection operationId: postGrantsByCollection requestBody: required: true content: application/json: schema: type: array items: $ref: '#/components/schemas/GrantPost' responses: '201': description: Collection grant array response content: application/json: schema: type: array items: $ref: '#/components/schemas/Grant' '403': $ref: '#/components/responses/Forbidden' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/grants/{grantId}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/GrantIdPath' - $ref: '#/components/parameters/ElevateQuery' get: tags: - Collection summary: Return a collection grant by grantId operationId: getGrantByCollectionGrant responses: '200': description: Collection StigAssetBasic array response content: application/json: schema: $ref: '#/components/schemas/Grant' '403': $ref: '#/components/responses/Forbidden' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Collection summary: Replace the properties of a Collection Grant by grantId. operationId: putGrantByCollectionGrant requestBody: required: true content: application/json: schema: oneOf: - $ref: '#/components/schemas/UserGrant' - $ref: '#/components/schemas/UserGroupGrant' responses: '200': description: Collection grant array response content: application/json: schema: $ref: '#/components/schemas/Grant' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Collection operationId: deleteGrantByCollectionGrant responses: '200': description: UserGrantEffective response content: application/json: schema: $ref: '#/components/schemas/Grant' '403': $ref: '#/components/responses/Forbidden' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/grants/{grantId}/acl': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/GrantIdPath' get: tags: - Collection summary: Return the Access Control List for the specified Collection Grant. operationId: getAclRulesByCollectionGrant responses: '200': description: Collection AclRuleAssetBasic array response content: application/json: schema: $ref: '#/components/schemas/AclForGrant' '403': $ref: '#/components/responses/Forbidden' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Collection summary: Set the Access Control List for the specified Collection Grant. operationId: putAclRulesByCollectionGrant requestBody: required: true content: application/json: schema: type: array items: $ref: '#/components/schemas/AclRulePut' responses: '200': description: AclRuleAssetBasic array response content: application/json: schema: $ref: '#/components/schemas/AclForGrant' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/reviews': get: tags: - Review summary: Return a list of Reviews accessible to the requester description: '' operationId: getReviewsByCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/ReviewRulesQuery' - $ref: '#/components/parameters/ReviewResultQuery' - $ref: '#/components/parameters/ReviewStatusQuery' - $ref: '#/components/parameters/RuleIdQuery' - $ref: '#/components/parameters/GroupIdQuery' - $ref: '#/components/parameters/CciQuery' - $ref: '#/components/parameters/UserIdQuery' - $ref: '#/components/parameters/AssetIdQuery' - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/MetadataQuery' - $ref: '#/components/parameters/ReviewsProjectionQuery' responses: '200': description: Review response content: application/json: schema: type: array items: $ref: '#/components/schemas/ReviewRead' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Review summary: Insert, update, or merge a complete or partial Review to multiple Assets and Rules description: | Applies a complete or partial Review to multiple target Asset/Rule pairs. Depending on the Review properties supplied, new Reviews may be created, existing Reviews may be updated, or both operations may occur (similar to an SQL merge). ## Caution **It is possible to send a request which will place the database under considerable load and take many seconds (or minutes) to complete. To determine if a request affects a large set of Reviews, clients are strongly encouraged to send a "preflight" request with the `dryRun` option enabled.** ## Request Validation The overall request is validated as follows: - conformance with the OAS schema for `ReviewBatch` - the requesting user has been granted access to the {collectionId} ## Request body **source** *(required)* The Review source is applied to the product of `assets` x `rules` (see below). It MUST contain at least one of the properties `result`, `detail`, `comment`, `resultEngine`, `metadata` or `status`. - Multiple properties can be specified. - a string value for the `status` property is normalized to `{ label: , text: null }` **assets** *(required)* The target Assets, which are specified as either: - an array of `assetId` - an array of `benchmarkId` where target Assets are calculated as the list of distinct Assets assigned at least one of the given STIGs, taking into account the requesting User's collection grant. **rules** *(required)* The target Rules, which are specified as either: - an array of `ruleId` - an array of `benchmarkId` where target Rules are calculated as the list of distinct Rules from all available revisions of the given STIGs. **action** *(optional)* Constrains the data action to be taken. If present, the value MUST be one of `insert`, `update`, or `merge`. - `insert`: only create new Reviews, do not update existing Reviews - `update`: only update existing Reviews, do not create new Reviews - `merge`: create new Reviews and update existing Reviews If not present, the default value is: - `merge` if the source Review includes `result` - `update` if the source Review does not include `result` New Reviews cannot be created when `source` does not include `result`. In that case, specifying either the `insert` or `merge` value is an error. **updateFilters** *(optional)* Limits the Reviews to be updated, based on an array of filtering objects. If present, updates are applied to Reviews from the product `assets` x `rules` that pass each of the filters (filters are combined with logical AND). If not present, updates are applied to each Review from the product `assets` x `rules`. Filtering objects specify a Review `field` , a `condition`, and a `value`. See the schema definition for further details. **dryRun** *(optional)* If present with a `true` value, performs all processing and validation logic without actually changing any data. Useful to verify what a given request would do and to reveal any validation errors. The default value is `false`. ## Review candidates Candidate Reviews are created by cross joining the source Review with the product of `assets` x `rules` and applying the resulting rows to existing Reviews (if any) in accordance with the Collection settings. **For updated Reviews** In general, an absent source Review property will retain existing values except as below. - an absent `status` property will either retain the existing value or update the `status` value to `{ label: "saved", text: "Review change triggered status update" }`, in accordance with the Collection `settings.status.resetCriteria`. - an absent `resultEngine` property will either retain the existing value or update the `resultEngine` value to `null`. If applying the source Review changes an existing `result`, the `resultEngine` value will be set to `null`. **For new Reviews** - an absent `detail` or `comment` property will set the candidate value to the empty string. - an absent `status` property will set the candidate value to `{ label: "saved", text: null }`. - an absent `resultEngine` property will set the candidate value to `null`. - an absent `metadata` property will set the candidate value to `{}` ## Candidate validation Each candidate Review is permitted or rejected as follows: - If the requesting user's collection grant is `restricted` AND the `ruleId` is not included in any version of any `benchmarkId` for which the requesting user been granted access, then **reject** the Review. - If `status.label` has value `saved`, then permit the Review. - If the Review would not be submittable according to the Collection settings, then **reject** the Review - If the value of `status.label` is `submitted`, then **permit** the Review. - If the value of `status.label` is `accepted` or `rejected` AND the Collection settings allow Reviews to be Accepted or Rejected, then **permit** the Review. - If `status.label` has value `accepted` or `rejected` AND the Collection settings prohibit Reviews from being Accepted or Rejected, then **reject** the Review. operationId: postReviewBatch parameters: - $ref: '#/components/parameters/CollectionIdPath' requestBody: content: application/json: schema: $ref: '#/components/schemas/ReviewBatch' responses: '200': description: ReviewBatchResponse response content: application/json: schema: oneOf: - $ref: '#/components/schemas/ReviewBatchResponse' - $ref: '#/components/schemas/ReviewBatchResponseDryRun' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/reviews/{assetId}': get: tags: - Review summary: Return a list of Reviews for an Asset operationId: getReviewsByAsset parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/ReviewRulesQuery' - $ref: '#/components/parameters/ReviewResultQuery' - $ref: '#/components/parameters/ReviewStatusQuery' - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/MetadataQuery' - $ref: '#/components/parameters/ReviewsProjectionQuery' responses: '200': description: ReviewAssetProjected response content: application/json: schema: type: array items: $ref: '#/components/schemas/ReviewAsset' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Review summary: Post one or more Reviews description: | The request body is an array that can contain both new and updated Reviews. All Reviews MUST contain the properties `ruleId`, `result`, `detail`, and `comment`. The overall request is validated as follows: - conformance with the OAS schema for `ReviewAssetPost` - the requesting user has been granted access to the {collectionId} **For all Reviews** - a string value for the `status` property will set the stored value to `{ label: , text: null }` - an absent `resultEngine` property will set the stored value to `null` **For updated Reviews** - a `null` value for either `detail` or `comment` will retain the existing value. - an absent `status` property will either retain the existing value or update the `status` value to `{ label: "saved", text: "Review change triggered status update" }`, in accordance with the Collection `settings.status.resetCriteria`. **For new Reviews** - a `null` value for either `detail` or `comment` will set the stored value to the empty string. - an absent `status` property will set the stored value to `{ label: "saved", text: null }`. **Each new or updated Review is permitted or rejected as follows:** - If the requesting user's collection grant is `restricted` AND the `ruleId` is not included in any version of any `benchmarkId` for which the requesting user been granted access, then **reject** the Review - If the optional property `status` is absent or `status.label` has value `saved`, then permit the Review - If the new or updated Review would not be submittable according to the Collection settings, then **reject** the Review - If the value of `status.label` is `submitted`, then **permit** the Review. - If the value of `status.label` is `accepted` or `rejected` AND the Collection settings allow Reviews to be Accepted or Rejected, then **permit** the Review. - If `status.label` has value `accepted` or `rejected` AND the Collection settings prohibit Reviews from being Accepted or Rejected, then **reject** the Review. operationId: postReviewsByAsset parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdPath' requestBody: content: application/json: schema: type: array minItems: 1 items: $ref: '#/components/schemas/ReviewAssetPost' responses: '200': description: ReviewPostResponse response content: application/json: schema: $ref: '#/components/schemas/ReviewPostResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/reviews/{assetId}/{ruleId}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/RuleIdPath' - $ref: '#/components/parameters/ReviewProjectionQuery' get: tags: - Review summary: Return the Review for an Asset and Rule operationId: getReviewByAssetRule responses: '200': description: ReviewAssetRuleRead response content: application/json: schema: $ref: '#/components/schemas/ReviewAssetRuleRead' '204': description: The requested resource has no content. default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Review summary: Merge the provided properties with an existing Review description: | The request MUST target an existing Review and the request body MUST contain one or more Review properties. The overall request is validated as follows: - the request body conforms with the OAS schema for `ReviewAssetRulePatch` - a request body that includes `resultEngine` must also include `result` - the requesting user has been granted access to the {collectionId} - a Review already exists for the {assetId} and {ruleId} A string value for the `status` property will set the stored value to `{ label: , text: null }`. If the request includes a `result`, then the `resultEngine` value will be set to `null` unless the request includes an explicit `resultEngine` value. An absent `status` property may still lead to the `status` value being updated to `{ label: "saved", text: "Review change triggered status update" }`, in accordance with the Collection `settings.status.resetCriteria`. Unlike the corresponding PUT endpoint, the `detail` and `comment` properties do not support `null` as a value. The request is permitted or rejected as follows: - If the requesting user's collection grant is `restricted` AND the `assetId` is not included in any user grant, then **reject** the Review - If the requesting user's collection grant is `restricted` AND the `ruleId` is not included in any version of any `benchmarkId` for which the user been granted access, then **reject** the Review - If the new or updated Review would not be submittable according to the Collection settings, then **reject** the Review - If the value of `status.label` is `submitted`, then **permit** the Review. - If the value of `status.label` is `accepted` or `rejected` AND the Collection settings allow Reviews to be Accepted or Rejected, then **permit** the Review. - If `status.label` has value `accepted` or `rejected` AND the Collection settings prohibit Reviews from being Accepted or Rejected, then **reject** the Review. operationId: patchReviewByAssetRule requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/ReviewAssetRulePatch' responses: '200': description: ReviewProjected response content: application/json: schema: $ref: '#/components/schemas/ReviewAssetRuleRead' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' put: tags: - Review summary: Set all properties of a Review description: | The request can target either a new or an existing Review. The request body MUST contain the Review properties `result`, `detail`, and `comment`. The overall request is validated as follows: - conformance with the OAS schema for `ReviewAssetRulePut` - the requesting user has been granted access to the {collectionId} **For all Reviews** - a string value for the `status` property will set the stored value to `{ label: , text: null }` - an absent `resultEngine` property will set the stored value to `resultEngine: null` **For updated Reviews** - a `null` value for either `detail` or `comment` will retain the existing value. - an absent `status` property will either retain or update the `status` value to `{ label: "saved", text: "Review change triggered status update" }`, in accordance with the Collection `settings.status.resetCriteria`. **For new Reviews** - a `null` value for either `detail` or `comment` will set the stored value to the empty string. - an absent `status` property will set the stored value to `{ label: "saved", text: null }`. The request is permitted or rejected as follows: - If the requesting user's collection grant is `restricted` AND the `assetId` is not included in any user grant, then **reject** the Review - If the requesting user's collection grant is `restricted` AND the `ruleId` is not included in any version of any `benchmarkId` for which the user been granted access, then **reject** the Review - If the new or updated Review would not be submittable according to the Collection settings, then **reject** the Review - If the value of `status.label` is `submitted`, then **permit** the Review. - If the value of `status.label` is `accepted` or `rejected` AND the Collection settings allow Reviews to be Accepted or Rejected, then **permit** the Review. - If `status.label` has value `accepted` or `rejected` AND the Collection settings prohibit Reviews from being Accepted or Rejected, then **reject** the Review. operationId: putReviewByAssetRule requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/ReviewAssetRulePut' responses: '200': description: ReviewProjected response content: application/json: schema: $ref: '#/components/schemas/ReviewAssetRuleRead' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Review summary: Delete a Review operationId: deleteReviewByAssetRule # parameters: responses: '200': description: ReviewProjected response content: application/json: schema: $ref: '#/components/schemas/ReviewAssetRuleRead' '204': description: No Content default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/reviews/{assetId}/{ruleId}/metadata': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/RuleIdPath' get: tags: - Review summary: Return the metadata for Review operationId: getReviewMetadata responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Review summary: Merge the provided object to a Review metadata operationId: patchReviewMetadata requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/Metadata' responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' put: tags: - Review summary: Set a Review metadata to the provided object operationId: putReviewMetadata requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/Metadata' responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/reviews/{assetId}/{ruleId}/metadata/keys': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/RuleIdPath' get: tags: - Review summary: Return the keys of the provided Review's metadata operationId: getReviewMetadataKeys responses: '200': description: MetadataKeys response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetadataKey' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/reviews/{assetId}/{ruleId}/metadata/keys/{key}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdPath' - $ref: '#/components/parameters/RuleIdPath' - $ref: '#/components/parameters/MetadataKeyPath' get: tags: - Review summary: Return the value of the provided Review metadata key operationId: getReviewMetadataValue responses: '200': description: MetadataValue response content: application/json: schema: $ref: '#/components/schemas/MetadataValue' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Review summary: Set the value of the provided Review metadata key to the provided string operationId: putReviewMetadataValue requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/MetadataValue' responses: '204': description: Empty to avoid large response after putting key with large value default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Review summary: Remove the provided Review metadata key operationId: deleteReviewMetadataKey responses: '204': description: Empty to avoid large response after deleting key with large value default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/labels': get: tags: - Collection summary: Return labels of the specified Collection operationId: getCollectionLabels parameters: - $ref: '#/components/parameters/CollectionIdPath' responses: 200: description: Labels response content: application/json: schema: type: array items: $ref: '#/components/schemas/Label' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Collection summary: Create a label in the specified Collection operationId: createCollectionLabel parameters: - $ref: '#/components/parameters/CollectionIdPath' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/LabelCreate' responses: 201: description: Label response content: application/json: schema: $ref: '#/components/schemas/Label' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/labels/batch': parameters: - $ref: '#/components/parameters/CollectionIdPath' post: tags: - Collection summary: Create multiple labels in the specified Collection operationId: createCollectionLabels requestBody: required: true content: application/json: schema: type: array minItems: 1 items: $ref: '#/components/schemas/LabelCreate' responses: 201: description: Labels response content: application/json: schema: type: array items: $ref: '#/components/schemas/Label' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/labels/{labelId}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/LabelIdPath' get: tags: - Collection summary: Return the specified Label of the specified Collection operationId: getCollectionLabelById responses: 200: description: Labels response content: application/json: schema: $ref: '#/components/schemas/Label' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Collection summary: Update an existing Label operationId: patchCollectionLabelById requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/LabelUpdate' responses: '200': description: Label response content: application/json: schema: $ref: '#/components/schemas/Label' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Collection summary: Delete a Label operationId: deleteCollectionLabelById responses: '204': description: No Content default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/labels/{labelId}/assets': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/LabelIdPath' get: tags: - Collection - Asset summary: Return the Assets mapped to the Label operationId: getAssetsByCollectionLabelId responses: '200': description: Asset response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetBasic' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Collection - Asset summary: Replace the Label's Asset mappings operationId: putAssetsByCollectionLabelId requestBody: required: true content: application/json: schema: type: array items: $ref: '#/components/schemas/String255' responses: '200': description: The Label's Asset mappings content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetBasic' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/metadata': parameters: - $ref: '#/components/parameters/CollectionIdPath' get: tags: - Collection summary: Return the metadata for Collection operationId: getCollectionMetadata responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' patch: tags: - Collection summary: Merge the provided object to a Collection metadata operationId: patchCollectionMetadata requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/Metadata' responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' put: tags: - Collection summary: Set a Collection metadata to the provided object operationId: putCollectionMetadata requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/Metadata' responses: '200': description: Metadata response content: application/json: schema: $ref: '#/components/schemas/Metadata' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/metadata/keys': parameters: - $ref: '#/components/parameters/CollectionIdPath' get: tags: - Collection summary: Return the keys of the provided Collection metadata operationId: getCollectionMetadataKeys responses: '200': description: MetadataKeys response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetadataKey' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metadata/keys/{key}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/MetadataKeyPath' get: tags: - Collection summary: Return the value of the provided Collection metadata key operationId: getCollectionMetadataValue responses: '200': description: MetadataValue response content: application/json: schema: $ref: '#/components/schemas/MetadataValue' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Collection summary: Set the value of the provided Collection metadata key to the provided string operationId: putCollectionMetadataValue requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/MetadataValue' responses: '204': description: Empty to avoid large response after putting key with large value default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' delete: tags: - Collection summary: Remove the provided Collection metadata key operationId: deleteCollectionMetadataKey responses: '204': description: Empty to avoid large response after deleting key with large value default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/metrics/detail': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return unaggregated Asset/STIG metrics for the specified Collection operationId: getMetricsDetailByCollection responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsDetailUnagg' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/detail/asset': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return metrics for the specified Collection aggregated by Asset operationId: getMetricsDetailByCollectionAggAsset responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsDetailAggAsset' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/detail/collection': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return aggregated metrics for the specified Collection operationId: getMetricsDetailByCollectionAgg responses: '200': description: Metrics response content: application/json: schema: $ref: '#/components/schemas/MetricsDetailAggCollection' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/detail/label': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return metrics for the specified Collection aggregated by Label operationId: getMetricsDetailByCollectionAggLabel responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsDetailAggLabel' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/detail/stig': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return metrics for the specified Collection aggregated by STIG operationId: getMetricsDetailByCollectionAggStig responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsDetailAggStig' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/summary': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return unaggregated Asset/STIG metrics for the specified Collection operationId: getMetricsSummaryByCollection responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsSummaryUnagg' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/summary/asset': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return metrics for the specified Collection aggregated by Asset operationId: getMetricsSummaryByCollectionAggAsset responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsSummaryAggAsset' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/summary/collection': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return aggregated metrics for the specified Collection operationId: getMetricsSummaryByCollectionAgg responses: '200': description: Metrics response content: application/json: schema: $ref: '#/components/schemas/MetricsSummaryAggCollection' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/summary/label': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return metrics for the specified Collection aggregated by Label operationId: getMetricsSummaryByCollectionAggLabel responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsSummaryAggLabel' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/metrics/summary/stig': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/AssetIdArrayQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return metrics for the specified Collection aggregated by STIG operationId: getMetricsSummaryByCollectionAggStig responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsSummaryAggStig' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/poam': get: tags: - Collection summary: Return a POAM-like spreadsheet for the specified Collection aggregated by groupId operationId: getPoamByCollection parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/PoamAggregatorQuery' - name: acceptedOnly in: query schema: type: boolean default: false - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/AssetIdQuery' - name: date description: Value for columns Scheduled Completion Date, Milestone With Completion Dates, Milestone Changes in: query schema: type: string pattern: '^(0[1-9]|1[0-2])/(0[1-9]|[12][0-9]|3[01])/\d{4}$' - name: office description: Value for column Office/Org in: query schema: type: string maxLength: 255 allowReserved: true - name: status description: Value for column Status in: query schema: type: string maxLength: 255 allowReserved: true - $ref: '#/components/parameters/PoamFormatQuery' - name: mccastPackageId description: Value for POAM MCCAST PackageId in: query schema: type: string maxLength: 255 allowReserved: true - name: mccastAuthName description: Value for POAM MCCAST Authorization Name in: query schema: type: string maxLength: 255 allowReserved: true responses: '200': description: CollectionFinding response content: application/vnd.openxmlformats-officedocument.spreadsheetml.sheet: schema: type: string format: binary default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/review-history': parameters: - $ref: '#/components/parameters/CollectionIdPath' get: tags: - Collection summary: Return history records for the specified Collection that meet the specified criteria operationId: getReviewHistoryByCollection parameters: - $ref: '#/components/parameters/StartDateQuery' # Lower bound (earliest date) of returned history entry timestamps - $ref: '#/components/parameters/EndDateQuery' # Upper bound (latest date) of returned history entry timestamps - $ref: '#/components/parameters/AssetIdQuery' # return review history entries for just the specified assetId, if provided. - $ref: '#/components/parameters/RuleIdQuery' # return review history entries for just the specified RuleId, if provided. - $ref: '#/components/parameters/ReviewStatusQuery' # return review history entries with the specified status responses: '200': description: ReviewHistory response content: application/json: schema: type: array items: $ref: '#/components/schemas/ReviewHistoryAsset' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' delete: tags: - Collection summary: Remove history records that meet specified criteria operationId: deleteReviewHistoryByCollection parameters: - $ref: '#/components/parameters/RetentionDateQuery' # Review History Entries older than this date will be deleted. - $ref: '#/components/parameters/AssetIdQuery' # Apply operation to just the specified assetId, if provided. responses: '200': description: Number of history records deleted. content: application/json: schema: $ref: '#/components/schemas/ReviewHistoryDeleted' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/review-history/stats': parameters: - $ref: '#/components/parameters/CollectionIdPath' get: tags: - Collection summary: Return history statistics for the specified Collection operationId: getReviewHistoryStatsByCollection parameters: - $ref: '#/components/parameters/StartDateQuery' # Lower bound (earliest date) of returned history entry count - $ref: '#/components/parameters/EndDateQuery' # Upper bound (latest date) of returned history entry count - $ref: '#/components/parameters/AssetIdQuery' # return review history stats for just the specified assetId, if provided. - $ref: '#/components/parameters/RuleIdQuery' # return review history stats for just the specified RuleId, if provided. - $ref: '#/components/parameters/ReviewStatusQuery' # return review history stats with the specified status - $ref: '#/components/parameters/ReviewHistoryStatsProjectionQuery' responses: '200': description: ReviewHistoryStats response content: application/json: schema: $ref: '#/components/schemas/ReviewHistoryStats' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/stigs': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' - $ref: '#/components/parameters/CollectionStigProjectionQuery' get: tags: - Collection summary: Return the STIGs mapped in the specified Collection operationId: getStigsByCollection responses: '200': description: Collection STIGs array response content: application/json: schema: type: array items: $ref: '#/components/schemas/CollectionStigWithAssetCount' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/stigs/{benchmarkId}': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdPath' - $ref: '#/components/parameters/CollectionStigProjectionQuery' get: tags: - Collection summary: Return the STIG mapped in the specified Collection operationId: getStigByCollection responses: '200': description: Collection STIGs array response content: application/json: schema: $ref: '#/components/schemas/CollectionStigWithAssetCount' '204': description: No content because STIG is not assigned default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' post: tags: - Collection summary: Set the default Revision and/or the Asset list of a STIG in a Collection description: | Neither of the request body properties is required but at least one must be present. If the path parameter `{benchmarkId}` is not already mapped to at least one Asset in `{collectionId}`, then the `assetIds` property must be present. operationId: writeStigPropsByCollectionStig requestBody: required: true content: application/json: schema: type: object additionalProperties: false minProperties: 1 properties: defaultRevisionStr: $ref: '#/components/schemas/RevisionStr' assetIds: type: array items: $ref: '#/components/schemas/StringIntId' responses: '200': description: Default Revision response content: application/json: schema: $ref: '#/components/schemas/CollectionStigWithAssetCount' '204': description: No content because STIG is not assigned default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/stigs/{benchmarkId}/assets': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/BenchmarkIdPath' get: tags: - Asset - Collection summary: Get the Assets in a Collection attached to a STIG description: '' operationId: getAssetsByStig parameters: - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/LabelMatchQuery' responses: '200': description: AssetBasicProjected response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetBasicProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' put: tags: - Asset - Collection summary: Set the Assets mapped to a STIG description: '' operationId: attachAssetsToStig requestBody: required: true description: A list of assetIds from the specified Collection content: application/json: schema: type: array items: type: string responses: '200': description: AssetBasicProjected response content: application/json: schema: type: array items: $ref: '#/components/schemas/AssetBasicProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection' '/collections/{collectionId}/unreviewed/assets': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/AssetIdQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/RuleSeverityQuery' - $ref: '#/components/parameters/UnreviewedAssetsProjectionQuery' get: tags: - Collection summary: EXPERIMENTAL - Return the Assets in the specified Collection with unreviewed Rules operationId: getUnreviewedAssetsByCollection responses: '200': description: UnreviewedAsset response content: application/json: schema: type: array items: $ref: '#/components/schemas/UnreviewedAsset' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/unreviewed/rules': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/RuleIdQuery' - $ref: '#/components/parameters/LabelIdQuery' - $ref: '#/components/parameters/LabelNameQuery' - $ref: '#/components/parameters/BenchmarkIdQuery' - $ref: '#/components/parameters/RuleSeverityQuery' - $ref: '#/components/parameters/UnreviewedRulesProjectionQuery' get: tags: - Collection summary: EXPERIMENTAL - Return the Rules in the specified Collection with unreviewed Assets operationId: getUnreviewedRulesByCollection responses: '200': description: UnreviewedRules response content: application/json: schema: type: array items: $ref: '#/components/schemas/UnreviewedRule' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/{collectionId}/users/{userId}/effective-acl': parameters: - $ref: '#/components/parameters/CollectionIdPath' - $ref: '#/components/parameters/UserIdPath' get: tags: - Collection summary: Return a User's effective access rules for the specified Collection. operationId: getEffectiveAclByCollectionUser responses: '200': description: EffectiveAcl array response content: application/json: schema: type: array items: $ref: '#/components/schemas/EffectiveAcl' '403': $ref: '#/components/responses/Forbidden' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/meta/metrics/detail': parameters: - $ref: '#/components/parameters/CollectionIdArrayQuery' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return fully aggregated meta-metrics operationId: getMetricsDetailByMeta responses: '200': description: Metrics response content: application/json: schema: $ref: '#/components/schemas/MetricsDetailAggMeta' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/meta/metrics/detail/collection': parameters: - $ref: '#/components/parameters/CollectionIdArrayQuery' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/RevisionIdArrayQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return meta-metrics aggregated by Collection operationId: getMetricsDetailByMetaAggCollection responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsDetailAggCollection' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/meta/metrics/detail/stig': parameters: - $ref: '#/components/parameters/CollectionIdArrayQuery' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return meta-metrics aggregated by STIG operationId: getMetricsDetailByMetaAggStig responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsDetailAggStig' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/meta/metrics/summary': parameters: - $ref: '#/components/parameters/CollectionIdArrayQuery' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return fully aggregated meta-metrics operationId: getMetricsSummaryByMeta responses: '200': description: Metrics response content: application/json: schema: $ref: '#/components/schemas/MetricsSummaryAggMeta' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/meta/metrics/summary/collection': parameters: - $ref: '#/components/parameters/CollectionIdArrayQuery' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/RevisionIdArrayQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return meta-metrics aggregated by Collection operationId: getMetricsSummaryByMetaAggCollection responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsSummaryAggCollection' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' '/collections/meta/metrics/summary/stig': parameters: - $ref: '#/components/parameters/CollectionIdArrayQuery' - $ref: '#/components/parameters/BenchmarkIdArrayQuery' - $ref: '#/components/parameters/MetricsFormatQuery' get: tags: - Metrics summary: Return meta-metrics aggregated by STIG operationId: getMetricsSummaryByMetaAggStig responses: '200': description: Metrics response content: application/json: schema: type: array items: $ref: '#/components/schemas/MetricsSummaryAggStig' text/csv: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:collection:read' /jobs: get: summary: List jobs tags: - Job operationId: getJobs parameters: - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: List of jobs content: application/json: schema: type: array items: $ref: '#/components/schemas/Job' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read x-elevation-required: true post: summary: Create a new job tags: - Job operationId: postJob parameters: - $ref: '#/components/parameters/ElevateQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/JobCreate' responses: '201': description: Job created content: application/json: schema: $ref: '#/components/schemas/Job' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op x-elevation-required: true /jobs/{jobId}: get: summary: Get job by ID tags: - Job operationId: getJob parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobIdPath' responses: '200': description: Job details content: application/json: schema: $ref: '#/components/schemas/Job' 'default': description: Job not found content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read x-elevation-required: true delete: summary: Delete job by ID tags: - Job operationId: deleteJob parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobIdPath' responses: '204': description: Job deleted 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op x-elevation-required: true patch: summary: Update job by ID tags: - Job operationId: patchJob parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobIdPath' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/JobUpdate' responses: '200': description: Job updated content: application/json: schema: $ref: '#/components/schemas/Job' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op x-elevation-required: true /jobs/{jobId}/runs: get: summary: List the job runs tags: - Job operationId: getRunsByJob parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobIdPath' responses: '200': description: List of job runs content: application/json: schema: type: array items: $ref: '#/components/schemas/JobRun' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read x-elevation-required: true post: summary: Start an immediate job run tags: - Job operationId: runImmediateJob parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobIdPath' responses: '201': description: Job run created content: application/json: schema: $ref: '#/components/schemas/JobRunCreated' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op x-elevation-required: true /jobs/runs/{runId}: get: summary: Get a job run by ID tags: - Job operationId: getRunById parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobRunIdPath' responses: '200': description: Job run details content: application/json: schema: $ref: '#/components/schemas/JobRun' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read x-elevation-required: true delete: summary: Delete a job run by ID tags: - Job operationId: deleteRunById parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobRunIdPath' responses: '204': description: Job run deleted 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op x-elevation-required: true /jobs/runs/{runId}/output: get: summary: Get the output for a job run tags: - Job operationId: getOutputByRun parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/JobRunIdPath' - $ref: '#/components/parameters/RunSequenceQuery' responses: '200': description: Job run output content: application/json: schema: type: array items: $ref: '#/components/schemas/JobRunOutput' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read x-elevation-required: true /jobs/tasks: get: summary: List all tasks tags: - Job operationId: getAllTasks parameters: - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: List of tasks content: application/json: schema: type: array items: $ref: '#/components/schemas/JobTask' 'default': description: error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read x-elevation-required: true /op/appdata: get: tags: - Operation summary: Export application data operationId: getAppData parameters: - $ref: '#/components/parameters/AppDataFormatQuery' - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: Exported data content: application/jsonl: schema: type: string application/gzip: schema: type: string format: binary default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read post: tags: - Operation summary: Import and overwrite application data operationId: replaceAppData parameters: - $ref: '#/components/parameters/ElevateQuery' requestBody: required: false content: application/gzip: schema: type: string format: binary application/x-gzip: schema: type: string format: binary application/jsonl: schema: type: string format: binary responses: '200': description: Import successful content: application/jsonl: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op /op/appdata/tables: get: tags: - Operation summary: Get the name and data length of each table operationId: getAppDataTables parameters: - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: An array of table names and lengths content: application/json: schema: type: array items: $ref: '#/components/schemas/AppDataTable' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - stig-manager:op:read /op/appinfo: get: tags: - Operation summary: Return information about the application deployment operationId: getAppInfo parameters: - $ref: '#/components/parameters/ElevateQuery' - name: includeRowCounts in: query description: Include exact row counts for each table (slower) or use estimated counts (faster) schema: type: boolean default: false responses: '200': description: AppInfo response content: application/json: schema: $ref: '#/components/schemas/AppInfo' security: - oauth: - stig-manager:op:read /op/configuration: get: tags: - Operation summary: Return API version and configuration information operationId: getConfiguration security: [] responses: '200': description: Configuration response content: application/json: schema: $ref: '#/components/schemas/ApiConfiguration' /op/definition: get: tags: - Operation summary: Return the API definition operationId: getDefinition security: [] parameters: - $ref: '#/components/parameters/JsonPathQuery' responses: '200': description: Definition response content: application/json: schema: $ref: '#/components/schemas/ApiDefinition' /op/details: get: tags: - Operation summary: "DEPRECATED: replaced by /op/appinfo" operationId: getDetails parameters: - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: Detail response content: application/json: schema: $ref: '#/components/schemas/Detail' security: - oauth: - stig-manager:op:read /op/state: get: tags: - Operation summary: Return information about the API state operationId: getState responses: '200': description: Detail response content: application/json: schema: $ref: '#/components/schemas/StateResponse' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' /op/state/sse: get: tags: - Operation operationId: streamStateSse summary: Stream Server-Sent Events (SSE) about changes to the current API state description: > Opens a one-way stream using SSE. The response is a continuous stream of events in `text/event-stream` format. responses: '200': description: Stream of events content: text/event-stream: schema: type: string default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' /stigs: get: tags: - STIG summary: Return a list of available STIGs operationId: getSTIGs parameters: - name: title in: query description: A string found anywhere in a STIG title schema: type: string - $ref: '#/components/parameters/StigProjectionQuery' - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: STIG response content: application/json: schema: type: array items: $ref: '#/components/schemas/STIG' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' post: tags: - STIG summary: Import a STIG Benchmark operationId: importBenchmark parameters: - name: clobber in: query description: Should existing Revision data be overwritten schema: type: boolean default: false - $ref: '#/components/parameters/ElevateQuery' requestBody: required: true content: multipart/form-data: schema: type: object properties: importFile: type: string format: binary responses: '200': description: The added STIG content: application/json: schema: $ref: '#/components/schemas/RevisionPost' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig' '/stigs/ccis/{cci}': get: tags: - STIG summary: Return data for the specified CCI operationId: getCci parameters: - $ref: '#/components/parameters/CciProjectionQuery' - name: cci in: path description: A path parameter that identifies a CCI required: true schema: pattern: ^[0-9]{6}$ type: string responses: '200': description: CCI response content: application/json: schema: $ref: '#/components/schemas/Cci' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/rules/{ruleId}': get: tags: - STIG summary: Return the definition and associated check and fix for the specified Rule description: | Note: A very small number of edge cases are known to exist where published STIGs have updated Rule Content without updating the associated RuleId. In these cases, it is possible this endpoint may return inconsistent Rule info. If you need specific Rule information for a given STIG Revision, use the `/stigs/{benchmarkId}/revisions/{revisionStr}/rules/{ruleId}` endpoint. operationId: getRuleByRuleId parameters: - $ref: '#/components/parameters/RuleProjectionQuery' - name: ruleId in: path description: A path parameter that identifies a Rule required: true schema: type: string responses: '200': description: Rule response content: application/json: schema: $ref: '#/components/schemas/RuleProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/scap-maps': get: tags: - STIG summary: Return a list of SCAP benchmarkIds mapped to Manual benchmarkIds operationId: getScapMap responses: '200': description: SCAP Map response content: application/json: schema: type: array items: $ref: '#/components/schemas/SCAPMap' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/{benchmarkId}': get: tags: - STIG summary: Return properties of the specified STIG operationId: getStigById parameters: - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: STIG response content: application/json: schema: $ref: '#/components/schemas/STIG' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' delete: tags: - STIG summary: Deletes a STIG (*** and all revisions ***) operationId: deleteStigById parameters: - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/ForceQuery' responses: '200': description: The deleted STIG content: application/json: schema: $ref: '#/components/schemas/STIG' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig' x-rbac: - admin '/stigs/{benchmarkId}/revisions': get: tags: - STIG summary: Return a list of revisions for the specified STIG operationId: getRevisionsByBenchmarkId parameters: - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: Revision response content: application/json: schema: type: array items: $ref: '#/components/schemas/Revision' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/{benchmarkId}/revisions/{revisionStr}': get: tags: - STIG summary: Return metadata for the specified revision of a STIG operationId: getRevisionByString parameters: - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?|latest)$ type: string - $ref: '#/components/parameters/ElevateQuery' responses: '200': description: Revision response content: application/json: schema: $ref: '#/components/schemas/Revision' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' delete: tags: - STIG summary: Deletes the specified revision of a STIG operationId: deleteRevisionByString parameters: - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?)$ type: string - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/ForceQuery' responses: '200': description: The deleted Revision content: application/json: schema: $ref: '#/components/schemas/Revision' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig' x-rbac: - admin '/stigs/{benchmarkId}/revisions/{revisionStr}/ccis': get: tags: - STIG summary: Return a list of CCIs from a STIG revision operationId: getCcisByRevision parameters: - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?|latest)$ type: string responses: '200': description: CCI response content: application/json: schema: type: array items: $ref: '#/components/schemas/CciListItem' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/{benchmarkId}/revisions/{revisionStr}/groups': get: tags: - STIG summary: Return the list of groups for the specified revision of a STIG. operationId: getGroupsByRevision parameters: - $ref: '#/components/parameters/GroupProjectionQuery' - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?|latest)$ type: string responses: '200': description: GroupProjected response content: application/json: schema: type: array items: $ref: '#/components/schemas/GroupProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/{benchmarkId}/revisions/{revisionStr}/groups/{groupId}': get: tags: - STIG summary: Return the rules, checks and fixes for a Group from a specified revision of a STIG. description: None operationId: getGroupByRevision parameters: - $ref: '#/components/parameters/GroupProjectionQuery' - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?|latest)$ type: string - name: groupId in: path description: A path parameter that identifies a Group required: true schema: type: string responses: '200': description: Group response content: application/json: schema: $ref: '#/components/schemas/GroupProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/{benchmarkId}/revisions/{revisionStr}/rules': get: tags: - STIG summary: Return rule data for the specified revision of a STIG. operationId: getRulesByRevision parameters: - $ref: '#/components/parameters/RuleProjectionQuery' - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?|latest)$ type: string responses: '200': description: Rule response content: application/json: schema: type: array items: $ref: '#/components/schemas/RuleProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' '/stigs/{benchmarkId}/revisions/{revisionStr}/rules/{ruleId}': get: tags: - STIG summary: Return rule data for the specified Rule in a revision of a STIG. operationId: getRuleByRevision parameters: - $ref: '#/components/parameters/RuleProjectionQuery' - name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: type: string - name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: pattern: ^(V\d+R\d+(\.\d+)?|latest)$ type: string - name: ruleId in: path description: A path parameter that identifies a Rule required: true schema: type: string responses: '200': description: RuleProjected response content: application/json: schema: $ref: '#/components/schemas/RuleProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:stig:read' /user: parameters: - $ref: '#/components/parameters/UserPreferenceQuery' get: tags: - User summary: Return the requester's user information operationId: getUser responses: '200': description: User response content: application/json: schema: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user:read' /user/web-preferences: get: tags: - User summary: Return the requester's web-preferences operationId: getUserWebPreferences responses: '200': description: User Web Preferences response content: application/json: schema: $ref: '#/components/schemas/WebPreferences' security: - oauth: - 'stig-manager:user:read' patch: tags: - User summary: Merge the provided object to the requester's web-preferences operationId: patchUserWebPreferences requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/WebPreferencesPatch' responses: '200': description: User Web Preferences response content: application/json: schema: $ref: '#/components/schemas/WebPreferences' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: # not semantically correct but needed for backwards compatability - 'stig-manager:user:read' /users: parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserProjectionQuery' get: tags: - User summary: Return a list of Users accessible to the requester operationId: getUsers parameters: - $ref: '#/components/parameters/UsernameQuery' - $ref: '#/components/parameters/PrivilegeQuery' - $ref: '#/components/parameters/UsernameMatchQuery' - $ref: '#/components/parameters/UserStatusQuery' responses: '200': description: UserProjected array response content: application/json: schema: type: array items: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user:read' post: tags: - User summary: Create a User operationId: createUser requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/UserPost' responses: '201': description: UserProjected response content: application/json: schema: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' '/users/{userId}': parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserProjectionQuery' - $ref: '#/components/parameters/UserIdPath' get: tags: - User summary: Return a User operationId: getUserByUserId responses: '200': description: UserProjected response content: application/json: schema: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user:read' patch: tags: - User summary: Merge provided properties with a User operationId: updateUser requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/UserPatch' responses: '200': description: UserProjected response content: application/json: schema: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' put: tags: - User summary: Set all properties of a User operationId: replaceUser requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/UserPut' responses: '200': description: UserProjected response content: application/json: schema: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' delete: tags: - User summary: Delete a User that has never accessed the system. operationId: deleteUser responses: '200': description: UserProjected response content: application/json: schema: $ref: '#/components/schemas/UserProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' /user-groups: post: tags: - User summary: Create a User Group operationId: createUserGroup parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserGroupProjectionQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/UserGroupPostOrPut' responses: '201': description: UserGroup response content: application/json: schema: $ref: '#/components/schemas/UserGroupProjected' default: description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' get: tags: - User summary: Get a list of User Groups accessible to the requester operationId: getUserGroups parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserGroupProjectionQuery' responses: '200': description: UserGroups response content: application/json: schema: type: array items: $ref: '#/components/schemas/UserGroupProjected' security: - oauth: - 'stig-manager:user:read' '/user-groups/{userGroupId}': get: tags: - User summary: Return a User Group operationId: getUserGroup parameters: - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserGroupIdPath' - $ref: '#/components/parameters/UserGroupProjectionQuery' responses: '200': description: UserGroup response content: application/json: schema: $ref: '#/components/schemas/UserGroupProjected' 'default': description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user:read' patch: tags: - User summary: Patch a User Group operationId: patchUserGroup parameters: - $ref: '#/components/parameters/UserGroupIdPath' - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserGroupProjectionQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/UserGroupPatch' responses: '200': description: UserGroup response content: application/json: schema: $ref: '#/components/schemas/UserGroupProjected' 'default': description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' put: tags: - User summary: Replace a User Group operationId: putUserGroup parameters: - $ref: '#/components/parameters/UserGroupIdPath' - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserGroupProjectionQuery' requestBody: required: true content: application/json: schema: $ref: '#/components/schemas/UserGroupPostOrPut' responses: '200': description: UserGroup response content: application/json: schema: $ref: '#/components/schemas/UserGroupProjected' 'default': description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' delete: tags: - User summary: Delete a User Group operationId: deleteUserGroup parameters: - $ref: '#/components/parameters/UserGroupIdPath' - $ref: '#/components/parameters/ElevateQuery' - $ref: '#/components/parameters/UserGroupProjectionQuery' responses: '200': description: UserGroup response content: application/json: schema: $ref: '#/components/schemas/UserGroupProjected' 'default': description: unexpected error content: application/json: schema: $ref: '#/components/schemas/Error' security: - oauth: - 'stig-manager:user' components: schemas: RoleId: maximum: 4 minimum: 1 type: integer AclForGrant: type: object properties: defaultAccess: $ref: '#/components/schemas/AclRuleAccess' acl: type: array items: $ref: '#/components/schemas/AclRuleBasic' AclRuleAccess: type: string enum: - none - r - rw default: rw AclRuleAssetBasic: additionalProperties: false type: object properties: asset: $ref: '#/components/schemas/AssetBasic' benchmarkId: $ref: '#/components/schemas/BenchmarkId' access: $ref: '#/components/schemas/AclRuleAccess' # required: # - access AclRuleAssetPut: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' benchmarkId: $ref: '#/components/schemas/BenchmarkId' access: $ref: '#/components/schemas/AclRuleAccess' required: - access AclRuleBasic: anyOf: - $ref: '#/components/schemas/AclRuleAssetBasic' - $ref: '#/components/schemas/AclRuleLabel' AclRuleLabel: additionalProperties: false type: object properties: label: $ref: '#/components/schemas/LabelBasicWithColor' benchmarkId: $ref: '#/components/schemas/BenchmarkId' access: $ref: '#/components/schemas/AclRuleAccess' required: - access AclRuleLabelBasic: additionalProperties: false type: object properties: label: $ref: '#/components/schemas/LabelBasic' benchmarkId: $ref: '#/components/schemas/BenchmarkId' access: $ref: '#/components/schemas/AclRuleAccess' required: - access AclRuleLabelPut: additionalProperties: false type: object properties: labelId: $ref: '#/components/schemas/LabelId' benchmarkId: $ref: '#/components/schemas/BenchmarkId' access: $ref: '#/components/schemas/AclRuleAccess' required: - access AclRulePut: anyOf: - $ref: '#/components/schemas/AclRuleAssetPut' - $ref: '#/components/schemas/AclRuleLabelPut' AclSource: type: object properties: grantee: $ref: '#/components/schemas/Grantee' aclRule: anyOf: - $ref: '#/components/schemas/AclRuleAssetBasic' - $ref: '#/components/schemas/AclRuleLabelBasic' ApAcronym: $ref: '#/components/schemas/String20Nullable' ApiClassification: type: string enum: - NONE - U - FOUO - CUI - C - S - TS - SCI ApiConfiguration: additionalProperties: false type: object properties: classification: $ref: '#/components/schemas/ApiClassification' commit: $ref: '#/components/schemas/CommitObject' lastMigration: $ref: '#/components/schemas/LastMigration' version: $ref: '#/components/schemas/ApiVersion' ApiDefinition: oneOf: - type: object - type: array ApiVersion: $ref: '#/components/schemas/Version' AppDataFormat: type: string default: 'gzip' enum: - jsonl - gzip AppDataTable: type: object properties: name: $ref: '#/components/schemas/String255' rows: type: number dataLength: type: number AppInfo: type: object properties: date: $ref: '#/components/schemas/StringDateTime' schema: $ref: '#/components/schemas/AppInfoSchemaVersion' version: $ref: '#/components/schemas/ApiVersion' collections: type: object additionalProperties: $ref: '#/components/schemas/AppInfoCollection' requests: $ref: '#/components/schemas/AppInfoRequests' users: $ref: '#/components/schemas/AppInfoUsers' groups: type: object additionalProperties: $ref: '#/components/schemas/AppInfoGroups' mysql: $ref: '#/components/schemas/AppInfoMySql' nodejs: $ref: '#/components/schemas/AppInfoNodejs' required: - date - schema - version - collections - requests - users - mysql - nodejs AppInfoGroups: type: object properties: name: $ref: '#/components/schemas/String255' members: $ref: '#/components/schemas/IntegerMinimumZeroNullable' created: $ref: '#/components/schemas/Created' modifiedDate: $ref: '#/components/schemas/StringDateTime' roles: $ref: '#/components/schemas/AppInfoGroupsRoles' required: - name - members - created - modifiedDate - roles AppInfoGroupsRoles: type: object properties: full: $ref: '#/components/schemas/IntegerMinimumZeroNullable' owner: $ref: '#/components/schemas/IntegerMinimumZeroNullable' manage: $ref: '#/components/schemas/IntegerMinimumZeroNullable' restricted: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - full - owner - manage - restricted AppInfoSchemaVersion: type: string pattern: "^[a-zA-Z0-9_-]+-appinfo-v[0-9]+\\.[0-9]+$" AppInfoNodejs: type: object properties: version: $ref: '#/components/schemas/ApiVersion' uptime: type: number format: double os: $ref: '#/components/schemas/AppInfoNodeOs' environment: additionalProperties: type: string memory: $ref: '#/components/schemas/AppInfoNodeMemory' cpus: type: array items: $ref: '#/components/schemas/AppInfoNodeCpus' required: - version - uptime - os - environment - memory - cpus AppInfoNodeOs: type: object properties: platform: $ref: '#/components/schemas/String255' arch: $ref: '#/components/schemas/String255' osMachine: $ref: '#/components/schemas/String255' osName: $ref: '#/components/schemas/String255' osRelease: $ref: '#/components/schemas/String255' loadAverage: $ref: '#/components/schemas/String255' required: - platform - arch - osMachine - osName - osRelease - loadAverage AppInfoNodeCpus: type: object properties: model: $ref: '#/components/schemas/String255' speed: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - model - speed AppInfoNodeMemory: type: object properties: rss: $ref: '#/components/schemas/Integer64MinimumZero' heapTotal: $ref: '#/components/schemas/Integer64MinimumZero' heapUsed: $ref: '#/components/schemas/Integer64MinimumZero' external: $ref: '#/components/schemas/Integer64MinimumZero' arrayBuffers: $ref: '#/components/schemas/Integer64MinimumZero' maxRss: $ref: '#/components/schemas/Integer64MinimumZero' required: - rss - heapTotal - heapUsed - external - arrayBuffers - maxRss AppInfoMySql: type: object properties: version: $ref: '#/components/schemas/ApiVersion' tables: $ref: '#/components/schemas/AppInfoMysqlTableStats' variables: $ref: '#/components/schemas/AppInfoMysqlVariables' status: $ref: '#/components/schemas/AppInfoMysqlStatus' required: - version - tables - variables - status AppInfoMysqlStatus: type: object properties: # Network Bytes_received: $ref: '#/components/schemas/String255' Bytes_sent: $ref: '#/components/schemas/String255' # Handler operations Handler_commit: $ref: '#/components/schemas/String255' Handler_update: $ref: '#/components/schemas/String255' Handler_write: $ref: '#/components/schemas/String255' # Buffer pool health - critical for performance monitoring Innodb_buffer_pool_bytes_data: $ref: '#/components/schemas/String255' Innodb_buffer_pool_pages_total: $ref: '#/components/schemas/String255' Innodb_buffer_pool_pages_free: $ref: '#/components/schemas/String255' Innodb_buffer_pool_pages_dirty: $ref: '#/components/schemas/String255' Innodb_buffer_pool_pages_flushed: $ref: '#/components/schemas/String255' Innodb_buffer_pool_read_requests: $ref: '#/components/schemas/String255' Innodb_buffer_pool_reads: $ref: '#/components/schemas/String255' Innodb_buffer_pool_wait_free: $ref: '#/components/schemas/String255' # Redo log / Checkpoint - detect checkpoint thrashing Innodb_redo_log_current_lsn: $ref: '#/components/schemas/String255' Innodb_redo_log_checkpoint_lsn: $ref: '#/components/schemas/String255' Innodb_redo_log_flushed_to_disk_lsn: $ref: '#/components/schemas/String255' Innodb_log_waits: $ref: '#/components/schemas/String255' Innodb_log_writes: $ref: '#/components/schemas/String255' Innodb_os_log_fsyncs: $ref: '#/components/schemas/String255' # I/O operations Innodb_data_reads: $ref: '#/components/schemas/String255' Innodb_data_writes: $ref: '#/components/schemas/String255' Innodb_data_fsyncs: $ref: '#/components/schemas/String255' Innodb_pages_read: $ref: '#/components/schemas/String255' Innodb_pages_written: $ref: '#/components/schemas/String255' Innodb_pages_created: $ref: '#/components/schemas/String255' # Row operations Innodb_rows_read: $ref: '#/components/schemas/String255' Innodb_rows_updated: $ref: '#/components/schemas/String255' Innodb_rows_inserted: $ref: '#/components/schemas/String255' Innodb_rows_deleted: $ref: '#/components/schemas/String255' # Row locking Innodb_row_lock_waits: $ref: '#/components/schemas/String255' Innodb_row_lock_current_waits: $ref: '#/components/schemas/String255' Innodb_row_lock_time: $ref: '#/components/schemas/String255' Innodb_row_lock_time_avg: $ref: '#/components/schemas/String255' Innodb_row_lock_time_max: $ref: '#/components/schemas/String255' # Temp tables Created_tmp_tables: $ref: '#/components/schemas/String255' Created_tmp_disk_tables: $ref: '#/components/schemas/String255' Created_tmp_files: $ref: '#/components/schemas/String255' # Table cache Open_tables: $ref: '#/components/schemas/String255' Opened_tables: $ref: '#/components/schemas/String255' Table_open_cache_hits: $ref: '#/components/schemas/String255' Table_open_cache_misses: $ref: '#/components/schemas/String255' Table_open_cache_overflows: $ref: '#/components/schemas/String255' # Connections/Threads Connections: $ref: '#/components/schemas/String255' Max_used_connections: $ref: '#/components/schemas/String255' Threads_connected: $ref: '#/components/schemas/String255' Threads_running: $ref: '#/components/schemas/String255' Threads_created: $ref: '#/components/schemas/String255' Threads_cached: $ref: '#/components/schemas/String255' Aborted_connects: $ref: '#/components/schemas/String255' Aborted_clients: $ref: '#/components/schemas/String255' # Queries Queries: $ref: '#/components/schemas/String255' Slow_queries: $ref: '#/components/schemas/String255' Select_scan: $ref: '#/components/schemas/String255' Select_full_join: $ref: '#/components/schemas/String255' Select_full_range_join: $ref: '#/components/schemas/String255' # Sorts Sort_merge_passes: $ref: '#/components/schemas/String255' Sort_scan: $ref: '#/components/schemas/String255' Sort_range: $ref: '#/components/schemas/String255' Sort_rows: $ref: '#/components/schemas/String255' # Table locks Table_locks_immediate: $ref: '#/components/schemas/String255' Table_locks_waited: $ref: '#/components/schemas/String255' # Server Uptime: $ref: '#/components/schemas/String255' Uptime_since_flush_status: $ref: '#/components/schemas/String255' required: # Network - Bytes_received - Bytes_sent # Handler operations - Handler_commit - Handler_update - Handler_write # Buffer pool health - Innodb_buffer_pool_bytes_data - Innodb_buffer_pool_pages_total - Innodb_buffer_pool_pages_free - Innodb_buffer_pool_pages_dirty - Innodb_buffer_pool_pages_flushed - Innodb_buffer_pool_read_requests - Innodb_buffer_pool_reads - Innodb_buffer_pool_wait_free # Redo log / Checkpoint # - Innodb_redo_log_current_lsn (MySQL 8.0.30+ only) # - Innodb_redo_log_checkpoint_lsn (MySQL 8.0.30+ only) # - Innodb_redo_log_flushed_to_disk_lsn (MySQL 8.0.30+ only) - Innodb_log_waits - Innodb_log_writes - Innodb_os_log_fsyncs # I/O operations - Innodb_data_reads - Innodb_data_writes - Innodb_data_fsyncs - Innodb_pages_read - Innodb_pages_written - Innodb_pages_created # Row operations - Innodb_rows_read - Innodb_rows_updated - Innodb_rows_inserted - Innodb_rows_deleted # Row locking - Innodb_row_lock_waits - Innodb_row_lock_current_waits - Innodb_row_lock_time - Innodb_row_lock_time_avg - Innodb_row_lock_time_max # Temp tables - Created_tmp_tables - Created_tmp_disk_tables - Created_tmp_files # Table cache - Open_tables - Opened_tables - Table_open_cache_hits - Table_open_cache_misses - Table_open_cache_overflows # Connections/Threads - Connections - Max_used_connections - Threads_connected - Threads_running - Threads_created - Threads_cached - Aborted_connects - Aborted_clients # Queries - Queries - Slow_queries - Select_scan - Select_full_join - Select_full_range_join # Sorts - Sort_merge_passes - Sort_scan - Sort_range - Sort_rows # Table locks - Table_locks_immediate - Table_locks_waited # Server - Uptime - Uptime_since_flush_status AppInfoMysqlVariables: type: object properties: # InnoDB Buffer Pool - critical for memory and caching innodb_buffer_pool_size: $ref: '#/components/schemas/String255' innodb_buffer_pool_instances: $ref: '#/components/schemas/String255' # InnoDB Logging innodb_log_buffer_size: $ref: '#/components/schemas/String255' innodb_log_file_size: $ref: '#/components/schemas/String255' innodb_redo_log_capacity: $ref: '#/components/schemas/String255' # InnoDB I/O and Flushing innodb_io_capacity: $ref: '#/components/schemas/String255' innodb_io_capacity_max: $ref: '#/components/schemas/String255' innodb_flush_sync: $ref: '#/components/schemas/String255' innodb_flush_log_at_trx_commit: $ref: '#/components/schemas/String255' innodb_doublewrite: $ref: '#/components/schemas/String255' # InnoDB Locking and Buffering innodb_lock_wait_timeout: $ref: '#/components/schemas/String255' innodb_change_buffering: $ref: '#/components/schemas/String255' # Temporary Tables tmp_table_size: $ref: '#/components/schemas/String255' max_heap_table_size: $ref: '#/components/schemas/String255' temptable_max_mmap: $ref: '#/components/schemas/String255' temptable_max_ram: $ref: '#/components/schemas/String255' # Memory Buffers key_buffer_size: $ref: '#/components/schemas/String255' sort_buffer_size: $ref: '#/components/schemas/String255' read_buffer_size: $ref: '#/components/schemas/String255' read_rnd_buffer_size: $ref: '#/components/schemas/String255' join_buffer_size: $ref: '#/components/schemas/String255' binlog_cache_size: $ref: '#/components/schemas/String255' # Connection and Table Cache max_connections: $ref: '#/components/schemas/String255' max_allowed_packet: $ref: '#/components/schemas/String255' thread_cache_size: $ref: '#/components/schemas/String255' table_open_cache: $ref: '#/components/schemas/String255' table_definition_cache: $ref: '#/components/schemas/String255' # Server Version and Query Performance version: $ref: '#/components/schemas/Version' version_compile_machine: $ref: '#/components/schemas/String255' version_compile_os: $ref: '#/components/schemas/String255' long_query_time: $ref: '#/components/schemas/String255' required: # InnoDB Buffer Pool - innodb_buffer_pool_size - innodb_buffer_pool_instances # InnoDB Logging - innodb_log_buffer_size - innodb_log_file_size # - innodb_redo_log_capacity (8.0.30+ only) # InnoDB I/O and Flushing - innodb_io_capacity - innodb_io_capacity_max - innodb_flush_sync - innodb_flush_log_at_trx_commit - innodb_doublewrite # InnoDB Locking and Buffering - innodb_lock_wait_timeout - innodb_change_buffering # Temporary Tables - tmp_table_size - max_heap_table_size - temptable_max_mmap - temptable_max_ram # Memory Buffers - key_buffer_size - sort_buffer_size - read_buffer_size - read_rnd_buffer_size - join_buffer_size - binlog_cache_size # Connection and Table Cache - max_connections - max_allowed_packet - thread_cache_size - table_open_cache - table_definition_cache # Server Version and Query Performance - version - version_compile_machine - version_compile_os - long_query_time AppInfoMysqlTableStats: type: object additionalProperties: $ref: '#/components/schemas/AppInfoTableInfo' AppInfoTableInfo: type: object properties: tableRows: $ref: '#/components/schemas/IntegerMinimumZeroNullable' tableCollation: $ref: '#/components/schemas/String255' avgRowLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' dataLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' indexLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' autoIncrement: $ref: '#/components/schemas/IntegerMinimumZeroNullable' createTime: $ref: '#/components/schemas/Created' updateTime: $ref: '#/components/schemas/StringDateTimeNullable' rowCount: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - tableRows - tableCollation - avgRowLength - dataLength - indexLength - autoIncrement - createTime - rowCount AppInfoUsers: type: object properties: userInfo: additionalProperties: $ref: '#/components/schemas/AppInfoUserInfo' userPrivilegeCounts: type: object additionalProperties: $ref: '#/components/schemas/AppInfoUserPrivilegeCounts' required: - userInfo - userPrivilegeCounts AppInfoUserPrivilegeCounts: type: object properties: overall: $ref: '#/components/schemas/AppInfoPrivilegeTimeSeriesCounts' activeInLast30Days: type: object additionalProperties: $ref: '#/components/schemas/AppInfoPrivilegeTimeSeriesCounts' activeInLast90Days: type: object additionalProperties: $ref: '#/components/schemas/AppInfoPrivilegeTimeSeriesCounts' AppInfoPrivilegeTimeSeriesCounts: type: object additionalProperties: $ref: '#/components/schemas/IntegerMinimumZeroNullable' AppInfoUserInfo: type: object properties: username: $ref: '#/components/schemas/Username' created: $ref: '#/components/schemas/Created' lastAccess: $ref: '#/components/schemas/UserLastAccess' privileges: $ref: '#/components/schemas/AppInfoUserPrivileges' roles: $ref: '#/components/schemas/AppInfoUserRoles' required: - username - created - lastAccess - privileges - roles AppInfoUserRoles: type: object properties: full: $ref: '#/components/schemas/IntegerMinimumZeroNullable' owner: $ref: '#/components/schemas/IntegerMinimumZeroNullable' manage: $ref: '#/components/schemas/IntegerMinimumZeroNullable' restricted: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - full - owner - manage - restricted AppInfoUserPrivileges: type: array items: $ref: '#/components/schemas/String255' AppInfoRequests: type: object properties: totalRequests: $ref: '#/components/schemas/IntegerMinimumZeroNullable' totalApiRequests: $ref: '#/components/schemas/IntegerMinimumZeroNullable' totalRequestDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' operationIds: additionalProperties: $ref: '#/components/schemas/AppInfoOperation' required: - totalRequests - totalApiRequests - totalRequestDuration - operationIds AppInfoOperation: type: object properties: totalRequests: $ref: '#/components/schemas/IntegerMinimumZeroNullable' totalDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' elevatedRequests: $ref: '#/components/schemas/IntegerMinimumZeroNullable' minDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' maxDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' maxDurationUpdates: $ref: '#/components/schemas/IntegerMinimumZeroNullable' retried: $ref: '#/components/schemas/IntegerMinimumZeroNullable' averageRetries: $ref: '#/components/schemas/IntegerMinimumZeroNullable' totalResLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' minResLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' maxResLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' totalReqLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' minReqLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' maxReqLength: $ref: '#/components/schemas/IntegerMinimumZeroNullable' projections: $ref: '#/components/schemas/AppInfoOperationIdProjections' clients: $ref: '#/components/schemas/AppInfoClients' users: $ref: '#/components/schemas/AppInfoUserRequests' errors: type: object additionalProperties: type: integer format: int64 minimum: 0 required: - totalRequests - totalDuration - elevatedRequests - minDuration - maxDuration - maxDurationUpdates - retried - averageRetries - totalResLength - minResLength - maxResLength - clients - users - errors AppInfoClients: type: object additionalProperties: $ref: '#/components/schemas/IntegerMinimumZeroNullable' AppInfoUserRequests: type: object additionalProperties: $ref: '#/components/schemas/IntegerMinimumZeroNullable' AppInfoOperationIdProjections: type: object additionalProperties: $ref: '#/components/schemas/AppInfoOperationIdProjection' AppInfoOperationIdProjection: type: object properties: statusStats: type: object properties: totalRequests: $ref: '#/components/schemas/IntegerMinimumZeroNullable' minDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' maxDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' totalDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' retried: $ref: '#/components/schemas/IntegerMinimumZeroNullable' averageRetries: $ref: '#/components/schemas/IntegerMinimumZeroNullable' averageDuration: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - totalRequests - minDuration - maxDuration - totalDuration - retried - averageRetries - averageDuration AppInfoCollection: type: object properties: name: $ref: '#/components/schemas/CollectionName' state: $ref: '#/components/schemas/AppInfoCollectionState' settings: $ref: '#/components/schemas/CollectionSettings' assets: $ref: '#/components/schemas/IntegerMinimumZeroNullable' assetsDisabled: $ref: '#/components/schemas/IntegerMinimumZeroNullable' uniqueStigs: $ref: '#/components/schemas/IntegerMinimumZeroNullable' stigAssignments: $ref: '#/components/schemas/IntegerMinimumZeroNullable' rules: $ref: '#/components/schemas/IntegerMinimumZeroNullable' reviews: $ref: '#/components/schemas/Integer64MinimumZeroNullable' reviewsDisabled: $ref: '#/components/schemas/Integer64MinimumZeroNullable' assetStigRanges: $ref: '#/components/schemas/AppInfoAssetStigRanges' grants: $ref: '#/components/schemas/AppInfoCollectionGrants' roleCounts: $ref: '#/components/schemas/AppInfoCollectionRoleCounts' labelCounts: $ref: '#/components/schemas/AppInfoLabelCounts' required: - name - state - settings - assets - assetsDisabled - uniqueStigs - stigAssignments - rules - reviews - reviewsDisabled - assetStigRanges - grants - roleCounts - labelCounts AppInfoCollectionRoleCounts: type: object properties: restricted: $ref: '#/components/schemas/IntegerMinimumZeroNullable' full: $ref: '#/components/schemas/IntegerMinimumZeroNullable' manage: $ref: '#/components/schemas/IntegerMinimumZeroNullable' owner: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - restricted - full - manage - owner AppInfoCollectionGrants: type: object additionalProperties: $ref: '#/components/schemas/AppInfoCollectionGrant' AppInfoCollectionGrant: type: object properties: role: $ref: '#/components/schemas/Roles' grantee: $ref: '#/components/schemas/AppInfoGrantee' ruleCounts: $ref: '#/components/schemas/AppInfoRuleCounts' uniqueStigs: type: integer format: int64 minimum: 0 uniqueAssets: $ref: '#/components/schemas/IntegerMinimumZeroNullable' uniqueStigsDisabled: $ref: '#/components/schemas/IntegerMinimumZeroNullable' uniqueAssetsDisabled: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - role - grantee - ruleCounts - uniqueStigs - uniqueAssets - uniqueStigsDisabled - uniqueAssetsDisabled AppInfoGrantee: type: object properties: userId: $ref: '#/components/schemas/IntegerMinimumZeroNullable' userGroupId: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - userId - userGroupId AppInfoRuleCounts: type: object properties: r: $ref: '#/components/schemas/IntegerMinimumZeroNullable' rw: $ref: '#/components/schemas/IntegerMinimumZeroNullable' none: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - r - rw - none AppInfoCollectionSettings: type: object additionalProperties: false properties: fields: $ref: '#/components/schemas/CollectionFieldSettings' status: $ref: '#/components/schemas/CollectionStatusSettings' history: $ref: '#/components/schemas/CollectionHistorySettings' importOptions: $ref: '#/components/schemas/CollectionImportOptions' AppInfoCollectionState: type: string enum: - enabled - disabled AppInfoLabelCounts: type: object properties: collectionLabels: $ref: '#/components/schemas/IntegerMinimumZeroNullable' labeledAssets: $ref: '#/components/schemas/IntegerMinimumZeroNullable' assetLabels: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - collectionLabels - labeledAssets - assetLabels AppInfoGrantCounts: type: object properties: role1: $ref: '#/components/schemas/IntegerMinimumZeroNullable' role2: $ref: '#/components/schemas/IntegerMinimumZeroNullable' role3: $ref: '#/components/schemas/IntegerMinimumZeroNullable' role4: $ref: '#/components/schemas/IntegerMinimumZeroNullable' AppInfoRestrictedUsers: type: object properties: uniqueAssets: $ref: '#/components/schemas/IntegerMinimumZeroNullable' stigAsstCount: $ref: '#/components/schemas/IntegerMinimumZeroNullable' AppInfoAssetStigRanges: type: object properties: range00: $ref: '#/components/schemas/IntegerMinimumZeroNullable' range01to05: $ref: '#/components/schemas/IntegerMinimumZeroNullable' range06to10: $ref: '#/components/schemas/IntegerMinimumZeroNullable' range11to15: $ref: '#/components/schemas/IntegerMinimumZeroNullable' range16plus: $ref: '#/components/schemas/IntegerMinimumZeroNullable' required: - range00 - range01to05 - range06to10 - range11to15 - range16plus Asset: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' collection: $ref: '#/components/schemas/CollectionBasic' description: $ref: '#/components/schemas/AssetDescription' fqdn: $ref: '#/components/schemas/AssetFqdn' ip: $ref: '#/components/schemas/AssetIp' labelIds: type: array items: $ref: '#/components/schemas/LabelId' mac: $ref: '#/components/schemas/AssetMac' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/AssetName' noncomputing: $ref: '#/components/schemas/AssetNoncomputing' required: - assetId - name - fqdn - collection - description - ip - mac - noncomputing AssetBasic: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' name: $ref: '#/components/schemas/AssetName' required: - assetId - name AssetBasicProjected: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' assetLabelIds: items: $ref: '#/components/schemas/LabelId' type: array assetLabels: type: array items: $ref: '#/components/schemas/LabelBasicWithColor' collectionId: $ref: '#/components/schemas/CollectionId' name: $ref: '#/components/schemas/AssetName' access: $ref: '#/components/schemas/AclRuleAccess' required: - assetId - name AssetCount: minimum: 0 type: integer AssetCreateBatch: type: array items: $ref: '#/components/schemas/AssetBatchItem' minItems: 1 AssetBatchItem: additionalProperties: false type: object properties: description: $ref: '#/components/schemas/AssetDescription' fqdn: $ref: '#/components/schemas/AssetFqdn' ip: $ref: '#/components/schemas/AssetIp' labelNames: items: $ref: '#/components/schemas/LabelName' type: array mac: $ref: '#/components/schemas/AssetMac' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/AssetName' noncomputing: $ref: '#/components/schemas/AssetNoncomputing' stigs: description: The benchmarkIds mapped to this Asset items: type: string type: array required: - name - description - ip - noncomputing - metadata - stigs AssetCreateOrReplace: additionalProperties: false type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' description: $ref: '#/components/schemas/AssetDescription' fqdn: $ref: '#/components/schemas/AssetFqdn' ip: $ref: '#/components/schemas/AssetIp' labelNames: items: $ref: '#/components/schemas/LabelName' type: array mac: $ref: '#/components/schemas/AssetMac' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/AssetName' noncomputing: $ref: '#/components/schemas/AssetNoncomputing' stigs: description: The benchmarkIds mapped to this Asset items: type: string type: array required: - name - collectionId - description - ip - noncomputing - metadata - stigs AssetDescription: $ref: '#/components/schemas/String255Nullable' AssetForCollection: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' name: $ref: '#/components/schemas/AssetName' AssetFqdn: $ref: '#/components/schemas/String255Nullable' AssetId: $ref: '#/components/schemas/StringIntId' AssetIp: $ref: '#/components/schemas/String255Nullable' AssetMac: $ref: '#/components/schemas/String255Nullable' AssetName: $ref: '#/components/schemas/String255' AssetNoncomputing: type: boolean AssetProjected: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' collection: $ref: '#/components/schemas/CollectionBasic' description: $ref: '#/components/schemas/AssetDescription' fqdn: $ref: '#/components/schemas/AssetFqdn' ip: $ref: '#/components/schemas/AssetIp' labelIds: type: array items: $ref: '#/components/schemas/LabelId' labels: type: array items: $ref: '#/components/schemas/LabelBasicWithColor' mac: $ref: '#/components/schemas/AssetMac' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/AssetName' noncomputing: $ref: '#/components/schemas/AssetNoncomputing' statusStats: additionalProperties: false type: object properties: acceptedCount: nullable: true type: integer maxTs: $ref: '#/components/schemas/MaxTs' minTs: $ref: '#/components/schemas/MinTs' rejectedCount: nullable: true type: integer ruleCount: $ref: '#/components/schemas/RuleCount' savedCount: nullable: true type: integer stigCount: type: integer submittedCount: nullable: true type: integer stigs: type: array description: The benchmarkIds mapped to this Asset items: $ref: '#/components/schemas/CollectionStig' required: - assetId - name - fqdn - collection - description - ip - mac - noncomputing - labelIds AssetStigResponse: additionalProperties: false type: object properties: benchmarkId: $ref: '#/components/schemas/BenchmarkId' revisionDate: $ref: '#/components/schemas/RevisionDate' revisionStr: $ref: '#/components/schemas/RevisionStrRaw' ruleCount: $ref: '#/components/schemas/RuleCount' required: - benchmarkId - revisionStr - revisionDate - ruleCount AssetStigSelection: additionalProperties: false type: object description: > An array that specifies a list of Assets/STIG items. Each array item is an object that MUST include the property `assetId` and MAY include the property `stigs`. If the `stigs` property is absent, the default value of the property is used. The default value is an array of the default revisions of each STIG to which the requesting User has been granted access on the Asset. If the `stigs` property is present, the value MUST be an array. Each array member is EITHER: - an object that identifies both a `benchmarkId` and a specific `revisionStr` - a string whose value is a `benchmarkId`. This is equivalent to specifying the object {"benchmarkId": [provided benchmarkId], "revisionStr": [default revisionStr for the provided benchmarkId]} properties: assetId: $ref: '#/components/schemas/AssetId' stigs: maxItems: 30 minItems: 1 type: array uniqueItems: true items: oneOf: - $ref: '#/components/schemas/RevisionBasic' - $ref: '#/components/schemas/String255' required: - assetId AssetUpdate: additionalProperties: false type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' description: $ref: '#/components/schemas/AssetDescription' fqdn: $ref: '#/components/schemas/AssetFqdn' ip: $ref: '#/components/schemas/AssetIp' labelNames: type: array items: $ref: '#/components/schemas/LabelName' mac: $ref: '#/components/schemas/AssetMac' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/AssetName' noncomputing: $ref: '#/components/schemas/AssetNoncomputing' stigs: description: The benchmarkIds mapped to this Asset type: array items: $ref: '#/components/schemas/BenchmarkId' AssetsPatchRequest: additionalProperties: false type: object properties: assetIds: type: array minItems: 1 items: $ref: '#/components/schemas/AssetId' operation: type: string enum: - delete required: - assetIds - operation AssetsPatchResponse: additionalProperties: false type: object properties: assetIds: type: array items: $ref: '#/components/schemas/AssetId' operation: type: string enum: - deleted Attribution: type: object properties: userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' ts: $ref: '#/components/schemas/StringDateTime' Attributions: type: object properties: created: $ref: '#/components/schemas/Attribution' modified: $ref: '#/components/schemas/Attribution' BenchmarkId: $ref: '#/components/schemas/String255Nullable' Cci: additionalProperties: false type: object properties: cci: $ref: '#/components/schemas/CciString' contributor: type: string definition: $ref: '#/components/schemas/DefinitionString' emassAp: $ref: '#/components/schemas/EmassAp' publishdate: $ref: '#/components/schemas/StringDateTime' references: type: array items: $ref: '#/components/schemas/CciReferenceItem' status: $ref: '#/components/schemas/CciStatus' stigs: items: $ref: '#/components/schemas/RevisionBasic' type: array type: $ref: '#/components/schemas/CciType' CciBasic: additionalProperties: false type: object properties: apAcronym: $ref: '#/components/schemas/ApAcronym' cci: $ref: '#/components/schemas/CciString' control: nullable: true type: string definition: $ref: '#/components/schemas/DefinitionString' required: - cci - apAcronym - definition - control CciListItem: additionalProperties: false type: object properties: cci: $ref: '#/components/schemas/CciString' references: type: array items: $ref: '#/components/schemas/CciReferenceItem' type: $ref: '#/components/schemas/CciType' CciLocation: $ref: '#/components/schemas/String255' CciReferenceItem: additionalProperties: false type: object properties: creator: type: string indexDisa: $ref: '#/components/schemas/IndexDisa' location: $ref: '#/components/schemas/CciLocation' parentControl: $ref: '#/components/schemas/ParentControl' textRefNist: $ref: '#/components/schemas/TextRefNist' title: $ref: '#/components/schemas/CciString' version: $ref: '#/components/schemas/VersionString' CciStatus: $ref: '#/components/schemas/String20' CciString: $ref: '#/components/schemas/String255' CciType: $ref: '#/components/schemas/String20' Check: additionalProperties: false type: object properties: content: type: string system: type: string ChecklistAssetStig: type: array items: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' autoResult: type: boolean comment: $ref: '#/components/schemas/CommentaryStringNullable' detail: $ref: '#/components/schemas/CommentaryStringNullable' groupId: $ref: '#/components/schemas/GroupId' groupTitle: $ref: '#/components/schemas/GroupTitle' result: $ref: '#/components/schemas/ChecklistResult' resultEngine: $ref: '#/components/schemas/ResultEngine' rule: $ref: '#/components/schemas/RuleProjected' ruleId: $ref: '#/components/schemas/RuleId' ruleTitle: $ref: '#/components/schemas/RuleTitle' severity: $ref: '#/components/schemas/RuleSeverity' status: $ref: '#/components/schemas/ChecklistStatus' statusTs: $ref: '#/components/schemas/StringDateTimeNullable' touchTs: $ref: '#/components/schemas/StringDateTimeNullable' ts: $ref: '#/components/schemas/StringDateTimeNullable' version: $ref: '#/components/schemas/VersionString' ChecklistCkl: additionalProperties: false description: The CKL format generated and read by DISA STIG Viewer type: object properties: ASSET: type: object additionalProperties: false properties: ASSET_TYPE: type: string HOST_FQDN: type: string HOST_GUID: type: string HOST_IP: type: string HOST_MAC: type: string HOST_NAME: type: string TARGET_KEY: type: string TECH_AREA: type: string STIGS: type: object additionalProperties: false properties: iSTIG: type: array items: type: object properties: STIG_INFO: type: array items: type: object properties: SI_DATA: type: object properties: SID_DATA: type: string SID_NAME: type: string VULN: type: array items: type: object additionalProperties: false properties: COMMENTS: type: string FINDING_DETAILS: type: string SEVERITY_JUSTIFICATION: type: string SEVERITY_OVERRIDE: type: string STATUS: type: string enum: - Open - NotAFinding - Not_Applicable - Not_Reviewed STIG_DATA: type: array items: type: object properties: ATTRIBUTE_DATA: type: string VULN_ATTRIBUTE: type: string xml: name: CHECKLIST ChecklistCklb: additionalProperties: false description: The CKLB format generated and read by DISA STIG VIewer 3 type: object properties: title: type: string id: type: string format: uuid active: type: boolean mode: type: integer has_path: type: boolean target_data: $ref: '#/components/schemas/TargetData' stigs: type: array items: $ref: '#/components/schemas/StigCklb' ChecklistJsonAccess: type: object properties: access: $ref: '#/components/schemas/AclRuleAccess' checklist: $ref: '#/components/schemas/ChecklistAssetStig' TargetData: type: object properties: target_type: type: string host_name: $ref: '#/components/schemas/AssetName' ip_address: $ref: '#/components/schemas/AssetIp' mac_address: $ref: '#/components/schemas/AssetMac' fqdn: $ref: '#/components/schemas/AssetFqdn' comments: type: string role: type: string is_web_database: type: boolean technology_area: type: string web_db_site: type: string web_db_instance: type: string StigCklb: type: object properties: stig_name: type: string display_name: type: string stig_id: type: string version: type: string release_info: type: string uuid: type: string format: uuid reference_identifier: type: string size: type: integer rules: type: array items: $ref: '#/components/schemas/Rule' Rule: type: object properties: uuid: type: string format: uuid stig_uuid: type: string format: uuid target_key: type: string nullable: true stig_ref: type: string nullable: true group_id: type: string rule_id: type: string rule_id_src: type: string weight: type: string classification: type: string severity: type: string rule_version: type: string group_title: type: string rule_title: type: string fix_text: type: string false_positives: type: string nullable: true false_negatives: type: string nullable: true discussion: type: string check_content: type: string documentable: type: string mitigations: type: string nullable: true potential_impacts: type: string nullable: true third_party_tools: type: string nullable: true mitigation_control: type: string nullable: true responsibility: type: string nullable: true security_override_guidance: type: string nullable: true ia_controls: type: string nullable: true check_content_ref: type: object properties: href: type: string name: type: string legacy_ids: type: array items: type: string group_tree: type: array items: $ref: '#/components/schemas/GroupTree' createdAt: type: string format: date-time updatedAt: type: string format: date-time STIGUuid: type: string format: uuid status: type: string overrides: type: object comments: type: string finding_details: type: string ccis: type: array items: type: string GroupTree: type: object properties: id: type: string title: type: string description: type: string ChecklistCollectionCounts: additionalProperties: false type: object properties: results: type: object additionalProperties: false properties: fail: type: integer notapplicable: type: integer other: type: integer pass: type: integer statuses: additionalProperties: false type: object properties: accepted: type: integer rejected: type: integer saved: type: integer submitted: type: integer ChecklistCollectionStig: additionalProperties: false type: object properties: counts: $ref: '#/components/schemas/ChecklistCollectionCounts' groupId: $ref: '#/components/schemas/GroupId' groupTitle: $ref: '#/components/schemas/GroupTitle' ruleId: $ref: '#/components/schemas/RuleId' ruleTitle: $ref: '#/components/schemas/RuleTitle' severity: $ref: '#/components/schemas/RuleSeverity' timestamps: additionalProperties: false type: object properties: statusTs: $ref: '#/components/schemas/ChecklistCollectionStigTimestamps' touchTs: $ref: '#/components/schemas/ChecklistCollectionStigTimestamps' ts: $ref: '#/components/schemas/ChecklistCollectionStigTimestamps' version: $ref: '#/components/schemas/VersionString' ChecklistCollectionStigTimestamp: $ref: '#/components/schemas/StringDateTimeNullable' ChecklistCollectionStigTimestamps: additionalProperties: false type: object properties: max: $ref: '#/components/schemas/ChecklistCollectionStigTimestamp' min: $ref: '#/components/schemas/ChecklistCollectionStigTimestamp' ChecklistResult: description: The Review result type: string nullable: true enum: - fail - pass - notapplicable - notchecked - unknown - error - notselected - informational - fixed - null ChecklistResultUnreviewed: description: The Review result type: string enum: - notchecked - unknown - error - notselected - informational - fixed - null nullable: true ChecklistStatus: type: string nullable: true enum: - saved - submitted - accepted - rejected - null ChecklistXccdf: additionalProperties: true type: object description: > An XCCDF document with TestResult. Note: OAS 3.x cannot represent the actual XML schema xml: name: Benchmark namespace: http://checklists.nist.gov/xccdf/1.2 ClientErrorBadAssetPost: additionalProperties: false type: object properties: code: type: string enum: - "422" nullable: true error: type: string detail: type: array items: type: object properties: failure: type: string detail: type: object properties: name: type: string assetIndex: type: integer benchmarkId: type: string benchmarkIdIndex: type: integer labelName: type: string labelIndex: type: integer required: - error - detail ClientErrorDuplicateCollection: additionalProperties: false type: object properties: code: type: string enum: - "400" data: $ref: '#/components/schemas/Collection' message: type: string enum: - Duplicate name Collection: additionalProperties: false type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' created: $ref: '#/components/schemas/Created' description: $ref: '#/components/schemas/CollectionDescription' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/CollectionName' settings: $ref: '#/components/schemas/CollectionSettings' required: - collectionId - name - description - settings - metadata - created CollectionBasic: additionalProperties: false type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' name: $ref: '#/components/schemas/CollectionName' CollectionCloneOptions: additionalProperties: false type: object properties: assets: type: boolean default: true description: >- Clone the source Collection's Assets and their core properties. If this option is not enabled then the stagMappings and pinRevisions options are ignored. grants: default: true type: boolean description: >- Clone the source Collection's users and their grants. Whether this option is enabled or not, the creator of the cloned Collection (ie. you) will be given an Owner grant in the clone. labels: type: boolean default: true description: >- Clone the source Collection's available labels. You must enable this option AND the assets option for labels to be mapped to Assets in the clone. pinRevisions: default: matchSource type: string description: > matchSource: STIGs in the source Collection that are pinned to a specific Revision will be pinned to that Revision in the clone. STIGs that track the latest Revision (unpinned) in the source will be unpinned in the clone.

sourceDefaults: All STIGs in the clone will be pinned to a specific Revision. STIGs that are pinned to a specific Revision in the source Collection will be pinned to that Revision in the clone. STIGs that track the latest Revision in the source will be pinned to the current latest Revision in the clone. enum: - matchSource - sourceDefaults stigMappings: default: withReviews type: string description: > withReviews: Assets will be cloned with their current STIG assignments and ALL stored Reviews. This will include Reviews that are no longer associated with a current STIG assignment or are associated with a non-default Revision of a STIG.

withoutReviews: Assets will be cloned with their current STIG assignments but NO stored Reviews will be cloned. All Metrics will be set to zero.

none: Assets will be cloned with only their core properties and no STIG assignments or Reviews. The pinRevisions option will be ignored. enum: - none - withReviews - withoutReviews CollectionCloneRequest: additionalProperties: false type: object properties: description: $ref: '#/components/schemas/CollectionDescription' name: $ref: '#/components/schemas/CollectionName' options: $ref: '#/components/schemas/CollectionCloneOptions' required: - name - description CollectionCloneResponse: description: > The response body is a stream of newline-delimited JSON (NDJSON) objects reporting the progress of the (possibly long running) cloning process. Each object conforms to this schema, but not all objects will have every property.

The sequence of objects starts with multiple {"stage": "collection"} objects, optionally followed by multiple {"stage": "reviews"} objects if review cloning is requested, and concludes with one {"stage": "result"} object whose "collection" property value conforms to the CollectionProjected schema for the created Collection.

Success is indicated when the final {"stage": "result"} message is sent. Errors that prevent cloning from completing are reported with {"status": "error"} and the "result" stage is not reported. Note that the endpoint will return HTTP status 200 immediately after the request is validated and the cloning process has started, so you should not rely on status 200 for indication of cloning success. type: object properties: collection: $ref: '#/components/schemas/CollectionProjected' error: type: object message: type: string stack: type: string stage: enum: - collection - reviews - result type: string status: enum: - running - finished - error type: string step: type: integer stepCount: type: integer stepName: type: string CollectionCreateOrReplace: additionalProperties: false type: object properties: description: $ref: '#/components/schemas/CollectionDescription' grants: type: array items: anyOf: - $ref: '#/components/schemas/UserGrant' - $ref: '#/components/schemas/UserGroupGrant' labels: type: array items: $ref: '#/components/schemas/LabelCreate' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/CollectionName' settings: $ref: '#/components/schemas/CollectionSettings' required: - name - grants CollectionDescription: $ref: '#/components/schemas/String255Nullable' CollectionExportToResponse: description: > The response body is a stream of newline-delimited JSON (NDJSON) objects reporting the progress of the (possibly long running) export process. Each object conforms to this schema, but not all objects will have every property.

The sequence of objects starts with multiple {"stage": "prepare"} objects, followed by multiple {"stage": "assets"} objects, multiple {"stage": "reviews"} objects, and multiple {"stage": "metrics"} objects. The stream concludes with one {"stage": "commit"} object and then one {"stage": "result"} object whose "counts" property value conforms to the schema below.

Success is indicated when the final {"stage": "result"} message is sent. Errors that prevent exporting from completing are reported with {"status": "error"} and the "result" stage is not reported. Note that the endpoint will return HTTP status 200 immediately after the request is validated and the export process has started, so you should not rely on status 200 for indication of export success. type: object properties: counts: additionalProperties: false type: object properties: assetsCreated: type: integer reviewsInserted: type: integer reviewsUpdated: type: integer stigsMapped: type: integer error: type: object message: type: string stack: type: string stage: enum: - prepare - assets - reviews - metrics - result type: string status: enum: - running - error type: string step: type: integer stepCount: type: integer stepName: type: string CollectionFieldEnabledAlways: additionalProperties: false type: object properties: enabled: type: string enum: - always required: type: string enum: - always - findings - optional required: - enabled - required CollectionFieldEnabledFindings: additionalProperties: false type: object properties: enabled: type: string enum: - findings required: type: string enum: - findings - optional required: - enabled - required CollectionFieldSetting: type: object example: enabled: always required: findings oneOf: - $ref: '#/components/schemas/CollectionFieldEnabledAlways' - $ref: '#/components/schemas/CollectionFieldEnabledFindings' CollectionFieldSettings: additionalProperties: false type: object properties: comment: $ref: '#/components/schemas/CollectionFieldSetting' detail: $ref: '#/components/schemas/CollectionFieldSetting' required: - detail - comment CollectionGrant: additionalProperties: false type: object properties: roleId: $ref: '#/components/schemas/RoleId' collectionId: $ref: '#/components/schemas/CollectionId' required: - collectionId - roleId CollectionGrantProjected: additionalProperties: false type: object properties: roleId: $ref: '#/components/schemas/RoleId' collection: type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' name: $ref: '#/components/schemas/CollectionName' grantees: $ref: '#/components/schemas/Grantees' CollectionHistorySettings: additionalProperties: false type: object properties: maxReviews: example: 5 maximum: 15 minimum: 0 type: integer required: - maxReviews CollectionId: $ref: '#/components/schemas/StringIntId' CollectionImportOptions: additionalProperties: false type: object properties: autoStatus: $ref: '#/components/schemas/CollectionImportAutoStatus' unreviewed: description: | Controls how to handle unreviewed rules (those with result = 'notchecked'). - 'never': Don't import unreviewed rules - 'commented': Import unreviewed rules that have comments, using the result specified in unreviewedCommented - 'always': Import all unreviewed rules, using the result specified in unreviewedCommented for those with comments type: string enum: - never - commented - always unreviewedCommented: description: | The result to use for unreviewed rules that have comments, when unreviewed is set to 'commented' or 'always'. type: string enum: - notchecked - informational emptyDetail: description: | Controls how to handle rules with empty finding details. - 'ignore': Leave the detail field null - 'import': Import the empty detail (as an empty string) - 'replace': Replace with a default message type: string enum: - ignore - import - replace emptyComment: description: | Controls how to handle rules with empty comments. - 'ignore': Leave the comment field null - 'import': Import the empty comment (as an empty string) - 'replace': Replace with a default message type: string enum: - ignore - import - replace updateAssetProps: description: | Flag indicating whether to update Asset information (IP, MAC, FQDN, noncomputing, and metadata including role and tech area) when Asset already exists in the Collection. type: boolean allowCustom: description: | Flag indicating whether Clients may POST reviews that do not conform to importOptions specified. type: boolean required: - autoStatus - unreviewed - unreviewedCommented - emptyDetail - emptyComment - allowCustom CollectionImportAutoStatus: type: object additionalProperties: false description: | Determines how to set the status property of imported reviews for each evaluation result. Each property must be one of: - 'null': Don't set a status (Keep existing Review Status) - 'saved': Always set status to 'saved' - 'submitted': Set status to 'submitted' if the review is submittable per Collection settings - 'accepted': Set status to 'accepted' if the review is submittable, and User has permission to accept, otherwise 'submitted' properties: fail: $ref: '#/components/schemas/ReviewStatusOption' notapplicable: $ref: '#/components/schemas/ReviewStatusOption' pass: $ref: '#/components/schemas/ReviewStatusOption' required: - fail - notapplicable - pass CollectionName: $ref: '#/components/schemas/String45' CollectionProjected: additionalProperties: false type: object properties: assets: type: array items: $ref: '#/components/schemas/AssetForCollection' collectionId: $ref: '#/components/schemas/CollectionId' description: $ref: '#/components/schemas/CollectionDescription' grants: type: array items: anyOf: - $ref: '#/components/schemas/UserGrantProjected' - $ref: '#/components/schemas/UserGroupGrantProjected' users: type: array items: $ref: '#/components/schemas/GrantEffective' labels: type: array items: $ref: '#/components/schemas/Label' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/CollectionName' owners: type: array items: $ref: '#/components/schemas/Owner' settings: $ref: '#/components/schemas/CollectionSettings' statistics: $ref: '#/components/schemas/CollectionStatistics' stigs: type: array items: $ref: '#/components/schemas/CollectionStig' required: - collectionId - name - description - settings - metadata CollectionSettings: additionalProperties: false type: object properties: fields: $ref: '#/components/schemas/CollectionFieldSettings' history: $ref: '#/components/schemas/CollectionHistorySettings' status: $ref: '#/components/schemas/CollectionStatusSettings' importOptions: $ref: '#/components/schemas/CollectionImportOptions' CollectionSettingsRequired: additionalProperties: false type: object properties: fields: $ref: '#/components/schemas/CollectionFieldSettings' history: $ref: '#/components/schemas/CollectionHistorySettings' status: $ref: '#/components/schemas/CollectionStatusSettings' importOptions: $ref: '#/components/schemas/CollectionImportOptions' required: - fields - history - status - importOptions CollectionStatistics: additionalProperties: false type: object properties: assetCount: $ref: '#/components/schemas/AssetCount' checklistCount: type: integer created: $ref: '#/components/schemas/Created' userCount: type: integer required: - created - assetCount - userCount - checklistCount CollectionStatusCount: additionalProperties: false type: object properties: resultEngine: type: integer total: type: integer required: - total - resultEngine CollectionStatusSettings: additionalProperties: false type: object properties: canAccept: type: boolean minAcceptGrant: type: integer example: 2 maximum: 4 minimum: 2 resetCriteria: type: string example: result enum: - any - result required: - canAccept - minAcceptGrant - resetCriteria CollectionStig: additionalProperties: false type: object properties: benchmarkDate: $ref: '#/components/schemas/StringDateNullable' benchmarkId: $ref: '#/components/schemas/BenchmarkId' revisionPinned: type: boolean revisionStr: $ref: '#/components/schemas/RevisionStr' ruleCount: $ref: '#/components/schemas/RuleCount' required: - benchmarkId - revisionStr - benchmarkDate - revisionPinned - ruleCount CollectionStigWithAssetCount: additionalProperties: false type: object properties: assetCount: $ref: '#/components/schemas/AssetCount' assets: items: $ref: '#/components/schemas/AssetForCollection' type: array benchmarkDate: $ref: '#/components/schemas/StringDateNullable' benchmarkId: $ref: '#/components/schemas/BenchmarkId' revisionPinned: type: boolean revisionStr: $ref: '#/components/schemas/RevisionStr' ruleCount: $ref: '#/components/schemas/RuleCount' title: $ref: '#/components/schemas/StatusText' required: - benchmarkId - revisionStr - benchmarkDate - revisionPinned - ruleCount - assetCount CollectionStigWithIsDefault: additionalProperties: false type: object properties: benchmarkDate: $ref: '#/components/schemas/StringDateNullable' benchmarkId: $ref: '#/components/schemas/BenchmarkId' isDefault: type: boolean revisionPinned: type: boolean revisionStr: $ref: '#/components/schemas/RevisionStr' ruleCount: $ref: '#/components/schemas/RuleCount' required: - benchmarkId - revisionStr - benchmarkDate - revisionPinned - ruleCount - isDefault CollectionUpdate: type: object additionalProperties: false minProperties: 1 properties: description: $ref: '#/components/schemas/CollectionDescription' grants: type: array items: type: object properties: roleId: $ref: '#/components/schemas/RoleId' userId: $ref: '#/components/schemas/UserId' labels: type: array items: $ref: '#/components/schemas/LabelCreate' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/CollectionName' settings: $ref: '#/components/schemas/CollectionSettingsRequired' CollectionsProjected: additionalProperties: false type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' description: $ref: '#/components/schemas/CollectionDescription' metadata: $ref: '#/components/schemas/Metadata' name: $ref: '#/components/schemas/CollectionName' owners: type: array items: $ref: '#/components/schemas/Owner' settings: $ref: '#/components/schemas/CollectionSettings' statistics: $ref: '#/components/schemas/CollectionStatistics' required: - collectionId - name - description - settings - metadata CommentaryString: $ref: '#/components/schemas/String32767' CommentaryStringNullable: $ref: '#/components/schemas/String32767Nullable' CommitBranch: type: string CommitDescribe: type: string CommitObject: type: object additionalProperties: false properties: branch: $ref: '#/components/schemas/CommitBranch' describe: $ref: '#/components/schemas/CommitDescribe' sha: $ref: '#/components/schemas/CommitSha' tag: $ref: '#/components/schemas/CommitTag' CommitSha: type: string CommitTag: type: string Created: $ref: '#/components/schemas/StringDateTime' DefinitionString: nullable: true type: string Detail: type: object properties: assetStig: type: array items: $ref: '#/components/schemas/DetailAssetStig' dbInfo: $ref: '#/components/schemas/DetailMySqlInfo' DetailAssetStig: additionalProperties: false type: object properties: assetCnt: type: integer collectionId: $ref: '#/components/schemas/CollectionId' range01to05: type: integer range06to10: type: integer range11to15: type: integer range16plus: type: integer DetailMySqlInfo: type: object properties: tables: type: object additionalProperties: $ref: '#/components/schemas/DetailMySqlTableInfo' DetailMySqlTableInfo: additionalProperties: false type: object properties: autoIncrement: nullable: true type: integer avgRowLength: nullable: true type: integer createTime: $ref: '#/components/schemas/StringDateTimeNullable' dataLength: nullable: true type: integer indexLength: nullable: true type: integer maxDataLength: nullable: true type: integer tableCollation: nullable: true type: string tableName: type: string tableRows: nullable: true type: integer updateTime: $ref: '#/components/schemas/StringDateTimeNullable' Dependencies: type: object properties: db: type: boolean oidc: type: boolean DisplayName: $ref: '#/components/schemas/String255Nullable' EffectiveAcl: additionalProperties: false type: object properties: access: $ref: '#/components/schemas/AclRuleAccess' asset: $ref: '#/components/schemas/AssetBasic' benchmarkId: $ref: '#/components/schemas/BenchmarkId' aclSources: type: array items: $ref: '#/components/schemas/AclSource' EmassAp: additionalProperties: false type: object nullable: true properties: apAcronym: $ref: '#/components/schemas/ApAcronym' assessmentProcedure: type: string implementation: type: string Endpoints: additionalProperties: false type: object properties: ui: type: string Error: type: object properties: detail: type: string error: type: string stack: type: string FindingProjected: additionalProperties: false type: object properties: apAcronym: $ref: '#/components/schemas/ApAcronym' assetCount: $ref: '#/components/schemas/AssetCount' assets: type: array items: $ref: '#/components/schemas/AssetBasic' cci: nullable: true type: string ccis: type: array minItems: 0 items: $ref: '#/components/schemas/CciBasic' definition: $ref: '#/components/schemas/DefinitionString' groupId: $ref: '#/components/schemas/GroupId' groups: type: array items: $ref: '#/components/schemas/GroupProjected' ruleId: $ref: '#/components/schemas/RuleId' rules: type: array items: $ref: '#/components/schemas/RuleAbbr' severity: $ref: '#/components/schemas/RuleSeverity' stigs: type: array items: $ref: '#/components/schemas/CollectionStig' title: $ref: '#/components/schemas/RuleTitle' Fix: additionalProperties: false type: object properties: fixref: type: string text: type: string Grant: oneOf: - $ref: '#/components/schemas/UserGrantProjected' - $ref: '#/components/schemas/UserGroupGrantProjected' GrantPost: oneOf: - $ref: '#/components/schemas/UserGrant' - $ref: '#/components/schemas/UserGroupGrant' GrantEffective: type: object properties: roleId: $ref: '#/components/schemas/RoleId' grantees: $ref: '#/components/schemas/Grantees' user: $ref: '#/components/schemas/UserBasicWithDisplayName' required: - roleId - grantees - user Grantee: oneOf: - $ref: '#/components/schemas/UserBasic' - $ref: '#/components/schemas/UserGroupBasic' Grantees: type: array items: $ref: '#/components/schemas/Grantee' GrantId: $ref: '#/components/schemas/StringIntId' GroupId: $ref: '#/components/schemas/String255Nullable' GroupProjected: additionalProperties: false type: object properties: groupId: $ref: '#/components/schemas/GroupId' rules: type: array items: $ref: '#/components/schemas/RuleAbbr' severity: $ref: '#/components/schemas/RuleSeverity' title: $ref: '#/components/schemas/GroupTitle' GroupTitle: $ref: '#/components/schemas/String255Nullable' IndexDisa: $ref: '#/components/schemas/String255' IntegerMinimumZeroNullable: type: integer minimum: 0 nullable: true Integer64MinimumZero: type: integer format: int64 minimum: 0 Integer64MinimumZeroNullable: type: integer format: int64 minimum: 0 nullable: true Job: additionalProperties: false type: object properties: jobId: $ref: '#/components/schemas/JobId' name: $ref: "#/components/schemas/String45" description: $ref: "#/components/schemas/String255Nullable" createdBy: $ref: '#/components/schemas/UserBasicNullable' created: $ref: '#/components/schemas/StringDateTime' updatedBy: $ref: '#/components/schemas/UserBasicNullable' updated: $ref: '#/components/schemas/StringDateTimeNullable' tasks: $ref: '#/components/schemas/JobTaskList' event: $ref: '#/components/schemas/JobEvent' runCount: type: integer lastRun: $ref: '#/components/schemas/JobRun' required: [jobId, name, tasks, created, createdBy] JobCreate: additionalProperties: false type: object properties: name: $ref: "#/components/schemas/String45" description: $ref: "#/components/schemas/String255Nullable" tasks: $ref: '#/components/schemas/JobTaskListCreate' event: $ref: '#/components/schemas/JobEventCreate' required: [name, tasks] JobEvent: oneOf: - type: integer nullable: true - $ref: '#/components/schemas/JobEventRecurring' - $ref: '#/components/schemas/JobEventOnce' JobEventCreate: oneOf: - $ref: '#/components/schemas/JobEventRecurringCreate' - $ref: '#/components/schemas/JobEventOnceCreate' - type: integer nullable: true JobEventOnce: additionalProperties: false type: object properties: eventId: $ref: "#/components/schemas/String45" type: type: string enum: - once starts: $ref: '#/components/schemas/StringDateTime' enabled: type: boolean default: true required: [eventId, starts, type] JobEventOnceCreate: additionalProperties: false type: object properties: type: type: string enum: - once starts: $ref: '#/components/schemas/StringDateTime' required: [starts, type] JobEventRecurring: additionalProperties: false type: object properties: eventId: $ref: "#/components/schemas/String45" type: type: string enum: - recurring interval: $ref: '#/components/schemas/JobInterval' starts: $ref: '#/components/schemas/StringDateTimeNullable' ends: $ref: '#/components/schemas/StringDateTimeNullable' enabled: type: boolean default: true required: [eventId, type, interval] JobEventRecurringCreate: additionalProperties: false type: object properties: type: type: string enum: - recurring interval: $ref: '#/components/schemas/JobInterval' starts: $ref: '#/components/schemas/StringDateTimeNullable' ends: $ref: '#/components/schemas/StringDateTimeNullable' enabled: type: boolean default: true required: [type, interval] JobInterval: additionalProperties: false type: object properties: value: type: string field: type: string enum: - minute - hour - day - week - month required: [value, field] JobId: $ref: '#/components/schemas/StringIntId' JobRun: additionalProperties: false nullable: true type: object properties: runId: $ref: '#/components/schemas/JobRunId' created: $ref: '#/components/schemas/StringDateTime' updated: $ref: '#/components/schemas/StringDateTimeNullable' state: $ref: '#/components/schemas/JobRunState' jobId: $ref: '#/components/schemas/JobId' required: [runId, created, state] JobRunCreated: additionalProperties: false type: object properties: runId: $ref: '#/components/schemas/JobRunId' required: [runId] JobRunId: $ref: '#/components/schemas/StringUuid' JobRunOutput: additionalProperties: false type: object properties: type: type: string message: type: string task: $ref: "#/components/schemas/String45" taskId: $ref: "#/components/schemas/JobTaskId" ts: $ref: '#/components/schemas/StringDateTime' required: [message, type, task, ts] JobRunState: type: string nullable: true enum: - running - completed - failed JobTask: type: object additionalProperties: false properties: taskId: $ref: '#/components/schemas/StringIntId' name: $ref: "#/components/schemas/String45" description: $ref: "#/components/schemas/String255Nullable" command: $ref: '#/components/schemas/String255' required: [taskId, name] JobTaskId: $ref: '#/components/schemas/StringIntId' JobTaskList: type: array minItems: 1 items: $ref: '#/components/schemas/JobTask' JobTaskListCreate: type: array minItems: 1 items: $ref: '#/components/schemas/JobTaskId' JobUpdate: type: object additionalProperties: false minProperties: 1 properties: name: $ref: "#/components/schemas/String45" description: $ref: "#/components/schemas/String255Nullable" tasks: $ref: '#/components/schemas/JobTaskListCreate' event: $ref: '#/components/schemas/JobEventCreate' Label: additionalProperties: false type: object properties: color: $ref: '#/components/schemas/StringHexColor' description: $ref: '#/components/schemas/String255Nullable' labelId: $ref: '#/components/schemas/LabelId' name: $ref: '#/components/schemas/LabelName' uses: type: integer required: - name - description - color - labelId - uses LabelBasic: additionalProperties: false type: object properties: labelId: $ref: '#/components/schemas/LabelId' name: $ref: '#/components/schemas/LabelName' required: - name - labelId LabelBasicWithColor: additionalProperties: false type: object properties: color: $ref: '#/components/schemas/StringHexColor' labelId: $ref: '#/components/schemas/LabelId' name: $ref: '#/components/schemas/LabelName' required: - name - color - labelId LabelCreate: additionalProperties: false type: object properties: color: $ref: '#/components/schemas/StringHexColor' description: $ref: '#/components/schemas/String255Nullable' name: $ref: '#/components/schemas/LabelName' required: - name - description - color LabelId: $ref: '#/components/schemas/StringUuid' LabelIdNullable: $ref: '#/components/schemas/StringUuidNullable' LabelName: maxLength: 16 minLength: 1 type: string LabelUpdate: additionalProperties: false type: object properties: color: $ref: '#/components/schemas/StringHexColor' description: $ref: '#/components/schemas/String255Nullable' name: $ref: '#/components/schemas/LabelName' LastMigration: type: integer minimum: 0 LocationString: type: string MaxTs: format: date-time nullable: true type: string Metadata: type: object additionalProperties: type: string MetadataKey: type: string MetadataValue: type: string MetricsAggAsset: type: object properties: assetId: $ref: '#/components/schemas/AssetId' benchmarkIds: type: array items: $ref: '#/components/schemas/BenchmarkId' fqdn: $ref: '#/components/schemas/AssetFqdn' ip: $ref: '#/components/schemas/AssetIp' labels: type: array items: $ref: '#/components/schemas/LabelBasicWithColor' mac: $ref: '#/components/schemas/AssetMac' name: $ref: '#/components/schemas/AssetName' noncomputing: $ref: '#/components/schemas/AssetNoncomputing' required: - assetId - name - labels - benchmarkIds MetricsAggCollection: type: object properties: assets: type: integer checklists: type: integer collectionId: $ref: '#/components/schemas/CollectionId' name: $ref: '#/components/schemas/CollectionName' stigs: type: integer required: - collectionId - name - checklists - assets - stigs MetricsAggLabel: type: object properties: assets: type: integer labelId: $ref: '#/components/schemas/LabelIdNullable' name: nullable: true type: string required: - labelId - name - assets MetricsAggMeta: type: object properties: assets: type: integer checklists: type: integer collections: type: integer stigs: type: integer required: - collections - assets - stigs - checklists MetricsAggStig: type: object properties: assets: type: integer benchmarkId: $ref: '#/components/schemas/BenchmarkId' collections: type: integer marking: $ref: '#/components/schemas/RevisionMarkingNullable' revisionPinned: type: boolean revisionStr: $ref: '#/components/schemas/RevisionStrRaw' revisionDate: $ref: "#/components/schemas/StringDateNullable" ruleCount: $ref: '#/components/schemas/RuleCount' title: $ref: '#/components/schemas/StigTitle' required: - benchmarkId - marking - title - assets - revisionStr - revisionDate - ruleCount MetricsDetail: properties: metrics: additionalProperties: false type: object properties: assessed: type: integer assessedBySeverity: additionalProperties: false type: object properties: high: type: integer low: type: integer medium: type: integer required: - low - medium - high assessments: type: integer assessmentsBySeverity: additionalProperties: false type: object properties: high: type: integer low: type: integer medium: type: integer required: - low - medium - high findings: additionalProperties: false type: object properties: high: type: integer low: type: integer medium: type: integer required: - low - medium - high maxTouchTs: $ref: '#/components/schemas/StringDateTimeNullable' maxTs: $ref: '#/components/schemas/MaxTs' minTs: $ref: '#/components/schemas/MinTs' results: additionalProperties: false type: object properties: error: $ref: '#/components/schemas/CollectionStatusCount' fail: $ref: '#/components/schemas/CollectionStatusCount' fixed: $ref: '#/components/schemas/CollectionStatusCount' informational: $ref: '#/components/schemas/CollectionStatusCount' notapplicable: $ref: '#/components/schemas/CollectionStatusCount' notchecked: $ref: '#/components/schemas/CollectionStatusCount' notselected: $ref: '#/components/schemas/CollectionStatusCount' pass: $ref: '#/components/schemas/CollectionStatusCount' unknown: $ref: '#/components/schemas/CollectionStatusCount' required: - notchecked - notapplicable - pass - fail - unknown - error - notselected - informational - fixed statuses: type: object properties: accepted: $ref: '#/components/schemas/CollectionStatusCount' rejected: $ref: '#/components/schemas/CollectionStatusCount' saved: $ref: '#/components/schemas/CollectionStatusCount' submitted: $ref: '#/components/schemas/CollectionStatusCount' required: - assessed - assessedBySeverity - assessments - assessmentsBySeverity - findings - minTs - maxTs - maxTouchTs - results - statuses required: - metrics MetricsDetailAggAsset: allOf: - $ref: '#/components/schemas/MetricsAggAsset' - $ref: '#/components/schemas/MetricsDetail' MetricsDetailAggCollection: allOf: - $ref: '#/components/schemas/MetricsAggCollection' - $ref: '#/components/schemas/MetricsDetail' MetricsDetailAggLabel: allOf: - $ref: '#/components/schemas/MetricsAggLabel' - $ref: '#/components/schemas/MetricsDetail' MetricsDetailAggMeta: allOf: - $ref: '#/components/schemas/MetricsAggMeta' - $ref: '#/components/schemas/MetricsDetail' MetricsDetailAggStig: allOf: - $ref: '#/components/schemas/MetricsAggStig' - $ref: '#/components/schemas/MetricsDetail' MetricsDetailUnagg: allOf: - $ref: '#/components/schemas/MetricsUnagg' - $ref: '#/components/schemas/MetricsDetail' MetricsSummary: properties: metrics: additionalProperties: false type: object properties: assessed: type: integer assessedBySeverity: additionalProperties: false type: object properties: high: type: integer low: type: integer medium: type: integer required: - low - medium - high assessments: type: integer assessmentsBySeverity: additionalProperties: false type: object properties: high: type: integer low: type: integer medium: type: integer required: - low - medium - high findings: additionalProperties: false type: object properties: high: type: integer low: type: integer medium: type: integer required: - low - medium - high maxTouchTs: $ref: '#/components/schemas/StringDateTimeNullable' maxTs: $ref: '#/components/schemas/MaxTs' minTs: $ref: '#/components/schemas/MinTs' results: additionalProperties: false type: object properties: fail: type: integer notapplicable: type: integer other: type: integer pass: type: integer required: - fail - notapplicable - other - pass statuses: additionalProperties: false type: object properties: accepted: type: integer rejected: type: integer saved: type: integer submitted: type: integer required: - saved - submitted - accepted - rejected required: - assessed - assessedBySeverity - assessments - assessmentsBySeverity - findings - minTs - maxTs - maxTouchTs - results - statuses required: - metrics MetricsSummaryAggAsset: allOf: - $ref: '#/components/schemas/MetricsAggAsset' - $ref: '#/components/schemas/MetricsSummary' MetricsSummaryAggCollection: allOf: - $ref: '#/components/schemas/MetricsAggCollection' - $ref: '#/components/schemas/MetricsSummary' MetricsSummaryAggLabel: allOf: - $ref: '#/components/schemas/MetricsAggLabel' - $ref: '#/components/schemas/MetricsSummary' MetricsSummaryAggMeta: allOf: - $ref: '#/components/schemas/MetricsAggMeta' - $ref: '#/components/schemas/MetricsSummary' MetricsSummaryAggStig: allOf: - $ref: '#/components/schemas/MetricsAggStig' - $ref: '#/components/schemas/MetricsSummary' MetricsSummaryUnagg: allOf: - $ref: '#/components/schemas/MetricsUnagg' - $ref: '#/components/schemas/MetricsSummary' MetricsUnagg: type: object properties: assetId: type: string benchmarkId: $ref: '#/components/schemas/BenchmarkId' labels: items: $ref: '#/components/schemas/LabelBasicWithColor' type: array name: type: string revisionPinned: type: boolean revisionStr: $ref: '#/components/schemas/RevisionStrRaw' revisionDate: $ref: "#/components/schemas/StringDateNullable" title: $ref: '#/components/schemas/StigTitle' required: - assetId - name - labels - benchmarkId - title - revisionStr - revisionDate - revisionPinned MinTs: format: date-time nullable: true type: string Owner: oneOf: - $ref: '#/components/schemas/UserBasicWithDisplayName' - $ref: '#/components/schemas/UserGroup' ParentControl: $ref: '#/components/schemas/String255' ResultEngine: additionalProperties: false type: object nullable: true properties: checkContent: $ref: '#/components/schemas/ResultEngineCheckContent' overrides: type: array items: $ref: '#/components/schemas/ResultEngineOverride' minItems: 1 product: $ref: '#/components/schemas/String255' time: $ref: '#/components/schemas/StringDateTime' type: $ref: '#/components/schemas/ResultEngineType' version: $ref: '#/components/schemas/VersionString' required: - product - type ResultEngineCheckContent: additionalProperties: false nullable: true type: object properties: component: $ref: '#/components/schemas/String255' location: $ref: '#/components/schemas/LocationString' required: - location ResultEngineOverride: additionalProperties: false type: object properties: authority: $ref: '#/components/schemas/String255' newResult: $ref: '#/components/schemas/ReviewResult' oldResult: $ref: '#/components/schemas/ReviewResult' remark: $ref: '#/components/schemas/String255' time: $ref: '#/components/schemas/StringDateTime' required: - authority - oldResult - newResult ResultEngineType: type: string enum: - scap - script - other ReviewAsset: type: object properties: autoResult: type: boolean comment: $ref: '#/components/schemas/CommentaryString' detail: $ref: '#/components/schemas/CommentaryString' history: type: array items: $ref: '#/components/schemas/ReviewHistory' metadata: $ref: '#/components/schemas/Metadata' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' rule: $ref: '#/components/schemas/RuleAbbr' ruleId: $ref: '#/components/schemas/RuleId' ruleIds: type: array items: $ref: '#/components/schemas/RuleId' status: $ref: '#/components/schemas/ReviewStatusRead' stigs: type: array items: $ref: '#/components/schemas/CollectionStigWithIsDefault' touchTs: $ref: '#/components/schemas/StringDateTime' ts: $ref: '#/components/schemas/StringDateTime' userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' required: - ruleId - ruleIds - result - detail - comment - status - userId - username - ts - touchTs ReviewAssetPost: type: object required: - ruleId - result - detail - comment additionalProperties: false properties: ruleId: $ref: '#/components/schemas/RuleId' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' detail: $ref: '#/components/schemas/CommentaryStringNullable' comment: $ref: '#/components/schemas/CommentaryStringNullable' autoResult: type: boolean metadata: $ref: '#/components/schemas/Metadata' status: $ref: '#/components/schemas/ReviewStatusWrite' ReviewAssetRulePatch: additionalProperties: false type: object minProperties: 1 properties: comment: $ref: '#/components/schemas/CommentaryString' detail: $ref: '#/components/schemas/CommentaryString' metadata: $ref: '#/components/schemas/Metadata' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' status: $ref: '#/components/schemas/ReviewStatusWrite' ReviewAssetRulePut: additionalProperties: false type: object properties: autoResult: type: boolean comment: $ref: '#/components/schemas/CommentaryStringNullable' detail: $ref: '#/components/schemas/CommentaryStringNullable' metadata: $ref: '#/components/schemas/Metadata' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' status: $ref: '#/components/schemas/ReviewStatusWrite' required: - result - detail - comment ReviewAssetRuleRead: type: object properties: access: $ref: '#/components/schemas/AclRuleAccess' autoResult: type: boolean comment: $ref: '#/components/schemas/CommentaryString' detail: $ref: '#/components/schemas/CommentaryString' history: type: array items: $ref: '#/components/schemas/ReviewHistory' metadata: $ref: '#/components/schemas/Metadata' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' rule: $ref: '#/components/schemas/RuleAbbr' ruleIds: type: array items: $ref: '#/components/schemas/RuleId' status: $ref: '#/components/schemas/ReviewStatusRead' stigs: type: array items: $ref: '#/components/schemas/CollectionStigWithIsDefault' touchTs: $ref: '#/components/schemas/StringDateTime' ts: $ref: '#/components/schemas/StringDateTime' userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' required: - access - result - detail - comment - userId - username - ts - status - touchTs ReviewBatch: additionalProperties: false type: object properties: action: $ref: '#/components/schemas/ReviewBatchAction' assets: $ref: '#/components/schemas/ReviewBatchAssetsCriteria' dryRun: default: false type: boolean rules: $ref: '#/components/schemas/ReviewBatchRulesCriteria' source: $ref: '#/components/schemas/ReviewBatchSource' updateFilters: type: array items: $ref: '#/components/schemas/ReviewBatchFilter' required: - source - assets - rules ReviewBatchAction: type: string enum: - insert - update - merge ReviewBatchAssetsCriteria: oneOf: - $ref: '#/components/schemas/ReviewBatchCriteria_AssetIds' - $ref: '#/components/schemas/ReviewBatchCriteria_BenchmarkIds' ReviewBatchCriteria_AssetIds: additionalProperties: false type: object properties: assetIds: type: array items: $ref: '#/components/schemas/AssetId' maxItems: 2500 minItems: 1 uniqueItems: true required: - assetIds ReviewBatchCriteria_BenchmarkIds: additionalProperties: false type: object properties: benchmarkIds: type: array items: $ref: '#/components/schemas/BenchmarkId' maxItems: 50 minItems: 1 uniqueItems: true required: - benchmarkIds ReviewBatchCriteria_RuleIds: additionalProperties: false type: object properties: ruleIds: type: array items: $ref: '#/components/schemas/RuleId' maxItems: 500 minItems: 1 uniqueItems: true required: - ruleIds ReviewBatchFilter: oneOf: - $ref: '#/components/schemas/ReviewBatchFilter_String' - $ref: '#/components/schemas/ReviewBatchFilter_Result' - $ref: '#/components/schemas/ReviewBatchFilter_Status' - $ref: '#/components/schemas/ReviewBatchFilter_Date' - $ref: '#/components/schemas/ReviewBatchFilter_User' ReviewBatchFilter_Date: additionalProperties: false type: object properties: condition: default: equals type: string enum: - equals - lessThan - greaterThan field: type: string enum: - ts - statusTs - touchTs value: $ref: '#/components/schemas/StringDateTime' required: - field - value ReviewBatchFilter_Result: additionalProperties: false type: object properties: condition: default: equals type: string enum: - equals - notequal field: type: string enum: - result value: $ref: '#/components/schemas/ReviewResult' required: - field - value ReviewBatchFilter_Status: additionalProperties: false type: object properties: condition: default: equals type: string enum: - equals - notequal field: type: string enum: - statusLabel - status value: $ref: '#/components/schemas/ReviewStatusLabel' required: - field - value ReviewBatchFilter_String: additionalProperties: false type: object properties: condition: default: equals type: string enum: - equals - contains - beginsWith - endsWith field: type: string enum: - detail - comment - statusText value: type: string required: - field - value ReviewBatchFilter_User: additionalProperties: false type: object properties: condition: default: equals type: string enum: - equals - notequal field: type: string enum: - userId - statusUserId value: $ref: '#/components/schemas/StringIntId' required: - field - value ReviewBatchResponse: additionalProperties: false type: object properties: failedValidation: type: integer inserted: type: integer updated: type: integer validationErrors: type: array items: type: object properties: assetId: $ref: '#/components/schemas/AssetId' error: $ref: '#/components/schemas/String255' ruleId: $ref: '#/components/schemas/RuleId' required: - inserted - updated - failedValidation - validationErrors ReviewBatchResponseDryRun: additionalProperties: false type: object properties: validationErrors: type: array items: type: object properties: assetId: $ref: '#/components/schemas/AssetId' error: $ref: '#/components/schemas/String255' ruleId: $ref: '#/components/schemas/RuleId' willFailValidation: type: integer willInsert: type: integer willUpdate: type: integer required: - willInsert - willUpdate - willFailValidation - validationErrors ReviewBatchRulesCriteria: oneOf: - $ref: '#/components/schemas/ReviewBatchCriteria_RuleIds' - $ref: '#/components/schemas/ReviewBatchCriteria_BenchmarkIds' ReviewBatchSource: additionalProperties: false type: object properties: review: $ref: '#/components/schemas/ReviewAssetRulePatch' required: - review ReviewHistory: additionalProperties: false type: object properties: autoResult: type: boolean comment: $ref: '#/components/schemas/CommentaryString' detail: $ref: '#/components/schemas/CommentaryString' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' ruleId: $ref: '#/components/schemas/RuleId' status: $ref: '#/components/schemas/ReviewStatusRead' touchTs: $ref: '#/components/schemas/StringDateTime' ts: $ref: '#/components/schemas/StringDateTime' userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' required: - result - detail - comment - status - userId - username - ts - touchTs - ruleId ReviewHistoryAsset: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/String255' reviewHistories: type: array items: $ref: '#/components/schemas/ReviewHistoryRule' required: - assetId - reviewHistories ReviewHistoryDeleted: additionalProperties: false type: object properties: HistoryEntriesDeleted: type: integer required: - HistoryEntriesDeleted ReviewHistoryRule: additionalProperties: false type: object properties: history: type: array items: $ref: '#/components/schemas/ReviewHistory' ruleId: $ref: '#/components/schemas/RuleId' required: - ruleId - history ReviewHistoryStats: additionalProperties: false type: object properties: assetHistoryEntryCounts: type: array items: $ref: '#/components/schemas/ReviewHistoryStatsAsset' collectionHistoryEntryCount: type: integer oldestHistoryEntryDate: $ref: '#/components/schemas/StringDateTime' required: - collectionHistoryEntryCount - oldestHistoryEntryDate ReviewHistoryStatsAsset: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/String255' historyEntryCount: type: integer oldestHistoryEntry: nullable: true type: string required: - assetId - historyEntryCount - oldestHistoryEntry ReviewPostResponse: additionalProperties: false type: object properties: affected: type: object properties: inserted: type: number updated: type: number rejected: type: array items: type: object properties: reason: $ref: '#/components/schemas/String255' ruleId: $ref: '#/components/schemas/RuleId' required: - rejected - affected ReviewRead: additionalProperties: false type: object properties: access: $ref: '#/components/schemas/AclRuleAccess' assetId: $ref: '#/components/schemas/StringIntId' assetLabelIds: type: array items: $ref: '#/components/schemas/LabelId' assetLabels: type: array items: $ref: '#/components/schemas/LabelBasicWithColor' assetName: $ref: '#/components/schemas/String255' autoResult: type: boolean comment: $ref: '#/components/schemas/CommentaryStringNullable' detail: $ref: '#/components/schemas/CommentaryStringNullable' metadata: $ref: '#/components/schemas/Metadata' result: $ref: '#/components/schemas/ReviewResult' resultEngine: $ref: '#/components/schemas/ResultEngine' rule: $ref: '#/components/schemas/RuleAbbr' ruleId: $ref: '#/components/schemas/RuleId' ruleIds: type: array items: $ref: '#/components/schemas/RuleId' status: $ref: '#/components/schemas/ReviewStatusRead' stigs: type: array items: $ref: '#/components/schemas/CollectionStigWithIsDefault' touchTs: $ref: '#/components/schemas/StringDateTime' ts: $ref: '#/components/schemas/StringDateTime' userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' required: - assetId - assetName - ruleId - ruleIds - result - detail - comment - userId - username - ts - touchTs - status ReviewResult: enum: - fail - pass - notapplicable - notchecked - unknown - error - notselected - informational - fixed type: string ReviewStatusLabel: enum: - saved - submitted - accepted - rejected type: string ReviewStatusRead: additionalProperties: false type: object properties: label: $ref: '#/components/schemas/ReviewStatusLabel' text: $ref: '#/components/schemas/StatusText' ts: $ref: '#/components/schemas/StringDateTime' user: $ref: '#/components/schemas/UserBasic' required: - label - text - user - ts ReviewStatusOption: enum: - "null" - saved - submitted - accepted type: string ReviewStatusWrite: oneOf: - $ref: '#/components/schemas/ReviewStatusLabel' - type: object required: - label - text additionalProperties: false properties: label: $ref: '#/components/schemas/ReviewStatusLabel' text: $ref: '#/components/schemas/StatusText' Revision: additionalProperties: false type: object properties: benchmarkDate: $ref: '#/components/schemas/StringDateNullable' benchmarkId: $ref: '#/components/schemas/BenchmarkId' collectionIds: type: array items: $ref: '#/components/schemas/CollectionId' marking: $ref: '#/components/schemas/RevisionMarkingNullable' release: $ref: '#/components/schemas/RevisionRelease' revisionStr: $ref: '#/components/schemas/RevisionStr' ruleCount: $ref: '#/components/schemas/RuleCount' status: $ref: '#/components/schemas/RevisionStatus' statusDate: $ref: '#/components/schemas/StringDateNullable' version: $ref: '#/components/schemas/VersionString' required: - benchmarkId - revisionStr - version - release - benchmarkDate - status - statusDate - ruleCount - collectionIds RevisionBasic: additionalProperties: false type: object properties: benchmarkId: $ref: '#/components/schemas/BenchmarkId' revisionStr: $ref: '#/components/schemas/RevisionStr' required: - benchmarkId - revisionStr RevisionDate: $ref: '#/components/schemas/StringDate' RevisionMarkingNullable: type: string nullable: true pattern: ^CUI|U|FOUO$ RevisionPost: additionalProperties: false type: object properties: action: type: string enum: - inserted - preserved - replaced benchmarkId: $ref: '#/components/schemas/BenchmarkId' revisionStr: $ref: '#/components/schemas/RevisionStr' marking: $ref: '#/components/schemas/RevisionMarkingNullable' required: - benchmarkId - revisionStr - action RevisionRelease: $ref: '#/components/schemas/String45' RevisionStatus: $ref: '#/components/schemas/String45Nullable' RevisionStr: pattern: ^(V\d{1,3}R\d{1,3}(\.\d{1,3})?|latest)$ type: string RevisionStrRaw: pattern: ^(V\d{1,3}R\d{1,3}(\.\d{1,3})?)$ type: string Roles: type: string enum: ["restricted", "full", "manage", "owner"] RuleAbbr: additionalProperties: false type: object properties: ruleId: $ref: '#/components/schemas/RuleId' severity: type: string title: $ref: '#/components/schemas/RuleTitle' version: $ref: '#/components/schemas/VersionString' required: - ruleId - version - title - severity RuleCount: nullable: true type: integer RuleId: $ref: '#/components/schemas/String45Nullable' RuleProjected: additionalProperties: false type: object properties: ccis: items: $ref: '#/components/schemas/CciBasic' type: array check: $ref: '#/components/schemas/Check' detail: additionalProperties: false type: object properties: documentable: nullable: true type: string falseNegatives: nullable: true type: string falsePositives: nullable: true type: string mitigationControl: nullable: true type: string mitigations: nullable: true type: string potentialImpacts: nullable: true type: string responsibility: nullable: true type: string severityOverrideGuidance: nullable: true type: string thirdPartyTools: nullable: true type: string vulnDiscussion: nullable: true type: string weight: nullable: true type: string fix: $ref: '#/components/schemas/Fix' groupId: $ref: '#/components/schemas/GroupId' groupTitle: $ref: '#/components/schemas/GroupTitle' ruleId: $ref: '#/components/schemas/RuleId' ruleIds: type: array items: $ref: '#/components/schemas/RuleId' severity: type: string stigs: type: array items: $ref: '#/components/schemas/RevisionBasic' title: $ref: '#/components/schemas/RuleTitle' version: $ref: '#/components/schemas/VersionString' required: - ruleId - version - title - severity - groupId - groupTitle RuleSeverity: enum: - high - medium - low - null type: string nullable: true RuleTitle: $ref: '#/components/schemas/StringMax' SCAPMap: additionalProperties: false type: object properties: benchmarkId: $ref: '#/components/schemas/BenchmarkId' scapBenchmarkId: type: string STIG: additionalProperties: false type: object properties: benchmarkId: $ref: '#/components/schemas/BenchmarkId' collectionIds: type: array items: $ref: '#/components/schemas/CollectionId' lastRevisionDate: $ref: '#/components/schemas/StringDateNullable' lastRevisionStr: type: string marking: $ref: '#/components/schemas/RevisionMarkingNullable' revisionStrs: type: array items: $ref: '#/components/schemas/RevisionStrRaw' revisions: type: array items: $ref: '#/components/schemas/Revision' ruleCount: $ref: '#/components/schemas/RuleCount' status: $ref: '#/components/schemas/StatusText' title: $ref: '#/components/schemas/StigTitle' required: - benchmarkId - title - lastRevisionStr - lastRevisionDate - ruleCount - collectionIds State: type: string enum: - starting - available - unavailable - fail - stop StateResponse: type: object properties: currentState: $ref: '#/components/schemas/State' since: $ref: '#/components/schemas/StringDateTime' dependencies: $ref: '#/components/schemas/Dependencies' endpoints: $ref: '#/components/schemas/Endpoints' StatusText: $ref: '#/components/schemas/String511Nullable' StigTitle: $ref: '#/components/schemas/String255' String20: maxLength: 20 type: string String20Nullable: maxLength: 20 nullable: true type: string String255: maxLength: 255 type: string String255Nullable: maxLength: 255 nullable: true type: string String32767: maxLength: 32767 type: string String32767Nullable: maxLength: 32767 nullable: true type: string String45: maxLength: 45 type: string String45Nullable: maxLength: 45 nullable: true type: string String511Nullable: maxLength: 511 nullable: true type: string StringDate: format: date type: string StringDateNullable: format: date nullable: true type: string StringDateTime: format: date-time type: string StringDateTimeNullable: format: date-time nullable: true type: string StringHexColor: example: aa33cc pattern: ^[a-fA-F0-9]{6}$ type: string StringIntId: maxLength: 10 minLength: 1 pattern: ^[0-9]{1,10}$ type: string StringIntIdNullable: nullable: true maxLength: 10 minLength: 1 pattern: ^[0-9]{1,10}$ type: string StringMax: maxLength: 16777215 type: string StringUuid: pattern: ^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$ type: string StringUuidNullable: nullable: true pattern: ^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$ type: string TextRefNist: $ref: '#/components/schemas/String255' UnreviewedAsset: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' labels: type: array items: $ref: '#/components/schemas/LabelBasic' name: $ref: '#/components/schemas/AssetName' unreviewed: type: array items: $ref: '#/components/schemas/UnreviewedAssetItem' required: - assetId - name - labels - unreviewed UnreviewedAssetItem: additionalProperties: false type: object properties: benchmarkId: $ref: '#/components/schemas/BenchmarkId' groupId: $ref: '#/components/schemas/GroupId' groupTitle: $ref: '#/components/schemas/GroupTitle' result: $ref: '#/components/schemas/ChecklistResultUnreviewed' ruleId: $ref: '#/components/schemas/RuleId' ruleTitle: $ref: '#/components/schemas/RuleTitle' severity: $ref: '#/components/schemas/RuleSeverity' required: - result - ruleId - groupId - benchmarkId UnreviewedRule: additionalProperties: false type: object properties: benchmarkId: $ref: '#/components/schemas/BenchmarkId' groupId: $ref: '#/components/schemas/GroupId' groupTitle: $ref: '#/components/schemas/GroupTitle' ruleId: $ref: '#/components/schemas/RuleId' ruleTitle: $ref: '#/components/schemas/RuleTitle' severity: $ref: '#/components/schemas/RuleSeverity' unreviewed: type: array items: $ref: '#/components/schemas/UnreviewedRuleItem' required: - ruleId - groupId - benchmarkId - unreviewed UnreviewedRuleItem: additionalProperties: false type: object properties: assetId: $ref: '#/components/schemas/AssetId' labels: type: array items: $ref: '#/components/schemas/LabelBasic' name: $ref: '#/components/schemas/AssetName' result: $ref: '#/components/schemas/ChecklistResultUnreviewed' required: - result - assetId - name - labels UserBasic: additionalProperties: false type: object properties: userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' roleId: $ref: '#/components/schemas/RoleId' required: - userId - username UserBasicNullable: nullable: true additionalProperties: false type: object properties: userId: $ref: '#/components/schemas/UserIdNullable' username: $ref: '#/components/schemas/UsernameNullable' required: - userId - username UserBasicWithDisplayName: additionalProperties: false type: object properties: userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' displayName: $ref: '#/components/schemas/DisplayName' required: - userId - username - displayName UserCreateOrReplace: additionalProperties: false type: object properties: collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrant' uniqueItems: true userGroups: type: array items: $ref: '#/components/schemas/UserGroupId' uniqueItems: true default: [] username: $ref: '#/components/schemas/Username' status: $ref: '#/components/schemas/UserStatus' required: - username - collectionGrants UserGrant: type: object required: - userId - roleId properties: userId: $ref: '#/components/schemas/UserId' roleId: $ref: '#/components/schemas/RoleId' UserGrantProjected: additionalProperties: false type: object properties: grantId: $ref: '#/components/schemas/GrantId' roleId: $ref: '#/components/schemas/RoleId' user: $ref: '#/components/schemas/UserBasicWithDisplayName' required: - user - roleId UserGroup: type: object additionalProperties: false required: - userGroupId - name - description properties: userGroupId: $ref: '#/components/schemas/UserGroupId' name: $ref: '#/components/schemas/String255' description: $ref: '#/components/schemas/String255Nullable' UserGroupBasic: type: object additionalProperties: false required: - userGroupId - name properties: userGroupId: $ref: '#/components/schemas/UserGroupId' name: $ref: '#/components/schemas/String255' roleId: $ref: '#/components/schemas/RoleId' UserGroupCollectionGrant: additionalProperties: false type: object properties: roleId: $ref: '#/components/schemas/RoleId' collection: type: object properties: collectionId: $ref: '#/components/schemas/CollectionId' name: $ref: '#/components/schemas/CollectionName' UserGroupGrant: type: object required: - userGroupId - roleId additionalProperties: false properties: userGroupId: $ref: '#/components/schemas/UserGroupId' roleId: type: integer minimum: 1 maximum: 4 UserGroupGrantProjected: type: object required: - userGroup - roleId additionalProperties: false properties: grantId: $ref: '#/components/schemas/GrantId' userGroup: $ref: '#/components/schemas/UserGroup' roleId: $ref: '#/components/schemas/RoleId' UserGroupId: $ref: '#/components/schemas/StringIntId' UserGroupPatch: type: object additionalProperties: false minProperties: 1 properties: name: $ref: '#/components/schemas/String255' description: $ref: '#/components/schemas/String255Nullable' userIds: type: array items: $ref: '#/components/schemas/UserId' collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrant' uniqueItems: true UserGroupProjected: type: object additionalProperties: false required: - userGroupId - name - description properties: userGroupId: $ref: '#/components/schemas/UserGroupId' name: $ref: '#/components/schemas/String255' description: $ref: '#/components/schemas/String255Nullable' users: type: array items: $ref: '#/components/schemas/UserBasicWithDisplayName' collectionGrants: type: array items: $ref: '#/components/schemas/UserGroupCollectionGrant' attributions: $ref: '#/components/schemas/Attributions' UserGroupPostOrPut: type: object additionalProperties: false required: - name properties: name: $ref: '#/components/schemas/String255' description: $ref: '#/components/schemas/String255Nullable' userIds: type: array uniqueItems: true items: $ref: '#/components/schemas/UserId' collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrant' uniqueItems: true UserId: $ref: '#/components/schemas/StringIntId' UserIdNullable: $ref: '#/components/schemas/StringIntIdNullable' UserLastAccess: $ref: '#/components/schemas/IntegerMinimumZeroNullable' UserPatch: additionalProperties: false minProperties: 1 type: object properties: collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrant' uniqueItems: true userGroups: type: array items: $ref: '#/components/schemas/UserGroupId' uniqueItems: true username: $ref: '#/components/schemas/Username' status: $ref: '#/components/schemas/UserStatus' UserPost: additionalProperties: false type: object properties: collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrant' uniqueItems: true userGroups: type: array items: $ref: '#/components/schemas/UserGroupId' uniqueItems: true username: $ref: '#/components/schemas/Username' required: - collectionGrants - username UserPut: additionalProperties: false type: object properties: collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrant' uniqueItems: true userGroups: type: array items: $ref: '#/components/schemas/UserGroupId' uniqueItems: true username: $ref: '#/components/schemas/Username' status: $ref: '#/components/schemas/UserStatus' required: - collectionGrants - username UserPrivileges: type: object additionalProperties: false properties: admin: type: boolean create_collection: type: boolean UserProjected: additionalProperties: false type: object properties: collectionGrants: type: array items: $ref: '#/components/schemas/CollectionGrantProjected' displayName: $ref: '#/components/schemas/DisplayName' email: nullable: true type: string lastAccess: $ref: '#/components/schemas/UserLastAccess' privileges: $ref: '#/components/schemas/UserPrivileges' statistics: $ref: '#/components/schemas/UserStatistics' status: $ref: '#/components/schemas/UserStatus' statusDate: $ref: '#/components/schemas/UserStatusDate' statusUser: $ref: '#/components/schemas/UserStatusUser' userGroups: type: array items: $ref: '#/components/schemas/UserGroupBasic' userId: $ref: '#/components/schemas/UserId' username: $ref: '#/components/schemas/Username' webPreferences: $ref: '#/components/schemas/WebPreferences' required: - userId - username - displayName - email - lastAccess UserStatus: type: string enum: - available - unavailable UserStatusDate: $ref: '#/components/schemas/StringDateTime' UserStatusUser: $ref: '#/components/schemas/StringIntIdNullable' UserStatistics: additionalProperties: false type: object properties: collectionGrantCount: type: integer created: $ref: '#/components/schemas/Created' lastClaims: type: object required: - created - collectionGrantCount - lastClaims Username: $ref: '#/components/schemas/String255' UsernameNullable: $ref: '#/components/schemas/String255Nullable' WebPreferences: type: object properties: darkMode: type: boolean lastWhatsNew: type: string format: date additionalProperties: false required: - darkMode - lastWhatsNew WebPreferencesPatch: type: object properties: darkMode: type: boolean lastWhatsNew: type: string format: date additionalProperties: false minProperties: 1 Version: description: | Semver as defined by the BNF at semver.org pattern: ^(0|[1-9]\d*)\.(0|[1-9]\d*)\.(0|[1-9]\d*)(?:-([0-9A-Za-z-]+(?:\.[0-9A-Za-z-]+)*))?(?:\+([0-9A-Za-z-]+(?:\.[0-9A-Za-z-]+)*))?$ type: string VersionString: $ref: '#/components/schemas/String255' parameters: AppDataFormatQuery: name: format in: query description: The format of the appdata schema: $ref: '#/components/schemas/AppDataFormat' AssetIdArrayQuery: name: assetId in: query description: A query parameter that identifies a list of Assets schema: type: array uniqueItems: true minItems: 1 items: $ref: '#/components/schemas/AssetId' AssetIdPath: name: assetId in: path description: A path parameter that identifies an Asset required: true schema: $ref: '#/components/schemas/AssetId' AssetIdQuery: name: assetId in: query description: A query parameter that identifies an Asset schema: $ref: '#/components/schemas/AssetId' AssetProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - statusStats - stigs BenchmarkIdArrayQuery: name: benchmarkId in: query description: Filter by one or more benchmarkIds schema: type: array uniqueItems: true minItems: 1 items: $ref: '#/components/schemas/BenchmarkId' BenchmarkIdPath: name: benchmarkId in: path description: A path parameter that identifies a STIG required: true schema: $ref: '#/components/schemas/BenchmarkId' BenchmarkIdQuery: name: benchmarkId in: query description: A query parameter that identifies a STIG schema: $ref: '#/components/schemas/BenchmarkId' CciProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - emassAp - stigs - references CciQuery: name: cci in: query description: A query parameter that identifies a CCI schema: $ref: '#/components/schemas/CciString' CklModeQuery: name: mode in: query description: A query parameter that describes the CKL mode schema: type: string default: mono enum: - multi - mono CollectionIdPath: name: collectionId in: path description: A path parameter that identifies a Collection required: true schema: $ref: '#/components/schemas/CollectionId' CollectionIdQuery: name: collectionId required: true in: query description: A query parameter that identifies a Collection schema: $ref: '#/components/schemas/CollectionId' CollectionIdArrayQuery: name: collectionId required: false in: query description: Filter by one or more collectionIds schema: type: array uniqueItems: true minItems: 1 items: $ref: '#/components/schemas/CollectionId' CollectionProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - assets - grants - users - owners - statistics - stigs - labels CollectionsProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - owners - statistics CollectionStigProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - assets DryRunQuery: name: dryRun in: query description: If set to `true`, performs validation without persisting data. required: false schema: type: boolean DstCollectionIdPath: name: dstCollectionId in: path description: A path parameter that identifies a Collection required: true schema: $ref: '#/components/schemas/CollectionId' EndDateQuery: name: endDate in: query description: History entries with a timestamp after the specified end date. schema: $ref: '#/components/schemas/StringDate' ElevateQuery: name: elevate in: query description: Elevate the user context for this request if user is permitted (canAdmin) schema: type: boolean default: false FindingAggregatorQuery: name: aggregator required: true in: query description: Aggregate the findings on this property schema: type: string minLength: 1 enum: - ruleId - groupId - cci FindingProjectionQuery: name: projection in: query description: Optional properties to return style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - assets - groups - rules - stigs - ccis ForceQuery: name: force in: query description: Force an action, such as a delete, that would otherwise not be permitted schema: type: boolean default: false GrantIdPath: name: grantId in: path description: A path parameter that identifies a Grant required: true schema: $ref: '#/components/schemas/GrantId' GroupIdQuery: name: groupId in: query description: A query parameter that identifies a Group schema: $ref: '#/components/schemas/GroupId' GroupProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - rules JobIdPath: name: jobId in: path description: A path parameter that identifies a Job required: true schema: $ref: '#/components/schemas/JobId' JobRunIdPath: name: runId in: path description: A path parameter that identifies a Job Run required: true schema: $ref: '#/components/schemas/JobRunId' JsonPathQuery: name: jsonpath in: query description: A JSONPath expression schema: $ref: '#/components/schemas/String255' LabelIdPath: name: labelId in: path required: true description: A path parameter that specifies a Label schema: $ref: '#/components/schemas/LabelId' LabelIdQuery: name: labelId in: query description: Selects Assets by labelId schema: type: array uniqueItems: true minItems: 1 items: $ref: '#/components/schemas/LabelId' LabelMatchQuery: name: labelMatch in: query description: Selectes Assets without labels schema: type: string enum: - 'null' LabelNameQuery: name: labelName in: query description: Selectes Assets by label name schema: type: array uniqueItems: true minItems: 1 items: $ref: '#/components/schemas/LabelName' MetadataKeyPath: name: key in: path required: true description: A path parameter that specifies a metadata key schema: pattern: '^([\w\.]+)$' type: string MetadataQuery: name: metadata in: query description: A query parameter that specifies metadata key:value pairs to select matching Objects schema: type: array uniqueItems: true minItems: 1 items: pattern: '^([\w\.]+:.*?)$' type: string MetricsFormatQuery: name: format in: query description: The format of the response body schema: type: string default: 'json' enum: - json - csv NameQuery: name: name in: query description: Matches against the name according to the `name-match` parameter schema: type: string NameMatchQuery: name: name-match in: query description: How to match against the `name` parameter schema: type: string default: exact enum: - exact - startsWith - endsWith - contains PoamAggregatorQuery: name: aggregator required: true in: query description: Aggregate the findings on this property schema: type: string enum: - ruleId - groupId PoamFormatQuery: name: format in: query description: Value for POAM format (ie. EMASS, MCCAST) schema: type: string enum: - EMASS - MCCAST default: EMASS PrivilegeQuery: name: privilege in: query description: Selects Users with the specified privilege schema: type: string enum: - admin - create_collection RetentionDateQuery: name: retentionDate in: query description: Delete history entries with a timestamp earlier than the specified retention date. required: true schema: $ref: '#/components/schemas/StringDate' ReviewProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - metadata - rule - stigs - history ReviewHistoryStatsProjectionQuery: name: projection in: query description: Return review history statistics with the specified level of granularity. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - asset ReviewsProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - metadata - rule - stigs ReviewResultQuery: name: result in: query schema: $ref: '#/components/schemas/ReviewResult' ReviewRulesQuery: name: rules in: query description: default - rules from the default revision of a STIG in the Collection.
mapped - rules from any version of a STIG assigned to the Asset schema: type: string default: default-mapped enum: - all - default - default-mapped - mapped - not-default - not-default-mapped - not-mapped ReviewStatusQuery: name: status in: query schema: $ref: '#/components/schemas/ReviewStatusLabel' RevisionIdArrayQuery: name: revisionId in: query description: Filter by one or more revisionIds (benchmarkId-version-release) If Revision specified is not the default rev for at least one Collection, response will be empty. schema: type: array uniqueItems: true minItems: 1 items: type: string RevisionStrPath: name: revisionStr in: path description: A path parameter that identifies a STIG revision [V{version_num}R{release_num} | 'latest' ] required: true schema: $ref: '#/components/schemas/RevisionStr' RuleIdPath: name: ruleId in: path description: A path parameter that identifies a Rule required: true schema: $ref: '#/components/schemas/RuleId' RuleIdQuery: name: ruleId in: query description: Selects Reviews of a Rule schema: $ref: '#/components/schemas/RuleId' RuleProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - detail - ccis - check - fix - ruleIds - stigs RuleSeverityQuery: name: severity in: query description: Selects Rules with the specified severity style: form explode: true schema: type: array uniqueItems: true minItems: 1 maxItems: 2 items: $ref: '#/components/schemas/RuleSeverity' RunSequenceQuery: name: after-seq in: query description: The starting sequence number of the run output to retrieve. If not specified, all run output is returned. schema: type: integer minimum: 0 StartDateQuery: name: startDate in: query description: History entries with a timestamp before the specified start date. schema: $ref: '#/components/schemas/StringDate' StigProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array items: type: string enum: - revisions UnreviewedAssetsProjectionQuery: name: projection in: query description: Additional properties to include in the `unreviewed` objects. style: form explode: true schema: type: array items: type: string enum: - ruleTitle - groupTitle UnreviewedRulesProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array items: type: string enum: - ruleTitle - groupTitle UserGroupIdPath: name: userGroupId in: path description: A path parameter that identifies a User Group required: true schema: $ref: '#/components/schemas/UserGroupId' UserGroupProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array items: type: string enum: - users - collections - collectionGrants - attributions UserIdPath: name: userId in: path description: A path parameter that identifies a User required: true schema: $ref: '#/components/schemas/UserId' UserIdQuery: name: userId in: query description: A query parameter that identifies a User schema: $ref: '#/components/schemas/UserId' UsernameQuery: name: username in: query description: Matches against the username according to the `username-match` parameter schema: $ref: '#/components/schemas/Username' UsernameMatchQuery: name: username-match in: query description: How to match against the `username` parameter schema: type: string default: exact enum: - exact - startsWith - endsWith - contains UserStatusQuery: name: status in: query description: A query parameter that identifies a UserStatus schema: $ref: '#/components/schemas/UserStatus' UserPreferenceQuery: name: projection in: query description: A query parameter that identifies a UserPreference schema: type: string enum: - webPreferences UserProjectionQuery: name: projection in: query description: Additional properties to include in the response. style: form explode: true schema: type: array uniqueItems: true minItems: 1 items: type: string enum: - collectionGrants - statistics - userGroups - webPreferences responses: Forbidden: description: The requesting User does not have access rights to the content content: application/json: schema: $ref: '#/components/schemas/Error' securitySchemes: oauth: type: openIdConnect openIdConnectUrl: http://localhost:8080/realms/stigman/.well-known/openid-configuration # supported oauth scopes: # - stig-manager # - 'stig-manager:op' # - 'stig-manager:op:read' # - 'stig-manager:stig' # - 'stig-manager:stig:read' # - 'stig-manager:collection' # - 'stig-manager:collection:read' # - 'stig-manager:user' # - 'stig-manager:user:read' ================================================ FILE: api/source/tls/README.md ================================================ Optional: Place your TLS/SSL certificates and keys here ================================================ FILE: api/source/utils/PoolMonitor.js ================================================ /** * Class representing a PoolMonitor. * Monitors the database connection status and determines if the API should enter an Unavailable state. */ class PoolMonitor { /** * Creates an instance of PoolMonitor. * @param {Object} options - Constructor options. * @param {Object} options.pool - The mysql2 PromisePool object. * @param {Object} options.state - The API state object. * @param {number} [options.retryInterval=40000] - The interval at which to execute the retryFn (in milliseconds). * @param {Function} [options.retryFn=async ()=>{})] - The retry function. * @throws {Error} Throws an error if pool or state is not provided. */ constructor({ pool, state, retryInterval = 40000, retryFn = async () => {} }) { if (!pool || !state) { throw new Error('PoolMonitor requires a pool and state object.') } this.pool = pool this.state = state this.retryInterval = retryInterval this.retryFn = retryFn this.retries = 0 this.pool.on('remove', this.onRemove.bind(this)) } /** * Handler for the pool's remove event. * Sets the database status based on the pool's connection status. */ onRemove() { const poolIsEmpty = this.pool.pool._allConnections.length === 0 if (poolIsEmpty && this.state.dependencyStatus.db) { this.state.setDbStatus(false) this.retries = 0 this.timeoutId = setTimeout(this.callRetryFn.bind(this), this.retryInterval) } } /** * Calls the instance's retry function. * If successful, sets the database status to true and clears the retry interval. * If unsuccessful, increments the retry count and schedules the next retry. */ async callRetryFn() { try { await this.retryFn() this.state.setDbStatus(true) } catch (error) { this.retries++ this.timeoutId = setTimeout(this.callRetryFn.bind(this), this.retryInterval) } } } module.exports = PoolMonitor ================================================ FILE: api/source/utils/asyncApiValidator.js ================================================ /** * Lightweight AsyncAPI 3.0 message validator. * * Builds AJV-compiled validators from an AsyncAPI 3.0 YAML spec file. * Provides a validate(key, payload, channel, operation) method for runtime * message validation on any channel defined in the spec. * * Parser limitations (not AsyncAPI requirements — these are constraints of this * module's simplified parsing approach): * - Only handles AsyncAPI 3.0 (not 2.x, which has a different structure) * - Spec must be a single YAML file (no external file $ref references) * - Circular $ref references will throw an error (detected via visited set) * - $ref pointers are only resolved within components/schemas * - Each message must have a `name` field (AsyncAPI makes this optional; we * use it as the validation lookup key, same role as asyncapi-validator's * msgIdentifier option) * - Message payloads must use a $ref to components/schemas (inline schemas * are not supported) * - Operations must include a `messages` array (AsyncAPI makes this optional, * defaulting to all channel messages; we require it to be explicit) * * Background: * Replaces the asyncapi-validator npm package, which was removed because its * dependency chain (asyncapi-validator -> @asyncapi/parser -> @stoplight/spectral-core * -> minimatch@3.1.2) included a version of minimatch vulnerable to CVE-2026-27904 * (catastrophic regex backtracking). The asyncapi-validator package was not receiving * regular updates, and all alternative AsyncAPI message validation packages * (e.g., asyncapi-validation) also depend on @asyncapi/parser, so they would * introduce the same vulnerability. * * Why js-yaml instead of @asyncapi/parser: * @asyncapi/parser is a full-featured AsyncAPI spec parser that validates the spec * itself, resolves multi-file $ref chains, handles protocol bindings, and produces * a rich document model. Our specs are single self-contained files with only * intra-file $ref references and simple JSON schemas. js-yaml gives us the parsed * YAML object, and we resolve the $ref chains ourselves in ~15 lines. This * eliminates the entire @asyncapi/parser dependency tree (~160 packages) while * preserving identical validation behavior. * * Spec validation: * This module does not validate that the YAML file is a valid AsyncAPI document. * It trusts the spec structure. To validate a spec against the AsyncAPI schema, * use the AsyncAPI CLI (also enforced in CI via api-spec-validation.yml): * npx @asyncapi/cli validate api/source/specification/log-socket.yaml */ const Ajv = require('ajv') const addFormats = require('ajv-formats') const fs = require('node:fs') const jsYaml = require('js-yaml') class AsyncApiValidator { constructor(channels, ajv) { this._channels = channels this._ajv = ajv } /** * Validate a message payload against the schema defined in the AsyncAPI spec. * @param {string} key - Message name as defined in the spec (e.g., 'authorize', 'log') * @param {object} payload - The message object to validate * @param {string} channel - Channel name (e.g., 'logStream') * @param {string} operation - 'send' or 'receive' * @throws {Error} if validation fails or the key/channel/operation is not found */ validate(key, payload, channel, operation) { const channelDef = this._channels[channel] if (!channelDef) { throw new Error(`channel "${channel}" not found`) } const operationDef = channelDef[operation] if (!operationDef) { throw new Error(`operation "${operation}" not found on channel "${channel}"`) } const validateFn = operationDef[key] if (!validateFn) { throw new Error(`message "${key}" on channel "${channel}" operation "${operation}" not found`) } const valid = validateFn(payload) if (!valid) { throw new Error(this._ajv.errorsText(validateFn.errors)) } return true } } /** * Recursively resolve $ref pointers within a JSON Schema object. * Only handles intra-file references to components/schemas. * Tracks visited refs to detect circular references. */ function resolveRefs(node, schemas, visited = new Set()) { if (!node || typeof node !== 'object') return node if (node.$ref) { const refName = node.$ref.split('/').pop() if (visited.has(refName)) { throw new Error(`Circular $ref detected: ${refName}`) } if (!schemas[refName]) { throw new Error(`Dangling $ref: "${node.$ref}" not found in components/schemas`) } return resolveRefs(schemas[refName], schemas, new Set(visited).add(refName)) } if (Array.isArray(node)) { return node.map(item => resolveRefs(item, schemas, visited)) } const resolved = {} for (const [key, value] of Object.entries(node)) { resolved[key] = resolveRefs(value, schemas, visited) } return resolved } /** * Build an AsyncApiValidator from an AsyncAPI 3.0 YAML spec file. * Parses the spec, resolves $ref chains, and pre-compiles AJV validators * for each message type grouped by channel and operation (send/receive). * * Messages are keyed by their `name` field in the spec. See the module-level * JSDoc for full spec requirements. * * @param {string} schemaPath - Absolute path to the AsyncAPI YAML file * @returns {AsyncApiValidator} */ function fromSource(schemaPath) { const yamlContent = fs.readFileSync(schemaPath, 'utf8') const spec = jsYaml.load(yamlContent) const ajv = new Ajv({ allErrors: true, strict: false, unicodeRegExp: false }) addFormats(ajv) const schemas = spec.components.schemas const messages = spec.components.messages const channels = {} for (const operation of Object.values(spec.operations)) { const channelName = operation.channel.$ref.split('/').pop() const action = operation.action for (const msgRefObj of operation.messages) { // Resolve through channels to components/messages const refParts = msgRefObj.$ref.split('/') // e.g., '#/channels/logStream/messages/AuthorizeResponse' const channelMsgEntry = spec.channels[refParts[2]].messages[refParts[4]] const componentMsgName = channelMsgEntry.$ref.split('/').pop() const message = messages[componentMsgName] const msgKey = message.name const schemaName = message.payload.$ref.split('/').pop() const payloadSchema = resolveRefs(schemas[schemaName], schemas) const validateFn = ajv.compile(payloadSchema) channels[channelName] ??= {} channels[channelName][action] ??= {} channels[channelName][action][msgKey] = validateFn } } return new AsyncApiValidator(channels, ajv) } module.exports = { fromSource } ================================================ FILE: api/source/utils/auth.js ================================================ const config = require('./config') const logger = require('./logger') const jwt = require('jsonwebtoken') const retry = require('async-retry') const UserService = require(`../service/UserService`) const SmError = require('./error') const state = require('./state') const JWKSCache = require('./jwksCache') const { Agent, fetch } = require('undici'); const fs = require('node:fs'); const path = require('node:path') let jwksCache let initAttempt = 0 // Helper function to safely traverse object properties using dot notation function getClaimByPath(obj, path = config.oauth.claims.privilegesRaw) { if (!obj || !path) return []; try { // Split the path by dots and traverse the object const keys = path.split('.'); let value = obj; for (const key of keys) { if (value == null) return []; value = value[key]; } return value || []; } catch { return []; } } // Helper function to decode and validate the JWT structure function decodeToken(tokenJWT) { const tokenObj = jwt.decode(tokenJWT, { complete: true }) if (!tokenObj) { throw new SmError.AuthorizeError("Token is not valid JWT") } return tokenObj } // Helper function to check for insecure kids function checkInsecureKid(tokenObj) { if (!config.oauth.allowInsecureTokens && config.oauth.insecureKids.includes(tokenObj.header.kid)) { throw new SmError.InsecureTokenError(`Insecure kid found: ${tokenObj.header.kid}`) } } // Helper function to retrieve the signing key async function getSigningKey(tokenObj) { let signingKey = jwksCache.getKey(tokenObj.header.kid) if (signingKey === null) { const result = await jwksCache.refreshCache(false) // Will not retry on failure if (result) { signingKey = jwksCache.getKey(tokenObj.header.kid) } if (!result || !signingKey) { signingKey = 'unknown' jwksCache.setKey(tokenObj.header.kid, signingKey) logger.writeWarn('auth', 'unknownKid', { kid: tokenObj.header.kid }) } } if (signingKey === 'unknown') { throw new SmError.SigningKeyNotFoundError(`Signing key unknown for kid: ${tokenObj.header.kid}`) } return signingKey } // Helper function to verify the token function verifyToken(tokenJWT, signingKey) { const options = config.oauth.audienceValue ? {audience: config.oauth.audienceValue} : undefined try { jwt.verify(tokenJWT, signingKey, options) } catch (e) { throw new SmError.AuthorizeError(e.message) } } // express middleware to validate token const validateToken = async function (req, res, next) { try { const tokenJWT = getBearerToken(req) if (tokenJWT) { const tokenObj = decodeToken(tokenJWT) checkInsecureKid(tokenObj) const signingKey = await getSigningKey(tokenObj) verifyToken(tokenJWT, signingKey) req.access_token = tokenObj.payload req.bearer = tokenJWT } next() } catch (e) { next(e) } } // express middleware to setup user object, expects to be called after validateToken() const setupUser = async function (req, res, next) { try { if (req.access_token) { // Get decoded JWT payload from request const tokenPayload = req.access_token // Get username from configured claims in token, or fall back through precedence list. const usernamePrecedence = [config.oauth.claims.username, "preferred_username", config.oauth.claims.servicename, "azp", "client_id", "clientId"] const username = tokenPayload[usernamePrecedence.find(element => !!tokenPayload[element])] // If no username found, throw Privilege error if (username === undefined) { throw new SmError.AuthorizeError("No token claim mappable to username found") } const userObject = await UserService.getUserObject(username) ?? {username} if (userObject.status === 'unavailable') { throw new SmError.UserUnavailableError() } const refreshFields = {} let now = new Date().toUTCString() now = new Date(now).getTime() now = now / 1000 | 0 //https://stackoverflow.com/questions/7487977/using-bitwise-or-0-to-floor-a-number if (!userObject?.lastAccess || now - userObject?.lastAccess >= config.settings.lastAccessResolution) { refreshFields.lastAccess = now } if (!userObject?.lastClaims || tokenPayload[config.oauth.claims.assertion] !== userObject?.lastClaims?.[config.oauth.claims.assertion]) { refreshFields.lastClaims = JSON.stringify(tokenPayload) } if (refreshFields.lastAccess || refreshFields.lastClaims) { const userId = await UserService.setUserData(userObject, refreshFields) if (userId != userObject.userId) { userObject.userId = userId.toString() } } // Get privileges and check elevate param userObject.privileges = { create_collection: getClaimByPath(tokenPayload).includes('create_collection'), admin: getClaimByPath(tokenPayload).includes('admin') } if ('elevate' in req.query && (req.query.elevate === 'true' && !userObject.privileges.admin)) { throw new SmError.InvalidElevationError() } req.userObject = userObject } next() } catch (e) { next(e) } } // express-openapi-validator security handler const validateOauthSecurity = function (req, requiredScopes) { if (!req.access_token) { throw new SmError.NoTokenError() } // Get decoded JWT payload from request const tokenPayload = req.access_token // Check scopes const grantedScopes = typeof tokenPayload[config.oauth.claims.scope] === 'string' ? tokenPayload[config.oauth.claims.scope].split(' ') : tokenPayload[config.oauth.claims.scope] const commonScopes = grantedScopes.filter(gs => requiredScopes.some(rs => { if (gs === rs) return true const gsTokens = gs.split(':').filter(i => i.length) const rsTokens = rs.split(':').filter(i => i.length) return gsTokens.length > 0 && gsTokens.every((t, i) => rsTokens[i] === t) }) ) if (commonScopes.length == 0) { throw new SmError.OutOfScopeError() } return true } // utility to extract bearer token from request const getBearerToken = req => { if (!req.headers.authorization) return const headerParts = req.headers.authorization.split(' ') if (headerParts[0].toLowerCase() === 'bearer') return headerParts[1] } // Check if JWKS contains any insecure key IDs const containsInsecureKids = (kids) => { return kids.some(kid => config.oauth.insecureKids.includes(kid)) } // setup the JWKS key handling client const setupJwks = async function (jwksUri, caCerts) { jwksCache = new JWKSCache({ jwksUri, caCerts, cacheMaxAge: config.oauth.cacheMaxAge * 60 * 1000, // convert minutes to milliseconds }) jwksCache.on('cacheUpdate', (cache) => { logger.writeDebug('auth', 'jwksCacheEvent', { event: 'cacheUpdate', kids: jwksCache.getKidTypes() }) }) jwksCache.on('cacheStale', (cache) => { logger.writeDebug('auth', 'jwksCacheEvent', { event: 'cacheStale', message: cache }) state.setOidcStatus(false) jwksCache.once('cacheUpdate', (cache) => { state.setOidcStatus(true) }) }) // refresh cache of signing keys const cacheResult = await jwksCache.refreshCache(false) // will not retry on failure if (!cacheResult) throw new Error('refresh jwks cache failed') const kids = jwksCache.getKids() if (!config.oauth.allowInsecureTokens && containsInsecureKids(kids)) { throw new Error('insecure_kid - JWKS contains insecure key IDs and STIGMAN_DEV_ALLOW_INSECURE_TOKENS is false') } logger.writeDebug('auth', 'discovery', { jwksUri, kids: jwksCache.getKidTypes() }) } const getCaCerts = () => { if (config.oauth.caCerts) { try { return fs.readFileSync(config.oauth.caCerts); } catch (e) { logger.writeError('auth', 'getCaCerts', { message: `Failed to read CA certificates from path: ${config.oauth.caCerts}`, error: e.message }) throw new Error(`Failed to read CA certificates from path: ${config.oauth.caCerts}`) } } } async function initializeAuth() { const retries = config.settings.dependencyRetries const metadataUri = `${config.oauth.authority}/.well-known/openid-configuration` let jwksUri let dispatcher let caCerts = null if (config.oauth.caCerts) { caCerts = getCaCerts() dispatcher = new Agent({ connect: { ca: caCerts } }) logger.writeInfo('auth', 'initializeAuth', { message: 'Using custom CA certificates to validate OIDC provider connections' }) } async function getJwks(bail) { logger.writeDebug('auth', 'discovery', { metadataUri, attempt: ++initAttempt }) const response = await fetch(metadataUri, { method: 'GET', dispatcher }) const openidConfig = await response.json() logger.writeDebug('auth', 'discovery', { metadataUri, metadata: openidConfig}) if (!openidConfig.jwks_uri) { const message = "No jwks_uri property found in oidcConfig" logger.writeError('auth', 'discovery', { success: false, metadataUri, message }) bail(new Error(message)) // Bail if jwks_uri is not found return // return after bail } jwksUri = openidConfig.jwks_uri try { await setupJwks(jwksUri, caCerts) } catch (error) { // If the error is from insecure kids detection, bail immediately if (error.message.startsWith('insecure_kid -')) { logger.writeError('auth', 'discovery', { success: false, metadataUri, message: error.message }) bail(error) // This will immediately stop retrying return // Make sure to return after bail } throw error // Other errors will be retried } } await retry(getJwks, { retries, factor: 1, minTimeout: 5 * 1000, maxTimeout: 5 * 1000, onRetry: (error) => { state.setOidcStatus(false) logger.writeError('auth', 'discovery', { success: false, metadataUri, message: error.message }) } }) logger.writeInfo('auth', 'discovery', { success: true, metadataUri, jwksUri }) state.setOidcStatus(true) } module.exports = { validateToken, setupUser, validateOauthSecurity, initializeAuth, getClaimByPath, checkInsecureKid, decodeToken, getSigningKey, verifyToken } ================================================ FILE: api/source/utils/buffer-json.js ================================================ function stringify (value, space) { return JSON.stringify(value, replacer, space) } function parse (text) { return JSON.parse(text, reviver) } function replacer (key, value) { if (isBufferLike(value)) { if (isArray(value.data)) { if (value.data.length > 0) { value.data = 'base64:' + Buffer.from(value.data).toString('base64') } else { value.data = '' } } } return value } function reviver (key, value) { if (isBufferLike(value)) { if (isArray(value.data)) { return Buffer.from(value.data) } else if (isString(value.data)) { if (value.data.startsWith('base64:')) { return Buffer.from(value.data.slice('base64:'.length), 'base64') } // Assume that the string is UTF-8 encoded (or empty). return Buffer.from(value.data) } } return value } function isBufferLike (x) { return ( isObject(x) && x.type === 'Buffer' && (isArray(x.data) || isString(x.data)) ) } function isArray (x) { return Array.isArray(x) } function isString (x) { return typeof x === 'string' } function isObject (x) { return typeof x === 'object' && x !== null } module.exports = { stringify, parse, replacer, reviver } ================================================ FILE: api/source/utils/config.js ================================================ const ourPackage = require("../package.json") // Array of known insecure kid values const insecureKids = ['FJ86GcF3jTbNLOco4NvZkUCIUmfYCqoqtOQeMfbhNlE'] const config = { version: `${process.env.COMMIT_DESCRIBE ? process.env.COMMIT_DESCRIBE.replace(/-g[0-9a-f]+$/, "").replace(/-/g, "+") : ourPackage.version}`, commit: { branch: process.env.COMMIT_BRANCH || 'na', sha: process.env.COMMIT_SHA || 'na', tag: process.env.COMMIT_TAG || 'na', describe: process.env.COMMIT_DESCRIBE || 'na' }, settings: { setClassification: process.env.STIGMAN_CLASSIFICATION ?? "NONE", lastAccessResolution: 60, // Supported STIGMAN_DEV_RESPONSE_VALIDATION values: // "logOnly" (logs failing response, but still sends them) // "none"(no validation performed) responseValidation: process.env.STIGMAN_DEV_RESPONSE_VALIDATION || "none", dependencyRetries: process.env.STIGMAN_DEPENDENCY_RETRIES || 24 }, client: { clientId: process.env.STIGMAN_CLIENT_ID || "stig-manager", consoleMode: process.env.STIGMAN_CLIENT_CONSOLE_MODE || "production", displayAppManagers: process.env.STIGMAN_CLIENT_DISPLAY_APPMANAGERS || "true", idleTimeoutUser: (() => { const val = parseInt(process.env.STIGMAN_CLIENT_USER_TIMEOUT) if (isNaN(val) || val < 0) return 0 return val })(), idleTimeoutAdmin: (() => { const val = parseInt(process.env.STIGMAN_CLIENT_ADMIN_TIMEOUT) if (isNaN(val) || val < 0) return 0 return val })(), authority: process.env.STIGMAN_CLIENT_OIDC_PROVIDER || process.env.STIGMAN_OIDC_PROVIDER || "http://localhost:8080/realms/stigman", apiBase: process.env.STIGMAN_CLIENT_API_BASE || "api", disabled: process.env.STIGMAN_CLIENT_DISABLED === "true", directory: process.env.STIGMAN_CLIENT_DIRECTORY || '../../client/dist', extraScopes: process.env.STIGMAN_CLIENT_EXTRA_SCOPES, scopePrefix: process.env.STIGMAN_CLIENT_SCOPE_PREFIX, responseMode: process.env.STIGMAN_CLIENT_RESPONSE_MODE || "fragment", reauthAction: process.env.STIGMAN_CLIENT_REAUTH_ACTION || "popup", strictPkce: process.env.STIGMAN_CLIENT_STRICT_PKCE !== 'false', stateEvents: process.env.STIGMAN_CLIENT_STATE_EVENTS !== 'false', welcome: { image: process.env.STIGMAN_CLIENT_WELCOME_IMAGE || "", message: process.env.STIGMAN_CLIENT_WELCOME_MESSAGE || "", title: process.env.STIGMAN_CLIENT_WELCOME_TITLE || "", link: process.env.STIGMAN_CLIENT_WELCOME_LINK || "" } }, docs: { disabled: process.env.STIGMAN_DOCS_DISABLED === "true", docsDirectory: process.env.STIGMAN_DOCS_DIRECTORY || '../../docs/_build/html', }, http: { address: process.env.STIGMAN_API_ADDRESS || "0.0.0.0", port: process.env.STIGMAN_API_PORT || 54000, maxJsonBody: process.env.STIGMAN_API_MAX_JSON_BODY || "31457280", maxUpload: process.env.STIGMAN_API_MAX_UPLOAD || "1073741824", tls: { key_file: process.env.STIGMAN_API_TLS_KEY_FILE, key_passphrase: process.env.STIGMAN_API_TLS_KEY_PASSPHRASE, cert_file: process.env.STIGMAN_API_TLS_CERT_FILE } }, database: { host: process.env.STIGMAN_DB_HOST || "localhost", port: process.env.STIGMAN_DB_PORT || 3306, schema: process.env.STIGMAN_DB_SCHEMA || "stigman", username: process.env.STIGMAN_DB_USER || "stigman", password: process.env.STIGMAN_DB_PASSWORD, maxConnections: process.env.STIGMAN_DB_MAX_CONNECTIONS || 25, tls: { ca_file: process.env.STIGMAN_DB_TLS_CA_FILE, cert_file: process.env.STIGMAN_DB_TLS_CERT_FILE, key_file: process.env.STIGMAN_DB_TLS_KEY_FILE }, revert: process.env.STIGMAN_DB_REVERT === "true", toJSON: function () { let {password, ...props} = this props.password = !!password return props } }, swaggerUi: { enabled: process.env.STIGMAN_SWAGGER_ENABLED === "true", authority: process.env.STIGMAN_SWAGGER_OIDC_PROVIDER || process.env.STIGMAN_SWAGGER_AUTHORITY || process.env.STIGMAN_OIDC_PROVIDER || "http://localhost:8080/auth/realms/stigman", server: process.env.STIGMAN_SWAGGER_SERVER || "http://localhost:54000/api", oauth2RedirectUrl: process.env.STIGMAN_SWAGGER_REDIRECT || "http://localhost:54000/api-docs/oauth2-redirect.html" }, oauth: { authority: process.env.STIGMAN_OIDC_PROVIDER || process.env.STIGMAN_API_AUTHORITY || "http://localhost:8080/realms/stigman", audienceValue: process.env.STIGMAN_JWT_AUD_VALUE, allowInsecureTokens: process.env.STIGMAN_DEV_ALLOW_INSECURE_TOKENS === "true", caCerts: process.env.STIGMAN_OIDC_CA_CERTS, insecureKids, cacheMaxAge: Math.min(Math.max(process.env.STIGMAN_JWKS_CACHE_MAX_AGE, 1) || 10, 35791), claims: { scope: process.env.STIGMAN_JWT_SCOPE_CLAIM || "scope", username: process.env.STIGMAN_JWT_USERNAME_CLAIM || "preferred_username", servicename: process.env.STIGMAN_JWT_SERVICENAME_CLAIM, name: process.env.STIGMAN_JWT_NAME_CLAIM || process.env.STIGMAN_JWT_USERNAME_CLAIM || "name", privileges: formatMySqlJsonPath(process.env.STIGMAN_JWT_PRIVILEGES_CLAIM || "realm_access.roles"), privilegesChain: formatJsChain(process.env.STIGMAN_JWT_PRIVILEGES_CLAIM || "realm_access.roles"), privilegesRaw: process.env.STIGMAN_JWT_PRIVILEGES_CLAIM || "realm_access.roles", email: process.env.STIGMAN_JWT_EMAIL_CLAIM || "email", assertion: process.env.STIGMAN_JWT_ASSERTION_CLAIM || "jti" } }, log: { level: parseInt(process.env.STIGMAN_LOG_LEVEL) || 3, mode: process.env.STIGMAN_LOG_MODE || 'combined', optStats: process.env.STIGMAN_DEV_LOG_OPT_STATS === "true" }, experimental: { appData: process.env.STIGMAN_EXPERIMENTAL_APPDATA === "true", logStream: process.env.STIGMAN_EXPERIMENTAL_LOGSTREAM !== "false" } } function formatJsChain(path) { const components = path?.split('.') if (components?.length === 1) return path for (let x=0; x < components.length; x++) { components[x] = `['${components[x]}']` } return components.join('?.') } function formatMySqlJsonPath(path) { return path?.split('.').map(p => `"${p}"`).join('.') } module.exports = config ================================================ FILE: api/source/utils/error.js ================================================ class SmError extends Error { constructor(message) { super(message) // Ensure the name of this error is the same as the class name this.name = this.constructor.name // This clips the constructor invocation from the stack trace. // It's not absolutely essential, but it does make the stack trace a little nicer. // @see Node.js reference (bottom) Error.captureStackTrace(this, this.constructor) this.toJSON = () => ({ error: this.message }) } } class ClientError extends SmError { constructor(detail) { super('Incorrect request.') this.status = 400 this.detail = detail } } class AuthorizeError extends SmError { constructor(detail) { super('Request not authorized.') this.status = 401 this.detail = detail } } class PrivilegeError extends SmError { constructor(detail) { super('User has insufficient privilege to complete this request.') this.status = 403 this.detail = detail } } class NotFoundError extends SmError { constructor(detail) { super('Resource not found.') this.status = 404 this.detail = detail } } class UnprocessableError extends SmError { constructor(detail) { super('Unprocessable Entity.') this.status = 422 this.detail = detail } } class InternalError extends SmError { constructor(error) { super(error.message) this.status = 500 this.detail = { error } } } class OIDCProviderError extends SmError { constructor(detail) { super('OIDC Provider is unreachable, unable to validate token.') this.status = 503 this.detail = detail } } class SigningKeyNotFoundError extends SmError { constructor(detail) { super('Unknown signing key, unable to validate token.') this.status = 401 this.detail = detail } } class InsecureTokenError extends SmError { constructor(detail) { super('Insecure token presented and STIGMAN_DEV_ALLOW_INSECURE_TOKENS is false.') this.status = 401 this.detail = detail } } class NoTokenError extends SmError { constructor(detail) { super('Request requires an access token.') this.status = 401 this.detail = detail } } class OutOfScopeError extends SmError { constructor(detail) { super('Required scopes were not found in token.') this.status = 403 this.detail = detail } } class ElevationError extends SmError { constructor(detail) { super('Request requires parameter elevate=true.') this.status = 403 this.detail = detail } } class InvalidElevationError extends SmError { constructor(detail) { super('Invalid use of parameter elevate=true.') this.status = 403 this.detail = detail } } class UserUnavailableError extends SmError { constructor(detail) { super('User status is "unavailable".') this.status = 403 this.detail = detail } } class UserInconsistentError extends SmError { constructor(detail) { super('Setting collectionGrants or userGroups is inconsistent with status "unavailable".') this.status = 422 this.detail = detail } } class EndpointUnavailableError extends SmError { constructor(detail) { super('Endpoint is unavailable.') this.status = 409 this.detail = detail } } class ModeLockedError extends SmError { constructor(detail) { super('API mode is locked.') this.status = 409 this.detail = detail } } module.exports = { SmError, AuthorizeError, PrivilegeError, NotFoundError, ClientError, UnprocessableError, OIDCProviderError, SigningKeyNotFoundError, NoTokenError, OutOfScopeError, ElevationError, InvalidElevationError, InternalError, InsecureTokenError, UserUnavailableError, UserInconsistentError, EndpointUnavailableError, ModeLockedError } ================================================ FILE: api/source/utils/escape.js ================================================ /** * Escapes XML reserved characters with named entity references. * @param {string} value - The string to escape. * @returns {string} The escaped string. */ module.exports.escapeForXml = function (name, value) { /** * Regex matches characters that need to be escaped in XML. * @type {RegExp} */ const regexEscapeXml = /["&'<>]/g /** * Map of characters to their corresponding named XML entities. * @type {Object.} */ const escapeMapXml = { '"': '"', '&': '&', '\'': ''', '<': '<', '>': '>' } return value.toString().replace(regexEscapeXml, function ($0) { return escapeMapXml[$0] }) } /** * Escapes filesystem reserved characters with named entity references. * @param {string} value - The string to escape. * @returns {string} The escaped string. */ module.exports.escapeFilename = function (value) { /** * Regexes match characters that need to be escaped in filenames. * @type {RegExp} */ const osReserved = /[/\\:*"?<>|]/g const controlChars = /[\x00-\x1f]/g /** * Map of characters to their corresponding named HTML entities. * @type {Object.} */ const osReserveReplace = { '/': '/', '\\': '\', ':': ':', '*': '*', '"': '"', '?': '?', '<': '<', '>': '>', '|': '|', } return value.toString() .replace(osReserved, (match) => osReserveReplace[match]) .replace(controlChars, (match) => `&#x${match.charCodeAt(0).toString().padStart(2,'0')};`) .substring(0, 255) } module.exports.filenameComponentFromDate = function (dateObject = new Date()) { return dateObject.toISOString().replace(/:|\d{2}\.\d{3}/g,'') } ================================================ FILE: api/source/utils/jwksCache.js ================================================ const EventEmitter = require('node:events') const crypto = require('node:crypto') const http = require('node:http') const https = require('node:https') const logger = require('./logger') class JWKSCache extends EventEmitter { constructor({ jwksUri, caCerts, cacheMaxAge = 60000 }) { super() this.cache = new Map() this.jwksUri = jwksUri this.caCerts = caCerts this.cacheMaxAge = Math.min(cacheMaxAge, 2 ** 31 - 1) this.cacheRefreshAge = this.cacheMaxAge / 2 this.staleTimeoutId = null this.refreshTimeoutId = null this.isCacheUpdating = false } getKey(kid) { if (this.cache.has(kid)) { return this.cache.get(kid) } return null } getKids() { return Array.from(this.cache.keys()) } getKidTypes() { const keys = {} for (const [kid, key] of this.cache.entries()) { keys[kid] = key.type } return keys } setKey(kid, key) { this.cache.set(kid, key) this.emit('keyAdded', kid, key) } async refreshCache(retryOnFailure = true) { logger.writeInfo('jwksCache', 'refreshing cache', { uri: this.jwksUri }) clearTimeout(this.refreshTimeoutId) const result = await this.updateCache() if (result) { this.refreshTimeoutId = setTimeout(this.refreshCache.bind(this), this.cacheRefreshAge) } else { logger.writeError('jwksCache', 'refresh error', { message: 'updateCache returned false' }) if (retryOnFailure) this.refreshTimeoutId = setTimeout(this.refreshCache.bind(this), 10000) } return result } clearAllCache() { this.cache.clear() } clearCacheKeepUnknown() { for (const [kid, key] of this.cache.entries()) { if (key !== 'unknown') { this.cache.delete(kid) } } } onCacheStale() { this.clearCacheKeepUnknown() this.emit('cacheStale', this.cache) } request(url, options) { return new Promise((resolve, reject) => { const socketInfo = { localAddress: undefined, localPort: undefined, remoteAddress: undefined, remotePort: undefined } const requestOptions = { timeout: 10000, ...options } if (this.caCerts) { requestOptions.ca = this.caCerts } const httpRequestLib = url.protocol === 'https:' ? https : http; const httpRequest = httpRequestLib.request(url, requestOptions , (res) => { const socket = res.socket socketInfo.localAddress = socket.localAddress socketInfo.localPort = socket.localPort socketInfo.remoteAddress = socket.remoteAddress socketInfo.remotePort = socket.remotePort let rawData = '' res.setEncoding('utf8') res.on('data', (chunk) => rawData += chunk) res.on('end', () => { if (res.statusCode < 200 || res.statusCode >= 300) { const errorMsg = res.body && (res.body.message || res.body) || res.statusMessage || `Http Error ${res.statusCode}` reject({ errorMsg }) } else { try { logger.writeInfo('jwksCache','response', {socket: formatSocket(socketInfo)}) resolve(rawData && JSON.parse(rawData)) } catch (error) { reject(error) } } }) } ) /** * Formats a Node.js socket object into a string representation. * * @param {net.Socket} socket - The Node.js socket object. * @returns {string|undefined} A string representation of the socket's local and remote addresses and ports, or undefined if the socket is not connected. */ function formatSocket(socket) { return socket.localAddress || socket.remoteAddress ? `${socket.localAddress}:${socket.localPort} -> ${socket.remoteAddress}:${socket.remotePort}` : undefined } function onSocket(socket) { socketInfo.localAddress = socket.localAddress socketInfo.localPort = socket.localPort socketInfo.remoteAddress = socket.remoteAddress socketInfo.remotePort = socket.remotePort socketInfo.socket = socket logger.writeDebug('jwksCache', 'requestEvent', {event: 'socket', socket: formatSocket(socketInfo)}) socket.on('error', (error) => { const err = error.errors ? error.errors[0] : error socketInfo.remoteAddress = err.address socketInfo.remotePort = err.port logger.writeError('jwksCache', 'socketEvent', {event: 'error', socket: formatSocket(socketInfo), message: err.message}) }) socket.on('connectionAttempt', (ip, port, family) => { socketInfo.remoteAddress = ip socketInfo.remotePort = port logger.writeDebug('jwksCache', 'socketEvent', {event: 'connectionAttempt', ip, port, family}) }) socket.on('connectionAttemptFailed', (ip, port, family, error) => { socketInfo.remoteAddress = ip socketInfo.remotePort = port logger.writeDebug('jwksCache', 'socketEvent', {event: 'connectionAttemptFailed', ip, port, family, message: error.message}) }) socket.on('lookup', (error, address, family, host) => { socketInfo.remoteAddress = address logger.writeDebug('jwksCache', 'socketEvent', {event: 'lookup', address, family, host, message: error?.message }) }) } function onTimeout() { logger.writeError('jwksCache', 'requestTimeout', { socket: formatSocket(socketInfo) }) httpRequest.destroy() } httpRequest .on('socket', onSocket) .on('timeout', onTimeout) .on('error', reject) .end() }) } extractKeysFromJwks(jwks) { const results = [] jwks = jwks .filter(({ use }) => use === 'sig' || use === undefined) .filter(({ kty }) => kty === 'RSA' || kty === 'EC' || kty === 'OKP') for (const jwk of jwks) { try { if (!jwk.kid) throw new Error('Missing kid') const publicKey = crypto.createPublicKey({ format: 'jwk', key: jwk }) results.push({ publicKey, publicKeyPem: publicKey.export({ format: 'pem', type: 'spki' }), kid: jwk.kid, alg: jwk.alg }) } catch { continue } } return results } updateCache() { return new Promise((resolve) => { if (!this.isCacheUpdating) { this.isCacheUpdating = true this.request(new URL(this.jwksUri), { method: 'GET' }) .then(jwks => { clearTimeout(this.staleTimeoutId) this.staleTimeoutId = setTimeout(this.onCacheStale.bind(this), this.cacheMaxAge) this.clearCacheKeepUnknown() const keys = this.extractKeysFromJwks(jwks.keys) for (const key of keys) { this.setKey(key.kid, key.publicKey) } this.isCacheUpdating = false this.emit('cacheUpdate', this.cache) resolve(true) }) .catch(error => { this.isCacheUpdating = false this.emit('cacheError', error) resolve(false) }) } else { // an update is already in progress logger.writeDebug('jwksCache', 'updateCache', { message: 'update already in progress' }) this.once('cacheUpdate', () => { logger.writeDebug('jwksCache', 'cacheUpdate', { message: 'concurrent update event' }) resolve(true) }) this.once('cacheError', () => { logger.writeDebug('jwksCache', 'cacheError', { message: 'concurrent update event' }) resolve(false) }) } }) } } module.exports = JWKSCache ================================================ FILE: api/source/utils/klona.js ================================================ module.exports = function klona(val) { // MIT License // Copyright (c) Luke Edwards (lukeed.com) // https://github.com/lukeed/klona let k, out, tmp if (Array.isArray(val)) { out = Array(k = val.length) while (k--) out[k] = (tmp = val[k]) && typeof tmp === 'object' ? klona(tmp) : tmp return out } if (Object.prototype.toString.call(val) === '[object Object]') { out = {} // null for (k in val) { if (k === '__proto__') { Object.defineProperty(out, k, { value: klona(val[k]), configurable: true, enumerable: true, writable: true, }) } else { out[k] = (tmp = val[k]) && typeof tmp === 'object' ? klona(tmp) : tmp } } return out } return val } ================================================ FILE: api/source/utils/log-schema.json ================================================ { "$schema": "https://json-schema.org/draft-07/schema", "$id": "http://yourdomain.com/schemas/myschema.json", "type": "object", "properties": { "date": { "type": "string", "format": "date-time" }, "level": { "type": "integer", "minimum": 1, "maximum": 4 }, "component": { "type": "string" }, "type": { "type": "string" }, "data": { "type": "object" } }, "required": [ "date", "level", "component", "type", "data" ], "additionalProperties": false, "oneOf": [ { "$ref": "#/$defs/componentIndex" }, { "$ref": "#/$defs/componentOidc" } ], "$defs": { "componentIndex": { "properties": { "component": { "type": "string", "const": "index" } }, "oneOf": [ { "$ref": "#/$defs/typeStarting" }, { "$ref": "#/$defs/typeConfiguration" }, { "$ref": "#/$defs/typeStarted" } ] }, "typeStarting": { "properties": { "type": { "type": "string", "const": "starting" }, "data": { "type": "object", "properties": { "version": { "type": "string" } }, "additionalProperties": false } } }, "typeConfiguration": { "properties": { "type": { "type": "string", "const": "configuration" }, "data": { "type": "object", "properties": { "version": { "type": "string" }, "commit": { "type": "object", "required": [], "properties": { "branch": { "type": "string" }, "sha": { "type": "string" }, "tag": { "type": "string" }, "describe": { "type": "string" } }, "additionalProperties": false }, "settings": { "type": "object", "required": [], "properties": { "setClassification": { "type": "string" }, "lastAccessResolution": { "type": "integer" }, "responseValidation": { "type": "string" } }, "additionalProperties": false }, "client": { "type": "object", "required": [], "properties": { "clientId": { "type": "string" }, "displayAppManagers": { "type": "boolean" }, "authority": { "type": "string" }, "apiBase": { "type": "string" }, "disabled": { "type": "boolean" }, "directory": { "type": "string" }, "refreshToken": { "type": "object", "required": [], "properties": { "disabled": { "type": "boolean" } }, "additionalProperties": false }, "welcome": { "type": "object", "required": [], "properties": { "image": { "type": "string" }, "message": { "type": "string" }, "title": { "type": "string" }, "link": { "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false }, "docs": { "type": "object", "required": [], "properties": { "disabled": { "type": "boolean" }, "docsDirectory": { "type": "string" } }, "additionalProperties": false }, "http": { "type": "object", "required": [], "properties": { "address": { "type": "string" }, "port": { "type": "string" }, "maxJsonBody": { "type": "string" }, "maxUpload": { "type": "string" } }, "additionalProperties": false }, "database": { "type": "object", "required": [], "properties": { "type": { "type": "string" }, "host": { "type": "string" }, "port": { "type": "string" }, "schema": { "type": "string" }, "username": { "type": "string" }, "maxConnections": { "type": "string" }, "tls": { "type": "object", "required": [], "additionalProperties": false }, "revert": { "type": "boolean" }, "password": { "type": "boolean" } }, "additionalProperties": false }, "init": { "type": "object", "required": [], "properties": { "importStigs": { "type": "boolean" }, "importScap": { "type": "boolean" } }, "additionalProperties": false }, "swaggerUi": { "type": "object", "required": [], "properties": { "enabled": { "type": "boolean" }, "authority": { "type": "string" }, "server": { "type": "string" }, "oauth2RedirectUrl": { "type": "string" } }, "additionalProperties": false }, "oauth": { "type": "object", "required": [], "properties": { "authority": { "type": "string" }, "claims": { "type": "object", "required": [], "properties": { "scope": { "type": "string" }, "scopeFormat": { "type": "string" }, "username": { "type": "string" }, "servicename": { "type": "string" }, "name": { "type": "string" }, "privileges": { "type": "string" }, "email": { "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false }, "log": { "type": "object", "required": [], "properties": { "level": { "type": "integer" }, "mode": { "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false } } }, "typeStarted": { "properties": { "type": { "type": "string", "const": "started" }, "data": { "type": "object", "properties": { "durationS": { "type": "number" }, "port": { "type": "string" }, "api": { "type": "string" }, "client": { "type": "string" }, "documentation": { "type": "string" }, "swagger": { "type": "string" } }, "additionalProperties": false } } }, "componentOidc": { "properties": { "component": { "type": "string", "const": "oidc" } }, "oneOf": [ { "$ref": "#/$defs/typeDiscovery" } ] }, "typeDiscovery": { "properties": { "type": { "type": "string", "const": "discovery" }, "data": { "type": "object", "properties": { "success": { "type": "boolean" }, "url": { "type": "string" } } }, "additionalProperties": false } } } } ================================================ FILE: api/source/utils/logSocket.js ================================================ const { randomUUID } = require('node:crypto') const logger = require('./logger') const WebSocket = require('ws') const component = 'logSocket' const auth = require('./auth') const SmError = require('./error') const asyncApiValidator = require('./asyncApiValidator') const socketPath = '/socket/log-socket' class LogSession { constructor(ws, validator) { this.ws = ws; this.validator = validator; this.authorized = false; this.tokenExp = null; this.logForwarding = false; this.sessionId = randomUUID(); this.filter = null; this.pingIntervalId = null this.unauthorizedTimerId = null this.unauthorizedTimeoutMs = 10000 this.pingIntervalMs = 30000 } start = () => { logger.writeInfo(component, 'session-start', { sessionId: this.sessionId, message: 'Session started' }); this.ws.on('message', this.onSocketMessage); this.ws.on('close', this.stop); this.ws.on('pong', this.onSocketPong); this.startHeartbeat(); this.sendUnauthorized(); } stop = () => { this.sendClose('Session ending'); this.disableLogForwarding(); this.stopHeartbeat(); this.ws.off('message', this.onSocketMessage); this.ws.off('close', this.stop); this.ws.off('pong', this.onSocketPong); if (this.tokenTimer) clearTimeout(this.tokenTimer); if (this.unauthorizedTimerId) { clearTimeout(this.unauthorizedTimerId); this.unauthorizedTimerId = null; } this.ws.close(); logger.writeInfo(component, 'session-stop', { sessionId: this.sessionId, message: 'Session stopped' }); } enableLogForwarding = () => { if (!this.logForwarding) { logger.loggerEvents.on('log', this.loggerEventHandler); this.logForwarding = true; } } disableLogForwarding = () => { if (this.logForwarding) { logger.loggerEvents.off('log', this.loggerEventHandler); this.logForwarding = false; } } includeLogRecord = (logObj) => { if (!this.filter) return true; return Object.entries(this.filter).every(([key, value]) => { return logObj[key] && value.includes(logObj[key]); }); } loggerEventHandler = (logObj) => { if (this.authorized && this.includeLogRecord(logObj)) { this.sendLog(logObj); } } startHeartbeat = () => { this.stopHeartbeat(); this.pingIntervalId = setInterval(this.sendPing, this.pingIntervalMs); } stopHeartbeat = () => { if (this.pingIntervalId) { clearInterval(this.pingIntervalId); this.pingIntervalId = null; } } sendPing = () => { try { this.ws.ping(); logger.writeInfo(component, 'ping-sent', { sessionId: this.sessionId }); } catch { // Ignore ping errors } } onSocketPong = () => { // Pong received, connection is alive logger.writeInfo(component, 'pong-received', { sessionId: this.sessionId }); } onSocketMessage = (message) => { let msgObj; try { msgObj = JSON.parse(message); } catch { this.sendError('Invalid JSON message'); return; } try { this.validator.validate(msgObj.type, msgObj, 'logStream', 'receive'); } catch (e) { this.sendError('Message validation failed: ' + e.message); return; } if (msgObj.type === 'authorize' && (typeof msgObj.data?.token === 'string')) { const loggedMessage = this.deepClone(msgObj); loggedMessage.data.token = this.decodeToken(msgObj.data.token) || loggedMessage.data.token; logger.writeInfo(component, 'message-receive', { sessionId: this.sessionId, ...loggedMessage }); } else { logger.writeInfo(component, 'message-receive', { sessionId: this.sessionId, ...msgObj }); } switch (msgObj.type) { case 'authorize': this.onAuthorize(msgObj.data); break; case 'command': if (this.authorized) { this.onCommand(msgObj.data); } break; default: this.sendError('Unexpected message type'); } } deepClone = (msg) => { return JSON.parse(JSON.stringify(msg)); } onCommand = (commandData) => { switch (commandData.command) { case 'stream-start': this.filter = commandData.filter; this.enableLogForwarding(); break; case 'stream-stop': this.disableLogForwarding(); break; default: this.sendError('Unknown command'); } this.sendInfo({ success: true, command: commandData }); } onAuthorize = async (authData) => { // Validate token (format and expiration) try { // Accept JWTs: decode and check exp const decoded = auth.decodeToken(authData.token); // Mock a bad token for testing // decoded.header.kid = 'xxx-bad-kid-xxx'; auth.checkInsecureKid(decoded); const signingKey = await auth.getSigningKey(decoded); auth.verifyToken(authData.token, signingKey); const privileges = auth.getClaimByPath(decoded.payload); if (!privileges.includes('admin')) { throw new SmError.PrivilegeError(); } // successful authorization clearTimeout(this.unauthorizedTimerId); this.unauthorizedTimerId = null; this.tokenExp = decoded.payload.exp; this.startTokenTimer(); this.authorized = true; this.sendAuthorized(); } catch (e) { this.authorized = false; this.disableLogForwarding(); logger.writeWarn(component, 'authorize-failed', { sessionId: this.sessionId, message: e.message }); this.sendUnauthorized('Authorization failed: ' + e.detail || e.message); return; } } startTokenTimer = () => { if (this.tokenTimer) clearTimeout(this.tokenTimer); if (!this.tokenExp) return; const now = Math.floor(Date.now() / 1000); const ms = Math.max(0, (this.tokenExp - now) * 1000); this.tokenTimer = setTimeout(() => { this.authorized = false; this.disableLogForwarding(); this.sendUnauthorized('jwt expired'); }, ms); } decodeToken = (token) => { try { const parts = token.split('.'); if (parts.length !== 3) throw new Error('Invalid JWT format'); const decoded = JSON.parse(Buffer.from(parts[1], 'base64').toString('utf8')); return decoded; } catch { return null; } } sendUnauthorized = (reason) => { this.send({ type: 'authorize', data: { state: 'unauthorized', reason } }); if (!this.unauthorizedTimerId) { this.unauthorizedTimerId = setTimeout(() => { this.stop(); }, this.unauthorizedTimeoutMs); // Set a maximum time to be unauthorized } } sendAuthorized = () => { this.send({ type: 'authorize', data: { state: 'authorized' } }); } sendClose = (message = 'Closing connection') => { this.send({ type: 'close', data: message}); } sendInfo = (info) => { this.send({ type: 'info', data: info }); } sendError = (error) => { this.send({ type: 'error', data: error }); } sendLog = (logObj) => { this.send({ type: 'log', data: logObj }); } send = (msg) => { try { this.validator.validate(msg.type, msg, 'logStream', 'send'); } catch (e) { logger.writeError(component, 'message-validation-failed', { sessionId: this.sessionId, message: msg, error: e.message }); } this.ws.send(JSON.stringify(msg)); if (msg.type !== 'log') { const loggerFn = msg.type === 'error' ? logger.writeError : logger.writeInfo; loggerFn(component, 'message-send', { sessionId: this.sessionId, ...msg }); } } } async function setupLogSocket (server, schemaPath) { const validator = asyncApiValidator.fromSource(schemaPath) const wss = new WebSocket.Server({ server, path: socketPath }) wss.on('connection', (ws) => onConnection(ws, validator)) } function onConnection (ws, validator) { const clientAddr = `${ws._socket.remoteAddress}:${ws._socket.remotePort}`; const logSession = new LogSession(ws, validator); logger.writeInfo(component, 'connection', {source: clientAddr, sessionId: logSession.sessionId, message: 'New log socket connection'}); logSession.start(); } module.exports = { setupLogSocket } ================================================ FILE: api/source/utils/logger.js ================================================ const { randomUUID } = require('node:crypto') const onFinished = require('on-finished') const onHeaders = require('on-headers') const config = require('./config') const EventEmitter = require('node:events') const loggerEvents = new EventEmitter() // Ensure no other code will write to the console const _log = console.log for (const method of ['log', 'error', 'warn', 'trace', 'debug']) { console[method] = function () { writeError('logger', 'consoleIntercept', { method, arguments }) } } // Setup noops for logger methods > config.log.level const writeDebug = config.log.level == 4 ? function writeDebug () { write(4, ...arguments) } : () => {} const writeInfo = config.log.level >= 3 ? function writeInfo () { write(3, ...arguments) } : () => {} const writeWarn = config.log.level >= 2 ? function writeWarn () { write(2, ...arguments) } : () => {} const writeError = config.log.level >= 1 ? function writeError () { write(1, ...arguments) } : () => {} // Stats for all requests const requestStats = { totalRequests: 0, totalApiRequests: 0, totalRequestDuration: 0, operationIds: {} } // All messages to STDOUT are handled here async function write (level, component, type, data) { try { const date = new Date().toISOString() const logObj = {date, level, component, type, data} _log(JSON.stringify(logObj)) loggerEvents.emit('log', logObj) } catch (e) { const date = new Date().toISOString() const errorObj = {date, level:1, component:'logger', type:'error', data: { message: e.message, stack: e.stack}} _log(JSON.stringify(errorObj)) loggerEvents.emit('log', errorObj) } } // Base64 decoding const atob = (data) => Buffer.from(data, 'base64').toString('ascii') function sanitizeHeaders () { let {authorization, ...headers} = this if (authorization !== undefined) { headers.authorization = true if (config.log.mode !== 'combined') { const payload = authorization.match(/^Bearer [[A-Za-z0-9-_=]+\.([[A-Za-z0-9-_=]+?)\./)?.[1] if (payload) { headers.accessToken = JSON.parse(atob(payload)) } } } else { headers.authorization = false } return headers } function serializeRequest (req) { req.headers.toJSON = sanitizeHeaders if (config.log.mode === 'combined') { req.headers.accessToken = req.access_token } return { requestId: req.requestId, date: req._startTime, source: req.ip, // claims: req.userObject ? serializeUserObject(req.userObject) : undefined, method: req.method, url: req.originalUrl, headers: req.headers, body: req.query.elevate === true || req.query.elevate === 'true' || config.log.level === 4 ? req.body : undefined } } function recordStartTime () { this._startTime = new Date() } function requestLogger (req, res, next) { req._startAt = undefined req._startTime = undefined res._startAt = undefined res._startTime = undefined res.svcStatus = {} req.requestId = randomUUID() // Response body length for appinfo and content for privileged requests let responseBody responseBody = '' if (req.query.elevate) { const originalSend = res.send res.send = function (chunk) { if (chunk !== undefined) { responseBody += chunk } originalSend.apply(res, arguments) } } // record request start recordStartTime.call(req) function logRequest () { if (req.originalUrl.startsWith('/api')) { req.component = 'rest' } else { req.component = 'static' } writeInfo(req.component, 'request', serializeRequest(req)) } function logResponse () { res._startTime = res._startTime ?? new Date() requestStats.totalRequests += 1 const durationMs = Number(res._startTime - req._startTime) requestStats.totalRequestDuration += durationMs const operationId = res.req.openapi?.schema.operationId let operationStats = { operationId, retries: res.svcStatus?.retries, durationMs } //if operationId is defined, this is an api endpoint response so we can track some stats if (operationId ) { trackOperationStats(operationId, durationMs, res) // If including stats in log entries, add to operationStats object if (config.log.optStats) { operationStats = { ...operationStats, ...requestStats.operationIds[operationId] } } } if (config.log.mode === 'combined') { writeInfo(req.component || 'rest', 'transaction', { request: serializeRequest(res.req), response: { date: res._startTime, status: res.finished ? res.statusCode : undefined, clientTerminated: res.destroyed ? true : undefined, headers: res.finished ? res.getHeaders() : undefined, errorBody: res.errorBody, responseBody, }, operationStats }) } else { writeInfo(req.component || 'rest', 'response', { requestId: res.req.requestId, status: res.statusCode, headers: res.getHeaders(), errorBody: res.errorBody, responseBody, operationStats }) } } if (config.log.mode !== 'combined') { logRequest() } onHeaders(res, recordStartTime) onFinished(res, logResponse) next() } function serializeEnvironment () { let env = {} for (const [key, value] of Object.entries(process.env)) { if (/^(NODE|STIGMAN)_/.test(key)) { env[key] = key === 'STIGMAN_DB_PASSWORD' ? '*' : value } } return env } function trackOperationStats(operationId, durationMs, res) { const acceptsRequestBody = (res.req.method === 'POST' || res.req.method === 'PUT' || res.req.method === 'PATCH') //increment total api requests requestStats.totalApiRequests++ // Ensure the operationIds object exists for the operationId if (!requestStats.operationIds[operationId]) { requestStats.operationIds[operationId] = { totalRequests: 0, totalDuration: 0, elevatedRequests: 0, minDuration: Infinity, maxDuration: 0, maxDurationUpdates: 0, retried: 0, averageRetries: 0, totalResLength: 0, minResLength: Infinity, maxResLength: 0, clients: {}, users: {}, errors: {} } if (acceptsRequestBody) { requestStats.operationIds[operationId].totalReqLength = 0 requestStats.operationIds[operationId].minReqLength = Infinity requestStats.operationIds[operationId].maxReqLength = 0 } } // Get the stats object for this operationId const stats = requestStats.operationIds[operationId] // errors if (res.statusCode >= 500) { const code = res.errorBody?.code || 'nocode' stats.errors[code] = (stats.errors[code] || 0) + 1 } // Update max duration stats.minDuration = Math.min(stats.minDuration, durationMs) if (durationMs > stats.maxDuration) { stats.maxDuration = durationMs stats.maxDurationUpdates++ } // Increment total requests and total duration for this operationId stats.totalRequests++ stats.totalDuration += durationMs const responseLength = parseInt(res.getHeader('content-length')) || 0 stats.totalResLength += responseLength stats.minResLength = Math.min(stats.minResLength, responseLength) stats.maxResLength = Math.max(stats.maxResLength, responseLength) if (acceptsRequestBody) { const requestLength = parseInt(res.req.headers['content-length']) || 0 stats.totalReqLength += requestLength stats.minReqLength = Math.min(stats.minReqLength, requestLength) stats.maxReqLength = Math.max(stats.maxReqLength, requestLength) } // Update retries if (res.svcStatus?.retries) { stats.retried++ stats.averageRetries = runningAverage({ currentAvg: stats.averageRetries, counter: stats.retried, newValue: res.svcStatus.retries }) } // Check token for userid let userId = res.req.userObject?.userId || 'unknown' // Increment user count for this operationId stats.users[userId] = (stats.users[userId] || 0) + 1 // Check token for client id let client = res.req.access_token?.azp || 'unknown' // Increment client count for this operationId stats.clients[client] = (stats.clients[client] || 0) + 1 // Increment elevated request count if elevate query param is true if (res.req.query?.elevate === true) { stats.elevatedRequests = (stats.elevatedRequests || 0) + 1 } // If projections are defined, track stats for each projection if (res.req.query?.projection?.length > 0) { stats.projections = stats.projections || {} for (const projection of res.req.query.projection) { // Ensure the projection stats object exists stats.projections[projection] = stats.projections[projection] || { totalRequests: 0, minDuration: Infinity, maxDuration: 0, totalDuration: 0, retried: 0, averageRetries: 0, get averageDuration() { return this.totalRequests ? Math.round(this.totalDuration / this.totalRequests) : 0 } } const projStats = stats.projections[projection] // Increment projection count and update duration stats projStats.totalRequests++ projStats.minDuration = Math.min(projStats.minDuration, durationMs) projStats.maxDuration = Math.max(projStats.maxDuration, durationMs) projStats.totalDuration += durationMs // Update retries if (res.svcStatus?.retries) { projStats.retried++ projStats.averageRetries = projStats.averageRetries + (res.svcStatus.retries - projStats.averageRetries) / projStats.retried } } } function runningAverage({currentAvg, counter, newValue}) { return currentAvg + (newValue - currentAvg) / counter } } module.exports = { requestLogger, sanitizeHeaders, serializeRequest, serializeEnvironment, writeError, writeWarn, writeInfo, writeDebug, requestStats, loggerEvents, } ================================================ FILE: api/source/utils/parsers.js ================================================ const {XMLParser} = require('fast-xml-parser') const he = require('he') module.exports.benchmarkFromXccdf = function (xccdfData) { try { const parser = new XMLParser({ allowBooleanAttributes: false, attributeNamePrefix: "", textNodeName: "_", ignoreAttributes: false, removeNSPrefix: true, parseTagValue: false, parseAttributeValue: false, trimValues: true, processEntities: { enabled: true, maxTotalExpansions: 200000 }, isArray: (name, jpath, isLeafNode, isAttribute) => !isAttribute, alwaysCreateTextNode: true, tagValueProcessor: (name, value) => he.decode(value) }) const j = parser.parse(xccdfData.toString()) let bIn, isScap=false if (j['data-stream-collection']?.[0]) { // SCAP const components = j['data-stream-collection'][0].component const candidate = components?.find(component => 'Benchmark' in component) if (candidate?.Benchmark?.[0]) { bIn = candidate.Benchmark[0] isScap = true } else { throw new Error("Cannot parse as a DISA SCAP benchmark. No Benchmark element found.") } } else if (j.Benchmark?.[0]) { // Manual STIG bIn = j.Benchmark[0] } else { throw new Error("Cannot parse XML document as STIG or SCAP.") } const groups = bIn.Group.map(group => { const rules = group.Rule.map(rule => { const checks = rule.check ? rule.check.map(check => ({ system: check.system, content: isScap? check['check-content-ref']?.[0]?._ : check['check-content']?.[0]?._ })) : [] const fixes = rule.fixtext ? rule.fixtext.map(fix => ({ fixref: fix.fixref, text: fix._ })) : [] const idents = rule.ident ? rule.ident.map(ident => ({ ident: ident._, system: ident.system })) : [] // The description element's value is often not well-formed XML, so we fallback on extracting content between expected tags function parseRuleDescription (d) { const parsed = {} const propMap = { vulnDiscussion: 'VulnDiscussion', falsePositives: 'FalsePositives', falseNegatives: 'FalseNegatives', documentable: 'Documentable', mitigations: 'Mitigations', severityOverrideGuidance: 'SeverityOverrideGuidance', potentialImpacts: 'PotentialImpacts', thirdPartyTools: 'ThirdPartyTools', mitigationControl: 'MitigationControl', responsibility: 'Responsibility', iacontrols: 'IAControls' } for (const prop in propMap) { const re = new RegExp(`<${propMap[prop]}>([\\s\\S]*)`) const result = re.exec(d) parsed[propMap[prop]] = result && result.length > 1 ? result[1] : null } if (parsed.Responsibility) { parsed.Responsibility = parsed.Responsibility.replace(/<\/Responsibility>/g, ', ') } return parsed } const desc = parseRuleDescription(rule.description?.[0]?._) return { ruleId: rule.id, version: rule.version?.[0]._ || null, title: rule.title?.[0]._ || null, severity: rule.severity || null, weight: rule.weight || null, vulnDiscussion: desc.VulnDiscussion || null, falsePositives: desc.FalsePositives || null, falseNegatives: desc.FalseNegatives || null, documentable: desc.Documentable || null, mitigations: desc.Mitigations || null, severityOverrideGuidance: desc.SeverityOverrideGuidance || null, potentialImpacts: desc.PotentialImpacts || null, thirdPartyTools: desc.ThirdPartyTools || null, mitigationControl: desc.MitigationControl || null, responsibility: desc.Responsibility || null, iacontrols: desc.IAControls || null, checks, fixes, idents } }) return { groupId: group.id, title: group.title[0]._ || null, rules: rules } }) const [releaseInfo, release, benchmarkDate] = /Release:\s+(\S+)\s+Benchmark Date:\s+(.*)/g.exec(bIn['plain-text'][0]._) return { benchmarkId: bIn.id, title: bIn.title?.[0]._, scap: isScap, revision: { revisionStr: `V${bIn.version?.[0]._}R${release}`, version: bIn.version?.[0]._, release, releaseInfo, benchmarkDate, benchmarkDate8601: benchmarkDateTo8601(benchmarkDate), status: bIn.status?.[0]._ || null, statusDate: bIn.status?.[0].date || null, description: bIn.description?.[0]._ || null, groups } } } catch (e) { throw (e) } function benchmarkDateTo8601(benchmarkDate) { const monthToNum = { 'Jan': '01', 'January': '01', 'Feb': '02', 'February': '02', 'Mar': '03', 'March': '03', 'Apr': '04', 'April': '04', 'May': '05', 'Jun': '06', 'June': '06', 'Jul': '07', 'July': '07', 'Aug': '08', 'August': '08', 'Sep': '09', 'Sept': '09', 'September': '09', 'Oct': '10', 'October': '10', 'Nov': '11', 'November': '11', 'Dec': '12', 'December': '12' }; let [day, monStr, year] = benchmarkDate.split(/\s+/); return `${year}-${monthToNum[monStr]}-${day}` } } ================================================ FILE: api/source/utils/roles.js ================================================ module.exports.ROLES = { 'Restricted': 1, 'Full': 2, 'Manage': 3, 'Owner': 4 } ================================================ FILE: api/source/utils/serializeError.js ================================================ // MIT License // Copyright (c) Sindre Sorhus (https://sindresorhus.com) // Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: // The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. 'use strict'; class NonError extends Error { constructor(message) { super(NonError._prepareSuperMessage(message)); Object.defineProperty(this, 'name', { value: 'NonError', configurable: true, writable: true }); if (Error.captureStackTrace) { Error.captureStackTrace(this, NonError); } } static _prepareSuperMessage(message) { try { return JSON.stringify(message); } catch { return String(message); } } } const commonProperties = [ {property: 'name', enumerable: false}, {property: 'message', enumerable: false}, {property: 'stack', enumerable: false}, {property: 'code', enumerable: true} ]; const isCalled = Symbol('.toJSON called'); const toJSON = from => { from[isCalled] = true; const json = from.toJSON(); delete from[isCalled]; return json; }; const destroyCircular = ({ from, seen, to_, forceEnumerable, maxDepth, depth }) => { const to = to_ || (Array.isArray(from) ? [] : {}); seen.push(from); if (depth >= maxDepth) { return to; } if (typeof from.toJSON === 'function' && from[isCalled] !== true) { return toJSON(from); } for (const [key, value] of Object.entries(from)) { if (typeof Buffer === 'function' && Buffer.isBuffer(value)) { to[key] = '[object Buffer]'; continue; } if (typeof value === 'function') { continue; } if (!value || typeof value !== 'object') { to[key] = value; continue; } if (!seen.includes(from[key])) { depth++; to[key] = destroyCircular({ from: from[key], seen: seen.slice(), forceEnumerable, maxDepth, depth }); continue; } to[key] = '[Circular]'; } for (const {property, enumerable} of commonProperties) { if (typeof from[property] === 'string') { Object.defineProperty(to, property, { value: from[property], enumerable: forceEnumerable ? true : enumerable, configurable: true, writable: true }); } } return to; }; const serializeError = (value, options = {}) => { const {maxDepth = Number.POSITIVE_INFINITY} = options; if (typeof value === 'object' && value !== null) { return destroyCircular({ from: value, seen: [], forceEnumerable: true, maxDepth, depth: 0 }); } // People sometimes throw things besides Error objects… if (typeof value === 'function') { // `JSON.stringify()` discards functions. We do too, unless a function is thrown directly. return `[Function: ${(value.name || 'anonymous')}]`; } return value; }; const deserializeError = (value, options = {}) => { const {maxDepth = Number.POSITIVE_INFINITY} = options; if (value instanceof Error) { return value; } if (typeof value === 'object' && value !== null && !Array.isArray(value)) { const newError = new Error(); // eslint-disable-line unicorn/error-message destroyCircular({ from: value, seen: [], to_: newError, maxDepth, depth: 0 }); return newError; } return new NonError(value); }; module.exports = { serializeError, deserializeError }; ================================================ FILE: api/source/utils/serializers.js ================================================ const {promises: fs} = require('fs') const path = require('path') const XlsxTemplate = require('xlsx-template') module.exports.mccastPoamObjectFromFindings = function (findings, defaults = {}) { const vuln = findings.map( finding => ({ authPackage: defaults.mccastAuthName, name: finding.rules[0].title, dateId: finding.stigs[0].ruleCount === 0 ? finding.stigs[0].benchmarkDate : '', stigInfo: 'STIG Finding', status: defaults.status, packageId: defaults.mccastPackageId, date: defaults.date, startDate: '', endDate: '', securityChecks: finding.rules[0].ruleId || finding.groupId, control: finding.ccis.map( cci => `DoD RMF-${defaults.mccastPackageId}-${cci.apAcronym?.replace(/\./g,' ')}-CNSSI 1253`).join('\n'), resultingRisk: finding.severity === 'medium' ? 'Moderate' : `${finding.severity.charAt(0).toUpperCase()}${finding.severity.slice(1)}`, weakness: finding.rules[0].vulnDiscussion, mitigations: '', comments: finding.stigs[0].ruleCount === 0 ? '' : finding.ccis.map( cci => `CCI-${cci.cci}`).join('\n'), assets: finding.assets.map( asset => asset.name ).join('\n'), mav: '', mac: '', mpr: '', mui: '', ms: '', mi: '', ma: '' })) return {vuln} } module.exports.poamObjectFromFindings = function (findings, defaults = {}) { const vuln = findings.map( finding => ({ desc: `Title:\n${finding.rules[0].title}\n\nDescription:\n${finding.rules[0].vulnDiscussion}`, control: finding.ccis.map( cci => cci.apAcronym).join('\n'), office: defaults.office, securityChecks: finding.ruleId || finding.groupId, resourcesRequired: '', date: defaults.date, milestone: `Resolve this finding. ${defaults.date}`, milestoneChanges: `Resolve this finding. ${defaults.date}`, stigInfo: finding.stigs.map( stig => `${stig.benchmarkId}\n${stig.revisionStr}\nBenchmark Date: ${stig.benchmarkDate}` ).join('\n\n'), status: defaults.status, comments: finding.ccis.map( cci => `CCI-${cci.cci}`).join('\n'), rawSeverity: finding.severity === 'medium' ? 'II' : finding.severity === 'low' ? 'III' : finding.severity === 'high' ? 'I' : 'Mixed', assets: finding.assets.map( asset => asset.name ).join('\n'), mitigations: '', predisposingConditions: '', severity: finding.severity === 'medium' ? 'Moderate' : `${finding.severity.charAt(0).toUpperCase()}${finding.severity.slice(1)}`, // uppercase first letter threatRelevance: '', threatDescription: '', likelihood: '', impact: '', impactDescription: '', residualRiskLevel: finding.severity === 'medium' ? 'Moderate' : `${finding.severity.charAt(0).toUpperCase()}${finding.severity.slice(1)}`, recommendations: '', resultingRisk: finding.severity === 'medium' ? 'Moderate' : `${finding.severity.charAt(0).toUpperCase()}${finding.severity.slice(1)}`, })) return {vuln} } module.exports.xlsxFromPoamObject = async function (substitutions, format) { const templateFiles = { EMASS: 'poam-template.xlsx', MCCAST: 'poam-template-mccast.xlsx' } const templateData = await fs.readFile(path.join(__dirname, templateFiles[format])) const template = new XlsxTemplate() await template.loadTemplate(templateData) await template.substitute(1, substitutions) return await template.generate({type: 'nodebuffer'}) } ================================================ FILE: api/source/utils/state.js ================================================ const EventEmitter = require('events') const logger = require('./logger') /** * Represents the state of the API. * @typedef {'starting' | 'fail' | 'available' | 'unavailable' | 'stop'} StateString */ /** * @typedef {Object} DependencyStatus * @property {boolean} db - The status of the database dependency. * @property {boolean} oidc - The status of the OIDC dependency. */ /** * Class representing the state of the API. * @extends EventEmitter */ class State extends EventEmitter { /** @type {StateString} */ #currentState /** @type {StateString} */ #previousState /** @type {Date} */ #stateDate /** @type {DependencyStatus} */ #dependencyStatus /** @type {Object} */ #dbPool /** @type {Object} */ #endpoints /** @type {Number} */ #changeTimeoutId /** * Creates an instance of State. * @param {Object} options - Options for initializing the state. * @param {StateString} [options.initialState='starting'] - The initial state of the API. */ constructor({ initialState = 'starting', endpoints = { ui: { current: '/', next: '' } } } = {}) { super() this.#currentState = initialState this.#stateDate = new Date() this.#dependencyStatus = { db: false, oidc: false } this.#endpoints = endpoints } /** * Emits 'state-changed', passing the previous and current state and dependency status. * @private */ #emitStateChangedEvent() { this.emit('state-changed', this.#currentState, this.#previousState, this.#dependencyStatus) } #emitDependencyChangeEvent() { this.emit('dependency-changed', this.#dependencyStatus) } /** * Sets the state based on the dependency status. * @private */ #setStateFromDependencyStatus() { if (this.#dependencyStatus.db && this.#dependencyStatus.oidc) { this.setState('available') } else { this.setState(this.#currentState === 'starting' ? 'starting' : 'unavailable') } } /** * Sets the state to the provided state and emits state-changed event. * @param {StateString} state - The new state. */ setState(state) { if (this.#currentState === state) return this.#previousState = this.#currentState this.#currentState = state this.#stateDate = new Date() this.#emitStateChangedEvent() } /** * Sets the status of the database dependency. * @param {boolean} status - The new status of the database dependency. */ setDbStatus(status) { if (this.#dependencyStatus.db === status) return this.#dependencyStatus.db = status this.#emitDependencyChangeEvent() this.#setStateFromDependencyStatus() } /** * Sets the status of the OIDC dependency. * @param {boolean} status - The new status of the OIDC dependency. */ setOidcStatus(status) { if (this.#dependencyStatus.oidc === status) return this.#dependencyStatus.oidc = status this.#emitDependencyChangeEvent() this.#setStateFromDependencyStatus() } /** * Gets the current state. * @type {StateString} * @readonly */ get currentState() { return this.#currentState } /** * Gets the dependency status. * @type {DependencyStatus} * @readonly */ get dependencyStatus() { return {...this.#dependencyStatus} } /** * Sets the database pool. * @param {Object} pool - The new database pool. */ set dbPool(pool) { this.#dbPool = pool } /** * Gets the database pool. * @type {Object} * @readonly */ get dbPool() { return this.#dbPool } /** * Gets the API state. * @type {Object} * @readonly */ get apiState() { return { currentState: this.#currentState, since: this.#stateDate, dependencies: this.#dependencyStatus, endpoints: this.#endpoints, } } } const state = new State() state.on('state-changed', async (currentState, previousState, dependencyStatus) => { logger.writeInfo('state','state-changed', {currentState, previousState, dependencyStatus}) let exitCode = 0 switch (currentState) { case 'fail': exitCode = 1 logger.writeError('state','fail', {message:'Application failed', exitCode}) process.exit(exitCode) break case 'stop': try { await state.dbPool?.end() } catch (err) { logger.writeError('state','stop', {message:'Error closing database pool', error: serializeError(err)}) } logger.writeInfo('state','stop', {message:'Application stopped', exitCode}) process.exit(exitCode) break } }) module.exports = state ================================================ FILE: api/source/utils/writer.js ================================================ const escape = require ('./escape.js') let ResponsePayload = function(code, payload) { this.code = code; this.payload = payload; } exports.respondWithCode = function(code, payload) { return new ResponsePayload(code, payload); } let writeJson = exports.writeJson = function(response, arg1, arg2) { let code; let payload; if(arg1 && arg1 instanceof ResponsePayload) { writeJson(response, arg1.payload, arg1.code); return; } if(arg2 && Number.isInteger(arg2)) { code = arg2; } else { if(arg1 && Number.isInteger(arg1)) { code = arg1; } } if(code && arg1) { payload = arg1; } else if(arg1) { payload = arg1; } if(!code) { // if no response code given, we default to 200 code = 200; } if (typeof payload == 'undefined') { code = 204 } if (payload instanceof Error) { payload = JSON.stringify(payload, Object.getOwnPropertyNames(payload), 2); code = 500 } else { payload = JSON.stringify(payload); } response.writeHead(code, { 'Content-Type': 'application/json', 'Cache-control': 'no-store' }); response.end(payload); } exports.writeInlineFile = function(response, payload, filename, contentType) { response.writeHead(200, { 'Content-Type': contentType, 'Content-Disposition': `inline; filename="${escape.escapeFilename(filename)}"`, 'Access-Control-Expose-Headers': 'Content-Disposition' }) response.write(payload) response.end() } exports.writeWithContentType = function(response, {payload, status = "200", contentType = "application/json"}) { response.writeHead(status, { 'Content-Type': contentType }) response.end(payload) } exports.writeNoContent = function (response) { response.writeHead(204) response.end() } ================================================ FILE: api/source/utils/xlsx-template-js-zip-upgrade/LICENSE ================================================ Copyright (c) 2013-2018 Martin Aspeli, 2018-2020 Andrii Kurdiumov Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. ================================================ FILE: api/source/utils/xlsx-template-js-zip-upgrade/README.md ================================================ # XLSX Template [![Build status](https://api.travis-ci.org/optilude/xlsx-template.png?branch=master)](http://travis-ci.org/optilude/xlsx-template) This module provides a means of generating "real" Excel reports (i.e. not CSV files) in NodeJS applications. The basic principle is this: You create a template in Excel. This can be formatted as you wish, contain formulae etc. In this file, you put placeholders using a specific syntax (see below). In code, you build a map of placeholders to values and then load the template, substitute the placeholders for the relevant values, and generate a new .xlsx file that you can then serve to the user. ## Placeholders Placeholders are inserted in cells in a spreadsheet. It does not matter how those cells are formatted, so e.g. it is OK to insert a placeholder (which is text content) into a cell formatted as a number or currecy or date, if you expect the placeholder to resolve to a number or currency or date. ### Scalars Simple placholders take the format `${name}`. Here, `name` is the name of a key in the placeholders map. The value of this placholder here should be a scalar, i.e. not an array or object. The placeholder may appear on its own in a cell, or as part of a text string. For example: | Extracted on: | ${extractDate} | might result in (depending on date formatting in the second cell): | Extracted on: | Jun-01-2013 | Here, `extractDate` may be a date and the second cell may be formatted as a number. Inside scalars there possibility to use array indexers. For example: Given data var template = { extractDates: ["Jun-01-2113", "Jun-01-2013" ]} which will be applied to following template | Extracted on: | ${extractDates[0]} | will results in the | Extracted on: | Jun-01-2113 | ### Columns You can use arrays as placeholder values to indicate that the placeholder cell is to be replicated across columns. In this case, the placeholder cannot appear inside a text string - it must be the only thing in its cell. For example, if the placehodler value `dates` is an array of dates: | ${dates} | might result in: | Jun-01-2013 | Jun-02-2013 | Jun-03-2013 | ### Tables Finally, you can build tables made up of multiple rows. In this case, each placeholder should be prefixed by `table:` and contain both the name of the placeholder variable (a list of objects) and a key (in each object in the list). For example: | Name | Age | | ${table:people.name} | ${table:people.age} | If the replacement value under `people` is an array of objects, and each of those objects have keys `name` and `age`, you may end up with something like: | Name | Age | | John Smith | 20 | | Bob Johnson | 22 | If a particular value is an array, then it will be repeated across columns as above. ## Generating reports To make this magic happen, you need some code like this: ``` var XlsxTemplate = require('xlsx-template'); // Load an XLSX file into memory fs.readFile(path.join(__dirname, 'templates', 'template1.xlsx'), async function(err, data) { // Create a template var template = new XlsxTemplate(); await template.loadTemplate(data); // Replacements take place on first sheet var sheetNumber = 1; // Set up some placeholder values matching the placeholders in the template var values = { extractDate: new Date(), dates: [ new Date("2013-06-01"), new Date("2013-06-02"), new Date("2013-06-03") ], people: [ {name: "John Smith", age: 20}, {name: "Bob Johnson", age: 22} ] }; // Perform substitution await template.substitute(sheetNumber, values); // Get binary data var data = await template.generate(); // ... }); ``` At this stage, `data` is a string blob representing the compressed archive that is the `.xlsx` file (that's right, a `.xlsx` file is a zip file of XML files, if you didn't know). You can send this back to a client, store it to disk, attach it to an email or do whatever you want with it. You can pass options to `generate()` to set a different return type. use `{type: 'uint8array'}` to generate a `Uint8Array`, `arraybuffer`, `blob`, `nodebuffer` to generate an `ArrayBuffer`, `Blob` or `nodebuffer`, or `base64` to generate a base64-encoded string. ## Caveats * The spreadsheet must be saved in `.xlsx` format. `.xls`, `.xlsb` or `.xlsm` won't work. * Column (array) and table (array-of-objects) insertions cause rows and cells to be inserted or removed. When this happens, only a limited number of adjustments are made: * Merged cells and named cells/ranges to the right of cells where insertions or deletions are made are moved right or left, appropriately. This may not work well if cells are merged across rows, unless all rows have the same number of insertions. * Merged cells, named tables or named cells/ranges below rows where further rows are inserted are moved down. Formulae are not adjusted. * As a corollary to this, it is not always easy to build formulae that refer to cells in a table (e.g. summing all rows) where the exact number of rows or columns is not known in advance. There are two strategies for dealing with this: * Put the table as the last (or only) thing on a particular sheet, and use a formula that includes a large number of rows or columns in the hope that the actual table will be smaller than this number. * Use named tables. When a placeholder in a named table causes columns or rows to be added, the table definition (i.e. the cells included in the table) will be updated accordingly. You can then use things like `TableName[ColumnName]` in your formula to refer to all values in a given column in the table as a logical range. * Placeholders only work in simple cells and tables, pivot tables or other such things. ## Changelog ### Version 0.2.0 * Add ability copy and delete sheets. ### Version 0.0.7 * Fix bug with calculating when adding columns ### Version 0.0.6 * You can now pass `options` to `generate()`, which are passed to JSZip * Fix setting of sheet when growing the sheet * Fix corruption of sheet when writing dates * Fix corruption of sheet when calculating calcChain ### Version 0.0.5 * Mysterious ### Version 0.0.4 Merged pending pull requests * Deletion of the sheets. ### Version 0.0.3 Merged a number of overdue pull requests, including: * Windows support * Support for table footers * Documentation improvements ### Version 0.0.2 * Fix a potential issue with the typing of string indices that could cause the first string to not render correctly if it contained a substitution. ### Version 0.0.1 * Initial release ================================================ FILE: api/source/utils/xlsx-template-js-zip-upgrade/lib/index.d.ts ================================================ import * as etree from "elementtree"; import * as JSZip from "jszip"; export interface TemplatePlaceholder{ type: string; string?: string; full: boolean; name: string; key: string; placeholder?: string } export interface NamedTable{ filename: string; root: etree.Element; } export default class Workbook { protected readonly sharedStrings: string[]; protected readonly workbook: etree.ElementTree; protected readonly archive: JSZip; protected readonly workbookPath: string; protected readonly calcChainPath?: string; constructor(data? : Buffer); public deleteSheet(sheetName : string) : this; public copySheet(sheetName : string, copyName : string) : this; public loadTemplate(data : Buffer) : void; public substitute(sheetName : string | number, substitutions : Object) : void; public generate(options? : GenerateOptions) : T; // need typing properly protected _rebuild() : void; protected writeSharedStrings() : void; protected addSharedString(s : any) : any; // I think s is a string? Not sure what its return "idx" is though, I think it's a number? Is "idx" short for "index"? protected stringIndex(s : any) : any; // returns idx protected replaceString(oldString : string, newString : string) : any; // returns idx protected loadSheets(prefix : any, workbook : etree.ElementTree, workbookRels : any) : any[]; protected loadSheet(sheet : any) : { filename : any, name : any, id : any, root : any }; // this could definitely return a "Sheet" interface/class protected loadTables(sheet : any, sheetFilename : any) : any; protected writeTables(tables : any) : void; protected substituteHyperlinks(sheetFilename : any, substitutions : any) : void; protected substituteTableColumnHeaders(tables : any, substitutions : any) : void; protected extractPlaceholders(string : any) : any[]; protected splitRef(ref : any) : { table : any, colAbsolute : any, col : any, rowAbsolute : any, row : any } protected joinRef(ref : any) : string; protected nextCol(ref : any) : string; protected nextRow(ref : any) : string protected charToNum(str : string) : number; protected numToChar(num : number) : string; protected isRange(ref : any) : boolean; protected isWithin(ref : any, startRef : any, endRef : any) : boolean; protected stringify(value : any) : string; protected insertCellValue(cell : any, substitution : any) : string; protected substituteScalar(cell : any, string: string, placeholder: TemplatePlaceholder, substitution: any); protected substituteArray(cells : any[], cell : any, substitution : any); protected substituteTable(row : any, newTableRows : any, cells : any[], cell : any, namedTables : any, substitution : any, key : any) : any; protected cloneElement(element : any, deep? : any) : any; protected replaceChildren(parent : any, children : any) : void; protected getCurrentRow(row : any, rowsInserted : any) : number; protected getCurrentCell(cell : any, currentRow : any, cellsInserted : any) : string; protected updateRowSpan(row : any, cellsInserted : any) : any; protected splitRange(range : string) : any; protected joinRange(range : any) : string protected pushRight(workbook : etree.ElementTree, sheet : any, currentCell : any, numCols : any) : any; protected pushDown(workbook : etree.ElementTree, sheets : any, tables : any, currentRow : any, numRows : any) : any; } export interface GenerateOptions { type : "uint8array" | "arraybuffer" | "blob" | "nodebuffer" | "base64"; } ================================================ FILE: api/source/utils/xlsx-template-js-zip-upgrade/lib/index.js ================================================ /*jshint globalstrict:true, devel:true */ /*eslint no-var:0 */ /*global require, module, Buffer */ "use strict"; var path = require('path'), JSZip = require('jszip'), etree = require('elementtree'); module.exports = (function() { var DOCUMENT_RELATIONSHIP = "http://schemas.openxmlformats.org/officeDocument/2006/relationships/officeDocument", CALC_CHAIN_RELATIONSHIP = "http://schemas.openxmlformats.org/officeDocument/2006/relationships/calcChain", SHARED_STRINGS_RELATIONSHIP = "http://schemas.openxmlformats.org/officeDocument/2006/relationships/sharedStrings", HYPERLINK_RELATIONSHIP = "http://schemas.openxmlformats.org/officeDocument/2006/relationships/hyperlink"; /** * Create a new workbook. and call `loadTemplate` later. */ var Workbook = function() { var self = this; self.archive = null; self.sharedStrings = []; self.sharedStringsLookup = {}; }; var _get_simple = function (obj, desc) { if (desc.indexOf("[") >=0 ) { var specification = desc.split(/[[[\]]/); var property = specification[0]; var index = specification[1]; return obj[property][index]; } return obj[desc]; } /** * Based on http://stackoverflow.com/questions/8051975 * Mimic https://lodash.com/docs#get */ var _get = function(obj, desc, defaultValue) { var arr = desc.split('.'); try { while (arr.length) { obj = _get_simple(obj, arr.shift()); } } catch(ex) { /* invalid chain */ obj = undefined; } return obj === undefined ? defaultValue : obj; } /** * Delete unused sheets if needed */ Workbook.prototype.deleteSheet = function(sheetName){ var self = this; var sheet = self.loadSheet(sheetName); var sh = self.workbook.find("sheets/sheet[@sheetId='" + sheet.id + "']"); self.workbook.find("sheets").remove(sh); var rel = self.workbookRels.find("Relationship[@Id='" + sh.attrib['r:id'] + "']"); self.workbookRels.remove(rel); self._rebuild(); return self }; /** * Clone sheets in current workbook template */ Workbook.prototype.copySheet = function(sheetName, copyName){ var self = this; var sheet = self.loadSheet(sheetName); //filename, name , id, root var newSheetIndex = (self.workbook.findall("sheets/sheet").length+1).toString(); var fileName = 'worksheets' + '/' + 'sheet' + newSheetIndex + '.xml'; var arcName = self.prefix + '/' + fileName; self.archive.file(arcName, etree.tostring(sheet.root) ); self.archive.files[arcName].options.binary = true; var newSheet = etree.SubElement( self.workbook.find('sheets'), 'sheet' ); newSheet.attrib.name = copyName || 'Sheet' + newSheetIndex; newSheet.attrib.sheetId = newSheetIndex; newSheet.attrib['r:id'] = 'rId' + newSheetIndex; var newRel = etree.SubElement(self.workbookRels, 'Relationship'); newRel.attrib.Type = 'http://schemas.openxmlformats.org/officeDocument/2006/relationships/worksheet'; newRel.attrib.Target = fileName; self._rebuild(); // TODO: work with "definedNames" // var defn = etree.SubElement(self.workbook.find('definedNames'), 'definedName'); // return self }; /** * Partially rebuild after copy/delete sheets */ Workbook.prototype._rebuild = function(){ //each 'r:id' attribute in '\xl\workbook.xml' //must point to correct 'Id' in xl\_rels\workbook.xml.rels var self = this; var order = ['worksheet', 'theme', 'styles','sharedStrings']; self.workbookRels.findall("*") .sort(function(rel1, rel2){ //using order var index1 = order.indexOf( path.basename(rel1.attrib.Type) ); var index2 = order.indexOf( path.basename(rel2.attrib.Type) ); if ((index1 + index2) == 0) { if(rel1.attrib.Id && rel2.attrib.Id) return rel1.attrib.Id.substring(3) - rel2.attrib.Id.substring(3); return rel1._id - rel2._id; } return index1 - index2 }) .forEach(function(item, index) { item.attrib.Id = 'rId' + (index+1); }) self.workbook.findall("sheets/sheet").forEach(function(item, index) { item.attrib['r:id'] = 'rId' + (index+1); item.attrib.sheetId = (index+1).toString(); }) self.archive.file(self.prefix + '/' + '_rels' + '/' + path.basename(self.workbookPath) + '.rels', etree.tostring(self.workbookRels)); self.archive.file(self.workbookPath, etree.tostring(self.workbook)); self.sheets = self.loadSheets(self.prefix, self.workbook, self.workbookRels); } /** * Load a .xlsx file from a byte array. */ Workbook.prototype.loadTemplate = async function(data) { var self = this; if(Buffer.isBuffer(data)) { data = data.toString('binary'); } self.archive = await new JSZip.loadAsync(data, {base64: false, checkCRC32: true}); // Load relationships var rels = etree.parse(await self.archive.file("_rels/.rels").async("string")).getroot(), workbookPath = rels.find("Relationship[@Type='" + DOCUMENT_RELATIONSHIP + "']").attrib.Target; self.workbookPath = workbookPath; self.prefix = path.dirname(workbookPath); self.workbook = etree.parse(await self.archive.file(workbookPath).async("string")).getroot(); self.workbookRels = etree.parse(await self.archive.file(self.prefix + "/" + '_rels' + "/" + path.basename(workbookPath) + '.rels').async("string")).getroot(); self.sheets = self.loadSheets(self.prefix, self.workbook, self.workbookRels); self.calChainRel = self.workbookRels.find("Relationship[@Type='" + CALC_CHAIN_RELATIONSHIP + "']") if (self.calChainRel) { self.calcChainPath = self.prefix + "/" + self.calChainRel.attrib.Target; } self.sharedStringsPath = self.prefix + "/" + self.workbookRels.find("Relationship[@Type='" + SHARED_STRINGS_RELATIONSHIP + "']").attrib.Target; self.sharedStrings = []; etree.parse(await self.archive.file(self.sharedStringsPath).async("string")).getroot().findall('si').forEach(function(si) { var t = {text:''}; si.findall('t').forEach(function(tmp){ t.text += tmp.text; }); si.findall('r/t').forEach(function(tmp){ t.text += tmp.text; }); self.sharedStrings.push(t.text); self.sharedStringsLookup[t.text] = self.sharedStrings.length - 1; }); }; /** * Interpolate values for the sheet with the given number (1-based) or * name (if a string) using the given substitutions (an object). */ Workbook.prototype.substitute = async function(sheetName, substitutions) { var self = this; var sheet = await self.loadSheet(sheetName); var dimension = sheet.root.find("dimension"), sheetData = sheet.root.find("sheetData"), currentRow = null, totalRowsInserted = 0, totalColumnsInserted = 0, namedTables = await self.loadTables(sheet.root, sheet.filename), rows = []; sheetData.findall("row").forEach(function(row) { row.attrib.r = currentRow = self.getCurrentRow(row, totalRowsInserted); rows.push(row); var cells = [], cellsInserted = 0, newTableRows = []; row.findall("c").forEach(function(cell) { var appendCell = true; cell.attrib.r = self.getCurrentCell(cell, currentRow, cellsInserted); // If c[@t="s"] (string column), look up /c/v@text as integer in // `this.sharedStrings` if(cell.attrib.t === "s") { // Look for a shared string that may contain placeholders var cellValue = cell.find("v"), stringIndex = parseInt(cellValue.text, 10), string = self.sharedStrings[stringIndex]; if(string === undefined) { return; } // Loop over placeholders self.extractPlaceholders(string).forEach(function(placeholder) { // Only substitute things for which we have a substitution var substitution = _get(substitutions, placeholder.name, ''), newCellsInserted = 0; if(placeholder.full && placeholder.type === "table" && substitution instanceof Array) { newCellsInserted = self.substituteTable( row, newTableRows, cells, cell, namedTables, substitution, placeholder.key ); // don't double-insert cells // this applies to arrays only, incorrectly applies to object arrays when there a single row, thus not rendering single row if (newCellsInserted !== 0 || substitution.length) { if (substitution.length === 1) { appendCell = true; } if (substitution[0][placeholder.key] instanceof Array) { appendCell = false; } } // Did we insert new columns (array values)? if(newCellsInserted !== 0) { cellsInserted += newCellsInserted; self.pushRight(self.workbook, sheet.root, cell.attrib.r, newCellsInserted); } } else if(placeholder.full && placeholder.type === "normal" && substitution instanceof Array) { appendCell = false; // don't double-insert cells newCellsInserted = self.substituteArray( cells, cell, substitution ); if(newCellsInserted !== 0) { cellsInserted += newCellsInserted; self.pushRight(self.workbook, sheet.root, cell.attrib.r, newCellsInserted); } } else { if (placeholder.key) { substitution = _get(substitutions, placeholder.name + '.' + placeholder.key); } string = self.substituteScalar(cell, string, placeholder, substitution); } }); } // if we are inserting columns, we may not want to keep the original cell anymore if(appendCell) { cells.push(cell); } }); // cells loop // We may have inserted columns, so re-build the children of the row self.replaceChildren(row, cells); // Update row spans attribute if(cellsInserted !== 0) { self.updateRowSpan(row, cellsInserted); if(cellsInserted > totalColumnsInserted) { totalColumnsInserted = cellsInserted; } } // Add newly inserted rows if(newTableRows.length > 0) { newTableRows.forEach(function(row) { rows.push(row); ++totalRowsInserted; }); self.pushDown(self.workbook, sheet.root, namedTables, currentRow, newTableRows.length); } }); // rows loop // We may have inserted rows, so re-build the children of the sheetData self.replaceChildren(sheetData, rows); // Update placeholders in table column headers self.substituteTableColumnHeaders(namedTables, substitutions); // Update placeholders in hyperlinks await self.substituteHyperlinks(sheet.filename, substitutions); // Update if we added rows or columns if(dimension) { if(totalRowsInserted > 0 || totalColumnsInserted > 0) { var dimensionRange = self.splitRange(dimension.attrib.ref), dimensionEndRef = self.splitRef(dimensionRange.end); dimensionEndRef.row += totalRowsInserted; dimensionEndRef.col = self.numToChar(self.charToNum(dimensionEndRef.col) + totalColumnsInserted); dimensionRange.end = self.joinRef(dimensionEndRef); dimension.attrib.ref = self.joinRange(dimensionRange); } } //Here we are forcing the values in formulas to be recalculated // existing as well as just substituted sheetData.findall("row").forEach(function(row) { row.findall("c").forEach(function(cell) { var formulas = cell.findall('f'); if (formulas && formulas.length > 0) { cell.findall('v').forEach(function(v){ cell.remove(v); }); } }) }) // Write back the modified XML trees self.archive.file(sheet.filename, etree.tostring(sheet.root)); self.archive.file(self.workbookPath, etree.tostring(self.workbook)); // Remove calc chain - Excel will re-build, and we may have moved some formulae if(self.calcChainPath && self.archive.file(self.calcChainPath)) { self.archive.remove(self.calcChainPath); } await self.writeSharedStrings(); self.writeTables(namedTables); }; /** * Generate a new binary .xlsx file */ Workbook.prototype.generate = async function(options) { var self = this; if(!options) { options = { type: "binarystring" } } return await self.archive.generateAsync(options); }; // Helpers // Write back the new shared strings list Workbook.prototype.writeSharedStrings = async function() { var self = this; var root = etree.parse(await self.archive.file(self.sharedStringsPath).async("string")).getroot(), children = root.getchildren(); root.delSlice(0, children.length); self.sharedStrings.forEach(function(string) { var si = new etree.Element("si"), t = new etree.Element("t"); t.text = string; si.append(t); root.append(si); }); root.attrib.count = self.sharedStrings.length; root.attrib.uniqueCount = self.sharedStrings.length; self.archive.file(self.sharedStringsPath, etree.tostring(root)); }; // Add a new shared string Workbook.prototype.addSharedString = function(s) { var self = this; var idx = self.sharedStrings.length; self.sharedStrings.push(s); self.sharedStringsLookup[s] = idx; return idx; }; // Get the number of a shared string, adding a new one if necessary. Workbook.prototype.stringIndex = function(s) { var self = this; var idx = self.sharedStringsLookup[s]; if(idx === undefined) { idx = self.addSharedString(s); } return idx; }; // Replace a shared string with a new one at the same index. Return the // index. Workbook.prototype.replaceString = function(oldString, newString) { var self = this; var idx = self.sharedStringsLookup[oldString]; if(idx === undefined) { idx = self.addSharedString(newString); } else { self.sharedStrings[idx] = newString; delete self.sharedStringsLookup[oldString]; self.sharedStringsLookup[newString] = idx; } return idx; }; // Get a list of sheet ids, names and filenames Workbook.prototype.loadSheets = function(prefix, workbook, workbookRels) { var sheets = []; workbook.findall("sheets/sheet").forEach(function(sheet) { var sheetId = sheet.attrib.sheetId, relId = sheet.attrib['r:id'], relationship = workbookRels.find("Relationship[@Id='" + relId + "']"), filename = prefix + "/" + relationship.attrib.Target; sheets.push({ id: parseInt(sheetId, 10), name: sheet.attrib.name, filename: filename }); }); return sheets; }; // Get sheet a sheet, including filename and name Workbook.prototype.loadSheet = async function(sheet) { var self = this; var info = null; for(var i = 0; i < self.sheets.length; ++i) { if((typeof(sheet) === "number" && self.sheets[i].id === sheet) || (self.sheets[i].name === sheet)) { info = self.sheets[i]; break; } } if(info === null && (typeof(sheet) === "number")){ //Get the sheet that corresponds to the 0 based index if the id does not work info = self.sheets[sheet - 1]; } if(info === null) { throw new Error("Sheet " + sheet + " not found"); } return { filename: info.filename, name: info.name, id: info.id, root: etree.parse(await self.archive.file(info.filename).async("string")).getroot() }; }; // Load tables for a given sheet Workbook.prototype.loadTables = async function(sheet, sheetFilename) { var self = this; var sheetDirectory = path.dirname(sheetFilename), sheetName = path.basename(sheetFilename), relsFilename = sheetDirectory + "/" + '_rels' + "/" + sheetName + '.rels', relsFile = self.archive.file(relsFilename), tables = []; // [{filename: ..., root: ....}] if(relsFile === null) { return tables; } var rels = etree.parse(await relsFile.async("string")).getroot(); for(let tablePart of sheet.findall("tableParts/tablePart")) { var relationshipId = tablePart.attrib['r:id'], target = rels.find("Relationship[@Id='" + relationshipId + "']").attrib.Target, tableFilename = target.replace('..', self.prefix), tableTree = etree.parse(await self.archive.file(tableFilename).async("string")); tables.push({ filename: tableFilename, root: tableTree.getroot() }); } return tables; }; // Write back possibly-modified tables Workbook.prototype.writeTables = function(tables) { var self = this; tables.forEach(function(namedTable) { self.archive.file(namedTable.filename, etree.tostring(namedTable.root)); }); }; //Perform substitution in hyperlinks Workbook.prototype.substituteHyperlinks = async function(sheetFilename, substitutions) { let self = this; const sheetDirectory = path.dirname(sheetFilename), sheetName = path.basename(sheetFilename), relsFilename = sheetDirectory + "/" + '_rels' + "/" + sheetName + '.rels', relsFile = self.archive.file(relsFilename); etree.parse(await self.archive.file(self.sharedStringsPath).async("string")).getroot(); if(relsFile === null) { return; } const rels = etree.parse(await relsFile.async("string")).getroot(); const relationships = rels._children; const newRelationships = []; relationships.forEach(function(relationship){ newRelationships.push(relationship); if(relationship.attrib.Type === HYPERLINK_RELATIONSHIP) { let target = relationship.attrib.Target; //Double-decode due to excel double encoding url placeholders target = decodeURI(decodeURI(target)); self.extractPlaceholders(target).forEach(function (placeholder) { const substitution = substitutions[placeholder.name]; if (substitution === undefined) { return; } target = target.replace(placeholder.placeholder, self.stringify(substitution)); relationship.attrib.Target = encodeURI(target); } ); } }); self.replaceChildren(rels, newRelationships); self.archive.file(relsFilename, etree.tostring(rels)); }; // Perform substitution in table headers Workbook.prototype.substituteTableColumnHeaders = function(tables, substitutions) { var self = this; tables.forEach(function(table) { var root = table.root, columns = root.find("tableColumns"), autoFilter = root.find("autoFilter"), tableRange = self.splitRange(root.attrib.ref), idx = 0, inserted = 0, newColumns = []; columns.findall("tableColumn").forEach(function(col) { ++idx; col.attrib.id = Number(idx).toString(); newColumns.push(col); var name = col.attrib.name; self.extractPlaceholders(name).forEach(function(placeholder) { var substitution = substitutions[placeholder.name]; if(substitution === undefined) { return; } // Array -> new columns if(placeholder.full && placeholder.type === "normal" && substitution instanceof Array) { substitution.forEach(function(element, i) { var newCol = col; if(i > 0) { newCol = self.cloneElement(newCol); newCol.attrib.id = Number(++idx).toString(); newColumns.push(newCol); ++inserted; tableRange.end = self.nextCol(tableRange.end); } newCol.attrib.name = self.stringify(element); }); // Normal placeholder } else { name = name.replace(placeholder.placeholder, self.stringify(substitution)); col.attrib.name = name; } }); }); self.replaceChildren(columns, newColumns); // Update range if we inserted columns if(inserted > 0) { columns.attrib.count = Number(idx).toString(); root.attrib.ref = self.joinRange(tableRange); if(autoFilter !== null) { // XXX: This is a simplification that may stomp on some configurations autoFilter.attrib.ref = self.joinRange(tableRange); } } //update ranges for totalsRowCount var tableRoot = table.root, tableRange = self.splitRange(tableRoot.attrib.ref), tableStart = self.splitRef(tableRange.start), tableEnd = self.splitRef(tableRange.end); if (tableRoot.attrib.totalsRowCount) { var autoFilter = tableRoot.find("autoFilter"); if(autoFilter !== null) { autoFilter.attrib.ref = self.joinRange({ start: self.joinRef(tableStart), end: self.joinRef(tableEnd), }); } ++tableEnd.row; tableRoot.attrib.ref = self.joinRange({ start: self.joinRef(tableStart), end: self.joinRef(tableEnd), }); } }); }; // Return a list of tokens that may exist in the string. // Keys are: `placeholder` (the full placeholder, including the `${}` // delineators), `name` (the name part of the token), `key` (the object key // for `table` tokens), `full` (boolean indicating whether this placeholder // is the entirety of the string) and `type` (one of `table` or `cell`) Workbook.prototype.extractPlaceholders = function(string) { // Yes, that's right. It's a bunch of brackets and question marks and stuff. var re = /\${(?:(.+?):)?(.+?)(?:\.(.+?))?}/g; var match = null, matches = []; while((match = re.exec(string)) !== null) { matches.push({ placeholder: match[0], type: match[1] || 'normal', name: match[2], key: match[3], full: match[0].length === string.length }); } return matches; }; // Split a reference into an object with keys `row` and `col` and, // optionally, `table`, `rowAbsolute` and `colAbsolute`. Workbook.prototype.splitRef = function(ref) { var match = ref.match(/(?:(.+)!)?(\$)?([A-Z]+)(\$)?([0-9]+)/); return { table: match && match[1] || null, colAbsolute: Boolean(match && match[2]), col: match && match[3], rowAbsolute: Boolean(match && match[4]), row: parseInt(match && match[5], 10) }; }; // Join an object with keys `row` and `col` into a single reference string Workbook.prototype.joinRef = function(ref) { return (ref.table? ref.table + "!" : "") + (ref.colAbsolute? "$" : "") + ref.col.toUpperCase() + (ref.rowAbsolute? "$" : "" )+ Number(ref.row).toString(); }; // Get the next column's cell reference given a reference like "B2". Workbook.prototype.nextCol = function(ref) { var self = this; ref = ref.toUpperCase(); return ref.replace(/[A-Z]+/, function(match) { return self.numToChar(self.charToNum(match) + 1); }); }; // Get the next row's cell reference given a reference like "B2". Workbook.prototype.nextRow = function(ref) { ref = ref.toUpperCase(); return ref.replace(/[0-9]+/, function(match) { return (parseInt(match, 10) + 1).toString(); }); }; // Turn a reference like "AA" into a number like 27 Workbook.prototype.charToNum = function(str) { var num = 0; for(var idx = str.length - 1, iteration = 0; idx >= 0; --idx, ++iteration) { var thisChar = str.charCodeAt(idx) - 64, // A -> 1; B -> 2; ... Z->26 multiplier = Math.pow(26, iteration); num += multiplier * thisChar; } return num; }; // Turn a number like 27 into a reference like "AA" Workbook.prototype.numToChar = function(num) { var str = ""; for(var i = 0; num > 0; ++i) { var remainder = num % 26, charCode = remainder + 64; num = (num - remainder) / 26; // Compensate for the fact that we don't represent zero, e.g. A = 1, Z = 26, but AA = 27 if(remainder === 0) { // 26 -> Z charCode = 90; --num; } str = String.fromCharCode(charCode) + str; } return str; }; // Is ref a range? Workbook.prototype.isRange = function(ref) { return ref.indexOf(':') !== -1; }; // Is ref inside the table defined by startRef and endRef? Workbook.prototype.isWithin = function(ref, startRef, endRef) { var self = this; var start = self.splitRef(startRef), end = self.splitRef(endRef), target = self.splitRef(ref); start.col = self.charToNum(start.col); end.col = self.charToNum(end.col); target.col = self.charToNum(target.col); return ( start.row <= target.row && target.row <= end.row && start.col <= target.col && target.col <= end.col ); }; // Turn a value of any type into a string Workbook.prototype.stringify = function (value) { if(value instanceof Date) { //In Excel date is a number of days since 01/01/1900 // timestamp in ms to days + number of days from 1900 to 1970 return Number( (value.getTime()/(1000*60*60*24)) + 25569); } else if(typeof(value) === "number" || typeof(value) === "boolean") { return Number(value).toString(); } else if(typeof(value) === "string") { return String(value).toString(); } return ""; }; // Insert a substitution value into a cell (c tag) Workbook.prototype.insertCellValue = function(cell, substitution) { var self = this; var cellValue = cell.find("v"), stringified = self.stringify(substitution); if (typeof substitution ==='string' && substitution[0] === '='){ //substitution, started with '=' is a formula substitution var formula = new etree.Element("f"); formula.text = substitution.substr(1); cell.insert(1, formula); delete cell.attrib.t; //cellValue will be deleted later return formula.text } if(typeof(substitution) === "number" || substitution instanceof Date) { delete cell.attrib.t; cellValue.text = stringified; } else if(typeof(substitution) === "boolean" ) { cell.attrib.t = "b"; cellValue.text = stringified; } else { cell.attrib.t = "s"; cellValue.text = Number(self.stringIndex(stringified)).toString(); } return stringified; }; // Perform substitution of a single value Workbook.prototype.substituteScalar = function(cell, string, placeholder, substitution) { var self = this; if(placeholder.full) { return self.insertCellValue(cell, substitution); } else { var newString = string.replace(placeholder.placeholder, self.stringify(substitution)); cell.attrib.t = "s"; return self.insertCellValue(cell, newString) } }; // Perform a columns substitution from an array Workbook.prototype.substituteArray = function(cells, cell, substitution) { var self = this; var newCellsInserted = -1, // we technically delete one before we start adding back currentCell = cell.attrib.r; // add a cell for each element in the list substitution.forEach(function(element) { ++newCellsInserted; if(newCellsInserted > 0) { currentCell = self.nextCol(currentCell); } var newCell = self.cloneElement(cell); self.insertCellValue(newCell, element); newCell.attrib.r = currentCell; cells.push(newCell); }); return newCellsInserted; }; // Perform a table substitution. May update `newTableRows` and `cells` and change `cell`. // Returns total number of new cells inserted on the original row. Workbook.prototype.substituteTable = function(row, newTableRows, cells, cell, namedTables, substitution, key) { var self = this, newCellsInserted = 0; // on the original row // if no elements, blank the cell, but don't delete it if(substitution.length === 0) { delete cell.attrib.t; self.replaceChildren(cell, []); } else { var parentTables = namedTables.filter(function(namedTable) { var range = self.splitRange(namedTable.root.attrib.ref); return self.isWithin(cell.attrib.r, range.start, range.end); }); substitution.forEach(function(element, idx) { var newRow, newCell, newCellsInsertedOnNewRow = 0, newCells = [], value = _get(element, key, ''); if(idx === 0) { // insert in the row where the placeholders are if(value instanceof Array) { newCellsInserted = self.substituteArray(cells, cell, value); } else { self.insertCellValue(cell, value); } } else { // insert new rows (or reuse rows just inserted) // Do we have an existing row to use? If not, create one. if((idx - 1) < newTableRows.length) { newRow = newTableRows[idx - 1]; } else { newRow = self.cloneElement(row, false); newRow.attrib.r = self.getCurrentRow(row, newTableRows.length + 1); newTableRows.push(newRow); } // Create a new cell newCell = self.cloneElement(cell); newCell.attrib.r = self.joinRef({ row: newRow.attrib.r, col: self.splitRef(newCell.attrib.r).col }); if(value instanceof Array) { newCellsInsertedOnNewRow = self.substituteArray(newCells, newCell, value); // Add each of the new cells created by substituteArray() newCells.forEach(function(newCell) { newRow.append(newCell); }); self.updateRowSpan(newRow, newCellsInsertedOnNewRow); } else { self.insertCellValue(newCell, value); // Add the cell that previously held the placeholder newRow.append(newCell); } // expand named table range if necessary parentTables.forEach(function(namedTable) { var tableRoot = namedTable.root, autoFilter = tableRoot.find("autoFilter"), range = self.splitRange(tableRoot.attrib.ref); if(!self.isWithin(newCell.attrib.r, range.start, range.end)) { range.end = self.nextRow(range.end); tableRoot.attrib.ref = self.joinRange(range); if(autoFilter !== null) { // XXX: This is a simplification that may stomp on some configurations autoFilter.attrib.ref = tableRoot.attrib.ref; } } }); } }); } return newCellsInserted; }; // Clone an element. If `deep` is true, recursively clone children Workbook.prototype.cloneElement = function(element, deep) { var self = this; var newElement = etree.Element(element.tag, element.attrib); newElement.text = element.text; newElement.tail = element.tail; if(deep !== false) { element.getchildren().forEach(function(child) { newElement.append(self.cloneElement(child, deep)); }); } return newElement; }; // Replace all children of `parent` with the nodes in the list `children` Workbook.prototype.replaceChildren = function(parent, children) { parent.delSlice(0, parent.len()); children.forEach(function(child) { parent.append(child); }); }; // Calculate the current row based on a source row and a number of new rows // that have been inserted above Workbook.prototype.getCurrentRow = function(row, rowsInserted) { return parseInt(row.attrib.r, 10) + rowsInserted; }; // Calculate the current cell based on asource cell, the current row index, // and a number of new cells that have been inserted so far Workbook.prototype.getCurrentCell = function(cell, currentRow, cellsInserted) { var self = this; var colRef = self.splitRef(cell.attrib.r).col, colNum = self.charToNum(colRef); return self.joinRef({ row: currentRow, col: self.numToChar(colNum + cellsInserted) }); }; // Adjust the row `spans` attribute by `cellsInserted` Workbook.prototype.updateRowSpan = function(row, cellsInserted) { if(cellsInserted !== 0 && row.attrib.spans) { var rowSpan = row.attrib.spans.split(':').map(function(f) { return parseInt(f, 10); }); rowSpan[1] += cellsInserted; row.attrib.spans = rowSpan.join(":"); } }; // Split a range like "A1:B1" into {start: "A1", end: "B1"} Workbook.prototype.splitRange = function(range) { var split = range.split(":"); return { start: split[0], end: split[1] }; }; // Join into a a range like "A1:B1" an object like {start: "A1", end: "B1"} Workbook.prototype.joinRange = function(range) { return range.start + ":" + range.end; }; // Look for any merged cell or named range definitions to the right of // `currentCell` and push right by `numCols`. Workbook.prototype.pushRight = function(workbook, sheet, currentCell, numCols) { var self = this; var cellRef = self.splitRef(currentCell), currentRow = cellRef.row, currentCol = self.charToNum(cellRef.col); // Update merged cells on the same row, at a higher column sheet.findall("mergeCells/mergeCell").forEach(function(mergeCell) { var mergeRange = self.splitRange(mergeCell.attrib.ref), mergeStart = self.splitRef(mergeRange.start), mergeStartCol = self.charToNum(mergeStart.col), mergeEnd = self.splitRef(mergeRange.end), mergeEndCol = self.charToNum(mergeEnd.col); if(mergeStart.row === currentRow && currentCol < mergeStartCol) { mergeStart.col = self.numToChar(mergeStartCol + numCols); mergeEnd.col = self.numToChar(mergeEndCol + numCols); mergeCell.attrib.ref = self.joinRange({ start: self.joinRef(mergeStart), end: self.joinRef(mergeEnd), }); } }); // Named cells/ranges workbook.findall("definedNames/definedName").forEach(function(name) { var ref = name.text; if(self.isRange(ref)) { var namedRange = self.splitRange(ref), namedStart = self.splitRef(namedRange.start), namedStartCol = self.charToNum(namedStart.col), namedEnd = self.splitRef(namedRange.end), namedEndCol = self.charToNum(namedEnd.col); if(namedStart.row === currentRow && currentCol < namedStartCol) { namedStart.col = self.numToChar(namedStartCol + numCols); namedEnd.col = self.numToChar(namedEndCol + numCols); name.text = self.joinRange({ start: self.joinRef(namedStart), end: self.joinRef(namedEnd), }); } } else { var namedRef = self.splitRef(ref), namedCol = self.charToNum(namedRef.col); if(namedRef.row === currentRow && currentCol < namedCol) { namedRef.col = self.numToChar(namedCol + numCols); name.text = self.joinRef(namedRef); } } }); }; // Look for any merged cell, named table or named range definitions below // `currentRow` and push down by `numRows` (used when rows are inserted). Workbook.prototype.pushDown = function(workbook, sheet, tables, currentRow, numRows) { var self = this; var mergeCells = sheet.find("mergeCells"); // Update merged cells below this row sheet.findall("mergeCells/mergeCell").forEach(function(mergeCell) { var mergeRange = self.splitRange(mergeCell.attrib.ref), mergeStart = self.splitRef(mergeRange.start), mergeEnd = self.splitRef(mergeRange.end); if(mergeStart.row > currentRow) { mergeStart.row += numRows; mergeEnd.row += numRows; mergeCell.attrib.ref = self.joinRange({ start: self.joinRef(mergeStart), end: self.joinRef(mergeEnd), }); } //add new merge cell if (mergeStart.row == currentRow) { for (var i = 1; i <= numRows; i++) { var newMergeCell = self.cloneElement(mergeCell); mergeStart.row += 1; mergeEnd.row += 1; newMergeCell.attrib.ref = self.joinRange({ start: self.joinRef(mergeStart), end: self.joinRef(mergeEnd) }); mergeCells.attrib.count += 1; mergeCells._children.push(newMergeCell); } } }); // Update named tables below this row tables.forEach(function(table) { var tableRoot = table.root, tableRange = self.splitRange(tableRoot.attrib.ref), tableStart = self.splitRef(tableRange.start), tableEnd = self.splitRef(tableRange.end); if(tableStart.row > currentRow) { tableStart.row += numRows; tableEnd.row += numRows; tableRoot.attrib.ref = self.joinRange({ start: self.joinRef(tableStart), end: self.joinRef(tableEnd), }); var autoFilter = tableRoot.find("autoFilter"); if(autoFilter !== null) { // XXX: This is a simplification that may stomp on some configurations autoFilter.attrib.ref = tableRoot.attrib.ref; } } }); // Named cells/ranges workbook.findall("definedNames/definedName").forEach(function(name) { var ref = name.text; if(self.isRange(ref)) { var namedRange = self.splitRange(ref), namedStart = self.splitRef(namedRange.start), namedEnd = self.splitRef(namedRange.end); if(namedStart){ if(namedStart.row > currentRow) { namedStart.row += numRows; namedEnd.row += numRows; name.text = self.joinRange({ start: self.joinRef(namedStart), end: self.joinRef(namedEnd), }); } } } else { var namedRef = self.splitRef(ref); if(namedRef.row > currentRow) { namedRef.row += numRows; name.text = self.joinRef(namedRef); } } }); }; return Workbook; })(); ================================================ FILE: api/source/utils/xlsx-template-js-zip-upgrade/package.json ================================================ { "name": "xlsx-template", "version": "1.2.0", "description": "Generate .xlsx (Excel) files from templates built in Excel", "main": "./lib/index", "files": [ "lib" ], "author": { "name": "Martin Aspeli" }, "contributors": [ { "name": "Martin Aspeli", "email": "optilude@gmail.com" }, { "name": "Andrii Kurdiumov", "email": "kant2002@gmail.com" } ], "license": "MIT", "repository": { "type": "git", "url": "http://github.com/optilude/xlsx-template.git" }, "bugs": { "url": "http://github.com/optilude/xlsx-template/issues" }, "licenses": [ { "type": "MIT", "url": "http://github.com/optilude/xlsx-template/raw/master/LICENSE" } ], "dependencies": { "elementtree": "0.1.6", "jszip": "^3.5.0" } } ================================================ FILE: client/README.md ================================================ # STIG Manager Web App ### Running the STIG Manager API and Web App from source You must build the web app prior to starting the API. Assuming your shell is at the root of this repository: ``` $ cd client $ ./build.sh $ cd ../api/source $ npm ci $ node index.js ``` ### If you wish to develop or modify the web app code You must install the required modules. Assuming your shell is at the root of this repository: ``` $ cd client/src/js/modules $ npm ci ``` and invoke the API with the envar `STIGMAN_CLIENT_DIRECTORY` set to `../../client/src` ``` $ cd ../api/source $ npm ci $ STIGMAN_CLIENT_DIRECTORY=../../client/src node index.js ``` ================================================ FILE: client/build.sh ================================================ #!/bin/bash # STIG Manager client distribution build script # # Requires nodejs and npm to install uglify-js # npm install -g uglify-js # # Build artifacts will created in ./dist set -e echo "Client build starting" # Change to this script directory ScriptDir=$(dirname "$(realpath "$0")") cd $ScriptDir echo "Changed to $ScriptDir" SrcDir=src DistDir=dist # Clean dist directory echo "Cleaning $DistDir" rm -rf $DistDir/* # ExtJS echo "Preparing ExtJS resources" ExtResources="ext/adapter/ext/ext-base.js ext/ext-all.js ext/ux/GroupSummary.js ext/resources/css/ext-all.css ext/resources/css/xtheme-gray.css ext/resources/images/default/shadow-c.png ext/resources/images/default/shadow-lr.png ext/resources/images/default/shadow.png ext/resources/images/default/button/arrow.gif ext/resources/images/default/dd/drop-no.gif ext/resources/images/default/grid/loading.gif ext/resources/images/default/grid/hmenu-asc.gif ext/resources/images/default/grid/hmenu-desc.gif ext/resources/images/default/grid/columns.gif ext/resources/images/default/grid/grid-split.gif ext/resources/images/default/grid/grid3-special-col-bg.gif ext/resources/images/default/menu/menu.gif ext/resources/images/default/tree/loading.gif ext/resources/images/gray/button/btn.gif ext/resources/images/gray/button/group-cs.gif ext/resources/images/gray/button/group-tb.gif ext/resources/images/gray/button/group-lr.gif ext/resources/images/gray/form/trigger.gif ext/resources/images/gray/form/clear-trigger.gif ext/resources/images/gray/grid/col-move-bottom.gif ext/resources/images/gray/grid/col-move-top.gif ext/resources/images/gray/grid/grid3-special-col-sel-bg.gif ext/resources/images/gray/grid/sort_asc.gif ext/resources/images/gray/grid/sort_desc.gif ext/resources/images/gray/menu/group-checked.gif ext/resources/images/gray/menu/item-over.gif ext/resources/images/gray/menu/item-over-disabled.gif ext/resources/images/gray/menu/menu-parent.gif ext/resources/images/gray/panel/tool-sprites.gif ext/resources/images/gray/panel/white-top-bottom.gif ext/resources/images/gray/qtip/tip-anchor-sprite.gif ext/resources/images/gray/qtip/tip-sprite.gif ext/resources/images/gray/tabs/tab-close.gif ext/resources/images/gray/tabs/scroll-left.gif ext/resources/images/gray/tabs/scroll-right.gif ext/resources/images/gray/window/icon-question.gif ext/ux/css/LockingGridView.css ext/ux/fileuploadfield/css/fileuploadfield.css" tar cf - -C $SrcDir --files-from <(echo "${ExtResources}") | tar xf - -C $DistDir # CSS echo "Preparing CSS resources" cp -r $SrcDir/css $DistDir # Fonts echo "Preparing font resources" cp -r $SrcDir/fonts $DistDir # Images echo "Preparing image resources" cp -r $SrcDir/img $DistDir # HTML echo "Preparing HTML resources" cp $SrcDir/index.html $DistDir/index.html cp $SrcDir/reauth.html $DistDir/reauth.html # Workers echo "Preparing Worker resources" mkdir -p $DistDir/js mkdir -p $DistDir/js/workers cp $SrcDir/js/workers/service-worker.js $DistDir/js/workers/service-worker.js cp $SrcDir/js/workers/oidc-worker.js $DistDir/js/workers/oidc-worker.js cp $SrcDir/js/workers/state-worker.js $DistDir/js/workers/state-worker.js # npm echo "Preparing npm resources" cd $SrcDir/js/modules npm install cd $ScriptDir # JS echo "Preparing JavaScript resources" cp $SrcDir/js/resources-dist.js $DistDir/js/resources.js cp $SrcDir/js/init.js $DistDir/js/init.js cp $SrcDir/js/Env.js.example $DistDir/js cp -r $SrcDir/js/modules $DistDir/js/modules cd $SrcDir/js uglifyjs \ 'diff.js' \ 'diff2html.min.js' \ 'stigmanUtils.js' \ 'SM/Global.js' \ 'SM/StackTrace.js' \ 'SM/Error.js' \ 'SM/ActivityHandler.js' \ 'SM/FlexboxLayout.js' \ 'BufferView.js' \ 'SM/EventDispatcher.js' \ 'SM/Cache.js' \ 'SM/ServiceWorker.js' \ 'SM/State.js' \ 'SM/TipContent.js' \ 'SM/Ajax.js' \ 'SM/Classification.js' \ 'SM/MainPanel.js' \ 'SM/WhatsNew.js' \ 'FileUploadField.js' \ 'MessageBox.js' \ 'overrides.js' \ 'RowEditor.js' \ 'RowExpander.js' \ 'SM/SelectingGridToolbar.js' \ 'SM/NavTree.js' \ 'SM/RowEditorToolbar.js' \ 'SM/BatchReview.js' \ 'SM/CollectionClone.js' \ 'SM/Grant.js' \ 'SM/Manage.js' \ 'SM/CollectionPanel.js' \ 'SM/MetaPanel.js' \ 'LockingGridView.js' \ 'SM/ColumnFilters.js' \ 'SM/FindingsPanel.js' \ 'SM/Acl.js' \ 'SM/Attachments.js' \ 'SM/Exports.js' \ 'SM/Review.js' \ 'SM/ReviewsImport.js' \ 'SM/TransferAssets.js' \ 'SM/Library.js' \ 'SM/StigRevision.js' \ 'SM/Inventory.js' \ 'SM/AssetSelection.js' \ 'SM/User.js' \ 'SM/UserGroup.js' \ 'SM/AppInfo.js' \ 'SM/AppData.js' \ 'SM/Job.js' \ 'library.js' \ 'collectionAdmin.js' \ 'collectionManager.js' \ 'stigAdmin.js' \ 'completionStatus.js' \ 'findingsSummary.js' \ 'review.js' \ 'collectionReview.js' \ 'ExportButton.js' \ 'jszip.min.js' \ 'FileSaver.js' \ 'jsonview.bundle.js' \ 'SM/LogStream.js' \ 'SM/ApiState.js' \ 'stigman.js' -o ../../$DistDir/js/stig-manager.min.js -m -c --source-map "root='src',url='stig-manager.min.js.map'" echo "Copying files for sourcemap debugging" cp -r . ../../$DistDir/js/src echo "Client build finished" ================================================ FILE: client/dist/.gitignore ================================================ ## Directory for the STIG Manager client distribution # Content can be written here by executing: # $ ../build.sh # # This file hopes to prevent commits to this directory # Ignore everything in this directory * # Except this file !.gitignore ================================================ FILE: client/src/css/ColumnHeaderGroup.css ================================================ /*! * Ext JS Library 3.2.1 * Copyright(c) 2006-2010 Ext JS, Inc. * licensing@extjs.com * http://www.extjs.com/license */ td.ux-grid-hd-group-cell { background: url(/ext/resources/images/default/grid/grid3-hrow.gif) repeat-x bottom; } ================================================ FILE: client/src/css/RowEditor.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-ie .x-row-editor .x-form-text { margin:0 !important; } .x-row-editor-header { height:2px; overflow:hidden; background: transparent url(../img/row-editor-bg-grey.gif) repeat-x 0 0; } .x-row-editor-footer { height:2px; overflow:hidden; background: transparent url(../img/row-editor-bg-grey.gif) repeat-x 0 -2px; } .ext-ie .x-row-editor-footer { margin-top:-1px; } .x-row-editor-body { overflow:hidden; zoom:1; background: #e8e8e8; padding-top:2px; } .x-row-editor .x-btns { position:absolute; top:28px; left:20px; padding-left:5px; background: transparent url(../img/row-editor-btns-grey.gif) no-repeat 0 0; } .x-row-editor .x-btns .x-plain-bwrap { padding-right:5px; background: transparent url(../img/row-editor-btns-grey.gif) no-repeat right -31px; } .x-row-editor .x-btns .x-plain-body { background: transparent url(../img/row-editor-btns-grey.gif) repeat-x 0 -62px; height:31px; } .x-row-editor .x-btns .x-table-layout-cell { padding:3px; } /* Fixes for IE6/7 trigger fields */ .ext-ie6 .x-row-editor .x-form-field-wrap .x-form-trigger, .ext-ie7 .x-row-editor .x-form-field-wrap .x-form-trigger { top: 1px; } .ext-ie6 .x-row-editor .x-form-field-trigger-wrap, .ext-ie7 .x-row-editor .x-form-field-trigger-wrap { margin-top: -1px; } .errorTip .x-tip-body ul{ list-style-type:disc; margin-left:15px; } .x-row-editor.x-small-editor { border-right: #c4c4c4 solid 1px; } ================================================ FILE: client/src/css/dark-mode.css ================================================ /*! Portions were generated by Dark Reader | Licensed under MIT https://github.com/darkreader/darkreader/blob/master/LICENSE */ :root { --color-severity-high:rgb(196 130 130); --color-severity-medium:rgb(200 149 60); --color-severity-low:rgb(169 177 219); --color-risk-moderate: rgb(230 210 0); --color-risk-very-low:rgb(100 167 90); --color-scrollbar-idle: #333333; --color-scrollbar-hover:#505050; --color-http-status-200: #006017; --color-http-status-300: #003761; --color-http-status-400: #984a00; --color-http-status-500: #980000; --color-job-run-state-completed: hsl(121 84% 19% / 1); --color-job-run-state-running: hsl(222, 84%, 19%); --color-job-run-state-failed: hsl(1, 84%, 19%); --color-job-run-state-missing: hsl(0deg 0% 32.91%); } html { background-color: #181a1b!important } body, button, html, input, select, textarea { background-color: #181a1b; border-color: #736b5e; color: hsl(0 0% 85% / 1); } a { color: #3391ff } table { border-color: #545b5e } ::placeholder { color: #b2aba1; opacity: .5!important } input:-webkit-autofill, select:-webkit-autofill, textarea:-webkit-autofill { background-color: #555b00!important; color: #e8e6e3!important } ::selection { background-color: #004daa!important; color: #e8e6e3!important } ::-moz-selection { background-color: #004daa!important; color: #e8e6e3!important } :root { color-scheme: dark } .x-grid3-row-over .sm-grid-cell-with-toolbar .sm-static-width { filter: grayscale(100%) brightness(75%); } .x-grid3-row-over .sm-grid-cell-with-toolbar-2 .sm-static-width .sm-grid-cell-tool img { filter: grayscale(100%) brightness(75%); } /* .x-grid3-row-over .sm-grid-cell-with-toolbar-2 .sm-static-width .sm-grid-cell-tool:hover img { cursor: pointer; scale: 150%; filter: brightness(100%); } */ .sm-metrics-status-table .sm-metrics-label { border: 1px solid #444 } .sm-metrics-status-table .sm-metrics-total td { border-top: 1px solid #444 } .sm-metrics-status-table .sm-metrics-assessed { background-color: var(--metrics-status-chart-assessed-dark) } .sm-metrics-status-table .sm-metrics-submitted { background-color: var(--metrics-status-chart-submitted-dark) } .sm-metrics-status-table .sm-metrics-accepted { background-color: var(--metrics-status-chart-accepted-dark); } .sm-metrics-status-table .sm-metrics-unassessed { background-color: var(--metrics-status-chart-unassessed-dark) } .sm-metrics-status-table .sm-metrics-unsaved { background-color: var(--metrics-status-chart-unsaved-dark) } .sm-metrics-status-table .sm-metrics-rejected { background-color: var(--metrics-status-chart-rejected-dark) } .sm-metrics-count-child { border: 1px solid #444; } .sm-metric-agg-panel .x-layout-split { background-color: #1f1f1f } .sm-metrics-inventory-box { background-color: hsl(21 30% 60% / 1) } .sm-metrics-overview-panel .x-panel-body { background-color: hsl(0 0% 12% / 1) } .sm-round-panel .sm-round-inner-panel .x-panel-body { background-color: #1a1d1e } .sm-round-panel .x-panel-body, .sm-round-panel.x-window { background-color: #1a1d1e; } .sm-round-panel.sm-offline-modal { background-color: hsl(4 71% 29% / 1) } .sm-round-panel.sm-unavailable-modal { background-color: hsl(24 71% 12% / 1); } .sm-round-panel.x-window-dlg { background-color: #1a1d1e; } .x-grid3-row-expanded .x-grid3-row-body { background-color: hsl(37deg 10% 23%) } .sm-truncated-action { color: #5a94b9 } .sm-review-sprite { background-color: hsl(0 0% 14% / 1); border-color: hsl(0 0% 25% / 1); color: hsl(0deg 0% 80%) } .sm-label-sprite { filter: brightness(.9); } body, html, img { border-color: initial } ol, ul { list-style-image: initial } .x-hide-nosize, .x-hide-nosize * { border-color: initial!important } .x-repaint { background-color: transparent; outline-color: initial } .x-color-palette a { text-decoration-color: initial; outline-color: initial } .x-color-palette a.x-color-palette-sel, .x-color-palette a:hover, .x-color-palette em, .x-shadow * { border-color: initial } .x-shadow .xsmc { background-color: transparent } .x-shadow .xsbc, .x-shadow .xsbl, .x-shadow .xsbr, .x-shadow .xsml, .x-shadow .xsmr, .x-shadow .xstc, .x-shadow .xstl, .x-shadow .xstr { background-image: initial; background-color: transparent } .loading-indicator { background-color: initial } .x-drag-overlay { background-image: url("../ext/resources/images/default/s.gif") } ul.x-tab-strip-bottom { border-bottom-color: initial } .x-tab-panel-header-plain, .x-tab-panel-header-plain .x-tab-strip-top { background-image: initial!important; background-color: transparent!important } .x-tab-panel-footer-plain, .x-tab-panel-footer-plain .x-tab-strip-bottom { background-image: initial!important; background-color: transparent!important } ul.x-tab-strip li.x-tab-edge { border-color: initial!important; background-image: initial!important; background-color: transparent!important } .x-tab-strip a { outline-color: initial; text-decoration-color: initial!important } .x-tab-strip-bottom .x-tab-left, .x-tab-strip-bottom .x-tab-right, .x-tab-strip-bottom .x-tab-strip-active .x-tab-left, .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-color: initial } .x-tab-scroller-left, .x-tab-scroller-right { background-color: transparent } .ext-webkit :focus { outline-color: initial!important } .x-form-field-wrap .x-form-trigger { border-color: initial; background-color: #1a1d1e; } .x-form-grow-sizer p { border-color: initial!important } .x-form-invalid-msg { background-color: transparent } .x-form .x-form-btns-ct .x-form-btns td { border-color: initial } .x-form-invalid-icon { background-color: transparent } fieldset.x-panel-collapsed { border-left-color: transparent; border-right-color: transparent } .x-fieldset-noborder { border-color: transparent } .ext-gecko .x-form-item, .ext-gecko .x-window-body .x-form-item { outline-color: initial } .x-btn button { border-color: initial; background-color: transparent; outline-color: initial } .x-btn button.sm-error-icon { background-color: #602020 } .x-btn-bc, .x-btn-bl, .x-btn-br, .x-btn-mc, .x-btn-ml, .x-btn-mr, .x-btn-tc, .x-btn-tl, .x-btn-tr { background-color: initial } .x-btn-mc em.x-btn-arrow, .x-btn-mc em.x-btn-arrow-bottom, .x-btn-mc em.x-btn-split, .x-btn-mc em.x-btn-split-bottom { background-color: transparent } .x-btn-as-arrow .x-btn-mc em { background-color: transparent } .x-btn-group-bc, .x-btn-group-bl, .x-btn-group-br, .x-btn-group-tc, .x-btn-group-tl, .x-btn-group-tr { background-color: transparent } .x-btn-group-mc { border-color: initial } .x-btn-group-mc .x-btn-group-body { background-color: transparent; border-color: initial } .x-btn-group-ml, .x-btn-group-mr, .x-btn-group-notitle .x-btn-group-tc { background-color: transparent } .x-toolbar .xtb-sep { background-image: none; background-color: #505050; width: 1px; margin: 0 3px 0 3px; } .x-toolbar-more em.x-btn-arrow { background-color: transparent } .x-toolbar-more .x-btn-mc em.x-btn-arrow { background-image: none } div.x-toolbar-no-items { color: #988f81!important } .x-grid3-hd-row td, .x-grid3-row td, .x-grid3-summary-row td { outline-color: initial } .x-grid3-body-cell { outline-color: initial } .x-grid3-resize-marker, .x-grid3-resize-proxy { border-color: initial } .x-grid3-focus { outline-color: initial } .x-grid3-header-pop-inner { background-color: transparent } .col-move-bottom, .col-move-top { background-color: transparent } .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker, .x-grid3-locked td.x-grid3-row-marker { border-bottom-color: initial!important } .x-grid3-dirty-cell { background-color: transparent } .x-grid3-topbar .x-toolbar { border-right-color: initial } .x-grid3-bottombar .x-toolbar { border-right-color: initial; border-bottom-color: initial } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner { background-color: transparent!important } .x-props-grid .x-grid3-body .x-grid3-td-name { border-color: initial } .x-grid3-col-dd { border-color: initial; background-color: transparent } .x-grid3-body .x-grid3-td-expander { background-image: initial; background-color: transparent } .x-grid3-row-expander { background-color: transparent } .x-grid3-body .x-grid3-td-checker { background-image: initial; background-color: transparent } .x-grid3-hd-checker, .x-grid3-row-checker { background-color: transparent } .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander, .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-td-numberer, .x-grid3-body .x-grid3-td-row-icon { background-image: initial; background-color: transparent } .x-grid3-check-col, .x-grid3-check-col-on { background-color: transparent } .x-grid-group-hd div.x-grid-group-title { background-color: transparent } .x-dd-drag-repair .x-dd-drag-ghost { border-color: initial; background-color: transparent } .x-dd-drop-icon { background-color: transparent } .x-tree-ec-icon, .x-tree-elbow, .x-tree-elbow-end, .x-tree-elbow-end-minus, .x-tree-elbow-end-plus, .x-tree-elbow-line, .x-tree-elbow-minus, .x-tree-elbow-plus, .x-tree-icon, .x-tree-node-collapsed .x-tree-node-icon, .x-tree-node-expanded .x-tree-node-icon, .x-tree-node-leaf .x-tree-node-icon, .x-view-selector { border-color: initial } .x-tree-arrows .x-tree-elbow, .x-tree-no-lines .x-tree-elbow, .x-tree-no-lines .x-tree-elbow-end, .x-tree-no-lines .x-tree-elbow-line { background-color: transparent } .x-tree-arrows .x-tree-elbow-minus, .x-tree-arrows .x-tree-elbow-plus { background-color: transparent } .x-tree-arrows .x-tree-elbow-end { background-color: transparent } .x-tree-arrows .x-tree-elbow-end-minus, .x-tree-arrows .x-tree-elbow-end-plus { background-color: transparent } .x-tree-arrows .x-tree-elbow-line { background-color: transparent } .x-dd-drag-ghost a, .x-tree-node a { text-decoration-color: initial; outline-color: initial } .x-tree-node .x-tree-node-inline-icon { background-color: transparent } .x-dd-drag-ghost a:hover, .x-tree-node a:hover { text-decoration-color: initial } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below { border-bottom-color: initial } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above { border-top-color: initial } .x-date-picker a { outline-color: initial } .x-date-left, .x-date-middle, .x-date-right { background-color: initial } .x-date-middle .x-btn-bc, .x-date-middle .x-btn-bl, .x-date-middle .x-btn-br, .x-date-middle .x-btn-mc, .x-date-middle .x-btn-ml, .x-date-middle .x-btn-mr, .x-date-middle .x-btn-tc, .x-date-middle .x-btn-tl, .x-date-middle .x-btn-tr { background-image: initial!important; background-color: transparent!important } .x-date-middle .x-btn-mc em.x-btn-arrow { background-color: transparent } .x-date-left a, .x-date-right a { text-decoration-color: initial!important } .x-date-inner a { text-decoration-color: initial } .x-date-inner .x-date-nextday a, .x-date-inner .x-date-prevday a { text-decoration-color: initial!important } .x-date-inner .x-date-disabled a:hover, .x-date-inner a:hover { text-decoration-color: initial!important } .x-item-disabled .x-date-inner a:hover { background-image: initial; background-color: initial } td.x-date-mp-month, td.x-date-mp-ybtn, td.x-date-mp-year { border-color: initial } .x-date-mp-btns button { text-decoration-color: initial!important } td.x-date-mp-month a, td.x-date-mp-month a:hover, td.x-date-mp-year a, td.x-date-mp-year a:hover { text-decoration-color: initial } .x-date-mp-ybtn a { background-color: transparent } .x-tip { border-color: initial } .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr { background-image: initial } .x-tip .x-tip-mc { border-color: initial } .x-tip .x-tip-ml { background-image: initial } .x-tip .x-tip-mr { background-image: initial } .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-tc { background-color: initial } .x-form-invalid-tip .x-tip-body, .x-tip-anchor { background-color: transparent } .x-menu { background-image: initial } .x-menu a { text-decoration-color: initial!important } .x-menu-list { background-color: transparent; border-color: initial } .x-menu-item-arrow { background-color: transparent } .x-menu-focus { outline-color: initial } .x-menu-item-icon { border-color: initial } .x-menu-check-item .x-menu-item-icon { background-color: transparent } .x-menu-group-item .x-menu-item-icon { background-color: transparent } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon { background-color: transparent } .x-menu .x-date-picker, .x-menu-plain .x-color-palette, .x-menu-plain .x-date-picker { border-color: initial } .x-box-ml, .x-box-tc, .x-box-tl, .x-box-tr { background-color: transparent } .x-box-bc, .x-box-bl, .x-box-br, .x-box-mr { background-color: transparent } .x-combo-list .x-toolbar { border-bottom-color: initial } .x-panel-header { background-color: transparent } .x-panel-mc .x-panel-tbar .x-toolbar, .x-panel-tbar-noheader .x-toolbar { border-bottom-color: initial } .x-panel-tl .x-panel-header { border-color: initial; background-image: initial; background-color: transparent } .x-panel-tc { background-color: transparent } .x-panel-tl { background-color: transparent } .x-panel-bc, .x-panel-bl, .x-panel-br, .x-panel-tr { background-color: transparent } .x-panel-mc { border-color: initial } .x-panel-mc .x-panel-body { background-color: transparent; border-color: initial } .x-panel-mr, .x-tool { background-color: transparent } .x-panel-reset .x-panel-body del, .x-panel-reset .x-panel-body s, .x-panel-reset .x-panel-body strike { text-decoration-color: initial } .x-panel-reset .x-panel-body hr { border-color: initial } .x-panel-reset .x-panel-body :link, .x-panel-reset .x-panel-body :visited, .x-panel-reset .x-panel-body ins, .x-panel-reset .x-panel-body u { text-decoration-color: initial } .x-window-bc, .x-window-bl, .x-window-br, .x-window-tc, .x-window-tl, .x-window-tr { background-color: transparent } .x-window-ml, .x-window-mr { background-color: transparent } .x-window-bbar .x-toolbar, .x-window-maximized .x-window-mc, .x-window-tbar .x-toolbar { border-left-color: initial; border-right-color: initial } .x-window-bbar .x-toolbar { border-bottom-color: initial } .x-window-body { background-color: transparent } .x-window-sizing-ghost ul { border-color: initial!important } .x-dlg-focus { outline-color: initial } .x-html-editor-tb .x-btn-text { background-color: transparent } .x-html-editor-tb .x-edit-backcolor, .x-html-editor-tb .x-edit-bold, .x-html-editor-tb .x-edit-createlink, .x-html-editor-tb .x-edit-decreasefontsize, .x-html-editor-tb .x-edit-forecolor, .x-html-editor-tb .x-edit-increasefontsize, .x-html-editor-tb .x-edit-insertorderedlist, .x-html-editor-tb .x-edit-insertunorderedlist, .x-html-editor-tb .x-edit-italic, .x-html-editor-tb .x-edit-justifycenter, .x-html-editor-tb .x-edit-justifyleft, .x-html-editor-tb .x-edit-justifyright, .x-html-editor-tb .x-edit-sourceedit, .x-html-editor-tb .x-edit-underline, .x-menu-item img.x-edit-backcolor, .x-menu-item img.x-edit-bold, .x-menu-item img.x-edit-createlink, .x-menu-item img.x-edit-decreasefontsize, .x-menu-item img.x-edit-forecolor, .x-menu-item img.x-edit-increasefontsize, .x-menu-item img.x-edit-insertorderedlist, .x-menu-item img.x-edit-insertunorderedlist, .x-menu-item img.x-edit-italic, .x-menu-item img.x-edit-justifycenter, .x-menu-item img.x-edit-justifyleft, .x-menu-item img.x-edit-justifyright, .x-menu-item img.x-edit-sourceedit, .x-menu-item img.x-edit-underline { background-image: url("../ext/resources/images/default/editor/tb-sprite.gif") } .x-accordion-hd { border-top-color: initial; background-color: transparent } .x-layout-split { background-color: transparent; transition-property: background-color; transition-duration: 100ms; transition-delay: 0s; } .x-layout-split:hover { background-color: #243385; transition-duration: 100ms; transition-delay: 0s; } .ext-strict .ext-ie6 .x-layout-split { background-color: #181a1b!important } .x-layout-split-h, .x-layout-split-v { background-image: url("../ext/resources/images/default/s.gif") } .x-layout-cmini-east, .x-layout-cmini-north, .x-layout-cmini-south, .x-layout-cmini-west { border-color: initial; background-color: transparent } .x-progress-wrap, .x-viewport, .x-viewport body { border-color: initial } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-color: transparent } .x-slider-focus { outline-color: initial } .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner, .x-slider-horz .x-slider-thumb, .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner, .x-slider-vert .x-slider-thumb { background-color: transparent } .x-window-dlg .x-window-body, .x-window-dlg .x-window-mc { border-color: initial!important } .x-window-dlg .ext-mb-error, .x-window-dlg .ext-mb-info, .x-window-dlg .ext-mb-question, .x-window-dlg .ext-mb-warning, .x-window-dlg .x-msg-box-wait { background-color: transparent } .x-form-field-wrap .x-form-trigger { border-bottom-color: #42484a } .x-form-invalid.x-form-composite { border-color: initial; background-image: none } .x-form-invalid.x-form-composite .x-form-invalid { background-color: #181a1b; background-image: url("data:image/svg+xml;base64,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"); border-color: #c23000 } td.grid-hd-group-cell { background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMiIgaGVpZ2h0PSIyNCI+PGRlZnM+PGZpbHRlciBpZD0iZGFya3JlYWRlci1pbWFnZS1maWx0ZXIiPjxmZUNvbG9yTWF0cml4IHR5cGU9Im1hdHJpeCIgdmFsdWVzPSIwLjMzMyAtMC42NjcgLTAuNjY3IDAuMDAwIDEuMDAwIC0wLjY2NyAwLjMzMyAtMC42NjcgMC4wMDAgMS4wMDAgLTAuNjY3IC0wLjY2NyAwLjMzMyAwLjAwMCAxLjAwMCAwLjAwMCAwLjAwMCAwLjAwMCAxLjAwMCAwLjAwMCIgLz48L2ZpbHRlcj48L2RlZnM+PGltYWdlIHdpZHRoPSIyIiBoZWlnaHQ9IjI0IiBmaWx0ZXI9InVybCgjZGFya3JlYWRlci1pbWFnZS1maWx0ZXIpIiB4bGluazpocmVmPSJkYXRhOmltYWdlL2dpZjtiYXNlNjQsUjBsR09EbGhBZ0FZQUljQUFORFEwT3ZzN3V6dDcrM3U4Tzd2OGUvdzh2RHg4L0h5OVBuNStRQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQ0g1QkFBQUFQOEFMQUFBQUFBQ0FCZ0FBQWdoQUJFSUhFaXdZTUVEQ0E4WVdNaXdnTU1DQkFnTW1EaEFnSUFBR0FNQUFCQVFBRHM9IiAvPjwvc3ZnPg=="); background-color: initial } .x-menu-plain { background-image: none } .x-color-menu, .x-date-menu { background-color: #181a1b!important } .x-panel-mc .x-panel-tbar .x-toolbar, .x-panel-tbar-noheader .x-toolbar { border-top-color: #1a4072 } .x-item-disabled { color: #988f81 } .x-item-disabled * { color: #988f81!important } .x-splitbar-proxy { background-color: #484e51 } .x-color-palette a { border-color: #303436 } .x-color-palette a.x-color-palette-sel, .x-color-palette a:hover { border-color: #3e4345; background-color: #242728 } .x-color-palette em { border-color: #4a5053 } .x-ie-shadow { background-color: #5a6165 } .loading-indicator { background-image: url("../ext/resources/images/default/grid/loading.gif") } .x-spotlight { background-color: #35393b } .x-tab-panel-footer, .x-tab-panel-header { background-color: transparent; border-color: #3d4245 } ul.x-tab-strip-bottom { background-color: #2c3032; background-image: url("data:image/svg+xml;base64,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"); border-top-color: #3d4245 } .x-tab-panel-footer-plain .x-tab-strip-spacer, .x-tab-panel-header-plain .x-tab-strip-spacer { border-color: #3d4245; background-color: #242728 } .x-tab-strip span.x-tab-strip-text { color: #c8c3bc } .x-tab-strip-over span.x-tab-strip-text { color: #dddad6 } .x-tab-strip-active span.x-tab-strip-text { color: #c8c3bc } .x-tab-strip-disabled .x-tabs-text { color: #b2aca2 } .x-tab-strip-bottom .x-tab-right { background-image: url("data:image/svg+xml;base64,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") } .x-tab-strip-bottom .x-tab-left { background-image: url("data:image/svg+xml;base64,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") } .x-tab-strip-bottom .x-tab-strip-over .x-tab-left { background-image: url("data:image/svg+xml;base64,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") } .x-tab-strip-bottom .x-tab-strip-over .x-tab-right { background-image: url("data:image/svg+xml;base64,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") } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url("../ext/resources/images/gray/tabs/tab-btm-right-bg.gif") } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url("data:image/svg+xml;base64,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") } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image: url('../img/tab-close-dark.gif') } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover { background-image: url("data:image/svg+xml;base64,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") } .x-tab-panel-body-top { border-top-color: initial } .x-tab-panel-body-bottom { border-bottom-color: initial } .x-tab-scroller-left { background-image: url("data:image/svg+xml;base64,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"); border-bottom-color: #3d4245 } .x-tab-scroller-right { background-image: url("data:image/svg+xml;base64,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"); border-bottom-color: #3d4245 } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color: #3d4245 } .x-form-text, textarea.x-form-field { background-color: #181a1b; background-image: url("data:image/svg+xml;base64,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"); border-color: #42474a } .x-form-select-one { background-color: #181a1b; border-color: #42474a } .x-form-check-group-label { border-bottom-color: #3d4245; color: #c8c3bc } .x-editor .x-form-check-wrap { background-color: #181a1b } .x-form-field-wrap .x-form-trigger { background-image: url("../img/dark/trigger-flat-dark.svg"); border: solid rgb(45 69 83); border-width: 1px 1px 1px 0; height: 20px; width: 16px } x-trigger-wrap-focus .x-form-field-wrap .x-form-trigger { border: solid rgb(83 72 45); border-width: 1px 1px 1px 0; height: 20px; width: 16px } .x-small-editor .x-form-field-wrap .x-form-trigger { height: 18px; } .x-form-field-wrap .x-form-date-trigger { /* background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMTAyIiBoZWlnaHQ9IjI0Ij48ZGVmcz48ZmlsdGVyIGlkPSJkYXJrcmVhZGVyLWltYWdlLWZpbHRlciI+PGZlQ29sb3JNYXRyaXggdHlwZT0ibWF0cml4IiB2YWx1ZXM9IjAuMzMzIC0wLjY2NyAtMC42NjcgMC4wMDAgMS4wMDAgLTAuNjY3IDAuMzMzIC0wLjY2NyAwLjAwMCAxLjAwMCAtMC42NjcgLTAuNjY3IDAuMzMzIDAuMDAwIDEuMDAwIDAuMDAwIDAuMDAwIDAuMDAwIDEuMDAwIDAuMDAwIiAvPjwvZmlsdGVyPjwvZGVmcz48aW1hZ2Ugd2lkdGg9IjEwMiIgaGVpZ2h0PSIyNCIgZmlsdGVyPSJ1cmwoI2RhcmtyZWFkZXItaW1hZ2UtZmlsdGVyKSIgeGxpbms6aHJlZj0iZGF0YTppbWFnZS9naWY7YmFzZTY0LFIwbEdPRGxoWmdBWUFOVW9BSTZPanQ3ZTNzek16UC8vLzhuSnlhU2twT0RnNE5mWDE5SFIwY2pJeU83dTdpZ29LUHo4L1BiMjlybTV1Zkh4OGYzOS9kTFMwdFBUMDkzZDNjTEN3dHJhMnR2YjI5bloyZS92NzhyS3lzZkh4OFhGeGR6YzNQRHc4Ti9mMzh2THkvdjcrL1gxOWRiVzF0VFUxT3pzN1BQejgrM3Q3ZnI2K3YvLy93QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUNINUJBRUFBQ2dBTEFBQUFBQm1BQmdBQUFiL1FJZHdTQ3c2VUlXa2Nza3NJSnZRNURQYW5GS1gxcXNVd3UxNnZ4Y0hZMHd1bXorRmczck5icVBOOFBJN0hrZTM3MnowWTgvdjk3a09Cb0tEaElRUUEybDRpZ1dGallPSEJRMlNrNVNVQTRpS2kzNmJmU0dCam82WW1YZU1vSTJJbGFtV2lhTnNCUjBkRkFDenRMVVVIU0FPSGg2eXRiNFVIcUt0YXdXN3ZiNjB3SWdoSWNmSUFCUWh3c01IQlJnWXo3NFl1UUVCMmJVQm9zN0lGR29GM2QrMDRRVWxKZW16SmVMcDVkVUtDZ0RkK1FQaCt3QUt1Uk1tNE1zWGpwKzNDYUxlQVRBWGNLQStnd0FRRnRqanNOdStTOTRlSkh4bnpsN0ZmQXNXZVB2bmdBT0hqOTFDZXVPUWtHQkJqQXVybVVRWlFDVUFscTg2MExUWm9TWEIvNHY5ekprd0FRQm91QVdYRmdBd2tjdUNoYUlHQnlDVkNzQ0NUNWMyelRtRmlsRnEwcXFJcm5HOU9GVXBocXNFczFZalFXTHMwYThrVGppb1VNR3RWNm9WRWhxOXE5UWNYYnRsQWVRdDRIRnZZQVY2b3dabUtOQmxTcEVSR3pqWXNHRW41QTBLQ2lSSUFQanI1Z0tVTFh2RFhPRENCZEVBTG1UZTNKbnE1Nzk3SVZhUXJFR0RYWWdhVm5OMlhCUHk1OXEzWWVZdXNEVTJUQXU2VVg4MkhiemZCY2taTWpUM2xpRzU4WDZmbzA4SFVMMUF3K3NIclVlRitGa056WHdMSlFzUWNCNmRBUEZkeVNjb3NMNjl0L2VsN0FNd0FQK2kvQUlpaUxDZENPcXhCeDRBK0xIR0czcWYxWGNnZm9Kc3g1OW11eTNveldjampLRFFDQVVxbEw0Z1p3YzJ5TjQ3RUJxZzBJU3NoVGlmQkN5MjZPS0xCYTRuNDR3ekp2ZU9pRFRtdUY1bXBqUmlZenFmUlNEa2tFUVdHYU9PTkdaR3dKSk1OdW5rZkVqcXlHT1BoQ2pwNUpWTXpvZkFsbHgyNmVXUlVlNVlBSlprUWhsbWphVlFLWWlWWkQ1WmdKZHdkZ2xtbUd5Mm1TVjlaOG80cFpvVDJ1bG1uSURPR1dXZGZwcVpaNGw4RW1xbmxvRENLU2lTaXJacGFKNTdxaGxwbVc4MitxVURoNHJwWjVPVG5sa3BsWmRpeWFpbVhENHE1WmlmTGhrcW5XbGF5bXFyOHdVQkFEcz0iIC8+PC9zdmc+"); */ } .x-form-field-wrap .x-form-clear-trigger { background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMTAyIiBoZWlnaHQ9IjI0Ij48ZGVmcz48ZmlsdGVyIGlkPSJkYXJrcmVhZGVyLWltYWdlLWZpbHRlciI+PGZlQ29sb3JNYXRyaXggdHlwZT0ibWF0cml4IiB2YWx1ZXM9IjAuMzMzIC0wLjY2NyAtMC42NjcgMC4wMDAgMS4wMDAgLTAuNjY3IDAuMzMzIC0wLjY2NyAwLjAwMCAxLjAwMCAtMC42NjcgLTAuNjY3IDAuMzMzIDAuMDAwIDEuMDAwIDAuMDAwIDAuMDAwIDAuMDAwIDEuMDAwIDAuMDAwIiAvPjwvZmlsdGVyPjwvZGVmcz48aW1hZ2Ugd2lkdGg9IjEwMiIgaGVpZ2h0PSIyNCIgZmlsdGVyPSJ1cmwoI2RhcmtyZWFkZXItaW1hZ2UtZmlsdGVyKSIgeGxpbms6aHJlZj0iZGF0YTppbWFnZS9naWY7YmFzZTY0LFIwbEdPRGxoWmdBWUFPWUFBTXpNek9EZzROZlgxOG5KeWFTa3BNakl5TkhSMGZIeDhmejgvTnZiMjk3ZTNybTV1ZmIyOXMzTnpmRHc4Ti9mMys3dTd0M2QzWFoyZHRyYTJ1Ym01cFNVbFBYMTllL3Y3K1RrNU9ycTZ1M3Q3Zkx5OHVMaTR2MzkvZFBUMDYrdnI5TFMwdFRVMU1yS3l2UHo4OXpjM0xHeHNhYW1wcCtmbjJscGFaQ1FrTmJXMXBpWW1IZDNkMjl2YjluWjJlenM3T1BqNDhmSHg4WEZ4WnFhbXJDd3NPWGw1Yy9QejlYVjFlSGg0WnVibTZXbHBkalkyTWJHeHV2cjYram82T2ZuNStucDZmVDA5QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFDSDVCQUFBQUFBQUxBQUFBQUJtQUJnQUFBZi9nQXVDZzRTRmdnU0lpWXFMakkyT2o1Q1JrbzBkbFphWG1CMExDSnlkbnA4SUJBS2pwS1dtQWdTZ3FwMnBxNnFpcDdHakJBZTF0cmU0QndzQnZMMit2d0d3c3FjRXdNYTlCQXpLeTh6TkRNTERwYlM1MUxXN3g4YlEwYlBZMmM3Znk5cmJCQTdsRHJYbTZPWU9Ddy91RHh3YzcvSHY3dUxSQlBYMDd2dnZCQllBTFNnTE9EQ2doWHZEQ0Z4WXVNSENoZzBYSGpwY3VIQ0Jnb3NZSUdKNGdDRWlob3NYb1NWSVFHcWtLUUlnTTE3WTJISERSNUFFUnNnRU9NSkN6Wm8yWlk0UVNYS1VTV2tRSURnSXNxTEVnUkVIU3F3STRpQW9oQVVSSWdRNFVCUUNCUWhLRHdTSUdrR1lBZ2NhRk94UW9NR0JBbWxScDFhOW1uVnIxR2sxLzRzMjNLRFVwaTJ2WU1XU05RdFVLQVFhTFdqOERldzM2QUlTSkI3MCtORGlnd2JHSDNvOFFFd0NWZ0lIUlRWdzBLRFVRVTlVaUJWRGZ0eFlNbVZ5RGpZTXBuRUJzT0FONWl4akxxR1o4d3JQcEFobzJPMGdnd2tVT2xDWXlBQjJ0NFlGSXhQZ29QQTd1QWtLT0pJbnNKd0I4Z3ZJR1Q0VFNMNjh1WERvMGhVeTlBMWNlQWFJRktsYng2NzloZnNYQnlpY2tIQ0N3b0gzN2hkTTJKOEFCb2I1SjJBQVF3TDc3ZWNWYytVOWQxWnVCZmIzSDMwQ0VsZ2dBVTVCc0lGODlGR2dXb1VIZXFjZ1dsSEJBRVFPRXN3Z1FRNUF3TUJWQkF2SUlBTVBOdFJnNG93MTJNQ0RpeklRVU1DT0lnakFBWUFjQ0NEQ2pqc1M0Q0tNTXBaWVl2K05ON3BJZ0F0UUJ1QURpU2JtNEVNQVVFS3BJNDgrQWlra2tRVVFzRjhFR1ZRZ1FRVVJtRmxCQmhFVXVFQU1NVFJBZ1pvVHFFbEJBM0RHc0dVQkJ0UkE1WWsxR0FBbUFYREtTYWVkZU1LNVhRSUtsSGttQ1dwbW9FQnllL2I1Wnc2QkRnb2xDUnF3a0FJT0txYkFnZ1lrWkxtQUNDTFlrSUduWWlVZ2FnWTJvQ3JDbG9hZW1RQ2lSQktBcXFxczd1QXFDN0RLU2tCVU9FRGdLUWMvS0NBcUJEaHdSZXVjdHVKYUpDa0svQkNBWGdFa1c4b0NBQURRd0EwZjNmQ3RBaGlJMnkwQXRLNmF3bGtUdk5wQXJ0MStHKzY0NVRad2JqRzhVT0FEQjlCUndJRVBGUGlTTHFzQ3RBdnN1MFdxb0xBSyt5M2M4TUlxY0J1dkFRYlkyd0R1eGZiZVM2UUJHRVJnd0FBR1JJQ0JvUEJPWExHM0dKK0xyaTh3d05CTHk3OVUydkhISVk4OGFBZzQ1Nnp6emlGSXJQTFBQKzlaUUFNSUQxMTBrVUFuZlc4M3dBaE5OSkZQRCtyQjFGUlhiYlVIUGlzZE5KaGNkeDJtMWtuanl6UXlYcGNkSmdob3A2MzIyaUJrRFhhM0JBd2c5OXgwMS8zMTJ5cUxQWFl3ZGZkTmQ1Z1VCeTc0NEJTNy9YYmNmdnQ5Tjk1dzc0MU00b29UUVBqa2dSc09OdUtRLzAwQTQwczd6bmZtbWxOT3VlVmFZdzc2QUlzenJ2Zllwb01PdU9pRWs2NTA2NW1uanZmcVROTU8rZXV3Q3k1NzJLZlBiZnZobm44ZVBPKzlGODQ1M01ITFBmemx4ZXVlZUppQkFBQTciIC8+PC9zdmc+") } .x-form-field-wrap .x-form-search-trigger { background-image: url("data:image/svg+xml;base64,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") } .x-item-disabled .x-form-trigger-click, .x-item-disabled .x-form-trigger-over { border-bottom-color: #42484a } .x-form-focus, textarea.x-form-focus { border-color: #655e53 } .x-form-invalid, textarea.x-form-invalid { background-color: #181a1b; background-image: url("data:image/svg+xml;base64,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"); border-color: #c23000 } .ext-webkit .x-form-invalid { background-color: #3d0000; border-color: #910800 } .x-form-inner-invalid, textarea.x-form-inner-invalid { background-color: #181a1b; background-image: url("data:image/svg+xml;base64,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") } .x-form-invalid-msg { color: #db4e52; background-image: url("../ext/resources/images/default/shared/warning.gif") } .x-form-empty-field { color: #988f81 } .x-form-invalid-icon { background-image: url("../ext/resources/images/default/form/exclamation.gif") } .x-fieldset { border-color: #3e4446 } .x-fieldset legend { color: hsl(0deg 0% 57%) } .x-btn button { color: #c8c3bc } .x-btn-bc, .x-btn-bl, .x-btn-br, .x-btn-mc, .x-btn-ml, .x-btn-mr, .x-btn-tc, .x-btn-tl, .x-btn-tr { background-image: none; } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text { color: #e8e6e3 } .x-btn-disabled * { color: #988f81!important } .x-btn-mc em.x-btn-arrow { background-image: url("data:image/svg+xml;base64,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") } .x-btn-mc em.x-btn-split { background-image: url("../ext/resources/images/default/button/s-arrow.gif") } .x-btn-mc em.x-btn-arrow-bottom { background-image: url("data:image/svg+xml;base64,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") } .x-btn-mc em.x-btn-split-bottom { background-image: url("../ext/resources/images/default/button/s-arrow-b.gif") } .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image: url("../ext/resources/images/gray/button/s-arrow-bo.gif") } .x-btn-group-header { color: #a8a095 } .x-btn-group-tc { background-image: url("../ext/resources/images/gray/button/group-tb.gif") } .x-btn-group-tl, .x-btn-group-tr { background-image: url("../ext/resources/images/gray/button/group-cs.gif") } .x-btn-group-bc { background-image: url("../ext/resources/images/gray/button/group-tb.gif") } .x-btn-group-bl, .x-btn-group-br { background-image: url("../ext/resources/images/gray/button/group-cs.gif") } .x-btn-group-ml, .x-btn-group-mr { background-image: url("../ext/resources/images/gray/button/group-lr.gif") } .x-btn-group-notitle .x-btn-group-tc { background-image: url("../ext/resources/images/gray/button/group-tb.gif") } .x-toolbar .x-item-disabled, .x-toolbar .x-item-disabled * { color: #988f81 } .x-toolbar .x-btn-mc em.x-btn-split { background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMTQiIGhlaWdodD0iNzIiPjxkZWZzPjxmaWx0ZXIgaWQ9ImRhcmtyZWFkZXItaW1hZ2UtZmlsdGVyIj48ZmVDb2xvck1hdHJpeCB0eXBlPSJtYXRyaXgiIHZhbHVlcz0iMC4yNDkgLTAuNjE0IC0wLjY3MiAwLjAwMCAxLjAzNSAtMC42NDYgMC4yODggLTAuNjY0IDAuMDAwIDEuMDIwIC0wLjYzNiAtMC42MDkgMC4yNTAgMC4wMDAgMC45OTQgMC4wMDAgMC4wMDAgMC4wMDAgMS4wMDAgMC4wMDAiIC8+PC9maWx0ZXI+PC9kZWZzPjxpbWFnZSB3aWR0aD0iMTQiIGhlaWdodD0iNzIiIGZpbHRlcj0idXJsKCNkYXJrcmVhZGVyLWltYWdlLWZpbHRlcikiIHhsaW5rOmhyZWY9ImRhdGE6aW1hZ2UvZ2lmO2Jhc2U2NCxSMGxHT0RsaERnQklBSWNBQUFBQUFNbkp5Y0xhOXZYMTlRQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFDSDVCQU1BQUFJQUxBQUFBQUFPQUVnQUFBZzhBQVVJSEVpd29NR0RDQk1xWE1pd29jT0hFQ05LbkVpeG9zV0xHRE5xM01peG84ZVBBRUtHVkNpU0lZQ1BLRk9xWE1teXBjdVhNR1BLbkJrUUFEcz0iIC8+PC9zdmc+"); } .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image: url("../img/dark/s-arrow-o.gif"); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image: url("data:image/svg+xml;base64,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") } .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image: url("../ext/resources/images/gray/button/s-arrow-bo.gif") } .x-tbar-page-first { background-image: url("../ext/resources/images/gray/grid/page-first.gif")!important } .x-tbar-loading { background-image: url("../ext/resources/images/gray/grid/refresh.gif")!important } .x-tbar-page-last { background-image: url("../ext/resources/images/gray/grid/page-last.gif")!important } .x-tbar-page-next { background-image: url("../ext/resources/images/gray/grid/page-next.gif")!important } .x-tbar-page-prev { background-image: url("../ext/resources/images/gray/grid/page-prev.gif")!important } .x-item-disabled .x-tbar-loading { background-image: url("../ext/resources/images/default/grid/loading.gif")!important } .x-item-disabled .x-tbar-page-first { background-image: url("../ext/resources/images/default/grid/page-first-disabled.gif")!important } .x-item-disabled .x-tbar-page-last { background-image: url("../ext/resources/images/default/grid/page-last-disabled.gif")!important } .x-item-disabled .x-tbar-page-next { background-image: url("../ext/resources/images/default/grid/page-next-disabled.gif")!important } .x-item-disabled .x-tbar-page-prev { background-image: url("../ext/resources/images/default/grid/page-prev-disabled.gif")!important } .x-paging-info { color: #bdb7af } .x-toolbar-more-icon { background-image: url("data:image/svg+xml;base64,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")!important } .x-resizable-handle { background-color: #181a1b } .x-resizable-over .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-west { background-image: url("data:image/svg+xml;base64,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") } .x-resizable-over .x-resizable-handle-north, .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-south { background-image: url("data:image/svg+xml;base64,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") } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast { background-image: url("data:image/svg+xml;base64,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") } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest { background-image: url("data:image/svg+xml;base64,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") } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast { background-image: url("data:image/svg+xml;base64,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") } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest { background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMTAiIGhlaWdodD0iMTAiPjxkZWZzPjxmaWx0ZXIgaWQ9ImRhcmtyZWFkZXItaW1hZ2UtZmlsdGVyIj48ZmVDb2xvck1hdHJpeCB0eXBlPSJtYXRyaXgiIHZhbHVlcz0iMC4zMzMgLTAuNjY3IC0wLjY2NyAwLjAwMCAxLjAwMCAtMC42NjcgMC4zMzMgLTAuNjY3IDAuMDAwIDEuMDAwIC0wLjY2NyAtMC42NjcgMC4zMzMgMC4wMDAgMS4wMDAgMC4wMDAgMC4wMDAgMC4wMDAgMS4wMDAgMC4wMDAiIC8+PC9maWx0ZXI+PC9kZWZzPjxpbWFnZSB3aWR0aD0iMTAiIGhlaWdodD0iMTAiIGZpbHRlcj0idXJsKCNkYXJrcmVhZGVyLWltYWdlLWZpbHRlcikiIHhsaW5rOmhyZWY9ImRhdGE6aW1hZ2UvZ2lmO2Jhc2U2NCxSMGxHT0RsaENnQUtBTE1BQU5mWDE2T2pvLy8vLytEZzRPbnA2ZWJtNXRyYTJ1WGw1ZWZuNStMaTRnQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFDSDVCQUFBQUFBQUxBQUFBQUFLQUFvQUFBUWhFRWd3UWlpRVRDRHNRZG9rQ0VOeUZKdGhWY0hXQmE4ckdPT3czWGl1NzBBRUFEcz0iIC8+PC9zdmc+") } .x-resizable-proxy { border-color: #70685c } .x-resizable-overlay { background-color: #181a1b } .x-grid3 { background-color: hsl(200deg 6% 11%) } .x-grid-panel .x-panel-mc .x-panel-body { border-color: #3d4245 } .x-grid3-hd-row td { border-left-color: #35393b; border-right-color: #3d4245 } .x-grid-row-loading { background-color: #181a1b; background-image: url("../ext/resources/images/default/shared/loading-balls.gif") } .x-grid3-row { border-color: #303436 #353a3c #353a3c } .x-grid3-row-alt { background-color: hsl(200deg 5% 13%) } .x-grid3-resize-marker, .x-grid3-resize-proxy { background-color: #5a6165 } .x-grid3-header-pop { border-left-color: #3d4245 } .x-grid3-header-pop-inner { border-left-color: #35393b; background-image: url("data:image/svg+xml;base64,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") } td.sort-asc .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner, td.x-grid3-hd-over .x-grid3-hd-inner { background-color: #1b1e1f; background-image: url("data:image/svg+xml;base64,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") } .x-grid3-cell-text, .x-grid3-hd-text { color: #e8e6e3 } .x-grid3-split { background-image: url("../ext/resources/images/default/grid/grid-split.gif") } .x-grid3-hd-text { color: #c8c3bc } .x-dd-drag-proxy .x-grid3-hd-inner { background-color: #1b1e1f; background-image: url("data:image/svg+xml;base64,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"); border-color: #474d50 } .col-move-top { background-image: url("../ext/resources/images/gray/grid/col-move-top.gif") } .col-move-bottom { background-image: url("../ext/resources/images/gray/grid/col-move-bottom.gif") } .x-grid3-row-selected { background-image: none; border-color: #474d50; background-color: #35393b!important } .x-grid3-cell-selected { color: #e8e6e3; background-color: #353a3c!important } .x-grid3-cell-selected span { color: #e8e6e3!important } .x-grid3-cell-selected .x-grid3-cell-text { color: #e8e6e3 } .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker, .x-grid3-locked td.x-grid3-row-marker { color: #e8e6e3; border-top-color: #303436; background-color: #36351e!important; background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMiIgaGVpZ2h0PSIyMiI+PGRlZnM+PGZpbHRlciBpZD0iZGFya3JlYWRlci1pbWFnZS1maWx0ZXIiPjxmZUNvbG9yTWF0cml4IHR5cGU9Im1hdHJpeCIgdmFsdWVzPSIwLjMzMyAtMC42NjcgLTAuNjY3IDAuMDAwIDEuMDAwIC0wLjY2NyAwLjMzMyAtMC42NjcgMC4wMDAgMS4wMDAgLTAuNjY3IC0wLjY2NyAwLjMzMyAwLjAwMCAxLjAwMCAwLjAwMCAwLjAwMCAwLjAwMCAxLjAwMCAwLjAwMCIgLz48L2ZpbHRlcj48L2RlZnM+PGltYWdlIHdpZHRoPSIyIiBoZWlnaHQ9IjIyIiBmaWx0ZXI9InVybCgjZGFya3JlYWRlci1pbWFnZS1maWx0ZXIpIiB4bGluazpocmVmPSJkYXRhOmltYWdlL2dpZjtiYXNlNjQsUjBsR09EbGhBZ0FXQUljQUFHK2czOWZYMTkzZDNkN2UzdC9mMytEZzRPSGg0ZUxpNHVQajQrVGs1T1hsNWVibTV1Zm41K2pvNk9ucDZlcnE2dXZyNit6czdPM3Q3ZTd1N3UvdjcvRHc4QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQ0g1QkFBQUFQOEFMQUFBQUFBQ0FCWUFBQWcwQUFVSUdEQ0FBSUVDQlF3WU9IQUFBWUlFQ1JRb1dMQ0FBWU1HRFJ3NGVQQUFBb1FJRVNSSW1EQ0JBb1VLRlFJRUFBQWdJQUE3IiAvPjwvc3ZnPg==")!important; border-right-color: #1c477f!important } .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div, .x-grid3-locked td.x-grid3-row-marker div { color: #c8c3bc!important } .x-grid3-dirty-cell { background-image: url("data:image/svg+xml;base64,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") } .x-grid3-bottombar .x-toolbar { border-top-color: #30485d } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner { background-image: url("data:image/svg+xml;base64,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")!important; color: #e8e6e3!important } .x-props-grid .x-grid3-body .x-grid3-td-name { border-right-color: #35393b; background-color: #181a1b!important } .xg-hmenu-lock .x-menu-item-icon { background-image: url("../ext/resources/images/default/grid/hmenu-lock.gif") } .xg-hmenu-unlock .x-menu-item-icon { background-image: url("../ext/resources/images/default/grid/hmenu-unlock.gif") } .x-grid3-row-expander { background-image: url("../ext/resources/images/gray/grid/row-expand-sprite.gif") } .x-grid3-hd-checker, .x-grid3-row-checker { background-image: url(../img/checkboxes-dark.svg) } .x-grid3-body .x-grid3-td-numberer { background-image: url("data:image/svg+xml;base64,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") } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color: #bdb7af } .x-grid3-body .x-grid3-td-row-icon { background-image: url("data:image/svg+xml;base64,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") } .x-grid3-check-col { background-image: url("../ext/resources/images/default/menu/unchecked.gif") } .x-grid3-check-col-on { background-image: url("../ext/resources/images/default/menu/checked.gif") } .x-grid-group-hd { border-bottom-color: #3d4245 } .x-grid-group-hd div.x-grid-group-title { color: #aca59a } .x-group-by-icon { background-image: url("../ext/resources/images/default/grid/group-by.gif") } .x-show-groups-icon { background-image: url("../ext/resources/images/default/grid/group-by.gif") } .x-grid-empty { color: #988f81 } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color: #353a3c } .x-grid-with-col-lines .x-grid3-row { border-top-color: #353a3c } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color: #44494c } .x-pivotgrid .x-grid3-header-offset table td { background-image: url("data:image/svg+xml;base64,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"); background-color: initial; border-left-color: #3d4245; border-right-color: #3d4245 } .x-pivotgrid .x-grid3-row-headers { background-color: #1b1e1f } .x-pivotgrid .x-grid3-row-headers table td { background-image: url("data:image/svg+xml;base64,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"); background-color: #222426; border-left-color: #35393b; border-right-color: #3d4245; border-bottom-color: #3d4245 } .x-dd-drag-ghost { color: #e8e6e3; border-color: #3a3e41 #43494c #43494c #3a3e41; background-color: #181a1b } .x-view-selector { background-color: #2f3335; border-color: #52585c } .x-tree-node-expanded .x-tree-node-icon { background-image: url("../ext/resources/images/default/tree/folder-open.gif") } .x-tree-node-leaf .x-tree-node-icon { background-image: url("../ext/resources/images/default/tree/leaf.gif") } .x-tree-node-collapsed .x-tree-node-icon { background-image: url("../ext/resources/images/default/tree/folder.gif") } .x-tree-node-loading .x-tree-node-icon { background-image: url("../ext/resources/images/default/tree/loading.gif")!important } .x-tree-node .x-tree-node-inline-icon { background-image: none } .x-tree-node-loading a span { color: #bdb7af } .x-tree-no-lines .x-tree-elbow-plus { background-image: url("../ext/resources/images/default/tree/elbow-plus-nl.gif") } .x-tree-no-lines .x-tree-elbow-minus { background-image: url("../ext/resources/images/default/tree/elbow-minus-nl.gif") } .x-tree-no-lines .x-tree-elbow-end-plus { background-image: url("../ext/resources/images/gray/tree/elbow-end-plus-nl.gif") } .x-tree-no-lines .x-tree-elbow-end-minus { background-image: url("../ext/resources/images/gray/tree/elbow-end-minus-nl.gif") } .x-tree-arrows .x-tree-elbow-end-minus, .x-tree-arrows .x-tree-elbow-end-plus, .x-tree-arrows .x-tree-elbow-minus, .x-tree-arrows .x-tree-elbow-plus { background-image: url("../ext/resources/images/gray/tree/arrows.gif") } .x-dd-drag-ghost a, .x-tree-node, .x-tree-node a { color: #e8e6e3 } .x-dd-drag-ghost a span, .x-tree-node a span { text-decoration-color: initial; color: hsl(36deg 10% 85%) } .x-tree-node .x-tree-node-disabled a span { color: #988f81!important } .x-tree-node div.x-tree-drag-insert-below { border-bottom-color: #24478f } .x-tree-node div.x-tree-drag-insert-above { border-top-color: #24478f } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a { border-bottom-color: #24478f } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a { border-top-color: #24478f } .x-tree-node .x-tree-drag-append a span { background-color: #2b2f31; border-color: #545b5e } .x-tree-node .x-tree-node-over { background-color: #222426 } .x-tree-node .x-tree-selected { background-color: #2b2f31 } .x-tree-drop-ok-append .x-dd-drop-icon { background-image: url("../ext/resources/images/default/tree/drop-add.gif") } .x-tree-drop-ok-above .x-dd-drop-icon { background-image: url("data:image/svg+xml;base64,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") } .x-tree-drop-ok-below .x-dd-drop-icon { background-image: url("data:image/svg+xml;base64,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") } .x-tree-drop-ok-between .x-dd-drop-icon { background-image: url("data:image/svg+xml;base64,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") } .x-date-picker { border-color: #6f675b; background-color: #181a1b } .x-date-left, .x-date-middle, .x-date-right { background-image: none; color: #e8e6e3 } .x-date-middle .x-btn .x-btn-text { color: #e8e6e3 } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image: url("../ext/resources/images/gray/toolbar/btn-arrow-light.gif") } .x-date-right a { background-image: url("../ext/resources/images/gray/shared/right-btn.gif") } .x-date-left a { background-image: url("../ext/resources/images/gray/shared/left-btn.gif") } .x-date-inner th { background-color: #2e3234; background-image: none; border-bottom-color: #474c4f; color: #b0a99f } .x-date-inner td { border-color: #303436 } .x-date-inner .x-date-active, .x-date-inner a { color: #e8e6e3 } .x-date-inner .x-date-selected a { background-image: none; background-color: #2e3234; border-color: #3a3f41 } .x-date-inner .x-date-today a { border-color: #d50000 } .x-date-inner .x-date-nextday a, .x-date-inner .x-date-prevday a { color: #b2aca2 } .x-date-bottom { border-top-color: #474c4f; background-image: none; background-color: #2e3234 } .x-date-inner .x-date-disabled a:hover, .x-date-inner a:hover { color: #e8e6e3; background-color: #2e3234 } .x-date-inner .x-date-disabled a { background-color: #222426; color: #bdb7af } .x-date-mmenu { background-color: #222426!important } .x-date-mmenu .x-menu-item { color: #e8e6e3 } .x-date-mp { background-color: #181a1b } .x-date-mp-btns button { background-color: #414749; color: #e8e6e3; border-color: #42474a #766e61 #766e61 #42474a; } .x-date-mp-btns { background-image: none; background-color: #2e3234 } .x-date-mp-btns td { border-top-color: #474c4f } td.x-date-mp-month a, td.x-date-mp-year a { color: #c8c3bc } td.x-date-mp-month a:hover, td.x-date-mp-year a:hover { color: #c8c3bc; background-color: #191b1c } td.x-date-mp-sel a { background-image: none; background-color: #2e3234; border-color: #3a3f41 } .x-date-mp-ybtn a.x-date-mp-prev { background-image: url(../img/collapse-left.svg); background-position: unset; } .x-date-mp-ybtn a.x-date-mp-next { background-image: url(../img/collapse-right.svg); background-position: unset; } .x-date-mp-ybtn a.x-date-mp-next:hover, .x-date-mp-ybtn a.x-date-mp-prev:hover { background-position: unset; opacity: 0.5; } td.x-date-mp-sep { border-right-color: #3b4043 } .x-tip .x-tip-close { background-image: url("data:image/svg+xml;base64,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") } .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr, .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr { background-color: hsl(25deg 20% 15%) } .x-tip .x-tip-body, .x-tip .x-tip-header-text { color: #bdb7af } .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr, .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr { background-image: url("data:image/svg+xml;base64,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") } .x-form-invalid-tip .x-tip-body { background-image: url("../ext/resources/images/default/form/exclamation.gif") } .x-tip-anchor { background-image: url("../ext/resources/images/gray/qtip/tip-anchor-sprite.gif") } .x-menu { background-color: #202325 } .x-menu-floating { border-color: hsl(200 6% 20% / 1); border-width: 2px; border-radius: 6px; box-shadow: 5px 5px 10px rgba(0, 0, 0, 0.5); } .x-menu-nosep { background-image: none } .x-menu-item-arrow { background-image: url("../ext/resources/images/gray/menu/menu-parent.gif") } .x-menu-sep { background-color: #2a2d2f; border-bottom-color: #303436 } a.x-menu-item { text-decoration-color: initial; color: #d3cfc9 } .x-menu-item-active { background: unset; border: unset; margin: unset; padding: 1px; background-color: #2f3537; border-color: #474d50; /* border: 1px solid red; */ } .x-menu-item-active a.x-menu-item { border: unset; margin: unset; border-color: #474d50 } .x-menu-check-item .x-menu-item-icon, .x-menu-item-checked .x-menu-item-icon { background-image: url(../img/checkboxes-dark.svg) } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon { background-image: url("data:image/svg+xml;base64,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") } .x-menu-group-item .x-menu-item-icon { background-image: none } .x-menu-plain { background-color: #181a1b!important } .x-menu .x-date-picker { border-color: #474c4f } .x-cycle-menu .x-menu-item-checked { background-color: #202324; border-color: #44494c!important } .x-menu-scroller-top { background-image: url("../ext/resources/images/default/layout/mini-top.gif") } .x-menu-scroller-bottom { background-image: url("../ext/resources/images/default/layout/mini-bottom.gif") } .x-box-tl { background-image: url("../ext/resources/images/default/box/corners.gif") } .x-box-tc { background-image: url("data:image/svg+xml;base64,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") } .x-box-tr { background-image: url("../ext/resources/images/default/box/corners.gif") } .x-box-ml { background-image: url("data:image/svg+xml;base64,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") } .x-box-mc { background-color: #222426; background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMSIgaGVpZ2h0PSIzMiI+PGRlZnM+PGZpbHRlciBpZD0iZGFya3JlYWRlci1pbWFnZS1maWx0ZXIiPjxmZUNvbG9yTWF0cml4IHR5cGU9Im1hdHJpeCIgdmFsdWVzPSIwLjMzMyAtMC42NjcgLTAuNjY3IDAuMDAwIDEuMDAwIC0wLjY2NyAwLjMzMyAtMC42NjcgMC4wMDAgMS4wMDAgLTAuNjY3IC0wLjY2NyAwLjMzMyAwLjAwMCAxLjAwMCAwLjAwMCAwLjAwMCAwLjAwMCAxLjAwMCAwLjAwMCIgLz48L2ZpbHRlcj48L2RlZnM+PGltYWdlIHdpZHRoPSIxIiBoZWlnaHQ9IjMyIiBmaWx0ZXI9InVybCgjZGFya3JlYWRlci1pbWFnZS1maWx0ZXIpIiB4bGluazpocmVmPSJkYXRhOmltYWdlL2dpZjtiYXNlNjQsUjBsR09EbGhBUUFnQUljQUFNSEJ3Y2pJeU52YjIrVGs1T3pzN083dTd1L3Y3L0R3OFBIeDhmUHo4L1QwOVBYMTlmYjI5dmYzOS9qNCtQbjUrZnI2K3Z6OC9QMzkvZjcrL3YvLy93QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQ0g1QkFBQUFQOEFMQUFBQUFBQkFDQUFBQWdrQUJrTUNDQ0Jna0VLQlJJV1lBQkFBQUVLRXlSRWdQREFRUU1HQ3hRa1FIREFRSUdBQURzPSIgLz48L3N2Zz4="); color: #c4bfb7 } .x-box-mr { background-image: url("data:image/svg+xml;base64,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") } .x-box-bl { background-image: url("../ext/resources/images/default/box/corners.gif") } .x-box-bc { background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB3aWR0aD0iMSIgaGVpZ2h0PSIzMiI+PGRlZnM+PGZpbHRlciBpZD0iZGFya3JlYWRlci1pbWFnZS1maWx0ZXIiPjxmZUNvbG9yTWF0cml4IHR5cGU9Im1hdHJpeCIgdmFsdWVzPSIwLjMzMyAtMC42NjcgLTAuNjY3IDAuMDAwIDEuMDAwIC0wLjY2NyAwLjMzMyAtMC42NjcgMC4wMDAgMS4wMDAgLTAuNjY3IC0wLjY2NyAwLjMzMyAwLjAwMCAxLjAwMCAwLjAwMCAwLjAwMCAwLjAwMCAxLjAwMCAwLjAwMCIgLz48L2ZpbHRlcj48L2RlZnM+PGltYWdlIHdpZHRoPSIxIiBoZWlnaHQ9IjMyIiBmaWx0ZXI9InVybCgjZGFya3JlYWRlci1pbWFnZS1maWx0ZXIpIiB4bGluazpocmVmPSJkYXRhOmltYWdlL2dpZjtiYXNlNjQsUjBsR09EbGhBUUFnQUljQUFNSEJ3Y2pJeU52YjIrVGs1T3pzN083dTd1L3Y3L0R3OFBIeDhmUHo4L1QwOVBYMTlmYjI5dmYzOS9qNCtQbjUrZnI2K3Z6OC9QMzkvZjcrL3YvLy93QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQ0g1QkFBQUFQOEFMQUFBQUFBQkFDQUFBQWdrQUJrTUNDQ0Jna0VLQlJJV1lBQkFBQUVLRXlSRWdQREFRUU1HQ3hRa1FIREFRSUdBQURzPSIgLz48L3N2Zz4=") } .x-box-br { background-image: url("../ext/resources/images/default/box/corners.gif") } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url("../ext/resources/images/default/box/corners-blue.gif") } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url("data:image/svg+xml;base64,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") } .x-box-blue .x-box-mc { background-color: #2b2e30 } .x-box-blue .x-box-mc h3 { color: #a0c7e7 } .x-box-blue .x-box-ml { background-image: url("data:image/svg+xml;base64,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") } .x-box-blue .x-box-mr { background-image: url("data:image/svg+xml;base64,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") } .x-combo-list { border-color: #3e4446; background-color: #2b2f31; box-shadow: 0 0 5px 3px #2c2ab0; } .x-combo-list-inner { background-color: #212121; } .x-combo-list-hd { color: #c8c3bc; background-image: url("data:image/svg+xml;base64,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"); border-bottom-color: #43484b } .x-resizable-pinned .x-combo-list-inner { border-bottom-color: #42484b } .x-combo-list-item { border-color: #303436 } .x-combo-list .x-combo-selected { background-color: #494949; border-color: #655e53!important } .x-combo-list .x-toolbar { border-top-color: #43484b } .x-panel { border-color: #3d4245 } .x-panel-header { border-color: #3d4245; background-image: url("data:image/svg+xml;base64,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") } .x-panel-body { border-color: #3d4245; background-color: transparent; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color: #3d4245 } .x-panel-body-noheader, .x-panel-mc .x-panel-body, .x-panel-mc .x-panel-tbar .x-toolbar, .x-panel-tbar-noheader .x-toolbar { border-top-color: #3d4245 } .x-panel-tl .x-panel-header { color: #c8c3bc } .x-panel-tc { background-image: url("data:image/svg+xml;base64,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") } .x-panel-bl, .x-panel-br, .x-panel-tl, .x-panel-tr { background-image: url("data:image/svg+xml;base64,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"); border-bottom-color: #3d4245 } .x-panel-bc { background-image: url("data:image/svg+xml;base64,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") } .x-panel-mc { background-color: #202324 } .x-panel-ml { background-color: #181a1b; background-image: url("data:image/svg+xml;base64,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") } .x-panel-mr { background-image: url("data:image/svg+xml;base64,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") } .x-tool { background-image: url('../img/tool-sprites-dark.gif') } .x-panel-ghost { background-color: #1f2223 } .x-panel-dd-spacer, .x-panel-ghost ul { border-color: #3d4245 } .x-window-proxy { background-color: #1a1c1d; border-color: #3d4245 } .x-window-tl .x-window-header { color: #b2aca2 } .x-window-mc { border-color: #3d4245; background-color: #25282a } .x-window-ml, .x-window-mr { background-image: url("data:image/svg+xml;base64,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") } .x-window-maximized .x-window-tc { background-color: #181a1b } .x-window-bbar .x-toolbar { border-top-color: #3d4245 } .x-panel-collapsed .x-window-tl, .x-panel-ghost .x-window-tl { border-bottom-color: #3d4245 } .x-dlg-mask { background-color: #35393b } .x-window-plain .x-window-mc { background-color: #25282a } .x-html-editor-wrap { border-color: #43484b; background-color: #181a1b } .x-html-editor-tb .x-btn-text { background-image: url("../ext/resources/images/default/editor/tb-sprite.gif") } .x-panel-noborder .x-panel-header-noborder, .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color: #3d4245 } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar, .x-tab-panel-bbar-noborder .x-toolbar { border-top-color: #3d4245 } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color: #3d4245 } .x-accordion-hd { color: #d3cfc9; background-image: url("data:image/svg+xml;base64,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") } .x-layout-collapsed { background-color: #2a2e2f; border-color: #3d4245 } .x-layout-collapsed-over { background-color: #26292a } .x-layout-split-west .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-left.gif") } .x-layout-split-east .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-right.gif") } .x-layout-split-north .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-top.gif") } .x-layout-split-south .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-bottom.gif") } .x-layout-cmini-west .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-right.gif") } .x-layout-cmini-east .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-left.gif") } .x-layout-cmini-north .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-bottom.gif") } .x-layout-cmini-south .x-layout-mini { background-image: url("../ext/resources/images/default/layout/mini-top.gif") } .x-progress-wrap { border-color: #50575a } .x-progress-text-back { color: #aca59a } .x-list-header { background-color: #1b1e1f; background-image: url("data:image/svg+xml;base64,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") } .x-list-header-inner div em { border-left-color: #3a3e41 } .x-list-over { background-color: #222426 } .x-list-selected { background-color: #202325 } .x-list-resizer { border-left-color: #70685c; border-right-color: #70685c } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image: url("data:image/svg+xml;base64,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"); border-color: #3d4245 } .x-slider { filter: invert(100%) contrast(90%) } .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image: url("../ext/resources/images/default/slider/slider-bg.png") } .x-slider-horz .x-slider-thumb { background-image: url("../ext/resources/images/gray/slider/slider-thumb.png") } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image: url("../ext/resources/images/default/slider/slider-v-bg.png") } .x-slider-vert .x-slider-thumb { background-image: url("../ext/resources/images/gray/slider/slider-v-thumb.png") } .x-window-dlg .x-msg-box-wait { background-image: url("../ext/resources/images/default/grid/loading.gif") } .x-window-dlg .ext-mb-info { background-image: url("../ext/resources/images/gray/window/icon-info.gif") } .x-window-dlg .ext-mb-warning { background-image: url("../ext/resources/images/gray/window/icon-warning.gif") } .x-window-dlg .ext-mb-question { background-image: url("../img/question-circle.svg"); background-size: 32px; } .x-window-dlg .ext-mb-error { background-image: url("../ext/resources/images/gray/window/icon-error.gif") } .sm-text-highlight { background-color: #684006 } .sm-menuitem-filter-label { background-color: #46515d; color: #d0ccc6!important } .sm-menuitem-filter-icon { background-image: url("../img/bars-filter-d9.svg"); background-size: 12px } .sm-grid3-col-filterable .x-grid3-hd-btn, .sm-grid3-col-filterable .x-grid3-hd-btn:hover { background-image: url("../img/bars-filter-d9.svg"); background-position: 2px 3px; opacity: 0.5; } .sm-grid3-col-filtered .x-grid3-hd-btn { background-color: hsl(107 57% 24% / 1); opacity: 1; } .x-grid3-hd-btn { background-color: transparent; background-image: none } .sm-collection-manage-layout .x-border-layout-ct, .sm-collection-manage-layout .x-panel-body, .sm-dialog-window.sm-round-panel { background-color: hsl(200deg 6% 11%) } .sm-collection-manage-layout .x-layout-split { color: #b0a99f; background-color: transparent } .x-form-search:focus, .x-form-text:focus, .x-form-textarea:focus { border-color: #945619; box-shadow: rgba(166,96,28,.2) 0 0 1px 1px inset } .sm-review-auto-sprite { background-color: #2952a3; color: #e6e4e1!important } .x-form-cb-label .sm-question-circle, .x-form-item-label .sm-question-circle, .x-grid3-hd .sm-question-circle, .x-panel-header .sm-question-circle { color: grey } .x-form-field-wrap.x-form-field-trigger-wrap .x-form-field.sm-review-combo-input[disabled] { color: gray; background-color: transparent } .x-progress-inner { background-image: none; background-color: #1f2223 } .x-progress-bar { background-image: none; background-color: #425722; border-color: initial } .sm-pb-error .x-progress-bar { background-color: #602020 } .x-progress-text { color: transparent } .x-progress-text.x-progress-text-back { color: #b3aca2 } .sm-cell-thermometer-bg { background-color: #1e2021; outline: solid 1px #4d4d4d; } .sm-cell-mercury-low { background-color: #425722 } .sm-cell-mercury-medium { background-color: hsl(209deg 48% 26%) } .sm-cell-mercury-high { background-color: hsl(5deg 56% 21%) } .sm-dialog-panel-content, .sm-dialog-panel-text { color: #e8e6e3 } .sm-dialog-panel-callout { background-color: #26292b; color: #e8e6e3 } .sm-export-sprite-high, .sm-export-sprite-medium { background-color: #2b2f31 } .sm-export-sprite-low { background-color: #425722 } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image: url("data:image/svg+xml;base64,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") } .x-grid-group-hd div.x-grid-group-title { background-image: url("data:image/svg+xml;base64,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") } .x-grid3-row-collapsed .x-grid3-row-expander { background-image: url("data:image/svg+xml;base64,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") } .x-grid3-row-expanded .x-grid3-row-expander { background-image: url("data:image/svg+xml;base64,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") } .sm-toolbar-legend-box { border-color: #414749 } .x-tree-lines .x-tree-elbow, .x-tree-lines .x-tree-elbow-end, .x-tree-lines .x-tree-elbow-line { background-image: none } .sm-drop { border-color: #43494c; color: #bdb7af } .sm-grid-result-sprite { background-color: #1e2021; border-color: #414749 } .sm-result-pass { color: hsl(120 84% 42% / 1); } .sm-result-fail { color: hsl(19 100% 40% / 1); } .sm-result-na { color: #767676 } .sm-result-nr { color: #c0bab2 } .sm-grid-sprite { background-color: #181a1b; border-color: #414749 } .sm-content-sprite { color: #e6e4e1; background-color: #20407f; border-color: #414749 } .sm-navtree-sprite { background-color: #20407f; color: #e6e4e1!important } .sm-severity-high { color: hsl(0deg 50% 50%); background-color: #1e2021 } .sm-severity-medium { color: #5c98d6; background-color: transparent } .sm-severity-low { color: hsl(120deg 54% 46%); background-color: #1e2021 } .sm-home-widget-text { color: hsl(36deg 10% 85%) } .sm-home-widget-text a { color: hsl(36deg 23% 55%) } .sm-home-widget-header-1 { color: #e8e6e3 } .sm-empty-cell { color: #bdb7af } .sm-bare-button .x-btn-bc, .sm-bare-button .x-btn-bl, .sm-bare-button .x-btn-br, .sm-bare-button .x-btn-mc, .sm-bare-button .x-btn-ml, .sm-bare-button .x-btn-mr, .sm-bare-button .x-btn-tc, .sm-bare-button .x-btn-tl, .sm-bare-button .x-btn-tr { background-image: none } .sm-round-panel .x-window-header { color: #dddad6; background-color: #35393b; background-image: none } .x-window-plain .x-window-mc { border-color: initial } .x-window-plain .x-window-body { border-color: initial; background-image: initial!important; background-color: transparent!important } .x-window-bc, .x-window-bl, .x-window-br, .x-window-mc, .x-window-ml, .x-window-mr, .x-window-tc, .x-window-tl, .x-window-tr { background-image: none } .sm-review-footer, .sm-review-form { background-color: #1d1f20 } .x-panel-header { color: #dddad6 } .x-tab-panel-body { border-color: #3d4245; background-color: transparent } .x-tab-strip .x-tab-strip-active span.x-tab-strip-text { color: #dddad6 } .x-tab-strip-top .x-tab-strip-over .x-tab-left, .x-tab-strip-top .x-tab-strip-over .x-tab-right, .x-tab-strip-top .x-tab-strip-over .x-tab-strip-inner { background-color: #2b2f31 } .x-tab-strip-top .x-tab-strip-active .x-tab-left, .x-tab-strip-top .x-tab-strip-active .x-tab-right, .x-tab-strip-top .x-tab-strip-active .x-tab-strip-inner { background-color: hsl(200deg 5% 25%) } .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-strip-inner { background-image: none; background-color: #25282a } .x-form-search, .x-form-text, textarea.x-form-field { background-color: #181a1b; background-image: none; border-color: hsl(202deg 30% 25%) } .x-form-search:read-only, .x-form-text:read-only, textarea.x-form-field:read-only { /* background-color: transparent; */ border-color: hsl(202 0% 25% / 1); color: gray; } .x-form-text:read-only.x-trigger-noedit { color: #d9d9d9 } .sm-home-title { background-image: url("../img/shield-green-check.svg"); color: #c8c3bc; filter: saturate(.75) } #sm-home-oss-sprite { color: #e6e4e1; background-color: #20407f } #sm-home-version-sprite { color: #e6e4e1; background-color: #457a67 } ul.x-tab-strip-top { background-color: transparent; background-image: none; border-bottom-color: #3e4446 } body.x-body-masked .x-window-plain .x-window-mc { background-color: #1b1e1f } td.sort-asc, td.sort-desc, td.x-grid3-hd-menu-open, td.x-grid3-hd-over { border-left-color: #35393b; border-right-color: #3d4245 } .x-grid3-header, td.sort-asc .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner, td.x-grid3-hd-over .x-grid3-hd-inner { background-color: #202325; background-image: none } .x-toolbar { border-color: #3d4245; background-color: #272a2c; background-image: none } .sm-border-layout-ct { background-color: #1a1c1d } .x-border-layout-ct { background-color: hsl(0 0% 8% / 1); } /* .sm-round-panel { background-color: #276d90; } */ .sm-round-panel .x-panel-header { background-color: #35393b; background-image: none } .sm-round-inner-panel .x-panel-header { background-color: hsl(200 5% 17% / 1) } .sm-round-panel .sm-home-widget-body { background-color: #2b2e30 } .sm-user-list { background-color: #2b2e30; } .sm-home-widget-header { background-color: #313537 } .sm-dialog-panel-title, .sm-home-widget-collectionName, .sm-home-widget-subtitle, .sm-home-widget-title { color: #5c98d6 } .sm-banner-unclassified { background-color: #006229; color: #e8e6e3 } .sm-banner-cui { background-color: #40226a; color: #e8e6e3 } .sm-banner-confidential { background-color: #002980; color: #e8e6e3 } .sm-banner-secret { background-color: #a00d25; color: #e8e6e3 } .sm-banner-topsecret { background-color: #b93c00; color: #e8e6e3 } .sm-banner-sci { background-color: #9f9307; color: #e8e6e3 } .hbss-control .x-grid3-hd-checker, .hbss-control .x-grid3-row-checker { background-image: url("../img/hbss-check-sprite.gif") } .assignment-grid-item-selected { background-color: #6c0000 } .icon-department { background-image: url("../img/department-16.png")!important; background-color: initial!important } .icon-refresh { background-image: url("../img/reload.svg"); background-color: initial } .icon-add { background-image: url("../img/add.svg"); background-color: initial } .icon-edit { background-image: url("../img/edit.svg")!important; background-color: initial!important } .icon-save { background-image: url("../img/save.gif")!important; background-color: initial!important } .icon-new-window { background-image: url("../img/new_window.gif")!important; background-color: initial!important } .icon-new-tab { background-image: url("../img/new_tab.gif")!important; background-color: initial!important } .icon-icon-all { background-image: url("../img/icon-all.gif")!important; background-color: initial!important } .icon-excel { background-image: url("../img/excel-16.gif")!important; background-color: initial!important } .cs-section-five-o-eight { text-decoration-color: initial } .sm-rule-body { background-color: hsl(210deg 6% 16%); } .sm-rule-body-title { color: #5c98d6 } .sm-rule-body-text { color: hsl(36deg 10% 85%) } .sm-reviews-home-body-title { color: #5c98d6 } .sm-reviews-home-body-text { color: #e8e6e3 } .sm-reviews-home-tasks { background-color: #930000 } .sm-reviews-home-no-tasks { background-color: #2c501c } .sm-feedback-panel-active { background-color: #930000 } .sm-feedback-panel-inactive { background-color: #181a1b } .sm-feedback-body-title { color: #5c98d6 } .sm-feedback-body-text { color: #e8e6e3 } .deferral-approval-trigger { background-image: url("../img/trigger2.png")!important } .sm-manual-grid-item { background-color: #181a1b } .sm-manual-grid-item.x-grid3-row-over { background-color: #212425 } .sm-grid3-row-red { background-color: #6c0000 } .sm-grid3-row-grey { background-color: #2b2f31 } .sm-grid3-row-orange { background-color: #703800 } .sm-grid3-row-green { background-color: #2c501c } .sm-grid3-row-black td { background-color: #0b0c0d; color: #e8e6e3!important } .sm-grid3-row-error td, .sm-grid3-row-italic td { background-color: #ff4b4b33 !important; } .x-grid3-row-over { border-color: #3a3e41; background-color: #212425; background-image: none } .sm-add-icon { background-image: url("data:image/svg+xml;base64,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")!important } .sm-disc-drive { background-image: url("../img/disc_drive.png")!important } .sm-internet-search { background-image: url("../img/internet_search.png")!important } .sm-search-icon { background-image: url("../img/search.png")!important } .sm-filter-icon { background-image: url("data:image/svg+xml;base64,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") } .sm-control-panel { background-image: url("../img/control_panel.png")!important } .sm-checklist-icon { background-image: url("../img/shield-green-check.svg")!important; filter: saturate(.75) } .sm-checklist-tab-icon { background-image: url("../img/shield-green-check.svg")!important } .sm-setting-icon { background-image: url("../img/gear.svg")!important } .sm-export-icon { background-image: url("../img/download.svg") } .sm-import-icon { background-image: url("../img/upload.svg") } .sm-asset-icon { background-image: url("../img/target.svg")!important } .sm-template-icon { background-image: url("../img/template.png")!important } .sm-library-icon { background-image: url("../img/library.svg")!important } .sm-folder-icon { background-image: url("../img/folder.svg")!important } .sm-collection-icon, .sm-collection-tab-icon { background-image: url("../img/collection.svg")!important } .sm-department-icon { background-image: url("../img/department-16.png")!important } .sm-stig-icon { background-image: url("../img/shield-green-check.svg")!important; filter: saturate(.75) } .sm-report-icon { background-image: url("../img/grid.svg")!important } .sm-chat-icon { background-image: url("../img/chat-16.png")!important } .sm-ackchat-icon, .sm-newchat-icon, .sm-unackchat-icon { background-image: url("../img/message_edit.png")!important } .sm-feedback-icon { background-image: url("../img/feedback-16.gif")!important } .sm-feedback-ack-icon { background-image: url("../img/feedback-ack-16.gif")!important } .sm-feedback-unack-icon { background-image: url("../img/feedback-unack-16.gif")!important } .sm-artifact-icon { background-image: url("../img/page_white_text.png")!important } .sm-note-icon { background-image: url("../img/note-16.png")!important } .sm-star-icon, .sm-star-icon-16 { background-image: url("../img/star.svg")!important } .sm-assign-icon { background-image: url("../img/right-arrow-16.png")!important } .sm-unlock-icon { background-image: url("../img/unlock-16.png")!important } .sm-ready-icon { background-image: url("../img/ready-16.png")!important } .sm-ready-flip-icon { background-image: url("../img/ready-flip-16.png")!important } .x-btn-pressed.sm-star-icon { background-image: url("../img/star.svg")!important } .sm-save-icon { background-image: url("../img/save-16.png")!important } .sm-disk-icon { background-image: url("../img/save-icon.svg")!important } .sm-database-save-icon { background-image: url("../img/database.svg")!important } .sm-table-icon { background-image: url("../img/table.png")!important } .sm-page-edit-icon { background-image: url("../img/page_edit.png")!important } .sm-page-white-get-icon { background-image: url("../img/page_white_get.png")!important } .sm-page-white-put-icon { background-image: url("../img/page_white_put.png")!important } .sm-hbss-disabled-icon, .sm-hbss-enabled-icon { background-image: url("../img/hbss-check-sprite.gif") } .sm-application-go-icon { background-image: url("../img/application_go.png")!important } .sm-list-remove-16-icon { background-image: url("../img/list-remove-16.png") } .sm-scan-assign-icon { background-image: url("../img/greencheckt.gif") } .x-item-disabled .sm-scan-assign-icon { background-image: url("../img/greycheckt.gif") } .sm-scan-unassign-icon { background-image: url("../img/greydash.gif") } .sm-scan-toggleAssign-icon { background-image: url("../img/icon-all.gif") } .sm-zip-icon { background-image: url("../img/compress.png") } .sm-scap-grid-item { background-color: #1e3516 } .sm-scap-grid-item.x-grid3-row-over { background-color: #24361e } .sm-scap-grid-item.x-grid3-row-selected { background-color: #2d3c28!important } .sm-cell-red { background-color: #6c0000; border-right-color: #303436; border-left-color: #303436 } .x-grid3-row-over .sm-cell-red { background-color: #4e0b0b!important } .sm-cell-orange { background-color: #703800; border-right-color: #303436; border-left-color: #303436 } .x-grid3-row-over .sm-cell-orange { background-color: #502e0b!important } .sm-cell-green { background-color: #2c501c; border-right-color: #303436; border-left-color: #303436 } .x-grid3-row-over .sm-cell-green { background-color: #253d1c!important } .sm-cell-grey { background-color: #2b2f31; border-right-color: #303436; border-left-color: #303436 } .sm-cell-purple { background-color: #5f225f; border-right-color: #303436; border-left-color: #303436 } .x-grid3-row-over .sm-cell-purple { background-color: #441f44!important } .sm-cell-peach { background-color: #6c5a04 } .sm-cell-status { background-color: hsl(192deg 55% 16%); border-left-color: #303436 } .x-grid3-row-over .sm-cell-status { border-left-color: #303436; background-color: #242728!important } .sm-cell-checklist { background-image: url("../img/security_firewall_on.png") } .sm-cell-asset { background-image: url("../img/target.svg") } .sm-cell-template { background-image: url("../img/template.png") } .custom-stig-users .x-grid3-row-selected .x-grid3-cell-last { background-image: url("../img/User-Group-icon.png") } .sm-artifact-download-icon { background-image: url("../img/download.svg") } .sm-artifact-edit-icon { background-image: url("../img/edit-16.png") } .x-grid3-row-over .artifact-download { background-image: url("../img/download.svg") } .x-grid3-row-over .artifact-view { background-image: url("../img/eye.svg") } .x-grid3-row-over .artifact-edit { background-image: url("../img/edit-16.png") } .x-grid3-row-over .artifact-delete { background-image: url("../img/delete.png") } .x-grid3-row-over .artifact-download :active, .x-grid3-row-over .artifact-download:active { background-image: url("../img/download.svg") } .sm-reviews-home-background { background-color: #181a1b } .sm-background-blue { background-color: #222426!important } .x-grid3-summary-row { border-left-color: #303436; border-right-color: #303436; color: #c8c3bc; background-image: initial; background-color: #1f2223 } .sm-review-action-textarea[disabled], .sm-review-result-textarea[disabled] { color: #e8e6e3; background-image: none; background-color: initial } .sm-combo-loading { background-image: url("../img/loading.gif") } .sm-context-menu { background-image: none } .sm-context-menu-header { background-color: #272a2c; border-color: #1a4072 } .fa-border { border-color: #35393b } .fa-inverse { color: #e8e6e3 } .sr-only { border-color: initial } .x-form-file-wrap .x-form-file-text { color: #9d9488 } .x-row-editor-footer, .x-row-editor-header { background-image: url(../img/row-editor-bg-dark.gif); background-color: transparent } .x-row-editor-body { background-image: initial; background-color: #25282a } .x-row-editor .x-btns, .x-row-editor .x-btns .x-plain-body, .x-row-editor .x-btns .x-plain-bwrap { background-image: url("../img/row-editor-btns-dark.gif"); background-color: transparent } .x-row-editor.x-small-editor { border-right: 1px solid #c4c4c4 } .json-container { background-color: #181a1b; color: #988f81 } .json-container .json-key { color: #bdb7af } .json-container .json-number { color: #ff941a } .json-container .json-object { color: #6b91d8 } .json-container .json-boolean { color: #ec6168 } .json-container .json-string { color: #b0f76d } .json-container .sm-caret-down { border-color: #545b5e transparent } .json-container .sm-caret-right { border-color: transparent transparent transparent #545b5e } .vimvixen-hint { background-color: #7b5300!important; border-color: #d8b013!important; color: #f3e8c8!important } a[href="https://coinmarketcap.com/"] > svg[width="94"][height="16"] > path { fill: var(--darkreader-neutral-text)!important } #edge-translate-panel-body { color: var(--darkreader-neutral-text)!important } gr-main-header { background-color: #0f3a48!important } embed[type="application/pdf"] { filter: invert(100%) contrast(90%) } .ext-el-mask-msg span { border: 3px solid #bbb; border-bottom-color: transparent } .ext-el-mask-msg div { background-color: #565656; color: #eee } .ext-el-mask-modal { background-color: rgb(0 0 0 / 65%) } .x-tool:hover { filter: brightness(150%) } .sm-line-height-up { background-image: url(../img/line-height-up-dark.svg); background-size: 16px 16px; } .sm-line-height-down { background-image: url(../img/line-height-down-dark.svg); background-size: 16px 16px; } .d2h-file-wrapper { border-color: #444; } .d2h-file-header { border-bottom-color: #444; background-color: hsl(204deg 6% 16%); } .d2h-info { background-color: hsl(216deg 56% 60%); border-color: hsl(216deg 56% 55%); } .d2h-file-name-wrapper { color: #999 } .d2h-code-line del, .d2h-code-side-line del { background-color: hsl(0 63% 31% / 1); } .d2h-file-diff .d2h-del.d2h-change { background-color: hsl(0 60% 17% / 1); } .d2h-file-diff .d2h-ins.d2h-change { background-color: hsl(110deg 22% 22%); } .d2h-code-line ins, .d2h-code-side-line ins { background-color: hsl(110deg 35% 30%); } .d2h-code-linenumber { background-color: transparent; color: hsl(0deg 0% 50%); border-right-color: hsl(0 0% 20%); } .d2h-del { background-color: hsl(0 60% 17% / 1); border-right-color: hsl(0 59% 20%); } .d2h-file-diff { background-color: hsl(195deg 7% 11%); } .d2h-ins { background-color: hsl(110deg 22% 22%); border-right-color: hsl(120 33% 20%); } .sm-diff-ins { background-color: hsl(78deg 35% 26%); } .sm-diff-del { background-color: hsl(0deg 71% 25%) } .sm-round-panel .x-panel-header.sm-selections-panel-header { background-color: var(--metrics-status-chart-submitted-dark); } .sm-grabbing *, .sm-grabbing .sm-grid3-draggable .x-grid3-row-selected *, .sm-grabbing .sm-grid3-draggable .x-grid3-row-selected { cursor: url("../img/drag-drop-dark.svg"), grabbing; } .sm-appinfo-message { background-color: #2d2d2d; color: #999999; } .sm-render-zero { color: #444444 } .sm-whats-new img { border: 1px solid hsl(0 0% 20% / 1) } .sm-feedback-box { background-color: #2d3e4a; border: 1px solid #3a4d5c; } .sm-feedback-box-title { color: #7ab3e8; } .sm-feedback-box-content { color: hsl(36deg 10% 85%); } .sm-feedback-box-content a { color: #7ab3e8; } .x-btn { background-color: #424242; border-radius: 6px; } .x-btn:hover { background-color: var(--metrics-status-chart-submitted-dark); } .x-toolbar .x-btn { background-color: transparent; } .x-toolbar .x-btn:hover { background-color: var(--metrics-status-chart-submitted-dark); } .x-toolbar .x-btn-pressed.x-btn { background-color: var(--metrics-status-chart-submitted-dark); } .sm-label-sprite.sm-sprite-read, .sm-label-sprite.sm-sprite-readwrite { color: #000000; } .x-form-field-wrap:hover .x-form-file-btn { background-color: var(--metrics-status-chart-submitted-dark); border-radius: 5px; } .sm-cora-box-right { border: 1px solid #444; } .sm-cora-cat { border: 1px solid #444; } .sm-metrics-age-box { background-color: #aaa } .x-btn-pressed { box-shadow: inset 0px 0px 0px 1px hsl(0 0% 50% / 1); } .sm-log-line[data-component="logSocket"] { color: #c48eff; } .sm-log-line[data-component="jwksCache"] { color: #e7a15e; } .sm-log-line[data-component="static"] { color: #808080; } .sm-log-line[data-component="rest"] { color: #5ee75e; } .sm-log-line[data-level="1"] { color: red; } .sm-log-line[data-level="2"] { color: orange; } ================================================ FILE: client/src/css/init.css ================================================ #loading-mask { position: absolute; left: 0; top: 0; width: 100%; height: 100%; z-index: 20000; display: flex; align-items: start; justify-content: center; background-color: #2a3037; color: #d0cec5; } #loading { position: absolute; top: 100px; display: flex; flex-direction: column; align-items: center; justify-content: flex-start; gap: 16px; /* space between items */ } #loading .loading-indicator { background: url("../img/loading.svg") no-repeat; background-position: center top; background-size: 50px; color: #d0cec5; font: bold 42px helvetica, sans-serif; padding: 50px 0px; margin: 0; text-align: center; height: auto; } #loading-text { font: bold 12px helvetica, sans-serif; padding-top: 8px; } #loading-text a { color: #d0cec5; background: url("../img/external-link.svg") no-repeat 100% 0; background-size: 12px 12px; padding-right: 16px; } ================================================ FILE: client/src/css/jsonview.bundle.css ================================================ .json-container { font-family: 'Open Sans'; font-size: 11px; background-color: transparent; color: #808080; box-sizing: border-box; } .json-container .line { margin: 2px 0; display: flex; justify-content: flex-start; } .json-container .caret-icon { width: 18px; text-align: center; cursor: pointer; } .json-container .empty-icon { margin-left: 18px; } .json-container .json-type { margin-right: 4px; margin-left: 4px; } .json-container .empty-icon ~ .json-key { font-weight: unset; } .json-container .json-key { color: #444; font-weight: 600; margin-right: 4px; margin-left: 4px; } .json-container .json-index { margin-right: 4px; margin-left: 4px; } .json-container .json-value { margin-left: 8px; } .json-container .json-number { color: #ff8800; } .json-container .json-object { color: #6b65d7; } .json-container .json-boolean { color: #ec5f66; } .json-container .json-string { color: hsl(91 89% 29% / 1); } .json-container .json-size { margin-right: 4px; margin-left: 4px; } .json-container .hide { display: none; } .json-container .sms { display: inline-block; width: 0; height: 0; border-style: solid; } .json-container .sm-caret-down { border-width: 6px 5px 0 5px; border-color: #585858 transparent; } .json-container .sm-caret-right { border-width: 5px 0 5px 6px; border-color: transparent transparent transparent #585858; } ================================================ FILE: client/src/css/stigman.css ================================================ :root { --metrics-status-chart-assessed-light: hsl(230deg 41% 86%); --metrics-status-chart-submitted-light: hsl(92deg 44% 77%); --metrics-status-chart-accepted-light: hsl(146deg 60% 69%); --metrics-status-chart-unassessed-light: hsl(0deg 0% 93%); --metrics-status-chart-unsaved-light: hsl(0deg 0% 93%); --metrics-status-chart-rejected-light: hsl(13deg 69% 75%); --metrics-status-chart-assessed-dark: hsl(204deg 91% 25%); --metrics-status-chart-submitted-dark: hsl(87deg 41% 25%); --metrics-status-chart-accepted-dark: hsl(146deg 90% 25%); --metrics-status-chart-unassessed-dark: hsl(0 0% 18% / 1); --metrics-status-chart-unsaved-dark: hsl(0deg 0% 18%); --metrics-status-chart-rejected-dark: hsl(5deg 90% 25%); --color-severity-high: hsl(13deg 68% 75%); --color-severity-medium: hsl(38 100% 78% / 1); --color-severity-low: hsl(230deg 41% 86%); --color-risk-very-high: var(--color-severity-high); --color-risk-very-high-text: rgb(88, 12, 21); --color-risk-high: var(--color-severity-medium); --color-risk-high-text: rgb(146, 50, 18); --color-risk-moderate: hsl(60 100% 80% / 1); --color-risk-moderate-text: #805500; --color-risk-low: var(--color-severity-low); --color-risk-low-text: rgb(14, 90, 161); --color-risk-very-low: #c3deab; --color-risk-very-low-text: rgb(0, 100, 0); --color-scrollbar-idle: #d0d0d0; --color-scrollbar-hover: #b0b0b0; --color-marking-unclassified: #007a33; --color-marking-cui: #502b85; --color-marking-confidential: #0033a0; --color-marking-fouo: #502b85; --color-marking-secret: #c8102e; --color-marking-topsecret: #ff671f; --color-marking-sci: #f7ea48; --color-http-status-200: #7dd491; --color-http-status-300: #99c2ff; --color-http-status-400: #ffc099; --color-http-status-500: #ff9999; --color-job-run-state-completed: hsl(121 84% 50% / 1); --color-job-run-state-running: hsl(222, 84%, 50%); --color-job-run-state-failed: hsl(1deg 74.55% 52.35%); --color-job-run-state-missing: hsl(0 0% 73% / 1); } .x-tree-node-collapsed .x-tree-node-icon, .x-tree-node-expanded .x-tree-node-icon, .x-tree-node-leaf .x-tree-node-icon { width: 22px; } .sm-grid-cell-with-toolbar { position: relative; } .sm-grid-cell-with-toolbar .sm-dynamic-width { margin-right: 0px; } .sm-grid-cell-with-toolbar .sm-info { text-overflow: ellipsis; overflow: hidden; white-space: nowrap; } .sm-grid-cell-with-toolbar .sm-static-width { position: absolute; visibility: hidden; top: 0; right: 0; } .x-grid3-row-over .sm-grid-cell-with-toolbar .sm-dynamic-width { margin-right: 28px; } .x-grid3-row-over .sm-grid-cell-with-toolbar .sm-static-width { visibility: visible; filter: grayscale(100%) brightness(125%); } .x-grid3-row-over .sm-grid-cell-with-toolbar .sm-static-width:hover { scale: 110%; filter: brightness(100%); } .sm-grid-cell-with-toolbar-2 { position: relative; } .sm-grid-cell-with-toolbar-2 .sm-dynamic-width { margin-right: 0px; } .sm-grid-cell-with-toolbar-2 .sm-info { text-overflow: ellipsis; overflow: hidden; white-space: nowrap; } .sm-grid-cell-with-toolbar-2 .sm-static-width { position: absolute; visibility: hidden; top: 0; right: 0; } .x-grid3-row-over .sm-grid-cell-with-toolbar-2 .sm-dynamic-width { margin-right: 58px; } .x-grid3-row-over .sm-grid-cell-with-toolbar-2 .sm-static-width .sm-grid-cell-tool img { visibility: visible; filter: grayscale(100%) brightness(125%); } .x-grid3-row-over .sm-grid-cell-with-toolbar-2 .sm-static-width .sm-grid-cell-tool:hover img { cursor: pointer; scale: 125%; filter: brightness(100%); } .sm-metrics-no-assessments-body { color: #bbb; display: flex; justify-content: center; align-items: center; height: inherit; width: inherit } .sm-metrics-progress-parent { text-align: center } .sm-metrics-progress-child { display: inline-block; width: 73px; border-radius: 5px; margin: 0 9px; vertical-align: middle } .sm-metrics-progress-label { font-weight: 600; padding-bottom: 4px } .sm-metrics-progress-child .sm-metrics-progress-thermometer-wrap { height: 20px; line-height: 20px; font-weight: 600 } .sm-metrics-progress-child .sm-cell-mercury-high, .sm-metrics-progress-child .sm-cell-mercury-low, .sm-metrics-progress-child .sm-cell-mercury-medium, .sm-metrics-progress-child .sm-cell-thermometer-bg { height: 100% } .sm-metrics-status-table { padding-top: 10px } .sm-metrics-status-pct { text-align: center; font-size: large; font-weight: 600 } .sm-metrics-status-table .sm-metrics-total { font-weight: 600 } .sm-metrics-status-table .sm-metrics-total td { font-weight: 600; border-top: 1px solid #bbb } .sm-metrics-status-table tr { height: 19px } .sm-metrics-status-table td { padding-left: 4px; padding-right: 4px } .sm-metrics-status-table .sm-metrics-value { text-align: right; padding-left: 10px } .sm-metrics-status-table .sm-metrics-label { border: 1px solid #bbb; border-radius: 3px } .sm-metrics-status-table .sm-metrics-assessed { background-color: var(--metrics-status-chart-assessed-light) } .sm-metrics-status-table .sm-metrics-submitted { background-color: var(--metrics-status-chart-submitted-light); } .sm-metrics-status-table .sm-metrics-accepted { background-color: var(--metrics-status-chart-accepted-light) } .sm-metrics-status-table .sm-metrics-unassessed { background-color: var(--metrics-status-chart-unassessed-light) } .sm-metrics-status-table .sm-metrics-unsaved { background-color: var(--metrics-status-chart-unsaved-light) } .sm-metrics-status-table .sm-metrics-rejected { background-color: var(--metrics-status-chart-rejected-light) } .sm-metrics-refresh-parent { padding-right: 20px; text-align: right; font-style: italic } .sm-metrics-count-parent { text-align: center; color: #111 } .sm-metrics-count-child { display: inline-block; cursor: default; width: 61px; height: 36px; border-radius: 5px; background-color: #eee; border: 1px solid #bbb; padding: 4px 12px; margin: 0 12px; vertical-align: middle; line-height: 18px } .sm-metrics-count-label { font-weight: 600; font-size: larger } .sm-metrics-count-value { font-weight: 800; font-size: large } .sm-cora-column, .sm-metrics-findings-count-cell { border-radius: 5px; outline: #bbb solid 1px; outline-offset: -1px; width: 35px; font-weight: 600; color: #111; margin: 0 auto } .sm-cora-tooltip-label { border-radius: 5px; outline: #bbb solid 1px; outline-offset: -1px; width: auto; /* Allow width to fit content */ min-width: 80px; /* Ensure minimum width for consistency */ font-weight: 500; /* Lighter weight */ color: #111; margin: 2px auto; padding: 2px 6px; /* Add padding for better text spacing */ display: inline-block; text-align: center; } .sm-metrics-high-box { background-color: var(--color-severity-high) } .sm-metrics-medium-box { background-color: var(--color-severity-medium) } .sm-metrics-low-box { background-color: var(--color-severity-low) } .sm-metrics-inventory-box { background-color: hsl(21deg 41% 86%) } .sm-metrics-overview-panel .x-panel-body { background-color: hsl(0 0% 95% / 1) } .sm-round-inner-panel { border-radius: 6px; overflow: hidden; margin: 12px; } .sm-round-panel .sm-round-inner-panel .x-panel-body { background-color: #fff; border-bottom-left-radius: 6px; border-bottom-right-radius: 6px } .sm-metric-agg-panel .x-layout-split { background-color: #eee } .sm-combo-list-icon { border-width: 0px; padding-left: 20px; background-position: left } .sm-col-wrap .x-grid3-cell-inner, .x-grid3-row-body { white-space: pre-wrap; overflow-wrap: break-word } .x-grid3-row-expanded .x-grid3-row-body { max-width: 600px; background-color: #faebd7 } .sm-truncated-action { color: #36c; font-style: italic; text-decoration: underline; cursor: pointer } .sm-whats-new p { margin-top: 10px; margin-bottom: 10px } .sm-whats-new img { border: 1px solid hsl(0deg 0% 65%) } .sm-whats-new-no-border img { border: 0px } .sm-whats-new-feedback-panel { padding: 10px 20px 20px 20px; } .sm-feedback-box { background-color: #e8f4f8; border: 1px solid #b8d4e8; border-radius: 4px; padding: 8px 16px; margin: 0; } .sm-feedback-box-title { font-weight: bold; font-size: 14px; margin-bottom: 8px; color: #2c5f7c; } .sm-feedback-box-content { font-size: 13px; color: #333; } .sm-feedback-box-content a { color: #2c5f7c; text-decoration: underline; } .sm-whats-new-title { padding-top: 10px; } .x-tree-node-leaf .x-tree-node-icon.sm-whats-new-icon { background-image: url(../img/clock.svg); background-size: 16px 16px } .sm-dark-mode-icon { background-image: url(../img/dark-mode.svg) !important; background-size: 16px 16px } .x-grid3-cell-inner { padding-left: 4px } .sm-engine-result-icon { background-image: url(../img/bot2.svg); background-repeat: no-repeat; width: 12px; } .sm-engine-override-icon { background-image: url(../img/override2.svg); background-repeat: no-repeat } .sm-engine-manual-icon { background-image: url(../img/user.svg); background-repeat: no-repeat } .x-grid3-cell.x-grid3-hd .sm-engine-result-icon { background-size: 12px 12px; width: 12px; height: 12px } .x-grid3-cell :is(.sm-engine-result-icon, .sm-engine-override-icon, .sm-engine-manual-icon) { background-size: 14px 14px; height: 14px; width: 14px } .x-menu-item-text .sm-engine-result-icon, .x-menu-item-text .sm-history-icon { background-size: 12px 12px; height: 12px } .x-grid3-cell.x-grid3-hd .sm-history-icon { background-size: 12px 12px; background-position: center; height: 12px } .x-menu-check-item .x-menu-item-icon { background-image: url(../img/checkboxes.svg); background-position: 1px 0; background-repeat: no-repeat; background-color: transparent } .x-menu-item-checked .x-menu-item-icon { background-position: -24px 0 } .x-menu-group-item .x-menu-item-icon { background-image: none } .x-tree-node { margin-bottom: 2px; font-size: 11px } .x-grid3-row td, .x-grid3-summary-row td { line-height: 15px } .sm-label-edit-color { position: absolute; top: 5px; right: 2px; cursor: pointer } .x-tree-node-el.x-unselectable { cursor: default } .sm-tree-toolbar { display: none } /* Always show Meta Dashboard button (grid icon) */ .sm-tree-toolbar.sm-tree-toolbar-persistent { display: inline; position: absolute; right: 10px; margin-top: 2px; cursor: pointer; opacity: .5 } .x-tree-node-el:hover .sm-tree-toolbar, .x-tree-selected .sm-tree-toolbar { display: inline; position: absolute; right: 10px; margin-top: 2px; cursor: pointer; opacity: .5 } .x-tree-node-el:hover .sm-tree-toolbar:hover, .x-tree-selected .sm-tree-toolbar:hover { opacity: 1; scale: 125% } .x-color-palette { height: unset; width: 108px } .x-color-palette em { border: 0 } .x-color-palette em span { width: 12px; height: 12px } .sm-label-icon { background-image: url(../img/label.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-pin-icon { background-image: url(../img/pin.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-label-sprite { font: 600 10px/14px Open Sans, helvetica, sans-serif; top: 0; padding: 0 5px; border-radius: 3px; margin-left: 3px; white-space: nowrap } .sm-jumbo-sprite { font-size: 12px; } .sm-diff-sprite { background-color: hsl(207deg 100% 84%); color: #000; } .sm-diff-sprite-check { background-color: #F5A3A3; color: #000; } .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr, .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr { background-color: #feeecc; background-image: unset } .x-grid3-row-selected { background-color: hsl(212deg 14% 85%) !important; background-image: none; border-color: #acacac } .x-grid3-hd-checker, .x-grid3-row-checker { background-image: url(../img/checkboxes.svg); width: 100%; height: 18px; background-position: 1px 2px; background-repeat: no-repeat; background-color: transparent } .x-grid3-body .x-grid3-td-checker { background: unset } .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker { background-image: unset } .x-grid3-row .x-grid3-row-checker { background-position: 1px 2px } .x-grid3-hd-checker-on .x-grid3-hd-checker, .x-grid3-row-checked .x-grid3-row-checker, .x-grid3-row-selected .x-grid3-row-checker { background-position: -24px 2px; } .x-grid3-hd-checker { background-position: 1px 1px } .ext-border-box .x-grid3-hd-checker { background-position: 1px 3px } .x-grid3-hd-checker-on .x-grid3-hd-checker { background-position: -24px 1px } .x-grid3-hd-checker-ind .x-grid3-hd-checker { background-position: -50px 1px } .x-grid3-row-selected-checkonly .x-grid3-row-checker { background-position: -24px 2px } input.x-tree-node-cb { margin-right: 2px } .sm-text-highlight { background-color: #fad6a2 } .sm-menuitem-filter-label { background-color: #d3d8de; font-weight: 700; font-size: 9px; color: hsl(0 0% 50% / 1) !important; height: 10px; line-height: 10px !important } .sm-menuitem-filter-icon { background-image: url(../img/bars-filter.svg); background-size: 16px; background-position: center; background-repeat: no-repeat; top: 0 } .sm-menuitem-status-icon { width: 12px; height: 12px; padding-right: 3px; vertical-align: -2px } .sm-menuitem-div-icon { padding-left: 18px; background-size: 14px 14px; background-position: 0 1px } .sm-grid3-col-filterable .x-grid3-hd-btn { background-image: url(../img/bars-filter.svg); background-size: 10px 14px; background-position: center; display: block; margin-top: 1px; height: 22px; margin-right: 0 } .sm-grid3-col-filtered .x-grid3-hd-btn { background-color: var(--metrics-status-chart-submitted-light); } .x-grid3-hd-btn { background-color: transparent; background-image: none; display: block; cursor: default } .sm-cb .x-form-cb-label { top: 3px } .sm-collection-manage-layout .x-border-layout-ct, .sm-collection-manage-layout .x-panel-body, .sm-dialog-window.sm-round-panel { background-color: #fdfdfd } .sm-collection-manage-layout .x-layout-split { position: absolute; height: 5px; width: 5px; text-align: center; line-height: 5px; font-size: 10px; color: hsl(0deg 0% 65%); background-color: transparent } .sm-collection-manage-layout .x-layout-split:after { content: "====" } .x-form-search:focus, .x-form-text:focus, .x-form-textarea:focus { border: 1px solid #dc8633; box-shadow: inset rgb(220 134 51 / 20%) 0 0 1px 1px } .sm-result-engine-span.x-column { overflow: unset } .sm-result-engine-sprite { color: #fcfcfc !important; font: bold 10px Open Sans, helvetica, sans-serif; position: relative; top: -1px; background-color: hsl(220deg 60% 50%); padding: 1px 4px 2px !important; border-radius: 3px; margin-left: 4px; user-select: none } .sm-result-override-sprite { color: #fcfcfc !important; font: bold 10px Open Sans, helvetica, sans-serif; position: relative; top: -1px; background-color: #cc5e33; padding: 1px 4px 2px !important; border-radius: 3px; margin-left: 4px; user-select: none } .x-form-cb-label .sm-question-circle, .x-form-item-label .sm-question-circle, .x-grid3-hd .sm-question-circle, .x-panel-header .sm-question-circle { color: hsl(0deg 0% 60%); margin-left: 3px; font-size: 13px } .x-form-trigger+.sm-question-circle { margin-left: 22px; color: hsl(0deg 0% 60%); font-size: 14px; position: absolute; top: 3px } .x-form-trigger[style*="display: none;"]+.sm-question-circle { margin-left: 5px } .x-form-field-wrap.x-form-field-trigger-wrap .x-form-field.sm-review-combo-input[disabled] { color: gray; background-color: transparent; cursor: auto } .sm-home-widget-bwrap { overflow: auto; height: 338px; margin-right: 0 } .x-progress-inner { background-image: none; background-color: hsl(0deg 0% 95%) } .x-progress-bar { background-image: none; background-color: #bdd0e5; border: none } .sm-pb-error .x-progress-bar { background-color: #ebadad } .x-progress-text { color: transparent } .x-progress-text.x-progress-text-back { color: hsl(0deg 0% 33%) } .sm-cell-thermometer-bg { background-color: #eee; border-radius: 3px; outline: #bbb solid 1px; outline-offset: 0px } .sm-cell-thermometer-text { float: left; margin-left: 4px; font-style: italic; font-weight: 600 } .sm-cell-mercury-low { background-color: #c3deab } .sm-cell-mercury-medium { background-color: hsl(230deg 40% 86%) } .sm-cell-mercury-high { background-color: #eba795; height: 15px } .x-panel-btns td.x-toolbar-cell { padding: 0 18px 10px 0 } .sm-dialog-panel-text { padding-bottom: 10px; font: 10px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-dialog-panel-content { padding-bottom: 10px; font: 11px/13px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-dialog-panel-callout { margin-top: 20px; padding: 10px; font: 11px/13px Open Sans, helvetica, sans-serif; background-color: #e6e6e6; color: #000; word-wrap: break-word } .sm-dialog-panel-content ul { list-style-type: square; display: list-item; margin-left: 2em } .ext-gecko .x-btn button, .ext-webkit .x-btn button, .x-btn button { font-weight: 600; padding: 0 3px 3px 3px } .x-btn button.sm-error-icon { background-color: #ebadad; background-image: url("../img/remove.svg") } .sm-export-sprite { font: 10px Open Sans, helvetica, sans-serif; position: relative; top: -1px; border-radius: 12px; padding: 0 5px 1px !important; user-select: none } .sm-export-sprite-high, .sm-export-sprite-medium { background-color: #ddd } .sm-export-sprite-low { background-color: #c3deab } .x-form-display-field { padding-top: 3px } .ext-webkit .x-small-editor .x-form-field { font: 10px Open Sans, helvetica, sans-serif } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image: url(../img/tree-elbow-closed.svg); background-position: 3px 7px } .x-grid-group-hd div.x-grid-group-title { background-image: url(../img/tree-elbow-minus.svg); background-position: 3px 7px } .x-grid3-row-collapsed .x-grid3-row-expander { background-image: url(../img/tree-elbow-closed.svg); background-position: 3px 4px } .x-grid3-row-expanded .x-grid3-row-expander { background-image: url(../img/tree-elbow-minus.svg); background-position: 3px 4px } .sm-toolbar-legend-box { width: 20px; height: 10px; border: 1px solid #c2c2c2 } .x-tree-lines .x-tree-elbow, .x-tree-lines .x-tree-elbow-end, .x-tree-lines .x-tree-elbow-line { background-image: none } .x-tree-lines .x-tree-elbow-end-minus, .x-tree-lines .x-tree-elbow-minus { background-image: url(../img/tree-elbow-minus.svg); background-position: 3px 4px } .x-tree-lines .x-tree-elbow-end-plus, .x-tree-lines .x-tree-elbow-plus { background-image: url(../img/tree-elbow-closed.svg); background-position: 3px 4px } .sm-drop { border: 2px dashed #bbb; -moz-border-radius: 5px; -webkit-border-radius: 5px; border-radius: 5px; padding: 25px; text-align: center; font: 20pt bold; color: #bbb } body { font: 11px Open Sans, verdana, helvetica, sans-serif } .sm-grid-result-sprite { font: bold 11px/13px Open Sans, helvetica, sans-serif; position: relative; top: 0; background-color: #f5f3f3; border: 1px solid #c1c1c1; border-radius: 3px; user-select: none; max-width: 20px; margin: 0 auto } .sm-tooltip-result-sprite { font: bold 11px/13px Open Sans, helvetica, sans-serif; position: relative; top: 0; background-color: #f5f3f3; border: 1px solid #c1c1c1; border-radius: 3px; user-select: none } .sm-result-pass { color: green; text-align: center } .sm-result-fail { color: #d74400; text-align: center } .sm-result-na { color: #909090; text-align: center } .sm-result-nr { color: #404040; text-align: center } .sm-grid-sprite { font: bold 10px/13px Open Sans, helvetica, sans-serif; position: relative; top: 1px; background-color: #fff; border: 1px solid #c1c1c1; border-radius: 3px; margin-left: 0; user-select: none } .sm-content-sprite { color: #fcfcfc; font: bold 14px Open Sans, helvetica, sans-serif; position: relative; top: 5px; background-color: #6f93db; padding: 1px 4px; border: 1px solid #c1c1c1; border-radius: 3px; user-select: none; float: right; } .sm-navtree-sprite { color: #fcfcfc !important; font: bold 9px Open Sans, helvetica, sans-serif; position: relative; top: -1px; background-color: #6f93db; padding: 1px 4px 2px; border-radius: 3px; margin-left: 11px; user-select: none } .sm-severity-high { color: #d74400; background-color: #f5f3f3; padding: 0 2px } .sm-severity-medium { color: #36c; background-color: #f5f3f3; padding: 0 2px } .sm-severity-low { color: green; background-color: #f5f3f3; padding: 0 2px } .sm-home-widget-image-text-wrap { float: left; margin-right: 15px; width: 125px; height: 125px; display: flex; justify-content: center; align-items: center } .sm-home-widget-text { padding: 10px 20px; font: 12px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-home-widget-text a { color: #000 } .sm-home-widget-text ul { list-style-type: square; margin-left: 20px; margin-top: 4px; margin-bottom: 4px } .sm-home-widget-text b { font-weight: 600 } .sm-home-widget-header-1 { padding: 10px 20px; font: 11px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-empty-cell { font-style: italic; color: #bbb } .sm-empty-cell::after { content: "No value" } .sm-round-panel .ext-mb-content { font-family: Open Sans, verdana, sans-serif } .sm-bare-button .x-btn-bc, .sm-bare-button .x-btn-bl, .sm-bare-button .x-btn-br, .sm-bare-button .x-btn-mc, .sm-bare-button .x-btn-ml, .sm-bare-button .x-btn-mr, .sm-bare-button .x-btn-tc, .sm-bare-button .x-btn-tl, .sm-bare-button .x-btn-tr { background-image: none } .x-fieldset { border-radius: 3px } .ext-el-mask { background-color: rgb(0 0 0 / 0%); backdrop-filter: blur(3px) grayscale(); animation: fadein 0.25s; animation-fill-mode: forwards; } @keyframes fadein { from { opacity: 0; } to { opacity: 1; } } .ext-el-mask-modal { background-color: rgb(0 0 0 / 50%); backdrop-filter: blur(1px) grayscale(); animation: fadein 0.25s; animation-fill-mode: forwards; position: absolute; top: 0; left: 0; } .ext-el-mask-msg { background-image: none; background-color: unset; border: none; top: 50%; left: 50%; text-align: center; transform: translate(-50%, -50%); } .ext-el-mask-msg div { background-color: #dedede; border: none; color: #010101; font-weight: 600; border-radius: 6px; margin-bottom: 10px; } .ext-el-mask-msg span { width: 32px; height: 32px; border: 3px solid #888; border-bottom-color: transparent; border-radius: 50%; display: inline-block; box-sizing: border-box; animation: rotation 1s linear infinite; } @keyframes rotation { 0% { transform: rotate(0deg); } 100% { transform: rotate(360deg); } } .sm-round-panel .x-window-header { color: #111; font-weight: 700; font-size: 11px; font-family: Open Sans, verdana, sans-serif; background-color: #ccc; background-image: none; padding: 6px 8px 5px } .x-window-plain .x-window-mc { border: 0 solid } .x-window-plain .x-window-body { border: 0 solid; background: 0 0 !important } .x-window-bc, .x-window-bl, .x-window-br, .x-window-mc, .x-window-ml, .x-window-mr, .x-window-tc, .x-window-tl, .x-window-tr { background-image: none } .sm-review-footer, .sm-review-form { background-color: #f7f7f7 } .x-panel-header { color: #111 } .x-tab-panel-body { border-color: #d0d0d0; background-color: transparent } .x-tab-panel-noborder .x-tab-panel-header-noborder { border-width: 0 } .x-tab-strip .x-tab-strip-over span.x-tab-strip-text { opacity: 1 } .x-tab-strip .x-tab-with-icon span.x-tab-strip-text { opacity: .75; background-position: 0 4px } .x-tab-strip .x-tab-strip-active span.x-tab-strip-text { opacity: 1; color: #111; background-position: 0 4px } .x-tab-strip-top .x-tab-strip-over .x-tab-left, .x-tab-strip-top .x-tab-strip-over .x-tab-right, .x-tab-strip-top .x-tab-strip-over .x-tab-strip-inner { background-color: #ddd } .x-tab-strip-top .x-tab-strip-active .x-tab-left, .x-tab-strip-top .x-tab-strip-active .x-tab-right, .x-tab-strip-top .x-tab-strip-active .x-tab-strip-inner { background-color: hsl(0deg 0% 91%) } .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-strip-inner { background-image: none; background-color: #ccc; border-top-left-radius: 6px; border-top-right-radius: 6px } .x-form-search, .x-form-text, textarea.x-form-field { background-color: #fff; background-image: none; border: 1px solid #c1c1c1 } .x-form-search:read-only, .x-form-text:read-only, textarea.x-form-field:read-only { border-color: hsl(0deg 0% 80.31%); color: gray; } .x-form-text:read-only.x-trigger-noedit { color: #000000 } .x-tab-panel-footer, .x-tab-panel-header { background-color: transparent } .sm-home-title { background-image: url(../img/shield-green-check.svg); background-size: 48px 48px; background-position: 18px 12px; background-repeat: no-repeat; font: bold 36px Open Sans, helvetica, sans-serif; color: #333; padding-bottom: 30px; padding-left: 74px; padding-top: 12px } #sm-home-oss-sprite { color: #fcfcfc; font: bold 10px Open Sans, helvetica, sans-serif; position: relative; top: -14px; background-color: #6f93db; padding: 1px 4px 2px; border-radius: 3px; margin-left: 11px; user-select: none } #sm-home-version-sprite { color: #fcfcfc; font: bold 10px Open Sans, helvetica, sans-serif; position: relative; top: -14px; background-color: #569981; padding: 1px 4px 2px; border-radius: 3px; margin-left: 5px; user-select: none } .sm-main-tab-panels-common { border-radius: 6px } ul.x-tab-strip-top { background-color: transparent; background-image: none; border-bottom-color: #ccc; border-bottom-width: 3px } body.x-body-masked .x-window-plain .x-window-mc { background-color: #f9f9f9 } td.sort-asc, td.sort-desc, td.x-grid3-hd-menu-open, td.x-grid3-hd-over { border-left-color: #eee; border-right-color: #d0d0d0 } .x-grid3-header, td.sort-asc .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner, td.x-grid3-hd-over .x-grid3-hd-inner { background-color: #f0f0f0; background-image: none } .x-toolbar { border-color: #d0d0d0; background-color: #e5e5e5; background-image: none } .sm-border-layout-ct { background-color: #fcfcfc } .x-border-layout-ct { background-color: hsl(220 8% 50% / 1); } .sm-round-panel { border-radius: 6px; overflow: hidden } .sm-round-panel.x-window-dlg { background-color: hsl(0 0% 95% / 1); } .sm-round-panel .x-panel-body, .sm-round-panel.x-window { background-color: hsl(0 0% 95% / 1); } .sm-round-panel .x-panel-header { background-color: #ccc; background-image: none; padding: 5px 3px 4px 8px } .sm-round-inner-panel .x-panel-header { background-color: hsl(0deg 0% 90%); background-image: none; overflow: hidden; border-radius: 6px 6px 0 0; padding: 5px 8px 4px 8px; } .sm-round-panel .sm-home-widget-body { background-color: #dedede; border-radius: 25px; border: none; margin: 10px; height: 400px; width: 380px; } .sm-scroll-home-widget-body { max-height: 340px; overflow: auto; scrollbar-width: thin; margin-right: 8px; margin-top: 5px; } .sm-user-list { list-style: none; max-height: 340px; padding: 0; margin-left: 0; } .sm-user-item { padding: 3px; display: flex; align-items: left; } .sm-user-item::before { content: "• "; font-size: 16px; color: #dedede; margin-right: 3px; } .sm-user-details { display: flex; flex-direction: column; font-size: 13px; } .sm-user-name { font-size: 13px; font-weight: bold; } .sm-user-email { font-size: 11px; font-style: italic; } .sm-home-widget-header { background-color: #d3d3d3 } .sm-home-widget-title { padding: 10px 20px; font: bold 18px Open Sans, helvetica, sans-serif; color: #36c } .sm-dialog-panel-title { padding-top: 10px; padding-right: 20px; padding-bottom: 10px; font: bold 18px Open Sans, helvetica, sans-serif; color: #36c } .sm-home-widget-subtitle { padding-top: 5px; padding-bottom: 5px; font: bold 14px Open Sans, helvetica, sans-serif; color: #36c } .sm-home-widget-collectionName { font: bold 13px Open Sans, helvetica, sans-serif; color: #36c } .sm-banner-unclassified { background-color: var(--color-marking-unclassified); color: #fff; height: 20px } .sm-banner-cui { background-color: var(--color-marking-cui); color: #fff; height: 20px } .sm-banner-confidential { background-color: var(--color-marking-confidential); color: #fff; height: 20px } .sm-banner-secret { background-color: var(--color-marking-secret); color: #fff; height: 20px } .sm-banner-topsecret { background-color: var(--color-marking-topsecret); color: #fff; height: 20px } .sm-banner-sci { background-color: var(--color-marking-sci); color: #000; height: 20px } .sm-banner-body-text { text-align: center; font: bold 12px Open Sans, helvetica, sans-serif; padding-top: 1px } .sm-tree-node-collection-review, .sm-tree-node-create { font-style: italic } .x-grid3-row.x-stigman-cross-department { opacity: .4 } ::-ms-clear { display: none } .hbss-control .x-grid3-hd-checker, .hbss-control .x-grid3-row-checker { background-image: url(../img/hbss-check-sprite.gif) } .assignment-grid-item-selected { font-weight: 700; background-color: #ffa0a0 } .icon-department { background: url(../img/department-16.png) 0 no-repeat !important } .icon-refresh { background: url(../img/reload.svg) 0 0/16px 16px } .icon-loading { background: url(../img/loading.gif); background-size: 16px 16px; background-repeat: no-repeat; } .icon-add { background: url(../img/add.svg) 0 0/16px 16px } .icon-edit { background: url(../img/edit.svg) 0 no-repeat !important } .icon-del { background: url(../img/trash.svg) 0 0/16px 16px } .icon-remove { background: url(../img/remove.svg); } .icon-save { background: url(../img/save.gif) 0 no-repeat !important } .icon-new-window { background: url(../img/new_window.gif) 0 no-repeat !important } .icon-new-tab { background: url(../img/new_tab.gif) 0 no-repeat !important } .icon-icon-all { background: url(../img/icon-all.gif) 0 no-repeat !important } .icon-excel { background: url(../img/excel-16.gif) 0 no-repeat !important } .sm-rule-header-top, .sm-rule-content-header-top { font: bold 22px Open Sans, helvetica, sans-serif } .cs-section-five-o-eight { font: 9px Open Sans, helvetica, sans-serif; text-decoration: underline; cursor: pointer } .sm-rule-version { padding: 10px; font: 10px Open Sans, helvetica, sans-serif } .sm-rule-header-sub { padding: 20px; font: bold 14px Open Sans, helvetica, sans-serif } .sm-rule-body { padding: 10px 20px; background-color: #ddd; border-radius: 6px; margin-bottom: 6px; } .sm-rule-body-title { font: bold 14px Open Sans, helvetica, sans-serif; color: #36c } .sm-rule-body-text { padding: 10px 20px; font: 11px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-rule-body-text pre { white-space: pre-wrap; font: 11px Open Sans, helvetica, sans-serif } .sm-rule-body-table { width: 100%; border-collapse: collapse } .sm-rule-body-table td { padding: 2px } .sm-reviews-home-body-title { padding: 10px 20px; font: bold 14px Open Sans, helvetica, sans-serif; color: #36c } .sm-reviews-home-body-text { padding: 10px 20px; font: 11px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-reviews-home-tasks { background-color: #ff5f5f } .sm-reviews-home-no-tasks { background-color: #bbe6b8 } .sm-rule-body-text li { margin-top: 5px } .sm-feedback-panel-active { background-color: #ff5f5f } .sm-feedback-panel-inactive { background-color: #fff } .sm-feedback-body-title { padding: 10px 20px; font: bold 14px Open Sans, helvetica, sans-serif; color: #36c } .sm-feedback-body-text { padding: 10px 20px; font: 11px Open Sans, helvetica, sans-serif; color: #000; word-wrap: break-word } .sm-feedback-body-text li { margin-top: 5px } .deferral-approval-trigger { background-image: url(../img/trigger2.png) !important } .x-form-field, .x-form-item { font: 11px Open Sans, helvetica, sans-serif } .sm-manual-grid-item { background-color: #fff } .sm-manual-grid-item.x-grid3-row-over { background-color: #efefef } .sm-grid3-row-red { background-color: #ffa0a0 } .sm-grid3-row-grey { background-color: #ddd } .sm-grid3-row-orange { background-color: #fc9 } .sm-grid3-row-green { background-color: #bbe6b8 } .sm-grid3-row-black td { background-color: #0f0f0f; color: #fff !important } .sm-grid3-row-error td, .sm-grid3-row-italic td { background-color: #ffdede !important; } .x-grid3-row-over { border-color: #ddd; background-color: #efefef; background-image: none } .sm-add-icon { background-image: url(../img/icons8-add-16.png) !important } .sm-copy-icon { background-image: url(../img/copy.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-clone-icon { background-image: url(../img/clone.svg) !important; background-size: 16px 16px } .sm-disc-drive { background-image: url(../img/disc_drive.png) !important } .sm-internet-search { background-image: url(../img/internet_search.png) !important } .sm-search-icon { background-image: url(../img/search.png) !important } .sm-filter-icon { background-image: url(../img/filter.svg); background-size: 12px 12px } .sm-control-panel { background-image: url(../img/control_panel.png) !important } .sm-checklist-icon, .sm-checklist-tab-icon { background-image: url(../img/shield-green-check.svg) !important } .sm-setting-icon { background-image: url(../img/gear.svg) !important; background-size: 16px 16px } .sm-export-icon { background-image: url(../img/download.svg); background-size: 16px 16px } .sm-wrap-lines-icon { background-image: url(../img/wrap-lines.svg); background-size: 16px 16px } .sm-clear-icon { background-image: url(../img/clear.svg); background-size: 16px 16px } .sm-stream-icon { background-image: url(../img/stream.svg); background-size: 16px 16px } .sm-stream-stopped-icon { background-image: url(../img/stream-stopped.svg); background-size: 16px 16px } .sm-recording-icon { background-image: url(../img/recording.svg); background-size: 16px 16px } .sm-recording-stopped-icon { background-image: url(../img/recording-stopped.svg); background-size: 16px 16px } .sm-alert-icon { background-image: url("data:image/svg+xml,%3C%3Fxml version='1.0' encoding='UTF-8'%3F%3E%3Csvg width='16px' height='16px' fill='%23000000' version='1.1' viewBox='0 0 310.81 310.81' xml:space='preserve' xmlns='http://www.w3.org/2000/svg'%3E%3Cpath d='m305.1 229.1-119.04-186.52c-6.713-10.52-18.172-16.801-30.652-16.801-12.481 0-23.94 6.281-30.651 16.801l-119.04 186.52c-7.145 11.197-7.619 25.39-1.233 37.042 6.386 11.647 18.604 18.883 31.886 18.883h238.08c13.282 0 25.5-7.235 31.888-18.886 6.383-11.649 5.909-25.841-1.236-37.038zm-149.69 24.527c-10.947 0-19.82-8.874-19.82-19.82 0-10.947 8.874-19.821 19.82-19.821 10.947 0 19.82 8.874 19.82 19.821 0 10.946-8.874 19.82-19.82 19.82zm27.472-137.73-9.762 65.727c-1.437 9.675-10.445 16.353-20.119 14.916-7.816-1.161-13.676-7.289-14.881-14.692l-10.601-65.597c-2.468-15.273 7.912-29.655 23.185-32.123s29.655 7.912 32.123 23.185c0.464 2.876 0.448 5.845 0.055 8.584z' fill='%23f38c00'/%3E%3C/svg%3E%0A"); background-repeat: no-repeat; background-size: 16px 16px } .sm-import-icon { background-image: url(../img/upload.svg); background-size: 16px 16px } .sm-asset-icon { background-image: url(../img/target.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-template-icon { background-image: url(../img/template.png) !important } .sm-library-icon { background-image: url(../img/library.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-folder-icon { background-image: url(../img/folder.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-collection-color-icon { background-image: url(../img/collection-color.svg) !important; background-repeat: no-repeat; background-size: 16px 16px; } .sm-collection-icon, .sm-collection-tab-icon { background-image: url(../img/collection.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-department-icon { background-image: url(../img/department-16.png) !important } .sm-user-icon { background-image: url(../img/user.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-user-unavailable-icon { background-image: url(../img/user-unavailable.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-users-icon { background-image: url(../img/users.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-stig-icon { background-image: url(../img/shield-green-check.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-history-icon { background-image: url(../img/clock.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-report-icon { background-image: url(../img/grid.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-trash-icon { background-image: url(../img/trash.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-chat-icon { background-image: url(../img/chat-16.png) !important } .sm-ackchat-icon, .sm-newchat-icon, .sm-unackchat-icon { background-image: url(../img/message_edit.png) !important } .sm-feedback-icon { background-image: url(../img/feedback-16.gif) !important } .sm-feedback-ack-icon { background-image: url(../img/feedback-ack-16.gif) !important } .sm-feedback-unack-icon { background-image: url(../img/feedback-unack-16.gif) !important } .sm-artifact-icon { background-image: url(../img/page_white_text.png) !important } .sm-note-icon { background-image: url(../img/note-16.png) !important } .sm-star-icon { background-image: url(../img/star.svg) !important } .sm-star-icon-16 { background-image: url(../img/star.svg) !important; background-size: 16px } .sm-assign-icon { background-image: url(../img/right-arrow-16.png) !important } .sm-unlock-icon { background-image: url(../img/unlock-16.png) !important } .sm-lock-icon { background-image: url(../img/lock.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-ready-icon { background-image: url(../img/ready-16.png) !important } .sm-ready-flip-icon { background-image: url(../img/ready-flip-16.png) !important } .sm-rejected-icon { background-image: url(../img/rejected-16.png) !important } .x-btn-pressed.sm-star-icon { background-image: url(../img/star.svg) !important } .sm-save-icon { background-image: url(../img/save-16.png) !important } .sm-disk-icon { background-image: url(../img/save-icon.svg) !important; background-size: 12px } .sm-database-save-icon { background-image: url(../img/database.svg) !important; background-repeat: no-repeat; background-size: 16px 16px } .sm-database-icon { background-image: url(../img/database.svg) !important } .sm-table-icon { background-image: url(../img/table.png) !important } .sm-page-edit-icon { background-image: url(../img/page_edit.png) !important } .sm-page-white-get-icon { background-image: url(../img/page_white_get.png) !important } .sm-page-white-put-icon { background-image: url(../img/page_white_put.png) !important } .sm-hbss-disabled-icon { background-image: url(../img/hbss-check-sprite.gif); background-position: -23px 0; background-repeat: no-repeat } .sm-hbss-enabled-icon { background-image: url(../img/hbss-check-sprite.gif); background-position: 2px 0; background-repeat: no-repeat } .sm-application-go-icon { background-image: url(../img/application_go.png) !important } .sm-list-remove-16-icon { background-image: url(../img/list-remove-16.png) } .sm-scan-assign-icon { background-image: url(../img/greencheckt.gif) } .x-item-disabled .sm-scan-assign-icon { background-image: url(../img/greycheckt.gif) } .sm-scan-unassign-icon { background-image: url(../img/greydash.gif) } .sm-scan-toggleAssign-icon { background-image: url(../img/icon-all.gif) } .sm-zip-icon { background-image: url(../img/compress.png) } .sm-scap-grid-item { background-color: #e2f2e2 } .sm-scap-grid-item.x-grid3-row-over { background-color: #daebda } .sm-scap-grid-item.x-grid3-row-selected { background-color: #cedece !important } .sm-cell-red { background-color: #ffa0a0; border-right: 1px solid #fff; border-left: 1px solid #fff } .x-grid3-row-selected .sm-cell-red { filter: brightness(85%) } .x-grid3-row-over .sm-cell-red { background-color: #f7c8c8 !important } .x-grid3-row-selected.sm-grid3-row-error .sm-cell-red { filter: brightness(85%) } .sm-cell-orange { background-color: #fc9; border-right: 1px solid #fff; border-left: 1px solid #fff } .x-grid3-row-selected .sm-cell-orange { filter: brightness(85%) } .x-grid3-row-over .sm-cell-orange { background-color: #f7dec4 !important } .x-grid3-row-selected.sm-grid3-row-error .sm-cell-orange { filter: brightness(85%) } .sm-cell-green { background-color: #bbe6b8; border-right: 1px solid #fff; border-left: 1px solid #fff } .x-grid3-row-selected .sm-cell-green { filter: brightness(85%) } .x-grid3-row-over .sm-cell-green { background-color: #d5ebd4 !important } .x-grid3-row-selected.sm-grid3-row-error .sm-cell-green { filter: brightness(85%) } .sm-cell-grey { background-color: #ddd; border-right: 1px solid #fff; border-left: 1px solid #fff } .x-grid3-row-selected .sm-cell-grey { filter: brightness(85%) } .sm-cell-purple { background-color: plum; border-right: 1px solid #fff; border-left: 1px solid #fff } .x-grid3-row-selected .sm-cell-purple { filter: brightness(85%) } .x-grid3-row-over .sm-cell-purple { background-color: #e6c8e6 !important } .x-grid3-row-selected.sm-grid3-row-error .sm-cell-purple { filter: brightness(85%) } .sm-cell-peach { background-color: #fbeb9d } .sm-cell-status { background-color: #ccf; border-left: 1px solid #fff } .x-grid3-row-selected .sm-cell-status { filter: brightness(85%) } .x-grid3-row-over .sm-cell-status { background-color: #dedef7 !important; border-left: 1px solid #fff } .sm-cell-checklist { background-image: url(../img/security_firewall_on.png); background-repeat: no-repeat; padding-left: 14px !important } .sm-cell-pinned { background-image: url(../img/pin.svg); background-repeat: no-repeat; background-size: 14px 14px; } .sm-cell-asset { background-image: url(../img/target.svg); background-repeat: no-repeat; background-position: 0 2px; padding-left: 14px !important } .sm-cell-template { background-image: url(../img/template.png); background-repeat: no-repeat; padding-left: 14px !important } .custom-stig-users .x-grid3-row-selected .x-grid3-cell-last { background-image: url(../img/User-Group-icon.png); background-position: left; background-repeat: no-repeat } .sm-artifact-download-icon { background-image: url(../img/download.svg) } .sm-artifact-edit-icon { background-image: url(../img/edit-16.png) } .x-grid3-row-over .artifact-download { background-image: url(../img/download.svg); background-size: 14px 14px; background-position: 2px 5px; background-repeat: no-repeat } .x-grid3-row-over .artifact-view { background-image: url(../img/eye.svg); background-size: 14px 14px; background-position: 2px 5px; background-repeat: no-repeat } .x-grid3-row-over .artifact-edit { background-image: url(../img/edit-16.png); background-size: 14px 14px; background-position: 2px 5px; background-repeat: no-repeat } .x-grid3-row-over .artifact-delete { background-image: url(../img/delete.png); background-size: 14px 14px; background-position: 2px 5px; background-repeat: no-repeat } .x-grid3-row-over .artifact-download :active, .x-grid3-row-over .artifact-download:active { background-image: url(../img/download.svg); background-size: 14px 14px; background-position: 4px 10px; background-repeat: no-repeat } .sm-reviews-home-background { background-color: #fff } #artifact-admin .x-grid3-row td, .artifact-grid .x-grid3-row td { line-height: 25px } .sm-background-blue { background-color: #eee !important } .sm-artifact-file-icon { position: relative; top: 3px; margin-right: 5px } .x-grid3-summary-row { border-left: 1px solid #fff; border-right: 1px solid #fff; color: #333; background: #f1f2f4 } .x-grid3-summary-row .x-grid3-cell-inner { font-weight: 700; padding-bottom: 4px } .x-grid-hide-summary .x-grid3-summary-row { display: none } .x-grid3-summary-msg { padding: 4px 16px; font-weight: 700 } .sm-review-action-textarea[disabled], .sm-review-result-textarea[disabled] { color: #000; opacity: 1; background: 0 0 } .sm-progress-textarea { font-size: 8pt; font-family: Consolas, Courier, monospace } .sm-combo-loading { background-image: url(../img/loading.gif); background-repeat: no-repeat; background-position: 2px 1px; text-indent: 20px } .sm-context-menu { background-image: none } .sm-context-menu .x-menu li.x-menu-sep-li { padding: 0 } .sm-context-menu-header { background-color: #d5e4f5; border: 1px solid #99bbe8; padding-left: 8px; font-style: italic; font-weight: 700 } .x-toolbar-cell .x-form-checkbox, .x-toolbar-cell .x-form-radio { margin-top: 0 } .ext-chrome .x-toolbar-cell .x-form-checkbox, .x-toolbar-cell .x-form-radio { margin-top: 3px } .ext-chrome .x-toolbar-cell .x-form-cb-label { vertical-align: bottom; top: 1px; } .ext-strict .x-small-editor .x-form-text { line-height: 18px } .sm-review-sprite { color: #161128; font: 600 10px Open Sans, helvetica, sans-serif; position: relative; top: 0px; background-color: #f2f2f2; padding: 1px 4px 2px 17px; border-radius: 3px; user-select: none; background-size: 12px 12px; background-repeat: no-repeat; background-position: 2px 2px; border: 1px solid #ccc; display: inline-block; margin-left: 0px; } .sm-review-sprite-user { background-image: url(../img/user-60.svg); width: auto } .sm-review-sprite-date { background-image: url(../img/clock.svg); width: auto } .sm-review-sprite-modified { background-image: url(../img/shield-green-check.svg) } .sm-review-sprite-modified::after { content: "Modified" } .sm-review-sprite-saved { background-image: url(../img/save-icon-60.svg) } .sm-review-sprite-submitted { background-image: url(../img/ready-16.png) } .sm-review-sprite-rejected { background-image: url(../img/rejected-16.png) } .sm-review-sprite-accepted { background-image: url(../img/star.svg) } .sm-review-sprite-saved::after { content: "Saved" } .sm-review-sprite-submitted::after { content: "Submitted" } .sm-review-sprite-rejected::after { content: "Rejected" } .sm-review-sprite-accepted::after { content: "Accepted" } .sm-review-sprite-rule { background-image: url(../img/shield-green-check.svg) } .sm-assessment-icon { background-image: url(../img/assessment.svg); } .sm-review-sprite-asset { background-image: url(../img/target.svg) } .sm-review-sprite-stat-saved { background-image: url(../img/save-icon-60.svg) } .sm-review-sprite-stat-submitted { background-image: url(../img/ready-16.png) } .sm-review-sprite-stat-rejected { background-image: url(../img/rejected-16.png) } .sm-review-sprite-stat-accepted { background-image: url(../img/star.svg) } .sm-review-sprite-stat-result { padding: 1px 4px 2px 4px; } .xtb-text .sm-xtb-sep { display: inline-block; position: relative; top: 2px; height: 13px; width: 2px; margin: 0 5px 0 5px; background-image: url(../ext/resources/images/default/grid/grid-split.gif); background-position: center; background-repeat: no-repeat; } @font-face { font-family: 'Open Sans'; font-style: normal; font-weight: 300; src: local('Open Sans Light'), local('OpenSans-Light'), url('../fonts/open-sans-v15-latin-300.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-300.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: italic; font-weight: 300; src: local('Open Sans Light Italic'), local('OpenSans-LightItalic'), url('../fonts/open-sans-v15-latin-300italic.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-300italic.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: normal; font-weight: 400; src: local('Open Sans Regular'), local('OpenSans-Regular'), url('../fonts/open-sans-v15-latin-regular.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-regular.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: italic; font-weight: 400; src: local('Open Sans Italic'), local('OpenSans-Italic'), url('../fonts/open-sans-v15-latin-italic.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-italic.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: normal; font-weight: 600; src: local('Open Sans SemiBold'), local('OpenSans-SemiBold'), url('../fonts/open-sans-v15-latin-600.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-600.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: italic; font-weight: 600; src: local('Open Sans SemiBold Italic'), local('OpenSans-SemiBoldItalic'), url('../fonts/open-sans-v15-latin-600italic.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-600italic.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: normal; font-weight: 700; src: local('Open Sans Bold'), local('OpenSans-Bold'), url('../fonts/open-sans-v15-latin-700.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-700.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: italic; font-weight: 700; src: local('Open Sans Bold Italic'), local('OpenSans-BoldItalic'), url('../fonts/open-sans-v15-latin-700italic.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-700italic.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: normal; font-weight: 800; src: local('Open Sans ExtraBold'), local('OpenSans-ExtraBold'), url('../fonts/open-sans-v15-latin-800.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-800.woff') format('woff') } @font-face { font-family: 'Open Sans'; font-style: italic; font-weight: 800; src: local('Open Sans ExtraBold Italic'), local('OpenSans-ExtraBoldItalic'), url('../fonts/open-sans-v15-latin-800italic.woff2') format('woff2'), url('../fonts/open-sans-v15-latin-800italic.woff') format('woff') } @font-face { font-family: 'Ubuntu Mono'; font-style: normal; font-weight: 400; src: local(''), url('../fonts/ubuntu-mono-v15-latin-regular.woff2') format('woff2'), /* Chrome 26+, Opera 23+, Firefox 39+ */ } .x-tool.x-tool-import { background-image: url(../img/upload.svg); background-repeat: no-repeat; background-size: 12px 16px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-label { background-image: url(../img/label.svg); background-repeat: no-repeat; background-size: 12px 16px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-collection { background-image: url(../img/collection.svg); background-repeat: no-repeat; background-size: 12px 16px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-manage { background-image: url(../img/gear.svg); background-repeat: no-repeat; background-size: 12px 16px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-download { background-image: url(../img/download.svg); background-repeat: no-repeat; background-size: 16px 20px; background-position: left; color: grey; width: auto; padding-left: 20px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-report { background-image: url(../img/grid.svg); background-repeat: no-repeat; background-size: 12px 16px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-trash { background-image: url(../img/trash.svg); background-repeat: no-repeat; background-size: 14px 14px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-clone { background-image: url(../img/clone.svg); background-repeat: no-repeat; background-size: 14px 14px; color: grey; width: auto; padding-left: 15px; font-size: 10px; line-height: 16px; } .x-tool.x-tool-spacer { width: 10px; background-image: unset; } .x-tool.x-tool-logout { background-image: url(../img/logout.svg); background-repeat: no-repeat; background-size: 14px 14px; } .x-tool.x-tool-expand-grid { background-image: url(../img/expand.svg); background-repeat: no-repeat; background-size: 14px 14px; padding-right: 3px; } .x-tool.x-tool-collapse-grids { background-image: url(../img/collapse.svg); background-repeat: no-repeat; background-size: 14px 14px; padding-right: 3px; } .x-tool.x-tool-toggle.x-tool-collapse-west { background-image: url(../img/collapse-left.svg); background-repeat: no-repeat; background-size: 10px 10px; background-position: 2px 3px; } .x-tool.x-tool-expand-west { background-image: url(../img/collapse-right.svg); background-repeat: no-repeat; background-size: 10px 10px; background-position: 4px 4px; } .x-tool.x-tool-toggle.x-tool-collapse-east { background-image: url(../img/collapse-right.svg); background-repeat: no-repeat; background-size: 10px 10px; background-position: 2px 3px; } .x-tool.x-tool-expand-east { background-image: url(../img/collapse-left.svg); background-repeat: no-repeat; background-size: 10px 10px; background-position: 4px 4px; } .x-tool:hover { filter: brightness(50%) } .sm-line-clamp-wrap .x-grid3-cell-inner { overflow: hidden; display: -webkit-box; line-clamp: 1; -webkit-line-clamp: 1; -webkit-box-orient: vertical; white-space: normal; overflow-wrap: break-word; } .sm-line-height-up { background-image: url(../img/line-height-up.svg); background-size: 16px 16px; } .sm-line-height-down { background-image: url(../img/line-height-down.svg); background-size: 16px 16px; } .sm-content-stigid { font-size: 10px; font-weight: normal; color: #808080; } .sm-direction-rtl { direction: rtl; } .sm-diff-icon { background-image: url(../img/diff.svg) !important; background-repeat: no-repeat; background-size: 16px 16px; } .sm-diff-ins { background-color: hsl(110 62% 90% / 1); } .sm-diff-del { background-color: hsl(0deg 60% 85%); } .sm-diff-rule-ins { background-color: red } .sm-diff-rule-del { background-color: green } .sm-toolbar-diff .x-toolbar-ct { height: 100%; margin-left: 3px; } .sm-toolbar-diff .xtb-spacer { width: 12px; } .x-menu-item-active { background-image: none; background-color: #e5e5e5 } .x-btn-text-icon .x-btn-icon-small-left .x-btn-text { background-size: 14px 14px; background-position: 0px 1px; } .sm-hover-icon { opacity: 0.75; filter: grayscale(50%) } .sm-hover-icon:hover { opacity: 1; scale: 110%; filter: grayscale(0%) } .sm-warning-header { background-image: url(../img/red-flag.svg); background-size: 32px 32px; background-repeat: no-repeat; font-weight: 600; font-size: 20px; padding-left: 36px; } .x-panel-inline-icon { vertical-align: bottom; margin-top: 0px; margin-bottom: 0px; } .sm-add-assignment-icon { background-image: url(../img/add-assignment.svg); background-size: 18px; background-repeat: no-repeat; } .sm-remove-assignment-icon { background-image: url(../img/remove-assignment.svg); background-size: 18px; background-repeat: no-repeat; } .x-dd-drop-nodrop .x-dd-drop-icon { background-image: url("../img/remove.svg"); background-size: 16px 16px; } .x-dd-drop-ok .x-dd-drop-icon { background-image: url("../img/add.svg"); background-size: 16px 16px; } .x-dd-drop-ok-add .x-dd-drop-icon { background-image: url("../img/add.svg"); background-size: 16px 16px; } .sm-round-panel .x-panel-header.sm-selections-panel-header { background-color: #c3deab; } .sm-fieldset-title-with-icon { background-repeat: no-repeat; background-size: 14px 14px; padding-left: 20px; } .sm-stig-information-title { background-image: url(../img/shield-green-check.svg); background-repeat: no-repeat; background-size: 14px 14px; padding-left: 20px; } .sm-asset-assignments-title { background-image: url(../img/target.svg); background-repeat: no-repeat; background-size: 14px 14px; padding-left: 20px; } .sm-label-title { background-image: url(../img/label.svg); background-repeat: no-repeat; background-size: 14px 14px; padding-left: 20px; } .sm-grid3-draggable .x-grid3-row-selected .x-grid3-td-checker * { cursor: default; } .sm-grid3-draggable .x-grid3-row-selected *, .sm-grid3-draggable .x-grid3-row-selected { cursor: grab; } .sm-grabbing *, .sm-grabbing .sm-grid3-draggable .x-grid3-row-selected *, .sm-grabbing .sm-grid3-draggable .x-grid3-row-selected { cursor: url("../img/drag-drop-light.svg"), grabbing; } .x-item-disabled { filter: saturate(0.25) } .sm-column-with-icon { padding-left: 20px; } .sm-cell-with-icon { padding-left: 20px; line-height: 18px; } .sm-match-case-icon { background-image: url(../img/match-case.svg); background-size: contain; } .sm-match-word-icon { background-image: url(../img/match-word.svg); background-size: contain; } .sm-browser-icon { background-image: url(../img/browser.svg); background-size: 16px; } .sm-nodejs-icon { background-image: url(../img/jsIconGreen.svg); background-size: 16px; } .sm-mysql-icon { background-image: url(../img/mysql.svg); background-size: 16px; } .sm-json-icon { background-image: url(../img/json.svg); background-size: 16px; } .sm-login-icon { background-image: url(../img/login.svg); background-size: 16px; } .x-layout-split { background-color: transparent; transition-property: background-color; transition-duration: 0.25s; transition-delay: 0s; } .x-layout-split:hover { background-color: hsl(0 0% 66% / 1); transition-duration: 0.25s; transition-delay: 0s; } .sm-row-disabled { color: #a15e5e } .sm-share-icon { background-image: url(../img/share.svg); background-size: 16px; } .xg-hmenu-sort-asc .x-menu-item-icon { background-image: url("../img/up.svg"); background-size: 16px 16px; } .xg-hmenu-sort-desc .x-menu-item-icon { background-image: url("../img/down.svg"); background-size: 16px 16px; } .x-cols-icon { background-image: url("../img/columns.svg"); background-size: 16px 16px; } .sort-asc .x-grid3-sort-icon { background-image: url("../img/up.svg"); background-size: 10px; background-position: center } .sort-desc .x-grid3-sort-icon { background-image: url("../img/down.svg"); background-size: 10px; background-position: center } .sm-circle-icon { background-image: url("../img/circle.svg"); background-size: 7px 7px; background-position: top 5px left 5px; } .x-menu { background-image: none } .sm-appinfo-message { background-color: #e0e0e0; width: 330px; height: 60px; color: #484848; padding: 7px; } .sm-info-circle-icon { background-image: url(../img/info-circle.svg) !important; background-size: 16px 16px; } .sm-render-zero { color: #cccccc } .sm-appinfo-message a:link { text-decoration: none } .sm-appinfo-message .sm-share-icon { padding-left: 14px; background-size: 12px 12px; background-repeat: no-repeat; background-position: left; font-weight: 600; } .sm-appinfo-message .sm-email { font-weight: 600; color: cadetblue; } .sm-grid-cell-role { height: 28px; line-height: 28px; } .x-grid3-row-over .sm-grid-cell-with-menu { background-image: url("../img/tree-elbow-minus.svg"); background-repeat: no-repeat; background-size: 12px 12px; background-position: right 3px center; } .sm-vbox-disabled .x-box-inner { filter: opacity(0.25) } .sm-label-sprite.sm-sprite-read { float: right; background-color: #757c8a; color: #eee; } .sm-label-sprite.sm-sprite-readwrite { float: right; background-color: #976a6e; color: #eee; } .sm-row-readonly-icon { background-size: 14px; background-repeat: no-repeat; background-image: url(../img/read-only.svg); background-position: 0px 2px; height: 18px; } .sm-read-only-icon { background-size: 16px 16px; background-image: url(../img/read-only.svg); } .sm-checklist-read, .sm-checklist-read-write { float: right; color: #f2f2f2; } .sm-checklist-read-write { background-color: hsl(145.08deg 100% 23.92%); } .sm-checklist-read { background-color: hsl(330 55% 24% / 1); } .sm-sprite-U { background-color: var(--color-marking-unclassified); border-radius: 6px; } .sm-sprite-U::before { content: "U"; font-weight: 800; margin: 2px; } .sm-sprite-CUI { background-color: var(--color-marking-cui); border-radius: 6px; } .sm-sprite-CUI::before { content: "CUI"; font-weight: 800; margin: 2px; } .sm-sprite-FOUO::before { content: "FOUO"; font-weight: 800; margin: 2px; } .sm-sprite-FOUO { background-color: var(--color-marking-unclassified); border-radius: 6px; } .sm-flexbox-layout-ct { display: flex; flex-wrap: wrap; overflow: auto; scrollbar-width: none; align-content: flex-start; } .sm-flexbox-layout-ct:hover { scrollbar-width: auto; } .sm-status-csv { color: #eee; padding: 4px; border-radius: 10px; font-weight: bold; font-size: 12px; } .sm-error-icon { background-image: url(../img/x-red-svg.svg); } .sm-cora-container { display: flex; flex-direction: row; justify-content: space-evenly; } .sm-cora-box-left { display: flex; flex-direction: column; justify-content: space-between; border-radius: 10px; width: fit-content; } .sm-cora-box-title { text-align: center; font-weight: 600; } .sm-cora-cat { color: #111; border-radius: 5px; border: 1px solid #bbb; font-weight: 700; text-align: right; padding: 0px 6px; margin: 0px 12px; } .sm-cat1 { background-color: var(--color-severity-high); } .sm-cat2 { background-color: var(--color-severity-medium); } .sm-cat3 { background-color: var(--color-severity-low); } .sm-cat1::before { content: "CAT 1"; float: left; font-weight: 600 } .sm-cat2::before { content: "CAT 2"; float: left; font-weight: 600 } .sm-cat3::before { content: "CAT 3"; float: left; font-weight: 600 } .sm-cora-box-right { padding: 6px; border-radius: 10px; border: 1px solid #bbb; text-align: center; width: 110px; } .sm-cora-score-header { font-weight: 600; font-size: larger; color: #111; } .sm-cora-score-risk-level { font-size: 11px; font-weight: 800; } .sm-risk-indicator { margin: auto; font-weight: 800; font-size: 18px; color: #111; } .sm-cora-risk-very-high { background-color: var(--color-risk-very-high); } .sm-cora-risk-very-high .sm-cora-score-risk-level { color: var(--color-risk-very-high-text); } .sm-cora-risk-high { background-color: var(--color-risk-high); } .sm-cora-risk-high .sm-cora-score-risk-level { color: var(--color-risk-high-text); } .sm-cora-risk-moderate { background-color: var(--color-risk-moderate); } .sm-cora-risk-moderate .sm-cora-score-risk-level { color: var(--color-risk-moderate-text); } .sm-cora-risk-low { background-color: var(--color-risk-low); } .sm-cora-risk-low .sm-cora-score-risk-level { color: var(--color-risk-low-text); } .sm-cora-risk-very-low { background-color: var(--color-risk-very-low); } .sm-cora-risk-very-low .sm-cora-score-risk-level { color: var(--color-risk-very-low-text); } .x-grid3-scroller { overflow-x: auto; scrollbar-color: var(--color-scrollbar-idle) transparent; transition: scrollbar-color 0.125s; } .x-grid3-scroller:hover { overflow-x: auto; scrollbar-color: var(--color-scrollbar-hover) transparent; } .sm-round-panel .x-panel-body { scrollbar-color: var(--color-scrollbar-idle) transparent; transition: scrollbar-color 0.125s; } .sm-round-panel .x-panel-body:hover { scrollbar-color: var(--color-scrollbar-hover) transparent; } .sm-multi-value-grid .x-grid3-row-selected { background-color: transparent !important; } .x-menu-list-item:has(> .x-hide-display) { padding: 0 } .sm-logs-icon { background-image: url(../img/logs.svg) !important; background-size: 16px 16px } .sm-log-line { width: 100%; padding: 0.2em 0; border-bottom: 1px solid #4b4b4b; font-family: monospace; font-size: 10px; } .sm-log-line:hover { background-color: color-mix(in srgb, currentColor 10%, transparent); } .sm-log-line.selected { background-color: color-mix(in srgb, currentColor 20%, transparent); } .sm-log-line[data-component="logSocket"] { color: #8b1fff; } .sm-log-line[data-component="jwksCache"] { color: #ad611a; } .sm-log-line[data-component="static"] { color: #808080; } .sm-log-line[data-component="rest"] { color: #00a900; } .sm-log-line[data-level="1"] { color: red; } .sm-log-line[data-level="2"] { color: orange; } .sm-log-panel-body { cursor: pointer; overflow: auto; text-wrap-mode: nowrap; } .sm-log-wrapper { padding: 0 0.2em; display: table; } .sm-http-status-sprite { font: 600 10px/14px Open Sans, helvetica, sans-serif; top: 0; padding: 0 5px; border-radius: 3px; margin-left: 3px; white-space: nowrap } .sm-http-status-200 { background-color: var(--color-http-status-200); } .sm-http-status-300 { background-color: var(--color-http-status-300); } .sm-http-status-400 { background-color: var(--color-http-status-400); } .sm-http-status-500 { background-color: var(--color-http-status-500); } .x-toolbar-cell .x-form-check-wrap { margin-bottom: 4px; margin-right: 4px; } .sm-log-panel .x-toolbar-ct { padding: 0 } .sm-job-icon { background-image: url(../img/job.svg)!important; background-repeat: no-repeat; background-size: 16px 16px } .sm-job-run-icon { background-image: url(../img/job-run.svg)!important; background-repeat: no-repeat; background-size: 16px 16px } .sm-job-task-icon { background-image: url(../img/job-task.svg)!important; background-repeat: no-repeat; background-size: 16px 16px } .sm-run-output-icon { background-image: url(../img/logs.svg)!important; background-repeat: no-repeat; background-size: 16px 16px } .sm-job-event-icon { background-image: url(../img/clock.svg)!important; background-repeat: no-repeat; background-size: 16px 16px } .sm-move-up-icon { background-image: url(../img/move-up.svg)!important; background-repeat: no-repeat; background-size: 18px } .sm-move-down-icon { background-image: url(../img/move-down.svg)!important; background-repeat: no-repeat; background-size: 18px } .sm-task-description { font-size: smaller; font-style: italic; color: #808080; line-height: 12px; padding-left: 6px; } .sm-job-sprite { font: 600 10px/14px Open Sans,helvetica,sans-serif; top: 0; padding: 0 5px; border-radius: 3px; margin-left: 3px; white-space: nowrap; line-height: 16px; } .sm-job-sprite.sm-job-scheduled { background-color: var(--color-job-scheduled) } .sm-job-sprite.sm-job-unscheduled { background-color: var(--color-job-unscheduled) } .sm-job-sprite.sm-job-run-state-completed { background-color: var(--color-job-run-state-completed); } .sm-job-sprite.sm-job-run-state-running { background-color: var(--color-job-run-state-running); } .sm-job-sprite.sm-job-run-state-failed { background-color: var(--color-job-run-state-failed); } .sm-job-sprite.sm-job-run-state-missing { background-color: var(--color-job-run-state-missing); } .sm-job-sprite.sm-job-run-state-shutdown { background-color: var(--color-job-run-state-failed); } .sm-round-panel.sm-offline-modal { background-color: hsl(0 61% 64% / 1); } .sm-round-panel.sm-unavailable-modal { background-color: hsl(26.39deg 62.3% 64.31%); } .sm-icon-column { padding-left: 20px; background-size: 14px; } .sm-job-event-disabled { opacity: 50%; } ================================================ FILE: client/src/ext/INCLUDE_ORDER.txt ================================================ All adapter related files below are located in /adapters// of this zip file. Your include order should be: Ext Stand-alone ------------------------------------------------------------------- ext-base.js ext-all.js (or your choice of files) Yahoo! UI (.12+) ------------------------------------------------------------------- yui-utilities.js ext-yui-adapter.js ext-all.js (or your choice of files) jQuery (1.1+) ------------------------------------------------------------------- jquery.js ext-jquery-adapter.js ext-all.js (or your choice of files) Prototype (1.5+) / Scriptaculous (1.7+) ------------------------------------------------------------------- prototype.js scriptaculous.js?load=effects (or whatever you want to load) ext-prototype-adapter.js ext-all.js (or your choice of files) See the examples folders for more examples. ================================================ FILE: client/src/ext/adapter/ext/ext-base-debug.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ // for old browsers window.undefined = window.undefined; /** * @class Ext * Ext core utilities and functions. * @singleton */ Ext = { /** * The version of the framework * @type String */ version : '3.4.1.1', versionDetail : { major : 3, minor : 4, patch : 1.1 } }; /** * Copies all the properties of config to obj. * @param {Object} obj The receiver of the properties * @param {Object} config The source of the properties * @param {Object} defaults A different object that will also be applied for default values * @return {Object} returns obj * @member Ext apply */ Ext.apply = function(o, c, defaults){ // no "this" reference for friendly out of scope calls if(defaults){ Ext.apply(o, defaults); } if(o && c && typeof c == 'object'){ for(var p in c){ o[p] = c[p]; } } return o; }; (function(){ var idSeed = 0, toString = Object.prototype.toString, ua = navigator.userAgent.toLowerCase(), check = function(r){ return r.test(ua); }, DOC = document, docMode = DOC.documentMode, isStrict = DOC.compatMode == "CSS1Compat", isOpera = check(/opera/), isChrome = check(/\bchrome\b/), isWebKit = check(/webkit/), isSafari = !isChrome && check(/safari/), isSafari2 = isSafari && check(/applewebkit\/4/), // unique to Safari 2 isSafari3 = isSafari && check(/version\/3/), isSafari4 = isSafari && check(/version\/4/), isIE = !isOpera && check(/msie/), isIE7 = isIE && ((check(/msie 7/) && docMode != 8 && docMode != 9 && docMode != 10) || docMode == 7), isIE8 = isIE && ((check(/msie 8/) && docMode != 7 && docMode != 9 && docMode != 10) || docMode == 8), isIE9 = isIE && ((check(/msie 9/) && docMode != 7 && docMode != 8 && docMode != 10) || docMode == 9), isIE10 = isIE && ((check(/msie 10/) && docMode != 7 && docMode != 8 && docMode != 9) || docMode == 10), isIE6 = isIE && check(/msie 6/), isIE9m = isIE && (isIE6 || isIE7 || isIE8 || isIE9), isGecko = !isWebKit && check(/gecko/), isGecko2 = isGecko && check(/rv:1\.8/), isGecko3 = isGecko && check(/rv:1\.9/), isBorderBox = isIE9m && !isStrict, isWindows = check(/windows|win32/), isMac = check(/macintosh|mac os x/), isAir = check(/adobeair/), isLinux = check(/linux/), isSecure = /^https/i.test(window.location.protocol), noArgs = [], nonEnumerables = [], emptyFn = Ext.emptyFn, t = Ext.apply({}, { constructor: emptyFn, toString: emptyFn, valueOf: emptyFn }), callOverrideParent = function () { var method = callOverrideParent.caller.caller; // skip callParent (our caller) return method.$owner.prototype[method.$name].apply(this, arguments); }; if (t.constructor !== emptyFn) { nonEnumerables.push('constructor'); } if (t.toString !== emptyFn) { nonEnumerables.push('toString'); } if (t.valueOf !== emptyFn) { nonEnumerables.push('valueOf'); } if (!nonEnumerables.length) { nonEnumerables = null; } // Create the abstract Base class to provide an empty constructor and callParent implementations function Base () { // } Ext.apply(Base, { $isClass: true, callParent: function (args) { var method; // This code is intentionally inlined for the least number of debugger stepping return (method = this.callParent.caller) && (method.$previous || ((method = method.$owner ? method : method.caller) && method.$owner.superclass.self[method.$name])).apply(this, args || noArgs); } }); Base.prototype = { constructor: function() { }, callParent: function(args) { // NOTE: this code is deliberately as few expressions (and no function calls) // as possible so that a debugger can skip over this noise with the minimum number // of steps. Basically, just hit Step Into until you are where you really wanted // to be. var method, superMethod = (method = this.callParent.caller) && (method.$previous || ((method = method.$owner ? method : method.caller) && method.$owner.superclass[method.$name])); return superMethod.apply(this, args || noArgs); } }; // remove css image flicker if(isIE6){ try{ DOC.execCommand("BackgroundImageCache", false, true); }catch(e){} } Ext.apply(Ext, { /** * URL to a blank file used by Ext when in secure mode for iframe src and onReady src to prevent * the IE insecure content warning ('about:blank', except for IE in secure mode, which is 'javascript:""'). * @type String */ SSL_SECURE_URL : isSecure && isIE ? 'javascript:""' : 'about:blank', /** * True if the browser is in strict (standards-compliant) mode, as opposed to quirks mode * @type Boolean */ isStrict : isStrict, /** * True if the page is running over SSL * @type Boolean */ isSecure : isSecure, /** * True when the document is fully initialized and ready for action * @type Boolean */ isReady : false, /** * True if the {@link Ext.Fx} Class is available * @type Boolean * @property enableFx */ /** * HIGHLY EXPERIMENTAL * True to force css based border-box model override and turning off javascript based adjustments. This is a * runtime configuration and must be set before onReady. * @type Boolean */ enableForcedBoxModel : false, /** * True to automatically uncache orphaned Ext.Elements periodically (defaults to true) * @type Boolean */ enableGarbageCollector : true, /** * True to automatically purge event listeners during garbageCollection (defaults to false). * @type Boolean */ enableListenerCollection : false, /** * EXPERIMENTAL - True to cascade listener removal to child elements when an element is removed. * Currently not optimized for performance. * @type Boolean */ enableNestedListenerRemoval : false, /** * Indicates whether to use native browser parsing for JSON methods. * This option is ignored if the browser does not support native JSON methods. * Note: Native JSON methods will not work with objects that have functions. * Also, property names must be quoted, otherwise the data will not parse. (Defaults to false) * @type Boolean */ USE_NATIVE_JSON : false, /** * Copies all the properties of config to obj if they don't already exist. * @param {Object} obj The receiver of the properties * @param {Object} config The source of the properties * @return {Object} returns obj */ applyIf : function(o, c){ if(o){ for(var p in c){ if(!Ext.isDefined(o[p])){ o[p] = c[p]; } } } return o; }, /** * Generates unique ids. If the element already has an id, it is unchanged * @param {Mixed} el (optional) The element to generate an id for * @param {String} prefix (optional) Id prefix (defaults "ext-gen") * @return {String} The generated Id. */ id : function(el, prefix){ el = Ext.getDom(el, true) || {}; if (!el.id) { el.id = (prefix || "ext-gen") + (++idSeed); } return el.id; }, /** *

Extends one class to create a subclass and optionally overrides members with the passed literal. This method * also adds the function "override()" to the subclass that can be used to override members of the class.

* For example, to create a subclass of Ext GridPanel: * 

MyGridPanel = Ext.extend(Ext.grid.GridPanel, {
    constructor: function(config) {

//      Create configuration for this Grid.
        var store = new Ext.data.Store({...});
        var colModel = new Ext.grid.ColumnModel({...});

//      Create a new config object containing our computed properties
//      *plus* whatever was in the config parameter.
        config = Ext.apply({
            store: store,
            colModel: colModel
        }, config);

        MyGridPanel.superclass.constructor.call(this, config);

//      Your postprocessing here
    },

    yourMethod: function() {
        // etc.
    }
});
* *

This function also supports a 3-argument call in which the subclass's constructor is * passed as an argument. In this form, the parameters are as follows:

*
    *
  • subclass : Function
    The subclass constructor.
    • *
  • superclass : Function
    The constructor of class being extended
    • *
  • overrides : Object
    A literal with members which are copied into the subclass's * prototype, and are therefore shared among all instances of the new class.
    • *
* * @param {Function} superclass The constructor of class being extended. * @param {Object} overrides

A literal with members which are copied into the subclass's * prototype, and are therefore shared between all instances of the new class.

*

This may contain a special member named constructor. This is used * to define the constructor of the new class, and is returned. If this property is * not specified, a constructor is generated and returned which just calls the * superclass's constructor passing on its parameters.

*

It is essential that you call the superclass constructor in any provided constructor. See example code.

* @return {Function} The subclass constructor from the overrides parameter, or a generated one if not provided. */ extend : function(){ // inline overrides var io = function(o){ for(var m in o){ this[m] = o[m]; } }; var oc = Object.prototype.constructor; return function(sb, sp, overrides){ if(typeof sp == 'object'){ overrides = sp; sp = sb; sb = overrides.constructor != oc ? overrides.constructor : function(){sp.apply(this, arguments);}; } var F = function(){}, sbp, spp = sp.prototype; F.prototype = spp; sbp = sb.prototype = new F(); sbp.constructor=sb; sb.superclass=spp; if(spp.constructor == oc){ spp.constructor=sp; } sb.override = function(o){ Ext.override(sb, o); }; sbp.superclass = sbp.supr = (function(){ return spp; }); sbp.override = io; Ext.override(sb, overrides); sb.extend = function(o){return Ext.extend(sb, o);}; return sb; }; }(), global: (function () { return this; })(), Base: Base, namespaceCache: {}, createNamespace: function (namespaceOrClass, isClass) { var cache = Ext.namespaceCache, namespace = isClass ? namespaceOrClass.substring(0, namespaceOrClass.lastIndexOf('.')) : namespaceOrClass, ns = cache[namespace], i, n, part, parts, partials; if (!ns) { ns = Ext.global; if (namespace) { partials = []; parts = namespace.split('.'); for (i = 0, n = parts.length; i < n; ++i) { part = parts[i]; ns = ns[part] || (ns[part] = {}); partials.push(part); cache[partials.join('.')] = ns; // build up prefixes as we go } } } return ns; }, getClassByName: function (className) { var parts = className.split('.'), cls = Ext.global, n = parts.length, i; for (i = 0; cls && i < n; ++i) { cls = cls[parts[i]]; } return cls || null; }, addMembers: function (cls, target, members, handleNonEnumerables) { var i, name, member; for (name in members) { if (members.hasOwnProperty(name)) { member = members[name]; if (typeof member == 'function') { member.$owner = cls; member.$name = name; } target[name] = member; } } if (handleNonEnumerables && nonEnumerables) { for (i = nonEnumerables.length; i-- > 0; ) { name = nonEnumerables[i]; if (members.hasOwnProperty(name)) { member = members[name]; if (typeof member == 'function') { member.$owner = cls; member.$name = name; } target[name] = member; } } } }, /** * @method * Defines a class or override. A basic class is defined like this: * * Ext.define('My.awesome.Class', { * someProperty: 'something', * * someMethod: function(s) { * alert(s + this.someProperty); * } * * ... * }); * * var obj = new My.awesome.Class(); * * obj.someMethod('Say '); // alerts 'Say something' * * To create an anonymous class, pass `null` for the `className`: * * Ext.define(null, { * constructor: function () { * // ... * } * }); * * In some cases, it is helpful to create a nested scope to contain some private * properties. The best way to do this is to pass a function instead of an object * as the second parameter. This function will be called to produce the class * body: * * Ext.define('MyApp.foo.Bar', function () { * var id = 0; * * return { * nextId: function () { * return ++id; * } * }; * }); * * When using this form of `Ext.define`, the function is passed a reference to its * class. This can be used as an efficient way to access any static properties you * may have: * * Ext.define('MyApp.foo.Bar', function (Bar) { * return { * statics: { * staticMethod: function () { * // ... * } * }, * * method: function () { * return Bar.staticMethod(); * } * }; * }); * * To define an override, include the `override` property. The content of an * override is aggregated with the specified class in order to extend or modify * that class. This can be as simple as setting default property values or it can * extend and/or replace methods. This can also extend the statics of the class. * * One use for an override is to break a large class into manageable pieces. * * // File: /src/app/Panel.js * * Ext.define('My.app.Panel', { * extend: 'Ext.panel.Panel', * * constructor: function (config) { * this.callParent(arguments); // calls Ext.panel.Panel's constructor * //... * }, * * statics: { * method: function () { * return 'abc'; * } * } * }); * * // File: /src/app/PanelPart2.js * Ext.define('My.app.PanelPart2', { * override: 'My.app.Panel', * * constructor: function (config) { * this.callParent(arguments); // calls My.app.Panel's constructor * //... * } * }); * * Another use of overrides is to provide optional parts of classes that can be * independently required. In this case, the class may even be unaware of the * override altogether. * * Ext.define('My.ux.CoolTip', { * override: 'Ext.tip.ToolTip', * * constructor: function (config) { * this.callParent(arguments); // calls Ext.tip.ToolTip's constructor * //... * } * }); * * Overrides can also contain statics: * * Ext.define('My.app.BarMod', { * override: 'Ext.foo.Bar', * * statics: { * method: function (x) { * return this.callParent([x * 2]); // call Ext.foo.Bar.method * } * } * }); * * @param {String} className The class name to create in string dot-namespaced format, for example: * 'My.very.awesome.Class', 'FeedViewer.plugin.CoolPager' * It is highly recommended to follow this simple convention: * - The root and the class name are 'CamelCased' * - Everything else is lower-cased * Pass `null` to create an anonymous class. * @param {Object} data The key - value pairs of properties to apply to this class. Property names can be of any valid * strings, except those in the reserved listed below: * - `mixins` * - `statics` * - `config` * - `alias` * - `self` * - `singleton` * - `alternateClassName` * - `override` * * @param {Function} createdFn Optional callback to execute after the class is created, the execution scope of which * (`this`) will be the newly created class itself. * @return {Ext.Base} * @markdown * @member Ext * @method define */ define: function (className, body, createdFn) { var override = body.override, cls, extend, name, namespace; if (override) { delete body.override; cls = Ext.getClassByName(override); Ext.override(cls, body); } else { if (className) { namespace = Ext.createNamespace(className, true); name = className.substring(className.lastIndexOf('.')+1); } cls = function ctor () { this.constructor.apply(this, arguments); } if (className) { cls.displayName = className; } cls.$isClass = true; cls.callParent = Ext.Base.callParent; if (typeof body == 'function') { body = body(cls); } extend = body.extend; if (extend) { delete body.extend; if (typeof extend == 'string') { extend = Ext.getClassByName(extend); } } else { extend = Base; } Ext.extend(cls, extend, body); if (cls.prototype.constructor === cls) { delete cls.prototype.constructor; } // Not extending a class which derives from Base... if (!cls.prototype.$isClass) { Ext.applyIf(cls.prototype, Base.prototype); } cls.prototype.self = cls; if (body.xtype) { Ext.reg(body.xtype, cls); } cls = body.singleton ? new cls() : cls; if (className) { namespace[name] = cls; } } if (createdFn) { createdFn.call(cls); } return cls; }, /** * Overrides members of the specified `target` with the given values. * * If the `target` is a function, it is assumed to be a constructor and the contents * of `overrides` are applied to its `prototype` using {@link Ext#apply Ext.apply}. * * If the `target` is an instance of a class created using {@link #define}, * the `overrides` are applied to only that instance. In this case, methods are * specially processed to allow them to use {@link Ext.Base#callParent}. * * var panel = new Ext.Panel({ ... }); * * Ext.override(panel, { * initComponent: function () { * // extra processing... * * this.callParent(); * } * }); * * If the `target` is none of these, the `overrides` are applied to the `target` * using {@link Ext#apply Ext.apply}. * * Please refer to {@link Ext#define Ext.define} for further details. * * @param {Object} target The target to override. * @param {Object} overrides The properties to add or replace on `target`. * @method override */ override: function (target, overrides) { var proto, statics; if (overrides) { if (target.$isClass) { statics = overrides.statics; if (statics) { delete overrides.statics; } Ext.addMembers(target, target.prototype, overrides, true); if (statics) { Ext.addMembers(target, target, statics); } } else if (typeof target == 'function') { proto = target.prototype; Ext.apply(proto, overrides); if(Ext.isIE && overrides.hasOwnProperty('toString')){ proto.toString = overrides.toString; } } else { var owner = target.self, name, value; if (owner && owner.$isClass) { for (name in overrides) { if (overrides.hasOwnProperty(name)) { value = overrides[name]; if (typeof value == 'function') { // if (owner.$className) { value.displayName = owner.$className + '#' + name; } // value.$name = name; value.$owner = owner; value.$previous = target.hasOwnProperty(name) ? target[name] // already hooked, so call previous hook : callOverrideParent; // calls by name on prototype } target[name] = value; } } } else { Ext.apply(target, overrides); if (!target.constructor.$isClass) { target.constructor.prototype.callParent = Base.prototype.callParent; target.constructor.callParent = Base.callParent; } } } } }, /** * Creates namespaces to be used for scoping variables and classes so that they are not global. * Specifying the last node of a namespace implicitly creates all other nodes. Usage: * 

Ext.namespace('Company', 'Company.data');
Ext.namespace('Company.data'); // equivalent and preferable to above syntax
Company.Widget = function() { ... }
Company.data.CustomStore = function(config) { ... }
* @param {String} namespace1 * @param {String} namespace2 * @param {String} etc * @return {Object} The namespace object. (If multiple arguments are passed, this will be the last namespace created) * @method namespace */ namespace : function(){ var len1 = arguments.length, i = 0, len2, j, main, ns, sub, current; for(; i < len1; ++i) { main = arguments[i]; ns = arguments[i].split('.'); current = window[ns[0]]; if (current === undefined) { current = window[ns[0]] = {}; } sub = ns.slice(1); len2 = sub.length; for(j = 0; j < len2; ++j) { current = current[sub[j]] = current[sub[j]] || {}; } } return current; }, /** * Takes an object and converts it to an encoded URL. e.g. Ext.urlEncode({foo: 1, bar: 2}); would return "foo=1&bar=2". Optionally, property values can be arrays, instead of keys and the resulting string that's returned will contain a name/value pair for each array value. * @param {Object} o * @param {String} pre (optional) A prefix to add to the url encoded string * @return {String} */ urlEncode : function(o, pre){ var empty, buf = [], e = encodeURIComponent; Ext.iterate(o, function(key, item){ empty = Ext.isEmpty(item); Ext.each(empty ? key : item, function(val){ buf.push('&', e(key), '=', (!Ext.isEmpty(val) && (val != key || !empty)) ? (Ext.isDate(val) ? Ext.encode(val).replace(/"/g, '') : e(val)) : ''); }); }); if(!pre){ buf.shift(); pre = ''; } return pre + buf.join(''); }, /** * Takes an encoded URL and and converts it to an object. Example: 

Ext.urlDecode("foo=1&bar=2"); // returns {foo: "1", bar: "2"}
Ext.urlDecode("foo=1&bar=2&bar=3&bar=4", false); // returns {foo: "1", bar: ["2", "3", "4"]}
* @param {String} string * @param {Boolean} overwrite (optional) Items of the same name will overwrite previous values instead of creating an an array (Defaults to false). * @return {Object} A literal with members */ urlDecode : function(string, overwrite){ if(Ext.isEmpty(string)){ return {}; } var obj = {}, pairs = string.split('&'), d = decodeURIComponent, name, value; Ext.each(pairs, function(pair) { pair = pair.split('='); name = d(pair[0]); value = d(pair[1]); obj[name] = overwrite || !obj[name] ? value : [].concat(obj[name]).concat(value); }); return obj; }, /** * Appends content to the query string of a URL, handling logic for whether to place * a question mark or ampersand. * @param {String} url The URL to append to. * @param {String} s The content to append to the URL. * @return (String) The resulting URL */ urlAppend : function(url, s){ if(!Ext.isEmpty(s)){ return url + (url.indexOf('?') === -1 ? '?' : '&') + s; } return url; }, /** * Converts any iterable (numeric indices and a length property) into a true array * Don't use this on strings. IE doesn't support "abc"[0] which this implementation depends on. * For strings, use this instead: "abc".match(/./g) => [a,b,c]; * @param {Iterable} the iterable object to be turned into a true Array. * @return (Array) array */ toArray : function(){ return isIE ? function(a, i, j, res){ res = []; for(var x = 0, len = a.length; x < len; x++) { res.push(a[x]); } return res.slice(i || 0, j || res.length); } : function(a, i, j){ return Array.prototype.slice.call(a, i || 0, j || a.length); }; }(), isIterable : function(v){ //check for array or arguments if(Ext.isArray(v) || v.callee){ return true; } //check for node list type if(/NodeList|HTMLCollection/.test(toString.call(v))){ return true; } //NodeList has an item and length property //IXMLDOMNodeList has nextNode method, needs to be checked first. return ((typeof v.nextNode != 'undefined' || v.item) && Ext.isNumber(v.length)); }, /** * Iterates an array calling the supplied function. * @param {Array/NodeList/Mixed} array The array to be iterated. If this * argument is not really an array, the supplied function is called once. * @param {Function} fn The function to be called with each item. If the * supplied function returns false, iteration stops and this method returns * the current index. This function is called with * the following arguments: *
    *
  • item : Mixed *
    The item at the current index * in the passed array
    • *
  • index : Number *
    The current index within the array
    • *
  • allItems : Array *
    The array passed as the first * argument to Ext.each.
    • *
* @param {Object} scope The scope (this reference) in which the specified function is executed. * Defaults to the item at the current index * within the passed array. * @return See description for the fn parameter. */ each : function(array, fn, scope){ if(Ext.isEmpty(array, true)){ return; } if(!Ext.isIterable(array) || Ext.isPrimitive(array)){ array = [array]; } for(var i = 0, len = array.length; i < len; i++){ if(fn.call(scope || array[i], array[i], i, array) === false){ return i; }; } }, /** * Iterates either the elements in an array, or each of the properties in an object. * Note: If you are only iterating arrays, it is better to call {@link #each}. * @param {Object/Array} object The object or array to be iterated * @param {Function} fn The function to be called for each iteration. * The iteration will stop if the supplied function returns false, or * all array elements / object properties have been covered. The signature * varies depending on the type of object being interated: *
    *
  • Arrays : (Object item, Number index, Array allItems) *
    * When iterating an array, the supplied function is called with each item.
    • *
  • Objects : (String key, Object value, Object) *
    * When iterating an object, the supplied function is called with each key-value pair in * the object, and the iterated object
    • *
* @param {Object} scope The scope (this reference) in which the specified function is executed. Defaults to * the object being iterated. */ iterate : function(obj, fn, scope){ if(Ext.isEmpty(obj)){ return; } if(Ext.isIterable(obj)){ Ext.each(obj, fn, scope); return; }else if(typeof obj == 'object'){ for(var prop in obj){ if(obj.hasOwnProperty(prop)){ if(fn.call(scope || obj, prop, obj[prop], obj) === false){ return; }; } } } }, /** * Return the dom node for the passed String (id), dom node, or Ext.Element. * Optional 'strict' flag is needed for IE since it can return 'name' and * 'id' elements by using getElementById. * Here are some examples: * 

// gets dom node based on id
var elDom = Ext.getDom('elId');
// gets dom node based on the dom node
var elDom1 = Ext.getDom(elDom);

// If we don't know if we are working with an
// Ext.Element or a dom node use Ext.getDom
function(el){
    var dom = Ext.getDom(el);
    // do something with the dom node
}
         *
* Note: the dom node to be found actually needs to exist (be rendered, etc) * when this method is called to be successful. * @param {Mixed} el * @return HTMLElement */ getDom : function(el, strict){ if(!el || !DOC){ return null; } if (el.dom){ return el.dom; } else { if (typeof el == 'string') { var e = DOC.getElementById(el); // IE returns elements with the 'name' and 'id' attribute. // we do a strict check to return the element with only the id attribute if (e && isIE && strict) { if (el == e.getAttribute('id')) { return e; } else { return null; } } return e; } else { return el; } } }, /** * Returns the current document body as an {@link Ext.Element}. * @return Ext.Element The document body */ getBody : function(){ return Ext.get(DOC.body || DOC.documentElement); }, /** * Returns the current document body as an {@link Ext.Element}. * @return Ext.Element The document body * @method */ getHead : function() { var head; return function() { if (head == undefined) { head = Ext.get(DOC.getElementsByTagName("head")[0]); } return head; }; }(), /** *

Removes this element from the document, removes all DOM event listeners, and deletes the cache reference. * All DOM event listeners are removed from this element. If {@link Ext#enableNestedListenerRemoval} is * true, then DOM event listeners are also removed from all child nodes. The body node * will be ignored if passed in.

* @param {HTMLElement} node The node to remove * @method */ removeNode : isIE && !isIE8 ? function(){ var d; return function(n){ if(n && n.tagName != 'BODY'){ (Ext.enableNestedListenerRemoval) ? Ext.EventManager.purgeElement(n, true) : Ext.EventManager.removeAll(n); d = d || DOC.createElement('div'); d.appendChild(n); d.innerHTML = ''; delete Ext.elCache[n.id]; } }; }() : function(n){ if(n && n.parentNode && n.tagName != 'BODY'){ (Ext.enableNestedListenerRemoval) ? Ext.EventManager.purgeElement(n, true) : Ext.EventManager.removeAll(n); n.parentNode.removeChild(n); delete Ext.elCache[n.id]; } }, /** *

Returns true if the passed value is empty.

*

The value is deemed to be empty if it is

    *
  • null
    • *
  • undefined
    • *
  • an empty array
    • *
  • a zero length string (Unless the allowBlank parameter is true)
    • *
* @param {Mixed} value The value to test * @param {Boolean} allowBlank (optional) true to allow empty strings (defaults to false) * @return {Boolean} */ isEmpty : function(v, allowBlank){ return v === null || v === undefined || ((Ext.isArray(v) && !v.length)) || (!allowBlank ? v === '' : false); }, /** * Returns true if the passed value is a JavaScript array, otherwise false. * @param {Mixed} value The value to test * @return {Boolean} */ isArray : function(v){ return toString.apply(v) === '[object Array]'; }, /** * Returns true if the passed object is a JavaScript date object, otherwise false. * @param {Object} object The object to test * @return {Boolean} */ isDate : function(v){ return toString.apply(v) === '[object Date]'; }, /** * Returns true if the passed value is a JavaScript Object, otherwise false. * @param {Mixed} value The value to test * @return {Boolean} */ isObject : function(v){ return !!v && Object.prototype.toString.call(v) === '[object Object]'; }, /** * Returns true if the passed value is a JavaScript 'primitive', a string, number or boolean. * @param {Mixed} value The value to test * @return {Boolean} */ isPrimitive : function(v){ return Ext.isString(v) || Ext.isNumber(v) || Ext.isBoolean(v); }, /** * Returns true if the passed value is a JavaScript Function, otherwise false. * @param {Mixed} value The value to test * @return {Boolean} */ isFunction : function(v){ return toString.apply(v) === '[object Function]'; }, /** * Returns true if the passed value is a number. Returns false for non-finite numbers. * @param {Mixed} value The value to test * @return {Boolean} */ isNumber : function(v){ return typeof v === 'number' && isFinite(v); }, /** * Returns true if the passed value is a string. * @param {Mixed} value The value to test * @return {Boolean} */ isString : function(v){ return typeof v === 'string'; }, /** * Returns true if the passed value is a boolean. * @param {Mixed} value The value to test * @return {Boolean} */ isBoolean : function(v){ return typeof v === 'boolean'; }, /** * Returns true if the passed value is an HTMLElement * @param {Mixed} value The value to test * @return {Boolean} */ isElement : function(v) { return v ? !!v.tagName : false; }, /** * Returns true if the passed value is not undefined. * @param {Mixed} value The value to test * @return {Boolean} */ isDefined : function(v){ return typeof v !== 'undefined'; }, /** * True if the detected browser is Opera. * @type Boolean */ isOpera : isOpera, /** * True if the detected browser uses WebKit. * @type Boolean */ isWebKit : isWebKit, /** * True if the detected browser is Chrome. * @type Boolean */ isChrome : isChrome, /** * True if the detected browser is Safari. * @type Boolean */ isSafari : isSafari, /** * True if the detected browser is Safari 3.x. * @type Boolean */ isSafari3 : isSafari3, /** * True if the detected browser is Safari 4.x. * @type Boolean */ isSafari4 : isSafari4, /** * True if the detected browser is Safari 2.x. * @type Boolean */ isSafari2 : isSafari2, /** * True if the detected browser is Internet Explorer. * @type Boolean */ isIE : isIE, /** * True if the detected browser is Internet Explorer 6.x. * @type Boolean */ isIE6 : isIE6, /** * True if the detected browser is Internet Explorer 7.x. * @type Boolean */ isIE7 : isIE7, /** * True if the detected browser is Internet Explorer 8.x. * @type Boolean */ isIE8 : isIE8, /** * True if the detected browser is Internet Explorer 9.x. * @type Boolean */ isIE9 : isIE9, /** * True if the detected browser is Internet Explorer 10.x * @type Boolean */ isIE10 : isIE10, /** * True if the detected browser is Internet Explorer 9.x or lower * @type Boolean */ isIE9m : isIE9m, /** * True if the detected browser is Internet Explorer 10.x or higher * @type Boolean */ isIE10p : isIE && !(isIE6 || isIE7 || isIE8 || isIE9), // IE10 quirks behaves like Gecko/WebKit quirks, so don't include it here // Used internally isIEQuirks: isIE && (!isStrict && (isIE6 || isIE7 || isIE8 || isIE9)), /** * True if the detected browser uses the Gecko layout engine (e.g. Mozilla, Firefox). * @type Boolean */ isGecko : isGecko, /** * True if the detected browser uses a pre-Gecko 1.9 layout engine (e.g. Firefox 2.x). * @type Boolean */ isGecko2 : isGecko2, /** * True if the detected browser uses a Gecko 1.9+ layout engine (e.g. Firefox 3.x). * @type Boolean */ isGecko3 : isGecko3, /** * True if the detected browser is Internet Explorer running in non-strict mode. * @type Boolean */ isBorderBox : isBorderBox, /** * True if the detected platform is Linux. * @type Boolean */ isLinux : isLinux, /** * True if the detected platform is Windows. * @type Boolean */ isWindows : isWindows, /** * True if the detected platform is Mac OS. * @type Boolean */ isMac : isMac, /** * True if the detected platform is Adobe Air. * @type Boolean */ isAir : isAir }); /** * Creates namespaces to be used for scoping variables and classes so that they are not global. * Specifying the last node of a namespace implicitly creates all other nodes. Usage: * 

Ext.namespace('Company', 'Company.data');
Ext.namespace('Company.data'); // equivalent and preferable to above syntax
Company.Widget = function() { ... }
Company.data.CustomStore = function(config) { ... }
* @param {String} namespace1 * @param {String} namespace2 * @param {String} etc * @return {Object} The namespace object. (If multiple arguments are passed, this will be the last namespace created) * @method ns */ Ext.ns = Ext.namespace; })(); Ext.ns('Ext.util', 'Ext.lib', 'Ext.data', 'Ext.supports'); Ext.elCache = {}; /** * @class Function * These functions are available on every Function object (any JavaScript function). */ Ext.apply(Function.prototype, { /** * Creates an interceptor function. The passed function is called before the original one. If it returns false, * the original one is not called. The resulting function returns the results of the original function. * The passed function is called with the parameters of the original function. Example usage: * 

var sayHi = function(name){
    alert('Hi, ' + name);
}

sayHi('Fred'); // alerts "Hi, Fred"

// create a new function that validates input without
// directly modifying the original function:
var sayHiToFriend = sayHi.createInterceptor(function(name){
    return name == 'Brian';
});

sayHiToFriend('Fred');  // no alert
sayHiToFriend('Brian'); // alerts "Hi, Brian"
* @param {Function} fcn The function to call before the original * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed. * If omitted, defaults to the scope in which the original function is called or the browser window. * @return {Function} The new function */ createInterceptor : function(fcn, scope){ var method = this; return !Ext.isFunction(fcn) ? this : function() { var me = this, args = arguments; fcn.target = me; fcn.method = method; return (fcn.apply(scope || me || window, args) !== false) ? method.apply(me || window, args) : null; }; }, /** * Creates a callback that passes arguments[0], arguments[1], arguments[2], ... * Call directly on any function. Example: myFunction.createCallback(arg1, arg2) * Will create a function that is bound to those 2 args. If a specific scope is required in the * callback, use {@link #createDelegate} instead. The function returned by createCallback always * executes in the window scope. *

This method is required when you want to pass arguments to a callback function. If no arguments * are needed, you can simply pass a reference to the function as a callback (e.g., callback: myFn). * However, if you tried to pass a function with arguments (e.g., callback: myFn(arg1, arg2)) the function * would simply execute immediately when the code is parsed. Example usage: * 


var sayHi = function(name){
    alert('Hi, ' + name);
}

// clicking the button alerts "Hi, Fred"
new Ext.Button({
    text: 'Say Hi',
    renderTo: Ext.getBody(),
    handler: sayHi.createCallback('Fred')
});
* @return {Function} The new function */ createCallback : function(/*args...*/){ // make args available, in function below var args = arguments, method = this; return function() { return method.apply(window, args); }; }, /** * Creates a delegate (callback) that sets the scope to obj. * Call directly on any function. Example: this.myFunction.createDelegate(this, [arg1, arg2]) * Will create a function that is automatically scoped to obj so that the this variable inside the * callback points to obj. Example usage: * 

var sayHi = function(name){
    // Note this use of "this.text" here.  This function expects to
    // execute within a scope that contains a text property.  In this
    // example, the "this" variable is pointing to the btn object that
    // was passed in createDelegate below.
    alert('Hi, ' + name + '. You clicked the "' + this.text + '" button.');
}

var btn = new Ext.Button({
    text: 'Say Hi',
    renderTo: Ext.getBody()
});

// This callback will execute in the scope of the
// button instance. Clicking the button alerts
// "Hi, Fred. You clicked the "Say Hi" button."
btn.on('click', sayHi.createDelegate(btn, ['Fred']));
* @param {Object} scope (optional) The scope (this reference) in which the function is executed. * If omitted, defaults to the browser window. * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller) * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding, * if a number the args are inserted at the specified position * @return {Function} The new function */ createDelegate : function(obj, args, appendArgs){ var method = this; return function() { var callArgs = args || arguments; if (appendArgs === true){ callArgs = Array.prototype.slice.call(arguments, 0); callArgs = callArgs.concat(args); }else if (Ext.isNumber(appendArgs)){ callArgs = Array.prototype.slice.call(arguments, 0); // copy arguments first var applyArgs = [appendArgs, 0].concat(args); // create method call params Array.prototype.splice.apply(callArgs, applyArgs); // splice them in } return method.apply(obj || window, callArgs); }; }, /** * Calls this function after the number of millseconds specified, optionally in a specific scope. Example usage: * 

var sayHi = function(name){
    alert('Hi, ' + name);
}

// executes immediately:
sayHi('Fred');

// executes after 2 seconds:
sayHi.defer(2000, this, ['Fred']);

// this syntax is sometimes useful for deferring
// execution of an anonymous function:
(function(){
    alert('Anonymous');
}).defer(100);
* @param {Number} millis The number of milliseconds for the setTimeout call (if less than or equal to 0 the function is executed immediately) * @param {Object} scope (optional) The scope (this reference) in which the function is executed. * If omitted, defaults to the browser window. * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller) * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding, * if a number the args are inserted at the specified position * @return {Number} The timeout id that can be used with clearTimeout */ defer : function(millis, obj, args, appendArgs){ var fn = this.createDelegate(obj, args, appendArgs); if(millis > 0){ return setTimeout(fn, millis); } fn(); return 0; } }); /** * @class String * These functions are available on every String object. */ Ext.applyIf(String, { /** * Allows you to define a tokenized string and pass an arbitrary number of arguments to replace the tokens. Each * token must be unique, and must increment in the format {0}, {1}, etc. Example usage: * 

var cls = 'my-class', text = 'Some text';
var s = String.format('<div class="{0}">{1}</div>', cls, text);
// s now contains the string: '<div class="my-class">Some text</div>'
     *
* @param {String} string The tokenized string to be formatted * @param {String} value1 The value to replace token {0} * @param {String} value2 Etc... * @return {String} The formatted string * @static */ format : function(format){ var args = Ext.toArray(arguments, 1); return format.replace(/\{(\d+)\}/g, function(m, i){ return args[i]; }); } }); /** * @class Array */ Ext.applyIf(Array.prototype, { /** * Checks whether or not the specified object exists in the array. * @param {Object} o The object to check for * @param {Number} from (Optional) The index at which to begin the search * @return {Number} The index of o in the array (or -1 if it is not found) */ indexOf : function(o, from){ var len = this.length; from = from || 0; from += (from < 0) ? len : 0; for (; from < len; ++from){ if(this[from] === o){ return from; } } return -1; }, /** * Removes the specified object from the array. If the object is not found nothing happens. * @param {Object} o The object to remove * @return {Array} this array */ remove : function(o){ var index = this.indexOf(o); if(index != -1){ this.splice(index, 1); } return this; } }); /** * @class Ext.util.TaskRunner * Provides the ability to execute one or more arbitrary tasks in a multithreaded * manner. Generally, you can use the singleton {@link Ext.TaskMgr} instead, but * if needed, you can create separate instances of TaskRunner. Any number of * separate tasks can be started at any time and will run independently of each * other. Example usage: * 

// Start a simple clock task that updates a div once per second
var updateClock = function(){
    Ext.fly('clock').update(new Date().format('g:i:s A'));
} 
var task = {
    run: updateClock,
    interval: 1000 //1 second
}
var runner = new Ext.util.TaskRunner();
runner.start(task);

// equivalent using TaskMgr
Ext.TaskMgr.start({
    run: updateClock,
    interval: 1000
});

 *
*

See the {@link #start} method for details about how to configure a task object.

* Also see {@link Ext.util.DelayedTask}. * * @constructor * @param {Number} interval (optional) The minimum precision in milliseconds supported by this TaskRunner instance * (defaults to 10) */ Ext.util.TaskRunner = function(interval){ interval = interval || 10; var tasks = [], removeQueue = [], id = 0, running = false, // private stopThread = function(){ running = false; clearInterval(id); id = 0; }, // private startThread = function(){ if(!running){ running = true; id = setInterval(runTasks, interval); } }, // private removeTask = function(t){ removeQueue.push(t); if(t.onStop){ t.onStop.apply(t.scope || t); } }, // private runTasks = function(){ var rqLen = removeQueue.length, now = new Date().getTime(); if(rqLen > 0){ for(var i = 0; i < rqLen; i++){ tasks.remove(removeQueue[i]); } removeQueue = []; if(tasks.length < 1){ stopThread(); return; } } for(var i = 0, t, itime, rt, len = tasks.length; i < len; ++i){ t = tasks[i]; itime = now - t.taskRunTime; if(t.interval <= itime){ rt = t.run.apply(t.scope || t, t.args || [++t.taskRunCount]); t.taskRunTime = now; if(rt === false || t.taskRunCount === t.repeat){ removeTask(t); return; } } if(t.duration && t.duration <= (now - t.taskStartTime)){ removeTask(t); } } }; /** * Starts a new task. * @method start * @param {Object} task

A config object that supports the following properties:

    *
  • run : Function

    The function to execute each time the task is invoked. The * function will be called at each interval and passed the args argument if specified, and the * current invocation count if not.

    *

    If a particular scope (this reference) is required, be sure to specify it using the scope argument.

    *

    Return false from this function to terminate the task.

    • *
  • interval : Number
    The frequency in milliseconds with which the task * should be invoked.
    • *
  • args : Array
    (optional) An array of arguments to be passed to the function * specified by run. If not specified, the current invocation count is passed.
    • *
  • scope : Object
    (optional) The scope (this reference) in which to execute the * run function. Defaults to the task config object.
    • *
  • duration : Number
    (optional) The length of time in milliseconds to invoke * the task before stopping automatically (defaults to indefinite).
    • *
  • repeat : Number
    (optional) The number of times to invoke the task before * stopping automatically (defaults to indefinite).
    • *

*

Before each invocation, Ext injects the property taskRunCount into the task object so * that calculations based on the repeat count can be performed.

* @return {Object} The task */ this.start = function(task){ tasks.push(task); task.taskStartTime = new Date().getTime(); task.taskRunTime = 0; task.taskRunCount = 0; startThread(); return task; }; /** * Stops an existing running task. * @method stop * @param {Object} task The task to stop * @return {Object} The task */ this.stop = function(task){ removeTask(task); return task; }; /** * Stops all tasks that are currently running. * @method stopAll */ this.stopAll = function(){ stopThread(); for(var i = 0, len = tasks.length; i < len; i++){ if(tasks[i].onStop){ tasks[i].onStop(); } } tasks = []; removeQueue = []; }; }; /** * @class Ext.TaskMgr * @extends Ext.util.TaskRunner * A static {@link Ext.util.TaskRunner} instance that can be used to start and stop arbitrary tasks. See * {@link Ext.util.TaskRunner} for supported methods and task config properties. * 

// Start a simple clock task that updates a div once per second
var task = {
    run: function(){
        Ext.fly('clock').update(new Date().format('g:i:s A'));
    },
    interval: 1000 //1 second
}
Ext.TaskMgr.start(task);
*

See the {@link #start} method for details about how to configure a task object.

* @singleton */ Ext.TaskMgr = new Ext.util.TaskRunner();(function(){ var libFlyweight; function fly(el) { if (!libFlyweight) { libFlyweight = new Ext.Element.Flyweight(); } libFlyweight.dom = el; return libFlyweight; } (function(){ var doc = document, isCSS1 = doc.compatMode == "CSS1Compat", MAX = Math.max, ROUND = Math.round, PARSEINT = parseInt; Ext.lib.Dom = { isAncestor : function(p, c) { var ret = false; p = Ext.getDom(p); c = Ext.getDom(c); if (p && c) { if (p.contains) { return p.contains(c); } else if (p.compareDocumentPosition) { return !!(p.compareDocumentPosition(c) & 16); } else { while (c = c.parentNode) { ret = c == p || ret; } } } return ret; }, getViewWidth : function(full) { return full ? this.getDocumentWidth() : this.getViewportWidth(); }, getViewHeight : function(full) { return full ? this.getDocumentHeight() : this.getViewportHeight(); }, getDocumentHeight: function() { return MAX(!isCSS1 ? doc.body.scrollHeight : doc.documentElement.scrollHeight, this.getViewportHeight()); }, getDocumentWidth: function() { return MAX(!isCSS1 ? doc.body.scrollWidth : doc.documentElement.scrollWidth, this.getViewportWidth()); }, getViewportHeight: function(){ return Ext.isIE9m ? (Ext.isStrict ? doc.documentElement.clientHeight : doc.body.clientHeight) : self.innerHeight; }, getViewportWidth : function() { return !Ext.isStrict && !Ext.isOpera ? doc.body.clientWidth : Ext.isIE9m ? doc.documentElement.clientWidth : self.innerWidth; }, getY : function(el) { return this.getXY(el)[1]; }, getX : function(el) { return this.getXY(el)[0]; }, getXY : function(el) { var p, pe, b, bt, bl, dbd, x = 0, y = 0, scroll, hasAbsolute, bd = (doc.body || doc.documentElement), ret = [0,0]; el = Ext.getDom(el); if(el != bd){ if (el.getBoundingClientRect) { b = el.getBoundingClientRect(); scroll = fly(document).getScroll(); ret = [ROUND(b.left + scroll.left), ROUND(b.top + scroll.top)]; } else { p = el; hasAbsolute = fly(el).isStyle("position", "absolute"); while (p) { pe = fly(p); x += p.offsetLeft; y += p.offsetTop; hasAbsolute = hasAbsolute || pe.isStyle("position", "absolute"); if (Ext.isGecko) { y += bt = PARSEINT(pe.getStyle("borderTopWidth"), 10) || 0; x += bl = PARSEINT(pe.getStyle("borderLeftWidth"), 10) || 0; if (p != el && !pe.isStyle('overflow','visible')) { x += bl; y += bt; } } p = p.offsetParent; } if (Ext.isSafari && hasAbsolute) { x -= bd.offsetLeft; y -= bd.offsetTop; } if (Ext.isGecko && !hasAbsolute) { dbd = fly(bd); x += PARSEINT(dbd.getStyle("borderLeftWidth"), 10) || 0; y += PARSEINT(dbd.getStyle("borderTopWidth"), 10) || 0; } p = el.parentNode; while (p && p != bd) { if (!Ext.isOpera || (p.tagName != 'TR' && !fly(p).isStyle("display", "inline"))) { x -= p.scrollLeft; y -= p.scrollTop; } p = p.parentNode; } ret = [x,y]; } } return ret; }, setXY : function(el, xy) { (el = Ext.fly(el, '_setXY')).position(); var pts = el.translatePoints(xy), style = el.dom.style, pos; for (pos in pts) { if (!isNaN(pts[pos])) { style[pos] = pts[pos] + "px"; } } }, setX : function(el, x) { this.setXY(el, [x, false]); }, setY : function(el, y) { this.setXY(el, [false, y]); } }; })();Ext.lib.Event = function() { var loadComplete = false, unloadListeners = {}, retryCount = 0, onAvailStack = [], _interval, locked = false, win = window, doc = document, // constants POLL_RETRYS = 200, POLL_INTERVAL = 20, TYPE = 0, FN = 1, OBJ = 2, ADJ_SCOPE = 3, SCROLLLEFT = 'scrollLeft', SCROLLTOP = 'scrollTop', UNLOAD = 'unload', MOUSEOVER = 'mouseover', MOUSEOUT = 'mouseout', // private doAdd = function() { var ret; if (win.addEventListener) { ret = function(el, eventName, fn, capture) { if (eventName == 'mouseenter') { fn = fn.createInterceptor(checkRelatedTarget); el.addEventListener(MOUSEOVER, fn, (capture)); } else if (eventName == 'mouseleave') { fn = fn.createInterceptor(checkRelatedTarget); el.addEventListener(MOUSEOUT, fn, (capture)); } else { el.addEventListener(eventName, fn, (capture)); } return fn; }; } else if (win.attachEvent) { ret = function(el, eventName, fn, capture) { el.attachEvent("on" + eventName, fn); return fn; }; } else { ret = function(){}; } return ret; }(), // private doRemove = function(){ var ret; if (win.removeEventListener) { ret = function (el, eventName, fn, capture) { if (eventName == 'mouseenter') { eventName = MOUSEOVER; } else if (eventName == 'mouseleave') { eventName = MOUSEOUT; } el.removeEventListener(eventName, fn, (capture)); }; } else if (win.detachEvent) { ret = function (el, eventName, fn) { el.detachEvent("on" + eventName, fn); }; } else { ret = function(){}; } return ret; }(); function checkRelatedTarget(e) { return !elContains(e.currentTarget, pub.getRelatedTarget(e)); } function elContains(parent, child) { if(parent && parent.firstChild){ while(child) { if(child === parent) { return true; } child = child.parentNode; if(child && (child.nodeType != 1)) { child = null; } } } return false; } // private function _tryPreloadAttach() { var ret = false, notAvail = [], element, i, v, override, tryAgain = !loadComplete || (retryCount > 0); if(!locked){ locked = true; for(i = 0; i < onAvailStack.length; ++i){ v = onAvailStack[i]; if(v && (element = doc.getElementById(v.id))){ if(!v.checkReady || loadComplete || element.nextSibling || (doc && doc.body)) { override = v.override; element = override ? (override === true ? v.obj : override) : element; v.fn.call(element, v.obj); onAvailStack.remove(v); --i; }else{ notAvail.push(v); } } } retryCount = (notAvail.length === 0) ? 0 : retryCount - 1; if (tryAgain) { startInterval(); } else { clearInterval(_interval); _interval = null; } ret = !(locked = false); } return ret; } // private function startInterval() { if(!_interval){ var callback = function() { _tryPreloadAttach(); }; _interval = setInterval(callback, POLL_INTERVAL); } } // private function getScroll() { var dd = doc.documentElement, db = doc.body; if(dd && (dd[SCROLLTOP] || dd[SCROLLLEFT])){ return [dd[SCROLLLEFT], dd[SCROLLTOP]]; }else if(db){ return [db[SCROLLLEFT], db[SCROLLTOP]]; }else{ return [0, 0]; } } // private function getPageCoord (ev, xy) { ev = ev.browserEvent || ev; var coord = ev['page' + xy]; if (!coord && coord !== 0) { coord = ev['client' + xy] || 0; if (Ext.isIE) { coord += getScroll()[xy == "X" ? 0 : 1]; } } return coord; } var pub = { extAdapter: true, onAvailable : function(p_id, p_fn, p_obj, p_override) { onAvailStack.push({ id: p_id, fn: p_fn, obj: p_obj, override: p_override, checkReady: false }); retryCount = POLL_RETRYS; startInterval(); }, // This function should ALWAYS be called from Ext.EventManager addListener: function(el, eventName, fn) { el = Ext.getDom(el); if (el && fn) { if (eventName == UNLOAD) { if (unloadListeners[el.id] === undefined) { unloadListeners[el.id] = []; } unloadListeners[el.id].push([eventName, fn]); return fn; } return doAdd(el, eventName, fn, false); } return false; }, // This function should ALWAYS be called from Ext.EventManager removeListener: function(el, eventName, fn) { el = Ext.getDom(el); var i, len, li, lis; if (el && fn) { if(eventName == UNLOAD){ if((lis = unloadListeners[el.id]) !== undefined){ for(i = 0, len = lis.length; i < len; i++){ if((li = lis[i]) && li[TYPE] == eventName && li[FN] == fn){ unloadListeners[el.id].splice(i, 1); } } } return; } doRemove(el, eventName, fn, false); } }, getTarget : function(ev) { ev = ev.browserEvent || ev; return this.resolveTextNode(ev.target || ev.srcElement); }, resolveTextNode : Ext.isGecko ? function(node){ if(!node){ return; } // work around firefox bug, https://bugzilla.mozilla.org/show_bug.cgi?id=101197 var s = HTMLElement.prototype.toString.call(node); if(s == '[xpconnect wrapped native prototype]' || s == '[object XULElement]'){ return; } return node.nodeType == 3 ? node.parentNode : node; } : function(node){ return node && node.nodeType == 3 ? node.parentNode : node; }, getRelatedTarget : function(ev) { ev = ev.browserEvent || ev; return this.resolveTextNode(ev.relatedTarget || (/(mouseout|mouseleave)/.test(ev.type) ? ev.toElement : /(mouseover|mouseenter)/.test(ev.type) ? ev.fromElement : null)); }, getPageX : function(ev) { return getPageCoord(ev, "X"); }, getPageY : function(ev) { return getPageCoord(ev, "Y"); }, getXY : function(ev) { return [this.getPageX(ev), this.getPageY(ev)]; }, stopEvent : function(ev) { this.stopPropagation(ev); this.preventDefault(ev); }, stopPropagation : function(ev) { ev = ev.browserEvent || ev; if (ev.stopPropagation) { ev.stopPropagation(); } else { ev.cancelBubble = true; } }, preventDefault : function(ev) { ev = ev.browserEvent || ev; if (ev.preventDefault) { ev.preventDefault(); } else { if (ev.keyCode) { ev.keyCode = 0; } ev.returnValue = false; } }, getEvent : function(e) { e = e || win.event; if (!e) { var c = this.getEvent.caller; while (c) { e = c.arguments[0]; if (e && Event == e.constructor) { break; } c = c.caller; } } return e; }, getCharCode : function(ev) { ev = ev.browserEvent || ev; return ev.charCode || ev.keyCode || 0; }, //clearCache: function() {}, // deprecated, call from EventManager getListeners : function(el, eventName) { Ext.EventManager.getListeners(el, eventName); }, // deprecated, call from EventManager purgeElement : function(el, recurse, eventName) { Ext.EventManager.purgeElement(el, recurse, eventName); }, _load : function(e) { loadComplete = true; if (Ext.isIE9m && e !== true) { // IE8 complains that _load is null or not an object // so lets remove self via arguments.callee doRemove(win, "load", arguments.callee); } }, _unload : function(e) { var EU = Ext.lib.Event, i, v, ul, id, len, scope; for (id in unloadListeners) { ul = unloadListeners[id]; for (i = 0, len = ul.length; i < len; i++) { v = ul[i]; if (v) { try{ scope = v[ADJ_SCOPE] ? (v[ADJ_SCOPE] === true ? v[OBJ] : v[ADJ_SCOPE]) : win; v[FN].call(scope, EU.getEvent(e), v[OBJ]); }catch(ex){} } } }; Ext.EventManager._unload(); doRemove(win, UNLOAD, EU._unload); } }; // Initialize stuff. pub.on = pub.addListener; pub.un = pub.removeListener; if (doc && doc.body) { pub._load(true); } else { doAdd(win, "load", pub._load); } doAdd(win, UNLOAD, pub._unload); _tryPreloadAttach(); return pub; }(); /* * Portions of this file are based on pieces of Yahoo User Interface Library * Copyright (c) 2007, Yahoo! Inc. All rights reserved. * YUI licensed under the BSD License: * http://developer.yahoo.net/yui/license.txt */ Ext.lib.Ajax = function() { var activeX = ['Msxml2.XMLHTTP.3.0', 'Msxml2.XMLHTTP'], CONTENTTYPE = 'Content-Type'; // private function setHeader(o) { var conn = o.conn, prop, headers = {}; function setTheHeaders(conn, headers){ for (prop in headers) { if (headers.hasOwnProperty(prop)) { conn.setRequestHeader(prop, headers[prop]); } } } Ext.apply(headers, pub.headers, pub.defaultHeaders); setTheHeaders(conn, headers); delete pub.headers; } // private function createExceptionObject(tId, callbackArg, isAbort, isTimeout) { return { tId : tId, status : isAbort ? -1 : 0, statusText : isAbort ? 'transaction aborted' : 'communication failure', isAbort: isAbort, isTimeout: isTimeout, argument : callbackArg }; } // private function initHeader(label, value) { (pub.headers = pub.headers || {})[label] = value; } // private function createResponseObject(o, callbackArg) { var headerObj = {}, headerStr, conn = o.conn, t, s, // see: https://prototype.lighthouseapp.com/projects/8886/tickets/129-ie-mangles-http-response-status-code-204-to-1223 isBrokenStatus = conn.status == 1223; try { headerStr = o.conn.getAllResponseHeaders(); Ext.each(headerStr.replace(/\r\n/g, '\n').split('\n'), function(v){ t = v.indexOf(':'); if(t >= 0){ s = v.substr(0, t).toLowerCase(); if(v.charAt(t + 1) == ' '){ ++t; } headerObj[s] = v.substr(t + 1); } }); } catch(e) {} return { tId : o.tId, // Normalize the status and statusText when IE returns 1223, see the above link. status : isBrokenStatus ? 204 : conn.status, statusText : isBrokenStatus ? 'No Content' : conn.statusText, getResponseHeader : function(header){return headerObj[header.toLowerCase()];}, getAllResponseHeaders : function(){return headerStr;}, responseText : conn.responseText, responseXML : conn.responseXML, argument : callbackArg }; } // private function releaseObject(o) { if (o.tId) { pub.conn[o.tId] = null; } o.conn = null; o = null; } // private function handleTransactionResponse(o, callback, isAbort, isTimeout) { if (!callback) { releaseObject(o); return; } var httpStatus, responseObject; try { if (o.conn.status !== undefined && o.conn.status != 0) { httpStatus = o.conn.status; } else { httpStatus = 13030; } } catch(e) { httpStatus = 13030; } if ((httpStatus >= 200 && httpStatus < 300) || (Ext.isIE && httpStatus == 1223)) { responseObject = createResponseObject(o, callback.argument); if (callback.success) { if (!callback.scope) { callback.success(responseObject); } else { callback.success.apply(callback.scope, [responseObject]); } } } else { switch (httpStatus) { case 12002: case 12029: case 12030: case 12031: case 12152: case 13030: responseObject = createExceptionObject(o.tId, callback.argument, (isAbort ? isAbort : false), isTimeout); if (callback.failure) { if (!callback.scope) { callback.failure(responseObject); } else { callback.failure.apply(callback.scope, [responseObject]); } } break; default: responseObject = createResponseObject(o, callback.argument); if (callback.failure) { if (!callback.scope) { callback.failure(responseObject); } else { callback.failure.apply(callback.scope, [responseObject]); } } } } releaseObject(o); responseObject = null; } function checkResponse(o, callback, conn, tId, poll, cbTimeout){ if (conn && conn.readyState == 4) { clearInterval(poll[tId]); poll[tId] = null; if (cbTimeout) { clearTimeout(pub.timeout[tId]); pub.timeout[tId] = null; } handleTransactionResponse(o, callback); } } function checkTimeout(o, callback){ pub.abort(o, callback, true); } // private function handleReadyState(o, callback){ callback = callback || {}; var conn = o.conn, tId = o.tId, poll = pub.poll, cbTimeout = callback.timeout || null; if (cbTimeout) { pub.conn[tId] = conn; pub.timeout[tId] = setTimeout(checkTimeout.createCallback(o, callback), cbTimeout); } poll[tId] = setInterval(checkResponse.createCallback(o, callback, conn, tId, poll, cbTimeout), pub.pollInterval); } // private function asyncRequest(method, uri, callback, postData) { var o = getConnectionObject() || null; if (o) { o.conn.open(method, uri, true); if (pub.useDefaultXhrHeader) { initHeader('X-Requested-With', pub.defaultXhrHeader); } if(postData && pub.useDefaultHeader && (!pub.headers || !pub.headers[CONTENTTYPE])){ initHeader(CONTENTTYPE, pub.defaultPostHeader); } if (pub.defaultHeaders || pub.headers) { setHeader(o); } handleReadyState(o, callback); o.conn.send(postData || null); } return o; } // private function getConnectionObject() { var o; try { if (o = createXhrObject(pub.transactionId)) { pub.transactionId++; } } catch(e) { } finally { return o; } } // private function createXhrObject(transactionId) { var http; try { http = new XMLHttpRequest(); } catch(e) { for (var i = Ext.isIE6 ? 1 : 0; i < activeX.length; ++i) { try { http = new ActiveXObject(activeX[i]); break; } catch(e) {} } } finally { return {conn : http, tId : transactionId}; } } var pub = { request : function(method, uri, cb, data, options) { if(options){ var me = this, xmlData = options.xmlData, jsonData = options.jsonData, hs; Ext.applyIf(me, options); if(xmlData || jsonData){ hs = me.headers; if(!hs || !hs[CONTENTTYPE]){ initHeader(CONTENTTYPE, xmlData ? 'text/xml' : 'application/json'); } data = xmlData || (!Ext.isPrimitive(jsonData) ? Ext.encode(jsonData) : jsonData); } } return asyncRequest(method || options.method || "POST", uri, cb, data); }, serializeForm : function(form) { var fElements = form.elements || (document.forms[form] || Ext.getDom(form)).elements, hasSubmit = false, encoder = encodeURIComponent, name, data = '', type, hasValue; Ext.each(fElements, function(element){ name = element.name; type = element.type; if (!element.disabled && name) { if (/select-(one|multiple)/i.test(type)) { Ext.each(element.options, function(opt){ if (opt.selected) { hasValue = opt.hasAttribute ? opt.hasAttribute('value') : opt.getAttributeNode('value').specified; data += String.format("{0}={1}&", encoder(name), encoder(hasValue ? opt.value : opt.text)); } }); } else if (!(/file|undefined|reset|button/i.test(type))) { if (!(/radio|checkbox/i.test(type) && !element.checked) && !(type == 'submit' && hasSubmit)) { data += encoder(name) + '=' + encoder(element.value) + '&'; hasSubmit = /submit/i.test(type); } } } }); return data.substr(0, data.length - 1); }, useDefaultHeader : true, defaultPostHeader : 'application/x-www-form-urlencoded; charset=UTF-8', useDefaultXhrHeader : true, defaultXhrHeader : 'XMLHttpRequest', poll : {}, timeout : {}, conn: {}, pollInterval : 50, transactionId : 0, // This is never called - Is it worth exposing this? // setProgId : function(id) { // activeX.unshift(id); // }, // This is never called - Is it worth exposing this? // setDefaultPostHeader : function(b) { // this.useDefaultHeader = b; // }, // This is never called - Is it worth exposing this? // setDefaultXhrHeader : function(b) { // this.useDefaultXhrHeader = b; // }, // This is never called - Is it worth exposing this? // setPollingInterval : function(i) { // if (typeof i == 'number' && isFinite(i)) { // this.pollInterval = i; // } // }, // This is never called - Is it worth exposing this? // resetDefaultHeaders : function() { // this.defaultHeaders = null; // }, abort : function(o, callback, isTimeout) { var me = this, tId = o.tId, isAbort = false; if (me.isCallInProgress(o)) { o.conn.abort(); clearInterval(me.poll[tId]); me.poll[tId] = null; clearTimeout(pub.timeout[tId]); me.timeout[tId] = null; handleTransactionResponse(o, callback, (isAbort = true), isTimeout); } return isAbort; }, isCallInProgress : function(o) { // if there is a connection and readyState is not 0 or 4 return o.conn && !{0:true,4:true}[o.conn.readyState]; } }; return pub; }();(function(){ var EXTLIB = Ext.lib, noNegatives = /width|height|opacity|padding/i, offsetAttribute = /^((width|height)|(top|left))$/, defaultUnit = /width|height|top$|bottom$|left$|right$/i, offsetUnit = /\d+(em|%|en|ex|pt|in|cm|mm|pc)$/i, isset = function(v){ return typeof v !== 'undefined'; }, now = function(){ return new Date(); }; EXTLIB.Anim = { motion : function(el, args, duration, easing, cb, scope) { return this.run(el, args, duration, easing, cb, scope, Ext.lib.Motion); }, run : function(el, args, duration, easing, cb, scope, type) { type = type || Ext.lib.AnimBase; if (typeof easing == "string") { easing = Ext.lib.Easing[easing]; } var anim = new type(el, args, duration, easing); anim.animateX(function() { if(Ext.isFunction(cb)){ cb.call(scope); } }); return anim; } }; EXTLIB.AnimBase = function(el, attributes, duration, method) { if (el) { this.init(el, attributes, duration, method); } }; EXTLIB.AnimBase.prototype = { doMethod: function(attr, start, end) { var me = this; return me.method(me.curFrame, start, end - start, me.totalFrames); }, setAttr: function(attr, val, unit) { if (noNegatives.test(attr) && val < 0) { val = 0; } Ext.fly(this.el, '_anim').setStyle(attr, val + unit); }, getAttr: function(attr) { var el = Ext.fly(this.el), val = el.getStyle(attr), a = offsetAttribute.exec(attr) || []; if (val !== 'auto' && !offsetUnit.test(val)) { return parseFloat(val); } return (!!(a[2]) || (el.getStyle('position') == 'absolute' && !!(a[3]))) ? el.dom['offset' + a[0].charAt(0).toUpperCase() + a[0].substr(1)] : 0; }, getDefaultUnit: function(attr) { return defaultUnit.test(attr) ? 'px' : ''; }, animateX : function(callback, scope) { var me = this, f = function() { me.onComplete.removeListener(f); if (Ext.isFunction(callback)) { callback.call(scope || me, me); } }; me.onComplete.addListener(f, me); me.animate(); }, setRunAttr: function(attr) { var me = this, a = this.attributes[attr], to = a.to, by = a.by, from = a.from, unit = a.unit, ra = (this.runAttrs[attr] = {}), end; if (!isset(to) && !isset(by)){ return false; } var start = isset(from) ? from : me.getAttr(attr); if (isset(to)) { end = to; }else if(isset(by)) { if (Ext.isArray(start)){ end = []; for(var i=0,len=start.length; i 0 && isFinite(tweak)){ if(tween.curFrame + tweak >= frames){ tweak = frames - (frame + 1); } tween.curFrame += tweak; } }; }; EXTLIB.Bezier = new function() { this.getPosition = function(points, t) { var n = points.length, tmp = [], c = 1 - t, i, j; for (i = 0; i < n; ++i) { tmp[i] = [points[i][0], points[i][1]]; } for (j = 1; j < n; ++j) { for (i = 0; i < n - j; ++i) { tmp[i][0] = c * tmp[i][0] + t * tmp[parseInt(i + 1, 10)][0]; tmp[i][1] = c * tmp[i][1] + t * tmp[parseInt(i + 1, 10)][1]; } } return [ tmp[0][0], tmp[0][1] ]; }; }; EXTLIB.Easing = { easeNone: function (t, b, c, d) { return c * t / d + b; }, easeIn: function (t, b, c, d) { return c * (t /= d) * t + b; }, easeOut: function (t, b, c, d) { return -c * (t /= d) * (t - 2) + b; } }; (function() { EXTLIB.Motion = function(el, attributes, duration, method) { if (el) { EXTLIB.Motion.superclass.constructor.call(this, el, attributes, duration, method); } }; Ext.extend(EXTLIB.Motion, Ext.lib.AnimBase); var superclass = EXTLIB.Motion.superclass, pointsRe = /^points$/i; Ext.apply(EXTLIB.Motion.prototype, { setAttr: function(attr, val, unit){ var me = this, setAttr = superclass.setAttr; if (pointsRe.test(attr)) { unit = unit || 'px'; setAttr.call(me, 'left', val[0], unit); setAttr.call(me, 'top', val[1], unit); } else { setAttr.call(me, attr, val, unit); } }, getAttr: function(attr){ var me = this, getAttr = superclass.getAttr; return pointsRe.test(attr) ? [getAttr.call(me, 'left'), getAttr.call(me, 'top')] : getAttr.call(me, attr); }, doMethod: function(attr, start, end){ var me = this; return pointsRe.test(attr) ? EXTLIB.Bezier.getPosition(me.runAttrs[attr], me.method(me.curFrame, 0, 100, me.totalFrames) / 100) : superclass.doMethod.call(me, attr, start, end); }, setRunAttr: function(attr){ if(pointsRe.test(attr)){ var me = this, el = this.el, points = this.attributes.points, control = points.control || [], from = points.from, to = points.to, by = points.by, DOM = EXTLIB.Dom, start, i, end, len, ra; if(control.length > 0 && !Ext.isArray(control[0])){ control = [control]; }else{ /* var tmp = []; for (i = 0,len = control.length; i < len; ++i) { tmp[i] = control[i]; } control = tmp; */ } Ext.fly(el, '_anim').position(); DOM.setXY(el, isset(from) ? from : DOM.getXY(el)); start = me.getAttr('points'); if(isset(to)){ end = translateValues.call(me, to, start); for (i = 0,len = control.length; i < len; ++i) { control[i] = translateValues.call(me, control[i], start); } } else if (isset(by)) { end = [start[0] + by[0], start[1] + by[1]]; for (i = 0,len = control.length; i < len; ++i) { control[i] = [ start[0] + control[i][0], start[1] + control[i][1] ]; } } ra = this.runAttrs[attr] = [start]; if (control.length > 0) { ra = ra.concat(control); } ra[ra.length] = end; }else{ superclass.setRunAttr.call(this, attr); } } }); var translateValues = function(val, start) { var pageXY = EXTLIB.Dom.getXY(this.el); return [val[0] - pageXY[0] + start[0], val[1] - pageXY[1] + start[1]]; }; })(); })();// Easing functions (function(){ // shortcuts to aid compression var abs = Math.abs, pi = Math.PI, asin = Math.asin, pow = Math.pow, sin = Math.sin, EXTLIB = Ext.lib; Ext.apply(EXTLIB.Easing, { easeBoth: function (t, b, c, d) { return ((t /= d / 2) < 1) ? c / 2 * t * t + b : -c / 2 * ((--t) * (t - 2) - 1) + b; }, easeInStrong: function (t, b, c, d) { return c * (t /= d) * t * t * t + b; }, easeOutStrong: function (t, b, c, d) { return -c * ((t = t / d - 1) * t * t * t - 1) + b; }, easeBothStrong: function (t, b, c, d) { return ((t /= d / 2) < 1) ? c / 2 * t * t * t * t + b : -c / 2 * ((t -= 2) * t * t * t - 2) + b; }, elasticIn: function (t, b, c, d, a, p) { if (t == 0 || (t /= d) == 1) { return t == 0 ? b : b + c; } p = p || (d * .3); var s; if (a >= abs(c)) { s = p / (2 * pi) * asin(c / a); } else { a = c; s = p / 4; } return -(a * pow(2, 10 * (t -= 1)) * sin((t * d - s) * (2 * pi) / p)) + b; }, elasticOut: function (t, b, c, d, a, p) { if (t == 0 || (t /= d) == 1) { return t == 0 ? b : b + c; } p = p || (d * .3); var s; if (a >= abs(c)) { s = p / (2 * pi) * asin(c / a); } else { a = c; s = p / 4; } return a * pow(2, -10 * t) * sin((t * d - s) * (2 * pi) / p) + c + b; }, elasticBoth: function (t, b, c, d, a, p) { if (t == 0 || (t /= d / 2) == 2) { return t == 0 ? b : b + c; } p = p || (d * (.3 * 1.5)); var s; if (a >= abs(c)) { s = p / (2 * pi) * asin(c / a); } else { a = c; s = p / 4; } return t < 1 ? -.5 * (a * pow(2, 10 * (t -= 1)) * sin((t * d - s) * (2 * pi) / p)) + b : a * pow(2, -10 * (t -= 1)) * sin((t * d - s) * (2 * pi) / p) * .5 + c + b; }, backIn: function (t, b, c, d, s) { s = s || 1.70158; return c * (t /= d) * t * ((s + 1) * t - s) + b; }, backOut: function (t, b, c, d, s) { if (!s) { s = 1.70158; } return c * ((t = t / d - 1) * t * ((s + 1) * t + s) + 1) + b; }, backBoth: function (t, b, c, d, s) { s = s || 1.70158; return ((t /= d / 2 ) < 1) ? c / 2 * (t * t * (((s *= (1.525)) + 1) * t - s)) + b : c / 2 * ((t -= 2) * t * (((s *= (1.525)) + 1) * t + s) + 2) + b; }, bounceIn: function (t, b, c, d) { return c - EXTLIB.Easing.bounceOut(d - t, 0, c, d) + b; }, bounceOut: function (t, b, c, d) { if ((t /= d) < (1 / 2.75)) { return c * (7.5625 * t * t) + b; } else if (t < (2 / 2.75)) { return c * (7.5625 * (t -= (1.5 / 2.75)) * t + .75) + b; } else if (t < (2.5 / 2.75)) { return c * (7.5625 * (t -= (2.25 / 2.75)) * t + .9375) + b; } return c * (7.5625 * (t -= (2.625 / 2.75)) * t + .984375) + b; }, bounceBoth: function (t, b, c, d) { return (t < d / 2) ? EXTLIB.Easing.bounceIn(t * 2, 0, c, d) * .5 + b : EXTLIB.Easing.bounceOut(t * 2 - d, 0, c, d) * .5 + c * .5 + b; } }); })(); (function() { var EXTLIB = Ext.lib; // Color Animation EXTLIB.Anim.color = function(el, args, duration, easing, cb, scope) { return EXTLIB.Anim.run(el, args, duration, easing, cb, scope, EXTLIB.ColorAnim); }; EXTLIB.ColorAnim = function(el, attributes, duration, method) { EXTLIB.ColorAnim.superclass.constructor.call(this, el, attributes, duration, method); }; Ext.extend(EXTLIB.ColorAnim, EXTLIB.AnimBase); var superclass = EXTLIB.ColorAnim.superclass, colorRE = /color$/i, transparentRE = /^transparent|rgba\(0, 0, 0, 0\)$/, rgbRE = /^rgb\(([0-9]+)\s*,\s*([0-9]+)\s*,\s*([0-9]+)\)$/i, hexRE= /^#?([0-9A-F]{2})([0-9A-F]{2})([0-9A-F]{2})$/i, hex3RE = /^#?([0-9A-F]{1})([0-9A-F]{1})([0-9A-F]{1})$/i, isset = function(v){ return typeof v !== 'undefined'; }; // private function parseColor(s) { var pi = parseInt, base, out = null, c; if (s.length == 3) { return s; } Ext.each([hexRE, rgbRE, hex3RE], function(re, idx){ base = (idx % 2 == 0) ? 16 : 10; c = re.exec(s); if(c && c.length == 4){ out = [pi(c[1], base), pi(c[2], base), pi(c[3], base)]; return false; } }); return out; } Ext.apply(EXTLIB.ColorAnim.prototype, { getAttr : function(attr) { var me = this, el = me.el, val; if(colorRE.test(attr)){ while(el && transparentRE.test(val = Ext.fly(el).getStyle(attr))){ el = el.parentNode; val = "fff"; } }else{ val = superclass.getAttr.call(me, attr); } return val; }, doMethod : function(attr, start, end) { var me = this, val, floor = Math.floor, i, len, v; if(colorRE.test(attr)){ val = []; end = end || []; for(i = 0, len = start.length; i < len; i++) { v = start[i]; val[i] = superclass.doMethod.call(me, attr, v, end[i]); } val = 'rgb(' + floor(val[0]) + ',' + floor(val[1]) + ',' + floor(val[2]) + ')'; }else{ val = superclass.doMethod.call(me, attr, start, end); } return val; }, setRunAttr : function(attr) { var me = this, a = me.attributes[attr], to = a.to, by = a.by, ra; superclass.setRunAttr.call(me, attr); ra = me.runAttrs[attr]; if(colorRE.test(attr)){ var start = parseColor(ra.start), end = parseColor(ra.end); if(!isset(to) && isset(by)){ end = parseColor(by); for(var i=0,len=start.length; i0;){O=w[P];if(N.hasOwnProperty(O)){R=N[O];if(typeof R=="function"){R.$owner=t;R.$name=O}Q[O]=R}}}},define:function(R,P,N){var t=P.override,T,Q,e,O;if(t){delete P.override;T=Ext.getClassByName(t);Ext.override(T,P)}else{if(R){O=Ext.createNamespace(R,true);e=R.substring(R.lastIndexOf(".")+1)}T=function S(){this.constructor.apply(this,arguments)};if(R){T.displayName=R}T.$isClass=true;T.callParent=Ext.Base.callParent;if(typeof P=="function"){P=P(T)}Q=P.extend;if(Q){delete P.extend;if(typeof Q=="string"){Q=Ext.getClassByName(Q)}}else{Q=k}Ext.extend(T,Q,P);if(T.prototype.constructor===T){delete T.prototype.constructor}if(!T.prototype.$isClass){Ext.applyIf(T.prototype,k.prototype)}T.prototype.self=T;if(P.xtype){Ext.reg(P.xtype,T)}T=P.singleton?new T():T;if(R){O[e]=T}}if(N){N.call(T)}return T},override:function(P,R){var N,Q;if(R){if(P.$isClass){Q=R.statics;if(Q){delete R.statics}Ext.addMembers(P,P.prototype,R,true);if(Q){Ext.addMembers(P,P,Q)}}else{if(typeof P=="function"){N=P.prototype;Ext.apply(N,R);if(Ext.isIE&&R.hasOwnProperty("toString")){N.toString=R.toString}}else{var e=P.self,t,O;if(e&&e.$isClass){for(t in R){if(R.hasOwnProperty(t)){O=R[t];if(typeof O=="function"){if(e.$className){O.displayName=e.$className+"#"+t}O.$name=t;O.$owner=e;O.$previous=P.hasOwnProperty(t)?P[t]:l}P[t]=O}}}else{Ext.apply(P,R);if(!P.constructor.$isClass){P.constructor.prototype.callParent=k.prototype.callParent;P.constructor.callParent=k.callParent}}}}}},namespace:function(){var O=arguments.length,P=0,t,N,e,R,Q,S;for(;P0){return setTimeout(d,c)}d();return 0}});Ext.applyIf(String,{format:function(b){var a=Ext.toArray(arguments,1);return b.replace(/\{(\d+)\}/g,function(c,d){return a[d]})}});Ext.applyIf(Array.prototype,{indexOf:function(b,c){var a=this.length;c=c||0;c+=(c<0)?a:0;for(;c0){for(var p=0;p0);if(!A){A=true;for(I=0;I=0){B=s.substr(0,A).toLowerCase();if(s.charAt(A+1)==" "){++A}C[B]=s.substr(A+1)}})}catch(z){}return{tId:u.tId,status:v?204:w.status,statusText:v?"No Content":w.statusText,getResponseHeader:function(s){return C[s.toLowerCase()]},getAllResponseHeaders:function(){return x},responseText:w.responseText,responseXML:w.responseXML,argument:y}}function o(s){if(s.tId){k.conn[s.tId]=null}s.conn=null;s=null}function f(x,y,t,s){if(!y){o(x);return}var v,u;try{if(x.conn.status!==undefined&&x.conn.status!=0){v=x.conn.status}else{v=13030}}catch(w){v=13030}if((v>=200&&v<300)||(Ext.isIE&&v==1223)){u=p(x,y.argument);if(y.success){if(!y.scope){y.success(u)}else{y.success.apply(y.scope,[u])}}}else{switch(v){case 12002:case 12029:case 12030:case 12031:case 12152:case 13030:u=e(x.tId,y.argument,(t?t:false),s);if(y.failure){if(!y.scope){y.failure(u)}else{y.failure.apply(y.scope,[u])}}break;default:u=p(x,y.argument);if(y.failure){if(!y.scope){y.failure(u)}else{y.failure.apply(y.scope,[u])}}}}o(x);u=null}function m(u,x,s,w,t,v){if(s&&s.readyState==4){clearInterval(t[w]);t[w]=null;if(v){clearTimeout(k.timeout[w]);k.timeout[w]=null}f(u,x)}}function r(s,t){k.abort(s,t,true)}function n(u,x){x=x||{};var s=u.conn,w=u.tId,t=k.poll,v=x.timeout||null;if(v){k.conn[w]=s;k.timeout[w]=setTimeout(r.createCallback(u,x),v)}t[w]=setInterval(m.createCallback(u,x,s,w,t,v),k.pollInterval)}function i(w,t,v,s){var u=l()||null;if(u){u.conn.open(w,t,true);if(k.useDefaultXhrHeader){j("X-Requested-With",k.defaultXhrHeader)}if(s&&k.useDefaultHeader&&(!k.headers||!k.headers[d])){j(d,k.defaultPostHeader)}if(k.defaultHeaders||k.headers){h(u)}n(u,v);u.conn.send(s||null)}return u}function l(){var t;try{if(t=q(k.transactionId)){k.transactionId++}}catch(s){}finally{return t}}function q(v){var s;try{s=new XMLHttpRequest()}catch(u){for(var t=Ext.isIE6?1:0;t0&&isFinite(w)){if(r.curFrame+w>=v){w=v-(u+1)}r.curFrame+=w}}};g.Bezier=new function(){this.getPosition=function(p,o){var r=p.length,m=[],q=1-o,l,k;for(l=0;l0&&!Ext.isArray(s[0])){s=[s]}else{}Ext.fly(p,"_anim").position();A.setXY(p,j(x)?x:A.getXY(p));o=w.getAttr("points");if(j(y)){q=k.call(w,y,o);for(r=0,t=s.length;r0){n=n.concat(s)}n[n.length]=q}else{m.setRunAttr.call(this,u)}}});var k=function(n,p){var o=g.Dom.getXY(this.el);return[n[0]-o[0]+p[0],n[1]-o[1]+p[1]]}})()})();(function(){var d=Math.abs,i=Math.PI,h=Math.asin,g=Math.pow,e=Math.sin,f=Ext.lib;Ext.apply(f.Easing,{easeBoth:function(k,j,m,l){return((k/=l/2)<1)?m/2*k*k+j:-m/2*((--k)*(k-2)-1)+j},easeInStrong:function(k,j,m,l){return m*(k/=l)*k*k*k+j},easeOutStrong:function(k,j,m,l){return -m*((k=k/l-1)*k*k*k-1)+j},easeBothStrong:function(k,j,m,l){return((k/=l/2)<1)?m/2*k*k*k*k+j:-m/2*((k-=2)*k*k*k-2)+j},elasticIn:function(l,j,q,o,k,n){if(l==0||(l/=o)==1){return l==0?j:j+q}n=n||(o*0.3);var m;if(k>=d(q)){m=n/(2*i)*h(q/k)}else{k=q;m=n/4}return -(k*g(2,10*(l-=1))*e((l*o-m)*(2*i)/n))+j},elasticOut:function(l,j,q,o,k,n){if(l==0||(l/=o)==1){return l==0?j:j+q}n=n||(o*0.3);var m;if(k>=d(q)){m=n/(2*i)*h(q/k)}else{k=q;m=n/4}return k*g(2,-10*l)*e((l*o-m)*(2*i)/n)+q+j},elasticBoth:function(l,j,q,o,k,n){if(l==0||(l/=o/2)==2){return l==0?j:j+q}n=n||(o*(0.3*1.5));var m;if(k>=d(q)){m=n/(2*i)*h(q/k)}else{k=q;m=n/4}return l<1?-0.5*(k*g(2,10*(l-=1))*e((l*o-m)*(2*i)/n))+j:k*g(2,-10*(l-=1))*e((l*o-m)*(2*i)/n)*0.5+q+j},backIn:function(k,j,n,m,l){l=l||1.70158;return n*(k/=m)*k*((l+1)*k-l)+j},backOut:function(k,j,n,m,l){if(!l){l=1.70158}return n*((k=k/m-1)*k*((l+1)*k+l)+1)+j},backBoth:function(k,j,n,m,l){l=l||1.70158;return((k/=m/2)<1)?n/2*(k*k*(((l*=(1.525))+1)*k-l))+j:n/2*((k-=2)*k*(((l*=(1.525))+1)*k+l)+2)+j},bounceIn:function(k,j,m,l){return m-f.Easing.bounceOut(l-k,0,m,l)+j},bounceOut:function(k,j,m,l){if((k/=l)<(1/2.75)){return m*(7.5625*k*k)+j}else{if(k<(2/2.75)){return m*(7.5625*(k-=(1.5/2.75))*k+0.75)+j}else{if(k<(2.5/2.75)){return m*(7.5625*(k-=(2.25/2.75))*k+0.9375)+j}}}return m*(7.5625*(k-=(2.625/2.75))*k+0.984375)+j},bounceBoth:function(k,j,m,l){return(k * For example: * 

Employee = Ext.extend(Ext.util.Observable, {
    constructor: function(config){
        this.name = config.name;
        this.addEvents({
            "fired" : true,
            "quit" : true
        });

        // Copy configured listeners into *this* object so that the base class's
        // constructor will add them.
        this.listeners = config.listeners;

        // Call our superclass constructor to complete construction process.
        Employee.superclass.constructor.call(this, config)
    }
});
* This could then be used like this:

var newEmployee = new Employee({
    name: employeeName,
    listeners: {
        quit: function() {
            // By default, "this" will be the object that fired the event.
            alert(this.name + " has quit!");
        }
    }
});
*/ EXTUTIL.Observable = function(){ /** * @cfg {Object} listeners (optional)

A config object containing one or more event handlers to be added to this * object during initialization. This should be a valid listeners config object as specified in the * {@link #addListener} example for attaching multiple handlers at once.

*

DOM events from ExtJs {@link Ext.Component Components}

*

While some ExtJs Component classes export selected DOM events (e.g. "click", "mouseover" etc), this * is usually only done when extra value can be added. For example the {@link Ext.DataView DataView}'s * {@link Ext.DataView#click click} event passing the node clicked on. To access DOM * events directly from a Component's HTMLElement, listeners must be added to the {@link Ext.Component#getEl Element} after the Component * has been rendered. A plugin can simplify this step:


// Plugin is configured with a listeners config object.
// The Component is appended to the argument list of all handler functions.
Ext.DomObserver = Ext.extend(Object, {
    constructor: function(config) {
        this.listeners = config.listeners ? config.listeners : config;
    },

    // Component passes itself into plugin's init method
    init: function(c) {
        var p, l = this.listeners;
        for (p in l) {
            if (Ext.isFunction(l[p])) {
                l[p] = this.createHandler(l[p], c);
            } else {
                l[p].fn = this.createHandler(l[p].fn, c);
            }
        }

        // Add the listeners to the Element immediately following the render call
        c.render = c.render.{@link Function#createSequence createSequence}(function() {
            var e = c.getEl();
            if (e) {
                e.on(l);
            }
        });
    },

    createHandler: function(fn, c) {
        return function(e) {
            fn.call(this, e, c);
        };
    }
});

var combo = new Ext.form.ComboBox({

    // Collapse combo when its element is clicked on
    plugins: [ new Ext.DomObserver({
        click: function(evt, comp) {
            comp.collapse();
        }
    })],
    store: myStore,
    typeAhead: true,
    mode: 'local',
    triggerAction: 'all'
});
     *

*/ var me = this, e = me.events; if(me.listeners){ me.on(me.listeners); delete me.listeners; } me.events = e || {}; }; EXTUTIL.Observable.prototype = { // private filterOptRe : /^(?:scope|delay|buffer|single)$/, /** *

Fires the specified event with the passed parameters (minus the event name).

*

An event may be set to bubble up an Observable parent hierarchy (See {@link Ext.Component#getBubbleTarget}) * by calling {@link #enableBubble}.

* @param {String} eventName The name of the event to fire. * @param {Object...} args Variable number of parameters are passed to handlers. * @return {Boolean} returns false if any of the handlers return false otherwise it returns true. */ fireEvent : function(){ var a = Array.prototype.slice.call(arguments, 0), ename = a[0].toLowerCase(), me = this, ret = TRUE, ce = me.events[ename], cc, q, c; if (me.eventsSuspended === TRUE) { if (q = me.eventQueue) { q.push(a); } } else if(typeof ce == 'object') { if (ce.bubble){ if(ce.fire.apply(ce, a.slice(1)) === FALSE) { return FALSE; } c = me.getBubbleTarget && me.getBubbleTarget(); if(c && c.enableBubble) { cc = c.events[ename]; if(!cc || typeof cc != 'object' || !cc.bubble) { c.enableBubble(ename); } return c.fireEvent.apply(c, a); } } else { a.shift(); ret = ce.fire.apply(ce, a); } } return ret; }, /** * Appends an event handler to this object. * @param {String} eventName The name of the event to listen for. * @param {Function} handler The method the event invokes. * @param {Object} scope (optional) The scope (this reference) in which the handler function is executed. * If omitted, defaults to the object which fired the event. * @param {Object} options (optional) An object containing handler configuration. * properties. This may contain any of the following properties:
    *
  • scope : Object
    The scope (this reference) in which the handler function is executed. * If omitted, defaults to the object which fired the event.
    • *
  • delay : Number
    The number of milliseconds to delay the invocation of the handler after the event fires.
    • *
  • single : Boolean
    True to add a handler to handle just the next firing of the event, and then remove itself.
    • *
  • buffer : Number
    Causes the handler to be scheduled to run in an {@link Ext.util.DelayedTask} delayed * by the specified number of milliseconds. If the event fires again within that time, the original * handler is not invoked, but the new handler is scheduled in its place.
    • *
  • target : Observable
    Only call the handler if the event was fired on the target Observable, not * if the event was bubbled up from a child Observable.
    • *

*

* Combining Options
* Using the options argument, it is possible to combine different types of listeners:
*
* A delayed, one-time listener. * 


myDataView.on('click', this.onClick, this, {
single: true,
delay: 100
});
*

* Attaching multiple handlers in 1 call
* The method also allows for a single argument to be passed which is a config object containing properties * which specify multiple handlers. *

* 


myGridPanel.on({
'click' : {
    fn: this.onClick,
    scope: this,
    delay: 100
},
'mouseover' : {
    fn: this.onMouseOver,
    scope: this
},
'mouseout' : {
    fn: this.onMouseOut,
    scope: this
}
});
*

* Or a shorthand syntax:
* 


myGridPanel.on({
'click' : this.onClick,
'mouseover' : this.onMouseOver,
'mouseout' : this.onMouseOut,
 scope: this
});
*/ addListener : function(eventName, fn, scope, o){ var me = this, e, oe, ce; if (typeof eventName == 'object') { o = eventName; for (e in o) { oe = o[e]; if (!me.filterOptRe.test(e)) { me.addListener(e, oe.fn || oe, oe.scope || o.scope, oe.fn ? oe : o); } } } else { eventName = eventName.toLowerCase(); ce = me.events[eventName] || TRUE; if (typeof ce == 'boolean') { me.events[eventName] = ce = new EXTUTIL.Event(me, eventName); } ce.addListener(fn, scope, typeof o == 'object' ? o : {}); } }, /** * Removes an event handler. * @param {String} eventName The type of event the handler was associated with. * @param {Function} handler The handler to remove. This must be a reference to the function passed into the {@link #addListener} call. * @param {Object} scope (optional) The scope originally specified for the handler. */ removeListener : function(eventName, fn, scope){ var ce = this.events[eventName.toLowerCase()]; if (typeof ce == 'object') { ce.removeListener(fn, scope); } }, /** * Removes all listeners for this object */ purgeListeners : function(){ var events = this.events, evt, key; for(key in events){ evt = events[key]; if(typeof evt == 'object'){ evt.clearListeners(); } } }, /** * Adds the specified events to the list of events which this Observable may fire. * @param {Object|String} o Either an object with event names as properties with a value of true * or the first event name string if multiple event names are being passed as separate parameters. * @param {string} Optional. Event name if multiple event names are being passed as separate parameters. * Usage:

this.addEvents('storeloaded', 'storecleared');
*/ addEvents : function(o){ var me = this; me.events = me.events || {}; if (typeof o == 'string') { var a = arguments, i = a.length; while(i--) { me.events[a[i]] = me.events[a[i]] || TRUE; } } else { Ext.applyIf(me.events, o); } }, /** * Checks to see if this object has any listeners for a specified event * @param {String} eventName The name of the event to check for * @return {Boolean} True if the event is being listened for, else false */ hasListener : function(eventName){ var e = this.events[eventName.toLowerCase()]; return typeof e == 'object' && e.listeners.length > 0; }, /** * Suspend the firing of all events. (see {@link #resumeEvents}) * @param {Boolean} queueSuspended Pass as true to queue up suspended events to be fired * after the {@link #resumeEvents} call instead of discarding all suspended events; */ suspendEvents : function(queueSuspended){ this.eventsSuspended = TRUE; if(queueSuspended && !this.eventQueue){ this.eventQueue = []; } }, /** * Resume firing events. (see {@link #suspendEvents}) * If events were suspended using the queueSuspended parameter, then all * events fired during event suspension will be sent to any listeners now. */ resumeEvents : function(){ var me = this, queued = me.eventQueue || []; me.eventsSuspended = FALSE; delete me.eventQueue; EACH(queued, function(e) { me.fireEvent.apply(me, e); }); } }; var OBSERVABLE = EXTUTIL.Observable.prototype; /** * Appends an event handler to this object (shorthand for {@link #addListener}.) * @param {String} eventName The type of event to listen for * @param {Function} handler The method the event invokes * @param {Object} scope (optional) The scope (this reference) in which the handler function is executed. * If omitted, defaults to the object which fired the event. * @param {Object} options (optional) An object containing handler configuration. * @method */ OBSERVABLE.on = OBSERVABLE.addListener; /** * Removes an event handler (shorthand for {@link #removeListener}.) * @param {String} eventName The type of event the handler was associated with. * @param {Function} handler The handler to remove. This must be a reference to the function passed into the {@link #addListener} call. * @param {Object} scope (optional) The scope originally specified for the handler. * @method */ OBSERVABLE.un = OBSERVABLE.removeListener; /** * Removes all added captures from the Observable. * @param {Observable} o The Observable to release * @static */ EXTUTIL.Observable.releaseCapture = function(o){ o.fireEvent = OBSERVABLE.fireEvent; }; function createTargeted(h, o, scope){ return function(){ if(o.target == arguments[0]){ h.apply(scope, Array.prototype.slice.call(arguments, 0)); } }; }; function createBuffered(h, o, l, scope){ l.task = new EXTUTIL.DelayedTask(); return function(){ l.task.delay(o.buffer, h, scope, Array.prototype.slice.call(arguments, 0)); }; }; function createSingle(h, e, fn, scope){ return function(){ e.removeListener(fn, scope); return h.apply(scope, arguments); }; }; function createDelayed(h, o, l, scope){ return function(){ var task = new EXTUTIL.DelayedTask(), args = Array.prototype.slice.call(arguments, 0); if(!l.tasks) { l.tasks = []; } l.tasks.push(task); task.delay(o.delay || 10, function(){ l.tasks.remove(task); h.apply(scope, args); }, scope); }; }; EXTUTIL.Event = function(obj, name){ this.name = name; this.obj = obj; this.listeners = []; }; EXTUTIL.Event.prototype = { addListener : function(fn, scope, options){ var me = this, l; scope = scope || me.obj; if(!me.isListening(fn, scope)){ l = me.createListener(fn, scope, options); if(me.firing){ // if we are currently firing this event, don't disturb the listener loop me.listeners = me.listeners.slice(0); } me.listeners.push(l); } }, createListener: function(fn, scope, o){ o = o || {}; scope = scope || this.obj; var l = { fn: fn, scope: scope, options: o }, h = fn; if(o.target){ h = createTargeted(h, o, scope); } if(o.delay){ h = createDelayed(h, o, l, scope); } if(o.single){ h = createSingle(h, this, fn, scope); } if(o.buffer){ h = createBuffered(h, o, l, scope); } l.fireFn = h; return l; }, findListener : function(fn, scope){ var list = this.listeners, i = list.length, l; scope = scope || this.obj; while(i--){ l = list[i]; if(l){ if(l.fn == fn && l.scope == scope){ return i; } } } return -1; }, isListening : function(fn, scope){ return this.findListener(fn, scope) != -1; }, removeListener : function(fn, scope){ var index, l, k, me = this, ret = FALSE; if((index = me.findListener(fn, scope)) != -1){ if (me.firing) { me.listeners = me.listeners.slice(0); } l = me.listeners[index]; if(l.task) { l.task.cancel(); delete l.task; } k = l.tasks && l.tasks.length; if(k) { while(k--) { l.tasks[k].cancel(); } delete l.tasks; } me.listeners.splice(index, 1); ret = TRUE; } return ret; }, // Iterate to stop any buffered/delayed events clearListeners : function(){ var me = this, l = me.listeners, i = l.length; while(i--) { me.removeListener(l[i].fn, l[i].scope); } }, fire : function(){ var me = this, listeners = me.listeners, len = listeners.length, i = 0, l; if(len > 0){ me.firing = TRUE; var args = Array.prototype.slice.call(arguments, 0); for (; i < len; i++) { l = listeners[i]; if(l && l.fireFn.apply(l.scope || me.obj || window, args) === FALSE) { return (me.firing = FALSE); } } } me.firing = FALSE; return TRUE; } }; })(); /** * @class Ext.DomHelper *

The DomHelper class provides a layer of abstraction from DOM and transparently supports creating * elements via DOM or using HTML fragments. It also has the ability to create HTML fragment templates * from your DOM building code.

* *

DomHelper element specification object

*

A specification object is used when creating elements. Attributes of this object * are assumed to be element attributes, except for 4 special attributes: *

    *
  • tag :
    The tag name of the element
    • *
  • children : or cn
    An array of the * same kind of element definition objects to be created and appended. These can be nested * as deep as you want.
    • *
  • cls :
    The class attribute of the element. * This will end up being either the "class" attribute on a HTML fragment or className * for a DOM node, depending on whether DomHelper is using fragments or DOM.
    • *
  • html :
    The innerHTML for the element
    • *

* *

Insertion methods

*

Commonly used insertion methods: *

    *
  • {@link #append} :
    • *
  • {@link #insertBefore} :
    • *
  • {@link #insertAfter} :
    • *
  • {@link #overwrite} :
    • *
  • {@link #createTemplate} :
    • *
  • {@link #insertHtml} :
    • *

* *

Example

*

This is an example, where an unordered list with 3 children items is appended to an existing * element with id 'my-div':


var dh = Ext.DomHelper; // create shorthand alias
// specification object
var spec = {
    id: 'my-ul',
    tag: 'ul',
    cls: 'my-list',
    // append children after creating
    children: [     // may also specify 'cn' instead of 'children'
        {tag: 'li', id: 'item0', html: 'List Item 0'},
        {tag: 'li', id: 'item1', html: 'List Item 1'},
        {tag: 'li', id: 'item2', html: 'List Item 2'}
    ]
};
var list = dh.append(
    'my-div', // the context element 'my-div' can either be the id or the actual node
    spec      // the specification object
);

*

Element creation specification parameters in this class may also be passed as an Array of * specification objects. This can be used to insert multiple sibling nodes into an existing * container very efficiently. For example, to add more list items to the example above:


dh.append('my-ul', [
    {tag: 'li', id: 'item3', html: 'List Item 3'},
    {tag: 'li', id: 'item4', html: 'List Item 4'}
]);
 *

* *

Templating

*

The real power is in the built-in templating. Instead of creating or appending any elements, * {@link #createTemplate} returns a Template object which can be used over and over to * insert new elements. Revisiting the example above, we could utilize templating this time: * 


// create the node
var list = dh.append('my-div', {tag: 'ul', cls: 'my-list'});
// get template
var tpl = dh.createTemplate({tag: 'li', id: 'item{0}', html: 'List Item {0}'});

for(var i = 0; i < 5, i++){
    tpl.append(list, [i]); // use template to append to the actual node
}
 *

*

An example using a template:


var html = '{2}';

var tpl = new Ext.DomHelper.createTemplate(html);
tpl.append('blog-roll', ['link1', 'http://www.jackslocum.com/', "Jack's Site"]);
tpl.append('blog-roll', ['link2', 'http://www.dustindiaz.com/', "Dustin's Site"]);
 *

* *

The same example using named parameters:


var html = '{text}';

var tpl = new Ext.DomHelper.createTemplate(html);
tpl.append('blog-roll', {
    id: 'link1',
    url: 'http://www.jackslocum.com/',
    text: "Jack's Site"
});
tpl.append('blog-roll', {
    id: 'link2',
    url: 'http://www.dustindiaz.com/',
    text: "Dustin's Site"
});
 *

* *

Compiling Templates

*

Templates are applied using regular expressions. The performance is great, but if * you are adding a bunch of DOM elements using the same template, you can increase * performance even further by {@link Ext.Template#compile "compiling"} the template. * The way "{@link Ext.Template#compile compile()}" works is the template is parsed and * broken up at the different variable points and a dynamic function is created and eval'ed. * The generated function performs string concatenation of these parts and the passed * variables instead of using regular expressions. * 


var html = '{text}';

var tpl = new Ext.DomHelper.createTemplate(html);
tpl.compile();

//... use template like normal
 *

* *

Performance Boost

*

DomHelper will transparently create HTML fragments when it can. Using HTML fragments instead * of DOM can significantly boost performance.

*

Element creation specification parameters may also be strings. If {@link #useDom} is false, * then the string is used as innerHTML. If {@link #useDom} is true, a string specification * results in the creation of a text node. Usage:

* 

Ext.DomHelper.useDom = true; // force it to use DOM; reduces performance
 *
* @singleton */ Ext.DomHelper = function(){ var tempTableEl = null, emptyTags = /^(?:br|frame|hr|img|input|link|meta|range|spacer|wbr|area|param|col)$/i, tableRe = /^table|tbody|tr|td$/i, confRe = /tag|children|cn|html$/i, tableElRe = /td|tr|tbody/i, cssRe = /([a-z0-9-]+)\s*:\s*([^;\s]+(?:\s*[^;\s]+)*);?/gi, endRe = /end/i, pub, // kill repeat to save bytes afterbegin = 'afterbegin', afterend = 'afterend', beforebegin = 'beforebegin', beforeend = 'beforeend', ts = '', te = '
', tbs = ts+'', tbe = ''+te, trs = tbs + '', tre = ''+tbe; // private function doInsert(el, o, returnElement, pos, sibling, append){ var newNode = pub.insertHtml(pos, Ext.getDom(el), createHtml(o)); return returnElement ? Ext.get(newNode, true) : newNode; } // build as innerHTML where available function createHtml(o){ var b = '', attr, val, key, cn; if(typeof o == "string"){ b = o; } else if (Ext.isArray(o)) { for (var i=0; i < o.length; i++) { if(o[i]) { b += createHtml(o[i]); } }; } else { b += '<' + (o.tag = o.tag || 'div'); for (attr in o) { val = o[attr]; if(!confRe.test(attr)){ if (typeof val == "object") { b += ' ' + attr + '="'; for (key in val) { b += key + ':' + val[key] + ';'; }; b += '"'; }else{ b += ' ' + ({cls : 'class', htmlFor : 'for'}[attr] || attr) + '="' + val + '"'; } } }; // Now either just close the tag or try to add children and close the tag. if (emptyTags.test(o.tag)) { b += '/>'; } else { b += '>'; if ((cn = o.children || o.cn)) { b += createHtml(cn); } else if(o.html){ b += o.html; } b += ''; } } return b; } function ieTable(depth, s, h, e){ tempTableEl.innerHTML = [s, h, e].join(''); var i = -1, el = tempTableEl, ns; while(++i < depth){ el = el.firstChild; } // If the result is multiple siblings, then encapsulate them into one fragment. if(ns = el.nextSibling){ var df = document.createDocumentFragment(); while(el){ ns = el.nextSibling; df.appendChild(el); el = ns; } el = df; } return el; } /** * @ignore * Nasty code for IE's broken table implementation */ function insertIntoTable(tag, where, el, html) { var node, before; tempTableEl = tempTableEl || document.createElement('div'); if(tag == 'td' && (where == afterbegin || where == beforeend) || !tableElRe.test(tag) && (where == beforebegin || where == afterend)) { return; } before = where == beforebegin ? el : where == afterend ? el.nextSibling : where == afterbegin ? el.firstChild : null; if (where == beforebegin || where == afterend) { el = el.parentNode; } if (tag == 'td' || (tag == 'tr' && (where == beforeend || where == afterbegin))) { node = ieTable(4, trs, html, tre); } else if ((tag == 'tbody' && (where == beforeend || where == afterbegin)) || (tag == 'tr' && (where == beforebegin || where == afterend))) { node = ieTable(3, tbs, html, tbe); } else { node = ieTable(2, ts, html, te); } el.insertBefore(node, before); return node; } /** * @ignore * Fix for IE9 createContextualFragment missing method */ function createContextualFragment(html){ var div = document.createElement("div"), fragment = document.createDocumentFragment(), i = 0, length, childNodes; div.innerHTML = html; childNodes = div.childNodes; length = childNodes.length; for (; i < length; i++) { fragment.appendChild(childNodes[i].cloneNode(true)); } return fragment; } pub = { /** * Returns the markup for the passed Element(s) config. * @param {Object} o The DOM object spec (and children) * @return {String} */ markup : function(o){ return createHtml(o); }, /** * Applies a style specification to an element. * @param {String/HTMLElement} el The element to apply styles to * @param {String/Object/Function} styles A style specification string e.g. 'width:100px', or object in the form {width:'100px'}, or * a function which returns such a specification. */ applyStyles : function(el, styles){ if (styles) { var matches; el = Ext.fly(el); if (typeof styles == "function") { styles = styles.call(); } if (typeof styles == "string") { /** * Since we're using the g flag on the regex, we need to set the lastIndex. * This automatically happens on some implementations, but not others, see: * http://stackoverflow.com/questions/2645273/javascript-regular-expression-literal-persists-between-function-calls * http://blog.stevenlevithan.com/archives/fixing-javascript-regexp */ cssRe.lastIndex = 0; while ((matches = cssRe.exec(styles))) { el.setStyle(matches[1], matches[2]); } } else if (typeof styles == "object") { el.setStyle(styles); } } }, /** * Inserts an HTML fragment into the DOM. * @param {String} where Where to insert the html in relation to el - beforeBegin, afterBegin, beforeEnd, afterEnd. * @param {HTMLElement} el The context element * @param {String} html The HTML fragment * @return {HTMLElement} The new node */ insertHtml : function(where, el, html){ var hash = {}, hashVal, range, rangeEl, setStart, frag, rs; where = where.toLowerCase(); // add these here because they are used in both branches of the condition. hash[beforebegin] = ['BeforeBegin', 'previousSibling']; hash[afterend] = ['AfterEnd', 'nextSibling']; if (el.insertAdjacentHTML) { if(tableRe.test(el.tagName) && (rs = insertIntoTable(el.tagName.toLowerCase(), where, el, html))){ return rs; } // add these two to the hash. hash[afterbegin] = ['AfterBegin', 'firstChild']; hash[beforeend] = ['BeforeEnd', 'lastChild']; if ((hashVal = hash[where])) { el.insertAdjacentHTML(hashVal[0], html); return el[hashVal[1]]; } } else { range = el.ownerDocument.createRange(); setStart = 'setStart' + (endRe.test(where) ? 'After' : 'Before'); if (hash[where]) { range[setStart](el); if (!range.createContextualFragment) { frag = createContextualFragment(html); } else { frag = range.createContextualFragment(html); } el.parentNode.insertBefore(frag, where == beforebegin ? el : el.nextSibling); return el[(where == beforebegin ? 'previous' : 'next') + 'Sibling']; } else { rangeEl = (where == afterbegin ? 'first' : 'last') + 'Child'; if (el.firstChild) { range[setStart](el[rangeEl]); if (!range.createContextualFragment) { frag = createContextualFragment(html); } else { frag = range.createContextualFragment(html); } if(where == afterbegin){ el.insertBefore(frag, el.firstChild); }else{ el.appendChild(frag); } } else { el.innerHTML = html; } return el[rangeEl]; } } throw 'Illegal insertion point -> "' + where + '"'; }, /** * Creates new DOM element(s) and inserts them before el. * @param {Mixed} el The context element * @param {Object/String} o The DOM object spec (and children) or raw HTML blob * @param {Boolean} returnElement (optional) true to return a Ext.Element * @return {HTMLElement/Ext.Element} The new node */ insertBefore : function(el, o, returnElement){ return doInsert(el, o, returnElement, beforebegin); }, /** * Creates new DOM element(s) and inserts them after el. * @param {Mixed} el The context element * @param {Object} o The DOM object spec (and children) * @param {Boolean} returnElement (optional) true to return a Ext.Element * @return {HTMLElement/Ext.Element} The new node */ insertAfter : function(el, o, returnElement){ return doInsert(el, o, returnElement, afterend, 'nextSibling'); }, /** * Creates new DOM element(s) and inserts them as the first child of el. * @param {Mixed} el The context element * @param {Object/String} o The DOM object spec (and children) or raw HTML blob * @param {Boolean} returnElement (optional) true to return a Ext.Element * @return {HTMLElement/Ext.Element} The new node */ insertFirst : function(el, o, returnElement){ return doInsert(el, o, returnElement, afterbegin, 'firstChild'); }, /** * Creates new DOM element(s) and appends them to el. * @param {Mixed} el The context element * @param {Object/String} o The DOM object spec (and children) or raw HTML blob * @param {Boolean} returnElement (optional) true to return a Ext.Element * @return {HTMLElement/Ext.Element} The new node */ append : function(el, o, returnElement){ return doInsert(el, o, returnElement, beforeend, '', true); }, /** * Creates new DOM element(s) and overwrites the contents of el with them. * @param {Mixed} el The context element * @param {Object/String} o The DOM object spec (and children) or raw HTML blob * @param {Boolean} returnElement (optional) true to return a Ext.Element * @return {HTMLElement/Ext.Element} The new node */ overwrite : function(el, o, returnElement){ el = Ext.getDom(el); el.innerHTML = createHtml(o); return returnElement ? Ext.get(el.firstChild) : el.firstChild; }, createHtml : createHtml }; return pub; }(); /** * @class Ext.Template *

Represents an HTML fragment template. Templates may be {@link #compile precompiled} * for greater performance.

*

For example usage {@link #Template see the constructor}.

* * @constructor * An instance of this class may be created by passing to the constructor either * a single argument, or multiple arguments: *
    *
  • single argument : String/Array *
    * The single argument may be either a String or an Array:
      *
    • String : 
      • 
var t = new Ext.Template("<div>Hello {0}.</div>");
t.{@link #append}('some-element', ['foo']);
 *
      *
    • Array :
      • * An Array will be combined with join(''). 
      
var t = new Ext.Template([
    '<div name="{id}">',
        '<span class="{cls}">{name:trim} {value:ellipsis(10)}</span>',
    '</div>',
]);
t.{@link #compile}();
t.{@link #append}('some-element', {id: 'myid', cls: 'myclass', name: 'foo', value: 'bar'});
      *
    • *
  • multiple arguments : String, Object, Array, ... *
    * Multiple arguments will be combined with join(''). * 
    
var t = new Ext.Template(
    '<div name="{id}">',
        '<span class="{cls}">{name} {value}</span>',
    '</div>',
    // a configuration object:
    {
        compiled: true,      // {@link #compile} immediately
        disableFormats: true // See Notes below.
    }
);
 *
    *

    Notes:

    *
      *
    • Formatting and disableFormats are not applicable for Ext Core.
      • *
    • For a list of available format functions, see {@link Ext.util.Format}.
      • *
    • disableFormats reduces {@link #apply} time * when no formatting is required.
      • *
    *
    • *
* @param {Mixed} config */ Ext.Template = function(html){ var me = this, a = arguments, buf = [], v; if (Ext.isArray(html)) { html = html.join(""); } else if (a.length > 1) { for(var i = 0, len = a.length; i < len; i++){ v = a[i]; if(typeof v == 'object'){ Ext.apply(me, v); } else { buf.push(v); } }; html = buf.join(''); } /**@private*/ me.html = html; /** * @cfg {Boolean} compiled Specify true to compile the template * immediately (see {@link #compile}). * Defaults to false. */ if (me.compiled) { me.compile(); } }; Ext.Template.prototype = { /** * @cfg {RegExp} re The regular expression used to match template variables. * Defaults to:

     * re : /\{([\w\-]+)\}/g                                     // for Ext Core
     * re : /\{([\w\-]+)(?:\:([\w\.]*)(?:\((.*?)?\))?)?\}/g      // for Ext JS
     *
*/ re : /\{([\w\-]+)\}/g, /** * See {@link #re}. * @type RegExp * @property re */ /** * Returns an HTML fragment of this template with the specified values applied. * @param {Object/Array} values * The template values. Can be an array if the params are numeric (i.e. {0}) * or an object (i.e. {foo: 'bar'}). * @return {String} The HTML fragment */ applyTemplate : function(values){ var me = this; return me.compiled ? me.compiled(values) : me.html.replace(me.re, function(m, name){ return values[name] !== undefined ? values[name] : ""; }); }, /** * Sets the HTML used as the template and optionally compiles it. * @param {String} html * @param {Boolean} compile (optional) True to compile the template (defaults to undefined) * @return {Ext.Template} this */ set : function(html, compile){ var me = this; me.html = html; me.compiled = null; return compile ? me.compile() : me; }, /** * Compiles the template into an internal function, eliminating the RegEx overhead. * @return {Ext.Template} this */ compile : function(){ var me = this, sep = Ext.isGecko ? "+" : ","; function fn(m, name){ name = "values['" + name + "']"; return "'"+ sep + '(' + name + " == undefined ? '' : " + name + ')' + sep + "'"; } eval("this.compiled = function(values){ return " + (Ext.isGecko ? "'" : "['") + me.html.replace(/\\/g, '\\\\').replace(/(\r\n|\n)/g, '\\n').replace(/'/g, "\\'").replace(this.re, fn) + (Ext.isGecko ? "';};" : "'].join('');};")); return me; }, /** * Applies the supplied values to the template and inserts the new node(s) as the first child of el. * @param {Mixed} el The context element * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'}) * @param {Boolean} returnElement (optional) true to return a Ext.Element (defaults to undefined) * @return {HTMLElement/Ext.Element} The new node or Element */ insertFirst: function(el, values, returnElement){ return this.doInsert('afterBegin', el, values, returnElement); }, /** * Applies the supplied values to the template and inserts the new node(s) before el. * @param {Mixed} el The context element * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'}) * @param {Boolean} returnElement (optional) true to return a Ext.Element (defaults to undefined) * @return {HTMLElement/Ext.Element} The new node or Element */ insertBefore: function(el, values, returnElement){ return this.doInsert('beforeBegin', el, values, returnElement); }, /** * Applies the supplied values to the template and inserts the new node(s) after el. * @param {Mixed} el The context element * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'}) * @param {Boolean} returnElement (optional) true to return a Ext.Element (defaults to undefined) * @return {HTMLElement/Ext.Element} The new node or Element */ insertAfter : function(el, values, returnElement){ return this.doInsert('afterEnd', el, values, returnElement); }, /** * Applies the supplied values to the template and appends * the new node(s) to the specified el. *

For example usage {@link #Template see the constructor}.

* @param {Mixed} el The context element * @param {Object/Array} values * The template values. Can be an array if the params are numeric (i.e. {0}) * or an object (i.e. {foo: 'bar'}). * @param {Boolean} returnElement (optional) true to return an Ext.Element (defaults to undefined) * @return {HTMLElement/Ext.Element} The new node or Element */ append : function(el, values, returnElement){ return this.doInsert('beforeEnd', el, values, returnElement); }, doInsert : function(where, el, values, returnEl){ el = Ext.getDom(el); var newNode = Ext.DomHelper.insertHtml(where, el, this.applyTemplate(values)); return returnEl ? Ext.get(newNode, true) : newNode; }, /** * Applies the supplied values to the template and overwrites the content of el with the new node(s). * @param {Mixed} el The context element * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'}) * @param {Boolean} returnElement (optional) true to return a Ext.Element (defaults to undefined) * @return {HTMLElement/Ext.Element} The new node or Element */ overwrite : function(el, values, returnElement){ el = Ext.getDom(el); el.innerHTML = this.applyTemplate(values); return returnElement ? Ext.get(el.firstChild, true) : el.firstChild; } }; /** * Alias for {@link #applyTemplate} * Returns an HTML fragment of this template with the specified values applied. * @param {Object/Array} values * The template values. Can be an array if the params are numeric (i.e. {0}) * or an object (i.e. {foo: 'bar'}). * @return {String} The HTML fragment * @member Ext.Template * @method apply */ Ext.Template.prototype.apply = Ext.Template.prototype.applyTemplate; /** * Creates a template from the passed element's value (display:none textarea, preferred) or innerHTML. * @param {String/HTMLElement} el A DOM element or its id * @param {Object} config A configuration object * @return {Ext.Template} The created template * @static */ Ext.Template.from = function(el, config){ el = Ext.getDom(el); return new Ext.Template(el.value || el.innerHTML, config || ''); }; /* * This is code is also distributed under MIT license for use * with jQuery and prototype JavaScript libraries. */ /** * @class Ext.DomQuery Provides high performance selector/xpath processing by compiling queries into reusable functions. New pseudo classes and matchers can be plugged. It works on HTML and XML documents (if a content node is passed in).

DomQuery supports most of the CSS3 selectors spec, along with some custom selectors and basic XPath.

All selectors, attribute filters and pseudos below can be combined infinitely in any order. For example "div.foo:nth-child(odd)[@foo=bar].bar:first" would be a perfectly valid selector. Node filters are processed in the order in which they appear, which allows you to optimize your queries for your document structure.

Element Selectors:

  • * any element
  • E an element with the tag E
  • E F All descendent elements of E that have the tag F
  • E > F or E/F all direct children elements of E that have the tag F
  • E + F all elements with the tag F that are immediately preceded by an element with the tag E
  • E ~ F all elements with the tag F that are preceded by a sibling element with the tag E

Attribute Selectors:

The use of @ and quotes are optional. For example, div[@foo='bar'] is also a valid attribute selector.

  • E[foo] has an attribute "foo"
  • E[foo=bar] has an attribute "foo" that equals "bar"
  • E[foo^=bar] has an attribute "foo" that starts with "bar"
  • E[foo$=bar] has an attribute "foo" that ends with "bar"
  • E[foo*=bar] has an attribute "foo" that contains the substring "bar"
  • E[foo%=2] has an attribute "foo" that is evenly divisible by 2
  • E[foo!=bar] attribute "foo" does not equal "bar"

Pseudo Classes:

  • E:first-child E is the first child of its parent
  • E:last-child E is the last child of its parent
  • E:nth-child(n) E is the nth child of its parent (1 based as per the spec)
  • E:nth-child(odd) E is an odd child of its parent
  • E:nth-child(even) E is an even child of its parent
  • E:only-child E is the only child of its parent
  • E:checked E is an element that is has a checked attribute that is true (e.g. a radio or checkbox)
  • E:first the first E in the resultset
  • E:last the last E in the resultset
  • E:nth(n) the nth E in the resultset (1 based)
  • E:odd shortcut for :nth-child(odd)
  • E:even shortcut for :nth-child(even)
  • E:contains(foo) E's innerHTML contains the substring "foo"
  • E:nodeValue(foo) E contains a textNode with a nodeValue that equals "foo"
  • E:not(S) an E element that does not match simple selector S
  • E:has(S) an E element that has a descendent that matches simple selector S
  • E:next(S) an E element whose next sibling matches simple selector S
  • E:prev(S) an E element whose previous sibling matches simple selector S
  • E:any(S1|S2|S2) an E element which matches any of the simple selectors S1, S2 or S3//\\

CSS Value Selectors:

  • E{display=none} css value "display" that equals "none"
  • E{display^=none} css value "display" that starts with "none"
  • E{display$=none} css value "display" that ends with "none"
  • E{display*=none} css value "display" that contains the substring "none"
  • E{display%=2} css value "display" that is evenly divisible by 2
  • E{display!=none} css value "display" that does not equal "none"
* @singleton */ Ext.DomQuery = function(){ var cache = {}, simpleCache = {}, valueCache = {}, nonSpace = /\S/, trimRe = /^\s+|\s+$/g, tplRe = /\{(\d+)\}/g, modeRe = /^(\s?[\/>+~]\s?|\s|$)/, tagTokenRe = /^(#)?([\w\-\*]+)/, nthRe = /(\d*)n\+?(\d*)/, nthRe2 = /\D/, // This is for IE MSXML which does not support expandos. // IE runs the same speed using setAttribute, however FF slows way down // and Safari completely fails so they need to continue to use expandos. isIE = window.ActiveXObject ? true : false, key = 30803; // this eval is stop the compressor from // renaming the variable to something shorter eval("var batch = 30803;"); // Retrieve the child node from a particular // parent at the specified index. function child(parent, index){ var i = 0, n = parent.firstChild; while(n){ if(n.nodeType == 1){ if(++i == index){ return n; } } n = n.nextSibling; } return null; } // retrieve the next element node function next(n){ while((n = n.nextSibling) && n.nodeType != 1); return n; } // retrieve the previous element node function prev(n){ while((n = n.previousSibling) && n.nodeType != 1); return n; } // Mark each child node with a nodeIndex skipping and // removing empty text nodes. function children(parent){ var n = parent.firstChild, nodeIndex = -1, nextNode; while(n){ nextNode = n.nextSibling; // clean worthless empty nodes. if(n.nodeType == 3 && !nonSpace.test(n.nodeValue)){ parent.removeChild(n); }else{ // add an expando nodeIndex n.nodeIndex = ++nodeIndex; } n = nextNode; } return this; } // nodeSet - array of nodes // cls - CSS Class function byClassName(nodeSet, cls){ if(!cls){ return nodeSet; } var result = [], ri = -1; for(var i = 0, ci; ci = nodeSet[i]; i++){ if((' '+ci.className+' ').indexOf(cls) != -1){ result[++ri] = ci; } } return result; }; function attrValue(n, attr){ // if its an array, use the first node. if(!n.tagName && typeof n.length != "undefined"){ n = n[0]; } if(!n){ return null; } if(attr == "for"){ return n.htmlFor; } if(attr == "class" || attr == "className"){ return n.className; } return n.getAttribute(attr) || n[attr]; }; // ns - nodes // mode - false, /, >, +, ~ // tagName - defaults to "*" function getNodes(ns, mode, tagName){ var result = [], ri = -1, cs; if(!ns){ return result; } tagName = tagName || "*"; // convert to array if(typeof ns.getElementsByTagName != "undefined"){ ns = [ns]; } // no mode specified, grab all elements by tagName // at any depth if(!mode){ for(var i = 0, ni; ni = ns[i]; i++){ cs = ni.getElementsByTagName(tagName); for(var j = 0, ci; ci = cs[j]; j++){ result[++ri] = ci; } } // Direct Child mode (/ or >) // E > F or E/F all direct children elements of E that have the tag } else if(mode == "/" || mode == ">"){ var utag = tagName.toUpperCase(); for(var i = 0, ni, cn; ni = ns[i]; i++){ cn = ni.childNodes; for(var j = 0, cj; cj = cn[j]; j++){ if(cj.nodeName == utag || cj.nodeName == tagName || tagName == '*'){ result[++ri] = cj; } } } // Immediately Preceding mode (+) // E + F all elements with the tag F that are immediately preceded by an element with the tag E }else if(mode == "+"){ var utag = tagName.toUpperCase(); for(var i = 0, n; n = ns[i]; i++){ while((n = n.nextSibling) && n.nodeType != 1); if(n && (n.nodeName == utag || n.nodeName == tagName || tagName == '*')){ result[++ri] = n; } } // Sibling mode (~) // E ~ F all elements with the tag F that are preceded by a sibling element with the tag E }else if(mode == "~"){ var utag = tagName.toUpperCase(); for(var i = 0, n; n = ns[i]; i++){ while((n = n.nextSibling)){ if (n.nodeName == utag || n.nodeName == tagName || tagName == '*'){ result[++ri] = n; } } } } return result; } function concat(a, b){ if(b.slice){ return a.concat(b); } for(var i = 0, l = b.length; i < l; i++){ a[a.length] = b[i]; } return a; } function byTag(cs, tagName){ if(cs.tagName || cs == document){ cs = [cs]; } if(!tagName){ return cs; } var result = [], ri = -1; tagName = tagName.toLowerCase(); for(var i = 0, ci; ci = cs[i]; i++){ if(ci.nodeType == 1 && ci.tagName.toLowerCase() == tagName){ result[++ri] = ci; } } return result; } function byId(cs, id){ if(cs.tagName || cs == document){ cs = [cs]; } if(!id){ return cs; } var result = [], ri = -1; for(var i = 0, ci; ci = cs[i]; i++){ if(ci && ci.id == id){ result[++ri] = ci; return result; } } return result; } // operators are =, !=, ^=, $=, *=, %=, |= and ~= // custom can be "{" function byAttribute(cs, attr, value, op, custom){ var result = [], ri = -1, useGetStyle = custom == "{", fn = Ext.DomQuery.operators[op], a, xml, hasXml; for(var i = 0, ci; ci = cs[i]; i++){ // skip non-element nodes. if(ci.nodeType != 1){ continue; } // only need to do this for the first node if(!hasXml){ xml = Ext.DomQuery.isXml(ci); hasXml = true; } // we only need to change the property names if we're dealing with html nodes, not XML if(!xml){ if(useGetStyle){ a = Ext.DomQuery.getStyle(ci, attr); } else if (attr == "class" || attr == "className"){ a = ci.className; } else if (attr == "for"){ a = ci.htmlFor; } else if (attr == "href"){ // getAttribute href bug // http://www.glennjones.net/Post/809/getAttributehrefbug.htm a = ci.getAttribute("href", 2); } else{ a = ci.getAttribute(attr); } }else{ a = ci.getAttribute(attr); } if((fn && fn(a, value)) || (!fn && a)){ result[++ri] = ci; } } return result; } function byPseudo(cs, name, value){ return Ext.DomQuery.pseudos[name](cs, value); } function nodupIEXml(cs){ var d = ++key, r; cs[0].setAttribute("_nodup", d); r = [cs[0]]; for(var i = 1, len = cs.length; i < len; i++){ var c = cs[i]; if(!c.getAttribute("_nodup") != d){ c.setAttribute("_nodup", d); r[r.length] = c; } } for(var i = 0, len = cs.length; i < len; i++){ cs[i].removeAttribute("_nodup"); } return r; } function nodup(cs){ if(!cs){ return []; } var len = cs.length, c, i, r = cs, cj, ri = -1; if(!len || typeof cs.nodeType != "undefined" || len == 1){ return cs; } if(isIE && typeof cs[0].selectSingleNode != "undefined"){ return nodupIEXml(cs); } var d = ++key; cs[0]._nodup = d; for(i = 1; c = cs[i]; i++){ if(c._nodup != d){ c._nodup = d; }else{ r = []; for(var j = 0; j < i; j++){ r[++ri] = cs[j]; } for(j = i+1; cj = cs[j]; j++){ if(cj._nodup != d){ cj._nodup = d; r[++ri] = cj; } } return r; } } return r; } function quickDiffIEXml(c1, c2){ var d = ++key, r = []; for(var i = 0, len = c1.length; i < len; i++){ c1[i].setAttribute("_qdiff", d); } for(var i = 0, len = c2.length; i < len; i++){ if(c2[i].getAttribute("_qdiff") != d){ r[r.length] = c2[i]; } } for(var i = 0, len = c1.length; i < len; i++){ c1[i].removeAttribute("_qdiff"); } return r; } function quickDiff(c1, c2){ var len1 = c1.length, d = ++key, r = []; if(!len1){ return c2; } if(isIE && typeof c1[0].selectSingleNode != "undefined"){ return quickDiffIEXml(c1, c2); } for(var i = 0; i < len1; i++){ c1[i]._qdiff = d; } for(var i = 0, len = c2.length; i < len; i++){ if(c2[i]._qdiff != d){ r[r.length] = c2[i]; } } return r; } function quickId(ns, mode, root, id){ if(ns == root){ var d = root.ownerDocument || root; return d.getElementById(id); } ns = getNodes(ns, mode, "*"); return byId(ns, id); } return { getStyle : function(el, name){ return Ext.fly(el).getStyle(name); }, /** * Compiles a selector/xpath query into a reusable function. The returned function * takes one parameter "root" (optional), which is the context node from where the query should start. * @param {String} selector The selector/xpath query * @param {String} type (optional) Either "select" (the default) or "simple" for a simple selector match * @return {Function} */ compile : function(path, type){ type = type || "select"; // setup fn preamble var fn = ["var f = function(root){\n var mode; ++batch; var n = root || document;\n"], mode, lastPath, matchers = Ext.DomQuery.matchers, matchersLn = matchers.length, modeMatch, // accept leading mode switch lmode = path.match(modeRe); if(lmode && lmode[1]){ fn[fn.length] = 'mode="'+lmode[1].replace(trimRe, "")+'";'; path = path.replace(lmode[1], ""); } // strip leading slashes while(path.substr(0, 1)=="/"){ path = path.substr(1); } while(path && lastPath != path){ lastPath = path; var tokenMatch = path.match(tagTokenRe); if(type == "select"){ if(tokenMatch){ // ID Selector if(tokenMatch[1] == "#"){ fn[fn.length] = 'n = quickId(n, mode, root, "'+tokenMatch[2]+'");'; }else{ fn[fn.length] = 'n = getNodes(n, mode, "'+tokenMatch[2]+'");'; } path = path.replace(tokenMatch[0], ""); }else if(path.substr(0, 1) != '@'){ fn[fn.length] = 'n = getNodes(n, mode, "*");'; } // type of "simple" }else{ if(tokenMatch){ if(tokenMatch[1] == "#"){ fn[fn.length] = 'n = byId(n, "'+tokenMatch[2]+'");'; }else{ fn[fn.length] = 'n = byTag(n, "'+tokenMatch[2]+'");'; } path = path.replace(tokenMatch[0], ""); } } while(!(modeMatch = path.match(modeRe))){ var matched = false; for(var j = 0; j < matchersLn; j++){ var t = matchers[j]; var m = path.match(t.re); if(m){ fn[fn.length] = t.select.replace(tplRe, function(x, i){ return m[i]; }); path = path.replace(m[0], ""); matched = true; break; } } // prevent infinite loop on bad selector if(!matched){ throw 'Error parsing selector, parsing failed at "' + path + '"'; } } if(modeMatch[1]){ fn[fn.length] = 'mode="'+modeMatch[1].replace(trimRe, "")+'";'; path = path.replace(modeMatch[1], ""); } } // close fn out fn[fn.length] = "return nodup(n);\n}"; // eval fn and return it eval(fn.join("")); return f; }, /** * Selects a group of elements. * @param {String} selector The selector/xpath query (can be a comma separated list of selectors) * @param {Node/String} root (optional) The start of the query (defaults to document). * @return {Array} An Array of DOM elements which match the selector. If there are * no matches, and empty Array is returned. */ jsSelect: function(path, root, type){ // set root to doc if not specified. root = root || document; if(typeof root == "string"){ root = document.getElementById(root); } var paths = path.split(","), results = []; // loop over each selector for(var i = 0, len = paths.length; i < len; i++){ var subPath = paths[i].replace(trimRe, ""); // compile and place in cache if(!cache[subPath]){ cache[subPath] = Ext.DomQuery.compile(subPath); if(!cache[subPath]){ throw subPath + " is not a valid selector"; } } var result = cache[subPath](root); if(result && result != document){ results = results.concat(result); } } // if there were multiple selectors, make sure dups // are eliminated if(paths.length > 1){ return nodup(results); } return results; }, isXml: function(el) { var docEl = (el ? el.ownerDocument || el : 0).documentElement; return docEl ? docEl.nodeName !== "HTML" : false; }, select : document.querySelectorAll ? function(path, root, type) { root = root || document; if (!Ext.DomQuery.isXml(root)) { try { var cs = root.querySelectorAll(path); return Ext.toArray(cs); } catch (ex) {} } return Ext.DomQuery.jsSelect.call(this, path, root, type); } : function(path, root, type) { return Ext.DomQuery.jsSelect.call(this, path, root, type); }, /** * Selects a single element. * @param {String} selector The selector/xpath query * @param {Node} root (optional) The start of the query (defaults to document). * @return {Element} The DOM element which matched the selector. */ selectNode : function(path, root){ return Ext.DomQuery.select(path, root)[0]; }, /** * Selects the value of a node, optionally replacing null with the defaultValue. * @param {String} selector The selector/xpath query * @param {Node} root (optional) The start of the query (defaults to document). * @param {String} defaultValue (optional) * @return {String} */ selectValue : function(path, root, defaultValue){ path = path.replace(trimRe, ""); if(!valueCache[path]){ valueCache[path] = Ext.DomQuery.compile(path, "select"); } var n = valueCache[path](root), v; n = n[0] ? n[0] : n; // overcome a limitation of maximum textnode size // Rumored to potentially crash IE6 but has not been confirmed. // http://reference.sitepoint.com/javascript/Node/normalize // https://developer.mozilla.org/En/DOM/Node.normalize if (typeof n.normalize == 'function') n.normalize(); v = (n && n.firstChild ? n.firstChild.nodeValue : null); return ((v === null||v === undefined||v==='') ? defaultValue : v); }, /** * Selects the value of a node, parsing integers and floats. Returns the defaultValue, or 0 if none is specified. * @param {String} selector The selector/xpath query * @param {Node} root (optional) The start of the query (defaults to document). * @param {Number} defaultValue (optional) * @return {Number} */ selectNumber : function(path, root, defaultValue){ var v = Ext.DomQuery.selectValue(path, root, defaultValue || 0); return parseFloat(v); }, /** * Returns true if the passed element(s) match the passed simple selector (e.g. div.some-class or span:first-child) * @param {String/HTMLElement/Array} el An element id, element or array of elements * @param {String} selector The simple selector to test * @return {Boolean} */ is : function(el, ss){ if(typeof el == "string"){ el = document.getElementById(el); } var isArray = Ext.isArray(el), result = Ext.DomQuery.filter(isArray ? el : [el], ss); return isArray ? (result.length == el.length) : (result.length > 0); }, /** * Filters an array of elements to only include matches of a simple selector (e.g. div.some-class or span:first-child) * @param {Array} el An array of elements to filter * @param {String} selector The simple selector to test * @param {Boolean} nonMatches If true, it returns the elements that DON'T match * the selector instead of the ones that match * @return {Array} An Array of DOM elements which match the selector. If there are * no matches, and empty Array is returned. */ filter : function(els, ss, nonMatches){ ss = ss.replace(trimRe, ""); if(!simpleCache[ss]){ simpleCache[ss] = Ext.DomQuery.compile(ss, "simple"); } var result = simpleCache[ss](els); return nonMatches ? quickDiff(result, els) : result; }, /** * Collection of matching regular expressions and code snippets. * Each capture group within () will be replace the {} in the select * statement as specified by their index. */ matchers : [{ re: /^\.([\w\-]+)/, select: 'n = byClassName(n, " {1} ");' }, { re: /^\:([\w\-]+)(?:\(((?:[^\s>\/]*|.*?))\))?/, select: 'n = byPseudo(n, "{1}", "{2}");' },{ re: /^(?:([\[\{])(?:@)?([\w\-]+)\s?(?:(=|.=)\s?(["']?)(.*?)\4)?[\]\}])/, select: 'n = byAttribute(n, "{2}", "{5}", "{3}", "{1}");' }, { re: /^#([\w\-]+)/, select: 'n = byId(n, "{1}");' },{ re: /^@([\w\-]+)/, select: 'return {firstChild:{nodeValue:attrValue(n, "{1}")}};' } ], /** * Collection of operator comparison functions. The default operators are =, !=, ^=, $=, *=, %=, |= and ~=. * New operators can be added as long as the match the format c= where c is any character other than space, > <. */ operators : { "=" : function(a, v){ return a == v; }, "!=" : function(a, v){ return a != v; }, "^=" : function(a, v){ return a && a.substr(0, v.length) == v; }, "$=" : function(a, v){ return a && a.substr(a.length-v.length) == v; }, "*=" : function(a, v){ return a && a.indexOf(v) !== -1; }, "%=" : function(a, v){ return (a % v) == 0; }, "|=" : function(a, v){ return a && (a == v || a.substr(0, v.length+1) == v+'-'); }, "~=" : function(a, v){ return a && (' '+a+' ').indexOf(' '+v+' ') != -1; } }, /** *

Object hash of "pseudo class" filter functions which are used when filtering selections. Each function is passed * two parameters:

    *
  • c : Array
    An Array of DOM elements to filter.
    • *
  • v : String
    The argument (if any) supplied in the selector.
    • *
*

A filter function returns an Array of DOM elements which conform to the pseudo class.

*

In addition to the provided pseudo classes listed above such as first-child and nth-child, * developers may add additional, custom psuedo class filters to select elements according to application-specific requirements.

*

For example, to filter <a> elements to only return links to external resources:

* 
Ext.DomQuery.pseudos.external = function(c, v){
    var r = [], ri = -1;
    for(var i = 0, ci; ci = c[i]; i++){
//      Include in result set only if it's a link to an external resource
        if(ci.hostname != location.hostname){
            r[++ri] = ci;
        }
    }
    return r;
};
 * Then external links could be gathered with the following statement:
var externalLinks = Ext.select("a:external");
*/ pseudos : { "first-child" : function(c){ var r = [], ri = -1, n; for(var i = 0, ci; ci = n = c[i]; i++){ while((n = n.previousSibling) && n.nodeType != 1); if(!n){ r[++ri] = ci; } } return r; }, "last-child" : function(c){ var r = [], ri = -1, n; for(var i = 0, ci; ci = n = c[i]; i++){ while((n = n.nextSibling) && n.nodeType != 1); if(!n){ r[++ri] = ci; } } return r; }, "nth-child" : function(c, a) { var r = [], ri = -1, m = nthRe.exec(a == "even" && "2n" || a == "odd" && "2n+1" || !nthRe2.test(a) && "n+" + a || a), f = (m[1] || 1) - 0, l = m[2] - 0; for(var i = 0, n; n = c[i]; i++){ var pn = n.parentNode; if (batch != pn._batch) { var j = 0; for(var cn = pn.firstChild; cn; cn = cn.nextSibling){ if(cn.nodeType == 1){ cn.nodeIndex = ++j; } } pn._batch = batch; } if (f == 1) { if (l == 0 || n.nodeIndex == l){ r[++ri] = n; } } else if ((n.nodeIndex + l) % f == 0){ r[++ri] = n; } } return r; }, "only-child" : function(c){ var r = [], ri = -1;; for(var i = 0, ci; ci = c[i]; i++){ if(!prev(ci) && !next(ci)){ r[++ri] = ci; } } return r; }, "empty" : function(c){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ var cns = ci.childNodes, j = 0, cn, empty = true; while(cn = cns[j]){ ++j; if(cn.nodeType == 1 || cn.nodeType == 3){ empty = false; break; } } if(empty){ r[++ri] = ci; } } return r; }, "contains" : function(c, v){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if((ci.textContent||ci.innerText||'').indexOf(v) != -1){ r[++ri] = ci; } } return r; }, "nodeValue" : function(c, v){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if(ci.firstChild && ci.firstChild.nodeValue == v){ r[++ri] = ci; } } return r; }, "checked" : function(c){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if(ci.checked == true){ r[++ri] = ci; } } return r; }, "not" : function(c, ss){ return Ext.DomQuery.filter(c, ss, true); }, "any" : function(c, selectors){ var ss = selectors.split('|'), r = [], ri = -1, s; for(var i = 0, ci; ci = c[i]; i++){ for(var j = 0; s = ss[j]; j++){ if(Ext.DomQuery.is(ci, s)){ r[++ri] = ci; break; } } } return r; }, "odd" : function(c){ return this["nth-child"](c, "odd"); }, "even" : function(c){ return this["nth-child"](c, "even"); }, "nth" : function(c, a){ return c[a-1] || []; }, "first" : function(c){ return c[0] || []; }, "last" : function(c){ return c[c.length-1] || []; }, "has" : function(c, ss){ var s = Ext.DomQuery.select, r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if(s(ss, ci).length > 0){ r[++ri] = ci; } } return r; }, "next" : function(c, ss){ var is = Ext.DomQuery.is, r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ var n = next(ci); if(n && is(n, ss)){ r[++ri] = ci; } } return r; }, "prev" : function(c, ss){ var is = Ext.DomQuery.is, r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ var n = prev(ci); if(n && is(n, ss)){ r[++ri] = ci; } } return r; } } }; }(); /** * Selects an array of DOM nodes by CSS/XPath selector. Shorthand of {@link Ext.DomQuery#select} * @param {String} path The selector/xpath query * @param {Node} root (optional) The start of the query (defaults to document). * @return {Array} * @member Ext * @method query */ Ext.query = Ext.DomQuery.select; /** * @class Ext.util.DelayedTask *

The DelayedTask class provides a convenient way to "buffer" the execution of a method, * performing setTimeout where a new timeout cancels the old timeout. When called, the * task will wait the specified time period before executing. If durng that time period, * the task is called again, the original call will be cancelled. This continues so that * the function is only called a single time for each iteration.

*

This method is especially useful for things like detecting whether a user has finished * typing in a text field. An example would be performing validation on a keypress. You can * use this class to buffer the keypress events for a certain number of milliseconds, and * perform only if they stop for that amount of time. Usage:


var task = new Ext.util.DelayedTask(function(){
    alert(Ext.getDom('myInputField').value.length);
});
// Wait 500ms before calling our function. If the user presses another key 
// during that 500ms, it will be cancelled and we'll wait another 500ms.
Ext.get('myInputField').on('keypress', function(){
    task.{@link #delay}(500); 
});
 *
*

Note that we are using a DelayedTask here to illustrate a point. The configuration * option buffer for {@link Ext.util.Observable#addListener addListener/on} will * also setup a delayed task for you to buffer events.

* @constructor The parameters to this constructor serve as defaults and are not required. * @param {Function} fn (optional) The default function to call. * @param {Object} scope (optional) The default scope (The this reference) in which the * function is called. If not specified, this will refer to the browser window. * @param {Array} args (optional) The default Array of arguments. */ Ext.util.DelayedTask = function(fn, scope, args){ var me = this, id, call = function(){ clearInterval(id); id = null; fn.apply(scope, args || []); }; /** * Cancels any pending timeout and queues a new one * @param {Number} delay The milliseconds to delay * @param {Function} newFn (optional) Overrides function passed to constructor * @param {Object} newScope (optional) Overrides scope passed to constructor. Remember that if no scope * is specified, this will refer to the browser window. * @param {Array} newArgs (optional) Overrides args passed to constructor */ me.delay = function(delay, newFn, newScope, newArgs){ me.cancel(); fn = newFn || fn; scope = newScope || scope; args = newArgs || args; id = setInterval(call, delay); }; /** * Cancel the last queued timeout */ me.cancel = function(){ if(id){ clearInterval(id); id = null; } }; };/** * @class Ext.Element *

Encapsulates a DOM element, adding simple DOM manipulation facilities, normalizing for browser differences.

*

All instances of this class inherit the methods of {@link Ext.Fx} making visual effects easily available to all DOM elements.

*

Note that the events documented in this class are not Ext events, they encapsulate browser events. To * access the underlying browser event, see {@link Ext.EventObject#browserEvent}. Some older * browsers may not support the full range of events. Which events are supported is beyond the control of ExtJs.

* Usage:

// by id
var el = Ext.get("my-div");

// by DOM element reference
var el = Ext.get(myDivElement);
* Animations
*

When an element is manipulated, by default there is no animation.

* 

var el = Ext.get("my-div");

// no animation
el.setWidth(100);
 *
*

Many of the functions for manipulating an element have an optional "animate" parameter. This * parameter can be specified as boolean (true) for default animation effects.

* 

// default animation
el.setWidth(100, true);
 *
* *

To configure the effects, an object literal with animation options to use as the Element animation * configuration object can also be specified. Note that the supported Element animation configuration * options are a subset of the {@link Ext.Fx} animation options specific to Fx effects. The supported * Element animation configuration options are:

Option    Default   Description
--------- --------  ---------------------------------------------
{@link Ext.Fx#duration duration}  .35       The duration of the animation in seconds
{@link Ext.Fx#easing easing}    easeOut   The easing method
{@link Ext.Fx#callback callback}  none      A function to execute when the anim completes
{@link Ext.Fx#scope scope}     this      The scope (this) of the callback function
* * 

// Element animation options object
var opt = {
    {@link Ext.Fx#duration duration}: 1,
    {@link Ext.Fx#easing easing}: 'elasticIn',
    {@link Ext.Fx#callback callback}: this.foo,
    {@link Ext.Fx#scope scope}: this
};
// animation with some options set
el.setWidth(100, opt);
 *
*

The Element animation object being used for the animation will be set on the options * object as "anim", which allows you to stop or manipulate the animation. Here is an example:

* 

// using the "anim" property to get the Anim object
if(opt.anim.isAnimated()){
    opt.anim.stop();
}
 *
*

Also see the {@link #animate} method for another animation technique.

*

Composite (Collections of) Elements

*

For working with collections of Elements, see {@link Ext.CompositeElement}

* @constructor Create a new Element directly. * @param {String/HTMLElement} element * @param {Boolean} forceNew (optional) By default the constructor checks to see if there is already an instance of this element in the cache and if there is it returns the same instance. This will skip that check (useful for extending this class). */ (function(){ var DOC = document; Ext.Element = function(element, forceNew){ var dom = typeof element == "string" ? DOC.getElementById(element) : element, id; if(!dom) return null; id = dom.id; if(!forceNew && id && Ext.elCache[id]){ // element object already exists return Ext.elCache[id].el; } /** * The DOM element * @type HTMLElement */ this.dom = dom; /** * The DOM element ID * @type String */ this.id = id || Ext.id(dom); }; var DH = Ext.DomHelper, El = Ext.Element, EC = Ext.elCache; El.prototype = { /** * Sets the passed attributes as attributes of this element (a style attribute can be a string, object or function) * @param {Object} o The object with the attributes * @param {Boolean} useSet (optional) false to override the default setAttribute to use expandos. * @return {Ext.Element} this */ set : function(o, useSet){ var el = this.dom, attr, val, useSet = (useSet !== false) && !!el.setAttribute; for (attr in o) { if (o.hasOwnProperty(attr)) { val = o[attr]; if (attr == 'style') { DH.applyStyles(el, val); } else if (attr == 'cls') { el.className = val; } else if (useSet) { el.setAttribute(attr, val); } else { el[attr] = val; } } } return this; }, // Mouse events /** * @event click * Fires when a mouse click is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event contextmenu * Fires when a right click is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event dblclick * Fires when a mouse double click is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mousedown * Fires when a mousedown is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseup * Fires when a mouseup is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseover * Fires when a mouseover is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mousemove * Fires when a mousemove is detected with the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseout * Fires when a mouseout is detected with the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseenter * Fires when the mouse enters the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseleave * Fires when the mouse leaves the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // Keyboard events /** * @event keypress * Fires when a keypress is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event keydown * Fires when a keydown is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event keyup * Fires when a keyup is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // HTML frame/object events /** * @event load * Fires when the user agent finishes loading all content within the element. Only supported by window, frames, objects and images. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event unload * Fires when the user agent removes all content from a window or frame. For elements, it fires when the target element or any of its content has been removed. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event abort * Fires when an object/image is stopped from loading before completely loaded. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event error * Fires when an object/image/frame cannot be loaded properly. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event resize * Fires when a document view is resized. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event scroll * Fires when a document view is scrolled. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // Form events /** * @event select * Fires when a user selects some text in a text field, including input and textarea. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event change * Fires when a control loses the input focus and its value has been modified since gaining focus. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event submit * Fires when a form is submitted. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event reset * Fires when a form is reset. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event focus * Fires when an element receives focus either via the pointing device or by tab navigation. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event blur * Fires when an element loses focus either via the pointing device or by tabbing navigation. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // User Interface events /** * @event DOMFocusIn * Where supported. Similar to HTML focus event, but can be applied to any focusable element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMFocusOut * Where supported. Similar to HTML blur event, but can be applied to any focusable element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMActivate * Where supported. Fires when an element is activated, for instance, through a mouse click or a keypress. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // DOM Mutation events /** * @event DOMSubtreeModified * Where supported. Fires when the subtree is modified. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeInserted * Where supported. Fires when a node has been added as a child of another node. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeRemoved * Where supported. Fires when a descendant node of the element is removed. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeRemovedFromDocument * Where supported. Fires when a node is being removed from a document. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeInsertedIntoDocument * Where supported. Fires when a node is being inserted into a document. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMAttrModified * Where supported. Fires when an attribute has been modified. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMCharacterDataModified * Where supported. Fires when the character data has been modified. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * The default unit to append to CSS values where a unit isn't provided (defaults to px). * @type String */ defaultUnit : "px", /** * Returns true if this element matches the passed simple selector (e.g. div.some-class or span:first-child) * @param {String} selector The simple selector to test * @return {Boolean} True if this element matches the selector, else false */ is : function(simpleSelector){ return Ext.DomQuery.is(this.dom, simpleSelector); }, /** * Tries to focus the element. Any exceptions are caught and ignored. * @param {Number} defer (optional) Milliseconds to defer the focus * @return {Ext.Element} this */ focus : function(defer, /* private */ dom) { var me = this, dom = dom || me.dom; try{ if(Number(defer)){ me.focus.defer(defer, null, [null, dom]); }else{ dom.focus(); } }catch(e){} return me; }, /** * Tries to blur the element. Any exceptions are caught and ignored. * @return {Ext.Element} this */ blur : function() { try{ this.dom.blur(); }catch(e){} return this; }, /** * Returns the value of the "value" attribute * @param {Boolean} asNumber true to parse the value as a number * @return {String/Number} */ getValue : function(asNumber){ var val = this.dom.value; return asNumber ? parseInt(val, 10) : val; }, /** * Appends an event handler to this element. The shorthand version {@link #on} is equivalent. * @param {String} eventName The name of event to handle. * @param {Function} fn The handler function the event invokes. This function is passed * the following parameters:
    *
  • evt : EventObject
    The {@link Ext.EventObject EventObject} describing the event.
    • *
  • el : HtmlElement
    The DOM element which was the target of the event. * Note that this may be filtered by using the delegate option.
    • *
  • o : Object
    The options object from the addListener call.
    • *
* @param {Object} scope (optional) The scope (this reference) in which the handler function is executed. * If omitted, defaults to this Element.. * @param {Object} options (optional) An object containing handler configuration properties. * This may contain any of the following properties:
    *
  • scope Object :
    The scope (this reference) in which the handler function is executed. * If omitted, defaults to this Element.
    • *
  • delegate String:
    A simple selector to filter the target or look for a descendant of the target. See below for additional details.
    • *
  • stopEvent Boolean:
    True to stop the event. That is stop propagation, and prevent the default action.
    • *
  • preventDefault Boolean:
    True to prevent the default action
    • *
  • stopPropagation Boolean:
    True to prevent event propagation
    • *
  • normalized Boolean:
    False to pass a browser event to the handler function instead of an Ext.EventObject
    • *
  • target Ext.Element:
    Only call the handler if the event was fired on the target Element, not if the event was bubbled up from a child node.
    • *
  • delay Number:
    The number of milliseconds to delay the invocation of the handler after the event fires.
    • *
  • single Boolean:
    True to add a handler to handle just the next firing of the event, and then remove itself.
    • *
  • buffer Number:
    Causes the handler to be scheduled to run in an {@link Ext.util.DelayedTask} delayed * by the specified number of milliseconds. If the event fires again within that time, the original * handler is not invoked, but the new handler is scheduled in its place.
    • *

*

* Combining Options
* In the following examples, the shorthand form {@link #on} is used rather than the more verbose * addListener. The two are equivalent. Using the options argument, it is possible to combine different * types of listeners:
*
* A delayed, one-time listener that auto stops the event and adds a custom argument (forumId) to the * options object. The options object is available as the third parameter in the handler function.

* Code:

el.on('click', this.onClick, this, {
    single: true,
    delay: 100,
    stopEvent : true,
    forumId: 4
});

*

* Attaching multiple handlers in 1 call
* The method also allows for a single argument to be passed which is a config object containing properties * which specify multiple handlers.

*

* Code:


el.on({
    'click' : {
        fn: this.onClick,
        scope: this,
        delay: 100
    },
    'mouseover' : {
        fn: this.onMouseOver,
        scope: this
    },
    'mouseout' : {
        fn: this.onMouseOut,
        scope: this
    }
});
*

* Or a shorthand syntax:
* Code:


el.on({
    'click' : this.onClick,
    'mouseover' : this.onMouseOver,
    'mouseout' : this.onMouseOut,
    scope: this
});
     *

*

delegate

*

This is a configuration option that you can pass along when registering a handler for * an event to assist with event delegation. Event delegation is a technique that is used to * reduce memory consumption and prevent exposure to memory-leaks. By registering an event * for a container element as opposed to each element within a container. By setting this * configuration option to a simple selector, the target element will be filtered to look for * a descendant of the target. * For example:


// using this markup:
<div id='elId'>
    <p id='p1'>paragraph one</p>
    <p id='p2' class='clickable'>paragraph two</p>
    <p id='p3'>paragraph three</p>
</div>
// utilize event delegation to registering just one handler on the container element:
el = Ext.get('elId');
el.on(
    'click',
    function(e,t) {
        // handle click
        console.info(t.id); // 'p2'
    },
    this,
    {
        // filter the target element to be a descendant with the class 'clickable'
        delegate: '.clickable'
    }
);
     *

* @return {Ext.Element} this */ addListener : function(eventName, fn, scope, options){ Ext.EventManager.on(this.dom, eventName, fn, scope || this, options); return this; }, /** * Removes an event handler from this element. The shorthand version {@link #un} is equivalent. * Note: if a scope was explicitly specified when {@link #addListener adding} the * listener, the same scope must be specified here. * Example: * 

el.removeListener('click', this.handlerFn);
// or
el.un('click', this.handlerFn);
* @param {String} eventName The name of the event from which to remove the handler. * @param {Function} fn The handler function to remove. This must be a reference to the function passed into the {@link #addListener} call. * @param {Object} scope If a scope (this reference) was specified when the listener was added, * then this must refer to the same object. * @return {Ext.Element} this */ removeListener : function(eventName, fn, scope){ Ext.EventManager.removeListener(this.dom, eventName, fn, scope || this); return this; }, /** * Removes all previous added listeners from this element * @return {Ext.Element} this */ removeAllListeners : function(){ Ext.EventManager.removeAll(this.dom); return this; }, /** * Recursively removes all previous added listeners from this element and its children * @return {Ext.Element} this */ purgeAllListeners : function() { Ext.EventManager.purgeElement(this, true); return this; }, /** * @private Test if size has a unit, otherwise appends the default */ addUnits : function(size){ if(size === "" || size == "auto" || size === undefined){ size = size || ''; } else if(!isNaN(size) || !unitPattern.test(size)){ size = size + (this.defaultUnit || 'px'); } return size; }, /** *

Updates the innerHTML of this Element * from a specified URL. Note that this is subject to the Same Origin Policy

*

Updating innerHTML of an element will not execute embedded <script> elements. This is a browser restriction.

* @param {Mixed} options. Either a sring containing the URL from which to load the HTML, or an {@link Ext.Ajax#request} options object specifying * exactly how to request the HTML. * @return {Ext.Element} this */ load : function(url, params, cb){ Ext.Ajax.request(Ext.apply({ params: params, url: url.url || url, callback: cb, el: this.dom, indicatorText: url.indicatorText || '' }, Ext.isObject(url) ? url : {})); return this; }, /** * Tests various css rules/browsers to determine if this element uses a border box * @return {Boolean} */ isBorderBox : function(){ return Ext.isBorderBox || Ext.isForcedBorderBox || noBoxAdjust[(this.dom.tagName || "").toLowerCase()]; }, /** *

Removes this element's dom reference. Note that event and cache removal is handled at {@link Ext#removeNode}

*/ remove : function(){ var me = this, dom = me.dom; if (dom) { delete me.dom; Ext.removeNode(dom); } }, /** * Sets up event handlers to call the passed functions when the mouse is moved into and out of the Element. * @param {Function} overFn The function to call when the mouse enters the Element. * @param {Function} outFn The function to call when the mouse leaves the Element. * @param {Object} scope (optional) The scope (this reference) in which the functions are executed. Defaults to the Element's DOM element. * @param {Object} options (optional) Options for the listener. See {@link Ext.util.Observable#addListener the options parameter}. * @return {Ext.Element} this */ hover : function(overFn, outFn, scope, options){ var me = this; me.on('mouseenter', overFn, scope || me.dom, options); me.on('mouseleave', outFn, scope || me.dom, options); return me; }, /** * Returns true if this element is an ancestor of the passed element * @param {HTMLElement/String} el The element to check * @return {Boolean} True if this element is an ancestor of el, else false */ contains : function(el){ return !el ? false : Ext.lib.Dom.isAncestor(this.dom, el.dom ? el.dom : el); }, /** * Returns the value of a namespaced attribute from the element's underlying DOM node. * @param {String} namespace The namespace in which to look for the attribute * @param {String} name The attribute name * @return {String} The attribute value * @deprecated */ getAttributeNS : function(ns, name){ return this.getAttribute(name, ns); }, /** * Returns the value of an attribute from the element's underlying DOM node. * @param {String} name The attribute name * @param {String} namespace (optional) The namespace in which to look for the attribute * @return {String} The attribute value */ getAttribute: (function(){ var test = document.createElement('table'), isBrokenOnTable = false, hasGetAttribute = 'getAttribute' in test, unknownRe = /undefined|unknown/; if (hasGetAttribute) { try { test.getAttribute('ext:qtip'); } catch (e) { isBrokenOnTable = true; } return function(name, ns) { var el = this.dom, value; if (el.getAttributeNS) { value = el.getAttributeNS(ns, name) || null; } if (value == null) { if (ns) { if (isBrokenOnTable && el.tagName.toUpperCase() == 'TABLE') { try { value = el.getAttribute(ns + ':' + name); } catch (e) { value = ''; } } else { value = el.getAttribute(ns + ':' + name); } } else { value = el.getAttribute(name) || el[name]; } } return value || ''; }; } else { return function(name, ns) { var el = this.om, value, attribute; if (ns) { attribute = el[ns + ':' + name]; value = unknownRe.test(typeof attribute) ? undefined : attribute; } else { value = el[name]; } return value || ''; }; } test = null; })(), /** * Update the innerHTML of this element * @param {String} html The new HTML * @return {Ext.Element} this */ update : function(html) { if (this.dom) { this.dom.innerHTML = html; } return this; } }; var ep = El.prototype; El.addMethods = function(o){ Ext.apply(ep, o); }; /** * Appends an event handler (shorthand for {@link #addListener}). * @param {String} eventName The name of event to handle. * @param {Function} fn The handler function the event invokes. * @param {Object} scope (optional) The scope (this reference) in which the handler function is executed. * @param {Object} options (optional) An object containing standard {@link #addListener} options * @member Ext.Element * @method on */ ep.on = ep.addListener; /** * Removes an event handler from this element (see {@link #removeListener} for additional notes). * @param {String} eventName The name of the event from which to remove the handler. * @param {Function} fn The handler function to remove. This must be a reference to the function passed into the {@link #addListener} call. * @param {Object} scope If a scope (this reference) was specified when the listener was added, * then this must refer to the same object. * @return {Ext.Element} this * @member Ext.Element * @method un */ ep.un = ep.removeListener; /** * true to automatically adjust width and height settings for box-model issues (default to true) */ ep.autoBoxAdjust = true; // private var unitPattern = /\d+(px|em|%|en|ex|pt|in|cm|mm|pc)$/i, docEl; /** * Retrieves Ext.Element objects. *

This method does not retrieve {@link Ext.Component Component}s. This method * retrieves Ext.Element objects which encapsulate DOM elements. To retrieve a Component by * its ID, use {@link Ext.ComponentMgr#get}.

*

Uses simple caching to consistently return the same object. Automatically fixes if an * object was recreated with the same id via AJAX or DOM.

* @param {Mixed} el The id of the node, a DOM Node or an existing Element. * @return {Element} The Element object (or null if no matching element was found) * @static * @member Ext.Element * @method get */ El.get = function(el){ var ex, elm, id; if(!el){ return null; } if (typeof el == "string") { // element id if (!(elm = DOC.getElementById(el))) { return null; } if (EC[el] && EC[el].el) { ex = EC[el].el; ex.dom = elm; } else { ex = El.addToCache(new El(elm)); } return ex; } else if (el.tagName) { // dom element if(!(id = el.id)){ id = Ext.id(el); } if (EC[id] && EC[id].el) { ex = EC[id].el; ex.dom = el; } else { ex = El.addToCache(new El(el)); } return ex; } else if (el instanceof El) { if(el != docEl){ // refresh dom element in case no longer valid, // catch case where it hasn't been appended // If an el instance is passed, don't pass to getElementById without some kind of id if (Ext.isIE && (el.id == undefined || el.id == '')) { el.dom = el.dom; } else { el.dom = DOC.getElementById(el.id) || el.dom; } } return el; } else if(el.isComposite) { return el; } else if(Ext.isArray(el)) { return El.select(el); } else if(el == DOC) { // create a bogus element object representing the document object if(!docEl){ var f = function(){}; f.prototype = El.prototype; docEl = new f(); docEl.dom = DOC; } return docEl; } return null; }; El.addToCache = function(el, id){ id = id || el.id; EC[id] = { el: el, data: {}, events: {} }; return el; }; // private method for getting and setting element data El.data = function(el, key, value){ el = El.get(el); if (!el) { return null; } var c = EC[el.id].data; if(arguments.length == 2){ return c[key]; }else{ return (c[key] = value); } }; // private // Garbage collection - uncache elements/purge listeners on orphaned elements // so we don't hold a reference and cause the browser to retain them function garbageCollect(){ if(!Ext.enableGarbageCollector){ clearInterval(El.collectorThreadId); } else { var eid, el, d, o; for(eid in EC){ o = EC[eid]; if(o.skipGC){ Ext.EventManager.removeFromSpecialCache(o.el); continue; } el = o.el; d = el.dom; // ------------------------------------------------------- // Determining what is garbage: // ------------------------------------------------------- // !d // dom node is null, definitely garbage // ------------------------------------------------------- // !d.parentNode // no parentNode == direct orphan, definitely garbage // ------------------------------------------------------- // !d.offsetParent && !document.getElementById(eid) // display none elements have no offsetParent so we will // also try to look it up by it's id. However, check // offsetParent first so we don't do unneeded lookups. // This enables collection of elements that are not orphans // directly, but somewhere up the line they have an orphan // parent. // ------------------------------------------------------- if(!d || !d.parentNode || (!d.offsetParent && !DOC.getElementById(eid))){ if(Ext.enableListenerCollection){ Ext.EventManager.removeAll(d); } delete EC[eid]; } } // Cleanup IE Object leaks if (Ext.isIE) { var t = {}; for (eid in EC) { t[eid] = EC[eid]; } EC = Ext.elCache = t; } } } El.collectorThreadId = setInterval(garbageCollect, 30000); var flyFn = function(){}; flyFn.prototype = El.prototype; // dom is optional El.Flyweight = function(dom){ this.dom = dom; }; El.Flyweight.prototype = new flyFn(); El.Flyweight.prototype.isFlyweight = true; El._flyweights = {}; /** *

Gets the globally shared flyweight Element, with the passed node as the active element. Do not store a reference to this element - * the dom node can be overwritten by other code. Shorthand of {@link Ext.Element#fly}

*

Use this to make one-time references to DOM elements which are not going to be accessed again either by * application code, or by Ext's classes. If accessing an element which will be processed regularly, then {@link Ext#get} * will be more appropriate to take advantage of the caching provided by the Ext.Element class.

* @param {String/HTMLElement} el The dom node or id * @param {String} named (optional) Allows for creation of named reusable flyweights to prevent conflicts * (e.g. internally Ext uses "_global") * @return {Element} The shared Element object (or null if no matching element was found) * @member Ext.Element * @method fly */ El.fly = function(el, named){ var ret = null; named = named || '_global'; if (el = Ext.getDom(el)) { (El._flyweights[named] = El._flyweights[named] || new El.Flyweight()).dom = el; ret = El._flyweights[named]; } return ret; }; /** * Retrieves Ext.Element objects. *

This method does not retrieve {@link Ext.Component Component}s. This method * retrieves Ext.Element objects which encapsulate DOM elements. To retrieve a Component by * its ID, use {@link Ext.ComponentMgr#get}.

*

Uses simple caching to consistently return the same object. Automatically fixes if an * object was recreated with the same id via AJAX or DOM.

* Shorthand of {@link Ext.Element#get} * @param {Mixed} el The id of the node, a DOM Node or an existing Element. * @return {Element} The Element object (or null if no matching element was found) * @member Ext * @method get */ Ext.get = El.get; /** *

Gets the globally shared flyweight Element, with the passed node as the active element. Do not store a reference to this element - * the dom node can be overwritten by other code. Shorthand of {@link Ext.Element#fly}

*

Use this to make one-time references to DOM elements which are not going to be accessed again either by * application code, or by Ext's classes. If accessing an element which will be processed regularly, then {@link Ext#get} * will be more appropriate to take advantage of the caching provided by the Ext.Element class.

* @param {String/HTMLElement} el The dom node or id * @param {String} named (optional) Allows for creation of named reusable flyweights to prevent conflicts * (e.g. internally Ext uses "_global") * @return {Element} The shared Element object (or null if no matching element was found) * @member Ext * @method fly */ Ext.fly = El.fly; // speedy lookup for elements never to box adjust var noBoxAdjust = Ext.isStrict ? { select:1 } : { input:1, select:1, textarea:1 }; if(Ext.isIE || Ext.isGecko){ noBoxAdjust['button'] = 1; } })(); /** * @class Ext.Element */ Ext.Element.addMethods(function(){ var PARENTNODE = 'parentNode', NEXTSIBLING = 'nextSibling', PREVIOUSSIBLING = 'previousSibling', DQ = Ext.DomQuery, GET = Ext.get; return { /** * Looks at this node and then at parent nodes for a match of the passed simple selector (e.g. div.some-class or span:first-child) * @param {String} selector The simple selector to test * @param {Number/Mixed} maxDepth (optional) The max depth to search as a number or element (defaults to 50 || document.body) * @param {Boolean} returnEl (optional) True to return a Ext.Element object instead of DOM node * @return {HTMLElement} The matching DOM node (or null if no match was found) */ findParent : function(simpleSelector, maxDepth, returnEl){ var p = this.dom, b = document.body, depth = 0, stopEl; if(Ext.isGecko && Object.prototype.toString.call(p) == '[object XULElement]') { return null; } maxDepth = maxDepth || 50; if (isNaN(maxDepth)) { stopEl = Ext.getDom(maxDepth); maxDepth = Number.MAX_VALUE; } while(p && p.nodeType == 1 && depth < maxDepth && p != b && p != stopEl){ if(DQ.is(p, simpleSelector)){ return returnEl ? GET(p) : p; } depth++; p = p.parentNode; } return null; }, /** * Looks at parent nodes for a match of the passed simple selector (e.g. div.some-class or span:first-child) * @param {String} selector The simple selector to test * @param {Number/Mixed} maxDepth (optional) The max depth to search as a number or element (defaults to 10 || document.body) * @param {Boolean} returnEl (optional) True to return a Ext.Element object instead of DOM node * @return {HTMLElement} The matching DOM node (or null if no match was found) */ findParentNode : function(simpleSelector, maxDepth, returnEl){ var p = Ext.fly(this.dom.parentNode, '_internal'); return p ? p.findParent(simpleSelector, maxDepth, returnEl) : null; }, /** * Walks up the dom looking for a parent node that matches the passed simple selector (e.g. div.some-class or span:first-child). * This is a shortcut for findParentNode() that always returns an Ext.Element. * @param {String} selector The simple selector to test * @param {Number/Mixed} maxDepth (optional) The max depth to search as a number or element (defaults to 10 || document.body) * @return {Ext.Element} The matching DOM node (or null if no match was found) */ up : function(simpleSelector, maxDepth){ return this.findParentNode(simpleSelector, maxDepth, true); }, /** * Creates a {@link Ext.CompositeElement} for child nodes based on the passed CSS selector (the selector should not contain an id). * @param {String} selector The CSS selector * @return {CompositeElement/CompositeElementLite} The composite element */ select : function(selector){ return Ext.Element.select(selector, this.dom); }, /** * Selects child nodes based on the passed CSS selector (the selector should not contain an id). * @param {String} selector The CSS selector * @return {Array} An array of the matched nodes */ query : function(selector){ return DQ.select(selector, this.dom); }, /** * Selects a single child at any depth below this element based on the passed CSS selector (the selector should not contain an id). * @param {String} selector The CSS selector * @param {Boolean} returnDom (optional) True to return the DOM node instead of Ext.Element (defaults to false) * @return {HTMLElement/Ext.Element} The child Ext.Element (or DOM node if returnDom = true) */ child : function(selector, returnDom){ var n = DQ.selectNode(selector, this.dom); return returnDom ? n : GET(n); }, /** * Selects a single *direct* child based on the passed CSS selector (the selector should not contain an id). * @param {String} selector The CSS selector * @param {Boolean} returnDom (optional) True to return the DOM node instead of Ext.Element (defaults to false) * @return {HTMLElement/Ext.Element} The child Ext.Element (or DOM node if returnDom = true) */ down : function(selector, returnDom){ var n = DQ.selectNode(" > " + selector, this.dom); return returnDom ? n : GET(n); }, /** * Gets the parent node for this element, optionally chaining up trying to match a selector * @param {String} selector (optional) Find a parent node that matches the passed simple selector * @param {Boolean} returnDom (optional) True to return a raw dom node instead of an Ext.Element * @return {Ext.Element/HTMLElement} The parent node or null */ parent : function(selector, returnDom){ return this.matchNode(PARENTNODE, PARENTNODE, selector, returnDom); }, /** * Gets the next sibling, skipping text nodes * @param {String} selector (optional) Find the next sibling that matches the passed simple selector * @param {Boolean} returnDom (optional) True to return a raw dom node instead of an Ext.Element * @return {Ext.Element/HTMLElement} The next sibling or null */ next : function(selector, returnDom){ return this.matchNode(NEXTSIBLING, NEXTSIBLING, selector, returnDom); }, /** * Gets the previous sibling, skipping text nodes * @param {String} selector (optional) Find the previous sibling that matches the passed simple selector * @param {Boolean} returnDom (optional) True to return a raw dom node instead of an Ext.Element * @return {Ext.Element/HTMLElement} The previous sibling or null */ prev : function(selector, returnDom){ return this.matchNode(PREVIOUSSIBLING, PREVIOUSSIBLING, selector, returnDom); }, /** * Gets the first child, skipping text nodes * @param {String} selector (optional) Find the next sibling that matches the passed simple selector * @param {Boolean} returnDom (optional) True to return a raw dom node instead of an Ext.Element * @return {Ext.Element/HTMLElement} The first child or null */ first : function(selector, returnDom){ return this.matchNode(NEXTSIBLING, 'firstChild', selector, returnDom); }, /** * Gets the last child, skipping text nodes * @param {String} selector (optional) Find the previous sibling that matches the passed simple selector * @param {Boolean} returnDom (optional) True to return a raw dom node instead of an Ext.Element * @return {Ext.Element/HTMLElement} The last child or null */ last : function(selector, returnDom){ return this.matchNode(PREVIOUSSIBLING, 'lastChild', selector, returnDom); }, matchNode : function(dir, start, selector, returnDom){ var n = this.dom[start]; while(n){ if(n.nodeType == 1 && (!selector || DQ.is(n, selector))){ return !returnDom ? GET(n) : n; } n = n[dir]; } return null; } }; }());/** * @class Ext.Element */ Ext.Element.addMethods( function() { var GETDOM = Ext.getDom, GET = Ext.get, DH = Ext.DomHelper; return { /** * Appends the passed element(s) to this element * @param {String/HTMLElement/Array/Element/CompositeElement} el * @return {Ext.Element} this */ appendChild: function(el){ return GET(el).appendTo(this); }, /** * Appends this element to the passed element * @param {Mixed} el The new parent element * @return {Ext.Element} this */ appendTo: function(el){ GETDOM(el).appendChild(this.dom); return this; }, /** * Inserts this element before the passed element in the DOM * @param {Mixed} el The element before which this element will be inserted * @return {Ext.Element} this */ insertBefore: function(el){ (el = GETDOM(el)).parentNode.insertBefore(this.dom, el); return this; }, /** * Inserts this element after the passed element in the DOM * @param {Mixed} el The element to insert after * @return {Ext.Element} this */ insertAfter: function(el){ (el = GETDOM(el)).parentNode.insertBefore(this.dom, el.nextSibling); return this; }, /** * Inserts (or creates) an element (or DomHelper config) as the first child of this element * @param {Mixed/Object} el The id or element to insert or a DomHelper config to create and insert * @return {Ext.Element} The new child */ insertFirst: function(el, returnDom){ el = el || {}; if(el.nodeType || el.dom || typeof el == 'string'){ // element el = GETDOM(el); this.dom.insertBefore(el, this.dom.firstChild); return !returnDom ? GET(el) : el; }else{ // dh config return this.createChild(el, this.dom.firstChild, returnDom); } }, /** * Replaces the passed element with this element * @param {Mixed} el The element to replace * @return {Ext.Element} this */ replace: function(el){ el = GET(el); this.insertBefore(el); el.remove(); return this; }, /** * Replaces this element with the passed element * @param {Mixed/Object} el The new element or a DomHelper config of an element to create * @return {Ext.Element} this */ replaceWith: function(el){ var me = this; if(el.nodeType || el.dom || typeof el == 'string'){ el = GETDOM(el); me.dom.parentNode.insertBefore(el, me.dom); }else{ el = DH.insertBefore(me.dom, el); } delete Ext.elCache[me.id]; Ext.removeNode(me.dom); me.id = Ext.id(me.dom = el); Ext.Element.addToCache(me.isFlyweight ? new Ext.Element(me.dom) : me); return me; }, /** * Creates the passed DomHelper config and appends it to this element or optionally inserts it before the passed child element. * @param {Object} config DomHelper element config object. If no tag is specified (e.g., {tag:'input'}) then a div will be * automatically generated with the specified attributes. * @param {HTMLElement} insertBefore (optional) a child element of this element * @param {Boolean} returnDom (optional) true to return the dom node instead of creating an Element * @return {Ext.Element} The new child element */ createChild: function(config, insertBefore, returnDom){ config = config || {tag:'div'}; return insertBefore ? DH.insertBefore(insertBefore, config, returnDom !== true) : DH[!this.dom.firstChild ? 'overwrite' : 'append'](this.dom, config, returnDom !== true); }, /** * Creates and wraps this element with another element * @param {Object} config (optional) DomHelper element config object for the wrapper element or null for an empty div * @param {Boolean} returnDom (optional) True to return the raw DOM element instead of Ext.Element * @return {HTMLElement/Element} The newly created wrapper element */ wrap: function(config, returnDom){ var newEl = DH.insertBefore(this.dom, config || {tag: "div"}, !returnDom); newEl.dom ? newEl.dom.appendChild(this.dom) : newEl.appendChild(this.dom); return newEl; }, /** * Inserts an html fragment into this element * @param {String} where Where to insert the html in relation to this element - beforeBegin, afterBegin, beforeEnd, afterEnd. * @param {String} html The HTML fragment * @param {Boolean} returnEl (optional) True to return an Ext.Element (defaults to false) * @return {HTMLElement/Ext.Element} The inserted node (or nearest related if more than 1 inserted) */ insertHtml : function(where, html, returnEl){ var el = DH.insertHtml(where, this.dom, html); return returnEl ? Ext.get(el) : el; } }; }());/** * @class Ext.Element */ Ext.Element.addMethods(function(){ // local style camelizing for speed var supports = Ext.supports, propCache = {}, camelRe = /(-[a-z])/gi, view = document.defaultView, opacityRe = /alpha\(opacity=(.*)\)/i, trimRe = /^\s+|\s+$/g, EL = Ext.Element, spacesRe = /\s+/, wordsRe = /\w/g, PADDING = "padding", MARGIN = "margin", BORDER = "border", LEFT = "-left", RIGHT = "-right", TOP = "-top", BOTTOM = "-bottom", WIDTH = "-width", MATH = Math, HIDDEN = 'hidden', ISCLIPPED = 'isClipped', OVERFLOW = 'overflow', OVERFLOWX = 'overflow-x', OVERFLOWY = 'overflow-y', ORIGINALCLIP = 'originalClip', // special markup used throughout Ext when box wrapping elements borders = {l: BORDER + LEFT + WIDTH, r: BORDER + RIGHT + WIDTH, t: BORDER + TOP + WIDTH, b: BORDER + BOTTOM + WIDTH}, paddings = {l: PADDING + LEFT, r: PADDING + RIGHT, t: PADDING + TOP, b: PADDING + BOTTOM}, margins = {l: MARGIN + LEFT, r: MARGIN + RIGHT, t: MARGIN + TOP, b: MARGIN + BOTTOM}, data = Ext.Element.data; // private function camelFn(m, a) { return a.charAt(1).toUpperCase(); } function chkCache(prop) { return propCache[prop] || (propCache[prop] = prop == 'float' ? (supports.cssFloat ? 'cssFloat' : 'styleFloat') : prop.replace(camelRe, camelFn)); } return { // private ==> used by Fx adjustWidth : function(width) { var me = this; var isNum = (typeof width == "number"); if(isNum && me.autoBoxAdjust && !me.isBorderBox()){ width -= (me.getBorderWidth("lr") + me.getPadding("lr")); } return (isNum && width < 0) ? 0 : width; }, // private ==> used by Fx adjustHeight : function(height) { var me = this; var isNum = (typeof height == "number"); if(isNum && me.autoBoxAdjust && !me.isBorderBox()){ height -= (me.getBorderWidth("tb") + me.getPadding("tb")); } return (isNum && height < 0) ? 0 : height; }, /** * Adds one or more CSS classes to the element. Duplicate classes are automatically filtered out. * @param {String/Array} className The CSS class to add, or an array of classes * @return {Ext.Element} this */ addClass : function(className){ var me = this, i, len, v, cls = []; // Separate case is for speed if (!Ext.isArray(className)) { if (typeof className == 'string' && !this.hasClass(className)) { me.dom.className += " " + className; } } else { for (i = 0, len = className.length; i < len; i++) { v = className[i]; if (typeof v == 'string' && (' ' + me.dom.className + ' ').indexOf(' ' + v + ' ') == -1) { cls.push(v); } } if (cls.length) { me.dom.className += " " + cls.join(" "); } } return me; }, /** * Removes one or more CSS classes from the element. * @param {String/Array} className The CSS class to remove, or an array of classes * @return {Ext.Element} this */ removeClass : function(className){ var me = this, i, idx, len, cls, elClasses; if (!Ext.isArray(className)){ className = [className]; } if (me.dom && me.dom.className) { elClasses = me.dom.className.replace(trimRe, '').split(spacesRe); for (i = 0, len = className.length; i < len; i++) { cls = className[i]; if (typeof cls == 'string') { cls = cls.replace(trimRe, ''); idx = elClasses.indexOf(cls); if (idx != -1) { elClasses.splice(idx, 1); } } } me.dom.className = elClasses.join(" "); } return me; }, /** * Adds one or more CSS classes to this element and removes the same class(es) from all siblings. * @param {String/Array} className The CSS class to add, or an array of classes * @return {Ext.Element} this */ radioClass : function(className){ var cn = this.dom.parentNode.childNodes, v, i, len; className = Ext.isArray(className) ? className : [className]; for (i = 0, len = cn.length; i < len; i++) { v = cn[i]; if (v && v.nodeType == 1) { Ext.fly(v, '_internal').removeClass(className); } }; return this.addClass(className); }, /** * Toggles the specified CSS class on this element (removes it if it already exists, otherwise adds it). * @param {String} className The CSS class to toggle * @return {Ext.Element} this */ toggleClass : function(className){ return this.hasClass(className) ? this.removeClass(className) : this.addClass(className); }, /** * Checks if the specified CSS class exists on this element's DOM node. * @param {String} className The CSS class to check for * @return {Boolean} True if the class exists, else false */ hasClass : function(className){ return className && (' '+this.dom.className+' ').indexOf(' '+className+' ') != -1; }, /** * Replaces a CSS class on the element with another. If the old name does not exist, the new name will simply be added. * @param {String} oldClassName The CSS class to replace * @param {String} newClassName The replacement CSS class * @return {Ext.Element} this */ replaceClass : function(oldClassName, newClassName){ return this.removeClass(oldClassName).addClass(newClassName); }, isStyle : function(style, val) { return this.getStyle(style) == val; }, /** * Normalizes currentStyle and computedStyle. * @param {String} property The style property whose value is returned. * @return {String} The current value of the style property for this element. */ getStyle : function(){ return view && view.getComputedStyle ? function(prop){ var el = this.dom, v, cs, out, display; if(el == document){ return null; } prop = chkCache(prop); out = (v = el.style[prop]) ? v : (cs = view.getComputedStyle(el, "")) ? cs[prop] : null; // Ignore cases when the margin is correctly reported as 0, the bug only shows // numbers larger. if(prop == 'marginRight' && out != '0px' && !supports.correctRightMargin){ display = el.style.display; el.style.display = 'inline-block'; out = view.getComputedStyle(el, '').marginRight; el.style.display = display; } if(prop == 'backgroundColor' && out == 'rgba(0, 0, 0, 0)' && !supports.correctTransparentColor){ out = 'transparent'; } return out; } : function(prop){ var el = this.dom, m, cs; if(el == document) return null; if (prop == 'opacity') { if (el.style.filter.match) { if(m = el.style.filter.match(opacityRe)){ var fv = parseFloat(m[1]); if(!isNaN(fv)){ return fv ? fv / 100 : 0; } } } return 1; } prop = chkCache(prop); return el.style[prop] || ((cs = el.currentStyle) ? cs[prop] : null); }; }(), /** * Return the CSS color for the specified CSS attribute. rgb, 3 digit (like #fff) and valid values * are convert to standard 6 digit hex color. * @param {String} attr The css attribute * @param {String} defaultValue The default value to use when a valid color isn't found * @param {String} prefix (optional) defaults to #. Use an empty string when working with * color anims. */ getColor : function(attr, defaultValue, prefix){ var v = this.getStyle(attr), color = (typeof prefix != 'undefined') ? prefix : '#', h; if(!v || (/transparent|inherit/.test(v))) { return defaultValue; } if(/^r/.test(v)){ Ext.each(v.slice(4, v.length -1).split(','), function(s){ h = parseInt(s, 10); color += (h < 16 ? '0' : '') + h.toString(16); }); }else{ v = v.replace('#', ''); color += v.length == 3 ? v.replace(/^(\w)(\w)(\w)$/, '$1$1$2$2$3$3') : v; } return(color.length > 5 ? color.toLowerCase() : defaultValue); }, /** * Wrapper for setting style properties, also takes single object parameter of multiple styles. * @param {String/Object} property The style property to be set, or an object of multiple styles. * @param {String} value (optional) The value to apply to the given property, or null if an object was passed. * @return {Ext.Element} this */ setStyle : function(prop, value){ var tmp, style; if (typeof prop != 'object') { tmp = {}; tmp[prop] = value; prop = tmp; } for (style in prop) { value = prop[style]; style == 'opacity' ? this.setOpacity(value) : this.dom.style[chkCache(style)] = value; } return this; }, /** * Set the opacity of the element * @param {Float} opacity The new opacity. 0 = transparent, .5 = 50% visibile, 1 = fully visible, etc * @param {Boolean/Object} animate (optional) a standard Element animation config object or true for * the default animation ({duration: .35, easing: 'easeIn'}) * @return {Ext.Element} this */ setOpacity : function(opacity, animate){ var me = this, s = me.dom.style; if(!animate || !me.anim){ if(Ext.isIE9m){ var opac = opacity < 1 ? 'alpha(opacity=' + opacity * 100 + ')' : '', val = s.filter.replace(opacityRe, '').replace(trimRe, ''); s.zoom = 1; s.filter = val + (val.length > 0 ? ' ' : '') + opac; }else{ s.opacity = opacity; } }else{ me.anim({opacity: {to: opacity}}, me.preanim(arguments, 1), null, .35, 'easeIn'); } return me; }, /** * Clears any opacity settings from this element. Required in some cases for IE. * @return {Ext.Element} this */ clearOpacity : function(){ var style = this.dom.style; if(Ext.isIE9m){ if(!Ext.isEmpty(style.filter)){ style.filter = style.filter.replace(opacityRe, '').replace(trimRe, ''); } }else{ style.opacity = style['-moz-opacity'] = style['-khtml-opacity'] = ''; } return this; }, /** * Returns the offset height of the element * @param {Boolean} contentHeight (optional) true to get the height minus borders and padding * @return {Number} The element's height */ getHeight : function(contentHeight){ var me = this, dom = me.dom, hidden = Ext.isIE9m && me.isStyle('display', 'none'), h = MATH.max(dom.offsetHeight, hidden ? 0 : dom.clientHeight) || 0; h = !contentHeight ? h : h - me.getBorderWidth("tb") - me.getPadding("tb"); return h < 0 ? 0 : h; }, /** * Returns the offset width of the element * @param {Boolean} contentWidth (optional) true to get the width minus borders and padding * @return {Number} The element's width */ getWidth : function(contentWidth){ var me = this, dom = me.dom, hidden = Ext.isIE9m && me.isStyle('display', 'none'), w = MATH.max(dom.offsetWidth, hidden ? 0 : dom.clientWidth) || 0; w = !contentWidth ? w : w - me.getBorderWidth("lr") - me.getPadding("lr"); return w < 0 ? 0 : w; }, /** * Set the width of this Element. * @param {Mixed} width The new width. This may be one of:
    *
  • A Number specifying the new width in this Element's {@link #defaultUnit}s (by default, pixels).
    • *
  • A String used to set the CSS width style. Animation may not be used. *
* @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object * @return {Ext.Element} this */ setWidth : function(width, animate){ var me = this; width = me.adjustWidth(width); !animate || !me.anim ? me.dom.style.width = me.addUnits(width) : me.anim({width : {to : width}}, me.preanim(arguments, 1)); return me; }, /** * Set the height of this Element. * 

// change the height to 200px and animate with default configuration
Ext.fly('elementId').setHeight(200, true);

// change the height to 150px and animate with a custom configuration
Ext.fly('elId').setHeight(150, {
    duration : .5, // animation will have a duration of .5 seconds
    // will change the content to "finished"
    callback: function(){ this.{@link #update}("finished"); }
});
         *
* @param {Mixed} height The new height. This may be one of:
    *
  • A Number specifying the new height in this Element's {@link #defaultUnit}s (by default, pixels.)
    • *
  • A String used to set the CSS height style. Animation may not be used.
    • *
* @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object * @return {Ext.Element} this */ setHeight : function(height, animate){ var me = this; height = me.adjustHeight(height); !animate || !me.anim ? me.dom.style.height = me.addUnits(height) : me.anim({height : {to : height}}, me.preanim(arguments, 1)); return me; }, /** * Gets the width of the border(s) for the specified side(s) * @param {String} side Can be t, l, r, b or any combination of those to add multiple values. For example, * passing 'lr' would get the border left width + the border right width. * @return {Number} The width of the sides passed added together */ getBorderWidth : function(side){ return this.addStyles(side, borders); }, /** * Gets the width of the padding(s) for the specified side(s) * @param {String} side Can be t, l, r, b or any combination of those to add multiple values. For example, * passing 'lr' would get the padding left + the padding right. * @return {Number} The padding of the sides passed added together */ getPadding : function(side){ return this.addStyles(side, paddings); }, /** * Store the current overflow setting and clip overflow on the element - use {@link #unclip} to remove * @return {Ext.Element} this */ clip : function(){ var me = this, dom = me.dom; if(!data(dom, ISCLIPPED)){ data(dom, ISCLIPPED, true); data(dom, ORIGINALCLIP, { o: me.getStyle(OVERFLOW), x: me.getStyle(OVERFLOWX), y: me.getStyle(OVERFLOWY) }); me.setStyle(OVERFLOW, HIDDEN); me.setStyle(OVERFLOWX, HIDDEN); me.setStyle(OVERFLOWY, HIDDEN); } return me; }, /** * Return clipping (overflow) to original clipping before {@link #clip} was called * @return {Ext.Element} this */ unclip : function(){ var me = this, dom = me.dom; if(data(dom, ISCLIPPED)){ data(dom, ISCLIPPED, false); var o = data(dom, ORIGINALCLIP); if(o.o){ me.setStyle(OVERFLOW, o.o); } if(o.x){ me.setStyle(OVERFLOWX, o.x); } if(o.y){ me.setStyle(OVERFLOWY, o.y); } } return me; }, // private addStyles : function(sides, styles){ var ttlSize = 0, sidesArr = sides.match(wordsRe), side, size, i, len = sidesArr.length; for (i = 0; i < len; i++) { side = sidesArr[i]; size = side && parseInt(this.getStyle(styles[side]), 10); if (size) { ttlSize += MATH.abs(size); } } return ttlSize; }, margins : margins }; }() ); /** * @class Ext.Element */ (function(){ var D = Ext.lib.Dom, LEFT = "left", RIGHT = "right", TOP = "top", BOTTOM = "bottom", POSITION = "position", STATIC = "static", RELATIVE = "relative", AUTO = "auto", ZINDEX = "z-index"; Ext.Element.addMethods({ /** * Gets the current X position of the element based on page coordinates. Element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @return {Number} The X position of the element */ getX : function(){ return D.getX(this.dom); }, /** * Gets the current Y position of the element based on page coordinates. Element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @return {Number} The Y position of the element */ getY : function(){ return D.getY(this.dom); }, /** * Gets the current position of the element based on page coordinates. Element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @return {Array} The XY position of the element */ getXY : function(){ return D.getXY(this.dom); }, /** * Returns the offsets of this element from the passed element. Both element must be part of the DOM tree and not have display:none to have page coordinates. * @param {Mixed} element The element to get the offsets from. * @return {Array} The XY page offsets (e.g. [100, -200]) */ getOffsetsTo : function(el){ var o = this.getXY(), e = Ext.fly(el, '_internal').getXY(); return [o[0]-e[0],o[1]-e[1]]; }, /** * Sets the X position of the element based on page coordinates. Element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @param {Number} The X position of the element * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ setX : function(x, animate){ return this.setXY([x, this.getY()], this.animTest(arguments, animate, 1)); }, /** * Sets the Y position of the element based on page coordinates. Element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @param {Number} The Y position of the element * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ setY : function(y, animate){ return this.setXY([this.getX(), y], this.animTest(arguments, animate, 1)); }, /** * Sets the element's left position directly using CSS style (instead of {@link #setX}). * @param {String} left The left CSS property value * @return {Ext.Element} this */ setLeft : function(left){ this.setStyle(LEFT, this.addUnits(left)); return this; }, /** * Sets the element's top position directly using CSS style (instead of {@link #setY}). * @param {String} top The top CSS property value * @return {Ext.Element} this */ setTop : function(top){ this.setStyle(TOP, this.addUnits(top)); return this; }, /** * Sets the element's CSS right style. * @param {String} right The right CSS property value * @return {Ext.Element} this */ setRight : function(right){ this.setStyle(RIGHT, this.addUnits(right)); return this; }, /** * Sets the element's CSS bottom style. * @param {String} bottom The bottom CSS property value * @return {Ext.Element} this */ setBottom : function(bottom){ this.setStyle(BOTTOM, this.addUnits(bottom)); return this; }, /** * Sets the position of the element in page coordinates, regardless of how the element is positioned. * The element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @param {Array} pos Contains X & Y [x, y] values for new position (coordinates are page-based) * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ setXY : function(pos, animate){ var me = this; if(!animate || !me.anim){ D.setXY(me.dom, pos); }else{ me.anim({points: {to: pos}}, me.preanim(arguments, 1), 'motion'); } return me; }, /** * Sets the position of the element in page coordinates, regardless of how the element is positioned. * The element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @param {Number} x X value for new position (coordinates are page-based) * @param {Number} y Y value for new position (coordinates are page-based) * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ setLocation : function(x, y, animate){ return this.setXY([x, y], this.animTest(arguments, animate, 2)); }, /** * Sets the position of the element in page coordinates, regardless of how the element is positioned. * The element must be part of the DOM tree to have page coordinates (display:none or elements not appended return false). * @param {Number} x X value for new position (coordinates are page-based) * @param {Number} y Y value for new position (coordinates are page-based) * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ moveTo : function(x, y, animate){ return this.setXY([x, y], this.animTest(arguments, animate, 2)); }, /** * Gets the left X coordinate * @param {Boolean} local True to get the local css position instead of page coordinate * @return {Number} */ getLeft : function(local){ return !local ? this.getX() : parseInt(this.getStyle(LEFT), 10) || 0; }, /** * Gets the right X coordinate of the element (element X position + element width) * @param {Boolean} local True to get the local css position instead of page coordinate * @return {Number} */ getRight : function(local){ var me = this; return !local ? me.getX() + me.getWidth() : (me.getLeft(true) + me.getWidth()) || 0; }, /** * Gets the top Y coordinate * @param {Boolean} local True to get the local css position instead of page coordinate * @return {Number} */ getTop : function(local) { return !local ? this.getY() : parseInt(this.getStyle(TOP), 10) || 0; }, /** * Gets the bottom Y coordinate of the element (element Y position + element height) * @param {Boolean} local True to get the local css position instead of page coordinate * @return {Number} */ getBottom : function(local){ var me = this; return !local ? me.getY() + me.getHeight() : (me.getTop(true) + me.getHeight()) || 0; }, /** * Initializes positioning on this element. If a desired position is not passed, it will make the * the element positioned relative IF it is not already positioned. * @param {String} pos (optional) Positioning to use "relative", "absolute" or "fixed" * @param {Number} zIndex (optional) The zIndex to apply * @param {Number} x (optional) Set the page X position * @param {Number} y (optional) Set the page Y position */ position : function(pos, zIndex, x, y){ var me = this; if(!pos && me.isStyle(POSITION, STATIC)){ me.setStyle(POSITION, RELATIVE); } else if(pos) { me.setStyle(POSITION, pos); } if(zIndex){ me.setStyle(ZINDEX, zIndex); } if(x || y) me.setXY([x || false, y || false]); }, /** * Clear positioning back to the default when the document was loaded * @param {String} value (optional) The value to use for the left,right,top,bottom, defaults to '' (empty string). You could use 'auto'. * @return {Ext.Element} this */ clearPositioning : function(value){ value = value || ''; this.setStyle({ left : value, right : value, top : value, bottom : value, "z-index" : "", position : STATIC }); return this; }, /** * Gets an object with all CSS positioning properties. Useful along with setPostioning to get * snapshot before performing an update and then restoring the element. * @return {Object} */ getPositioning : function(){ var l = this.getStyle(LEFT); var t = this.getStyle(TOP); return { "position" : this.getStyle(POSITION), "left" : l, "right" : l ? "" : this.getStyle(RIGHT), "top" : t, "bottom" : t ? "" : this.getStyle(BOTTOM), "z-index" : this.getStyle(ZINDEX) }; }, /** * Set positioning with an object returned by getPositioning(). * @param {Object} posCfg * @return {Ext.Element} this */ setPositioning : function(pc){ var me = this, style = me.dom.style; me.setStyle(pc); if(pc.right == AUTO){ style.right = ""; } if(pc.bottom == AUTO){ style.bottom = ""; } return me; }, /** * Translates the passed page coordinates into left/top css values for this element * @param {Number/Array} x The page x or an array containing [x, y] * @param {Number} y (optional) The page y, required if x is not an array * @return {Object} An object with left and top properties. e.g. {left: (value), top: (value)} */ translatePoints : function(x, y){ y = isNaN(x[1]) ? y : x[1]; x = isNaN(x[0]) ? x : x[0]; var me = this, relative = me.isStyle(POSITION, RELATIVE), o = me.getXY(), l = parseInt(me.getStyle(LEFT), 10), t = parseInt(me.getStyle(TOP), 10); l = !isNaN(l) ? l : (relative ? 0 : me.dom.offsetLeft); t = !isNaN(t) ? t : (relative ? 0 : me.dom.offsetTop); return {left: (x - o[0] + l), top: (y - o[1] + t)}; }, animTest : function(args, animate, i) { return !!animate && this.preanim ? this.preanim(args, i) : false; } }); })();/** * @class Ext.Element */ Ext.Element.addMethods({ /** * Returns true if this element is scrollable. * @return {Boolean} */ isScrollable : function(){ var dom = this.dom; return dom.scrollHeight > dom.clientHeight || dom.scrollWidth > dom.clientWidth; }, /** * Scrolls this element the specified scroll point. It does NOT do bounds checking so if you scroll to a weird value it will try to do it. For auto bounds checking, use scroll(). * @param {String} side Either "left" for scrollLeft values or "top" for scrollTop values. * @param {Number} value The new scroll value. * @return {Element} this */ scrollTo : function(side, value){ this.dom["scroll" + (/top/i.test(side) ? "Top" : "Left")] = value; return this; }, /** * Returns the current scroll position of the element. * @return {Object} An object containing the scroll position in the format {left: (scrollLeft), top: (scrollTop)} */ getScroll : function(){ var d = this.dom, doc = document, body = doc.body, docElement = doc.documentElement, l, t, ret; if(d == doc || d == body){ if(Ext.isIE && Ext.isStrict){ l = docElement.scrollLeft; t = docElement.scrollTop; }else{ l = window.pageXOffset; t = window.pageYOffset; } ret = {left: l || (body ? body.scrollLeft : 0), top: t || (body ? body.scrollTop : 0)}; }else{ ret = {left: d.scrollLeft, top: d.scrollTop}; } return ret; } });/** * @class Ext.Element */ /** * Visibility mode constant for use with {@link #setVisibilityMode}. Use visibility to hide element * @static * @type Number */ Ext.Element.VISIBILITY = 1; /** * Visibility mode constant for use with {@link #setVisibilityMode}. Use display to hide element * @static * @type Number */ Ext.Element.DISPLAY = 2; /** * Visibility mode constant for use with {@link #setVisibilityMode}. Use offsets (x and y positioning offscreen) * to hide element. * @static * @type Number */ Ext.Element.OFFSETS = 3; Ext.Element.ASCLASS = 4; /** * Defaults to 'x-hide-nosize' * @static * @type String */ Ext.Element.visibilityCls = 'x-hide-nosize'; Ext.Element.addMethods(function(){ var El = Ext.Element, OPACITY = "opacity", VISIBILITY = "visibility", DISPLAY = "display", HIDDEN = "hidden", OFFSETS = "offsets", ASCLASS = "asclass", NONE = "none", NOSIZE = 'nosize', ORIGINALDISPLAY = 'originalDisplay', VISMODE = 'visibilityMode', ISVISIBLE = 'isVisible', data = El.data, getDisplay = function(dom){ var d = data(dom, ORIGINALDISPLAY); if(d === undefined){ data(dom, ORIGINALDISPLAY, d = ''); } return d; }, getVisMode = function(dom){ var m = data(dom, VISMODE); if(m === undefined){ data(dom, VISMODE, m = 1); } return m; }; return { /** * The element's default display mode (defaults to "") * @type String */ originalDisplay : "", visibilityMode : 1, /** * Sets the element's visibility mode. When setVisible() is called it * will use this to determine whether to set the visibility or the display property. * @param {Number} visMode Ext.Element.VISIBILITY or Ext.Element.DISPLAY * @return {Ext.Element} this */ setVisibilityMode : function(visMode){ data(this.dom, VISMODE, visMode); return this; }, /** * Perform custom animation on this element. *
    *
  • Animation Properties
    • * *

    The Animation Control Object enables gradual transitions for any member of an * element's style object that takes a numeric value including but not limited to * these properties:

      *
    • bottom, top, left, right
      • *
    • height, width
      • *
    • margin, padding
      • *
    • borderWidth
      • *
    • opacity
      • *
    • fontSize
      • *
    • lineHeight
      • *
    * * *
  • Animation Property Attributes
    • * *

    Each Animation Property is a config object with optional properties:

    *
      *
    • by* : relative change - start at current value, change by this value
      • *
    • from : ignore current value, start from this value
      • *
    • to* : start at current value, go to this value
      • *
    • unit : any allowable unit specification
      • *

      * do not specify both to and by for an animation property

      *
    * *
  • Animation Types
    • * *

    The supported animation types:

      *
    • 'run' : Default * 
      
var el = Ext.get('complexEl');
el.animate(
    // animation control object
    {
        borderWidth: {to: 3, from: 0},
        opacity: {to: .3, from: 1},
        height: {to: 50, from: el.getHeight()},
        width: {to: 300, from: el.getWidth()},
        top  : {by: - 100, unit: 'px'},
    },
    0.35,      // animation duration
    null,      // callback
    'easeOut', // easing method
    'run'      // animation type ('run','color','motion','scroll')
);
         *
      *
      • *
    • 'color' *

      Animates transition of background, text, or border colors.

      * 
      
el.animate(
    // animation control object
    {
        color: { to: '#06e' },
        backgroundColor: { to: '#e06' }
    },
    0.35,      // animation duration
    null,      // callback
    'easeOut', // easing method
    'color'    // animation type ('run','color','motion','scroll')
);
         *
      *
      • * *
    • 'motion' *

      Animates the motion of an element to/from specific points using optional bezier * way points during transit.

      * 
      
el.animate(
    // animation control object
    {
        borderWidth: {to: 3, from: 0},
        opacity: {to: .3, from: 1},
        height: {to: 50, from: el.getHeight()},
        width: {to: 300, from: el.getWidth()},
        top  : {by: - 100, unit: 'px'},
        points: {
            to: [50, 100],  // go to this point
            control: [      // optional bezier way points
                [ 600, 800],
                [-100, 200]
            ]
        }
    },
    3000,      // animation duration (milliseconds!)
    null,      // callback
    'easeOut', // easing method
    'motion'   // animation type ('run','color','motion','scroll')
);
         *
      *
      • *
    • 'scroll' *

      Animate horizontal or vertical scrolling of an overflowing page element.

      * 
      
el.animate(
    // animation control object
    {
        scroll: {to: [400, 300]}
    },
    0.35,      // animation duration
    null,      // callback
    'easeOut', // easing method
    'scroll'   // animation type ('run','color','motion','scroll')
);
         *
      *
      • *
    * *
* * @param {Object} args The animation control args * @param {Float} duration (optional) How long the animation lasts in seconds (defaults to .35) * @param {Function} onComplete (optional) Function to call when animation completes * @param {String} easing (optional) {@link Ext.Fx#easing} method to use (defaults to 'easeOut') * @param {String} animType (optional) 'run' is the default. Can also be 'color', * 'motion', or 'scroll' * @return {Ext.Element} this */ animate : function(args, duration, onComplete, easing, animType){ this.anim(args, {duration: duration, callback: onComplete, easing: easing}, animType); return this; }, /* * @private Internal animation call */ anim : function(args, opt, animType, defaultDur, defaultEase, cb){ animType = animType || 'run'; opt = opt || {}; var me = this, anim = Ext.lib.Anim[animType]( me.dom, args, (opt.duration || defaultDur) || .35, (opt.easing || defaultEase) || 'easeOut', function(){ if(cb) cb.call(me); if(opt.callback) opt.callback.call(opt.scope || me, me, opt); }, me ); opt.anim = anim; return anim; }, // private legacy anim prep preanim : function(a, i){ return !a[i] ? false : (typeof a[i] == 'object' ? a[i]: {duration: a[i+1], callback: a[i+2], easing: a[i+3]}); }, /** * Checks whether the element is currently visible using both visibility and display properties. * @return {Boolean} True if the element is currently visible, else false */ isVisible : function() { var me = this, dom = me.dom, visible = data(dom, ISVISIBLE); if(typeof visible == 'boolean'){ //return the cached value if registered return visible; } //Determine the current state based on display states visible = !me.isStyle(VISIBILITY, HIDDEN) && !me.isStyle(DISPLAY, NONE) && !((getVisMode(dom) == El.ASCLASS) && me.hasClass(me.visibilityCls || El.visibilityCls)); data(dom, ISVISIBLE, visible); return visible; }, /** * Sets the visibility of the element (see details). If the visibilityMode is set to Element.DISPLAY, it will use * the display property to hide the element, otherwise it uses visibility. The default is to hide and show using the visibility property. * @param {Boolean} visible Whether the element is visible * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ setVisible : function(visible, animate){ var me = this, isDisplay, isVisibility, isOffsets, isNosize, dom = me.dom, visMode = getVisMode(dom); // hideMode string override if (typeof animate == 'string'){ switch (animate) { case DISPLAY: visMode = El.DISPLAY; break; case VISIBILITY: visMode = El.VISIBILITY; break; case OFFSETS: visMode = El.OFFSETS; break; case NOSIZE: case ASCLASS: visMode = El.ASCLASS; break; } me.setVisibilityMode(visMode); animate = false; } if (!animate || !me.anim) { if(visMode == El.ASCLASS ){ me[visible?'removeClass':'addClass'](me.visibilityCls || El.visibilityCls); } else if (visMode == El.DISPLAY){ return me.setDisplayed(visible); } else if (visMode == El.OFFSETS){ if (!visible){ me.hideModeStyles = { position: me.getStyle('position'), top: me.getStyle('top'), left: me.getStyle('left') }; me.applyStyles({position: 'absolute', top: '-10000px', left: '-10000px'}); } else { me.applyStyles(me.hideModeStyles || {position: '', top: '', left: ''}); delete me.hideModeStyles; } }else{ me.fixDisplay(); dom.style.visibility = visible ? "visible" : HIDDEN; } }else{ // closure for composites if(visible){ me.setOpacity(.01); me.setVisible(true); } me.anim({opacity: { to: (visible?1:0) }}, me.preanim(arguments, 1), null, .35, 'easeIn', function(){ visible || me.setVisible(false).setOpacity(1); }); } data(dom, ISVISIBLE, visible); //set logical visibility state return me; }, /** * @private * Determine if the Element has a relevant height and width available based * upon current logical visibility state */ hasMetrics : function(){ var dom = this.dom; return this.isVisible() || (getVisMode(dom) == El.VISIBILITY); }, /** * Toggles the element's visibility or display, depending on visibility mode. * @param {Boolean/Object} animate (optional) True for the default animation, or a standard Element animation config object * @return {Ext.Element} this */ toggle : function(animate){ var me = this; me.setVisible(!me.isVisible(), me.preanim(arguments, 0)); return me; }, /** * Sets the CSS display property. Uses originalDisplay if the specified value is a boolean true. * @param {Mixed} value Boolean value to display the element using its default display, or a string to set the display directly. * @return {Ext.Element} this */ setDisplayed : function(value) { if(typeof value == "boolean"){ value = value ? getDisplay(this.dom) : NONE; } this.setStyle(DISPLAY, value); return this; }, // private fixDisplay : function(){ var me = this; if(me.isStyle(DISPLAY, NONE)){ me.setStyle(VISIBILITY, HIDDEN); me.setStyle(DISPLAY, getDisplay(this.dom)); // first try reverting to default if(me.isStyle(DISPLAY, NONE)){ // if that fails, default to block me.setStyle(DISPLAY, "block"); } } }, /** * Hide this element - Uses display mode to determine whether to use "display" or "visibility". See {@link #setVisible}. * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object * @return {Ext.Element} this */ hide : function(animate){ // hideMode override if (typeof animate == 'string'){ this.setVisible(false, animate); return this; } this.setVisible(false, this.preanim(arguments, 0)); return this; }, /** * Show this element - Uses display mode to determine whether to use "display" or "visibility". See {@link #setVisible}. * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object * @return {Ext.Element} this */ show : function(animate){ // hideMode override if (typeof animate == 'string'){ this.setVisible(true, animate); return this; } this.setVisible(true, this.preanim(arguments, 0)); return this; } }; }());(function(){ // contants var NULL = null, UNDEFINED = undefined, TRUE = true, FALSE = false, SETX = "setX", SETY = "setY", SETXY = "setXY", LEFT = "left", BOTTOM = "bottom", TOP = "top", RIGHT = "right", HEIGHT = "height", WIDTH = "width", POINTS = "points", HIDDEN = "hidden", ABSOLUTE = "absolute", VISIBLE = "visible", MOTION = "motion", POSITION = "position", EASEOUT = "easeOut", /* * Use a light flyweight here since we are using so many callbacks and are always assured a DOM element */ flyEl = new Ext.Element.Flyweight(), queues = {}, getObject = function(o){ return o || {}; }, fly = function(dom){ flyEl.dom = dom; flyEl.id = Ext.id(dom); return flyEl; }, /* * Queueing now stored outside of the element due to closure issues */ getQueue = function(id){ if(!queues[id]){ queues[id] = []; } return queues[id]; }, setQueue = function(id, value){ queues[id] = value; }; //Notifies Element that fx methods are available Ext.enableFx = TRUE; /** * @class Ext.Fx *

A class to provide basic animation and visual effects support. Note: This class is automatically applied * to the {@link Ext.Element} interface when included, so all effects calls should be performed via {@link Ext.Element}. * Conversely, since the effects are not actually defined in {@link Ext.Element}, Ext.Fx must be * {@link Ext#enableFx included} in order for the Element effects to work.


* *

Method Chaining

*

It is important to note that although the Fx methods and many non-Fx Element methods support "method chaining" in that * they return the Element object itself as the method return value, it is not always possible to mix the two in a single * method chain. The Fx methods use an internal effects queue so that each effect can be properly timed and sequenced. * Non-Fx methods, on the other hand, have no such internal queueing and will always execute immediately. For this reason, * while it may be possible to mix certain Fx and non-Fx method calls in a single chain, it may not always provide the * expected results and should be done with care. Also see {@link #callback}.


* *

Anchor Options for Motion Effects

*

Motion effects support 8-way anchoring, meaning that you can choose one of 8 different anchor points on the Element * that will serve as either the start or end point of the animation. Following are all of the supported anchor positions:

Value  Description
-----  -----------------------------
tl     The top left corner
t      The center of the top edge
tr     The top right corner
l      The center of the left edge
r      The center of the right edge
bl     The bottom left corner
b      The center of the bottom edge
br     The bottom right corner
* Note: some Fx methods accept specific custom config parameters. The options shown in the Config Options * section below are common options that can be passed to any Fx method unless otherwise noted. * * @cfg {Function} callback A function called when the effect is finished. Note that effects are queued internally by the * Fx class, so a callback is not required to specify another effect -- effects can simply be chained together * and called in sequence (see note for Method Chaining above), for example:

 * el.slideIn().highlight();
 *
* The callback is intended for any additional code that should run once a particular effect has completed. The Element * being operated upon is passed as the first parameter. * * @cfg {Object} scope The scope (this reference) in which the {@link #callback} function is executed. Defaults to the browser window. * * @cfg {String} easing A valid Ext.lib.Easing value for the effect:

    *
  • backBoth
    • *
  • backIn
    • *
  • backOut
    • *
  • bounceBoth
    • *
  • bounceIn
    • *
  • bounceOut
    • *
  • easeBoth
    • *
  • easeBothStrong
    • *
  • easeIn
    • *
  • easeInStrong
    • *
  • easeNone
    • *
  • easeOut
    • *
  • easeOutStrong
    • *
  • elasticBoth
    • *
  • elasticIn
    • *
  • elasticOut
    • *
* * @cfg {String} afterCls A css class to apply after the effect * @cfg {Number} duration The length of time (in seconds) that the effect should last * * @cfg {Number} endOpacity Only applicable for {@link #fadeIn} or {@link #fadeOut}, a number between * 0 and 1 inclusive to configure the ending opacity value. * * @cfg {Boolean} remove Whether the Element should be removed from the DOM and destroyed after the effect finishes * @cfg {Boolean} useDisplay Whether to use the display CSS property instead of visibility when hiding Elements (only applies to * effects that end with the element being visually hidden, ignored otherwise) * @cfg {String/Object/Function} afterStyle A style specification string, e.g. "width:100px", or an object * in the form {width:"100px"}, or a function which returns such a specification that will be applied to the * Element after the effect finishes. * @cfg {Boolean} block Whether the effect should block other effects from queueing while it runs * @cfg {Boolean} concurrent Whether to allow subsequently-queued effects to run at the same time as the current effect, or to ensure that they run in sequence * @cfg {Boolean} stopFx Whether preceding effects should be stopped and removed before running current effect (only applies to non blocking effects) */ Ext.Fx = { // private - calls the function taking arguments from the argHash based on the key. Returns the return value of the function. // this is useful for replacing switch statements (for example). switchStatements : function(key, fn, argHash){ return fn.apply(this, argHash[key]); }, /** * Slides the element into view. An anchor point can be optionally passed to set the point of * origin for the slide effect. This function automatically handles wrapping the element with * a fixed-size container if needed. See the Fx class overview for valid anchor point options. * Usage: *

// default: slide the element in from the top
el.slideIn();

// custom: slide the element in from the right with a 2-second duration
el.slideIn('r', { duration: 2 });

// common config options shown with default values
el.slideIn('t', {
    easing: 'easeOut',
    duration: .5
});
* @param {String} anchor (optional) One of the valid Fx anchor positions (defaults to top: 't') * @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ slideIn : function(anchor, o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, xy, r, b, wrap, after, st, args, pt, bw, bh; anchor = anchor || "t"; me.queueFx(o, function(){ xy = fly(dom).getXY(); // fix display to visibility fly(dom).fixDisplay(); // restore values after effect r = fly(dom).getFxRestore(); b = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: dom.offsetWidth, height: dom.offsetHeight}; b.right = b.x + b.width; b.bottom = b.y + b.height; // fixed size for slide fly(dom).setWidth(b.width).setHeight(b.height); // wrap if needed wrap = fly(dom).fxWrap(r.pos, o, HIDDEN); st.visibility = VISIBLE; st.position = ABSOLUTE; // clear out temp styles after slide and unwrap function after(){ fly(dom).fxUnwrap(wrap, r.pos, o); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); } // time to calculate the positions pt = {to: [b.x, b.y]}; bw = {to: b.width}; bh = {to: b.height}; function argCalc(wrap, style, ww, wh, sXY, sXYval, s1, s2, w, h, p){ var ret = {}; fly(wrap).setWidth(ww).setHeight(wh); if(fly(wrap)[sXY]){ fly(wrap)[sXY](sXYval); } style[s1] = style[s2] = "0"; if(w){ ret.width = w; } if(h){ ret.height = h; } if(p){ ret.points = p; } return ret; }; args = fly(dom).switchStatements(anchor.toLowerCase(), argCalc, { t : [wrap, st, b.width, 0, NULL, NULL, LEFT, BOTTOM, NULL, bh, NULL], l : [wrap, st, 0, b.height, NULL, NULL, RIGHT, TOP, bw, NULL, NULL], r : [wrap, st, b.width, b.height, SETX, b.right, LEFT, TOP, NULL, NULL, pt], b : [wrap, st, b.width, b.height, SETY, b.bottom, LEFT, TOP, NULL, bh, pt], tl : [wrap, st, 0, 0, NULL, NULL, RIGHT, BOTTOM, bw, bh, pt], bl : [wrap, st, 0, 0, SETY, b.y + b.height, RIGHT, TOP, bw, bh, pt], br : [wrap, st, 0, 0, SETXY, [b.right, b.bottom], LEFT, TOP, bw, bh, pt], tr : [wrap, st, 0, 0, SETX, b.x + b.width, LEFT, BOTTOM, bw, bh, pt] }); st.visibility = VISIBLE; fly(wrap).show(); arguments.callee.anim = fly(wrap).fxanim(args, o, MOTION, .5, EASEOUT, after); }); return me; }, /** * Slides the element out of view. An anchor point can be optionally passed to set the end point * for the slide effect. When the effect is completed, the element will be hidden (visibility = * 'hidden') but block elements will still take up space in the document. The element must be removed * from the DOM using the 'remove' config option if desired. This function automatically handles * wrapping the element with a fixed-size container if needed. See the Fx class overview for valid anchor point options. * Usage: *

// default: slide the element out to the top
el.slideOut();

// custom: slide the element out to the right with a 2-second duration
el.slideOut('r', { duration: 2 });

// common config options shown with default values
el.slideOut('t', {
    easing: 'easeOut',
    duration: .5,
    remove: false,
    useDisplay: false
});
* @param {String} anchor (optional) One of the valid Fx anchor positions (defaults to top: 't') * @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ slideOut : function(anchor, o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, xy = me.getXY(), wrap, r, b, a, zero = {to: 0}; anchor = anchor || "t"; me.queueFx(o, function(){ // restore values after effect r = fly(dom).getFxRestore(); b = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: dom.offsetWidth, height: dom.offsetHeight}; b.right = b.x + b.width; b.bottom = b.y + b.height; // fixed size for slide fly(dom).setWidth(b.width).setHeight(b.height); // wrap if needed wrap = fly(dom).fxWrap(r.pos, o, VISIBLE); st.visibility = VISIBLE; st.position = ABSOLUTE; fly(wrap).setWidth(b.width).setHeight(b.height); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).fxUnwrap(wrap, r.pos, o); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); } function argCalc(style, s1, s2, p1, v1, p2, v2, p3, v3){ var ret = {}; style[s1] = style[s2] = "0"; ret[p1] = v1; if(p2){ ret[p2] = v2; } if(p3){ ret[p3] = v3; } return ret; }; a = fly(dom).switchStatements(anchor.toLowerCase(), argCalc, { t : [st, LEFT, BOTTOM, HEIGHT, zero], l : [st, RIGHT, TOP, WIDTH, zero], r : [st, LEFT, TOP, WIDTH, zero, POINTS, {to : [b.right, b.y]}], b : [st, LEFT, TOP, HEIGHT, zero, POINTS, {to : [b.x, b.bottom]}], tl : [st, RIGHT, BOTTOM, WIDTH, zero, HEIGHT, zero], bl : [st, RIGHT, TOP, WIDTH, zero, HEIGHT, zero, POINTS, {to : [b.x, b.bottom]}], br : [st, LEFT, TOP, WIDTH, zero, HEIGHT, zero, POINTS, {to : [b.x + b.width, b.bottom]}], tr : [st, LEFT, BOTTOM, WIDTH, zero, HEIGHT, zero, POINTS, {to : [b.right, b.y]}] }); arguments.callee.anim = fly(wrap).fxanim(a, o, MOTION, .5, EASEOUT, after); }); return me; }, /** * Fades the element out while slowly expanding it in all directions. When the effect is completed, the * element will be hidden (visibility = 'hidden') but block elements will still take up space in the document. * The element must be removed from the DOM using the 'remove' config option if desired. * Usage: *

// default
el.puff();

// common config options shown with default values
el.puff({
    easing: 'easeOut',
    duration: .5,
    remove: false,
    useDisplay: false
});
* @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ puff : function(o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, width, height, r; me.queueFx(o, function(){ width = fly(dom).getWidth(); height = fly(dom).getHeight(); fly(dom).clearOpacity(); fly(dom).show(); // restore values after effect r = fly(dom).getFxRestore(); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).clearOpacity(); fly(dom).setPositioning(r.pos); st.width = r.width; st.height = r.height; st.fontSize = ''; fly(dom).afterFx(o); } arguments.callee.anim = fly(dom).fxanim({ width : {to : fly(dom).adjustWidth(width * 2)}, height : {to : fly(dom).adjustHeight(height * 2)}, points : {by : [-width * .5, -height * .5]}, opacity : {to : 0}, fontSize: {to : 200, unit: "%"} }, o, MOTION, .5, EASEOUT, after); }); return me; }, /** * Blinks the element as if it was clicked and then collapses on its center (similar to switching off a television). * When the effect is completed, the element will be hidden (visibility = 'hidden') but block elements will still * take up space in the document. The element must be removed from the DOM using the 'remove' config option if desired. * Usage: *

// default
el.switchOff();

// all config options shown with default values
el.switchOff({
    easing: 'easeIn',
    duration: .3,
    remove: false,
    useDisplay: false
});
* @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ switchOff : function(o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, r; me.queueFx(o, function(){ fly(dom).clearOpacity(); fly(dom).clip(); // restore values after effect r = fly(dom).getFxRestore(); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).clearOpacity(); fly(dom).setPositioning(r.pos); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); }; fly(dom).fxanim({opacity : {to : 0.3}}, NULL, NULL, .1, NULL, function(){ fly(dom).clearOpacity(); (function(){ fly(dom).fxanim({ height : {to : 1}, points : {by : [0, fly(dom).getHeight() * .5]} }, o, MOTION, 0.3, 'easeIn', after); }).defer(100); }); }); return me; }, /** * Highlights the Element by setting a color (applies to the background-color by default, but can be * changed using the "attr" config option) and then fading back to the original color. If no original * color is available, you should provide the "endColor" config option which will be cleared after the animation. * Usage: 

// default: highlight background to yellow
el.highlight();

// custom: highlight foreground text to blue for 2 seconds
el.highlight("0000ff", { attr: 'color', duration: 2 });

// common config options shown with default values
el.highlight("ffff9c", {
    attr: "background-color", //can be any valid CSS property (attribute) that supports a color value
    endColor: (current color) or "ffffff",
    easing: 'easeIn',
    duration: 1
});
* @param {String} color (optional) The highlight color. Should be a 6 char hex color without the leading # (defaults to yellow: 'ffff9c') * @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ highlight : function(color, o){ o = getObject(o); var me = this, dom = me.dom, attr = o.attr || "backgroundColor", a = {}, restore; me.queueFx(o, function(){ fly(dom).clearOpacity(); fly(dom).show(); function after(){ dom.style[attr] = restore; fly(dom).afterFx(o); } restore = dom.style[attr]; a[attr] = {from: color || "ffff9c", to: o.endColor || fly(dom).getColor(attr) || "ffffff"}; arguments.callee.anim = fly(dom).fxanim(a, o, 'color', 1, 'easeIn', after); }); return me; }, /** * Shows a ripple of exploding, attenuating borders to draw attention to an Element. * Usage: 

// default: a single light blue ripple
el.frame();

// custom: 3 red ripples lasting 3 seconds total
el.frame("ff0000", 3, { duration: 3 });

// common config options shown with default values
el.frame("C3DAF9", 1, {
    duration: 1 //duration of each individual ripple.
    // Note: Easing is not configurable and will be ignored if included
});
* @param {String} color (optional) The color of the border. Should be a 6 char hex color without the leading # (defaults to light blue: 'C3DAF9'). * @param {Number} count (optional) The number of ripples to display (defaults to 1) * @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ frame : function(color, count, o){ o = getObject(o); var me = this, dom = me.dom, proxy, active; me.queueFx(o, function(){ color = color || '#C3DAF9'; if(color.length == 6){ color = '#' + color; } count = count || 1; fly(dom).show(); var xy = fly(dom).getXY(), b = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: dom.offsetWidth, height: dom.offsetHeight}, queue = function(){ proxy = fly(document.body || document.documentElement).createChild({ style:{ position : ABSOLUTE, 'z-index': 35000, // yee haw border : '0px solid ' + color } }); return proxy.queueFx({}, animFn); }; arguments.callee.anim = { isAnimated: true, stop: function() { count = 0; proxy.stopFx(); } }; function animFn(){ var scale = Ext.isBorderBox ? 2 : 1; active = proxy.anim({ top : {from : b.y, to : b.y - 20}, left : {from : b.x, to : b.x - 20}, borderWidth : {from : 0, to : 10}, opacity : {from : 1, to : 0}, height : {from : b.height, to : b.height + 20 * scale}, width : {from : b.width, to : b.width + 20 * scale} },{ duration: o.duration || 1, callback: function() { proxy.remove(); --count > 0 ? queue() : fly(dom).afterFx(o); } }); arguments.callee.anim = { isAnimated: true, stop: function(){ active.stop(); } }; }; queue(); }); return me; }, /** * Creates a pause before any subsequent queued effects begin. If there are * no effects queued after the pause it will have no effect. * Usage: 

el.pause(1);
* @param {Number} seconds The length of time to pause (in seconds) * @return {Ext.Element} The Element */ pause : function(seconds){ var dom = this.dom, t; this.queueFx({}, function(){ t = setTimeout(function(){ fly(dom).afterFx({}); }, seconds * 1000); arguments.callee.anim = { isAnimated: true, stop: function(){ clearTimeout(t); fly(dom).afterFx({}); } }; }); return this; }, /** * Fade an element in (from transparent to opaque). The ending opacity can be specified * using the {@link #endOpacity} config option. * Usage: 

// default: fade in from opacity 0 to 100%
el.fadeIn();

// custom: fade in from opacity 0 to 75% over 2 seconds
el.fadeIn({ endOpacity: .75, duration: 2});

// common config options shown with default values
el.fadeIn({
    endOpacity: 1, //can be any value between 0 and 1 (e.g. .5)
    easing: 'easeOut',
    duration: .5
});
* @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ fadeIn : function(o){ o = getObject(o); var me = this, dom = me.dom, to = o.endOpacity || 1; me.queueFx(o, function(){ fly(dom).setOpacity(0); fly(dom).fixDisplay(); dom.style.visibility = VISIBLE; arguments.callee.anim = fly(dom).fxanim({opacity:{to:to}}, o, NULL, .5, EASEOUT, function(){ if(to == 1){ fly(dom).clearOpacity(); } fly(dom).afterFx(o); }); }); return me; }, /** * Fade an element out (from opaque to transparent). The ending opacity can be specified * using the {@link #endOpacity} config option. Note that IE may require * {@link #useDisplay}:true in order to redisplay correctly. * Usage: 

// default: fade out from the element's current opacity to 0
el.fadeOut();

// custom: fade out from the element's current opacity to 25% over 2 seconds
el.fadeOut({ endOpacity: .25, duration: 2});

// common config options shown with default values
el.fadeOut({
    endOpacity: 0, //can be any value between 0 and 1 (e.g. .5)
    easing: 'easeOut',
    duration: .5,
    remove: false,
    useDisplay: false
});
* @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ fadeOut : function(o){ o = getObject(o); var me = this, dom = me.dom, style = dom.style, to = o.endOpacity || 0; me.queueFx(o, function(){ arguments.callee.anim = fly(dom).fxanim({ opacity : {to : to}}, o, NULL, .5, EASEOUT, function(){ if(to == 0){ Ext.Element.data(dom, 'visibilityMode') == Ext.Element.DISPLAY || o.useDisplay ? style.display = "none" : style.visibility = HIDDEN; fly(dom).clearOpacity(); } fly(dom).afterFx(o); }); }); return me; }, /** * Animates the transition of an element's dimensions from a starting height/width * to an ending height/width. This method is a convenience implementation of {@link shift}. * Usage: 

// change height and width to 100x100 pixels
el.scale(100, 100);

// common config options shown with default values.  The height and width will default to
// the element's existing values if passed as null.
el.scale(
    [element's width],
    [element's height], {
        easing: 'easeOut',
        duration: .35
    }
);
* @param {Number} width The new width (pass undefined to keep the original width) * @param {Number} height The new height (pass undefined to keep the original height) * @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ scale : function(w, h, o){ this.shift(Ext.apply({}, o, { width: w, height: h })); return this; }, /** * Animates the transition of any combination of an element's dimensions, xy position and/or opacity. * Any of these properties not specified in the config object will not be changed. This effect * requires that at least one new dimension, position or opacity setting must be passed in on * the config object in order for the function to have any effect. * Usage: 

// slide the element horizontally to x position 200 while changing the height and opacity
el.shift({ x: 200, height: 50, opacity: .8 });

// common config options shown with default values.
el.shift({
    width: [element's width],
    height: [element's height],
    x: [element's x position],
    y: [element's y position],
    opacity: [element's opacity],
    easing: 'easeOut',
    duration: .35
});
* @param {Object} options Object literal with any of the Fx config options * @return {Ext.Element} The Element */ shift : function(o){ o = getObject(o); var dom = this.dom, a = {}; this.queueFx(o, function(){ for (var prop in o) { if (o[prop] != UNDEFINED) { a[prop] = {to : o[prop]}; } } a.width ? a.width.to = fly(dom).adjustWidth(o.width) : a; a.height ? a.height.to = fly(dom).adjustWidth(o.height) : a; if (a.x || a.y || a.xy) { a.points = a.xy || {to : [ a.x ? a.x.to : fly(dom).getX(), a.y ? a.y.to : fly(dom).getY()]}; } arguments.callee.anim = fly(dom).fxanim(a, o, MOTION, .35, EASEOUT, function(){ fly(dom).afterFx(o); }); }); return this; }, /** * Slides the element while fading it out of view. An anchor point can be optionally passed to set the * ending point of the effect. * Usage: *

// default: slide the element downward while fading out
el.ghost();

// custom: slide the element out to the right with a 2-second duration
el.ghost('r', { duration: 2 });

// common config options shown with default values
el.ghost('b', {
    easing: 'easeOut',
    duration: .5,
    remove: false,
    useDisplay: false
});
* @param {String} anchor (optional) One of the valid Fx anchor positions (defaults to bottom: 'b') * @param {Object} options (optional) Object literal with any of the Fx config options * @return {Ext.Element} The Element */ ghost : function(anchor, o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, a = {opacity: {to: 0}, points: {}}, pt = a.points, r, w, h; anchor = anchor || "b"; me.queueFx(o, function(){ // restore values after effect r = fly(dom).getFxRestore(); w = fly(dom).getWidth(); h = fly(dom).getHeight(); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).clearOpacity(); fly(dom).setPositioning(r.pos); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); } pt.by = fly(dom).switchStatements(anchor.toLowerCase(), function(v1,v2){ return [v1, v2];}, { t : [0, -h], l : [-w, 0], r : [w, 0], b : [0, h], tl : [-w, -h], bl : [-w, h], br : [w, h], tr : [w, -h] }); arguments.callee.anim = fly(dom).fxanim(a, o, MOTION, .5, EASEOUT, after); }); return me; }, /** * Ensures that all effects queued after syncFx is called on the element are * run concurrently. This is the opposite of {@link #sequenceFx}. * @return {Ext.Element} The Element */ syncFx : function(){ var me = this; me.fxDefaults = Ext.apply(me.fxDefaults || {}, { block : FALSE, concurrent : TRUE, stopFx : FALSE }); return me; }, /** * Ensures that all effects queued after sequenceFx is called on the element are * run in sequence. This is the opposite of {@link #syncFx}. * @return {Ext.Element} The Element */ sequenceFx : function(){ var me = this; me.fxDefaults = Ext.apply(me.fxDefaults || {}, { block : FALSE, concurrent : FALSE, stopFx : FALSE }); return me; }, /* @private */ nextFx : function(){ var ef = getQueue(this.dom.id)[0]; if(ef){ ef.call(this); } }, /** * Returns true if the element has any effects actively running or queued, else returns false. * @return {Boolean} True if element has active effects, else false */ hasActiveFx : function(){ return getQueue(this.dom.id)[0]; }, /** * Stops any running effects and clears the element's internal effects queue if it contains * any additional effects that haven't started yet. * @return {Ext.Element} The Element */ stopFx : function(finish){ var me = this, id = me.dom.id; if(me.hasActiveFx()){ var cur = getQueue(id)[0]; if(cur && cur.anim){ if(cur.anim.isAnimated){ setQueue(id, [cur]); //clear cur.anim.stop(finish !== undefined ? finish : TRUE); }else{ setQueue(id, []); } } } return me; }, /* @private */ beforeFx : function(o){ if(this.hasActiveFx() && !o.concurrent){ if(o.stopFx){ this.stopFx(); return TRUE; } return FALSE; } return TRUE; }, /** * Returns true if the element is currently blocking so that no other effect can be queued * until this effect is finished, else returns false if blocking is not set. This is commonly * used to ensure that an effect initiated by a user action runs to completion prior to the * same effect being restarted (e.g., firing only one effect even if the user clicks several times). * @return {Boolean} True if blocking, else false */ hasFxBlock : function(){ var q = getQueue(this.dom.id); return q && q[0] && q[0].block; }, /* @private */ queueFx : function(o, fn){ var me = fly(this.dom); if(!me.hasFxBlock()){ Ext.applyIf(o, me.fxDefaults); if(!o.concurrent){ var run = me.beforeFx(o); fn.block = o.block; getQueue(me.dom.id).push(fn); if(run){ me.nextFx(); } }else{ fn.call(me); } } return me; }, /* @private */ fxWrap : function(pos, o, vis){ var dom = this.dom, wrap, wrapXY; if(!o.wrap || !(wrap = Ext.getDom(o.wrap))){ if(o.fixPosition){ wrapXY = fly(dom).getXY(); } var div = document.createElement("div"); div.style.visibility = vis; wrap = dom.parentNode.insertBefore(div, dom); fly(wrap).setPositioning(pos); if(fly(wrap).isStyle(POSITION, "static")){ fly(wrap).position("relative"); } fly(dom).clearPositioning('auto'); fly(wrap).clip(); wrap.appendChild(dom); if(wrapXY){ fly(wrap).setXY(wrapXY); } } return wrap; }, /* @private */ fxUnwrap : function(wrap, pos, o){ var dom = this.dom; fly(dom).clearPositioning(); fly(dom).setPositioning(pos); if(!o.wrap){ var pn = fly(wrap).dom.parentNode; pn.insertBefore(dom, wrap); fly(wrap).remove(); } }, /* @private */ getFxRestore : function(){ var st = this.dom.style; return {pos: this.getPositioning(), width: st.width, height : st.height}; }, /* @private */ afterFx : function(o){ var dom = this.dom, id = dom.id; if(o.afterStyle){ fly(dom).setStyle(o.afterStyle); } if(o.afterCls){ fly(dom).addClass(o.afterCls); } if(o.remove == TRUE){ fly(dom).remove(); } if(o.callback){ o.callback.call(o.scope, fly(dom)); } if(!o.concurrent){ getQueue(id).shift(); fly(dom).nextFx(); } }, /* @private */ fxanim : function(args, opt, animType, defaultDur, defaultEase, cb){ animType = animType || 'run'; opt = opt || {}; var anim = Ext.lib.Anim[animType]( this.dom, args, (opt.duration || defaultDur) || .35, (opt.easing || defaultEase) || EASEOUT, cb, this ); opt.anim = anim; return anim; } }; // backwards compat Ext.Fx.resize = Ext.Fx.scale; //When included, Ext.Fx is automatically applied to Element so that all basic //effects are available directly via the Element API Ext.Element.addMethods(Ext.Fx); })(); /** * @class Ext.CompositeElementLite *

This class encapsulates a collection of DOM elements, providing methods to filter * members, or to perform collective actions upon the whole set.

*

Although they are not listed, this class supports all of the methods of {@link Ext.Element} and * {@link Ext.Fx}. The methods from these classes will be performed on all the elements in this collection.

* Example:

var els = Ext.select("#some-el div.some-class");
// or select directly from an existing element
var el = Ext.get('some-el');
el.select('div.some-class');

els.setWidth(100); // all elements become 100 width
els.hide(true); // all elements fade out and hide
// or
els.setWidth(100).hide(true);

 */
Ext.CompositeElementLite = function(els, root){
    /**
     * 
The Array of DOM elements which this CompositeElement encapsulates. Read-only.

     * 
This will not usually be accessed in developers' code, but developers wishing
     * to augment the capabilities of the CompositeElementLite class may use it when adding
     * methods to the class.

     * 
For example to add the nextAll method to the class to add all
     * following siblings of selected elements, the code would be
Ext.override(Ext.CompositeElementLite, {
    nextAll: function() {
        var els = this.elements, i, l = els.length, n, r = [], ri = -1;

//      Loop through all elements in this Composite, accumulating
//      an Array of all siblings.
        for (i = 0; i < l; i++) {
            for (n = els[i].nextSibling; n; n = n.nextSibling) {
                r[++ri] = n;
            }
        }

//      Add all found siblings to this Composite
        return this.add(r);
    }
});

     * @type Array
     * @property elements
     */
    this.elements = [];
    this.add(els, root);
    this.el = new Ext.Element.Flyweight();
};

Ext.CompositeElementLite.prototype = {
    isComposite: true,

    // private
    getElement : function(el){
        // Set the shared flyweight dom property to the current element
        var e = this.el;
        e.dom = el;
        e.id = el.id;
        return e;
    },

    // private
    transformElement : function(el){
        return Ext.getDom(el);
    },

    /**
     * Returns the number of elements in this Composite.
     * @return Number
     */
    getCount : function(){
        return this.elements.length;
    },
    /**
     * Adds elements to this Composite object.
     * @param {Mixed} els Either an Array of DOM elements to add, or another Composite object who's elements should be added.
     * @return {CompositeElement} This Composite object.
     */
    add : function(els, root){
        var me = this,
            elements = me.elements;
        if(!els){
            return this;
        }
        if(typeof els == "string"){
            els = Ext.Element.selectorFunction(els, root);
        }else if(els.isComposite){
            els = els.elements;
        }else if(!Ext.isIterable(els)){
            els = [els];
        }

        for(var i = 0, len = els.length; i < len; ++i){
            elements.push(me.transformElement(els[i]));
        }
        return me;
    },

    invoke : function(fn, args){
        var me = this,
            els = me.elements,
            len = els.length,
            e,
            i;

        for(i = 0; i < len; i++) {
            e = els[i];
            if(e){
                Ext.Element.prototype[fn].apply(me.getElement(e), args);
            }
        }
        return me;
    },
    /**
     * Returns a flyweight Element of the dom element object at the specified index
     * @param {Number} index
     * @return {Ext.Element}
     */
    item : function(index){
        var me = this,
            el = me.elements[index],
            out = null;

        if(el){
            out = me.getElement(el);
        }
        return out;
    },

    // fixes scope with flyweight
    addListener : function(eventName, handler, scope, opt){
        var els = this.elements,
            len = els.length,
            i, e;

        for(i = 0; iCalls the passed function for each element in this composite.

     * @param {Function} fn The function to call. The function is passed the following parameters:
    
     * 
  • el : Element
    The current Element in the iteration.
     * This is the flyweight (shared) Ext.Element instance, so if you require a
     * a reference to the dom node, use el.dom.
    • 
     * 
  • c : Composite
    This Composite object.
    • 
     * 
  • idx : Number
    The zero-based index in the iteration.
    • 
     * 

     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. (defaults to the Element)
     * @return {CompositeElement} this
     */
    each : function(fn, scope){
        var me = this,
            els = me.elements,
            len = els.length,
            i, e;

        for(i = 0; i
     * 
  • el : Ext.Element
    The current DOM element.
    • 
     * 
  • index : Number
    The current index within the collection.
    • 
     * 
     * @return {CompositeElement} this
     */
    filter : function(selector){
        var els = [],
            me = this,
            fn = Ext.isFunction(selector) ? selector
                : function(el){
                    return el.is(selector);
                };

        me.each(function(el, self, i) {
            if (fn(el, i) !== false) {
                els[els.length] = me.transformElement(el);
            }
        });
        
        me.elements = els;
        return me;
    },

    /**
     * Find the index of the passed element within the composite collection.
     * @param el {Mixed} The id of an element, or an Ext.Element, or an HtmlElement to find within the composite collection.
     * @return Number The index of the passed Ext.Element in the composite collection, or -1 if not found.
     */
    indexOf : function(el){
        return this.elements.indexOf(this.transformElement(el));
    },

    /**
    * Replaces the specified element with the passed element.
    * @param {Mixed} el The id of an element, the Element itself, the index of the element in this composite
    * to replace.
    * @param {Mixed} replacement The id of an element or the Element itself.
    * @param {Boolean} domReplace (Optional) True to remove and replace the element in the document too.
    * @return {CompositeElement} this
    */
    replaceElement : function(el, replacement, domReplace){
        var index = !isNaN(el) ? el : this.indexOf(el),
            d;
        if(index > -1){
            replacement = Ext.getDom(replacement);
            if(domReplace){
                d = this.elements[index];
                d.parentNode.insertBefore(replacement, d);
                Ext.removeNode(d);
            }
            this.elements.splice(index, 1, replacement);
        }
        return this;
    },

    /**
     * Removes all elements.
     */
    clear : function(){
        this.elements = [];
    }
};

Ext.CompositeElementLite.prototype.on = Ext.CompositeElementLite.prototype.addListener;

/**
 * @private
 * Copies all of the functions from Ext.Element's prototype onto CompositeElementLite's prototype.
 * This is called twice - once immediately below, and once again after additional Ext.Element
 * are added in Ext JS
 */
Ext.CompositeElementLite.importElementMethods = function() {
    var fnName,
        ElProto = Ext.Element.prototype,
        CelProto = Ext.CompositeElementLite.prototype;

    for (fnName in ElProto) {
        if (typeof ElProto[fnName] == 'function'){
            (function(fnName) {
                CelProto[fnName] = CelProto[fnName] || function() {
                    return this.invoke(fnName, arguments);
                };
            }).call(CelProto, fnName);

        }
    }
};

Ext.CompositeElementLite.importElementMethods();

if(Ext.DomQuery){
    Ext.Element.selectorFunction = Ext.DomQuery.select;
}

/**
 * Selects elements based on the passed CSS selector to enable {@link Ext.Element Element} methods
 * to be applied to many related elements in one statement through the returned {@link Ext.CompositeElement CompositeElement} or
 * {@link Ext.CompositeElementLite CompositeElementLite} object.
 * @param {String/Array} selector The CSS selector or an array of elements
 * @param {HTMLElement/String} root (optional) The root element of the query or id of the root
 * @return {CompositeElementLite/CompositeElement}
 * @member Ext.Element
 * @method select
 * @static
 */
Ext.Element.select = function(selector, root){
    var els;
    if(typeof selector == "string"){
        els = Ext.Element.selectorFunction(selector, root);
    }else if(selector.length !== undefined){
        els = selector;
    }else{
        throw "Invalid selector";
    }
    return new Ext.CompositeElementLite(els);
};
/**
 * Selects elements based on the passed CSS selector to enable {@link Ext.Element Element} methods
 * to be applied to many related elements in one statement through the returned {@link Ext.CompositeElement CompositeElement} or
 * {@link Ext.CompositeElementLite CompositeElementLite} object.
 * @param {String/Array} selector The CSS selector or an array of elements
 * @param {HTMLElement/String} root (optional) The root element of the query or id of the root
 * @return {CompositeElementLite/CompositeElement}
 * @member Ext
 * @method select
 */
Ext.select = Ext.Element.select;
(function(){
    var BEFOREREQUEST = "beforerequest",
        REQUESTCOMPLETE = "requestcomplete",
        REQUESTEXCEPTION = "requestexception",
        UNDEFINED = undefined,
        LOAD = 'load',
        POST = 'POST',
        GET = 'GET',
        WINDOW = window;

    /**
     * @class Ext.data.Connection
     * @extends Ext.util.Observable
     * 
    The class encapsulates a connection to the page's originating domain, allowing requests to be made
     * either to a configured URL, or to a URL specified at request time.
    
     * 
    Requests made by this class are asynchronous, and will return immediately. No data from
     * the server will be available to the statement immediately following the {@link #request} call.
     * To process returned data, use a
     * success callback
     * in the request options object,
     * or an {@link #requestcomplete event listener}.
    
     * 
    File Uploads
    File uploads are not performed using normal "Ajax" techniques, that
     * is they are not performed using XMLHttpRequests. Instead the form is submitted in the standard
     * manner with the DOM <form> element temporarily modified to have its
     * target set to refer
     * to a dynamically generated, hidden <iframe> which is inserted into the document
     * but removed after the return data has been gathered.
    
     * 
    The server response is parsed by the browser to create the document for the IFRAME. If the
     * server is using JSON to send the return object, then the
     * Content-Type header
     * must be set to "text/html" in order to tell the browser to insert the text unchanged into the document body.
    
     * 
    Characters which are significant to an HTML parser must be sent as HTML entities, so encode
     * "<" as "&lt;", "&" as "&amp;" etc.
    
     * 
    The response text is retrieved from the document, and a fake XMLHttpRequest object
     * is created containing a responseText property in order to conform to the
     * requirements of event handlers and callbacks.
    
     * 
    Be aware that file upload packets are sent with the content type multipart/form
     * and some server technologies (notably JEE) may require some custom processing in order to
     * retrieve parameter names and parameter values from the packet content.
    
     * 
    Also note that it's not possible to check the response code of the hidden iframe, so the success handler will ALWAYS fire.
    
     * @constructor
     * @param {Object} config a configuration object.
     */
    Ext.data.Connection = function(config){
        Ext.apply(this, config);
        this.addEvents(
            /**
             * @event beforerequest
             * Fires before a network request is made to retrieve a data object.
             * @param {Connection} conn This Connection object.
             * @param {Object} options The options config object passed to the {@link #request} method.
             */
            BEFOREREQUEST,
            /**
             * @event requestcomplete
             * Fires if the request was successfully completed.
             * @param {Connection} conn This Connection object.
             * @param {Object} response The XHR object containing the response data.
             * See The XMLHttpRequest Object
             * for details.
             * @param {Object} options The options config object passed to the {@link #request} method.
             */
            REQUESTCOMPLETE,
            /**
             * @event requestexception
             * Fires if an error HTTP status was returned from the server.
             * See HTTP Status Code Definitions
             * for details of HTTP status codes.
             * @param {Connection} conn This Connection object.
             * @param {Object} response The XHR object containing the response data.
             * See The XMLHttpRequest Object
             * for details.
             * @param {Object} options The options config object passed to the {@link #request} method.
             */
            REQUESTEXCEPTION
        );
        Ext.data.Connection.superclass.constructor.call(this);
    };

    Ext.extend(Ext.data.Connection, Ext.util.Observable, {
        /**
         * @cfg {String} url (Optional) 
    The default URL to be used for requests to the server. Defaults to undefined.
    
         * 
    The url config may be a function which returns the URL to use for the Ajax request. The scope
         * (this reference) of the function is the scope option passed to the {@link #request} method.
    
         */
        /**
         * @cfg {Object} extraParams (Optional) An object containing properties which are used as
         * extra parameters to each request made by this object. (defaults to undefined)
         */
        /**
         * @cfg {Object} defaultHeaders (Optional) An object containing request headers which are added
         *  to each request made by this object. (defaults to undefined)
         */
        /**
         * @cfg {String} method (Optional) The default HTTP method to be used for requests.
         * (defaults to undefined; if not set, but {@link #request} params are present, POST will be used;
         * otherwise, GET will be used.)
         */
        /**
         * @cfg {Number} timeout (Optional) The timeout in milliseconds to be used for requests. (defaults to 30000)
         */
        timeout : 30000,
        /**
         * @cfg {Boolean} autoAbort (Optional) Whether this request should abort any pending requests. (defaults to false)
         * @type Boolean
         */
        autoAbort:false,

        /**
         * @cfg {Boolean} disableCaching (Optional) True to add a unique cache-buster param to GET requests. (defaults to true)
         * @type Boolean
         */
        disableCaching: true,

        /**
         * @cfg {String} disableCachingParam (Optional) Change the parameter which is sent went disabling caching
         * through a cache buster. Defaults to '_dc'
         * @type String
         */
        disableCachingParam: '_dc',

        /**
         * 
    Sends an HTTP request to a remote server.
    
         * 
    Important: Ajax server requests are asynchronous, and this call will
         * return before the response has been received. Process any returned data
         * in a callback function.
    
         * 
    
Ext.Ajax.request({
   url: 'ajax_demo/sample.json',
   success: function(response, opts) {
      var obj = Ext.decode(response.responseText);
      console.dir(obj);
   },
   failure: function(response, opts) {
      console.log('server-side failure with status code ' + response.status);
   }
});
         * 
    
         * 
    To execute a callback function in the correct scope, use the scope option.
    
         * @param {Object} options An object which may contain the following properties:
      
         * 
    • url : String/Function (Optional)
      The URL to
         * which to send the request, or a function to call which returns a URL string. The scope of the
         * function is specified by the scope option. Defaults to the configured
         * {@link #url}.
      • 
         * 
    • params : Object/String/Function (Optional)
      
         * An object containing properties which are used as parameters to the
         * request, a url encoded string or a function to call to get either. The scope of the function
         * is specified by the scope option.
      • 
         * 
    • method : String (Optional)
      The HTTP method to use
         * for the request. Defaults to the configured method, or if no method was configured,
         * "GET" if no parameters are being sent, and "POST" if parameters are being sent.  Note that
         * the method name is case-sensitive and should be all caps.
      • 
         * 
    • callback : Function (Optional)
      The
         * function to be called upon receipt of the HTTP response. The callback is
         * called regardless of success or failure and is passed the following
         * parameters:
        
         * 
      • options : Object
        The parameter to the request call.
        • 
         * 
      • success : Boolean
        True if the request succeeded.
        • 
         * 
      • response : Object
        The XMLHttpRequest object containing the response data.
         * See http://www.w3.org/TR/XMLHttpRequest/ for details about
         * accessing elements of the response.
        • 
         * 
      • 
         * 
    • success : Function (Optional)
      The function
         * to be called upon success of the request. The callback is passed the following
         * parameters:
        
         * 
      • response : Object
        The XMLHttpRequest object containing the response data.
        • 
         * 
      • options : Object
        The parameter to the request call.
        • 
         * 
      • 
         * 
    • failure : Function (Optional)
      The function
         * to be called upon failure of the request. The callback is passed the
         * following parameters:
        
         * 
      • response : Object
        The XMLHttpRequest object containing the response data.
        • 
         * 
      • options : Object
        The parameter to the request call.
        • 
         * 
      • 
         * 
    • scope : Object (Optional)
      The scope in
         * which to execute the callbacks: The "this" object for the callback function. If the url, or params options were
         * specified as functions from which to draw values, then this also serves as the scope for those function calls.
         * Defaults to the browser window.
      • 
         * 
    • timeout : Number (Optional)
      The timeout in milliseconds to be used for this request. Defaults to 30 seconds.
      • 
         * 
    • form : Element/HTMLElement/String (Optional)
      The <form>
         * Element or the id of the <form> to pull parameters from.
      • 
         * 
    • isUpload : Boolean (Optional)
      Only meaningful when used
         * with the form option.
         * 
      True if the form object is a file upload (will be set automatically if the form was
         * configured with enctype "multipart/form-data").
      
         * 
      File uploads are not performed using normal "Ajax" techniques, that is they are not
         * performed using XMLHttpRequests. Instead the form is submitted in the standard manner with the
         * DOM <form> element temporarily modified to have its
         * target set to refer
         * to a dynamically generated, hidden <iframe> which is inserted into the document
         * but removed after the return data has been gathered.
      
         * 
      The server response is parsed by the browser to create the document for the IFRAME. If the
         * server is using JSON to send the return object, then the
         * Content-Type header
         * must be set to "text/html" in order to tell the browser to insert the text unchanged into the document body.
      
         * 
      The response text is retrieved from the document, and a fake XMLHttpRequest object
         * is created containing a responseText property in order to conform to the
         * requirements of event handlers and callbacks.
      
         * 
      Be aware that file upload packets are sent with the content type multipart/form
         * and some server technologies (notably JEE) may require some custom processing in order to
         * retrieve parameter names and parameter values from the packet content.
      
         * 
      • 
         * 
    • headers : Object (Optional)
      Request
         * headers to set for the request.
      • 
         * 
    • xmlData : Object (Optional)
      XML document
         * to use for the post. Note: This will be used instead of params for the post
         * data. Any params will be appended to the URL.
      • 
         * 
    • jsonData : Object/String (Optional)
      JSON
         * data to use as the post. Note: This will be used instead of params for the post
         * data. Any params will be appended to the URL.
      • 
         * 
    • disableCaching : Boolean (Optional)
      True
         * to add a unique cache-buster param to GET requests.
      • 
         * 
    
         * 
    The options object may also contain any other property which might be needed to perform
         * postprocessing in a callback because it is passed to callback functions.
    
         * @return {Number} transactionId The id of the server transaction. This may be used
         * to cancel the request.
         */
        request : function(o){
            var me = this;
            if(me.fireEvent(BEFOREREQUEST, me, o)){
                if (o.el) {
                    if(!Ext.isEmpty(o.indicatorText)){
                        me.indicatorText = '
    '+o.indicatorText+"
    ";
                    }
                    if(me.indicatorText) {
                        Ext.getDom(o.el).innerHTML = me.indicatorText;
                    }
                    o.success = (Ext.isFunction(o.success) ? o.success : function(){}).createInterceptor(function(response) {
                        Ext.getDom(o.el).innerHTML = response.responseText;
                    });
                }

                var p = o.params,
                    url = o.url || me.url,
                    method,
                    cb = {success: me.handleResponse,
                          failure: me.handleFailure,
                          scope: me,
                          argument: {options: o},
                          timeout : Ext.num(o.timeout, me.timeout)
                    },
                    form,
                    serForm;


                if (Ext.isFunction(p)) {
                    p = p.call(o.scope||WINDOW, o);
                }

                p = Ext.urlEncode(me.extraParams, Ext.isObject(p) ? Ext.urlEncode(p) : p);

                if (Ext.isFunction(url)) {
                    url = url.call(o.scope || WINDOW, o);
                }

                if((form = Ext.getDom(o.form))){
                    url = url || form.action;
                     if(o.isUpload || (/multipart\/form-data/i.test(form.getAttribute("enctype")))) {
                         return me.doFormUpload.call(me, o, p, url);
                     }
                    serForm = Ext.lib.Ajax.serializeForm(form);
                    p = p ? (p + '&' + serForm) : serForm;
                }

                method = o.method || me.method || ((p || o.xmlData || o.jsonData) ? POST : GET);

                if(method === GET && (me.disableCaching && o.disableCaching !== false) || o.disableCaching === true){
                    var dcp = o.disableCachingParam || me.disableCachingParam;
                    url = Ext.urlAppend(url, dcp + '=' + (new Date().getTime()));
                }

                o.headers = Ext.applyIf(o.headers || {}, me.defaultHeaders || {});

                if(o.autoAbort === true || me.autoAbort) {
                    me.abort();
                }

                if((method == GET || o.xmlData || o.jsonData) && p){
                    url = Ext.urlAppend(url, p);
                    p = '';
                }
                return (me.transId = Ext.lib.Ajax.request(method, url, cb, p, o));
            }else{
                return o.callback ? o.callback.apply(o.scope, [o,UNDEFINED,UNDEFINED]) : null;
            }
        },

        /**
         * Determine whether this object has a request outstanding.
         * @param {Number} transactionId (Optional) defaults to the last transaction
         * @return {Boolean} True if there is an outstanding request.
         */
        isLoading : function(transId){
            return transId ? Ext.lib.Ajax.isCallInProgress(transId) : !! this.transId;
        },

        /**
         * Aborts any outstanding request.
         * @param {Number} transactionId (Optional) defaults to the last transaction
         */
        abort : function(transId){
            if(transId || this.isLoading()){
                Ext.lib.Ajax.abort(transId || this.transId);
            }
        },

        // private
        handleResponse : function(response){
            this.transId = false;
            var options = response.argument.options;
            response.argument = options ? options.argument : null;
            this.fireEvent(REQUESTCOMPLETE, this, response, options);
            if(options.success){
                options.success.call(options.scope, response, options);
            }
            if(options.callback){
                options.callback.call(options.scope, options, true, response);
            }
        },

        // private
        handleFailure : function(response, e){
            this.transId = false;
            var options = response.argument.options;
            response.argument = options ? options.argument : null;
            this.fireEvent(REQUESTEXCEPTION, this, response, options, e);
            if(options.failure){
                options.failure.call(options.scope, response, options);
            }
            if(options.callback){
                options.callback.call(options.scope, options, false, response);
            }
        },

        // private
        doFormUpload : function(o, ps, url){
            var id = Ext.id(),
                doc = document,
                frame = doc.createElement('iframe'),
                form = Ext.getDom(o.form),
                hiddens = [],
                hd,
                encoding = 'multipart/form-data',
                buf = {
                    target: form.target,
                    method: form.method,
                    encoding: form.encoding,
                    enctype: form.enctype,
                    action: form.action
                };

            /*
             * Originally this behaviour was modified for Opera 10 to apply the secure URL after
             * the frame had been added to the document. It seems this has since been corrected in
             * Opera so the behaviour has been reverted, the URL will be set before being added.
             */
            Ext.fly(frame).set({
                id: id,
                name: id,
                cls: 'x-hidden',
                src: Ext.SSL_SECURE_URL
            }); 

            doc.body.appendChild(frame);

            // This is required so that IE doesn't pop the response up in a new window.
            if(Ext.isIE){
               document.frames[id].name = id;
            }


            Ext.fly(form).set({
                target: id,
                method: POST,
                enctype: encoding,
                encoding: encoding,
                action: url || buf.action
            });

            // add dynamic params
            Ext.iterate(Ext.urlDecode(ps, false), function(k, v){
                hd = doc.createElement('input');
                Ext.fly(hd).set({
                    type: 'hidden',
                    value: v,
                    name: k
                });
                form.appendChild(hd);
                hiddens.push(hd);
            });

            function cb(){
                var me = this,
                    // bogus response object
                    r = {responseText : '',
                         responseXML : null,
                         argument : o.argument},
                    doc,
                    firstChild;

                try{
                    doc = frame.contentWindow.document || frame.contentDocument || WINDOW.frames[id].document;
                    if(doc){
                        if(doc.body){
                            if(/textarea/i.test((firstChild = doc.body.firstChild || {}).tagName)){ // json response wrapped in textarea
                                r.responseText = firstChild.value;
                            }else{
                                r.responseText = doc.body.innerHTML;
                            }
                        }
                        //in IE the document may still have a body even if returns XML.
                        r.responseXML = doc.XMLDocument || doc;
                    }
                }
                catch(e) {}

                Ext.EventManager.removeListener(frame, LOAD, cb, me);

                me.fireEvent(REQUESTCOMPLETE, me, r, o);

                function runCallback(fn, scope, args){
                    if(Ext.isFunction(fn)){
                        fn.apply(scope, args);
                    }
                }

                runCallback(o.success, o.scope, [r, o]);
                runCallback(o.callback, o.scope, [o, true, r]);

                if(!me.debugUploads){
                    setTimeout(function(){Ext.removeNode(frame);}, 100);
                }
            }

            Ext.EventManager.on(frame, LOAD, cb, this);
            form.submit();

            Ext.fly(form).set(buf);
            Ext.each(hiddens, function(h) {
                Ext.removeNode(h);
            });
        }
    });
})();

/**
 * @class Ext.Ajax
 * @extends Ext.data.Connection
 * 
    The global Ajax request class that provides a simple way to make Ajax requests
 * with maximum flexibility.
    
 * 
    Since Ext.Ajax is a singleton, you can set common properties/events for it once
 * and override them at the request function level only if necessary.
    
 * 
    Common Properties you may want to set are:
      
 * 
    • {@link #method}
      • 
 * 
    • {@link #extraParams}
      • 
 * 
    • {@link #url}
      • 
 * 
    
 * 
    
// Default headers to pass in every request
Ext.Ajax.defaultHeaders = {
    'Powered-By': 'Ext'
};
 * 
    
 * 
    
 * 
    Common Events you may want to set are:
      
 * 
    • {@link Ext.data.Connection#beforerequest beforerequest}
      • 
 * 
    • {@link Ext.data.Connection#requestcomplete requestcomplete}
      • 
 * 
    • {@link Ext.data.Connection#requestexception requestexception}
      • 
 * 
    
 * 
    
// Example: show a spinner during all Ajax requests
Ext.Ajax.on('beforerequest', this.showSpinner, this);
Ext.Ajax.on('requestcomplete', this.hideSpinner, this);
Ext.Ajax.on('requestexception', this.hideSpinner, this);
 * 
    
 * 
    
 * 
    An example request:
    
 * 
    
// Basic request
Ext.Ajax.{@link Ext.data.Connection#request request}({
   url: 'foo.php',
   success: someFn,
   failure: otherFn,
   headers: {
       'my-header': 'foo'
   },
   params: { foo: 'bar' }
});

// Simple ajax form submission
Ext.Ajax.{@link Ext.data.Connection#request request}({
    form: 'some-form',
    params: 'foo=bar'
});
 * 
    
 * 
    
 * @singleton
 */
Ext.Ajax = new Ext.data.Connection({
    /**
     * @cfg {String} url @hide
     */
    /**
     * @cfg {Object} extraParams @hide
     */
    /**
     * @cfg {Object} defaultHeaders @hide
     */
    /**
     * @cfg {String} method (Optional) @hide
     */
    /**
     * @cfg {Number} timeout (Optional) @hide
     */
    /**
     * @cfg {Boolean} autoAbort (Optional) @hide
     */

    /**
     * @cfg {Boolean} disableCaching (Optional) @hide
     */

    /**
     * @property  disableCaching
     * True to add a unique cache-buster param to GET requests. (defaults to true)
     * @type Boolean
     */
    /**
     * @property  url
     * The default URL to be used for requests to the server. (defaults to undefined)
     * If the server receives all requests through one URL, setting this once is easier than
     * entering it on every request.
     * @type String
     */
    /**
     * @property  extraParams
     * An object containing properties which are used as extra parameters to each request made
     * by this object (defaults to undefined). Session information and other data that you need
     * to pass with each request are commonly put here.
     * @type Object
     */
    /**
     * @property  defaultHeaders
     * An object containing request headers which are added to each request made by this object
     * (defaults to undefined).
     * @type Object
     */
    /**
     * @property  method
     * The default HTTP method to be used for requests. Note that this is case-sensitive and
     * should be all caps (defaults to undefined; if not set but params are present will use
     * "POST", otherwise will use "GET".)
     * @type String
     */
    /**
     * @property  timeout
     * The timeout in milliseconds to be used for requests. (defaults to 30000)
     * @type Number
     */

    /**
     * @property  autoAbort
     * Whether a new request should abort any pending requests. (defaults to false)
     * @type Boolean
     */
    autoAbort : false,

    /**
     * Serialize the passed form into a url encoded string
     * @param {String/HTMLElement} form
     * @return {String}
     */
    serializeForm : function(form){
        return Ext.lib.Ajax.serializeForm(form);
    }
});
/**
 * @class Ext.util.JSON
 * Modified version of Douglas Crockford"s json.js that doesn"t
 * mess with the Object prototype
 * http://www.json.org/js.html
 * @singleton
 */
Ext.util.JSON = new (function(){
    var useHasOwn = !!{}.hasOwnProperty,
        isNative = function() {
            var useNative = null;

            return function() {
                if (useNative === null) {
                    useNative = Ext.USE_NATIVE_JSON && window.JSON && JSON.toString() == '[object JSON]';
                }
        
                return useNative;
            };
        }(),
        pad = function(n) {
            return n < 10 ? "0" + n : n;
        },
        doDecode = function(json){
            return json ? eval("(" + json + ")") : "";    
        },
        doEncode = function(o){
            if(!Ext.isDefined(o) || o === null){
                return "null";
            }else if(Ext.isArray(o)){
                return encodeArray(o);
            }else if(Ext.isDate(o)){
                return Ext.util.JSON.encodeDate(o);
            }else if(Ext.isString(o)){
                return encodeString(o);
            }else if(typeof o == "number"){
                //don't use isNumber here, since finite checks happen inside isNumber
                return isFinite(o) ? String(o) : "null";
            }else if(Ext.isBoolean(o)){
                return String(o);
            }else {
                var a = ["{"], b, i, v;
                for (i in o) {
                    // don't encode DOM objects
                    if(!o.getElementsByTagName){
                        if(!useHasOwn || o.hasOwnProperty(i)) {
                            v = o[i];
                            switch (typeof v) {
                            case "undefined":
                            case "function":
                            case "unknown":
                                break;
                            default:
                                if(b){
                                    a.push(',');
                                }
                                a.push(doEncode(i), ":",
                                        v === null ? "null" : doEncode(v));
                                b = true;
                            }
                        }
                    }
                }
                a.push("}");
                return a.join("");
            }    
        },
        m = {
            "\b": '\\b',
            "\t": '\\t',
            "\n": '\\n',
            "\f": '\\f',
            "\r": '\\r',
            '"' : '\\"',
            "\\": '\\\\'
        },
        encodeString = function(s){
            if (/["\\\x00-\x1f]/.test(s)) {
                return '"' + s.replace(/([\x00-\x1f\\"])/g, function(a, b) {
                    var c = m[b];
                    if(c){
                        return c;
                    }
                    c = b.charCodeAt();
                    return "\\u00" +
                        Math.floor(c / 16).toString(16) +
                        (c % 16).toString(16);
                }) + '"';
            }
            return '"' + s + '"';
        },
        encodeArray = function(o){
            var a = ["["], b, i, l = o.length, v;
                for (i = 0; i < l; i += 1) {
                    v = o[i];
                    switch (typeof v) {
                        case "undefined":
                        case "function":
                        case "unknown":
                            break;
                        default:
                            if (b) {
                                a.push(',');
                            }
                            a.push(v === null ? "null" : Ext.util.JSON.encode(v));
                            b = true;
                    }
                }
                a.push("]");
                return a.join("");
        };

    /**
     * 
    Encodes a Date. This returns the actual string which is inserted into the JSON string as the literal expression.
     * The returned value includes enclosing double quotation marks.
    
     * 
    The default return format is "yyyy-mm-ddThh:mm:ss".
    
     * 
    To override this:
    
Ext.util.JSON.encodeDate = function(d) {
    return d.format('"Y-m-d"');
};

    
     * @param {Date} d The Date to encode
     * @return {String} The string literal to use in a JSON string.
     */
    this.encodeDate = function(o){
        return '"' + o.getFullYear() + "-" +
                pad(o.getMonth() + 1) + "-" +
                pad(o.getDate()) + "T" +
                pad(o.getHours()) + ":" +
                pad(o.getMinutes()) + ":" +
                pad(o.getSeconds()) + '"';
    };

    /**
     * Encodes an Object, Array or other value
     * @param {Mixed} o The variable to encode
     * @return {String} The JSON string
     */
    this.encode = function() {
        var ec;
        return function(o) {
            if (!ec) {
                // setup encoding function on first access
                ec = isNative() ? JSON.stringify : doEncode;
            }
            return ec(o);
        };
    }();


    /**
     * Decodes (parses) a JSON string to an object. If the JSON is invalid, this function throws a SyntaxError unless the safe option is set.
     * @param {String} json The JSON string
     * @return {Object} The resulting object
     */
    this.decode = function() {
        var dc;
        return function(json) {
            if (!dc) {
                // setup decoding function on first access
                dc = isNative() ? JSON.parse : doDecode;
            }
            return dc(json);
        };
    }();

})();
/**
 * Shorthand for {@link Ext.util.JSON#encode}
 * @param {Mixed} o The variable to encode
 * @return {String} The JSON string
 * @member Ext
 * @method encode
 */
Ext.encode = Ext.util.JSON.encode;
/**
 * Shorthand for {@link Ext.util.JSON#decode}
 * @param {String} json The JSON string
 * @param {Boolean} safe (optional) Whether to return null or throw an exception if the JSON is invalid.
 * @return {Object} The resulting object
 * @member Ext
 * @method decode
 */
Ext.decode = Ext.util.JSON.decode;
/**
 * @class Ext.EventManager
 * Registers event handlers that want to receive a normalized EventObject instead of the standard browser event and provides
 * several useful events directly.
 * See {@link Ext.EventObject} for more details on normalized event objects.
 * @singleton
 */
Ext.EventManager = function(){
    var docReadyEvent,
        docReadyProcId,
        docReadyState = false,
        DETECT_NATIVE = Ext.isGecko || Ext.isWebKit || Ext.isSafari || Ext.isIE10p,
        E = Ext.lib.Event,
        D = Ext.lib.Dom,
        DOC = document,
        WINDOW = window,
        DOMCONTENTLOADED = "DOMContentLoaded",
        COMPLETE = 'complete',
        propRe = /^(?:scope|delay|buffer|single|stopEvent|preventDefault|stopPropagation|normalized|args|delegate)$/,
        /*
         * This cache is used to hold special js objects, the document and window, that don't have an id. We need to keep
         * a reference to them so we can look them up at a later point.
         */
        specialElCache = [];

     function getId(el){
        var id = false,
            i = 0,
            len = specialElCache.length,
            skip = false,
            o;

        if (el) {
            if (el.getElementById || el.navigator) {
                // look up the id
                for(; i < len; ++i){
                    o = specialElCache[i];
                    if(o.el === el){
                        id = o.id;
                        break;
                    }
                }
                if(!id){
                    // for browsers that support it, ensure that give the el the same id
                    id = Ext.id(el);
                    specialElCache.push({
                        id: id,
                        el: el
                    });
                    skip = true;
                }
            }else{
                id = Ext.id(el);
            }
            if(!Ext.elCache[id]){
                Ext.Element.addToCache(new Ext.Element(el), id);
                if(skip){
                    Ext.elCache[id].skipGC = true;
                }
            }
        }
        return id;
     }

    /// There is some jquery work around stuff here that isn't needed in Ext Core.
    function addListener(el, ename, fn, task, wrap, scope){
        el = Ext.getDom(el);
        var id = getId(el),
            es = Ext.elCache[id].events,
            wfn;

        wfn = E.on(el, ename, wrap);
        es[ename] = es[ename] || [];

        /* 0 = Original Function,
           1 = Event Manager Wrapped Function,
           2 = Scope,
           3 = Adapter Wrapped Function,
           4 = Buffered Task
        */
        es[ename].push([fn, wrap, scope, wfn, task]);

        // this is a workaround for jQuery and should somehow be removed from Ext Core in the future
        // without breaking ExtJS.

        // workaround for jQuery
        if(el.addEventListener && ename == "mousewheel"){
            var args = ["DOMMouseScroll", wrap, false];
            el.addEventListener.apply(el, args);
            Ext.EventManager.addListener(WINDOW, 'unload', function(){
                el.removeEventListener.apply(el, args);
            });
        }

        // fix stopped mousedowns on the document
        if(el == DOC && ename == "mousedown"){
            Ext.EventManager.stoppedMouseDownEvent.addListener(wrap);
        }
    }

    function doScrollChk(){
        /* Notes:
             'doScroll' will NOT work in a IFRAME/FRAMESET.
             The method succeeds but, a DOM query done immediately after -- FAILS.
          */
        if(window != top){
            return false;
        }

        try{
            DOC.documentElement.doScroll('left');
        }catch(e){
             return false;
        }

        fireDocReady();
        return true;
    }
    /**
     * @return {Boolean} True if the document is in a 'complete' state (or was determined to
     * be true by other means). If false, the state is evaluated again until canceled.
     */
    function checkReadyState(e){

        if(Ext.isIE9m && doScrollChk()){
            return true;
        }
        if(DOC.readyState == COMPLETE){
            fireDocReady();
            return true;
        }
        docReadyState || (docReadyProcId = setTimeout(arguments.callee, 2));
        return false;
    }

    var styles;
    function checkStyleSheets(e){
        styles || (styles = Ext.query('style, link[rel=stylesheet]'));
        if(styles.length == DOC.styleSheets.length){
            fireDocReady();
            return true;
        }
        docReadyState || (docReadyProcId = setTimeout(arguments.callee, 2));
        return false;
    }

    function OperaDOMContentLoaded(e){
        DOC.removeEventListener(DOMCONTENTLOADED, arguments.callee, false);
        checkStyleSheets();
    }

    function fireDocReady(e){
        if(!docReadyState){
            docReadyState = true; //only attempt listener removal once

            if(docReadyProcId){
                clearTimeout(docReadyProcId);
            }
            if(DETECT_NATIVE) {
                DOC.removeEventListener(DOMCONTENTLOADED, fireDocReady, false);
            }
            if(Ext.isIE9m && checkReadyState.bindIE){  //was this was actually set ??
                DOC.detachEvent('onreadystatechange', checkReadyState);
            }
            E.un(WINDOW, "load", arguments.callee);
        }
        if(docReadyEvent && !Ext.isReady){
            Ext.isReady = true;
            docReadyEvent.fire();
            docReadyEvent.listeners = [];
        }

    }

    function initDocReady(){
        docReadyEvent || (docReadyEvent = new Ext.util.Event());
        if (DETECT_NATIVE) {
            DOC.addEventListener(DOMCONTENTLOADED, fireDocReady, false);
        }
        /*
         * Handle additional (exceptional) detection strategies here
         */
        if (Ext.isIE9m){
            //Use readystatechange as a backup AND primary detection mechanism for a FRAME/IFRAME
            //See if page is already loaded
            if(!checkReadyState()){
                checkReadyState.bindIE = true;
                DOC.attachEvent('onreadystatechange', checkReadyState);
            }

        }else if(Ext.isOpera ){
            /* Notes:
               Opera needs special treatment needed here because CSS rules are NOT QUITE
               available after DOMContentLoaded is raised.
            */

            //See if page is already loaded and all styleSheets are in place
            (DOC.readyState == COMPLETE && checkStyleSheets()) ||
                DOC.addEventListener(DOMCONTENTLOADED, OperaDOMContentLoaded, false);

        }else if (Ext.isWebKit){
            //Fallback for older Webkits without DOMCONTENTLOADED support
            checkReadyState();
        }
        // no matter what, make sure it fires on load
        E.on(WINDOW, "load", fireDocReady);
    }

    function createTargeted(h, o){
        return function(){
            var args = Ext.toArray(arguments);
            if(o.target == Ext.EventObject.setEvent(args[0]).target){
                h.apply(this, args);
            }
        };
    }

    function createBuffered(h, o, task){
        return function(e){
            // create new event object impl so new events don't wipe out properties
            task.delay(o.buffer, h, null, [new Ext.EventObjectImpl(e)]);
        };
    }

    function createSingle(h, el, ename, fn, scope){
        return function(e){
            Ext.EventManager.removeListener(el, ename, fn, scope);
            h(e);
        };
    }

    function createDelayed(h, o, fn){
        return function(e){
            var task = new Ext.util.DelayedTask(h);
            if(!fn.tasks) {
                fn.tasks = [];
            }
            fn.tasks.push(task);
            task.delay(o.delay || 10, h, null, [new Ext.EventObjectImpl(e)]);
        };
    }

    function listen(element, ename, opt, fn, scope){
        var o = (!opt || typeof opt == "boolean") ? {} : opt,
            el = Ext.getDom(element), task;

        fn = fn || o.fn;
        scope = scope || o.scope;

        if(!el){
            throw "Error listening for \"" + ename + '\". Element "' + element + '" doesn\'t exist.';
        }
        function h(e){
            // prevent errors while unload occurring
            if(!Ext){// !window[xname]){  ==> can't we do this?
                return;
            }
            e = Ext.EventObject.setEvent(e);
            var t;
            if (o.delegate) {
                if(!(t = e.getTarget(o.delegate, el))){
                    return;
                }
            } else {
                t = e.target;
            }
            if (o.stopEvent) {
                e.stopEvent();
            }
            if (o.preventDefault) {
               e.preventDefault();
            }
            if (o.stopPropagation) {
                e.stopPropagation();
            }
            if (o.normalized === false) {
                e = e.browserEvent;
            }

            fn.call(scope || el, e, t, o);
        }
        if(o.target){
            h = createTargeted(h, o);
        }
        if(o.delay){
            h = createDelayed(h, o, fn);
        }
        if(o.single){
            h = createSingle(h, el, ename, fn, scope);
        }
        if(o.buffer){
            task = new Ext.util.DelayedTask(h);
            h = createBuffered(h, o, task);
        }

        addListener(el, ename, fn, task, h, scope);
        return h;
    }

    var pub = {
        /**
         * Appends an event handler to an element.  The shorthand version {@link #on} is equivalent.  Typically you will
         * use {@link Ext.Element#addListener} directly on an Element in favor of calling this version.
         * @param {String/HTMLElement} el The html element or id to assign the event handler to.
         * @param {String} eventName The name of the event to listen for.
         * @param {Function} handler The handler function the event invokes. This function is passed
         * the following parameters:
      
         * 
    • evt : EventObject
      The {@link Ext.EventObject EventObject} describing the event.
      • 
         * 
    • t : Element
      The {@link Ext.Element Element} which was the target of the event.
         * Note that this may be filtered by using the delegate option.
      • 
         * 
    • o : Object
      The options object from the addListener call.
      • 
         * 
    
         * @param {Object} scope (optional) The scope (this reference) in which the handler function is executed. Defaults to the Element.
         * @param {Object} options (optional) An object containing handler configuration properties.
         * This may contain any of the following properties:
      
         * 
    • scope : Object
      The scope (this reference) in which the handler function is executed. Defaults to the Element.
      • 
         * 
    • delegate : String
      A simple selector to filter the target or look for a descendant of the target
      • 
         * 
    • stopEvent : Boolean
      True to stop the event. That is stop propagation, and prevent the default action.
      • 
         * 
    • preventDefault : Boolean
      True to prevent the default action
      • 
         * 
    • stopPropagation : Boolean
      True to prevent event propagation
      • 
         * 
    • normalized : Boolean
      False to pass a browser event to the handler function instead of an Ext.EventObject
      • 
         * 
    • delay : Number
      The number of milliseconds to delay the invocation of the handler after te event fires.
      • 
         * 
    • single : Boolean
      True to add a handler to handle just the next firing of the event, and then remove itself.
      • 
         * 
    • buffer : Number
      Causes the handler to be scheduled to run in an {@link Ext.util.DelayedTask} delayed
         * by the specified number of milliseconds. If the event fires again within that time, the original
         * handler is not invoked, but the new handler is scheduled in its place.
      • 
         * 
    • target : Element
      Only call the handler if the event was fired on the target Element, not if the event was bubbled up from a child node.
      • 
         * 

    
         * 
    See {@link Ext.Element#addListener} for examples of how to use these options.
    
         */
        addListener : function(element, eventName, fn, scope, options){
            if(typeof eventName == 'object'){
                var o = eventName, e, val;
                for(e in o){
                    val = o[e];
                    if(!propRe.test(e)){
                        if(Ext.isFunction(val)){
                            // shared options
                            listen(element, e, o, val, o.scope);
                        }else{
                            // individual options
                            listen(element, e, val);
                        }
                    }
                }
            } else {
                listen(element, eventName, options, fn, scope);
            }
        },

        /**
         * Removes an event handler from an element.  The shorthand version {@link #un} is equivalent.  Typically
         * you will use {@link Ext.Element#removeListener} directly on an Element in favor of calling this version.
         * @param {String/HTMLElement} el The id or html element from which to remove the listener.
         * @param {String} eventName The name of the event.
         * @param {Function} fn The handler function to remove. This must be a reference to the function passed into the {@link #addListener} call.
         * @param {Object} scope If a scope (this reference) was specified when the listener was added,
         * then this must refer to the same object.
         */
        removeListener : function(el, eventName, fn, scope){
            el = Ext.getDom(el);
            var id = getId(el),
                f = el && (Ext.elCache[id].events)[eventName] || [],
                wrap, i, l, k, len, fnc;

            for (i = 0, len = f.length; i < len; i++) {

                /* 0 = Original Function,
                   1 = Event Manager Wrapped Function,
                   2 = Scope,
                   3 = Adapter Wrapped Function,
                   4 = Buffered Task
                */
                if (Ext.isArray(fnc = f[i]) && fnc[0] == fn && (!scope || fnc[2] == scope)) {
                    if(fnc[4]) {
                        fnc[4].cancel();
                    }
                    k = fn.tasks && fn.tasks.length;
                    if(k) {
                        while(k--) {
                            fn.tasks[k].cancel();
                        }
                        delete fn.tasks;
                    }
                    wrap = fnc[1];
                    E.un(el, eventName, E.extAdapter ? fnc[3] : wrap);

                    // jQuery workaround that should be removed from Ext Core
                    if(wrap && el.addEventListener && eventName == "mousewheel"){
                        el.removeEventListener("DOMMouseScroll", wrap, false);
                    }

                    // fix stopped mousedowns on the document
                    if(wrap && el == DOC && eventName == "mousedown"){
                        Ext.EventManager.stoppedMouseDownEvent.removeListener(wrap);
                    }

                    f.splice(i, 1);
                    if (f.length === 0) {
                        delete Ext.elCache[id].events[eventName];
                    }
                    for (k in Ext.elCache[id].events) {
                        return false;
                    }
                    Ext.elCache[id].events = {};
                    return false;
                }
            }
        },

        /**
         * Removes all event handers from an element.  Typically you will use {@link Ext.Element#removeAllListeners}
         * directly on an Element in favor of calling this version.
         * @param {String/HTMLElement} el The id or html element from which to remove all event handlers.
         */
        removeAll : function(el){
            el = Ext.getDom(el);
            var id = getId(el),
                ec = Ext.elCache[id] || {},
                es = ec.events || {},
                f, i, len, ename, fn, k, wrap;

            for(ename in es){
                if(es.hasOwnProperty(ename)){
                    f = es[ename];
                    /* 0 = Original Function,
                       1 = Event Manager Wrapped Function,
                       2 = Scope,
                       3 = Adapter Wrapped Function,
                       4 = Buffered Task
                    */
                    for (i = 0, len = f.length; i < len; i++) {
                        fn = f[i];
                        if(fn[4]) {
                            fn[4].cancel();
                        }
                        if(fn[0].tasks && (k = fn[0].tasks.length)) {
                            while(k--) {
                                fn[0].tasks[k].cancel();
                            }
                            delete fn.tasks;
                        }
                        wrap =  fn[1];
                        E.un(el, ename, E.extAdapter ? fn[3] : wrap);

                        // jQuery workaround that should be removed from Ext Core
                        if(el.addEventListener && wrap && ename == "mousewheel"){
                            el.removeEventListener("DOMMouseScroll", wrap, false);
                        }

                        // fix stopped mousedowns on the document
                        if(wrap && el == DOC &&  ename == "mousedown"){
                            Ext.EventManager.stoppedMouseDownEvent.removeListener(wrap);
                        }
                    }
                }
            }
            if (Ext.elCache[id]) {
                Ext.elCache[id].events = {};
            }
        },

        getListeners : function(el, eventName) {
            el = Ext.getDom(el);
            var id = getId(el),
                ec = Ext.elCache[id] || {},
                es = ec.events || {},
                results = [];
            if (es && es[eventName]) {
                return es[eventName];
            } else {
                return null;
            }
        },
        
        removeFromSpecialCache: function(o) {
            var i = 0,
                len = specialElCache.length;
                
            for (; i < len; ++i) {
                if (specialElCache[i].el == o) {
                    specialElCache.splice(i, 1); 
                }
            }
        },

        purgeElement : function(el, recurse, eventName) {
            el = Ext.getDom(el);
            var id = getId(el),
                ec = Ext.elCache[id] || {},
                es = ec.events || {},
                i, f, len;
            if (eventName) {
                if (es && es.hasOwnProperty(eventName)) {
                    f = es[eventName];
                    for (i = 0, len = f.length; i < len; i++) {
                        Ext.EventManager.removeListener(el, eventName, f[i][0]);
                    }
                }
            } else {
                Ext.EventManager.removeAll(el);
            }
            if (recurse && el && el.childNodes) {
                for (i = 0, len = el.childNodes.length; i < len; i++) {
                    Ext.EventManager.purgeElement(el.childNodes[i], recurse, eventName);
                }
            }
        },

        _unload : function() {
            var el;
            for (el in Ext.elCache) {
                Ext.EventManager.removeAll(el);
            }
            delete Ext.elCache;
            delete Ext.Element._flyweights;

            // Abort any outstanding Ajax requests
            var c,
                conn,
                tid,
                ajax = Ext.lib.Ajax;
            (typeof ajax.conn == 'object') ? conn = ajax.conn : conn = {};
            for (tid in conn) {
                c = conn[tid];
                if (c) {
                    ajax.abort({conn: c, tId: tid});
                }
            }
        },
        /**
         * Adds a listener to be notified when the document is ready (before onload and before images are loaded). Can be
         * accessed shorthanded as Ext.onReady().
         * @param {Function} fn The method the event invokes.
         * @param {Object} scope (optional) The scope (this reference) in which the handler function executes. Defaults to the browser window.
         * @param {boolean} options (optional) Options object as passed to {@link Ext.Element#addListener}. It is recommended that the options
         * {single: true} be used so that the handler is removed on first invocation.
         */
        onDocumentReady : function(fn, scope, options){
            if (Ext.isReady) { // if it already fired or document.body is present
                docReadyEvent || (docReadyEvent = new Ext.util.Event());
                docReadyEvent.addListener(fn, scope, options);
                docReadyEvent.fire();
                docReadyEvent.listeners = [];
            } else {
                if (!docReadyEvent) {
                    initDocReady();
                }
                options = options || {};
                options.delay = options.delay || 1;
                docReadyEvent.addListener(fn, scope, options);
            }
        },

        /**
         * Forces a document ready state transition for the framework.  Used when Ext is loaded
         * into a DOM structure AFTER initial page load (Google API or other dynamic load scenario.
         * Any pending 'onDocumentReady' handlers will be fired (if not already handled).
         */
        fireDocReady  : fireDocReady
    };
     /**
     * Appends an event handler to an element.  Shorthand for {@link #addListener}.
     * @param {String/HTMLElement} el The html element or id to assign the event handler to
     * @param {String} eventName The name of the event to listen for.
     * @param {Function} handler The handler function the event invokes.
     * @param {Object} scope (optional) (this reference) in which the handler function executes. Defaults to the Element.
     * @param {Object} options (optional) An object containing standard {@link #addListener} options
     * @member Ext.EventManager
     * @method on
     */
    pub.on = pub.addListener;
    /**
     * Removes an event handler from an element.  Shorthand for {@link #removeListener}.
     * @param {String/HTMLElement} el The id or html element from which to remove the listener.
     * @param {String} eventName The name of the event.
     * @param {Function} fn The handler function to remove. This must be a reference to the function passed into the {@link #on} call.
     * @param {Object} scope If a scope (this reference) was specified when the listener was added,
     * then this must refer to the same object.
     * @member Ext.EventManager
     * @method un
     */
    pub.un = pub.removeListener;

    pub.stoppedMouseDownEvent = new Ext.util.Event();
    return pub;
}();
/**
  * Adds a listener to be notified when the document is ready (before onload and before images are loaded). Shorthand of {@link Ext.EventManager#onDocumentReady}.
  * @param {Function} fn The method the event invokes.
  * @param {Object} scope (optional) The scope (this reference) in which the handler function executes. Defaults to the browser window.
  * @param {boolean} options (optional) Options object as passed to {@link Ext.Element#addListener}. It is recommended that the options
  * {single: true} be used so that the handler is removed on first invocation.
  * @member Ext
  * @method onReady
 */
Ext.onReady = Ext.EventManager.onDocumentReady;


//Initialize doc classes
(function(){
    var initExtCss = function() {
        // find the body element
        var bd = document.body || document.getElementsByTagName('body')[0];
        if (!bd) {
            return false;
        }

        var cls = [];
        
        if (Ext.isIE) {
            // Only treat IE9 and less like IE in the css
            if (!Ext.isIE10p) {
                cls.push('ext-ie');
            }
            if (Ext.isIE6) {
                cls.push('ext-ie6');
            } else if (Ext.isIE7) {
                cls.push('ext-ie7', 'ext-ie7m');
            } else if (Ext.isIE8) {
                cls.push('ext-ie8', 'ext-ie8m');
            } else if (Ext.isIE9) {
                cls.push('ext-ie9', 'ext-ie9m');
            } else if (Ext.isIE10) {
                cls.push('ext-ie10');
            }
        }
        
        if (Ext.isGecko) {
            if (Ext.isGecko2) {
                cls.push('ext-gecko2');
            } else {
                cls.push('ext-gecko3');
            }
        }
        
        if (Ext.isOpera) {
            cls.push('ext-opera');
        }
        
        if (Ext.isWebKit) {
            cls.push('ext-webkit');
        }

        if (Ext.isSafari) {
            cls.push("ext-safari " + (Ext.isSafari2 ? 'ext-safari2' : (Ext.isSafari3 ? 'ext-safari3' : 'ext-safari4')));
        } else if(Ext.isChrome) {
            cls.push("ext-chrome");
        }

        if (Ext.isMac) {
            cls.push("ext-mac");
        }
        if (Ext.isLinux) {
            cls.push("ext-linux");
        }

        // add to the parent to allow for selectors like ".ext-strict .ext-ie"
        if (Ext.isStrict || Ext.isBorderBox) {
            var p = bd.parentNode;
            if (p) {
                if (!Ext.isStrict) {
                    Ext.fly(p, '_internal').addClass('x-quirks');
                    if (Ext.isIE9m && !Ext.isStrict) {
                        Ext.isIEQuirks = true;
                    }
                }
                Ext.fly(p, '_internal').addClass(((Ext.isStrict && Ext.isIE ) || (!Ext.enableForcedBoxModel && !Ext.isIE)) ? ' ext-strict' : ' ext-border-box');
            }
        }
        // Forced border box model class applied to all elements. Bypassing javascript based box model adjustments
        // in favor of css.  This is for non-IE browsers.
        if (Ext.enableForcedBoxModel && !Ext.isIE) {
            Ext.isForcedBorderBox = true;
            cls.push("ext-forced-border-box");
        }

        Ext.fly(bd, '_internal').addClass(cls);
        return true;
    };

    if (!initExtCss()) {
        Ext.onReady(initExtCss);
    }
})();

// Code used to detect certain browser feature/quirks/bugs at startup.
(function(){
    /**
     * @class Ext.supports
     * @ignore
     */
    var supports = Ext.apply(Ext.supports, {
        /**
         * In Webkit, there is an issue with getting the margin right property, see
         * https://bugs.webkit.org/show_bug.cgi?id=13343
         */
        correctRightMargin: true,

        /**
         * Webkit browsers return rgba(0, 0, 0) when a transparent color is used
         */
        correctTransparentColor: true,

        /**
         * IE uses styleFloat, not cssFloat for the float property.
         */
        cssFloat: true
    });

    var supportTests = function(){
            var div = document.createElement('div'),
                doc = document,
                view,
                last;

            div.innerHTML = '
    ';
            doc.body.appendChild(div);
            last = div.lastChild;

            if((view = doc.defaultView)){
                if(view.getComputedStyle(div.firstChild.firstChild, null).marginRight != '0px'){
                    supports.correctRightMargin = false;
                }
                if(view.getComputedStyle(last, null).backgroundColor != 'transparent'){
                    supports.correctTransparentColor = false;
                }
            }
            supports.cssFloat = !!last.style.cssFloat;
            doc.body.removeChild(div);
    };

    if (Ext.isReady) {
        supportTests();
    } else {
        Ext.onReady(supportTests);
    }
})();


/**
 * @class Ext.EventObject
 * Just as {@link Ext.Element} wraps around a native DOM node, Ext.EventObject
 * wraps the browser's native event-object normalizing cross-browser differences,
 * such as which mouse button is clicked, keys pressed, mechanisms to stop
 * event-propagation along with a method to prevent default actions from taking place.
 * 
    For example:
    
 * 
    
function handleClick(e, t){ // e is not a standard event object, it is a Ext.EventObject
    e.preventDefault();
    var target = e.getTarget(); // same as t (the target HTMLElement)
    ...
}
var myDiv = {@link Ext#get Ext.get}("myDiv");  // get reference to an {@link Ext.Element}
myDiv.on(         // 'on' is shorthand for addListener
    "click",      // perform an action on click of myDiv
    handleClick   // reference to the action handler
);
// other methods to do the same:
Ext.EventManager.on("myDiv", 'click', handleClick);
Ext.EventManager.addListener("myDiv", 'click', handleClick);
 
    
 * @singleton
 */
Ext.EventObject = function(){
    var E = Ext.lib.Event,
        clickRe = /(dbl)?click/,
        // safari keypress events for special keys return bad keycodes
        safariKeys = {
            3 : 13, // enter
            63234 : 37, // left
            63235 : 39, // right
            63232 : 38, // up
            63233 : 40, // down
            63276 : 33, // page up
            63277 : 34, // page down
            63272 : 46, // delete
            63273 : 36, // home
            63275 : 35  // end
        },
        // normalize button clicks
        btnMap = Ext.isIE ? {1:0,4:1,2:2} : {0:0,1:1,2:2};

    Ext.EventObjectImpl = function(e){
        if(e){
            this.setEvent(e.browserEvent || e);
        }
    };

    Ext.EventObjectImpl.prototype = {
           /** @private */
        setEvent : function(e){
            var me = this;
            if(e == me || (e && e.browserEvent)){ // already wrapped
                return e;
            }
            me.browserEvent = e;
            if(e){
                // normalize buttons
                me.button = e.button ? btnMap[e.button] : (e.which ? e.which - 1 : -1);
                if(clickRe.test(e.type) && me.button == -1){
                    me.button = 0;
                }
                me.type = e.type;
                me.shiftKey = e.shiftKey;
                // mac metaKey behaves like ctrlKey
                me.ctrlKey = e.ctrlKey || e.metaKey || false;
                me.altKey = e.altKey;
                // in getKey these will be normalized for the mac
                me.keyCode = e.keyCode;
                me.charCode = e.charCode;
                // cache the target for the delayed and or buffered events
                me.target = E.getTarget(e);
                // same for XY
                me.xy = E.getXY(e);
            }else{
                me.button = -1;
                me.shiftKey = false;
                me.ctrlKey = false;
                me.altKey = false;
                me.keyCode = 0;
                me.charCode = 0;
                me.target = null;
                me.xy = [0, 0];
            }
            return me;
        },

        /**
         * Stop the event (preventDefault and stopPropagation)
         */
        stopEvent : function(){
            var me = this;
            if(me.browserEvent){
                if(me.browserEvent.type == 'mousedown'){
                    Ext.EventManager.stoppedMouseDownEvent.fire(me);
                }
                E.stopEvent(me.browserEvent);
            }
        },

        /**
         * Prevents the browsers default handling of the event.
         */
        preventDefault : function(){
            if(this.browserEvent){
                E.preventDefault(this.browserEvent);
            }
        },

        /**
         * Cancels bubbling of the event.
         */
        stopPropagation : function(){
            var me = this;
            if(me.browserEvent){
                if(me.browserEvent.type == 'mousedown'){
                    Ext.EventManager.stoppedMouseDownEvent.fire(me);
                }
                E.stopPropagation(me.browserEvent);
            }
        },

        /**
         * Gets the character code for the event.
         * @return {Number}
         */
        getCharCode : function(){
            return this.charCode || this.keyCode;
        },

        /**
         * Returns a normalized keyCode for the event.
         * @return {Number} The key code
         */
        getKey : function(){
            return this.normalizeKey(this.keyCode || this.charCode);
        },

        // private
        normalizeKey: function(k){
            return Ext.isSafari ? (safariKeys[k] || k) : k;
        },

        /**
         * Gets the x coordinate of the event.
         * @return {Number}
         */
        getPageX : function(){
            return this.xy[0];
        },

        /**
         * Gets the y coordinate of the event.
         * @return {Number}
         */
        getPageY : function(){
            return this.xy[1];
        },

        /**
         * Gets the page coordinates of the event.
         * @return {Array} The xy values like [x, y]
         */
        getXY : function(){
            return this.xy;
        },

        /**
         * Gets the target for the event.
         * @param {String} selector (optional) A simple selector to filter the target or look for an ancestor of the target
         * @param {Number/Mixed} maxDepth (optional) The max depth to
                search as a number or element (defaults to 10 || document.body)
         * @param {Boolean} returnEl (optional) True to return a Ext.Element object instead of DOM node
         * @return {HTMLelement}
         */
        getTarget : function(selector, maxDepth, returnEl){
            return selector ? Ext.fly(this.target).findParent(selector, maxDepth, returnEl) : (returnEl ? Ext.get(this.target) : this.target);
        },

        /**
         * Gets the related target.
         * @return {HTMLElement}
         */
        getRelatedTarget : function(){
            return this.browserEvent ? E.getRelatedTarget(this.browserEvent) : null;
        },

        /**
         * Normalizes mouse wheel delta across browsers
         * @return {Number} The delta
         */
        getWheelDelta : function(){
            var e = this.browserEvent;
            var delta = 0;
            if(e.wheelDelta){ /* IE/Opera. */
                delta = e.wheelDelta/120;
            }else if(e.detail){ /* Mozilla case. */
                delta = -e.detail/3;
            }
            return delta;
        },

        /**
        * Returns true if the target of this event is a child of el.  Unless the allowEl parameter is set, it will return false if if the target is el.
        * Example usage:
    
        // Handle click on any child of an element
        Ext.getBody().on('click', function(e){
            if(e.within('some-el')){
                alert('Clicked on a child of some-el!');
            }
        });

        // Handle click directly on an element, ignoring clicks on child nodes
        Ext.getBody().on('click', function(e,t){
            if((t.id == 'some-el') && !e.within(t, true)){
                alert('Clicked directly on some-el!');
            }
        });
        
    
         * @param {Mixed} el The id, DOM element or Ext.Element to check
         * @param {Boolean} related (optional) true to test if the related target is within el instead of the target
         * @param {Boolean} allowEl (optional) true to also check if the passed element is the target or related target
         * @return {Boolean}
         */
        within : function(el, related, allowEl){
            if(el){
                var t = this[related ? "getRelatedTarget" : "getTarget"]();
                return t && ((allowEl ? (t == Ext.getDom(el)) : false) || Ext.fly(el).contains(t));
            }
            return false;
        }
     };

    return new Ext.EventObjectImpl();
}();/**
 * @class Ext.Loader
 * @singleton
 * Simple class to help load JavaScript files on demand
 */
Ext.Loader = Ext.apply({}, {
    /**
     * Loads a given set of .js files. Calls the callback function when all files have been loaded
     * Set preserveOrder to true to ensure non-parallel loading of files if load order is important
     * @param {Array} fileList Array of all files to load
     * @param {Function} callback Callback to call after all files have been loaded
     * @param {Object} scope The scope to call the callback in
     * @param {Boolean} preserveOrder True to make files load in serial, one after the other (defaults to false)
     */
    load: function(fileList, callback, scope, preserveOrder) {
        var scope       = scope || this,
            head        = document.getElementsByTagName("head")[0],
            fragment    = document.createDocumentFragment(),
            numFiles    = fileList.length,
            loadedFiles = 0,
            me          = this;
        
        /**
         * Loads a particular file from the fileList by index. This is used when preserving order
         */
        var loadFileIndex = function(index) {
            head.appendChild(
                me.buildScriptTag(fileList[index], onFileLoaded)
            );
        };
        
        /**
         * Callback function which is called after each file has been loaded. This calls the callback
         * passed to load once the final file in the fileList has been loaded
         */
        var onFileLoaded = function() {
            loadedFiles ++;
            
            //if this was the last file, call the callback, otherwise load the next file
            if (numFiles == loadedFiles && typeof callback == 'function') {
                callback.call(scope);
            } else {
                if (preserveOrder === true) {
                    loadFileIndex(loadedFiles);
                }
            }
        };
        
        if (preserveOrder === true) {
            loadFileIndex.call(this, 0);
        } else {
            //load each file (most browsers will do this in parallel)
            Ext.each(fileList, function(file, index) {
                fragment.appendChild(
                    this.buildScriptTag(file, onFileLoaded)
                );  
            }, this);
            
            head.appendChild(fragment);
        }
    },
    
    /**
     * @private
     * Creates and returns a script tag, but does not place it into the document. If a callback function
     * is passed, this is called when the script has been loaded
     * @param {String} filename The name of the file to create a script tag for
     * @param {Function} callback Optional callback, which is called when the script has been loaded
     * @return {Element} The new script ta
     */
    buildScriptTag: function(filename, callback) {
        var script  = document.createElement('script');
        script.type = "text/javascript";
        script.src  = filename;
        
        //IE has a different way of handling <script> loads, so we need to check for it here
        if (script.readyState) {
            script.onreadystatechange = function() {
                if (script.readyState == "loaded" || script.readyState == "complete") {
                    script.onreadystatechange = null;
                    callback();
                }
            };
        } else {
            script.onload = callback;
        }    
        
        return script;
    }
});
/**
 * @class Ext
 */

Ext.ns("Ext.grid", "Ext.list", "Ext.dd", "Ext.tree", "Ext.form", "Ext.menu",
       "Ext.state", "Ext.layout.boxOverflow", "Ext.app", "Ext.ux", "Ext.chart", "Ext.direct", "Ext.slider");
    /**
     * Namespace alloted for extensions to the framework.
     * @property ux
     * @type Object
     */

Ext.apply(Ext, function(){
    var E = Ext,
        idSeed = 0,
        scrollWidth = null;

    return {
        /**
        * A reusable empty function
        * @property
        * @type Function
        */
        emptyFn : function(){},

        /**
         * URL to a 1x1 transparent gif image used by Ext to create inline icons with CSS background images.
         * In older versions of IE, this defaults to "http://extjs.com/s.gif" and you should change this to a URL on your server.
         * For other browsers it uses an inline data URL.
         * @type String
         */
        BLANK_IMAGE_URL : Ext.isIE6 || Ext.isIE7 || Ext.isAir ?
                            'http:/' + '/www.extjs.com/s.gif' :
                            'data:image/gif;base64,R0lGODlhAQABAID/AMDAwAAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw==',

        extendX : function(supr, fn){
            return Ext.extend(supr, fn(supr.prototype));
        },

        /**
         * Returns the current HTML document object as an {@link Ext.Element}.
         * @return Ext.Element The document
         */
        getDoc : function(){
            return Ext.get(document);
        },

        /**
         * Utility method for validating that a value is numeric, returning the specified default value if it is not.
         * @param {Mixed} value Should be a number, but any type will be handled appropriately
         * @param {Number} defaultValue The value to return if the original value is non-numeric
         * @return {Number} Value, if numeric, else defaultValue
         */
        num : function(v, defaultValue){
            v = Number(Ext.isEmpty(v) || Ext.isArray(v) || typeof v == 'boolean' || (typeof v == 'string' && v.trim().length == 0) ? NaN : v);
            return isNaN(v) ? defaultValue : v;
        },

        /**
         * 
    Utility method for returning a default value if the passed value is empty.
    
         * 
    The value is deemed to be empty if it is
      
         * 
    • null
      • 
         * 
    • undefined
      • 
         * 
    • an empty array
      • 
         * 
    • a zero length string (Unless the allowBlank parameter is true)
      • 
         * 
    
         * @param {Mixed} value The value to test
         * @param {Mixed} defaultValue The value to return if the original value is empty
         * @param {Boolean} allowBlank (optional) true to allow zero length strings to qualify as non-empty (defaults to false)
         * @return {Mixed} value, if non-empty, else defaultValue
         */
        value : function(v, defaultValue, allowBlank){
            return Ext.isEmpty(v, allowBlank) ? defaultValue : v;
        },

        /**
         * Escapes the passed string for use in a regular expression
         * @param {String} str
         * @return {String}
         */
        escapeRe : function(s) {
            return s.replace(/([-.*+?^${}()|[\]\/\\])/g, "\\$1");
        },

        sequence : function(o, name, fn, scope){
            o[name] = o[name].createSequence(fn, scope);
        },

        /**
         * Applies event listeners to elements by selectors when the document is ready.
         * The event name is specified with an @ suffix.
         * 
    
Ext.addBehaviors({
    // add a listener for click on all anchors in element with id foo
    '#foo a@click' : function(e, t){
        // do something
    },

    // add the same listener to multiple selectors (separated by comma BEFORE the @)
    '#foo a, #bar span.some-class@mouseover' : function(){
        // do something
    }
});
         * 
    
         * @param {Object} obj The list of behaviors to apply
         */
        addBehaviors : function(o){
            if(!Ext.isReady){
                Ext.onReady(function(){
                    Ext.addBehaviors(o);
                });
            } else {
                var cache = {}, // simple cache for applying multiple behaviors to same selector does query multiple times
                    parts,
                    b,
                    s;
                for (b in o) {
                    if ((parts = b.split('@'))[1]) { // for Object prototype breakers
                        s = parts[0];
                        if(!cache[s]){
                            cache[s] = Ext.select(s);
                        }
                        cache[s].on(parts[1], o[b]);
                    }
                }
                cache = null;
            }
        },

        /**
         * Utility method for getting the width of the browser scrollbar. This can differ depending on
         * operating system settings, such as the theme or font size.
         * @param {Boolean} force (optional) true to force a recalculation of the value.
         * @return {Number} The width of the scrollbar.
         */
        getScrollBarWidth: function(force){
            if(!Ext.isReady){
                return 0;
            }

            if(force === true || scrollWidth === null){
                    // Append our div, do our calculation and then remove it
                var div = Ext.getBody().createChild('
    '),
                    child = div.child('div', true);
                var w1 = child.offsetWidth;
                div.setStyle('overflow', (Ext.isWebKit || Ext.isGecko) ? 'auto' : 'scroll');
                var w2 = child.offsetWidth;
                div.remove();
                // Need to add 2 to ensure we leave enough space
                scrollWidth = w1 - w2 + 2;
            }
            return scrollWidth;
        },


        // deprecated
        combine : function(){
            var as = arguments, l = as.length, r = [];
            for(var i = 0; i < l; i++){
                var a = as[i];
                if(Ext.isArray(a)){
                    r = r.concat(a);
                }else if(a.length !== undefined && !a.substr){
                    r = r.concat(Array.prototype.slice.call(a, 0));
                }else{
                    r.push(a);
                }
            }
            return r;
        },

        /**
         * Copies a set of named properties fom the source object to the destination object.
         * 
    example:
    
ImageComponent = Ext.extend(Ext.BoxComponent, {
    initComponent: function() {
        this.autoEl = { tag: 'img' };
        MyComponent.superclass.initComponent.apply(this, arguments);
        this.initialBox = Ext.copyTo({}, this.initialConfig, 'x,y,width,height');
    }
});
         * 
    
         * @param {Object} dest The destination object.
         * @param {Object} source The source object.
         * @param {Array/String} names Either an Array of property names, or a comma-delimited list
         * of property names to copy.
         * @return {Object} The modified object.
        */
        copyTo : function(dest, source, names){
            if(typeof names == 'string'){
                names = names.split(/[,;\s]/);
            }
            Ext.each(names, function(name){
                if(source.hasOwnProperty(name)){
                    dest[name] = source[name];
                }
            }, this);
            return dest;
        },

        /**
         * Attempts to destroy any objects passed to it by removing all event listeners, removing them from the
         * DOM (if applicable) and calling their destroy functions (if available).  This method is primarily
         * intended for arguments of type {@link Ext.Element} and {@link Ext.Component}, but any subclass of
         * {@link Ext.util.Observable} can be passed in.  Any number of elements and/or components can be
         * passed into this function in a single call as separate arguments.
         * @param {Mixed...} args An {@link Ext.Element}, {@link Ext.Component}, or an Array of either of these to destroy
         */
        destroy : function(){
            Ext.each(arguments, function(arg){
                if(arg){
                    if(Ext.isArray(arg)){
                        this.destroy.apply(this, arg);
                    }else if(typeof arg.destroy == 'function'){
                        arg.destroy();
                    }else if(arg.dom){
                        arg.remove();
                    }
                }
            }, this);
        },

        /**
         * Attempts to destroy and then remove a set of named properties of the passed object.
         * @param {Object} o The object (most likely a Component) who's properties you wish to destroy.
         * @param {Mixed} arg1 The name of the property to destroy and remove from the object.
         * @param {Mixed} etc... More property names to destroy and remove.
         */
        destroyMembers : function(o, arg1, arg2, etc){
            for(var i = 1, a = arguments, len = a.length; i < len; i++) {
                Ext.destroy(o[a[i]]);
                delete o[a[i]];
            }
        },

        /**
         * Creates a copy of the passed Array with falsy values removed.
         * @param {Array/NodeList} arr The Array from which to remove falsy values.
         * @return {Array} The new, compressed Array.
         */
        clean : function(arr){
            var ret = [];
            Ext.each(arr, function(v){
                if(!!v){
                    ret.push(v);
                }
            });
            return ret;
        },

        /**
         * Creates a copy of the passed Array, filtered to contain only unique values.
         * @param {Array} arr The Array to filter
         * @return {Array} The new Array containing unique values.
         */
        unique : function(arr){
            var ret = [],
                collect = {};

            Ext.each(arr, function(v) {
                if(!collect[v]){
                    ret.push(v);
                }
                collect[v] = true;
            });
            return ret;
        },

        /**
         * Recursively flattens into 1-d Array. Injects Arrays inline.
         * @param {Array} arr The array to flatten
         * @return {Array} The new, flattened array.
         */
        flatten : function(arr){
            var worker = [];
            function rFlatten(a) {
                Ext.each(a, function(v) {
                    if(Ext.isArray(v)){
                        rFlatten(v);
                    }else{
                        worker.push(v);
                    }
                });
                return worker;
            }
            return rFlatten(arr);
        },

        /**
         * Returns the minimum value in the Array.
         * @param {Array|NodeList} arr The Array from which to select the minimum value.
         * @param {Function} comp (optional) a function to perform the comparision which determines minimization.
         *                   If omitted the "<" operator will be used. Note: gt = 1; eq = 0; lt = -1
         * @return {Object} The minimum value in the Array.
         */
        min : function(arr, comp){
            var ret = arr[0];
            comp = comp || function(a,b){ return a < b ? -1 : 1; };
            Ext.each(arr, function(v) {
                ret = comp(ret, v) == -1 ? ret : v;
            });
            return ret;
        },

        /**
         * Returns the maximum value in the Array
         * @param {Array|NodeList} arr The Array from which to select the maximum value.
         * @param {Function} comp (optional) a function to perform the comparision which determines maximization.
         *                   If omitted the ">" operator will be used. Note: gt = 1; eq = 0; lt = -1
         * @return {Object} The maximum value in the Array.
         */
        max : function(arr, comp){
            var ret = arr[0];
            comp = comp || function(a,b){ return a > b ? 1 : -1; };
            Ext.each(arr, function(v) {
                ret = comp(ret, v) == 1 ? ret : v;
            });
            return ret;
        },

        /**
         * Calculates the mean of the Array
         * @param {Array} arr The Array to calculate the mean value of.
         * @return {Number} The mean.
         */
        mean : function(arr){
           return arr.length > 0 ? Ext.sum(arr) / arr.length : undefined;
        },

        /**
         * Calculates the sum of the Array
         * @param {Array} arr The Array to calculate the sum value of.
         * @return {Number} The sum.
         */
        sum : function(arr){
           var ret = 0;
           Ext.each(arr, function(v) {
               ret += v;
           });
           return ret;
        },

        /**
         * Partitions the set into two sets: a true set and a false set.
         * Example:
         * Example2:
         * 
    
// Example 1:
Ext.partition([true, false, true, true, false]); // [[true, true, true], [false, false]]

// Example 2:
Ext.partition(
    Ext.query("p"),
    function(val){
        return val.className == "class1"
    }
);
// true are those paragraph elements with a className of "class1",
// false set are those that do not have that className.
         * 
    
         * @param {Array|NodeList} arr The array to partition
         * @param {Function} truth (optional) a function to determine truth.  If this is omitted the element
         *                   itself must be able to be evaluated for its truthfulness.
         * @return {Array} [true,false]
         */
        partition : function(arr, truth){
            var ret = [[],[]];
            Ext.each(arr, function(v, i, a) {
                ret[ (truth && truth(v, i, a)) || (!truth && v) ? 0 : 1].push(v);
            });
            return ret;
        },

        /**
         * Invokes a method on each item in an Array.
         * 
    
// Example:
Ext.invoke(Ext.query("p"), "getAttribute", "id");
// [el1.getAttribute("id"), el2.getAttribute("id"), ..., elN.getAttribute("id")]
         * 
    
         * @param {Array|NodeList} arr The Array of items to invoke the method on.
         * @param {String} methodName The method name to invoke.
         * @param {...*} args Arguments to send into the method invocation.
         * @return {Array} The results of invoking the method on each item in the array.
         */
        invoke : function(arr, methodName){
            var ret = [],
                args = Array.prototype.slice.call(arguments, 2);
            Ext.each(arr, function(v,i) {
                if (v && typeof v[methodName] == 'function') {
                    ret.push(v[methodName].apply(v, args));
                } else {
                    ret.push(undefined);
                }
            });
            return ret;
        },

        /**
         * Plucks the value of a property from each item in the Array
         * 
    
// Example:
Ext.pluck(Ext.query("p"), "className"); // [el1.className, el2.className, ..., elN.className]
         * 
    
         * @param {Array|NodeList} arr The Array of items to pluck the value from.
         * @param {String} prop The property name to pluck from each element.
         * @return {Array} The value from each item in the Array.
         */
        pluck : function(arr, prop){
            var ret = [];
            Ext.each(arr, function(v) {
                ret.push( v[prop] );
            });
            return ret;
        },

        /**
         * 
    Zips N sets together.
    
         * 
    
// Example 1:
Ext.zip([1,2,3],[4,5,6]); // [[1,4],[2,5],[3,6]]
// Example 2:
Ext.zip(
    [ "+", "-", "+"],
    [  12,  10,  22],
    [  43,  15,  96],
    function(a, b, c){
        return "$" + a + "" + b + "." + c
    }
); // ["$+12.43", "$-10.15", "$+22.96"]
         * 
    
         * @param {Arrays|NodeLists} arr This argument may be repeated. Array(s) to contribute values.
         * @param {Function} zipper (optional) The last item in the argument list. This will drive how the items are zipped together.
         * @return {Array} The zipped set.
         */
        zip : function(){
            var parts = Ext.partition(arguments, function( val ){ return typeof val != 'function'; }),
                arrs = parts[0],
                fn = parts[1][0],
                len = Ext.max(Ext.pluck(arrs, "length")),
                ret = [];

            for (var i = 0; i < len; i++) {
                ret[i] = [];
                if(fn){
                    ret[i] = fn.apply(fn, Ext.pluck(arrs, i));
                }else{
                    for (var j = 0, aLen = arrs.length; j < aLen; j++){
                        ret[i].push( arrs[j][i] );
                    }
                }
            }
            return ret;
        },

        /**
         * This is shorthand reference to {@link Ext.ComponentMgr#get}.
         * Looks up an existing {@link Ext.Component Component} by {@link Ext.Component#id id}
         * @param {String} id The component {@link Ext.Component#id id}
         * @return Ext.Component The Component, undefined if not found, or null if a
         * Class was found.
        */
        getCmp : function(id){
            return Ext.ComponentMgr.get(id);
        },

        /**
         * By default, Ext intelligently decides whether floating elements should be shimmed. If you are using flash,
         * you may want to set this to true.
         * @type Boolean
         */
        useShims: E.isIE6 || (E.isMac && E.isGecko2),

        // inpired by a similar function in mootools library
        /**
         * Returns the type of object that is passed in. If the object passed in is null or undefined it
         * return false otherwise it returns one of the following values:
      
         * 
    • string: If the object passed is a string
      • 
         * 
    • number: If the object passed is a number
      • 
         * 
    • boolean: If the object passed is a boolean value
      • 
         * 
    • date: If the object passed is a Date object
      • 
         * 
    • function: If the object passed is a function reference
      • 
         * 
    • object: If the object passed is an object
      • 
         * 
    • array: If the object passed is an array
      • 
         * 
    • regexp: If the object passed is a regular expression
      • 
         * 
    • element: If the object passed is a DOM Element
      • 
         * 
    • nodelist: If the object passed is a DOM NodeList
      • 
         * 
    • textnode: If the object passed is a DOM text node and contains something other than whitespace
      • 
         * 
    • whitespace: If the object passed is a DOM text node and contains only whitespace
      • 
         * 
    
         * @param {Mixed} object
         * @return {String}
         */
        type : function(o){
            if(o === undefined || o === null){
                return false;
            }
            if(o.htmlElement){
                return 'element';
            }
            var t = typeof o;
            if(t == 'object' && o.nodeName) {
                switch(o.nodeType) {
                    case 1: return 'element';
                    case 3: return (/\S/).test(o.nodeValue) ? 'textnode' : 'whitespace';
                }
            }
            if(t == 'object' || t == 'function') {
                switch(o.constructor) {
                    case Array: return 'array';
                    case RegExp: return 'regexp';
                    case Date: return 'date';
                }
                if(typeof o.length == 'number' && typeof o.item == 'function') {
                    return 'nodelist';
                }
            }
            return t;
        },

        intercept : function(o, name, fn, scope){
            o[name] = o[name].createInterceptor(fn, scope);
        },

        // internal
        callback : function(cb, scope, args, delay){
            if(typeof cb == 'function'){
                if(delay){
                    cb.defer(delay, scope, args || []);
                }else{
                    cb.apply(scope, args || []);
                }
            }
        }
    };
}());

/**
 * @class Function
 * These functions are available on every Function object (any JavaScript function).
 */
Ext.apply(Function.prototype, {
    /**
     * Create a combined function call sequence of the original function + the passed function.
     * The resulting function returns the results of the original function.
     * The passed fcn is called with the parameters of the original function. Example usage:
     * 
    
var sayHi = function(name){
    alert('Hi, ' + name);
}

sayHi('Fred'); // alerts "Hi, Fred"

var sayGoodbye = sayHi.createSequence(function(name){
    alert('Bye, ' + name);
});

sayGoodbye('Fred'); // both alerts show

    
     * @param {Function} fcn The function to sequence
     * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed.
     * If omitted, defaults to the scope in which the original function is called or the browser window.
     * @return {Function} The new function
     */
    createSequence : function(fcn, scope){
        var method = this;
        return (typeof fcn != 'function') ?
                this :
                function(){
                    var retval = method.apply(this || window, arguments);
                    fcn.apply(scope || this || window, arguments);
                    return retval;
                };
    }
});


/**
 * @class String
 * These functions are available as static methods on the JavaScript String object.
 */
Ext.applyIf(String, {

    /**
     * Escapes the passed string for ' and \
     * @param {String} string The string to escape
     * @return {String} The escaped string
     * @static
     */
    escape : function(string) {
        return string.replace(/('|\\)/g, "\\$1");
    },

    /**
     * Pads the left side of a string with a specified character.  This is especially useful
     * for normalizing number and date strings.  Example usage:
     * 
    
var s = String.leftPad('123', 5, '0');
// s now contains the string: '00123'
     * 
    
     * @param {String} string The original string
     * @param {Number} size The total length of the output string
     * @param {String} char (optional) The character with which to pad the original string (defaults to empty string " ")
     * @return {String} The padded string
     * @static
     */
    leftPad : function (val, size, ch) {
        var result = String(val);
        if(!ch) {
            ch = " ";
        }
        while (result.length < size) {
            result = ch + result;
        }
        return result;
    }
});

/**
 * Utility function that allows you to easily switch a string between two alternating values.  The passed value
 * is compared to the current string, and if they are equal, the other value that was passed in is returned.  If
 * they are already different, the first value passed in is returned.  Note that this method returns the new value
 * but does not change the current string.
 * 
    
// alternate sort directions
sort = sort.toggle('ASC', 'DESC');

// instead of conditional logic:
sort = (sort == 'ASC' ? 'DESC' : 'ASC');

    
 * @param {String} value The value to compare to the current string
 * @param {String} other The new value to use if the string already equals the first value passed in
 * @return {String} The new value
 */
String.prototype.toggle = function(value, other){
    return this == value ? other : value;
};

/**
 * Trims whitespace from either end of a string, leaving spaces within the string intact.  Example:
 * 
    
var s = '  foo bar  ';
alert('-' + s + '-');         //alerts "- foo bar -"
alert('-' + s.trim() + '-');  //alerts "-foo bar-"

    
 * @return {String} The trimmed string
 */
String.prototype.trim = function(){
    var re = /^\s+|\s+$/g;
    return function(){ return this.replace(re, ""); };
}();

// here to prevent dependency on Date.js
/**
 Returns the number of milliseconds between this date and date
 @param {Date} date (optional) Defaults to now
 @return {Number} The diff in milliseconds
 @member Date getElapsed
 */
Date.prototype.getElapsed = function(date) {
    return Math.abs((date || new Date()).getTime()-this.getTime());
};


/**
 * @class Number
 */
Ext.applyIf(Number.prototype, {
    /**
     * Checks whether or not the current number is within a desired range.  If the number is already within the
     * range it is returned, otherwise the min or max value is returned depending on which side of the range is
     * exceeded.  Note that this method returns the constrained value but does not change the current number.
     * @param {Number} min The minimum number in the range
     * @param {Number} max The maximum number in the range
     * @return {Number} The constrained value if outside the range, otherwise the current value
     */
    constrain : function(min, max){
        return Math.min(Math.max(this, min), max);
    }
});
Ext.lib.Dom.getRegion = function(el) {
    return Ext.lib.Region.getRegion(el);
};	Ext.lib.Region = function(t, r, b, l) {
		var me = this;
        me.top = t;
        me[1] = t;
        me.right = r;
        me.bottom = b;
        me.left = l;
        me[0] = l;
    };

    Ext.lib.Region.prototype = {
        contains : function(region) {
	        var me = this;
            return ( region.left >= me.left &&
                     region.right <= me.right &&
                     region.top >= me.top &&
                     region.bottom <= me.bottom );

        },

        getArea : function() {
	        var me = this;
            return ( (me.bottom - me.top) * (me.right - me.left) );
        },

        intersect : function(region) {
            var me = this,
            	t = Math.max(me.top, region.top),
            	r = Math.min(me.right, region.right),
            	b = Math.min(me.bottom, region.bottom),
            	l = Math.max(me.left, region.left);

            if (b >= t && r >= l) {
                return new Ext.lib.Region(t, r, b, l);
            }
        },
        
        union : function(region) {
	        var me = this,
            	t = Math.min(me.top, region.top),
            	r = Math.max(me.right, region.right),
            	b = Math.max(me.bottom, region.bottom),
            	l = Math.min(me.left, region.left);

            return new Ext.lib.Region(t, r, b, l);
        },

        constrainTo : function(r) {
	        var me = this;
            me.top = me.top.constrain(r.top, r.bottom);
            me.bottom = me.bottom.constrain(r.top, r.bottom);
            me.left = me.left.constrain(r.left, r.right);
            me.right = me.right.constrain(r.left, r.right);
            return me;
        },

        adjust : function(t, l, b, r) {
	        var me = this;
            me.top += t;
            me.left += l;
            me.right += r;
            me.bottom += b;
            return me;
        }
    };

    Ext.lib.Region.getRegion = function(el) {
        var p = Ext.lib.Dom.getXY(el),
        	t = p[1],
        	r = p[0] + el.offsetWidth,
        	b = p[1] + el.offsetHeight,
        	l = p[0];

        return new Ext.lib.Region(t, r, b, l);
    };	Ext.lib.Point = function(x, y) {
        if (Ext.isArray(x)) {
            y = x[1];
            x = x[0];
        }
        var me = this;
        me.x = me.right = me.left = me[0] = x;
        me.y = me.top = me.bottom = me[1] = y;
    };

    Ext.lib.Point.prototype = new Ext.lib.Region();
/**
 * @class Ext.DomHelper
 */
Ext.apply(Ext.DomHelper,
function(){
    var pub,
        afterbegin = 'afterbegin',
        afterend = 'afterend',
        beforebegin = 'beforebegin',
        beforeend = 'beforeend',
        confRe = /tag|children|cn|html$/i;

    // private
    function doInsert(el, o, returnElement, pos, sibling, append){
        el = Ext.getDom(el);
        var newNode;
        if (pub.useDom) {
            newNode = createDom(o, null);
            if (append) {
                el.appendChild(newNode);
            } else {
                (sibling == 'firstChild' ? el : el.parentNode).insertBefore(newNode, el[sibling] || el);
            }
        } else {
            newNode = Ext.DomHelper.insertHtml(pos, el, Ext.DomHelper.createHtml(o));
        }
        return returnElement ? Ext.get(newNode, true) : newNode;
    }

    // build as dom
    /** @ignore */
    function createDom(o, parentNode){
        var el,
            doc = document,
            useSet,
            attr,
            val,
            cn;

        if (Ext.isArray(o)) {                       // Allow Arrays of siblings to be inserted
            el = doc.createDocumentFragment(); // in one shot using a DocumentFragment
            for (var i = 0, l = o.length; i < l; i++) {
                createDom(o[i], el);
            }
        } else if (typeof o == 'string') {         // Allow a string as a child spec.
            el = doc.createTextNode(o);
        } else {
            el = doc.createElement( o.tag || 'div' );
            useSet = !!el.setAttribute; // In IE some elements don't have setAttribute
            for (var attr in o) {
                if(!confRe.test(attr)){
                    val = o[attr];
                    if(attr == 'cls'){
                        el.className = val;
                    }else{
                        if(useSet){
                            el.setAttribute(attr, val);
                        }else{
                            el[attr] = val;
                        }
                    }
                }
            }
            Ext.DomHelper.applyStyles(el, o.style);

            if ((cn = o.children || o.cn)) {
                createDom(cn, el);
            } else if (o.html) {
                el.innerHTML = o.html;
            }
        }
        if(parentNode){
           parentNode.appendChild(el);
        }
        return el;
    }

    pub = {
        /**
         * Creates a new Ext.Template from the DOM object spec.
         * @param {Object} o The DOM object spec (and children)
         * @return {Ext.Template} The new template
         */
        createTemplate : function(o){
            var html = Ext.DomHelper.createHtml(o);
            return new Ext.Template(html);
        },

        /** True to force the use of DOM instead of html fragments @type Boolean */
        useDom : false,

        /**
         * Creates new DOM element(s) and inserts them before el.
         * @param {Mixed} el The context element
         * @param {Object/String} o The DOM object spec (and children) or raw HTML blob
         * @param {Boolean} returnElement (optional) true to return a Ext.Element
         * @return {HTMLElement/Ext.Element} The new node
         * @hide (repeat)
         */
        insertBefore : function(el, o, returnElement){
            return doInsert(el, o, returnElement, beforebegin);
        },

        /**
         * Creates new DOM element(s) and inserts them after el.
         * @param {Mixed} el The context element
         * @param {Object} o The DOM object spec (and children)
         * @param {Boolean} returnElement (optional) true to return a Ext.Element
         * @return {HTMLElement/Ext.Element} The new node
         * @hide (repeat)
         */
        insertAfter : function(el, o, returnElement){
            return doInsert(el, o, returnElement, afterend, 'nextSibling');
        },

        /**
         * Creates new DOM element(s) and inserts them as the first child of el.
         * @param {Mixed} el The context element
         * @param {Object/String} o The DOM object spec (and children) or raw HTML blob
         * @param {Boolean} returnElement (optional) true to return a Ext.Element
         * @return {HTMLElement/Ext.Element} The new node
         * @hide (repeat)
         */
        insertFirst : function(el, o, returnElement){
            return doInsert(el, o, returnElement, afterbegin, 'firstChild');
        },

        /**
         * Creates new DOM element(s) and appends them to el.
         * @param {Mixed} el The context element
         * @param {Object/String} o The DOM object spec (and children) or raw HTML blob
         * @param {Boolean} returnElement (optional) true to return a Ext.Element
         * @return {HTMLElement/Ext.Element} The new node
         * @hide (repeat)
         */
        append: function(el, o, returnElement){
            return doInsert(el, o, returnElement, beforeend, '', true);
        },

        /**
         * Creates new DOM element(s) without inserting them to the document.
         * @param {Object/String} o The DOM object spec (and children) or raw HTML blob
         * @return {HTMLElement} The new uninserted node
         */
        createDom: createDom
    };
    return pub;
}());
/**
 * @class Ext.Template
 */
Ext.apply(Ext.Template.prototype, {
    /**
     * @cfg {Boolean} disableFormats Specify true to disable format
     * functions in the template. If the template does not contain
     * {@link Ext.util.Format format functions}, setting disableFormats
     * to true will reduce {@link #apply} time. Defaults to false.
     * 
    
var t = new Ext.Template(
    '<div name="{id}">',
        '<span class="{cls}">{name} {value}</span>',
    '</div>',
    {
        compiled: true,      // {@link #compile} immediately
        disableFormats: true // reduce {@link #apply} time since no formatting
    }
);
     * 
    
     * For a list of available format functions, see {@link Ext.util.Format}.
     */
    disableFormats : false,
    /**
     * See {@link #disableFormats}.
     * @type Boolean
     * @property disableFormats
     */

    /**
     * The regular expression used to match template variables
     * @type RegExp
     * @property
     * @hide repeat doc
     */
    re : /\{([\w\-]+)(?:\:([\w\.]*)(?:\((.*?)?\))?)?\}/g,
    argsRe : /^\s*['"](.*)["']\s*$/,
    compileARe : /\\/g,
    compileBRe : /(\r\n|\n)/g,
    compileCRe : /'/g,

    /**
     * Returns an HTML fragment of this template with the specified values applied.
     * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'})
     * @return {String} The HTML fragment
     * @hide repeat doc
     */
    applyTemplate : function(values){
        var me = this,
            useF = me.disableFormats !== true,
            fm = Ext.util.Format,
            tpl = me;

        if(me.compiled){
            return me.compiled(values);
        }
        function fn(m, name, format, args){
            if (format && useF) {
                if (format.substr(0, 5) == "this.") {
                    return tpl.call(format.substr(5), values[name], values);
                } else {
                    if (args) {
                        // quoted values are required for strings in compiled templates,
                        // but for non compiled we need to strip them
                        // quoted reversed for jsmin
                        var re = me.argsRe;
                        args = args.split(',');
                        for(var i = 0, len = args.length; i < len; i++){
                            args[i] = args[i].replace(re, "$1");
                        }
                        args = [values[name]].concat(args);
                    } else {
                        args = [values[name]];
                    }
                    return fm[format].apply(fm, args);
                }
            } else {
                return values[name] !== undefined ? values[name] : "";
            }
        }
        return me.html.replace(me.re, fn);
    },

    /**
     * Compiles the template into an internal function, eliminating the RegEx overhead.
     * @return {Ext.Template} this
     * @hide repeat doc
     */
    compile : function(){
        var me = this,
            fm = Ext.util.Format,
            useF = me.disableFormats !== true,
            sep = Ext.isGecko ? "+" : ",",
            body;

        function fn(m, name, format, args){
            if(format && useF){
                args = args ? ',' + args : "";
                if(format.substr(0, 5) != "this."){
                    format = "fm." + format + '(';
                }else{
                    format = 'this.call("'+ format.substr(5) + '", ';
                    args = ", values";
                }
            }else{
                args= ''; format = "(values['" + name + "'] == undefined ? '' : ";
            }
            return "'"+ sep + format + "values['" + name + "']" + args + ")"+sep+"'";
        }

        // branched to use + in gecko and [].join() in others
        if(Ext.isGecko){
            body = "this.compiled = function(values){ return '" +
                   me.html.replace(me.compileARe, '\\\\').replace(me.compileBRe, '\\n').replace(me.compileCRe, "\\'").replace(me.re, fn) +
                    "';};";
        }else{
            body = ["this.compiled = function(values){ return ['"];
            body.push(me.html.replace(me.compileARe, '\\\\').replace(me.compileBRe, '\\n').replace(me.compileCRe, "\\'").replace(me.re, fn));
            body.push("'].join('');};");
            body = body.join('');
        }
        eval(body);
        return me;
    },

    // private function used to call members
    call : function(fnName, value, allValues){
        return this[fnName](value, allValues);
    }
});
Ext.Template.prototype.apply = Ext.Template.prototype.applyTemplate;
/**
 * @class Ext.util.Functions
 * @singleton
 */
Ext.util.Functions = {
    /**
     * Creates an interceptor function. The passed function is called before the original one. If it returns false,
     * the original one is not called. The resulting function returns the results of the original function.
     * The passed function is called with the parameters of the original function. Example usage:
     * 
    
var sayHi = function(name){
    alert('Hi, ' + name);
}

sayHi('Fred'); // alerts "Hi, Fred"

// create a new function that validates input without
// directly modifying the original function:
var sayHiToFriend = Ext.createInterceptor(sayHi, function(name){
    return name == 'Brian';
});

sayHiToFriend('Fred');  // no alert
sayHiToFriend('Brian'); // alerts "Hi, Brian"
       
    
     * @param {Function} origFn The original function.
     * @param {Function} newFn The function to call before the original
     * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed.
     * If omitted, defaults to the scope in which the original function is called or the browser window.
     * @return {Function} The new function
     */
    createInterceptor: function(origFn, newFn, scope) { 
        var method = origFn;
        if (!Ext.isFunction(newFn)) {
            return origFn;
        }
        else {
            return function() {
                var me = this,
                    args = arguments;
                newFn.target = me;
                newFn.method = origFn;
                return (newFn.apply(scope || me || window, args) !== false) ?
                        origFn.apply(me || window, args) :
                        null;
            };
        }
    },

    /**
     * Creates a delegate (callback) that sets the scope to obj.
     * Call directly on any function. Example: Ext.createDelegate(this.myFunction, this, [arg1, arg2])
     * Will create a function that is automatically scoped to obj so that the this variable inside the
     * callback points to obj. Example usage:
     * 
    
var sayHi = function(name){
    // Note this use of "this.text" here.  This function expects to
    // execute within a scope that contains a text property.  In this
    // example, the "this" variable is pointing to the btn object that
    // was passed in createDelegate below.
    alert('Hi, ' + name + '. You clicked the "' + this.text + '" button.');
}

var btn = new Ext.Button({
    text: 'Say Hi',
    renderTo: Ext.getBody()
});

// This callback will execute in the scope of the
// button instance. Clicking the button alerts
// "Hi, Fred. You clicked the "Say Hi" button."
btn.on('click', Ext.createDelegate(sayHi, btn, ['Fred']));
       
    
     * @param {Function} fn The function to delegate.
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed.
     * If omitted, defaults to the browser window.
     * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller)
     * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding,
     * if a number the args are inserted at the specified position
     * @return {Function} The new function
     */
    createDelegate: function(fn, obj, args, appendArgs) {
        if (!Ext.isFunction(fn)) {
            return fn;
        }
        return function() {
            var callArgs = args || arguments;
            if (appendArgs === true) {
                callArgs = Array.prototype.slice.call(arguments, 0);
                callArgs = callArgs.concat(args);
            }
            else if (Ext.isNumber(appendArgs)) {
                callArgs = Array.prototype.slice.call(arguments, 0);
                // copy arguments first
                var applyArgs = [appendArgs, 0].concat(args);
                // create method call params
                Array.prototype.splice.apply(callArgs, applyArgs);
                // splice them in
            }
            return fn.apply(obj || window, callArgs);
        };
    },

    /**
     * Calls this function after the number of millseconds specified, optionally in a specific scope. Example usage:
     * 
    
var sayHi = function(name){
    alert('Hi, ' + name);
}

// executes immediately:
sayHi('Fred');

// executes after 2 seconds:
Ext.defer(sayHi, 2000, this, ['Fred']);

// this syntax is sometimes useful for deferring
// execution of an anonymous function:
Ext.defer(function(){
    alert('Anonymous');
}, 100);
       
    
     * @param {Function} fn The function to defer.
     * @param {Number} millis The number of milliseconds for the setTimeout call (if less than or equal to 0 the function is executed immediately)
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed.
     * If omitted, defaults to the browser window.
     * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller)
     * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding,
     * if a number the args are inserted at the specified position
     * @return {Number} The timeout id that can be used with clearTimeout
     */
    defer: function(fn, millis, obj, args, appendArgs) {
        fn = Ext.util.Functions.createDelegate(fn, obj, args, appendArgs);
        if (millis > 0) {
            return setTimeout(fn, millis);
        }
        fn();
        return 0;
    },


    /**
     * Create a combined function call sequence of the original function + the passed function.
     * The resulting function returns the results of the original function.
     * The passed fcn is called with the parameters of the original function. Example usage:
     * 

var sayHi = function(name){
    alert('Hi, ' + name);
}

sayHi('Fred'); // alerts "Hi, Fred"

var sayGoodbye = Ext.createSequence(sayHi, function(name){
    alert('Bye, ' + name);
});

sayGoodbye('Fred'); // both alerts show

     * @param {Function} origFn The original function.
     * @param {Function} newFn The function to sequence
     * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed.
     * If omitted, defaults to the scope in which the original function is called or the browser window.
     * @return {Function} The new function
     */
    createSequence: function(origFn, newFn, scope) {
        if (!Ext.isFunction(newFn)) {
            return origFn;
        }
        else {
            return function() {
                var retval = origFn.apply(this || window, arguments);
                newFn.apply(scope || this || window, arguments);
                return retval;
            };
        }
    }
};

/**
 * Shorthand for {@link Ext.util.Functions#defer}   
 * @param {Function} fn The function to defer.
 * @param {Number} millis The number of milliseconds for the setTimeout call (if less than or equal to 0 the function is executed immediately)
 * @param {Object} scope (optional) The scope (this reference) in which the function is executed.
 * If omitted, defaults to the browser window.
 * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller)
 * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding,
 * if a number the args are inserted at the specified position
 * @return {Number} The timeout id that can be used with clearTimeout
 * @member Ext
 * @method defer
 */

Ext.defer = Ext.util.Functions.defer;

/**
 * Shorthand for {@link Ext.util.Functions#createInterceptor}   
 * @param {Function} origFn The original function.
 * @param {Function} newFn The function to call before the original
 * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed.
 * If omitted, defaults to the scope in which the original function is called or the browser window.
 * @return {Function} The new function
 * @member Ext
 * @method createInterceptor
 */

Ext.createInterceptor = Ext.util.Functions.createInterceptor;

/**
 * Shorthand for {@link Ext.util.Functions#createSequence}
 * @param {Function} origFn The original function.
 * @param {Function} newFn The function to sequence
 * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed.
 * If omitted, defaults to the scope in which the original function is called or the browser window.
 * @return {Function} The new function
 * @member Ext
 * @method createSequence
 */

Ext.createSequence = Ext.util.Functions.createSequence;

/**
 * Shorthand for {@link Ext.util.Functions#createDelegate}
 * @param {Function} fn The function to delegate.
 * @param {Object} scope (optional) The scope (this reference) in which the function is executed.
 * If omitted, defaults to the browser window.
 * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller)
 * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding,
 * if a number the args are inserted at the specified position
 * @return {Function} The new function
 * @member Ext
 * @method createDelegate
 */
Ext.createDelegate = Ext.util.Functions.createDelegate;
/**
 * @class Ext.util.Observable
 */
Ext.apply(Ext.util.Observable.prototype, function(){
    // this is considered experimental (along with beforeMethod, afterMethod, removeMethodListener?)
    // allows for easier interceptor and sequences, including cancelling and overwriting the return value of the call
    // private
    function getMethodEvent(method){
        var e = (this.methodEvents = this.methodEvents ||
        {})[method], returnValue, v, cancel, obj = this;

        if (!e) {
            this.methodEvents[method] = e = {};
            e.originalFn = this[method];
            e.methodName = method;
            e.before = [];
            e.after = [];

            var makeCall = function(fn, scope, args){
                if((v = fn.apply(scope || obj, args)) !== undefined){
                    if (typeof v == 'object') {
                        if(v.returnValue !== undefined){
                            returnValue = v.returnValue;
                        }else{
                            returnValue = v;
                        }
                        cancel = !!v.cancel;
                    }
                    else
                        if (v === false) {
                            cancel = true;
                        }
                        else {
                            returnValue = v;
                        }
                }
            };

            this[method] = function(){
                var args = Array.prototype.slice.call(arguments, 0),
                    b;
                returnValue = v = undefined;
                cancel = false;

                for(var i = 0, len = e.before.length; i < len; i++){
                    b = e.before[i];
                    makeCall(b.fn, b.scope, args);
                    if (cancel) {
                        return returnValue;
                    }
                }

                if((v = e.originalFn.apply(obj, args)) !== undefined){
                    returnValue = v;
                }

                for(var i = 0, len = e.after.length; i < len; i++){
                    b = e.after[i];
                    makeCall(b.fn, b.scope, args);
                    if (cancel) {
                        return returnValue;
                    }
                }
                return returnValue;
            };
        }
        return e;
    }

    return {
        // these are considered experimental
        // allows for easier interceptor and sequences, including cancelling and overwriting the return value of the call
        // adds an 'interceptor' called before the original method
        beforeMethod : function(method, fn, scope){
            getMethodEvent.call(this, method).before.push({
                fn: fn,
                scope: scope
            });
        },

        // adds a 'sequence' called after the original method
        afterMethod : function(method, fn, scope){
            getMethodEvent.call(this, method).after.push({
                fn: fn,
                scope: scope
            });
        },

        removeMethodListener: function(method, fn, scope){
            var e = this.getMethodEvent(method);
            for(var i = 0, len = e.before.length; i < len; i++){
                if(e.before[i].fn == fn && e.before[i].scope == scope){
                    e.before.splice(i, 1);
                    return;
                }
            }
            for(var i = 0, len = e.after.length; i < len; i++){
                if(e.after[i].fn == fn && e.after[i].scope == scope){
                    e.after.splice(i, 1);
                    return;
                }
            }
        },

        /**
         * Relays selected events from the specified Observable as if the events were fired by this.
         * @param {Object} o The Observable whose events this object is to relay.
         * @param {Array} events Array of event names to relay.
         */
        relayEvents : function(o, events){
            var me = this;
            function createHandler(ename){
                return function(){
                    return me.fireEvent.apply(me, [ename].concat(Array.prototype.slice.call(arguments, 0)));
                };
            }
            for(var i = 0, len = events.length; i < len; i++){
                var ename = events[i];
                me.events[ename] = me.events[ename] || true;
                o.on(ename, createHandler(ename), me);
            }
        },

        /**
         * 
    Enables events fired by this Observable to bubble up an owner hierarchy by calling
         * this.getBubbleTarget() if present. There is no implementation in the Observable base class.
    
         * 
    This is commonly used by Ext.Components to bubble events to owner Containers. See {@link Ext.Component.getBubbleTarget}. The default
         * implementation in Ext.Component returns the Component's immediate owner. But if a known target is required, this can be overridden to
         * access the required target more quickly.
    
         * 
    Example:
    
Ext.override(Ext.form.Field, {
    //  Add functionality to Field's initComponent to enable the change event to bubble
    initComponent : Ext.form.Field.prototype.initComponent.createSequence(function() {
        this.enableBubble('change');
    }),

    //  We know that we want Field's events to bubble directly to the FormPanel.
    getBubbleTarget : function() {
        if (!this.formPanel) {
            this.formPanel = this.findParentByType('form');
        }
        return this.formPanel;
    }
});

var myForm = new Ext.formPanel({
    title: 'User Details',
    items: [{
        ...
    }],
    listeners: {
        change: function() {
            // Title goes red if form has been modified.
            myForm.header.setStyle('color', 'red');
        }
    }
});

    
         * @param {String/Array} events The event name to bubble, or an Array of event names.
         */
        enableBubble : function(events){
            var me = this;
            if(!Ext.isEmpty(events)){
                events = Ext.isArray(events) ? events : Array.prototype.slice.call(arguments, 0);
                for(var i = 0, len = events.length; i < len; i++){
                    var ename = events[i];
                    ename = ename.toLowerCase();
                    var ce = me.events[ename] || true;
                    if (typeof ce == 'boolean') {
                        ce = new Ext.util.Event(me, ename);
                        me.events[ename] = ce;
                    }
                    ce.bubble = true;
                }
            }
        }
    };
}());


/**
 * Starts capture on the specified Observable. All events will be passed
 * to the supplied function with the event name + standard signature of the event
 * before the event is fired. If the supplied function returns false,
 * the event will not fire.
 * @param {Observable} o The Observable to capture events from.
 * @param {Function} fn The function to call when an event is fired.
 * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the Observable firing the event.
 * @static
 */
Ext.util.Observable.capture = function(o, fn, scope){
    o.fireEvent = o.fireEvent.createInterceptor(fn, scope);
};


/**
 * Sets observability on the passed class constructor.
    
 * 
    This makes any event fired on any instance of the passed class also fire a single event through
 * the class allowing for central handling of events on many instances at once.
    
 * 
    Usage:
    
Ext.util.Observable.observeClass(Ext.data.Connection);
Ext.data.Connection.on('beforerequest', function(con, options) {
    console.log('Ajax request made to ' + options.url);
});
    
 * @param {Function} c The class constructor to make observable.
 * @param {Object} listeners An object containing a series of listeners to add. See {@link #addListener}.
 * @static
 */
Ext.util.Observable.observeClass = function(c, listeners){
    if(c){
      if(!c.fireEvent){
          Ext.apply(c, new Ext.util.Observable());
          Ext.util.Observable.capture(c.prototype, c.fireEvent, c);
      }
      if(typeof listeners == 'object'){
          c.on(listeners);
      }
      return c;
   }
};
/**
* @class Ext.EventManager
*/
Ext.apply(Ext.EventManager, function(){
   var resizeEvent,
       resizeTask,
       textEvent,
       textSize,
       D = Ext.lib.Dom,
       propRe = /^(?:scope|delay|buffer|single|stopEvent|preventDefault|stopPropagation|normalized|args|delegate)$/,
       unload = Ext.EventManager._unload,
       curWidth = 0,
       curHeight = 0,
       // note 1: IE fires ONLY the keydown event on specialkey autorepeat
       // note 2: Safari < 3.1, Gecko (Mac/Linux) & Opera fire only the keypress event on specialkey autorepeat
       // (research done by @Jan Wolter at http://unixpapa.com/js/key.html)
       useKeydown = Ext.isWebKit ?
                   Ext.num(navigator.userAgent.match(/AppleWebKit\/(\d+)/)[1]) >= 525 :
                   !((Ext.isGecko && !Ext.isWindows) || Ext.isOpera);

   return {
       _unload: function(){
           Ext.EventManager.un(window, "resize", this.fireWindowResize, this);
           unload.call(Ext.EventManager);    
       },
       
       // private
       doResizeEvent: function(){
           var h = D.getViewHeight(),
               w = D.getViewWidth();

            //whacky problem in IE where the resize event will fire even though the w/h are the same.
            if(curHeight != h || curWidth != w){
               resizeEvent.fire(curWidth = w, curHeight = h);
            }
       },

       /**
        * Adds a listener to be notified when the browser window is resized and provides resize event buffering (100 milliseconds),
        * passes new viewport width and height to handlers.
        * @param {Function} fn      The handler function the window resize event invokes.
        * @param {Object}   scope   The scope (this reference) in which the handler function executes. Defaults to the browser window.
        * @param {boolean}  options Options object as passed to {@link Ext.Element#addListener}
        */
       onWindowResize : function(fn, scope, options){
           if(!resizeEvent){
               resizeEvent = new Ext.util.Event();
               resizeTask = new Ext.util.DelayedTask(this.doResizeEvent);
               Ext.EventManager.on(window, "resize", this.fireWindowResize, this);
           }
           resizeEvent.addListener(fn, scope, options);
       },

       // exposed only to allow manual firing
       fireWindowResize : function(){
           if(resizeEvent){
               resizeTask.delay(100);
           }
       },

       /**
        * Adds a listener to be notified when the user changes the active text size. Handler gets called with 2 params, the old size and the new size.
        * @param {Function} fn      The function the event invokes.
        * @param {Object}   scope   The scope (this reference) in which the handler function executes. Defaults to the browser window.
        * @param {boolean}  options Options object as passed to {@link Ext.Element#addListener}
        */
       onTextResize : function(fn, scope, options){
           if(!textEvent){
               textEvent = new Ext.util.Event();
               var textEl = new Ext.Element(document.createElement('div'));
               textEl.dom.className = 'x-text-resize';
               textEl.dom.innerHTML = 'X';
               textEl.appendTo(document.body);
               textSize = textEl.dom.offsetHeight;
               setInterval(function(){
                   if(textEl.dom.offsetHeight != textSize){
                       textEvent.fire(textSize, textSize = textEl.dom.offsetHeight);
                   }
               }, this.textResizeInterval);
           }
           textEvent.addListener(fn, scope, options);
       },

       /**
        * Removes the passed window resize listener.
        * @param {Function} fn        The method the event invokes
        * @param {Object}   scope    The scope of handler
        */
       removeResizeListener : function(fn, scope){
           if(resizeEvent){
               resizeEvent.removeListener(fn, scope);
           }
       },

       // private
       fireResize : function(){
           if(resizeEvent){
               resizeEvent.fire(D.getViewWidth(), D.getViewHeight());
           }
       },

        /**
        * The frequency, in milliseconds, to check for text resize events (defaults to 50)
        */
       textResizeInterval : 50,

       /**
        * Url used for onDocumentReady with using SSL (defaults to Ext.SSL_SECURE_URL)
        */
       ieDeferSrc : false,
       
       // protected, short accessor for useKeydown
       getKeyEvent : function(){
           return useKeydown ? 'keydown' : 'keypress';
       },

       // protected for use inside the framework
       // detects whether we should use keydown or keypress based on the browser.
       useKeydown: useKeydown
   };
}());

Ext.EventManager.on = Ext.EventManager.addListener;


Ext.apply(Ext.EventObjectImpl.prototype, {
   /** Key constant @type Number */
   BACKSPACE: 8,
   /** Key constant @type Number */
   TAB: 9,
   /** Key constant @type Number */
   NUM_CENTER: 12,
   /** Key constant @type Number */
   ENTER: 13,
   /** Key constant @type Number */
   RETURN: 13,
   /** Key constant @type Number */
   SHIFT: 16,
   /** Key constant @type Number */
   CTRL: 17,
   CONTROL : 17, // legacy
   /** Key constant @type Number */
   ALT: 18,
   /** Key constant @type Number */
   PAUSE: 19,
   /** Key constant @type Number */
   CAPS_LOCK: 20,
   /** Key constant @type Number */
   ESC: 27,
   /** Key constant @type Number */
   SPACE: 32,
   /** Key constant @type Number */
   PAGE_UP: 33,
   PAGEUP : 33, // legacy
   /** Key constant @type Number */
   PAGE_DOWN: 34,
   PAGEDOWN : 34, // legacy
   /** Key constant @type Number */
   END: 35,
   /** Key constant @type Number */
   HOME: 36,
   /** Key constant @type Number */
   LEFT: 37,
   /** Key constant @type Number */
   UP: 38,
   /** Key constant @type Number */
   RIGHT: 39,
   /** Key constant @type Number */
   DOWN: 40,
   /** Key constant @type Number */
   PRINT_SCREEN: 44,
   /** Key constant @type Number */
   INSERT: 45,
   /** Key constant @type Number */
   DELETE: 46,
   /** Key constant @type Number */
   ZERO: 48,
   /** Key constant @type Number */
   ONE: 49,
   /** Key constant @type Number */
   TWO: 50,
   /** Key constant @type Number */
   THREE: 51,
   /** Key constant @type Number */
   FOUR: 52,
   /** Key constant @type Number */
   FIVE: 53,
   /** Key constant @type Number */
   SIX: 54,
   /** Key constant @type Number */
   SEVEN: 55,
   /** Key constant @type Number */
   EIGHT: 56,
   /** Key constant @type Number */
   NINE: 57,
   /** Key constant @type Number */
   A: 65,
   /** Key constant @type Number */
   B: 66,
   /** Key constant @type Number */
   C: 67,
   /** Key constant @type Number */
   D: 68,
   /** Key constant @type Number */
   E: 69,
   /** Key constant @type Number */
   F: 70,
   /** Key constant @type Number */
   G: 71,
   /** Key constant @type Number */
   H: 72,
   /** Key constant @type Number */
   I: 73,
   /** Key constant @type Number */
   J: 74,
   /** Key constant @type Number */
   K: 75,
   /** Key constant @type Number */
   L: 76,
   /** Key constant @type Number */
   M: 77,
   /** Key constant @type Number */
   N: 78,
   /** Key constant @type Number */
   O: 79,
   /** Key constant @type Number */
   P: 80,
   /** Key constant @type Number */
   Q: 81,
   /** Key constant @type Number */
   R: 82,
   /** Key constant @type Number */
   S: 83,
   /** Key constant @type Number */
   T: 84,
   /** Key constant @type Number */
   U: 85,
   /** Key constant @type Number */
   V: 86,
   /** Key constant @type Number */
   W: 87,
   /** Key constant @type Number */
   X: 88,
   /** Key constant @type Number */
   Y: 89,
   /** Key constant @type Number */
   Z: 90,
   /** Key constant @type Number */
   CONTEXT_MENU: 93,
   /** Key constant @type Number */
   NUM_ZERO: 96,
   /** Key constant @type Number */
   NUM_ONE: 97,
   /** Key constant @type Number */
   NUM_TWO: 98,
   /** Key constant @type Number */
   NUM_THREE: 99,
   /** Key constant @type Number */
   NUM_FOUR: 100,
   /** Key constant @type Number */
   NUM_FIVE: 101,
   /** Key constant @type Number */
   NUM_SIX: 102,
   /** Key constant @type Number */
   NUM_SEVEN: 103,
   /** Key constant @type Number */
   NUM_EIGHT: 104,
   /** Key constant @type Number */
   NUM_NINE: 105,
   /** Key constant @type Number */
   NUM_MULTIPLY: 106,
   /** Key constant @type Number */
   NUM_PLUS: 107,
   /** Key constant @type Number */
   NUM_MINUS: 109,
   /** Key constant @type Number */
   NUM_PERIOD: 110,
   /** Key constant @type Number */
   NUM_DIVISION: 111,
   /** Key constant @type Number */
   F1: 112,
   /** Key constant @type Number */
   F2: 113,
   /** Key constant @type Number */
   F3: 114,
   /** Key constant @type Number */
   F4: 115,
   /** Key constant @type Number */
   F5: 116,
   /** Key constant @type Number */
   F6: 117,
   /** Key constant @type Number */
   F7: 118,
   /** Key constant @type Number */
   F8: 119,
   /** Key constant @type Number */
   F9: 120,
   /** Key constant @type Number */
   F10: 121,
   /** Key constant @type Number */
   F11: 122,
   /** Key constant @type Number */
   F12: 123,

   /** @private */
   isNavKeyPress : function(){
       var me = this,
           k = this.normalizeKey(me.keyCode);
       return (k >= 33 && k <= 40) ||  // Page Up/Down, End, Home, Left, Up, Right, Down
       k == me.RETURN ||
       k == me.TAB ||
       k == me.ESC;
   },

   isSpecialKey : function(){
       var k = this.normalizeKey(this.keyCode);
       return (this.type == 'keypress' && this.ctrlKey) ||
       this.isNavKeyPress() ||
       (k == this.BACKSPACE) || // Backspace
       (k >= 16 && k <= 20) || // Shift, Ctrl, Alt, Pause, Caps Lock
       (k >= 44 && k <= 46);   // Print Screen, Insert, Delete
   },

   getPoint : function(){
       return new Ext.lib.Point(this.xy[0], this.xy[1]);
   },

   /**
    * Returns true if the control, meta, shift or alt key was pressed during this event.
    * @return {Boolean}
    */
   hasModifier : function(){
       return ((this.ctrlKey || this.altKey) || this.shiftKey);
   }
});/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Stops the specified event(s) from bubbling and optionally prevents the default action
     * @param {String/Array} eventName an event / array of events to stop from bubbling
     * @param {Boolean} preventDefault (optional) true to prevent the default action too
     * @return {Ext.Element} this
     */
    swallowEvent : function(eventName, preventDefault) {
        var me = this;
        function fn(e) {
            e.stopPropagation();
            if (preventDefault) {
                e.preventDefault();
            }
        }
        
        if (Ext.isArray(eventName)) {
            Ext.each(eventName, function(e) {
                 me.on(e, fn);
            });
            return me;
        }
        me.on(eventName, fn);
        return me;
    },

    /**
     * Create an event handler on this element such that when the event fires and is handled by this element,
     * it will be relayed to another object (i.e., fired again as if it originated from that object instead).
     * @param {String} eventName The type of event to relay
     * @param {Object} object Any object that extends {@link Ext.util.Observable} that will provide the context
     * for firing the relayed event
     */
    relayEvent : function(eventName, observable) {
        this.on(eventName, function(e) {
            observable.fireEvent(eventName, e);
        });
    },

    /**
     * Removes worthless text nodes
     * @param {Boolean} forceReclean (optional) By default the element
     * keeps track if it has been cleaned already so
     * you can call this over and over. However, if you update the element and
     * need to force a reclean, you can pass true.
     */
    clean : function(forceReclean) {
        var me  = this,
            dom = me.dom,
            n   = dom.firstChild,
            ni  = -1;

        if (Ext.Element.data(dom, 'isCleaned') && forceReclean !== true) {
            return me;
        }

        while (n) {
            var nx = n.nextSibling;
            if (n.nodeType == 3 && !(/\S/.test(n.nodeValue))) {
                dom.removeChild(n);
            } else {
                n.nodeIndex = ++ni;
            }
            n = nx;
        }
        
        Ext.Element.data(dom, 'isCleaned', true);
        return me;
    },

    /**
     * Direct access to the Updater {@link Ext.Updater#update} method. The method takes the same object
     * parameter as {@link Ext.Updater#update}
     * @return {Ext.Element} this
     */
    load : function() {
        var updateManager = this.getUpdater();
        updateManager.update.apply(updateManager, arguments);
        
        return this;
    },

    /**
    * Gets this element's {@link Ext.Updater Updater}
    * @return {Ext.Updater} The Updater
    */
    getUpdater : function() {
        return this.updateManager || (this.updateManager = new Ext.Updater(this));
    },

    /**
    * Update the innerHTML of this element, optionally searching for and processing scripts
    * @param {String} html The new HTML
    * @param {Boolean} loadScripts (optional) True to look for and process scripts (defaults to false)
    * @param {Function} callback (optional) For async script loading you can be notified when the update completes
    * @return {Ext.Element} this
     */
    update : function(html, loadScripts, callback) {
        if (!this.dom) {
            return this;
        }
        html = html || "";

        if (loadScripts !== true) {
            this.dom.innerHTML = html;
            if (typeof callback == 'function') {
                callback();
            }
            return this;
        }

        var id  = Ext.id(),
            dom = this.dom;

        html += '';

        Ext.lib.Event.onAvailable(id, function() {
            var DOC    = document,
                hd     = DOC.getElementsByTagName("head")[0],
                re     = /(?:]*)?>)((\n|\r|.)*?)(?:<\/script>)/ig,
                srcRe  = /\ssrc=([\'\"])(.*?)\1/i,
                typeRe = /\stype=([\'\"])(.*?)\1/i,
                match,
                attrs,
                srcMatch,
                typeMatch,
                el,
                s;

            while ((match = re.exec(html))) {
                attrs = match[1];
                srcMatch = attrs ? attrs.match(srcRe) : false;
                if (srcMatch && srcMatch[2]) {
                   s = DOC.createElement("script");
                   s.src = srcMatch[2];
                   typeMatch = attrs.match(typeRe);
                   if (typeMatch && typeMatch[2]) {
                       s.type = typeMatch[2];
                   }
                   hd.appendChild(s);
                } else if (match[2] && match[2].length > 0) {
                    if (window.execScript) {
                       window.execScript(match[2]);
                    } else {
                       window.eval(match[2]);
                    }
                }
            }
            
            el = DOC.getElementById(id);
            if (el) {
                Ext.removeNode(el);
            }
            
            if (typeof callback == 'function') {
                callback();
            }
        });
        dom.innerHTML = html.replace(/(?:)((\n|\r|.)*?)(?:<\/script>)/ig, "");
        return this;
    },

    // inherit docs, overridden so we can add removeAnchor
    removeAllListeners : function() {
        this.removeAnchor();
        Ext.EventManager.removeAll(this.dom);
        return this;
    },

    /**
     * Creates a proxy element of this element
     * @param {String/Object} config The class name of the proxy element or a DomHelper config object
     * @param {String/HTMLElement} renderTo (optional) The element or element id to render the proxy to (defaults to document.body)
     * @param {Boolean} matchBox (optional) True to align and size the proxy to this element now (defaults to false)
     * @return {Ext.Element} The new proxy element
     */
    createProxy : function(config, renderTo, matchBox) {
        config = (typeof config == 'object') ? config : {tag : "div", cls: config};

        var me = this,
            proxy = renderTo ? Ext.DomHelper.append(renderTo, config, true) :
                               Ext.DomHelper.insertBefore(me.dom, config, true);

        if (matchBox && me.setBox && me.getBox) { // check to make sure Element.position.js is loaded
           proxy.setBox(me.getBox());
        }
        return proxy;
    }
});

Ext.Element.prototype.getUpdateManager = Ext.Element.prototype.getUpdater;
/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Gets the x,y coordinates specified by the anchor position on the element.
     * @param {String} anchor (optional) The specified anchor position (defaults to "c").  See {@link #alignTo}
     * for details on supported anchor positions.
     * @param {Boolean} local (optional) True to get the local (element top/left-relative) anchor position instead
     * of page coordinates
     * @param {Object} size (optional) An object containing the size to use for calculating anchor position
     * {width: (target width), height: (target height)} (defaults to the element's current size)
     * @return {Array} [x, y] An array containing the element's x and y coordinates
     */
    getAnchorXY : function(anchor, local, s){
        //Passing a different size is useful for pre-calculating anchors,
        //especially for anchored animations that change the el size.
		anchor = (anchor || "tl").toLowerCase();
        s = s || {};
        
        var me = this,        
        	vp = me.dom == document.body || me.dom == document,
        	w = s.width || vp ? Ext.lib.Dom.getViewWidth() : me.getWidth(),
        	h = s.height || vp ? Ext.lib.Dom.getViewHeight() : me.getHeight(),         	        	
        	xy,       	
        	r = Math.round,
        	o = me.getXY(),
        	scroll = me.getScroll(),
        	extraX = vp ? scroll.left : !local ? o[0] : 0,
        	extraY = vp ? scroll.top : !local ? o[1] : 0,
        	hash = {
	        	c  : [r(w * 0.5), r(h * 0.5)],
	        	t  : [r(w * 0.5), 0],
	        	l  : [0, r(h * 0.5)],
	        	r  : [w, r(h * 0.5)],
	        	b  : [r(w * 0.5), h],
	        	tl : [0, 0],	
	        	bl : [0, h],
	        	br : [w, h],
	        	tr : [w, 0]
        	};
        
        xy = hash[anchor];	
        return [xy[0] + extraX, xy[1] + extraY]; 
    },

    /**
     * Anchors an element to another element and realigns it when the window is resized.
     * @param {Mixed} element The element to align to.
     * @param {String} position The position to align to.
     * @param {Array} offsets (optional) Offset the positioning by [x, y]
     * @param {Boolean/Object} animate (optional) True for the default animation or a standard Element animation config object
     * @param {Boolean/Number} monitorScroll (optional) True to monitor body scroll and reposition. If this parameter
     * is a number, it is used as the buffer delay (defaults to 50ms).
     * @param {Function} callback (optional) The function to call after the animation finishes
     * @return {Ext.Element} this
     */
    anchorTo : function(el, alignment, offsets, animate, monitorScroll, callback){        
	    var me = this,
            dom = me.dom,
            scroll = !Ext.isEmpty(monitorScroll),
            action = function(){
                Ext.fly(dom).alignTo(el, alignment, offsets, animate);
                Ext.callback(callback, Ext.fly(dom));
            },
            anchor = this.getAnchor();
            
        // previous listener anchor, remove it
        this.removeAnchor();
        Ext.apply(anchor, {
            fn: action,
            scroll: scroll
        });

        Ext.EventManager.onWindowResize(action, null);
        
        if(scroll){
            Ext.EventManager.on(window, 'scroll', action, null,
                {buffer: !isNaN(monitorScroll) ? monitorScroll : 50});
        }
        action.call(me); // align immediately
        return me;
    },
    
    /**
     * Remove any anchor to this element. See {@link #anchorTo}.
     * @return {Ext.Element} this
     */
    removeAnchor : function(){
        var me = this,
            anchor = this.getAnchor();
            
        if(anchor && anchor.fn){
            Ext.EventManager.removeResizeListener(anchor.fn);
            if(anchor.scroll){
                Ext.EventManager.un(window, 'scroll', anchor.fn);
            }
            delete anchor.fn;
        }
        return me;
    },
    
    // private
    getAnchor : function(){
        var data = Ext.Element.data,
            dom = this.dom;
            if (!dom) {
                return;
            }
            var anchor = data(dom, '_anchor');
            
        if(!anchor){
            anchor = data(dom, '_anchor', {});
        }
        return anchor;
    },

    /**
     * Gets the x,y coordinates to align this element with another element. See {@link #alignTo} for more info on the
     * supported position values.
     * @param {Mixed} element The element to align to.
     * @param {String} position (optional, defaults to "tl-bl?") The position to align to.
     * @param {Array} offsets (optional) Offset the positioning by [x, y]
     * @return {Array} [x, y]
     */
    getAlignToXY : function(el, p, o){	    
        el = Ext.get(el);
        
        if(!el || !el.dom){
            throw "Element.alignToXY with an element that doesn't exist";
        }
        
        o = o || [0,0];
        p = (!p || p == "?" ? "tl-bl?" : (!(/-/).test(p) && p !== "" ? "tl-" + p : p || "tl-bl")).toLowerCase();       
                
        var me = this,
        	d = me.dom,
        	a1,
        	a2,
        	x,
        	y,
        	//constrain the aligned el to viewport if necessary
        	w,
        	h,
        	r,
        	dw = Ext.lib.Dom.getViewWidth() -10, // 10px of margin for ie
        	dh = Ext.lib.Dom.getViewHeight()-10, // 10px of margin for ie
        	p1y,
        	p1x,        	
        	p2y,
        	p2x,
        	swapY,
        	swapX,
        	doc = document,
        	docElement = doc.documentElement,
        	docBody = doc.body,
        	scrollX = (docElement.scrollLeft || docBody.scrollLeft || 0)+5,
        	scrollY = (docElement.scrollTop || docBody.scrollTop || 0)+5,
        	c = false, //constrain to viewport
        	p1 = "", 
        	p2 = "",
        	m = p.match(/^([a-z]+)-([a-z]+)(\?)?$/);
        
        if(!m){
           throw "Element.alignTo with an invalid alignment " + p;
        }
        
        p1 = m[1]; 
        p2 = m[2]; 
        c = !!m[3];

        //Subtract the aligned el's internal xy from the target's offset xy
        //plus custom offset to get the aligned el's new offset xy
        a1 = me.getAnchorXY(p1, true);
        a2 = el.getAnchorXY(p2, false);

        x = a2[0] - a1[0] + o[0];
        y = a2[1] - a1[1] + o[1];

        if(c){    
	       w = me.getWidth();
           h = me.getHeight();
           r = el.getRegion();       
           //If we are at a viewport boundary and the aligned el is anchored on a target border that is
           //perpendicular to the vp border, allow the aligned el to slide on that border,
           //otherwise swap the aligned el to the opposite border of the target.
           p1y = p1.charAt(0);
           p1x = p1.charAt(p1.length-1);
           p2y = p2.charAt(0);
           p2x = p2.charAt(p2.length-1);
           swapY = ((p1y=="t" && p2y=="b") || (p1y=="b" && p2y=="t"));
           swapX = ((p1x=="r" && p2x=="l") || (p1x=="l" && p2x=="r"));          
           

           if (x + w > dw + scrollX) {
                x = swapX ? r.left-w : dw+scrollX-w;
           }
           if (x < scrollX) {
               x = swapX ? r.right : scrollX;
           }
           if (y + h > dh + scrollY) {
                y = swapY ? r.top-h : dh+scrollY-h;
            }
           if (y < scrollY){
               y = swapY ? r.bottom : scrollY;
           }
        }
        return [x,y];
    },

    /**
     * Aligns this element with another element relative to the specified anchor points. If the other element is the
     * document it aligns it to the viewport.
     * The position parameter is optional, and can be specified in any one of the following formats:
     * 
      
     *   
    • Blank: Defaults to aligning the element's top-left corner to the target's bottom-left corner ("tl-bl").
      • 
     *   
    • One anchor (deprecated): The passed anchor position is used as the target element's anchor point.
     *       The element being aligned will position its top-left corner (tl) to that point.  This method has been
     *       deprecated in favor of the newer two anchor syntax below.
      • 
     *   
    • Two anchors: If two values from the table below are passed separated by a dash, the first value is used as the
     *       element's anchor point, and the second value is used as the target's anchor point.
      • 
     * 
    
     * In addition to the anchor points, the position parameter also supports the "?" character.  If "?" is passed at the end of
     * the position string, the element will attempt to align as specified, but the position will be adjusted to constrain to
     * the viewport if necessary.  Note that the element being aligned might be swapped to align to a different position than
     * that specified in order to enforce the viewport constraints.
     * Following are all of the supported anchor positions:

    Value  Description
-----  -----------------------------
tl     The top left corner (default)
t      The center of the top edge
tr     The top right corner
l      The center of the left edge
c      In the center of the element
r      The center of the right edge
bl     The bottom left corner
b      The center of the bottom edge
br     The bottom right corner

    
Example Usage:

    
// align el to other-el using the default positioning ("tl-bl", non-constrained)
el.alignTo("other-el");

// align the top left corner of el with the top right corner of other-el (constrained to viewport)
el.alignTo("other-el", "tr?");

// align the bottom right corner of el with the center left edge of other-el
el.alignTo("other-el", "br-l?");

// align the center of el with the bottom left corner of other-el and
// adjust the x position by -6 pixels (and the y position by 0)
el.alignTo("other-el", "c-bl", [-6, 0]);

    
     * @param {Mixed} element The element to align to.
     * @param {String} position (optional, defaults to "tl-bl?") The position to align to.
     * @param {Array} offsets (optional) Offset the positioning by [x, y]
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Ext.Element} this
     */
    alignTo : function(element, position, offsets, animate){
	    var me = this;
        return me.setXY(me.getAlignToXY(element, position, offsets),
          		        me.preanim && !!animate ? me.preanim(arguments, 3) : false);
    },
    
    // private ==>  used outside of core
    adjustForConstraints : function(xy, parent, offsets){
        return this.getConstrainToXY(parent || document, false, offsets, xy) ||  xy;
    },

    // private ==>  used outside of core
    getConstrainToXY : function(el, local, offsets, proposedXY){   
	    var os = {top:0, left:0, bottom:0, right: 0};

        return function(el, local, offsets, proposedXY){
            el = Ext.get(el);
            offsets = offsets ? Ext.applyIf(offsets, os) : os;

            var vw, vh, vx = 0, vy = 0;
            if(el.dom == document.body || el.dom == document){
                vw =Ext.lib.Dom.getViewWidth();
                vh = Ext.lib.Dom.getViewHeight();
            }else{
                vw = el.dom.clientWidth;
                vh = el.dom.clientHeight;
                if(!local){
                    var vxy = el.getXY();
                    vx = vxy[0];
                    vy = vxy[1];
                }
            }

            var s = el.getScroll();

            vx += offsets.left + s.left;
            vy += offsets.top + s.top;

            vw -= offsets.right;
            vh -= offsets.bottom;

            var vr = vx + vw,
                vb = vy + vh,
                xy = proposedXY || (!local ? this.getXY() : [this.getLeft(true), this.getTop(true)]),
                x = xy[0], y = xy[1],
                offset = this.getConstrainOffset(),
                w = this.dom.offsetWidth + offset, 
                h = this.dom.offsetHeight + offset;

            // only move it if it needs it
            var moved = false;

            // first validate right/bottom
            if((x + w) > vr){
                x = vr - w;
                moved = true;
            }
            if((y + h) > vb){
                y = vb - h;
                moved = true;
            }
            // then make sure top/left isn't negative
            if(x < vx){
                x = vx;
                moved = true;
            }
            if(y < vy){
                y = vy;
                moved = true;
            }
            return moved ? [x, y] : false;
        };
    }(),
	    
	    
	        
//         el = Ext.get(el);
//         offsets = Ext.applyIf(offsets || {}, {top : 0, left : 0, bottom : 0, right : 0});

//         var	me = this,
//         	doc = document,
//         	s = el.getScroll(),
//         	vxy = el.getXY(),
//         	vx = offsets.left + s.left, 
//         	vy = offsets.top + s.top,            	
//         	vw = -offsets.right, 
//         	vh = -offsets.bottom, 
//         	vr,
//         	vb,
//         	xy = proposedXY || (!local ? me.getXY() : [me.getLeft(true), me.getTop(true)]),
//         	x = xy[0],
//         	y = xy[1],
//         	w = me.dom.offsetWidth, h = me.dom.offsetHeight,
//         	moved = false; // only move it if it needs it
//       
//         	
//         if(el.dom == doc.body || el.dom == doc){
//             vw += Ext.lib.Dom.getViewWidth();
//             vh += Ext.lib.Dom.getViewHeight();
//         }else{
//             vw += el.dom.clientWidth;
//             vh += el.dom.clientHeight;
//             if(!local){                    
//                 vx += vxy[0];
//                 vy += vxy[1];
//             }
//         }

//         // first validate right/bottom
//         if(x + w > vx + vw){
//             x = vx + vw - w;
//             moved = true;
//         }
//         if(y + h > vy + vh){
//             y = vy + vh - h;
//             moved = true;
//         }
//         // then make sure top/left isn't negative
//         if(x < vx){
//             x = vx;
//             moved = true;
//         }
//         if(y < vy){
//             y = vy;
//             moved = true;
//         }
//         return moved ? [x, y] : false;
//    },

    // private, used internally
    getConstrainOffset : function(){
        return 0;
    },
    
    /**
    * Calculates the x, y to center this element on the screen
    * @return {Array} The x, y values [x, y]
    */
    getCenterXY : function(){
        return this.getAlignToXY(document, 'c-c');
    },

    /**
    * Centers the Element in either the viewport, or another Element.
    * @param {Mixed} centerIn (optional) The element in which to center the element.
    */
    center : function(centerIn){
        return this.alignTo(centerIn || document, 'c-c');        
    }    
});
/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Creates a {@link Ext.CompositeElement} for child nodes based on the passed CSS selector (the selector should not contain an id).
     * @param {String} selector The CSS selector
     * @param {Boolean} unique (optional) True to create a unique Ext.Element for each child (defaults to false, which creates a single shared flyweight object)
     * @return {CompositeElement/CompositeElementLite} The composite element
     */
    select : function(selector, unique){
        return Ext.Element.select(selector, unique, this.dom);
    }
});/**
 * @class Ext.Element
 */
Ext.apply(Ext.Element.prototype, function() {
	var GETDOM = Ext.getDom,
		GET = Ext.get,
		DH = Ext.DomHelper;
	
	return {	
		/**
	     * Inserts (or creates) the passed element (or DomHelper config) as a sibling of this element
	     * @param {Mixed/Object/Array} el The id, element to insert or a DomHelper config to create and insert *or* an array of any of those.
	     * @param {String} where (optional) 'before' or 'after' defaults to before
	     * @param {Boolean} returnDom (optional) True to return the raw DOM element instead of Ext.Element
	     * @return {Ext.Element} The inserted Element. If an array is passed, the last inserted element is returned.
	     */
	    insertSibling: function(el, where, returnDom){
	        var me = this,
	        	rt,
                isAfter = (where || 'before').toLowerCase() == 'after',
                insertEl;
	        	
	        if(Ext.isArray(el)){
                insertEl = me;
	            Ext.each(el, function(e) {
		            rt = Ext.fly(insertEl, '_internal').insertSibling(e, where, returnDom);
                    if(isAfter){
                        insertEl = rt;
                    }
	            });
	            return rt;
	        }
	                
	        el = el || {};
	       	
            if(el.nodeType || el.dom){
                rt = me.dom.parentNode.insertBefore(GETDOM(el), isAfter ? me.dom.nextSibling : me.dom);
                if (!returnDom) {
                    rt = GET(rt);
                }
            }else{
                if (isAfter && !me.dom.nextSibling) {
                    rt = DH.append(me.dom.parentNode, el, !returnDom);
                } else {                    
                    rt = DH[isAfter ? 'insertAfter' : 'insertBefore'](me.dom, el, !returnDom);
                }
            }
	        return rt;
	    }
    };
}());/**
 * @class Ext.Element
 */

// special markup used throughout Ext when box wrapping elements
Ext.Element.boxMarkup = '
    ';

Ext.Element.addMethods(function(){
    var INTERNAL = "_internal",
        pxMatch = /(\d+\.?\d+)px/;
    return {
        /**
         * More flexible version of {@link #setStyle} for setting style properties.
         * @param {String/Object/Function} styles A style specification string, e.g. "width:100px", or object in the form {width:"100px"}, or
         * a function which returns such a specification.
         * @return {Ext.Element} this
         */
        applyStyles : function(style){
            Ext.DomHelper.applyStyles(this.dom, style);
            return this;
        },

        /**
         * Returns an object with properties matching the styles requested.
         * For example, el.getStyles('color', 'font-size', 'width') might return
         * {'color': '#FFFFFF', 'font-size': '13px', 'width': '100px'}.
         * @param {String} style1 A style name
         * @param {String} style2 A style name
         * @param {String} etc.
         * @return {Object} The style object
         */
        getStyles : function(){
            var ret = {};
            Ext.each(arguments, function(v) {
               ret[v] = this.getStyle(v);
            },
            this);
            return ret;
        },

        // private  ==> used by ext full
        setOverflow : function(v){
            var dom = this.dom;
            if(v=='auto' && Ext.isMac && Ext.isGecko2){ // work around stupid FF 2.0/Mac scroll bar bug
                dom.style.overflow = 'hidden';
                (function(){dom.style.overflow = 'auto';}).defer(1);
            }else{
                dom.style.overflow = v;
            }
        },

       /**
        * 
    Wraps the specified element with a special 9 element markup/CSS block that renders by default as
        * a gray container with a gradient background, rounded corners and a 4-way shadow.
    
        * 
    This special markup is used throughout Ext when box wrapping elements ({@link Ext.Button},
        * {@link Ext.Panel} when {@link Ext.Panel#frame frame=true}, {@link Ext.Window}).  The markup
        * is of this form:
    
        * 
    
    Ext.Element.boxMarkup =
    '<div class="{0}-tl"><div class="{0}-tr"><div class="{0}-tc"></div></div></div>
     <div class="{0}-ml"><div class="{0}-mr"><div class="{0}-mc"></div></div></div>
     <div class="{0}-bl"><div class="{0}-br"><div class="{0}-bc"></div></div></div>';
        * 
    
        * 
    Example usage:
    
        * 
    
    // Basic box wrap
    Ext.get("foo").boxWrap();

    // You can also add a custom class and use CSS inheritance rules to customize the box look.
    // 'x-box-blue' is a built-in alternative -- look at the related CSS definitions as an example
    // for how to create a custom box wrap style.
    Ext.get("foo").boxWrap().addClass("x-box-blue");
        * 
    
        * @param {String} class (optional) A base CSS class to apply to the containing wrapper element
        * (defaults to 'x-box'). Note that there are a number of CSS rules that are dependent on
        * this name to make the overall effect work, so if you supply an alternate base class, make sure you
        * also supply all of the necessary rules.
        * @return {Ext.Element} The outermost wrapping element of the created box structure.
        */
        boxWrap : function(cls){
            cls = cls || 'x-box';
            var el = Ext.get(this.insertHtml("beforeBegin", "
    " + String.format(Ext.Element.boxMarkup, cls) + "
    "));        //String.format('
    '+Ext.Element.boxMarkup+'
    ', cls)));
            Ext.DomQuery.selectNode('.' + cls + '-mc', el.dom).appendChild(this.dom);
            return el;
        },

        /**
         * Set the size of this Element. If animation is true, both width and height will be animated concurrently.
         * @param {Mixed} width The new width. This may be one of:
      
         * 
    • A Number specifying the new width in this Element's {@link #defaultUnit}s (by default, pixels).
      • 
         * 
    • A String used to set the CSS width style. Animation may not be used.
         * 
    • A size object in the format {width: widthValue, height: heightValue}.
      • 
         * 
    
         * @param {Mixed} height The new height. This may be one of:
      
         * 
    • A Number specifying the new height in this Element's {@link #defaultUnit}s (by default, pixels).
      • 
         * 
    • A String used to set the CSS height style. Animation may not be used.
      • 
         * 
    
         * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
         * @return {Ext.Element} this
         */
        setSize : function(width, height, animate){
            var me = this;
            if(typeof width == 'object'){ // in case of object from getSize()
                height = width.height;
                width = width.width;
            }
            width = me.adjustWidth(width);
            height = me.adjustHeight(height);
            if(!animate || !me.anim){
                me.dom.style.width = me.addUnits(width);
                me.dom.style.height = me.addUnits(height);
            }else{
                me.anim({width: {to: width}, height: {to: height}}, me.preanim(arguments, 2));
            }
            return me;
        },

        /**
         * Returns either the offsetHeight or the height of this element based on CSS height adjusted by padding or borders
         * when needed to simulate offsetHeight when offsets aren't available. This may not work on display:none elements
         * if a height has not been set using CSS.
         * @return {Number}
         */
        getComputedHeight : function(){
            var me = this,
                h = Math.max(me.dom.offsetHeight, me.dom.clientHeight);
            if(!h){
                h = parseFloat(me.getStyle('height')) || 0;
                if(!me.isBorderBox()){
                    h += me.getFrameWidth('tb');
                }
            }
            return h;
        },

        /**
         * Returns either the offsetWidth or the width of this element based on CSS width adjusted by padding or borders
         * when needed to simulate offsetWidth when offsets aren't available. This may not work on display:none elements
         * if a width has not been set using CSS.
         * @return {Number}
         */
        getComputedWidth : function(){
            var w = Math.max(this.dom.offsetWidth, this.dom.clientWidth);
            if(!w){
                w = parseFloat(this.getStyle('width')) || 0;
                if(!this.isBorderBox()){
                    w += this.getFrameWidth('lr');
                }
            }
            return w;
        },

        /**
         * Returns the sum width of the padding and borders for the passed "sides". See getBorderWidth()
         for more information about the sides.
         * @param {String} sides
         * @return {Number}
         */
        getFrameWidth : function(sides, onlyContentBox){
            return onlyContentBox && this.isBorderBox() ? 0 : (this.getPadding(sides) + this.getBorderWidth(sides));
        },

        /**
         * Sets up event handlers to add and remove a css class when the mouse is over this element
         * @param {String} className
         * @return {Ext.Element} this
         */
        addClassOnOver : function(className){
            this.hover(
                function(){
                    Ext.fly(this, INTERNAL).addClass(className);
                },
                function(){
                    Ext.fly(this, INTERNAL).removeClass(className);
                }
            );
            return this;
        },

        /**
         * Sets up event handlers to add and remove a css class when this element has the focus
         * @param {String} className
         * @return {Ext.Element} this
         */
        addClassOnFocus : function(className){
            this.on("focus", function(){
                Ext.fly(this, INTERNAL).addClass(className);
            }, this.dom);
            this.on("blur", function(){
                Ext.fly(this, INTERNAL).removeClass(className);
            }, this.dom);
            return this;
        },

        /**
         * Sets up event handlers to add and remove a css class when the mouse is down and then up on this element (a click effect)
         * @param {String} className
         * @return {Ext.Element} this
         */
        addClassOnClick : function(className){
            var dom = this.dom;
            this.on("mousedown", function(){
                Ext.fly(dom, INTERNAL).addClass(className);
                var d = Ext.getDoc(),
                    fn = function(){
                        Ext.fly(dom, INTERNAL).removeClass(className);
                        d.removeListener("mouseup", fn);
                    };
                d.on("mouseup", fn);
            });
            return this;
        },

        /**
         * 
    Returns the dimensions of the element available to lay content out in.
    
         * 
    If the element (or any ancestor element) has CSS style display : none, the dimensions will be zero.
    
         * example:
    
        var vpSize = Ext.getBody().getViewSize();

        // all Windows created afterwards will have a default value of 90% height and 95% width
        Ext.Window.override({
            width: vpSize.width * 0.9,
            height: vpSize.height * 0.95
        });
        // To handle window resizing you would have to hook onto onWindowResize.
        * 
    
        *
        * getViewSize utilizes clientHeight/clientWidth which excludes sizing of scrollbars.
        * To obtain the size including scrollbars, use getStyleSize
        *
        * Sizing of the document body is handled at the adapter level which handles special cases for IE and strict modes, etc.
        */

        getViewSize : function(){
            var doc = document,
                d = this.dom,
                isDoc = (d == doc || d == doc.body);

            // If the body, use Ext.lib.Dom
            if (isDoc) {
                var extdom = Ext.lib.Dom;
                return {
                    width : extdom.getViewWidth(),
                    height : extdom.getViewHeight()
                };

            // Else use clientHeight/clientWidth
            } else {
                return {
                    width : d.clientWidth,
                    height : d.clientHeight
                };
            }
        },

        /**
        * 
    Returns the dimensions of the element available to lay content out in.
    
        *
        * getStyleSize utilizes prefers style sizing if present, otherwise it chooses the larger of offsetHeight/clientHeight and offsetWidth/clientWidth.
        * To obtain the size excluding scrollbars, use getViewSize
        *
        * Sizing of the document body is handled at the adapter level which handles special cases for IE and strict modes, etc.
        */

        getStyleSize : function(){
            var me = this,
                w, h,
                doc = document,
                d = this.dom,
                isDoc = (d == doc || d == doc.body),
                s = d.style;

            // If the body, use Ext.lib.Dom
            if (isDoc) {
                var extdom = Ext.lib.Dom;
                return {
                    width : extdom.getViewWidth(),
                    height : extdom.getViewHeight()
                };
            }
            // Use Styles if they are set
            if(s.width && s.width != 'auto'){
                w = parseFloat(s.width);
                if(me.isBorderBox()){
                   w -= me.getFrameWidth('lr');
                }
            }
            // Use Styles if they are set
            if(s.height && s.height != 'auto'){
                h = parseFloat(s.height);
                if(me.isBorderBox()){
                   h -= me.getFrameWidth('tb');
                }
            }
            // Use getWidth/getHeight if style not set.
            return {width: w || me.getWidth(true), height: h || me.getHeight(true)};
        },

        /**
         * Returns the size of the element.
         * @param {Boolean} contentSize (optional) true to get the width/size minus borders and padding
         * @return {Object} An object containing the element's size {width: (element width), height: (element height)}
         */
        getSize : function(contentSize){
            return {width: this.getWidth(contentSize), height: this.getHeight(contentSize)};
        },

        /**
         * Forces the browser to repaint this element
         * @return {Ext.Element} this
         */
        repaint : function(){
            var dom = this.dom;
            this.addClass("x-repaint");
            setTimeout(function(){
                Ext.fly(dom).removeClass("x-repaint");
            }, 1);
            return this;
        },

        /**
         * Disables text selection for this element (normalized across browsers)
         * @return {Ext.Element} this
         */
        unselectable : function(){
            this.dom.unselectable = "on";
            return this.swallowEvent("selectstart", true).
                        addClass("x-unselectable");
        },

        /**
         * Returns an object with properties top, left, right and bottom representing the margins of this element unless sides is passed,
         * then it returns the calculated width of the sides (see getPadding)
         * @param {String} sides (optional) Any combination of l, r, t, b to get the sum of those sides
         * @return {Object/Number}
         */
        getMargins : function(side){
            var me = this,
                key,
                hash = {t:"top", l:"left", r:"right", b: "bottom"},
                o = {};

            if (!side) {
                for (key in me.margins){
                    o[hash[key]] = parseFloat(me.getStyle(me.margins[key])) || 0;
                }
                return o;
            } else {
                return me.addStyles.call(me, side, me.margins);
            }
        }
    };
}());
/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Sets the element's box. Use getBox() on another element to get a box obj. If animate is true then width, height, x and y will be animated concurrently.
     * @param {Object} box The box to fill {x, y, width, height}
     * @param {Boolean} adjust (optional) Whether to adjust for box-model issues automatically
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Ext.Element} this
     */
    setBox : function(box, adjust, animate){
        var me = this,
        	w = box.width, 
        	h = box.height;
        if((adjust && !me.autoBoxAdjust) && !me.isBorderBox()){
           w -= (me.getBorderWidth("lr") + me.getPadding("lr"));
           h -= (me.getBorderWidth("tb") + me.getPadding("tb"));
        }
        me.setBounds(box.x, box.y, w, h, me.animTest.call(me, arguments, animate, 2));
        return me;
    },

    /**
     * Return an object defining the area of this Element which can be passed to {@link #setBox} to
     * set another Element's size/location to match this element.
     * @param {Boolean} contentBox (optional) If true a box for the content of the element is returned.
     * @param {Boolean} local (optional) If true the element's left and top are returned instead of page x/y.
     * @return {Object} box An object in the format
    
{
    x: <Element's X position>,
    y: <Element's Y position>,
    width: <Element's width>,
    height: <Element's height>,
    bottom: <Element's lower bound>,
    right: <Element's rightmost bound>
}

    
     * The returned object may also be addressed as an Array where index 0 contains the X position
     * and index 1 contains the Y position. So the result may also be used for {@link #setXY}
     */
	getBox : function(contentBox, local) {	    
	    var me = this,
        	xy,
        	left,
        	top,
        	getBorderWidth = me.getBorderWidth,
        	getPadding = me.getPadding, 
        	l,
        	r,
        	t,
        	b;
        if(!local){
            xy = me.getXY();
        }else{
            left = parseInt(me.getStyle("left"), 10) || 0;
            top = parseInt(me.getStyle("top"), 10) || 0;
            xy = [left, top];
        }
        var el = me.dom, w = el.offsetWidth, h = el.offsetHeight, bx;
        if(!contentBox){
            bx = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: w, height: h};
        }else{
            l = getBorderWidth.call(me, "l") + getPadding.call(me, "l");
            r = getBorderWidth.call(me, "r") + getPadding.call(me, "r");
            t = getBorderWidth.call(me, "t") + getPadding.call(me, "t");
            b = getBorderWidth.call(me, "b") + getPadding.call(me, "b");
            bx = {x: xy[0]+l, y: xy[1]+t, 0: xy[0]+l, 1: xy[1]+t, width: w-(l+r), height: h-(t+b)};
        }
        bx.right = bx.x + bx.width;
        bx.bottom = bx.y + bx.height;
        return bx;
	},
	
    /**
     * Move this element relative to its current position.
     * @param {String} direction Possible values are: "l" (or "left"), "r" (or "right"), "t" (or "top", or "up"), "b" (or "bottom", or "down").
     * @param {Number} distance How far to move the element in pixels
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Ext.Element} this
     */
     move : function(direction, distance, animate){
        var me = this,        	
        	xy = me.getXY(),
        	x = xy[0],
        	y = xy[1],        	
        	left = [x - distance, y],
        	right = [x + distance, y],
        	top = [x, y - distance],
        	bottom = [x, y + distance],
	       	hash = {
	        	l :	left,
	        	left : left,
	        	r : right,
	        	right : right,
	        	t : top,
	        	top : top,
	        	up : top,
	        	b : bottom, 
	        	bottom : bottom,
	        	down : bottom	        		
	        };
        
 	    direction = direction.toLowerCase();    
 	    me.moveTo(hash[direction][0], hash[direction][1], me.animTest.call(me, arguments, animate, 2));
    },
    
    /**
     * Quick set left and top adding default units
     * @param {String} left The left CSS property value
     * @param {String} top The top CSS property value
     * @return {Ext.Element} this
     */
     setLeftTop : function(left, top){
	    var me = this,
	    	style = me.dom.style;
        style.left = me.addUnits(left);
        style.top = me.addUnits(top);
        return me;
    },
    
    /**
     * Returns the region of the given element.
     * The element must be part of the DOM tree to have a region (display:none or elements not appended return false).
     * @return {Region} A Ext.lib.Region containing "top, left, bottom, right" member data.
     */
    getRegion : function(){
        return Ext.lib.Dom.getRegion(this.dom);
    },
    
    /**
     * Sets the element's position and size in one shot. If animation is true then width, height, x and y will be animated concurrently.
     * @param {Number} x X value for new position (coordinates are page-based)
     * @param {Number} y Y value for new position (coordinates are page-based)
     * @param {Mixed} width The new width. This may be one of:
      
     * 
    • A Number specifying the new width in this Element's {@link #defaultUnit}s (by default, pixels)
      • 
     * 
    • A String used to set the CSS width style. Animation may not be used.
     * 
    
     * @param {Mixed} height The new height. This may be one of:
      
     * 
    • A Number specifying the new height in this Element's {@link #defaultUnit}s (by default, pixels)
      • 
     * 
    • A String used to set the CSS height style. Animation may not be used.
      • 
     * 
    
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Ext.Element} this
     */
    setBounds : function(x, y, width, height, animate){
	    var me = this;
        if (!animate || !me.anim) {
            me.setSize(width, height);
            me.setLocation(x, y);
        } else {
            me.anim({points: {to: [x, y]}, 
            		 width: {to: me.adjustWidth(width)}, 
            		 height: {to: me.adjustHeight(height)}},
                     me.preanim(arguments, 4), 
                     'motion');
        }
        return me;
    },

    /**
     * Sets the element's position and size the specified region. If animation is true then width, height, x and y will be animated concurrently.
     * @param {Ext.lib.Region} region The region to fill
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Ext.Element} this
     */
    setRegion : function(region, animate) {
        return this.setBounds(region.left, region.top, region.right-region.left, region.bottom-region.top, this.animTest.call(this, arguments, animate, 1));
    }
});/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Scrolls this element the specified scroll point. It does NOT do bounds checking so if you scroll to a weird value it will try to do it. For auto bounds checking, use scroll().
     * @param {String} side Either "left" for scrollLeft values or "top" for scrollTop values.
     * @param {Number} value The new scroll value
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Element} this
     */
    scrollTo : function(side, value, animate) {
        //check if we're scrolling top or left
        var top = /top/i.test(side),
            me = this,
            dom = me.dom,
            prop;
        if (!animate || !me.anim) {
            // just setting the value, so grab the direction
            prop = 'scroll' + (top ? 'Top' : 'Left');
            dom[prop] = value;
        }
        else {
            // if scrolling top, we need to grab scrollLeft, if left, scrollTop
            prop = 'scroll' + (top ? 'Left' : 'Top');
            me.anim({scroll: {to: top ? [dom[prop], value] : [value, dom[prop]]}}, me.preanim(arguments, 2), 'scroll');
        }
        return me;
    },
    
    /**
     * Scrolls this element into view within the passed container.
     * @param {Mixed} container (optional) The container element to scroll (defaults to document.body).  Should be a
     * string (id), dom node, or Ext.Element.
     * @param {Boolean} hscroll (optional) False to disable horizontal scroll (defaults to true)
     * @return {Ext.Element} this
     */
    scrollIntoView : function(container, hscroll) {
        var c = Ext.getDom(container) || Ext.getBody().dom,
            el = this.dom,
            o = this.getOffsetsTo(c),
            l = o[0] + c.scrollLeft,
            t = o[1] + c.scrollTop,
            b = t + el.offsetHeight,
            r = l + el.offsetWidth,
            ch = c.clientHeight,
            ct = parseInt(c.scrollTop, 10),
            cl = parseInt(c.scrollLeft, 10),
            cb = ct + ch,
            cr = cl + c.clientWidth;

        if (el.offsetHeight > ch || t < ct) {
            c.scrollTop = t;
        }
        else if (b > cb) {
            c.scrollTop = b-ch;
        }
        // corrects IE, other browsers will ignore
        c.scrollTop = c.scrollTop;

        if (hscroll !== false) {
            if (el.offsetWidth > c.clientWidth || l < cl) {
                c.scrollLeft = l;
            }
            else if (r > cr) {
                c.scrollLeft = r - c.clientWidth;
            }
            c.scrollLeft = c.scrollLeft;
        }
        return this;
    },

    // private
    scrollChildIntoView : function(child, hscroll) {
        Ext.fly(child, '_scrollChildIntoView').scrollIntoView(this, hscroll);
    },
    
    /**
     * Scrolls this element the specified direction. Does bounds checking to make sure the scroll is
     * within this element's scrollable range.
     * @param {String} direction Possible values are: "l" (or "left"), "r" (or "right"), "t" (or "top", or "up"), "b" (or "bottom", or "down").
     * @param {Number} distance How far to scroll the element in pixels
     * @param {Boolean/Object} animate (optional) true for the default animation or a standard Element animation config object
     * @return {Boolean} Returns true if a scroll was triggered or false if the element
     * was scrolled as far as it could go.
     */
     scroll : function(direction, distance, animate) {
        if (!this.isScrollable()) {
            return false;
        }
        var el = this.dom,
            l = el.scrollLeft, t = el.scrollTop,
            w = el.scrollWidth, h = el.scrollHeight,
            cw = el.clientWidth, ch = el.clientHeight,
            scrolled = false, v,
            hash = {
                l: Math.min(l + distance, w-cw),
                r: v = Math.max(l - distance, 0),
                t: Math.max(t - distance, 0),
                b: Math.min(t + distance, h-ch)
            };
            hash.d = hash.b;
            hash.u = hash.t;
        
        direction = direction.substr(0, 1);
        if ((v = hash[direction]) > -1) {
            scrolled = true;
            this.scrollTo(direction == 'l' || direction == 'r' ? 'left' : 'top', v, this.preanim(arguments, 2));
        }
        return scrolled;
    }
});/**
 * @class Ext.Element
 */
Ext.Element.addMethods(
    function() {
        var VISIBILITY      = "visibility",
            DISPLAY         = "display",
            HIDDEN          = "hidden",
            NONE            = "none",
            XMASKED         = "x-masked",
            XMASKEDRELATIVE = "x-masked-relative",
            data            = Ext.Element.data;

        return {
            /**
             * Checks whether the element is currently visible using both visibility and display properties.
             * @param {Boolean} deep (optional) True to walk the dom and see if parent elements are hidden (defaults to false)
             * @return {Boolean} True if the element is currently visible, else false
             */
            isVisible : function(deep) {
                var vis = !this.isStyle(VISIBILITY, HIDDEN) && !this.isStyle(DISPLAY, NONE),
                    p   = this.dom.parentNode;
                
                if (deep !== true || !vis) {
                    return vis;
                }
                
                while (p && !(/^body/i.test(p.tagName))) {
                    if (!Ext.fly(p, '_isVisible').isVisible()) {
                        return false;
                    }
                    p = p.parentNode;
                }
                return true;
            },

            /**
             * Returns true if display is not "none"
             * @return {Boolean}
             */
            isDisplayed : function() {
                return !this.isStyle(DISPLAY, NONE);
            },

            /**
             * Convenience method for setVisibilityMode(Element.DISPLAY)
             * @param {String} display (optional) What to set display to when visible
             * @return {Ext.Element} this
             */
            enableDisplayMode : function(display) {
                this.setVisibilityMode(Ext.Element.DISPLAY);
                
                if (!Ext.isEmpty(display)) {
                    data(this.dom, 'originalDisplay', display);
                }
                
                return this;
            },

            /**
             * Puts a mask over this element to disable user interaction. Requires core.css.
             * This method can only be applied to elements which accept child nodes.
             * @param {String} msg (optional) A message to display in the mask
             * @param {String} msgCls (optional) A css class to apply to the msg element
             * @return {Element} The mask element
             */
            mask : function(msg, msgCls) {
                var me  = this,
                    dom = me.dom,
                    dh  = Ext.DomHelper,
                    EXTELMASKMSG = "ext-el-mask-msg",
                    el,
                    mask;

                if (!/^body/i.test(dom.tagName) && me.getStyle('position') == 'static') {
                    me.addClass(XMASKEDRELATIVE);
                }
                if (el = data(dom, 'maskMsg')) {
                    el.remove();
                }
                if (el = data(dom, 'mask')) {
                    el.remove();
                }

                mask = dh.append(dom, {cls : "ext-el-mask"}, true);
                data(dom, 'mask', mask);

                me.addClass(XMASKED);
                mask.setDisplayed(true);
                
                if (typeof msg == 'string') {
                    var mm = dh.append(dom, {cls : EXTELMASKMSG, cn:{tag:'div'}}, true);
                    data(dom, 'maskMsg', mm);
                    mm.dom.className = msgCls ? EXTELMASKMSG + " " + msgCls : EXTELMASKMSG;
                    mm.dom.firstChild.innerHTML = msg;
                    mm.setDisplayed(true);
                    mm.center(me);
                }
                
                // ie will not expand full height automatically
                if (Ext.isIE && !(Ext.isIE7 && Ext.isStrict) && me.getStyle('height') == 'auto') {
                    mask.setSize(undefined, me.getHeight());
                }
                
                return mask;
            },

            /**
             * Removes a previously applied mask.
             */
            unmask : function() {
                var me      = this,
                    dom     = me.dom,
                    mask    = data(dom, 'mask'),
                    maskMsg = data(dom, 'maskMsg');

                if (mask) {
                    if (maskMsg) {
                        maskMsg.remove();
                        data(dom, 'maskMsg', undefined);
                    }
                    
                    mask.remove();
                    data(dom, 'mask', undefined);
                    me.removeClass([XMASKED, XMASKEDRELATIVE]);
                }
            },

            /**
             * Returns true if this element is masked
             * @return {Boolean}
             */
            isMasked : function() {
                var m = data(this.dom, 'mask');
                return m && m.isVisible();
            },

            /**
             * Creates an iframe shim for this element to keep selects and other windowed objects from
             * showing through.
             * @return {Ext.Element} The new shim element
             */
            createShim : function() {
                var el = document.createElement('iframe'),
                    shim;
                
                el.frameBorder = '0';
                el.className = 'ext-shim';
                el.src = Ext.SSL_SECURE_URL;
                shim = Ext.get(this.dom.parentNode.insertBefore(el, this.dom));
                shim.autoBoxAdjust = false;
                return shim;
            }
        };
    }()
);/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Convenience method for constructing a KeyMap
     * @param {Number/Array/Object/String} key Either a string with the keys to listen for, the numeric key code, array of key codes or an object with the following options:
     * {key: (number or array), shift: (true/false), ctrl: (true/false), alt: (true/false)}
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope (this reference) in which the specified function is executed. Defaults to this Element.
     * @return {Ext.KeyMap} The KeyMap created
     */
    addKeyListener : function(key, fn, scope){
        var config;
        if(typeof key != 'object' || Ext.isArray(key)){
            config = {
                key: key,
                fn: fn,
                scope: scope
            };
        }else{
            config = {
                key : key.key,
                shift : key.shift,
                ctrl : key.ctrl,
                alt : key.alt,
                fn: fn,
                scope: scope
            };
        }
        return new Ext.KeyMap(this, config);
    },

    /**
     * Creates a KeyMap for this element
     * @param {Object} config The KeyMap config. See {@link Ext.KeyMap} for more details
     * @return {Ext.KeyMap} The KeyMap created
     */
    addKeyMap : function(config){
        return new Ext.KeyMap(this, config);
    }
});

//Import the newly-added Ext.Element functions into CompositeElementLite. We call this here because
//Element.keys.js is the last extra Ext.Element include in the ext-all.js build
Ext.CompositeElementLite.importElementMethods();/**
 * @class Ext.CompositeElementLite
 */
Ext.apply(Ext.CompositeElementLite.prototype, {
    addElements : function(els, root){
        if(!els){
            return this;
        }
        if(typeof els == "string"){
            els = Ext.Element.selectorFunction(els, root);
        }
        var yels = this.elements;
        Ext.each(els, function(e) {
            yels.push(Ext.get(e));
        });
        return this;
    },

    /**
     * Returns the first Element
     * @return {Ext.Element}
     */
    first : function(){
        return this.item(0);
    },

    /**
     * Returns the last Element
     * @return {Ext.Element}
     */
    last : function(){
        return this.item(this.getCount()-1);
    },

    /**
     * Returns true if this composite contains the passed element
     * @param el {Mixed} The id of an element, or an Ext.Element, or an HtmlElement to find within the composite collection.
     * @return Boolean
     */
    contains : function(el){
        return this.indexOf(el) != -1;
    },

    /**
    * Removes the specified element(s).
    * @param {Mixed} el The id of an element, the Element itself, the index of the element in this composite
    * or an array of any of those.
    * @param {Boolean} removeDom (optional) True to also remove the element from the document
    * @return {CompositeElement} this
    */
    removeElement : function(keys, removeDom){
        var me = this,
            els = this.elements,
            el;
        Ext.each(keys, function(val){
            if ((el = (els[val] || els[val = me.indexOf(val)]))) {
                if(removeDom){
                    if(el.dom){
                        el.remove();
                    }else{
                        Ext.removeNode(el);
                    }
                }
                els.splice(val, 1);
            }
        });
        return this;
    }
});
/**
 * @class Ext.CompositeElement
 * @extends Ext.CompositeElementLite
 * 
    This class encapsulates a collection of DOM elements, providing methods to filter
 * members, or to perform collective actions upon the whole set.
    
 * 
    Although they are not listed, this class supports all of the methods of {@link Ext.Element} and
 * {@link Ext.Fx}. The methods from these classes will be performed on all the elements in this collection.
    
 * 
    All methods return this and can be chained.
    
 * Usage:

    
var els = Ext.select("#some-el div.some-class", true);
// or select directly from an existing element
var el = Ext.get('some-el');
el.select('div.some-class', true);

els.setWidth(100); // all elements become 100 width
els.hide(true); // all elements fade out and hide
// or
els.setWidth(100).hide(true);

    
 */
Ext.CompositeElement = Ext.extend(Ext.CompositeElementLite, {

    constructor : function(els, root){
        this.elements = [];
        this.add(els, root);
    },

    // private
    getElement : function(el){
        // In this case just return it, since we already have a reference to it
        return el;
    },

    // private
    transformElement : function(el){
        return Ext.get(el);
    }

    /**
    * Adds elements to this composite.
    * @param {String/Array} els A string CSS selector, an array of elements or an element
    * @return {CompositeElement} this
    * @ignore
    */

    /**
     * Returns the Element object at the specified index
     * @param {Number} index
     * @return {Ext.Element}
     * @ignore
     */

    /**
     * Iterates each element in this composite
     * calling the supplied function using {@link Ext#each}.
     * @param {Function} fn The function to be called with each
     * element. If the supplied function returns false,
     * iteration stops. This function is called with the following arguments:
     * 
      
     * 
    • element : Ext.Element
      The element at the current index
     * in the composite
      • 
     * 
    • composite : Object 
      This composite.
      • 
     * 
    • index : Number 
      The current index within the composite 
      • 
     * 
    
     * @param {Object} scope (optional) The scope ( reference) in which the specified function is executed.
     * Defaults to the element at the current index
     * within the composite.
     * @return {CompositeElement} this
     * @ignore
     */
});

/**
 * Selects elements based on the passed CSS selector to enable {@link Ext.Element Element} methods
 * to be applied to many related elements in one statement through the returned {@link Ext.CompositeElement CompositeElement} or
 * {@link Ext.CompositeElementLite CompositeElementLite} object.
 * @param {String/Array} selector The CSS selector or an array of elements
 * @param {Boolean} unique (optional) true to create a unique Ext.Element for each element (defaults to a shared flyweight object)
 * @param {HTMLElement/String} root (optional) The root element of the query or id of the root
 * @return {CompositeElementLite/CompositeElement}
 * @member Ext.Element
 * @method select
 * @static
 */
Ext.Element.select = function(selector, unique, root){
    var els;
    if(typeof selector == "string"){
        els = Ext.Element.selectorFunction(selector, root);
    }else if(selector.length !== undefined){
        els = selector;
    }else{
        throw "Invalid selector";
    }

    return (unique === true) ? new Ext.CompositeElement(els) : new Ext.CompositeElementLite(els);
};

/**
 * Selects elements based on the passed CSS selector to enable {@link Ext.Element Element} methods
 * to be applied to many related elements in one statement through the returned {@link Ext.CompositeElement CompositeElement} or
 * {@link Ext.CompositeElementLite CompositeElementLite} object.
 * @param {String/Array} selector The CSS selector or an array of elements
 * @param {Boolean} unique (optional) true to create a unique Ext.Element for each element (defaults to a shared flyweight object)
 * @param {HTMLElement/String} root (optional) The root element of the query or id of the root
 * @return {CompositeElementLite/CompositeElement}
 * @member Ext
 * @method select
 */
Ext.select = Ext.Element.select;/**
 * @class Ext.Updater
 * @extends Ext.util.Observable
 * Provides AJAX-style update capabilities for Element objects.  Updater can be used to {@link #update}
 * an {@link Ext.Element} once, or you can use {@link #startAutoRefresh} to set up an auto-updating
 * {@link Ext.Element Element} on a specific interval.

    
 * Usage:
    
 * 
    
 * var el = Ext.get("foo"); // Get Ext.Element object
 * var mgr = el.getUpdater();
 * mgr.update({
        url: "http://myserver.com/index.php",
        params: {
            param1: "foo",
            param2: "bar"
        }
 * });
 * ...
 * mgr.formUpdate("myFormId", "http://myserver.com/index.php");
 * 
    
 * // or directly (returns the same Updater instance)
 * var mgr = new Ext.Updater("myElementId");
 * mgr.startAutoRefresh(60, "http://myserver.com/index.php");
 * mgr.on("update", myFcnNeedsToKnow);
 * 
    
 * // short handed call directly from the element object
 * Ext.get("foo").load({
        url: "bar.php",
        scripts: true,
        params: "param1=foo&param2=bar",
        text: "Loading Foo..."
 * });
 * 
    
 * @constructor
 * Create new Updater directly.
 * @param {Mixed} el The element to update
 * @param {Boolean} forceNew (optional) By default the constructor checks to see if the passed element already
 * has an Updater and if it does it returns the same instance. This will skip that check (useful for extending this class).
 */
Ext.UpdateManager = Ext.Updater = Ext.extend(Ext.util.Observable,
function() {
    var BEFOREUPDATE = "beforeupdate",
        UPDATE = "update",
        FAILURE = "failure";

    // private
    function processSuccess(response){
        var me = this;
        me.transaction = null;
        if (response.argument.form && response.argument.reset) {
            try { // put in try/catch since some older FF releases had problems with this
                response.argument.form.reset();
            } catch(e){}
        }
        if (me.loadScripts) {
            me.renderer.render(me.el, response, me,
               updateComplete.createDelegate(me, [response]));
        } else {
            me.renderer.render(me.el, response, me);
            updateComplete.call(me, response);
        }
    }

    // private
    function updateComplete(response, type, success){
        this.fireEvent(type || UPDATE, this.el, response);
        if(Ext.isFunction(response.argument.callback)){
            response.argument.callback.call(response.argument.scope, this.el, Ext.isEmpty(success) ? true : false, response, response.argument.options);
        }
    }

    // private
    function processFailure(response){
        updateComplete.call(this, response, FAILURE, !!(this.transaction = null));
    }

    return {
        constructor: function(el, forceNew){
            var me = this;
            el = Ext.get(el);
            if(!forceNew && el.updateManager){
                return el.updateManager;
            }
            /**
             * The Element object
             * @type Ext.Element
             */
            me.el = el;
            /**
             * Cached url to use for refreshes. Overwritten every time update() is called unless "discardUrl" param is set to true.
             * @type String
             */
            me.defaultUrl = null;

            me.addEvents(
                /**
                 * @event beforeupdate
                 * Fired before an update is made, return false from your handler and the update is cancelled.
                 * @param {Ext.Element} el
                 * @param {String/Object/Function} url
                 * @param {String/Object} params
                 */
                BEFOREUPDATE,
                /**
                 * @event update
                 * Fired after successful update is made.
                 * @param {Ext.Element} el
                 * @param {Object} oResponseObject The response Object
                 */
                UPDATE,
                /**
                 * @event failure
                 * Fired on update failure.
                 * @param {Ext.Element} el
                 * @param {Object} oResponseObject The response Object
                 */
                FAILURE
            );

            Ext.apply(me, Ext.Updater.defaults);
            /**
             * Blank page URL to use with SSL file uploads (defaults to {@link Ext.Updater.defaults#sslBlankUrl}).
             * @property sslBlankUrl
             * @type String
             */
            /**
             * Whether to append unique parameter on get request to disable caching (defaults to {@link Ext.Updater.defaults#disableCaching}).
             * @property disableCaching
             * @type Boolean
             */
            /**
             * Text for loading indicator (defaults to {@link Ext.Updater.defaults#indicatorText}).
             * @property indicatorText
             * @type String
             */
            /**
             * Whether to show indicatorText when loading (defaults to {@link Ext.Updater.defaults#showLoadIndicator}).
             * @property showLoadIndicator
             * @type String
             */
            /**
             * Timeout for requests or form posts in seconds (defaults to {@link Ext.Updater.defaults#timeout}).
             * @property timeout
             * @type Number
             */
            /**
             * True to process scripts in the output (defaults to {@link Ext.Updater.defaults#loadScripts}).
             * @property loadScripts
             * @type Boolean
             */

            /**
             * Transaction object of the current executing transaction, or null if there is no active transaction.
             */
            me.transaction = null;
            /**
             * Delegate for refresh() prebound to "this", use myUpdater.refreshDelegate.createCallback(arg1, arg2) to bind arguments
             * @type Function
             */
            me.refreshDelegate = me.refresh.createDelegate(me);
            /**
             * Delegate for update() prebound to "this", use myUpdater.updateDelegate.createCallback(arg1, arg2) to bind arguments
             * @type Function
             */
            me.updateDelegate = me.update.createDelegate(me);
            /**
             * Delegate for formUpdate() prebound to "this", use myUpdater.formUpdateDelegate.createCallback(arg1, arg2) to bind arguments
             * @type Function
             */
            me.formUpdateDelegate = (me.formUpdate || function(){}).createDelegate(me);

            /**
             * The renderer for this Updater (defaults to {@link Ext.Updater.BasicRenderer}).
             */
            me.renderer = me.renderer || me.getDefaultRenderer();

            Ext.Updater.superclass.constructor.call(me);
        },

        /**
         * Sets the content renderer for this Updater. See {@link Ext.Updater.BasicRenderer#render} for more details.
         * @param {Object} renderer The object implementing the render() method
         */
        setRenderer : function(renderer){
            this.renderer = renderer;
        },

        /**
         * Returns the current content renderer for this Updater. See {@link Ext.Updater.BasicRenderer#render} for more details.
         * @return {Object}
         */
        getRenderer : function(){
           return this.renderer;
        },

        /**
         * This is an overrideable method which returns a reference to a default
         * renderer class if none is specified when creating the Ext.Updater.
         * Defaults to {@link Ext.Updater.BasicRenderer}
         */
        getDefaultRenderer: function() {
            return new Ext.Updater.BasicRenderer();
        },

        /**
         * Sets the default URL used for updates.
         * @param {String/Function} defaultUrl The url or a function to call to get the url
         */
        setDefaultUrl : function(defaultUrl){
            this.defaultUrl = defaultUrl;
        },

        /**
         * Get the Element this Updater is bound to
         * @return {Ext.Element} The element
         */
        getEl : function(){
            return this.el;
        },

        /**
         * Performs an asynchronous request, updating this element with the response.
         * If params are specified it uses POST, otherwise it uses GET.

    
         * Note: Due to the asynchronous nature of remote server requests, the Element
         * will not have been fully updated when the function returns. To post-process the returned
         * data, use the callback option, or an update event handler.
         * @param {Object} options A config object containing any of the following options:
      
         * 
    • url : String/Function
      The URL to request or a function which
         * returns the URL (defaults to the value of {@link Ext.Ajax#url} if not specified).
      • 
         * 
    • method : String
      The HTTP method to
         * use. Defaults to POST if the params argument is present, otherwise GET.
      • 
         * 
    • params : String/Object/Function
      The
         * parameters to pass to the server (defaults to none). These may be specified as a url-encoded
         * string, or as an object containing properties which represent parameters,
         * or as a function, which returns such an object.
      • 
         * 
    • scripts : Boolean
      If true
         * any <script> tags embedded in the response text will be extracted
         * and executed (defaults to {@link Ext.Updater.defaults#loadScripts}). If this option is specified,
         * the callback will be called after the execution of the scripts.
      • 
         * 
    • callback : Function
      A function to
         * be called when the response from the server arrives. The following
         * parameters are passed:
        
         * 
      • el : Ext.Element
        The Element being updated.
        • 
         * 
      • success : Boolean
        True for success, false for failure.
        • 
         * 
      • response : XMLHttpRequest
        The XMLHttpRequest which processed the update.
        • 
         * 
      • options : Object
        The config object passed to the update call.
      
         * 
      • 
         * 
    • scope : Object
      The scope in which
         * to execute the callback (The callback's this reference.) If the
         * params argument is a function, this scope is used for that function also.
      • 
         * 
    • discardUrl : Boolean
      By default, the URL of this request becomes
         * the default URL for this Updater object, and will be subsequently used in {@link #refresh}
         * calls.  To bypass this behavior, pass discardUrl:true (defaults to false).
      • 
         * 
    • timeout : Number
      The number of seconds to wait for a response before
         * timing out (defaults to {@link Ext.Updater.defaults#timeout}).
      • 
         * 
    • text : String
      The text to use as the innerHTML of the
         * {@link Ext.Updater.defaults#indicatorText} div (defaults to 'Loading...').  To replace the entire div, not
         * just the text, override {@link Ext.Updater.defaults#indicatorText} directly.
      • 
         * 
    • nocache : Boolean
      Only needed for GET
         * requests, this option causes an extra, auto-generated parameter to be appended to the request
         * to defeat caching (defaults to {@link Ext.Updater.defaults#disableCaching}).
    
         * 
    
         * For example:
    
    
    um.update({
        url: "your-url.php",
        params: {param1: "foo", param2: "bar"}, // or a URL encoded string
        callback: yourFunction,
        scope: yourObject, //(optional scope)
        discardUrl: true,
        nocache: true,
        text: "Loading...",
        timeout: 60,
        scripts: false // Save time by avoiding RegExp execution.
    });
    
    
         */
        update : function(url, params, callback, discardUrl){
            var me = this,
                cfg,
                callerScope;

            if(me.fireEvent(BEFOREUPDATE, me.el, url, params) !== false){
                if(Ext.isObject(url)){ // must be config object
                    cfg = url;
                    url = cfg.url;
                    params = params || cfg.params;
                    callback = callback || cfg.callback;
                    discardUrl = discardUrl || cfg.discardUrl;
                    callerScope = cfg.scope;
                    if(!Ext.isEmpty(cfg.nocache)){me.disableCaching = cfg.nocache;};
                    if(!Ext.isEmpty(cfg.text)){me.indicatorText = '
    '+cfg.text+"
    ";};
                    if(!Ext.isEmpty(cfg.scripts)){me.loadScripts = cfg.scripts;};
                    if(!Ext.isEmpty(cfg.timeout)){me.timeout = cfg.timeout;};
                }
                me.showLoading();

                if(!discardUrl){
                    me.defaultUrl = url;
                }
                if(Ext.isFunction(url)){
                    url = url.call(me);
                }

                var o = Ext.apply({}, {
                    url : url,
                    params: (Ext.isFunction(params) && callerScope) ? params.createDelegate(callerScope) : params,
                    success: processSuccess,
                    failure: processFailure,
                    scope: me,
                    callback: undefined,
                    timeout: (me.timeout*1000),
                    disableCaching: me.disableCaching,
                    argument: {
                        "options": cfg,
                        "url": url,
                        "form": null,
                        "callback": callback,
                        "scope": callerScope || window,
                        "params": params
                    }
                }, cfg);

                me.transaction = Ext.Ajax.request(o);
            }
        },

        /**
         * 
    Performs an asynchronous form post, updating this element with the response. If the form has the attribute
         * enctype="multipart/form-data", it assumes it's a file upload.
         * Uses this.sslBlankUrl for SSL file uploads to prevent IE security warning.
    
         * 
    File uploads are not performed using normal "Ajax" techniques, that is they are not
         * performed using XMLHttpRequests. Instead the form is submitted in the standard manner with the
         * DOM <form> element temporarily modified to have its
         * target set to refer
         * to a dynamically generated, hidden <iframe> which is inserted into the document
         * but removed after the return data has been gathered.
    
         * 
    Be aware that file upload packets, sent with the content type multipart/form-data
         * and some server technologies (notably JEE) may require some custom processing in order to
         * retrieve parameter names and parameter values from the packet content.
    
         * @param {String/HTMLElement} form The form Id or form element
         * @param {String} url (optional) The url to pass the form to. If omitted the action attribute on the form will be used.
         * @param {Boolean} reset (optional) Whether to try to reset the form after the update
         * @param {Function} callback (optional) Callback when transaction is complete. The following
         * parameters are passed:
      
         * 
    • el : Ext.Element
      The Element being updated.
      • 
         * 
    • success : Boolean
      True for success, false for failure.
      • 
         * 
    • response : XMLHttpRequest
      The XMLHttpRequest which processed the update.
    
         */
        formUpdate : function(form, url, reset, callback){
            var me = this;
            if(me.fireEvent(BEFOREUPDATE, me.el, form, url) !== false){
                if(Ext.isFunction(url)){
                    url = url.call(me);
                }
                form = Ext.getDom(form);
                me.transaction = Ext.Ajax.request({
                    form: form,
                    url:url,
                    success: processSuccess,
                    failure: processFailure,
                    scope: me,
                    timeout: (me.timeout*1000),
                    argument: {
                        "url": url,
                        "form": form,
                        "callback": callback,
                        "reset": reset
                    }
                });
                me.showLoading.defer(1, me);
            }
        },

        /**
         * Set this element to auto refresh.  Can be canceled by calling {@link #stopAutoRefresh}.
         * @param {Number} interval How often to update (in seconds).
         * @param {String/Object/Function} url (optional) The url for this request, a config object in the same format
         * supported by {@link #load}, or a function to call to get the url (defaults to the last used url).  Note that while
         * the url used in a load call can be reused by this method, other load config options will not be reused and must be
         * sepcified as part of a config object passed as this paramter if needed.
         * @param {String/Object} params (optional) The parameters to pass as either a url encoded string
         * "¶m1=1¶m2=2" or as an object {param1: 1, param2: 2}
         * @param {Function} callback (optional) Callback when transaction is complete - called with signature (oElement, bSuccess)
         * @param {Boolean} refreshNow (optional) Whether to execute the refresh now, or wait the interval
         */
        startAutoRefresh : function(interval, url, params, callback, refreshNow){
            var me = this;
            if(refreshNow){
                me.update(url || me.defaultUrl, params, callback, true);
            }
            if(me.autoRefreshProcId){
                clearInterval(me.autoRefreshProcId);
            }
            me.autoRefreshProcId = setInterval(me.update.createDelegate(me, [url || me.defaultUrl, params, callback, true]), interval * 1000);
        },

        /**
         * Stop auto refresh on this element.
         */
        stopAutoRefresh : function(){
            if(this.autoRefreshProcId){
                clearInterval(this.autoRefreshProcId);
                delete this.autoRefreshProcId;
            }
        },

        /**
         * Returns true if the Updater is currently set to auto refresh its content (see {@link #startAutoRefresh}), otherwise false.
         */
        isAutoRefreshing : function(){
           return !!this.autoRefreshProcId;
        },

        /**
         * Display the element's "loading" state. By default, the element is updated with {@link #indicatorText}. This
         * method may be overridden to perform a custom action while this Updater is actively updating its contents.
         */
        showLoading : function(){
            if(this.showLoadIndicator){
                this.el.dom.innerHTML = this.indicatorText;
            }
        },

        /**
         * Aborts the currently executing transaction, if any.
         */
        abort : function(){
            if(this.transaction){
                Ext.Ajax.abort(this.transaction);
            }
        },

        /**
         * Returns true if an update is in progress, otherwise false.
         * @return {Boolean}
         */
        isUpdating : function(){
            return this.transaction ? Ext.Ajax.isLoading(this.transaction) : false;
        },

        /**
         * Refresh the element with the last used url or defaultUrl. If there is no url, it returns immediately
         * @param {Function} callback (optional) Callback when transaction is complete - called with signature (oElement, bSuccess)
         */
        refresh : function(callback){
            if(this.defaultUrl){
                this.update(this.defaultUrl, null, callback, true);
            }
        }
    };
}());

/**
 * @class Ext.Updater.defaults
 * The defaults collection enables customizing the default properties of Updater
 */
Ext.Updater.defaults = {
   /**
     * Timeout for requests or form posts in seconds (defaults to 30 seconds).
     * @type Number
     */
    timeout : 30,
    /**
     * True to append a unique parameter to GET requests to disable caching (defaults to false).
     * @type Boolean
     */
    disableCaching : false,
    /**
     * Whether or not to show {@link #indicatorText} during loading (defaults to true).
     * @type Boolean
     */
    showLoadIndicator : true,
    /**
     * Text for loading indicator (defaults to '<div class="loading-indicator">Loading...</div>').
     * @type String
     */
    indicatorText : '
    Loading...
    ',
     /**
     * True to process scripts by default (defaults to false).
     * @type Boolean
     */
    loadScripts : false,
    /**
    * Blank page URL to use with SSL file uploads (defaults to {@link Ext#SSL_SECURE_URL} if set, or "javascript:false").
    * @type String
    */
    sslBlankUrl : Ext.SSL_SECURE_URL
};


/**
 * Static convenience method. This method is deprecated in favor of el.load({url:'foo.php', ...}).
 * Usage:
 * 
    Ext.Updater.updateElement("my-div", "stuff.php");
    
 * @param {Mixed} el The element to update
 * @param {String} url The url
 * @param {String/Object} params (optional) Url encoded param string or an object of name/value pairs
 * @param {Object} options (optional) A config object with any of the Updater properties you want to set - for
 * example: {disableCaching:true, indicatorText: "Loading data..."}
 * @static
 * @deprecated
 * @member Ext.Updater
 */
Ext.Updater.updateElement = function(el, url, params, options){
    var um = Ext.get(el).getUpdater();
    Ext.apply(um, options);
    um.update(url, params, options ? options.callback : null);
};

/**
 * @class Ext.Updater.BasicRenderer
 * 
    This class is a base class implementing a simple render method which updates an element using results from an Ajax request.
    
 * 
    The BasicRenderer updates the element's innerHTML with the responseText. To perform a custom render (i.e. XML or JSON processing),
 * create an object with a conforming {@link #render} method and pass it to setRenderer on the Updater.
    
 */
Ext.Updater.BasicRenderer = function(){};

Ext.Updater.BasicRenderer.prototype = {
    /**
     * This method is called when an Ajax response is received, and an Element needs updating.
     * @param {Ext.Element} el The element being rendered
     * @param {Object} xhr The XMLHttpRequest object
     * @param {Updater} updateManager The calling update manager
     * @param {Function} callback A callback that will need to be called if loadScripts is true on the Updater
     */
     render : function(el, response, updateManager, callback){
        el.update(response.responseText, updateManager.loadScripts, callback);
    }
};/**
 * @class Date
 *
 * The date parsing and formatting syntax contains a subset of
 * PHP's date() function, and the formats that are
 * supported will provide results equivalent to their PHP versions.
 *
 * The following is a list of all currently supported formats:
 * 
    Format  Description                                                               Example returned values
------  -----------------------------------------------------------------------   -----------------------
  d     Day of the month, 2 digits with leading zeros                             01 to 31
  D     A short textual representation of the day of the week                     Mon to Sun
  j     Day of the month without leading zeros                                    1 to 31
  l     A full textual representation of the day of the week                      Sunday to Saturday
  N     ISO-8601 numeric representation of the day of the week                    1 (for Monday) through 7 (for Sunday)
  S     English ordinal suffix for the day of the month, 2 characters             st, nd, rd or th. Works well with j
  w     Numeric representation of the day of the week                             0 (for Sunday) to 6 (for Saturday)
  z     The day of the year (starting from 0)                                     0 to 364 (365 in leap years)
  W     ISO-8601 week number of year, weeks starting on Monday                    01 to 53
  F     A full textual representation of a month, such as January or March        January to December
  m     Numeric representation of a month, with leading zeros                     01 to 12
  M     A short textual representation of a month                                 Jan to Dec
  n     Numeric representation of a month, without leading zeros                  1 to 12
  t     Number of days in the given month                                         28 to 31
  L     Whether it's a leap year                                                  1 if it is a leap year, 0 otherwise.
  o     ISO-8601 year number (identical to (Y), but if the ISO week number (W)    Examples: 1998 or 2004
        belongs to the previous or next year, that year is used instead)
  Y     A full numeric representation of a year, 4 digits                         Examples: 1999 or 2003
  y     A two digit representation of a year                                      Examples: 99 or 03
  a     Lowercase Ante meridiem and Post meridiem                                 am or pm
  A     Uppercase Ante meridiem and Post meridiem                                 AM or PM
  g     12-hour format of an hour without leading zeros                           1 to 12
  G     24-hour format of an hour without leading zeros                           0 to 23
  h     12-hour format of an hour with leading zeros                              01 to 12
  H     24-hour format of an hour with leading zeros                              00 to 23
  i     Minutes, with leading zeros                                               00 to 59
  s     Seconds, with leading zeros                                               00 to 59
  u     Decimal fraction of a second                                              Examples:
        (minimum 1 digit, arbitrary number of digits allowed)                     001 (i.e. 0.001s) or
                                                                                  100 (i.e. 0.100s) or
                                                                                  999 (i.e. 0.999s) or
                                                                                  999876543210 (i.e. 0.999876543210s)
  O     Difference to Greenwich time (GMT) in hours and minutes                   Example: +1030
  P     Difference to Greenwich time (GMT) with colon between hours and minutes   Example: -08:00
  T     Timezone abbreviation of the machine running the code                     Examples: EST, MDT, PDT ...
  Z     Timezone offset in seconds (negative if west of UTC, positive if east)    -43200 to 50400
  c     ISO 8601 date
        Notes:                                                                    Examples:
        1) If unspecified, the month / day defaults to the current month / day,   1991 or
           the time defaults to midnight, while the timezone defaults to the      1992-10 or
           browser's timezone. If a time is specified, it must include both hours 1993-09-20 or
           and minutes. The "T" delimiter, seconds, milliseconds and timezone     1994-08-19T16:20+01:00 or
           are optional.                                                          1995-07-18T17:21:28-02:00 or
        2) The decimal fraction of a second, if specified, must contain at        1996-06-17T18:22:29.98765+03:00 or
           least 1 digit (there is no limit to the maximum number                 1997-05-16T19:23:30,12345-0400 or
           of digits allowed), and may be delimited by either a '.' or a ','      1998-04-15T20:24:31.2468Z or
        Refer to the examples on the right for the various levels of              1999-03-14T20:24:32Z or
        date-time granularity which are supported, or see                         2000-02-13T21:25:33
        http://www.w3.org/TR/NOTE-datetime for more info.                         2001-01-12 22:26:34
  U     Seconds since the Unix Epoch (January 1 1970 00:00:00 GMT)                1193432466 or -2138434463
  M$    Microsoft AJAX serialized dates                                           \/Date(1238606590509)\/ (i.e. UTC milliseconds since epoch) or
                                                                                  \/Date(1238606590509+0800)\/

    
 *
 * Example usage (note that you must escape format specifiers with '\\' to render them as character literals):
 * 
    
// Sample date:
// 'Wed Jan 10 2007 15:05:01 GMT-0600 (Central Standard Time)'

var dt = new Date('1/10/2007 03:05:01 PM GMT-0600');
document.write(dt.format('Y-m-d'));                           // 2007-01-10
document.write(dt.format('F j, Y, g:i a'));                   // January 10, 2007, 3:05 pm
document.write(dt.format('l, \\t\\he jS \\of F Y h:i:s A'));  // Wednesday, the 10th of January 2007 03:05:01 PM

    
 *
 * Here are some standard date/time patterns that you might find helpful.  They
 * are not part of the source of Date.js, but to use them you can simply copy this
 * block of code into any script that is included after Date.js and they will also become
 * globally available on the Date object.  Feel free to add or remove patterns as needed in your code.
 * 
    
Date.patterns = {
    ISO8601Long:"Y-m-d H:i:s",
    ISO8601Short:"Y-m-d",
    ShortDate: "n/j/Y",
    LongDate: "l, F d, Y",
    FullDateTime: "l, F d, Y g:i:s A",
    MonthDay: "F d",
    ShortTime: "g:i A",
    LongTime: "g:i:s A",
    SortableDateTime: "Y-m-d\\TH:i:s",
    UniversalSortableDateTime: "Y-m-d H:i:sO",
    YearMonth: "F, Y"
};

    
 *
 * Example usage:
 * 
    
var dt = new Date();
document.write(dt.format(Date.patterns.ShortDate));

    
 * 
    Developer-written, custom formats may be used by supplying both a formatting and a parsing function
 * which perform to specialized requirements. The functions are stored in {@link #parseFunctions} and {@link #formatFunctions}.
    
 */

/*
 * Most of the date-formatting functions below are the excellent work of Baron Schwartz.
 * (see http://www.xaprb.com/blog/2005/12/12/javascript-closures-for-runtime-efficiency/)
 * They generate precompiled functions from format patterns instead of parsing and
 * processing each pattern every time a date is formatted. These functions are available
 * on every Date object.
 */

(function() {

/**
 * Global flag which determines if strict date parsing should be used.
 * Strict date parsing will not roll-over invalid dates, which is the
 * default behaviour of javascript Date objects.
 * (see {@link #parseDate} for more information)
 * Defaults to false.
 * @static
 * @type Boolean
*/
Date.useStrict = false;


// create private copy of Ext's String.format() method
// - to remove unnecessary dependency
// - to resolve namespace conflict with M$-Ajax's implementation
function xf(format) {
    var args = Array.prototype.slice.call(arguments, 1);
    return format.replace(/\{(\d+)\}/g, function(m, i) {
        return args[i];
    });
}


// private
Date.formatCodeToRegex = function(character, currentGroup) {
    // Note: currentGroup - position in regex result array (see notes for Date.parseCodes below)
    var p = Date.parseCodes[character];

    if (p) {
      p = typeof p == 'function'? p() : p;
      Date.parseCodes[character] = p; // reassign function result to prevent repeated execution
    }

    return p ? Ext.applyIf({
      c: p.c ? xf(p.c, currentGroup || "{0}") : p.c
    }, p) : {
        g:0,
        c:null,
        s:Ext.escapeRe(character) // treat unrecognised characters as literals
    };
};

// private shorthand for Date.formatCodeToRegex since we'll be using it fairly often
var $f = Date.formatCodeToRegex;

Ext.apply(Date, {
    /**
     * 
    An object hash in which each property is a date parsing function. The property name is the
     * format string which that function parses.
    
     * 
    This object is automatically populated with date parsing functions as
     * date formats are requested for Ext standard formatting strings.
    
     * 
    Custom parsing functions may be inserted into this object, keyed by a name which from then on
     * may be used as a format string to {@link #parseDate}.
    
     * 
    Example:
    
Date.parseFunctions['x-date-format'] = myDateParser;

    
     * 
    A parsing function should return a Date object, and is passed the following parameters:
      
     * 
    • date : String
      The date string to parse.
      • 
     * 
    • strict : Boolean
      True to validate date strings while parsing
     * (i.e. prevent javascript Date "rollover") (The default must be false).
     * Invalid date strings should return null when parsed.
      • 
     * 
    
     * 
    To enable Dates to also be formatted according to that format, a corresponding
     * formatting function must be placed into the {@link #formatFunctions} property.
     * @property parseFunctions
     * @static
     * @type Object
     */
    parseFunctions: {
        "M$": function(input, strict) {
            // note: the timezone offset is ignored since the M$ Ajax server sends
            // a UTC milliseconds-since-Unix-epoch value (negative values are allowed)
            var re = new RegExp('\\/Date\\(([-+])?(\\d+)(?:[+-]\\d{4})?\\)\\/');
            var r = (input || '').match(re);
            return r? new Date(((r[1] || '') + r[2]) * 1) : null;
        }
    },
    parseRegexes: [],

    /**
     * 
    An object hash in which each property is a date formatting function. The property name is the
     * format string which corresponds to the produced formatted date string.
    
     * 
    This object is automatically populated with date formatting functions as
     * date formats are requested for Ext standard formatting strings.
    
     * 
    Custom formatting functions may be inserted into this object, keyed by a name which from then on
     * may be used as a format string to {@link #format}. Example:
    
Date.formatFunctions['x-date-format'] = myDateFormatter;

    
     * 
    A formatting function should return a string representation of the passed Date object, and is passed the following parameters:
      
     * 
    • date : Date
      The Date to format.
      • 
     * 
    
     * 
    To enable date strings to also be parsed according to that format, a corresponding
     * parsing function must be placed into the {@link #parseFunctions} property.
     * @property formatFunctions
     * @static
     * @type Object
     */
    formatFunctions: {
        "M$": function() {
            // UTC milliseconds since Unix epoch (M$-AJAX serialized date format (MRSF))
            return '\\/Date(' + this.getTime() + ')\\/';
        }
    },

    y2kYear : 50,

    /**
     * Date interval constant
     * @static
     * @type String
     */
    MILLI : "ms",

    /**
     * Date interval constant
     * @static
     * @type String
     */
    SECOND : "s",

    /**
     * Date interval constant
     * @static
     * @type String
     */
    MINUTE : "mi",

    /** Date interval constant
     * @static
     * @type String
     */
    HOUR : "h",

    /**
     * Date interval constant
     * @static
     * @type String
     */
    DAY : "d",

    /**
     * Date interval constant
     * @static
     * @type String
     */
    MONTH : "mo",

    /**
     * Date interval constant
     * @static
     * @type String
     */
    YEAR : "y",

    /**
     * 
    An object hash containing default date values used during date parsing.
    
     * 
    The following properties are available:
      
     * 
    • y : Number
      The default year value. (defaults to undefined)
      • 
     * 
    • m : Number
      The default 1-based month value. (defaults to undefined)
      • 
     * 
    • d : Number
      The default day value. (defaults to undefined)
      • 
     * 
    • h : Number
      The default hour value. (defaults to undefined)
      • 
     * 
    • i : Number
      The default minute value. (defaults to undefined)
      • 
     * 
    • s : Number
      The default second value. (defaults to undefined)
      • 
     * 
    • ms : Number
      The default millisecond value. (defaults to undefined)
      • 
     * 
    
     * 
    Override these properties to customize the default date values used by the {@link #parseDate} method.
    
     * 
    Note: In countries which experience Daylight Saving Time (i.e. DST), the h, i, s
     * and ms properties may coincide with the exact time in which DST takes effect.
     * It is the responsiblity of the developer to account for this.
    
     * Example Usage:
     * 
    
// set default day value to the first day of the month
Date.defaults.d = 1;

// parse a February date string containing only year and month values.
// setting the default day value to 1 prevents weird date rollover issues
// when attempting to parse the following date string on, for example, March 31st 2009.
Date.parseDate('2009-02', 'Y-m'); // returns a Date object representing February 1st 2009

    
     * @property defaults
     * @static
     * @type Object
     */
    defaults: {},

    /**
     * An array of textual day names.
     * Override these values for international dates.
     * Example:
     * 
    
Date.dayNames = [
    'SundayInYourLang',
    'MondayInYourLang',
    ...
];

    
     * @type Array
     * @static
     */
    dayNames : [
        "Sunday",
        "Monday",
        "Tuesday",
        "Wednesday",
        "Thursday",
        "Friday",
        "Saturday"
    ],

    /**
     * An array of textual month names.
     * Override these values for international dates.
     * Example:
     * 
    
Date.monthNames = [
    'JanInYourLang',
    'FebInYourLang',
    ...
];

    
     * @type Array
     * @static
     */
    monthNames : [
        "January",
        "February",
        "March",
        "April",
        "May",
        "June",
        "July",
        "August",
        "September",
        "October",
        "November",
        "December"
    ],

    /**
     * An object hash of zero-based javascript month numbers (with short month names as keys. note: keys are case-sensitive).
     * Override these values for international dates.
     * Example:
     * 
    
Date.monthNumbers = {
    'ShortJanNameInYourLang':0,
    'ShortFebNameInYourLang':1,
    ...
};

    
     * @type Object
     * @static
     */
    monthNumbers : {
        Jan:0,
        Feb:1,
        Mar:2,
        Apr:3,
        May:4,
        Jun:5,
        Jul:6,
        Aug:7,
        Sep:8,
        Oct:9,
        Nov:10,
        Dec:11
    },

    /**
     * Get the short month name for the given month number.
     * Override this function for international dates.
     * @param {Number} month A zero-based javascript month number.
     * @return {String} The short month name.
     * @static
     */
    getShortMonthName : function(month) {
        return Date.monthNames[month].substring(0, 3);
    },

    /**
     * Get the short day name for the given day number.
     * Override this function for international dates.
     * @param {Number} day A zero-based javascript day number.
     * @return {String} The short day name.
     * @static
     */
    getShortDayName : function(day) {
        return Date.dayNames[day].substring(0, 3);
    },

    /**
     * Get the zero-based javascript month number for the given short/full month name.
     * Override this function for international dates.
     * @param {String} name The short/full month name.
     * @return {Number} The zero-based javascript month number.
     * @static
     */
    getMonthNumber : function(name) {
        // handle camel casing for english month names (since the keys for the Date.monthNumbers hash are case sensitive)
        return Date.monthNumbers[name.substring(0, 1).toUpperCase() + name.substring(1, 3).toLowerCase()];
    },
    
    /**
     * Checks if the specified format contains hour information
     * @param {Object} format The format to check
     * @return {Boolean} True if the format contains hour information
     * @static
     */
    formatContainsHourInfo : (function(){
        var stripEscapeRe = /(\\.)/g,
            hourInfoRe = /([gGhHisucUOPZ]|M\$)/;
        return function(format){
            return hourInfoRe.test(format.replace(stripEscapeRe, ''));
        };
    })(),

    /**
     * The base format-code to formatting-function hashmap used by the {@link #format} method.
     * Formatting functions are strings (or functions which return strings) which
     * will return the appropriate value when evaluated in the context of the Date object
     * from which the {@link #format} method is called.
     * Add to / override these mappings for custom date formatting.
     * Note: Date.format() treats characters as literals if an appropriate mapping cannot be found.
     * Example:
     * 
    
Date.formatCodes.x = "String.leftPad(this.getDate(), 2, '0')";
(new Date()).format("X"); // returns the current day of the month

    
     * @type Object
     * @static
     */
    formatCodes : {
        d: "String.leftPad(this.getDate(), 2, '0')",
        D: "Date.getShortDayName(this.getDay())", // get localised short day name
        j: "this.getDate()",
        l: "Date.dayNames[this.getDay()]",
        N: "(this.getDay() ? this.getDay() : 7)",
        S: "this.getSuffix()",
        w: "this.getDay()",
        z: "this.getDayOfYear()",
        W: "String.leftPad(this.getWeekOfYear(), 2, '0')",
        F: "Date.monthNames[this.getMonth()]",
        m: "String.leftPad(this.getMonth() + 1, 2, '0')",
        M: "Date.getShortMonthName(this.getMonth())", // get localised short month name
        n: "(this.getMonth() + 1)",
        t: "this.getDaysInMonth()",
        L: "(this.isLeapYear() ? 1 : 0)",
        o: "(this.getFullYear() + (this.getWeekOfYear() == 1 && this.getMonth() > 0 ? +1 : (this.getWeekOfYear() >= 52 && this.getMonth() < 11 ? -1 : 0)))",
        Y: "String.leftPad(this.getFullYear(), 4, '0')",
        y: "('' + this.getFullYear()).substring(2, 4)",
        a: "(this.getHours() < 12 ? 'am' : 'pm')",
        A: "(this.getHours() < 12 ? 'AM' : 'PM')",
        g: "((this.getHours() % 12) ? this.getHours() % 12 : 12)",
        G: "this.getHours()",
        h: "String.leftPad((this.getHours() % 12) ? this.getHours() % 12 : 12, 2, '0')",
        H: "String.leftPad(this.getHours(), 2, '0')",
        i: "String.leftPad(this.getMinutes(), 2, '0')",
        s: "String.leftPad(this.getSeconds(), 2, '0')",
        u: "String.leftPad(this.getMilliseconds(), 3, '0')",
        O: "this.getGMTOffset()",
        P: "this.getGMTOffset(true)",
        T: "this.getTimezone()",
        Z: "(this.getTimezoneOffset() * -60)",

        c: function() { // ISO-8601 -- GMT format
            for (var c = "Y-m-dTH:i:sP", code = [], i = 0, l = c.length; i < l; ++i) {
                var e = c.charAt(i);
                code.push(e == "T" ? "'T'" : Date.getFormatCode(e)); // treat T as a character literal
            }
            return code.join(" + ");
        },
        /*
        c: function() { // ISO-8601 -- UTC format
            return [
              "this.getUTCFullYear()", "'-'",
              "String.leftPad(this.getUTCMonth() + 1, 2, '0')", "'-'",
              "String.leftPad(this.getUTCDate(), 2, '0')",
              "'T'",
              "String.leftPad(this.getUTCHours(), 2, '0')", "':'",
              "String.leftPad(this.getUTCMinutes(), 2, '0')", "':'",
              "String.leftPad(this.getUTCSeconds(), 2, '0')",
              "'Z'"
            ].join(" + ");
        },
        */

        U: "Math.round(this.getTime() / 1000)"
    },

    /**
     * Checks if the passed Date parameters will cause a javascript Date "rollover".
     * @param {Number} year 4-digit year
     * @param {Number} month 1-based month-of-year
     * @param {Number} day Day of month
     * @param {Number} hour (optional) Hour
     * @param {Number} minute (optional) Minute
     * @param {Number} second (optional) Second
     * @param {Number} millisecond (optional) Millisecond
     * @return {Boolean} true if the passed parameters do not cause a Date "rollover", false otherwise.
     * @static
     */
    isValid : function(y, m, d, h, i, s, ms) {
        // setup defaults
        h = h || 0;
        i = i || 0;
        s = s || 0;
        ms = ms || 0;

        // Special handling for year < 100
        var dt = new Date(y < 100 ? 100 : y, m - 1, d, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);

        return y == dt.getFullYear() &&
            m == dt.getMonth() + 1 &&
            d == dt.getDate() &&
            h == dt.getHours() &&
            i == dt.getMinutes() &&
            s == dt.getSeconds() &&
            ms == dt.getMilliseconds();
    },

    /**
     * Parses the passed string using the specified date format.
     * Note that this function expects normal calendar dates, meaning that months are 1-based (i.e. 1 = January).
     * The {@link #defaults} hash will be used for any date value (i.e. year, month, day, hour, minute, second or millisecond)
     * which cannot be found in the passed string. If a corresponding default date value has not been specified in the {@link #defaults} hash,
     * the current date's year, month, day or DST-adjusted zero-hour time value will be used instead.
     * Keep in mind that the input date string must precisely match the specified format string
     * in order for the parse operation to be successful (failed parse operations return a null value).
     * 
    Example:
    
//dt = Fri May 25 2007 (current date)
var dt = new Date();

//dt = Thu May 25 2006 (today's month/day in 2006)
dt = Date.parseDate("2006", "Y");

//dt = Sun Jan 15 2006 (all date parts specified)
dt = Date.parseDate("2006-01-15", "Y-m-d");

//dt = Sun Jan 15 2006 15:20:01
dt = Date.parseDate("2006-01-15 3:20:01 PM", "Y-m-d g:i:s A");

// attempt to parse Sun Feb 29 2006 03:20:01 in strict mode
dt = Date.parseDate("2006-02-29 03:20:01", "Y-m-d H:i:s", true); // returns null

    
     * @param {String} input The raw date string.
     * @param {String} format The expected date string format.
     * @param {Boolean} strict (optional) True to validate date strings while parsing (i.e. prevents javascript Date "rollover")
                        (defaults to false). Invalid date strings will return null when parsed.
     * @return {Date} The parsed Date.
     * @static
     */
    parseDate : function(input, format, strict) {
        var p = Date.parseFunctions;
        if (p[format] == null) {
            Date.createParser(format);
        }
        return p[format](input, Ext.isDefined(strict) ? strict : Date.useStrict);
    },

    // private
    getFormatCode : function(character) {
        var f = Date.formatCodes[character];

        if (f) {
          f = typeof f == 'function'? f() : f;
          Date.formatCodes[character] = f; // reassign function result to prevent repeated execution
        }

        // note: unknown characters are treated as literals
        return f || ("'" + String.escape(character) + "'");
    },

    // private
    createFormat : function(format) {
        var code = [],
            special = false,
            ch = '';

        for (var i = 0; i < format.length; ++i) {
            ch = format.charAt(i);
            if (!special && ch == "\\") {
                special = true;
            } else if (special) {
                special = false;
                code.push("'" + String.escape(ch) + "'");
            } else {
                code.push(Date.getFormatCode(ch));
            }
        }
        Date.formatFunctions[format] = new Function("return " + code.join('+'));
    },

    // private
    createParser : function() {
        var code = [
            "var dt, y, m, d, h, i, s, ms, o, z, zz, u, v,",
                "def = Date.defaults,",
                "results = String(input).match(Date.parseRegexes[{0}]);", // either null, or an array of matched strings

            "if(results){",
                "{1}",

                "if(u != null){", // i.e. unix time is defined
                    "v = new Date(u * 1000);", // give top priority to UNIX time
                "}else{",
                    // create Date object representing midnight of the current day;
                    // this will provide us with our date defaults
                    // (note: clearTime() handles Daylight Saving Time automatically)
                    "dt = (new Date()).clearTime();",

                    // date calculations (note: these calculations create a dependency on Ext.num())
                    "y = Ext.num(y, Ext.num(def.y, dt.getFullYear()));",
                    "m = Ext.num(m, Ext.num(def.m - 1, dt.getMonth()));",
                    "d = Ext.num(d, Ext.num(def.d, dt.getDate()));",

                    // time calculations (note: these calculations create a dependency on Ext.num())
                    "h  = Ext.num(h, Ext.num(def.h, dt.getHours()));",
                    "i  = Ext.num(i, Ext.num(def.i, dt.getMinutes()));",
                    "s  = Ext.num(s, Ext.num(def.s, dt.getSeconds()));",
                    "ms = Ext.num(ms, Ext.num(def.ms, dt.getMilliseconds()));",

                    "if(z >= 0 && y >= 0){",
                        // both the year and zero-based day of year are defined and >= 0.
                        // these 2 values alone provide sufficient info to create a full date object

                        // create Date object representing January 1st for the given year
                        // handle years < 100 appropriately
                        "v = new Date(y < 100 ? 100 : y, 0, 1, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);",

                        // then add day of year, checking for Date "rollover" if necessary
                        "v = !strict? v : (strict === true && (z <= 364 || (v.isLeapYear() && z <= 365))? v.add(Date.DAY, z) : null);",
                    "}else if(strict === true && !Date.isValid(y, m + 1, d, h, i, s, ms)){", // check for Date "rollover"
                        "v = null;", // invalid date, so return null
                    "}else{",
                        // plain old Date object
                        // handle years < 100 properly
                        "v = new Date(y < 100 ? 100 : y, m, d, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);",
                    "}",
                "}",
            "}",

            "if(v){",
                // favour UTC offset over GMT offset
                "if(zz != null){",
                    // reset to UTC, then add offset
                    "v = v.add(Date.SECOND, -v.getTimezoneOffset() * 60 - zz);",
                "}else if(o){",
                    // reset to GMT, then add offset
                    "v = v.add(Date.MINUTE, -v.getTimezoneOffset() + (sn == '+'? -1 : 1) * (hr * 60 + mn));",
                "}",
            "}",

            "return v;"
        ].join('\n');

        return function(format) {
            var regexNum = Date.parseRegexes.length,
                currentGroup = 1,
                calc = [],
                regex = [],
                special = false,
                ch = "",
                i = 0,
                obj,
                last;

            for (; i < format.length; ++i) {
                ch = format.charAt(i);
                if (!special && ch == "\\") {
                    special = true;
                } else if (special) {
                    special = false;
                    regex.push(String.escape(ch));
                } else {
                    obj = $f(ch, currentGroup);
                    currentGroup += obj.g;
                    regex.push(obj.s);
                    if (obj.g && obj.c) {
                        if (obj.calcLast) {
                            last = obj.c;
                        } else {
                            calc.push(obj.c);
                        }
                    }
                }
            }
            
            if (last) {
                calc.push(last);
            }

            Date.parseRegexes[regexNum] = new RegExp("^" + regex.join('') + "$", 'i');
            Date.parseFunctions[format] = new Function("input", "strict", xf(code, regexNum, calc.join('')));
        };
    }(),

    // private
    parseCodes : {
        /*
         * Notes:
         * g = {Number} calculation group (0 or 1. only group 1 contributes to date calculations.)
         * c = {String} calculation method (required for group 1. null for group 0. {0} = currentGroup - position in regex result array)
         * s = {String} regex pattern. all matches are stored in results[], and are accessible by the calculation mapped to 'c'
         */
        d: {
            g:1,
            c:"d = parseInt(results[{0}], 10);\n",
            s:"(\\d{2})" // day of month with leading zeroes (01 - 31)
        },
        j: {
            g:1,
            c:"d = parseInt(results[{0}], 10);\n",
            s:"(\\d{1,2})" // day of month without leading zeroes (1 - 31)
        },
        D: function() {
            for (var a = [], i = 0; i < 7; a.push(Date.getShortDayName(i)), ++i); // get localised short day names
            return {
                g:0,
                c:null,
                s:"(?:" + a.join("|") +")"
            };
        },
        l: function() {
            return {
                g:0,
                c:null,
                s:"(?:" + Date.dayNames.join("|") + ")"
            };
        },
        N: {
            g:0,
            c:null,
            s:"[1-7]" // ISO-8601 day number (1 (monday) - 7 (sunday))
        },
        S: {
            g:0,
            c:null,
            s:"(?:st|nd|rd|th)"
        },
        w: {
            g:0,
            c:null,
            s:"[0-6]" // javascript day number (0 (sunday) - 6 (saturday))
        },
        z: {
            g:1,
            c:"z = parseInt(results[{0}], 10);\n",
            s:"(\\d{1,3})" // day of the year (0 - 364 (365 in leap years))
        },
        W: {
            g:0,
            c:null,
            s:"(?:\\d{2})" // ISO-8601 week number (with leading zero)
        },
        F: function() {
            return {
                g:1,
                c:"m = parseInt(Date.getMonthNumber(results[{0}]), 10);\n", // get localised month number
                s:"(" + Date.monthNames.join("|") + ")"
            };
        },
        M: function() {
            for (var a = [], i = 0; i < 12; a.push(Date.getShortMonthName(i)), ++i); // get localised short month names
            return Ext.applyIf({
                s:"(" + a.join("|") + ")"
            }, $f("F"));
        },
        m: {
            g:1,
            c:"m = parseInt(results[{0}], 10) - 1;\n",
            s:"(\\d{2})" // month number with leading zeros (01 - 12)
        },
        n: {
            g:1,
            c:"m = parseInt(results[{0}], 10) - 1;\n",
            s:"(\\d{1,2})" // month number without leading zeros (1 - 12)
        },
        t: {
            g:0,
            c:null,
            s:"(?:\\d{2})" // no. of days in the month (28 - 31)
        },
        L: {
            g:0,
            c:null,
            s:"(?:1|0)"
        },
        o: function() {
            return $f("Y");
        },
        Y: {
            g:1,
            c:"y = parseInt(results[{0}], 10);\n",
            s:"(\\d{4})" // 4-digit year
        },
        y: {
            g:1,
            c:"var ty = parseInt(results[{0}], 10);\n"
                + "y = ty > Date.y2kYear ? 1900 + ty : 2000 + ty;\n", // 2-digit year
            s:"(\\d{1,2})"
        },
        /**
         * In the am/pm parsing routines, we allow both upper and lower case 
         * even though it doesn't exactly match the spec. It gives much more flexibility
         * in being able to specify case insensitive regexes.
         */
        a: function(){
            return $f("A");
        },
        A: {
            // We need to calculate the hour before we apply AM/PM when parsing
            calcLast: true,
            g:1,
            c:"if (/(am)/i.test(results[{0}])) {\n"
                + "if (!h || h == 12) { h = 0; }\n"
                + "} else { if (!h || h < 12) { h = (h || 0) + 12; }}",
            s:"(AM|PM|am|pm)"
        },
        g: function() {
            return $f("G");
        },
        G: {
            g:1,
            c:"h = parseInt(results[{0}], 10);\n",
            s:"(\\d{1,2})" // 24-hr format of an hour without leading zeroes (0 - 23)
        },
        h: function() {
            return $f("H");
        },
        H: {
            g:1,
            c:"h = parseInt(results[{0}], 10);\n",
            s:"(\\d{2})" //  24-hr format of an hour with leading zeroes (00 - 23)
        },
        i: {
            g:1,
            c:"i = parseInt(results[{0}], 10);\n",
            s:"(\\d{2})" // minutes with leading zeros (00 - 59)
        },
        s: {
            g:1,
            c:"s = parseInt(results[{0}], 10);\n",
            s:"(\\d{2})" // seconds with leading zeros (00 - 59)
        },
        u: {
            g:1,
            c:"ms = results[{0}]; ms = parseInt(ms, 10)/Math.pow(10, ms.length - 3);\n",
            s:"(\\d+)" // decimal fraction of a second (minimum = 1 digit, maximum = unlimited)
        },
        O: {
            g:1,
            c:[
                "o = results[{0}];",
                "var sn = o.substring(0,1),", // get + / - sign
                    "hr = o.substring(1,3)*1 + Math.floor(o.substring(3,5) / 60),", // get hours (performs minutes-to-hour conversion also, just in case)
                    "mn = o.substring(3,5) % 60;", // get minutes
                "o = ((-12 <= (hr*60 + mn)/60) && ((hr*60 + mn)/60 <= 14))? (sn + String.leftPad(hr, 2, '0') + String.leftPad(mn, 2, '0')) : null;\n" // -12hrs <= GMT offset <= 14hrs
            ].join("\n"),
            s: "([+\-]\\d{4})" // GMT offset in hrs and mins
        },
        P: {
            g:1,
            c:[
                "o = results[{0}];",
                "var sn = o.substring(0,1),", // get + / - sign
                    "hr = o.substring(1,3)*1 + Math.floor(o.substring(4,6) / 60),", // get hours (performs minutes-to-hour conversion also, just in case)
                    "mn = o.substring(4,6) % 60;", // get minutes
                "o = ((-12 <= (hr*60 + mn)/60) && ((hr*60 + mn)/60 <= 14))? (sn + String.leftPad(hr, 2, '0') + String.leftPad(mn, 2, '0')) : null;\n" // -12hrs <= GMT offset <= 14hrs
            ].join("\n"),
            s: "([+\-]\\d{2}:\\d{2})" // GMT offset in hrs and mins (with colon separator)
        },
        T: {
            g:0,
            c:null,
            s:"[A-Z]{1,4}" // timezone abbrev. may be between 1 - 4 chars
        },
        Z: {
            g:1,
            c:"zz = results[{0}] * 1;\n" // -43200 <= UTC offset <= 50400
                  + "zz = (-43200 <= zz && zz <= 50400)? zz : null;\n",
            s:"([+\-]?\\d{1,5})" // leading '+' sign is optional for UTC offset
        },
        c: function() {
            var calc = [],
                arr = [
                    $f("Y", 1), // year
                    $f("m", 2), // month
                    $f("d", 3), // day
                    $f("h", 4), // hour
                    $f("i", 5), // minute
                    $f("s", 6), // second
                    {c:"ms = results[7] || '0'; ms = parseInt(ms, 10)/Math.pow(10, ms.length - 3);\n"}, // decimal fraction of a second (minimum = 1 digit, maximum = unlimited)
                    {c:[ // allow either "Z" (i.e. UTC) or "-0530" or "+08:00" (i.e. UTC offset) timezone delimiters. assumes local timezone if no timezone is specified
                        "if(results[8]) {", // timezone specified
                            "if(results[8] == 'Z'){",
                                "zz = 0;", // UTC
                            "}else if (results[8].indexOf(':') > -1){",
                                $f("P", 8).c, // timezone offset with colon separator
                            "}else{",
                                $f("O", 8).c, // timezone offset without colon separator
                            "}",
                        "}"
                    ].join('\n')}
                ];

            for (var i = 0, l = arr.length; i < l; ++i) {
                calc.push(arr[i].c);
            }

            return {
                g:1,
                c:calc.join(""),
                s:[
                    arr[0].s, // year (required)
                    "(?:", "-", arr[1].s, // month (optional)
                        "(?:", "-", arr[2].s, // day (optional)
                            "(?:",
                                "(?:T| )?", // time delimiter -- either a "T" or a single blank space
                                arr[3].s, ":", arr[4].s,  // hour AND minute, delimited by a single colon (optional). MUST be preceded by either a "T" or a single blank space
                                "(?::", arr[5].s, ")?", // seconds (optional)
                                "(?:(?:\\.|,)(\\d+))?", // decimal fraction of a second (e.g. ",12345" or ".98765") (optional)
                                "(Z|(?:[-+]\\d{2}(?::)?\\d{2}))?", // "Z" (UTC) or "-0530" (UTC offset without colon delimiter) or "+08:00" (UTC offset with colon delimiter) (optional)
                            ")?",
                        ")?",
                    ")?"
                ].join("")
            };
        },
        U: {
            g:1,
            c:"u = parseInt(results[{0}], 10);\n",
            s:"(-?\\d+)" // leading minus sign indicates seconds before UNIX epoch
        }
    }
});

}());

Ext.apply(Date.prototype, {
    // private
    dateFormat : function(format) {
        if (Date.formatFunctions[format] == null) {
            Date.createFormat(format);
        }
        return Date.formatFunctions[format].call(this);
    },

    /**
     * Get the timezone abbreviation of the current date (equivalent to the format specifier 'T').
     *
     * Note: The date string returned by the javascript Date object's toString() method varies
     * between browsers (e.g. FF vs IE) and system region settings (e.g. IE in Asia vs IE in America).
     * For a given date string e.g. "Thu Oct 25 2007 22:55:35 GMT+0800 (Malay Peninsula Standard Time)",
     * getTimezone() first tries to get the timezone abbreviation from between a pair of parentheses
     * (which may or may not be present), failing which it proceeds to get the timezone abbreviation
     * from the GMT offset portion of the date string.
     * @return {String} The abbreviated timezone name (e.g. 'CST', 'PDT', 'EDT', 'MPST' ...).
     */
    getTimezone : function() {
        // the following list shows the differences between date strings from different browsers on a WinXP SP2 machine from an Asian locale:
        //
        // Opera  : "Thu, 25 Oct 2007 22:53:45 GMT+0800" -- shortest (weirdest) date string of the lot
        // Safari : "Thu Oct 25 2007 22:55:35 GMT+0800 (Malay Peninsula Standard Time)" -- value in parentheses always gives the correct timezone (same as FF)
        // FF     : "Thu Oct 25 2007 22:55:35 GMT+0800 (Malay Peninsula Standard Time)" -- value in parentheses always gives the correct timezone
        // IE     : "Thu Oct 25 22:54:35 UTC+0800 2007" -- (Asian system setting) look for 3-4 letter timezone abbrev
        // IE     : "Thu Oct 25 17:06:37 PDT 2007" -- (American system setting) look for 3-4 letter timezone abbrev
        //
        // this crazy regex attempts to guess the correct timezone abbreviation despite these differences.
        // step 1: (?:\((.*)\) -- find timezone in parentheses
        // step 2: ([A-Z]{1,4})(?:[\-+][0-9]{4})?(?: -?\d+)?) -- if nothing was found in step 1, find timezone from timezone offset portion of date string
        // step 3: remove all non uppercase characters found in step 1 and 2
        return this.toString().replace(/^.* (?:\((.*)\)|([A-Z]{1,4})(?:[\-+][0-9]{4})?(?: -?\d+)?)$/, "$1$2").replace(/[^A-Z]/g, "");
    },

    /**
     * Get the offset from GMT of the current date (equivalent to the format specifier 'O').
     * @param {Boolean} colon (optional) true to separate the hours and minutes with a colon (defaults to false).
     * @return {String} The 4-character offset string prefixed with + or - (e.g. '-0600').
     */
    getGMTOffset : function(colon) {
        return (this.getTimezoneOffset() > 0 ? "-" : "+")
            + String.leftPad(Math.floor(Math.abs(this.getTimezoneOffset()) / 60), 2, "0")
            + (colon ? ":" : "")
            + String.leftPad(Math.abs(this.getTimezoneOffset() % 60), 2, "0");
    },

    /**
     * Get the numeric day number of the year, adjusted for leap year.
     * @return {Number} 0 to 364 (365 in leap years).
     */
    getDayOfYear: function() {
        var num = 0,
            d = this.clone(),
            m = this.getMonth(),
            i;

        for (i = 0, d.setDate(1), d.setMonth(0); i < m; d.setMonth(++i)) {
            num += d.getDaysInMonth();
        }
        return num + this.getDate() - 1;
    },

    /**
     * Get the numeric ISO-8601 week number of the year.
     * (equivalent to the format specifier 'W', but without a leading zero).
     * @return {Number} 1 to 53
     */
    getWeekOfYear : function() {
        // adapted from http://www.merlyn.demon.co.uk/weekcalc.htm
        var ms1d = 864e5, // milliseconds in a day
            ms7d = 7 * ms1d; // milliseconds in a week

        return function() { // return a closure so constants get calculated only once
            var DC3 = Date.UTC(this.getFullYear(), this.getMonth(), this.getDate() + 3) / ms1d, // an Absolute Day Number
                AWN = Math.floor(DC3 / 7), // an Absolute Week Number
                Wyr = new Date(AWN * ms7d).getUTCFullYear();

            return AWN - Math.floor(Date.UTC(Wyr, 0, 7) / ms7d) + 1;
        };
    }(),

    /**
     * Checks if the current date falls within a leap year.
     * @return {Boolean} True if the current date falls within a leap year, false otherwise.
     */
    isLeapYear : function() {
        var year = this.getFullYear();
        return !!((year & 3) == 0 && (year % 100 || (year % 400 == 0 && year)));
    },

    /**
     * Get the first day of the current month, adjusted for leap year.  The returned value
     * is the numeric day index within the week (0-6) which can be used in conjunction with
     * the {@link #monthNames} array to retrieve the textual day name.
     * Example:
     * 
    
var dt = new Date('1/10/2007');
document.write(Date.dayNames[dt.getFirstDayOfMonth()]); //output: 'Monday'

    
     * @return {Number} The day number (0-6).
     */
    getFirstDayOfMonth : function() {
        var day = (this.getDay() - (this.getDate() - 1)) % 7;
        return (day < 0) ? (day + 7) : day;
    },

    /**
     * Get the last day of the current month, adjusted for leap year.  The returned value
     * is the numeric day index within the week (0-6) which can be used in conjunction with
     * the {@link #monthNames} array to retrieve the textual day name.
     * Example:
     * 
    
var dt = new Date('1/10/2007');
document.write(Date.dayNames[dt.getLastDayOfMonth()]); //output: 'Wednesday'

    
     * @return {Number} The day number (0-6).
     */
    getLastDayOfMonth : function() {
        return this.getLastDateOfMonth().getDay();
    },


    /**
     * Get the date of the first day of the month in which this date resides.
     * @return {Date}
     */
    getFirstDateOfMonth : function() {
        return new Date(this.getFullYear(), this.getMonth(), 1);
    },

    /**
     * Get the date of the last day of the month in which this date resides.
     * @return {Date}
     */
    getLastDateOfMonth : function() {
        return new Date(this.getFullYear(), this.getMonth(), this.getDaysInMonth());
    },

    /**
     * Get the number of days in the current month, adjusted for leap year.
     * @return {Number} The number of days in the month.
     */
    getDaysInMonth: function() {
        var daysInMonth = [31, 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31];

        return function() { // return a closure for efficiency
            var m = this.getMonth();

            return m == 1 && this.isLeapYear() ? 29 : daysInMonth[m];
        };
    }(),

    /**
     * Get the English ordinal suffix of the current day (equivalent to the format specifier 'S').
     * @return {String} 'st, 'nd', 'rd' or 'th'.
     */
    getSuffix : function() {
        switch (this.getDate()) {
            case 1:
            case 21:
            case 31:
                return "st";
            case 2:
            case 22:
                return "nd";
            case 3:
            case 23:
                return "rd";
            default:
                return "th";
        }
    },

    /**
     * Creates and returns a new Date instance with the exact same date value as the called instance.
     * Dates are copied and passed by reference, so if a copied date variable is modified later, the original
     * variable will also be changed.  When the intention is to create a new variable that will not
     * modify the original instance, you should create a clone.
     *
     * Example of correctly cloning a date:
     * 
    
//wrong way:
var orig = new Date('10/1/2006');
var copy = orig;
copy.setDate(5);
document.write(orig);  //returns 'Thu Oct 05 2006'!

//correct way:
var orig = new Date('10/1/2006');
var copy = orig.clone();
copy.setDate(5);
document.write(orig);  //returns 'Thu Oct 01 2006'

    
     * @return {Date} The new Date instance.
     */
    clone : function() {
        return new Date(this.getTime());
    },

    /**
     * Checks if the current date is affected by Daylight Saving Time (DST).
     * @return {Boolean} True if the current date is affected by DST.
     */
    isDST : function() {
        // adapted from http://extjs.com/forum/showthread.php?p=247172#post247172
        // courtesy of @geoffrey.mcgill
        return new Date(this.getFullYear(), 0, 1).getTimezoneOffset() != this.getTimezoneOffset();
    },

    /**
     * Attempts to clear all time information from this Date by setting the time to midnight of the same day,
     * automatically adjusting for Daylight Saving Time (DST) where applicable.
     * (note: DST timezone information for the browser's host operating system is assumed to be up-to-date)
     * @param {Boolean} clone true to create a clone of this date, clear the time and return it (defaults to false).
     * @return {Date} this or the clone.
     */
    clearTime : function(clone) {
        if (clone) {
            return this.clone().clearTime();
        }

        // get current date before clearing time
        var d = this.getDate();

        // clear time
        this.setHours(0);
        this.setMinutes(0);
        this.setSeconds(0);
        this.setMilliseconds(0);

        if (this.getDate() != d) { // account for DST (i.e. day of month changed when setting hour = 0)
            // note: DST adjustments are assumed to occur in multiples of 1 hour (this is almost always the case)
            // refer to http://www.timeanddate.com/time/aboutdst.html for the (rare) exceptions to this rule

            // increment hour until cloned date == current date
            for (var hr = 1, c = this.add(Date.HOUR, hr); c.getDate() != d; hr++, c = this.add(Date.HOUR, hr));

            this.setDate(d);
            this.setHours(c.getHours());
        }

        return this;
    },

    /**
     * Provides a convenient method for performing basic date arithmetic. This method
     * does not modify the Date instance being called - it creates and returns
     * a new Date instance containing the resulting date value.
     *
     * Examples:
     * 
    
// Basic usage:
var dt = new Date('10/29/2006').add(Date.DAY, 5);
document.write(dt); //returns 'Fri Nov 03 2006 00:00:00'

// Negative values will be subtracted:
var dt2 = new Date('10/1/2006').add(Date.DAY, -5);
document.write(dt2); //returns 'Tue Sep 26 2006 00:00:00'

// You can even chain several calls together in one line:
var dt3 = new Date('10/1/2006').add(Date.DAY, 5).add(Date.HOUR, 8).add(Date.MINUTE, -30);
document.write(dt3); //returns 'Fri Oct 06 2006 07:30:00'

    
     *
     * @param {String} interval A valid date interval enum value.
     * @param {Number} value The amount to add to the current date.
     * @return {Date} The new Date instance.
     */
    add : function(interval, value) {
        var d = this.clone();
        if (!interval || value === 0) return d;

        switch(interval.toLowerCase()) {
            case Date.MILLI:
                d.setMilliseconds(this.getMilliseconds() + value);
                break;
            case Date.SECOND:
                d.setSeconds(this.getSeconds() + value);
                break;
            case Date.MINUTE:
                d.setMinutes(this.getMinutes() + value);
                break;
            case Date.HOUR:
                d.setHours(this.getHours() + value);
                break;
            case Date.DAY:
                d.setDate(this.getDate() + value);
                break;
            case Date.MONTH:
                var day = this.getDate();
                if (day > 28) {
                    day = Math.min(day, this.getFirstDateOfMonth().add('mo', value).getLastDateOfMonth().getDate());
                }
                d.setDate(day);
                d.setMonth(this.getMonth() + value);
                break;
            case Date.YEAR:
                d.setFullYear(this.getFullYear() + value);
                break;
        }
        return d;
    },

    /**
     * Checks if this date falls on or between the given start and end dates.
     * @param {Date} start Start date
     * @param {Date} end End date
     * @return {Boolean} true if this date falls on or between the given start and end dates.
     */
    between : function(start, end) {
        var t = this.getTime();
        return start.getTime() <= t && t <= end.getTime();
    }
});


/**
 * Formats a date given the supplied format string.
 * @param {String} format The format string.
 * @return {String} The formatted date.
 * @method format
 */
Date.prototype.format = Date.prototype.dateFormat;


// private
if (Ext.isSafari && (navigator.userAgent.match(/WebKit\/(\d+)/)[1] || NaN) < 420) {
    Ext.apply(Date.prototype, {
        _xMonth : Date.prototype.setMonth,
        _xDate  : Date.prototype.setDate,

        // Bug in Safari 1.3, 2.0 (WebKit build < 420)
        // Date.setMonth does not work consistently if iMonth is not 0-11
        setMonth : function(num) {
            if (num <= -1) {
                var n = Math.ceil(-num),
                    back_year = Math.ceil(n / 12),
                    month = (n % 12) ? 12 - n % 12 : 0;

                this.setFullYear(this.getFullYear() - back_year);

                return this._xMonth(month);
            } else {
                return this._xMonth(num);
            }
        },

        // Bug in setDate() method (resolved in WebKit build 419.3, so to be safe we target Webkit builds < 420)
        // The parameter for Date.setDate() is converted to a signed byte integer in Safari
        // http://brianary.blogspot.com/2006/03/safari-date-bug.html
        setDate : function(d) {
            // use setTime() to workaround setDate() bug
            // subtract current day of month in milliseconds, then add desired day of month in milliseconds
            return this.setTime(this.getTime() - (this.getDate() - d) * 864e5);
        }
    });
}



/* Some basic Date tests... (requires Firebug)

Date.parseDate('', 'c'); // call Date.parseDate() once to force computation of regex string so we can console.log() it
console.log('Insane Regex for "c" format: %o', Date.parseCodes.c.s); // view the insane regex for the "c" format specifier

// standard tests
console.group('Standard Date.parseDate() Tests');
    console.log('Date.parseDate("2009-01-05T11:38:56", "c")               = %o', Date.parseDate("2009-01-05T11:38:56", "c")); // assumes browser's timezone setting
    console.log('Date.parseDate("2009-02-04T12:37:55.001000", "c")        = %o', Date.parseDate("2009-02-04T12:37:55.001000", "c")); // assumes browser's timezone setting
    console.log('Date.parseDate("2009-03-03T13:36:54,101000Z", "c")       = %o', Date.parseDate("2009-03-03T13:36:54,101000Z", "c")); // UTC
    console.log('Date.parseDate("2009-04-02T14:35:53.901000-0530", "c")   = %o', Date.parseDate("2009-04-02T14:35:53.901000-0530", "c")); // GMT-0530
    console.log('Date.parseDate("2009-05-01T15:34:52,9876000+08:00", "c") = %o', Date.parseDate("2009-05-01T15:34:52,987600+08:00", "c")); // GMT+08:00
console.groupEnd();

// ISO-8601 format as specified in http://www.w3.org/TR/NOTE-datetime
// -- accepts ALL 6 levels of date-time granularity
console.group('ISO-8601 Granularity Test (see http://www.w3.org/TR/NOTE-datetime)');
    console.log('Date.parseDate("1997", "c")                              = %o', Date.parseDate("1997", "c")); // YYYY (e.g. 1997)
    console.log('Date.parseDate("1997-07", "c")                           = %o', Date.parseDate("1997-07", "c")); // YYYY-MM (e.g. 1997-07)
    console.log('Date.parseDate("1997-07-16", "c")                        = %o', Date.parseDate("1997-07-16", "c")); // YYYY-MM-DD (e.g. 1997-07-16)
    console.log('Date.parseDate("1997-07-16T19:20+01:00", "c")            = %o', Date.parseDate("1997-07-16T19:20+01:00", "c")); // YYYY-MM-DDThh:mmTZD (e.g. 1997-07-16T19:20+01:00)
    console.log('Date.parseDate("1997-07-16T19:20:30+01:00", "c")         = %o', Date.parseDate("1997-07-16T19:20:30+01:00", "c")); // YYYY-MM-DDThh:mm:ssTZD (e.g. 1997-07-16T19:20:30+01:00)
    console.log('Date.parseDate("1997-07-16T19:20:30.45+01:00", "c")      = %o', Date.parseDate("1997-07-16T19:20:30.45+01:00", "c")); // YYYY-MM-DDThh:mm:ss.sTZD (e.g. 1997-07-16T19:20:30.45+01:00)
    console.log('Date.parseDate("1997-07-16 19:20:30.45+01:00", "c")      = %o', Date.parseDate("1997-07-16 19:20:30.45+01:00", "c")); // YYYY-MM-DD hh:mm:ss.sTZD (e.g. 1997-07-16T19:20:30.45+01:00)
    console.log('Date.parseDate("1997-13-16T19:20:30.45+01:00", "c", true)= %o', Date.parseDate("1997-13-16T19:20:30.45+01:00", "c", true)); // strict date parsing with invalid month value
console.groupEnd();

*/
/**
 * @class Ext.util.MixedCollection
 * @extends Ext.util.Observable
 * A Collection class that maintains both numeric indexes and keys and exposes events.
 * @constructor
 * @param {Boolean} allowFunctions Specify true if the {@link #addAll}
 * function should add function references to the collection. Defaults to
 * false.
 * @param {Function} keyFn A function that can accept an item of the type(s) stored in this MixedCollection
 * and return the key value for that item.  This is used when available to look up the key on items that
 * were passed without an explicit key parameter to a MixedCollection method.  Passing this parameter is
 * equivalent to providing an implementation for the {@link #getKey} method.
 */
Ext.util.MixedCollection = function(allowFunctions, keyFn){
    this.items = [];
    this.map = {};
    this.keys = [];
    this.length = 0;
    this.addEvents(
        /**
         * @event clear
         * Fires when the collection is cleared.
         */
        'clear',
        /**
         * @event add
         * Fires when an item is added to the collection.
         * @param {Number} index The index at which the item was added.
         * @param {Object} o The item added.
         * @param {String} key The key associated with the added item.
         */
        'add',
        /**
         * @event replace
         * Fires when an item is replaced in the collection.
         * @param {String} key he key associated with the new added.
         * @param {Object} old The item being replaced.
         * @param {Object} new The new item.
         */
        'replace',
        /**
         * @event remove
         * Fires when an item is removed from the collection.
         * @param {Object} o The item being removed.
         * @param {String} key (optional) The key associated with the removed item.
         */
        'remove',
        'sort'
    );
    this.allowFunctions = allowFunctions === true;
    if(keyFn){
        this.getKey = keyFn;
    }
    Ext.util.MixedCollection.superclass.constructor.call(this);
};

Ext.extend(Ext.util.MixedCollection, Ext.util.Observable, {

    /**
     * @cfg {Boolean} allowFunctions Specify true if the {@link #addAll}
     * function should add function references to the collection. Defaults to
     * false.
     */
    allowFunctions : false,

    /**
     * Adds an item to the collection. Fires the {@link #add} event when complete.
     * @param {String} key 
    The key to associate with the item, or the new item.
    
     * 
    If a {@link #getKey} implementation was specified for this MixedCollection,
     * or if the key of the stored items is in a property called id,
     * the MixedCollection will be able to derive the key for the new item.
     * In this case just pass the new item in this parameter.
    
     * @param {Object} o The item to add.
     * @return {Object} The item added.
     */
    add : function(key, o){
        if(arguments.length == 1){
            o = arguments[0];
            key = this.getKey(o);
        }
        if(typeof key != 'undefined' && key !== null){
            var old = this.map[key];
            if(typeof old != 'undefined'){
                return this.replace(key, o);
            }
            this.map[key] = o;
        }
        this.length++;
        this.items.push(o);
        this.keys.push(key);
        this.fireEvent('add', this.length-1, o, key);
        return o;
    },

    /**
      * MixedCollection has a generic way to fetch keys if you implement getKey.  The default implementation
      * simply returns item.id but you can provide your own implementation
      * to return a different value as in the following examples:
    
// normal way
var mc = new Ext.util.MixedCollection();
mc.add(someEl.dom.id, someEl);
mc.add(otherEl.dom.id, otherEl);
//and so on

// using getKey
var mc = new Ext.util.MixedCollection();
mc.getKey = function(el){
   return el.dom.id;
};
mc.add(someEl);
mc.add(otherEl);

// or via the constructor
var mc = new Ext.util.MixedCollection(false, function(el){
   return el.dom.id;
});
mc.add(someEl);
mc.add(otherEl);
     * 
    
     * @param {Object} item The item for which to find the key.
     * @return {Object} The key for the passed item.
     */
    getKey : function(o){
         return o.id;
    },

    /**
     * Replaces an item in the collection. Fires the {@link #replace} event when complete.
     * @param {String} key 
    The key associated with the item to replace, or the replacement item.
    
     * 
    If you supplied a {@link #getKey} implementation for this MixedCollection, or if the key
     * of your stored items is in a property called id, then the MixedCollection
     * will be able to derive the key of the replacement item. If you want to replace an item
     * with one having the same key value, then just pass the replacement item in this parameter.
    
     * @param o {Object} o (optional) If the first parameter passed was a key, the item to associate
     * with that key.
     * @return {Object}  The new item.
     */
    replace : function(key, o){
        if(arguments.length == 1){
            o = arguments[0];
            key = this.getKey(o);
        }
        var old = this.map[key];
        if(typeof key == 'undefined' || key === null || typeof old == 'undefined'){
             return this.add(key, o);
        }
        var index = this.indexOfKey(key);
        this.items[index] = o;
        this.map[key] = o;
        this.fireEvent('replace', key, old, o);
        return o;
    },

    /**
     * Adds all elements of an Array or an Object to the collection.
     * @param {Object/Array} objs An Object containing properties which will be added
     * to the collection, or an Array of values, each of which are added to the collection.
     * Functions references will be added to the collection if {@link #allowFunctions}
     * has been set to true.
     */
    addAll : function(objs){
        if(arguments.length > 1 || Ext.isArray(objs)){
            var args = arguments.length > 1 ? arguments : objs;
            for(var i = 0, len = args.length; i < len; i++){
                this.add(args[i]);
            }
        }else{
            for(var key in objs){
                if(this.allowFunctions || typeof objs[key] != 'function'){
                    this.add(key, objs[key]);
                }
            }
        }
    },

    /**
     * Executes the specified function once for every item in the collection, passing the following arguments:
     * 
      
     * 
    • item : Mixed
      The collection item
      • 
     * 
    • index : Number
      The item's index
      • 
     * 
    • length : Number
      The total number of items in the collection
      • 
     * 
    
     * The function should return a boolean value. Returning false from the function will stop the iteration.
     * @param {Function} fn The function to execute for each item.
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the current item in the iteration.
     */
    each : function(fn, scope){
        var items = [].concat(this.items); // each safe for removal
        for(var i = 0, len = items.length; i < len; i++){
            if(fn.call(scope || items[i], items[i], i, len) === false){
                break;
            }
        }
    },

    /**
     * Executes the specified function once for every key in the collection, passing each
     * key, and its associated item as the first two parameters.
     * @param {Function} fn The function to execute for each item.
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the browser window.
     */
    eachKey : function(fn, scope){
        for(var i = 0, len = this.keys.length; i < len; i++){
            fn.call(scope || window, this.keys[i], this.items[i], i, len);
        }
    },

    /**
     * Returns the first item in the collection which elicits a true return value from the
     * passed selection function.
     * @param {Function} fn The selection function to execute for each item.
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the browser window.
     * @return {Object} The first item in the collection which returned true from the selection function.
     */
    find : function(fn, scope){
        for(var i = 0, len = this.items.length; i < len; i++){
            if(fn.call(scope || window, this.items[i], this.keys[i])){
                return this.items[i];
            }
        }
        return null;
    },

    /**
     * Inserts an item at the specified index in the collection. Fires the {@link #add} event when complete.
     * @param {Number} index The index to insert the item at.
     * @param {String} key The key to associate with the new item, or the item itself.
     * @param {Object} o (optional) If the second parameter was a key, the new item.
     * @return {Object} The item inserted.
     */
    insert : function(index, key, o){
        if(arguments.length == 2){
            o = arguments[1];
            key = this.getKey(o);
        }
        if(this.containsKey(key)){
            this.suspendEvents();
            this.removeKey(key);
            this.resumeEvents();
        }
        if(index >= this.length){
            return this.add(key, o);
        }
        this.length++;
        this.items.splice(index, 0, o);
        if(typeof key != 'undefined' && key !== null){
            this.map[key] = o;
        }
        this.keys.splice(index, 0, key);
        this.fireEvent('add', index, o, key);
        return o;
    },

    /**
     * Remove an item from the collection.
     * @param {Object} o The item to remove.
     * @return {Object} The item removed or false if no item was removed.
     */
    remove : function(o){
        return this.removeAt(this.indexOf(o));
    },

    /**
     * Remove an item from a specified index in the collection. Fires the {@link #remove} event when complete.
     * @param {Number} index The index within the collection of the item to remove.
     * @return {Object} The item removed or false if no item was removed.
     */
    removeAt : function(index){
        if(index < this.length && index >= 0){
            this.length--;
            var o = this.items[index];
            this.items.splice(index, 1);
            var key = this.keys[index];
            if(typeof key != 'undefined'){
                delete this.map[key];
            }
            this.keys.splice(index, 1);
            this.fireEvent('remove', o, key);
            return o;
        }
        return false;
    },

    /**
     * Removed an item associated with the passed key fom the collection.
     * @param {String} key The key of the item to remove.
     * @return {Object} The item removed or false if no item was removed.
     */
    removeKey : function(key){
        return this.removeAt(this.indexOfKey(key));
    },

    /**
     * Returns the number of items in the collection.
     * @return {Number} the number of items in the collection.
     */
    getCount : function(){
        return this.length;
    },

    /**
     * Returns index within the collection of the passed Object.
     * @param {Object} o The item to find the index of.
     * @return {Number} index of the item. Returns -1 if not found.
     */
    indexOf : function(o){
        return this.items.indexOf(o);
    },

    /**
     * Returns index within the collection of the passed key.
     * @param {String} key The key to find the index of.
     * @return {Number} index of the key.
     */
    indexOfKey : function(key){
        return this.keys.indexOf(key);
    },

    /**
     * Returns the item associated with the passed key OR index.
     * Key has priority over index.  This is the equivalent
     * of calling {@link #key} first, then if nothing matched calling {@link #itemAt}.
     * @param {String/Number} key The key or index of the item.
     * @return {Object} If the item is found, returns the item.  If the item was not found, returns undefined.
     * If an item was found, but is a Class, returns null.
     */
    item : function(key){
        var mk = this.map[key],
            item = mk !== undefined ? mk : (typeof key == 'number') ? this.items[key] : undefined;
        return typeof item != 'function' || this.allowFunctions ? item : null; // for prototype!
    },

    /**
     * Returns the item at the specified index.
     * @param {Number} index The index of the item.
     * @return {Object} The item at the specified index.
     */
    itemAt : function(index){
        return this.items[index];
    },

    /**
     * Returns the item associated with the passed key.
     * @param {String/Number} key The key of the item.
     * @return {Object} The item associated with the passed key.
     */
    key : function(key){
        return this.map[key];
    },

    /**
     * Returns true if the collection contains the passed Object as an item.
     * @param {Object} o  The Object to look for in the collection.
     * @return {Boolean} True if the collection contains the Object as an item.
     */
    contains : function(o){
        return this.indexOf(o) != -1;
    },

    /**
     * Returns true if the collection contains the passed Object as a key.
     * @param {String} key The key to look for in the collection.
     * @return {Boolean} True if the collection contains the Object as a key.
     */
    containsKey : function(key){
        return typeof this.map[key] != 'undefined';
    },

    /**
     * Removes all items from the collection.  Fires the {@link #clear} event when complete.
     */
    clear : function(){
        this.length = 0;
        this.items = [];
        this.keys = [];
        this.map = {};
        this.fireEvent('clear');
    },

    /**
     * Returns the first item in the collection.
     * @return {Object} the first item in the collection..
     */
    first : function(){
        return this.items[0];
    },

    /**
     * Returns the last item in the collection.
     * @return {Object} the last item in the collection..
     */
    last : function(){
        return this.items[this.length-1];
    },

    /**
     * @private
     * Performs the actual sorting based on a direction and a sorting function. Internally,
     * this creates a temporary array of all items in the MixedCollection, sorts it and then writes
     * the sorted array data back into this.items and this.keys
     * @param {String} property Property to sort by ('key', 'value', or 'index')
     * @param {String} dir (optional) Direction to sort 'ASC' or 'DESC'. Defaults to 'ASC'.
     * @param {Function} fn (optional) Comparison function that defines the sort order.
     * Defaults to sorting by numeric value.
     */
    _sort : function(property, dir, fn){
        var i, len,
            dsc   = String(dir).toUpperCase() == 'DESC' ? -1 : 1,

            //this is a temporary array used to apply the sorting function
            c     = [],
            keys  = this.keys,
            items = this.items;

        //default to a simple sorter function if one is not provided
        fn = fn || function(a, b) {
            return a - b;
        };

        //copy all the items into a temporary array, which we will sort
        for(i = 0, len = items.length; i < len; i++){
            c[c.length] = {
                key  : keys[i],
                value: items[i],
                index: i
            };
        }

        //sort the temporary array
        c.sort(function(a, b){
            var v = fn(a[property], b[property]) * dsc;
            if(v === 0){
                v = (a.index < b.index ? -1 : 1);
            }
            return v;
        });

        //copy the temporary array back into the main this.items and this.keys objects
        for(i = 0, len = c.length; i < len; i++){
            items[i] = c[i].value;
            keys[i]  = c[i].key;
        }

        this.fireEvent('sort', this);
    },

    /**
     * Sorts this collection by item value with the passed comparison function.
     * @param {String} direction (optional) 'ASC' or 'DESC'. Defaults to 'ASC'.
     * @param {Function} fn (optional) Comparison function that defines the sort order.
     * Defaults to sorting by numeric value.
     */
    sort : function(dir, fn){
        this._sort('value', dir, fn);
    },

    /**
     * Reorders each of the items based on a mapping from old index to new index. Internally this
     * just translates into a sort. The 'sort' event is fired whenever reordering has occured.
     * @param {Object} mapping Mapping from old item index to new item index
     */
    reorder: function(mapping) {
        this.suspendEvents();

        var items = this.items,
            index = 0,
            length = items.length,
            order = [],
            remaining = [],
            oldIndex;

        //object of {oldPosition: newPosition} reversed to {newPosition: oldPosition}
        for (oldIndex in mapping) {
            order[mapping[oldIndex]] = items[oldIndex];
        }

        for (index = 0; index < length; index++) {
            if (mapping[index] == undefined) {
                remaining.push(items[index]);
            }
        }

        for (index = 0; index < length; index++) {
            if (order[index] == undefined) {
                order[index] = remaining.shift();
            }
        }

        this.clear();
        this.addAll(order);

        this.resumeEvents();
        this.fireEvent('sort', this);
    },

    /**
     * Sorts this collection by keys.
     * @param {String} direction (optional) 'ASC' or 'DESC'. Defaults to 'ASC'.
     * @param {Function} fn (optional) Comparison function that defines the sort order.
     * Defaults to sorting by case insensitive string.
     */
    keySort : function(dir, fn){
        this._sort('key', dir, fn || function(a, b){
            var v1 = String(a).toUpperCase(), v2 = String(b).toUpperCase();
            return v1 > v2 ? 1 : (v1 < v2 ? -1 : 0);
        });
    },

    /**
     * Returns a range of items in this collection
     * @param {Number} startIndex (optional) The starting index. Defaults to 0.
     * @param {Number} endIndex (optional) The ending index. Defaults to the last item.
     * @return {Array} An array of items
     */
    getRange : function(start, end){
        var items = this.items;
        if(items.length < 1){
            return [];
        }
        start = start || 0;
        end = Math.min(typeof end == 'undefined' ? this.length-1 : end, this.length-1);
        var i, r = [];
        if(start <= end){
            for(i = start; i <= end; i++) {
                r[r.length] = items[i];
            }
        }else{
            for(i = start; i >= end; i--) {
                r[r.length] = items[i];
            }
        }
        return r;
    },

    /**
     * Filter the objects in this collection by a specific property.
     * Returns a new collection that has been filtered.
     * @param {String} property A property on your objects
     * @param {String/RegExp} value Either string that the property values
     * should start with or a RegExp to test against the property
     * @param {Boolean} anyMatch (optional) True to match any part of the string, not just the beginning
     * @param {Boolean} caseSensitive (optional) True for case sensitive comparison (defaults to False).
     * @return {MixedCollection} The new filtered collection
     */
    filter : function(property, value, anyMatch, caseSensitive){
        if(Ext.isEmpty(value, false)){
            return this.clone();
        }
        value = this.createValueMatcher(value, anyMatch, caseSensitive);
        return this.filterBy(function(o){
            return o && value.test(o[property]);
        });
    },

    /**
     * Filter by a function. Returns a new collection that has been filtered.
     * The passed function will be called with each object in the collection.
     * If the function returns true, the value is included otherwise it is filtered.
     * @param {Function} fn The function to be called, it will receive the args o (the object), k (the key)
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to this MixedCollection.
     * @return {MixedCollection} The new filtered collection
     */
    filterBy : function(fn, scope){
        var r = new Ext.util.MixedCollection();
        r.getKey = this.getKey;
        var k = this.keys, it = this.items;
        for(var i = 0, len = it.length; i < len; i++){
            if(fn.call(scope||this, it[i], k[i])){
                r.add(k[i], it[i]);
            }
        }
        return r;
    },

    /**
     * Finds the index of the first matching object in this collection by a specific property/value.
     * @param {String} property The name of a property on your objects.
     * @param {String/RegExp} value A string that the property values
     * should start with or a RegExp to test against the property.
     * @param {Number} start (optional) The index to start searching at (defaults to 0).
     * @param {Boolean} anyMatch (optional) True to match any part of the string, not just the beginning.
     * @param {Boolean} caseSensitive (optional) True for case sensitive comparison.
     * @return {Number} The matched index or -1
     */
    findIndex : function(property, value, start, anyMatch, caseSensitive){
        if(Ext.isEmpty(value, false)){
            return -1;
        }
        value = this.createValueMatcher(value, anyMatch, caseSensitive);
        return this.findIndexBy(function(o){
            return o && value.test(o[property]);
        }, null, start);
    },

    /**
     * Find the index of the first matching object in this collection by a function.
     * If the function returns true it is considered a match.
     * @param {Function} fn The function to be called, it will receive the args o (the object), k (the key).
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to this MixedCollection.
     * @param {Number} start (optional) The index to start searching at (defaults to 0).
     * @return {Number} The matched index or -1
     */
    findIndexBy : function(fn, scope, start){
        var k = this.keys, it = this.items;
        for(var i = (start||0), len = it.length; i < len; i++){
            if(fn.call(scope||this, it[i], k[i])){
                return i;
            }
        }
        return -1;
    },

    /**
     * Returns a regular expression based on the given value and matching options. This is used internally for finding and filtering,
     * and by Ext.data.Store#filter
     * @private
     * @param {String} value The value to create the regex for. This is escaped using Ext.escapeRe
     * @param {Boolean} anyMatch True to allow any match - no regex start/end line anchors will be added. Defaults to false
     * @param {Boolean} caseSensitive True to make the regex case sensitive (adds 'i' switch to regex). Defaults to false.
     * @param {Boolean} exactMatch True to force exact match (^ and $ characters added to the regex). Defaults to false. Ignored if anyMatch is true.
     */
    createValueMatcher : function(value, anyMatch, caseSensitive, exactMatch) {
        if (!value.exec) { // not a regex
            var er = Ext.escapeRe;
            value = String(value);

            if (anyMatch === true) {
                value = er(value);
            } else {
                value = '^' + er(value);
                if (exactMatch === true) {
                    value += '$';
                }
            }
            value = new RegExp(value, caseSensitive ? '' : 'i');
         }
         return value;
    },

    /**
     * Creates a shallow copy of this collection
     * @return {MixedCollection}
     */
    clone : function(){
        var r = new Ext.util.MixedCollection();
        var k = this.keys, it = this.items;
        for(var i = 0, len = it.length; i < len; i++){
            r.add(k[i], it[i]);
        }
        r.getKey = this.getKey;
        return r;
    }
});
/**
 * This method calls {@link #item item()}.
 * Returns the item associated with the passed key OR index. Key has priority
 * over index.  This is the equivalent of calling {@link #key} first, then if
 * nothing matched calling {@link #itemAt}.
 * @param {String/Number} key The key or index of the item.
 * @return {Object} If the item is found, returns the item.  If the item was
 * not found, returns undefined. If an item was found, but is a Class,
 * returns null.
 */
Ext.util.MixedCollection.prototype.get = Ext.util.MixedCollection.prototype.item;
/**
 * @class Ext.AbstractManager
 * @extends Object
 * Base Manager class - extended by ComponentMgr and PluginMgr
 */
Ext.AbstractManager = Ext.extend(Object, {
    typeName: 'type',
    
    constructor: function(config) {
        Ext.apply(this, config || {});
        
        /**
         * Contains all of the items currently managed
         * @property all
         * @type Ext.util.MixedCollection
         */
        this.all = new Ext.util.MixedCollection();
        
        this.types = {};
    },
    
    /**
     * Returns a component by {@link Ext.Component#id id}.
     * For additional details see {@link Ext.util.MixedCollection#get}.
     * @param {String} id The component {@link Ext.Component#id id}
     * @return Ext.Component The Component, undefined if not found, or null if a
     * Class was found.
     */
    get : function(id){
        return this.all.get(id);
    },
    
    /**
     * Registers an item to be managed
     * @param {Mixed} item The item to register
     */
    register: function(item) {
        this.all.add(item);
    },
    
    /**
     * Unregisters a component by removing it from this manager
     * @param {Mixed} item The item to unregister
     */
    unregister: function(item) {
        this.all.remove(item);        
    },
    
    /**
     * 
    Registers a new Component constructor, keyed by a new
     * {@link Ext.Component#xtype}.
    
     * 
    Use this method (or its alias {@link Ext#reg Ext.reg}) to register new
     * subclasses of {@link Ext.Component} so that lazy instantiation may be used when specifying
     * child Components.
     * see {@link Ext.Container#items}
    
     * @param {String} xtype The mnemonic string by which the Component class may be looked up.
     * @param {Constructor} cls The new Component class.
     */
    registerType : function(type, cls){
        this.types[type] = cls;
        cls[this.typeName] = type;
    },
    
    /**
     * Checks if a Component type is registered.
     * @param {Ext.Component} xtype The mnemonic string by which the Component class may be looked up
     * @return {Boolean} Whether the type is registered.
     */
    isRegistered : function(type){
        return this.types[type] !== undefined;    
    },
    
    /**
     * Creates and returns an instance of whatever this manager manages, based on the supplied type and config object
     * @param {Object} config The config object
     * @param {String} defaultType If no type is discovered in the config object, we fall back to this type
     * @return {Mixed} The instance of whatever this manager is managing
     */
    create: function(config, defaultType) {
        var type        = config[this.typeName] || config.type || defaultType,
            Constructor = this.types[type];
        
        if (Constructor == undefined) {
            throw new Error(String.format("The '{0}' type has not been registered with this manager", type));
        }
        
        return new Constructor(config);
    },
    
    /**
     * Registers a function that will be called when a Component with the specified id is added to the manager. This will happen on instantiation.
     * @param {String} id The component {@link Ext.Component#id id}
     * @param {Function} fn The callback function
     * @param {Object} scope The scope (this reference) in which the callback is executed. Defaults to the Component.
     */
    onAvailable : function(id, fn, scope){
        var all = this.all;
        
        all.on("add", function(index, o){
            if (o.id == id) {
                fn.call(scope || o, o);
                all.un("add", fn, scope);
            }
        });
    }
});/**
 * @class Ext.util.Format
 * Reusable data formatting functions
 * @singleton
 */
Ext.util.Format = function() {
    var trimRe         = /^\s+|\s+$/g,
        stripTagsRE    = /<\/?[^>]+>/gi,
        stripScriptsRe = /(?:)((\n|\r|.)*?)(?:<\/script>)/ig,
        nl2brRe        = /\r?\n/g;

    return {
        /**
         * Truncate a string and add an ellipsis ('...') to the end if it exceeds the specified length
         * @param {String} value The string to truncate
         * @param {Number} length The maximum length to allow before truncating
         * @param {Boolean} word True to try to find a common work break
         * @return {String} The converted text
         */
        ellipsis : function(value, len, word) {
            if (value && value.length > len) {
                if (word) {
                    var vs    = value.substr(0, len - 2),
                        index = Math.max(vs.lastIndexOf(' '), vs.lastIndexOf('.'), vs.lastIndexOf('!'), vs.lastIndexOf('?'));
                    if (index == -1 || index < (len - 15)) {
                        return value.substr(0, len - 3) + "...";
                    } else {
                        return vs.substr(0, index) + "...";
                    }
                } else {
                    return value.substr(0, len - 3) + "...";
                }
            }
            return value;
        },

        /**
         * Checks a reference and converts it to empty string if it is undefined
         * @param {Mixed} value Reference to check
         * @return {Mixed} Empty string if converted, otherwise the original value
         */
        undef : function(value) {
            return value !== undefined ? value : "";
        },

        /**
         * Checks a reference and converts it to the default value if it's empty
         * @param {Mixed} value Reference to check
         * @param {String} defaultValue The value to insert if it's undefined (defaults to "")
         * @return {String}
         */
        defaultValue : function(value, defaultValue) {
            if (!defaultValue && defaultValue !== 0) {
                defaultValue = '';
            }
            return value !== undefined && value !== '' ? value : defaultValue;
        },

        /**
         * Convert certain characters (&, <, >, and ') to their HTML character equivalents for literal display in web pages.
         * @param {String} value The string to encode
         * @return {String} The encoded text
         */
        htmlEncode : function(value) {
            return !value ? value : String(value).replace(/&/g, "&").replace(/>/g, ">").replace(/, and ') from their HTML character equivalents.
         * @param {String} value The string to decode
         * @return {String} The decoded text
         */
        htmlDecode : function(value) {
            return !value ? value : String(value).replace(/>/g, ">").replace(/</g, "<").replace(/"/g, '"').replace(/&/g, "&");
        },

        /**
         * Trims any whitespace from either side of a string
         * @param {String} value The text to trim
         * @return {String} The trimmed text
         */
        trim : function(value) {
            return String(value).replace(trimRe, "");
        },

        /**
         * Returns a substring from within an original string
         * @param {String} value The original text
         * @param {Number} start The start index of the substring
         * @param {Number} length The length of the substring
         * @return {String} The substring
         */
        substr : function(value, start, length) {
            return String(value).substr(start, length);
        },

        /**
         * Converts a string to all lower case letters
         * @param {String} value The text to convert
         * @return {String} The converted text
         */
        lowercase : function(value) {
            return String(value).toLowerCase();
        },

        /**
         * Converts a string to all upper case letters
         * @param {String} value The text to convert
         * @return {String} The converted text
         */
        uppercase : function(value) {
            return String(value).toUpperCase();
        },

        /**
         * Converts the first character only of a string to upper case
         * @param {String} value The text to convert
         * @return {String} The converted text
         */
        capitalize : function(value) {
            return !value ? value : value.charAt(0).toUpperCase() + value.substr(1).toLowerCase();
        },

        // private
        call : function(value, fn) {
            if (arguments.length > 2) {
                var args = Array.prototype.slice.call(arguments, 2);
                args.unshift(value);
                return eval(fn).apply(window, args);
            } else {
                return eval(fn).call(window, value);
            }
        },

        /**
         * Format a number as US currency
         * @param {Number/String} value The numeric value to format
         * @return {String} The formatted currency string
         */
        usMoney : function(v) {
            v = (Math.round((v-0)*100))/100;
            v = (v == Math.floor(v)) ? v + ".00" : ((v*10 == Math.floor(v*10)) ? v + "0" : v);
            v = String(v);
            var ps = v.split('.'),
                whole = ps[0],
                sub = ps[1] ? '.'+ ps[1] : '.00',
                r = /(\d+)(\d{3})/;
            while (r.test(whole)) {
                whole = whole.replace(r, '$1' + ',' + '$2');
            }
            v = whole + sub;
            if (v.charAt(0) == '-') {
                return '-$' + v.substr(1);
            }
            return "$" +  v;
        },

        /**
         * Parse a value into a formatted date using the specified format pattern.
         * @param {String/Date} value The value to format (Strings must conform to the format expected by the javascript Date object's parse() method)
         * @param {String} format (optional) Any valid date format string (defaults to 'm/d/Y')
         * @return {String} The formatted date string
         */
        date : function(v, format) {
            if (!v) {
                return "";
            }
            if (!Ext.isDate(v)) {
                v = new Date(Date.parse(v));
            }
            return v.dateFormat(format || "m/d/Y");
        },

        /**
         * Returns a date rendering function that can be reused to apply a date format multiple times efficiently
         * @param {String} format Any valid date format string
         * @return {Function} The date formatting function
         */
        dateRenderer : function(format) {
            return function(v) {
                return Ext.util.Format.date(v, format);
            };
        },

        /**
         * Strips all HTML tags
         * @param {Mixed} value The text from which to strip tags
         * @return {String} The stripped text
         */
        stripTags : function(v) {
            return !v ? v : String(v).replace(stripTagsRE, "");
        },

        /**
         * Strips all script tags
         * @param {Mixed} value The text from which to strip script tags
         * @return {String} The stripped text
         */
        stripScripts : function(v) {
            return !v ? v : String(v).replace(stripScriptsRe, "");
        },

        /**
         * Simple format for a file size (xxx bytes, xxx KB, xxx MB)
         * @param {Number/String} size The numeric value to format
         * @return {String} The formatted file size
         */
        fileSize : function(size) {
            if (size < 1024) {
                return size + " bytes";
            } else if (size < 1048576) {
                return (Math.round(((size*10) / 1024))/10) + " KB";
            } else {
                return (Math.round(((size*10) / 1048576))/10) + " MB";
            }
        },

        /**
         * It does simple math for use in a template, for example:
    
         * var tpl = new Ext.Template('{value} * 10 = {value:math("* 10")}');
         * 
    
         * @return {Function} A function that operates on the passed value.
         */
        math : function(){
            var fns = {};
            
            return function(v, a){
                if (!fns[a]) {
                    fns[a] = new Function('v', 'return v ' + a + ';');
                }
                return fns[a](v);
            };
        }(),

        /**
         * Rounds the passed number to the required decimal precision.
         * @param {Number/String} value The numeric value to round.
         * @param {Number} precision The number of decimal places to which to round the first parameter's value.
         * @return {Number} The rounded value.
         */
        round : function(value, precision) {
            var result = Number(value);
            if (typeof precision == 'number') {
                precision = Math.pow(10, precision);
                result = Math.round(value * precision) / precision;
            }
            return result;
        },

        /**
         * Formats the number according to the format string.
         * 
    examples (123456.789):
         * 
    
         * 0 - (123456) show only digits, no precision
    
         * 0.00 - (123456.78) show only digits, 2 precision
    
         * 0.0000 - (123456.7890) show only digits, 4 precision
    
         * 0,000 - (123,456) show comma and digits, no precision
    
         * 0,000.00 - (123,456.78) show comma and digits, 2 precision
    
         * 0,0.00 - (123,456.78) shortcut method, show comma and digits, 2 precision
    
         * To reverse the grouping (,) and decimal (.) for international numbers, add /i to the end.
         * For example: 0.000,00/i
         * 
    
         * @param {Number} v The number to format.
         * @param {String} format The way you would like to format this text.
         * @return {String} The formatted number.
         */
        number: function(v, format) {
            if (!format) {
                return v;
            }
            v = Ext.num(v, NaN);
            if (isNaN(v)) {
                return '';
            }
            var comma = ',',
                dec   = '.',
                i18n  = false,
                neg   = v < 0;

            v = Math.abs(v);
            if (format.substr(format.length - 2) == '/i') {
                format = format.substr(0, format.length - 2);
                i18n   = true;
                comma  = '.';
                dec    = ',';
            }

            var hasComma = format.indexOf(comma) != -1,
                psplit   = (i18n ? format.replace(/[^\d\,]/g, '') : format.replace(/[^\d\.]/g, '')).split(dec);

            if (1 < psplit.length) {
                v = v.toFixed(psplit[1].length);
            } else if(2 < psplit.length) {
                throw ('NumberFormatException: invalid format, formats should have no more than 1 period: ' + format);
            } else {
                v = v.toFixed(0);
            }

            var fnum = v.toString();

            psplit = fnum.split('.');

            if (hasComma) {
                var cnum = psplit[0], 
                    parr = [], 
                    j    = cnum.length, 
                    m    = Math.floor(j / 3),
                    n    = cnum.length % 3 || 3,
                    i;

                for (i = 0; i < j; i += n) {
                    if (i != 0) {
                        n = 3;
                    }
                    
                    parr[parr.length] = cnum.substr(i, n);
                    m -= 1;
                }
                fnum = parr.join(comma);
                if (psplit[1]) {
                    fnum += dec + psplit[1];
                }
            } else {
                if (psplit[1]) {
                    fnum = psplit[0] + dec + psplit[1];
                }
            }

            return (neg ? '-' : '') + format.replace(/[\d,?\.?]+/, fnum);
        },

        /**
         * Returns a number rendering function that can be reused to apply a number format multiple times efficiently
         * @param {String} format Any valid number format string for {@link #number}
         * @return {Function} The number formatting function
         */
        numberRenderer : function(format) {
            return function(v) {
                return Ext.util.Format.number(v, format);
            };
        },

        /**
         * Selectively do a plural form of a word based on a numeric value. For example, in a template,
         * {commentCount:plural("Comment")}  would result in "1 Comment" if commentCount was 1 or would be "x Comments"
         * if the value is 0 or greater than 1.
         * @param {Number} value The value to compare against
         * @param {String} singular The singular form of the word
         * @param {String} plural (optional) The plural form of the word (defaults to the singular with an "s")
         */
        plural : function(v, s, p) {
            return v +' ' + (v == 1 ? s : (p ? p : s+'s'));
        },

        /**
         * Converts newline characters to the HTML tag <br/>
         * @param {String} The string value to format.
         * @return {String} The string with embedded <br/> tags in place of newlines.
         */
        nl2br : function(v) {
            return Ext.isEmpty(v) ? '' : v.replace(nl2brRe, '
    ');
        }
    };
}();
/**
 * @class Ext.XTemplate
 * @extends Ext.Template
 * 
    A template class that supports advanced functionality like:
      
 * 
    • Autofilling arrays using templates and sub-templates
      • 
 * 
    • Conditional processing with basic comparison operators
      • 
 * 
    • Basic math function support
      • 
 * 
    • Execute arbitrary inline code with special built-in template variables
      • 
 * 
    • Custom member functions
      • 
 * 
    • Many special tags and built-in operators that aren't defined as part of
 * the API, but are supported in the templates that can be created
      • 
 * 
    
 * 
    XTemplate provides the templating mechanism built into:
      
 * 
    • {@link Ext.DataView}
      • 
 * 
    • {@link Ext.ListView}
      • 
 * 
    • {@link Ext.form.ComboBox}
      • 
 * 
    • {@link Ext.grid.TemplateColumn}
      • 
 * 
    • {@link Ext.grid.GroupingView}
      • 
 * 
    • {@link Ext.menu.Item}
      • 
 * 
    • {@link Ext.layout.MenuLayout}
      • 
 * 
    • {@link Ext.ColorPalette}
      • 
 * 
    
 *
 * 
    For example usage {@link #XTemplate see the constructor}.
    
 *
 * @constructor
 * The {@link Ext.Template#Template Ext.Template constructor} describes
 * the acceptable parameters to pass to the constructor. The following
 * examples demonstrate all of the supported features.
    
 *
 * 
      
 *
 * 
    • Sample Data
 * 
      
 * 
      This is the data object used for reference in each code example:
      
 * 
      
var data = {
    name: 'Jack Slocum',
    title: 'Lead Developer',
    company: 'Ext JS, LLC',
    email: 'jack@extjs.com',
    address: '4 Red Bulls Drive',
    city: 'Cleveland',
    state: 'Ohio',
    zip: '44102',
    drinks: ['Red Bull', 'Coffee', 'Water'],
    kids: [{
        name: 'Sara Grace',
        age:3
    },{
        name: 'Zachary',
        age:2
    },{
        name: 'John James',
        age:0
    }]
};
 * 
      
 * 
      
 * 
      • 
 *
 *
 * 
    • Auto filling of arrays
 * 
      
 * 
      The tpl tag and the for operator are used
 * to process the provided data object:
 * 
        
 * 
      • If the value specified in for is an array, it will auto-fill,
 * repeating the template block inside the tpl tag for each item in the
 * array.
        • 
 * 
      • If for="." is specified, the data object provided is examined.
        • 
 * 
      • While processing an array, the special variable {#}
 * will provide the current array index + 1 (starts at 1, not 0).
        • 
 * 
      
 * 
      
 * 
      
<tpl for=".">...</tpl>       // loop through array at root node
<tpl for="foo">...</tpl>     // loop through array at foo node
<tpl for="foo.bar">...</tpl> // loop through array at foo.bar node
 * 
      
 * Using the sample data above:
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Kids: ',
    '<tpl for=".">',       // process the data.kids node
        '<p>{#}. {name}</p>',  // use current array index to autonumber
    '</tpl></p>'
);
tpl.overwrite(panel.body, data.kids); // pass the kids property of the data object
 * 
      
 * 
      An example illustrating how the for property can be leveraged
 * to access specified members of the provided data object to populate the template:
      
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Name: {name}</p>',
    '<p>Title: {title}</p>',
    '<p>Company: {company}</p>',
    '<p>Kids: ',
    '<tpl for="kids">',     // interrogate the kids property within the data
        '<p>{name}</p>',
    '</tpl></p>'
);
tpl.overwrite(panel.body, data);  // pass the root node of the data object
 * 
      
 * 
      Flat arrays that contain values (and not objects) can be auto-rendered
 * using the special {.} variable inside a loop.  This variable
 * will represent the value of the array at the current index:
      
 * 
      
var tpl = new Ext.XTemplate(
    '<p>{name}\'s favorite beverages:</p>',
    '<tpl for="drinks">',
       '<div> - {.}</div>',
    '</tpl>'
);
tpl.overwrite(panel.body, data);
 * 
      
 * 
      When processing a sub-template, for example while looping through a child array,
 * you can access the parent object's members via the parent object:
      
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Name: {name}</p>',
    '<p>Kids: ',
    '<tpl for="kids">',
        '<tpl if="age > 1">',
            '<p>{name}</p>',
            '<p>Dad: {parent.name}</p>',
        '</tpl>',
    '</tpl></p>'
);
tpl.overwrite(panel.body, data);
 * 
      
 * 
      
 * 
      • 
 *
 *
 * 
    • Conditional processing with basic comparison operators
 * 
      
 * 
      The tpl tag and the if operator are used
 * to provide conditional checks for deciding whether or not to render specific
 * parts of the template. Notes:
        
 * 
      • Double quotes must be encoded if used within the conditional
        • 
 * 
      • There is no else operator — if needed, two opposite
 * if statements should be used.
        • 
 * 
      
 * 
      
<tpl if="age > 1 && age < 10">Child</tpl>
<tpl if="age >= 10 && age < 18">Teenager</tpl>
<tpl if="this.isGirl(name)">...</tpl>
<tpl if="id==\'download\'">...</tpl>
<tpl if="needsIcon"><img src="{icon}" class="{iconCls}"/></tpl>
// no good:
<tpl if="name == "Jack"">Hello</tpl>
// encode " if it is part of the condition, e.g.
<tpl if="name == &quot;Jack&quot;">Hello</tpl>
 * 
      
 * Using the sample data above:
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Name: {name}</p>',
    '<p>Kids: ',
    '<tpl for="kids">',
        '<tpl if="age > 1">',
            '<p>{name}</p>',
        '</tpl>',
    '</tpl></p>'
);
tpl.overwrite(panel.body, data);
 * 
      
 * 
      
 * 
      • 
 *
 *
 * 
    • Basic math support
 * 
      
 * 
      The following basic math operators may be applied directly on numeric
 * data values:
       * + - * /
 * 
      
 * For example:
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Name: {name}</p>',
    '<p>Kids: ',
    '<tpl for="kids">',
        '<tpl if="age &gt; 1">',  // <-- Note that the > is encoded
            '<p>{#}: {name}</p>',  // <-- Auto-number each item
            '<p>In 5 Years: {age+5}</p>',  // <-- Basic math
            '<p>Dad: {parent.name}</p>',
        '</tpl>',
    '</tpl></p>'
);
tpl.overwrite(panel.body, data);

      
 * 
      
 * 
      • 
 *
 *
 * 
    • Execute arbitrary inline code with special built-in template variables
 * 
      
 * 
      Anything between {[ ... ]} is considered code to be executed
 * in the scope of the template. There are some special variables available in that code:
 * 
        
 * 
      • values: The values in the current scope. If you are using
 * scope changing sub-templates, you can change what values is.
        • 
 * 
      • parent: The scope (values) of the ancestor template.
        • 
 * 
      • xindex: If you are in a looping template, the index of the
 * loop you are in (1-based).
        • 
 * 
      • xcount: If you are in a looping template, the total length
 * of the array you are looping.
        • 
 * 
      • fm: An alias for Ext.util.Format.
        • 
 * 
      
 * This example demonstrates basic row striping using an inline code block and the
 * xindex variable:
      
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Name: {name}</p>',
    '<p>Company: {[values.company.toUpperCase() + ", " + values.title]}</p>',
    '<p>Kids: ',
    '<tpl for="kids">',
       '<div class="{[xindex % 2 === 0 ? "even" : "odd"]}">',
        '{name}',
        '</div>',
    '</tpl></p>'
);
tpl.overwrite(panel.body, data);
 * 
      
 * 
      
 * 
      • 
 *
 * 
    • Template member functions
 * 
      
 * 
      One or more member functions can be specified in a configuration
 * object passed into the XTemplate constructor for more complex processing:
      
 * 
      
var tpl = new Ext.XTemplate(
    '<p>Name: {name}</p>',
    '<p>Kids: ',
    '<tpl for="kids">',
        '<tpl if="this.isGirl(name)">',
            '<p>Girl: {name} - {age}</p>',
        '</tpl>',
        // use opposite if statement to simulate 'else' processing:
        '<tpl if="this.isGirl(name) == false">',
            '<p>Boy: {name} - {age}</p>',
        '</tpl>',
        '<tpl if="this.isBaby(age)">',
            '<p>{name} is a baby!</p>',
        '</tpl>',
    '</tpl></p>',
    {
        // XTemplate configuration:
        compiled: true,
        disableFormats: true,
        // member functions:
        isGirl: function(name){
            return name == 'Sara Grace';
        },
        isBaby: function(age){
            return age < 1;
        }
    }
);
tpl.overwrite(panel.body, data);
 * 
      
 * 
      
 * 
      • 
 *
 * 
    
 *
 * @param {Mixed} config
 */
Ext.XTemplate = function(){
    Ext.XTemplate.superclass.constructor.apply(this, arguments);

    var me = this,
        s = me.html,
        re = /]*>((?:(?=([^<]+))\2|<(?!tpl\b[^>]*>))*?)<\/tpl>/,
        nameRe = /^]*?for="(.*?)"/,
        ifRe = /^]*?if="(.*?)"/,
        execRe = /^]*?exec="(.*?)"/,
        m,
        id = 0,
        tpls = [],
        VALUES = 'values',
        PARENT = 'parent',
        XINDEX = 'xindex',
        XCOUNT = 'xcount',
        RETURN = 'return ',
        WITHVALUES = 'with(values){ ';

    s = ['', s, ''].join('');

    while((m = s.match(re))){
        var m2 = m[0].match(nameRe),
            m3 = m[0].match(ifRe),
            m4 = m[0].match(execRe),
            exp = null,
            fn = null,
            exec = null,
            name = m2 && m2[1] ? m2[1] : '';

       if (m3) {
           exp = m3 && m3[1] ? m3[1] : null;
           if(exp){
               fn = new Function(VALUES, PARENT, XINDEX, XCOUNT, WITHVALUES + RETURN +(Ext.util.Format.htmlDecode(exp))+'; }');
           }
       }
       if (m4) {
           exp = m4 && m4[1] ? m4[1] : null;
           if(exp){
               exec = new Function(VALUES, PARENT, XINDEX, XCOUNT, WITHVALUES +(Ext.util.Format.htmlDecode(exp))+'; }');
           }
       }
       if(name){
           switch(name){
               case '.': name = new Function(VALUES, PARENT, WITHVALUES + RETURN + VALUES + '; }'); break;
               case '..': name = new Function(VALUES, PARENT, WITHVALUES + RETURN + PARENT + '; }'); break;
               default: name = new Function(VALUES, PARENT, WITHVALUES + RETURN + name + '; }');
           }
       }
       tpls.push({
            id: id,
            target: name,
            exec: exec,
            test: fn,
            body: m[1]||''
        });
       s = s.replace(m[0], '{xtpl'+ id + '}');
       ++id;
    }
    for(var i = tpls.length-1; i >= 0; --i){
        me.compileTpl(tpls[i]);
    }
    me.master = tpls[tpls.length-1];
    me.tpls = tpls;
};
Ext.extend(Ext.XTemplate, Ext.Template, {
    // private
    re : /\{([\w\-\.\#]+)(?:\:([\w\.]*)(?:\((.*?)?\))?)?(\s?[\+\-\*\\]\s?[\d\.\+\-\*\\\(\)]+)?\}/g,
    // private
    codeRe : /\{\[((?:\\\]|.|\n)*?)\]\}/g,

    // private
    applySubTemplate : function(id, values, parent, xindex, xcount){
        var me = this,
            len,
            t = me.tpls[id],
            vs,
            buf = [];
        if ((t.test && !t.test.call(me, values, parent, xindex, xcount)) ||
            (t.exec && t.exec.call(me, values, parent, xindex, xcount))) {
            return '';
        }
        vs = t.target ? t.target.call(me, values, parent) : values;
        len = vs.length;
        parent = t.target ? values : parent;
        if(t.target && Ext.isArray(vs)){
            for(var i = 0, len = vs.length; i < len; i++){
                buf[buf.length] = t.compiled.call(me, vs[i], parent, i+1, len);
            }
            return buf.join('');
        }
        return t.compiled.call(me, vs, parent, xindex, xcount);
    },

    // private
    compileTpl : function(tpl){
        var fm = Ext.util.Format,
            useF = this.disableFormats !== true,
            sep = Ext.isGecko ? "+" : ",",
            body;

        function fn(m, name, format, args, math){
            if(name.substr(0, 4) == 'xtpl'){
                return "'"+ sep +'this.applySubTemplate('+name.substr(4)+', values, parent, xindex, xcount)'+sep+"'";
            }
            var v;
            if(name === '.'){
                v = 'values';
            }else if(name === '#'){
                v = 'xindex';
            }else if(name.indexOf('.') != -1){
                v = name;
            }else{
                v = "values['" + name + "']";
            }
            if(math){
                v = '(' + v + math + ')';
            }
            if (format && useF) {
                args = args ? ',' + args : "";
                if(format.substr(0, 5) != "this."){
                    format = "fm." + format + '(';
                }else{
                    format = 'this.call("'+ format.substr(5) + '", ';
                    args = ", values";
                }
            } else {
                args= ''; format = "("+v+" === undefined ? '' : ";
            }
            return "'"+ sep + format + v + args + ")"+sep+"'";
        }

        function codeFn(m, code){
            // Single quotes get escaped when the template is compiled, however we want to undo this when running code.
            return "'" + sep + '(' + code.replace(/\\'/g, "'") + ')' + sep + "'";
        }

        // branched to use + in gecko and [].join() in others
        if(Ext.isGecko){
            body = "tpl.compiled = function(values, parent, xindex, xcount){ return '" +
                   tpl.body.replace(/(\r\n|\n)/g, '\\n').replace(/'/g, "\\'").replace(this.re, fn).replace(this.codeRe, codeFn) +
                    "';};";
        }else{
            body = ["tpl.compiled = function(values, parent, xindex, xcount){ return ['"];
            body.push(tpl.body.replace(/(\r\n|\n)/g, '\\n').replace(/'/g, "\\'").replace(this.re, fn).replace(this.codeRe, codeFn));
            body.push("'].join('');};");
            body = body.join('');
        }
        eval(body);
        return this;
    },

    /**
     * Returns an HTML fragment of this template with the specified values applied.
     * @param {Object} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'})
     * @return {String} The HTML fragment
     */
    applyTemplate : function(values){
        return this.master.compiled.call(this, values, {}, 1, 1);
    },

    /**
     * Compile the template to a function for optimized performance.  Recommended if the template will be used frequently.
     * @return {Function} The compiled function
     */
    compile : function(){return this;}

    /**
     * @property re
     * @hide
     */
    /**
     * @property disableFormats
     * @hide
     */
    /**
     * @method set
     * @hide
     */

});
/**
 * Alias for {@link #applyTemplate}
 * Returns an HTML fragment of this template with the specified values applied.
 * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'})
 * @return {String} The HTML fragment
 * @member Ext.XTemplate
 * @method apply
 */
Ext.XTemplate.prototype.apply = Ext.XTemplate.prototype.applyTemplate;

/**
 * Creates a template from the passed element's value (display:none textarea, preferred) or innerHTML.
 * @param {String/HTMLElement} el A DOM element or its id
 * @return {Ext.Template} The created template
 * @static
 */
Ext.XTemplate.from = function(el){
    el = Ext.getDom(el);
    return new Ext.XTemplate(el.value || el.innerHTML);
};
/**
 * @class Ext.util.CSS
 * Utility class for manipulating CSS rules
 * @singleton
 */
Ext.util.CSS = function(){
	var rules = null;
   	var doc = document;

    var camelRe = /(-[a-z])/gi;
    var camelFn = function(m, a){ return a.charAt(1).toUpperCase(); };

   return {
   /**
    * Creates a stylesheet from a text blob of rules.
    * These rules will be wrapped in a STYLE tag and appended to the HEAD of the document.
    * @param {String} cssText The text containing the css rules
    * @param {String} id An id to add to the stylesheet for later removal
    * @return {StyleSheet}
    */
   createStyleSheet : function(cssText, id){
       var ss;
       var head = doc.getElementsByTagName("head")[0];
       var rules = doc.createElement("style");
       rules.setAttribute("type", "text/css");
       if(id){
           rules.setAttribute("id", id);
       }
       if(Ext.isIE){
           head.appendChild(rules);
           ss = rules.styleSheet;
           ss.cssText = cssText;
       }else{
           try{
                rules.appendChild(doc.createTextNode(cssText));
           }catch(e){
               rules.cssText = cssText;
           }
           head.appendChild(rules);
           ss = rules.styleSheet ? rules.styleSheet : (rules.sheet || doc.styleSheets[doc.styleSheets.length-1]);
       }
       this.cacheStyleSheet(ss);
       return ss;
   },

   /**
    * Removes a style or link tag by id
    * @param {String} id The id of the tag
    */
   removeStyleSheet : function(id){
       var existing = doc.getElementById(id);
       if(existing){
           existing.parentNode.removeChild(existing);
       }
   },

   /**
    * Dynamically swaps an existing stylesheet reference for a new one
    * @param {String} id The id of an existing link tag to remove
    * @param {String} url The href of the new stylesheet to include
    */
   swapStyleSheet : function(id, url){
       this.removeStyleSheet(id);
       var ss = doc.createElement("link");
       ss.setAttribute("rel", "stylesheet");
       ss.setAttribute("type", "text/css");
       ss.setAttribute("id", id);
       ss.setAttribute("href", url);
       doc.getElementsByTagName("head")[0].appendChild(ss);
   },
   
   /**
    * Refresh the rule cache if you have dynamically added stylesheets
    * @return {Object} An object (hash) of rules indexed by selector
    */
   refreshCache : function(){
       return this.getRules(true);
   },

   // private
   cacheStyleSheet : function(ss){
       if(!rules){
           rules = {};
       }
       try{// try catch for cross domain access issue
           var ssRules = ss.cssRules || ss.rules;
           for(var j = ssRules.length-1; j >= 0; --j){
               rules[ssRules[j].selectorText.toLowerCase()] = ssRules[j];
           }
       }catch(e){}
   },
   
   /**
    * Gets all css rules for the document
    * @param {Boolean} refreshCache true to refresh the internal cache
    * @return {Object} An object (hash) of rules indexed by selector
    */
   getRules : function(refreshCache){
   		if(rules === null || refreshCache){
   			rules = {};
   			var ds = doc.styleSheets;
   			for(var i =0, len = ds.length; i < len; i++){
   			    try{
    		        this.cacheStyleSheet(ds[i]);
    		    }catch(e){} 
	        }
   		}
   		return rules;
   	},
   	
   	/**
    * Gets an an individual CSS rule by selector(s)
    * @param {String/Array} selector The CSS selector or an array of selectors to try. The first selector that is found is returned.
    * @param {Boolean} refreshCache true to refresh the internal cache if you have recently updated any rules or added styles dynamically
    * @return {CSSRule} The CSS rule or null if one is not found
    */
   getRule : function(selector, refreshCache){
   		var rs = this.getRules(refreshCache);
   		if(!Ext.isArray(selector)){
   		    return rs[selector.toLowerCase()];
   		}
   		for(var i = 0; i < selector.length; i++){
			if(rs[selector[i]]){
				return rs[selector[i].toLowerCase()];
			}
		}
		return null;
   	},
   	
   	
   	/**
    * Updates a rule property
    * @param {String/Array} selector If it's an array it tries each selector until it finds one. Stops immediately once one is found.
    * @param {String} property The css property
    * @param {String} value The new value for the property
    * @return {Boolean} true If a rule was found and updated
    */
   updateRule : function(selector, property, value){
   		if(!Ext.isArray(selector)){
   			var rule = this.getRule(selector);
   			if(rule){
   				rule.style[property.replace(camelRe, camelFn)] = value;
   				return true;
   			}
   		}else{
   			for(var i = 0; i < selector.length; i++){
   				if(this.updateRule(selector[i], property, value)){
   					return true;
   				}
   			}
   		}
   		return false;
   	}
   };	
}();/**
 @class Ext.util.ClickRepeater
 @extends Ext.util.Observable

 A wrapper class which can be applied to any element. Fires a "click" event while the
 mouse is pressed. The interval between firings may be specified in the config but
 defaults to 20 milliseconds.

 Optionally, a CSS class may be applied to the element during the time it is pressed.

 @cfg {Mixed} el The element to act as a button.
 @cfg {Number} delay The initial delay before the repeating event begins firing.
 Similar to an autorepeat key delay.
 @cfg {Number} interval The interval between firings of the "click" event. Default 20 ms.
 @cfg {String} pressClass A CSS class name to be applied to the element while pressed.
 @cfg {Boolean} accelerate True if autorepeating should start slowly and accelerate.
           "interval" and "delay" are ignored.
 @cfg {Boolean} preventDefault True to prevent the default click event
 @cfg {Boolean} stopDefault True to stop the default click event

 @history
    2007-02-02 jvs Original code contributed by Nige "Animal" White
    2007-02-02 jvs Renamed to ClickRepeater
    2007-02-03 jvs Modifications for FF Mac and Safari

 @constructor
 @param {Mixed} el The element to listen on
 @param {Object} config
 */
Ext.util.ClickRepeater = Ext.extend(Ext.util.Observable, {
    
    constructor : function(el, config){
        this.el = Ext.get(el);
        this.el.unselectable();

        Ext.apply(this, config);

        this.addEvents(
        /**
         * @event mousedown
         * Fires when the mouse button is depressed.
         * @param {Ext.util.ClickRepeater} this
         * @param {Ext.EventObject} e
         */
        "mousedown",
        /**
         * @event click
         * Fires on a specified interval during the time the element is pressed.
         * @param {Ext.util.ClickRepeater} this
         * @param {Ext.EventObject} e
         */
        "click",
        /**
         * @event mouseup
         * Fires when the mouse key is released.
         * @param {Ext.util.ClickRepeater} this
         * @param {Ext.EventObject} e
         */
        "mouseup"
        );

        if(!this.disabled){
            this.disabled = true;
            this.enable();
        }

        // allow inline handler
        if(this.handler){
            this.on("click", this.handler,  this.scope || this);
        }

        Ext.util.ClickRepeater.superclass.constructor.call(this);        
    },
    
    interval : 20,
    delay: 250,
    preventDefault : true,
    stopDefault : false,
    timer : 0,

    /**
     * Enables the repeater and allows events to fire.
     */
    enable: function(){
        if(this.disabled){
            this.el.on('mousedown', this.handleMouseDown, this);
            if (Ext.isIE){
                this.el.on('dblclick', this.handleDblClick, this);
            }
            if(this.preventDefault || this.stopDefault){
                this.el.on('click', this.eventOptions, this);
            }
        }
        this.disabled = false;
    },

    /**
     * Disables the repeater and stops events from firing.
     */
    disable: function(/* private */ force){
        if(force || !this.disabled){
            clearTimeout(this.timer);
            if(this.pressClass){
                this.el.removeClass(this.pressClass);
            }
            Ext.getDoc().un('mouseup', this.handleMouseUp, this);
            this.el.removeAllListeners();
        }
        this.disabled = true;
    },

    /**
     * Convenience function for setting disabled/enabled by boolean.
     * @param {Boolean} disabled
     */
    setDisabled: function(disabled){
        this[disabled ? 'disable' : 'enable']();
    },

    eventOptions: function(e){
        if(this.preventDefault){
            e.preventDefault();
        }
        if(this.stopDefault){
            e.stopEvent();
        }
    },

    // private
    destroy : function() {
        this.disable(true);
        Ext.destroy(this.el);
        this.purgeListeners();
    },

    handleDblClick : function(e){
        clearTimeout(this.timer);
        this.el.blur();

        this.fireEvent("mousedown", this, e);
        this.fireEvent("click", this, e);
    },

    // private
    handleMouseDown : function(e){
        clearTimeout(this.timer);
        this.el.blur();
        if(this.pressClass){
            this.el.addClass(this.pressClass);
        }
        this.mousedownTime = new Date();

        Ext.getDoc().on("mouseup", this.handleMouseUp, this);
        this.el.on("mouseout", this.handleMouseOut, this);

        this.fireEvent("mousedown", this, e);
        this.fireEvent("click", this, e);

        // Do not honor delay or interval if acceleration wanted.
        if (this.accelerate) {
            this.delay = 400;
        }
        this.timer = this.click.defer(this.delay || this.interval, this, [e]);
    },

    // private
    click : function(e){
        this.fireEvent("click", this, e);
        this.timer = this.click.defer(this.accelerate ?
            this.easeOutExpo(this.mousedownTime.getElapsed(),
                400,
                -390,
                12000) :
            this.interval, this, [e]);
    },

    easeOutExpo : function (t, b, c, d) {
        return (t==d) ? b+c : c * (-Math.pow(2, -10 * t/d) + 1) + b;
    },

    // private
    handleMouseOut : function(){
        clearTimeout(this.timer);
        if(this.pressClass){
            this.el.removeClass(this.pressClass);
        }
        this.el.on("mouseover", this.handleMouseReturn, this);
    },

    // private
    handleMouseReturn : function(){
        this.el.un("mouseover", this.handleMouseReturn, this);
        if(this.pressClass){
            this.el.addClass(this.pressClass);
        }
        this.click();
    },

    // private
    handleMouseUp : function(e){
        clearTimeout(this.timer);
        this.el.un("mouseover", this.handleMouseReturn, this);
        this.el.un("mouseout", this.handleMouseOut, this);
        Ext.getDoc().un("mouseup", this.handleMouseUp, this);
        this.el.removeClass(this.pressClass);
        this.fireEvent("mouseup", this, e);
    }
});/**
 * @class Ext.KeyNav
 * 
    Provides a convenient wrapper for normalized keyboard navigation.  KeyNav allows you to bind
 * navigation keys to function calls that will get called when the keys are pressed, providing an easy
 * way to implement custom navigation schemes for any UI component.
    
 * 
    The following are all of the possible keys that can be implemented: enter, left, right, up, down, tab, esc,
 * pageUp, pageDown, del, home, end.  Usage:
    
 
    
var nav = new Ext.KeyNav("my-element", {
    "left" : function(e){
        this.moveLeft(e.ctrlKey);
    },
    "right" : function(e){
        this.moveRight(e.ctrlKey);
    },
    "enter" : function(e){
        this.save();
    },
    scope : this
});

    
 * @constructor
 * @param {Mixed} el The element to bind to
 * @param {Object} config The config
 */
Ext.KeyNav = function(el, config){
    this.el = Ext.get(el);
    Ext.apply(this, config);
    if(!this.disabled){
        this.disabled = true;
        this.enable();
    }
};

Ext.KeyNav.prototype = {
    /**
     * @cfg {Boolean} disabled
     * True to disable this KeyNav instance (defaults to false)
     */
    disabled : false,
    /**
     * @cfg {String} defaultEventAction
     * The method to call on the {@link Ext.EventObject} after this KeyNav intercepts a key.  Valid values are
     * {@link Ext.EventObject#stopEvent}, {@link Ext.EventObject#preventDefault} and
     * {@link Ext.EventObject#stopPropagation} (defaults to 'stopEvent')
     */
    defaultEventAction: "stopEvent",
    /**
     * @cfg {Boolean} forceKeyDown
     * Handle the keydown event instead of keypress (defaults to false).  KeyNav automatically does this for IE since
     * IE does not propagate special keys on keypress, but setting this to true will force other browsers to also
     * handle keydown instead of keypress.
     */
    forceKeyDown : false,

    // private
    relay : function(e){
        var k = e.getKey(),
            h = this.keyToHandler[k];
        if(h && this[h]){
            if(this.doRelay(e, this[h], h) !== true){
                e[this.defaultEventAction]();
            }
        }
    },

    // private
    doRelay : function(e, h, hname){
        return h.call(this.scope || this, e, hname);
    },

    // possible handlers
    enter : false,
    left : false,
    right : false,
    up : false,
    down : false,
    tab : false,
    esc : false,
    pageUp : false,
    pageDown : false,
    del : false,
    home : false,
    end : false,
    space : false,

    // quick lookup hash
    keyToHandler : {
        37 : "left",
        39 : "right",
        38 : "up",
        40 : "down",
        33 : "pageUp",
        34 : "pageDown",
        46 : "del",
        36 : "home",
        35 : "end",
        13 : "enter",
        27 : "esc",
        9  : "tab",
        32 : "space"
    },
    
    stopKeyUp: function(e) {
        var k = e.getKey();

        if (k >= 37 && k <= 40) {
            // *** bugfix - safari 2.x fires 2 keyup events on cursor keys
            // *** (note: this bugfix sacrifices the "keyup" event originating from keyNav elements in Safari 2)
            e.stopEvent();
        }
    },
    
    /**
     * Destroy this KeyNav (this is the same as calling disable).
     */
    destroy: function(){
        this.disable();    
    },

	/**
	 * Enable this KeyNav
	 */
	enable: function() {
        if (this.disabled) {
            if (Ext.isSafari2) {
                // call stopKeyUp() on "keyup" event
                this.el.on('keyup', this.stopKeyUp, this);
            }

            this.el.on(this.isKeydown()? 'keydown' : 'keypress', this.relay, this);
            this.disabled = false;
        }
    },

	/**
	 * Disable this KeyNav
	 */
	disable: function() {
        if (!this.disabled) {
            if (Ext.isSafari2) {
                // remove "keyup" event handler
                this.el.un('keyup', this.stopKeyUp, this);
            }

            this.el.un(this.isKeydown()? 'keydown' : 'keypress', this.relay, this);
            this.disabled = true;
        }
    },
    
    /**
     * Convenience function for setting disabled/enabled by boolean.
     * @param {Boolean} disabled
     */
    setDisabled : function(disabled){
        this[disabled ? "disable" : "enable"]();
    },
    
    // private
    isKeydown: function(){
        return this.forceKeyDown || Ext.EventManager.useKeydown;
    }
};
/**
 * @class Ext.KeyMap
 * Handles mapping keys to actions for an element. One key map can be used for multiple actions.
 * The constructor accepts the same config object as defined by {@link #addBinding}.
 * If you bind a callback function to a KeyMap, anytime the KeyMap handles an expected key
 * combination it will call the function with this signature (if the match is a multi-key
 * combination the callback will still be called only once): (String key, Ext.EventObject e)
 * A KeyMap can also handle a string representation of keys.
    
 * Usage:
 
    
// map one key by key code
var map = new Ext.KeyMap("my-element", {
    key: 13, // or Ext.EventObject.ENTER
    fn: myHandler,
    scope: myObject
});

// map multiple keys to one action by string
var map = new Ext.KeyMap("my-element", {
    key: "a\r\n\t",
    fn: myHandler,
    scope: myObject
});

// map multiple keys to multiple actions by strings and array of codes
var map = new Ext.KeyMap("my-element", [
    {
        key: [10,13],
        fn: function(){ alert("Return was pressed"); }
    }, {
        key: "abc",
        fn: function(){ alert('a, b or c was pressed'); }
    }, {
        key: "\t",
        ctrl:true,
        shift:true,
        fn: function(){ alert('Control + shift + tab was pressed.'); }
    }
]);

    
 * Note: A KeyMap starts enabled
 * @constructor
 * @param {Mixed} el The element to bind to
 * @param {Object} config The config (see {@link #addBinding})
 * @param {String} eventName (optional) The event to bind to (defaults to "keydown")
 */
Ext.KeyMap = function(el, config, eventName){
    this.el  = Ext.get(el);
    this.eventName = eventName || "keydown";
    this.bindings = [];
    if(config){
        this.addBinding(config);
    }
    this.enable();
};

Ext.KeyMap.prototype = {
    /**
     * True to stop the event from bubbling and prevent the default browser action if the
     * key was handled by the KeyMap (defaults to false)
     * @type Boolean
     */
    stopEvent : false,

    /**
     * Add a new binding to this KeyMap. The following config object properties are supported:
     * 
    Property    Type             Description
----------  ---------------  ----------------------------------------------------------------------
key         String/Array     A single keycode or an array of keycodes to handle
shift       Boolean          True to handle key only when shift is pressed, False to handle the key only when shift is not pressed (defaults to undefined)
ctrl        Boolean          True to handle key only when ctrl is pressed, False to handle the key only when ctrl is not pressed (defaults to undefined)
alt         Boolean          True to handle key only when alt is pressed, False to handle the key only when alt is not pressed (defaults to undefined)
handler     Function         The function to call when KeyMap finds the expected key combination
fn          Function         Alias of handler (for backwards-compatibility)
scope       Object           The scope of the callback function
stopEvent   Boolean          True to stop the event from bubbling and prevent the default browser action if the key was handled by the KeyMap (defaults to false)

    
     *
     * Usage:
     * 
    
// Create a KeyMap
var map = new Ext.KeyMap(document, {
    key: Ext.EventObject.ENTER,
    fn: handleKey,
    scope: this
});

//Add a new binding to the existing KeyMap later
map.addBinding({
    key: 'abc',
    shift: true,
    fn: handleKey,
    scope: this
});

    
     * @param {Object/Array} config A single KeyMap config or an array of configs
     */
	addBinding : function(config){
        if(Ext.isArray(config)){
            Ext.each(config, function(c){
                this.addBinding(c);
            }, this);
            return;
        }
        var keyCode = config.key,
            fn = config.fn || config.handler,
            scope = config.scope;

	if (config.stopEvent) {
	    this.stopEvent = config.stopEvent;    
	}	

        if(typeof keyCode == "string"){
            var ks = [];
            var keyString = keyCode.toUpperCase();
            for(var j = 0, len = keyString.length; j < len; j++){
                ks.push(keyString.charCodeAt(j));
            }
            keyCode = ks;
        }
        var keyArray = Ext.isArray(keyCode);
        
        var handler = function(e){
            if(this.checkModifiers(config, e)){
                var k = e.getKey();
                if(keyArray){
                    for(var i = 0, len = keyCode.length; i < len; i++){
                        if(keyCode[i] == k){
                          if(this.stopEvent){
                              e.stopEvent();
                          }
                          fn.call(scope || window, k, e);
                          return;
                        }
                    }
                }else{
                    if(k == keyCode){
                        if(this.stopEvent){
                           e.stopEvent();
                        }
                        fn.call(scope || window, k, e);
                    }
                }
            }
        };
        this.bindings.push(handler);
	},
    
    // private
    checkModifiers: function(config, e){
        var val, key, keys = ['shift', 'ctrl', 'alt'];
        for (var i = 0, len = keys.length; i < len; ++i){
            key = keys[i];
            val = config[key];
            if(!(val === undefined || (val === e[key + 'Key']))){
                return false;
            }
        }
        return true;
    },

    /**
     * Shorthand for adding a single key listener
     * @param {Number/Array/Object} key Either the numeric key code, array of key codes or an object with the
     * following options:
     * {key: (number or array), shift: (true/false), ctrl: (true/false), alt: (true/false)}
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the browser window.
     */
    on : function(key, fn, scope){
        var keyCode, shift, ctrl, alt;
        if(typeof key == "object" && !Ext.isArray(key)){
            keyCode = key.key;
            shift = key.shift;
            ctrl = key.ctrl;
            alt = key.alt;
        }else{
            keyCode = key;
        }
        this.addBinding({
            key: keyCode,
            shift: shift,
            ctrl: ctrl,
            alt: alt,
            fn: fn,
            scope: scope
        });
    },

    // private
    handleKeyDown : function(e){
	    if(this.enabled){ //just in case
    	    var b = this.bindings;
    	    for(var i = 0, len = b.length; i < len; i++){
    	        b[i].call(this, e);
    	    }
	    }
	},

	/**
	 * Returns true if this KeyMap is enabled
	 * @return {Boolean}
	 */
	isEnabled : function(){
	    return this.enabled;
	},

	/**
	 * Enables this KeyMap
	 */
	enable: function(){
		if(!this.enabled){
		    this.el.on(this.eventName, this.handleKeyDown, this);
		    this.enabled = true;
		}
	},

	/**
	 * Disable this KeyMap
	 */
	disable: function(){
		if(this.enabled){
		    this.el.removeListener(this.eventName, this.handleKeyDown, this);
		    this.enabled = false;
		}
	},
    
    /**
     * Convenience function for setting disabled/enabled by boolean.
     * @param {Boolean} disabled
     */
    setDisabled : function(disabled){
        this[disabled ? "disable" : "enable"]();
    }
};/**
 * @class Ext.util.TextMetrics
 * Provides precise pixel measurements for blocks of text so that you can determine exactly how high and
 * wide, in pixels, a given block of text will be. Note that when measuring text, it should be plain text and
 * should not contain any HTML, otherwise it may not be measured correctly.
 * @singleton
 */
Ext.util.TextMetrics = function(){
    var shared;
    return {
        /**
         * Measures the size of the specified text
         * @param {String/HTMLElement} el The element, dom node or id from which to copy existing CSS styles
         * that can affect the size of the rendered text
         * @param {String} text The text to measure
         * @param {Number} fixedWidth (optional) If the text will be multiline, you have to set a fixed width
         * in order to accurately measure the text height
         * @return {Object} An object containing the text's size {width: (width), height: (height)}
         */
        measure : function(el, text, fixedWidth){
            if(!shared){
                shared = Ext.util.TextMetrics.Instance(el, fixedWidth);
            }
            shared.bind(el);
            shared.setFixedWidth(fixedWidth || 'auto');
            return shared.getSize(text);
        },

        /**
         * Return a unique TextMetrics instance that can be bound directly to an element and reused.  This reduces
         * the overhead of multiple calls to initialize the style properties on each measurement.
         * @param {String/HTMLElement} el The element, dom node or id that the instance will be bound to
         * @param {Number} fixedWidth (optional) If the text will be multiline, you have to set a fixed width
         * in order to accurately measure the text height
         * @return {Ext.util.TextMetrics.Instance} instance The new instance
         */
        createInstance : function(el, fixedWidth){
            return Ext.util.TextMetrics.Instance(el, fixedWidth);
        }
    };
}();

Ext.util.TextMetrics.Instance = function(bindTo, fixedWidth){
    var ml = new Ext.Element(document.createElement('div'));
    document.body.appendChild(ml.dom);
    ml.position('absolute');
    ml.setLeftTop(-1000, -1000);
    ml.hide();

    if(fixedWidth){
        ml.setWidth(fixedWidth);
    }

    var instance = {
        /**
         * 
    Only available on the instance returned from {@link #createInstance}, not on the singleton.
    
         * Returns the size of the specified text based on the internal element's style and width properties
         * @param {String} text The text to measure
         * @return {Object} An object containing the text's size {width: (width), height: (height)}
         */
        getSize : function(text){
            ml.update(text);
            var s = ml.getSize();
            ml.update('');
            return s;
        },

        /**
         * 
    Only available on the instance returned from {@link #createInstance}, not on the singleton.
    
         * Binds this TextMetrics instance to an element from which to copy existing CSS styles
         * that can affect the size of the rendered text
         * @param {String/HTMLElement} el The element, dom node or id
         */
        bind : function(el){
            ml.setStyle(
                Ext.fly(el).getStyles('font-size','font-style', 'font-weight', 'font-family','line-height', 'text-transform', 'letter-spacing')
            );
        },

        /**
         * 
    Only available on the instance returned from {@link #createInstance}, not on the singleton.
    
         * Sets a fixed width on the internal measurement element.  If the text will be multiline, you have
         * to set a fixed width in order to accurately measure the text height.
         * @param {Number} width The width to set on the element
         */
        setFixedWidth : function(width){
            ml.setWidth(width);
        },

        /**
         * 
    Only available on the instance returned from {@link #createInstance}, not on the singleton.
    
         * Returns the measured width of the specified text
         * @param {String} text The text to measure
         * @return {Number} width The width in pixels
         */
        getWidth : function(text){
            ml.dom.style.width = 'auto';
            return this.getSize(text).width;
        },

        /**
         * 
    Only available on the instance returned from {@link #createInstance}, not on the singleton.
    
         * Returns the measured height of the specified text.  For multiline text, be sure to call
         * {@link #setFixedWidth} if necessary.
         * @param {String} text The text to measure
         * @return {Number} height The height in pixels
         */
        getHeight : function(text){
            return this.getSize(text).height;
        }
    };

    instance.bind(bindTo);

    return instance;
};

Ext.Element.addMethods({
    /**
     * Returns the width in pixels of the passed text, or the width of the text in this Element.
     * @param {String} text The text to measure. Defaults to the innerHTML of the element.
     * @param {Number} min (Optional) The minumum value to return.
     * @param {Number} max (Optional) The maximum value to return.
     * @return {Number} The text width in pixels.
     * @member Ext.Element getTextWidth
     */
    getTextWidth : function(text, min, max){
        return (Ext.util.TextMetrics.measure(this.dom, Ext.value(text, this.dom.innerHTML, true)).width).constrain(min || 0, max || 1000000);
    }
});
/**
 * @class Ext.util.Cookies
 * Utility class for managing and interacting with cookies.
 * @singleton
 */
Ext.util.Cookies = {
    /**
     * Create a cookie with the specified name and value. Additional settings
     * for the cookie may be optionally specified (for example: expiration,
     * access restriction, SSL).
     * @param {String} name The name of the cookie to set. 
     * @param {Mixed} value The value to set for the cookie.
     * @param {Object} expires (Optional) Specify an expiration date the
     * cookie is to persist until.  Note that the specified Date object will
     * be converted to Greenwich Mean Time (GMT). 
     * @param {String} path (Optional) Setting a path on the cookie restricts
     * access to pages that match that path. Defaults to all pages ('/'). 
     * @param {String} domain (Optional) Setting a domain restricts access to
     * pages on a given domain (typically used to allow cookie access across
     * subdomains). For example, "extjs.com" will create a cookie that can be
     * accessed from any subdomain of extjs.com, including www.extjs.com,
     * support.extjs.com, etc.
     * @param {Boolean} secure (Optional) Specify true to indicate that the cookie
     * should only be accessible via SSL on a page using the HTTPS protocol.
     * Defaults to false. Note that this will only work if the page
     * calling this code uses the HTTPS protocol, otherwise the cookie will be
     * created with default options.
     */
    set : function(name, value){
        var argv = arguments;
        var argc = arguments.length;
        var expires = (argc > 2) ? argv[2] : null;
        var path = (argc > 3) ? argv[3] : '/';
        var domain = (argc > 4) ? argv[4] : null;
        var secure = (argc > 5) ? argv[5] : false;
        document.cookie = name + "=" + escape(value) + ((expires === null) ? "" : ("; expires=" + expires.toGMTString())) + ((path === null) ? "" : ("; path=" + path)) + ((domain === null) ? "" : ("; domain=" + domain)) + ((secure === true) ? "; secure" : "");
    },

    /**
     * Retrieves cookies that are accessible by the current page. If a cookie
     * does not exist, get() returns null.  The following
     * example retrieves the cookie called "valid" and stores the String value
     * in the variable validStatus.
     * 
    
     * var validStatus = Ext.util.Cookies.get("valid");
     * 
    
     * @param {String} name The name of the cookie to get
     * @return {Mixed} Returns the cookie value for the specified name;
     * null if the cookie name does not exist.
     */
    get : function(name){
        var arg = name + "=";
        var alen = arg.length;
        var clen = document.cookie.length;
        var i = 0;
        var j = 0;
        while(i < clen){
            j = i + alen;
            if(document.cookie.substring(i, j) == arg){
                return Ext.util.Cookies.getCookieVal(j);
            }
            i = document.cookie.indexOf(" ", i) + 1;
            if(i === 0){
                break;
            }
        }
        return null;
    },

    /**
     * Removes a cookie with the provided name from the browser
     * if found by setting its expiration date to sometime in the past. 
     * @param {String} name The name of the cookie to remove
     */
    clear : function(name){
        if(Ext.util.Cookies.get(name)){
            document.cookie = name + "=" + "; expires=Thu, 01-Jan-70 00:00:01 GMT";
        }
    },
    /**
     * @private
     */
    getCookieVal : function(offset){
        var endstr = document.cookie.indexOf(";", offset);
        if(endstr == -1){
            endstr = document.cookie.length;
        }
        return unescape(document.cookie.substring(offset, endstr));
    }
};/**
 * Framework-wide error-handler.  Developers can override this method to provide
 * custom exception-handling.  Framework errors will often extend from the base
 * Ext.Error class.
 * @param {Object/Error} e The thrown exception object.
 * @member Ext
 */
Ext.handleError = function(e) {
    throw e;
};

/**
 * @class Ext.Error
 * @extends Error
 * 
    A base error class. Future implementations are intended to provide more
 * robust error handling throughout the framework (in the debug build only)
 * to check for common errors and problems. The messages issued by this class
 * will aid error checking. Error checks will be automatically removed in the
 * production build so that performance is not negatively impacted.
    
 * 
    Some sample messages currently implemented:
    "DataProxy attempted to execute an API-action but found an undefined
url / function. Please review your Proxy url/api-configuration."
 * 
    "Could not locate your "root" property in your server response.
Please review your JsonReader config to ensure the config-property
"root" matches the property your server-response.  See the JsonReader
docs for additional assistance."
 * 
    
 * 
    An example of the code used for generating error messages:
    
try {
    generateError({
        foo: 'bar'
    });
}
catch (e) {
    console.error(e);
}
function generateError(data) {
    throw new Ext.Error('foo-error', data);
}
 * 
    
 * @param {String} message
 */
Ext.Error = function(message) {
    // Try to read the message from Ext.Error.lang
    this.message = (this.lang[message]) ? this.lang[message] : message;
};

Ext.Error.prototype = new Error();
Ext.apply(Ext.Error.prototype, {
    // protected.  Extensions place their error-strings here.
    lang: {},

    name: 'Ext.Error',
    /**
     * getName
     * @return {String}
     */
    getName : function() {
        return this.name;
    },
    /**
     * getMessage
     * @return {String}
     */
    getMessage : function() {
        return this.message;
    },
    /**
     * toJson
     * @return {String}
     */
    toJson : function() {
        return Ext.encode(this);
    }
});
/**
 * @class Ext.ComponentMgr
 * 
    Provides a registry of all Components (instances of {@link Ext.Component} or any subclass
 * thereof) on a page so that they can be easily accessed by {@link Ext.Component component}
 * {@link Ext.Component#id id} (see {@link #get}, or the convenience method {@link Ext#getCmp Ext.getCmp}).
    
 * 
    This object also provides a registry of available Component classes
 * indexed by a mnemonic code known as the Component's {@link Ext.Component#xtype xtype}.
 * The {@link Ext.Component#xtype xtype} provides a way to avoid instantiating child Components
 * when creating a full, nested config object for a complete Ext page.
    
 * 
    A child Component may be specified simply as a config object
 * as long as the correct {@link Ext.Component#xtype xtype} is specified so that if and when the Component
 * needs rendering, the correct type can be looked up for lazy instantiation.
    
 * 
    For a list of all available {@link Ext.Component#xtype xtypes}, see {@link Ext.Component}.
    
 * @singleton
 */
Ext.ComponentMgr = function(){
    var all = new Ext.util.MixedCollection();
    var types = {};
    var ptypes = {};

    return {
        /**
         * Registers a component.
         * @param {Ext.Component} c The component
         */
        register : function(c){
            all.add(c);
        },

        /**
         * Unregisters a component.
         * @param {Ext.Component} c The component
         */
        unregister : function(c){
            all.remove(c);
        },

        /**
         * Returns a component by {@link Ext.Component#id id}.
         * For additional details see {@link Ext.util.MixedCollection#get}.
         * @param {String} id The component {@link Ext.Component#id id}
         * @return Ext.Component The Component, undefined if not found, or null if a
         * Class was found.
         */
        get : function(id){
            return all.get(id);
        },

        /**
         * Registers a function that will be called when a Component with the specified id is added to ComponentMgr. This will happen on instantiation.
         * @param {String} id The component {@link Ext.Component#id id}
         * @param {Function} fn The callback function
         * @param {Object} scope The scope (this reference) in which the callback is executed. Defaults to the Component.
         */
        onAvailable : function(id, fn, scope){
            all.on("add", function(index, o){
                if(o.id == id){
                    fn.call(scope || o, o);
                    all.un("add", fn, scope);
                }
            });
        },

        /**
         * The MixedCollection used internally for the component cache. An example usage may be subscribing to
         * events on the MixedCollection to monitor addition or removal.  Read-only.
         * @type {MixedCollection}
         */
        all : all,
        
        /**
         * The xtypes that have been registered with the component manager.
         * @type {Object}
         */
        types : types,
        
        /**
         * The ptypes that have been registered with the component manager.
         * @type {Object}
         */
        ptypes: ptypes,
        
        /**
         * Checks if a Component type is registered.
         * @param {Ext.Component} xtype The mnemonic string by which the Component class may be looked up
         * @return {Boolean} Whether the type is registered.
         */
        isRegistered : function(xtype){
            return types[xtype] !== undefined;    
        },
        
        /**
         * Checks if a Plugin type is registered.
         * @param {Ext.Component} ptype The mnemonic string by which the Plugin class may be looked up
         * @return {Boolean} Whether the type is registered.
         */
        isPluginRegistered : function(ptype){
            return ptypes[ptype] !== undefined;    
        },        

        /**
         * 
    Registers a new Component constructor, keyed by a new
         * {@link Ext.Component#xtype}.
    
         * 
    Use this method (or its alias {@link Ext#reg Ext.reg}) to register new
         * subclasses of {@link Ext.Component} so that lazy instantiation may be used when specifying
         * child Components.
         * see {@link Ext.Container#items}
    
         * @param {String} xtype The mnemonic string by which the Component class may be looked up.
         * @param {Constructor} cls The new Component class.
         */
        registerType : function(xtype, cls){
            types[xtype] = cls;
            cls.xtype = xtype;
        },

        /**
         * Creates a new Component from the specified config object using the
         * config object's {@link Ext.component#xtype xtype} to determine the class to instantiate.
         * @param {Object} config A configuration object for the Component you wish to create.
         * @param {Constructor} defaultType The constructor to provide the default Component type if
         * the config object does not contain a xtype. (Optional if the config contains a xtype).
         * @return {Ext.Component} The newly instantiated Component.
         */
        create : function(config, defaultType){
            return config.render ? config : new types[config.xtype || defaultType](config);
        },

        /**
         * 
    Registers a new Plugin constructor, keyed by a new
         * {@link Ext.Component#ptype}.
    
         * 
    Use this method (or its alias {@link Ext#preg Ext.preg}) to register new
         * plugins for {@link Ext.Component}s so that lazy instantiation may be used when specifying
         * Plugins.
    
         * @param {String} ptype The mnemonic string by which the Plugin class may be looked up.
         * @param {Constructor} cls The new Plugin class.
         */
        registerPlugin : function(ptype, cls){
            ptypes[ptype] = cls;
            cls.ptype = ptype;
        },

        /**
         * Creates a new Plugin from the specified config object using the
         * config object's {@link Ext.component#ptype ptype} to determine the class to instantiate.
         * @param {Object} config A configuration object for the Plugin you wish to create.
         * @param {Constructor} defaultType The constructor to provide the default Plugin type if
         * the config object does not contain a ptype. (Optional if the config contains a ptype).
         * @return {Ext.Component} The newly instantiated Plugin.
         */
        createPlugin : function(config, defaultType){
            var PluginCls = ptypes[config.ptype || defaultType];
            if (PluginCls.init) {
                return PluginCls;                
            } else {
                return new PluginCls(config);
            }            
        }
    };
}();

/**
 * Shorthand for {@link Ext.ComponentMgr#registerType}
 * @param {String} xtype The {@link Ext.component#xtype mnemonic string} by which the Component class
 * may be looked up.
 * @param {Constructor} cls The new Component class.
 * @member Ext
 * @method reg
 */
Ext.reg = Ext.ComponentMgr.registerType; // this will be called a lot internally, shorthand to keep the bytes down
/**
 * Shorthand for {@link Ext.ComponentMgr#registerPlugin}
 * @param {String} ptype The {@link Ext.component#ptype mnemonic string} by which the Plugin class
 * may be looked up.
 * @param {Constructor} cls The new Plugin class.
 * @member Ext
 * @method preg
 */
Ext.preg = Ext.ComponentMgr.registerPlugin;
/**
 * Shorthand for {@link Ext.ComponentMgr#create}
 * Creates a new Component from the specified config object using the
 * config object's {@link Ext.component#xtype xtype} to determine the class to instantiate.
 * @param {Object} config A configuration object for the Component you wish to create.
 * @param {Constructor} defaultType The constructor to provide the default Component type if
 * the config object does not contain a xtype. (Optional if the config contains a xtype).
 * @return {Ext.Component} The newly instantiated Component.
 * @member Ext
 * @method create
 */
Ext.create = Ext.ComponentMgr.create;/**
 * @class Ext.Component
 * @extends Ext.util.Observable
 * 
    Base class for all Ext components.  All subclasses of Component may participate in the automated
 * Ext component lifecycle of creation, rendering and destruction which is provided by the {@link Ext.Container Container} class.
 * Components may be added to a Container through the {@link Ext.Container#items items} config option at the time the Container is created,
 * or they may be added dynamically via the {@link Ext.Container#add add} method.
    
 * 
    The Component base class has built-in support for basic hide/show and enable/disable behavior.
    
 * 
    All Components are registered with the {@link Ext.ComponentMgr} on construction so that they can be referenced at any time via
 * {@link Ext#getCmp}, passing the {@link #id}.
    
 * 
    All user-developed visual widgets that are required to participate in automated lifecycle and size management should subclass Component (or
 * {@link Ext.BoxComponent} if managed box model handling is required, ie height and width management).
    
 * 
    See the Creating new UI controls tutorial for details on how
 * and to either extend or augment ExtJs base classes to create custom Components.
    
 * 
    Every component has a specific xtype, which is its Ext-specific type name, along with methods for checking the
 * xtype like {@link #getXType} and {@link #isXType}. This is the list of all valid xtypes:
    
 * 
    xtype            Class
-------------    ------------------
box              {@link Ext.BoxComponent}
button           {@link Ext.Button}
buttongroup      {@link Ext.ButtonGroup}
colorpalette     {@link Ext.ColorPalette}
component        {@link Ext.Component}
container        {@link Ext.Container}
cycle            {@link Ext.CycleButton}
dataview         {@link Ext.DataView}
datepicker       {@link Ext.DatePicker}
editor           {@link Ext.Editor}
editorgrid       {@link Ext.grid.EditorGridPanel}
flash            {@link Ext.FlashComponent}
grid             {@link Ext.grid.GridPanel}
listview         {@link Ext.ListView}
multislider      {@link Ext.slider.MultiSlider}
panel            {@link Ext.Panel}
progress         {@link Ext.ProgressBar}
propertygrid     {@link Ext.grid.PropertyGrid}
slider           {@link Ext.slider.SingleSlider}
spacer           {@link Ext.Spacer}
splitbutton      {@link Ext.SplitButton}
tabpanel         {@link Ext.TabPanel}
treepanel        {@link Ext.tree.TreePanel}
viewport         {@link Ext.ViewPort}
window           {@link Ext.Window}

Toolbar components
---------------------------------------
paging           {@link Ext.PagingToolbar}
toolbar          {@link Ext.Toolbar}
tbbutton         {@link Ext.Toolbar.Button}        (deprecated; use button)
tbfill           {@link Ext.Toolbar.Fill}
tbitem           {@link Ext.Toolbar.Item}
tbseparator      {@link Ext.Toolbar.Separator}
tbspacer         {@link Ext.Toolbar.Spacer}
tbsplit          {@link Ext.Toolbar.SplitButton}   (deprecated; use splitbutton)
tbtext           {@link Ext.Toolbar.TextItem}

Menu components
---------------------------------------
menu             {@link Ext.menu.Menu}
colormenu        {@link Ext.menu.ColorMenu}
datemenu         {@link Ext.menu.DateMenu}
menubaseitem     {@link Ext.menu.BaseItem}
menucheckitem    {@link Ext.menu.CheckItem}
menuitem         {@link Ext.menu.Item}
menuseparator    {@link Ext.menu.Separator}
menutextitem     {@link Ext.menu.TextItem}

Form components
---------------------------------------
form             {@link Ext.form.FormPanel}
checkbox         {@link Ext.form.Checkbox}
checkboxgroup    {@link Ext.form.CheckboxGroup}
combo            {@link Ext.form.ComboBox}
compositefield   {@link Ext.form.CompositeField}
datefield        {@link Ext.form.DateField}
displayfield     {@link Ext.form.DisplayField}
field            {@link Ext.form.Field}
fieldset         {@link Ext.form.FieldSet}
hidden           {@link Ext.form.Hidden}
htmleditor       {@link Ext.form.HtmlEditor}
label            {@link Ext.form.Label}
numberfield      {@link Ext.form.NumberField}
radio            {@link Ext.form.Radio}
radiogroup       {@link Ext.form.RadioGroup}
textarea         {@link Ext.form.TextArea}
textfield        {@link Ext.form.TextField}
timefield        {@link Ext.form.TimeField}
trigger          {@link Ext.form.TriggerField}
twintrigger      {@link Ext.form.TwinTriggerField}

Chart components
---------------------------------------
chart            {@link Ext.chart.Chart}
barchart         {@link Ext.chart.BarChart}
cartesianchart   {@link Ext.chart.CartesianChart}
columnchart      {@link Ext.chart.ColumnChart}
linechart        {@link Ext.chart.LineChart}
piechart         {@link Ext.chart.PieChart}

Store xtypes
---------------------------------------
arraystore       {@link Ext.data.ArrayStore}
directstore      {@link Ext.data.DirectStore}
groupingstore    {@link Ext.data.GroupingStore}
jsonstore        {@link Ext.data.JsonStore}
simplestore      {@link Ext.data.SimpleStore}      (deprecated; use arraystore)
store            {@link Ext.data.Store}
xmlstore         {@link Ext.data.XmlStore}

    
 * @constructor
 * @param {Ext.Element/String/Object} config The configuration options may be specified as either:
 * 
      
 * 
    • an element :
 * 
      it is set as the internal element and its id used as the component id
      • 
 * 
    • a string :
 * 
      it is assumed to be the id of an existing element and is used as the component id
      • 
 * 
    • anything else :
 * 
      it is assumed to be a standard config object and is applied to the component
      • 
 * 
    
 */
Ext.Component = function(config){
    config = config || {};
    if(config.initialConfig){
        if(config.isAction){           // actions
            this.baseAction = config;
        }
        config = config.initialConfig; // component cloning / action set up
    }else if(config.tagName || config.dom || Ext.isString(config)){ // element object
        config = {applyTo: config, id: config.id || config};
    }

    /**
     * This Component's initial configuration specification. Read-only.
     * @type Object
     * @property initialConfig
     */
    this.initialConfig = config;

    Ext.apply(this, config);
    this.addEvents(
        /**
         * @event added
         * Fires when a component is added to an Ext.Container
         * @param {Ext.Component} this
         * @param {Ext.Container} ownerCt Container which holds the component
         * @param {number} index Position at which the component was added
         */
        'added',
        /**
         * @event disable
         * Fires after the component is disabled.
         * @param {Ext.Component} this
         */
        'disable',
        /**
         * @event enable
         * Fires after the component is enabled.
         * @param {Ext.Component} this
         */
        'enable',
        /**
         * @event beforeshow
         * Fires before the component is shown by calling the {@link #show} method.
         * Return false from an event handler to stop the show.
         * @param {Ext.Component} this
         */
        'beforeshow',
        /**
         * @event show
         * Fires after the component is shown when calling the {@link #show} method.
         * @param {Ext.Component} this
         */
        'show',
        /**
         * @event beforehide
         * Fires before the component is hidden by calling the {@link #hide} method.
         * Return false from an event handler to stop the hide.
         * @param {Ext.Component} this
         */
        'beforehide',
        /**
         * @event hide
         * Fires after the component is hidden.
         * Fires after the component is hidden when calling the {@link #hide} method.
         * @param {Ext.Component} this
         */
        'hide',
        /**
         * @event removed
         * Fires when a component is removed from an Ext.Container
         * @param {Ext.Component} this
         * @param {Ext.Container} ownerCt Container which holds the component
         */
        'removed',
        /**
         * @event beforerender
         * Fires before the component is {@link #rendered}. Return false from an
         * event handler to stop the {@link #render}.
         * @param {Ext.Component} this
         */
        'beforerender',
        /**
         * @event render
         * Fires after the component markup is {@link #rendered}.
         * @param {Ext.Component} this
         */
        'render',
        /**
         * @event afterrender
         * 
    Fires after the component rendering is finished.
    
         * 
    The afterrender event is fired after this Component has been {@link #rendered}, been postprocesed
         * by any afterRender method defined for the Component, and, if {@link #stateful}, after state
         * has been restored.
    
         * @param {Ext.Component} this
         */
        'afterrender',
        /**
         * @event beforedestroy
         * Fires before the component is {@link #destroy}ed. Return false from an event handler to stop the {@link #destroy}.
         * @param {Ext.Component} this
         */
        'beforedestroy',
        /**
         * @event destroy
         * Fires after the component is {@link #destroy}ed.
         * @param {Ext.Component} this
         */
        'destroy',
        /**
         * @event beforestaterestore
         * Fires before the state of the component is restored. Return false from an event handler to stop the restore.
         * @param {Ext.Component} this
         * @param {Object} state The hash of state values returned from the StateProvider. If this
         * event is not vetoed, then the state object is passed to applyState. By default,
         * that simply copies property values into this Component. The method maybe overriden to
         * provide custom state restoration.
         */
        'beforestaterestore',
        /**
         * @event staterestore
         * Fires after the state of the component is restored.
         * @param {Ext.Component} this
         * @param {Object} state The hash of state values returned from the StateProvider. This is passed
         * to applyState. By default, that simply copies property values into this
         * Component. The method maybe overriden to provide custom state restoration.
         */
        'staterestore',
        /**
         * @event beforestatesave
         * Fires before the state of the component is saved to the configured state provider. Return false to stop the save.
         * @param {Ext.Component} this
         * @param {Object} state The hash of state values. This is determined by calling
         * getState() on the Component. This method must be provided by the
         * developer to return whetever representation of state is required, by default, Ext.Component
         * has a null implementation.
         */
        'beforestatesave',
        /**
         * @event statesave
         * Fires after the state of the component is saved to the configured state provider.
         * @param {Ext.Component} this
         * @param {Object} state The hash of state values. This is determined by calling
         * getState() on the Component. This method must be provided by the
         * developer to return whetever representation of state is required, by default, Ext.Component
         * has a null implementation.
         */
        'statesave'
    );
    this.getId();
    Ext.ComponentMgr.register(this);
    Ext.Component.superclass.constructor.call(this);

    if(this.baseAction){
        this.baseAction.addComponent(this);
    }

    this.initComponent();

    if(this.plugins){
        if(Ext.isArray(this.plugins)){
            for(var i = 0, len = this.plugins.length; i < len; i++){
                this.plugins[i] = this.initPlugin(this.plugins[i]);
            }
        }else{
            this.plugins = this.initPlugin(this.plugins);
        }
    }

    if(this.stateful !== false){
        this.initState();
    }

    if(this.applyTo){
        this.applyToMarkup(this.applyTo);
        delete this.applyTo;
    }else if(this.renderTo){
        this.render(this.renderTo);
        delete this.renderTo;
    }
};

// private
Ext.Component.AUTO_ID = 1000;

Ext.extend(Ext.Component, Ext.util.Observable, {
    // Configs below are used for all Components when rendered by FormLayout.
    /**
     * @cfg {String} fieldLabel 
    The label text to display next to this Component (defaults to '').
    
     * 
    Note: this config is only used when this Component is rendered by a Container which
     * has been configured to use the {@link Ext.layout.FormLayout FormLayout} layout manager (e.g.
     * {@link Ext.form.FormPanel} or specifying layout:'form').

    
     * 
    Also see {@link #hideLabel} and
     * {@link Ext.layout.FormLayout}.{@link Ext.layout.FormLayout#fieldTpl fieldTpl}.
    
     * Example use:
    
new Ext.FormPanel({
    height: 100,
    renderTo: Ext.getBody(),
    items: [{
        xtype: 'textfield',
        fieldLabel: 'Name'
    }]
});

    
     */
    /**
     * @cfg {String} labelStyle 
    A CSS style specification string to apply directly to this field's
     * label.  Defaults to the container's labelStyle value if set (e.g.,
     * {@link Ext.layout.FormLayout#labelStyle} , or '').
    
     * 
    Note: see the note for {@link #clearCls}.

    
     * 
    Also see {@link #hideLabel} and
     * {@link Ext.layout.FormLayout}.{@link Ext.layout.FormLayout#fieldTpl fieldTpl}.
    
     * Example use:
    
new Ext.FormPanel({
    height: 100,
    renderTo: Ext.getBody(),
    items: [{
        xtype: 'textfield',
        fieldLabel: 'Name',
        labelStyle: 'font-weight:bold;'
    }]
});

    
     */
    /**
     * @cfg {String} labelSeparator 
    The separator to display after the text of each
     * {@link #fieldLabel}.  This property may be configured at various levels.
     * The order of precedence is:
     * 
      
     * 
    • field / component level
      • 
     * 
    • container level
      • 
     * 
    • {@link Ext.layout.FormLayout#labelSeparator layout level} (defaults to colon ':')
      • 
     * 
    
     * To display no separator for this field's label specify empty string ''.
    
     * 
    Note: see the note for {@link #clearCls}.

    
     * 
    Also see {@link #hideLabel} and
     * {@link Ext.layout.FormLayout}.{@link Ext.layout.FormLayout#fieldTpl fieldTpl}.
    
     * Example use:
    
new Ext.FormPanel({
    height: 100,
    renderTo: Ext.getBody(),
    layoutConfig: {
        labelSeparator: '~'   // layout config has lowest priority (defaults to ':')
    },
    {@link Ext.layout.FormLayout#labelSeparator labelSeparator}: '>>',     // config at container level
    items: [{
        xtype: 'textfield',
        fieldLabel: 'Field 1',
        labelSeparator: '...' // field/component level config supersedes others
    },{
        xtype: 'textfield',
        fieldLabel: 'Field 2' // labelSeparator will be '='
    }]
});

    
     */
    /**
     * @cfg {Boolean} hideLabel 
    true to completely hide the label element
     * ({@link #fieldLabel label} and {@link #labelSeparator separator}). Defaults to false.
     * By default, even if you do not specify a {@link #fieldLabel} the space will still be
     * reserved so that the field will line up with other fields that do have labels.
     * Setting this to true will cause the field to not reserve that space.
    
     * 
    Note: see the note for {@link #clearCls}.

    
     * Example use:
    
new Ext.FormPanel({
    height: 100,
    renderTo: Ext.getBody(),
    items: [{
        xtype: 'textfield'
        hideLabel: true
    }]
});

    
     */
    /**
     * @cfg {String} clearCls 
    The CSS class used to to apply to the special clearing div rendered
     * directly after each form field wrapper to provide field clearing (defaults to
     * 'x-form-clear-left').
    
     * 
    Note: this config is only used when this Component is rendered by a Container
     * which has been configured to use the {@link Ext.layout.FormLayout FormLayout} layout
     * manager (e.g. {@link Ext.form.FormPanel} or specifying layout:'form') and either a
     * {@link #fieldLabel} is specified or isFormField=true is specified.

    
     * 
    See {@link Ext.layout.FormLayout}.{@link Ext.layout.FormLayout#fieldTpl fieldTpl} also.
    
     */
    /**
     * @cfg {String} itemCls
     * 
    Note: this config is only used when this Component is rendered by a Container which
     * has been configured to use the {@link Ext.layout.FormLayout FormLayout} layout manager (e.g.
     * {@link Ext.form.FormPanel} or specifying layout:'form').

    
     * 
    An additional CSS class to apply to the div wrapping the form item
     * element of this field.  If supplied, itemCls at the field level will override
     * the default itemCls supplied at the container level. The value specified for
     * itemCls will be added to the default class ('x-form-item').
    
     * 
    Since it is applied to the item wrapper (see
     * {@link Ext.layout.FormLayout}.{@link Ext.layout.FormLayout#fieldTpl fieldTpl}), it allows
     * you to write standard CSS rules that can apply to the field, the label (if specified), or
     * any other element within the markup for the field.
    
     * 
    Note: see the note for {@link #fieldLabel}.

    
     * Example use:
    
// Apply a style to the field's label:
<style>
    .required .x-form-item-label {font-weight:bold;color:red;}
</style>

new Ext.FormPanel({
    height: 100,
    renderTo: Ext.getBody(),
    items: [{
        xtype: 'textfield',
        fieldLabel: 'Name',
        itemCls: 'required' //this label will be styled
    },{
        xtype: 'textfield',
        fieldLabel: 'Favorite Color'
    }]
});

    
     */

    /**
     * @cfg {String} id
     * 
    The unique id of this component (defaults to an {@link #getId auto-assigned id}).
     * You should assign an id if you need to be able to access the component later and you do
     * not have an object reference available (e.g., using {@link Ext}.{@link Ext#getCmp getCmp}).
    
     * 
    Note that this id will also be used as the element id for the containing HTML element
     * that is rendered to the page for this component. This allows you to write id-based CSS
     * rules to style the specific instance of this component uniquely, and also to select
     * sub-elements using this component's id as the parent.
    
     * 
    Note: to avoid complications imposed by a unique id also see
     * {@link #itemId} and {@link #ref}.
    
     * 
    Note: to access the container of an item see {@link #ownerCt}.
    
     */
    /**
     * @cfg {String} itemId
     * 
    An itemId can be used as an alternative way to get a reference to a component
     * when no object reference is available.  Instead of using an {@link #id} with
     * {@link Ext}.{@link Ext#getCmp getCmp}, use itemId with
     * {@link Ext.Container}.{@link Ext.Container#getComponent getComponent} which will retrieve
     * itemId's or {@link #id}'s. Since itemId's are an index to the
     * container's internal MixedCollection, the itemId is scoped locally to the container --
     * avoiding potential conflicts with {@link Ext.ComponentMgr} which requires a unique
     * {@link #id}.
    
     * 
    
var c = new Ext.Panel({ //
    {@link Ext.BoxComponent#height height}: 300,
    {@link #renderTo}: document.body,
    {@link Ext.Container#layout layout}: 'auto',
    {@link Ext.Container#items items}: [
        {
            itemId: 'p1',
            {@link Ext.Panel#title title}: 'Panel 1',
            {@link Ext.BoxComponent#height height}: 150
        },
        {
            itemId: 'p2',
            {@link Ext.Panel#title title}: 'Panel 2',
            {@link Ext.BoxComponent#height height}: 150
        }
    ]
})
p1 = c.{@link Ext.Container#getComponent getComponent}('p1'); // not the same as {@link Ext#getCmp Ext.getCmp()}
p2 = p1.{@link #ownerCt}.{@link Ext.Container#getComponent getComponent}('p2'); // reference via a sibling
     * 
    
     * 
    Also see {@link #id} and {@link #ref}.
    
     * 
    Note: to access the container of an item see {@link #ownerCt}.
    
     */
    /**
     * @cfg {String} xtype
     * The registered xtype to create. This config option is not used when passing
     * a config object into a constructor. This config option is used only when
     * lazy instantiation is being used, and a child item of a Container is being
     * specified not as a fully instantiated Component, but as a Component config
     * object. The xtype will be looked up at render time up to determine what
     * type of child Component to create.

    
     * The predefined xtypes are listed {@link Ext.Component here}.
     * 

    
     * If you subclass Components to create your own Components, you may register
     * them using {@link Ext.ComponentMgr#registerType} in order to be able to
     * take advantage of lazy instantiation and rendering.
     */
    /**
     * @cfg {String} ptype
     * The registered ptype to create. This config option is not used when passing
     * a config object into a constructor. This config option is used only when
     * lazy instantiation is being used, and a Plugin is being
     * specified not as a fully instantiated Component, but as a Component config
     * object. The ptype will be looked up at render time up to determine what
     * type of Plugin to create.

    
     * If you create your own Plugins, you may register them using
     * {@link Ext.ComponentMgr#registerPlugin} in order to be able to
     * take advantage of lazy instantiation and rendering.
     */
    /**
     * @cfg {String} cls
     * An optional extra CSS class that will be added to this component's Element (defaults to '').  This can be
     * useful for adding customized styles to the component or any of its children using standard CSS rules.
     */
    /**
     * @cfg {String} overCls
     * An optional extra CSS class that will be added to this component's Element when the mouse moves
     * over the Element, and removed when the mouse moves out. (defaults to '').  This can be
     * useful for adding customized 'active' or 'hover' styles to the component or any of its children using standard CSS rules.
     */
    /**
     * @cfg {String} style
     * A custom style specification to be applied to this component's Element.  Should be a valid argument to
     * {@link Ext.Element#applyStyles}.
     * 
    
new Ext.Panel({
    title: 'Some Title',
    renderTo: Ext.getBody(),
    width: 400, height: 300,
    layout: 'form',
    items: [{
        xtype: 'textarea',
        style: {
            width: '95%',
            marginBottom: '10px'
        }
    },
        new Ext.Button({
            text: 'Send',
            minWidth: '100',
            style: {
                marginBottom: '10px'
            }
        })
    ]
});
     * 
    
     */
    /**
     * @cfg {String} ctCls
     * 
    An optional extra CSS class that will be added to this component's container. This can be useful for
     * adding customized styles to the container or any of its children using standard CSS rules.  See
     * {@link Ext.layout.ContainerLayout}.{@link Ext.layout.ContainerLayout#extraCls extraCls} also.
    
     * 
    Note: ctCls defaults to '' except for the following class
     * which assigns a value by default:
     * 
      
     * 
    • {@link Ext.layout.Box Box Layout} : 'x-box-layout-ct'
      • 
     * 
    
     * To configure the above Class with an extra CSS class append to the default.  For example,
     * for BoxLayout (Hbox and Vbox):
    
     * ctCls: 'x-box-layout-ct custom-class'
     * 
    
     * 
    
     */
    /**
     * @cfg {Boolean} disabled
     * Render this component disabled (default is false).
     */
    disabled : false,
    /**
     * @cfg {Boolean} hidden
     * Render this component hidden (default is false). If true, the
     * {@link #hide} method will be called internally.
     */
    hidden : false,
    /**
     * @cfg {Object/Array} plugins
     * An object or array of objects that will provide custom functionality for this component.  The only
     * requirement for a valid plugin is that it contain an init method that accepts a reference of type Ext.Component.
     * When a component is created, if any plugins are available, the component will call the init method on each
     * plugin, passing a reference to itself.  Each plugin can then call methods or respond to events on the
     * component as needed to provide its functionality.
     */
    /**
     * @cfg {Mixed} applyTo
     * 
    Specify the id of the element, a DOM element or an existing Element corresponding to a DIV
     * that is already present in the document that specifies some structural markup for this
     * component.
      
     * 
    • Description : 
        
     * 
        When applyTo is used, constituent parts of the component can also be specified
     * by id or CSS class name within the main element, and the component being created may attempt
     * to create its subcomponents from that markup if applicable.
        
     * 
      • 
     * 
    • Notes : 
        
     * 
        When using this config, a call to render() is not required.
        
     * 
        If applyTo is specified, any value passed for {@link #renderTo} will be ignored and the target
     * element's parent node will automatically be used as the component's container.
        
     * 
      • 
     * 
    
     */
    /**
     * @cfg {Mixed} renderTo
     * 
    Specify the id of the element, a DOM element or an existing Element that this component
     * will be rendered into.
      
     * 
    • Notes : 
        
     * 
        Do not use this option if the Component is to be a child item of
     * a {@link Ext.Container Container}. It is the responsibility of the
     * {@link Ext.Container Container}'s {@link Ext.Container#layout layout manager}
     * to render and manage its child items.
        
     * 
        When using this config, a call to render() is not required.
        
     * 
      • 
     * 
    
     * 
    See {@link #render} also.
    
     */
    /**
     * @cfg {Boolean} stateful
     * 
    A flag which causes the Component to attempt to restore the state of
     * internal properties from a saved state on startup. The component must have
     * either a {@link #stateId} or {@link #id} assigned
     * for state to be managed. Auto-generated ids are not guaranteed to be stable
     * across page loads and cannot be relied upon to save and restore the same
     * state for a component.
    
     * 
    For state saving to work, the state manager's provider must have been
     * set to an implementation of {@link Ext.state.Provider} which overrides the
     * {@link Ext.state.Provider#set set} and {@link Ext.state.Provider#get get}
     * methods to save and recall name/value pairs. A built-in implementation,
     * {@link Ext.state.CookieProvider} is available.
    
     * 
    To set the state provider for the current page:
    
     * 
    
Ext.state.Manager.setProvider(new Ext.state.CookieProvider({
    expires: new Date(new Date().getTime()+(1000*60*60*24*7)), //7 days from now
}));
     * 
    
     * 
    A stateful Component attempts to save state when one of the events
     * listed in the {@link #stateEvents} configuration fires.
    
     * 
    To save state, a stateful Component first serializes its state by
     * calling getState. By default, this function does
     * nothing. The developer must provide an implementation which returns an
     * object hash which represents the Component's restorable state.
    
     * 
    The value yielded by getState is passed to {@link Ext.state.Manager#set}
     * which uses the configured {@link Ext.state.Provider} to save the object
     * keyed by the Component's {@link stateId}, or, if that is not
     * specified, its {@link #id}.
    
     * 
    During construction, a stateful Component attempts to restore
     * its state by calling {@link Ext.state.Manager#get} passing the
     * {@link #stateId}, or, if that is not specified, the
     * {@link #id}.
    
     * 
    The resulting object is passed to applyState.
     * The default implementation of applyState simply copies
     * properties into the object, but a developer may override this to support
     * more behaviour.
    
     * 
    You can perform extra processing on state save and restore by attaching
     * handlers to the {@link #beforestaterestore}, {@link #staterestore},
     * {@link #beforestatesave} and {@link #statesave} events.
    
     */
    /**
     * @cfg {String} stateId
     * The unique id for this component to use for state management purposes
     * (defaults to the component id if one was set, otherwise null if the
     * component is using a generated id).
     * 
    See {@link #stateful} for an explanation of saving and
     * restoring Component state.
    
     */
    /**
     * @cfg {Array} stateEvents
     * 
    An array of events that, when fired, should trigger this component to
     * save its state (defaults to none). stateEvents may be any type
     * of event supported by this component, including browser or custom events
     * (e.g., ['click', 'customerchange']).
    
     * 
    See {@link #stateful} for an explanation of saving and
     * restoring Component state.
    
     */
    /**
     * @cfg {Mixed} autoEl
     * 
    A tag name or {@link Ext.DomHelper DomHelper} spec used to create the {@link #getEl Element} which will
     * encapsulate this Component.
    
     * 
    You do not normally need to specify this. For the base classes {@link Ext.Component}, {@link Ext.BoxComponent},
     * and {@link Ext.Container}, this defaults to 'div'. The more complex Ext classes use a more complex
     * DOM structure created by their own onRender methods.
    
     * 
    This is intended to allow the developer to create application-specific utility Components encapsulated by
     * different DOM elements. Example usage:
    
{
    xtype: 'box',
    autoEl: {
        tag: 'img',
        src: 'http://www.example.com/example.jpg'
    }
}, {
    xtype: 'box',
    autoEl: {
        tag: 'blockquote',
        html: 'autoEl is cool!'
    }
}, {
    xtype: 'container',
    autoEl: 'ul',
    cls: 'ux-unordered-list',
    items: {
        xtype: 'box',
        autoEl: 'li',
        html: 'First list item'
    }
}

    
     */
    autoEl : 'div',

    /**
     * @cfg {String} disabledClass
     * CSS class added to the component when it is disabled (defaults to 'x-item-disabled').
     */
    disabledClass : 'x-item-disabled',
    /**
     * @cfg {Boolean} allowDomMove
     * Whether the component can move the Dom node when rendering (defaults to true).
     */
    allowDomMove : true,
    /**
     * @cfg {Boolean} autoShow
     * True if the component should check for hidden classes (e.g. 'x-hidden' or 'x-hide-display') and remove
     * them on render (defaults to false).
     */
    autoShow : false,
    /**
     * @cfg {String} hideMode
     * 
    How this component should be hidden. Supported values are 'visibility'
     * (css visibility), 'offsets' (negative offset position) and 'display'
     * (css display).
    
     * 
    Note: the default of 'display' is generally preferred
     * since items are automatically laid out when they are first shown (no sizing
     * is done while hidden).
    
     */
    hideMode : 'display',
    /**
     * @cfg {Boolean} hideParent
     * True to hide and show the component's container when hide/show is called on the component, false to hide
     * and show the component itself (defaults to false).  For example, this can be used as a shortcut for a hide
     * button on a window by setting hide:true on the button when adding it to its parent container.
     */
    hideParent : false,
    /**
     * 
    The {@link Ext.Element} which encapsulates this Component. Read-only.
    
     * 
    This will usually be a <DIV> element created by the class's onRender method, but
     * that may be overridden using the {@link #autoEl} config.
    
     * 
    Note: this element will not be available until this Component has been rendered.

    
     * 
    To add listeners for DOM events to this Component (as opposed to listeners
     * for this Component's own Observable events), see the {@link Ext.util.Observable#listeners listeners}
     * config for a suggestion, or use a render listener directly:
    
new Ext.Panel({
    title: 'The Clickable Panel',
    listeners: {
        render: function(p) {
            // Append the Panel to the click handler's argument list.
            p.getEl().on('click', handlePanelClick.createDelegate(null, [p], true));
        },
        single: true  // Remove the listener after first invocation
    }
});

    
     * 
    See also {@link #getEl getEl}
    
     * @type Ext.Element
     * @property el
     */
    /**
     * This Component's owner {@link Ext.Container Container} (defaults to undefined, and is set automatically when
     * this Component is added to a Container).  Read-only.
     * 
    Note: to access items within the Container see {@link #itemId}.
    
     * @type Ext.Container
     * @property ownerCt
     */
    /**
     * True if this component is hidden. Read-only.
     * @type Boolean
     * @property hidden
     */
    /**
     * True if this component is disabled. Read-only.
     * @type Boolean
     * @property disabled
     */
    /**
     * True if this component has been rendered. Read-only.
     * @type Boolean
     * @property rendered
     */
    rendered : false,

    /**
     * @cfg {String} contentEl
     * 
    Optional. Specify an existing HTML element, or the id of an existing HTML element to use as the content
     * for this component.
    
     * 
      
     * 
    • Description :
     * 
      This config option is used to take an existing HTML element and place it in the layout element
     * of a new component (it simply moves the specified DOM element after the Component is rendered to use as the content.
      • 
     * 
    • Notes :
     * 
      The specified HTML element is appended to the layout element of the component after any configured
     * {@link #html HTML} has been inserted, and so the document will not contain this element at the time the {@link #render} event is fired.
      
     * 
      The specified HTML element used will not participate in any {@link Ext.Container#layout layout}
     * scheme that the Component may use. It is just HTML. Layouts operate on child {@link Ext.Container#items items}.
      
     * 
      Add either the x-hidden or the x-hide-display CSS class to
     * prevent a brief flicker of the content before it is rendered to the panel.
      • 
     * 
    
     */
    /**
     * @cfg {String/Object} html
     * An HTML fragment, or a {@link Ext.DomHelper DomHelper} specification to use as the layout element
     * content (defaults to ''). The HTML content is added after the component is rendered,
     * so the document will not contain this HTML at the time the {@link #render} event is fired.
     * This content is inserted into the body before any configured {@link #contentEl} is appended.
     */

    /**
     * @cfg {Mixed} tpl
     * An {@link Ext.Template}, {@link Ext.XTemplate}
     * or an array of strings to form an Ext.XTemplate.
     * Used in conjunction with the {@link #data} and
     * {@link #tplWriteMode} configurations.
     */

    /**
     * @cfg {String} tplWriteMode The Ext.(X)Template method to use when
     * updating the content area of the Component. Defaults to 'overwrite'
     * (see {@link Ext.XTemplate#overwrite}).
     */
    tplWriteMode : 'overwrite',

    /**
     * @cfg {Mixed} data
     * The initial set of data to apply to the {@link #tpl} to
     * update the content area of the Component.
     */

    /**
     * @cfg {Array} bubbleEvents
     * 
    An array of events that, when fired, should be bubbled to any parent container.
     * See {@link Ext.util.Observable#enableBubble}.
     * Defaults to [].
     */
    bubbleEvents: [],


    // private
    ctype : 'Ext.Component',

    // private
    actionMode : 'el',

    // private
    getActionEl : function(){
        return this[this.actionMode];
    },

    initPlugin : function(p){
        if(p.ptype && !Ext.isFunction(p.init)){
            p = Ext.ComponentMgr.createPlugin(p);
        }else if(Ext.isString(p)){
            p = Ext.ComponentMgr.createPlugin({
                ptype: p
            });
        }
        p.init(this);
        return p;
    },

    /* // protected
     * Function to be implemented by Component subclasses to be part of standard component initialization flow (it is empty by default).
     * 
    
// Traditional constructor:
Ext.Foo = function(config){
    // call superclass constructor:
    Ext.Foo.superclass.constructor.call(this, config);

    this.addEvents({
        // add events
    });
};
Ext.extend(Ext.Foo, Ext.Bar, {
   // class body
}

// initComponent replaces the constructor:
Ext.Foo = Ext.extend(Ext.Bar, {
    initComponent : function(){
        // call superclass initComponent
        Ext.Container.superclass.initComponent.call(this);

        this.addEvents({
            // add events
        });
    }
}

    
     */
    initComponent : function(){
        /*
         * this is double processing, however it allows people to be able to do
         * Ext.apply(this, {
         *     listeners: {
         *         //here
         *     }
         * });
         * MyClass.superclass.initComponent.call(this);
         */
        if(this.listeners){
            this.on(this.listeners);
            delete this.listeners;
        }
        this.enableBubble(this.bubbleEvents);
    },

    /**
     * 
    Render this Component into the passed HTML element.
    
     * 
    If you are using a {@link Ext.Container Container} object to house this Component, then
     * do not use the render method.
    
     * 
    A Container's child Components are rendered by that Container's
     * {@link Ext.Container#layout layout} manager when the Container is first rendered.
    
     * 
    Certain layout managers allow dynamic addition of child components. Those that do
     * include {@link Ext.layout.CardLayout}, {@link Ext.layout.AnchorLayout},
     * {@link Ext.layout.FormLayout}, {@link Ext.layout.TableLayout}.
    
     * 
    If the Container is already rendered when a new child Component is added, you may need to call
     * the Container's {@link Ext.Container#doLayout doLayout} to refresh the view which causes any
     * unrendered child Components to be rendered. This is required so that you can add multiple
     * child components if needed while only refreshing the layout once.
    
     * 
    When creating complex UIs, it is important to remember that sizing and positioning
     * of child items is the responsibility of the Container's {@link Ext.Container#layout layout} manager.
     * If you expect child items to be sized in response to user interactions, you must
     * configure the Container with a layout manager which creates and manages the type of layout you
     * have in mind.
    
     * 
    Omitting the Container's {@link Ext.Container#layout layout} config means that a basic
     * layout manager is used which does nothing but render child components sequentially into the
     * Container. No sizing or positioning will be performed in this situation.
    
     * @param {Element/HTMLElement/String} container (optional) The element this Component should be
     * rendered into. If it is being created from existing markup, this should be omitted.
     * @param {String/Number} position (optional) The element ID or DOM node index within the container before
     * which this component will be inserted (defaults to appending to the end of the container)
     */
    render : function(container, position){
        if(!this.rendered && this.fireEvent('beforerender', this) !== false){
            if(!container && this.el){
                this.el = Ext.get(this.el);
                container = this.el.dom.parentNode;
                this.allowDomMove = false;
            }
            this.container = Ext.get(container);
            if(this.ctCls){
                this.container.addClass(this.ctCls);
            }
            this.rendered = true;
            if(position !== undefined){
                if(Ext.isNumber(position)){
                    position = this.container.dom.childNodes[position];
                }else{
                    position = Ext.getDom(position);
                }
            }
            this.onRender(this.container, position || null);
            if(this.autoShow){
                this.el.removeClass(['x-hidden','x-hide-' + this.hideMode]);
            }
            if(this.cls){
                this.el.addClass(this.cls);
                delete this.cls;
            }
            if(this.style){
                this.el.applyStyles(this.style);
                delete this.style;
            }
            if(this.overCls){
                this.el.addClassOnOver(this.overCls);
            }
            this.fireEvent('render', this);


            // Populate content of the component with html, contentEl or
            // a tpl.
            var contentTarget = this.getContentTarget();
            if (this.html){
                contentTarget.update(Ext.DomHelper.markup(this.html));
                delete this.html;
            }
            if (this.contentEl){
                var ce = Ext.getDom(this.contentEl);
                Ext.fly(ce).removeClass(['x-hidden', 'x-hide-display']);
                contentTarget.appendChild(ce);
            }
            if (this.tpl) {
                if (!this.tpl.compile) {
                    this.tpl = new Ext.XTemplate(this.tpl);
                }
                if (this.data) {
                    this.tpl[this.tplWriteMode](contentTarget, this.data);
                    delete this.data;
                }
            }
            this.afterRender(this.container);


            if(this.hidden){
                // call this so we don't fire initial hide events.
                this.doHide();
            }
            if(this.disabled){
                // pass silent so the event doesn't fire the first time.
                this.disable(true);
            }

            if(this.stateful !== false){
                this.initStateEvents();
            }
            this.fireEvent('afterrender', this);
        }
        return this;
    },


    /**
     * Update the content area of a component.
     * @param {Mixed} htmlOrData
     * If this component has been configured with a template via the tpl config
     * then it will use this argument as data to populate the template.
     * If this component was not configured with a template, the components
     * content area will be updated via Ext.Element update
     * @param {Boolean} loadScripts
     * (optional) Only legitimate when using the html configuration. Defaults to false
     * @param {Function} callback
     * (optional) Only legitimate when using the html configuration. Callback to execute when scripts have finished loading
     */
    update: function(htmlOrData, loadScripts, cb) {
        var contentTarget = this.getContentTarget();
        if (this.tpl && typeof htmlOrData !== "string") {
            this.tpl[this.tplWriteMode](contentTarget, htmlOrData || {});
        } else {
            var html = Ext.isObject(htmlOrData) ? Ext.DomHelper.markup(htmlOrData) : htmlOrData;
            contentTarget.update(html, loadScripts, cb);
        }
    },


    /**
     * @private
     * Method to manage awareness of when components are added to their
     * respective Container, firing an added event.
     * References are established at add time rather than at render time.
     * @param {Ext.Container} container Container which holds the component
     * @param {number} pos Position at which the component was added
     */
    onAdded : function(container, pos) {
        this.ownerCt = container;
        this.initRef();
        this.fireEvent('added', this, container, pos);
    },

    /**
     * @private
     * Method to manage awareness of when components are removed from their
     * respective Container, firing an removed event. References are properly
     * cleaned up after removing a component from its owning container.
     */
    onRemoved : function() {
        this.removeRef();
        this.fireEvent('removed', this, this.ownerCt);
        delete this.ownerCt;
    },

    /**
     * @private
     * Method to establish a reference to a component.
     */
    initRef : function() {
        /**
         * @cfg {String} ref
         * 
    A path specification, relative to the Component's {@link #ownerCt}
         * specifying into which ancestor Container to place a named reference to this Component.
    
         * 
    The ancestor axis can be traversed by using '/' characters in the path.
         * For example, to put a reference to a Toolbar Button into the Panel which owns the Toolbar:
    
var myGrid = new Ext.grid.EditorGridPanel({
    title: 'My EditorGridPanel',
    store: myStore,
    colModel: myColModel,
    tbar: [{
        text: 'Save',
        handler: saveChanges,
        disabled: true,
        ref: '../saveButton'
    }],
    listeners: {
        afteredit: function() {
//          The button reference is in the GridPanel
            myGrid.saveButton.enable();
        }
    }
});

    
         * 
    In the code above, if the ref had been 'saveButton'
         * the reference would have been placed into the Toolbar. Each '/' in the ref
         * moves up one level from the Component's {@link #ownerCt}.
    
         * 
    Also see the {@link #added} and {@link #removed} events.
    
         */
        if(this.ref && !this.refOwner){
            var levels = this.ref.split('/'),
                last = levels.length,
                i = 0,
                t = this;

            while(t && i < last){
                t = t.ownerCt;
                ++i;
            }
            if(t){
                t[this.refName = levels[--i]] = this;
                /**
                 * @type Ext.Container
                 * @property refOwner
                 * The ancestor Container into which the {@link #ref} reference was inserted if this Component
                 * is a child of a Container, and has been configured with a ref.
                 */
                this.refOwner = t;
            }
        }
    },

    removeRef : function() {
        if (this.refOwner && this.refName) {
            delete this.refOwner[this.refName];
            delete this.refOwner;
        }
    },

    // private
    initState : function(){
        if(Ext.state.Manager){
            var id = this.getStateId();
            if(id){
                var state = Ext.state.Manager.get(id);
                if(state){
                    if(this.fireEvent('beforestaterestore', this, state) !== false){
                        this.applyState(Ext.apply({}, state));
                        this.fireEvent('staterestore', this, state);
                    }
                }
            }
        }
    },

    // private
    getStateId : function(){
        return this.stateId || ((/^(ext-comp-|ext-gen)/).test(String(this.id)) ? null : this.id);
    },

    // private
    initStateEvents : function(){
        if(this.stateEvents){
            for(var i = 0, e; e = this.stateEvents[i]; i++){
                this.on(e, this.saveState, this, {delay:100});
            }
        }
    },

    // private
    applyState : function(state){
        if(state){
            Ext.apply(this, state);
        }
    },

    // private
    getState : function(){
        return null;
    },

    // private
    saveState : function(){
        if(Ext.state.Manager && this.stateful !== false){
            var id = this.getStateId();
            if(id){
                var state = this.getState();
                if(this.fireEvent('beforestatesave', this, state) !== false){
                    Ext.state.Manager.set(id, state);
                    this.fireEvent('statesave', this, state);
                }
            }
        }
    },

    /**
     * Apply this component to existing markup that is valid. With this function, no call to render() is required.
     * @param {String/HTMLElement} el
     */
    applyToMarkup : function(el){
        this.allowDomMove = false;
        this.el = Ext.get(el);
        this.render(this.el.dom.parentNode);
    },

    /**
     * Adds a CSS class to the component's underlying element.
     * @param {string} cls The CSS class name to add
     * @return {Ext.Component} this
     */
    addClass : function(cls){
        if(this.el){
            this.el.addClass(cls);
        }else{
            this.cls = this.cls ? this.cls + ' ' + cls : cls;
        }
        return this;
    },

    /**
     * Removes a CSS class from the component's underlying element.
     * @param {string} cls The CSS class name to remove
     * @return {Ext.Component} this
     */
    removeClass : function(cls){
        if(this.el){
            this.el.removeClass(cls);
        }else if(this.cls){
            this.cls = this.cls.split(' ').remove(cls).join(' ');
        }
        return this;
    },

    // private
    // default function is not really useful
    onRender : function(ct, position){
        if(!this.el && this.autoEl){
            if(Ext.isString(this.autoEl)){
                this.el = document.createElement(this.autoEl);
            }else{
                var div = document.createElement('div');
                Ext.DomHelper.overwrite(div, this.autoEl);
                this.el = div.firstChild;
            }
            if (!this.el.id) {
                this.el.id = this.getId();
            }
        }
        if(this.el){
            this.el = Ext.get(this.el);
            if(this.allowDomMove !== false){
                ct.dom.insertBefore(this.el.dom, position);
                if (div) {
                    Ext.removeNode(div);
                    div = null;
                }
            }
        }
    },

    // private
    getAutoCreate : function(){
        var cfg = Ext.isObject(this.autoCreate) ?
                      this.autoCreate : Ext.apply({}, this.defaultAutoCreate);
        if(this.id && !cfg.id){
            cfg.id = this.id;
        }
        return cfg;
    },

    // private
    afterRender : Ext.emptyFn,

    /**
     * Destroys this component by purging any event listeners, removing the component's element from the DOM,
     * removing the component from its {@link Ext.Container} (if applicable) and unregistering it from
     * {@link Ext.ComponentMgr}.  Destruction is generally handled automatically by the framework and this method
     * should usually not need to be called directly.
     *
     */
    destroy : function(){
        if(!this.isDestroyed){
            if(this.fireEvent('beforedestroy', this) !== false){
                this.destroying = true;
                this.beforeDestroy();
                if(this.ownerCt && this.ownerCt.remove){
                    this.ownerCt.remove(this, false);
                }
                if(this.rendered){
                    this.el.remove();
                    if(this.actionMode == 'container' || this.removeMode == 'container'){
                        this.container.remove();
                    }
                }
                // Stop any buffered tasks
                if(this.focusTask && this.focusTask.cancel){
                    this.focusTask.cancel();
                }
                this.onDestroy();
                Ext.ComponentMgr.unregister(this);
                this.fireEvent('destroy', this);
                this.purgeListeners();
                this.destroying = false;
                this.isDestroyed = true;
            }
        }
    },

    deleteMembers : function(){
        var args = arguments;
        for(var i = 0, len = args.length; i < len; ++i){
            delete this[args[i]];
        }
    },

    // private
    beforeDestroy : Ext.emptyFn,

    // private
    onDestroy  : Ext.emptyFn,

    /**
     * 
    Returns the {@link Ext.Element} which encapsulates this Component.
    
     * 
    This will usually be a <DIV> element created by the class's onRender method, but
     * that may be overridden using the {@link #autoEl} config.
    
     * 
    Note: this element will not be available until this Component has been rendered.

    
     * 
    To add listeners for DOM events to this Component (as opposed to listeners
     * for this Component's own Observable events), see the {@link #listeners} config for a suggestion,
     * or use a render listener directly:
    
new Ext.Panel({
    title: 'The Clickable Panel',
    listeners: {
        render: function(p) {
            // Append the Panel to the click handler's argument list.
            p.getEl().on('click', handlePanelClick.createDelegate(null, [p], true));
        },
        single: true  // Remove the listener after first invocation
    }
});

    
     * @return {Ext.Element} The Element which encapsulates this Component.
     */
    getEl : function(){
        return this.el;
    },

    // private
    getContentTarget : function(){
        return this.el;
    },

    /**
     * Returns the id of this component or automatically generates and
     * returns an id if an id is not defined yet:
    
     * 'ext-comp-' + (++Ext.Component.AUTO_ID)
     * 
    
     * @return {String} id
     */
    getId : function(){
        return this.id || (this.id = 'ext-comp-' + (++Ext.Component.AUTO_ID));
    },

    /**
     * Returns the {@link #itemId} of this component.  If an
     * {@link #itemId} was not assigned through configuration the
     * id is returned using {@link #getId}.
     * @return {String}
     */
    getItemId : function(){
        return this.itemId || this.getId();
    },

    /**
     * Try to focus this component.
     * @param {Boolean} selectText (optional) If applicable, true to also select the text in this component
     * @param {Boolean/Number} delay (optional) Delay the focus this number of milliseconds (true for 10 milliseconds)
     * @return {Ext.Component} this
     */
    focus : function(selectText, delay){
        if(delay){
            this.focusTask = new Ext.util.DelayedTask(this.focus, this, [selectText, false]);
            this.focusTask.delay(Ext.isNumber(delay) ? delay : 10);
            return this;
        }
        if(this.rendered && !this.isDestroyed){
            this.el.focus();
            if(selectText === true){
                this.el.dom.select();
            }
        }
        return this;
    },

    // private
    blur : function(){
        if(this.rendered){
            this.el.blur();
        }
        return this;
    },

    /**
     * Disable this component and fire the 'disable' event.
     * @return {Ext.Component} this
     */
    disable : function(/* private */ silent){
        if(this.rendered){
            this.onDisable();
        }
        this.disabled = true;
        if(silent !== true){
            this.fireEvent('disable', this);
        }
        return this;
    },

    // private
    onDisable : function(){
        this.getActionEl().addClass(this.disabledClass);
        this.el.dom.disabled = true;
    },

    /**
     * Enable this component and fire the 'enable' event.
     * @return {Ext.Component} this
     */
    enable : function(){
        if(this.rendered){
            this.onEnable();
        }
        this.disabled = false;
        this.fireEvent('enable', this);
        return this;
    },

    // private
    onEnable : function(){
        this.getActionEl().removeClass(this.disabledClass);
        this.el.dom.disabled = false;
    },

    /**
     * Convenience function for setting disabled/enabled by boolean.
     * @param {Boolean} disabled
     * @return {Ext.Component} this
     */
    setDisabled : function(disabled){
        return this[disabled ? 'disable' : 'enable']();
    },

    /**
     * Show this component.  Listen to the '{@link #beforeshow}' event and return
     * false to cancel showing the component.  Fires the '{@link #show}'
     * event after showing the component.
     * @return {Ext.Component} this
     */
    show : function(){
        if(this.fireEvent('beforeshow', this) !== false){
            this.hidden = false;
            if(this.autoRender){
                this.render(Ext.isBoolean(this.autoRender) ? Ext.getBody() : this.autoRender);
            }
            if(this.rendered){
                this.onShow();
            }
            this.fireEvent('show', this);
        }
        return this;
    },

    // private
    onShow : function(){
        this.getVisibilityEl().removeClass('x-hide-' + this.hideMode);
    },

    /**
     * Hide this component.  Listen to the '{@link #beforehide}' event and return
     * false to cancel hiding the component.  Fires the '{@link #hide}'
     * event after hiding the component. Note this method is called internally if
     * the component is configured to be {@link #hidden}.
     * @return {Ext.Component} this
     */
    hide : function(){
        if(this.fireEvent('beforehide', this) !== false){
            this.doHide();
            this.fireEvent('hide', this);
        }
        return this;
    },

    // private
    doHide: function(){
        this.hidden = true;
        if(this.rendered){
            this.onHide();
        }
    },

    // private
    onHide : function(){
        this.getVisibilityEl().addClass('x-hide-' + this.hideMode);
    },

    // private
    getVisibilityEl : function(){
        return this.hideParent ? this.container : this.getActionEl();
    },

    /**
     * Convenience function to hide or show this component by boolean.
     * @param {Boolean} visible True to show, false to hide
     * @return {Ext.Component} this
     */
    setVisible : function(visible){
        return this[visible ? 'show' : 'hide']();
    },

    /**
     * Returns true if this component is visible.
     * @return {Boolean} True if this component is visible, false otherwise.
     */
    isVisible : function(){
        return this.rendered && this.getVisibilityEl().isVisible();
    },

    /**
     * Clone the current component using the original config values passed into this instance by default.
     * @param {Object} overrides A new config containing any properties to override in the cloned version.
     * An id property can be passed on this object, otherwise one will be generated to avoid duplicates.
     * @return {Ext.Component} clone The cloned copy of this component
     */
    cloneConfig : function(overrides){
        overrides = overrides || {};
        var id = overrides.id || Ext.id();
        var cfg = Ext.applyIf(overrides, this.initialConfig);
        cfg.id = id; // prevent dup id
        return new this.constructor(cfg);
    },

    /**
     * Gets the xtype for this component as registered with {@link Ext.ComponentMgr}. For a list of all
     * available xtypes, see the {@link Ext.Component} header. Example usage:
     * 
    
var t = new Ext.form.TextField();
alert(t.getXType());  // alerts 'textfield'

    
     * @return {String} The xtype
     */
    getXType : function(){
        return this.constructor.xtype;
    },

    /**
     * 
    Tests whether or not this Component is of a specific xtype. This can test whether this Component is descended
     * from the xtype (default) or whether it is directly of the xtype specified (shallow = true).
    
     * 
    If using your own subclasses, be aware that a Component must register its own xtype
     * to participate in determination of inherited xtypes.
    
     * 
    For a list of all available xtypes, see the {@link Ext.Component} header.
    
     * 
    Example usage:
    
     * 
    
var t = new Ext.form.TextField();
var isText = t.isXType('textfield');        // true
var isBoxSubclass = t.isXType('box');       // true, descended from BoxComponent
var isBoxInstance = t.isXType('box', true); // false, not a direct BoxComponent instance

    
     * @param {String/Ext.Component/Class} xtype The xtype to check for this Component. Note that the the component can either be an instance
     * or a component class:
     * 
    
var c = new Ext.Component();
console.log(c.isXType(c));
console.log(c.isXType(Ext.Component));

    
     * @param {Boolean} shallow (optional) False to check whether this Component is descended from the xtype (this is
     * the default), or true to check whether this Component is directly of the specified xtype.
     * @return {Boolean} True if this component descends from the specified xtype, false otherwise.
     */
    isXType : function(xtype, shallow){
        //assume a string by default
        if (Ext.isFunction(xtype)){
            xtype = xtype.xtype; //handle being passed the class, e.g. Ext.Component
        }else if (Ext.isObject(xtype)){
            xtype = xtype.constructor.xtype; //handle being passed an instance
        }

        return !shallow ? ('/' + this.getXTypes() + '/').indexOf('/' + xtype + '/') != -1 : this.constructor.xtype == xtype;
    },

    /**
     * 
    Returns this Component's xtype hierarchy as a slash-delimited string. For a list of all
     * available xtypes, see the {@link Ext.Component} header.
    
     * 
    If using your own subclasses, be aware that a Component must register its own xtype
     * to participate in determination of inherited xtypes.
    
     * 
    Example usage:
    
     * 
    
var t = new Ext.form.TextField();
alert(t.getXTypes());  // alerts 'component/box/field/textfield'

    
     * @return {String} The xtype hierarchy string
     */
    getXTypes : function(){
        var tc = this.constructor;
        if(!tc.xtypes){
            var c = [], sc = this;
            while(sc && sc.constructor.xtype){
                c.unshift(sc.constructor.xtype);
                sc = sc.constructor.superclass;
            }
            tc.xtypeChain = c;
            tc.xtypes = c.join('/');
        }
        return tc.xtypes;
    },

    /**
     * Find a container above this component at any level by a custom function. If the passed function returns
     * true, the container will be returned.
     * @param {Function} fn The custom function to call with the arguments (container, this component).
     * @return {Ext.Container} The first Container for which the custom function returns true
     */
    findParentBy : function(fn) {
        for (var p = this.ownerCt; (p != null) && !fn(p, this); p = p.ownerCt);
        return p || null;
    },

    /**
     * Find a container above this component at any level by xtype or class
     * @param {String/Ext.Component/Class} xtype The xtype to check for this Component. Note that the the component can either be an instance
     * or a component class:
     * @param {Boolean} shallow (optional) False to check whether this Component is descended from the xtype (this is
     * the default), or true to check whether this Component is directly of the specified xtype.
     * @return {Ext.Container} The first Container which matches the given xtype or class
     */
    findParentByType : function(xtype, shallow){
        return this.findParentBy(function(c){
            return c.isXType(xtype, shallow);
        });
    },

    /**
     * Bubbles up the component/container heirarchy, calling the specified function with each component. The scope (this) of
     * function call will be the scope provided or the current component. The arguments to the function
     * will be the args provided or the current component. If the function returns false at any point,
     * the bubble is stopped.
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope of the function (defaults to current node)
     * @param {Array} args (optional) The args to call the function with (default to passing the current component)
     * @return {Ext.Component} this
     */
    bubble : function(fn, scope, args){
        var p = this;
        while(p){
            if(fn.apply(scope || p, args || [p]) === false){
                break;
            }
            p = p.ownerCt;
        }
        return this;
    },

    // protected
    getPositionEl : function(){
        return this.positionEl || this.el;
    },

    // private
    purgeListeners : function(){
        Ext.Component.superclass.purgeListeners.call(this);
        if(this.mons){
            this.on('beforedestroy', this.clearMons, this, {single: true});
        }
    },

    // private
    clearMons : function(){
        Ext.each(this.mons, function(m){
            m.item.un(m.ename, m.fn, m.scope);
        }, this);
        this.mons = [];
    },

    // private
    createMons: function(){
        if(!this.mons){
            this.mons = [];
            this.on('beforedestroy', this.clearMons, this, {single: true});
        }
    },

    /**
     * 
    Adds listeners to any Observable object (or Elements) which are automatically removed when this Component
     * is destroyed. Usage:
    myGridPanel.mon(myGridPanel.getSelectionModel(), 'selectionchange', handleSelectionChange, null, {buffer: 50});

    
     * 
    or:
    myGridPanel.mon(myGridPanel.getSelectionModel(), {
    selectionchange: handleSelectionChange,
    buffer: 50
});

    
     * @param {Observable|Element} item The item to which to add a listener/listeners.
     * @param {Object|String} ename The event name, or an object containing event name properties.
     * @param {Function} fn Optional. If the ename parameter was an event name, this
     * is the handler function.
     * @param {Object} scope Optional. If the ename parameter was an event name, this
     * is the scope (this reference) in which the handler function is executed.
     * @param {Object} opt Optional. If the ename parameter was an event name, this
     * is the {@link Ext.util.Observable#addListener addListener} options.
     */
    mon : function(item, ename, fn, scope, opt){
        this.createMons();
        if(Ext.isObject(ename)){
            var propRe = /^(?:scope|delay|buffer|single|stopEvent|preventDefault|stopPropagation|normalized|args|delegate)$/;

            var o = ename;
            for(var e in o){
                if(propRe.test(e)){
                    continue;
                }
                if(Ext.isFunction(o[e])){
                    // shared options
                    this.mons.push({
                        item: item, ename: e, fn: o[e], scope: o.scope
                    });
                    item.on(e, o[e], o.scope, o);
                }else{
                    // individual options
                    this.mons.push({
                        item: item, ename: e, fn: o[e], scope: o.scope
                    });
                    item.on(e, o[e]);
                }
            }
            return;
        }

        this.mons.push({
            item: item, ename: ename, fn: fn, scope: scope
        });
        item.on(ename, fn, scope, opt);
    },

    /**
     * Removes listeners that were added by the {@link #mon} method.
     * @param {Observable|Element} item The item from which to remove a listener/listeners.
     * @param {Object|String} ename The event name, or an object containing event name properties.
     * @param {Function} fn Optional. If the ename parameter was an event name, this
     * is the handler function.
     * @param {Object} scope Optional. If the ename parameter was an event name, this
     * is the scope (this reference) in which the handler function is executed.
     */
    mun : function(item, ename, fn, scope){
        var found, mon;
        this.createMons();
        for(var i = 0, len = this.mons.length; i < len; ++i){
            mon = this.mons[i];
            if(item === mon.item && ename == mon.ename && fn === mon.fn && scope === mon.scope){
                this.mons.splice(i, 1);
                item.un(ename, fn, scope);
                found = true;
                break;
            }
        }
        return found;
    },

    /**
     * Returns the next component in the owning container
     * @return Ext.Component
     */
    nextSibling : function(){
        if(this.ownerCt){
            var index = this.ownerCt.items.indexOf(this);
            if(index != -1 && index+1 < this.ownerCt.items.getCount()){
                return this.ownerCt.items.itemAt(index+1);
            }
        }
        return null;
    },

    /**
     * Returns the previous component in the owning container
     * @return Ext.Component
     */
    previousSibling : function(){
        if(this.ownerCt){
            var index = this.ownerCt.items.indexOf(this);
            if(index > 0){
                return this.ownerCt.items.itemAt(index-1);
            }
        }
        return null;
    },

    /**
     * Provides the link for Observable's fireEvent method to bubble up the ownership hierarchy.
     * @return {Ext.Container} the Container which owns this Component.
     */
    getBubbleTarget : function(){
        return this.ownerCt;
    }
});

Ext.reg('component', Ext.Component);
/**
 * @class Ext.Action
 * 
    An Action is a piece of reusable functionality that can be abstracted out of any particular component so that it
 * can be usefully shared among multiple components.  Actions let you share handlers, configuration options and UI
 * updates across any components that support the Action interface (primarily {@link Ext.Toolbar}, {@link Ext.Button}
 * and {@link Ext.menu.Menu} components).
    
 * 
    Aside from supporting the config object interface, any component that needs to use Actions must also support
 * the following method list, as these will be called as needed by the Action class: setText(string), setIconCls(string),
 * setDisabled(boolean), setVisible(boolean) and setHandler(function).
    
 * Example usage:
    
 * 
    
// Define the shared action.  Each component below will have the same
// display text and icon, and will display the same message on click.
var action = new Ext.Action({
    {@link #text}: 'Do something',
    {@link #handler}: function(){
        Ext.Msg.alert('Click', 'You did something.');
    },
    {@link #iconCls}: 'do-something',
    {@link #itemId}: 'myAction'
});

var panel = new Ext.Panel({
    title: 'Actions',
    width: 500,
    height: 300,
    tbar: [
        // Add the action directly to a toolbar as a menu button
        action,
        {
            text: 'Action Menu',
            // Add the action to a menu as a text item
            menu: [action]
        }
    ],
    items: [
        // Add the action to the panel body as a standard button
        new Ext.Button(action)
    ],
    renderTo: Ext.getBody()
});

// Change the text for all components using the action
action.setText('Something else');

// Reference an action through a container using the itemId
var btn = panel.getComponent('myAction');
var aRef = btn.baseAction;
aRef.setText('New text');

    
 * @constructor
 * @param {Object} config The configuration options
 */
Ext.Action = Ext.extend(Object, {
    /**
     * @cfg {String} text The text to set for all components using this action (defaults to '').
     */
    /**
     * @cfg {String} iconCls
     * The CSS class selector that specifies a background image to be used as the header icon for
     * all components using this action (defaults to '').
     * 
    An example of specifying a custom icon class would be something like:
     * 
    
// specify the property in the config for the class:
     ...
     iconCls: 'do-something'

// css class that specifies background image to be used as the icon image:
.do-something { background-image: url(../images/my-icon.gif) 0 6px no-repeat !important; }

    
     */
    /**
     * @cfg {Boolean} disabled True to disable all components using this action, false to enable them (defaults to false).
     */
    /**
     * @cfg {Boolean} hidden True to hide all components using this action, false to show them (defaults to false).
     */
    /**
     * @cfg {Function} handler The function that will be invoked by each component tied to this action
     * when the component's primary event is triggered (defaults to undefined).
     */
    /**
     * @cfg {String} itemId
     * See {@link Ext.Component}.{@link Ext.Component#itemId itemId}.
     */
    /**
     * @cfg {Object} scope The scope (this reference) in which the
     * {@link #handler} is executed. Defaults to this Button.
     */

    constructor : function(config){
        this.initialConfig = config;
        this.itemId = config.itemId = (config.itemId || config.id || Ext.id());
        this.items = [];
    },
    
    // private
    isAction : true,

    /**
     * Sets the text to be displayed by all components using this action.
     * @param {String} text The text to display
     */
    setText : function(text){
        this.initialConfig.text = text;
        this.callEach('setText', [text]);
    },

    /**
     * Gets the text currently displayed by all components using this action.
     */
    getText : function(){
        return this.initialConfig.text;
    },

    /**
     * Sets the icon CSS class for all components using this action.  The class should supply
     * a background image that will be used as the icon image.
     * @param {String} cls The CSS class supplying the icon image
     */
    setIconClass : function(cls){
        this.initialConfig.iconCls = cls;
        this.callEach('setIconClass', [cls]);
    },

    /**
     * Gets the icon CSS class currently used by all components using this action.
     */
    getIconClass : function(){
        return this.initialConfig.iconCls;
    },

    /**
     * Sets the disabled state of all components using this action.  Shortcut method
     * for {@link #enable} and {@link #disable}.
     * @param {Boolean} disabled True to disable the component, false to enable it
     */
    setDisabled : function(v){
        this.initialConfig.disabled = v;
        this.callEach('setDisabled', [v]);
    },

    /**
     * Enables all components using this action.
     */
    enable : function(){
        this.setDisabled(false);
    },

    /**
     * Disables all components using this action.
     */
    disable : function(){
        this.setDisabled(true);
    },

    /**
     * Returns true if the components using this action are currently disabled, else returns false.  
     */
    isDisabled : function(){
        return this.initialConfig.disabled;
    },

    /**
     * Sets the hidden state of all components using this action.  Shortcut method
     * for {@link #hide} and {@link #show}.
     * @param {Boolean} hidden True to hide the component, false to show it
     */
    setHidden : function(v){
        this.initialConfig.hidden = v;
        this.callEach('setVisible', [!v]);
    },

    /**
     * Shows all components using this action.
     */
    show : function(){
        this.setHidden(false);
    },

    /**
     * Hides all components using this action.
     */
    hide : function(){
        this.setHidden(true);
    },

    /**
     * Returns true if the components using this action are currently hidden, else returns false.  
     */
    isHidden : function(){
        return this.initialConfig.hidden;
    },

    /**
     * Sets the function that will be called by each Component using this action when its primary event is triggered.
     * @param {Function} fn The function that will be invoked by the action's components.  The function
     * will be called with no arguments.
     * @param {Object} scope The scope (this reference) in which the function is executed. Defaults to the Component firing the event.
     */
    setHandler : function(fn, scope){
        this.initialConfig.handler = fn;
        this.initialConfig.scope = scope;
        this.callEach('setHandler', [fn, scope]);
    },

    /**
     * Executes the specified function once for each Component currently tied to this action.  The function passed
     * in should accept a single argument that will be an object that supports the basic Action config/method interface.
     * @param {Function} fn The function to execute for each component
     * @param {Object} scope The scope (this reference) in which the function is executed.  Defaults to the Component.
     */
    each : function(fn, scope){
        Ext.each(this.items, fn, scope);
    },

    // private
    callEach : function(fnName, args){
        var cs = this.items;
        for(var i = 0, len = cs.length; i < len; i++){
            cs[i][fnName].apply(cs[i], args);
        }
    },

    // private
    addComponent : function(comp){
        this.items.push(comp);
        comp.on('destroy', this.removeComponent, this);
    },

    // private
    removeComponent : function(comp){
        this.items.remove(comp);
    },

    /**
     * Executes this action manually using the handler function specified in the original config object
     * or the handler function set with {@link #setHandler}.  Any arguments passed to this
     * function will be passed on to the handler function.
     * @param {Mixed...} args Variable number of arguments passed to the handler function
     */
    execute : function(){
        this.initialConfig.handler.apply(this.initialConfig.scope || window, arguments);
    }
});
/**
 * @class Ext.Layer
 * @extends Ext.Element
 * An extended {@link Ext.Element} object that supports a shadow and shim, constrain to viewport and
 * automatic maintaining of shadow/shim positions.
 * @cfg {Boolean} shim False to disable the iframe shim in browsers which need one (defaults to true)
 * @cfg {String/Boolean} shadow True to automatically create an {@link Ext.Shadow}, or a string indicating the
 * shadow's display {@link Ext.Shadow#mode}. False to disable the shadow. (defaults to false)
 * @cfg {Object} dh DomHelper object config to create element with (defaults to {tag: 'div', cls: 'x-layer'}).
 * @cfg {Boolean} constrain False to disable constrain to viewport (defaults to true)
 * @cfg {String} cls CSS class to add to the element
 * @cfg {Number} zindex Starting z-index (defaults to 11000)
 * @cfg {Number} shadowOffset Number of pixels to offset the shadow (defaults to 4)
 * @cfg {Boolean} useDisplay
 * Defaults to use css offsets to hide the Layer. Specify true
 * to use css style 'display:none;' to hide the Layer.
 * @constructor
 * @param {Object} config An object with config options.
 * @param {String/HTMLElement} existingEl (optional) Uses an existing DOM element. If the element is not found it creates it.
 */
(function(){
Ext.Layer = function(config, existingEl){
    config = config || {};
    var dh = Ext.DomHelper,
        cp = config.parentEl, pel = cp ? Ext.getDom(cp) : document.body;
        
    if (existingEl) {
        this.dom = Ext.getDom(existingEl);
    }
    if(!this.dom){
        var o = config.dh || {tag: 'div', cls: 'x-layer'};
        this.dom = dh.append(pel, o);
    }
    if(config.cls){
        this.addClass(config.cls);
    }
    this.constrain = config.constrain !== false;
    this.setVisibilityMode(Ext.Element.VISIBILITY);
    if(config.id){
        this.id = this.dom.id = config.id;
    }else{
        this.id = Ext.id(this.dom);
    }
    this.zindex = config.zindex || this.getZIndex();
    this.position('absolute', this.zindex);
    if(config.shadow){
        this.shadowOffset = config.shadowOffset || 4;
        this.shadow = new Ext.Shadow({
            offset : this.shadowOffset,
            mode : config.shadow
        });
    }else{
        this.shadowOffset = 0;
    }
    this.useShim = config.shim !== false && Ext.useShims;
    this.useDisplay = config.useDisplay;
    this.hide();
};

var supr = Ext.Element.prototype;

// shims are shared among layer to keep from having 100 iframes
var shims = [];

Ext.extend(Ext.Layer, Ext.Element, {

    getZIndex : function(){
        return this.zindex || parseInt((this.getShim() || this).getStyle('z-index'), 10) || 11000;
    },

    getShim : function(){
        if(!this.useShim){
            return null;
        }
        if(this.shim){
            return this.shim;
        }
        var shim = shims.shift();
        if(!shim){
            shim = this.createShim();
            shim.enableDisplayMode('block');
            shim.dom.style.display = 'none';
            shim.dom.style.visibility = 'visible';
        }
        var pn = this.dom.parentNode;
        if(shim.dom.parentNode != pn){
            pn.insertBefore(shim.dom, this.dom);
        }
        shim.setStyle('z-index', this.getZIndex()-2);
        this.shim = shim;
        return shim;
    },

    hideShim : function(){
        if(this.shim){
            this.shim.setDisplayed(false);
            shims.push(this.shim);
            delete this.shim;
        }
    },

    disableShadow : function(){
        if(this.shadow){
            this.shadowDisabled = true;
            this.shadow.hide();
            this.lastShadowOffset = this.shadowOffset;
            this.shadowOffset = 0;
        }
    },

    enableShadow : function(show){
        if(this.shadow){
            this.shadowDisabled = false;
            if(Ext.isDefined(this.lastShadowOffset)) {
                this.shadowOffset = this.lastShadowOffset;
                delete this.lastShadowOffset;
            }
            if(show){
                this.sync(true);
            }
        }
    },

    // private
    // this code can execute repeatedly in milliseconds (i.e. during a drag) so
    // code size was sacrificed for effeciency (e.g. no getBox/setBox, no XY calls)
    sync : function(doShow){
        var shadow = this.shadow;
        if(!this.updating && this.isVisible() && (shadow || this.useShim)){
            var shim = this.getShim(),
                w = this.getWidth(),
                h = this.getHeight(),
                l = this.getLeft(true),
                t = this.getTop(true);

            if(shadow && !this.shadowDisabled){
                if(doShow && !shadow.isVisible()){
                    shadow.show(this);
                }else{
                    shadow.realign(l, t, w, h);
                }
                if(shim){
                    if(doShow){
                       shim.show();
                    }
                    // fit the shim behind the shadow, so it is shimmed too
                    var shadowAdj = shadow.el.getXY(), shimStyle = shim.dom.style,
                        shadowSize = shadow.el.getSize();
                    shimStyle.left = (shadowAdj[0])+'px';
                    shimStyle.top = (shadowAdj[1])+'px';
                    shimStyle.width = (shadowSize.width)+'px';
                    shimStyle.height = (shadowSize.height)+'px';
                }
            }else if(shim){
                if(doShow){
                   shim.show();
                }
                shim.setSize(w, h);
                shim.setLeftTop(l, t);
            }
        }
    },

    // private
    destroy : function(){
        this.hideShim();
        if(this.shadow){
            this.shadow.hide();
        }
        this.removeAllListeners();
        Ext.removeNode(this.dom);
        delete this.dom;
    },

    remove : function(){
        this.destroy();
    },

    // private
    beginUpdate : function(){
        this.updating = true;
    },

    // private
    endUpdate : function(){
        this.updating = false;
        this.sync(true);
    },

    // private
    hideUnders : function(negOffset){
        if(this.shadow){
            this.shadow.hide();
        }
        this.hideShim();
    },

    // private
    constrainXY : function(){
        if(this.constrain){
            var vw = Ext.lib.Dom.getViewWidth(),
                vh = Ext.lib.Dom.getViewHeight();
            var s = Ext.getDoc().getScroll();

            var xy = this.getXY();
            var x = xy[0], y = xy[1];
            var so = this.shadowOffset;
            var w = this.dom.offsetWidth+so, h = this.dom.offsetHeight+so;
            // only move it if it needs it
            var moved = false;
            // first validate right/bottom
            if((x + w) > vw+s.left){
                x = vw - w - so;
                moved = true;
            }
            if((y + h) > vh+s.top){
                y = vh - h - so;
                moved = true;
            }
            // then make sure top/left isn't negative
            if(x < s.left){
                x = s.left;
                moved = true;
            }
            if(y < s.top){
                y = s.top;
                moved = true;
            }
            if(moved){
                if(this.avoidY){
                    var ay = this.avoidY;
                    if(y <= ay && (y+h) >= ay){
                        y = ay-h-5;
                    }
                }
                xy = [x, y];
                this.storeXY(xy);
                supr.setXY.call(this, xy);
                this.sync();
            }
        }
        return this;
    },
    
    getConstrainOffset : function(){
        return this.shadowOffset;    
    },

    isVisible : function(){
        return this.visible;
    },

    // private
    showAction : function(){
        this.visible = true; // track visibility to prevent getStyle calls
        if(this.useDisplay === true){
            this.setDisplayed('');
        }else if(this.lastXY){
            supr.setXY.call(this, this.lastXY);
        }else if(this.lastLT){
            supr.setLeftTop.call(this, this.lastLT[0], this.lastLT[1]);
        }
    },

    // private
    hideAction : function(){
        this.visible = false;
        if(this.useDisplay === true){
            this.setDisplayed(false);
        }else{
            this.setLeftTop(-10000,-10000);
        }
    },

    // overridden Element method
    setVisible : function(v, a, d, c, e){
        if(v){
            this.showAction();
        }
        if(a && v){
            var cb = function(){
                this.sync(true);
                if(c){
                    c();
                }
            }.createDelegate(this);
            supr.setVisible.call(this, true, true, d, cb, e);
        }else{
            if(!v){
                this.hideUnders(true);
            }
            var cb = c;
            if(a){
                cb = function(){
                    this.hideAction();
                    if(c){
                        c();
                    }
                }.createDelegate(this);
            }
            supr.setVisible.call(this, v, a, d, cb, e);
            if(v){
                this.sync(true);
            }else if(!a){
                this.hideAction();
            }
        }
        return this;
    },

    storeXY : function(xy){
        delete this.lastLT;
        this.lastXY = xy;
    },

    storeLeftTop : function(left, top){
        delete this.lastXY;
        this.lastLT = [left, top];
    },

    // private
    beforeFx : function(){
        this.beforeAction();
        return Ext.Layer.superclass.beforeFx.apply(this, arguments);
    },

    // private
    afterFx : function(){
        Ext.Layer.superclass.afterFx.apply(this, arguments);
        this.sync(this.isVisible());
    },

    // private
    beforeAction : function(){
        if(!this.updating && this.shadow){
            this.shadow.hide();
        }
    },

    // overridden Element method
    setLeft : function(left){
        this.storeLeftTop(left, this.getTop(true));
        supr.setLeft.apply(this, arguments);
        this.sync();
        return this;
    },

    setTop : function(top){
        this.storeLeftTop(this.getLeft(true), top);
        supr.setTop.apply(this, arguments);
        this.sync();
        return this;
    },

    setLeftTop : function(left, top){
        this.storeLeftTop(left, top);
        supr.setLeftTop.apply(this, arguments);
        this.sync();
        return this;
    },

    setXY : function(xy, a, d, c, e){
        this.fixDisplay();
        this.beforeAction();
        this.storeXY(xy);
        var cb = this.createCB(c);
        supr.setXY.call(this, xy, a, d, cb, e);
        if(!a){
            cb();
        }
        return this;
    },

    // private
    createCB : function(c){
        var el = this;
        return function(){
            el.constrainXY();
            el.sync(true);
            if(c){
                c();
            }
        };
    },

    // overridden Element method
    setX : function(x, a, d, c, e){
        this.setXY([x, this.getY()], a, d, c, e);
        return this;
    },

    // overridden Element method
    setY : function(y, a, d, c, e){
        this.setXY([this.getX(), y], a, d, c, e);
        return this;
    },

    // overridden Element method
    setSize : function(w, h, a, d, c, e){
        this.beforeAction();
        var cb = this.createCB(c);
        supr.setSize.call(this, w, h, a, d, cb, e);
        if(!a){
            cb();
        }
        return this;
    },

    // overridden Element method
    setWidth : function(w, a, d, c, e){
        this.beforeAction();
        var cb = this.createCB(c);
        supr.setWidth.call(this, w, a, d, cb, e);
        if(!a){
            cb();
        }
        return this;
    },

    // overridden Element method
    setHeight : function(h, a, d, c, e){
        this.beforeAction();
        var cb = this.createCB(c);
        supr.setHeight.call(this, h, a, d, cb, e);
        if(!a){
            cb();
        }
        return this;
    },

    // overridden Element method
    setBounds : function(x, y, w, h, a, d, c, e){
        this.beforeAction();
        var cb = this.createCB(c);
        if(!a){
            this.storeXY([x, y]);
            supr.setXY.call(this, [x, y]);
            supr.setSize.call(this, w, h, a, d, cb, e);
            cb();
        }else{
            supr.setBounds.call(this, x, y, w, h, a, d, cb, e);
        }
        return this;
    },

    /**
     * Sets the z-index of this layer and adjusts any shadow and shim z-indexes. The layer z-index is automatically
     * incremented by two more than the value passed in so that it always shows above any shadow or shim (the shadow
     * element, if any, will be assigned z-index + 1, and the shim element, if any, will be assigned the unmodified z-index).
     * @param {Number} zindex The new z-index to set
     * @return {this} The Layer
     */
    setZIndex : function(zindex){
        this.zindex = zindex;
        this.setStyle('z-index', zindex + 2);
        if(this.shadow){
            this.shadow.setZIndex(zindex + 1);
        }
        if(this.shim){
            this.shim.setStyle('z-index', zindex);
        }
        return this;
    }
});
})();
/**
 * @class Ext.Shadow
 * Simple class that can provide a shadow effect for any element.  Note that the element MUST be absolutely positioned,
 * and the shadow does not provide any shimming.  This should be used only in simple cases -- for more advanced
 * functionality that can also provide the same shadow effect, see the {@link Ext.Layer} class.
 * @constructor
 * Create a new Shadow
 * @param {Object} config The config object
 */
Ext.Shadow = function(config) {
    Ext.apply(this, config);
    if (typeof this.mode != "string") {
        this.mode = this.defaultMode;
    }
    var o = this.offset,
        a = {
            h: 0
        },
        rad = Math.floor(this.offset / 2);
    switch (this.mode.toLowerCase()) {
        // all this hideous nonsense calculates the various offsets for shadows
        case "drop":
            a.w = 0;
            a.l = a.t = o;
            a.t -= 1;
            if (Ext.isIE9m) {
                a.l -= this.offset + rad;
                a.t -= this.offset + rad;
                a.w -= rad;
                a.h -= rad;
                a.t += 1;
            }
        break;
        case "sides":
            a.w = (o * 2);
            a.l = -o;
            a.t = o - 1;
            if (Ext.isIE9m) {
                a.l -= (this.offset - rad);
                a.t -= this.offset + rad;
                a.l += 1;
                a.w -= (this.offset - rad) * 2;
                a.w -= rad + 1;
                a.h -= 1;
            }
        break;
        case "frame":
            a.w = a.h = (o * 2);
            a.l = a.t = -o;
            a.t += 1;
            a.h -= 2;
            if (Ext.isIE9m) {
                a.l -= (this.offset - rad);
                a.t -= (this.offset - rad);
                a.l += 1;
                a.w -= (this.offset + rad + 1);
                a.h -= (this.offset + rad);
                a.h += 1;
            }
        break;
    };

    this.adjusts = a;
};

Ext.Shadow.prototype = {
    /**
     * @cfg {String} mode
     * The shadow display mode.  Supports the following options:
      
     * 
    • sides : Shadow displays on both sides and bottom only
      • 
     * 
    • frame : Shadow displays equally on all four sides
      • 
     * 
    • drop : Traditional bottom-right drop shadow
      • 
     * 
    
     */
    /**
     * @cfg {String} offset
     * The number of pixels to offset the shadow from the element (defaults to 4)
     */
    offset: 4,

    // private
    defaultMode: "drop",

    /**
     * Displays the shadow under the target element
     * @param {Mixed} targetEl The id or element under which the shadow should display
     */
    show: function(target) {
        target = Ext.get(target);
        if (!this.el) {
            this.el = Ext.Shadow.Pool.pull();
            if (this.el.dom.nextSibling != target.dom) {
                this.el.insertBefore(target);
            }
        }
        this.el.setStyle("z-index", this.zIndex || parseInt(target.getStyle("z-index"), 10) - 1);
        if (Ext.isIE9m) {
            this.el.dom.style.filter = "progid:DXImageTransform.Microsoft.alpha(opacity=50) progid:DXImageTransform.Microsoft.Blur(pixelradius=" + (this.offset) + ")";
        }
        this.realign(
        target.getLeft(true),
        target.getTop(true),
        target.getWidth(),
        target.getHeight()
        );
        this.el.dom.style.display = "block";
    },

    /**
     * Returns true if the shadow is visible, else false
     */
    isVisible: function() {
        return this.el ? true: false;
    },

    /**
     * Direct alignment when values are already available. Show must be called at least once before
     * calling this method to ensure it is initialized.
     * @param {Number} left The target element left position
     * @param {Number} top The target element top position
     * @param {Number} width The target element width
     * @param {Number} height The target element height
     */
    realign: function(l, t, w, h) {
        if (!this.el) {
            return;
        }
        var a = this.adjusts,
            d = this.el.dom,
            s = d.style,
            iea = 0,
            sw = (w + a.w),
            sh = (h + a.h),
            sws = sw + "px",
            shs = sh + "px",
            cn,
            sww;
        s.left = (l + a.l) + "px";
        s.top = (t + a.t) + "px";
        if (s.width != sws || s.height != shs) {
            s.width = sws;
            s.height = shs;
            if (!Ext.isIE9m) {
                cn = d.childNodes;
                sww = Math.max(0, (sw - 12)) + "px";
                cn[0].childNodes[1].style.width = sww;
                cn[1].childNodes[1].style.width = sww;
                cn[2].childNodes[1].style.width = sww;
                cn[1].style.height = Math.max(0, (sh - 12)) + "px";
            }
        }
    },

    /**
     * Hides this shadow
     */
    hide: function() {
        if (this.el) {
            this.el.dom.style.display = "none";
            Ext.Shadow.Pool.push(this.el);
            delete this.el;
        }
    },

    /**
     * Adjust the z-index of this shadow
     * @param {Number} zindex The new z-index
     */
    setZIndex: function(z) {
        this.zIndex = z;
        if (this.el) {
            this.el.setStyle("z-index", z);
        }
    }
};

// Private utility class that manages the internal Shadow cache
Ext.Shadow.Pool = function() {
    var p = [],
        markup = Ext.isIE9m ?
            '
    ':
            '
    ';
    return {
        pull: function() {
            var sh = p.shift();
            if (!sh) {
                sh = Ext.get(Ext.DomHelper.insertHtml("beforeBegin", document.body.firstChild, markup));
                sh.autoBoxAdjust = false;
            }
            return sh;
        },

        push: function(sh) {
            p.push(sh);
        }
    };
}();/**
 * @class Ext.BoxComponent
 * @extends Ext.Component
 * 
    Base class for any {@link Ext.Component Component} that is to be sized as a box, using width and height.
    
 * 
    BoxComponent provides automatic box model adjustments for sizing and positioning and will work correctly
 * within the Component rendering model.
    
 * 
    A BoxComponent may be created as a custom Component which encapsulates any HTML element, either a pre-existing
 * element, or one that is created to your specifications at render time. Usually, to participate in layouts,
 * a Component will need to be a BoxComponent in order to have its width and height managed.
    
 * 
    To use a pre-existing element as a BoxComponent, configure it so that you preset the el property to the
 * element to reference:
    
var pageHeader = new Ext.BoxComponent({
    el: 'my-header-div'
});
    
 * This may then be {@link Ext.Container#add added} to a {@link Ext.Container Container} as a child item.
    
 * 
    To create a BoxComponent based around a HTML element to be created at render time, use the
 * {@link Ext.Component#autoEl autoEl} config option which takes the form of a
 * {@link Ext.DomHelper DomHelper} specification:
    
var myImage = new Ext.BoxComponent({
    autoEl: {
        tag: 'img',
        src: '/images/my-image.jpg'
    }
});
    
 * @constructor
 * @param {Ext.Element/String/Object} config The configuration options.
 * @xtype box
 */
Ext.BoxComponent = Ext.extend(Ext.Component, {

    // Configs below are used for all Components when rendered by BoxLayout.
    /**
     * @cfg {Number} flex
     * 
    Note: this config is only used when this Component is rendered
     * by a Container which has been configured to use a {@link Ext.layout.BoxLayout BoxLayout}.
     * Each child Component with a flex property will be flexed either vertically (by a VBoxLayout)
     * or horizontally (by an HBoxLayout) according to the item's relative flex value
     * compared to the sum of all Components with flex value specified. Any child items that have
     * either a flex = 0 or flex = undefined will not be 'flexed' (the initial size will not be changed).
     */
    // Configs below are used for all Components when rendered by AnchorLayout.
    /**
     * @cfg {String} anchor 
    Note: this config is only used when this Component is rendered
     * by a Container which has been configured to use an {@link Ext.layout.AnchorLayout AnchorLayout} (or subclass thereof).
     * based layout manager, for example:
      
     * 
    • {@link Ext.form.FormPanel}
      • 
     * 
    • specifying layout: 'anchor' // or 'form', or 'absolute'
      • 
     * 
    
     * 
    See {@link Ext.layout.AnchorLayout}.{@link Ext.layout.AnchorLayout#anchor anchor} also.
    
     */
    // tabTip config is used when a BoxComponent is a child of a TabPanel
    /**
     * @cfg {String} tabTip
     * 
    Note: this config is only used when this BoxComponent is a child item of a TabPanel.
    
     * A string to be used as innerHTML (html tags are accepted) to show in a tooltip when mousing over
     * the associated tab selector element. {@link Ext.QuickTips}.init()
     * must be called in order for the tips to render.
     */
    // Configs below are used for all Components when rendered by BorderLayout.
    /**
     * @cfg {String} region 
    Note: this config is only used when this BoxComponent is rendered
     * by a Container which has been configured to use the {@link Ext.layout.BorderLayout BorderLayout}
     * layout manager (e.g. specifying layout:'border').

    
     * 
    See {@link Ext.layout.BorderLayout} also.
    
     */
    // margins config is used when a BoxComponent is rendered by BorderLayout or BoxLayout.
    /**
     * @cfg {Object} margins 
    Note: this config is only used when this BoxComponent is rendered
     * by a Container which has been configured to use the {@link Ext.layout.BorderLayout BorderLayout}
     * or one of the two {@link Ext.layout.BoxLayout BoxLayout} subclasses.
    
     * 
    An object containing margins to apply to this BoxComponent in the
     * format:
    
{
    top: (top margin),
    right: (right margin),
    bottom: (bottom margin),
    left: (left margin)
}
    
     * 
    May also be a string containing space-separated, numeric margin values. The order of the
     * sides associated with each value matches the way CSS processes margin values:
    
     * 
      
     * 
    • If there is only one value, it applies to all sides.
      • 
     * 
    • If there are two values, the top and bottom borders are set to the first value and the
     * right and left are set to the second.
      • 
     * 
    • If there are three values, the top is set to the first value, the left and right are set
     * to the second, and the bottom is set to the third.
      • 
     * 
    • If there are four values, they apply to the top, right, bottom, and left, respectively.
      • 
     * 
    
     * 
    Defaults to:
    
     * {top:0, right:0, bottom:0, left:0}
     * 
    
     */
    /**
     * @cfg {Number} x
     * The local x (left) coordinate for this component if contained within a positioning container.
     */
    /**
     * @cfg {Number} y
     * The local y (top) coordinate for this component if contained within a positioning container.
     */
    /**
     * @cfg {Number} pageX
     * The page level x coordinate for this component if contained within a positioning container.
     */
    /**
     * @cfg {Number} pageY
     * The page level y coordinate for this component if contained within a positioning container.
     */
    /**
     * @cfg {Number} height
     * The height of this component in pixels (defaults to auto).
     * Note to express this dimension as a percentage or offset see {@link Ext.Component#anchor}.
     */
    /**
     * @cfg {Number} width
     * The width of this component in pixels (defaults to auto).
     * Note to express this dimension as a percentage or offset see {@link Ext.Component#anchor}.
     */
    /**
     * @cfg {Number} boxMinHeight
     * 
    The minimum value in pixels which this BoxComponent will set its height to.
    
     * 
    Warning: This will override any size management applied by layout managers.
    
     */
    /**
     * @cfg {Number} boxMinWidth
     * 
    The minimum value in pixels which this BoxComponent will set its width to.
    
     * 
    Warning: This will override any size management applied by layout managers.
    
     */
    /**
     * @cfg {Number} boxMaxHeight
     * 
    The maximum value in pixels which this BoxComponent will set its height to.
    
     * 
    Warning: This will override any size management applied by layout managers.
    
     */
    /**
     * @cfg {Number} boxMaxWidth
     * 
    The maximum value in pixels which this BoxComponent will set its width to.
    
     * 
    Warning: This will override any size management applied by layout managers.
    
     */
    /**
     * @cfg {Boolean} autoHeight
     * 
    True to use height:'auto', false to use fixed height (or allow it to be managed by its parent
     * Container's {@link Ext.Container#layout layout manager}. Defaults to false.
    
     * 
    Note: Although many components inherit this config option, not all will
     * function as expected with a height of 'auto'. Setting autoHeight:true means that the
     * browser will manage height based on the element's contents, and that Ext will not manage it at all.
    
     * 
    If the browser is managing the height, be aware that resizes performed by the browser in response
     * to changes within the structure of the Component cannot be detected. Therefore changes to the height might
     * result in elements needing to be synchronized with the new height. Example:
    
var w = new Ext.Window({
    title: 'Window',
    width: 600,
    autoHeight: true,
    items: {
        title: 'Collapse Me',
        height: 400,
        collapsible: true,
        border: false,
        listeners: {
            beforecollapse: function() {
                w.el.shadow.hide();
            },
            beforeexpand: function() {
                w.el.shadow.hide();
            },
            collapse: function() {
                w.syncShadow();
            },
            expand: function() {
                w.syncShadow();
            }
        }
    }
}).show();

    
     */
    /**
     * @cfg {Boolean} autoWidth
     * 
    True to use width:'auto', false to use fixed width (or allow it to be managed by its parent
     * Container's {@link Ext.Container#layout layout manager}. Defaults to false.
    
     * 
    Note: Although many components  inherit this config option, not all will
     * function as expected with a width of 'auto'. Setting autoWidth:true means that the
     * browser will manage width based on the element's contents, and that Ext will not manage it at all.
    
     * 
    If the browser is managing the width, be aware that resizes performed by the browser in response
     * to changes within the structure of the Component cannot be detected. Therefore changes to the width might
     * result in elements needing to be synchronized with the new width. For example, where the target element is:
    
<div id='grid-container' style='margin-left:25%;width:50%'></div>

    
     * A Panel rendered into that target element must listen for browser window resize in order to relay its
      * child items when the browser changes its width:
    
var myPanel = new Ext.Panel({
    renderTo: 'grid-container',
    monitorResize: true, // relay on browser resize
    title: 'Panel',
    height: 400,
    autoWidth: true,
    layout: 'hbox',
    layoutConfig: {
        align: 'stretch'
    },
    defaults: {
        flex: 1
    },
    items: [{
        title: 'Box 1',
    }, {
        title: 'Box 2'
    }, {
        title: 'Box 3'
    }],
});

    
     */
    /**
     * @cfg {Boolean} autoScroll
     * true to use overflow:'auto' on the components layout element and show scroll bars automatically when
     * necessary, false to clip any overflowing content (defaults to false).
     */

    /* // private internal config
     * {Boolean} deferHeight
     * True to defer height calculations to an external component, false to allow this component to set its own
     * height (defaults to false).
     */

    // private
    initComponent : function(){
        Ext.BoxComponent.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event resize
             * Fires after the component is resized.
             * @param {Ext.Component} this
             * @param {Number} adjWidth The box-adjusted width that was set
             * @param {Number} adjHeight The box-adjusted height that was set
             * @param {Number} rawWidth The width that was originally specified
             * @param {Number} rawHeight The height that was originally specified
             */
            'resize',
            /**
             * @event move
             * Fires after the component is moved.
             * @param {Ext.Component} this
             * @param {Number} x The new x position
             * @param {Number} y The new y position
             */
            'move'
        );
    },

    // private, set in afterRender to signify that the component has been rendered
    boxReady : false,
    // private, used to defer height settings to subclasses
    deferHeight: false,

    /**
     * Sets the width and height of this BoxComponent. This method fires the {@link #resize} event. This method can accept
     * either width and height as separate arguments, or you can pass a size object like {width:10, height:20}.
     * @param {Mixed} width The new width to set. This may be one of:
      
     * 
    • A Number specifying the new width in the {@link #getEl Element}'s {@link Ext.Element#defaultUnit}s (by default, pixels).
      • 
     * 
    • A String used to set the CSS width style.
      • 
     * 
    • A size object in the format {width: widthValue, height: heightValue}.
      • 
     * 
    • undefined to leave the width unchanged.
      • 
     * 
    
     * @param {Mixed} height The new height to set (not required if a size object is passed as the first arg).
     * This may be one of:
      
     * 
    • A Number specifying the new height in the {@link #getEl Element}'s {@link Ext.Element#defaultUnit}s (by default, pixels).
      • 
     * 
    • A String used to set the CSS height style. Animation may not be used.
      • 
     * 
    • undefined to leave the height unchanged.
      • 
     * 
    
     * @return {Ext.BoxComponent} this
     */
    setSize : function(w, h){

        // support for standard size objects
        if(typeof w == 'object'){
            h = w.height;
            w = w.width;
        }
        if (Ext.isDefined(w) && Ext.isDefined(this.boxMinWidth) && (w < this.boxMinWidth)) {
            w = this.boxMinWidth;
        }
        if (Ext.isDefined(h) && Ext.isDefined(this.boxMinHeight) && (h < this.boxMinHeight)) {
            h = this.boxMinHeight;
        }
        if (Ext.isDefined(w) && Ext.isDefined(this.boxMaxWidth) && (w > this.boxMaxWidth)) {
            w = this.boxMaxWidth;
        }
        if (Ext.isDefined(h) && Ext.isDefined(this.boxMaxHeight) && (h > this.boxMaxHeight)) {
            h = this.boxMaxHeight;
        }
        // not rendered
        if(!this.boxReady){
            this.width  = w;
            this.height = h;
            return this;
        }

        // prevent recalcs when not needed
        if(this.cacheSizes !== false && this.lastSize && this.lastSize.width == w && this.lastSize.height == h){
            return this;
        }
        this.lastSize = {width: w, height: h};
        var adj = this.adjustSize(w, h),
            aw = adj.width,
            ah = adj.height,
            rz;
        if(aw !== undefined || ah !== undefined){ // this code is nasty but performs better with floaters
            rz = this.getResizeEl();
            if(!this.deferHeight && aw !== undefined && ah !== undefined){
                rz.setSize(aw, ah);
            }else if(!this.deferHeight && ah !== undefined){
                rz.setHeight(ah);
            }else if(aw !== undefined){
                rz.setWidth(aw);
            }
            this.onResize(aw, ah, w, h);
            this.fireEvent('resize', this, aw, ah, w, h);
        }
        return this;
    },

    /**
     * Sets the width of the component.  This method fires the {@link #resize} event.
     * @param {Mixed} width The new width to set. This may be one of:
      
     * 
    • A Number specifying the new width in the {@link #getEl Element}'s {@link Ext.Element#defaultUnit defaultUnit}s (by default, pixels).
      • 
     * 
    • A String used to set the CSS width style.
      • 
     * 
    
     * @return {Ext.BoxComponent} this
     */
    setWidth : function(width){
        return this.setSize(width);
    },

    /**
     * Sets the height of the component.  This method fires the {@link #resize} event.
     * @param {Mixed} height The new height to set. This may be one of:
      
     * 
    • A Number specifying the new height in the {@link #getEl Element}'s {@link Ext.Element#defaultUnit defaultUnit}s (by default, pixels).
      • 
     * 
    • A String used to set the CSS height style.
      • 
     * 
    • undefined to leave the height unchanged.
      • 
     * 
    
     * @return {Ext.BoxComponent} this
     */
    setHeight : function(height){
        return this.setSize(undefined, height);
    },

    /**
     * Gets the current size of the component's underlying element.
     * @return {Object} An object containing the element's size {width: (element width), height: (element height)}
     */
    getSize : function(){
        return this.getResizeEl().getSize();
    },

    /**
     * Gets the current width of the component's underlying element.
     * @return {Number}
     */
    getWidth : function(){
        return this.getResizeEl().getWidth();
    },

    /**
     * Gets the current height of the component's underlying element.
     * @return {Number}
     */
    getHeight : function(){
        return this.getResizeEl().getHeight();
    },

    /**
     * Gets the current size of the component's underlying element, including space taken by its margins.
     * @return {Object} An object containing the element's size {width: (element width + left/right margins), height: (element height + top/bottom margins)}
     */
    getOuterSize : function(){
        var el = this.getResizeEl();
        return {width: el.getWidth() + el.getMargins('lr'),
                height: el.getHeight() + el.getMargins('tb')};
    },

    /**
     * Gets the current XY position of the component's underlying element.
     * @param {Boolean} local (optional) If true the element's left and top are returned instead of page XY (defaults to false)
     * @return {Array} The XY position of the element (e.g., [100, 200])
     */
    getPosition : function(local){
        var el = this.getPositionEl();
        if(local === true){
            return [el.getLeft(true), el.getTop(true)];
        }
        return this.xy || el.getXY();
    },

    /**
     * Gets the current box measurements of the component's underlying element.
     * @param {Boolean} local (optional) If true the element's left and top are returned instead of page XY (defaults to false)
     * @return {Object} box An object in the format {x, y, width, height}
     */
    getBox : function(local){
        var pos = this.getPosition(local);
        var s = this.getSize();
        s.x = pos[0];
        s.y = pos[1];
        return s;
    },

    /**
     * Sets the current box measurements of the component's underlying element.
     * @param {Object} box An object in the format {x, y, width, height}
     * @return {Ext.BoxComponent} this
     */
    updateBox : function(box){
        this.setSize(box.width, box.height);
        this.setPagePosition(box.x, box.y);
        return this;
    },

    /**
     * 
    Returns the outermost Element of this Component which defines the Components overall size.
    
     * 
    Usually this will return the same Element as {@link #getEl},
     * but in some cases, a Component may have some more wrapping Elements around its main
     * active Element.
    
     * 
    An example is a ComboBox. It is encased in a wrapping Element which
     * contains both the <input> Element (which is what would be returned
     * by its {@link #getEl} method, and the trigger button Element.
     * This Element is returned as the resizeEl.
     * @return {Ext.Element} The Element which is to be resized by size managing layouts.
     */
    getResizeEl : function(){
        return this.resizeEl || this.el;
    },

    /**
     * Sets the overflow on the content element of the component.
     * @param {Boolean} scroll True to allow the Component to auto scroll.
     * @return {Ext.BoxComponent} this
     */
    setAutoScroll : function(scroll){
        if(this.rendered){
            this.getContentTarget().setOverflow(scroll ? 'auto' : '');
        }
        this.autoScroll = scroll;
        return this;
    },

    /**
     * Sets the left and top of the component.  To set the page XY position instead, use {@link #setPagePosition}.
     * This method fires the {@link #move} event.
     * @param {Number} left The new left
     * @param {Number} top The new top
     * @return {Ext.BoxComponent} this
     */
    setPosition : function(x, y){
        if(x && typeof x[1] == 'number'){
            y = x[1];
            x = x[0];
        }
        this.x = x;
        this.y = y;
        if(!this.boxReady){
            return this;
        }
        var adj = this.adjustPosition(x, y);
        var ax = adj.x, ay = adj.y;

        var el = this.getPositionEl();
        if(ax !== undefined || ay !== undefined){
            if(ax !== undefined && ay !== undefined){
                el.setLeftTop(ax, ay);
            }else if(ax !== undefined){
                el.setLeft(ax);
            }else if(ay !== undefined){
                el.setTop(ay);
            }
            this.onPosition(ax, ay);
            this.fireEvent('move', this, ax, ay);
        }
        return this;
    },

    /**
     * Sets the page XY position of the component.  To set the left and top instead, use {@link #setPosition}.
     * This method fires the {@link #move} event.
     * @param {Number} x The new x position
     * @param {Number} y The new y position
     * @return {Ext.BoxComponent} this
     */
    setPagePosition : function(x, y){
        if(x && typeof x[1] == 'number'){
            y = x[1];
            x = x[0];
        }
        this.pageX = x;
        this.pageY = y;
        if(!this.boxReady){
            return;
        }
        if(x === undefined || y === undefined){ // cannot translate undefined points
            return;
        }
        var p = this.getPositionEl().translatePoints(x, y);
        this.setPosition(p.left, p.top);
        return this;
    },

    // private
    afterRender : function(){
        Ext.BoxComponent.superclass.afterRender.call(this);
        if(this.resizeEl){
            this.resizeEl = Ext.get(this.resizeEl);
        }
        if(this.positionEl){
            this.positionEl = Ext.get(this.positionEl);
        }
        this.boxReady = true;
        Ext.isDefined(this.autoScroll) && this.setAutoScroll(this.autoScroll);
        this.setSize(this.width, this.height);
        if(this.x || this.y){
            this.setPosition(this.x, this.y);
        }else if(this.pageX || this.pageY){
            this.setPagePosition(this.pageX, this.pageY);
        }
    },

    /**
     * Force the component's size to recalculate based on the underlying element's current height and width.
     * @return {Ext.BoxComponent} this
     */
    syncSize : function(){
        delete this.lastSize;
        this.setSize(this.autoWidth ? undefined : this.getResizeEl().getWidth(), this.autoHeight ? undefined : this.getResizeEl().getHeight());
        return this;
    },

    /* // protected
     * Called after the component is resized, this method is empty by default but can be implemented by any
     * subclass that needs to perform custom logic after a resize occurs.
     * @param {Number} adjWidth The box-adjusted width that was set
     * @param {Number} adjHeight The box-adjusted height that was set
     * @param {Number} rawWidth The width that was originally specified
     * @param {Number} rawHeight The height that was originally specified
     */
    onResize : function(adjWidth, adjHeight, rawWidth, rawHeight){
    },

    /* // protected
     * Called after the component is moved, this method is empty by default but can be implemented by any
     * subclass that needs to perform custom logic after a move occurs.
     * @param {Number} x The new x position
     * @param {Number} y The new y position
     */
    onPosition : function(x, y){

    },

    // private
    adjustSize : function(w, h){
        if(this.autoWidth){
            w = 'auto';
        }
        if(this.autoHeight){
            h = 'auto';
        }
        return {width : w, height: h};
    },

    // private
    adjustPosition : function(x, y){
        return {x : x, y: y};
    }
});
Ext.reg('box', Ext.BoxComponent);


/**
 * @class Ext.Spacer
 * @extends Ext.BoxComponent
 * 
    Used to provide a sizable space in a layout.
    
 * @constructor
 * @param {Object} config
 */
Ext.Spacer = Ext.extend(Ext.BoxComponent, {
    autoEl:'div'
});
Ext.reg('spacer', Ext.Spacer);/**
 * @class Ext.SplitBar
 * @extends Ext.util.Observable
 * Creates draggable splitter bar functionality from two elements (element to be dragged and element to be resized).
 * 

    
 * Usage:
 * 
    
var split = new Ext.SplitBar("elementToDrag", "elementToSize",
                   Ext.SplitBar.HORIZONTAL, Ext.SplitBar.LEFT);
split.setAdapter(new Ext.SplitBar.AbsoluteLayoutAdapter("container"));
split.minSize = 100;
split.maxSize = 600;
split.animate = true;
split.on('moved', splitterMoved);

    
 * @constructor
 * Create a new SplitBar
 * @param {Mixed} dragElement The element to be dragged and act as the SplitBar.
 * @param {Mixed} resizingElement The element to be resized based on where the SplitBar element is dragged
 * @param {Number} orientation (optional) Either Ext.SplitBar.HORIZONTAL or Ext.SplitBar.VERTICAL. (Defaults to HORIZONTAL)
 * @param {Number} placement (optional) Either Ext.SplitBar.LEFT or Ext.SplitBar.RIGHT for horizontal or
                        Ext.SplitBar.TOP or Ext.SplitBar.BOTTOM for vertical. (By default, this is determined automatically by the initial
                        position of the SplitBar).
 */
Ext.SplitBar = function(dragElement, resizingElement, orientation, placement, existingProxy){

    /** @private */
    this.el = Ext.get(dragElement, true);
    this.el.unselectable();
    /** @private */
    this.resizingEl = Ext.get(resizingElement, true);

    /**
     * @private
     * The orientation of the split. Either Ext.SplitBar.HORIZONTAL or Ext.SplitBar.VERTICAL. (Defaults to HORIZONTAL)
     * Note: If this is changed after creating the SplitBar, the placement property must be manually updated
     * @type Number
     */
    this.orientation = orientation || Ext.SplitBar.HORIZONTAL;

    /**
     * The increment, in pixels by which to move this SplitBar. When undefined, the SplitBar moves smoothly.
     * @type Number
     * @property tickSize
     */
    /**
     * The minimum size of the resizing element. (Defaults to 0)
     * @type Number
     */
    this.minSize = 0;

    /**
     * The maximum size of the resizing element. (Defaults to 2000)
     * @type Number
     */
    this.maxSize = 2000;

    /**
     * Whether to animate the transition to the new size
     * @type Boolean
     */
    this.animate = false;

    /**
     * Whether to create a transparent shim that overlays the page when dragging, enables dragging across iframes.
     * @type Boolean
     */
    this.useShim = false;

    /** @private */
    this.shim = null;

    if(!existingProxy){
        /** @private */
        this.proxy = Ext.SplitBar.createProxy(this.orientation);
    }else{
        this.proxy = Ext.get(existingProxy).dom;
    }
    /** @private */
    this.dd = new Ext.dd.DDProxy(this.el.dom.id, "XSplitBars", {dragElId : this.proxy.id});

    /** @private */
    this.dd.b4StartDrag = this.onStartProxyDrag.createDelegate(this);

    /** @private */
    this.dd.endDrag = this.onEndProxyDrag.createDelegate(this);

    /** @private */
    this.dragSpecs = {};

    /**
     * @private The adapter to use to positon and resize elements
     */
    this.adapter = new Ext.SplitBar.BasicLayoutAdapter();
    this.adapter.init(this);

    if(this.orientation == Ext.SplitBar.HORIZONTAL){
        /** @ignore */
        this.placement = placement || (this.el.getX() > this.resizingEl.getX() ? Ext.SplitBar.LEFT : Ext.SplitBar.RIGHT);
        this.el.addClass("x-splitbar-h");
    }else{
        /** @ignore */
        this.placement = placement || (this.el.getY() > this.resizingEl.getY() ? Ext.SplitBar.TOP : Ext.SplitBar.BOTTOM);
        this.el.addClass("x-splitbar-v");
    }

    this.addEvents(
        /**
         * @event resize
         * Fires when the splitter is moved (alias for {@link #moved})
         * @param {Ext.SplitBar} this
         * @param {Number} newSize the new width or height
         */
        "resize",
        /**
         * @event moved
         * Fires when the splitter is moved
         * @param {Ext.SplitBar} this
         * @param {Number} newSize the new width or height
         */
        "moved",
        /**
         * @event beforeresize
         * Fires before the splitter is dragged
         * @param {Ext.SplitBar} this
         */
        "beforeresize",

        "beforeapply"
    );

    Ext.SplitBar.superclass.constructor.call(this);
};

Ext.extend(Ext.SplitBar, Ext.util.Observable, {
    onStartProxyDrag : function(x, y){
        this.fireEvent("beforeresize", this);
        this.overlay =  Ext.DomHelper.append(document.body,  {cls: "x-drag-overlay", html: " "}, true);
        this.overlay.unselectable();
        this.overlay.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true));
        this.overlay.show();
        Ext.get(this.proxy).setDisplayed("block");
        var size = this.adapter.getElementSize(this);
        this.activeMinSize = this.getMinimumSize();
        this.activeMaxSize = this.getMaximumSize();
        var c1 = size - this.activeMinSize;
        var c2 = Math.max(this.activeMaxSize - size, 0);
        if(this.orientation == Ext.SplitBar.HORIZONTAL){
            this.dd.resetConstraints();
            this.dd.setXConstraint(
                this.placement == Ext.SplitBar.LEFT ? c1 : c2,
                this.placement == Ext.SplitBar.LEFT ? c2 : c1,
                this.tickSize
            );
            this.dd.setYConstraint(0, 0);
        }else{
            this.dd.resetConstraints();
            this.dd.setXConstraint(0, 0);
            this.dd.setYConstraint(
                this.placement == Ext.SplitBar.TOP ? c1 : c2,
                this.placement == Ext.SplitBar.TOP ? c2 : c1,
                this.tickSize
            );
         }
        this.dragSpecs.startSize = size;
        this.dragSpecs.startPoint = [x, y];
        Ext.dd.DDProxy.prototype.b4StartDrag.call(this.dd, x, y);
    },

    /**
     * @private Called after the drag operation by the DDProxy
     */
    onEndProxyDrag : function(e){
        Ext.get(this.proxy).setDisplayed(false);
        var endPoint = Ext.lib.Event.getXY(e);
        if(this.overlay){
            Ext.destroy(this.overlay);
            delete this.overlay;
        }
        var newSize;
        if(this.orientation == Ext.SplitBar.HORIZONTAL){
            newSize = this.dragSpecs.startSize +
                (this.placement == Ext.SplitBar.LEFT ?
                    endPoint[0] - this.dragSpecs.startPoint[0] :
                    this.dragSpecs.startPoint[0] - endPoint[0]
                );
        }else{
            newSize = this.dragSpecs.startSize +
                (this.placement == Ext.SplitBar.TOP ?
                    endPoint[1] - this.dragSpecs.startPoint[1] :
                    this.dragSpecs.startPoint[1] - endPoint[1]
                );
        }
        newSize = Math.min(Math.max(newSize, this.activeMinSize), this.activeMaxSize);
        if(newSize != this.dragSpecs.startSize){
            if(this.fireEvent('beforeapply', this, newSize) !== false){
                this.adapter.setElementSize(this, newSize);
                this.fireEvent("moved", this, newSize);
                this.fireEvent("resize", this, newSize);
            }
        }
    },

    /**
     * Get the adapter this SplitBar uses
     * @return The adapter object
     */
    getAdapter : function(){
        return this.adapter;
    },

    /**
     * Set the adapter this SplitBar uses
     * @param {Object} adapter A SplitBar adapter object
     */
    setAdapter : function(adapter){
        this.adapter = adapter;
        this.adapter.init(this);
    },

    /**
     * Gets the minimum size for the resizing element
     * @return {Number} The minimum size
     */
    getMinimumSize : function(){
        return this.minSize;
    },

    /**
     * Sets the minimum size for the resizing element
     * @param {Number} minSize The minimum size
     */
    setMinimumSize : function(minSize){
        this.minSize = minSize;
    },

    /**
     * Gets the maximum size for the resizing element
     * @return {Number} The maximum size
     */
    getMaximumSize : function(){
        return this.maxSize;
    },

    /**
     * Sets the maximum size for the resizing element
     * @param {Number} maxSize The maximum size
     */
    setMaximumSize : function(maxSize){
        this.maxSize = maxSize;
    },

    /**
     * Sets the initialize size for the resizing element
     * @param {Number} size The initial size
     */
    setCurrentSize : function(size){
        var oldAnimate = this.animate;
        this.animate = false;
        this.adapter.setElementSize(this, size);
        this.animate = oldAnimate;
    },

    /**
     * Destroy this splitbar.
     * @param {Boolean} removeEl True to remove the element
     */
    destroy : function(removeEl){
        Ext.destroy(this.shim, Ext.get(this.proxy));
        this.dd.unreg();
        if(removeEl){
            this.el.remove();
        }
        this.purgeListeners();
    }
});

/**
 * @private static Create our own proxy element element. So it will be the same same size on all browsers, we won't use borders. Instead we use a background color.
 */
Ext.SplitBar.createProxy = function(dir){
    var proxy = new Ext.Element(document.createElement("div"));
    document.body.appendChild(proxy.dom);
    proxy.unselectable();
    var cls = 'x-splitbar-proxy';
    proxy.addClass(cls + ' ' + (dir == Ext.SplitBar.HORIZONTAL ? cls +'-h' : cls + '-v'));
    return proxy.dom;
};

/**
 * @class Ext.SplitBar.BasicLayoutAdapter
 * Default Adapter. It assumes the splitter and resizing element are not positioned
 * elements and only gets/sets the width of the element. Generally used for table based layouts.
 */
Ext.SplitBar.BasicLayoutAdapter = function(){
};

Ext.SplitBar.BasicLayoutAdapter.prototype = {
    // do nothing for now
    init : function(s){

    },
    /**
     * Called before drag operations to get the current size of the resizing element.
     * @param {Ext.SplitBar} s The SplitBar using this adapter
     */
     getElementSize : function(s){
        if(s.orientation == Ext.SplitBar.HORIZONTAL){
            return s.resizingEl.getWidth();
        }else{
            return s.resizingEl.getHeight();
        }
    },

    /**
     * Called after drag operations to set the size of the resizing element.
     * @param {Ext.SplitBar} s The SplitBar using this adapter
     * @param {Number} newSize The new size to set
     * @param {Function} onComplete A function to be invoked when resizing is complete
     */
    setElementSize : function(s, newSize, onComplete){
        if(s.orientation == Ext.SplitBar.HORIZONTAL){
            if(!s.animate){
                s.resizingEl.setWidth(newSize);
                if(onComplete){
                    onComplete(s, newSize);
                }
            }else{
                s.resizingEl.setWidth(newSize, true, .1, onComplete, 'easeOut');
            }
        }else{

            if(!s.animate){
                s.resizingEl.setHeight(newSize);
                if(onComplete){
                    onComplete(s, newSize);
                }
            }else{
                s.resizingEl.setHeight(newSize, true, .1, onComplete, 'easeOut');
            }
        }
    }
};

/**
 *@class Ext.SplitBar.AbsoluteLayoutAdapter
 * @extends Ext.SplitBar.BasicLayoutAdapter
 * Adapter that  moves the splitter element to align with the resized sizing element.
 * Used with an absolute positioned SplitBar.
 * @param {Mixed} container The container that wraps around the absolute positioned content. If it's
 * document.body, make sure you assign an id to the body element.
 */
Ext.SplitBar.AbsoluteLayoutAdapter = function(container){
    this.basic = new Ext.SplitBar.BasicLayoutAdapter();
    this.container = Ext.get(container);
};

Ext.SplitBar.AbsoluteLayoutAdapter.prototype = {
    init : function(s){
        this.basic.init(s);
    },

    getElementSize : function(s){
        return this.basic.getElementSize(s);
    },

    setElementSize : function(s, newSize, onComplete){
        this.basic.setElementSize(s, newSize, this.moveSplitter.createDelegate(this, [s]));
    },

    moveSplitter : function(s){
        var yes = Ext.SplitBar;
        switch(s.placement){
            case yes.LEFT:
                s.el.setX(s.resizingEl.getRight());
                break;
            case yes.RIGHT:
                s.el.setStyle("right", (this.container.getWidth() - s.resizingEl.getLeft()) + "px");
                break;
            case yes.TOP:
                s.el.setY(s.resizingEl.getBottom());
                break;
            case yes.BOTTOM:
                s.el.setY(s.resizingEl.getTop() - s.el.getHeight());
                break;
        }
    }
};

/**
 * Orientation constant - Create a vertical SplitBar
 * @static
 * @type Number
 */
Ext.SplitBar.VERTICAL = 1;

/**
 * Orientation constant - Create a horizontal SplitBar
 * @static
 * @type Number
 */
Ext.SplitBar.HORIZONTAL = 2;

/**
 * Placement constant - The resizing element is to the left of the splitter element
 * @static
 * @type Number
 */
Ext.SplitBar.LEFT = 1;

/**
 * Placement constant - The resizing element is to the right of the splitter element
 * @static
 * @type Number
 */
Ext.SplitBar.RIGHT = 2;

/**
 * Placement constant - The resizing element is positioned above the splitter element
 * @static
 * @type Number
 */
Ext.SplitBar.TOP = 3;

/**
 * Placement constant - The resizing element is positioned under splitter element
 * @static
 * @type Number
 */
Ext.SplitBar.BOTTOM = 4;
/**
 * @class Ext.Container
 * @extends Ext.BoxComponent
 * 
    Base class for any {@link Ext.BoxComponent} that may contain other Components. Containers handle the
 * basic behavior of containing items, namely adding, inserting and removing items.
    
 *
 * 
    The most commonly used Container classes are {@link Ext.Panel}, {@link Ext.Window} and {@link Ext.TabPanel}.
 * If you do not need the capabilities offered by the aforementioned classes you can create a lightweight
 * Container to be encapsulated by an HTML element to your specifications by using the
 * {@link Ext.Component#autoEl autoEl} config option. This is a useful technique when creating
 * embedded {@link Ext.layout.ColumnLayout column} layouts inside {@link Ext.form.FormPanel FormPanels}
 * for example.
    
 *
 * 
    The code below illustrates both how to explicitly create a Container, and how to implicitly
 * create one using the 'container' xtype:
    
// explicitly create a Container
var embeddedColumns = new Ext.Container({
    autoEl: 'div',  // This is the default
    layout: 'column',
    defaults: {
        // implicitly create Container by specifying xtype
        xtype: 'container',
        autoEl: 'div', // This is the default.
        layout: 'form',
        columnWidth: 0.5,
        style: {
            padding: '10px'
        }
    },
//  The two items below will be Ext.Containers, each encapsulated by a <DIV> element.
    items: [{
        items: {
            xtype: 'datefield',
            name: 'startDate',
            fieldLabel: 'Start date'
        }
    }, {
        items: {
            xtype: 'datefield',
            name: 'endDate',
            fieldLabel: 'End date'
        }
    }]
});
    
 *
 * 
    Layout
    
 * 
    Container classes delegate the rendering of child Components to a layout
 * manager class which must be configured into the Container using the
 * {@link #layout} configuration property.
    
 * 
    When either specifying child {@link #items} of a Container,
 * or dynamically {@link #add adding} Components to a Container, remember to
 * consider how you wish the Container to arrange those child elements, and
 * whether those child elements need to be sized using one of Ext's built-in
 * {@link #layout} schemes. By default, Containers use the
 * {@link Ext.layout.ContainerLayout ContainerLayout} scheme which only
 * renders child components, appending them one after the other inside the
 * Container, and does not apply any sizing at all.
    
 * 
    A common mistake is when a developer neglects to specify a
 * {@link #layout} (e.g. widgets like GridPanels or
 * TreePanels are added to Containers for which no {@link #layout}
 * has been specified). If a Container is left to use the default
 * {@link Ext.layout.ContainerLayout ContainerLayout} scheme, none of its
 * child components will be resized, or changed in any way when the Container
 * is resized.
    
 * 
    Certain layout managers allow dynamic addition of child components.
 * Those that do include {@link Ext.layout.CardLayout},
 * {@link Ext.layout.AnchorLayout}, {@link Ext.layout.FormLayout}, and
 * {@link Ext.layout.TableLayout}. For example:
    
//  Create the GridPanel.
var myNewGrid = new Ext.grid.GridPanel({
    store: myStore,
    columns: myColumnModel,
    title: 'Results', // the title becomes the title of the tab
});

myTabPanel.add(myNewGrid); // {@link Ext.TabPanel} implicitly uses {@link Ext.layout.CardLayout CardLayout}
myTabPanel.{@link Ext.TabPanel#setActiveTab setActiveTab}(myNewGrid);
 * 
    
 * 
    The example above adds a newly created GridPanel to a TabPanel. Note that
 * a TabPanel uses {@link Ext.layout.CardLayout} as its layout manager which
 * means all its child items are sized to {@link Ext.layout.FitLayout fit}
 * exactly into its client area.
 * 
    Overnesting is a common problem.
 * An example of overnesting occurs when a GridPanel is added to a TabPanel
 * by wrapping the GridPanel inside a wrapping Panel (that has no
 * {@link #layout} specified) and then add that wrapping Panel
 * to the TabPanel. The point to realize is that a GridPanel is a
 * Component which can be added directly to a Container. If the wrapping Panel
 * has no {@link #layout} configuration, then the overnested
 * GridPanel will not be sized as expected.
    
 *
 * 
    Adding via remote configuration
    
 *
 * 
    A server side script can be used to add Components which are generated dynamically on the server.
 * An example of adding a GridPanel to a TabPanel where the GridPanel is generated by the server
 * based on certain parameters:
 * 
    
// execute an Ajax request to invoke server side script:
Ext.Ajax.request({
    url: 'gen-invoice-grid.php',
    // send additional parameters to instruct server script
    params: {
        startDate: Ext.getCmp('start-date').getValue(),
        endDate: Ext.getCmp('end-date').getValue()
    },
    // process the response object to add it to the TabPanel:
    success: function(xhr) {
        var newComponent = eval(xhr.responseText); // see discussion below
        myTabPanel.add(newComponent); // add the component to the TabPanel
        myTabPanel.setActiveTab(newComponent);
    },
    failure: function() {
        Ext.Msg.alert("Grid create failed", "Server communication failure");
    }
});

    
 * 
    The server script needs to return an executable Javascript statement which, when processed
 * using eval(), will return either a config object with an {@link Ext.Component#xtype xtype},
 * or an instantiated Component. The server might return this for example:
    
(function() {
    function formatDate(value){
        return value ? value.dateFormat('M d, Y') : '';
    };

    var store = new Ext.data.Store({
        url: 'get-invoice-data.php',
        baseParams: {
            startDate: '01/01/2008',
            endDate: '01/31/2008'
        },
        reader: new Ext.data.JsonReader({
            record: 'transaction',
            idProperty: 'id',
            totalRecords: 'total'
        }, [
           'customer',
           'invNo',
           {name: 'date', type: 'date', dateFormat: 'm/d/Y'},
           {name: 'value', type: 'float'}
        ])
    });

    var grid = new Ext.grid.GridPanel({
        title: 'Invoice Report',
        bbar: new Ext.PagingToolbar(store),
        store: store,
        columns: [
            {header: "Customer", width: 250, dataIndex: 'customer', sortable: true},
            {header: "Invoice Number", width: 120, dataIndex: 'invNo', sortable: true},
            {header: "Invoice Date", width: 100, dataIndex: 'date', renderer: formatDate, sortable: true},
            {header: "Value", width: 120, dataIndex: 'value', renderer: 'usMoney', sortable: true}
        ],
    });
    store.load();
    return grid;  // return instantiated component
})();

    
 * 
    When the above code fragment is passed through the eval function in the success handler
 * of the Ajax request, the code is executed by the Javascript processor, and the anonymous function
 * runs, and returns the instantiated grid component.
    
 * 
    Note: since the code above is generated by a server script, the baseParams for
 * the Store, the metadata to allow generation of the Record layout, and the ColumnModel
 * can all be generated into the code since these are all known on the server.
    
 *
 * @xtype container
 */
Ext.Container = Ext.extend(Ext.BoxComponent, {
    /**
     * @cfg {Boolean} monitorResize
     * True to automatically monitor window resize events to handle anything that is sensitive to the current size
     * of the viewport.  This value is typically managed by the chosen {@link #layout} and should not need
     * to be set manually.
     */
    /**
     * @cfg {String/Object} layout
     * 
    *Important: In order for child items to be correctly sized and
     * positioned, typically a layout manager must be specified through
     * the layout configuration option.
    
     * 
    The sizing and positioning of child {@link items} is the responsibility of
     * the Container's layout manager which creates and manages the type of layout
     * you have in mind.  For example:
    
new Ext.Window({
    width:300, height: 300,
    layout: 'fit', // explicitly set layout manager: override the default (layout:'auto')
    items: [{
        title: 'Panel inside a Window'
    }]
}).show();
     * 
    
     * 
    If the {@link #layout} configuration is not explicitly specified for
     * a general purpose container (e.g. Container or Panel) the
     * {@link Ext.layout.ContainerLayout default layout manager} will be used
     * which does nothing but render child components sequentially into the
     * Container (no sizing or positioning will be performed in this situation).
     * Some container classes implicitly specify a default layout
     * (e.g. FormPanel specifies layout:'form'). Other specific
     * purpose classes internally specify/manage their internal layout (e.g.
     * GridPanel, TabPanel, TreePanel, Toolbar, Menu, etc.).
    
     * 
    layout may be specified as either as an Object or
     * as a String:
      
     *
     * 
    • Specify as an Object
      • 
     * 
        
     * 
      • Example usage:
        • 

        
layout: {
    type: 'vbox',
    padding: '5',
    align: 'left'
}

        
     *
     * 
      • type
        • 
     * 
        The layout type to be used for this container.  If not specified,
     * a default {@link Ext.layout.ContainerLayout} will be created and used.
        
     * 
        Valid layout type values are:
        
     * 
          
     * 
        • {@link Ext.layout.AbsoluteLayout absolute}
          • 
     * 
        • {@link Ext.layout.AccordionLayout accordion}
          • 
     * 
        • {@link Ext.layout.AnchorLayout anchor}
          • 
     * 
        • {@link Ext.layout.ContainerLayout auto}     Default
          • 
     * 
        • {@link Ext.layout.BorderLayout border}
          • 
     * 
        • {@link Ext.layout.CardLayout card}
          • 
     * 
        • {@link Ext.layout.ColumnLayout column}
          • 
     * 
        • {@link Ext.layout.FitLayout fit}
          • 
     * 
        • {@link Ext.layout.FormLayout form}
          • 
     * 
        • {@link Ext.layout.HBoxLayout hbox}
          • 
     * 
        • {@link Ext.layout.MenuLayout menu}
          • 
     * 
        • {@link Ext.layout.TableLayout table}
          • 
     * 
        • {@link Ext.layout.ToolbarLayout toolbar}
          • 
     * 
        • {@link Ext.layout.VBoxLayout vbox}
          • 
     * 
        
     *
     * 
      • Layout specific configuration properties
        • 
     * 
        Additional layout specific configuration properties may also be
     * specified. For complete details regarding the valid config options for
     * each layout type, see the layout class corresponding to the type
     * specified.
        
     *
     * 
      
     *
     * 
    • Specify as a String
      • 
     * 
        
     * 
      • Example usage:
        • 

        
layout: 'vbox',
layoutConfig: {
    padding: '5',
    align: 'left'
}

        
     * 
      • layout
        • 
     * 
        The layout type to be used for this container (see list
     * of valid layout type values above).

        
     * 
      • {@link #layoutConfig}
        • 
     * 
        Additional layout specific configuration properties. For complete
     * details regarding the valid config options for each layout type, see the
     * layout class corresponding to the layout specified.
        
     * 
    
     */
    /**
     * @cfg {Object} layoutConfig
     * This is a config object containing properties specific to the chosen
     * {@link #layout} if {@link #layout}
     * has been specified as a string.
    
     */
    /**
     * @cfg {Boolean/Number} bufferResize
     * When set to true (50 milliseconds) or a number of milliseconds, the layout assigned for this container will buffer
     * the frequency it calculates and does a re-layout of components. This is useful for heavy containers or containers
     * with a large quantity of sub-components for which frequent layout calls would be expensive. Defaults to 50.
     */
    bufferResize: 50,

    /**
     * @cfg {String/Number} activeItem
     * A string component id or the numeric index of the component that should be initially activated within the
     * container's layout on render.  For example, activeItem: 'item-1' or activeItem: 0 (index 0 = the first
     * item in the container's collection).  activeItem only applies to layout styles that can display
     * items one at a time (like {@link Ext.layout.AccordionLayout}, {@link Ext.layout.CardLayout} and
     * {@link Ext.layout.FitLayout}).  Related to {@link Ext.layout.ContainerLayout#activeItem}.
     */
    /**
     * @cfg {Object/Array} items
     * 
    ** IMPORTANT: be sure to {@link #layout specify a layout} if needed ! **
    
     * 
    A single item, or an array of child Components to be added to this container,
     * for example:
    
     * 
    
// specifying a single item
items: {...},
layout: 'fit',    // specify a layout!

// specifying multiple items
items: [{...}, {...}],
layout: 'anchor', // specify a layout!
     * 
    
     * 
    Each item may be:
    
     * 
      
     * 
    • any type of object based on {@link Ext.Component}
      • 
     * 
    • a fully instanciated object or
      • 
     * 
    • an object literal that:
      • 
     * 
        
     * 
      • has a specified {@link Ext.Component#xtype xtype}
        • 
     * 
      • the {@link Ext.Component#xtype} specified is associated with the Component
     * desired and should be chosen from one of the available xtypes as listed
     * in {@link Ext.Component}.
        • 
     * 
      • If an {@link Ext.Component#xtype xtype} is not explicitly
     * specified, the {@link #defaultType} for that Container is used.
        • 
     * 
      • will be "lazily instanciated", avoiding the overhead of constructing a fully
     * instanciated Component object
        • 
     * 
    
     * 
    Notes:
    
     * 
      
     * 
    • Ext uses lazy rendering. Child Components will only be rendered
     * should it become necessary. Items are automatically laid out when they are first
     * shown (no sizing is done while hidden), or in response to a {@link #doLayout} call.
      • 
     * 
    • Do not specify {@link Ext.Panel#contentEl contentEl}/
     * {@link Ext.Panel#html html} with items.
      • 
     * 
    
     */
    /**
     * @cfg {Object|Function} defaults
     * 
    This option is a means of applying default settings to all added items whether added through the {@link #items}
     * config or via the {@link #add} or {@link #insert} methods.
    
     * 
    If an added item is a config object, and not an instantiated Component, then the default properties are
     * unconditionally applied. If the added item is an instantiated Component, then the default properties are
     * applied conditionally so as not to override existing properties in the item.
    
     * 
    If the defaults option is specified as a function, then the function will be called using this Container as the
     * scope (this reference) and passing the added item as the first parameter. Any resulting object
     * from that call is then applied to the item as default properties.
    
     * 
    For example, to automatically apply padding to the body of each of a set of
     * contained {@link Ext.Panel} items, you could pass: defaults: {bodyStyle:'padding:15px'}.
    
     * 
    Usage:
    
defaults: {               // defaults are applied to items, not the container
    autoScroll:true
},
items: [
    {
        xtype: 'panel',   // defaults do not have precedence over
        id: 'panel1',     // options in config objects, so the defaults
        autoScroll: false // will not be applied here, panel1 will be autoScroll:false
    },
    new Ext.Panel({       // defaults do have precedence over options
        id: 'panel2',     // options in components, so the defaults
        autoScroll: false // will be applied here, panel2 will be autoScroll:true.
    })
]
     * 
    
     */


    /** @cfg {Boolean} autoDestroy
     * If true the container will automatically destroy any contained component that is removed from it, else
     * destruction must be handled manually (defaults to true).
     */
    autoDestroy : true,

    /** @cfg {Boolean} forceLayout
     * If true the container will force a layout initially even if hidden or collapsed. This option
     * is useful for forcing forms to render in collapsed or hidden containers. (defaults to false).
     */
    forceLayout: false,

    /** @cfg {Boolean} hideBorders
     * True to hide the borders of each contained component, false to defer to the component's existing
     * border settings (defaults to false).
     */
    /** @cfg {String} defaultType
     * 
    The default {@link Ext.Component xtype} of child Components to create in this Container when
     * a child item is specified as a raw configuration object, rather than as an instantiated Component.
    
     * 
    Defaults to 'panel', except {@link Ext.menu.Menu} which defaults to 'menuitem',
     * and {@link Ext.Toolbar} and {@link Ext.ButtonGroup} which default to 'button'.
    
     */
    defaultType : 'panel',

    /** @cfg {String} resizeEvent
     * The event to listen to for resizing in layouts. Defaults to 'resize'.
     */
    resizeEvent: 'resize',

    /**
     * @cfg {Array} bubbleEvents
     * 
    An array of events that, when fired, should be bubbled to any parent container.
     * See {@link Ext.util.Observable#enableBubble}.
     * Defaults to ['add', 'remove'].
     */
    bubbleEvents: ['add', 'remove'],

    // private
    initComponent : function(){
        Ext.Container.superclass.initComponent.call(this);

        this.addEvents(
            /**
             * @event afterlayout
             * Fires when the components in this container are arranged by the associated layout manager.
             * @param {Ext.Container} this
             * @param {ContainerLayout} layout The ContainerLayout implementation for this container
             */
            'afterlayout',
            /**
             * @event beforeadd
             * Fires before any {@link Ext.Component} is added or inserted into the container.
             * A handler can return false to cancel the add.
             * @param {Ext.Container} this
             * @param {Ext.Component} component The component being added
             * @param {Number} index The index at which the component will be added to the container's items collection
             */
            'beforeadd',
            /**
             * @event beforeremove
             * Fires before any {@link Ext.Component} is removed from the container.  A handler can return
             * false to cancel the remove.
             * @param {Ext.Container} this
             * @param {Ext.Component} component The component being removed
             */
            'beforeremove',
            /**
             * @event add
             * @bubbles
             * Fires after any {@link Ext.Component} is added or inserted into the container.
             * @param {Ext.Container} this
             * @param {Ext.Component} component The component that was added
             * @param {Number} index The index at which the component was added to the container's items collection
             */
            'add',
            /**
             * @event remove
             * @bubbles
             * Fires after any {@link Ext.Component} is removed from the container.
             * @param {Ext.Container} this
             * @param {Ext.Component} component The component that was removed
             */
            'remove'
        );

        /**
         * The collection of components in this container as a {@link Ext.util.MixedCollection}
         * @type MixedCollection
         * @property items
         */
        var items = this.items;
        if(items){
            delete this.items;
            this.add(items);
        }
    },

    // private
    initItems : function(){
        if(!this.items){
            this.items = new Ext.util.MixedCollection(false, this.getComponentId);
            this.getLayout(); // initialize the layout
        }
    },

    // private
    setLayout : function(layout){
        if(this.layout && this.layout != layout){
            this.layout.setContainer(null);
        }
        this.layout = layout;
        this.initItems();
        layout.setContainer(this);
    },

    afterRender: function(){
        // Render this Container, this should be done before setLayout is called which
        // will hook onResize
        Ext.Container.superclass.afterRender.call(this);
        if(!this.layout){
            this.layout = 'auto';
        }
        if(Ext.isObject(this.layout) && !this.layout.layout){
            this.layoutConfig = this.layout;
            this.layout = this.layoutConfig.type;
        }
        if(Ext.isString(this.layout)){
            this.layout = new Ext.Container.LAYOUTS[this.layout.toLowerCase()](this.layoutConfig);
        }
        this.setLayout(this.layout);

        // If a CardLayout, the active item set
        if(this.activeItem !== undefined && this.layout.setActiveItem){
            var item = this.activeItem;
            delete this.activeItem;
            this.layout.setActiveItem(item);
        }

        // If we have no ownerCt, render and size all children
        if(!this.ownerCt){
            this.doLayout(false, true);
        }

        // This is a manually configured flag set by users in conjunction with renderTo.
        // Not to be confused with the flag by the same name used in Layouts.
        if(this.monitorResize === true){
            Ext.EventManager.onWindowResize(this.doLayout, this, [false]);
        }
    },

    /**
     * 
    Returns the Element to be used to contain the child Components of this Container.
    
     * 
    An implementation is provided which returns the Container's {@link #getEl Element}, but
     * if there is a more complex structure to a Container, this may be overridden to return
     * the element into which the {@link #layout layout} renders child Components.
    
     * @return {Ext.Element} The Element to render child Components into.
     */
    getLayoutTarget : function(){
        return this.el;
    },

    // private - used as the key lookup function for the items collection
    getComponentId : function(comp){
        return comp.getItemId();
    },

    /**
     * 
    Adds {@link Ext.Component Component}(s) to this Container.
    
     * 
    Description :
     * 
      
     * 
    • Fires the {@link #beforeadd} event before adding
      • 
     * 
    • The Container's {@link #defaults default config values} will be applied
     * accordingly (see {@link #defaults} for details).
      • 
     * 
    • Fires the {@link #add} event after the component has been added.
      • 
     * 
    
     * 
    Notes :
     * 
      
     * 
    • If the Container is already rendered when add
     * is called, you may need to call {@link #doLayout} to refresh the view which causes
     * any unrendered child Components to be rendered. This is required so that you can
     * add multiple child components if needed while only refreshing the layout
     * once. For example:
      
var tb = new {@link Ext.Toolbar}();
tb.render(document.body);  // toolbar is rendered
tb.add({text:'Button 1'}); // add multiple items ({@link #defaultType} for {@link Ext.Toolbar Toolbar} is 'button')
tb.add({text:'Button 2'});
tb.{@link #doLayout}();             // refresh the layout
     * 
      • 
     * 
    • Warning: Containers directly managed by the BorderLayout layout manager
     * may not be removed or added.  See the Notes for {@link Ext.layout.BorderLayout BorderLayout}
     * for more details.
      • 
     * 
    
     * @param {...Object/Array} component
     * 
    Either one or more Components to add or an Array of Components to add.  See
     * {@link #items} for additional information.
    
     * @return {Ext.Component/Array} The Components that were added.
     */
    add : function(comp){
        this.initItems();
        var args = arguments.length > 1;
        if(args || Ext.isArray(comp)){
            var result = [];
            Ext.each(args ? arguments : comp, function(c){
                result.push(this.add(c));
            }, this);
            return result;
        }
        var c = this.lookupComponent(this.applyDefaults(comp));
        var index = this.items.length;
        if(this.fireEvent('beforeadd', this, c, index) !== false && this.onBeforeAdd(c) !== false){
            this.items.add(c);
            // *onAdded
            c.onAdded(this, index);
            this.onAdd(c);
            this.fireEvent('add', this, c, index);
        }
        return c;
    },

    onAdd : function(c){
        // Empty template method
    },

    // private
    onAdded : function(container, pos) {
        //overridden here so we can cascade down, not worth creating a template method.
        this.ownerCt = container;
        this.initRef();
        //initialize references for child items
        this.cascade(function(c){
            c.initRef();
        });
        this.fireEvent('added', this, container, pos);
    },

    /**
     * Inserts a Component into this Container at a specified index. Fires the
     * {@link #beforeadd} event before inserting, then fires the {@link #add} event after the
     * Component has been inserted.
     * @param {Number} index The index at which the Component will be inserted
     * into the Container's items collection
     * @param {Ext.Component} component The child Component to insert.

    
     * Ext uses lazy rendering, and will only render the inserted Component should
     * it become necessary.

    
     * A Component config object may be passed in order to avoid the overhead of
     * constructing a real Component object if lazy rendering might mean that the
     * inserted Component will not be rendered immediately. To take advantage of
     * this 'lazy instantiation', set the {@link Ext.Component#xtype} config
     * property to the registered type of the Component wanted.

    
     * For a list of all available xtypes, see {@link Ext.Component}.
     * @return {Ext.Component} component The Component (or config object) that was
     * inserted with the Container's default config values applied.
     */
    insert : function(index, comp) {
        var args   = arguments,
            length = args.length,
            result = [],
            i, c;
        
        this.initItems();
        
        if (length > 2) {
            for (i = length - 1; i >= 1; --i) {
                result.push(this.insert(index, args[i]));
            }
            return result;
        }
        
        c = this.lookupComponent(this.applyDefaults(comp));
        index = Math.min(index, this.items.length);
        
        if (this.fireEvent('beforeadd', this, c, index) !== false && this.onBeforeAdd(c) !== false) {
            if (c.ownerCt == this) {
                this.items.remove(c);
            }
            this.items.insert(index, c);
            c.onAdded(this, index);
            this.onAdd(c);
            this.fireEvent('add', this, c, index);
        }
        
        return c;
    },

    // private
    applyDefaults : function(c){
        var d = this.defaults;
        if(d){
            if(Ext.isFunction(d)){
                d = d.call(this, c);
            }
            if(Ext.isString(c)){
                c = Ext.ComponentMgr.get(c);
                Ext.apply(c, d);
            }else if(!c.events){
                Ext.applyIf(c.isAction ? c.initialConfig : c, d);
            }else{
                Ext.apply(c, d);
            }
        }
        return c;
    },

    // private
    onBeforeAdd : function(item){
        if(item.ownerCt){
            item.ownerCt.remove(item, false);
        }
        if(this.hideBorders === true){
            item.border = (item.border === true);
        }
    },

    /**
     * Removes a component from this container.  Fires the {@link #beforeremove} event before removing, then fires
     * the {@link #remove} event after the component has been removed.
     * @param {Component/String} component The component reference or id to remove.
     * @param {Boolean} autoDestroy (optional) True to automatically invoke the removed Component's {@link Ext.Component#destroy} function.
     * Defaults to the value of this Container's {@link #autoDestroy} config.
     * @return {Ext.Component} component The Component that was removed.
     */
    remove : function(comp, autoDestroy){
        this.initItems();
        var c = this.getComponent(comp);
        if(c && this.fireEvent('beforeremove', this, c) !== false){
            this.doRemove(c, autoDestroy);
            this.fireEvent('remove', this, c);
        }
        return c;
    },

    onRemove: function(c){
        // Empty template method
    },

    // private
    doRemove: function(c, autoDestroy){
        var l = this.layout,
            hasLayout = l && this.rendered;

        if(hasLayout){
            l.onRemove(c);
        }
        this.items.remove(c);
        c.onRemoved();
        this.onRemove(c);
        if(autoDestroy === true || (autoDestroy !== false && this.autoDestroy)){
            c.destroy();
        }
        if(hasLayout){
            l.afterRemove(c);
        }
    },

    /**
     * Removes all components from this container.
     * @param {Boolean} autoDestroy (optional) True to automatically invoke the removed Component's {@link Ext.Component#destroy} function.
     * Defaults to the value of this Container's {@link #autoDestroy} config.
     * @return {Array} Array of the destroyed components
     */
    removeAll: function(autoDestroy){
        this.initItems();
        var item, rem = [], items = [];
        this.items.each(function(i){
            rem.push(i);
        });
        for (var i = 0, len = rem.length; i < len; ++i){
            item = rem[i];
            this.remove(item, autoDestroy);
            if(item.ownerCt !== this){
                items.push(item);
            }
        }
        return items;
    },

    /**
     * Examines this container's {@link #items} property
     * and gets a direct child component of this container.
     * @param {String/Number} comp This parameter may be any of the following:
     * 
      
     * 
    • a String : representing the {@link Ext.Component#itemId itemId}
     * or {@link Ext.Component#id id} of the child component 
      • 
     * 
    • a Number : representing the position of the child component
     * within the {@link #items} property
      • 
     * 
    
     * 
    For additional information see {@link Ext.util.MixedCollection#get}.
     * @return Ext.Component The component (if found).
     */
    getComponent : function(comp){
        if(Ext.isObject(comp)){
            comp = comp.getItemId();
        }
        return this.items.get(comp);
    },

    // private
    lookupComponent : function(comp){
        if(Ext.isString(comp)){
            return Ext.ComponentMgr.get(comp);
        }else if(!comp.events){
            return this.createComponent(comp);
        }
        return comp;
    },

    // private
    createComponent : function(config, defaultType){
        if (config.render) {
            return config;
        }
        // add in ownerCt at creation time but then immediately
        // remove so that onBeforeAdd can handle it
        var c = Ext.create(Ext.apply({
            ownerCt: this
        }, config), defaultType || this.defaultType);
        delete c.initialConfig.ownerCt;
        delete c.ownerCt;
        return c;
    },

    /**
     * @private
     * We can only lay out if there is a view area in which to layout.
     * display:none on the layout target, *or any of its parent elements* will mean it has no view area.
     */
    canLayout : function() {
        var el = this.getVisibilityEl();
        return el && el.dom && !el.isStyle("display", "none");
    },

    /**
     * Force this container's layout to be recalculated. A call to this function is required after adding a new component
     * to an already rendered container, or possibly after changing sizing/position properties of child components.
     * @param {Boolean} shallow (optional) True to only calc the layout of this component, and let child components auto
     * calc layouts as required (defaults to false, which calls doLayout recursively for each subcontainer)
     * @param {Boolean} force (optional) True to force a layout to occur, even if the item is hidden.
     * @return {Ext.Container} this
     */

    doLayout : function(shallow, force){
        var rendered = this.rendered,
            forceLayout = force || this.forceLayout;

        if(this.collapsed || !this.canLayout()){
            this.deferLayout = this.deferLayout || !shallow;
            if(!forceLayout){
                return;
            }
            shallow = shallow && !this.deferLayout;
        } else {
            delete this.deferLayout;
        }
        if(rendered && this.layout){
            this.layout.layout();
        }
        if(shallow !== true && this.items){
            var cs = this.items.items;
            for(var i = 0, len = cs.length; i < len; i++){
                var c = cs[i];
                if(c.doLayout){
                    c.doLayout(false, forceLayout);
                }
            }
        }
        if(rendered){
            this.onLayout(shallow, forceLayout);
        }
        // Initial layout completed
        this.hasLayout = true;
        delete this.forceLayout;
    },

    onLayout : Ext.emptyFn,

    // private
    shouldBufferLayout: function(){
        /*
         * Returns true if the container should buffer a layout.
         * This is true only if the container has previously been laid out
         * and has a parent container that is pending a layout.
         */
        var hl = this.hasLayout;
        if(this.ownerCt){
            // Only ever buffer if we've laid out the first time and we have one pending.
            return hl ? !this.hasLayoutPending() : false;
        }
        // Never buffer initial layout
        return hl;
    },

    // private
    hasLayoutPending: function(){
        // Traverse hierarchy to see if any parent container has a pending layout.
        var pending = false;
        this.ownerCt.bubble(function(c){
            if(c.layoutPending){
                pending = true;
                return false;
            }
        });
        return pending;
    },

    onShow : function(){
        // removes css classes that were added to hide
        Ext.Container.superclass.onShow.call(this);
        // If we were sized during the time we were hidden, layout.
        if(Ext.isDefined(this.deferLayout)){
            delete this.deferLayout;
            this.doLayout(true);
        }
    },

    /**
     * Returns the layout currently in use by the container.  If the container does not currently have a layout
     * set, a default {@link Ext.layout.ContainerLayout} will be created and set as the container's layout.
     * @return {ContainerLayout} layout The container's layout
     */
    getLayout : function(){
        if(!this.layout){
            var layout = new Ext.layout.AutoLayout(this.layoutConfig);
            this.setLayout(layout);
        }
        return this.layout;
    },

    // private
    beforeDestroy : function(){
        var c;
        if(this.items){
            while(c = this.items.first()){
                this.doRemove(c, true);
            }
        }
        if(this.monitorResize){
            Ext.EventManager.removeResizeListener(this.doLayout, this);
        }
        Ext.destroy(this.layout);
        Ext.Container.superclass.beforeDestroy.call(this);
    },

    /**
     * Cascades down the component/container heirarchy from this component (called first), calling the specified function with
     * each component. The scope (this) of
     * function call will be the scope provided or the current component. The arguments to the function
     * will be the args provided or the current component. If the function returns false at any point,
     * the cascade is stopped on that branch.
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope of the function (defaults to current component)
     * @param {Array} args (optional) The args to call the function with (defaults to passing the current component)
     * @return {Ext.Container} this
     */
    cascade : function(fn, scope, args){
        if(fn.apply(scope || this, args || [this]) !== false){
            if(this.items){
                var cs = this.items.items;
                for(var i = 0, len = cs.length; i < len; i++){
                    if(cs[i].cascade){
                        cs[i].cascade(fn, scope, args);
                    }else{
                        fn.apply(scope || cs[i], args || [cs[i]]);
                    }
                }
            }
        }
        return this;
    },

    /**
     * Find a component under this container at any level by id
     * @param {String} id
     * @deprecated Fairly useless method, since you can just use Ext.getCmp. Should be removed for 4.0
     * If you need to test if an id belongs to a container, you can use getCmp and findParent*.
     * @return Ext.Component
     */
    findById : function(id){
        var m = null, 
            ct = this;
        this.cascade(function(c){
            if(ct != c && c.id === id){
                m = c;
                return false;
            }
        });
        return m;
    },

    /**
     * Find a component under this container at any level by xtype or class
     * @param {String/Class} xtype The xtype string for a component, or the class of the component directly
     * @param {Boolean} shallow (optional) False to check whether this Component is descended from the xtype (this is
     * the default), or true to check whether this Component is directly of the specified xtype.
     * @return {Array} Array of Ext.Components
     */
    findByType : function(xtype, shallow){
        return this.findBy(function(c){
            return c.isXType(xtype, shallow);
        });
    },

    /**
     * Find a component under this container at any level by property
     * @param {String} prop
     * @param {String} value
     * @return {Array} Array of Ext.Components
     */
    find : function(prop, value){
        return this.findBy(function(c){
            return c[prop] === value;
        });
    },

    /**
     * Find a component under this container at any level by a custom function. If the passed function returns
     * true, the component will be included in the results. The passed function is called with the arguments (component, this container).
     * @param {Function} fn The function to call
     * @param {Object} scope (optional)
     * @return {Array} Array of Ext.Components
     */
    findBy : function(fn, scope){
        var m = [], ct = this;
        this.cascade(function(c){
            if(ct != c && fn.call(scope || c, c, ct) === true){
                m.push(c);
            }
        });
        return m;
    },

    /**
     * Get a component contained by this container (alias for items.get(key))
     * @param {String/Number} key The index or id of the component
     * @deprecated Should be removed in 4.0, since getComponent does the same thing.
     * @return {Ext.Component} Ext.Component
     */
    get : function(key){
        return this.getComponent(key);
    }
});

Ext.Container.LAYOUTS = {};
Ext.reg('container', Ext.Container);
/**
 * @class Ext.layout.ContainerLayout
 * 
    This class is intended to be extended or created via the {@link Ext.Container#layout layout}
 * configuration property.  See {@link Ext.Container#layout} for additional details.
    
 */
Ext.layout.ContainerLayout = Ext.extend(Object, {
    /**
     * @cfg {String} extraCls
     * 
    An optional extra CSS class that will be added to the container. This can be useful for adding
     * customized styles to the container or any of its children using standard CSS rules. See
     * {@link Ext.Component}.{@link Ext.Component#ctCls ctCls} also.
    
     * 
    Note: extraCls defaults to '' except for the following classes
     * which assign a value by default:
     * 
      
     * 
    • {@link Ext.layout.AbsoluteLayout Absolute Layout} : 'x-abs-layout-item'
      • 
     * 
    • {@link Ext.layout.Box Box Layout} : 'x-box-item'
      • 
     * 
    • {@link Ext.layout.ColumnLayout Column Layout} : 'x-column'
      • 
     * 
    
     * To configure the above Classes with an extra CSS class append to the default.  For example,
     * for ColumnLayout:
    
     * extraCls: 'x-column custom-class'
     * 
    
     * 
    
     */
    /**
     * @cfg {Boolean} renderHidden
     * True to hide each contained item on render (defaults to false).
     */

    /**
     * A reference to the {@link Ext.Component} that is active.  For example, 
    
     * if(myPanel.layout.activeItem.id == 'item-1') { ... }
     * 
    
     * activeItem only applies to layout styles that can display items one at a time
     * (like {@link Ext.layout.AccordionLayout}, {@link Ext.layout.CardLayout}
     * and {@link Ext.layout.FitLayout}).  Read-only.  Related to {@link Ext.Container#activeItem}.
     * @type {Ext.Component}
     * @property activeItem
     */

    // private
    monitorResize:false,
    // private
    activeItem : null,

    constructor : function(config){
        this.id = Ext.id(null, 'ext-layout-');
        Ext.apply(this, config);
    },

    type: 'container',

    /* Workaround for how IE measures autoWidth elements.  It prefers bottom-up measurements
      whereas other browser prefer top-down.  We will hide all target child elements before we measure and
      put them back to get an accurate measurement.
    */
    IEMeasureHack : function(target, viewFlag) {
        var tChildren = target.dom.childNodes, tLen = tChildren.length, c, d = [], e, i, ret;
        for (i = 0 ; i < tLen ; i++) {
            c = tChildren[i];
            e = Ext.get(c);
            if (e) {
                d[i] = e.getStyle('display');
                e.setStyle({display: 'none'});
            }
        }
        ret = target ? target.getViewSize(viewFlag) : {};
        for (i = 0 ; i < tLen ; i++) {
            c = tChildren[i];
            e = Ext.get(c);
            if (e) {
                e.setStyle({display: d[i]});
            }
        }
        return ret;
    },

    // Placeholder for the derived layouts
    getLayoutTargetSize : Ext.EmptyFn,

    // private
    layout : function(){
        var ct = this.container, target = ct.getLayoutTarget();
        if(!(this.hasLayout || Ext.isEmpty(this.targetCls))){
            target.addClass(this.targetCls);
        }
        this.onLayout(ct, target);
        ct.fireEvent('afterlayout', ct, this);
    },

    // private
    onLayout : function(ct, target){
        this.renderAll(ct, target);
    },

    // private
    isValidParent : function(c, target){
        return target && c.getPositionEl().dom.parentNode == (target.dom || target);
    },

    // private
    renderAll : function(ct, target){
        var items = ct.items.items, i, c, len = items.length;
        for(i = 0; i < len; i++) {
            c = items[i];
            if(c && (!c.rendered || !this.isValidParent(c, target))){
                this.renderItem(c, i, target);
            }
        }
    },

    /**
     * @private
     * Renders the given Component into the target Element. If the Component is already rendered,
     * it is moved to the provided target instead.
     * @param {Ext.Component} c The Component to render
     * @param {Number} position The position within the target to render the item to
     * @param {Ext.Element} target The target Element
     */
    renderItem : function(c, position, target){
        if (c) {
            if (!c.rendered) {
                c.render(target, position);
                this.configureItem(c);
            } else if (!this.isValidParent(c, target)) {
                if (Ext.isNumber(position)) {
                    position = target.dom.childNodes[position];
                }

                target.dom.insertBefore(c.getPositionEl().dom, position || null);
                c.container = target;
                this.configureItem(c);
            }
        }
    },

    // private.
    // Get all rendered items to lay out.
    getRenderedItems: function(ct){
        var t = ct.getLayoutTarget(), cti = ct.items.items, len = cti.length, i, c, items = [];
        for (i = 0; i < len; i++) {
            if((c = cti[i]).rendered && this.isValidParent(c, t) && c.shouldLayout !== false){
                items.push(c);
            }
        };
        return items;
    },

    /**
     * @private
     * Applies extraCls and hides the item if renderHidden is true
     */
    configureItem: function(c){
        if (this.extraCls) {
            var t = c.getPositionEl ? c.getPositionEl() : c;
            t.addClass(this.extraCls);
        }

        // If we are forcing a layout, do so *before* we hide so elements have height/width
        if (c.doLayout && this.forceLayout) {
            c.doLayout();
        }
        if (this.renderHidden && c != this.activeItem) {
            c.hide();
        }
    },

    onRemove: function(c){
        if(this.activeItem == c){
            delete this.activeItem;
        }
        if(c.rendered && this.extraCls){
            var t = c.getPositionEl ? c.getPositionEl() : c;
            t.removeClass(this.extraCls);
        }
    },

    afterRemove: function(c){
        if(c.removeRestore){
            c.removeMode = 'container';
            delete c.removeRestore;
        }
    },

    // private
    onResize: function(){
        var ct = this.container,
            b;
        if(ct.collapsed){
            return;
        }
        if(b = ct.bufferResize && ct.shouldBufferLayout()){
            if(!this.resizeTask){
                this.resizeTask = new Ext.util.DelayedTask(this.runLayout, this);
                this.resizeBuffer = Ext.isNumber(b) ? b : 50;
            }
            ct.layoutPending = true;
            this.resizeTask.delay(this.resizeBuffer);
        }else{
            this.runLayout();
        }
    },

    runLayout: function(){
        var ct = this.container;
        this.layout();
        ct.onLayout();
        delete ct.layoutPending;
    },

    // private
    setContainer : function(ct){
        /*
         * This monitorResize flag will be renamed soon as to avoid confusion
         * with the Container version which hooks onWindowResize to doLayout
         *
         * monitorResize flag in this context attaches the resize event between
         * a container and it's layout
         */
        if(this.monitorResize && ct != this.container){
            var old = this.container;
            if(old){
                old.un(old.resizeEvent, this.onResize, this);
            }
            if(ct){
                ct.on(ct.resizeEvent, this.onResize, this);
            }
        }
        this.container = ct;
    },

    /**
     * Parses a number or string representing margin sizes into an object. Supports CSS-style margin declarations
     * (e.g. 10, "10", "10 10", "10 10 10" and "10 10 10 10" are all valid options and would return the same result)
     * @param {Number|String} v The encoded margins
     * @return {Object} An object with margin sizes for top, right, bottom and left
     */
    parseMargins : function(v){
        if (Ext.isNumber(v)) {
            v = v.toString();
        }
        var ms  = v.split(' '),
            len = ms.length;

        if (len == 1) {
            ms[1] = ms[2] = ms[3] = ms[0];
        } else if(len == 2) {
            ms[2] = ms[0];
            ms[3] = ms[1];
        } else if(len == 3) {
            ms[3] = ms[1];
        }

        return {
            top   :parseInt(ms[0], 10) || 0,
            right :parseInt(ms[1], 10) || 0,
            bottom:parseInt(ms[2], 10) || 0,
            left  :parseInt(ms[3], 10) || 0
        };
    },

    /**
     * The {@link Ext.Template Ext.Template} used by Field rendering layout classes (such as
     * {@link Ext.layout.FormLayout}) to create the DOM structure of a fully wrapped,
     * labeled and styled form Field. A default Template is supplied, but this may be
     * overriden to create custom field structures. The template processes values returned from
     * {@link Ext.layout.FormLayout#getTemplateArgs}.
     * @property fieldTpl
     * @type Ext.Template
     */
    fieldTpl: (function() {
        var t = new Ext.Template(
            '
    ',
                '',
                '
    ',
                '
    ',
            '
    '
        );
        t.disableFormats = true;
        return t.compile();
    })(),

    /*
     * Destroys this layout. This is a template method that is empty by default, but should be implemented
     * by subclasses that require explicit destruction to purge event handlers or remove DOM nodes.
     * @protected
     */
    destroy : function(){
        // Stop any buffered layout tasks
        if(this.resizeTask && this.resizeTask.cancel){
            this.resizeTask.cancel();
        }
        if(this.container) {
            this.container.un(this.container.resizeEvent, this.onResize, this);
        }
        if(!Ext.isEmpty(this.targetCls)){
            var target = this.container.getLayoutTarget();
            if(target){
                target.removeClass(this.targetCls);
            }
        }
    }
});/**
 * @class Ext.layout.AutoLayout
 * 
    The AutoLayout is the default layout manager delegated by {@link Ext.Container} to
 * render any child Components when no {@link Ext.Container#layout layout} is configured into
 * a {@link Ext.Container Container}..  AutoLayout provides only a passthrough of any layout calls
 * to any child containers.
    
 */
Ext.layout.AutoLayout = Ext.extend(Ext.layout.ContainerLayout, {
    type: 'auto',

    monitorResize: true,

    onLayout : function(ct, target){
        Ext.layout.AutoLayout.superclass.onLayout.call(this, ct, target);
        var cs = this.getRenderedItems(ct), len = cs.length, i, c;
        for(i = 0; i < len; i++){
            c = cs[i];
            if (c.doLayout){
                // Shallow layout children
                c.doLayout(true);
            }
        }
    }
});

Ext.Container.LAYOUTS['auto'] = Ext.layout.AutoLayout;
/**
 * @class Ext.layout.FitLayout
 * @extends Ext.layout.ContainerLayout
 * 
    This is a base class for layouts that contain a single item that automatically expands to fill the layout's
 * container.  This class is intended to be extended or created via the layout:'fit' {@link Ext.Container#layout}
 * config, and should generally not need to be created directly via the new keyword.
    
 * 
    FitLayout does not have any direct config options (other than inherited ones).  To fit a panel to a container
 * using FitLayout, simply set layout:'fit' on the container and add a single panel to it.  If the container has
 * multiple panels, only the first one will be displayed.  Example usage:
    
 * 
    
var p = new Ext.Panel({
    title: 'Fit Layout',
    layout:'fit',
    items: {
        title: 'Inner Panel',
        html: '<p>This is the inner panel content</p>',
        border: false
    }
});

    
 */
Ext.layout.FitLayout = Ext.extend(Ext.layout.ContainerLayout, {
    // private
    monitorResize:true,

    type: 'fit',

    getLayoutTargetSize : function() {
        var target = this.container.getLayoutTarget();
        if (!target) {
            return {};
        }
        // Style Sized (scrollbars not included)
        return target.getStyleSize();
    },

    // private
    onLayout : function(ct, target){
        Ext.layout.FitLayout.superclass.onLayout.call(this, ct, target);
        if(!ct.collapsed){
            this.setItemSize(this.activeItem || ct.items.itemAt(0), this.getLayoutTargetSize());
        }
    },

    // private
    setItemSize : function(item, size){
        if(item && size.height > 0){ // display none?
            item.setSize(size);
        }
    }
});
Ext.Container.LAYOUTS['fit'] = Ext.layout.FitLayout;/**
 * @class Ext.layout.CardLayout
 * @extends Ext.layout.FitLayout
 * 
    This layout manages multiple child Components, each fitted to the Container, where only a single child Component can be
 * visible at any given time.  This layout style is most commonly used for wizards, tab implementations, etc.
 * This class is intended to be extended or created via the layout:'card' {@link Ext.Container#layout} config,
 * and should generally not need to be created directly via the new keyword.
    
 * 
    The CardLayout's focal method is {@link #setActiveItem}.  Since only one panel is displayed at a time,
 * the only way to move from one Component to the next is by calling setActiveItem, passing the id or index of
 * the next panel to display.  The layout itself does not provide a user interface for handling this navigation,
 * so that functionality must be provided by the developer.
    
 * 
    In the following example, a simplistic wizard setup is demonstrated.  A button bar is added
 * to the footer of the containing panel to provide navigation buttons.  The buttons will be handled by a
 * common navigation routine -- for this example, the implementation of that routine has been ommitted since
 * it can be any type of custom logic.  Note that other uses of a CardLayout (like a tab control) would require a
 * completely different implementation.  For serious implementations, a better approach would be to extend
 * CardLayout to provide the custom functionality needed.  Example usage:
    
 * 
    
var navHandler = function(direction){
    // This routine could contain business logic required to manage the navigation steps.
    // It would call setActiveItem as needed, manage navigation button state, handle any
    // branching logic that might be required, handle alternate actions like cancellation
    // or finalization, etc.  A complete wizard implementation could get pretty
    // sophisticated depending on the complexity required, and should probably be
    // done as a subclass of CardLayout in a real-world implementation.
};

var card = new Ext.Panel({
    title: 'Example Wizard',
    layout:'card',
    activeItem: 0, // make sure the active item is set on the container config!
    bodyStyle: 'padding:15px',
    defaults: {
        // applied to each contained panel
        border:false
    },
    // just an example of one possible navigation scheme, using buttons
    bbar: [
        {
            id: 'move-prev',
            text: 'Back',
            handler: navHandler.createDelegate(this, [-1]),
            disabled: true
        },
        '->', // greedy spacer so that the buttons are aligned to each side
        {
            id: 'move-next',
            text: 'Next',
            handler: navHandler.createDelegate(this, [1])
        }
    ],
    // the panels (or "cards") within the layout
    items: [{
        id: 'card-0',
        html: '<h1>Welcome to the Wizard!</h1><p>Step 1 of 3</p>'
    },{
        id: 'card-1',
        html: '<p>Step 2 of 3</p>'
    },{
        id: 'card-2',
        html: '<h1>Congratulations!</h1><p>Step 3 of 3 - Complete</p>'
    }]
});

    
 */
Ext.layout.CardLayout = Ext.extend(Ext.layout.FitLayout, {
    /**
     * @cfg {Boolean} deferredRender
     * True to render each contained item at the time it becomes active, false to render all contained items
     * as soon as the layout is rendered (defaults to false).  If there is a significant amount of content or
     * a lot of heavy controls being rendered into panels that are not displayed by default, setting this to
     * true might improve performance.
     */
    deferredRender : false,

    /**
     * @cfg {Boolean} layoutOnCardChange
     * True to force a layout of the active item when the active card is changed. Defaults to false.
     */
    layoutOnCardChange : false,

    /**
     * @cfg {Boolean} renderHidden @hide
     */
    // private
    renderHidden : true,

    type: 'card',

    /**
     * Sets the active (visible) item in the layout.
     * @param {String/Number} item The string component id or numeric index of the item to activate
     */
    setActiveItem : function(item){
        var ai = this.activeItem,
            ct = this.container;
        item = ct.getComponent(item);

        // Is this a valid, different card?
        if(item && ai != item){

            // Changing cards, hide the current one
            if(ai){
                ai.hide();
                if (ai.hidden !== true) {
                    return false;
                }
                ai.fireEvent('deactivate', ai);
            }

            var layout = item.doLayout && (this.layoutOnCardChange || !item.rendered);

            // Change activeItem reference
            this.activeItem = item;

            // The container is about to get a recursive layout, remove any deferLayout reference
            // because it will trigger a redundant layout.
            delete item.deferLayout;

            // Show the new component
            item.show();

            this.layout();

            if(layout){
                item.doLayout();
            }
            item.fireEvent('activate', item);
        }
    },

    // private
    renderAll : function(ct, target){
        if(this.deferredRender){
            this.renderItem(this.activeItem, undefined, target);
        }else{
            Ext.layout.CardLayout.superclass.renderAll.call(this, ct, target);
        }
    }
});
Ext.Container.LAYOUTS['card'] = Ext.layout.CardLayout;
/**
 * @class Ext.layout.AnchorLayout
 * @extends Ext.layout.ContainerLayout
 * 
    This is a layout that enables anchoring of contained elements relative to the container's dimensions.
 * If the container is resized, all anchored items are automatically rerendered according to their
 * {@link #anchor} rules.
    
 * 
    This class is intended to be extended or created via the layout:'anchor' {@link Ext.Container#layout}
 * config, and should generally not need to be created directly via the new keyword.
    
 * 
    AnchorLayout does not have any direct config options (other than inherited ones). By default,
 * AnchorLayout will calculate anchor measurements based on the size of the container itself. However, the
 * container using the AnchorLayout can supply an anchoring-specific config property of anchorSize.
 * If anchorSize is specifed, the layout will use it as a virtual container for the purposes of calculating
 * anchor measurements based on it instead, allowing the container to be sized independently of the anchoring
 * logic if necessary.  For example:
    
 * 
    
var viewport = new Ext.Viewport({
    layout:'anchor',
    anchorSize: {width:800, height:600},
    items:[{
        title:'Item 1',
        html:'Content 1',
        width:800,
        anchor:'right 20%'
    },{
        title:'Item 2',
        html:'Content 2',
        width:300,
        anchor:'50% 30%'
    },{
        title:'Item 3',
        html:'Content 3',
        width:600,
        anchor:'-100 50%'
    }]
});
 * 
    
 */
Ext.layout.AnchorLayout = Ext.extend(Ext.layout.ContainerLayout, {
    /**
     * @cfg {String} anchor
     * 
    This configuation option is to be applied to child items of a container managed by
     * this layout (ie. configured with layout:'anchor').

    
     *
     * 
    This value is what tells the layout how an item should be anchored to the container. items
     * added to an AnchorLayout accept an anchoring-specific config property of anchor which is a string
     * containing two values: the horizontal anchor value and the vertical anchor value (for example, '100% 50%').
     * The following types of anchor values are supported:
      
     *
     * 
    • Percentage : Any value between 1 and 100, expressed as a percentage.
      
     * The first anchor is the percentage width that the item should take up within the container, and the
     * second is the percentage height.  For example:
      
// two values specified
anchor: '100% 50%' // render item complete width of the container and
                   // 1/2 height of the container
// one value specified
anchor: '100%'     // the width value; the height will default to auto
     * 
      • 
     *
     * 
    • Offsets : Any positive or negative integer value.
      
     * This is a raw adjustment where the first anchor is the offset from the right edge of the container,
     * and the second is the offset from the bottom edge. For example:
      
// two values specified
anchor: '-50 -100' // render item the complete width of the container
                   // minus 50 pixels and
                   // the complete height minus 100 pixels.
// one value specified
anchor: '-50'      // anchor value is assumed to be the right offset value
                   // bottom offset will default to 0
     * 
      • 
     *
     * 
    • Sides : Valid values are 'right' (or 'r') and 'bottom'
     * (or 'b').
      
     * Either the container must have a fixed size or an anchorSize config value defined at render time in
     * order for these to have any effect.
      • 
     *
     * 
    • Mixed : 
      
     * Anchor values can also be mixed as needed.  For example, to render the width offset from the container
     * right edge by 50 pixels and 75% of the container's height use:
     * 
      
anchor: '-50 75%'
     * 
      • 
     *
     *
     * 
    
     */

    // private
    monitorResize : true,

    type : 'anchor',

    /**
     * @cfg {String} defaultAnchor
     *
     * default anchor for all child container items applied if no anchor or specific width is set on the child item.  Defaults to '100%'.
     *
     */
    defaultAnchor : '100%',

    parseAnchorRE : /^(r|right|b|bottom)$/i,


    getLayoutTargetSize : function() {
        var target = this.container.getLayoutTarget(), ret = {};
        if (target) {
            ret = target.getViewSize();

            // IE in strict mode will return a width of 0 on the 1st pass of getViewSize.
            // Use getStyleSize to verify the 0 width, the adjustment pass will then work properly
            // with getViewSize
            if (Ext.isIE9m && Ext.isStrict && ret.width == 0){
                ret =  target.getStyleSize();
            }
            ret.width -= target.getPadding('lr');
            ret.height -= target.getPadding('tb');
        }
        return ret;
    },

    // private
    onLayout : function(container, target) {
        Ext.layout.AnchorLayout.superclass.onLayout.call(this, container, target);

        var size = this.getLayoutTargetSize(),
            containerWidth = size.width,
            containerHeight = size.height,
            overflow = target.getStyle('overflow'),
            components = this.getRenderedItems(container),
            len = components.length,
            boxes = [],
            box,
            anchorWidth,
            anchorHeight,
            component,
            anchorSpec,
            calcWidth,
            calcHeight,
            anchorsArray,
            totalHeight = 0,
            i,
            el;

        if(containerWidth < 20 && containerHeight < 20){
            return;
        }

        // find the container anchoring size
        if(container.anchorSize) {
            if(typeof container.anchorSize == 'number') {
                anchorWidth = container.anchorSize;
            } else {
                anchorWidth = container.anchorSize.width;
                anchorHeight = container.anchorSize.height;
            }
        } else {
            anchorWidth = container.initialConfig.width;
            anchorHeight = container.initialConfig.height;
        }

        for(i = 0; i < len; i++) {
            component = components[i];
            el = component.getPositionEl();

            // If a child container item has no anchor and no specific width, set the child to the default anchor size
            if (!component.anchor && component.items && !Ext.isNumber(component.width) && !(Ext.isIE6 && Ext.isStrict)){
                component.anchor = this.defaultAnchor;
            }

            if(component.anchor) {
                anchorSpec = component.anchorSpec;
                // cache all anchor values
                if(!anchorSpec){
                    anchorsArray = component.anchor.split(' ');
                    component.anchorSpec = anchorSpec = {
                        right: this.parseAnchor(anchorsArray[0], component.initialConfig.width, anchorWidth),
                        bottom: this.parseAnchor(anchorsArray[1], component.initialConfig.height, anchorHeight)
                    };
                }
                calcWidth = anchorSpec.right ? this.adjustWidthAnchor(anchorSpec.right(containerWidth) - el.getMargins('lr'), component) : undefined;
                calcHeight = anchorSpec.bottom ? this.adjustHeightAnchor(anchorSpec.bottom(containerHeight) - el.getMargins('tb'), component) : undefined;

                if(calcWidth || calcHeight) {
                    boxes.push({
                        component: component,
                        width: calcWidth || undefined,
                        height: calcHeight || undefined
                    });
                }
            }
        }
        for (i = 0, len = boxes.length; i < len; i++) {
            box = boxes[i];
            box.component.setSize(box.width, box.height);
        }

        if (overflow && overflow != 'hidden' && !this.adjustmentPass) {
            var newTargetSize = this.getLayoutTargetSize();
            if (newTargetSize.width != size.width || newTargetSize.height != size.height){
                this.adjustmentPass = true;
                this.onLayout(container, target);
            }
        }

        delete this.adjustmentPass;
    },

    // private
    parseAnchor : function(a, start, cstart) {
        if (a && a != 'none') {
            var last;
            // standard anchor
            if (this.parseAnchorRE.test(a)) {
                var diff = cstart - start;
                return function(v){
                    if(v !== last){
                        last = v;
                        return v - diff;
                    }
                };
            // percentage
            } else if(a.indexOf('%') != -1) {
                var ratio = parseFloat(a.replace('%', ''))*.01;
                return function(v){
                    if(v !== last){
                        last = v;
                        return Math.floor(v*ratio);
                    }
                };
            // simple offset adjustment
            } else {
                a = parseInt(a, 10);
                if (!isNaN(a)) {
                    return function(v) {
                        if (v !== last) {
                            last = v;
                            return v + a;
                        }
                    };
                }
            }
        }
        return false;
    },

    // private
    adjustWidthAnchor : function(value, comp){
        return value;
    },

    // private
    adjustHeightAnchor : function(value, comp){
        return value;
    }

    /**
     * @property activeItem
     * @hide
     */
});
Ext.Container.LAYOUTS['anchor'] = Ext.layout.AnchorLayout;
/**
 * @class Ext.layout.ColumnLayout
 * @extends Ext.layout.ContainerLayout
 * 
    This is the layout style of choice for creating structural layouts in a multi-column format where the width of
 * each column can be specified as a percentage or fixed width, but the height is allowed to vary based on the content.
 * This class is intended to be extended or created via the layout:'column' {@link Ext.Container#layout} config,
 * and should generally not need to be created directly via the new keyword.
    
 * 
    ColumnLayout does not have any direct config options (other than inherited ones), but it does support a
 * specific config property of columnWidth that can be included in the config of any panel added to it.  The
 * layout will use the columnWidth (if present) or width of each panel during layout to determine how to size each panel.
 * If width or columnWidth is not specified for a given panel, its width will default to the panel's width (or auto).
    
 * 
    The width property is always evaluated as pixels, and must be a number greater than or equal to 1.
 * The columnWidth property is always evaluated as a percentage, and must be a decimal value greater than 0 and
 * less than 1 (e.g., .25).
    
 * 
    The basic rules for specifying column widths are pretty simple.  The logic makes two passes through the
 * set of contained panels.  During the first layout pass, all panels that either have a fixed width or none
 * specified (auto) are skipped, but their widths are subtracted from the overall container width.  During the second
 * pass, all panels with columnWidths are assigned pixel widths in proportion to their percentages based on
 * the total remaining container width.  In other words, percentage width panels are designed to fill the space
 * left over by all the fixed-width and/or auto-width panels.  Because of this, while you can specify any number of columns
 * with different percentages, the columnWidths must always add up to 1 (or 100%) when added together, otherwise your
 * layout may not render as expected.  Example usage:
    
 * 
    
// All columns are percentages -- they must add up to 1
var p = new Ext.Panel({
    title: 'Column Layout - Percentage Only',
    layout:'column',
    items: [{
        title: 'Column 1',
        columnWidth: .25
    },{
        title: 'Column 2',
        columnWidth: .6
    },{
        title: 'Column 3',
        columnWidth: .15
    }]
});

// Mix of width and columnWidth -- all columnWidth values must add up
// to 1. The first column will take up exactly 120px, and the last two
// columns will fill the remaining container width.
var p = new Ext.Panel({
    title: 'Column Layout - Mixed',
    layout:'column',
    items: [{
        title: 'Column 1',
        width: 120
    },{
        title: 'Column 2',
        columnWidth: .8
    },{
        title: 'Column 3',
        columnWidth: .2
    }]
});

    
 */
Ext.layout.ColumnLayout = Ext.extend(Ext.layout.ContainerLayout, {
    // private
    monitorResize:true,

    type: 'column',

    extraCls: 'x-column',

    scrollOffset : 0,

    // private

    targetCls: 'x-column-layout-ct',

    isValidParent : function(c, target){
        return this.innerCt && c.getPositionEl().dom.parentNode == this.innerCt.dom;
    },

    getLayoutTargetSize : function() {
        var target = this.container.getLayoutTarget(), ret;
        if (target) {
            ret = target.getViewSize();

            // IE in strict mode will return a width of 0 on the 1st pass of getViewSize.
            // Use getStyleSize to verify the 0 width, the adjustment pass will then work properly
            // with getViewSize
            if (Ext.isIE9m && Ext.isStrict && ret.width == 0){
                ret =  target.getStyleSize();
            }

            ret.width -= target.getPadding('lr');
            ret.height -= target.getPadding('tb');
        }
        return ret;
    },

    renderAll : function(ct, target) {
        if(!this.innerCt){
            // the innerCt prevents wrapping and shuffling while
            // the container is resizing
            this.innerCt = target.createChild({cls:'x-column-inner'});
            this.innerCt.createChild({cls:'x-clear'});
        }
        Ext.layout.ColumnLayout.superclass.renderAll.call(this, ct, this.innerCt);
    },

    // private
    onLayout : function(ct, target){
        var cs = ct.items.items,
            len = cs.length,
            c,
            i,
            m,
            margins = [];

        this.renderAll(ct, target);

        var size = this.getLayoutTargetSize();

        if (Ext.isIE9m && (size.width < 1 && size.height < 1)) { // display none?
            return;
        }

        var w = size.width - this.scrollOffset,
            h = size.height,
            pw = w;

        this.innerCt.setWidth(w);

        // some columns can be percentages while others are fixed
        // so we need to make 2 passes

        for(i = 0; i < len; i++){
            c = cs[i];
            m = c.getPositionEl().getMargins('lr');
            margins[i] = m;
            if(!c.columnWidth){
                pw -= (c.getWidth() + m);
            }
        }

        pw = pw < 0 ? 0 : pw;

        for(i = 0; i < len; i++){
            c = cs[i];
            m = margins[i];
            if(c.columnWidth){
                c.setSize(Math.floor(c.columnWidth * pw) - m);
            }
        }

        // Browsers differ as to when they account for scrollbars.  We need to re-measure to see if the scrollbar
        // spaces were accounted for properly.  If not, re-layout.
        if (Ext.isIE9m) {
            if (i = target.getStyle('overflow') && i != 'hidden' && !this.adjustmentPass) {
                var ts = this.getLayoutTargetSize();
                if (ts.width != size.width){
                    this.adjustmentPass = true;
                    this.onLayout(ct, target);
                }
            }
        }
        delete this.adjustmentPass;
    }

    /**
     * @property activeItem
     * @hide
     */
});

Ext.Container.LAYOUTS['column'] = Ext.layout.ColumnLayout;
/**
 * @class Ext.layout.BorderLayout
 * @extends Ext.layout.ContainerLayout
 * 
    This is a multi-pane, application-oriented UI layout style that supports multiple
 * nested panels, automatic {@link Ext.layout.BorderLayout.Region#split split} bars between
 * {@link Ext.layout.BorderLayout.Region#BorderLayout.Region regions} and built-in
 * {@link Ext.layout.BorderLayout.Region#collapsible expanding and collapsing} of regions.
    
 * 
    This class is intended to be extended or created via the layout:'border'
 * {@link Ext.Container#layout} config, and should generally not need to be created directly
 * via the new keyword.
    
 * 
    BorderLayout does not have any direct config options (other than inherited ones).
 * All configuration options available for customizing the BorderLayout are at the
 * {@link Ext.layout.BorderLayout.Region} and {@link Ext.layout.BorderLayout.SplitRegion}
 * levels.
    
 * 
    Example usage:
    
 * 
    
var myBorderPanel = new Ext.Panel({
    {@link Ext.Component#renderTo renderTo}: document.body,
    {@link Ext.BoxComponent#width width}: 700,
    {@link Ext.BoxComponent#height height}: 500,
    {@link Ext.Panel#title title}: 'Border Layout',
    {@link Ext.Container#layout layout}: 'border',
    {@link Ext.Container#items items}: [{
        {@link Ext.Panel#title title}: 'South Region is resizable',
        {@link Ext.layout.BorderLayout.Region#BorderLayout.Region region}: 'south',     // position for region
        {@link Ext.BoxComponent#height height}: 100,
        {@link Ext.layout.BorderLayout.Region#split split}: true,         // enable resizing
        {@link Ext.SplitBar#minSize minSize}: 75,         // defaults to {@link Ext.layout.BorderLayout.Region#minHeight 50}
        {@link Ext.SplitBar#maxSize maxSize}: 150,
        {@link Ext.layout.BorderLayout.Region#margins margins}: '0 5 5 5'
    },{
        // xtype: 'panel' implied by default
        {@link Ext.Panel#title title}: 'West Region is collapsible',
        {@link Ext.layout.BorderLayout.Region#BorderLayout.Region region}:'west',
        {@link Ext.layout.BorderLayout.Region#margins margins}: '5 0 0 5',
        {@link Ext.BoxComponent#width width}: 200,
        {@link Ext.layout.BorderLayout.Region#collapsible collapsible}: true,   // make collapsible
        {@link Ext.layout.BorderLayout.Region#cmargins cmargins}: '5 5 0 5', // adjust top margin when collapsed
        {@link Ext.Component#id id}: 'west-region-container',
        {@link Ext.Container#layout layout}: 'fit',
        {@link Ext.Panel#unstyled unstyled}: true
    },{
        {@link Ext.Panel#title title}: 'Center Region',
        {@link Ext.layout.BorderLayout.Region#BorderLayout.Region region}: 'center',     // center region is required, no width/height specified
        {@link Ext.Component#xtype xtype}: 'container',
        {@link Ext.Container#layout layout}: 'fit',
        {@link Ext.layout.BorderLayout.Region#margins margins}: '5 5 0 0'
    }]
});

    
 * 
    Notes:
      
 * 
    • Any container using the BorderLayout must have a child item with region:'center'.
 * The child item in the center region will always be resized to fill the remaining space not used by
 * the other regions in the layout.
      • 
 * 
    • Any child items with a region of west or east must have width defined
 * (an integer representing the number of pixels that the region should take up).
      • 
 * 
    • Any child items with a region of north or south must have height defined.
      • 
 * 
    • The regions of a BorderLayout are fixed at render time and thereafter, its child Components may not be removed or added.  To add/remove
 * Components within a BorderLayout, have them wrapped by an additional Container which is directly
 * managed by the BorderLayout.  If the region is to be collapsible, the Container used directly
 * by the BorderLayout manager should be a Panel.  In the following example a Container (an Ext.Panel)
 * is added to the west region:
 * 
      
wrc = {@link Ext#getCmp Ext.getCmp}('west-region-container');
wrc.{@link Ext.Panel#removeAll removeAll}();
wrc.{@link Ext.Container#add add}({
    title: 'Added Panel',
    html: 'Some content'
});
wrc.{@link Ext.Container#doLayout doLayout}();
 * 
      
 * 
      • 
 * 
    •  To reference a {@link Ext.layout.BorderLayout.Region Region}:
 * 
      
wr = myBorderPanel.layout.west;
 * 
      
 * 
      • 
 * 
    
 */
Ext.layout.BorderLayout = Ext.extend(Ext.layout.ContainerLayout, {
    // private
    monitorResize:true,
    // private
    rendered : false,

    type: 'border',

    targetCls: 'x-border-layout-ct',

    getLayoutTargetSize : function() {
        var target = this.container.getLayoutTarget();
        return target ? target.getViewSize() : {};
    },

    // private
    onLayout : function(ct, target){
        var collapsed, i, c, pos, items = ct.items.items, len = items.length;
        if(!this.rendered){
            collapsed = [];
            for(i = 0; i < len; i++) {
                c = items[i];
                pos = c.region;
                if(c.collapsed){
                    collapsed.push(c);
                }
                c.collapsed = false;
                if(!c.rendered){
                    c.render(target, i);
                    c.getPositionEl().addClass('x-border-panel');
                }
                this[pos] = pos != 'center' && c.split ?
                    new Ext.layout.BorderLayout.SplitRegion(this, c.initialConfig, pos) :
                    new Ext.layout.BorderLayout.Region(this, c.initialConfig, pos);
                this[pos].render(target, c);
            }
            this.rendered = true;
        }

        var size = this.getLayoutTargetSize();
        if(size.width < 20 || size.height < 20){ // display none?
            if(collapsed){
                this.restoreCollapsed = collapsed;
            }
            return;
        }else if(this.restoreCollapsed){
            collapsed = this.restoreCollapsed;
            delete this.restoreCollapsed;
        }

        var w = size.width, h = size.height,
            centerW = w, centerH = h, centerY = 0, centerX = 0,
            n = this.north, s = this.south, west = this.west, e = this.east, c = this.center,
            b, m, totalWidth, totalHeight;
        if(!c && Ext.layout.BorderLayout.WARN !== false){
            throw 'No center region defined in BorderLayout ' + ct.id;
        }

        if(n && n.isVisible()){
            b = n.getSize();
            m = n.getMargins();
            b.width = w - (m.left+m.right);
            b.x = m.left;
            b.y = m.top;
            centerY = b.height + b.y + m.bottom;
            centerH -= centerY;
            n.applyLayout(b);
        }
        if(s && s.isVisible()){
            b = s.getSize();
            m = s.getMargins();
            b.width = w - (m.left+m.right);
            b.x = m.left;
            totalHeight = (b.height + m.top + m.bottom);
            b.y = h - totalHeight + m.top;
            centerH -= totalHeight;
            s.applyLayout(b);
        }
        if(west && west.isVisible()){
            b = west.getSize();
            m = west.getMargins();
            b.height = centerH - (m.top+m.bottom);
            b.x = m.left;
            b.y = centerY + m.top;
            totalWidth = (b.width + m.left + m.right);
            centerX += totalWidth;
            centerW -= totalWidth;
            west.applyLayout(b);
        }
        if(e && e.isVisible()){
            b = e.getSize();
            m = e.getMargins();
            b.height = centerH - (m.top+m.bottom);
            totalWidth = (b.width + m.left + m.right);
            b.x = w - totalWidth + m.left;
            b.y = centerY + m.top;
            centerW -= totalWidth;
            e.applyLayout(b);
        }
        if(c){
            m = c.getMargins();
            var centerBox = {
                x: centerX + m.left,
                y: centerY + m.top,
                width: centerW - (m.left+m.right),
                height: centerH - (m.top+m.bottom)
            };
            c.applyLayout(centerBox);
        }
        if(collapsed){
            for(i = 0, len = collapsed.length; i < len; i++){
                collapsed[i].collapse(false);
            }
        }
        if(Ext.isIE9m && Ext.isStrict){ // workaround IE strict repainting issue
            target.repaint();
        }
        // Putting a border layout into an overflowed container is NOT correct and will make a second layout pass necessary.
        if (i = target.getStyle('overflow') && i != 'hidden' && !this.adjustmentPass) {
            var ts = this.getLayoutTargetSize();
            if (ts.width != size.width || ts.height != size.height){
                this.adjustmentPass = true;
                this.onLayout(ct, target);
            }
        }
        delete this.adjustmentPass;
    },

    destroy: function() {
        var r = ['north', 'south', 'east', 'west'], i, region;
        for (i = 0; i < r.length; i++) {
            region = this[r[i]];
            if(region){
                if(region.destroy){
                    region.destroy();
                }else if (region.split){
                    region.split.destroy(true);
                }
            }
        }
        Ext.layout.BorderLayout.superclass.destroy.call(this);
    }

    /**
     * @property activeItem
     * @hide
     */
});

/**
 * @class Ext.layout.BorderLayout.Region
 * 
    This is a region of a {@link Ext.layout.BorderLayout BorderLayout} that acts as a subcontainer
 * within the layout. Each region in the layout is a component, the region itself is constructed on top
 * of that component, acting like a mixin. Each region has its own {@link Ext.layout.ContainerLayout layout} 
 * that is independent of other regions and the containing BorderLayout, and can be any of the
 * {@link Ext.layout.ContainerLayout valid Ext layout types}.
    
 * 
    Region size is managed automatically and cannot be changed by the user -- for
 * {@link #split resizable regions}, see {@link Ext.layout.BorderLayout.SplitRegion}.
    
 * @constructor
 * Create a new Region.
 * @param {Layout} layout The {@link Ext.layout.BorderLayout BorderLayout} instance that is managing this Region.
 * @param {Object} config The configuration options
 * @param {String} position The region position.  Valid values are: north, south,
 * east, west and center.  Every {@link Ext.layout.BorderLayout BorderLayout}
 * must have a center region for the primary content -- all other regions are optional.
 */
Ext.layout.BorderLayout.Region = function(layout, config, pos){
    Ext.apply(this, config);
    this.layout = layout;
    this.position = pos;
    this.state = {};
    if(typeof this.margins == 'string'){
        this.margins = this.layout.parseMargins(this.margins);
    }
    this.margins = Ext.applyIf(this.margins || {}, this.defaultMargins);
    if(this.collapsible){
        if(typeof this.cmargins == 'string'){
            this.cmargins = this.layout.parseMargins(this.cmargins);
        }
        if(this.collapseMode == 'mini' && !this.cmargins){
            this.cmargins = {left:0,top:0,right:0,bottom:0};
        }else{
            this.cmargins = Ext.applyIf(this.cmargins || {},
                pos == 'north' || pos == 'south' ? this.defaultNSCMargins : this.defaultEWCMargins);
        }
    }
};

Ext.layout.BorderLayout.Region.prototype = {
    /**
     * @cfg {Boolean} animFloat
     * When a collapsed region's bar is clicked, the region's panel will be displayed as a floated
     * panel that will close again once the user mouses out of that panel (or clicks out if
     * {@link #autoHide} = false).  Setting {@link #animFloat} = false will
     * prevent the open and close of these floated panels from being animated (defaults to true).
     */
    /**
     * @cfg {Boolean} autoHide
     * When a collapsed region's bar is clicked, the region's panel will be displayed as a floated
     * panel.  If autoHide = true, the panel will automatically hide after the user mouses
     * out of the panel.  If autoHide = false, the panel will continue to display until the
     * user clicks outside of the panel (defaults to true).
     */
    /**
     * @cfg {String} collapseMode
     * collapseMode supports two configuration values:
      
     * 
    • undefined (default)
      By default, {@link #collapsible}
     * regions are collapsed by clicking the expand/collapse tool button that renders into the region's
     * title bar.
      • 
     * 
    • 'mini'
      Optionally, when collapseMode is set to
     * 'mini' the region's split bar will also display a small collapse button in the center of
     * the bar. In 'mini' mode the region will collapse to a thinner bar than in normal mode.
     * 
      • 
     * 
    
     * 
    Note: if a collapsible region does not have a title bar, then set collapseMode =
     * 'mini' and {@link #split} = true in order for the region to be {@link #collapsible}
     * by the user as the expand/collapse tool button (that would go in the title bar) will not be rendered.
    
     * 
    See also {@link #cmargins}.
    
     */
    /**
     * @cfg {Object} margins
     * An object containing margins to apply to the region when in the expanded state in the
     * format:
    
{
    top: (top margin),
    right: (right margin),
    bottom: (bottom margin),
    left: (left margin)
}
    
     * 
    May also be a string containing space-separated, numeric margin values. The order of the
     * sides associated with each value matches the way CSS processes margin values:
    
     * 
      
     * 
    • If there is only one value, it applies to all sides.
      • 
     * 
    • If there are two values, the top and bottom borders are set to the first value and the
     * right and left are set to the second.
      • 
     * 
    • If there are three values, the top is set to the first value, the left and right are set
     * to the second, and the bottom is set to the third.
      • 
     * 
    • If there are four values, they apply to the top, right, bottom, and left, respectively.
      • 
     * 
    
     * 
    Defaults to:
    
     * {top:0, right:0, bottom:0, left:0}
     * 
    
     */
    /**
     * @cfg {Object} cmargins
     * An object containing margins to apply to the region when in the collapsed state in the
     * format:
    
{
    top: (top margin),
    right: (right margin),
    bottom: (bottom margin),
    left: (left margin)
}
    
     * 
    May also be a string containing space-separated, numeric margin values. The order of the
     * sides associated with each value matches the way CSS processes margin values.
    
     * 
      
     * 
    • If there is only one value, it applies to all sides.
      • 
     * 
    • If there are two values, the top and bottom borders are set to the first value and the
     * right and left are set to the second.
      • 
     * 
    • If there are three values, the top is set to the first value, the left and right are set
     * to the second, and the bottom is set to the third.
      • 
     * 
    • If there are four values, they apply to the top, right, bottom, and left, respectively.
      • 
     * 
    
     */
    /**
     * @cfg {Boolean} collapsible
     * 
    true to allow the user to collapse this region (defaults to false).  If
     * true, an expand/collapse tool button will automatically be rendered into the title
     * bar of the region, otherwise the button will not be shown.
    
     * 
    Note: that a title bar is required to display the collapse/expand toggle button -- if
     * no title is specified for the region's panel, the region will only be collapsible if
     * {@link #collapseMode} = 'mini' and {@link #split} = true.
     */
    collapsible : false,
    /**
     * @cfg {Boolean} split
     * 
    true to create a {@link Ext.layout.BorderLayout.SplitRegion SplitRegion} and
     * display a 5px wide {@link Ext.SplitBar} between this region and its neighbor, allowing the user to
     * resize the regions dynamically.  Defaults to false creating a
     * {@link Ext.layout.BorderLayout.Region Region}.

    
     * 
    Notes:
      
     * 
    • this configuration option is ignored if region='center'
      • 
     * 
    • when split == true, it is common to specify a
     * {@link Ext.SplitBar#minSize minSize} and {@link Ext.SplitBar#maxSize maxSize}
     * for the {@link Ext.BoxComponent BoxComponent} representing the region. These are not native
     * configs of {@link Ext.BoxComponent BoxComponent}, and are used only by this class.
      • 
     * 
    • if {@link #collapseMode} = 'mini' requires split = true to reserve space
     * for the collapse tool
      • 
     * 
    
     */
    split:false,
    /**
     * @cfg {Boolean} floatable
     * true to allow clicking a collapsed region's bar to display the region's panel floated
     * above the layout, false to force the user to fully expand a collapsed region by
     * clicking the expand button to see it again (defaults to true).
     */
    floatable: true,
    /**
     * @cfg {Number} minWidth
     * 
    The minimum allowable width in pixels for this region (defaults to 50).
     * maxWidth may also be specified.

    
     * 
    Note: setting the {@link Ext.SplitBar#minSize minSize} /
     * {@link Ext.SplitBar#maxSize maxSize} supersedes any specified
     * minWidth / maxWidth.
    
     */
    minWidth:50,
    /**
     * @cfg {Number} minHeight
     * The minimum allowable height in pixels for this region (defaults to 50)
     * maxHeight may also be specified.

    
     * 
    Note: setting the {@link Ext.SplitBar#minSize minSize} /
     * {@link Ext.SplitBar#maxSize maxSize} supersedes any specified
     * minHeight / maxHeight.
    
     */
    minHeight:50,

    // private
    defaultMargins : {left:0,top:0,right:0,bottom:0},
    // private
    defaultNSCMargins : {left:5,top:5,right:5,bottom:5},
    // private
    defaultEWCMargins : {left:5,top:0,right:5,bottom:0},
    floatingZIndex: 100,

    /**
     * True if this region is collapsed. Read-only.
     * @type Boolean
     * @property
     */
    isCollapsed : false,

    /**
     * This region's panel.  Read-only.
     * @type Ext.Panel
     * @property panel
     */
    /**
     * This region's layout.  Read-only.
     * @type Layout
     * @property layout
     */
    /**
     * This region's layout position (north, south, east, west or center).  Read-only.
     * @type String
     * @property position
     */

    // private
    render : function(ct, p){
        this.panel = p;
        p.el.enableDisplayMode();
        this.targetEl = ct;
        this.el = p.el;

        var gs = p.getState, ps = this.position;
        p.getState = function(){
            return Ext.apply(gs.call(p) || {}, this.state);
        }.createDelegate(this);

        if(ps != 'center'){
            p.allowQueuedExpand = false;
            p.on({
                beforecollapse: this.beforeCollapse,
                collapse: this.onCollapse,
                beforeexpand: this.beforeExpand,
                expand: this.onExpand,
                hide: this.onHide,
                show: this.onShow,
                scope: this
            });
            if(this.collapsible || this.floatable){
                p.collapseEl = 'el';
                p.slideAnchor = this.getSlideAnchor();
            }
            if(p.tools && p.tools.toggle){
                p.tools.toggle.addClass('x-tool-collapse-'+ps);
                p.tools.toggle.addClassOnOver('x-tool-collapse-'+ps+'-over');
            }
        }
    },

    // private
    getCollapsedEl : function(){
        if(!this.collapsedEl){
            if(!this.toolTemplate){
                var tt = new Ext.Template(
                     '
     
    '
                );
                tt.disableFormats = true;
                tt.compile();
                Ext.layout.BorderLayout.Region.prototype.toolTemplate = tt;
            }
            this.collapsedEl = this.targetEl.createChild({
                cls: "x-layout-collapsed x-layout-collapsed-"+this.position,
                id: this.panel.id + '-xcollapsed'
            });
            this.collapsedEl.enableDisplayMode('block');

            if(this.collapseMode == 'mini'){
                this.collapsedEl.addClass('x-layout-cmini-'+this.position);
                this.miniCollapsedEl = this.collapsedEl.createChild({
                    cls: "x-layout-mini x-layout-mini-"+this.position, html: " "
                });
                this.miniCollapsedEl.addClassOnOver('x-layout-mini-over');
                this.collapsedEl.addClassOnOver("x-layout-collapsed-over");
                this.collapsedEl.on('click', this.onExpandClick, this, {stopEvent:true});
            }else {
                if(this.collapsible !== false && !this.hideCollapseTool) {
                    var t = this.expandToolEl = this.toolTemplate.append(
                            this.collapsedEl.dom,
                            {id:'expand-'+this.position}, true);
                    t.addClassOnOver('x-tool-expand-'+this.position+'-over');
                    t.on('click', this.onExpandClick, this, {stopEvent:true});
                }
                if(this.floatable !== false || this.titleCollapse){
                   this.collapsedEl.addClassOnOver("x-layout-collapsed-over");
                   this.collapsedEl.on("click", this[this.floatable ? 'collapseClick' : 'onExpandClick'], this);
                }
            }
        }
        return this.collapsedEl;
    },

    // private
    onExpandClick : function(e){
        if(this.isSlid){
            this.panel.expand(false);
        }else{
            this.panel.expand();
        }
    },

    // private
    onCollapseClick : function(e){
        this.panel.collapse();
    },

    // private
    beforeCollapse : function(p, animate){
        this.lastAnim = animate;
        if(this.splitEl){
            this.splitEl.hide();
        }
        this.getCollapsedEl().show();
        var el = this.panel.getEl();
        this.originalZIndex = el.getStyle('z-index');
        el.setStyle('z-index', 100);
        this.isCollapsed = true;
        this.layout.layout();
    },

    // private
    onCollapse : function(animate){
        this.panel.el.setStyle('z-index', 1);
        if(this.lastAnim === false || this.panel.animCollapse === false){
            this.getCollapsedEl().dom.style.visibility = 'visible';
        }else{
            this.getCollapsedEl().slideIn(this.panel.slideAnchor, {duration:.2});
        }
        this.state.collapsed = true;
        this.panel.saveState();
    },

    // private
    beforeExpand : function(animate){
        if(this.isSlid){
            this.afterSlideIn();
        }
        var c = this.getCollapsedEl();
        this.el.show();
        if(this.position == 'east' || this.position == 'west'){
            this.panel.setSize(undefined, c.getHeight());
        }else{
            this.panel.setSize(c.getWidth(), undefined);
        }
        c.hide();
        c.dom.style.visibility = 'hidden';
        this.panel.el.setStyle('z-index', this.floatingZIndex);
    },

    // private
    onExpand : function(){
        this.isCollapsed = false;
        if(this.splitEl){
            this.splitEl.show();
        }
        this.layout.layout();
        this.panel.el.setStyle('z-index', this.originalZIndex);
        this.state.collapsed = false;
        this.panel.saveState();
    },

    // private
    collapseClick : function(e){
        if(this.isSlid){
           e.stopPropagation();
           this.slideIn();
        }else{
           e.stopPropagation();
           this.slideOut();
        }
    },

    // private
    onHide : function(){
        if(this.isCollapsed){
            this.getCollapsedEl().hide();
        }else if(this.splitEl){
            this.splitEl.hide();
        }
    },

    // private
    onShow : function(){
        if(this.isCollapsed){
            this.getCollapsedEl().show();
        }else if(this.splitEl){
            this.splitEl.show();
        }
    },

    /**
     * True if this region is currently visible, else false.
     * @return {Boolean}
     */
    isVisible : function(){
        return !this.panel.hidden;
    },

    /**
     * Returns the current margins for this region.  If the region is collapsed, the
     * {@link #cmargins} (collapsed margins) value will be returned, otherwise the
     * {@link #margins} value will be returned.
     * @return {Object} An object containing the element's margins: {left: (left
     * margin), top: (top margin), right: (right margin), bottom: (bottom margin)}
     */
    getMargins : function(){
        return this.isCollapsed && this.cmargins ? this.cmargins : this.margins;
    },

    /**
     * Returns the current size of this region.  If the region is collapsed, the size of the
     * collapsedEl will be returned, otherwise the size of the region's panel will be returned.
     * @return {Object} An object containing the element's size: {width: (element width),
     * height: (element height)}
     */
    getSize : function(){
        return this.isCollapsed ? this.getCollapsedEl().getSize() : this.panel.getSize();
    },

    /**
     * Sets the specified panel as the container element for this region.
     * @param {Ext.Panel} panel The new panel
     */
    setPanel : function(panel){
        this.panel = panel;
    },

    /**
     * Returns the minimum allowable width for this region.
     * @return {Number} The minimum width
     */
    getMinWidth: function(){
        return this.minWidth;
    },

    /**
     * Returns the minimum allowable height for this region.
     * @return {Number} The minimum height
     */
    getMinHeight: function(){
        return this.minHeight;
    },

    // private
    applyLayoutCollapsed : function(box){
        var ce = this.getCollapsedEl();
        ce.setLeftTop(box.x, box.y);
        ce.setSize(box.width, box.height);
    },

    // private
    applyLayout : function(box){
        if(this.isCollapsed){
            this.applyLayoutCollapsed(box);
        }else{
            this.panel.setPosition(box.x, box.y);
            this.panel.setSize(box.width, box.height);
        }
    },

    // private
    beforeSlide: function(){
        this.panel.beforeEffect();
    },

    // private
    afterSlide : function(){
        this.panel.afterEffect();
    },

    // private
    initAutoHide : function(){
        if(this.autoHide !== false){
            if(!this.autoHideHd){
                this.autoHideSlideTask = new Ext.util.DelayedTask(this.slideIn, this);
                this.autoHideHd = {
                    "mouseout": function(e){
                        if(!e.within(this.el, true)){
                            this.autoHideSlideTask.delay(500);
                        }
                    },
                    "mouseover" : function(e){
                        this.autoHideSlideTask.cancel();
                    },
                    scope : this
                };
            }
            this.el.on(this.autoHideHd);
            this.collapsedEl.on(this.autoHideHd);
        }
    },

    // private
    clearAutoHide : function(){
        if(this.autoHide !== false){
            this.el.un("mouseout", this.autoHideHd.mouseout);
            this.el.un("mouseover", this.autoHideHd.mouseover);
            this.collapsedEl.un("mouseout", this.autoHideHd.mouseout);
            this.collapsedEl.un("mouseover", this.autoHideHd.mouseover);
        }
    },

    // private
    clearMonitor : function(){
        Ext.getDoc().un("click", this.slideInIf, this);
    },

    /**
     * If this Region is {@link #floatable}, this method slides this Region into full visibility over the top
     * of the center Region where it floats until either {@link #slideIn} is called, or other regions of the layout
     * are clicked, or the mouse exits the Region.
     */
    slideOut : function(){
        if(this.isSlid || this.el.hasActiveFx()){
            return;
        }
        this.isSlid = true;
        var ts = this.panel.tools, dh, pc;
        if(ts && ts.toggle){
            ts.toggle.hide();
        }
        this.el.show();

        // Temporarily clear the collapsed flag so we can onResize the panel on the slide
        pc = this.panel.collapsed;
        this.panel.collapsed = false;

        if(this.position == 'east' || this.position == 'west'){
            // Temporarily clear the deferHeight flag so we can size the height on the slide
            dh = this.panel.deferHeight;
            this.panel.deferHeight = false;

            this.panel.setSize(undefined, this.collapsedEl.getHeight());

            // Put the deferHeight flag back after setSize
            this.panel.deferHeight = dh;
        }else{
            this.panel.setSize(this.collapsedEl.getWidth(), undefined);
        }

        // Put the collapsed flag back after onResize
        this.panel.collapsed = pc;

        this.restoreLT = [this.el.dom.style.left, this.el.dom.style.top];
        this.el.alignTo(this.collapsedEl, this.getCollapseAnchor());
        this.el.setStyle("z-index", this.floatingZIndex+2);
        this.panel.el.replaceClass('x-panel-collapsed', 'x-panel-floating');
        if(this.animFloat !== false){
            this.beforeSlide();
            this.el.slideIn(this.getSlideAnchor(), {
                callback: function(){
                    this.afterSlide();
                    this.initAutoHide();
                    Ext.getDoc().on("click", this.slideInIf, this);
                },
                scope: this,
                block: true
            });
        }else{
            this.initAutoHide();
             Ext.getDoc().on("click", this.slideInIf, this);
        }
    },

    // private
    afterSlideIn : function(){
        this.clearAutoHide();
        this.isSlid = false;
        this.clearMonitor();
        this.el.setStyle("z-index", "");
        this.panel.el.replaceClass('x-panel-floating', 'x-panel-collapsed');
        this.el.dom.style.left = this.restoreLT[0];
        this.el.dom.style.top = this.restoreLT[1];

        var ts = this.panel.tools;
        if(ts && ts.toggle){
            ts.toggle.show();
        }
    },

    /**
     * If this Region is {@link #floatable}, and this Region has been slid into floating visibility, then this method slides
     * this region back into its collapsed state.
     */
    slideIn : function(cb){
        if(!this.isSlid || this.el.hasActiveFx()){
            Ext.callback(cb);
            return;
        }
        this.isSlid = false;
        if(this.animFloat !== false){
            this.beforeSlide();
            this.el.slideOut(this.getSlideAnchor(), {
                callback: function(){
                    this.el.hide();
                    this.afterSlide();
                    this.afterSlideIn();
                    Ext.callback(cb);
                },
                scope: this,
                block: true
            });
        }else{
            this.el.hide();
            this.afterSlideIn();
        }
    },

    // private
    slideInIf : function(e){
        if(!e.within(this.el)){
            this.slideIn();
        }
    },

    // private
    anchors : {
        "west" : "left",
        "east" : "right",
        "north" : "top",
        "south" : "bottom"
    },

    // private
    sanchors : {
        "west" : "l",
        "east" : "r",
        "north" : "t",
        "south" : "b"
    },

    // private
    canchors : {
        "west" : "tl-tr",
        "east" : "tr-tl",
        "north" : "tl-bl",
        "south" : "bl-tl"
    },

    // private
    getAnchor : function(){
        return this.anchors[this.position];
    },

    // private
    getCollapseAnchor : function(){
        return this.canchors[this.position];
    },

    // private
    getSlideAnchor : function(){
        return this.sanchors[this.position];
    },

    // private
    getAlignAdj : function(){
        var cm = this.cmargins;
        switch(this.position){
            case "west":
                return [0, 0];
            break;
            case "east":
                return [0, 0];
            break;
            case "north":
                return [0, 0];
            break;
            case "south":
                return [0, 0];
            break;
        }
    },

    // private
    getExpandAdj : function(){
        var c = this.collapsedEl, cm = this.cmargins;
        switch(this.position){
            case "west":
                return [-(cm.right+c.getWidth()+cm.left), 0];
            break;
            case "east":
                return [cm.right+c.getWidth()+cm.left, 0];
            break;
            case "north":
                return [0, -(cm.top+cm.bottom+c.getHeight())];
            break;
            case "south":
                return [0, cm.top+cm.bottom+c.getHeight()];
            break;
        }
    },

    destroy : function(){
        if (this.autoHideSlideTask && this.autoHideSlideTask.cancel){
            this.autoHideSlideTask.cancel();
        }
        Ext.destroyMembers(this, 'miniCollapsedEl', 'collapsedEl', 'expandToolEl');
    }
};

/**
 * @class Ext.layout.BorderLayout.SplitRegion
 * @extends Ext.layout.BorderLayout.Region
 * 
    This is a specialized type of {@link Ext.layout.BorderLayout.Region BorderLayout region} that
 * has a built-in {@link Ext.SplitBar} for user resizing of regions.  The movement of the split bar
 * is configurable to move either {@link #tickSize smooth or incrementally}.
    
 * @constructor
 * Create a new SplitRegion.
 * @param {Layout} layout The {@link Ext.layout.BorderLayout BorderLayout} instance that is managing this Region.
 * @param {Object} config The configuration options
 * @param {String} position The region position.  Valid values are: north, south, east, west and center.  Every
 * BorderLayout must have a center region for the primary content -- all other regions are optional.
 */
Ext.layout.BorderLayout.SplitRegion = function(layout, config, pos){
    Ext.layout.BorderLayout.SplitRegion.superclass.constructor.call(this, layout, config, pos);
    // prevent switch
    this.applyLayout = this.applyFns[pos];
};

Ext.extend(Ext.layout.BorderLayout.SplitRegion, Ext.layout.BorderLayout.Region, {
    /**
     * @cfg {Number} tickSize
     * The increment, in pixels by which to move this Region's {@link Ext.SplitBar SplitBar}.
     * By default, the {@link Ext.SplitBar SplitBar} moves smoothly.
     */
    /**
     * @cfg {String} splitTip
     * The tooltip to display when the user hovers over a
     * {@link Ext.layout.BorderLayout.Region#collapsible non-collapsible} region's split bar
     * (defaults to "Drag to resize.").  Only applies if
     * {@link #useSplitTips} = true.
     */
    splitTip : "Drag to resize.",
    /**
     * @cfg {String} collapsibleSplitTip
     * The tooltip to display when the user hovers over a
     * {@link Ext.layout.BorderLayout.Region#collapsible collapsible} region's split bar
     * (defaults to "Drag to resize. Double click to hide."). Only applies if
     * {@link #useSplitTips} = true.
     */
    collapsibleSplitTip : "Drag to resize. Double click to hide.",
    /**
     * @cfg {Boolean} useSplitTips
     * true to display a tooltip when the user hovers over a region's split bar
     * (defaults to false).  The tooltip text will be the value of either
     * {@link #splitTip} or {@link #collapsibleSplitTip} as appropriate.
     */
    useSplitTips : false,

    // private
    splitSettings : {
        north : {
            orientation: Ext.SplitBar.VERTICAL,
            placement: Ext.SplitBar.TOP,
            maxFn : 'getVMaxSize',
            minProp: 'minHeight',
            maxProp: 'maxHeight'
        },
        south : {
            orientation: Ext.SplitBar.VERTICAL,
            placement: Ext.SplitBar.BOTTOM,
            maxFn : 'getVMaxSize',
            minProp: 'minHeight',
            maxProp: 'maxHeight'
        },
        east : {
            orientation: Ext.SplitBar.HORIZONTAL,
            placement: Ext.SplitBar.RIGHT,
            maxFn : 'getHMaxSize',
            minProp: 'minWidth',
            maxProp: 'maxWidth'
        },
        west : {
            orientation: Ext.SplitBar.HORIZONTAL,
            placement: Ext.SplitBar.LEFT,
            maxFn : 'getHMaxSize',
            minProp: 'minWidth',
            maxProp: 'maxWidth'
        }
    },

    // private
    applyFns : {
        west : function(box){
            if(this.isCollapsed){
                return this.applyLayoutCollapsed(box);
            }
            var sd = this.splitEl.dom, s = sd.style;
            this.panel.setPosition(box.x, box.y);
            var sw = sd.offsetWidth;
            s.left = (box.x+box.width-sw)+'px';
            s.top = (box.y)+'px';
            s.height = Math.max(0, box.height)+'px';
            this.panel.setSize(box.width-sw, box.height);
        },
        east : function(box){
            if(this.isCollapsed){
                return this.applyLayoutCollapsed(box);
            }
            var sd = this.splitEl.dom, s = sd.style;
            var sw = sd.offsetWidth;
            this.panel.setPosition(box.x+sw, box.y);
            s.left = (box.x)+'px';
            s.top = (box.y)+'px';
            s.height = Math.max(0, box.height)+'px';
            this.panel.setSize(box.width-sw, box.height);
        },
        north : function(box){
            if(this.isCollapsed){
                return this.applyLayoutCollapsed(box);
            }
            var sd = this.splitEl.dom, s = sd.style;
            var sh = sd.offsetHeight;
            this.panel.setPosition(box.x, box.y);
            s.left = (box.x)+'px';
            s.top = (box.y+box.height-sh)+'px';
            s.width = Math.max(0, box.width)+'px';
            this.panel.setSize(box.width, box.height-sh);
        },
        south : function(box){
            if(this.isCollapsed){
                return this.applyLayoutCollapsed(box);
            }
            var sd = this.splitEl.dom, s = sd.style;
            var sh = sd.offsetHeight;
            this.panel.setPosition(box.x, box.y+sh);
            s.left = (box.x)+'px';
            s.top = (box.y)+'px';
            s.width = Math.max(0, box.width)+'px';
            this.panel.setSize(box.width, box.height-sh);
        }
    },

    // private
    render : function(ct, p){
        Ext.layout.BorderLayout.SplitRegion.superclass.render.call(this, ct, p);

        var ps = this.position;

        this.splitEl = ct.createChild({
            cls: "x-layout-split x-layout-split-"+ps, html: " ",
            id: this.panel.id + '-xsplit'
        });

        if(this.collapseMode == 'mini'){
            this.miniSplitEl = this.splitEl.createChild({
                cls: "x-layout-mini x-layout-mini-"+ps, html: " "
            });
            this.miniSplitEl.addClassOnOver('x-layout-mini-over');
            this.miniSplitEl.on('click', this.onCollapseClick, this, {stopEvent:true});
        }

        var s = this.splitSettings[ps];

        this.split = new Ext.SplitBar(this.splitEl.dom, p.el, s.orientation);
        this.split.tickSize = this.tickSize;
        this.split.placement = s.placement;
        this.split.getMaximumSize = this[s.maxFn].createDelegate(this);
        this.split.minSize = this.minSize || this[s.minProp];
        this.split.on("beforeapply", this.onSplitMove, this);
        this.split.useShim = this.useShim === true;
        this.maxSize = this.maxSize || this[s.maxProp];

        if(p.hidden){
            this.splitEl.hide();
        }

        if(this.useSplitTips){
            this.splitEl.dom.title = this.collapsible ? this.collapsibleSplitTip : this.splitTip;
        }
        if(this.collapsible){
            this.splitEl.on("dblclick", this.onCollapseClick,  this);
        }
    },

    //docs inherit from superclass
    getSize : function(){
        if(this.isCollapsed){
            return this.collapsedEl.getSize();
        }
        var s = this.panel.getSize();
        if(this.position == 'north' || this.position == 'south'){
            s.height += this.splitEl.dom.offsetHeight;
        }else{
            s.width += this.splitEl.dom.offsetWidth;
        }
        return s;
    },

    // private
    getHMaxSize : function(){
         var cmax = this.maxSize || 10000;
         var center = this.layout.center;
         return Math.min(cmax, (this.el.getWidth()+center.el.getWidth())-center.getMinWidth());
    },

    // private
    getVMaxSize : function(){
        var cmax = this.maxSize || 10000;
        var center = this.layout.center;
        return Math.min(cmax, (this.el.getHeight()+center.el.getHeight())-center.getMinHeight());
    },

    // private
    onSplitMove : function(split, newSize){
        var s = this.panel.getSize();
        this.lastSplitSize = newSize;
        if(this.position == 'north' || this.position == 'south'){
            this.panel.setSize(s.width, newSize);
            this.state.height = newSize;
        }else{
            this.panel.setSize(newSize, s.height);
            this.state.width = newSize;
        }
        this.layout.layout();
        this.panel.saveState();
        return false;
    },

    /**
     * Returns a reference to the split bar in use by this region.
     * @return {Ext.SplitBar} The split bar
     */
    getSplitBar : function(){
        return this.split;
    },

    // inherit docs
    destroy : function() {
        Ext.destroy(this.miniSplitEl, this.split, this.splitEl);
        Ext.layout.BorderLayout.SplitRegion.superclass.destroy.call(this);
    }
});

Ext.Container.LAYOUTS['border'] = Ext.layout.BorderLayout;
/**
 * @class Ext.layout.FormLayout
 * @extends Ext.layout.AnchorLayout
 * 
    This layout manager is specifically designed for rendering and managing child Components of
 * {@link Ext.form.FormPanel forms}. It is responsible for rendering the labels of
 * {@link Ext.form.Field Field}s.
    
 *
 * 
    This layout manager is used when a Container is configured with the layout:'form'
 * {@link Ext.Container#layout layout} config option, and should generally not need to be created directly
 * via the new keyword. See {@link Ext.Container#layout} for additional details.
    
 *
 * 
    In an application, it will usually be preferrable to use a {@link Ext.form.FormPanel FormPanel}
 * (which is configured with FormLayout as its layout class by default) since it also provides built-in
 * functionality for {@link Ext.form.BasicForm#doAction loading, validating and submitting} the form.
    
 *
 * 
    A {@link Ext.Container Container} using the FormLayout layout manager (e.g.
 * {@link Ext.form.FormPanel} or specifying layout:'form') can also accept the following
 * layout-specific config properties:
      
 * 
    • {@link Ext.form.FormPanel#hideLabels hideLabels}
      • 
 * 
    • {@link Ext.form.FormPanel#labelAlign labelAlign}
      • 
 * 
    • {@link Ext.form.FormPanel#labelPad labelPad}
      • 
 * 
    • {@link Ext.form.FormPanel#labelSeparator labelSeparator}
      • 
 * 
    • {@link Ext.form.FormPanel#labelWidth labelWidth}
      • 
 * 
    
 *
 * 
    Any Component (including Fields) managed by FormLayout accepts the following as a config option:
 * 
      
 * 
    • {@link Ext.Component#anchor anchor}
      • 
 * 
    
 *
 * 
    Any Component managed by FormLayout may be rendered as a form field (with an associated label) by
 * configuring it with a non-null {@link Ext.Component#fieldLabel fieldLabel}. Components configured
 * in this way may be configured with the following options which affect the way the FormLayout renders them:
 * 
      
 * 
    • {@link Ext.Component#clearCls clearCls}
      • 
 * 
    • {@link Ext.Component#fieldLabel fieldLabel}
      • 
 * 
    • {@link Ext.Component#hideLabel hideLabel}
      • 
 * 
    • {@link Ext.Component#itemCls itemCls}
      • 
 * 
    • {@link Ext.Component#labelSeparator labelSeparator}
      • 
 * 
    • {@link Ext.Component#labelStyle labelStyle}
      • 
 * 
    
 *
 * 
    Example usage:
    
 * 
    
// Required if showing validation messages
Ext.QuickTips.init();

// While you can create a basic Panel with layout:'form', practically
// you should usually use a FormPanel to also get its form functionality
// since it already creates a FormLayout internally.
var form = new Ext.form.FormPanel({
    title: 'Form Layout',
    bodyStyle: 'padding:15px',
    width: 350,
    defaultType: 'textfield',
    defaults: {
        // applied to each contained item
        width: 230,
        msgTarget: 'side'
    },
    items: [{
            fieldLabel: 'First Name',
            name: 'first',
            allowBlank: false,
            {@link Ext.Component#labelSeparator labelSeparator}: ':' // override labelSeparator layout config
        },{
            fieldLabel: 'Last Name',
            name: 'last'
        },{
            fieldLabel: 'Email',
            name: 'email',
            vtype:'email'
        }, {
            xtype: 'textarea',
            hideLabel: true,     // override hideLabels layout config
            name: 'msg',
            anchor: '100% -53'
        }
    ],
    buttons: [
        {text: 'Save'},
        {text: 'Cancel'}
    ],
    layoutConfig: {
        {@link #labelSeparator}: '~' // superseded by assignment below
    },
    // config options applicable to container when layout='form':
    hideLabels: false,
    labelAlign: 'left',   // or 'right' or 'top'
    {@link Ext.form.FormPanel#labelSeparator labelSeparator}: '>>', // takes precedence over layoutConfig value
    labelWidth: 65,       // defaults to 100
    labelPad: 8           // defaults to 5, must specify labelWidth to be honored
});

    
 */
Ext.layout.FormLayout = Ext.extend(Ext.layout.AnchorLayout, {

    /**
     * @cfg {String} labelSeparator
     * See {@link Ext.form.FormPanel}.{@link Ext.form.FormPanel#labelSeparator labelSeparator}.  Configuration
     * of this property at the container level takes precedence.
     */
    labelSeparator : ':',

    /**
     * Read only. The CSS style specification string added to field labels in this layout if not
     * otherwise {@link Ext.Component#labelStyle specified by each contained field}.
     * @type String
     * @property labelStyle
     */

    /**
     * @cfg {Boolean} trackLabels
     * True to show/hide the field label when the field is hidden. Defaults to true.
     */
    trackLabels: true,

    type: 'form',

    onRemove: function(c){
        Ext.layout.FormLayout.superclass.onRemove.call(this, c);
        if(this.trackLabels){
            c.un('show', this.onFieldShow, this);
            c.un('hide', this.onFieldHide, this);
        }
        // check for itemCt, since we may be removing a fieldset or something similar
        var el = c.getPositionEl(),
            ct = c.getItemCt && c.getItemCt();
        if (c.rendered && ct) {
            if (el && el.dom) {
                el.insertAfter(ct);
            }
            Ext.destroy(ct);
            Ext.destroyMembers(c, 'label', 'itemCt');
            if (c.customItemCt) {
                Ext.destroyMembers(c, 'getItemCt', 'customItemCt');
            }
        }
    },

    // private
    setContainer : function(ct){
        Ext.layout.FormLayout.superclass.setContainer.call(this, ct);
        ct.labelAlign = ct.labelAlign || this.labelAlign;
        if (ct.labelAlign) {
            ct.addClass('x-form-label-' + ct.labelAlign);
        }

        if (ct.hideLabels || this.hideLabels) { 
            Ext.apply(this, {
                labelStyle: 'display:none',
                elementStyle: 'padding-left:0;',
                labelAdjust: 0
            });
        } else {
            this.labelSeparator = Ext.isDefined(ct.labelSeparator) ? ct.labelSeparator : this.labelSeparator;
            ct.labelWidth = ct.labelWidth || this.labelWidth || 100;
            if(Ext.isNumber(ct.labelWidth)){
                var pad = ct.labelPad || this.labelPad;
                pad = Ext.isNumber(pad) ? pad : 5;
                Ext.apply(this, {
                    labelAdjust: ct.labelWidth + pad,
                    labelStyle: 'width:' + ct.labelWidth + 'px;',
                    elementStyle: 'padding-left:' + (ct.labelWidth + pad) + 'px'
                });
            }
            if(ct.labelAlign == 'top'){
                Ext.apply(this, {
                    labelStyle: 'width:auto;',
                    labelAdjust: 0,
                    elementStyle: 'padding-left:0;'
                });
            }
        }
    },

    // private
    isHide: function(c){
        return c.hideLabel || this.container.hideLabels;
    },

    onFieldShow: function(c){
        c.getItemCt().removeClass('x-hide-' + c.hideMode);

        // Composite fields will need to layout after the container is made visible
        if (c.isComposite) {
            c.doLayout();
        }
    },

    onFieldHide: function(c){
        c.getItemCt().addClass('x-hide-' + c.hideMode);
    },

    //private
    getLabelStyle: function(s){
        var ls = '', items = [this.labelStyle, s];
        for (var i = 0, len = items.length; i < len; ++i){
            if (items[i]){
                ls += items[i];
                if (ls.substr(-1, 1) != ';'){
                    ls += ';';
                }
            }
        }
        return ls;
    },

    /**
     * @cfg {Ext.Template} fieldTpl
     * A {@link Ext.Template#compile compile}d {@link Ext.Template} for rendering
     * the fully wrapped, labeled and styled form Field. Defaults to:
    
new Ext.Template(
    '<div class="x-form-item {itemCls}" tabIndex="-1">',
        '<label for="{id}" style="{labelStyle}" class="x-form-item-label">{label}{labelSeparator}</label>',
        '<div class="x-form-element" id="x-form-el-{id}" style="{elementStyle}">',
        '</div><div class="{clearCls}"></div>',
    '</div>'
);

    
     * 
    This may be specified to produce a different DOM structure when rendering form Fields.
    
     * 
    A description of the properties within the template follows:
      
     * 
    • itemCls : String
      The CSS class applied to the outermost div wrapper
     * that contains this field label and field element (the default class is 'x-form-item' and itemCls
     * will be added to that). If supplied, itemCls at the field level will override the default itemCls
     * supplied at the container level.
      • 
     * 
    • id : String
      The id of the Field
      • 
     * 
    • {@link #labelStyle} : String
      
     * A CSS style specification string to add to the field label for this field (defaults to '' or the
     * {@link #labelStyle layout's value for labelStyle}).
      • 
     * 
    • label : String
      The text to display as the label for this
     * field (defaults to '')
      • 
     * 
    • {@link #labelSeparator} : String
      The separator to display after
     * the text of the label for this field (defaults to a colon ':' or the
     * {@link #labelSeparator layout's value for labelSeparator}). To hide the separator use empty string ''.
      • 
     * 
    • elementStyle : String
      The styles text for the input element's wrapper.
      • 
     * 
    • clearCls : String
      The CSS class to apply to the special clearing div
     * rendered directly after each form field wrapper (defaults to 'x-form-clear-left')
      • 
     * 
    
     * 
    Also see {@link #getTemplateArgs}
    
     */

    /**
     * @private
     *
     */
    renderItem : function(c, position, target){
        if(c && (c.isFormField || c.fieldLabel) && c.inputType != 'hidden'){
            var args = this.getTemplateArgs(c);
            if(Ext.isNumber(position)){
                position = target.dom.childNodes[position] || null;
            }
            if(position){
                c.itemCt = this.fieldTpl.insertBefore(position, args, true);
            }else{
                c.itemCt = this.fieldTpl.append(target, args, true);
            }
            if(!c.getItemCt){
                // Non form fields don't have getItemCt, apply it here
                // This will get cleaned up in onRemove
                Ext.apply(c, {
                    getItemCt: function(){
                        return c.itemCt;
                    },
                    customItemCt: true
                });
            }
            c.label = c.getItemCt().child('label.x-form-item-label');
            if(!c.rendered){
                c.render('x-form-el-' + c.id);
            }else if(!this.isValidParent(c, target)){
                Ext.fly('x-form-el-' + c.id).appendChild(c.getPositionEl());
            }
            if(this.trackLabels){
                if(c.hidden){
                    this.onFieldHide(c);
                }
                c.on({
                    scope: this,
                    show: this.onFieldShow,
                    hide: this.onFieldHide
                });
            }
            this.configureItem(c);
        }else {
            Ext.layout.FormLayout.superclass.renderItem.apply(this, arguments);
        }
    },

    /**
     * 
    Provides template arguments for rendering the fully wrapped, labeled and styled form Field.
    
     * 
    This method returns an object hash containing properties used by the layout's {@link #fieldTpl}
     * to create a correctly wrapped, labeled and styled form Field. This may be overriden to
     * create custom layouts. The properties which must be returned are:
      
     * 
    • itemCls : String
      The CSS class applied to the outermost div wrapper
     * that contains this field label and field element (the default class is 'x-form-item' and itemCls
     * will be added to that). If supplied, itemCls at the field level will override the default itemCls
     * supplied at the container level.
      • 
     * 
    • id : String
      The id of the Field
      • 
     * 
    • {@link #labelStyle} : String
      
     * A CSS style specification string to add to the field label for this field (defaults to '' or the
     * {@link #labelStyle layout's value for labelStyle}).
      • 
     * 
    • label : String
      The text to display as the label for this
     * field (defaults to the field's configured fieldLabel property)
      • 
     * 
    • {@link #labelSeparator} : String
      The separator to display after
     * the text of the label for this field (defaults to a colon ':' or the
     * {@link #labelSeparator layout's value for labelSeparator}). To hide the separator use empty string ''.
      • 
     * 
    • elementStyle : String
      The styles text for the input element's wrapper.
      • 
     * 
    • clearCls : String
      The CSS class to apply to the special clearing div
     * rendered directly after each form field wrapper (defaults to 'x-form-clear-left')
      • 
     * 
    
     * @param (Ext.form.Field} field The {@link Ext.form.Field Field} being rendered.
     * @return {Object} An object hash containing the properties required to render the Field.
     */
    getTemplateArgs: function(field) {
        var noLabelSep = !field.fieldLabel || field.hideLabel,
            itemCls = (field.itemCls || this.container.itemCls || '') + (field.hideLabel ? ' x-hide-label' : '');

        // IE9 quirks needs an extra, identifying class on wrappers of TextFields
        if (Ext.isIE9 && Ext.isIEQuirks && field instanceof Ext.form.TextField) {
            itemCls += ' x-input-wrapper';
        }

        return {
            id            : field.id,
            label         : field.fieldLabel,
            itemCls       : itemCls,
            clearCls      : field.clearCls || 'x-form-clear-left',
            labelStyle    : this.getLabelStyle(field.labelStyle),
            elementStyle  : this.elementStyle || '',
            labelSeparator: noLabelSep ? '' : (Ext.isDefined(field.labelSeparator) ? field.labelSeparator : this.labelSeparator)
        };
    },

    // private
    adjustWidthAnchor: function(value, c){
        if(c.label && !this.isHide(c) && (this.container.labelAlign != 'top')){
            var adjust = Ext.isIE6 || Ext.isIEQuirks;
            return value - this.labelAdjust + (adjust ? -3 : 0);
        }
        return value;
    },

    adjustHeightAnchor : function(value, c){
        if(c.label && !this.isHide(c) && (this.container.labelAlign == 'top')){
            return value - c.label.getHeight();
        }
        return value;
    },

    // private
    isValidParent : function(c, target){
        return target && this.container.getEl().contains(c.getPositionEl());
    }

    /**
     * @property activeItem
     * @hide
     */
});

Ext.Container.LAYOUTS['form'] = Ext.layout.FormLayout;
/**
 * @class Ext.layout.AccordionLayout
 * @extends Ext.layout.FitLayout
 * 
    This is a layout that manages multiple Panels in an expandable accordion style such that only
 * one Panel can be expanded at any given time. Each Panel has built-in support for expanding and collapsing.
    
 * 
    Note: Only Ext.Panels and all subclasses of Ext.Panel may be used in an accordion layout Container.
    
 * 
    This class is intended to be extended or created via the {@link Ext.Container#layout layout}
 * configuration property.  See {@link Ext.Container#layout} for additional details.
    
 * 
    Example usage:
    
 * 
    
var accordion = new Ext.Panel({
    title: 'Accordion Layout',
    layout:'accordion',
    defaults: {
        // applied to each contained panel
        bodyStyle: 'padding:15px'
    },
    layoutConfig: {
        // layout-specific configs go here
        titleCollapse: false,
        animate: true,
        activeOnTop: true
    },
    items: [{
        title: 'Panel 1',
        html: '<p>Panel content!</p>'
    },{
        title: 'Panel 2',
        html: '<p>Panel content!</p>'
    },{
        title: 'Panel 3',
        html: '<p>Panel content!</p>'
    }]
});

    
 */
Ext.layout.AccordionLayout = Ext.extend(Ext.layout.FitLayout, {
    /**
     * @cfg {Boolean} fill
     * True to adjust the active item's height to fill the available space in the container, false to use the
     * item's current height, or auto height if not explicitly set (defaults to true).
     */
    fill : true,
    /**
     * @cfg {Boolean} autoWidth
     * True to set each contained item's width to 'auto', false to use the item's current width (defaults to true).
     * Note that some components, in particular the {@link Ext.grid.GridPanel grid}, will not function properly within
     * layouts if they have auto width, so in such cases this config should be set to false.
     */
    autoWidth : true,
    /**
     * @cfg {Boolean} titleCollapse
     * True to allow expand/collapse of each contained panel by clicking anywhere on the title bar, false to allow
     * expand/collapse only when the toggle tool button is clicked (defaults to true).  When set to false,
     * {@link #hideCollapseTool} should be false also.
     */
    titleCollapse : true,
    /**
     * @cfg {Boolean} hideCollapseTool
     * True to hide the contained panels' collapse/expand toggle buttons, false to display them (defaults to false).
     * When set to true, {@link #titleCollapse} should be true also.
     */
    hideCollapseTool : false,
    /**
     * @cfg {Boolean} collapseFirst
     * True to make sure the collapse/expand toggle button always renders first (to the left of) any other tools
     * in the contained panels' title bars, false to render it last (defaults to false).
     */
    collapseFirst : false,
    /**
     * @cfg {Boolean} animate
     * True to slide the contained panels open and closed during expand/collapse using animation, false to open and
     * close directly with no animation (defaults to false).  Note: to defer to the specific config setting of each
     * contained panel for this property, set this to undefined at the layout level.
     */
    animate : false,
    /**
     * @cfg {Boolean} sequence
     * Experimental. If animate is set to true, this will result in each animation running in sequence.
     */
    sequence : false,
    /**
     * @cfg {Boolean} activeOnTop
     * True to swap the position of each panel as it is expanded so that it becomes the first item in the container,
     * false to keep the panels in the rendered order. This is NOT compatible with "animate:true" (defaults to false).
     */
    activeOnTop : false,

    type: 'accordion',

    renderItem : function(c){
        if(this.animate === false){
            c.animCollapse = false;
        }
        c.collapsible = true;
        if(this.autoWidth){
            c.autoWidth = true;
        }
        if(this.titleCollapse){
            c.titleCollapse = true;
        }
        if(this.hideCollapseTool){
            c.hideCollapseTool = true;
        }
        if(this.collapseFirst !== undefined){
            c.collapseFirst = this.collapseFirst;
        }
        if(!this.activeItem && !c.collapsed){
            this.setActiveItem(c, true);
        }else if(this.activeItem && this.activeItem != c){
            c.collapsed = true;
        }
        Ext.layout.AccordionLayout.superclass.renderItem.apply(this, arguments);
        c.header.addClass('x-accordion-hd');
        c.on('beforeexpand', this.beforeExpand, this);
    },

    onRemove: function(c){
        Ext.layout.AccordionLayout.superclass.onRemove.call(this, c);
        if(c.rendered){
            c.header.removeClass('x-accordion-hd');
        }
        c.un('beforeexpand', this.beforeExpand, this);
    },

    // private
    beforeExpand : function(p, anim){
        var ai = this.activeItem;
        if(ai){
            if(this.sequence){
                delete this.activeItem;
                if (!ai.collapsed){
                    ai.collapse({callback:function(){
                        p.expand(anim || true);
                    }, scope: this});
                    return false;
                }
            }else{
                ai.collapse(this.animate);
            }
        }
        this.setActive(p);
        if(this.activeOnTop){
            p.el.dom.parentNode.insertBefore(p.el.dom, p.el.dom.parentNode.firstChild);
        }
        // Items have been hidden an possibly rearranged, we need to get the container size again.
        this.layout();
    },

    // private
    setItemSize : function(item, size){
        if(this.fill && item){
            var hh = 0, i, ct = this.getRenderedItems(this.container), len = ct.length, p;
            // Add up all the header heights
            for (i = 0; i < len; i++) {
                if((p = ct[i]) != item && !p.hidden){
                    hh += p.header.getHeight();
                }
            };
            // Subtract the header heights from the container size
            size.height -= hh;
            // Call setSize on the container to set the correct height.  For Panels, deferedHeight
            // will simply store this size for when the expansion is done.
            item.setSize(size);
        }
    },

    /**
     * Sets the active (expanded) item in the layout.
     * @param {String/Number} item The string component id or numeric index of the item to activate
     */
    setActiveItem : function(item){
        this.setActive(item, true);
    },

    // private
    setActive : function(item, expand){
        var ai = this.activeItem;
        item = this.container.getComponent(item);
        if(ai != item){
            if(item.rendered && item.collapsed && expand){
                item.expand();
            }else{
                if(ai){
                   ai.fireEvent('deactivate', ai);
                }
                this.activeItem = item;
                item.fireEvent('activate', item);
            }
        }
    }
});
Ext.Container.LAYOUTS.accordion = Ext.layout.AccordionLayout;

//backwards compat
Ext.layout.Accordion = Ext.layout.AccordionLayout;/**
 * @class Ext.layout.TableLayout
 * @extends Ext.layout.ContainerLayout
 * 
    This layout allows you to easily render content into an HTML table.  The total number of columns can be
 * specified, and rowspan and colspan can be used to create complex layouts within the table.
 * This class is intended to be extended or created via the layout:'table' {@link Ext.Container#layout} config,
 * and should generally not need to be created directly via the new keyword.
    
 * 
    Note that when creating a layout via config, the layout-specific config properties must be passed in via
 * the {@link Ext.Container#layoutConfig} object which will then be applied internally to the layout.  In the
 * case of TableLayout, the only valid layout config property is {@link #columns}.  However, the items added to a
 * TableLayout can supply the following table-specific config properties:
    
 * 
      
 * 
    • rowspan Applied to the table cell containing the item.
      • 
 * 
    • colspan Applied to the table cell containing the item.
      • 
 * 
    • cellId An id applied to the table cell containing the item.
      • 
 * 
    • cellCls A CSS class name added to the table cell containing the item.
      • 
 * 
    
 * 
    The basic concept of building up a TableLayout is conceptually very similar to building up a standard
 * HTML table.  You simply add each panel (or "cell") that you want to include along with any span attributes
 * specified as the special config properties of rowspan and colspan which work exactly like their HTML counterparts.
 * Rather than explicitly creating and nesting rows and columns as you would in HTML, you simply specify the
 * total column count in the layoutConfig and start adding panels in their natural order from left to right,
 * top to bottom.  The layout will automatically figure out, based on the column count, rowspans and colspans,
 * how to position each panel within the table.  Just like with HTML tables, your rowspans and colspans must add
 * up correctly in your overall layout or you'll end up with missing and/or extra cells!  Example usage:
    
 * 
    
// This code will generate a layout table that is 3 columns by 2 rows
// with some spanning included.  The basic layout will be:
// +--------+-----------------+
// |   A    |   B             |
// |        |--------+--------|
// |        |   C    |   D    |
// +--------+--------+--------+
var table = new Ext.Panel({
    title: 'Table Layout',
    layout:'table',
    defaults: {
        // applied to each contained panel
        bodyStyle:'padding:20px'
    },
    layoutConfig: {
        // The total column count must be specified here
        columns: 3
    },
    items: [{
        html: '<p>Cell A content</p>',
        rowspan: 2
    },{
        html: '<p>Cell B content</p>',
        colspan: 2
    },{
        html: '<p>Cell C content</p>',
        cellCls: 'highlight'
    },{
        html: '<p>Cell D content</p>'
    }]
});

    
 */
Ext.layout.TableLayout = Ext.extend(Ext.layout.ContainerLayout, {
    /**
     * @cfg {Number} columns
     * The total number of columns to create in the table for this layout.  If not specified, all Components added to
     * this layout will be rendered into a single row using one column per Component.
     */

    // private
    monitorResize:false,

    type: 'table',

    targetCls: 'x-table-layout-ct',

    /**
     * @cfg {Object} tableAttrs
     * 
    An object containing properties which are added to the {@link Ext.DomHelper DomHelper} specification
     * used to create the layout's <table> element. Example:
    
{
    xtype: 'panel',
    layout: 'table',
    layoutConfig: {
        tableAttrs: {
            style: {
                width: '100%'
            }
        },
        columns: 3
    }
}
    
     */
    tableAttrs:null,

    // private
    setContainer : function(ct){
        Ext.layout.TableLayout.superclass.setContainer.call(this, ct);

        this.currentRow = 0;
        this.currentColumn = 0;
        this.cells = [];
    },
    
    // private
    onLayout : function(ct, target){
        var cs = ct.items.items, len = cs.length, c, i;

        if(!this.table){
            target.addClass('x-table-layout-ct');

            this.table = target.createChild(
                Ext.apply({tag:'table', cls:'x-table-layout', cellspacing: 0, cn: {tag: 'tbody'}}, this.tableAttrs), null, true);
        }
        this.renderAll(ct, target);
    },

    // private
    getRow : function(index){
        var row = this.table.tBodies[0].childNodes[index];
        if(!row){
            row = document.createElement('tr');
            this.table.tBodies[0].appendChild(row);
        }
        return row;
    },

    // private
    getNextCell : function(c){
        var cell = this.getNextNonSpan(this.currentColumn, this.currentRow);
        var curCol = this.currentColumn = cell[0], curRow = this.currentRow = cell[1];
        for(var rowIndex = curRow; rowIndex < curRow + (c.rowspan || 1); rowIndex++){
            if(!this.cells[rowIndex]){
                this.cells[rowIndex] = [];
            }
            for(var colIndex = curCol; colIndex < curCol + (c.colspan || 1); colIndex++){
                this.cells[rowIndex][colIndex] = true;
            }
        }
        var td = document.createElement('td');
        if(c.cellId){
            td.id = c.cellId;
        }
        var cls = 'x-table-layout-cell';
        if(c.cellCls){
            cls += ' ' + c.cellCls;
        }
        td.className = cls;
        if(c.colspan){
            td.colSpan = c.colspan;
        }
        if(c.rowspan){
            td.rowSpan = c.rowspan;
        }
        this.getRow(curRow).appendChild(td);
        return td;
    },

    // private
    getNextNonSpan: function(colIndex, rowIndex){
        var cols = this.columns;
        while((cols && colIndex >= cols) || (this.cells[rowIndex] && this.cells[rowIndex][colIndex])) {
            if(cols && colIndex >= cols){
                rowIndex++;
                colIndex = 0;
            }else{
                colIndex++;
            }
        }
        return [colIndex, rowIndex];
    },

    // private
    renderItem : function(c, position, target){
        // Ensure we have our inner table to get cells to render into.
        if(!this.table){
            this.table = target.createChild(
                Ext.apply({tag:'table', cls:'x-table-layout', cellspacing: 0, cn: {tag: 'tbody'}}, this.tableAttrs), null, true);
        }
        if(c && !c.rendered){
            c.render(this.getNextCell(c));
            this.configureItem(c);
        }else if(c && !this.isValidParent(c, target)){
            var container = this.getNextCell(c);
            container.insertBefore(c.getPositionEl().dom, null);
            c.container = Ext.get(container);
            this.configureItem(c);
        }
    },

    // private
    isValidParent : function(c, target){
        return c.getPositionEl().up('table', 5).dom.parentNode === (target.dom || target);
    },
    
    destroy: function(){
        delete this.table;
        Ext.layout.TableLayout.superclass.destroy.call(this);
    }

    /**
     * @property activeItem
     * @hide
     */
});

Ext.Container.LAYOUTS['table'] = Ext.layout.TableLayout;/**
 * @class Ext.layout.AbsoluteLayout
 * @extends Ext.layout.AnchorLayout
 * 
    This is a layout that inherits the anchoring of {@link Ext.layout.AnchorLayout} and adds the
 * ability for x/y positioning using the standard x and y component config options.
    
 * 
    This class is intended to be extended or created via the {@link Ext.Container#layout layout}
 * configuration property.  See {@link Ext.Container#layout} for additional details.
    
 * 
    Example usage:
    
 * 
    
var form = new Ext.form.FormPanel({
    title: 'Absolute Layout',
    layout:'absolute',
    layoutConfig: {
        // layout-specific configs go here
        extraCls: 'x-abs-layout-item',
    },
    baseCls: 'x-plain',
    url:'save-form.php',
    defaultType: 'textfield',
    items: [{
        x: 0,
        y: 5,
        xtype:'label',
        text: 'Send To:'
    },{
        x: 60,
        y: 0,
        name: 'to',
        anchor:'100%'  // anchor width by percentage
    },{
        x: 0,
        y: 35,
        xtype:'label',
        text: 'Subject:'
    },{
        x: 60,
        y: 30,
        name: 'subject',
        anchor: '100%'  // anchor width by percentage
    },{
        x:0,
        y: 60,
        xtype: 'textarea',
        name: 'msg',
        anchor: '100% 100%'  // anchor width and height
    }]
});

    
 */
Ext.layout.AbsoluteLayout = Ext.extend(Ext.layout.AnchorLayout, {

    extraCls: 'x-abs-layout-item',

    type: 'absolute',

    onLayout : function(ct, target){
        target.position();
        this.paddingLeft = target.getPadding('l');
        this.paddingTop = target.getPadding('t');
        Ext.layout.AbsoluteLayout.superclass.onLayout.call(this, ct, target);
    },

    // private
    adjustWidthAnchor : function(value, comp){
        return value ? value - comp.getPosition(true)[0] + this.paddingLeft : value;
    },

    // private
    adjustHeightAnchor : function(value, comp){
        return  value ? value - comp.getPosition(true)[1] + this.paddingTop : value;
    }
    /**
     * @property activeItem
     * @hide
     */
});
Ext.Container.LAYOUTS['absolute'] = Ext.layout.AbsoluteLayout;
/**
 * @class Ext.layout.BoxLayout
 * @extends Ext.layout.ContainerLayout
 * 
    Base Class for HBoxLayout and VBoxLayout Classes. Generally it should not need to be used directly.
    
 */
Ext.layout.BoxLayout = Ext.extend(Ext.layout.ContainerLayout, {
    /**
     * @cfg {Object} defaultMargins
     * 
    If the individual contained items do not have a margins
     * property specified, the default margins from this property will be
     * applied to each item.
    
     * 
    This property may be specified as an object containing margins
     * to apply in the format:
    
{
    top: (top margin),
    right: (right margin),
    bottom: (bottom margin),
    left: (left margin)
}
    
     * 
    This property may also be specified as a string containing
     * space-separated, numeric margin values. The order of the sides associated
     * with each value matches the way CSS processes margin values:
    
     * 
      
     * 
    • If there is only one value, it applies to all sides.
      • 
     * 
    • If there are two values, the top and bottom borders are set to the
     * first value and the right and left are set to the second.
      • 
     * 
    • If there are three values, the top is set to the first value, the left
     * and right are set to the second, and the bottom is set to the third.
      • 
     * 
    • If there are four values, they apply to the top, right, bottom, and
     * left, respectively.
      • 
     * 
    
     * 
    Defaults to:
    
     * {top:0, right:0, bottom:0, left:0}
     * 
    
     */
    defaultMargins : {left:0,top:0,right:0,bottom:0},
    /**
     * @cfg {String} padding
     * 
    Sets the padding to be applied to all child items managed by this layout.
    
     * 
    This property must be specified as a string containing
     * space-separated, numeric padding values. The order of the sides associated
     * with each value matches the way CSS processes padding values:
    
     * 
      
     * 
    • If there is only one value, it applies to all sides.
      • 
     * 
    • If there are two values, the top and bottom borders are set to the
     * first value and the right and left are set to the second.
      • 
     * 
    • If there are three values, the top is set to the first value, the left
     * and right are set to the second, and the bottom is set to the third.
      • 
     * 
    • If there are four values, they apply to the top, right, bottom, and
     * left, respectively.
      • 
     * 
    
     * 
    Defaults to: "0"
    
     */
    padding : '0',
    // documented in subclasses
    pack : 'start',

    // private
    monitorResize : true,
    type: 'box',
    scrollOffset : 0,
    extraCls : 'x-box-item',
    targetCls : 'x-box-layout-ct',
    innerCls : 'x-box-inner',

    constructor : function(config){
        Ext.layout.BoxLayout.superclass.constructor.call(this, config);

        if (Ext.isString(this.defaultMargins)) {
            this.defaultMargins = this.parseMargins(this.defaultMargins);
        }
        
        var handler = this.overflowHandler;
        
        if (typeof handler == 'string') {
            handler = {
                type: handler
            };
        }
        
        var handlerType = 'none';
        if (handler && handler.type != undefined) {
            handlerType = handler.type;
        }
        
        var constructor = Ext.layout.boxOverflow[handlerType];
        if (constructor[this.type]) {
            constructor = constructor[this.type];
        }
        
        this.overflowHandler = new constructor(this, handler);
    },

    /**
     * @private
     * Runs the child box calculations and caches them in childBoxCache. Subclasses can used these cached values
     * when laying out
     */
    onLayout: function(container, target) {
        Ext.layout.BoxLayout.superclass.onLayout.call(this, container, target);

        var tSize = this.getLayoutTargetSize(),
            items = this.getVisibleItems(container),
            calcs = this.calculateChildBoxes(items, tSize),
            boxes = calcs.boxes,
            meta  = calcs.meta;
        
        //invoke the overflow handler, if one is configured
        if (tSize.width > 0) {
            var handler = this.overflowHandler,
                method  = meta.tooNarrow ? 'handleOverflow' : 'clearOverflow';
            
            var results = handler[method](calcs, tSize);
            
            if (results) {
                if (results.targetSize) {
                    tSize = results.targetSize;
                }
                
                if (results.recalculate) {
                    items = this.getVisibleItems(container);
                    calcs = this.calculateChildBoxes(items, tSize);
                    boxes = calcs.boxes;
                }
            }
        }
        
        /**
         * @private
         * @property layoutTargetLastSize
         * @type Object
         * Private cache of the last measured size of the layout target. This should never be used except by
         * BoxLayout subclasses during their onLayout run.
         */
        this.layoutTargetLastSize = tSize;
        
        /**
         * @private
         * @property childBoxCache
         * @type Array
         * Array of the last calculated height, width, top and left positions of each visible rendered component
         * within the Box layout.
         */
        this.childBoxCache = calcs;
        
        this.updateInnerCtSize(tSize, calcs);
        this.updateChildBoxes(boxes);

        // Putting a box layout into an overflowed container is NOT correct and will make a second layout pass necessary.
        this.handleTargetOverflow(tSize, container, target);
    },

    /**
     * Resizes and repositions each child component
     * @param {Array} boxes The box measurements
     */
    updateChildBoxes: function(boxes) {
        for (var i = 0, length = boxes.length; i < length; i++) {
            var box  = boxes[i],
                comp = box.component;
            
            if (box.dirtySize) {
                comp.setSize(box.width, box.height);
            }
            // Don't set positions to NaN
            if (isNaN(box.left) || isNaN(box.top)) {
                continue;
            }
            
            comp.setPosition(box.left, box.top);
        }
    },

    /**
     * @private
     * Called by onRender just before the child components are sized and positioned. This resizes the innerCt
     * to make sure all child items fit within it. We call this before sizing the children because if our child
     * items are larger than the previous innerCt size the browser will insert scrollbars and then remove them
     * again immediately afterwards, giving a performance hit.
     * Subclasses should provide an implementation.
     * @param {Object} currentSize The current height and width of the innerCt
     * @param {Array} calculations The new box calculations of all items to be laid out
     */
    updateInnerCtSize: function(tSize, calcs) {
        var align   = this.align,
            padding = this.padding,
            width   = tSize.width,
            height  = tSize.height;
        
        if (this.type == 'hbox') {
            var innerCtWidth  = width,
                innerCtHeight = calcs.meta.maxHeight + padding.top + padding.bottom;

            if (align == 'stretch') {
                innerCtHeight = height;
            } else if (align == 'middle') {
                innerCtHeight = Math.max(height, innerCtHeight);
            }
        } else {
            var innerCtHeight = height,
                innerCtWidth  = calcs.meta.maxWidth + padding.left + padding.right;

            if (align == 'stretch') {
                innerCtWidth = width;
            } else if (align == 'center') {
                innerCtWidth = Math.max(width, innerCtWidth);
            }
        }

        this.innerCt.setSize(innerCtWidth || undefined, innerCtHeight || undefined);
    },

    /**
     * @private
     * This should be called after onLayout of any BoxLayout subclass. If the target's overflow is not set to 'hidden',
     * we need to lay out a second time because the scrollbars may have modified the height and width of the layout
     * target. Having a Box layout inside such a target is therefore not recommended.
     * @param {Object} previousTargetSize The size and height of the layout target before we just laid out
     * @param {Ext.Container} container The container
     * @param {Ext.Element} target The target element
     */
    handleTargetOverflow: function(previousTargetSize, container, target) {
        var overflow = target.getStyle('overflow');

        if (overflow && overflow != 'hidden' &&!this.adjustmentPass) {
            var newTargetSize = this.getLayoutTargetSize();
            if (newTargetSize.width != previousTargetSize.width || newTargetSize.height != previousTargetSize.height){
                this.adjustmentPass = true;
                this.onLayout(container, target);
            }
        }

        delete this.adjustmentPass;
    },

    // private
    isValidParent : function(c, target) {
        return this.innerCt && c.getPositionEl().dom.parentNode == this.innerCt.dom;
    },

    /**
     * @private
     * Returns all items that are both rendered and visible
     * @return {Array} All matching items
     */
    getVisibleItems: function(ct) {
        var ct  = ct || this.container,
            t   = ct.getLayoutTarget(),
            cti = ct.items.items,
            len = cti.length,

            i, c, items = [];

        for (i = 0; i < len; i++) {
            if((c = cti[i]).rendered && this.isValidParent(c, t) && c.hidden !== true  && c.collapsed !== true && c.shouldLayout !== false){
                items.push(c);
            }
        }

        return items;
    },

    // private
    renderAll : function(ct, target) {
        if (!this.innerCt) {
            // the innerCt prevents wrapping and shuffling while the container is resizing
            this.innerCt = target.createChild({cls:this.innerCls});
            this.padding = this.parseMargins(this.padding);
        }
        Ext.layout.BoxLayout.superclass.renderAll.call(this, ct, this.innerCt);
    },

    getLayoutTargetSize : function() {
        var target = this.container.getLayoutTarget(), ret;
        
        if (target) {
            ret = target.getViewSize();

            // IE in strict mode will return a width of 0 on the 1st pass of getViewSize.
            // Use getStyleSize to verify the 0 width, the adjustment pass will then work properly
            // with getViewSize
            if (Ext.isIE9m && Ext.isStrict && ret.width == 0){
                ret =  target.getStyleSize();
            }

            ret.width  -= target.getPadding('lr');
            ret.height -= target.getPadding('tb');
        }
        
        return ret;
    },

    // private
    renderItem : function(c) {
        if(Ext.isString(c.margins)){
            c.margins = this.parseMargins(c.margins);
        }else if(!c.margins){
            c.margins = this.defaultMargins;
        }
        Ext.layout.BoxLayout.superclass.renderItem.apply(this, arguments);
    },
    
    /**
     * @private
     */
    destroy: function() {
        Ext.destroy(this.overflowHandler);
        
        Ext.layout.BoxLayout.superclass.destroy.apply(this, arguments);
    }
});

/**
 * @class Ext.layout.boxOverflow.None
 * @extends Object
 * Base class for Box Layout overflow handlers. These specialized classes are invoked when a Box Layout
 * (either an HBox or a VBox) has child items that are either too wide (for HBox) or too tall (for VBox)
 * for its container.
 */

Ext.layout.boxOverflow.None = Ext.extend(Object, {
    constructor: function(layout, config) {
        this.layout = layout;
        
        Ext.apply(this, config || {});
    },
    
    handleOverflow: Ext.emptyFn,
    
    clearOverflow: Ext.emptyFn
});


Ext.layout.boxOverflow.none = Ext.layout.boxOverflow.None;
/**
 * @class Ext.layout.boxOverflow.Menu
 * @extends Ext.layout.boxOverflow.None
 * Description
 */
Ext.layout.boxOverflow.Menu = Ext.extend(Ext.layout.boxOverflow.None, {
    /**
     * @cfg afterCls
     * @type String
     * CSS class added to the afterCt element. This is the element that holds any special items such as scrollers,
     * which must always be present at the rightmost edge of the Container
     */
    afterCls: 'x-strip-right',
    
    /**
     * @property noItemsMenuText
     * @type String
     * HTML fragment to render into the toolbar overflow menu if there are no items to display
     */
    noItemsMenuText : '
    (None)
    ',
    
    constructor: function(layout) {
        Ext.layout.boxOverflow.Menu.superclass.constructor.apply(this, arguments);
        
        /**
         * @property menuItems
         * @type Array
         * Array of all items that are currently hidden and should go into the dropdown menu
         */
        this.menuItems = [];
    },
    
    /**
     * @private
     * Creates the beforeCt, innerCt and afterCt elements if they have not already been created
     * @param {Ext.Container} container The Container attached to this Layout instance
     * @param {Ext.Element} target The target Element
     */
    createInnerElements: function() {
        if (!this.afterCt) {
            this.afterCt  = this.layout.innerCt.insertSibling({cls: this.afterCls},  'before');
        }
    },
    
    /**
     * @private
     */
    clearOverflow: function(calculations, targetSize) {
        var newWidth = targetSize.width + (this.afterCt ? this.afterCt.getWidth() : 0),
            items    = this.menuItems;
        
        this.hideTrigger();
        
        for (var index = 0, length = items.length; index < length; index++) {
            items.pop().component.show();
        }
        
        return {
            targetSize: {
                height: targetSize.height,
                width : newWidth
            }
        };
    },
    
    /**
     * @private
     */
    showTrigger: function() {
        this.createMenu();
        this.menuTrigger.show();
    },
    
    /**
     * @private
     */
    hideTrigger: function() {
        if (this.menuTrigger != undefined) {
            this.menuTrigger.hide();
        }
    },
    
    /**
     * @private
     * Called before the overflow menu is shown. This constructs the menu's items, caching them for as long as it can.
     */
    beforeMenuShow: function(menu) {
        var items = this.menuItems,
            len   = items.length,
            item,
            prev;

        var needsSep = function(group, item){
            return group.isXType('buttongroup') && !(item instanceof Ext.Toolbar.Separator);
        };
        
        this.clearMenu();
        menu.removeAll();
        
        for (var i = 0; i < len; i++) {
            item = items[i].component;
            
            if (prev && (needsSep(item, prev) || needsSep(prev, item))) {
                menu.add('-');
            }
            
            this.addComponentToMenu(menu, item);
            prev = item;
        }

        // put something so the menu isn't empty if no compatible items found
        if (menu.items.length < 1) {
            menu.add(this.noItemsMenuText);
        }
    },
    
    /**
     * @private
     * Returns a menu config for a given component. This config is used to create a menu item
     * to be added to the expander menu
     * @param {Ext.Component} component The component to create the config for
     * @param {Boolean} hideOnClick Passed through to the menu item
     */
    createMenuConfig : function(component, hideOnClick){
        var config = Ext.apply({}, component.initialConfig),
            group  = component.toggleGroup;

        Ext.copyTo(config, component, [
            'iconCls', 'icon', 'itemId', 'disabled', 'handler', 'scope', 'menu'
        ]);

        Ext.apply(config, {
            text       : component.overflowText || component.text,
            hideOnClick: hideOnClick
        });

        if (group || component.enableToggle) {
            Ext.apply(config, {
                group  : group,
                checked: component.pressed,
                listeners: {
                    checkchange: function(item, checked){
                        component.toggle(checked);
                    }
                }
            });
        }

        delete config.ownerCt;
        delete config.xtype;
        delete config.id;

        return config;
    },

    /**
     * @private
     * Adds the given Toolbar item to the given menu. Buttons inside a buttongroup are added individually.
     * @param {Ext.menu.Menu} menu The menu to add to
     * @param {Ext.Component} component The component to add
     */
    addComponentToMenu : function(menu, component) {
        if (component instanceof Ext.Toolbar.Separator) {
            menu.add('-');

        } else if (Ext.isFunction(component.isXType)) {
            if (component.isXType('splitbutton')) {
                menu.add(this.createMenuConfig(component, true));

            } else if (component.isXType('button')) {
                menu.add(this.createMenuConfig(component, !component.menu));

            } else if (component.isXType('buttongroup')) {
                component.items.each(function(item){
                     this.addComponentToMenu(menu, item);
                }, this);
            }
        }
    },
    
    /**
     * @private
     * Deletes the sub-menu of each item in the expander menu. Submenus are created for items such as
     * splitbuttons and buttongroups, where the Toolbar item cannot be represented by a single menu item
     */
    clearMenu : function(){
        var menu = this.moreMenu;
        if (menu && menu.items) {
            menu.items.each(function(item){
                delete item.menu;
            });
        }
    },
    
    /**
     * @private
     * Creates the overflow trigger and menu used when enableOverflow is set to true and the items
     * in the layout are too wide to fit in the space available
     */
    createMenu: function() {
        if (!this.menuTrigger) {
            this.createInnerElements();
            
            /**
             * @private
             * @property menu
             * @type Ext.menu.Menu
             * The expand menu - holds items for every item that cannot be shown
             * because the container is currently not large enough.
             */
            this.menu = new Ext.menu.Menu({
                ownerCt : this.layout.container,
                listeners: {
                    scope: this,
                    beforeshow: this.beforeMenuShow
                }
            });

            /**
             * @private
             * @property menuTrigger
             * @type Ext.Button
             * The expand button which triggers the overflow menu to be shown
             */
            this.menuTrigger = new Ext.Button({
                iconCls : 'x-toolbar-more-icon',
                cls     : 'x-toolbar-more',
                menu    : this.menu,
                renderTo: this.afterCt
            });
        }
    },
    
    /**
     * @private
     */
    destroy: function() {
        Ext.destroy(this.menu, this.menuTrigger);
    }
});

Ext.layout.boxOverflow.menu = Ext.layout.boxOverflow.Menu;


/**
 * @class Ext.layout.boxOverflow.HorizontalMenu
 * @extends Ext.layout.boxOverflow.Menu
 * Description
 */
Ext.layout.boxOverflow.HorizontalMenu = Ext.extend(Ext.layout.boxOverflow.Menu, {
    
    constructor: function() {
        Ext.layout.boxOverflow.HorizontalMenu.superclass.constructor.apply(this, arguments);
        
        var me = this,
            layout = me.layout,
            origFunction = layout.calculateChildBoxes;
        
        layout.calculateChildBoxes = function(visibleItems, targetSize) {
            var calcs = origFunction.apply(layout, arguments),
                meta  = calcs.meta,
                items = me.menuItems;
            
            //calculate the width of the items currently hidden solely because there is not enough space
            //to display them
            var hiddenWidth = 0;
            for (var index = 0, length = items.length; index < length; index++) {
                hiddenWidth += items[index].width;
            }
            
            meta.minimumWidth += hiddenWidth;
            meta.tooNarrow = meta.minimumWidth > targetSize.width;
            
            return calcs;
        };        
    },
    
    handleOverflow: function(calculations, targetSize) {
        this.showTrigger();
        
        var newWidth    = targetSize.width - this.afterCt.getWidth(),
            boxes       = calculations.boxes,
            usedWidth   = 0,
            recalculate = false;
        
        //calculate the width of all visible items and any spare width
        for (var index = 0, length = boxes.length; index < length; index++) {
            usedWidth += boxes[index].width;
        }
        
        var spareWidth = newWidth - usedWidth,
            showCount  = 0;
        
        //see if we can re-show any of the hidden components
        for (var index = 0, length = this.menuItems.length; index < length; index++) {
            var hidden = this.menuItems[index],
                comp   = hidden.component,
                width  = hidden.width;
            
            if (width < spareWidth) {
                comp.show();
                
                spareWidth -= width;
                showCount ++;
                recalculate = true;
            } else {
                break;
            }
        }
                
        if (recalculate) {
            this.menuItems = this.menuItems.slice(showCount);
        } else {
            for (var i = boxes.length - 1; i >= 0; i--) {
                var item  = boxes[i].component,
                    right = boxes[i].left + boxes[i].width;

                if (right >= newWidth) {
                    this.menuItems.unshift({
                        component: item,
                        width    : boxes[i].width
                    });

                    item.hide();
                } else {
                    break;
                }
            }
        }
        
        if (this.menuItems.length == 0) {
            this.hideTrigger();
        }
        
        return {
            targetSize: {
                height: targetSize.height,
                width : newWidth
            },
            recalculate: recalculate
        };
    }
});

Ext.layout.boxOverflow.menu.hbox = Ext.layout.boxOverflow.HorizontalMenu;/**
 * @class Ext.layout.boxOverflow.Scroller
 * @extends Ext.layout.boxOverflow.None
 * Description
 */
Ext.layout.boxOverflow.Scroller = Ext.extend(Ext.layout.boxOverflow.None, {
    /**
     * @cfg animateScroll
     * @type Boolean
     * True to animate the scrolling of items within the layout (defaults to true, ignored if enableScroll is false)
     */
    animateScroll: true,
    
    /**
     * @cfg scrollIncrement
     * @type Number
     * The number of pixels to scroll by on scroller click (defaults to 100)
     */
    scrollIncrement: 100,
    
    /**
     * @cfg wheelIncrement
     * @type Number
     * The number of pixels to increment on mouse wheel scrolling (defaults to 3).
     */
    wheelIncrement: 3,
    
    /**
     * @cfg scrollRepeatInterval
     * @type Number
     * Number of milliseconds between each scroll while a scroller button is held down (defaults to 400)
     */
    scrollRepeatInterval: 400,
    
    /**
     * @cfg scrollDuration
     * @type Number
     * Number of seconds that each scroll animation lasts (defaults to 0.4)
     */
    scrollDuration: 0.4,
    
    /**
     * @cfg beforeCls
     * @type String
     * CSS class added to the beforeCt element. This is the element that holds any special items such as scrollers,
     * which must always be present at the leftmost edge of the Container
     */
    beforeCls: 'x-strip-left',
    
    /**
     * @cfg afterCls
     * @type String
     * CSS class added to the afterCt element. This is the element that holds any special items such as scrollers,
     * which must always be present at the rightmost edge of the Container
     */
    afterCls: 'x-strip-right',
    
    /**
     * @cfg scrollerCls
     * @type String
     * CSS class added to both scroller elements if enableScroll is used
     */
    scrollerCls: 'x-strip-scroller',
    
    /**
     * @cfg beforeScrollerCls
     * @type String
     * CSS class added to the left scroller element if enableScroll is used
     */
    beforeScrollerCls: 'x-strip-scroller-left',
    
    /**
     * @cfg afterScrollerCls
     * @type String
     * CSS class added to the right scroller element if enableScroll is used
     */
    afterScrollerCls: 'x-strip-scroller-right',
    
    /**
     * @private
     * Sets up an listener to scroll on the layout's innerCt mousewheel event
     */
    createWheelListener: function() {
        this.layout.innerCt.on({
            scope     : this,
            mousewheel: function(e) {
                e.stopEvent();

                this.scrollBy(e.getWheelDelta() * this.wheelIncrement * -1, false);
            }
        });
    },
    
    /**
     * @private
     * Most of the heavy lifting is done in the subclasses
     */
    handleOverflow: function(calculations, targetSize) {
        this.createInnerElements();
        this.showScrollers();
    },
    
    /**
     * @private
     */
    clearOverflow: function() {
        this.hideScrollers();
    },
    
    /**
     * @private
     * Shows the scroller elements in the beforeCt and afterCt. Creates the scrollers first if they are not already
     * present. 
     */
    showScrollers: function() {
        this.createScrollers();
        
        this.beforeScroller.show();
        this.afterScroller.show();
        
        this.updateScrollButtons();
    },
    
    /**
     * @private
     * Hides the scroller elements in the beforeCt and afterCt
     */
    hideScrollers: function() {
        if (this.beforeScroller != undefined) {
            this.beforeScroller.hide();
            this.afterScroller.hide();          
        }
    },
    
    /**
     * @private
     * Creates the clickable scroller elements and places them into the beforeCt and afterCt
     */
    createScrollers: function() {
        if (!this.beforeScroller && !this.afterScroller) {
            var before = this.beforeCt.createChild({
                cls: String.format("{0} {1} ", this.scrollerCls, this.beforeScrollerCls)
            });
            
            var after = this.afterCt.createChild({
                cls: String.format("{0} {1}", this.scrollerCls, this.afterScrollerCls)
            });
            
            before.addClassOnOver(this.beforeScrollerCls + '-hover');
            after.addClassOnOver(this.afterScrollerCls + '-hover');
            
            before.setVisibilityMode(Ext.Element.DISPLAY);
            after.setVisibilityMode(Ext.Element.DISPLAY);
            
            this.beforeRepeater = new Ext.util.ClickRepeater(before, {
                interval: this.scrollRepeatInterval,
                handler : this.scrollLeft,
                scope   : this
            });
            
            this.afterRepeater = new Ext.util.ClickRepeater(after, {
                interval: this.scrollRepeatInterval,
                handler : this.scrollRight,
                scope   : this
            });
            
            /**
             * @property beforeScroller
             * @type Ext.Element
             * The left scroller element. Only created when needed.
             */
            this.beforeScroller = before;
            
            /**
             * @property afterScroller
             * @type Ext.Element
             * The left scroller element. Only created when needed.
             */
            this.afterScroller = after;
        }
    },
    
    /**
     * @private
     */
    destroy: function() {
        Ext.destroy(this.beforeScroller, this.afterScroller, this.beforeRepeater, this.afterRepeater, this.beforeCt, this.afterCt);
    },
    
    /**
     * @private
     * Scrolls left or right by the number of pixels specified
     * @param {Number} delta Number of pixels to scroll to the right by. Use a negative number to scroll left
     */
    scrollBy: function(delta, animate) {
        this.scrollTo(this.getScrollPosition() + delta, animate);
    },
    
    /**
     * @private
     * Normalizes an item reference, string id or numerical index into a reference to the item
     * @param {Ext.Component|String|Number} item The item reference, id or index
     * @return {Ext.Component} The item
     */
    getItem: function(item) {
        if (Ext.isString(item)) {
            item = Ext.getCmp(item);
        } else if (Ext.isNumber(item)) {
            item = this.items[item];
        }
        
        return item;
    },
    
    /**
     * @private
     * @return {Object} Object passed to scrollTo when scrolling
     */
    getScrollAnim: function() {
        return {
            duration: this.scrollDuration, 
            callback: this.updateScrollButtons, 
            scope   : this
        };
    },
    
    /**
     * @private
     * Enables or disables each scroller button based on the current scroll position
     */
    updateScrollButtons: function() {
        if (this.beforeScroller == undefined || this.afterScroller == undefined) {
            return;
        }
        
        var beforeMeth = this.atExtremeBefore()  ? 'addClass' : 'removeClass',
            afterMeth  = this.atExtremeAfter() ? 'addClass' : 'removeClass',
            beforeCls  = this.beforeScrollerCls + '-disabled',
            afterCls   = this.afterScrollerCls  + '-disabled';
        
        this.beforeScroller[beforeMeth](beforeCls);
        this.afterScroller[afterMeth](afterCls);
        this.scrolling = false;
    },
    
    /**
     * @private
     * Returns true if the innerCt scroll is already at its left-most point
     * @return {Boolean} True if already at furthest left point
     */
    atExtremeBefore: function() {
        return this.getScrollPosition() === 0;
    },
    
    /**
     * @private
     * Scrolls to the left by the configured amount
     */
    scrollLeft: function(animate) {
        this.scrollBy(-this.scrollIncrement, animate);
    },
    
    /**
     * @private
     * Scrolls to the right by the configured amount
     */
    scrollRight: function(animate) {
        this.scrollBy(this.scrollIncrement, animate);
    },
    
    /**
     * Scrolls to the given component.
     * @param {String|Number|Ext.Component} item The item to scroll to. Can be a numerical index, component id 
     * or a reference to the component itself.
     * @param {Boolean} animate True to animate the scrolling
     */
    scrollToItem: function(item, animate) {
        item = this.getItem(item);
        
        if (item != undefined) {
            var visibility = this.getItemVisibility(item);
            
            if (!visibility.fullyVisible) {
                var box  = item.getBox(true, true),
                    newX = box.x;
                    
                if (visibility.hiddenRight) {
                    newX -= (this.layout.innerCt.getWidth() - box.width);
                }
                
                this.scrollTo(newX, animate);
            }
        }
    },
    
    /**
     * @private
     * For a given item in the container, return an object with information on whether the item is visible
     * with the current innerCt scroll value.
     * @param {Ext.Component} item The item
     * @return {Object} Values for fullyVisible, hiddenLeft and hiddenRight
     */
    getItemVisibility: function(item) {
        var box         = this.getItem(item).getBox(true, true),
            itemLeft    = box.x,
            itemRight   = box.x + box.width,
            scrollLeft  = this.getScrollPosition(),
            scrollRight = this.layout.innerCt.getWidth() + scrollLeft;
        
        return {
            hiddenLeft  : itemLeft < scrollLeft,
            hiddenRight : itemRight > scrollRight,
            fullyVisible: itemLeft > scrollLeft && itemRight < scrollRight
        };
    }
});

Ext.layout.boxOverflow.scroller = Ext.layout.boxOverflow.Scroller;


/**
 * @class Ext.layout.boxOverflow.VerticalScroller
 * @extends Ext.layout.boxOverflow.Scroller
 * Description
 */
Ext.layout.boxOverflow.VerticalScroller = Ext.extend(Ext.layout.boxOverflow.Scroller, {
    scrollIncrement: 75,
    wheelIncrement : 2,
    
    handleOverflow: function(calculations, targetSize) {
        Ext.layout.boxOverflow.VerticalScroller.superclass.handleOverflow.apply(this, arguments);
        
        return {
            targetSize: {
                height: targetSize.height - (this.beforeCt.getHeight() + this.afterCt.getHeight()),
                width : targetSize.width
            }
        };
    },
    
    /**
     * @private
     * Creates the beforeCt and afterCt elements if they have not already been created
     */
    createInnerElements: function() {
        var target = this.layout.innerCt;
        
        //normal items will be rendered to the innerCt. beforeCt and afterCt allow for fixed positioning of
        //special items such as scrollers or dropdown menu triggers
        if (!this.beforeCt) {
            this.beforeCt = target.insertSibling({cls: this.beforeCls}, 'before');
            this.afterCt  = target.insertSibling({cls: this.afterCls},  'after');

            this.createWheelListener();
        }
    },
    
    /**
     * @private
     * Scrolls to the given position. Performs bounds checking.
     * @param {Number} position The position to scroll to. This is constrained.
     * @param {Boolean} animate True to animate. If undefined, falls back to value of this.animateScroll
     */
    scrollTo: function(position, animate) {
        var oldPosition = this.getScrollPosition(),
            newPosition = position.constrain(0, this.getMaxScrollBottom());
        
        if (newPosition != oldPosition && !this.scrolling) {
            if (animate == undefined) {
                animate = this.animateScroll;
            }
            
            this.layout.innerCt.scrollTo('top', newPosition, animate ? this.getScrollAnim() : false);
            
            if (animate) {
                this.scrolling = true;
            } else {
                this.scrolling = false;
                this.updateScrollButtons();
            }
        }
    },
    
    /**
     * Returns the current scroll position of the innerCt element
     * @return {Number} The current scroll position
     */
    getScrollPosition: function(){
        return parseInt(this.layout.innerCt.dom.scrollTop, 10) || 0;
    },
    
    /**
     * @private
     * Returns the maximum value we can scrollTo
     * @return {Number} The max scroll value
     */
    getMaxScrollBottom: function() {
        return this.layout.innerCt.dom.scrollHeight - this.layout.innerCt.getHeight();
    },
    
    /**
     * @private
     * Returns true if the innerCt scroll is already at its right-most point
     * @return {Boolean} True if already at furthest right point
     */
    atExtremeAfter: function() {
        return this.getScrollPosition() >= this.getMaxScrollBottom();
    }
});

Ext.layout.boxOverflow.scroller.vbox = Ext.layout.boxOverflow.VerticalScroller;


/**
 * @class Ext.layout.boxOverflow.HorizontalScroller
 * @extends Ext.layout.boxOverflow.Scroller
 * Description
 */
Ext.layout.boxOverflow.HorizontalScroller = Ext.extend(Ext.layout.boxOverflow.Scroller, {
    handleOverflow: function(calculations, targetSize) {
        Ext.layout.boxOverflow.HorizontalScroller.superclass.handleOverflow.apply(this, arguments);
        
        return {
            targetSize: {
                height: targetSize.height,
                width : targetSize.width - (this.beforeCt.getWidth() + this.afterCt.getWidth())
            }
        };
    },
    
    /**
     * @private
     * Creates the beforeCt and afterCt elements if they have not already been created
     */
    createInnerElements: function() {
        var target = this.layout.innerCt;
        
        //normal items will be rendered to the innerCt. beforeCt and afterCt allow for fixed positioning of
        //special items such as scrollers or dropdown menu triggers
        if (!this.beforeCt) {
            this.afterCt  = target.insertSibling({cls: this.afterCls},  'before');
            this.beforeCt = target.insertSibling({cls: this.beforeCls}, 'before');
            
            this.createWheelListener();
        }
    },
    
    /**
     * @private
     * Scrolls to the given position. Performs bounds checking.
     * @param {Number} position The position to scroll to. This is constrained.
     * @param {Boolean} animate True to animate. If undefined, falls back to value of this.animateScroll
     */
    scrollTo: function(position, animate) {
        var oldPosition = this.getScrollPosition(),
            newPosition = position.constrain(0, this.getMaxScrollRight());
        
        if (newPosition != oldPosition && !this.scrolling) {
            if (animate == undefined) {
                animate = this.animateScroll;
            }
            
            this.layout.innerCt.scrollTo('left', newPosition, animate ? this.getScrollAnim() : false);
            
            if (animate) {
                this.scrolling = true;
            } else {
                this.scrolling = false;
                this.updateScrollButtons();
            }
        }
    },
    
    /**
     * Returns the current scroll position of the innerCt element
     * @return {Number} The current scroll position
     */
    getScrollPosition: function(){
        return parseInt(this.layout.innerCt.dom.scrollLeft, 10) || 0;
    },
    
    /**
     * @private
     * Returns the maximum value we can scrollTo
     * @return {Number} The max scroll value
     */
    getMaxScrollRight: function() {
        return this.layout.innerCt.dom.scrollWidth - this.layout.innerCt.getWidth();
    },
    
    /**
     * @private
     * Returns true if the innerCt scroll is already at its right-most point
     * @return {Boolean} True if already at furthest right point
     */
    atExtremeAfter: function() {
        return this.getScrollPosition() >= this.getMaxScrollRight();
    }
});

Ext.layout.boxOverflow.scroller.hbox = Ext.layout.boxOverflow.HorizontalScroller;/**
 * @class Ext.layout.HBoxLayout
 * @extends Ext.layout.BoxLayout
 * 
    A layout that arranges items horizontally across a Container. This layout optionally divides available horizontal
 * space between child items containing a numeric flex configuration.
    
 * This layout may also be used to set the heights of child items by configuring it with the {@link #align} option.
 */
Ext.layout.HBoxLayout = Ext.extend(Ext.layout.BoxLayout, {
    /**
     * @cfg {String} align
     * Controls how the child items of the container are aligned. Acceptable configuration values for this
     * property are:
     * 
      
     * 
    • top : Default
      child items are aligned vertically
     * at the top of the container
      • 
     * 
    • middle : 
      child items are aligned vertically in the
     * middle of the container
      • 
     * 
    • stretch : 
      child items are stretched vertically to fill
     * the height of the container
      • 
     * 
    • stretchmax : 
      child items are stretched vertically to
     * the height of the largest item.
      • 
     * 
    
     */
    align: 'top', // top, middle, stretch, strechmax

    type : 'hbox',

    /**
     * @cfg {String} pack
     * Controls how the child items of the container are packed together. Acceptable configuration values
     * for this property are:
     * 
      
     * 
    • start : Default
      child items are packed together at
     * left side of container
      • 
     * 
    • center : 
      child items are packed together at
     * mid-width of container
      • 
     * 
    • end : 
      child items are packed together at right
     * side of container
      • 
     * 
    
     */
    /**
     * @cfg {Number} flex
     * This configuation option is to be applied to child items of the container managed
     * by this layout. Each child item with a flex property will be flexed horizontally
     * according to each item's relative flex value compared to the sum of all items with
     * a flex value specified.  Any child items that have either a flex = 0 or
     * flex = undefined will not be 'flexed' (the initial size will not be changed).
     */

    /**
     * @private
     * Calculates the size and positioning of each item in the HBox. This iterates over all of the rendered,
     * visible items and returns a height, width, top and left for each, as well as a reference to each. Also
     * returns meta data such as maxHeight which are useful when resizing layout wrappers such as this.innerCt.
     * @param {Array} visibleItems The array of all rendered, visible items to be calculated for
     * @param {Object} targetSize Object containing target size and height
     * @return {Object} Object containing box measurements for each child, plus meta data
     */
    calculateChildBoxes: function(visibleItems, targetSize) {
        var visibleCount = visibleItems.length,

            padding      = this.padding,
            topOffset    = padding.top,
            leftOffset   = padding.left,
            paddingVert  = topOffset  + padding.bottom,
            paddingHoriz = leftOffset + padding.right,

            width        = targetSize.width - this.scrollOffset,
            height       = targetSize.height,
            availHeight  = Math.max(0, height - paddingVert),

            isStart      = this.pack == 'start',
            isCenter     = this.pack == 'center',
            isEnd        = this.pack == 'end',

            nonFlexWidth = 0,
            maxHeight    = 0,
            totalFlex    = 0,
            desiredWidth = 0,
            minimumWidth = 0,

            //used to cache the calculated size and position values for each child item
            boxes        = [],

            //used in the for loops below, just declared here for brevity
            child, childWidth, childHeight, childSize, childMargins, canLayout, i, calcs, flexedWidth,
            horizMargins, vertMargins, stretchHeight;

        //gather the total flex of all flexed items and the width taken up by fixed width items
        for (i = 0; i < visibleCount; i++) {
            child       = visibleItems[i];
            childHeight = child.height;
            childWidth  = child.width;
            canLayout   = !child.hasLayout && typeof child.doLayout == 'function';

            // Static width (numeric) requires no calcs
            if (typeof childWidth != 'number') {

                // flex and not 'auto' width
                if (child.flex && !childWidth) {
                    totalFlex += child.flex;

                // Not flexed or 'auto' width or undefined width
                } else {
                    //Render and layout sub-containers without a flex or width defined, as otherwise we
                    //don't know how wide the sub-container should be and cannot calculate flexed widths
                    if (!childWidth && canLayout) {
                        child.doLayout();
                    }

                    childSize   = child.getSize();
                    childWidth  = childSize.width;
                    childHeight = childSize.height;
                }
            }

            childMargins = child.margins;
            horizMargins = childMargins.left + childMargins.right;

            nonFlexWidth += horizMargins + (childWidth || 0);
            desiredWidth += horizMargins + (child.flex ? child.minWidth || 0 : childWidth);
            minimumWidth += horizMargins + (child.minWidth || childWidth || 0);

            // Max height for align - force layout of non-laid out subcontainers without a numeric height
            if (typeof childHeight != 'number') {
                if (canLayout) {
                    child.doLayout();
                }
                childHeight = child.getHeight();
            }

            maxHeight = Math.max(maxHeight, childHeight + childMargins.top + childMargins.bottom);

            //cache the size of each child component. Don't set height or width to 0, keep undefined instead
            boxes.push({
                component: child,
                height   : childHeight || undefined,
                width    : childWidth  || undefined
            });
        }

        var shortfall = desiredWidth - width,
            tooNarrow = minimumWidth > width;

        //the width available to the flexed items
        var availableWidth = Math.max(0, width - nonFlexWidth - paddingHoriz);

        if (tooNarrow) {
            for (i = 0; i < visibleCount; i++) {
                boxes[i].width = visibleItems[i].minWidth || visibleItems[i].width || boxes[i].width;
            }
        } else {
            //all flexed items should be sized to their minimum width, other items should be shrunk down until
            //the shortfall has been accounted for
            if (shortfall > 0) {
                var minWidths = [];

                // When we have a shortfall but are not tooNarrow, we need to shrink the width of each non-flexed item.
                // Flexed items are immediately reduced to their minWidth and anything already at minWidth is ignored.
                // The remaining items are collected into the minWidths array, which is later used to distribute the shortfall.
                for (var index = 0, length = visibleCount; index < length; index++) {
                    var item     = visibleItems[index],
                        minWidth = item.minWidth || 0;

                    //shrink each non-flex tab by an equal amount to make them all fit. Flexed items are all
                    //shrunk to their minWidth because they're flexible and should be the first to lose width
                    if (item.flex) {
                        boxes[index].width = minWidth;
                    } else {
                        minWidths.push({
                            minWidth : minWidth,
                            available: boxes[index].width - minWidth,
                            index    : index
                        });
                    }
                }

                //sort by descending amount of width remaining before minWidth is reached
                minWidths.sort(function(a, b) {
                    return a.available > b.available ? 1 : -1;
                });

                /*
                 * Distribute the shortfall (difference between total desired with of all items and actual width available)
                 * between the non-flexed items. We try to distribute the shortfall evenly, but apply it to items with the
                 * smallest difference between their width and minWidth first, so that if reducing the width by the average
                 * amount would make that item less than its minWidth, we carry the remainder over to the next item.
                 */
                for (var i = 0, length = minWidths.length; i < length; i++) {
                    var itemIndex = minWidths[i].index;

                    if (itemIndex == undefined) {
                        continue;
                    }

                    var item      = visibleItems[itemIndex],
                        box       = boxes[itemIndex],
                        oldWidth  = box.width,
                        minWidth  = item.minWidth,
                        newWidth  = Math.max(minWidth, oldWidth - Math.ceil(shortfall / (length - i))),
                        reduction = oldWidth - newWidth;

                    boxes[itemIndex].width = newWidth;
                    shortfall -= reduction;
                }
            } else {
                //temporary variables used in the flex width calculations below
                var remainingWidth = availableWidth,
                    remainingFlex  = totalFlex;

                //calculate the widths of each flexed item
                for (i = 0; i < visibleCount; i++) {
                    child = visibleItems[i];
                    calcs = boxes[i];

                    childMargins = child.margins;
                    vertMargins  = childMargins.top + childMargins.bottom;

                    if (isStart && child.flex && !child.width) {
                        flexedWidth     = Math.ceil((child.flex / remainingFlex) * remainingWidth);
                        remainingWidth -= flexedWidth;
                        remainingFlex  -= child.flex;

                        calcs.width = flexedWidth;
                        calcs.dirtySize = true;
                    }
                }
            }
        }

        if (isCenter) {
            leftOffset += availableWidth / 2;
        } else if (isEnd) {
            leftOffset += availableWidth;
        }

        //finally, calculate the left and top position of each item
        for (i = 0; i < visibleCount; i++) {
            child = visibleItems[i];
            calcs = boxes[i];

            childMargins = child.margins;
            leftOffset  += childMargins.left;
            vertMargins  = childMargins.top + childMargins.bottom;

            calcs.left = leftOffset;
            calcs.top  = topOffset + childMargins.top;

            switch (this.align) {
                case 'stretch':
                    stretchHeight = availHeight - vertMargins;
                    calcs.height  = stretchHeight.constrain(child.minHeight || 0, child.maxHeight || 1000000);
                    calcs.dirtySize = true;
                    break;
                case 'stretchmax':
                    stretchHeight = maxHeight - vertMargins;
                    calcs.height  = stretchHeight.constrain(child.minHeight || 0, child.maxHeight || 1000000);
                    calcs.dirtySize = true;
                    break;
                case 'middle':
                    var diff = availHeight - calcs.height - vertMargins;
                    if (diff > 0) {
                        calcs.top = topOffset + vertMargins + (diff / 2);
                    }
            }

            leftOffset += calcs.width + childMargins.right;
        }

        return {
            boxes: boxes,
            meta : {
                maxHeight   : maxHeight,
                nonFlexWidth: nonFlexWidth,
                desiredWidth: desiredWidth,
                minimumWidth: minimumWidth,
                shortfall   : desiredWidth - width,
                tooNarrow   : tooNarrow
            }
        };
    }
});

Ext.Container.LAYOUTS.hbox = Ext.layout.HBoxLayout;/**
 * @class Ext.layout.VBoxLayout
 * @extends Ext.layout.BoxLayout
 * 
    A layout that arranges items vertically down a Container. This layout optionally divides available vertical
 * space between child items containing a numeric flex configuration.
    
 * This layout may also be used to set the widths of child items by configuring it with the {@link #align} option.
 */
Ext.layout.VBoxLayout = Ext.extend(Ext.layout.BoxLayout, {
    /**
     * @cfg {String} align
     * Controls how the child items of the container are aligned. Acceptable configuration values for this
     * property are:
     * 
      
     * 
    • left : Default
      child items are aligned horizontally
     * at the left side of the container
      • 
     * 
    • center : 
      child items are aligned horizontally at the
     * mid-width of the container
      • 
     * 
    • stretch : 
      child items are stretched horizontally to fill
     * the width of the container
      • 
     * 
    • stretchmax : 
      child items are stretched horizontally to
     * the size of the largest item.
      • 
     * 
    
     */
    align : 'left', // left, center, stretch, strechmax
    type: 'vbox',

    /**
     * @cfg {String} pack
     * Controls how the child items of the container are packed together. Acceptable configuration values
     * for this property are:
     * 
      
     * 
    • start : Default
      child items are packed together at
     * top side of container
      • 
     * 
    • center : 
      child items are packed together at
     * mid-height of container
      • 
     * 
    • end : 
      child items are packed together at bottom
     * side of container
      • 
     * 
    
     */

    /**
     * @cfg {Number} flex
     * This configuation option is to be applied to child items of the container managed
     * by this layout. Each child item with a flex property will be flexed vertically
     * according to each item's relative flex value compared to the sum of all items with
     * a flex value specified.  Any child items that have either a flex = 0 or
     * flex = undefined will not be 'flexed' (the initial size will not be changed).
     */

    /**
     * @private
     * Calculates the size and positioning of each item in the VBox. This iterates over all of the rendered,
     * visible items and returns a height, width, top and left for each, as well as a reference to each. Also
     * returns meta data such as maxHeight which are useful when resizing layout wrappers such as this.innerCt.
     * @param {Array} visibleItems The array of all rendered, visible items to be calculated for
     * @param {Object} targetSize Object containing target size and height
     * @return {Object} Object containing box measurements for each child, plus meta data
     */
    calculateChildBoxes: function(visibleItems, targetSize) {
        var visibleCount = visibleItems.length,

            padding      = this.padding,
            topOffset    = padding.top,
            leftOffset   = padding.left,
            paddingVert  = topOffset  + padding.bottom,
            paddingHoriz = leftOffset + padding.right,

            width        = targetSize.width - this.scrollOffset,
            height       = targetSize.height,
            availWidth   = Math.max(0, width - paddingHoriz),

            isStart      = this.pack == 'start',
            isCenter     = this.pack == 'center',
            isEnd        = this.pack == 'end',

            nonFlexHeight= 0,
            maxWidth     = 0,
            totalFlex    = 0,
            desiredHeight= 0,
            minimumHeight= 0,

            //used to cache the calculated size and position values for each child item
            boxes        = [],

            //used in the for loops below, just declared here for brevity
            child, childWidth, childHeight, childSize, childMargins, canLayout, i, calcs, flexedHeight,
            horizMargins, vertMargins, stretchWidth, length;

        //gather the total flex of all flexed items and the width taken up by fixed width items
        for (i = 0; i < visibleCount; i++) {
            child = visibleItems[i];
            childHeight = child.height;
            childWidth  = child.width;
            canLayout   = !child.hasLayout && typeof child.doLayout == 'function';

            // Static height (numeric) requires no calcs
            if (typeof childHeight != 'number') {

                // flex and not 'auto' height
                if (child.flex && !childHeight) {
                    totalFlex += child.flex;

                // Not flexed or 'auto' height or undefined height
                } else {
                    //Render and layout sub-containers without a flex or width defined, as otherwise we
                    //don't know how wide the sub-container should be and cannot calculate flexed widths
                    if (!childHeight && canLayout) {
                        child.doLayout();
                    }

                    childSize = child.getSize();
                    childWidth = childSize.width;
                    childHeight = childSize.height;
                }
            }

            childMargins = child.margins;
            vertMargins  = childMargins.top + childMargins.bottom;

            nonFlexHeight += vertMargins + (childHeight || 0);
            desiredHeight += vertMargins + (child.flex ? child.minHeight || 0 : childHeight);
            minimumHeight += vertMargins + (child.minHeight || childHeight || 0);

            // Max width for align - force layout of non-layed out subcontainers without a numeric width
            if (typeof childWidth != 'number') {
                if (canLayout) {
                    child.doLayout();
                }
                childWidth = child.getWidth();
            }

            maxWidth = Math.max(maxWidth, childWidth + childMargins.left + childMargins.right);

            //cache the size of each child component
            boxes.push({
                component: child,
                height   : childHeight || undefined,
                width    : childWidth || undefined
            });
        }

        var shortfall = desiredHeight - height,
            tooNarrow = minimumHeight > height;

        //the height available to the flexed items
        var availableHeight = Math.max(0, (height - nonFlexHeight - paddingVert));

        if (tooNarrow) {
            for (i = 0, length = visibleCount; i < length; i++) {
                boxes[i].height = visibleItems[i].minHeight || visibleItems[i].height || boxes[i].height;
            }
        } else {
            //all flexed items should be sized to their minimum width, other items should be shrunk down until
            //the shortfall has been accounted for
            if (shortfall > 0) {
                var minHeights = [];

                // When we have a shortfall but are not tooNarrow, we need to shrink the height of each non-flexed item.
                // Flexed items are immediately reduced to their minHeight and anything already at minHeight is ignored.
                // The remaining items are collected into the minHeights array, which is later used to distribute the shortfall.
                for (var index = 0, length = visibleCount; index < length; index++) {
                    var item      = visibleItems[index],
                        minHeight = item.minHeight || 0;

                    //shrink each non-flex tab by an equal amount to make them all fit. Flexed items are all
                    //shrunk to their minHeight because they're flexible and should be the first to lose height
                    if (item.flex) {
                        boxes[index].height = minHeight;
                    } else {
                        minHeights.push({
                            minHeight: minHeight,
                            available: boxes[index].height - minHeight,
                            index    : index
                        });
                    }
                }

                //sort by descending minHeight value
                minHeights.sort(function(a, b) {
                    return a.available > b.available ? 1 : -1;
                });

                /*
                 * Distribute the shortfall (difference between total desired with of all items and actual height available)
                 * between the non-flexed items. We try to distribute the shortfall evenly, but apply it to items with the
                 * smallest difference between their height and minHeight first, so that if reducing the height by the average
                 * amount would make that item less than its minHeight, we carry the remainder over to the next item.
                 */
                for (var i = 0, length = minHeights.length; i < length; i++) {
                    var itemIndex = minHeights[i].index;

                    if (itemIndex == undefined) {
                        continue;
                    }

                    var item      = visibleItems[itemIndex],
                        box       = boxes[itemIndex],
                        oldHeight  = box.height,
                        minHeight  = item.minHeight,
                        newHeight  = Math.max(minHeight, oldHeight - Math.ceil(shortfall / (length - i))),
                        reduction = oldHeight - newHeight;

                    boxes[itemIndex].height = newHeight;
                    shortfall -= reduction;
                }
            } else {
                //temporary variables used in the flex height calculations below
                var remainingHeight = availableHeight,
                    remainingFlex   = totalFlex;

                //calculate the height of each flexed item
                for (i = 0; i < visibleCount; i++) {
                    child = visibleItems[i];
                    calcs = boxes[i];

                    childMargins = child.margins;
                    horizMargins = childMargins.left + childMargins.right;

                    if (isStart && child.flex && !child.height) {
                        flexedHeight     = Math.ceil((child.flex / remainingFlex) * remainingHeight);
                        remainingHeight -= flexedHeight;
                        remainingFlex   -= child.flex;

                        calcs.height = flexedHeight;
                        calcs.dirtySize = true;
                    }
                }
            }
        }

        if (isCenter) {
            topOffset += availableHeight / 2;
        } else if (isEnd) {
            topOffset += availableHeight;
        }

        //finally, calculate the left and top position of each item
        for (i = 0; i < visibleCount; i++) {
            child = visibleItems[i];
            calcs = boxes[i];

            childMargins = child.margins;
            topOffset   += childMargins.top;
            horizMargins = childMargins.left + childMargins.right;


            calcs.left = leftOffset + childMargins.left;
            calcs.top  = topOffset;

            switch (this.align) {
                case 'stretch':
                    stretchWidth = availWidth - horizMargins;
                    calcs.width  = stretchWidth.constrain(child.minWidth || 0, child.maxWidth || 1000000);
                    calcs.dirtySize = true;
                    break;
                case 'stretchmax':
                    stretchWidth = maxWidth - horizMargins;
                    calcs.width  = stretchWidth.constrain(child.minWidth || 0, child.maxWidth || 1000000);
                    calcs.dirtySize = true;
                    break;
                case 'center':
                    var diff = availWidth - calcs.width - horizMargins;
                    if (diff > 0) {
                        calcs.left = leftOffset + horizMargins + (diff / 2);
                    }
            }

            topOffset += calcs.height + childMargins.bottom;
        }

        return {
            boxes: boxes,
            meta : {
                maxWidth     : maxWidth,
                nonFlexHeight: nonFlexHeight,
                desiredHeight: desiredHeight,
                minimumHeight: minimumHeight,
                shortfall    : desiredHeight - height,
                tooNarrow    : tooNarrow
            }
        };
    }
});

Ext.Container.LAYOUTS.vbox = Ext.layout.VBoxLayout;
/**
 * @class Ext.layout.ToolbarLayout
 * @extends Ext.layout.ContainerLayout
 * Layout manager used by Ext.Toolbar. This is highly specialised for use by Toolbars and would not
 * usually be used by any other class.
 */
Ext.layout.ToolbarLayout = Ext.extend(Ext.layout.ContainerLayout, {
    monitorResize : true,

    type: 'toolbar',

    /**
     * @property triggerWidth
     * @type Number
     * The width allocated for the menu trigger at the extreme right end of the Toolbar
     */
    triggerWidth: 18,

    /**
     * @property noItemsMenuText
     * @type String
     * HTML fragment to render into the toolbar overflow menu if there are no items to display
     */
    noItemsMenuText : '
    (None)
    ',

    /**
     * @private
     * @property lastOverflow
     * @type Boolean
     * Used internally to record whether the last layout caused an overflow or not
     */
    lastOverflow: false,

    /**
     * @private
     * @property tableHTML
     * @type String
     * String used to build the HTML injected to support the Toolbar's layout. The align property is
     * injected into this string inside the td.x-toolbar-left element during onLayout.
     */
    tableHTML: [
        '',
            '',
                '',
                    '',
                    '',
                '',
            '',
        '
    ',
                        '',
                            '',
                                '',
                            '',
                        '
    ',
                    '    		',
                        '',
                            '',
                                '',
                                    '',
                                    '',
                                '',
                            '',
                        '
    ',
                                        '',
                                            '',
                                                '',
                                            '',
                                        '
    ',
                                    '    		',
                                        '',
                                            '',
                                                '',
                                            '',
                                        '
    ',
                                    '
    ',
                    '
    '
    ].join(""),

    /**
     * @private
     * Create the wrapping Toolbar HTML and render/move all the items into the correct places
     */
    onLayout : function(ct, target) {
        //render the Toolbar  HTML if it's not already present
        if (!this.leftTr) {
            var align = ct.buttonAlign == 'center' ? 'center' : 'left';

            target.addClass('x-toolbar-layout-ct');
            target.insertHtml('beforeEnd', String.format(this.tableHTML, align));

            this.leftTr   = target.child('tr.x-toolbar-left-row', true);
            this.rightTr  = target.child('tr.x-toolbar-right-row', true);
            this.extrasTr = target.child('tr.x-toolbar-extras-row', true);

            if (this.hiddenItem == undefined) {
                /**
                 * @property hiddenItems
                 * @type Array
                 * Holds all items that are currently hidden due to there not being enough space to render them
                 * These items will appear on the expand menu.
                 */
                this.hiddenItems = [];
            }
        }

        var side     = ct.buttonAlign == 'right' ? this.rightTr : this.leftTr,
            items    = ct.items.items,
            position = 0;

        //render each item if not already rendered, place it into the correct (left or right) target
        for (var i = 0, len = items.length, c; i < len; i++, position++) {
            c = items[i];

            if (c.isFill) {
                side   = this.rightTr;
                position = -1;
            } else if (!c.rendered) {
                c.render(this.insertCell(c, side, position));
                this.configureItem(c);
            } else {
                if (!c.xtbHidden && !this.isValidParent(c, side.childNodes[position])) {
                    var td = this.insertCell(c, side, position);
                    td.appendChild(c.getPositionEl().dom);
                    c.container = Ext.get(td);
                }
            }
        }

        //strip extra empty cells
        this.cleanup(this.leftTr);
        this.cleanup(this.rightTr);
        this.cleanup(this.extrasTr);
        this.fitToSize(target);
    },

    /**
     * @private
     * Removes any empty nodes from the given element
     * @param {Ext.Element} el The element to clean up
     */
    cleanup : function(el) {
        var cn = el.childNodes, i, c;

        for (i = cn.length-1; i >= 0 && (c = cn[i]); i--) {
            if (!c.firstChild) {
                el.removeChild(c);
            }
        }
    },

    /**
     * @private
     * Inserts the given Toolbar item into the given element
     * @param {Ext.Component} c The component to add
     * @param {Ext.Element} target The target to add the component to
     * @param {Number} position The position to add the component at
     */
    insertCell : function(c, target, position) {
        var td = document.createElement('td');
        td.className = 'x-toolbar-cell';

        target.insertBefore(td, target.childNodes[position] || null);

        return td;
    },

    /**
     * @private
     * Hides an item because it will not fit in the available width. The item will be unhidden again
     * if the Toolbar is resized to be large enough to show it
     * @param {Ext.Component} item The item to hide
     */
    hideItem : function(item) {
        this.hiddenItems.push(item);

        item.xtbHidden = true;
        item.xtbWidth = item.getPositionEl().dom.parentNode.offsetWidth;
        item.hide();
    },

    /**
     * @private
     * Unhides an item that was previously hidden due to there not being enough space left on the Toolbar
     * @param {Ext.Component} item The item to show
     */
    unhideItem : function(item) {
        item.show();
        item.xtbHidden = false;
        this.hiddenItems.remove(item);
    },

    /**
     * @private
     * Returns the width of the given toolbar item. If the item is currently hidden because there
     * is not enough room to render it, its previous width is returned
     * @param {Ext.Component} c The component to measure
     * @return {Number} The width of the item
     */
    getItemWidth : function(c) {
        return c.hidden ? (c.xtbWidth || 0) : c.getPositionEl().dom.parentNode.offsetWidth;
    },

    /**
     * @private
     * Called at the end of onLayout. At this point the Toolbar has already been resized, so we need
     * to fit the items into the available width. We add up the width required by all of the items in
     * the toolbar - if we don't have enough space we hide the extra items and render the expand menu
     * trigger.
     * @param {Ext.Element} target The Element the Toolbar is currently laid out within
     */
    fitToSize : function(target) {
        if (this.container.enableOverflow === false) {
            return;
        }

        var width       = target.dom.clientWidth,
            tableWidth  = target.dom.firstChild.offsetWidth,
            clipWidth   = width - this.triggerWidth,
            lastWidth   = this.lastWidth || 0,

            hiddenItems = this.hiddenItems,
            hasHiddens  = hiddenItems.length != 0,
            isLarger    = width >= lastWidth;

        this.lastWidth  = width;

        if (tableWidth > width || (hasHiddens && isLarger)) {
            var items     = this.container.items.items,
                len       = items.length,
                loopWidth = 0,
                item;

            for (var i = 0; i < len; i++) {
                item = items[i];

                if (!item.isFill) {
                    loopWidth += this.getItemWidth(item);
                    if (loopWidth > clipWidth) {
                        if (!(item.hidden || item.xtbHidden)) {
                            this.hideItem(item);
                        }
                    } else if (item.xtbHidden) {
                        this.unhideItem(item);
                    }
                }
            }
        }

        //test for number of hidden items again here because they may have changed above
        hasHiddens = hiddenItems.length != 0;

        if (hasHiddens) {
            this.initMore();

            if (!this.lastOverflow) {
                this.container.fireEvent('overflowchange', this.container, true);
                this.lastOverflow = true;
            }
        } else if (this.more) {
            this.clearMenu();
            this.more.destroy();
            delete this.more;

            if (this.lastOverflow) {
                this.container.fireEvent('overflowchange', this.container, false);
                this.lastOverflow = false;
            }
        }
    },

    /**
     * @private
     * Returns a menu config for a given component. This config is used to create a menu item
     * to be added to the expander menu
     * @param {Ext.Component} component The component to create the config for
     * @param {Boolean} hideOnClick Passed through to the menu item
     */
    createMenuConfig : function(component, hideOnClick){
        var config = Ext.apply({}, component.initialConfig),
            group  = component.toggleGroup;

        Ext.copyTo(config, component, [
            'iconCls', 'icon', 'itemId', 'disabled', 'handler', 'scope', 'menu'
        ]);

        Ext.apply(config, {
            text       : component.overflowText || component.text,
            hideOnClick: hideOnClick
        });

        if (group || component.enableToggle) {
            Ext.apply(config, {
                group  : group,
                checked: component.pressed,
                listeners: {
                    checkchange: function(item, checked){
                        component.toggle(checked);
                    }
                }
            });
        }

        delete config.ownerCt;
        delete config.xtype;
        delete config.id;

        return config;
    },

    /**
     * @private
     * Adds the given Toolbar item to the given menu. Buttons inside a buttongroup are added individually.
     * @param {Ext.menu.Menu} menu The menu to add to
     * @param {Ext.Component} component The component to add
     */
    addComponentToMenu : function(menu, component) {
        if (component instanceof Ext.Toolbar.Separator) {
            menu.add('-');

        } else if (Ext.isFunction(component.isXType)) {
            if (component.isXType('splitbutton')) {
                menu.add(this.createMenuConfig(component, true));

            } else if (component.isXType('button')) {
                menu.add(this.createMenuConfig(component, !component.menu));

            } else if (component.isXType('buttongroup')) {
                component.items.each(function(item){
                     this.addComponentToMenu(menu, item);
                }, this);
            }
        }
    },

    /**
     * @private
     * Deletes the sub-menu of each item in the expander menu. Submenus are created for items such as
     * splitbuttons and buttongroups, where the Toolbar item cannot be represented by a single menu item
     */
    clearMenu : function(){
        var menu = this.moreMenu;
        if (menu && menu.items) {
            menu.items.each(function(item){
                delete item.menu;
            });
        }
    },

    /**
     * @private
     * Called before the expand menu is shown, this rebuilds the menu since it was last shown because
     * it is possible that the items hidden due to space limitations on the Toolbar have changed since.
     * @param {Ext.menu.Menu} m The menu
     */
    beforeMoreShow : function(menu) {
        var items = this.container.items.items,
            len   = items.length,
            item,
            prev;

        var needsSep = function(group, item){
            return group.isXType('buttongroup') && !(item instanceof Ext.Toolbar.Separator);
        };

        this.clearMenu();
        menu.removeAll();
        for (var i = 0; i < len; i++) {
            item = items[i];
            if (item.xtbHidden) {
                if (prev && (needsSep(item, prev) || needsSep(prev, item))) {
                    menu.add('-');
                }
                this.addComponentToMenu(menu, item);
                prev = item;
            }
        }

        // put something so the menu isn't empty if no compatible items found
        if (menu.items.length < 1) {
            menu.add(this.noItemsMenuText);
        }
    },

    /**
     * @private
     * Creates the expand trigger and menu, adding them to the  at the extreme right of the
     * Toolbar table
     */
    initMore : function(){
        if (!this.more) {
            /**
             * @private
             * @property moreMenu
             * @type Ext.menu.Menu
             * The expand menu - holds items for every Toolbar item that cannot be shown
             * because the Toolbar is currently not wide enough.
             */
            this.moreMenu = new Ext.menu.Menu({
                ownerCt : this.container,
                listeners: {
                    beforeshow: this.beforeMoreShow,
                    scope: this
                }
            });

            /**
             * @private
             * @property more
             * @type Ext.Button
             * The expand button which triggers the overflow menu to be shown
             */
            this.more = new Ext.Button({
                iconCls: 'x-toolbar-more-icon',
                cls    : 'x-toolbar-more',
                menu   : this.moreMenu,
                ownerCt: this.container
            });

            var td = this.insertCell(this.more, this.extrasTr, 100);
            this.more.render(td);
        }
    },

    destroy : function(){
        Ext.destroy(this.more, this.moreMenu);
        delete this.leftTr;
        delete this.rightTr;
        delete this.extrasTr;
        Ext.layout.ToolbarLayout.superclass.destroy.call(this);
    }
});

Ext.Container.LAYOUTS.toolbar = Ext.layout.ToolbarLayout;
/**
 * @class Ext.layout.MenuLayout
 * @extends Ext.layout.ContainerLayout
 * 
    Layout manager used by {@link Ext.menu.Menu}. Generally this class should not need to be used directly.
    
 */
 Ext.layout.MenuLayout = Ext.extend(Ext.layout.ContainerLayout, {
    monitorResize : true,

    type: 'menu',

    setContainer : function(ct){
        this.monitorResize = !ct.floating;
        // This event is only fired by the menu in IE, used so we don't couple
        // the menu with the layout.
        ct.on('autosize', this.doAutoSize, this);
        Ext.layout.MenuLayout.superclass.setContainer.call(this, ct);
    },

    renderItem : function(c, position, target){
        if (!this.itemTpl) {
            this.itemTpl = Ext.layout.MenuLayout.prototype.itemTpl = new Ext.XTemplate(
                '
  • ',
                    '',
                        '{altText}',
                    '',
                '
    • '
            );
        }

        if(c && !c.rendered){
            if(Ext.isNumber(position)){
                position = target.dom.childNodes[position];
            }
            var a = this.getItemArgs(c);

//          The Component's positionEl is the 
  •  it is rendered into
            c.render(c.positionEl = position ?
                this.itemTpl.insertBefore(position, a, true) :
                this.itemTpl.append(target, a, true));

//          Link the containing 
  •  to the item.
            c.positionEl.menuItemId = c.getItemId();

//          If rendering a regular Component, and it needs an icon,
//          move the Component rightwards.
            if (!a.isMenuItem && a.needsIcon) {
                c.positionEl.addClass('x-menu-list-item-indent');
            }
            this.configureItem(c);
        }else if(c && !this.isValidParent(c, target)){
            if(Ext.isNumber(position)){
                position = target.dom.childNodes[position];
            }
            target.dom.insertBefore(c.getActionEl().dom, position || null);
        }
    },

    getItemArgs : function(c) {
        var isMenuItem = c instanceof Ext.menu.Item,
            canHaveIcon = !(isMenuItem || c instanceof Ext.menu.Separator);

        return {
            isMenuItem: isMenuItem,
            needsIcon: canHaveIcon && (c.icon || c.iconCls),
            icon: c.icon || Ext.BLANK_IMAGE_URL,
            iconCls: 'x-menu-item-icon ' + (c.iconCls || ''),
            itemId: 'x-menu-el-' + c.id,
            itemCls: 'x-menu-list-item ',
            altText: c.altText || ''
        };
    },

    //  Valid if the Component is in a 
  •  which is part of our target 
      
    isValidParent : function(c, target) {
        return c.el.up('li.x-menu-list-item', 5).dom.parentNode === (target.dom || target);
    },

    onLayout : function(ct, target){
        Ext.layout.MenuLayout.superclass.onLayout.call(this, ct, target);
        this.doAutoSize();
    },

    doAutoSize : function(){
        var ct = this.container, w = ct.width;
        if(ct.floating){
            if(w){
                ct.setWidth(w);
            }else if(Ext.isIE9m){
                ct.setWidth(Ext.isStrict && (Ext.isIE7 || Ext.isIE8 || Ext.isIE9) ? 'auto' : ct.minWidth);
                var el = ct.getEl(), t = el.dom.offsetWidth; // force recalc
                ct.setWidth(ct.getLayoutTarget().getWidth() + el.getFrameWidth('lr'));
            }
        }
    }
});
Ext.Container.LAYOUTS['menu'] = Ext.layout.MenuLayout;
/**
 * @class Ext.Viewport
 * @extends Ext.Container
 * 
      A specialized container representing the viewable application area (the browser viewport).
      
 * 
      The Viewport renders itself to the document body, and automatically sizes itself to the size of
 * the browser viewport and manages window resizing. There may only be one Viewport created
 * in a page. Inner layouts are available by virtue of the fact that all {@link Ext.Panel Panel}s
 * added to the Viewport, either through its {@link #items}, or through the items, or the {@link #add}
 * method of any of its child Panels may themselves have a layout.
      
 * 
      The Viewport does not provide scrolling, so child Panels within the Viewport should provide
 * for scrolling if needed using the {@link #autoScroll} config.
      
 * 
      An example showing a classic application border layout:
      
new Ext.Viewport({
    layout: 'border',
    items: [{
        region: 'north',
        html: '<h1 class="x-panel-header">Page Title</h1>',
        autoHeight: true,
        border: false,
        margins: '0 0 5 0'
    }, {
        region: 'west',
        collapsible: true,
        title: 'Navigation',
        width: 200
        // the west region might typically utilize a {@link Ext.tree.TreePanel TreePanel} or a Panel with {@link Ext.layout.AccordionLayout Accordion layout}
    }, {
        region: 'south',
        title: 'Title for Panel',
        collapsible: true,
        html: 'Information goes here',
        split: true,
        height: 100,
        minHeight: 100
    }, {
        region: 'east',
        title: 'Title for the Grid Panel',
        collapsible: true,
        split: true,
        width: 200,
        xtype: 'grid',
        // remaining grid configuration not shown ...
        // notice that the GridPanel is added directly as the region
        // it is not "overnested" inside another Panel
    }, {
        region: 'center',
        xtype: 'tabpanel', // TabPanel itself has no title
        items: {
            title: 'Default Tab',
            html: 'The first tab\'s content. Others may be added dynamically'
        }
    }]
});

      
 * @constructor
 * Create a new Viewport
 * @param {Object} config The config object
 * @xtype viewport
 */
Ext.Viewport = Ext.extend(Ext.Container, {
    /*
     * Privatize config options which, if used, would interfere with the
     * correct operation of the Viewport as the sole manager of the
     * layout of the document body.
     */
    /**
     * @cfg {Mixed} applyTo @hide
     */
    /**
     * @cfg {Boolean} allowDomMove @hide
     */
    /**
     * @cfg {Boolean} hideParent @hide
     */
    /**
     * @cfg {Mixed} renderTo @hide
     */
    /**
     * @cfg {Number} height @hide
     */
    /**
     * @cfg {Number} width @hide
     */
    /**
     * @cfg {Boolean} autoHeight @hide
     */
    /**
     * @cfg {Boolean} autoWidth @hide
     */
    /**
     * @cfg {Boolean} deferHeight @hide
     */
    /**
     * @cfg {Boolean} monitorResize @hide
     */

    initComponent : function() {
        Ext.Viewport.superclass.initComponent.call(this);
        document.getElementsByTagName('html')[0].className += ' x-viewport';
        this.el = Ext.getBody();
        this.el.setHeight = Ext.emptyFn;
        this.el.setWidth = Ext.emptyFn;
        this.el.setSize = Ext.emptyFn;
        this.el.dom.scroll = 'no';
        this.allowDomMove = false;
        this.autoWidth = true;
        this.autoHeight = true;
        Ext.EventManager.onWindowResize(this.fireResize, this);
        this.renderTo = this.el;
    },

    fireResize : function(w, h){
        this.fireEvent('resize', this, w, h, w, h);
    }
});
Ext.reg('viewport', Ext.Viewport);
/**
 * @class Ext.Panel
 * @extends Ext.Container
 * 
      Panel is a container that has specific functionality and structural components that make
 * it the perfect building block for application-oriented user interfaces.
      
 * 
      Panels are, by virtue of their inheritance from {@link Ext.Container}, capable
 * of being configured with a {@link Ext.Container#layout layout}, and containing child Components.
      
 * 
      When either specifying child {@link Ext.Component#items items} of a Panel, or dynamically {@link Ext.Container#add adding} Components
 * to a Panel, remember to consider how you wish the Panel to arrange those child elements, and whether
 * those child elements need to be sized using one of Ext's built-in {@link Ext.Container#layout layout} schemes. By
 * default, Panels use the {@link Ext.layout.ContainerLayout ContainerLayout} scheme. This simply renders
 * child components, appending them one after the other inside the Container, and does not apply any sizing
 * at all.
      
 * 
      A Panel may also contain {@link #bbar bottom} and {@link #tbar top} toolbars, along with separate
 * {@link #header}, {@link #footer} and {@link #body} sections (see {@link #frame} for additional
 * information).
      
 * 
      Panel also provides built-in {@link #collapsible expandable and collapsible behavior}, along with
 * a variety of {@link #tools prebuilt tool buttons} that can be wired up to provide other customized
 * behavior.  Panels can be easily dropped into any {@link Ext.Container Container} or layout, and the
 * layout and rendering pipeline is {@link Ext.Container#add completely managed by the framework}.
      
 * @constructor
 * @param {Object} config The config object
 * @xtype panel
 */
Ext.Panel = Ext.extend(Ext.Container, {
    /**
     * The Panel's header {@link Ext.Element Element}. Read-only.
     * 
      This Element is used to house the {@link #title} and {@link #tools}
      
     * 
      Note: see the Note for {@link Ext.Component#el el} also.
      
     * @type Ext.Element
     * @property header
     */
    /**
     * The Panel's body {@link Ext.Element Element} which may be used to contain HTML content.
     * The content may be specified in the {@link #html} config, or it may be loaded using the
     * {@link autoLoad} config, or through the Panel's {@link #getUpdater Updater}. Read-only.
     * 
      If this is used to load visible HTML elements in either way, then
     * the Panel may not be used as a Layout for hosting nested Panels.
      
     * 
      If this Panel is intended to be used as the host of a Layout (See {@link #layout}
     * then the body Element must not be loaded or changed - it is under the control
     * of the Panel's Layout.
     * 
      Note: see the Note for {@link Ext.Component#el el} also.
      
     * @type Ext.Element
     * @property body
     */
    /**
     * The Panel's bwrap {@link Ext.Element Element} used to contain other Panel elements
     * (tbar, body, bbar, footer). See {@link #bodyCfg}. Read-only.
     * @type Ext.Element
     * @property bwrap
     */
    /**
     * True if this panel is collapsed. Read-only.
     * @type Boolean
     * @property collapsed
     */
    /**
     * @cfg {Object} bodyCfg
     * 
      A {@link Ext.DomHelper DomHelper} element specification object may be specified for any
     * Panel Element.
      
     * 
      By default, the Default element in the table below will be used for the html markup to
     * create a child element with the commensurate Default class name (baseCls will be
     * replaced by {@link #baseCls}):
      
     * 
           * Panel      Default  Default             Custom      Additional       Additional
     * Element    element  class               element     class            style
     * ========   ==========================   =========   ==============   ===========
     * {@link #header}     div      {@link #baseCls}+'-header'   {@link #headerCfg}   headerCssClass   headerStyle
     * {@link #bwrap}      div      {@link #baseCls}+'-bwrap'     {@link #bwrapCfg}    bwrapCssClass    bwrapStyle
     * + tbar     div      {@link #baseCls}+'-tbar'       {@link #tbarCfg}     tbarCssClass     tbarStyle
     * + {@link #body}     div      {@link #baseCls}+'-body'       {@link #bodyCfg}     {@link #bodyCssClass}     {@link #bodyStyle}
     * + bbar     div      {@link #baseCls}+'-bbar'       {@link #bbarCfg}     bbarCssClass     bbarStyle
     * + {@link #footer}   div      {@link #baseCls}+'-footer'   {@link #footerCfg}   footerCssClass   footerStyle
     * 
      
     * 
      Configuring a Custom element may be used, for example, to force the {@link #body} Element
     * to use a different form of markup than is created by default. An example of this might be
     * to {@link Ext.Element#createChild create a child} Panel containing a custom content, such as
     * a header, or forcing centering of all Panel content by having the body be a <center>
     * element:
      
     * 
      
new Ext.Panel({
    title: 'Message Title',
    renderTo: Ext.getBody(),
    width: 200, height: 130,
    bodyCfg: {
        tag: 'center',
        cls: 'x-panel-body',  // Default class not applied if Custom element specified
        html: 'Message'
    },
    footerCfg: {
        tag: 'h2',
        cls: 'x-panel-footer',        // same as the Default class
        html: 'footer html'
    },
    footerCssClass: 'custom-footer', // additional css class, see {@link Ext.element#addClass addClass}
    footerStyle:    'background-color:red' // see {@link #bodyStyle}
});
     * 
      
     * 
      The example above also explicitly creates a {@link #footer} with custom markup and
     * styling applied.
      
     */
    /**
     * @cfg {Object} headerCfg
     * 
      A {@link Ext.DomHelper DomHelper} element specification object specifying the element structure
     * of this Panel's {@link #header} Element.  See {@link #bodyCfg} also.
      
     */
    /**
     * @cfg {Object} bwrapCfg
     * 
      A {@link Ext.DomHelper DomHelper} element specification object specifying the element structure
     * of this Panel's {@link #bwrap} Element.  See {@link #bodyCfg} also.
      
     */
    /**
     * @cfg {Object} tbarCfg
     * 
      A {@link Ext.DomHelper DomHelper} element specification object specifying the element structure
     * of this Panel's {@link #tbar} Element.  See {@link #bodyCfg} also.
      
     */
    /**
     * @cfg {Object} bbarCfg
     * 
      A {@link Ext.DomHelper DomHelper} element specification object specifying the element structure
     * of this Panel's {@link #bbar} Element.  See {@link #bodyCfg} also.
      
     */
    /**
     * @cfg {Object} footerCfg
     * 
      A {@link Ext.DomHelper DomHelper} element specification object specifying the element structure
     * of this Panel's {@link #footer} Element.  See {@link #bodyCfg} also.
      
     */
    /**
     * @cfg {Boolean} closable
     * Panels themselves do not directly support being closed, but some Panel subclasses do (like
     * {@link Ext.Window}) or a Panel Class within an {@link Ext.TabPanel}.  Specify true
     * to enable closing in such situations. Defaults to false.
     */
    /**
     * The Panel's footer {@link Ext.Element Element}. Read-only.
     * 
      This Element is used to house the Panel's {@link #buttons} or {@link #fbar}.
      
     * 
      Note: see the Note for {@link Ext.Component#el el} also.
      
     * @type Ext.Element
     * @property footer
     */
    /**
     * @cfg {Mixed} applyTo
     * 
      The id of the node, a DOM node or an existing Element corresponding to a DIV that is already present in
     * the document that specifies some panel-specific structural markup.  When applyTo is used,
     * constituent parts of the panel can be specified by CSS class name within the main element, and the panel
     * will automatically create those components from that markup. Any required components not specified in the
     * markup will be autogenerated if necessary.
      
     * 
      The following class names are supported (baseCls will be replaced by {@link #baseCls}):
      
     * 
      • baseCls + '-header'
        • 
     * 
      • baseCls + '-header-text'
        • 
     * 
      • baseCls + '-bwrap'
        • 
     * 
      • baseCls + '-tbar'
        • 
     * 
      • baseCls + '-body'
        • 
     * 
      • baseCls + '-bbar'
        • 
     * 
      • baseCls + '-footer'
      
     * 
      Using this config, a call to render() is not required.  If applyTo is specified, any value passed for
     * {@link #renderTo} will be ignored and the target element's parent node will automatically be used as the
     * panel's container.
      
     */
    /**
     * @cfg {Object/Array} tbar
     * 
      The top toolbar of the panel. This can be a {@link Ext.Toolbar} object, a toolbar config, or an array of
     * buttons/button configs to be added to the toolbar.  Note that this is not available as a property after render.
     * To access the top toolbar after render, use {@link #getTopToolbar}.
      
     * 
      Note: Although a Toolbar may contain Field components, these will not be updated by a load
     * of an ancestor FormPanel. A Panel's toolbars are not part of the standard Container->Component hierarchy, and
     * so are not scanned to collect form items. However, the values will be submitted because form
     * submission parameters are collected from the DOM tree.
      
     */
    /**
     * @cfg {Object/Array} bbar
     * 
      The bottom toolbar of the panel. This can be a {@link Ext.Toolbar} object, a toolbar config, or an array of
     * buttons/button configs to be added to the toolbar.  Note that this is not available as a property after render.
     * To access the bottom toolbar after render, use {@link #getBottomToolbar}.
      
     * 
      Note: Although a Toolbar may contain Field components, these will not be updated by a load
     * of an ancestor FormPanel. A Panel's toolbars are not part of the standard Container->Component hierarchy, and
     * so are not scanned to collect form items. However, the values will be submitted because form
     * submission parameters are collected from the DOM tree.
      
     */
    /** @cfg {Object/Array} fbar
     * 
      A {@link Ext.Toolbar Toolbar} object, a Toolbar config, or an array of
     * {@link Ext.Button Button}s/{@link Ext.Button Button} configs, describing a {@link Ext.Toolbar Toolbar} to be rendered into this Panel's footer element.
      
     * 
      After render, the fbar property will be an {@link Ext.Toolbar Toolbar} instance.
      
     * 
      If {@link #buttons} are specified, they will supersede the fbar configuration property.
      
     * The Panel's {@link #buttonAlign} configuration affects the layout of these items, for example:
     * 
      
var w = new Ext.Window({
    height: 250,
    width: 500,
    bbar: new Ext.Toolbar({
        items: [{
            text: 'bbar Left'
        },'->',{
            text: 'bbar Right'
        }]
    }),
    {@link #buttonAlign}: 'left', // anything but 'center' or 'right' and you can use '-', and '->'
                                  // to control the alignment of fbar items
    fbar: [{
        text: 'fbar Left'
    },'->',{
        text: 'fbar Right'
    }]
}).show();
     * 
      
     * 
      Note: Although a Toolbar may contain Field components, these will not be updated by a load
     * of an ancestor FormPanel. A Panel's toolbars are not part of the standard Container->Component hierarchy, and
     * so are not scanned to collect form items. However, the values will be submitted because form
     * submission parameters are collected from the DOM tree.
      
     */
    /**
     * @cfg {Boolean} header
     * true to create the Panel's header element explicitly, false to skip creating
     * it.  If a {@link #title} is set the header will be created automatically, otherwise it will not.
     * If a {@link #title} is set but header is explicitly set to false, the header
     * will not be rendered.
     */
    /**
     * @cfg {Boolean} footer
     * true to create the footer element explicitly, false to skip creating it. The footer
     * will be created automatically if {@link #buttons} or a {@link #fbar} have
     * been configured.  See {@link #bodyCfg} for an example.
     */
    /**
     * @cfg {String} title
     * The title text to be used as innerHTML (html tags are accepted) to display in the panel
     * {@link #header} (defaults to ''). When a title is specified the
     * {@link #header} element will automatically be created and displayed unless
     * {@link #header} is explicitly set to false.  If you do not want to specify a
     * title at config time, but you may want one later, you must either specify a non-empty
     * title (a blank space ' ' will do) or header:true so that the container
     * element will get created.
     */
    /**
     * @cfg {Array} buttons
     * buttons will be used as {@link Ext.Container#items items} for the toolbar in
     * the footer ({@link #fbar}). Typically the value of this configuration property will be
     * an array of {@link Ext.Button}s or {@link Ext.Button} configuration objects.
     * If an item is configured with minWidth or the Panel is configured with minButtonWidth,
     * that width will be applied to the item.
     */
    /**
     * @cfg {Object/String/Function} autoLoad
     * A valid url spec according to the Updater {@link Ext.Updater#update} method.
     * If autoLoad is not null, the panel will attempt to load its contents
     * immediately upon render.
      
     * The URL will become the default URL for this panel's {@link #body} element,
     * so it may be {@link Ext.Element#refresh refresh}ed at any time.
      
     */
    /**
     * @cfg {Boolean} frame
     * false by default to render with plain 1px square borders. true to render with
     * 9 elements, complete with custom rounded corners (also see {@link Ext.Element#boxWrap}).
     * 
      The template generated for each condition is depicted below:
      
     *
// frame = false
<div id="developer-specified-id-goes-here" class="x-panel">

    <div class="x-panel-header"><span class="x-panel-header-text">Title: (frame:false)</span></div>

    <div class="x-panel-bwrap">
        <div class="x-panel-body"><p>html value goes here</p></div>
    </div>
</div>

// frame = true (create 9 elements)
<div id="developer-specified-id-goes-here" class="x-panel">
    <div class="x-panel-tl"><div class="x-panel-tr"><div class="x-panel-tc">
        <div class="x-panel-header"><span class="x-panel-header-text">Title: (frame:true)</span></div>
    </div></div></div>

    <div class="x-panel-bwrap">
        <div class="x-panel-ml"><div class="x-panel-mr"><div class="x-panel-mc">
            <div class="x-panel-body"><p>html value goes here</p></div>
        </div></div></div>

        <div class="x-panel-bl"><div class="x-panel-br"><div class="x-panel-bc"/>
        </div></div></div>
</div>
     * 
      
     */
    /**
     * @cfg {Boolean} border
     * True to display the borders of the panel's body element, false to hide them (defaults to true).  By default,
     * the border is a 2px wide inset border, but this can be further altered by setting {@link #bodyBorder} to false.
     */
    /**
     * @cfg {Boolean} bodyBorder
     * True to display an interior border on the body element of the panel, false to hide it (defaults to true).
     * This only applies when {@link #border} == true.  If border == true and bodyBorder == false, the border will display
     * as a 1px wide inset border, giving the entire body element an inset appearance.
     */
    /**
     * @cfg {String/Object/Function} bodyCssClass
     * Additional css class selector to be applied to the {@link #body} element in the format expected by
     * {@link Ext.Element#addClass} (defaults to null). See {@link #bodyCfg}.
     */
    /**
     * @cfg {String/Object/Function} bodyStyle
     * Custom CSS styles to be applied to the {@link #body} element in the format expected by
     * {@link Ext.Element#applyStyles} (defaults to null). See {@link #bodyCfg}.
     */
    /**
     * @cfg {String} iconCls
     * The CSS class selector that specifies a background image to be used as the header icon (defaults to '').
     * 
      An example of specifying a custom icon class would be something like:
     * 
      
// specify the property in the config for the class:
     ...
     iconCls: 'my-icon'

// css class that specifies background image to be used as the icon image:
.my-icon { background-image: url(../images/my-icon.gif) 0 6px no-repeat !important; }

      
     */
    /**
     * @cfg {Boolean} collapsible
     * True to make the panel collapsible and have the expand/collapse toggle button automatically rendered into
     * the header tool button area, false to keep the panel statically sized with no button (defaults to false).
     */
    /**
     * @cfg {Array} tools
     * An array of tool button configs to be added to the header tool area. When rendered, each tool is
     * stored as an {@link Ext.Element Element} referenced by a public property called tools.<tool-type>
     * 
      Each tool config may contain the following properties:
     * 
        
     * 
      • id : String
        Required. The type
     * of tool to create. By default, this assigns a CSS class of the form x-tool-<tool-type> to the
     * resulting tool Element. Ext provides CSS rules, and an icon sprite containing images for the tool types listed below.
     * The developer may implement custom tools by supplying alternate CSS rules and background images:
     * 
          
     * 
           
           toggle (Created by default when {@link #collapsible} is true)
          
     * 
           
           close
          
     * 
           
           minimize
          
     * 
           
           maximize
          
     * 
           
           restore
          
     * 
           
           gear
          
     * 
           
           pin
          
     * 
           
           unpin
          
     * 
           
           right
          
     * 
           
           left
          
     * 
           
           up
          
     * 
           
           down
          
     * 
           
           refresh
          
     * 
           
           minus
          
     * 
           
           plus
          
     * 
           
           help
          
     * 
           
           search
          
     * 
           
           save
          
     * 
           
           print
          
     * 
        • 
     * 
      • handler : Function
        Required. The function to
     * call when clicked. Arguments passed are:
          
     * 
        • event : Ext.EventObject
          The click event.
          • 
     * 
        • toolEl : Ext.Element
          The tool Element.
          • 
     * 
        • panel : Ext.Panel
          The host Panel
          • 
     * 
        • tc : Object
          The tool configuration object
          • 
     * 
        • 
     * 
      • stopEvent : Boolean
        Defaults to true. Specify as false to allow click event to propagate.
        • 
     * 
      • scope : Object
        The scope in which to call the handler.
        • 
     * 
      • qtip : String/Object
        A tip string, or
     * a config argument to {@link Ext.QuickTip#register}
        • 
     * 
      • hidden : Boolean
        True to initially render hidden.
        • 
     * 
      • on : Object
        A listener config object specifiying
     * event listeners in the format of an argument to {@link #addListener}
        • 
     * 
      
     * 
      Note that, apart from the toggle tool which is provided when a panel is collapsible, these
     * tools only provide the visual button. Any required functionality must be provided by adding
     * handlers that implement the necessary behavior.
      
     * 
      Example usage:
      
     * 
      
tools:[{
    id:'refresh',
    qtip: 'Refresh form Data',
    // hidden:true,
    handler: function(event, toolEl, panel){
        // refresh logic
    }
},
{
    id:'help',
    qtip: 'Get Help',
    handler: function(event, toolEl, panel){
        // whatever
    }
}]

      
     * 
      For the custom id of 'help' define two relevant css classes with a link to
     * a 15x15 image:
      
     * 
      
.x-tool-help {background-image: url(images/help.png);}
.x-tool-help-over {background-image: url(images/help_over.png);}
// if using an image sprite:
.x-tool-help {background-image: url(images/help.png) no-repeat 0 0;}
.x-tool-help-over {background-position:-15px 0;}

      
     */
    /**
     * @cfg {Ext.Template/Ext.XTemplate} toolTemplate
     * 
      A Template used to create {@link #tools} in the {@link #header} Element. Defaults to:
      
new Ext.Template('<div class="x-tool x-tool-{id}">&#160;</div>')
      
     * 
      This may may be overridden to provide a custom DOM structure for tools based upon a more
     * complex XTemplate. The template's data is a single tool configuration object (Not the entire Array)
     * as specified in {@link #tools}.  In the following example an <a> tag is used to provide a
     * visual indication when hovering over the tool:
      
var win = new Ext.Window({
    tools: [{
        id: 'download',
        href: '/MyPdfDoc.pdf'
    }],
    toolTemplate: new Ext.XTemplate(
        '<tpl if="id==\'download\'">',
            '<a class="x-tool x-tool-pdf" href="{href}"></a>',
        '</tpl>',
        '<tpl if="id!=\'download\'">',
            '<div class="x-tool x-tool-{id}">&#160;</div>',
        '</tpl>'
    ),
    width:500,
    height:300,
    closeAction:'hide'
});
      
     * 
      Note that the CSS class 'x-tool-pdf' should have an associated style rule which provides an
     * appropriate background image, something like:
      
    
      
    a.x-tool-pdf {background-image: url(../shared/extjs/images/pdf.gif)!important;}
    
      
     */
    /**
     * @cfg {Boolean} hideCollapseTool
     * true to hide the expand/collapse toggle button when {@link #collapsible} == true,
     * false to display it (defaults to false).
     */
    /**
     * @cfg {Boolean} titleCollapse
     * true to allow expanding and collapsing the panel (when {@link #collapsible} = true)
     * by clicking anywhere in the header bar, false) to allow it only by clicking to tool button
     * (defaults to false)). If this panel is a child item of a border layout also see the
     * {@link Ext.layout.BorderLayout.Region BorderLayout.Region}
     * {@link Ext.layout.BorderLayout.Region#floatable floatable} config option.
     */

    /**
     * @cfg {Mixed} floating
     * 
      This property is used to configure the underlying {@link Ext.Layer}. Acceptable values for this
     * configuration property are:
        
     * 
      • false : Default.
        Display the panel inline where it is
     * rendered.
        • 
     * 
      • true : 
        Float the panel (absolute position it with automatic
     * shimming and shadow).
          
     * 
          Setting floating to true will create an Ext.Layer for this panel and display the
     * panel at negative offsets so that it is hidden.
          
     * 
          Since the panel will be absolute positioned, the position must be set explicitly
     * after render (e.g., myPanel.setPosition(100,100);).
          
     * 
          Note: when floating a panel you should always assign a fixed width,
     * otherwise it will be auto width and will expand to fill to the right edge of the viewport.
          
     * 
        • 
     * 
      • {@link Ext.Layer object} : 
        The specified object will be used
     * as the configuration object for the {@link Ext.Layer} that will be created.
        • 
     * 
      
     */
    /**
     * @cfg {Boolean/String} shadow
     * true (or a valid Ext.Shadow {@link Ext.Shadow#mode} value) to display a shadow behind the
     * panel, false to display no shadow (defaults to 'sides').  Note that this option
     * only applies when {@link #floating} = true.
     */
    /**
     * @cfg {Number} shadowOffset
     * The number of pixels to offset the shadow if displayed (defaults to 4). Note that this
     * option only applies when {@link #floating} = true.
     */
    /**
     * @cfg {Boolean} shim
     * false to disable the iframe shim in browsers which need one (defaults to true).
     * Note that this option only applies when {@link #floating} = true.
     */
    /**
     * @cfg {Object/Array} keys
     * A {@link Ext.KeyMap} config object (in the format expected by {@link Ext.KeyMap#addBinding}
     * used to assign custom key handling to this panel (defaults to null).
     */
    /**
     * @cfg {Boolean/Object} draggable
     * 
      true to enable dragging of this Panel (defaults to false).
      
     * 
      For custom drag/drop implementations, an Ext.Panel.DD config could also be passed
     * in this config instead of true. Ext.Panel.DD is an internal, undocumented class which
     * moves a proxy Element around in place of the Panel's element, but provides no other behaviour
     * during dragging or on drop. It is a subclass of {@link Ext.dd.DragSource}, so behaviour may be
     * added by implementing the interface methods of {@link Ext.dd.DragDrop} e.g.:
     * 
      
new Ext.Panel({
    title: 'Drag me',
    x: 100,
    y: 100,
    renderTo: Ext.getBody(),
    floating: true,
    frame: true,
    width: 400,
    height: 200,
    draggable: {
//      Config option of Ext.Panel.DD class.
//      It's a floating Panel, so do not show a placeholder proxy in the original position.
        insertProxy: false,

//      Called for each mousemove event while dragging the DD object.
        onDrag : function(e){
//          Record the x,y position of the drag proxy so that we can
//          position the Panel at end of drag.
            var pel = this.proxy.getEl();
            this.x = pel.getLeft(true);
            this.y = pel.getTop(true);

//          Keep the Shadow aligned if there is one.
            var s = this.panel.getEl().shadow;
            if (s) {
                s.realign(this.x, this.y, pel.getWidth(), pel.getHeight());
            }
        },

//      Called on the mouseup event.
        endDrag : function(e){
            this.panel.setPosition(this.x, this.y);
        }
    }
}).show();

      
     */
    /**
     * @cfg {Boolean} disabled
     * Render this panel disabled (default is false). An important note when using the disabled
     * config on panels is that IE will often fail to initialize the disabled mask element correectly if
     * the panel's layout has not yet completed by the time the Panel is disabled during the render process.
     * If you experience this issue, you may need to instead use the {@link #afterlayout} event to initialize
     * the disabled state:
     * 
      
new Ext.Panel({
    ...
    listeners: {
        'afterlayout': {
            fn: function(p){
                p.disable();
            },
            single: true // important, as many layouts can occur
        }
    }
});

      
     */
    /**
     * @cfg {Boolean} autoHeight
     * true to use height:'auto', false to use fixed height (defaults to false).
     * Note: Setting autoHeight: true means that the browser will manage the panel's height
     * based on its contents, and that Ext will not manage it at all. If the panel is within a layout that
     * manages dimensions (fit, border, etc.) then setting autoHeight: true
     * can cause issues with scrolling and will not generally work as expected since the panel will take
     * on the height of its contents rather than the height required by the Ext layout.
     */


    /**
     * @cfg {String} baseCls
     * The base CSS class to apply to this panel's element (defaults to 'x-panel').
     * 
      Another option available by default is to specify 'x-plain' which strips all styling
     * except for required attributes for Ext layouts to function (e.g. overflow:hidden).
     * See {@link #unstyled} also.
      
     */
    baseCls : 'x-panel',
    /**
     * @cfg {String} collapsedCls
     * A CSS class to add to the panel's element after it has been collapsed (defaults to
     * 'x-panel-collapsed').
     */
    collapsedCls : 'x-panel-collapsed',
    /**
     * @cfg {Boolean} maskDisabled
     * true to mask the panel when it is {@link #disabled}, false to not mask it (defaults
     * to true).  Either way, the panel will always tell its contained elements to disable themselves
     * when it is disabled, but masking the panel can provide an additional visual cue that the panel is
     * disabled.
     */
    maskDisabled : true,
    /**
     * @cfg {Boolean} animCollapse
     * true to animate the transition when the panel is collapsed, false to skip the
     * animation (defaults to true if the {@link Ext.Fx} class is available, otherwise false).
     */
    animCollapse : Ext.enableFx,
    /**
     * @cfg {Boolean} headerAsText
     * true to display the panel {@link #title} in the {@link #header},
     * false to hide it (defaults to true).
     */
    headerAsText : true,
    /**
     * @cfg {String} buttonAlign
     * The alignment of any {@link #buttons} added to this panel.  Valid values are 'right',
     * 'left' and 'center' (defaults to 'right').
     */
    buttonAlign : 'right',
    /**
     * @cfg {Boolean} collapsed
     * true to render the panel collapsed, false to render it expanded (defaults to
     * false).
     */
    collapsed : false,
    /**
     * @cfg {Boolean} collapseFirst
     * true to make sure the collapse/expand toggle button always renders first (to the left of)
     * any other tools in the panel's title bar, false to render it last (defaults to true).
     */
    collapseFirst : true,
    /**
     * @cfg {Number} minButtonWidth
     * Minimum width in pixels of all {@link #buttons} in this panel (defaults to 75)
     */
    minButtonWidth : 75,
    /**
     * @cfg {Boolean} unstyled
     * Overrides the {@link #baseCls} setting to {@link #baseCls} = 'x-plain' which renders
     * the panel unstyled except for required attributes for Ext layouts to function (e.g. overflow:hidden).
     */
    /**
     * @cfg {String} elements
     * A comma-delimited list of panel elements to initialize when the panel is rendered.  Normally, this list will be
     * generated automatically based on the items added to the panel at config time, but sometimes it might be useful to
     * make sure a structural element is rendered even if not specified at config time (for example, you may want
     * to add a button or toolbar dynamically after the panel has been rendered).  Adding those elements to this
     * list will allocate the required placeholders in the panel when it is rendered.  Valid values are
        
     * 
      • header
        • 
     * 
      • tbar (top bar)
        • 
     * 
      • body
        • 
     * 
      • bbar (bottom bar)
        • 
     * 
      • footer
        • 
     * 
      
     * Defaults to 'body'.
     */
    elements : 'body',
    /**
     * @cfg {Boolean} preventBodyReset
     * Defaults to false.  When set to true, an extra css class 'x-panel-normal'
     * will be added to the panel's element, effectively applying css styles suggested by the W3C
     * (see http://www.w3.org/TR/CSS21/sample.html) to the Panel's body element (not the header,
     * footer, etc.).
     */
    preventBodyReset : false,

    /**
     * @cfg {Number/String} padding
     * A shortcut for setting a padding style on the body element. The value can either be
     * a number to be applied to all sides, or a normal css string describing padding.
     * Defaults to undefined.
     *
     */
    padding: undefined,

    /** @cfg {String} resizeEvent
     * The event to listen to for resizing in layouts. Defaults to 'bodyresize'.
     */
    resizeEvent: 'bodyresize',

    // protected - these could be used to customize the behavior of the window,
    // but changing them would not be useful without further mofifications and
    // could lead to unexpected or undesirable results.
    toolTarget : 'header',
    collapseEl : 'bwrap',
    slideAnchor : 't',
    disabledClass : '',

    // private, notify box this class will handle heights
    deferHeight : true,
    // private
    expandDefaults: {
        duration : 0.25
    },
    // private
    collapseDefaults : {
        duration : 0.25
    },

    // private
    initComponent : function(){
        Ext.Panel.superclass.initComponent.call(this);

        this.addEvents(
            /**
             * @event bodyresize
             * Fires after the Panel has been resized.
             * @param {Ext.Panel} p the Panel which has been resized.
             * @param {Number} width The Panel body's new width.
             * @param {Number} height The Panel body's new height.
             */
            'bodyresize',
            /**
             * @event titlechange
             * Fires after the Panel title has been {@link #title set} or {@link #setTitle changed}.
             * @param {Ext.Panel} p the Panel which has had its title changed.
             * @param {String} The new title.
             */
            'titlechange',
            /**
             * @event iconchange
             * Fires after the Panel icon class has been {@link #iconCls set} or {@link #setIconClass changed}.
             * @param {Ext.Panel} p the Panel which has had its {@link #iconCls icon class} changed.
             * @param {String} newIcon The new icon class.
             * @param {String} oldIcon The old icon class.
             */
            'iconchange',
            /**
             * @event collapse
             * Fires after the Panel has been collapsed.
             * @param {Ext.Panel} p the Panel that has been collapsed.
             */
            'collapse',
            /**
             * @event expand
             * Fires after the Panel has been expanded.
             * @param {Ext.Panel} p The Panel that has been expanded.
             */
            'expand',
            /**
             * @event beforecollapse
             * Fires before the Panel is collapsed.  A handler can return false to cancel the collapse.
             * @param {Ext.Panel} p the Panel being collapsed.
             * @param {Boolean} animate True if the collapse is animated, else false.
             */
            'beforecollapse',
            /**
             * @event beforeexpand
             * Fires before the Panel is expanded.  A handler can return false to cancel the expand.
             * @param {Ext.Panel} p The Panel being expanded.
             * @param {Boolean} animate True if the expand is animated, else false.
             */
            'beforeexpand',
            /**
             * @event beforeclose
             * Fires before the Panel is closed.  Note that Panels do not directly support being closed, but some
             * Panel subclasses do (like {@link Ext.Window}) or a Panel within a Ext.TabPanel.  This event only
             * applies to such subclasses.
             * A handler can return false to cancel the close.
             * @param {Ext.Panel} p The Panel being closed.
             */
            'beforeclose',
            /**
             * @event close
             * Fires after the Panel is closed.  Note that Panels do not directly support being closed, but some
             * Panel subclasses do (like {@link Ext.Window}) or a Panel within a Ext.TabPanel.
             * @param {Ext.Panel} p The Panel that has been closed.
             */
            'close',
            /**
             * @event activate
             * Fires after the Panel has been visually activated.
             * Note that Panels do not directly support being activated, but some Panel subclasses
             * do (like {@link Ext.Window}). Panels which are child Components of a TabPanel fire the
             * activate and deactivate events under the control of the TabPanel.
             * @param {Ext.Panel} p The Panel that has been activated.
             */
            'activate',
            /**
             * @event deactivate
             * Fires after the Panel has been visually deactivated.
             * Note that Panels do not directly support being deactivated, but some Panel subclasses
             * do (like {@link Ext.Window}). Panels which are child Components of a TabPanel fire the
             * activate and deactivate events under the control of the TabPanel.
             * @param {Ext.Panel} p The Panel that has been deactivated.
             */
            'deactivate'
        );

        if(this.unstyled){
            this.baseCls = 'x-plain';
        }


        this.toolbars = [];
        // shortcuts
        if(this.tbar){
            this.elements += ',tbar';
            this.topToolbar = this.createToolbar(this.tbar);
            this.tbar = null;

        }
        if(this.bbar){
            this.elements += ',bbar';
            this.bottomToolbar = this.createToolbar(this.bbar);
            this.bbar = null;
        }

        if(this.header === true){
            this.elements += ',header';
            this.header = null;
        }else if(this.headerCfg || (this.title && this.header !== false)){
            this.elements += ',header';
        }

        if(this.footerCfg || this.footer === true){
            this.elements += ',footer';
            this.footer = null;
        }

        if(this.buttons){
            this.fbar = this.buttons;
            this.buttons = null;
        }
        if(this.fbar){
            this.createFbar(this.fbar);
        }
        if(this.autoLoad){
            this.on('render', this.doAutoLoad, this, {delay:10});
        }
    },

    // private
    createFbar : function(fbar){
        var min = this.minButtonWidth;
        this.elements += ',footer';
        this.fbar = this.createToolbar(fbar, {
            buttonAlign: this.buttonAlign,
            toolbarCls: 'x-panel-fbar',
            enableOverflow: false,
            defaults: function(c){
                return {
                    minWidth: c.minWidth || min
                };
            }
        });
        // @compat addButton and buttons could possibly be removed
        // @target 4.0
        /**
         * This Panel's Array of buttons as created from the {@link #buttons}
         * config property. Read only.
         * @type Array
         * @property buttons
         */
        this.fbar.items.each(function(c){
            c.minWidth = c.minWidth || this.minButtonWidth;
        }, this);
        this.buttons = this.fbar.items.items;
    },

    // private
    createToolbar: function(tb, options){
        var result;
        // Convert array to proper toolbar config
        if(Ext.isArray(tb)){
            tb = {
                items: tb
            };
        }
        result = tb.events ? Ext.apply(tb, options) : this.createComponent(Ext.apply({}, tb, options), 'toolbar');
        this.toolbars.push(result);
        return result;
    },

    // private
    createElement : function(name, pnode){
        if(this[name]){
            pnode.appendChild(this[name].dom);
            return;
        }

        if(name === 'bwrap' || this.elements.indexOf(name) != -1){
            if(this[name+'Cfg']){
                this[name] = Ext.fly(pnode).createChild(this[name+'Cfg']);
            }else{
                var el = document.createElement('div');
                el.className = this[name+'Cls'];
                this[name] = Ext.get(pnode.appendChild(el));
            }
            if(this[name+'CssClass']){
                this[name].addClass(this[name+'CssClass']);
            }
            if(this[name+'Style']){
                this[name].applyStyles(this[name+'Style']);
            }
        }
    },

    // private
    onRender : function(ct, position){
        Ext.Panel.superclass.onRender.call(this, ct, position);
        this.createClasses();

        var el = this.el,
            d = el.dom,
            bw,
            ts;


        if(this.collapsible && !this.hideCollapseTool){
            this.tools = this.tools ? this.tools.slice(0) : [];
            this.tools[this.collapseFirst?'unshift':'push']({
                id: 'toggle',
                handler : this.toggleCollapse,
                scope: this
            });
        }

        if(this.tools){
            ts = this.tools;
            this.elements += (this.header !== false) ? ',header' : '';
        }
        this.tools = {};

        el.addClass(this.baseCls);
        if(d.firstChild){ // existing markup
            this.header = el.down('.'+this.headerCls);
            this.bwrap = el.down('.'+this.bwrapCls);
            var cp = this.bwrap ? this.bwrap : el;
            this.tbar = cp.down('.'+this.tbarCls);
            this.body = cp.down('.'+this.bodyCls);
            this.bbar = cp.down('.'+this.bbarCls);
            this.footer = cp.down('.'+this.footerCls);
            this.fromMarkup = true;
        }
        if (this.preventBodyReset === true) {
            el.addClass('x-panel-reset');
        }
        if(this.cls){
            el.addClass(this.cls);
        }

        if(this.buttons){
            this.elements += ',footer';
        }

        // This block allows for maximum flexibility and performance when using existing markup

        // framing requires special markup
        if(this.frame){
            el.insertHtml('afterBegin', String.format(Ext.Element.boxMarkup, this.baseCls));

            this.createElement('header', d.firstChild.firstChild.firstChild);
            this.createElement('bwrap', d);

            // append the mid and bottom frame to the bwrap
            bw = this.bwrap.dom;
            var ml = d.childNodes[1], bl = d.childNodes[2];
            bw.appendChild(ml);
            bw.appendChild(bl);

            var mc = bw.firstChild.firstChild.firstChild;
            this.createElement('tbar', mc);
            this.createElement('body', mc);
            this.createElement('bbar', mc);
            this.createElement('footer', bw.lastChild.firstChild.firstChild);

            if(!this.footer){
                this.bwrap.dom.lastChild.className += ' x-panel-nofooter';
            }
            /*
             * Store a reference to this element so:
             * a) We aren't looking it up all the time
             * b) The last element is reported incorrectly when using a loadmask
             */
            this.ft = Ext.get(this.bwrap.dom.lastChild);
            this.mc = Ext.get(mc);
        }else{
            this.createElement('header', d);
            this.createElement('bwrap', d);

            // append the mid and bottom frame to the bwrap
            bw = this.bwrap.dom;
            this.createElement('tbar', bw);
            this.createElement('body', bw);
            this.createElement('bbar', bw);
            this.createElement('footer', bw);

            if(!this.header){
                this.body.addClass(this.bodyCls + '-noheader');
                if(this.tbar){
                    this.tbar.addClass(this.tbarCls + '-noheader');
                }
            }
        }

        if(Ext.isDefined(this.padding)){
            this.body.setStyle('padding', this.body.addUnits(this.padding));
        }

        if(this.border === false){
            this.el.addClass(this.baseCls + '-noborder');
            this.body.addClass(this.bodyCls + '-noborder');
            if(this.header){
                this.header.addClass(this.headerCls + '-noborder');
            }
            if(this.footer){
                this.footer.addClass(this.footerCls + '-noborder');
            }
            if(this.tbar){
                this.tbar.addClass(this.tbarCls + '-noborder');
            }
            if(this.bbar){
                this.bbar.addClass(this.bbarCls + '-noborder');
            }
        }

        if(this.bodyBorder === false){
           this.body.addClass(this.bodyCls + '-noborder');
        }

        this.bwrap.enableDisplayMode('block');

        if(this.header){
            this.header.unselectable();

            // for tools, we need to wrap any existing header markup
            if(this.headerAsText){
                this.header.dom.innerHTML =
                    ''+this.header.dom.innerHTML+'';

                if(this.iconCls){
                    this.setIconClass(this.iconCls);
                }
            }
        }

        if(this.floating){
            this.makeFloating(this.floating);
        }

        if(this.collapsible && this.titleCollapse && this.header){
            this.mon(this.header, 'click', this.toggleCollapse, this);
            this.header.setStyle('cursor', 'pointer');
        }
        if(ts){
            this.addTool.apply(this, ts);
        }

        // Render Toolbars.
        if(this.fbar){
            this.footer.addClass('x-panel-btns');
            this.fbar.ownerCt = this;
            this.fbar.render(this.footer);
            this.footer.createChild({cls:'x-clear'});
        }
        if(this.tbar && this.topToolbar){
            this.topToolbar.ownerCt = this;
            this.topToolbar.render(this.tbar);
        }
        if(this.bbar && this.bottomToolbar){
            this.bottomToolbar.ownerCt = this;
            this.bottomToolbar.render(this.bbar);
        }
    },

    /**
     * Sets the CSS class that provides the icon image for this panel.  This method will replace any existing
     * icon class if one has already been set and fire the {@link #iconchange} event after completion.
     * @param {String} cls The new CSS class name
     */
    setIconClass : function(cls){
        var old = this.iconCls;
        this.iconCls = cls;
        if(this.rendered && this.header){
            if(this.frame){
                this.header.addClass('x-panel-icon');
                this.header.replaceClass(old, this.iconCls);
            }else{
                var hd = this.header,
                    img = hd.child('img.x-panel-inline-icon');
                if(img){
                    Ext.fly(img).replaceClass(old, this.iconCls);
                }else{
                    var hdspan = hd.child('span.' + this.headerTextCls);
                    if (hdspan) {
                        Ext.DomHelper.insertBefore(hdspan.dom, {
                            tag:'img', alt: '', src: Ext.BLANK_IMAGE_URL, cls:'x-panel-inline-icon '+this.iconCls
                        });
                    }
                 }
            }
        }
        this.fireEvent('iconchange', this, cls, old);
    },

    // private
    makeFloating : function(cfg){
        this.floating = true;
        this.el = new Ext.Layer(Ext.apply({}, cfg, {
            shadow: Ext.isDefined(this.shadow) ? this.shadow : 'sides',
            shadowOffset: this.shadowOffset,
            constrain:false,
            shim: this.shim === false ? false : undefined
        }), this.el);
    },

    /**
     * Returns the {@link Ext.Toolbar toolbar} from the top ({@link #tbar}) section of the panel.
     * @return {Ext.Toolbar} The toolbar
     */
    getTopToolbar : function(){
        return this.topToolbar;
    },

    /**
     * Returns the {@link Ext.Toolbar toolbar} from the bottom ({@link #bbar}) section of the panel.
     * @return {Ext.Toolbar} The toolbar
     */
    getBottomToolbar : function(){
        return this.bottomToolbar;
    },

    /**
     * Returns the {@link Ext.Toolbar toolbar} from the footer ({@link #fbar}) section of the panel.
     * @return {Ext.Toolbar} The toolbar
     */
    getFooterToolbar : function() {
        return this.fbar;
    },

    /**
     * Adds a button to this panel.  Note that this method must be called prior to rendering.  The preferred
     * approach is to add buttons via the {@link #buttons} config.
     * @param {String/Object} config A valid {@link Ext.Button} config.  A string will become the text for a default
     * button config, an object will be treated as a button config object.
     * @param {Function} handler The function to be called on button {@link Ext.Button#click}
     * @param {Object} scope The scope (this reference) in which the button handler function is executed. Defaults to the Button.
     * @return {Ext.Button} The button that was added
     */
    addButton : function(config, handler, scope){
        if(!this.fbar){
            this.createFbar([]);
        }
        if(handler){
            if(Ext.isString(config)){
                config = {text: config};
            }
            config = Ext.apply({
                handler: handler,
                scope: scope
            }, config);
        }
        return this.fbar.add(config);
    },

    // private
    addTool : function(){
        if(!this.rendered){
            if(!this.tools){
                this.tools = [];
            }
            Ext.each(arguments, function(arg){
                this.tools.push(arg);
            }, this);
            return;
        }
         // nowhere to render tools!
        if(!this[this.toolTarget]){
            return;
        }
        if(!this.toolTemplate){
            // initialize the global tool template on first use
            var tt = new Ext.Template(
                 '
       
      '
            );
            tt.disableFormats = true;
            tt.compile();
            Ext.Panel.prototype.toolTemplate = tt;
        }
        for(var i = 0, a = arguments, len = a.length; i < len; i++) {
            var tc = a[i];
            if(!this.tools[tc.id]){
                var overCls = 'x-tool-'+tc.id+'-over';
                var t = this.toolTemplate.insertFirst(this[this.toolTarget], tc, true);
                this.tools[tc.id] = t;
                t.enableDisplayMode('block');
                this.mon(t, 'click',  this.createToolHandler(t, tc, overCls, this));
                if(tc.on){
                    this.mon(t, tc.on);
                }
                if(tc.hidden){
                    t.hide();
                }
                if(tc.qtip){
                    if(Ext.isObject(tc.qtip)){
                        Ext.QuickTips.register(Ext.apply({
                              target: t.id
                        }, tc.qtip));
                    } else {
                        t.dom.qtip = tc.qtip;
                    }
                }
                t.addClassOnOver(overCls);
            }
        }
    },

    onLayout : function(shallow, force){
        Ext.Panel.superclass.onLayout.apply(this, arguments);
        if(this.hasLayout && this.toolbars.length > 0){
            Ext.each(this.toolbars, function(tb){
                tb.doLayout(undefined, force);
            });
            this.syncHeight();
        }
    },

    syncHeight : function(){
        var h = this.toolbarHeight,
                bd = this.body,
                lsh = this.lastSize.height,
                sz;

        if(this.autoHeight || !Ext.isDefined(lsh) || lsh == 'auto'){
            return;
        }


        if(h != this.getToolbarHeight()){
            h = Math.max(0, lsh - this.getFrameHeight());
            bd.setHeight(h);
            sz = bd.getSize();
            this.toolbarHeight = this.getToolbarHeight();
            this.onBodyResize(sz.width, sz.height);
        }
    },

    // private
    onShow : function(){
        if(this.floating){
            return this.el.show();
        }
        Ext.Panel.superclass.onShow.call(this);
    },

    // private
    onHide : function(){
        if(this.floating){
            return this.el.hide();
        }
        Ext.Panel.superclass.onHide.call(this);
    },

    // private
    createToolHandler : function(t, tc, overCls, panel){
        return function(e){
            t.removeClass(overCls);
            if(tc.stopEvent !== false){
                e.stopEvent();
            }
            if(tc.handler){
                tc.handler.call(tc.scope || t, e, t, panel, tc);
            }
        };
    },

    // private
    afterRender : function(){
        if(this.floating && !this.hidden){
            this.el.show();
        }
        if(this.title){
            this.setTitle(this.title);
        }
        Ext.Panel.superclass.afterRender.call(this); // do sizing calcs last
        if (this.collapsed) {
            this.collapsed = false;
            this.collapse(false);
        }
        this.initEvents();
    },

    // private
    getKeyMap : function(){
        if(!this.keyMap){
            this.keyMap = new Ext.KeyMap(this.el, this.keys);
        }
        return this.keyMap;
    },

    // private
    initEvents : function(){
        if(this.keys){
            this.getKeyMap();
        }
        if(this.draggable){
            this.initDraggable();
        }
        if(this.toolbars.length > 0){
            Ext.each(this.toolbars, function(tb){
                tb.doLayout();
                tb.on({
                    scope: this,
                    afterlayout: this.syncHeight,
                    remove: this.syncHeight
                });
            }, this);
            this.syncHeight();
        }

    },

    // private
    initDraggable : function(){
        /**
         * 
      If this Panel is configured {@link #draggable}, this property will contain
         * an instance of {@link Ext.dd.DragSource} which handles dragging the Panel.
      
         * The developer must provide implementations of the abstract methods of {@link Ext.dd.DragSource}
         * in order to supply behaviour for each stage of the drag/drop process. See {@link #draggable}.
         * @type Ext.dd.DragSource
         * @property dd
         */
        this.dd = new Ext.Panel.DD(this, Ext.isBoolean(this.draggable) ? null : this.draggable);
    },

    // private
    beforeEffect : function(anim){
        if(this.floating){
            this.el.beforeAction();
        }
        if(anim !== false){
            this.el.addClass('x-panel-animated');
        }
    },

    // private
    afterEffect : function(anim){
        this.syncShadow();
        this.el.removeClass('x-panel-animated');
    },

    // private - wraps up an animation param with internal callbacks
    createEffect : function(a, cb, scope){
        var o = {
            scope:scope,
            block:true
        };
        if(a === true){
            o.callback = cb;
            return o;
        }else if(!a.callback){
            o.callback = cb;
        }else { // wrap it up
            o.callback = function(){
                cb.call(scope);
                Ext.callback(a.callback, a.scope);
            };
        }
        return Ext.applyIf(o, a);
    },

    /**
     * Collapses the panel body so that it becomes hidden.  Fires the {@link #beforecollapse} event which will
     * cancel the collapse action if it returns false.
     * @param {Boolean} animate True to animate the transition, else false (defaults to the value of the
     * {@link #animCollapse} panel config)
     * @return {Ext.Panel} this
     */
    collapse : function(animate){
        if(this.collapsed || this.el.hasFxBlock() || this.fireEvent('beforecollapse', this, animate) === false){
            return;
        }
        var doAnim = animate === true || (animate !== false && this.animCollapse);
        this.beforeEffect(doAnim);
        this.onCollapse(doAnim, animate);
        return this;
    },

    // private
    onCollapse : function(doAnim, animArg){
        if(doAnim){
            this[this.collapseEl].slideOut(this.slideAnchor,
                    Ext.apply(this.createEffect(animArg||true, this.afterCollapse, this),
                        this.collapseDefaults));
        }else{
            this[this.collapseEl].hide(this.hideMode);
            this.afterCollapse(false);
        }
    },

    // private
    afterCollapse : function(anim){
        this.collapsed = true;
        this.el.addClass(this.collapsedCls);
        if(anim !== false){
            this[this.collapseEl].hide(this.hideMode);
        }
        this.afterEffect(anim);

        // Reset lastSize of all sub-components so they KNOW they are in a collapsed container
        this.cascade(function(c) {
            if (c.lastSize) {
                c.lastSize = { width: undefined, height: undefined };
            }
        });
        this.fireEvent('collapse', this);
    },

    /**
     * Expands the panel body so that it becomes visible.  Fires the {@link #beforeexpand} event which will
     * cancel the expand action if it returns false.
     * @param {Boolean} animate True to animate the transition, else false (defaults to the value of the
     * {@link #animCollapse} panel config)
     * @return {Ext.Panel} this
     */
    expand : function(animate){
        if(!this.collapsed || this.el.hasFxBlock() || this.fireEvent('beforeexpand', this, animate) === false){
            return;
        }
        var doAnim = animate === true || (animate !== false && this.animCollapse);
        this.el.removeClass(this.collapsedCls);
        this.beforeEffect(doAnim);
        this.onExpand(doAnim, animate);
        return this;
    },

    // private
    onExpand : function(doAnim, animArg){
        if(doAnim){
            this[this.collapseEl].slideIn(this.slideAnchor,
                    Ext.apply(this.createEffect(animArg||true, this.afterExpand, this),
                        this.expandDefaults));
        }else{
            this[this.collapseEl].show(this.hideMode);
            this.afterExpand(false);
        }
    },

    // private
    afterExpand : function(anim){
        this.collapsed = false;
        if(anim !== false){
            this[this.collapseEl].show(this.hideMode);
        }
        this.afterEffect(anim);
        if (this.deferLayout) {
            delete this.deferLayout;
            this.doLayout(true);
        }
        this.fireEvent('expand', this);
    },

    /**
     * Shortcut for performing an {@link #expand} or {@link #collapse} based on the current state of the panel.
     * @param {Boolean} animate True to animate the transition, else false (defaults to the value of the
     * {@link #animCollapse} panel config)
     * @return {Ext.Panel} this
     */
    toggleCollapse : function(animate){
        this[this.collapsed ? 'expand' : 'collapse'](animate);
        return this;
    },

    // private
    onDisable : function(){
        if(this.rendered && this.maskDisabled){
            this.el.mask();
        }
        Ext.Panel.superclass.onDisable.call(this);
    },

    // private
    onEnable : function(){
        if(this.rendered && this.maskDisabled){
            this.el.unmask();
        }
        Ext.Panel.superclass.onEnable.call(this);
    },

    // private
    onResize : function(adjWidth, adjHeight, rawWidth, rawHeight){
        var w = adjWidth,
            h = adjHeight;

        if(Ext.isDefined(w) || Ext.isDefined(h)){
            if(!this.collapsed){
                // First, set the the Panel's body width.
                // If we have auto-widthed it, get the resulting full offset width so we can size the Toolbars to match
                // The Toolbars must not buffer this resize operation because we need to know their heights.

                if(Ext.isNumber(w)){
                    this.body.setWidth(w = this.adjustBodyWidth(w - this.getFrameWidth()));
                } else if (w == 'auto') {
                    w = this.body.setWidth('auto').dom.offsetWidth;
                } else {
                    w = this.body.dom.offsetWidth;
                }

                if(this.tbar){
                    this.tbar.setWidth(w);
                    if(this.topToolbar){
                        this.topToolbar.setSize(w);
                    }
                }
                if(this.bbar){
                    this.bbar.setWidth(w);
                    if(this.bottomToolbar){
                        this.bottomToolbar.setSize(w);
                        // The bbar does not move on resize without this.
                        if (Ext.isIE9m) {
                            this.bbar.setStyle('position', 'static');
                            this.bbar.setStyle('position', '');
                        }
                    }
                }
                if(this.footer){
                    this.footer.setWidth(w);
                    if(this.fbar){
                        this.fbar.setSize(Ext.isIE9m ? (w - this.footer.getFrameWidth('lr')) : 'auto');
                    }
                }

                // At this point, the Toolbars must be layed out for getFrameHeight to find a result.
                if(Ext.isNumber(h)){
                    h = Math.max(0, h - this.getFrameHeight());
                    //h = Math.max(0, h - (this.getHeight() - this.body.getHeight()));
                    this.body.setHeight(h);
                }else if(h == 'auto'){
                    this.body.setHeight(h);
                }

                if(this.disabled && this.el._mask){
                    this.el._mask.setSize(this.el.dom.clientWidth, this.el.getHeight());
                }
            }else{
                // Adds an event to set the correct height afterExpand.  This accounts for the deferHeight flag in panel
                this.queuedBodySize = {width: w, height: h};
                if(!this.queuedExpand && this.allowQueuedExpand !== false){
                    this.queuedExpand = true;
                    this.on('expand', function(){
                        delete this.queuedExpand;
                        this.onResize(this.queuedBodySize.width, this.queuedBodySize.height);
                    }, this, {single:true});
                }
            }
            this.onBodyResize(w, h);
        }
        this.syncShadow();
        Ext.Panel.superclass.onResize.call(this, adjWidth, adjHeight, rawWidth, rawHeight);

    },

    // private
    onBodyResize: function(w, h){
        this.fireEvent('bodyresize', this, w, h);
    },

    // private
    getToolbarHeight: function(){
        var h = 0;
        if(this.rendered){
            Ext.each(this.toolbars, function(tb){
                h += tb.getHeight();
            }, this);
        }
        return h;
    },

    // deprecate
    adjustBodyHeight : function(h){
        return h;
    },

    // private
    adjustBodyWidth : function(w){
        return w;
    },

    // private
    onPosition : function(){
        this.syncShadow();
    },

    /**
     * Returns the width in pixels of the framing elements of this panel (not including the body width).  To
     * retrieve the body width see {@link #getInnerWidth}.
     * @return {Number} The frame width
     */
    getFrameWidth : function(){
        var w = this.el.getFrameWidth('lr') + this.bwrap.getFrameWidth('lr');

        if(this.frame){
            var l = this.bwrap.dom.firstChild;
            w += (Ext.fly(l).getFrameWidth('l') + Ext.fly(l.firstChild).getFrameWidth('r'));
            w += this.mc.getFrameWidth('lr');
        }
        return w;
    },

    /**
     * Returns the height in pixels of the framing elements of this panel (including any top and bottom bars and
     * header and footer elements, but not including the body height).  To retrieve the body height see {@link #getInnerHeight}.
     * @return {Number} The frame height
     */
    getFrameHeight : function() {
        var h  = this.el.getFrameWidth('tb') + this.bwrap.getFrameWidth('tb');
        h += (this.tbar ? this.tbar.getHeight() : 0) +
             (this.bbar ? this.bbar.getHeight() : 0);

        if(this.frame){
            h += this.el.dom.firstChild.offsetHeight + this.ft.dom.offsetHeight + this.mc.getFrameWidth('tb');
        }else{
            h += (this.header ? this.header.getHeight() : 0) +
                (this.footer ? this.footer.getHeight() : 0);
        }
        return h;
    },

    /**
     * Returns the width in pixels of the body element (not including the width of any framing elements).
     * For the frame width see {@link #getFrameWidth}.
     * @return {Number} The body width
     */
    getInnerWidth : function(){
        return this.getSize().width - this.getFrameWidth();
    },

    /**
     * Returns the height in pixels of the body element (not including the height of any framing elements).
     * For the frame height see {@link #getFrameHeight}.
     * @return {Number} The body height
     */
    getInnerHeight : function(){
        return this.body.getHeight();
        /* Deprecate
            return this.getSize().height - this.getFrameHeight();
        */
    },

    // private
    syncShadow : function(){
        if(this.floating){
            this.el.sync(true);
        }
    },

    // private
    getLayoutTarget : function(){
        return this.body;
    },

    // private
    getContentTarget : function(){
        return this.body;
    },

    /**
     * 
      Sets the title text for the panel and optionally the {@link #iconCls icon class}.
      
     * 
      In order to be able to set the title, a header element must have been created
     * for the Panel. This is triggered either by configuring the Panel with a non-blank {@link #title},
     * or configuring it with {@link #header}: true.
      
     * @param {String} title The title text to set
     * @param {String} iconCls (optional) {@link #iconCls iconCls} A user-defined CSS class that provides the icon image for this panel
     */
    setTitle : function(title, iconCls){
        this.title = title;
        if(this.header && this.headerAsText){
            this.header.child('span').update(title);
        }
        if(iconCls){
            this.setIconClass(iconCls);
        }
        this.fireEvent('titlechange', this, title);
        return this;
    },

    /**
     * Get the {@link Ext.Updater} for this panel. Enables you to perform Ajax updates of this panel's body.
     * @return {Ext.Updater} The Updater
     */
    getUpdater : function(){
        return this.body.getUpdater();
    },

     /**
     * Loads this content panel immediately with content returned from an XHR call.
     * @param {Object/String/Function} config A config object containing any of the following options:

      
panel.load({
    url: 'your-url.php',
    params: {param1: 'foo', param2: 'bar'}, // or a URL encoded string
    callback: yourFunction,
    scope: yourObject, // optional scope for the callback
    discardUrl: false,
    nocache: false,
    text: 'Loading...',
    timeout: 30,
    scripts: false
});

      
     * The only required property is url. The optional properties nocache, text and scripts
     * are shorthand for disableCaching, indicatorText and loadScripts and are used to set their
     * associated property on this panel Updater instance.
     * @return {Ext.Panel} this
     */
    load : function(){
        var um = this.body.getUpdater();
        um.update.apply(um, arguments);
        return this;
    },

    // private
    beforeDestroy : function(){
        Ext.Panel.superclass.beforeDestroy.call(this);
        if(this.header){
            this.header.removeAllListeners();
        }
        if(this.tools){
            for(var k in this.tools){
                Ext.destroy(this.tools[k]);
            }
        }
        if(this.toolbars.length > 0){
            Ext.each(this.toolbars, function(tb){
                tb.un('afterlayout', this.syncHeight, this);
                tb.un('remove', this.syncHeight, this);
            }, this);
        }
        if(Ext.isArray(this.buttons)){
            while(this.buttons.length) {
                Ext.destroy(this.buttons[0]);
            }
        }
        if(this.rendered){
            Ext.destroy(
                this.ft,
                this.header,
                this.footer,
                this.tbar,
                this.bbar,
                this.body,
                this.mc,
                this.bwrap,
                this.dd
            );
            if (this.fbar) {
                Ext.destroy(
                    this.fbar,
                    this.fbar.el
                );
            }
        }
        Ext.destroy(this.toolbars);
    },

    // private
    createClasses : function(){
        this.headerCls = this.baseCls + '-header';
        this.headerTextCls = this.baseCls + '-header-text';
        this.bwrapCls = this.baseCls + '-bwrap';
        this.tbarCls = this.baseCls + '-tbar';
        this.bodyCls = this.baseCls + '-body';
        this.bbarCls = this.baseCls + '-bbar';
        this.footerCls = this.baseCls + '-footer';
    },

    // private
    createGhost : function(cls, useShim, appendTo){
        var el = document.createElement('div');
        el.className = 'x-panel-ghost ' + (cls ? cls : '');
        if(this.header){
            el.appendChild(this.el.dom.firstChild.cloneNode(true));
        }
        Ext.fly(el.appendChild(document.createElement('ul'))).setHeight(this.bwrap.getHeight());
        el.style.width = this.el.dom.offsetWidth + 'px';;
        if(!appendTo){
            this.container.dom.appendChild(el);
        }else{
            Ext.getDom(appendTo).appendChild(el);
        }
        if(useShim !== false && this.el.useShim !== false){
            var layer = new Ext.Layer({shadow:false, useDisplay:true, constrain:false}, el);
            layer.show();
            return layer;
        }else{
            return new Ext.Element(el);
        }
    },

    // private
    doAutoLoad : function(){
        var u = this.body.getUpdater();
        if(this.renderer){
            u.setRenderer(this.renderer);
        }
        u.update(Ext.isObject(this.autoLoad) ? this.autoLoad : {url: this.autoLoad});
    },

    /**
     * Retrieve a tool by id.
     * @param {String} id
     * @return {Object} tool
     */
    getTool : function(id) {
        return this.tools[id];
    }

/**
 * @cfg {String} autoEl @hide
 */
});
Ext.reg('panel', Ext.Panel);
/**
 * @class Ext.Editor
 * @extends Ext.Component
 * A base editor field that handles displaying/hiding on demand and has some built-in sizing and event handling logic.
 * @constructor
 * Create a new Editor
 * @param {Object} config The config object
 * @xtype editor
 */
Ext.Editor = function(field, config){
    if(field.field){
        this.field = Ext.create(field.field, 'textfield');
        config = Ext.apply({}, field); // copy so we don't disturb original config
        delete config.field;
    }else{
        this.field = field;
    }
    Ext.Editor.superclass.constructor.call(this, config);
};

Ext.extend(Ext.Editor, Ext.Component, {
    /**
    * @cfg {Ext.form.Field} field
    * The Field object (or descendant) or config object for field
    */
    /**
     * @cfg {Boolean} allowBlur
     * True to {@link #completeEdit complete the editing process} if in edit mode when the
     * field is blurred. Defaults to true.
     */
    allowBlur: true,
    /**
     * @cfg {Boolean/String} autoSize
     * True for the editor to automatically adopt the size of the underlying field, "width" to adopt the width only,
     * or "height" to adopt the height only, "none" to always use the field dimensions. (defaults to false)
     */
    /**
     * @cfg {Boolean} revertInvalid
     * True to automatically revert the field value and cancel the edit when the user completes an edit and the field
     * validation fails (defaults to true)
     */
    /**
     * @cfg {Boolean} ignoreNoChange
     * True to skip the edit completion process (no save, no events fired) if the user completes an edit and
     * the value has not changed (defaults to false).  Applies only to string values - edits for other data types
     * will never be ignored.
     */
    /**
     * @cfg {Boolean} hideEl
     * False to keep the bound element visible while the editor is displayed (defaults to true)
     */
    /**
     * @cfg {Mixed} value
     * The data value of the underlying field (defaults to "")
     */
    value : "",
    /**
     * @cfg {String} alignment
     * The position to align to (see {@link Ext.Element#alignTo} for more details, defaults to "c-c?").
     */
    alignment: "c-c?",
    /**
     * @cfg {Array} offsets
     * The offsets to use when aligning (see {@link Ext.Element#alignTo} for more details. Defaults to [0, 0].
     */
    offsets: [0, 0],
    /**
     * @cfg {Boolean/String} shadow "sides" for sides/bottom only, "frame" for 4-way shadow, and "drop"
     * for bottom-right shadow (defaults to "frame")
     */
    shadow : "frame",
    /**
     * @cfg {Boolean} constrain True to constrain the editor to the viewport
     */
    constrain : false,
    /**
     * @cfg {Boolean} swallowKeys Handle the keydown/keypress events so they don't propagate (defaults to true)
     */
    swallowKeys : true,
    /**
     * @cfg {Boolean} completeOnEnter True to complete the edit when the enter key is pressed. Defaults to true.
     */
    completeOnEnter : true,
    /**
     * @cfg {Boolean} cancelOnEsc True to cancel the edit when the escape key is pressed. Defaults to true.
     */
    cancelOnEsc : true,
    /**
     * @cfg {Boolean} updateEl True to update the innerHTML of the bound element when the update completes (defaults to false)
     */
    updateEl : false,

    initComponent : function(){
        Ext.Editor.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event beforestartedit
             * Fires when editing is initiated, but before the value changes.  Editing can be canceled by returning
             * false from the handler of this event.
             * @param {Editor} this
             * @param {Ext.Element} boundEl The underlying element bound to this editor
             * @param {Mixed} value The field value being set
             */
            "beforestartedit",
            /**
             * @event startedit
             * Fires when this editor is displayed
             * @param {Ext.Element} boundEl The underlying element bound to this editor
             * @param {Mixed} value The starting field value
             */
            "startedit",
            /**
             * @event beforecomplete
             * Fires after a change has been made to the field, but before the change is reflected in the underlying
             * field.  Saving the change to the field can be canceled by returning false from the handler of this event.
             * Note that if the value has not changed and ignoreNoChange = true, the editing will still end but this
             * event will not fire since no edit actually occurred.
             * @param {Editor} this
             * @param {Mixed} value The current field value
             * @param {Mixed} startValue The original field value
             */
            "beforecomplete",
            /**
             * @event complete
             * Fires after editing is complete and any changed value has been written to the underlying field.
             * @param {Editor} this
             * @param {Mixed} value The current field value
             * @param {Mixed} startValue The original field value
             */
            "complete",
            /**
             * @event canceledit
             * Fires after editing has been canceled and the editor's value has been reset.
             * @param {Editor} this
             * @param {Mixed} value The user-entered field value that was discarded
             * @param {Mixed} startValue The original field value that was set back into the editor after cancel
             */
            "canceledit",
            /**
             * @event specialkey
             * Fires when any key related to navigation (arrows, tab, enter, esc, etc.) is pressed.  You can check
             * {@link Ext.EventObject#getKey} to determine which key was pressed.
             * @param {Ext.form.Field} this
             * @param {Ext.EventObject} e The event object
             */
            "specialkey"
        );
    },

    // private
    onRender : function(ct, position){
        this.el = new Ext.Layer({
            shadow: this.shadow,
            cls: "x-editor",
            parentEl : ct,
            shim : this.shim,
            shadowOffset: this.shadowOffset || 4,
            id: this.id,
            constrain: this.constrain
        });
        if(this.zIndex){
            this.el.setZIndex(this.zIndex);
        }
        this.el.setStyle("overflow", Ext.isGecko ? "auto" : "hidden");
        if(this.field.msgTarget != 'title'){
            this.field.msgTarget = 'qtip';
        }
        this.field.inEditor = true;
        this.mon(this.field, {
            scope: this,
            blur: this.onBlur,
            specialkey: this.onSpecialKey
        });
        if(this.field.grow){
            this.mon(this.field, "autosize", this.el.sync,  this.el, {delay:1});
        }
        this.field.render(this.el).show();
        this.field.getEl().dom.name = '';
        if(this.swallowKeys){
            this.field.el.swallowEvent([
                'keypress', // *** Opera
                'keydown'   // *** all other browsers
            ]);
        }
    },

    // private
    onSpecialKey : function(field, e){
        var key = e.getKey(),
            complete = this.completeOnEnter && key == e.ENTER,
            cancel = this.cancelOnEsc && key == e.ESC;
        if(complete || cancel){
            e.stopEvent();
            if(complete){
                this.completeEdit();
            }else{
                this.cancelEdit();
            }
            if(field.triggerBlur){
                field.triggerBlur();
            }
        }
        this.fireEvent('specialkey', field, e);
    },

    /**
     * Starts the editing process and shows the editor.
     * @param {Mixed} el The element to edit
     * @param {String} value (optional) A value to initialize the editor with. If a value is not provided, it defaults
      * to the innerHTML of el.
     */
    startEdit : function(el, value){
        if(this.editing){
            this.completeEdit();
        }
        this.boundEl = Ext.get(el);
        var v = value !== undefined ? value : this.boundEl.dom.innerHTML;
        if(!this.rendered){
            this.render(this.parentEl || document.body);
        }
        if(this.fireEvent("beforestartedit", this, this.boundEl, v) !== false){
            this.startValue = v;
            this.field.reset();
            this.field.setValue(v);
            this.realign(true);
            this.editing = true;
            this.show();
        }
    },

    // private
    doAutoSize : function(){
        if(this.autoSize){
            var sz = this.boundEl.getSize(),
                fs = this.field.getSize();

            switch(this.autoSize){
                case "width":
                    this.setSize(sz.width, fs.height);
                    break;
                case "height":
                    this.setSize(fs.width, sz.height);
                    break;
                case "none":
                    this.setSize(fs.width, fs.height);
                    break;
                default:
                    this.setSize(sz.width, sz.height);
            }
        }
    },

    /**
     * Sets the height and width of this editor.
     * @param {Number} width The new width
     * @param {Number} height The new height
     */
    setSize : function(w, h){
        delete this.field.lastSize;
        this.field.setSize(w, h);
        if(this.el){
            // IE7 in strict mode doesn't size properly.
            if(Ext.isGecko2 || Ext.isOpera || (Ext.isIE7 && Ext.isStrict)){
                // prevent layer scrollbars
                this.el.setSize(w, h);
            }
            this.el.sync();
        }
    },

    /**
     * Realigns the editor to the bound field based on the current alignment config value.
     * @param {Boolean} autoSize (optional) True to size the field to the dimensions of the bound element.
     */
    realign : function(autoSize){
        if(autoSize === true){
            this.doAutoSize();
        }
        this.el.alignTo(this.boundEl, this.alignment, this.offsets);
    },

    /**
     * Ends the editing process, persists the changed value to the underlying field, and hides the editor.
     * @param {Boolean} remainVisible Override the default behavior and keep the editor visible after edit (defaults to false)
     */
    completeEdit : function(remainVisible){
        if(!this.editing){
            return;
        }
        // Assert combo values first
        if (this.field.assertValue) {
            this.field.assertValue();
        }
        var v = this.getValue();
        if(!this.field.isValid()){
            if(this.revertInvalid !== false){
                this.cancelEdit(remainVisible);
            }
            return;
        }
        if(String(v) === String(this.startValue) && this.ignoreNoChange){
            this.hideEdit(remainVisible);
            return;
        }
        if(this.fireEvent("beforecomplete", this, v, this.startValue) !== false){
            v = this.getValue();
            if(this.updateEl && this.boundEl){
                this.boundEl.update(v);
            }
            this.hideEdit(remainVisible);
            this.fireEvent("complete", this, v, this.startValue);
        }
    },

    // private
    onShow : function(){
        this.el.show();
        if(this.hideEl !== false){
            this.boundEl.hide();
        }
        this.field.show().focus(false, true);
        this.fireEvent("startedit", this.boundEl, this.startValue);
    },

    /**
     * Cancels the editing process and hides the editor without persisting any changes.  The field value will be
     * reverted to the original starting value.
     * @param {Boolean} remainVisible Override the default behavior and keep the editor visible after
     * cancel (defaults to false)
     */
    cancelEdit : function(remainVisible){
        if(this.editing){
            var v = this.getValue();
            this.setValue(this.startValue);
            this.hideEdit(remainVisible);
            this.fireEvent("canceledit", this, v, this.startValue);
        }
    },

    // private
    hideEdit: function(remainVisible){
        if(remainVisible !== true){
            this.editing = false;
            this.hide();
        }
    },

    // private
    onBlur : function(){
        // selectSameEditor flag allows the same editor to be started without onBlur firing on itself
        if(this.allowBlur === true && this.editing && this.selectSameEditor !== true){
            this.completeEdit();
        }
    },

    // private
    onHide : function(){
        if(this.editing){
            this.completeEdit();
            return;
        }
        this.field.blur();
        if(this.field.collapse){
            this.field.collapse();
        }
        this.el.hide();
        if(this.hideEl !== false){
            this.boundEl.show();
        }
    },

    /**
     * Sets the data value of the editor
     * @param {Mixed} value Any valid value supported by the underlying field
     */
    setValue : function(v){
        this.field.setValue(v);
    },

    /**
     * Gets the data value of the editor
     * @return {Mixed} The data value
     */
    getValue : function(){
        return this.field.getValue();
    },

    beforeDestroy : function(){
        Ext.destroyMembers(this, 'field');

        delete this.parentEl;
        delete this.boundEl;
    }
});
Ext.reg('editor', Ext.Editor);
/**
 * @class Ext.ColorPalette
 * @extends Ext.Component
 * Simple color palette class for choosing colors.  The palette can be rendered to any container.
      
 * Here's an example of typical usage:
 * 
      
var cp = new Ext.ColorPalette({value:'993300'});  // initial selected color
cp.render('my-div');

cp.on('select', function(palette, selColor){
    // do something with selColor
});

      
 * @constructor
 * Create a new ColorPalette
 * @param {Object} config The config object
 * @xtype colorpalette
 */
Ext.ColorPalette = Ext.extend(Ext.Component, {
	/**
	 * @cfg {String} tpl An existing XTemplate instance to be used in place of the default template for rendering the component.
	 */
    /**
     * @cfg {String} itemCls
     * The CSS class to apply to the containing element (defaults to 'x-color-palette')
     */
    itemCls : 'x-color-palette',
    /**
     * @cfg {String} value
     * The initial color to highlight (should be a valid 6-digit color hex code without the # symbol).  Note that
     * the hex codes are case-sensitive.
     */
    value : null,
    /**
     * @cfg {String} clickEvent
     * The DOM event that will cause a color to be selected. This can be any valid event name (dblclick, contextmenu). 
     * Defaults to 'click'.
     */
    clickEvent :'click',
    // private
    ctype : 'Ext.ColorPalette',

    /**
     * @cfg {Boolean} allowReselect If set to true then reselecting a color that is already selected fires the {@link #select} event
     */
    allowReselect : false,

    /**
     * 
      An array of 6-digit color hex code strings (without the # symbol).  This array can contain any number
     * of colors, and each hex code should be unique.  The width of the palette is controlled via CSS by adjusting
     * the width property of the 'x-color-palette' class (or assigning a custom class), so you can balance the number
     * of colors with the width setting until the box is symmetrical.
      
     * 
      You can override individual colors if needed:
      
     * 
      
var cp = new Ext.ColorPalette();
cp.colors[0] = 'FF0000';  // change the first box to red

      

Or you can provide a custom array of your own for complete control:

      
var cp = new Ext.ColorPalette();
cp.colors = ['000000', '993300', '333300'];

      
     * @type Array
     */
    colors : [
        '000000', '993300', '333300', '003300', '003366', '000080', '333399', '333333',
        '800000', 'FF6600', '808000', '008000', '008080', '0000FF', '666699', '808080',
        'FF0000', 'FF9900', '99CC00', '339966', '33CCCC', '3366FF', '800080', '969696',
        'FF00FF', 'FFCC00', 'FFFF00', '00FF00', '00FFFF', '00CCFF', '993366', 'C0C0C0',
        'FF99CC', 'FFCC99', 'FFFF99', 'CCFFCC', 'CCFFFF', '99CCFF', 'CC99FF', 'FFFFFF'
    ],

    /**
     * @cfg {Function} handler
     * Optional. A function that will handle the select event of this palette.
     * The handler is passed the following parameters:
        
     * 
      • palette : ColorPalette
        The {@link #palette Ext.ColorPalette}.
        • 
     * 
      • color : String
        The 6-digit color hex code (without the # symbol).
        • 
     * 
      
     */
    /**
     * @cfg {Object} scope
     * The scope (this reference) in which the {@link #handler}
     * function will be called.  Defaults to this ColorPalette instance.
     */
    
    // private
    initComponent : function(){
        Ext.ColorPalette.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event select
             * Fires when a color is selected
             * @param {ColorPalette} this
             * @param {String} color The 6-digit color hex code (without the # symbol)
             */
            'select'
        );

        if(this.handler){
            this.on('select', this.handler, this.scope, true);
        }    
    },

    // private
    onRender : function(container, position){
        this.autoEl = {
            tag: 'div',
            cls: this.itemCls
        };
        Ext.ColorPalette.superclass.onRender.call(this, container, position);
        var t = this.tpl || new Ext.XTemplate(
            ' '
        );
        t.overwrite(this.el, this.colors);
        this.mon(this.el, this.clickEvent, this.handleClick, this, {delegate: 'a'});
        if(this.clickEvent != 'click'){
        	this.mon(this.el, 'click', Ext.emptyFn, this, {delegate: 'a', preventDefault: true});
        }
    },

    // private
    afterRender : function(){
        Ext.ColorPalette.superclass.afterRender.call(this);
        if(this.value){
            var s = this.value;
            this.value = null;
            this.select(s, true);
        }
    },

    // private
    handleClick : function(e, t){
        e.preventDefault();
        if(!this.disabled){
            var c = t.className.match(/(?:^|\s)color-(.{6})(?:\s|$)/)[1];
            this.select(c.toUpperCase());
        }
    },

    /**
     * Selects the specified color in the palette (fires the {@link #select} event)
     * @param {String} color A valid 6-digit color hex code (# will be stripped if included)
     * @param {Boolean} suppressEvent (optional) True to stop the select event from firing. Defaults to false.
     */
    select : function(color, suppressEvent){
        color = color.replace('#', '');
        if(color != this.value || this.allowReselect){
            var el = this.el;
            if(this.value){
                el.child('a.color-'+this.value).removeClass('x-color-palette-sel');
            }
            el.child('a.color-'+color).addClass('x-color-palette-sel');
            this.value = color;
            if(suppressEvent !== true){
                this.fireEvent('select', this, color);
            }
        }
    }

    /**
     * @cfg {String} autoEl @hide
     */
});
Ext.reg('colorpalette', Ext.ColorPalette);/**
 * @class Ext.DatePicker
 * @extends Ext.Component
 * 
      A popup date picker. This class is used by the {@link Ext.form.DateField DateField} class
 * to allow browsing and selection of valid dates.
      
 * 
      All the string values documented below may be overridden by including an Ext locale file in
 * your page.
      
 * @constructor
 * Create a new DatePicker
 * @param {Object} config The config object
 * @xtype datepicker
 */
Ext.DatePicker = Ext.extend(Ext.BoxComponent, {
    /**
     * @cfg {String} todayText
     * The text to display on the button that selects the current date (defaults to 'Today')
     */
    todayText : 'Today',
    /**
     * @cfg {String} okText
     * The text to display on the ok button (defaults to ' OK ' to give the user extra clicking room)
     */
    okText : ' OK ',
    /**
     * @cfg {String} cancelText
     * The text to display on the cancel button (defaults to 'Cancel')
     */
    cancelText : 'Cancel',
    /**
     * @cfg {Function} handler
     * Optional. A function that will handle the select event of this picker.
     * The handler is passed the following parameters:
        
     * 
      • picker : DatePicker
        This DatePicker.
        • 
     * 
      • date : Date
        The selected date.
        • 
     * 
      
     */
    /**
     * @cfg {Object} scope
     * The scope (this reference) in which the {@link #handler}
     * function will be called.  Defaults to this DatePicker instance.
     */
    /**
     * @cfg {String} todayTip
     * A string used to format the message for displaying in a tooltip over the button that
     * selects the current date. Defaults to '{0} (Spacebar)' where
     * the {0} token is replaced by today's date.
     */
    todayTip : '{0} (Spacebar)',
    /**
     * @cfg {String} minText
     * The error text to display if the minDate validation fails (defaults to 'This date is before the minimum date')
     */
    minText : 'This date is before the minimum date',
    /**
     * @cfg {String} maxText
     * The error text to display if the maxDate validation fails (defaults to 'This date is after the maximum date')
     */
    maxText : 'This date is after the maximum date',
    /**
     * @cfg {String} format
     * The default date format string which can be overriden for localization support.  The format must be
     * valid according to {@link Date#parseDate} (defaults to 'm/d/y').
     */
    format : 'm/d/y',
    /**
     * @cfg {String} disabledDaysText
     * The tooltip to display when the date falls on a disabled day (defaults to 'Disabled')
     */
    disabledDaysText : 'Disabled',
    /**
     * @cfg {String} disabledDatesText
     * The tooltip text to display when the date falls on a disabled date (defaults to 'Disabled')
     */
    disabledDatesText : 'Disabled',
    /**
     * @cfg {Array} monthNames
     * An array of textual month names which can be overriden for localization support (defaults to Date.monthNames)
     */
    monthNames : Date.monthNames,
    /**
     * @cfg {Array} dayNames
     * An array of textual day names which can be overriden for localization support (defaults to Date.dayNames)
     */
    dayNames : Date.dayNames,
    /**
     * @cfg {String} nextText
     * The next month navigation button tooltip (defaults to 'Next Month (Control+Right)')
     */
    nextText : 'Next Month (Control+Right)',
    /**
     * @cfg {String} prevText
     * The previous month navigation button tooltip (defaults to 'Previous Month (Control+Left)')
     */
    prevText : 'Previous Month (Control+Left)',
    /**
     * @cfg {String} monthYearText
     * The header month selector tooltip (defaults to 'Choose a month (Control+Up/Down to move years)')
     */
    monthYearText : 'Choose a month (Control+Up/Down to move years)',
    /**
     * @cfg {Number} startDay
     * Day index at which the week should begin, 0-based (defaults to 0, which is Sunday)
     */
    startDay : 0,
    /**
     * @cfg {Boolean} showToday
     * False to hide the footer area containing the Today button and disable the keyboard handler for spacebar
     * that selects the current date (defaults to true).
     */
    showToday : true,
    /**
     * @cfg {Date} minDate
     * Minimum allowable date (JavaScript date object, defaults to null)
     */
    /**
     * @cfg {Date} maxDate
     * Maximum allowable date (JavaScript date object, defaults to null)
     */
    /**
     * @cfg {Array} disabledDays
     * An array of days to disable, 0-based. For example, [0, 6] disables Sunday and Saturday (defaults to null).
     */
    /**
     * @cfg {RegExp} disabledDatesRE
     * JavaScript regular expression used to disable a pattern of dates (defaults to null).  The {@link #disabledDates}
     * config will generate this regex internally, but if you specify disabledDatesRE it will take precedence over the
     * disabledDates value.
     */
    /**
     * @cfg {Array} disabledDates
     * An array of 'dates' to disable, as strings. These strings will be used to build a dynamic regular
     * expression so they are very powerful. Some examples:
     * 
        
     * 
      • ['03/08/2003', '09/16/2003'] would disable those exact dates
        • 
     * 
      • ['03/08', '09/16'] would disable those days for every year
        • 
     * 
      • ['^03/08'] would only match the beginning (useful if you are using short years)
        • 
     * 
      • ['03/../2006'] would disable every day in March 2006
        • 
     * 
      • ['^03'] would disable every day in every March
        • 
     * 
      
     * Note that the format of the dates included in the array should exactly match the {@link #format} config.
     * In order to support regular expressions, if you are using a date format that has '.' in it, you will have to
     * escape the dot when restricting dates. For example: ['03\\.08\\.03'].
     */

    // private
    // Set by other components to stop the picker focus being updated when the value changes.
    focusOnSelect: true,

    // default value used to initialise each date in the DatePicker
    // (note: 12 noon was chosen because it steers well clear of all DST timezone changes)
    initHour: 12, // 24-hour format

    // private
    initComponent : function(){
        Ext.DatePicker.superclass.initComponent.call(this);

        this.value = this.value ?
                 this.value.clearTime(true) : new Date().clearTime();

        this.addEvents(
            /**
             * @event select
             * Fires when a date is selected
             * @param {DatePicker} this DatePicker
             * @param {Date} date The selected date
             */
            'select'
        );

        if(this.handler){
            this.on('select', this.handler,  this.scope || this);
        }

        this.initDisabledDays();
    },

    // private
    initDisabledDays : function(){
        if(!this.disabledDatesRE && this.disabledDates){
            var dd = this.disabledDates,
                len = dd.length - 1,
                re = '(?:';

            Ext.each(dd, function(d, i){
                re += Ext.isDate(d) ? '^' + Ext.escapeRe(d.dateFormat(this.format)) + '$' : dd[i];
                if(i != len){
                    re += '|';
                }
            }, this);
            this.disabledDatesRE = new RegExp(re + ')');
        }
    },

    /**
     * Replaces any existing disabled dates with new values and refreshes the DatePicker.
     * @param {Array/RegExp} disabledDates An array of date strings (see the {@link #disabledDates} config
     * for details on supported values), or a JavaScript regular expression used to disable a pattern of dates.
     */
    setDisabledDates : function(dd){
        if(Ext.isArray(dd)){
            this.disabledDates = dd;
            this.disabledDatesRE = null;
        }else{
            this.disabledDatesRE = dd;
        }
        this.initDisabledDays();
        this.update(this.value, true);
    },

    /**
     * Replaces any existing disabled days (by index, 0-6) with new values and refreshes the DatePicker.
     * @param {Array} disabledDays An array of disabled day indexes. See the {@link #disabledDays} config
     * for details on supported values.
     */
    setDisabledDays : function(dd){
        this.disabledDays = dd;
        this.update(this.value, true);
    },

    /**
     * Replaces any existing {@link #minDate} with the new value and refreshes the DatePicker.
     * @param {Date} value The minimum date that can be selected
     */
    setMinDate : function(dt){
        this.minDate = dt;
        this.update(this.value, true);
    },

    /**
     * Replaces any existing {@link #maxDate} with the new value and refreshes the DatePicker.
     * @param {Date} value The maximum date that can be selected
     */
    setMaxDate : function(dt){
        this.maxDate = dt;
        this.update(this.value, true);
    },

    /**
     * Sets the value of the date field
     * @param {Date} value The date to set
     */
    setValue : function(value){
        this.value = value.clearTime(true);
        this.update(this.value);
    },

    /**
     * Gets the current selected value of the date field
     * @return {Date} The selected date
     */
    getValue : function(){
        return this.value;
    },

    // private
    focus : function(){
        this.update(this.activeDate);
    },

    // private
    onEnable: function(initial){
        Ext.DatePicker.superclass.onEnable.call(this);
        this.doDisabled(false);
        this.update(initial ? this.value : this.activeDate);
        if(Ext.isIE9m){
            this.el.repaint();
        }

    },

    // private
    onDisable : function(){
        Ext.DatePicker.superclass.onDisable.call(this);
        this.doDisabled(true);
        if(Ext.isIE9m && !Ext.isIE8){
            /* Really strange problem in IE6/7, when disabled, have to explicitly
             * repaint each of the nodes to get them to display correctly, simply
             * calling repaint on the main element doesn't appear to be enough.
             */
             Ext.each([].concat(this.textNodes, this.el.query('th span')), function(el){
                 Ext.fly(el).repaint();
             });
        }
    },

    // private
    doDisabled : function(disabled){
        this.keyNav.setDisabled(disabled);
        this.prevRepeater.setDisabled(disabled);
        this.nextRepeater.setDisabled(disabled);
        if(this.showToday){
            this.todayKeyListener.setDisabled(disabled);
            this.todayBtn.setDisabled(disabled);
        }
    },

    // private
    onRender : function(container, position){
        var m = [
             '
    • ',
                '',
                '',
                this.showToday ? '' : '',
                '
      
    '],
                dn = this.dayNames,
                i;
        for(i = 0; i < 7; i++){
            var d = this.startDay+i;
            if(d > 6){
                d = d-7;
            }
            m.push('');
        }
        m[m.length] = '';
        for(i = 0; i < 42; i++) {
            if(i % 7 === 0 && i !== 0){
                m[m.length] = '';
            }
            m[m.length] = '';
        }
        m.push('
    ', dn[d].substr(0,1), '
    ');

        var el = document.createElement('div');
        el.className = 'x-date-picker';
        el.innerHTML = m.join('');

        container.dom.insertBefore(el, position);

        this.el = Ext.get(el);
        this.eventEl = Ext.get(el.firstChild);

        this.prevRepeater = new Ext.util.ClickRepeater(this.el.child('td.x-date-left a'), {
            handler: this.showPrevMonth,
            scope: this,
            preventDefault:true,
            stopDefault:true
        });

        this.nextRepeater = new Ext.util.ClickRepeater(this.el.child('td.x-date-right a'), {
            handler: this.showNextMonth,
            scope: this,
            preventDefault:true,
            stopDefault:true
        });

        this.monthPicker = this.el.down('div.x-date-mp');
        this.monthPicker.enableDisplayMode('block');

        this.keyNav = new Ext.KeyNav(this.eventEl, {
            'left' : function(e){
                if(e.ctrlKey){
                    this.showPrevMonth();
                }else{
                    this.update(this.activeDate.add('d', -1));
                }
            },

            'right' : function(e){
                if(e.ctrlKey){
                    this.showNextMonth();
                }else{
                    this.update(this.activeDate.add('d', 1));
                }
            },

            'up' : function(e){
                if(e.ctrlKey){
                    this.showNextYear();
                }else{
                    this.update(this.activeDate.add('d', -7));
                }
            },

            'down' : function(e){
                if(e.ctrlKey){
                    this.showPrevYear();
                }else{
                    this.update(this.activeDate.add('d', 7));
                }
            },

            'pageUp' : function(e){
                this.showNextMonth();
            },

            'pageDown' : function(e){
                this.showPrevMonth();
            },

            'enter' : function(e){
                e.stopPropagation();
                return true;
            },

            scope : this
        });

        this.el.unselectable();

        this.cells = this.el.select('table.x-date-inner tbody td');
        this.textNodes = this.el.query('table.x-date-inner tbody span');

        this.mbtn = new Ext.Button({
            text: ' ',
            tooltip: this.monthYearText,
            renderTo: this.el.child('td.x-date-middle', true)
        });
        this.mbtn.el.child('em').addClass('x-btn-arrow');

        if(this.showToday){
            this.todayKeyListener = this.eventEl.addKeyListener(Ext.EventObject.SPACE, this.selectToday,  this);
            var today = (new Date()).dateFormat(this.format);
            this.todayBtn = new Ext.Button({
                renderTo: this.el.child('td.x-date-bottom', true),
                text: String.format(this.todayText, today),
                tooltip: String.format(this.todayTip, today),
                handler: this.selectToday,
                scope: this
            });
        }
        this.mon(this.eventEl, 'mousewheel', this.handleMouseWheel, this);
        this.mon(this.eventEl, 'click', this.handleDateClick,  this, {delegate: 'a.x-date-date'});
        this.mon(this.mbtn, 'click', this.showMonthPicker, this);
        this.onEnable(true);
    },

    // private
    createMonthPicker : function(){
        if(!this.monthPicker.dom.firstChild){
            var buf = [''];
            for(var i = 0; i < 6; i++){
                buf.push(
                    '',
                    '',
                    i === 0 ?
                    '' :
                    ''
                );
            }
            buf.push(
                '',
                '
    ', Date.getShortMonthName(i), '', Date.getShortMonthName(i + 6), '
    '
            );
            this.monthPicker.update(buf.join(''));

            this.mon(this.monthPicker, 'click', this.onMonthClick, this);
            this.mon(this.monthPicker, 'dblclick', this.onMonthDblClick, this);

            this.mpMonths = this.monthPicker.select('td.x-date-mp-month');
            this.mpYears = this.monthPicker.select('td.x-date-mp-year');

            this.mpMonths.each(function(m, a, i){
                i += 1;
                if((i%2) === 0){
                    m.dom.xmonth = 5 + Math.round(i * 0.5);
                }else{
                    m.dom.xmonth = Math.round((i-1) * 0.5);
                }
            });
        }
    },

    // private
    showMonthPicker : function(){
        if(!this.disabled){
            this.createMonthPicker();
            var size = this.el.getSize();
            this.monthPicker.setSize(size);
            this.monthPicker.child('table').setSize(size);

            this.mpSelMonth = (this.activeDate || this.value).getMonth();
            this.updateMPMonth(this.mpSelMonth);
            this.mpSelYear = (this.activeDate || this.value).getFullYear();
            this.updateMPYear(this.mpSelYear);

            this.monthPicker.slideIn('t', {duration:0.2});
        }
    },

    // private
    updateMPYear : function(y){
        this.mpyear = y;
        var ys = this.mpYears.elements;
        for(var i = 1; i <= 10; i++){
            var td = ys[i-1], y2;
            if((i%2) === 0){
                y2 = y + Math.round(i * 0.5);
                td.firstChild.innerHTML = y2;
                td.xyear = y2;
            }else{
                y2 = y - (5-Math.round(i * 0.5));
                td.firstChild.innerHTML = y2;
                td.xyear = y2;
            }
            this.mpYears.item(i-1)[y2 == this.mpSelYear ? 'addClass' : 'removeClass']('x-date-mp-sel');
        }
    },

    // private
    updateMPMonth : function(sm){
        this.mpMonths.each(function(m, a, i){
            m[m.dom.xmonth == sm ? 'addClass' : 'removeClass']('x-date-mp-sel');
        });
    },

    // private
    selectMPMonth : function(m){

    },

    // private
    onMonthClick : function(e, t){
        e.stopEvent();
        var el = new Ext.Element(t), pn;
        if(el.is('button.x-date-mp-cancel')){
            this.hideMonthPicker();
        }
        else if(el.is('button.x-date-mp-ok')){
            var d = new Date(this.mpSelYear, this.mpSelMonth, (this.activeDate || this.value).getDate());
            if(d.getMonth() != this.mpSelMonth){
                // 'fix' the JS rolling date conversion if needed
                d = new Date(this.mpSelYear, this.mpSelMonth, 1).getLastDateOfMonth();
            }
            this.update(d);
            this.hideMonthPicker();
        }
        else if((pn = el.up('td.x-date-mp-month', 2))){
            this.mpMonths.removeClass('x-date-mp-sel');
            pn.addClass('x-date-mp-sel');
            this.mpSelMonth = pn.dom.xmonth;
        }
        else if((pn = el.up('td.x-date-mp-year', 2))){
            this.mpYears.removeClass('x-date-mp-sel');
            pn.addClass('x-date-mp-sel');
            this.mpSelYear = pn.dom.xyear;
        }
        else if(el.is('a.x-date-mp-prev')){
            this.updateMPYear(this.mpyear-10);
        }
        else if(el.is('a.x-date-mp-next')){
            this.updateMPYear(this.mpyear+10);
        }
    },

    // private
    onMonthDblClick : function(e, t){
        e.stopEvent();
        var el = new Ext.Element(t), pn;
        if((pn = el.up('td.x-date-mp-month', 2))){
            this.update(new Date(this.mpSelYear, pn.dom.xmonth, (this.activeDate || this.value).getDate()));
            this.hideMonthPicker();
        }
        else if((pn = el.up('td.x-date-mp-year', 2))){
            this.update(new Date(pn.dom.xyear, this.mpSelMonth, (this.activeDate || this.value).getDate()));
            this.hideMonthPicker();
        }
    },

    // private
    hideMonthPicker : function(disableAnim){
        if(this.monthPicker){
            if(disableAnim === true){
                this.monthPicker.hide();
            }else{
                this.monthPicker.slideOut('t', {duration:0.2});
            }
        }
    },

    // private
    showPrevMonth : function(e){
        this.update(this.activeDate.add('mo', -1));
    },

    // private
    showNextMonth : function(e){
        this.update(this.activeDate.add('mo', 1));
    },

    // private
    showPrevYear : function(){
        this.update(this.activeDate.add('y', -1));
    },

    // private
    showNextYear : function(){
        this.update(this.activeDate.add('y', 1));
    },

    // private
    handleMouseWheel : function(e){
        e.stopEvent();
        if(!this.disabled){
            var delta = e.getWheelDelta();
            if(delta > 0){
                this.showPrevMonth();
            } else if(delta < 0){
                this.showNextMonth();
            }
        }
    },

    // private
    handleDateClick : function(e, t){
        e.stopEvent();
        if(!this.disabled && t.dateValue && !Ext.fly(t.parentNode).hasClass('x-date-disabled')){
            this.cancelFocus = this.focusOnSelect === false;
            this.setValue(new Date(t.dateValue));
            delete this.cancelFocus;
            this.fireEvent('select', this, this.value);
        }
    },

    // private
    selectToday : function(){
        if(this.todayBtn && !this.todayBtn.disabled){
            this.setValue(new Date().clearTime());
            this.fireEvent('select', this, this.value);
        }
    },

    // private
    update : function(date, forceRefresh){
        if(this.rendered){
            var vd = this.activeDate, vis = this.isVisible();
            this.activeDate = date;
            if(!forceRefresh && vd && this.el){
                var t = date.getTime();
                if(vd.getMonth() == date.getMonth() && vd.getFullYear() == date.getFullYear()){
                    this.cells.removeClass('x-date-selected');
                    this.cells.each(function(c){
                       if(c.dom.firstChild.dateValue == t){
                           c.addClass('x-date-selected');
                           if(vis && !this.cancelFocus){
                               Ext.fly(c.dom.firstChild).focus(50);
                           }
                           return false;
                       }
                    }, this);
                    return;
                }
            }
            var days = date.getDaysInMonth(),
                firstOfMonth = date.getFirstDateOfMonth(),
                startingPos = firstOfMonth.getDay()-this.startDay;

            if(startingPos < 0){
                startingPos += 7;
            }
            days += startingPos;

            var pm = date.add('mo', -1),
                prevStart = pm.getDaysInMonth()-startingPos,
                cells = this.cells.elements,
                textEls = this.textNodes,
                // convert everything to numbers so it's fast
                d = (new Date(pm.getFullYear(), pm.getMonth(), prevStart, this.initHour)),
                today = new Date().clearTime().getTime(),
                sel = date.clearTime(true).getTime(),
                min = this.minDate ? this.minDate.clearTime(true) : Number.NEGATIVE_INFINITY,
                max = this.maxDate ? this.maxDate.clearTime(true) : Number.POSITIVE_INFINITY,
                ddMatch = this.disabledDatesRE,
                ddText = this.disabledDatesText,
                ddays = this.disabledDays ? this.disabledDays.join('') : false,
                ddaysText = this.disabledDaysText,
                format = this.format;

            if(this.showToday){
                var td = new Date().clearTime(),
                    disable = (td < min || td > max ||
                    (ddMatch && format && ddMatch.test(td.dateFormat(format))) ||
                    (ddays && ddays.indexOf(td.getDay()) != -1));

                if(!this.disabled){
                    this.todayBtn.setDisabled(disable);
                    this.todayKeyListener[disable ? 'disable' : 'enable']();
                }
            }

            var setCellClass = function(cal, cell){
                cell.title = '';
                var t = d.clearTime(true).getTime();
                cell.firstChild.dateValue = t;
                if(t == today){
                    cell.className += ' x-date-today';
                    cell.title = cal.todayText;
                }
                if(t == sel){
                    cell.className += ' x-date-selected';
                    if(vis){
                        Ext.fly(cell.firstChild).focus(50);
                    }
                }
                // disabling
                if(t < min) {
                    cell.className = ' x-date-disabled';
                    cell.title = cal.minText;
                    return;
                }
                if(t > max) {
                    cell.className = ' x-date-disabled';
                    cell.title = cal.maxText;
                    return;
                }
                if(ddays){
                    if(ddays.indexOf(d.getDay()) != -1){
                        cell.title = ddaysText;
                        cell.className = ' x-date-disabled';
                    }
                }
                if(ddMatch && format){
                    var fvalue = d.dateFormat(format);
                    if(ddMatch.test(fvalue)){
                        cell.title = ddText.replace('%0', fvalue);
                        cell.className = ' x-date-disabled';
                    }
                }
            };

            var i = 0;
            for(; i < startingPos; i++) {
                textEls[i].innerHTML = (++prevStart);
                d.setDate(d.getDate()+1);
                cells[i].className = 'x-date-prevday';
                setCellClass(this, cells[i]);
            }
            for(; i < days; i++){
                var intDay = i - startingPos + 1;
                textEls[i].innerHTML = (intDay);
                d.setDate(d.getDate()+1);
                cells[i].className = 'x-date-active';
                setCellClass(this, cells[i]);
            }
            var extraDays = 0;
            for(; i < 42; i++) {
                 textEls[i].innerHTML = (++extraDays);
                 d.setDate(d.getDate()+1);
                 cells[i].className = 'x-date-nextday';
                 setCellClass(this, cells[i]);
            }

            this.mbtn.setText(this.monthNames[date.getMonth()] + ' ' + date.getFullYear());

            if(!this.internalRender){
                var main = this.el.dom.firstChild,
                    w = main.offsetWidth;
                this.el.setWidth(w + this.el.getBorderWidth('lr'));
                Ext.fly(main).setWidth(w);
                this.internalRender = true;
                // opera does not respect the auto grow header center column
                // then, after it gets a width opera refuses to recalculate
                // without a second pass
                if(Ext.isOpera && !this.secondPass){
                    main.rows[0].cells[1].style.width = (w - (main.rows[0].cells[0].offsetWidth+main.rows[0].cells[2].offsetWidth)) + 'px';
                    this.secondPass = true;
                    this.update.defer(10, this, [date]);
                }
            }
        }
    },

    // private
    beforeDestroy : function() {
        if(this.rendered){
            Ext.destroy(
                this.keyNav,
                this.monthPicker,
                this.eventEl,
                this.mbtn,
                this.nextRepeater,
                this.prevRepeater,
                this.cells.el,
                this.todayBtn
            );
            delete this.textNodes;
            delete this.cells.elements;
        }
    }

    /**
     * @cfg {String} autoEl @hide
     */
});

Ext.reg('datepicker', Ext.DatePicker);
/**
 * @class Ext.LoadMask
 * A simple utility class for generically masking elements while loading data.  If the {@link #store}
 * config option is specified, the masking will be automatically synchronized with the store's loading
 * process and the mask element will be cached for reuse.  For all other elements, this mask will replace the
 * element's Updater load indicator and will be destroyed after the initial load.
 * 
    Example usage:
    
 *
    
// Basic mask:
var myMask = new Ext.LoadMask(Ext.getBody(), {msg:"Please wait..."});
myMask.show();

    
 * @constructor
 * Create a new LoadMask
 * @param {Mixed} el The element or DOM node, or its id
 * @param {Object} config The config object
 */
Ext.LoadMask = function(el, config){
    this.el = Ext.get(el);
    Ext.apply(this, config);
    if(this.store){
        this.store.on({
            scope: this,
            beforeload: this.onBeforeLoad,
            load: this.onLoad,
            exception: this.onLoad
        });
        this.removeMask = Ext.value(this.removeMask, false);
    }else{
        var um = this.el.getUpdater();
        um.showLoadIndicator = false; // disable the default indicator
        um.on({
            scope: this,
            beforeupdate: this.onBeforeLoad,
            update: this.onLoad,
            failure: this.onLoad
        });
        this.removeMask = Ext.value(this.removeMask, true);
    }
};

Ext.LoadMask.prototype = {
    /**
     * @cfg {Ext.data.Store} store
     * Optional Store to which the mask is bound. The mask is displayed when a load request is issued, and
     * hidden on either load sucess, or load fail.
     */
    /**
     * @cfg {Boolean} removeMask
     * True to create a single-use mask that is automatically destroyed after loading (useful for page loads),
     * False to persist the mask element reference for multiple uses (e.g., for paged data widgets).  Defaults to false.
     */
    /**
     * @cfg {String} msg
     * The text to display in a centered loading message box (defaults to 'Loading...')
     */
    msg : 'Loading...',
    /**
     * @cfg {String} msgCls
     * The CSS class to apply to the loading message element (defaults to "x-mask-loading")
     */
    msgCls : 'x-mask-loading',

    /**
     * Read-only. True if the mask is currently disabled so that it will not be displayed (defaults to false)
     * @type Boolean
     */
    disabled: false,

    /**
     * Disables the mask to prevent it from being displayed
     */
    disable : function(){
       this.disabled = true;
    },

    /**
     * Enables the mask so that it can be displayed
     */
    enable : function(){
        this.disabled = false;
    },

    // private
    onLoad : function(){
        this.el.unmask(this.removeMask);
    },

    // private
    onBeforeLoad : function(){
        if(!this.disabled){
            this.el.mask(this.msg, this.msgCls);
        }
    },

    /**
     * Show this LoadMask over the configured Element.
     */
    show: function(){
        this.onBeforeLoad();
    },

    /**
     * Hide this LoadMask.
     */
    hide: function(){
        this.onLoad();
    },

    // private
    destroy : function(){
        if(this.store){
            this.store.un('beforeload', this.onBeforeLoad, this);
            this.store.un('load', this.onLoad, this);
            this.store.un('exception', this.onLoad, this);
        }else{
            var um = this.el.getUpdater();
            um.un('beforeupdate', this.onBeforeLoad, this);
            um.un('update', this.onLoad, this);
            um.un('failure', this.onLoad, this);
        }
    }
};/**
 * @class Ext.slider.Thumb
 * @extends Object
 * Represents a single thumb element on a Slider. This would not usually be created manually and would instead
 * be created internally by an {@link Ext.slider.MultiSlider Ext.Slider}.
 */
Ext.slider.Thumb = Ext.extend(Object, {
    
    /**
     * True while the thumb is in a drag operation
     * @type Boolean
     */
    dragging: false,

    /**
     * @constructor
     * @cfg {Ext.slider.MultiSlider} slider The Slider to render to (required)
     */
    constructor: function(config) {
        /**
         * @property slider
         * @type Ext.slider.MultiSlider
         * The slider this thumb is contained within
         */
        Ext.apply(this, config || {}, {
            cls: 'x-slider-thumb',

            /**
             * @cfg {Boolean} constrain True to constrain the thumb so that it cannot overlap its siblings
             */
            constrain: false
        });

        Ext.slider.Thumb.superclass.constructor.call(this, config);

        if (this.slider.vertical) {
            Ext.apply(this, Ext.slider.Thumb.Vertical);
        }
    },

    /**
     * Renders the thumb into a slider
     */
    render: function() {
        this.el = this.slider.innerEl.insertFirst({cls: this.cls});

        this.initEvents();
    },

    /**
     * Enables the thumb if it is currently disabled
     */
    enable: function() {
        this.disabled = false;
        this.el.removeClass(this.slider.disabledClass);
    },

    /**
     * Disables the thumb if it is currently enabled
     */
    disable: function() {
        this.disabled = true;
        this.el.addClass(this.slider.disabledClass);
    },

    /**
     * Sets up an Ext.dd.DragTracker for this thumb
     */
    initEvents: function() {
        var el = this.el;

        el.addClassOnOver('x-slider-thumb-over');

        this.tracker = new Ext.dd.DragTracker({
            onBeforeStart: this.onBeforeDragStart.createDelegate(this),
            onStart      : this.onDragStart.createDelegate(this),
            onDrag       : this.onDrag.createDelegate(this),
            onEnd        : this.onDragEnd.createDelegate(this),
            tolerance    : 3,
            autoStart    : 300
        });

        this.tracker.initEl(el);
    },

    /**
     * @private
     * This is tied into the internal Ext.dd.DragTracker. If the slider is currently disabled,
     * this returns false to disable the DragTracker too.
     * @return {Boolean} False if the slider is currently disabled
     */
    onBeforeDragStart : function(e) {
        if (this.disabled) {
            return false;
        } else {
            this.slider.promoteThumb(this);
            return true;
        }
    },

    /**
     * @private
     * This is tied into the internal Ext.dd.DragTracker's onStart template method. Adds the drag CSS class
     * to the thumb and fires the 'dragstart' event
     */
    onDragStart: function(e){
        this.el.addClass('x-slider-thumb-drag');
        this.dragging = true;
        this.dragStartValue = this.value;

        this.slider.fireEvent('dragstart', this.slider, e, this);
    },

    /**
     * @private
     * This is tied into the internal Ext.dd.DragTracker's onDrag template method. This is called every time
     * the DragTracker detects a drag movement. It updates the Slider's value using the position of the drag
     */
    onDrag: function(e) {
        var slider   = this.slider,
            index    = this.index,
            newValue = this.getNewValue();

        if (this.constrain) {
            var above = slider.thumbs[index + 1],
                below = slider.thumbs[index - 1];

            if (below != undefined && newValue <= below.value) newValue = below.value;
            if (above != undefined && newValue >= above.value) newValue = above.value;
        }

        slider.setValue(index, newValue, false);
        slider.fireEvent('drag', slider, e, this);
    },

    getNewValue: function() {
        var slider   = this.slider,
            pos      = slider.innerEl.translatePoints(this.tracker.getXY());

        return Ext.util.Format.round(slider.reverseValue(pos.left), slider.decimalPrecision);
    },

    /**
     * @private
     * This is tied to the internal Ext.dd.DragTracker's onEnd template method. Removes the drag CSS class and
     * fires the 'changecomplete' event with the new value
     */
    onDragEnd: function(e) {
        var slider = this.slider,
            value  = this.value;

        this.el.removeClass('x-slider-thumb-drag');

        this.dragging = false;
        slider.fireEvent('dragend', slider, e);

        if (this.dragStartValue != value) {
            slider.fireEvent('changecomplete', slider, value, this);
        }
    },
    
    /**
     * @private
     * Destroys the thumb
     */
    destroy: function(){
        Ext.destroyMembers(this, 'tracker', 'el');
    }
});

/**
 * @class Ext.slider.MultiSlider
 * @extends Ext.BoxComponent
 * Slider which supports vertical or horizontal orientation, keyboard adjustments, configurable snapping, axis clicking and animation. Can be added as an item to any container. Example usage:

    new Ext.Slider({
    renderTo: Ext.getBody(),
    width: 200,
    value: 50,
    increment: 10,
    minValue: 0,
    maxValue: 100
});

    
 * Sliders can be created with more than one thumb handle by passing an array of values instead of a single one:

    new Ext.Slider({
    renderTo: Ext.getBody(),
    width: 200,
    values: [25, 50, 75],
    minValue: 0,
    maxValue: 100,

    //this defaults to true, setting to false allows the thumbs to pass each other
    {@link #constrainThumbs}: false
});

    
 */
Ext.slider.MultiSlider = Ext.extend(Ext.BoxComponent, {
    /**
     * @cfg {Number} value The value to initialize the slider with. Defaults to minValue.
     */
    /**
     * @cfg {Boolean} vertical Orient the Slider vertically rather than horizontally, defaults to false.
     */
    vertical: false,
    /**
     * @cfg {Number} minValue The minimum value for the Slider. Defaults to 0.
     */
    minValue: 0,
    /**
     * @cfg {Number} maxValue The maximum value for the Slider. Defaults to 100.
     */
    maxValue: 100,
    /**
     * @cfg {Number/Boolean} decimalPrecision.
     * 
    The number of decimal places to which to round the Slider's value. Defaults to 0.
    
     * 
    To disable rounding, configure as false.
    
     */
    decimalPrecision: 0,
    /**
     * @cfg {Number} keyIncrement How many units to change the Slider when adjusting with keyboard navigation. Defaults to 1. If the increment config is larger, it will be used instead.
     */
    keyIncrement: 1,
    /**
     * @cfg {Number} increment How many units to change the slider when adjusting by drag and drop. Use this option to enable 'snapping'.
     */
    increment: 0,

    /**
     * @private
     * @property clickRange
     * @type Array
     * Determines whether or not a click to the slider component is considered to be a user request to change the value. Specified as an array of [top, bottom],
     * the click event's 'top' property is compared to these numbers and the click only considered a change request if it falls within them. e.g. if the 'top'
     * value of the click event is 4 or 16, the click is not considered a change request as it falls outside of the [5, 15] range
     */
    clickRange: [5,15],

    /**
     * @cfg {Boolean} clickToChange Determines whether or not clicking on the Slider axis will change the slider. Defaults to true
     */
    clickToChange : true,
    /**
     * @cfg {Boolean} animate Turn on or off animation. Defaults to true
     */
    animate: true,
    /**
     * @cfg {Boolean} constrainThumbs True to disallow thumbs from overlapping one another. Defaults to true
     */
    constrainThumbs: true,

    /**
     * @private
     * @property topThumbZIndex
     * @type Number
     * The number used internally to set the z index of the top thumb (see promoteThumb for details)
     */
    topThumbZIndex: 10000,

    // private override
    initComponent : function(){
        if(!Ext.isDefined(this.value)){
            this.value = this.minValue;
        }

        /**
         * @property thumbs
         * @type Array
         * Array containing references to each thumb
         */
        this.thumbs = [];

        Ext.slider.MultiSlider.superclass.initComponent.call(this);

        this.keyIncrement = Math.max(this.increment, this.keyIncrement);
        this.addEvents(
            /**
             * @event beforechange
             * Fires before the slider value is changed. By returning false from an event handler,
             * you can cancel the event and prevent the slider from changing.
             * @param {Ext.slider.MultiSlider} slider The slider
             * @param {Number} newValue The new value which the slider is being changed to.
             * @param {Number} oldValue The old value which the slider was previously.
             */
            'beforechange',

            /**
             * @event change
             * Fires when the slider value is changed.
             * @param {Ext.slider.MultiSlider} slider The slider
             * @param {Number} newValue The new value which the slider has been changed to.
             * @param {Ext.slider.Thumb} thumb The thumb that was changed
             */
            'change',

            /**
             * @event changecomplete
             * Fires when the slider value is changed by the user and any drag operations have completed.
             * @param {Ext.slider.MultiSlider} slider The slider
             * @param {Number} newValue The new value which the slider has been changed to.
             * @param {Ext.slider.Thumb} thumb The thumb that was changed
             */
            'changecomplete',

            /**
             * @event dragstart
             * Fires after a drag operation has started.
             * @param {Ext.slider.MultiSlider} slider The slider
             * @param {Ext.EventObject} e The event fired from Ext.dd.DragTracker
             */
            'dragstart',

            /**
             * @event drag
             * Fires continuously during the drag operation while the mouse is moving.
             * @param {Ext.slider.MultiSlider} slider The slider
             * @param {Ext.EventObject} e The event fired from Ext.dd.DragTracker
             */
            'drag',

            /**
             * @event dragend
             * Fires after the drag operation has completed.
             * @param {Ext.slider.MultiSlider} slider The slider
             * @param {Ext.EventObject} e The event fired from Ext.dd.DragTracker
             */
            'dragend'
        );

        /**
         * @property values
         * @type Array
         * Array of values to initalize the thumbs with
         */
        if (this.values == undefined || Ext.isEmpty(this.values)) this.values = [0];

        var values = this.values;

        for (var i=0; i < values.length; i++) {
            this.addThumb(values[i]);
        }

        if(this.vertical){
            Ext.apply(this, Ext.slider.Vertical);
        }
    },

    /**
     * Creates a new thumb and adds it to the slider
     * @param {Number} value The initial value to set on the thumb. Defaults to 0
     */
    addThumb: function(value) {
        var thumb = new Ext.slider.Thumb({
            value    : value,
            slider   : this,
            index    : this.thumbs.length,
            constrain: this.constrainThumbs
        });
        this.thumbs.push(thumb);

        //render the thumb now if needed
        if (this.rendered) thumb.render();
    },

    /**
     * @private
     * Moves the given thumb above all other by increasing its z-index. This is called when as drag
     * any thumb, so that the thumb that was just dragged is always at the highest z-index. This is
     * required when the thumbs are stacked on top of each other at one of the ends of the slider's
     * range, which can result in the user not being able to move any of them.
     * @param {Ext.slider.Thumb} topThumb The thumb to move to the top
     */
    promoteThumb: function(topThumb) {
        var thumbs = this.thumbs,
            zIndex, thumb;

        for (var i = 0, j = thumbs.length; i < j; i++) {
            thumb = thumbs[i];

            if (thumb == topThumb) {
                zIndex = this.topThumbZIndex;
            } else {
                zIndex = '';
            }

            thumb.el.setStyle('zIndex', zIndex);
        }
    },

    // private override
    onRender : function() {
        this.autoEl = {
            cls: 'x-slider ' + (this.vertical ? 'x-slider-vert' : 'x-slider-horz'),
            cn : {
                cls: 'x-slider-end',
                cn : {
                    cls:'x-slider-inner',
                    cn : [{tag:'a', cls:'x-slider-focus', href:"#", tabIndex: '-1', hidefocus:'on'}]
                }
            }
        };

        Ext.slider.MultiSlider.superclass.onRender.apply(this, arguments);

        this.endEl   = this.el.first();
        this.innerEl = this.endEl.first();
        this.focusEl = this.innerEl.child('.x-slider-focus');

        //render each thumb
        for (var i=0; i < this.thumbs.length; i++) {
            this.thumbs[i].render();
        }

        //calculate the size of half a thumb
        var thumb      = this.innerEl.child('.x-slider-thumb');
        this.halfThumb = (this.vertical ? thumb.getHeight() : thumb.getWidth()) / 2;

        this.initEvents();
    },

    /**
     * @private
     * Adds keyboard and mouse listeners on this.el. Ignores click events on the internal focus element.
     * Creates a new DragTracker which is used to control what happens when the user drags the thumb around.
     */
    initEvents : function(){
        this.mon(this.el, {
            scope    : this,
            mousedown: this.onMouseDown,
            keydown  : this.onKeyDown
        });

        this.focusEl.swallowEvent("click", true);
    },

    /**
     * @private
     * Mousedown handler for the slider. If the clickToChange is enabled and the click was not on the draggable 'thumb',
     * this calculates the new value of the slider and tells the implementation (Horizontal or Vertical) to move the thumb
     * @param {Ext.EventObject} e The click event
     */
    onMouseDown : function(e){
        if(this.disabled){
            return;
        }

        //see if the click was on any of the thumbs
        var thumbClicked = false;
        for (var i=0; i < this.thumbs.length; i++) {
            thumbClicked = thumbClicked || e.target == this.thumbs[i].el.dom;
        }

        if (this.clickToChange && !thumbClicked) {
            var local = this.innerEl.translatePoints(e.getXY());
            this.onClickChange(local);
        }
        this.focus();
    },

    /**
     * @private
     * Moves the thumb to the indicated position. Note that a Vertical implementation is provided in Ext.slider.Vertical.
     * Only changes the value if the click was within this.clickRange.
     * @param {Object} local Object containing top and left values for the click event.
     */
    onClickChange : function(local) {
        if (local.top > this.clickRange[0] && local.top < this.clickRange[1]) {
            //find the nearest thumb to the click event
            var thumb = this.getNearest(local, 'left'),
                index = thumb.index;

            this.setValue(index, Ext.util.Format.round(this.reverseValue(local.left), this.decimalPrecision), undefined, true);
        }
    },

    /**
     * @private
     * Returns the nearest thumb to a click event, along with its distance
     * @param {Object} local Object containing top and left values from a click event
     * @param {String} prop The property of local to compare on. Use 'left' for horizontal sliders, 'top' for vertical ones
     * @return {Object} The closest thumb object and its distance from the click event
     */
    getNearest: function(local, prop) {
        var localValue = prop == 'top' ? this.innerEl.getHeight() - local[prop] : local[prop],
            clickValue = this.reverseValue(localValue),
            nearestDistance = (this.maxValue - this.minValue) + 5, //add a small fudge for the end of the slider 
            index = 0,
            nearest = null;

        for (var i=0; i < this.thumbs.length; i++) {
            var thumb = this.thumbs[i],
                value = thumb.value,
                dist  = Math.abs(value - clickValue);

            if (Math.abs(dist <= nearestDistance)) {
                nearest = thumb;
                index = i;
                nearestDistance = dist;
            }
        }
        return nearest;
    },

    /**
     * @private
     * Handler for any keypresses captured by the slider. If the key is UP or RIGHT, the thumb is moved along to the right
     * by this.keyIncrement. If DOWN or LEFT it is moved left. Pressing CTRL moves the slider to the end in either direction
     * @param {Ext.EventObject} e The Event object
     */
    onKeyDown : function(e){
        /*
         * The behaviour for keyboard handling with multiple thumbs is currently undefined.
         * There's no real sane default for it, so leave it like this until we come up
         * with a better way of doing it.
         */
        if(this.disabled || this.thumbs.length !== 1){
            e.preventDefault();
            return;
        }
        var k = e.getKey(),
            val;
        switch(k){
            case e.UP:
            case e.RIGHT:
                e.stopEvent();
                val = e.ctrlKey ? this.maxValue : this.getValue(0) + this.keyIncrement;
                this.setValue(0, val, undefined, true);
            break;
            case e.DOWN:
            case e.LEFT:
                e.stopEvent();
                val = e.ctrlKey ? this.minValue : this.getValue(0) - this.keyIncrement;
                this.setValue(0, val, undefined, true);
            break;
            default:
                e.preventDefault();
        }
    },

    /**
     * @private
     * If using snapping, this takes a desired new value and returns the closest snapped
     * value to it
     * @param {Number} value The unsnapped value
     * @return {Number} The value of the nearest snap target
     */
    doSnap : function(value){
        if (!(this.increment && value)) {
            return value;
        }
        var newValue = value,
            inc = this.increment,
            m = value % inc;
        if (m != 0) {
            newValue -= m;
            if (m * 2 >= inc) {
                newValue += inc;
            } else if (m * 2 < -inc) {
                newValue -= inc;
            }
        }
        return newValue.constrain(this.minValue,  this.maxValue);
    },

    // private
    afterRender : function(){
        Ext.slider.MultiSlider.superclass.afterRender.apply(this, arguments);

        for (var i=0; i < this.thumbs.length; i++) {
            var thumb = this.thumbs[i];

            if (thumb.value !== undefined) {
                var v = this.normalizeValue(thumb.value);

                if (v !== thumb.value) {
                    // delete this.value;
                    this.setValue(i, v, false);
                } else {
                    this.moveThumb(i, this.translateValue(v), false);
                }
            }
        };
    },

    /**
     * @private
     * Returns the ratio of pixels to mapped values. e.g. if the slider is 200px wide and maxValue - minValue is 100,
     * the ratio is 2
     * @return {Number} The ratio of pixels to mapped values
     */
    getRatio : function(){
        var w = this.innerEl.getWidth(),
            v = this.maxValue - this.minValue;
        return v == 0 ? w : (w/v);
    },

    /**
     * @private
     * Returns a snapped, constrained value when given a desired value
     * @param {Number} value Raw number value
     * @return {Number} The raw value rounded to the correct d.p. and constrained within the set max and min values
     */
    normalizeValue : function(v){
        v = this.doSnap(v);
        v = Ext.util.Format.round(v, this.decimalPrecision);
        v = v.constrain(this.minValue, this.maxValue);
        return v;
    },

    /**
     * Sets the minimum value for the slider instance. If the current value is less than the
     * minimum value, the current value will be changed.
     * @param {Number} val The new minimum value
     */
    setMinValue : function(val){
        this.minValue = val;
        var i = 0,
            thumbs = this.thumbs,
            len = thumbs.length,
            t;
            
        for(; i < len; ++i){
            t = thumbs[i];
            t.value = t.value < val ? val : t.value;
        }
        this.syncThumb();
    },

    /**
     * Sets the maximum value for the slider instance. If the current value is more than the
     * maximum value, the current value will be changed.
     * @param {Number} val The new maximum value
     */
    setMaxValue : function(val){
        this.maxValue = val;
        var i = 0,
            thumbs = this.thumbs,
            len = thumbs.length,
            t;
            
        for(; i < len; ++i){
            t = thumbs[i];
            t.value = t.value > val ? val : t.value;
        }
        this.syncThumb();
    },

    /**
     * Programmatically sets the value of the Slider. Ensures that the value is constrained within
     * the minValue and maxValue.
     * @param {Number} index Index of the thumb to move
     * @param {Number} value The value to set the slider to. (This will be constrained within minValue and maxValue)
     * @param {Boolean} animate Turn on or off animation, defaults to true
     */
    setValue : function(index, v, animate, changeComplete) {
        var thumb = this.thumbs[index],
            el    = thumb.el;

        v = this.normalizeValue(v);

        if (v !== thumb.value && this.fireEvent('beforechange', this, v, thumb.value, thumb) !== false) {
            thumb.value = v;
            if(this.rendered){
                this.moveThumb(index, this.translateValue(v), animate !== false);
                this.fireEvent('change', this, v, thumb);
                if(changeComplete){
                    this.fireEvent('changecomplete', this, v, thumb);
                }
            }
        }
    },

    /**
     * @private
     */
    translateValue : function(v) {
        var ratio = this.getRatio();
        return (v * ratio) - (this.minValue * ratio) - this.halfThumb;
    },

    /**
     * @private
     * Given a pixel location along the slider, returns the mapped slider value for that pixel.
     * E.g. if we have a slider 200px wide with minValue = 100 and maxValue = 500, reverseValue(50)
     * returns 200
     * @param {Number} pos The position along the slider to return a mapped value for
     * @return {Number} The mapped value for the given position
     */
    reverseValue : function(pos){
        var ratio = this.getRatio();
        return (pos + (this.minValue * ratio)) / ratio;
    },

    /**
     * @private
     * @param {Number} index Index of the thumb to move
     */
    moveThumb: function(index, v, animate){
        var thumb = this.thumbs[index].el;

        if(!animate || this.animate === false){
            thumb.setLeft(v);
        }else{
            thumb.shift({left: v, stopFx: true, duration:.35});
        }
    },

    // private
    focus : function(){
        this.focusEl.focus(10);
    },

    // private
    onResize : function(w, h){
        var thumbs = this.thumbs,
            len = thumbs.length,
            i = 0;
            
        /*
         * If we happen to be animating during a resize, the position of the thumb will likely be off
         * when the animation stops. As such, just stop any animations before syncing the thumbs.
         */
        for(; i < len; ++i){
            thumbs[i].el.stopFx();    
        }
        // check to see if we're using an auto width
        if(Ext.isNumber(w)){
            this.innerEl.setWidth(w - (this.el.getPadding('l') + this.endEl.getPadding('r')));
        }
        this.syncThumb();
        Ext.slider.MultiSlider.superclass.onResize.apply(this, arguments);
    },

    //private
    onDisable: function(){
        Ext.slider.MultiSlider.superclass.onDisable.call(this);

        for (var i=0; i < this.thumbs.length; i++) {
            var thumb = this.thumbs[i],
                el    = thumb.el;

            thumb.disable();

            if(Ext.isIE){
                //IE breaks when using overflow visible and opacity other than 1.
                //Create a place holder for the thumb and display it.
                var xy = el.getXY();
                el.hide();

                this.innerEl.addClass(this.disabledClass).dom.disabled = true;

                if (!this.thumbHolder) {
                    this.thumbHolder = this.endEl.createChild({cls: 'x-slider-thumb ' + this.disabledClass});
                }

                this.thumbHolder.show().setXY(xy);
            }
        }
    },

    //private
    onEnable: function(){
        Ext.slider.MultiSlider.superclass.onEnable.call(this);

        for (var i=0; i < this.thumbs.length; i++) {
            var thumb = this.thumbs[i],
                el    = thumb.el;

            thumb.enable();

            if (Ext.isIE) {
                this.innerEl.removeClass(this.disabledClass).dom.disabled = false;

                if (this.thumbHolder) this.thumbHolder.hide();

                el.show();
                this.syncThumb();
            }
        }
    },

    /**
     * Synchronizes the thumb position to the proper proportion of the total component width based
     * on the current slider {@link #value}.  This will be called automatically when the Slider
     * is resized by a layout, but if it is rendered auto width, this method can be called from
     * another resize handler to sync the Slider if necessary.
     */
    syncThumb : function() {
        if (this.rendered) {
            for (var i=0; i < this.thumbs.length; i++) {
                this.moveThumb(i, this.translateValue(this.thumbs[i].value));
            }
        }
    },

    /**
     * Returns the current value of the slider
     * @param {Number} index The index of the thumb to return a value for
     * @return {Number} The current value of the slider
     */
    getValue : function(index) {
        return this.thumbs[index].value;
    },

    /**
     * Returns an array of values - one for the location of each thumb
     * @return {Array} The set of thumb values
     */
    getValues: function() {
        var values = [];

        for (var i=0; i < this.thumbs.length; i++) {
            values.push(this.thumbs[i].value);
        }

        return values;
    },

    // private
    beforeDestroy : function(){
        var thumbs = this.thumbs;
        for(var i = 0, len = thumbs.length; i < len; ++i){
            thumbs[i].destroy();
            thumbs[i] = null;
        }
        Ext.destroyMembers(this, 'endEl', 'innerEl', 'focusEl', 'thumbHolder');
        Ext.slider.MultiSlider.superclass.beforeDestroy.call(this);
    }
});

Ext.reg('multislider', Ext.slider.MultiSlider);

/**
 * @class Ext.slider.SingleSlider
 * @extends Ext.slider.MultiSlider
 * Slider which supports vertical or horizontal orientation, keyboard adjustments,
 * configurable snapping, axis clicking and animation. Can be added as an item to
 * any container. Example usage:

    
new Ext.slider.SingleSlider({
    renderTo: Ext.getBody(),
    width: 200,
    value: 50,
    increment: 10,
    minValue: 0,
    maxValue: 100
});

    
 * The class Ext.slider.SingleSlider is aliased to Ext.Slider for backwards compatibility.
 */
Ext.slider.SingleSlider = Ext.extend(Ext.slider.MultiSlider, {
    constructor: function(config) {
      config = config || {};

      Ext.applyIf(config, {
          values: [config.value || 0]
      });

      Ext.slider.SingleSlider.superclass.constructor.call(this, config);
    },

    /**
     * Returns the current value of the slider
     * @return {Number} The current value of the slider
     */
    getValue: function() {
        //just returns the value of the first thumb, which should be the only one in a single slider
        return Ext.slider.SingleSlider.superclass.getValue.call(this, 0);
    },

    /**
     * Programmatically sets the value of the Slider. Ensures that the value is constrained within
     * the minValue and maxValue.
     * @param {Number} value The value to set the slider to. (This will be constrained within minValue and maxValue)
     * @param {Boolean} animate Turn on or off animation, defaults to true
     */
    setValue: function(value, animate) {
        var args = Ext.toArray(arguments),
            len  = args.length;

        //this is to maintain backwards compatiblity for sliders with only one thunb. Usually you must pass the thumb
        //index to setValue, but if we only have one thumb we inject the index here first if given the multi-slider
        //signature without the required index. The index will always be 0 for a single slider
        if (len == 1 || (len <= 3 && typeof arguments[1] != 'number')) {
            args.unshift(0);
        }

        return Ext.slider.SingleSlider.superclass.setValue.apply(this, args);
    },

    /**
     * Synchronizes the thumb position to the proper proportion of the total component width based
     * on the current slider {@link #value}.  This will be called automatically when the Slider
     * is resized by a layout, but if it is rendered auto width, this method can be called from
     * another resize handler to sync the Slider if necessary.
     */
    syncThumb : function() {
        return Ext.slider.SingleSlider.superclass.syncThumb.apply(this, [0].concat(arguments));
    },
    
    // private
    getNearest : function(){
        // Since there's only 1 thumb, it's always the nearest
        return this.thumbs[0];    
    }
});

//backwards compatibility
Ext.Slider = Ext.slider.SingleSlider;

Ext.reg('slider', Ext.slider.SingleSlider);

// private class to support vertical sliders
Ext.slider.Vertical = {
    onResize : function(w, h){
        this.innerEl.setHeight(h - (this.el.getPadding('t') + this.endEl.getPadding('b')));
        this.syncThumb();
    },

    getRatio : function(){
        var h = this.innerEl.getHeight(),
            v = this.maxValue - this.minValue;
        return h/v;
    },

    moveThumb: function(index, v, animate) {
        var thumb = this.thumbs[index],
            el    = thumb.el;

        if (!animate || this.animate === false) {
            el.setBottom(v);
        } else {
            el.shift({bottom: v, stopFx: true, duration:.35});
        }
    },

    onClickChange : function(local) {
        if (local.left > this.clickRange[0] && local.left < this.clickRange[1]) {
            var thumb = this.getNearest(local, 'top'),
                index = thumb.index,
                value = this.minValue + this.reverseValue(this.innerEl.getHeight() - local.top);

            this.setValue(index, Ext.util.Format.round(value, this.decimalPrecision), undefined, true);
        }
    }
};

//private class to support vertical dragging of thumbs within a slider
Ext.slider.Thumb.Vertical = {
    getNewValue: function() {
        var slider   = this.slider,
            innerEl  = slider.innerEl,
            pos      = innerEl.translatePoints(this.tracker.getXY()),
            bottom   = innerEl.getHeight() - pos.top;

        return slider.minValue + Ext.util.Format.round(bottom / slider.getRatio(), slider.decimalPrecision);
    }
};
/**
 * @class Ext.ProgressBar
 * @extends Ext.BoxComponent
 * 
    An updateable progress bar component.  The progress bar supports two different modes: manual and automatic.
    
 * 
    In manual mode, you are responsible for showing, updating (via {@link #updateProgress}) and clearing the
 * progress bar as needed from your own code.  This method is most appropriate when you want to show progress
 * throughout an operation that has predictable points of interest at which you can update the control.
    
 * 
    In automatic mode, you simply call {@link #wait} and let the progress bar run indefinitely, only clearing it
 * once the operation is complete.  You can optionally have the progress bar wait for a specific amount of time
 * and then clear itself.  Automatic mode is most appropriate for timed operations or asynchronous operations in
 * which you have no need for indicating intermediate progress.
    
 * @cfg {Float} value A floating point value between 0 and 1 (e.g., .5, defaults to 0)
 * @cfg {String} text The progress bar text (defaults to '')
 * @cfg {Mixed} textEl The element to render the progress text to (defaults to the progress
 * bar's internal text element)
 * @cfg {String} id The progress bar element's id (defaults to an auto-generated id)
 * @xtype progress
 */
Ext.ProgressBar = Ext.extend(Ext.BoxComponent, {
   /**
    * @cfg {String} baseCls
    * The base CSS class to apply to the progress bar's wrapper element (defaults to 'x-progress')
    */
    baseCls : 'x-progress',
    
    /**
    * @cfg {Boolean} animate
    * True to animate the progress bar during transitions (defaults to false)
    */
    animate : false,

    // private
    waitTimer : null,

    // private
    initComponent : function(){
        Ext.ProgressBar.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event update
             * Fires after each update interval
             * @param {Ext.ProgressBar} this
             * @param {Number} value  The current progress value
             * @param {String} text The current progress text
             */
            "update"
        );
    },

    // private
    onRender : function(ct, position){
        var tpl = new Ext.Template(
            '
    ',
                '
    ',
                    '
    ',
                        '
    ',
                            '
     
    ',
                        '
    ',
                    '
    ',
                    '
    ',
                        '
     
    ',
                    '
    ',
                '
    ',
            '
    '
        );

        this.el = position ? tpl.insertBefore(position, {cls: this.baseCls}, true)
            : tpl.append(ct, {cls: this.baseCls}, true);
                
        if(this.id){
            this.el.dom.id = this.id;
        }
        var inner = this.el.dom.firstChild;
        this.progressBar = Ext.get(inner.firstChild);

        if(this.textEl){
            //use an external text el
            this.textEl = Ext.get(this.textEl);
            delete this.textTopEl;
        }else{
            //setup our internal layered text els
            this.textTopEl = Ext.get(this.progressBar.dom.firstChild);
            var textBackEl = Ext.get(inner.childNodes[1]);
            this.textTopEl.setStyle("z-index", 99).addClass('x-hidden');
            this.textEl = new Ext.CompositeElement([this.textTopEl.dom.firstChild, textBackEl.dom.firstChild]);
            this.textEl.setWidth(inner.offsetWidth);
        }
        this.progressBar.setHeight(inner.offsetHeight);
    },
    
    // private
    afterRender : function(){
        Ext.ProgressBar.superclass.afterRender.call(this);
        if(this.value){
            this.updateProgress(this.value, this.text);
        }else{
            this.updateText(this.text);
        }
    },

    /**
     * Updates the progress bar value, and optionally its text.  If the text argument is not specified,
     * any existing text value will be unchanged.  To blank out existing text, pass ''.  Note that even
     * if the progress bar value exceeds 1, it will never automatically reset -- you are responsible for
     * determining when the progress is complete and calling {@link #reset} to clear and/or hide the control.
     * @param {Float} value (optional) A floating point value between 0 and 1 (e.g., .5, defaults to 0)
     * @param {String} text (optional) The string to display in the progress text element (defaults to '')
     * @param {Boolean} animate (optional) Whether to animate the transition of the progress bar. If this value is
     * not specified, the default for the class is used (default to false)
     * @return {Ext.ProgressBar} this
     */
    updateProgress : function(value, text, animate){
        this.value = value || 0;
        if(text){
            this.updateText(text);
        }
        if(this.rendered && !this.isDestroyed){
            var w = Math.floor(value*this.el.dom.firstChild.offsetWidth);
            this.progressBar.setWidth(w, animate === true || (animate !== false && this.animate));
            if(this.textTopEl){
                //textTopEl should be the same width as the bar so overflow will clip as the bar moves
                this.textTopEl.removeClass('x-hidden').setWidth(w);
            }
        }
        this.fireEvent('update', this, value, text);
        return this;
    },

    /**
     * Initiates an auto-updating progress bar.  A duration can be specified, in which case the progress
     * bar will automatically reset after a fixed amount of time and optionally call a callback function
     * if specified.  If no duration is passed in, then the progress bar will run indefinitely and must
     * be manually cleared by calling {@link #reset}.  The wait method accepts a config object with
     * the following properties:
     * 
    Property   Type          Description
---------- ------------  ----------------------------------------------------------------------
duration   Number        The length of time in milliseconds that the progress bar should
                         run before resetting itself (defaults to undefined, in which case it
                         will run indefinitely until reset is called)
interval   Number        The length of time in milliseconds between each progress update
                         (defaults to 1000 ms)
animate    Boolean       Whether to animate the transition of the progress bar. If this value is
                         not specified, the default for the class is used.                                                   
increment  Number        The number of progress update segments to display within the progress
                         bar (defaults to 10).  If the bar reaches the end and is still
                         updating, it will automatically wrap back to the beginning.
text       String        Optional text to display in the progress bar element (defaults to '').
fn         Function      A callback function to execute after the progress bar finishes auto-
                         updating.  The function will be called with no arguments.  This function
                         will be ignored if duration is not specified since in that case the
                         progress bar can only be stopped programmatically, so any required function
                         should be called by the same code after it resets the progress bar.
scope      Object        The scope that is passed to the callback function (only applies when
                         duration and fn are both passed).

    
         *
         * Example usage:
         * 
    
var p = new Ext.ProgressBar({
   renderTo: 'my-el'
});

//Wait for 5 seconds, then update the status el (progress bar will auto-reset)
p.wait({
   interval: 100, //bar will move fast!
   duration: 5000,
   increment: 15,
   text: 'Updating...',
   scope: this,
   fn: function(){
      Ext.fly('status').update('Done!');
   }
});

//Or update indefinitely until some async action completes, then reset manually
p.wait();
myAction.on('complete', function(){
    p.reset();
    Ext.fly('status').update('Done!');
});

    
     * @param {Object} config (optional) Configuration options
     * @return {Ext.ProgressBar} this
     */
    wait : function(o){
        if(!this.waitTimer){
            var scope = this;
            o = o || {};
            this.updateText(o.text);
            this.waitTimer = Ext.TaskMgr.start({
                run: function(i){
                    var inc = o.increment || 10;
                    i -= 1;
                    this.updateProgress(((((i+inc)%inc)+1)*(100/inc))*0.01, null, o.animate);
                },
                interval: o.interval || 1000,
                duration: o.duration,
                onStop: function(){
                    if(o.fn){
                        o.fn.apply(o.scope || this);
                    }
                    this.reset();
                },
                scope: scope
            });
        }
        return this;
    },

    /**
     * Returns true if the progress bar is currently in a {@link #wait} operation
     * @return {Boolean} True if waiting, else false
     */
    isWaiting : function(){
        return this.waitTimer !== null;
    },

    /**
     * Updates the progress bar text.  If specified, textEl will be updated, otherwise the progress
     * bar itself will display the updated text.
     * @param {String} text (optional) The string to display in the progress text element (defaults to '')
     * @return {Ext.ProgressBar} this
     */
    updateText : function(text){
        this.text = text || ' ';
        if(this.rendered){
            this.textEl.update(this.text);
        }
        return this;
    },
    
    /**
     * Synchronizes the inner bar width to the proper proportion of the total componet width based
     * on the current progress {@link #value}.  This will be called automatically when the ProgressBar
     * is resized by a layout, but if it is rendered auto width, this method can be called from
     * another resize handler to sync the ProgressBar if necessary.
     */
    syncProgressBar : function(){
        if(this.value){
            this.updateProgress(this.value, this.text);
        }
        return this;
    },

    /**
     * Sets the size of the progress bar.
     * @param {Number} width The new width in pixels
     * @param {Number} height The new height in pixels
     * @return {Ext.ProgressBar} this
     */
    setSize : function(w, h){
        Ext.ProgressBar.superclass.setSize.call(this, w, h);
        if(this.textTopEl){
            var inner = this.el.dom.firstChild;
            this.textEl.setSize(inner.offsetWidth, inner.offsetHeight);
        }
        this.syncProgressBar();
        return this;
    },

    /**
     * Resets the progress bar value to 0 and text to empty string.  If hide = true, the progress
     * bar will also be hidden (using the {@link #hideMode} property internally).
     * @param {Boolean} hide (optional) True to hide the progress bar (defaults to false)
     * @return {Ext.ProgressBar} this
     */
    reset : function(hide){
        this.updateProgress(0);
        if(this.textTopEl){
            this.textTopEl.addClass('x-hidden');
        }
        this.clearTimer();
        if(hide === true){
            this.hide();
        }
        return this;
    },
    
    // private
    clearTimer : function(){
        if(this.waitTimer){
            this.waitTimer.onStop = null; //prevent recursion
            Ext.TaskMgr.stop(this.waitTimer);
            this.waitTimer = null;
        }
    },
    
    onDestroy: function(){
        this.clearTimer();
        if(this.rendered){
            if(this.textEl.isComposite){
                this.textEl.clear();
            }
            Ext.destroyMembers(this, 'textEl', 'progressBar', 'textTopEl');
        }
        Ext.ProgressBar.superclass.onDestroy.call(this);
    }
});
Ext.reg('progress', Ext.ProgressBar);/*
 * These classes are derivatives of the similarly named classes in the YUI Library.
 * The original license:
 * Copyright (c) 2006, Yahoo! Inc. All rights reserved.
 * Code licensed under the BSD License:
 * http://developer.yahoo.net/yui/license.txt
 */

(function() {

var Event=Ext.EventManager;
var Dom=Ext.lib.Dom;

/**
 * @class Ext.dd.DragDrop
 * Defines the interface and base operation of items that that can be
 * dragged or can be drop targets.  It was designed to be extended, overriding
 * the event handlers for startDrag, onDrag, onDragOver and onDragOut.
 * Up to three html elements can be associated with a DragDrop instance:
 * 
      
 * 
    • linked element: the element that is passed into the constructor.
 * This is the element which defines the boundaries for interaction with
 * other DragDrop objects.
      • 
 * 
    • handle element(s): The drag operation only occurs if the element that
 * was clicked matches a handle element.  By default this is the linked
 * element, but there are times that you will want only a portion of the
 * linked element to initiate the drag operation, and the setHandleElId()
 * method provides a way to define this.
      • 
 * 
    • drag element: this represents the element that would be moved along
 * with the cursor during a drag operation.  By default, this is the linked
 * element itself as in {@link Ext.dd.DD}.  setDragElId() lets you define
 * a separate element that would be moved, as in {@link Ext.dd.DDProxy}.
 * 
      • 
 * 
    
 * This class should not be instantiated until the onload event to ensure that
 * the associated elements are available.
 * The following would define a DragDrop obj that would interact with any
 * other DragDrop obj in the "group1" group:
 * 
     *  dd = new Ext.dd.DragDrop("div1", "group1");
 * 
    
 * Since none of the event handlers have been implemented, nothing would
 * actually happen if you were to run the code above.  Normally you would
 * override this class or one of the default implementations, but you can
 * also override the methods you want on an instance of the class...
 * 
     *  dd.onDragDrop = function(e, id) {
 *    alert("dd was dropped on " + id);
 *  }
 * 
    
 * @constructor
 * @param {String} id of the element that is linked to this instance
 * @param {String} sGroup the group of related DragDrop objects
 * @param {object} config an object containing configurable attributes
 *                Valid properties for DragDrop:
 *                    padding, isTarget, maintainOffset, primaryButtonOnly
 */
Ext.dd.DragDrop = function(id, sGroup, config) {
    if(id) {
        this.init(id, sGroup, config);
    }
};

Ext.dd.DragDrop.prototype = {

    /**
     * Set to false to enable a DragDrop object to fire drag events while dragging
     * over its own Element. Defaults to true - DragDrop objects do not by default
     * fire drag events to themselves.
     * @property ignoreSelf
     * @type Boolean
     */

    /**
     * The id of the element associated with this object.  This is what we
     * refer to as the "linked element" because the size and position of
     * this element is used to determine when the drag and drop objects have
     * interacted.
     * @property id
     * @type String
     */
    id: null,

    /**
     * Configuration attributes passed into the constructor
     * @property config
     * @type object
     */
    config: null,

    /**
     * The id of the element that will be dragged.  By default this is same
     * as the linked element, but could be changed to another element. Ex:
     * Ext.dd.DDProxy
     * @property dragElId
     * @type String
     * @private
     */
    dragElId: null,

    /**
     * The ID of the element that initiates the drag operation.  By default
     * this is the linked element, but could be changed to be a child of this
     * element.  This lets us do things like only starting the drag when the
     * header element within the linked html element is clicked.
     * @property handleElId
     * @type String
     * @private
     */
    handleElId: null,

    /**
     * An object who's property names identify HTML tags to be considered invalid as drag handles.
     * A non-null property value identifies the tag as invalid. Defaults to the 
     * following value which prevents drag operations from being initiated by <a> elements:
    
{
    A: "A"
}
    
     * @property invalidHandleTypes
     * @type Object
     */
    invalidHandleTypes: null,

    /**
     * An object who's property names identify the IDs of elements to be considered invalid as drag handles.
     * A non-null property value identifies the ID as invalid. For example, to prevent
     * dragging from being initiated on element ID "foo", use:
    
{
    foo: true
}
    
     * @property invalidHandleIds
     * @type Object
     */
    invalidHandleIds: null,

    /**
     * An Array of CSS class names for elements to be considered in valid as drag handles.
     * @property invalidHandleClasses
     * @type Array
     */
    invalidHandleClasses: null,

    /**
     * The linked element's absolute X position at the time the drag was
     * started
     * @property startPageX
     * @type int
     * @private
     */
    startPageX: 0,

    /**
     * The linked element's absolute X position at the time the drag was
     * started
     * @property startPageY
     * @type int
     * @private
     */
    startPageY: 0,

    /**
     * The group defines a logical collection of DragDrop objects that are
     * related.  Instances only get events when interacting with other
     * DragDrop object in the same group.  This lets us define multiple
     * groups using a single DragDrop subclass if we want.
     * @property groups
     * @type object An object in the format {'group1':true, 'group2':true}
     */
    groups: null,

    /**
     * Individual drag/drop instances can be locked.  This will prevent
     * onmousedown start drag.
     * @property locked
     * @type boolean
     * @private
     */
    locked: false,

    /**
     * Lock this instance
     * @method lock
     */
    lock: function() {
        this.locked = true;
    },

    /**
     * When set to true, other DD objects in cooperating DDGroups do not receive
     * notification events when this DD object is dragged over them. Defaults to false.
     * @property moveOnly
     * @type boolean
     */
    moveOnly: false,

    /**
     * Unlock this instace
     * @method unlock
     */
    unlock: function() {
        this.locked = false;
    },

    /**
     * By default, all instances can be a drop target.  This can be disabled by
     * setting isTarget to false.
     * @property isTarget
     * @type boolean
     */
    isTarget: true,

    /**
     * The padding configured for this drag and drop object for calculating
     * the drop zone intersection with this object.
     * @property padding
     * @type int[] An array containing the 4 padding values: [top, right, bottom, left]
     */
    padding: null,

    /**
     * Cached reference to the linked element
     * @property _domRef
     * @private
     */
    _domRef: null,

    /**
     * Internal typeof flag
     * @property __ygDragDrop
     * @private
     */
    __ygDragDrop: true,

    /**
     * Set to true when horizontal contraints are applied
     * @property constrainX
     * @type boolean
     * @private
     */
    constrainX: false,

    /**
     * Set to true when vertical contraints are applied
     * @property constrainY
     * @type boolean
     * @private
     */
    constrainY: false,

    /**
     * The left constraint
     * @property minX
     * @type int
     * @private
     */
    minX: 0,

    /**
     * The right constraint
     * @property maxX
     * @type int
     * @private
     */
    maxX: 0,

    /**
     * The up constraint
     * @property minY
     * @type int
     * @private
     */
    minY: 0,

    /**
     * The down constraint
     * @property maxY
     * @type int
     * @private
     */
    maxY: 0,

    /**
     * Maintain offsets when we resetconstraints.  Set to true when you want
     * the position of the element relative to its parent to stay the same
     * when the page changes
     *
     * @property maintainOffset
     * @type boolean
     */
    maintainOffset: false,

    /**
     * Array of pixel locations the element will snap to if we specified a
     * horizontal graduation/interval.  This array is generated automatically
     * when you define a tick interval.
     * @property xTicks
     * @type int[]
     */
    xTicks: null,

    /**
     * Array of pixel locations the element will snap to if we specified a
     * vertical graduation/interval.  This array is generated automatically
     * when you define a tick interval.
     * @property yTicks
     * @type int[]
     */
    yTicks: null,

    /**
     * By default the drag and drop instance will only respond to the primary
     * button click (left button for a right-handed mouse).  Set to true to
     * allow drag and drop to start with any mouse click that is propogated
     * by the browser
     * @property primaryButtonOnly
     * @type boolean
     */
    primaryButtonOnly: true,

    /**
     * The available property is false until the linked dom element is accessible.
     * @property available
     * @type boolean
     */
    available: false,

    /**
     * By default, drags can only be initiated if the mousedown occurs in the
     * region the linked element is.  This is done in part to work around a
     * bug in some browsers that mis-report the mousedown if the previous
     * mouseup happened outside of the window.  This property is set to true
     * if outer handles are defined.
     *
     * @property hasOuterHandles
     * @type boolean
     * @default false
     */
    hasOuterHandles: false,

    /**
     * Code that executes immediately before the startDrag event
     * @method b4StartDrag
     * @private
     */
    b4StartDrag: function(x, y) { },

    /**
     * Abstract method called after a drag/drop object is clicked
     * and the drag or mousedown time thresholds have beeen met.
     * @method startDrag
     * @param {int} X click location
     * @param {int} Y click location
     */
    startDrag: function(x, y) { /* override this */ },

    /**
     * Code that executes immediately before the onDrag event
     * @method b4Drag
     * @private
     */
    b4Drag: function(e) { },

    /**
     * Abstract method called during the onMouseMove event while dragging an
     * object.
     * @method onDrag
     * @param {Event} e the mousemove event
     */
    onDrag: function(e) { /* override this */ },

    /**
     * Abstract method called when this element fist begins hovering over
     * another DragDrop obj
     * @method onDragEnter
     * @param {Event} e the mousemove event
     * @param {String|DragDrop[]} id In POINT mode, the element
     * id this is hovering over.  In INTERSECT mode, an array of one or more
     * dragdrop items being hovered over.
     */
    onDragEnter: function(e, id) { /* override this */ },

    /**
     * Code that executes immediately before the onDragOver event
     * @method b4DragOver
     * @private
     */
    b4DragOver: function(e) { },

    /**
     * Abstract method called when this element is hovering over another
     * DragDrop obj
     * @method onDragOver
     * @param {Event} e the mousemove event
     * @param {String|DragDrop[]} id In POINT mode, the element
     * id this is hovering over.  In INTERSECT mode, an array of dd items
     * being hovered over.
     */
    onDragOver: function(e, id) { /* override this */ },

    /**
     * Code that executes immediately before the onDragOut event
     * @method b4DragOut
     * @private
     */
    b4DragOut: function(e) { },

    /**
     * Abstract method called when we are no longer hovering over an element
     * @method onDragOut
     * @param {Event} e the mousemove event
     * @param {String|DragDrop[]} id In POINT mode, the element
     * id this was hovering over.  In INTERSECT mode, an array of dd items
     * that the mouse is no longer over.
     */
    onDragOut: function(e, id) { /* override this */ },

    /**
     * Code that executes immediately before the onDragDrop event
     * @method b4DragDrop
     * @private
     */
    b4DragDrop: function(e) { },

    /**
     * Abstract method called when this item is dropped on another DragDrop
     * obj
     * @method onDragDrop
     * @param {Event} e the mouseup event
     * @param {String|DragDrop[]} id In POINT mode, the element
     * id this was dropped on.  In INTERSECT mode, an array of dd items this
     * was dropped on.
     */
    onDragDrop: function(e, id) { /* override this */ },

    /**
     * Abstract method called when this item is dropped on an area with no
     * drop target
     * @method onInvalidDrop
     * @param {Event} e the mouseup event
     */
    onInvalidDrop: function(e) { /* override this */ },

    /**
     * Code that executes immediately before the endDrag event
     * @method b4EndDrag
     * @private
     */
    b4EndDrag: function(e) { },

    /**
     * Fired when we are done dragging the object
     * @method endDrag
     * @param {Event} e the mouseup event
     */
    endDrag: function(e) { /* override this */ },

    /**
     * Code executed immediately before the onMouseDown event
     * @method b4MouseDown
     * @param {Event} e the mousedown event
     * @private
     */
    b4MouseDown: function(e) {  },

    /**
     * Event handler that fires when a drag/drop obj gets a mousedown
     * @method onMouseDown
     * @param {Event} e the mousedown event
     */
    onMouseDown: function(e) { /* override this */ },

    /**
     * Event handler that fires when a drag/drop obj gets a mouseup
     * @method onMouseUp
     * @param {Event} e the mouseup event
     */
    onMouseUp: function(e) { /* override this */ },

    /**
     * Override the onAvailable method to do what is needed after the initial
     * position was determined.
     * @method onAvailable
     */
    onAvailable: function () {
    },

    /**
     * Provides default constraint padding to "constrainTo" elements (defaults to {left: 0, right:0, top:0, bottom:0}).
     * @type Object
     */
    defaultPadding : {left:0, right:0, top:0, bottom:0},

    /**
     * Initializes the drag drop object's constraints to restrict movement to a certain element.
 *
 * Usage:
 
    
 var dd = new Ext.dd.DDProxy("dragDiv1", "proxytest",
                { dragElId: "existingProxyDiv" });
 dd.startDrag = function(){
     this.constrainTo("parent-id");
 };
 
    
 * Or you can initalize it using the {@link Ext.Element} object:
 
    
 Ext.get("dragDiv1").initDDProxy("proxytest", {dragElId: "existingProxyDiv"}, {
     startDrag : function(){
         this.constrainTo("parent-id");
     }
 });
 
    
     * @param {Mixed} constrainTo The element to constrain to.
     * @param {Object/Number} pad (optional) Pad provides a way to specify "padding" of the constraints,
     * and can be either a number for symmetrical padding (4 would be equal to {left:4, right:4, top:4, bottom:4}) or
     * an object containing the sides to pad. For example: {right:10, bottom:10}
     * @param {Boolean} inContent (optional) Constrain the draggable in the content box of the element (inside padding and borders)
     */
    constrainTo : function(constrainTo, pad, inContent){
        if(Ext.isNumber(pad)){
            pad = {left: pad, right:pad, top:pad, bottom:pad};
        }
        pad = pad || this.defaultPadding;
        var b = Ext.get(this.getEl()).getBox(),
            ce = Ext.get(constrainTo),
            s = ce.getScroll(),
            c, 
            cd = ce.dom;
        if(cd == document.body){
            c = { x: s.left, y: s.top, width: Ext.lib.Dom.getViewWidth(), height: Ext.lib.Dom.getViewHeight()};
        }else{
            var xy = ce.getXY();
            c = {x : xy[0], y: xy[1], width: cd.clientWidth, height: cd.clientHeight};
        }


        var topSpace = b.y - c.y,
            leftSpace = b.x - c.x;

        this.resetConstraints();
        this.setXConstraint(leftSpace - (pad.left||0), // left
                c.width - leftSpace - b.width - (pad.right||0), //right
				this.xTickSize
        );
        this.setYConstraint(topSpace - (pad.top||0), //top
                c.height - topSpace - b.height - (pad.bottom||0), //bottom
				this.yTickSize
        );
    },

    /**
     * Returns a reference to the linked element
     * @method getEl
     * @return {HTMLElement} the html element
     */
    getEl: function() {
        if (!this._domRef) {
            this._domRef = Ext.getDom(this.id);
        }

        return this._domRef;
    },

    /**
     * Returns a reference to the actual element to drag.  By default this is
     * the same as the html element, but it can be assigned to another
     * element. An example of this can be found in Ext.dd.DDProxy
     * @method getDragEl
     * @return {HTMLElement} the html element
     */
    getDragEl: function() {
        return Ext.getDom(this.dragElId);
    },

    /**
     * Sets up the DragDrop object.  Must be called in the constructor of any
     * Ext.dd.DragDrop subclass
     * @method init
     * @param id the id of the linked element
     * @param {String} sGroup the group of related items
     * @param {object} config configuration attributes
     */
    init: function(id, sGroup, config) {
        this.initTarget(id, sGroup, config);
        Event.on(this.id, "mousedown", this.handleMouseDown, this);
        // Event.on(this.id, "selectstart", Event.preventDefault);
    },

    /**
     * Initializes Targeting functionality only... the object does not
     * get a mousedown handler.
     * @method initTarget
     * @param id the id of the linked element
     * @param {String} sGroup the group of related items
     * @param {object} config configuration attributes
     */
    initTarget: function(id, sGroup, config) {

        // configuration attributes
        this.config = config || {};

        // create a local reference to the drag and drop manager
        this.DDM = Ext.dd.DDM;
        // initialize the groups array
        this.groups = {};

        // assume that we have an element reference instead of an id if the
        // parameter is not a string
        if (typeof id !== "string") {
            id = Ext.id(id);
        }

        // set the id
        this.id = id;

        // add to an interaction group
        this.addToGroup((sGroup) ? sGroup : "default");

        // We don't want to register this as the handle with the manager
        // so we just set the id rather than calling the setter.
        this.handleElId = id;

        // the linked element is the element that gets dragged by default
        this.setDragElId(id);

        // by default, clicked anchors will not start drag operations.
        this.invalidHandleTypes = { A: "A" };
        this.invalidHandleIds = {};
        this.invalidHandleClasses = [];

        this.applyConfig();

        this.handleOnAvailable();
    },

    /**
     * Applies the configuration parameters that were passed into the constructor.
     * This is supposed to happen at each level through the inheritance chain.  So
     * a DDProxy implentation will execute apply config on DDProxy, DD, and
     * DragDrop in order to get all of the parameters that are available in
     * each object.
     * @method applyConfig
     */
    applyConfig: function() {

        // configurable properties:
        //    padding, isTarget, maintainOffset, primaryButtonOnly
        this.padding           = this.config.padding || [0, 0, 0, 0];
        this.isTarget          = (this.config.isTarget !== false);
        this.maintainOffset    = (this.config.maintainOffset);
        this.primaryButtonOnly = (this.config.primaryButtonOnly !== false);

    },

    /**
     * Executed when the linked element is available
     * @method handleOnAvailable
     * @private
     */
    handleOnAvailable: function() {
        this.available = true;
        this.resetConstraints();
        this.onAvailable();
    },

     /**
     * Configures the padding for the target zone in px.  Effectively expands
     * (or reduces) the virtual object size for targeting calculations.
     * Supports css-style shorthand; if only one parameter is passed, all sides
     * will have that padding, and if only two are passed, the top and bottom
     * will have the first param, the left and right the second.
     * @method setPadding
     * @param {int} iTop    Top pad
     * @param {int} iRight  Right pad
     * @param {int} iBot    Bot pad
     * @param {int} iLeft   Left pad
     */
    setPadding: function(iTop, iRight, iBot, iLeft) {
        // this.padding = [iLeft, iRight, iTop, iBot];
        if (!iRight && 0 !== iRight) {
            this.padding = [iTop, iTop, iTop, iTop];
        } else if (!iBot && 0 !== iBot) {
            this.padding = [iTop, iRight, iTop, iRight];
        } else {
            this.padding = [iTop, iRight, iBot, iLeft];
        }
    },

    /**
     * Stores the initial placement of the linked element.
     * @method setInitPosition
     * @param {int} diffX   the X offset, default 0
     * @param {int} diffY   the Y offset, default 0
     */
    setInitPosition: function(diffX, diffY) {
        var el = this.getEl();

        if (!this.DDM.verifyEl(el)) {
            return;
        }

        var dx = diffX || 0;
        var dy = diffY || 0;

        var p = Dom.getXY( el );

        this.initPageX = p[0] - dx;
        this.initPageY = p[1] - dy;

        this.lastPageX = p[0];
        this.lastPageY = p[1];

        this.setStartPosition(p);
    },

    /**
     * Sets the start position of the element.  This is set when the obj
     * is initialized, the reset when a drag is started.
     * @method setStartPosition
     * @param pos current position (from previous lookup)
     * @private
     */
    setStartPosition: function(pos) {
        var p = pos || Dom.getXY( this.getEl() );
        this.deltaSetXY = null;

        this.startPageX = p[0];
        this.startPageY = p[1];
    },

    /**
     * Add this instance to a group of related drag/drop objects.  All
     * instances belong to at least one group, and can belong to as many
     * groups as needed.
     * @method addToGroup
     * @param sGroup {string} the name of the group
     */
    addToGroup: function(sGroup) {
        this.groups[sGroup] = true;
        this.DDM.regDragDrop(this, sGroup);
    },

    /**
     * Remove's this instance from the supplied interaction group
     * @method removeFromGroup
     * @param {string}  sGroup  The group to drop
     */
    removeFromGroup: function(sGroup) {
        if (this.groups[sGroup]) {
            delete this.groups[sGroup];
        }

        this.DDM.removeDDFromGroup(this, sGroup);
    },

    /**
     * Allows you to specify that an element other than the linked element
     * will be moved with the cursor during a drag
     * @method setDragElId
     * @param id {string} the id of the element that will be used to initiate the drag
     */
    setDragElId: function(id) {
        this.dragElId = id;
    },

    /**
     * Allows you to specify a child of the linked element that should be
     * used to initiate the drag operation.  An example of this would be if
     * you have a content div with text and links.  Clicking anywhere in the
     * content area would normally start the drag operation.  Use this method
     * to specify that an element inside of the content div is the element
     * that starts the drag operation.
     * @method setHandleElId
     * @param id {string} the id of the element that will be used to
     * initiate the drag.
     */
    setHandleElId: function(id) {
        if (typeof id !== "string") {
            id = Ext.id(id);
        }
        this.handleElId = id;
        this.DDM.regHandle(this.id, id);
    },

    /**
     * Allows you to set an element outside of the linked element as a drag
     * handle
     * @method setOuterHandleElId
     * @param id the id of the element that will be used to initiate the drag
     */
    setOuterHandleElId: function(id) {
        if (typeof id !== "string") {
            id = Ext.id(id);
        }
        Event.on(id, "mousedown",
                this.handleMouseDown, this);
        this.setHandleElId(id);

        this.hasOuterHandles = true;
    },

    /**
     * Remove all drag and drop hooks for this element
     * @method unreg
     */
    unreg: function() {
        Event.un(this.id, "mousedown",
                this.handleMouseDown);
        this._domRef = null;
        this.DDM._remove(this);
    },

    destroy : function(){
        this.unreg();
    },

    /**
     * Returns true if this instance is locked, or the drag drop mgr is locked
     * (meaning that all drag/drop is disabled on the page.)
     * @method isLocked
     * @return {boolean} true if this obj or all drag/drop is locked, else
     * false
     */
    isLocked: function() {
        return (this.DDM.isLocked() || this.locked);
    },

    /**
     * Fired when this object is clicked
     * @method handleMouseDown
     * @param {Event} e
     * @param {Ext.dd.DragDrop} oDD the clicked dd object (this dd obj)
     * @private
     */
    handleMouseDown: function(e, oDD){
        if (this.primaryButtonOnly && e.button != 0) {
            return;
        }

        if (this.isLocked()) {
            return;
        }

        this.DDM.refreshCache(this.groups);

        var pt = new Ext.lib.Point(Ext.lib.Event.getPageX(e), Ext.lib.Event.getPageY(e));
        if (!this.hasOuterHandles && !this.DDM.isOverTarget(pt, this) )  {
        } else {
            if (this.clickValidator(e)) {

                // set the initial element position
                this.setStartPosition();

                this.b4MouseDown(e);
                this.onMouseDown(e);

                this.DDM.handleMouseDown(e, this);

                if (this.preventDefault || this.stopPropagation) {
                    if (this.preventDefault) {
                        e.preventDefault();
                    }
                    if (this.stopPropagation) {
                        e.stopPropagation();
                    }
                } else {
                    this.DDM.stopEvent(e);
                }
            } else {


            }
        }
    },

    clickValidator: function(e) {
        var target = e.getTarget();
        return ( this.isValidHandleChild(target) &&
                    (this.id == this.handleElId ||
                        this.DDM.handleWasClicked(target, this.id)) );
    },

    /**
     * Allows you to specify a tag name that should not start a drag operation
     * when clicked.  This is designed to facilitate embedding links within a
     * drag handle that do something other than start the drag.
     * @method addInvalidHandleType
     * @param {string} tagName the type of element to exclude
     */
    addInvalidHandleType: function(tagName) {
        var type = tagName.toUpperCase();
        this.invalidHandleTypes[type] = type;
    },

    /**
     * Lets you to specify an element id for a child of a drag handle
     * that should not initiate a drag
     * @method addInvalidHandleId
     * @param {string} id the element id of the element you wish to ignore
     */
    addInvalidHandleId: function(id) {
        if (typeof id !== "string") {
            id = Ext.id(id);
        }
        this.invalidHandleIds[id] = id;
    },

    /**
     * Lets you specify a css class of elements that will not initiate a drag
     * @method addInvalidHandleClass
     * @param {string} cssClass the class of the elements you wish to ignore
     */
    addInvalidHandleClass: function(cssClass) {
        this.invalidHandleClasses.push(cssClass);
    },

    /**
     * Unsets an excluded tag name set by addInvalidHandleType
     * @method removeInvalidHandleType
     * @param {string} tagName the type of element to unexclude
     */
    removeInvalidHandleType: function(tagName) {
        var type = tagName.toUpperCase();
        // this.invalidHandleTypes[type] = null;
        delete this.invalidHandleTypes[type];
    },

    /**
     * Unsets an invalid handle id
     * @method removeInvalidHandleId
     * @param {string} id the id of the element to re-enable
     */
    removeInvalidHandleId: function(id) {
        if (typeof id !== "string") {
            id = Ext.id(id);
        }
        delete this.invalidHandleIds[id];
    },

    /**
     * Unsets an invalid css class
     * @method removeInvalidHandleClass
     * @param {string} cssClass the class of the element(s) you wish to
     * re-enable
     */
    removeInvalidHandleClass: function(cssClass) {
        for (var i=0, len=this.invalidHandleClasses.length; i= this.minX; i = i - iTickSize) {
            if (!tickMap[i]) {
                this.xTicks[this.xTicks.length] = i;
                tickMap[i] = true;
            }
        }

        for (i = this.initPageX; i <= this.maxX; i = i + iTickSize) {
            if (!tickMap[i]) {
                this.xTicks[this.xTicks.length] = i;
                tickMap[i] = true;
            }
        }

        this.xTicks.sort(this.DDM.numericSort) ;
    },

    /**
     * Create the array of vertical tick marks if an interval was specified in
     * setYConstraint().
     * @method setYTicks
     * @private
     */
    setYTicks: function(iStartY, iTickSize) {
        this.yTicks = [];
        this.yTickSize = iTickSize;

        var tickMap = {};

        for (var i = this.initPageY; i >= this.minY; i = i - iTickSize) {
            if (!tickMap[i]) {
                this.yTicks[this.yTicks.length] = i;
                tickMap[i] = true;
            }
        }

        for (i = this.initPageY; i <= this.maxY; i = i + iTickSize) {
            if (!tickMap[i]) {
                this.yTicks[this.yTicks.length] = i;
                tickMap[i] = true;
            }
        }

        this.yTicks.sort(this.DDM.numericSort) ;
    },

    /**
     * By default, the element can be dragged any place on the screen.  Use
     * this method to limit the horizontal travel of the element.  Pass in
     * 0,0 for the parameters if you want to lock the drag to the y axis.
     * @method setXConstraint
     * @param {int} iLeft the number of pixels the element can move to the left
     * @param {int} iRight the number of pixels the element can move to the
     * right
     * @param {int} iTickSize optional parameter for specifying that the
     * element
     * should move iTickSize pixels at a time.
     */
    setXConstraint: function(iLeft, iRight, iTickSize) {
        this.leftConstraint = iLeft;
        this.rightConstraint = iRight;

        this.minX = this.initPageX - iLeft;
        this.maxX = this.initPageX + iRight;
        if (iTickSize) { this.setXTicks(this.initPageX, iTickSize); }

        this.constrainX = true;
    },

    /**
     * Clears any constraints applied to this instance.  Also clears ticks
     * since they can't exist independent of a constraint at this time.
     * @method clearConstraints
     */
    clearConstraints: function() {
        this.constrainX = false;
        this.constrainY = false;
        this.clearTicks();
    },

    /**
     * Clears any tick interval defined for this instance
     * @method clearTicks
     */
    clearTicks: function() {
        this.xTicks = null;
        this.yTicks = null;
        this.xTickSize = 0;
        this.yTickSize = 0;
    },

    /**
     * By default, the element can be dragged any place on the screen.  Set
     * this to limit the vertical travel of the element.  Pass in 0,0 for the
     * parameters if you want to lock the drag to the x axis.
     * @method setYConstraint
     * @param {int} iUp the number of pixels the element can move up
     * @param {int} iDown the number of pixels the element can move down
     * @param {int} iTickSize optional parameter for specifying that the
     * element should move iTickSize pixels at a time.
     */
    setYConstraint: function(iUp, iDown, iTickSize) {
        this.topConstraint = iUp;
        this.bottomConstraint = iDown;

        this.minY = this.initPageY - iUp;
        this.maxY = this.initPageY + iDown;
        if (iTickSize) { this.setYTicks(this.initPageY, iTickSize); }

        this.constrainY = true;

    },

    /**
     * resetConstraints must be called if you manually reposition a dd element.
     * @method resetConstraints
     * @param {boolean} maintainOffset
     */
    resetConstraints: function() {
        // Maintain offsets if necessary
        if (this.initPageX || this.initPageX === 0) {
            // figure out how much this thing has moved
            var dx = (this.maintainOffset) ? this.lastPageX - this.initPageX : 0;
            var dy = (this.maintainOffset) ? this.lastPageY - this.initPageY : 0;

            this.setInitPosition(dx, dy);

        // This is the first time we have detected the element's position
        } else {
            this.setInitPosition();
        }

        if (this.constrainX) {
            this.setXConstraint( this.leftConstraint,
                                 this.rightConstraint,
                                 this.xTickSize        );
        }

        if (this.constrainY) {
            this.setYConstraint( this.topConstraint,
                                 this.bottomConstraint,
                                 this.yTickSize         );
        }
    },

    /**
     * Normally the drag element is moved pixel by pixel, but we can specify
     * that it move a number of pixels at a time.  This method resolves the
     * location when we have it set up like this.
     * @method getTick
     * @param {int} val where we want to place the object
     * @param {int[]} tickArray sorted array of valid points
     * @return {int} the closest tick
     * @private
     */
    getTick: function(val, tickArray) {
        if (!tickArray) {
            // If tick interval is not defined, it is effectively 1 pixel,
            // so we return the value passed to us.
            return val;
        } else if (tickArray[0] >= val) {
            // The value is lower than the first tick, so we return the first
            // tick.
            return tickArray[0];
        } else {
            for (var i=0, len=tickArray.length; i= val) {
                    var diff1 = val - tickArray[i];
                    var diff2 = tickArray[next] - val;
                    return (diff2 > diff1) ? tickArray[i] : tickArray[next];
                }
            }

            // The value is larger than the last tick, so we return the last
            // tick.
            return tickArray[tickArray.length - 1];
        }
    },

    /**
     * toString method
     * @method toString
     * @return {string} string representation of the dd obj
     */
    toString: function() {
        return ("DragDrop " + this.id);
    }

};

})();
/*
 * The drag and drop utility provides a framework for building drag and drop
 * applications.  In addition to enabling drag and drop for specific elements,
 * the drag and drop elements are tracked by the manager class, and the
 * interactions between the various elements are tracked during the drag and
 * the implementing code is notified about these important moments.
 */

// Only load the library once.  Rewriting the manager class would orphan
// existing drag and drop instances.
if (!Ext.dd.DragDropMgr) {

/**
 * @class Ext.dd.DragDropMgr
 * DragDropMgr is a singleton that tracks the element interaction for
 * all DragDrop items in the window.  Generally, you will not call
 * this class directly, but it does have helper methods that could
 * be useful in your DragDrop implementations.
 * @singleton
 */
Ext.dd.DragDropMgr = function() {

    var Event = Ext.EventManager;

    return {

        /**
         * Two dimensional Array of registered DragDrop objects.  The first
         * dimension is the DragDrop item group, the second the DragDrop
         * object.
         * @property ids
         * @type String[]
         * @private
         */
        ids: {},

        /**
         * Array of element ids defined as drag handles.  Used to determine
         * if the element that generated the mousedown event is actually the
         * handle and not the html element itself.
         * @property handleIds
         * @type String[]
         * @private
         */
        handleIds: {},

        /**
         * the DragDrop object that is currently being dragged
         * @property dragCurrent
         * @type DragDrop
         * @private
         **/
        dragCurrent: null,

        /**
         * the DragDrop object(s) that are being hovered over
         * @property dragOvers
         * @type Array
         * @private
         */
        dragOvers: {},

        /**
         * the X distance between the cursor and the object being dragged
         * @property deltaX
         * @type int
         * @private
         */
        deltaX: 0,

        /**
         * the Y distance between the cursor and the object being dragged
         * @property deltaY
         * @type int
         * @private
         */
        deltaY: 0,

        /**
         * Flag to determine if we should prevent the default behavior of the
         * events we define. By default this is true, but this can be set to
         * false if you need the default behavior (not recommended)
         * @property preventDefault
         * @type boolean
         */
        preventDefault: true,

        /**
         * Flag to determine if we should stop the propagation of the events
         * we generate. This is true by default but you may want to set it to
         * false if the html element contains other features that require the
         * mouse click.
         * @property stopPropagation
         * @type boolean
         */
        stopPropagation: true,

        /**
         * Internal flag that is set to true when drag and drop has been
         * intialized
         * @property initialized
         * @private
         */
        initialized: false,

        /**
         * All drag and drop can be disabled.
         * @property locked
         * @private
         */
        locked: false,

        /**
         * Called the first time an element is registered.
         * @method init
         * @private
         */
        init: function() {
            this.initialized = true;
        },

        /**
         * In point mode, drag and drop interaction is defined by the
         * location of the cursor during the drag/drop
         * @property POINT
         * @type int
         */
        POINT: 0,

        /**
         * In intersect mode, drag and drop interaction is defined by the
         * overlap of two or more drag and drop objects.
         * @property INTERSECT
         * @type int
         */
        INTERSECT: 1,

        /**
         * The current drag and drop mode.  Default: POINT
         * @property mode
         * @type int
         */
        mode: 0,
        
        /**
         * @property {Boolean} [notifyOccluded=false]
         * This config is only provided to provide old, usually unwanted drag/drop behaviour.
         *
         * From ExtJS 4.1.0 onwards, when drop targets are contained in floating, absolutely positioned elements
         * such as in {@link Ext.window.Window Windows}, which may overlap each other, `over` and `drop` events
         * are only delivered to the topmost drop target at the mouse position.
         *
         * If all targets below that in zIndex order should also receive notifications, set
         * `notifyOccluded` to `true`.
         */
        notifyOccluded: false,

        /**
         * Runs method on all drag and drop objects
         * @method _execOnAll
         * @private
         */
        _execOnAll: function(sMethod, args) {
            for (var i in this.ids) {
                for (var j in this.ids[i]) {
                    var oDD = this.ids[i][j];
                    if (! this.isTypeOfDD(oDD)) {
                        continue;
                    }
                    oDD[sMethod].apply(oDD, args);
                }
            }
        },

        /**
         * Drag and drop initialization.  Sets up the global event handlers
         * @method _onLoad
         * @private
         */
        _onLoad: function() {

            this.init();


            Event.on(document, "mouseup",   this.handleMouseUp, this, true);
            Event.on(document, "mousemove", this.handleMouseMove, this, true);
            Event.on(window,   "unload",    this._onUnload, this, true);
            Event.on(window,   "resize",    this._onResize, this, true);
            // Event.on(window,   "mouseout",    this._test);

        },

        /**
         * Reset constraints on all drag and drop objs
         * @method _onResize
         * @private
         */
        _onResize: function(e) {
            this._execOnAll("resetConstraints", []);
        },

        /**
         * Lock all drag and drop functionality
         * @method lock
         */
        lock: function() { this.locked = true; },

        /**
         * Unlock all drag and drop functionality
         * @method unlock
         */
        unlock: function() { this.locked = false; },

        /**
         * Is drag and drop locked?
         * @method isLocked
         * @return {boolean} True if drag and drop is locked, false otherwise.
         */
        isLocked: function() { return this.locked; },

        /**
         * Location cache that is set for all drag drop objects when a drag is
         * initiated, cleared when the drag is finished.
         * @property locationCache
         * @private
         */
        locationCache: {},

        /**
         * Set useCache to false if you want to force object the lookup of each
         * drag and drop linked element constantly during a drag.
         * @property useCache
         * @type boolean
         */
        useCache: true,

        /**
         * The number of pixels that the mouse needs to move after the
         * mousedown before the drag is initiated.  Default=3;
         * @property clickPixelThresh
         * @type int
         */
        clickPixelThresh: 3,

        /**
         * The number of milliseconds after the mousedown event to initiate the
         * drag if we don't get a mouseup event. Default=350
         * @property clickTimeThresh
         * @type int
         */
        clickTimeThresh: 350,

        /**
         * Flag that indicates that either the drag pixel threshold or the
         * mousdown time threshold has been met
         * @property dragThreshMet
         * @type boolean
         * @private
         */
        dragThreshMet: false,

        /**
         * Timeout used for the click time threshold
         * @property clickTimeout
         * @type Object
         * @private
         */
        clickTimeout: null,

        /**
         * The X position of the mousedown event stored for later use when a
         * drag threshold is met.
         * @property startX
         * @type int
         * @private
         */
        startX: 0,

        /**
         * The Y position of the mousedown event stored for later use when a
         * drag threshold is met.
         * @property startY
         * @type int
         * @private
         */
        startY: 0,

        /**
         * Each DragDrop instance must be registered with the DragDropMgr.
         * This is executed in DragDrop.init()
         * @method regDragDrop
         * @param {DragDrop} oDD the DragDrop object to register
         * @param {String} sGroup the name of the group this element belongs to
         */
        regDragDrop: function(oDD, sGroup) {
            if (!this.initialized) { this.init(); }

            if (!this.ids[sGroup]) {
                this.ids[sGroup] = {};
            }
            this.ids[sGroup][oDD.id] = oDD;
        },

        /**
         * Removes the supplied dd instance from the supplied group. Executed
         * by DragDrop.removeFromGroup, so don't call this function directly.
         * @method removeDDFromGroup
         * @private
         */
        removeDDFromGroup: function(oDD, sGroup) {
            if (!this.ids[sGroup]) {
                this.ids[sGroup] = {};
            }

            var obj = this.ids[sGroup];
            if (obj && obj[oDD.id]) {
                delete obj[oDD.id];
            }
        },

        /**
         * Unregisters a drag and drop item.  This is executed in
         * DragDrop.unreg, use that method instead of calling this directly.
         * @method _remove
         * @private
         */
        _remove: function(oDD) {
            for (var g in oDD.groups) {
                if (g && this.ids[g] && this.ids[g][oDD.id]) {
                    delete this.ids[g][oDD.id];
                }
            }
            delete this.handleIds[oDD.id];
        },

        /**
         * Each DragDrop handle element must be registered.  This is done
         * automatically when executing DragDrop.setHandleElId()
         * @method regHandle
         * @param {String} sDDId the DragDrop id this element is a handle for
         * @param {String} sHandleId the id of the element that is the drag
         * handle
         */
        regHandle: function(sDDId, sHandleId) {
            if (!this.handleIds[sDDId]) {
                this.handleIds[sDDId] = {};
            }
            this.handleIds[sDDId][sHandleId] = sHandleId;
        },

        /**
         * Utility function to determine if a given element has been
         * registered as a drag drop item.
         * @method isDragDrop
         * @param {String} id the element id to check
         * @return {boolean} true if this element is a DragDrop item,
         * false otherwise
         */
        isDragDrop: function(id) {
            return ( this.getDDById(id) ) ? true : false;
        },

        /**
         * Returns the drag and drop instances that are in all groups the
         * passed in instance belongs to.
         * @method getRelated
         * @param {DragDrop} p_oDD the obj to get related data for
         * @param {boolean} bTargetsOnly if true, only return targetable objs
         * @return {DragDrop[]} the related instances
         */
        getRelated: function(p_oDD, bTargetsOnly) {
            var oDDs = [];
            for (var i in p_oDD.groups) {
                for (var j in this.ids[i]) {
                    var dd = this.ids[i][j];
                    if (! this.isTypeOfDD(dd)) {
                        continue;
                    }
                    if (!bTargetsOnly || dd.isTarget) {
                        oDDs[oDDs.length] = dd;
                    }
                }
            }

            return oDDs;
        },

        /**
         * Returns true if the specified dd target is a legal target for
         * the specifice drag obj
         * @method isLegalTarget
         * @param {DragDrop} oDD the drag obj
         * @param {DragDrop} oTargetDD the target
         * @return {boolean} true if the target is a legal target for the
         * dd obj
         */
        isLegalTarget: function (oDD, oTargetDD) {
            var targets = this.getRelated(oDD, true);
            for (var i=0, len=targets.length;i this.clickPixelThresh ||
                            diffY > this.clickPixelThresh) {
                    this.startDrag(this.startX, this.startY);
                }
            }

            if (this.dragThreshMet) {
                this.dragCurrent.b4Drag(e);
                this.dragCurrent.onDrag(e);
                if(!this.dragCurrent.moveOnly){
                    this.fireEvents(e, false);
                }
            }

            this.stopEvent(e);

            return true;
        },

        /**
         * Iterates over all of the DragDrop elements to find ones we are
         * hovering over or dropping on
         * @method fireEvents
         * @param {Event} e the event
         * @param {boolean} isDrop is this a drop op or a mouseover op?
         * @private
         */
        fireEvents: function(e, isDrop) {
            var me = this,
                dragCurrent = me.dragCurrent,
                mousePoint = e.getPoint(),
                overTarget,
                overTargetEl,
                allTargets = [],
                oldOvers  = [],  // cache the previous dragOver array
                outEvts   = [],
                overEvts  = [],
                dropEvts  = [],
                enterEvts = [],
                needsSort,
                i,
                len,
                sGroup;

            // If the user did the mouse up outside of the window, we could
            // get here even though we have ended the drag.
            if (!dragCurrent || dragCurrent.isLocked()) {
                return;
            }

            // Check to see if the object(s) we were hovering over is no longer
            // being hovered over so we can fire the onDragOut event
            for (i in me.dragOvers) {
                overTarget = me.dragOvers[i];

                if (! me.isTypeOfDD(overTarget)) {
                    continue;
                }

                if (! this.isOverTarget(mousePoint, overTarget, me.mode)) {
                    outEvts.push( overTarget );
                }

                oldOvers[i] = true;
                delete me.dragOvers[i];
            }

            // Collect all targets which are members of the same ddGoups that the dragCurrent is a member of, and which may recieve mouseover and drop notifications.
            // This is preparatory to seeing which one(s) we are currently over
            // Begin by iterating through the ddGroups of which the dragCurrent is a member
            for (sGroup in dragCurrent.groups) {

                if ("string" != typeof sGroup) {
                    continue;
                }

                // Loop over the registered members of each group, testing each as a potential target
                for (i in me.ids[sGroup]) {
                    overTarget = me.ids[sGroup][i];

                    // The target is valid if it is a DD type
                    // And it's got a DOM element
                    // And it's configured to be a drop target
                    // And it's not locked
                    // And it's either not the dragCurrent, or, if it is, tha dragCurrent is configured to not ignore itself.
                    if (me.isTypeOfDD(overTarget) &&
                        (overTargetEl = overTarget.getEl()) &&
                        (overTarget.isTarget) &&
                        (!overTarget.isLocked()) &&
                        ((overTarget != dragCurrent) || (dragCurrent.ignoreSelf === false))) {

                        // Only sort by zIndex if there were some which had a floating zIndex value
                        if ((overTarget.zIndex = me.getZIndex(overTargetEl)) !== -1) {
                            needsSort = true;
                        }
                        allTargets.push(overTarget);
                    }
                }
            }

            // If there were floating targets, sort the highest zIndex to the top
            if (needsSort) {
                allTargets.sort(me.byZIndex);
            }

            // Loop through possible targets, notifying the one(s) we are over.
            // Usually we only deliver events to the topmost.
            for (i = 0, len = allTargets.length; i < len; i++) {
                overTarget = allTargets[i];

                // If we are over the overTarget, queue it up to recieve an event of whatever type we are handling
                if (me.isOverTarget(mousePoint, overTarget, me.mode)) {
                    // look for drop interactions
                    if (isDrop) {
                        dropEvts.push( overTarget );
                    // look for drag enter and drag over interactions
                    } else {
                        // initial drag over: dragEnter fires
                        if (!oldOvers[overTarget.id]) {
                            enterEvts.push( overTarget );
                        // subsequent drag overs: dragOver fires
                        } else {
                            overEvts.push( overTarget );
                        }
                        me.dragOvers[overTarget.id] = overTarget;
                    }

                    // Unless this DragDropManager has been explicitly configured to deliver events to multiple targets, then we are done.
                    if (!me.notifyOccluded) {
                        break;
                    }
                }
            }

            if (me.mode) {
                if (outEvts.length) {
                    dragCurrent.b4DragOut(e, outEvts);
                    dragCurrent.onDragOut(e, outEvts);
                }
    
                if (enterEvts.length) {
                    dragCurrent.onDragEnter(e, enterEvts);
                }

                if (overEvts.length) {
                    dragCurrent.b4DragOver(e, overEvts);
                    dragCurrent.onDragOver(e, overEvts);
                }

                if (dropEvts.length) {
                    dragCurrent.b4DragDrop(e, dropEvts);
                    dragCurrent.onDragDrop(e, dropEvts);
                }

            } else {
                // fire dragout events
                for (i=0, len=outEvts.length; i
         * Ext.dd.DragDropMgr.refreshCache(ddinstance.groups);
         *     
         * Alternatively:
         * 
         * Ext.dd.DragDropMgr.refreshCache({group1:true, group2:true});
         * 
         * @TODO this really should be an indexed array.  Alternatively this
         * method could accept both.
         * @method refreshCache
         * @param {Object} groups an associative array of groups to refresh
         */
        refreshCache: function(groups) {
            for (var sGroup in groups) {
                if ("string" != typeof sGroup) {
                    continue;
                }
                for (var i in this.ids[sGroup]) {
                    var oDD = this.ids[sGroup][i];

                    if (this.isTypeOfDD(oDD)) {
                    // if (this.isTypeOfDD(oDD) && oDD.isTarget) {
                        var loc = this.getLocation(oDD);
                        if (loc) {
                            this.locationCache[oDD.id] = loc;
                        } else {
                            delete this.locationCache[oDD.id];
                            // this will unregister the drag and drop object if
                            // the element is not in a usable state
                            // oDD.unreg();
                        }
                    }
                }
            }
        },

        /**
         * This checks to make sure an element exists and is in the DOM.  The
         * main purpose is to handle cases where innerHTML is used to remove
         * drag and drop objects from the DOM.  IE provides an 'unspecified
         * error' when trying to access the offsetParent of such an element
         * @method verifyEl
         * @param {HTMLElement} el the element to check
         * @return {boolean} true if the element looks usable
         */
        verifyEl: function(el) {
            if (el) {
                var parent;
                if(Ext.isIE){
                    try{
                        parent = el.offsetParent;
                    }catch(e){}
                }else{
                    parent = el.offsetParent;
                }
                if (parent) {
                    return true;
                }
            }

            return false;
        },

        /**
         * Returns a Region object containing the drag and drop element's position
         * and size, including the padding configured for it
         * @method getLocation
         * @param {DragDrop} oDD the drag and drop object to get the
         *                       location for
         * @return {Ext.lib.Region} a Region object representing the total area
         *                             the element occupies, including any padding
         *                             the instance is configured for.
         */
        getLocation: function(oDD) {
            if (! this.isTypeOfDD(oDD)) {
                return null;
            }

            var el = oDD.getEl(), pos, x1, x2, y1, y2, t, r, b, l, region;

            try {
                pos= Ext.lib.Dom.getXY(el);
            } catch (e) { }

            if (!pos) {
                return null;
            }

            x1 = pos[0];
            x2 = x1 + el.offsetWidth;
            y1 = pos[1];
            y2 = y1 + el.offsetHeight;

            t = y1 - oDD.padding[0];
            r = x2 + oDD.padding[1];
            b = y2 + oDD.padding[2];
            l = x1 - oDD.padding[3];

            return new Ext.lib.Region( t, r, b, l );
        },

        /**
         * Checks the cursor location to see if it over the target
         * @method isOverTarget
         * @param {Ext.lib.Point} pt The point to evaluate
         * @param {DragDrop} oTarget the DragDrop object we are inspecting
         * @return {boolean} true if the mouse is over the target
         * @private
         */
        isOverTarget: function(pt, oTarget, intersect) {
            // use cache if available
            var loc = this.locationCache[oTarget.id];
            if (!loc || !this.useCache) {
                loc = this.getLocation(oTarget);
                this.locationCache[oTarget.id] = loc;

            }

            if (!loc) {
                return false;
            }

            oTarget.cursorIsOver = loc.contains( pt );

            // DragDrop is using this as a sanity check for the initial mousedown
            // in this case we are done.  In POINT mode, if the drag obj has no
            // contraints, we are also done. Otherwise we need to evaluate the
            // location of the target as related to the actual location of the
            // dragged element.
            var dc = this.dragCurrent;
            if (!dc || !dc.getTargetCoord ||
                    (!intersect && !dc.constrainX && !dc.constrainY)) {
                return oTarget.cursorIsOver;
            }

            oTarget.overlap = null;

            // Get the current location of the drag element, this is the
            // location of the mouse event less the delta that represents
            // where the original mousedown happened on the element.  We
            // need to consider constraints and ticks as well.
            var pos = dc.getTargetCoord(pt.x, pt.y);

            var el = dc.getDragEl();
            var curRegion = new Ext.lib.Region( pos.y,
                                                   pos.x + el.offsetWidth,
                                                   pos.y + el.offsetHeight,
                                                   pos.x );

            var overlap = curRegion.intersect(loc);

            if (overlap) {
                oTarget.overlap = overlap;
                return (intersect) ? true : oTarget.cursorIsOver;
            } else {
                return false;
            }
        },

        /**
         * unload event handler
         * @method _onUnload
         * @private
         */
        _onUnload: function(e, me) {
            Event.removeListener(document, "mouseup",   this.handleMouseUp, this);
            Event.removeListener(document, "mousemove", this.handleMouseMove, this);
            Event.removeListener(window,   "resize",    this._onResize, this);
            Ext.dd.DragDropMgr.unregAll();
        },

        /**
         * Cleans up the drag and drop events and objects.
         * @method unregAll
         * @private
         */
        unregAll: function() {

            if (this.dragCurrent) {
                this.stopDrag();
                this.dragCurrent = null;
            }

            this._execOnAll("unreg", []);

            for (var i in this.elementCache) {
                delete this.elementCache[i];
            }

            this.elementCache = {};
            this.ids = {};
        },

        /**
         * A cache of DOM elements
         * @property elementCache
         * @private
         */
        elementCache: {},

        /**
         * Get the wrapper for the DOM element specified
         * @method getElWrapper
         * @param {String} id the id of the element to get
         * @return {Ext.dd.DDM.ElementWrapper} the wrapped element
         * @private
         * @deprecated This wrapper isn't that useful
         */
        getElWrapper: function(id) {
            var oWrapper = this.elementCache[id];
            if (!oWrapper || !oWrapper.el) {
                oWrapper = this.elementCache[id] =
                    new this.ElementWrapper(Ext.getDom(id));
            }
            return oWrapper;
        },

        /**
         * Returns the actual DOM element
         * @method getElement
         * @param {String} id the id of the elment to get
         * @return {Object} The element
         * @deprecated use Ext.lib.Ext.getDom instead
         */
        getElement: function(id) {
            return Ext.getDom(id);
        },

        /**
         * Returns the style property for the DOM element (i.e.,
         * document.getElById(id).style)
         * @method getCss
         * @param {String} id the id of the elment to get
         * @return {Object} The style property of the element
         * @deprecated use Ext.lib.Dom instead
         */
        getCss: function(id) {
            var el = Ext.getDom(id);
            return (el) ? el.style : null;
        },

        /**
         * Inner class for cached elements
         * @class Ext.dd.DragDropMgr.ElementWrapper
         * @for DragDropMgr
         * @private
         * @deprecated
         */
        ElementWrapper: function(el) {
                /**
                 * The element
                 * @property el
                 */
                this.el = el || null;
                /**
                 * The element id
                 * @property id
                 */
                this.id = this.el && el.id;
                /**
                 * A reference to the style property
                 * @property css
                 */
                this.css = this.el && el.style;
            },

        /**
         * Returns the X position of an html element
         * @method getPosX
         * @param el the element for which to get the position
         * @return {int} the X coordinate
         * @for DragDropMgr
         * @deprecated use Ext.lib.Dom.getX instead
         */
        getPosX: function(el) {
            return Ext.lib.Dom.getX(el);
        },

        /**
         * Returns the Y position of an html element
         * @method getPosY
         * @param el the element for which to get the position
         * @return {int} the Y coordinate
         * @deprecated use Ext.lib.Dom.getY instead
         */
        getPosY: function(el) {
            return Ext.lib.Dom.getY(el);
        },

        /**
         * Swap two nodes.  In IE, we use the native method, for others we
         * emulate the IE behavior
         * @method swapNode
         * @param n1 the first node to swap
         * @param n2 the other node to swap
         */
        swapNode: function(n1, n2) {
            if (n1.swapNode) {
                n1.swapNode(n2);
            } else {
                var p = n2.parentNode;
                var s = n2.nextSibling;

                if (s == n1) {
                    p.insertBefore(n1, n2);
                } else if (n2 == n1.nextSibling) {
                    p.insertBefore(n2, n1);
                } else {
                    n1.parentNode.replaceChild(n2, n1);
                    p.insertBefore(n1, s);
                }
            }
        },

        /**
         * Returns the current scroll position
         * @method getScroll
         * @private
         */
        getScroll: function () {
            var t, l, dde=document.documentElement, db=document.body;
            if (dde && (dde.scrollTop || dde.scrollLeft)) {
                t = dde.scrollTop;
                l = dde.scrollLeft;
            } else if (db) {
                t = db.scrollTop;
                l = db.scrollLeft;
            } else {

            }
            return { top: t, left: l };
        },

        /**
         * Returns the specified element style property
         * @method getStyle
         * @param {HTMLElement} el          the element
         * @param {string}      styleProp   the style property
         * @return {string} The value of the style property
         * @deprecated use Ext.lib.Dom.getStyle
         */
        getStyle: function(el, styleProp) {
            return Ext.fly(el).getStyle(styleProp);
        },

        /**
         * Gets the scrollTop
         * @method getScrollTop
         * @return {int} the document's scrollTop
         */
        getScrollTop: function () {
            return this.getScroll().top;
        },

        /**
         * Gets the scrollLeft
         * @method getScrollLeft
         * @return {int} the document's scrollTop
         */
        getScrollLeft: function () {
            return this.getScroll().left;
        },

        /**
         * Sets the x/y position of an element to the location of the
         * target element.
         * @method moveToEl
         * @param {HTMLElement} moveEl      The element to move
         * @param {HTMLElement} targetEl    The position reference element
         */
        moveToEl: function (moveEl, targetEl) {
            var aCoord = Ext.lib.Dom.getXY(targetEl);
            Ext.lib.Dom.setXY(moveEl, aCoord);
        },

        /**
         * Numeric array sort function
         * @method numericSort
         */
        numericSort: function(a, b) {
            return (a - b);
        },

        /**
         * Internal counter
         * @property _timeoutCount
         * @private
         */
        _timeoutCount: 0,

        /**
         * Trying to make the load order less important.  Without this we get
         * an error if this file is loaded before the Event Utility.
         * @method _addListeners
         * @private
         */
        _addListeners: function() {
            var DDM = Ext.dd.DDM;
            if ( Ext.lib.Event && document ) {
                DDM._onLoad();
            } else {
                if (DDM._timeoutCount > 2000) {
                } else {
                    setTimeout(DDM._addListeners, 10);
                    if (document && document.body) {
                        DDM._timeoutCount += 1;
                    }
                }
            }
        },

        /**
         * Recursively searches the immediate parent and all child nodes for
         * the handle element in order to determine wheter or not it was
         * clicked.
         * @method handleWasClicked
         * @param node the html element to inspect
         */
        handleWasClicked: function(node, id) {
            if (this.isHandle(id, node.id)) {
                return true;
            } else {
                // check to see if this is a text node child of the one we want
                var p = node.parentNode;

                while (p) {
                    if (this.isHandle(id, p.id)) {
                        return true;
                    } else {
                        p = p.parentNode;
                    }
                }
            }

            return false;
        }

    };

}();

// shorter alias, save a few bytes
Ext.dd.DDM = Ext.dd.DragDropMgr;
Ext.dd.DDM._addListeners();

}

/**
 * @class Ext.dd.DD
 * A DragDrop implementation where the linked element follows the
 * mouse cursor during a drag.
 * @extends Ext.dd.DragDrop
 * @constructor
 * @param {String} id the id of the linked element
 * @param {String} sGroup the group of related DragDrop items
 * @param {object} config an object containing configurable attributes
 *                Valid properties for DD:
 *                    scroll
 */
Ext.dd.DD = function(id, sGroup, config) {
    if (id) {
        this.init(id, sGroup, config);
    }
};

Ext.extend(Ext.dd.DD, Ext.dd.DragDrop, {

    /**
     * When set to true, the utility automatically tries to scroll the browser
     * window when a drag and drop element is dragged near the viewport boundary.
     * Defaults to true.
     * @property scroll
     * @type boolean
     */
    scroll: true,

    /**
     * Sets the pointer offset to the distance between the linked element's top
     * left corner and the location the element was clicked
     * @method autoOffset
     * @param {int} iPageX the X coordinate of the click
     * @param {int} iPageY the Y coordinate of the click
     */
    autoOffset: function(iPageX, iPageY) {
        var x = iPageX - this.startPageX;
        var y = iPageY - this.startPageY;
        this.setDelta(x, y);
    },

    /**
     * Sets the pointer offset.  You can call this directly to force the
     * offset to be in a particular location (e.g., pass in 0,0 to set it
     * to the center of the object)
     * @method setDelta
     * @param {int} iDeltaX the distance from the left
     * @param {int} iDeltaY the distance from the top
     */
    setDelta: function(iDeltaX, iDeltaY) {
        this.deltaX = iDeltaX;
        this.deltaY = iDeltaY;
    },

    /**
     * Sets the drag element to the location of the mousedown or click event,
     * maintaining the cursor location relative to the location on the element
     * that was clicked.  Override this if you want to place the element in a
     * location other than where the cursor is.
     * @method setDragElPos
     * @param {int} iPageX the X coordinate of the mousedown or drag event
     * @param {int} iPageY the Y coordinate of the mousedown or drag event
     */
    setDragElPos: function(iPageX, iPageY) {
        // the first time we do this, we are going to check to make sure
        // the element has css positioning

        var el = this.getDragEl();
        this.alignElWithMouse(el, iPageX, iPageY);
    },

    /**
     * Sets the element to the location of the mousedown or click event,
     * maintaining the cursor location relative to the location on the element
     * that was clicked.  Override this if you want to place the element in a
     * location other than where the cursor is.
     * @method alignElWithMouse
     * @param {HTMLElement} el the element to move
     * @param {int} iPageX the X coordinate of the mousedown or drag event
     * @param {int} iPageY the Y coordinate of the mousedown or drag event
     */
    alignElWithMouse: function(el, iPageX, iPageY) {
        var oCoord = this.getTargetCoord(iPageX, iPageY);
        var fly = el.dom ? el : Ext.fly(el, '_dd');
        if (!this.deltaSetXY) {
            var aCoord = [oCoord.x, oCoord.y];
            fly.setXY(aCoord);
            var newLeft = fly.getLeft(true);
            var newTop  = fly.getTop(true);
            this.deltaSetXY = [ newLeft - oCoord.x, newTop - oCoord.y ];
        } else {
            fly.setLeftTop(oCoord.x + this.deltaSetXY[0], oCoord.y + this.deltaSetXY[1]);
        }

        this.cachePosition(oCoord.x, oCoord.y);
        this.autoScroll(oCoord.x, oCoord.y, el.offsetHeight, el.offsetWidth);
        return oCoord;
    },

    /**
     * Saves the most recent position so that we can reset the constraints and
     * tick marks on-demand.  We need to know this so that we can calculate the
     * number of pixels the element is offset from its original position.
     * @method cachePosition
     * @param iPageX the current x position (optional, this just makes it so we
     * don't have to look it up again)
     * @param iPageY the current y position (optional, this just makes it so we
     * don't have to look it up again)
     */
    cachePosition: function(iPageX, iPageY) {
        if (iPageX) {
            this.lastPageX = iPageX;
            this.lastPageY = iPageY;
        } else {
            var aCoord = Ext.lib.Dom.getXY(this.getEl());
            this.lastPageX = aCoord[0];
            this.lastPageY = aCoord[1];
        }
    },

    /**
     * Auto-scroll the window if the dragged object has been moved beyond the
     * visible window boundary.
     * @method autoScroll
     * @param {int} x the drag element's x position
     * @param {int} y the drag element's y position
     * @param {int} h the height of the drag element
     * @param {int} w the width of the drag element
     * @private
     */
    autoScroll: function(x, y, h, w) {

        if (this.scroll) {
            // The client height
            var clientH = Ext.lib.Dom.getViewHeight();

            // The client width
            var clientW = Ext.lib.Dom.getViewWidth();

            // The amt scrolled down
            var st = this.DDM.getScrollTop();

            // The amt scrolled right
            var sl = this.DDM.getScrollLeft();

            // Location of the bottom of the element
            var bot = h + y;

            // Location of the right of the element
            var right = w + x;

            // The distance from the cursor to the bottom of the visible area,
            // adjusted so that we don't scroll if the cursor is beyond the
            // element drag constraints
            var toBot = (clientH + st - y - this.deltaY);

            // The distance from the cursor to the right of the visible area
            var toRight = (clientW + sl - x - this.deltaX);


            // How close to the edge the cursor must be before we scroll
            // var thresh = (document.all) ? 100 : 40;
            var thresh = 40;

            // How many pixels to scroll per autoscroll op.  This helps to reduce
            // clunky scrolling. IE is more sensitive about this ... it needs this
            // value to be higher.
            var scrAmt = (document.all) ? 80 : 30;

            // Scroll down if we are near the bottom of the visible page and the
            // obj extends below the crease
            if ( bot > clientH && toBot < thresh ) {
                window.scrollTo(sl, st + scrAmt);
            }

            // Scroll up if the window is scrolled down and the top of the object
            // goes above the top border
            if ( y < st && st > 0 && y - st < thresh ) {
                window.scrollTo(sl, st - scrAmt);
            }

            // Scroll right if the obj is beyond the right border and the cursor is
            // near the border.
            if ( right > clientW && toRight < thresh ) {
                window.scrollTo(sl + scrAmt, st);
            }

            // Scroll left if the window has been scrolled to the right and the obj
            // extends past the left border
            if ( x < sl && sl > 0 && x - sl < thresh ) {
                window.scrollTo(sl - scrAmt, st);
            }
        }
    },

    /**
     * Finds the location the element should be placed if we want to move
     * it to where the mouse location less the click offset would place us.
     * @method getTargetCoord
     * @param {int} iPageX the X coordinate of the click
     * @param {int} iPageY the Y coordinate of the click
     * @return an object that contains the coordinates (Object.x and Object.y)
     * @private
     */
    getTargetCoord: function(iPageX, iPageY) {
        var x = iPageX - this.deltaX;
        var y = iPageY - this.deltaY;

        if (this.constrainX) {
            if (x < this.minX) { x = this.minX; }
            if (x > this.maxX) { x = this.maxX; }
        }

        if (this.constrainY) {
            if (y < this.minY) { y = this.minY; }
            if (y > this.maxY) { y = this.maxY; }
        }

        x = this.getTick(x, this.xTicks);
        y = this.getTick(y, this.yTicks);


        return {x:x, y:y};
    },

    /**
     * Sets up config options specific to this class. Overrides
     * Ext.dd.DragDrop, but all versions of this method through the
     * inheritance chain are called
     */
    applyConfig: function() {
        Ext.dd.DD.superclass.applyConfig.call(this);
        this.scroll = (this.config.scroll !== false);
    },

    /**
     * Event that fires prior to the onMouseDown event.  Overrides
     * Ext.dd.DragDrop.
     */
    b4MouseDown: function(e) {
        // this.resetConstraints();
        this.autoOffset(e.getPageX(),
                            e.getPageY());
    },

    /**
     * Event that fires prior to the onDrag event.  Overrides
     * Ext.dd.DragDrop.
     */
    b4Drag: function(e) {
        this.setDragElPos(e.getPageX(),
                            e.getPageY());
    },

    toString: function() {
        return ("DD " + this.id);
    }

    //////////////////////////////////////////////////////////////////////////
    // Debugging ygDragDrop events that can be overridden
    //////////////////////////////////////////////////////////////////////////
    /*
    startDrag: function(x, y) {
    },

    onDrag: function(e) {
    },

    onDragEnter: function(e, id) {
    },

    onDragOver: function(e, id) {
    },

    onDragOut: function(e, id) {
    },

    onDragDrop: function(e, id) {
    },

    endDrag: function(e) {
    }

    */

});
/**
 * @class Ext.dd.DDProxy
 * A DragDrop implementation that inserts an empty, bordered div into
 * the document that follows the cursor during drag operations.  At the time of
 * the click, the frame div is resized to the dimensions of the linked html
 * element, and moved to the exact location of the linked element.
 *
 * References to the "frame" element refer to the single proxy element that
 * was created to be dragged in place of all DDProxy elements on the
 * page.
 *
 * @extends Ext.dd.DD
 * @constructor
 * @param {String} id the id of the linked html element
 * @param {String} sGroup the group of related DragDrop objects
 * @param {object} config an object containing configurable attributes
 *                Valid properties for DDProxy in addition to those in DragDrop:
 *                   resizeFrame, centerFrame, dragElId
 */
Ext.dd.DDProxy = function(id, sGroup, config) {
    if (id) {
        this.init(id, sGroup, config);
        this.initFrame();
    }
};

/**
 * The default drag frame div id
 * @property Ext.dd.DDProxy.dragElId
 * @type String
 * @static
 */
Ext.dd.DDProxy.dragElId = "ygddfdiv";

Ext.extend(Ext.dd.DDProxy, Ext.dd.DD, {

    /**
     * By default we resize the drag frame to be the same size as the element
     * we want to drag (this is to get the frame effect).  We can turn it off
     * if we want a different behavior.
     * @property resizeFrame
     * @type boolean
     */
    resizeFrame: true,

    /**
     * By default the frame is positioned exactly where the drag element is, so
     * we use the cursor offset provided by Ext.dd.DD.  Another option that works only if
     * you do not have constraints on the obj is to have the drag frame centered
     * around the cursor.  Set centerFrame to true for this effect.
     * @property centerFrame
     * @type boolean
     */
    centerFrame: false,

    /**
     * Creates the proxy element if it does not yet exist
     * @method createFrame
     */
    createFrame: function() {
        var self = this;
        var body = document.body;

        if (!body || !body.firstChild) {
            setTimeout( function() { self.createFrame(); }, 50 );
            return;
        }

        var div = this.getDragEl();

        if (!div) {
            div    = document.createElement("div");
            div.id = this.dragElId;
            var s  = div.style;

            s.position   = "absolute";
            s.visibility = "hidden";
            s.cursor     = "move";
            s.border     = "2px solid #aaa";
            s.zIndex     = 999;

            // appendChild can blow up IE if invoked prior to the window load event
            // while rendering a table.  It is possible there are other scenarios
            // that would cause this to happen as well.
            body.insertBefore(div, body.firstChild);
        }
    },

    /**
     * Initialization for the drag frame element.  Must be called in the
     * constructor of all subclasses
     * @method initFrame
     */
    initFrame: function() {
        this.createFrame();
    },

    applyConfig: function() {
        Ext.dd.DDProxy.superclass.applyConfig.call(this);

        this.resizeFrame = (this.config.resizeFrame !== false);
        this.centerFrame = (this.config.centerFrame);
        this.setDragElId(this.config.dragElId || Ext.dd.DDProxy.dragElId);
    },

    /**
     * Resizes the drag frame to the dimensions of the clicked object, positions
     * it over the object, and finally displays it
     * @method showFrame
     * @param {int} iPageX X click position
     * @param {int} iPageY Y click position
     * @private
     */
    showFrame: function(iPageX, iPageY) {
        var el = this.getEl();
        var dragEl = this.getDragEl();
        var s = dragEl.style;

        this._resizeProxy();

        if (this.centerFrame) {
            this.setDelta( Math.round(parseInt(s.width,  10)/2),
                           Math.round(parseInt(s.height, 10)/2) );
        }

        this.setDragElPos(iPageX, iPageY);

        Ext.fly(dragEl).show();
    },

    /**
     * The proxy is automatically resized to the dimensions of the linked
     * element when a drag is initiated, unless resizeFrame is set to false
     * @method _resizeProxy
     * @private
     */
    _resizeProxy: function() {
        if (this.resizeFrame) {
            var el = this.getEl();
            Ext.fly(this.getDragEl()).setSize(el.offsetWidth, el.offsetHeight);
        }
    },

    // overrides Ext.dd.DragDrop
    b4MouseDown: function(e) {
        var x = e.getPageX();
        var y = e.getPageY();
        this.autoOffset(x, y);
        this.setDragElPos(x, y);
    },

    // overrides Ext.dd.DragDrop
    b4StartDrag: function(x, y) {
        // show the drag frame
        this.showFrame(x, y);
    },

    // overrides Ext.dd.DragDrop
    b4EndDrag: function(e) {
        Ext.fly(this.getDragEl()).hide();
    },

    // overrides Ext.dd.DragDrop
    // By default we try to move the element to the last location of the frame.
    // This is so that the default behavior mirrors that of Ext.dd.DD.
    endDrag: function(e) {

        var lel = this.getEl();
        var del = this.getDragEl();

        // Show the drag frame briefly so we can get its position
        del.style.visibility = "";

        this.beforeMove();
        // Hide the linked element before the move to get around a Safari
        // rendering bug.
        lel.style.visibility = "hidden";
        Ext.dd.DDM.moveToEl(lel, del);
        del.style.visibility = "hidden";
        lel.style.visibility = "";

        this.afterDrag();
    },

    beforeMove : function(){

    },

    afterDrag : function(){

    },

    toString: function() {
        return ("DDProxy " + this.id);
    }

});
/**
 * @class Ext.dd.DDTarget
 * A DragDrop implementation that does not move, but can be a drop
 * target.  You would get the same result by simply omitting implementation
 * for the event callbacks, but this way we reduce the processing cost of the
 * event listener and the callbacks.
 * @extends Ext.dd.DragDrop
 * @constructor
 * @param {String} id the id of the element that is a drop target
 * @param {String} sGroup the group of related DragDrop objects
 * @param {object} config an object containing configurable attributes
 *                 Valid properties for DDTarget in addition to those in
 *                 DragDrop:
 *                    none
 */
Ext.dd.DDTarget = function(id, sGroup, config) {
    if (id) {
        this.initTarget(id, sGroup, config);
    }
};

// Ext.dd.DDTarget.prototype = new Ext.dd.DragDrop();
Ext.extend(Ext.dd.DDTarget, Ext.dd.DragDrop, {
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    getDragEl: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    isValidHandleChild: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    startDrag: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    endDrag: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onDrag: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onDragDrop: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onDragEnter: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onDragOut: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onDragOver: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onInvalidDrop: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onMouseDown: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    onMouseUp: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    setXConstraint: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    setYConstraint: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    resetConstraints: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    clearConstraints: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    clearTicks: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    setInitPosition: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    setDragElId: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    setHandleElId: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    setOuterHandleElId: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    addInvalidHandleClass: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    addInvalidHandleId: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    addInvalidHandleType: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    removeInvalidHandleClass: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    removeInvalidHandleId: Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. A DDTarget does not support being dragged.
     * @method
     */
    removeInvalidHandleType: Ext.emptyFn,

    toString: function() {
        return ("DDTarget " + this.id);
    }
});/**
 * @class Ext.dd.DragTracker
 * @extends Ext.util.Observable
 * A DragTracker listens for drag events on an Element and fires events at the start and end of the drag,
 * as well as during the drag. This is useful for components such as {@link Ext.slider.MultiSlider}, where there is
 * an element that can be dragged around to change the Slider's value.
 * DragTracker provides a series of template methods that should be overridden to provide functionality
 * in response to detected drag operations. These are onBeforeStart, onStart, onDrag and onEnd.
 * See {@link Ext.slider.MultiSlider}'s initEvents function for an example implementation.
 */
Ext.dd.DragTracker = Ext.extend(Ext.util.Observable,  {    
    /**
     * @cfg {Boolean} active
	 * Defaults to false.
	 */	
    active: false,
    /**
     * @cfg {Number} tolerance
	 * Number of pixels the drag target must be moved before dragging is considered to have started. Defaults to 5.
	 */	
    tolerance: 5,
    /**
     * @cfg {Boolean/Number} autoStart
	 * Defaults to false. Specify true to defer trigger start by 1000 ms.
	 * Specify a Number for the number of milliseconds to defer trigger start.
	 */	
    autoStart: false,
    
    constructor : function(config){
        Ext.apply(this, config);
	    this.addEvents(
	        /**
	         * @event mousedown
	         * @param {Object} this
	         * @param {Object} e event object
	         */
	        'mousedown',
	        /**
	         * @event mouseup
	         * @param {Object} this
	         * @param {Object} e event object
	         */
	        'mouseup',
	        /**
	         * @event mousemove
	         * @param {Object} this
	         * @param {Object} e event object
	         */
	        'mousemove',
	        /**
	         * @event dragstart
	         * @param {Object} this
	         * @param {Object} e event object
	         */
	        'dragstart',
	        /**
	         * @event dragend
	         * @param {Object} this
	         * @param {Object} e event object
	         */
	        'dragend',
	        /**
	         * @event drag
	         * @param {Object} this
	         * @param {Object} e event object
	         */
	        'drag'
	    );
	
	    this.dragRegion = new Ext.lib.Region(0,0,0,0);
	
	    if(this.el){
	        this.initEl(this.el);
	    }
        Ext.dd.DragTracker.superclass.constructor.call(this, config);
    },

    initEl: function(el){
        this.el = Ext.get(el);
        el.on('mousedown', this.onMouseDown, this,
                this.delegate ? {delegate: this.delegate} : undefined);
    },

    destroy : function(){
        this.el.un('mousedown', this.onMouseDown, this);
        delete this.el;
    },

    onMouseDown: function(e, target){
        if(this.fireEvent('mousedown', this, e) !== false && this.onBeforeStart(e) !== false){
            this.startXY = this.lastXY = e.getXY();
            this.dragTarget = this.delegate ? target : this.el.dom;
            if(this.preventDefault !== false){
                e.preventDefault();
            }
            Ext.getDoc().on({
                scope: this,
                mouseup: this.onMouseUp,
                mousemove: this.onMouseMove,
                selectstart: this.stopSelect
            });
            if(this.autoStart){
                this.timer = this.triggerStart.defer(this.autoStart === true ? 1000 : this.autoStart, this, [e]);
            }
        }
    },

    onMouseMove: function(e, target){
        // HACK: IE hack to see if button was released outside of window. Resolved in IE9.
        var ieCheck = Ext.isIE6 || Ext.isIE7 || Ext.isIE8;
        if(this.active && ieCheck && !e.browserEvent.button){
            e.preventDefault();
            this.onMouseUp(e);
            return;
        }

        e.preventDefault();
        var xy = e.getXY(), s = this.startXY;
        this.lastXY = xy;
        if(!this.active){
            if(Math.abs(s[0]-xy[0]) > this.tolerance || Math.abs(s[1]-xy[1]) > this.tolerance){
                this.triggerStart(e);
            }else{
                return;
            }
        }
        this.fireEvent('mousemove', this, e);
        this.onDrag(e);
        this.fireEvent('drag', this, e);
    },

    onMouseUp: function(e) {
        var doc = Ext.getDoc(),
            wasActive = this.active;
            
        doc.un('mousemove', this.onMouseMove, this);
        doc.un('mouseup', this.onMouseUp, this);
        doc.un('selectstart', this.stopSelect, this);
        e.preventDefault();
        this.clearStart();
        this.active = false;
        delete this.elRegion;
        this.fireEvent('mouseup', this, e);
        if(wasActive){
            this.onEnd(e);
            this.fireEvent('dragend', this, e);
        }
    },

    triggerStart: function(e) {
        this.clearStart();
        this.active = true;
        this.onStart(e);
        this.fireEvent('dragstart', this, e);
    },

    clearStart : function() {
        if(this.timer){
            clearTimeout(this.timer);
            delete this.timer;
        }
    },

    stopSelect : function(e) {
        e.stopEvent();
        return false;
    },
    
    /**
     * Template method which should be overridden by each DragTracker instance. Called when the user first clicks and
     * holds the mouse button down. Return false to disallow the drag
     * @param {Ext.EventObject} e The event object
     */
    onBeforeStart : function(e) {

    },

    /**
     * Template method which should be overridden by each DragTracker instance. Called when a drag operation starts
     * (e.g. the user has moved the tracked element beyond the specified tolerance)
     * @param {Ext.EventObject} e The event object
     */
    onStart : function(xy) {

    },

    /**
     * Template method which should be overridden by each DragTracker instance. Called whenever a drag has been detected.
     * @param {Ext.EventObject} e The event object
     */
    onDrag : function(e) {

    },

    /**
     * Template method which should be overridden by each DragTracker instance. Called when a drag operation has been completed
     * (e.g. the user clicked and held the mouse down, dragged the element and then released the mouse button)
     * @param {Ext.EventObject} e The event object
     */
    onEnd : function(e) {

    },

    /**
     * Returns the drag target
     * @return {Ext.Element} The element currently being tracked
     */
    getDragTarget : function(){
        return this.dragTarget;
    },

    getDragCt : function(){
        return this.el;
    },

    getXY : function(constrain){
        return constrain ?
               this.constrainModes[constrain].call(this, this.lastXY) : this.lastXY;
    },

    getOffset : function(constrain){
        var xy = this.getXY(constrain),
            s = this.startXY;
        return [s[0]-xy[0], s[1]-xy[1]];
    },

    constrainModes: {
        'point' : function(xy){

            if(!this.elRegion){
                this.elRegion = this.getDragCt().getRegion();
            }

            var dr = this.dragRegion;

            dr.left = xy[0];
            dr.top = xy[1];
            dr.right = xy[0];
            dr.bottom = xy[1];

            dr.constrainTo(this.elRegion);

            return [dr.left, dr.top];
        }
    }
});/**
 * @class Ext.dd.ScrollManager
 * 
    Provides automatic scrolling of overflow regions in the page during drag operations.
    
 * 
    The ScrollManager configs will be used as the defaults for any scroll container registered with it,
 * but you can also override most of the configs per scroll container by adding a 
 * ddScrollConfig object to the target element that contains these properties: {@link #hthresh},
 * {@link #vthresh}, {@link #increment} and {@link #frequency}.  Example usage:
 * 
    
var el = Ext.get('scroll-ct');
el.ddScrollConfig = {
    vthresh: 50,
    hthresh: -1,
    frequency: 100,
    increment: 200
};
Ext.dd.ScrollManager.register(el);

    
 * Note: This class uses "Point Mode" and is untested in "Intersect Mode".
 * @singleton
 */
Ext.dd.ScrollManager = function(){
    var ddm = Ext.dd.DragDropMgr;
    var els = {};
    var dragEl = null;
    var proc = {};
    
    var onStop = function(e){
        dragEl = null;
        clearProc();
    };
    
    var triggerRefresh = function(){
        if(ddm.dragCurrent){
             ddm.refreshCache(ddm.dragCurrent.groups);
        }
    };
    
    var doScroll = function(){
        if(ddm.dragCurrent){
            var dds = Ext.dd.ScrollManager;
            var inc = proc.el.ddScrollConfig ?
                      proc.el.ddScrollConfig.increment : dds.increment;
            if(!dds.animate){
                if(proc.el.scroll(proc.dir, inc)){
                    triggerRefresh();
                }
            }else{
                proc.el.scroll(proc.dir, inc, true, dds.animDuration, triggerRefresh);
            }
        }
    };
    
    var clearProc = function(){
        if(proc.id){
            clearInterval(proc.id);
        }
        proc.id = 0;
        proc.el = null;
        proc.dir = "";
    };

    var startProc = function(el, dir){
        clearProc();
        proc.el = el;
        proc.dir = dir;
        var group = el.ddScrollConfig ? el.ddScrollConfig.ddGroup : undefined,
            freq  = (el.ddScrollConfig && el.ddScrollConfig.frequency)
                  ? el.ddScrollConfig.frequency
                  : Ext.dd.ScrollManager.frequency;

        if (group === undefined || ddm.dragCurrent.ddGroup == group) {
            proc.id = setInterval(doScroll, freq);
        }
    };
    
    var onFire = function(e, isDrop){
        if(isDrop || !ddm.dragCurrent){ return; }
        var dds = Ext.dd.ScrollManager;
        if(!dragEl || dragEl != ddm.dragCurrent){
            dragEl = ddm.dragCurrent;
            // refresh regions on drag start
            dds.refreshCache();
        }
        
        var xy = Ext.lib.Event.getXY(e);
        var pt = new Ext.lib.Point(xy[0], xy[1]);
        for(var id in els){
            var el = els[id], r = el._region;
            var c = el.ddScrollConfig ? el.ddScrollConfig : dds;
            if(r && r.contains(pt) && el.isScrollable()){
                if(r.bottom - pt.y <= c.vthresh){
                    if(proc.el != el){
                        startProc(el, "down");
                    }
                    return;
                }else if(r.right - pt.x <= c.hthresh){
                    if(proc.el != el){
                        startProc(el, "left");
                    }
                    return;
                }else if(pt.y - r.top <= c.vthresh){
                    if(proc.el != el){
                        startProc(el, "up");
                    }
                    return;
                }else if(pt.x - r.left <= c.hthresh){
                    if(proc.el != el){
                        startProc(el, "right");
                    }
                    return;
                }
            }
        }
        clearProc();
    };
    
    ddm.fireEvents = ddm.fireEvents.createSequence(onFire, ddm);
    ddm.stopDrag = ddm.stopDrag.createSequence(onStop, ddm);
    
    return {
        /**
         * Registers new overflow element(s) to auto scroll
         * @param {Mixed/Array} el The id of or the element to be scrolled or an array of either
         */
        register : function(el){
            if(Ext.isArray(el)){
                for(var i = 0, len = el.length; i < len; i++) {
                	this.register(el[i]);
                }
            }else{
                el = Ext.get(el);
                els[el.id] = el;
            }
        },
        
        /**
         * Unregisters overflow element(s) so they are no longer scrolled
         * @param {Mixed/Array} el The id of or the element to be removed or an array of either
         */
        unregister : function(el){
            if(Ext.isArray(el)){
                for(var i = 0, len = el.length; i < len; i++) {
                	this.unregister(el[i]);
                }
            }else{
                el = Ext.get(el);
                delete els[el.id];
            }
        },
        
        /**
         * The number of pixels from the top or bottom edge of a container the pointer needs to be to
         * trigger scrolling (defaults to 25)
         * @type Number
         */
        vthresh : 25,
        /**
         * The number of pixels from the right or left edge of a container the pointer needs to be to
         * trigger scrolling (defaults to 25)
         * @type Number
         */
        hthresh : 25,

        /**
         * The number of pixels to scroll in each scroll increment (defaults to 100)
         * @type Number
         */
        increment : 100,
        
        /**
         * The frequency of scrolls in milliseconds (defaults to 500)
         * @type Number
         */
        frequency : 500,
        
        /**
         * True to animate the scroll (defaults to true)
         * @type Boolean
         */
        animate: true,
        
        /**
         * The animation duration in seconds - 
         * MUST BE less than Ext.dd.ScrollManager.frequency! (defaults to .4)
         * @type Number
         */
        animDuration: .4,
        
        /**
         * The named drag drop {@link Ext.dd.DragSource#ddGroup group} to which this container belongs (defaults to undefined). 
         * If a ddGroup is specified, then container scrolling will only occur when a dragged object is in the same ddGroup.
         * @type String
         */
        ddGroup: undefined,
        
        /**
         * Manually trigger a cache refresh.
         */
        refreshCache : function(){
            for(var id in els){
                if(typeof els[id] == 'object'){ // for people extending the object prototype
                    els[id]._region = els[id].getRegion();
                }
            }
        }
    };
}();/**
 * @class Ext.dd.Registry
 * Provides easy access to all drag drop components that are registered on a page.  Items can be retrieved either
 * directly by DOM node id, or by passing in the drag drop event that occurred and looking up the event target.
 * @singleton
 */
Ext.dd.Registry = function(){
    var elements = {}; 
    var handles = {}; 
    var autoIdSeed = 0;

    var getId = function(el, autogen){
        if(typeof el == "string"){
            return el;
        }
        var id = el.id;
        if(!id && autogen !== false){
            id = "extdd-" + (++autoIdSeed);
            el.id = id;
        }
        return id;
    };
    
    return {
    /**
     * Resgister a drag drop element
     * @param {String/HTMLElement} element The id or DOM node to register
     * @param {Object} data (optional) An custom data object that will be passed between the elements that are involved
     * in drag drop operations.  You can populate this object with any arbitrary properties that your own code
     * knows how to interpret, plus there are some specific properties known to the Registry that should be
     * populated in the data object (if applicable):
     * 
    Value      Description
    
---------  ------------------------------------------
    
handles    Array of DOM nodes that trigger dragging
    
           for the element being registered
    
isHandle   True if the element passed in triggers
    
           dragging itself, else false

    
     */
        register : function(el, data){
            data = data || {};
            if(typeof el == "string"){
                el = document.getElementById(el);
            }
            data.ddel = el;
            elements[getId(el)] = data;
            if(data.isHandle !== false){
                handles[data.ddel.id] = data;
            }
            if(data.handles){
                var hs = data.handles;
                for(var i = 0, len = hs.length; i < len; i++){
                	handles[getId(hs[i])] = data;
                }
            }
        },

    /**
     * Unregister a drag drop element
     * @param {String/HTMLElement} element The id or DOM node to unregister
     */
        unregister : function(el){
            var id = getId(el, false);
            var data = elements[id];
            if(data){
                delete elements[id];
                if(data.handles){
                    var hs = data.handles;
                    for(var i = 0, len = hs.length; i < len; i++){
                    	delete handles[getId(hs[i], false)];
                    }
                }
            }
        },

    /**
     * Returns the handle registered for a DOM Node by id
     * @param {String/HTMLElement} id The DOM node or id to look up
     * @return {Object} handle The custom handle data
     */
        getHandle : function(id){
            if(typeof id != "string"){ // must be element?
                id = id.id;
            }
            return handles[id];
        },

    /**
     * Returns the handle that is registered for the DOM node that is the target of the event
     * @param {Event} e The event
     * @return {Object} handle The custom handle data
     */
        getHandleFromEvent : function(e){
            var t = Ext.lib.Event.getTarget(e);
            return t ? handles[t.id] : null;
        },

    /**
     * Returns a custom data object that is registered for a DOM node by id
     * @param {String/HTMLElement} id The DOM node or id to look up
     * @return {Object} data The custom data
     */
        getTarget : function(id){
            if(typeof id != "string"){ // must be element?
                id = id.id;
            }
            return elements[id];
        },

    /**
     * Returns a custom data object that is registered for the DOM node that is the target of the event
     * @param {Event} e The event
     * @return {Object} data The custom data
     */
        getTargetFromEvent : function(e){
            var t = Ext.lib.Event.getTarget(e);
            return t ? elements[t.id] || handles[t.id] : null;
        }
    };
}();/**
 * @class Ext.dd.StatusProxy
 * A specialized drag proxy that supports a drop status icon, {@link Ext.Layer} styles and auto-repair.  This is the
 * default drag proxy used by all Ext.dd components.
 * @constructor
 * @param {Object} config
 */
Ext.dd.StatusProxy = function(config){
    Ext.apply(this, config);
    this.id = this.id || Ext.id();
    this.el = new Ext.Layer({
        dh: {
            id: this.id, tag: "div", cls: "x-dd-drag-proxy "+this.dropNotAllowed, children: [
                {tag: "div", cls: "x-dd-drop-icon"},
                {tag: "div", cls: "x-dd-drag-ghost"}
            ]
        }, 
        shadow: !config || config.shadow !== false
    });
    this.ghost = Ext.get(this.el.dom.childNodes[1]);
    this.dropStatus = this.dropNotAllowed;
};

Ext.dd.StatusProxy.prototype = {
    /**
     * @cfg {String} dropAllowed
     * The CSS class to apply to the status element when drop is allowed (defaults to "x-dd-drop-ok").
     */
    dropAllowed : "x-dd-drop-ok",
    /**
     * @cfg {String} dropNotAllowed
     * The CSS class to apply to the status element when drop is not allowed (defaults to "x-dd-drop-nodrop").
     */
    dropNotAllowed : "x-dd-drop-nodrop",

    /**
     * Updates the proxy's visual element to indicate the status of whether or not drop is allowed
     * over the current target element.
     * @param {String} cssClass The css class for the new drop status indicator image
     */
    setStatus : function(cssClass){
        cssClass = cssClass || this.dropNotAllowed;
        if(this.dropStatus != cssClass){
            this.el.replaceClass(this.dropStatus, cssClass);
            this.dropStatus = cssClass;
        }
    },

    /**
     * Resets the status indicator to the default dropNotAllowed value
     * @param {Boolean} clearGhost True to also remove all content from the ghost, false to preserve it
     */
    reset : function(clearGhost){
        this.el.dom.className = "x-dd-drag-proxy " + this.dropNotAllowed;
        this.dropStatus = this.dropNotAllowed;
        if(clearGhost){
            this.ghost.update("");
        }
    },

    /**
     * Updates the contents of the ghost element
     * @param {String/HTMLElement} html The html that will replace the current innerHTML of the ghost element, or a
     * DOM node to append as the child of the ghost element (in which case the innerHTML will be cleared first).
     */
    update : function(html){
        if(typeof html == "string"){
            this.ghost.update(html);
        }else{
            this.ghost.update("");
            html.style.margin = "0";
            this.ghost.dom.appendChild(html);
        }
        var el = this.ghost.dom.firstChild; 
        if(el){
            Ext.fly(el).setStyle('float', 'none');
        }
    },

    /**
     * Returns the underlying proxy {@link Ext.Layer}
     * @return {Ext.Layer} el
    */
    getEl : function(){
        return this.el;
    },

    /**
     * Returns the ghost element
     * @return {Ext.Element} el
     */
    getGhost : function(){
        return this.ghost;
    },

    /**
     * Hides the proxy
     * @param {Boolean} clear True to reset the status and clear the ghost contents, false to preserve them
     */
    hide : function(clear){
        this.el.hide();
        if(clear){
            this.reset(true);
        }
    },

    /**
     * Stops the repair animation if it's currently running
     */
    stop : function(){
        if(this.anim && this.anim.isAnimated && this.anim.isAnimated()){
            this.anim.stop();
        }
    },

    /**
     * Displays this proxy
     */
    show : function(){
        this.el.show();
    },

    /**
     * Force the Layer to sync its shadow and shim positions to the element
     */
    sync : function(){
        this.el.sync();
    },

    /**
     * Causes the proxy to return to its position of origin via an animation.  Should be called after an
     * invalid drop operation by the item being dragged.
     * @param {Array} xy The XY position of the element ([x, y])
     * @param {Function} callback The function to call after the repair is complete.
     * @param {Object} scope The scope (this reference) in which the callback function is executed. Defaults to the browser window.
     */
    repair : function(xy, callback, scope){
        this.callback = callback;
        this.scope = scope;
        if(xy && this.animRepair !== false){
            this.el.addClass("x-dd-drag-repair");
            this.el.hideUnders(true);
            this.anim = this.el.shift({
                duration: this.repairDuration || .5,
                easing: 'easeOut',
                xy: xy,
                stopFx: true,
                callback: this.afterRepair,
                scope: this
            });
        }else{
            this.afterRepair();
        }
    },

    // private
    afterRepair : function(){
        this.hide(true);
        if(typeof this.callback == "function"){
            this.callback.call(this.scope || this);
        }
        this.callback = null;
        this.scope = null;
    },
    
    destroy: function(){
        Ext.destroy(this.ghost, this.el);    
    }
};/**
 * @class Ext.dd.DragSource
 * @extends Ext.dd.DDProxy
 * A simple class that provides the basic implementation needed to make any element draggable.
 * @constructor
 * @param {Mixed} el The container element
 * @param {Object} config
 */
Ext.dd.DragSource = function(el, config){
    this.el = Ext.get(el);
    if(!this.dragData){
        this.dragData = {};
    }
    
    Ext.apply(this, config);
    
    if(!this.proxy){
        this.proxy = new Ext.dd.StatusProxy();
    }
    Ext.dd.DragSource.superclass.constructor.call(this, this.el.dom, this.ddGroup || this.group, 
          {dragElId : this.proxy.id, resizeFrame: false, isTarget: false, scroll: this.scroll === true});
    
    this.dragging = false;
};

Ext.extend(Ext.dd.DragSource, Ext.dd.DDProxy, {
    /**
     * @cfg {String} ddGroup
     * A named drag drop group to which this object belongs.  If a group is specified, then this object will only
     * interact with other drag drop objects in the same group (defaults to undefined).
     */
    /**
     * @cfg {String} dropAllowed
     * The CSS class returned to the drag source when drop is allowed (defaults to "x-dd-drop-ok").
     */
    dropAllowed : "x-dd-drop-ok",
    /**
     * @cfg {String} dropNotAllowed
     * The CSS class returned to the drag source when drop is not allowed (defaults to "x-dd-drop-nodrop").
     */
    dropNotAllowed : "x-dd-drop-nodrop",

    /**
     * Returns the data object associated with this drag source
     * @return {Object} data An object containing arbitrary data
     */
    getDragData : function(e){
        return this.dragData;
    },

    // private
    onDragEnter : function(e, id){
        var target = Ext.dd.DragDropMgr.getDDById(id);
        this.cachedTarget = target;
        if(this.beforeDragEnter(target, e, id) !== false){
            if(target.isNotifyTarget){
                var status = target.notifyEnter(this, e, this.dragData);
                this.proxy.setStatus(status);
            }else{
                this.proxy.setStatus(this.dropAllowed);
            }
            
            if(this.afterDragEnter){
                /**
                 * An empty function by default, but provided so that you can perform a custom action
                 * when the dragged item enters the drop target by providing an implementation.
                 * @param {Ext.dd.DragDrop} target The drop target
                 * @param {Event} e The event object
                 * @param {String} id The id of the dragged element
                 * @method afterDragEnter
                 */
                this.afterDragEnter(target, e, id);
            }
        }
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action
     * before the dragged item enters the drop target and optionally cancel the onDragEnter.
     * @param {Ext.dd.DragDrop} target The drop target
     * @param {Event} e The event object
     * @param {String} id The id of the dragged element
     * @return {Boolean} isValid True if the drag event is valid, else false to cancel
     */
    beforeDragEnter : function(target, e, id){
        return true;
    },

    // private
    alignElWithMouse: function() {
        Ext.dd.DragSource.superclass.alignElWithMouse.apply(this, arguments);
        this.proxy.sync();
    },

    // private
    onDragOver : function(e, id){
        var target = this.cachedTarget || Ext.dd.DragDropMgr.getDDById(id);
        if(this.beforeDragOver(target, e, id) !== false){
            if(target.isNotifyTarget){
                var status = target.notifyOver(this, e, this.dragData);
                this.proxy.setStatus(status);
            }

            if(this.afterDragOver){
                /**
                 * An empty function by default, but provided so that you can perform a custom action
                 * while the dragged item is over the drop target by providing an implementation.
                 * @param {Ext.dd.DragDrop} target The drop target
                 * @param {Event} e The event object
                 * @param {String} id The id of the dragged element
                 * @method afterDragOver
                 */
                this.afterDragOver(target, e, id);
            }
        }
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action
     * while the dragged item is over the drop target and optionally cancel the onDragOver.
     * @param {Ext.dd.DragDrop} target The drop target
     * @param {Event} e The event object
     * @param {String} id The id of the dragged element
     * @return {Boolean} isValid True if the drag event is valid, else false to cancel
     */
    beforeDragOver : function(target, e, id){
        return true;
    },

    // private
    onDragOut : function(e, id){
        var target = this.cachedTarget || Ext.dd.DragDropMgr.getDDById(id);
        if(this.beforeDragOut(target, e, id) !== false){
            if(target.isNotifyTarget){
                target.notifyOut(this, e, this.dragData);
            }
            this.proxy.reset();
            if(this.afterDragOut){
                /**
                 * An empty function by default, but provided so that you can perform a custom action
                 * after the dragged item is dragged out of the target without dropping.
                 * @param {Ext.dd.DragDrop} target The drop target
                 * @param {Event} e The event object
                 * @param {String} id The id of the dragged element
                 * @method afterDragOut
                 */
                this.afterDragOut(target, e, id);
            }
        }
        this.cachedTarget = null;
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action before the dragged
     * item is dragged out of the target without dropping, and optionally cancel the onDragOut.
     * @param {Ext.dd.DragDrop} target The drop target
     * @param {Event} e The event object
     * @param {String} id The id of the dragged element
     * @return {Boolean} isValid True if the drag event is valid, else false to cancel
     */
    beforeDragOut : function(target, e, id){
        return true;
    },
    
    // private
    onDragDrop : function(e, id){
        var target = this.cachedTarget || Ext.dd.DragDropMgr.getDDById(id);
        if(this.beforeDragDrop(target, e, id) !== false){
            if(target.isNotifyTarget){
                if(target.notifyDrop(this, e, this.dragData)){ // valid drop?
                    this.onValidDrop(target, e, id);
                }else{
                    this.onInvalidDrop(target, e, id);
                }
            }else{
                this.onValidDrop(target, e, id);
            }
            
            if(this.afterDragDrop){
                /**
                 * An empty function by default, but provided so that you can perform a custom action
                 * after a valid drag drop has occurred by providing an implementation.
                 * @param {Ext.dd.DragDrop} target The drop target
                 * @param {Event} e The event object
                 * @param {String} id The id of the dropped element
                 * @method afterDragDrop
                 */
                this.afterDragDrop(target, e, id);
            }
        }
        delete this.cachedTarget;
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action before the dragged
     * item is dropped onto the target and optionally cancel the onDragDrop.
     * @param {Ext.dd.DragDrop} target The drop target
     * @param {Event} e The event object
     * @param {String} id The id of the dragged element
     * @return {Boolean} isValid True if the drag drop event is valid, else false to cancel
     */
    beforeDragDrop : function(target, e, id){
        return true;
    },

    // private
    onValidDrop : function(target, e, id){
        this.hideProxy();
        if(this.afterValidDrop){
            /**
             * An empty function by default, but provided so that you can perform a custom action
             * after a valid drop has occurred by providing an implementation.
             * @param {Object} target The target DD 
             * @param {Event} e The event object
             * @param {String} id The id of the dropped element
             * @method afterValidDrop
             */
            this.afterValidDrop(target, e, id);
        }
    },

    // private
    getRepairXY : function(e, data){
        return this.el.getXY();  
    },

    // private
    onInvalidDrop : function(target, e, id){
        this.beforeInvalidDrop(target, e, id);
        if(this.cachedTarget){
            if(this.cachedTarget.isNotifyTarget){
                this.cachedTarget.notifyOut(this, e, this.dragData);
            }
            this.cacheTarget = null;
        }
        this.proxy.repair(this.getRepairXY(e, this.dragData), this.afterRepair, this);

        if(this.afterInvalidDrop){
            /**
             * An empty function by default, but provided so that you can perform a custom action
             * after an invalid drop has occurred by providing an implementation.
             * @param {Event} e The event object
             * @param {String} id The id of the dropped element
             * @method afterInvalidDrop
             */
            this.afterInvalidDrop(e, id);
        }
    },

    // private
    afterRepair : function(){
        if(Ext.enableFx){
            this.el.highlight(this.hlColor || "c3daf9");
        }
        this.dragging = false;
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action after an invalid
     * drop has occurred.
     * @param {Ext.dd.DragDrop} target The drop target
     * @param {Event} e The event object
     * @param {String} id The id of the dragged element
     * @return {Boolean} isValid True if the invalid drop should proceed, else false to cancel
     */
    beforeInvalidDrop : function(target, e, id){
        return true;
    },

    // private
    handleMouseDown : function(e){
        if(this.dragging) {
            return;
        }
        var data = this.getDragData(e);
        if(data && this.onBeforeDrag(data, e) !== false){
            this.dragData = data;
            this.proxy.stop();
            Ext.dd.DragSource.superclass.handleMouseDown.apply(this, arguments);
        } 
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action before the initial
     * drag event begins and optionally cancel it.
     * @param {Object} data An object containing arbitrary data to be shared with drop targets
     * @param {Event} e The event object
     * @return {Boolean} isValid True if the drag event is valid, else false to cancel
     */
    onBeforeDrag : function(data, e){
        return true;
    },

    /**
     * An empty function by default, but provided so that you can perform a custom action once the initial
     * drag event has begun.  The drag cannot be canceled from this function.
     * @param {Number} x The x position of the click on the dragged object
     * @param {Number} y The y position of the click on the dragged object
     */
    onStartDrag : Ext.emptyFn,

    // private override
    startDrag : function(x, y){
        this.proxy.reset();
        this.dragging = true;
        this.proxy.update("");
        this.onInitDrag(x, y);
        this.proxy.show();
    },

    // private
    onInitDrag : function(x, y){
        var clone = this.el.dom.cloneNode(true);
        clone.id = Ext.id(); // prevent duplicate ids
        this.proxy.update(clone);
        this.onStartDrag(x, y);
        return true;
    },

    /**
     * Returns the drag source's underlying {@link Ext.dd.StatusProxy}
     * @return {Ext.dd.StatusProxy} proxy The StatusProxy
     */
    getProxy : function(){
        return this.proxy;  
    },

    /**
     * Hides the drag source's {@link Ext.dd.StatusProxy}
     */
    hideProxy : function(){
        this.proxy.hide();  
        this.proxy.reset(true);
        this.dragging = false;
    },

    // private
    triggerCacheRefresh : function(){
        Ext.dd.DDM.refreshCache(this.groups);
    },

    // private - override to prevent hiding
    b4EndDrag: function(e) {
    },

    // private - override to prevent moving
    endDrag : function(e){
        this.onEndDrag(this.dragData, e);
    },

    // private
    onEndDrag : function(data, e){
    },
    
    // private - pin to cursor
    autoOffset : function(x, y) {
        this.setDelta(-12, -20);
    },
    
    destroy: function(){
        Ext.dd.DragSource.superclass.destroy.call(this);
        Ext.destroy(this.proxy);
    }
});/**
 * @class Ext.dd.DropTarget
 * @extends Ext.dd.DDTarget
 * A simple class that provides the basic implementation needed to make any element a drop target that can have
 * draggable items dropped onto it.  The drop has no effect until an implementation of notifyDrop is provided.
 * @constructor
 * @param {Mixed} el The container element
 * @param {Object} config
 */
Ext.dd.DropTarget = Ext.extend(Ext.dd.DDTarget, {
    
    constructor : function(el, config){
        this.el = Ext.get(el);
    
        Ext.apply(this, config);
    
        if(this.containerScroll){
            Ext.dd.ScrollManager.register(this.el);
        }
    
        Ext.dd.DropTarget.superclass.constructor.call(this, this.el.dom, this.ddGroup || this.group, 
              {isTarget: true});        
    },
    
    /**
     * @cfg {String} ddGroup
     * A named drag drop group to which this object belongs.  If a group is specified, then this object will only
     * interact with other drag drop objects in the same group (defaults to undefined).
     */
    /**
     * @cfg {String} overClass
     * The CSS class applied to the drop target element while the drag source is over it (defaults to "").
     */
    /**
     * @cfg {String} dropAllowed
     * The CSS class returned to the drag source when drop is allowed (defaults to "x-dd-drop-ok").
     */
    dropAllowed : "x-dd-drop-ok",
    /**
     * @cfg {String} dropNotAllowed
     * The CSS class returned to the drag source when drop is not allowed (defaults to "x-dd-drop-nodrop").
     */
    dropNotAllowed : "x-dd-drop-nodrop",

    // private
    isTarget : true,

    // private
    isNotifyTarget : true,

    /**
     * The function a {@link Ext.dd.DragSource} calls once to notify this drop target that the source is now over the
     * target.  This default implementation adds the CSS class specified by overClass (if any) to the drop element
     * and returns the dropAllowed config value.  This method should be overridden if drop validation is required.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop target
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {String} status The CSS class that communicates the drop status back to the source so that the
     * underlying {@link Ext.dd.StatusProxy} can be updated
     */
    notifyEnter : function(dd, e, data){
        if(this.overClass){
            this.el.addClass(this.overClass);
        }
        return this.dropAllowed;
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls continuously while it is being dragged over the target.
     * This method will be called on every mouse movement while the drag source is over the drop target.
     * This default implementation simply returns the dropAllowed config value.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop target
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {String} status The CSS class that communicates the drop status back to the source so that the
     * underlying {@link Ext.dd.StatusProxy} can be updated
     */
    notifyOver : function(dd, e, data){
        return this.dropAllowed;
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls once to notify this drop target that the source has been dragged
     * out of the target without dropping.  This default implementation simply removes the CSS class specified by
     * overClass (if any) from the drop element.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop target
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     */
    notifyOut : function(dd, e, data){
        if(this.overClass){
            this.el.removeClass(this.overClass);
        }
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls once to notify this drop target that the dragged item has
     * been dropped on it.  This method has no default implementation and returns false, so you must provide an
     * implementation that does something to process the drop event and returns true so that the drag source's
     * repair action does not run.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop target
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {Boolean} True if the drop was valid, else false
     */
    notifyDrop : function(dd, e, data){
        return false;
    },
    
    destroy : function(){
        Ext.dd.DropTarget.superclass.destroy.call(this);
        if(this.containerScroll){
            Ext.dd.ScrollManager.unregister(this.el);
        }
    }
});/**
 * @class Ext.dd.DragZone
 * @extends Ext.dd.DragSource
 * 
    This class provides a container DD instance that allows dragging of multiple child source nodes.
    
 * 
    This class does not move the drag target nodes, but a proxy element which may contain
 * any DOM structure you wish. The DOM element to show in the proxy is provided by either a
 * provided implementation of {@link #getDragData}, or by registered draggables registered with {@link Ext.dd.Registry}
    
 * 
    If you wish to provide draggability for an arbitrary number of DOM nodes, each of which represent some
 * application object (For example nodes in a {@link Ext.DataView DataView}) then use of this class
 * is the most efficient way to "activate" those nodes.
    
 * 
    By default, this class requires that draggable child nodes are registered with {@link Ext.dd.Registry}.
 * However a simpler way to allow a DragZone to manage any number of draggable elements is to configure
 * the DragZone with  an implementation of the {@link #getDragData} method which interrogates the passed
 * mouse event to see if it has taken place within an element, or class of elements. This is easily done
 * by using the event's {@link Ext.EventObject#getTarget getTarget} method to identify a node based on a
 * {@link Ext.DomQuery} selector. For example, to make the nodes of a DataView draggable, use the following
 * technique. Knowledge of the use of the DataView is required:
    
myDataView.on('render', function(v) {
    myDataView.dragZone = new Ext.dd.DragZone(v.getEl(), {

//      On receipt of a mousedown event, see if it is within a DataView node.
//      Return a drag data object if so.
        getDragData: function(e) {

//          Use the DataView's own itemSelector (a mandatory property) to
//          test if the mousedown is within one of the DataView's nodes.
            var sourceEl = e.getTarget(v.itemSelector, 10);

//          If the mousedown is within a DataView node, clone the node to produce
//          a ddel element for use by the drag proxy. Also add application data
//          to the returned data object.
            if (sourceEl) {
                d = sourceEl.cloneNode(true);
                d.id = Ext.id();
                return {
                    ddel: d,
                    sourceEl: sourceEl,
                    repairXY: Ext.fly(sourceEl).getXY(),
                    sourceStore: v.store,
                    draggedRecord: v.{@link Ext.DataView#getRecord getRecord}(sourceEl)
                }
            }
        },

//      Provide coordinates for the proxy to slide back to on failed drag.
//      This is the original XY coordinates of the draggable element captured
//      in the getDragData method.
        getRepairXY: function() {
            return this.dragData.repairXY;
        }
    });
});
    
 * See the {@link Ext.dd.DropZone DropZone} documentation for details about building a DropZone which
 * cooperates with this DragZone.
 * @constructor
 * @param {Mixed} el The container element
 * @param {Object} config
 */
Ext.dd.DragZone = Ext.extend(Ext.dd.DragSource, {
    
    constructor : function(el, config){
        Ext.dd.DragZone.superclass.constructor.call(this, el, config);
        if(this.containerScroll){
            Ext.dd.ScrollManager.register(this.el);
        }
    },
    
    /**
     * This property contains the data representing the dragged object. This data is set up by the implementation
     * of the {@link #getDragData} method. It must contain a ddel property, but can contain
     * any other data according to the application's needs.
     * @type Object
     * @property dragData
     */
    /**
     * @cfg {Boolean} containerScroll True to register this container with the Scrollmanager
     * for auto scrolling during drag operations.
     */
    /**
     * @cfg {String} hlColor The color to use when visually highlighting the drag source in the afterRepair
     * method after a failed drop (defaults to "c3daf9" - light blue)
     */

    /**
     * Called when a mousedown occurs in this container. Looks in {@link Ext.dd.Registry}
     * for a valid target to drag based on the mouse down. Override this method
     * to provide your own lookup logic (e.g. finding a child by class name). Make sure your returned
     * object has a "ddel" attribute (with an HTML Element) for other functions to work.
     * @param {EventObject} e The mouse down event
     * @return {Object} The dragData
     */
    getDragData : function(e){
        return Ext.dd.Registry.getHandleFromEvent(e);
    },
    
    /**
     * Called once drag threshold has been reached to initialize the proxy element. By default, it clones the
     * this.dragData.ddel
     * @param {Number} x The x position of the click on the dragged object
     * @param {Number} y The y position of the click on the dragged object
     * @return {Boolean} true to continue the drag, false to cancel
     */
    onInitDrag : function(x, y){
        this.proxy.update(this.dragData.ddel.cloneNode(true));
        this.onStartDrag(x, y);
        return true;
    },
    
    /**
     * Called after a repair of an invalid drop. By default, highlights this.dragData.ddel 
     */
    afterRepair : function(){
        if(Ext.enableFx){
            Ext.Element.fly(this.dragData.ddel).highlight(this.hlColor || "c3daf9");
        }
        this.dragging = false;
    },

    /**
     * Called before a repair of an invalid drop to get the XY to animate to. By default returns
     * the XY of this.dragData.ddel
     * @param {EventObject} e The mouse up event
     * @return {Array} The xy location (e.g. [100, 200])
     */
    getRepairXY : function(e){
        return Ext.Element.fly(this.dragData.ddel).getXY();  
    },
    
    destroy : function(){
        Ext.dd.DragZone.superclass.destroy.call(this);
        if(this.containerScroll){
            Ext.dd.ScrollManager.unregister(this.el);
        }
    }
});/**
 * @class Ext.dd.DropZone
 * @extends Ext.dd.DropTarget
 * 
    This class provides a container DD instance that allows dropping on multiple child target nodes.
    
 * 
    By default, this class requires that child nodes accepting drop are registered with {@link Ext.dd.Registry}.
 * However a simpler way to allow a DropZone to manage any number of target elements is to configure the
 * DropZone with an implementation of {@link #getTargetFromEvent} which interrogates the passed
 * mouse event to see if it has taken place within an element, or class of elements. This is easily done
 * by using the event's {@link Ext.EventObject#getTarget getTarget} method to identify a node based on a
 * {@link Ext.DomQuery} selector.
    
 * 
    Once the DropZone has detected through calling getTargetFromEvent, that the mouse is over
 * a drop target, that target is passed as the first parameter to {@link #onNodeEnter}, {@link #onNodeOver},
 * {@link #onNodeOut}, {@link #onNodeDrop}. You may configure the instance of DropZone with implementations
 * of these methods to provide application-specific behaviour for these events to update both
 * application state, and UI state.
    
 * 
    For example to make a GridPanel a cooperating target with the example illustrated in
 * {@link Ext.dd.DragZone DragZone}, the following technique might be used:
    
myGridPanel.on('render', function() {
    myGridPanel.dropZone = new Ext.dd.DropZone(myGridPanel.getView().scroller, {

//      If the mouse is over a grid row, return that node. This is
//      provided as the "target" parameter in all "onNodeXXXX" node event handling functions
        getTargetFromEvent: function(e) {
            return e.getTarget(myGridPanel.getView().rowSelector);
        },

//      On entry into a target node, highlight that node.
        onNodeEnter : function(target, dd, e, data){ 
            Ext.fly(target).addClass('my-row-highlight-class');
        },

//      On exit from a target node, unhighlight that node.
        onNodeOut : function(target, dd, e, data){ 
            Ext.fly(target).removeClass('my-row-highlight-class');
        },

//      While over a target node, return the default drop allowed class which
//      places a "tick" icon into the drag proxy.
        onNodeOver : function(target, dd, e, data){ 
            return Ext.dd.DropZone.prototype.dropAllowed;
        },

//      On node drop we can interrogate the target to find the underlying
//      application object that is the real target of the dragged data.
//      In this case, it is a Record in the GridPanel's Store.
//      We can use the data set up by the DragZone's getDragData method to read
//      any data we decided to attach in the DragZone's getDragData method.
        onNodeDrop : function(target, dd, e, data){
            var rowIndex = myGridPanel.getView().findRowIndex(target);
            var r = myGridPanel.getStore().getAt(rowIndex);
            Ext.Msg.alert('Drop gesture', 'Dropped Record id ' + data.draggedRecord.id +
                ' on Record id ' + r.id);
            return true;
        }
    });
}

    
 * See the {@link Ext.dd.DragZone DragZone} documentation for details about building a DragZone which
 * cooperates with this DropZone.
 * @constructor
 * @param {Mixed} el The container element
 * @param {Object} config
 */
Ext.dd.DropZone = function(el, config){
    Ext.dd.DropZone.superclass.constructor.call(this, el, config);
};

Ext.extend(Ext.dd.DropZone, Ext.dd.DropTarget, {
    /**
     * Returns a custom data object associated with the DOM node that is the target of the event.  By default
     * this looks up the event target in the {@link Ext.dd.Registry}, although you can override this method to
     * provide your own custom lookup.
     * @param {Event} e The event
     * @return {Object} data The custom data
     */
    getTargetFromEvent : function(e){
        return Ext.dd.Registry.getTargetFromEvent(e);
    },

    /**
     * Called when the DropZone determines that a {@link Ext.dd.DragSource} has entered a drop node
     * that has either been registered or detected by a configured implementation of {@link #getTargetFromEvent}.
     * This method has no default implementation and should be overridden to provide
     * node-specific processing if necessary.
     * @param {Object} nodeData The custom data associated with the drop node (this is the same value returned from 
     * {@link #getTargetFromEvent} for this node)
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     */
    onNodeEnter : function(n, dd, e, data){
        
    },

    /**
     * Called while the DropZone determines that a {@link Ext.dd.DragSource} is over a drop node
     * that has either been registered or detected by a configured implementation of {@link #getTargetFromEvent}.
     * The default implementation returns this.dropNotAllowed, so it should be
     * overridden to provide the proper feedback.
     * @param {Object} nodeData The custom data associated with the drop node (this is the same value returned from
     * {@link #getTargetFromEvent} for this node)
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {String} status The CSS class that communicates the drop status back to the source so that the
     * underlying {@link Ext.dd.StatusProxy} can be updated
     */
    onNodeOver : function(n, dd, e, data){
        return this.dropAllowed;
    },

    /**
     * Called when the DropZone determines that a {@link Ext.dd.DragSource} has been dragged out of
     * the drop node without dropping.  This method has no default implementation and should be overridden to provide
     * node-specific processing if necessary.
     * @param {Object} nodeData The custom data associated with the drop node (this is the same value returned from
     * {@link #getTargetFromEvent} for this node)
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     */
    onNodeOut : function(n, dd, e, data){
        
    },

    /**
     * Called when the DropZone determines that a {@link Ext.dd.DragSource} has been dropped onto
     * the drop node.  The default implementation returns false, so it should be overridden to provide the
     * appropriate processing of the drop event and return true so that the drag source's repair action does not run.
     * @param {Object} nodeData The custom data associated with the drop node (this is the same value returned from
     * {@link #getTargetFromEvent} for this node)
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {Boolean} True if the drop was valid, else false
     */
    onNodeDrop : function(n, dd, e, data){
        return false;
    },

    /**
     * Called while the DropZone determines that a {@link Ext.dd.DragSource} is being dragged over it,
     * but not over any of its registered drop nodes.  The default implementation returns this.dropNotAllowed, so
     * it should be overridden to provide the proper feedback if necessary.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {String} status The CSS class that communicates the drop status back to the source so that the
     * underlying {@link Ext.dd.StatusProxy} can be updated
     */
    onContainerOver : function(dd, e, data){
        return this.dropNotAllowed;
    },

    /**
     * Called when the DropZone determines that a {@link Ext.dd.DragSource} has been dropped on it,
     * but not on any of its registered drop nodes.  The default implementation returns false, so it should be
     * overridden to provide the appropriate processing of the drop event if you need the drop zone itself to
     * be able to accept drops.  It should return true when valid so that the drag source's repair action does not run.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {Boolean} True if the drop was valid, else false
     */
    onContainerDrop : function(dd, e, data){
        return false;
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls once to notify this drop zone that the source is now over
     * the zone.  The default implementation returns this.dropNotAllowed and expects that only registered drop
     * nodes can process drag drop operations, so if you need the drop zone itself to be able to process drops
     * you should override this method and provide a custom implementation.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {String} status The CSS class that communicates the drop status back to the source so that the
     * underlying {@link Ext.dd.StatusProxy} can be updated
     */
    notifyEnter : function(dd, e, data){
        return this.dropNotAllowed;
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls continuously while it is being dragged over the drop zone.
     * This method will be called on every mouse movement while the drag source is over the drop zone.
     * It will call {@link #onNodeOver} while the drag source is over a registered node, and will also automatically
     * delegate to the appropriate node-specific methods as necessary when the drag source enters and exits
     * registered nodes ({@link #onNodeEnter}, {@link #onNodeOut}). If the drag source is not currently over a
     * registered node, it will call {@link #onContainerOver}.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {String} status The CSS class that communicates the drop status back to the source so that the
     * underlying {@link Ext.dd.StatusProxy} can be updated
     */
    notifyOver : function(dd, e, data){
        var n = this.getTargetFromEvent(e);
        if(!n){ // not over valid drop target
            if(this.lastOverNode){
                this.onNodeOut(this.lastOverNode, dd, e, data);
                this.lastOverNode = null;
            }
            return this.onContainerOver(dd, e, data);
        }
        if(this.lastOverNode != n){
            if(this.lastOverNode){
                this.onNodeOut(this.lastOverNode, dd, e, data);
            }
            this.onNodeEnter(n, dd, e, data);
            this.lastOverNode = n;
        }
        return this.onNodeOver(n, dd, e, data);
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls once to notify this drop zone that the source has been dragged
     * out of the zone without dropping.  If the drag source is currently over a registered node, the notification
     * will be delegated to {@link #onNodeOut} for node-specific handling, otherwise it will be ignored.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop target
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag zone
     */
    notifyOut : function(dd, e, data){
        if(this.lastOverNode){
            this.onNodeOut(this.lastOverNode, dd, e, data);
            this.lastOverNode = null;
        }
    },

    /**
     * The function a {@link Ext.dd.DragSource} calls once to notify this drop zone that the dragged item has
     * been dropped on it.  The drag zone will look up the target node based on the event passed in, and if there
     * is a node registered for that event, it will delegate to {@link #onNodeDrop} for node-specific handling,
     * otherwise it will call {@link #onContainerDrop}.
     * @param {Ext.dd.DragSource} source The drag source that was dragged over this drop zone
     * @param {Event} e The event
     * @param {Object} data An object containing arbitrary data supplied by the drag source
     * @return {Boolean} True if the drop was valid, else false
     */
    notifyDrop : function(dd, e, data){
        if(this.lastOverNode){
            this.onNodeOut(this.lastOverNode, dd, e, data);
            this.lastOverNode = null;
        }
        var n = this.getTargetFromEvent(e);
        return n ?
            this.onNodeDrop(n, dd, e, data) :
            this.onContainerDrop(dd, e, data);
    },

    // private
    triggerCacheRefresh : function(){
        Ext.dd.DDM.refreshCache(this.groups);
    }  
});/**
 * @class Ext.Element
 */
Ext.Element.addMethods({
    /**
     * Initializes a {@link Ext.dd.DD} drag drop object for this element.
     * @param {String} group The group the DD object is member of
     * @param {Object} config The DD config object
     * @param {Object} overrides An object containing methods to override/implement on the DD object
     * @return {Ext.dd.DD} The DD object
     */
    initDD : function(group, config, overrides){
        var dd = new Ext.dd.DD(Ext.id(this.dom), group, config);
        return Ext.apply(dd, overrides);
    },

    /**
     * Initializes a {@link Ext.dd.DDProxy} object for this element.
     * @param {String} group The group the DDProxy object is member of
     * @param {Object} config The DDProxy config object
     * @param {Object} overrides An object containing methods to override/implement on the DDProxy object
     * @return {Ext.dd.DDProxy} The DDProxy object
     */
    initDDProxy : function(group, config, overrides){
        var dd = new Ext.dd.DDProxy(Ext.id(this.dom), group, config);
        return Ext.apply(dd, overrides);
    },

    /**
     * Initializes a {@link Ext.dd.DDTarget} object for this element.
     * @param {String} group The group the DDTarget object is member of
     * @param {Object} config The DDTarget config object
     * @param {Object} overrides An object containing methods to override/implement on the DDTarget object
     * @return {Ext.dd.DDTarget} The DDTarget object
     */
    initDDTarget : function(group, config, overrides){
        var dd = new Ext.dd.DDTarget(Ext.id(this.dom), group, config);
        return Ext.apply(dd, overrides);
    }
});
/**
 * @class Ext.data.Api
 * @extends Object
 * Ext.data.Api is a singleton designed to manage the data API including methods
 * for validating a developer's DataProxy API.  Defines variables for CRUD actions
 * create, read, update and destroy in addition to a mapping of RESTful HTTP methods
 * GET, POST, PUT and DELETE to CRUD actions.
 * @singleton
 */
Ext.data.Api = (function() {

    // private validActions.  validActions is essentially an inverted hash of Ext.data.Api.actions, where value becomes the key.
    // Some methods in this singleton (e.g.: getActions, getVerb) will loop through actions with the code for (var verb in this.actions)
    // For efficiency, some methods will first check this hash for a match.  Those methods which do acces validActions will cache their result here.
    // We cannot pre-define this hash since the developer may over-ride the actions at runtime.
    var validActions = {};

    return {
        /**
         * Defined actions corresponding to remote actions:
         * 
    
actions: {
    create  : 'create',  // Text representing the remote-action to create records on server.
    read    : 'read',    // Text representing the remote-action to read/load data from server.
    update  : 'update',  // Text representing the remote-action to update records on server.
    destroy : 'destroy'  // Text representing the remote-action to destroy records on server.
}
         * 
    
         * @property actions
         * @type Object
         */
        actions : {
            create  : 'create',
            read    : 'read',
            update  : 'update',
            destroy : 'destroy'
        },

        /**
         * Defined {CRUD action}:{HTTP method} pairs to associate HTTP methods with the
         * corresponding actions for {@link Ext.data.DataProxy#restful RESTful proxies}.
         * Defaults to:
         * 
    
restActions : {
    create  : 'POST',
    read    : 'GET',
    update  : 'PUT',
    destroy : 'DELETE'
},
         * 
    
         */
        restActions : {
            create  : 'POST',
            read    : 'GET',
            update  : 'PUT',
            destroy : 'DELETE'
        },

        /**
         * Returns true if supplied action-name is a valid API action defined in {@link #actions} constants
         * @param {String} action Action to test for availability.
         * @return {Boolean}
         */
        isAction : function(action) {
            return (Ext.data.Api.actions[action]) ? true : false;
        },

        /**
         * Returns the actual CRUD action KEY "create", "read", "update" or "destroy" from the supplied action-name.  This method is used internally and shouldn't generally
         * need to be used directly.  The key/value pair of Ext.data.Api.actions will often be identical but this is not necessarily true.  A developer can override this naming
         * convention if desired.  However, the framework internally calls methods based upon the KEY so a way of retreiving the the words "create", "read", "update" and "destroy" is
         * required.  This method will cache discovered KEYS into the private validActions hash.
         * @param {String} name The runtime name of the action.
         * @return {String/null} returns the action-key, or verb of the user-action or null if invalid.
         * @nodoc
         */
        getVerb : function(name) {
            if (validActions[name]) {
                return validActions[name];  // <-- found in cache.  return immediately.
            }
            for (var verb in this.actions) {
                if (this.actions[verb] === name) {
                    validActions[name] = verb;
                    break;
                }
            }
            return (validActions[name] !== undefined) ? validActions[name] : null;
        },

        /**
         * Returns true if the supplied API is valid; that is, check that all keys match defined actions
         * otherwise returns an array of mistakes.
         * @return {String[]|true}
         */
        isValid : function(api){
            var invalid = [];
            var crud = this.actions; // <-- cache a copy of the actions.
            for (var action in api) {
                if (!(action in crud)) {
                    invalid.push(action);
                }
            }
            return (!invalid.length) ? true : invalid;
        },

        /**
         * Returns true if the supplied verb upon the supplied proxy points to a unique url in that none of the other api-actions
         * point to the same url.  The question is important for deciding whether to insert the "xaction" HTTP parameter within an
         * Ajax request.  This method is used internally and shouldn't generally need to be called directly.
         * @param {Ext.data.DataProxy} proxy
         * @param {String} verb
         * @return {Boolean}
         */
        hasUniqueUrl : function(proxy, verb) {
            var url = (proxy.api[verb]) ? proxy.api[verb].url : null;
            var unique = true;
            for (var action in proxy.api) {
                if ((unique = (action === verb) ? true : (proxy.api[action].url != url) ? true : false) === false) {
                    break;
                }
            }
            return unique;
        },

        /**
         * This method is used internally by {@link Ext.data.DataProxy DataProxy} and should not generally need to be used directly.
         * Each action of a DataProxy api can be initially defined as either a String or an Object.  When specified as an object,
         * one can explicitly define the HTTP method (GET|POST) to use for each CRUD action.  This method will prepare the supplied API, setting
         * each action to the Object form.  If your API-actions do not explicitly define the HTTP method, the "method" configuration-parameter will
         * be used.  If the method configuration parameter is not specified, POST will be used.
         
    
new Ext.data.HttpProxy({
    method: "POST",     // <-- default HTTP method when not specified.
    api: {
        create: 'create.php',
        load: 'read.php',
        save: 'save.php',
        destroy: 'destroy.php'
    }
});

// Alternatively, one can use the object-form to specify the API
new Ext.data.HttpProxy({
    api: {
        load: {url: 'read.php', method: 'GET'},
        create: 'create.php',
        destroy: 'destroy.php',
        save: 'update.php'
    }
});
        
    
         *
         * @param {Ext.data.DataProxy} proxy
         */
        prepare : function(proxy) {
            if (!proxy.api) {
                proxy.api = {}; // <-- No api?  create a blank one.
            }
            for (var verb in this.actions) {
                var action = this.actions[verb];
                proxy.api[action] = proxy.api[action] || proxy.url || proxy.directFn;
                if (typeof(proxy.api[action]) == 'string') {
                    proxy.api[action] = {
                        url: proxy.api[action],
                        method: (proxy.restful === true) ? Ext.data.Api.restActions[action] : undefined
                    };
                }
            }
        },

        /**
         * Prepares a supplied Proxy to be RESTful.  Sets the HTTP method for each api-action to be one of
         * GET, POST, PUT, DELETE according to the defined {@link #restActions}.
         * @param {Ext.data.DataProxy} proxy
         */
        restify : function(proxy) {
            proxy.restful = true;
            for (var verb in this.restActions) {
                proxy.api[this.actions[verb]].method ||
                    (proxy.api[this.actions[verb]].method = this.restActions[verb]);
            }
            // TODO: perhaps move this interceptor elsewhere?  like into DataProxy, perhaps?  Placed here
            // to satisfy initial 3.0 final release of REST features.
            proxy.onWrite = proxy.onWrite.createInterceptor(function(action, o, response, rs) {
                var reader = o.reader;
                var res = new Ext.data.Response({
                    action: action,
                    raw: response
                });

                switch (response.status) {
                    case 200:   // standard 200 response, send control back to HttpProxy#onWrite by returning true from this intercepted #onWrite
                        return true;
                        break;
                    case 201:   // entity created but no response returned
                        if (Ext.isEmpty(res.raw.responseText)) {
                          res.success = true;
                        } else {
                          //if the response contains data, treat it like a 200
                          return true;
                        }
                        break;
                    case 204:  // no-content.  Create a fake response.
                        res.success = true;
                        res.data = null;
                        break;
                    default:
                        return true;
                        break;
                }
                if (res.success === true) {
                    this.fireEvent("write", this, action, res.data, res, rs, o.request.arg);
                } else {
                    this.fireEvent('exception', this, 'remote', action, o, res, rs);
                }
                o.request.callback.call(o.request.scope, res.data, res, res.success);

                return false;   // <-- false to prevent intercepted function from running.
            }, proxy);
        }
    };
})();

/**
 * Ext.data.Response
 * Experimental.  Do not use directly.
 */
Ext.data.Response = function(params, response) {
    Ext.apply(this, params, {
        raw: response
    });
};
Ext.data.Response.prototype = {
    message : null,
    success : false,
    status : null,
    root : null,
    raw : null,

    getMessage : function() {
        return this.message;
    },
    getSuccess : function() {
        return this.success;
    },
    getStatus : function() {
        return this.status;
    },
    getRoot : function() {
        return this.root;
    },
    getRawResponse : function() {
        return this.raw;
    }
};

/**
 * @class Ext.data.Api.Error
 * @extends Ext.Error
 * Error class for Ext.data.Api errors
 */
Ext.data.Api.Error = Ext.extend(Ext.Error, {
    constructor : function(message, arg) {
        this.arg = arg;
        Ext.Error.call(this, message);
    },
    name: 'Ext.data.Api'
});
Ext.apply(Ext.data.Api.Error.prototype, {
    lang: {
        'action-url-undefined': 'No fallback url defined for this action.  When defining a DataProxy api, please be sure to define an url for each CRUD action in Ext.data.Api.actions or define a default url in addition to your api-configuration.',
        'invalid': 'received an invalid API-configuration.  Please ensure your proxy API-configuration contains only the actions defined in Ext.data.Api.actions',
        'invalid-url': 'Invalid url.  Please review your proxy configuration.',
        'execute': 'Attempted to execute an unknown action.  Valid API actions are defined in Ext.data.Api.actions"'
    }
});



/**
 * @class Ext.data.SortTypes
 * @singleton
 * Defines the default sorting (casting?) comparison functions used when sorting data.
 */
Ext.data.SortTypes = {
    /**
     * Default sort that does nothing
     * @param {Mixed} s The value being converted
     * @return {Mixed} The comparison value
     */
    none : function(s){
        return s;
    },
    
    /**
     * The regular expression used to strip tags
     * @type {RegExp}
     * @property
     */
    stripTagsRE : /<\/?[^>]+>/gi,
    
    /**
     * Strips all HTML tags to sort on text only
     * @param {Mixed} s The value being converted
     * @return {String} The comparison value
     */
    asText : function(s){
        return String(s).replace(this.stripTagsRE, "");
    },
    
    /**
     * Strips all HTML tags to sort on text only - Case insensitive
     * @param {Mixed} s The value being converted
     * @return {String} The comparison value
     */
    asUCText : function(s){
        return String(s).toUpperCase().replace(this.stripTagsRE, "");
    },
    
    /**
     * Case insensitive string
     * @param {Mixed} s The value being converted
     * @return {String} The comparison value
     */
    asUCString : function(s) {
    	return String(s).toUpperCase();
    },
    
    /**
     * Date sorting
     * @param {Mixed} s The value being converted
     * @return {Number} The comparison value
     */
    asDate : function(s) {
        if(!s){
            return 0;
        }
        if(Ext.isDate(s)){
            return s.getTime();
        }
    	return Date.parse(String(s));
    },
    
    /**
     * Float sorting
     * @param {Mixed} s The value being converted
     * @return {Float} The comparison value
     */
    asFloat : function(s) {
    	var val = parseFloat(String(s).replace(/,/g, ""));
    	return isNaN(val) ? 0 : val;
    },
    
    /**
     * Integer sorting
     * @param {Mixed} s The value being converted
     * @return {Number} The comparison value
     */
    asInt : function(s) {
        var val = parseInt(String(s).replace(/,/g, ""), 10);
        return isNaN(val) ? 0 : val;
    }
};/**
 * @class Ext.data.Record
 * 
    Instances of this class encapsulate both Record definition information, and Record
 * value information for use in {@link Ext.data.Store} objects, or any code which needs
 * to access Records cached in an {@link Ext.data.Store} object.
    
 * 
    Constructors for this class are generated by passing an Array of field definition objects to {@link #create}.
 * Instances are usually only created by {@link Ext.data.Reader} implementations when processing unformatted data
 * objects.
    
 * 
    Note that an instance of a Record class may only belong to one {@link Ext.data.Store Store} at a time.
 * In order to copy data from one Store to another, use the {@link #copy} method to create an exact
 * copy of the Record, and insert the new instance into the other Store.
    
 * 
    When serializing a Record for submission to the server, be aware that it contains many private
 * properties, and also a reference to its owning Store which in turn holds references to its Records.
 * This means that a whole Record may not be encoded using {@link Ext.util.JSON.encode}. Instead, use the
 * {@link #data} and {@link #id} properties.
    
 * 
    Record objects generated by this constructor inherit all the methods of Ext.data.Record listed below.
    
 * @constructor
 * 
    This constructor should not be used to create Record objects. Instead, use {@link #create} to
 * generate a subclass of Ext.data.Record configured with information about its constituent fields.
    
 * 
    The generated constructor has the same signature as this constructor.
    
 * @param {Object} data (Optional) An object, the properties of which provide values for the new Record's
 * fields. If not specified the {@link Ext.data.Field#defaultValue defaultValue}
 * for each field will be assigned.
 * @param {Object} id (Optional) The id of the Record. The id is used by the
 * {@link Ext.data.Store} object which owns the Record to index its collection
 * of Records (therefore this id should be unique within each store). If an
 * id is not specified a {@link #phantom}
 * Record will be created with an {@link #Record.id automatically generated id}.
 */
Ext.data.Record = function(data, id){
    // if no id, call the auto id method
    this.id = (id || id === 0) ? id : Ext.data.Record.id(this);
    this.data = data || {};
};

/**
 * Generate a constructor for a specific Record layout.
 * @param {Array} o An Array of {@link Ext.data.Field Field} definition objects.
 * The constructor generated by this method may be used to create new Record instances. The data
 * object must contain properties named after the {@link Ext.data.Field field}
 * {@link Ext.data.Field#name}s.  Example usage:
    
// create a Record constructor from a description of the fields
var TopicRecord = Ext.data.Record.create([ // creates a subclass of Ext.data.Record
    {{@link Ext.data.Field#name name}: 'title', {@link Ext.data.Field#mapping mapping}: 'topic_title'},
    {name: 'author', mapping: 'username', allowBlank: false},
    {name: 'totalPosts', mapping: 'topic_replies', type: 'int'},
    {name: 'lastPost', mapping: 'post_time', type: 'date'},
    {name: 'lastPoster', mapping: 'user2'},
    {name: 'excerpt', mapping: 'post_text', allowBlank: false},
    // In the simplest case, if no properties other than name are required,
    // a field definition may consist of just a String for the field name.
    'signature'
]);

// create Record instance
var myNewRecord = new TopicRecord(
    {
        title: 'Do my job please',
        author: 'noobie',
        totalPosts: 1,
        lastPost: new Date(),
        lastPoster: 'Animal',
        excerpt: 'No way dude!',
        signature: ''
    },
    id // optionally specify the id of the record otherwise {@link #Record.id one is auto-assigned}
);
myStore.{@link Ext.data.Store#add add}(myNewRecord);

    
 * @method create
 * @return {Function} A constructor which is used to create new Records according
 * to the definition. The constructor has the same signature as {@link #Record}.
 * @static
 */
Ext.data.Record.create = function(o){
    var f = Ext.extend(Ext.data.Record, {});
    var p = f.prototype;
    p.fields = new Ext.util.MixedCollection(false, function(field){
        return field.name;
    });
    for(var i = 0, len = o.length; i < len; i++){
        p.fields.add(new Ext.data.Field(o[i]));
    }
    f.getField = function(name){
        return p.fields.get(name);
    };
    return f;
};

Ext.data.Record.PREFIX = 'ext-record';
Ext.data.Record.AUTO_ID = 1;
Ext.data.Record.EDIT = 'edit';
Ext.data.Record.REJECT = 'reject';
Ext.data.Record.COMMIT = 'commit';


/**
 * Generates a sequential id. This method is typically called when a record is {@link #create}d
 * and {@link #Record no id has been specified}. The returned id takes the form:
 * {PREFIX}-{AUTO_ID}.
      
 * 
    • PREFIX : String
      Ext.data.Record.PREFIX
 * (defaults to 'ext-record')
      • 
 * 
    • AUTO_ID : String
      Ext.data.Record.AUTO_ID
 * (defaults to 1 initially)
      • 
 * 
    
 * @param {Record} rec The record being created.  The record does not exist, it's a {@link #phantom}.
 * @return {String} auto-generated string id, "ext-record-i++';
 */
Ext.data.Record.id = function(rec) {
    rec.phantom = true;
    return [Ext.data.Record.PREFIX, '-', Ext.data.Record.AUTO_ID++].join('');
};

Ext.data.Record.prototype = {
    /**
     * 
    This property is stored in the Record definition's prototype
    
     * A MixedCollection containing the defined {@link Ext.data.Field Field}s for this Record.  Read-only.
     * @property fields
     * @type Ext.util.MixedCollection
     */
    /**
     * An object hash representing the data for this Record. Every field name in the Record definition
     * is represented by a property of that name in this object. Note that unless you specified a field
     * with {@link Ext.data.Field#name name} "id" in the Record definition, this will not contain
     * an id property.
     * @property data
     * @type {Object}
     */
    /**
     * The unique ID of the Record {@link #Record as specified at construction time}.
     * @property id
     * @type {Object}
     */
    /**
     * 
    Only present if this Record was created by an {@link Ext.data.XmlReader XmlReader}.
    
     * 
    The XML element which was the source of the data for this Record.
    
     * @property node
     * @type {XMLElement}
     */
    /**
     * 
    Only present if this Record was created by an {@link Ext.data.ArrayReader ArrayReader} or a {@link Ext.data.JsonReader JsonReader}.
    
     * 
    The Array or object which was the source of the data for this Record.
    
     * @property json
     * @type {Array|Object}
     */
    /**
     * Readonly flag - true if this Record has been modified.
     * @type Boolean
     */
    dirty : false,
    editing : false,
    error : null,
    /**
     * This object contains a key and value storing the original values of all modified
     * fields or is null if no fields have been modified.
     * @property modified
     * @type {Object}
     */
    modified : null,
    /**
     * true when the record does not yet exist in a server-side database (see
     * {@link #markDirty}).  Any record which has a real database pk set as its id property
     * is NOT a phantom -- it's real.
     * @property phantom
     * @type {Boolean}
     */
    phantom : false,

    // private
    join : function(store){
        /**
         * The {@link Ext.data.Store} to which this Record belongs.
         * @property store
         * @type {Ext.data.Store}
         */
        this.store = store;
    },

    /**
     * Set the {@link Ext.data.Field#name named field} to the specified value.  For example:
     * 
    
// record has a field named 'firstname'
var Employee = Ext.data.Record.{@link #create}([
    {name: 'firstname'},
    ...
]);

// update the 2nd record in the store:
var rec = myStore.{@link Ext.data.Store#getAt getAt}(1);

// set the value (shows dirty flag):
rec.set('firstname', 'Betty');

// commit the change (removes dirty flag):
rec.{@link #commit}();

// update the record in the store, bypass setting dirty flag,
// and do not store the change in the {@link Ext.data.Store#getModifiedRecords modified records}
rec.{@link #data}['firstname'] = 'Wilma'; // updates record, but not the view
rec.{@link #commit}(); // updates the view
     * 
    
     * Notes:
      
     * 
    • If the store has a writer and autoSave=true, each set()
     * will execute an XHR to the server.
      • 
     * 
    • Use {@link #beginEdit} to prevent the store's update
     * event firing while using set().
      • 
     * 
    • Use {@link #endEdit} to have the store's update
     * event fire.
      • 
     * 
    
     * @param {String} name The {@link Ext.data.Field#name name of the field} to set.
     * @param {String/Object/Array} value The value to set the field to.
     */
    set : function(name, value){
        var encode = Ext.isPrimitive(value) ? String : Ext.encode;
        if(encode(this.data[name]) == encode(value)) {
            return;
        }        
        this.dirty = true;
        if(!this.modified){
            this.modified = {};
        }
        if(this.modified[name] === undefined){
            this.modified[name] = this.data[name];
        }
        this.data[name] = value;
        if(!this.editing){
            this.afterEdit();
        }
    },

    // private
    afterEdit : function(){
        if (this.store != undefined && typeof this.store.afterEdit == "function") {
            this.store.afterEdit(this);
        }
    },

    // private
    afterReject : function(){
        if(this.store){
            this.store.afterReject(this);
        }
    },

    // private
    afterCommit : function(){
        if(this.store){
            this.store.afterCommit(this);
        }
    },

    /**
     * Get the value of the {@link Ext.data.Field#name named field}.
     * @param {String} name The {@link Ext.data.Field#name name of the field} to get the value of.
     * @return {Object} The value of the field.
     */
    get : function(name){
        return this.data[name];
    },

    /**
     * Begin an edit. While in edit mode, no events (e.g.. the update event)
     * are relayed to the containing store.
     * See also: {@link #endEdit} and {@link #cancelEdit}.
     */
    beginEdit : function(){
        this.editing = true;
        this.modified = this.modified || {};
    },

    /**
     * Cancels all changes made in the current edit operation.
     */
    cancelEdit : function(){
        this.editing = false;
        delete this.modified;
    },

    /**
     * End an edit. If any data was modified, the containing store is notified
     * (ie, the store's update event will fire).
     */
    endEdit : function(){
        this.editing = false;
        if(this.dirty){
            this.afterEdit();
        }
    },

    /**
     * Usually called by the {@link Ext.data.Store} which owns the Record.
     * Rejects all changes made to the Record since either creation, or the last commit operation.
     * Modified fields are reverted to their original values.
     * 
    Developers should subscribe to the {@link Ext.data.Store#update} event
     * to have their code notified of reject operations.
    
     * @param {Boolean} silent (optional) True to skip notification of the owning
     * store of the change (defaults to false)
     */
    reject : function(silent){
        var m = this.modified;
        for(var n in m){
            if(typeof m[n] != "function"){
                this.data[n] = m[n];
            }
        }
        this.dirty = false;
        delete this.modified;
        this.editing = false;
        if(silent !== true){
            this.afterReject();
        }
    },

    /**
     * Usually called by the {@link Ext.data.Store} which owns the Record.
     * Commits all changes made to the Record since either creation, or the last commit operation.
     * 
    Developers should subscribe to the {@link Ext.data.Store#update} event
     * to have their code notified of commit operations.
    
     * @param {Boolean} silent (optional) True to skip notification of the owning
     * store of the change (defaults to false)
     */
    commit : function(silent){
        this.dirty = false;
        delete this.modified;
        this.editing = false;
        if(silent !== true){
            this.afterCommit();
        }
    },

    /**
     * Gets a hash of only the fields that have been modified since this Record was created or commited.
     * @return Object
     */
    getChanges : function(){
        var m = this.modified, cs = {};
        for(var n in m){
            if(m.hasOwnProperty(n)){
                cs[n] = this.data[n];
            }
        }
        return cs;
    },

    // private
    hasError : function(){
        return this.error !== null;
    },

    // private
    clearError : function(){
        this.error = null;
    },

    /**
     * Creates a copy (clone) of this Record.
     * @param {String} id (optional) A new Record id, defaults to the id
     * of the record being copied. See {@link #id}. 
     * To generate a phantom record with a new id use:
    
var rec = record.copy(); // clone the record
Ext.data.Record.id(rec); // automatically generate a unique sequential id
     * 
    
     * @return {Record}
     */
    copy : function(newId) {
        return new this.constructor(Ext.apply({}, this.data), newId || this.id);
    },

    /**
     * Returns true if the passed field name has been {@link #modified}
     * since the load or last commit.
     * @param {String} fieldName {@link Ext.data.Field.{@link Ext.data.Field#name}
     * @return {Boolean}
     */
    isModified : function(fieldName){
        return !!(this.modified && this.modified.hasOwnProperty(fieldName));
    },

    /**
     * By default returns false if any {@link Ext.data.Field field} within the
     * record configured with {@link Ext.data.Field#allowBlank} = false returns
     * true from an {@link Ext}.{@link Ext#isEmpty isempty} test.
     * @return {Boolean}
     */
    isValid : function() {
        return this.fields.find(function(f) {
            return (f.allowBlank === false && Ext.isEmpty(this.data[f.name])) ? true : false;
        },this) ? false : true;
    },

    /**
     * 
    Marks this Record as {@link #dirty}.  This method
     * is used interally when adding {@link #phantom} records to a
     * {@link Ext.data.Store#writer writer enabled store}.
    
     * 
    Marking a record {@link #dirty} causes the phantom to
     * be returned by {@link Ext.data.Store#getModifiedRecords} where it will
     * have a create action composed for it during {@link Ext.data.Store#save store save}
     * operations.
    
     */
    markDirty : function(){
        this.dirty = true;
        if(!this.modified){
            this.modified = {};
        }
        this.fields.each(function(f) {
            this.modified[f.name] = this.data[f.name];
        },this);
    }
};
/**
 * @class Ext.StoreMgr
 * @extends Ext.util.MixedCollection
 * The default global group of stores.
 * @singleton
 */
Ext.StoreMgr = Ext.apply(new Ext.util.MixedCollection(), {
    /**
     * @cfg {Object} listeners @hide
     */

    /**
     * Registers one or more Stores with the StoreMgr. You do not normally need to register stores
     * manually.  Any store initialized with a {@link Ext.data.Store#storeId} will be auto-registered. 
     * @param {Ext.data.Store...} stores Any number of Store instances
     */
    register : function(){
        for(var i = 0, s; (s = arguments[i]); i++){
            this.add(s);
        }
    },

    /**
     * Unregisters one or more Stores with the StoreMgr
     * @param {String/Object} ids IDs of the Stores, or Store instances
     */
    unregister : function(){
        for(var i = 0, s; (s = arguments[i]); i++){
            this.remove(this.lookup(s));
        }
    },

    /**
     * Gets a registered Store by id
     * @param {String/Object} id The id of the Store, or a Store instance
     * @return {Ext.data.Store}
     */
    lookup : function(id){
        if(Ext.isArray(id)){
            var fields = ['field1'], expand = !Ext.isArray(id[0]);
            if(!expand){
                for(var i = 2, len = id[0].length; i <= len; ++i){
                    fields.push('field' + i);
                }
            }
            return new Ext.data.ArrayStore({
                fields: fields,
                data: id,
                expandData: expand,
                autoDestroy: true,
                autoCreated: true

            });
        }
        return Ext.isObject(id) ? (id.events ? id : Ext.create(id, 'store')) : this.get(id);
    },

    // getKey implementation for MixedCollection
    getKey : function(o){
         return o.storeId;
    }
});/**
 * @class Ext.data.Store
 * @extends Ext.util.Observable
 * 
    The Store class encapsulates a client side cache of {@link Ext.data.Record Record}
 * objects which provide input data for Components such as the {@link Ext.grid.GridPanel GridPanel},
 * the {@link Ext.form.ComboBox ComboBox}, or the {@link Ext.DataView DataView}.
    
 * 
    Retrieving Data
    
 * 
    A Store object may access a data object using:
      
 * 
    • {@link #proxy configured implementation} of {@link Ext.data.DataProxy DataProxy}
      • 
 * 
    • {@link #data} to automatically pass in data
      • 
 * 
    • {@link #loadData} to manually pass in data
      • 
 * 
    
 * 
    Reading Data
    
 * 
    A Store object has no inherent knowledge of the format of the data object (it could be
 * an Array, XML, or JSON). A Store object uses an appropriate {@link #reader configured implementation}
 * of a {@link Ext.data.DataReader DataReader} to create {@link Ext.data.Record Record} instances from the data
 * object.
    
 * 
    Store Types
    
 * 
    There are several implementations of Store available which are customized for use with
 * a specific DataReader implementation.  Here is an example using an ArrayStore which implicitly
 * creates a reader commensurate to an Array data object.
    
 * 
    
var myStore = new Ext.data.ArrayStore({
    fields: ['fullname', 'first'],
    idIndex: 0 // id for each record will be the first element
});
 * 
    
 * 
    For custom implementations create a basic {@link Ext.data.Store} configured as needed:
    
 * 
    
// create a {@link Ext.data.Record Record} constructor:
var rt = Ext.data.Record.create([
    {name: 'fullname'},
    {name: 'first'}
]);
var myStore = new Ext.data.Store({
    // explicitly create reader
    reader: new Ext.data.ArrayReader(
        {
            idIndex: 0  // id for each record will be the first element
        },
        rt // recordType
    )
});
 * 
    
 * 
    Load some data into store (note the data object is an array which corresponds to the reader):
    
 * 
    
var myData = [
    [1, 'Fred Flintstone', 'Fred'],  // note that id for the record is the first element
    [2, 'Barney Rubble', 'Barney']
];
myStore.loadData(myData);
 * 
    
 * 
    Records are cached and made available through accessor functions.  An example of adding
 * a record to the store:
    
 * 
    
var defaultData = {
    fullname: 'Full Name',
    first: 'First Name'
};
var recId = 100; // provide unique id for the record
var r = new myStore.recordType(defaultData, ++recId); // create new record
myStore.{@link #insert}(0, r); // insert a new record into the store (also see {@link #add})
 * 
    
 * 
    Writing Data
    
 * 
    And new in Ext version 3, use the new {@link Ext.data.DataWriter DataWriter} to create an automated, Writable Store
 * along with RESTful features.
 * @constructor
 * Creates a new Store.
 * @param {Object} config A config object containing the objects needed for the Store to access data,
 * and read the data into Records.
 * @xtype store
 */
Ext.data.Store = Ext.extend(Ext.util.Observable, {
    /**
     * @cfg {String} storeId If passed, the id to use to register with the {@link Ext.StoreMgr StoreMgr}.
     * 
    Note: if a (deprecated) {@link #id} is specified it will supersede the storeId
     * assignment.
    
     */
    /**
     * @cfg {String} url If a {@link #proxy} is not specified the url will be used to
     * implicitly configure a {@link Ext.data.HttpProxy HttpProxy} if an url is specified.
     * Typically this option, or the {@link #data} option will be specified.
     */
    /**
     * @cfg {Boolean/Object} autoLoad If {@link #data} is not specified, and if autoLoad
     * is true or an Object, this store's {@link #load} method is automatically called
     * after creation. If the value of autoLoad is an Object, this Object will
     * be passed to the store's {@link #load} method.
     */
    /**
     * @cfg {Ext.data.DataProxy} proxy The {@link Ext.data.DataProxy DataProxy} object which provides
     * access to a data object.  See {@link #url}.
     */
    /**
     * @cfg {Array} data An inline data object readable by the {@link #reader}.
     * Typically this option, or the {@link #url} option will be specified.
     */
    /**
     * @cfg {Ext.data.DataReader} reader The {@link Ext.data.DataReader Reader} object which processes the
     * data object and returns an Array of {@link Ext.data.Record} objects which are cached keyed by their
     * {@link Ext.data.Record#id id} property.
     */
    /**
     * @cfg {Ext.data.DataWriter} writer
     * 
    The {@link Ext.data.DataWriter Writer} object which processes a record object for being written
     * to the server-side database.
    
     * 
    When a writer is installed into a Store the {@link #add}, {@link #remove}, and {@link #update}
     * events on the store are monitored in order to remotely {@link #createRecords create records},
     * {@link #destroyRecord destroy records}, or {@link #updateRecord update records}.
    
     * 
    The proxy for this store will relay any {@link #writexception} events to this store.
    
     * 
    Sample implementation:
     * 
    
var writer = new {@link Ext.data.JsonWriter}({
    encode: true,
    writeAllFields: true // write all fields, not just those that changed
});

// Typical Store collecting the Proxy, Reader and Writer together.
var store = new Ext.data.Store({
    storeId: 'user',
    root: 'records',
    proxy: proxy,
    reader: reader,
    writer: writer,     // <-- plug a DataWriter into the store just as you would a Reader
    paramsAsHash: true,
    autoSave: false    // <-- false to delay executing create, update, destroy requests
                        //     until specifically told to do so.
});
     * 
    
     */
    writer : undefined,
    /**
     * @cfg {Object} baseParams
     * 
    An object containing properties which are to be sent as parameters
     * for every HTTP request.
    
     * 
    Parameters are encoded as standard HTTP parameters using {@link Ext#urlEncode}.
    
     * 
    Note: baseParams may be superseded by any params
     * specified in a {@link #load} request, see {@link #load}
     * for more details.
    
     * This property may be modified after creation using the {@link #setBaseParam}
     * method.
     */
    /**
     * @cfg {Object} sortInfo A config object to specify the sort order in the request of a Store's
     * {@link #load} operation.  Note that for local sorting, the direction property is
     * case-sensitive. See also {@link #remoteSort} and {@link #paramNames}.
     * For example:
    
sortInfo: {
    field: 'fieldName',
    direction: 'ASC' // or 'DESC' (case sensitive for local sorting)
}

    
     */
    /**
     * @cfg {boolean} remoteSort true if sorting is to be handled by requesting the {@link #proxy Proxy}
     * to provide a refreshed version of the data object in sorted order, as opposed to sorting the Record cache
     * in place (defaults to false).
     * 
    If remoteSort is true, then clicking on a {@link Ext.grid.Column Grid Column}'s
     * {@link Ext.grid.Column#header header} causes the current page to be requested from the server appending
     * the following two parameters to the {@link #load params}:
      
     * 
    • sort : String
      The name (as specified in the Record's
     * {@link Ext.data.Field Field definition}) of the field to sort on.
      • 
     * 
    • dir : String
      The direction of the sort, 'ASC' or 'DESC' (case-sensitive).
      • 
     * 
    
     */
    remoteSort : false,

    /**
     * @cfg {Boolean} autoDestroy true to destroy the store when the component the store is bound
     * to is destroyed (defaults to false).
     * 
    Note: this should be set to true when using stores that are bound to only 1 component.
    
     */
    autoDestroy : false,

    /**
     * @cfg {Boolean} pruneModifiedRecords true to clear all modified record information each time
     * the store is loaded or when a record is removed (defaults to false). See {@link #getModifiedRecords}
     * for the accessor method to retrieve the modified records.
     */
    pruneModifiedRecords : false,

    /**
     * Contains the last options object used as the parameter to the {@link #load} method. See {@link #load}
     * for the details of what this may contain. This may be useful for accessing any params which were used
     * to load the current Record cache.
     * @property
     */
    lastOptions : null,

    /**
     * @cfg {Boolean} autoSave
     * 
    Defaults to true causing the store to automatically {@link #save} records to
     * the server when a record is modified (ie: becomes 'dirty'). Specify false to manually call {@link #save}
     * to send all modifiedRecords to the server.
    
     * 
    Note: each CRUD action will be sent as a separate request.
    
     */
    autoSave : true,

    /**
     * @cfg {Boolean} batch
     * 
    Defaults to true (unless {@link #restful}:true). Multiple
     * requests for each CRUD action (CREATE, READ, UPDATE and DESTROY) will be combined
     * and sent as one transaction. Only applies when {@link #autoSave} is set
     * to false.
    
     * 
    If Store is RESTful, the DataProxy is also RESTful, and a unique transaction is
     * generated for each record.
    
     */
    batch : true,

    /**
     * @cfg {Boolean} restful
     * Defaults to false.  Set to true to have the Store and the set
     * Proxy operate in a RESTful manner. The store will automatically generate GET, POST,
     * PUT and DELETE requests to the server. The HTTP method used for any given CRUD
     * action is described in {@link Ext.data.Api#restActions}.  For additional information
     * see {@link Ext.data.DataProxy#restful}.
     * 
    Note: if {@link #restful}:true batch will
     * internally be set to false.
    
     */
    restful: false,

    /**
     * @cfg {Object} paramNames
     * 
    An object containing properties which specify the names of the paging and
     * sorting parameters passed to remote servers when loading blocks of data. By default, this
     * object takes the following form:
    
{
    start : 'start',  // The parameter name which specifies the start row
    limit : 'limit',  // The parameter name which specifies number of rows to return
    sort : 'sort',    // The parameter name which specifies the column to sort on
    dir : 'dir'       // The parameter name which specifies the sort direction
}

    
     * 
    The server must produce the requested data block upon receipt of these parameter names.
     * If different parameter names are required, this property can be overriden using a configuration
     * property.
    
     * 
    A {@link Ext.PagingToolbar PagingToolbar} bound to this Store uses this property to determine
     * the parameter names to use in its {@link #load requests}.
     */
    paramNames : undefined,

    /**
     * @cfg {Object} defaultParamNames
     * Provides the default values for the {@link #paramNames} property. To globally modify the parameters
     * for all stores, this object should be changed on the store prototype.
     */
    defaultParamNames : {
        start : 'start',
        limit : 'limit',
        sort : 'sort',
        dir : 'dir'
    },

    isDestroyed: false,
    hasMultiSort: false,

    // private
    batchKey : '_ext_batch_',

    constructor : function(config){
        /**
         * @property hasMultiSort
         * @type Boolean
         * True if this store is currently sorted by more than one field/direction combination.
         */

        /**
         * @property isDestroyed
         * @type Boolean
         * True if the store has been destroyed already. Read only
         */

        this.data = new Ext.util.MixedCollection(false);
        this.data.getKey = function(o){
            return o.id;
        };


        // temporary removed-records cache
        this.removed = [];

        if(config && config.data){
            this.inlineData = config.data;
            delete config.data;
        }

        Ext.apply(this, config);

        /**
         * See the {@link #baseParams corresponding configuration option}
         * for a description of this property.
         * To modify this property see {@link #setBaseParam}.
         * @property
         */
        this.baseParams = Ext.isObject(this.baseParams) ? this.baseParams : {};

        this.paramNames = Ext.applyIf(this.paramNames || {}, this.defaultParamNames);

        if((this.url || this.api) && !this.proxy){
            this.proxy = new Ext.data.HttpProxy({url: this.url, api: this.api});
        }
        // If Store is RESTful, so too is the DataProxy
        if (this.restful === true && this.proxy) {
            // When operating RESTfully, a unique transaction is generated for each record.
            // TODO might want to allow implemention of faux REST where batch is possible using RESTful routes only.
            this.batch = false;
            Ext.data.Api.restify(this.proxy);
        }

        if(this.reader){ // reader passed
            if(!this.recordType){
                this.recordType = this.reader.recordType;
            }
            if(this.reader.onMetaChange){
                this.reader.onMetaChange = this.reader.onMetaChange.createSequence(this.onMetaChange, this);
            }
            if (this.writer) { // writer passed
                if (this.writer instanceof(Ext.data.DataWriter) === false) {    // <-- config-object instead of instance.
                    this.writer = this.buildWriter(this.writer);
                }
                this.writer.meta = this.reader.meta;
                this.pruneModifiedRecords = true;
            }
        }

        /**
         * The {@link Ext.data.Record Record} constructor as supplied to (or created by) the
         * {@link Ext.data.DataReader Reader}. Read-only.
         * 
    If the Reader was constructed by passing in an Array of {@link Ext.data.Field} definition objects,
         * instead of a Record constructor, it will implicitly create a Record constructor from that Array (see
         * {@link Ext.data.Record}.{@link Ext.data.Record#create create} for additional details).
    
         * 
    This property may be used to create new Records of the type held in this Store, for example:
    
    // create the data store
    var store = new Ext.data.ArrayStore({
        autoDestroy: true,
        fields: [
           {name: 'company'},
           {name: 'price', type: 'float'},
           {name: 'change', type: 'float'},
           {name: 'pctChange', type: 'float'},
           {name: 'lastChange', type: 'date', dateFormat: 'n/j h:ia'}
        ]
    });
    store.loadData(myData);

    // create the Grid
    var grid = new Ext.grid.EditorGridPanel({
        store: store,
        colModel: new Ext.grid.ColumnModel({
            columns: [
                {id:'company', header: 'Company', width: 160, dataIndex: 'company'},
                {header: 'Price', renderer: 'usMoney', dataIndex: 'price'},
                {header: 'Change', renderer: change, dataIndex: 'change'},
                {header: '% Change', renderer: pctChange, dataIndex: 'pctChange'},
                {header: 'Last Updated', width: 85,
                    renderer: Ext.util.Format.dateRenderer('m/d/Y'),
                    dataIndex: 'lastChange'}
            ],
            defaults: {
                sortable: true,
                width: 75
            }
        }),
        autoExpandColumn: 'company', // match the id specified in the column model
        height:350,
        width:600,
        title:'Array Grid',
        tbar: [{
            text: 'Add Record',
            handler : function(){
                var defaultData = {
                    change: 0,
                    company: 'New Company',
                    lastChange: (new Date()).clearTime(),
                    pctChange: 0,
                    price: 10
                };
                var recId = 3; // provide unique id
                var p = new store.recordType(defaultData, recId); // create new record
                grid.stopEditing();
                store.{@link #insert}(0, p); // insert a new record into the store (also see {@link #add})
                grid.startEditing(0, 0);
            }
        }]
    });
         * 
    
         * @property recordType
         * @type Function
         */

        if(this.recordType){
            /**
             * A {@link Ext.util.MixedCollection MixedCollection} containing the defined {@link Ext.data.Field Field}s
             * for the {@link Ext.data.Record Records} stored in this Store. Read-only.
             * @property fields
             * @type Ext.util.MixedCollection
             */
            this.fields = this.recordType.prototype.fields;
        }
        this.modified = [];

        this.addEvents(
            /**
             * @event datachanged
             * Fires when the data cache has changed in a bulk manner (e.g., it has been sorted, filtered, etc.) and a
             * widget that is using this Store as a Record cache should refresh its view.
             * @param {Store} this
             */
            'datachanged',
            /**
             * @event metachange
             * Fires when this store's reader provides new metadata (fields). This is currently only supported for JsonReaders.
             * @param {Store} this
             * @param {Object} meta The JSON metadata
             */
            'metachange',
            /**
             * @event add
             * Fires when Records have been {@link #add}ed to the Store
             * @param {Store} this
             * @param {Ext.data.Record[]} records The array of Records added
             * @param {Number} index The index at which the record(s) were added
             */
            'add',
            /**
             * @event remove
             * Fires when a Record has been {@link #remove}d from the Store
             * @param {Store} this
             * @param {Ext.data.Record} record The Record that was removed
             * @param {Number} index The index at which the record was removed
             */
            'remove',
            /**
             * @event update
             * Fires when a Record has been updated
             * @param {Store} this
             * @param {Ext.data.Record} record The Record that was updated
             * @param {String} operation The update operation being performed.  Value may be one of:
             * 
    
     Ext.data.Record.EDIT
     Ext.data.Record.REJECT
     Ext.data.Record.COMMIT
             * 
    
             */
            'update',
            /**
             * @event clear
             * Fires when the data cache has been cleared.
             * @param {Store} this
             * @param {Record[]} records The records that were cleared.
             */
            'clear',
            /**
             * @event exception
             * 
    Fires if an exception occurs in the Proxy during a remote request.
             * This event is relayed through the corresponding {@link Ext.data.DataProxy}.
             * See {@link Ext.data.DataProxy}.{@link Ext.data.DataProxy#exception exception}
             * for additional details.
             * @param {misc} misc See {@link Ext.data.DataProxy}.{@link Ext.data.DataProxy#exception exception}
             * for description.
             */
            'exception',
            /**
             * @event beforeload
             * Fires before a request is made for a new data object.  If the beforeload handler returns
             * false the {@link #load} action will be canceled.
             * @param {Store} this
             * @param {Object} options The loading options that were specified (see {@link #load} for details)
             */
            'beforeload',
            /**
             * @event load
             * Fires after a new set of Records has been loaded.
             * @param {Store} this
             * @param {Ext.data.Record[]} records The Records that were loaded
             * @param {Object} options The loading options that were specified (see {@link #load} for details)
             */
            'load',
            /**
             * @event loadexception
             * 
    This event is deprecated in favor of the catch-all {@link #exception}
             * event instead.
    
             * 
    This event is relayed through the corresponding {@link Ext.data.DataProxy}.
             * See {@link Ext.data.DataProxy}.{@link Ext.data.DataProxy#loadexception loadexception}
             * for additional details.
             * @param {misc} misc See {@link Ext.data.DataProxy}.{@link Ext.data.DataProxy#loadexception loadexception}
             * for description.
             */
            'loadexception',
            /**
             * @event beforewrite
             * @param {Ext.data.Store} store
             * @param {String} action [Ext.data.Api.actions.create|update|destroy]
             * @param {Record/Record[]} rs The Record(s) being written.
             * @param {Object} options The loading options that were specified. Edit options.params to add Http parameters to the request.  (see {@link #save} for details)
             * @param {Object} arg The callback's arg object passed to the {@link #request} function
             */
            'beforewrite',
            /**
             * @event write
             * Fires if the server returns 200 after an Ext.data.Api.actions CRUD action.
             * Success of the action is determined in the result['successProperty']property (NOTE for RESTful stores,
             * a simple 20x response is sufficient for the actions "destroy" and "update".  The "create" action should should return 200 along with a database pk).
             * @param {Ext.data.Store} store
             * @param {String} action [Ext.data.Api.actions.create|update|destroy]
             * @param {Object} result The 'data' picked-out out of the response for convenience.
             * @param {Ext.Direct.Transaction} res
             * @param {Record/Record[]} rs Store's records, the subject(s) of the write-action
             */
            'write',
            /**
             * @event beforesave
             * Fires before a save action is called. A save encompasses destroying records, updating records and creating records.
             * @param {Ext.data.Store} store
             * @param {Object} data An object containing the data that is to be saved. The object will contain a key for each appropriate action,
             * with an array of records for each action.
             */
            'beforesave',
            /**
             * @event save
             * Fires after a save is completed. A save encompasses destroying records, updating records and creating records.
             * @param {Ext.data.Store} store
             * @param {Number} batch The identifier for the batch that was saved.
             * @param {Object} data An object containing the data that is to be saved. The object will contain a key for each appropriate action,
             * with an array of records for each action.
             */
            'save'

        );

        if(this.proxy){
            // TODO remove deprecated loadexception with ext-3.0.1
            this.relayEvents(this.proxy,  ['loadexception', 'exception']);
        }
        // With a writer set for the Store, we want to listen to add/remove events to remotely create/destroy records.
        if (this.writer) {
            this.on({
                scope: this,
                add: this.createRecords,
                remove: this.destroyRecord,
                update: this.updateRecord,
                clear: this.onClear
            });
        }

        this.sortToggle = {};
        if(this.sortField){
            this.setDefaultSort(this.sortField, this.sortDir);
        }else if(this.sortInfo){
            this.setDefaultSort(this.sortInfo.field, this.sortInfo.direction);
        }

        Ext.data.Store.superclass.constructor.call(this);

        if(this.id){
            this.storeId = this.id;
            delete this.id;
        }
        if(this.storeId){
            Ext.StoreMgr.register(this);
        }
        if(this.inlineData){
            this.loadData(this.inlineData);
            delete this.inlineData;
        }else if(this.autoLoad){
            this.load.defer(10, this, [
                typeof this.autoLoad == 'object' ?
                    this.autoLoad : undefined]);
        }
        // used internally to uniquely identify a batch
        this.batchCounter = 0;
        this.batches = {};
    },

    /**
     * builds a DataWriter instance when Store constructor is provided with a writer config-object instead of an instace.
     * @param {Object} config Writer configuration
     * @return {Ext.data.DataWriter}
     * @private
     */
    buildWriter : function(config) {
        var klass = undefined,
            type = (config.format || 'json').toLowerCase();
        switch (type) {
            case 'json':
                klass = Ext.data.JsonWriter;
                break;
            case 'xml':
                klass = Ext.data.XmlWriter;
                break;
            default:
                klass = Ext.data.JsonWriter;
        }
        return new klass(config);
    },

    /**
     * Destroys the store.
     */
    destroy : function(){
        if(!this.isDestroyed){
            if(this.storeId){
                Ext.StoreMgr.unregister(this);
            }
            this.clearData();
            this.data = null;
            Ext.destroy(this.proxy);
            this.reader = this.writer = null;
            this.purgeListeners();
            this.isDestroyed = true;
        }
    },

    /**
     * Add Records to the Store and fires the {@link #add} event.  To add Records
     * to the store from a remote source use {@link #load}({add:true}).
     * See also {@link #recordType} and {@link #insert}.
     * @param {Ext.data.Record[]} records An Array of Ext.data.Record objects
     * to add to the cache. See {@link #recordType}.
     */
    add : function(records) {
        var i, len, record, index;

        records = [].concat(records);
        if (records.length < 1) {
            return;
        }

        for (i = 0, len = records.length; i < len; i++) {
            record = records[i];

            record.join(this);

            if (record.dirty || record.phantom) {
                this.modified.push(record);
            }
        }

        index = this.data.length;
        this.data.addAll(records);

        if (this.snapshot) {
            this.snapshot.addAll(records);
        }

        this.fireEvent('add', this, records, index);
    },

    /**
     * (Local sort only) Inserts the passed Record into the Store at the index where it
     * should go based on the current sort information.
     * @param {Ext.data.Record} record
     */
    addSorted : function(record){
        var index = this.findInsertIndex(record);
        this.insert(index, record);
    },

    /**
     * @private
     * Update a record within the store with a new reference
     */
    doUpdate: function(rec){
        var id = rec.id;
        // unjoin the old record
        this.getById(id).join(null);

        this.data.replace(id, rec);
        if (this.snapshot) {
            this.snapshot.replace(id, rec);
        }
        rec.join(this);
        this.fireEvent('update', this, rec, Ext.data.Record.COMMIT);
    },

    /**
     * Remove Records from the Store and fires the {@link #remove} event.
     * @param {Ext.data.Record/Ext.data.Record[]} record The record object or array of records to remove from the cache.
     */
    remove : function(record){
        if(Ext.isArray(record)){
            Ext.each(record, function(r){
                this.remove(r);
            }, this);
            return;
        }
        var index = this.data.indexOf(record);
        if(index > -1){
            record.join(null);
            this.data.removeAt(index);
        }
        if(this.pruneModifiedRecords){
            this.modified.remove(record);
        }
        if(this.snapshot){
            this.snapshot.remove(record);
        }
        if(index > -1){
            this.fireEvent('remove', this, record, index);
        }
    },

    /**
     * Remove a Record from the Store at the specified index. Fires the {@link #remove} event.
     * @param {Number} index The index of the record to remove.
     */
    removeAt : function(index){
        this.remove(this.getAt(index));
    },

    /**
     * Remove all Records from the Store and fires the {@link #clear} event.
     * @param {Boolean} silent [false] Defaults to false.  Set true to not fire clear event.
     */
    removeAll : function(silent){
        var items = [];
        this.each(function(rec){
            items.push(rec);
        });
        this.clearData();
        if(this.snapshot){
            this.snapshot.clear();
        }
        if(this.pruneModifiedRecords){
            this.modified = [];
        }
        if (silent !== true) {  // <-- prevents write-actions when we just want to clear a store.
            this.fireEvent('clear', this, items);
        }
    },

    // private
    onClear: function(store, records){
        Ext.each(records, function(rec, index){
            this.destroyRecord(this, rec, index);
        }, this);
    },

    /**
     * Inserts Records into the Store at the given index and fires the {@link #add} event.
     * See also {@link #add} and {@link #addSorted}.
     * @param {Number} index The start index at which to insert the passed Records.
     * @param {Ext.data.Record[]} records An Array of Ext.data.Record objects to add to the cache.
     */
    insert : function(index, records) {
        var i, len, record;

        records = [].concat(records);
        for (i = 0, len = records.length; i < len; i++) {
            record = records[i];

            this.data.insert(index + i, record);
            record.join(this);

            if (record.dirty || record.phantom) {
                this.modified.push(record);
            }
        }

        if (this.snapshot) {
            this.snapshot.addAll(records);
        }

        this.fireEvent('add', this, records, index);
    },

    /**
     * Get the index within the cache of the passed Record.
     * @param {Ext.data.Record} record The Ext.data.Record object to find.
     * @return {Number} The index of the passed Record. Returns -1 if not found.
     */
    indexOf : function(record){
        return this.data.indexOf(record);
    },

    /**
     * Get the index within the cache of the Record with the passed id.
     * @param {String} id The id of the Record to find.
     * @return {Number} The index of the Record. Returns -1 if not found.
     */
    indexOfId : function(id){
        return this.data.indexOfKey(id);
    },

    /**
     * Get the Record with the specified id.
     * @param {String} id The id of the Record to find.
     * @return {Ext.data.Record} The Record with the passed id. Returns undefined if not found.
     */
    getById : function(id){
        return (this.snapshot || this.data).key(id);
    },

    /**
     * Get the Record at the specified index.
     * @param {Number} index The index of the Record to find.
     * @return {Ext.data.Record} The Record at the passed index. Returns undefined if not found.
     */
    getAt : function(index){
        return this.data.itemAt(index);
    },

    /**
     * Returns a range of Records between specified indices.
     * @param {Number} startIndex (optional) The starting index (defaults to 0)
     * @param {Number} endIndex (optional) The ending index (defaults to the last Record in the Store)
     * @return {Ext.data.Record[]} An array of Records
     */
    getRange : function(start, end){
        return this.data.getRange(start, end);
    },

    // private
    storeOptions : function(o){
        o = Ext.apply({}, o);
        delete o.callback;
        delete o.scope;
        this.lastOptions = o;
    },

    // private
    clearData: function(){
        this.data.each(function(rec) {
            rec.join(null);
        });
        this.data.clear();
    },

    /**
     * 
    Loads the Record cache from the configured {@link #proxy} using the configured {@link #reader}.
    
     * 
    Notes:
      
     * 
    • Important: loading is asynchronous! This call will return before the new data has been
     * loaded. To perform any post-processing where information from the load call is required, specify
     * the callback function to be called, or use a {@link Ext.util.Observable#listeners a 'load' event handler}.
      • 
     * 
    • If using {@link Ext.PagingToolbar remote paging}, the first load call must specify the start and limit
     * properties in the options.params property to establish the initial position within the
     * dataset, and the number of Records to cache on each read from the Proxy.
      • 
     * 
    • If using {@link #remoteSort remote sorting}, the configured {@link #sortInfo}
     * will be automatically included with the posted parameters according to the specified
     * {@link #paramNames}.
      • 
     * 
    
     * @param {Object} options An object containing properties which control loading options:
      
     * 
    • params :Object
      An object containing properties to pass as HTTP
     * parameters to a remote data source. Note: params will override any
     * {@link #baseParams} of the same name.
      
     * 
      Parameters are encoded as standard HTTP parameters using {@link Ext#urlEncode}.
      • 
     * 
    • callback : Function
      A function to be called after the Records
     * have been loaded. The callback is called after the load event is fired, and is passed the following arguments:
        
     * 
      • r : Ext.data.Record[] An Array of Records loaded.
        • 
     * 
      • options : Options object from the load call.
        • 
     * 
      • success : Boolean success indicator.
      • 
     * 
    • scope : Object
      Scope with which to call the callback (defaults
     * to the Store object)
      • 
     * 
    • add : Boolean
      Indicator to append loaded records rather than
     * replace the current cache.  Note: see note for {@link #loadData}
      • 
     * 
    
     * @return {Boolean} If the developer provided {@link #beforeload} event handler returns
     * false, the load call will abort and will return false; otherwise will return true.
     */
    load : function(options) {
        options = Ext.apply({}, options);
        this.storeOptions(options);
        if(this.sortInfo && this.remoteSort){
            var pn = this.paramNames;
            options.params = Ext.apply({}, options.params);
            options.params[pn.sort] = this.sortInfo.field;
            options.params[pn.dir] = this.sortInfo.direction;
        }
        try {
            return this.execute('read', null, options); // <-- null represents rs.  No rs for load actions.
        } catch(e) {
            this.handleException(e);
            return false;
        }
    },

    /**
     * updateRecord  Should not be used directly.  This method will be called automatically if a Writer is set.
     * Listens to 'update' event.
     * @param {Object} store
     * @param {Object} record
     * @param {Object} action
     * @private
     */
    updateRecord : function(store, record, action) {
        if (action == Ext.data.Record.EDIT && this.autoSave === true && (!record.phantom || (record.phantom && record.isValid()))) {
            this.save();
        }
    },

    /**
     * @private
     * Should not be used directly.  Store#add will call this automatically if a Writer is set
     * @param {Object} store
     * @param {Object} records
     * @param {Object} index
     */
    createRecords : function(store, records, index) {
        var modified = this.modified,
            length   = records.length,
            record, i;

        for (i = 0; i < length; i++) {
            record = records[i];

            if (record.phantom && record.isValid()) {
                record.markDirty();  // <-- Mark new records dirty (Ed: why?)

                if (modified.indexOf(record) == -1) {
                    modified.push(record);
                }
            }
        }
        if (this.autoSave === true) {
            this.save();
        }
    },

    /**
     * Destroys a Record.  Should not be used directly.  It's called by Store#remove if a Writer is set.
     * @param {Store} store this
     * @param {Ext.data.Record} record
     * @param {Number} index
     * @private
     */
    destroyRecord : function(store, record, index) {
        if (this.modified.indexOf(record) != -1) {  // <-- handled already if @cfg pruneModifiedRecords == true
            this.modified.remove(record);
        }
        if (!record.phantom) {
            this.removed.push(record);

            // since the record has already been removed from the store but the server request has not yet been executed,
            // must keep track of the last known index this record existed.  If a server error occurs, the record can be
            // put back into the store.  @see Store#createCallback where the record is returned when response status === false
            record.lastIndex = index;

            if (this.autoSave === true) {
                this.save();
            }
        }
    },

    /**
     * This method should generally not be used directly.  This method is called internally
     * by {@link #load}, or if a Writer is set will be called automatically when {@link #add},
     * {@link #remove}, or {@link #update} events fire.
     * @param {String} action Action name ('read', 'create', 'update', or 'destroy')
     * @param {Record/Record[]} rs
     * @param {Object} options
     * @throws Error
     * @private
     */
    execute : function(action, rs, options, /* private */ batch) {
        // blow up if action not Ext.data.CREATE, READ, UPDATE, DESTROY
        if (!Ext.data.Api.isAction(action)) {
            throw new Ext.data.Api.Error('execute', action);
        }
        // make sure options has a fresh, new params hash
        options = Ext.applyIf(options||{}, {
            params: {}
        });
        if(batch !== undefined){
            this.addToBatch(batch);
        }
        // have to separate before-events since load has a different signature than create,destroy and save events since load does not
        // include the rs (record resultset) parameter.  Capture return values from the beforeaction into doRequest flag.
        var doRequest = true;

        if (action === 'read') {
            doRequest = this.fireEvent('beforeload', this, options);
            Ext.applyIf(options.params, this.baseParams);
        }
        else {
            // if Writer is configured as listful, force single-record rs to be [{}] instead of {}
            // TODO Move listful rendering into DataWriter where the @cfg is defined.  Should be easy now.
            if (this.writer.listful === true && this.restful !== true) {
                rs = (Ext.isArray(rs)) ? rs : [rs];
            }
            // if rs has just a single record, shift it off so that Writer writes data as '{}' rather than '[{}]'
            else if (Ext.isArray(rs) && rs.length == 1) {
                rs = rs.shift();
            }
            // Write the action to options.params
            if ((doRequest = this.fireEvent('beforewrite', this, action, rs, options)) !== false) {
                this.writer.apply(options.params, this.baseParams, action, rs);
            }
        }
        if (doRequest !== false) {
            // Send request to proxy.
            if (this.writer && this.proxy.url && !this.proxy.restful && !Ext.data.Api.hasUniqueUrl(this.proxy, action)) {
                options.params.xaction = action;    // <-- really old, probaby unecessary.
            }
            // Note:  Up until this point we've been dealing with 'action' as a key from Ext.data.Api.actions.
            // We'll flip it now and send the value into DataProxy#request, since it's the value which maps to
            // the user's configured DataProxy#api
            // TODO Refactor all Proxies to accept an instance of Ext.data.Request (not yet defined) instead of this looooooong list
            // of params.  This method is an artifact from Ext2.
            this.proxy.request(Ext.data.Api.actions[action], rs, options.params, this.reader, this.createCallback(action, rs, batch), this, options);
        }
        return doRequest;
    },

    /**
     * Saves all pending changes to the store.  If the commensurate Ext.data.Api.actions action is not configured, then
     * the configured {@link #url} will be used.
     * 
         * change            url
     * ---------------   --------------------
     * removed records   Ext.data.Api.actions.destroy
     * phantom records   Ext.data.Api.actions.create
     * {@link #getModifiedRecords modified records}  Ext.data.Api.actions.update
     * 
    
     * @TODO:  Create extensions of Error class and send associated Record with thrown exceptions.
     * e.g.:  Ext.data.DataReader.Error or Ext.data.Error or Ext.data.DataProxy.Error, etc.
     * @return {Number} batch Returns a number to uniquely identify the "batch" of saves occurring. -1 will be returned
     * if there are no items to save or the save was cancelled.
     */
    save : function() {
        if (!this.writer) {
            throw new Ext.data.Store.Error('writer-undefined');
        }

        var queue = [],
            len,
            trans,
            batch,
            data = {},
            i;
        // DESTROY:  First check for removed records.  Records in this.removed are guaranteed non-phantoms.  @see Store#remove
        if(this.removed.length){
            queue.push(['destroy', this.removed]);
        }

        // Check for modified records. Use a copy so Store#rejectChanges will work if server returns error.
        var rs = [].concat(this.getModifiedRecords());
        if(rs.length){
            // CREATE:  Next check for phantoms within rs.  splice-off and execute create.
            var phantoms = [];
            for(i = rs.length-1; i >= 0; i--){
                if(rs[i].phantom === true){
                    var rec = rs.splice(i, 1).shift();
                    if(rec.isValid()){
                        phantoms.push(rec);
                    }
                }else if(!rs[i].isValid()){ // <-- while we're here, splice-off any !isValid real records
                    rs.splice(i,1);
                }
            }
            // If we have valid phantoms, create them...
            if(phantoms.length){
                queue.push(['create', phantoms]);
            }

            // UPDATE:  And finally, if we're still here after splicing-off phantoms and !isValid real records, update the rest...
            if(rs.length){
                queue.push(['update', rs]);
            }
        }
        len = queue.length;
        if(len){
            batch = ++this.batchCounter;
            for(i = 0; i < len; ++i){
                trans = queue[i];
                data[trans[0]] = trans[1];
            }
            if(this.fireEvent('beforesave', this, data) !== false){
                for(i = 0; i < len; ++i){
                    trans = queue[i];
                    this.doTransaction(trans[0], trans[1], batch);
                }
                return batch;
            }
        }
        return -1;
    },

    // private.  Simply wraps call to Store#execute in try/catch.  Defers to Store#handleException on error.  Loops if batch: false
    doTransaction : function(action, rs, batch) {
        function transaction(records) {
            try{
                this.execute(action, records, undefined, batch);
            }catch (e){
                this.handleException(e);
            }
        }
        if(this.batch === false){
            for(var i = 0, len = rs.length; i < len; i++){
                transaction.call(this, rs[i]);
            }
        }else{
            transaction.call(this, rs);
        }
    },

    // private
    addToBatch : function(batch){
        var b = this.batches,
            key = this.batchKey + batch,
            o = b[key];

        if(!o){
            b[key] = o = {
                id: batch,
                count: 0,
                data: {}
            };
        }
        ++o.count;
    },

    removeFromBatch : function(batch, action, data){
        var b = this.batches,
            key = this.batchKey + batch,
            o = b[key],
            arr;


        if(o){
            arr = o.data[action] || [];
            o.data[action] = arr.concat(data);
            if(o.count === 1){
                data = o.data;
                delete b[key];
                this.fireEvent('save', this, batch, data);
            }else{
                --o.count;
            }
        }
    },

    // @private callback-handler for remote CRUD actions
    // Do not override -- override loadRecords, onCreateRecords, onDestroyRecords and onUpdateRecords instead.
    createCallback : function(action, rs, batch) {
        var actions = Ext.data.Api.actions;
        return (action == 'read') ? this.loadRecords : function(data, response, success) {
            // calls: onCreateRecords | onUpdateRecords | onDestroyRecords
            this['on' + Ext.util.Format.capitalize(action) + 'Records'](success, rs, [].concat(data));
            // If success === false here, exception will have been called in DataProxy
            if (success === true) {
                this.fireEvent('write', this, action, data, response, rs);
            }
            this.removeFromBatch(batch, action, data);
        };
    },

    // Clears records from modified array after an exception event.
    // NOTE:  records are left marked dirty.  Do we want to commit them even though they were not updated/realized?
    // TODO remove this method?
    clearModified : function(rs) {
        if (Ext.isArray(rs)) {
            for (var n=rs.length-1;n>=0;n--) {
                this.modified.splice(this.modified.indexOf(rs[n]), 1);
            }
        } else {
            this.modified.splice(this.modified.indexOf(rs), 1);
        }
    },

    // remap record ids in MixedCollection after records have been realized.  @see Store#onCreateRecords, @see DataReader#realize
    reMap : function(record) {
        if (Ext.isArray(record)) {
            for (var i = 0, len = record.length; i < len; i++) {
                this.reMap(record[i]);
            }
        } else {
            delete this.data.map[record._phid];
            this.data.map[record.id] = record;
            var index = this.data.keys.indexOf(record._phid);
            this.data.keys.splice(index, 1, record.id);
            delete record._phid;
        }
    },

    // @protected onCreateRecord proxy callback for create action
    onCreateRecords : function(success, rs, data) {
        if (success === true) {
            try {
                this.reader.realize(rs, data);
            }
            catch (e) {
                this.handleException(e);
                if (Ext.isArray(rs)) {
                    // Recurse to run back into the try {}.  DataReader#realize splices-off the rs until empty.
                    this.onCreateRecords(success, rs, data);
                }
            }
        }
    },

    // @protected, onUpdateRecords proxy callback for update action
    onUpdateRecords : function(success, rs, data) {
        if (success === true) {
            try {
                this.reader.update(rs, data);
            } catch (e) {
                this.handleException(e);
                if (Ext.isArray(rs)) {
                    // Recurse to run back into the try {}.  DataReader#update splices-off the rs until empty.
                    this.onUpdateRecords(success, rs, data);
                }
            }
        }
    },

    // @protected onDestroyRecords proxy callback for destroy action
    onDestroyRecords : function(success, rs, data) {
        // splice each rec out of this.removed
        rs = (rs instanceof Ext.data.Record) ? [rs] : [].concat(rs);
        for (var i=0,len=rs.length;i=0;i--) {
                this.insert(rs[i].lastIndex, rs[i]);    // <-- lastIndex set in Store#destroyRecord
            }
        }
    },

    // protected handleException.  Possibly temporary until Ext framework has an exception-handler.
    handleException : function(e) {
        // @see core/Error.js
        Ext.handleError(e);
    },

    /**
     * 
    Reloads the Record cache from the configured Proxy using the configured
     * {@link Ext.data.Reader Reader} and the options from the last load operation
     * performed.
    
     * 
    Note: see the Important note in {@link #load}.
    
     * @param {Object} options 
    (optional) An Object containing
     * {@link #load loading options} which may override the {@link #lastOptions options}
     * used in the last {@link #load} operation. See {@link #load} for details
     * (defaults to null, in which case the {@link #lastOptions} are
     * used).
    
     * 
    To add new params to the existing params:
    
lastOptions = myStore.lastOptions;
Ext.apply(lastOptions.params, {
    myNewParam: true
});
myStore.reload(lastOptions);
     * 
    
     */
    reload : function(options){
        this.load(Ext.applyIf(options||{}, this.lastOptions));
    },

    // private
    // Called as a callback by the Reader during a load operation.
    loadRecords : function(o, options, success){
        var i, len;

        if (this.isDestroyed === true) {
            return;
        }
        if(!o || success === false){
            if(success !== false){
                this.fireEvent('load', this, [], options);
            }
            if(options.callback){
                options.callback.call(options.scope || this, [], options, false, o);
            }
            return;
        }
        var r = o.records, t = o.totalRecords || r.length;
        if(!options || options.add !== true){
            if(this.pruneModifiedRecords){
                this.modified = [];
            }
            for(i = 0, len = r.length; i < len; i++){
                r[i].join(this);
            }
            if(this.snapshot){
                this.data = this.snapshot;
                delete this.snapshot;
            }
            this.clearData();
            this.data.addAll(r);
            this.totalLength = t;
            this.applySort();
            this.fireEvent('datachanged', this);
        }else{
            var toAdd = [],
                rec,
                cnt = 0;
            for(i = 0, len = r.length; i < len; ++i){
                rec = r[i];
                if(this.indexOfId(rec.id) > -1){
                    this.doUpdate(rec);
                }else{
                    toAdd.push(rec);
                    ++cnt;
                }
            }
            this.totalLength = Math.max(t, this.data.length + cnt);
            this.add(toAdd);
        }
        this.fireEvent('load', this, r, options);
        if(options.callback){
            options.callback.call(options.scope || this, r, options, true);
        }
    },

    /**
     * Loads data from a passed data block and fires the {@link #load} event. A {@link Ext.data.Reader Reader}
     * which understands the format of the data must have been configured in the constructor.
     * @param {Object} data The data block from which to read the Records.  The format of the data expected
     * is dependent on the type of {@link Ext.data.Reader Reader} that is configured and should correspond to
     * that {@link Ext.data.Reader Reader}'s {@link Ext.data.Reader#readRecords} parameter.
     * @param {Boolean} append (Optional) true to append the new Records rather the default to replace
     * the existing cache.
     * Note: that Records in a Store are keyed by their {@link Ext.data.Record#id id}, so added Records
     * with ids which are already present in the Store will replace existing Records. Only Records with
     * new, unique ids will be added.
     */
    loadData : function(o, append){
        var r = this.reader.readRecords(o);
        this.loadRecords(r, {add: append}, true);
    },

    /**
     * Gets the number of cached records.
     * 
    If using paging, this may not be the total size of the dataset. If the data object
     * used by the Reader contains the dataset size, then the {@link #getTotalCount} function returns
     * the dataset size.  Note: see the Important note in {@link #load}.
    
     * @return {Number} The number of Records in the Store's cache.
     */
    getCount : function(){
        return this.data.length || 0;
    },

    /**
     * Gets the total number of records in the dataset as returned by the server.
     * 
    If using paging, for this to be accurate, the data object used by the {@link #reader Reader}
     * must contain the dataset size. For remote data sources, the value for this property
     * (totalProperty for {@link Ext.data.JsonReader JsonReader},
     * totalRecords for {@link Ext.data.XmlReader XmlReader}) shall be returned by a query on the server.
     * Note: see the Important note in {@link #load}.
    
     * @return {Number} The number of Records as specified in the data object passed to the Reader
     * by the Proxy.
     * 
    Note: this value is not updated when changing the contents of the Store locally.
    
     */
    getTotalCount : function(){
        return this.totalLength || 0;
    },

    /**
     * Returns an object describing the current sort state of this Store.
     * @return {Object} The sort state of the Store. An object with two properties:
      
     * 
    • field : String
      The name of the field by which the Records are sorted.
      • 
     * 
    • direction : String
      The sort order, 'ASC' or 'DESC' (case-sensitive).
      • 
     * 
    
     * See {@link #sortInfo} for additional details.
     */
    getSortState : function(){
        return this.sortInfo;
    },

    /**
     * @private
     * Invokes sortData if we have sortInfo to sort on and are not sorting remotely
     */
    applySort : function(){
        if ((this.sortInfo || this.multiSortInfo) && !this.remoteSort) {
            this.sortData();
        }
    },

    /**
     * @private
     * Performs the actual sorting of data. This checks to see if we currently have a multi sort or not. It applies
     * each sorter field/direction pair in turn by building an OR'ed master sorting function and running it against
     * the full dataset
     */
    sortData : function() {
        var sortInfo  = this.hasMultiSort ? this.multiSortInfo : this.sortInfo,
            direction = sortInfo.direction || "ASC",
            sorters   = sortInfo.sorters,
            sortFns   = [];

        //if we just have a single sorter, pretend it's the first in an array
        if (!this.hasMultiSort) {
            sorters = [{direction: direction, field: sortInfo.field}];
        }

        //create a sorter function for each sorter field/direction combo
        for (var i=0, j = sorters.length; i < j; i++) {
            sortFns.push(this.createSortFunction(sorters[i].field, sorters[i].direction));
        }

        if (sortFns.length == 0) {
            return;
        }

        //the direction modifier is multiplied with the result of the sorting functions to provide overall sort direction
        //(as opposed to direction per field)
        var directionModifier = direction.toUpperCase() == "DESC" ? -1 : 1;

        //create a function which ORs each sorter together to enable multi-sort
        var fn = function(r1, r2) {
          var result = sortFns[0].call(this, r1, r2);

          //if we have more than one sorter, OR any additional sorter functions together
          if (sortFns.length > 1) {
              for (var i=1, j = sortFns.length; i < j; i++) {
                  result = result || sortFns[i].call(this, r1, r2);
              }
          }

          return directionModifier * result;
        };

        //sort the data
        this.data.sort(direction, fn);
        if (this.snapshot && this.snapshot != this.data) {
            this.snapshot.sort(direction, fn);
        }
    },

    /**
     * @private
     * Creates and returns a function which sorts an array by the given field and direction
     * @param {String} field The field to create the sorter for
     * @param {String} direction The direction to sort by (defaults to "ASC")
     * @return {Function} A function which sorts by the field/direction combination provided
     */
    createSortFunction: function(field, direction) {
        direction = direction || "ASC";
        var directionModifier = direction.toUpperCase() == "DESC" ? -1 : 1;

        var sortType = this.fields.get(field).sortType;

        //create a comparison function. Takes 2 records, returns 1 if record 1 is greater,
        //-1 if record 2 is greater or 0 if they are equal
        return function(r1, r2) {
            var v1 = sortType(r1.data[field]),
                v2 = sortType(r2.data[field]);

            return directionModifier * (v1 > v2 ? 1 : (v1 < v2 ? -1 : 0));
        };
    },

    /**
     * Sets the default sort column and order to be used by the next {@link #load} operation.
     * @param {String} fieldName The name of the field to sort by.
     * @param {String} dir (optional) The sort order, 'ASC' or 'DESC' (case-sensitive, defaults to 'ASC')
     */
    setDefaultSort : function(field, dir) {
        dir = dir ? dir.toUpperCase() : 'ASC';
        this.sortInfo = {field: field, direction: dir};
        this.sortToggle[field] = dir;
    },

    /**
     * Sort the Records.
     * If remote sorting is used, the sort is performed on the server, and the cache is reloaded. If local
     * sorting is used, the cache is sorted internally. See also {@link #remoteSort} and {@link #paramNames}.
     * This function accepts two call signatures - pass in a field name as the first argument to sort on a single
     * field, or pass in an array of sort configuration objects to sort by multiple fields.
     * Single sort example:
     * store.sort('name', 'ASC');
     * Multi sort example:
     * store.sort([
     *   {
     *     field    : 'name',
     *     direction: 'ASC'
     *   },
     *   {
     *     field    : 'salary',
     *     direction: 'DESC'
     *   }
     * ], 'ASC');
     * In this second form, the sort configs are applied in order, with later sorters sorting within earlier sorters' results.
     * For example, if two records with the same name are present they will also be sorted by salary if given the sort configs
     * above. Any number of sort configs can be added.
     * @param {String/Array} fieldName The name of the field to sort by, or an array of ordered sort configs
     * @param {String} dir (optional) The sort order, 'ASC' or 'DESC' (case-sensitive, defaults to 'ASC')
     */
    sort : function(fieldName, dir) {
        if (Ext.isArray(arguments[0])) {
            return this.multiSort.call(this, fieldName, dir);
        } else {
            return this.singleSort(fieldName, dir);
        }
    },

    /**
     * Sorts the store contents by a single field and direction. This is called internally by {@link sort} and would
     * not usually be called manually
     * @param {String} fieldName The name of the field to sort by.
     * @param {String} dir (optional) The sort order, 'ASC' or 'DESC' (case-sensitive, defaults to 'ASC')
     */
    singleSort: function(fieldName, dir) {
        var field = this.fields.get(fieldName);
        if (!field) {
            return false;
        }

        var name       = field.name,
            sortInfo   = this.sortInfo || null,
            sortToggle = this.sortToggle ? this.sortToggle[name] : null;

        if (!dir) {
            if (sortInfo && sortInfo.field == name) { // toggle sort dir
                dir = (this.sortToggle[name] || 'ASC').toggle('ASC', 'DESC');
            } else {
                dir = field.sortDir;
            }
        }

        this.sortToggle[name] = dir;
        this.sortInfo = {field: name, direction: dir};
        this.hasMultiSort = false;

        if (this.remoteSort) {
            if (!this.load(this.lastOptions)) {
                if (sortToggle) {
                    this.sortToggle[name] = sortToggle;
                }
                if (sortInfo) {
                    this.sortInfo = sortInfo;
                }
            }
        } else {
            this.applySort();
            this.fireEvent('datachanged', this);
        }
        return true;
    },

    /**
     * Sorts the contents of this store by multiple field/direction sorters. This is called internally by {@link sort}
     * and would not usually be called manually.
     * Multi sorting only currently applies to local datasets - multiple sort data is not currently sent to a proxy
     * if remoteSort is used.
     * @param {Array} sorters Array of sorter objects (field and direction)
     * @param {String} direction Overall direction to sort the ordered results by (defaults to "ASC")
     */
    multiSort: function(sorters, direction) {
        this.hasMultiSort = true;
        direction = direction || "ASC";

        //toggle sort direction
        if (this.multiSortInfo && direction == this.multiSortInfo.direction) {
            direction = direction.toggle("ASC", "DESC");
        }

        /**
         * Object containing overall sort direction and an ordered array of sorter configs used when sorting on multiple fields
         * @property multiSortInfo
         * @type Object
         */
        this.multiSortInfo = {
            sorters  : sorters,
            direction: direction
        };

        if (this.remoteSort) {
            this.singleSort(sorters[0].field, sorters[0].direction);

        } else {
            this.applySort();
            this.fireEvent('datachanged', this);
        }
    },

    /**
     * Calls the specified function for each of the {@link Ext.data.Record Records} in the cache.
     * @param {Function} fn The function to call. The {@link Ext.data.Record Record} is passed as the first parameter.
     * Returning false aborts and exits the iteration.
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed.
     * Defaults to the current {@link Ext.data.Record Record} in the iteration.
     */
    each : function(fn, scope){
        this.data.each(fn, scope);
    },

    /**
     * Gets all {@link Ext.data.Record records} modified since the last commit.  Modified records are
     * persisted across load operations (e.g., during paging). Note: deleted records are not
     * included.  See also {@link #pruneModifiedRecords} and
     * {@link Ext.data.Record}{@link Ext.data.Record#markDirty markDirty}..
     * @return {Ext.data.Record[]} An array of {@link Ext.data.Record Records} containing outstanding
     * modifications.  To obtain modified fields within a modified record see
     *{@link Ext.data.Record}{@link Ext.data.Record#modified modified}..
     */
    getModifiedRecords : function(){
        return this.modified;
    },

    /**
     * Sums the value of property for each {@link Ext.data.Record record} between start
     * and end and returns the result.
     * @param {String} property A field in each record
     * @param {Number} start (optional) The record index to start at (defaults to 0)
     * @param {Number} end (optional) The last record index to include (defaults to length - 1)
     * @return {Number} The sum
     */
    sum : function(property, start, end){
        var rs = this.data.items, v = 0;
        start = start || 0;
        end = (end || end === 0) ? end : rs.length-1;

        for(var i = start; i <= end; i++){
            v += (rs[i].data[property] || 0);
        }
        return v;
    },

    /**
     * @private
     * Returns a filter function used to test a the given property's value. Defers most of the work to
     * Ext.util.MixedCollection's createValueMatcher function
     * @param {String} property The property to create the filter function for
     * @param {String/RegExp} value The string/regex to compare the property value to
     * @param {Boolean} anyMatch True if we don't care if the filter value is not the full value (defaults to false)
     * @param {Boolean} caseSensitive True to create a case-sensitive regex (defaults to false)
     * @param {Boolean} exactMatch True to force exact match (^ and $ characters added to the regex). Defaults to false. Ignored if anyMatch is true.
     */
    createFilterFn : function(property, value, anyMatch, caseSensitive, exactMatch){
        if(Ext.isEmpty(value, false)){
            return false;
        }
        value = this.data.createValueMatcher(value, anyMatch, caseSensitive, exactMatch);
        return function(r) {
            return value.test(r.data[property]);
        };
    },

    /**
     * @private
     * Given an array of filter functions (each with optional scope), constructs and returns a single function that returns
     * the result of all of the filters ANDed together
     * @param {Array} filters The array of filter objects (each object should contain an 'fn' and optional scope)
     * @return {Function} The multiple filter function
     */
    createMultipleFilterFn: function(filters) {
        return function(record) {
            var isMatch = true;

            for (var i=0, j = filters.length; i < j; i++) {
                var filter = filters[i],
                    fn     = filter.fn,
                    scope  = filter.scope;

                isMatch = isMatch && fn.call(scope, record);
            }

            return isMatch;
        };
    },

    /**
     * Filter the {@link Ext.data.Record records} by a specified property. Alternatively, pass an array of filter
     * options to filter by more than one property.
     * Single filter example:
     * store.filter('name', 'Ed', true, true); //finds all records containing the substring 'Ed'
     * Multiple filter example:
     * 
    
     * store.filter([
     *   {
     *     property     : 'name',
     *     value        : 'Ed',
     *     anyMatch     : true, //optional, defaults to true
     *     caseSensitive: true  //optional, defaults to true
     *   },
     *
     *   //filter functions can also be passed
     *   {
     *     fn   : function(record) {
     *       return record.get('age') == 24
     *     },
     *     scope: this
     *   }
     * ]);
     * 
    
     * @param {String|Array} field A field on your records, or an array containing multiple filter options
     * @param {String/RegExp} value Either a string that the field should begin with, or a RegExp to test
     * against the field.
     * @param {Boolean} anyMatch (optional) true to match any part not just the beginning
     * @param {Boolean} caseSensitive (optional) true for case sensitive comparison
     * @param {Boolean} exactMatch (optional) True to force exact match (^ and $ characters added to the regex). Defaults to false. Ignored if anyMatch is true.
     */
    filter : function(property, value, anyMatch, caseSensitive, exactMatch){
        var fn;
        //we can accept an array of filter objects, or a single filter object - normalize them here
        if (Ext.isObject(property)) {
            property = [property];
        }

        if (Ext.isArray(property)) {
            var filters = [];

            //normalize the filters passed into an array of filter functions
            for (var i=0, j = property.length; i < j; i++) {
                var filter = property[i],
                    func   = filter.fn,
                    scope  = filter.scope || this;

                //if we weren't given a filter function, construct one now
                if (!Ext.isFunction(func)) {
                    func = this.createFilterFn(filter.property, filter.value, filter.anyMatch, filter.caseSensitive, filter.exactMatch);
                }

                filters.push({fn: func, scope: scope});
            }

            fn = this.createMultipleFilterFn(filters);
        } else {
            //classic single property filter
            fn = this.createFilterFn(property, value, anyMatch, caseSensitive, exactMatch);
        }

        return fn ? this.filterBy(fn) : this.clearFilter();
    },

    /**
     * Filter by a function. The specified function will be called for each
     * Record in this Store. If the function returns true the Record is included,
     * otherwise it is filtered out.
     * @param {Function} fn The function to be called. It will be passed the following parameters:
      
     * 
    • record : Ext.data.Record
      The {@link Ext.data.Record record}
     * to test for filtering. Access field values using {@link Ext.data.Record#get}.
      • 
     * 
    • id : Object
      The ID of the Record passed.
      • 
     * 
    
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to this Store.
     */
    filterBy : function(fn, scope){
        this.snapshot = this.snapshot || this.data;
        this.data = this.queryBy(fn, scope || this);
        this.fireEvent('datachanged', this);
    },

    /**
     * Revert to a view of the Record cache with no filtering applied.
     * @param {Boolean} suppressEvent If true the filter is cleared silently without firing the
     * {@link #datachanged} event.
     */
    clearFilter : function(suppressEvent){
        if(this.isFiltered()){
            this.data = this.snapshot;
            delete this.snapshot;
            if(suppressEvent !== true){
                this.fireEvent('datachanged', this);
            }
        }
    },

    /**
     * Returns true if this store is currently filtered
     * @return {Boolean}
     */
    isFiltered : function(){
        return !!this.snapshot && this.snapshot != this.data;
    },

    /**
     * Query the records by a specified property.
     * @param {String} field A field on your records
     * @param {String/RegExp} value Either a string that the field
     * should begin with, or a RegExp to test against the field.
     * @param {Boolean} anyMatch (optional) True to match any part not just the beginning
     * @param {Boolean} caseSensitive (optional) True for case sensitive comparison
     * @return {MixedCollection} Returns an Ext.util.MixedCollection of the matched records
     */
    query : function(property, value, anyMatch, caseSensitive){
        var fn = this.createFilterFn(property, value, anyMatch, caseSensitive);
        return fn ? this.queryBy(fn) : this.data.clone();
    },

    /**
     * Query the cached records in this Store using a filtering function. The specified function
     * will be called with each record in this Store. If the function returns true the record is
     * included in the results.
     * @param {Function} fn The function to be called. It will be passed the following parameters:
      
     * 
    • record : Ext.data.Record
      The {@link Ext.data.Record record}
     * to test for filtering. Access field values using {@link Ext.data.Record#get}.
      • 
     * 
    • id : Object
      The ID of the Record passed.
      • 
     * 
    
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to this Store.
     * @return {MixedCollection} Returns an Ext.util.MixedCollection of the matched records
     **/
    queryBy : function(fn, scope){
        var data = this.snapshot || this.data;
        return data.filterBy(fn, scope||this);
    },

    /**
     * Finds the index of the first matching Record in this store by a specific field value.
     * @param {String} fieldName The name of the Record field to test.
     * @param {String/RegExp} value Either a string that the field value
     * should begin with, or a RegExp to test against the field.
     * @param {Number} startIndex (optional) The index to start searching at
     * @param {Boolean} anyMatch (optional) True to match any part of the string, not just the beginning
     * @param {Boolean} caseSensitive (optional) True for case sensitive comparison
     * @return {Number} The matched index or -1
     */
    find : function(property, value, start, anyMatch, caseSensitive){
        var fn = this.createFilterFn(property, value, anyMatch, caseSensitive);
        return fn ? this.data.findIndexBy(fn, null, start) : -1;
    },

    /**
     * Finds the index of the first matching Record in this store by a specific field value.
     * @param {String} fieldName The name of the Record field to test.
     * @param {Mixed} value The value to match the field against.
     * @param {Number} startIndex (optional) The index to start searching at
     * @return {Number} The matched index or -1
     */
    findExact: function(property, value, start){
        return this.data.findIndexBy(function(rec){
            return rec.get(property) === value;
        }, this, start);
    },

    /**
     * Find the index of the first matching Record in this Store by a function.
     * If the function returns true it is considered a match.
     * @param {Function} fn The function to be called. It will be passed the following parameters:
      
     * 
    • record : Ext.data.Record
      The {@link Ext.data.Record record}
     * to test for filtering. Access field values using {@link Ext.data.Record#get}.
      • 
     * 
    • id : Object
      The ID of the Record passed.
      • 
     * 
    
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to this Store.
     * @param {Number} startIndex (optional) The index to start searching at
     * @return {Number} The matched index or -1
     */
    findBy : function(fn, scope, start){
        return this.data.findIndexBy(fn, scope, start);
    },

    /**
     * Collects unique values for a particular dataIndex from this store.
     * @param {String} dataIndex The property to collect
     * @param {Boolean} allowNull (optional) Pass true to allow null, undefined or empty string values
     * @param {Boolean} bypassFilter (optional) Pass true to collect from all records, even ones which are filtered
     * @return {Array} An array of the unique values
     **/
    collect : function(dataIndex, allowNull, bypassFilter){
        var d = (bypassFilter === true && this.snapshot) ?
                this.snapshot.items : this.data.items;
        var v, sv, r = [], l = {};
        for(var i = 0, len = d.length; i < len; i++){
            v = d[i].data[dataIndex];
            sv = String(v);
            if((allowNull || !Ext.isEmpty(v)) && !l[sv]){
                l[sv] = true;
                r[r.length] = v;
            }
        }
        return r;
    },

    // private
    afterEdit : function(record){
        if(this.modified.indexOf(record) == -1){
            this.modified.push(record);
        }
        this.fireEvent('update', this, record, Ext.data.Record.EDIT);
    },

    // private
    afterReject : function(record){
        this.modified.remove(record);
        this.fireEvent('update', this, record, Ext.data.Record.REJECT);
    },

    // private
    afterCommit : function(record){
        this.modified.remove(record);
        this.fireEvent('update', this, record, Ext.data.Record.COMMIT);
    },

    /**
     * Commit all Records with {@link #getModifiedRecords outstanding changes}. To handle updates for changes,
     * subscribe to the Store's {@link #update update event}, and perform updating when the third parameter is
     * Ext.data.Record.COMMIT.
     */
    commitChanges : function(){
        var modified = this.modified.slice(0),
            length   = modified.length,
            i;

        for (i = 0; i < length; i++){
            modified[i].commit();
        }

        this.modified = [];
        this.removed  = [];
    },

    /**
     * {@link Ext.data.Record#reject Reject} outstanding changes on all {@link #getModifiedRecords modified records}.
     */
    rejectChanges : function() {
        var modified = this.modified.slice(0),
            removed  = this.removed.slice(0).reverse(),
            mLength  = modified.length,
            rLength  = removed.length,
            i;

        for (i = 0; i < mLength; i++) {
            modified[i].reject();
        }

        for (i = 0; i < rLength; i++) {
            this.insert(removed[i].lastIndex || 0, removed[i]);
            removed[i].reject();
        }

        this.modified = [];
        this.removed  = [];
    },

    // private
    onMetaChange : function(meta){
        this.recordType = this.reader.recordType;
        this.fields = this.recordType.prototype.fields;
        delete this.snapshot;
        if(this.reader.meta.sortInfo){
            this.sortInfo = this.reader.meta.sortInfo;
        }else if(this.sortInfo  && !this.fields.get(this.sortInfo.field)){
            delete this.sortInfo;
        }
        if(this.writer){
            this.writer.meta = this.reader.meta;
        }
        this.modified = [];
        this.fireEvent('metachange', this, this.reader.meta);
    },

    // private
    findInsertIndex : function(record){
        this.suspendEvents();
        var data = this.data.clone();
        this.data.add(record);
        this.applySort();
        var index = this.data.indexOf(record);
        this.data = data;
        this.resumeEvents();
        return index;
    },

    /**
     * Set the value for a property name in this store's {@link #baseParams}.  Usage:
    
myStore.setBaseParam('foo', {bar:3});

    
     * @param {String} name Name of the property to assign
     * @param {Mixed} value Value to assign the named property
     **/
    setBaseParam : function (name, value){
        this.baseParams = this.baseParams || {};
        this.baseParams[name] = value;
    }
});

Ext.reg('store', Ext.data.Store);

/**
 * @class Ext.data.Store.Error
 * @extends Ext.Error
 * Store Error extension.
 * @param {String} name
 */
Ext.data.Store.Error = Ext.extend(Ext.Error, {
    name: 'Ext.data.Store'
});
Ext.apply(Ext.data.Store.Error.prototype, {
    lang: {
        'writer-undefined' : 'Attempted to execute a write-action without a DataWriter installed.'
    }
});
/**
 * @class Ext.data.Field
 * 
    This class encapsulates the field definition information specified in the field definition objects
 * passed to {@link Ext.data.Record#create}.
    
 * 
    Developers do not need to instantiate this class. Instances are created by {@link Ext.data.Record.create}
 * and cached in the {@link Ext.data.Record#fields fields} property of the created Record constructor's prototype.
    
 */
Ext.data.Field = Ext.extend(Object, {
    
    constructor : function(config){
        if(Ext.isString(config)){
            config = {name: config};
        }
        Ext.apply(this, config);
        
        var types = Ext.data.Types,
            st = this.sortType,
            t;

        if(this.type){
            if(Ext.isString(this.type)){
                this.type = Ext.data.Types[this.type.toUpperCase()] || types.AUTO;
            }
        }else{
            this.type = types.AUTO;
        }

        // named sortTypes are supported, here we look them up
        if(Ext.isString(st)){
            this.sortType = Ext.data.SortTypes[st];
        }else if(Ext.isEmpty(st)){
            this.sortType = this.type.sortType;
        }

        if(!this.convert){
            this.convert = this.type.convert;
        }
    },
    
    /**
     * @cfg {String} name
     * The name by which the field is referenced within the Record. This is referenced by, for example,
     * the dataIndex property in column definition objects passed to {@link Ext.grid.ColumnModel}.
     * 
    Note: In the simplest case, if no properties other than name are required, a field
     * definition may consist of just a String for the field name.
    
     */
    /**
     * @cfg {Mixed} type
     * (Optional) The data type for automatic conversion from received data to the stored value if {@link Ext.data.Field#convert convert}
     * has not been specified. This may be specified as a string value. Possible values are
     * 
      
     * 
    • auto (Default, implies no conversion)
      • 
     * 
    • string
      • 
     * 
    • int
      • 
     * 
    • float
      • 
     * 
    • boolean
      • 
     * 
    • date
    
     * 
    This may also be specified by referencing a member of the {@link Ext.data.Types} class.
    
     * 
    Developers may create their own application-specific data types by defining new members of the
     * {@link Ext.data.Types} class.
    
     */
    /**
     * @cfg {Function} convert
     * (Optional) A function which converts the value provided by the Reader into an object that will be stored
     * in the Record. It is passed the following parameters:
      
     * 
    • v : Mixed
      The data value as read by the Reader, if undefined will use
     * the configured {@link Ext.data.Field#defaultValue defaultValue}.
      • 
     * 
    • rec : Mixed
      The data object containing the row as read by the Reader.
     * Depending on the Reader type, this could be an Array ({@link Ext.data.ArrayReader ArrayReader}), an object
     *  ({@link Ext.data.JsonReader JsonReader}), or an XML element ({@link Ext.data.XMLReader XMLReader}).
      • 
     * 
    
     * 
    
// example of convert function
function fullName(v, record){
    return record.name.last + ', ' + record.name.first;
}

function location(v, record){
    return !record.city ? '' : (record.city + ', ' + record.state);
}

var Dude = Ext.data.Record.create([
    {name: 'fullname',  convert: fullName},
    {name: 'firstname', mapping: 'name.first'},
    {name: 'lastname',  mapping: 'name.last'},
    {name: 'city', defaultValue: 'homeless'},
    'state',
    {name: 'location',  convert: location}
]);

// create the data store
var store = new Ext.data.Store({
    reader: new Ext.data.JsonReader(
        {
            idProperty: 'key',
            root: 'daRoot',
            totalProperty: 'total'
        },
        Dude  // recordType
    )
});

var myData = [
    { key: 1,
      name: { first: 'Fat',    last:  'Albert' }
      // notice no city, state provided in data object
    },
    { key: 2,
      name: { first: 'Barney', last:  'Rubble' },
      city: 'Bedrock', state: 'Stoneridge'
    },
    { key: 3,
      name: { first: 'Cliff',  last:  'Claven' },
      city: 'Boston',  state: 'MA'
    }
];
     * 
    
     */
    /**
     * @cfg {String} dateFormat
     * 
    (Optional) Used when converting received data into a Date when the {@link #type} is specified as "date".
    
     * 
    A format string for the {@link Date#parseDate Date.parseDate} function, or "timestamp" if the
     * value provided by the Reader is a UNIX timestamp, or "time" if the value provided by the Reader is a
     * javascript millisecond timestamp. See {@link Date}
    
     */
    dateFormat: null,
    
    /**
     * @cfg {Boolean} useNull
     * 
    (Optional) Use when converting received data into a Number type (either int or float). If the value cannot be parsed,
     * null will be used if useNull is true, otherwise the value will be 0. Defaults to false
     */
    useNull: false,
    
    /**
     * @cfg {Mixed} defaultValue
     * (Optional) The default value used when a Record is being created by a {@link Ext.data.Reader Reader}
     * when the item referenced by the {@link Ext.data.Field#mapping mapping} does not exist in the data
     * object (i.e. undefined). (defaults to "")
     */
    defaultValue: "",
    /**
     * @cfg {String/Number} mapping
     * 
    (Optional) A path expression for use by the {@link Ext.data.DataReader} implementation
     * that is creating the {@link Ext.data.Record Record} to extract the Field value from the data object.
     * If the path expression is the same as the field name, the mapping may be omitted.
    
     * 
    The form of the mapping expression depends on the Reader being used.
    
     * 
      
     * 
    • {@link Ext.data.JsonReader}
      The mapping is a string containing the javascript
     * expression to reference the data from an element of the data item's {@link Ext.data.JsonReader#root root} Array. Defaults to the field name.
      • 
     * 
    • {@link Ext.data.XmlReader}
      The mapping is an {@link Ext.DomQuery} path to the data
     * item relative to the DOM element that represents the {@link Ext.data.XmlReader#record record}. Defaults to the field name.
      • 
     * 
    • {@link Ext.data.ArrayReader}
      The mapping is a number indicating the Array index
     * of the field's value. Defaults to the field specification's Array position.
      • 
     * 
    
     * 
    If a more complex value extraction strategy is required, then configure the Field with a {@link #convert}
     * function. This is passed the whole row object, and may interrogate it in whatever way is necessary in order to
     * return the desired data.
    
     */
    mapping: null,
    /**
     * @cfg {Function} sortType
     * (Optional) A function which converts a Field's value to a comparable value in order to ensure
     * correct sort ordering. Predefined functions are provided in {@link Ext.data.SortTypes}. A custom
     * sort example:
    
// current sort     after sort we want
// +-+------+          +-+------+
// |1|First |          |1|First |
// |2|Last  |          |3|Second|
// |3|Second|          |2|Last  |
// +-+------+          +-+------+

sortType: function(value) {
   switch (value.toLowerCase()) // native toLowerCase():
   {
      case 'first': return 1;
      case 'second': return 2;
      default: return 3;
   }
}
     * 
    
     */
    sortType : null,
    /**
     * @cfg {String} sortDir
     * (Optional) Initial direction to sort ("ASC" or  "DESC").  Defaults to
     * "ASC".
     */
    sortDir : "ASC",
    /**
     * @cfg {Boolean} allowBlank
     * (Optional) Used for validating a {@link Ext.data.Record record}, defaults to true.
     * An empty value here will cause {@link Ext.data.Record}.{@link Ext.data.Record#isValid isValid}
     * to evaluate to false.
     */
    allowBlank : true
});
/**
 * @class Ext.data.DataReader
 * Abstract base class for reading structured data from a data source and converting
 * it into an object containing {@link Ext.data.Record} objects and metadata for use
 * by an {@link Ext.data.Store}.  This class is intended to be extended and should not
 * be created directly. For existing implementations, see {@link Ext.data.ArrayReader},
 * {@link Ext.data.JsonReader} and {@link Ext.data.XmlReader}.
 * @constructor Create a new DataReader
 * @param {Object} meta Metadata configuration options (implementation-specific).
 * @param {Array/Object} recordType
 * 
    Either an Array of {@link Ext.data.Field Field} definition objects (which
 * will be passed to {@link Ext.data.Record#create}, or a {@link Ext.data.Record Record}
 * constructor created using {@link Ext.data.Record#create}.
    
 */
Ext.data.DataReader = function(meta, recordType){
    /**
     * This DataReader's configured metadata as passed to the constructor.
     * @type Mixed
     * @property meta
     */
    this.meta = meta;
    /**
     * @cfg {Array/Object} fields
     * 
    Either an Array of {@link Ext.data.Field Field} definition objects (which
     * will be passed to {@link Ext.data.Record#create}, or a {@link Ext.data.Record Record}
     * constructor created from {@link Ext.data.Record#create}.
    
     */
    this.recordType = Ext.isArray(recordType) ?
        Ext.data.Record.create(recordType) : recordType;

    // if recordType defined make sure extraction functions are defined
    if (this.recordType){
        this.buildExtractors();
    }
};

Ext.data.DataReader.prototype = {
    /**
     * @cfg {String} messageProperty [undefined] Optional name of a property within a server-response that represents a user-feedback message.
     */
    /**
     * Abstract method created in extension's buildExtractors impl.
     */
    getTotal: Ext.emptyFn,
    /**
     * Abstract method created in extension's buildExtractors impl.
     */
    getRoot: Ext.emptyFn,
    /**
     * Abstract method created in extension's buildExtractors impl.
     */
    getMessage: Ext.emptyFn,
    /**
     * Abstract method created in extension's buildExtractors impl.
     */
    getSuccess: Ext.emptyFn,
    /**
     * Abstract method created in extension's buildExtractors impl.
     */
    getId: Ext.emptyFn,
    /**
     * Abstract method, overridden in DataReader extensions such as {@link Ext.data.JsonReader} and {@link Ext.data.XmlReader}
     */
    buildExtractors : Ext.emptyFn,
    /**
     * Abstract method overridden in DataReader extensions such as {@link Ext.data.JsonReader} and {@link Ext.data.XmlReader}
     */
    extractValues : Ext.emptyFn,

    /**
     * Used for un-phantoming a record after a successful database insert.  Sets the records pk along with new data from server.
     * You must return at least the database pk using the idProperty defined in your DataReader configuration.  The incoming
     * data from server will be merged with the data in the local record.
     * In addition, you must return record-data from the server in the same order received.
     * Will perform a commit as well, un-marking dirty-fields.  Store's "update" event will be suppressed.
     * @param {Record/Record[]} record The phantom record to be realized.
     * @param {Object/Object[]} data The new record data to apply.  Must include the primary-key from database defined in idProperty field.
     */
    realize: function(rs, data){
        if (Ext.isArray(rs)) {
            for (var i = rs.length - 1; i >= 0; i--) {
                // recurse
                if (Ext.isArray(data)) {
                    this.realize(rs.splice(i,1).shift(), data.splice(i,1).shift());
                }
                else {
                    // weird...rs is an array but data isn't??  recurse but just send in the whole invalid data object.
                    // the else clause below will detect !this.isData and throw exception.
                    this.realize(rs.splice(i,1).shift(), data);
                }
            }
        }
        else {
            // If rs is NOT an array but data IS, see if data contains just 1 record.  If so extract it and carry on.
            if (Ext.isArray(data) && data.length == 1) {
                data = data.shift();
            }
            if (!this.isData(data)) {
                // TODO: Let exception-handler choose to commit or not rather than blindly rs.commit() here.
                //rs.commit();
                throw new Ext.data.DataReader.Error('realize', rs);
            }
            rs.phantom = false; // <-- That's what it's all about
            rs._phid = rs.id;  // <-- copy phantom-id -> _phid, so we can remap in Store#onCreateRecords
            rs.id = this.getId(data);
            rs.data = data;

            rs.commit();
            rs.store.reMap(rs);
        }
    },

    /**
     * Used for updating a non-phantom or "real" record's data with fresh data from server after remote-save.
     * If returning data from multiple-records after a batch-update, you must return record-data from the server in
     * the same order received.  Will perform a commit as well, un-marking dirty-fields.  Store's "update" event will be
     * suppressed as the record receives fresh new data-hash
     * @param {Record/Record[]} rs
     * @param {Object/Object[]} data
     */
    update : function(rs, data) {
        if (Ext.isArray(rs)) {
            for (var i=rs.length-1; i >= 0; i--) {
                if (Ext.isArray(data)) {
                    this.update(rs.splice(i,1).shift(), data.splice(i,1).shift());
                }
                else {
                    // weird...rs is an array but data isn't??  recurse but just send in the whole data object.
                    // the else clause below will detect !this.isData and throw exception.
                    this.update(rs.splice(i,1).shift(), data);
                }
            }
        }
        else {
            // If rs is NOT an array but data IS, see if data contains just 1 record.  If so extract it and carry on.
            if (Ext.isArray(data) && data.length == 1) {
                data = data.shift();
            }
            if (this.isData(data)) {
                rs.data = Ext.apply(rs.data, data);
            }
            rs.commit();
        }
    },

    /**
     * returns extracted, type-cast rows of data.  Iterates to call #extractValues for each row
     * @param {Object[]/Object} data-root from server response
     * @param {Boolean} returnRecords [false] Set true to return instances of Ext.data.Record
     * @private
     */
    extractData : function(root, returnRecords) {
        // A bit ugly this, too bad the Record's raw data couldn't be saved in a common property named "raw" or something.
        var rawName = (this instanceof Ext.data.JsonReader) ? 'json' : 'node';

        var rs = [];

        // Had to add Check for XmlReader, #isData returns true if root is an Xml-object.  Want to check in order to re-factor
        // #extractData into DataReader base, since the implementations are almost identical for JsonReader, XmlReader
        if (this.isData(root) && !(this instanceof Ext.data.XmlReader)) {
            root = [root];
        }
        var f       = this.recordType.prototype.fields,
            fi      = f.items,
            fl      = f.length,
            rs      = [];
        if (returnRecords === true) {
            var Record = this.recordType;
            for (var i = 0; i < root.length; i++) {
                var n = root[i];
                var record = new Record(this.extractValues(n, fi, fl), this.getId(n));
                record[rawName] = n;    // <-- There's implementation of ugly bit, setting the raw record-data.
                rs.push(record);
            }
        }
        else {
            for (var i = 0; i < root.length; i++) {
                var data = this.extractValues(root[i], fi, fl);
                data[this.meta.idProperty] = this.getId(root[i]);
                rs.push(data);
            }
        }
        return rs;
    },

    /**
     * Returns true if the supplied data-hash looks and quacks like data.  Checks to see if it has a key
     * corresponding to idProperty defined in your DataReader config containing non-empty pk.
     * @param {Object} data
     * @return {Boolean}
     */
    isData : function(data) {
        return (data && Ext.isObject(data) && !Ext.isEmpty(this.getId(data))) ? true : false;
    },

    // private function a store will createSequence upon
    onMetaChange : function(meta){
        delete this.ef;
        this.meta = meta;
        this.recordType = Ext.data.Record.create(meta.fields);
        this.buildExtractors();
    }
};

/**
 * @class Ext.data.DataReader.Error
 * @extends Ext.Error
 * General error class for Ext.data.DataReader
 */
Ext.data.DataReader.Error = Ext.extend(Ext.Error, {
    constructor : function(message, arg) {
        this.arg = arg;
        Ext.Error.call(this, message);
    },
    name: 'Ext.data.DataReader'
});
Ext.apply(Ext.data.DataReader.Error.prototype, {
    lang : {
        'update': "#update received invalid data from server.  Please see docs for DataReader#update and review your DataReader configuration.",
        'realize': "#realize was called with invalid remote-data.  Please see the docs for DataReader#realize and review your DataReader configuration.",
        'invalid-response': "#readResponse received an invalid response from the server."
    }
});
/**
 * @class Ext.data.DataWriter
 * 
    Ext.data.DataWriter facilitates create, update, and destroy actions between
 * an Ext.data.Store and a server-side framework. A Writer enabled Store will
 * automatically manage the Ajax requests to perform CRUD actions on a Store.
    
 * 
    Ext.data.DataWriter is an abstract base class which is intended to be extended
 * and should not be created directly. For existing implementations, see
 * {@link Ext.data.JsonWriter}.
    
 * 
    Creating a writer is simple:
    
 * 
    
var writer = new Ext.data.JsonWriter({
    encode: false   // <--- false causes data to be printed to jsonData config-property of Ext.Ajax#reqeust
});
 * 
    
 * * 
    Same old JsonReader as Ext-2.x:
    
 * 
    
var reader = new Ext.data.JsonReader({idProperty: 'id'}, [{name: 'first'}, {name: 'last'}, {name: 'email'}]);
 * 
    
 *
 * 
    The proxy for a writer enabled store can be configured with a simple url:
    
 * 
    
// Create a standard HttpProxy instance.
var proxy = new Ext.data.HttpProxy({
    url: 'app.php/users'    // <--- Supports "provides"-type urls, such as '/users.json', '/products.xml' (Hello Rails/Merb)
});
 * 
    
 * 
    For finer grained control, the proxy may also be configured with an API:
    
 * 
    
// Maximum flexibility with the API-configuration
var proxy = new Ext.data.HttpProxy({
    api: {
        read    : 'app.php/users/read',
        create  : 'app.php/users/create',
        update  : 'app.php/users/update',
        destroy : {  // <--- Supports object-syntax as well
            url: 'app.php/users/destroy',
            method: "DELETE"
        }
    }
});
 * 
    
 * 
    Pulling it all together into a Writer-enabled Store:
    
 * 
    
var store = new Ext.data.Store({
    proxy: proxy,
    reader: reader,
    writer: writer,
    autoLoad: true,
    autoSave: true  // -- Cell-level updates.
});
 * 
    
 * 
    Initiating write-actions automatically, using the existing Ext2.0 Store/Record API:
    
 * 
    
var rec = store.getAt(0);
rec.set('email', 'foo@bar.com');  // <--- Immediately initiates an UPDATE action through configured proxy.

store.remove(rec);  // <---- Immediately initiates a DESTROY action through configured proxy.
 * 
    
 * 
    For record/batch updates, use the Store-configuration {@link Ext.data.Store#autoSave autoSave:false}
    
 * 
    
var store = new Ext.data.Store({
    proxy: proxy,
    reader: reader,
    writer: writer,
    autoLoad: true,
    autoSave: false  // -- disable cell-updates
});

var urec = store.getAt(0);
urec.set('email', 'foo@bar.com');

var drec = store.getAt(1);
store.remove(drec);

// Push the button!
store.save();
 * 
    
 * @constructor Create a new DataWriter
 * @param {Object} meta Metadata configuration options (implementation-specific)
 * @param {Object} recordType Either an Array of field definition objects as specified
 * in {@link Ext.data.Record#create}, or an {@link Ext.data.Record} object created
 * using {@link Ext.data.Record#create}.
 */
Ext.data.DataWriter = function(config){
    Ext.apply(this, config);
};
Ext.data.DataWriter.prototype = {

    /**
     * @cfg {Boolean} writeAllFields
     * false by default.  Set true to have DataWriter return ALL fields of a modified
     * record -- not just those that changed.
     * false to have DataWriter only request modified fields from a record.
     */
    writeAllFields : false,
    /**
     * @cfg {Boolean} listful
     * false by default.  Set true to have the DataWriter always write HTTP params as a list,
     * even when acting upon a single record.
     */
    listful : false,    // <-- listful is actually not used internally here in DataWriter.  @see Ext.data.Store#execute.

    /**
     * Compiles a Store recordset into a data-format defined by an extension such as {@link Ext.data.JsonWriter} or {@link Ext.data.XmlWriter} in preparation for a {@link Ext.data.Api#actions server-write action}.  The first two params are similar similar in nature to {@link Ext#apply},
     * Where the first parameter is the receiver of paramaters and the second, baseParams, the source.
     * @param {Object} params The request-params receiver.
     * @param {Object} baseParams as defined by {@link Ext.data.Store#baseParams}.  The baseParms must be encoded by the extending class, eg: {@link Ext.data.JsonWriter}, {@link Ext.data.XmlWriter}.
     * @param {String} action [{@link Ext.data.Api#actions create|update|destroy}]
     * @param {Record/Record[]} rs The recordset to write, the subject(s) of the write action.
     */
    apply : function(params, baseParams, action, rs) {
        var data    = [],
        renderer    = action + 'Record';
        // TODO implement @cfg listful here
        if (Ext.isArray(rs)) {
            Ext.each(rs, function(rec){
                data.push(this[renderer](rec));
            }, this);
        }
        else if (rs instanceof Ext.data.Record) {
            data = this[renderer](rs);
        }
        this.render(params, baseParams, data);
    },

    /**
     * abstract method meant to be overridden by all DataWriter extensions.  It's the extension's job to apply the "data" to the "params".
     * The data-object provided to render is populated with data according to the meta-info defined in the user's DataReader config,
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Record[]} rs Store recordset
     * @param {Object} params Http params to be sent to server.
     * @param {Object} data object populated according to DataReader meta-data.
     */
    render : Ext.emptyFn,

    /**
     * @cfg {Function} updateRecord Abstract method that should be implemented in all subclasses
     * (e.g.: {@link Ext.data.JsonWriter#updateRecord JsonWriter.updateRecord}
     */
    updateRecord : Ext.emptyFn,

    /**
     * @cfg {Function} createRecord Abstract method that should be implemented in all subclasses
     * (e.g.: {@link Ext.data.JsonWriter#createRecord JsonWriter.createRecord})
     */
    createRecord : Ext.emptyFn,

    /**
     * @cfg {Function} destroyRecord Abstract method that should be implemented in all subclasses
     * (e.g.: {@link Ext.data.JsonWriter#destroyRecord JsonWriter.destroyRecord})
     */
    destroyRecord : Ext.emptyFn,

    /**
     * Converts a Record to a hash, taking into account the state of the Ext.data.Record along with configuration properties
     * related to its rendering, such as {@link #writeAllFields}, {@link Ext.data.Record#phantom phantom}, {@link Ext.data.Record#getChanges getChanges} and
     * {@link Ext.data.DataReader#idProperty idProperty}
     * @param {Ext.data.Record} rec The Record from which to create a hash.
     * @param {Object} config NOT YET IMPLEMENTED.  Will implement an exlude/only configuration for fine-control over which fields do/don't get rendered.
     * @return {Object}
     * @protected
     * TODO Implement excludes/only configuration with 2nd param?
     */
    toHash : function(rec, config) {
        var map = rec.fields.map,
            data = {},
            raw = (this.writeAllFields === false && rec.phantom === false) ? rec.getChanges() : rec.data,
            m;
        Ext.iterate(raw, function(prop, value){
            if((m = map[prop])){
                data[m.mapping ? m.mapping : m.name] = value;
            }
        });
        // we don't want to write Ext auto-generated id to hash.  Careful not to remove it on Models not having auto-increment pk though.
        // We can tell its not auto-increment if the user defined a DataReader field for it *and* that field's value is non-empty.
        // we could also do a RegExp here for the Ext.data.Record AUTO_ID prefix.
        if (rec.phantom) {
            if (rec.fields.containsKey(this.meta.idProperty) && Ext.isEmpty(rec.data[this.meta.idProperty])) {
                delete data[this.meta.idProperty];
            }
        } else {
            data[this.meta.idProperty] = rec.id;
        }
        return data;
    },

    /**
     * Converts a {@link Ext.data.DataWriter#toHash Hashed} {@link Ext.data.Record} to fields-array array suitable
     * for encoding to xml via XTemplate, eg:

    <tpl for="."><{name}>{value}</{name}</tpl>
    
     * eg, non-phantom:

    {id: 1, first: 'foo', last: 'bar'} --> [{name: 'id', value: 1}, {name: 'first', value: 'foo'}, {name: 'last', value: 'bar'}]
    
     * {@link Ext.data.Record#phantom Phantom} records will have had their idProperty omitted in {@link #toHash} if determined to be auto-generated.
     * Non AUTOINCREMENT pks should have been protected.
     * @param {Hash} data Hashed by Ext.data.DataWriter#toHash
     * @return {Object[]} Array of attribute-objects.
     * @protected
     */
    toArray : function(data) {
        var fields = [];
        Ext.iterate(data, function(k, v) {fields.push({name: k, value: v});},this);
        return fields;
    }
};/**
 * @class Ext.data.DataProxy
 * @extends Ext.util.Observable
 * 
    Abstract base class for implementations which provide retrieval of unformatted data objects.
 * This class is intended to be extended and should not be created directly. For existing implementations,
 * see {@link Ext.data.DirectProxy}, {@link Ext.data.HttpProxy}, {@link Ext.data.ScriptTagProxy} and
 * {@link Ext.data.MemoryProxy}.
    
 * 
    DataProxy implementations are usually used in conjunction with an implementation of {@link Ext.data.DataReader}
 * (of the appropriate type which knows how to parse the data object) to provide a block of
 * {@link Ext.data.Records} to an {@link Ext.data.Store}.
    
 * 
    The parameter to a DataProxy constructor may be an {@link Ext.data.Connection} or can also be the
 * config object to an {@link Ext.data.Connection}.
    
 * 
    Custom implementations must implement either the doRequest method (preferred) or the
 * load method (deprecated). See
 * {@link Ext.data.HttpProxy}.{@link Ext.data.HttpProxy#doRequest doRequest} or
 * {@link Ext.data.HttpProxy}.{@link Ext.data.HttpProxy#load load} for additional details.
    
 * 
    Example 1
    
 * 
    
proxy: new Ext.data.ScriptTagProxy({
    {@link Ext.data.Connection#url url}: 'http://extjs.com/forum/topics-remote.php'
}),
 * 
    
 * 
    Example 2
    
 * 
    
proxy : new Ext.data.HttpProxy({
    {@link Ext.data.Connection#method method}: 'GET',
    {@link Ext.data.HttpProxy#prettyUrls prettyUrls}: false,
    {@link Ext.data.Connection#url url}: 'local/default.php', // see options parameter for {@link Ext.Ajax#request}
    {@link #api}: {
        // all actions except the following will use above url
        create  : 'local/new.php',
        update  : 'local/update.php'
    }
}),
 * 
    
 * 
    And new in Ext version 3, attach centralized event-listeners upon the DataProxy class itself!  This is a great place
 * to implement a messaging system to centralize your application's user-feedback and error-handling.
    
 * 
    
// Listen to all "beforewrite" event fired by all proxies.
Ext.data.DataProxy.on('beforewrite', function(proxy, action) {
    console.log('beforewrite: ', action);
});

// Listen to "write" event fired by all proxies
Ext.data.DataProxy.on('write', function(proxy, action, data, res, rs) {
    console.info('write: ', action);
});

// Listen to "exception" event fired by all proxies
Ext.data.DataProxy.on('exception', function(proxy, type, action, exception) {
    console.error(type + action + ' exception);
});
 * 
    
 * Note: These three events are all fired with the signature of the corresponding DataProxy instance event {@link #beforewrite beforewrite}, {@link #write write} and {@link #exception exception}.
 */
Ext.data.DataProxy = function(conn){
    // make sure we have a config object here to support ux proxies.
    // All proxies should now send config into superclass constructor.
    conn = conn || {};

    // This line caused a bug when people use custom Connection object having its own request method.
    // http://extjs.com/forum/showthread.php?t=67194.  Have to set DataProxy config
    //Ext.applyIf(this, conn);

    this.api     = conn.api;
    this.url     = conn.url;
    this.restful = conn.restful;
    this.listeners = conn.listeners;

    // deprecated
    this.prettyUrls = conn.prettyUrls;

    /**
     * @cfg {Object} api
     * Specific urls to call on CRUD action methods "read", "create", "update" and "destroy".
     * Defaults to:
    
api: {
    read    : undefined,
    create  : undefined,
    update  : undefined,
    destroy : undefined
}
     * 
    
     * 
    The url is built based upon the action being executed [load|create|save|destroy]
     * using the commensurate {@link #api} property, or if undefined default to the
     * configured {@link Ext.data.Store}.{@link Ext.data.Store#url url}.

    
     * 
    For example:
    
     * 
    
api: {
    load :    '/controller/load',
    create :  '/controller/new',  // Server MUST return idProperty of new record
    save :    '/controller/update',
    destroy : '/controller/destroy_action'
}

// Alternatively, one can use the object-form to specify each API-action
api: {
    load: {url: 'read.php', method: 'GET'},
    create: 'create.php',
    destroy: 'destroy.php',
    save: 'update.php'
}
     * 
    
     * 
    If the specific URL for a given CRUD action is undefined, the CRUD action request
     * will be directed to the configured {@link Ext.data.Connection#url url}.
    
     * 
    Note: To modify the URL for an action dynamically the appropriate API
     * property should be modified before the action is requested using the corresponding before
     * action event.  For example to modify the URL associated with the load action:
     * 
    
// modify the url for the action
myStore.on({
    beforeload: {
        fn: function (store, options) {
            // use {@link Ext.data.HttpProxy#setUrl setUrl} to change the URL for *just* this request.
            store.proxy.setUrl('changed1.php');

            // set optional second parameter to true to make this URL change
            // permanent, applying this URL for all subsequent requests.
            store.proxy.setUrl('changed1.php', true);

            // Altering the proxy API should be done using the public
            // method {@link Ext.data.DataProxy#setApi setApi}.
            store.proxy.setApi('read', 'changed2.php');

            // Or set the entire API with a config-object.
            // When using the config-object option, you must redefine the entire
            // API -- not just a specific action of it.
            store.proxy.setApi({
                read    : 'changed_read.php',
                create  : 'changed_create.php',
                update  : 'changed_update.php',
                destroy : 'changed_destroy.php'
            });
        }
    }
});
     * 
    
     * 
    
     */

    this.addEvents(
        /**
         * @event exception
         * 
    Fires if an exception occurs in the Proxy during a remote request. This event is relayed
         * through a corresponding {@link Ext.data.Store}.{@link Ext.data.Store#exception exception},
         * so any Store instance may observe this event.
    
         * 
    In addition to being fired through the DataProxy instance that raised the event, this event is also fired
         * through the Ext.data.DataProxy class to allow for centralized processing of exception events from all
         * DataProxies by attaching a listener to the Ext.data.DataProxy class itself.
    
         * 
    This event can be fired for one of two reasons:
    
         * 
      
         * 
    • remote-request failed : 
      
         * The server did not return status === 200.
         * 
      • 
         * 
    • remote-request succeeded : 
      
         * The remote-request succeeded but the reader could not read the response.
         * This means the server returned data, but the configured Reader threw an
         * error while reading the response.  In this case, this event will be
         * raised and the caught error will be passed along into this event.
         * 
      • 
         * 
    
         * 
    This event fires with two different contexts based upon the 2nd
         * parameter type [remote|response].  The first four parameters
         * are identical between the two contexts -- only the final two parameters
         * differ.
    
         * @param {DataProxy} this The proxy that sent the request
         * @param {String} type
         * 
    The value of this parameter will be either 'response' or 'remote'.
    
         * 
      
         * 
    • 'response' : 
      
         * 
      An invalid response from the server was returned: either 404,
         * 500 or the response meta-data does not match that defined in the DataReader
         * (e.g.: root, idProperty, successProperty).
      
         * 
      • 
         * 
    • 'remote' : 
      
         * 
      A valid response was returned from the server having
         * successProperty === false.  This response might contain an error-message
         * sent from the server.  For example, the user may have failed
         * authentication/authorization or a database validation error occurred.
      
         * 
      • 
         * 
    
         * @param {String} action Name of the action (see {@link Ext.data.Api#actions}.
         * @param {Object} options The options for the action that were specified in the {@link #request}.
         * @param {Object} response
         * 
    The value of this parameter depends on the value of the type parameter:
    
         * 
      
         * 
    • 'response' : 
      
         * 
      The raw browser response object (e.g.: XMLHttpRequest)
      
         * 
      • 
         * 
    • 'remote' : 
      
         * 
      The decoded response object sent from the server.
      
         * 
      • 
         * 
    
         * @param {Mixed} arg
         * 
    The type and value of this parameter depends on the value of the type parameter:
    
         * 
      
         * 
    • 'response' : Error
      
         * 
      The JavaScript Error object caught if the configured Reader could not read the data.
         * If the remote request returns success===false, this parameter will be null.
      
         * 
      • 
         * 
    • 'remote' : Record/Record[]
      
         * 
      This parameter will only exist if the action was a write action
         * (Ext.data.Api.actions.create|update|destroy).
      
         * 
      • 
         * 
    
         */
        'exception',
        /**
         * @event beforeload
         * Fires before a request to retrieve a data object.
         * @param {DataProxy} this The proxy for the request
         * @param {Object} params The params object passed to the {@link #request} function
         */
        'beforeload',
        /**
         * @event load
         * Fires before the load method's callback is called.
         * @param {DataProxy} this The proxy for the request
         * @param {Object} o The request transaction object
         * @param {Object} options The callback's options property as passed to the {@link #request} function
         */
        'load',
        /**
         * @event loadexception
         * 
    This event is deprecated.  The signature of the loadexception event
         * varies depending on the proxy, use the catch-all {@link #exception} event instead.
         * This event will fire in addition to the {@link #exception} event.
    
         * @param {misc} misc See {@link #exception}.
         * @deprecated
         */
        'loadexception',
        /**
         * @event beforewrite
         * 
    Fires before a request is generated for one of the actions Ext.data.Api.actions.create|update|destroy
    
         * 
    In addition to being fired through the DataProxy instance that raised the event, this event is also fired
         * through the Ext.data.DataProxy class to allow for centralized processing of beforewrite events from all
         * DataProxies by attaching a listener to the Ext.data.DataProxy class itself.
    
         * @param {DataProxy} this The proxy for the request
         * @param {String} action [Ext.data.Api.actions.create|update|destroy]
         * @param {Record/Record[]} rs The Record(s) to create|update|destroy.
         * @param {Object} params The request params object.  Edit params to add parameters to the request.
         */
        'beforewrite',
        /**
         * @event write
         * 
    Fires before the request-callback is called
    
         * 
    In addition to being fired through the DataProxy instance that raised the event, this event is also fired
         * through the Ext.data.DataProxy class to allow for centralized processing of write events from all
         * DataProxies by attaching a listener to the Ext.data.DataProxy class itself.
    
         * @param {DataProxy} this The proxy that sent the request
         * @param {String} action [Ext.data.Api.actions.create|upate|destroy]
         * @param {Object} data The data object extracted from the server-response
         * @param {Object} response The decoded response from server
         * @param {Record/Record[]} rs The Record(s) from Store
         * @param {Object} options The callback's options property as passed to the {@link #request} function
         */
        'write'
    );
    Ext.data.DataProxy.superclass.constructor.call(this);

    // Prepare the proxy api.  Ensures all API-actions are defined with the Object-form.
    try {
        Ext.data.Api.prepare(this);
    } catch (e) {
        if (e instanceof Ext.data.Api.Error) {
            e.toConsole();
        }
    }
    // relay each proxy's events onto Ext.data.DataProxy class for centralized Proxy-listening
    Ext.data.DataProxy.relayEvents(this, ['beforewrite', 'write', 'exception']);
};

Ext.extend(Ext.data.DataProxy, Ext.util.Observable, {
    /**
     * @cfg {Boolean} restful
     * 
    Defaults to false.  Set to true to operate in a RESTful manner.
    
     * 
     Note: this parameter will automatically be set to true if the
     * {@link Ext.data.Store} it is plugged into is set to restful: true. If the
     * Store is RESTful, there is no need to set this option on the proxy.
    
     * 
    RESTful implementations enable the serverside framework to automatically route
     * actions sent to one url based upon the HTTP method, for example:
     * 
    
store: new Ext.data.Store({
    restful: true,
    proxy: new Ext.data.HttpProxy({url:'/users'}); // all requests sent to /users
    ...
)}
     * 
    
     * If there is no {@link #api} specified in the configuration of the proxy,
     * all requests will be marshalled to a single RESTful url (/users) so the serverside
     * framework can inspect the HTTP Method and act accordingly:
     * 
    Method   url        action
POST     /users     create
GET      /users     read
PUT      /users/23  update
DESTROY  /users/23  delete
     * 
    
     * 
    If set to true, a {@link Ext.data.Record#phantom non-phantom} record's
     * {@link Ext.data.Record#id id} will be appended to the url. Some MVC (e.g., Ruby on Rails,
     * Merb and Django) support segment based urls where the segments in the URL follow the
     * Model-View-Controller approach:
    
     * someSite.com/controller/action/id
     * 
    
     * Where the segments in the url are typically:
      
     * 
    • The first segment : represents the controller class that should be invoked.
      • 
     * 
    • The second segment : represents the class function, or method, that should be called.
      • 
     * 
    • The third segment : represents the ID (a variable typically passed to the method).
      • 
     * 
    
     * 
    Refer to {@link Ext.data.DataProxy#api} for additional information.
    
     */
    restful: false,

    /**
     * 
    Redefines the Proxy's API or a single action of an API. Can be called with two method signatures.
    
     * 
    If called with an object as the only parameter, the object should redefine the entire API, e.g.:
    
proxy.setApi({
    read    : '/users/read',
    create  : '/users/create',
    update  : '/users/update',
    destroy : '/users/destroy'
});

    
     * 
    If called with two parameters, the first parameter should be a string specifying the API action to
     * redefine and the second parameter should be the URL (or function if using DirectProxy) to call for that action, e.g.:
    
proxy.setApi(Ext.data.Api.actions.read, '/users/new_load_url');

    
     * @param {String/Object} api An API specification object, or the name of an action.
     * @param {String/Function} url The URL (or function if using DirectProxy) to call for the action.
     */
    setApi : function() {
        if (arguments.length == 1) {
            var valid = Ext.data.Api.isValid(arguments[0]);
            if (valid === true) {
                this.api = arguments[0];
            }
            else {
                throw new Ext.data.Api.Error('invalid', valid);
            }
        }
        else if (arguments.length == 2) {
            if (!Ext.data.Api.isAction(arguments[0])) {
                throw new Ext.data.Api.Error('invalid', arguments[0]);
            }
            this.api[arguments[0]] = arguments[1];
        }
        Ext.data.Api.prepare(this);
    },

    /**
     * Returns true if the specified action is defined as a unique action in the api-config.
     * request.  If all API-actions are routed to unique urls, the xaction parameter is unecessary.  However, if no api is defined
     * and all Proxy actions are routed to DataProxy#url, the server-side will require the xaction parameter to perform a switch to
     * the corresponding code for CRUD action.
     * @param {String} action CREATE READ UPDATE or DESTROY
     * @return {Boolean}
     */
    isApiAction : function(action) {
        return (this.api[action]) ? true : false;
    },

    /**
     * All proxy actions are executed through this method.  Automatically fires the "before" + action event
     * @param {String} action Name of the action
     * @param {Ext.data.Record/Ext.data.Record[]/null} rs Will be null when action is 'load'
     * @param {Object} params
     * @param {Ext.data.DataReader} reader
     * @param {Function} callback
     * @param {Object} scope The scope (this reference) in which the callback function is executed. Defaults to the Proxy object.
     * @param {Object} options Any options specified for the action (e.g. see {@link Ext.data.Store#load}.
     */
    request : function(action, rs, params, reader, callback, scope, options) {
        if (!this.api[action] && !this.load) {
            throw new Ext.data.DataProxy.Error('action-undefined', action);
        }
        params = params || {};
        if ((action === Ext.data.Api.actions.read) ? this.fireEvent("beforeload", this, params) : this.fireEvent("beforewrite", this, action, rs, params) !== false) {
            this.doRequest.apply(this, arguments);
        }
        else {
            callback.call(scope || this, null, options, false);
        }
    },


    /**
     * Deprecated load method using old method signature. See {@doRequest} for preferred method.
     * @deprecated
     * @param {Object} params
     * @param {Object} reader
     * @param {Object} callback
     * @param {Object} scope
     * @param {Object} arg
     */
    load : null,

    /**
     * @cfg {Function} doRequest Abstract method that should be implemented in all subclasses.  Note: Should only be used by custom-proxy developers.
     * (e.g.: {@link Ext.data.HttpProxy#doRequest HttpProxy.doRequest},
     * {@link Ext.data.DirectProxy#doRequest DirectProxy.doRequest}).
     */
    doRequest : function(action, rs, params, reader, callback, scope, options) {
        // default implementation of doRequest for backwards compatibility with 2.0 proxies.
        // If we're executing here, the action is probably "load".
        // Call with the pre-3.0 method signature.
        this.load(params, reader, callback, scope, options);
    },

    /**
     * @cfg {Function} onRead Abstract method that should be implemented in all subclasses.  Note: Should only be used by custom-proxy developers.  Callback for read {@link Ext.data.Api#actions action}.
     * @param {String} action Action name as per {@link Ext.data.Api.actions#read}.
     * @param {Object} o The request transaction object
     * @param {Object} res The server response
     * @fires loadexception (deprecated)
     * @fires exception
     * @fires load
     * @protected
     */
    onRead : Ext.emptyFn,
    /**
     * @cfg {Function} onWrite Abstract method that should be implemented in all subclasses.  Note: Should only be used by custom-proxy developers.  Callback for create, update and destroy {@link Ext.data.Api#actions actions}.
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Object} trans The request transaction object
     * @param {Object} res The server response
     * @fires exception
     * @fires write
     * @protected
     */
    onWrite : Ext.emptyFn,
    /**
     * buildUrl
     * Sets the appropriate url based upon the action being executed.  If restful is true, and only a single record is being acted upon,
     * url will be built Rails-style, as in "/controller/action/32".  restful will aply iff the supplied record is an
     * instance of Ext.data.Record rather than an Array of them.
     * @param {String} action The api action being executed [read|create|update|destroy]
     * @param {Ext.data.Record/Ext.data.Record[]} record The record or Array of Records being acted upon.
     * @return {String} url
     * @private
     */
    buildUrl : function(action, record) {
        record = record || null;

        // conn.url gets nullified after each request.  If it's NOT null here, that means the user must have intervened with a call
        // to DataProxy#setUrl or DataProxy#setApi and changed it before the request was executed.  If that's the case, use conn.url,
        // otherwise, build the url from the api or this.url.
        var url = (this.conn && this.conn.url) ? this.conn.url : (this.api[action]) ? this.api[action].url : this.url;
        if (!url) {
            throw new Ext.data.Api.Error('invalid-url', action);
        }

        // look for urls having "provides" suffix used in some MVC frameworks like Rails/Merb and others.  The provides suffice informs
        // the server what data-format the client is dealing with and returns data in the same format (eg: application/json, application/xml, etc)
        // e.g.: /users.json, /users.xml, etc.
        // with restful routes, we need urls like:
        // PUT /users/1.json
        // DELETE /users/1.json
        var provides = null;
        var m = url.match(/(.*)(\.json|\.xml|\.html)$/);
        if (m) {
            provides = m[2];    // eg ".json"
            url      = m[1];    // eg: "/users"
        }
        // prettyUrls is deprectated in favor of restful-config
        if ((this.restful === true || this.prettyUrls === true) && record instanceof Ext.data.Record && !record.phantom) {
            url += '/' + record.id;
        }
        return (provides === null) ? url : url + provides;
    },

    /**
     * Destroys the proxy by purging any event listeners and cancelling any active requests.
     */
    destroy: function(){
        this.purgeListeners();
    }
});

// Apply the Observable prototype to the DataProxy class so that proxy instances can relay their
// events to the class.  Allows for centralized listening of all proxy instances upon the DataProxy class.
Ext.apply(Ext.data.DataProxy, Ext.util.Observable.prototype);
Ext.util.Observable.call(Ext.data.DataProxy);

/**
 * @class Ext.data.DataProxy.Error
 * @extends Ext.Error
 * DataProxy Error extension.
 * constructor
 * @param {String} message Message describing the error.
 * @param {Record/Record[]} arg
 */
Ext.data.DataProxy.Error = Ext.extend(Ext.Error, {
    constructor : function(message, arg) {
        this.arg = arg;
        Ext.Error.call(this, message);
    },
    name: 'Ext.data.DataProxy'
});
Ext.apply(Ext.data.DataProxy.Error.prototype, {
    lang: {
        'action-undefined': "DataProxy attempted to execute an API-action but found an undefined url / function.  Please review your Proxy url/api-configuration.",
        'api-invalid': 'Recieved an invalid API-configuration.  Please ensure your proxy API-configuration contains only the actions from Ext.data.Api.actions.'
    }
});


/**
 * @class Ext.data.Request
 * A simple Request class used internally to the data package to provide more generalized remote-requests
 * to a DataProxy.
 * TODO Not yet implemented.  Implement in Ext.data.Store#execute
 */
Ext.data.Request = function(params) {
    Ext.apply(this, params);
};
Ext.data.Request.prototype = {
    /**
     * @cfg {String} action
     */
    action : undefined,
    /**
     * @cfg {Ext.data.Record[]/Ext.data.Record} rs The Store recordset associated with the request.
     */
    rs : undefined,
    /**
     * @cfg {Object} params HTTP request params
     */
    params: undefined,
    /**
     * @cfg {Function} callback The function to call when request is complete
     */
    callback : Ext.emptyFn,
    /**
     * @cfg {Object} scope The scope of the callback funtion
     */
    scope : undefined,
    /**
     * @cfg {Ext.data.DataReader} reader The DataReader instance which will parse the received response
     */
    reader : undefined
};
/**
 * @class Ext.data.Response
 * A generic response class to normalize response-handling internally to the framework.
 */
Ext.data.Response = function(params) {
    Ext.apply(this, params);
};
Ext.data.Response.prototype = {
    /**
     * @cfg {String} action {@link Ext.data.Api#actions}
     */
    action: undefined,
    /**
     * @cfg {Boolean} success
     */
    success : undefined,
    /**
     * @cfg {String} message
     */
    message : undefined,
    /**
     * @cfg {Array/Object} data
     */
    data: undefined,
    /**
     * @cfg {Object} raw The raw response returned from server-code
     */
    raw: undefined,
    /**
     * @cfg {Ext.data.Record/Ext.data.Record[]} records related to the Request action
     */
    records: undefined
};
/**
 * @class Ext.data.ScriptTagProxy
 * @extends Ext.data.DataProxy
 * An implementation of Ext.data.DataProxy that reads a data object from a URL which may be in a domain
 * other than the originating domain of the running page.
    
 * 
    
 * Note that if you are retrieving data from a page that is in a domain that is NOT the same as the originating domain
 * of the running page, you must use this class, rather than HttpProxy.
    
 * 
    
 * The content passed back from a server resource requested by a ScriptTagProxy must be executable JavaScript
 * source code because it is used as the source inside a <script> tag.
    
 * 
    
 * In order for the browser to process the returned data, the server must wrap the data object
 * with a call to a callback function, the name of which is passed as a parameter by the ScriptTagProxy.
 * Below is a Java example for a servlet which returns data for either a ScriptTagProxy, or an HttpProxy
 * depending on whether the callback name was passed:
 * 
    
 * 
    
boolean scriptTag = false;
String cb = request.getParameter("callback");
if (cb != null) {
    scriptTag = true;
    response.setContentType("text/javascript");
} else {
    response.setContentType("application/x-json");
}
Writer out = response.getWriter();
if (scriptTag) {
    out.write(cb + "(");
}
out.print(dataBlock.toJsonString());
if (scriptTag) {
    out.write(");");
}

    
 * 
    Below is a PHP example to do the same thing:
    
$callback = $_REQUEST['callback'];

// Create the output object.
$output = array('a' => 'Apple', 'b' => 'Banana');

//start output
if ($callback) {
    header('Content-Type: text/javascript');
    echo $callback . '(' . json_encode($output) . ');';
} else {
    header('Content-Type: application/x-json');
    echo json_encode($output);
}

    
 * 
    Below is the ASP.Net code to do the same thing:
    
String jsonString = "{success: true}";
String cb = Request.Params.Get("callback");
String responseString = "";
if (!String.IsNullOrEmpty(cb)) {
    responseString = cb + "(" + jsonString + ")";
} else {
    responseString = jsonString;
}
Response.Write(responseString);

    
 *
 * @constructor
 * @param {Object} config A configuration object.
 */
Ext.data.ScriptTagProxy = function(config){
    Ext.apply(this, config);

    Ext.data.ScriptTagProxy.superclass.constructor.call(this, config);

    this.head = document.getElementsByTagName("head")[0];

    /**
     * @event loadexception
     * Deprecated in favor of 'exception' event.
     * Fires if an exception occurs in the Proxy during data loading.  This event can be fired for one of two reasons:
     * 
    • The load call timed out.  This means the load callback did not execute within the time limit
     * specified by {@link #timeout}.  In this case, this event will be raised and the
     * fourth parameter (read error) will be null.
      • 
     * 
    • The load succeeded but the reader could not read the response.  This means the server returned
     * data, but the configured Reader threw an error while reading the data.  In this case, this event will be
     * raised and the caught error will be passed along as the fourth parameter of this event.
    
     * Note that this event is also relayed through {@link Ext.data.Store}, so you can listen for it directly
     * on any Store instance.
     * @param {Object} this
     * @param {Object} options The loading options that were specified (see {@link #load} for details).  If the load
     * call timed out, this parameter will be null.
     * @param {Object} arg The callback's arg object passed to the {@link #load} function
     * @param {Error} e The JavaScript Error object caught if the configured Reader could not read the data.
     * If the remote request returns success: false, this parameter will be null.
     */
};

Ext.data.ScriptTagProxy.TRANS_ID = 1000;

Ext.extend(Ext.data.ScriptTagProxy, Ext.data.DataProxy, {
    /**
     * @cfg {String} url The URL from which to request the data object.
     */
    /**
     * @cfg {Number} timeout (optional) The number of milliseconds to wait for a response. Defaults to 30 seconds.
     */
    timeout : 30000,
    /**
     * @cfg {String} callbackParam (Optional) The name of the parameter to pass to the server which tells
     * the server the name of the callback function set up by the load call to process the returned data object.
     * Defaults to "callback".
    The server-side processing must read this parameter value, and generate
     * javascript output which calls this named function passing the data object as its only parameter.
     */
    callbackParam : "callback",
    /**
     *  @cfg {Boolean} nocache (optional) Defaults to true. Disable caching by adding a unique parameter
     * name to the request.
     */
    nocache : true,

    /**
     * HttpProxy implementation of DataProxy#doRequest
     * @param {String} action
     * @param {Ext.data.Record/Ext.data.Record[]} rs If action is read, rs will be null
     * @param {Object} params An object containing properties which are to be used as HTTP parameters
     * for the request to the remote server.
     * @param {Ext.data.DataReader} reader The Reader object which converts the data
     * object into a block of Ext.data.Records.
     * @param {Function} callback The function into which to pass the block of Ext.data.Records.
     * The function must be passed 
      
     * 
    • The Record block object
      • 
     * 
    • The "arg" argument from the load function
      • 
     * 
    • A boolean success indicator
      • 
     * 
    
     * @param {Object} scope The scope (this reference) in which the callback function is executed. Defaults to the browser window.
     * @param {Object} arg An optional argument which is passed to the callback as its second parameter.
     */
    doRequest : function(action, rs, params, reader, callback, scope, arg) {
        var p = Ext.urlEncode(Ext.apply(params, this.extraParams));

        var url = this.buildUrl(action, rs);
        if (!url) {
            throw new Ext.data.Api.Error('invalid-url', url);
        }
        url = Ext.urlAppend(url, p);

        if(this.nocache){
            url = Ext.urlAppend(url, '_dc=' + (new Date().getTime()));
        }
        var transId = ++Ext.data.ScriptTagProxy.TRANS_ID;
        var trans = {
            id : transId,
            action: action,
            cb : "stcCallback"+transId,
            scriptId : "stcScript"+transId,
            params : params,
            arg : arg,
            url : url,
            callback : callback,
            scope : scope,
            reader : reader
        };
        window[trans.cb] = this.createCallback(action, rs, trans);
        url += String.format("&{0}={1}", this.callbackParam, trans.cb);
        if(this.autoAbort !== false){
            this.abort();
        }

        trans.timeoutId = this.handleFailure.defer(this.timeout, this, [trans]);

        var script = document.createElement("script");
        script.setAttribute("src", url);
        script.setAttribute("type", "text/javascript");
        script.setAttribute("id", trans.scriptId);
        this.head.appendChild(script);

        this.trans = trans;
    },

    // @private createCallback
    createCallback : function(action, rs, trans) {
        var self = this;
        return function(res) {
            self.trans = false;
            self.destroyTrans(trans, true);
            if (action === Ext.data.Api.actions.read) {
                self.onRead.call(self, action, trans, res);
            } else {
                self.onWrite.call(self, action, trans, res, rs);
            }
        };
    },
    /**
     * Callback for read actions
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Object} trans The request transaction object
     * @param {Object} res The server response
     * @protected
     */
    onRead : function(action, trans, res) {
        var result;
        try {
            result = trans.reader.readRecords(res);
        }catch(e){
            // @deprecated: fire loadexception
            this.fireEvent("loadexception", this, trans, res, e);

            this.fireEvent('exception', this, 'response', action, trans, res, e);
            trans.callback.call(trans.scope||window, null, trans.arg, false);
            return;
        }
        if (result.success === false) {
            // @deprecated: fire old loadexception for backwards-compat.
            this.fireEvent('loadexception', this, trans, res);

            this.fireEvent('exception', this, 'remote', action, trans, res, null);
        } else {
            this.fireEvent("load", this, res, trans.arg);
        }
        trans.callback.call(trans.scope||window, result, trans.arg, result.success);
    },
    /**
     * Callback for write actions
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Object} trans The request transaction object
     * @param {Object} res The server response
     * @protected
     */
    onWrite : function(action, trans, response, rs) {
        var reader = trans.reader;
        try {
            // though we already have a response object here in STP, run through readResponse to catch any meta-data exceptions.
            var res = reader.readResponse(action, response);
        } catch (e) {
            this.fireEvent('exception', this, 'response', action, trans, res, e);
            trans.callback.call(trans.scope||window, null, res, false);
            return;
        }
        if(!res.success === true){
            this.fireEvent('exception', this, 'remote', action, trans, res, rs);
            trans.callback.call(trans.scope||window, null, res, false);
            return;
        }
        this.fireEvent("write", this, action, res.data, res, rs, trans.arg );
        trans.callback.call(trans.scope||window, res.data, res, true);
    },

    // private
    isLoading : function(){
        return this.trans ? true : false;
    },

    /**
     * Abort the current server request.
     */
    abort : function(){
        if(this.isLoading()){
            this.destroyTrans(this.trans);
        }
    },

    // private
    destroyTrans : function(trans, isLoaded){
        this.head.removeChild(document.getElementById(trans.scriptId));
        clearTimeout(trans.timeoutId);
        if(isLoaded){
            window[trans.cb] = undefined;
            try{
                delete window[trans.cb];
            }catch(e){}
        }else{
            // if hasn't been loaded, wait for load to remove it to prevent script error
            window[trans.cb] = function(){
                window[trans.cb] = undefined;
                try{
                    delete window[trans.cb];
                }catch(e){}
            };
        }
    },

    // private
    handleFailure : function(trans){
        this.trans = false;
        this.destroyTrans(trans, false);
        if (trans.action === Ext.data.Api.actions.read) {
            // @deprecated firing loadexception
            this.fireEvent("loadexception", this, null, trans.arg);
        }

        this.fireEvent('exception', this, 'response', trans.action, {
            response: null,
            options: trans.arg
        });
        trans.callback.call(trans.scope||window, null, trans.arg, false);
    },

    // inherit docs
    destroy: function(){
        this.abort();
        Ext.data.ScriptTagProxy.superclass.destroy.call(this);
    }
});/**
 * @class Ext.data.HttpProxy
 * @extends Ext.data.DataProxy
 * 
    An implementation of {@link Ext.data.DataProxy} that processes data requests within the same
 * domain of the originating page.
    
 * 
    Note: this class cannot be used to retrieve data from a domain other
 * than the domain from which the running page was served. For cross-domain requests, use a
 * {@link Ext.data.ScriptTagProxy ScriptTagProxy}.
    
 * 
    Be aware that to enable the browser to parse an XML document, the server must set
 * the Content-Type header in the HTTP response to "text/xml".
    
 * @constructor
 * @param {Object} conn
 * An {@link Ext.data.Connection} object, or options parameter to {@link Ext.Ajax#request}.
 * 
    Note that if this HttpProxy is being used by a {@link Ext.data.Store Store}, then the
 * Store's call to {@link #load} will override any specified callback and params
 * options. In this case, use the Store's {@link Ext.data.Store#events events} to modify parameters,
 * or react to loading events. The Store's {@link Ext.data.Store#baseParams baseParams} may also be
 * used to pass parameters known at instantiation time.
    
 * 
    If an options parameter is passed, the singleton {@link Ext.Ajax} object will be used to make
 * the request.
    
 */
Ext.data.HttpProxy = function(conn){
    Ext.data.HttpProxy.superclass.constructor.call(this, conn);

    /**
     * The Connection object (Or options parameter to {@link Ext.Ajax#request}) which this HttpProxy
     * uses to make requests to the server. Properties of this object may be changed dynamically to
     * change the way data is requested.
     * @property
     */
    this.conn = conn;

    // nullify the connection url.  The url param has been copied to 'this' above.  The connection
    // url will be set during each execution of doRequest when buildUrl is called.  This makes it easier for users to override the
    // connection url during beforeaction events (ie: beforeload, beforewrite, etc).
    // Url is always re-defined during doRequest.
    this.conn.url = null;

    this.useAjax = !conn || !conn.events;

    // A hash containing active requests, keyed on action [Ext.data.Api.actions.create|read|update|destroy]
    var actions = Ext.data.Api.actions;
    this.activeRequest = {};
    for (var verb in actions) {
        this.activeRequest[actions[verb]] = undefined;
    }
};

Ext.extend(Ext.data.HttpProxy, Ext.data.DataProxy, {
    /**
     * Return the {@link Ext.data.Connection} object being used by this Proxy.
     * @return {Connection} The Connection object. This object may be used to subscribe to events on
     * a finer-grained basis than the DataProxy events.
     */
    getConnection : function() {
        return this.useAjax ? Ext.Ajax : this.conn;
    },

    /**
     * Used for overriding the url used for a single request.  Designed to be called during a beforeaction event.  Calling setUrl
     * will override any urls set via the api configuration parameter.  Set the optional parameter makePermanent to set the url for
     * all subsequent requests.  If not set to makePermanent, the next request will use the same url or api configuration defined
     * in the initial proxy configuration.
     * @param {String} url
     * @param {Boolean} makePermanent (Optional) [false]
     *
     * (e.g.: beforeload, beforesave, etc).
     */
    setUrl : function(url, makePermanent) {
        this.conn.url = url;
        if (makePermanent === true) {
            this.url = url;
            this.api = null;
            Ext.data.Api.prepare(this);
        }
    },

    /**
     * HttpProxy implementation of DataProxy#doRequest
     * @param {String} action The crud action type (create, read, update, destroy)
     * @param {Ext.data.Record/Ext.data.Record[]} rs If action is load, rs will be null
     * @param {Object} params An object containing properties which are to be used as HTTP parameters
     * for the request to the remote server.
     * @param {Ext.data.DataReader} reader The Reader object which converts the data
     * object into a block of Ext.data.Records.
     * @param {Function} callback
     * 
    A function to be called after the request.
     * The callback is passed the following arguments:
      
     * 
    • r : Ext.data.Record[] The block of Ext.data.Records.
      • 
     * 
    • options: Options object from the action request
      • 
     * 
    • success: Boolean success indicator
    
     * @param {Object} scope The scope (this reference) in which the callback function is executed. Defaults to the browser window.
     * @param {Object} arg An optional argument which is passed to the callback as its second parameter.
     * @protected
     */
    doRequest : function(action, rs, params, reader, cb, scope, arg) {
        var  o = {
            method: (this.api[action]) ? this.api[action]['method'] : undefined,
            request: {
                callback : cb,
                scope : scope,
                arg : arg
            },
            reader: reader,
            callback : this.createCallback(action, rs),
            scope: this
        };

        // If possible, transmit data using jsonData || xmlData on Ext.Ajax.request (An installed DataWriter would have written it there.).
        // Use std HTTP params otherwise.
        if (params.jsonData) {
            o.jsonData = params.jsonData;
        } else if (params.xmlData) {
            o.xmlData = params.xmlData;
        } else {
            o.params = params || {};
        }
        // Set the connection url.  If this.conn.url is not null here,
        // the user must have overridden the url during a beforewrite/beforeload event-handler.
        // this.conn.url is nullified after each request.
        this.conn.url = this.buildUrl(action, rs);

        if(this.useAjax){

            Ext.applyIf(o, this.conn);

            // If a currently running read request is found, abort it
            if (action == Ext.data.Api.actions.read && this.activeRequest[action]) {
                Ext.Ajax.abort(this.activeRequest[action]);
            }
            this.activeRequest[action] = Ext.Ajax.request(o);
        }else{
            this.conn.request(o);
        }
        // request is sent, nullify the connection url in preparation for the next request
        this.conn.url = null;
    },

    /**
     * Returns a callback function for a request.  Note a special case is made for the
     * read action vs all the others.
     * @param {String} action [create|update|delete|load]
     * @param {Ext.data.Record[]} rs The Store-recordset being acted upon
     * @private
     */
    createCallback : function(action, rs) {
        return function(o, success, response) {
            this.activeRequest[action] = undefined;
            if (!success) {
                if (action === Ext.data.Api.actions.read) {
                    // @deprecated: fire loadexception for backwards compat.
                    // TODO remove
                    this.fireEvent('loadexception', this, o, response);
                }
                this.fireEvent('exception', this, 'response', action, o, response);
                o.request.callback.call(o.request.scope, null, o.request.arg, false);
                return;
            }
            if (action === Ext.data.Api.actions.read) {
                this.onRead(action, o, response);
            } else {
                this.onWrite(action, o, response, rs);
            }
        };
    },

    /**
     * Callback for read action
     * @param {String} action Action name as per {@link Ext.data.Api.actions#read}.
     * @param {Object} o The request transaction object
     * @param {Object} res The server response
     * @fires loadexception (deprecated)
     * @fires exception
     * @fires load
     * @protected
     */
    onRead : function(action, o, response) {
        var result;
        try {
            result = o.reader.read(response);
        }catch(e){
            // @deprecated: fire old loadexception for backwards-compat.
            // TODO remove
            this.fireEvent('loadexception', this, o, response, e);

            this.fireEvent('exception', this, 'response', action, o, response, e);
            o.request.callback.call(o.request.scope, null, o.request.arg, false);
            return;
        }
        if (result.success === false) {
            // @deprecated: fire old loadexception for backwards-compat.
            // TODO remove
            this.fireEvent('loadexception', this, o, response);

            // Get DataReader read-back a response-object to pass along to exception event
            var res = o.reader.readResponse(action, response);
            this.fireEvent('exception', this, 'remote', action, o, res, null);
        }
        else {
            this.fireEvent('load', this, o, o.request.arg);
        }
        // TODO refactor onRead, onWrite to be more generalized now that we're dealing with Ext.data.Response instance
        // the calls to request.callback(...) in each will have to be made identical.
        // NOTE reader.readResponse does not currently return Ext.data.Response
        o.request.callback.call(o.request.scope, result, o.request.arg, result.success);
    },
    /**
     * Callback for write actions
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Object} trans The request transaction object
     * @param {Object} res The server response
     * @fires exception
     * @fires write
     * @protected
     */
    onWrite : function(action, o, response, rs) {
        var reader = o.reader;
        var res;
        try {
            res = reader.readResponse(action, response);
        } catch (e) {
            this.fireEvent('exception', this, 'response', action, o, response, e);
            o.request.callback.call(o.request.scope, null, o.request.arg, false);
            return;
        }
        if (res.success === true) {
            this.fireEvent('write', this, action, res.data, res, rs, o.request.arg);
        } else {
            this.fireEvent('exception', this, 'remote', action, o, res, rs);
        }
        // TODO refactor onRead, onWrite to be more generalized now that we're dealing with Ext.data.Response instance
        // the calls to request.callback(...) in each will have to be made similar.
        // NOTE reader.readResponse does not currently return Ext.data.Response
        o.request.callback.call(o.request.scope, res.data, res, res.success);
    },

    // inherit docs
    destroy: function(){
        if(!this.useAjax){
            this.conn.abort();
        }else if(this.activeRequest){
            var actions = Ext.data.Api.actions;
            for (var verb in actions) {
                if(this.activeRequest[actions[verb]]){
                    Ext.Ajax.abort(this.activeRequest[actions[verb]]);
                }
            }
        }
        Ext.data.HttpProxy.superclass.destroy.call(this);
    }
});/**
 * @class Ext.data.MemoryProxy
 * @extends Ext.data.DataProxy
 * An implementation of Ext.data.DataProxy that simply passes the data specified in its constructor
 * to the Reader when its load method is called.
 * @constructor
 * @param {Object} data The data object which the Reader uses to construct a block of Ext.data.Records.
 */
Ext.data.MemoryProxy = function(data){
    // Must define a dummy api with "read" action to satisfy DataProxy#doRequest and Ext.data.Api#prepare *before* calling super
    var api = {};
    api[Ext.data.Api.actions.read] = true;
    Ext.data.MemoryProxy.superclass.constructor.call(this, {
        api: api
    });
    this.data = data;
};

Ext.extend(Ext.data.MemoryProxy, Ext.data.DataProxy, {
    /**
     * @event loadexception
     * Fires if an exception occurs in the Proxy during data loading. Note that this event is also relayed
     * through {@link Ext.data.Store}, so you can listen for it directly on any Store instance.
     * @param {Object} this
     * @param {Object} arg The callback's arg object passed to the {@link #load} function
     * @param {Object} null This parameter does not apply and will always be null for MemoryProxy
     * @param {Error} e The JavaScript Error object caught if the configured Reader could not read the data
     */

       /**
     * MemoryProxy implementation of DataProxy#doRequest
     * @param {String} action
     * @param {Ext.data.Record/Ext.data.Record[]} rs If action is load, rs will be null
     * @param {Object} params An object containing properties which are to be used as HTTP parameters
     * for the request to the remote server.
     * @param {Ext.data.DataReader} reader The Reader object which converts the data
     * object into a block of Ext.data.Records.
     * @param {Function} callback The function into which to pass the block of Ext.data.Records.
     * The function must be passed 
      
     * 
    • The Record block object
      • 
     * 
    • The "arg" argument from the load function
      • 
     * 
    • A boolean success indicator
      • 
     * 
    
     * @param {Object} scope The scope (this reference) in which the callback function is executed. Defaults to the browser window.
     * @param {Object} arg An optional argument which is passed to the callback as its second parameter.
     */
    doRequest : function(action, rs, params, reader, callback, scope, arg) {
        // No implementation for CRUD in MemoryProxy.  Assumes all actions are 'load'
        params = params || {};
        var result;
        try {
            result = reader.readRecords(this.data);
        }catch(e){
            // @deprecated loadexception
            this.fireEvent("loadexception", this, null, arg, e);

            this.fireEvent('exception', this, 'response', action, arg, null, e);
            callback.call(scope, null, arg, false);
            return;
        }
        callback.call(scope, result, arg, true);
    }
});/**
 * @class Ext.data.Types
 * 
    This is s static class containing the system-supplied data types which may be given to a {@link Ext.data.Field Field}.
    
 * 
    The properties in this class are used as type indicators in the {@link Ext.data.Field Field} class, so to
 * test whether a Field is of a certain type, compare the {@link Ext.data.Field#type type} property against properties
 * of this class.
    
 * 
    Developers may add their own application-specific data types to this class. Definition names must be UPPERCASE.
 * each type definition must contain three properties:
    
 * 
      
 * 
    • convert : Function
      A function to convert raw data values from a data block into the data
 * to be stored in the Field. The function is passed the collowing parameters:
 * 
        
 * 
      • v : Mixed
        The data value as read by the Reader, if undefined will use
 * the configured {@link Ext.data.Field#defaultValue defaultValue}.
        • 
 * 
      • rec : Mixed
        The data object containing the row as read by the Reader.
 * Depending on the Reader type, this could be an Array ({@link Ext.data.ArrayReader ArrayReader}), an object
 * ({@link Ext.data.JsonReader JsonReader}), or an XML element ({@link Ext.data.XMLReader XMLReader}).
        • 
 * 
      • 
 * 
    • sortType : Function 
      A function to convert the stored data into comparable form, as defined by {@link Ext.data.SortTypes}.
      • 
 * 
    • type : String 
      A textual data type name.
      • 
 * 
    
 * 
    For example, to create a VELatLong field (See the Microsoft Bing Mapping API) containing the latitude/longitude value of a datapoint on a map from a JsonReader data block
 * which contained the properties lat and long, you would define a new data type like this:
    
 *
    
// Add a new Field data type which stores a VELatLong object in the Record.
Ext.data.Types.VELATLONG = {
    convert: function(v, data) {
        return new VELatLong(data.lat, data.long);
    },
    sortType: function(v) {
        return v.Latitude;  // When sorting, order by latitude
    },
    type: 'VELatLong'
};

    
 * 
    Then, when declaring a Record, use 
    
var types = Ext.data.Types; // allow shorthand type access
UnitRecord = Ext.data.Record.create([
    { name: 'unitName', mapping: 'UnitName' },
    { name: 'curSpeed', mapping: 'CurSpeed', type: types.INT },
    { name: 'latitude', mapping: 'lat', type: types.FLOAT },
    { name: 'latitude', mapping: 'lat', type: types.FLOAT },
    { name: 'position', type: types.VELATLONG }
]);

    
 * @singleton
 */
Ext.data.Types = new function(){
    var st = Ext.data.SortTypes;
    Ext.apply(this, {
        /**
         * @type Regexp
         * @property stripRe
         * A regular expression for stripping non-numeric characters from a numeric value. Defaults to /[\$,%]/g.
         * This should be overridden for localization.
         */
        stripRe: /[\$,%]/g,
        
        /**
         * @type Object
         * @property AUTO
         * This data type means that no conversion is applied to the raw data before it is placed into a Record.
         */
        AUTO: {
            convert: function(v){ return v; },
            sortType: st.none,
            type: 'auto'
        },

        /**
         * @type Object
         * @property STRING
         * This data type means that the raw data is converted into a String before it is placed into a Record.
         */
        STRING: {
            convert: function(v){ return (v === undefined || v === null) ? '' : String(v); },
            sortType: st.asUCString,
            type: 'string'
        },

        /**
         * @type Object
         * @property INT
         * This data type means that the raw data is converted into an integer before it is placed into a Record.
         * 
    The synonym INTEGER is equivalent.
    
         */
        INT: {
            convert: function(v){
                return v !== undefined && v !== null && v !== '' ?
                    parseInt(String(v).replace(Ext.data.Types.stripRe, ''), 10) : (this.useNull ? null : 0);
            },
            sortType: st.none,
            type: 'int'
        },
        
        /**
         * @type Object
         * @property FLOAT
         * This data type means that the raw data is converted into a number before it is placed into a Record.
         * 
    The synonym NUMBER is equivalent.
    
         */
        FLOAT: {
            convert: function(v){
                return v !== undefined && v !== null && v !== '' ?
                    parseFloat(String(v).replace(Ext.data.Types.stripRe, ''), 10) : (this.useNull ? null : 0);
            },
            sortType: st.none,
            type: 'float'
        },
        
        /**
         * @type Object
         * @property BOOL
         * 
    This data type means that the raw data is converted into a boolean before it is placed into
         * a Record. The string "true" and the number 1 are converted to boolean true.
    
         * 
    The synonym BOOLEAN is equivalent.
    
         */
        BOOL: {
            convert: function(v){ return v === true || v === 'true' || v == 1; },
            sortType: st.none,
            type: 'bool'
        },
        
        /**
         * @type Object
         * @property DATE
         * This data type means that the raw data is converted into a Date before it is placed into a Record.
         * The date format is specified in the constructor of the {@link Ext.data.Field} to which this type is
         * being applied.
         */
        DATE: {
            convert: function(v){
                var df = this.dateFormat;
                if(!v){
                    return null;
                }
                if(Ext.isDate(v)){
                    return v;
                }
                if(df){
                    if(df == 'timestamp'){
                        return new Date(v*1000);
                    }
                    if(df == 'time'){
                        return new Date(parseInt(v, 10));
                    }
                    return Date.parseDate(v, df);
                }
                var parsed = Date.parse(v);
                return parsed ? new Date(parsed) : null;
            },
            sortType: st.asDate,
            type: 'date'
        }
    });
    
    Ext.apply(this, {
        /**
         * @type Object
         * @property BOOLEAN
         * 
    This data type means that the raw data is converted into a boolean before it is placed into
         * a Record. The string "true" and the number 1 are converted to boolean true.
    
         * 
    The synonym BOOL is equivalent.
    
         */
        BOOLEAN: this.BOOL,
        /**
         * @type Object
         * @property INTEGER
         * This data type means that the raw data is converted into an integer before it is placed into a Record.
         * 
    The synonym INT is equivalent.
    
         */
        INTEGER: this.INT,
        /**
         * @type Object
         * @property NUMBER
         * This data type means that the raw data is converted into a number before it is placed into a Record.
         * 
    The synonym FLOAT is equivalent.
    
         */
        NUMBER: this.FLOAT    
    });
};/**
 * @class Ext.data.JsonWriter
 * @extends Ext.data.DataWriter
 * DataWriter extension for writing an array or single {@link Ext.data.Record} object(s) in preparation for executing a remote CRUD action.
 */
Ext.data.JsonWriter = Ext.extend(Ext.data.DataWriter, {
    /**
     * @cfg {Boolean} encode 
    true to {@link Ext.util.JSON#encode JSON encode} the
     * {@link Ext.data.DataWriter#toHash hashed data} into a standard HTTP parameter named after this
     * Reader's meta.root property which, by default is imported from the associated Reader. Defaults to true.
    
     * 
    If set to false, the hashed data is {@link Ext.util.JSON#encode JSON encoded}, along with
     * the associated {@link Ext.data.Store}'s {@link Ext.data.Store#baseParams baseParams}, into the POST body.
    
     * 
    When using {@link Ext.data.DirectProxy}, set this to false since Ext.Direct.JsonProvider will perform
     * its own json-encoding.  In addition, if you're using {@link Ext.data.HttpProxy}, setting to false
     * will cause HttpProxy to transmit data using the jsonData configuration-params of {@link Ext.Ajax#request}
     * instead of params.
    
     * 
    When using a {@link Ext.data.Store#restful} Store, some serverside frameworks are
     * tuned to expect data through the jsonData mechanism.  In those cases, one will want to set encode: false, as in
     * let the lower-level connection object (eg: Ext.Ajax) do the encoding.
    
     */
    encode : true,
    /**
     * @cfg {Boolean} encodeDelete False to send only the id to the server on delete, true to encode it in an object
     * literal, eg: 
    
{id: 1}
 * 
     Defaults to false
     */
    encodeDelete: false,
    
    constructor : function(config){
        Ext.data.JsonWriter.superclass.constructor.call(this, config);    
    },

    /**
     * 
    This method should not need to be called by application code, however it may be useful on occasion to
     * override it, or augment it with an {@link Function#createInterceptor interceptor} or {@link Function#createSequence sequence}.
    
     * 
    The provided implementation encodes the serialized data representing the Store's modified Records into the Ajax request's
     * params according to the {@link #encode} setting.
    
     * @param {Object} Ajax request params object to write into.
     * @param {Object} baseParams as defined by {@link Ext.data.Store#baseParams}.  The baseParms must be encoded by the extending class, eg: {@link Ext.data.JsonWriter}, {@link Ext.data.XmlWriter}.
     * @param {Object/Object[]} data Data object representing the serialized modified records from the Store. May be either a single object,
     * or an Array of objects - user implementations must handle both cases.
     */
    render : function(params, baseParams, data) {
        if (this.encode === true) {
            // Encode here now.
            Ext.apply(params, baseParams);
            params[this.meta.root] = Ext.encode(data);
        } else {
            // defer encoding for some other layer, probably in {@link Ext.Ajax#request}.  Place everything into "jsonData" key.
            var jdata = Ext.apply({}, baseParams);
            jdata[this.meta.root] = data;
            params.jsonData = jdata;
        }
    },
    /**
     * Implements abstract Ext.data.DataWriter#createRecord
     * @protected
     * @param {Ext.data.Record} rec
     * @return {Object}
     */
    createRecord : function(rec) {
       return this.toHash(rec);
    },
    /**
     * Implements abstract Ext.data.DataWriter#updateRecord
     * @protected
     * @param {Ext.data.Record} rec
     * @return {Object}
     */
    updateRecord : function(rec) {
        return this.toHash(rec);

    },
    /**
     * Implements abstract Ext.data.DataWriter#destroyRecord
     * @protected
     * @param {Ext.data.Record} rec
     * @return {Object}
     */
    destroyRecord : function(rec){
        if(this.encodeDelete){
            var data = {};
            data[this.meta.idProperty] = rec.id;
            return data;
        }else{
            return rec.id;
        }
    }
});/**
 * @class Ext.data.JsonReader
 * @extends Ext.data.DataReader
 * 
    Data reader class to create an Array of {@link Ext.data.Record} objects
 * from a JSON packet based on mappings in a provided {@link Ext.data.Record}
 * constructor.
    
 * 
    Example code:
    
 * 
    
var myReader = new Ext.data.JsonReader({
    // metadata configuration options:
    {@link #idProperty}: 'id'
    {@link #root}: 'rows',
    {@link #totalProperty}: 'results',
    {@link Ext.data.DataReader#messageProperty}: "msg"  // The element within the response that provides a user-feedback message (optional)

    // the fields config option will internally create an {@link Ext.data.Record}
    // constructor that provides mapping for reading the record data objects
    {@link Ext.data.DataReader#fields fields}: [
        // map Record's 'firstname' field to data object's key of same name
        {name: 'name', mapping: 'firstname'},
        // map Record's 'job' field to data object's 'occupation' key
        {name: 'job', mapping: 'occupation'}
    ]
});

    
 * 
    This would consume a JSON data object of the form:
    
{
    results: 2000, // Reader's configured {@link #totalProperty}
    rows: [        // Reader's configured {@link #root}
        // record data objects:
        { {@link #idProperty id}: 1, firstname: 'Bill', occupation: 'Gardener' },
        { {@link #idProperty id}: 2, firstname: 'Ben' , occupation: 'Horticulturalist' },
        ...
    ]
}

    
 * 
    Automatic configuration using metaData
    
 * 
    It is possible to change a JsonReader's metadata at any time by including
 * a metaData property in the JSON data object. If the JSON data
 * object has a metaData property, a {@link Ext.data.Store Store}
 * object using this Reader will reconfigure itself to use the newly provided
 * field definition and fire its {@link Ext.data.Store#metachange metachange}
 * event. The metachange event handler may interrogate the metaData
 * property to perform any configuration required.
    
 * 
    Note that reconfiguring a Store potentially invalidates objects which may
 * refer to Fields or Records which no longer exist.
    
 * 
    To use this facility you would create the JsonReader like this:
    
var myReader = new Ext.data.JsonReader();

    
 * 
    The first data packet from the server would configure the reader by
 * containing a metaData property and the data. For
 * example, the JSON data object might take the form:
    
{
    metaData: {
        "{@link #idProperty}": "id",
        "{@link #root}": "rows",
        "{@link #totalProperty}": "results"
        "{@link #successProperty}": "success",
        "{@link Ext.data.DataReader#fields fields}": [
            {"name": "name"},
            {"name": "job", "mapping": "occupation"}
        ],
        // used by store to set its sortInfo
        "sortInfo":{
           "field": "name",
           "direction": "ASC"
        },
        // {@link Ext.PagingToolbar paging data} (if applicable)
        "start": 0,
        "limit": 2,
        // custom property
        "foo": "bar"
    },
    // Reader's configured {@link #successProperty}
    "success": true,
    // Reader's configured {@link #totalProperty}
    "results": 2000,
    // Reader's configured {@link #root}
    // (this data simulates 2 results {@link Ext.PagingToolbar per page})
    "rows": [ // *Note: this must be an Array
        { "id": 1, "name": "Bill", "occupation": "Gardener" },
        { "id": 2, "name":  "Ben", "occupation": "Horticulturalist" }
    ]
}
 * 
    
 * 
    The metaData property in the JSON data object should contain:
    
 * 
      
 * 
    • any of the configuration options for this class
      • 
 * 
    • a {@link Ext.data.Record#fields fields} property which
 * the JsonReader will use as an argument to the
 * {@link Ext.data.Record#create data Record create method} in order to
 * configure the layout of the Records it will produce.
      • 
 * 
    • a {@link Ext.data.Store#sortInfo sortInfo} property
 * which the JsonReader will use to set the {@link Ext.data.Store}'s
 * {@link Ext.data.Store#sortInfo sortInfo} property
      • 
 * 
    • any custom properties needed
      • 
 * 
    
 *
 * @constructor
 * Create a new JsonReader
 * @param {Object} meta Metadata configuration options.
 * @param {Array/Object} recordType
 * 
    Either an Array of {@link Ext.data.Field Field} definition objects (which
 * will be passed to {@link Ext.data.Record#create}, or a {@link Ext.data.Record Record}
 * constructor created from {@link Ext.data.Record#create}.
    
 */
Ext.data.JsonReader = function(meta, recordType){
    meta = meta || {};
    /**
     * @cfg {String} idProperty [id] Name of the property within a row object
     * that contains a record identifier value.  Defaults to id
     */
    /**
     * @cfg {String} successProperty [success] Name of the property from which to
     * retrieve the success attribute. Defaults to success.  See
     * {@link Ext.data.DataProxy}.{@link Ext.data.DataProxy#exception exception}
     * for additional information.
     */
    /**
     * @cfg {String} totalProperty [total] Name of the property from which to
     * retrieve the total number of records in the dataset. This is only needed
     * if the whole dataset is not passed in one go, but is being paged from
     * the remote server.  Defaults to total.
     */
    /**
     * @cfg {String} root [undefined] Required.  The name of the property
     * which contains the Array of row objects.  Defaults to undefined.
     * An exception will be thrown if the root property is undefined. The data
     * packet value for this property should be an empty array to clear the data
     * or show no data.
     */
    Ext.applyIf(meta, {
        idProperty: 'id',
        successProperty: 'success',
        totalProperty: 'total'
    });

    Ext.data.JsonReader.superclass.constructor.call(this, meta, recordType || meta.fields);
};
Ext.extend(Ext.data.JsonReader, Ext.data.DataReader, {
    /**
     * This JsonReader's metadata as passed to the constructor, or as passed in
     * the last data packet's metaData property.
     * @type Mixed
     * @property meta
     */
    /**
     * This method is only used by a DataProxy which has retrieved data from a remote server.
     * @param {Object} response The XHR object which contains the JSON data in its responseText.
     * @return {Object} data A data block which is used by an Ext.data.Store object as
     * a cache of Ext.data.Records.
     */
    read : function(response){
        var json = response.responseText;
        var o = Ext.decode(json);
        if(!o) {
            throw {message: 'JsonReader.read: Json object not found'};
        }
        return this.readRecords(o);
    },

    /*
     * TODO: refactor code between JsonReader#readRecords, #readResponse into 1 method.
     * there's ugly duplication going on due to maintaining backwards compat. with 2.0.  It's time to do this.
     */
    /**
     * Decode a JSON response from server.
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Object} response The XHR object returned through an Ajax server request.
     * @return {Response} A {@link Ext.data.Response Response} object containing the data response, and also status information.
     */
    readResponse : function(action, response) {
        var o = (response.responseText !== undefined) ? Ext.decode(response.responseText) : response;
        if(!o) {
            throw new Ext.data.JsonReader.Error('response');
        }

        var root = this.getRoot(o),
            success = this.getSuccess(o);
        if (success && action === Ext.data.Api.actions.create) {
            var def = Ext.isDefined(root);
            if (def && Ext.isEmpty(root)) {
                throw new Ext.data.JsonReader.Error('root-empty', this.meta.root);
            }
            else if (!def) {
                throw new Ext.data.JsonReader.Error('root-undefined-response', this.meta.root);
            }
        }

        // instantiate response object
        var res = new Ext.data.Response({
            action: action,
            success: success,
            data: (root) ? this.extractData(root, false) : [],
            message: this.getMessage(o),
            raw: o
        });

        // blow up if no successProperty
        if (Ext.isEmpty(res.success)) {
            throw new Ext.data.JsonReader.Error('successProperty-response', this.meta.successProperty);
        }
        return res;
    },

    /**
     * Create a data block containing Ext.data.Records from a JSON object.
     * @param {Object} o An object which contains an Array of row objects in the property specified
     * in the config as 'root, and optionally a property, specified in the config as 'totalProperty'
     * which contains the total size of the dataset.
     * @return {Object} data A data block which is used by an Ext.data.Store object as
     * a cache of Ext.data.Records.
     */
    readRecords : function(o){
        /**
         * After any data loads, the raw JSON data is available for further custom processing.  If no data is
         * loaded or there is a load exception this property will be undefined.
         * @type Object
         */
        this.jsonData = o;
        if(o.metaData){
            this.onMetaChange(o.metaData);
        }
        var s = this.meta, Record = this.recordType,
            f = Record.prototype.fields, fi = f.items, fl = f.length, v;

        var root = this.getRoot(o), c = root.length, totalRecords = c, success = true;
        if(s.totalProperty){
            v = parseInt(this.getTotal(o), 10);
            if(!isNaN(v)){
                totalRecords = v;
            }
        }
        if(s.successProperty){
            v = this.getSuccess(o);
            if(v === false || v === 'false'){
                success = false;
            }
        }

        // TODO return Ext.data.Response instance instead.  @see #readResponse
        return {
            success : success,
            records : this.extractData(root, true), // <-- true to return [Ext.data.Record]
            totalRecords : totalRecords
        };
    },

    // private
    buildExtractors : function() {
        if(this.ef){
            return;
        }
        var s = this.meta, Record = this.recordType,
            f = Record.prototype.fields, fi = f.items, fl = f.length;

        if(s.totalProperty) {
            this.getTotal = this.createAccessor(s.totalProperty);
        }
        if(s.successProperty) {
            this.getSuccess = this.createAccessor(s.successProperty);
        }
        if (s.messageProperty) {
            this.getMessage = this.createAccessor(s.messageProperty);
        }
        this.getRoot = s.root ? this.createAccessor(s.root) : function(p){return p;};
        if (s.id || s.idProperty) {
            var g = this.createAccessor(s.id || s.idProperty);
            this.getId = function(rec) {
                var r = g(rec);
                return (r === undefined || r === '') ? null : r;
            };
        } else {
            this.getId = function(){return null;};
        }
        var ef = [];
        for(var i = 0; i < fl; i++){
            f = fi[i];
            var map = (f.mapping !== undefined && f.mapping !== null) ? f.mapping : f.name;
            ef.push(this.createAccessor(map));
        }
        this.ef = ef;
    },

    /**
     * @ignore
     * TODO This isn't used anywhere??  Don't we want to use this where possible instead of complex #createAccessor?
     */
    simpleAccess : function(obj, subsc) {
        return obj[subsc];
    },

    /**
     * @ignore
     */
    createAccessor : function(){
        var re = /[\[\.]/;
        return function(expr) {
            if(Ext.isEmpty(expr)){
                return Ext.emptyFn;
            }
            if(Ext.isFunction(expr)){
                return expr;
            }
            var i = String(expr).search(re);
            if(i >= 0){
                return new Function('obj', 'return obj' + (i > 0 ? '.' : '') + expr);
            }
            return function(obj){
                return obj[expr];
            };

        };
    }(),

    /**
     * type-casts a single row of raw-data from server
     * @param {Object} data
     * @param {Array} items
     * @param {Integer} len
     * @private
     */
    extractValues : function(data, items, len) {
        var f, values = {};
        for(var j = 0; j < len; j++){
            f = items[j];
            var v = this.ef[j](data);
            values[f.name] = f.convert((v !== undefined) ? v : f.defaultValue, data);
        }
        return values;
    }
});

/**
 * @class Ext.data.JsonReader.Error
 * Error class for JsonReader
 */
Ext.data.JsonReader.Error = Ext.extend(Ext.Error, {
    constructor : function(message, arg) {
        this.arg = arg;
        Ext.Error.call(this, message);
    },
    name : 'Ext.data.JsonReader'
});
Ext.apply(Ext.data.JsonReader.Error.prototype, {
    lang: {
        'response': 'An error occurred while json-decoding your server response',
        'successProperty-response': 'Could not locate your "successProperty" in your server response.  Please review your JsonReader config to ensure the config-property "successProperty" matches the property in your server-response.  See the JsonReader docs.',
        'root-undefined-config': 'Your JsonReader was configured without a "root" property.  Please review your JsonReader config and make sure to define the root property.  See the JsonReader docs.',
        'idProperty-undefined' : 'Your JsonReader was configured without an "idProperty"  Please review your JsonReader configuration and ensure the "idProperty" is set (e.g.: "id").  See the JsonReader docs.',
        'root-empty': 'Data was expected to be returned by the server in the "root" property of the response.  Please review your JsonReader configuration to ensure the "root" property matches that returned in the server-response.  See JsonReader docs.'
    }
});
/**
 * @class Ext.data.ArrayReader
 * @extends Ext.data.JsonReader
 * 
    Data reader class to create an Array of {@link Ext.data.Record} objects from an Array.
 * Each element of that Array represents a row of data fields. The
 * fields are pulled into a Record object using as a subscript, the mapping property
 * of the field definition if it exists, or the field's ordinal position in the definition.
    
 * 
    Example code:
    
 * 
    
var Employee = Ext.data.Record.create([
    {name: 'name', mapping: 1},         // "mapping" only needed if an "id" field is present which
    {name: 'occupation', mapping: 2}    // precludes using the ordinal position as the index.
]);
var myReader = new Ext.data.ArrayReader({
    {@link #idIndex}: 0
}, Employee);

    
 * 
    This would consume an Array like this:
    
 * 
    
[ [1, 'Bill', 'Gardener'], [2, 'Ben', 'Horticulturalist'] ]
 * 
    
 * @constructor
 * Create a new ArrayReader
 * @param {Object} meta Metadata configuration options.
 * @param {Array/Object} recordType
 * 
    Either an Array of {@link Ext.data.Field Field} definition objects (which
 * will be passed to {@link Ext.data.Record#create}, or a {@link Ext.data.Record Record}
 * constructor created from {@link Ext.data.Record#create}.
    
 */
Ext.data.ArrayReader = Ext.extend(Ext.data.JsonReader, {
    /**
     * @cfg {String} successProperty
     * @hide
     */
    /**
     * @cfg {Number} id (optional) The subscript within row Array that provides an ID for the Record.
     * Deprecated. Use {@link #idIndex} instead.
     */
    /**
     * @cfg {Number} idIndex (optional) The subscript within row Array that provides an ID for the Record.
     */
    /**
     * Create a data block containing Ext.data.Records from an Array.
     * @param {Object} o An Array of row objects which represents the dataset.
     * @return {Object} data A data block which is used by an Ext.data.Store object as
     * a cache of Ext.data.Records.
     */
    readRecords : function(o){
        this.arrayData = o;
        var s = this.meta,
            sid = s ? Ext.num(s.idIndex, s.id) : null,
            recordType = this.recordType,
            fields = recordType.prototype.fields,
            records = [],
            success = true,
            v;

        var root = this.getRoot(o);

        for(var i = 0, len = root.length; i < len; i++) {
            var n = root[i],
                values = {},
                id = ((sid || sid === 0) && n[sid] !== undefined && n[sid] !== "" ? n[sid] : null);
            for(var j = 0, jlen = fields.length; j < jlen; j++) {
                var f = fields.items[j],
                    k = f.mapping !== undefined && f.mapping !== null ? f.mapping : j;
                v = n[k] !== undefined ? n[k] : f.defaultValue;
                v = f.convert(v, n);
                values[f.name] = v;
            }
            var record = new recordType(values, id);
            record.json = n;
            records[records.length] = record;
        }

        var totalRecords = records.length;

        if(s.totalProperty) {
            v = parseInt(this.getTotal(o), 10);
            if(!isNaN(v)) {
                totalRecords = v;
            }
        }
        if(s.successProperty){
            v = this.getSuccess(o);
            if(v === false || v === 'false'){
                success = false;
            }
        }

        return {
            success : success,
            records : records,
            totalRecords : totalRecords
        };
    }
});/**
 * @class Ext.data.ArrayStore
 * @extends Ext.data.Store
 * 
    Formerly known as "SimpleStore".
    
 * 
    Small helper class to make creating {@link Ext.data.Store}s from Array data easier.
 * An ArrayStore will be automatically configured with a {@link Ext.data.ArrayReader}.
    
 * 
    A store configuration would be something like:
    
var store = new Ext.data.ArrayStore({
    // store configs
    autoDestroy: true,
    storeId: 'myStore',
    // reader configs
    idIndex: 0,  
    fields: [
       'company',
       {name: 'price', type: 'float'},
       {name: 'change', type: 'float'},
       {name: 'pctChange', type: 'float'},
       {name: 'lastChange', type: 'date', dateFormat: 'n/j h:ia'}
    ]
});
 * 
    
 * 
    This store is configured to consume a returned object of the form:
    
var myData = [
    ['3m Co',71.72,0.02,0.03,'9/1 12:00am'],
    ['Alcoa Inc',29.01,0.42,1.47,'9/1 12:00am'],
    ['Boeing Co.',75.43,0.53,0.71,'9/1 12:00am'],
    ['Hewlett-Packard Co.',36.53,-0.03,-0.08,'9/1 12:00am'],
    ['Wal-Mart Stores, Inc.',45.45,0.73,1.63,'9/1 12:00am']
];
 * 
    
 * An object literal of this form could also be used as the {@link #data} config option.
    
 * 
    *Note: Although not listed here, this class accepts all of the configuration options of 
 * {@link Ext.data.ArrayReader ArrayReader}.
    
 * @constructor
 * @param {Object} config
 * @xtype arraystore
 */
Ext.data.ArrayStore = Ext.extend(Ext.data.Store, {
    /**
     * @cfg {Ext.data.DataReader} reader @hide
     */
    constructor: function(config){
        Ext.data.ArrayStore.superclass.constructor.call(this, Ext.apply(config, {
            reader: new Ext.data.ArrayReader(config)
        }));
    },

    loadData : function(data, append){
        if(this.expandData === true){
            var r = [];
            for(var i = 0, len = data.length; i < len; i++){
                r[r.length] = [data[i]];
            }
            data = r;
        }
        Ext.data.ArrayStore.superclass.loadData.call(this, data, append);
    }
});
Ext.reg('arraystore', Ext.data.ArrayStore);

// backwards compat
Ext.data.SimpleStore = Ext.data.ArrayStore;
Ext.reg('simplestore', Ext.data.SimpleStore);/**
 * @class Ext.data.JsonStore
 * @extends Ext.data.Store
 * 
    Small helper class to make creating {@link Ext.data.Store}s from JSON data easier.
 * A JsonStore will be automatically configured with a {@link Ext.data.JsonReader}.
    
 * 
    A store configuration would be something like:
    
var store = new Ext.data.JsonStore({
    // store configs
    autoDestroy: true,
    url: 'get-images.php',
    storeId: 'myStore',
    // reader configs
    root: 'images',
    idProperty: 'name',
    fields: ['name', 'url', {name:'size', type: 'float'}, {name:'lastmod', type:'date'}]
});
 * 
    
 * 
    This store is configured to consume a returned object of the form:
    
{
    images: [
        {name: 'Image one', url:'/GetImage.php?id=1', size:46.5, lastmod: new Date(2007, 10, 29)},
        {name: 'Image Two', url:'/GetImage.php?id=2', size:43.2, lastmod: new Date(2007, 10, 30)}
    ]
}
 * 
    
 * An object literal of this form could also be used as the {@link #data} config option.
    
 * 
    *Note: Although not listed here, this class accepts all of the configuration options of
 * {@link Ext.data.JsonReader JsonReader}.
    
 * @constructor
 * @param {Object} config
 * @xtype jsonstore
 */
Ext.data.JsonStore = Ext.extend(Ext.data.Store, {
    /**
     * @cfg {Ext.data.DataReader} reader @hide
     */
    constructor: function(config){
        Ext.data.JsonStore.superclass.constructor.call(this, Ext.apply(config, {
            reader: new Ext.data.JsonReader(config)
        }));
    }
});
Ext.reg('jsonstore', Ext.data.JsonStore);/**
 * @class Ext.data.XmlWriter
 * @extends Ext.data.DataWriter
 * DataWriter extension for writing an array or single {@link Ext.data.Record} object(s) in preparation for executing a remote CRUD action via XML.
 * XmlWriter uses an instance of {@link Ext.XTemplate} for maximum flexibility in defining your own custom XML schema if the default schema is not appropriate for your needs.
 * See the {@link #tpl} configuration-property.
 */
Ext.data.XmlWriter = function(params) {
    Ext.data.XmlWriter.superclass.constructor.apply(this, arguments);
    // compile the XTemplate for rendering XML documents.
    this.tpl = (typeof(this.tpl) === 'string') ? new Ext.XTemplate(this.tpl).compile() : this.tpl.compile();
};
Ext.extend(Ext.data.XmlWriter, Ext.data.DataWriter, {
    /**
     * @cfg {String} documentRoot [xrequest] (Optional) The name of the XML document root-node.  Note:
     * this parameter is required only when sending extra {@link Ext.data.Store#baseParams baseParams} to the server
     * during a write-request -- if no baseParams are set, the {@link Ext.data.XmlReader#record} meta-property can
     * suffice as the XML document root-node for write-actions involving just a single record.  For requests
     * involving multiple records and NO baseParams, the {@link Ext.data.XmlWriter#root} property can
     * act as the XML document root.
     */
    documentRoot: 'xrequest',
    /**
     * @cfg {Boolean} forceDocumentRoot [false] Set to true to force XML documents having a root-node as defined
     * by {@link #documentRoot}, even with no baseParams defined.
     */
    forceDocumentRoot: false,
    /**
     * @cfg {String} root [records] The name of the containing element which will contain the nodes of an write-action involving multiple records.  Each
     * xml-record written to the server will be wrapped in an element named after {@link Ext.data.XmlReader#record} property.
     * eg:

    <?xml version="1.0" encoding="UTF-8"?>
<user><first>Barney</first></user>

    
     * However, when multiple records are written in a batch-operation, these records must be wrapped in a containing
     * Element.
     * eg:

    <?xml version="1.0" encoding="UTF-8"?>
    <records>
        <first>Barney</first></user>
        <records><first>Barney</first></user>
    </records>

    
     * Defaults to records.  Do not confuse the nature of this property with that of {@link #documentRoot}
     */
    root: 'records',
    /**
     * @cfg {String} xmlVersion [1.0] The version written to header of xml documents.

    <?xml version="1.0" encoding="ISO-8859-15"?>
    
     */
    xmlVersion : '1.0',
    /**
     * @cfg {String} xmlEncoding [ISO-8859-15] The encoding written to header of xml documents.

    <?xml version="1.0" encoding="ISO-8859-15"?>
    
     */
    xmlEncoding: 'ISO-8859-15',
    /**
     * @cfg {String/Ext.XTemplate} tpl The XML template used to render {@link Ext.data.Api#actions write-actions} to your server.
     * 
    One can easily provide his/her own custom {@link Ext.XTemplate#constructor template-definition} if the default does not suffice.
    
     * 
    Defaults to:
    

    <?xml version="{version}" encoding="{encoding}"?>
    <tpl if="documentRoot"><{documentRoot}>
    <tpl for="baseParams">
        <tpl for=".">
            <{name}>{value}</{name}>
        </tpl>
    </tpl>
    <tpl if="records.length > 1"><{root}>',
    <tpl for="records">
        <{parent.record}>
        <tpl for=".">
            <{name}>{value}</{name}>
        </tpl>
        </{parent.record}>
    </tpl>
    <tpl if="records.length > 1"></{root}></tpl>
    <tpl if="documentRoot"></{documentRoot}></tpl>

    
     * 
    Templates will be called with the following API
    
     * 
      
     * 
    • {String} version [1.0] The xml version.
      • 
     * 
    • {String} encoding [ISO-8859-15] The xml encoding.
      • 
     * 
    • {String/false} documentRoot The XML document root-node name or false if not required.  See {@link #documentRoot} and {@link #forceDocumentRoot}.
      • 
     * 
    • {String} record The meta-data parameter defined on your {@link Ext.data.XmlReader#record} configuration represents the name of the xml-tag containing each record.
      • 
     * 
    • {String} root The meta-data parameter defined by {@link Ext.data.XmlWriter#root} configuration-parameter.  Represents the name of the xml root-tag when sending multiple records to the server.
      • 
     * 
    • {Array} records The records being sent to the server, ie: the subject of the write-action being performed.  The records parameter will be always be an array, even when only a single record is being acted upon.
     *     Each item within the records array will contain an array of field objects having the following properties:
     *     
        
     *         
      • {String} name The field-name of the record as defined by your {@link Ext.data.Record#create Ext.data.Record definition}.  The "mapping" property will be used, otherwise it will match the "name" property.  Use this parameter to define the XML tag-name of the property.
        • 
     *         
      • {Mixed} value The record value of the field enclosed within XML tags specified by name property above.
        • 
     *     
      • 
     * 
    • {Array} baseParams.  The baseParams as defined upon {@link Ext.data.Store#baseParams}.  Note that the baseParams have been converted into an array of [{name : "foo", value: "bar"}, ...] pairs in the same manner as the records parameter above.  See {@link #documentRoot} and {@link #forceDocumentRoot}.
      • 
     * 
    
     */
    // Encoding the ? here in case it's being included by some kind of page that will parse it (eg. PHP)
    tpl: '<\u003fxml version="{version}" encoding="{encoding}"\u003f><{documentRoot}><{name}>{value}<{root}><{parent.record}><{name}>{value}',


    /**
     * XmlWriter implementation of the final stage of a write action.
     * @param {Object} params Transport-proxy's (eg: {@link Ext.Ajax#request}) params-object to write-to.
     * @param {Object} baseParams as defined by {@link Ext.data.Store#baseParams}.  The baseParms must be encoded by the extending class, eg: {@link Ext.data.JsonWriter}, {@link Ext.data.XmlWriter}.
     * @param {Object/Object[]} data Data-object representing the compiled Store-recordset.
     */
    render : function(params, baseParams, data) {
        baseParams = this.toArray(baseParams);
        params.xmlData = this.tpl.applyTemplate({
            version: this.xmlVersion,
            encoding: this.xmlEncoding,
            documentRoot: (baseParams.length > 0 || this.forceDocumentRoot === true) ? this.documentRoot : false,
            record: this.meta.record,
            root: this.root,
            baseParams: baseParams,
            records: (Ext.isArray(data[0])) ? data : [data]
        });
    },

    /**
     * createRecord
     * @protected
     * @param {Ext.data.Record} rec
     * @return {Array} Array of name:value pairs for attributes of the {@link Ext.data.Record}.  See {@link Ext.data.DataWriter#toHash}.
     */
    createRecord : function(rec) {
        return this.toArray(this.toHash(rec));
    },

    /**
     * updateRecord
     * @protected
     * @param {Ext.data.Record} rec
     * @return {Array} Array of {name:value} pairs for attributes of the {@link Ext.data.Record}.  See {@link Ext.data.DataWriter#toHash}.
     */
    updateRecord : function(rec) {
        return this.toArray(this.toHash(rec));

    },
    /**
     * destroyRecord
     * @protected
     * @param {Ext.data.Record} rec
     * @return {Array} Array containing a attribute-object (name/value pair) representing the {@link Ext.data.DataReader#idProperty idProperty}.
     */
    destroyRecord : function(rec) {
        var data = {};
        data[this.meta.idProperty] = rec.id;
        return this.toArray(data);
    }
});
/**
 * @class Ext.data.XmlReader
 * @extends Ext.data.DataReader
 * 
    Data reader class to create an Array of {@link Ext.data.Record} objects from an XML document
 * based on mappings in a provided {@link Ext.data.Record} constructor.
    
 * 
    Note: that in order for the browser to parse a returned XML document, the Content-Type
 * header in the HTTP response must be set to "text/xml" or "application/xml".
    
 * 
    Example code:
    
 * 
    
var Employee = Ext.data.Record.create([
   {name: 'name', mapping: 'name'},     // "mapping" property not needed if it is the same as "name"
   {name: 'occupation'}                 // This field will use "occupation" as the mapping.
]);
var myReader = new Ext.data.XmlReader({
   totalProperty: "results", // The element which contains the total dataset size (optional)
   record: "row",           // The repeated element which contains row information
   idProperty: "id"         // The element within the row that provides an ID for the record (optional)
   messageProperty: "msg"   // The element within the response that provides a user-feedback message (optional)
}, Employee);

    
 * 
    
 * This would consume an XML file like this:
 * 
    
<?xml version="1.0" encoding="UTF-8"?>
<dataset>
 <results>2</results>
 <row>
   <id>1</id>
   <name>Bill</name>
   <occupation>Gardener</occupation>
 </row>
 <row>
   <id>2</id>
   <name>Ben</name>
   <occupation>Horticulturalist</occupation>
 </row>
</dataset>

    
 * @cfg {String} totalProperty The DomQuery path from which to retrieve the total number of records
 * in the dataset. This is only needed if the whole dataset is not passed in one go, but is being
 * paged from the remote server.
 * @cfg {String} record The DomQuery path to the repeated element which contains record information.
 * @cfg {String} successProperty The DomQuery path to the success attribute used by forms.
 * @cfg {String} idPath The DomQuery path relative from the record element to the element that contains
 * a record identifier value.
 * @constructor
 * Create a new XmlReader.
 * @param {Object} meta Metadata configuration options
 * @param {Object} recordType Either an Array of field definition objects as passed to
 * {@link Ext.data.Record#create}, or a Record constructor object created using {@link Ext.data.Record#create}.
 */
Ext.data.XmlReader = function(meta, recordType){
    meta = meta || {};

    // backwards compat, convert idPath or id / success
    Ext.applyIf(meta, {
        idProperty: meta.idProperty || meta.idPath || meta.id,
        successProperty: meta.successProperty || meta.success
    });

    Ext.data.XmlReader.superclass.constructor.call(this, meta, recordType || meta.fields);
};
Ext.extend(Ext.data.XmlReader, Ext.data.DataReader, {
    /**
     * This method is only used by a DataProxy which has retrieved data from a remote server.
     * @param {Object} response The XHR object which contains the parsed XML document.  The response is expected
     * to contain a property called responseXML which refers to an XML document object.
     * @return {Object} records A data block which is used by an {@link Ext.data.Store} as
     * a cache of Ext.data.Records.
     */
    read : function(response){
        var doc = response.responseXML;
        if(!doc) {
            throw {message: "XmlReader.read: XML Document not available"};
        }
        return this.readRecords(doc);
    },

    /**
     * Create a data block containing Ext.data.Records from an XML document.
     * @param {Object} doc A parsed XML document.
     * @return {Object} records A data block which is used by an {@link Ext.data.Store} as
     * a cache of Ext.data.Records.
     */
    readRecords : function(doc){
        /**
         * After any data loads/reads, the raw XML Document is available for further custom processing.
         * @type XMLDocument
         */
        this.xmlData = doc;

        var root    = doc.documentElement || doc,
            q       = Ext.DomQuery,
            totalRecords = 0,
            success = true;

        if(this.meta.totalProperty){
            totalRecords = this.getTotal(root, 0);
        }
        if(this.meta.successProperty){
            success = this.getSuccess(root);
        }

        var records = this.extractData(q.select(this.meta.record, root), true); // <-- true to return Ext.data.Record[]

        // TODO return Ext.data.Response instance.  @see #readResponse
        return {
            success : success,
            records : records,
            totalRecords : totalRecords || records.length
        };
    },

    /**
     * Decode an XML response from server.
     * @param {String} action [{@link Ext.data.Api#actions} create|read|update|destroy]
     * @param {Object} response HTTP Response object from browser.
     * @return {Ext.data.Response} An instance of {@link Ext.data.Response}
     */
    readResponse : function(action, response) {
        var q = Ext.DomQuery,
            doc = response.responseXML,
            root = doc.documentElement || doc;

        // create general Response instance.
        var res = new Ext.data.Response({
            action: action,
            success : this.getSuccess(root),
            message: this.getMessage(root),
            data: this.extractData(q.select(this.meta.record, root) || q.select(this.meta.root, root), false),
            raw: doc
        });

        if (Ext.isEmpty(res.success)) {
            throw new Ext.data.DataReader.Error('successProperty-response', this.meta.successProperty);
        }

        // Create actions from a response having status 200 must return pk
        if (action === Ext.data.Api.actions.create) {
            var def = Ext.isDefined(res.data);
            if (def && Ext.isEmpty(res.data)) {
                throw new Ext.data.JsonReader.Error('root-empty', this.meta.root);
            }
            else if (!def) {
                throw new Ext.data.JsonReader.Error('root-undefined-response', this.meta.root);
            }
        }
        return res;
    },

    getSuccess : function() {
        return true;
    },

    /**
     * build response-data extractor functions.
     * @private
     * @ignore
     */
    buildExtractors : function() {
        if(this.ef){
            return;
        }
        var s       = this.meta,
            Record  = this.recordType,
            f       = Record.prototype.fields,
            fi      = f.items,
            fl      = f.length;

        if(s.totalProperty) {
            this.getTotal = this.createAccessor(s.totalProperty);
        }
        if(s.successProperty) {
            this.getSuccess = this.createAccessor(s.successProperty);
        }
        if (s.messageProperty) {
            this.getMessage = this.createAccessor(s.messageProperty);
        }
        this.getRoot = function(res) {
            return (!Ext.isEmpty(res[this.meta.record])) ? res[this.meta.record] : res[this.meta.root];
        };
        if (s.idPath || s.idProperty) {
            var g = this.createAccessor(s.idPath || s.idProperty);
            this.getId = function(rec) {
                var id = g(rec) || rec.id;
                return (id === undefined || id === '') ? null : id;
            };
        } else {
            this.getId = function(){return null;};
        }
        var ef = [];
        for(var i = 0; i < fl; i++){
            f = fi[i];
            var map = (f.mapping !== undefined && f.mapping !== null) ? f.mapping : f.name;
            ef.push(this.createAccessor(map));
        }
        this.ef = ef;
    },

    /**
     * Creates a function to return some particular key of data from a response.
     * @param {String} key
     * @return {Function}
     * @private
     * @ignore
     */
    createAccessor : function(){
        var q = Ext.DomQuery;
        return function(key) {
            if (Ext.isFunction(key)) {
                return key;
            }
            switch(key) {
                case this.meta.totalProperty:
                    return function(root, def){
                        return q.selectNumber(key, root, def);
                    };
                    break;
                case this.meta.successProperty:
                    return function(root, def) {
                        var sv = q.selectValue(key, root, true);
                        var success = sv !== false && sv !== 'false';
                        return success;
                    };
                    break;
                default:
                    return function(root, def) {
                        return q.selectValue(key, root, def);
                    };
                    break;
            }
        };
    }(),

    /**
     * extracts values and type-casts a row of data from server, extracted by #extractData
     * @param {Hash} data
     * @param {Ext.data.Field[]} items
     * @param {Number} len
     * @private
     * @ignore
     */
    extractValues : function(data, items, len) {
        var f, values = {};
        for(var j = 0; j < len; j++){
            f = items[j];
            var v = this.ef[j](data);
            values[f.name] = f.convert((v !== undefined) ? v : f.defaultValue, data);
        }
        return values;
    }
});/**
 * @class Ext.data.XmlStore
 * @extends Ext.data.Store
 * 
    Small helper class to make creating {@link Ext.data.Store}s from XML data easier.
 * A XmlStore will be automatically configured with a {@link Ext.data.XmlReader}.
    
 * 
    A store configuration would be something like:
    
var store = new Ext.data.XmlStore({
    // store configs
    autoDestroy: true,
    storeId: 'myStore',
    url: 'sheldon.xml', // automatically configures a HttpProxy
    // reader configs
    record: 'Item', // records will have an "Item" tag
    idPath: 'ASIN',
    totalRecords: '@TotalResults'
    fields: [
        // set up the fields mapping into the xml doc
        // The first needs mapping, the others are very basic
        {name: 'Author', mapping: 'ItemAttributes > Author'},
        'Title', 'Manufacturer', 'ProductGroup'
    ]
});
 * 
    
 * 
    This store is configured to consume a returned object of the form:
    
<?xml version="1.0" encoding="UTF-8"?>
<ItemSearchResponse xmlns="http://webservices.amazon.com/AWSECommerceService/2009-05-15">
    <Items>
        <Request>
            <IsValid>True</IsValid>
            <ItemSearchRequest>
                <Author>Sidney Sheldon</Author>
                <SearchIndex>Books</SearchIndex>
            </ItemSearchRequest>
        </Request>
        <TotalResults>203</TotalResults>
        <TotalPages>21</TotalPages>
        <Item>
            <ASIN>0446355453</ASIN>
            <DetailPageURL>
                http://www.amazon.com/
            </DetailPageURL>
            <ItemAttributes>
                <Author>Sidney Sheldon</Author>
                <Manufacturer>Warner Books</Manufacturer>
                <ProductGroup>Book</ProductGroup>
                <Title>Master of the Game</Title>
            </ItemAttributes>
        </Item>
    </Items>
</ItemSearchResponse>
 * 
    
 * An object literal of this form could also be used as the {@link #data} config option.
    
 * 
    Note: Although not listed here, this class accepts all of the configuration options of 
 * {@link Ext.data.XmlReader XmlReader}.
    
 * @constructor
 * @param {Object} config
 * @xtype xmlstore
 */
Ext.data.XmlStore = Ext.extend(Ext.data.Store, {
    /**
     * @cfg {Ext.data.DataReader} reader @hide
     */
    constructor: function(config){
        Ext.data.XmlStore.superclass.constructor.call(this, Ext.apply(config, {
            reader: new Ext.data.XmlReader(config)
        }));
    }
});
Ext.reg('xmlstore', Ext.data.XmlStore);/**
 * @class Ext.data.GroupingStore
 * @extends Ext.data.Store
 * A specialized store implementation that provides for grouping records by one of the available fields. This
 * is usually used in conjunction with an {@link Ext.grid.GroupingView} to provide the data model for
 * a grouped GridPanel.
 *
 * Internally, GroupingStore is simply a normal Store with multi sorting enabled from the start. The grouping field
 * and direction are always injected as the first sorter pair. GroupingView picks up on the configured groupField and
 * builds grid rows appropriately.
 *
 * @constructor
 * Creates a new GroupingStore.
 * @param {Object} config A config object containing the objects needed for the Store to access data,
 * and read the data into Records.
 * @xtype groupingstore
 */
Ext.data.GroupingStore = Ext.extend(Ext.data.Store, {

    //inherit docs
    constructor: function(config) {
        config = config || {};

        //We do some preprocessing here to massage the grouping + sorting options into a single
        //multi sort array. If grouping and sorting options are both presented to the constructor,
        //the sorters array consists of the grouping sorter object followed by the sorting sorter object
        //see Ext.data.Store's sorting functions for details about how multi sorting works
        this.hasMultiSort  = true;
        this.multiSortInfo = this.multiSortInfo || {sorters: []};

        var sorters    = this.multiSortInfo.sorters,
            groupField = config.groupField || this.groupField,
            sortInfo   = config.sortInfo || this.sortInfo,
            groupDir   = config.groupDir || this.groupDir;

        //add the grouping sorter object first
        if(groupField){
            sorters.push({
                field    : groupField,
                direction: groupDir
            });
        }

        //add the sorting sorter object if it is present
        if (sortInfo) {
            sorters.push(sortInfo);
        }

        Ext.data.GroupingStore.superclass.constructor.call(this, config);

        this.addEvents(
          /**
           * @event groupchange
           * Fired whenever a call to store.groupBy successfully changes the grouping on the store
           * @param {Ext.data.GroupingStore} store The grouping store
           * @param {String} groupField The field that the store is now grouped by
           */
          'groupchange'
        );

        this.applyGroupField();
    },

    /**
     * @cfg {String} groupField
     * The field name by which to sort the store's data (defaults to '').
     */
    /**
     * @cfg {Boolean} remoteGroup
     * True if the grouping should apply on the server side, false if it is local only (defaults to false).  If the
     * grouping is local, it can be applied immediately to the data.  If it is remote, then it will simply act as a
     * helper, automatically sending the grouping field name as the 'groupBy' param with each XHR call.
     */
    remoteGroup : false,
    /**
     * @cfg {Boolean} groupOnSort
     * True to sort the data on the grouping field when a grouping operation occurs, false to sort based on the
     * existing sort info (defaults to false).
     */
    groupOnSort:false,

    /**
     * @cfg {String} groupDir
     * The direction to sort the groups. Defaults to 'ASC'.
     */
    groupDir : 'ASC',

    /**
     * Clears any existing grouping and refreshes the data using the default sort.
     */
    clearGrouping : function(){
        this.groupField = false;

        if(this.remoteGroup){
            if(this.baseParams){
                delete this.baseParams.groupBy;
                delete this.baseParams.groupDir;
            }
            var lo = this.lastOptions;
            if(lo && lo.params){
                delete lo.params.groupBy;
                delete lo.params.groupDir;
            }

            this.reload();
        }else{
            this.sort();
            this.fireEvent('datachanged', this);
        }
    },

    /**
     * Groups the data by the specified field.
     * @param {String} field The field name by which to sort the store's data
     * @param {Boolean} forceRegroup (optional) True to force the group to be refreshed even if the field passed
     * in is the same as the current grouping field, false to skip grouping on the same field (defaults to false)
     */
    groupBy : function(field, forceRegroup, direction) {
        direction = direction ? (String(direction).toUpperCase() == 'DESC' ? 'DESC' : 'ASC') : this.groupDir;

        if (this.groupField == field && this.groupDir == direction && !forceRegroup) {
            return; // already grouped by this field
        }

        //check the contents of the first sorter. If the field matches the CURRENT groupField (before it is set to the new one),
        //remove the sorter as it is actually the grouper. The new grouper is added back in by this.sort
        var sorters = this.multiSortInfo.sorters;
        if (sorters.length > 0 && sorters[0].field == this.groupField) {
            sorters.shift();
        }

        this.groupField = field;
        this.groupDir = direction;
        this.applyGroupField();

        var fireGroupEvent = function() {
            this.fireEvent('groupchange', this, this.getGroupState());
        };

        if (this.groupOnSort) {
            this.sort(field, direction);
            fireGroupEvent.call(this);
            return;
        }

        if (this.remoteGroup) {
            this.on('load', fireGroupEvent, this, {single: true});
            this.reload();
        } else {
            this.sort(sorters);
            fireGroupEvent.call(this);
        }
    },

    //GroupingStore always uses multisorting so we intercept calls to sort here to make sure that our grouping sorter object
    //is always injected first.
    sort : function(fieldName, dir) {
        if (this.remoteSort) {
            return Ext.data.GroupingStore.superclass.sort.call(this, fieldName, dir);
        }

        var sorters = [];

        //cater for any existing valid arguments to this.sort, massage them into an array of sorter objects
        if (Ext.isArray(arguments[0])) {
            sorters = arguments[0];
        } else if (fieldName == undefined) {
            //we preserve the existing sortInfo here because this.sort is called after
            //clearGrouping and there may be existing sorting
            sorters = this.sortInfo ? [this.sortInfo] : [];
        } else {
            //TODO: this is lifted straight from Ext.data.Store's singleSort function. It should instead be
            //refactored into a common method if possible
            var field = this.fields.get(fieldName);
            if (!field) return false;

            var name       = field.name,
                sortInfo   = this.sortInfo || null,
                sortToggle = this.sortToggle ? this.sortToggle[name] : null;

            if (!dir) {
                if (sortInfo && sortInfo.field == name) { // toggle sort dir
                    dir = (this.sortToggle[name] || 'ASC').toggle('ASC', 'DESC');
                } else {
                    dir = field.sortDir;
                }
            }

            this.sortToggle[name] = dir;
            this.sortInfo = {field: name, direction: dir};

            sorters = [this.sortInfo];
        }

        //add the grouping sorter object as the first multisort sorter
        if (this.groupField) {
            sorters.unshift({direction: this.groupDir, field: this.groupField});
        }

        return this.multiSort.call(this, sorters, dir);
    },

    /**
     * @private
     * Saves the current grouping field and direction to this.baseParams and this.lastOptions.params
     * if we're using remote grouping. Does not actually perform any grouping - just stores values
     */
    applyGroupField: function(){
        if (this.remoteGroup) {
            if(!this.baseParams){
                this.baseParams = {};
            }

            Ext.apply(this.baseParams, {
                groupBy : this.groupField,
                groupDir: this.groupDir
            });

            var lo = this.lastOptions;
            if (lo && lo.params) {
                lo.params.groupDir = this.groupDir;

                //this is deleted because of a bug reported at http://www.extjs.com/forum/showthread.php?t=82907
                delete lo.params.groupBy;
            }
        }
    },

    /**
     * @private
     * TODO: This function is apparently never invoked anywhere in the framework. It has no documentation
     * and should be considered for deletion
     */
    applyGrouping : function(alwaysFireChange){
        if(this.groupField !== false){
            this.groupBy(this.groupField, true, this.groupDir);
            return true;
        }else{
            if(alwaysFireChange === true){
                this.fireEvent('datachanged', this);
            }
            return false;
        }
    },

    /**
     * @private
     * Returns the grouping field that should be used. If groupOnSort is used this will be sortInfo's field,
     * otherwise it will be this.groupField
     * @return {String} The group field
     */
    getGroupState : function(){
        return this.groupOnSort && this.groupField !== false ?
               (this.sortInfo ? this.sortInfo.field : undefined) : this.groupField;
    }
});
Ext.reg('groupingstore', Ext.data.GroupingStore);
/**
 * @class Ext.data.DirectProxy
 * @extends Ext.data.DataProxy
 */
Ext.data.DirectProxy = function(config){
    Ext.apply(this, config);
    if(typeof this.paramOrder == 'string'){
        this.paramOrder = this.paramOrder.split(/[\s,|]/);
    }
    Ext.data.DirectProxy.superclass.constructor.call(this, config);
};

Ext.extend(Ext.data.DirectProxy, Ext.data.DataProxy, {
    /**
     * @cfg {Array/String} paramOrder Defaults to undefined. A list of params to be executed
     * server side.  Specify the params in the order in which they must be executed on the server-side
     * as either (1) an Array of String values, or (2) a String of params delimited by either whitespace,
     * comma, or pipe. For example,
     * any of the following would be acceptable:
    
paramOrder: ['param1','param2','param3']
paramOrder: 'param1 param2 param3'
paramOrder: 'param1,param2,param3'
paramOrder: 'param1|param2|param'
     
    
     */
    paramOrder: undefined,

    /**
     * @cfg {Boolean} paramsAsHash
     * Send parameters as a collection of named arguments (defaults to true). Providing a
     * {@link #paramOrder} nullifies this configuration.
     */
    paramsAsHash: true,

    /**
     * @cfg {Function} directFn
     * Function to call when executing a request.  directFn is a simple alternative to defining the api configuration-parameter
     * for Store's which will not implement a full CRUD api.
     */
    directFn : undefined,

    /**
     * DirectProxy implementation of {@link Ext.data.DataProxy#doRequest}
     * @param {String} action The crud action type (create, read, update, destroy)
     * @param {Ext.data.Record/Ext.data.Record[]} rs If action is load, rs will be null
     * @param {Object} params An object containing properties which are to be used as HTTP parameters
     * for the request to the remote server.
     * @param {Ext.data.DataReader} reader The Reader object which converts the data
     * object into a block of Ext.data.Records.
     * @param {Function} callback
     * 
    A function to be called after the request.
     * The callback is passed the following arguments:
      
     * 
    • r : Ext.data.Record[] The block of Ext.data.Records.
      • 
     * 
    • options: Options object from the action request
      • 
     * 
    • success: Boolean success indicator
    
     * @param {Object} scope The scope (this reference) in which the callback function is executed. Defaults to the browser window.
     * @param {Object} arg An optional argument which is passed to the callback as its second parameter.
     * @protected
     */
    doRequest : function(action, rs, params, reader, callback, scope, options) {
        var args = [],
            directFn = this.api[action] || this.directFn;

        switch (action) {
            case Ext.data.Api.actions.create:
                args.push(params.jsonData);		// <-- create(Hash)
                break;
            case Ext.data.Api.actions.read:
                // If the method has no parameters, ignore the paramOrder/paramsAsHash.
                if(directFn.directCfg.method.len > 0){
                    if(this.paramOrder){
                        for(var i = 0, len = this.paramOrder.length; i < len; i++){
                            args.push(params[this.paramOrder[i]]);
                        }
                    }else if(this.paramsAsHash){
                        args.push(params);
                    }
                }
                break;
            case Ext.data.Api.actions.update:
                args.push(params.jsonData);        // <-- update(Hash/Hash[])
                break;
            case Ext.data.Api.actions.destroy:
                args.push(params.jsonData);        // <-- destroy(Int/Int[])
                break;
        }

        var trans = {
            params : params || {},
            request: {
                callback : callback,
                scope : scope,
                arg : options
            },
            reader: reader
        };

        args.push(this.createCallback(action, rs, trans), this);
        directFn.apply(window, args);
    },

    // private
    createCallback : function(action, rs, trans) {
        var me = this;
        return function(result, res) {
            if (!res.status) {
                // @deprecated fire loadexception
                if (action === Ext.data.Api.actions.read) {
                    me.fireEvent("loadexception", me, trans, res, null);
                }
                me.fireEvent('exception', me, 'remote', action, trans, res, null);
                trans.request.callback.call(trans.request.scope, null, trans.request.arg, false);
                return;
            }
            if (action === Ext.data.Api.actions.read) {
                me.onRead(action, trans, result, res);
            } else {
                me.onWrite(action, trans, result, res, rs);
            }
        };
    },

    /**
     * Callback for read actions
     * @param {String} action [Ext.data.Api.actions.create|read|update|destroy]
     * @param {Object} trans The request transaction object
     * @param {Object} result Data object picked out of the server-response.
     * @param {Object} res The server response
     * @protected
     */
    onRead : function(action, trans, result, res) {
        var records;
        try {
            records = trans.reader.readRecords(result);
        }
        catch (ex) {
            // @deprecated: Fire old loadexception for backwards-compat.
            this.fireEvent("loadexception", this, trans, res, ex);

            this.fireEvent('exception', this, 'response', action, trans, res, ex);
            trans.request.callback.call(trans.request.scope, null, trans.request.arg, false);
            return;
        }
        this.fireEvent("load", this, res, trans.request.arg);
        trans.request.callback.call(trans.request.scope, records, trans.request.arg, true);
    },
    /**
     * Callback for write actions
     * @param {String} action [{@link Ext.data.Api#actions create|read|update|destroy}]
     * @param {Object} trans The request transaction object
     * @param {Object} result Data object picked out of the server-response.
     * @param {Object} res The server response
     * @param {Ext.data.Record/Ext.data.Record[]} rs The Store resultset associated with the action.
     * @protected
     */
    onWrite : function(action, trans, result, res, rs) {
        var data = trans.reader.extractData(trans.reader.getRoot(result), false);
        var success = trans.reader.getSuccess(result);
        success = (success !== false);
        if (success){
            this.fireEvent("write", this, action, data, res, rs, trans.request.arg);
        }else{
            this.fireEvent('exception', this, 'remote', action, trans, result, rs);
        }
        trans.request.callback.call(trans.request.scope, data, res, success);
    }
});
/**
 * @class Ext.data.DirectStore
 * @extends Ext.data.Store
 * 
    Small helper class to create an {@link Ext.data.Store} configured with an
 * {@link Ext.data.DirectProxy} and {@link Ext.data.JsonReader} to make interacting
 * with an {@link Ext.Direct} Server-side {@link Ext.direct.Provider Provider} easier.
 * To create a different proxy/reader combination create a basic {@link Ext.data.Store}
 * configured as needed.
    
 *
 * 
    *Note: Although they are not listed, this class inherits all of the config options of:
    
 * 
      
 * 
    • {@link Ext.data.Store Store}
      • 
 * 
        
 *
 * 
      
 * 
    • {@link Ext.data.JsonReader JsonReader}
      • 
 * 
        
 * 
      • {@link Ext.data.JsonReader#root root}
        • 
 * 
      • {@link Ext.data.JsonReader#idProperty idProperty}
        • 
 * 
      • {@link Ext.data.JsonReader#totalProperty totalProperty}
        • 
 * 
      
 *
 * 
    • {@link Ext.data.DirectProxy DirectProxy}
      • 
 * 
        
 * 
      • {@link Ext.data.DirectProxy#directFn directFn}
        • 
 * 
      • {@link Ext.data.DirectProxy#paramOrder paramOrder}
        • 
 * 
      • {@link Ext.data.DirectProxy#paramsAsHash paramsAsHash}
        • 
 * 
      
 * 
    
 *
 * @xtype directstore
 *
 * @constructor
 * @param {Object} config
 */
Ext.data.DirectStore = Ext.extend(Ext.data.Store, {
    constructor : function(config){
        // each transaction upon a singe record will generate a distinct Direct transaction since Direct queues them into one Ajax request.
        var c = Ext.apply({}, {
            batchTransactions: false
        }, config);
        Ext.data.DirectStore.superclass.constructor.call(this, Ext.apply(c, {
            proxy: Ext.isDefined(c.proxy) ? c.proxy : new Ext.data.DirectProxy(Ext.copyTo({}, c, 'paramOrder,paramsAsHash,directFn,api')),
            reader: (!Ext.isDefined(c.reader) && c.fields) ? new Ext.data.JsonReader(Ext.copyTo({}, c, 'totalProperty,root,idProperty'), c.fields) : c.reader
        }));
    }
});
Ext.reg('directstore', Ext.data.DirectStore);
/**
 * @class Ext.Direct
 * @extends Ext.util.Observable
 * 
    Overview
    
 *
 * 
    Ext.Direct aims to streamline communication between the client and server
 * by providing a single interface that reduces the amount of common code
 * typically required to validate data and handle returned data packets
 * (reading data, error conditions, etc).
    
 *
 * 
    The Ext.direct namespace includes several classes for a closer integration
 * with the server-side. The Ext.data namespace also includes classes for working
 * with Ext.data.Stores which are backed by data from an Ext.Direct method.
    
 *
 * 
    Specification
    
 *
 * 
    For additional information consult the
 * Ext.Direct Specification.
    
 *
 * 
    Providers
    
 *
 * 
    Ext.Direct uses a provider architecture, where one or more providers are
 * used to transport data to and from the server. There are several providers
 * that exist in the core at the moment:
      
 *
 * 
    • {@link Ext.direct.JsonProvider JsonProvider} for simple JSON operations
      • 
 * 
    • {@link Ext.direct.PollingProvider PollingProvider} for repeated requests
      • 
 * 
    • {@link Ext.direct.RemotingProvider RemotingProvider} exposes server side
 * on the client.
      • 
 * 
    
 *
 * 
    A provider does not need to be invoked directly, providers are added via
 * {@link Ext.Direct}.{@link Ext.Direct#add add}.
    
 *
 * 
    Router
    
 *
 * 
    Ext.Direct utilizes a "router" on the server to direct requests from the client
 * to the appropriate server-side method. Because the Ext.Direct API is completely
 * platform-agnostic, you could completely swap out a Java based server solution
 * and replace it with one that uses C# without changing the client side JavaScript
 * at all.
    
 *
 * 
    Server side events
    
 *
 * 
    Custom events from the server may be handled by the client by adding
 * listeners, for example:
    
 * 
    
{"type":"event","name":"message","data":"Successfully polled at: 11:19:30 am"}

// add a handler for a 'message' event sent by the server
Ext.Direct.on('message', function(e){
    out.append(String.format('<p><i>{0}</i></p>', e.data));
            out.el.scrollTo('t', 100000, true);
});
 * 
    
 * @singleton
 */
Ext.Direct = Ext.extend(Ext.util.Observable, {
    /**
     * Each event type implements a getData() method. The default event types are:
     * 
      
     * 
    • event : Ext.Direct.Event
      • 
     * 
    • exception : Ext.Direct.ExceptionEvent
      • 
     * 
    • rpc : Ext.Direct.RemotingEvent
      • 
     * 
    
     * @property eventTypes
     * @type Object
     */

    /**
     * Four types of possible exceptions which can occur:
     * 
      
     * 
    • Ext.Direct.exceptions.TRANSPORT : 'xhr'
      • 
     * 
    • Ext.Direct.exceptions.PARSE : 'parse'
      • 
     * 
    • Ext.Direct.exceptions.LOGIN : 'login'
      • 
     * 
    • Ext.Direct.exceptions.SERVER : 'exception'
      • 
     * 
    
     * @property exceptions
     * @type Object
     */
    exceptions: {
        TRANSPORT: 'xhr',
        PARSE: 'parse',
        LOGIN: 'login',
        SERVER: 'exception'
    },

    // private
    constructor: function(){
        this.addEvents(
            /**
             * @event event
             * Fires after an event.
             * @param {event} e The {@link Ext.Direct#eventTypes Ext.Direct.Event type} that occurred.
             * @param {Ext.direct.Provider} provider The {@link Ext.direct.Provider Provider}.
             */
            'event',
            /**
             * @event exception
             * Fires after an event exception.
             * @param {event} e The {@link Ext.Direct#eventTypes Ext.Direct.Event type} that occurred.
             */
            'exception'
        );
        this.transactions = {};
        this.providers = {};
    },

    /**
     * Adds an Ext.Direct Provider and creates the proxy or stub methods to execute server-side methods.
     * If the provider is not already connected, it will auto-connect.
     * 
    
var pollProv = new Ext.direct.PollingProvider({
    url: 'php/poll2.php'
});

Ext.Direct.addProvider(
    {
        "type":"remoting",       // create a {@link Ext.direct.RemotingProvider}
        "url":"php\/router.php", // url to connect to the Ext.Direct server-side router.
        "actions":{              // each property within the actions object represents a Class
            "TestAction":[       // array of methods within each server side Class
            {
                "name":"doEcho", // name of method
                "len":1
            },{
                "name":"multiply",
                "len":1
            },{
                "name":"doForm",
                "formHandler":true, // handle form on server with Ext.Direct.Transaction
                "len":1
            }]
        },
        "namespace":"myApplication",// namespace to create the Remoting Provider in
    },{
        type: 'polling', // create a {@link Ext.direct.PollingProvider}
        url:  'php/poll.php'
    },
    pollProv // reference to previously created instance
);
     * 
    
     * @param {Object/Array} provider Accepts either an Array of Provider descriptions (an instance
     * or config object for a Provider) or any number of Provider descriptions as arguments.  Each
     * Provider description instructs Ext.Direct how to create client-side stub methods.
     */
    addProvider : function(provider){
        var a = arguments;
        if(a.length > 1){
            for(var i = 0, len = a.length; i < len; i++){
                this.addProvider(a[i]);
            }
            return;
        }

        // if provider has not already been instantiated
        if(!provider.events){
            provider = new Ext.Direct.PROVIDERS[provider.type](provider);
        }
        provider.id = provider.id || Ext.id();
        this.providers[provider.id] = provider;

        provider.on('data', this.onProviderData, this);
        provider.on('exception', this.onProviderException, this);


        if(!provider.isConnected()){
            provider.connect();
        }

        return provider;
    },

    /**
     * Retrieve a {@link Ext.direct.Provider provider} by the
     * {@link Ext.direct.Provider#id id} specified when the provider is
     * {@link #addProvider added}.
     * @param {String} id Unique identifier assigned to the provider when calling {@link #addProvider}
     */
    getProvider : function(id){
        return this.providers[id];
    },

    removeProvider : function(id){
        var provider = id.id ? id : this.providers[id];
        provider.un('data', this.onProviderData, this);
        provider.un('exception', this.onProviderException, this);
        delete this.providers[provider.id];
        return provider;
    },

    addTransaction: function(t){
        this.transactions[t.tid] = t;
        return t;
    },

    removeTransaction: function(t){
        delete this.transactions[t.tid || t];
        return t;
    },

    getTransaction: function(tid){
        return this.transactions[tid.tid || tid];
    },

    onProviderData : function(provider, e){
        if(Ext.isArray(e)){
            for(var i = 0, len = e.length; i < len; i++){
                this.onProviderData(provider, e[i]);
            }
            return;
        }
        if(e.name && e.name != 'event' && e.name != 'exception'){
            this.fireEvent(e.name, e);
        }else if(e.type == 'exception'){
            this.fireEvent('exception', e);
        }
        this.fireEvent('event', e, provider);
    },

    createEvent : function(response, extraProps){
        return new Ext.Direct.eventTypes[response.type](Ext.apply(response, extraProps));
    }
});
// overwrite impl. with static instance
Ext.Direct = new Ext.Direct();

Ext.Direct.TID = 1;
Ext.Direct.PROVIDERS = {};/**
 * @class Ext.Direct.Transaction
 * @extends Object
 * 
    Supporting Class for Ext.Direct (not intended to be used directly).
    
 * @constructor
 * @param {Object} config
 */
Ext.Direct.Transaction = function(config){
    Ext.apply(this, config);
    this.tid = ++Ext.Direct.TID;
    this.retryCount = 0;
};
Ext.Direct.Transaction.prototype = {
    send: function(){
        this.provider.queueTransaction(this);
    },

    retry: function(){
        this.retryCount++;
        this.send();
    },

    getProvider: function(){
        return this.provider;
    }
};Ext.Direct.Event = function(config){
    Ext.apply(this, config);
};

Ext.Direct.Event.prototype = {
    status: true,
    getData: function(){
        return this.data;
    }
};

Ext.Direct.RemotingEvent = Ext.extend(Ext.Direct.Event, {
    type: 'rpc',
    getTransaction: function(){
        return this.transaction || Ext.Direct.getTransaction(this.tid);
    }
});

Ext.Direct.ExceptionEvent = Ext.extend(Ext.Direct.RemotingEvent, {
    status: false,
    type: 'exception'
});

Ext.Direct.eventTypes = {
    'rpc':  Ext.Direct.RemotingEvent,
    'event':  Ext.Direct.Event,
    'exception':  Ext.Direct.ExceptionEvent
};
/**
 * @class Ext.direct.Provider
 * @extends Ext.util.Observable
 * 
    Ext.direct.Provider is an abstract class meant to be extended.
    
 * 
 * 
    For example ExtJs implements the following subclasses:
    
 * 
    
Provider
|
+---{@link Ext.direct.JsonProvider JsonProvider} 
    |
    +---{@link Ext.direct.PollingProvider PollingProvider}   
    |
    +---{@link Ext.direct.RemotingProvider RemotingProvider}   
 * 
    
 * @abstract
 */
Ext.direct.Provider = Ext.extend(Ext.util.Observable, {    
    /**
     * @cfg {String} id
     * The unique id of the provider (defaults to an {@link Ext#id auto-assigned id}).
     * You should assign an id if you need to be able to access the provider later and you do
     * not have an object reference available, for example:
     * 
    
Ext.Direct.addProvider(
    {
        type: 'polling',
        url:  'php/poll.php',
        id:   'poll-provider'
    }
);
     
var p = {@link Ext.Direct Ext.Direct}.{@link Ext.Direct#getProvider getProvider}('poll-provider');
p.disconnect();
     * 
    
     */
        
    /**
     * @cfg {Number} priority
     * Priority of the request. Lower is higher priority, 0 means "duplex" (always on).
     * All Providers default to 1 except for PollingProvider which defaults to 3.
     */    
    priority: 1,

    /**
     * @cfg {String} type
     * Required, undefined by default.  The type of provider specified
     * to {@link Ext.Direct Ext.Direct}.{@link Ext.Direct#addProvider addProvider} to create a
     * new Provider. Acceptable values by default are:
      
     * 
    • polling : {@link Ext.direct.PollingProvider PollingProvider}
      • 
     * 
    • remoting : {@link Ext.direct.RemotingProvider RemotingProvider}
      • 
     * 
    
     */    
 
    // private
    constructor : function(config){
        Ext.apply(this, config);
        this.addEvents(
            /**
             * @event connect
             * Fires when the Provider connects to the server-side
             * @param {Ext.direct.Provider} provider The {@link Ext.direct.Provider Provider}.
             */            
            'connect',
            /**
             * @event disconnect
             * Fires when the Provider disconnects from the server-side
             * @param {Ext.direct.Provider} provider The {@link Ext.direct.Provider Provider}.
             */            
            'disconnect',
            /**
             * @event data
             * Fires when the Provider receives data from the server-side
             * @param {Ext.direct.Provider} provider The {@link Ext.direct.Provider Provider}.
             * @param {event} e The {@link Ext.Direct#eventTypes Ext.Direct.Event type} that occurred.
             */            
            'data',
            /**
             * @event exception
             * Fires when the Provider receives an exception from the server-side
             */                        
            'exception'
        );
        Ext.direct.Provider.superclass.constructor.call(this, config);
    },

    /**
     * Returns whether or not the server-side is currently connected.
     * Abstract method for subclasses to implement.
     */
    isConnected: function(){
        return false;
    },

    /**
     * Abstract methods for subclasses to implement.
     */
    connect: Ext.emptyFn,
    
    /**
     * Abstract methods for subclasses to implement.
     */
    disconnect: Ext.emptyFn
});
/**
 * @class Ext.direct.JsonProvider
 * @extends Ext.direct.Provider
 */
Ext.direct.JsonProvider = Ext.extend(Ext.direct.Provider, {
    parseResponse: function(xhr){
        if(!Ext.isEmpty(xhr.responseText)){
            if(typeof xhr.responseText == 'object'){
                return xhr.responseText;
            }
            return Ext.decode(xhr.responseText);
        }
        return null;
    },

    getEvents: function(xhr){
        var data = null;
        try{
            data = this.parseResponse(xhr);
        }catch(e){
            var event = new Ext.Direct.ExceptionEvent({
                data: e,
                xhr: xhr,
                code: Ext.Direct.exceptions.PARSE,
                message: 'Error parsing json response: \n\n ' + data
            });
            return [event];
        }
        var events = [];
        if(Ext.isArray(data)){
            for(var i = 0, len = data.length; i < len; i++){
                events.push(Ext.Direct.createEvent(data[i]));
            }
        }else{
            events.push(Ext.Direct.createEvent(data));
        }
        return events;
    }
});/**
 * @class Ext.direct.PollingProvider
 * @extends Ext.direct.JsonProvider
 *
 * 
    Provides for repetitive polling of the server at distinct {@link #interval intervals}.
 * The initial request for data originates from the client, and then is responded to by the
 * server.
    
 *
 * 
    All configurations for the PollingProvider should be generated by the server-side
 * API portion of the Ext.Direct stack.
    
 *
 * 
    An instance of PollingProvider may be created directly via the new keyword or by simply
 * specifying type = 'polling'.  For example:
    
 * 
    
var pollA = new Ext.direct.PollingProvider({
    type:'polling',
    url: 'php/pollA.php',
});
Ext.Direct.addProvider(pollA);
pollA.disconnect();

Ext.Direct.addProvider(
    {
        type:'polling',
        url: 'php/pollB.php',
        id: 'pollB-provider'
    }
);
var pollB = Ext.Direct.getProvider('pollB-provider');
 * 
    
 */
Ext.direct.PollingProvider = Ext.extend(Ext.direct.JsonProvider, {
    /**
     * @cfg {Number} priority
     * Priority of the request (defaults to 3). See {@link Ext.direct.Provider#priority}.
     */
    // override default priority
    priority: 3,

    /**
     * @cfg {Number} interval
     * How often to poll the server-side in milliseconds (defaults to 3000 - every
     * 3 seconds).
     */
    interval: 3000,

    /**
     * @cfg {Object} baseParams An object containing properties which are to be sent as parameters
     * on every polling request
     */

    /**
     * @cfg {String/Function} url
     * The url which the PollingProvider should contact with each request. This can also be
     * an imported Ext.Direct method which will accept the baseParams as its only argument.
     */

    // private
    constructor : function(config){
        Ext.direct.PollingProvider.superclass.constructor.call(this, config);
        this.addEvents(
            /**
             * @event beforepoll
             * Fired immediately before a poll takes place, an event handler can return false
             * in order to cancel the poll.
             * @param {Ext.direct.PollingProvider} this
             */
            'beforepoll',
            /**
             * @event poll
             * This event has not yet been implemented.
             * @param {Ext.direct.PollingProvider} this
             */
            'poll'
        );
    },

    // inherited
    isConnected: function(){
        return !!this.pollTask;
    },

    /**
     * Connect to the server-side and begin the polling process. To handle each
     * response subscribe to the data event.
     */
    connect: function(){
        if(this.url && !this.pollTask){
            this.pollTask = Ext.TaskMgr.start({
                run: function(){
                    if(this.fireEvent('beforepoll', this) !== false){
                        if(typeof this.url == 'function'){
                            this.url(this.baseParams);
                        }else{
                            Ext.Ajax.request({
                                url: this.url,
                                callback: this.onData,
                                scope: this,
                                params: this.baseParams
                            });
                        }
                    }
                },
                interval: this.interval,
                scope: this
            });
            this.fireEvent('connect', this);
        }else if(!this.url){
            throw 'Error initializing PollingProvider, no url configured.';
        }
    },

    /**
     * Disconnect from the server-side and stop the polling process. The disconnect
     * event will be fired on a successful disconnect.
     */
    disconnect: function(){
        if(this.pollTask){
            Ext.TaskMgr.stop(this.pollTask);
            delete this.pollTask;
            this.fireEvent('disconnect', this);
        }
    },

    // private
    onData: function(opt, success, xhr){
        if(success){
            var events = this.getEvents(xhr);
            for(var i = 0, len = events.length; i < len; i++){
                var e = events[i];
                this.fireEvent('data', this, e);
            }
        }else{
            var e = new Ext.Direct.ExceptionEvent({
                data: e,
                code: Ext.Direct.exceptions.TRANSPORT,
                message: 'Unable to connect to the server.',
                xhr: xhr
            });
            this.fireEvent('data', this, e);
        }
    }
});

Ext.Direct.PROVIDERS['polling'] = Ext.direct.PollingProvider;/**
 * @class Ext.direct.RemotingProvider
 * @extends Ext.direct.JsonProvider
 * 
 * 
    The {@link Ext.direct.RemotingProvider RemotingProvider} exposes access to
 * server side methods on the client (a remote procedure call (RPC) type of
 * connection where the client can initiate a procedure on the server).
    
 * 
 * 
    This allows for code to be organized in a fashion that is maintainable,
 * while providing a clear path between client and server, something that is
 * not always apparent when using URLs.
    
 * 
 * 
    To accomplish this the server-side needs to describe what classes and methods
 * are available on the client-side. This configuration will typically be
 * outputted by the server-side Ext.Direct stack when the API description is built.
    
 */
Ext.direct.RemotingProvider = Ext.extend(Ext.direct.JsonProvider, {       
    /**
     * @cfg {Object} actions
     * Object literal defining the server side actions and methods. For example, if
     * the Provider is configured with:
     * 
    
"actions":{ // each property within the 'actions' object represents a server side Class 
    "TestAction":[ // array of methods within each server side Class to be   
    {              // stubbed out on client
        "name":"doEcho", 
        "len":1            
    },{
        "name":"multiply",// name of method
        "len":2           // The number of parameters that will be used to create an
                          // array of data to send to the server side function.
                          // Ensure the server sends back a Number, not a String. 
    },{
        "name":"doForm",
        "formHandler":true, // direct the client to use specialized form handling method 
        "len":1
    }]
}
     * 
    
     * 
    Note that a Store is not required, a server method can be called at any time.
     * In the following example a client side handler is used to call the
     * server side method "multiply" in the server-side "TestAction" Class:
    
     * 
    
TestAction.multiply(
    2, 4, // pass two arguments to server, so specify len=2
    // callback function after the server is called
    // result: the result returned by the server
    //      e: Ext.Direct.RemotingEvent object
    function(result, e){
        var t = e.getTransaction();
        var action = t.action; // server side Class called
        var method = t.method; // server side method called
        if(e.status){
            var answer = Ext.encode(result); // 8
    
        }else{
            var msg = e.message; // failure message
        }
    }
);
     * 
    
     * In the example above, the server side "multiply" function will be passed two
     * arguments (2 and 4).  The "multiply" method should return the value 8 which will be
     * available as the result in the example above. 
     */
    
    /**
     * @cfg {String/Object} namespace
     * Namespace for the Remoting Provider (defaults to the browser global scope of window).
     * Explicitly specify the namespace Object, or specify a String to have a
     * {@link Ext#namespace namespace created} implicitly.
     */
    
    /**
     * @cfg {String} url
     * Required. The url to connect to the {@link Ext.Direct} server-side router. 
     */
    
    /**
     * @cfg {String} enableUrlEncode
     * Specify which param will hold the arguments for the method.
     * Defaults to 'data'.
     */
    
    /**
     * @cfg {Number/Boolean} enableBuffer
     * 
    true or false to enable or disable combining of method
     * calls. If a number is specified this is the amount of time in milliseconds
     * to wait before sending a batched request (defaults to 10).
    
     * 
    Calls which are received within the specified timeframe will be
     * concatenated together and sent in a single request, optimizing the
     * application by reducing the amount of round trips that have to be made
     * to the server.
    
     */
    enableBuffer: 10,
    
    /**
     * @cfg {Number} maxRetries
     * Number of times to re-attempt delivery on failure of a call. Defaults to 1.
     */
    maxRetries: 1,
    
    /**
     * @cfg {Number} timeout
     * The timeout to use for each request. Defaults to undefined.
     */
    timeout: undefined,

    constructor : function(config){
        Ext.direct.RemotingProvider.superclass.constructor.call(this, config);
        this.addEvents(
            /**
             * @event beforecall
             * Fires immediately before the client-side sends off the RPC call.
             * By returning false from an event handler you can prevent the call from
             * executing.
             * @param {Ext.direct.RemotingProvider} provider
             * @param {Ext.Direct.Transaction} transaction
             * @param {Object} meta The meta data
             */            
            'beforecall',            
            /**
             * @event call
             * Fires immediately after the request to the server-side is sent. This does
             * NOT fire after the response has come back from the call.
             * @param {Ext.direct.RemotingProvider} provider
             * @param {Ext.Direct.Transaction} transaction
             * @param {Object} meta The meta data
             */            
            'call'
        );
        this.namespace = (Ext.isString(this.namespace)) ? Ext.ns(this.namespace) : this.namespace || window;
        this.transactions = {};
        this.callBuffer = [];
    },

    // private
    initAPI : function(){
        var o = this.actions;
        for(var c in o){
            var cls = this.namespace[c] || (this.namespace[c] = {}),
                ms = o[c];
            for(var i = 0, len = ms.length; i < len; i++){
                var m = ms[i];
                cls[m.name] = this.createMethod(c, m);
            }
        }
    },

    // inherited
    isConnected: function(){
        return !!this.connected;
    },

    connect: function(){
        if(this.url){
            this.initAPI();
            this.connected = true;
            this.fireEvent('connect', this);
        }else if(!this.url){
            throw 'Error initializing RemotingProvider, no url configured.';
        }
    },

    disconnect: function(){
        if(this.connected){
            this.connected = false;
            this.fireEvent('disconnect', this);
        }
    },

    onData: function(opt, success, xhr){
        if(success){
            var events = this.getEvents(xhr);
            for(var i = 0, len = events.length; i < len; i++){
                var e = events[i],
                    t = this.getTransaction(e);
                this.fireEvent('data', this, e);
                if(t){
                    this.doCallback(t, e, true);
                    Ext.Direct.removeTransaction(t);
                }
            }
        }else{
            var ts = [].concat(opt.ts);
            for(var i = 0, len = ts.length; i < len; i++){
                var t = this.getTransaction(ts[i]);
                if(t && t.retryCount < this.maxRetries){
                    t.retry();
                }else{
                    var e = new Ext.Direct.ExceptionEvent({
                        data: e,
                        transaction: t,
                        code: Ext.Direct.exceptions.TRANSPORT,
                        message: 'Unable to connect to the server.',
                        xhr: xhr
                    });
                    this.fireEvent('data', this, e);
                    if(t){
                        this.doCallback(t, e, false);
                        Ext.Direct.removeTransaction(t);
                    }
                }
            }
        }
    },

    getCallData: function(t){
        return {
            action: t.action,
            method: t.method,
            data: t.data,
            type: 'rpc',
            tid: t.tid
        };
    },

    doSend : function(data){
        var o = {
            url: this.url,
            callback: this.onData,
            scope: this,
            ts: data,
            timeout: this.timeout
        }, callData;

        if(Ext.isArray(data)){
            callData = [];
            for(var i = 0, len = data.length; i < len; i++){
                callData.push(this.getCallData(data[i]));
            }
        }else{
            callData = this.getCallData(data);
        }

        if(this.enableUrlEncode){
            var params = {};
            params[Ext.isString(this.enableUrlEncode) ? this.enableUrlEncode : 'data'] = Ext.encode(callData);
            o.params = params;
        }else{
            o.jsonData = callData;
        }
        Ext.Ajax.request(o);
    },

    combineAndSend : function(){
        var len = this.callBuffer.length;
        if(len > 0){
            this.doSend(len == 1 ? this.callBuffer[0] : this.callBuffer);
            this.callBuffer = [];
        }
    },

    queueTransaction: function(t){
        if(t.form){
            this.processForm(t);
            return;
        }
        this.callBuffer.push(t);
        if(this.enableBuffer){
            if(!this.callTask){
                this.callTask = new Ext.util.DelayedTask(this.combineAndSend, this);
            }
            this.callTask.delay(Ext.isNumber(this.enableBuffer) ? this.enableBuffer : 10);
        }else{
            this.combineAndSend();
        }
    },

    doCall : function(c, m, args){
        var data = null, hs = args[m.len], scope = args[m.len+1];

        if(m.len !== 0){
            data = args.slice(0, m.len);
        }

        var t = new Ext.Direct.Transaction({
            provider: this,
            args: args,
            action: c,
            method: m.name,
            data: data,
            cb: scope && Ext.isFunction(hs) ? hs.createDelegate(scope) : hs
        });

        if(this.fireEvent('beforecall', this, t, m) !== false){
            Ext.Direct.addTransaction(t);
            this.queueTransaction(t);
            this.fireEvent('call', this, t, m);
        }
    },

    doForm : function(c, m, form, callback, scope){
        var t = new Ext.Direct.Transaction({
            provider: this,
            action: c,
            method: m.name,
            args:[form, callback, scope],
            cb: scope && Ext.isFunction(callback) ? callback.createDelegate(scope) : callback,
            isForm: true
        });

        if(this.fireEvent('beforecall', this, t, m) !== false){
            Ext.Direct.addTransaction(t);
            var isUpload = String(form.getAttribute("enctype")).toLowerCase() == 'multipart/form-data',
                params = {
                    extTID: t.tid,
                    extAction: c,
                    extMethod: m.name,
                    extType: 'rpc',
                    extUpload: String(isUpload)
                };
            
            // change made from typeof callback check to callback.params
            // to support addl param passing in DirectSubmit EAC 6/2
            Ext.apply(t, {
                form: Ext.getDom(form),
                isUpload: isUpload,
                params: callback && Ext.isObject(callback.params) ? Ext.apply(params, callback.params) : params
            });
            this.fireEvent('call', this, t, m);
            this.processForm(t);
        }
    },
    
    processForm: function(t){
        Ext.Ajax.request({
            url: this.url,
            params: t.params,
            callback: this.onData,
            scope: this,
            form: t.form,
            isUpload: t.isUpload,
            ts: t
        });
    },

    createMethod : function(c, m){
        var f;
        if(!m.formHandler){
            f = function(){
                this.doCall(c, m, Array.prototype.slice.call(arguments, 0));
            }.createDelegate(this);
        }else{
            f = function(form, callback, scope){
                this.doForm(c, m, form, callback, scope);
            }.createDelegate(this);
        }
        f.directCfg = {
            action: c,
            method: m
        };
        return f;
    },

    getTransaction: function(opt){
        return opt && opt.tid ? Ext.Direct.getTransaction(opt.tid) : null;
    },

    doCallback: function(t, e){
        var fn = e.status ? 'success' : 'failure';
        if(t && t.cb){
            var hs = t.cb,
                result = Ext.isDefined(e.result) ? e.result : e.data;
            if(Ext.isFunction(hs)){
                hs(result, e);
            } else{
                Ext.callback(hs[fn], hs.scope, [result, e]);
                Ext.callback(hs.callback, hs.scope, [result, e]);
            }
        }
    }
});
Ext.Direct.PROVIDERS['remoting'] = Ext.direct.RemotingProvider;/**
 * @class Ext.Resizable
 * @extends Ext.util.Observable
 * 
    Applies drag handles to an element to make it resizable. The drag handles are inserted into the element
 * and positioned absolute. Some elements, such as a textarea or image, don't support this. To overcome that, you can wrap
 * the textarea in a div and set 'resizeChild' to true (or to the id of the element), or set wrap:true in your config and
 * the element will be wrapped for you automatically.
    
 * 
    Here is the list of valid resize handles:
    
 * 
    Value   Description
------  -------------------
 'n'     north
 's'     south
 'e'     east
 'w'     west
 'nw'    northwest
 'sw'    southwest
 'se'    southeast
 'ne'    northeast
 'all'   all

    
 * 
    Here's an example showing the creation of a typical Resizable:
    
 * 
    
var resizer = new Ext.Resizable('element-id', {
    handles: 'all',
    minWidth: 200,
    minHeight: 100,
    maxWidth: 500,
    maxHeight: 400,
    pinned: true
});
resizer.on('resize', myHandler);

    
 * 
    To hide a particular handle, set its display to none in CSS, or through script:
    
 * resizer.east.setDisplayed(false);
    
 * @constructor
 * Create a new resizable component
 * @param {Mixed} el The id or element to resize
 * @param {Object} config configuration options
  */
Ext.Resizable = Ext.extend(Ext.util.Observable, {

    constructor: function(el, config){
        this.el = Ext.get(el);
        if(config && config.wrap){
            config.resizeChild = this.el;
            this.el = this.el.wrap(typeof config.wrap == 'object' ? config.wrap : {cls:'xresizable-wrap'});
            this.el.id = this.el.dom.id = config.resizeChild.id + '-rzwrap';
            this.el.setStyle('overflow', 'hidden');
            this.el.setPositioning(config.resizeChild.getPositioning());
            config.resizeChild.clearPositioning();
            if(!config.width || !config.height){
                var csize = config.resizeChild.getSize();
                this.el.setSize(csize.width, csize.height);
            }
            if(config.pinned && !config.adjustments){
                config.adjustments = 'auto';
            }
        }

        /**
         * The proxy Element that is resized in place of the real Element during the resize operation.
         * This may be queried using {@link Ext.Element#getBox} to provide the new area to resize to.
         * Read only.
         * @type Ext.Element
         * @property proxy
         */
        this.proxy = this.el.createProxy({tag: 'div', cls: 'x-resizable-proxy', id: this.el.id + '-rzproxy'}, Ext.getBody());
        this.proxy.unselectable();
        this.proxy.enableDisplayMode('block');

        Ext.apply(this, config);

        if(this.pinned){
            this.disableTrackOver = true;
            this.el.addClass('x-resizable-pinned');
        }
        // if the element isn't positioned, make it relative
        var position = this.el.getStyle('position');
        if(position != 'absolute' && position != 'fixed'){
            this.el.setStyle('position', 'relative');
        }
        if(!this.handles){ // no handles passed, must be legacy style
            this.handles = 's,e,se';
            if(this.multiDirectional){
                this.handles += ',n,w';
            }
        }
        if(this.handles == 'all'){
            this.handles = 'n s e w ne nw se sw';
        }
        var hs = this.handles.split(/\s*?[,;]\s*?| /);
        var ps = Ext.Resizable.positions;
        for(var i = 0, len = hs.length; i < len; i++){
            if(hs[i] && ps[hs[i]]){
                var pos = ps[hs[i]];
                this[pos] = new Ext.Resizable.Handle(this, pos, this.disableTrackOver, this.transparent, this.handleCls);
            }
        }
        // legacy
        this.corner = this.southeast;

        if(this.handles.indexOf('n') != -1 || this.handles.indexOf('w') != -1){
            this.updateBox = true;
        }

        this.activeHandle = null;

        if(this.resizeChild){
            if(typeof this.resizeChild == 'boolean'){
                this.resizeChild = Ext.get(this.el.dom.firstChild, true);
            }else{
                this.resizeChild = Ext.get(this.resizeChild, true);
            }
        }

        if(this.adjustments == 'auto'){
            var rc = this.resizeChild;
            var hw = this.west, he = this.east, hn = this.north, hs = this.south;
            if(rc && (hw || hn)){
                rc.position('relative');
                rc.setLeft(hw ? hw.el.getWidth() : 0);
                rc.setTop(hn ? hn.el.getHeight() : 0);
            }
            this.adjustments = [
                (he ? -he.el.getWidth() : 0) + (hw ? -hw.el.getWidth() : 0),
                (hn ? -hn.el.getHeight() : 0) + (hs ? -hs.el.getHeight() : 0) -1
            ];
        }

        if(this.draggable){
            this.dd = this.dynamic ?
                this.el.initDD(null) : this.el.initDDProxy(null, {dragElId: this.proxy.id});
            this.dd.setHandleElId(this.resizeChild ? this.resizeChild.id : this.el.id);
            if(this.constrainTo){
                this.dd.constrainTo(this.constrainTo);
            }
        }

        this.addEvents(
            /**
             * @event beforeresize
             * Fired before resize is allowed. Set {@link #enabled} to false to cancel resize.
             * @param {Ext.Resizable} this
             * @param {Ext.EventObject} e The mousedown event
             */
            'beforeresize',
            /**
             * @event resize
             * Fired after a resize.
             * @param {Ext.Resizable} this
             * @param {Number} width The new width
             * @param {Number} height The new height
             * @param {Ext.EventObject} e The mouseup event
             */
            'resize'
        );

        if(this.width !== null && this.height !== null){
            this.resizeTo(this.width, this.height);
        }else{
            this.updateChildSize();
        }
        if(Ext.isIE){
            this.el.dom.style.zoom = 1;
        }
        Ext.Resizable.superclass.constructor.call(this);
    },

    /**
     * @cfg {Array/String} adjustments String 'auto' or an array [width, height] with values to be added to the
     * resize operation's new size (defaults to [0, 0])
     */
    adjustments : [0, 0],
    /**
     * @cfg {Boolean} animate True to animate the resize (not compatible with dynamic sizing, defaults to false)
     */
    animate : false,
    /**
     * @cfg {Mixed} constrainTo Constrain the resize to a particular element
     */
    /**
     * @cfg {Boolean} disableTrackOver True to disable mouse tracking. This is only applied at config time. (defaults to false)
     */
    disableTrackOver : false,
    /**
     * @cfg {Boolean} draggable Convenience to initialize drag drop (defaults to false)
     */
    draggable: false,
    /**
     * @cfg {Number} duration Animation duration if animate = true (defaults to 0.35)
     */
    duration : 0.35,
    /**
     * @cfg {Boolean} dynamic True to resize the element while dragging instead of using a proxy (defaults to false)
     */
    dynamic : false,
    /**
     * @cfg {String} easing Animation easing if animate = true (defaults to 'easingOutStrong')
     */
    easing : 'easeOutStrong',
    /**
     * @cfg {Boolean} enabled False to disable resizing (defaults to true)
     */
    enabled : true,
    /**
     * @property enabled Writable. False if resizing is disabled.
     * @type Boolean
     */
    /**
     * @cfg {String} handles String consisting of the resize handles to display (defaults to undefined).
     * Specify either 'all' or any of 'n s e w ne nw se sw'.
     */
    handles : false,
    /**
     * @cfg {Boolean} multiDirectional Deprecated.  Deprecated style of adding multi-direction resize handles.
     */
    multiDirectional : false,
    /**
     * @cfg {Number} height The height of the element in pixels (defaults to null)
     */
    height : null,
    /**
     * @cfg {Number} width The width of the element in pixels (defaults to null)
     */
    width : null,
    /**
     * @cfg {Number} heightIncrement The increment to snap the height resize in pixels
     * (only applies if {@link #dynamic}==true). Defaults to 0.
     */
    heightIncrement : 0,
    /**
     * @cfg {Number} widthIncrement The increment to snap the width resize in pixels
     * (only applies if {@link #dynamic}==true). Defaults to 0.
     */
    widthIncrement : 0,
    /**
     * @cfg {Number} minHeight The minimum height for the element (defaults to 5)
     */
    minHeight : 5,
    /**
     * @cfg {Number} minWidth The minimum width for the element (defaults to 5)
     */
    minWidth : 5,
    /**
     * @cfg {Number} maxHeight The maximum height for the element (defaults to 10000)
     */
    maxHeight : 10000,
    /**
     * @cfg {Number} maxWidth The maximum width for the element (defaults to 10000)
     */
    maxWidth : 10000,
    /**
     * @cfg {Number} minX The minimum x for the element (defaults to 0)
     */
    minX: 0,
    /**
     * @cfg {Number} minY The minimum x for the element (defaults to 0)
     */
    minY: 0,
    /**
     * @cfg {Boolean} pinned True to ensure that the resize handles are always visible, false to display them only when the
     * user mouses over the resizable borders. This is only applied at config time. (defaults to false)
     */
    pinned : false,
    /**
     * @cfg {Boolean} preserveRatio True to preserve the original ratio between height
     * and width during resize (defaults to false)
     */
    preserveRatio : false,
    /**
     * @cfg {Boolean/String/Element} resizeChild True to resize the first child, or id/element to resize (defaults to false)
     */
    resizeChild : false,
    /**
     * @cfg {Boolean} transparent True for transparent handles. This is only applied at config time. (defaults to false)
     */
    transparent: false,
    /**
     * @cfg {Ext.lib.Region} resizeRegion Constrain the resize to a particular region
     */
    /**
     * @cfg {Boolean} wrap True to wrap an element with a div if needed (required for textareas and images, defaults to false)
     * in favor of the handles config option (defaults to false)
     */
    /**
     * @cfg {String} handleCls A css class to add to each handle. Defaults to ''.
     */


    /**
     * Perform a manual resize and fires the 'resize' event.
     * @param {Number} width
     * @param {Number} height
     */
    resizeTo : function(width, height){
        this.el.setSize(width, height);
        this.updateChildSize();
        this.fireEvent('resize', this, width, height, null);
    },

    // private
    startSizing : function(e, handle){
        this.fireEvent('beforeresize', this, e);
        if(this.enabled){ // 2nd enabled check in case disabled before beforeresize handler

            if(!this.overlay){
                this.overlay = this.el.createProxy({tag: 'div', cls: 'x-resizable-overlay', html: ' '}, Ext.getBody());
                this.overlay.unselectable();
                this.overlay.enableDisplayMode('block');
                this.overlay.on({
                    scope: this,
                    mousemove: this.onMouseMove,
                    mouseup: this.onMouseUp
                });
            }
            this.overlay.setStyle('cursor', handle.el.getStyle('cursor'));

            this.resizing = true;
            this.startBox = this.el.getBox();
            this.startPoint = e.getXY();
            this.offsets = [(this.startBox.x + this.startBox.width) - this.startPoint[0],
                            (this.startBox.y + this.startBox.height) - this.startPoint[1]];

            this.overlay.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true));
            this.overlay.show();

            if(this.constrainTo) {
                var ct = Ext.get(this.constrainTo);
                this.resizeRegion = ct.getRegion().adjust(
                    ct.getFrameWidth('t'),
                    ct.getFrameWidth('l'),
                    -ct.getFrameWidth('b'),
                    -ct.getFrameWidth('r')
                );
            }

            this.proxy.setStyle('visibility', 'hidden'); // workaround display none
            this.proxy.show();
            this.proxy.setBox(this.startBox);
            if(!this.dynamic){
                this.proxy.setStyle('visibility', 'visible');
            }
        }
    },

    // private
    onMouseDown : function(handle, e){
        if(this.enabled){
            e.stopEvent();
            this.activeHandle = handle;
            this.startSizing(e, handle);
        }
    },

    // private
    onMouseUp : function(e){
        this.activeHandle = null;
        var size = this.resizeElement();
        this.resizing = false;
        this.handleOut();
        this.overlay.hide();
        this.proxy.hide();
        this.fireEvent('resize', this, size.width, size.height, e);
    },

    // private
    updateChildSize : function(){
        if(this.resizeChild){
            var el = this.el;
            var child = this.resizeChild;
            var adj = this.adjustments;
            if(el.dom.offsetWidth){
                var b = el.getSize(true);
                child.setSize(b.width+adj[0], b.height+adj[1]);
            }
            // Second call here for IE
            // The first call enables instant resizing and
            // the second call corrects scroll bars if they
            // exist
            if(Ext.isIE9m){
                setTimeout(function(){
                    if(el.dom.offsetWidth){
                        var b = el.getSize(true);
                        child.setSize(b.width+adj[0], b.height+adj[1]);
                    }
                }, 10);
            }
        }
    },

    // private
    snap : function(value, inc, min){
        if(!inc || !value){
            return value;
        }
        var newValue = value;
        var m = value % inc;
        if(m > 0){
            if(m > (inc/2)){
                newValue = value + (inc-m);
            }else{
                newValue = value - m;
            }
        }
        return Math.max(min, newValue);
    },

    /**
     * 
    Performs resizing of the associated Element. This method is called internally by this
     * class, and should not be called by user code.
    
     * 
    If a Resizable is being used to resize an Element which encapsulates a more complex UI
     * component such as a Panel, this method may be overridden by specifying an implementation
     * as a config option to provide appropriate behaviour at the end of the resize operation on
     * mouseup, for example resizing the Panel, and relaying the Panel's content.
    
     * 
    The new area to be resized to is available by examining the state of the {@link #proxy}
     * Element. Example:

    
new Ext.Panel({
    title: 'Resize me',
    x: 100,
    y: 100,
    renderTo: Ext.getBody(),
    floating: true,
    frame: true,
    width: 400,
    height: 200,
    listeners: {
        render: function(p) {
            new Ext.Resizable(p.getEl(), {
                handles: 'all',
                pinned: true,
                transparent: true,
                resizeElement: function() {
                    var box = this.proxy.getBox();
                    p.updateBox(box);
                    if (p.layout) {
                        p.doLayout();
                    }
                    return box;
                }
           });
       }
    }
}).show();

    
     */
    resizeElement : function(){
        var box = this.proxy.getBox();
        if(this.updateBox){
            this.el.setBox(box, false, this.animate, this.duration, null, this.easing);
        }else{
            this.el.setSize(box.width, box.height, this.animate, this.duration, null, this.easing);
        }
        this.updateChildSize();
        if(!this.dynamic){
            this.proxy.hide();
        }
        if(this.draggable && this.constrainTo){
            this.dd.resetConstraints();
            this.dd.constrainTo(this.constrainTo);
        }
        return box;
    },

    // private
    constrain : function(v, diff, m, mx){
        if(v - diff < m){
            diff = v - m;
        }else if(v - diff > mx){
            diff = v - mx;
        }
        return diff;
    },

    // private
    onMouseMove : function(e){
        if(this.enabled && this.activeHandle){
            try{// try catch so if something goes wrong the user doesn't get hung

            if(this.resizeRegion && !this.resizeRegion.contains(e.getPoint())) {
                return;
            }

            //var curXY = this.startPoint;
            var curSize = this.curSize || this.startBox,
                x = this.startBox.x, y = this.startBox.y,
                ox = x,
                oy = y,
                w = curSize.width,
                h = curSize.height,
                ow = w,
                oh = h,
                mw = this.minWidth,
                mh = this.minHeight,
                mxw = this.maxWidth,
                mxh = this.maxHeight,
                wi = this.widthIncrement,
                hi = this.heightIncrement,
                eventXY = e.getXY(),
                diffX = -(this.startPoint[0] - Math.max(this.minX, eventXY[0])),
                diffY = -(this.startPoint[1] - Math.max(this.minY, eventXY[1])),
                pos = this.activeHandle.position,
                tw,
                th;

            switch(pos){
                case 'east':
                    w += diffX;
                    w = Math.min(Math.max(mw, w), mxw);
                    break;
                case 'south':
                    h += diffY;
                    h = Math.min(Math.max(mh, h), mxh);
                    break;
                case 'southeast':
                    w += diffX;
                    h += diffY;
                    w = Math.min(Math.max(mw, w), mxw);
                    h = Math.min(Math.max(mh, h), mxh);
                    break;
                case 'north':
                    diffY = this.constrain(h, diffY, mh, mxh);
                    y += diffY;
                    h -= diffY;
                    break;
                case 'west':
                    diffX = this.constrain(w, diffX, mw, mxw);
                    x += diffX;
                    w -= diffX;
                    break;
                case 'northeast':
                    w += diffX;
                    w = Math.min(Math.max(mw, w), mxw);
                    diffY = this.constrain(h, diffY, mh, mxh);
                    y += diffY;
                    h -= diffY;
                    break;
                case 'northwest':
                    diffX = this.constrain(w, diffX, mw, mxw);
                    diffY = this.constrain(h, diffY, mh, mxh);
                    y += diffY;
                    h -= diffY;
                    x += diffX;
                    w -= diffX;
                    break;
               case 'southwest':
                    diffX = this.constrain(w, diffX, mw, mxw);
                    h += diffY;
                    h = Math.min(Math.max(mh, h), mxh);
                    x += diffX;
                    w -= diffX;
                    break;
            }

            var sw = this.snap(w, wi, mw);
            var sh = this.snap(h, hi, mh);
            if(sw != w || sh != h){
                switch(pos){
                    case 'northeast':
                        y -= sh - h;
                    break;
                    case 'north':
                        y -= sh - h;
                        break;
                    case 'southwest':
                        x -= sw - w;
                    break;
                    case 'west':
                        x -= sw - w;
                        break;
                    case 'northwest':
                        x -= sw - w;
                        y -= sh - h;
                    break;
                }
                w = sw;
                h = sh;
            }

            if(this.preserveRatio){
                switch(pos){
                    case 'southeast':
                    case 'east':
                        h = oh * (w/ow);
                        h = Math.min(Math.max(mh, h), mxh);
                        w = ow * (h/oh);
                       break;
                    case 'south':
                        w = ow * (h/oh);
                        w = Math.min(Math.max(mw, w), mxw);
                        h = oh * (w/ow);
                        break;
                    case 'northeast':
                        w = ow * (h/oh);
                        w = Math.min(Math.max(mw, w), mxw);
                        h = oh * (w/ow);
                    break;
                    case 'north':
                        tw = w;
                        w = ow * (h/oh);
                        w = Math.min(Math.max(mw, w), mxw);
                        h = oh * (w/ow);
                        x += (tw - w) / 2;
                        break;
                    case 'southwest':
                        h = oh * (w/ow);
                        h = Math.min(Math.max(mh, h), mxh);
                        tw = w;
                        w = ow * (h/oh);
                        x += tw - w;
                        break;
                    case 'west':
                        th = h;
                        h = oh * (w/ow);
                        h = Math.min(Math.max(mh, h), mxh);
                        y += (th - h) / 2;
                        tw = w;
                        w = ow * (h/oh);
                        x += tw - w;
                       break;
                    case 'northwest':
                        tw = w;
                        th = h;
                        h = oh * (w/ow);
                        h = Math.min(Math.max(mh, h), mxh);
                        w = ow * (h/oh);
                        y += th - h;
                        x += tw - w;
                        break;

                }
            }
            this.proxy.setBounds(x, y, w, h);
            if(this.dynamic){
                this.resizeElement();
            }
            }catch(ex){}
        }
    },

    // private
    handleOver : function(){
        if(this.enabled){
            this.el.addClass('x-resizable-over');
        }
    },

    // private
    handleOut : function(){
        if(!this.resizing){
            this.el.removeClass('x-resizable-over');
        }
    },

    /**
     * Returns the element this component is bound to.
     * @return {Ext.Element}
     */
    getEl : function(){
        return this.el;
    },

    /**
     * Returns the resizeChild element (or null).
     * @return {Ext.Element}
     */
    getResizeChild : function(){
        return this.resizeChild;
    },

    /**
     * Destroys this resizable. If the element was wrapped and
     * removeEl is not true then the element remains.
     * @param {Boolean} removeEl (optional) true to remove the element from the DOM
     */
    destroy : function(removeEl){
        Ext.destroy(this.dd, this.overlay, this.proxy);
        this.overlay = null;
        this.proxy = null;

        var ps = Ext.Resizable.positions;
        for(var k in ps){
            if(typeof ps[k] != 'function' && this[ps[k]]){
                this[ps[k]].destroy();
            }
        }
        if(removeEl){
            this.el.update('');
            Ext.destroy(this.el);
            this.el = null;
        }
        this.purgeListeners();
    },

    syncHandleHeight : function(){
        var h = this.el.getHeight(true);
        if(this.west){
            this.west.el.setHeight(h);
        }
        if(this.east){
            this.east.el.setHeight(h);
        }
    }
});

// private
// hash to map config positions to true positions
Ext.Resizable.positions = {
    n: 'north', s: 'south', e: 'east', w: 'west', se: 'southeast', sw: 'southwest', nw: 'northwest', ne: 'northeast'
};

Ext.Resizable.Handle = Ext.extend(Object, {
    constructor : function(rz, pos, disableTrackOver, transparent, cls){
       if(!this.tpl){
            // only initialize the template if resizable is used
            var tpl = Ext.DomHelper.createTemplate(
                {tag: 'div', cls: 'x-resizable-handle x-resizable-handle-{0}'}
            );
            tpl.compile();
            Ext.Resizable.Handle.prototype.tpl = tpl;
        }
        this.position = pos;
        this.rz = rz;
        this.el = this.tpl.append(rz.el.dom, [this.position], true);
        this.el.unselectable();
        if(transparent){
            this.el.setOpacity(0);
        }
        if(!Ext.isEmpty(cls)){
            this.el.addClass(cls);
        }
        this.el.on('mousedown', this.onMouseDown, this);
        if(!disableTrackOver){
            this.el.on({
                scope: this,
                mouseover: this.onMouseOver,
                mouseout: this.onMouseOut
            });
        }
    },

    // private
    afterResize : function(rz){
        // do nothing
    },
    // private
    onMouseDown : function(e){
        this.rz.onMouseDown(this, e);
    },
    // private
    onMouseOver : function(e){
        this.rz.handleOver(this, e);
    },
    // private
    onMouseOut : function(e){
        this.rz.handleOut(this, e);
    },
    // private
    destroy : function(){
        Ext.destroy(this.el);
        this.el = null;
    }
});
/**
 * @class Ext.Window
 * @extends Ext.Panel
 * 
    A specialized panel intended for use as an application window.  Windows are floated, {@link #resizable}, and
 * {@link #draggable} by default.  Windows can be {@link #maximizable maximized} to fill the viewport,
 * restored to their prior size, and can be {@link #minimize}d.
    
 * 
    Windows can also be linked to a {@link Ext.WindowGroup} or managed by the {@link Ext.WindowMgr} to provide
 * grouping, activation, to front, to back and other application-specific behavior.
    
 * 
    By default, Windows will be rendered to document.body. To {@link #constrain} a Window to another element
 * specify {@link Ext.Component#renderTo renderTo}.
    
 * 
    Note: By default, the {@link #closable close} header tool destroys the Window resulting in
 * destruction of any child Components. This makes the Window object, and all its descendants unusable. To enable
 * re-use of a Window, use {@link #closeAction closeAction: 'hide'}.
    
 * @constructor
 * @param {Object} config The config object
 * @xtype window
 */
Ext.Window = Ext.extend(Ext.Panel, {
    /**
     * @cfg {Number} x
     * The X position of the left edge of the window on initial showing. Defaults to centering the Window within
     * the width of the Window's container {@link Ext.Element Element) (The Element that the Window is rendered to).
     */
    /**
     * @cfg {Number} y
     * The Y position of the top edge of the window on initial showing. Defaults to centering the Window within
     * the height of the Window's container {@link Ext.Element Element) (The Element that the Window is rendered to).
     */
    /**
     * @cfg {Boolean} modal
     * True to make the window modal and mask everything behind it when displayed, false to display it without
     * restricting access to other UI elements (defaults to false).
     */
    /**
     * @cfg {String/Element} animateTarget
     * Id or element from which the window should animate while opening (defaults to null with no animation).
     */
    /**
     * @cfg {String} resizeHandles
     * A valid {@link Ext.Resizable} handles config string (defaults to 'all').  Only applies when resizable = true.
     */
    /**
     * @cfg {Ext.WindowGroup} manager
     * A reference to the WindowGroup that should manage this window (defaults to {@link Ext.WindowMgr}).
     */
    /**
    * @cfg {String/Number/Component} defaultButton
    * 
    Specifies a Component to receive focus when this Window is focussed.
    
    * 
    This may be one of:
      
    * 
    • The index of a footer Button.
      • 
    * 
    • The id of a Component.
      • 
    * 
    • A Component.
      • 
    * 
    
    */
    /**
    * @cfg {Function} onEsc
    * Allows override of the built-in processing for the escape key. Default action
    * is to close the Window (performing whatever action is specified in {@link #closeAction}.
    * To prevent the Window closing when the escape key is pressed, specify this as
    * Ext.emptyFn (See {@link Ext#emptyFn}).
    */
    /**
     * @cfg {Boolean} collapsed
     * True to render the window collapsed, false to render it expanded (defaults to false). Note that if
     * {@link #expandOnShow} is true (the default) it will override the collapsed config and the window
     * will always be expanded when shown.
     */
    /**
     * @cfg {Boolean} maximized
     * True to initially display the window in a maximized state. (Defaults to false).
     */

    /**
    * @cfg {String} baseCls
    * The base CSS class to apply to this panel's element (defaults to 'x-window').
    */
    baseCls : 'x-window',
    /**
     * @cfg {Boolean} resizable
     * True to allow user resizing at each edge and corner of the window, false to disable resizing (defaults to true).
     */
    resizable : true,
    /**
     * @cfg {Boolean} draggable
     * True to allow the window to be dragged by the header bar, false to disable dragging (defaults to true).  Note
     * that by default the window will be centered in the viewport, so if dragging is disabled the window may need
     * to be positioned programmatically after render (e.g., myWindow.setPosition(100, 100);).
     */
    draggable : true,
    /**
     * @cfg {Boolean} closable
     * 
    True to display the 'close' tool button and allow the user to close the window, false to
     * hide the button and disallow closing the window (defaults to true).
    
     * 
    By default, when close is requested by either clicking the close button in the header
     * or pressing ESC when the Window has focus, the {@link #close} method will be called. This
     * will {@link Ext.Component#destroy destroy} the Window and its content meaning that
     * it may not be reused.
    
     * 
    To make closing a Window hide the Window so that it may be reused, set
     * {@link #closeAction} to 'hide'.
     */
    closable : true,
    /**
     * @cfg {String} closeAction
     * 
    The action to take when the close header tool is clicked:
     * 
      
     * 
    • '{@link #close}' : Default
      
     * {@link #close remove} the window from the DOM and {@link Ext.Component#destroy destroy}
     * it and all descendant Components. The window will not be available to be
     * redisplayed via the {@link #show} method.
     * 
      • 
     * 
    • '{@link #hide}' : 
      
     * {@link #hide} the window by setting visibility to hidden and applying negative offsets.
     * The window will be available to be redisplayed via the {@link #show} method.
     * 
      • 
     * 
    
     * 
    Note: This setting does not affect the {@link #close} method
     * which will always {@link Ext.Component#destroy destroy} the window. To
     * programatically hide a window, call {@link #hide}.
    
     */
    closeAction : 'close',
    /**
     * @cfg {Boolean} constrain
     * True to constrain the window within its containing element, false to allow it to fall outside of its
     * containing element. By default the window will be rendered to document.body.  To render and constrain the
     * window within another element specify {@link #renderTo}.
     * (defaults to false).  Optionally the header only can be constrained using {@link #constrainHeader}.
     */
    constrain : false,
    /**
     * @cfg {Boolean} constrainHeader
     * True to constrain the window header within its containing element (allowing the window body to fall outside
     * of its containing element) or false to allow the header to fall outside its containing element (defaults to
     * false). Optionally the entire window can be constrained using {@link #constrain}.
     */
    constrainHeader : false,
    /**
     * @cfg {Boolean} plain
     * True to render the window body with a transparent background so that it will blend into the framing
     * elements, false to add a lighter background color to visually highlight the body element and separate it
     * more distinctly from the surrounding frame (defaults to false).
     */
    plain : false,
    /**
     * @cfg {Boolean} minimizable
     * True to display the 'minimize' tool button and allow the user to minimize the window, false to hide the button
     * and disallow minimizing the window (defaults to false).  Note that this button provides no implementation --
     * the behavior of minimizing a window is implementation-specific, so the minimize event must be handled and a
     * custom minimize behavior implemented for this option to be useful.
     */
    minimizable : false,
    /**
     * @cfg {Boolean} maximizable
     * True to display the 'maximize' tool button and allow the user to maximize the window, false to hide the button
     * and disallow maximizing the window (defaults to false).  Note that when a window is maximized, the tool button
     * will automatically change to a 'restore' button with the appropriate behavior already built-in that will
     * restore the window to its previous size.
     */
    maximizable : false,
    /**
     * @cfg {Number} minHeight
     * The minimum height in pixels allowed for this window (defaults to 100).  Only applies when resizable = true.
     */
    minHeight : 100,
    /**
     * @cfg {Number} minWidth
     * The minimum width in pixels allowed for this window (defaults to 200).  Only applies when resizable = true.
     */
    minWidth : 200,
    /**
     * @cfg {Boolean} expandOnShow
     * True to always expand the window when it is displayed, false to keep it in its current state (which may be
     * {@link #collapsed}) when displayed (defaults to true).
     */
    expandOnShow : true,
    
    /**
     * @cfg {Number} showAnimDuration The number of seconds that the window show animation takes if enabled.
     * Defaults to 0.25
     */
    showAnimDuration: 0.25,
    
    /**
     * @cfg {Number} hideAnimDuration The number of seconds that the window hide animation takes if enabled.
     * Defaults to 0.25
     */
    hideAnimDuration: 0.25,

    // inherited docs, same default
    collapsible : false,

    /**
     * @cfg {Boolean} initHidden
     * True to hide the window until show() is explicitly called (defaults to true).
     * @deprecated
     */
    initHidden : undefined,

    /**
     * @cfg {Boolean} hidden
     * Render this component hidden (default is true). If true, the
     * {@link #hide} method will be called internally.
     */
    hidden : true,

    // The following configs are set to provide the basic functionality of a window.
    // Changing them would require additional code to handle correctly and should
    // usually only be done in subclasses that can provide custom behavior.  Changing them
    // may have unexpected or undesirable results.
    /** @cfg {String} elements @hide */
    elements : 'header,body',
    /** @cfg {Boolean} frame @hide */
    frame : true,
    /** @cfg {Boolean} floating @hide */
    floating : true,

    // private
    initComponent : function(){
        this.initTools();
        Ext.Window.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event activate
             * Fires after the window has been visually activated via {@link #setActive}.
             * @param {Ext.Window} this
             */
            /**
             * @event deactivate
             * Fires after the window has been visually deactivated via {@link #setActive}.
             * @param {Ext.Window} this
             */
            /**
             * @event resize
             * Fires after the window has been resized.
             * @param {Ext.Window} this
             * @param {Number} width The window's new width
             * @param {Number} height The window's new height
             */
            'resize',
            /**
             * @event maximize
             * Fires after the window has been maximized.
             * @param {Ext.Window} this
             */
            'maximize',
            /**
             * @event minimize
             * Fires after the window has been minimized.
             * @param {Ext.Window} this
             */
            'minimize',
            /**
             * @event restore
             * Fires after the window has been restored to its original size after being maximized.
             * @param {Ext.Window} this
             */
            'restore'
        );
        // for backwards compat, this should be removed at some point
        if(Ext.isDefined(this.initHidden)){
            this.hidden = this.initHidden;
        }
        if(this.hidden === false){
            this.hidden = true;
            this.show();
        }
    },

    // private
    getState : function(){
        return Ext.apply(Ext.Window.superclass.getState.call(this) || {}, this.getBox(true));
    },

    // private
    onRender : function(ct, position){
        Ext.Window.superclass.onRender.call(this, ct, position);

        if(this.plain){
            this.el.addClass('x-window-plain');
        }

        // this element allows the Window to be focused for keyboard events
        this.focusEl = this.el.createChild({
                    tag: 'a', href:'#', cls:'x-dlg-focus',
                    tabIndex:'-1', html: ' '});
        this.focusEl.swallowEvent('click', true);

        this.proxy = this.el.createProxy('x-window-proxy');
        this.proxy.enableDisplayMode('block');

        if(this.modal){
            this.mask = this.container.createChild({cls:'ext-el-mask'}, this.el.dom);
            this.mask.enableDisplayMode('block');
            this.mask.hide();
            this.mon(this.mask, 'click', this.focus, this);
        }
        if(this.maximizable){
            this.mon(this.header, 'dblclick', this.toggleMaximize, this);
        }
    },

    // private
    initEvents : function(){
        Ext.Window.superclass.initEvents.call(this);
        if(this.animateTarget){
            this.setAnimateTarget(this.animateTarget);
        }

        if(this.resizable){
            this.resizer = new Ext.Resizable(this.el, {
                minWidth: this.minWidth,
                minHeight:this.minHeight,
                handles: this.resizeHandles || 'all',
                pinned: true,
                resizeElement : this.resizerAction,
                handleCls: 'x-window-handle'
            });
            this.resizer.window = this;
            this.mon(this.resizer, 'beforeresize', this.beforeResize, this);
        }

        if(this.draggable){
            this.header.addClass('x-window-draggable');
        }
        this.mon(this.el, 'mousedown', this.toFront, this);
        this.manager = this.manager || Ext.WindowMgr;
        this.manager.register(this);
        if(this.maximized){
            this.maximized = false;
            this.maximize();
        }
        if(this.closable){
            var km = this.getKeyMap();
            km.on(27, this.onEsc, this);
            km.disable();
        }
    },

    initDraggable : function(){
        /**
         * 
    If this Window is configured {@link #draggable}, this property will contain
         * an instance of {@link Ext.dd.DD} which handles dragging the Window's DOM Element.
    
         * 
    This has implementations of startDrag, onDrag and endDrag
         * which perform the dragging action. If extra logic is needed at these points, use
         * {@link Function#createInterceptor createInterceptor} or {@link Function#createSequence createSequence} to
         * augment the existing implementations.
    
         * @type Ext.dd.DD
         * @property dd
         */
        this.dd = new Ext.Window.DD(this);
    },

   // private
    onEsc : function(k, e){
        if (this.activeGhost) {
            this.unghost();
        }
        e.stopEvent();
        this[this.closeAction]();
    },

    // private
    beforeDestroy : function(){
        if(this.rendered){
            this.hide();
            this.clearAnchor();
            Ext.destroy(
                this.focusEl,
                this.resizer,
                this.dd,
                this.proxy,
                this.mask
            );
        }
        Ext.Window.superclass.beforeDestroy.call(this);
    },

    // private
    onDestroy : function(){
        if(this.manager){
            this.manager.unregister(this);
        }
        Ext.Window.superclass.onDestroy.call(this);
    },

    // private
    initTools : function(){
        if(this.minimizable){
            this.addTool({
                id: 'minimize',
                handler: this.minimize.createDelegate(this, [])
            });
        }
        if(this.maximizable){
            this.addTool({
                id: 'maximize',
                handler: this.maximize.createDelegate(this, [])
            });
            this.addTool({
                id: 'restore',
                handler: this.restore.createDelegate(this, []),
                hidden:true
            });
        }
        if(this.closable){
            this.addTool({
                id: 'close',
                handler: this[this.closeAction].createDelegate(this, [])
            });
        }
    },

    // private
    resizerAction : function(){
        var box = this.proxy.getBox();
        this.proxy.hide();
        this.window.handleResize(box);
        return box;
    },

    // private
    beforeResize : function(){
        this.resizer.minHeight = Math.max(this.minHeight, this.getFrameHeight() + 40); // 40 is a magic minimum content size?
        this.resizer.minWidth = Math.max(this.minWidth, this.getFrameWidth() + 40);
        this.resizeBox = this.el.getBox();
    },

    // private
    updateHandles : function(){
        if(Ext.isIE9m && this.resizer){
            this.resizer.syncHandleHeight();
            this.el.repaint();
        }
    },

    // private
    handleResize : function(box){
        var rz = this.resizeBox;
        if(rz.x != box.x || rz.y != box.y){
            this.updateBox(box);
        }else{
            this.setSize(box);
            if (Ext.isIE6 && Ext.isStrict) {
                this.doLayout();
            }
        }
        this.focus();
        this.updateHandles();
        this.saveState();
    },

    /**
     * Focuses the window.  If a defaultButton is set, it will receive focus, otherwise the
     * window itself will receive focus.
     */
    focus : function(){
        var f = this.focusEl,
            db = this.defaultButton,
            t = typeof db,
            el,
            ct;
        if(Ext.isDefined(db)){
            if(Ext.isNumber(db) && this.fbar){
                f = this.fbar.items.get(db);
            }else if(Ext.isString(db)){
                f = Ext.getCmp(db);
            }else{
                f = db;
            }
            el = f.getEl();
            ct = Ext.getDom(this.container);
            if (el && ct) {
                if (ct != document.body && !Ext.lib.Region.getRegion(ct).contains(Ext.lib.Region.getRegion(el.dom))){
                    return;
                }
            }
        }
        f = f || this.focusEl;
        f.focus.defer(10, f);
    },

    /**
     * Sets the target element from which the window should animate while opening.
     * @param {String/Element} el The target element or id
     */
    setAnimateTarget : function(el){
        el = Ext.get(el);
        this.animateTarget = el;
    },

    // private
    beforeShow : function(){
        delete this.el.lastXY;
        delete this.el.lastLT;
        if(this.x === undefined || this.y === undefined){
            var xy = this.el.getAlignToXY(this.container, 'c-c');
            var pos = this.el.translatePoints(xy[0], xy[1]);
            this.x = this.x === undefined? pos.left : this.x;
            this.y = this.y === undefined? pos.top : this.y;
        }
        this.el.setLeftTop(this.x, this.y);

        if(this.expandOnShow){
            this.expand(false);
        }

        if(this.modal){
            Ext.getBody().addClass('x-body-masked');
            this.mask.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true));
            this.mask.show();
        }
    },

    /**
     * Shows the window, rendering it first if necessary, or activates it and brings it to front if hidden.
     * @param {String/Element} animateTarget (optional) The target element or id from which the window should
     * animate while opening (defaults to null with no animation)
     * @param {Function} callback (optional) A callback function to call after the window is displayed
     * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to this Window.
     * @return {Ext.Window} this
     */
    show : function(animateTarget, cb, scope){
        if(!this.rendered){
            this.render(Ext.getBody());
        }
        if(this.hidden === false){
            this.toFront();
            return this;
        }
        if(this.fireEvent('beforeshow', this) === false){
            return this;
        }
        if(cb){
            this.on('show', cb, scope, {single:true});
        }
        this.hidden = false;
        if(Ext.isDefined(animateTarget)){
            this.setAnimateTarget(animateTarget);
        }
        this.beforeShow();
        if(this.animateTarget){
            this.animShow();
        }else{
            this.afterShow();
        }
        return this;
    },

    // private
    afterShow : function(isAnim){
        if (this.isDestroyed){
            return false;
        }
        this.proxy.hide();
        this.el.setStyle('display', 'block');
        this.el.show();
        if(this.maximized){
            this.fitContainer();
        }
        if(Ext.isMac && Ext.isGecko2){ // work around stupid FF 2.0/Mac scroll bar bug
            this.cascade(this.setAutoScroll);
        }

        if(this.monitorResize || this.modal || this.constrain || this.constrainHeader){
            Ext.EventManager.onWindowResize(this.onWindowResize, this);
        }
        this.doConstrain();
        this.doLayout();
        if(this.keyMap){
            this.keyMap.enable();
        }
        this.toFront();
        this.updateHandles();
        if(isAnim && (Ext.isIE || Ext.isWebKit)){
            var sz = this.getSize();
            this.onResize(sz.width, sz.height);
        }
        this.onShow();
        this.fireEvent('show', this);
    },

    // private
    animShow : function(){
        this.proxy.show();
        this.proxy.setBox(this.animateTarget.getBox());
        this.proxy.setOpacity(0);
        var b = this.getBox();
        this.el.setStyle('display', 'none');
        this.proxy.shift(Ext.apply(b, {
            callback: this.afterShow.createDelegate(this, [true], false),
            scope: this,
            easing: 'easeNone',
            duration: this.showAnimDuration,
            opacity: 0.5
        }));
    },

    /**
     * Hides the window, setting it to invisible and applying negative offsets.
     * @param {String/Element} animateTarget (optional) The target element or id to which the window should
     * animate while hiding (defaults to null with no animation)
     * @param {Function} callback (optional) A callback function to call after the window is hidden
     * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to this Window.
     * @return {Ext.Window} this
     */
    hide : function(animateTarget, cb, scope){
        if(this.hidden || this.fireEvent('beforehide', this) === false){
            return this;
        }
        if(cb){
            this.on('hide', cb, scope, {single:true});
        }
        this.hidden = true;
        if(animateTarget !== undefined){
            this.setAnimateTarget(animateTarget);
        }
        if(this.modal){
            this.mask.hide();
            Ext.getBody().removeClass('x-body-masked');
        }
        if(this.animateTarget){
            this.animHide();
        }else{
            this.el.hide();
            this.afterHide();
        }
        return this;
    },

    // private
    afterHide : function(){
        this.proxy.hide();
        if(this.monitorResize || this.modal || this.constrain || this.constrainHeader){
            Ext.EventManager.removeResizeListener(this.onWindowResize, this);
        }
        if(this.keyMap){
            this.keyMap.disable();
        }
        this.onHide();
        this.fireEvent('hide', this);
    },

    // private
    animHide : function(){
        this.proxy.setOpacity(0.5);
        this.proxy.show();
        var tb = this.getBox(false);
        this.proxy.setBox(tb);
        this.el.hide();
        this.proxy.shift(Ext.apply(this.animateTarget.getBox(), {
            callback: this.afterHide,
            scope: this,
            duration: this.hideAnimDuration,
            easing: 'easeNone',
            opacity: 0
        }));
    },

    /**
     * Method that is called immediately before the show event is fired.
     * Defaults to Ext.emptyFn.
     */
    onShow : Ext.emptyFn,

    /**
     * Method that is called immediately before the hide event is fired.
     * Defaults to Ext.emptyFn.
     */
    onHide : Ext.emptyFn,

    // private
    onWindowResize : function(){
        if(this.maximized){
            this.fitContainer();
        }
        if(this.modal){
            this.mask.setSize('100%', '100%');
            var force = this.mask.dom.offsetHeight;
            this.mask.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true));
        }
        this.doConstrain();
    },

    // private
    doConstrain : function(){
        if(this.constrain || this.constrainHeader){
            var offsets;
            if(this.constrain){
                offsets = {
                    right:this.el.shadowOffset,
                    left:this.el.shadowOffset,
                    bottom:this.el.shadowOffset
                };
            }else {
                var s = this.getSize();
                offsets = {
                    right:-(s.width - 100),
                    bottom:-(s.height - 25 + this.el.getConstrainOffset())
                };
            }

            var xy = this.el.getConstrainToXY(this.container, true, offsets);
            if(xy){
                this.setPosition(xy[0], xy[1]);
            }
        }
    },

    // private - used for dragging
    ghost : function(cls){
        var ghost = this.createGhost(cls);
        var box = this.getBox(true);
        ghost.setLeftTop(box.x, box.y);
        ghost.setWidth(box.width);
        this.el.hide();
        this.activeGhost = ghost;
        return ghost;
    },

    // private
    unghost : function(show, matchPosition){
        if(!this.activeGhost) {
            return;
        }
        if(show !== false){
            this.el.show();
            this.focus.defer(10, this);
            if(Ext.isMac && Ext.isGecko2){ // work around stupid FF 2.0/Mac scroll bar bug
                this.cascade(this.setAutoScroll);
            }
        }
        if(matchPosition !== false){
            this.setPosition(this.activeGhost.getLeft(true), this.activeGhost.getTop(true));
        }
        this.activeGhost.hide();
        this.activeGhost.remove();
        delete this.activeGhost;
    },

    /**
     * Placeholder method for minimizing the window.  By default, this method simply fires the {@link #minimize} event
     * since the behavior of minimizing a window is application-specific.  To implement custom minimize behavior,
     * either the minimize event can be handled or this method can be overridden.
     * @return {Ext.Window} this
     */
    minimize : function(){
        this.fireEvent('minimize', this);
        return this;
    },

    /**
     * 
    Closes the Window, removes it from the DOM, {@link Ext.Component#destroy destroy}s
     * the Window object and all its descendant Components. The {@link Ext.Panel#beforeclose beforeclose}
     * event is fired before the close happens and will cancel the close action if it returns false.
    
     * 
    Note: This method is not affected by the {@link #closeAction} setting which
     * only affects the action triggered when clicking the {@link #closable 'close' tool in the header}.
     * To hide the Window without destroying it, call {@link #hide}.
    
     */
    close : function(){
        if(this.fireEvent('beforeclose', this) !== false){
            if(this.hidden){
                this.doClose();
            }else{
                this.hide(null, this.doClose, this);
            }
        }
    },

    // private
    doClose : function(){
        this.fireEvent('close', this);
        this.destroy();
    },

    /**
     * Fits the window within its current container and automatically replaces
     * the {@link #maximizable 'maximize' tool button} with the 'restore' tool button.
     * Also see {@link #toggleMaximize}.
     * @return {Ext.Window} this
     */
    maximize : function(){
        if(!this.maximized){
            this.expand(false);
            this.restoreSize = this.getSize();
            this.restorePos = this.getPosition(true);
            if (this.maximizable){
                this.tools.maximize.hide();
                this.tools.restore.show();
            }
            this.maximized = true;
            this.el.disableShadow();

            if(this.dd){
                this.dd.lock();
            }
            if(this.collapsible){
                this.tools.toggle.hide();
            }
            this.el.addClass('x-window-maximized');
            this.container.addClass('x-window-maximized-ct');

            this.setPosition(0, 0);
            this.fitContainer();
            this.fireEvent('maximize', this);
        }
        return this;
    },

    /**
     * Restores a {@link #maximizable maximized}  window back to its original
     * size and position prior to being maximized and also replaces
     * the 'restore' tool button with the 'maximize' tool button.
     * Also see {@link #toggleMaximize}.
     * @return {Ext.Window} this
     */
    restore : function(){
        if(this.maximized){
            var t = this.tools;
            this.el.removeClass('x-window-maximized');
            if(t.restore){
                t.restore.hide();
            }
            if(t.maximize){
                t.maximize.show();
            }
            this.setPosition(this.restorePos[0], this.restorePos[1]);
            this.setSize(this.restoreSize.width, this.restoreSize.height);
            delete this.restorePos;
            delete this.restoreSize;
            this.maximized = false;
            this.el.enableShadow(true);

            if(this.dd){
                this.dd.unlock();
            }
            if(this.collapsible && t.toggle){
                t.toggle.show();
            }
            this.container.removeClass('x-window-maximized-ct');

            this.doConstrain();
            this.fireEvent('restore', this);
        }
        return this;
    },

    /**
     * A shortcut method for toggling between {@link #maximize} and {@link #restore} based on the current maximized
     * state of the window.
     * @return {Ext.Window} this
     */
    toggleMaximize : function(){
        return this[this.maximized ? 'restore' : 'maximize']();
    },

    // private
    fitContainer : function(){
        var vs = this.container.getViewSize(false);
        this.setSize(vs.width, vs.height);
    },

    // private
    // z-index is managed by the WindowManager and may be overwritten at any time
    setZIndex : function(index){
        if(this.modal){
            this.mask.setStyle('z-index', index);
        }
        this.el.setZIndex(++index);
        index += 5;

        if(this.resizer){
            this.resizer.proxy.setStyle('z-index', ++index);
        }

        this.lastZIndex = index;
    },

    /**
     * Aligns the window to the specified element
     * @param {Mixed} element The element to align to.
     * @param {String} position (optional, defaults to "tl-bl?") The position to align to (see {@link Ext.Element#alignTo} for more details).
     * @param {Array} offsets (optional) Offset the positioning by [x, y]
     * @return {Ext.Window} this
     */
    alignTo : function(element, position, offsets){
        var xy = this.el.getAlignToXY(element, position, offsets);
        this.setPagePosition(xy[0], xy[1]);
        return this;
    },

    /**
     * Anchors this window to another element and realigns it when the window is resized or scrolled.
     * @param {Mixed} element The element to align to.
     * @param {String} position The position to align to (see {@link Ext.Element#alignTo} for more details)
     * @param {Array} offsets (optional) Offset the positioning by [x, y]
     * @param {Boolean/Number} monitorScroll (optional) true to monitor body scroll and reposition. If this parameter
     * is a number, it is used as the buffer delay (defaults to 50ms).
     * @return {Ext.Window} this
     */
    anchorTo : function(el, alignment, offsets, monitorScroll){
        this.clearAnchor();
        this.anchorTarget = {
            el: el,
            alignment: alignment,
            offsets: offsets
        };

        Ext.EventManager.onWindowResize(this.doAnchor, this);
        var tm = typeof monitorScroll;
        if(tm != 'undefined'){
            Ext.EventManager.on(window, 'scroll', this.doAnchor, this,
                {buffer: tm == 'number' ? monitorScroll : 50});
        }
        return this.doAnchor();
    },

    /**
     * Performs the anchor, using the saved anchorTarget property.
     * @return {Ext.Window} this
     * @private
     */
    doAnchor : function(){
        var o = this.anchorTarget;
        this.alignTo(o.el, o.alignment, o.offsets);
        return this;
    },

    /**
     * Removes any existing anchor from this window. See {@link #anchorTo}.
     * @return {Ext.Window} this
     */
    clearAnchor : function(){
        if(this.anchorTarget){
            Ext.EventManager.removeResizeListener(this.doAnchor, this);
            Ext.EventManager.un(window, 'scroll', this.doAnchor, this);
            delete this.anchorTarget;
        }
        return this;
    },

    /**
     * Brings this window to the front of any other visible windows
     * @param {Boolean} e (optional) Specify false to prevent the window from being focused.
     * @return {Ext.Window} this
     */
    toFront : function(e){
        if(this.manager.bringToFront(this)){
            if(!e || !e.getTarget().focus){
                this.focus();
            }
        }
        return this;
    },

    /**
     * Makes this the active window by showing its shadow, or deactivates it by hiding its shadow.  This method also
     * fires the {@link #activate} or {@link #deactivate} event depending on which action occurred. This method is
     * called internally by {@link Ext.WindowMgr}.
     * @param {Boolean} active True to activate the window, false to deactivate it (defaults to false)
     */
    setActive : function(active){
        if(active){
            if(!this.maximized){
                this.el.enableShadow(true);
            }
            this.fireEvent('activate', this);
        }else{
            this.el.disableShadow();
            this.fireEvent('deactivate', this);
        }
    },

    /**
     * Sends this window to the back of (lower z-index than) any other visible windows
     * @return {Ext.Window} this
     */
    toBack : function(){
        this.manager.sendToBack(this);
        return this;
    },

    /**
     * Centers this window in the viewport
     * @return {Ext.Window} this
     */
    center : function(){
        var xy = this.el.getAlignToXY(this.container, 'c-c');
        this.setPagePosition(xy[0], xy[1]);
        return this;
    }

    /**
     * @cfg {Boolean} autoWidth @hide
     **/
});
Ext.reg('window', Ext.Window);

// private - custom Window DD implementation
Ext.Window.DD = Ext.extend(Ext.dd.DD, {
    
    constructor : function(win){
        this.win = win;
        Ext.Window.DD.superclass.constructor.call(this, win.el.id, 'WindowDD-'+win.id);
        this.setHandleElId(win.header.id);
        this.scroll = false;        
    },
    
    moveOnly:true,
    headerOffsets:[100, 25],
    startDrag : function(){
        var w = this.win;
        this.proxy = w.ghost(w.initialConfig.cls);
        if(w.constrain !== false){
            var so = w.el.shadowOffset;
            this.constrainTo(w.container, {right: so, left: so, bottom: so});
        }else if(w.constrainHeader !== false){
            var s = this.proxy.getSize();
            this.constrainTo(w.container, {right: -(s.width-this.headerOffsets[0]), bottom: -(s.height-this.headerOffsets[1])});
        }
    },
    b4Drag : Ext.emptyFn,

    onDrag : function(e){
        this.alignElWithMouse(this.proxy, e.getPageX(), e.getPageY());
    },

    endDrag : function(e){
        this.win.unghost();
        this.win.saveState();
    }
});
/**
 * @class Ext.WindowGroup
 * An object that manages a group of {@link Ext.Window} instances and provides z-order management
 * and window activation behavior.
 * @constructor
 */
Ext.WindowGroup = function(){
    var list = {};
    var accessList = [];
    var front = null;

    // private
    var sortWindows = function(d1, d2){
        return (!d1._lastAccess || d1._lastAccess < d2._lastAccess) ? -1 : 1;
    };

    // private
    var orderWindows = function(){
        var a = accessList, len = a.length;
        if(len > 0){
            a.sort(sortWindows);
            var seed = a[0].manager.zseed;
            for(var i = 0; i < len; i++){
                var win = a[i];
                if(win && !win.hidden){
                    win.setZIndex(seed + (i*10));
                }
            }
        }
        activateLast();
    };

    // private
    var setActiveWin = function(win){
        if(win != front){
            if(front){
                front.setActive(false);
            }
            front = win;
            if(win){
                win.setActive(true);
            }
        }
    };

    // private
    var activateLast = function(){
        for(var i = accessList.length-1; i >=0; --i) {
            if(!accessList[i].hidden){
                setActiveWin(accessList[i]);
                return;
            }
        }
        // none to activate
        setActiveWin(null);
    };

    return {
        /**
         * The starting z-index for windows in this WindowGroup (defaults to 9000)
         * @type Number The z-index value
         */
        zseed : 9000,

        /**
         * 
    Registers a {@link Ext.Window Window} with this WindowManager. This should not
         * need to be called under normal circumstances. Windows are automatically registered
         * with a {@link Ext.Window#manager manager} at construction time.
    
         * 
    Where this may be useful is moving Windows between two WindowManagers. For example,
         * to bring the Ext.MessageBox dialog under the same manager as the Desktop's
         * WindowManager in the desktop sample app:
    var msgWin = Ext.MessageBox.getDialog();
MyDesktop.getDesktop().getManager().register(msgWin);

    
         * @param {Window} win The Window to register.
         */
        register : function(win){
            if(win.manager){
                win.manager.unregister(win);
            }
            win.manager = this;

            list[win.id] = win;
            accessList.push(win);
            win.on('hide', activateLast);
        },

        /**
         * 
    Unregisters a {@link Ext.Window Window} from this WindowManager. This should not
         * need to be called. Windows are automatically unregistered upon destruction.
         * See {@link #register}.
    
         * @param {Window} win The Window to unregister.
         */
        unregister : function(win){
            delete win.manager;
            delete list[win.id];
            win.un('hide', activateLast);
            accessList.remove(win);
        },

        /**
         * Gets a registered window by id.
         * @param {String/Object} id The id of the window or a {@link Ext.Window} instance
         * @return {Ext.Window}
         */
        get : function(id){
            return typeof id == "object" ? id : list[id];
        },

        /**
         * Brings the specified window to the front of any other active windows in this WindowGroup.
         * @param {String/Object} win The id of the window or a {@link Ext.Window} instance
         * @return {Boolean} True if the dialog was brought to the front, else false
         * if it was already in front
         */
        bringToFront : function(win){
            win = this.get(win);
            if(win != front){
                win._lastAccess = new Date().getTime();
                orderWindows();
                return true;
            }
            return false;
        },

        /**
         * Sends the specified window to the back of other active windows in this WindowGroup.
         * @param {String/Object} win The id of the window or a {@link Ext.Window} instance
         * @return {Ext.Window} The window
         */
        sendToBack : function(win){
            win = this.get(win);
            win._lastAccess = -(new Date().getTime());
            orderWindows();
            return win;
        },

        /**
         * Hides all windows in this WindowGroup.
         */
        hideAll : function(){
            for(var id in list){
                if(list[id] && typeof list[id] != "function" && list[id].isVisible()){
                    list[id].hide();
                }
            }
        },

        /**
         * Gets the currently-active window in this WindowGroup.
         * @return {Ext.Window} The active window
         */
        getActive : function(){
            return front;
        },

        /**
         * Returns zero or more windows in this WindowGroup using the custom search function passed to this method.
         * The function should accept a single {@link Ext.Window} reference as its only argument and should
         * return true if the window matches the search criteria, otherwise it should return false.
         * @param {Function} fn The search function
         * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the Window being tested.
         * that gets passed to the function if not specified)
         * @return {Array} An array of zero or more matching windows
         */
        getBy : function(fn, scope){
            var r = [];
            for(var i = accessList.length-1; i >=0; --i) {
                var win = accessList[i];
                if(fn.call(scope||win, win) !== false){
                    r.push(win);
                }
            }
            return r;
        },

        /**
         * Executes the specified function once for every window in this WindowGroup, passing each
         * window as the only parameter. Returning false from the function will stop the iteration.
         * @param {Function} fn The function to execute for each item
         * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the current Window in the iteration.
         */
        each : function(fn, scope){
            for(var id in list){
                if(list[id] && typeof list[id] != "function"){
                    if(fn.call(scope || list[id], list[id]) === false){
                        return;
                    }
                }
            }
        }
    };
};


/**
 * @class Ext.WindowMgr
 * @extends Ext.WindowGroup
 * The default global window group that is available automatically.  To have more than one group of windows
 * with separate z-order stacks, create additional instances of {@link Ext.WindowGroup} as needed.
 * @singleton
 */
Ext.WindowMgr = new Ext.WindowGroup();/**
 * @class Ext.MessageBox
 * 
    Utility class for generating different styles of message boxes.  The alias Ext.Msg can also be used.
    
 * 
    Note that the MessageBox is asynchronous.  Unlike a regular JavaScript alert (which will halt
 * browser execution), showing a MessageBox will not cause the code to stop.  For this reason, if you have code
 * that should only run after some user feedback from the MessageBox, you must use a callback function
 * (see the function parameter for {@link #show} for more details).
    
 * 
    Example usage:
    
 *
    
// Basic alert:
Ext.Msg.alert('Status', 'Changes saved successfully.');

// Prompt for user data and process the result using a callback:
Ext.Msg.prompt('Name', 'Please enter your name:', function(btn, text){
    if (btn == 'ok'){
        // process text value and close...
    }
});

// Show a dialog using config options:
Ext.Msg.show({
   title:'Save Changes?',
   msg: 'You are closing a tab that has unsaved changes. Would you like to save your changes?',
   buttons: Ext.Msg.YESNOCANCEL,
   fn: processResult,
   animEl: 'elId',
   icon: Ext.MessageBox.QUESTION
});

    
 * @singleton
 */
Ext.MessageBox = function(){
    var dlg, opt, mask, waitTimer,
        bodyEl, msgEl, textboxEl, textareaEl, progressBar, pp, iconEl, spacerEl,
        buttons, activeTextEl, bwidth, bufferIcon = '', iconCls = '',
        buttonNames = ['ok', 'yes', 'no', 'cancel'];

    // private
    var handleButton = function(button){
        buttons[button].blur();
        if(dlg.isVisible()){
            dlg.hide();
            handleHide();
            Ext.callback(opt.fn, opt.scope||window, [button, activeTextEl.dom.value, opt], 1);
        }
    };

    // private
    var handleHide = function(){
        if(opt && opt.cls){
            dlg.el.removeClass(opt.cls);
        }
        progressBar.reset();        
    };

    // private
    var handleEsc = function(d, k, e){
        if(opt && opt.closable !== false){
            dlg.hide();
            handleHide();
        }
        if(e){
            e.stopEvent();
        }
    };

    // private
    var updateButtons = function(b){
        var width = 0,
            cfg;
        if(!b){
            Ext.each(buttonNames, function(name){
                buttons[name].hide();
            });
            return width;
        }
        dlg.footer.dom.style.display = '';
        Ext.iterate(buttons, function(name, btn){
            cfg = b[name];
            if(cfg){
                btn.show();
                btn.setText(Ext.isString(cfg) ? cfg : Ext.MessageBox.buttonText[name]);
                width += btn.getEl().getWidth() + 15;
            }else{
                btn.hide();
            }
        });
        return width;
    };

    return {
        /**
         * Returns a reference to the underlying {@link Ext.Window} element
         * @return {Ext.Window} The window
         */
        getDialog : function(titleText){
           if(!dlg){
                var btns = [];
                
                buttons = {};
                Ext.each(buttonNames, function(name){
                    btns.push(buttons[name] = new Ext.Button({
                        text: this.buttonText[name],
                        handler: handleButton.createCallback(name),
                        hideMode: 'offsets'
                    }));
                }, this);
                dlg = new Ext.Window({
                    autoCreate : true,
                    title:titleText,
                    resizable:false,
                    constrain:true,
                    constrainHeader:true,
                    minimizable : false,
                    maximizable : false,
                    stateful: false,
                    modal: true,
                    shim:true,
                    buttonAlign:"center",
                    width:400,
                    height:100,
                    minHeight: 80,
                    plain:true,
                    footer:true,
                    closable:true,
                    close : function(){
                        if(opt && opt.buttons && opt.buttons.no && !opt.buttons.cancel){
                            handleButton("no");
                        }else{
                            handleButton("cancel");
                        }
                    },
                    fbar: new Ext.Toolbar({
                        items: btns,
                        enableOverflow: false
                    })
                });
                dlg.render(document.body);
                dlg.getEl().addClass('x-window-dlg');
                mask = dlg.mask;
                bodyEl = dlg.body.createChild({
                    html:'

    '
                });
                iconEl = Ext.get(bodyEl.dom.firstChild);
                var contentEl = bodyEl.dom.childNodes[1];
                msgEl = Ext.get(contentEl.firstChild);
                textboxEl = Ext.get(contentEl.childNodes[2].firstChild);
                textboxEl.enableDisplayMode();
                textboxEl.addKeyListener([10,13], function(){
                    if(dlg.isVisible() && opt && opt.buttons){
                        if(opt.buttons.ok){
                            handleButton("ok");
                        }else if(opt.buttons.yes){
                            handleButton("yes");
                        }
                    }
                });
                textareaEl = Ext.get(contentEl.childNodes[2].childNodes[1]);
                textareaEl.enableDisplayMode();
                progressBar = new Ext.ProgressBar({
                    renderTo:bodyEl
                });
               bodyEl.createChild({cls:'x-clear'});
            }
            return dlg;
        },

        /**
         * Updates the message box body text
         * @param {String} text (optional) Replaces the message box element's innerHTML with the specified string (defaults to
         * the XHTML-compliant non-breaking space character '&#160;')
         * @return {Ext.MessageBox} this
         */
        updateText : function(text){
            if(!dlg.isVisible() && !opt.width){
                dlg.setSize(this.maxWidth, 100); // resize first so content is never clipped from previous shows
            }
            // Append a space here for sizing. In IE, for some reason, it wraps text incorrectly without one in some cases
            msgEl.update(text ? text + ' ' : ' ');

            var iw = iconCls != '' ? (iconEl.getWidth() + iconEl.getMargins('lr')) : 0,
                mw = msgEl.getWidth() + msgEl.getMargins('lr'),
                fw = dlg.getFrameWidth('lr'),
                bw = dlg.body.getFrameWidth('lr'),
                w;
                
            w = Math.max(Math.min(opt.width || iw+mw+fw+bw, opt.maxWidth || this.maxWidth),
                    Math.max(opt.minWidth || this.minWidth, bwidth || 0));

            if(opt.prompt === true){
                activeTextEl.setWidth(w-iw-fw-bw);
            }
            if(opt.progress === true || opt.wait === true){
                progressBar.setSize(w-iw-fw-bw);
            }
            if(Ext.isIE9m && w == bwidth){
                w += 4; //Add offset when the content width is smaller than the buttons.    
            }
            msgEl.update(text || ' ');
            dlg.setSize(w, 'auto').center();
            return this;
        },

        /**
         * Updates a progress-style message box's text and progress bar. Only relevant on message boxes
         * initiated via {@link Ext.MessageBox#progress} or {@link Ext.MessageBox#wait},
         * or by calling {@link Ext.MessageBox#show} with progress: true.
         * @param {Number} value Any number between 0 and 1 (e.g., .5, defaults to 0)
         * @param {String} progressText The progress text to display inside the progress bar (defaults to '')
         * @param {String} msg The message box's body text is replaced with the specified string (defaults to undefined
         * so that any existing body text will not get overwritten by default unless a new value is passed in)
         * @return {Ext.MessageBox} this
         */
        updateProgress : function(value, progressText, msg){
            progressBar.updateProgress(value, progressText);
            if(msg){
                this.updateText(msg);
            }
            return this;
        },

        /**
         * Returns true if the message box is currently displayed
         * @return {Boolean} True if the message box is visible, else false
         */
        isVisible : function(){
            return dlg && dlg.isVisible();
        },

        /**
         * Hides the message box if it is displayed
         * @return {Ext.MessageBox} this
         */
        hide : function(){
            var proxy = dlg ? dlg.activeGhost : null;
            if(this.isVisible() || proxy){
                dlg.hide();
                handleHide();
                if (proxy){
                    // unghost is a private function, but i saw no better solution
                    // to fix the locking problem when dragging while it closes
                    dlg.unghost(false, false);
                } 
            }
            return this;
        },

        /**
         * Displays a new message box, or reinitializes an existing message box, based on the config options
         * passed in. All display functions (e.g. prompt, alert, etc.) on MessageBox call this function internally,
         * although those calls are basic shortcuts and do not support all of the config options allowed here.
         * @param {Object} config The following config options are supported: 
      
         * 
    • animEl : String/Element
      An id or Element from which the message box should animate as it
         * opens and closes (defaults to undefined)
      • 
         * 
    • buttons : Object/Boolean
      A button config object (e.g., Ext.MessageBox.OKCANCEL or {ok:'Foo',
         * cancel:'Bar'}), or false to not show any buttons (defaults to false)
      • 
         * 
    • closable : Boolean
      False to hide the top-right close button (defaults to true). Note that
         * progress and wait dialogs will ignore this property and always hide the close button as they can only
         * be closed programmatically.
      • 
         * 
    • cls : String
      A custom CSS class to apply to the message box's container element
      • 
         * 
    • defaultTextHeight : Number
      The default height in pixels of the message box's multiline textarea
         * if displayed (defaults to 75)
      • 
         * 
    • fn : Function
      A callback function which is called when the dialog is dismissed either
         * by clicking on the configured buttons, or on the dialog close button, or by pressing
         * the return button to enter input.
         * 
      Progress and wait dialogs will ignore this option since they do not respond to user
         * actions and can only be closed programmatically, so any required function should be called
         * by the same code after it closes the dialog. Parameters passed:
        
         * 
      • buttonId : String
        The ID of the button pressed, one of:
          
         * 
        • ok
          • 
         * 
        • yes
          • 
         * 
        • no
          • 
         * 
        • cancel
          • 
         * 
        • 
         * 
      • text : String
        Value of the input field if either prompt
         * or multiline is true
        • 
         * 
      • opt : Object
        The config object passed to show.
        • 
         * 
      • 
         * 
    • scope : Object
      The scope of the callback function
      • 
         * 
    • icon : String
      A CSS class that provides a background image to be used as the body icon for the
         * dialog (e.g. Ext.MessageBox.WARNING or 'custom-class') (defaults to '')
      • 
         * 
    • iconCls : String
      The standard {@link Ext.Window#iconCls} to
         * add an optional header icon (defaults to '')
      • 
         * 
    • maxWidth : Number
      The maximum width in pixels of the message box (defaults to 600)
      • 
         * 
    • minWidth : Number
      The minimum width in pixels of the message box (defaults to 100)
      • 
         * 
    • modal : Boolean
      False to allow user interaction with the page while the message box is
         * displayed (defaults to true)
      • 
         * 
    • msg : String
      A string that will replace the existing message box body text (defaults to the
         * XHTML-compliant non-breaking space character '&#160;')
      • 
         * 
    • multiline : Boolean
      
         * True to prompt the user to enter multi-line text (defaults to false)
      • 
         * 
    • progress : Boolean
      True to display a progress bar (defaults to false)
      • 
         * 
    • progressText : String
      The text to display inside the progress bar if progress = true (defaults to '')
      • 
         * 
    • prompt : Boolean
      True to prompt the user to enter single-line text (defaults to false)
      • 
         * 
    • proxyDrag : Boolean
      True to display a lightweight proxy while dragging (defaults to false)
      • 
         * 
    • title : String
      The title text
      • 
         * 
    • value : String
      The string value to set into the active textbox element if displayed
      • 
         * 
    • wait : Boolean
      True to display a progress bar (defaults to false)
      • 
         * 
    • waitConfig : Object
      A {@link Ext.ProgressBar#waitConfig} object (applies only if wait = true)
      • 
         * 
    • width : Number
      The width of the dialog in pixels
      • 
         * 
    
         * Example usage:
         * 
    
Ext.Msg.show({
   title: 'Address',
   msg: 'Please enter your address:',
   width: 300,
   buttons: Ext.MessageBox.OKCANCEL,
   multiline: true,
   fn: saveAddress,
   animEl: 'addAddressBtn',
   icon: Ext.MessageBox.INFO
});

    
         * @return {Ext.MessageBox} this
         */
        show : function(options){
            if(this.isVisible()){
                this.hide();
            }
            opt = options;
            var d = this.getDialog(opt.title || " ");

            d.setTitle(opt.title || " ");
            var allowClose = (opt.closable !== false && opt.progress !== true && opt.wait !== true);
            d.tools.close.setDisplayed(allowClose);
            activeTextEl = textboxEl;
            opt.prompt = opt.prompt || (opt.multiline ? true : false);
            if(opt.prompt){
                if(opt.multiline){
                    textboxEl.hide();
                    textareaEl.show();
                    textareaEl.setHeight(Ext.isNumber(opt.multiline) ? opt.multiline : this.defaultTextHeight);
                    activeTextEl = textareaEl;
                }else{
                    textboxEl.show();
                    textareaEl.hide();
                }
            }else{
                textboxEl.hide();
                textareaEl.hide();
            }
            activeTextEl.dom.value = opt.value || "";
            if(opt.prompt){
                d.focusEl = activeTextEl;
            }else{
                var bs = opt.buttons;
                var db = null;
                if(bs && bs.ok){
                    db = buttons["ok"];
                }else if(bs && bs.yes){
                    db = buttons["yes"];
                }
                if (db){
                    d.focusEl = db;
                }
            }
            if(Ext.isDefined(opt.iconCls)){
              d.setIconClass(opt.iconCls);
            }
            this.setIcon(Ext.isDefined(opt.icon) ? opt.icon : bufferIcon);
            bwidth = updateButtons(opt.buttons);
            progressBar.setVisible(opt.progress === true || opt.wait === true);
            this.updateProgress(0, opt.progressText);
            this.updateText(opt.msg);
            if(opt.cls){
                d.el.addClass(opt.cls);
            }
            d.proxyDrag = opt.proxyDrag === true;
            d.modal = opt.modal !== false;
            d.mask = opt.modal !== false ? mask : false;
            if(!d.isVisible()){
                // force it to the end of the z-index stack so it gets a cursor in FF
                document.body.appendChild(dlg.el.dom);
                d.setAnimateTarget(opt.animEl);
                //workaround for window internally enabling keymap in afterShow
                d.on('show', function(){
                    if(allowClose === true){
                        d.keyMap.enable();
                    }else{
                        d.keyMap.disable();
                    }
                }, this, {single:true});
                d.show(opt.animEl);
            }
            if(opt.wait === true){
                progressBar.wait(opt.waitConfig);
            }
            return this;
        },

        /**
         * Adds the specified icon to the dialog.  By default, the class 'ext-mb-icon' is applied for default
         * styling, and the class passed in is expected to supply the background image url. Pass in empty string ('')
         * to clear any existing icon. This method must be called before the MessageBox is shown.
         * The following built-in icon classes are supported, but you can also pass in a custom class name:
         * 
    Ext.MessageBox.INFO
Ext.MessageBox.WARNING
Ext.MessageBox.QUESTION
Ext.MessageBox.ERROR
         *
    
         * @param {String} icon A CSS classname specifying the icon's background image url, or empty string to clear the icon
         * @return {Ext.MessageBox} this
         */
        setIcon : function(icon){
            if(!dlg){
                bufferIcon = icon;
                return;
            }
            bufferIcon = undefined;
            if(icon && icon != ''){
                iconEl.removeClass('x-hidden');
                iconEl.replaceClass(iconCls, icon);
                bodyEl.addClass('x-dlg-icon');
                iconCls = icon;
            }else{
                iconEl.replaceClass(iconCls, 'x-hidden');
                bodyEl.removeClass('x-dlg-icon');
                iconCls = '';
            }
            return this;
        },

        /**
         * Displays a message box with a progress bar.  This message box has no buttons and is not closeable by
         * the user.  You are responsible for updating the progress bar as needed via {@link Ext.MessageBox#updateProgress}
         * and closing the message box when the process is complete.
         * @param {String} title The title bar text
         * @param {String} msg The message box body text
         * @param {String} progressText (optional) The text to display inside the progress bar (defaults to '')
         * @return {Ext.MessageBox} this
         */
        progress : function(title, msg, progressText){
            this.show({
                title : title,
                msg : msg,
                buttons: false,
                progress:true,
                closable:false,
                minWidth: this.minProgressWidth,
                progressText: progressText
            });
            return this;
        },

        /**
         * Displays a message box with an infinitely auto-updating progress bar.  This can be used to block user
         * interaction while waiting for a long-running process to complete that does not have defined intervals.
         * You are responsible for closing the message box when the process is complete.
         * @param {String} msg The message box body text
         * @param {String} title (optional) The title bar text
         * @param {Object} config (optional) A {@link Ext.ProgressBar#waitConfig} object
         * @return {Ext.MessageBox} this
         */
        wait : function(msg, title, config){
            this.show({
                title : title,
                msg : msg,
                buttons: false,
                closable:false,
                wait:true,
                modal:true,
                minWidth: this.minProgressWidth,
                waitConfig: config
            });
            return this;
        },

        /**
         * Displays a standard read-only message box with an OK button (comparable to the basic JavaScript alert prompt).
         * If a callback function is passed it will be called after the user clicks the button, and the
         * id of the button that was clicked will be passed as the only parameter to the callback
         * (could also be the top-right close button).
         * @param {String} title The title bar text
         * @param {String} msg The message box body text
         * @param {Function} fn (optional) The callback function invoked after the message box is closed
         * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to the browser wnidow.
         * @return {Ext.MessageBox} this
         */
        alert : function(title, msg, fn, scope){
            this.show({
                title : title,
                msg : msg,
                buttons: this.OK,
                fn: fn,
                scope : scope,
                minWidth: this.minWidth
            });
            return this;
        },

        /**
         * Displays a confirmation message box with Yes and No buttons (comparable to JavaScript's confirm).
         * If a callback function is passed it will be called after the user clicks either button,
         * and the id of the button that was clicked will be passed as the only parameter to the callback
         * (could also be the top-right close button).
         * @param {String} title The title bar text
         * @param {String} msg The message box body text
         * @param {Function} fn (optional) The callback function invoked after the message box is closed
         * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to the browser wnidow.
         * @return {Ext.MessageBox} this
         */
        confirm : function(title, msg, fn, scope){
            this.show({
                title : title,
                msg : msg,
                buttons: this.YESNO,
                fn: fn,
                scope : scope,
                icon: this.QUESTION,
                minWidth: this.minWidth
            });
            return this;
        },

        /**
         * Displays a message box with OK and Cancel buttons prompting the user to enter some text (comparable to JavaScript's prompt).
         * The prompt can be a single-line or multi-line textbox.  If a callback function is passed it will be called after the user
         * clicks either button, and the id of the button that was clicked (could also be the top-right
         * close button) and the text that was entered will be passed as the two parameters to the callback.
         * @param {String} title The title bar text
         * @param {String} msg The message box body text
         * @param {Function} fn (optional) The callback function invoked after the message box is closed
         * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to the browser wnidow.
         * @param {Boolean/Number} multiline (optional) True to create a multiline textbox using the defaultTextHeight
         * property, or the height in pixels to create the textbox (defaults to false / single-line)
         * @param {String} value (optional) Default value of the text input element (defaults to '')
         * @return {Ext.MessageBox} this
         */
        prompt : function(title, msg, fn, scope, multiline, value){
            this.show({
                title : title,
                msg : msg,
                buttons: this.OKCANCEL,
                fn: fn,
                minWidth: this.minPromptWidth,
                scope : scope,
                prompt:true,
                multiline: multiline,
                value: value
            });
            return this;
        },

        /**
         * Button config that displays a single OK button
         * @type Object
         */
        OK : {ok:true},
        /**
         * Button config that displays a single Cancel button
         * @type Object
         */
        CANCEL : {cancel:true},
        /**
         * Button config that displays OK and Cancel buttons
         * @type Object
         */
        OKCANCEL : {ok:true, cancel:true},
        /**
         * Button config that displays Yes and No buttons
         * @type Object
         */
        YESNO : {yes:true, no:true},
        /**
         * Button config that displays Yes, No and Cancel buttons
         * @type Object
         */
        YESNOCANCEL : {yes:true, no:true, cancel:true},
        /**
         * The CSS class that provides the INFO icon image
         * @type String
         */
        INFO : 'ext-mb-info',
        /**
         * The CSS class that provides the WARNING icon image
         * @type String
         */
        WARNING : 'ext-mb-warning',
        /**
         * The CSS class that provides the QUESTION icon image
         * @type String
         */
        QUESTION : 'ext-mb-question',
        /**
         * The CSS class that provides the ERROR icon image
         * @type String
         */
        ERROR : 'ext-mb-error',

        /**
         * The default height in pixels of the message box's multiline textarea if displayed (defaults to 75)
         * @type Number
         */
        defaultTextHeight : 75,
        /**
         * The maximum width in pixels of the message box (defaults to 600)
         * @type Number
         */
        maxWidth : 600,
        /**
         * The minimum width in pixels of the message box (defaults to 100)
         * @type Number
         */
        minWidth : 100,
        /**
         * The minimum width in pixels of the message box if it is a progress-style dialog.  This is useful
         * for setting a different minimum width than text-only dialogs may need (defaults to 250).
         * @type Number
         */
        minProgressWidth : 250,
        /**
         * The minimum width in pixels of the message box if it is a prompt dialog.  This is useful
         * for setting a different minimum width than text-only dialogs may need (defaults to 250).
         * @type Number
         */
        minPromptWidth: 250,
        /**
         * An object containing the default button text strings that can be overriden for localized language support.
         * Supported properties are: ok, cancel, yes and no.  Generally you should include a locale-specific
         * resource file for handling language support across the framework.
         * Customize the default text like so: Ext.MessageBox.buttonText.yes = "oui"; //french
         * @type Object
         */
        buttonText : {
            ok : "OK",
            cancel : "Cancel",
            yes : "Yes",
            no : "No"
        }
    };
}();

/**
 * Shorthand for {@link Ext.MessageBox}
 */
Ext.Msg = Ext.MessageBox;/**
 * @class Ext.dd.PanelProxy
 * A custom drag proxy implementation specific to {@link Ext.Panel}s. This class is primarily used internally
 * for the Panel's drag drop implementation, and should never need to be created directly.
 * @constructor
 * @param panel The {@link Ext.Panel} to proxy for
 * @param config Configuration options
 */
Ext.dd.PanelProxy  = Ext.extend(Object, {
    
    constructor : function(panel, config){
        this.panel = panel;
        this.id = this.panel.id +'-ddproxy';
        Ext.apply(this, config);        
    },
    
    /**
     * @cfg {Boolean} insertProxy True to insert a placeholder proxy element while dragging the panel,
     * false to drag with no proxy (defaults to true).
     */
    insertProxy : true,

    // private overrides
    setStatus : Ext.emptyFn,
    reset : Ext.emptyFn,
    update : Ext.emptyFn,
    stop : Ext.emptyFn,
    sync: Ext.emptyFn,

    /**
     * Gets the proxy's element
     * @return {Element} The proxy's element
     */
    getEl : function(){
        return this.ghost;
    },

    /**
     * Gets the proxy's ghost element
     * @return {Element} The proxy's ghost element
     */
    getGhost : function(){
        return this.ghost;
    },

    /**
     * Gets the proxy's element
     * @return {Element} The proxy's element
     */
    getProxy : function(){
        return this.proxy;
    },

    /**
     * Hides the proxy
     */
    hide : function(){
        if(this.ghost){
            if(this.proxy){
                this.proxy.remove();
                delete this.proxy;
            }
            this.panel.el.dom.style.display = '';
            this.ghost.remove();
            delete this.ghost;
        }
    },

    /**
     * Shows the proxy
     */
    show : function(){
        if(!this.ghost){
            this.ghost = this.panel.createGhost(this.panel.initialConfig.cls, undefined, Ext.getBody());
            this.ghost.setXY(this.panel.el.getXY());
            if(this.insertProxy){
                this.proxy = this.panel.el.insertSibling({cls:'x-panel-dd-spacer'});
                this.proxy.setSize(this.panel.getSize());
            }
            this.panel.el.dom.style.display = 'none';
        }
    },

    // private
    repair : function(xy, callback, scope){
        this.hide();
        if(typeof callback == "function"){
            callback.call(scope || this);
        }
    },

    /**
     * Moves the proxy to a different position in the DOM.  This is typically called while dragging the Panel
     * to keep the proxy sync'd to the Panel's location.
     * @param {HTMLElement} parentNode The proxy's parent DOM node
     * @param {HTMLElement} before (optional) The sibling node before which the proxy should be inserted (defaults
     * to the parent's last child if not specified)
     */
    moveProxy : function(parentNode, before){
        if(this.proxy){
            parentNode.insertBefore(this.proxy.dom, before);
        }
    }
});

// private - DD implementation for Panels
Ext.Panel.DD = Ext.extend(Ext.dd.DragSource, {
    
    constructor : function(panel, cfg){
        this.panel = panel;
        this.dragData = {panel: panel};
        this.proxy = new Ext.dd.PanelProxy(panel, cfg);
        Ext.Panel.DD.superclass.constructor.call(this, panel.el, cfg);
        var h = panel.header,
            el = panel.body;
        if(h){
            this.setHandleElId(h.id);
            el = panel.header;
        }
        el.setStyle('cursor', 'move');
        this.scroll = false;        
    },
    
    showFrame: Ext.emptyFn,
    startDrag: Ext.emptyFn,
    b4StartDrag: function(x, y) {
        this.proxy.show();
    },
    b4MouseDown: function(e) {
        var x = e.getPageX(),
            y = e.getPageY();
        this.autoOffset(x, y);
    },
    onInitDrag : function(x, y){
        this.onStartDrag(x, y);
        return true;
    },
    createFrame : Ext.emptyFn,
    getDragEl : function(e){
        return this.proxy.ghost.dom;
    },
    endDrag : function(e){
        this.proxy.hide();
        this.panel.saveState();
    },

    autoOffset : function(x, y) {
        x -= this.startPageX;
        y -= this.startPageY;
        this.setDelta(x, y);
    }
});/**
 * @class Ext.state.Provider
 * Abstract base class for state provider implementations. This class provides methods
 * for encoding and decoding typed variables including dates and defines the
 * Provider interface.
 */
Ext.state.Provider = Ext.extend(Ext.util.Observable, {
    
    constructor : function(){
        /**
         * @event statechange
         * Fires when a state change occurs.
         * @param {Provider} this This state provider
         * @param {String} key The state key which was changed
         * @param {String} value The encoded value for the state
         */
        this.addEvents("statechange");
        this.state = {};
        Ext.state.Provider.superclass.constructor.call(this);
    },
    
    /**
     * Returns the current value for a key
     * @param {String} name The key name
     * @param {Mixed} defaultValue A default value to return if the key's value is not found
     * @return {Mixed} The state data
     */
    get : function(name, defaultValue){
        return typeof this.state[name] == "undefined" ?
            defaultValue : this.state[name];
    },

    /**
     * Clears a value from the state
     * @param {String} name The key name
     */
    clear : function(name){
        delete this.state[name];
        this.fireEvent("statechange", this, name, null);
    },

    /**
     * Sets the value for a key
     * @param {String} name The key name
     * @param {Mixed} value The value to set
     */
    set : function(name, value){
        this.state[name] = value;
        this.fireEvent("statechange", this, name, value);
    },

    /**
     * Decodes a string previously encoded with {@link #encodeValue}.
     * @param {String} value The value to decode
     * @return {Mixed} The decoded value
     */
    decodeValue : function(cookie){
        /**
         * a -> Array
         * n -> Number
         * d -> Date
         * b -> Boolean
         * s -> String
         * o -> Object
         * -> Empty (null)
         */
        var re = /^(a|n|d|b|s|o|e)\:(.*)$/,
            matches = re.exec(unescape(cookie)),
            all,
            type,
            v,
            kv;
        if(!matches || !matches[1]){
            return; // non state cookie
        }
        type = matches[1];
        v = matches[2];
        switch(type){
            case 'e':
                return null;
            case 'n':
                return parseFloat(v);
            case 'd':
                return new Date(Date.parse(v));
            case 'b':
                return (v == '1');
            case 'a':
                all = [];
                if(v != ''){
                    Ext.each(v.split('^'), function(val){
                        all.push(this.decodeValue(val));
                    }, this);
                }
                return all;
           case 'o':
                all = {};
                if(v != ''){
                    Ext.each(v.split('^'), function(val){
                        kv = val.split('=');
                        all[kv[0]] = this.decodeValue(kv[1]);
                    }, this);
                }
                return all;
           default:
                return v;
        }
    },

    /**
     * Encodes a value including type information.  Decode with {@link #decodeValue}.
     * @param {Mixed} value The value to encode
     * @return {String} The encoded value
     */
    encodeValue : function(v){
        var enc,
            flat = '',
            i = 0,
            len,
            key;
        if(v == null){
            return 'e:1';    
        }else if(typeof v == 'number'){
            enc = 'n:' + v;
        }else if(typeof v == 'boolean'){
            enc = 'b:' + (v ? '1' : '0');
        }else if(Ext.isDate(v)){
            enc = 'd:' + v.toGMTString();
        }else if(Ext.isArray(v)){
            for(len = v.length; i < len; i++){
                flat += this.encodeValue(v[i]);
                if(i != len - 1){
                    flat += '^';
                }
            }
            enc = 'a:' + flat;
        }else if(typeof v == 'object'){
            for(key in v){
                if(typeof v[key] != 'function' && v[key] !== undefined){
                    flat += key + '=' + this.encodeValue(v[key]) + '^';
                }
            }
            enc = 'o:' + flat.substring(0, flat.length-1);
        }else{
            enc = 's:' + v;
        }
        return escape(enc);
    }
});
/**
 * @class Ext.state.Manager
 * This is the global state manager. By default all components that are "state aware" check this class
 * for state information if you don't pass them a custom state provider. In order for this class
 * to be useful, it must be initialized with a provider when your application initializes. Example usage:
 
    
// in your initialization function
init : function(){
   Ext.state.Manager.setProvider(new Ext.state.CookieProvider());
   var win = new Window(...);
   win.restoreState();
}
 
    
 * @singleton
 */
Ext.state.Manager = function(){
    var provider = new Ext.state.Provider();

    return {
        /**
         * Configures the default state provider for your application
         * @param {Provider} stateProvider The state provider to set
         */
        setProvider : function(stateProvider){
            provider = stateProvider;
        },

        /**
         * Returns the current value for a key
         * @param {String} name The key name
         * @param {Mixed} defaultValue The default value to return if the key lookup does not match
         * @return {Mixed} The state data
         */
        get : function(key, defaultValue){
            return provider.get(key, defaultValue);
        },

        /**
         * Sets the value for a key
         * @param {String} name The key name
         * @param {Mixed} value The state data
         */
         set : function(key, value){
            provider.set(key, value);
        },

        /**
         * Clears a value from the state
         * @param {String} name The key name
         */
        clear : function(key){
            provider.clear(key);
        },

        /**
         * Gets the currently configured state provider
         * @return {Provider} The state provider
         */
        getProvider : function(){
            return provider;
        }
    };
}();
/**
 * @class Ext.state.CookieProvider
 * @extends Ext.state.Provider
 * The default Provider implementation which saves state via cookies.
 * 
    Usage:
 
    
   var cp = new Ext.state.CookieProvider({
       path: "/cgi-bin/",
       expires: new Date(new Date().getTime()+(1000*60*60*24*30)), //30 days
       domain: "extjs.com"
   });
   Ext.state.Manager.setProvider(cp);
 
    
 * @cfg {String} path The path for which the cookie is active (defaults to root '/' which makes it active for all pages in the site)
 * @cfg {Date} expires The cookie expiration date (defaults to 7 days from now)
 * @cfg {String} domain The domain to save the cookie for.  Note that you cannot specify a different domain than
 * your page is on, but you can specify a sub-domain, or simply the domain itself like 'extjs.com' to include
 * all sub-domains if you need to access cookies across different sub-domains (defaults to null which uses the same
 * domain the page is running on including the 'www' like 'www.extjs.com')
 * @cfg {Boolean} secure True if the site is using SSL (defaults to false)
 * @constructor
 * Create a new CookieProvider
 * @param {Object} config The configuration object
 */
Ext.state.CookieProvider = Ext.extend(Ext.state.Provider, {
    
    constructor : function(config){
        Ext.state.CookieProvider.superclass.constructor.call(this);
        this.path = "/";
        this.expires = new Date(new Date().getTime()+(1000*60*60*24*7)); //7 days
        this.domain = null;
        this.secure = false;
        Ext.apply(this, config);
        this.state = this.readCookies();
    },
    
    // private
    set : function(name, value){
        if(typeof value == "undefined" || value === null){
            this.clear(name);
            return;
        }
        this.setCookie(name, value);
        Ext.state.CookieProvider.superclass.set.call(this, name, value);
    },

    // private
    clear : function(name){
        this.clearCookie(name);
        Ext.state.CookieProvider.superclass.clear.call(this, name);
    },

    // private
    readCookies : function(){
        var cookies = {},
            c = document.cookie + ";",
            re = /\s?(.*?)=(.*?);/g,
    	    matches,
            name,
            value;
    	while((matches = re.exec(c)) != null){
            name = matches[1];
            value = matches[2];
            if(name && name.substring(0,3) == "ys-"){
                cookies[name.substr(3)] = this.decodeValue(value);
            }
        }
        return cookies;
    },

    // private
    setCookie : function(name, value){
        document.cookie = "ys-"+ name + "=" + this.encodeValue(value) +
           ((this.expires == null) ? "" : ("; expires=" + this.expires.toGMTString())) +
           ((this.path == null) ? "" : ("; path=" + this.path)) +
           ((this.domain == null) ? "" : ("; domain=" + this.domain)) +
           ((this.secure == true) ? "; secure" : "");
    },

    // private
    clearCookie : function(name){
        document.cookie = "ys-" + name + "=null; expires=Thu, 01-Jan-70 00:00:01 GMT" +
           ((this.path == null) ? "" : ("; path=" + this.path)) +
           ((this.domain == null) ? "" : ("; domain=" + this.domain)) +
           ((this.secure == true) ? "; secure" : "");
    }
});/**
 * @class Ext.DataView
 * @extends Ext.BoxComponent
 * A mechanism for displaying data using custom layout templates and formatting. DataView uses an {@link Ext.XTemplate}
 * as its internal templating mechanism, and is bound to an {@link Ext.data.Store}
 * so that as the data in the store changes the view is automatically updated to reflect the changes.  The view also
 * provides built-in behavior for many common events that can occur for its contained items including click, doubleclick,
 * mouseover, mouseout, etc. as well as a built-in selection model. In order to use these features, an {@link #itemSelector}
 * config must be provided for the DataView to determine what nodes it will be working with.
 *
 * 
    The example below binds a DataView to a {@link Ext.data.Store} and renders it into an {@link Ext.Panel}.
    
 * 
    
var store = new Ext.data.JsonStore({
    url: 'get-images.php',
    root: 'images',
    fields: [
        'name', 'url',
        {name:'size', type: 'float'},
        {name:'lastmod', type:'date', dateFormat:'timestamp'}
    ]
});
store.load();

var tpl = new Ext.XTemplate(
    '<tpl for=".">',
        '<div class="thumb-wrap" id="{name}">',
        '<div class="thumb"><img src="{url}" title="{name}"></div>',
        '<span class="x-editable">{shortName}</span></div>',
    '</tpl>',
    '<div class="x-clear"></div>'
);

var panel = new Ext.Panel({
    id:'images-view',
    frame:true,
    width:535,
    autoHeight:true,
    collapsible:true,
    layout:'fit',
    title:'Simple DataView',

    items: new Ext.DataView({
        store: store,
        tpl: tpl,
        autoHeight:true,
        multiSelect: true,
        overClass:'x-view-over',
        itemSelector:'div.thumb-wrap',
        emptyText: 'No images to display'
    })
});
panel.render(document.body);

    
 * @constructor
 * Create a new DataView
 * @param {Object} config The config object
 * @xtype dataview
 */
Ext.DataView = Ext.extend(Ext.BoxComponent, {
    /**
     * @cfg {String/Array} tpl
     * The HTML fragment or an array of fragments that will make up the template used by this DataView.  This should
     * be specified in the same format expected by the constructor of {@link Ext.XTemplate}.
     */
    /**
     * @cfg {Ext.data.Store} store
     * The {@link Ext.data.Store} to bind this DataView to.
     */
    /**
     * @cfg {String} itemSelector
     * This is a required setting. A simple CSS selector (e.g. div.some-class or 
     * span:first-child) that will be used to determine what nodes this DataView will be
     * working with.
     */
    /**
     * @cfg {Boolean} multiSelect
     * True to allow selection of more than one item at a time, false to allow selection of only a single item
     * at a time or no selection at all, depending on the value of {@link #singleSelect} (defaults to false).
     */
    /**
     * @cfg {Boolean} singleSelect
     * True to allow selection of exactly one item at a time, false to allow no selection at all (defaults to false).
     * Note that if {@link #multiSelect} = true, this value will be ignored.
     */
    /**
     * @cfg {Boolean} simpleSelect
     * True to enable multiselection by clicking on multiple items without requiring the user to hold Shift or Ctrl,
     * false to force the user to hold Ctrl or Shift to select more than on item (defaults to false).
     */
    /**
     * @cfg {String} overClass
     * A CSS class to apply to each item in the view on mouseover (defaults to undefined).
     */
    /**
     * @cfg {String} loadingText
     * A string to display during data load operations (defaults to undefined).  If specified, this text will be
     * displayed in a loading div and the view's contents will be cleared while loading, otherwise the view's
     * contents will continue to display normally until the new data is loaded and the contents are replaced.
     */
    /**
     * @cfg {String} selectedClass
     * A CSS class to apply to each selected item in the view (defaults to 'x-view-selected').
     */
    selectedClass : "x-view-selected",
    /**
     * @cfg {String} emptyText
     * The text to display in the view when there is no data to display (defaults to '').
     */
    emptyText : "",

    /**
     * @cfg {Boolean} deferEmptyText True to defer emptyText being applied until the store's first load
     */
    deferEmptyText: true,
    /**
     * @cfg {Boolean} trackOver True to enable mouseenter and mouseleave events
     */
    trackOver: false,
    
    /**
     * @cfg {Boolean} blockRefresh Set this to true to ignore datachanged events on the bound store. This is useful if
     * you wish to provide custom transition animations via a plugin (defaults to false)
     */
    blockRefresh: false,

    //private
    last: false,

    // private
    initComponent : function(){
        Ext.DataView.superclass.initComponent.call(this);
        if(Ext.isString(this.tpl) || Ext.isArray(this.tpl)){
            this.tpl = new Ext.XTemplate(this.tpl);
        }

        this.addEvents(
            /**
             * @event beforeclick
             * Fires before a click is processed. Returns false to cancel the default action.
             * @param {Ext.DataView} this
             * @param {Number} index The index of the target node
             * @param {HTMLElement} node The target node
             * @param {Ext.EventObject} e The raw event object
             */
            "beforeclick",
            /**
             * @event click
             * Fires when a template node is clicked.
             * @param {Ext.DataView} this
             * @param {Number} index The index of the target node
             * @param {HTMLElement} node The target node
             * @param {Ext.EventObject} e The raw event object
             */
            "click",
            /**
             * @event mouseenter
             * Fires when the mouse enters a template node. trackOver:true or an overClass must be set to enable this event.
             * @param {Ext.DataView} this
             * @param {Number} index The index of the target node
             * @param {HTMLElement} node The target node
             * @param {Ext.EventObject} e The raw event object
             */
            "mouseenter",
            /**
             * @event mouseleave
             * Fires when the mouse leaves a template node. trackOver:true or an overClass must be set to enable this event.
             * @param {Ext.DataView} this
             * @param {Number} index The index of the target node
             * @param {HTMLElement} node The target node
             * @param {Ext.EventObject} e The raw event object
             */
            "mouseleave",
            /**
             * @event containerclick
             * Fires when a click occurs and it is not on a template node.
             * @param {Ext.DataView} this
             * @param {Ext.EventObject} e The raw event object
             */
            "containerclick",
            /**
             * @event dblclick
             * Fires when a template node is double clicked.
             * @param {Ext.DataView} this
             * @param {Number} index The index of the target node
             * @param {HTMLElement} node The target node
             * @param {Ext.EventObject} e The raw event object
             */
            "dblclick",
            /**
             * @event contextmenu
             * Fires when a template node is right clicked.
             * @param {Ext.DataView} this
             * @param {Number} index The index of the target node
             * @param {HTMLElement} node The target node
             * @param {Ext.EventObject} e The raw event object
             */
            "contextmenu",
            /**
             * @event containercontextmenu
             * Fires when a right click occurs that is not on a template node.
             * @param {Ext.DataView} this
             * @param {Ext.EventObject} e The raw event object
             */
            "containercontextmenu",
            /**
             * @event selectionchange
             * Fires when the selected nodes change.
             * @param {Ext.DataView} this
             * @param {Array} selections Array of the selected nodes
             */
            "selectionchange",

            /**
             * @event beforeselect
             * Fires before a selection is made. If any handlers return false, the selection is cancelled.
             * @param {Ext.DataView} this
             * @param {HTMLElement} node The node to be selected
             * @param {Array} selections Array of currently selected nodes
             */
            "beforeselect"
        );

        this.store = Ext.StoreMgr.lookup(this.store);
        this.all = new Ext.CompositeElementLite();
        this.selected = new Ext.CompositeElementLite();
    },

    // private
    afterRender : function(){
        Ext.DataView.superclass.afterRender.call(this);

		this.mon(this.getTemplateTarget(), {
            "click": this.onClick,
            "dblclick": this.onDblClick,
            "contextmenu": this.onContextMenu,
            scope:this
        });

        if(this.overClass || this.trackOver){
            this.mon(this.getTemplateTarget(), {
                "mouseover": this.onMouseOver,
                "mouseout": this.onMouseOut,
                scope:this
            });
        }

        if(this.store){
            this.bindStore(this.store, true);
        }
    },

    /**
     * Refreshes the view by reloading the data from the store and re-rendering the template.
     */
    refresh : function() {
        this.clearSelections(false, true);
        var el = this.getTemplateTarget(),
            records = this.store.getRange();
            
        el.update('');
        if(records.length < 1){
            if(!this.deferEmptyText || this.hasSkippedEmptyText){
                el.update(this.emptyText);
            }
            this.all.clear();
        }else{
            this.tpl.overwrite(el, this.collectData(records, 0));
            this.all.fill(Ext.query(this.itemSelector, el.dom));
            this.updateIndexes(0);
        }
        this.hasSkippedEmptyText = true;
    },

    getTemplateTarget: function(){
        return this.el;
    },

    /**
     * Function which can be overridden to provide custom formatting for each Record that is used by this
     * DataView's {@link #tpl template} to render each node.
     * @param {Array/Object} data The raw data object that was used to create the Record.
     * @param {Number} recordIndex the index number of the Record being prepared for rendering.
     * @param {Record} record The Record being prepared for rendering.
     * @return {Array/Object} The formatted data in a format expected by the internal {@link #tpl template}'s overwrite() method.
     * (either an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'}))
     */
    prepareData : function(data){
        return data;
    },

    /**
     * 
    Function which can be overridden which returns the data object passed to this
     * DataView's {@link #tpl template} to render the whole DataView.
    
     * 
    This is usually an Array of data objects, each element of which is processed by an
     * {@link Ext.XTemplate XTemplate} which uses '<tpl for=".">' to iterate over its supplied
     * data object as an Array. However, named properties may be placed into the data object to
     * provide non-repeating data such as headings, totals etc.
    
     * @param {Array} records An Array of {@link Ext.data.Record}s to be rendered into the DataView.
     * @param {Number} startIndex the index number of the Record being prepared for rendering.
     * @return {Array} An Array of data objects to be processed by a repeating XTemplate. May also
     * contain named properties.
     */
    collectData : function(records, startIndex){
        var r = [],
            i = 0,
            len = records.length;
        for(; i < len; i++){
            r[r.length] = this.prepareData(records[i].data, startIndex + i, records[i]);
        }
        return r;
    },

    // private
    bufferRender : function(records, index){
        var div = document.createElement('div');
        this.tpl.overwrite(div, this.collectData(records, index));
        return Ext.query(this.itemSelector, div);
    },

    // private
    onUpdate : function(ds, record){
        var index = this.store.indexOf(record);
        if(index > -1){
            var sel = this.isSelected(index),
                original = this.all.elements[index],
                node = this.bufferRender([record], index)[0];

            this.all.replaceElement(index, node, true);
            if(sel){
                this.selected.replaceElement(original, node);
                this.all.item(index).addClass(this.selectedClass);
            }
            this.updateIndexes(index, index);
        }
    },

    // private
    onAdd : function(ds, records, index){
        if(this.all.getCount() === 0){
            this.refresh();
            return;
        }
        var nodes = this.bufferRender(records, index), n, a = this.all.elements;
        if(index < this.all.getCount()){
            n = this.all.item(index).insertSibling(nodes, 'before', true);
            a.splice.apply(a, [index, 0].concat(nodes));
        }else{
            n = this.all.last().insertSibling(nodes, 'after', true);
            a.push.apply(a, nodes);
        }
        this.updateIndexes(index);
    },

    // private
    onRemove : function(ds, record, index){
        this.deselect(index);
        this.all.removeElement(index, true);
        this.updateIndexes(index);
        if (this.store.getCount() === 0){
            this.refresh();
        }
    },

    /**
     * Refreshes an individual node's data from the store.
     * @param {Number} index The item's data index in the store
     */
    refreshNode : function(index){
        this.onUpdate(this.store, this.store.getAt(index));
    },

    // private
    updateIndexes : function(startIndex, endIndex){
        var ns = this.all.elements;
        startIndex = startIndex || 0;
        endIndex = endIndex || ((endIndex === 0) ? 0 : (ns.length - 1));
        for(var i = startIndex; i <= endIndex; i++){
            ns[i].viewIndex = i;
        }
    },
    
    /**
     * Returns the store associated with this DataView.
     * @return {Ext.data.Store} The store
     */
    getStore : function(){
        return this.store;
    },

    /**
     * Changes the data store bound to this view and refreshes it.
     * @param {Store} store The store to bind to this view
     */
    bindStore : function(store, initial){
        if(!initial && this.store){
            if(store !== this.store && this.store.autoDestroy){
                this.store.destroy();
            }else{
                this.store.un("beforeload", this.onBeforeLoad, this);
                this.store.un("datachanged", this.onDataChanged, this);
                this.store.un("add", this.onAdd, this);
                this.store.un("remove", this.onRemove, this);
                this.store.un("update", this.onUpdate, this);
                this.store.un("clear", this.refresh, this);
            }
            if(!store){
                this.store = null;
            }
        }
        if(store){
            store = Ext.StoreMgr.lookup(store);
            store.on({
                scope: this,
                beforeload: this.onBeforeLoad,
                datachanged: this.onDataChanged,
                add: this.onAdd,
                remove: this.onRemove,
                update: this.onUpdate,
                clear: this.refresh
            });
        }
        this.store = store;
        if(store){
            this.refresh();
        }
    },
    
    /**
     * @private
     * Calls this.refresh if this.blockRefresh is not true
     */
    onDataChanged: function() {
        if (this.blockRefresh !== true) {
            this.refresh.apply(this, arguments);
        }
    },

    /**
     * Returns the template node the passed child belongs to, or null if it doesn't belong to one.
     * @param {HTMLElement} node
     * @return {HTMLElement} The template node
     */
    findItemFromChild : function(node){
        return Ext.fly(node).findParent(this.itemSelector, this.getTemplateTarget());
    },

    // private
    onClick : function(e){
        var item = e.getTarget(this.itemSelector, this.getTemplateTarget()),
            index;
        if(item){
            index = this.indexOf(item);
            if(this.onItemClick(item, index, e) !== false){
                this.fireEvent("click", this, index, item, e);
            }
        }else{
            if(this.fireEvent("containerclick", this, e) !== false){
                this.onContainerClick(e);
            }
        }
    },

    onContainerClick : function(e){
        this.clearSelections();
    },

    // private
    onContextMenu : function(e){
        var item = e.getTarget(this.itemSelector, this.getTemplateTarget());
        if(item){
            this.fireEvent("contextmenu", this, this.indexOf(item), item, e);
        }else{
            this.fireEvent("containercontextmenu", this, e);
        }
    },

    // private
    onDblClick : function(e){
        var item = e.getTarget(this.itemSelector, this.getTemplateTarget());
        if(item){
            this.fireEvent("dblclick", this, this.indexOf(item), item, e);
        }
    },

    // private
    onMouseOver : function(e){
        var item = e.getTarget(this.itemSelector, this.getTemplateTarget());
        if(item && item !== this.lastItem){
            this.lastItem = item;
            Ext.fly(item).addClass(this.overClass);
            this.fireEvent("mouseenter", this, this.indexOf(item), item, e);
        }
    },

    // private
    onMouseOut : function(e){
        if(this.lastItem){
            if(!e.within(this.lastItem, true, true)){
                Ext.fly(this.lastItem).removeClass(this.overClass);
                this.fireEvent("mouseleave", this, this.indexOf(this.lastItem), this.lastItem, e);
                delete this.lastItem;
            }
        }
    },

    // private
    onItemClick : function(item, index, e){
        if(this.fireEvent("beforeclick", this, index, item, e) === false){
            return false;
        }
        if(this.multiSelect){
            this.doMultiSelection(item, index, e);
            e.preventDefault();
        }else if(this.singleSelect){
            this.doSingleSelection(item, index, e);
            e.preventDefault();
        }
        return true;
    },

    // private
    doSingleSelection : function(item, index, e){
        if(e.ctrlKey && this.isSelected(index)){
            this.deselect(index);
        }else{
            this.select(index, false);
        }
    },

    // private
    doMultiSelection : function(item, index, e){
        if(e.shiftKey && this.last !== false){
            var last = this.last;
            this.selectRange(last, index, e.ctrlKey);
            this.last = last; // reset the last
        }else{
            if((e.ctrlKey||this.simpleSelect) && this.isSelected(index)){
                this.deselect(index);
            }else{
                this.select(index, e.ctrlKey || e.shiftKey || this.simpleSelect);
            }
        }
    },

    /**
     * Gets the number of selected nodes.
     * @return {Number} The node count
     */
    getSelectionCount : function(){
        return this.selected.getCount();
    },

    /**
     * Gets the currently selected nodes.
     * @return {Array} An array of HTMLElements
     */
    getSelectedNodes : function(){
        return this.selected.elements;
    },

    /**
     * Gets the indexes of the selected nodes.
     * @return {Array} An array of numeric indexes
     */
    getSelectedIndexes : function(){
        var indexes = [], 
            selected = this.selected.elements,
            i = 0,
            len = selected.length;
            
        for(; i < len; i++){
            indexes.push(selected[i].viewIndex);
        }
        return indexes;
    },

    /**
     * Gets an array of the selected records
     * @return {Array} An array of {@link Ext.data.Record} objects
     */
    getSelectedRecords : function(){
        return this.getRecords(this.selected.elements);
    },

    /**
     * Gets an array of the records from an array of nodes
     * @param {Array} nodes The nodes to evaluate
     * @return {Array} records The {@link Ext.data.Record} objects
     */
    getRecords : function(nodes){
        var records = [], 
            i = 0,
            len = nodes.length;
            
        for(; i < len; i++){
            records[records.length] = this.store.getAt(nodes[i].viewIndex);
        }
        return records;
    },

    /**
     * Gets a record from a node
     * @param {HTMLElement} node The node to evaluate
     * @return {Record} record The {@link Ext.data.Record} object
     */
    getRecord : function(node){
        return this.store.getAt(node.viewIndex);
    },

    /**
     * Clears all selections.
     * @param {Boolean} suppressEvent (optional) True to skip firing of the selectionchange event
     */
    clearSelections : function(suppressEvent, skipUpdate){
        if((this.multiSelect || this.singleSelect) && this.selected.getCount() > 0){
            if(!skipUpdate){
                this.selected.removeClass(this.selectedClass);
            }
            this.selected.clear();
            this.last = false;
            if(!suppressEvent){
                this.fireEvent("selectionchange", this, this.selected.elements);
            }
        }
    },

    /**
     * Returns true if the passed node is selected, else false.
     * @param {HTMLElement/Number/Ext.data.Record} node The node, node index or record to check
     * @return {Boolean} True if selected, else false
     */
    isSelected : function(node){
        return this.selected.contains(this.getNode(node));
    },

    /**
     * Deselects a node.
     * @param {HTMLElement/Number/Record} node The node, node index or record to deselect
     */
    deselect : function(node){
        if(this.isSelected(node)){
            node = this.getNode(node);
            this.selected.removeElement(node);
            if(this.last == node.viewIndex){
                this.last = false;
            }
            Ext.fly(node).removeClass(this.selectedClass);
            this.fireEvent("selectionchange", this, this.selected.elements);
        }
    },

    /**
     * Selects a set of nodes.
     * @param {Array/HTMLElement/String/Number/Ext.data.Record} nodeInfo An HTMLElement template node, index of a template node,
     * id of a template node, record associated with a node or an array of any of those to select
     * @param {Boolean} keepExisting (optional) true to keep existing selections
     * @param {Boolean} suppressEvent (optional) true to skip firing of the selectionchange vent
     */
    select : function(nodeInfo, keepExisting, suppressEvent){
        if(Ext.isArray(nodeInfo)){
            if(!keepExisting){
                this.clearSelections(true);
            }
            for(var i = 0, len = nodeInfo.length; i < len; i++){
                this.select(nodeInfo[i], true, true);
            }
            if(!suppressEvent){
                this.fireEvent("selectionchange", this, this.selected.elements);
            }
        } else{
            var node = this.getNode(nodeInfo);
            if(!keepExisting){
                this.clearSelections(true);
            }
            if(node && !this.isSelected(node)){
                if(this.fireEvent("beforeselect", this, node, this.selected.elements) !== false){
                    Ext.fly(node).addClass(this.selectedClass);
                    this.selected.add(node);
                    this.last = node.viewIndex;
                    if(!suppressEvent){
                        this.fireEvent("selectionchange", this, this.selected.elements);
                    }
                }
            }
        }
    },

    /**
     * Selects a range of nodes. All nodes between start and end are selected.
     * @param {Number} start The index of the first node in the range
     * @param {Number} end The index of the last node in the range
     * @param {Boolean} keepExisting (optional) True to retain existing selections
     */
    selectRange : function(start, end, keepExisting){
        if(!keepExisting){
            this.clearSelections(true);
        }
        this.select(this.getNodes(start, end), true);
    },

    /**
     * Gets a template node.
     * @param {HTMLElement/String/Number/Ext.data.Record} nodeInfo An HTMLElement template node, index of a template node, 
     * the id of a template node or the record associated with the node.
     * @return {HTMLElement} The node or null if it wasn't found
     */
    getNode : function(nodeInfo){
        if(Ext.isString(nodeInfo)){
            return document.getElementById(nodeInfo);
        }else if(Ext.isNumber(nodeInfo)){
            return this.all.elements[nodeInfo];
        }else if(nodeInfo instanceof Ext.data.Record){
            var idx = this.store.indexOf(nodeInfo);
            return this.all.elements[idx];
        }
        return nodeInfo;
    },

    /**
     * Gets a range nodes.
     * @param {Number} start (optional) The index of the first node in the range
     * @param {Number} end (optional) The index of the last node in the range
     * @return {Array} An array of nodes
     */
    getNodes : function(start, end){
        var ns = this.all.elements,
            nodes = [],
            i;
            
        start = start || 0;
        end = !Ext.isDefined(end) ? Math.max(ns.length - 1, 0) : end;
        if(start <= end){
            for(i = start; i <= end && ns[i]; i++){
                nodes.push(ns[i]);
            }
        } else{
            for(i = start; i >= end && ns[i]; i--){
                nodes.push(ns[i]);
            }
        }
        return nodes;
    },

    /**
     * Finds the index of the passed node.
     * @param {HTMLElement/String/Number/Record} nodeInfo An HTMLElement template node, index of a template node, the id of a template node
     * or a record associated with a node.
     * @return {Number} The index of the node or -1
     */
    indexOf : function(node){
        node = this.getNode(node);
        if(Ext.isNumber(node.viewIndex)){
            return node.viewIndex;
        }
        return this.all.indexOf(node);
    },

    // private
    onBeforeLoad : function(){
        if(this.loadingText){
            this.clearSelections(false, true);
            this.getTemplateTarget().update('
    '+this.loadingText+'
    ');
            this.all.clear();
        }
    },

    onDestroy : function(){
        this.all.clear();
        this.selected.clear();
        Ext.DataView.superclass.onDestroy.call(this);
        this.bindStore(null);
    }
});

/**
 * Changes the data store bound to this view and refreshes it. (deprecated in favor of bindStore)
 * @param {Store} store The store to bind to this view
 */
Ext.DataView.prototype.setStore = Ext.DataView.prototype.bindStore;

Ext.reg('dataview', Ext.DataView);
/**
 * @class Ext.list.ListView
 * @extends Ext.DataView
 * 
    Ext.list.ListView is a fast and light-weight implentation of a
 * {@link Ext.grid.GridPanel Grid} like view with the following characteristics:
    
 * 
      
 * 
    • resizable columns
      • 
 * 
    • selectable
      • 
 * 
    • column widths are initially proportioned by percentage based on the container
 * width and number of columns
      • 
 * 
    • uses templates to render the data in any required format
      • 
 * 
    • no horizontal scrolling
      • 
 * 
    • no editing
      • 
 * 
    
 * 
    Example usage:
    
 * 
    
// consume JSON of this form:
{
   "images":[
      {
         "name":"dance_fever.jpg",
         "size":2067,
         "lastmod":1236974993000,
         "url":"images\/thumbs\/dance_fever.jpg"
      },
      {
         "name":"zack_sink.jpg",
         "size":2303,
         "lastmod":1236974993000,
         "url":"images\/thumbs\/zack_sink.jpg"
      }
   ]
}
var store = new Ext.data.JsonStore({
    url: 'get-images.php',
    root: 'images',
    fields: [
        'name', 'url',
        {name:'size', type: 'float'},
        {name:'lastmod', type:'date', dateFormat:'timestamp'}
    ]
});
store.load();

var listView = new Ext.list.ListView({
    store: store,
    multiSelect: true,
    emptyText: 'No images to display',
    reserveScrollOffset: true,
    columns: [{
        header: 'File',
        width: .5,
        dataIndex: 'name'
    },{
        header: 'Last Modified',
        width: .35,
        dataIndex: 'lastmod',
        tpl: '{lastmod:date("m-d h:i a")}'
    },{
        header: 'Size',
        dataIndex: 'size',
        tpl: '{size:fileSize}', // format using Ext.util.Format.fileSize()
        align: 'right'
    }]
});

// put it in a Panel so it looks pretty
var panel = new Ext.Panel({
    id:'images-view',
    width:425,
    height:250,
    collapsible:true,
    layout:'fit',
    title:'Simple ListView (0 items selected)',
    items: listView
});
panel.render(document.body);

// little bit of feedback
listView.on('selectionchange', function(view, nodes){
    var l = nodes.length;
    var s = l != 1 ? 's' : '';
    panel.setTitle('Simple ListView ('+l+' item'+s+' selected)');
});
 * 
    
 * @constructor
 * @param {Object} config
 * @xtype listview
 */
Ext.list.ListView = Ext.extend(Ext.DataView, {
    /**
     * Set this property to true to disable the header click handler disabling sort
     * (defaults to false).
     * @type Boolean
     * @property disableHeaders
     */
    /**
     * @cfg {Boolean} hideHeaders
     * true to hide the {@link #internalTpl header row} (defaults to false so
     * the {@link #internalTpl header row} will be shown).
     */
    /**
     * @cfg {String} itemSelector
     * Defaults to 'dl' to work with the preconfigured {@link Ext.DataView#tpl tpl}.
     * This setting specifies the CSS selector (e.g. div.some-class or span:first-child)
     * that will be used to determine what nodes the ListView will be working with.
     */
    itemSelector: 'dl',
    /**
     * @cfg {String} selectedClass The CSS class applied to a selected row (defaults to
     * 'x-list-selected'). An example overriding the default styling:
    
    
    .x-list-selected {background-color: yellow;}
    
    
     * @type String
     */
    selectedClass:'x-list-selected',
    /**
     * @cfg {String} overClass The CSS class applied when over a row (defaults to
     * 'x-list-over'). An example overriding the default styling:
    
    
    .x-list-over {background-color: orange;}
    
    
     * @type String
     */
    overClass:'x-list-over',
    /**
     * @cfg {Boolean} reserveScrollOffset
     * By default will defer accounting for the configured {@link #scrollOffset}
     * for 10 milliseconds.  Specify true to account for the configured
     * {@link #scrollOffset} immediately.
     */
    /**
     * @cfg {Number} scrollOffset The amount of space to reserve for the scrollbar (defaults to
     * undefined). If an explicit value isn't specified, this will be automatically
     * calculated.
     */
    scrollOffset : undefined,
    /**
     * @cfg {Boolean/Object} columnResize
     * Specify true or specify a configuration object for {@link Ext.list.ListView.ColumnResizer}
     * to enable the columns to be resizable (defaults to true).
     */
    columnResize: true,
    /**
     * @cfg {Array} columns An array of column configuration objects, for example:
     * 
    
{
    align: 'right',
    dataIndex: 'size',
    header: 'Size',
    tpl: '{size:fileSize}',
    width: .35
}
     * 
    
     * Acceptable properties for each column configuration object are:
     * 
      
     * 
    • align : String
      Set the CSS text-align property
     * of the column. Defaults to 'left'.
      • 
     * 
    • dataIndex : String
      See {@link Ext.grid.Column}.
     * {@link Ext.grid.Column#dataIndex dataIndex} for details.
      • 
     * 
    • header : String
      See {@link Ext.grid.Column}.
     * {@link Ext.grid.Column#header header} for details.
      • 
     * 
    • tpl : String
      Specify a string to pass as the
     * configuration string for {@link Ext.XTemplate}.  By default an {@link Ext.XTemplate}
     * will be implicitly created using the dataIndex.
      • 
     * 
    • width : Number
      Percentage of the container width
     * this column should be allocated.  Columns that have no width specified will be
     * allocated with an equal percentage to fill 100% of the container width.  To easily take
     * advantage of the full container width, leave the width of at least one column undefined.
     * Note that if you do not want to take up the full width of the container, the width of
     * every column needs to be explicitly defined.
      • 
     * 
    
     */
    /**
     * @cfg {Boolean/Object} columnSort
     * Specify true or specify a configuration object for {@link Ext.list.ListView.Sorter}
     * to enable the columns to be sortable (defaults to true).
     */
    columnSort: true,
    /**
     * @cfg {String/Array} internalTpl
     * The template to be used for the header row.  See {@link #tpl} for more details.
     */

    /*
     * IE has issues when setting percentage based widths to 100%. Default to 99.
     */
    maxColumnWidth: Ext.isIE9m ? 99 : 100,

    initComponent : function(){
        if(this.columnResize){
            this.colResizer = new Ext.list.ColumnResizer(this.colResizer);
            this.colResizer.init(this);
        }
        if(this.columnSort){
            this.colSorter = new Ext.list.Sorter(this.columnSort);
            this.colSorter.init(this);
        }
        if(!this.internalTpl){
            this.internalTpl = new Ext.XTemplate(
                '
    ',
                    '',
                    '
    ',
                        '{header}',
                    '
    ',
                    '    ',
                    '
    ',
                '
    ',
                '
    ',
                '
    '
            );
        }
        if(!this.tpl){
            this.tpl = new Ext.XTemplate(
                '',
                    '
    ',
                        '',
                        '
    ',
                        ' class="{cls}">',
                            '{[values.tpl.apply(parent)]}',
                        '
    ',
                        '    ',
                        '
    ',
                    '
    ',
                '    '
            );
        };

        var cs = this.columns,
            allocatedWidth = 0,
            colsWithWidth = 0,
            len = cs.length,
            columns = [];

        for(var i = 0; i < len; i++){
            var c = cs[i];
            if(!c.isColumn) {
                c.xtype = c.xtype ? (/^lv/.test(c.xtype) ? c.xtype : 'lv' + c.xtype) : 'lvcolumn';
                c = Ext.create(c);
            }
            if(c.width) {
                allocatedWidth += c.width*100;
                if(allocatedWidth > this.maxColumnWidth){
                    c.width -= (allocatedWidth - this.maxColumnWidth) / 100;
                }
                colsWithWidth++;
            }
            columns.push(c);
        }

        cs = this.columns = columns;

        // auto calculate missing column widths
        if(colsWithWidth < len){
            var remaining = len - colsWithWidth;
            if(allocatedWidth < this.maxColumnWidth){
                var perCol = ((this.maxColumnWidth-allocatedWidth) / remaining)/100;
                for(var j = 0; j < len; j++){
                    var c = cs[j];
                    if(!c.width){
                        c.width = perCol;
                    }
                }
            }
        }
        Ext.list.ListView.superclass.initComponent.call(this);
    },

    onRender : function(){
        this.autoEl = {
            cls: 'x-list-wrap'
        };
        Ext.list.ListView.superclass.onRender.apply(this, arguments);

        this.internalTpl.overwrite(this.el, {columns: this.columns});

        this.innerBody = Ext.get(this.el.dom.childNodes[1].firstChild);
        this.innerHd = Ext.get(this.el.dom.firstChild.firstChild);

        if(this.hideHeaders){
            this.el.dom.firstChild.style.display = 'none';
        }
    },

    getTemplateTarget : function(){
        return this.innerBody;
    },

    /**
     * 
    Function which can be overridden which returns the data object passed to this
     * view's {@link #tpl template} to render the whole ListView. The returned object
     * shall contain the following properties:
    
     * 
      
     * 
    • columns : String
      See {@link #columns}
      • 
     * 
    • rows : String
      See
     * {@link Ext.DataView}.{@link Ext.DataView#collectData collectData}
      • 
     * 
    
     * @param {Array} records An Array of {@link Ext.data.Record}s to be rendered into the DataView.
     * @param {Number} startIndex the index number of the Record being prepared for rendering.
     * @return {Object} A data object containing properties to be processed by a repeating
     * XTemplate as described above.
     */
    collectData : function(){
        var rs = Ext.list.ListView.superclass.collectData.apply(this, arguments);
        return {
            columns: this.columns,
            rows: rs
        };
    },

    verifyInternalSize : function(){
        if(this.lastSize){
            this.onResize(this.lastSize.width, this.lastSize.height);
        }
    },

    // private
    onResize : function(w, h){
        var body = this.innerBody.dom,
            header = this.innerHd.dom,
            scrollWidth = w - Ext.num(this.scrollOffset, Ext.getScrollBarWidth()) + 'px',
            parentNode;
            
        if(!body){
            return;
        }
        parentNode = body.parentNode;
        if(Ext.isNumber(w)){
            if(this.reserveScrollOffset || ((parentNode.offsetWidth - parentNode.clientWidth) > 10)){
                body.style.width = scrollWidth;
                header.style.width = scrollWidth;
            }else{
                body.style.width = w + 'px';
                header.style.width = w + 'px';
                setTimeout(function(){
                    if((parentNode.offsetWidth - parentNode.clientWidth) > 10){
                        body.style.width = scrollWidth;
                        header.style.width = scrollWidth;
                    }
                }, 10);
            }
        }
        if(Ext.isNumber(h)){
            parentNode.style.height = Math.max(0, h - header.parentNode.offsetHeight) + 'px';
        }
    },

    updateIndexes : function(){
        Ext.list.ListView.superclass.updateIndexes.apply(this, arguments);
        this.verifyInternalSize();
    },

    findHeaderIndex : function(header){
        header = header.dom || header;
        var parentNode = header.parentNode, 
            children = parentNode.parentNode.childNodes,
            i = 0,
            c;
        for(; c = children[i]; i++){
            if(c == parentNode){
                return i;
            }
        }
        return -1;
    },

    setHdWidths : function(){
        var els = this.innerHd.dom.getElementsByTagName('div'),
            i = 0,
            columns = this.columns,
            len = columns.length;
            
        for(; i < len; i++){
            els[i].style.width = (columns[i].width*100) + '%';
        }
    }
});

Ext.reg('listview', Ext.list.ListView);

// Backwards compatibility alias
Ext.ListView = Ext.list.ListView;/**
 * @class Ext.list.Column
 * 
    This class encapsulates column configuration data to be used in the initialization of a
 * {@link Ext.list.ListView ListView}.
    
 * 
    While subclasses are provided to render data in different ways, this class renders a passed
 * data field unchanged and is usually used for textual columns.
    
 */
Ext.list.Column = Ext.extend(Object, {
    /**
     * @private
     * @cfg {Boolean} isColumn
     * Used by ListView constructor method to avoid reprocessing a Column
     * if isColumn is not set ListView will recreate a new Ext.list.Column
     * Defaults to true.
     */
    isColumn: true,
    
    /**
     * @cfg {String} align
     * Set the CSS text-align property of the column. Defaults to 'left'.
     */        
    align: 'left',
    /**
     * @cfg {String} header Optional. The header text to be used as innerHTML
     * (html tags are accepted) to display in the ListView.  Note: to
     * have a clickable header with no text displayed use ' '.
     */    
    header: '',
    
    /**
     * @cfg {Number} width Optional. Percentage of the container width
     * this column should be allocated.  Columns that have no width specified will be
     * allocated with an equal percentage to fill 100% of the container width.  To easily take
     * advantage of the full container width, leave the width of at least one column undefined.
     * Note that if you do not want to take up the full width of the container, the width of
     * every column needs to be explicitly defined.
     */    
    width: null,

    /**
     * @cfg {String} cls Optional. This option can be used to add a CSS class to the cell of each
     * row for this column.
     */
    cls: '',
    
    /**
     * @cfg {String} tpl Optional. Specify a string to pass as the
     * configuration string for {@link Ext.XTemplate}.  By default an {@link Ext.XTemplate}
     * will be implicitly created using the dataIndex.
     */

    /**
     * @cfg {String} dataIndex 
    Required. The name of the field in the
     * ListViews's {@link Ext.data.Store}'s {@link Ext.data.Record} definition from
     * which to draw the column's value.
    
     */
    
    constructor : function(c){
        if(!c.tpl){
            c.tpl = new Ext.XTemplate('{' + c.dataIndex + '}');
        }
        else if(Ext.isString(c.tpl)){
            c.tpl = new Ext.XTemplate(c.tpl);
        }
        
        Ext.apply(this, c);
    }
});

Ext.reg('lvcolumn', Ext.list.Column);

/**
 * @class Ext.list.NumberColumn
 * @extends Ext.list.Column
 * 
    A Column definition class which renders a numeric data field according to a {@link #format} string.  See the
 * {@link Ext.list.Column#xtype xtype} config option of {@link Ext.list.Column} for more details.
    
 */
Ext.list.NumberColumn = Ext.extend(Ext.list.Column, {
    /**
     * @cfg {String} format
     * A formatting string as used by {@link Ext.util.Format#number} to format a numeric value for this Column
     * (defaults to '0,000.00').
     */    
    format: '0,000.00',
    
    constructor : function(c) {
        c.tpl = c.tpl || new Ext.XTemplate('{' + c.dataIndex + ':number("' + (c.format || this.format) + '")}');       
        Ext.list.NumberColumn.superclass.constructor.call(this, c);
    }
});

Ext.reg('lvnumbercolumn', Ext.list.NumberColumn);

/**
 * @class Ext.list.DateColumn
 * @extends Ext.list.Column
 * 
    A Column definition class which renders a passed date according to the default locale, or a configured
 * {@link #format}. See the {@link Ext.list.Column#xtype xtype} config option of {@link Ext.list.Column}
 * for more details.
    
 */
Ext.list.DateColumn = Ext.extend(Ext.list.Column, {
    format: 'm/d/Y',
    constructor : function(c) {
        c.tpl = c.tpl || new Ext.XTemplate('{' + c.dataIndex + ':date("' + (c.format || this.format) + '")}');      
        Ext.list.DateColumn.superclass.constructor.call(this, c);
    }
});
Ext.reg('lvdatecolumn', Ext.list.DateColumn);

/**
 * @class Ext.list.BooleanColumn
 * @extends Ext.list.Column
 * 
    A Column definition class which renders boolean data fields.  See the {@link Ext.list.Column#xtype xtype}
 * config option of {@link Ext.list.Column} for more details.
    
 */
Ext.list.BooleanColumn = Ext.extend(Ext.list.Column, {
    /**
     * @cfg {String} trueText
     * The string returned by the renderer when the column value is not falsey (defaults to 'true').
     */
    trueText: 'true',
    /**
     * @cfg {String} falseText
     * The string returned by the renderer when the column value is falsey (but not undefined) (defaults to
     * 'false').
     */
    falseText: 'false',
    /**
     * @cfg {String} undefinedText
     * The string returned by the renderer when the column value is undefined (defaults to ' ').
     */
    undefinedText: ' ',
    
    constructor : function(c) {
        c.tpl = c.tpl || new Ext.XTemplate('{' + c.dataIndex + ':this.format}');
        
        var t = this.trueText, f = this.falseText, u = this.undefinedText;
        c.tpl.format = function(v){
            if(v === undefined){
                return u;
            }
            if(!v || v === 'false'){
                return f;
            }
            return t;
        };
        
        Ext.list.DateColumn.superclass.constructor.call(this, c);
    }
});

Ext.reg('lvbooleancolumn', Ext.list.BooleanColumn);/**
 * @class Ext.list.ColumnResizer
 * @extends Ext.util.Observable
 * 
    Supporting Class for Ext.list.ListView
    
 * @constructor
 * @param {Object} config
 */
Ext.list.ColumnResizer = Ext.extend(Ext.util.Observable, {
    /**
     * @cfg {Number} minPct The minimum percentage to allot for any column (defaults to .05)
     */
    minPct: .05,

    constructor: function(config){
        Ext.apply(this, config);
        Ext.list.ColumnResizer.superclass.constructor.call(this);
    },
    init : function(listView){
        this.view = listView;
        listView.on('render', this.initEvents, this);
    },

    initEvents : function(view){
        view.mon(view.innerHd, 'mousemove', this.handleHdMove, this);
        this.tracker = new Ext.dd.DragTracker({
            onBeforeStart: this.onBeforeStart.createDelegate(this),
            onStart: this.onStart.createDelegate(this),
            onDrag: this.onDrag.createDelegate(this),
            onEnd: this.onEnd.createDelegate(this),
            tolerance: 3,
            autoStart: 300
        });
        this.tracker.initEl(view.innerHd);
        view.on('beforedestroy', this.tracker.destroy, this.tracker);
    },

    handleHdMove : function(e, t){
        var handleWidth = 5,
            x = e.getPageX(),
            header = e.getTarget('em', 3, true);
        if(header){
            var region = header.getRegion(),
                style = header.dom.style,
                parentNode = header.dom.parentNode;

            if(x - region.left <= handleWidth && parentNode != parentNode.parentNode.firstChild){
                this.activeHd = Ext.get(parentNode.previousSibling.firstChild);
                style.cursor = Ext.isWebKit ? 'e-resize' : 'col-resize';
            } else if(region.right - x <= handleWidth && parentNode != parentNode.parentNode.lastChild.previousSibling){
                this.activeHd = header;
                style.cursor = Ext.isWebKit ? 'w-resize' : 'col-resize';
            } else{
                delete this.activeHd;
                style.cursor = '';
            }
        }
    },

    onBeforeStart : function(e){
        this.dragHd = this.activeHd;
        return !!this.dragHd;
    },

    onStart: function(e){
        
        var me = this,
            view = me.view,
            dragHeader = me.dragHd,
            x = me.tracker.getXY()[0];            
        
        me.proxy = view.el.createChild({cls:'x-list-resizer'});
        me.dragX = dragHeader.getX();
        me.headerIndex = view.findHeaderIndex(dragHeader);
        
        me.headersDisabled = view.disableHeaders;
        view.disableHeaders = true;
        
        me.proxy.setHeight(view.el.getHeight());
        me.proxy.setX(me.dragX);
        me.proxy.setWidth(x - me.dragX);
        
        this.setBoundaries();
        
    },
    
    // Sets up the boundaries for the drag/drop operation
    setBoundaries: function(relativeX){
        var view = this.view,
            headerIndex = this.headerIndex,
            width = view.innerHd.getWidth(),
            relativeX = view.innerHd.getX(),
            minWidth = Math.ceil(width * this.minPct),
            maxWidth = width - minWidth,
            numColumns = view.columns.length,
            headers = view.innerHd.select('em', true),
            minX = minWidth + relativeX,
            maxX = maxWidth + relativeX,
            header;
          
        if (numColumns == 2) {
            this.minX = minX;
            this.maxX = maxX;
        }else{
            header = headers.item(headerIndex + 2);
            this.minX = headers.item(headerIndex).getX() + minWidth;
            this.maxX = header ? header.getX() - minWidth : maxX;
            if (headerIndex == 0) {
                // First
                this.minX = minX;
            } else if (headerIndex == numColumns - 2) {
                // Last
                this.maxX = maxX;
            }
        }
    },

    onDrag: function(e){
        var me = this,
            cursorX = me.tracker.getXY()[0].constrain(me.minX, me.maxX);
            
        me.proxy.setWidth(cursorX - this.dragX);
    },

    onEnd: function(e){
        /* calculate desired width by measuring proxy and then remove it */
        var newWidth = this.proxy.getWidth(),
            index = this.headerIndex,
            view = this.view,
            columns = view.columns,
            width = view.innerHd.getWidth(),
            newPercent = Math.ceil(newWidth * view.maxColumnWidth / width) / 100,
            disabled = this.headersDisabled,
            headerCol = columns[index],
            otherCol = columns[index + 1],
            totalPercent = headerCol.width + otherCol.width;

        this.proxy.remove();

        headerCol.width = newPercent;
        otherCol.width = totalPercent - newPercent;
      
        delete this.dragHd;
        view.setHdWidths();
        view.refresh();
        
        setTimeout(function(){
            view.disableHeaders = disabled;
        }, 100);
    }
});

// Backwards compatibility alias
Ext.ListView.ColumnResizer = Ext.list.ColumnResizer;/**
 * @class Ext.list.Sorter
 * @extends Ext.util.Observable
 * 
    Supporting Class for Ext.list.ListView
    
 * @constructor
 * @param {Object} config
 */
Ext.list.Sorter = Ext.extend(Ext.util.Observable, {
    /**
     * @cfg {Array} sortClasses
     * The CSS classes applied to a header when it is sorted. (defaults to ["sort-asc", "sort-desc"])
     */
    sortClasses : ["sort-asc", "sort-desc"],

    constructor: function(config){
        Ext.apply(this, config);
        Ext.list.Sorter.superclass.constructor.call(this);
    },

    init : function(listView){
        this.view = listView;
        listView.on('render', this.initEvents, this);
    },

    initEvents : function(view){
        view.mon(view.innerHd, 'click', this.onHdClick, this);
        view.innerHd.setStyle('cursor', 'pointer');
        view.mon(view.store, 'datachanged', this.updateSortState, this);
        this.updateSortState.defer(10, this, [view.store]);
    },

    updateSortState : function(store){
        var state = store.getSortState();
        if(!state){
            return;
        }
        this.sortState = state;
        var cs = this.view.columns, sortColumn = -1;
        for(var i = 0, len = cs.length; i < len; i++){
            if(cs[i].dataIndex == state.field){
                sortColumn = i;
                break;
            }
        }
        if(sortColumn != -1){
            var sortDir = state.direction;
            this.updateSortIcon(sortColumn, sortDir);
        }
    },

    updateSortIcon : function(col, dir){
        var sc = this.sortClasses;
        var hds = this.view.innerHd.select('em').removeClass(sc);
        hds.item(col).addClass(sc[dir == "DESC" ? 1 : 0]);
    },

    onHdClick : function(e){
        var hd = e.getTarget('em', 3);
        if(hd && !this.view.disableHeaders){
            var index = this.view.findHeaderIndex(hd);
            this.view.store.sort(this.view.columns[index].dataIndex);
        }
    }
});

// Backwards compatibility alias
Ext.ListView.Sorter = Ext.list.Sorter;/**
 * @class Ext.TabPanel
 * 
    A basic tab container. TabPanels can be used exactly like a standard {@link Ext.Panel}
 * for layout purposes, but also have special support for containing child Components
 * ({@link Ext.Container#items items}) that are managed using a
 * {@link Ext.layout.CardLayout CardLayout layout manager}, and displayed as separate tabs.
    
 *
 * Note: By default, a tab's close tool destroys the child tab Component
 * and all its descendants. This makes the child tab Component, and all its descendants unusable. To enable
 * re-use of a tab, configure the TabPanel with {@link #autoDestroy autoDestroy: false}.
 *
 * 
    TabPanel header/footer elements
    
 * 
    TabPanels use their {@link Ext.Panel#header header} or {@link Ext.Panel#footer footer} element
 * (depending on the {@link #tabPosition} configuration) to accommodate the tab selector buttons.
 * This means that a TabPanel will not display any configured title, and will not display any
 * configured header {@link Ext.Panel#tools tools}.
    
 * 
    To display a header, embed the TabPanel in a {@link Ext.Panel Panel} which uses
 * {@link Ext.Container#layout layout:'fit'}.
    
 *
 * 
    Tab Events
    
 * 
    There is no actual tab class — each tab is simply a {@link Ext.BoxComponent Component}
 * such as a {@link Ext.Panel Panel}. However, when rendered in a TabPanel, each child Component
 * can fire additional events that only exist for tabs and are not available from other Components.
 * These events are:
    
 * 
      
 * 
    • {@link Ext.Panel#activate activate} : Fires when this Component becomes
 * the active tab.
      • 
 * 
    • {@link Ext.Panel#deactivate deactivate} : Fires when the Component that
 * was the active tab becomes deactivated.
      • 
 * 
    • {@link Ext.Panel#beforeclose beforeclose} : Fires when the user clicks on the close tool of a closeable tab.
 * May be vetoed by returning false from a handler.
      • 
 * 
    • {@link Ext.Panel#close close} : Fires a closeable tab has been closed by the user.
      • 
 * 
    
 * 
    Creating TabPanels from Code
    
 * 
    TabPanels can be created and rendered completely in code, as in this example:
    
 * 
    
var tabs = new Ext.TabPanel({
    renderTo: Ext.getBody(),
    activeTab: 0,
    items: [{
        title: 'Tab 1',
        html: 'A simple tab'
    },{
        title: 'Tab 2',
        html: 'Another one'
    }]
});

    
 * 
    Creating TabPanels from Existing Markup
    
 * 
    TabPanels can also be rendered from pre-existing markup in a couple of ways.
    
 * 
      
 *
 * 
    • Pre-Structured Markup
      • 
 * 
      
 * 
      A container div with one or more nested tab divs with class 'x-tab' can be rendered entirely
 * from existing markup (See the {@link #autoTabs} example).
      
 * 
      
 *
 * 
    • Un-Structured Markup
      • 
 * 
      
 * 
      A TabPanel can also be rendered from markup that is not strictly structured by simply specifying by id
 * which elements should be the container and the tabs. Using this method tab content can be pulled from different
 * elements within the page by id regardless of page structure. For example:
      
 * 
      
var tabs = new Ext.TabPanel({
    renderTo: 'my-tabs',
    activeTab: 0,
    items:[
        {contentEl:'tab1', title:'Tab 1'},
        {contentEl:'tab2', title:'Tab 2'}
    ]
});

// Note that the tabs do not have to be nested within the container (although they can be)
<div id="my-tabs"></div>
<div id="tab1" class="x-hide-display">A simple tab</div>
<div id="tab2" class="x-hide-display">Another one</div>

      
 * Note that the tab divs in this example contain the class 'x-hide-display' so that they can be rendered
 * deferred without displaying outside the tabs. You could alternately set {@link #deferredRender} = false 
 * to render all content tabs on page load.
 * 
      
 *
 * 
    
 *
 * @extends Ext.Panel
 * @constructor
 * @param {Object} config The configuration options
 * @xtype tabpanel
 */
Ext.TabPanel = Ext.extend(Ext.Panel,  {
    /**
     * @cfg {Boolean} layoutOnTabChange
     * Set to true to force a layout of the active tab when the tab is changed. Defaults to false.
     * See {@link Ext.layout.CardLayout}.{@link Ext.layout.CardLayout#layoutOnCardChange layoutOnCardChange}.
     */
    /**
     * @cfg {String} tabCls This config option is used on child Components of ths TabPanel. A CSS
     * class name applied to the tab strip item representing the child Component, allowing special
     * styling to be applied.
     */
    /**
     * @cfg {Boolean} deferredRender
     * 
    true by default to defer the rendering of child {@link Ext.Container#items items}
     * to the browsers DOM until a tab is activated. false will render all contained
     * {@link Ext.Container#items items} as soon as the {@link Ext.layout.CardLayout layout}
     * is rendered. If there is a significant amount of content or a lot of heavy controls being
     * rendered into panels that are not displayed by default, setting this to true might
     * improve performance.
    
     * 
    The deferredRender property is internally passed to the layout manager for
     * TabPanels ({@link Ext.layout.CardLayout}) as its {@link Ext.layout.CardLayout#deferredRender}
     * configuration value.
    
     * 
    Note: leaving deferredRender as true means that the content
     * within an unactivated tab will not be available. For example, this means that if the TabPanel
     * is within a {@link Ext.form.FormPanel form}, then until a tab is activated, any Fields within
     * unactivated tabs will not be rendered, and will therefore not be submitted and will not be
     * available to either {@link Ext.form.BasicForm#getValues getValues} or
     * {@link Ext.form.BasicForm#setValues setValues}.
    
     */
    deferredRender : true,
    /**
     * @cfg {Number} tabWidth The initial width in pixels of each new tab (defaults to 120).
     */
    tabWidth : 120,
    /**
     * @cfg {Number} minTabWidth The minimum width in pixels for each tab when {@link #resizeTabs} = true (defaults to 30).
     */
    minTabWidth : 30,
    /**
     * @cfg {Boolean} resizeTabs True to automatically resize each tab so that the tabs will completely fill the
     * tab strip (defaults to false).  Setting this to true may cause specific widths that might be set per tab to
     * be overridden in order to fit them all into view (although {@link #minTabWidth} will always be honored).
     */
    resizeTabs : false,
    /**
     * @cfg {Boolean} enableTabScroll True to enable scrolling to tabs that may be invisible due to overflowing the
     * overall TabPanel width. Only available with tabPosition:'top' (defaults to false).
     */
    enableTabScroll : false,
    /**
     * @cfg {Number} scrollIncrement The number of pixels to scroll each time a tab scroll button is pressed
     * (defaults to 100, or if {@link #resizeTabs} = true, the calculated tab width).  Only
     * applies when {@link #enableTabScroll} = true.
     */
    scrollIncrement : 0,
    /**
     * @cfg {Number} scrollRepeatInterval Number of milliseconds between each scroll while a tab scroll button is
     * continuously pressed (defaults to 400).
     */
    scrollRepeatInterval : 400,
    /**
     * @cfg {Float} scrollDuration The number of milliseconds that each scroll animation should last (defaults
     * to .35). Only applies when {@link #animScroll} = true.
     */
    scrollDuration : 0.35,
    /**
     * @cfg {Boolean} animScroll True to animate tab scrolling so that hidden tabs slide smoothly into view (defaults
     * to true).  Only applies when {@link #enableTabScroll} = true.
     */
    animScroll : true,
    /**
     * @cfg {String} tabPosition The position where the tab strip should be rendered (defaults to 'top').
     * The only other supported value is 'bottom'.  Note: tab scrolling is only supported for
     * tabPosition: 'top'.
     */
    tabPosition : 'top',
    /**
     * @cfg {String} baseCls The base CSS class applied to the panel (defaults to 'x-tab-panel').
     */
    baseCls : 'x-tab-panel',
    /**
     * @cfg {Boolean} autoTabs
     * 
    true to query the DOM for any divs with a class of 'x-tab' to be automatically converted
     * to tabs and added to this panel (defaults to false).  Note that the query will be executed within
     * the scope of the container element only (so that multiple tab panels from markup can be supported via this
     * method).
    
     * 
    This method is only possible when the markup is structured correctly as a container with nested divs
     * containing the class 'x-tab'. To create TabPanels without these limitations, or to pull tab content
     * from other elements on the page, see the example at the top of the class for generating tabs from markup.
    
     * 
    There are a couple of things to note when using this method:
      
     * 
    • When using the autoTabs config (as opposed to passing individual tab configs in the TabPanel's
     * {@link #items} collection), you must use {@link #applyTo} to correctly use the specified id
     * as the tab container. The autoTabs method replaces existing content with the TabPanel
     * components.
      • 
     * 
    • Make sure that you set {@link #deferredRender}: false so that the content elements for each
     * tab will be rendered into the TabPanel immediately upon page load, otherwise they will not be transformed
     * until each tab is activated and will be visible outside the TabPanel.
      • 
     * 
    Example usage:
    
     * 
    
var tabs = new Ext.TabPanel({
    applyTo: 'my-tabs',
    activeTab: 0,
    deferredRender: false,
    autoTabs: true
});

// This markup will be converted to a TabPanel from the code above
<div id="my-tabs">
    <div class="x-tab" title="Tab 1">A simple tab</div>
    <div class="x-tab" title="Tab 2">Another one</div>
</div>

    
     */
    autoTabs : false,
    /**
     * @cfg {String} autoTabSelector The CSS selector used to search for tabs in existing markup when
     * {@link #autoTabs} = true (defaults to 'div.x-tab').  This can be any valid selector
     * supported by {@link Ext.DomQuery#select}. Note that the query will be executed within the scope of this
     * tab panel only (so that multiple tab panels from markup can be supported on a page).
     */
    autoTabSelector : 'div.x-tab',
    /**
     * @cfg {String/Number} activeTab A string id or the numeric index of the tab that should be initially
     * activated on render (defaults to undefined).
     */
    activeTab : undefined,
    /**
     * @cfg {Number} tabMargin The number of pixels of space to calculate into the sizing and scrolling of
     * tabs. If you change the margin in CSS, you will need to update this value so calculations are correct
     * with either {@link #resizeTabs} or scrolling tabs. (defaults to 2)
     */
    tabMargin : 2,
    /**
     * @cfg {Boolean} plain     true to render the tab strip without a background container image
     * (defaults to false).
     */
    plain : false,
    /**
     * @cfg {Number} wheelIncrement For scrolling tabs, the number of pixels to increment on mouse wheel
     * scrolling (defaults to 20).
     */
    wheelIncrement : 20,

    /*
     * This is a protected property used when concatenating tab ids to the TabPanel id for internal uniqueness.
     * It does not generally need to be changed, but can be if external code also uses an id scheme that can
     * potentially clash with this one.
     */
    idDelimiter : '__',

    // private
    itemCls : 'x-tab-item',

    // private config overrides
    elements : 'body',
    headerAsText : false,
    frame : false,
    hideBorders :true,

    // private
    initComponent : function(){
        this.frame = false;
        Ext.TabPanel.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event beforetabchange
             * Fires before the active tab changes. Handlers can return false to cancel the tab change.
             * @param {TabPanel} this
             * @param {Panel} newTab The tab being activated
             * @param {Panel} currentTab The current active tab
             */
            'beforetabchange',
            /**
             * @event tabchange
             * Fires after the active tab has changed.
             * @param {TabPanel} this
             * @param {Panel} tab The new active tab
             */
            'tabchange',
            /**
             * @event contextmenu
             * Relays the contextmenu event from a tab selector element in the tab strip.
             * @param {TabPanel} this
             * @param {Panel} tab The target tab
             * @param {EventObject} e
             */
            'contextmenu'
        );
        /**
         * @cfg {Object} layoutConfig
         * TabPanel implicitly uses {@link Ext.layout.CardLayout} as its layout manager.
         * layoutConfig may be used to configure this layout manager.
         * {@link #deferredRender} and {@link #layoutOnTabChange}
         * configured on the TabPanel will be applied as configs to the layout manager.
         */
        this.setLayout(new Ext.layout.CardLayout(Ext.apply({
            layoutOnCardChange: this.layoutOnTabChange,
            deferredRender: this.deferredRender
        }, this.layoutConfig)));

        if(this.tabPosition == 'top'){
            this.elements += ',header';
            this.stripTarget = 'header';
        }else {
            this.elements += ',footer';
            this.stripTarget = 'footer';
        }
        if(!this.stack){
            this.stack = Ext.TabPanel.AccessStack();
        }
        this.initItems();
    },

    // private
    onRender : function(ct, position){
        Ext.TabPanel.superclass.onRender.call(this, ct, position);

        if(this.plain){
            var pos = this.tabPosition == 'top' ? 'header' : 'footer';
            this[pos].addClass('x-tab-panel-'+pos+'-plain');
        }

        var st = this[this.stripTarget];

        this.stripWrap = st.createChild({cls:'x-tab-strip-wrap', cn:{
            tag:'ul', cls:'x-tab-strip x-tab-strip-'+this.tabPosition}});

        var beforeEl = (this.tabPosition=='bottom' ? this.stripWrap : null);
        st.createChild({cls:'x-tab-strip-spacer'}, beforeEl);
        this.strip = new Ext.Element(this.stripWrap.dom.firstChild);

        // create an empty span with class x-tab-strip-text to force the height of the header element when there's no tabs.
        this.edge = this.strip.createChild({tag:'li', cls:'x-tab-edge', cn: [{tag: 'span', cls: 'x-tab-strip-text', cn: ' '}]});
        this.strip.createChild({cls:'x-clear'});

        this.body.addClass('x-tab-panel-body-'+this.tabPosition);

        /**
         * @cfg {Template/XTemplate} itemTpl 
    (Optional) A {@link Ext.Template Template} or
         * {@link Ext.XTemplate XTemplate} which may be provided to process the data object returned from
         * {@link #getTemplateArgs} to produce a clickable selector element in the tab strip.
    
         * 
    The main element created should be a <li> element. In order for a click event on
         * a selector element to be connected to its item, it must take its id from the TabPanel's
         * native {@link #getTemplateArgs}.
    
         * 
    The child element which contains the title text must be marked by the CSS class
         * x-tab-strip-inner.
    
         * 
    To enable closability, the created element should contain an element marked by the CSS class
         * x-tab-strip-close.
    
         * 
    If a custom itemTpl is supplied, it is the developer's responsibility to create CSS
         * style rules to create the desired appearance.
    
         * Below is an example of how to create customized tab selector items:
    
new Ext.TabPanel({
    renderTo: document.body,
    minTabWidth: 115,
    tabWidth: 135,
    enableTabScroll: true,
    width: 600,
    height: 250,
    defaults: {autoScroll:true},
    itemTpl: new Ext.XTemplate(
    '<li class="{cls}" id="{id}" style="overflow:hidden">',
         '<tpl if="closable">',
            '<a class="x-tab-strip-close"></a>',
         '</tpl>',
         '<a class="x-tab-right" href="#" style="padding-left:6px">',
            '<em class="x-tab-left">',
                '<span class="x-tab-strip-inner">',
                    '<img src="{src}" style="float:left;margin:3px 3px 0 0">',
                    '<span style="margin-left:20px" class="x-tab-strip-text {iconCls}">{text} {extra}</span>',
                '</span>',
            '</em>',
        '</a>',
    '</li>'
    ),
    getTemplateArgs: function(item) {
//      Call the native method to collect the base data. Like the ID!
        var result = Ext.TabPanel.prototype.getTemplateArgs.call(this, item);

//      Add stuff used in our template
        return Ext.apply(result, {
            closable: item.closable,
            src: item.iconSrc,
            extra: item.extraText || ''
        });
    },
    items: [{
        title: 'New Tab 1',
        iconSrc: '../shared/icons/fam/grid.png',
        html: 'Tab Body 1',
        closable: true
    }, {
        title: 'New Tab 2',
        iconSrc: '../shared/icons/fam/grid.png',
        html: 'Tab Body 2',
        extraText: 'Extra stuff in the tab button'
    }]
});

    
         */
        if(!this.itemTpl){
            var tt = new Ext.Template(
                 '
  • ',
                 '',
                 '{text}',
                 '
    • '
            );
            tt.disableFormats = true;
            tt.compile();
            Ext.TabPanel.prototype.itemTpl = tt;
        }

        this.items.each(this.initTab, this);
    },

    // private
    afterRender : function(){
        Ext.TabPanel.superclass.afterRender.call(this);
        if(this.autoTabs){
            this.readTabs(false);
        }
        if(this.activeTab !== undefined){
            var item = Ext.isObject(this.activeTab) ? this.activeTab : this.items.get(this.activeTab);
            delete this.activeTab;
            this.setActiveTab(item);
        }
    },

    // private
    initEvents : function(){
        Ext.TabPanel.superclass.initEvents.call(this);
        this.mon(this.strip, {
            scope: this,
            mousedown: this.onStripMouseDown,
            contextmenu: this.onStripContextMenu
        });
        if(this.enableTabScroll){
            this.mon(this.strip, 'mousewheel', this.onWheel, this);
        }
    },

    // private
    findTargets : function(e){
        var item = null,
            itemEl = e.getTarget('li:not(.x-tab-edge)', this.strip);

        if(itemEl){
            item = this.getComponent(itemEl.id.split(this.idDelimiter)[1]);
            if(item.disabled){
                return {
                    close : null,
                    item : null,
                    el : null
                };
            }
        }
        return {
            close : e.getTarget('.x-tab-strip-close', this.strip),
            item : item,
            el : itemEl
        };
    },

    // private
    onStripMouseDown : function(e){
        if(e.button !== 0){
            return;
        }
        e.preventDefault();
        var t = this.findTargets(e);
        if(t.close){
            if (t.item.fireEvent('beforeclose', t.item) !== false) {
                t.item.fireEvent('close', t.item);
                this.remove(t.item);
            }
            return;
        }
        if(t.item && t.item != this.activeTab){
            this.setActiveTab(t.item);
        }
    },

    // private
    onStripContextMenu : function(e){
        e.preventDefault();
        var t = this.findTargets(e);
        if(t.item){
            this.fireEvent('contextmenu', this, t.item, e);
        }
    },

    /**
     * True to scan the markup in this tab panel for {@link #autoTabs} using the
     * {@link #autoTabSelector}
     * @param {Boolean} removeExisting True to remove existing tabs
     */
    readTabs : function(removeExisting){
        if(removeExisting === true){
            this.items.each(function(item){
                this.remove(item);
            }, this);
        }
        var tabs = this.el.query(this.autoTabSelector);
        for(var i = 0, len = tabs.length; i < len; i++){
            var tab = tabs[i],
                title = tab.getAttribute('title');
            tab.removeAttribute('title');
            this.add({
                title: title,
                contentEl: tab
            });
        }
    },

    // private
    initTab : function(item, index){
        var before = this.strip.dom.childNodes[index],
            p = this.getTemplateArgs(item),
            el = before ?
                 this.itemTpl.insertBefore(before, p) :
                 this.itemTpl.append(this.strip, p),
            cls = 'x-tab-strip-over',
            tabEl = Ext.get(el);

        tabEl.hover(function(){
            if(!item.disabled){
                tabEl.addClass(cls);
            }
        }, function(){
            tabEl.removeClass(cls);
        });

        if(item.tabTip){
            tabEl.child('span.x-tab-strip-text', true).qtip = item.tabTip;
        }
        item.tabEl = el;

        // Route *keyboard triggered* click events to the tab strip mouse handler.
        tabEl.select('a').on('click', function(e){
            if(!e.getPageX()){
                this.onStripMouseDown(e);
            }
        }, this, {preventDefault: true});

        item.on({
            scope: this,
            disable: this.onItemDisabled,
            enable: this.onItemEnabled,
            titlechange: this.onItemTitleChanged,
            iconchange: this.onItemIconChanged,
            beforeshow: this.onBeforeShowItem
        });
    },



    /**
     * 
    Provides template arguments for rendering a tab selector item in the tab strip.
    
     * 
    This method returns an object hash containing properties used by the TabPanel's {@link #itemTpl}
     * to create a formatted, clickable tab selector element. The properties which must be returned
     * are:
      
     * 
    • id : String
      A unique identifier which links to the item
      • 
     * 
    • text : String
      The text to display
      • 
     * 
    • cls : String
      The CSS class name
      • 
     * 
    • iconCls : String
      A CSS class to provide appearance for an icon.
      • 
     * 
    
     * @param {Ext.BoxComponent} item The {@link Ext.BoxComponent BoxComponent} for which to create a selector element in the tab strip.
     * @return {Object} An object hash containing the properties required to render the selector element.
     */
    getTemplateArgs : function(item) {
        var cls = item.closable ? 'x-tab-strip-closable' : '';
        if(item.disabled){
            cls += ' x-item-disabled';
        }
        if(item.iconCls){
            cls += ' x-tab-with-icon';
        }
        if(item.tabCls){
            cls += ' ' + item.tabCls;
        }

        return {
            id: this.id + this.idDelimiter + item.getItemId(),
            text: item.title,
            cls: cls,
            iconCls: item.iconCls || ''
        };
    },

    // private
    onAdd : function(c){
        Ext.TabPanel.superclass.onAdd.call(this, c);
        if(this.rendered){
            var items = this.items;
            this.initTab(c, items.indexOf(c));
            this.delegateUpdates();
        }
    },

    // private
    onBeforeAdd : function(item){
        var existing = item.events ? (this.items.containsKey(item.getItemId()) ? item : null) : this.items.get(item);
        if(existing){
            this.setActiveTab(item);
            return false;
        }
        Ext.TabPanel.superclass.onBeforeAdd.apply(this, arguments);
        var es = item.elements;
        item.elements = es ? es.replace(',header', '') : es;
        item.border = (item.border === true);
    },

    // private
    onRemove : function(c){
        var te = Ext.get(c.tabEl);
        // check if the tabEl exists, it won't if the tab isn't rendered
        if(te){
            te.select('a').removeAllListeners();
            Ext.destroy(te);
        }
        Ext.TabPanel.superclass.onRemove.call(this, c);
        this.stack.remove(c);
        delete c.tabEl;
        c.un('disable', this.onItemDisabled, this);
        c.un('enable', this.onItemEnabled, this);
        c.un('titlechange', this.onItemTitleChanged, this);
        c.un('iconchange', this.onItemIconChanged, this);
        c.un('beforeshow', this.onBeforeShowItem, this);
        if(c == this.activeTab){
            var next = this.stack.next();
            if(next){
                this.setActiveTab(next);
            }else if(this.items.getCount() > 0){
                this.setActiveTab(0);
            }else{
                this.setActiveTab(null);
            }
        }
        if(!this.destroying){
            this.delegateUpdates();
        }
    },

    // private
    onBeforeShowItem : function(item){
        if(item != this.activeTab){
            this.setActiveTab(item);
            return false;
        }
    },

    // private
    onItemDisabled : function(item){
        var el = this.getTabEl(item);
        if(el){
            Ext.fly(el).addClass('x-item-disabled');
        }
        this.stack.remove(item);
    },

    // private
    onItemEnabled : function(item){
        var el = this.getTabEl(item);
        if(el){
            Ext.fly(el).removeClass('x-item-disabled');
        }
    },

    // private
    onItemTitleChanged : function(item){
        var el = this.getTabEl(item);
        if(el){
            Ext.fly(el).child('span.x-tab-strip-text', true).innerHTML = item.title;
            this.delegateUpdates();
        }
    },

    //private
    onItemIconChanged : function(item, iconCls, oldCls){
        var el = this.getTabEl(item);
        if(el){
            el = Ext.get(el);
            el.child('span.x-tab-strip-text').replaceClass(oldCls, iconCls);
            el[Ext.isEmpty(iconCls) ? 'removeClass' : 'addClass']('x-tab-with-icon');
            this.delegateUpdates();
        }
    },

    /**
     * Gets the DOM element for the tab strip item which activates the child panel with the specified
     * ID. Access this to change the visual treatment of the item, for example by changing the CSS class name.
     * @param {Panel/Number/String} tab The tab component, or the tab's index, or the tabs id or itemId.
     * @return {HTMLElement} The DOM node
     */
    getTabEl : function(item){
        var c = this.getComponent(item);
        return c ? c.tabEl : null;
    },

    // private
    onResize : function(){
        Ext.TabPanel.superclass.onResize.apply(this, arguments);
        this.delegateUpdates();
    },

    /**
     * Suspends any internal calculations or scrolling while doing a bulk operation. See {@link #endUpdate}
     */
    beginUpdate : function(){
        this.suspendUpdates = true;
    },

    /**
     * Resumes calculations and scrolling at the end of a bulk operation. See {@link #beginUpdate}
     */
    endUpdate : function(){
        this.suspendUpdates = false;
        this.delegateUpdates();
    },

    /**
     * Hides the tab strip item for the passed tab
     * @param {Number/String/Panel} item The tab index, id or item
     */
    hideTabStripItem : function(item){
        item = this.getComponent(item);
        var el = this.getTabEl(item);
        if(el){
            el.style.display = 'none';
            this.delegateUpdates();
        }
        this.stack.remove(item);
    },

    /**
     * Unhides the tab strip item for the passed tab
     * @param {Number/String/Panel} item The tab index, id or item
     */
    unhideTabStripItem : function(item){
        item = this.getComponent(item);
        var el = this.getTabEl(item);
        if(el){
            el.style.display = '';
            this.delegateUpdates();
        }
    },

    // private
    delegateUpdates : function(){
        var rendered = this.rendered;
        if(this.suspendUpdates){
            return;
        }
        if(this.resizeTabs && rendered){
            this.autoSizeTabs();
        }
        if(this.enableTabScroll && rendered){
            this.autoScrollTabs();
        }
    },

    // private
    autoSizeTabs : function(){
        var count = this.items.length,
            ce = this.tabPosition != 'bottom' ? 'header' : 'footer',
            ow = this[ce].dom.offsetWidth,
            aw = this[ce].dom.clientWidth;

        if(!this.resizeTabs || count < 1 || !aw){ // !aw for display:none
            return;
        }

        var each = Math.max(Math.min(Math.floor((aw-4) / count) - this.tabMargin, this.tabWidth), this.minTabWidth); // -4 for float errors in IE
        this.lastTabWidth = each;
        var lis = this.strip.query('li:not(.x-tab-edge)');
        for(var i = 0, len = lis.length; i < len; i++) {
            var li = lis[i],
                inner = Ext.fly(li).child('.x-tab-strip-inner', true),
                tw = li.offsetWidth,
                iw = inner.offsetWidth;
            inner.style.width = (each - (tw-iw)) + 'px';
        }
    },

    // private
    adjustBodyWidth : function(w){
        if(this.header){
            this.header.setWidth(w);
        }
        if(this.footer){
            this.footer.setWidth(w);
        }
        return w;
    },

    /**
     * Sets the specified tab as the active tab. This method fires the {@link #beforetabchange} event which
     * can return false to cancel the tab change.
     * @param {String/Number} item
     * The id or tab Panel to activate. This parameter may be any of the following:
     * 
      
     * 
    • a String : representing the {@link Ext.Component#itemId itemId}
     * or {@link Ext.Component#id id} of the child component 
      • 
     * 
    • a Number : representing the position of the child component
     * within the {@link Ext.Container#items items} property
      • 
     * 
    
     * 
    For additional information see {@link Ext.util.MixedCollection#get}.
     */
    setActiveTab : function(item){
        item = this.getComponent(item);
        if(this.fireEvent('beforetabchange', this, item, this.activeTab) === false){
            return;
        }
        if(!this.rendered){
            this.activeTab = item;
            return;
        }
        if(this.activeTab != item){
            if(this.activeTab){
                var oldEl = this.getTabEl(this.activeTab);
                if(oldEl){
                    Ext.fly(oldEl).removeClass('x-tab-strip-active');
                }
            }
            this.activeTab = item;
            if(item){
                var el = this.getTabEl(item);
                Ext.fly(el).addClass('x-tab-strip-active');
                this.stack.add(item);

                this.layout.setActiveItem(item);
                // Need to do this here, since setting the active tab slightly changes the size
                this.delegateUpdates();
                if(this.scrolling){
                    this.scrollToTab(item, this.animScroll);
                }
            }
            this.fireEvent('tabchange', this, item);
        }
    },

    /**
     * Returns the Component which is the currently active tab. Note that before the TabPanel
     * first activates a child Component, this method will return whatever was configured in the
     * {@link #activeTab} config option.
     * @return {BoxComponent} The currently active child Component if one is active, or the {@link #activeTab} config value.
     */
    getActiveTab : function(){
        return this.activeTab || null;
    },

    /**
     * Gets the specified tab by id.
     * @param {String} id The tab id
     * @return {Panel} The tab
     */
    getItem : function(item){
        return this.getComponent(item);
    },

    // private
    autoScrollTabs : function(){
        this.pos = this.tabPosition=='bottom' ? this.footer : this.header;
        var count = this.items.length,
            ow = this.pos.dom.offsetWidth,
            tw = this.pos.dom.clientWidth,
            wrap = this.stripWrap,
            wd = wrap.dom,
            cw = wd.offsetWidth,
            pos = this.getScrollPos(),
            l = this.edge.getOffsetsTo(this.stripWrap)[0] + pos;

        if(!this.enableTabScroll || cw < 20){ // 20 to prevent display:none issues
            return;
        }
        if(count == 0 || l <= tw){
            // ensure the width is set if there's no tabs
            wd.scrollLeft = 0;
            wrap.setWidth(tw);
            if(this.scrolling){
                this.scrolling = false;
                this.pos.removeClass('x-tab-scrolling');
                this.scrollLeft.hide();
                this.scrollRight.hide();
                // See here: http://extjs.com/forum/showthread.php?t=49308&highlight=isSafari
                if(Ext.isAir || Ext.isWebKit){
                    wd.style.marginLeft = '';
                    wd.style.marginRight = '';
                }
            }
        }else{
            if(!this.scrolling){
                this.pos.addClass('x-tab-scrolling');
                // See here: http://extjs.com/forum/showthread.php?t=49308&highlight=isSafari
                if(Ext.isAir || Ext.isWebKit){
                    wd.style.marginLeft = '18px';
                    wd.style.marginRight = '18px';
                }
            }
            tw -= wrap.getMargins('lr');
            wrap.setWidth(tw > 20 ? tw : 20);
            if(!this.scrolling){
                if(!this.scrollLeft){
                    this.createScrollers();
                }else{
                    this.scrollLeft.show();
                    this.scrollRight.show();
                }
            }
            this.scrolling = true;
            if(pos > (l-tw)){ // ensure it stays within bounds
                wd.scrollLeft = l-tw;
            }else{ // otherwise, make sure the active tab is still visible
                this.scrollToTab(this.activeTab, false);
            }
            this.updateScrollButtons();
        }
    },

    // private
    createScrollers : function(){
        this.pos.addClass('x-tab-scrolling-' + this.tabPosition);
        var h = this.stripWrap.dom.offsetHeight;

        // left
        var sl = this.pos.insertFirst({
            cls:'x-tab-scroller-left'
        });
        sl.setHeight(h);
        sl.addClassOnOver('x-tab-scroller-left-over');
        this.leftRepeater = new Ext.util.ClickRepeater(sl, {
            interval : this.scrollRepeatInterval,
            handler: this.onScrollLeft,
            scope: this
        });
        this.scrollLeft = sl;

        // right
        var sr = this.pos.insertFirst({
            cls:'x-tab-scroller-right'
        });
        sr.setHeight(h);
        sr.addClassOnOver('x-tab-scroller-right-over');
        this.rightRepeater = new Ext.util.ClickRepeater(sr, {
            interval : this.scrollRepeatInterval,
            handler: this.onScrollRight,
            scope: this
        });
        this.scrollRight = sr;
    },

    // private
    getScrollWidth : function(){
        return this.edge.getOffsetsTo(this.stripWrap)[0] + this.getScrollPos();
    },

    // private
    getScrollPos : function(){
        return parseInt(this.stripWrap.dom.scrollLeft, 10) || 0;
    },

    // private
    getScrollArea : function(){
        return parseInt(this.stripWrap.dom.clientWidth, 10) || 0;
    },

    // private
    getScrollAnim : function(){
        return {duration:this.scrollDuration, callback: this.updateScrollButtons, scope: this};
    },

    // private
    getScrollIncrement : function(){
        return this.scrollIncrement || (this.resizeTabs ? this.lastTabWidth+2 : 100);
    },

    /**
     * Scrolls to a particular tab if tab scrolling is enabled
     * @param {Panel} item The item to scroll to
     * @param {Boolean} animate True to enable animations
     */

    scrollToTab : function(item, animate){
        if(!item){
            return;
        }
        var el = this.getTabEl(item),
            pos = this.getScrollPos(),
            area = this.getScrollArea(),
            left = Ext.fly(el).getOffsetsTo(this.stripWrap)[0] + pos,
            right = left + el.offsetWidth;
        if(left < pos){
            this.scrollTo(left, animate);
        }else if(right > (pos + area)){
            this.scrollTo(right - area, animate);
        }
    },

    // private
    scrollTo : function(pos, animate){
        this.stripWrap.scrollTo('left', pos, animate ? this.getScrollAnim() : false);
        if(!animate){
            this.updateScrollButtons();
        }
    },

    onWheel : function(e){
        var d = e.getWheelDelta()*this.wheelIncrement*-1;
        e.stopEvent();

        var pos = this.getScrollPos(),
            newpos = pos + d,
            sw = this.getScrollWidth()-this.getScrollArea();

        var s = Math.max(0, Math.min(sw, newpos));
        if(s != pos){
            this.scrollTo(s, false);
        }
    },

    // private
    onScrollRight : function(){
        var sw = this.getScrollWidth()-this.getScrollArea(),
            pos = this.getScrollPos(),
            s = Math.min(sw, pos + this.getScrollIncrement());
        if(s != pos){
            this.scrollTo(s, this.animScroll);
        }
    },

    // private
    onScrollLeft : function(){
        var pos = this.getScrollPos(),
            s = Math.max(0, pos - this.getScrollIncrement());
        if(s != pos){
            this.scrollTo(s, this.animScroll);
        }
    },

    // private
    updateScrollButtons : function(){
        var pos = this.getScrollPos();
        this.scrollLeft[pos === 0 ? 'addClass' : 'removeClass']('x-tab-scroller-left-disabled');
        this.scrollRight[pos >= (this.getScrollWidth()-this.getScrollArea()) ? 'addClass' : 'removeClass']('x-tab-scroller-right-disabled');
    },

    // private
    beforeDestroy : function() {
        Ext.destroy(this.leftRepeater, this.rightRepeater);
        this.deleteMembers('strip', 'edge', 'scrollLeft', 'scrollRight', 'stripWrap');
        this.activeTab = null;
        Ext.TabPanel.superclass.beforeDestroy.apply(this);
    }

    /**
     * @cfg {Boolean} collapsible
     * @hide
     */
    /**
     * @cfg {String} header
     * @hide
     */
    /**
     * @cfg {Boolean} headerAsText
     * @hide
     */
    /**
     * @property header
     * @hide
     */
    /**
     * @cfg title
     * @hide
     */
    /**
     * @cfg {Array} tools
     * @hide
     */
    /**
     * @cfg {Array} toolTemplate
     * @hide
     */
    /**
     * @cfg {Boolean} hideCollapseTool
     * @hide
     */
    /**
     * @cfg {Boolean} titleCollapse
     * @hide
     */
    /**
     * @cfg {Boolean} collapsed
     * @hide
     */
    /**
     * @cfg {String} layout
     * @hide
     */
    /**
     * @cfg {Boolean} preventBodyReset
     * @hide
     */
});
Ext.reg('tabpanel', Ext.TabPanel);

/**
 * See {@link #setActiveTab}. Sets the specified tab as the active tab. This method fires
 * the {@link #beforetabchange} event which can return false to cancel the tab change.
 * @param {String/Panel} tab The id or tab Panel to activate
 * @method activate
 */
Ext.TabPanel.prototype.activate = Ext.TabPanel.prototype.setActiveTab;

// private utility class used by TabPanel
Ext.TabPanel.AccessStack = function(){
    var items = [];
    return {
        add : function(item){
            items.push(item);
            if(items.length > 10){
                items.shift();
            }
        },

        remove : function(item){
            var s = [];
            for(var i = 0, len = items.length; i < len; i++) {
                if(items[i] != item){
                    s.push(items[i]);
                }
            }
            items = s;
        },

        next : function(){
            return items.pop();
        }
    };
};
/**
 * @class Ext.Button
 * @extends Ext.BoxComponent
 * Simple Button class
 * @cfg {String} text The button text to be used as innerHTML (html tags are accepted)
 * @cfg {String} icon The path to an image to display in the button (the image will be set as the background-image
 * CSS property of the button by default, so if you want a mixed icon/text button, set cls:'x-btn-text-icon')
 * @cfg {Function} handler A function called when the button is clicked (can be used instead of click event).
 * The handler is passed the following parameters:
      
 * 
    • b : Button
      This Button.
      • 
 * 
    • e : EventObject
      The click event.
      • 
 * 
    
 * @cfg {Number} minWidth The minimum width for this button (used to give a set of buttons a common width).
 * See also {@link Ext.Panel}.{@link Ext.Panel#minButtonWidth minButtonWidth}.
 * @cfg {String/Object} tooltip The tooltip for the button - can be a string to be used as innerHTML (html tags are accepted) or QuickTips config object
 * @cfg {Boolean} hidden True to start hidden (defaults to false)
 * @cfg {Boolean} disabled True to start disabled (defaults to false)
 * @cfg {Boolean} pressed True to start pressed (only if enableToggle = true)
 * @cfg {String} toggleGroup The group this toggle button is a member of (only 1 per group can be pressed)
 * @cfg {Boolean/Object} repeat True to repeat fire the click event while the mouse is down. This can also be
 * a {@link Ext.util.ClickRepeater ClickRepeater} config object (defaults to false).
 * @constructor
 * Create a new button
 * @param {Object} config The config object
 * @xtype button
 */
Ext.Button = Ext.extend(Ext.BoxComponent, {
    /**
     * Read-only. True if this button is hidden
     * @type Boolean
     */
    hidden : false,
    /**
     * Read-only. True if this button is disabled
     * @type Boolean
     */
    disabled : false,
    /**
     * Read-only. True if this button is pressed (only if enableToggle = true)
     * @type Boolean
     */
    pressed : false,

    /**
     * @cfg {Number} tabIndex Set a DOM tabIndex for this button (defaults to undefined)
     */

    /**
     * @cfg {Boolean} allowDepress
     * False to not allow a pressed Button to be depressed (defaults to undefined). Only valid when {@link #enableToggle} is true.
     */

    /**
     * @cfg {Boolean} enableToggle
     * True to enable pressed/not pressed toggling (defaults to false)
     */
    enableToggle : false,
    /**
     * @cfg {Function} toggleHandler
     * Function called when a Button with {@link #enableToggle} set to true is clicked. Two arguments are passed:
      
     * 
    • button : Ext.Button
      this Button object
      • 
     * 
    • state : Boolean
      The next state of the Button, true means pressed.
      • 
     * 
    
     */
    /**
     * @cfg {Mixed} menu
     * Standard menu attribute consisting of a reference to a menu object, a menu id or a menu config blob (defaults to undefined).
     */
    /**
     * @cfg {String} menuAlign
     * The position to align the menu to (see {@link Ext.Element#alignTo} for more details, defaults to 'tl-bl?').
     */
    menuAlign : 'tl-bl?',

    /**
     * @cfg {String} overflowText If used in a {@link Ext.Toolbar Toolbar}, the
     * text to be used if this item is shown in the overflow menu. See also
     * {@link Ext.Toolbar.Item}.{@link Ext.Toolbar.Item#overflowText overflowText}.
     */
    /**
     * @cfg {String} iconCls
     * A css class which sets a background image to be used as the icon for this button
     */
    /**
     * @cfg {String} type
     * submit, reset or button - defaults to 'button'
     */
    type : 'button',

    // private
    menuClassTarget : 'tr:nth(2)',

    /**
     * @cfg {String} clickEvent
     * The DOM event that will fire the handler of the button. This can be any valid event name (dblclick, contextmenu).
     * Defaults to 'click'.
     */
    clickEvent : 'click',

    /**
     * @cfg {Boolean} handleMouseEvents
     * False to disable visual cues on mouseover, mouseout and mousedown (defaults to true)
     */
    handleMouseEvents : true,

    /**
     * @cfg {String} tooltipType
     * The type of tooltip to use. Either 'qtip' (default) for QuickTips or 'title' for title attribute.
     */
    tooltipType : 'qtip',

    /**
     * @cfg {String} buttonSelector
     * 
    (Optional) A {@link Ext.DomQuery DomQuery} selector which is used to extract the active, clickable element from the
     * DOM structure created.
    
     * 
    When a custom {@link #template} is used, you  must ensure that this selector results in the selection of
     * a focussable element.
    
     * 
    Defaults to 'button:first-child'.
    
     */
    buttonSelector : 'button:first-child',

    /**
     * @cfg {String} scale
     * 
    (Optional) The size of the Button. Three values are allowed:
    
     * 
      
     * 
    • 'small'
      Results in the button element being 16px high.
      • 
     * 
    • 'medium'
      Results in the button element being 24px high.
      • 
     * 
    • 'large'
      Results in the button element being 32px high.
      • 
     * 
    
     * 
    Defaults to 'small'.
    
     */
    scale : 'small',

    /**
     * @cfg {Object} scope The scope (this reference) in which the
     * {@link #handler} and {@link #toggleHandler} is
     * executed. Defaults to this Button.
     */

    /**
     * @cfg {String} iconAlign
     * 
    (Optional) The side of the Button box to render the icon. Four values are allowed:
    
     * 
      
     * 
    • 'top'
      • 
     * 
    • 'right'
      • 
     * 
    • 'bottom'
      • 
     * 
    • 'left'
      • 
     * 
    
     * 
    Defaults to 'left'.
    
     */
    iconAlign : 'left',

    /**
     * @cfg {String} arrowAlign
     * 
    (Optional) The side of the Button box to render the arrow if the button has an associated {@link #menu}.
     * Two values are allowed:
    
     * 
      
     * 
    • 'right'
      • 
     * 
    • 'bottom'
      • 
     * 
    
     * 
    Defaults to 'right'.
    
     */
    arrowAlign : 'right',

    /**
     * @cfg {Ext.Template} template (Optional)
     * 
    A {@link Ext.Template Template} used to create the Button's DOM structure.
    
     * Instances, or subclasses which need a different DOM structure may provide a different
     * template layout in conjunction with an implementation of {@link #getTemplateArgs}.
     * @type Ext.Template
     * @property template
     */
    /**
     * @cfg {String} cls
     * A CSS class string to apply to the button's main element.
     */
    /**
     * @property menu
     * @type Menu
     * The {@link Ext.menu.Menu Menu} object associated with this Button when configured with the {@link #menu} config option.
     */
    /**
     * @cfg {Boolean} autoWidth
     * By default, if a width is not specified the button will attempt to stretch horizontally to fit its content.
     * If the button is being managed by a width sizing layout (hbox, fit, anchor), set this to false to prevent
     * the button from doing this automatic sizing.
     * Defaults to undefined.
     */

    initComponent : function(){
        if(this.menu){
            // If array of items, turn it into an object config so we
            // can set the ownerCt property in the config
            if (Ext.isArray(this.menu)){
                this.menu = { items: this.menu };
            }
            
            // An object config will work here, but an instance of a menu
            // will have already setup its ref's and have no effect
            if (Ext.isObject(this.menu)){
                this.menu.ownerCt = this;
            }
            
            this.menu = Ext.menu.MenuMgr.get(this.menu);
            this.menu.ownerCt = undefined;
        }
        
        Ext.Button.superclass.initComponent.call(this);

        this.addEvents(
            /**
             * @event click
             * Fires when this button is clicked
             * @param {Button} this
             * @param {EventObject} e The click event
             */
            'click',
            /**
             * @event toggle
             * Fires when the 'pressed' state of this button changes (only if enableToggle = true)
             * @param {Button} this
             * @param {Boolean} pressed
             */
            'toggle',
            /**
             * @event mouseover
             * Fires when the mouse hovers over the button
             * @param {Button} this
             * @param {Event} e The event object
             */
            'mouseover',
            /**
             * @event mouseout
             * Fires when the mouse exits the button
             * @param {Button} this
             * @param {Event} e The event object
             */
            'mouseout',
            /**
             * @event menushow
             * If this button has a menu, this event fires when it is shown
             * @param {Button} this
             * @param {Menu} menu
             */
            'menushow',
            /**
             * @event menuhide
             * If this button has a menu, this event fires when it is hidden
             * @param {Button} this
             * @param {Menu} menu
             */
            'menuhide',
            /**
             * @event menutriggerover
             * If this button has a menu, this event fires when the mouse enters the menu triggering element
             * @param {Button} this
             * @param {Menu} menu
             * @param {EventObject} e
             */
            'menutriggerover',
            /**
             * @event menutriggerout
             * If this button has a menu, this event fires when the mouse leaves the menu triggering element
             * @param {Button} this
             * @param {Menu} menu
             * @param {EventObject} e
             */
            'menutriggerout'
        );
        
        if(Ext.isString(this.toggleGroup)){
            this.enableToggle = true;
        }
    },

/**
  * 
    This method returns an Array which provides substitution parameters for the {@link #template Template} used
  * to create this Button's DOM structure.
    
  * 
    Instances or subclasses which use a different Template to create a different DOM structure may need to provide their
  * own implementation of this method.
    
  * 
    The default implementation which provides data for the default {@link #template} returns an Array containing the
  * following items:
      
  * 
    • The <button>'s {@link #type}
      • 
  * 
    • A CSS class name applied to the Button's main <tbody> element which determines the button's scale and icon alignment.
      • 
  * 
    • A CSS class to determine the presence and position of an arrow icon. ('x-btn-arrow' or 'x-btn-arrow-bottom' or '')
      • 
  * 
    • The {@link #cls} CSS class name applied to the button's wrapping <table> element.
      • 
  * 
    • The Component id which is applied to the button's wrapping <table> element.
      • 
  * 
    
  * @return {Array} Substitution data for a Template.
 */
    getTemplateArgs : function(){
        return [this.type, 'x-btn-' + this.scale + ' x-btn-icon-' + this.scale + '-' + this.iconAlign, this.getMenuClass(), this.cls, this.id];
    },

    // private
    setButtonClass : function(){
        if(this.useSetClass){
            if(!Ext.isEmpty(this.oldCls)){
                this.el.removeClass([this.oldCls, 'x-btn-pressed']);
            }
            this.oldCls = (this.iconCls || this.icon) ? (this.text ? 'x-btn-text-icon' : 'x-btn-icon') : 'x-btn-noicon';
            this.el.addClass([this.oldCls, this.pressed ? 'x-btn-pressed' : null]);
        }
    },

    // protected
    getMenuClass : function(){
        return this.menu ? (this.arrowAlign != 'bottom' ? 'x-btn-arrow' : 'x-btn-arrow-bottom') : '';
    },

    // private
    onRender : function(ct, position){
        if(!this.template){
            if(!Ext.Button.buttonTemplate){
                // hideous table template
                Ext.Button.buttonTemplate = new Ext.Template(
                    '',
                    '',
                    '',
                    '',
                    '
      
      
      
    ');
                Ext.Button.buttonTemplate.compile();
            }
            this.template = Ext.Button.buttonTemplate;
        }

        var btn, targs = this.getTemplateArgs();

        if(position){
            btn = this.template.insertBefore(position, targs, true);
        }else{
            btn = this.template.append(ct, targs, true);
        }
        /**
         * An {@link Ext.Element Element} encapsulating the Button's clickable element. By default,
         * this references a <button> element. Read only.
         * @type Ext.Element
         * @property btnEl
         */
        this.btnEl = btn.child(this.buttonSelector);
        this.mon(this.btnEl, {
            scope: this,
            focus: this.onFocus,
            blur: this.onBlur
        });

        this.initButtonEl(btn, this.btnEl);

        Ext.ButtonToggleMgr.register(this);
    },

    // private
    initButtonEl : function(btn, btnEl){
        this.el = btn;
        this.setIcon(this.icon);
        this.setText(this.text);
        this.setIconClass(this.iconCls);
        if(Ext.isDefined(this.tabIndex)){
            btnEl.dom.tabIndex = this.tabIndex;
        }
        if(this.tooltip){
            this.setTooltip(this.tooltip, true);
        }

        if(this.handleMouseEvents){
            this.mon(btn, {
                scope: this,
                mouseover: this.onMouseOver,
                mousedown: this.onMouseDown
            });

            // new functionality for monitoring on the document level
            //this.mon(btn, 'mouseout', this.onMouseOut, this);
        }

        if(this.menu){
            this.mon(this.menu, {
                scope: this,
                show: this.onMenuShow,
                hide: this.onMenuHide
            });
        }

        if(this.repeat){
            var repeater = new Ext.util.ClickRepeater(btn, Ext.isObject(this.repeat) ? this.repeat : {});
            this.mon(repeater, 'click', this.onRepeatClick, this);
        }else{
            this.mon(btn, this.clickEvent, this.onClick, this);
        }
    },

    // private
    afterRender : function(){
        Ext.Button.superclass.afterRender.call(this);
        this.useSetClass = true;
        this.setButtonClass();
        this.doc = Ext.getDoc();
        this.doAutoWidth();
    },

    /**
     * Sets the CSS class that provides a background image to use as the button's icon.  This method also changes
     * the value of the {@link iconCls} config internally.
     * @param {String} cls The CSS class providing the icon image
     * @return {Ext.Button} this
     */
    setIconClass : function(cls){
        this.iconCls = cls;
        if(this.el){
            this.btnEl.dom.className = '';
            this.btnEl.addClass(['x-btn-text', cls || '']);
            this.setButtonClass();
        }
        return this;
    },

    /**
     * Sets the tooltip for this Button.
     * @param {String/Object} tooltip. This may be:
      
     * 
    • String : A string to be used as innerHTML (html tags are accepted) to show in a tooltip
      • 
     * 
    • Object : A configuration object for {@link Ext.QuickTips#register}.
      • 
     * 
    
     * @return {Ext.Button} this
     */
    setTooltip : function(tooltip, /* private */ initial){
        if(this.rendered){
            if(!initial){
                this.clearTip();
            }
            if(Ext.isObject(tooltip)){
                Ext.QuickTips.register(Ext.apply({
                      target: this.btnEl.id
                }, tooltip));
                this.tooltip = tooltip;
            }else{
                this.btnEl.dom[this.tooltipType] = tooltip;
            }
        }else{
            this.tooltip = tooltip;
        }
        return this;
    },

    // private
    clearTip : function(){
        if(Ext.isObject(this.tooltip)){
            Ext.QuickTips.unregister(this.btnEl);
        }
    },

    // private
    beforeDestroy : function(){
        if(this.rendered){
            this.clearTip();
        }
        if(this.menu && this.destroyMenu !== false) {
            Ext.destroy(this.btnEl, this.menu);
        }
        Ext.destroy(this.repeater);
    },

    // private
    onDestroy : function(){
        if(this.rendered){
            this.doc.un('mouseover', this.monitorMouseOver, this);
            this.doc.un('mouseup', this.onMouseUp, this);
            delete this.doc;
            delete this.btnEl;
            Ext.ButtonToggleMgr.unregister(this);
        }
        Ext.Button.superclass.onDestroy.call(this);
    },

    // private
    doAutoWidth : function(){
        if(this.autoWidth !== false && this.el && this.text && this.width === undefined){
            this.el.setWidth('auto');
            if(Ext.isIE7 && Ext.isStrict){
                var ib = this.btnEl;
                if(ib && ib.getWidth() > 20){
                    ib.clip();
                    ib.setWidth(Ext.util.TextMetrics.measure(ib, this.text).width+ib.getFrameWidth('lr'));
                }
            }
            if(this.minWidth){
                if(this.el.getWidth() < this.minWidth){
                    this.el.setWidth(this.minWidth);
                }
            }
        }
    },

    /**
     * Assigns this Button's click handler
     * @param {Function} handler The function to call when the button is clicked
     * @param {Object} scope (optional) The scope (this reference) in which the handler function is executed.
     * Defaults to this Button.
     * @return {Ext.Button} this
     */
    setHandler : function(handler, scope){
        this.handler = handler;
        this.scope = scope;
        return this;
    },

    /**
     * Sets this Button's text
     * @param {String} text The button text
     * @return {Ext.Button} this
     */
    setText : function(text){
        this.text = text;
        if(this.el){
            this.btnEl.update(text || ' ');
            this.setButtonClass();
        }
        this.doAutoWidth();
        return this;
    },

    /**
     * Sets the background image (inline style) of the button.  This method also changes
     * the value of the {@link icon} config internally.
     * @param {String} icon The path to an image to display in the button
     * @return {Ext.Button} this
     */
    setIcon : function(icon){
        this.icon = icon;
        if(this.el){
            this.btnEl.setStyle('background-image', icon ? 'url(' + icon + ')' : '');
            this.setButtonClass();
        }
        return this;
    },

    /**
     * Gets the text for this Button
     * @return {String} The button text
     */
    getText : function(){
        return this.text;
    },

    /**
     * If a state it passed, it becomes the pressed state otherwise the current state is toggled.
     * @param {Boolean} state (optional) Force a particular state
     * @param {Boolean} supressEvent (optional) True to stop events being fired when calling this method.
     * @return {Ext.Button} this
     */
    toggle : function(state, suppressEvent){
        state = state === undefined ? !this.pressed : !!state;
        if(state != this.pressed){
            if(this.rendered){
                this.el[state ? 'addClass' : 'removeClass']('x-btn-pressed');
            }
            this.pressed = state;
            if(!suppressEvent){
                this.fireEvent('toggle', this, state);
                if(this.toggleHandler){
                    this.toggleHandler.call(this.scope || this, this, state);
                }
            }
        }
        return this;
    },

    // private
    onDisable : function(){
        this.onDisableChange(true);
    },

    // private
    onEnable : function(){
        this.onDisableChange(false);
    },

    onDisableChange : function(disabled){
        if(this.el){
            if(!Ext.isIE6 || !this.text){
                this.el[disabled ? 'addClass' : 'removeClass'](this.disabledClass);
            }
            this.el.dom.disabled = disabled;
        }
        this.disabled = disabled;
    },

    /**
     * Show this button's menu (if it has one)
     */
    showMenu : function(){
        if(this.rendered && this.menu){
            if(this.tooltip){
                Ext.QuickTips.getQuickTip().cancelShow(this.btnEl);
            }
            if(this.menu.isVisible()){
                this.menu.hide();
            }
            this.menu.ownerCt = this;
            this.menu.show(this.el, this.menuAlign);
        }
        return this;
    },

    /**
     * Hide this button's menu (if it has one)
     */
    hideMenu : function(){
        if(this.hasVisibleMenu()){
            this.menu.hide();
        }
        return this;
    },

    /**
     * Returns true if the button has a menu and it is visible
     * @return {Boolean}
     */
    hasVisibleMenu : function(){
        return this.menu && this.menu.ownerCt == this && this.menu.isVisible();
    },
    
    // private
    onRepeatClick : function(repeat, e){
        this.onClick(e);
    },

    // private
    onClick : function(e){
        if(e){
            e.preventDefault();
        }
        if(e.button !== 0){
            return;
        }
        if(!this.disabled){
            this.doToggle();
            if(this.menu && !this.hasVisibleMenu() && !this.ignoreNextClick){
                this.showMenu();
            }
            this.fireEvent('click', this, e);
            if(this.handler){
                //this.el.removeClass('x-btn-over');
                this.handler.call(this.scope || this, this, e);
            }
        }
    },
    
    // private
    doToggle: function(){
        if (this.enableToggle && (this.allowDepress !== false || !this.pressed)) {
            this.toggle();
        }
    },

    // private
    isMenuTriggerOver : function(e, internal){
        return this.menu && !internal;
    },

    // private
    isMenuTriggerOut : function(e, internal){
        return this.menu && !internal;
    },

    // private
    onMouseOver : function(e){
        if(!this.disabled){
            var internal = e.within(this.el,  true);
            if(!internal){
                this.el.addClass('x-btn-over');
                if(!this.monitoringMouseOver){
                    this.doc.on('mouseover', this.monitorMouseOver, this);
                    this.monitoringMouseOver = true;
                }
                this.fireEvent('mouseover', this, e);
            }
            if(this.isMenuTriggerOver(e, internal)){
                this.fireEvent('menutriggerover', this, this.menu, e);
            }
        }
    },

    // private
    monitorMouseOver : function(e){
        if(e.target != this.el.dom && !e.within(this.el)){
            if(this.monitoringMouseOver){
                this.doc.un('mouseover', this.monitorMouseOver, this);
                this.monitoringMouseOver = false;
            }
            this.onMouseOut(e);
        }
    },

    // private
    onMouseOut : function(e){
        var internal = e.within(this.el) && e.target != this.el.dom;
        this.el.removeClass('x-btn-over');
        this.fireEvent('mouseout', this, e);
        if(this.isMenuTriggerOut(e, internal)){
            this.fireEvent('menutriggerout', this, this.menu, e);
        }
    },

    focus : function() {
        this.btnEl.focus();
    },

    blur : function() {
        this.btnEl.blur();
    },

    // private
    onFocus : function(e){
        if(!this.disabled){
            this.el.addClass('x-btn-focus');
        }
    },
    // private
    onBlur : function(e){
        this.el.removeClass('x-btn-focus');
    },

    // private
    getClickEl : function(e, isUp){
       return this.el;
    },

    // private
    onMouseDown : function(e){
        if(!this.disabled && e.button === 0){
            this.getClickEl(e).addClass('x-btn-click');
            this.doc.on('mouseup', this.onMouseUp, this);
        }
    },
    // private
    onMouseUp : function(e){
        if(e.button === 0){
            this.getClickEl(e, true).removeClass('x-btn-click');
            this.doc.un('mouseup', this.onMouseUp, this);
        }
    },
    // private
    onMenuShow : function(e){
        if(this.menu.ownerCt == this){
            this.menu.ownerCt = this;
            this.ignoreNextClick = 0;
            this.el.addClass('x-btn-menu-active');
            this.fireEvent('menushow', this, this.menu);
        }
    },
    // private
    onMenuHide : function(e){
        if(this.menu.ownerCt == this){
            this.el.removeClass('x-btn-menu-active');
            this.ignoreNextClick = this.restoreClick.defer(250, this);
            this.fireEvent('menuhide', this, this.menu);
            delete this.menu.ownerCt;
        }
    },

    // private
    restoreClick : function(){
        this.ignoreNextClick = 0;
    }

    /**
     * @cfg {String} autoEl @hide
     */
    /**
     * @cfg {String/Object} html @hide
     */
    /**
     * @cfg {String} contentEl  @hide
     */
    /**
     * @cfg {Mixed} data  @hide
     */
    /**
     * @cfg {Mixed} tpl  @hide
     */
    /**
     * @cfg {String} tplWriteMode  @hide
     */
});
Ext.reg('button', Ext.Button);

// Private utility class used by Button
Ext.ButtonToggleMgr = function(){
   var groups = {};

   function toggleGroup(btn, state){
       if(state){
           var g = groups[btn.toggleGroup];
           for(var i = 0, l = g.length; i < l; i++){
               if(g[i] != btn){
                   g[i].toggle(false);
               }
           }
       }
   }

   return {
       register : function(btn){
           if(!btn.toggleGroup){
               return;
           }
           var g = groups[btn.toggleGroup];
           if(!g){
               g = groups[btn.toggleGroup] = [];
           }
           g.push(btn);
           btn.on('toggle', toggleGroup);
       },

       unregister : function(btn){
           if(!btn.toggleGroup){
               return;
           }
           var g = groups[btn.toggleGroup];
           if(g){
               g.remove(btn);
               btn.un('toggle', toggleGroup);
           }
       },

       /**
        * Gets the pressed button in the passed group or null
        * @param {String} group
        * @return Button
        */
       getPressed : function(group){
           var g = groups[group];
           if(g){
               for(var i = 0, len = g.length; i < len; i++){
                   if(g[i].pressed === true){
                       return g[i];
                   }
               }
           }
           return null;
       }
   };
}();
/**
 * @class Ext.SplitButton
 * @extends Ext.Button
 * A split button that provides a built-in dropdown arrow that can fire an event separately from the default
 * click event of the button.  Typically this would be used to display a dropdown menu that provides additional
 * options to the primary button action, but any custom handler can provide the arrowclick implementation.  Example usage:
 * 
    
// display a dropdown menu:
new Ext.SplitButton({
	renderTo: 'button-ct', // the container id
   	text: 'Options',
   	handler: optionsHandler, // handle a click on the button itself
   	menu: new Ext.menu.Menu({
        items: [
        	// these items will render as dropdown menu items when the arrow is clicked:
	        {text: 'Item 1', handler: item1Handler},
	        {text: 'Item 2', handler: item2Handler}
        ]
   	})
});

// Instead of showing a menu, you provide any type of custom
// functionality you want when the dropdown arrow is clicked:
new Ext.SplitButton({
	renderTo: 'button-ct',
   	text: 'Options',
   	handler: optionsHandler,
   	arrowHandler: myCustomHandler
});

    
 * @cfg {Function} arrowHandler A function called when the arrow button is clicked (can be used instead of click event)
 * @cfg {String} arrowTooltip The title attribute of the arrow
 * @constructor
 * Create a new menu button
 * @param {Object} config The config object
 * @xtype splitbutton
 */
Ext.SplitButton = Ext.extend(Ext.Button, {
	// private
    arrowSelector : 'em',
    split: true,

    // private
    initComponent : function(){
        Ext.SplitButton.superclass.initComponent.call(this);
        /**
         * @event arrowclick
         * Fires when this button's arrow is clicked
         * @param {MenuButton} this
         * @param {EventObject} e The click event
         */
        this.addEvents("arrowclick");
    },

    // private
    onRender : function(){
        Ext.SplitButton.superclass.onRender.apply(this, arguments);
        if(this.arrowTooltip){
            this.el.child(this.arrowSelector).dom[this.tooltipType] = this.arrowTooltip;
        }
    },

    /**
     * Sets this button's arrow click handler.
     * @param {Function} handler The function to call when the arrow is clicked
     * @param {Object} scope (optional) Scope for the function passed above
     */
    setArrowHandler : function(handler, scope){
        this.arrowHandler = handler;
        this.scope = scope;
    },

    getMenuClass : function(){
        return 'x-btn-split' + (this.arrowAlign == 'bottom' ? '-bottom' : '');
    },

    isClickOnArrow : function(e){
	if (this.arrowAlign != 'bottom') {
	    var visBtn = this.el.child('em.x-btn-split');
	    var right = visBtn.getRegion().right - visBtn.getPadding('r');
	    return e.getPageX() > right;
	} else {
	    return e.getPageY() > this.btnEl.getRegion().bottom;
	}
    },

    // private
    onClick : function(e, t){
        e.preventDefault();
        if(!this.disabled){
            if(this.isClickOnArrow(e)){
                if(this.menu && !this.menu.isVisible() && !this.ignoreNextClick){
                    this.showMenu();
                }
                this.fireEvent("arrowclick", this, e);
                if(this.arrowHandler){
                    this.arrowHandler.call(this.scope || this, this, e);
                }
            }else{
                this.doToggle();
                this.fireEvent("click", this, e);
                if(this.handler){
                    this.handler.call(this.scope || this, this, e);
                }
            }
        }
    },

    // private
    isMenuTriggerOver : function(e){
        return this.menu && e.target.tagName == this.arrowSelector;
    },

    // private
    isMenuTriggerOut : function(e, internal){
        return this.menu && e.target.tagName != this.arrowSelector;
    }
});

Ext.reg('splitbutton', Ext.SplitButton);/**
 * @class Ext.CycleButton
 * @extends Ext.SplitButton
 * A specialized SplitButton that contains a menu of {@link Ext.menu.CheckItem} elements.  The button automatically
 * cycles through each menu item on click, raising the button's {@link #change} event (or calling the button's
 * {@link #changeHandler} function, if supplied) for the active menu item. Clicking on the arrow section of the
 * button displays the dropdown menu just like a normal SplitButton.  Example usage:
 * 
    
var btn = new Ext.CycleButton({
    showText: true,
    prependText: 'View as ',
    items: [{
        text:'text only',
        iconCls:'view-text',
        checked:true
    },{
        text:'HTML',
        iconCls:'view-html'
    }],
    changeHandler:function(btn, item){
        Ext.Msg.alert('Change View', item.text);
    }
});

    
 * @constructor
 * Create a new split button
 * @param {Object} config The config object
 * @xtype cycle
 */
Ext.CycleButton = Ext.extend(Ext.SplitButton, {
    /**
     * @cfg {Array} items An array of {@link Ext.menu.CheckItem} config objects to be used when creating the
     * button's menu items (e.g., {text:'Foo', iconCls:'foo-icon'})
     */
    /**
     * @cfg {Boolean} showText True to display the active item's text as the button text (defaults to false)
     */
    /**
     * @cfg {String} prependText A static string to prepend before the active item's text when displayed as the
     * button's text (only applies when showText = true, defaults to '')
     */
    /**
     * @cfg {Function} changeHandler A callback function that will be invoked each time the active menu
     * item in the button's menu has changed.  If this callback is not supplied, the SplitButton will instead
     * fire the {@link #change} event on active item change.  The changeHandler function will be called with the
     * following argument list: (SplitButton this, Ext.menu.CheckItem item)
     */
    /**
     * @cfg {String} forceIcon A css class which sets an image to be used as the static icon for this button.  This
     * icon will always be displayed regardless of which item is selected in the dropdown list.  This overrides the 
     * default behavior of changing the button's icon to match the selected item's icon on change.
     */
    /**
     * @property menu
     * @type Menu
     * The {@link Ext.menu.Menu Menu} object used to display the {@link Ext.menu.CheckItem CheckItems} representing the available choices.
     */

    // private
    getItemText : function(item){
        if(item && this.showText === true){
            var text = '';
            if(this.prependText){
                text += this.prependText;
            }
            text += item.text;
            return text;
        }
        return undefined;
    },

    /**
     * Sets the button's active menu item.
     * @param {Ext.menu.CheckItem} item The item to activate
     * @param {Boolean} suppressEvent True to prevent the button's change event from firing (defaults to false)
     */
    setActiveItem : function(item, suppressEvent){
        if(!Ext.isObject(item)){
            item = this.menu.getComponent(item);
        }
        if(item){
            if(!this.rendered){
                this.text = this.getItemText(item);
                this.iconCls = item.iconCls;
            }else{
                var t = this.getItemText(item);
                if(t){
                    this.setText(t);
                }
                this.setIconClass(item.iconCls);
            }
            this.activeItem = item;
            if(!item.checked){
                item.setChecked(true, suppressEvent);
            }
            if(this.forceIcon){
                this.setIconClass(this.forceIcon);
            }
            if(!suppressEvent){
                this.fireEvent('change', this, item);
            }
        }
    },

    /**
     * Gets the currently active menu item.
     * @return {Ext.menu.CheckItem} The active item
     */
    getActiveItem : function(){
        return this.activeItem;
    },

    // private
    initComponent : function(){
        this.addEvents(
            /**
             * @event change
             * Fires after the button's active menu item has changed.  Note that if a {@link #changeHandler} function
             * is set on this CycleButton, it will be called instead on active item change and this change event will
             * not be fired.
             * @param {Ext.CycleButton} this
             * @param {Ext.menu.CheckItem} item The menu item that was selected
             */
            "change"
        );

        if(this.changeHandler){
            this.on('change', this.changeHandler, this.scope||this);
            delete this.changeHandler;
        }

        this.itemCount = this.items.length;

        this.menu = {cls:'x-cycle-menu', items:[]};
        var checked = 0;
        Ext.each(this.items, function(item, i){
            Ext.apply(item, {
                group: item.group || this.id,
                itemIndex: i,
                checkHandler: this.checkHandler,
                scope: this,
                checked: item.checked || false
            });
            this.menu.items.push(item);
            if(item.checked){
                checked = i;
            }
        }, this);
        Ext.CycleButton.superclass.initComponent.call(this);
        this.on('click', this.toggleSelected, this);
        this.setActiveItem(checked, true);
    },

    // private
    checkHandler : function(item, pressed){
        if(pressed){
            this.setActiveItem(item);
        }
    },

    /**
     * This is normally called internally on button click, but can be called externally to advance the button's
     * active item programmatically to the next one in the menu.  If the current item is the last one in the menu
     * the active item will be set to the first item in the menu.
     */
    toggleSelected : function(){
        var m = this.menu;
        m.render();
        // layout if we haven't before so the items are active
        if(!m.hasLayout){
            m.doLayout();
        }
        
        var nextIdx, checkItem;
        for (var i = 1; i < this.itemCount; i++) {
            nextIdx = (this.activeItem.itemIndex + i) % this.itemCount;
            // check the potential item
            checkItem = m.items.itemAt(nextIdx);
            // if its not disabled then check it.
            if (!checkItem.disabled) {
                checkItem.setChecked(true);
                break;
            }
        }
    }
});
Ext.reg('cycle', Ext.CycleButton);/**
 * @class Ext.Toolbar
 * @extends Ext.Container
 * 
    Basic Toolbar class. Although the {@link Ext.Container#defaultType defaultType} for Toolbar
 * is {@link Ext.Button button}, Toolbar elements (child items for the Toolbar container) may
 * be virtually any type of Component. Toolbar elements can be created explicitly via their constructors,
 * or implicitly via their xtypes, and can be {@link #add}ed dynamically.
    
 * 
    Some items have shortcut strings for creation:
    
 * 
    Shortcut  xtype          Class                  Description
'->'      'tbfill'       {@link Ext.Toolbar.Fill}       begin using the right-justified button container
'-'       'tbseparator'  {@link Ext.Toolbar.Separator}  add a vertical separator bar between toolbar items
' '       'tbspacer'     {@link Ext.Toolbar.Spacer}     add horiztonal space between elements
 * 
    
 *
 * Example usage of various elements:
 * 
    
var tb = new Ext.Toolbar({
    renderTo: document.body,
    width: 600,
    height: 100,
    items: [
        {
            // xtype: 'button', // default for Toolbars, same as 'tbbutton'
            text: 'Button'
        },
        {
            xtype: 'splitbutton', // same as 'tbsplitbutton'
            text: 'Split Button'
        },
        // begin using the right-justified button container
        '->', // same as {xtype: 'tbfill'}, // Ext.Toolbar.Fill
        {
            xtype: 'textfield',
            name: 'field1',
            emptyText: 'enter search term'
        },
        // add a vertical separator bar between toolbar items
        '-', // same as {xtype: 'tbseparator'} to create Ext.Toolbar.Separator
        'text 1', // same as {xtype: 'tbtext', text: 'text1'} to create Ext.Toolbar.TextItem
        {xtype: 'tbspacer'},// same as ' ' to create Ext.Toolbar.Spacer
        'text 2',
        {xtype: 'tbspacer', width: 50}, // add a 50px space
        'text 3'
    ]
});
 * 
    
 * Example adding a ComboBox within a menu of a button:
 * 
    
// ComboBox creation
var combo = new Ext.form.ComboBox({
    store: new Ext.data.ArrayStore({
        autoDestroy: true,
        fields: ['initials', 'fullname'],
        data : [
            ['FF', 'Fred Flintstone'],
            ['BR', 'Barney Rubble']
        ]
    }),
    displayField: 'fullname',
    typeAhead: true,
    mode: 'local',
    forceSelection: true,
    triggerAction: 'all',
    emptyText: 'Select a name...',
    selectOnFocus: true,
    width: 135,
    getListParent: function() {
        return this.el.up('.x-menu');
    },
    iconCls: 'no-icon' //use iconCls if placing within menu to shift to right side of menu
});

// put ComboBox in a Menu
var menu = new Ext.menu.Menu({
    id: 'mainMenu',
    items: [
        combo // A Field in a Menu
    ]
});

// add a Button with the menu
tb.add({
        text:'Button w/ Menu',
        menu: menu  // assign menu by instance
    });
tb.doLayout();
 * 
    
 * @constructor
 * Creates a new Toolbar
 * @param {Object/Array} config A config object or an array of buttons to {@link #add}
 * @xtype toolbar
 */
Ext.Toolbar = function(config){
    if(Ext.isArray(config)){
        config = {items: config, layout: 'toolbar'};
    } else {
        config = Ext.apply({
            layout: 'toolbar'
        }, config);
        if(config.buttons) {
            config.items = config.buttons;
        }
    }
    Ext.Toolbar.superclass.constructor.call(this, config);
};

(function(){

var T = Ext.Toolbar;

Ext.extend(T, Ext.Container, {

    defaultType: 'button',

    /**
     * @cfg {String/Object} layout
     * This class assigns a default layout (layout:'toolbar').
     * Developers may override this configuration option if another layout
     * is required (the constructor must be passed a configuration object in this
     * case instead of an array).
     * See {@link Ext.Container#layout} for additional information.
     */

    enableOverflow : false,

    /**
     * @cfg {Boolean} enableOverflow
     * Defaults to false. Configure true to make the toolbar provide a button
     * which activates a dropdown Menu to show items which overflow the Toolbar's width.
     */
    /**
     * @cfg {String} buttonAlign
     * 
    The default position at which to align child items. Defaults to "left"
    
     * 
    May be specified as "center" to cause items added before a Fill (A "->") item
     * to be centered in the Toolbar. Items added after a Fill are still right-aligned.
    
     * 
    Specify as "right" to right align all child items.
    
     */

    trackMenus : true,
    internalDefaults: {removeMode: 'container', hideParent: true},
    toolbarCls: 'x-toolbar',

    initComponent : function(){
        T.superclass.initComponent.call(this);

        /**
         * @event overflowchange
         * Fires after the overflow state has changed.
         * @param {Object} c The Container
         * @param {Boolean} lastOverflow overflow state
         */
        this.addEvents('overflowchange');
    },

    // private
    onRender : function(ct, position){
        if(!this.el){
            if(!this.autoCreate){
                this.autoCreate = {
                    cls: this.toolbarCls + ' x-small-editor'
                };
            }
            this.el = ct.createChild(Ext.apply({ id: this.id },this.autoCreate), position);
            Ext.Toolbar.superclass.onRender.apply(this, arguments);
        }
    },

    /**
     * 
    Adds element(s) to the toolbar -- this function takes a variable number of
     * arguments of mixed type and adds them to the toolbar.
    
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Mixed} arg1 The following types of arguments are all valid:
    
     * 
      
     * 
    • {@link Ext.Button} config: A valid button config object (equivalent to {@link #addButton})
      • 
     * 
    • HtmlElement: Any standard HTML element (equivalent to {@link #addElement})
      • 
     * 
    • Field: Any form field (equivalent to {@link #addField})
      • 
     * 
    • Item: Any subclass of {@link Ext.Toolbar.Item} (equivalent to {@link #addItem})
      • 
     * 
    • String: Any generic string (gets wrapped in a {@link Ext.Toolbar.TextItem}, equivalent to {@link #addText}).
     * Note that there are a few special strings that are treated differently as explained next.
      • 
     * 
    • '-': Creates a separator element (equivalent to {@link #addSeparator})
      • 
     * 
    • ' ': Creates a spacer element (equivalent to {@link #addSpacer})
      • 
     * 
    • '->': Creates a fill element (equivalent to {@link #addFill})
      • 
     * 
    
     * @param {Mixed} arg2
     * @param {Mixed} etc.
     * @method add
     */

    // private
    lookupComponent : function(c){
        if(Ext.isString(c)){
            if(c == '-'){
                c = new T.Separator();
            }else if(c == ' '){
                c = new T.Spacer();
            }else if(c == '->'){
                c = new T.Fill();
            }else{
                c = new T.TextItem(c);
            }
            this.applyDefaults(c);
        }else{
            if(c.isFormField || c.render){ // some kind of form field, some kind of Toolbar.Item
                c = this.createComponent(c);
            }else if(c.tag){ // DomHelper spec
                c = new T.Item({autoEl: c});
            }else if(c.tagName){ // element
                c = new T.Item({el:c});
            }else if(Ext.isObject(c)){ // must be button config?
                c = c.xtype ? this.createComponent(c) : this.constructButton(c);
            }
        }
        return c;
    },

    // private
    applyDefaults : function(c){
        if(!Ext.isString(c)){
            c = Ext.Toolbar.superclass.applyDefaults.call(this, c);
            var d = this.internalDefaults;
            if(c.events){
                Ext.applyIf(c.initialConfig, d);
                Ext.apply(c, d);
            }else{
                Ext.applyIf(c, d);
            }
        }
        return c;
    },

    /**
     * Adds a separator
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @return {Ext.Toolbar.Item} The separator {@link Ext.Toolbar.Item item}
     */
    addSeparator : function(){
        return this.add(new T.Separator());
    },

    /**
     * Adds a spacer element
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @return {Ext.Toolbar.Spacer} The spacer item
     */
    addSpacer : function(){
        return this.add(new T.Spacer());
    },

    /**
     * Forces subsequent additions into the float:right toolbar
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     */
    addFill : function(){
        this.add(new T.Fill());
    },

    /**
     * Adds any standard HTML element to the toolbar
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Mixed} el The element or id of the element to add
     * @return {Ext.Toolbar.Item} The element's item
     */
    addElement : function(el){
        return this.addItem(new T.Item({el:el}));
    },

    /**
     * Adds any Toolbar.Item or subclass
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Ext.Toolbar.Item} item
     * @return {Ext.Toolbar.Item} The item
     */
    addItem : function(item){
        return this.add.apply(this, arguments);
    },

    /**
     * Adds a button (or buttons). See {@link Ext.Button} for more info on the config.
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Object/Array} config A button config or array of configs
     * @return {Ext.Button/Array}
     */
    addButton : function(config){
        if(Ext.isArray(config)){
            var buttons = [];
            for(var i = 0, len = config.length; i < len; i++) {
                buttons.push(this.addButton(config[i]));
            }
            return buttons;
        }
        return this.add(this.constructButton(config));
    },

    /**
     * Adds text to the toolbar
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {String} text The text to add
     * @return {Ext.Toolbar.Item} The element's item
     */
    addText : function(text){
        return this.addItem(new T.TextItem(text));
    },

    /**
     * Adds a new element to the toolbar from the passed {@link Ext.DomHelper} config
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Object} config
     * @return {Ext.Toolbar.Item} The element's item
     */
    addDom : function(config){
        return this.add(new T.Item({autoEl: config}));
    },

    /**
     * Adds a dynamically rendered Ext.form field (TextField, ComboBox, etc). Note: the field should not have
     * been rendered yet. For a field that has already been rendered, use {@link #addElement}.
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Ext.form.Field} field
     * @return {Ext.Toolbar.Item}
     */
    addField : function(field){
        return this.add(field);
    },

    /**
     * Inserts any {@link Ext.Toolbar.Item}/{@link Ext.Button} at the specified index.
     * 
    Note: See the notes within {@link Ext.Container#add}.
    
     * @param {Number} index The index where the item is to be inserted
     * @param {Object/Ext.Toolbar.Item/Ext.Button/Array} item The button, or button config object to be
     * inserted, or an array of buttons/configs.
     * @return {Ext.Button/Item}
     */
    insertButton : function(index, item){
        if(Ext.isArray(item)){
            var buttons = [];
            for(var i = 0, len = item.length; i < len; i++) {
               buttons.push(this.insertButton(index + i, item[i]));
            }
            return buttons;
        }
        return Ext.Toolbar.superclass.insert.call(this, index, item);
    },

    // private
    trackMenu : function(item, remove){
        if(this.trackMenus && item.menu){
            var method = remove ? 'mun' : 'mon';
            this[method](item, 'menutriggerover', this.onButtonTriggerOver, this);
            this[method](item, 'menushow', this.onButtonMenuShow, this);
            this[method](item, 'menuhide', this.onButtonMenuHide, this);
        }
    },

    // private
    constructButton : function(item){
        var b = item.events ? item : this.createComponent(item, item.split ? 'splitbutton' : this.defaultType);
        return b;
    },

    // private
    onAdd : function(c){
        Ext.Toolbar.superclass.onAdd.call(this);
        this.trackMenu(c);
        if(this.disabled){
            c.disable();
        }
    },

    // private
    onRemove : function(c){
        Ext.Toolbar.superclass.onRemove.call(this);
        if (c == this.activeMenuBtn) {
            delete this.activeMenuBtn;
        }
        this.trackMenu(c, true);
    },

    // private
    onDisable : function(){
        this.items.each(function(item){
             if(item.disable){
                 item.disable();
             }
        });
    },

    // private
    onEnable : function(){
        this.items.each(function(item){
             if(item.enable){
                 item.enable();
             }
        });
    },

    // private
    onButtonTriggerOver : function(btn){
        if(this.activeMenuBtn && this.activeMenuBtn != btn){
            this.activeMenuBtn.hideMenu();
            btn.showMenu();
            this.activeMenuBtn = btn;
        }
    },

    // private
    onButtonMenuShow : function(btn){
        this.activeMenuBtn = btn;
    },

    // private
    onButtonMenuHide : function(btn){
        delete this.activeMenuBtn;
    }
});
Ext.reg('toolbar', Ext.Toolbar);

/**
 * @class Ext.Toolbar.Item
 * @extends Ext.BoxComponent
 * The base class that other non-interacting Toolbar Item classes should extend in order to
 * get some basic common toolbar item functionality.
 * @constructor
 * Creates a new Item
 * @param {HTMLElement} el
 * @xtype tbitem
 */
T.Item = Ext.extend(Ext.BoxComponent, {
    hideParent: true, //  Hiding a Toolbar.Item hides its containing TD
    enable:Ext.emptyFn,
    disable:Ext.emptyFn,
    focus:Ext.emptyFn
    /**
     * @cfg {String} overflowText Text to be used for the menu if the item is overflowed.
     */
});
Ext.reg('tbitem', T.Item);

/**
 * @class Ext.Toolbar.Separator
 * @extends Ext.Toolbar.Item
 * A simple class that adds a vertical separator bar between toolbar items
 * (css class:'xtb-sep'). Example usage:
 * 
    
new Ext.Panel({
    tbar : [
        'Item 1',
        {xtype: 'tbseparator'}, // or '-'
        'Item 2'
    ]
});

    
 * @constructor
 * Creates a new Separator
 * @xtype tbseparator
 */
T.Separator = Ext.extend(T.Item, {
    onRender : function(ct, position){
        this.el = ct.createChild({tag:'span', cls:'xtb-sep'}, position);
    }
});
Ext.reg('tbseparator', T.Separator);

/**
 * @class Ext.Toolbar.Spacer
 * @extends Ext.Toolbar.Item
 * A simple element that adds extra horizontal space between items in a toolbar.
 * By default a 2px wide space is added via css specification:
    
.x-toolbar .xtb-spacer {
    width:2px;
}
 * 
    
 * 
    Example usage:
    
 * 
    
new Ext.Panel({
    tbar : [
        'Item 1',
        {xtype: 'tbspacer'}, // or ' '
        'Item 2',
        // space width is also configurable via javascript
        {xtype: 'tbspacer', width: 50}, // add a 50px space
        'Item 3'
    ]
});

    
 * @constructor
 * Creates a new Spacer
 * @xtype tbspacer
 */
T.Spacer = Ext.extend(T.Item, {
    /**
     * @cfg {Number} width
     * The width of the spacer in pixels (defaults to 2px via css style .x-toolbar .xtb-spacer).
     */

    onRender : function(ct, position){
        this.el = ct.createChild({tag:'div', cls:'xtb-spacer', style: this.width?'width:'+this.width+'px':''}, position);
    }
});
Ext.reg('tbspacer', T.Spacer);

/**
 * @class Ext.Toolbar.Fill
 * @extends Ext.Toolbar.Spacer
 * A non-rendering placeholder item which instructs the Toolbar's Layout to begin using
 * the right-justified button container.
 * 
    
new Ext.Panel({
    tbar : [
        'Item 1',
        {xtype: 'tbfill'}, // or '->'
        'Item 2'
    ]
});

    
 * @constructor
 * Creates a new Fill
 * @xtype tbfill
 */
T.Fill = Ext.extend(T.Item, {
    // private
    render : Ext.emptyFn,
    isFill : true
});
Ext.reg('tbfill', T.Fill);

/**
 * @class Ext.Toolbar.TextItem
 * @extends Ext.Toolbar.Item
 * A simple class that renders text directly into a toolbar
 * (with css class:'xtb-text'). Example usage:
 * 
    
new Ext.Panel({
    tbar : [
        {xtype: 'tbtext', text: 'Item 1'} // or simply 'Item 1'
    ]
});

    
 * @constructor
 * Creates a new TextItem
 * @param {String/Object} text A text string, or a config object containing a text property
 * @xtype tbtext
 */
T.TextItem = Ext.extend(T.Item, {
    /**
     * @cfg {String} text The text to be used as innerHTML (html tags are accepted)
     */

    constructor: function(config){
        T.TextItem.superclass.constructor.call(this, Ext.isString(config) ? {text: config} : config);
    },

    // private
    onRender : function(ct, position) {
        this.autoEl = {cls: 'xtb-text', html: this.text || ''};
        T.TextItem.superclass.onRender.call(this, ct, position);
    },

    /**
     * Updates this item's text, setting the text to be used as innerHTML.
     * @param {String} t The text to display (html accepted).
     */
    setText : function(t) {
        if(this.rendered){
            this.el.update(t);
        }else{
            this.text = t;
        }
    }
});
Ext.reg('tbtext', T.TextItem);

// backwards compat
T.Button = Ext.extend(Ext.Button, {});
T.SplitButton = Ext.extend(Ext.SplitButton, {});
Ext.reg('tbbutton', T.Button);
Ext.reg('tbsplit', T.SplitButton);

})();
/**
 * @class Ext.ButtonGroup
 * @extends Ext.Panel
 * Container for a group of buttons. Example usage:
 * 
    
var p = new Ext.Panel({
    title: 'Panel with Button Group',
    width: 300,
    height:200,
    renderTo: document.body,
    html: 'whatever',
    tbar: [{
        xtype: 'buttongroup',
        {@link #columns}: 3,
        title: 'Clipboard',
        items: [{
            text: 'Paste',
            scale: 'large',
            rowspan: 3, iconCls: 'add',
            iconAlign: 'top',
            cls: 'x-btn-as-arrow'
        },{
            xtype:'splitbutton',
            text: 'Menu Button',
            scale: 'large',
            rowspan: 3,
            iconCls: 'add',
            iconAlign: 'top',
            arrowAlign:'bottom',
            menu: [{text: 'Menu Item 1'}]
        },{
            xtype:'splitbutton', text: 'Cut', iconCls: 'add16', menu: [{text: 'Cut Menu Item'}]
        },{
            text: 'Copy', iconCls: 'add16'
        },{
            text: 'Format', iconCls: 'add16'
        }]
    }]
});
 * 
    
 * @constructor
 * Create a new ButtonGroup.
 * @param {Object} config The config object
 * @xtype buttongroup
 */
Ext.ButtonGroup = Ext.extend(Ext.Panel, {
    /**
     * @cfg {Number} columns The columns configuration property passed to the
     * {@link #layout configured layout manager}. See {@link Ext.layout.TableLayout#columns}.
     */
    /**
     * @cfg {String} baseCls  Defaults to 'x-btn-group'.  See {@link Ext.Panel#baseCls}.
     */
    baseCls: 'x-btn-group',
    /**
     * @cfg {String} layout  Defaults to 'table'.  See {@link Ext.Container#layout}.
     */
    layout:'table',
    defaultType: 'button',
    /**
     * @cfg {Boolean} frame  Defaults to true.  See {@link Ext.Panel#frame}.
     */
    frame: true,
    internalDefaults: {removeMode: 'container', hideParent: true},

    initComponent : function(){
        this.layoutConfig = this.layoutConfig || {};
        Ext.applyIf(this.layoutConfig, {
            columns : this.columns
        });
        if(!this.title){
            this.addClass('x-btn-group-notitle');
        }
        this.on('afterlayout', this.onAfterLayout, this);
        Ext.ButtonGroup.superclass.initComponent.call(this);
    },

    applyDefaults : function(c){
        c = Ext.ButtonGroup.superclass.applyDefaults.call(this, c);
        var d = this.internalDefaults;
        if(c.events){
            Ext.applyIf(c.initialConfig, d);
            Ext.apply(c, d);
        }else{
            Ext.applyIf(c, d);
        }
        return c;
    },

    onAfterLayout : function(){
        var bodyWidth = this.body.getFrameWidth('lr') + this.body.dom.firstChild.offsetWidth;
        this.body.setWidth(bodyWidth);
        this.el.setWidth(bodyWidth + this.getFrameWidth());
    }
    /**
     * @cfg {Array} tools  @hide
     */
});

Ext.reg('buttongroup', Ext.ButtonGroup);
/**
 * @class Ext.PagingToolbar
 * @extends Ext.Toolbar
 * 
    As the amount of records increases, the time required for the browser to render
 * them increases. Paging is used to reduce the amount of data exchanged with the client.
 * Note: if there are more records/rows than can be viewed in the available screen area, vertical
 * scrollbars will be added.
    
 * 
    Paging is typically handled on the server side (see exception below). The client sends
 * parameters to the server side, which the server needs to interpret and then respond with the
 * approprate data.
    
 * 
    Ext.PagingToolbar is a specialized toolbar that is bound to a {@link Ext.data.Store}
 * and provides automatic paging control. This Component {@link Ext.data.Store#load load}s blocks
 * of data into the {@link #store} by passing {@link Ext.data.Store#paramNames paramNames} used for
 * paging criteria.
    
 * 
    PagingToolbar is typically used as one of the Grid's toolbars:
    
 * 
    
Ext.QuickTips.init(); // to display button quicktips

var myStore = new Ext.data.Store({
    reader: new Ext.data.JsonReader({
        {@link Ext.data.JsonReader#totalProperty totalProperty}: 'results', 
        ...
    }),
    ...
});

var myPageSize = 25;  // server script should only send back 25 items at a time

var grid = new Ext.grid.GridPanel({
    ...
    store: myStore,
    bbar: new Ext.PagingToolbar({
        {@link #store}: myStore,       // grid and PagingToolbar using same store
        {@link #displayInfo}: true,
        {@link #pageSize}: myPageSize,
        {@link #prependButtons}: true,
        items: [
            'text 1'
        ]
    })
});
 * 
    
 *
 * 
    To use paging, pass the paging requirements to the server when the store is first loaded.
    
 * 
    
store.load({
    params: {
        // specify params for the first page load if using paging
        start: 0,          
        limit: myPageSize,
        // other params
        foo:   'bar'
    }
});
 * 
    
 * 
 * 
    If using {@link Ext.data.Store#autoLoad store's autoLoad} configuration:
    
 * 
    
var myStore = new Ext.data.Store({
    {@link Ext.data.Store#autoLoad autoLoad}: {params:{start: 0, limit: 25}},
    ...
});
 * 
    
 * 
 * 
    The packet sent back from the server would have this form:
    
 * 
    
{
    "success": true,
    "results": 2000, 
    "rows": [ // *Note: this must be an Array 
        { "id":  1, "name": "Bill", "occupation": "Gardener" },
        { "id":  2, "name":  "Ben", "occupation": "Horticulturalist" },
        ...
        { "id": 25, "name":  "Sue", "occupation": "Botanist" }
    ]
}
 * 
    
 * 
    Paging with Local Data
    
 * 
    Paging can also be accomplished with local data using extensions:
    
 * 
    
 * @constructor Create a new PagingToolbar
 * @param {Object} config The config object
 * @xtype paging
 */
(function() {

var T = Ext.Toolbar;

Ext.PagingToolbar = Ext.extend(Ext.Toolbar, {
    /**
     * @cfg {Ext.data.Store} store
     * The {@link Ext.data.Store} the paging toolbar should use as its data source (required).
     */
    /**
     * @cfg {Boolean} displayInfo
     * true to display the displayMsg (defaults to false)
     */
    /**
     * @cfg {Number} pageSize
     * The number of records to display per page (defaults to 20)
     */
    pageSize : 20,
    /**
     * @cfg {Boolean} prependButtons
     * true to insert any configured items before the paging buttons.
     * Defaults to false.
     */
    /**
     * @cfg {String} displayMsg
     * The paging status message to display (defaults to 'Displaying {0} - {1} of {2}').
     * Note that this string is formatted using the braced numbers {0}-{2} as tokens
     * that are replaced by the values for start, end and total respectively. These tokens should
     * be preserved when overriding this string if showing those values is desired.
     */
    displayMsg : 'Displaying {0} - {1} of {2}',
    /**
     * @cfg {String} emptyMsg
     * The message to display when no records are found (defaults to 'No data to display')
     */
    emptyMsg : 'No data to display',
    /**
     * @cfg {String} beforePageText
     * The text displayed before the input item (defaults to 'Page').
     */
    beforePageText : 'Page',
    /**
     * @cfg {String} afterPageText
     * Customizable piece of the default paging text (defaults to 'of {0}'). Note that
     * this string is formatted using {0} as a token that is replaced by the number of
     * total pages. This token should be preserved when overriding this string if showing the
     * total page count is desired.
     */
    afterPageText : 'of {0}',
    /**
     * @cfg {String} firstText
     * The quicktip text displayed for the first page button (defaults to 'First Page').
     * Note: quick tips must be initialized for the quicktip to show.
     */
    firstText : 'First Page',
    /**
     * @cfg {String} prevText
     * The quicktip text displayed for the previous page button (defaults to 'Previous Page').
     * Note: quick tips must be initialized for the quicktip to show.
     */
    prevText : 'Previous Page',
    /**
     * @cfg {String} nextText
     * The quicktip text displayed for the next page button (defaults to 'Next Page').
     * Note: quick tips must be initialized for the quicktip to show.
     */
    nextText : 'Next Page',
    /**
     * @cfg {String} lastText
     * The quicktip text displayed for the last page button (defaults to 'Last Page').
     * Note: quick tips must be initialized for the quicktip to show.
     */
    lastText : 'Last Page',
    /**
     * @cfg {String} refreshText
     * The quicktip text displayed for the Refresh button (defaults to 'Refresh').
     * Note: quick tips must be initialized for the quicktip to show.
     */
    refreshText : 'Refresh',

    /**
     * 
    Deprecated. paramNames should be set in the data store
     * (see {@link Ext.data.Store#paramNames}).
    
     * 
    Object mapping of parameter names used for load calls, initially set to:
    
     * 
    {start: 'start', limit: 'limit'}
    
     * @type Object
     * @property paramNames
     * @deprecated
     */

    /**
     * The number of records to display per page.  See also {@link #cursor}.
     * @type Number
     * @property pageSize
     */

    /**
     * Indicator for the record position.  This property might be used to get the active page
     * number for example:
    
     * // t is reference to the paging toolbar instance
     * var activePage = Math.ceil((t.cursor + t.pageSize) / t.pageSize);
     * 
    
     * @type Number
     * @property cursor
     */

    initComponent : function(){
        var pagingItems = [this.first = new T.Button({
            tooltip: this.firstText,
            overflowText: this.firstText,
            iconCls: 'x-tbar-page-first',
            disabled: true,
            handler: this.moveFirst,
            scope: this
        }), this.prev = new T.Button({
            tooltip: this.prevText,
            overflowText: this.prevText,
            iconCls: 'x-tbar-page-prev',
            disabled: true,
            handler: this.movePrevious,
            scope: this
        }), '-', this.beforePageText,
        this.inputItem = new Ext.form.NumberField({
            cls: 'x-tbar-page-number',
            allowDecimals: false,
            allowNegative: false,
            enableKeyEvents: true,
            selectOnFocus: true,
            submitValue: false,
            listeners: {
                scope: this,
                keydown: this.onPagingKeyDown,
                blur: this.onPagingBlur
            }
        }), this.afterTextItem = new T.TextItem({
            text: String.format(this.afterPageText, 1)
        }), '-', this.next = new T.Button({
            tooltip: this.nextText,
            overflowText: this.nextText,
            iconCls: 'x-tbar-page-next',
            disabled: true,
            handler: this.moveNext,
            scope: this
        }), this.last = new T.Button({
            tooltip: this.lastText,
            overflowText: this.lastText,
            iconCls: 'x-tbar-page-last',
            disabled: true,
            handler: this.moveLast,
            scope: this
        }), '-', this.refresh = new T.Button({
            tooltip: this.refreshText,
            overflowText: this.refreshText,
            iconCls: 'x-tbar-loading',
            handler: this.doRefresh,
            scope: this
        })];


        var userItems = this.items || this.buttons || [];
        if (this.prependButtons) {
            this.items = userItems.concat(pagingItems);
        }else{
            this.items = pagingItems.concat(userItems);
        }
        delete this.buttons;
        if(this.displayInfo){
            this.items.push('->');
            this.items.push(this.displayItem = new T.TextItem({}));
        }
        Ext.PagingToolbar.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event change
             * Fires after the active page has been changed.
             * @param {Ext.PagingToolbar} this
             * @param {Object} pageData An object that has these properties:
      
             * 
    • total : Number 
      The total number of records in the dataset as
             * returned by the server
      • 
             * 
    • activePage : Number 
      The current page number
      • 
             * 
    • pages : Number 
      The total number of pages (calculated from
             * the total number of records in the dataset as returned by the server and the current {@link #pageSize})
      • 
             * 
    
             */
            'change',
            /**
             * @event beforechange
             * Fires just before the active page is changed.
             * Return false to prevent the active page from being changed.
             * @param {Ext.PagingToolbar} this
             * @param {Object} params An object hash of the parameters which the PagingToolbar will send when
             * loading the required page. This will contain:
      
             * 
    • start : Number 
      The starting row number for the next page of records to
             * be retrieved from the server
      • 
             * 
    • limit : Number 
      The number of records to be retrieved from the server
      • 
             * 
    
             * 
    (note: the names of the start and limit properties are determined
             * by the store's {@link Ext.data.Store#paramNames paramNames} property.)
    
             * 
    Parameters may be added as required in the event handler.
    
             */
            'beforechange'
        );
        this.on('afterlayout', this.onFirstLayout, this, {single: true});
        this.cursor = 0;
        this.bindStore(this.store, true);
    },

    // private
    onFirstLayout : function(){
        if(this.dsLoaded){
            this.onLoad.apply(this, this.dsLoaded);
        }
    },

    // private
    updateInfo : function(){
        if(this.displayItem){
            var count = this.store.getCount();
            var msg = count == 0 ?
                this.emptyMsg :
                String.format(
                    this.displayMsg,
                    this.cursor+1, this.cursor+count, this.store.getTotalCount()
                );
            this.displayItem.setText(msg);
        }
    },

    // private
    onLoad : function(store, r, o){
        if(!this.rendered){
            this.dsLoaded = [store, r, o];
            return;
        }
        var p = this.getParams();
        this.cursor = (o.params && o.params[p.start]) ? o.params[p.start] : 0;
        var d = this.getPageData(), ap = d.activePage, ps = d.pages;

        this.afterTextItem.setText(String.format(this.afterPageText, d.pages));
        this.inputItem.setValue(ap);
        this.first.setDisabled(ap == 1);
        this.prev.setDisabled(ap == 1);
        this.next.setDisabled(ap == ps);
        this.last.setDisabled(ap == ps);
        this.refresh.enable();
        this.updateInfo();
        this.fireEvent('change', this, d);
    },

    // private
    getPageData : function(){
        var total = this.store.getTotalCount();
        return {
            total : total,
            activePage : Math.ceil((this.cursor+this.pageSize)/this.pageSize),
            pages :  total < this.pageSize ? 1 : Math.ceil(total/this.pageSize)
        };
    },

    /**
     * Change the active page
     * @param {Integer} page The page to display
     */
    changePage : function(page){
        this.doLoad(((page-1) * this.pageSize).constrain(0, this.store.getTotalCount()));
    },

    // private
    onLoadError : function(){
        if(!this.rendered){
            return;
        }
        this.refresh.enable();
    },

    // private
    readPage : function(d){
        var v = this.inputItem.getValue(), pageNum;
        if (!v || isNaN(pageNum = parseInt(v, 10))) {
            this.inputItem.setValue(d.activePage);
            return false;
        }
        return pageNum;
    },

    onPagingFocus : function(){
        this.inputItem.select();
    },

    //private
    onPagingBlur : function(e){
        this.inputItem.setValue(this.getPageData().activePage);
    },

    // private
    onPagingKeyDown : function(field, e){
        var k = e.getKey(), d = this.getPageData(), pageNum;
        if (k == e.RETURN) {
            e.stopEvent();
            pageNum = this.readPage(d);
            if(pageNum !== false){
                pageNum = Math.min(Math.max(1, pageNum), d.pages) - 1;
                this.doLoad(pageNum * this.pageSize);
            }
        }else if (k == e.HOME || k == e.END){
            e.stopEvent();
            pageNum = k == e.HOME ? 1 : d.pages;
            field.setValue(pageNum);
        }else if (k == e.UP || k == e.PAGEUP || k == e.DOWN || k == e.PAGEDOWN){
            e.stopEvent();
            if((pageNum = this.readPage(d))){
                var increment = e.shiftKey ? 10 : 1;
                if(k == e.DOWN || k == e.PAGEDOWN){
                    increment *= -1;
                }
                pageNum += increment;
                if(pageNum >= 1 & pageNum <= d.pages){
                    field.setValue(pageNum);
                }
            }
        }
    },

    // private
    getParams : function(){
        //retain backwards compat, allow params on the toolbar itself, if they exist.
        return this.paramNames || this.store.paramNames;
    },

    // private
    beforeLoad : function(){
        if(this.rendered && this.refresh){
            this.refresh.disable();
        }
    },

    // private
    doLoad : function(start){
        var o = {}, pn = this.getParams();
        o[pn.start] = start;
        o[pn.limit] = this.pageSize;
        if(this.fireEvent('beforechange', this, o) !== false){
            this.store.load({params:o});
        }
    },

    /**
     * Move to the first page, has the same effect as clicking the 'first' button.
     */
    moveFirst : function(){
        this.doLoad(0);
    },

    /**
     * Move to the previous page, has the same effect as clicking the 'previous' button.
     */
    movePrevious : function(){
        this.doLoad(Math.max(0, this.cursor-this.pageSize));
    },

    /**
     * Move to the next page, has the same effect as clicking the 'next' button.
     */
    moveNext : function(){
        this.doLoad(this.cursor+this.pageSize);
    },

    /**
     * Move to the last page, has the same effect as clicking the 'last' button.
     */
    moveLast : function(){
        var total = this.store.getTotalCount(),
            extra = total % this.pageSize;

        this.doLoad(extra ? (total - extra) : total - this.pageSize);
    },

    /**
     * Refresh the current page, has the same effect as clicking the 'refresh' button.
     */
    doRefresh : function(){
        this.doLoad(this.cursor);
    },

    /**
     * Binds the paging toolbar to the specified {@link Ext.data.Store}
     * @param {Store} store The store to bind to this toolbar
     * @param {Boolean} initial (Optional) true to not remove listeners
     */
    bindStore : function(store, initial){
        var doLoad;
        if(!initial && this.store){
            if(store !== this.store && this.store.autoDestroy){
                this.store.destroy();
            }else{
                this.store.un('beforeload', this.beforeLoad, this);
                this.store.un('load', this.onLoad, this);
                this.store.un('exception', this.onLoadError, this);
            }
            if(!store){
                this.store = null;
            }
        }
        if(store){
            store = Ext.StoreMgr.lookup(store);
            store.on({
                scope: this,
                beforeload: this.beforeLoad,
                load: this.onLoad,
                exception: this.onLoadError
            });
            doLoad = true;
        }
        this.store = store;
        if(doLoad){
            this.onLoad(store, null, {});
        }
    },

    /**
     * Unbinds the paging toolbar from the specified {@link Ext.data.Store} (deprecated)
     * @param {Ext.data.Store} store The data store to unbind
     */
    unbind : function(store){
        this.bindStore(null);
    },

    /**
     * Binds the paging toolbar to the specified {@link Ext.data.Store} (deprecated)
     * @param {Ext.data.Store} store The data store to bind
     */
    bind : function(store){
        this.bindStore(store);
    },

    // private
    onDestroy : function(){
        this.bindStore(null);
        Ext.PagingToolbar.superclass.onDestroy.call(this);
    }
});

})();
Ext.reg('paging', Ext.PagingToolbar);/**
 * @class Ext.History
 * @extends Ext.util.Observable
 * History management component that allows you to register arbitrary tokens that signify application
 * history state on navigation actions.  You can then handle the history {@link #change} event in order
 * to reset your application UI to the appropriate state when the user navigates forward or backward through
 * the browser history stack.
 * @singleton
 */
Ext.History = (function () {
    var iframe, hiddenField;
    var ready = false;
    var currentToken;

    function getHash() {
        var href = location.href, i = href.indexOf("#"),
            hash = i >= 0 ? href.substr(i + 1) : null;
             
        if (Ext.isGecko) {
            hash = decodeURIComponent(hash);
        }
        return hash;
    }

    function doSave() {
        hiddenField.value = currentToken;
    }

    function handleStateChange(token) {
        currentToken = token;
        Ext.History.fireEvent('change', token);
    }

    function updateIFrame (token) {
        var html = ['
    ',Ext.util.Format.htmlEncode(token),'
    '].join('');
        try {
            var doc = iframe.contentWindow.document;
            doc.open();
            doc.write(html);
            doc.close();
            return true;
        } catch (e) {
            return false;
        }
    }

    function checkIFrame() {
        if (!iframe.contentWindow || !iframe.contentWindow.document) {
            setTimeout(checkIFrame, 10);
            return;
        }

        var doc = iframe.contentWindow.document;
        var elem = doc.getElementById("state");
        var token = elem ? elem.innerText : null;

        var hash = getHash();

        setInterval(function () {

            doc = iframe.contentWindow.document;
            elem = doc.getElementById("state");

            var newtoken = elem ? elem.innerText : null;

            var newHash = getHash();

            if (newtoken !== token) {
                token = newtoken;
                handleStateChange(token);
                location.hash = token;
                hash = token;
                doSave();
            } else if (newHash !== hash) {
                hash = newHash;
                updateIFrame(newHash);
            }

        }, 50);

        ready = true;

        Ext.History.fireEvent('ready', Ext.History);
    }

    function startUp() {
        currentToken = hiddenField.value ? hiddenField.value : getHash();

        if (Ext.isIE) {
            checkIFrame();
        } else {
            var hash = getHash();
            setInterval(function () {
                var newHash = getHash();
                if (newHash !== hash) {
                    hash = newHash;
                    handleStateChange(hash);
                    doSave();
                }
            }, 50);
            ready = true;
            Ext.History.fireEvent('ready', Ext.History);
        }
    }

    return {
        /**
         * The id of the hidden field required for storing the current history token.
         * @type String
         * @property
         */
        fieldId: 'x-history-field',
        /**
         * The id of the iframe required by IE to manage the history stack.
         * @type String
         * @property
         */
        iframeId: 'x-history-frame',

        events:{},

        /**
         * Initialize the global History instance.
         * @param {Boolean} onReady (optional) A callback function that will be called once the history
         * component is fully initialized.
         * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to the browser window.
         */
        init: function (onReady, scope) {
            if(ready) {
                Ext.callback(onReady, scope, [this]);
                return;
            }
            if(!Ext.isReady){
                Ext.onReady(function(){
                    Ext.History.init(onReady, scope);
                });
                return;
            }
            hiddenField = Ext.getDom(Ext.History.fieldId);
            if (Ext.isIE) {
                iframe = Ext.getDom(Ext.History.iframeId);
            }
            this.addEvents(
                /**
                 * @event ready
                 * Fires when the Ext.History singleton has been initialized and is ready for use.
                 * @param {Ext.History} The Ext.History singleton.
                 */
                'ready',
                /**
                 * @event change
                 * Fires when navigation back or forwards within the local page's history occurs.
                 * @param {String} token An identifier associated with the page state at that point in its history.
                 */
                'change'
            );
            if(onReady){
                this.on('ready', onReady, scope, {single:true});
            }
            startUp();
        },

        /**
         * Add a new token to the history stack. This can be any arbitrary value, although it would
         * commonly be the concatenation of a component id and another id marking the specifc history
         * state of that component.  Example usage:
         * 
    
// Handle tab changes on a TabPanel
tabPanel.on('tabchange', function(tabPanel, tab){
    Ext.History.add(tabPanel.id + ':' + tab.id);
});

    
         * @param {String} token The value that defines a particular application-specific history state
         * @param {Boolean} preventDuplicates When true, if the passed token matches the current token
         * it will not save a new history step. Set to false if the same state can be saved more than once
         * at the same history stack location (defaults to true).
         */
        add: function (token, preventDup) {
            if(preventDup !== false){
                if(this.getToken() == token){
                    return true;
                }
            }
            if (Ext.isIE) {
                return updateIFrame(token);
            } else {
                location.hash = token;
                return true;
            }
        },

        /**
         * Programmatically steps back one step in browser history (equivalent to the user pressing the Back button).
         */
        back: function(){
            history.go(-1);
        },

        /**
         * Programmatically steps forward one step in browser history (equivalent to the user pressing the Forward button).
         */
        forward: function(){
            history.go(1);
        },

        /**
         * Retrieves the currently-active history token.
         * @return {String} The token
         */
        getToken: function() {
            return ready ? currentToken : getHash();
        }
    };
})();
Ext.apply(Ext.History, new Ext.util.Observable());/**
 * @class Ext.Tip
 * @extends Ext.Panel
 * @xtype tip
 * This is the base class for {@link Ext.QuickTip} and {@link Ext.Tooltip} that provides the basic layout and
 * positioning that all tip-based classes require. This class can be used directly for simple, statically-positioned
 * tips that are displayed programmatically, or it can be extended to provide custom tip implementations.
 * @constructor
 * Create a new Tip
 * @param {Object} config The configuration options
 */
Ext.Tip = Ext.extend(Ext.Panel, {
    /**
     * @cfg {Boolean} closable True to render a close tool button into the tooltip header (defaults to false).
     */
    /**
     * @cfg {Number} width
     * Width in pixels of the tip (defaults to auto).  Width will be ignored if it exceeds the bounds of
     * {@link #minWidth} or {@link #maxWidth}.  The maximum supported value is 500.
     */
    /**
     * @cfg {Number} minWidth The minimum width of the tip in pixels (defaults to 40).
     */
    minWidth : 40,
    /**
     * @cfg {Number} maxWidth The maximum width of the tip in pixels (defaults to 300).  The maximum supported value is 500.
     */
    maxWidth : 300,
    /**
     * @cfg {Boolean/String} shadow True or "sides" for the default effect, "frame" for 4-way shadow, and "drop"
     * for bottom-right shadow (defaults to "sides").
     */
    shadow : "sides",
    /**
     * @cfg {String} defaultAlign Experimental. The default {@link Ext.Element#alignTo} anchor position value
     * for this tip relative to its element of origin (defaults to "tl-bl?").
     */
    defaultAlign : "tl-bl?",
    autoRender: true,
    quickShowInterval : 250,

    // private panel overrides
    frame:true,
    hidden:true,
    baseCls: 'x-tip',
    floating:{shadow:true,shim:true,useDisplay:true,constrain:false},
    autoHeight:true,

    closeAction: 'hide',

    // private
    initComponent : function(){
        Ext.Tip.superclass.initComponent.call(this);
        if(this.closable && !this.title){
            this.elements += ',header';
        }
    },

    // private
    afterRender : function(){
        Ext.Tip.superclass.afterRender.call(this);
        if(this.closable){
            this.addTool({
                id: 'close',
                handler: this[this.closeAction],
                scope: this
            });
        }
    },

    /**
     * Shows this tip at the specified XY position.  Example usage:
     * 
    
// Show the tip at x:50 and y:100
tip.showAt([50,100]);

    
     * @param {Array} xy An array containing the x and y coordinates
     */
    showAt : function(xy){
        Ext.Tip.superclass.show.call(this);
        if(this.measureWidth !== false && (!this.initialConfig || typeof this.initialConfig.width != 'number')){
            this.doAutoWidth();
        }
        if(this.constrainPosition){
            xy = this.el.adjustForConstraints(xy);
        }
        this.setPagePosition(xy[0], xy[1]);
    },

    // protected
    doAutoWidth : function(adjust){
        adjust = adjust || 0;
        var bw = this.body.getTextWidth();
        if(this.title){
            bw = Math.max(bw, this.header.child('span').getTextWidth(this.title));
        }
        bw += this.getFrameWidth() + (this.closable ? 20 : 0) + this.body.getPadding("lr") + adjust;
        this.setWidth(bw.constrain(this.minWidth, this.maxWidth));
        
        // IE7 repaint bug on initial show
        if(Ext.isIE7 && !this.repainted){
            this.el.repaint();
            this.repainted = true;
        }
    },

    /**
     * Experimental. Shows this tip at a position relative to another element using a standard {@link Ext.Element#alignTo}
     * anchor position value.  Example usage:
     * 
    
// Show the tip at the default position ('tl-br?')
tip.showBy('my-el');

// Show the tip's top-left corner anchored to the element's top-right corner
tip.showBy('my-el', 'tl-tr');

    
     * @param {Mixed} el An HTMLElement, Ext.Element or string id of the target element to align to
     * @param {String} position (optional) A valid {@link Ext.Element#alignTo} anchor position (defaults to 'tl-br?' or
     * {@link #defaultAlign} if specified).
     */
    showBy : function(el, pos){
        if(!this.rendered){
            this.render(Ext.getBody());
        }
        this.showAt(this.el.getAlignToXY(el, pos || this.defaultAlign));
    },

    initDraggable : function(){
        this.dd = new Ext.Tip.DD(this, typeof this.draggable == 'boolean' ? null : this.draggable);
        this.header.addClass('x-tip-draggable');
    }
});

Ext.reg('tip', Ext.Tip);

// private - custom Tip DD implementation
Ext.Tip.DD = function(tip, config){
    Ext.apply(this, config);
    this.tip = tip;
    Ext.Tip.DD.superclass.constructor.call(this, tip.el.id, 'WindowDD-'+tip.id);
    this.setHandleElId(tip.header.id);
    this.scroll = false;
};

Ext.extend(Ext.Tip.DD, Ext.dd.DD, {
    moveOnly:true,
    scroll:false,
    headerOffsets:[100, 25],
    startDrag : function(){
        this.tip.el.disableShadow();
    },
    endDrag : function(e){
        this.tip.el.enableShadow(true);
    }
});/**
 * @class Ext.ToolTip
 * @extends Ext.Tip
 * A standard tooltip implementation for providing additional information when hovering over a target element.
 * @xtype tooltip
 * @constructor
 * Create a new Tooltip
 * @param {Object} config The configuration options
 */
Ext.ToolTip = Ext.extend(Ext.Tip, {
    /**
     * When a Tooltip is configured with the {@link #delegate}
     * option to cause selected child elements of the {@link #target}
     * Element to each trigger a seperate show event, this property is set to
     * the DOM element which triggered the show.
     * @type DOMElement
     * @property triggerElement
     */
    /**
     * @cfg {Mixed} target The target HTMLElement, Ext.Element or id to monitor
     * for mouseover events to trigger showing this ToolTip.
     */
    /**
     * @cfg {Boolean} autoHide True to automatically hide the tooltip after the
     * mouse exits the target element or after the {@link #dismissDelay}
     * has expired if set (defaults to true).  If {@link closable} = true
     * a close tool button will be rendered into the tooltip header.
     */
    /**
     * @cfg {Number} showDelay Delay in milliseconds before the tooltip displays
     * after the mouse enters the target element (defaults to 500)
     */
    showDelay : 500,
    /**
     * @cfg {Number} hideDelay Delay in milliseconds after the mouse exits the
     * target element but before the tooltip actually hides (defaults to 200).
     * Set to 0 for the tooltip to hide immediately.
     */
    hideDelay : 200,
    /**
     * @cfg {Number} dismissDelay Delay in milliseconds before the tooltip
     * automatically hides (defaults to 5000). To disable automatic hiding, set
     * dismissDelay = 0.
     */
    dismissDelay : 5000,
    /**
     * @cfg {Array} mouseOffset An XY offset from the mouse position where the
     * tooltip should be shown (defaults to [15,18]).
     */
    /**
     * @cfg {Boolean} trackMouse True to have the tooltip follow the mouse as it
     * moves over the target element (defaults to false).
     */
    trackMouse : false,
    /**
     * @cfg {Boolean} anchorToTarget True to anchor the tooltip to the target
     * element, false to anchor it relative to the mouse coordinates (defaults
     * to true).  When anchorToTarget is true, use
     * {@link #defaultAlign} to control tooltip alignment to the
     * target element.  When anchorToTarget is false, use
     * {@link #anchorPosition} instead to control alignment.
     */
    anchorToTarget : true,
    /**
     * @cfg {Number} anchorOffset A numeric pixel value used to offset the
     * default position of the anchor arrow (defaults to 0).  When the anchor
     * position is on the top or bottom of the tooltip, anchorOffset
     * will be used as a horizontal offset.  Likewise, when the anchor position
     * is on the left or right side, anchorOffset will be used as
     * a vertical offset.
     */
    anchorOffset : 0,
    /**
     * @cfg {String} delegate 
    Optional. A {@link Ext.DomQuery DomQuery}
     * selector which allows selection of individual elements within the
     * {@link #target} element to trigger showing and hiding the
     * ToolTip as the mouse moves within the target.
    
     * 
    When specified, the child element of the target which caused a show
     * event is placed into the {@link #triggerElement} property
     * before the ToolTip is shown.
    
     * 
    This may be useful when a Component has regular, repeating elements
     * in it, each of which need a Tooltip which contains information specific
     * to that element. For example:
    
var myGrid = new Ext.grid.gridPanel(gridConfig);
myGrid.on('render', function(grid) {
    var store = grid.getStore();  // Capture the Store.
    var view = grid.getView();    // Capture the GridView.
    myGrid.tip = new Ext.ToolTip({
        target: view.mainBody,    // The overall target element.
        delegate: '.x-grid3-row', // Each grid row causes its own seperate show and hide.
        trackMouse: true,         // Moving within the row should not hide the tip.
        renderTo: document.body,  // Render immediately so that tip.body can be
                                  //  referenced prior to the first show.
        listeners: {              // Change content dynamically depending on which element
                                  //  triggered the show.
            beforeshow: function updateTipBody(tip) {
                var rowIndex = view.findRowIndex(tip.triggerElement);
                tip.body.dom.innerHTML = 'Over Record ID ' + store.getAt(rowIndex).id;
            }
        }
    });
});
     *
    
     */

    // private
    targetCounter : 0,

    constrainPosition : false,

    // private
    initComponent : function(){
        Ext.ToolTip.superclass.initComponent.call(this);
        this.lastActive = new Date();
        this.initTarget(this.target);
        this.origAnchor = this.anchor;
    },

    // private
    onRender : function(ct, position){
        Ext.ToolTip.superclass.onRender.call(this, ct, position);
        this.anchorCls = 'x-tip-anchor-' + this.getAnchorPosition();
        this.anchorEl = this.el.createChild({
            cls: 'x-tip-anchor ' + this.anchorCls
        });
    },

    // private
    afterRender : function(){
        Ext.ToolTip.superclass.afterRender.call(this);
        this.anchorEl.setStyle('z-index', this.el.getZIndex() + 1).setVisibilityMode(Ext.Element.DISPLAY);
    },

    /**
     * Binds this ToolTip to the specified element. The tooltip will be displayed when the mouse moves over the element.
     * @param {Mixed} t The Element, HtmlElement, or ID of an element to bind to
     */
    initTarget : function(target){
        var t;
        if((t = Ext.get(target))){
            if(this.target){
                var tg = Ext.get(this.target);
                this.mun(tg, 'mouseover', this.onTargetOver, this);
                this.mun(tg, 'mouseout', this.onTargetOut, this);
                this.mun(tg, 'mousemove', this.onMouseMove, this);
            }
            this.mon(t, {
                mouseover: this.onTargetOver,
                mouseout: this.onTargetOut,
                mousemove: this.onMouseMove,
                scope: this
            });
            this.target = t;
        }
        if(this.anchor){
            this.anchorTarget = this.target;
        }
    },

    // private
    onMouseMove : function(e){
        var t = this.delegate ? e.getTarget(this.delegate) : this.triggerElement = true;
        if (t) {
            this.targetXY = e.getXY();
            if (t === this.triggerElement) {
                if(!this.hidden && this.trackMouse){
                    this.setPagePosition(this.getTargetXY());
                }
            } else {
                this.hide();
                this.lastActive = new Date(0);
                this.onTargetOver(e);
            }
        } else if (!this.closable && this.isVisible()) {
            this.hide();
        }
    },

    // private
    getTargetXY : function(){
        if(this.delegate){
            this.anchorTarget = this.triggerElement;
        }
        if(this.anchor){
            this.targetCounter++;
            var offsets = this.getOffsets(),
                xy = (this.anchorToTarget && !this.trackMouse) ? this.el.getAlignToXY(this.anchorTarget, this.getAnchorAlign()) : this.targetXY,
                dw = Ext.lib.Dom.getViewWidth() - 5,
                dh = Ext.lib.Dom.getViewHeight() - 5,
                de = document.documentElement,
                bd = document.body,
                scrollX = (de.scrollLeft || bd.scrollLeft || 0) + 5,
                scrollY = (de.scrollTop || bd.scrollTop || 0) + 5,
                axy = [xy[0] + offsets[0], xy[1] + offsets[1]],
                sz = this.getSize();
                
            this.anchorEl.removeClass(this.anchorCls);

            if(this.targetCounter < 2){
                if(axy[0] < scrollX){
                    if(this.anchorToTarget){
                        this.defaultAlign = 'l-r';
                        if(this.mouseOffset){this.mouseOffset[0] *= -1;}
                    }
                    this.anchor = 'left';
                    return this.getTargetXY();
                }
                if(axy[0]+sz.width > dw){
                    if(this.anchorToTarget){
                        this.defaultAlign = 'r-l';
                        if(this.mouseOffset){this.mouseOffset[0] *= -1;}
                    }
                    this.anchor = 'right';
                    return this.getTargetXY();
                }
                if(axy[1] < scrollY){
                    if(this.anchorToTarget){
                        this.defaultAlign = 't-b';
                        if(this.mouseOffset){this.mouseOffset[1] *= -1;}
                    }
                    this.anchor = 'top';
                    return this.getTargetXY();
                }
                if(axy[1]+sz.height > dh){
                    if(this.anchorToTarget){
                        this.defaultAlign = 'b-t';
                        if(this.mouseOffset){this.mouseOffset[1] *= -1;}
                    }
                    this.anchor = 'bottom';
                    return this.getTargetXY();
                }
            }

            this.anchorCls = 'x-tip-anchor-'+this.getAnchorPosition();
            this.anchorEl.addClass(this.anchorCls);
            this.targetCounter = 0;
            return axy;
        }else{
            var mouseOffset = this.getMouseOffset();
            return [this.targetXY[0]+mouseOffset[0], this.targetXY[1]+mouseOffset[1]];
        }
    },

    getMouseOffset : function(){
        var offset = this.anchor ? [0,0] : [15,18];
        if(this.mouseOffset){
            offset[0] += this.mouseOffset[0];
            offset[1] += this.mouseOffset[1];
        }
        return offset;
    },

    // private
    getAnchorPosition : function(){
        if(this.anchor){
            this.tipAnchor = this.anchor.charAt(0);
        }else{
            var m = this.defaultAlign.match(/^([a-z]+)-([a-z]+)(\?)?$/);
            if(!m){
               throw 'AnchorTip.defaultAlign is invalid';
            }
            this.tipAnchor = m[1].charAt(0);
        }

        switch(this.tipAnchor){
            case 't': return 'top';
            case 'b': return 'bottom';
            case 'r': return 'right';
        }
        return 'left';
    },

    // private
    getAnchorAlign : function(){
        switch(this.anchor){
            case 'top'  : return 'tl-bl';
            case 'left' : return 'tl-tr';
            case 'right': return 'tr-tl';
            default     : return 'bl-tl';
        }
    },

    // private
    getOffsets : function(){
        var offsets, 
            ap = this.getAnchorPosition().charAt(0);
        if(this.anchorToTarget && !this.trackMouse){
            switch(ap){
                case 't':
                    offsets = [0, 9];
                    break;
                case 'b':
                    offsets = [0, -13];
                    break;
                case 'r':
                    offsets = [-13, 0];
                    break;
                default:
                    offsets = [9, 0];
                    break;
            }
        }else{
            switch(ap){
                case 't':
                    offsets = [-15-this.anchorOffset, 30];
                    break;
                case 'b':
                    offsets = [-19-this.anchorOffset, -13-this.el.dom.offsetHeight];
                    break;
                case 'r':
                    offsets = [-15-this.el.dom.offsetWidth, -13-this.anchorOffset];
                    break;
                default:
                    offsets = [25, -13-this.anchorOffset];
                    break;
            }
        }
        var mouseOffset = this.getMouseOffset();
        offsets[0] += mouseOffset[0];
        offsets[1] += mouseOffset[1];

        return offsets;
    },

    // private
    onTargetOver : function(e){
        if(this.disabled || e.within(this.target.dom, true)){
            return;
        }
        var t = e.getTarget(this.delegate);
        if (t) {
            this.triggerElement = t;
            this.clearTimer('hide');
            this.targetXY = e.getXY();
            this.delayShow();
        }
    },

    // private
    delayShow : function(){
        if(this.hidden && !this.showTimer){
            if(this.lastActive.getElapsed() < this.quickShowInterval){
                this.show();
            }else{
                this.showTimer = this.show.defer(this.showDelay, this);
            }
        }else if(!this.hidden && this.autoHide !== false){
            this.show();
        }
    },

    // private
    onTargetOut : function(e){
        if(this.disabled || e.within(this.target.dom, true)){
            return;
        }
        this.clearTimer('show');
        if(this.autoHide !== false){
            this.delayHide();
        }
    },

    // private
    delayHide : function(){
        if(!this.hidden && !this.hideTimer){
            this.hideTimer = this.hide.defer(this.hideDelay, this);
        }
    },

    /**
     * Hides this tooltip if visible.
     */
    hide: function(){
        this.clearTimer('dismiss');
        this.lastActive = new Date();
        if(this.anchorEl){
            this.anchorEl.hide();
        }
        Ext.ToolTip.superclass.hide.call(this);
        delete this.triggerElement;
    },

    /**
     * Shows this tooltip at the current event target XY position.
     */
    show : function(){
        if(this.anchor){
            // pre-show it off screen so that the el will have dimensions
            // for positioning calcs when getting xy next
            this.showAt([-1000,-1000]);
            this.origConstrainPosition = this.constrainPosition;
            this.constrainPosition = false;
            this.anchor = this.origAnchor;
        }
        this.showAt(this.getTargetXY());

        if(this.anchor){
            this.anchorEl.show();
            this.syncAnchor();
            this.constrainPosition = this.origConstrainPosition;
        }else{
            this.anchorEl.hide();
        }
    },

    // inherit docs
    showAt : function(xy){
        this.lastActive = new Date();
        this.clearTimers();
        Ext.ToolTip.superclass.showAt.call(this, xy);
        if(this.dismissDelay && this.autoHide !== false){
            this.dismissTimer = this.hide.defer(this.dismissDelay, this);
        }
        if(this.anchor && !this.anchorEl.isVisible()){
            this.syncAnchor();
            this.anchorEl.show();
        }else{
            this.anchorEl.hide();
        }
    },

    // private
    syncAnchor : function(){
        var anchorPos, targetPos, offset;
        switch(this.tipAnchor.charAt(0)){
            case 't':
                anchorPos = 'b';
                targetPos = 'tl';
                offset = [20+this.anchorOffset, 2];
                break;
            case 'r':
                anchorPos = 'l';
                targetPos = 'tr';
                offset = [-2, 11+this.anchorOffset];
                break;
            case 'b':
                anchorPos = 't';
                targetPos = 'bl';
                offset = [20+this.anchorOffset, -2];
                break;
            default:
                anchorPos = 'r';
                targetPos = 'tl';
                offset = [2, 11+this.anchorOffset];
                break;
        }
        this.anchorEl.alignTo(this.el, anchorPos+'-'+targetPos, offset);
    },

    // private
    setPagePosition : function(x, y){
        Ext.ToolTip.superclass.setPagePosition.call(this, x, y);
        if(this.anchor){
            this.syncAnchor();
        }
    },

    // private
    clearTimer : function(name){
        name = name + 'Timer';
        clearTimeout(this[name]);
        delete this[name];
    },

    // private
    clearTimers : function(){
        this.clearTimer('show');
        this.clearTimer('dismiss');
        this.clearTimer('hide');
    },

    // private
    onShow : function(){
        Ext.ToolTip.superclass.onShow.call(this);
        Ext.getDoc().on('mousedown', this.onDocMouseDown, this);
    },

    // private
    onHide : function(){
        Ext.ToolTip.superclass.onHide.call(this);
        Ext.getDoc().un('mousedown', this.onDocMouseDown, this);
    },

    // private
    onDocMouseDown : function(e){
        if(this.autoHide !== true && !this.closable && !e.within(this.el.dom)){
            this.disable();
            this.doEnable.defer(100, this);
        }
    },
    
    // private
    doEnable : function(){
        if(!this.isDestroyed){
            this.enable();
        }
    },

    // private
    onDisable : function(){
        this.clearTimers();
        this.hide();
    },

    // private
    adjustPosition : function(x, y){
        if(this.constrainPosition){
            var ay = this.targetXY[1], h = this.getSize().height;
            if(y <= ay && (y+h) >= ay){
                y = ay-h-5;
            }
        }
        return {x : x, y: y};
    },
    
    beforeDestroy : function(){
        this.clearTimers();
        Ext.destroy(this.anchorEl);
        delete this.anchorEl;
        delete this.target;
        delete this.anchorTarget;
        delete this.triggerElement;
        Ext.ToolTip.superclass.beforeDestroy.call(this);    
    },

    // private
    onDestroy : function(){
        Ext.getDoc().un('mousedown', this.onDocMouseDown, this);
        Ext.ToolTip.superclass.onDestroy.call(this);
    }
});

Ext.reg('tooltip', Ext.ToolTip);/**
 * @class Ext.QuickTip
 * @extends Ext.ToolTip
 * @xtype quicktip
 * A specialized tooltip class for tooltips that can be specified in markup and automatically managed by the global
 * {@link Ext.QuickTips} instance.  See the QuickTips class header for additional usage details and examples.
 * @constructor
 * Create a new Tip
 * @param {Object} config The configuration options
 */
Ext.QuickTip = Ext.extend(Ext.ToolTip, {
    /**
     * @cfg {Mixed} target The target HTMLElement, Ext.Element or id to associate with this quicktip (defaults to the document).
     */
    /**
     * @cfg {Boolean} interceptTitles True to automatically use the element's DOM title value if available (defaults to false).
     */
    interceptTitles : false,

    // private
    tagConfig : {
        namespace : "ext",
        attribute : "qtip",
        width : "qwidth",
        target : "target",
        title : "qtitle",
        hide : "hide",
        cls : "qclass",
        align : "qalign",
        anchor : "anchor"
    },

    // private
    initComponent : function(){
        this.target = this.target || Ext.getDoc();
        this.targets = this.targets || {};
        Ext.QuickTip.superclass.initComponent.call(this);
    },

    /**
     * Configures a new quick tip instance and assigns it to a target element.  The following config values are
     * supported (for example usage, see the {@link Ext.QuickTips} class header):
     * 
      
     * 
    • autoHide
      • 
     * 
    • cls
      • 
     * 
    • dismissDelay (overrides the singleton value)
      • 
     * 
    • target (required)
      • 
     * 
    • text (required)
      • 
     * 
    • title
      • 
     * 
    • width
    
     * @param {Object} config The config object
     */
    register : function(config){
        var cs = Ext.isArray(config) ? config : arguments;
        for(var i = 0, len = cs.length; i < len; i++){
            var c = cs[i];
            var target = c.target;
            if(target){
                if(Ext.isArray(target)){
                    for(var j = 0, jlen = target.length; j < jlen; j++){
                        this.targets[Ext.id(target[j])] = c;
                    }
                } else{
                    this.targets[Ext.id(target)] = c;
                }
            }
        }
    },

    /**
     * Removes this quick tip from its element and destroys it.
     * @param {String/HTMLElement/Element} el The element from which the quick tip is to be removed.
     */
    unregister : function(el){
        delete this.targets[Ext.id(el)];
    },
    
    /**
     * Hides a visible tip or cancels an impending show for a particular element.
     * @param {String/HTMLElement/Element} el The element that is the target of the tip.
     */
    cancelShow: function(el){
        var at = this.activeTarget;
        el = Ext.get(el).dom;
        if(this.isVisible()){
            if(at && at.el == el){
                this.hide();
            }
        }else if(at && at.el == el){
            this.clearTimer('show');
        }
    },
    
    getTipCfg: function(e) {
        var t = e.getTarget(), 
            ttp, 
            cfg;
        if(this.interceptTitles && t.title && Ext.isString(t.title)){
            ttp = t.title;
            t.qtip = ttp;
            t.removeAttribute("title");
            e.preventDefault();
        }else{
            cfg = this.tagConfig;
            ttp = t.qtip || Ext.fly(t).getAttribute(cfg.attribute, cfg.namespace);
        }
        return ttp;
    },

    // private
    onTargetOver : function(e){
        if(this.disabled){
            return;
        }
        this.targetXY = e.getXY();
        var t = e.getTarget();
        if(!t || t.nodeType !== 1 || t == document || t == document.body){
            return;
        }
        if(this.activeTarget && ((t == this.activeTarget.el) || Ext.fly(this.activeTarget.el).contains(t))){
            this.clearTimer('hide');
            this.show();
            return;
        }
        if(t && this.targets[t.id]){
            this.activeTarget = this.targets[t.id];
            this.activeTarget.el = t;
            this.anchor = this.activeTarget.anchor;
            if(this.anchor){
                this.anchorTarget = t;
            }
            this.delayShow();
            return;
        }
        var ttp, et = Ext.fly(t), cfg = this.tagConfig, ns = cfg.namespace;
        if(ttp = this.getTipCfg(e)){
            var autoHide = et.getAttribute(cfg.hide, ns);
            this.activeTarget = {
                el: t,
                text: ttp,
                width: et.getAttribute(cfg.width, ns),
                autoHide: autoHide != "user" && autoHide !== 'false',
                title: et.getAttribute(cfg.title, ns),
                cls: et.getAttribute(cfg.cls, ns),
                align: et.getAttribute(cfg.align, ns)
                
            };
            this.anchor = et.getAttribute(cfg.anchor, ns);
            if(this.anchor){
                this.anchorTarget = t;
            }
            this.delayShow();
        }
    },

    // private
    onTargetOut : function(e){

        // If moving within the current target, and it does not have a new tip, ignore the mouseout
        if (this.activeTarget && e.within(this.activeTarget.el) && !this.getTipCfg(e)) {
            return;
        }

        this.clearTimer('show');
        if(this.autoHide !== false){
            this.delayHide();
        }
    },

    // inherit docs
    showAt : function(xy){
        var t = this.activeTarget;
        if(t){
            if(!this.rendered){
                this.render(Ext.getBody());
                this.activeTarget = t;
            }
            if(t.width){
                this.setWidth(t.width);
                this.body.setWidth(this.adjustBodyWidth(t.width - this.getFrameWidth()));
                this.measureWidth = false;
            } else{
                this.measureWidth = true;
            }
            this.setTitle(t.title || '');
            this.body.update(t.text);
            this.autoHide = t.autoHide;
            this.dismissDelay = t.dismissDelay || this.dismissDelay;
            if(this.lastCls){
                this.el.removeClass(this.lastCls);
                delete this.lastCls;
            }
            if(t.cls){
                this.el.addClass(t.cls);
                this.lastCls = t.cls;
            }
            if(this.anchor){
                this.constrainPosition = false;
            }else if(t.align){ // TODO: this doesn't seem to work consistently
                xy = this.el.getAlignToXY(t.el, t.align);
                this.constrainPosition = false;
            }else{
                this.constrainPosition = true;
            }
        }
        Ext.QuickTip.superclass.showAt.call(this, xy);
    },

    // inherit docs
    hide: function(){
        delete this.activeTarget;
        Ext.QuickTip.superclass.hide.call(this);
    }
});
Ext.reg('quicktip', Ext.QuickTip);/**
 * @class Ext.QuickTips
 * 
    Provides attractive and customizable tooltips for any element. The QuickTips
 * singleton is used to configure and manage tooltips globally for multiple elements
 * in a generic manner.  To create individual tooltips with maximum customizability,
 * you should consider either {@link Ext.Tip} or {@link Ext.ToolTip}.
    
 * 
    Quicktips can be configured via tag attributes directly in markup, or by
 * registering quick tips programmatically via the {@link #register} method.
    
 * 
    The singleton's instance of {@link Ext.QuickTip} is available via
 * {@link #getQuickTip}, and supports all the methods, and all the all the
 * configuration properties of Ext.QuickTip. These settings will apply to all
 * tooltips shown by the singleton.
    
 * 
    Below is the summary of the configuration properties which can be used.
 * For detailed descriptions see the config options for the {@link Ext.QuickTip QuickTip} class
    
 * 
    QuickTips singleton configs (all are optional)
    
 * 
    • dismissDelay
      • 
 * 
    • hideDelay
      • 
 * 
    • maxWidth
      • 
 * 
    • minWidth
      • 
 * 
    • showDelay
      • 
 * 
    • trackMouse
    
 * 
    Target element configs (optional unless otherwise noted)
    
 * 
    • autoHide
      • 
 * 
    • cls
      • 
 * 
    • dismissDelay (overrides singleton value)
      • 
 * 
    • target (required)
      • 
 * 
    • text (required)
      • 
 * 
    • title
      • 
 * 
    • width
    
 * 
    Here is an example showing how some of these config options could be used:
    
 * 
    
// Init the singleton.  Any tag-based quick tips will start working.
Ext.QuickTips.init();

// Apply a set of config properties to the singleton
Ext.apply(Ext.QuickTips.getQuickTip(), {
    maxWidth: 200,
    minWidth: 100,
    showDelay: 50,      // Show 50ms after entering target
    trackMouse: true
});

// Manually register a quick tip for a specific element
Ext.QuickTips.register({
    target: 'my-div',
    title: 'My Tooltip',
    text: 'This tooltip was added in code',
    width: 100,
    dismissDelay: 10000 // Hide after 10 seconds hover
});

    
 * 
    To register a quick tip in markup, you simply add one or more of the valid QuickTip attributes prefixed with
 * the ext: namespace.  The HTML element itself is automatically set as the quick tip target. Here is the summary
 * of supported attributes (optional unless otherwise noted):
    
 * 
    • hide: Specifying "user" is equivalent to setting autoHide = false.  Any other value will be the
 * same as autoHide = true.
      • 
 * 
    • qclass: A CSS class to be applied to the quick tip (equivalent to the 'cls' target element config).
      • 
 * 
    • qtip (required): The quick tip text (equivalent to the 'text' target element config).
      • 
 * 
    • qtitle: The quick tip title (equivalent to the 'title' target element config).
      • 
 * 
    • qwidth: The quick tip width (equivalent to the 'width' target element config).
    
 * 
    Here is an example of configuring an HTML element to display a tooltip from markup:
    
 * 
    
// Add a quick tip to an HTML button
<input type="button" value="OK" ext:qtitle="OK Button" ext:qwidth="100"
     ext:qtip="This is a quick tip from markup!"></input>

    
 * @singleton
 */
Ext.QuickTips = function(){
    var tip,
        disabled = false;
        
    return {
        /**
         * Initialize the global QuickTips instance and prepare any quick tips.
         * @param {Boolean} autoRender True to render the QuickTips container immediately to preload images. (Defaults to true) 
         */
        init : function(autoRender){
            if(!tip){
                if(!Ext.isReady){
                    Ext.onReady(function(){
                        Ext.QuickTips.init(autoRender);
                    });
                    return;
                }
                tip = new Ext.QuickTip({
                    elements:'header,body', 
                    disabled: disabled
                });
                if(autoRender !== false){
                    tip.render(Ext.getBody());
                }
            }
        },
        
        // Protected method called by the dd classes
        ddDisable : function(){
            // don't disable it if we don't need to
            if(tip && !disabled){
                tip.disable();
            }    
        },
        
        // Protected method called by the dd classes
        ddEnable : function(){
            // only enable it if it hasn't been disabled
            if(tip && !disabled){
                tip.enable();
            }
        },

        /**
         * Enable quick tips globally.
         */
        enable : function(){
            if(tip){
                tip.enable();
            }
            disabled = false;
        },

        /**
         * Disable quick tips globally.
         */
        disable : function(){
            if(tip){
                tip.disable();
            }
            disabled = true;
        },

        /**
         * Returns true if quick tips are enabled, else false.
         * @return {Boolean}
         */
        isEnabled : function(){
            return tip !== undefined && !tip.disabled;
        },

        /**
         * Gets the single {@link Ext.QuickTip QuickTip} instance used to show tips from all registered elements.
         * @return {Ext.QuickTip}
         */
        getQuickTip : function(){
            return tip;
        },

        /**
         * Configures a new quick tip instance and assigns it to a target element.  See
         * {@link Ext.QuickTip#register} for details.
         * @param {Object} config The config object
         */
        register : function(){
            tip.register.apply(tip, arguments);
        },

        /**
         * Removes any registered quick tip from the target element and destroys it.
         * @param {String/HTMLElement/Element} el The element from which the quick tip is to be removed.
         */
        unregister : function(){
            tip.unregister.apply(tip, arguments);
        },

        /**
         * Alias of {@link #register}.
         * @param {Object} config The config object
         */
        tips : function(){
            tip.register.apply(tip, arguments);
        }
    };
}();/**
 * @class Ext.slider.Tip
 * @extends Ext.Tip
 * Simple plugin for using an Ext.Tip with a slider to show the slider value. Example usage:

    new Ext.Slider({
    width: 214,
    minValue: 0,
    maxValue: 100,
    plugins: new Ext.slider.Tip()
});

    
 * Optionally provide your own tip text by overriding getText:
 
     new Ext.Slider({
     width: 214,
     minValue: 0,
     maxValue: 100,
     plugins: new Ext.slider.Tip({
         getText: function(thumb){
             return String.format('{0}% complete', thumb.value);
         }
     })
 });
 
    
 */
Ext.slider.Tip = Ext.extend(Ext.Tip, {
    minWidth: 10,
    offsets : [0, -10],
    
    init: function(slider) {
        slider.on({
            scope    : this,
            dragstart: this.onSlide,
            drag     : this.onSlide,
            dragend  : this.hide,
            destroy  : this.destroy
        });
    },
    
    /**
     * @private
     * Called whenever a dragstart or drag event is received on the associated Thumb. 
     * Aligns the Tip with the Thumb's new position.
     * @param {Ext.slider.MultiSlider} slider The slider
     * @param {Ext.EventObject} e The Event object
     * @param {Ext.slider.Thumb} thumb The thumb that the Tip is attached to
     */
    onSlide : function(slider, e, thumb) {
        this.show();
        this.body.update(this.getText(thumb));
        this.doAutoWidth();
        this.el.alignTo(thumb.el, 'b-t?', this.offsets);
    },

    /**
     * Used to create the text that appears in the Tip's body. By default this just returns
     * the value of the Slider Thumb that the Tip is attached to. Override to customize.
     * @param {Ext.slider.Thumb} thumb The Thumb that the Tip is attached to
     * @return {String} The text to display in the tip
     */
    getText : function(thumb) {
        return String(thumb.value);
    }
});

//backwards compatibility - SliderTip used to be a ux before 3.2
Ext.ux.SliderTip = Ext.slider.Tip;/**
 * @class Ext.tree.TreePanel
 * @extends Ext.Panel
 * 
    The TreePanel provides tree-structured UI representation of tree-structured data.
    
 * 
    {@link Ext.tree.TreeNode TreeNode}s added to the TreePanel may each contain metadata
 * used by your application in their {@link Ext.tree.TreeNode#attributes attributes} property.
    
 * 
    A TreePanel must have a {@link #root} node before it is rendered. This may either be
 * specified using the {@link #root} config option, or using the {@link #setRootNode} method.
 * 
    An example of tree rendered to an existing div:
    
var tree = new Ext.tree.TreePanel({
    renderTo: 'tree-div',
    useArrows: true,
    autoScroll: true,
    animate: true,
    enableDD: true,
    containerScroll: true,
    border: false,
    // auto create TreeLoader
    dataUrl: 'get-nodes.php',

    root: {
        nodeType: 'async',
        text: 'Ext JS',
        draggable: false,
        id: 'source'
    }
});

tree.getRootNode().expand();
 * 
    
 * 
    The example above would work with a data packet similar to this:
    
[{
    "text": "adapter",
    "id": "source\/adapter",
    "cls": "folder"
}, {
    "text": "dd",
    "id": "source\/dd",
    "cls": "folder"
}, {
    "text": "debug.js",
    "id": "source\/debug.js",
    "leaf": true,
    "cls": "file"
}]
 * 
    
 * 
    An example of tree within a Viewport:
    
new Ext.Viewport({
    layout: 'border',
    items: [{
        region: 'west',
        collapsible: true,
        title: 'Navigation',
        xtype: 'treepanel',
        width: 200,
        autoScroll: true,
        split: true,
        loader: new Ext.tree.TreeLoader(),
        root: new Ext.tree.AsyncTreeNode({
            expanded: true,
            children: [{
                text: 'Menu Option 1',
                leaf: true
            }, {
                text: 'Menu Option 2',
                leaf: true
            }, {
                text: 'Menu Option 3',
                leaf: true
            }]
        }),
        rootVisible: false,
        listeners: {
            click: function(n) {
                Ext.Msg.alert('Navigation Tree Click', 'You clicked: "' + n.attributes.text + '"');
            }
        }
    }, {
        region: 'center',
        xtype: 'tabpanel',
        // remaining code not shown ...
    }]
});

    
 *
 * @cfg {Ext.tree.TreeNode} root The root node for the tree.
 * @cfg {Boolean} rootVisible false to hide the root node (defaults to true)
 * @cfg {Boolean} lines false to disable tree lines (defaults to true)
 * @cfg {Boolean} enableDD true to enable drag and drop
 * @cfg {Boolean} enableDrag true to enable just drag
 * @cfg {Boolean} enableDrop true to enable just drop
 * @cfg {Object} dragConfig Custom config to pass to the {@link Ext.tree.TreeDragZone} instance
 * @cfg {Object} dropConfig Custom config to pass to the {@link Ext.tree.TreeDropZone} instance
 * @cfg {String} ddGroup The DD group this TreePanel belongs to
 * @cfg {Boolean} ddAppendOnly true if the tree should only allow append drops (use for trees which are sorted)
 * @cfg {Boolean} ddScroll true to enable body scrolling
 * @cfg {Boolean} containerScroll true to register this container with ScrollManager
 * @cfg {Boolean} hlDrop false to disable node highlight on drop (defaults to the value of {@link Ext#enableFx})
 * @cfg {String} hlColor The color of the node highlight (defaults to 'C3DAF9')
 * @cfg {Boolean} animate true to enable animated expand/collapse (defaults to the value of {@link Ext#enableFx})
 * @cfg {Boolean} singleExpand true if only 1 node per branch may be expanded
 * @cfg {Object} selModel A tree selection model to use with this TreePanel (defaults to an {@link Ext.tree.DefaultSelectionModel})
 * @cfg {Boolean} trackMouseOver false to disable mouse over highlighting
 * @cfg {Ext.tree.TreeLoader} loader A {@link Ext.tree.TreeLoader} for use with this TreePanel
 * @cfg {String} pathSeparator The token used to separate sub-paths in path strings (defaults to '/')
 * @cfg {Boolean} useArrows true to use Vista-style arrows in the tree (defaults to false)
 * @cfg {String} requestMethod The HTTP request method for loading data (defaults to the value of {@link Ext.Ajax#method}).
 *
 * @constructor
 * @param {Object} config
 * @xtype treepanel
 */
Ext.tree.TreePanel = Ext.extend(Ext.Panel, {
    rootVisible : true,
    animate : Ext.enableFx,
    lines : true,
    enableDD : false,
    hlDrop : Ext.enableFx,
    pathSeparator : '/',

    /**
     * @cfg {Array} bubbleEvents
     * 
    An array of events that, when fired, should be bubbled to any parent container.
     * See {@link Ext.util.Observable#enableBubble}.
     * Defaults to [].
     */
    bubbleEvents : [],

    initComponent : function(){
        Ext.tree.TreePanel.superclass.initComponent.call(this);

        if(!this.eventModel){
            this.eventModel = new Ext.tree.TreeEventModel(this);
        }

        // initialize the loader
        var l = this.loader;
        if(!l){
            l = new Ext.tree.TreeLoader({
                dataUrl: this.dataUrl,
                requestMethod: this.requestMethod
            });
        }else if(Ext.isObject(l) && !l.load){
            l = new Ext.tree.TreeLoader(l);
        }
        this.loader = l;

        this.nodeHash = {};

        /**
        * The root node of this tree.
        * @type Ext.tree.TreeNode
        * @property root
        */
        if(this.root){
            var r = this.root;
            delete this.root;
            this.setRootNode(r);
        }


        this.addEvents(

            /**
            * @event append
            * Fires when a new child node is appended to a node in this tree.
            * @param {Tree} tree The owner tree
            * @param {Node} parent The parent node
            * @param {Node} node The newly appended node
            * @param {Number} index The index of the newly appended node
            */
           'append',
           /**
            * @event remove
            * Fires when a child node is removed from a node in this tree.
            * @param {Tree} tree The owner tree
            * @param {Node} parent The parent node
            * @param {Node} node The child node removed
            */
           'remove',
           /**
            * @event movenode
            * Fires when a node is moved to a new location in the tree
            * @param {Tree} tree The owner tree
            * @param {Node} node The node moved
            * @param {Node} oldParent The old parent of this node
            * @param {Node} newParent The new parent of this node
            * @param {Number} index The index it was moved to
            */
           'movenode',
           /**
            * @event insert
            * Fires when a new child node is inserted in a node in this tree.
            * @param {Tree} tree The owner tree
            * @param {Node} parent The parent node
            * @param {Node} node The child node inserted
            * @param {Node} refNode The child node the node was inserted before
            */
           'insert',
           /**
            * @event beforeappend
            * Fires before a new child is appended to a node in this tree, return false to cancel the append.
            * @param {Tree} tree The owner tree
            * @param {Node} parent The parent node
            * @param {Node} node The child node to be appended
            */
           'beforeappend',
           /**
            * @event beforeremove
            * Fires before a child is removed from a node in this tree, return false to cancel the remove.
            * @param {Tree} tree The owner tree
            * @param {Node} parent The parent node
            * @param {Node} node The child node to be removed
            */
           'beforeremove',
           /**
            * @event beforemovenode
            * Fires before a node is moved to a new location in the tree. Return false to cancel the move.
            * @param {Tree} tree The owner tree
            * @param {Node} node The node being moved
            * @param {Node} oldParent The parent of the node
            * @param {Node} newParent The new parent the node is moving to
            * @param {Number} index The index it is being moved to
            */
           'beforemovenode',
           /**
            * @event beforeinsert
            * Fires before a new child is inserted in a node in this tree, return false to cancel the insert.
            * @param {Tree} tree The owner tree
            * @param {Node} parent The parent node
            * @param {Node} node The child node to be inserted
            * @param {Node} refNode The child node the node is being inserted before
            */
            'beforeinsert',

            /**
            * @event beforeload
            * Fires before a node is loaded, return false to cancel
            * @param {Node} node The node being loaded
            */
            'beforeload',
            /**
            * @event load
            * Fires when a node is loaded
            * @param {Node} node The node that was loaded
            */
            'load',
            /**
            * @event textchange
            * Fires when the text for a node is changed
            * @param {Node} node The node
            * @param {String} text The new text
            * @param {String} oldText The old text
            */
            'textchange',
            /**
            * @event beforeexpandnode
            * Fires before a node is expanded, return false to cancel.
            * @param {Node} node The node
            * @param {Boolean} deep
            * @param {Boolean} anim
            */
            'beforeexpandnode',
            /**
            * @event beforecollapsenode
            * Fires before a node is collapsed, return false to cancel.
            * @param {Node} node The node
            * @param {Boolean} deep
            * @param {Boolean} anim
            */
            'beforecollapsenode',
            /**
            * @event expandnode
            * Fires when a node is expanded
            * @param {Node} node The node
            */
            'expandnode',
            /**
            * @event disabledchange
            * Fires when the disabled status of a node changes
            * @param {Node} node The node
            * @param {Boolean} disabled
            */
            'disabledchange',
            /**
            * @event collapsenode
            * Fires when a node is collapsed
            * @param {Node} node The node
            */
            'collapsenode',
            /**
            * @event beforeclick
            * Fires before click processing on a node. Return false to cancel the default action.
            * @param {Node} node The node
            * @param {Ext.EventObject} e The event object
            */
            'beforeclick',
            /**
            * @event click
            * Fires when a node is clicked
            * @param {Node} node The node
            * @param {Ext.EventObject} e The event object
            */
            'click',
            /**
            * @event containerclick
            * Fires when the tree container is clicked
            * @param {Tree} this
            * @param {Ext.EventObject} e The event object
            */
            'containerclick',
            /**
            * @event checkchange
            * Fires when a node with a checkbox's checked property changes
            * @param {Node} this This node
            * @param {Boolean} checked
            */
            'checkchange',
            /**
            * @event beforedblclick
            * Fires before double click processing on a node. Return false to cancel the default action.
            * @param {Node} node The node
            * @param {Ext.EventObject} e The event object
            */
            'beforedblclick',
            /**
            * @event dblclick
            * Fires when a node is double clicked
            * @param {Node} node The node
            * @param {Ext.EventObject} e The event object
            */
            'dblclick',
            /**
            * @event containerdblclick
            * Fires when the tree container is double clicked
            * @param {Tree} this
            * @param {Ext.EventObject} e The event object
            */
            'containerdblclick',
            /**
            * @event contextmenu
            * Fires when a node is right clicked. To display a context menu in response to this
            * event, first create a Menu object (see {@link Ext.menu.Menu} for details), then add
            * a handler for this event:
    
new Ext.tree.TreePanel({
    title: 'My TreePanel',
    root: new Ext.tree.AsyncTreeNode({
        text: 'The Root',
        children: [
            { text: 'Child node 1', leaf: true },
            { text: 'Child node 2', leaf: true }
        ]
    }),
    contextMenu: new Ext.menu.Menu({
        items: [{
            id: 'delete-node',
            text: 'Delete Node'
        }],
        listeners: {
            itemclick: function(item) {
                switch (item.id) {
                    case 'delete-node':
                        var n = item.parentMenu.contextNode;
                        if (n.parentNode) {
                            n.remove();
                        }
                        break;
                }
            }
        }
    }),
    listeners: {
        contextmenu: function(node, e) {
//          Register the context node with the menu so that a Menu Item's handler function can access
//          it via its {@link Ext.menu.BaseItem#parentMenu parentMenu} property.
            node.select();
            var c = node.getOwnerTree().contextMenu;
            c.contextNode = node;
            c.showAt(e.getXY());
        }
    }
});

    
            * @param {Node} node The node
            * @param {Ext.EventObject} e The event object
            */
            'contextmenu',
            /**
            * @event containercontextmenu
            * Fires when the tree container is right clicked
            * @param {Tree} this
            * @param {Ext.EventObject} e The event object
            */
            'containercontextmenu',
            /**
            * @event beforechildrenrendered
            * Fires right before the child nodes for a node are rendered
            * @param {Node} node The node
            */
            'beforechildrenrendered',
           /**
             * @event startdrag
             * Fires when a node starts being dragged
             * @param {Ext.tree.TreePanel} this
             * @param {Ext.tree.TreeNode} node
             * @param {event} e The raw browser event
             */
            'startdrag',
            /**
             * @event enddrag
             * Fires when a drag operation is complete
             * @param {Ext.tree.TreePanel} this
             * @param {Ext.tree.TreeNode} node
             * @param {event} e The raw browser event
             */
            'enddrag',
            /**
             * @event dragdrop
             * Fires when a dragged node is dropped on a valid DD target
             * @param {Ext.tree.TreePanel} this
             * @param {Ext.tree.TreeNode} node
             * @param {DD} dd The dd it was dropped on
             * @param {event} e The raw browser event
             */
            'dragdrop',
            /**
             * @event beforenodedrop
             * Fires when a DD object is dropped on a node in this tree for preprocessing. Return false to cancel the drop. The dropEvent
             * passed to handlers has the following properties:
    
             * 
      
             * 
    • tree - The TreePanel
      • 
             * 
    • target - The node being targeted for the drop
      • 
             * 
    • data - The drag data from the drag source
      • 
             * 
    • point - The point of the drop - append, above or below
      • 
             * 
    • source - The drag source
      • 
             * 
    • rawEvent - Raw mouse event
      • 
             * 
    • dropNode - Drop node(s) provided by the source OR you can supply node(s)
             * to be inserted by setting them on this object.
      • 
             * 
    • cancel - Set this to true to cancel the drop.
      • 
             * 
    • dropStatus - If the default drop action is cancelled but the drop is valid, setting this to true
             * will prevent the animated 'repair' from appearing.
      • 
             * 
    
             * @param {Object} dropEvent
             */
            'beforenodedrop',
            /**
             * @event nodedrop
             * Fires after a DD object is dropped on a node in this tree. The dropEvent
             * passed to handlers has the following properties:
    
             * 
      
             * 
    • tree - The TreePanel
      • 
             * 
    • target - The node being targeted for the drop
      • 
             * 
    • data - The drag data from the drag source
      • 
             * 
    • point - The point of the drop - append, above or below
      • 
             * 
    • source - The drag source
      • 
             * 
    • rawEvent - Raw mouse event
      • 
             * 
    • dropNode - Dropped node(s).
      • 
             * 
    
             * @param {Object} dropEvent
             */
            'nodedrop',
             /**
             * @event nodedragover
             * Fires when a tree node is being targeted for a drag drop, return false to signal drop not allowed. The dragOverEvent
             * passed to handlers has the following properties:
    
             * 
      
             * 
    • tree - The TreePanel
      • 
             * 
    • target - The node being targeted for the drop
      • 
             * 
    • data - The drag data from the drag source
      • 
             * 
    • point - The point of the drop - append, above or below
      • 
             * 
    • source - The drag source
      • 
             * 
    • rawEvent - Raw mouse event
      • 
             * 
    • dropNode - Drop node(s) provided by the source.
      • 
             * 
    • cancel - Set this to true to signal drop not allowed.
      • 
             * 
    
             * @param {Object} dragOverEvent
             */
            'nodedragover'
        );
        if(this.singleExpand){
            this.on('beforeexpandnode', this.restrictExpand, this);
        }
    },

    // private
    proxyNodeEvent : function(ename, a1, a2, a3, a4, a5, a6){
        if(ename == 'collapse' || ename == 'expand' || ename == 'beforecollapse' || ename == 'beforeexpand' || ename == 'move' || ename == 'beforemove'){
            ename = ename+'node';
        }
        // args inline for performance while bubbling events
        return this.fireEvent(ename, a1, a2, a3, a4, a5, a6);
    },


    /**
     * Returns this root node for this tree
     * @return {Node}
     */
    getRootNode : function(){
        return this.root;
    },

    /**
     * Sets the root node for this tree. If the TreePanel has already rendered a root node, the
     * previous root node (and all of its descendants) are destroyed before the new root node is rendered.
     * @param {Node} node
     * @return {Node}
     */
    setRootNode : function(node){
        this.destroyRoot();
        if(!node.render){ // attributes passed
            node = this.loader.createNode(node);
        }
        this.root = node;
        node.ownerTree = this;
        node.isRoot = true;
        this.registerNode(node);
        if(!this.rootVisible){
            var uiP = node.attributes.uiProvider;
            node.ui = uiP ? new uiP(node) : new Ext.tree.RootTreeNodeUI(node);
        }
        if(this.innerCt){
            this.clearInnerCt();
            this.renderRoot();
        }
        return node;
    },
    
    clearInnerCt : function(){
        this.innerCt.update('');    
    },
    
    // private
    renderRoot : function(){
        this.root.render();
        if(!this.rootVisible){
            this.root.renderChildren();
        }
    },

    /**
     * Gets a node in this tree by its id
     * @param {String} id
     * @return {Node}
     */
    getNodeById : function(id){
        return this.nodeHash[id];
    },

    // private
    registerNode : function(node){
        this.nodeHash[node.id] = node;
    },

    // private
    unregisterNode : function(node){
        delete this.nodeHash[node.id];
    },

    // private
    toString : function(){
        return '[Tree'+(this.id?' '+this.id:'')+']';
    },

    // private
    restrictExpand : function(node){
        var p = node.parentNode;
        if(p){
            if(p.expandedChild && p.expandedChild.parentNode == p){
                p.expandedChild.collapse();
            }
            p.expandedChild = node;
        }
    },

    /**
     * Retrieve an array of checked nodes, or an array of a specific attribute of checked nodes (e.g. 'id')
     * @param {String} attribute (optional) Defaults to null (return the actual nodes)
     * @param {TreeNode} startNode (optional) The node to start from, defaults to the root
     * @return {Array}
     */
    getChecked : function(a, startNode){
        startNode = startNode || this.root;
        var r = [];
        var f = function(){
            if(this.attributes.checked){
                r.push(!a ? this : (a == 'id' ? this.id : this.attributes[a]));
            }
        };
        startNode.cascade(f);
        return r;
    },

    /**
     * Returns the default {@link Ext.tree.TreeLoader} for this TreePanel.
     * @return {Ext.tree.TreeLoader} The TreeLoader for this TreePanel.
     */
    getLoader : function(){
        return this.loader;
    },

    /**
     * Expand all nodes
     */
    expandAll : function(){
        this.root.expand(true);
    },

    /**
     * Collapse all nodes
     */
    collapseAll : function(){
        this.root.collapse(true);
    },

    /**
     * Returns the selection model used by this TreePanel.
     * @return {TreeSelectionModel} The selection model used by this TreePanel
     */
    getSelectionModel : function(){
        if(!this.selModel){
            this.selModel = new Ext.tree.DefaultSelectionModel();
        }
        return this.selModel;
    },

    /**
     * Expands a specified path in this TreePanel. A path can be retrieved from a node with {@link Ext.data.Node#getPath}
     * @param {String} path
     * @param {String} attr (optional) The attribute used in the path (see {@link Ext.data.Node#getPath} for more info)
     * @param {Function} callback (optional) The callback to call when the expand is complete. The callback will be called with
     * (bSuccess, oLastNode) where bSuccess is if the expand was successful and oLastNode is the last node that was expanded.
     */
    expandPath : function(path, attr, callback){
        if(Ext.isEmpty(path)){
            if(callback){
                callback(false, undefined);
            }
            return;
        }
        attr = attr || 'id';
        var keys = path.split(this.pathSeparator);
        var curNode = this.root;
        if(curNode.attributes[attr] != keys[1]){ // invalid root
            if(callback){
                callback(false, null);
            }
            return;
        }
        var index = 1;
        var f = function(){
            if(++index == keys.length){
                if(callback){
                    callback(true, curNode);
                }
                return;
            }
            var c = curNode.findChild(attr, keys[index]);
            if(!c){
                if(callback){
                    callback(false, curNode);
                }
                return;
            }
            curNode = c;
            c.expand(false, false, f);
        };
        curNode.expand(false, false, f);
    },

    /**
     * Selects the node in this tree at the specified path. A path can be retrieved from a node with {@link Ext.data.Node#getPath}
     * @param {String} path
     * @param {String} attr (optional) The attribute used in the path (see {@link Ext.data.Node#getPath} for more info)
     * @param {Function} callback (optional) The callback to call when the selection is complete. The callback will be called with
     * (bSuccess, oSelNode) where bSuccess is if the selection was successful and oSelNode is the selected node.
     */
    selectPath : function(path, attr, callback){
        if(Ext.isEmpty(path)){
            if(callback){
                callback(false, undefined);
            }
            return;
        }
        attr = attr || 'id';
        var keys = path.split(this.pathSeparator),
            v = keys.pop();
        if(keys.length > 1){
            var f = function(success, node){
                if(success && node){
                    var n = node.findChild(attr, v);
                    if(n){
                        n.select();
                        if(callback){
                            callback(true, n);
                        }
                    }else if(callback){
                        callback(false, n);
                    }
                }else{
                    if(callback){
                        callback(false, n);
                    }
                }
            };
            this.expandPath(keys.join(this.pathSeparator), attr, f);
        }else{
            this.root.select();
            if(callback){
                callback(true, this.root);
            }
        }
    },

    /**
     * Returns the underlying Element for this tree
     * @return {Ext.Element} The Element
     */
    getTreeEl : function(){
        return this.body;
    },

    // private
    onRender : function(ct, position){
        Ext.tree.TreePanel.superclass.onRender.call(this, ct, position);
        this.el.addClass('x-tree');
        this.innerCt = this.body.createChild({tag:'ul',
               cls:'x-tree-root-ct ' +
               (this.useArrows ? 'x-tree-arrows' : this.lines ? 'x-tree-lines' : 'x-tree-no-lines')});
    },

    // private
    initEvents : function(){
        Ext.tree.TreePanel.superclass.initEvents.call(this);

        if(this.containerScroll){
            Ext.dd.ScrollManager.register(this.body);
        }
        if((this.enableDD || this.enableDrop) && !this.dropZone){
           /**
            * The dropZone used by this tree if drop is enabled (see {@link #enableDD} or {@link #enableDrop})
            * @property dropZone
            * @type Ext.tree.TreeDropZone
            */
             this.dropZone = new Ext.tree.TreeDropZone(this, this.dropConfig || {
               ddGroup: this.ddGroup || 'TreeDD', appendOnly: this.ddAppendOnly === true
           });
        }
        if((this.enableDD || this.enableDrag) && !this.dragZone){
           /**
            * The dragZone used by this tree if drag is enabled (see {@link #enableDD} or {@link #enableDrag})
            * @property dragZone
            * @type Ext.tree.TreeDragZone
            */
            this.dragZone = new Ext.tree.TreeDragZone(this, this.dragConfig || {
               ddGroup: this.ddGroup || 'TreeDD',
               scroll: this.ddScroll
           });
        }
        this.getSelectionModel().init(this);
    },

    // private
    afterRender : function(){
        Ext.tree.TreePanel.superclass.afterRender.call(this);
        this.renderRoot();
    },

    beforeDestroy : function(){
        if(this.rendered){
            Ext.dd.ScrollManager.unregister(this.body);
            Ext.destroy(this.dropZone, this.dragZone);
        }
        this.destroyRoot();
        Ext.destroy(this.loader);
        this.nodeHash = this.root = this.loader = null;
        Ext.tree.TreePanel.superclass.beforeDestroy.call(this);
    },
    
    /**
     * Destroy the root node. Not included by itself because we need to pass the silent parameter.
     * @private
     */
    destroyRoot : function(){
        if(this.root && this.root.destroy){
            this.root.destroy(true);
        }
    }

    /**
     * @cfg {String/Number} activeItem
     * @hide
     */
    /**
     * @cfg {Boolean} autoDestroy
     * @hide
     */
    /**
     * @cfg {Object/String/Function} autoLoad
     * @hide
     */
    /**
     * @cfg {Boolean} autoWidth
     * @hide
     */
    /**
     * @cfg {Boolean/Number} bufferResize
     * @hide
     */
    /**
     * @cfg {String} defaultType
     * @hide
     */
    /**
     * @cfg {Object} defaults
     * @hide
     */
    /**
     * @cfg {Boolean} hideBorders
     * @hide
     */
    /**
     * @cfg {Mixed} items
     * @hide
     */
    /**
     * @cfg {String} layout
     * @hide
     */
    /**
     * @cfg {Object} layoutConfig
     * @hide
     */
    /**
     * @cfg {Boolean} monitorResize
     * @hide
     */
    /**
     * @property items
     * @hide
     */
    /**
     * @method cascade
     * @hide
     */
    /**
     * @method doLayout
     * @hide
     */
    /**
     * @method find
     * @hide
     */
    /**
     * @method findBy
     * @hide
     */
    /**
     * @method findById
     * @hide
     */
    /**
     * @method findByType
     * @hide
     */
    /**
     * @method getComponent
     * @hide
     */
    /**
     * @method getLayout
     * @hide
     */
    /**
     * @method getUpdater
     * @hide
     */
    /**
     * @method insert
     * @hide
     */
    /**
     * @method load
     * @hide
     */
    /**
     * @method remove
     * @hide
     */
    /**
     * @event add
     * @hide
     */
    /**
     * @method removeAll
     * @hide
     */
    /**
     * @event afterLayout
     * @hide
     */
    /**
     * @event beforeadd
     * @hide
     */



    /**
     * @cfg {String} allowDomMove  @hide
     */
    /**
     * @cfg {String} autoEl @hide
     */
    /**
     * @cfg {String} applyTo  @hide
     */
    /**
     * @cfg {String} contentEl  @hide
     */
    /**
     * @cfg {Mixed} data  @hide
     */
    /**
     * @cfg {Mixed} tpl  @hide
     */
    /**
     * @cfg {String} tplWriteMode  @hide
     */
    /**
     * @cfg {String} disabledClass  @hide
     */
    /**
     * @cfg {String} elements  @hide
     */
    /**
     * @cfg {String} html  @hide
     */
    /**
     * @cfg {Boolean} preventBodyReset
     * @hide
     */
    /**
     * @property disabled
     * @hide
     */
    /**
     * @method applyToMarkup
     * @hide
     */
    /**
     * @method enable
     * @hide
     */
    /**
     * @method disable
     * @hide
     */
    /**
     * @method setDisabled
     * @hide
     */
});

Ext.tree.TreePanel.nodeTypes = {};

Ext.reg('treepanel', Ext.tree.TreePanel);Ext.tree.TreeEventModel = function(tree){
    this.tree = tree;
    this.tree.on('render', this.initEvents, this);
};

Ext.tree.TreeEventModel.prototype = {
    initEvents : function(){
        var t = this.tree;

        if(t.trackMouseOver !== false){
            t.mon(t.innerCt, {
                scope: this,
                mouseover: this.delegateOver,
                mouseout: this.delegateOut
            });
        }
        t.mon(t.getTreeEl(), {
            scope: this,
            click: this.delegateClick,
            dblclick: this.delegateDblClick,
            contextmenu: this.delegateContextMenu
        });
    },

    getNode : function(e){
        var t;
        if(t = e.getTarget('.x-tree-node-el', 10)){
            var id = Ext.fly(t, '_treeEvents').getAttribute('tree-node-id', 'ext');
            if(id){
                return this.tree.getNodeById(id);
            }
        }
        return null;
    },

    getNodeTarget : function(e){
        var t = e.getTarget('.x-tree-node-icon', 1);
        if(!t){
            t = e.getTarget('.x-tree-node-el', 6);
        }
        return t;
    },

    delegateOut : function(e, t){
        if(!this.beforeEvent(e)){
            return;
        }
        if(e.getTarget('.x-tree-ec-icon', 1)){
            var n = this.getNode(e);
            this.onIconOut(e, n);
            if(n == this.lastEcOver){
                delete this.lastEcOver;
            }
        }
        if((t = this.getNodeTarget(e)) && !e.within(t, true)){
            this.onNodeOut(e, this.getNode(e));
        }
    },

    delegateOver : function(e, t){
        if(!this.beforeEvent(e)){
            return;
        }
        if(Ext.isGecko && !this.trackingDoc){ // prevent hanging in FF
            Ext.getBody().on('mouseover', this.trackExit, this);
            this.trackingDoc = true;
        }
        if(this.lastEcOver){ // prevent hung highlight
            this.onIconOut(e, this.lastEcOver);
            delete this.lastEcOver;
        }
        if(e.getTarget('.x-tree-ec-icon', 1)){
            this.lastEcOver = this.getNode(e);
            this.onIconOver(e, this.lastEcOver);
        }
        if(t = this.getNodeTarget(e)){
            this.onNodeOver(e, this.getNode(e));
        }
    },

    trackExit : function(e){
        if(this.lastOverNode){
            if(this.lastOverNode.ui && !e.within(this.lastOverNode.ui.getEl())){
                this.onNodeOut(e, this.lastOverNode);
            }
            delete this.lastOverNode;
            Ext.getBody().un('mouseover', this.trackExit, this);
            this.trackingDoc = false;
        }

    },

    delegateClick : function(e, t){
        if(this.beforeEvent(e)){
            if(e.getTarget('input[type=checkbox]', 1)){
                this.onCheckboxClick(e, this.getNode(e));
            }else if(e.getTarget('.x-tree-ec-icon', 1)){
                this.onIconClick(e, this.getNode(e));
            }else if(this.getNodeTarget(e)){
                this.onNodeClick(e, this.getNode(e));
            }
        }else{
            this.checkContainerEvent(e, 'click');
        }
    },

    delegateDblClick : function(e, t){
        if(this.beforeEvent(e)){
            if(this.getNodeTarget(e)){
                this.onNodeDblClick(e, this.getNode(e));
            }
        }else{
            this.checkContainerEvent(e, 'dblclick');
        }
    },

    delegateContextMenu : function(e, t){
        if(this.beforeEvent(e)){
            if(this.getNodeTarget(e)){
                this.onNodeContextMenu(e, this.getNode(e));
            }
        }else{
            this.checkContainerEvent(e, 'contextmenu');
        }
    },
    
    checkContainerEvent: function(e, type){
        if(this.disabled){
            e.stopEvent();
            return false;
        }
        this.onContainerEvent(e, type);    
    },

    onContainerEvent: function(e, type){
        this.tree.fireEvent('container' + type, this.tree, e);
    },

    onNodeClick : function(e, node){
        node.ui.onClick(e);
    },

    onNodeOver : function(e, node){
        this.lastOverNode = node;
        node.ui.onOver(e);
    },

    onNodeOut : function(e, node){
        node.ui.onOut(e);
    },

    onIconOver : function(e, node){
        node.ui.addClass('x-tree-ec-over');
    },

    onIconOut : function(e, node){
        node.ui.removeClass('x-tree-ec-over');
    },

    onIconClick : function(e, node){
        node.ui.ecClick(e);
    },

    onCheckboxClick : function(e, node){
        node.ui.onCheckChange(e);
    },

    onNodeDblClick : function(e, node){
        node.ui.onDblClick(e);
    },

    onNodeContextMenu : function(e, node){
        node.ui.onContextMenu(e);
    },

    beforeEvent : function(e){
        var node = this.getNode(e);
        if(this.disabled || !node || !node.ui){
            e.stopEvent();
            return false;
        }
        return true;
    },

    disable: function(){
        this.disabled = true;
    },

    enable: function(){
        this.disabled = false;
    }
};/**
 * @class Ext.tree.DefaultSelectionModel
 * @extends Ext.util.Observable
 * The default single selection for a TreePanel.
 */
Ext.tree.DefaultSelectionModel = Ext.extend(Ext.util.Observable, {
    
    constructor : function(config){
        this.selNode = null;
   
        this.addEvents(
            /**
             * @event selectionchange
             * Fires when the selected node changes
             * @param {DefaultSelectionModel} this
             * @param {TreeNode} node the new selection
             */
            'selectionchange',

            /**
             * @event beforeselect
             * Fires before the selected node changes, return false to cancel the change
             * @param {DefaultSelectionModel} this
             * @param {TreeNode} newNode the new selection
             * @param {TreeNode} oldNode the old selection
             */
            'beforeselect'
        );

        Ext.apply(this, config);
        Ext.tree.DefaultSelectionModel.superclass.constructor.call(this);    
    },
    
    init : function(tree){
        this.tree = tree;
        tree.mon(tree.getTreeEl(), 'keydown', this.onKeyDown, this);
        tree.on('click', this.onNodeClick, this);
    },
    
    onNodeClick : function(node, e){
        this.select(node);
    },
    
    /**
     * Select a node.
     * @param {TreeNode} node The node to select
     * @return {TreeNode} The selected node
     */
    select : function(node, /* private*/ selectNextNode){
        // If node is hidden, select the next node in whatever direction was being moved in.
        if (!Ext.fly(node.ui.wrap).isVisible() && selectNextNode) {
            return selectNextNode.call(this, node);
        }
        var last = this.selNode;
        if(node == last){
            node.ui.onSelectedChange(true);
        }else if(this.fireEvent('beforeselect', this, node, last) !== false){
            if(last && last.ui){
                last.ui.onSelectedChange(false);
            }
            this.selNode = node;
            node.ui.onSelectedChange(true);
            this.fireEvent('selectionchange', this, node, last);
        }
        return node;
    },
    
    /**
     * Deselect a node.
     * @param {TreeNode} node The node to unselect
     * @param {Boolean} silent True to stop the selectionchange event from firing.
     */
    unselect : function(node, silent){
        if(this.selNode == node){
            this.clearSelections(silent);
        }    
    },
    
    /**
     * Clear all selections
     * @param {Boolean} silent True to stop the selectionchange event from firing.
     */
    clearSelections : function(silent){
        var n = this.selNode;
        if(n){
            n.ui.onSelectedChange(false);
            this.selNode = null;
            if(silent !== true){
                this.fireEvent('selectionchange', this, null);
            }
        }
        return n;
    },
    
    /**
     * Get the selected node
     * @return {TreeNode} The selected node
     */
    getSelectedNode : function(){
        return this.selNode;    
    },
    
    /**
     * Returns true if the node is selected
     * @param {TreeNode} node The node to check
     * @return {Boolean}
     */
    isSelected : function(node){
        return this.selNode == node;  
    },

    /**
     * Selects the node above the selected node in the tree, intelligently walking the nodes
     * @return TreeNode The new selection
     */
    selectPrevious : function(/* private */ s){
        if(!(s = s || this.selNode || this.lastSelNode)){
            return null;
        }
        // Here we pass in the current function to select to indicate the direction we're moving
        var ps = s.previousSibling;
        if(ps){
            if(!ps.isExpanded() || ps.childNodes.length < 1){
                return this.select(ps, this.selectPrevious);
            } else{
                var lc = ps.lastChild;
                while(lc && lc.isExpanded() && Ext.fly(lc.ui.wrap).isVisible() && lc.childNodes.length > 0){
                    lc = lc.lastChild;
                }
                return this.select(lc, this.selectPrevious);
            }
        } else if(s.parentNode && (this.tree.rootVisible || !s.parentNode.isRoot)){
            return this.select(s.parentNode, this.selectPrevious);
        }
        return null;
    },

    /**
     * Selects the node above the selected node in the tree, intelligently walking the nodes
     * @return TreeNode The new selection
     */
    selectNext : function(/* private */ s){
        if(!(s = s || this.selNode || this.lastSelNode)){
            return null;
        }
        // Here we pass in the current function to select to indicate the direction we're moving
        if(s.firstChild && s.isExpanded() && Ext.fly(s.ui.wrap).isVisible()){
             return this.select(s.firstChild, this.selectNext);
         }else if(s.nextSibling){
             return this.select(s.nextSibling, this.selectNext);
         }else if(s.parentNode){
            var newS = null;
            s.parentNode.bubble(function(){
                if(this.nextSibling){
                    newS = this.getOwnerTree().selModel.select(this.nextSibling, this.selectNext);
                    return false;
                }
            });
            return newS;
         }
        return null;
    },

    onKeyDown : function(e){
        var s = this.selNode || this.lastSelNode;
        // undesirable, but required
        var sm = this;
        if(!s){
            return;
        }
        var k = e.getKey();
        switch(k){
             case e.DOWN:
                 e.stopEvent();
                 this.selectNext();
             break;
             case e.UP:
                 e.stopEvent();
                 this.selectPrevious();
             break;
             case e.RIGHT:
                 e.preventDefault();
                 if(s.hasChildNodes()){
                     if(!s.isExpanded()){
                         s.expand();
                     }else if(s.firstChild){
                         this.select(s.firstChild, e);
                     }
                 }
             break;
             case e.LEFT:
                 e.preventDefault();
                 if(s.hasChildNodes() && s.isExpanded()){
                     s.collapse();
                 }else if(s.parentNode && (this.tree.rootVisible || s.parentNode != this.tree.getRootNode())){
                     this.select(s.parentNode, e);
                 }
             break;
        };
    }
});

/**
 * @class Ext.tree.MultiSelectionModel
 * @extends Ext.util.Observable
 * Multi selection for a TreePanel.
 */
Ext.tree.MultiSelectionModel = Ext.extend(Ext.util.Observable, {
    
    constructor : function(config){
        this.selNodes = [];
        this.selMap = {};
        this.addEvents(
            /**
             * @event selectionchange
             * Fires when the selected nodes change
             * @param {MultiSelectionModel} this
             * @param {Array} nodes Array of the selected nodes
             */
            'selectionchange'
        );
        Ext.apply(this, config);
        Ext.tree.MultiSelectionModel.superclass.constructor.call(this);    
    },
    
    init : function(tree){
        this.tree = tree;
        tree.mon(tree.getTreeEl(), 'keydown', this.onKeyDown, this);
        tree.on('click', this.onNodeClick, this);
    },
    
    onNodeClick : function(node, e){
        if(e.ctrlKey && this.isSelected(node)){
            this.unselect(node);
        }else{
            this.select(node, e, e.ctrlKey);
        }
    },
    
    /**
     * Select a node.
     * @param {TreeNode} node The node to select
     * @param {EventObject} e (optional) An event associated with the selection
     * @param {Boolean} keepExisting (optional) True to retain existing selections
     * @return {TreeNode} The selected node
     */
    select : function(node, e, keepExisting){
        if(keepExisting !== true){
            this.clearSelections(true);
        }
        if(this.isSelected(node)){
            this.lastSelNode = node;
            return node;
        }
        this.selNodes.push(node);
        this.selMap[node.id] = node;
        this.lastSelNode = node;
        node.ui.onSelectedChange(true);
        this.fireEvent('selectionchange', this, this.selNodes);
        return node;
    },
    
    /**
     * Deselect a node.
     * @param {TreeNode} node The node to unselect
     */
    unselect : function(node){
        if(this.selMap[node.id]){
            node.ui.onSelectedChange(false);
            var sn = this.selNodes;
            var index = sn.indexOf(node);
            if(index != -1){
                this.selNodes.splice(index, 1);
            }
            delete this.selMap[node.id];
            this.fireEvent('selectionchange', this, this.selNodes);
        }
    },
    
    /**
     * Clear all selections
     */
    clearSelections : function(suppressEvent){
        var sn = this.selNodes;
        if(sn.length > 0){
            for(var i = 0, len = sn.length; i < len; i++){
                sn[i].ui.onSelectedChange(false);
            }
            this.selNodes = [];
            this.selMap = {};
            if(suppressEvent !== true){
                this.fireEvent('selectionchange', this, this.selNodes);
            }
        }
    },
    
    /**
     * Returns true if the node is selected
     * @param {TreeNode} node The node to check
     * @return {Boolean}
     */
    isSelected : function(node){
        return this.selMap[node.id] ? true : false;  
    },
    
    /**
     * Returns an array of the selected nodes
     * @return {Array}
     */
    getSelectedNodes : function(){
        return this.selNodes.concat([]);
    },

    onKeyDown : Ext.tree.DefaultSelectionModel.prototype.onKeyDown,

    selectNext : Ext.tree.DefaultSelectionModel.prototype.selectNext,

    selectPrevious : Ext.tree.DefaultSelectionModel.prototype.selectPrevious
});/**
 * @class Ext.data.Tree
 * @extends Ext.util.Observable
 * Represents a tree data structure and bubbles all the events for its nodes. The nodes
 * in the tree have most standard DOM functionality.
 * @constructor
 * @param {Node} root (optional) The root node
 */
Ext.data.Tree = Ext.extend(Ext.util.Observable, {
    
    constructor: function(root){
        this.nodeHash = {};
        /**
         * The root node for this tree
         * @type Node
         */
        this.root = null;
        if(root){
            this.setRootNode(root);
        }
        this.addEvents(
            /**
             * @event append
             * Fires when a new child node is appended to a node in this tree.
             * @param {Tree} tree The owner tree
             * @param {Node} parent The parent node
             * @param {Node} node The newly appended node
             * @param {Number} index The index of the newly appended node
             */
            "append",
            /**
             * @event remove
             * Fires when a child node is removed from a node in this tree.
             * @param {Tree} tree The owner tree
             * @param {Node} parent The parent node
             * @param {Node} node The child node removed
             */
            "remove",
            /**
             * @event move
             * Fires when a node is moved to a new location in the tree
             * @param {Tree} tree The owner tree
             * @param {Node} node The node moved
             * @param {Node} oldParent The old parent of this node
             * @param {Node} newParent The new parent of this node
             * @param {Number} index The index it was moved to
             */
            "move",
            /**
             * @event insert
             * Fires when a new child node is inserted in a node in this tree.
             * @param {Tree} tree The owner tree
             * @param {Node} parent The parent node
             * @param {Node} node The child node inserted
             * @param {Node} refNode The child node the node was inserted before
             */
            "insert",
            /**
             * @event beforeappend
             * Fires before a new child is appended to a node in this tree, return false to cancel the append.
             * @param {Tree} tree The owner tree
             * @param {Node} parent The parent node
             * @param {Node} node The child node to be appended
             */
            "beforeappend",
            /**
             * @event beforeremove
             * Fires before a child is removed from a node in this tree, return false to cancel the remove.
             * @param {Tree} tree The owner tree
             * @param {Node} parent The parent node
             * @param {Node} node The child node to be removed
             */
            "beforeremove",
            /**
             * @event beforemove
             * Fires before a node is moved to a new location in the tree. Return false to cancel the move.
             * @param {Tree} tree The owner tree
             * @param {Node} node The node being moved
             * @param {Node} oldParent The parent of the node
             * @param {Node} newParent The new parent the node is moving to
             * @param {Number} index The index it is being moved to
             */
            "beforemove",
            /**
             * @event beforeinsert
             * Fires before a new child is inserted in a node in this tree, return false to cancel the insert.
             * @param {Tree} tree The owner tree
             * @param {Node} parent The parent node
             * @param {Node} node The child node to be inserted
             * @param {Node} refNode The child node the node is being inserted before
             */
            "beforeinsert"
        );
        Ext.data.Tree.superclass.constructor.call(this);        
    },
    
    /**
     * @cfg {String} pathSeparator
     * The token used to separate paths in node ids (defaults to '/').
     */
    pathSeparator: "/",

    // private
    proxyNodeEvent : function(){
        return this.fireEvent.apply(this, arguments);
    },

    /**
     * Returns the root node for this tree.
     * @return {Node}
     */
    getRootNode : function(){
        return this.root;
    },

    /**
     * Sets the root node for this tree.
     * @param {Node} node
     * @return {Node}
     */
    setRootNode : function(node){
        this.root = node;
        node.ownerTree = this;
        node.isRoot = true;
        this.registerNode(node);
        return node;
    },

    /**
     * Gets a node in this tree by its id.
     * @param {String} id
     * @return {Node}
     */
    getNodeById : function(id){
        return this.nodeHash[id];
    },

    // private
    registerNode : function(node){
        this.nodeHash[node.id] = node;
    },

    // private
    unregisterNode : function(node){
        delete this.nodeHash[node.id];
    },

    toString : function(){
        return "[Tree"+(this.id?" "+this.id:"")+"]";
    }
});

/**
 * @class Ext.data.Node
 * @extends Ext.util.Observable
 * @cfg {Boolean} leaf true if this node is a leaf and does not have children
 * @cfg {String} id The id for this node. If one is not specified, one is generated.
 * @constructor
 * @param {Object} attributes The attributes/config for the node
 */
Ext.data.Node = Ext.extend(Ext.util.Observable, {
    
    constructor: function(attributes){
        /**
         * The attributes supplied for the node. You can use this property to access any custom attributes you supplied.
         * @type {Object}
         */
        this.attributes = attributes || {};
        this.leaf = this.attributes.leaf;
        /**
         * The node id. @type String
         */
        this.id = this.attributes.id;
        if(!this.id){
            this.id = Ext.id(null, "xnode-");
            this.attributes.id = this.id;
        }
        /**
         * All child nodes of this node. @type Array
         */
        this.childNodes = [];
        /**
         * The parent node for this node. @type Node
         */
        this.parentNode = null;
        /**
         * The first direct child node of this node, or null if this node has no child nodes. @type Node
         */
        this.firstChild = null;
        /**
         * The last direct child node of this node, or null if this node has no child nodes. @type Node
         */
        this.lastChild = null;
        /**
         * The node immediately preceding this node in the tree, or null if there is no sibling node. @type Node
         */
        this.previousSibling = null;
        /**
         * The node immediately following this node in the tree, or null if there is no sibling node. @type Node
         */
        this.nextSibling = null;

        this.addEvents({
            /**
             * @event append
             * Fires when a new child node is appended
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} node The newly appended node
             * @param {Number} index The index of the newly appended node
             */
            "append" : true,
            /**
             * @event remove
             * Fires when a child node is removed
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} node The removed node
             */
            "remove" : true,
            /**
             * @event move
             * Fires when this node is moved to a new location in the tree
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} oldParent The old parent of this node
             * @param {Node} newParent The new parent of this node
             * @param {Number} index The index it was moved to
             */
            "move" : true,
            /**
             * @event insert
             * Fires when a new child node is inserted.
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} node The child node inserted
             * @param {Node} refNode The child node the node was inserted before
             */
            "insert" : true,
            /**
             * @event beforeappend
             * Fires before a new child is appended, return false to cancel the append.
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} node The child node to be appended
             */
            "beforeappend" : true,
            /**
             * @event beforeremove
             * Fires before a child is removed, return false to cancel the remove.
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} node The child node to be removed
             */
            "beforeremove" : true,
            /**
             * @event beforemove
             * Fires before this node is moved to a new location in the tree. Return false to cancel the move.
             * @param {Tree} tree The owner tree
             * @param {Node} this This node
             * @param {Node} oldParent The parent of this node
             * @param {Node} newParent The new parent this node is moving to
             * @param {Number} index The index it is being moved to
             */
            "beforemove" : true,
             /**
              * @event beforeinsert
              * Fires before a new child is inserted, return false to cancel the insert.
              * @param {Tree} tree The owner tree
              * @param {Node} this This node
              * @param {Node} node The child node to be inserted
              * @param {Node} refNode The child node the node is being inserted before
              */
            "beforeinsert" : true
        });
        this.listeners = this.attributes.listeners;
        Ext.data.Node.superclass.constructor.call(this);    
    },
    
    // private
    fireEvent : function(evtName){
        // first do standard event for this node
        if(Ext.data.Node.superclass.fireEvent.apply(this, arguments) === false){
            return false;
        }
        // then bubble it up to the tree if the event wasn't cancelled
        var ot = this.getOwnerTree();
        if(ot){
            if(ot.proxyNodeEvent.apply(ot, arguments) === false){
                return false;
            }
        }
        return true;
    },

    /**
     * Returns true if this node is a leaf
     * @return {Boolean}
     */
    isLeaf : function(){
        return this.leaf === true;
    },

    // private
    setFirstChild : function(node){
        this.firstChild = node;
    },

    //private
    setLastChild : function(node){
        this.lastChild = node;
    },


    /**
     * Returns true if this node is the last child of its parent
     * @return {Boolean}
     */
    isLast : function(){
       return (!this.parentNode ? true : this.parentNode.lastChild == this);
    },

    /**
     * Returns true if this node is the first child of its parent
     * @return {Boolean}
     */
    isFirst : function(){
       return (!this.parentNode ? true : this.parentNode.firstChild == this);
    },

    /**
     * Returns true if this node has one or more child nodes, else false.
     * @return {Boolean}
     */
    hasChildNodes : function(){
        return !this.isLeaf() && this.childNodes.length > 0;
    },

    /**
     * Returns true if this node has one or more child nodes, or if the expandable
     * node attribute is explicitly specified as true (see {@link #attributes}), otherwise returns false.
     * @return {Boolean}
     */
    isExpandable : function(){
        return this.attributes.expandable || this.hasChildNodes();
    },

    /**
     * Insert node(s) as the last child node of this node.
     * @param {Node/Array} node The node or Array of nodes to append
     * @return {Node} The appended node if single append, or null if an array was passed
     */
    appendChild : function(node){
        var multi = false;
        if(Ext.isArray(node)){
            multi = node;
        }else if(arguments.length > 1){
            multi = arguments;
        }
        // if passed an array or multiple args do them one by one
        if(multi){
            for(var i = 0, len = multi.length; i < len; i++) {
                this.appendChild(multi[i]);
            }
        }else{
            if(this.fireEvent("beforeappend", this.ownerTree, this, node) === false){
                return false;
            }
            var index = this.childNodes.length;
            var oldParent = node.parentNode;
            // it's a move, make sure we move it cleanly
            if(oldParent){
                if(node.fireEvent("beforemove", node.getOwnerTree(), node, oldParent, this, index) === false){
                    return false;
                }
                oldParent.removeChild(node);
            }
            index = this.childNodes.length;
            if(index === 0){
                this.setFirstChild(node);
            }
            this.childNodes.push(node);
            node.parentNode = this;
            var ps = this.childNodes[index-1];
            if(ps){
                node.previousSibling = ps;
                ps.nextSibling = node;
            }else{
                node.previousSibling = null;
            }
            node.nextSibling = null;
            this.setLastChild(node);
            node.setOwnerTree(this.getOwnerTree());
            this.fireEvent("append", this.ownerTree, this, node, index);
            if(oldParent){
                node.fireEvent("move", this.ownerTree, node, oldParent, this, index);
            }
            return node;
        }
    },

    /**
     * Removes a child node from this node.
     * @param {Node} node The node to remove
     * @param {Boolean} destroy true to destroy the node upon removal. Defaults to false.
     * @return {Node} The removed node
     */
    removeChild : function(node, destroy){
        var index = this.childNodes.indexOf(node);
        if(index == -1){
            return false;
        }
        if(this.fireEvent("beforeremove", this.ownerTree, this, node) === false){
            return false;
        }

        // remove it from childNodes collection
        this.childNodes.splice(index, 1);

        // update siblings
        if(node.previousSibling){
            node.previousSibling.nextSibling = node.nextSibling;
        }
        if(node.nextSibling){
            node.nextSibling.previousSibling = node.previousSibling;
        }

        // update child refs
        if(this.firstChild == node){
            this.setFirstChild(node.nextSibling);
        }
        if(this.lastChild == node){
            this.setLastChild(node.previousSibling);
        }

        this.fireEvent("remove", this.ownerTree, this, node);
        if(destroy){
            node.destroy(true);
        }else{
            node.clear();
        }
        return node;
    },

    // private
    clear : function(destroy){
        // clear any references from the node
        this.setOwnerTree(null, destroy);
        this.parentNode = this.previousSibling = this.nextSibling = null;
        if(destroy){
            this.firstChild = this.lastChild = null;
        }
    },

    /**
     * Destroys the node.
     */
    destroy : function(/* private */ silent){
        /*
         * Silent is to be used in a number of cases
         * 1) When setRootNode is called.
         * 2) When destroy on the tree is called
         * 3) For destroying child nodes on a node
         */
        if(silent === true){
            this.purgeListeners();
            this.clear(true);
            Ext.each(this.childNodes, function(n){
                n.destroy(true);
            });
            this.childNodes = null;
        }else{
            this.remove(true);
        }
    },

    /**
     * Inserts the first node before the second node in this nodes childNodes collection.
     * @param {Node} node The node to insert
     * @param {Node} refNode The node to insert before (if null the node is appended)
     * @return {Node} The inserted node
     */
    insertBefore : function(node, refNode){
        if(!refNode){ // like standard Dom, refNode can be null for append
            return this.appendChild(node);
        }
        // nothing to do
        if(node == refNode){
            return false;
        }

        if(this.fireEvent("beforeinsert", this.ownerTree, this, node, refNode) === false){
            return false;
        }
        var index = this.childNodes.indexOf(refNode);
        var oldParent = node.parentNode;
        var refIndex = index;

        // when moving internally, indexes will change after remove
        if(oldParent == this && this.childNodes.indexOf(node) < index){
            refIndex--;
        }

        // it's a move, make sure we move it cleanly
        if(oldParent){
            if(node.fireEvent("beforemove", node.getOwnerTree(), node, oldParent, this, index, refNode) === false){
                return false;
            }
            oldParent.removeChild(node);
        }
        if(refIndex === 0){
            this.setFirstChild(node);
        }
        this.childNodes.splice(refIndex, 0, node);
        node.parentNode = this;
        var ps = this.childNodes[refIndex-1];
        if(ps){
            node.previousSibling = ps;
            ps.nextSibling = node;
        }else{
            node.previousSibling = null;
        }
        node.nextSibling = refNode;
        refNode.previousSibling = node;
        node.setOwnerTree(this.getOwnerTree());
        this.fireEvent("insert", this.ownerTree, this, node, refNode);
        if(oldParent){
            node.fireEvent("move", this.ownerTree, node, oldParent, this, refIndex, refNode);
        }
        return node;
    },

    /**
     * Removes this node from its parent
     * @param {Boolean} destroy true to destroy the node upon removal. Defaults to false.
     * @return {Node} this
     */
    remove : function(destroy){
        if (this.parentNode) {
            this.parentNode.removeChild(this, destroy);
        }
        return this;
    },

    /**
     * Removes all child nodes from this node.
     * @param {Boolean} destroy true to destroy the node upon removal. Defaults to false.
     * @return {Node} this
     */
    removeAll : function(destroy){
        var cn = this.childNodes,
            n;
        while((n = cn[0])){
            this.removeChild(n, destroy);
        }
        return this;
    },

    /**
     * Returns the child node at the specified index.
     * @param {Number} index
     * @return {Node}
     */
    item : function(index){
        return this.childNodes[index];
    },

    /**
     * Replaces one child node in this node with another.
     * @param {Node} newChild The replacement node
     * @param {Node} oldChild The node to replace
     * @return {Node} The replaced node
     */
    replaceChild : function(newChild, oldChild){
        var s = oldChild ? oldChild.nextSibling : null;
        this.removeChild(oldChild);
        this.insertBefore(newChild, s);
        return oldChild;
    },

    /**
     * Returns the index of a child node
     * @param {Node} node
     * @return {Number} The index of the node or -1 if it was not found
     */
    indexOf : function(child){
        return this.childNodes.indexOf(child);
    },

    /**
     * Returns the tree this node is in.
     * @return {Tree}
     */
    getOwnerTree : function(){
        // if it doesn't have one, look for one
        if(!this.ownerTree){
            var p = this;
            while(p){
                if(p.ownerTree){
                    this.ownerTree = p.ownerTree;
                    break;
                }
                p = p.parentNode;
            }
        }
        return this.ownerTree;
    },

    /**
     * Returns depth of this node (the root node has a depth of 0)
     * @return {Number}
     */
    getDepth : function(){
        var depth = 0;
        var p = this;
        while(p.parentNode){
            ++depth;
            p = p.parentNode;
        }
        return depth;
    },

    // private
    setOwnerTree : function(tree, destroy){
        // if it is a move, we need to update everyone
        if(tree != this.ownerTree){
            if(this.ownerTree){
                this.ownerTree.unregisterNode(this);
            }
            this.ownerTree = tree;
            // If we're destroying, we don't need to recurse since it will be called on each child node
            if(destroy !== true){
                Ext.each(this.childNodes, function(n){
                    n.setOwnerTree(tree);
                });
            }
            if(tree){
                tree.registerNode(this);
            }
        }
    },

    /**
     * Changes the id of this node.
     * @param {String} id The new id for the node.
     */
    setId: function(id){
        if(id !== this.id){
            var t = this.ownerTree;
            if(t){
                t.unregisterNode(this);
            }
            this.id = this.attributes.id = id;
            if(t){
                t.registerNode(this);
            }
            this.onIdChange(id);
        }
    },

    // private
    onIdChange: Ext.emptyFn,

    /**
     * Returns the path for this node. The path can be used to expand or select this node programmatically.
     * @param {String} attr (optional) The attr to use for the path (defaults to the node's id)
     * @return {String} The path
     */
    getPath : function(attr){
        attr = attr || "id";
        var p = this.parentNode;
        var b = [this.attributes[attr]];
        while(p){
            b.unshift(p.attributes[attr]);
            p = p.parentNode;
        }
        var sep = this.getOwnerTree().pathSeparator;
        return sep + b.join(sep);
    },

    /**
     * Bubbles up the tree from this node, calling the specified function with each node. The arguments to the function
     * will be the args provided or the current node. If the function returns false at any point,
     * the bubble is stopped.
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the current Node.
     * @param {Array} args (optional) The args to call the function with (default to passing the current Node)
     */
    bubble : function(fn, scope, args){
        var p = this;
        while(p){
            if(fn.apply(scope || p, args || [p]) === false){
                break;
            }
            p = p.parentNode;
        }
    },

    /**
     * Cascades down the tree from this node, calling the specified function with each node. The arguments to the function
     * will be the args provided or the current node. If the function returns false at any point,
     * the cascade is stopped on that branch.
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the current Node.
     * @param {Array} args (optional) The args to call the function with (default to passing the current Node)
     */
    cascade : function(fn, scope, args){
        if(fn.apply(scope || this, args || [this]) !== false){
            var cs = this.childNodes;
            for(var i = 0, len = cs.length; i < len; i++) {
                cs[i].cascade(fn, scope, args);
            }
        }
    },

    /**
     * Interates the child nodes of this node, calling the specified function with each node. The arguments to the function
     * will be the args provided or the current node. If the function returns false at any point,
     * the iteration stops.
     * @param {Function} fn The function to call
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the current Node in the iteration.
     * @param {Array} args (optional) The args to call the function with (default to passing the current Node)
     */
    eachChild : function(fn, scope, args){
        var cs = this.childNodes;
        for(var i = 0, len = cs.length; i < len; i++) {
            if(fn.apply(scope || cs[i], args || [cs[i]]) === false){
                break;
            }
        }
    },

    /**
     * Finds the first child that has the attribute with the specified value.
     * @param {String} attribute The attribute name
     * @param {Mixed} value The value to search for
     * @param {Boolean} deep (Optional) True to search through nodes deeper than the immediate children
     * @return {Node} The found child or null if none was found
     */
    findChild : function(attribute, value, deep){
        return this.findChildBy(function(){
            return this.attributes[attribute] == value;
        }, null, deep);
    },

    /**
     * Finds the first child by a custom function. The child matches if the function passed returns true.
     * @param {Function} fn A function which must return true if the passed Node is the required Node.
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the Node being tested.
     * @param {Boolean} deep (Optional) True to search through nodes deeper than the immediate children
     * @return {Node} The found child or null if none was found
     */
    findChildBy : function(fn, scope, deep){
        var cs = this.childNodes,
            len = cs.length,
            i = 0,
            n,
            res;
        for(; i < len; i++){
            n = cs[i];
            if(fn.call(scope || n, n) === true){
                return n;
            }else if (deep){
                res = n.findChildBy(fn, scope, deep);
                if(res != null){
                    return res;
                }
            }
            
        }
        return null;
    },

    /**
     * Sorts this nodes children using the supplied sort function.
     * @param {Function} fn A function which, when passed two Nodes, returns -1, 0 or 1 depending upon required sort order.
     * @param {Object} scope (optional)The scope (this reference) in which the function is executed. Defaults to the browser window.
     */
    sort : function(fn, scope){
        var cs = this.childNodes;
        var len = cs.length;
        if(len > 0){
            var sortFn = scope ? function(){fn.apply(scope, arguments);} : fn;
            cs.sort(sortFn);
            for(var i = 0; i < len; i++){
                var n = cs[i];
                n.previousSibling = cs[i-1];
                n.nextSibling = cs[i+1];
                if(i === 0){
                    this.setFirstChild(n);
                }
                if(i == len-1){
                    this.setLastChild(n);
                }
            }
        }
    },

    /**
     * Returns true if this node is an ancestor (at any point) of the passed node.
     * @param {Node} node
     * @return {Boolean}
     */
    contains : function(node){
        return node.isAncestor(this);
    },

    /**
     * Returns true if the passed node is an ancestor (at any point) of this node.
     * @param {Node} node
     * @return {Boolean}
     */
    isAncestor : function(node){
        var p = this.parentNode;
        while(p){
            if(p == node){
                return true;
            }
            p = p.parentNode;
        }
        return false;
    },

    toString : function(){
        return "[Node"+(this.id?" "+this.id:"")+"]";
    }
});/**
 * @class Ext.tree.TreeNode
 * @extends Ext.data.Node
 * @cfg {String} text The text for this node
 * @cfg {Boolean} expanded true to start the node expanded
 * @cfg {Boolean} allowDrag False to make this node undraggable if {@link #draggable} = true (defaults to true)
 * @cfg {Boolean} allowDrop False if this node cannot have child nodes dropped on it (defaults to true)
 * @cfg {Boolean} disabled true to start the node disabled
 * @cfg {String} icon The path to an icon for the node. The preferred way to do this
 * is to use the cls or iconCls attributes and add the icon via a CSS background image.
 * @cfg {String} cls A css class to be added to the node
 * @cfg {String} iconCls A css class to be added to the nodes icon element for applying css background images
 * @cfg {String} href URL of the link used for the node (defaults to #)
 * @cfg {String} hrefTarget target frame for the link
 * @cfg {Boolean} hidden True to render hidden. (Defaults to false).
 * @cfg {String} qtip An Ext QuickTip for the node
 * @cfg {Boolean} expandable If set to true, the node will always show a plus/minus icon, even when empty
 * @cfg {String} qtipCfg An Ext QuickTip config for the node (used instead of qtip)
 * @cfg {Boolean} singleClickExpand True for single click expand on this node
 * @cfg {Function} uiProvider A UI class to use for this node (defaults to Ext.tree.TreeNodeUI)
 * @cfg {Boolean} checked True to render a checked checkbox for this node, false to render an unchecked checkbox
 * (defaults to undefined with no checkbox rendered)
 * @cfg {Boolean} draggable True to make this node draggable (defaults to false)
 * @cfg {Boolean} isTarget False to not allow this node to act as a drop target (defaults to true)
 * @cfg {Boolean} allowChildren False to not allow this node to have child nodes (defaults to true)
 * @cfg {Boolean} editable False to not allow this node to be edited by an {@link Ext.tree.TreeEditor} (defaults to true)
 * @constructor
 * @param {Object/String} attributes The attributes/config for the node or just a string with the text for the node
 */
Ext.tree.TreeNode = Ext.extend(Ext.data.Node, {
    
    constructor : function(attributes){
        attributes = attributes || {};
        if(Ext.isString(attributes)){
            attributes = {text: attributes};
        }
        this.childrenRendered = false;
        this.rendered = false;
        Ext.tree.TreeNode.superclass.constructor.call(this, attributes);
        this.expanded = attributes.expanded === true;
        this.isTarget = attributes.isTarget !== false;
        this.draggable = attributes.draggable !== false && attributes.allowDrag !== false;
        this.allowChildren = attributes.allowChildren !== false && attributes.allowDrop !== false;

        /**
         * Read-only. The text for this node. To change it use {@link #setText}.
         * @type String
         */
        this.text = attributes.text;
        /**
         * True if this node is disabled.
         * @type Boolean
         */
        this.disabled = attributes.disabled === true;
        /**
         * True if this node is hidden.
         * @type Boolean
         */
        this.hidden = attributes.hidden === true;
    
        this.addEvents(
            /**
            * @event textchange
            * Fires when the text for this node is changed
            * @param {Node} this This node
            * @param {String} text The new text
            * @param {String} oldText The old text
            */
            'textchange',
            /**
            * @event beforeexpand
            * Fires before this node is expanded, return false to cancel.
            * @param {Node} this This node
            * @param {Boolean} deep
            * @param {Boolean} anim
            */
            'beforeexpand',
            /**
            * @event beforecollapse
            * Fires before this node is collapsed, return false to cancel.
            * @param {Node} this This node
            * @param {Boolean} deep
            * @param {Boolean} anim
            */
            'beforecollapse',
            /**
            * @event expand
            * Fires when this node is expanded
            * @param {Node} this This node
            */
            'expand',
            /**
            * @event disabledchange
            * Fires when the disabled status of this node changes
            * @param {Node} this This node
            * @param {Boolean} disabled
            */
            'disabledchange',
            /**
            * @event collapse
            * Fires when this node is collapsed
            * @param {Node} this This node
            */
            'collapse',
            /**
            * @event beforeclick
            * Fires before click processing. Return false to cancel the default action.
            * @param {Node} this This node
            * @param {Ext.EventObject} e The event object
            */
            'beforeclick',
            /**
            * @event click
            * Fires when this node is clicked
            * @param {Node} this This node
            * @param {Ext.EventObject} e The event object
            */
            'click',
            /**
            * @event checkchange
            * Fires when a node with a checkbox's checked property changes
            * @param {Node} this This node
            * @param {Boolean} checked
            */
            'checkchange',
            /**
            * @event beforedblclick
            * Fires before double click processing. Return false to cancel the default action.
            * @param {Node} this This node
            * @param {Ext.EventObject} e The event object
            */
            'beforedblclick',
            /**
            * @event dblclick
            * Fires when this node is double clicked
            * @param {Node} this This node
            * @param {Ext.EventObject} e The event object
            */
            'dblclick',
            /**
            * @event contextmenu
            * Fires when this node is right clicked
            * @param {Node} this This node
            * @param {Ext.EventObject} e The event object
            */
            'contextmenu',
            /**
            * @event beforechildrenrendered
            * Fires right before the child nodes for this node are rendered
            * @param {Node} this This node
            */
            'beforechildrenrendered'
        );
    
        var uiClass = this.attributes.uiProvider || this.defaultUI || Ext.tree.TreeNodeUI;
    
        /**
         * Read-only. The UI for this node
         * @type TreeNodeUI
         */
        this.ui = new uiClass(this);    
    },
    
    preventHScroll : true,
    /**
     * Returns true if this node is expanded
     * @return {Boolean}
     */
    isExpanded : function(){
        return this.expanded;
    },

/**
 * Returns the UI object for this node.
 * @return {TreeNodeUI} The object which is providing the user interface for this tree
 * node. Unless otherwise specified in the {@link #uiProvider}, this will be an instance
 * of {@link Ext.tree.TreeNodeUI}
 */
    getUI : function(){
        return this.ui;
    },

    getLoader : function(){
        var owner;
        return this.loader || ((owner = this.getOwnerTree()) && owner.loader ? owner.loader : (this.loader = new Ext.tree.TreeLoader()));
    },

    // private override
    setFirstChild : function(node){
        var of = this.firstChild;
        Ext.tree.TreeNode.superclass.setFirstChild.call(this, node);
        if(this.childrenRendered && of && node != of){
            of.renderIndent(true, true);
        }
        if(this.rendered){
            this.renderIndent(true, true);
        }
    },

    // private override
    setLastChild : function(node){
        var ol = this.lastChild;
        Ext.tree.TreeNode.superclass.setLastChild.call(this, node);
        if(this.childrenRendered && ol && node != ol){
            ol.renderIndent(true, true);
        }
        if(this.rendered){
            this.renderIndent(true, true);
        }
    },

    // these methods are overridden to provide lazy rendering support
    // private override
    appendChild : function(n){
        if(!n.render && !Ext.isArray(n)){
            n = this.getLoader().createNode(n);
        }
        var node = Ext.tree.TreeNode.superclass.appendChild.call(this, n);
        if(node && this.childrenRendered){
            node.render();
        }
        this.ui.updateExpandIcon();
        return node;
    },

    // private override
    removeChild : function(node, destroy){
        this.ownerTree.getSelectionModel().unselect(node);
        Ext.tree.TreeNode.superclass.removeChild.apply(this, arguments);
        // only update the ui if we're not destroying
        if(!destroy){
            var rendered = node.ui.rendered;
            // if it's been rendered remove dom node
            if(rendered){
                node.ui.remove();
            }
            if(rendered && this.childNodes.length < 1){
                this.collapse(false, false);
            }else{
                this.ui.updateExpandIcon();
            }
            if(!this.firstChild && !this.isHiddenRoot()){
                this.childrenRendered = false;
            }
        }
        return node;
    },

    // private override
    insertBefore : function(node, refNode){
        if(!node.render){
            node = this.getLoader().createNode(node);
        }
        var newNode = Ext.tree.TreeNode.superclass.insertBefore.call(this, node, refNode);
        if(newNode && refNode && this.childrenRendered){
            node.render();
        }
        this.ui.updateExpandIcon();
        return newNode;
    },

    /**
     * Sets the text for this node
     * @param {String} text
     */
    setText : function(text){
        var oldText = this.text;
        this.text = this.attributes.text = text;
        if(this.rendered){ // event without subscribing
            this.ui.onTextChange(this, text, oldText);
        }
        this.fireEvent('textchange', this, text, oldText);
    },
    
    /**
     * Sets the icon class for this node.
     * @param {String} cls
     */
    setIconCls : function(cls){
        var old = this.attributes.iconCls;
        this.attributes.iconCls = cls;
        if(this.rendered){
            this.ui.onIconClsChange(this, cls, old);
        }
    },
    
    /**
     * Sets the tooltip for this node.
     * @param {String} tip The text for the tip
     * @param {String} title (Optional) The title for the tip
     */
    setTooltip : function(tip, title){
        this.attributes.qtip = tip;
        this.attributes.qtipTitle = title;
        if(this.rendered){
            this.ui.onTipChange(this, tip, title);
        }
    },
    
    /**
     * Sets the icon for this node.
     * @param {String} icon
     */
    setIcon : function(icon){
        this.attributes.icon = icon;
        if(this.rendered){
            this.ui.onIconChange(this, icon);
        }
    },
    
    /**
     * Sets the href for the node.
     * @param {String} href The href to set
     * @param {String} (Optional) target The target of the href
     */
    setHref : function(href, target){
        this.attributes.href = href;
        this.attributes.hrefTarget = target;
        if(this.rendered){
            this.ui.onHrefChange(this, href, target);
        }
    },
    
    /**
     * Sets the class on this node.
     * @param {String} cls
     */
    setCls : function(cls){
        var old = this.attributes.cls;
        this.attributes.cls = cls;
        if(this.rendered){
            this.ui.onClsChange(this, cls, old);
        }
    },

    /**
     * Triggers selection of this node
     */
    select : function(){
        var t = this.getOwnerTree();
        if(t){
            t.getSelectionModel().select(this);
        }
    },

    /**
     * Triggers deselection of this node
     * @param {Boolean} silent (optional) True to stop selection change events from firing.
     */
    unselect : function(silent){
        var t = this.getOwnerTree();
        if(t){
            t.getSelectionModel().unselect(this, silent);
        }
    },

    /**
     * Returns true if this node is selected
     * @return {Boolean}
     */
    isSelected : function(){
        var t = this.getOwnerTree();
        return t ? t.getSelectionModel().isSelected(this) : false;
    },

    /**
     * Expand this node.
     * @param {Boolean} deep (optional) True to expand all children as well
     * @param {Boolean} anim (optional) false to cancel the default animation
     * @param {Function} callback (optional) A callback to be called when
     * expanding this node completes (does not wait for deep expand to complete).
     * Called with 1 parameter, this node.
     * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to this TreeNode.
     */
    expand : function(deep, anim, callback, scope){
        if(!this.expanded){
            if(this.fireEvent('beforeexpand', this, deep, anim) === false){
                return;
            }
            if(!this.childrenRendered){
                this.renderChildren();
            }
            this.expanded = true;
            if(!this.isHiddenRoot() && (this.getOwnerTree().animate && anim !== false) || anim){
                this.ui.animExpand(function(){
                    this.fireEvent('expand', this);
                    this.runCallback(callback, scope || this, [this]);
                    if(deep === true){
                        this.expandChildNodes(true, true);
                    }
                }.createDelegate(this));
                return;
            }else{
                this.ui.expand();
                this.fireEvent('expand', this);
                this.runCallback(callback, scope || this, [this]);
            }
        }else{
           this.runCallback(callback, scope || this, [this]);
        }
        if(deep === true){
            this.expandChildNodes(true);
        }
    },

    runCallback : function(cb, scope, args){
        if(Ext.isFunction(cb)){
            cb.apply(scope, args);
        }
    },

    isHiddenRoot : function(){
        return this.isRoot && !this.getOwnerTree().rootVisible;
    },

    /**
     * Collapse this node.
     * @param {Boolean} deep (optional) True to collapse all children as well
     * @param {Boolean} anim (optional) false to cancel the default animation
     * @param {Function} callback (optional) A callback to be called when
     * expanding this node completes (does not wait for deep expand to complete).
     * Called with 1 parameter, this node.
     * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to this TreeNode.
     */
    collapse : function(deep, anim, callback, scope){
        if(this.expanded && !this.isHiddenRoot()){
            if(this.fireEvent('beforecollapse', this, deep, anim) === false){
                return;
            }
            this.expanded = false;
            if((this.getOwnerTree().animate && anim !== false) || anim){
                this.ui.animCollapse(function(){
                    this.fireEvent('collapse', this);
                    this.runCallback(callback, scope || this, [this]);
                    if(deep === true){
                        this.collapseChildNodes(true);
                    }
                }.createDelegate(this));
                return;
            }else{
                this.ui.collapse();
                this.fireEvent('collapse', this);
                this.runCallback(callback, scope || this, [this]);
            }
        }else if(!this.expanded){
            this.runCallback(callback, scope || this, [this]);
        }
        if(deep === true){
            var cs = this.childNodes;
            for(var i = 0, len = cs.length; i < len; i++) {
            	cs[i].collapse(true, false);
            }
        }
    },

    // private
    delayedExpand : function(delay){
        if(!this.expandProcId){
            this.expandProcId = this.expand.defer(delay, this);
        }
    },

    // private
    cancelExpand : function(){
        if(this.expandProcId){
            clearTimeout(this.expandProcId);
        }
        this.expandProcId = false;
    },

    /**
     * Toggles expanded/collapsed state of the node
     */
    toggle : function(){
        if(this.expanded){
            this.collapse();
        }else{
            this.expand();
        }
    },

    /**
     * Ensures all parent nodes are expanded, and if necessary, scrolls
     * the node into view.
     * @param {Function} callback (optional) A function to call when the node has been made visible.
     * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to this TreeNode.
     */
    ensureVisible : function(callback, scope){
        var tree = this.getOwnerTree();
        tree.expandPath(this.parentNode ? this.parentNode.getPath() : this.getPath(), false, function(){
            var node = tree.getNodeById(this.id);  // Somehow if we don't do this, we lose changes that happened to node in the meantime
            tree.getTreeEl().scrollChildIntoView(node.ui.anchor);
            this.runCallback(callback, scope || this, [this]);
        }.createDelegate(this));
    },

    /**
     * Expand all child nodes
     * @param {Boolean} deep (optional) true if the child nodes should also expand their child nodes
     */
    expandChildNodes : function(deep, anim) {
        var cs = this.childNodes,
            i,
            len = cs.length;
        for (i = 0; i < len; i++) {
        	cs[i].expand(deep, anim);
        }
    },

    /**
     * Collapse all child nodes
     * @param {Boolean} deep (optional) true if the child nodes should also collapse their child nodes
     */
    collapseChildNodes : function(deep){
        var cs = this.childNodes;
        for(var i = 0, len = cs.length; i < len; i++) {
        	cs[i].collapse(deep);
        }
    },

    /**
     * Disables this node
     */
    disable : function(){
        this.disabled = true;
        this.unselect();
        if(this.rendered && this.ui.onDisableChange){ // event without subscribing
            this.ui.onDisableChange(this, true);
        }
        this.fireEvent('disabledchange', this, true);
    },

    /**
     * Enables this node
     */
    enable : function(){
        this.disabled = false;
        if(this.rendered && this.ui.onDisableChange){ // event without subscribing
            this.ui.onDisableChange(this, false);
        }
        this.fireEvent('disabledchange', this, false);
    },

    // private
    renderChildren : function(suppressEvent){
        if(suppressEvent !== false){
            this.fireEvent('beforechildrenrendered', this);
        }
        var cs = this.childNodes;
        for(var i = 0, len = cs.length; i < len; i++){
            cs[i].render(true);
        }
        this.childrenRendered = true;
    },

    // private
    sort : function(fn, scope){
        Ext.tree.TreeNode.superclass.sort.apply(this, arguments);
        if(this.childrenRendered){
            var cs = this.childNodes;
            for(var i = 0, len = cs.length; i < len; i++){
                cs[i].render(true);
            }
        }
    },

    // private
    render : function(bulkRender){
        this.ui.render(bulkRender);
        if(!this.rendered){
            // make sure it is registered
            this.getOwnerTree().registerNode(this);
            this.rendered = true;
            if(this.expanded){
                this.expanded = false;
                this.expand(false, false);
            }
        }
    },

    // private
    renderIndent : function(deep, refresh){
        if(refresh){
            this.ui.childIndent = null;
        }
        this.ui.renderIndent();
        if(deep === true && this.childrenRendered){
            var cs = this.childNodes;
            for(var i = 0, len = cs.length; i < len; i++){
                cs[i].renderIndent(true, refresh);
            }
        }
    },

    beginUpdate : function(){
        this.childrenRendered = false;
    },

    endUpdate : function(){
        if(this.expanded && this.rendered){
            this.renderChildren();
        }
    },

    //inherit docs
    destroy : function(silent){
        if(silent === true){
            this.unselect(true);
        }
        Ext.tree.TreeNode.superclass.destroy.call(this, silent);
        Ext.destroy(this.ui, this.loader);
        this.ui = this.loader = null;
    },

    // private
    onIdChange : function(id){
        this.ui.onIdChange(id);
    }
});

Ext.tree.TreePanel.nodeTypes.node = Ext.tree.TreeNode;/**
 * @class Ext.tree.AsyncTreeNode
 * @extends Ext.tree.TreeNode
 * @cfg {TreeLoader} loader A TreeLoader to be used by this node (defaults to the loader defined on the tree)
 * @constructor
 * @param {Object/String} attributes The attributes/config for the node or just a string with the text for the node 
 */
 Ext.tree.AsyncTreeNode = function(config){
    this.loaded = config && config.loaded === true;
    this.loading = false;
    Ext.tree.AsyncTreeNode.superclass.constructor.apply(this, arguments);
    /**
    * @event beforeload
    * Fires before this node is loaded, return false to cancel
    * @param {Node} this This node
    */
    this.addEvents('beforeload', 'load');
    /**
    * @event load
    * Fires when this node is loaded
    * @param {Node} this This node
    */
    /**
     * The loader used by this node (defaults to using the tree's defined loader)
     * @type TreeLoader
     * @property loader
     */
};
Ext.extend(Ext.tree.AsyncTreeNode, Ext.tree.TreeNode, {
    expand : function(deep, anim, callback, scope){
        if(this.loading){ // if an async load is already running, waiting til it's done
            var timer;
            var f = function(){
                if(!this.loading){ // done loading
                    clearInterval(timer);
                    this.expand(deep, anim, callback, scope);
                }
            }.createDelegate(this);
            timer = setInterval(f, 200);
            return;
        }
        if(!this.loaded){
            if(this.fireEvent("beforeload", this) === false){
                return;
            }
            this.loading = true;
            this.ui.beforeLoad(this);
            var loader = this.loader || this.attributes.loader || this.getOwnerTree().getLoader();
            if(loader){
                loader.load(this, this.loadComplete.createDelegate(this, [deep, anim, callback, scope]), this);
                return;
            }
        }
        Ext.tree.AsyncTreeNode.superclass.expand.call(this, deep, anim, callback, scope);
    },
    
    /**
     * Returns true if this node is currently loading
     * @return {Boolean}
     */
    isLoading : function(){
        return this.loading;  
    },
    
    loadComplete : function(deep, anim, callback, scope){
        this.loading = false;
        this.loaded = true;
        this.ui.afterLoad(this);
        this.fireEvent("load", this);
        this.expand(deep, anim, callback, scope);
    },
    
    /**
     * Returns true if this node has been loaded
     * @return {Boolean}
     */
    isLoaded : function(){
        return this.loaded;
    },
    
    hasChildNodes : function(){
        if(!this.isLeaf() && !this.loaded){
            return true;
        }else{
            return Ext.tree.AsyncTreeNode.superclass.hasChildNodes.call(this);
        }
    },

    /**
     * Trigger a reload for this node
     * @param {Function} callback
     * @param {Object} scope (optional) The scope (this reference) in which the callback is executed. Defaults to this Node.
     */
    reload : function(callback, scope){
        this.collapse(false, false);
        while(this.firstChild){
            this.removeChild(this.firstChild).destroy();
        }
        this.childrenRendered = false;
        this.loaded = false;
        if(this.isHiddenRoot()){
            this.expanded = false;
        }
        this.expand(false, false, callback, scope);
    }
});

Ext.tree.TreePanel.nodeTypes.async = Ext.tree.AsyncTreeNode;/**
 * @class Ext.tree.TreeNodeUI
 * This class provides the default UI implementation for Ext TreeNodes.
 * The TreeNode UI implementation is separate from the
 * tree implementation, and allows customizing of the appearance of
 * tree nodes.
    
 * 
    
 * If you are customizing the Tree's user interface, you
 * may need to extend this class, but you should never need to instantiate this class.
    
 * 
    
 * This class provides access to the user interface components of an Ext TreeNode, through
 * {@link Ext.tree.TreeNode#getUI}
 */
Ext.tree.TreeNodeUI = Ext.extend(Object, {
    
    constructor : function(node){
        Ext.apply(this, {
            node: node,
            rendered: false,
            animating: false,
            wasLeaf: true,
            ecc: 'x-tree-ec-icon x-tree-elbow',
            emptyIcon: Ext.BLANK_IMAGE_URL    
        });
    },
    
    // private
    removeChild : function(node){
        if(this.rendered){
            this.ctNode.removeChild(node.ui.getEl());
        }
    },

    // private
    beforeLoad : function(){
         this.addClass("x-tree-node-loading");
    },

    // private
    afterLoad : function(){
         this.removeClass("x-tree-node-loading");
    },

    // private
    onTextChange : function(node, text, oldText){
        if(this.rendered){
            this.textNode.innerHTML = text;
        }
    },
    
    // private
    onIconClsChange : function(node, cls, oldCls){
        if(this.rendered){
            Ext.fly(this.iconNode).replaceClass(oldCls, cls);
        }
    },
    
    // private
    onIconChange : function(node, icon){
        if(this.rendered){
            //'',
            var empty = Ext.isEmpty(icon);
            this.iconNode.src = empty ? this.emptyIcon : icon;
            Ext.fly(this.iconNode)[empty ? 'removeClass' : 'addClass']('x-tree-node-inline-icon');
        }
    },
    
    // private
    onTipChange : function(node, tip, title){
        if(this.rendered){
            var hasTitle = Ext.isDefined(title);
            if(this.textNode.setAttributeNS){
                this.textNode.setAttributeNS("ext", "qtip", tip);
                if(hasTitle){
                    this.textNode.setAttributeNS("ext", "qtitle", title);
                }
            }else{
                this.textNode.setAttribute("ext:qtip", tip);
                if(hasTitle){
                    this.textNode.setAttribute("ext:qtitle", title);
                }
            }
        }
    },
    
    // private
    onHrefChange : function(node, href, target){
        if(this.rendered){
            this.anchor.href = this.getHref(href);
            if(Ext.isDefined(target)){
                this.anchor.target = target;
            }
        }
    },
    
    // private
    onClsChange : function(node, cls, oldCls){
        if(this.rendered){
            Ext.fly(this.elNode).replaceClass(oldCls, cls);
        }    
    },

    // private
    onDisableChange : function(node, state){
        this.disabled = state;
        if (this.checkbox) {
            this.checkbox.disabled = state;
        }
        this[state ? 'addClass' : 'removeClass']('x-tree-node-disabled');
    },

    // private
    onSelectedChange : function(state){
        if(state){
            this.focus();
            this.addClass("x-tree-selected");
        }else{
            //this.blur();
            this.removeClass("x-tree-selected");
        }
    },

    // private
    onMove : function(tree, node, oldParent, newParent, index, refNode){
        this.childIndent = null;
        if(this.rendered){
            var targetNode = newParent.ui.getContainer();
            if(!targetNode){//target not rendered
                this.holder = document.createElement("div");
                this.holder.appendChild(this.wrap);
                return;
            }
            var insertBefore = refNode ? refNode.ui.getEl() : null;
            if(insertBefore){
                targetNode.insertBefore(this.wrap, insertBefore);
            }else{
                targetNode.appendChild(this.wrap);
            }
            this.node.renderIndent(true, oldParent != newParent);
        }
    },

/**
 * Adds one or more CSS classes to the node's UI element.
 * Duplicate classes are automatically filtered out.
 * @param {String/Array} className The CSS class to add, or an array of classes
 */
    addClass : function(cls){
        if(this.elNode){
            Ext.fly(this.elNode).addClass(cls);
        }
    },

/**
 * Removes one or more CSS classes from the node's UI element.
 * @param {String/Array} className The CSS class to remove, or an array of classes
 */
    removeClass : function(cls){
        if(this.elNode){
            Ext.fly(this.elNode).removeClass(cls);
        }
    },

    // private
    remove : function(){
        if(this.rendered){
            this.holder = document.createElement("div");
            this.holder.appendChild(this.wrap);
        }
    },

    // private
    fireEvent : function(){
        return this.node.fireEvent.apply(this.node, arguments);
    },

    // private
    initEvents : function(){
        this.node.on("move", this.onMove, this);

        if(this.node.disabled){
            this.onDisableChange(this.node, true);
        }
        if(this.node.hidden){
            this.hide();
        }
        var ot = this.node.getOwnerTree();
        var dd = ot.enableDD || ot.enableDrag || ot.enableDrop;
        if(dd && (!this.node.isRoot || ot.rootVisible)){
            Ext.dd.Registry.register(this.elNode, {
                node: this.node,
                handles: this.getDDHandles(),
                isHandle: false
            });
        }
    },

    // private
    getDDHandles : function(){
        return [this.iconNode, this.textNode, this.elNode];
    },

/**
 * Hides this node.
 */
    hide : function(){
        this.node.hidden = true;
        if(this.wrap){
            this.wrap.style.display = "none";
        }
    },

/**
 * Shows this node.
 */
    show : function(){
        this.node.hidden = false;
        if(this.wrap){
            this.wrap.style.display = "";
        }
    },

    // private
    onContextMenu : function(e){
        if (this.node.hasListener("contextmenu") || this.node.getOwnerTree().hasListener("contextmenu")) {
            e.preventDefault();
            this.focus();
            this.fireEvent("contextmenu", this.node, e);
        }
    },

    // private
    onClick : function(e){
        if(this.dropping){
            e.stopEvent();
            return;
        }
        if(this.fireEvent("beforeclick", this.node, e) !== false){
            var a = e.getTarget('a');
            if(!this.disabled && this.node.attributes.href && a){
                this.fireEvent("click", this.node, e);
                return;
            }else if(a && e.ctrlKey){
                e.stopEvent();
            }
            e.preventDefault();
            if(this.disabled){
                return;
            }

            if(this.node.attributes.singleClickExpand && !this.animating && this.node.isExpandable()){
                this.node.toggle();
            }

            this.fireEvent("click", this.node, e);
        }else{
            e.stopEvent();
        }
    },

    // private
    onDblClick : function(e){
        e.preventDefault();
        if(this.disabled){
            return;
        }
        if(this.fireEvent("beforedblclick", this.node, e) !== false){
            if(this.checkbox){
                this.toggleCheck();
            }
            if(!this.animating && this.node.isExpandable()){
                this.node.toggle();
            }
            this.fireEvent("dblclick", this.node, e);
        }
    },

    onOver : function(e){
        this.addClass('x-tree-node-over');
    },

    onOut : function(e){
        this.removeClass('x-tree-node-over');
    },

    // private
    onCheckChange : function(){
        var checked = this.checkbox.checked;
        // fix for IE6
        this.checkbox.defaultChecked = checked;
        this.node.attributes.checked = checked;
        this.fireEvent('checkchange', this.node, checked);
    },

    // private
    ecClick : function(e){
        if(!this.animating && this.node.isExpandable()){
            this.node.toggle();
        }
    },

    // private
    startDrop : function(){
        this.dropping = true;
    },

    // delayed drop so the click event doesn't get fired on a drop
    endDrop : function(){
       setTimeout(function(){
           this.dropping = false;
       }.createDelegate(this), 50);
    },

    // private
    expand : function(){
        this.updateExpandIcon();
        this.ctNode.style.display = "";
    },

    // private
    focus : function(){
        if(!this.node.preventHScroll){
            try{this.anchor.focus();
            }catch(e){}
        }else{
            try{
                var noscroll = this.node.getOwnerTree().getTreeEl().dom;
                var l = noscroll.scrollLeft;
                this.anchor.focus();
                noscroll.scrollLeft = l;
            }catch(e){}
        }
    },

/**
 * Sets the checked status of the tree node to the passed value, or, if no value was passed,
 * toggles the checked status. If the node was rendered with no checkbox, this has no effect.
 * @param {Boolean} value (optional) The new checked status.
 */
    toggleCheck : function(value){
        var cb = this.checkbox;
        if(cb){
            cb.checked = (value === undefined ? !cb.checked : value);
            this.onCheckChange();
        }
    },

    // private
    blur : function(){
        try{
            this.anchor.blur();
        }catch(e){}
    },

    // private
    animExpand : function(callback){
        var ct = Ext.get(this.ctNode);
        ct.stopFx();
        if(!this.node.isExpandable()){
            this.updateExpandIcon();
            this.ctNode.style.display = "";
            Ext.callback(callback);
            return;
        }
        this.animating = true;
        this.updateExpandIcon();

        ct.slideIn('t', {
           callback : function(){
               this.animating = false;
               Ext.callback(callback);
            },
            scope: this,
            duration: this.node.ownerTree.duration || .25
        });
    },

    // private
    highlight : function(){
        var tree = this.node.getOwnerTree();
        Ext.fly(this.wrap).highlight(
            tree.hlColor || "C3DAF9",
            {endColor: tree.hlBaseColor}
        );
    },

    // private
    collapse : function(){
        this.updateExpandIcon();
        this.ctNode.style.display = "none";
    },

    // private
    animCollapse : function(callback){
        var ct = Ext.get(this.ctNode);
        ct.enableDisplayMode('block');
        ct.stopFx();

        this.animating = true;
        this.updateExpandIcon();

        ct.slideOut('t', {
            callback : function(){
               this.animating = false;
               Ext.callback(callback);
            },
            scope: this,
            duration: this.node.ownerTree.duration || .25
        });
    },

    // private
    getContainer : function(){
        return this.ctNode;
    },

/**
 * Returns the element which encapsulates this node.
 * @return {HtmlElement} The DOM element. The default implementation uses a <li>.
 */
    getEl : function(){
        return this.wrap;
    },

    // private
    appendDDGhost : function(ghostNode){
        ghostNode.appendChild(this.elNode.cloneNode(true));
    },

    // private
    getDDRepairXY : function(){
        return Ext.lib.Dom.getXY(this.iconNode);
    },

    // private
    onRender : function(){
        this.render();
    },

    // private
    render : function(bulkRender){
        var n = this.node, a = n.attributes;
        var targetNode = n.parentNode ?
              n.parentNode.ui.getContainer() : n.ownerTree.innerCt.dom;

        if(!this.rendered){
            this.rendered = true;

            this.renderElements(n, a, targetNode, bulkRender);

            if(a.qtip){
                this.onTipChange(n, a.qtip, a.qtipTitle);
            }else if(a.qtipCfg){
                a.qtipCfg.target = Ext.id(this.textNode);
                Ext.QuickTips.register(a.qtipCfg);
            }
            this.initEvents();
            if(!this.node.expanded){
                this.updateExpandIcon(true);
            }
        }else{
            if(bulkRender === true) {
                targetNode.appendChild(this.wrap);
            }
        }
    },

    // private
    renderElements : function(n, a, targetNode, bulkRender){
        // add some indent caching, this helps performance when rendering a large tree
        this.indentMarkup = n.parentNode ? n.parentNode.ui.getChildIndent() : '';

        var cb = Ext.isBoolean(a.checked),
            nel,
            href = this.getHref(a.href),
            buf = ['
  • ',
            '',this.indentMarkup,"",
            '',
            '',
            cb ? ('' : '/>')) : '',
            '',n.text,"
    ",
            '',
            "
    • "].join('');

        if(bulkRender !== true && n.nextSibling && (nel = n.nextSibling.ui.getEl())){
            this.wrap = Ext.DomHelper.insertHtml("beforeBegin", nel, buf);
        }else{
            this.wrap = Ext.DomHelper.insertHtml("beforeEnd", targetNode, buf);
        }

        this.elNode = this.wrap.childNodes[0];
        this.ctNode = this.wrap.childNodes[1];
        var cs = this.elNode.childNodes;
        this.indentNode = cs[0];
        this.ecNode = cs[1];
        this.iconNode = cs[2];
        var index = 3;
        if(cb){
            this.checkbox = cs[3];
            // fix for IE6
            this.checkbox.defaultChecked = this.checkbox.checked;
            index++;
        }
        this.anchor = cs[index];
        this.textNode = cs[index].firstChild;
    },
    
    /**
     * @private Gets a normalized href for the node.
     * @param {String} href
     */
    getHref : function(href){
        return Ext.isEmpty(href) ? (Ext.isGecko ? '' : '#') : href;
    },

/**
 * Returns the <a> element that provides focus for the node's UI.
 * @return {HtmlElement} The DOM anchor element.
 */
    getAnchor : function(){
        return this.anchor;
    },

/**
 * Returns the text node.
 * @return {HtmlNode} The DOM text node.
 */
    getTextEl : function(){
        return this.textNode;
    },

/**
 * Returns the icon <img> element.
 * @return {HtmlElement} The DOM image element.
 */
    getIconEl : function(){
        return this.iconNode;
    },

/**
 * Returns the checked status of the node. If the node was rendered with no
 * checkbox, it returns false.
 * @return {Boolean} The checked flag.
 */
    isChecked : function(){
        return this.checkbox ? this.checkbox.checked : false;
    },

    // private
    updateExpandIcon : function(){
        if(this.rendered){
            var n = this.node,
                c1,
                c2,
                cls = n.isLast() ? "x-tree-elbow-end" : "x-tree-elbow",
                hasChild = n.hasChildNodes();
            if(hasChild || n.attributes.expandable){
                if(n.expanded){
                    cls += "-minus";
                    c1 = "x-tree-node-collapsed";
                    c2 = "x-tree-node-expanded";
                }else{
                    cls += "-plus";
                    c1 = "x-tree-node-expanded";
                    c2 = "x-tree-node-collapsed";
                }
                if(this.wasLeaf){
                    this.removeClass("x-tree-node-leaf");
                    this.wasLeaf = false;
                }
                if(this.c1 != c1 || this.c2 != c2){
                    Ext.fly(this.elNode).replaceClass(c1, c2);
                    this.c1 = c1; this.c2 = c2;
                }
            }else{
                if(!this.wasLeaf){
                    Ext.fly(this.elNode).replaceClass("x-tree-node-expanded", "x-tree-node-collapsed");
                    delete this.c1;
                    delete this.c2;
                    this.wasLeaf = true;
                }
            }
            var ecc = "x-tree-ec-icon "+cls;
            if(this.ecc != ecc){
                this.ecNode.className = ecc;
                this.ecc = ecc;
            }
        }
    },

    // private
    onIdChange: function(id){
        if(this.rendered){
            this.elNode.setAttribute('ext:tree-node-id', id);
        }
    },

    // private
    getChildIndent : function(){
        if(!this.childIndent){
            var buf = [],
                p = this.node;
            while(p){
                if(!p.isRoot || (p.isRoot && p.ownerTree.rootVisible)){
                    if(!p.isLast()) {
                        buf.unshift('');
                    } else {
                        buf.unshift('');
                    }
                }
                p = p.parentNode;
            }
            this.childIndent = buf.join("");
        }
        return this.childIndent;
    },

    // private
    renderIndent : function(){
        if(this.rendered){
            var indent = "",
                p = this.node.parentNode;
            if(p){
                indent = p.ui.getChildIndent();
            }
            if(this.indentMarkup != indent){ // don't rerender if not required
                this.indentNode.innerHTML = indent;
                this.indentMarkup = indent;
            }
            this.updateExpandIcon();
        }
    },

    destroy : function(){
        if(this.elNode){
            Ext.dd.Registry.unregister(this.elNode.id);
        }

        Ext.each(['textnode', 'anchor', 'checkbox', 'indentNode', 'ecNode', 'iconNode', 'elNode', 'ctNode', 'wrap', 'holder'], function(el){
            if(this[el]){
                Ext.fly(this[el]).remove();
                delete this[el];
            }
        }, this);
        delete this.node;
    }
});

/**
 * @class Ext.tree.RootTreeNodeUI
 * This class provides the default UI implementation for root Ext TreeNodes.
 * The RootTreeNode UI implementation allows customizing the appearance of the root tree node.
    
 * 
    
 * If you are customizing the Tree's user interface, you
 * may need to extend this class, but you should never need to instantiate this class.
    
 */
Ext.tree.RootTreeNodeUI = Ext.extend(Ext.tree.TreeNodeUI, {
    // private
    render : function(){
        if(!this.rendered){
            var targetNode = this.node.ownerTree.innerCt.dom;
            this.node.expanded = true;
            targetNode.innerHTML = '
    ';
            this.wrap = this.ctNode = targetNode.firstChild;
        }
    },
    collapse : Ext.emptyFn,
    expand : Ext.emptyFn
});/**
 * @class Ext.tree.TreeLoader
 * @extends Ext.util.Observable
 * A TreeLoader provides for lazy loading of an {@link Ext.tree.TreeNode}'s child
 * nodes from a specified URL. The response must be a JavaScript Array definition
 * whose elements are node definition objects. e.g.:
 * 
    
    [{
        id: 1,
        text: 'A leaf Node',
        leaf: true
    },{
        id: 2,
        text: 'A folder Node',
        children: [{
            id: 3,
            text: 'A child Node',
            leaf: true
        }]
   }]

    
 * 

    
 * A server request is sent, and child nodes are loaded only when a node is expanded.
 * The loading node's id is passed to the server under the parameter name "node" to
 * enable the server to produce the correct child nodes.
 * 

    
 * To pass extra parameters, an event handler may be attached to the "beforeload"
 * event, and the parameters specified in the TreeLoader's baseParams property:
 * 
    
    myTreeLoader.on("beforeload", function(treeLoader, node) {
        this.baseParams.category = node.attributes.category;
    }, this);

    
 * This would pass an HTTP parameter called "category" to the server containing
 * the value of the Node's "category" attribute.
 * @constructor
 * Creates a new Treeloader.
 * @param {Object} config A config object containing config properties.
 */
Ext.tree.TreeLoader = function(config){
    this.baseParams = {};
    Ext.apply(this, config);

    this.addEvents(
        /**
         * @event beforeload
         * Fires before a network request is made to retrieve the Json text which specifies a node's children.
         * @param {Object} This TreeLoader object.
         * @param {Object} node The {@link Ext.tree.TreeNode} object being loaded.
         * @param {Object} callback The callback function specified in the {@link #load} call.
         */
        "beforeload",
        /**
         * @event load
         * Fires when the node has been successfuly loaded.
         * @param {Object} This TreeLoader object.
         * @param {Object} node The {@link Ext.tree.TreeNode} object being loaded.
         * @param {Object} response The response object containing the data from the server.
         */
        "load",
        /**
         * @event loadexception
         * Fires if the network request failed.
         * @param {Object} This TreeLoader object.
         * @param {Object} node The {@link Ext.tree.TreeNode} object being loaded.
         * @param {Object} response The response object containing the data from the server.
         */
        "loadexception"
    );
    Ext.tree.TreeLoader.superclass.constructor.call(this);
    if(Ext.isString(this.paramOrder)){
        this.paramOrder = this.paramOrder.split(/[\s,|]/);
    }
};

Ext.extend(Ext.tree.TreeLoader, Ext.util.Observable, {
    /**
    * @cfg {String} dataUrl The URL from which to request a Json string which
    * specifies an array of node definition objects representing the child nodes
    * to be loaded.
    */
    /**
     * @cfg {String} requestMethod The HTTP request method for loading data (defaults to the value of {@link Ext.Ajax#method}).
     */
    /**
     * @cfg {String} url Equivalent to {@link #dataUrl}.
     */
    /**
     * @cfg {Boolean} preloadChildren If set to true, the loader recursively loads "children" attributes when doing the first load on nodes.
     */
    /**
    * @cfg {Object} baseParams (optional) An object containing properties which
    * specify HTTP parameters to be passed to each request for child nodes.
    */
    /**
    * @cfg {Object} baseAttrs (optional) An object containing attributes to be added to all nodes
    * created by this loader. If the attributes sent by the server have an attribute in this object,
    * they take priority.
    */
    /**
    * @cfg {Object} uiProviders (optional) An object containing properties which
    * specify custom {@link Ext.tree.TreeNodeUI} implementations. If the optional
    * uiProvider attribute of a returned child node is a string rather
    * than a reference to a TreeNodeUI implementation, then that string value
    * is used as a property name in the uiProviders object.
    */
    uiProviders : {},

    /**
    * @cfg {Boolean} clearOnLoad (optional) Default to true. Remove previously existing
    * child nodes before loading.
    */
    clearOnLoad : true,

    /**
     * @cfg {Array/String} paramOrder Defaults to undefined. Only used when using directFn.
     * Specifies the params in the order in which they must be passed to the server-side Direct method
     * as either (1) an Array of String values, or (2) a String of params delimited by either whitespace,
     * comma, or pipe. For example,
     * any of the following would be acceptable:
    
nodeParameter: 'node',
paramOrder: ['param1','param2','param3']
paramOrder: 'node param1 param2 param3'
paramOrder: 'param1,node,param2,param3'
paramOrder: 'param1|param2|param|node'
     
    
     */
    paramOrder: undefined,

    /**
     * @cfg {Boolean} paramsAsHash Only used when using directFn.
     * Send parameters as a collection of named arguments (defaults to false). Providing a
     * {@link #paramOrder} nullifies this configuration.
     */
    paramsAsHash: false,

    /**
     * @cfg {String} nodeParameter The name of the parameter sent to the server which contains
     * the identifier of the node. Defaults to 'node'.
     */
    nodeParameter: 'node',

    /**
     * @cfg {Function} directFn
     * Function to call when executing a request.
     */
    directFn : undefined,

    /**
     * Load an {@link Ext.tree.TreeNode} from the URL specified in the constructor.
     * This is called automatically when a node is expanded, but may be used to reload
     * a node (or append new children if the {@link #clearOnLoad} option is false.)
     * @param {Ext.tree.TreeNode} node
     * @param {Function} callback Function to call after the node has been loaded. The
     * function is passed the TreeNode which was requested to be loaded.
     * @param {Object} scope The scope (this reference) in which the callback is executed.
     * defaults to the loaded TreeNode.
     */
    load : function(node, callback, scope){
        if(this.clearOnLoad){
            while(node.firstChild){
                node.removeChild(node.firstChild);
            }
        }
        if(this.doPreload(node)){ // preloaded json children
            this.runCallback(callback, scope || node, [node]);
        }else if(this.directFn || this.dataUrl || this.url){
            this.requestData(node, callback, scope || node);
        }
    },

    doPreload : function(node){
        if(node.attributes.children){
            if(node.childNodes.length < 1){ // preloaded?
                var cs = node.attributes.children;
                node.beginUpdate();
                for(var i = 0, len = cs.length; i < len; i++){
                    var cn = node.appendChild(this.createNode(cs[i]));
                    if(this.preloadChildren){
                        this.doPreload(cn);
                    }
                }
                node.endUpdate();
            }
            return true;
        }
        return false;
    },

    getParams: function(node){
        var bp = Ext.apply({}, this.baseParams),
            np = this.nodeParameter,
            po = this.paramOrder;

        np && (bp[ np ] = node.id);

        if(this.directFn){
            var buf = [node.id];
            if(po){
                // reset 'buf' if the nodeParameter was included in paramOrder
                if(np && po.indexOf(np) > -1){
                    buf = [];
                }

                for(var i = 0, len = po.length; i < len; i++){
                    buf.push(bp[ po[i] ]);
                }
            }else if(this.paramsAsHash){
                buf = [bp];
            }
            return buf;
        }else{
            return bp;
        }
    },

    requestData : function(node, callback, scope){
        if(this.fireEvent("beforeload", this, node, callback) !== false){
            if(this.directFn){
                var args = this.getParams(node);
                args.push(this.processDirectResponse.createDelegate(this, [{callback: callback, node: node, scope: scope}], true));
                this.directFn.apply(window, args);
            }else{
                this.transId = Ext.Ajax.request({
                    method:this.requestMethod,
                    url: this.dataUrl||this.url,
                    success: this.handleResponse,
                    failure: this.handleFailure,
                    scope: this,
                    argument: {callback: callback, node: node, scope: scope},
                    params: this.getParams(node)
                });
            }
        }else{
            // if the load is cancelled, make sure we notify
            // the node that we are done
            this.runCallback(callback, scope || node, []);
        }
    },

    processDirectResponse: function(result, response, args){
        if(response.status){
            this.handleResponse({
                responseData: Ext.isArray(result) ? result : null,
                responseText: result,
                argument: args
            });
        }else{
            this.handleFailure({
                argument: args
            });
        }
    },

    // private
    runCallback: function(cb, scope, args){
        if(Ext.isFunction(cb)){
            cb.apply(scope, args);
        }
    },

    isLoading : function(){
        return !!this.transId;
    },

    abort : function(){
        if(this.isLoading()){
            Ext.Ajax.abort(this.transId);
        }
    },

    /**
    * 
    Override this function for custom TreeNode node implementation, or to
    * modify the attributes at creation time.
    
    * Example:
    
new Ext.tree.TreePanel({
    ...
    loader: new Ext.tree.TreeLoader({
        url: 'dataUrl',
        createNode: function(attr) {
//          Allow consolidation consignments to have
//          consignments dropped into them.
            if (attr.isConsolidation) {
                attr.iconCls = 'x-consol',
                attr.allowDrop = true;
            }
            return Ext.tree.TreeLoader.prototype.createNode.call(this, attr);
        }
    }),
    ...
});

    
    * @param attr {Object} The attributes from which to create the new node.
    */
    createNode : function(attr){
        // apply baseAttrs, nice idea Corey!
        if(this.baseAttrs){
            Ext.applyIf(attr, this.baseAttrs);
        }
        if(this.applyLoader !== false && !attr.loader){
            attr.loader = this;
        }
        if(Ext.isString(attr.uiProvider)){
           attr.uiProvider = this.uiProviders[attr.uiProvider] || eval(attr.uiProvider);
        }
        if(attr.nodeType){
            return new Ext.tree.TreePanel.nodeTypes[attr.nodeType](attr);
        }else{
            return attr.leaf ?
                        new Ext.tree.TreeNode(attr) :
                        new Ext.tree.AsyncTreeNode(attr);
        }
    },

    processResponse : function(response, node, callback, scope){
        var json = response.responseText;
        try {
            var o = response.responseData || Ext.decode(json);
            node.beginUpdate();
            for(var i = 0, len = o.length; i < len; i++){
                var n = this.createNode(o[i]);
                if(n){
                    node.appendChild(n);
                }
            }
            node.endUpdate();
            this.runCallback(callback, scope || node, [node]);
        }catch(e){
            this.handleFailure(response);
        }
    },

    handleResponse : function(response){
        this.transId = false;
        var a = response.argument;
        this.processResponse(response, a.node, a.callback, a.scope);
        this.fireEvent("load", this, a.node, response);
    },

    handleFailure : function(response){
        this.transId = false;
        var a = response.argument;
        this.fireEvent("loadexception", this, a.node, response);
        this.runCallback(a.callback, a.scope || a.node, [a.node]);
    },

    destroy : function(){
        this.abort();
        this.purgeListeners();
    }
});/**
 * @class Ext.tree.TreeFilter
 * Note this class is experimental and doesn't update the indent (lines) or expand collapse icons of the nodes
 * @param {TreePanel} tree
 * @param {Object} config (optional)
 */
Ext.tree.TreeFilter = function(tree, config){
    this.tree = tree;
    this.filtered = {};
    Ext.apply(this, config);
};

Ext.tree.TreeFilter.prototype = {
    clearBlank:false,
    reverse:false,
    autoClear:false,
    remove:false,

     /**
     * Filter the data by a specific attribute.
     * @param {String/RegExp} value Either string that the attribute value
     * should start with or a RegExp to test against the attribute
     * @param {String} attr (optional) The attribute passed in your node's attributes collection. Defaults to "text".
     * @param {TreeNode} startNode (optional) The node to start the filter at.
     */
    filter : function(value, attr, startNode){
        attr = attr || "text";
        var f;
        if(typeof value == "string"){
            var vlen = value.length;
            // auto clear empty filter
            if(vlen == 0 && this.clearBlank){
                this.clear();
                return;
            }
            value = value.toLowerCase();
            f = function(n){
                return n.attributes[attr].substr(0, vlen).toLowerCase() == value;
            };
        }else if(value.exec){ // regex?
            f = function(n){
                return value.test(n.attributes[attr]);
            };
        }else{
            throw 'Illegal filter type, must be string or regex';
        }
        this.filterBy(f, null, startNode);
	},

    /**
     * Filter by a function. The passed function will be called with each
     * node in the tree (or from the startNode). If the function returns true, the node is kept
     * otherwise it is filtered. If a node is filtered, its children are also filtered.
     * @param {Function} fn The filter function
     * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to the current Node.
     */
    filterBy : function(fn, scope, startNode){
        startNode = startNode || this.tree.root;
        if(this.autoClear){
            this.clear();
        }
        var af = this.filtered, rv = this.reverse;
        var f = function(n){
            if(n == startNode){
                return true;
            }
            if(af[n.id]){
                return false;
            }
            var m = fn.call(scope || n, n);
            if(!m || rv){
                af[n.id] = n;
                n.ui.hide();
                return false;
            }
            return true;
        };
        startNode.cascade(f);
        if(this.remove){
           for(var id in af){
               if(typeof id != "function"){
                   var n = af[id];
                   if(n && n.parentNode){
                       n.parentNode.removeChild(n);
                   }
               }
           }
        }
    },

    /**
     * Clears the current filter. Note: with the "remove" option
     * set a filter cannot be cleared.
     */
    clear : function(){
        var t = this.tree;
        var af = this.filtered;
        for(var id in af){
            if(typeof id != "function"){
                var n = af[id];
                if(n){
                    n.ui.show();
                }
            }
        }
        this.filtered = {};
    }
};
/**
 * @class Ext.tree.TreeSorter
 * Provides sorting of nodes in a {@link Ext.tree.TreePanel}.  The TreeSorter automatically monitors events on the
 * associated TreePanel that might affect the tree's sort order (beforechildrenrendered, append, insert and textchange).
 * Example usage:
    
 * 
    
new Ext.tree.TreeSorter(myTree, {
    folderSort: true,
    dir: "desc",
    sortType: function(value, node) {
        // sort by a custom, typed attribute:
        return parseInt(node.id, 10);
    }
});

    
 * @constructor
 * @param {TreePanel} tree
 * @param {Object} config
 */
Ext.tree.TreeSorter = Ext.extend(Object, {
    
    constructor: function(tree, config){
        /**
     * @cfg {Boolean} folderSort True to sort leaf nodes under non-leaf nodes (defaults to false)
     */
    /**
     * @cfg {String} property The named attribute on the node to sort by (defaults to "text").  Note that this
     * property is only used if no {@link #sortType} function is specified, otherwise it is ignored.
     */
    /**
     * @cfg {String} dir The direction to sort ("asc" or "desc," case-insensitive, defaults to "asc")
     */
    /**
     * @cfg {String} leafAttr The attribute used to determine leaf nodes when {@link #folderSort} = true (defaults to "leaf")
     */
    /**
     * @cfg {Boolean} caseSensitive true for case-sensitive sort (defaults to false)
     */
    /**
     * @cfg {Function} sortType A custom "casting" function used to convert node values before sorting.  The function
     * will be called with a two parameters, the {@link #property} value for the node and the {@link Ext.tree.TreeNode} being evaluated. 
     * It is expected to return the node's sort value cast to the specific data type required for sorting.  This could be used, for example, when
     * a node's text (or other attribute) should be sorted as a date or numeric value.  See the class description for
     * example usage.
     */

    Ext.apply(this, config);
    tree.on({
        scope: this,
        beforechildrenrendered: this.doSort,
        append: this.updateSort,
        insert: this.updateSort,
        textchange: this.updateSortParent
    });

    var desc = this.dir && this.dir.toLowerCase() == 'desc',
        prop = this.property || 'text',
        sortType = this.sortType,
        folderSort = this.folderSort,
        caseSensitive = this.caseSensitive === true,
        leafAttr = this.leafAttr || 'leaf';

    if(Ext.isString(sortType)){
        sortType = Ext.data.SortTypes[sortType];
    }
    this.sortFn = function(n1, n2){
        var attr1 = n1.attributes,
            attr2 = n2.attributes;
            
        if(folderSort){
            if(attr1[leafAttr] && !attr2[leafAttr]){
                return 1;
            }
            if(!attr1[leafAttr] && attr2[leafAttr]){
                return -1;
            }
        }
        var prop1 = attr1[prop],
            prop2 = attr2[prop],
            v1 = sortType ? sortType(prop1, n1) : (caseSensitive ? prop1 : prop1.toUpperCase()),
            v2 = sortType ? sortType(prop2, n2) : (caseSensitive ? prop2 : prop2.toUpperCase());
            
        if(v1 < v2){
            return desc ? 1 : -1;
        }else if(v1 > v2){
            return desc ? -1 : 1;
        }
        return 0;
    };
    },
    
    doSort : function(node){
        node.sort(this.sortFn);
    },

    updateSort : function(tree, node){
        if(node.childrenRendered){
            this.doSort.defer(1, this, [node]);
        }
    },

    updateSortParent : function(node){
        var p = node.parentNode;
        if(p && p.childrenRendered){
            this.doSort.defer(1, this, [p]);
        }
    }    
});
/**
 * @class Ext.tree.TreeDropZone
 * @extends Ext.dd.DropZone
 * @constructor
 * @param {String/HTMLElement/Element} tree The {@link Ext.tree.TreePanel} for which to enable dropping
 * @param {Object} config
 */
if(Ext.dd.DropZone){
    
Ext.tree.TreeDropZone = function(tree, config){
    /**
     * @cfg {Boolean} allowParentInsert
     * Allow inserting a dragged node between an expanded parent node and its first child that will become a
     * sibling of the parent when dropped (defaults to false)
     */
    this.allowParentInsert = config.allowParentInsert || false;
    /**
     * @cfg {String} allowContainerDrop
     * True if drops on the tree container (outside of a specific tree node) are allowed (defaults to false)
     */
    this.allowContainerDrop = config.allowContainerDrop || false;
    /**
     * @cfg {String} appendOnly
     * True if the tree should only allow append drops (use for trees which are sorted, defaults to false)
     */
    this.appendOnly = config.appendOnly || false;

    Ext.tree.TreeDropZone.superclass.constructor.call(this, tree.getTreeEl(), config);
    /**
    * The TreePanel for this drop zone
    * @type Ext.tree.TreePanel
    * @property
    */
    this.tree = tree;
    /**
    * Arbitrary data that can be associated with this tree and will be included in the event object that gets
    * passed to any nodedragover event handler (defaults to {})
    * @type Ext.tree.TreePanel
    * @property
    */
    this.dragOverData = {};
    // private
    this.lastInsertClass = "x-tree-no-status";
};

Ext.extend(Ext.tree.TreeDropZone, Ext.dd.DropZone, {
    /**
     * @cfg {String} ddGroup
     * A named drag drop group to which this object belongs.  If a group is specified, then this object will only
     * interact with other drag drop objects in the same group (defaults to 'TreeDD').
     */
    ddGroup : "TreeDD",

    /**
     * @cfg {String} expandDelay
     * The delay in milliseconds to wait before expanding a target tree node while dragging a droppable node
     * over the target (defaults to 1000)
     */
    expandDelay : 1000,

    // private
    expandNode : function(node){
        if(node.hasChildNodes() && !node.isExpanded()){
            node.expand(false, null, this.triggerCacheRefresh.createDelegate(this));
        }
    },

    // private
    queueExpand : function(node){
        this.expandProcId = this.expandNode.defer(this.expandDelay, this, [node]);
    },

    // private
    cancelExpand : function(){
        if(this.expandProcId){
            clearTimeout(this.expandProcId);
            this.expandProcId = false;
        }
    },

    // private
    isValidDropPoint : function(n, pt, dd, e, data){
        if(!n || !data){ return false; }
        var targetNode = n.node;
        var dropNode = data.node;
        // default drop rules
        if(!(targetNode && targetNode.isTarget && pt)){
            return false;
        }
        if(pt == "append" && targetNode.allowChildren === false){
            return false;
        }
        if((pt == "above" || pt == "below") && (targetNode.parentNode && targetNode.parentNode.allowChildren === false)){
            return false;
        }
        if(dropNode && (targetNode == dropNode || dropNode.contains(targetNode))){
            return false;
        }
        // reuse the object
        var overEvent = this.dragOverData;
        overEvent.tree = this.tree;
        overEvent.target = targetNode;
        overEvent.data = data;
        overEvent.point = pt;
        overEvent.source = dd;
        overEvent.rawEvent = e;
        overEvent.dropNode = dropNode;
        overEvent.cancel = false;  
        var result = this.tree.fireEvent("nodedragover", overEvent);
        return overEvent.cancel === false && result !== false;
    },

    // private
    getDropPoint : function(e, n, dd){
        var tn = n.node;
        if(tn.isRoot){
            return tn.allowChildren !== false ? "append" : false; // always append for root
        }
        var dragEl = n.ddel;
        var t = Ext.lib.Dom.getY(dragEl), b = t + dragEl.offsetHeight;
        var y = Ext.lib.Event.getPageY(e);
        var noAppend = tn.allowChildren === false || tn.isLeaf();
        if(this.appendOnly || tn.parentNode.allowChildren === false){
            return noAppend ? false : "append";
        }
        var noBelow = false;
        if(!this.allowParentInsert){
            noBelow = tn.hasChildNodes() && tn.isExpanded();
        }
        var q = (b - t) / (noAppend ? 2 : 3);
        if(y >= t && y < (t + q)){
            return "above";
        }else if(!noBelow && (noAppend || y >= b-q && y <= b)){
            return "below";
        }else{
            return "append";
        }
    },

    // private
    onNodeEnter : function(n, dd, e, data){
        this.cancelExpand();
    },
    
    onContainerOver : function(dd, e, data) {
        if (this.allowContainerDrop && this.isValidDropPoint({ ddel: this.tree.getRootNode().ui.elNode, node: this.tree.getRootNode() }, "append", dd, e, data)) {
            return this.dropAllowed;
        }
        return this.dropNotAllowed;
    },

    // private
    onNodeOver : function(n, dd, e, data){
        var pt = this.getDropPoint(e, n, dd);
        var node = n.node;
        
        // auto node expand check
        if(!this.expandProcId && pt == "append" && node.hasChildNodes() && !n.node.isExpanded()){
            this.queueExpand(node);
        }else if(pt != "append"){
            this.cancelExpand();
        }
        
        // set the insert point style on the target node
        var returnCls = this.dropNotAllowed;
        if(this.isValidDropPoint(n, pt, dd, e, data)){
           if(pt){
               var el = n.ddel;
               var cls;
               if(pt == "above"){
                   returnCls = n.node.isFirst() ? "x-tree-drop-ok-above" : "x-tree-drop-ok-between";
                   cls = "x-tree-drag-insert-above";
               }else if(pt == "below"){
                   returnCls = n.node.isLast() ? "x-tree-drop-ok-below" : "x-tree-drop-ok-between";
                   cls = "x-tree-drag-insert-below";
               }else{
                   returnCls = "x-tree-drop-ok-append";
                   cls = "x-tree-drag-append";
               }
               if(this.lastInsertClass != cls){
                   Ext.fly(el).replaceClass(this.lastInsertClass, cls);
                   this.lastInsertClass = cls;
               }
           }
       }
       return returnCls;
    },

    // private
    onNodeOut : function(n, dd, e, data){
        this.cancelExpand();
        this.removeDropIndicators(n);
    },

    // private
    onNodeDrop : function(n, dd, e, data){
        var point = this.getDropPoint(e, n, dd);
        var targetNode = n.node;
        targetNode.ui.startDrop();
        if(!this.isValidDropPoint(n, point, dd, e, data)){
            targetNode.ui.endDrop();
            return false;
        }
        // first try to find the drop node
        var dropNode = data.node || (dd.getTreeNode ? dd.getTreeNode(data, targetNode, point, e) : null);
        return this.processDrop(targetNode, data, point, dd, e, dropNode);
    },
    
    onContainerDrop : function(dd, e, data){
        if (this.allowContainerDrop && this.isValidDropPoint({ ddel: this.tree.getRootNode().ui.elNode, node: this.tree.getRootNode() }, "append", dd, e, data)) {
            var targetNode = this.tree.getRootNode();       
            targetNode.ui.startDrop();
            var dropNode = data.node || (dd.getTreeNode ? dd.getTreeNode(data, targetNode, 'append', e) : null);
            return this.processDrop(targetNode, data, 'append', dd, e, dropNode);
        }
        return false;
    },
    
    // private
    processDrop: function(target, data, point, dd, e, dropNode){
        var dropEvent = {
            tree : this.tree,
            target: target,
            data: data,
            point: point,
            source: dd,
            rawEvent: e,
            dropNode: dropNode,
            cancel: !dropNode,
            dropStatus: false
        };
        var retval = this.tree.fireEvent("beforenodedrop", dropEvent);
        if(retval === false || dropEvent.cancel === true || !dropEvent.dropNode){
            target.ui.endDrop();
            return dropEvent.dropStatus;
        }
    
        target = dropEvent.target;
        if(point == 'append' && !target.isExpanded()){
            target.expand(false, null, function(){
                this.completeDrop(dropEvent);
            }.createDelegate(this));
        }else{
            this.completeDrop(dropEvent);
        }
        return true;
    },

    // private
    completeDrop : function(de){
        var ns = de.dropNode, p = de.point, t = de.target;
        if(!Ext.isArray(ns)){
            ns = [ns];
        }
        var n;
        for(var i = 0, len = ns.length; i < len; i++){
            n = ns[i];
            if(p == "above"){
                t.parentNode.insertBefore(n, t);
            }else if(p == "below"){
                t.parentNode.insertBefore(n, t.nextSibling);
            }else{
                t.appendChild(n);
            }
        }
        n.ui.focus();
        if(Ext.enableFx && this.tree.hlDrop){
            n.ui.highlight();
        }
        t.ui.endDrop();
        this.tree.fireEvent("nodedrop", de);
    },

    // private
    afterNodeMoved : function(dd, data, e, targetNode, dropNode){
        if(Ext.enableFx && this.tree.hlDrop){
            dropNode.ui.focus();
            dropNode.ui.highlight();
        }
        this.tree.fireEvent("nodedrop", this.tree, targetNode, data, dd, e);
    },

    // private
    getTree : function(){
        return this.tree;
    },

    // private
    removeDropIndicators : function(n){
        if(n && n.ddel){
            var el = n.ddel;
            Ext.fly(el).removeClass([
                    "x-tree-drag-insert-above",
                    "x-tree-drag-insert-below",
                    "x-tree-drag-append"]);
            this.lastInsertClass = "_noclass";
        }
    },

    // private
    beforeDragDrop : function(target, e, id){
        this.cancelExpand();
        return true;
    },

    // private
    afterRepair : function(data){
        if(data && Ext.enableFx){
            data.node.ui.highlight();
        }
        this.hideProxy();
    }    
});

}/**
 * @class Ext.tree.TreeDragZone
 * @extends Ext.dd.DragZone
 * @constructor
 * @param {String/HTMLElement/Element} tree The {@link Ext.tree.TreePanel} for which to enable dragging
 * @param {Object} config
 */
if(Ext.dd.DragZone){
Ext.tree.TreeDragZone = function(tree, config){
    Ext.tree.TreeDragZone.superclass.constructor.call(this, tree.innerCt, config);
    /**
    * The TreePanel for this drag zone
    * @type Ext.tree.TreePanel
    * @property
    */
    this.tree = tree;
};

Ext.extend(Ext.tree.TreeDragZone, Ext.dd.DragZone, {
    /**
     * @cfg {String} ddGroup
     * A named drag drop group to which this object belongs.  If a group is specified, then this object will only
     * interact with other drag drop objects in the same group (defaults to 'TreeDD').
     */
    ddGroup : "TreeDD",

    // private
    onBeforeDrag : function(data, e){
        var n = data.node;
        return n && n.draggable && !n.disabled;
    },

    // private
    onInitDrag : function(e){
        var data = this.dragData;
        this.tree.getSelectionModel().select(data.node);
        this.tree.eventModel.disable();
        this.proxy.update("");
        data.node.ui.appendDDGhost(this.proxy.ghost.dom);
        this.tree.fireEvent("startdrag", this.tree, data.node, e);
    },

    // private
    getRepairXY : function(e, data){
        return data.node.ui.getDDRepairXY();
    },

    // private
    onEndDrag : function(data, e){
        this.tree.eventModel.enable.defer(100, this.tree.eventModel);
        this.tree.fireEvent("enddrag", this.tree, data.node, e);
    },

    // private
    onValidDrop : function(dd, e, id){
        this.tree.fireEvent("dragdrop", this.tree, this.dragData.node, dd, e);
        this.hideProxy();
    },

    // private
    beforeInvalidDrop : function(e, id){
        // this scrolls the original position back into view
        var sm = this.tree.getSelectionModel();
        sm.clearSelections();
        sm.select(this.dragData.node);
    },
    
    // private
    afterRepair : function(){
        if (Ext.enableFx && this.tree.hlDrop) {
            Ext.Element.fly(this.dragData.ddel).highlight(this.hlColor || "c3daf9");
        }
        this.dragging = false;
    }
});
}/**
 * @class Ext.tree.TreeEditor
 * @extends Ext.Editor
 * Provides editor functionality for inline tree node editing.  Any valid {@link Ext.form.Field} subclass can be used
 * as the editor field.
 * @constructor
 * @param {TreePanel} tree
 * @param {Object} fieldConfig (optional) Either a prebuilt {@link Ext.form.Field} instance or a Field config object
 * that will be applied to the default field instance (defaults to a {@link Ext.form.TextField}).
 * @param {Object} config (optional) A TreeEditor config object
 */
Ext.tree.TreeEditor = function(tree, fc, config){
    fc = fc || {};
    var field = fc.events ? fc : new Ext.form.TextField(fc);
    
    Ext.tree.TreeEditor.superclass.constructor.call(this, field, config);

    this.tree = tree;

    if(!tree.rendered){
        tree.on('render', this.initEditor, this);
    }else{
        this.initEditor(tree);
    }
};

Ext.extend(Ext.tree.TreeEditor, Ext.Editor, {
    /**
     * @cfg {String} alignment
     * The position to align to (see {@link Ext.Element#alignTo} for more details, defaults to "l-l").
     */
    alignment: "l-l",
    // inherit
    autoSize: false,
    /**
     * @cfg {Boolean} hideEl
     * True to hide the bound element while the editor is displayed (defaults to false)
     */
    hideEl : false,
    /**
     * @cfg {String} cls
     * CSS class to apply to the editor (defaults to "x-small-editor x-tree-editor")
     */
    cls: "x-small-editor x-tree-editor",
    /**
     * @cfg {Boolean} shim
     * True to shim the editor if selects/iframes could be displayed beneath it (defaults to false)
     */
    shim:false,
    // inherit
    shadow:"frame",
    /**
     * @cfg {Number} maxWidth
     * The maximum width in pixels of the editor field (defaults to 250).  Note that if the maxWidth would exceed
     * the containing tree element's size, it will be automatically limited for you to the container width, taking
     * scroll and client offsets into account prior to each edit.
     */
    maxWidth: 250,
    /**
     * @cfg {Number} editDelay The number of milliseconds between clicks to register a double-click that will trigger
     * editing on the current node (defaults to 350).  If two clicks occur on the same node within this time span,
     * the editor for the node will display, otherwise it will be processed as a regular click.
     */
    editDelay : 350,

    initEditor : function(tree){
        tree.on({
            scope      : this,
            beforeclick: this.beforeNodeClick,
            dblclick   : this.onNodeDblClick
        });
        
        this.on({
            scope          : this,
            complete       : this.updateNode,
            beforestartedit: this.fitToTree,
            specialkey     : this.onSpecialKey
        });
        
        this.on('startedit', this.bindScroll, this, {delay:10});
    },

    // private
    fitToTree : function(ed, el){
        var td = this.tree.getTreeEl().dom, nd = el.dom;
        if(td.scrollLeft >  nd.offsetLeft){ // ensure the node left point is visible
            td.scrollLeft = nd.offsetLeft;
        }
        var w = Math.min(
                this.maxWidth,
                (td.clientWidth > 20 ? td.clientWidth : td.offsetWidth) - Math.max(0, nd.offsetLeft-td.scrollLeft) - /*cushion*/5);
        this.setSize(w, '');
    },

    /**
     * Edit the text of the passed {@link Ext.tree.TreeNode TreeNode}.
     * @param node {Ext.tree.TreeNode} The TreeNode to edit. The TreeNode must be {@link Ext.tree.TreeNode#editable editable}.
     */
    triggerEdit : function(node, defer){
        this.completeEdit();
		if(node.attributes.editable !== false){
           /**
            * The {@link Ext.tree.TreeNode TreeNode} this editor is bound to. Read-only.
            * @type Ext.tree.TreeNode
            * @property editNode
            */
			this.editNode = node;
            if(this.tree.autoScroll){
                Ext.fly(node.ui.getEl()).scrollIntoView(this.tree.body);
            }
            var value = node.text || '';
            if (!Ext.isGecko && Ext.isEmpty(node.text)){
                node.setText(' ');
            }
            this.autoEditTimer = this.startEdit.defer(this.editDelay, this, [node.ui.textNode, value]);
            return false;
        }
    },

    // private
    bindScroll : function(){
        this.tree.getTreeEl().on('scroll', this.cancelEdit, this);
    },

    // private
    beforeNodeClick : function(node, e){
        clearTimeout(this.autoEditTimer);
        if(this.tree.getSelectionModel().isSelected(node)){
            e.stopEvent();
            return this.triggerEdit(node);
        }
    },

    onNodeDblClick : function(node, e){
        clearTimeout(this.autoEditTimer);
    },

    // private
    updateNode : function(ed, value){
        this.tree.getTreeEl().un('scroll', this.cancelEdit, this);
        this.editNode.setText(value);
    },

    // private
    onHide : function(){
        Ext.tree.TreeEditor.superclass.onHide.call(this);
        if(this.editNode){
            this.editNode.ui.focus.defer(50, this.editNode.ui);
        }
    },

    // private
    onSpecialKey : function(field, e){
        var k = e.getKey();
        if(k == e.ESC){
            e.stopEvent();
            this.cancelEdit();
        }else if(k == e.ENTER && !e.hasModifier()){
            e.stopEvent();
            this.completeEdit();
        }
    },
    
    onDestroy : function(){
        clearTimeout(this.autoEditTimer);
        Ext.tree.TreeEditor.superclass.onDestroy.call(this);
        var tree = this.tree;
        tree.un('beforeclick', this.beforeNodeClick, this);
        tree.un('dblclick', this.onNodeDblClick, this);
    }
});/*! SWFObject v2.2  
    is released under the MIT License  
*/

var swfobject = function() {
    
    var UNDEF = "undefined",
        OBJECT = "object",
        SHOCKWAVE_FLASH = "Shockwave Flash",
        SHOCKWAVE_FLASH_AX = "ShockwaveFlash.ShockwaveFlash",
        FLASH_MIME_TYPE = "application/x-shockwave-flash",
        EXPRESS_INSTALL_ID = "SWFObjectExprInst",
        ON_READY_STATE_CHANGE = "onreadystatechange",
        
        win = window,
        doc = document,
        nav = navigator,
        
        plugin = false,
        domLoadFnArr = [main],
        regObjArr = [],
        objIdArr = [],
        listenersArr = [],
        storedAltContent,
        storedAltContentId,
        storedCallbackFn,
        storedCallbackObj,
        isDomLoaded = false,
        isExpressInstallActive = false,
        dynamicStylesheet,
        dynamicStylesheetMedia,
        autoHideShow = true,
    
    /* Centralized function for browser feature detection
        - User agent string detection is only used when no good alternative is possible
        - Is executed directly for optimal performance
    */  
    ua = function() {
        var w3cdom = typeof doc.getElementById != UNDEF && typeof doc.getElementsByTagName != UNDEF && typeof doc.createElement != UNDEF,
            u = nav.userAgent.toLowerCase(),
            p = nav.platform.toLowerCase(),
            windows = p ? (/win/).test(p) : /win/.test(u),
            mac = p ? (/mac/).test(p) : /mac/.test(u),
            webkit = /webkit/.test(u) ? parseFloat(u.replace(/^.*webkit\/(\d+(\.\d+)?).*$/, "$1")) : false, // returns either the webkit version or false if not webkit
            ie = !+"\v1", // feature detection based on Andrea Giammarchi's solution: http://webreflection.blogspot.com/2009/01/32-bytes-to-know-if-your-browser-is-ie.html
            playerVersion = [0,0,0],
            d = null;
        if (typeof nav.plugins != UNDEF && typeof nav.plugins[SHOCKWAVE_FLASH] == OBJECT) {
            d = nav.plugins[SHOCKWAVE_FLASH].description;
            if (d && !(typeof nav.mimeTypes != UNDEF && nav.mimeTypes[FLASH_MIME_TYPE] && !nav.mimeTypes[FLASH_MIME_TYPE].enabledPlugin)) { // navigator.mimeTypes["application/x-shockwave-flash"].enabledPlugin indicates whether plug-ins are enabled or disabled in Safari 3+
                plugin = true;
                ie = false; // cascaded feature detection for Internet Explorer
                d = d.replace(/^.*\s+(\S+\s+\S+$)/, "$1");
                playerVersion[0] = parseInt(d.replace(/^(.*)\..*$/, "$1"), 10);
                playerVersion[1] = parseInt(d.replace(/^.*\.(.*)\s.*$/, "$1"), 10);
                playerVersion[2] = /[a-zA-Z]/.test(d) ? parseInt(d.replace(/^.*[a-zA-Z]+(.*)$/, "$1"), 10) : 0;
            }
        }
        else if (typeof win.ActiveXObject != UNDEF) {
            try {
                var a = new ActiveXObject(SHOCKWAVE_FLASH_AX);
                if (a) { // a will return null when ActiveX is disabled
                    d = a.GetVariable("$version");
                    if (d) {
                        ie = true; // cascaded feature detection for Internet Explorer
                        d = d.split(" ")[1].split(",");
                        playerVersion = [parseInt(d[0], 10), parseInt(d[1], 10), parseInt(d[2], 10)];
                    }
                }
            }
            catch(e) {}
        }
        return { w3:w3cdom, pv:playerVersion, wk:webkit, ie:ie, win:windows, mac:mac };
    }(),
    
    /* Cross-browser onDomLoad
        - Will fire an event as soon as the DOM of a web page is loaded
        - Internet Explorer workaround based on Diego Perini's solution: http://javascript.nwbox.com/IEContentLoaded/
        - Regular onload serves as fallback
    */ 
    onDomLoad = function() {
        if (!ua.w3) { return; }
        if ((typeof doc.readyState != UNDEF && doc.readyState == "complete") || (typeof doc.readyState == UNDEF && (doc.getElementsByTagName("body")[0] || doc.body))) { // function is fired after onload, e.g. when script is inserted dynamically 
            callDomLoadFunctions();
        }
        if (!isDomLoaded) {
            if (typeof doc.addEventListener != UNDEF) {
                doc.addEventListener("DOMContentLoaded", callDomLoadFunctions, false);
            }       
            if (ua.ie && ua.win) {
                doc.attachEvent(ON_READY_STATE_CHANGE, function() {
                    if (doc.readyState == "complete") {
                        doc.detachEvent(ON_READY_STATE_CHANGE, arguments.callee);
                        callDomLoadFunctions();
                    }
                });
                if (win == top) { // if not inside an iframe
                    (function(){
                        if (isDomLoaded) { return; }
                        try {
                            doc.documentElement.doScroll("left");
                        }
                        catch(e) {
                            setTimeout(arguments.callee, 0);
                            return;
                        }
                        callDomLoadFunctions();
                    })();
                }
            }
            if (ua.wk) {
                (function(){
                    if (isDomLoaded) { return; }
                    if (!(/loaded|complete/).test(doc.readyState)) {
                        setTimeout(arguments.callee, 0);
                        return;
                    }
                    callDomLoadFunctions();
                })();
            }
            addLoadEvent(callDomLoadFunctions);
        }
    }();
    
    function callDomLoadFunctions() {
        if (isDomLoaded) { return; }
        try { // test if we can really add/remove elements to/from the DOM; we don't want to fire it too early
            var t = doc.getElementsByTagName("body")[0].appendChild(createElement("span"));
            t.parentNode.removeChild(t);
        }
        catch (e) { return; }
        isDomLoaded = true;
        var dl = domLoadFnArr.length;
        for (var i = 0; i < dl; i++) {
            domLoadFnArr[i]();
        }
    }
    
    function addDomLoadEvent(fn) {
        if (isDomLoaded) {
            fn();
        }
        else { 
            domLoadFnArr[domLoadFnArr.length] = fn; // Array.push() is only available in IE5.5+
        }
    }
    
    /* Cross-browser onload
        - Based on James Edwards' solution: http://brothercake.com/site/resources/scripts/onload/
        - Will fire an event as soon as a web page including all of its assets are loaded 
     */
    function addLoadEvent(fn) {
        if (typeof win.addEventListener != UNDEF) {
            win.addEventListener("load", fn, false);
        }
        else if (typeof doc.addEventListener != UNDEF) {
            doc.addEventListener("load", fn, false);
        }
        else if (typeof win.attachEvent != UNDEF) {
            addListener(win, "onload", fn);
        }
        else if (typeof win.onload == "function") {
            var fnOld = win.onload;
            win.onload = function() {
                fnOld();
                fn();
            };
        }
        else {
            win.onload = fn;
        }
    }
    
    /* Main function
        - Will preferably execute onDomLoad, otherwise onload (as a fallback)
    */
    function main() { 
        if (plugin) {
            testPlayerVersion();
        }
        else {
            matchVersions();
        }
    }
    
    /* Detect the Flash Player version for non-Internet Explorer browsers
        - Detecting the plug-in version via the object element is more precise than using the plugins collection item's description:
          a. Both release and build numbers can be detected
          b. Avoid wrong descriptions by corrupt installers provided by Adobe
          c. Avoid wrong descriptions by multiple Flash Player entries in the plugin Array, caused by incorrect browser imports
        - Disadvantage of this method is that it depends on the availability of the DOM, while the plugins collection is immediately available
    */
    function testPlayerVersion() {
        var b = doc.getElementsByTagName("body")[0];
        var o = createElement(OBJECT);
        o.setAttribute("type", FLASH_MIME_TYPE);
        var t = b.appendChild(o);
        if (t) {
            var counter = 0;
            (function(){
                if (typeof t.GetVariable != UNDEF) {
                    var d = t.GetVariable("$version");
                    if (d) {
                        d = d.split(" ")[1].split(",");
                        ua.pv = [parseInt(d[0], 10), parseInt(d[1], 10), parseInt(d[2], 10)];
                    }
                }
                else if (counter < 10) {
                    counter++;
                    setTimeout(arguments.callee, 10);
                    return;
                }
                b.removeChild(o);
                t = null;
                matchVersions();
            })();
        }
        else {
            matchVersions();
        }
    }
    
    /* Perform Flash Player and SWF version matching; static publishing only
    */
    function matchVersions() {
        var rl = regObjArr.length;
        if (rl > 0) {
            for (var i = 0; i < rl; i++) { // for each registered object element
                var id = regObjArr[i].id;
                var cb = regObjArr[i].callbackFn;
                var cbObj = {success:false, id:id};
                if (ua.pv[0] > 0) {
                    var obj = getElementById(id);
                    if (obj) {
                        if (hasPlayerVersion(regObjArr[i].swfVersion) && !(ua.wk && ua.wk < 312)) { // Flash Player version >= published SWF version: Houston, we have a match!
                            setVisibility(id, true);
                            if (cb) {
                                cbObj.success = true;
                                cbObj.ref = getObjectById(id);
                                cb(cbObj);
                            }
                        }
                        else if (regObjArr[i].expressInstall && canExpressInstall()) { // show the Adobe Express Install dialog if set by the web page author and if supported
                            var att = {};
                            att.data = regObjArr[i].expressInstall;
                            att.width = obj.getAttribute("width") || "0";
                            att.height = obj.getAttribute("height") || "0";
                            if (obj.getAttribute("class")) { att.styleclass = obj.getAttribute("class"); }
                            if (obj.getAttribute("align")) { att.align = obj.getAttribute("align"); }
                            // parse HTML object param element's name-value pairs
                            var par = {};
                            var p = obj.getElementsByTagName("param");
                            var pl = p.length;
                            for (var j = 0; j < pl; j++) {
                                if (p[j].getAttribute("name").toLowerCase() != "movie") {
                                    par[p[j].getAttribute("name")] = p[j].getAttribute("value");
                                }
                            }
                            showExpressInstall(att, par, id, cb);
                        }
                        else { // Flash Player and SWF version mismatch or an older Webkit engine that ignores the HTML object element's nested param elements: display alternative content instead of SWF
                            displayAltContent(obj);
                            if (cb) { cb(cbObj); }
                        }
                    }
                }
                else {  // if no Flash Player is installed or the fp version cannot be detected we let the HTML object element do its job (either show a SWF or alternative content)
                    setVisibility(id, true);
                    if (cb) {
                        var o = getObjectById(id); // test whether there is an HTML object element or not
                        if (o && typeof o.SetVariable != UNDEF) { 
                            cbObj.success = true;
                            cbObj.ref = o;
                        }
                        cb(cbObj);
                    }
                }
            }
        }
    }
    
    function getObjectById(objectIdStr) {
        var r = null;
        var o = getElementById(objectIdStr);
        if (o && o.nodeName == "OBJECT") {
            if (typeof o.SetVariable != UNDEF) {
                r = o;
            }
            else {
                var n = o.getElementsByTagName(OBJECT)[0];
                if (n) {
                    r = n;
                }
            }
        }
        return r;
    }
    
    /* Requirements for Adobe Express Install
        - only one instance can be active at a time
        - fp 6.0.65 or higher
        - Win/Mac OS only
        - no Webkit engines older than version 312
    */
    function canExpressInstall() {
        return !isExpressInstallActive && hasPlayerVersion("6.0.65") && (ua.win || ua.mac) && !(ua.wk && ua.wk < 312);
    }
    
    /* Show the Adobe Express Install dialog
        - Reference: http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=6a253b75
    */
    function showExpressInstall(att, par, replaceElemIdStr, callbackFn) {
        isExpressInstallActive = true;
        storedCallbackFn = callbackFn || null;
        storedCallbackObj = {success:false, id:replaceElemIdStr};
        var obj = getElementById(replaceElemIdStr);
        if (obj) {
            if (obj.nodeName == "OBJECT") { // static publishing
                storedAltContent = abstractAltContent(obj);
                storedAltContentId = null;
            }
            else { // dynamic publishing
                storedAltContent = obj;
                storedAltContentId = replaceElemIdStr;
            }
            att.id = EXPRESS_INSTALL_ID;
            if (typeof att.width == UNDEF || (!(/%$/).test(att.width) && parseInt(att.width, 10) < 310)) {
                att.width = "310";
            }
            
            if (typeof att.height == UNDEF || (!(/%$/).test(att.height) && parseInt(att.height, 10) < 137)) {
                att.height = "137";
            }
            doc.title = doc.title.slice(0, 47) + " - Flash Player Installation";
            var pt = ua.ie && ua.win ? "ActiveX" : "PlugIn",
                fv = "MMredirectURL=" + win.location.toString().replace(/&/g,"%26") + "&MMplayerType=" + pt + "&MMdoctitle=" + doc.title;
            if (typeof par.flashvars != UNDEF) {
                par.flashvars += "&" + fv;
            }
            else {
                par.flashvars = fv;
            }
            // IE only: when a SWF is loading (AND: not available in cache) wait for the readyState of the object element to become 4 before removing it,
            // because you cannot properly cancel a loading SWF file without breaking browser load references, also obj.onreadystatechange doesn't work
            if (ua.ie && ua.win && obj.readyState != 4) {
                var newObj = createElement("div");
                replaceElemIdStr += "SWFObjectNew";
                newObj.setAttribute("id", replaceElemIdStr);
                obj.parentNode.insertBefore(newObj, obj); // insert placeholder div that will be replaced by the object element that loads expressinstall.swf
                obj.style.display = "none";
                (function(){
                    if (obj.readyState == 4) {
                        obj.parentNode.removeChild(obj);
                    }
                    else {
                        setTimeout(arguments.callee, 10);
                    }
                })();
            }
            createSWF(att, par, replaceElemIdStr);
        }
    }
    
    /* Functions to abstract and display alternative content
    */
    function displayAltContent(obj) {
        if (ua.ie && ua.win && obj.readyState != 4) {
            // IE only: when a SWF is loading (AND: not available in cache) wait for the readyState of the object element to become 4 before removing it,
            // because you cannot properly cancel a loading SWF file without breaking browser load references, also obj.onreadystatechange doesn't work
            var el = createElement("div");
            obj.parentNode.insertBefore(el, obj); // insert placeholder div that will be replaced by the alternative content
            el.parentNode.replaceChild(abstractAltContent(obj), el);
            obj.style.display = "none";
            (function(){
                if (obj.readyState == 4) {
                    obj.parentNode.removeChild(obj);
                }
                else {
                    setTimeout(arguments.callee, 10);
                }
            })();
        }
        else {
            obj.parentNode.replaceChild(abstractAltContent(obj), obj);
        }
    } 

    function abstractAltContent(obj) {
        var ac = createElement("div");
        if (ua.win && ua.ie) {
            ac.innerHTML = obj.innerHTML;
        }
        else {
            var nestedObj = obj.getElementsByTagName(OBJECT)[0];
            if (nestedObj) {
                var c = nestedObj.childNodes;
                if (c) {
                    var cl = c.length;
                    for (var i = 0; i < cl; i++) {
                        if (!(c[i].nodeType == 1 && c[i].nodeName == "PARAM") && !(c[i].nodeType == 8)) {
                            ac.appendChild(c[i].cloneNode(true));
                        }
                    }
                }
            }
        }
        return ac;
    }
    
    /* Cross-browser dynamic SWF creation
    */
    function createSWF(attObj, parObj, id) {
        var r, el = getElementById(id);
        if (ua.wk && ua.wk < 312) { return r; }
        if (el) {
            if (typeof attObj.id == UNDEF) { // if no 'id' is defined for the object element, it will inherit the 'id' from the alternative content
                attObj.id = id;
            }
            if (ua.ie && ua.win) { // Internet Explorer + the HTML object element + W3C DOM methods do not combine: fall back to outerHTML
                var att = "";
                for (var i in attObj) {
                    if (attObj[i] != Object.prototype[i]) { // filter out prototype additions from other potential libraries
                        if (i.toLowerCase() == "data") {
                            parObj.movie = attObj[i];
                        }
                        else if (i.toLowerCase() == "styleclass") { // 'class' is an ECMA4 reserved keyword
                            att += ' class="' + attObj[i] + '"';
                        }
                        else if (i.toLowerCase() != "classid") {
                            att += ' ' + i + '="' + attObj[i] + '"';
                        }
                    }
                }
                var par = "";
                for (var j in parObj) {
                    if (parObj[j] != Object.prototype[j]) { // filter out prototype additions from other potential libraries
                        par += '';
                    }
                }
                el.outerHTML = '' + par + '';
                objIdArr[objIdArr.length] = attObj.id; // stored to fix object 'leaks' on unload (dynamic publishing only)
                r = getElementById(attObj.id);  
            }
            else { // well-behaving browsers
                var o = createElement(OBJECT);
                o.setAttribute("type", FLASH_MIME_TYPE);
                for (var m in attObj) {
                    if (attObj[m] != Object.prototype[m]) { // filter out prototype additions from other potential libraries
                        if (m.toLowerCase() == "styleclass") { // 'class' is an ECMA4 reserved keyword
                            o.setAttribute("class", attObj[m]);
                        }
                        else if (m.toLowerCase() != "classid") { // filter out IE specific attribute
                            o.setAttribute(m, attObj[m]);
                        }
                    }
                }
                for (var n in parObj) {
                    if (parObj[n] != Object.prototype[n] && n.toLowerCase() != "movie") { // filter out prototype additions from other potential libraries and IE specific param element
                        createObjParam(o, n, parObj[n]);
                    }
                }
                el.parentNode.replaceChild(o, el);
                r = o;
            }
        }
        return r;
    }
    
    function createObjParam(el, pName, pValue) {
        var p = createElement("param");
        p.setAttribute("name", pName);  
        p.setAttribute("value", pValue);
        el.appendChild(p);
    }
    
    /* Cross-browser SWF removal
        - Especially needed to safely and completely remove a SWF in Internet Explorer
    */
    function removeSWF(id) {
        var obj = getElementById(id);
        if (obj && obj.nodeName == "OBJECT") {
            if (ua.ie && ua.win) {
                obj.style.display = "none";
                (function(){
                    if (obj.readyState == 4) {
                        removeObjectInIE(id);
                    }
                    else {
                        setTimeout(arguments.callee, 10);
                    }
                })();
            }
            else {
                obj.parentNode.removeChild(obj);
            }
        }
    }
    
    function removeObjectInIE(id) {
        var obj = getElementById(id);
        if (obj) {
            for (var i in obj) {
                if (typeof obj[i] == "function") {
                    obj[i] = null;
                }
            }
            obj.parentNode.removeChild(obj);
        }
    }
    
    /* Functions to optimize JavaScript compression
    */
    function getElementById(id) {
        var el = null;
        try {
            el = doc.getElementById(id);
        }
        catch (e) {}
        return el;
    }
    
    function createElement(el) {
        return doc.createElement(el);
    }
    
    /* Updated attachEvent function for Internet Explorer
        - Stores attachEvent information in an Array, so on unload the detachEvent functions can be called to avoid memory leaks
    */  
    function addListener(target, eventType, fn) {
        target.attachEvent(eventType, fn);
        listenersArr[listenersArr.length] = [target, eventType, fn];
    }
    
    /* Flash Player and SWF content version matching
    */
    function hasPlayerVersion(rv) {
        var pv = ua.pv, v = rv.split(".");
        v[0] = parseInt(v[0], 10);
        v[1] = parseInt(v[1], 10) || 0; // supports short notation, e.g. "9" instead of "9.0.0"
        v[2] = parseInt(v[2], 10) || 0;
        return (pv[0] > v[0] || (pv[0] == v[0] && pv[1] > v[1]) || (pv[0] == v[0] && pv[1] == v[1] && pv[2] >= v[2])) ? true : false;
    }
    
    /* Cross-browser dynamic CSS creation
        - Based on Bobby van der Sluis' solution: http://www.bobbyvandersluis.com/articles/dynamicCSS.php
    */  
    function createCSS(sel, decl, media, newStyle) {
        if (ua.ie && ua.mac) { return; }
        var h = doc.getElementsByTagName("head")[0];
        if (!h) { return; } // to also support badly authored HTML pages that lack a head element
        var m = (media && typeof media == "string") ? media : "screen";
        if (newStyle) {
            dynamicStylesheet = null;
            dynamicStylesheetMedia = null;
        }
        if (!dynamicStylesheet || dynamicStylesheetMedia != m) { 
            // create dynamic stylesheet + get a global reference to it
            var s = createElement("style");
            s.setAttribute("type", "text/css");
            s.setAttribute("media", m);
            dynamicStylesheet = h.appendChild(s);
            if (ua.ie && ua.win && typeof doc.styleSheets != UNDEF && doc.styleSheets.length > 0) {
                dynamicStylesheet = doc.styleSheets[doc.styleSheets.length - 1];
            }
            dynamicStylesheetMedia = m;
        }
        // add style rule
        if (ua.ie && ua.win) {
            if (dynamicStylesheet && typeof dynamicStylesheet.addRule == OBJECT) {
                dynamicStylesheet.addRule(sel, decl);
            }
        }
        else {
            if (dynamicStylesheet && typeof doc.createTextNode != UNDEF) {
                dynamicStylesheet.appendChild(doc.createTextNode(sel + " {" + decl + "}"));
            }
        }
    }
    
    function setVisibility(id, isVisible) {
        if (!autoHideShow) { return; }
        var v = isVisible ? "visible" : "hidden";
        if (isDomLoaded && getElementById(id)) {
            getElementById(id).style.visibility = v;
        }
        else {
            createCSS("#" + id, "visibility:" + v);
        }
    }

    /* Filter to avoid XSS attacks
    */
    function urlEncodeIfNecessary(s) {
        var regex = /[\\\"<>\.;]/;
        var hasBadChars = regex.exec(s) != null;
        return hasBadChars && typeof encodeURIComponent != UNDEF ? encodeURIComponent(s) : s;
    }
    
    /* Release memory to avoid memory leaks caused by closures, fix hanging audio/video threads and force open sockets/NetConnections to disconnect (Internet Explorer only)
    */
    var cleanup = function() {
        if (ua.ie && ua.win) {
            window.attachEvent("onunload", function() {
                // remove listeners to avoid memory leaks
                var ll = listenersArr.length;
                for (var i = 0; i < ll; i++) {
                    listenersArr[i][0].detachEvent(listenersArr[i][1], listenersArr[i][2]);
                }
                // cleanup dynamically embedded objects to fix audio/video threads and force open sockets and NetConnections to disconnect
                var il = objIdArr.length;
                for (var j = 0; j < il; j++) {
                    removeSWF(objIdArr[j]);
                }
                // cleanup library's main closures to avoid memory leaks
                for (var k in ua) {
                    ua[k] = null;
                }
                ua = null;
                for (var l in swfobject) {
                    swfobject[l] = null;
                }
                swfobject = null;
                window.detachEvent('onunload', arguments.callee);
            });
        }
    }();
    
    return {
        /* Public API
            - Reference: http://code.google.com/p/swfobject/wiki/documentation
        */ 
        registerObject: function(objectIdStr, swfVersionStr, xiSwfUrlStr, callbackFn) {
            if (ua.w3 && objectIdStr && swfVersionStr) {
                var regObj = {};
                regObj.id = objectIdStr;
                regObj.swfVersion = swfVersionStr;
                regObj.expressInstall = xiSwfUrlStr;
                regObj.callbackFn = callbackFn;
                regObjArr[regObjArr.length] = regObj;
                setVisibility(objectIdStr, false);
            }
            else if (callbackFn) {
                callbackFn({success:false, id:objectIdStr});
            }
        },
        
        getObjectById: function(objectIdStr) {
            if (ua.w3) {
                return getObjectById(objectIdStr);
            }
        },
        
        embedSWF: function(swfUrlStr, replaceElemIdStr, widthStr, heightStr, swfVersionStr, xiSwfUrlStr, flashvarsObj, parObj, attObj, callbackFn) {
            var callbackObj = {success:false, id:replaceElemIdStr};
            if (ua.w3 && !(ua.wk && ua.wk < 312) && swfUrlStr && replaceElemIdStr && widthStr && heightStr && swfVersionStr) {
                setVisibility(replaceElemIdStr, false);
                addDomLoadEvent(function() {
                    widthStr += ""; // auto-convert to string
                    heightStr += "";
                    var att = {};
                    if (attObj && typeof attObj === OBJECT) {
                        for (var i in attObj) { // copy object to avoid the use of references, because web authors often reuse attObj for multiple SWFs
                            att[i] = attObj[i];
                        }
                    }
                    att.data = swfUrlStr;
                    att.width = widthStr;
                    att.height = heightStr;
                    var par = {}; 
                    if (parObj && typeof parObj === OBJECT) {
                        for (var j in parObj) { // copy object to avoid the use of references, because web authors often reuse parObj for multiple SWFs
                            par[j] = parObj[j];
                        }
                    }
                    if (flashvarsObj && typeof flashvarsObj === OBJECT) {
                        for (var k in flashvarsObj) { // copy object to avoid the use of references, because web authors often reuse flashvarsObj for multiple SWFs
                            if (typeof par.flashvars != UNDEF) {
                                par.flashvars += "&" + k + "=" + flashvarsObj[k];
                            }
                            else {
                                par.flashvars = k + "=" + flashvarsObj[k];
                            }
                        }
                    }
                    if (hasPlayerVersion(swfVersionStr)) { // create SWF
                        var obj = createSWF(att, par, replaceElemIdStr);
                        if (att.id == replaceElemIdStr) {
                            setVisibility(replaceElemIdStr, true);
                        }
                        callbackObj.success = true;
                        callbackObj.ref = obj;
                    }
                    else if (xiSwfUrlStr && canExpressInstall()) { // show Adobe Express Install
                        att.data = xiSwfUrlStr;
                        showExpressInstall(att, par, replaceElemIdStr, callbackFn);
                        return;
                    }
                    else { // show alternative content
                        setVisibility(replaceElemIdStr, true);
                    }
                    if (callbackFn) { callbackFn(callbackObj); }
                });
            }
            else if (callbackFn) { callbackFn(callbackObj); }
        },
        
        switchOffAutoHideShow: function() {
            autoHideShow = false;
        },
        
        ua: ua,
        
        getFlashPlayerVersion: function() {
            return { major:ua.pv[0], minor:ua.pv[1], release:ua.pv[2] };
        },
        
        hasFlashPlayerVersion: hasPlayerVersion,
        
        createSWF: function(attObj, parObj, replaceElemIdStr) {
            if (ua.w3) {
                return createSWF(attObj, parObj, replaceElemIdStr);
            }
            else {
                return undefined;
            }
        },
        
        showExpressInstall: function(att, par, replaceElemIdStr, callbackFn) {
            if (ua.w3 && canExpressInstall()) {
                showExpressInstall(att, par, replaceElemIdStr, callbackFn);
            }
        },
        
        removeSWF: function(objElemIdStr) {
            if (ua.w3) {
                removeSWF(objElemIdStr);
            }
        },
        
        createCSS: function(selStr, declStr, mediaStr, newStyleBoolean) {
            if (ua.w3) {
                createCSS(selStr, declStr, mediaStr, newStyleBoolean);
            }
        },
        
        addDomLoadEvent: addDomLoadEvent,
        
        addLoadEvent: addLoadEvent,
        
        getQueryParamValue: function(param) {
            var q = doc.location.search || doc.location.hash;
            if (q) {
                if (/\?/.test(q)) { q = q.split("?")[1]; } // strip question mark
                if (param == null) {
                    return urlEncodeIfNecessary(q);
                }
                var pairs = q.split("&");
                for (var i = 0; i < pairs.length; i++) {
                    if (pairs[i].substring(0, pairs[i].indexOf("=")) == param) {
                        return urlEncodeIfNecessary(pairs[i].substring((pairs[i].indexOf("=") + 1)));
                    }
                }
            }
            return "";
        },
        
        // For internal usage only
        expressInstallCallback: function() {
            if (isExpressInstallActive) {
                var obj = getElementById(EXPRESS_INSTALL_ID);
                if (obj && storedAltContent) {
                    obj.parentNode.replaceChild(storedAltContent, obj);
                    if (storedAltContentId) {
                        setVisibility(storedAltContentId, true);
                        if (ua.ie && ua.win) { storedAltContent.style.display = "block"; }
                    }
                    if (storedCallbackFn) { storedCallbackFn(storedCallbackObj); }
                }
                isExpressInstallActive = false;
            } 
        }
    };
}();
/**
 * @class Ext.FlashComponent
 * @extends Ext.BoxComponent
 * @constructor
 * @xtype flash
 */
Ext.FlashComponent = Ext.extend(Ext.BoxComponent, {
    /**
     * @cfg {String} flashVersion
     * Indicates the version the flash content was published for. Defaults to '9.0.115'.
     */
    flashVersion : '9.0.115',

    /**
     * @cfg {String} backgroundColor
     * The background color of the chart. Defaults to '#ffffff'.
     */
    backgroundColor: '#ffffff',

    /**
     * @cfg {String} wmode
     * The wmode of the flash object. This can be used to control layering. Defaults to 'opaque'.
     */
    wmode: 'opaque',

    /**
     * @cfg {Object} flashVars
     * A set of key value pairs to be passed to the flash object as flash variables. Defaults to undefined.
     */
    flashVars: undefined,

    /**
     * @cfg {Object} flashParams
     * A set of key value pairs to be passed to the flash object as parameters. Possible parameters can be found here:
     * http://kb2.adobe.com/cps/127/tn_12701.html Defaults to undefined.
     */
    flashParams: undefined,

    /**
     * @cfg {String} url
     * The URL of the chart to include. Defaults to undefined.
     */
    url: undefined,
    swfId : undefined,
    swfWidth: '100%',
    swfHeight: '100%',

    /**
     * @cfg {Boolean} expressInstall
     * True to prompt the user to install flash if not installed. Note that this uses
     * Ext.FlashComponent.EXPRESS_INSTALL_URL, which should be set to the local resource. Defaults to false.
     */
    expressInstall: false,

    initComponent : function(){
        Ext.FlashComponent.superclass.initComponent.call(this);

        this.addEvents(
            /**
             * @event initialize
             *
             * @param {Chart} this
             */
            'initialize'
        );
    },

    onRender : function(){
        Ext.FlashComponent.superclass.onRender.apply(this, arguments);

        var params = Ext.apply({
            allowScriptAccess: 'always',
            bgcolor: this.backgroundColor,
            wmode: this.wmode
        }, this.flashParams), vars = Ext.apply({
            allowedDomain: document.location.hostname,
            YUISwfId: this.getId(),
            YUIBridgeCallback: 'Ext.FlashEventProxy.onEvent'
        }, this.flashVars);

        new swfobject.embedSWF(this.url, this.id, this.swfWidth, this.swfHeight, this.flashVersion,
            this.expressInstall ? Ext.FlashComponent.EXPRESS_INSTALL_URL : undefined, vars, params);

        this.swf = Ext.getDom(this.id);
        this.el = Ext.get(this.swf);
    },

    getSwfId : function(){
        return this.swfId || (this.swfId = "extswf" + (++Ext.Component.AUTO_ID));
    },

    getId : function(){
        return this.id || (this.id = "extflashcmp" + (++Ext.Component.AUTO_ID));
    },

    onFlashEvent : function(e){
        switch(e.type){
            case "swfReady":
                this.initSwf();
                return;
            case "log":
                return;
        }
        e.component = this;
        this.fireEvent(e.type.toLowerCase().replace(/event$/, ''), e);
    },

    initSwf : function(){
        this.onSwfReady(!!this.isInitialized);
        this.isInitialized = true;
        this.fireEvent('initialize', this);
    },

    beforeDestroy: function(){
        if(this.rendered){
            swfobject.removeSWF(this.swf.id);
        }
        Ext.FlashComponent.superclass.beforeDestroy.call(this);
    },

    onSwfReady : Ext.emptyFn
});

/**
 * Sets the url for installing flash if it doesn't exist. This should be set to a local resource.
 * @static
 * @type String
 */
Ext.FlashComponent.EXPRESS_INSTALL_URL = 'http:/' + '/swfobject.googlecode.com/svn/trunk/swfobject/expressInstall.swf';

Ext.reg('flash', Ext.FlashComponent);/**
 * @class Ext.FlashProxy
 * @singleton
 */
Ext.FlashEventProxy = {
    onEvent : function(id, e){
        var fp = Ext.getCmp(id);
        if(fp){
            fp.onFlashEvent(e);
        }else{
            arguments.callee.defer(10, this, [id, e]);
        }
    }
};/**
 * @class Ext.chart.Chart
 * @extends Ext.FlashComponent
 * The Ext.chart package provides the capability to visualize data with flash based charting.
 * Each chart binds directly to an Ext.data.Store enabling automatic updates of the chart.
 * To change the look and feel of a chart, see the {@link #chartStyle} and {@link #extraStyle} config options.
 * @constructor
 * @xtype chart
 */

 Ext.chart.Chart = Ext.extend(Ext.FlashComponent, {
    refreshBuffer: 100,

    /**
     * @cfg {String} backgroundColor
     * @hide
     */

    /**
     * @cfg {Object} chartStyle
     * Sets styles for this chart. This contains default styling, so modifying this property will override
     * the built in styles of the chart. Use {@link #extraStyle} to add customizations to the default styling.
     */
    chartStyle: {
        padding: 10,
        animationEnabled: true,
        font: {
            name: 'Tahoma',
            color: 0x444444,
            size: 11
        },
        dataTip: {
            padding: 5,
            border: {
                color: 0x99bbe8,
                size:1
            },
            background: {
                color: 0xDAE7F6,
                alpha: .9
            },
            font: {
                name: 'Tahoma',
                color: 0x15428B,
                size: 10,
                bold: true
            }
        }
    },

    /**
     * @cfg {String} url
     * The url to load the chart from. This defaults to Ext.chart.Chart.CHART_URL, which should
     * be modified to point to the local charts resource.
     */

    /**
     * @cfg {Object} extraStyle
     * Contains extra styles that will be added or overwritten to the default chartStyle. Defaults to null.
     * For a detailed list of the options available, visit the YUI Charts site
     * at http://developer.yahoo.com/yui/charts/#basicstyles
    
     * Some of the options availabe:
    
     * 
      
     * 
    • padding - The space around the edge of the chart's contents. Padding does not increase the size of the chart.
      • 
     * 
    • animationEnabled - A Boolean value that specifies whether marker animations are enabled or not. Enabled by default.
      • 
     * 
    • font - An Object defining the font style to be used in the chart. Defaults to { name: 'Tahoma', color: 0x444444, size: 11 }
      
     *  
        
     *      
      • name - font name
        • 
     *      
      • color - font color (hex code, ie: "#ff0000", "ff0000" or 0xff0000)
        • 
     *      
      • size - font size in points (numeric portion only, ie: 11)
        • 
     *      
      • bold - boolean
        • 
     *      
      • italic - boolean
        • 
     *      
      • underline - boolean
        • 
     *  
      
     * 
      • 
     * 
    • border - An object defining the border style around the chart. The chart itself will decrease in dimensions to accomodate the border.
      
     *  
        
     *      
      • color - border color (hex code, ie: "#ff0000", "ff0000" or 0xff0000)
        • 
     *      
      • size - border size in pixels (numeric portion only, ie: 1)
        • 
     *  
      
     * 
      • 
     * 
    • background - An object defining the background style of the chart.
      
     *  
        
     *      
      • color - border color (hex code, ie: "#ff0000", "ff0000" or 0xff0000)
        • 
     *      
      • image - an image URL. May be relative to the current document or absolute.
        • 
     *  
      
     * 
      • 
     * 
    • legend - An object defining the legend style
      
     *  
        
     *      
      • display - location of the legend. Possible values are "none", "left", "right", "top", and "bottom".
        • 
     *      
      • spacing - an image URL. May be relative to the current document or absolute.
        • 
     *      
      • padding, border, background, font - same options as described above.
        • 
     *  
      • 
     * 
    • dataTip - An object defining the style of the data tip (tooltip).
      
     *  
        
     *      
      • padding, border, background, font - same options as described above.
        • 
     *  
      • 
     * 
    • xAxis and yAxis - An object defining the style of the style of either axis.
      
     *  
        
     *      
      • color - same option as described above.
        • 
     *      
      • size - same option as described above.
        • 
     *      
      • showLabels - boolean
        • 
     *      
      • labelRotation - a value in degrees from -90 through 90. Default is zero.
        • 
     *  
      • 
     * 
    • majorGridLines and minorGridLines - An object defining the style of the style of the grid lines.
      
     *  
        
     *      
      • color, size - same options as described above.
        • 
     *  
      • 
     * 
    • zeroGridLine - An object defining the style of the style of the zero grid line.
      
     *  
        
     *      
      • color, size - same options as described above.
        • 
     *  
      • 
     * 
    • majorTicks and minorTicks - An object defining the style of the style of ticks in the chart.
      
     *  
        
     *      
      • color, size - same options as described above.
        • 
     *      
      • length - the length of each tick in pixels extending from the axis.
        • 
     *      
      • display - how the ticks are drawn. Possible values are "none", "inside", "outside", and "cross".
        • 
     *  
      • 
     * 
    
     */
    extraStyle: null,

    /**
     * @cfg {Object} seriesStyles
     * Contains styles to apply to the series after a refresh. Defaults to null.
     */
    seriesStyles: null,

    /**
     * @cfg {Boolean} disableCaching
     * True to add a "cache buster" to the end of the chart url. Defaults to true for Opera and IE.
     */
    disableCaching: Ext.isIE || Ext.isOpera,
    disableCacheParam: '_dc',

    initComponent : function(){
        Ext.chart.Chart.superclass.initComponent.call(this);
        if(!this.url){
            this.url = Ext.chart.Chart.CHART_URL;
        }
        if(this.disableCaching){
            this.url = Ext.urlAppend(this.url, String.format('{0}={1}', this.disableCacheParam, new Date().getTime()));
        }
        this.addEvents(
            'itemmouseover',
            'itemmouseout',
            'itemclick',
            'itemdoubleclick',
            'itemdragstart',
            'itemdrag',
            'itemdragend',
            /**
             * @event beforerefresh
             * Fires before a refresh to the chart data is called.  If the beforerefresh handler returns
             * false the {@link #refresh} action will be cancelled.
             * @param {Chart} this
             */
            'beforerefresh',
            /**
             * @event refresh
             * Fires after the chart data has been refreshed.
             * @param {Chart} this
             */
            'refresh'
        );
        this.store = Ext.StoreMgr.lookup(this.store);
    },

    /**
     * Sets a single style value on the Chart instance.
     *
     * @param name {String} Name of the Chart style value to change.
     * @param value {Object} New value to pass to the Chart style.
     */
     setStyle: function(name, value){
         this.swf.setStyle(name, Ext.encode(value));
     },

    /**
     * Resets all styles on the Chart instance.
     *
     * @param styles {Object} Initializer for all Chart styles.
     */
    setStyles: function(styles){
        this.swf.setStyles(Ext.encode(styles));
    },

    /**
     * Sets the styles on all series in the Chart.
     *
     * @param styles {Array} Initializer for all Chart series styles.
     */
    setSeriesStyles: function(styles){
        this.seriesStyles = styles;
        var s = [];
        Ext.each(styles, function(style){
            s.push(Ext.encode(style));
        });
        this.swf.setSeriesStyles(s);
    },

    setCategoryNames : function(names){
        this.swf.setCategoryNames(names);
    },

    setLegendRenderer : function(fn, scope){
        var chart = this;
        scope = scope || chart;
        chart.removeFnProxy(chart.legendFnName);
        chart.legendFnName = chart.createFnProxy(function(name){
            return fn.call(scope, name);
        });
        chart.swf.setLegendLabelFunction(chart.legendFnName);
    },

    setTipRenderer : function(fn, scope){
        var chart = this;
        scope = scope || chart;
        chart.removeFnProxy(chart.tipFnName);
        chart.tipFnName = chart.createFnProxy(function(item, index, series){
            var record = chart.store.getAt(index);
            return fn.call(scope, chart, record, index, series);
        });
        chart.swf.setDataTipFunction(chart.tipFnName);
    },

    setSeries : function(series){
        this.series = series;
        this.refresh();
    },

    /**
     * Changes the data store bound to this chart and refreshes it.
     * @param {Store} store The store to bind to this chart
     */
    bindStore : function(store, initial){
        if(!initial && this.store){
            if(store !== this.store && this.store.autoDestroy){
                this.store.destroy();
            }else{
                this.store.un("datachanged", this.refresh, this);
                this.store.un("add", this.delayRefresh, this);
                this.store.un("remove", this.delayRefresh, this);
                this.store.un("update", this.delayRefresh, this);
                this.store.un("clear", this.refresh, this);
            }
        }
        if(store){
            store = Ext.StoreMgr.lookup(store);
            store.on({
                scope: this,
                datachanged: this.refresh,
                add: this.delayRefresh,
                remove: this.delayRefresh,
                update: this.delayRefresh,
                clear: this.refresh
            });
        }
        this.store = store;
        if(store && !initial){
            this.refresh();
        }
    },

    onSwfReady : function(isReset){
        Ext.chart.Chart.superclass.onSwfReady.call(this, isReset);
        var ref;
        this.swf.setType(this.type);

        if(this.chartStyle){
            this.setStyles(Ext.apply({}, this.extraStyle, this.chartStyle));
        }

        if(this.categoryNames){
            this.setCategoryNames(this.categoryNames);
        }

        if(this.tipRenderer){
            ref = this.getFunctionRef(this.tipRenderer);
            this.setTipRenderer(ref.fn, ref.scope);
        }
        if(this.legendRenderer){
            ref = this.getFunctionRef(this.legendRenderer);
            this.setLegendRenderer(ref.fn, ref.scope);
        }
        if(!isReset){
            this.bindStore(this.store, true);
        }
        this.refresh.defer(10, this);
    },

    delayRefresh : function(){
        if(!this.refreshTask){
            this.refreshTask = new Ext.util.DelayedTask(this.refresh, this);
        }
        this.refreshTask.delay(this.refreshBuffer);
    },

    refresh : function(){
        if(this.fireEvent('beforerefresh', this) !== false){
            var styleChanged = false;
            // convert the store data into something YUI charts can understand
            var data = [], rs = this.store.data.items;
            for(var j = 0, len = rs.length; j < len; j++){
                data[j] = rs[j].data;
            }
            //make a copy of the series definitions so that we aren't
            //editing them directly.
            var dataProvider = [];
            var seriesCount = 0;
            var currentSeries = null;
            var i = 0;
            if(this.series){
                seriesCount = this.series.length;
                for(i = 0; i < seriesCount; i++){
                    currentSeries = this.series[i];
                    var clonedSeries = {};
                    for(var prop in currentSeries){
                        if(prop == "style" && currentSeries.style !== null){
                            clonedSeries.style = Ext.encode(currentSeries.style);
                            styleChanged = true;
                            //we don't want to modify the styles again next time
                            //so null out the style property.
                            // this causes issues
                            // currentSeries.style = null;
                        } else{
                            clonedSeries[prop] = currentSeries[prop];
                        }
                    }
                    dataProvider.push(clonedSeries);
                }
            }

            if(seriesCount > 0){
                for(i = 0; i < seriesCount; i++){
                    currentSeries = dataProvider[i];
                    if(!currentSeries.type){
                        currentSeries.type = this.type;
                    }
                    currentSeries.dataProvider = data;
                }
            } else{
                dataProvider.push({type: this.type, dataProvider: data});
            }
            this.swf.setDataProvider(dataProvider);
            if(this.seriesStyles){
                this.setSeriesStyles(this.seriesStyles);
            }
            this.fireEvent('refresh', this);
        }
    },

    // private
    createFnProxy : function(fn){
        var fnName = 'extFnProxy' + (++Ext.chart.Chart.PROXY_FN_ID);
        Ext.chart.Chart.proxyFunction[fnName] = fn;
        return 'Ext.chart.Chart.proxyFunction.' + fnName;
    },

    // private
    removeFnProxy : function(fn){
        if(!Ext.isEmpty(fn)){
            fn = fn.replace('Ext.chart.Chart.proxyFunction.', '');
            delete Ext.chart.Chart.proxyFunction[fn];
        }
    },

    // private
    getFunctionRef : function(val){
        if(Ext.isFunction(val)){
            return {
                fn: val,
                scope: this
            };
        }else{
            return {
                fn: val.fn,
                scope: val.scope || this
            };
        }
    },

    // private
    onDestroy: function(){
        if (this.refreshTask && this.refreshTask.cancel){
            this.refreshTask.cancel();
        }
        Ext.chart.Chart.superclass.onDestroy.call(this);
        this.bindStore(null);
        this.removeFnProxy(this.tipFnName);
        this.removeFnProxy(this.legendFnName);
    }
});
Ext.reg('chart', Ext.chart.Chart);
Ext.chart.Chart.PROXY_FN_ID = 0;
Ext.chart.Chart.proxyFunction = {};

/**
 * Sets the url to load the chart from. This should be set to a local resource.
 * @static
 * @type String
 */
Ext.chart.Chart.CHART_URL = 'http:/' + '/yui.yahooapis.com/2.8.2/build/charts/assets/charts.swf';

/**
 * @class Ext.chart.PieChart
 * @extends Ext.chart.Chart
 * @constructor
 * @xtype piechart
 */
Ext.chart.PieChart = Ext.extend(Ext.chart.Chart, {
    type: 'pie',

    onSwfReady : function(isReset){
        Ext.chart.PieChart.superclass.onSwfReady.call(this, isReset);

        this.setDataField(this.dataField);
        this.setCategoryField(this.categoryField);
    },

    setDataField : function(field){
        this.dataField = field;
        this.swf.setDataField(field);
    },

    setCategoryField : function(field){
        this.categoryField = field;
        this.swf.setCategoryField(field);
    }
});
Ext.reg('piechart', Ext.chart.PieChart);

/**
 * @class Ext.chart.CartesianChart
 * @extends Ext.chart.Chart
 * @constructor
 * @xtype cartesianchart
 */
Ext.chart.CartesianChart = Ext.extend(Ext.chart.Chart, {
    onSwfReady : function(isReset){
        Ext.chart.CartesianChart.superclass.onSwfReady.call(this, isReset);
        this.labelFn = [];
        if(this.xField){
            this.setXField(this.xField);
        }
        if(this.yField){
            this.setYField(this.yField);
        }
        if(this.xAxis){
            this.setXAxis(this.xAxis);
        }
        if(this.xAxes){
            this.setXAxes(this.xAxes);
        }
        if(this.yAxis){
            this.setYAxis(this.yAxis);
        }
        if(this.yAxes){
            this.setYAxes(this.yAxes);
        }
        if(Ext.isDefined(this.constrainViewport)){
            this.swf.setConstrainViewport(this.constrainViewport);
        }
    },

    setXField : function(value){
        this.xField = value;
        this.swf.setHorizontalField(value);
    },

    setYField : function(value){
        this.yField = value;
        this.swf.setVerticalField(value);
    },

    setXAxis : function(value){
        this.xAxis = this.createAxis('xAxis', value);
        this.swf.setHorizontalAxis(this.xAxis);
    },

    setXAxes : function(value){
        var axis;
        for(var i = 0; i < value.length; i++) {
            axis = this.createAxis('xAxis' + i, value[i]);
            this.swf.setHorizontalAxis(axis);
        }
    },

    setYAxis : function(value){
        this.yAxis = this.createAxis('yAxis', value);
        this.swf.setVerticalAxis(this.yAxis);
    },

    setYAxes : function(value){
        var axis;
        for(var i = 0; i < value.length; i++) {
            axis = this.createAxis('yAxis' + i, value[i]);
            this.swf.setVerticalAxis(axis);
        }
    },

    createAxis : function(axis, value){
        var o = Ext.apply({}, value),
            ref,
            old;

        if(this[axis]){
            old = this[axis].labelFunction;
            this.removeFnProxy(old);
            this.labelFn.remove(old);
        }
        if(o.labelRenderer){
            ref = this.getFunctionRef(o.labelRenderer);
            o.labelFunction = this.createFnProxy(function(v){
                return ref.fn.call(ref.scope, v);
            });
            delete o.labelRenderer;
            this.labelFn.push(o.labelFunction);
        }
        if(axis.indexOf('xAxis') > -1 && o.position == 'left'){
            o.position = 'bottom';
        }
        return o;
    },

    onDestroy : function(){
        Ext.chart.CartesianChart.superclass.onDestroy.call(this);
        Ext.each(this.labelFn, function(fn){
            this.removeFnProxy(fn);
        }, this);
    }
});
Ext.reg('cartesianchart', Ext.chart.CartesianChart);

/**
 * @class Ext.chart.LineChart
 * @extends Ext.chart.CartesianChart
 * @constructor
 * @xtype linechart
 */
Ext.chart.LineChart = Ext.extend(Ext.chart.CartesianChart, {
    type: 'line'
});
Ext.reg('linechart', Ext.chart.LineChart);

/**
 * @class Ext.chart.ColumnChart
 * @extends Ext.chart.CartesianChart
 * @constructor
 * @xtype columnchart
 */
Ext.chart.ColumnChart = Ext.extend(Ext.chart.CartesianChart, {
    type: 'column'
});
Ext.reg('columnchart', Ext.chart.ColumnChart);

/**
 * @class Ext.chart.StackedColumnChart
 * @extends Ext.chart.CartesianChart
 * @constructor
 * @xtype stackedcolumnchart
 */
Ext.chart.StackedColumnChart = Ext.extend(Ext.chart.CartesianChart, {
    type: 'stackcolumn'
});
Ext.reg('stackedcolumnchart', Ext.chart.StackedColumnChart);

/**
 * @class Ext.chart.BarChart
 * @extends Ext.chart.CartesianChart
 * @constructor
 * @xtype barchart
 */
Ext.chart.BarChart = Ext.extend(Ext.chart.CartesianChart, {
    type: 'bar'
});
Ext.reg('barchart', Ext.chart.BarChart);

/**
 * @class Ext.chart.StackedBarChart
 * @extends Ext.chart.CartesianChart
 * @constructor
 * @xtype stackedbarchart
 */
Ext.chart.StackedBarChart = Ext.extend(Ext.chart.CartesianChart, {
    type: 'stackbar'
});
Ext.reg('stackedbarchart', Ext.chart.StackedBarChart);



/**
 * @class Ext.chart.Axis
 * Defines a CartesianChart's vertical or horizontal axis.
 * @constructor
 */
Ext.chart.Axis = function(config){
    Ext.apply(this, config);
};

Ext.chart.Axis.prototype =
{
    /**
     * The type of axis.
     *
     * @property type
     * @type String
     */
    type: null,

    /**
     * The direction in which the axis is drawn. May be "horizontal" or "vertical".
     *
     * @property orientation
     * @type String
     */
    orientation: "horizontal",

    /**
     * If true, the items on the axis will be drawn in opposite direction.
     *
     * @property reverse
     * @type Boolean
     */
    reverse: false,

    /**
     * A string reference to the globally-accessible function that may be called to
     * determine each of the label values for this axis.
     *
     * @property labelFunction
     * @type String
     */
    labelFunction: null,

    /**
     * If true, labels that overlap previously drawn labels on the axis will be hidden.
     *
     * @property hideOverlappingLabels
     * @type Boolean
     */
    hideOverlappingLabels: true,

    /**
     * The space, in pixels, between labels on an axis.
     *
     * @property labelSpacing
     * @type Number
     */
    labelSpacing: 2
};

/**
 * @class Ext.chart.NumericAxis
 * @extends Ext.chart.Axis
 * A type of axis whose units are measured in numeric values.
 * @constructor
 */
Ext.chart.NumericAxis = Ext.extend(Ext.chart.Axis, {
    type: "numeric",

    /**
     * The minimum value drawn by the axis. If not set explicitly, the axis
     * minimum will be calculated automatically.
     *
     * @property minimum
     * @type Number
     */
    minimum: NaN,

    /**
     * The maximum value drawn by the axis. If not set explicitly, the axis
     * maximum will be calculated automatically.
     *
     * @property maximum
     * @type Number
     */
    maximum: NaN,

    /**
     * The spacing between major intervals on this axis.
     *
     * @property majorUnit
     * @type Number
     */
    majorUnit: NaN,

    /**
     * The spacing between minor intervals on this axis.
     *
     * @property minorUnit
     * @type Number
     */
    minorUnit: NaN,

    /**
     * If true, the labels, ticks, gridlines, and other objects will snap to the
     * nearest major or minor unit. If false, their position will be based on
     * the minimum value.
     *
     * @property snapToUnits
     * @type Boolean
     */
    snapToUnits: true,

    /**
     * If true, and the bounds are calculated automatically, either the minimum
     * or maximum will be set to zero.
     *
     * @property alwaysShowZero
     * @type Boolean
     */
    alwaysShowZero: true,

    /**
     * The scaling algorithm to use on this axis. May be "linear" or
     * "logarithmic".
     *
     * @property scale
     * @type String
     */
    scale: "linear",

    /**
     * Indicates whether to round the major unit.
     *
     * @property roundMajorUnit
     * @type Boolean
     */
    roundMajorUnit: true,

    /**
     * Indicates whether to factor in the size of the labels when calculating a
     * major unit.
     *
     * @property calculateByLabelSize
     * @type Boolean
     */
    calculateByLabelSize: true,

    /**
     * Indicates the position of the axis relative to the chart
     *
     * @property position
     * @type String
     */
    position: 'left',

    /**
     * Indicates whether to extend maximum beyond data's maximum to the nearest
     * majorUnit.
     *
     * @property adjustMaximumByMajorUnit
     * @type Boolean
     */
    adjustMaximumByMajorUnit: true,

    /**
     * Indicates whether to extend the minimum beyond data's minimum to the
     * nearest majorUnit.
     *
     * @property adjustMinimumByMajorUnit
     * @type Boolean
     */
    adjustMinimumByMajorUnit: true

});

/**
 * @class Ext.chart.TimeAxis
 * @extends Ext.chart.Axis
 * A type of axis whose units are measured in time-based values.
 * @constructor
 */
Ext.chart.TimeAxis = Ext.extend(Ext.chart.Axis, {
    type: "time",

    /**
     * The minimum value drawn by the axis. If not set explicitly, the axis
     * minimum will be calculated automatically.
     *
     * @property minimum
     * @type Date
     */
    minimum: null,

    /**
     * The maximum value drawn by the axis. If not set explicitly, the axis
     * maximum will be calculated automatically.
     *
     * @property maximum
     * @type Number
     */
    maximum: null,

    /**
     * The spacing between major intervals on this axis.
     *
     * @property majorUnit
     * @type Number
     */
    majorUnit: NaN,

    /**
     * The time unit used by the majorUnit.
     *
     * @property majorTimeUnit
     * @type String
     */
    majorTimeUnit: null,

    /**
     * The spacing between minor intervals on this axis.
     *
     * @property minorUnit
     * @type Number
     */
    minorUnit: NaN,

    /**
     * The time unit used by the minorUnit.
     *
     * @property minorTimeUnit
     * @type String
     */
    minorTimeUnit: null,

    /**
     * If true, the labels, ticks, gridlines, and other objects will snap to the
     * nearest major or minor unit. If false, their position will be based on
     * the minimum value.
     *
     * @property snapToUnits
     * @type Boolean
     */
    snapToUnits: true,

    /**
     * Series that are stackable will only stack when this value is set to true.
     *
     * @property stackingEnabled
     * @type Boolean
     */
    stackingEnabled: false,

    /**
     * Indicates whether to factor in the size of the labels when calculating a
     * major unit.
     *
     * @property calculateByLabelSize
     * @type Boolean
     */
    calculateByLabelSize: true

});

/**
 * @class Ext.chart.CategoryAxis
 * @extends Ext.chart.Axis
 * A type of axis that displays items in categories.
 * @constructor
 */
Ext.chart.CategoryAxis = Ext.extend(Ext.chart.Axis, {
    type: "category",

    /**
     * A list of category names to display along this axis.
     *
     * @property categoryNames
     * @type Array
     */
    categoryNames: null,

    /**
     * Indicates whether or not to calculate the number of categories (ticks and
     * labels) when there is not enough room to display all labels on the axis.
     * If set to true, the axis will determine the number of categories to plot.
     * If not, all categories will be plotted.
     *
     * @property calculateCategoryCount
     * @type Boolean
     */
    calculateCategoryCount: false

});

/**
 * @class Ext.chart.Series
 * Series class for the charts widget.
 * @constructor
 */
Ext.chart.Series = function(config) { Ext.apply(this, config); };

Ext.chart.Series.prototype =
{
    /**
     * The type of series.
     *
     * @property type
     * @type String
     */
    type: null,

    /**
     * The human-readable name of the series.
     *
     * @property displayName
     * @type String
     */
    displayName: null
};

/**
 * @class Ext.chart.CartesianSeries
 * @extends Ext.chart.Series
 * CartesianSeries class for the charts widget.
 * @constructor
 */
Ext.chart.CartesianSeries = Ext.extend(Ext.chart.Series, {
    /**
     * The field used to access the x-axis value from the items from the data
     * source.
     *
     * @property xField
     * @type String
     */
    xField: null,

    /**
     * The field used to access the y-axis value from the items from the data
     * source.
     *
     * @property yField
     * @type String
     */
    yField: null,

    /**
     * False to not show this series in the legend. Defaults to true.
     *
     * @property showInLegend
     * @type Boolean
     */
    showInLegend: true,

    /**
     * Indicates which axis the series will bind to
     *
     * @property axis
     * @type String
     */
    axis: 'primary'
});

/**
 * @class Ext.chart.ColumnSeries
 * @extends Ext.chart.CartesianSeries
 * ColumnSeries class for the charts widget.
 * @constructor
 */
Ext.chart.ColumnSeries = Ext.extend(Ext.chart.CartesianSeries, {
    type: "column"
});

/**
 * @class Ext.chart.LineSeries
 * @extends Ext.chart.CartesianSeries
 * LineSeries class for the charts widget.
 * @constructor
 */
Ext.chart.LineSeries = Ext.extend(Ext.chart.CartesianSeries, {
    type: "line"
});

/**
 * @class Ext.chart.BarSeries
 * @extends Ext.chart.CartesianSeries
 * BarSeries class for the charts widget.
 * @constructor
 */
Ext.chart.BarSeries = Ext.extend(Ext.chart.CartesianSeries, {
    type: "bar"
});


/**
 * @class Ext.chart.PieSeries
 * @extends Ext.chart.Series
 * PieSeries class for the charts widget.
 * @constructor
 */
Ext.chart.PieSeries = Ext.extend(Ext.chart.Series, {
    type: "pie",
    dataField: null,
    categoryField: null
});/**
 * @class Ext.menu.Menu
 * @extends Ext.Container
 * 
    A menu object.  This is the container to which you may add menu items.  Menu can also serve as a base class
 * when you want a specialized menu based off of another component (like {@link Ext.menu.DateMenu} for example).
    
 * 
    Menus may contain either {@link Ext.menu.Item menu items}, or general {@link Ext.Component Component}s.
    
 * 
    To make a contained general {@link Ext.Component Component} line up with other {@link Ext.menu.Item menu items}
 * specify iconCls: 'no-icon'.  This reserves a space for an icon, and indents the Component in line
 * with the other menu items.  See {@link Ext.form.ComboBox}.{@link Ext.form.ComboBox#getListParent getListParent}
 * for an example.
    
 * 
    By default, Menus are absolutely positioned, floating Components. By configuring a Menu with
 * {@link #floating}:false, a Menu may be used as child of a Container.
    
 *
 * @xtype menu
 */
Ext.menu.Menu = Ext.extend(Ext.Container, {
    /**
     * @cfg {Object} defaults
     * A config object that will be applied to all items added to this container either via the {@link #items}
     * config or via the {@link #add} method.  The defaults config can contain any number of
     * name/value property pairs to be added to each item, and should be valid for the types of items
     * being added to the menu.
     */
    /**
     * @cfg {Mixed} items
     * An array of items to be added to this menu. Menus may contain either {@link Ext.menu.Item menu items},
     * or general {@link Ext.Component Component}s.
     */
    /**
     * @cfg {Number} minWidth The minimum width of the menu in pixels (defaults to 120)
     */
    minWidth : 120,
    /**
     * @cfg {Boolean/String} shadow True or 'sides' for the default effect, 'frame' for 4-way shadow, and 'drop'
     * for bottom-right shadow (defaults to 'sides')
     */
    shadow : 'sides',
    /**
     * @cfg {String} subMenuAlign The {@link Ext.Element#alignTo} anchor position value to use for submenus of
     * this menu (defaults to 'tl-tr?')
     */
    subMenuAlign : 'tl-tr?',
    /**
     * @cfg {String} defaultAlign The default {@link Ext.Element#alignTo} anchor position value for this menu
     * relative to its element of origin (defaults to 'tl-bl?')
     */
    defaultAlign : 'tl-bl?',
    /**
     * @cfg {Boolean} allowOtherMenus True to allow multiple menus to be displayed at the same time (defaults to false)
     */
    allowOtherMenus : false,
    /**
     * @cfg {Boolean} ignoreParentClicks True to ignore clicks on any item in this menu that is a parent item (displays
     * a submenu) so that the submenu is not dismissed when clicking the parent item (defaults to false).
     */
    ignoreParentClicks : false,
    /**
     * @cfg {Boolean} enableScrolling True to allow the menu container to have scroller controls if the menu is too long (defaults to true).
     */
    enableScrolling : true,
    /**
     * @cfg {Number} maxHeight The maximum height of the menu. Only applies when enableScrolling is set to True (defaults to null).
     */
    maxHeight : null,
    /**
     * @cfg {Number} scrollIncrement The amount to scroll the menu. Only applies when enableScrolling is set to True (defaults to 24).
     */
    scrollIncrement : 24,
    /**
     * @cfg {Boolean} showSeparator True to show the icon separator. (defaults to true).
     */
    showSeparator : true,
    /**
     * @cfg {Array} defaultOffsets An array specifying the [x, y] offset in pixels by which to
     * change the default Menu popup position after aligning according to the {@link #defaultAlign}
     * configuration. Defaults to [0, 0].
     */
    defaultOffsets : [0, 0],

    /**
     * @cfg {Boolean} plain
     * True to remove the incised line down the left side of the menu. Defaults to false.
     */
    plain : false,

    /**
     * @cfg {Boolean} floating
     * 
    By default, a Menu configured as floating:true
     * will be rendered as an {@link Ext.Layer} (an absolutely positioned,
     * floating Component with zindex=15000).
     * If configured as floating:false, the Menu may be
     * used as child item of another Container instead of a free-floating
     * {@link Ext.Layer Layer}.
     */
    floating : true,


    /**
     * @cfg {Number} zIndex
     * zIndex to use when the menu is floating.
     */
    zIndex: 15000,

    // private
    hidden : true,

    /**
     * @cfg {String/Object} layout
     * This class assigns a default layout (layout:'menu').
     * Developers may override this configuration option if another layout is required.
     * See {@link Ext.Container#layout} for additional information.
     */
    layout : 'menu',
    hideMode : 'offsets',    // Important for laying out Components
    scrollerHeight : 8,
    autoLayout : true,       // Provided for backwards compat
    defaultType : 'menuitem',
    bufferResize : false,

    initComponent : function(){
        if(Ext.isArray(this.initialConfig)){
            Ext.apply(this, {items:this.initialConfig});
        }
        this.addEvents(
            /**
             * @event click
             * Fires when this menu is clicked (or when the enter key is pressed while it is active)
             * @param {Ext.menu.Menu} this
            * @param {Ext.menu.Item} menuItem The menu item that was clicked
             * @param {Ext.EventObject} e
             */
            'click',
            /**
             * @event mouseover
             * Fires when the mouse is hovering over this menu
             * @param {Ext.menu.Menu} this
             * @param {Ext.EventObject} e
             * @param {Ext.menu.Item} menuItem The menu item that was clicked
             */
            'mouseover',
            /**
             * @event mouseout
             * Fires when the mouse exits this menu
             * @param {Ext.menu.Menu} this
             * @param {Ext.EventObject} e
             * @param {Ext.menu.Item} menuItem The menu item that was clicked
             */
            'mouseout',
            /**
             * @event itemclick
             * Fires when a menu item contained in this menu is clicked
             * @param {Ext.menu.BaseItem} baseItem The BaseItem that was clicked
             * @param {Ext.EventObject} e
             */
            'itemclick'
        );
        Ext.menu.MenuMgr.register(this);
        if(this.floating){
            Ext.EventManager.onWindowResize(this.hide, this);
        }else{
            if(this.initialConfig.hidden !== false){
                this.hidden = false;
            }
            this.internalDefaults = {hideOnClick: false};
        }
        Ext.menu.Menu.superclass.initComponent.call(this);
        if(this.autoLayout){
            var fn = this.doLayout.createDelegate(this, []);
            this.on({
                add: fn,
                remove: fn
            });
        }
    },

    //private
    getLayoutTarget : function() {
        return this.ul;
    },

    // private
    onRender : function(ct, position){
        if(!ct){
            ct = Ext.getBody();
        }

        var dh = {
            id: this.getId(),
            cls: 'x-menu ' + ((this.floating) ? 'x-menu-floating x-layer ' : '') + (this.cls || '') + (this.plain ? ' x-menu-plain' : '') + (this.showSeparator ? '' : ' x-menu-nosep'),
            style: this.style,
            cn: [
                {tag: 'a', cls: 'x-menu-focus', href: '#', onclick: 'return false;', tabIndex: '-1'},
                {tag: 'ul', cls: 'x-menu-list'}
            ]
        };
        if(this.floating){
            this.el = new Ext.Layer({
                shadow: this.shadow,
                dh: dh,
                constrain: false,
                parentEl: ct,
                zindex: this.zIndex
            });
        }else{
            this.el = ct.createChild(dh);
        }
        Ext.menu.Menu.superclass.onRender.call(this, ct, position);

        if(!this.keyNav){
            this.keyNav = new Ext.menu.MenuNav(this);
        }
        // generic focus element
        this.focusEl = this.el.child('a.x-menu-focus');
        this.ul = this.el.child('ul.x-menu-list');
        this.mon(this.ul, {
            scope: this,
            click: this.onClick,
            mouseover: this.onMouseOver,
            mouseout: this.onMouseOut
        });
        if(this.enableScrolling){
            this.mon(this.el, {
                scope: this,
                delegate: '.x-menu-scroller',
                click: this.onScroll,
                mouseover: this.deactivateActive
            });
        }
    },

    // private
    findTargetItem : function(e){
        var t = e.getTarget('.x-menu-list-item', this.ul, true);
        if(t && t.menuItemId){
            return this.items.get(t.menuItemId);
        }
    },

    // private
    onClick : function(e){
        var t = this.findTargetItem(e);
        if(t){
            if(t.isFormField){
                this.setActiveItem(t);
            }else if(t instanceof Ext.menu.BaseItem){
                if(t.menu && this.ignoreParentClicks){
                    t.expandMenu();
                    e.preventDefault();
                }else if(t.onClick){
                    t.onClick(e);
                    this.fireEvent('click', this, t, e);
                }
            }
        }
    },

    // private
    setActiveItem : function(item, autoExpand){
        if(item != this.activeItem){
            this.deactivateActive();
            if((this.activeItem = item).isFormField){
                item.focus();
            }else{
                item.activate(autoExpand);
            }
        }else if(autoExpand){
            item.expandMenu();
        }
    },

    deactivateActive : function(){
        var a = this.activeItem;
        if(a){
            if(a.isFormField){
                //Fields cannot deactivate, but Combos must collapse
                if(a.collapse){
                    a.collapse();
                }
            }else{
                a.deactivate();
            }
            delete this.activeItem;
        }
    },

    // private
    tryActivate : function(start, step){
        var items = this.items;
        for(var i = start, len = items.length; i >= 0 && i < len; i+= step){
            var item = items.get(i);
            if(item.isVisible() && !item.disabled && (item.canActivate || item.isFormField)){
                this.setActiveItem(item, false);
                return item;
            }
        }
        return false;
    },

    // private
    onMouseOver : function(e){
        var t = this.findTargetItem(e);
        if(t){
            if(t.canActivate && !t.disabled){
                this.setActiveItem(t, true);
            }
        }
        this.over = true;
        this.fireEvent('mouseover', this, e, t);
    },

    // private
    onMouseOut : function(e){
        var t = this.findTargetItem(e);
        if(t){
            if(t == this.activeItem && t.shouldDeactivate && t.shouldDeactivate(e)){
                this.activeItem.deactivate();
                delete this.activeItem;
            }
        }
        this.over = false;
        this.fireEvent('mouseout', this, e, t);
    },

    // private
    onScroll : function(e, t){
        if(e){
            e.stopEvent();
        }
        var ul = this.ul.dom, top = Ext.fly(t).is('.x-menu-scroller-top');
        ul.scrollTop += this.scrollIncrement * (top ? -1 : 1);
        if(top ? ul.scrollTop <= 0 : ul.scrollTop + this.activeMax >= ul.scrollHeight){
           this.onScrollerOut(null, t);
        }
    },

    // private
    onScrollerIn : function(e, t){
        var ul = this.ul.dom, top = Ext.fly(t).is('.x-menu-scroller-top');
        if(top ? ul.scrollTop > 0 : ul.scrollTop + this.activeMax < ul.scrollHeight){
            Ext.fly(t).addClass(['x-menu-item-active', 'x-menu-scroller-active']);
        }
    },

    // private
    onScrollerOut : function(e, t){
        Ext.fly(t).removeClass(['x-menu-item-active', 'x-menu-scroller-active']);
    },

    /**
     * If {@link #floating}=true, shows this menu relative to
     * another element using {@link #showat}, otherwise uses {@link Ext.Component#show}.
     * @param {Mixed} element The element to align to
     * @param {String} position (optional) The {@link Ext.Element#alignTo} anchor position to use in aligning to
     * the element (defaults to this.defaultAlign)
     * @param {Ext.menu.Menu} parentMenu (optional) This menu's parent menu, if applicable (defaults to undefined)
     */
    show : function(el, pos, parentMenu){
        if(this.floating){
            this.parentMenu = parentMenu;
            if(!this.el){
                this.render();
                this.doLayout(false, true);
            }
            this.showAt(this.el.getAlignToXY(el, pos || this.defaultAlign, this.defaultOffsets), parentMenu);
        }else{
            Ext.menu.Menu.superclass.show.call(this);
        }
    },

    /**
     * Displays this menu at a specific xy position and fires the 'show' event if a
     * handler for the 'beforeshow' event does not return false cancelling the operation.
     * @param {Array} xyPosition Contains X & Y [x, y] values for the position at which to show the menu (coordinates are page-based)
     * @param {Ext.menu.Menu} parentMenu (optional) This menu's parent menu, if applicable (defaults to undefined)
     */
    showAt : function(xy, parentMenu){
        if(this.fireEvent('beforeshow', this) !== false){
            this.parentMenu = parentMenu;
            if(!this.el){
                this.render();
            }
            if(this.enableScrolling){
                // set the position so we can figure out the constrain value.
                this.el.setXY(xy);
                //constrain the value, keep the y coordinate the same
                xy[1] = this.constrainScroll(xy[1]);
                xy = [this.el.adjustForConstraints(xy)[0], xy[1]];
            }else{
                //constrain to the viewport.
                xy = this.el.adjustForConstraints(xy);
            }
            this.el.setXY(xy);
            this.el.show();
            Ext.menu.Menu.superclass.onShow.call(this);
            if(Ext.isIE9m){
                // internal event, used so we don't couple the layout to the menu
                this.fireEvent('autosize', this);
                if(!Ext.isIE8){
                    this.el.repaint();
                }
            }
            this.hidden = false;
            this.focus();
            this.fireEvent('show', this);
        }
    },

    constrainScroll : function(y){
        var max, full = this.ul.setHeight('auto').getHeight(),
            returnY = y, normalY, parentEl, scrollTop, viewHeight;
        if(this.floating){
            parentEl = Ext.fly(this.el.dom.parentNode);
            scrollTop = parentEl.getScroll().top;
            viewHeight = parentEl.getViewSize().height;
            //Normalize y by the scroll position for the parent element.  Need to move it into the coordinate space
            //of the view.
            normalY = y - scrollTop;
            max = this.maxHeight ? this.maxHeight : viewHeight - normalY;
            if(full > viewHeight) {
                max = viewHeight;
                //Set returnY equal to (0,0) in view space by reducing y by the value of normalY
                returnY = y - normalY;
            } else if(max < full) {
                returnY = y - (full - max);
                max = full;
            }
        }else{
            max = this.getHeight();
        }
        // Always respect maxHeight 
        if (this.maxHeight){
            max = Math.min(this.maxHeight, max);
        }
        if(full > max && max > 0){
            this.activeMax = max - this.scrollerHeight * 2 - this.el.getFrameWidth('tb') - Ext.num(this.el.shadowOffset, 0);
            this.ul.setHeight(this.activeMax);
            this.createScrollers();
            this.el.select('.x-menu-scroller').setDisplayed('');
        }else{
            this.ul.setHeight(full);
            this.el.select('.x-menu-scroller').setDisplayed('none');
        }
        this.ul.dom.scrollTop = 0;
        return returnY;
    },

    createScrollers : function(){
        if(!this.scroller){
            this.scroller = {
                pos: 0,
                top: this.el.insertFirst({
                    tag: 'div',
                    cls: 'x-menu-scroller x-menu-scroller-top',
                    html: ' '
                }),
                bottom: this.el.createChild({
                    tag: 'div',
                    cls: 'x-menu-scroller x-menu-scroller-bottom',
                    html: ' '
                })
            };
            this.scroller.top.hover(this.onScrollerIn, this.onScrollerOut, this);
            this.scroller.topRepeater = new Ext.util.ClickRepeater(this.scroller.top, {
                listeners: {
                    click: this.onScroll.createDelegate(this, [null, this.scroller.top], false)
                }
            });
            this.scroller.bottom.hover(this.onScrollerIn, this.onScrollerOut, this);
            this.scroller.bottomRepeater = new Ext.util.ClickRepeater(this.scroller.bottom, {
                listeners: {
                    click: this.onScroll.createDelegate(this, [null, this.scroller.bottom], false)
                }
            });
        }
    },

    onLayout : function(){
        if(this.isVisible()){
            if(this.enableScrolling){
                this.constrainScroll(this.el.getTop());
            }
            if(this.floating){
                this.el.sync();
            }
        }
    },

    focus : function(){
        if(!this.hidden){
            this.doFocus.defer(50, this);
        }
    },

    doFocus : function(){
        if(!this.hidden){
            this.focusEl.focus();
        }
    },

    /**
     * Hides this menu and optionally all parent menus
     * @param {Boolean} deep (optional) True to hide all parent menus recursively, if any (defaults to false)
     */
    hide : function(deep){
        if (!this.isDestroyed) {
            this.deepHide = deep;
            Ext.menu.Menu.superclass.hide.call(this);
            delete this.deepHide;
        }
    },

    // private
    onHide : function(){
        Ext.menu.Menu.superclass.onHide.call(this);
        this.deactivateActive();
        if(this.el && this.floating){
            this.el.hide();
        }
        var pm = this.parentMenu;
        if(this.deepHide === true && pm){
            if(pm.floating){
                pm.hide(true);
            }else{
                pm.deactivateActive();
            }
        }
    },

    // private
    lookupComponent : function(c){
         if(Ext.isString(c)){
            c = (c == 'separator' || c == '-') ? new Ext.menu.Separator() : new Ext.menu.TextItem(c);
             this.applyDefaults(c);
         }else{
            if(Ext.isObject(c)){
                c = this.getMenuItem(c);
            }else if(c.tagName || c.el){ // element. Wrap it.
                c = new Ext.BoxComponent({
                    el: c
                });
            }
         }
         return c;
    },

    applyDefaults : function(c) {
        if (!Ext.isString(c)) {
            c = Ext.menu.Menu.superclass.applyDefaults.call(this, c);
            var d = this.internalDefaults;
            if(d){
                if(c.events){
                    Ext.applyIf(c.initialConfig, d);
                    Ext.apply(c, d);
                }else{
                    Ext.applyIf(c, d);
                }
            }
        }
        return c;
    },

    // private
    getMenuItem : function(config) {
        config.ownerCt = this;
        
        if (!config.isXType) {
            if (!config.xtype && Ext.isBoolean(config.checked)) {
                return new Ext.menu.CheckItem(config);
            }
            return Ext.create(config, this.defaultType);
        }
        return config;
    },

    /**
     * Adds a separator bar to the menu
     * @return {Ext.menu.Item} The menu item that was added
     */
    addSeparator : function() {
        return this.add(new Ext.menu.Separator());
    },

    /**
     * Adds an {@link Ext.Element} object to the menu
     * @param {Mixed} el The element or DOM node to add, or its id
     * @return {Ext.menu.Item} The menu item that was added
     */
    addElement : function(el) {
        return this.add(new Ext.menu.BaseItem({
            el: el
        }));
    },

    /**
     * Adds an existing object based on {@link Ext.menu.BaseItem} to the menu
     * @param {Ext.menu.Item} item The menu item to add
     * @return {Ext.menu.Item} The menu item that was added
     */
    addItem : function(item) {
        return this.add(item);
    },

    /**
     * Creates a new {@link Ext.menu.Item} based an the supplied config object and adds it to the menu
     * @param {Object} config A MenuItem config object
     * @return {Ext.menu.Item} The menu item that was added
     */
    addMenuItem : function(config) {
        return this.add(this.getMenuItem(config));
    },

    /**
     * Creates a new {@link Ext.menu.TextItem} with the supplied text and adds it to the menu
     * @param {String} text The text to display in the menu item
     * @return {Ext.menu.Item} The menu item that was added
     */
    addText : function(text){
        return this.add(new Ext.menu.TextItem(text));
    },

    //private
    onDestroy : function(){
        Ext.EventManager.removeResizeListener(this.hide, this);
        var pm = this.parentMenu;
        if(pm && pm.activeChild == this){
            delete pm.activeChild;
        }
        delete this.parentMenu;
        Ext.menu.Menu.superclass.onDestroy.call(this);
        Ext.menu.MenuMgr.unregister(this);
        if(this.keyNav) {
            this.keyNav.disable();
        }
        var s = this.scroller;
        if(s){
            Ext.destroy(s.topRepeater, s.bottomRepeater, s.top, s.bottom);
        }
        Ext.destroy(
            this.el,
            this.focusEl,
            this.ul
        );
    }
});

Ext.reg('menu', Ext.menu.Menu);

// MenuNav is a private utility class used internally by the Menu
Ext.menu.MenuNav = Ext.extend(Ext.KeyNav, function(){
    function up(e, m){
        if(!m.tryActivate(m.items.indexOf(m.activeItem)-1, -1)){
            m.tryActivate(m.items.length-1, -1);
        }
    }
    function down(e, m){
        if(!m.tryActivate(m.items.indexOf(m.activeItem)+1, 1)){
            m.tryActivate(0, 1);
        }
    }
    return {
        constructor : function(menu){
            Ext.menu.MenuNav.superclass.constructor.call(this, menu.el);
            this.scope = this.menu = menu;
        },

        doRelay : function(e, h){
            var k = e.getKey();
//          Keystrokes within a form Field (e.g.: down in a Combo) do not navigate. Allow only TAB
            if (this.menu.activeItem && this.menu.activeItem.isFormField && k != e.TAB) {
                return false;
            }
            if(!this.menu.activeItem && e.isNavKeyPress() && k != e.SPACE && k != e.RETURN){
                this.menu.tryActivate(0, 1);
                return false;
            }
            return h.call(this.scope || this, e, this.menu);
        },

        tab: function(e, m) {
            e.stopEvent();
            if (e.shiftKey) {
                up(e, m);
            } else {
                down(e, m);
            }
        },

        up : up,

        down : down,

        right : function(e, m){
            if(m.activeItem){
                m.activeItem.expandMenu(true);
            }
        },

        left : function(e, m){
            m.hide();
            if(m.parentMenu && m.parentMenu.activeItem){
                m.parentMenu.activeItem.activate();
            }
        },

        enter : function(e, m){
            if(m.activeItem){
                e.stopPropagation();
                m.activeItem.onClick(e);
                m.fireEvent('click', this, m.activeItem);
                return true;
            }
        }
    };
}());
/**
 * @class Ext.menu.MenuMgr
 * Provides a common registry of all menu items on a page so that they can be easily accessed by id.
 * @singleton
 */
Ext.menu.MenuMgr = function(){
   var menus, 
       active, 
       map,
       groups = {}, 
       attached = false, 
       lastShow = new Date();
   

   // private - called when first menu is created
   function init(){
       menus = {};
       active = new Ext.util.MixedCollection();
       map = Ext.getDoc().addKeyListener(27, hideAll);
       map.disable();
   }

   // private
   function hideAll(){
       if(active && active.length > 0){
           var c = active.clone();
           c.each(function(m){
               m.hide();
           });
           return true;
       }
       return false;
   }

   // private
   function onHide(m){
       active.remove(m);
       if(active.length < 1){
           map.disable();
           Ext.getDoc().un("mousedown", onMouseDown);
           attached = false;
       }
   }

   // private
   function onShow(m){
       var last = active.last();
       lastShow = new Date();
       active.add(m);
       if(!attached){
           map.enable();
           Ext.getDoc().on("mousedown", onMouseDown);
           attached = true;
       }
       if(m.parentMenu){
          m.getEl().setZIndex(parseInt(m.parentMenu.getEl().getStyle("z-index"), 10) + 3);
          m.parentMenu.activeChild = m;
       }else if(last && !last.isDestroyed && last.isVisible()){
          m.getEl().setZIndex(parseInt(last.getEl().getStyle("z-index"), 10) + 3);
       }
   }

   // private
   function onBeforeHide(m){
       if(m.activeChild){
           m.activeChild.hide();
       }
       if(m.autoHideTimer){
           clearTimeout(m.autoHideTimer);
           delete m.autoHideTimer;
       }
   }

   // private
   function onBeforeShow(m){
       var pm = m.parentMenu;
       if(!pm && !m.allowOtherMenus){
           hideAll();
       }else if(pm && pm.activeChild){
           pm.activeChild.hide();
       }
   }

   // private
   function onMouseDown(e){
       if(lastShow.getElapsed() > 50 && active.length > 0 && !e.getTarget(".x-menu")){
           hideAll();
       }
   }

   return {

       /**
        * Hides all menus that are currently visible
        * @return {Boolean} success True if any active menus were hidden.
        */
       hideAll : function(){
            return hideAll();
       },

       // private
       register : function(menu){
           if(!menus){
               init();
           }
           menus[menu.id] = menu;
           menu.on({
               beforehide: onBeforeHide,
               hide: onHide,
               beforeshow: onBeforeShow,
               show: onShow
           });
       },

        /**
         * Returns a {@link Ext.menu.Menu} object
         * @param {String/Object} menu The string menu id, an existing menu object reference, or a Menu config that will
         * be used to generate and return a new Menu instance.
         * @return {Ext.menu.Menu} The specified menu, or null if none are found
         */
       get : function(menu){
           if(typeof menu == "string"){ // menu id
               if(!menus){  // not initialized, no menus to return
                   return null;
               }
               return menus[menu];
           }else if(menu.events){  // menu instance
               return menu;
           }else if(typeof menu.length == 'number'){ // array of menu items?
               return new Ext.menu.Menu({items:menu});
           }else{ // otherwise, must be a config
               return Ext.create(menu, 'menu');
           }
       },

       // private
       unregister : function(menu){
           delete menus[menu.id];
           menu.un("beforehide", onBeforeHide);
           menu.un("hide", onHide);
           menu.un("beforeshow", onBeforeShow);
           menu.un("show", onShow);
       },

       // private
       registerCheckable : function(menuItem){
           var g = menuItem.group;
           if(g){
               if(!groups[g]){
                   groups[g] = [];
               }
               groups[g].push(menuItem);
           }
       },

       // private
       unregisterCheckable : function(menuItem){
           var g = menuItem.group;
           if(g){
               groups[g].remove(menuItem);
           }
       },
       
       // private
       onCheckChange: function(item, state){
           if(item.group && state){
               var group = groups[item.group],
                   i = 0,
                   len = group.length,
                   current;
                   
               for(; i < len; i++){
                   current = group[i];
                   if(current != item){
                       current.setChecked(false);
                   }
               }
           }
       },

       getCheckedItem : function(groupId){
           var g = groups[groupId];
           if(g){
               for(var i = 0, l = g.length; i < l; i++){
                   if(g[i].checked){
                       return g[i];
                   }
               }
           }
           return null;
       },

       setCheckedItem : function(groupId, itemId){
           var g = groups[groupId];
           if(g){
               for(var i = 0, l = g.length; i < l; i++){
                   if(g[i].id == itemId){
                       g[i].setChecked(true);
                   }
               }
           }
           return null;
       }
   };
}();
/**
 * @class Ext.menu.BaseItem
 * @extends Ext.Component
 * The base class for all items that render into menus.  BaseItem provides default rendering, activated state
 * management and base configuration options shared by all menu components.
 * @constructor
 * Creates a new BaseItem
 * @param {Object} config Configuration options
 * @xtype menubaseitem
 */
Ext.menu.BaseItem = Ext.extend(Ext.Component, {
    /**
     * @property parentMenu
     * @type Ext.menu.Menu
     * The parent Menu of this Item.
     */
    /**
     * @cfg {Function} handler
     * A function that will handle the click event of this menu item (optional).
     * The handler is passed the following parameters:
      
     * 
    • b : Item
      This menu Item.
      • 
     * 
    • e : EventObject
      The click event.
      • 
     * 
    
     */
    /**
     * @cfg {Object} scope
     * The scope (this reference) in which the handler function will be called.
     */
    /**
     * @cfg {Boolean} canActivate True if this item can be visually activated (defaults to false)
     */
    canActivate : false,
    /**
     * @cfg {String} activeClass The CSS class to use when the item becomes activated (defaults to "x-menu-item-active")
     */
    activeClass : "x-menu-item-active",
    /**
     * @cfg {Boolean} hideOnClick True to hide the containing menu after this item is clicked (defaults to true)
     */
    hideOnClick : true,
    /**
     * @cfg {Number} clickHideDelay Length of time in milliseconds to wait before hiding after a click (defaults to 1)
     */
    clickHideDelay : 1,

    // private
    ctype : "Ext.menu.BaseItem",

    // private
    actionMode : "container",

    initComponent : function(){
        Ext.menu.BaseItem.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event click
             * Fires when this item is clicked
             * @param {Ext.menu.BaseItem} this
             * @param {Ext.EventObject} e
             */
            'click',
            /**
             * @event activate
             * Fires when this item is activated
             * @param {Ext.menu.BaseItem} this
             */
            'activate',
            /**
             * @event deactivate
             * Fires when this item is deactivated
             * @param {Ext.menu.BaseItem} this
             */
            'deactivate'
        );
        if(this.handler){
            this.on("click", this.handler, this.scope);
        }
    },

    // private
    onRender : function(container, position){
        Ext.menu.BaseItem.superclass.onRender.apply(this, arguments);
        if(this.ownerCt && this.ownerCt instanceof Ext.menu.Menu){
            this.parentMenu = this.ownerCt;
        }else{
            this.container.addClass('x-menu-list-item');
            this.mon(this.el, {
                scope: this,
                click: this.onClick,
                mouseenter: this.activate,
                mouseleave: this.deactivate
            });
        }
    },

    /**
     * Sets the function that will handle click events for this item (equivalent to passing in the {@link #handler}
     * config property).  If an existing handler is already registered, it will be unregistered for you.
     * @param {Function} handler The function that should be called on click
     * @param {Object} scope The scope (this reference) in which the handler function is executed. Defaults to this menu item.
     */
    setHandler : function(handler, scope){
        if(this.handler){
            this.un("click", this.handler, this.scope);
        }
        this.on("click", this.handler = handler, this.scope = scope);
    },

    // private
    onClick : function(e){
        if(!this.disabled && this.fireEvent("click", this, e) !== false
                && (this.parentMenu && this.parentMenu.fireEvent("itemclick", this, e) !== false)){
            this.handleClick(e);
        }else{
            e.stopEvent();
        }
    },

    // private
    activate : function(){
        if(this.disabled){
            return false;
        }
        var li = this.container;
        li.addClass(this.activeClass);
        this.region = li.getRegion().adjust(2, 2, -2, -2);
        this.fireEvent("activate", this);
        return true;
    },

    // private
    deactivate : function(){
        this.container.removeClass(this.activeClass);
        this.fireEvent("deactivate", this);
    },

    // private
    shouldDeactivate : function(e){
        return !this.region || !this.region.contains(e.getPoint());
    },

    // private
    handleClick : function(e){
        var pm = this.parentMenu;
        if(this.hideOnClick){
            if(pm.floating){
                this.clickHideDelayTimer = pm.hide.defer(this.clickHideDelay, pm, [true]);
            }else{
                pm.deactivateActive();
            }
        }
    },
    
    beforeDestroy: function(){
        clearTimeout(this.clickHideDelayTimer);
        Ext.menu.BaseItem.superclass.beforeDestroy.call(this);    
    },

    // private. Do nothing
    expandMenu : Ext.emptyFn,

    // private. Do nothing
    hideMenu : Ext.emptyFn
});
Ext.reg('menubaseitem', Ext.menu.BaseItem);/**
 * @class Ext.menu.TextItem
 * @extends Ext.menu.BaseItem
 * Adds a static text string to a menu, usually used as either a heading or group separator.
 * @constructor
 * Creates a new TextItem
 * @param {Object/String} config If config is a string, it is used as the text to display, otherwise it
 * is applied as a config object (and should contain a text property).
 * @xtype menutextitem
 */
Ext.menu.TextItem = Ext.extend(Ext.menu.BaseItem, {
    /**
     * @cfg {String} text The text to display for this item (defaults to '')
     */
    /**
     * @cfg {Boolean} hideOnClick True to hide the containing menu after this item is clicked (defaults to false)
     */
    hideOnClick : false,
    /**
     * @cfg {String} itemCls The default CSS class to use for text items (defaults to "x-menu-text")
     */
    itemCls : "x-menu-text",
    
    constructor : function(config) {
        if (typeof config == 'string') {
            config = {
                text: config
            };
        }
        Ext.menu.TextItem.superclass.constructor.call(this, config);
    },

    // private
    onRender : function() {
        var s = document.createElement("span");
        s.className = this.itemCls;
        s.innerHTML = this.text;
        this.el = s;
        Ext.menu.TextItem.superclass.onRender.apply(this, arguments);
    }
});
Ext.reg('menutextitem', Ext.menu.TextItem);/**
 * @class Ext.menu.Separator
 * @extends Ext.menu.BaseItem
 * Adds a separator bar to a menu, used to divide logical groups of menu items. Generally you will
 * add one of these by using "-" in you call to add() or in your items config rather than creating one directly.
 * @constructor
 * @param {Object} config Configuration options
 * @xtype menuseparator
 */
Ext.menu.Separator = Ext.extend(Ext.menu.BaseItem, {
    /**
     * @cfg {String} itemCls The default CSS class to use for separators (defaults to "x-menu-sep")
     */
    itemCls : "x-menu-sep",
    /**
     * @cfg {Boolean} hideOnClick True to hide the containing menu after this item is clicked (defaults to false)
     */
    hideOnClick : false,
    
    /** 
     * @cfg {String} activeClass
     * @hide 
     */
    activeClass: '',

    // private
    onRender : function(li){
        var s = document.createElement("span");
        s.className = this.itemCls;
        s.innerHTML = " ";
        this.el = s;
        li.addClass("x-menu-sep-li");
        Ext.menu.Separator.superclass.onRender.apply(this, arguments);
    }
});
Ext.reg('menuseparator', Ext.menu.Separator);/**
 * @class Ext.menu.Item
 * @extends Ext.menu.BaseItem
 * A base class for all menu items that require menu-related functionality (like sub-menus) and are not static
 * display items.  Item extends the base functionality of {@link Ext.menu.BaseItem} by adding menu-specific
 * activation and click handling.
 * @constructor
 * Creates a new Item
 * @param {Object} config Configuration options
 * @xtype menuitem
 */
Ext.menu.Item = Ext.extend(Ext.menu.BaseItem, {
    /**
     * @property menu
     * @type Ext.menu.Menu
     * The submenu associated with this Item if one was configured.
     */
    /**
     * @cfg {Mixed} menu (optional) Either an instance of {@link Ext.menu.Menu} or the config object for an
     * {@link Ext.menu.Menu} which acts as the submenu when this item is activated.
     */
    /**
     * @cfg {String} icon The path to an icon to display in this item (defaults to Ext.BLANK_IMAGE_URL).  If
     * icon is specified {@link #iconCls} should not be.
     */
    /**
     * @cfg {String} iconCls A CSS class that specifies a background image that will be used as the icon for
     * this item (defaults to '').  If iconCls is specified {@link #icon} should not be.
     */
    /**
     * @cfg {String} text The text to display in this item (defaults to '').
     */
    /**
     * @cfg {String} href The href attribute to use for the underlying anchor link (defaults to '#').
     */
    /**
     * @cfg {String} hrefTarget The target attribute to use for the underlying anchor link (defaults to '').
     */
    /**
     * @cfg {String} itemCls The default CSS class to use for menu items (defaults to 'x-menu-item')
     */
    itemCls : 'x-menu-item',
    /**
     * @cfg {Boolean} canActivate True if this item can be visually activated (defaults to true)
     */
    canActivate : true,
    /**
     * @cfg {Number} showDelay Length of time in milliseconds to wait before showing this item (defaults to 200)
     */
    showDelay: 200,
    
    /**
     * @cfg {String} altText The altText to use for the icon, if it exists. Defaults to ''.
     */
    altText: '',
    
    // doc'd in BaseItem
    hideDelay: 200,

    // private
    ctype: 'Ext.menu.Item',

    initComponent : function(){
        Ext.menu.Item.superclass.initComponent.call(this);
        if(this.menu){
            // If array of items, turn it into an object config so we
            // can set the ownerCt property in the config
            if (Ext.isArray(this.menu)){
                this.menu = { items: this.menu };
            }
            
            // An object config will work here, but an instance of a menu
            // will have already setup its ref's and have no effect
            if (Ext.isObject(this.menu)){
                this.menu.ownerCt = this;
            }
            
            this.menu = Ext.menu.MenuMgr.get(this.menu);
            this.menu.ownerCt = undefined;
        }
    },

    // private
    onRender : function(container, position){
        if (!this.itemTpl) {
            this.itemTpl = Ext.menu.Item.prototype.itemTpl = new Ext.XTemplate(
                '',
                        ' target="{hrefTarget}"',
                    '',
                 '>',
                     '{altText}',
                     '{text}',
                 ''
             );
        }
        var a = this.getTemplateArgs();
        this.el = position ? this.itemTpl.insertBefore(position, a, true) : this.itemTpl.append(container, a, true);
        this.iconEl = this.el.child('img.x-menu-item-icon');
        this.textEl = this.el.child('.x-menu-item-text');
        if(!this.href) { // if no link defined, prevent the default anchor event
            this.mon(this.el, 'click', Ext.emptyFn, null, { preventDefault: true });
        }
        Ext.menu.Item.superclass.onRender.call(this, container, position);
    },

    getTemplateArgs: function() {
        return {
            id: this.id,
            cls: this.itemCls + (this.menu ?  ' x-menu-item-arrow' : '') + (this.cls ?  ' ' + this.cls : ''),
            href: this.href || '#',
            hrefTarget: this.hrefTarget,
            icon: this.icon || Ext.BLANK_IMAGE_URL,
            iconCls: this.iconCls || '',
            text: this.itemText||this.text||' ',
            altText: this.altText || ''
        };
    },

    /**
     * Sets the text to display in this menu item
     * @param {String} text The text to display
     */
    setText : function(text){
        this.text = text||' ';
        if(this.rendered){
            this.textEl.update(this.text);
            this.parentMenu.layout.doAutoSize();
        }
    },

    /**
     * Sets the CSS class to apply to the item's icon element
     * @param {String} cls The CSS class to apply
     */
    setIconClass : function(cls){
        var oldCls = this.iconCls;
        this.iconCls = cls;
        if(this.rendered){
            this.iconEl.replaceClass(oldCls, this.iconCls);
        }
    },

    //private
    beforeDestroy: function(){
        clearTimeout(this.showTimer);
        clearTimeout(this.hideTimer);
        if (this.menu){
            delete this.menu.ownerCt;
            this.menu.destroy();
        }
        Ext.menu.Item.superclass.beforeDestroy.call(this);
    },

    // private
    handleClick : function(e){
        if(!this.href){ // if no link defined, stop the event automatically
            e.stopEvent();
        }
        Ext.menu.Item.superclass.handleClick.apply(this, arguments);
    },

    // private
    activate : function(autoExpand){
        if(Ext.menu.Item.superclass.activate.apply(this, arguments)){
            this.focus();
            if(autoExpand){
                this.expandMenu();
            }
        }
        return true;
    },

    // private
    shouldDeactivate : function(e){
        if(Ext.menu.Item.superclass.shouldDeactivate.call(this, e)){
            if(this.menu && this.menu.isVisible()){
                return !this.menu.getEl().getRegion().contains(e.getPoint());
            }
            return true;
        }
        return false;
    },

    // private
    deactivate : function(){
        Ext.menu.Item.superclass.deactivate.apply(this, arguments);
        this.hideMenu();
    },

    // private
    expandMenu : function(autoActivate){
        if(!this.disabled && this.menu){
            clearTimeout(this.hideTimer);
            delete this.hideTimer;
            if(!this.menu.isVisible() && !this.showTimer){
                this.showTimer = this.deferExpand.defer(this.showDelay, this, [autoActivate]);
            }else if (this.menu.isVisible() && autoActivate){
                this.menu.tryActivate(0, 1);
            }
        }
    },

    // private
    deferExpand : function(autoActivate){
        delete this.showTimer;
        this.menu.show(this.container, this.parentMenu.subMenuAlign || 'tl-tr?', this.parentMenu);
        if(autoActivate){
            this.menu.tryActivate(0, 1);
        }
    },

    // private
    hideMenu : function(){
        clearTimeout(this.showTimer);
        delete this.showTimer;
        if(!this.hideTimer && this.menu && this.menu.isVisible()){
            this.hideTimer = this.deferHide.defer(this.hideDelay, this);
        }
    },

    // private
    deferHide : function(){
        delete this.hideTimer;
        if(this.menu.over){
            this.parentMenu.setActiveItem(this, false);
        }else{
            this.menu.hide();
        }
    }
});
Ext.reg('menuitem', Ext.menu.Item);/**
 * @class Ext.menu.CheckItem
 * @extends Ext.menu.Item
 * Adds a menu item that contains a checkbox by default, but can also be part of a radio group.
 * @constructor
 * Creates a new CheckItem
 * @param {Object} config Configuration options
 * @xtype menucheckitem
 */
Ext.menu.CheckItem = Ext.extend(Ext.menu.Item, {
    /**
     * @cfg {String} group
     * All check items with the same group name will automatically be grouped into a single-select
     * radio button group (defaults to '')
     */
    /**
     * @cfg {String} itemCls The default CSS class to use for check items (defaults to "x-menu-item x-menu-check-item")
     */
    itemCls : "x-menu-item x-menu-check-item",
    /**
     * @cfg {String} groupClass The default CSS class to use for radio group check items (defaults to "x-menu-group-item")
     */
    groupClass : "x-menu-group-item",

    /**
     * @cfg {Boolean} checked True to initialize this checkbox as checked (defaults to false).  Note that
     * if this checkbox is part of a radio group (group = true) only the first item in the group that is
     * initialized with checked = true will be rendered as checked.
     */
    checked: false,

    // private
    ctype: "Ext.menu.CheckItem",
    
    initComponent : function(){
        Ext.menu.CheckItem.superclass.initComponent.call(this);
	    this.addEvents(
	        /**
	         * @event beforecheckchange
	         * Fires before the checked value is set, providing an opportunity to cancel if needed
	         * @param {Ext.menu.CheckItem} this
	         * @param {Boolean} checked The new checked value that will be set
	         */
	        "beforecheckchange" ,
	        /**
	         * @event checkchange
	         * Fires after the checked value has been set
	         * @param {Ext.menu.CheckItem} this
	         * @param {Boolean} checked The checked value that was set
	         */
	        "checkchange"
	    );
	    /**
	     * A function that handles the checkchange event.  The function is undefined by default, but if an implementation
	     * is provided, it will be called automatically when the checkchange event fires.
	     * @param {Ext.menu.CheckItem} this
	     * @param {Boolean} checked The checked value that was set
	     * @method checkHandler
	     */
	    if(this.checkHandler){
	        this.on('checkchange', this.checkHandler, this.scope);
	    }
	    Ext.menu.MenuMgr.registerCheckable(this);
    },

    // private
    onRender : function(c){
        Ext.menu.CheckItem.superclass.onRender.apply(this, arguments);
        if(this.group){
            this.el.addClass(this.groupClass);
        }
        if(this.checked){
            this.checked = false;
            this.setChecked(true, true);
        }
    },

    // private
    destroy : function(){
        Ext.menu.MenuMgr.unregisterCheckable(this);
        Ext.menu.CheckItem.superclass.destroy.apply(this, arguments);
    },

    /**
     * Set the checked state of this item
     * @param {Boolean} checked The new checked value
     * @param {Boolean} suppressEvent (optional) True to prevent the checkchange event from firing (defaults to false)
     */
    setChecked : function(state, suppressEvent){
        var suppress = suppressEvent === true;
        if(this.checked != state && (suppress || this.fireEvent("beforecheckchange", this, state) !== false)){
            Ext.menu.MenuMgr.onCheckChange(this, state);
            if(this.container){
                this.container[state ? "addClass" : "removeClass"]("x-menu-item-checked");
            }
            this.checked = state;
            if(!suppress){
                this.fireEvent("checkchange", this, state);
            }
        }
    },

    // private
    handleClick : function(e){
       if(!this.disabled && !(this.checked && this.group)){// disable unselect on radio item
           this.setChecked(!this.checked);
       }
       Ext.menu.CheckItem.superclass.handleClick.apply(this, arguments);
    }
});
Ext.reg('menucheckitem', Ext.menu.CheckItem);/**
 * @class Ext.menu.DateMenu
 * @extends Ext.menu.Menu
 * 
    A menu containing an {@link Ext.DatePicker} Component.
    
 * 
    Notes:
      
 * 
    • Although not listed here, the constructor for this class
 * accepts all of the configuration options of {@link Ext.DatePicker}.
      • 
 * 
    • If subclassing DateMenu, any configuration options for the DatePicker must be
 * applied to the initialConfig property of the DateMenu.
 * Applying {@link Ext.DatePicker DatePicker} configuration settings to
 * this will not affect the DatePicker's configuration.
      • 
 * 
    
 * @xtype datemenu
 */
 Ext.menu.DateMenu = Ext.extend(Ext.menu.Menu, {
    /** 
     * @cfg {Boolean} enableScrolling
     * @hide 
     */
    enableScrolling : false,
    /**
     * @cfg {Function} handler
     * Optional. A function that will handle the select event of this menu.
     * The handler is passed the following parameters:
      
     * 
    • picker : DatePicker
      The Ext.DatePicker.
      • 
     * 
    • date : Date
      The selected date.
      • 
     * 
    
     */
    /**
     * @cfg {Object} scope
     * The scope (this reference) in which the {@link #handler}
     * function will be called.  Defaults to this DateMenu instance.
     */    
    /** 
     * @cfg {Boolean} hideOnClick
     * False to continue showing the menu after a date is selected, defaults to true.
     */
    hideOnClick : true,
    
    /** 
     * @cfg {String} pickerId
     * An id to assign to the underlying date picker. Defaults to null.
     */
    pickerId : null,
    
    /** 
     * @cfg {Number} maxHeight
     * @hide 
     */
    /** 
     * @cfg {Number} scrollIncrement
     * @hide 
     */
    /**
     * The {@link Ext.DatePicker} instance for this DateMenu
     * @property picker
     * @type DatePicker
     */
    cls : 'x-date-menu',
    
    /**
     * @event click
     * @hide
     */
    
    /**
     * @event itemclick
     * @hide
     */

    initComponent : function(){
        this.on('beforeshow', this.onBeforeShow, this);
        if(this.strict = (Ext.isIE7 && Ext.isStrict)){
            this.on('show', this.onShow, this, {single: true, delay: 20});
        }
        Ext.apply(this, {
            plain: true,
            showSeparator: false,
            items: this.picker = new Ext.DatePicker(Ext.applyIf({
                internalRender: this.strict || !Ext.isIE9m,
                ctCls: 'x-menu-date-item',
                id: this.pickerId
            }, this.initialConfig))
        });
        this.picker.purgeListeners();
        Ext.menu.DateMenu.superclass.initComponent.call(this);
        /**
         * @event select
         * Fires when a date is selected from the {@link #picker Ext.DatePicker}
         * @param {DatePicker} picker The {@link #picker Ext.DatePicker}
         * @param {Date} date The selected date
         */
        this.relayEvents(this.picker, ['select']);
        this.on('show', this.picker.focus, this.picker);
        this.on('select', this.menuHide, this);
        if(this.handler){
            this.on('select', this.handler, this.scope || this);
        }
    },

    menuHide : function() {
        if(this.hideOnClick){
            this.hide(true);
        }
    },

    onBeforeShow : function(){
        if(this.picker){
            this.picker.hideMonthPicker(true);
        }
    },

    onShow : function(){
        var el = this.picker.getEl();
        el.setWidth(el.getWidth()); //nasty hack for IE7 strict mode
    }
 });
 Ext.reg('datemenu', Ext.menu.DateMenu);
 /**
 * @class Ext.menu.ColorMenu
 * @extends Ext.menu.Menu
 * 
    A menu containing a {@link Ext.ColorPalette} Component.
    
 * 
    Notes:
      
 * 
    • Although not listed here, the constructor for this class
 * accepts all of the configuration options of {@link Ext.ColorPalette}.
      • 
 * 
    • If subclassing ColorMenu, any configuration options for the ColorPalette must be
 * applied to the initialConfig property of the ColorMenu.
 * Applying {@link Ext.ColorPalette ColorPalette} configuration settings to
 * this will not affect the ColorPalette's configuration.
      • 
 * 
     * 
 * @xtype colormenu
 */
 Ext.menu.ColorMenu = Ext.extend(Ext.menu.Menu, {
    /** 
     * @cfg {Boolean} enableScrolling
     * @hide 
     */
    enableScrolling : false,
    /**
     * @cfg {Function} handler
     * Optional. A function that will handle the select event of this menu.
     * The handler is passed the following parameters:
      
     * 
    • palette : ColorPalette
      The {@link #palette Ext.ColorPalette}.
      • 
     * 
    • color : String
      The 6-digit color hex code (without the # symbol).
      • 
     * 
    
     */
    /**
     * @cfg {Object} scope
     * The scope (this reference) in which the {@link #handler}
     * function will be called.  Defaults to this ColorMenu instance.
     */    
    
    /** 
     * @cfg {Boolean} hideOnClick
     * False to continue showing the menu after a color is selected, defaults to true.
     */
    hideOnClick : true,
    
    cls : 'x-color-menu',
    
    /** 
     * @cfg {String} paletteId
     * An id to assign to the underlying color palette. Defaults to null.
     */
    paletteId : null,
    
    /** 
     * @cfg {Number} maxHeight
     * @hide 
     */
    /** 
     * @cfg {Number} scrollIncrement
     * @hide 
     */
    /**
     * @property palette
     * @type ColorPalette
     * The {@link Ext.ColorPalette} instance for this ColorMenu
     */
    
    
    /**
     * @event click
     * @hide
     */
    
    /**
     * @event itemclick
     * @hide
     */
    
    initComponent : function(){
        Ext.apply(this, {
            plain: true,
            showSeparator: false,
            items: this.palette = new Ext.ColorPalette(Ext.applyIf({
                id: this.paletteId
            }, this.initialConfig))
        });
        this.palette.purgeListeners();
        Ext.menu.ColorMenu.superclass.initComponent.call(this);
        /**
         * @event select
         * Fires when a color is selected from the {@link #palette Ext.ColorPalette}
         * @param {Ext.ColorPalette} palette The {@link #palette Ext.ColorPalette}
	     * @param {String} color The 6-digit color hex code (without the # symbol)
         */
        this.relayEvents(this.palette, ['select']);
        this.on('select', this.menuHide, this);
        if(this.handler){
            this.on('select', this.handler, this.scope || this);
        }
    },

    menuHide : function(){
        if(this.hideOnClick){
            this.hide(true);
        }
    }
});
Ext.reg('colormenu', Ext.menu.ColorMenu);
/**
 * @class Ext.form.Field
 * @extends Ext.BoxComponent
 * Base class for form fields that provides default event handling, sizing, value handling and other functionality.
 * @constructor
 * Creates a new Field
 * @param {Object} config Configuration options
 * @xtype field
 */
Ext.form.Field = Ext.extend(Ext.BoxComponent,  {
    /**
     * 
    The label Element associated with this Field. Only available after this Field has been rendered by a
     * {@link form Ext.layout.FormLayout} layout manager.
    
     * @type Ext.Element
     * @property label
     */
    /**
     * @cfg {String} inputType The type attribute for input fields -- e.g. radio, text, password, file (defaults
     * to 'text'). The types 'file' and 'password' must be used to render those field types currently -- there are
     * no separate Ext components for those. Note that if you use inputType:'file', {@link #emptyText}
     * is not supported and should be avoided.
     */
    /**
     * @cfg {Number} tabIndex The tabIndex for this field. Note this only applies to fields that are rendered,
     * not those which are built via applyTo (defaults to undefined).
     */
    /**
     * @cfg {Mixed} value A value to initialize this field with (defaults to undefined).
     */
    /**
     * @cfg {String} name The field's HTML name attribute (defaults to '').
     * Note: this property must be set if this field is to be automatically included with
     * {@link Ext.form.BasicForm#submit form submit()}.
     */
    /**
     * @cfg {String} cls A custom CSS class to apply to the field's underlying element (defaults to '').
     */

    /**
     * @cfg {String} invalidClass The CSS class to use when marking a field invalid (defaults to 'x-form-invalid')
     */
    invalidClass : 'x-form-invalid',
    /**
     * @cfg {String} invalidText The error text to use when marking a field invalid and no message is provided
     * (defaults to 'The value in this field is invalid')
     */
    invalidText : 'The value in this field is invalid',
    /**
     * @cfg {String} focusClass The CSS class to use when the field receives focus (defaults to 'x-form-focus')
     */
    focusClass : 'x-form-focus',
    /**
     * @cfg {Boolean} preventMark
     * true to disable {@link #markInvalid marking the field invalid}.
     * Defaults to false.
     */
    /**
     * @cfg {String/Boolean} validationEvent The event that should initiate field validation. Set to false to disable
      automatic validation (defaults to 'keyup').
     */
    validationEvent : 'keyup',
    /**
     * @cfg {Boolean} validateOnBlur Whether the field should validate when it loses focus (defaults to true).
     */
    validateOnBlur : true,
    /**
     * @cfg {Number} validationDelay The length of time in milliseconds after user input begins until validation
     * is initiated (defaults to 250)
     */
    validationDelay : 250,
    /**
     * @cfg {String/Object} autoCreate 
    A {@link Ext.DomHelper DomHelper} element spec, or true for a default
     * element spec. Used to create the {@link Ext.Component#getEl Element} which will encapsulate this Component.
     * See {@link Ext.Component#autoEl autoEl} for details.  Defaults to:
    
     * 
    {tag: 'input', type: 'text', size: '20', autocomplete: 'off'}
    
     */
    defaultAutoCreate : {tag: 'input', type: 'text', size: '20', autocomplete: 'off'},
    /**
     * @cfg {String} fieldClass The default CSS class for the field (defaults to 'x-form-field')
     */
    fieldClass : 'x-form-field',
    /**
     * @cfg {String} msgTarget 
    The location where the message text set through {@link #markInvalid} should display.
     * Must be one of the following values:
    
     * 
      
     * 
    • qtip Display a quick tip containing the message when the user hovers over the field. This is the default.
     * 
      {@link Ext.QuickTips#init Ext.QuickTips.init} must have been called for this setting to work.
     * 
    • title Display the message in a default browser title attribute popup.
      • 
     * 
    • under Add a block div beneath the field containing the error message.
      • 
     * 
    • side Add an error icon to the right of the field, displaying the message in a popup on hover.
      • 
     * 
    • [element id] Add the error message directly to the innerHTML of the specified element.
      • 
     * 
    
     */
    msgTarget : 'qtip',
    /**
     * @cfg {String} msgFx Experimental The effect used when displaying a validation message under the field
     * (defaults to 'normal').
     */
    msgFx : 'normal',
    /**
     * @cfg {Boolean} readOnly true to mark the field as readOnly in HTML
     * (defaults to false).
     * 
    Note: this only sets the element's readOnly DOM attribute.
     * Setting readOnly=true, for example, will not disable triggering a
     * ComboBox or DateField; it gives you the option of forcing the user to choose
     * via the trigger without typing in the text box. To hide the trigger use
     * {@link Ext.form.TriggerField#hideTrigger hideTrigger}.
    
     */
    readOnly : false,
    /**
     * @cfg {Boolean} disabled True to disable the field (defaults to false).
     * 
    Be aware that conformant with the HTML specification,
     * disabled Fields will not be {@link Ext.form.BasicForm#submit submitted}.
    
     */
    disabled : false,
    /**
     * @cfg {Boolean} submitValue False to clear the name attribute on the field so that it is not submitted during a form post.
     * Defaults to true.
     */
    submitValue: true,

    // private
    isFormField : true,

    // private
    msgDisplay: '',

    // private
    hasFocus : false,

    // private
    initComponent : function(){
        Ext.form.Field.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event focus
             * Fires when this field receives input focus.
             * @param {Ext.form.Field} this
             */
            'focus',
            /**
             * @event blur
             * Fires when this field loses input focus.
             * @param {Ext.form.Field} this
             */
            'blur',
            /**
             * @event specialkey
             * Fires when any key related to navigation (arrows, tab, enter, esc, etc.) is pressed.
             * To handle other keys see {@link Ext.Panel#keys} or {@link Ext.KeyMap}.
             * You can check {@link Ext.EventObject#getKey} to determine which key was pressed.
             * For example: 
    
var form = new Ext.form.FormPanel({
    ...
    items: [{
            fieldLabel: 'Field 1',
            name: 'field1',
            allowBlank: false
        },{
            fieldLabel: 'Field 2',
            name: 'field2',
            listeners: {
                specialkey: function(field, e){
                    // e.HOME, e.END, e.PAGE_UP, e.PAGE_DOWN,
                    // e.TAB, e.ESC, arrow keys: e.LEFT, e.RIGHT, e.UP, e.DOWN
                    if (e.{@link Ext.EventObject#getKey getKey()} == e.ENTER) {
                        var form = field.ownerCt.getForm();
                        form.submit();
                    }
                }
            }
        }
    ],
    ...
});
             * 
    
             * @param {Ext.form.Field} this
             * @param {Ext.EventObject} e The event object
             */
            'specialkey',
            /**
             * @event change
             * Fires just before the field blurs if the field value has changed.
             * @param {Ext.form.Field} this
             * @param {Mixed} newValue The new value
             * @param {Mixed} oldValue The original value
             */
            'change',
            /**
             * @event invalid
             * Fires after the field has been marked as invalid.
             * @param {Ext.form.Field} this
             * @param {String} msg The validation message
             */
            'invalid',
            /**
             * @event valid
             * Fires after the field has been validated with no errors.
             * @param {Ext.form.Field} this
             */
            'valid'
        );
    },

    /**
     * Returns the {@link Ext.form.Field#name name} or {@link Ext.form.ComboBox#hiddenName hiddenName}
     * attribute of the field if available.
     * @return {String} name The field {@link Ext.form.Field#name name} or {@link Ext.form.ComboBox#hiddenName hiddenName}
     */
    getName : function(){
        return this.rendered && this.el.dom.name ? this.el.dom.name : this.name || this.id || '';
    },

    // private
    onRender : function(ct, position){
        if(!this.el){
            var cfg = this.getAutoCreate();

            if(!cfg.name){
                cfg.name = this.name || this.id;
            }
            if(this.inputType){
                cfg.type = this.inputType;
            }
            this.autoEl = cfg;
        }
        Ext.form.Field.superclass.onRender.call(this, ct, position);
        if(this.submitValue === false){
            this.el.dom.removeAttribute('name');
        }
        var type = this.el.dom.type;
        if(type){
            if(type == 'password'){
                type = 'text';
            }
            this.el.addClass('x-form-'+type);
        }
        if(this.readOnly){
            this.setReadOnly(true);
        }
        if(this.tabIndex !== undefined){
            this.el.dom.setAttribute('tabIndex', this.tabIndex);
        }

        this.el.addClass([this.fieldClass, this.cls]);
    },

    // private
    getItemCt : function(){
        return this.itemCt;
    },

    // private
    initValue : function(){
        if(this.value !== undefined){
            this.setValue(this.value);
        }else if(!Ext.isEmpty(this.el.dom.value) && this.el.dom.value != this.emptyText){
            this.setValue(this.el.dom.value);
        }
        /**
         * The original value of the field as configured in the {@link #value} configuration, or
         * as loaded by the last form load operation if the form's {@link Ext.form.BasicForm#trackResetOnLoad trackResetOnLoad}
         * setting is true.
         * @type mixed
         * @property originalValue
         */
        this.originalValue = this.getValue();
    },

    /**
     * 
    Returns true if the value of this Field has been changed from its original value.
     * Will return false if the field is disabled or has not been rendered yet.
    
     * 
    Note that if the owning {@link Ext.form.BasicForm form} was configured with
     * {@link Ext.form.BasicForm}.{@link Ext.form.BasicForm#trackResetOnLoad trackResetOnLoad}
     * then the original value is updated when the values are loaded by
     * {@link Ext.form.BasicForm}.{@link Ext.form.BasicForm#setValues setValues}.
    
     * @return {Boolean} True if this field has been changed from its original value (and
     * is not disabled), false otherwise.
     */
    isDirty : function() {
        if(this.disabled || !this.rendered) {
            return false;
        }
        return String(this.getValue()) !== String(this.originalValue);
    },

    /**
     * Sets the read only state of this field.
     * @param {Boolean} readOnly Whether the field should be read only.
     */
    setReadOnly : function(readOnly){
        if(this.rendered){
            this.el.dom.readOnly = readOnly;
        }
        this.readOnly = readOnly;
    },

    // private
    afterRender : function(){
        Ext.form.Field.superclass.afterRender.call(this);
        this.initEvents();
        this.initValue();
    },

    // private
    fireKey : function(e){
        if(e.isSpecialKey()){
            this.fireEvent('specialkey', this, e);
        }
    },

    /**
     * Resets the current field value to the originally loaded value and clears any validation messages.
     * See {@link Ext.form.BasicForm}.{@link Ext.form.BasicForm#trackResetOnLoad trackResetOnLoad}
     */
    reset : function(){
        this.setValue(this.originalValue);
        this.clearInvalid();
    },

    // private
    initEvents : function(){
        this.mon(this.el, Ext.EventManager.getKeyEvent(), this.fireKey,  this);
        this.mon(this.el, 'focus', this.onFocus, this);

        // standardise buffer across all browsers + OS-es for consistent event order.
        // (the 10ms buffer for Editors fixes a weird FF/Win editor issue when changing OS window focus)
        this.mon(this.el, 'blur', this.onBlur, this, this.inEditor ? {buffer:10} : null);
    },

    // private
    preFocus: Ext.emptyFn,

    // private
    onFocus : function(){
        this.preFocus();
        if(this.focusClass){
            this.el.addClass(this.focusClass);
        }
        if(!this.hasFocus){
            this.hasFocus = true;
            /**
             * 
    The value that the Field had at the time it was last focused. This is the value that is passed
             * to the {@link #change} event which is fired if the value has been changed when the Field is blurred.
    
             * 
    This will be undefined until the Field has been visited. Compare {@link #originalValue}.
    
             * @type mixed
             * @property startValue
             */
            this.startValue = this.getValue();
            this.fireEvent('focus', this);
        }
    },

    // private
    beforeBlur : Ext.emptyFn,

    // private
    onBlur : function(){
        this.beforeBlur();
        if(this.focusClass){
            this.el.removeClass(this.focusClass);
        }
        this.hasFocus = false;
        if(this.validationEvent !== false && (this.validateOnBlur || this.validationEvent == 'blur')){
            this.validate();
        }
        var v = this.getValue();
        if(String(v) !== String(this.startValue)){
            this.fireEvent('change', this, v, this.startValue);
        }
        this.fireEvent('blur', this);
        this.postBlur();
    },

    // private
    postBlur : Ext.emptyFn,

    /**
     * Returns whether or not the field value is currently valid by
     * {@link #validateValue validating} the {@link #processValue processed value}
     * of the field. Note: {@link #disabled} fields are ignored.
     * @param {Boolean} preventMark True to disable marking the field invalid
     * @return {Boolean} True if the value is valid, else false
     */
    isValid : function(preventMark){
        if(this.disabled){
            return true;
        }
        var restore = this.preventMark;
        this.preventMark = preventMark === true;
        var v = this.validateValue(this.processValue(this.getRawValue()), preventMark);
        this.preventMark = restore;
        return v;
    },

    /**
     * Validates the field value
     * @return {Boolean} True if the value is valid, else false
     */
    validate : function(){
        if(this.disabled || this.validateValue(this.processValue(this.getRawValue()))){
            this.clearInvalid();
            return true;
        }
        return false;
    },

    /**
     * This method should only be overridden if necessary to prepare raw values
     * for validation (see {@link #validate} and {@link #isValid}).  This method
     * is expected to return the processed value for the field which will
     * be used for validation (see validateValue method).
     * @param {Mixed} value
     */
    processValue : function(value){
        return value;
    },

    /**
     * Uses getErrors to build an array of validation errors. If any errors are found, markInvalid is called
     * with the first and false is returned, otherwise true is returned. Previously, subclasses were invited
     * to provide an implementation of this to process validations - from 3.2 onwards getErrors should be
     * overridden instead.
     * @param {Mixed} The current value of the field
     * @return {Boolean} True if all validations passed, false if one or more failed
     */
     validateValue : function(value) {
         //currently, we only show 1 error at a time for a field, so just use the first one
         var error = this.getErrors(value)[0];

         if (error == undefined) {
             return true;
         } else {
             this.markInvalid(error);
             return false;
         }
     },
    
    /**
     * Runs this field's validators and returns an array of error messages for any validation failures.
     * This is called internally during validation and would not usually need to be used manually.
     * Each subclass should override or augment the return value to provide their own errors
     * @return {Array} All error messages for this field
     */
    getErrors: function() {
        return [];
    },

    /**
     * Gets the active error message for this field.
     * @return {String} Returns the active error message on the field, if there is no error, an empty string is returned.
     */
    getActiveError : function(){
        return this.activeError || '';
    },

    /**
     * 
    Display an error message associated with this field, using {@link #msgTarget} to determine how to
     * display the message and applying {@link #invalidClass} to the field's UI element.
    
     * 
    Note: this method does not cause the Field's {@link #validate} method to return false
     * if the value does pass validation. So simply marking a Field as invalid will not prevent
     * submission of forms submitted with the {@link Ext.form.Action.Submit#clientValidation} option set.
    
     * {@link #isValid invalid}.
     * @param {String} msg (optional) The validation message (defaults to {@link #invalidText})
     */
    markInvalid : function(msg){
        //don't set the error icon if we're not rendered or marking is prevented
        if (this.rendered && !this.preventMark) {
            msg = msg || this.invalidText;

            var mt = this.getMessageHandler();
            if(mt){
                mt.mark(this, msg);
            }else if(this.msgTarget){
                this.el.addClass(this.invalidClass);
                var t = Ext.getDom(this.msgTarget);
                if(t){
                    t.innerHTML = msg;
                    t.style.display = this.msgDisplay;
                }
            }
        }
        
        this.setActiveError(msg);
    },
    
    /**
     * Clear any invalid styles/messages for this field
     */
    clearInvalid : function(){
        //don't remove the error icon if we're not rendered or marking is prevented
        if (this.rendered && !this.preventMark) {
            this.el.removeClass(this.invalidClass);
            var mt = this.getMessageHandler();
            if(mt){
                mt.clear(this);
            }else if(this.msgTarget){
                this.el.removeClass(this.invalidClass);
                var t = Ext.getDom(this.msgTarget);
                if(t){
                    t.innerHTML = '';
                    t.style.display = 'none';
                }
            }
        }
        
        this.unsetActiveError();
    },

    /**
     * Sets the current activeError to the given string. Fires the 'invalid' event.
     * This does not set up the error icon, only sets the message and fires the event. To show the error icon,
     * use markInvalid instead, which calls this method internally
     * @param {String} msg The error message
     * @param {Boolean} suppressEvent True to suppress the 'invalid' event from being fired
     */
    setActiveError: function(msg, suppressEvent) {
        this.activeError = msg;
        if (suppressEvent !== true) this.fireEvent('invalid', this, msg);
    },
    
    /**
     * Clears the activeError and fires the 'valid' event. This is called internally by clearInvalid and would not
     * usually need to be called manually
     * @param {Boolean} suppressEvent True to suppress the 'invalid' event from being fired
     */
    unsetActiveError: function(suppressEvent) {
        delete this.activeError;
        if (suppressEvent !== true) this.fireEvent('valid', this);
    },

    // private
    getMessageHandler : function(){
        return Ext.form.MessageTargets[this.msgTarget];
    },

    // private
    getErrorCt : function(){
        return this.el.findParent('.x-form-element', 5, true) || // use form element wrap if available
            this.el.findParent('.x-form-field-wrap', 5, true);   // else direct field wrap
    },

    // Alignment for 'under' target
    alignErrorEl : function(){
        this.errorEl.setWidth(this.getErrorCt().getWidth(true) - 20);
    },

    // Alignment for 'side' target
    alignErrorIcon : function(){
        this.errorIcon.alignTo(this.el, 'tl-tr', [2, 0]);
    },

    /**
     * Returns the raw data value which may or may not be a valid, defined value.  To return a normalized value see {@link #getValue}.
     * @return {Mixed} value The field value
     */
    getRawValue : function(){
        var v = this.rendered ? this.el.getValue() : Ext.value(this.value, '');
        if(v === this.emptyText){
            v = '';
        }
        return v;
    },

    /**
     * Returns the normalized data value (undefined or emptyText will be returned as '').  To return the raw value see {@link #getRawValue}.
     * @return {Mixed} value The field value
     */
    getValue : function(){
        if(!this.rendered) {
            return this.value;
        }
        var v = this.el.getValue();
        if(v === this.emptyText || v === undefined){
            v = '';
        }
        return v;
    },

    /**
     * Sets the underlying DOM field's value directly, bypassing validation.  To set the value with validation see {@link #setValue}.
     * @param {Mixed} value The value to set
     * @return {Mixed} value The field value that is set
     */
    setRawValue : function(v){
        return this.rendered ? (this.el.dom.value = (Ext.isEmpty(v) ? '' : v)) : '';
    },

    /**
     * Sets a data value into the field and validates it.  To set the value directly without validation see {@link #setRawValue}.
     * @param {Mixed} value The value to set
     * @return {Ext.form.Field} this
     */
    setValue : function(v){
        this.value = v;
        if(this.rendered){
            this.el.dom.value = (Ext.isEmpty(v) ? '' : v);
            this.validate();
        }
        return this;
    },

    // private, does not work for all fields
    append : function(v){
         this.setValue([this.getValue(), v].join(''));
    }

    /**
     * @cfg {Boolean} autoWidth @hide
     */
    /**
     * @cfg {Boolean} autoHeight @hide
     */

    /**
     * @cfg {String} autoEl @hide
     */
});


Ext.form.MessageTargets = {
    'qtip' : {
        mark: function(field, msg){
            field.el.addClass(field.invalidClass);
            field.el.dom.qtip = msg;
            field.el.dom.qclass = 'x-form-invalid-tip';
            if(Ext.QuickTips){ // fix for floating editors interacting with DND
                Ext.QuickTips.enable();
            }
        },
        clear: function(field){
            field.el.removeClass(field.invalidClass);
            field.el.dom.qtip = '';
        }
    },
    'title' : {
        mark: function(field, msg){
            field.el.addClass(field.invalidClass);
            field.el.dom.title = msg;
        },
        clear: function(field){
            field.el.dom.title = '';
        }
    },
    'under' : {
        mark: function(field, msg){
            field.el.addClass(field.invalidClass);
            if(!field.errorEl){
                var elp = field.getErrorCt();
                if(!elp){ // field has no container el
                    field.el.dom.title = msg;
                    return;
                }
                field.errorEl = elp.createChild({cls:'x-form-invalid-msg'});
                field.on('resize', field.alignErrorEl, field);
                field.on('destroy', function(){
                    Ext.destroy(this.errorEl);
                }, field);
            }
            field.alignErrorEl();
            field.errorEl.update(msg);
            Ext.form.Field.msgFx[field.msgFx].show(field.errorEl, field);
        },
        clear: function(field){
            field.el.removeClass(field.invalidClass);
            if(field.errorEl){
                Ext.form.Field.msgFx[field.msgFx].hide(field.errorEl, field);
            }else{
                field.el.dom.title = '';
            }
        }
    },
    'side' : {
        mark: function(field, msg){
            field.el.addClass(field.invalidClass);
            if(!field.errorIcon){
                var elp = field.getErrorCt();
                // field has no container el
                if(!elp){
                    field.el.dom.title = msg;
                    return;
                }
                field.errorIcon = elp.createChild({cls:'x-form-invalid-icon'});
                if (field.ownerCt) {
                    field.ownerCt.on('afterlayout', field.alignErrorIcon, field);
                    field.ownerCt.on('expand', field.alignErrorIcon, field);
                }
                field.on('resize', field.alignErrorIcon, field);
                field.on('destroy', function(){
                    Ext.destroy(this.errorIcon);
                }, field);
            }
            field.alignErrorIcon();
            field.errorIcon.dom.qtip = msg;
            field.errorIcon.dom.qclass = 'x-form-invalid-tip';
            field.errorIcon.show();
        },
        clear: function(field){
            field.el.removeClass(field.invalidClass);
            if(field.errorIcon){
                field.errorIcon.dom.qtip = '';
                field.errorIcon.hide();
            }else{
                field.el.dom.title = '';
            }
        }
    }
};

// anything other than normal should be considered experimental
Ext.form.Field.msgFx = {
    normal : {
        show: function(msgEl, f){
            msgEl.setDisplayed('block');
        },

        hide : function(msgEl, f){
            msgEl.setDisplayed(false).update('');
        }
    },

    slide : {
        show: function(msgEl, f){
            msgEl.slideIn('t', {stopFx:true});
        },

        hide : function(msgEl, f){
            msgEl.slideOut('t', {stopFx:true,useDisplay:true});
        }
    },

    slideRight : {
        show: function(msgEl, f){
            msgEl.fixDisplay();
            msgEl.alignTo(f.el, 'tl-tr');
            msgEl.slideIn('l', {stopFx:true});
        },

        hide : function(msgEl, f){
            msgEl.slideOut('l', {stopFx:true,useDisplay:true});
        }
    }
};
Ext.reg('field', Ext.form.Field);
/**
 * @class Ext.form.TextField
 * @extends Ext.form.Field
 * 
    Basic text field.  Can be used as a direct replacement for traditional text inputs,
 * or as the base class for more sophisticated input controls (like {@link Ext.form.TextArea}
 * and {@link Ext.form.ComboBox}).
    
 * 
    Validation
    
 * 
    The validation procedure is described in the documentation for {@link #validateValue}.
    
 * 
    Alter Validation Behavior
    
 * 
    Validation behavior for each field can be configured:
    
 * 
      
 * 
    • {@link Ext.form.TextField#invalidText invalidText} : the default validation message to
 * show if any validation step above does not provide a message when invalid
      • 
 * 
    • {@link Ext.form.TextField#maskRe maskRe} : filter out keystrokes before any validation occurs
      • 
 * 
    • {@link Ext.form.TextField#stripCharsRe stripCharsRe} : filter characters after being typed in,
 * but before being validated
      • 
 * 
    • {@link Ext.form.Field#invalidClass invalidClass} : alternate style when invalid
      • 
 * 
    • {@link Ext.form.Field#validateOnBlur validateOnBlur},
 * {@link Ext.form.Field#validationDelay validationDelay}, and
 * {@link Ext.form.Field#validationEvent validationEvent} : modify how/when validation is triggered
      • 
 * 
    
 * 
 * @constructor Creates a new TextField
 * @param {Object} config Configuration options
 * 
 * @xtype textfield
 */
Ext.form.TextField = Ext.extend(Ext.form.Field,  {
    /**
     * @cfg {String} vtypeText A custom error message to display in place of the default message provided
     * for the {@link #vtype} currently set for this field (defaults to '').  Note:
     * only applies if {@link #vtype} is set, else ignored.
     */
    /**
     * @cfg {RegExp} stripCharsRe A JavaScript RegExp object used to strip unwanted content from the value
     * before validation (defaults to null).
     */
    /**
     * @cfg {Boolean} grow true if this field should automatically grow and shrink to its content
     * (defaults to false)
     */
    grow : false,
    /**
     * @cfg {Number} growMin The minimum width to allow when {@link #grow} = true (defaults
     * to 30)
     */
    growMin : 30,
    /**
     * @cfg {Number} growMax The maximum width to allow when {@link #grow} = true (defaults
     * to 800)
     */
    growMax : 800,
    /**
     * @cfg {String} vtype A validation type name as defined in {@link Ext.form.VTypes} (defaults to null)
     */
    vtype : null,
    /**
     * @cfg {RegExp} maskRe An input mask regular expression that will be used to filter keystrokes that do
     * not match (defaults to null). The maskRe will not operate on any paste events.
     */
    maskRe : null,
    /**
     * @cfg {Boolean} disableKeyFilter Specify true to disable input keystroke filtering (defaults
     * to false)
     */
    disableKeyFilter : false,
    /**
     * @cfg {Boolean} allowBlank Specify false to validate that the value's length is > 0 (defaults to
     * true)
     */
    allowBlank : true,
    /**
     * @cfg {Number} minLength Minimum input field length required (defaults to 0)
     */
    minLength : 0,
    /**
     * @cfg {Number} maxLength Maximum input field length allowed by validation (defaults to Number.MAX_VALUE).
     * This behavior is intended to provide instant feedback to the user by improving usability to allow pasting
     * and editing or overtyping and back tracking. To restrict the maximum number of characters that can be
     * entered into the field use {@link Ext.form.Field#autoCreate autoCreate} to add
     * any attributes you want to a field, for example:
    
var myField = new Ext.form.NumberField({
    id: 'mobile',
    anchor:'90%',
    fieldLabel: 'Mobile',
    maxLength: 16, // for validation
    autoCreate: {tag: 'input', type: 'text', size: '20', autocomplete: 'off', maxlength: '10'}
});

    
     */
    maxLength : Number.MAX_VALUE,
    /**
     * @cfg {String} minLengthText Error text to display if the {@link #minLength minimum length}
     * validation fails (defaults to 'The minimum length for this field is {minLength}')
     */
    minLengthText : 'The minimum length for this field is {0}',
    /**
     * @cfg {String} maxLengthText Error text to display if the {@link #maxLength maximum length}
     * validation fails (defaults to 'The maximum length for this field is {maxLength}')
     */
    maxLengthText : 'The maximum length for this field is {0}',
    /**
     * @cfg {Boolean} selectOnFocus true to automatically select any existing field text when the field
     * receives input focus (defaults to false)
     */
    selectOnFocus : false,
    /**
     * @cfg {String} blankText The error text to display if the {@link #allowBlank} validation
     * fails (defaults to 'This field is required')
     */
    blankText : 'This field is required',
    /**
     * @cfg {Function} validator
     * 
    A custom validation function to be called during field validation ({@link #validateValue})
     * (defaults to null). If specified, this function will be called first, allowing the
     * developer to override the default validation process.
    
     * 
    This function will be passed the following Parameters:
    
     * 
      
     * 
    • value: Mixed
     * 
      The current field value
      • 
     * 
    
     * 
    This function is to Return:
    
     * 
      
     * 
    • true: Boolean
     * 
      true if the value is valid
      • 
     * 
    • msg: String
     * 
      An error message if the value is invalid
      • 
     * 
    
     */
    validator : null,
    /**
     * @cfg {RegExp} regex A JavaScript RegExp object to be tested against the field value during validation
     * (defaults to null). If the test fails, the field will be marked invalid using
     * {@link #regexText}.
     */
    regex : null,
    /**
     * @cfg {String} regexText The error text to display if {@link #regex} is used and the
     * test fails during validation (defaults to '')
     */
    regexText : '',
    /**
     * @cfg {String} emptyText The default text to place into an empty field (defaults to null).
     * Note: that this value will be submitted to the server if this field is enabled and configured
     * with a {@link #name}.
     */
    emptyText : null,
    /**
     * @cfg {String} emptyClass The CSS class to apply to an empty field to style the {@link #emptyText}
     * (defaults to 'x-form-empty-field').  This class is automatically added and removed as needed
     * depending on the current field value.
     */
    emptyClass : 'x-form-empty-field',

    /**
     * @cfg {Boolean} enableKeyEvents true to enable the proxying of key events for the HTML input
     * field (defaults to false)
     */

    initComponent : function(){
        Ext.form.TextField.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event autosize
             * Fires when the {@link #autoSize} function is triggered. The field may or
             * may not have actually changed size according to the default logic, but this event provides
             * a hook for the developer to apply additional logic at runtime to resize the field if needed.
             * @param {Ext.form.Field} this This text field
             * @param {Number} width The new field width
             */
            'autosize',

            /**
             * @event keydown
             * Keydown input field event. This event only fires if {@link #enableKeyEvents}
             * is set to true.
             * @param {Ext.form.TextField} this This text field
             * @param {Ext.EventObject} e
             */
            'keydown',
            /**
             * @event keyup
             * Keyup input field event. This event only fires if {@link #enableKeyEvents}
             * is set to true.
             * @param {Ext.form.TextField} this This text field
             * @param {Ext.EventObject} e
             */
            'keyup',
            /**
             * @event keypress
             * Keypress input field event. This event only fires if {@link #enableKeyEvents}
             * is set to true.
             * @param {Ext.form.TextField} this This text field
             * @param {Ext.EventObject} e
             */
            'keypress'
        );
    },

    // private
    initEvents : function(){
        Ext.form.TextField.superclass.initEvents.call(this);
        if(this.validationEvent == 'keyup'){
            this.validationTask = new Ext.util.DelayedTask(this.validate, this);
            this.mon(this.el, 'keyup', this.filterValidation, this);
        }
        else if(this.validationEvent !== false && this.validationEvent != 'blur'){
        	this.mon(this.el, this.validationEvent, this.validate, this, {buffer: this.validationDelay});
        }
        if(this.selectOnFocus || this.emptyText){            
            this.mon(this.el, 'mousedown', this.onMouseDown, this);
            
            if(this.emptyText){
                this.applyEmptyText();
            }
        }
        if(this.maskRe || (this.vtype && this.disableKeyFilter !== true && (this.maskRe = Ext.form.VTypes[this.vtype+'Mask']))){
        	this.mon(this.el, 'keypress', this.filterKeys, this);
        }
        if(this.grow){
        	this.mon(this.el, 'keyup', this.onKeyUpBuffered, this, {buffer: 50});
			this.mon(this.el, 'click', this.autoSize, this);
        }
        if(this.enableKeyEvents){
            this.mon(this.el, {
                scope: this,
                keyup: this.onKeyUp,
                keydown: this.onKeyDown,
                keypress: this.onKeyPress
            });
        }
    },
    
    onMouseDown: function(e){
        if(!this.hasFocus){
            this.mon(this.el, 'mouseup', Ext.emptyFn, this, { single: true, preventDefault: true });
        }
    },

    processValue : function(value){
        if(this.stripCharsRe){
            var newValue = value.replace(this.stripCharsRe, '');
            if(newValue !== value){
                this.setRawValue(newValue);
                return newValue;
            }
        }
        return value;
    },

    filterValidation : function(e){
        if(!e.isNavKeyPress()){
            this.validationTask.delay(this.validationDelay);
        }
    },
    
    //private
    onDisable: function(){
        Ext.form.TextField.superclass.onDisable.call(this);
        if(Ext.isIE){
            this.el.dom.unselectable = 'on';
        }
    },
    
    //private
    onEnable: function(){
        Ext.form.TextField.superclass.onEnable.call(this);
        if(Ext.isIE){
            this.el.dom.unselectable = '';
        }
    },

    // private
    onKeyUpBuffered : function(e){
        if(this.doAutoSize(e)){
            this.autoSize();
        }
    },
    
    // private
    doAutoSize : function(e){
        return !e.isNavKeyPress();
    },

    // private
    onKeyUp : function(e){
        this.fireEvent('keyup', this, e);
    },

    // private
    onKeyDown : function(e){
        this.fireEvent('keydown', this, e);
    },

    // private
    onKeyPress : function(e){
        this.fireEvent('keypress', this, e);
    },

    /**
     * Resets the current field value to the originally-loaded value and clears any validation messages.
     * Also adds {@link #emptyText} and {@link #emptyClass} if the
     * original value was blank.
     */
    reset : function(){
        Ext.form.TextField.superclass.reset.call(this);
        this.applyEmptyText();
    },

    applyEmptyText : function(){
        if(this.rendered && this.emptyText && this.getRawValue().length < 1 && !this.hasFocus){
            this.setRawValue(this.emptyText);
            this.el.addClass(this.emptyClass);
        }
    },

    // private
    preFocus : function(){
        var el = this.el,
            isEmpty;
        if(this.emptyText){
            if(el.dom.value == this.emptyText){
                this.setRawValue('');
                isEmpty = true;
            }
            el.removeClass(this.emptyClass);
        }
        if(this.selectOnFocus || isEmpty){
            el.dom.select();
        }
    },

    // private
    postBlur : function(){
        this.applyEmptyText();
    },

    // private
    filterKeys : function(e){
        if(e.ctrlKey){
            return;
        }
        var k = e.getKey();
        if(Ext.isGecko && (e.isNavKeyPress() || k == e.BACKSPACE || (k == e.DELETE && e.button == -1))){
            return;
        }
        var cc = String.fromCharCode(e.getCharCode());
        if(!Ext.isGecko && e.isSpecialKey() && !cc){
            return;
        }
        if(!this.maskRe.test(cc)){
            e.stopEvent();
        }
    },

    setValue : function(v){
        if(this.emptyText && this.el && !Ext.isEmpty(v)){
            this.el.removeClass(this.emptyClass);
        }
        Ext.form.TextField.superclass.setValue.apply(this, arguments);
        this.applyEmptyText();
        this.autoSize();
        return this;
    },

    /**
     * 
    Validates a value according to the field's validation rules and returns an array of errors
     * for any failing validations. Validation rules are processed in the following order:
    
     * 
      
     * 
     * 
    • 1. Field specific validator
     * 
      
     * 
      A validator offers a way to customize and reuse a validation specification.
     * If a field is configured with a {@link #validator}
     * function, it will be passed the current field value.  The {@link #validator}
     * function is expected to return either:
     * 
        
     * 
      • Boolean true if the value is valid (validation continues).
        • 
     * 
      • a String to represent the invalid message if invalid (validation halts).
        • 
     * 
      
     * 
      • 
     * 
     * 
    • 2. Basic Validation
     * 
      
     * 
      If the {@link #validator} has not halted validation,
     * basic validation proceeds as follows:
      
     * 
     * 
        
     * 
     * 
      • {@link #allowBlank} : (Invalid message =
     * {@link #emptyText})
        
     * Depending on the configuration of {@link #allowBlank}, a
     * blank field will cause validation to halt at this step and return
     * Boolean true or false accordingly.  
     * 
        • 
     * 
     * 
      • {@link #minLength} : (Invalid message =
     * {@link #minLengthText})
        
     * If the passed value does not satisfy the {@link #minLength}
     * specified, validation halts.
     * 
        • 
     * 
     * 
      • {@link #maxLength} : (Invalid message =
     * {@link #maxLengthText})
        
     * If the passed value does not satisfy the {@link #maxLength}
     * specified, validation halts.
     * 
        • 
     * 
     * 
      
     * 
      • 
     * 
     * 
    • 3. Preconfigured Validation Types (VTypes)
     * 
      
     * 
      If none of the prior validation steps halts validation, a field
     * configured with a {@link #vtype} will utilize the
     * corresponding {@link Ext.form.VTypes VTypes} validation function.
     * If invalid, either the field's {@link #vtypeText} or
     * the VTypes vtype Text property will be used for the invalid message.
     * Keystrokes on the field will be filtered according to the VTypes
     * vtype Mask property.
      
     * 
      • 
     * 
     * 
    • 4. Field specific regex test
     * 
      
     * 
      If none of the prior validation steps halts validation, a field's
     * configured {@link #regex} test will be processed.
     * The invalid message for this test is configured with
     * {@link #regexText}.
      
     * 
      • 
     * 
     * @param {Mixed} value The value to validate. The processed raw value will be used if nothing is passed
     * @return {Array} Array of any validation errors
     */
    getErrors: function(value) {
        var errors = Ext.form.TextField.superclass.getErrors.apply(this, arguments);
        
        value = Ext.isDefined(value) ? value : this.processValue(this.getRawValue());        
        
        if (Ext.isFunction(this.validator)) {
            var msg = this.validator(value);
            if (msg !== true) {
                errors.push(msg);
            }
        }
        
        if (value.length < 1 || value === this.emptyText) {
            if (this.allowBlank) {
                //if value is blank and allowBlank is true, there cannot be any additional errors
                return errors;
            } else {
                errors.push(this.blankText);
            }
        }
        
        if (!this.allowBlank && (value.length < 1 || value === this.emptyText)) { // if it's blank
            errors.push(this.blankText);
        }
        
        if (value.length < this.minLength) {
            errors.push(String.format(this.minLengthText, this.minLength));
        }
        
        if (value.length > this.maxLength) {
            errors.push(String.format(this.maxLengthText, this.maxLength));
        }
        
        if (this.vtype) {
            var vt = Ext.form.VTypes;
            if(!vt[this.vtype](value, this)){
                errors.push(this.vtypeText || vt[this.vtype +'Text']);
            }
        }
        
        if (this.regex && !this.regex.test(value)) {
            errors.push(this.regexText);
        }
        
        return errors;
    },

    /**
     * Selects text in this field
     * @param {Number} start (optional) The index where the selection should start (defaults to 0)
     * @param {Number} end (optional) The index where the selection should end (defaults to the text length)
     */
    selectText : function(start, end){
        var v = this.getRawValue();
        var doFocus = false;
        if(v.length > 0){
            start = start === undefined ? 0 : start;
            end = end === undefined ? v.length : end;
            var d = this.el.dom;
            if(d.setSelectionRange){
                d.setSelectionRange(start, end);
            }else if(d.createTextRange){
                var range = d.createTextRange();
                range.moveStart('character', start);
                range.moveEnd('character', end-v.length);
                range.select();
            }
            doFocus = Ext.isGecko || Ext.isOpera;
        }else{
            doFocus = true;
        }
        if(doFocus){
            this.focus();
        }
    },

    /**
     * Automatically grows the field to accomodate the width of the text up to the maximum field width allowed.
     * This only takes effect if {@link #grow} = true, and fires the {@link #autosize} event.
     */
    autoSize : function(){
        if(!this.grow || !this.rendered){
            return;
        }
        if(!this.metrics){
            this.metrics = Ext.util.TextMetrics.createInstance(this.el);
        }
        var el = this.el;
        var v = el.dom.value;
        var d = document.createElement('div');
        d.appendChild(document.createTextNode(v));
        v = d.innerHTML;
        Ext.removeNode(d);
        d = null;
        v += ' ';
        var w = Math.min(this.growMax, Math.max(this.metrics.getWidth(v) + /* add extra padding */ 10, this.growMin));
        this.el.setWidth(w);
        this.fireEvent('autosize', this, w);
    },
	
	onDestroy: function(){
		if(this.validationTask){
			this.validationTask.cancel();
			this.validationTask = null;
		}
		Ext.form.TextField.superclass.onDestroy.call(this);
	}
});
Ext.reg('textfield', Ext.form.TextField);
/**
 * @class Ext.form.TriggerField
 * @extends Ext.form.TextField
 * Provides a convenient wrapper for TextFields that adds a clickable trigger button (looks like a combobox by default).
 * The trigger has no default action, so you must assign a function to implement the trigger click handler by
 * overriding {@link #onTriggerClick}. You can create a TriggerField directly, as it renders exactly like a combobox
 * for which you can provide a custom implementation.  For example:
 * 
      
var trigger = new Ext.form.TriggerField();
trigger.onTriggerClick = myTriggerFn;
trigger.applyToMarkup('my-field');

      
 *
 * However, in general you will most likely want to use TriggerField as the base class for a reusable component.
 * {@link Ext.form.DateField} and {@link Ext.form.ComboBox} are perfect examples of this.
 *
 * @constructor
 * Create a new TriggerField.
 * @param {Object} config Configuration options (valid {@Ext.form.TextField} config options will also be applied
 * to the base TextField)
 * @xtype trigger
 */
Ext.form.TriggerField = Ext.extend(Ext.form.TextField,  {
    /**
     * @cfg {String} triggerClass
     * An additional CSS class used to style the trigger button.  The trigger will always get the
     * class 'x-form-trigger' by default and triggerClass will be appended if specified.
     */
    /**
     * @cfg {Mixed} triggerConfig
     * 
      A {@link Ext.DomHelper DomHelper} config object specifying the structure of the
     * trigger element for this Field. (Optional).
      
     * 
      Specify this when you need a customized element to act as the trigger button for a TriggerField.
      
     * 
      Note that when using this option, it is the developer's responsibility to ensure correct sizing, positioning
     * and appearance of the trigger.  Defaults to:
      
     * 
      {tag: "img", src: Ext.BLANK_IMAGE_URL, cls: "x-form-trigger " + this.triggerClass}
      
     */
    /**
     * @cfg {String/Object} autoCreate 
      A {@link Ext.DomHelper DomHelper} element spec, or true for a default
     * element spec. Used to create the {@link Ext.Component#getEl Element} which will encapsulate this Component.
     * See {@link Ext.Component#autoEl autoEl} for details.  Defaults to:
      
     * 
      {tag: "input", type: "text", size: "16", autocomplete: "off"}
      
     */
    defaultAutoCreate : {tag: "input", type: "text", size: "16", autocomplete: "off"},
    /**
     * @cfg {Boolean} hideTrigger true to hide the trigger element and display only the base
     * text field (defaults to false)
     */
    hideTrigger:false,
    /**
     * @cfg {Boolean} editable false to prevent the user from typing text directly into the field,
     * the field will only respond to a click on the trigger to set the value. (defaults to true).
     */
    editable: true,
    /**
     * @cfg {Boolean} readOnly true to prevent the user from changing the field, and
     * hides the trigger.  Superceeds the editable and hideTrigger options if the value is true.
     * (defaults to false)
     */
    readOnly: false,
    /**
     * @cfg {String} wrapFocusClass The class added to the to the wrap of the trigger element. Defaults to
     * x-trigger-wrap-focus.
     */
    wrapFocusClass: 'x-trigger-wrap-focus',
    /**
     * @hide
     * @method autoSize
     */
    autoSize: Ext.emptyFn,
    // private
    monitorTab : true,
    // private
    deferHeight : true,
    // private
    mimicing : false,

    actionMode: 'wrap',

    defaultTriggerWidth: 17,

    // private
    onResize : function(w, h){
        Ext.form.TriggerField.superclass.onResize.call(this, w, h);
        var tw = this.getTriggerWidth();
        if(Ext.isNumber(w)){
            this.el.setWidth(w - tw);
        }
        this.wrap.setWidth(this.el.getWidth() + tw);
    },

    getTriggerWidth: function(){
        var tw = this.trigger.getWidth();
        if(!this.hideTrigger && !this.readOnly && tw === 0){
            tw = this.defaultTriggerWidth;
        }
        return tw;
    },

    // private
    alignErrorIcon : function(){
        if(this.wrap){
            this.errorIcon.alignTo(this.wrap, 'tl-tr', [2, 0]);
        }
    },

    // private
    onRender : function(ct, position){
        this.doc = Ext.isIE ? Ext.getBody() : Ext.getDoc();
        Ext.form.TriggerField.superclass.onRender.call(this, ct, position);

        this.wrap = this.el.wrap({cls: 'x-form-field-wrap x-form-field-trigger-wrap'});
        this.trigger = this.wrap.createChild(this.triggerConfig ||
                {tag: "img", src: Ext.BLANK_IMAGE_URL, alt: "", cls: "x-form-trigger " + this.triggerClass});
        this.initTrigger();
        if(!this.width){
            this.wrap.setWidth(this.el.getWidth()+this.trigger.getWidth());
        }
        this.resizeEl = this.positionEl = this.wrap;
    },

    getWidth: function() {
        return(this.el.getWidth() + this.trigger.getWidth());
    },

    updateEditState: function(){
        if(this.rendered){
            if (this.readOnly) {
                this.el.dom.readOnly = true;
                this.el.addClass('x-trigger-noedit');
                this.mun(this.el, 'click', this.onTriggerClick, this);
                this.trigger.setDisplayed(false);
            } else {
                if (!this.editable) {
                    this.el.dom.readOnly = true;
                    this.el.addClass('x-trigger-noedit');
                    this.mon(this.el, 'click', this.onTriggerClick, this);
                } else {
                    this.el.dom.readOnly = false;
                    this.el.removeClass('x-trigger-noedit');
                    this.mun(this.el, 'click', this.onTriggerClick, this);
                }
                this.trigger.setDisplayed(!this.hideTrigger);
            }
            this.onResize(this.width || this.wrap.getWidth());
        }
    },

    /**
     * Changes the hidden status of the trigger.
     * @param {Boolean} hideTrigger True to hide the trigger, false to show it.
     */
    setHideTrigger: function(hideTrigger){
        if(hideTrigger != this.hideTrigger){
            this.hideTrigger = hideTrigger;
            this.updateEditState();
        }
    },

    /**
     * Allow or prevent the user from directly editing the field text.  If false is passed,
     * the user will only be able to modify the field using the trigger.  Will also add
     * a click event to the text field which will call the trigger. This method
     * is the runtime equivalent of setting the {@link #editable} config option at config time.
     * @param {Boolean} value True to allow the user to directly edit the field text.
     */
    setEditable: function(editable){
        if(editable != this.editable){
            this.editable = editable;
            this.updateEditState();
        }
    },

    /**
     * Setting this to true will supersede settings {@link #editable} and {@link #hideTrigger}.
     * Setting this to false will defer back to {@link #editable} and {@link #hideTrigger}. This method
     * is the runtime equivalent of setting the {@link #readOnly} config option at config time.
     * @param {Boolean} value True to prevent the user changing the field and explicitly
     * hide the trigger.
     */
    setReadOnly: function(readOnly){
        if(readOnly != this.readOnly){
            this.readOnly = readOnly;
            this.updateEditState();
        }
    },

    afterRender : function(){
        Ext.form.TriggerField.superclass.afterRender.call(this);
        this.updateEditState();
    },

    // private
    initTrigger : function(){
        this.mon(this.trigger, 'click', this.onTriggerClick, this, {preventDefault:true});
        this.trigger.addClassOnOver('x-form-trigger-over');
        this.trigger.addClassOnClick('x-form-trigger-click');
    },

    // private
    onDestroy : function(){
        Ext.destroy(this.trigger, this.wrap);
        if (this.mimicing){
            this.doc.un('mousedown', this.mimicBlur, this);
        }
        delete this.doc;
        Ext.form.TriggerField.superclass.onDestroy.call(this);
    },

    // private
    onFocus : function(){
        Ext.form.TriggerField.superclass.onFocus.call(this);
        if(!this.mimicing){
            this.wrap.addClass(this.wrapFocusClass);
            this.mimicing = true;
            this.doc.on('mousedown', this.mimicBlur, this, {delay: 10});
            if(this.monitorTab){
                this.on('specialkey', this.checkTab, this);
            }
        }
    },

    // private
    checkTab : function(me, e){
        if(e.getKey() == e.TAB){
            this.triggerBlur();
        }
    },

    // private
    onBlur : Ext.emptyFn,

    // private
    mimicBlur : function(e){
        if(!this.isDestroyed && !this.wrap.contains(e.target) && this.validateBlur(e)){
            this.triggerBlur();
        }
    },

    // private
    triggerBlur : function(){
        this.mimicing = false;
        this.doc.un('mousedown', this.mimicBlur, this);
        if(this.monitorTab && this.el){
            this.un('specialkey', this.checkTab, this);
        }
        Ext.form.TriggerField.superclass.onBlur.call(this);
        if(this.wrap){
            this.wrap.removeClass(this.wrapFocusClass);
        }
    },

    beforeBlur : Ext.emptyFn,

    // private
    // This should be overriden by any subclass that needs to check whether or not the field can be blurred.
    validateBlur : function(e){
        return true;
    },

    /**
     * The function that should handle the trigger's click event.  This method does nothing by default
     * until overridden by an implementing function.  See Ext.form.ComboBox and Ext.form.DateField for
     * sample implementations.
     * @method
     * @param {EventObject} e
     */
    onTriggerClick : Ext.emptyFn

    /**
     * @cfg {Boolean} grow @hide
     */
    /**
     * @cfg {Number} growMin @hide
     */
    /**
     * @cfg {Number} growMax @hide
     */
});

/**
 * @class Ext.form.TwinTriggerField
 * @extends Ext.form.TriggerField
 * TwinTriggerField is not a public class to be used directly.  It is meant as an abstract base class
 * to be extended by an implementing class.  For an example of implementing this class, see the custom
 * SearchField implementation here:
 * http://extjs.com/deploy/ext/examples/form/custom.html
 */
Ext.form.TwinTriggerField = Ext.extend(Ext.form.TriggerField, {
    /**
     * @cfg {Mixed} triggerConfig
     * 
      A {@link Ext.DomHelper DomHelper} config object specifying the structure of the trigger elements
     * for this Field. (Optional).
      
     * 
      Specify this when you need a customized element to contain the two trigger elements for this Field.
     * Each trigger element must be marked by the CSS class x-form-trigger (also see
     * {@link #trigger1Class} and {@link #trigger2Class}).
      
     * 
      Note that when using this option, it is the developer's responsibility to ensure correct sizing,
     * positioning and appearance of the triggers.
      
     */
    /**
     * @cfg {String} trigger1Class
     * An additional CSS class used to style the trigger button.  The trigger will always get the
     * class 'x-form-trigger' by default and triggerClass will be appended if specified.
     */
    /**
     * @cfg {String} trigger2Class
     * An additional CSS class used to style the trigger button.  The trigger will always get the
     * class 'x-form-trigger' by default and triggerClass will be appended if specified.
     */

    initComponent : function(){
        Ext.form.TwinTriggerField.superclass.initComponent.call(this);

        this.triggerConfig = {
            tag:'span', cls:'x-form-twin-triggers', cn:[
            {tag: "img", src: Ext.BLANK_IMAGE_URL, alt: "", cls: "x-form-trigger " + this.trigger1Class},
            {tag: "img", src: Ext.BLANK_IMAGE_URL, alt: "", cls: "x-form-trigger " + this.trigger2Class}
        ]};
    },

    getTrigger : function(index){
        return this.triggers[index];
    },
    
    afterRender: function(){
        Ext.form.TwinTriggerField.superclass.afterRender.call(this);
        var triggers = this.triggers,
            i = 0,
            len = triggers.length;
            
        for(; i < len; ++i){
            if(this['hideTrigger' + (i + 1)]){
                    triggers[i].hide();
                }

        }    
    },

    initTrigger : function(){
        var ts = this.trigger.select('.x-form-trigger', true),
            triggerField = this;
            
        ts.each(function(t, all, index){
            var triggerIndex = 'Trigger'+(index+1);
            t.hide = function(){
                var w = triggerField.wrap.getWidth();
                this.dom.style.display = 'none';
                triggerField.el.setWidth(w-triggerField.trigger.getWidth());
                triggerField['hidden' + triggerIndex] = true;
            };
            t.show = function(){
                var w = triggerField.wrap.getWidth();
                this.dom.style.display = '';
                triggerField.el.setWidth(w-triggerField.trigger.getWidth());
                triggerField['hidden' + triggerIndex] = false;
            };
            this.mon(t, 'click', this['on'+triggerIndex+'Click'], this, {preventDefault:true});
            t.addClassOnOver('x-form-trigger-over');
            t.addClassOnClick('x-form-trigger-click');
        }, this);
        this.triggers = ts.elements;
    },

    getTriggerWidth: function(){
        var tw = 0;
        Ext.each(this.triggers, function(t, index){
            var triggerIndex = 'Trigger' + (index + 1),
                w = t.getWidth();
            if(w === 0 && !this['hidden' + triggerIndex]){
                tw += this.defaultTriggerWidth;
            }else{
                tw += w;
            }
        }, this);
        return tw;
    },

    // private
    onDestroy : function() {
        Ext.destroy(this.triggers);
        Ext.form.TwinTriggerField.superclass.onDestroy.call(this);
    },

    /**
     * The function that should handle the trigger's click event.  This method does nothing by default
     * until overridden by an implementing function. See {@link Ext.form.TriggerField#onTriggerClick}
     * for additional information.
     * @method
     * @param {EventObject} e
     */
    onTrigger1Click : Ext.emptyFn,
    /**
     * The function that should handle the trigger's click event.  This method does nothing by default
     * until overridden by an implementing function. See {@link Ext.form.TriggerField#onTriggerClick}
     * for additional information.
     * @method
     * @param {EventObject} e
     */
    onTrigger2Click : Ext.emptyFn
});
Ext.reg('trigger', Ext.form.TriggerField);
Ext.reg('twintrigger', Ext.form.TwinTriggerField);/**
 * @class Ext.form.TextArea
 * @extends Ext.form.TextField
 * Multiline text field.  Can be used as a direct replacement for traditional textarea fields, plus adds
 * support for auto-sizing.
 * @constructor
 * Creates a new TextArea
 * @param {Object} config Configuration options
 * @xtype textarea
 */
Ext.form.TextArea = Ext.extend(Ext.form.TextField,  {
    /**
     * @cfg {Number} growMin The minimum height to allow when {@link Ext.form.TextField#grow grow}=true
     * (defaults to 60)
     */
    growMin : 60,
    /**
     * @cfg {Number} growMax The maximum height to allow when {@link Ext.form.TextField#grow grow}=true
     * (defaults to 1000)
     */
    growMax: 1000,
    growAppend : ' \n ',

    enterIsSpecial : false,

    /**
     * @cfg {Boolean} preventScrollbars true to prevent scrollbars from appearing regardless of how much text is
     * in the field. This option is only relevant when {@link #grow} is true. Equivalent to setting overflow: hidden, defaults to 
     * false.
     */
    preventScrollbars: false,
    /**
     * @cfg {String/Object} autoCreate 
      A {@link Ext.DomHelper DomHelper} element spec, or true for a default
     * element spec. Used to create the {@link Ext.Component#getEl Element} which will encapsulate this Component.
     * See {@link Ext.Component#autoEl autoEl} for details.  Defaults to:
      
     * 
      {tag: "textarea", style: "width:100px;height:60px;", autocomplete: "off"}
      
     */

    // private
    onRender : function(ct, position){
        if(!this.el){
            this.defaultAutoCreate = {
                tag: "textarea",
                style:"width:100px;height:60px;",
                autocomplete: "off"
            };
        }
        Ext.form.TextArea.superclass.onRender.call(this, ct, position);
        if(this.grow){
            this.textSizeEl = Ext.DomHelper.append(document.body, {
                tag: "pre", cls: "x-form-grow-sizer"
            });
            if(this.preventScrollbars){
                this.el.setStyle("overflow", "hidden");
            }
            this.el.setHeight(this.growMin);
        }
    },

    onDestroy : function(){
        Ext.removeNode(this.textSizeEl);
        Ext.form.TextArea.superclass.onDestroy.call(this);
    },

    fireKey : function(e){
        if(e.isSpecialKey() && (this.enterIsSpecial || (e.getKey() != e.ENTER || e.hasModifier()))){
            this.fireEvent("specialkey", this, e);
        }
    },
    
    // private
    doAutoSize : function(e){
        return !e.isNavKeyPress() || e.getKey() == e.ENTER;
    },
    
    // inherit docs
    filterValidation: function(e) {            
        if(!e.isNavKeyPress() || (!this.enterIsSpecial && e.keyCode == e.ENTER)){
            this.validationTask.delay(this.validationDelay);
        }
    },

    /**
     * Automatically grows the field to accomodate the height of the text up to the maximum field height allowed.
     * This only takes effect if grow = true, and fires the {@link #autosize} event if the height changes.
     */
    autoSize: function(){
        if(!this.grow || !this.textSizeEl){
            return;
        }
        var el = this.el,
            v = Ext.util.Format.htmlEncode(el.dom.value),
            ts = this.textSizeEl,
            h;
            
        Ext.fly(ts).setWidth(this.el.getWidth());
        if(v.length < 1){
            v = "  ";
        }else{
            v += this.growAppend;
            if(Ext.isIE){
                v = v.replace(/\n/g, ' 
      ');
            }
        }
        ts.innerHTML = v;
        h = Math.min(this.growMax, Math.max(ts.offsetHeight, this.growMin));
        if(h != this.lastHeight){
            this.lastHeight = h;
            this.el.setHeight(h);
            this.fireEvent("autosize", this, h);
        }
    }
});
Ext.reg('textarea', Ext.form.TextArea);/**
 * @class Ext.form.NumberField
 * @extends Ext.form.TextField
 * Numeric text field that provides automatic keystroke filtering and numeric validation.
 * @constructor
 * Creates a new NumberField
 * @param {Object} config Configuration options
 * @xtype numberfield
 */
Ext.form.NumberField = Ext.extend(Ext.form.TextField,  {
    /**
     * @cfg {RegExp} stripCharsRe @hide
     */
    /**
     * @cfg {RegExp} maskRe @hide
     */
    /**
     * @cfg {String} fieldClass The default CSS class for the field (defaults to "x-form-field x-form-num-field")
     */
    fieldClass: "x-form-field x-form-num-field",
    
    /**
     * @cfg {Boolean} allowDecimals False to disallow decimal values (defaults to true)
     */
    allowDecimals : true,
    
    /**
     * @cfg {String} decimalSeparator Character(s) to allow as the decimal separator (defaults to '.')
     */
    decimalSeparator : ".",
    
    /**
     * @cfg {Number} decimalPrecision The maximum precision to display after the decimal separator (defaults to 2)
     */
    decimalPrecision : 2,
    
    /**
     * @cfg {Boolean} allowNegative False to prevent entering a negative sign (defaults to true)
     */
    allowNegative : true,
    
    /**
     * @cfg {Number} minValue The minimum allowed value (defaults to Number.NEGATIVE_INFINITY)
     */
    minValue : Number.NEGATIVE_INFINITY,
    
    /**
     * @cfg {Number} maxValue The maximum allowed value (defaults to Number.MAX_VALUE)
     */
    maxValue : Number.MAX_VALUE,
    
    /**
     * @cfg {String} minText Error text to display if the minimum value validation fails (defaults to "The minimum value for this field is {minValue}")
     */
    minText : "The minimum value for this field is {0}",
    
    /**
     * @cfg {String} maxText Error text to display if the maximum value validation fails (defaults to "The maximum value for this field is {maxValue}")
     */
    maxText : "The maximum value for this field is {0}",
    
    /**
     * @cfg {String} nanText Error text to display if the value is not a valid number.  For example, this can happen
     * if a valid character like '.' or '-' is left in the field with no number (defaults to "{value} is not a valid number")
     */
    nanText : "{0} is not a valid number",
    
    /**
     * @cfg {String} baseChars The base set of characters to evaluate as valid numbers (defaults to '0123456789').
     */
    baseChars : "0123456789",
    
    /**
     * @cfg {Boolean} autoStripChars True to automatically strip not allowed characters from the field. Defaults to false
     */
    autoStripChars: false,

    // private
    initEvents : function() {
        var allowed = this.baseChars + '';
        if (this.allowDecimals) {
            allowed += this.decimalSeparator;
        }
        if (this.allowNegative) {
            allowed += '-';
        }
        allowed = Ext.escapeRe(allowed);
        this.maskRe = new RegExp('[' + allowed + ']');
        if (this.autoStripChars) {
            this.stripCharsRe = new RegExp('[^' + allowed + ']', 'gi');
        }
        
        Ext.form.NumberField.superclass.initEvents.call(this);
    },
    
    /**
     * Runs all of NumberFields validations and returns an array of any errors. Note that this first
     * runs TextField's validations, so the returned array is an amalgamation of all field errors.
     * The additional validations run test that the value is a number, and that it is within the
     * configured min and max values.
     * @param {Mixed} value The value to get errors for (defaults to the current field value)
     * @return {Array} All validation errors for this field
     */
    getErrors: function(value) {
        var errors = Ext.form.NumberField.superclass.getErrors.apply(this, arguments);
        
        value = Ext.isDefined(value) ? value : this.processValue(this.getRawValue());
        
        if (value.length < 1) { // if it's blank and textfield didn't flag it then it's valid
             return errors;
        }
        
        value = String(value).replace(this.decimalSeparator, ".");
        
        if(isNaN(value)){
            errors.push(String.format(this.nanText, value));
        }
        
        var num = this.parseValue(value);
        
        if (num < this.minValue) {
            errors.push(String.format(this.minText, this.minValue));
        }
        
        if (num > this.maxValue) {
            errors.push(String.format(this.maxText, this.maxValue));
        }
        
        return errors;
    },

    getValue : function() {
        return this.fixPrecision(this.parseValue(Ext.form.NumberField.superclass.getValue.call(this)));
    },

    setValue : function(v) {
    	v = Ext.isNumber(v) ? v : parseFloat(String(v).replace(this.decimalSeparator, "."));
        v = this.fixPrecision(v);
        v = isNaN(v) ? '' : String(v).replace(".", this.decimalSeparator);
        return Ext.form.NumberField.superclass.setValue.call(this, v);
    },
    
    /**
     * Replaces any existing {@link #minValue} with the new value.
     * @param {Number} value The minimum value
     */
    setMinValue : function(value) {
        this.minValue = Ext.num(value, Number.NEGATIVE_INFINITY);
    },
    
    /**
     * Replaces any existing {@link #maxValue} with the new value.
     * @param {Number} value The maximum value
     */
    setMaxValue : function(value) {
        this.maxValue = Ext.num(value, Number.MAX_VALUE);    
    },

    // private
    parseValue : function(value) {
        value = parseFloat(String(value).replace(this.decimalSeparator, "."));
        return isNaN(value) ? '' : value;
    },

    /**
     * @private
     * 
     */
    fixPrecision : function(value) {
        var nan = isNaN(value);
        
        if (!this.allowDecimals || this.decimalPrecision == -1 || nan || !value) {
            return nan ? '' : value;
        }
        
        return parseFloat(parseFloat(value).toFixed(this.decimalPrecision));
    },

    beforeBlur : function() {
        var v = this.parseValue(this.getRawValue());
        
        if (!Ext.isEmpty(v)) {
            this.setValue(v);
        }
    }
});

Ext.reg('numberfield', Ext.form.NumberField);
/**
 * @class Ext.form.DateField
 * @extends Ext.form.TriggerField
 * Provides a date input field with a {@link Ext.DatePicker} dropdown and automatic date validation.
 * @constructor
 * Create a new DateField
 * @param {Object} config
 * @xtype datefield
 */
Ext.form.DateField = Ext.extend(Ext.form.TriggerField,  {
    /**
     * @cfg {String} format
     * The default date format string which can be overriden for localization support.  The format must be
     * valid according to {@link Date#parseDate} (defaults to 'm/d/Y').
     */
    format : "m/d/Y",
    /**
     * @cfg {String} altFormats
     * Multiple date formats separated by "|" to try when parsing a user input value and it
     * does not match the defined format (defaults to
     * 'm/d/Y|n/j/Y|n/j/y|m/j/y|n/d/y|m/j/Y|n/d/Y|m-d-y|m-d-Y|m/d|m-d|md|mdy|mdY|d|Y-m-d|n-j|n/j').
     */
    altFormats : "m/d/Y|n/j/Y|n/j/y|m/j/y|n/d/y|m/j/Y|n/d/Y|m-d-y|m-d-Y|m/d|m-d|md|mdy|mdY|d|Y-m-d|n-j|n/j",
    /**
     * @cfg {String} disabledDaysText
     * The tooltip to display when the date falls on a disabled day (defaults to 'Disabled')
     */
    disabledDaysText : "Disabled",
    /**
     * @cfg {String} disabledDatesText
     * The tooltip text to display when the date falls on a disabled date (defaults to 'Disabled')
     */
    disabledDatesText : "Disabled",
    /**
     * @cfg {String} minText
     * The error text to display when the date in the cell is before {@link #minValue} (defaults to
     * 'The date in this field must be after {minValue}').
     */
    minText : "The date in this field must be equal to or after {0}",
    /**
     * @cfg {String} maxText
     * The error text to display when the date in the cell is after {@link #maxValue} (defaults to
     * 'The date in this field must be before {maxValue}').
     */
    maxText : "The date in this field must be equal to or before {0}",
    /**
     * @cfg {String} invalidText
     * The error text to display when the date in the field is invalid (defaults to
     * '{value} is not a valid date - it must be in the format {format}').
     */
    invalidText : "{0} is not a valid date - it must be in the format {1}",
    /**
     * @cfg {String} triggerClass
     * An additional CSS class used to style the trigger button.  The trigger will always get the
     * class 'x-form-trigger' and triggerClass will be appended if specified
     * (defaults to 'x-form-date-trigger' which displays a calendar icon).
     */
    triggerClass : 'x-form-date-trigger',
    /**
     * @cfg {Boolean} showToday
     * false to hide the footer area of the DatePicker containing the Today button and disable
     * the keyboard handler for spacebar that selects the current date (defaults to true).
     */
    showToday : true,
    
    /**
     * @cfg {Number} startDay
     * Day index at which the week should begin, 0-based (defaults to 0, which is Sunday)
     */
    startDay : 0,
    
    /**
     * @cfg {Date/String} minValue
     * The minimum allowed date. Can be either a Javascript date object or a string date in a
     * valid format (defaults to null).
     */
    /**
     * @cfg {Date/String} maxValue
     * The maximum allowed date. Can be either a Javascript date object or a string date in a
     * valid format (defaults to null).
     */
    /**
     * @cfg {Array} disabledDays
     * An array of days to disable, 0 based (defaults to null). Some examples:
      
// disable Sunday and Saturday:
disabledDays:  [0, 6]
// disable weekdays:
disabledDays: [1,2,3,4,5]
     * 
      
     */
    /**
     * @cfg {Array} disabledDates
     * An array of "dates" to disable, as strings. These strings will be used to build a dynamic regular
     * expression so they are very powerful. Some examples:
      
// disable these exact dates:
disabledDates: ["03/08/2003", "09/16/2003"]
// disable these days for every year:
disabledDates: ["03/08", "09/16"]
// only match the beginning (useful if you are using short years):
disabledDates: ["^03/08"]
// disable every day in March 2006:
disabledDates: ["03/../2006"]
// disable every day in every March:
disabledDates: ["^03"]
     * 
      
     * Note that the format of the dates included in the array should exactly match the {@link #format} config.
     * In order to support regular expressions, if you are using a {@link #format date format} that has "." in
     * it, you will have to escape the dot when restricting dates. For example: ["03\\.08\\.03"].
     */
    /**
     * @cfg {String/Object} autoCreate
     * A {@link Ext.DomHelper DomHelper element specification object}, or true for the default element
     * specification object:
      
     * autoCreate: {tag: "input", type: "text", size: "10", autocomplete: "off"}
     * 
      
     */

    // private
    defaultAutoCreate : {tag: "input", type: "text", size: "10", autocomplete: "off"},

    // in the absence of a time value, a default value of 12 noon will be used
    // (note: 12 noon was chosen because it steers well clear of all DST timezone changes)
    initTime: '12', // 24 hour format

    initTimeFormat: 'H',

    // PUBLIC -- to be documented
    safeParse : function(value, format) {
        if (Date.formatContainsHourInfo(format)) {
            // if parse format contains hour information, no DST adjustment is necessary
            return Date.parseDate(value, format);
        } else {
            // set time to 12 noon, then clear the time
            var parsedDate = Date.parseDate(value + ' ' + this.initTime, format + ' ' + this.initTimeFormat);
 
            if (parsedDate) {
                return parsedDate.clearTime();
            }
        }
    },

    initComponent : function(){
        Ext.form.DateField.superclass.initComponent.call(this);

        this.addEvents(
            /**
             * @event select
             * Fires when a date is selected via the date picker.
             * @param {Ext.form.DateField} this
             * @param {Date} date The date that was selected
             */
            'select'
        );

        if(Ext.isString(this.minValue)){
            this.minValue = this.parseDate(this.minValue);
        }
        if(Ext.isString(this.maxValue)){
            this.maxValue = this.parseDate(this.maxValue);
        }
        this.disabledDatesRE = null;
        this.initDisabledDays();
    },

    initEvents: function() {
        Ext.form.DateField.superclass.initEvents.call(this);
        this.keyNav = new Ext.KeyNav(this.el, {
            "down": function(e) {
                this.onTriggerClick();
            },
            scope: this,
            forceKeyDown: true
        });
    },


    // private
    initDisabledDays : function(){
        if(this.disabledDates){
            var dd = this.disabledDates,
                len = dd.length - 1,
                re = "(?:";

            Ext.each(dd, function(d, i){
                re += Ext.isDate(d) ? '^' + Ext.escapeRe(d.dateFormat(this.format)) + '$' : dd[i];
                if(i != len){
                    re += '|';
                }
            }, this);
            this.disabledDatesRE = new RegExp(re + ')');
        }
    },

    /**
     * Replaces any existing disabled dates with new values and refreshes the DatePicker.
     * @param {Array} disabledDates An array of date strings (see the {@link #disabledDates} config
     * for details on supported values) used to disable a pattern of dates.
     */
    setDisabledDates : function(dd){
        this.disabledDates = dd;
        this.initDisabledDays();
        if(this.menu){
            this.menu.picker.setDisabledDates(this.disabledDatesRE);
        }
    },

    /**
     * Replaces any existing disabled days (by index, 0-6) with new values and refreshes the DatePicker.
     * @param {Array} disabledDays An array of disabled day indexes. See the {@link #disabledDays}
     * config for details on supported values.
     */
    setDisabledDays : function(dd){
        this.disabledDays = dd;
        if(this.menu){
            this.menu.picker.setDisabledDays(dd);
        }
    },

    /**
     * Replaces any existing {@link #minValue} with the new value and refreshes the DatePicker.
     * @param {Date} value The minimum date that can be selected
     */
    setMinValue : function(dt){
        this.minValue = (Ext.isString(dt) ? this.parseDate(dt) : dt);
        if(this.menu){
            this.menu.picker.setMinDate(this.minValue);
        }
    },

    /**
     * Replaces any existing {@link #maxValue} with the new value and refreshes the DatePicker.
     * @param {Date} value The maximum date that can be selected
     */
    setMaxValue : function(dt){
        this.maxValue = (Ext.isString(dt) ? this.parseDate(dt) : dt);
        if(this.menu){
            this.menu.picker.setMaxDate(this.maxValue);
        }
    },

    /**
     * Runs all of NumberFields validations and returns an array of any errors. Note that this first
     * runs TextField's validations, so the returned array is an amalgamation of all field errors.
     * The additional validation checks are testing that the date format is valid, that the chosen
     * date is within the min and max date constraints set, that the date chosen is not in the disabledDates
     * regex and that the day chosed is not one of the disabledDays.
     * @param {Mixed} value The value to get errors for (defaults to the current field value)
     * @return {Array} All validation errors for this field
     */
    getErrors: function(value) {
        var errors = Ext.form.DateField.superclass.getErrors.apply(this, arguments);

        value = this.formatDate(value || this.processValue(this.getRawValue()));

        if (value.length < 1) { // if it's blank and textfield didn't flag it then it's valid
             return errors;
        }

        var svalue = value;
        value = this.parseDate(value);
        if (!value) {
            errors.push(String.format(this.invalidText, svalue, this.format));
            return errors;
        }

        var time = value.getTime();
        if (this.minValue && time < this.minValue.clearTime().getTime()) {
            errors.push(String.format(this.minText, this.formatDate(this.minValue)));
        }

        if (this.maxValue && time > this.maxValue.clearTime().getTime()) {
            errors.push(String.format(this.maxText, this.formatDate(this.maxValue)));
        }

        if (this.disabledDays) {
            var day = value.getDay();

            for(var i = 0; i < this.disabledDays.length; i++) {
                if (day === this.disabledDays[i]) {
                    errors.push(this.disabledDaysText);
                    break;
                }
            }
        }

        var fvalue = this.formatDate(value);
        if (this.disabledDatesRE && this.disabledDatesRE.test(fvalue)) {
            errors.push(String.format(this.disabledDatesText, fvalue));
        }

        return errors;
    },

    // private
    // Provides logic to override the default TriggerField.validateBlur which just returns true
    validateBlur : function(){
        return !this.menu || !this.menu.isVisible();
    },

    /**
     * Returns the current date value of the date field.
     * @return {Date} The date value
     */
    getValue : function(){
        return this.parseDate(Ext.form.DateField.superclass.getValue.call(this)) || "";
    },

    /**
     * Sets the value of the date field.  You can pass a date object or any string that can be
     * parsed into a valid date, using {@link #format} as the date format, according
     * to the same rules as {@link Date#parseDate} (the default format used is "m/d/Y").
     * 
      Usage:
     * 
      
//All of these calls set the same date value (May 4, 2006)

//Pass a date object:
var dt = new Date('5/4/2006');
dateField.setValue(dt);

//Pass a date string (default format):
dateField.setValue('05/04/2006');

//Pass a date string (custom format):
dateField.format = 'Y-m-d';
dateField.setValue('2006-05-04');

      
     * @param {String/Date} date The date or valid date string
     * @return {Ext.form.Field} this
     */
    setValue : function(date){
        return Ext.form.DateField.superclass.setValue.call(this, this.formatDate(this.parseDate(date)));
    },

    // private
    parseDate : function(value) {
        if(!value || Ext.isDate(value)){
            return value;
        }

        var v = this.safeParse(value, this.format),
            af = this.altFormats,
            afa = this.altFormatsArray;

        if (!v && af) {
            afa = afa || af.split("|");

            for (var i = 0, len = afa.length; i < len && !v; i++) {
                v = this.safeParse(value, afa[i]);
            }
        }
        return v;
    },

    // private
    onDestroy : function(){
        Ext.destroy(this.menu, this.keyNav);
        Ext.form.DateField.superclass.onDestroy.call(this);
    },

    // private
    formatDate : function(date){
        return Ext.isDate(date) ? date.dateFormat(this.format) : date;
    },

    /**
     * @method onTriggerClick
     * @hide
     */
    // private
    // Implements the default empty TriggerField.onTriggerClick function to display the DatePicker
    onTriggerClick : function(){
        if(this.disabled){
            return;
        }
        if(this.menu == null){
            this.menu = new Ext.menu.DateMenu({
                hideOnClick: false,
                focusOnSelect: false
            });
        }
        this.onFocus();
        Ext.apply(this.menu.picker,  {
            minDate : this.minValue,
            maxDate : this.maxValue,
            disabledDatesRE : this.disabledDatesRE,
            disabledDatesText : this.disabledDatesText,
            disabledDays : this.disabledDays,
            disabledDaysText : this.disabledDaysText,
            format : this.format,
            showToday : this.showToday,
            startDay: this.startDay,
            minText : String.format(this.minText, this.formatDate(this.minValue)),
            maxText : String.format(this.maxText, this.formatDate(this.maxValue))
        });
        this.menu.picker.setValue(this.getValue() || new Date());
        this.menu.show(this.el, "tl-bl?");
        this.menuEvents('on');
    },

    //private
    menuEvents: function(method){
        this.menu[method]('select', this.onSelect, this);
        this.menu[method]('hide', this.onMenuHide, this);
        this.menu[method]('show', this.onFocus, this);
    },

    onSelect: function(m, d){
        this.setValue(d);
        this.fireEvent('select', this, d);
        this.menu.hide();
    },

    onMenuHide: function(){
        this.focus(false, 60);
        this.menuEvents('un');
    },

    // private
    beforeBlur : function(){
        var v = this.parseDate(this.getRawValue());
        if(v){
            this.setValue(v);
        }
    }

    /**
     * @cfg {Boolean} grow @hide
     */
    /**
     * @cfg {Number} growMin @hide
     */
    /**
     * @cfg {Number} growMax @hide
     */
    /**
     * @hide
     * @method autoSize
     */
});
Ext.reg('datefield', Ext.form.DateField);
/**
 * @class Ext.form.DisplayField
 * @extends Ext.form.Field
 * A display-only text field which is not validated and not submitted.
 * @constructor
 * Creates a new DisplayField.
 * @param {Object} config Configuration options
 * @xtype displayfield
 */
Ext.form.DisplayField = Ext.extend(Ext.form.Field,  {
    validationEvent : false,
    validateOnBlur : false,
    defaultAutoCreate : {tag: "div"},
    /**
     * @cfg {String} fieldClass The default CSS class for the field (defaults to "x-form-display-field")
     */
    fieldClass : "x-form-display-field",
    /**
     * @cfg {Boolean} htmlEncode false to skip HTML-encoding the text when rendering it (defaults to
     * false). This might be useful if you want to include tags in the field's innerHTML rather than
     * rendering them as string literals per the default logic.
     */
    htmlEncode: false,

    // private
    initEvents : Ext.emptyFn,

    isValid : function(){
        return true;
    },

    validate : function(){
        return true;
    },

    getRawValue : function(){
        var v = this.rendered ? this.el.dom.innerHTML : Ext.value(this.value, '');
        if(v === this.emptyText){
            v = '';
        }
        if(this.htmlEncode){
            v = Ext.util.Format.htmlDecode(v);
        }
        return v;
    },

    getValue : function(){
        return this.getRawValue();
    },
    
    getName: function() {
        return this.name;
    },

    setRawValue : function(v){
        if(this.htmlEncode){
            v = Ext.util.Format.htmlEncode(v);
        }
        return this.rendered ? (this.el.dom.innerHTML = (Ext.isEmpty(v) ? '' : v)) : (this.value = v);
    },

    setValue : function(v){
        this.setRawValue(v);
        return this;
    }
    /** 
     * @cfg {String} inputType 
     * @hide
     */
    /** 
     * @cfg {Boolean} disabled 
     * @hide
     */
    /** 
     * @cfg {Boolean} readOnly 
     * @hide
     */
    /** 
     * @cfg {Boolean} validateOnBlur 
     * @hide
     */
    /** 
     * @cfg {Number} validationDelay 
     * @hide
     */
    /** 
     * @cfg {String/Boolean} validationEvent 
     * @hide
     */
});

Ext.reg('displayfield', Ext.form.DisplayField);
/**
 * @class Ext.form.ComboBox
 * @extends Ext.form.TriggerField
 * 
      A combobox control with support for autocomplete, remote-loading, paging and many other features.
      
 * 
      A ComboBox works in a similar manner to a traditional HTML <select> field. The difference is
 * that to submit the {@link #valueField}, you must specify a {@link #hiddenName} to create a hidden input
 * field to hold the value of the valueField. The {@link #displayField} is shown in the text field
 * which is named according to the {@link #name}.
      
 * 
      Events
      
 * 
      To do something when something in ComboBox is selected, configure the select event:
      
var cb = new Ext.form.ComboBox({
    // all of your config options
    listeners:{
         scope: yourScope,
         'select': yourFunction
    }
});

// Alternatively, you can assign events after the object is created:
var cb = new Ext.form.ComboBox(yourOptions);
cb.on('select', yourFunction, yourScope);
 * 
      
 *
 * 
      ComboBox in Grid
      
 * 
      If using a ComboBox in an {@link Ext.grid.EditorGridPanel Editor Grid} a {@link Ext.grid.Column#renderer renderer}
 * will be needed to show the displayField when the editor is not active.  Set up the renderer manually, or implement
 * a reusable render, for example:
      
// create reusable renderer
Ext.util.Format.comboRenderer = function(combo){
    return function(value){
        var record = combo.findRecord(combo.{@link #valueField}, value);
        return record ? record.get(combo.{@link #displayField}) : combo.{@link #valueNotFoundText};
    }
}

// create the combo instance
var combo = new Ext.form.ComboBox({
    {@link #typeAhead}: true,
    {@link #triggerAction}: 'all',
    {@link #lazyRender}:true,
    {@link #mode}: 'local',
    {@link #store}: new Ext.data.ArrayStore({
        id: 0,
        fields: [
            'myId',
            'displayText'
        ],
        data: [[1, 'item1'], [2, 'item2']]
    }),
    {@link #valueField}: 'myId',
    {@link #displayField}: 'displayText'
});

// snippet of column model used within grid
var cm = new Ext.grid.ColumnModel([{
       ...
    },{
       header: "Some Header",
       dataIndex: 'whatever',
       width: 130,
       editor: combo, // specify reference to combo instance
       renderer: Ext.util.Format.comboRenderer(combo) // pass combo instance to reusable renderer
    },
    ...
]);
 * 
      
 *
 * 
      Filtering
      
 * 
      A ComboBox {@link #doQuery uses filtering itself}, for information about filtering the ComboBox
 * store manually see {@link #lastQuery}.
      
 * @constructor
 * Create a new ComboBox.
 * @param {Object} config Configuration options
 * @xtype combo
 */
Ext.form.ComboBox = Ext.extend(Ext.form.TriggerField, {
    /**
     * @cfg {Mixed} transform The id, DOM node or element of an existing HTML SELECT to convert to a ComboBox.
     * Note that if you specify this and the combo is going to be in an {@link Ext.form.BasicForm} or
     * {@link Ext.form.FormPanel}, you must also set {@link #lazyRender} = true.
     */
    /**
     * @cfg {Boolean} lazyRender true to prevent the ComboBox from rendering until requested
     * (should always be used when rendering into an {@link Ext.Editor} (e.g. {@link Ext.grid.EditorGridPanel Grids}),
     * defaults to false).
     */
    /**
     * @cfg {String/Object} autoCreate 
      A {@link Ext.DomHelper DomHelper} element spec, or true for a default
     * element spec. Used to create the {@link Ext.Component#getEl Element} which will encapsulate this Component.
     * See {@link Ext.Component#autoEl autoEl} for details.  Defaults to:
      
     * 
      {tag: "input", type: "text", size: "24", autocomplete: "off"}
      
     */
    /**
     * @cfg {Ext.data.Store/Array} store The data source to which this combo is bound (defaults to undefined).
     * Acceptable values for this property are:
     * 
        
     * 
      • any {@link Ext.data.Store Store} subclass
        • 
     * 
      • an Array : Arrays will be converted to a {@link Ext.data.ArrayStore} internally,
     * automatically generating {@link Ext.data.Field#name field names} to work with all data components.
     * 
          
     * 
        • 1-dimensional array : (e.g., ['Foo','Bar'])
          
     * A 1-dimensional array will automatically be expanded (each array item will be used for both the combo
     * {@link #valueField} and {@link #displayField})
          • 
     * 
        • 2-dimensional array : (e.g., [['f','Foo'],['b','Bar']])
          
     * For a multi-dimensional array, the value in index 0 of each item will be assumed to be the combo
     * {@link #valueField}, while the value at index 1 is assumed to be the combo {@link #displayField}.
     * 
      
     * 
      See also {@link #mode}.
      
     */
    /**
     * @cfg {String} title If supplied, a header element is created containing this text and added into the top of
     * the dropdown list (defaults to undefined, with no header element)
     */

    // private
    defaultAutoCreate : {tag: "input", type: "text", size: "24", autocomplete: "off"},
    /**
     * @cfg {Number} listWidth The width (used as a parameter to {@link Ext.Element#setWidth}) of the dropdown
     * list (defaults to the width of the ComboBox field).  See also {@link #minListWidth}
     */
    /**
     * @cfg {String} displayField The underlying {@link Ext.data.Field#name data field name} to bind to this
     * ComboBox (defaults to undefined if {@link #mode} = 'remote' or 'field1' if
     * {@link #transform transforming a select} or if the {@link #store field name is autogenerated based on
     * the store configuration}).
     * 
      See also {@link #valueField}.
      
     * 
      Note: if using a ComboBox in an {@link Ext.grid.EditorGridPanel Editor Grid} a
     * {@link Ext.grid.Column#renderer renderer} will be needed to show the displayField when the editor is not
     * active.
      
     */
    /**
     * @cfg {String} valueField The underlying {@link Ext.data.Field#name data value name} to bind to this
     * ComboBox (defaults to undefined if {@link #mode} = 'remote' or 'field2' if
     * {@link #transform transforming a select} or if the {@link #store field name is autogenerated based on
     * the store configuration}).
     * 
      Note: use of a valueField requires the user to make a selection in order for a value to be
     * mapped.  See also {@link #hiddenName}, {@link #hiddenValue}, and {@link #displayField}.
      
     */
    /**
     * @cfg {String} hiddenName If specified, a hidden form field with this name is dynamically generated to store the
     * field's data value (defaults to the underlying DOM element's name). Required for the combo's value to automatically
     * post during a form submission.  See also {@link #valueField}.
     */
    /**
     * @cfg {String} hiddenId If {@link #hiddenName} is specified, hiddenId can also be provided
     * to give the hidden field a unique id.  The hiddenId and combo {@link Ext.Component#id id} should be
     * different, since no two DOM nodes should share the same id.
     */
    /**
     * @cfg {String} hiddenValue Sets the initial value of the hidden field if {@link #hiddenName} is
     * specified to contain the selected {@link #valueField}, from the Store. Defaults to the configured
     * {@link Ext.form.Field#value value}.
     */
    /**
     * @cfg {String} listClass The CSS class to add to the predefined 'x-combo-list' class
     * applied the dropdown list element (defaults to '').
     */
    listClass : '',
    /**
     * @cfg {String} selectedClass CSS class to apply to the selected item in the dropdown list
     * (defaults to 'x-combo-selected')
     */
    selectedClass : 'x-combo-selected',
    /**
     * @cfg {String} listEmptyText The empty text to display in the data view if no items are found.
     * (defaults to '')
     */
    listEmptyText: '',
    /**
     * @cfg {String} triggerClass An additional CSS class used to style the trigger button.  The trigger will always
     * get the class 'x-form-trigger' and triggerClass will be appended if specified
     * (defaults to 'x-form-arrow-trigger' which displays a downward arrow icon).
     */
    triggerClass : 'x-form-arrow-trigger',
    /**
     * @cfg {Boolean/String} shadow true or "sides" for the default effect, "frame" for
     * 4-way shadow, and "drop" for bottom-right
     */
    shadow : 'sides',
    /**
     * @cfg {String/Array} listAlign A valid anchor position value. See {@link Ext.Element#alignTo} for details
     * on supported anchor positions and offsets. To specify x/y offsets as well, this value
     * may be specified as an Array of {@link Ext.Element#alignTo} method arguments.
      
     * 
      [ 'tl-bl?', [6,0] ]
      (defaults to 'tl-bl?')
     */
    listAlign : 'tl-bl?',
    /**
     * @cfg {Number} maxHeight The maximum height in pixels of the dropdown list before scrollbars are shown
     * (defaults to 300)
     */
    maxHeight : 300,
    /**
     * @cfg {Number} minHeight The minimum height in pixels of the dropdown list when the list is constrained by its
     * distance to the viewport edges (defaults to 90)
     */
    minHeight : 90,
    /**
     * @cfg {String} triggerAction The action to execute when the trigger is clicked.
     * 
        
     * 
      • 'query' : Default
     * 
        {@link #doQuery run the query} using the {@link Ext.form.Field#getRawValue raw value}.
        • 
     * 
      • 'all' :
     * 
        {@link #doQuery run the query} specified by the {@link #allQuery} config option
        • 
     * 
      
     * 
      See also {@link #queryParam}.
      
     */
    triggerAction : 'query',
    /**
     * @cfg {Number} minChars The minimum number of characters the user must type before autocomplete and
     * {@link #typeAhead} activate (defaults to 4 if {@link #mode} = 'remote' or 0 if
     * {@link #mode} = 'local', does not apply if
     * {@link Ext.form.TriggerField#editable editable} = false).
     */
    minChars : 4,
    /**
     * @cfg {Boolean} autoSelect true to select the first result gathered by the data store (defaults
     * to true).  A false value would require a manual selection from the dropdown list to set the components value
     * unless the value of ({@link #typeAheadDelay}) were true.
     */
    autoSelect : true,
    /**
     * @cfg {Boolean} typeAhead true to populate and autoselect the remainder of the text being
     * typed after a configurable delay ({@link #typeAheadDelay}) if it matches a known value (defaults
     * to false)
     */
    typeAhead : false,
    /**
     * @cfg {Number} queryDelay The length of time in milliseconds to delay between the start of typing and
     * sending the query to filter the dropdown list (defaults to 500 if {@link #mode} = 'remote'
     * or 10 if {@link #mode} = 'local')
     */
    queryDelay : 500,
    /**
     * @cfg {Number} pageSize If greater than 0, a {@link Ext.PagingToolbar} is displayed in the
     * footer of the dropdown list and the {@link #doQuery filter queries} will execute with page start and
     * {@link Ext.PagingToolbar#pageSize limit} parameters. Only applies when {@link #mode} = 'remote'
     * (defaults to 0).
     */
    pageSize : 0,
    /**
     * @cfg {Boolean} selectOnFocus true to select any existing text in the field immediately on focus.
     * Only applies when {@link Ext.form.TriggerField#editable editable} = true (defaults to
     * false).
     */
    selectOnFocus : false,
    /**
     * @cfg {String} queryParam Name of the query ({@link Ext.data.Store#baseParam baseParam} name for the store)
     * as it will be passed on the querystring (defaults to 'query')
     */
    queryParam : 'query',
    /**
     * @cfg {String} loadingText The text to display in the dropdown list while data is loading.  Only applies
     * when {@link #mode} = 'remote' (defaults to 'Loading...')
     */
    loadingText : 'Loading...',
    /**
     * @cfg {Boolean} resizable true to add a resize handle to the bottom of the dropdown list
     * (creates an {@link Ext.Resizable} with 'se' {@link Ext.Resizable#pinned pinned} handles).
     * Defaults to false.
     */
    resizable : false,
    /**
     * @cfg {Number} handleHeight The height in pixels of the dropdown list resize handle if
     * {@link #resizable} = true (defaults to 8)
     */
    handleHeight : 8,
    /**
     * @cfg {String} allQuery The text query to send to the server to return all records for the list
     * with no filtering (defaults to '')
     */
    allQuery: '',
    /**
     * @cfg {String} mode Acceptable values are:
     * 
        
     * 
      • 'remote' : Default
     * 
        Automatically loads the {@link #store} the first time the trigger
     * is clicked. If you do not want the store to be automatically loaded the first time the trigger is
     * clicked, set to 'local' and manually load the store.  To force a requery of the store
     * every time the trigger is clicked see {@link #lastQuery}.
        • 
     * 
      • 'local' :
     * 
        ComboBox loads local data
        
     * 
        
var combo = new Ext.form.ComboBox({
    renderTo: document.body,
    mode: 'local',
    store: new Ext.data.ArrayStore({
        id: 0,
        fields: [
            'myId',  // numeric value is the key
            'displayText'
        ],
        data: [[1, 'item1'], [2, 'item2']]  // data is local
    }),
    valueField: 'myId',
    displayField: 'displayText',
    triggerAction: 'all'
});
     * 
        • 
     * 
      
     */
    mode: 'remote',
    /**
     * @cfg {Number} minListWidth The minimum width of the dropdown list in pixels (defaults to 70, will
     * be ignored if {@link #listWidth} has a higher value)
     */
    minListWidth : 70,
    /**
     * @cfg {Boolean} forceSelection true to restrict the selected value to one of the values in the list,
     * false to allow the user to set arbitrary text into the field (defaults to false)
     */
    forceSelection : false,
    /**
     * @cfg {Number} typeAheadDelay The length of time in milliseconds to wait until the typeahead text is displayed
     * if {@link #typeAhead} = true (defaults to 250)
     */
    typeAheadDelay : 250,
    /**
     * @cfg {String} valueNotFoundText When using a name/value combo, if the value passed to setValue is not found in
     * the store, valueNotFoundText will be displayed as the field text if defined (defaults to undefined). If this
     * default text is used, it means there is no value set and no validation will occur on this field.
     */

    /**
     * @cfg {Boolean} lazyInit true to not initialize the list for this combo until the field is focused
     * (defaults to true)
     */
    lazyInit : true,

    /**
     * @cfg {Boolean} clearFilterOnReset true to clear any filters on the store (when in local mode) when reset is called
     * (defaults to true)
     */
    clearFilterOnReset : true,

    /**
     * @cfg {Boolean} submitValue False to clear the name attribute on the field so that it is not submitted during a form post.
     * If a hiddenName is specified, setting this to true will cause both the hidden field and the element to be submitted.
     * Defaults to undefined.
     */
    submitValue: undefined,

    /**
     * The value of the match string used to filter the store. Delete this property to force a requery.
     * Example use:
     * 
      
var combo = new Ext.form.ComboBox({
    ...
    mode: 'remote',
    ...
    listeners: {
        // delete the previous query in the beforequery event or set
        // combo.lastQuery = null (this will reload the store the next time it expands)
        beforequery: function(qe){
            delete qe.combo.lastQuery;
        }
    }
});
     * 
      
     * To make sure the filter in the store is not cleared the first time the ComboBox trigger is used
     * configure the combo with lastQuery=''. Example use:
     * 
      
var combo = new Ext.form.ComboBox({
    ...
    mode: 'local',
    triggerAction: 'all',
    lastQuery: ''
});
     * 
      
     * @property lastQuery
     * @type String
     */

    // private
    initComponent : function(){
        Ext.form.ComboBox.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event expand
             * Fires when the dropdown list is expanded
             * @param {Ext.form.ComboBox} combo This combo box
             */
            'expand',
            /**
             * @event collapse
             * Fires when the dropdown list is collapsed
             * @param {Ext.form.ComboBox} combo This combo box
             */
            'collapse',

            /**
             * @event beforeselect
             * Fires before a list item is selected. Return false to cancel the selection.
             * @param {Ext.form.ComboBox} combo This combo box
             * @param {Ext.data.Record} record The data record returned from the underlying store
             * @param {Number} index The index of the selected item in the dropdown list
             */
            'beforeselect',
            /**
             * @event select
             * Fires when a list item is selected
             * @param {Ext.form.ComboBox} combo This combo box
             * @param {Ext.data.Record} record The data record returned from the underlying store
             * @param {Number} index The index of the selected item in the dropdown list
             */
            'select',
            /**
             * @event beforequery
             * Fires before all queries are processed. Return false to cancel the query or set the queryEvent's
             * cancel property to true.
             * @param {Object} queryEvent An object that has these properties:
        
             * 
      • combo : Ext.form.ComboBox 
        This combo box
        • 
             * 
      • query : String 
        The query
        • 
             * 
      • forceAll : Boolean 
        True to force "all" query
        • 
             * 
      • cancel : Boolean 
        Set to true to cancel the query
        • 
             * 
      
             */
            'beforequery'
        );
        if(this.transform){
            var s = Ext.getDom(this.transform);
            if(!this.hiddenName){
                this.hiddenName = s.name;
            }
            if(!this.store){
                this.mode = 'local';
                var d = [], opts = s.options;
                for(var i = 0, len = opts.length;i < len; i++){
                    var o = opts[i],
                        value = (o.hasAttribute ? o.hasAttribute('value') : o.getAttributeNode('value').specified) ? o.value : o.text;
                    if(o.selected && Ext.isEmpty(this.value, true)) {
                        this.value = value;
                    }
                    d.push([value, o.text]);
                }
                this.store = new Ext.data.ArrayStore({
                    idIndex: 0,
                    fields: ['value', 'text'],
                    data : d,
                    autoDestroy: true
                });
                this.valueField = 'value';
                this.displayField = 'text';
            }
            s.name = Ext.id(); // wipe out the name in case somewhere else they have a reference
            if(!this.lazyRender){
                this.target = true;
                this.el = Ext.DomHelper.insertBefore(s, this.autoCreate || this.defaultAutoCreate);
                this.render(this.el.parentNode, s);
            }
            Ext.removeNode(s);
        }
        //auto-configure store from local array data
        else if(this.store){
            this.store = Ext.StoreMgr.lookup(this.store);
            if(this.store.autoCreated){
                this.displayField = this.valueField = 'field1';
                if(!this.store.expandData){
                    this.displayField = 'field2';
                }
                this.mode = 'local';
            }
        }

        this.selectedIndex = -1;
        if(this.mode == 'local'){
            if(!Ext.isDefined(this.initialConfig.queryDelay)){
                this.queryDelay = 10;
            }
            if(!Ext.isDefined(this.initialConfig.minChars)){
                this.minChars = 0;
            }
        }
    },

    // private
    onRender : function(ct, position){
        if(this.hiddenName && !Ext.isDefined(this.submitValue)){
            this.submitValue = false;
        }
        Ext.form.ComboBox.superclass.onRender.call(this, ct, position);
        if(this.hiddenName){
            this.hiddenField = this.el.insertSibling({tag:'input', type:'hidden', name: this.hiddenName,
                    id: (this.hiddenId || Ext.id())}, 'before', true);

        }
        if(Ext.isGecko){
            this.el.dom.setAttribute('autocomplete', 'off');
        }

        if(!this.lazyInit){
            this.initList();
        }else{
            this.on('focus', this.initList, this, {single: true});
        }
    },

    // private
    initValue : function(){
        Ext.form.ComboBox.superclass.initValue.call(this);
        if(this.hiddenField){
            this.hiddenField.value =
                Ext.value(Ext.isDefined(this.hiddenValue) ? this.hiddenValue : this.value, '');
        }
    },

    getParentZIndex : function(){
        var zindex;
        if (this.ownerCt){
            this.findParentBy(function(ct){
                zindex = parseInt(ct.getPositionEl().getStyle('z-index'), 10);
                return !!zindex;
            });
        }
        return zindex;
    },

    getZIndex : function(listParent){
        listParent = listParent || Ext.getDom(this.getListParent() || Ext.getBody());
        var zindex = parseInt(Ext.fly(listParent).getStyle('z-index'), 10);
        if(!zindex){
            zindex = this.getParentZIndex();
        }
        return (zindex || 12000) + 5;
    },

    // private
    initList : function(){
        if(!this.list){
            var cls = 'x-combo-list',
                listParent = Ext.getDom(this.getListParent() || Ext.getBody());

            this.list = new Ext.Layer({
                parentEl: listParent,
                shadow: this.shadow,
                cls: [cls, this.listClass].join(' '),
                constrain:false,
                zindex: this.getZIndex(listParent)
            });

            var lw = this.listWidth || Math.max(this.wrap.getWidth(), this.minListWidth);
            this.list.setSize(lw, 0);
            this.list.swallowEvent('mousewheel');
            this.assetHeight = 0;
            if(this.syncFont !== false){
                this.list.setStyle('font-size', this.el.getStyle('font-size'));
            }
            if(this.title){
                this.header = this.list.createChild({cls:cls+'-hd', html: this.title});
                this.assetHeight += this.header.getHeight();
            }

            this.innerList = this.list.createChild({cls:cls+'-inner'});
            this.mon(this.innerList, 'mouseover', this.onViewOver, this);
            this.mon(this.innerList, 'mousemove', this.onViewMove, this);
            this.innerList.setWidth(lw - this.list.getFrameWidth('lr'));

            if(this.pageSize){
                this.footer = this.list.createChild({cls:cls+'-ft'});
                this.pageTb = new Ext.PagingToolbar({
                    store: this.store,
                    pageSize: this.pageSize,
                    renderTo:this.footer
                });
                this.assetHeight += this.footer.getHeight();
            }

            if(!this.tpl){
                /**
                * @cfg {String/Ext.XTemplate} tpl 
      The template string, or {@link Ext.XTemplate} instance to
                * use to display each item in the dropdown list. The dropdown list is displayed in a
                * DataView. See {@link #view}.
      
                * 
      The default template string is:
      
                  '<tpl for="."><div class="x-combo-list-item">{' + this.displayField + '}</div></tpl>'
                * 
      
                * 
      Override the default value to create custom UI layouts for items in the list.
                * For example:
      
                  '<tpl for="."><div ext:qtip="{state}. {nick}" class="x-combo-list-item">{state}</div></tpl>'
                * 
      
                * 
      The template must contain one or more substitution parameters using field
                * names from the Combo's {@link #store Store}. In the example above an
                * 
      ext:qtip
       attribute is added to display other fields from the Store.
      
                * 
      To preserve the default visual look of list items, add the CSS class name
                * 
      x-combo-list-item
       to the template's container element.
      
                * 
      Also see {@link #itemSelector} for additional details.
      
                */
                this.tpl = '
      {' + this.displayField + '}
      ';
                /**
                 * @cfg {String} itemSelector
                 * 
      A simple CSS selector (e.g. div.some-class or span:first-child) that will be
                 * used to determine what nodes the {@link #view Ext.DataView} which handles the dropdown
                 * display will be working with.
      
                 * 
      Note: this setting is required if a custom XTemplate has been
                 * specified in {@link #tpl} which assigns a class other than 
      'x-combo-list-item'
      
                 * to dropdown list items      
                 */
            }

            /**
            * The {@link Ext.DataView DataView} used to display the ComboBox's options.
            * @type Ext.DataView
            */
            this.view = new Ext.DataView({
                applyTo: this.innerList,
                tpl: this.tpl,
                singleSelect: true,
                selectedClass: this.selectedClass,
                itemSelector: this.itemSelector || '.' + cls + '-item',
                emptyText: this.listEmptyText,
                deferEmptyText: false
            });

            this.mon(this.view, {
                containerclick : this.onViewClick,
                click : this.onViewClick,
                scope :this
            });

            this.bindStore(this.store, true);

            if(this.resizable){
                this.resizer = new Ext.Resizable(this.list,  {
                   pinned:true, handles:'se'
                });
                this.mon(this.resizer, 'resize', function(r, w, h){
                    this.maxHeight = h-this.handleHeight-this.list.getFrameWidth('tb')-this.assetHeight;
                    this.listWidth = w;
                    this.innerList.setWidth(w - this.list.getFrameWidth('lr'));
                    this.restrictHeight();
                }, this);

                this[this.pageSize?'footer':'innerList'].setStyle('margin-bottom', this.handleHeight+'px');
            }
        }
    },

    /**
     * 
      Returns the element used to house this ComboBox's pop-up list. Defaults to the document body.
      
     * A custom implementation may be provided as a configuration option if the floating list needs to be rendered
     * to a different Element. An example might be rendering the list inside a Menu so that clicking
     * the list does not hide the Menu:
      
var store = new Ext.data.ArrayStore({
    autoDestroy: true,
    fields: ['initials', 'fullname'],
    data : [
        ['FF', 'Fred Flintstone'],
        ['BR', 'Barney Rubble']
    ]
});

var combo = new Ext.form.ComboBox({
    store: store,
    displayField: 'fullname',
    emptyText: 'Select a name...',
    forceSelection: true,
    getListParent: function() {
        return this.el.up('.x-menu');
    },
    iconCls: 'no-icon', //use iconCls if placing within menu to shift to right side of menu
    mode: 'local',
    selectOnFocus: true,
    triggerAction: 'all',
    typeAhead: true,
    width: 135
});

var menu = new Ext.menu.Menu({
    id: 'mainMenu',
    items: [
        combo // A Field in a Menu
    ]
});

      
     */
    getListParent : function() {
        return document.body;
    },

    /**
     * Returns the store associated with this combo.
     * @return {Ext.data.Store} The store
     */
    getStore : function(){
        return this.store;
    },

    // private
    bindStore : function(store, initial){
        if(this.store && !initial){
            if(this.store !== store && this.store.autoDestroy){
                this.store.destroy();
            }else{
                this.store.un('beforeload', this.onBeforeLoad, this);
                this.store.un('load', this.onLoad, this);
                this.store.un('exception', this.collapse, this);
            }
            if(!store){
                this.store = null;
                if(this.view){
                    this.view.bindStore(null);
                }
                if(this.pageTb){
                    this.pageTb.bindStore(null);
                }
            }
        }
        if(store){
            if(!initial) {
                this.lastQuery = null;
                if(this.pageTb) {
                    this.pageTb.bindStore(store);
                }
            }

            this.store = Ext.StoreMgr.lookup(store);
            this.store.on({
                scope: this,
                beforeload: this.onBeforeLoad,
                load: this.onLoad,
                exception: this.collapse
            });

            if(this.view){
                this.view.bindStore(store);
            }
        }
    },

    reset : function(){
        if(this.clearFilterOnReset && this.mode == 'local'){
            this.store.clearFilter();
        }
        Ext.form.ComboBox.superclass.reset.call(this);
    },

    // private
    initEvents : function(){
        Ext.form.ComboBox.superclass.initEvents.call(this);

        /**
         * @property keyNav
         * @type Ext.KeyNav
         * 
      A {@link Ext.KeyNav KeyNav} object which handles navigation keys for this ComboBox. This performs actions
         * based on keystrokes typed when the input field is focused.
      
         * 
      After the ComboBox has been rendered, you may override existing navigation key functionality,
         * or add your own based upon key names as specified in the {@link Ext.KeyNav KeyNav} class.
      
         * 
      The function is executed in the scope (this reference of the ComboBox. Example:
      
myCombo.keyNav.esc = function(e) {  // Override ESC handling function
    this.collapse();                // Standard behaviour of Ext's ComboBox.
    this.setValue(this.startValue); // We reset to starting value on ESC
};
myCombo.keyNav.tab = function() {   // Override TAB handling function
    this.onViewClick(false);        // Select the currently highlighted row
};

      
         */
        this.keyNav = new Ext.KeyNav(this.el, {
            "up" : function(e){
                this.inKeyMode = true;
                this.selectPrev();
            },

            "down" : function(e){
                if(!this.isExpanded()){
                    this.onTriggerClick();
                }else{
                    this.inKeyMode = true;
                    this.selectNext();
                }
            },

            "enter" : function(e){
                this.onViewClick();
            },

            "esc" : function(e){
                this.collapse();
            },

            "tab" : function(e){
                if (this.forceSelection === true) {
                    this.collapse();
                } else {
                    this.onViewClick(false);
                }
                return true;
            },

            scope : this,

            doRelay : function(e, h, hname){
                if(hname == 'down' || this.scope.isExpanded()){
                    // this MUST be called before ComboBox#fireKey()
                    var relay = Ext.KeyNav.prototype.doRelay.apply(this, arguments);
                    if((((Ext.isIE9 && Ext.isStrict) || Ext.isIE10p) || !Ext.isIE) && Ext.EventManager.useKeydown){
                        // call Combo#fireKey() for browsers which use keydown event (except IE)
                        this.scope.fireKey(e);
                    }
                    return relay;
                }
                return true;
            },

            forceKeyDown : true,
            defaultEventAction: 'stopEvent'
        });
        this.queryDelay = Math.max(this.queryDelay || 10,
                this.mode == 'local' ? 10 : 250);
        this.dqTask = new Ext.util.DelayedTask(this.initQuery, this);
        if(this.typeAhead){
            this.taTask = new Ext.util.DelayedTask(this.onTypeAhead, this);
        }
        if(!this.enableKeyEvents){
            this.mon(this.el, 'keyup', this.onKeyUp, this);
        }
    },


    // private
    onDestroy : function(){
        if (this.dqTask){
            this.dqTask.cancel();
            this.dqTask = null;
        }
        this.bindStore(null);
        Ext.destroy(
            this.resizer,
            this.view,
            this.pageTb,
            this.list
        );
        Ext.destroyMembers(this, 'hiddenField');
        Ext.form.ComboBox.superclass.onDestroy.call(this);
    },

    // private
    fireKey : function(e){
        if (!this.isExpanded()) {
            Ext.form.ComboBox.superclass.fireKey.call(this, e);
        }
    },

    // private
    onResize : function(w, h){
        Ext.form.ComboBox.superclass.onResize.apply(this, arguments);
        if(!isNaN(w) && this.isVisible() && this.list){
            this.doResize(w);
        }else{
            this.bufferSize = w;
        }
    },

    doResize: function(w){
        if(!Ext.isDefined(this.listWidth)){
            var lw = Math.max(w, this.minListWidth);
            this.list.setWidth(lw);
            this.innerList.setWidth(lw - this.list.getFrameWidth('lr'));
        }
    },

    // private
    onEnable : function(){
        Ext.form.ComboBox.superclass.onEnable.apply(this, arguments);
        if(this.hiddenField){
            this.hiddenField.disabled = false;
        }
    },

    // private
    onDisable : function(){
        Ext.form.ComboBox.superclass.onDisable.apply(this, arguments);
        if(this.hiddenField){
            this.hiddenField.disabled = true;
        }
    },

    // private
    onBeforeLoad : function(){
        if(!this.hasFocus){
            return;
        }
        this.innerList.update(this.loadingText ?
               '
      '+this.loadingText+'
      ' : '');
        this.restrictHeight();
        this.selectedIndex = -1;
    },

    // private
    onLoad : function(){
        if(!this.hasFocus){
            return;
        }
        if(this.store.getCount() > 0 || this.listEmptyText){
            this.expand();
            this.restrictHeight();
            if(this.lastQuery == this.allQuery){
                if(this.editable){
                    this.el.dom.select();
                }

                if(this.autoSelect !== false && !this.selectByValue(this.value, true)){
                    this.select(0, true);
                }
            }else{
                if(this.autoSelect !== false){
                    this.selectNext();
                }
                if(this.typeAhead && this.lastKey != Ext.EventObject.BACKSPACE && this.lastKey != Ext.EventObject.DELETE){
                    this.taTask.delay(this.typeAheadDelay);
                }
            }
        }else{
            this.collapse();
        }

    },

    // private
    onTypeAhead : function(){
        if(this.store.getCount() > 0){
            var r = this.store.getAt(0);
            var newValue = r.data[this.displayField];
            var len = newValue.length;
            var selStart = this.getRawValue().length;
            if(selStart != len){
                this.setRawValue(newValue);
                this.selectText(selStart, newValue.length);
            }
        }
    },

    // private
    assertValue : function(){
        var val = this.getRawValue(),
            rec;

        if(this.valueField && Ext.isDefined(this.value)){
            rec = this.findRecord(this.valueField, this.value);
        }
        if(!rec || rec.get(this.displayField) != val){
            rec = this.findRecord(this.displayField, val);
        }
        if(!rec && this.forceSelection){
            if(val.length > 0 && val != this.emptyText){
                this.el.dom.value = Ext.value(this.lastSelectionText, '');
                this.applyEmptyText();
            }else{
                this.clearValue();
            }
        }else{
            if(rec && this.valueField){
                // onSelect may have already set the value and by doing so
                // set the display field properly.  Let's not wipe out the
                // valueField here by just sending the displayField.
                if (this.value == val){
                    return;
                }
                val = rec.get(this.valueField || this.displayField);
            }
            this.setValue(val);
        }
    },

    // private
    onSelect : function(record, index){
        if(this.fireEvent('beforeselect', this, record, index) !== false){
            this.setValue(record.data[this.valueField || this.displayField]);
            this.collapse();
            this.fireEvent('select', this, record, index);
        }
    },

    // inherit docs
    getName: function(){
        var hf = this.hiddenField;
        return hf && hf.name ? hf.name : this.hiddenName || Ext.form.ComboBox.superclass.getName.call(this);
    },

    /**
     * Returns the currently selected field value or empty string if no value is set.
     * @return {String} value The selected value
     */
    getValue : function(){
        if(this.valueField){
            return Ext.isDefined(this.value) ? this.value : '';
        }else{
            return Ext.form.ComboBox.superclass.getValue.call(this);
        }
    },

    /**
     * Clears any text/value currently set in the field
     */
    clearValue : function(){
        if(this.hiddenField){
            this.hiddenField.value = '';
        }
        this.setRawValue('');
        this.lastSelectionText = '';
        this.applyEmptyText();
        this.value = '';
    },

    /**
     * Sets the specified value into the field.  If the value finds a match, the corresponding record text
     * will be displayed in the field.  If the value does not match the data value of an existing item,
     * and the valueNotFoundText config option is defined, it will be displayed as the default field text.
     * Otherwise the field will be blank (although the value will still be set).
     * @param {String} value The value to match
     * @return {Ext.form.Field} this
     */
    setValue : function(v){
        var text = v;
        if(this.valueField){
            var r = this.findRecord(this.valueField, v);
            if(r){
                text = r.data[this.displayField];
            }else if(Ext.isDefined(this.valueNotFoundText)){
                text = this.valueNotFoundText;
            }
        }
        this.lastSelectionText = text;
        if(this.hiddenField){
            this.hiddenField.value = Ext.value(v, '');
        }
        Ext.form.ComboBox.superclass.setValue.call(this, text);
        this.value = v;
        return this;
    },

    // private
    findRecord : function(prop, value){
        var record;
        if(this.store.getCount() > 0){
            this.store.each(function(r){
                if(r.data[prop] == value){
                    record = r;
                    return false;
                }
            });
        }
        return record;
    },

    // private
    onViewMove : function(e, t){
        this.inKeyMode = false;
    },

    // private
    onViewOver : function(e, t){
        if(this.inKeyMode){ // prevent key nav and mouse over conflicts
            return;
        }
        var item = this.view.findItemFromChild(t);
        if(item){
            var index = this.view.indexOf(item);
            this.select(index, false);
        }
    },

    // private
    onViewClick : function(doFocus){
        var index = this.view.getSelectedIndexes()[0],
            s = this.store,
            r = s.getAt(index);
        if(r){
            this.onSelect(r, index);
        }else {
            this.collapse();
        }
        if(doFocus !== false){
            this.el.focus();
        }
    },


    // private
    restrictHeight : function(){
        this.innerList.dom.style.height = '';
        var inner = this.innerList.dom,
            pad = this.list.getFrameWidth('tb') + (this.resizable ? this.handleHeight : 0) + this.assetHeight,
            h = Math.max(inner.clientHeight, inner.offsetHeight, inner.scrollHeight),
            ha = this.getPosition()[1]-Ext.getBody().getScroll().top,
            hb = Ext.lib.Dom.getViewHeight()-ha-this.getSize().height,
            space = Math.max(ha, hb, this.minHeight || 0)-this.list.shadowOffset-pad-5;

        h = Math.min(h, space, this.maxHeight);

        this.innerList.setHeight(h);
        this.list.beginUpdate();
        this.list.setHeight(h+pad);
        this.list.alignTo.apply(this.list, [this.el].concat(this.listAlign));
        this.list.endUpdate();
    },

    /**
     * Returns true if the dropdown list is expanded, else false.
     */
    isExpanded : function(){
        return this.list && this.list.isVisible();
    },

    /**
     * Select an item in the dropdown list by its data value. This function does NOT cause the select event to fire.
     * The store must be loaded and the list expanded for this function to work, otherwise use setValue.
     * @param {String} value The data value of the item to select
     * @param {Boolean} scrollIntoView False to prevent the dropdown list from autoscrolling to display the
     * selected item if it is not currently in view (defaults to true)
     * @return {Boolean} True if the value matched an item in the list, else false
     */
    selectByValue : function(v, scrollIntoView){
        if(!Ext.isEmpty(v, true)){
            var r = this.findRecord(this.valueField || this.displayField, v);
            if(r){
                this.select(this.store.indexOf(r), scrollIntoView);
                return true;
            }
        }
        return false;
    },

    /**
     * Select an item in the dropdown list by its numeric index in the list. This function does NOT cause the select event to fire.
     * The store must be loaded and the list expanded for this function to work, otherwise use setValue.
     * @param {Number} index The zero-based index of the list item to select
     * @param {Boolean} scrollIntoView False to prevent the dropdown list from autoscrolling to display the
     * selected item if it is not currently in view (defaults to true)
     */
    select : function(index, scrollIntoView){
        this.selectedIndex = index;
        this.view.select(index);
        if(scrollIntoView !== false){
            var el = this.view.getNode(index);
            if(el){
                this.innerList.scrollChildIntoView(el, false);
            }
        }

    },

    // private
    selectNext : function(){
        var ct = this.store.getCount();
        if(ct > 0){
            if(this.selectedIndex == -1){
                this.select(0);
            }else if(this.selectedIndex < ct-1){
                this.select(this.selectedIndex+1);
            }
        }
    },

    // private
    selectPrev : function(){
        var ct = this.store.getCount();
        if(ct > 0){
            if(this.selectedIndex == -1){
                this.select(0);
            }else if(this.selectedIndex !== 0){
                this.select(this.selectedIndex-1);
            }
        }
    },

    // private
    onKeyUp : function(e){
        var k = e.getKey();
        if(this.editable !== false && this.readOnly !== true && (k == e.BACKSPACE || !e.isSpecialKey())){

            this.lastKey = k;
            this.dqTask.delay(this.queryDelay);
        }
        Ext.form.ComboBox.superclass.onKeyUp.call(this, e);
    },

    // private
    validateBlur : function(){
        return !this.list || !this.list.isVisible();
    },

    // private
    initQuery : function(){
        this.doQuery(this.getRawValue());
    },

    // private
    beforeBlur : function(){
        this.assertValue();
    },

    // private
    postBlur  : function(){
        Ext.form.ComboBox.superclass.postBlur.call(this);
        this.collapse();
        this.inKeyMode = false;
    },

    /**
     * Execute a query to filter the dropdown list.  Fires the {@link #beforequery} event prior to performing the
     * query allowing the query action to be canceled if needed.
     * @param {String} query The SQL query to execute
     * @param {Boolean} forceAll true to force the query to execute even if there are currently fewer
     * characters in the field than the minimum specified by the {@link #minChars} config option.  It
     * also clears any filter previously saved in the current store (defaults to false)
     */
    doQuery : function(q, forceAll){
        q = Ext.isEmpty(q) ? '' : q;
        var qe = {
            query: q,
            forceAll: forceAll,
            combo: this,
            cancel:false
        };
        if(this.fireEvent('beforequery', qe)===false || qe.cancel){
            return false;
        }
        q = qe.query;
        forceAll = qe.forceAll;
        if(forceAll === true || (q.length >= this.minChars)){
            if(this.lastQuery !== q){
                this.lastQuery = q;
                if(this.mode == 'local'){
                    this.selectedIndex = -1;
                    if(forceAll){
                        this.store.clearFilter();
                    }else{
                        this.store.filter(this.displayField, q);
                    }
                    this.onLoad();
                }else{
                    this.store.baseParams[this.queryParam] = q;
                    this.store.load({
                        params: this.getParams(q)
                    });
                    this.expand();
                }
            }else{
                this.selectedIndex = -1;
                this.onLoad();
            }
        }
    },

    // private
    getParams : function(q){
        var params = {},
            paramNames = this.store.paramNames;
        if(this.pageSize){
            params[paramNames.start] = 0;
            params[paramNames.limit] = this.pageSize;
        }
        return params;
    },

    /**
     * Hides the dropdown list if it is currently expanded. Fires the {@link #collapse} event on completion.
     */
    collapse : function(){
        if(!this.isExpanded()){
            return;
        }
        this.list.hide();
        Ext.getDoc().un('mousewheel', this.collapseIf, this);
        Ext.getDoc().un('mousedown', this.collapseIf, this);
        this.fireEvent('collapse', this);
    },

    // private
    collapseIf : function(e){
        if(!this.isDestroyed && !e.within(this.wrap) && !e.within(this.list)){
            this.collapse();
        }
    },

    /**
     * Expands the dropdown list if it is currently hidden. Fires the {@link #expand} event on completion.
     */
    expand : function(){
        if(this.isExpanded() || !this.hasFocus){
            return;
        }

        if(this.title || this.pageSize){
            this.assetHeight = 0;
            if(this.title){
                this.assetHeight += this.header.getHeight();
            }
            if(this.pageSize){
                this.assetHeight += this.footer.getHeight();
            }
        }

        if(this.bufferSize){
            this.doResize(this.bufferSize);
            delete this.bufferSize;
        }
        this.list.alignTo.apply(this.list, [this.el].concat(this.listAlign));

        // zindex can change, re-check it and set it if necessary
        this.list.setZIndex(this.getZIndex());
        this.list.show();
        if(Ext.isGecko2){
            this.innerList.setOverflow('auto'); // necessary for FF 2.0/Mac
        }
        this.mon(Ext.getDoc(), {
            scope: this,
            mousewheel: this.collapseIf,
            mousedown: this.collapseIf
        });
        this.fireEvent('expand', this);
    },

    /**
     * @method onTriggerClick
     * @hide
     */
    // private
    // Implements the default empty TriggerField.onTriggerClick function
    onTriggerClick : function(){
        if(this.readOnly || this.disabled){
            return;
        }
        if(this.isExpanded()){
            this.collapse();
            this.el.focus();
        }else {
            this.onFocus({});
            if(this.triggerAction == 'all') {
                this.doQuery(this.allQuery, true);
            } else {
                this.doQuery(this.getRawValue());
            }
            this.el.focus();
        }
    }

    /**
     * @hide
     * @method autoSize
     */
    /**
     * @cfg {Boolean} grow @hide
     */
    /**
     * @cfg {Number} growMin @hide
     */
    /**
     * @cfg {Number} growMax @hide
     */

});
Ext.reg('combo', Ext.form.ComboBox);
/**
 * @class Ext.form.Checkbox
 * @extends Ext.form.Field
 * Single checkbox field.  Can be used as a direct replacement for traditional checkbox fields.
 * @constructor
 * Creates a new Checkbox
 * @param {Object} config Configuration options
 * @xtype checkbox
 */
Ext.form.Checkbox = Ext.extend(Ext.form.Field,  {
    /**
     * @cfg {String} focusClass The CSS class to use when the checkbox receives focus (defaults to undefined)
     */
    focusClass : undefined,
    /**
     * @cfg {String} fieldClass The default CSS class for the checkbox (defaults to 'x-form-field')
     */
    fieldClass : 'x-form-field',
    /**
     * @cfg {Boolean} checked true if the checkbox should render initially checked (defaults to false)
     */
    checked : false,
    /**
     * @cfg {String} boxLabel The text that appears beside the checkbox
     */
    boxLabel: ' ',
    /**
     * @cfg {String/Object} autoCreate A DomHelper element spec, or true for a default element spec (defaults to
     * {tag: 'input', type: 'checkbox', autocomplete: 'off'})
     */
    defaultAutoCreate : { tag: 'input', type: 'checkbox', autocomplete: 'off'},
    /**
     * @cfg {String} inputValue The value that should go into the generated input element's value attribute
     */
    /**
     * @cfg {Function} handler A function called when the {@link #checked} value changes (can be used instead of
     * handling the check event). The handler is passed the following parameters:
     * 
        
     * 
      • checkbox : Ext.form.Checkbox
        The Checkbox being toggled.
        • 
     * 
      • checked : Boolean
        The new checked state of the checkbox.
        • 
     * 
      
     */
    /**
     * @cfg {Object} scope An object to use as the scope ('this' reference) of the {@link #handler} function
     * (defaults to this Checkbox).
     */

    // private
    actionMode : 'wrap',

	// private
    initComponent : function(){
        Ext.form.Checkbox.superclass.initComponent.call(this);
        this.addEvents(
            /**
             * @event check
             * Fires when the checkbox is checked or unchecked.
             * @param {Ext.form.Checkbox} this This checkbox
             * @param {Boolean} checked The new checked value
             */
            'check'
        );
    },

    // private
    onResize : function(){
        Ext.form.Checkbox.superclass.onResize.apply(this, arguments);
        if(!this.boxLabel && !this.fieldLabel){
            this.el.alignTo(this.wrap, 'c-c');
        }
    },

    // private
    initEvents : function(){
        Ext.form.Checkbox.superclass.initEvents.call(this);
        this.mon(this.el, {
            scope: this,
            click: this.onClick,
            change: this.onClick
        });
    },

    /**
     * @hide
     * Overridden and disabled. The editor element does not support standard valid/invalid marking.
     * @method
     */
    markInvalid : Ext.emptyFn,
    /**
     * @hide
     * Overridden and disabled. The editor element does not support standard valid/invalid marking.
     * @method
     */
    clearInvalid : Ext.emptyFn,

    // private
    onRender : function(ct, position){
        Ext.form.Checkbox.superclass.onRender.call(this, ct, position);
        if(this.inputValue !== undefined){
            this.el.dom.value = this.inputValue;
        }
        this.wrap = this.el.wrap({cls: 'x-form-check-wrap'});
        if(this.boxLabel){
            this.wrap.createChild({tag: 'label', htmlFor: this.el.id, cls: 'x-form-cb-label', html: this.boxLabel});
        }
        if(this.checked){
            this.setValue(true);
        }else{
            this.checked = this.el.dom.checked;
        }
        // Need to repaint for IE, otherwise positioning is broken
        if (Ext.isIEQuirks) {
            this.wrap.repaint();
        }
        this.resizeEl = this.positionEl = this.wrap;
    },

    // private
    onDestroy : function(){
        Ext.destroy(this.wrap);
        Ext.form.Checkbox.superclass.onDestroy.call(this);
    },

    // private
    initValue : function() {
        this.originalValue = this.getValue();
    },

    /**
     * Returns the checked state of the checkbox.
     * @return {Boolean} True if checked, else false
     */
    getValue : function(){
        if(this.rendered){
            return this.el.dom.checked;
        }
        return this.checked;
    },

	// private
    onClick : function(){
        if(this.el.dom.checked != this.checked){
            this.setValue(this.el.dom.checked);
        }
    },

    /**
     * Sets the checked state of the checkbox, fires the 'check' event, and calls a
     * {@link #handler} (if configured).
     * @param {Boolean/String} checked The following values will check the checkbox:
     * true, 'true', '1', or 'on'. Any other value will uncheck the checkbox.
     * @return {Ext.form.Field} this
     */
    setValue : function(v){
        var checked = this.checked,
            inputVal = this.inputValue;
            
        if (v === false) {
            this.checked = false;
        } else {
            this.checked = (v === true || v === 'true' || v == '1' || (inputVal ? v == inputVal : String(v).toLowerCase() == 'on'));
        }
        
        if(this.rendered){
            this.el.dom.checked = this.checked;
            this.el.dom.defaultChecked = this.checked;
        }
        if(checked != this.checked){
            this.fireEvent('check', this, this.checked);
            if(this.handler){
                this.handler.call(this.scope || this, this, this.checked);
            }
        }
        return this;
    }
});
Ext.reg('checkbox', Ext.form.Checkbox);
/**
 * @class Ext.form.CheckboxGroup
 * @extends Ext.form.Field
 * 
      A grouping container for {@link Ext.form.Checkbox} controls.
      
 * 
      Sample usage:
      
 * 
      
var myCheckboxGroup = new Ext.form.CheckboxGroup({
    id:'myGroup',
    xtype: 'checkboxgroup',
    fieldLabel: 'Single Column',
    itemCls: 'x-check-group-alt',
    // Put all controls in a single column with width 100%
    columns: 1,
    items: [
        {boxLabel: 'Item 1', name: 'cb-col-1'},
        {boxLabel: 'Item 2', name: 'cb-col-2', checked: true},
        {boxLabel: 'Item 3', name: 'cb-col-3'}
    ]
});
 * 
      
 * @constructor
 * Creates a new CheckboxGroup
 * @param {Object} config Configuration options
 * @xtype checkboxgroup
 */
Ext.form.CheckboxGroup = Ext.extend(Ext.form.Field, {
    /**
     * @cfg {Array} items An Array of {@link Ext.form.Checkbox Checkbox}es or Checkbox config objects
     * to arrange in the group.
     */
    /**
     * @cfg {String/Number/Array} columns Specifies the number of columns to use when displaying grouped
     * checkbox/radio controls using automatic layout.  This config can take several types of values:
     * 
      • 'auto' : 
        The controls will be rendered one per column on one row and the width
     * of each column will be evenly distributed based on the width of the overall field container. This is the default.
        • 
     * 
      • Number : 
        If you specific a number (e.g., 3) that number of columns will be
     * created and the contained controls will be automatically distributed based on the value of {@link #vertical}.
        • 
     * 
      • Array : Object
        You can also specify an array of column widths, mixing integer
     * (fixed width) and float (percentage width) values as needed (e.g., [100, .25, .75]). Any integer values will
     * be rendered first, then any float values will be calculated as a percentage of the remaining space. Float
     * values do not have to add up to 1 (100%) although if you want the controls to take up the entire field
     * container you should do so.
      
     */
    columns : 'auto',
    /**
     * @cfg {Boolean} vertical True to distribute contained controls across columns, completely filling each column
     * top to bottom before starting on the next column.  The number of controls in each column will be automatically
     * calculated to keep columns as even as possible.  The default value is false, so that controls will be added
     * to columns one at a time, completely filling each row left to right before starting on the next row.
     */
    vertical : false,
    /**
     * @cfg {Boolean} allowBlank False to validate that at least one item in the group is checked (defaults to true).
     * If no items are selected at validation time, {@link @blankText} will be used as the error text.
     */
    allowBlank : true,
    /**
     * @cfg {String} blankText Error text to display if the {@link #allowBlank} validation fails (defaults to "You must
     * select at least one item in this group")
     */
    blankText : "You must select at least one item in this group",

    // private
    defaultType : 'checkbox',

    // private
    groupCls : 'x-form-check-group',

    // private
    initComponent: function(){
        this.addEvents(
            /**
             * @event change
             * Fires when the state of a child checkbox changes.
             * @param {Ext.form.CheckboxGroup} this
             * @param {Array} checked An array containing the checked boxes.
             */
            'change'
        );
        this.on('change', this.validate, this);
        Ext.form.CheckboxGroup.superclass.initComponent.call(this);
    },

    // private
    onRender : function(ct, position){
        if(!this.el){
            var panelCfg = {
                autoEl: {
                    id: this.id
                },
                cls: this.groupCls,
                layout: 'column',
                renderTo: ct,
                bufferResize: false // Default this to false, since it doesn't really have a proper ownerCt.
            };
            var colCfg = {
                xtype: 'container',
                defaultType: this.defaultType,
                layout: 'form',
                defaults: {
                    hideLabel: true,
                    anchor: '100%'
                }
            };

            if(this.items[0].items){

                // The container has standard ColumnLayout configs, so pass them in directly

                Ext.apply(panelCfg, {
                    layoutConfig: {columns: this.items.length},
                    defaults: this.defaults,
                    items: this.items
                });
                for(var i=0, len=this.items.length; i0 && i%rows==0){
                            ri++;
                        }
                        if(this.items[i].fieldLabel){
                            this.items[i].hideLabel = false;
                        }
                        cols[ri].items.push(this.items[i]);
                    };
                }else{
                    for(var i=0, len=this.items.length; i
    * See {@link Ext.form.Checkbox#setValue} for additional information. * @param {Mixed} id The checkbox to check, or as described by example shown. * @param {Boolean} value (optional) The value to set the item. * @return {Ext.form.CheckboxGroup} this */ setValue: function(){ if(this.rendered){ this.onSetValue.apply(this, arguments); }else{ this.buffered = true; this.value = arguments; } return this; }, /** * @private * Sets the values of one or more of the items within the CheckboxGroup * @param {String|Array|Object} id Can take multiple forms. Can be optionally: *
      *
    • An ID string to be used with a second argument
      • *
    • An array of the form ['some', 'list', 'of', 'ids', 'to', 'mark', 'checked']
      • *
    • An array in the form [true, true, false, true, false] etc, where each item relates to the check status of * the checkbox at the same index
      • *
    • An object containing ids of the checkboxes as keys and check values as properties
      • *
    * @param {String} value The value to set the field to if the first argument was a string */ onSetValue: function(id, value){ if(arguments.length == 1){ if(Ext.isArray(id)){ Ext.each(id, function(val, idx){ if (Ext.isObject(val) && val.setValue){ // array of checkbox components to be checked val.setValue(true); if (this.resetOriginal === true) { val.originalValue = val.getValue(); } } else { // an array of boolean values var item = this.items.itemAt(idx); if(item){ item.setValue(val); } } }, this); }else if(Ext.isObject(id)){ // set of name/value pairs for(var i in id){ var f = this.getBox(i); if(f){ f.setValue(id[i]); } } }else{ this.setValueForItem(id); } }else{ var f = this.getBox(id); if(f){ f.setValue(value); } } }, // private beforeDestroy: function(){ Ext.destroy(this.panel); if (!this.rendered) { Ext.destroy(this.items); } Ext.form.CheckboxGroup.superclass.beforeDestroy.call(this); }, setValueForItem : function(val){ val = String(val).split(','); this.eachItem(function(item){ if(val.indexOf(item.inputValue)> -1){ item.setValue(true); } }); }, // private getBox : function(id){ var box = null; this.eachItem(function(f){ if(id == f || f.dataIndex == id || f.id == id || f.getName() == id){ box = f; return false; } }); return box; }, /** * Gets an array of the selected {@link Ext.form.Checkbox} in the group. * @return {Array} An array of the selected checkboxes. */ getValue : function(){ var out = []; this.eachItem(function(item){ if(item.checked){ out.push(item); } }); return out; }, /** * @private * Convenience function which passes the given function to every item in the composite * @param {Function} fn The function to call * @param {Object} scope Optional scope object */ eachItem: function(fn, scope) { if(this.items && this.items.each){ this.items.each(fn, scope || this); } }, /** * @cfg {String} name * @hide */ /** * @method getRawValue * @hide */ getRawValue : Ext.emptyFn, /** * @method setRawValue * @hide */ setRawValue : Ext.emptyFn }); Ext.reg('checkboxgroup', Ext.form.CheckboxGroup); /** * @class Ext.form.CompositeField * @extends Ext.form.Field * Composite field allowing a number of form Fields to be rendered on the same row. The fields are rendered * using an hbox layout internally, so all of the normal HBox layout config items are available. Example usage: * 
    {
    xtype: 'compositefield',
    labelWidth: 120
    items: [
        {
            xtype     : 'textfield',
            fieldLabel: 'Title',
            width     : 20
        },
        {
            xtype     : 'textfield',
            fieldLabel: 'First',
            flex      : 1
        },
        {
            xtype     : 'textfield',
            fieldLabel: 'Last',
            flex      : 1
        }
    ]
}
 *
    * In the example above the composite's fieldLabel will be set to 'Title, First, Last' as it groups the fieldLabels * of each of its children. This can be overridden by setting a fieldLabel on the compositefield itself: * 
    {
    xtype: 'compositefield',
    fieldLabel: 'Custom label',
    items: [...]
}
 *
    * Any Ext.form.* component can be placed inside a composite field. */ Ext.form.CompositeField = Ext.extend(Ext.form.Field, { /** * @property defaultMargins * @type String * The margins to apply by default to each field in the composite */ defaultMargins: '0 5 0 0', /** * @property skipLastItemMargin * @type Boolean * If true, the defaultMargins are not applied to the last item in the composite field set (defaults to true) */ skipLastItemMargin: true, /** * @property isComposite * @type Boolean * Signifies that this is a Composite field */ isComposite: true, /** * @property combineErrors * @type Boolean * True to combine errors from the individual fields into a single error message at the CompositeField level (defaults to true) */ combineErrors: true, /** * @cfg {String} labelConnector The string to use when joining segments of the built label together (defaults to ', ') */ labelConnector: ', ', /** * @cfg {Object} defaults Any default properties to assign to the child fields. */ //inherit docs //Builds the composite field label initComponent: function() { var labels = [], items = this.items, item; for (var i=0, j = items.length; i < j; i++) { item = items[i]; if (!Ext.isEmpty(item.ref)){ item.ref = '../' + item.ref; } labels.push(item.fieldLabel); //apply any defaults Ext.applyIf(item, this.defaults); //apply default margins to each item except the last if (!(i == j - 1 && this.skipLastItemMargin)) { Ext.applyIf(item, {margins: this.defaultMargins}); } } this.fieldLabel = this.fieldLabel || this.buildLabel(labels); /** * @property fieldErrors * @type Ext.util.MixedCollection * MixedCollection of current errors on the Composite's subfields. This is used internally to track when * to show and hide error messages at the Composite level. Listeners are attached to the MixedCollection's * add, remove and replace events to update the error icon in the UI as errors are added or removed. */ this.fieldErrors = new Ext.util.MixedCollection(true, function(item) { return item.field; }); this.fieldErrors.on({ scope : this, add : this.updateInvalidMark, remove : this.updateInvalidMark, replace: this.updateInvalidMark }); Ext.form.CompositeField.superclass.initComponent.apply(this, arguments); this.innerCt = new Ext.Container({ layout : 'hbox', items : this.items, cls : 'x-form-composite', defaultMargins: '0 3 0 0', ownerCt: this }); delete this.innerCt.ownerCt; var fields = this.innerCt.findBy(function(c) { return c.isFormField; }, this); /** * @property items * @type Ext.util.MixedCollection * Internal collection of all of the subfields in this Composite */ this.items = new Ext.util.MixedCollection(); this.items.addAll(fields); }, /** * @private * Creates an internal container using hbox and renders the fields to it */ onRender: function(ct, position) { if (!this.el) { /** * @property innerCt * @type Ext.Container * A container configured with hbox layout which is responsible for laying out the subfields */ var innerCt = this.innerCt; innerCt.render(ct); this.innerCt.ownerCt = this; this.el = innerCt.getEl(); //if we're combining subfield errors into a single message, override the markInvalid and clearInvalid //methods of each subfield and show them at the Composite level instead if (this.combineErrors) { this.eachItem(function(field) { Ext.apply(field, { markInvalid : this.onFieldMarkInvalid.createDelegate(this, [field], 0), clearInvalid: this.onFieldClearInvalid.createDelegate(this, [field], 0) }); }); } //set the label 'for' to the first item var l = this.el.parent().parent().child('label', true); if (l) { l.setAttribute('for', this.items.items[0].id); } } Ext.form.CompositeField.superclass.onRender.apply(this, arguments); }, /** * Called if combineErrors is true and a subfield's markInvalid method is called. * By default this just adds the subfield's error to the internal fieldErrors MixedCollection * @param {Ext.form.Field} field The field that was marked invalid * @param {String} message The error message */ onFieldMarkInvalid: function(field, message) { var name = field.getName(), error = { field: name, errorName: field.fieldLabel || name, error: message }; this.fieldErrors.replace(name, error); if (!field.preventMark) { field.el.addClass(field.invalidClass); } }, /** * Called if combineErrors is true and a subfield's clearInvalid method is called. * By default this just updates the internal fieldErrors MixedCollection. * @param {Ext.form.Field} field The field that was marked invalid */ onFieldClearInvalid: function(field) { this.fieldErrors.removeKey(field.getName()); field.el.removeClass(field.invalidClass); }, /** * @private * Called after a subfield is marked valid or invalid, this checks to see if any of the subfields are * currently invalid. If any subfields are invalid it builds a combined error message marks the composite * invalid, otherwise clearInvalid is called */ updateInvalidMark: function() { var ieStrict = Ext.isIE6 && Ext.isStrict; if (this.fieldErrors.length == 0) { this.clearInvalid(); //IE6 in strict mode has a layout bug when using 'under' as the error message target. This fixes it if (ieStrict) { this.clearInvalid.defer(50, this); } } else { var message = this.buildCombinedErrorMessage(this.fieldErrors.items); this.sortErrors(); this.markInvalid(message); //IE6 in strict mode has a layout bug when using 'under' as the error message target. This fixes it if (ieStrict) { this.markInvalid(message); } } }, /** * Performs validation checks on each subfield and returns false if any of them fail validation. * @return {Boolean} False if any subfield failed validation */ validateValue: function(value, preventMark) { var valid = true; this.eachItem(function(field) { if (!field.isValid(preventMark)) { valid = false; } }); return valid; }, /** * Takes an object containing error messages for contained fields, returning a combined error * string (defaults to just placing each item on a new line). This can be overridden to provide * custom combined error message handling. * @param {Array} errors Array of errors in format: [{field: 'title', error: 'some error'}] * @return {String} The combined error message */ buildCombinedErrorMessage: function(errors) { var combined = [], error; for (var i = 0, j = errors.length; i < j; i++) { error = errors[i]; combined.push(String.format("{0}: {1}", error.errorName, error.error)); } return combined.join("
    "); }, /** * Sorts the internal fieldErrors MixedCollection by the order in which the fields are defined. * This is called before displaying errors to ensure that the errors are presented in the expected order. * This function can be overridden to provide a custom sorting order if needed. */ sortErrors: function() { var fields = this.items; this.fieldErrors.sort("ASC", function(a, b) { var findByName = function(key) { return function(field) { return field.getName() == key; }; }; var aIndex = fields.findIndexBy(findByName(a.field)), bIndex = fields.findIndexBy(findByName(b.field)); return aIndex < bIndex ? -1 : 1; }); }, /** * Resets each field in the composite to their previous value */ reset: function() { this.eachItem(function(item) { item.reset(); }); // Defer the clearInvalid so if BaseForm's collection is being iterated it will be called AFTER it is complete. // Important because reset is being called on both the group and the individual items. (function() { this.clearInvalid(); }).defer(50, this); }, /** * Calls clearInvalid on all child fields. This is a convenience function and should not often need to be called * as fields usually take care of clearing themselves */ clearInvalidChildren: function() { this.eachItem(function(item) { item.clearInvalid(); }); }, /** * Builds a label string from an array of subfield labels. * By default this just joins the labels together with a comma * @param {Array} segments Array of each of the labels in the composite field's subfields * @return {String} The built label */ buildLabel: function(segments) { return Ext.clean(segments).join(this.labelConnector); }, /** * Checks each field in the composite and returns true if any is dirty * @return {Boolean} True if any field is dirty */ isDirty: function(){ //override the behaviour to check sub items. if (this.disabled || !this.rendered) { return false; } var dirty = false; this.eachItem(function(item){ if(item.isDirty()){ dirty = true; return false; } }); return dirty; }, /** * @private * Convenience function which passes the given function to every item in the composite * @param {Function} fn The function to call * @param {Object} scope Optional scope object */ eachItem: function(fn, scope) { if(this.items && this.items.each){ this.items.each(fn, scope || this); } }, /** * @private * Passes the resize call through to the inner panel */ onResize: function(adjWidth, adjHeight, rawWidth, rawHeight) { var innerCt = this.innerCt; if (this.rendered && innerCt.rendered) { innerCt.setSize(adjWidth, adjHeight); } Ext.form.CompositeField.superclass.onResize.apply(this, arguments); }, /** * @private * Forces the internal container to be laid out again */ doLayout: function(shallow, force) { if (this.rendered) { var innerCt = this.innerCt; innerCt.forceLayout = this.ownerCt.forceLayout; innerCt.doLayout(shallow, force); } }, /** * @private */ beforeDestroy: function(){ Ext.destroy(this.innerCt); Ext.form.CompositeField.superclass.beforeDestroy.call(this); }, //override the behaviour to check sub items. setReadOnly : function(readOnly) { if (readOnly == undefined) { readOnly = true; } readOnly = !!readOnly; if(this.rendered){ this.eachItem(function(item){ item.setReadOnly(readOnly); }); } this.readOnly = readOnly; }, onShow : function() { Ext.form.CompositeField.superclass.onShow.call(this); this.doLayout(); }, //override the behaviour to check sub items. onDisable : function(){ this.eachItem(function(item){ item.disable(); }); }, //override the behaviour to check sub items. onEnable : function(){ this.eachItem(function(item){ item.enable(); }); } }); Ext.reg('compositefield', Ext.form.CompositeField);/** * @class Ext.form.Radio * @extends Ext.form.Checkbox * Single radio field. Same as Checkbox, but provided as a convenience for automatically setting the input type. * Radio grouping is handled automatically by the browser if you give each radio in a group the same name. * @constructor * Creates a new Radio * @param {Object} config Configuration options * @xtype radio */ Ext.form.Radio = Ext.extend(Ext.form.Checkbox, { inputType: 'radio', /** * Overridden and disabled. The editor element does not support standard valid/invalid marking. @hide * @method */ markInvalid : Ext.emptyFn, /** * Overridden and disabled. The editor element does not support standard valid/invalid marking. @hide * @method */ clearInvalid : Ext.emptyFn, /** * If this radio is part of a group, it will return the selected value * @return {String} */ getGroupValue : function(){ var p = this.el.up('form') || Ext.getBody(); var c = p.child('input[name="'+this.el.dom.name+'"]:checked', true); return c ? c.value : null; }, /** * Sets either the checked/unchecked status of this Radio, or, if a string value * is passed, checks a sibling Radio of the same name whose value is the value specified. * @param value {String/Boolean} Checked value, or the value of the sibling radio button to check. * @return {Ext.form.Field} this */ setValue : function(v){ var checkEl, els, radio; if (typeof v == 'boolean') { Ext.form.Radio.superclass.setValue.call(this, v); } else if (this.rendered) { checkEl = this.getCheckEl(); radio = checkEl.child('input[name="' + this.el.dom.name + '"][value="' + v + '"]', true); if(radio){ Ext.getCmp(radio.id).setValue(true); } } if(this.rendered && this.checked){ checkEl = checkEl || this.getCheckEl(); els = this.getCheckEl().select('input[name="' + this.el.dom.name + '"]'); els.each(function(el){ if(el.dom.id != this.id){ Ext.getCmp(el.dom.id).setValue(false); } }, this); } return this; }, // private getCheckEl: function(){ if(this.inGroup){ return this.el.up('.x-form-radio-group'); } return this.el.up('form') || Ext.getBody(); } }); Ext.reg('radio', Ext.form.Radio); /** * @class Ext.form.RadioGroup * @extends Ext.form.CheckboxGroup * A grouping container for {@link Ext.form.Radio} controls. * @constructor * Creates a new RadioGroup * @param {Object} config Configuration options * @xtype radiogroup */ Ext.form.RadioGroup = Ext.extend(Ext.form.CheckboxGroup, { /** * @cfg {Array} items An Array of {@link Ext.form.Radio Radio}s or Radio config objects * to arrange in the group. */ /** * @cfg {Boolean} allowBlank True to allow every item in the group to be blank (defaults to true). * If allowBlank = false and no items are selected at validation time, {@link @blankText} will * be used as the error text. */ allowBlank : true, /** * @cfg {String} blankText Error text to display if the {@link #allowBlank} validation fails * (defaults to 'You must select one item in this group') */ blankText : 'You must select one item in this group', // private defaultType : 'radio', // private groupCls : 'x-form-radio-group', /** * @event change * Fires when the state of a child radio changes. * @param {Ext.form.RadioGroup} this * @param {Ext.form.Radio} checked The checked radio */ /** * Gets the selected {@link Ext.form.Radio} in the group, if it exists. * @return {Ext.form.Radio} The selected radio. */ getValue : function(){ var out = null; this.eachItem(function(item){ if(item.checked){ out = item; return false; } }); return out; }, /** * Sets the checked radio in the group. * @param {String/Ext.form.Radio} id The radio to check. * @param {Boolean} value The value to set the radio. * @return {Ext.form.RadioGroup} this */ onSetValue : function(id, value){ if(arguments.length > 1){ var f = this.getBox(id); if(f){ f.setValue(value); if(f.checked){ this.eachItem(function(item){ if (item !== f){ item.setValue(false); } }); } } }else{ this.setValueForItem(id); } }, setValueForItem : function(val){ val = String(val).split(',')[0]; this.eachItem(function(item){ item.setValue(val == item.inputValue); }); }, // private fireChecked : function(){ if(!this.checkTask){ this.checkTask = new Ext.util.DelayedTask(this.bufferChecked, this); } this.checkTask.delay(10); }, // private bufferChecked : function(){ var out = null; this.eachItem(function(item){ if(item.checked){ out = item; return false; } }); this.fireEvent('change', this, out); }, onDestroy : function(){ if(this.checkTask){ this.checkTask.cancel(); this.checkTask = null; } Ext.form.RadioGroup.superclass.onDestroy.call(this); } }); Ext.reg('radiogroup', Ext.form.RadioGroup); /** * @class Ext.form.Hidden * @extends Ext.form.Field * A basic hidden field for storing hidden values in forms that need to be passed in the form submit. * @constructor * Create a new Hidden field. * @param {Object} config Configuration options * @xtype hidden */ Ext.form.Hidden = Ext.extend(Ext.form.Field, { // private inputType : 'hidden', shouldLayout: false, // private onRender : function(){ Ext.form.Hidden.superclass.onRender.apply(this, arguments); }, // private initEvents : function(){ this.originalValue = this.getValue(); }, // These are all private overrides setSize : Ext.emptyFn, setWidth : Ext.emptyFn, setHeight : Ext.emptyFn, setPosition : Ext.emptyFn, setPagePosition : Ext.emptyFn, markInvalid : Ext.emptyFn, clearInvalid : Ext.emptyFn }); Ext.reg('hidden', Ext.form.Hidden);/** * @class Ext.form.BasicForm * @extends Ext.util.Observable *

    Encapsulates the DOM <form> element at the heart of the {@link Ext.form.FormPanel FormPanel} class, and provides * input field management, validation, submission, and form loading services.

    *

    By default, Ext Forms are submitted through Ajax, using an instance of {@link Ext.form.Action.Submit}. * To enable normal browser submission of an Ext Form, use the {@link #standardSubmit} config option.

    *

    File Uploads

    *

    {@link #fileUpload File uploads} are not performed using Ajax submission, that * is they are not performed using XMLHttpRequests. Instead the form is submitted in the standard * manner with the DOM <form> element temporarily modified to have its * target set to refer * to a dynamically generated, hidden <iframe> which is inserted into the document * but removed after the return data has been gathered.

    *

    The server response is parsed by the browser to create the document for the IFRAME. If the * server is using JSON to send the return object, then the * Content-Type header * must be set to "text/html" in order to tell the browser to insert the text unchanged into the document body.

    *

    Characters which are significant to an HTML parser must be sent as HTML entities, so encode * "<" as "&lt;", "&" as "&amp;" etc.

    *

    The response text is retrieved from the document, and a fake XMLHttpRequest object * is created containing a responseText property in order to conform to the * requirements of event handlers and callbacks.

    *

    Be aware that file upload packets are sent with the content type multipart/form * and some server technologies (notably JEE) may require some custom processing in order to * retrieve parameter names and parameter values from the packet content.

    * @constructor * @param {Mixed} el The form element or its id * @param {Object} config Configuration options */ Ext.form.BasicForm = Ext.extend(Ext.util.Observable, { constructor: function(el, config){ Ext.apply(this, config); if(Ext.isString(this.paramOrder)){ this.paramOrder = this.paramOrder.split(/[\s,|]/); } /** * A {@link Ext.util.MixedCollection MixedCollection} containing all the Ext.form.Fields in this form. * @type MixedCollection * @property items */ this.items = new Ext.util.MixedCollection(false, function(o){ return o.getItemId(); }); this.addEvents( /** * @event beforeaction * Fires before any action is performed. Return false to cancel the action. * @param {Form} this * @param {Action} action The {@link Ext.form.Action} to be performed */ 'beforeaction', /** * @event actionfailed * Fires when an action fails. * @param {Form} this * @param {Action} action The {@link Ext.form.Action} that failed */ 'actionfailed', /** * @event actioncomplete * Fires when an action is completed. * @param {Form} this * @param {Action} action The {@link Ext.form.Action} that completed */ 'actioncomplete' ); if(el){ this.initEl(el); } Ext.form.BasicForm.superclass.constructor.call(this); }, /** * @cfg {String} method * The request method to use (GET or POST) for form actions if one isn't supplied in the action options. */ /** * @cfg {DataReader} reader * An Ext.data.DataReader (e.g. {@link Ext.data.XmlReader}) to be used to read * data when executing 'load' actions. This is optional as there is built-in * support for processing JSON. For additional information on using an XMLReader * see the example provided in examples/form/xml-form.html. */ /** * @cfg {DataReader} errorReader *

    An Ext.data.DataReader (e.g. {@link Ext.data.XmlReader}) to be used to * read field error messages returned from 'submit' actions. This is optional * as there is built-in support for processing JSON.

    *

    The Records which provide messages for the invalid Fields must use the * Field name (or id) as the Record ID, and must contain a field called 'msg' * which contains the error message.

    *

    The errorReader does not have to be a full-blown implementation of a * DataReader. It simply needs to implement a read(xhr) function * which returns an Array of Records in an object with the following * structure:

    
{
    records: recordArray
}
    */ /** * @cfg {String} url * The URL to use for form actions if one isn't supplied in the * {@link #doAction doAction} options. */ /** * @cfg {Boolean} fileUpload * Set to true if this form is a file upload. *

    File uploads are not performed using normal 'Ajax' techniques, that is they are not * performed using XMLHttpRequests. Instead the form is submitted in the standard manner with the * DOM <form> element temporarily modified to have its * target set to refer * to a dynamically generated, hidden <iframe> which is inserted into the document * but removed after the return data has been gathered.

    *

    The server response is parsed by the browser to create the document for the IFRAME. If the * server is using JSON to send the return object, then the * Content-Type header * must be set to "text/html" in order to tell the browser to insert the text unchanged into the document body.

    *

    Characters which are significant to an HTML parser must be sent as HTML entities, so encode * "<" as "&lt;", "&" as "&amp;" etc.

    *

    The response text is retrieved from the document, and a fake XMLHttpRequest object * is created containing a responseText property in order to conform to the * requirements of event handlers and callbacks.

    *

    Be aware that file upload packets are sent with the content type multipart/form * and some server technologies (notably JEE) may require some custom processing in order to * retrieve parameter names and parameter values from the packet content.

    */ /** * @cfg {Object} baseParams *

    Parameters to pass with all requests. e.g. baseParams: {id: '123', foo: 'bar'}.

    *

    Parameters are encoded as standard HTTP parameters using {@link Ext#urlEncode}.

    */ /** * @cfg {Number} timeout Timeout for form actions in seconds (default is 30 seconds). */ timeout: 30, /** * @cfg {Object} api (Optional) If specified load and submit actions will be handled * with {@link Ext.form.Action.DirectLoad} and {@link Ext.form.Action.DirectSubmit}. * Methods which have been imported by Ext.Direct can be specified here to load and submit * forms. * Such as the following:
    
api: {
    load: App.ss.MyProfile.load,
    submit: App.ss.MyProfile.submit
}
    *

    Load actions can use {@link #paramOrder} or {@link #paramsAsHash} * to customize how the load method is invoked. * Submit actions will always use a standard form submit. The formHandler configuration must * be set on the associated server-side method which has been imported by Ext.Direct

    */ /** * @cfg {Array/String} paramOrder

    A list of params to be executed server side. * Defaults to undefined. Only used for the {@link #api} * load configuration.

    *

    Specify the params in the order in which they must be executed on the * server-side as either (1) an Array of String values, or (2) a String of params * delimited by either whitespace, comma, or pipe. For example, * any of the following would be acceptable:

    
paramOrder: ['param1','param2','param3']
paramOrder: 'param1 param2 param3'
paramOrder: 'param1,param2,param3'
paramOrder: 'param1|param2|param'
    */ paramOrder: undefined, /** * @cfg {Boolean} paramsAsHash Only used for the {@link #api} * load configuration. Send parameters as a collection of named * arguments (defaults to false). Providing a * {@link #paramOrder} nullifies this configuration. */ paramsAsHash: false, /** * @cfg {String} waitTitle * The default title to show for the waiting message box (defaults to 'Please Wait...') */ waitTitle: 'Please Wait...', // private activeAction : null, /** * @cfg {Boolean} trackResetOnLoad If set to true, {@link #reset}() resets to the last loaded * or {@link #setValues}() data instead of when the form was first created. Defaults to false. */ trackResetOnLoad : false, /** * @cfg {Boolean} standardSubmit *

    If set to true, standard HTML form submits are used instead * of XHR (Ajax) style form submissions. Defaults to false.

    *

    Note: When using standardSubmit, the * options to {@link #submit} are ignored because * Ext's Ajax infrastracture is bypassed. To pass extra parameters (e.g. * baseParams and params), utilize hidden fields * to submit extra data, for example:

    * 
    
new Ext.FormPanel({
    standardSubmit: true,
    baseParams: {
        foo: 'bar'
    },
    {@link url}: 'myProcess.php',
    items: [{
        xtype: 'textfield',
        name: 'userName'
    }],
    buttons: [{
        text: 'Save',
        handler: function(){
            var fp = this.ownerCt.ownerCt,
                form = fp.getForm();
            if (form.isValid()) {
                // check if there are baseParams and if
                // hiddent items have been added already
                if (fp.baseParams && !fp.paramsAdded) {
                    // add hidden items for all baseParams
                    for (i in fp.baseParams) {
                        fp.add({
                            xtype: 'hidden',
                            name: i,
                            value: fp.baseParams[i]
                        });
                    }
                    fp.doLayout();
                    // set a custom flag to prevent re-adding
                    fp.paramsAdded = true;
                }
                form.{@link #submit}();
            }
        }
    }]
});
     *
    */ /** * By default wait messages are displayed with Ext.MessageBox.wait. You can target a specific * element by passing it or its id or mask the form itself by passing in true. * @type Mixed * @property waitMsgTarget */ // private initEl : function(el){ this.el = Ext.get(el); this.id = this.el.id || Ext.id(); if(!this.standardSubmit){ this.el.on('submit', this.onSubmit, this); } this.el.addClass('x-form'); }, /** * Get the HTML form Element * @return Ext.Element */ getEl: function(){ return this.el; }, // private onSubmit : function(e){ e.stopEvent(); }, /** * Destroys this object. * @private * @param {Boolean} bound true if the object is bound to a form panel. If this is the case * the FormPanel will take care of destroying certain things, so we're just doubling up. */ destroy: function(bound){ if(bound !== true){ this.items.each(function(f){ Ext.destroy(f); }); Ext.destroy(this.el); } this.items.clear(); this.purgeListeners(); }, /** * Returns true if client-side validation on the form is successful. * @return Boolean */ isValid : function(){ var valid = true; this.items.each(function(f){ if(!f.validate()){ valid = false; } }); return valid; }, /** *

    Returns true if any fields in this form have changed from their original values.

    *

    Note that if this BasicForm was configured with {@link #trackResetOnLoad} then the * Fields' original values are updated when the values are loaded by {@link #setValues} * or {@link #loadRecord}.

    * @return Boolean */ isDirty : function(){ var dirty = false; this.items.each(function(f){ if(f.isDirty()){ dirty = true; return false; } }); return dirty; }, /** * Performs a predefined action ({@link Ext.form.Action.Submit} or * {@link Ext.form.Action.Load}) or a custom extension of {@link Ext.form.Action} * to perform application-specific processing. * @param {String/Object} actionName The name of the predefined action type, * or instance of {@link Ext.form.Action} to perform. * @param {Object} options (optional) The options to pass to the {@link Ext.form.Action}. * All of the config options listed below are supported by both the * {@link Ext.form.Action.Submit submit} and {@link Ext.form.Action.Load load} * actions unless otherwise noted (custom actions could also accept * other config options):
      * *
    • url : String
      The url for the action (defaults * to the form's {@link #url}.)
      • * *
    • method : String
      The form method to use (defaults * to the form's method, or POST if not defined)
      • * *
    • params : String/Object

      The params to pass * (defaults to the form's baseParams, or none if not defined)

      *

      Parameters are encoded as standard HTTP parameters using {@link Ext#urlEncode}.

      • * *
    • headers : Object
      Request headers to set for the action * (defaults to the form's default headers)
      • * *
    • success : Function
      The callback that will * be invoked after a successful response (see top of * {@link Ext.form.Action.Submit submit} and {@link Ext.form.Action.Load load} * for a description of what constitutes a successful response). * The function is passed the following parameters:
        *
      • form : Ext.form.BasicForm
        The form that requested the action
        • *
      • action : The {@link Ext.form.Action Action} object which performed the operation. *
        The action object contains these properties of interest:
          *
        • {@link Ext.form.Action#response response}
          • *
        • {@link Ext.form.Action#result result} : interrogate for custom postprocessing
          • *
        • {@link Ext.form.Action#type type}
          • *
      • * *
    • failure : Function
      The callback that will be invoked after a * failed transaction attempt. The function is passed the following parameters:
        *
      • form : The {@link Ext.form.BasicForm} that requested the action.
        • *
      • action : The {@link Ext.form.Action Action} object which performed the operation. *
        The action object contains these properties of interest:
          *
        • {@link Ext.form.Action#failureType failureType}
          • *
        • {@link Ext.form.Action#response response}
          • *
        • {@link Ext.form.Action#result result} : interrogate for custom postprocessing
          • *
        • {@link Ext.form.Action#type type}
          • *
      • * *
    • scope : Object
      The scope in which to call the * callback functions (The this reference for the callback functions).
      • * *
    • clientValidation : Boolean
      Submit Action only. * Determines whether a Form's fields are validated in a final call to * {@link Ext.form.BasicForm#isValid isValid} prior to submission. Set to false * to prevent this. If undefined, pre-submission field validation is performed.
    * * @return {BasicForm} this */ doAction : function(action, options){ if(Ext.isString(action)){ action = new Ext.form.Action.ACTION_TYPES[action](this, options); } if(this.fireEvent('beforeaction', this, action) !== false){ this.beforeAction(action); action.run.defer(100, action); } return this; }, /** * Shortcut to {@link #doAction do} a {@link Ext.form.Action.Submit submit action}. * @param {Object} options The options to pass to the action (see {@link #doAction} for details).
    *

    Note: this is ignored when using the {@link #standardSubmit} option.

    *

    The following code:

    
myFormPanel.getForm().submit({
    clientValidation: true,
    url: 'updateConsignment.php',
    params: {
        newStatus: 'delivered'
    },
    success: function(form, action) {
       Ext.Msg.alert('Success', action.result.msg);
    },
    failure: function(form, action) {
        switch (action.failureType) {
            case Ext.form.Action.CLIENT_INVALID:
                Ext.Msg.alert('Failure', 'Form fields may not be submitted with invalid values');
                break;
            case Ext.form.Action.CONNECT_FAILURE:
                Ext.Msg.alert('Failure', 'Ajax communication failed');
                break;
            case Ext.form.Action.SERVER_INVALID:
               Ext.Msg.alert('Failure', action.result.msg);
       }
    }
});
    * would process the following server response for a successful submission:
    
{
    "success":true, // note this is Boolean, not string
    "msg":"Consignment updated"
}
    * and the following server response for a failed submission:
    
{
    "success":false, // note this is Boolean, not string
    "msg":"You do not have permission to perform this operation"
}
    * @return {BasicForm} this */ submit : function(options){ options = options || {}; if(this.standardSubmit){ var v = options.clientValidation === false || this.isValid(); if(v){ var el = this.el.dom; if(this.url && Ext.isEmpty(el.action)){ el.action = this.url; } el.submit(); } return v; } var submitAction = String.format('{0}submit', this.api ? 'direct' : ''); this.doAction(submitAction, options); return this; }, /** * Shortcut to {@link #doAction do} a {@link Ext.form.Action.Load load action}. * @param {Object} options The options to pass to the action (see {@link #doAction} for details) * @return {BasicForm} this */ load : function(options){ var loadAction = String.format('{0}load', this.api ? 'direct' : ''); this.doAction(loadAction, options); return this; }, /** * Persists the values in this form into the passed {@link Ext.data.Record} object in a beginEdit/endEdit block. * @param {Record} record The record to edit * @return {BasicForm} this */ updateRecord : function(record){ record.beginEdit(); var fs = record.fields, field, value; fs.each(function(f){ field = this.findField(f.name); if(field){ value = field.getValue(); if (Ext.type(value) !== false && value.getGroupValue) { value = value.getGroupValue(); } else if ( field.eachItem ) { value = []; field.eachItem(function(item){ value.push(item.getValue()); }); } record.set(f.name, value); } }, this); record.endEdit(); return this; }, /** * Loads an {@link Ext.data.Record} into this form by calling {@link #setValues} with the * {@link Ext.data.Record#data record data}. * See also {@link #trackResetOnLoad}. * @param {Record} record The record to load * @return {BasicForm} this */ loadRecord : function(record){ this.setValues(record.data); return this; }, // private beforeAction : function(action){ // Call HtmlEditor's syncValue before actions this.items.each(function(f){ if(f.isFormField && f.syncValue){ f.syncValue(); } }); var o = action.options; if(o.waitMsg){ if(this.waitMsgTarget === true){ this.el.mask(o.waitMsg, 'x-mask-loading'); }else if(this.waitMsgTarget){ this.waitMsgTarget = Ext.get(this.waitMsgTarget); this.waitMsgTarget.mask(o.waitMsg, 'x-mask-loading'); }else{ Ext.MessageBox.wait(o.waitMsg, o.waitTitle || this.waitTitle); } } }, // private afterAction : function(action, success){ this.activeAction = null; var o = action.options; if(o.waitMsg){ if(this.waitMsgTarget === true){ this.el.unmask(); }else if(this.waitMsgTarget){ this.waitMsgTarget.unmask(); }else{ Ext.MessageBox.updateProgress(1); Ext.MessageBox.hide(); } } if(success){ if(o.reset){ this.reset(); } Ext.callback(o.success, o.scope, [this, action]); this.fireEvent('actioncomplete', this, action); }else{ Ext.callback(o.failure, o.scope, [this, action]); this.fireEvent('actionfailed', this, action); } }, /** * Find a {@link Ext.form.Field} in this form. * @param {String} id The value to search for (specify either a {@link Ext.Component#id id}, * {@link Ext.grid.Column#dataIndex dataIndex}, {@link Ext.form.Field#getName name or hiddenName}). * @return Field */ findField : function(id) { var field = this.items.get(id); if (!Ext.isObject(field)) { //searches for the field corresponding to the given id. Used recursively for composite fields var findMatchingField = function(f) { if (f.isFormField) { if (f.dataIndex == id || f.id == id || f.getName() == id) { field = f; return false; } else if (f.isComposite) { return f.items.each(findMatchingField); } else if (f instanceof Ext.form.CheckboxGroup && f.rendered) { return f.eachItem(findMatchingField); } } }; this.items.each(findMatchingField); } return field || null; }, /** * Mark fields in this form invalid in bulk. * @param {Array/Object} errors Either an array in the form [{id:'fieldId', msg:'The message'},...] or an object hash of {id: msg, id2: msg2} * @return {BasicForm} this */ markInvalid : function(errors){ if (Ext.isArray(errors)) { for(var i = 0, len = errors.length; i < len; i++){ var fieldError = errors[i]; var f = this.findField(fieldError.id); if(f){ f.markInvalid(fieldError.msg); } } } else { var field, id; for(id in errors){ if(!Ext.isFunction(errors[id]) && (field = this.findField(id))){ field.markInvalid(errors[id]); } } } return this; }, /** * Set values for fields in this form in bulk. * @param {Array/Object} values Either an array in the form:
    
[{id:'clientName', value:'Fred. Olsen Lines'},
 {id:'portOfLoading', value:'FXT'},
 {id:'portOfDischarge', value:'OSL'} ]
    * or an object hash of the form:
    
{
    clientName: 'Fred. Olsen Lines',
    portOfLoading: 'FXT',
    portOfDischarge: 'OSL'
}
    * @return {BasicForm} this */ setValues : function(values){ if(Ext.isArray(values)){ // array of objects for(var i = 0, len = values.length; i < len; i++){ var v = values[i]; var f = this.findField(v.id); if(f){ f.setValue(v.value); if(this.trackResetOnLoad){ f.originalValue = f.getValue(); } } } }else{ // object hash var field, id; for(id in values){ if(!Ext.isFunction(values[id]) && (field = this.findField(id))){ field.setValue(values[id]); if(this.trackResetOnLoad){ field.originalValue = field.getValue(); } } } } return this; }, /** *

    Returns the fields in this form as an object with key/value pairs as they would be submitted using a standard form submit. * If multiple fields exist with the same name they are returned as an array.

    *

    Note: The values are collected from all enabled HTML input elements within the form, not from * the Ext Field objects. This means that all returned values are Strings (or Arrays of Strings) and that the * value can potentially be the emptyText of a field.

    * @param {Boolean} asString (optional) Pass true to return the values as a string. (defaults to false, returning an Object) * @return {String/Object} */ getValues : function(asString){ var fs = Ext.lib.Ajax.serializeForm(this.el.dom); if(asString === true){ return fs; } return Ext.urlDecode(fs); }, /** * Retrieves the fields in the form as a set of key/value pairs, using the {@link Ext.form.Field#getValue getValue()} method. * If multiple fields exist with the same name they are returned as an array. * @param {Boolean} dirtyOnly (optional) True to return only fields that are dirty. * @return {Object} The values in the form */ getFieldValues : function(dirtyOnly){ var o = {}, n, key, val; this.items.each(function(f) { if (!f.disabled && (dirtyOnly !== true || f.isDirty())) { n = f.getName(); key = o[n]; val = f.getValue(); if(Ext.isDefined(key)){ if(Ext.isArray(key)){ o[n].push(val); }else{ o[n] = [key, val]; } }else{ o[n] = val; } } }); return o; }, /** * Clears all invalid messages in this form. * @return {BasicForm} this */ clearInvalid : function(){ this.items.each(function(f){ f.clearInvalid(); }); return this; }, /** * Resets this form. * @return {BasicForm} this */ reset : function(){ this.items.each(function(f){ f.reset(); }); return this; }, /** * Add Ext.form Components to this form's Collection. This does not result in rendering of * the passed Component, it just enables the form to validate Fields, and distribute values to * Fields. *

    You will not usually call this function. In order to be rendered, a Field must be added * to a {@link Ext.Container Container}, usually an {@link Ext.form.FormPanel FormPanel}. * The FormPanel to which the field is added takes care of adding the Field to the BasicForm's * collection.

    * @param {Field} field1 * @param {Field} field2 (optional) * @param {Field} etc (optional) * @return {BasicForm} this */ add : function(){ this.items.addAll(Array.prototype.slice.call(arguments, 0)); return this; }, /** * Removes a field from the items collection (does NOT remove its markup). * @param {Field} field * @return {BasicForm} this */ remove : function(field){ this.items.remove(field); return this; }, /** * Removes all fields from the collection that have been destroyed. */ cleanDestroyed : function() { this.items.filterBy(function(o) { return !!o.isDestroyed; }).each(this.remove, this); }, /** * Iterates through the {@link Ext.form.Field Field}s which have been {@link #add add}ed to this BasicForm, * checks them for an id attribute, and calls {@link Ext.form.Field#applyToMarkup} on the existing dom element with that id. * @return {BasicForm} this */ render : function(){ this.items.each(function(f){ if(f.isFormField && !f.rendered && document.getElementById(f.id)){ // if the element exists f.applyToMarkup(f.id); } }); return this; }, /** * Calls {@link Ext#apply} for all fields in this form with the passed object. * @param {Object} values * @return {BasicForm} this */ applyToFields : function(o){ this.items.each(function(f){ Ext.apply(f, o); }); return this; }, /** * Calls {@link Ext#applyIf} for all field in this form with the passed object. * @param {Object} values * @return {BasicForm} this */ applyIfToFields : function(o){ this.items.each(function(f){ Ext.applyIf(f, o); }); return this; }, callFieldMethod : function(fnName, args){ args = args || []; this.items.each(function(f){ if(Ext.isFunction(f[fnName])){ f[fnName].apply(f, args); } }); return this; } }); // back compat Ext.BasicForm = Ext.form.BasicForm; /** * @class Ext.form.FormPanel * @extends Ext.Panel *

    Standard form container.

    * *

    Layout

    *

    By default, FormPanel is configured with layout:'form' to use an {@link Ext.layout.FormLayout} * layout manager, which styles and renders fields and labels correctly. When nesting additional Containers * within a FormPanel, you should ensure that any descendant Containers which host input Fields use the * {@link Ext.layout.FormLayout} layout manager.

    * *

    BasicForm

    *

    Although not listed as configuration options of FormPanel, the FormPanel class accepts all * of the config options required to configure its internal {@link Ext.form.BasicForm} for: *

      *
    • {@link Ext.form.BasicForm#fileUpload file uploads}
      • *
    • functionality for {@link Ext.form.BasicForm#doAction loading, validating and submitting} the form
      • *
    * *

    Note: If subclassing FormPanel, any configuration options for the BasicForm must be applied to * the initialConfig property of the FormPanel. Applying {@link Ext.form.BasicForm BasicForm} * configuration settings to this will not affect the BasicForm's configuration.

    * *

    Form Validation

    *

    For information on form validation see the following:

    *
      *
    • {@link Ext.form.TextField}
      • *
    • {@link Ext.form.VTypes}
      • *
    • {@link Ext.form.BasicForm#doAction BasicForm.doAction clientValidation notes}
      • *
    • {@link Ext.form.FormPanel#monitorValid monitorValid}
      • *
    * *

    Form Submission

    *

    By default, Ext Forms are submitted through Ajax, using {@link Ext.form.Action}. To enable normal browser * submission of the {@link Ext.form.BasicForm BasicForm} contained in this FormPanel, see the * {@link Ext.form.BasicForm#standardSubmit standardSubmit} option.

    * * @constructor * @param {Object} config Configuration options * @xtype form */ Ext.FormPanel = Ext.extend(Ext.Panel, { /** * @cfg {String} formId (optional) The id of the FORM tag (defaults to an auto-generated id). */ /** * @cfg {Boolean} hideLabels *

    true to hide field labels by default (sets display:none). Defaults to * false.

    *

    Also see {@link Ext.Component}.{@link Ext.Component#hideLabel hideLabel}. */ /** * @cfg {Number} labelPad * The default padding in pixels for field labels (defaults to 5). labelPad only * applies if {@link #labelWidth} is also specified, otherwise it will be ignored. */ /** * @cfg {String} labelSeparator * See {@link Ext.Component}.{@link Ext.Component#labelSeparator labelSeparator} */ /** * @cfg {Number} labelWidth The width of labels in pixels. This property cascades to child containers * and can be overridden on any child container (e.g., a fieldset can specify a different labelWidth * for its fields) (defaults to 100). */ /** * @cfg {String} itemCls A css class to apply to the x-form-item of fields. This property cascades to child containers. */ /** * @cfg {Array} buttons * An array of {@link Ext.Button}s or {@link Ext.Button} configs used to add buttons to the footer of this FormPanel.
    *

    Buttons in the footer of a FormPanel may be configured with the option formBind: true. This causes * the form's {@link #monitorValid valid state monitor task} to enable/disable those Buttons depending on * the form's valid/invalid state.

    */ /** * @cfg {Number} minButtonWidth Minimum width of all buttons in pixels (defaults to 75). */ minButtonWidth : 75, /** * @cfg {String} labelAlign The label alignment value used for the text-align specification * for the container. Valid values are "left", "top" or "right" * (defaults to "left"). This property cascades to child containers and can be * overridden on any child container (e.g., a fieldset can specify a different labelAlign * for its fields). */ labelAlign : 'left', /** * @cfg {Boolean} monitorValid If true, the form monitors its valid state client-side and * regularly fires the {@link #clientvalidation} event passing that state.
    *

    When monitoring valid state, the FormPanel enables/disables any of its configured * {@link #buttons} which have been configured with formBind: true depending * on whether the {@link Ext.form.BasicForm#isValid form is valid} or not. Defaults to false

    */ monitorValid : false, /** * @cfg {Number} monitorPoll The milliseconds to poll valid state, ignored if monitorValid is not true (defaults to 200) */ monitorPoll : 200, /** * @cfg {String} layout Defaults to 'form'. Normally this configuration property should not be altered. * For additional details see {@link Ext.layout.FormLayout} and {@link Ext.Container#layout Ext.Container.layout}. */ layout : 'form', // private initComponent : function(){ this.form = this.createForm(); Ext.FormPanel.superclass.initComponent.call(this); this.bodyCfg = { tag: 'form', cls: this.baseCls + '-body', method : this.method || 'POST', id : this.formId || Ext.id() }; if(this.fileUpload) { this.bodyCfg.enctype = 'multipart/form-data'; } this.initItems(); this.addEvents( /** * @event clientvalidation * If the monitorValid config option is true, this event fires repetitively to notify of valid state * @param {Ext.form.FormPanel} this * @param {Boolean} valid true if the form has passed client-side validation */ 'clientvalidation' ); this.relayEvents(this.form, ['beforeaction', 'actionfailed', 'actioncomplete']); }, // private createForm : function(){ var config = Ext.applyIf({listeners: {}}, this.initialConfig); return new Ext.form.BasicForm(null, config); }, // private initFields : function(){ var f = this.form; var formPanel = this; var fn = function(c){ if(formPanel.isField(c)){ f.add(c); }else if(c.findBy && c != formPanel){ formPanel.applySettings(c); //each check required for check/radio groups. if(c.items && c.items.each){ c.items.each(fn, this); } } }; this.items.each(fn, this); }, // private applySettings: function(c){ var ct = c.ownerCt; Ext.applyIf(c, { labelAlign: ct.labelAlign, labelWidth: ct.labelWidth, itemCls: ct.itemCls }); }, // private getLayoutTarget : function(){ return this.form.el; }, /** * Provides access to the {@link Ext.form.BasicForm Form} which this Panel contains. * @return {Ext.form.BasicForm} The {@link Ext.form.BasicForm Form} which this Panel contains. */ getForm : function(){ return this.form; }, // private onRender : function(ct, position){ this.initFields(); Ext.FormPanel.superclass.onRender.call(this, ct, position); this.form.initEl(this.body); }, // private beforeDestroy : function(){ this.stopMonitoring(); this.form.destroy(true); Ext.FormPanel.superclass.beforeDestroy.call(this); }, // Determine if a Component is usable as a form Field. isField : function(c) { return !!c.setValue && !!c.getValue && !!c.markInvalid && !!c.clearInvalid; }, // private initEvents : function(){ Ext.FormPanel.superclass.initEvents.call(this); // Listeners are required here to catch bubbling events from children. this.on({ scope: this, add: this.onAddEvent, remove: this.onRemoveEvent }); if(this.monitorValid){ // initialize after render this.startMonitoring(); } }, // private onAdd: function(c){ Ext.FormPanel.superclass.onAdd.call(this, c); this.processAdd(c); }, // private onAddEvent: function(ct, c){ if(ct !== this){ this.processAdd(c); } }, // private processAdd : function(c){ // If a single form Field, add it if(this.isField(c)){ this.form.add(c); // If a Container, add any Fields it might contain }else if(c.findBy){ this.applySettings(c); this.form.add.apply(this.form, c.findBy(this.isField)); } }, // private onRemove: function(c){ Ext.FormPanel.superclass.onRemove.call(this, c); this.processRemove(c); }, onRemoveEvent: function(ct, c){ if(ct !== this){ this.processRemove(c); } }, // private processRemove: function(c){ if(!this.destroying){ // If a single form Field, remove it if(this.isField(c)){ this.form.remove(c); // If a Container, its already destroyed by the time it gets here. Remove any references to destroyed fields. }else if (c.findBy){ Ext.each(c.findBy(this.isField), this.form.remove, this.form); /* * This isn't the most efficient way of getting rid of the items, however it's the most * correct, which in this case is most important. */ this.form.cleanDestroyed(); } } }, /** * Starts monitoring of the valid state of this form. Usually this is done by passing the config * option "monitorValid" */ startMonitoring : function(){ if(!this.validTask){ this.validTask = new Ext.util.TaskRunner(); this.validTask.start({ run : this.bindHandler, interval : this.monitorPoll || 200, scope: this }); } }, /** * Stops monitoring of the valid state of this form */ stopMonitoring : function(){ if(this.validTask){ this.validTask.stopAll(); this.validTask = null; } }, /** * This is a proxy for the underlying BasicForm's {@link Ext.form.BasicForm#load} call. * @param {Object} options The options to pass to the action (see {@link Ext.form.BasicForm#doAction} for details) */ load : function(){ this.form.load.apply(this.form, arguments); }, // private onDisable : function(){ Ext.FormPanel.superclass.onDisable.call(this); if(this.form){ this.form.items.each(function(){ this.disable(); }); } }, // private onEnable : function(){ Ext.FormPanel.superclass.onEnable.call(this); if(this.form){ this.form.items.each(function(){ this.enable(); }); } }, // private bindHandler : function(){ var valid = true; this.form.items.each(function(f){ if(!f.isValid(true)){ valid = false; return false; } }); if(this.fbar){ var fitems = this.fbar.items.items; for(var i = 0, len = fitems.length; i < len; i++){ var btn = fitems[i]; if(btn.formBind === true && btn.disabled === valid){ btn.setDisabled(!valid); } } } this.fireEvent('clientvalidation', this, valid); } }); Ext.reg('form', Ext.FormPanel); Ext.form.FormPanel = Ext.FormPanel; /** * @class Ext.form.FieldSet * @extends Ext.Panel * Standard container used for grouping items within a {@link Ext.form.FormPanel form}. * 
    
var form = new Ext.FormPanel({
    title: 'Simple Form with FieldSets',
    labelWidth: 75, // label settings here cascade unless overridden
    url: 'save-form.php',
    frame:true,
    bodyStyle:'padding:5px 5px 0',
    width: 700,
    renderTo: document.body,
    layout:'column', // arrange items in columns
    defaults: {      // defaults applied to items
        layout: 'form',
        border: false,
        bodyStyle: 'padding:4px'
    },
    items: [{
        // Fieldset in Column 1
        xtype:'fieldset',
        columnWidth: 0.5,
        title: 'Fieldset 1',
        collapsible: true,
        autoHeight:true,
        defaults: {
            anchor: '-20' // leave room for error icon
        },
        defaultType: 'textfield',
        items :[{
                fieldLabel: 'Field 1'
            }, {
                fieldLabel: 'Field 2'
            }, {
                fieldLabel: 'Field 3'
            }
        ]
    },{
        // Fieldset in Column 2 - Panel inside
        xtype:'fieldset',
        title: 'Show Panel', // title, header, or checkboxToggle creates fieldset header
        autoHeight:true,
        columnWidth: 0.5,
        checkboxToggle: true,
        collapsed: true, // fieldset initially collapsed
        layout:'anchor',
        items :[{
            xtype: 'panel',
            anchor: '100%',
            title: 'Panel inside a fieldset',
            frame: true,
            height: 100
        }]
    }]
});
 *
    * @constructor * @param {Object} config Configuration options * @xtype fieldset */ Ext.form.FieldSet = Ext.extend(Ext.Panel, { /** * @cfg {Mixed} checkboxToggle true to render a checkbox into the fieldset frame just * in front of the legend to expand/collapse the fieldset when the checkbox is toggled. (defaults * to false). *

    A {@link Ext.DomHelper DomHelper} element spec may also be specified to create the checkbox. * If true is specified, the default DomHelper config object used to create the element * is:

    
     * {tag: 'input', type: 'checkbox', name: this.checkboxName || this.id+'-checkbox'}
     *
    */ /** * @cfg {String} checkboxName The name to assign to the fieldset's checkbox if {@link #checkboxToggle} = true * (defaults to '[checkbox id]-checkbox'). */ /** * @cfg {Boolean} collapsible * true to make the fieldset collapsible and have the expand/collapse toggle button automatically * rendered into the legend element, false to keep the fieldset statically sized with no collapse * button (defaults to false). Another option is to configure {@link #checkboxToggle}. */ /** * @cfg {Number} labelWidth The width of labels. This property cascades to child containers. */ /** * @cfg {String} itemCls A css class to apply to the x-form-item of fields (see * {@link Ext.layout.FormLayout}.{@link Ext.layout.FormLayout#fieldTpl fieldTpl} for details). * This property cascades to child containers. */ /** * @cfg {String} baseCls The base CSS class applied to the fieldset (defaults to 'x-fieldset'). */ baseCls : 'x-fieldset', /** * @cfg {String} layout The {@link Ext.Container#layout} to use inside the fieldset (defaults to 'form'). */ layout : 'form', /** * @cfg {Boolean} animCollapse * true to animate the transition when the panel is collapsed, false to skip the * animation (defaults to false). */ animCollapse : false, // private onRender : function(ct, position){ if(!this.el){ this.el = document.createElement('fieldset'); this.el.id = this.id; if (this.title || this.header || this.checkboxToggle) { this.el.appendChild(document.createElement('legend')).className = this.baseCls + '-header'; } } Ext.form.FieldSet.superclass.onRender.call(this, ct, position); if(this.checkboxToggle){ var o = typeof this.checkboxToggle == 'object' ? this.checkboxToggle : {tag: 'input', type: 'checkbox', name: this.checkboxName || this.id+'-checkbox'}; this.checkbox = this.header.insertFirst(o); this.checkbox.dom.checked = !this.collapsed; this.mon(this.checkbox, 'click', this.onCheckClick, this); } }, // private onCollapse : function(doAnim, animArg){ if(this.checkbox){ this.checkbox.dom.checked = false; } Ext.form.FieldSet.superclass.onCollapse.call(this, doAnim, animArg); }, // private onExpand : function(doAnim, animArg){ if(this.checkbox){ this.checkbox.dom.checked = true; } Ext.form.FieldSet.superclass.onExpand.call(this, doAnim, animArg); }, /** * This function is called by the fieldset's checkbox when it is toggled (only applies when * checkboxToggle = true). This method should never be called externally, but can be * overridden to provide custom behavior when the checkbox is toggled if needed. */ onCheckClick : function(){ this[this.checkbox.dom.checked ? 'expand' : 'collapse'](); } /** * @cfg {String/Number} activeItem * @hide */ /** * @cfg {Mixed} applyTo * @hide */ /** * @cfg {Boolean} bodyBorder * @hide */ /** * @cfg {Boolean} border * @hide */ /** * @cfg {Boolean/Number} bufferResize * @hide */ /** * @cfg {Boolean} collapseFirst * @hide */ /** * @cfg {String} defaultType * @hide */ /** * @cfg {String} disabledClass * @hide */ /** * @cfg {String} elements * @hide */ /** * @cfg {Boolean} floating * @hide */ /** * @cfg {Boolean} footer * @hide */ /** * @cfg {Boolean} frame * @hide */ /** * @cfg {Boolean} header * @hide */ /** * @cfg {Boolean} headerAsText * @hide */ /** * @cfg {Boolean} hideCollapseTool * @hide */ /** * @cfg {String} iconCls * @hide */ /** * @cfg {Boolean/String} shadow * @hide */ /** * @cfg {Number} shadowOffset * @hide */ /** * @cfg {Boolean} shim * @hide */ /** * @cfg {Object/Array} tbar * @hide */ /** * @cfg {Array} tools * @hide */ /** * @cfg {Ext.Template/Ext.XTemplate} toolTemplate * @hide */ /** * @cfg {String} xtype * @hide */ /** * @property header * @hide */ /** * @property footer * @hide */ /** * @method focus * @hide */ /** * @method getBottomToolbar * @hide */ /** * @method getTopToolbar * @hide */ /** * @method setIconClass * @hide */ /** * @event activate * @hide */ /** * @event beforeclose * @hide */ /** * @event bodyresize * @hide */ /** * @event close * @hide */ /** * @event deactivate * @hide */ }); Ext.reg('fieldset', Ext.form.FieldSet);/** * @class Ext.form.HtmlEditor * @extends Ext.form.Field * Provides a lightweight HTML Editor component. Some toolbar features are not supported by Safari and will be * automatically hidden when needed. These are noted in the config options where appropriate. *

    The editor's toolbar buttons have tooltips defined in the {@link #buttonTips} property, but they are not * enabled by default unless the global {@link Ext.QuickTips} singleton is {@link Ext.QuickTips#init initialized}. *

    Note: The focus/blur and validation marking functionality inherited from Ext.form.Field is NOT * supported by this editor. *

    An Editor is a sensitive component that can't be used in all spots standard fields can be used. Putting an Editor within * any element that has display set to 'none' can cause problems in Safari and Firefox due to their default iframe reloading bugs. *

    Example usage: * 
    
// Simple example rendered with default options:
Ext.QuickTips.init();  // enable tooltips
new Ext.form.HtmlEditor({
    renderTo: Ext.getBody(),
    width: 800,
    height: 300
});

// Passed via xtype into a container and with custom options:
Ext.QuickTips.init();  // enable tooltips
new Ext.Panel({
    title: 'HTML Editor',
    renderTo: Ext.getBody(),
    width: 600,
    height: 300,
    frame: true,
    layout: 'fit',
    items: {
        xtype: 'htmleditor',
        enableColors: false,
        enableAlignments: false
    }
});
    * @constructor * Create a new HtmlEditor * @param {Object} config * @xtype htmleditor */ Ext.form.HtmlEditor = Ext.extend(Ext.form.Field, { /** * @cfg {Boolean} enableFormat Enable the bold, italic and underline buttons (defaults to true) */ enableFormat : true, /** * @cfg {Boolean} enableFontSize Enable the increase/decrease font size buttons (defaults to true) */ enableFontSize : true, /** * @cfg {Boolean} enableColors Enable the fore/highlight color buttons (defaults to true) */ enableColors : true, /** * @cfg {Boolean} enableAlignments Enable the left, center, right alignment buttons (defaults to true) */ enableAlignments : true, /** * @cfg {Boolean} enableLists Enable the bullet and numbered list buttons. Not available in Safari. (defaults to true) */ enableLists : true, /** * @cfg {Boolean} enableSourceEdit Enable the switch to source edit button. Not available in Safari. (defaults to true) */ enableSourceEdit : true, /** * @cfg {Boolean} enableLinks Enable the create link button. Not available in Safari. (defaults to true) */ enableLinks : true, /** * @cfg {Boolean} enableFont Enable font selection. Not available in Safari. (defaults to true) */ enableFont : true, /** * @cfg {String} createLinkText The default text for the create link prompt */ createLinkText : 'Please enter the URL for the link:', /** * @cfg {String} defaultLinkValue The default value for the create link prompt (defaults to http:/ /) */ defaultLinkValue : 'http:/'+'/', /** * @cfg {Array} fontFamilies An array of available font families */ fontFamilies : [ 'Arial', 'Courier New', 'Tahoma', 'Times New Roman', 'Verdana' ], defaultFont: 'tahoma', /** * @cfg {String} defaultValue A default value to be put into the editor to resolve focus issues (defaults to   (Non-breaking space) in Opera and IE6, ​ (Zero-width space) in all other browsers). */ defaultValue: (Ext.isOpera || Ext.isIE6) ? ' ' : '​', // private properties actionMode: 'wrap', validationEvent : false, deferHeight: true, initialized : false, activated : false, sourceEditMode : false, onFocus : Ext.emptyFn, iframePad:3, hideMode:'offsets', defaultAutoCreate : { tag: "textarea", style:"width:500px;height:300px;", autocomplete: "off" }, // private initComponent : function(){ this.addEvents( /** * @event initialize * Fires when the editor is fully initialized (including the iframe) * @param {HtmlEditor} this */ 'initialize', /** * @event activate * Fires when the editor is first receives the focus. Any insertion must wait * until after this event. * @param {HtmlEditor} this */ 'activate', /** * @event beforesync * Fires before the textarea is updated with content from the editor iframe. Return false * to cancel the sync. * @param {HtmlEditor} this * @param {String} html */ 'beforesync', /** * @event beforepush * Fires before the iframe editor is updated with content from the textarea. Return false * to cancel the push. * @param {HtmlEditor} this * @param {String} html */ 'beforepush', /** * @event sync * Fires when the textarea is updated with content from the editor iframe. * @param {HtmlEditor} this * @param {String} html */ 'sync', /** * @event push * Fires when the iframe editor is updated with content from the textarea. * @param {HtmlEditor} this * @param {String} html */ 'push', /** * @event editmodechange * Fires when the editor switches edit modes * @param {HtmlEditor} this * @param {Boolean} sourceEdit True if source edit, false if standard editing. */ 'editmodechange' ); Ext.form.HtmlEditor.superclass.initComponent.call(this); }, // private createFontOptions : function(){ var buf = [], fs = this.fontFamilies, ff, lc; for(var i = 0, len = fs.length; i< len; i++){ ff = fs[i]; lc = ff.toLowerCase(); buf.push( '' ); } return buf.join(''); }, /* * Protected method that will not generally be called directly. It * is called when the editor creates its toolbar. Override this method if you need to * add custom toolbar buttons. * @param {HtmlEditor} editor */ createToolbar : function(editor){ var items = []; var tipsEnabled = Ext.QuickTips && Ext.QuickTips.isEnabled(); function btn(id, toggle, handler){ return { itemId : id, cls : 'x-btn-icon', iconCls: 'x-edit-'+id, enableToggle:toggle !== false, scope: editor, handler:handler||editor.relayBtnCmd, clickEvent:'mousedown', tooltip: tipsEnabled ? editor.buttonTips[id] || undefined : undefined, overflowText: editor.buttonTips[id].title || undefined, tabIndex:-1 }; } if(this.enableFont && !Ext.isSafari2){ var fontSelectItem = new Ext.Toolbar.Item({ autoEl: { tag:'select', cls:'x-font-select', html: this.createFontOptions() } }); items.push( fontSelectItem, '-' ); } if(this.enableFormat){ items.push( btn('bold'), btn('italic'), btn('underline') ); } if(this.enableFontSize){ items.push( '-', btn('increasefontsize', false, this.adjustFont), btn('decreasefontsize', false, this.adjustFont) ); } if(this.enableColors){ items.push( '-', { itemId:'forecolor', cls:'x-btn-icon', iconCls: 'x-edit-forecolor', clickEvent:'mousedown', tooltip: tipsEnabled ? editor.buttonTips.forecolor || undefined : undefined, tabIndex:-1, menu : new Ext.menu.ColorMenu({ allowReselect: true, focus: Ext.emptyFn, value:'000000', plain:true, listeners: { scope: this, select: function(cp, color){ this.execCmd('forecolor', Ext.isWebKit || Ext.isIE ? '#'+color : color); this.deferFocus(); } }, clickEvent:'mousedown' }) }, { itemId:'backcolor', cls:'x-btn-icon', iconCls: 'x-edit-backcolor', clickEvent:'mousedown', tooltip: tipsEnabled ? editor.buttonTips.backcolor || undefined : undefined, tabIndex:-1, menu : new Ext.menu.ColorMenu({ focus: Ext.emptyFn, value:'FFFFFF', plain:true, allowReselect: true, listeners: { scope: this, select: function(cp, color){ if(Ext.isGecko){ this.execCmd('useCSS', false); this.execCmd('hilitecolor', color); this.execCmd('useCSS', true); this.deferFocus(); }else{ this.execCmd(Ext.isOpera ? 'hilitecolor' : 'backcolor', Ext.isWebKit || Ext.isIE ? '#'+color : color); this.deferFocus(); } } }, clickEvent:'mousedown' }) } ); } if(this.enableAlignments){ items.push( '-', btn('justifyleft'), btn('justifycenter'), btn('justifyright') ); } if(!Ext.isSafari2){ if(this.enableLinks){ items.push( '-', btn('createlink', false, this.createLink) ); } if(this.enableLists){ items.push( '-', btn('insertorderedlist'), btn('insertunorderedlist') ); } if(this.enableSourceEdit){ items.push( '-', btn('sourceedit', true, function(btn){ this.toggleSourceEdit(!this.sourceEditMode); }) ); } } // build the toolbar var tb = new Ext.Toolbar({ renderTo: this.wrap.dom.firstChild, items: items }); if (fontSelectItem) { this.fontSelect = fontSelectItem.el; this.mon(this.fontSelect, 'change', function(){ var font = this.fontSelect.dom.value; this.relayCmd('fontname', font); this.deferFocus(); }, this); } // stop form submits this.mon(tb.el, 'click', function(e){ e.preventDefault(); }); this.tb = tb; this.tb.doLayout(); }, onDisable: function(){ this.wrap.mask(); Ext.form.HtmlEditor.superclass.onDisable.call(this); }, onEnable: function(){ this.wrap.unmask(); Ext.form.HtmlEditor.superclass.onEnable.call(this); }, setReadOnly: function(readOnly){ Ext.form.HtmlEditor.superclass.setReadOnly.call(this, readOnly); if(this.initialized){ if(Ext.isIE){ this.getEditorBody().contentEditable = !readOnly; }else{ this.setDesignMode(!readOnly); } var bd = this.getEditorBody(); if(bd){ bd.style.cursor = this.readOnly ? 'default' : 'text'; } this.disableItems(readOnly); } }, /** * Protected method that will not generally be called directly. It * is called when the editor initializes the iframe with HTML contents. Override this method if you * want to change the initialization markup of the iframe (e.g. to add stylesheets). * * Note: IE8-Standards has unwanted scroller behavior, so the default meta tag forces IE7 compatibility */ getDocMarkup : function(){ var h = Ext.fly(this.iframe).getHeight() - this.iframePad * 2; return String.format('', this.iframePad, h); }, // private getEditorBody : function(){ var doc = this.getDoc(); return doc.body || doc.documentElement; }, // private getDoc : function(){ return Ext.isIE ? this.getWin().document : (this.iframe.contentDocument || this.getWin().document); }, // private getWin : function(){ return Ext.isIE ? this.iframe.contentWindow : window.frames[this.iframe.name]; }, // private onRender : function(ct, position){ Ext.form.HtmlEditor.superclass.onRender.call(this, ct, position); this.el.dom.style.border = '0 none'; this.el.dom.setAttribute('tabIndex', -1); this.el.addClass('x-hidden'); if(Ext.isIE){ // fix IE 1px bogus margin this.el.applyStyles('margin-top:-1px;margin-bottom:-1px;'); } this.wrap = this.el.wrap({ cls:'x-html-editor-wrap', cn:{cls:'x-html-editor-tb'} }); this.createToolbar(this); this.disableItems(true); this.tb.doLayout(); this.createIFrame(); if(!this.width){ var sz = this.el.getSize(); this.setSize(sz.width, this.height || sz.height); } this.resizeEl = this.positionEl = this.wrap; }, createIFrame: function(){ var iframe = document.createElement('iframe'); iframe.name = Ext.id(); iframe.frameBorder = '0'; iframe.style.overflow = 'auto'; iframe.src = Ext.SSL_SECURE_URL; this.wrap.dom.appendChild(iframe); this.iframe = iframe; this.monitorTask = Ext.TaskMgr.start({ run: this.checkDesignMode, scope: this, interval:100 }); }, initFrame : function(){ Ext.TaskMgr.stop(this.monitorTask); var doc = this.getDoc(); this.win = this.getWin(); doc.open(); doc.write(this.getDocMarkup()); doc.close(); this.readyTask = { // must defer to wait for browser to be ready run : function(){ var doc = this.getDoc(); if(doc.body || doc.readyState == 'complete'){ Ext.TaskMgr.stop(this.readyTask); this.setDesignMode(true); this.initEditor.defer(10, this); } }, interval : 10, duration:10000, scope: this }; Ext.TaskMgr.start(this.readyTask); }, checkDesignMode : function(){ if(this.wrap && this.wrap.dom.offsetWidth){ var doc = this.getDoc(); if(!doc){ return; } if(!doc.editorInitialized || this.getDesignMode() != 'on'){ this.initFrame(); } } }, /* private * set current design mode. To enable, mode can be true or 'on', off otherwise */ setDesignMode : function(mode){ var doc = this.getDoc(); if (doc) { if(this.readOnly){ mode = false; } doc.designMode = (/on|true/i).test(String(mode).toLowerCase()) ?'on':'off'; } }, // private getDesignMode : function(){ var doc = this.getDoc(); if(!doc){ return ''; } return String(doc.designMode).toLowerCase(); }, disableItems: function(disabled){ if(this.fontSelect){ this.fontSelect.dom.disabled = disabled; } this.tb.items.each(function(item){ if(item.getItemId() != 'sourceedit'){ item.setDisabled(disabled); } }); }, // private onResize : function(w, h){ Ext.form.HtmlEditor.superclass.onResize.apply(this, arguments); if(this.el && this.iframe){ if(Ext.isNumber(w)){ var aw = w - this.wrap.getFrameWidth('lr'); this.el.setWidth(aw); this.tb.setWidth(aw); this.iframe.style.width = Math.max(aw, 0) + 'px'; } if(Ext.isNumber(h)){ var ah = h - this.wrap.getFrameWidth('tb') - this.tb.el.getHeight(); this.el.setHeight(ah); this.iframe.style.height = Math.max(ah, 0) + 'px'; var bd = this.getEditorBody(); if(bd){ bd.style.height = Math.max((ah - (this.iframePad*2)), 0) + 'px'; } } } }, /** * Toggles the editor between standard and source edit mode. * @param {Boolean} sourceEdit (optional) True for source edit, false for standard */ toggleSourceEdit : function(sourceEditMode){ var iframeHeight, elHeight; if (sourceEditMode === undefined) { sourceEditMode = !this.sourceEditMode; } this.sourceEditMode = sourceEditMode === true; var btn = this.tb.getComponent('sourceedit'); if (btn.pressed !== this.sourceEditMode) { btn.toggle(this.sourceEditMode); if (!btn.xtbHidden) { return; } } if (this.sourceEditMode) { // grab the height of the containing panel before we hide the iframe this.previousSize = this.getSize(); iframeHeight = Ext.get(this.iframe).getHeight(); this.disableItems(true); this.syncValue(); this.iframe.className = 'x-hidden'; this.el.removeClass('x-hidden'); this.el.dom.removeAttribute('tabIndex'); this.el.focus(); this.el.dom.style.height = iframeHeight + 'px'; } else { elHeight = parseInt(this.el.dom.style.height, 10); if (this.initialized) { this.disableItems(this.readOnly); } this.pushValue(); this.iframe.className = ''; this.el.addClass('x-hidden'); this.el.dom.setAttribute('tabIndex', -1); this.deferFocus(); this.setSize(this.previousSize); delete this.previousSize; this.iframe.style.height = elHeight + 'px'; } this.fireEvent('editmodechange', this, this.sourceEditMode); }, // private used internally createLink : function() { var url = prompt(this.createLinkText, this.defaultLinkValue); if(url && url != 'http:/'+'/'){ this.relayCmd('createlink', url); } }, // private initEvents : function(){ this.originalValue = this.getValue(); }, /** * Overridden and disabled. The editor element does not support standard valid/invalid marking. @hide * @method */ markInvalid : Ext.emptyFn, /** * Overridden and disabled. The editor element does not support standard valid/invalid marking. @hide * @method */ clearInvalid : Ext.emptyFn, // docs inherit from Field setValue : function(v){ Ext.form.HtmlEditor.superclass.setValue.call(this, v); this.pushValue(); return this; }, /** * Protected method that will not generally be called directly. If you need/want * custom HTML cleanup, this is the method you should override. * @param {String} html The HTML to be cleaned * @return {String} The cleaned HTML */ cleanHtml: function(html) { html = String(html); if(Ext.isWebKit){ // strip safari nonsense html = html.replace(/\sclass="(?:Apple-style-span|khtml-block-placeholder)"/gi, ''); } /* * Neat little hack. Strips out all the non-digit characters from the default * value and compares it to the character code of the first character in the string * because it can cause encoding issues when posted to the server. */ if(html.charCodeAt(0) == this.defaultValue.replace(/\D/g, '')){ html = html.substring(1); } return html; }, /** * Protected method that will not generally be called directly. Syncs the contents * of the editor iframe with the textarea. */ syncValue : function(){ if(this.initialized){ var bd = this.getEditorBody(); var html = bd.innerHTML; if(Ext.isWebKit){ var bs = bd.getAttribute('style'); // Safari puts text-align styles on the body element! var m = bs.match(/text-align:(.*?);/i); if(m && m[1]){ html = '
    ' + html + '
    '; } } html = this.cleanHtml(html); if(this.fireEvent('beforesync', this, html) !== false){ this.el.dom.value = html; this.fireEvent('sync', this, html); } } }, //docs inherit from Field getValue : function() { this[this.sourceEditMode ? 'pushValue' : 'syncValue'](); return Ext.form.HtmlEditor.superclass.getValue.call(this); }, /** * Protected method that will not generally be called directly. Pushes the value of the textarea * into the iframe editor. */ pushValue : function(){ if(this.initialized){ var v = this.el.dom.value; if(!this.activated && v.length < 1){ v = this.defaultValue; } if(this.fireEvent('beforepush', this, v) !== false){ this.getEditorBody().innerHTML = v; if(Ext.isGecko){ // Gecko hack, see: https://bugzilla.mozilla.org/show_bug.cgi?id=232791#c8 this.setDesignMode(false); //toggle off first this.setDesignMode(true); } this.fireEvent('push', this, v); } } }, // private deferFocus : function(){ this.focus.defer(10, this); }, // docs inherit from Field focus : function(){ if(this.win && !this.sourceEditMode){ this.win.focus(); }else{ this.el.focus(); } }, // private initEditor : function(){ //Destroying the component during/before initEditor can cause issues. try{ var dbody = this.getEditorBody(), ss = this.el.getStyles('font-size', 'font-family', 'background-image', 'background-repeat', 'background-color', 'color'), doc, fn; ss['background-attachment'] = 'fixed'; // w3c dbody.bgProperties = 'fixed'; // ie Ext.DomHelper.applyStyles(dbody, ss); doc = this.getDoc(); if(doc){ try{ Ext.EventManager.removeAll(doc); }catch(e){} } /* * We need to use createDelegate here, because when using buffer, the delayed task is added * as a property to the function. When the listener is removed, the task is deleted from the function. * Since onEditorEvent is shared on the prototype, if we have multiple html editors, the first time one of the editors * is destroyed, it causes the fn to be deleted from the prototype, which causes errors. Essentially, we're just anonymizing the function. */ fn = this.onEditorEvent.createDelegate(this); Ext.EventManager.on(doc, { mousedown: fn, dblclick: fn, click: fn, keyup: fn, buffer:100 }); if(Ext.isGecko){ Ext.EventManager.on(doc, 'keypress', this.applyCommand, this); } if(Ext.isIE || Ext.isWebKit || Ext.isOpera){ Ext.EventManager.on(doc, 'keydown', this.fixKeys, this); } doc.editorInitialized = true; this.initialized = true; this.pushValue(); this.setReadOnly(this.readOnly); this.fireEvent('initialize', this); }catch(e){} }, // private beforeDestroy : function(){ if(this.monitorTask){ Ext.TaskMgr.stop(this.monitorTask); } if(this.readyTask){ Ext.TaskMgr.stop(this.readyTask); } if(this.rendered){ Ext.destroy(this.tb); var doc = this.getDoc(); Ext.EventManager.removeFromSpecialCache(doc); if(doc){ try{ Ext.EventManager.removeAll(doc); for (var prop in doc){ delete doc[prop]; } }catch(e){} } if(this.wrap){ this.wrap.dom.innerHTML = ''; this.wrap.remove(); } } Ext.form.HtmlEditor.superclass.beforeDestroy.call(this); }, // private onFirstFocus : function(){ this.activated = true; this.disableItems(this.readOnly); if(Ext.isGecko){ // prevent silly gecko errors this.win.focus(); var s = this.win.getSelection(); if(!s.focusNode || s.focusNode.nodeType != 3){ var r = s.getRangeAt(0); r.selectNodeContents(this.getEditorBody()); r.collapse(true); this.deferFocus(); } try{ this.execCmd('useCSS', true); this.execCmd('styleWithCSS', false); }catch(e){} } this.fireEvent('activate', this); }, // private adjustFont: function(btn){ var adjust = btn.getItemId() == 'increasefontsize' ? 1 : -1, doc = this.getDoc(), v = parseInt(doc.queryCommandValue('FontSize') || 2, 10); if((Ext.isSafari && !Ext.isSafari2) || Ext.isChrome || Ext.isAir){ // Safari 3 values // 1 = 10px, 2 = 13px, 3 = 16px, 4 = 18px, 5 = 24px, 6 = 32px if(v <= 10){ v = 1 + adjust; }else if(v <= 13){ v = 2 + adjust; }else if(v <= 16){ v = 3 + adjust; }else if(v <= 18){ v = 4 + adjust; }else if(v <= 24){ v = 5 + adjust; }else { v = 6 + adjust; } v = v.constrain(1, 6); }else{ if(Ext.isSafari){ // safari adjust *= 2; } v = Math.max(1, v+adjust) + (Ext.isSafari ? 'px' : 0); } this.execCmd('FontSize', v); }, // private onEditorEvent : function(e){ this.updateToolbar(); }, /** * Protected method that will not generally be called directly. It triggers * a toolbar update by reading the markup state of the current selection in the editor. */ updateToolbar: function(){ if(this.readOnly){ return; } if(!this.activated){ this.onFirstFocus(); return; } var btns = this.tb.items.map, doc = this.getDoc(); if(this.enableFont && !Ext.isSafari2){ var name = (doc.queryCommandValue('FontName')||this.defaultFont).toLowerCase(); if(name != this.fontSelect.dom.value){ this.fontSelect.dom.value = name; } } if(this.enableFormat){ btns.bold.toggle(doc.queryCommandState('bold')); btns.italic.toggle(doc.queryCommandState('italic')); btns.underline.toggle(doc.queryCommandState('underline')); } if(this.enableAlignments){ btns.justifyleft.toggle(doc.queryCommandState('justifyleft')); btns.justifycenter.toggle(doc.queryCommandState('justifycenter')); btns.justifyright.toggle(doc.queryCommandState('justifyright')); } if(!Ext.isSafari2 && this.enableLists){ btns.insertorderedlist.toggle(doc.queryCommandState('insertorderedlist')); btns.insertunorderedlist.toggle(doc.queryCommandState('insertunorderedlist')); } Ext.menu.MenuMgr.hideAll(); this.syncValue(); }, // private relayBtnCmd : function(btn){ this.relayCmd(btn.getItemId()); }, /** * Executes a Midas editor command on the editor document and performs necessary focus and * toolbar updates. This should only be called after the editor is initialized. * @param {String} cmd The Midas command * @param {String/Boolean} value (optional) The value to pass to the command (defaults to null) */ relayCmd : function(cmd, value){ (function(){ this.focus(); this.execCmd(cmd, value); this.updateToolbar(); }).defer(10, this); }, /** * Executes a Midas editor command directly on the editor document. * For visual commands, you should use {@link #relayCmd} instead. * This should only be called after the editor is initialized. * @param {String} cmd The Midas command * @param {String/Boolean} value (optional) The value to pass to the command (defaults to null) */ execCmd : function(cmd, value){ var doc = this.getDoc(); doc.execCommand(cmd, false, value === undefined ? null : value); this.syncValue(); }, // private applyCommand : function(e){ if(e.ctrlKey){ var c = e.getCharCode(), cmd; if(c > 0){ c = String.fromCharCode(c); switch(c){ case 'b': cmd = 'bold'; break; case 'i': cmd = 'italic'; break; case 'u': cmd = 'underline'; break; } if(cmd){ this.win.focus(); this.execCmd(cmd); this.deferFocus(); e.preventDefault(); } } } }, /** * Inserts the passed text at the current cursor position. Note: the editor must be initialized and activated * to insert text. * @param {String} text */ insertAtCursor : function(text){ if(!this.activated){ return; } if(Ext.isIE){ this.win.focus(); var doc = this.getDoc(), r = doc.selection.createRange(); if(r){ r.pasteHTML(text); this.syncValue(); this.deferFocus(); } }else{ this.win.focus(); this.execCmd('InsertHTML', text); this.deferFocus(); } }, // private fixKeys : function(){ // load time branching for fastest keydown performance if(Ext.isIE){ return function(e){ var k = e.getKey(), doc = this.getDoc(), r; if(k == e.TAB){ e.stopEvent(); r = doc.selection.createRange(); if(r){ r.collapse(true); r.pasteHTML('    '); this.deferFocus(); } }else if(k == e.ENTER){ r = doc.selection.createRange(); if(r){ var target = r.parentElement(); if(!target || target.tagName.toLowerCase() != 'li'){ e.stopEvent(); r.pasteHTML('
    '); r.collapse(false); r.select(); } } } }; }else if(Ext.isOpera){ return function(e){ var k = e.getKey(); if(k == e.TAB){ e.stopEvent(); this.win.focus(); this.execCmd('InsertHTML','    '); this.deferFocus(); } }; }else if(Ext.isWebKit){ return function(e){ var k = e.getKey(); if(k == e.TAB){ e.stopEvent(); this.execCmd('InsertText','\t'); this.deferFocus(); }else if(k == e.ENTER){ e.stopEvent(); this.execCmd('InsertHtml','

    '); this.deferFocus(); } }; } }(), /** * Returns the editor's toolbar. This is only available after the editor has been rendered. * @return {Ext.Toolbar} */ getToolbar : function(){ return this.tb; }, /** * Object collection of toolbar tooltips for the buttons in the editor. The key * is the command id associated with that button and the value is a valid QuickTips object. * For example: 
    
{
    bold : {
        title: 'Bold (Ctrl+B)',
        text: 'Make the selected text bold.',
        cls: 'x-html-editor-tip'
    },
    italic : {
        title: 'Italic (Ctrl+I)',
        text: 'Make the selected text italic.',
        cls: 'x-html-editor-tip'
    },
    ...
    * @type Object */ buttonTips : { bold : { title: 'Bold (Ctrl+B)', text: 'Make the selected text bold.', cls: 'x-html-editor-tip' }, italic : { title: 'Italic (Ctrl+I)', text: 'Make the selected text italic.', cls: 'x-html-editor-tip' }, underline : { title: 'Underline (Ctrl+U)', text: 'Underline the selected text.', cls: 'x-html-editor-tip' }, increasefontsize : { title: 'Grow Text', text: 'Increase the font size.', cls: 'x-html-editor-tip' }, decreasefontsize : { title: 'Shrink Text', text: 'Decrease the font size.', cls: 'x-html-editor-tip' }, backcolor : { title: 'Text Highlight Color', text: 'Change the background color of the selected text.', cls: 'x-html-editor-tip' }, forecolor : { title: 'Font Color', text: 'Change the color of the selected text.', cls: 'x-html-editor-tip' }, justifyleft : { title: 'Align Text Left', text: 'Align text to the left.', cls: 'x-html-editor-tip' }, justifycenter : { title: 'Center Text', text: 'Center text in the editor.', cls: 'x-html-editor-tip' }, justifyright : { title: 'Align Text Right', text: 'Align text to the right.', cls: 'x-html-editor-tip' }, insertunorderedlist : { title: 'Bullet List', text: 'Start a bulleted list.', cls: 'x-html-editor-tip' }, insertorderedlist : { title: 'Numbered List', text: 'Start a numbered list.', cls: 'x-html-editor-tip' }, createlink : { title: 'Hyperlink', text: 'Make the selected text a hyperlink.', cls: 'x-html-editor-tip' }, sourceedit : { title: 'Source Edit', text: 'Switch to source editing mode.', cls: 'x-html-editor-tip' } } // hide stuff that is not compatible /** * @event blur * @hide */ /** * @event change * @hide */ /** * @event focus * @hide */ /** * @event specialkey * @hide */ /** * @cfg {String} fieldClass @hide */ /** * @cfg {String} focusClass @hide */ /** * @cfg {String} autoCreate @hide */ /** * @cfg {String} inputType @hide */ /** * @cfg {String} invalidClass @hide */ /** * @cfg {String} invalidText @hide */ /** * @cfg {String} msgFx @hide */ /** * @cfg {String} validateOnBlur @hide */ /** * @cfg {Boolean} allowDomMove @hide */ /** * @cfg {String} applyTo @hide */ /** * @cfg {String} autoHeight @hide */ /** * @cfg {String} autoWidth @hide */ /** * @cfg {String} cls @hide */ /** * @cfg {String} disabled @hide */ /** * @cfg {String} disabledClass @hide */ /** * @cfg {String} msgTarget @hide */ /** * @cfg {String} readOnly @hide */ /** * @cfg {String} style @hide */ /** * @cfg {String} validationDelay @hide */ /** * @cfg {String} validationEvent @hide */ /** * @cfg {String} tabIndex @hide */ /** * @property disabled * @hide */ /** * @method applyToMarkup * @hide */ /** * @method disable * @hide */ /** * @method enable * @hide */ /** * @method validate * @hide */ /** * @event valid * @hide */ /** * @method setDisabled * @hide */ /** * @cfg keys * @hide */ }); Ext.reg('htmleditor', Ext.form.HtmlEditor); /** * @class Ext.form.TimeField * @extends Ext.form.ComboBox * Provides a time input field with a time dropdown and automatic time validation. Example usage: * 
    
new Ext.form.TimeField({
    minValue: '9:00 AM',
    maxValue: '6:00 PM',
    increment: 30
});
    * @constructor * Create a new TimeField * @param {Object} config * @xtype timefield */ Ext.form.TimeField = Ext.extend(Ext.form.ComboBox, { /** * @cfg {Date/String} minValue * The minimum allowed time. Can be either a Javascript date object with a valid time value or a string * time in a valid format -- see {@link #format} and {@link #altFormats} (defaults to undefined). */ minValue : undefined, /** * @cfg {Date/String} maxValue * The maximum allowed time. Can be either a Javascript date object with a valid time value or a string * time in a valid format -- see {@link #format} and {@link #altFormats} (defaults to undefined). */ maxValue : undefined, /** * @cfg {String} minText * The error text to display when the date in the cell is before minValue (defaults to * 'The time in this field must be equal to or after {0}'). */ minText : "The time in this field must be equal to or after {0}", /** * @cfg {String} maxText * The error text to display when the time is after maxValue (defaults to * 'The time in this field must be equal to or before {0}'). */ maxText : "The time in this field must be equal to or before {0}", /** * @cfg {String} invalidText * The error text to display when the time in the field is invalid (defaults to * '{value} is not a valid time'). */ invalidText : "{0} is not a valid time", /** * @cfg {String} format * The default time format string which can be overriden for localization support. The format must be * valid according to {@link Date#parseDate} (defaults to 'g:i A', e.g., '3:15 PM'). For 24-hour time * format try 'H:i' instead. */ format : "g:i A", /** * @cfg {String} altFormats * Multiple date formats separated by "|" to try when parsing a user input value and it doesn't match the defined * format (defaults to 'g:ia|g:iA|g:i a|g:i A|h:i|g:i|H:i|ga|ha|gA|h a|g a|g A|gi|hi|gia|hia|g|H|gi a|hi a|giA|hiA|gi A|hi A'). */ altFormats : "g:ia|g:iA|g:i a|g:i A|h:i|g:i|H:i|ga|ha|gA|h a|g a|g A|gi|hi|gia|hia|g|H|gi a|hi a|giA|hiA|gi A|hi A", /** * @cfg {Number} increment * The number of minutes between each time value in the list (defaults to 15). */ increment: 15, // private override mode: 'local', // private override triggerAction: 'all', // private override typeAhead: false, // private - This is the date to use when generating time values in the absence of either minValue // or maxValue. Using the current date causes DST issues on DST boundary dates, so this is an // arbitrary "safe" date that can be any date aside from DST boundary dates. initDate: '1/1/2008', initDateFormat: 'j/n/Y', // private initComponent : function(){ if(Ext.isDefined(this.minValue)){ this.setMinValue(this.minValue, true); } if(Ext.isDefined(this.maxValue)){ this.setMaxValue(this.maxValue, true); } if(!this.store){ this.generateStore(true); } Ext.form.TimeField.superclass.initComponent.call(this); }, /** * Replaces any existing {@link #minValue} with the new time and refreshes the store. * @param {Date/String} value The minimum time that can be selected */ setMinValue: function(value, /* private */ initial){ this.setLimit(value, true, initial); return this; }, /** * Replaces any existing {@link #maxValue} with the new time and refreshes the store. * @param {Date/String} value The maximum time that can be selected */ setMaxValue: function(value, /* private */ initial){ this.setLimit(value, false, initial); return this; }, // private generateStore: function(initial){ var min = this.minValue || new Date(this.initDate).clearTime(), max = this.maxValue || new Date(this.initDate).clearTime().add('mi', (24 * 60) - 1), times = []; while(min <= max){ times.push(min.dateFormat(this.format)); min = min.add('mi', this.increment); } this.bindStore(times, initial); }, // private setLimit: function(value, isMin, initial){ var d; if(Ext.isString(value)){ d = this.parseDate(value); }else if(Ext.isDate(value)){ d = value; } if(d){ var val = new Date(this.initDate).clearTime(); val.setHours(d.getHours(), d.getMinutes(), d.getSeconds(), d.getMilliseconds()); this[isMin ? 'minValue' : 'maxValue'] = val; if(!initial){ this.generateStore(); } } }, // inherited docs getValue : function(){ var v = Ext.form.TimeField.superclass.getValue.call(this); return this.formatDate(this.parseDate(v)) || ''; }, // inherited docs setValue : function(value){ return Ext.form.TimeField.superclass.setValue.call(this, this.formatDate(this.parseDate(value))); }, // private overrides validateValue : Ext.form.DateField.prototype.validateValue, formatDate : Ext.form.DateField.prototype.formatDate, parseDate: function(value) { if (!value || Ext.isDate(value)) { return value; } var id = this.initDate + ' ', idf = this.initDateFormat + ' ', v = Date.parseDate(id + value, idf + this.format), // *** handle DST. note: this.format is a TIME-only format af = this.altFormats; if (!v && af) { if (!this.altFormatsArray) { this.altFormatsArray = af.split("|"); } for (var i = 0, afa = this.altFormatsArray, len = afa.length; i < len && !v; i++) { v = Date.parseDate(id + value, idf + afa[i]); } } return v; } }); Ext.reg('timefield', Ext.form.TimeField);/** * @class Ext.form.SliderField * @extends Ext.form.Field * Wraps a {@link Ext.slider.MultiSlider Slider} so it can be used as a form field. * @constructor * Creates a new SliderField * @param {Object} config Configuration options. Note that you can pass in any slider configuration options, as well as * as any field configuration options. * @xtype sliderfield */ Ext.form.SliderField = Ext.extend(Ext.form.Field, { /** * @cfg {Boolean} useTips * True to use an Ext.slider.Tip to display tips for the value. Defaults to true. */ useTips : true, /** * @cfg {Function} tipText * A function used to display custom text for the slider tip. Defaults to null, which will * use the default on the plugin. */ tipText : null, // private override actionMode: 'wrap', /** * Initialize the component. * @private */ initComponent : function() { var cfg = Ext.copyTo({ id: this.id + '-slider' }, this.initialConfig, ['vertical', 'minValue', 'maxValue', 'decimalPrecision', 'keyIncrement', 'increment', 'clickToChange', 'animate']); // only can use it if it exists. if (this.useTips) { var plug = this.tipText ? {getText: this.tipText} : {}; cfg.plugins = [new Ext.slider.Tip(plug)]; } this.slider = new Ext.Slider(cfg); Ext.form.SliderField.superclass.initComponent.call(this); }, /** * Set up the hidden field * @param {Object} ct The container to render to. * @param {Object} position The position in the container to render to. * @private */ onRender : function(ct, position){ this.autoCreate = { id: this.id, name: this.name, type: 'hidden', tag: 'input' }; Ext.form.SliderField.superclass.onRender.call(this, ct, position); this.wrap = this.el.wrap({cls: 'x-form-field-wrap'}); this.resizeEl = this.positionEl = this.wrap; this.slider.render(this.wrap); }, /** * Ensure that the slider size is set automatically when the field resizes. * @param {Object} w The width * @param {Object} h The height * @param {Object} aw The adjusted width * @param {Object} ah The adjusted height * @private */ onResize : function(w, h, aw, ah){ Ext.form.SliderField.superclass.onResize.call(this, w, h, aw, ah); this.slider.setSize(w, h); }, /** * Initialize any events for this class. * @private */ initEvents : function(){ Ext.form.SliderField.superclass.initEvents.call(this); this.slider.on('change', this.onChange, this); }, /** * Utility method to set the value of the field when the slider changes. * @param {Object} slider The slider object. * @param {Object} v The new value. * @private */ onChange : function(slider, v){ this.setValue(v, undefined, true); }, /** * Enable the slider when the field is enabled. * @private */ onEnable : function(){ Ext.form.SliderField.superclass.onEnable.call(this); this.slider.enable(); }, /** * Disable the slider when the field is disabled. * @private */ onDisable : function(){ Ext.form.SliderField.superclass.onDisable.call(this); this.slider.disable(); }, /** * Ensure the slider is destroyed when the field is destroyed. * @private */ beforeDestroy : function(){ Ext.destroy(this.slider); Ext.form.SliderField.superclass.beforeDestroy.call(this); }, /** * If a side icon is shown, do alignment to the slider * @private */ alignErrorIcon : function(){ this.errorIcon.alignTo(this.slider.el, 'tl-tr', [2, 0]); }, /** * Sets the minimum field value. * @param {Number} v The new minimum value. * @return {Ext.form.SliderField} this */ setMinValue : function(v){ this.slider.setMinValue(v); return this; }, /** * Sets the maximum field value. * @param {Number} v The new maximum value. * @return {Ext.form.SliderField} this */ setMaxValue : function(v){ this.slider.setMaxValue(v); return this; }, /** * Sets the value for this field. * @param {Number} v The new value. * @param {Boolean} animate (optional) Whether to animate the transition. If not specified, it will default to the animate config. * @return {Ext.form.SliderField} this */ setValue : function(v, animate, /* private */ silent){ // silent is used if the setValue method is invoked by the slider // which means we don't need to set the value on the slider. if(!silent){ this.slider.setValue(v, animate); } return Ext.form.SliderField.superclass.setValue.call(this, this.slider.getValue()); }, /** * Gets the current value for this field. * @return {Number} The current value. */ getValue : function(){ return this.slider.getValue(); } }); Ext.reg('sliderfield', Ext.form.SliderField);/** * @class Ext.form.Label * @extends Ext.BoxComponent * Basic Label field. * @constructor * Creates a new Label * @param {Ext.Element/String/Object} config The configuration options. If an element is passed, it is set as the internal * element and its id used as the component id. If a string is passed, it is assumed to be the id of an existing element * and is used as the component id. Otherwise, it is assumed to be a standard config object and is applied to the component. * @xtype label */ Ext.form.Label = Ext.extend(Ext.BoxComponent, { /** * @cfg {String} text The plain text to display within the label (defaults to ''). If you need to include HTML * tags within the label's innerHTML, use the {@link #html} config instead. */ /** * @cfg {String} forId The id of the input element to which this label will be bound via the standard HTML 'for' * attribute. If not specified, the attribute will not be added to the label. */ /** * @cfg {String} html An HTML fragment that will be used as the label's innerHTML (defaults to ''). * Note that if {@link #text} is specified it will take precedence and this value will be ignored. */ // private onRender : function(ct, position){ if(!this.el){ this.el = document.createElement('label'); this.el.id = this.getId(); this.el.innerHTML = this.text ? Ext.util.Format.htmlEncode(this.text) : (this.html || ''); if(this.forId){ this.el.setAttribute('for', this.forId); } } Ext.form.Label.superclass.onRender.call(this, ct, position); }, /** * Updates the label's innerHTML with the specified string. * @param {String} text The new label text * @param {Boolean} encode (optional) False to skip HTML-encoding the text when rendering it * to the label (defaults to true which encodes the value). This might be useful if you want to include * tags in the label's innerHTML rather than rendering them as string literals per the default logic. * @return {Label} this */ setText : function(t, encode){ var e = encode === false; this[!e ? 'text' : 'html'] = t; delete this[e ? 'text' : 'html']; if(this.rendered){ this.el.dom.innerHTML = encode !== false ? Ext.util.Format.htmlEncode(t) : t; } return this; } }); Ext.reg('label', Ext.form.Label);/** * @class Ext.form.Action *

    The subclasses of this class provide actions to perform upon {@link Ext.form.BasicForm Form}s.

    *

    Instances of this class are only created by a {@link Ext.form.BasicForm Form} when * the Form needs to perform an action such as submit or load. The Configuration options * listed for this class are set through the Form's action methods: {@link Ext.form.BasicForm#submit submit}, * {@link Ext.form.BasicForm#load load} and {@link Ext.form.BasicForm#doAction doAction}

    *

    The instance of Action which performed the action is passed to the success * and failure callbacks of the Form's action methods ({@link Ext.form.BasicForm#submit submit}, * {@link Ext.form.BasicForm#load load} and {@link Ext.form.BasicForm#doAction doAction}), * and to the {@link Ext.form.BasicForm#actioncomplete actioncomplete} and * {@link Ext.form.BasicForm#actionfailed actionfailed} event handlers.

    */ Ext.form.Action = function(form, options){ this.form = form; this.options = options || {}; }; /** * Failure type returned when client side validation of the Form fails * thus aborting a submit action. Client side validation is performed unless * {@link #clientValidation} is explicitly set to false. * @type {String} * @static */ Ext.form.Action.CLIENT_INVALID = 'client'; /** *

    Failure type returned when server side processing fails and the {@link #result}'s * success property is set to false.

    *

    In the case of a form submission, field-specific error messages may be returned in the * {@link #result}'s errors property.

    * @type {String} * @static */ Ext.form.Action.SERVER_INVALID = 'server'; /** * Failure type returned when a communication error happens when attempting * to send a request to the remote server. The {@link #response} may be examined to * provide further information. * @type {String} * @static */ Ext.form.Action.CONNECT_FAILURE = 'connect'; /** * Failure type returned when the response's success * property is set to false, or no field values are returned in the response's * data property. * @type {String} * @static */ Ext.form.Action.LOAD_FAILURE = 'load'; Ext.form.Action.prototype = { /** * @cfg {String} url The URL that the Action is to invoke. */ /** * @cfg {Boolean} reset When set to true, causes the Form to be * {@link Ext.form.BasicForm.reset reset} on Action success. If specified, this happens * before the {@link #success} callback is called and before the Form's * {@link Ext.form.BasicForm.actioncomplete actioncomplete} event fires. */ /** * @cfg {String} method The HTTP method to use to access the requested URL. Defaults to the * {@link Ext.form.BasicForm}'s method, or if that is not specified, the underlying DOM form's method. */ /** * @cfg {Mixed} params

    Extra parameter values to pass. These are added to the Form's * {@link Ext.form.BasicForm#baseParams} and passed to the specified URL along with the Form's * input fields.

    *

    Parameters are encoded as standard HTTP parameters using {@link Ext#urlEncode}.

    */ /** * @cfg {Number} timeout The number of seconds to wait for a server response before * failing with the {@link #failureType} as {@link #Action.CONNECT_FAILURE}. If not specified, * defaults to the configured {@link Ext.form.BasicForm#timeout timeout} of the * {@link Ext.form.BasicForm form}. */ /** * @cfg {Function} success The function to call when a valid success return packet is recieved. * The function is passed the following parameters:
      *
    • form : Ext.form.BasicForm
      The form that requested the action
      • *
    • action : Ext.form.Action
      The Action class. The {@link #result} * property of this object may be examined to perform custom postprocessing.
      • *
    */ /** * @cfg {Function} failure The function to call when a failure packet was recieved, or when an * error ocurred in the Ajax communication. * The function is passed the following parameters:
      *
    • form : Ext.form.BasicForm
      The form that requested the action
      • *
    • action : Ext.form.Action
      The Action class. If an Ajax * error ocurred, the failure type will be in {@link #failureType}. The {@link #result} * property of this object may be examined to perform custom postprocessing.
      • *
    */ /** * @cfg {Object} scope The scope in which to call the callback functions (The this reference * for the callback functions). */ /** * @cfg {String} waitMsg The message to be displayed by a call to {@link Ext.MessageBox#wait} * during the time the action is being processed. */ /** * @cfg {String} waitTitle The title to be displayed by a call to {@link Ext.MessageBox#wait} * during the time the action is being processed. */ /** * @cfg {Boolean} submitEmptyText If set to true, the emptyText value will be sent with the form * when it is submitted. Defaults to true. */ /** * The type of action this Action instance performs. * Currently only "submit" and "load" are supported. * @type {String} */ type : 'default', /** * The type of failure detected will be one of these: {@link #CLIENT_INVALID}, * {@link #SERVER_INVALID}, {@link #CONNECT_FAILURE}, or {@link #LOAD_FAILURE}. Usage: * 
    
var fp = new Ext.form.FormPanel({
...
buttons: [{
    text: 'Save',
    formBind: true,
    handler: function(){
        if(fp.getForm().isValid()){
            fp.getForm().submit({
                url: 'form-submit.php',
                waitMsg: 'Submitting your data...',
                success: function(form, action){
                    // server responded with success = true
                    var result = action.{@link #result};
                },
                failure: function(form, action){
                    if (action.{@link #failureType} === Ext.form.Action.{@link #CONNECT_FAILURE}) {
                        Ext.Msg.alert('Error',
                            'Status:'+action.{@link #response}.status+': '+
                            action.{@link #response}.statusText);
                    }
                    if (action.failureType === Ext.form.Action.{@link #SERVER_INVALID}){
                        // server responded with success = false
                        Ext.Msg.alert('Invalid', action.{@link #result}.errormsg);
                    }
                }
            });
        }
    }
},{
    text: 'Reset',
    handler: function(){
        fp.getForm().reset();
    }
}]
 *
    * @property failureType * @type {String} */ /** * The XMLHttpRequest object used to perform the action. * @property response * @type {Object} */ /** * The decoded response object containing a boolean success property and * other, action-specific properties. * @property result * @type {Object} */ // interface method run : function(options){ }, // interface method success : function(response){ }, // interface method handleResponse : function(response){ }, // default connection failure failure : function(response){ this.response = response; this.failureType = Ext.form.Action.CONNECT_FAILURE; this.form.afterAction(this, false); }, // private // shared code among all Actions to validate that there was a response // with either responseText or responseXml processResponse : function(response){ this.response = response; if(!response.responseText && !response.responseXML){ return true; } this.result = this.handleResponse(response); return this.result; }, decodeResponse: function(response) { try { return Ext.decode(response.responseText); } catch(e) { return false; } }, // utility functions used internally getUrl : function(appendParams){ var url = this.options.url || this.form.url || this.form.el.dom.action; if(appendParams){ var p = this.getParams(); if(p){ url = Ext.urlAppend(url, p); } } return url; }, // private getMethod : function(){ return (this.options.method || this.form.method || this.form.el.dom.method || 'POST').toUpperCase(); }, // private getParams : function(){ var bp = this.form.baseParams; var p = this.options.params; if(p){ if(typeof p == "object"){ p = Ext.urlEncode(Ext.applyIf(p, bp)); }else if(typeof p == 'string' && bp){ p += '&' + Ext.urlEncode(bp); } }else if(bp){ p = Ext.urlEncode(bp); } return p; }, // private createCallback : function(opts){ var opts = opts || {}; return { success: this.success, failure: this.failure, scope: this, timeout: (opts.timeout*1000) || (this.form.timeout*1000), upload: this.form.fileUpload ? this.success : undefined }; } }; /** * @class Ext.form.Action.Submit * @extends Ext.form.Action *

    A class which handles submission of data from {@link Ext.form.BasicForm Form}s * and processes the returned response.

    *

    Instances of this class are only created by a {@link Ext.form.BasicForm Form} when * {@link Ext.form.BasicForm#submit submit}ting.

    *

    Response Packet Criteria

    *

    A response packet may contain: *

      *
    • success property : Boolean *
      The success property is required.
      • *
    • errors property : Object *
      The errors property, * which is optional, contains error messages for invalid fields.
      • *
    *

    JSON Packets

    *

    By default, response packets are assumed to be JSON, so a typical response * packet may look like this:

    
{
    success: false,
    errors: {
        clientCode: "Client not found",
        portOfLoading: "This field must not be null"
    }
}
    *

    Other data may be placed into the response for processing by the {@link Ext.form.BasicForm}'s callback * or event handler methods. The object decoded from this JSON is available in the * {@link Ext.form.Action#result result} property.

    *

    Alternatively, if an {@link #errorReader} is specified as an {@link Ext.data.XmlReader XmlReader}:

    
    errorReader: new Ext.data.XmlReader({
            record : 'field',
            success: '@success'
        }, [
            'id', 'msg'
        ]
    )
    *

    then the results may be sent back in XML format:

    
<?xml version="1.0" encoding="UTF-8"?>
<message success="false">
<errors>
    <field>
        <id>clientCode</id>
        <msg><![CDATA[Code not found. <br /><i>This is a test validation message from the server </i>]]></msg>
    </field>
    <field>
        <id>portOfLoading</id>
        <msg><![CDATA[Port not found. <br /><i>This is a test validation message from the server </i>]]></msg>
    </field>
</errors>
</message>
    *

    Other elements may be placed into the response XML for processing by the {@link Ext.form.BasicForm}'s callback * or event handler methods. The XML document is available in the {@link #errorReader}'s {@link Ext.data.XmlReader#xmlData xmlData} property.

    */ Ext.form.Action.Submit = function(form, options){ Ext.form.Action.Submit.superclass.constructor.call(this, form, options); }; Ext.extend(Ext.form.Action.Submit, Ext.form.Action, { /** * @cfg {Ext.data.DataReader} errorReader

    Optional. JSON is interpreted with * no need for an errorReader.

    *

    A Reader which reads a single record from the returned data. The DataReader's * success property specifies how submission success is determined. The Record's * data provides the error messages to apply to any invalid form Fields.

    */ /** * @cfg {boolean} clientValidation Determines whether a Form's fields are validated * in a final call to {@link Ext.form.BasicForm#isValid isValid} prior to submission. * Pass false in the Form's submit options to prevent this. If not defined, pre-submission field validation * is performed. */ type : 'submit', // private run : function(){ var o = this.options, method = this.getMethod(), isGet = method == 'GET'; if(o.clientValidation === false || this.form.isValid()){ if (o.submitEmptyText === false) { var fields = this.form.items, emptyFields = [], setupEmptyFields = function(f){ if (f.el.getValue() == f.emptyText) { emptyFields.push(f); f.el.dom.value = ""; } if(f.isComposite && f.rendered){ f.items.each(setupEmptyFields); } }; fields.each(setupEmptyFields); } Ext.Ajax.request(Ext.apply(this.createCallback(o), { form:this.form.el.dom, url:this.getUrl(isGet), method: method, headers: o.headers, params:!isGet ? this.getParams() : null, isUpload: this.form.fileUpload })); if (o.submitEmptyText === false) { Ext.each(emptyFields, function(f) { if (f.applyEmptyText) { f.applyEmptyText(); } }); } }else if (o.clientValidation !== false){ // client validation failed this.failureType = Ext.form.Action.CLIENT_INVALID; this.form.afterAction(this, false); } }, // private success : function(response){ var result = this.processResponse(response); if(result === true || result.success){ this.form.afterAction(this, true); return; } if(result.errors){ this.form.markInvalid(result.errors); } this.failureType = Ext.form.Action.SERVER_INVALID; this.form.afterAction(this, false); }, // private handleResponse : function(response){ if(this.form.errorReader){ var rs = this.form.errorReader.read(response); var errors = []; if(rs.records){ for(var i = 0, len = rs.records.length; i < len; i++) { var r = rs.records[i]; errors[i] = r.data; } } if(errors.length < 1){ errors = null; } return { success : rs.success, errors : errors }; } return this.decodeResponse(response); } }); /** * @class Ext.form.Action.Load * @extends Ext.form.Action *

    A class which handles loading of data from a server into the Fields of an {@link Ext.form.BasicForm}.

    *

    Instances of this class are only created by a {@link Ext.form.BasicForm Form} when * {@link Ext.form.BasicForm#load load}ing.

    *

    Response Packet Criteria

    *

    A response packet must contain: *

      *
    • success property : Boolean
      • *
    • data property : Object
      • *
      The data property contains the values of Fields to load. * The individual value object for each Field is passed to the Field's * {@link Ext.form.Field#setValue setValue} method.
      *
    *

    JSON Packets

    *

    By default, response packets are assumed to be JSON, so for the following form load call:

    
var myFormPanel = new Ext.form.FormPanel({
    title: 'Client and routing info',
    items: [{
        fieldLabel: 'Client',
        name: 'clientName'
    }, {
        fieldLabel: 'Port of loading',
        name: 'portOfLoading'
    }, {
        fieldLabel: 'Port of discharge',
        name: 'portOfDischarge'
    }]
});
myFormPanel.{@link Ext.form.FormPanel#getForm getForm}().{@link Ext.form.BasicForm#load load}({
    url: '/getRoutingInfo.php',
    params: {
        consignmentRef: myConsignmentRef
    },
    failure: function(form, action) {
        Ext.Msg.alert("Load failed", action.result.errorMessage);
    }
});
    * a success response packet may look like this:

    
{
    success: true,
    data: {
        clientName: "Fred. Olsen Lines",
        portOfLoading: "FXT",
        portOfDischarge: "OSL"
    }
}
    * while a failure response packet may look like this:

    
{
    success: false,
    errorMessage: "Consignment reference not found"
}
    *

    Other data may be placed into the response for processing the {@link Ext.form.BasicForm Form}'s * callback or event handler methods. The object decoded from this JSON is available in the * {@link Ext.form.Action#result result} property.

    */ Ext.form.Action.Load = function(form, options){ Ext.form.Action.Load.superclass.constructor.call(this, form, options); this.reader = this.form.reader; }; Ext.extend(Ext.form.Action.Load, Ext.form.Action, { // private type : 'load', // private run : function(){ Ext.Ajax.request(Ext.apply( this.createCallback(this.options), { method:this.getMethod(), url:this.getUrl(false), headers: this.options.headers, params:this.getParams() })); }, // private success : function(response){ var result = this.processResponse(response); if(result === true || !result.success || !result.data){ this.failureType = Ext.form.Action.LOAD_FAILURE; this.form.afterAction(this, false); return; } this.form.clearInvalid(); this.form.setValues(result.data); this.form.afterAction(this, true); }, // private handleResponse : function(response){ if(this.form.reader){ var rs = this.form.reader.read(response); var data = rs.records && rs.records[0] ? rs.records[0].data : null; return { success : rs.success, data : data }; } return this.decodeResponse(response); } }); /** * @class Ext.form.Action.DirectLoad * @extends Ext.form.Action.Load *

    Provides Ext.direct support for loading form data.

    *

    This example illustrates usage of Ext.Direct to load a form through Ext.Direct.

    * 
    
var myFormPanel = new Ext.form.FormPanel({
    // configs for FormPanel
    title: 'Basic Information',
    renderTo: document.body,
    width: 300, height: 160,
    padding: 10,

    // configs apply to child items
    defaults: {anchor: '100%'},
    defaultType: 'textfield',
    items: [{
        fieldLabel: 'Name',
        name: 'name'
    },{
        fieldLabel: 'Email',
        name: 'email'
    },{
        fieldLabel: 'Company',
        name: 'company'
    }],

    // configs for BasicForm
    api: {
        // The server-side method to call for load() requests
        load: Profile.getBasicInfo,
        // The server-side must mark the submit handler as a 'formHandler'
        submit: Profile.updateBasicInfo
    },
    // specify the order for the passed params
    paramOrder: ['uid', 'foo']
});

// load the form
myFormPanel.getForm().load({
    // pass 2 arguments to server side getBasicInfo method (len=2)
    params: {
        foo: 'bar',
        uid: 34
    }
});
 *
    * The data packet sent to the server will resemble something like: * 
    
[
    {
        "action":"Profile","method":"getBasicInfo","type":"rpc","tid":2,
        "data":[34,"bar"] // note the order of the params
    }
]
 *
    * The form will process a data packet returned by the server that is similar * to the following format: * 
    
[
    {
        "action":"Profile","method":"getBasicInfo","type":"rpc","tid":2,
        "result":{
            "success":true,
            "data":{
                "name":"Fred Flintstone",
                "company":"Slate Rock and Gravel",
                "email":"fred.flintstone@slaterg.com"
            }
        }
    }
]
 *
    */ Ext.form.Action.DirectLoad = Ext.extend(Ext.form.Action.Load, { constructor: function(form, opts) { Ext.form.Action.DirectLoad.superclass.constructor.call(this, form, opts); }, type : 'directload', run : function(){ var args = this.getParams(); args.push(this.success, this); this.form.api.load.apply(window, args); }, getParams : function() { var buf = [], o = {}; var bp = this.form.baseParams; var p = this.options.params; Ext.apply(o, p, bp); var paramOrder = this.form.paramOrder; if(paramOrder){ for(var i = 0, len = paramOrder.length; i < len; i++){ buf.push(o[paramOrder[i]]); } }else if(this.form.paramsAsHash){ buf.push(o); } return buf; }, // Direct actions have already been processed and therefore // we can directly set the result; Direct Actions do not have // a this.response property. processResponse : function(result) { this.result = result; return result; }, success : function(response, trans){ if(trans.type == Ext.Direct.exceptions.SERVER){ response = {}; } Ext.form.Action.DirectLoad.superclass.success.call(this, response); } }); /** * @class Ext.form.Action.DirectSubmit * @extends Ext.form.Action.Submit *

    Provides Ext.direct support for submitting form data.

    *

    This example illustrates usage of Ext.Direct to submit a form through Ext.Direct.

    * 
    
var myFormPanel = new Ext.form.FormPanel({
    // configs for FormPanel
    title: 'Basic Information',
    renderTo: document.body,
    width: 300, height: 160,
    padding: 10,
    buttons:[{
        text: 'Submit',
        handler: function(){
            myFormPanel.getForm().submit({
                params: {
                    foo: 'bar',
                    uid: 34
                }
            });
        }
    }],

    // configs apply to child items
    defaults: {anchor: '100%'},
    defaultType: 'textfield',
    items: [{
        fieldLabel: 'Name',
        name: 'name'
    },{
        fieldLabel: 'Email',
        name: 'email'
    },{
        fieldLabel: 'Company',
        name: 'company'
    }],

    // configs for BasicForm
    api: {
        // The server-side method to call for load() requests
        load: Profile.getBasicInfo,
        // The server-side must mark the submit handler as a 'formHandler'
        submit: Profile.updateBasicInfo
    },
    // specify the order for the passed params
    paramOrder: ['uid', 'foo']
});
 *
    * The data packet sent to the server will resemble something like: * 
    
{
    "action":"Profile","method":"updateBasicInfo","type":"rpc","tid":"6",
    "result":{
        "success":true,
        "id":{
            "extAction":"Profile","extMethod":"updateBasicInfo",
            "extType":"rpc","extTID":"6","extUpload":"false",
            "name":"Aaron Conran","email":"aaron@extjs.com","company":"Ext JS, LLC"
        }
    }
}
 *
    * The form will process a data packet returned by the server that is similar * to the following: * 
    
// sample success packet (batched requests)
[
    {
        "action":"Profile","method":"updateBasicInfo","type":"rpc","tid":3,
        "result":{
            "success":true
        }
    }
]

// sample failure packet (one request)
{
        "action":"Profile","method":"updateBasicInfo","type":"rpc","tid":"6",
        "result":{
            "errors":{
                "email":"already taken"
            },
            "success":false,
            "foo":"bar"
        }
}
 *
    * Also see the discussion in {@link Ext.form.Action.DirectLoad}. */ Ext.form.Action.DirectSubmit = Ext.extend(Ext.form.Action.Submit, { constructor : function(form, opts) { Ext.form.Action.DirectSubmit.superclass.constructor.call(this, form, opts); }, type : 'directsubmit', // override of Submit run : function(){ var o = this.options; if(o.clientValidation === false || this.form.isValid()){ // tag on any additional params to be posted in the // form scope this.success.params = this.getParams(); this.form.api.submit(this.form.el.dom, this.success, this); }else if (o.clientValidation !== false){ // client validation failed this.failureType = Ext.form.Action.CLIENT_INVALID; this.form.afterAction(this, false); } }, getParams : function() { var o = {}; var bp = this.form.baseParams; var p = this.options.params; Ext.apply(o, p, bp); return o; }, // Direct actions have already been processed and therefore // we can directly set the result; Direct Actions do not have // a this.response property. processResponse : function(result) { this.result = result; return result; }, success : function(response, trans){ if(trans.type == Ext.Direct.exceptions.SERVER){ response = {}; } Ext.form.Action.DirectSubmit.superclass.success.call(this, response); } }); Ext.form.Action.ACTION_TYPES = { 'load' : Ext.form.Action.Load, 'submit' : Ext.form.Action.Submit, 'directload' : Ext.form.Action.DirectLoad, 'directsubmit' : Ext.form.Action.DirectSubmit }; /** * @class Ext.form.VTypes *

    This is a singleton object which contains a set of commonly used field validation functions. * The validations provided are basic and intended to be easily customizable and extended.

    *

    To add custom VTypes specify the {@link Ext.form.TextField#vtype vtype} validation * test function, and optionally specify any corresponding error text to display and any keystroke * filtering mask to apply. For example:

    * 
    
// custom Vtype for vtype:'time'
var timeTest = /^([1-9]|1[0-9]):([0-5][0-9])(\s[a|p]m)$/i;
Ext.apply(Ext.form.VTypes, {
    //  vtype validation function
    time: function(val, field) {
        return timeTest.test(val);
    },
    // vtype Text property: The error text to display when the validation function returns false
    timeText: 'Not a valid time.  Must be in the format "12:34 PM".',
    // vtype Mask property: The keystroke filter mask
    timeMask: /[\d\s:amp]/i
});
 *
    * Another example: * 
    
// custom Vtype for vtype:'IPAddress'
Ext.apply(Ext.form.VTypes, {
    IPAddress:  function(v) {
        return /^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$/.test(v);
    },
    IPAddressText: 'Must be a numeric IP address',
    IPAddressMask: /[\d\.]/i
});
 *
    * @singleton */ Ext.form.VTypes = function(){ // closure these in so they are only created once. var alpha = /^[a-zA-Z_]+$/, alphanum = /^[a-zA-Z0-9_]+$/, email = /^(\w+)([\-+.\'][\w]+)*@(\w[\-\w]*\.){1,5}([A-Za-z]){2,6}$/, url = /(((^https?)|(^ftp)):\/\/([\-\w]+\.)+\w{2,3}(\/[%\-\w]+(\.\w{2,})?)*(([\w\-\.\?\\\/+@&#;`~=%!]*)(\.\w{2,})?)*\/?)/i; // All these messages and functions are configurable return { /** * The function used to validate email addresses. Note that this is a very basic validation -- complete * validation per the email RFC specifications is very complex and beyond the scope of this class, although * this function can be overridden if a more comprehensive validation scheme is desired. See the validation * section of the Wikipedia article on email addresses * for additional information. This implementation is intended to validate the following emails: * 'barney@example.de', 'barney.rubble@example.com', 'barney-rubble@example.coop', 'barney+rubble@example.com' * . * @param {String} value The email address * @return {Boolean} true if the RegExp test passed, and false if not. */ 'email' : function(v){ return email.test(v); }, /** * The error text to display when the email validation function returns false. Defaults to: * 'This field should be an e-mail address in the format "user@example.com"' * @type String */ 'emailText' : 'This field should be an e-mail address in the format "user@example.com"', /** * The keystroke filter mask to be applied on email input. See the {@link #email} method for * information about more complex email validation. Defaults to: * /[a-z0-9_\.\-\+\'@]/i * @type RegExp */ 'emailMask' : /[a-z0-9_\.\-\+\'@]/i, /** * The function used to validate URLs * @param {String} value The URL * @return {Boolean} true if the RegExp test passed, and false if not. */ 'url' : function(v){ return url.test(v); }, /** * The error text to display when the url validation function returns false. Defaults to: * 'This field should be a URL in the format "http:/'+'/www.example.com"' * @type String */ 'urlText' : 'This field should be a URL in the format "http:/'+'/www.example.com"', /** * The function used to validate alpha values * @param {String} value The value * @return {Boolean} true if the RegExp test passed, and false if not. */ 'alpha' : function(v){ return alpha.test(v); }, /** * The error text to display when the alpha validation function returns false. Defaults to: * 'This field should only contain letters and _' * @type String */ 'alphaText' : 'This field should only contain letters and _', /** * The keystroke filter mask to be applied on alpha input. Defaults to: * /[a-z_]/i * @type RegExp */ 'alphaMask' : /[a-z_]/i, /** * The function used to validate alphanumeric values * @param {String} value The value * @return {Boolean} true if the RegExp test passed, and false if not. */ 'alphanum' : function(v){ return alphanum.test(v); }, /** * The error text to display when the alphanumeric validation function returns false. Defaults to: * 'This field should only contain letters, numbers and _' * @type String */ 'alphanumText' : 'This field should only contain letters, numbers and _', /** * The keystroke filter mask to be applied on alphanumeric input. Defaults to: * /[a-z0-9_]/i * @type RegExp */ 'alphanumMask' : /[a-z0-9_]/i }; }(); /** * @class Ext.grid.GridPanel * @extends Ext.Panel *

    This class represents the primary interface of a component based grid control to represent data * in a tabular format of rows and columns. The GridPanel is composed of the following:

    *
      *
    • {@link Ext.data.Store Store} : The Model holding the data records (rows) *
      • *
    • {@link Ext.grid.ColumnModel Column model} : Column makeup *
      • *
    • {@link Ext.grid.GridView View} : Encapsulates the user interface *
      • *
    • {@link Ext.grid.AbstractSelectionModel selection model} : Selection behavior *
      • *
    *

    Example usage:

    * 
    
var grid = new Ext.grid.GridPanel({
    {@link #store}: new {@link Ext.data.Store}({
        {@link Ext.data.Store#autoDestroy autoDestroy}: true,
        {@link Ext.data.Store#reader reader}: reader,
        {@link Ext.data.Store#data data}: xg.dummyData
    }),
    {@link #colModel}: new {@link Ext.grid.ColumnModel}({
        {@link Ext.grid.ColumnModel#defaults defaults}: {
            width: 120,
            sortable: true
        },
        {@link Ext.grid.ColumnModel#columns columns}: [
            {id: 'company', header: 'Company', width: 200, sortable: true, dataIndex: 'company'},
            {header: 'Price', renderer: Ext.util.Format.usMoney, dataIndex: 'price'},
            {header: 'Change', dataIndex: 'change'},
            {header: '% Change', dataIndex: 'pctChange'},
            // instead of specifying renderer: Ext.util.Format.dateRenderer('m/d/Y') use xtype
            {
                header: 'Last Updated', width: 135, dataIndex: 'lastChange',
                xtype: 'datecolumn', format: 'M d, Y'
            }
        ]
    }),
    {@link #viewConfig}: {
        {@link Ext.grid.GridView#forceFit forceFit}: true,

//      Return CSS class to apply to rows depending upon data values
        {@link Ext.grid.GridView#getRowClass getRowClass}: function(record, index) {
            var c = record.{@link Ext.data.Record#get get}('change');
            if (c < 0) {
                return 'price-fall';
            } else if (c > 0) {
                return 'price-rise';
            }
        }
    },
    {@link #sm}: new Ext.grid.RowSelectionModel({singleSelect:true}),
    width: 600,
    height: 300,
    frame: true,
    title: 'Framed with Row Selection and Horizontal Scrolling',
    iconCls: 'icon-grid'
});
 *
    *

    Notes:

    *
      *
    • Although this class inherits many configuration options from base classes, some of them * (such as autoScroll, autoWidth, layout, items, etc) are not used by this class, and will * have no effect.
      • *
    • A grid requires a width in which to scroll its columns, and a height in which to * scroll its rows. These dimensions can either be set explicitly through the * {@link Ext.BoxComponent#height height} and {@link Ext.BoxComponent#width width} * configuration options or implicitly set by using the grid as a child item of a * {@link Ext.Container Container} which will have a {@link Ext.Container#layout layout manager} * provide the sizing of its child items (for example the Container of the Grid may specify * {@link Ext.Container#layout layout}:'fit').
      • *
    • To access the data in a Grid, it is necessary to use the data model encapsulated * by the {@link #store Store}. See the {@link #cellclick} event for more details.
      • *
    * @constructor * @param {Object} config The config object * @xtype grid */ Ext.grid.GridPanel = Ext.extend(Ext.Panel, { /** * @cfg {String} autoExpandColumn *

    The {@link Ext.grid.Column#id id} of a {@link Ext.grid.Column column} in * this grid that should expand to fill unused space. This value specified here can not * be 0.

    *

    Note: If the Grid's {@link Ext.grid.GridView view} is configured with * {@link Ext.grid.GridView#forceFit forceFit}=true the autoExpandColumn * is ignored. See {@link Ext.grid.Column}.{@link Ext.grid.Column#width width} * for additional details.

    *

    See {@link #autoExpandMax} and {@link #autoExpandMin} also.

    */ autoExpandColumn : false, /** * @cfg {Number} autoExpandMax The maximum width the {@link #autoExpandColumn} * can have (if enabled). Defaults to 1000. */ autoExpandMax : 1000, /** * @cfg {Number} autoExpandMin The minimum width the {@link #autoExpandColumn} * can have (if enabled). Defaults to 50. */ autoExpandMin : 50, /** * @cfg {Boolean} columnLines true to add css for column separation lines. * Default is false. */ columnLines : false, /** * @cfg {Object} cm Shorthand for {@link #colModel}. */ /** * @cfg {Object} colModel The {@link Ext.grid.ColumnModel} to use when rendering the grid (required). */ /** * @cfg {Array} columns An array of {@link Ext.grid.Column columns} to auto create a * {@link Ext.grid.ColumnModel}. The ColumnModel may be explicitly created via the * {@link #colModel} configuration property. */ /** * @cfg {String} ddGroup The DD group this GridPanel belongs to. Defaults to 'GridDD' if not specified. */ /** * @cfg {String} ddText * Configures the text in the drag proxy. Defaults to: * 
    
     * ddText : '{0} selected row{1}'
     *
    * {0} is replaced with the number of selected rows. */ ddText : '{0} selected row{1}', /** * @cfg {Boolean} dragCell Defaults to false. If using {@link #enableDragDrop} with a CellSelectionModel, * set this to true to have the {@link #getView view}'s {@link Ext.grid.GridView#dragZone dragZone}'s getDragData * method reference the selected cell using [rowIndex, cellIndex] */ /** * @cfg {Boolean} deferRowRender

    Defaults to true to enable deferred row rendering.

    *

    This allows the GridPanel to be initially rendered empty, with the expensive update of the row * structure deferred so that layouts with GridPanels appear more quickly.

    */ deferRowRender : true, /** * @cfg {Boolean} disableSelection

    true to disable selections in the grid. Defaults to false.

    *

    Ignored if a {@link #selModel SelectionModel} is specified.

    */ /** * @cfg {Boolean} enableColumnResize false to turn off column resizing for the whole grid. Defaults to true. */ /** * @cfg {Boolean} enableColumnHide * Defaults to true to enable {@link Ext.grid.Column#hidden hiding of columns} * with the {@link #enableHdMenu header menu}. */ enableColumnHide : true, /** * @cfg {Boolean} enableColumnMove Defaults to true to enable drag and drop reorder of columns. false * to turn off column reordering via drag drop. */ enableColumnMove : true, /** * @cfg {Boolean} enableDragDrop

    Enables dragging of the selected rows of the GridPanel. Defaults to false.

    *

    Setting this to true causes this GridPanel's {@link #getView GridView} to * create an instance of {@link Ext.grid.GridDragZone}. Note: this is available only after * the Grid has been rendered as the GridView's {@link Ext.grid.GridView#dragZone dragZone} * property.

    *

    A cooperating {@link Ext.dd.DropZone DropZone} must be created who's implementations of * {@link Ext.dd.DropZone#onNodeEnter onNodeEnter}, {@link Ext.dd.DropZone#onNodeOver onNodeOver}, * {@link Ext.dd.DropZone#onNodeOut onNodeOut} and {@link Ext.dd.DropZone#onNodeDrop onNodeDrop} are able * to process the {@link Ext.grid.GridDragZone#getDragData data} which is provided.

    */ enableDragDrop : false, /** * @cfg {Boolean} enableHdMenu Defaults to true to enable the drop down button for menu in the headers. */ enableHdMenu : true, /** * @cfg {Boolean} hideHeaders True to hide the grid's header. Defaults to false. */ /** * @cfg {Object} loadMask An {@link Ext.LoadMask} config or true to mask the grid while * loading. Defaults to false. */ loadMask : false, /** * @cfg {Number} maxHeight Sets the maximum height of the grid - ignored if autoHeight is not on. */ /** * @cfg {Number} minColumnWidth The minimum width a column can be resized to. Defaults to 25. */ minColumnWidth : 25, /** * @cfg {Object} sm Shorthand for {@link #selModel}. */ /** * @cfg {Object} selModel Any subclass of {@link Ext.grid.AbstractSelectionModel} that will provide * the selection model for the grid (defaults to {@link Ext.grid.RowSelectionModel} if not specified). */ /** * @cfg {Ext.data.Store} store The {@link Ext.data.Store} the grid should use as its data source (required). */ /** * @cfg {Boolean} stripeRows true to stripe the rows. Default is false. *

    This causes the CSS class x-grid3-row-alt to be added to alternate rows of * the grid. A default CSS rule is provided which sets a background colour, but you can override this * with a rule which either overrides the background-color style using the '!important' * modifier, or which uses a CSS selector of higher specificity.

    */ stripeRows : false, /** * @cfg {Boolean} trackMouseOver True to highlight rows when the mouse is over. Default is true * for GridPanel, but false for EditorGridPanel. */ trackMouseOver : true, /** * @cfg {Array} stateEvents * An array of events that, when fired, should trigger this component to save its state. * Defaults to:
    
     * stateEvents: ['columnmove', 'columnresize', 'sortchange', 'groupchange']
     *
    *

    These can be any types of events supported by this component, including browser or * custom events (e.g., ['click', 'customerchange']).

    *

    See {@link Ext.Component#stateful} for an explanation of saving and restoring * Component state.

    */ stateEvents : ['columnmove', 'columnresize', 'sortchange', 'groupchange'], /** * @cfg {Object} view The {@link Ext.grid.GridView} used by the grid. This can be set * before a call to {@link Ext.Component#render render()}. */ view : null, /** * @cfg {Array} bubbleEvents *

    An array of events that, when fired, should be bubbled to any parent container. * See {@link Ext.util.Observable#enableBubble}. * Defaults to []. */ bubbleEvents: [], /** * @cfg {Object} viewConfig A config object that will be applied to the grid's UI view. Any of * the config options available for {@link Ext.grid.GridView} can be specified here. This option * is ignored if {@link #view} is specified. */ // private rendered : false, // private viewReady : false, // private initComponent : function() { Ext.grid.GridPanel.superclass.initComponent.call(this); if (this.columnLines) { this.cls = (this.cls || '') + ' x-grid-with-col-lines'; } // override any provided value since it isn't valid // and is causing too many bug reports ;) this.autoScroll = false; this.autoWidth = false; if(Ext.isArray(this.columns)){ this.colModel = new Ext.grid.ColumnModel(this.columns); delete this.columns; } // check and correct shorthanded configs if(this.ds){ this.store = this.ds; delete this.ds; } if(this.cm){ this.colModel = this.cm; delete this.cm; } if(this.sm){ this.selModel = this.sm; delete this.sm; } this.store = Ext.StoreMgr.lookup(this.store); this.addEvents( // raw events /** * @event click * The raw click event for the entire grid. * @param {Ext.EventObject} e */ 'click', /** * @event dblclick * The raw dblclick event for the entire grid. * @param {Ext.EventObject} e */ 'dblclick', /** * @event contextmenu * The raw contextmenu event for the entire grid. * @param {Ext.EventObject} e */ 'contextmenu', /** * @event mousedown * The raw mousedown event for the entire grid. * @param {Ext.EventObject} e */ 'mousedown', /** * @event mouseup * The raw mouseup event for the entire grid. * @param {Ext.EventObject} e */ 'mouseup', /** * @event mouseover * The raw mouseover event for the entire grid. * @param {Ext.EventObject} e */ 'mouseover', /** * @event mouseout * The raw mouseout event for the entire grid. * @param {Ext.EventObject} e */ 'mouseout', /** * @event keypress * The raw keypress event for the entire grid. * @param {Ext.EventObject} e */ 'keypress', /** * @event keydown * The raw keydown event for the entire grid. * @param {Ext.EventObject} e */ 'keydown', // custom events /** * @event cellmousedown * Fires before a cell is clicked * @param {Grid} this * @param {Number} rowIndex * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'cellmousedown', /** * @event rowmousedown * Fires before a row is clicked * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowmousedown', /** * @event headermousedown * Fires before a header is clicked * @param {Grid} this * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'headermousedown', /** * @event groupmousedown * Fires before a group header is clicked. Only applies for grids with a {@link Ext.grid.GroupingView GroupingView}. * @param {Grid} this * @param {String} groupField * @param {String} groupValue * @param {Ext.EventObject} e */ 'groupmousedown', /** * @event rowbodymousedown * Fires before the row body is clicked. Only applies for grids with {@link Ext.grid.GridView#enableRowBody enableRowBody} configured. * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowbodymousedown', /** * @event containermousedown * Fires before the container is clicked. The container consists of any part of the grid body that is not covered by a row. * @param {Grid} this * @param {Ext.EventObject} e */ 'containermousedown', /** * @event cellclick * Fires when a cell is clicked. * The data for the cell is drawn from the {@link Ext.data.Record Record} * for this row. To access the data in the listener function use the * following technique: * 

    
function(grid, rowIndex, columnIndex, e) {
    var record = grid.getStore().getAt(rowIndex);  // Get the Record
    var fieldName = grid.getColumnModel().getDataIndex(columnIndex); // Get field name
    var data = record.get(fieldName);
}
    * @param {Grid} this * @param {Number} rowIndex * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'cellclick', /** * @event celldblclick * Fires when a cell is double clicked * @param {Grid} this * @param {Number} rowIndex * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'celldblclick', /** * @event rowclick * Fires when a row is clicked * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowclick', /** * @event rowdblclick * Fires when a row is double clicked * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowdblclick', /** * @event headerclick * Fires when a header is clicked * @param {Grid} this * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'headerclick', /** * @event headerdblclick * Fires when a header cell is double clicked * @param {Grid} this * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'headerdblclick', /** * @event groupclick * Fires when group header is clicked. Only applies for grids with a {@link Ext.grid.GroupingView GroupingView}. * @param {Grid} this * @param {String} groupField * @param {String} groupValue * @param {Ext.EventObject} e */ 'groupclick', /** * @event groupdblclick * Fires when group header is double clicked. Only applies for grids with a {@link Ext.grid.GroupingView GroupingView}. * @param {Grid} this * @param {String} groupField * @param {String} groupValue * @param {Ext.EventObject} e */ 'groupdblclick', /** * @event containerclick * Fires when the container is clicked. The container consists of any part of the grid body that is not covered by a row. * @param {Grid} this * @param {Ext.EventObject} e */ 'containerclick', /** * @event containerdblclick * Fires when the container is double clicked. The container consists of any part of the grid body that is not covered by a row. * @param {Grid} this * @param {Ext.EventObject} e */ 'containerdblclick', /** * @event rowbodyclick * Fires when the row body is clicked. Only applies for grids with {@link Ext.grid.GridView#enableRowBody enableRowBody} configured. * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowbodyclick', /** * @event rowbodydblclick * Fires when the row body is double clicked. Only applies for grids with {@link Ext.grid.GridView#enableRowBody enableRowBody} configured. * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowbodydblclick', /** * @event rowcontextmenu * Fires when a row is right clicked * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowcontextmenu', /** * @event cellcontextmenu * Fires when a cell is right clicked * @param {Grid} this * @param {Number} rowIndex * @param {Number} cellIndex * @param {Ext.EventObject} e */ 'cellcontextmenu', /** * @event headercontextmenu * Fires when a header is right clicked * @param {Grid} this * @param {Number} columnIndex * @param {Ext.EventObject} e */ 'headercontextmenu', /** * @event groupcontextmenu * Fires when group header is right clicked. Only applies for grids with a {@link Ext.grid.GroupingView GroupingView}. * @param {Grid} this * @param {String} groupField * @param {String} groupValue * @param {Ext.EventObject} e */ 'groupcontextmenu', /** * @event containercontextmenu * Fires when the container is right clicked. The container consists of any part of the grid body that is not covered by a row. * @param {Grid} this * @param {Ext.EventObject} e */ 'containercontextmenu', /** * @event rowbodycontextmenu * Fires when the row body is right clicked. Only applies for grids with {@link Ext.grid.GridView#enableRowBody enableRowBody} configured. * @param {Grid} this * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'rowbodycontextmenu', /** * @event bodyscroll * Fires when the body element is scrolled * @param {Number} scrollLeft * @param {Number} scrollTop */ 'bodyscroll', /** * @event columnresize * Fires when the user resizes a column * @param {Number} columnIndex * @param {Number} newSize */ 'columnresize', /** * @event columnmove * Fires when the user moves a column * @param {Number} oldIndex * @param {Number} newIndex */ 'columnmove', /** * @event sortchange * Fires when the grid's store sort changes * @param {Grid} this * @param {Object} sortInfo An object with the keys field and direction */ 'sortchange', /** * @event groupchange * Fires when the grid's grouping changes (only applies for grids with a {@link Ext.grid.GroupingView GroupingView}) * @param {Grid} this * @param {String} groupField A string with the grouping field, null if the store is not grouped. */ 'groupchange', /** * @event reconfigure * Fires when the grid is reconfigured with a new store and/or column model. * @param {Grid} this * @param {Ext.data.Store} store The new store * @param {Ext.grid.ColumnModel} colModel The new column model */ 'reconfigure', /** * @event viewready * Fires when the grid view is available (use this for selecting a default row). * @param {Grid} this */ 'viewready' ); }, // private onRender : function(ct, position){ Ext.grid.GridPanel.superclass.onRender.apply(this, arguments); var c = this.getGridEl(); this.el.addClass('x-grid-panel'); this.mon(c, { scope: this, mousedown: this.onMouseDown, click: this.onClick, dblclick: this.onDblClick, contextmenu: this.onContextMenu }); this.relayEvents(c, ['mousedown','mouseup','mouseover','mouseout','keypress', 'keydown']); var view = this.getView(); view.init(this); view.render(); this.getSelectionModel().init(this); }, // private initEvents : function(){ Ext.grid.GridPanel.superclass.initEvents.call(this); if(this.loadMask){ this.loadMask = new Ext.LoadMask(this.bwrap, Ext.apply({store:this.store}, this.loadMask)); } }, initStateEvents : function(){ Ext.grid.GridPanel.superclass.initStateEvents.call(this); this.mon(this.colModel, 'hiddenchange', this.saveState, this, {delay: 100}); }, applyState : function(state){ var cm = this.colModel, cs = state.columns, store = this.store, s, c, colIndex; if(cs){ for(var i = 0, len = cs.length; i < len; i++){ s = cs[i]; c = cm.getColumnById(s.id); if(c){ colIndex = cm.getIndexById(s.id); cm.setState(colIndex, { hidden: s.hidden, width: s.width, sortable: c.sortable, editable: c.editable }); if(colIndex != i){ cm.moveColumn(colIndex, i); } } } } if(store){ s = state.sort; if(s){ store[store.remoteSort ? 'setDefaultSort' : 'sort'](s.field, s.direction); } s = state.group; if(store.groupBy){ if(s){ store.groupBy(s); }else{ store.clearGrouping(); } } } var o = Ext.apply({}, state); delete o.columns; delete o.sort; Ext.grid.GridPanel.superclass.applyState.call(this, o); }, getState : function(){ var o = {columns: []}, store = this.store, ss, gs; for(var i = 0, c; (c = this.colModel.config[i]); i++){ o.columns[i] = { id: c.id, width: c.width }; if(c.hidden){ o.columns[i].hidden = true; } } if(store){ ss = store.getSortState(); if(ss){ o.sort = ss; } if(store.getGroupState){ gs = store.getGroupState(); if(gs){ o.group = gs; } } } return o; }, // private afterRender : function(){ Ext.grid.GridPanel.superclass.afterRender.call(this); var v = this.view; this.on('bodyresize', v.layout, v); v.layout(true); if(this.deferRowRender){ if (!this.deferRowRenderTask){ this.deferRowRenderTask = new Ext.util.DelayedTask(v.afterRender, this.view); } this.deferRowRenderTask.delay(10); }else{ v.afterRender(); } this.viewReady = true; }, /** *

    Reconfigures the grid to use a different Store and Column Model * and fires the 'reconfigure' event. The View will be bound to the new * objects and refreshed.

    *

    Be aware that upon reconfiguring a GridPanel, certain existing settings may become * invalidated. For example the configured {@link #autoExpandColumn} may no longer exist in the * new ColumnModel. Also, an existing {@link Ext.PagingToolbar PagingToolbar} will still be bound * to the old Store, and will need rebinding. Any {@link #plugins} might also need reconfiguring * with the new data.

    * @param {Ext.data.Store} store The new {@link Ext.data.Store} object * @param {Ext.grid.ColumnModel} colModel The new {@link Ext.grid.ColumnModel} object */ reconfigure : function(store, colModel){ var rendered = this.rendered; if(rendered){ if(this.loadMask){ this.loadMask.destroy(); this.loadMask = new Ext.LoadMask(this.bwrap, Ext.apply({}, {store:store}, this.initialConfig.loadMask)); } } if(this.view){ this.view.initData(store, colModel); } this.store = store; this.colModel = colModel; if(rendered){ this.view.refresh(true); } this.fireEvent('reconfigure', this, store, colModel); }, // private onDestroy : function(){ if (this.deferRowRenderTask && this.deferRowRenderTask.cancel){ this.deferRowRenderTask.cancel(); } if(this.rendered){ Ext.destroy(this.view, this.loadMask); }else if(this.store && this.store.autoDestroy){ this.store.destroy(); } Ext.destroy(this.colModel, this.selModel); this.store = this.selModel = this.colModel = this.view = this.loadMask = null; Ext.grid.GridPanel.superclass.onDestroy.call(this); }, // private processEvent : function(name, e){ this.view.processEvent(name, e); }, // private onClick : function(e){ this.processEvent('click', e); }, // private onMouseDown : function(e){ this.processEvent('mousedown', e); }, // private onContextMenu : function(e, t){ this.processEvent('contextmenu', e); }, // private onDblClick : function(e){ this.processEvent('dblclick', e); }, // private walkCells : function(row, col, step, fn, scope){ var cm = this.colModel, clen = cm.getColumnCount(), ds = this.store, rlen = ds.getCount(), first = true; if(step < 0){ if(col < 0){ row--; first = false; } while(row >= 0){ if(!first){ col = clen-1; } first = false; while(col >= 0){ if(fn.call(scope || this, row, col, cm) === true){ return [row, col]; } col--; } row--; } } else { if(col >= clen){ row++; first = false; } while(row < rlen){ if(!first){ col = 0; } first = false; while(col < clen){ if(fn.call(scope || this, row, col, cm) === true){ return [row, col]; } col++; } row++; } } return null; }, /** * Returns the grid's underlying element. * @return {Element} The element */ getGridEl : function(){ return this.body; }, // private for compatibility, overridden by editor grid stopEditing : Ext.emptyFn, /** * Returns the grid's selection model configured by the {@link #selModel} * configuration option. If no selection model was configured, this will create * and return a {@link Ext.grid.RowSelectionModel RowSelectionModel}. * @return {SelectionModel} */ getSelectionModel : function(){ if(!this.selModel){ this.selModel = new Ext.grid.RowSelectionModel( this.disableSelection ? {selectRow: Ext.emptyFn} : null); } return this.selModel; }, /** * Returns the grid's data store. * @return {Ext.data.Store} The store */ getStore : function(){ return this.store; }, /** * Returns the grid's ColumnModel. * @return {Ext.grid.ColumnModel} The column model */ getColumnModel : function(){ return this.colModel; }, /** * Returns the grid's GridView object. * @return {Ext.grid.GridView} The grid view */ getView : function() { if (!this.view) { this.view = new Ext.grid.GridView(this.viewConfig); } return this.view; }, /** * Called to get grid's drag proxy text, by default returns this.ddText. * @return {String} The text */ getDragDropText : function(){ var count = this.selModel.getCount ? this.selModel.getCount() : 1; return String.format(this.ddText, count, count == 1 ? '' : 's'); } /** * @cfg {String/Number} activeItem * @hide */ /** * @cfg {Boolean} autoDestroy * @hide */ /** * @cfg {Object/String/Function} autoLoad * @hide */ /** * @cfg {Boolean} autoWidth * @hide */ /** * @cfg {Boolean/Number} bufferResize * @hide */ /** * @cfg {String} defaultType * @hide */ /** * @cfg {Object} defaults * @hide */ /** * @cfg {Boolean} hideBorders * @hide */ /** * @cfg {Mixed} items * @hide */ /** * @cfg {String} layout * @hide */ /** * @cfg {Object} layoutConfig * @hide */ /** * @cfg {Boolean} monitorResize * @hide */ /** * @property items * @hide */ /** * @method add * @hide */ /** * @method cascade * @hide */ /** * @method doLayout * @hide */ /** * @method find * @hide */ /** * @method findBy * @hide */ /** * @method findById * @hide */ /** * @method findByType * @hide */ /** * @method getComponent * @hide */ /** * @method getLayout * @hide */ /** * @method getUpdater * @hide */ /** * @method insert * @hide */ /** * @method load * @hide */ /** * @method remove * @hide */ /** * @event add * @hide */ /** * @event afterlayout * @hide */ /** * @event beforeadd * @hide */ /** * @event beforeremove * @hide */ /** * @event remove * @hide */ /** * @cfg {String} allowDomMove @hide */ /** * @cfg {String} autoEl @hide */ /** * @cfg {String} applyTo @hide */ /** * @cfg {String} autoScroll @hide */ /** * @cfg {String} bodyBorder @hide */ /** * @cfg {String} bodyStyle @hide */ /** * @cfg {String} contentEl @hide */ /** * @cfg {String} disabledClass @hide */ /** * @cfg {String} elements @hide */ /** * @cfg {String} html @hide */ /** * @cfg {Boolean} preventBodyReset * @hide */ /** * @property disabled * @hide */ /** * @method applyToMarkup * @hide */ /** * @method enable * @hide */ /** * @method disable * @hide */ /** * @method setDisabled * @hide */ }); Ext.reg('grid', Ext.grid.GridPanel);/** * @class Ext.grid.PivotGrid * @extends Ext.grid.GridPanel *

    The PivotGrid component enables rapid summarization of large data sets. It provides a way to reduce a large set of * data down into a format where trends and insights become more apparent. A classic example is in sales data; a company * will often have a record of all sales it makes for a given period - this will often encompass thousands of rows of * data. The PivotGrid allows you to see how well each salesperson performed, which cities generate the most revenue, * how products perform between cities and so on.

    *

    A PivotGrid is composed of two axes (left and top), one {@link #measure} and one {@link #aggregator aggregation} * function. Each axis can contain one or more {@link #dimension}, which are ordered into a hierarchy. Dimensions on the * left axis can also specify a width. Each dimension in each axis can specify its sort ordering, defaulting to "ASC", * and must specify one of the fields in the {@link Ext.data.Record Record} used by the PivotGrid's * {@link Ext.data.Store Store}.

    
// This is the record representing a single sale
var SaleRecord = Ext.data.Record.create([
    {name: 'person',   type: 'string'},
    {name: 'product',  type: 'string'},
    {name: 'city',     type: 'string'},
    {name: 'state',    type: 'string'},
    {name: 'year',     type: 'int'},
    {name: 'value',    type: 'int'}
]);

// A simple store that loads SaleRecord data from a url
var myStore = new Ext.data.Store({
    url: 'data.json',
    autoLoad: true,
    reader: new Ext.data.JsonReader({
        root: 'rows',
        idProperty: 'id'
    }, SaleRecord)
});

// Create the PivotGrid itself, referencing the store
var pivot = new Ext.grid.PivotGrid({
    store     : myStore,
    aggregator: 'sum',
    measure   : 'value',

    leftAxis: [
        {
            width: 60,
            dataIndex: 'product'
        },
        {
            width: 120,
            dataIndex: 'person',
            direction: 'DESC'
        }
    ],

    topAxis: [
        {
            dataIndex: 'year'
        }
    ]
});
    *

    The specified {@link #measure} is the field from SaleRecord that is extracted from each combination * of product and person (on the left axis) and year on the top axis. There may be several SaleRecords in the * data set that share this combination, so an array of measure fields is produced. This array is then * aggregated using the {@link #aggregator} function.

    *

    The default aggregator function is sum, which simply adds up all of the extracted measure values. Other * built-in aggregator functions are count, avg, min and max. In addition, you can specify your own function. * In this example we show the code used to sum the measures, but you can return any value you like. See * {@link #aggregator} for more details.

    
new Ext.grid.PivotGrid({
    aggregator: function(records, measure) {
        var length = records.length,
            total  = 0,
            i;

        for (i = 0; i < length; i++) {
            total += records[i].get(measure);
        }

        return total;
    },
    
    renderer: function(value) {
        return Math.round(value);
    },
    
    //your normal config here
});
    *

    Renderers

    *

    PivotGrid optionally accepts a {@link #renderer} function which can modify the data in each cell before it * is rendered. The renderer is passed the value that would usually be placed in the cell and is expected to return * the new value. For example let's imagine we had height data expressed as a decimal - here's how we might use a * renderer to display the data in feet and inches notation:

    
new Ext.grid.PivotGrid({
    //in each case the value is a decimal number of feet
    renderer  : function(value) {
        var feet   = Math.floor(value),
            inches = Math.round((value - feet) * 12);

        return String.format("{0}' {1}\"", feet, inches);
    },
    //normal config here
});
    *

    Reconfiguring

    *

    All aspects PivotGrid's configuration can be updated at runtime. It is easy to change the {@link #setMeasure measure}, * {@link #setAggregator aggregation function}, {@link #setLeftAxis left} and {@link #setTopAxis top} axes and refresh the grid.

    *

    In this case we reconfigure the PivotGrid to have city and year as the top axis dimensions, rendering the average sale * value into the cells:

    
//the left axis can also be changed
pivot.topAxis.setDimensions([
    {dataIndex: 'city', direction: 'DESC'},
    {dataIndex: 'year', direction: 'ASC'}
]);

pivot.setMeasure('value');
pivot.setAggregator('avg');

pivot.view.refresh(true);
    *

    See the {@link Ext.grid.PivotAxis PivotAxis} documentation for further detail on reconfiguring axes.

    */ Ext.grid.PivotGrid = Ext.extend(Ext.grid.GridPanel, { /** * @cfg {String|Function} aggregator The aggregation function to use to combine the measures extracted * for each dimension combination. Can be any of the built-in aggregators (sum, count, avg, min, max). * Can also be a function which accepts two arguments (an array of Records to aggregate, and the measure * to aggregate them on) and should return a String. */ aggregator: 'sum', /** * @cfg {Function} renderer Optional renderer to pass values through before they are rendered to the dom. This * gives an opportunity to modify cell contents after the value has been computed. */ renderer: undefined, /** * @cfg {String} measure The field to extract from each Record when pivoting around the two axes. See the class * introduction docs for usage */ /** * @cfg {Array|Ext.grid.PivotAxis} leftAxis Either and array of {@link #dimension} to use on the left axis, or * a {@link Ext.grid.PivotAxis} instance. If an array is passed, it is turned into a PivotAxis internally. */ /** * @cfg {Array|Ext.grid.PivotAxis} topAxis Either and array of {@link #dimension} to use on the top axis, or * a {@link Ext.grid.PivotAxis} instance. If an array is passed, it is turned into a PivotAxis internally. */ //inherit docs initComponent: function() { Ext.grid.PivotGrid.superclass.initComponent.apply(this, arguments); this.initAxes(); //no resizing of columns is allowed yet in PivotGrid this.enableColumnResize = false; this.viewConfig = Ext.apply(this.viewConfig || {}, { forceFit: true }); //TODO: dummy col model that is never used - GridView is too tightly integrated with ColumnModel //in 3.x to remove this altogether. this.colModel = new Ext.grid.ColumnModel({}); }, /** * Returns the function currently used to aggregate the records in each Pivot cell * @return {Function} The current aggregator function */ getAggregator: function() { if (typeof this.aggregator == 'string') { return Ext.grid.PivotAggregatorMgr.types[this.aggregator]; } else { return this.aggregator; } }, /** * Sets the function to use when aggregating data for each cell. * @param {String|Function} aggregator The new aggregator function or named function string */ setAggregator: function(aggregator) { this.aggregator = aggregator; }, /** * Sets the field name to use as the Measure in this Pivot Grid * @param {String} measure The field to make the measure */ setMeasure: function(measure) { this.measure = measure; }, /** * Sets the left axis of this pivot grid. Optionally refreshes the grid afterwards. * @param {Ext.grid.PivotAxis} axis The pivot axis * @param {Boolean} refresh True to immediately refresh the grid and its axes (defaults to false) */ setLeftAxis: function(axis, refresh) { /** * The configured {@link Ext.grid.PivotAxis} used as the left Axis for this Pivot Grid * @property leftAxis * @type Ext.grid.PivotAxis */ this.leftAxis = axis; if (refresh) { this.view.refresh(); } }, /** * Sets the top axis of this pivot grid. Optionally refreshes the grid afterwards. * @param {Ext.grid.PivotAxis} axis The pivot axis * @param {Boolean} refresh True to immediately refresh the grid and its axes (defaults to false) */ setTopAxis: function(axis, refresh) { /** * The configured {@link Ext.grid.PivotAxis} used as the top Axis for this Pivot Grid * @property topAxis * @type Ext.grid.PivotAxis */ this.topAxis = axis; if (refresh) { this.view.refresh(); } }, /** * @private * Creates the top and left axes. Should usually only need to be called once from initComponent */ initAxes: function() { var PivotAxis = Ext.grid.PivotAxis; if (!(this.leftAxis instanceof PivotAxis)) { this.setLeftAxis(new PivotAxis({ orientation: 'vertical', dimensions : this.leftAxis || [], store : this.store })); }; if (!(this.topAxis instanceof PivotAxis)) { this.setTopAxis(new PivotAxis({ orientation: 'horizontal', dimensions : this.topAxis || [], store : this.store })); }; }, /** * @private * @return {Array} 2-dimensional array of cell data */ extractData: function() { var records = this.store.data.items, recCount = records.length, cells = [], record, i, j, k; if (recCount == 0) { return []; } var leftTuples = this.leftAxis.getTuples(), leftCount = leftTuples.length, topTuples = this.topAxis.getTuples(), topCount = topTuples.length, aggregator = this.getAggregator(); for (i = 0; i < recCount; i++) { record = records[i]; for (j = 0; j < leftCount; j++) { cells[j] = cells[j] || []; if (leftTuples[j].matcher(record) === true) { for (k = 0; k < topCount; k++) { cells[j][k] = cells[j][k] || []; if (topTuples[k].matcher(record)) { cells[j][k].push(record); } } } } } var rowCount = cells.length, colCount, row; for (i = 0; i < rowCount; i++) { row = cells[i]; colCount = row.length; for (j = 0; j < colCount; j++) { cells[i][j] = aggregator(cells[i][j], this.measure); } } return cells; }, /** * Returns the grid's GridView object. * @return {Ext.grid.PivotGridView} The grid view */ getView: function() { if (!this.view) { this.view = new Ext.grid.PivotGridView(this.viewConfig); } return this.view; } }); Ext.reg('pivotgrid', Ext.grid.PivotGrid); Ext.grid.PivotAggregatorMgr = new Ext.AbstractManager(); Ext.grid.PivotAggregatorMgr.registerType('sum', function(records, measure) { var length = records.length, total = 0, i; for (i = 0; i < length; i++) { total += records[i].get(measure); } return total; }); Ext.grid.PivotAggregatorMgr.registerType('avg', function(records, measure) { var length = records.length, total = 0, i; for (i = 0; i < length; i++) { total += records[i].get(measure); } return (total / length) || 'n/a'; }); Ext.grid.PivotAggregatorMgr.registerType('min', function(records, measure) { var data = [], length = records.length, i; for (i = 0; i < length; i++) { data.push(records[i].get(measure)); } return Math.min.apply(this, data) || 'n/a'; }); Ext.grid.PivotAggregatorMgr.registerType('max', function(records, measure) { var data = [], length = records.length, i; for (i = 0; i < length; i++) { data.push(records[i].get(measure)); } return Math.max.apply(this, data) || 'n/a'; }); Ext.grid.PivotAggregatorMgr.registerType('count', function(records, measure) { return records.length; });/** * @class Ext.grid.GridView * @extends Ext.util.Observable *

    This class encapsulates the user interface of an {@link Ext.grid.GridPanel}. * Methods of this class may be used to access user interface elements to enable * special display effects. Do not change the DOM structure of the user interface.

    *

    This class does not provide ways to manipulate the underlying data. The data * model of a Grid is held in an {@link Ext.data.Store}.

    * @constructor * @param {Object} config */ Ext.grid.GridView = Ext.extend(Ext.util.Observable, { /** * Override this function to apply custom CSS classes to rows during rendering. You can also supply custom * parameters to the row template for the current row to customize how it is rendered using the rowParams * parameter. This function should return the CSS class name (or empty string '' for none) that will be added * to the row's wrapping div. To apply multiple class names, simply return them space-delimited within the string * (e.g., 'my-class another-class'). Example usage: 
    
viewConfig: {
    forceFit: true,
    showPreview: true, // custom property
    enableRowBody: true, // required to create a second, full-width row to show expanded Record data
    getRowClass: function(record, rowIndex, rp, ds){ // rp = rowParams
        if(this.showPreview){
            rp.body = '<p>'+record.data.excerpt+'</p>';
            return 'x-grid3-row-expanded';
        }
        return 'x-grid3-row-collapsed';
    }
},
    * @param {Record} record The {@link Ext.data.Record} corresponding to the current row. * @param {Number} index The row index. * @param {Object} rowParams A config object that is passed to the row template during rendering that allows * customization of various aspects of a grid row. *

    If {@link #enableRowBody} is configured true, then the following properties may be set * by this function, and will be used to render a full-width expansion row below each grid row:

    *
      *
    • body : String
      An HTML fragment to be used as the expansion row's body content (defaults to '').
      • *
    • bodyStyle : String
      A CSS style specification that will be applied to the expansion row's <tr> element. (defaults to '').
      • *
    * The following property will be passed in, and may be appended to: *
      *
    • tstyle : String
      A CSS style specification that willl be applied to the <table> element which encapsulates * both the standard grid row, and any expansion row.
      • *
    * @param {Store} store The {@link Ext.data.Store} this grid is bound to * @method getRowClass * @return {String} a CSS class name to add to the row. */ /** * @cfg {Boolean} enableRowBody True to add a second TR element per row that can be used to provide a row body * that spans beneath the data row. Use the {@link #getRowClass} method's rowParams config to customize the row body. */ /** * @cfg {String} emptyText Default text (html tags are accepted) to display in the grid body when no rows * are available (defaults to ''). This value will be used to update the {@link #mainBody}: 
    
    this.mainBody.update('<div class="x-grid-empty">' + this.emptyText + '</div>');
    */ /** * @cfg {Boolean} headersDisabled True to disable the grid column headers (defaults to false). * Use the {@link Ext.grid.ColumnModel ColumnModel} {@link Ext.grid.ColumnModel#menuDisabled menuDisabled} * config to disable the menu for individual columns. While this config is true the * following will be disabled:
      *
    • clicking on header to sort
      • *
    • the trigger to reveal the menu.
      • *
    */ /** *

    A customized implementation of a {@link Ext.dd.DragZone DragZone} which provides default implementations * of the template methods of DragZone to enable dragging of the selected rows of a GridPanel. * See {@link Ext.grid.GridDragZone} for details.

    *

    This will only be present:

      *
    • if the owning GridPanel was configured with {@link Ext.grid.GridPanel#enableDragDrop enableDragDrop}: true.
      • *
    • after the owning GridPanel has been rendered.
      • *
    * @property dragZone * @type {Ext.grid.GridDragZone} */ /** * @cfg {Boolean} deferEmptyText True to defer {@link #emptyText} being applied until the store's * first load (defaults to true). */ deferEmptyText : true, /** * @cfg {Number} scrollOffset The amount of space to reserve for the vertical scrollbar * (defaults to undefined). If an explicit value isn't specified, this will be automatically * calculated. */ scrollOffset : undefined, /** * @cfg {Boolean} autoFill * Defaults to false. Specify true to have the column widths re-proportioned * when the grid is initially rendered. The * {@link Ext.grid.Column#width initially configured width} of each column will be adjusted * to fit the grid width and prevent horizontal scrolling. If columns are later resized (manually * or programmatically), the other columns in the grid will not be resized to fit the grid width. * See {@link #forceFit} also. */ autoFill : false, /** * @cfg {Boolean} forceFit *

    Defaults to false. Specify true to have the column widths re-proportioned * at all times.

    *

    The {@link Ext.grid.Column#width initially configured width} of each * column will be adjusted to fit the grid width and prevent horizontal scrolling. If columns are * later resized (manually or programmatically), the other columns in the grid will be resized * to fit the grid width.

    *

    Columns which are configured with fixed: true are omitted from being resized.

    *

    See {@link #autoFill}.

    */ forceFit : false, /** * @cfg {Array} sortClasses The CSS classes applied to a header when it is sorted. (defaults to ['sort-asc', 'sort-desc']) */ sortClasses : ['sort-asc', 'sort-desc'], /** * @cfg {String} sortAscText The text displayed in the 'Sort Ascending' menu item (defaults to 'Sort Ascending') */ sortAscText : 'Sort Ascending', /** * @cfg {String} sortDescText The text displayed in the 'Sort Descending' menu item (defaults to 'Sort Descending') */ sortDescText : 'Sort Descending', /** * @cfg {Boolean} hideSortIcons True to hide the sorting icons if sorting is disabled for a column. Defaults to false */ hideSortIcons: false, /** * @cfg {String} columnsText The text displayed in the 'Columns' menu item (defaults to 'Columns') */ columnsText : 'Columns', /** * @cfg {String} selectedRowClass The CSS class applied to a selected row (defaults to 'x-grid3-row-selected'). An * example overriding the default styling: 
    
    .x-grid3-row-selected {background-color: yellow;}
    * Note that this only controls the row, and will not do anything for the text inside it. To style inner * facets (like text) use something like: 
    
    .x-grid3-row-selected .x-grid3-cell-inner {
        color: #FFCC00;
    }
    * @type String */ selectedRowClass : 'x-grid3-row-selected', // private borderWidth : 2, tdClass : 'x-grid3-cell', hdCls : 'x-grid3-hd', /** * @cfg {Boolean} markDirty True to show the dirty cell indicator when a cell has been modified. Defaults to true. */ markDirty : true, /** * @cfg {Number} cellSelectorDepth The number of levels to search for cells in event delegation (defaults to 4) */ cellSelectorDepth : 4, /** * @cfg {Number} rowSelectorDepth The number of levels to search for rows in event delegation (defaults to 10) */ rowSelectorDepth : 10, /** * @cfg {Number} rowBodySelectorDepth The number of levels to search for row bodies in event delegation (defaults to 10) */ rowBodySelectorDepth : 10, /** * @cfg {String} cellSelector The selector used to find cells internally (defaults to 'td.x-grid3-cell') */ cellSelector : 'td.x-grid3-cell', /** * @cfg {String} rowSelector The selector used to find rows internally (defaults to 'div.x-grid3-row') */ rowSelector : 'div.x-grid3-row', /** * @cfg {String} rowBodySelector The selector used to find row bodies internally (defaults to 'div.x-grid3-row') */ rowBodySelector : 'div.x-grid3-row-body', // private firstRowCls: 'x-grid3-row-first', lastRowCls: 'x-grid3-row-last', rowClsRe: /(?:^|\s+)x-grid3-row-(first|last|alt)(?:\s+|$)/g, /** * @cfg {String} headerMenuOpenCls The CSS class to add to the header cell when its menu is visible. Defaults to 'x-grid3-hd-menu-open' */ headerMenuOpenCls: 'x-grid3-hd-menu-open', /** * @cfg {String} rowOverCls The CSS class added to each row when it is hovered over. Defaults to 'x-grid3-row-over' */ rowOverCls: 'x-grid3-row-over', constructor : function(config) { Ext.apply(this, config); // These events are only used internally by the grid components this.addEvents( /** * @event beforerowremoved * Internal UI Event. Fired before a row is removed. * @param {Ext.grid.GridView} view * @param {Number} rowIndex The index of the row to be removed. * @param {Ext.data.Record} record The Record to be removed */ 'beforerowremoved', /** * @event beforerowsinserted * Internal UI Event. Fired before rows are inserted. * @param {Ext.grid.GridView} view * @param {Number} firstRow The index of the first row to be inserted. * @param {Number} lastRow The index of the last row to be inserted. */ 'beforerowsinserted', /** * @event beforerefresh * Internal UI Event. Fired before the view is refreshed. * @param {Ext.grid.GridView} view */ 'beforerefresh', /** * @event rowremoved * Internal UI Event. Fired after a row is removed. * @param {Ext.grid.GridView} view * @param {Number} rowIndex The index of the row that was removed. * @param {Ext.data.Record} record The Record that was removed */ 'rowremoved', /** * @event rowsinserted * Internal UI Event. Fired after rows are inserted. * @param {Ext.grid.GridView} view * @param {Number} firstRow The index of the first inserted. * @param {Number} lastRow The index of the last row inserted. */ 'rowsinserted', /** * @event rowupdated * Internal UI Event. Fired after a row has been updated. * @param {Ext.grid.GridView} view * @param {Number} firstRow The index of the row updated. * @param {Ext.data.record} record The Record backing the row updated. */ 'rowupdated', /** * @event refresh * Internal UI Event. Fired after the GridView's body has been refreshed. * @param {Ext.grid.GridView} view */ 'refresh' ); Ext.grid.GridView.superclass.constructor.call(this); }, /* -------------------------------- UI Specific ----------------------------- */ /** * The master template to use when rendering the GridView. Has a default template * @property Ext.Template * @type masterTpl */ masterTpl: new Ext.Template( '
    ', '
    ', '
    ', '
    ', '
    {header}
    ', '
    ', '
    ', '
    ', '
    ', '
    {body}
    ', '', '
    ', '
    ', '
     
    ', '
     
    ', '
    ' ), /** * The template to use when rendering headers. Has a default template * @property headerTpl * @type Ext.Template */ headerTpl: new Ext.Template( '', '', '{cells}', '', '
    ' ), /** * The template to use when rendering the body. Has a default template * @property bodyTpl * @type Ext.Template */ bodyTpl: new Ext.Template('{rows}'), /** * The template to use to render each cell. Has a default template * @property cellTpl * @type Ext.Template */ cellTpl: new Ext.Template( '', '
    {value}
    ', '' ), /** * @private * Provides default templates if they are not given for this particular instance. Most of the templates are defined on * the prototype, the ones defined inside this function are done so because they are based on Grid or GridView configuration */ initTemplates : function() { var templates = this.templates || {}, template, name, headerCellTpl = new Ext.Template( '', '
    ', this.grid.enableHdMenu ? '' : '', '{value}', '', '
    ', '' ), rowBodyText = [ '', '', '
    {body}
    ', '', '' ].join(""), innerText = [ '', '', '{cells}', this.enableRowBody ? rowBodyText : '', '', '
    ' ].join(""); Ext.applyIf(templates, { hcell : headerCellTpl, cell : this.cellTpl, body : this.bodyTpl, header : this.headerTpl, master : this.masterTpl, row : new Ext.Template('
    ' + innerText + '
    '), rowInner: new Ext.Template(innerText) }); for (name in templates) { template = templates[name]; if (template && Ext.isFunction(template.compile) && !template.compiled) { template.disableFormats = true; template.compile(); } } this.templates = templates; this.colRe = new RegExp('x-grid3-td-([^\\s]+)', ''); }, /** * @private * Each GridView has its own private flyweight, accessed through this method */ fly : function(el) { if (!this._flyweight) { this._flyweight = new Ext.Element.Flyweight(document.body); } this._flyweight.dom = el; return this._flyweight; }, // private getEditorParent : function() { return this.scroller.dom; }, /** * @private * Finds and stores references to important elements */ initElements : function() { var Element = Ext.Element, el = Ext.get(this.grid.getGridEl().dom.firstChild), mainWrap = new Element(el.child('div.x-grid3-viewport')), mainHd = new Element(mainWrap.child('div.x-grid3-header')), scroller = new Element(mainWrap.child('div.x-grid3-scroller')); if (this.grid.hideHeaders) { mainHd.setDisplayed(false); } if (this.forceFit) { scroller.setStyle('overflow-x', 'hidden'); } /** * Read-only. The GridView's body Element which encapsulates all rows in the Grid. * This {@link Ext.Element Element} is only available after the GridPanel has been rendered. * @type Ext.Element * @property mainBody */ Ext.apply(this, { el : el, mainWrap: mainWrap, scroller: scroller, mainHd : mainHd, innerHd : mainHd.child('div.x-grid3-header-inner').dom, mainBody: new Element(Element.fly(scroller).child('div.x-grid3-body')), focusEl : new Element(Element.fly(scroller).child('a')), resizeMarker: new Element(el.child('div.x-grid3-resize-marker')), resizeProxy : new Element(el.child('div.x-grid3-resize-proxy')) }); this.focusEl.swallowEvent('click', true); }, // private getRows : function() { return this.hasRows() ? this.mainBody.dom.childNodes : []; }, // finder methods, used with delegation // private findCell : function(el) { if (!el) { return false; } return this.fly(el).findParent(this.cellSelector, this.cellSelectorDepth); }, /** *

    Return the index of the grid column which contains the passed HTMLElement.

    * See also {@link #findRowIndex} * @param {HTMLElement} el The target element * @return {Number} The column index, or false if the target element is not within a row of this GridView. */ findCellIndex : function(el, requiredCls) { var cell = this.findCell(el), hasCls; if (cell) { hasCls = this.fly(cell).hasClass(requiredCls); if (!requiredCls || hasCls) { return this.getCellIndex(cell); } } return false; }, // private getCellIndex : function(el) { if (el) { var match = el.className.match(this.colRe); if (match && match[1]) { return this.cm.getIndexById(match[1]); } } return false; }, // private findHeaderCell : function(el) { var cell = this.findCell(el); return cell && this.fly(cell).hasClass(this.hdCls) ? cell : null; }, // private findHeaderIndex : function(el){ return this.findCellIndex(el, this.hdCls); }, /** * Return the HtmlElement representing the grid row which contains the passed element. * @param {HTMLElement} el The target HTMLElement * @return {HTMLElement} The row element, or null if the target element is not within a row of this GridView. */ findRow : function(el) { if (!el) { return false; } return this.fly(el).findParent(this.rowSelector, this.rowSelectorDepth); }, /** * Return the index of the grid row which contains the passed HTMLElement. * See also {@link #findCellIndex} * @param {HTMLElement} el The target HTMLElement * @return {Number} The row index, or false if the target element is not within a row of this GridView. */ findRowIndex : function(el) { var row = this.findRow(el); return row ? row.rowIndex : false; }, /** * Return the HtmlElement representing the grid row body which contains the passed element. * @param {HTMLElement} el The target HTMLElement * @return {HTMLElement} The row body element, or null if the target element is not within a row body of this GridView. */ findRowBody : function(el) { if (!el) { return false; } return this.fly(el).findParent(this.rowBodySelector, this.rowBodySelectorDepth); }, // getter methods for fetching elements dynamically in the grid /** * Return the <div> HtmlElement which represents a Grid row for the specified index. * @param {Number} index The row index * @return {HtmlElement} The div element. */ getRow : function(row) { return this.getRows()[row]; }, /** * Returns the grid's <td> HtmlElement at the specified coordinates. * @param {Number} row The row index in which to find the cell. * @param {Number} col The column index of the cell. * @return {HtmlElement} The td at the specified coordinates. */ getCell : function(row, col) { return Ext.fly(this.getRow(row)).query(this.cellSelector)[col]; }, /** * Return the <td> HtmlElement which represents the Grid's header cell for the specified column index. * @param {Number} index The column index * @return {HtmlElement} The td element. */ getHeaderCell : function(index) { return this.mainHd.dom.getElementsByTagName('td')[index]; }, // manipulating elements // private - use getRowClass to apply custom row classes addRowClass : function(rowId, cls) { var row = this.getRow(rowId); if (row) { this.fly(row).addClass(cls); } }, // private removeRowClass : function(row, cls) { var r = this.getRow(row); if(r){ this.fly(r).removeClass(cls); } }, // private removeRow : function(row) { Ext.removeNode(this.getRow(row)); this.syncFocusEl(row); }, // private removeRows : function(firstRow, lastRow) { var bd = this.mainBody.dom, rowIndex; for (rowIndex = firstRow; rowIndex <= lastRow; rowIndex++){ Ext.removeNode(bd.childNodes[firstRow]); } this.syncFocusEl(firstRow); }, /* ----------------------------------- Scrolling functions -------------------------------------------*/ // private getScrollState : function() { var sb = this.scroller.dom; return { left: sb.scrollLeft, top : sb.scrollTop }; }, // private restoreScroll : function(state) { var sb = this.scroller.dom; sb.scrollLeft = state.left; sb.scrollTop = state.top; }, /** * Scrolls the grid to the top */ scrollToTop : function() { var dom = this.scroller.dom; dom.scrollTop = 0; dom.scrollLeft = 0; }, // private syncScroll : function() { this.syncHeaderScroll(); var mb = this.scroller.dom; this.grid.fireEvent('bodyscroll', mb.scrollLeft, mb.scrollTop); }, // private syncHeaderScroll : function() { var innerHd = this.innerHd, scrollLeft = this.scroller.dom.scrollLeft; innerHd.scrollLeft = scrollLeft; innerHd.scrollLeft = scrollLeft; // second time for IE (1/2 time first fails, other browsers ignore) }, /** * @private * Ensures the given column has the given icon class */ updateSortIcon : function(col, dir) { var sortClasses = this.sortClasses, sortClass = sortClasses[dir == "DESC" ? 1 : 0], headers = this.mainHd.select('td').removeClass(sortClasses); headers.item(col).addClass(sortClass); }, /** * @private * Updates the size of every column and cell in the grid */ updateAllColumnWidths : function() { var totalWidth = this.getTotalWidth(), colCount = this.cm.getColumnCount(), rows = this.getRows(), rowCount = rows.length, widths = [], row, rowFirstChild, trow, i, j; for (i = 0; i < colCount; i++) { widths[i] = this.getColumnWidth(i); this.getHeaderCell(i).style.width = widths[i]; } this.updateHeaderWidth(); for (i = 0; i < rowCount; i++) { row = rows[i]; row.style.width = totalWidth; rowFirstChild = row.firstChild; if (rowFirstChild) { rowFirstChild.style.width = totalWidth; trow = rowFirstChild.rows[0]; for (j = 0; j < colCount; j++) { trow.childNodes[j].style.width = widths[j]; } } } this.onAllColumnWidthsUpdated(widths, totalWidth); }, /** * @private * Called after a column's width has been updated, this resizes all of the cells for that column in each row * @param {Number} column The column index */ updateColumnWidth : function(column, width) { var columnWidth = this.getColumnWidth(column), totalWidth = this.getTotalWidth(), headerCell = this.getHeaderCell(column), nodes = this.getRows(), nodeCount = nodes.length, row, i, firstChild; this.updateHeaderWidth(); headerCell.style.width = columnWidth; for (i = 0; i < nodeCount; i++) { row = nodes[i]; firstChild = row.firstChild; row.style.width = totalWidth; if (firstChild) { firstChild.style.width = totalWidth; firstChild.rows[0].childNodes[column].style.width = columnWidth; } } this.onColumnWidthUpdated(column, columnWidth, totalWidth); }, /** * @private * Sets the hidden status of a given column. * @param {Number} col The column index * @param {Boolean} hidden True to make the column hidden */ updateColumnHidden : function(col, hidden) { var totalWidth = this.getTotalWidth(), display = hidden ? 'none' : '', headerCell = this.getHeaderCell(col), nodes = this.getRows(), nodeCount = nodes.length, row, rowFirstChild, i; this.updateHeaderWidth(); headerCell.style.display = display; for (i = 0; i < nodeCount; i++) { row = nodes[i]; row.style.width = totalWidth; rowFirstChild = row.firstChild; if (rowFirstChild) { rowFirstChild.style.width = totalWidth; rowFirstChild.rows[0].childNodes[col].style.display = display; } } this.onColumnHiddenUpdated(col, hidden, totalWidth); delete this.lastViewWidth; //recalc this.layout(); }, /** * @private * Renders all of the rows to a string buffer and returns the string. This is called internally * by renderRows and performs the actual string building for the rows - it does not inject HTML into the DOM. * @param {Array} columns The column data acquired from getColumnData. * @param {Array} records The array of records to render * @param {Ext.data.Store} store The store to render the rows from * @param {Number} startRow The index of the first row being rendered. Sometimes we only render a subset of * the rows so this is used to maintain logic for striping etc * @param {Number} colCount The total number of columns in the column model * @param {Boolean} stripe True to stripe the rows * @return {String} A string containing the HTML for the rendered rows */ doRender : function(columns, records, store, startRow, colCount, stripe) { var templates = this.templates, cellTemplate = templates.cell, rowTemplate = templates.row, last = colCount - 1, tstyle = 'width:' + this.getTotalWidth() + ';', // buffers rowBuffer = [], colBuffer = [], rowParams = {tstyle: tstyle}, meta = {}, len = records.length, alt, column, record, i, j, rowIndex; //build up each row's HTML for (j = 0; j < len; j++) { record = records[j]; colBuffer = []; rowIndex = j + startRow; //build up each column's HTML for (i = 0; i < colCount; i++) { column = columns[i]; meta.id = column.id; meta.css = i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); meta.attr = meta.cellAttr = ''; meta.style = column.style; meta.value = column.renderer.call(column.scope, record.data[column.name], meta, record, rowIndex, i, store); if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (this.markDirty && record.dirty && typeof record.modified[column.name] != 'undefined') { meta.css += ' x-grid3-dirty-cell'; } colBuffer[colBuffer.length] = cellTemplate.apply(meta); } alt = []; //set up row striping and row dirtiness CSS classes if (stripe && ((rowIndex + 1) % 2 === 0)) { alt[0] = 'x-grid3-row-alt'; } if (record.dirty) { alt[1] = ' x-grid3-dirty-row'; } rowParams.cols = colCount; if (this.getRowClass) { alt[2] = this.getRowClass(record, rowIndex, rowParams, store); } rowParams.alt = alt.join(' '); rowParams.cells = colBuffer.join(''); rowBuffer[rowBuffer.length] = rowTemplate.apply(rowParams); } return rowBuffer.join(''); }, /** * @private * Adds CSS classes and rowIndex to each row * @param {Number} startRow The row to start from (defaults to 0) */ processRows : function(startRow, skipStripe) { if (!this.ds || this.ds.getCount() < 1) { return; } var rows = this.getRows(), length = rows.length, row, i; skipStripe = skipStripe || !this.grid.stripeRows; startRow = startRow || 0; for (i = 0; i < length; i++) { row = rows[i]; if (row) { row.rowIndex = i; if (!skipStripe) { row.className = row.className.replace(this.rowClsRe, ' '); if ((i + 1) % 2 === 0){ row.className += ' x-grid3-row-alt'; } } } } // add first/last-row classes if (startRow === 0) { Ext.fly(rows[0]).addClass(this.firstRowCls); } Ext.fly(rows[length - 1]).addClass(this.lastRowCls); }, /** * @private */ afterRender : function() { if (!this.ds || !this.cm) { return; } this.mainBody.dom.innerHTML = this.renderBody() || ' '; this.processRows(0, true); if (this.deferEmptyText !== true) { this.applyEmptyText(); } this.grid.fireEvent('viewready', this.grid); }, /** * @private * This is always intended to be called after renderUI. Sets up listeners on the UI elements * and sets up options like column menus, moving and resizing. */ afterRenderUI: function() { var grid = this.grid; this.initElements(); // get mousedowns early Ext.fly(this.innerHd).on('click', this.handleHdDown, this); this.mainHd.on({ scope : this, mouseover: this.handleHdOver, mouseout : this.handleHdOut, mousemove: this.handleHdMove }); this.scroller.on('scroll', this.syncScroll, this); if (grid.enableColumnResize !== false) { this.splitZone = new Ext.grid.GridView.SplitDragZone(grid, this.mainHd.dom); } if (grid.enableColumnMove) { this.columnDrag = new Ext.grid.GridView.ColumnDragZone(grid, this.innerHd); this.columnDrop = new Ext.grid.HeaderDropZone(grid, this.mainHd.dom); } if (grid.enableHdMenu !== false) { this.hmenu = new Ext.menu.Menu({id: grid.id + '-hctx'}); this.hmenu.add( {itemId:'asc', text: this.sortAscText, cls: 'xg-hmenu-sort-asc'}, {itemId:'desc', text: this.sortDescText, cls: 'xg-hmenu-sort-desc'} ); if (grid.enableColumnHide !== false) { this.colMenu = new Ext.menu.Menu({id:grid.id + '-hcols-menu'}); this.colMenu.on({ scope : this, beforeshow: this.beforeColMenuShow, itemclick : this.handleHdMenuClick }); this.hmenu.add({ itemId: 'sortSep', xtype: 'menuseparator' }, { itemId:'columns', hideOnClick: false, text: this.columnsText, menu: this.colMenu, iconCls: 'x-cols-icon' }); } this.hmenu.on('itemclick', this.handleHdMenuClick, this); } if (grid.trackMouseOver) { this.mainBody.on({ scope : this, mouseover: this.onRowOver, mouseout : this.onRowOut }); } if (grid.enableDragDrop || grid.enableDrag) { this.dragZone = new Ext.grid.GridDragZone(grid, { ddGroup : grid.ddGroup || 'GridDD' }); } this.updateHeaderSortState(); }, /** * @private * Renders each of the UI elements in turn. This is called internally, once, by this.render. It does not * render rows from the store, just the surrounding UI elements. */ renderUI : function() { var templates = this.templates; return templates.master.apply({ body : templates.body.apply({rows:' '}), header: this.renderHeaders(), ostyle: 'width:' + this.getOffsetWidth() + ';', bstyle: 'width:' + this.getTotalWidth() + ';' }); }, // private processEvent : function(name, e) { var target = e.getTarget(), grid = this.grid, header = this.findHeaderIndex(target), row, cell, col, body; grid.fireEvent(name, e); if (header !== false) { grid.fireEvent('header' + name, grid, header, e); } else { row = this.findRowIndex(target); // Grid's value-added events must bubble correctly to allow cancelling via returning false: cell->column->row // We must allow a return of false at any of these levels to cancel the event processing. // Particularly allowing rowmousedown to be cancellable by prior handlers which need to prevent selection. if (row !== false) { cell = this.findCellIndex(target); if (cell !== false) { col = grid.colModel.getColumnAt(cell); if (grid.fireEvent('cell' + name, grid, row, cell, e) !== false) { if (!col || (col.processEvent && (col.processEvent(name, e, grid, row, cell) !== false))) { grid.fireEvent('row' + name, grid, row, e); } } } else { if (grid.fireEvent('row' + name, grid, row, e) !== false) { (body = this.findRowBody(target)) && grid.fireEvent('rowbody' + name, grid, row, e); } } } else { grid.fireEvent('container' + name, grid, e); } } }, /** * @private * Sizes the grid's header and body elements */ layout : function(initial) { if (!this.mainBody) { return; // not rendered } var grid = this.grid, gridEl = grid.getGridEl(), gridSize = gridEl.getSize(true), gridWidth = gridSize.width, gridHeight = gridSize.height, scroller = this.scroller, scrollStyle, headerHeight, scrollHeight; if (gridWidth < 20 || gridHeight < 20) { return; } if (grid.autoHeight) { scrollStyle = scroller.dom.style; scrollStyle.overflow = 'visible'; if (Ext.isWebKit) { scrollStyle.position = 'static'; } } else { this.el.setSize(gridWidth, gridHeight); headerHeight = this.mainHd.getHeight(); scrollHeight = gridHeight - headerHeight; scroller.setSize(gridWidth, scrollHeight); if (this.innerHd) { this.innerHd.style.width = (gridWidth) + "px"; } } if (this.forceFit || (initial === true && this.autoFill)) { if (this.lastViewWidth != gridWidth) { this.fitColumns(false, false); this.lastViewWidth = gridWidth; } } else { this.autoExpand(); this.syncHeaderScroll(); } this.onLayout(gridWidth, scrollHeight); }, // template functions for subclasses and plugins // these functions include precalculated values onLayout : function(vw, vh) { // do nothing }, onColumnWidthUpdated : function(col, w, tw) { //template method }, onAllColumnWidthsUpdated : function(ws, tw) { //template method }, onColumnHiddenUpdated : function(col, hidden, tw) { // template method }, updateColumnText : function(col, text) { // template method }, afterMove : function(colIndex) { // template method }, /* ----------------------------------- Core Specific -------------------------------------------*/ // private init : function(grid) { this.grid = grid; this.initTemplates(); this.initData(grid.store, grid.colModel); this.initUI(grid); }, // private getColumnId : function(index){ return this.cm.getColumnId(index); }, // private getOffsetWidth : function() { return (this.cm.getTotalWidth() + this.getScrollOffset()) + 'px'; }, // private getScrollOffset: function() { return Ext.num(this.scrollOffset, Ext.getScrollBarWidth()); }, /** * @private * Renders the header row using the 'header' template. Does not inject the HTML into the DOM, just * returns a string. * @return {String} Rendered header row */ renderHeaders : function() { var colModel = this.cm, templates = this.templates, headerTpl = templates.hcell, properties = {}, colCount = colModel.getColumnCount(), last = colCount - 1, cells = [], i, cssCls; for (i = 0; i < colCount; i++) { if (i == 0) { cssCls = 'x-grid3-cell-first '; } else { cssCls = i == last ? 'x-grid3-cell-last ' : ''; } properties = { id : colModel.getColumnId(i), value : colModel.getColumnHeader(i) || '', style : this.getColumnStyle(i, true), css : cssCls, tooltip: this.getColumnTooltip(i) }; if (colModel.config[i].align == 'right') { properties.istyle = 'padding-right: 16px;'; } else { delete properties.istyle; } cells[i] = headerTpl.apply(properties); } return templates.header.apply({ cells : cells.join(""), tstyle: String.format("width: {0};", this.getTotalWidth()) }); }, /** * @private */ getColumnTooltip : function(i) { var tooltip = this.cm.getColumnTooltip(i); if (tooltip) { if (Ext.QuickTips.isEnabled()) { return 'ext:qtip="' + tooltip + '"'; } else { return 'title="' + tooltip + '"'; } } return ''; }, // private beforeUpdate : function() { this.grid.stopEditing(true); }, /** * @private * Re-renders the headers and ensures they are sized correctly */ updateHeaders : function() { this.innerHd.firstChild.innerHTML = this.renderHeaders(); this.updateHeaderWidth(false); }, /** * @private * Ensures that the header is sized to the total width available to it * @param {Boolean} updateMain True to update the mainBody's width also (defaults to true) */ updateHeaderWidth: function(updateMain) { var innerHdChild = this.innerHd.firstChild, totalWidth = this.getTotalWidth(); innerHdChild.style.width = this.getOffsetWidth(); innerHdChild.firstChild.style.width = totalWidth; if (updateMain !== false) { this.mainBody.dom.style.width = totalWidth; } }, /** * Focuses the specified row. * @param {Number} row The row index */ focusRow : function(row) { this.focusCell(row, 0, false); }, /** * Focuses the specified cell. * @param {Number} row The row index * @param {Number} col The column index */ focusCell : function(row, col, hscroll) { this.syncFocusEl(this.ensureVisible(row, col, hscroll)); var focusEl = this.focusEl; if (Ext.isGecko) { focusEl.focus(); } else { focusEl.focus.defer(1, focusEl); } }, /** * @private * Finds the Elements corresponding to the given row and column indexes */ resolveCell : function(row, col, hscroll) { if (!Ext.isNumber(row)) { row = row.rowIndex; } if (!this.ds) { return null; } if (row < 0 || row >= this.ds.getCount()) { return null; } col = (col !== undefined ? col : 0); var rowEl = this.getRow(row), colModel = this.cm, colCount = colModel.getColumnCount(), cellEl; if (!(hscroll === false && col === 0)) { while (col < colCount && colModel.isHidden(col)) { col++; } cellEl = this.getCell(row, col); } return {row: rowEl, cell: cellEl}; }, /** * @private * Returns the XY co-ordinates of a given row/cell resolution (see {@link #resolveCell}) * @return {Array} X and Y coords */ getResolvedXY : function(resolved) { if (!resolved) { return null; } var cell = resolved.cell, row = resolved.row; if (cell) { return Ext.fly(cell).getXY(); } else { return [this.el.getX(), Ext.fly(row).getY()]; } }, /** * @private * Moves the focus element to the x and y co-ordinates of the given row and column */ syncFocusEl : function(row, col, hscroll) { var xy = row; if (!Ext.isArray(xy)) { row = Math.min(row, Math.max(0, this.getRows().length-1)); if (isNaN(row)) { return; } xy = this.getResolvedXY(this.resolveCell(row, col, hscroll)); } this.focusEl.setXY(xy || this.scroller.getXY()); }, /** * @private */ ensureVisible : function(row, col, hscroll) { var resolved = this.resolveCell(row, col, hscroll); if (!resolved || !resolved.row) { return null; } var rowEl = resolved.row, cellEl = resolved.cell, c = this.scroller.dom, p = rowEl, ctop = 0, stop = this.el.dom; while (p && p != stop) { ctop += p.offsetTop; p = p.offsetParent; } ctop -= this.mainHd.dom.offsetHeight; stop = parseInt(c.scrollTop, 10); var cbot = ctop + rowEl.offsetHeight, ch = c.clientHeight, sbot = stop + ch; if (ctop < stop) { c.scrollTop = ctop; } else if(cbot > sbot) { c.scrollTop = cbot-ch; } if (hscroll !== false) { var cleft = parseInt(cellEl.offsetLeft, 10), cright = cleft + cellEl.offsetWidth, sleft = parseInt(c.scrollLeft, 10), sright = sleft + c.clientWidth; if (cleft < sleft) { c.scrollLeft = cleft; } else if(cright > sright) { c.scrollLeft = cright-c.clientWidth; } } return this.getResolvedXY(resolved); }, // private insertRows : function(dm, firstRow, lastRow, isUpdate) { var last = dm.getCount() - 1; if( !isUpdate && firstRow === 0 && lastRow >= last) { this.fireEvent('beforerowsinserted', this, firstRow, lastRow); this.refresh(); this.fireEvent('rowsinserted', this, firstRow, lastRow); } else { if (!isUpdate) { this.fireEvent('beforerowsinserted', this, firstRow, lastRow); } var html = this.renderRows(firstRow, lastRow), before = this.getRow(firstRow); if (before) { if(firstRow === 0){ Ext.fly(this.getRow(0)).removeClass(this.firstRowCls); } Ext.DomHelper.insertHtml('beforeBegin', before, html); } else { var r = this.getRow(last - 1); if(r){ Ext.fly(r).removeClass(this.lastRowCls); } Ext.DomHelper.insertHtml('beforeEnd', this.mainBody.dom, html); } if (!isUpdate) { this.processRows(firstRow); this.fireEvent('rowsinserted', this, firstRow, lastRow); } else if (firstRow === 0 || firstRow >= last) { //ensure first/last row is kept after an update. Ext.fly(this.getRow(firstRow)).addClass(firstRow === 0 ? this.firstRowCls : this.lastRowCls); } } this.syncFocusEl(firstRow); }, /** * @private * DEPRECATED - this doesn't appear to be called anywhere in the library, remove in 4.0. */ deleteRows : function(dm, firstRow, lastRow) { if (dm.getRowCount() < 1) { this.refresh(); } else { this.fireEvent('beforerowsdeleted', this, firstRow, lastRow); this.removeRows(firstRow, lastRow); this.processRows(firstRow); this.fireEvent('rowsdeleted', this, firstRow, lastRow); } }, /** * @private * Builds a CSS string for the given column index * @param {Number} colIndex The column index * @param {Boolean} isHeader True if getting the style for the column's header * @return {String} The CSS string */ getColumnStyle : function(colIndex, isHeader) { var colModel = this.cm, colConfig = colModel.config, style = isHeader ? '' : colConfig[colIndex].css || '', align = colConfig[colIndex].align; style += String.format("width: {0};", this.getColumnWidth(colIndex)); if (colModel.isHidden(colIndex)) { style += 'display: none; '; } if (align) { style += String.format("text-align: {0};", align); } return style; }, /** * @private * Returns the width of a given column minus its border width * @return {Number} The column index * @return {String|Number} The width in pixels */ getColumnWidth : function(column) { var columnWidth = this.cm.getColumnWidth(column), borderWidth = this.borderWidth; if (Ext.isNumber(columnWidth)) { if (Ext.isBorderBox) { return columnWidth + "px"; } else { return Math.max(columnWidth - borderWidth, 0) + "px"; } } else { return columnWidth; } }, /** * @private * Returns the total width of all visible columns * @return {String} */ getTotalWidth : function() { return this.cm.getTotalWidth() + 'px'; }, /** * @private * Resizes each column to fit the available grid width. * TODO: The second argument isn't even used, remove it in 4.0 * @param {Boolean} preventRefresh True to prevent resizing of each row to the new column sizes (defaults to false) * @param {null} onlyExpand NOT USED, will be removed in 4.0 * @param {Number} omitColumn The index of a column to leave at its current width. Defaults to undefined * @return {Boolean} True if the operation succeeded, false if not or undefined if the grid view is not yet initialized */ fitColumns : function(preventRefresh, onlyExpand, omitColumn) { var grid = this.grid, colModel = this.cm, totalColWidth = colModel.getTotalWidth(false), gridWidth = this.getGridInnerWidth(), extraWidth = gridWidth - totalColWidth, columns = [], extraCol = 0, width = 0, colWidth, fraction, i; // not initialized, so don't screw up the default widths if (gridWidth < 20 || extraWidth === 0) { return false; } var visibleColCount = colModel.getColumnCount(true), totalColCount = colModel.getColumnCount(false), adjCount = visibleColCount - (Ext.isNumber(omitColumn) ? 1 : 0); if (adjCount === 0) { adjCount = 1; omitColumn = undefined; } //FIXME: the algorithm used here is odd and potentially confusing. Includes this for loop and the while after it. for (i = 0; i < totalColCount; i++) { if (!colModel.isFixed(i) && i !== omitColumn) { colWidth = colModel.getColumnWidth(i); columns.push(i, colWidth); if (!colModel.isHidden(i)) { extraCol = i; width += colWidth; } } } fraction = (gridWidth - colModel.getTotalWidth()) / width; while (columns.length) { colWidth = columns.pop(); i = columns.pop(); colModel.setColumnWidth(i, Math.max(grid.minColumnWidth, Math.floor(colWidth + colWidth * fraction)), true); } //this has been changed above so remeasure now totalColWidth = colModel.getTotalWidth(false); if (totalColWidth > gridWidth) { var adjustCol = (adjCount == visibleColCount) ? extraCol : omitColumn, newWidth = Math.max(1, colModel.getColumnWidth(adjustCol) - (totalColWidth - gridWidth)); colModel.setColumnWidth(adjustCol, newWidth, true); } if (preventRefresh !== true) { this.updateAllColumnWidths(); } return true; }, /** * @private * Resizes the configured autoExpandColumn to take the available width after the other columns have * been accounted for * @param {Boolean} preventUpdate True to prevent the resizing of all rows (defaults to false) */ autoExpand : function(preventUpdate) { var grid = this.grid, colModel = this.cm, gridWidth = this.getGridInnerWidth(), totalColumnWidth = colModel.getTotalWidth(false), autoExpandColumn = grid.autoExpandColumn; if (!this.userResized && autoExpandColumn) { if (gridWidth != totalColumnWidth) { //if we are not already using all available width, resize the autoExpandColumn var colIndex = colModel.getIndexById(autoExpandColumn), currentWidth = colModel.getColumnWidth(colIndex), desiredWidth = gridWidth - totalColumnWidth + currentWidth, newWidth = Math.min(Math.max(desiredWidth, grid.autoExpandMin), grid.autoExpandMax); if (currentWidth != newWidth) { colModel.setColumnWidth(colIndex, newWidth, true); if (preventUpdate !== true) { this.updateColumnWidth(colIndex, newWidth); } } } } }, /** * Returns the total internal width available to the grid, taking the scrollbar into account * @return {Number} The total width */ getGridInnerWidth: function() { return this.grid.getGridEl().getWidth(true) - this.getScrollOffset(); }, /** * @private * Returns an array of column configurations - one for each column * @return {Array} Array of column config objects. This includes the column name, renderer, id style and renderer */ getColumnData : function() { var columns = [], colModel = this.cm, colCount = colModel.getColumnCount(), fields = this.ds.fields, i, name; for (i = 0; i < colCount; i++) { name = colModel.getDataIndex(i); columns[i] = { name : Ext.isDefined(name) ? name : (fields.get(i) ? fields.get(i).name : undefined), renderer: colModel.getRenderer(i), scope : colModel.getRendererScope(i), id : colModel.getColumnId(i), style : this.getColumnStyle(i) }; } return columns; }, /** * @private * Renders rows between start and end indexes * @param {Number} startRow Index of the first row to render * @param {Number} endRow Index of the last row to render */ renderRows : function(startRow, endRow) { var grid = this.grid, store = grid.store, stripe = grid.stripeRows, colModel = grid.colModel, colCount = colModel.getColumnCount(), rowCount = store.getCount(), records; if (rowCount < 1) { return ''; } startRow = startRow || 0; endRow = Ext.isDefined(endRow) ? endRow : rowCount - 1; records = store.getRange(startRow, endRow); return this.doRender(this.getColumnData(), records, store, startRow, colCount, stripe); }, // private renderBody : function(){ var markup = this.renderRows() || ' '; return this.templates.body.apply({rows: markup}); }, /** * @private * Refreshes a row by re-rendering it. Fires the rowupdated event when done */ refreshRow: function(record) { var store = this.ds, colCount = this.cm.getColumnCount(), columns = this.getColumnData(), last = colCount - 1, cls = ['x-grid3-row'], rowParams = { tstyle: String.format("width: {0};", this.getTotalWidth()) }, colBuffer = [], cellTpl = this.templates.cell, rowIndex, row, column, meta, css, i; if (Ext.isNumber(record)) { rowIndex = record; record = store.getAt(rowIndex); } else { rowIndex = store.indexOf(record); } //the record could not be found if (!record || rowIndex < 0) { return; } //builds each column in this row for (i = 0; i < colCount; i++) { column = columns[i]; if (i == 0) { css = 'x-grid3-cell-first'; } else { css = (i == last) ? 'x-grid3-cell-last ' : ''; } meta = { id : column.id, style : column.style, css : css, attr : "", cellAttr: "" }; // Need to set this after, because we pass meta to the renderer meta.value = column.renderer.call(column.scope, record.data[column.name], meta, record, rowIndex, i, store); if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (this.markDirty && record.dirty && typeof record.modified[column.name] != 'undefined') { meta.css += ' x-grid3-dirty-cell'; } colBuffer[i] = cellTpl.apply(meta); } row = this.getRow(rowIndex); row.className = ''; if (this.grid.stripeRows && ((rowIndex + 1) % 2 === 0)) { cls.push('x-grid3-row-alt'); } if (this.getRowClass) { rowParams.cols = colCount; cls.push(this.getRowClass(record, rowIndex, rowParams, store)); } this.fly(row).addClass(cls).setStyle(rowParams.tstyle); rowParams.cells = colBuffer.join(""); row.innerHTML = this.templates.rowInner.apply(rowParams); this.fireEvent('rowupdated', this, rowIndex, record); }, /** * Refreshs the grid UI * @param {Boolean} headersToo (optional) True to also refresh the headers */ refresh : function(headersToo) { this.fireEvent('beforerefresh', this); this.grid.stopEditing(true); var result = this.renderBody(); this.mainBody.update(result).setWidth(this.getTotalWidth()); if (headersToo === true) { this.updateHeaders(); this.updateHeaderSortState(); } this.processRows(0, true); this.layout(); this.applyEmptyText(); this.fireEvent('refresh', this); }, /** * @private * Displays the configured emptyText if there are currently no rows to display */ applyEmptyText : function() { if (this.emptyText && !this.hasRows()) { this.mainBody.update('
    ' + this.emptyText + '
    '); } }, /** * @private * Adds sorting classes to the column headers based on the bound store's sortInfo. Fires the 'sortchange' event * if the sorting has changed since this function was last run. */ updateHeaderSortState : function() { var state = this.ds.getSortState(); if (!state) { return; } if (!this.sortState || (this.sortState.field != state.field || this.sortState.direction != state.direction)) { this.grid.fireEvent('sortchange', this.grid, state); } this.sortState = state; var sortColumn = this.cm.findColumnIndex(state.field); if (sortColumn != -1) { var sortDir = state.direction; this.updateSortIcon(sortColumn, sortDir); } }, /** * @private * Removes any sorting indicator classes from the column headers */ clearHeaderSortState : function() { if (!this.sortState) { return; } this.grid.fireEvent('sortchange', this.grid, null); this.mainHd.select('td').removeClass(this.sortClasses); delete this.sortState; }, /** * @private * Destroys all objects associated with the GridView */ destroy : function() { var me = this, grid = me.grid, gridEl = grid.getGridEl(), dragZone = me.dragZone, splitZone = me.splitZone, columnDrag = me.columnDrag, columnDrop = me.columnDrop, scrollToTopTask = me.scrollToTopTask, columnDragData, columnDragProxy; if (scrollToTopTask && scrollToTopTask.cancel) { scrollToTopTask.cancel(); } Ext.destroyMembers(me, 'colMenu', 'hmenu'); me.initData(null, null); me.purgeListeners(); Ext.fly(me.innerHd).un("click", me.handleHdDown, me); if (grid.enableColumnMove) { columnDragData = columnDrag.dragData; columnDragProxy = columnDrag.proxy; Ext.destroy( columnDrag.el, columnDragProxy.ghost, columnDragProxy.el, columnDrop.el, columnDrop.proxyTop, columnDrop.proxyBottom, columnDragData.ddel, columnDragData.header ); if (columnDragProxy.anim) { Ext.destroy(columnDragProxy.anim); } delete columnDragProxy.ghost; delete columnDragData.ddel; delete columnDragData.header; columnDrag.destroy(); delete Ext.dd.DDM.locationCache[columnDrag.id]; delete columnDrag._domRef; delete columnDrop.proxyTop; delete columnDrop.proxyBottom; columnDrop.destroy(); delete Ext.dd.DDM.locationCache["gridHeader" + gridEl.id]; delete columnDrop._domRef; delete Ext.dd.DDM.ids[columnDrop.ddGroup]; } if (splitZone) { // enableColumnResize splitZone.destroy(); delete splitZone._domRef; delete Ext.dd.DDM.ids["gridSplitters" + gridEl.id]; } Ext.fly(me.innerHd).removeAllListeners(); Ext.removeNode(me.innerHd); delete me.innerHd; Ext.destroy( me.el, me.mainWrap, me.mainHd, me.scroller, me.mainBody, me.focusEl, me.resizeMarker, me.resizeProxy, me.activeHdBtn, me._flyweight, dragZone, splitZone ); delete grid.container; if (dragZone) { dragZone.destroy(); } Ext.dd.DDM.currentTarget = null; delete Ext.dd.DDM.locationCache[gridEl.id]; Ext.EventManager.removeResizeListener(me.onWindowResize, me); }, // private onDenyColumnHide : function() { }, // private render : function() { if (this.autoFill) { var ct = this.grid.ownerCt; if (ct && ct.getLayout()) { ct.on('afterlayout', function() { this.fitColumns(true, true); this.updateHeaders(); this.updateHeaderSortState(); }, this, {single: true}); } } else if (this.forceFit) { this.fitColumns(true, false); } else if (this.grid.autoExpandColumn) { this.autoExpand(true); } this.grid.getGridEl().dom.innerHTML = this.renderUI(); this.afterRenderUI(); }, /* --------------------------------- Model Events and Handlers --------------------------------*/ /** * @private * Binds a new Store and ColumnModel to this GridView. Removes any listeners from the old objects (if present) * and adds listeners to the new ones * @param {Ext.data.Store} newStore The new Store instance * @param {Ext.grid.ColumnModel} newColModel The new ColumnModel instance */ initData : function(newStore, newColModel) { var me = this; if (me.ds) { var oldStore = me.ds; oldStore.un('add', me.onAdd, me); oldStore.un('load', me.onLoad, me); oldStore.un('clear', me.onClear, me); oldStore.un('remove', me.onRemove, me); oldStore.un('update', me.onUpdate, me); oldStore.un('datachanged', me.onDataChange, me); if (oldStore !== newStore && oldStore.autoDestroy) { oldStore.destroy(); } } if (newStore) { newStore.on({ scope : me, load : me.onLoad, add : me.onAdd, remove : me.onRemove, update : me.onUpdate, clear : me.onClear, datachanged: me.onDataChange }); } if (me.cm) { var oldColModel = me.cm; oldColModel.un('configchange', me.onColConfigChange, me); oldColModel.un('widthchange', me.onColWidthChange, me); oldColModel.un('headerchange', me.onHeaderChange, me); oldColModel.un('hiddenchange', me.onHiddenChange, me); oldColModel.un('columnmoved', me.onColumnMove, me); } if (newColModel) { delete me.lastViewWidth; newColModel.on({ scope : me, configchange: me.onColConfigChange, widthchange : me.onColWidthChange, headerchange: me.onHeaderChange, hiddenchange: me.onHiddenChange, columnmoved : me.onColumnMove }); } me.ds = newStore; me.cm = newColModel; }, // private onDataChange : function(){ this.refresh(true); this.updateHeaderSortState(); this.syncFocusEl(0); }, // private onClear : function() { this.refresh(); this.syncFocusEl(0); }, // private onUpdate : function(store, record) { this.refreshRow(record); }, // private onAdd : function(store, records, index) { this.insertRows(store, index, index + (records.length-1)); }, // private onRemove : function(store, record, index, isUpdate) { if (isUpdate !== true) { this.fireEvent('beforerowremoved', this, index, record); } this.removeRow(index); if (isUpdate !== true) { this.processRows(index); this.applyEmptyText(); this.fireEvent('rowremoved', this, index, record); } }, /** * @private * Called when a store is loaded, scrolls to the top row */ onLoad : function() { if (Ext.isGecko) { if (!this.scrollToTopTask) { this.scrollToTopTask = new Ext.util.DelayedTask(this.scrollToTop, this); } this.scrollToTopTask.delay(1); } else { this.scrollToTop(); } }, // private onColWidthChange : function(cm, col, width) { this.updateColumnWidth(col, width); }, // private onHeaderChange : function(cm, col, text) { this.updateHeaders(); }, // private onHiddenChange : function(cm, col, hidden) { this.updateColumnHidden(col, hidden); }, // private onColumnMove : function(cm, oldIndex, newIndex) { this.indexMap = null; this.refresh(true); this.restoreScroll(this.getScrollState()); this.afterMove(newIndex); this.grid.fireEvent('columnmove', oldIndex, newIndex); }, // private onColConfigChange : function() { delete this.lastViewWidth; this.indexMap = null; this.refresh(true); }, /* -------------------- UI Events and Handlers ------------------------------ */ // private initUI : function(grid) { grid.on('headerclick', this.onHeaderClick, this); }, // private initEvents : Ext.emptyFn, // private onHeaderClick : function(g, index) { if (this.headersDisabled || !this.cm.isSortable(index)) { return; } g.stopEditing(true); g.store.sort(this.cm.getDataIndex(index)); }, /** * @private * Adds the hover class to a row when hovered over */ onRowOver : function(e, target) { var row = this.findRowIndex(target); if (row !== false) { this.addRowClass(row, this.rowOverCls); } }, /** * @private * Removes the hover class from a row on mouseout */ onRowOut : function(e, target) { var row = this.findRowIndex(target); if (row !== false && !e.within(this.getRow(row), true)) { this.removeRowClass(row, this.rowOverCls); } }, // private onRowSelect : function(row) { this.addRowClass(row, this.selectedRowClass); }, // private onRowDeselect : function(row) { this.removeRowClass(row, this.selectedRowClass); }, // private onCellSelect : function(row, col) { var cell = this.getCell(row, col); if (cell) { this.fly(cell).addClass('x-grid3-cell-selected'); } }, // private onCellDeselect : function(row, col) { var cell = this.getCell(row, col); if (cell) { this.fly(cell).removeClass('x-grid3-cell-selected'); } }, // private handleWheel : function(e) { e.stopPropagation(); }, /** * @private * Called by the SplitDragZone when a drag has been completed. Resizes the columns */ onColumnSplitterMoved : function(cellIndex, width) { this.userResized = true; this.grid.colModel.setColumnWidth(cellIndex, width, true); if (this.forceFit) { this.fitColumns(true, false, cellIndex); this.updateAllColumnWidths(); } else { this.updateColumnWidth(cellIndex, width); this.syncHeaderScroll(); } this.grid.fireEvent('columnresize', cellIndex, width); }, /** * @private * Click handler for the shared column dropdown menu, called on beforeshow. Builds the menu * which displays the list of columns for the user to show or hide. */ beforeColMenuShow : function() { var colModel = this.cm, colCount = colModel.getColumnCount(), colMenu = this.colMenu, i; colMenu.removeAll(); for (i = 0; i < colCount; i++) { if (colModel.config[i].hideable !== false) { colMenu.add(new Ext.menu.CheckItem({ text : colModel.getColumnHeader(i), itemId : 'col-' + colModel.getColumnId(i), checked : !colModel.isHidden(i), disabled : colModel.config[i].hideable === false, hideOnClick: false })); } } }, /** * @private * Attached as the 'itemclick' handler to the header menu and the column show/hide submenu (if available). * Performs sorting if the sorter buttons were clicked, otherwise hides/shows the column that was clicked. */ handleHdMenuClick : function(item) { var store = this.ds, dataIndex = this.cm.getDataIndex(this.hdCtxIndex); switch (item.getItemId()) { case 'asc': store.sort(dataIndex, 'ASC'); break; case 'desc': store.sort(dataIndex, 'DESC'); break; default: this.handleHdMenuClickDefault(item); } return true; }, /** * Called by handleHdMenuClick if any button except a sort ASC/DESC button was clicked. The default implementation provides * the column hide/show functionality based on the check state of the menu item. A different implementation can be provided * if needed. * @param {Ext.menu.BaseItem} item The menu item that was clicked */ handleHdMenuClickDefault: function(item) { var colModel = this.cm, itemId = item.getItemId(), index = colModel.getIndexById(itemId.substr(4)); if (index != -1) { if (item.checked && colModel.getColumnsBy(this.isHideableColumn, this).length <= 1) { this.onDenyColumnHide(); return; } colModel.setHidden(index, item.checked); } }, /** * @private * Called when a header cell is clicked - shows the menu if the click happened over a trigger button */ handleHdDown : function(e, target) { if (Ext.fly(target).hasClass('x-grid3-hd-btn')) { e.stopEvent(); var colModel = this.cm, header = this.findHeaderCell(target), index = this.getCellIndex(header), sortable = colModel.isSortable(index), menu = this.hmenu, menuItems = menu.items, menuCls = this.headerMenuOpenCls, sep; this.hdCtxIndex = index; Ext.fly(header).addClass(menuCls); if (this.hideSortIcons) { menuItems.get('asc').setVisible(sortable); menuItems.get('desc').setVisible(sortable); sep = menuItems.get('sortSep'); if (sep) { sep.setVisible(sortable); } } else { menuItems.get('asc').setDisabled(!sortable); menuItems.get('desc').setDisabled(!sortable); } menu.on('hide', function() { Ext.fly(header).removeClass(menuCls); }, this, {single:true}); menu.show(target, 'tl-bl?'); } }, /** * @private * Attached to the headers' mousemove event. This figures out the CSS cursor to use based on where the mouse is currently * pointed. If the mouse is currently hovered over the extreme left or extreme right of any header cell and the cell next * to it is resizable it is given the resize cursor, otherwise the cursor is set to an empty string. */ handleHdMove : function(e) { var header = this.findHeaderCell(this.activeHdRef); if (header && !this.headersDisabled) { var handleWidth = this.splitHandleWidth || 5, activeRegion = this.activeHdRegion, headerStyle = header.style, colModel = this.cm, cursor = '', pageX = e.getPageX(); if (this.grid.enableColumnResize !== false) { var activeHeaderIndex = this.activeHdIndex, previousVisible = this.getPreviousVisible(activeHeaderIndex), currentResizable = colModel.isResizable(activeHeaderIndex), previousResizable = previousVisible && colModel.isResizable(previousVisible), inLeftResizer = pageX - activeRegion.left <= handleWidth, inRightResizer = activeRegion.right - pageX <= (!this.activeHdBtn ? handleWidth : 2); if (inLeftResizer && previousResizable) { cursor = Ext.isAir ? 'move' : Ext.isWebKit ? 'e-resize' : 'col-resize'; // col-resize not always supported } else if (inRightResizer && currentResizable) { cursor = Ext.isAir ? 'move' : Ext.isWebKit ? 'w-resize' : 'col-resize'; } } headerStyle.cursor = cursor; } }, /** * @private * Returns the index of the nearest currently visible header to the left of the given index. * @param {Number} index The header index * @return {Number/undefined} The index of the nearest visible header */ getPreviousVisible: function(index) { while (index > 0) { if (!this.cm.isHidden(index - 1)) { return index; } index--; } return undefined; }, /** * @private * Tied to the header element's mouseover event - adds the over class to the header cell if the menu is not disabled * for that cell */ handleHdOver : function(e, target) { var header = this.findHeaderCell(target); if (header && !this.headersDisabled) { var fly = this.fly(header); this.activeHdRef = target; this.activeHdIndex = this.getCellIndex(header); this.activeHdRegion = fly.getRegion(); if (!this.isMenuDisabled(this.activeHdIndex, fly)) { fly.addClass('x-grid3-hd-over'); this.activeHdBtn = fly.child('.x-grid3-hd-btn'); if (this.activeHdBtn) { this.activeHdBtn.dom.style.height = (header.firstChild.offsetHeight - 1) + 'px'; } } } }, /** * @private * Tied to the header element's mouseout event. Removes the hover class from the header cell */ handleHdOut : function(e, target) { var header = this.findHeaderCell(target); if (header && (!Ext.isIE9m || !e.within(header, true))) { this.activeHdRef = null; this.fly(header).removeClass('x-grid3-hd-over'); header.style.cursor = ''; } }, /** * @private * Used by {@link #handleHdOver} to determine whether or not to show the header menu class on cell hover * @param {Number} cellIndex The header cell index * @param {Ext.Element} el The cell element currently being hovered over */ isMenuDisabled: function(cellIndex, el) { return this.cm.isMenuDisabled(cellIndex); }, /** * @private * Returns true if there are any rows rendered into the GridView * @return {Boolean} True if any rows have been rendered */ hasRows : function() { var fc = this.mainBody.dom.firstChild; return fc && fc.nodeType == 1 && fc.className != 'x-grid-empty'; }, /** * @private */ isHideableColumn : function(c) { return !c.hidden; }, /** * @private * DEPRECATED - will be removed in Ext JS 5.0 */ bind : function(d, c) { this.initData(d, c); } }); // private // This is a support class used internally by the Grid components Ext.grid.GridView.SplitDragZone = Ext.extend(Ext.dd.DDProxy, { constructor: function(grid, hd){ this.grid = grid; this.view = grid.getView(); this.marker = this.view.resizeMarker; this.proxy = this.view.resizeProxy; Ext.grid.GridView.SplitDragZone.superclass.constructor.call(this, hd, 'gridSplitters' + this.grid.getGridEl().id, { dragElId : Ext.id(this.proxy.dom), resizeFrame:false }); this.scroll = false; this.hw = this.view.splitHandleWidth || 5; }, b4StartDrag : function(x, y){ this.dragHeadersDisabled = this.view.headersDisabled; this.view.headersDisabled = true; var h = this.view.mainWrap.getHeight(); this.marker.setHeight(h); this.marker.show(); this.marker.alignTo(this.view.getHeaderCell(this.cellIndex), 'tl-tl', [-2, 0]); this.proxy.setHeight(h); var w = this.cm.getColumnWidth(this.cellIndex), minw = Math.max(w-this.grid.minColumnWidth, 0); this.resetConstraints(); this.setXConstraint(minw, 1000); this.setYConstraint(0, 0); this.minX = x - minw; this.maxX = x + 1000; this.startPos = x; Ext.dd.DDProxy.prototype.b4StartDrag.call(this, x, y); }, allowHeaderDrag : function(e){ return true; }, handleMouseDown : function(e){ var t = this.view.findHeaderCell(e.getTarget()); if(t && this.allowHeaderDrag(e)){ var xy = this.view.fly(t).getXY(), x = xy[0], exy = e.getXY(), ex = exy[0], w = t.offsetWidth, adjust = false; if((ex - x) <= this.hw){ adjust = -1; }else if((x+w) - ex <= this.hw){ adjust = 0; } if(adjust !== false){ this.cm = this.grid.colModel; var ci = this.view.getCellIndex(t); if(adjust == -1){ if (ci + adjust < 0) { return; } while(this.cm.isHidden(ci+adjust)){ --adjust; if(ci+adjust < 0){ return; } } } this.cellIndex = ci+adjust; this.split = t.dom; if(this.cm.isResizable(this.cellIndex) && !this.cm.isFixed(this.cellIndex)){ Ext.grid.GridView.SplitDragZone.superclass.handleMouseDown.apply(this, arguments); } }else if(this.view.columnDrag){ this.view.columnDrag.callHandleMouseDown(e); } } }, endDrag : function(e){ this.marker.hide(); var v = this.view, endX = Math.max(this.minX, e.getPageX()), diff = endX - this.startPos, disabled = this.dragHeadersDisabled; v.onColumnSplitterMoved(this.cellIndex, this.cm.getColumnWidth(this.cellIndex)+diff); setTimeout(function(){ v.headersDisabled = disabled; }, 50); }, autoOffset : function(){ this.setDelta(0,0); } }); /** * @class Ext.grid.PivotGridView * @extends Ext.grid.GridView * Specialised GridView for rendering Pivot Grid components. Config can be passed to the PivotGridView via the PivotGrid constructor's * viewConfig option: 
    
new Ext.grid.PivotGrid({
    viewConfig: {
        title: 'My Pivot Grid',
        getCellCls: function(value) {
            return value > 10 'red' : 'green';
        }
    }
});
    *

    Currently {@link #title} and {@link #getCellCls} are the only configuration options accepted by PivotGridView. All other * interaction is performed via the {@link Ext.grid.PivotGrid PivotGrid} class.

    */ Ext.grid.PivotGridView = Ext.extend(Ext.grid.GridView, { /** * The CSS class added to all group header cells. Defaults to 'grid-hd-group-cell' * @property colHeaderCellCls * @type String */ colHeaderCellCls: 'grid-hd-group-cell', /** * @cfg {String} title Optional title to be placed in the top left corner of the PivotGrid. Defaults to an empty string. */ title: '', /** * @cfg {Function} getCellCls Optional function which should return a CSS class name for each cell value. This is useful when * color coding cells based on their value. Defaults to undefined. */ /** * Returns the headers to be rendered at the top of the grid. Should be a 2-dimensional array, where each item specifies the number * of columns it groups (column in this case refers to normal grid columns). In the example below we have 5 city groups, which are * each part of a continent supergroup. The colspan for each city group refers to the number of normal grid columns that group spans, * so in this case the grid would be expected to have a total of 12 columns: 
    
[
    {
        items: [
            {header: 'England',   colspan: 5},
            {header: 'USA',       colspan: 3}
        ]
    },
    {
        items: [
            {header: 'London',    colspan: 2},
            {header: 'Cambridge', colspan: 3},
            {header: 'Palo Alto', colspan: 3}
        ]
    }
]
    * In the example above we have cities nested under countries. The nesting could be deeper if desired - e.g. Continent -> Country -> * State -> City, or any other structure. The only constaint is that the same depth must be used throughout the structure. * @return {Array} A tree structure containing the headers to be rendered. Must include the colspan property at each level, which should * be the sum of all child nodes beneath this node. */ getColumnHeaders: function() { return this.grid.topAxis.buildHeaders();; }, /** * Returns the headers to be rendered on the left of the grid. Should be a 2-dimensional array, where each item specifies the number * of rows it groups. In the example below we have 5 city groups, which are each part of a continent supergroup. The rowspan for each * city group refers to the number of normal grid columns that group spans, so in this case the grid would be expected to have a * total of 12 rows: 
    
[
    {
        width: 90,
        items: [
            {header: 'England',   rowspan: 5},
            {header: 'USA',       rowspan: 3}
        ]
    },
    {
        width: 50,
        items: [
            {header: 'London',    rowspan: 2},
            {header: 'Cambridge', rowspan: 3},
            {header: 'Palo Alto', rowspan: 3}
        ]
    }
]
    * In the example above we have cities nested under countries. The nesting could be deeper if desired - e.g. Continent -> Country -> * State -> City, or any other structure. The only constaint is that the same depth must be used throughout the structure. * @return {Array} A tree structure containing the headers to be rendered. Must include the colspan property at each level, which should * be the sum of all child nodes beneath this node. * Each group may specify the width it should be rendered with. * @return {Array} The row groups */ getRowHeaders: function() { return this.grid.leftAxis.buildHeaders(); }, /** * @private * Renders rows between start and end indexes * @param {Number} startRow Index of the first row to render * @param {Number} endRow Index of the last row to render */ renderRows : function(startRow, endRow) { var grid = this.grid, rows = grid.extractData(), rowCount = rows.length, templates = this.templates, renderer = grid.renderer, hasRenderer = typeof renderer == 'function', getCellCls = this.getCellCls, hasGetCellCls = typeof getCellCls == 'function', cellTemplate = templates.cell, rowTemplate = templates.row, rowBuffer = [], meta = {}, tstyle = 'width:' + this.getGridInnerWidth() + 'px;', colBuffer, colCount, column, i, row; startRow = startRow || 0; endRow = Ext.isDefined(endRow) ? endRow : rowCount - 1; for (i = 0; i < rowCount; i++) { row = rows[i]; colCount = row.length; colBuffer = []; //build up each column's HTML for (var j = 0; j < colCount; j++) { meta.id = i + '-' + j; meta.css = j === 0 ? 'x-grid3-cell-first ' : (j == (colCount - 1) ? 'x-grid3-cell-last ' : ''); meta.attr = meta.cellAttr = ''; meta.value = row[j]; if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (hasRenderer) { meta.value = renderer(meta.value); } if (hasGetCellCls) { meta.css += getCellCls(meta.value) + ' '; } colBuffer[colBuffer.length] = cellTemplate.apply(meta); } rowBuffer[rowBuffer.length] = rowTemplate.apply({ tstyle: tstyle, cols : colCount, cells : colBuffer.join(""), alt : '' }); } return rowBuffer.join(""); }, /** * The master template to use when rendering the GridView. Has a default template * @property Ext.Template * @type masterTpl */ masterTpl: new Ext.Template( '
    ', '
    ', '
    ', '
    {title}
    ', '
    ', '
    ', '
    ', '
    ', '
    ', '
    ', '
    ', '
    {body}
    ', '', '
    ', '
    ', '
     
    ', '
     
    ', '
    ' ), /** * @private * Adds a gcell template to the internal templates object. This is used to render the headers in a multi-level column header. */ initTemplates: function() { Ext.grid.PivotGridView.superclass.initTemplates.apply(this, arguments); var templates = this.templates || {}; if (!templates.gcell) { templates.gcell = new Ext.XTemplate( '', '
    ', this.grid.enableHdMenu ? '' : '', '{value}', '
    ', '' ); } this.templates = templates; this.hrowRe = new RegExp("ux-grid-hd-group-row-(\\d+)", ""); }, /** * @private * Sets up the reference to the row headers element */ initElements: function() { Ext.grid.PivotGridView.superclass.initElements.apply(this, arguments); /** * @property rowHeadersEl * @type Ext.Element * The element containing all row headers */ this.rowHeadersEl = new Ext.Element(this.scroller.child('div.x-grid3-row-headers')); /** * @property headerTitleEl * @type Ext.Element * The element that contains the optional title (top left section of the pivot grid) */ this.headerTitleEl = new Ext.Element(this.mainHd.child('div.x-grid3-header-title')); }, /** * @private * Takes row headers into account when calculating total available width */ getGridInnerWidth: function() { var previousWidth = Ext.grid.PivotGridView.superclass.getGridInnerWidth.apply(this, arguments); return previousWidth - this.getTotalRowHeaderWidth(); }, /** * Returns the total width of all row headers as specified by {@link #getRowHeaders} * @return {Number} The total width */ getTotalRowHeaderWidth: function() { var headers = this.getRowHeaders(), length = headers.length, total = 0, i; for (i = 0; i< length; i++) { total += headers[i].width; } return total; }, /** * @private * Returns the total height of all column headers * @return {Number} The total height */ getTotalColumnHeaderHeight: function() { return this.getColumnHeaders().length * 21; }, /** * Inherit docs * @private * @param {HTMLElement} el */ getCellIndex : function(el) { if (el) { var match = el.className.match(this.colRe), data; if (match && (data = match[1])) { return parseInt(data.split('-')[1], 10); } } return false; }, /** * @private * Slight specialisation of the GridView renderUI - just adds the row headers */ renderUI : function() { var templates = this.templates, innerWidth = this.getGridInnerWidth(); return templates.master.apply({ body : templates.body.apply({rows:' '}), ostyle: 'width:' + innerWidth + 'px', bstyle: 'width:' + innerWidth + 'px' }); }, /** * @private * Make sure that the headers and rows are all sized correctly during layout */ onLayout: function(width, height) { Ext.grid.PivotGridView.superclass.onLayout.apply(this, arguments); var width = this.getGridInnerWidth(); this.resizeColumnHeaders(width); this.resizeAllRows(width); }, /** * Refreshs the grid UI * @param {Boolean} headersToo (optional) True to also refresh the headers */ refresh : function(headersToo) { this.fireEvent('beforerefresh', this); this.grid.stopEditing(true); var result = this.renderBody(); this.mainBody.update(result).setWidth(this.getGridInnerWidth()); if (headersToo === true) { this.updateHeaders(); this.updateHeaderSortState(); } this.processRows(0, true); this.layout(); this.applyEmptyText(); this.fireEvent('refresh', this); }, /** * @private * Bypasses GridView's renderHeaders as they are taken care of separately by the PivotAxis instances */ renderHeaders: Ext.emptyFn, /** * @private * Taken care of by PivotAxis */ fitColumns: Ext.emptyFn, /** * @private * Called on layout, ensures that the width of each column header is correct. Omitting this can lead to faulty * layouts when nested in a container. * @param {Number} width The new width */ resizeColumnHeaders: function(width) { var topAxis = this.grid.topAxis; if (topAxis.rendered) { topAxis.el.setWidth(width); } }, /** * @private * Sets the row header div to the correct width. Should be called after rendering and reconfiguration of headers */ resizeRowHeaders: function() { var rowHeaderWidth = this.getTotalRowHeaderWidth(), marginStyle = String.format("margin-left: {0}px;", rowHeaderWidth); this.rowHeadersEl.setWidth(rowHeaderWidth); this.mainBody.applyStyles(marginStyle); Ext.fly(this.innerHd).applyStyles(marginStyle); this.headerTitleEl.setWidth(rowHeaderWidth); this.headerTitleEl.setHeight(this.getTotalColumnHeaderHeight()); }, /** * @private * Resizes all rendered rows to the given width. Usually called by onLayout * @param {Number} width The new width */ resizeAllRows: function(width) { var rows = this.getRows(), length = rows.length, i; for (i = 0; i < length; i++) { Ext.fly(rows[i]).setWidth(width); Ext.fly(rows[i]).child('table').setWidth(width); } }, /** * @private * Updates the Row Headers, deferring the updating of Column Headers to GridView */ updateHeaders: function() { this.renderGroupRowHeaders(); this.renderGroupColumnHeaders(); }, /** * @private * Renders all row header groups at all levels based on the structure fetched from {@link #getGroupRowHeaders} */ renderGroupRowHeaders: function() { var leftAxis = this.grid.leftAxis; this.resizeRowHeaders(); leftAxis.rendered = false; leftAxis.render(this.rowHeadersEl); this.setTitle(this.title); }, /** * Sets the title text in the top left segment of the PivotGridView * @param {String} title The title */ setTitle: function(title) { this.headerTitleEl.child('span').dom.innerHTML = title; }, /** * @private * Renders all column header groups at all levels based on the structure fetched from {@link #getColumnHeaders} */ renderGroupColumnHeaders: function() { var topAxis = this.grid.topAxis; topAxis.rendered = false; topAxis.render(this.innerHd.firstChild); }, /** * @private * Overridden to test whether the user is hovering over a group cell, in which case we don't show the menu */ isMenuDisabled: function(cellIndex, el) { return true; } });/** * @class Ext.grid.PivotAxis * @extends Ext.Component *

    PivotAxis is a class that supports a {@link Ext.grid.PivotGrid}. Each PivotGrid contains two PivotAxis instances - the left * axis and the top axis. Each PivotAxis defines an ordered set of dimensions, each of which should correspond to a field in a * Store's Record (see {@link Ext.grid.PivotGrid} documentation for further explanation).

    *

    Developers should have little interaction with the PivotAxis instances directly as most of their management is performed by * the PivotGrid. An exception is the dynamic reconfiguration of axes at run time - to achieve this we use PivotAxis's * {@link #setDimensions} function and refresh the grid:

    
var pivotGrid = new Ext.grid.PivotGrid({
    //some PivotGrid config here
});

//change the left axis dimensions
pivotGrid.leftAxis.setDimensions([
    {
        dataIndex: 'person',
        direction: 'DESC',
        width    : 100
    },
    {
        dataIndex: 'product',
        direction: 'ASC',
        width    : 80
    }
]);

pivotGrid.view.refresh(true);
    * This clears the previous dimensions on the axis and redraws the grid with the new dimensions. */ Ext.grid.PivotAxis = Ext.extend(Ext.Component, { /** * @cfg {String} orientation One of 'vertical' or 'horizontal'. Defaults to horizontal */ orientation: 'horizontal', /** * @cfg {Number} defaultHeaderWidth The width to render each row header that does not have a width specified via {@link #getRowGroupHeaders}. Defaults to 80. */ defaultHeaderWidth: 80, /** * @private * @cfg {Number} paddingWidth The amount of padding used by each cell. * TODO: From 4.x onwards this can be removed as it won't be needed. For now it is used to account for the differences between * the content box and border box measurement models */ paddingWidth: 7, /** * Updates the dimensions used by this axis * @param {Array} dimensions The new dimensions */ setDimensions: function(dimensions) { this.dimensions = dimensions; }, /** * @private * Builds the html table that contains the dimensions for this axis. This branches internally between vertical * and horizontal orientations because the table structure is slightly different in each case */ onRender: function(ct, position) { var rows = this.orientation == 'horizontal' ? this.renderHorizontalRows() : this.renderVerticalRows(); this.el = Ext.DomHelper.overwrite(ct.dom, {tag: 'table', cn: rows}, true); }, /** * @private * Specialised renderer for horizontal oriented axes * @return {Object} The HTML Domspec for a horizontal oriented axis */ renderHorizontalRows: function() { var headers = this.buildHeaders(), rowCount = headers.length, rows = [], cells, cols, colCount, i, j; for (i = 0; i < rowCount; i++) { cells = []; cols = headers[i].items; colCount = cols.length; for (j = 0; j < colCount; j++) { cells.push({ tag: 'td', html: cols[j].header, colspan: cols[j].span }); } rows[i] = { tag: 'tr', cn: cells }; } return rows; }, /** * @private * Specialised renderer for vertical oriented axes * @return {Object} The HTML Domspec for a vertical oriented axis */ renderVerticalRows: function() { var headers = this.buildHeaders(), colCount = headers.length, rowCells = [], rows = [], rowCount, col, row, colWidth, i, j; for (i = 0; i < colCount; i++) { col = headers[i]; colWidth = col.width || 80; rowCount = col.items.length; for (j = 0; j < rowCount; j++) { row = col.items[j]; rowCells[row.start] = rowCells[row.start] || []; rowCells[row.start].push({ tag : 'td', html : row.header, rowspan: row.span, width : Ext.isBorderBox ? colWidth : colWidth - this.paddingWidth }); } } rowCount = rowCells.length; for (i = 0; i < rowCount; i++) { rows[i] = { tag: 'tr', cn : rowCells[i] }; } return rows; }, /** * @private * Returns the set of all unique tuples based on the bound store and dimension definitions. * Internally we construct a new, temporary store to make use of the multi-sort capabilities of Store. In * 4.x this functionality should have been moved to MixedCollection so this step should not be needed. * @return {Array} All unique tuples */ getTuples: function() { var newStore = new Ext.data.Store({}); newStore.data = this.store.data.clone(); newStore.fields = this.store.fields; var sorters = [], dimensions = this.dimensions, length = dimensions.length, i; for (i = 0; i < length; i++) { sorters.push({ field : dimensions[i].dataIndex, direction: dimensions[i].direction || 'ASC' }); } newStore.sort(sorters); var records = newStore.data.items, hashes = [], tuples = [], recData, hash, info, data, key; length = records.length; for (i = 0; i < length; i++) { info = this.getRecordInfo(records[i]); data = info.data; hash = ""; for (key in data) { hash += data[key] + '---'; } if (hashes.indexOf(hash) == -1) { hashes.push(hash); tuples.push(info); } } newStore.destroy(); return tuples; }, /** * @private */ getRecordInfo: function(record) { var dimensions = this.dimensions, length = dimensions.length, data = {}, dimension, dataIndex, i; //get an object containing just the data we are interested in based on the configured dimensions for (i = 0; i < length; i++) { dimension = dimensions[i]; dataIndex = dimension.dataIndex; data[dataIndex] = record.get(dataIndex); } //creates a specialised matcher function for a given tuple. The returned function will return //true if the record passed to it matches the dataIndex values of each dimension in this axis var createMatcherFunction = function(data) { return function(record) { for (var dataIndex in data) { if (record.get(dataIndex) != data[dataIndex]) { return false; } } return true; }; }; return { data: data, matcher: createMatcherFunction(data) }; }, /** * @private * Uses the calculated set of tuples to build an array of headers that can be rendered into a table using rowspan or * colspan. Basically this takes the set of tuples and spans any cells that run into one another, so if we had dimensions * of Person and Product and several tuples containing different Products for the same Person, those Products would be * spanned. * @return {Array} The headers */ buildHeaders: function() { var tuples = this.getTuples(), rowCount = tuples.length, dimensions = this.dimensions, dimension, colCount = dimensions.length, headers = [], tuple, rows, currentHeader, previousHeader, span, start, isLast, changed, i, j; for (i = 0; i < colCount; i++) { dimension = dimensions[i]; rows = []; span = 0; start = 0; for (j = 0; j < rowCount; j++) { tuple = tuples[j]; isLast = j == (rowCount - 1); currentHeader = tuple.data[dimension.dataIndex]; /* * 'changed' indicates that we need to create a new cell. This should be true whenever the cell * above (previousHeader) is different from this cell, or when the cell on the previous dimension * changed (e.g. if the current dimension is Product and the previous was Person, we need to start * a new cell if Product is the same but Person changed, so we check the previous dimension and tuple) */ changed = previousHeader != undefined && previousHeader != currentHeader; if (i > 0 && j > 0) { changed = changed || tuple.data[dimensions[i-1].dataIndex] != tuples[j-1].data[dimensions[i-1].dataIndex]; } if (changed) { rows.push({ header: previousHeader, span : span, start : start }); start += span; span = 0; } if (isLast) { rows.push({ header: currentHeader, span : span + 1, start : start }); start += span; span = 0; } previousHeader = currentHeader; span++; } headers.push({ items: rows, width: dimension.width || this.defaultHeaderWidth }); previousHeader = undefined; } return headers; } }); // private // This is a support class used internally by the Grid components Ext.grid.HeaderDragZone = Ext.extend(Ext.dd.DragZone, { maxDragWidth: 120, constructor : function(grid, hd, hd2){ this.grid = grid; this.view = grid.getView(); this.ddGroup = "gridHeader" + this.grid.getGridEl().id; Ext.grid.HeaderDragZone.superclass.constructor.call(this, hd); if(hd2){ this.setHandleElId(Ext.id(hd)); this.setOuterHandleElId(Ext.id(hd2)); } this.scroll = false; }, getDragData : function(e){ var t = Ext.lib.Event.getTarget(e), h = this.view.findHeaderCell(t); if(h){ return {ddel: h.firstChild, header:h}; } return false; }, onInitDrag : function(e){ // keep the value here so we can restore it; this.dragHeadersDisabled = this.view.headersDisabled; this.view.headersDisabled = true; var clone = this.dragData.ddel.cloneNode(true); clone.id = Ext.id(); clone.style.width = Math.min(this.dragData.header.offsetWidth,this.maxDragWidth) + "px"; this.proxy.update(clone); return true; }, afterValidDrop : function(){ this.completeDrop(); }, afterInvalidDrop : function(){ this.completeDrop(); }, completeDrop: function(){ var v = this.view, disabled = this.dragHeadersDisabled; setTimeout(function(){ v.headersDisabled = disabled; }, 50); } }); // private // This is a support class used internally by the Grid components Ext.grid.HeaderDropZone = Ext.extend(Ext.dd.DropZone, { proxyOffsets : [-4, -9], fly: Ext.Element.fly, constructor : function(grid, hd, hd2){ this.grid = grid; this.view = grid.getView(); // split the proxies so they don't interfere with mouse events this.proxyTop = Ext.DomHelper.append(document.body, { cls:"col-move-top", html:" " }, true); this.proxyBottom = Ext.DomHelper.append(document.body, { cls:"col-move-bottom", html:" " }, true); this.proxyTop.hide = this.proxyBottom.hide = function(){ this.setLeftTop(-100,-100); this.setStyle("visibility", "hidden"); }; this.ddGroup = "gridHeader" + this.grid.getGridEl().id; // temporarily disabled //Ext.dd.ScrollManager.register(this.view.scroller.dom); Ext.grid.HeaderDropZone.superclass.constructor.call(this, grid.getGridEl().dom); }, getTargetFromEvent : function(e){ var t = Ext.lib.Event.getTarget(e), cindex = this.view.findCellIndex(t); if(cindex !== false){ return this.view.getHeaderCell(cindex); } }, nextVisible : function(h){ var v = this.view, cm = this.grid.colModel; h = h.nextSibling; while(h){ if(!cm.isHidden(v.getCellIndex(h))){ return h; } h = h.nextSibling; } return null; }, prevVisible : function(h){ var v = this.view, cm = this.grid.colModel; h = h.prevSibling; while(h){ if(!cm.isHidden(v.getCellIndex(h))){ return h; } h = h.prevSibling; } return null; }, positionIndicator : function(h, n, e){ var x = Ext.lib.Event.getPageX(e), r = Ext.lib.Dom.getRegion(n.firstChild), px, pt, py = r.top + this.proxyOffsets[1]; if((r.right - x) <= (r.right-r.left)/2){ px = r.right+this.view.borderWidth; pt = "after"; }else{ px = r.left; pt = "before"; } if(this.grid.colModel.isFixed(this.view.getCellIndex(n))){ return false; } px += this.proxyOffsets[0]; this.proxyTop.setLeftTop(px, py); this.proxyTop.show(); if(!this.bottomOffset){ this.bottomOffset = this.view.mainHd.getHeight(); } this.proxyBottom.setLeftTop(px, py+this.proxyTop.dom.offsetHeight+this.bottomOffset); this.proxyBottom.show(); return pt; }, onNodeEnter : function(n, dd, e, data){ if(data.header != n){ this.positionIndicator(data.header, n, e); } }, onNodeOver : function(n, dd, e, data){ var result = false; if(data.header != n){ result = this.positionIndicator(data.header, n, e); } if(!result){ this.proxyTop.hide(); this.proxyBottom.hide(); } return result ? this.dropAllowed : this.dropNotAllowed; }, onNodeOut : function(n, dd, e, data){ this.proxyTop.hide(); this.proxyBottom.hide(); }, onNodeDrop : function(n, dd, e, data){ var h = data.header; if(h != n){ var cm = this.grid.colModel, x = Ext.lib.Event.getPageX(e), r = Ext.lib.Dom.getRegion(n.firstChild), pt = (r.right - x) <= ((r.right-r.left)/2) ? "after" : "before", oldIndex = this.view.getCellIndex(h), newIndex = this.view.getCellIndex(n); if(pt == "after"){ newIndex++; } if(oldIndex < newIndex){ newIndex--; } cm.moveColumn(oldIndex, newIndex); return true; } return false; } }); Ext.grid.GridView.ColumnDragZone = Ext.extend(Ext.grid.HeaderDragZone, { constructor : function(grid, hd){ Ext.grid.GridView.ColumnDragZone.superclass.constructor.call(this, grid, hd, null); this.proxy.el.addClass('x-grid3-col-dd'); }, handleMouseDown : function(e){ }, callHandleMouseDown : function(e){ Ext.grid.GridView.ColumnDragZone.superclass.handleMouseDown.call(this, e); } });// private // This is a support class used internally by the Grid components Ext.grid.SplitDragZone = Ext.extend(Ext.dd.DDProxy, { fly: Ext.Element.fly, constructor : function(grid, hd, hd2){ this.grid = grid; this.view = grid.getView(); this.proxy = this.view.resizeProxy; Ext.grid.SplitDragZone.superclass.constructor.call(this, hd, "gridSplitters" + this.grid.getGridEl().id, { dragElId : Ext.id(this.proxy.dom), resizeFrame:false }); this.setHandleElId(Ext.id(hd)); this.setOuterHandleElId(Ext.id(hd2)); this.scroll = false; }, b4StartDrag : function(x, y){ this.view.headersDisabled = true; this.proxy.setHeight(this.view.mainWrap.getHeight()); var w = this.cm.getColumnWidth(this.cellIndex); var minw = Math.max(w-this.grid.minColumnWidth, 0); this.resetConstraints(); this.setXConstraint(minw, 1000); this.setYConstraint(0, 0); this.minX = x - minw; this.maxX = x + 1000; this.startPos = x; Ext.dd.DDProxy.prototype.b4StartDrag.call(this, x, y); }, handleMouseDown : function(e){ var ev = Ext.EventObject.setEvent(e); var t = this.fly(ev.getTarget()); if(t.hasClass("x-grid-split")){ this.cellIndex = this.view.getCellIndex(t.dom); this.split = t.dom; this.cm = this.grid.colModel; if(this.cm.isResizable(this.cellIndex) && !this.cm.isFixed(this.cellIndex)){ Ext.grid.SplitDragZone.superclass.handleMouseDown.apply(this, arguments); } } }, endDrag : function(e){ this.view.headersDisabled = false; var endX = Math.max(this.minX, Ext.lib.Event.getPageX(e)); var diff = endX - this.startPos; this.view.onColumnSplitterMoved(this.cellIndex, this.cm.getColumnWidth(this.cellIndex)+diff); }, autoOffset : function(){ this.setDelta(0,0); } });/** * @class Ext.grid.GridDragZone * @extends Ext.dd.DragZone *

    A customized implementation of a {@link Ext.dd.DragZone DragZone} which provides default implementations of two of the * template methods of DragZone to enable dragging of the selected rows of a GridPanel.

    *

    A cooperating {@link Ext.dd.DropZone DropZone} must be created who's template method implementations of * {@link Ext.dd.DropZone#onNodeEnter onNodeEnter}, {@link Ext.dd.DropZone#onNodeOver onNodeOver}, * {@link Ext.dd.DropZone#onNodeOut onNodeOut} and {@link Ext.dd.DropZone#onNodeDrop onNodeDrop}

    are able * to process the {@link #getDragData data} which is provided. */ Ext.grid.GridDragZone = function(grid, config){ this.view = grid.getView(); Ext.grid.GridDragZone.superclass.constructor.call(this, this.view.mainBody.dom, config); this.scroll = false; this.grid = grid; this.ddel = document.createElement('div'); this.ddel.className = 'x-grid-dd-wrap'; // prevent the default action, but don't stop propagation this.preventDefault = true; }; Ext.extend(Ext.grid.GridDragZone, Ext.dd.DragZone, { ddGroup : "GridDD", /** *

    The provided implementation of the getDragData method which collects the data to be dragged from the GridPanel on mousedown.

    *

    This data is available for processing in the {@link Ext.dd.DropZone#onNodeEnter onNodeEnter}, {@link Ext.dd.DropZone#onNodeOver onNodeOver}, * {@link Ext.dd.DropZone#onNodeOut onNodeOut} and {@link Ext.dd.DropZone#onNodeDrop onNodeDrop} methods of a cooperating {@link Ext.dd.DropZone DropZone}.

    *

    The data object contains the following properties:

      *
    • grid : Ext.Grid.GridPanel
      The GridPanel from which the data is being dragged.
      • *
    • ddel : htmlElement
      An htmlElement which provides the "picture" of the data being dragged.
      • *
    • rowIndex : Number
      The index of the row which receieved the mousedown gesture which triggered the drag.
      • *
    • selections : Array
      Array of the selected Records which are being dragged from the GridPanel. * Unless a CellSelectionModel is being used and the grid is configured dragCell: true, in which case, this will be * an Array containing the single selected cell data as [rowIndex, cellIndex].
      • *

    */ getDragData : function(e){ var t = Ext.lib.Event.getTarget(e), sm, rowIndex = this.view.findRowIndex(t), cellIndex, selectedCell, selection; if (rowIndex !== false){ sm = this.grid.selModel; // Handle mousedown on unselected items (depending on what kind of selection we are using) // Select the mousedowned item if (sm.getSelectedCell) { cellIndex = this.view.findCellIndex(t); selectedCell = sm.getSelectedCell(); if (!selectedCell || selectedCell[0] !== rowIndex || selectedCell[1] !== cellIndex) { sm.handleMouseDown(this.grid, rowIndex, cellIndex, e); } if (this.grid.dragCell) { // Selection is the cell coordinates selection = sm.getSelectedCell(); if (!this.grid.hasOwnProperty('ddText')) { this.grid.ddText = '{0} selected cell{1}'; } } else { // Selection is the mousedowned row selection = [this.grid.store.getAt(rowIndex)]; } } else { if(!sm.isSelected(rowIndex) || e.hasModifier()){ sm.handleMouseDown(this.grid, rowIndex, e); } selection = sm.getSelections(); } return {grid: this.grid, ddel: this.ddel, rowIndex: rowIndex, selections: selection}; } return false; }, /** *

    The provided implementation of the onInitDrag method. Sets the innerHTML of the drag proxy which provides the "picture" * of the data being dragged.

    *

    The innerHTML data is found by calling the owning GridPanel's {@link Ext.grid.GridPanel#getDragDropText getDragDropText}.

    */ onInitDrag : function(e){ var data = this.dragData; this.ddel.innerHTML = this.grid.getDragDropText(); this.proxy.update(this.ddel); // fire start drag? }, /** * An empty immplementation. Implement this to provide behaviour after a repair of an invalid drop. An implementation might highlight * the selected rows to show that they have not been dragged. */ afterRepair : function(){ this.dragging = false; }, /** *

    An empty implementation. Implement this to provide coordinates for the drag proxy to slide back to after an invalid drop.

    *

    Called before a repair of an invalid drop to get the XY to animate to.

    * @param {EventObject} e The mouse up event * @return {Array} The xy location (e.g. [100, 200]) */ getRepairXY : function(e, data){ return false; }, onEndDrag : function(data, e){ // fire end drag? }, onValidDrop : function(dd, e, id){ // fire drag drop? this.hideProxy(); }, beforeInvalidDrop : function(e, id){ } }); /** * @class Ext.grid.ColumnModel * @extends Ext.util.Observable *

    After the data has been read into the client side cache ({@link Ext.data.Store Store}), * the ColumnModel is used to configure how and what parts of that data will be displayed in the * vertical slices (columns) of the grid. The Ext.grid.ColumnModel Class is the default implementation * of a ColumnModel used by implentations of {@link Ext.grid.GridPanel GridPanel}.

    *

    Data is mapped into the store's records and then indexed into the ColumnModel using the * {@link Ext.grid.Column#dataIndex dataIndex}:

    * 
    
{data source} == mapping ==> {data store} == {@link Ext.grid.Column#dataIndex dataIndex} ==> {ColumnModel}
 *
    *

    Each {@link Ext.grid.Column Column} in the grid's ColumnModel is configured with a * {@link Ext.grid.Column#dataIndex dataIndex} to specify how the data within * each record in the store is indexed into the ColumnModel.

    *

    There are two ways to initialize the ColumnModel class:

    *

    Initialization Method 1: an Array

    
 var colModel = new Ext.grid.ColumnModel([
    { header: "Ticker", width: 60, sortable: true},
    { header: "Company Name", width: 150, sortable: true, id: 'company'},
    { header: "Market Cap.", width: 100, sortable: true},
    { header: "$ Sales", width: 100, sortable: true, renderer: money},
    { header: "Employees", width: 100, sortable: true, resizable: false}
 ]);
    *

    The ColumnModel may be initialized with an Array of {@link Ext.grid.Column} column configuration * objects to define the initial layout / display of the columns in the Grid. The order of each * {@link Ext.grid.Column} column configuration object within the specified Array defines the initial * order of the column display. A Column's display may be initially hidden using the * {@link Ext.grid.Column#hidden hidden} config property (and then shown using the column * header menu). Fields that are not included in the ColumnModel will not be displayable at all.

    *

    How each column in the grid correlates (maps) to the {@link Ext.data.Record} field in the * {@link Ext.data.Store Store} the column draws its data from is configured through the * {@link Ext.grid.Column#dataIndex dataIndex}. If the * {@link Ext.grid.Column#dataIndex dataIndex} is not explicitly defined (as shown in the * example above) it will use the column configuration's index in the Array as the index.

    *

    See {@link Ext.grid.Column} for additional configuration options for each column.

    *

    Initialization Method 2: an Object

    *

    In order to use configuration options from Ext.grid.ColumnModel, an Object may be used to * initialize the ColumnModel. The column configuration Array will be specified in the {@link #columns} * config property. The {@link #defaults} config property can be used to apply defaults * for all columns, e.g.:

    
 var colModel = new Ext.grid.ColumnModel({
    columns: [
        { header: "Ticker", width: 60, menuDisabled: false},
        { header: "Company Name", width: 150, id: 'company'},
        { header: "Market Cap."},
        { header: "$ Sales", renderer: money},
        { header: "Employees", resizable: false}
    ],
    defaults: {
        sortable: true,
        menuDisabled: true,
        width: 100
    },
    listeners: {
        {@link #hiddenchange}: function(cm, colIndex, hidden) {
            saveConfig(colIndex, hidden);
        }
    }
});
    *

    In both examples above, the ability to apply a CSS class to all cells in a column (including the * header) is demonstrated through the use of the {@link Ext.grid.Column#id id} config * option. This column could be styled by including the following css:

    
 //add this css *after* the core css is loaded
.x-grid3-td-company {
    color: red; // entire column will have red font
}
// modify the header row only, adding an icon to the column header
.x-grid3-hd-company {
    background: transparent
        url(../../resources/images/icons/silk/building.png)
        no-repeat 3px 3px ! important;
        padding-left:20px;
}
    * Note that the "Company Name" column could be specified as the * {@link Ext.grid.GridPanel}.{@link Ext.grid.GridPanel#autoExpandColumn autoExpandColumn}. * @constructor * @param {Mixed} config Specify either an Array of {@link Ext.grid.Column} configuration objects or specify * a configuration Object (see introductory section discussion utilizing Initialization Method 2 above). */ Ext.grid.ColumnModel = Ext.extend(Ext.util.Observable, { /** * @cfg {Number} defaultWidth (optional) The width of columns which have no {@link #width} * specified (defaults to 100). This property shall preferably be configured through the * {@link #defaults} config property. */ defaultWidth: 100, /** * @cfg {Boolean} defaultSortable (optional) Default sortable of columns which have no * sortable specified (defaults to false). This property shall preferably be configured * through the {@link #defaults} config property. */ defaultSortable: false, /** * @cfg {Array} columns An Array of object literals. The config options defined by * {@link Ext.grid.Column} are the options which may appear in the object literal for each * individual column definition. */ /** * @cfg {Object} defaults Object literal which will be used to apply {@link Ext.grid.Column} * configuration options to all {@link #columns}. Configuration options specified with * individual {@link Ext.grid.Column column} configs will supersede these {@link #defaults}. */ constructor : function(config) { /** * An Array of {@link Ext.grid.Column Column definition} objects representing the configuration * of this ColumnModel. See {@link Ext.grid.Column} for the configuration properties that may * be specified. * @property config * @type Array */ if (config.columns) { Ext.apply(this, config); this.setConfig(config.columns, true); } else { this.setConfig(config, true); } this.addEvents( /** * @event widthchange * Fires when the width of a column is programmaticially changed using * {@link #setColumnWidth}. * Note internal resizing suppresses the event from firing. See also * {@link Ext.grid.GridPanel}.{@link #columnresize}. * @param {ColumnModel} this * @param {Number} columnIndex The column index * @param {Number} newWidth The new width */ "widthchange", /** * @event headerchange * Fires when the text of a header changes. * @param {ColumnModel} this * @param {Number} columnIndex The column index * @param {String} newText The new header text */ "headerchange", /** * @event hiddenchange * Fires when a column is hidden or "unhidden". * @param {ColumnModel} this * @param {Number} columnIndex The column index * @param {Boolean} hidden true if hidden, false otherwise */ "hiddenchange", /** * @event columnmoved * Fires when a column is moved. * @param {ColumnModel} this * @param {Number} oldIndex * @param {Number} newIndex */ "columnmoved", /** * @event configchange * Fires when the configuration is changed * @param {ColumnModel} this */ "configchange" ); Ext.grid.ColumnModel.superclass.constructor.call(this); }, /** * Returns the id of the column at the specified index. * @param {Number} index The column index * @return {String} the id */ getColumnId : function(index) { return this.config[index].id; }, getColumnAt : function(index) { return this.config[index]; }, /** *

    Reconfigures this column model according to the passed Array of column definition objects. * For a description of the individual properties of a column definition object, see the * Config Options.

    *

    Causes the {@link #configchange} event to be fired. A {@link Ext.grid.GridPanel GridPanel} * using this ColumnModel will listen for this event and refresh its UI automatically.

    * @param {Array} config Array of Column definition objects. * @param {Boolean} initial Specify true to bypass cleanup which deletes the totalWidth * and destroys existing editors. */ setConfig : function(config, initial) { var i, c, len; if (!initial) { // cleanup delete this.totalWidth; for (i = 0, len = this.config.length; i < len; i++) { c = this.config[i]; if (c.setEditor) { //check here, in case we have a special column like a CheckboxSelectionModel c.setEditor(null); } } } // backward compatibility this.defaults = Ext.apply({ width: this.defaultWidth, sortable: this.defaultSortable }, this.defaults); this.config = config; this.lookup = {}; for (i = 0, len = config.length; i < len; i++) { c = Ext.applyIf(config[i], this.defaults); // if no id, create one using column's ordinal position if (Ext.isEmpty(c.id)) { c.id = i; } if (!c.isColumn) { var Cls = Ext.grid.Column.types[c.xtype || 'gridcolumn']; c = new Cls(c); config[i] = c; } this.lookup[c.id] = c; } if (!initial) { this.fireEvent('configchange', this); } }, /** * Returns the column for a specified id. * @param {String} id The column id * @return {Object} the column */ getColumnById : function(id) { return this.lookup[id]; }, /** * Returns the index for a specified column id. * @param {String} id The column id * @return {Number} the index, or -1 if not found */ getIndexById : function(id) { for (var i = 0, len = this.config.length; i < len; i++) { if (this.config[i].id == id) { return i; } } return -1; }, /** * Moves a column from one position to another. * @param {Number} oldIndex The index of the column to move. * @param {Number} newIndex The position at which to reinsert the coolumn. */ moveColumn : function(oldIndex, newIndex) { var config = this.config, c = config[oldIndex]; config.splice(oldIndex, 1); config.splice(newIndex, 0, c); this.dataMap = null; this.fireEvent("columnmoved", this, oldIndex, newIndex); }, /** * Returns the number of columns. * @param {Boolean} visibleOnly Optional. Pass as true to only include visible columns. * @return {Number} */ getColumnCount : function(visibleOnly) { var length = this.config.length, c = 0, i; if (visibleOnly === true) { for (i = 0; i < length; i++) { if (!this.isHidden(i)) { c++; } } return c; } return length; }, /** * Returns the column configs that return true by the passed function that is called * with (columnConfig, index) 
    
// returns an array of column config objects for all hidden columns
var columns = grid.getColumnModel().getColumnsBy(function(c){
  return c.hidden;
});
    * @param {Function} fn A function which, when passed a {@link Ext.grid.Column Column} object, must * return true if the column is to be included in the returned Array. * @param {Object} scope (optional) The scope (this reference) in which the function * is executed. Defaults to this ColumnModel. * @return {Array} result */ getColumnsBy : function(fn, scope) { var config = this.config, length = config.length, result = [], i, c; for (i = 0; i < length; i++){ c = config[i]; if (fn.call(scope || this, c, i) === true) { result[result.length] = c; } } return result; }, /** * Returns true if the specified column is sortable. * @param {Number} col The column index * @return {Boolean} */ isSortable : function(col) { return !!this.config[col].sortable; }, /** * Returns true if the specified column menu is disabled. * @param {Number} col The column index * @return {Boolean} */ isMenuDisabled : function(col) { return !!this.config[col].menuDisabled; }, /** * Returns the rendering (formatting) function defined for the column. * @param {Number} col The column index. * @return {Function} The function used to render the cell. See {@link #setRenderer}. */ getRenderer : function(col) { return this.config[col].renderer || Ext.grid.ColumnModel.defaultRenderer; }, getRendererScope : function(col) { return this.config[col].scope; }, /** * Sets the rendering (formatting) function for a column. See {@link Ext.util.Format} for some * default formatting functions. * @param {Number} col The column index * @param {Function} fn The function to use to process the cell's raw data * to return HTML markup for the grid view. The render function is called with * the following parameters:
      *
    • value : Object

      The data value for the cell.

      • *
    • metadata : Object

      An object in which you may set the following attributes:

        *
      • css : String

        A CSS class name to add to the cell's TD element.

        • *
      • attr : String

        An HTML attribute definition string to apply to the data container element within the table cell * (e.g. 'style="color:red;"').

      • *
    • record : Ext.data.record

      The {@link Ext.data.Record} from which the data was extracted.

      • *
    • rowIndex : Number

      Row index

      • *
    • colIndex : Number

      Column index

      • *
    • store : Ext.data.Store

      The {@link Ext.data.Store} object from which the Record was extracted.

    */ setRenderer : function(col, fn) { this.config[col].renderer = fn; }, /** * Returns the width for the specified column. * @param {Number} col The column index * @return {Number} */ getColumnWidth : function(col) { var width = this.config[col].width; if(typeof width != 'number'){ width = this.defaultWidth; } return width; }, /** * Sets the width for a column. * @param {Number} col The column index * @param {Number} width The new width * @param {Boolean} suppressEvent True to suppress firing the {@link #widthchange} * event. Defaults to false. */ setColumnWidth : function(col, width, suppressEvent) { this.config[col].width = width; this.totalWidth = null; if (!suppressEvent) { this.fireEvent("widthchange", this, col, width); } }, /** * Returns the total width of all columns. * @param {Boolean} includeHidden True to include hidden column widths * @return {Number} */ getTotalWidth : function(includeHidden) { if (!this.totalWidth) { this.totalWidth = 0; for (var i = 0, len = this.config.length; i < len; i++) { if (includeHidden || !this.isHidden(i)) { this.totalWidth += this.getColumnWidth(i); } } } return this.totalWidth; }, /** * Returns the header for the specified column. * @param {Number} col The column index * @return {String} */ getColumnHeader : function(col) { return this.config[col].header; }, /** * Sets the header for a column. * @param {Number} col The column index * @param {String} header The new header */ setColumnHeader : function(col, header) { this.config[col].header = header; this.fireEvent("headerchange", this, col, header); }, /** * Returns the tooltip for the specified column. * @param {Number} col The column index * @return {String} */ getColumnTooltip : function(col) { return this.config[col].tooltip; }, /** * Sets the tooltip for a column. * @param {Number} col The column index * @param {String} tooltip The new tooltip */ setColumnTooltip : function(col, tooltip) { this.config[col].tooltip = tooltip; }, /** * Returns the dataIndex for the specified column. 
    
// Get field name for the column
var fieldName = grid.getColumnModel().getDataIndex(columnIndex);
    * @param {Number} col The column index * @return {String} The column's dataIndex */ getDataIndex : function(col) { return this.config[col].dataIndex; }, /** * Sets the dataIndex for a column. * @param {Number} col The column index * @param {String} dataIndex The new dataIndex */ setDataIndex : function(col, dataIndex) { this.config[col].dataIndex = dataIndex; }, /** * Finds the index of the first matching column for the given dataIndex. * @param {String} col The dataIndex to find * @return {Number} The column index, or -1 if no match was found */ findColumnIndex : function(dataIndex) { var c = this.config; for(var i = 0, len = c.length; i < len; i++){ if(c[i].dataIndex == dataIndex){ return i; } } return -1; }, /** * Returns true if the cell is editable. 
    
var store = new Ext.data.Store({...});
var colModel = new Ext.grid.ColumnModel({
  columns: [...],
  isCellEditable: function(col, row) {
    var record = store.getAt(row);
    if (record.get('readonly')) { // replace with your condition
      return false;
    }
    return Ext.grid.ColumnModel.prototype.isCellEditable.call(this, col, row);
  }
});
var grid = new Ext.grid.GridPanel({
  store: store,
  colModel: colModel,
  ...
});
    * @param {Number} colIndex The column index * @param {Number} rowIndex The row index * @return {Boolean} */ isCellEditable : function(colIndex, rowIndex) { var c = this.config[colIndex], ed = c.editable; //force boolean return !!(ed || (!Ext.isDefined(ed) && c.editor)); }, /** * Returns the editor defined for the cell/column. * @param {Number} colIndex The column index * @param {Number} rowIndex The row index * @return {Ext.Editor} The {@link Ext.Editor Editor} that was created to wrap * the {@link Ext.form.Field Field} used to edit the cell. */ getCellEditor : function(colIndex, rowIndex) { return this.config[colIndex].getCellEditor(rowIndex); }, /** * Sets if a column is editable. * @param {Number} col The column index * @param {Boolean} editable True if the column is editable */ setEditable : function(col, editable) { this.config[col].editable = editable; }, /** * Returns true if the column is {@link Ext.grid.Column#hidden hidden}, * false otherwise. * @param {Number} colIndex The column index * @return {Boolean} */ isHidden : function(colIndex) { return !!this.config[colIndex].hidden; // ensure returns boolean }, /** * Returns true if the column is {@link Ext.grid.Column#fixed fixed}, * false otherwise. * @param {Number} colIndex The column index * @return {Boolean} */ isFixed : function(colIndex) { return !!this.config[colIndex].fixed; }, /** * Returns true if the column can be resized * @return {Boolean} */ isResizable : function(colIndex) { return colIndex >= 0 && this.config[colIndex].resizable !== false && this.config[colIndex].fixed !== true; }, /** * Sets if a column is hidden. 
    
myGrid.getColumnModel().setHidden(0, true); // hide column 0 (0 = the first column).
    * @param {Number} colIndex The column index * @param {Boolean} hidden True if the column is hidden */ setHidden : function(colIndex, hidden) { var c = this.config[colIndex]; if(c.hidden !== hidden){ c.hidden = hidden; this.totalWidth = null; this.fireEvent("hiddenchange", this, colIndex, hidden); } }, /** * Sets the editor for a column and destroys the prior editor. * @param {Number} col The column index * @param {Object} editor The editor object */ setEditor : function(col, editor) { this.config[col].setEditor(editor); }, /** * Destroys this column model by purging any event listeners. Destroys and dereferences all Columns. */ destroy : function() { var length = this.config.length, i = 0; for (; i < length; i++){ this.config[i].destroy(); // Column's destroy encapsulates all cleanup. } delete this.config; delete this.lookup; this.purgeListeners(); }, /** * @private * Setup any saved state for the column, ensures that defaults are applied. */ setState : function(col, state) { state = Ext.applyIf(state, this.defaults); Ext.apply(this.config[col], state); } }); // private Ext.grid.ColumnModel.defaultRenderer = function(value) { if (typeof value == "string" && value.length < 1) { return " "; } return value; };/** * @class Ext.grid.AbstractSelectionModel * @extends Ext.util.Observable * Abstract base class for grid SelectionModels. It provides the interface that should be * implemented by descendant classes. This class should not be directly instantiated. * @constructor */ Ext.grid.AbstractSelectionModel = Ext.extend(Ext.util.Observable, { /** * The GridPanel for which this SelectionModel is handling selection. Read-only. * @type Object * @property grid */ constructor : function(){ this.locked = false; Ext.grid.AbstractSelectionModel.superclass.constructor.call(this); }, /** @ignore Called by the grid automatically. Do not call directly. */ init : function(grid){ this.grid = grid; if(this.lockOnInit){ delete this.lockOnInit; this.locked = false; this.lock(); } this.initEvents(); }, /** * Locks the selections. */ lock : function(){ if(!this.locked){ this.locked = true; // If the grid has been set, then the view is already initialized. var g = this.grid; if(g){ g.getView().on({ scope: this, beforerefresh: this.sortUnLock, refresh: this.sortLock }); }else{ this.lockOnInit = true; } } }, // set the lock states before and after a view refresh sortLock : function() { this.locked = true; }, // set the lock states before and after a view refresh sortUnLock : function() { this.locked = false; }, /** * Unlocks the selections. */ unlock : function(){ if(this.locked){ this.locked = false; var g = this.grid, gv; // If the grid has been set, then the view is already initialized. if(g){ gv = g.getView(); gv.un('beforerefresh', this.sortUnLock, this); gv.un('refresh', this.sortLock, this); }else{ delete this.lockOnInit; } } }, /** * Returns true if the selections are locked. * @return {Boolean} */ isLocked : function(){ return this.locked; }, destroy: function(){ this.unlock(); this.purgeListeners(); } });/** * @class Ext.grid.RowSelectionModel * @extends Ext.grid.AbstractSelectionModel * The default SelectionModel used by {@link Ext.grid.GridPanel}. * It supports multiple selections and keyboard selection/navigation. The objects stored * as selections and returned by {@link #getSelected}, and {@link #getSelections} are * the {@link Ext.data.Record Record}s which provide the data for the selected rows. * @constructor * @param {Object} config */ Ext.grid.RowSelectionModel = Ext.extend(Ext.grid.AbstractSelectionModel, { /** * @cfg {Boolean} singleSelect * true to allow selection of only one row at a time (defaults to false * allowing multiple selections) */ singleSelect : false, constructor : function(config){ Ext.apply(this, config); this.selections = new Ext.util.MixedCollection(false, function(o){ return o.id; }); this.last = false; this.lastActive = false; this.addEvents( /** * @event selectionchange * Fires when the selection changes * @param {SelectionModel} this */ 'selectionchange', /** * @event beforerowselect * Fires before a row is selected, return false to cancel the selection. * @param {SelectionModel} this * @param {Number} rowIndex The index to be selected * @param {Boolean} keepExisting False if other selections will be cleared * @param {Record} record The record to be selected */ 'beforerowselect', /** * @event rowselect * Fires when a row is selected. * @param {SelectionModel} this * @param {Number} rowIndex The selected index * @param {Ext.data.Record} r The selected record */ 'rowselect', /** * @event rowdeselect * Fires when a row is deselected. To prevent deselection * {@link Ext.grid.AbstractSelectionModel#lock lock the selections}. * @param {SelectionModel} this * @param {Number} rowIndex * @param {Record} record */ 'rowdeselect' ); Ext.grid.RowSelectionModel.superclass.constructor.call(this); }, /** * @cfg {Boolean} moveEditorOnEnter * false to turn off moving the editor to the next row down when the enter key is pressed * or the next row up when shift + enter keys are pressed. */ // private initEvents : function(){ if(!this.grid.enableDragDrop && !this.grid.enableDrag){ this.grid.on('rowmousedown', this.handleMouseDown, this); } this.rowNav = new Ext.KeyNav(this.grid.getGridEl(), { up: this.onKeyPress, down: this.onKeyPress, scope: this }); this.grid.getView().on({ scope: this, refresh: this.onRefresh, rowupdated: this.onRowUpdated, rowremoved: this.onRemove }); }, onKeyPress : function(e, name){ var up = name == 'up', method = up ? 'selectPrevious' : 'selectNext', add = up ? -1 : 1, last; if(!e.shiftKey || this.singleSelect){ this[method](false); }else if(this.last !== false && this.lastActive !== false){ last = this.last; this.selectRange(this.last, this.lastActive + add); this.grid.getView().focusRow(this.lastActive); if(last !== false){ this.last = last; } }else{ this.selectFirstRow(); } }, // private onRefresh : function(){ var ds = this.grid.store, s = this.getSelections(), i = 0, len = s.length, index, r; this.silent = true; this.clearSelections(true); for(; i < len; i++){ r = s[i]; if((index = ds.indexOfId(r.id)) != -1){ this.selectRow(index, true); } } if(s.length != this.selections.getCount()){ this.fireEvent('selectionchange', this); } this.silent = false; }, // private onRemove : function(v, index, r){ if(this.selections.remove(r) !== false){ this.fireEvent('selectionchange', this); } }, // private onRowUpdated : function(v, index, r){ if(this.isSelected(r)){ v.onRowSelect(index); } }, /** * Select records. * @param {Array} records The records to select * @param {Boolean} keepExisting (optional) true to keep existing selections */ selectRecords : function(records, keepExisting){ if(!keepExisting){ this.clearSelections(); } var ds = this.grid.store, i = 0, len = records.length; for(; i < len; i++){ this.selectRow(ds.indexOf(records[i]), true); } }, /** * Gets the number of selected rows. * @return {Number} */ getCount : function(){ return this.selections.length; }, /** * Selects the first row in the grid. */ selectFirstRow : function(){ this.selectRow(0); }, /** * Select the last row. * @param {Boolean} keepExisting (optional) true to keep existing selections */ selectLastRow : function(keepExisting){ this.selectRow(this.grid.store.getCount() - 1, keepExisting); }, /** * Selects the row immediately following the last selected row. * @param {Boolean} keepExisting (optional) true to keep existing selections * @return {Boolean} true if there is a next row, else false */ selectNext : function(keepExisting){ if(this.hasNext()){ this.selectRow(this.last+1, keepExisting); this.grid.getView().focusRow(this.last); return true; } return false; }, /** * Selects the row that precedes the last selected row. * @param {Boolean} keepExisting (optional) true to keep existing selections * @return {Boolean} true if there is a previous row, else false */ selectPrevious : function(keepExisting){ if(this.hasPrevious()){ this.selectRow(this.last-1, keepExisting); this.grid.getView().focusRow(this.last); return true; } return false; }, /** * Returns true if there is a next record to select * @return {Boolean} */ hasNext : function(){ return this.last !== false && (this.last+1) < this.grid.store.getCount(); }, /** * Returns true if there is a previous record to select * @return {Boolean} */ hasPrevious : function(){ return !!this.last; }, /** * Returns the selected records * @return {Array} Array of selected records */ getSelections : function(){ return [].concat(this.selections.items); }, /** * Returns the first selected record. * @return {Record} */ getSelected : function(){ return this.selections.itemAt(0); }, /** * Calls the passed function with each selection. If the function returns * false, iteration is stopped and this function returns * false. Otherwise it returns true. * @param {Function} fn The function to call upon each iteration. It is passed the selected {@link Ext.data.Record Record}. * @param {Object} scope (optional) The scope (this reference) in which the function is executed. Defaults to this RowSelectionModel. * @return {Boolean} true if all selections were iterated */ each : function(fn, scope){ var s = this.getSelections(), i = 0, len = s.length; for(; i < len; i++){ if(fn.call(scope || this, s[i], i) === false){ return false; } } return true; }, /** * Clears all selections if the selection model * {@link Ext.grid.AbstractSelectionModel#isLocked is not locked}. * @param {Boolean} fast (optional) true to bypass the * conditional checks and events described in {@link #deselectRow}. */ clearSelections : function(fast){ if(this.isLocked()){ return; } if(fast !== true){ var ds = this.grid.store, s = this.selections; s.each(function(r){ this.deselectRow(ds.indexOfId(r.id)); }, this); s.clear(); }else{ this.selections.clear(); } this.last = false; }, /** * Selects all rows if the selection model * {@link Ext.grid.AbstractSelectionModel#isLocked is not locked}. */ selectAll : function(){ if(this.isLocked()){ return; } this.selections.clear(); for(var i = 0, len = this.grid.store.getCount(); i < len; i++){ this.selectRow(i, true); } }, /** * Returns true if there is a selection. * @return {Boolean} */ hasSelection : function(){ return this.selections.length > 0; }, /** * Returns true if the specified row is selected. * @param {Number/Record} index The record or index of the record to check * @return {Boolean} */ isSelected : function(index){ var r = Ext.isNumber(index) ? this.grid.store.getAt(index) : index; return (r && this.selections.key(r.id) ? true : false); }, /** * Returns true if the specified record id is selected. * @param {String} id The id of record to check * @return {Boolean} */ isIdSelected : function(id){ return (this.selections.key(id) ? true : false); }, // private handleMouseDown : function(g, rowIndex, e){ if(e.button !== 0 || this.isLocked()){ return; } var view = this.grid.getView(); if(e.shiftKey && !this.singleSelect && this.last !== false){ var last = this.last; this.selectRange(last, rowIndex, e.ctrlKey); this.last = last; // reset the last view.focusRow(rowIndex); }else{ var isSelected = this.isSelected(rowIndex); if(e.ctrlKey && isSelected){ this.deselectRow(rowIndex); }else if(!isSelected || this.getCount() > 1){ this.selectRow(rowIndex, e.ctrlKey || e.shiftKey); view.focusRow(rowIndex); } } }, /** * Selects multiple rows. * @param {Array} rows Array of the indexes of the row to select * @param {Boolean} keepExisting (optional) true to keep * existing selections (defaults to false) */ selectRows : function(rows, keepExisting){ if(!keepExisting){ this.clearSelections(); } for(var i = 0, len = rows.length; i < len; i++){ this.selectRow(rows[i], true); } }, /** * Selects a range of rows if the selection model * {@link Ext.grid.AbstractSelectionModel#isLocked is not locked}. * All rows in between startRow and endRow are also selected. * @param {Number} startRow The index of the first row in the range * @param {Number} endRow The index of the last row in the range * @param {Boolean} keepExisting (optional) True to retain existing selections */ selectRange : function(startRow, endRow, keepExisting){ var i; if(this.isLocked()){ return; } if(!keepExisting){ this.clearSelections(); } if(startRow <= endRow){ for(i = startRow; i <= endRow; i++){ this.selectRow(i, true); } }else{ for(i = startRow; i >= endRow; i--){ this.selectRow(i, true); } } }, /** * Deselects a range of rows if the selection model * {@link Ext.grid.AbstractSelectionModel#isLocked is not locked}. * All rows in between startRow and endRow are also deselected. * @param {Number} startRow The index of the first row in the range * @param {Number} endRow The index of the last row in the range */ deselectRange : function(startRow, endRow, preventViewNotify){ if(this.isLocked()){ return; } for(var i = startRow; i <= endRow; i++){ this.deselectRow(i, preventViewNotify); } }, /** * Selects a row. Before selecting a row, checks if the selection model * {@link Ext.grid.AbstractSelectionModel#isLocked is locked} and fires the * {@link #beforerowselect} event. If these checks are satisfied the row * will be selected and followed up by firing the {@link #rowselect} and * {@link #selectionchange} events. * @param {Number} row The index of the row to select * @param {Boolean} keepExisting (optional) true to keep existing selections * @param {Boolean} preventViewNotify (optional) Specify true to * prevent notifying the view (disables updating the selected appearance) */ selectRow : function(index, keepExisting, preventViewNotify){ if(this.isLocked() || (index < 0 || index >= this.grid.store.getCount()) || (keepExisting && this.isSelected(index))){ return; } var r = this.grid.store.getAt(index); if(r && this.fireEvent('beforerowselect', this, index, keepExisting, r) !== false){ if(!keepExisting || this.singleSelect){ this.clearSelections(); } this.selections.add(r); this.last = this.lastActive = index; if(!preventViewNotify){ this.grid.getView().onRowSelect(index); } if(!this.silent){ this.fireEvent('rowselect', this, index, r); this.fireEvent('selectionchange', this); } } }, /** * Deselects a row. Before deselecting a row, checks if the selection model * {@link Ext.grid.AbstractSelectionModel#isLocked is locked}. * If this check is satisfied the row will be deselected and followed up by * firing the {@link #rowdeselect} and {@link #selectionchange} events. * @param {Number} row The index of the row to deselect * @param {Boolean} preventViewNotify (optional) Specify true to * prevent notifying the view (disables updating the selected appearance) */ deselectRow : function(index, preventViewNotify){ if(this.isLocked()){ return; } if(this.last == index){ this.last = false; } if(this.lastActive == index){ this.lastActive = false; } var r = this.grid.store.getAt(index); if(r){ this.selections.remove(r); if(!preventViewNotify){ this.grid.getView().onRowDeselect(index); } this.fireEvent('rowdeselect', this, index, r); this.fireEvent('selectionchange', this); } }, // private acceptsNav : function(row, col, cm){ return !cm.isHidden(col) && cm.isCellEditable(col, row); }, // private onEditorKey : function(field, e){ var k = e.getKey(), newCell, g = this.grid, last = g.lastEdit, ed = g.activeEditor, shift = e.shiftKey, ae, last, r, c; if(k == e.TAB){ e.stopEvent(); ed.completeEdit(); if(shift){ newCell = g.walkCells(ed.row, ed.col-1, -1, this.acceptsNav, this); }else{ newCell = g.walkCells(ed.row, ed.col+1, 1, this.acceptsNav, this); } }else if(k == e.ENTER){ if(this.moveEditorOnEnter !== false){ if(shift){ newCell = g.walkCells(last.row - 1, last.col, -1, this.acceptsNav, this); }else{ newCell = g.walkCells(last.row + 1, last.col, 1, this.acceptsNav, this); } } } if(newCell){ r = newCell[0]; c = newCell[1]; this.onEditorSelect(r, last.row); if(g.isEditor && g.editing){ // *** handle tabbing while editorgrid is in edit mode ae = g.activeEditor; if(ae && ae.field.triggerBlur){ // *** if activeEditor is a TriggerField, explicitly call its triggerBlur() method ae.field.triggerBlur(); } } g.startEditing(r, c); } }, onEditorSelect: function(row, lastRow){ if(lastRow != row){ this.selectRow(row); // *** highlight newly-selected cell and update selection } }, destroy : function(){ Ext.destroy(this.rowNav); this.rowNav = null; Ext.grid.RowSelectionModel.superclass.destroy.call(this); } }); /** * @class Ext.grid.Column *

    This class encapsulates column configuration data to be used in the initialization of a * {@link Ext.grid.ColumnModel ColumnModel}.

    *

    While subclasses are provided to render data in different ways, this class renders a passed * data field unchanged and is usually used for textual columns.

    */ Ext.grid.Column = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} editable Optional. Defaults to true, enabling the configured * {@link #editor}. Set to false to initially disable editing on this column. * The initial configuration may be dynamically altered using * {@link Ext.grid.ColumnModel}.{@link Ext.grid.ColumnModel#setEditable setEditable()}. */ /** * @cfg {String} id Optional. A name which identifies this column (defaults to the column's initial * ordinal position.) The id is used to create a CSS class name which is applied to all * table cells (including headers) in that column (in this context the id does not need to be * unique). The class name takes the form of 
    x-grid3-td-id
    * Header cells will also receive this class name, but will also have the class 
    x-grid3-hd
    * So, to target header cells, use CSS selectors such as:
    .x-grid3-hd-row .x-grid3-td-id
    * The {@link Ext.grid.GridPanel#autoExpandColumn} grid config option references the column via this * unique identifier. */ /** * @cfg {String} header Optional. The header text to be used as innerHTML * (html tags are accepted) to display in the Grid view. Note: to * have a clickable header with no text displayed use '&#160;'. */ /** * @cfg {Boolean} groupable Optional. If the grid is being rendered by an {@link Ext.grid.GroupingView}, this option * may be used to disable the header menu item to group by the column selected. Defaults to true, * which enables the header menu group option. Set to false to disable (but still show) the * group option in the header menu for the column. See also {@link #groupName}. */ /** * @cfg {String} groupName Optional. If the grid is being rendered by an {@link Ext.grid.GroupingView}, this option * may be used to specify the text with which to prefix the group field value in the group header line. * See also {@link #groupRenderer} and * {@link Ext.grid.GroupingView}.{@link Ext.grid.GroupingView#showGroupName showGroupName}. */ /** * @cfg {Function} groupRenderer

    Optional. If the grid is being rendered by an {@link Ext.grid.GroupingView}, this option * may be used to specify the function used to format the grouping field value for display in the group * {@link #groupName header}. If a groupRenderer is not specified, the configured * {@link #renderer} will be called; if a {@link #renderer} is also not specified * the new value of the group field will be used.

    *

    The called function (either the groupRenderer or {@link #renderer}) will be * passed the following parameters: *

      *
    • v : Object

      The new value of the group field.

      • *
    • unused : undefined

      Unused parameter.

      • *
    • r : Ext.data.Record

      The Record providing the data * for the row which caused group change.

      • *
    • rowIndex : Number

      The row index of the Record which caused group change.

      • *
    • colIndex : Number

      The column index of the group field.

      • *
    • ds : Ext.data.Store

      The Store which is providing the data Model.

      • *

    *

    The function should return a string value.

    */ /** * @cfg {String} emptyGroupText Optional. If the grid is being rendered by an {@link Ext.grid.GroupingView}, this option * may be used to specify the text to display when there is an empty group value. Defaults to the * {@link Ext.grid.GroupingView}.{@link Ext.grid.GroupingView#emptyGroupText emptyGroupText}. */ /** * @cfg {String} dataIndex

    Required. The name of the field in the * grid's {@link Ext.data.Store}'s {@link Ext.data.Record} definition from * which to draw the column's value.

    */ /** * @cfg {Number} width * Optional. The initial width in pixels of the column. * The width of each column can also be affected if any of the following are configured: *
      *
    • {@link Ext.grid.GridPanel}.{@link Ext.grid.GridPanel#autoExpandColumn autoExpandColumn}
      • *
    • {@link Ext.grid.GridView}.{@link Ext.grid.GridView#forceFit forceFit} *
      *

      By specifying forceFit:true, {@link #fixed non-fixed width} columns will be * re-proportioned (based on the relative initial widths) to fill the width of the grid so * that no horizontal scrollbar is shown.

      *
      • *
    • {@link Ext.grid.GridView}.{@link Ext.grid.GridView#autoFill autoFill}
      • *
    • {@link Ext.grid.GridPanel}.{@link Ext.grid.GridPanel#minColumnWidth minColumnWidth}
      • *

      Note: when the width of each column is determined, a space on the right side * is reserved for the vertical scrollbar. The * {@link Ext.grid.GridView}.{@link Ext.grid.GridView#scrollOffset scrollOffset} * can be modified to reduce or eliminate the reserved offset.

      */ /** * @cfg {Boolean} sortable Optional. true if sorting is to be allowed on this column. * Defaults to the value of the {@link Ext.grid.ColumnModel#defaultSortable} property. * Whether local/remote sorting is used is specified in {@link Ext.data.Store#remoteSort}. */ /** * @cfg {Boolean} fixed Optional. true if the column width cannot be changed. Defaults to false. */ /** * @cfg {Boolean} resizable Optional. false to disable column resizing. Defaults to true. */ /** * @cfg {Boolean} menuDisabled Optional. true to disable the column menu. Defaults to false. */ /** * @cfg {Boolean} hidden * Optional. true to initially hide this column. Defaults to false. * A hidden column {@link Ext.grid.GridPanel#enableColumnHide may be shown via the header row menu}. * If a column is never to be shown, simply do not include this column in the Column Model at all. */ /** * @cfg {String} tooltip Optional. A text string to use as the column header's tooltip. If Quicktips * are enabled, this value will be used as the text of the quick tip, otherwise it will be set as the * header's HTML title attribute. Defaults to ''. */ /** * @cfg {Mixed} renderer *

      For an alternative to specifying a renderer see {@link #xtype}

      *

      Optional. A renderer is an 'interceptor' method which can be used transform data (value, * appearance, etc.) before it is rendered). This may be specified in either of three ways: *

        *
      • A renderer function used to return HTML markup for a cell given the cell's data value.
        • *
      • A string which references a property name of the {@link Ext.util.Format} class which * provides a renderer function.
        • *
      • An object specifying both the renderer function, and its execution scope (this * reference) e.g.:
        
{
    fn: this.gridRenderer,
    scope: this
}
      * If not specified, the default renderer uses the raw data value.

      *

      For information about the renderer function (passed parameters, etc.), see * {@link Ext.grid.ColumnModel#setRenderer}. An example of specifying renderer function inline:

      
var companyColumn = {
   header: 'Company Name',
   dataIndex: 'company',
   renderer: function(value, metaData, record, rowIndex, colIndex, store) {
      // provide the logic depending on business rules
      // name of your own choosing to manipulate the cell depending upon
      // the data in the underlying Record object.
      if (value == 'whatever') {
          //metaData.css : String : A CSS class name to add to the TD element of the cell.
          //metaData.attr : String : An html attribute definition string to apply to
          //                         the data container element within the table
          //                         cell (e.g. 'style="color:red;"').
          metaData.css = 'name-of-css-class-you-will-define';
      }
      return value;
   }
}
     *
      * See also {@link #scope}. */ /** * @cfg {String} xtype Optional. A String which references a predefined {@link Ext.grid.Column} subclass * type which is preconfigured with an appropriate {@link #renderer} to be easily * configured into a ColumnModel. The predefined {@link Ext.grid.Column} subclass types are: *
        *
      • gridcolumn : {@link Ext.grid.Column} (Default)

        • *
      • booleancolumn : {@link Ext.grid.BooleanColumn}

        • *
      • numbercolumn : {@link Ext.grid.NumberColumn}

        • *
      • datecolumn : {@link Ext.grid.DateColumn}

        • *
      • templatecolumn : {@link Ext.grid.TemplateColumn}

        • *
      *

      Configuration properties for the specified xtype may be specified with * the Column configuration properties, for example:

      * 
      
var grid = new Ext.grid.GridPanel({
    ...
    columns: [{
        header: 'Last Updated',
        dataIndex: 'lastChange',
        width: 85,
        sortable: true,
        //renderer: Ext.util.Format.dateRenderer('m/d/Y'),
        xtype: 'datecolumn', // use xtype instead of renderer
        format: 'M/d/Y' // configuration property for {@link Ext.grid.DateColumn}
    }, {
        ...
    }]
});
     *
      */ /** * @cfg {Object} scope Optional. The scope (this reference) in which to execute the * renderer. Defaults to the Column configuration object. */ /** * @cfg {String} align Optional. Set the CSS text-align property of the column. Defaults to undefined. */ /** * @cfg {String} css Optional. An inline style definition string which is applied to all table cells in the column * (excluding headers). Defaults to undefined. */ /** * @cfg {Boolean} hideable Optional. Specify as false to prevent the user from hiding this column * (defaults to true). To disallow column hiding globally for all columns in the grid, use * {@link Ext.grid.GridPanel#enableColumnHide} instead. */ /** * @cfg {Ext.form.Field} editor Optional. The {@link Ext.form.Field} to use when editing values in this column * if editing is supported by the grid. See {@link #editable} also. */ /** * @private * @cfg {Boolean} isColumn * Used by ColumnModel setConfig method to avoid reprocessing a Column * if isColumn is not set ColumnModel will recreate a new Ext.grid.Column * Defaults to true. */ isColumn : true, constructor : function(config){ Ext.apply(this, config); if(Ext.isString(this.renderer)){ this.renderer = Ext.util.Format[this.renderer]; }else if(Ext.isObject(this.renderer)){ this.scope = this.renderer.scope; this.renderer = this.renderer.fn; } if(!this.scope){ this.scope = this; } var ed = this.editor; delete this.editor; this.setEditor(ed); this.addEvents( /** * @event click * Fires when this Column is clicked. * @param {Column} this * @param {Grid} The owning GridPanel * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'click', /** * @event contextmenu * Fires when this Column is right clicked. * @param {Column} this * @param {Grid} The owning GridPanel * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'contextmenu', /** * @event dblclick * Fires when this Column is double clicked. * @param {Column} this * @param {Grid} The owning GridPanel * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'dblclick', /** * @event mousedown * Fires when this Column receives a mousedown event. * @param {Column} this * @param {Grid} The owning GridPanel * @param {Number} rowIndex * @param {Ext.EventObject} e */ 'mousedown' ); Ext.grid.Column.superclass.constructor.call(this); }, /** * @private * Process and refire events routed from the GridView's processEvent method. * Returns the event handler's status to allow cancelling of GridView's bubbling process. */ processEvent : function(name, e, grid, rowIndex, colIndex){ return this.fireEvent(name, this, grid, rowIndex, e); }, /** * @private * Clean up. Remove any Editor. Remove any listeners. */ destroy: function() { if(this.setEditor){ this.setEditor(null); } this.purgeListeners(); }, /** * Optional. A function which returns displayable data when passed the following parameters: *
        *
      • value : Object

        The data value for the cell.

        • *
      • metadata : Object

        An object in which you may set the following attributes:

          *
        • css : String

          A CSS class name to add to the cell's TD element.

          • *
        • attr : String

          An HTML attribute definition string to apply to the data container * element within the table cell (e.g. 'style="color:red;"').

        • *
      • record : Ext.data.record

        The {@link Ext.data.Record} from which the data was * extracted.

        • *
      • rowIndex : Number

        Row index

        • *
      • colIndex : Number

        Column index

        • *
      • store : Ext.data.Store

        The {@link Ext.data.Store} object from which the Record * was extracted.

        • *
      * @property renderer * @type Function */ renderer : function(value){ return value; }, // private getEditor: function(rowIndex){ return this.editable !== false ? this.editor : null; }, /** * Sets a new editor for this column. * @param {Ext.Editor/Ext.form.Field} editor The editor to set */ setEditor : function(editor){ var ed = this.editor; if(ed){ if(ed.gridEditor){ ed.gridEditor.destroy(); delete ed.gridEditor; }else{ ed.destroy(); } } this.editor = null; if(editor){ //not an instance, create it if(!editor.isXType){ editor = Ext.create(editor, 'textfield'); } this.editor = editor; } }, /** * Returns the {@link Ext.Editor editor} defined for this column that was created to wrap the {@link Ext.form.Field Field} * used to edit the cell. * @param {Number} rowIndex The row index * @return {Ext.Editor} */ getCellEditor: function(rowIndex){ var ed = this.getEditor(rowIndex); if(ed){ if(!ed.startEdit){ if(!ed.gridEditor){ ed.gridEditor = new Ext.grid.GridEditor(ed); } ed = ed.gridEditor; } } return ed; } }); /** * @class Ext.grid.BooleanColumn * @extends Ext.grid.Column *

      A Column definition class which renders boolean data fields. See the {@link Ext.grid.Column#xtype xtype} * config option of {@link Ext.grid.Column} for more details.

      */ Ext.grid.BooleanColumn = Ext.extend(Ext.grid.Column, { /** * @cfg {String} trueText * The string returned by the renderer when the column value is not falsy (defaults to 'true'). */ trueText: 'true', /** * @cfg {String} falseText * The string returned by the renderer when the column value is falsy (but not undefined) (defaults to * 'false'). */ falseText: 'false', /** * @cfg {String} undefinedText * The string returned by the renderer when the column value is undefined (defaults to '&#160;'). */ undefinedText: ' ', constructor: function(cfg){ Ext.grid.BooleanColumn.superclass.constructor.call(this, cfg); var t = this.trueText, f = this.falseText, u = this.undefinedText; this.renderer = function(v){ if(v === undefined){ return u; } if(!v || v === 'false'){ return f; } return t; }; } }); /** * @class Ext.grid.NumberColumn * @extends Ext.grid.Column *

      A Column definition class which renders a numeric data field according to a {@link #format} string. See the * {@link Ext.grid.Column#xtype xtype} config option of {@link Ext.grid.Column} for more details.

      */ Ext.grid.NumberColumn = Ext.extend(Ext.grid.Column, { /** * @cfg {String} format * A formatting string as used by {@link Ext.util.Format#number} to format a numeric value for this Column * (defaults to '0,000.00'). */ format : '0,000.00', constructor: function(cfg){ Ext.grid.NumberColumn.superclass.constructor.call(this, cfg); this.renderer = Ext.util.Format.numberRenderer(this.format); } }); /** * @class Ext.grid.DateColumn * @extends Ext.grid.Column *

      A Column definition class which renders a passed date according to the default locale, or a configured * {@link #format}. See the {@link Ext.grid.Column#xtype xtype} config option of {@link Ext.grid.Column} * for more details.

      */ Ext.grid.DateColumn = Ext.extend(Ext.grid.Column, { /** * @cfg {String} format * A formatting string as used by {@link Date#format} to format a Date for this Column * (defaults to 'm/d/Y'). */ format : 'm/d/Y', constructor: function(cfg){ Ext.grid.DateColumn.superclass.constructor.call(this, cfg); this.renderer = Ext.util.Format.dateRenderer(this.format); } }); /** * @class Ext.grid.TemplateColumn * @extends Ext.grid.Column *

      A Column definition class which renders a value by processing a {@link Ext.data.Record Record}'s * {@link Ext.data.Record#data data} using a {@link #tpl configured} {@link Ext.XTemplate XTemplate}. * See the {@link Ext.grid.Column#xtype xtype} config option of {@link Ext.grid.Column} for more * details.

      */ Ext.grid.TemplateColumn = Ext.extend(Ext.grid.Column, { /** * @cfg {String/XTemplate} tpl * An {@link Ext.XTemplate XTemplate}, or an XTemplate definition string to use to process a * {@link Ext.data.Record Record}'s {@link Ext.data.Record#data data} to produce a column's rendered value. */ constructor: function(cfg){ Ext.grid.TemplateColumn.superclass.constructor.call(this, cfg); var tpl = (!Ext.isPrimitive(this.tpl) && this.tpl.compile) ? this.tpl : new Ext.XTemplate(this.tpl); this.renderer = function(value, p, r){ return tpl.apply(r.data); }; this.tpl = tpl; } }); /** * @class Ext.grid.ActionColumn * @extends Ext.grid.Column *

      A Grid column type which renders an icon, or a series of icons in a grid cell, and offers a scoped click * handler for each icon. Example usage:

      
new Ext.grid.GridPanel({
    store: myStore,
    columns: [
        {
            xtype: 'actioncolumn',
            width: 50,
            items: [
                {
                    icon   : 'sell.gif',                // Use a URL in the icon config
                    tooltip: 'Sell stock',
                    handler: function(grid, rowIndex, colIndex) {
                        var rec = store.getAt(rowIndex);
                        alert("Sell " + rec.get('company'));
                    }
                },
                {
                    getClass: function(v, meta, rec) {  // Or return a class from a function
                        if (rec.get('change') < 0) {
                            this.items[1].tooltip = 'Do not buy!';
                            return 'alert-col';
                        } else {
                            this.items[1].tooltip = 'Buy stock';
                            return 'buy-col';
                        }
                    },
                    handler: function(grid, rowIndex, colIndex) {
                        var rec = store.getAt(rowIndex);
                        alert("Buy " + rec.get('company'));
                    }
                }
            ]
        }
        //any other columns here
    ]
});
      *

      The action column can be at any index in the columns array, and a grid can have any number of * action columns.

      */ Ext.grid.ActionColumn = Ext.extend(Ext.grid.Column, { /** * @cfg {String} icon * The URL of an image to display as the clickable element in the column. * Optional - defaults to {@link Ext#BLANK_IMAGE_URL Ext.BLANK_IMAGE_URL}. */ /** * @cfg {String} iconCls * A CSS class to apply to the icon image. To determine the class dynamically, configure the Column with a {@link #getClass} function. */ /** * @cfg {Function} handler A function called when the icon is clicked. * The handler is passed the following parameters:
        *
      • grid : GridPanel
        The owning GridPanel.
        • *
      • rowIndex : Number
        The row index clicked on.
        • *
      • colIndex : Number
        The column index clicked on.
        • *
      • item : Object
        The clicked item (or this Column if multiple * {@link #items} were not configured).
        • *
      • e : Event
        The click event.
        • *
      */ /** * @cfg {Object} scope The scope (this reference) in which the {@link #handler} * and {@link #getClass} fuctions are executed. Defaults to this Column. */ /** * @cfg {String} tooltip A tooltip message to be displayed on hover. {@link Ext.QuickTips#init Ext.QuickTips} must have * been initialized. */ /** * @cfg {Boolean} stopSelection Defaults to true. Prevent grid row selection upon mousedown. */ /** * @cfg {Function} getClass A function which returns the CSS class to apply to the icon image. * The function is passed the following parameters:
        *
      • v : Object

        The value of the column's configured field (if any).

        • *
      • metadata : Object

        An object in which you may set the following attributes:

          *
        • css : String

          A CSS class name to add to the cell's TD element.

          • *
        • attr : String

          An HTML attribute definition string to apply to the data container element within the table cell * (e.g. 'style="color:red;"').

          • *

        • *
      • r : Ext.data.Record

        The Record providing the data.

        • *
      • rowIndex : Number

        The row index..

        • *
      • colIndex : Number

        The column index.

        • *
      • store : Ext.data.Store

        The Store which is providing the data Model.

        • *
      */ /** * @cfg {Array} items An Array which may contain multiple icon definitions, each element of which may contain: *
        *
      • icon : String
        The url of an image to display as the clickable element * in the column.
        • *
      • iconCls : String
        A CSS class to apply to the icon image. * To determine the class dynamically, configure the item with a getClass function.
        • *
      • getClass : Function
        A function which returns the CSS class to apply to the icon image. * The function is passed the following parameters:
          *
        • v : Object

          The value of the column's configured field (if any).

          • *
        • metadata : Object

          An object in which you may set the following attributes:

            *
          • css : String

            A CSS class name to add to the cell's TD element.

            • *
          • attr : String

            An HTML attribute definition string to apply to the data container element within the table cell * (e.g. 'style="color:red;"').

            • *

          • *
        • r : Ext.data.Record

          The Record providing the data.

          • *
        • rowIndex : Number

          The row index..

          • *
        • colIndex : Number

          The column index.

          • *
        • store : Ext.data.Store

          The Store which is providing the data Model.

          • *
        • *
      • handler : Function
        A function called when the icon is clicked.
        • *
      • scope : Scope
        The scope (this reference) in which the * handler and getClass functions are executed. Fallback defaults are this Column's * configured scope, then this Column.
        • *
      • tooltip : String
        A tooltip message to be displayed on hover. * {@link Ext.QuickTips#init Ext.QuickTips} must have been initialized.
        • *
      */ header: ' ', actionIdRe: /x-action-col-(\d+)/, /** * @cfg {String} altText The alt text to use for the image element. Defaults to ''. */ altText: '', constructor: function(cfg) { var me = this, items = cfg.items || (me.items = [me]), l = items.length, i, item; Ext.grid.ActionColumn.superclass.constructor.call(me, cfg); // Renderer closure iterates through items creating an element for each and tagging with an identifying // class name x-action-col-{n} me.renderer = function(v, meta) { // Allow a configured renderer to create initial value (And set the other values in the "metadata" argument!) v = Ext.isFunction(cfg.renderer) ? cfg.renderer.apply(this, arguments)||'' : ''; meta.css += ' x-action-col-cell'; for (i = 0; i < l; i++) { item = items[i]; v += '' + (item.altText || me.altText) + ''; } return v; }; }, destroy: function() { delete this.items; delete this.renderer; return Ext.grid.ActionColumn.superclass.destroy.apply(this, arguments); }, /** * @private * Process and refire events routed from the GridView's processEvent method. * Also fires any configured click handlers. By default, cancels the mousedown event to prevent selection. * Returns the event handler's status to allow cancelling of GridView's bubbling process. */ processEvent : function(name, e, grid, rowIndex, colIndex){ var m = e.getTarget().className.match(this.actionIdRe), item, fn; if (m && (item = this.items[parseInt(m[1], 10)])) { if (name == 'click') { (fn = item.handler || this.handler) && fn.call(item.scope||this.scope||this, grid, rowIndex, colIndex, item, e); } else if ((name == 'mousedown') && (item.stopSelection !== false)) { return false; } } return Ext.grid.ActionColumn.superclass.processEvent.apply(this, arguments); } }); /* * @property types * @type Object * @member Ext.grid.Column * @static *

      An object containing predefined Column classes keyed by a mnemonic code which may be referenced * by the {@link Ext.grid.ColumnModel#xtype xtype} config option of ColumnModel.

      *

      This contains the following properties

        *
      • gridcolumn : {@link Ext.grid.Column Column constructor}
        • *
      • booleancolumn : {@link Ext.grid.BooleanColumn BooleanColumn constructor}
        • *
      • numbercolumn : {@link Ext.grid.NumberColumn NumberColumn constructor}
        • *
      • datecolumn : {@link Ext.grid.DateColumn DateColumn constructor}
        • *
      • templatecolumn : {@link Ext.grid.TemplateColumn TemplateColumn constructor}
        • *
      */ Ext.grid.Column.types = { gridcolumn : Ext.grid.Column, booleancolumn: Ext.grid.BooleanColumn, numbercolumn: Ext.grid.NumberColumn, datecolumn: Ext.grid.DateColumn, templatecolumn: Ext.grid.TemplateColumn, actioncolumn: Ext.grid.ActionColumn };/** * @class Ext.grid.RowNumberer * This is a utility class that can be passed into a {@link Ext.grid.ColumnModel} as a column config that provides * an automatic row numbering column. *
      Usage:
      
 // This is a typical column config with the first column providing row numbers
 var colModel = new Ext.grid.ColumnModel([
    new Ext.grid.RowNumberer(),
    {header: "Name", width: 80, sortable: true},
    {header: "Code", width: 50, sortable: true},
    {header: "Description", width: 200, sortable: true}
 ]);
      * @constructor * @param {Object} config The configuration options */ Ext.grid.RowNumberer = Ext.extend(Object, { /** * @cfg {String} header Any valid text or HTML fragment to display in the header cell for the row * number column (defaults to ''). */ header: "", /** * @cfg {Number} width The default width in pixels of the row number column (defaults to 23). */ width: 23, /** * @cfg {Boolean} sortable True if the row number column is sortable (defaults to false). * @hide */ sortable: false, constructor : function(config){ Ext.apply(this, config); if(this.rowspan){ this.renderer = this.renderer.createDelegate(this); } }, // private fixed:true, hideable: false, menuDisabled:true, dataIndex: '', id: 'numberer', rowspan: undefined, // private renderer : function(v, p, record, rowIndex){ if(this.rowspan){ p.cellAttr = 'rowspan="'+this.rowspan+'"'; } return rowIndex+1; } });/** * @class Ext.grid.CheckboxSelectionModel * @extends Ext.grid.RowSelectionModel * A custom selection model that renders a column of checkboxes that can be toggled to select or deselect rows. * @constructor * @param {Object} config The configuration options */ Ext.grid.CheckboxSelectionModel = Ext.extend(Ext.grid.RowSelectionModel, { /** * @cfg {Boolean} checkOnly true if rows can only be selected by clicking on the * checkbox column (defaults to false). */ /** * @cfg {String} header Any valid text or HTML fragment to display in the header cell for the * checkbox column. Defaults to:
      
     * '<div class="x-grid3-hd-checker">&#160;</div>'
     *
      * The default CSS class of 'x-grid3-hd-checker' displays a checkbox in the header * and provides support for automatic check all/none behavior on header click. This string * can be replaced by any valid HTML fragment, including a simple text string (e.g., * 'Select Rows'), but the automatic check all/none behavior will only work if the * 'x-grid3-hd-checker' class is supplied. */ header : '
       
      ', /** * @cfg {Number} width The default width in pixels of the checkbox column (defaults to 20). */ width : 20, /** * @cfg {Boolean} sortable true if the checkbox column is sortable (defaults to * false). */ sortable : false, // private menuDisabled : true, fixed : true, hideable: false, dataIndex : '', id : 'checker', isColumn: true, // So that ColumnModel doesn't feed this through the Column constructor constructor : function(){ Ext.grid.CheckboxSelectionModel.superclass.constructor.apply(this, arguments); if(this.checkOnly){ this.handleMouseDown = Ext.emptyFn; } }, // private initEvents : function(){ Ext.grid.CheckboxSelectionModel.superclass.initEvents.call(this); this.grid.on('render', function(){ Ext.fly(this.grid.getView().innerHd).on('mousedown', this.onHdMouseDown, this); }, this); }, /** * @private * Process and refire events routed from the GridView's processEvent method. */ processEvent : function(name, e, grid, rowIndex, colIndex){ if (name == 'mousedown') { this.onMouseDown(e, e.getTarget()); return false; } else { return Ext.grid.Column.prototype.processEvent.apply(this, arguments); } }, // private onMouseDown : function(e, t){ if(e.button === 0 && t.className == 'x-grid3-row-checker'){ // Only fire if left-click e.stopEvent(); var row = e.getTarget('.x-grid3-row'); if(row){ var index = row.rowIndex; if(this.isSelected(index)){ this.deselectRow(index); }else{ this.selectRow(index, true); this.grid.getView().focusRow(index); } } } }, // private onHdMouseDown : function(e, t) { if(t.className == 'x-grid3-hd-checker'){ e.stopEvent(); var hd = Ext.fly(t.parentNode); var isChecked = hd.hasClass('x-grid3-hd-checker-on'); if(isChecked){ hd.removeClass('x-grid3-hd-checker-on'); this.clearSelections(); }else{ hd.addClass('x-grid3-hd-checker-on'); this.selectAll(); } } }, // private renderer : function(v, p, record){ return '
       
      '; }, onEditorSelect: function(row, lastRow){ if(lastRow != row && !this.checkOnly){ this.selectRow(row); // *** highlight newly-selected cell and update selection } } });/** * @class Ext.grid.CellSelectionModel * @extends Ext.grid.AbstractSelectionModel * This class provides the basic implementation for single cell selection in a grid. * The object stored as the selection contains the following properties: *
        *
      • cell : see {@link #getSelectedCell} *
      • record : Ext.data.record The {@link Ext.data.Record Record} * which provides the data for the row containing the selection
        • *
      * @constructor * @param {Object} config The object containing the configuration of this model. */ Ext.grid.CellSelectionModel = Ext.extend(Ext.grid.AbstractSelectionModel, { constructor : function(config){ Ext.apply(this, config); this.selection = null; this.addEvents( /** * @event beforecellselect * Fires before a cell is selected, return false to cancel the selection. * @param {SelectionModel} this * @param {Number} rowIndex The selected row index * @param {Number} colIndex The selected cell index */ "beforecellselect", /** * @event cellselect * Fires when a cell is selected. * @param {SelectionModel} this * @param {Number} rowIndex The selected row index * @param {Number} colIndex The selected cell index */ "cellselect", /** * @event selectionchange * Fires when the active selection changes. * @param {SelectionModel} this * @param {Object} selection null for no selection or an object with two properties *
        *
      • cell : see {@link #getSelectedCell} *
      • record : Ext.data.record

        The {@link Ext.data.Record Record} * which provides the data for the row containing the selection

        • *
      */ "selectionchange" ); Ext.grid.CellSelectionModel.superclass.constructor.call(this); }, /** @ignore */ initEvents : function(){ this.grid.on('cellmousedown', this.handleMouseDown, this); this.grid.on(Ext.EventManager.getKeyEvent(), this.handleKeyDown, this); this.grid.getView().on({ scope: this, refresh: this.onViewChange, rowupdated: this.onRowUpdated, beforerowremoved: this.clearSelections, beforerowsinserted: this.clearSelections }); if(this.grid.isEditor){ this.grid.on('beforeedit', this.beforeEdit, this); } }, //private beforeEdit : function(e){ this.select(e.row, e.column, false, true, e.record); }, //private onRowUpdated : function(v, index, r){ if(this.selection && this.selection.record == r){ v.onCellSelect(index, this.selection.cell[1]); } }, //private onViewChange : function(){ this.clearSelections(true); }, /** * Returns an array containing the row and column indexes of the currently selected cell * (e.g., [0, 0]), or null if none selected. The array has elements: *
        *
      • rowIndex : Number

        The index of the selected row

        • *
      • cellIndex : Number

        The index of the selected cell. * Due to possible column reordering, the cellIndex should not be used as an * index into the Record's data. Instead, use the cellIndex to determine the name * of the selected cell and use the field name to retrieve the data value from the record:

        
// get name
var fieldName = grid.getColumnModel().getDataIndex(cellIndex);
// get data value based on name
var data = record.get(fieldName);
     *

        • *
      * @return {Array} An array containing the row and column indexes of the selected cell, or null if none selected. */ getSelectedCell : function(){ return this.selection ? this.selection.cell : null; }, /** * If anything is selected, clears all selections and fires the selectionchange event. * @param {Boolean} preventNotify true to prevent the gridview from * being notified about the change. */ clearSelections : function(preventNotify){ var s = this.selection; if(s){ if(preventNotify !== true){ this.grid.view.onCellDeselect(s.cell[0], s.cell[1]); } this.selection = null; this.fireEvent("selectionchange", this, null); } }, /** * Returns true if there is a selection. * @return {Boolean} */ hasSelection : function(){ return this.selection ? true : false; }, /** @ignore */ handleMouseDown : function(g, row, cell, e){ if(e.button !== 0 || this.isLocked()){ return; } this.select(row, cell); }, /** * Selects a cell. Before selecting a cell, fires the * {@link #beforecellselect} event. If this check is satisfied the cell * will be selected and followed up by firing the {@link #cellselect} and * {@link #selectionchange} events. * @param {Number} rowIndex The index of the row to select * @param {Number} colIndex The index of the column to select * @param {Boolean} preventViewNotify (optional) Specify true to * prevent notifying the view (disables updating the selected appearance) * @param {Boolean} preventFocus (optional) Whether to prevent the cell at * the specified rowIndex / colIndex from being focused. * @param {Ext.data.Record} r (optional) The record to select */ select : function(rowIndex, colIndex, preventViewNotify, preventFocus, /*internal*/ r){ if(this.fireEvent("beforecellselect", this, rowIndex, colIndex) !== false){ this.clearSelections(); r = r || this.grid.store.getAt(rowIndex); this.selection = { record : r, cell : [rowIndex, colIndex] }; if(!preventViewNotify){ var v = this.grid.getView(); v.onCellSelect(rowIndex, colIndex); if(preventFocus !== true){ v.focusCell(rowIndex, colIndex); } } this.fireEvent("cellselect", this, rowIndex, colIndex); this.fireEvent("selectionchange", this, this.selection); } }, //private isSelectable : function(rowIndex, colIndex, cm){ return !cm.isHidden(colIndex); }, // private onEditorKey: function(field, e){ if(e.getKey() == e.TAB){ this.handleKeyDown(e); } }, /** @ignore */ handleKeyDown : function(e){ if(!e.isNavKeyPress()){ return; } var k = e.getKey(), g = this.grid, s = this.selection, sm = this, walk = function(row, col, step){ return g.walkCells( row, col, step, g.isEditor && g.editing ? sm.acceptsNav : sm.isSelectable, // *** handle tabbing while editorgrid is in edit mode sm ); }, cell, newCell, r, c, ae; switch(k){ case e.ESC: case e.PAGE_UP: case e.PAGE_DOWN: // do nothing break; default: // *** call e.stopEvent() only for non ESC, PAGE UP/DOWN KEYS e.stopEvent(); break; } if(!s){ cell = walk(0, 0, 1); // *** use private walk() function defined above if(cell){ this.select(cell[0], cell[1]); } return; } cell = s.cell; // currently selected cell r = cell[0]; // current row c = cell[1]; // current column switch(k){ case e.TAB: if(e.shiftKey){ newCell = walk(r, c - 1, -1); }else{ newCell = walk(r, c + 1, 1); } break; case e.DOWN: newCell = walk(r + 1, c, 1); break; case e.UP: newCell = walk(r - 1, c, -1); break; case e.RIGHT: newCell = walk(r, c + 1, 1); break; case e.LEFT: newCell = walk(r, c - 1, -1); break; case e.ENTER: if (g.isEditor && !g.editing) { g.startEditing(r, c); return; } break; } if(newCell){ // *** reassign r & c variables to newly-selected cell's row and column r = newCell[0]; c = newCell[1]; this.select(r, c); // *** highlight newly-selected cell and update selection if(g.isEditor && g.editing){ // *** handle tabbing while editorgrid is in edit mode ae = g.activeEditor; if(ae && ae.field.triggerBlur){ // *** if activeEditor is a TriggerField, explicitly call its triggerBlur() method ae.field.triggerBlur(); } g.startEditing(r, c); } } }, acceptsNav : function(row, col, cm){ return !cm.isHidden(col) && cm.isCellEditable(col, row); } });/** * @class Ext.grid.EditorGridPanel * @extends Ext.grid.GridPanel *

      This class extends the {@link Ext.grid.GridPanel GridPanel Class} to provide cell editing * on selected {@link Ext.grid.Column columns}. The editable columns are specified by providing * an {@link Ext.grid.ColumnModel#editor editor} in the {@link Ext.grid.Column column configuration}.

      *

      Editability of columns may be controlled programatically by inserting an implementation * of {@link Ext.grid.ColumnModel#isCellEditable isCellEditable} into the * {@link Ext.grid.ColumnModel ColumnModel}.

      *

      Editing is performed on the value of the field specified by the column's * {@link Ext.grid.ColumnModel#dataIndex dataIndex} in the backing {@link Ext.data.Store Store} * (so if you are using a {@link Ext.grid.ColumnModel#setRenderer renderer} in order to display * transformed data, this must be accounted for).

      *

      If a value-to-description mapping is used to render a column, then a {@link Ext.form.Field#ComboBox ComboBox} * which uses the same {@link Ext.form.Field#valueField value}-to-{@link Ext.form.Field#displayFieldField description} * mapping would be an appropriate editor.

      * If there is a more complex mismatch between the visible data in the grid, and the editable data in * the {@link Edt.data.Store Store}, then code to transform the data both before and after editing can be * injected using the {@link #beforeedit} and {@link #afteredit} events. * @constructor * @param {Object} config The config object * @xtype editorgrid */ Ext.grid.EditorGridPanel = Ext.extend(Ext.grid.GridPanel, { /** * @cfg {Number} clicksToEdit *

      The number of clicks on a cell required to display the cell's editor (defaults to 2).

      *

      Setting this option to 'auto' means that mousedown on the selected cell starts * editing that cell.

      */ clicksToEdit: 2, /** * @cfg {Boolean} forceValidation * True to force validation even if the value is unmodified (defaults to false) */ forceValidation: false, // private isEditor : true, // private detectEdit: false, /** * @cfg {Boolean} autoEncode * True to automatically HTML encode and decode values pre and post edit (defaults to false) */ autoEncode : false, /** * @cfg {Boolean} trackMouseOver @hide */ // private trackMouseOver: false, // causes very odd FF errors // private initComponent : function(){ Ext.grid.EditorGridPanel.superclass.initComponent.call(this); if(!this.selModel){ /** * @cfg {Object} selModel Any subclass of AbstractSelectionModel that will provide the selection model for * the grid (defaults to {@link Ext.grid.CellSelectionModel} if not specified). */ this.selModel = new Ext.grid.CellSelectionModel(); } this.activeEditor = null; this.addEvents( /** * @event beforeedit * Fires before cell editing is triggered. The edit event object has the following properties
      *
        *
      • grid - This grid
        • *
      • record - The record being edited
        • *
      • field - The field name being edited
        • *
      • value - The value for the field being edited.
        • *
      • row - The grid row index
        • *
      • column - The grid column index
        • *
      • cancel - Set this to true to cancel the edit or return false from your handler.
        • *
      * @param {Object} e An edit event (see above for description) */ "beforeedit", /** * @event afteredit * Fires after a cell is edited. The edit event object has the following properties
      *
        *
      • grid - This grid
        • *
      • record - The record being edited
        • *
      • field - The field name being edited
        • *
      • value - The value being set
        • *
      • originalValue - The original value for the field, before the edit.
        • *
      • row - The grid row index
        • *
      • column - The grid column index
        • *
      * * 
      
grid.on('afteredit', afterEdit, this );

function afterEdit(e) {
    // execute an XHR to send/commit data to the server, in callback do (if successful):
    e.record.commit();
};
             *
      * @param {Object} e An edit event (see above for description) */ "afteredit", /** * @event validateedit * Fires after a cell is edited, but before the value is set in the record. Return false * to cancel the change. The edit event object has the following properties
      *
        *
      • grid - This grid
        • *
      • record - The record being edited
        • *
      • field - The field name being edited
        • *
      • value - The value being set
        • *
      • originalValue - The original value for the field, before the edit.
        • *
      • row - The grid row index
        • *
      • column - The grid column index
        • *
      • cancel - Set this to true to cancel the edit or return false from your handler.
        • *
      * Usage example showing how to remove the red triangle (dirty record indicator) from some * records (not all). By observing the grid's validateedit event, it can be cancelled if * the edit occurs on a targeted row (for example) and then setting the field's new value * in the Record directly: * 
      
grid.on('validateedit', function(e) {
  var myTargetRow = 6;

  if (e.row == myTargetRow) {
    e.cancel = true;
    e.record.data[e.field] = e.value;
  }
});
             *
      * @param {Object} e An edit event (see above for description) */ "validateedit" ); }, // private initEvents : function(){ Ext.grid.EditorGridPanel.superclass.initEvents.call(this); this.getGridEl().on('mousewheel', this.stopEditing.createDelegate(this, [true]), this); this.on('columnresize', this.stopEditing, this, [true]); if(this.clicksToEdit == 1){ this.on("cellclick", this.onCellDblClick, this); }else { var view = this.getView(); if(this.clicksToEdit == 'auto' && view.mainBody){ view.mainBody.on('mousedown', this.onAutoEditClick, this); } this.on('celldblclick', this.onCellDblClick, this); } }, onResize : function(){ Ext.grid.EditorGridPanel.superclass.onResize.apply(this, arguments); var ae = this.activeEditor; if(this.editing && ae){ ae.realign(true); } }, // private onCellDblClick : function(g, row, col){ this.startEditing(row, col); }, // private onAutoEditClick : function(e, t){ if(e.button !== 0){ return; } var row = this.view.findRowIndex(t), col = this.view.findCellIndex(t); if(row !== false && col !== false){ this.stopEditing(); if(this.selModel.getSelectedCell){ // cell sm var sc = this.selModel.getSelectedCell(); if(sc && sc[0] === row && sc[1] === col){ this.startEditing(row, col); } }else{ if(this.selModel.isSelected(row)){ this.startEditing(row, col); } } } }, // private onEditComplete : function(ed, value, startValue){ this.editing = false; this.lastActiveEditor = this.activeEditor; this.activeEditor = null; var r = ed.record, field = this.colModel.getDataIndex(ed.col); value = this.postEditValue(value, startValue, r, field); if(this.forceValidation === true || String(value) !== String(startValue)){ var e = { grid: this, record: r, field: field, originalValue: startValue, value: value, row: ed.row, column: ed.col, cancel:false }; if(this.fireEvent("validateedit", e) !== false && !e.cancel && String(value) !== String(startValue)){ r.set(field, e.value); delete e.cancel; this.fireEvent("afteredit", e); } } this.view.focusCell(ed.row, ed.col); }, /** * Starts editing the specified for the specified row/column * @param {Number} rowIndex * @param {Number} colIndex */ startEditing : function(row, col){ this.stopEditing(); if(this.colModel.isCellEditable(col, row)){ this.view.ensureVisible(row, col, true); var r = this.store.getAt(row), field = this.colModel.getDataIndex(col), e = { grid: this, record: r, field: field, value: r.data[field], row: row, column: col, cancel:false }; if(this.fireEvent("beforeedit", e) !== false && !e.cancel){ this.editing = true; var ed = this.colModel.getCellEditor(col, row); if(!ed){ return; } if(!ed.rendered){ ed.parentEl = this.view.getEditorParent(ed); ed.on({ scope: this, render: { fn: function(c){ c.field.focus(false, true); }, single: true, scope: this }, specialkey: function(field, e){ this.getSelectionModel().onEditorKey(field, e); }, complete: this.onEditComplete, canceledit: this.stopEditing.createDelegate(this, [true]) }); } Ext.apply(ed, { row : row, col : col, record : r }); this.lastEdit = { row: row, col: col }; this.activeEditor = ed; if (ed.field.isXType('checkbox')) { ed.allowBlur = false; this.setupCheckbox(ed.field); } // Set the selectSameEditor flag if we are reusing the same editor again and // need to prevent the editor from firing onBlur on itself. ed.selectSameEditor = (this.activeEditor == this.lastActiveEditor); var v = this.preEditValue(r, field); ed.startEdit(this.view.getCell(row, col).firstChild, Ext.isDefined(v) ? v : ''); // Clear the selectSameEditor flag (function(){ delete ed.selectSameEditor; }).defer(50); } } }, setupCheckbox: function(field){ var me = this, fn = function() { field.el.on('click', me.onCheckClick, me, {single: true}); }; if (field.rendered) { fn(); } else { field.on('render', fn, null, {single: true}); } }, onCheckClick: function(){ var ed = this.activeEditor; ed.allowBlur = true; ed.field.focus(false, 10); }, // private preEditValue : function(r, field){ var value = r.data[field]; return this.autoEncode && Ext.isString(value) ? Ext.util.Format.htmlDecode(value) : value; }, // private postEditValue : function(value, originalValue, r, field){ return this.autoEncode && Ext.isString(value) ? Ext.util.Format.htmlEncode(value) : value; }, /** * Stops any active editing * @param {Boolean} cancel (optional) True to cancel any changes */ stopEditing : function(cancel){ if(this.editing){ // Store the lastActiveEditor to check if it is changing var ae = this.lastActiveEditor = this.activeEditor; if(ae){ ae[cancel === true ? 'cancelEdit' : 'completeEdit'](); this.view.focusCell(ae.row, ae.col); } this.activeEditor = null; } this.editing = false; } }); Ext.reg('editorgrid', Ext.grid.EditorGridPanel);// private // This is a support class used internally by the Grid components Ext.grid.GridEditor = function(field, config){ Ext.grid.GridEditor.superclass.constructor.call(this, field, config); field.monitorTab = false; }; Ext.extend(Ext.grid.GridEditor, Ext.Editor, { alignment: "tl-tl", autoSize: "width", hideEl : false, cls: "x-small-editor x-grid-editor", shim:false, shadow:false });/** * @class Ext.grid.PropertyRecord * A specific {@link Ext.data.Record} type that represents a name/value pair and is made to work with the * {@link Ext.grid.PropertyGrid}. Typically, PropertyRecords do not need to be created directly as they can be * created implicitly by simply using the appropriate data configs either via the {@link Ext.grid.PropertyGrid#source} * config property or by calling {@link Ext.grid.PropertyGrid#setSource}. However, if the need arises, these records * can also be created explicitly as shwon below. Example usage: * 
      
var rec = new Ext.grid.PropertyRecord({
    name: 'Birthday',
    value: new Date(Date.parse('05/26/1972'))
});
// Add record to an already populated grid
grid.store.addSorted(rec);
      * @constructor * @param {Object} config A data object in the format: {name: [name], value: [value]}. The specified value's type * will be read automatically by the grid to determine the type of editor to use when displaying it. */ Ext.grid.PropertyRecord = Ext.data.Record.create([ {name:'name',type:'string'}, 'value' ]); /** * @class Ext.grid.PropertyStore * @extends Ext.util.Observable * A custom wrapper for the {@link Ext.grid.PropertyGrid}'s {@link Ext.data.Store}. This class handles the mapping * between the custom data source objects supported by the grid and the {@link Ext.grid.PropertyRecord} format * required for compatibility with the underlying store. Generally this class should not need to be used directly -- * the grid's data should be accessed from the underlying store via the {@link #store} property. * @constructor * @param {Ext.grid.Grid} grid The grid this store will be bound to * @param {Object} source The source data config object */ Ext.grid.PropertyStore = Ext.extend(Ext.util.Observable, { constructor : function(grid, source){ this.grid = grid; this.store = new Ext.data.Store({ recordType : Ext.grid.PropertyRecord }); this.store.on('update', this.onUpdate, this); if(source){ this.setSource(source); } Ext.grid.PropertyStore.superclass.constructor.call(this); }, // protected - should only be called by the grid. Use grid.setSource instead. setSource : function(o){ this.source = o; this.store.removeAll(); var data = []; for(var k in o){ if(this.isEditableValue(o[k])){ data.push(new Ext.grid.PropertyRecord({name: k, value: o[k]}, k)); } } this.store.loadRecords({records: data}, {}, true); }, // private onUpdate : function(ds, record, type){ if(type == Ext.data.Record.EDIT){ var v = record.data.value; var oldValue = record.modified.value; if(this.grid.fireEvent('beforepropertychange', this.source, record.id, v, oldValue) !== false){ this.source[record.id] = v; record.commit(); this.grid.fireEvent('propertychange', this.source, record.id, v, oldValue); }else{ record.reject(); } } }, // private getProperty : function(row){ return this.store.getAt(row); }, // private isEditableValue: function(val){ return Ext.isPrimitive(val) || Ext.isDate(val); }, // private setValue : function(prop, value, create){ var r = this.getRec(prop); if(r){ r.set('value', value); this.source[prop] = value; }else if(create){ // only create if specified. this.source[prop] = value; r = new Ext.grid.PropertyRecord({name: prop, value: value}, prop); this.store.add(r); } }, // private remove : function(prop){ var r = this.getRec(prop); if(r){ this.store.remove(r); delete this.source[prop]; } }, // private getRec : function(prop){ return this.store.getById(prop); }, // protected - should only be called by the grid. Use grid.getSource instead. getSource : function(){ return this.source; } }); /** * @class Ext.grid.PropertyColumnModel * @extends Ext.grid.ColumnModel * A custom column model for the {@link Ext.grid.PropertyGrid}. Generally it should not need to be used directly. * @constructor * @param {Ext.grid.Grid} grid The grid this store will be bound to * @param {Object} source The source data config object */ Ext.grid.PropertyColumnModel = Ext.extend(Ext.grid.ColumnModel, { // private - strings used for locale support nameText : 'Name', valueText : 'Value', dateFormat : 'm/j/Y', trueText: 'true', falseText: 'false', constructor : function(grid, store){ var g = Ext.grid, f = Ext.form; this.grid = grid; g.PropertyColumnModel.superclass.constructor.call(this, [ {header: this.nameText, width:50, sortable: true, dataIndex:'name', id: 'name', menuDisabled:true}, {header: this.valueText, width:50, resizable:false, dataIndex: 'value', id: 'value', menuDisabled:true} ]); this.store = store; var bfield = new f.Field({ autoCreate: {tag: 'select', children: [ {tag: 'option', value: 'true', html: this.trueText}, {tag: 'option', value: 'false', html: this.falseText} ]}, getValue : function(){ return this.el.dom.value == 'true'; } }); this.editors = { 'date' : new g.GridEditor(new f.DateField({selectOnFocus:true})), 'string' : new g.GridEditor(new f.TextField({selectOnFocus:true})), 'number' : new g.GridEditor(new f.NumberField({selectOnFocus:true, style:'text-align:left;'})), 'boolean' : new g.GridEditor(bfield, { autoSize: 'both' }) }; this.renderCellDelegate = this.renderCell.createDelegate(this); this.renderPropDelegate = this.renderProp.createDelegate(this); }, // private renderDate : function(dateVal){ return dateVal.dateFormat(this.dateFormat); }, // private renderBool : function(bVal){ return this[bVal ? 'trueText' : 'falseText']; }, // private isCellEditable : function(colIndex, rowIndex){ return colIndex == 1; }, // private getRenderer : function(col){ return col == 1 ? this.renderCellDelegate : this.renderPropDelegate; }, // private renderProp : function(v){ return this.getPropertyName(v); }, // private renderCell : function(val, meta, rec){ var renderer = this.grid.customRenderers[rec.get('name')]; if(renderer){ return renderer.apply(this, arguments); } var rv = val; if(Ext.isDate(val)){ rv = this.renderDate(val); }else if(typeof val == 'boolean'){ rv = this.renderBool(val); } return Ext.util.Format.htmlEncode(rv); }, // private getPropertyName : function(name){ var pn = this.grid.propertyNames; return pn && pn[name] ? pn[name] : name; }, // private getCellEditor : function(colIndex, rowIndex){ var p = this.store.getProperty(rowIndex), n = p.data.name, val = p.data.value; if(this.grid.customEditors[n]){ return this.grid.customEditors[n]; } if(Ext.isDate(val)){ return this.editors.date; }else if(typeof val == 'number'){ return this.editors.number; }else if(typeof val == 'boolean'){ return this.editors['boolean']; }else{ return this.editors.string; } }, // inherit docs destroy : function(){ Ext.grid.PropertyColumnModel.superclass.destroy.call(this); this.destroyEditors(this.editors); this.destroyEditors(this.grid.customEditors); }, destroyEditors: function(editors){ for(var ed in editors){ Ext.destroy(editors[ed]); } } }); /** * @class Ext.grid.PropertyGrid * @extends Ext.grid.EditorGridPanel * A specialized grid implementation intended to mimic the traditional property grid as typically seen in * development IDEs. Each row in the grid represents a property of some object, and the data is stored * as a set of name/value pairs in {@link Ext.grid.PropertyRecord}s. Example usage: * 
      
var grid = new Ext.grid.PropertyGrid({
    title: 'Properties Grid',
    autoHeight: true,
    width: 300,
    renderTo: 'grid-ct',
    source: {
        "(name)": "My Object",
        "Created": new Date(Date.parse('10/15/2006')),
        "Available": false,
        "Version": .01,
        "Description": "A test object"
    }
});
      * @constructor * @param {Object} config The grid config object */ Ext.grid.PropertyGrid = Ext.extend(Ext.grid.EditorGridPanel, { /** * @cfg {Object} propertyNames An object containing property name/display name pairs. * If specified, the display name will be shown in the name column instead of the property name. */ /** * @cfg {Object} source A data object to use as the data source of the grid (see {@link #setSource} for details). */ /** * @cfg {Object} customEditors An object containing name/value pairs of custom editor type definitions that allow * the grid to support additional types of editable fields. By default, the grid supports strongly-typed editing * of strings, dates, numbers and booleans using built-in form editors, but any custom type can be supported and * associated with a custom input control by specifying a custom editor. The name of the editor * type should correspond with the name of the property that will use the editor. Example usage: * 
      
var grid = new Ext.grid.PropertyGrid({
    ...
    customEditors: {
        'Start Time': new Ext.grid.GridEditor(new Ext.form.TimeField({selectOnFocus:true}))
    },
    source: {
        'Start Time': '10:00 AM'
    }
});
      */ /** * @cfg {Object} customRenderers An object containing name/value pairs of custom renderer type definitions that allow * the grid to support custom rendering of fields. By default, the grid supports strongly-typed rendering * of strings, dates, numbers and booleans using built-in form editors, but any custom type can be supported and * associated with the type of the value. The name of the renderer type should correspond with the name of the property * that it will render. Example usage: * 
      
var grid = new Ext.grid.PropertyGrid({
    ...
    customRenderers: {
        Available: function(v){
            if(v){
                return 'Yes';
            }else{
                return 'No';
            }
        }
    },
    source: {
        Available: true
    }
});
      */ // private config overrides enableColumnMove:false, stripeRows:false, trackMouseOver: false, clicksToEdit:1, enableHdMenu : false, viewConfig : { forceFit:true }, // private initComponent : function(){ this.customRenderers = this.customRenderers || {}; this.customEditors = this.customEditors || {}; this.lastEditRow = null; var store = new Ext.grid.PropertyStore(this); this.propStore = store; var cm = new Ext.grid.PropertyColumnModel(this, store); store.store.sort('name', 'ASC'); this.addEvents( /** * @event beforepropertychange * Fires before a property value changes. Handlers can return false to cancel the property change * (this will internally call {@link Ext.data.Record#reject} on the property's record). * @param {Object} source The source data object for the grid (corresponds to the same object passed in * as the {@link #source} config property). * @param {String} recordId The record's id in the data store * @param {Mixed} value The current edited property value * @param {Mixed} oldValue The original property value prior to editing */ 'beforepropertychange', /** * @event propertychange * Fires after a property value has changed. * @param {Object} source The source data object for the grid (corresponds to the same object passed in * as the {@link #source} config property). * @param {String} recordId The record's id in the data store * @param {Mixed} value The current edited property value * @param {Mixed} oldValue The original property value prior to editing */ 'propertychange' ); this.cm = cm; this.ds = store.store; Ext.grid.PropertyGrid.superclass.initComponent.call(this); this.mon(this.selModel, 'beforecellselect', function(sm, rowIndex, colIndex){ if(colIndex === 0){ this.startEditing.defer(200, this, [rowIndex, 1]); return false; } }, this); }, // private onRender : function(){ Ext.grid.PropertyGrid.superclass.onRender.apply(this, arguments); this.getGridEl().addClass('x-props-grid'); }, // private afterRender: function(){ Ext.grid.PropertyGrid.superclass.afterRender.apply(this, arguments); if(this.source){ this.setSource(this.source); } }, /** * Sets the source data object containing the property data. The data object can contain one or more name/value * pairs representing all of the properties of an object to display in the grid, and this data will automatically * be loaded into the grid's {@link #store}. The values should be supplied in the proper data type if needed, * otherwise string type will be assumed. If the grid already contains data, this method will replace any * existing data. See also the {@link #source} config value. Example usage: * 
      
grid.setSource({
    "(name)": "My Object",
    "Created": new Date(Date.parse('10/15/2006')),  // date type
    "Available": false,  // boolean type
    "Version": .01,      // decimal type
    "Description": "A test object"
});
      * @param {Object} source The data object */ setSource : function(source){ this.propStore.setSource(source); }, /** * Gets the source data object containing the property data. See {@link #setSource} for details regarding the * format of the data object. * @return {Object} The data object */ getSource : function(){ return this.propStore.getSource(); }, /** * Sets the value of a property. * @param {String} prop The name of the property to set * @param {Mixed} value The value to test * @param {Boolean} create (Optional) True to create the property if it doesn't already exist. Defaults to false. */ setProperty : function(prop, value, create){ this.propStore.setValue(prop, value, create); }, /** * Removes a property from the grid. * @param {String} prop The name of the property to remove */ removeProperty : function(prop){ this.propStore.remove(prop); } /** * @cfg store * @hide */ /** * @cfg colModel * @hide */ /** * @cfg cm * @hide */ /** * @cfg columns * @hide */ }); Ext.reg("propertygrid", Ext.grid.PropertyGrid); /** * @class Ext.grid.GroupingView * @extends Ext.grid.GridView * Adds the ability for single level grouping to the grid. A {@link Ext.data.GroupingStore GroupingStore} * must be used to enable grouping. Some grouping characteristics may also be configured at the * {@link Ext.grid.Column Column level}
        *
      • {@link Ext.grid.Column#emptyGroupText emptyGroupText}
        • *
      • {@link Ext.grid.Column#groupable groupable}
        • *
      • {@link Ext.grid.Column#groupName groupName}
        • *
      • {@link Ext.grid.Column#groupRender groupRender}
        • *
      *

      Sample usage:

      * 
      
var grid = new Ext.grid.GridPanel({
    // A groupingStore is required for a GroupingView
    store: new {@link Ext.data.GroupingStore}({
        autoDestroy: true,
        reader: reader,
        data: xg.dummyData,
        sortInfo: {field: 'company', direction: 'ASC'},
        {@link Ext.data.GroupingStore#groupOnSort groupOnSort}: true,
        {@link Ext.data.GroupingStore#remoteGroup remoteGroup}: true,
        {@link Ext.data.GroupingStore#groupField groupField}: 'industry'
    }),
    colModel: new {@link Ext.grid.ColumnModel}({
        columns:[
            {id:'company',header: 'Company', width: 60, dataIndex: 'company'},
            // {@link Ext.grid.Column#groupable groupable}, {@link Ext.grid.Column#groupName groupName}, {@link Ext.grid.Column#groupRender groupRender} are also configurable at column level
            {header: 'Price', renderer: Ext.util.Format.usMoney, dataIndex: 'price', {@link Ext.grid.Column#groupable groupable}: false},
            {header: 'Change', dataIndex: 'change', renderer: Ext.util.Format.usMoney},
            {header: 'Industry', dataIndex: 'industry'},
            {header: 'Last Updated', renderer: Ext.util.Format.dateRenderer('m/d/Y'), dataIndex: 'lastChange'}
        ],
        defaults: {
            sortable: true,
            menuDisabled: false,
            width: 20
        }
    }),

    view: new Ext.grid.GroupingView({
        {@link Ext.grid.GridView#forceFit forceFit}: true,
        // custom grouping text template to display the number of items per group
        {@link #groupTextTpl}: '{text} ({[values.rs.length]} {[values.rs.length > 1 ? "Items" : "Item"]})'
    }),

    frame:true,
    width: 700,
    height: 450,
    collapsible: true,
    animCollapse: false,
    title: 'Grouping Example',
    iconCls: 'icon-grid',
    renderTo: document.body
});
 *
      * @constructor * @param {Object} config */ Ext.grid.GroupingView = Ext.extend(Ext.grid.GridView, { /** * @cfg {String} groupByText Text displayed in the grid header menu for grouping by a column * (defaults to 'Group By This Field'). */ groupByText : 'Group By This Field', /** * @cfg {String} showGroupsText Text displayed in the grid header for enabling/disabling grouping * (defaults to 'Show in Groups'). */ showGroupsText : 'Show in Groups', /** * @cfg {Boolean} hideGroupedColumn true to hide the column that is currently grouped (defaults to false) */ hideGroupedColumn : false, /** * @cfg {Boolean} showGroupName If true will display a prefix plus a ': ' before the group field value * in the group header line. The prefix will consist of the {@link Ext.grid.Column#groupName groupName} * (or the configured {@link Ext.grid.Column#header header} if not provided) configured in the * {@link Ext.grid.Column} for each set of grouped rows (defaults to true). */ showGroupName : true, /** * @cfg {Boolean} startCollapsed true to start all groups collapsed (defaults to false) */ startCollapsed : false, /** * @cfg {Boolean} enableGrouping false to disable grouping functionality (defaults to true) */ enableGrouping : true, /** * @cfg {Boolean} enableGroupingMenu true to enable the grouping control in the column menu (defaults to true) */ enableGroupingMenu : true, /** * @cfg {Boolean} enableNoGroups true to allow the user to turn off grouping (defaults to true) */ enableNoGroups : true, /** * @cfg {String} emptyGroupText The text to display when there is an empty group value (defaults to '(None)'). * May also be specified per column, see {@link Ext.grid.Column}.{@link Ext.grid.Column#emptyGroupText emptyGroupText}. */ emptyGroupText : '(None)', /** * @cfg {Boolean} ignoreAdd true to skip refreshing the view when new rows are added (defaults to false) */ ignoreAdd : false, /** * @cfg {String} groupTextTpl The template used to render the group header (defaults to '{text}'). * This is used to format an object which contains the following properties: *
        *
      • group : String

        The rendered value of the group field. * By default this is the unchanged value of the group field. If a {@link Ext.grid.Column#groupRenderer groupRenderer} * is specified, it is the result of a call to that function.

        • *
      • gvalue : Object

        The raw value of the group field.

        • *
      • text : String

        The configured header (as described in {@link #showGroupName}) * if {@link #showGroupName} is true) plus the rendered group field value.

        • *
      • groupId : String

        A unique, generated ID which is applied to the * View Element which contains the group.

        • *
      • startRow : Number

        The row index of the Record which caused group change.

        • *
      • rs : Array

        Contains a single element: The Record providing the data * for the row which caused group change.

        • *
      • cls : String

        The generated class name string to apply to the group header Element.

        • *
      • style : String

        The inline style rules to apply to the group header Element.

        • *

      * See {@link Ext.XTemplate} for information on how to format data using a template. Possible usage:
      
var grid = new Ext.grid.GridPanel({
    ...
    view: new Ext.grid.GroupingView({
        groupTextTpl: '{text} ({[values.rs.length]} {[values.rs.length > 1 ? "Items" : "Item"]})'
    }),
});
     *
      */ groupTextTpl : '{text}', /** * @cfg {String} groupMode Indicates how to construct the group identifier. 'value' constructs the id using * raw value, 'display' constructs the id using the rendered value. Defaults to 'value'. */ groupMode: 'value', /** * @cfg {Function} groupRenderer This property must be configured in the {@link Ext.grid.Column} for * each column. */ /** * @cfg {Boolean} cancelEditOnToggle True to cancel any editing when the group header is toggled. Defaults to true. */ cancelEditOnToggle: true, // private initTemplates : function(){ Ext.grid.GroupingView.superclass.initTemplates.call(this); this.state = {}; var sm = this.grid.getSelectionModel(); sm.on(sm.selectRow ? 'beforerowselect' : 'beforecellselect', this.onBeforeRowSelect, this); if(!this.startGroup){ this.startGroup = new Ext.XTemplate( '
      ', '
      ', this.groupTextTpl ,'
      ', '
      ' ); } this.startGroup.compile(); if (!this.endGroup) { this.endGroup = '
      '; } }, // private findGroup : function(el){ return Ext.fly(el).up('.x-grid-group', this.mainBody.dom); }, // private getGroups : function(){ return this.hasRows() ? this.mainBody.dom.childNodes : []; }, // private onAdd : function(ds, records, index) { if (this.canGroup() && !this.ignoreAdd) { var ss = this.getScrollState(); this.fireEvent('beforerowsinserted', ds, index, index + (records.length-1)); this.refresh(); this.restoreScroll(ss); this.fireEvent('rowsinserted', ds, index, index + (records.length-1)); } else if (!this.canGroup()) { Ext.grid.GroupingView.superclass.onAdd.apply(this, arguments); } }, // private onRemove : function(ds, record, index, isUpdate){ Ext.grid.GroupingView.superclass.onRemove.apply(this, arguments); var g = document.getElementById(record._groupId); if(g && g.childNodes[1].childNodes.length < 1){ Ext.removeNode(g); } this.applyEmptyText(); }, // private refreshRow : function(record){ if(this.ds.getCount()==1){ this.refresh(); }else{ this.isUpdating = true; Ext.grid.GroupingView.superclass.refreshRow.apply(this, arguments); this.isUpdating = false; } }, // private beforeMenuShow : function(){ var item, items = this.hmenu.items, disabled = this.cm.config[this.hdCtxIndex].groupable === false; if((item = items.get('groupBy'))){ item.setDisabled(disabled); } if((item = items.get('showGroups'))){ item.setDisabled(disabled); item.setChecked(this.canGroup(), true); } }, // private renderUI : function(){ var markup = Ext.grid.GroupingView.superclass.renderUI.call(this); if(this.enableGroupingMenu && this.hmenu){ this.hmenu.add('-',{ itemId:'groupBy', text: this.groupByText, handler: this.onGroupByClick, scope: this, iconCls:'x-group-by-icon' }); if(this.enableNoGroups){ this.hmenu.add({ itemId:'showGroups', text: this.showGroupsText, checked: true, checkHandler: this.onShowGroupsClick, scope: this }); } this.hmenu.on('beforeshow', this.beforeMenuShow, this); } return markup; }, processEvent: function(name, e){ Ext.grid.GroupingView.superclass.processEvent.call(this, name, e); var hd = e.getTarget('.x-grid-group-hd', this.mainBody); if(hd){ // group value is at the end of the string var field = this.getGroupField(), prefix = this.getPrefix(field), groupValue = hd.id.substring(prefix.length), emptyRe = new RegExp('gp-' + Ext.escapeRe(field) + '--hd'); // remove trailing '-hd' groupValue = groupValue.substr(0, groupValue.length - 3); // also need to check for empty groups if(groupValue || emptyRe.test(hd.id)){ this.grid.fireEvent('group' + name, this.grid, field, groupValue, e); } if(name == 'mousedown' && e.button == 0){ this.toggleGroup(hd.parentNode); } } }, // private onGroupByClick : function(){ var grid = this.grid; this.enableGrouping = true; grid.store.groupBy(this.cm.getDataIndex(this.hdCtxIndex)); grid.fireEvent('groupchange', grid, grid.store.getGroupState()); this.beforeMenuShow(); // Make sure the checkboxes get properly set when changing groups this.refresh(); }, // private onShowGroupsClick : function(mi, checked){ this.enableGrouping = checked; if(checked){ this.onGroupByClick(); }else{ this.grid.store.clearGrouping(); this.grid.fireEvent('groupchange', this, null); } }, /** * Toggle the group that contains the specific row. * @param {Number} rowIndex The row inside the group * @param {Boolean} expanded (optional) */ toggleRowIndex : function(rowIndex, expanded){ if(!this.canGroup()){ return; } var row = this.getRow(rowIndex); if(row){ this.toggleGroup(this.findGroup(row), expanded); } }, /** * Toggles the specified group if no value is passed, otherwise sets the expanded state of the group to the value passed. * @param {String} groupId The groupId assigned to the group (see getGroupId) * @param {Boolean} expanded (optional) */ toggleGroup : function(group, expanded){ var gel = Ext.get(group), id = Ext.util.Format.htmlEncode(gel.id); expanded = Ext.isDefined(expanded) ? expanded : gel.hasClass('x-grid-group-collapsed'); if(this.state[id] !== expanded){ if (this.cancelEditOnToggle !== false) { this.grid.stopEditing(true); } this.state[id] = expanded; gel[expanded ? 'removeClass' : 'addClass']('x-grid-group-collapsed'); } }, /** * Toggles all groups if no value is passed, otherwise sets the expanded state of all groups to the value passed. * @param {Boolean} expanded (optional) */ toggleAllGroups : function(expanded){ var groups = this.getGroups(); for(var i = 0, len = groups.length; i < len; i++){ this.toggleGroup(groups[i], expanded); } }, /** * Expands all grouped rows. */ expandAllGroups : function(){ this.toggleAllGroups(true); }, /** * Collapses all grouped rows. */ collapseAllGroups : function(){ this.toggleAllGroups(false); }, // private getGroup : function(v, r, groupRenderer, rowIndex, colIndex, ds){ var column = this.cm.config[colIndex], g = groupRenderer ? groupRenderer.call(column.scope, v, {}, r, rowIndex, colIndex, ds) : String(v); if(g === '' || g === ' '){ g = column.emptyGroupText || this.emptyGroupText; } return g; }, // private getGroupField : function(){ return this.grid.store.getGroupState(); }, // private afterRender : function(){ if(!this.ds || !this.cm){ return; } Ext.grid.GroupingView.superclass.afterRender.call(this); if(this.grid.deferRowRender){ this.updateGroupWidths(); } }, afterRenderUI: function () { Ext.grid.GroupingView.superclass.afterRenderUI.call(this); if (this.enableGroupingMenu && this.hmenu) { this.hmenu.add('-',{ itemId:'groupBy', text: this.groupByText, handler: this.onGroupByClick, scope: this, iconCls:'x-group-by-icon' }); if (this.enableNoGroups) { this.hmenu.add({ itemId:'showGroups', text: this.showGroupsText, checked: true, checkHandler: this.onShowGroupsClick, scope: this }); } this.hmenu.on('beforeshow', this.beforeMenuShow, this); } }, // private renderRows : function(){ var groupField = this.getGroupField(); var eg = !!groupField; // if they turned off grouping and the last grouped field is hidden if(this.hideGroupedColumn) { var colIndex = this.cm.findColumnIndex(groupField), hasLastGroupField = Ext.isDefined(this.lastGroupField); if(!eg && hasLastGroupField){ this.mainBody.update(''); this.cm.setHidden(this.cm.findColumnIndex(this.lastGroupField), false); delete this.lastGroupField; }else if (eg && !hasLastGroupField){ this.lastGroupField = groupField; this.cm.setHidden(colIndex, true); }else if (eg && hasLastGroupField && groupField !== this.lastGroupField) { this.mainBody.update(''); var oldIndex = this.cm.findColumnIndex(this.lastGroupField); this.cm.setHidden(oldIndex, false); this.lastGroupField = groupField; this.cm.setHidden(colIndex, true); } } return Ext.grid.GroupingView.superclass.renderRows.apply( this, arguments); }, // private doRender : function(cs, rs, ds, startRow, colCount, stripe){ if(rs.length < 1){ return ''; } if(!this.canGroup() || this.isUpdating){ return Ext.grid.GroupingView.superclass.doRender.apply(this, arguments); } var groupField = this.getGroupField(), colIndex = this.cm.findColumnIndex(groupField), g, gstyle = 'width:' + this.getTotalWidth() + ';', cfg = this.cm.config[colIndex], groupRenderer = cfg.groupRenderer || cfg.renderer, prefix = this.showGroupName ? (cfg.groupName || cfg.header)+': ' : '', groups = [], curGroup, i, len, gid; for(i = 0, len = rs.length; i < len; i++){ var rowIndex = startRow + i, r = rs[i], gvalue = r.data[groupField]; g = this.getGroup(gvalue, r, groupRenderer, rowIndex, colIndex, ds); if(!curGroup || curGroup.group != g){ gid = this.constructId(gvalue, groupField, colIndex); // if state is defined use it, however state is in terms of expanded // so negate it, otherwise use the default. this.state[gid] = !(Ext.isDefined(this.state[gid]) ? !this.state[gid] : this.startCollapsed); curGroup = { group: g, gvalue: gvalue, text: prefix + g, groupId: gid, startRow: rowIndex, rs: [r], cls: this.state[gid] ? '' : 'x-grid-group-collapsed', style: gstyle }; groups.push(curGroup); }else{ curGroup.rs.push(r); } r._groupId = gid; } var buf = []; for(i = 0, len = groups.length; i < len; i++){ g = groups[i]; this.doGroupStart(buf, g, cs, ds, colCount); buf[buf.length] = Ext.grid.GroupingView.superclass.doRender.call( this, cs, g.rs, ds, g.startRow, colCount, stripe); this.doGroupEnd(buf, g, cs, ds, colCount); } return buf.join(''); }, /** * Dynamically tries to determine the groupId of a specific value * @param {String} value * @return {String} The group id */ getGroupId : function(value){ var field = this.getGroupField(); return this.constructId(value, field, this.cm.findColumnIndex(field)); }, // private constructId : function(value, field, idx){ var cfg = this.cm.config[idx], groupRenderer = cfg.groupRenderer || cfg.renderer, val = (this.groupMode == 'value') ? value : this.getGroup(value, {data:{}}, groupRenderer, 0, idx, this.ds); return this.getPrefix(field) + Ext.util.Format.htmlEncode(val); }, // private canGroup : function(){ return this.enableGrouping && !!this.getGroupField(); }, // private getPrefix: function(field){ return this.grid.getGridEl().id + '-gp-' + field + '-'; }, // private doGroupStart : function(buf, g, cs, ds, colCount){ buf[buf.length] = this.startGroup.apply(g); }, // private doGroupEnd : function(buf, g, cs, ds, colCount){ buf[buf.length] = this.endGroup; }, // private getRows : function(){ if(!this.canGroup()){ return Ext.grid.GroupingView.superclass.getRows.call(this); } var r = [], gs = this.getGroups(), g, i = 0, len = gs.length, j, jlen; for(; i < len; ++i){ g = gs[i].childNodes[1]; if(g){ g = g.childNodes; for(j = 0, jlen = g.length; j < jlen; ++j){ r[r.length] = g[j]; } } } return r; }, // private updateGroupWidths : function(){ if(!this.canGroup() || !this.hasRows()){ return; } var tw = Math.max(this.cm.getTotalWidth(), this.el.dom.offsetWidth-this.getScrollOffset()) +'px'; var gs = this.getGroups(); for(var i = 0, len = gs.length; i < len; i++){ gs[i].firstChild.style.width = tw; } }, // private onColumnWidthUpdated : function(col, w, tw){ Ext.grid.GroupingView.superclass.onColumnWidthUpdated.call(this, col, w, tw); this.updateGroupWidths(); }, // private onAllColumnWidthsUpdated : function(ws, tw){ Ext.grid.GroupingView.superclass.onAllColumnWidthsUpdated.call(this, ws, tw); this.updateGroupWidths(); }, // private onColumnHiddenUpdated : function(col, hidden, tw){ Ext.grid.GroupingView.superclass.onColumnHiddenUpdated.call(this, col, hidden, tw); this.updateGroupWidths(); }, // private onLayout : function(){ this.updateGroupWidths(); }, // private onBeforeRowSelect : function(sm, rowIndex){ this.toggleRowIndex(rowIndex, true); } }); // private Ext.grid.GroupingView.GROUP_ID = 1000; ================================================ FILE: client/src/ext/ext-all-debug.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ (function(){ var EXTUTIL = Ext.util, EACH = Ext.each, TRUE = true, FALSE = false; EXTUTIL.Observable = function(){ var me = this, e = me.events; if(me.listeners){ me.on(me.listeners); delete me.listeners; } me.events = e || {}; }; EXTUTIL.Observable.prototype = { filterOptRe : /^(?:scope|delay|buffer|single)$/, fireEvent : function(){ var a = Array.prototype.slice.call(arguments, 0), ename = a[0].toLowerCase(), me = this, ret = TRUE, ce = me.events[ename], cc, q, c; if (me.eventsSuspended === TRUE) { if (q = me.eventQueue) { q.push(a); } } else if(typeof ce == 'object') { if (ce.bubble){ if(ce.fire.apply(ce, a.slice(1)) === FALSE) { return FALSE; } c = me.getBubbleTarget && me.getBubbleTarget(); if(c && c.enableBubble) { cc = c.events[ename]; if(!cc || typeof cc != 'object' || !cc.bubble) { c.enableBubble(ename); } return c.fireEvent.apply(c, a); } } else { a.shift(); ret = ce.fire.apply(ce, a); } } return ret; }, addListener : function(eventName, fn, scope, o){ var me = this, e, oe, ce; if (typeof eventName == 'object') { o = eventName; for (e in o) { oe = o[e]; if (!me.filterOptRe.test(e)) { me.addListener(e, oe.fn || oe, oe.scope || o.scope, oe.fn ? oe : o); } } } else { eventName = eventName.toLowerCase(); ce = me.events[eventName] || TRUE; if (typeof ce == 'boolean') { me.events[eventName] = ce = new EXTUTIL.Event(me, eventName); } ce.addListener(fn, scope, typeof o == 'object' ? o : {}); } }, removeListener : function(eventName, fn, scope){ var ce = this.events[eventName.toLowerCase()]; if (typeof ce == 'object') { ce.removeListener(fn, scope); } }, purgeListeners : function(){ var events = this.events, evt, key; for(key in events){ evt = events[key]; if(typeof evt == 'object'){ evt.clearListeners(); } } }, addEvents : function(o){ var me = this; me.events = me.events || {}; if (typeof o == 'string') { var a = arguments, i = a.length; while(i--) { me.events[a[i]] = me.events[a[i]] || TRUE; } } else { Ext.applyIf(me.events, o); } }, hasListener : function(eventName){ var e = this.events[eventName.toLowerCase()]; return typeof e == 'object' && e.listeners.length > 0; }, suspendEvents : function(queueSuspended){ this.eventsSuspended = TRUE; if(queueSuspended && !this.eventQueue){ this.eventQueue = []; } }, resumeEvents : function(){ var me = this, queued = me.eventQueue || []; me.eventsSuspended = FALSE; delete me.eventQueue; EACH(queued, function(e) { me.fireEvent.apply(me, e); }); } }; var OBSERVABLE = EXTUTIL.Observable.prototype; OBSERVABLE.on = OBSERVABLE.addListener; OBSERVABLE.un = OBSERVABLE.removeListener; EXTUTIL.Observable.releaseCapture = function(o){ o.fireEvent = OBSERVABLE.fireEvent; }; function createTargeted(h, o, scope){ return function(){ if(o.target == arguments[0]){ h.apply(scope, Array.prototype.slice.call(arguments, 0)); } }; }; function createBuffered(h, o, l, scope){ l.task = new EXTUTIL.DelayedTask(); return function(){ l.task.delay(o.buffer, h, scope, Array.prototype.slice.call(arguments, 0)); }; }; function createSingle(h, e, fn, scope){ return function(){ e.removeListener(fn, scope); return h.apply(scope, arguments); }; }; function createDelayed(h, o, l, scope){ return function(){ var task = new EXTUTIL.DelayedTask(), args = Array.prototype.slice.call(arguments, 0); if(!l.tasks) { l.tasks = []; } l.tasks.push(task); task.delay(o.delay || 10, function(){ l.tasks.remove(task); h.apply(scope, args); }, scope); }; }; EXTUTIL.Event = function(obj, name){ this.name = name; this.obj = obj; this.listeners = []; }; EXTUTIL.Event.prototype = { addListener : function(fn, scope, options){ var me = this, l; scope = scope || me.obj; if(!me.isListening(fn, scope)){ l = me.createListener(fn, scope, options); if(me.firing){ me.listeners = me.listeners.slice(0); } me.listeners.push(l); } }, createListener: function(fn, scope, o){ o = o || {}; scope = scope || this.obj; var l = { fn: fn, scope: scope, options: o }, h = fn; if(o.target){ h = createTargeted(h, o, scope); } if(o.delay){ h = createDelayed(h, o, l, scope); } if(o.single){ h = createSingle(h, this, fn, scope); } if(o.buffer){ h = createBuffered(h, o, l, scope); } l.fireFn = h; return l; }, findListener : function(fn, scope){ var list = this.listeners, i = list.length, l; scope = scope || this.obj; while(i--){ l = list[i]; if(l){ if(l.fn == fn && l.scope == scope){ return i; } } } return -1; }, isListening : function(fn, scope){ return this.findListener(fn, scope) != -1; }, removeListener : function(fn, scope){ var index, l, k, me = this, ret = FALSE; if((index = me.findListener(fn, scope)) != -1){ if (me.firing) { me.listeners = me.listeners.slice(0); } l = me.listeners[index]; if(l.task) { l.task.cancel(); delete l.task; } k = l.tasks && l.tasks.length; if(k) { while(k--) { l.tasks[k].cancel(); } delete l.tasks; } me.listeners.splice(index, 1); ret = TRUE; } return ret; }, clearListeners : function(){ var me = this, l = me.listeners, i = l.length; while(i--) { me.removeListener(l[i].fn, l[i].scope); } }, fire : function(){ var me = this, listeners = me.listeners, len = listeners.length, i = 0, l; if(len > 0){ me.firing = TRUE; var args = Array.prototype.slice.call(arguments, 0); for (; i < len; i++) { l = listeners[i]; if(l && l.fireFn.apply(l.scope || me.obj || window, args) === FALSE) { return (me.firing = FALSE); } } } me.firing = FALSE; return TRUE; } }; })(); Ext.DomHelper = function(){ var tempTableEl = null, emptyTags = /^(?:br|frame|hr|img|input|link|meta|range|spacer|wbr|area|param|col)$/i, tableRe = /^table|tbody|tr|td$/i, confRe = /tag|children|cn|html$/i, tableElRe = /td|tr|tbody/i, cssRe = /([a-z0-9-]+)\s*:\s*([^;\s]+(?:\s*[^;\s]+)*);?/gi, endRe = /end/i, pub, afterbegin = 'afterbegin', afterend = 'afterend', beforebegin = 'beforebegin', beforeend = 'beforeend', ts = '', te = '
      ', tbs = ts+'', tbe = ''+te, trs = tbs + '', tre = ''+tbe; function doInsert(el, o, returnElement, pos, sibling, append){ var newNode = pub.insertHtml(pos, Ext.getDom(el), createHtml(o)); return returnElement ? Ext.get(newNode, true) : newNode; } function createHtml(o){ var b = '', attr, val, key, cn; if(typeof o == "string"){ b = o; } else if (Ext.isArray(o)) { for (var i=0; i < o.length; i++) { if(o[i]) { b += createHtml(o[i]); } }; } else { b += '<' + (o.tag = o.tag || 'div'); for (attr in o) { val = o[attr]; if(!confRe.test(attr)){ if (typeof val == "object") { b += ' ' + attr + '="'; for (key in val) { b += key + ':' + val[key] + ';'; }; b += '"'; }else{ b += ' ' + ({cls : 'class', htmlFor : 'for'}[attr] || attr) + '="' + val + '"'; } } }; if (emptyTags.test(o.tag)) { b += '/>'; } else { b += '>'; if ((cn = o.children || o.cn)) { b += createHtml(cn); } else if(o.html){ b += o.html; } b += ''; } } return b; } function ieTable(depth, s, h, e){ tempTableEl.innerHTML = [s, h, e].join(''); var i = -1, el = tempTableEl, ns; while(++i < depth){ el = el.firstChild; } if(ns = el.nextSibling){ var df = document.createDocumentFragment(); while(el){ ns = el.nextSibling; df.appendChild(el); el = ns; } el = df; } return el; } function insertIntoTable(tag, where, el, html) { var node, before; tempTableEl = tempTableEl || document.createElement('div'); if(tag == 'td' && (where == afterbegin || where == beforeend) || !tableElRe.test(tag) && (where == beforebegin || where == afterend)) { return; } before = where == beforebegin ? el : where == afterend ? el.nextSibling : where == afterbegin ? el.firstChild : null; if (where == beforebegin || where == afterend) { el = el.parentNode; } if (tag == 'td' || (tag == 'tr' && (where == beforeend || where == afterbegin))) { node = ieTable(4, trs, html, tre); } else if ((tag == 'tbody' && (where == beforeend || where == afterbegin)) || (tag == 'tr' && (where == beforebegin || where == afterend))) { node = ieTable(3, tbs, html, tbe); } else { node = ieTable(2, ts, html, te); } el.insertBefore(node, before); return node; } function createContextualFragment(html){ var div = document.createElement("div"), fragment = document.createDocumentFragment(), i = 0, length, childNodes; div.innerHTML = html; childNodes = div.childNodes; length = childNodes.length; for (; i < length; i++) { fragment.appendChild(childNodes[i].cloneNode(true)); } return fragment; } pub = { markup : function(o){ return createHtml(o); }, applyStyles : function(el, styles){ if (styles) { var matches; el = Ext.fly(el); if (typeof styles == "function") { styles = styles.call(); } if (typeof styles == "string") { cssRe.lastIndex = 0; while ((matches = cssRe.exec(styles))) { el.setStyle(matches[1], matches[2]); } } else if (typeof styles == "object") { el.setStyle(styles); } } }, insertHtml : function(where, el, html){ var hash = {}, hashVal, range, rangeEl, setStart, frag, rs; where = where.toLowerCase(); hash[beforebegin] = ['BeforeBegin', 'previousSibling']; hash[afterend] = ['AfterEnd', 'nextSibling']; if (el.insertAdjacentHTML) { if(tableRe.test(el.tagName) && (rs = insertIntoTable(el.tagName.toLowerCase(), where, el, html))){ return rs; } hash[afterbegin] = ['AfterBegin', 'firstChild']; hash[beforeend] = ['BeforeEnd', 'lastChild']; if ((hashVal = hash[where])) { el.insertAdjacentHTML(hashVal[0], html); return el[hashVal[1]]; } } else { range = el.ownerDocument.createRange(); setStart = 'setStart' + (endRe.test(where) ? 'After' : 'Before'); if (hash[where]) { range[setStart](el); if (!range.createContextualFragment) { frag = createContextualFragment(html); } else { frag = range.createContextualFragment(html); } el.parentNode.insertBefore(frag, where == beforebegin ? el : el.nextSibling); return el[(where == beforebegin ? 'previous' : 'next') + 'Sibling']; } else { rangeEl = (where == afterbegin ? 'first' : 'last') + 'Child'; if (el.firstChild) { range[setStart](el[rangeEl]); if (!range.createContextualFragment) { frag = createContextualFragment(html); } else { frag = range.createContextualFragment(html); } if(where == afterbegin){ el.insertBefore(frag, el.firstChild); }else{ el.appendChild(frag); } } else { el.innerHTML = html; } return el[rangeEl]; } } throw 'Illegal insertion point -> "' + where + '"'; }, insertBefore : function(el, o, returnElement){ return doInsert(el, o, returnElement, beforebegin); }, insertAfter : function(el, o, returnElement){ return doInsert(el, o, returnElement, afterend, 'nextSibling'); }, insertFirst : function(el, o, returnElement){ return doInsert(el, o, returnElement, afterbegin, 'firstChild'); }, append : function(el, o, returnElement){ return doInsert(el, o, returnElement, beforeend, '', true); }, overwrite : function(el, o, returnElement){ el = Ext.getDom(el); el.innerHTML = createHtml(o); return returnElement ? Ext.get(el.firstChild) : el.firstChild; }, createHtml : createHtml }; return pub; }(); Ext.Template = function(html){ var me = this, a = arguments, buf = [], v; if (Ext.isArray(html)) { html = html.join(""); } else if (a.length > 1) { for(var i = 0, len = a.length; i < len; i++){ v = a[i]; if(typeof v == 'object'){ Ext.apply(me, v); } else { buf.push(v); } }; html = buf.join(''); } me.html = html; if (me.compiled) { me.compile(); } }; Ext.Template.prototype = { re : /\{([\w\-]+)\}/g, applyTemplate : function(values){ var me = this; return me.compiled ? me.compiled(values) : me.html.replace(me.re, function(m, name){ return values[name] !== undefined ? values[name] : ""; }); }, set : function(html, compile){ var me = this; me.html = html; me.compiled = null; return compile ? me.compile() : me; }, compile : function(){ var me = this, sep = Ext.isGecko ? "+" : ","; function fn(m, name){ name = "values['" + name + "']"; return "'"+ sep + '(' + name + " == undefined ? '' : " + name + ')' + sep + "'"; } eval("this.compiled = function(values){ return " + (Ext.isGecko ? "'" : "['") + me.html.replace(/\\/g, '\\\\').replace(/(\r\n|\n)/g, '\\n').replace(/'/g, "\\'").replace(this.re, fn) + (Ext.isGecko ? "';};" : "'].join('');};")); return me; }, insertFirst: function(el, values, returnElement){ return this.doInsert('afterBegin', el, values, returnElement); }, insertBefore: function(el, values, returnElement){ return this.doInsert('beforeBegin', el, values, returnElement); }, insertAfter : function(el, values, returnElement){ return this.doInsert('afterEnd', el, values, returnElement); }, append : function(el, values, returnElement){ return this.doInsert('beforeEnd', el, values, returnElement); }, doInsert : function(where, el, values, returnEl){ el = Ext.getDom(el); var newNode = Ext.DomHelper.insertHtml(where, el, this.applyTemplate(values)); return returnEl ? Ext.get(newNode, true) : newNode; }, overwrite : function(el, values, returnElement){ el = Ext.getDom(el); el.innerHTML = this.applyTemplate(values); return returnElement ? Ext.get(el.firstChild, true) : el.firstChild; } }; Ext.Template.prototype.apply = Ext.Template.prototype.applyTemplate; Ext.Template.from = function(el, config){ el = Ext.getDom(el); return new Ext.Template(el.value || el.innerHTML, config || ''); }; Ext.DomQuery = function(){ var cache = {}, simpleCache = {}, valueCache = {}, nonSpace = /\S/, trimRe = /^\s+|\s+$/g, tplRe = /\{(\d+)\}/g, modeRe = /^(\s?[\/>+~]\s?|\s|$)/, tagTokenRe = /^(#)?([\w\-\*]+)/, nthRe = /(\d*)n\+?(\d*)/, nthRe2 = /\D/, isIE = window.ActiveXObject ? true : false, key = 30803; eval("var batch = 30803;"); function child(parent, index){ var i = 0, n = parent.firstChild; while(n){ if(n.nodeType == 1){ if(++i == index){ return n; } } n = n.nextSibling; } return null; } function next(n){ while((n = n.nextSibling) && n.nodeType != 1); return n; } function prev(n){ while((n = n.previousSibling) && n.nodeType != 1); return n; } function children(parent){ var n = parent.firstChild, nodeIndex = -1, nextNode; while(n){ nextNode = n.nextSibling; if(n.nodeType == 3 && !nonSpace.test(n.nodeValue)){ parent.removeChild(n); }else{ n.nodeIndex = ++nodeIndex; } n = nextNode; } return this; } function byClassName(nodeSet, cls){ if(!cls){ return nodeSet; } var result = [], ri = -1; for(var i = 0, ci; ci = nodeSet[i]; i++){ if((' '+ci.className+' ').indexOf(cls) != -1){ result[++ri] = ci; } } return result; }; function attrValue(n, attr){ if(!n.tagName && typeof n.length != "undefined"){ n = n[0]; } if(!n){ return null; } if(attr == "for"){ return n.htmlFor; } if(attr == "class" || attr == "className"){ return n.className; } return n.getAttribute(attr) || n[attr]; }; function getNodes(ns, mode, tagName){ var result = [], ri = -1, cs; if(!ns){ return result; } tagName = tagName || "*"; if(typeof ns.getElementsByTagName != "undefined"){ ns = [ns]; } if(!mode){ for(var i = 0, ni; ni = ns[i]; i++){ cs = ni.getElementsByTagName(tagName); for(var j = 0, ci; ci = cs[j]; j++){ result[++ri] = ci; } } } else if(mode == "/" || mode == ">"){ var utag = tagName.toUpperCase(); for(var i = 0, ni, cn; ni = ns[i]; i++){ cn = ni.childNodes; for(var j = 0, cj; cj = cn[j]; j++){ if(cj.nodeName == utag || cj.nodeName == tagName || tagName == '*'){ result[++ri] = cj; } } } }else if(mode == "+"){ var utag = tagName.toUpperCase(); for(var i = 0, n; n = ns[i]; i++){ while((n = n.nextSibling) && n.nodeType != 1); if(n && (n.nodeName == utag || n.nodeName == tagName || tagName == '*')){ result[++ri] = n; } } }else if(mode == "~"){ var utag = tagName.toUpperCase(); for(var i = 0, n; n = ns[i]; i++){ while((n = n.nextSibling)){ if (n.nodeName == utag || n.nodeName == tagName || tagName == '*'){ result[++ri] = n; } } } } return result; } function concat(a, b){ if(b.slice){ return a.concat(b); } for(var i = 0, l = b.length; i < l; i++){ a[a.length] = b[i]; } return a; } function byTag(cs, tagName){ if(cs.tagName || cs == document){ cs = [cs]; } if(!tagName){ return cs; } var result = [], ri = -1; tagName = tagName.toLowerCase(); for(var i = 0, ci; ci = cs[i]; i++){ if(ci.nodeType == 1 && ci.tagName.toLowerCase() == tagName){ result[++ri] = ci; } } return result; } function byId(cs, id){ if(cs.tagName || cs == document){ cs = [cs]; } if(!id){ return cs; } var result = [], ri = -1; for(var i = 0, ci; ci = cs[i]; i++){ if(ci && ci.id == id){ result[++ri] = ci; return result; } } return result; } function byAttribute(cs, attr, value, op, custom){ var result = [], ri = -1, useGetStyle = custom == "{", fn = Ext.DomQuery.operators[op], a, xml, hasXml; for(var i = 0, ci; ci = cs[i]; i++){ if(ci.nodeType != 1){ continue; } if(!hasXml){ xml = Ext.DomQuery.isXml(ci); hasXml = true; } if(!xml){ if(useGetStyle){ a = Ext.DomQuery.getStyle(ci, attr); } else if (attr == "class" || attr == "className"){ a = ci.className; } else if (attr == "for"){ a = ci.htmlFor; } else if (attr == "href"){ a = ci.getAttribute("href", 2); } else{ a = ci.getAttribute(attr); } }else{ a = ci.getAttribute(attr); } if((fn && fn(a, value)) || (!fn && a)){ result[++ri] = ci; } } return result; } function byPseudo(cs, name, value){ return Ext.DomQuery.pseudos[name](cs, value); } function nodupIEXml(cs){ var d = ++key, r; cs[0].setAttribute("_nodup", d); r = [cs[0]]; for(var i = 1, len = cs.length; i < len; i++){ var c = cs[i]; if(!c.getAttribute("_nodup") != d){ c.setAttribute("_nodup", d); r[r.length] = c; } } for(var i = 0, len = cs.length; i < len; i++){ cs[i].removeAttribute("_nodup"); } return r; } function nodup(cs){ if(!cs){ return []; } var len = cs.length, c, i, r = cs, cj, ri = -1; if(!len || typeof cs.nodeType != "undefined" || len == 1){ return cs; } if(isIE && typeof cs[0].selectSingleNode != "undefined"){ return nodupIEXml(cs); } var d = ++key; cs[0]._nodup = d; for(i = 1; c = cs[i]; i++){ if(c._nodup != d){ c._nodup = d; }else{ r = []; for(var j = 0; j < i; j++){ r[++ri] = cs[j]; } for(j = i+1; cj = cs[j]; j++){ if(cj._nodup != d){ cj._nodup = d; r[++ri] = cj; } } return r; } } return r; } function quickDiffIEXml(c1, c2){ var d = ++key, r = []; for(var i = 0, len = c1.length; i < len; i++){ c1[i].setAttribute("_qdiff", d); } for(var i = 0, len = c2.length; i < len; i++){ if(c2[i].getAttribute("_qdiff") != d){ r[r.length] = c2[i]; } } for(var i = 0, len = c1.length; i < len; i++){ c1[i].removeAttribute("_qdiff"); } return r; } function quickDiff(c1, c2){ var len1 = c1.length, d = ++key, r = []; if(!len1){ return c2; } if(isIE && typeof c1[0].selectSingleNode != "undefined"){ return quickDiffIEXml(c1, c2); } for(var i = 0; i < len1; i++){ c1[i]._qdiff = d; } for(var i = 0, len = c2.length; i < len; i++){ if(c2[i]._qdiff != d){ r[r.length] = c2[i]; } } return r; } function quickId(ns, mode, root, id){ if(ns == root){ var d = root.ownerDocument || root; return d.getElementById(id); } ns = getNodes(ns, mode, "*"); return byId(ns, id); } return { getStyle : function(el, name){ return Ext.fly(el).getStyle(name); }, compile : function(path, type){ type = type || "select"; var fn = ["var f = function(root){\n var mode; ++batch; var n = root || document;\n"], mode, lastPath, matchers = Ext.DomQuery.matchers, matchersLn = matchers.length, modeMatch, lmode = path.match(modeRe); if(lmode && lmode[1]){ fn[fn.length] = 'mode="'+lmode[1].replace(trimRe, "")+'";'; path = path.replace(lmode[1], ""); } while(path.substr(0, 1)=="/"){ path = path.substr(1); } while(path && lastPath != path){ lastPath = path; var tokenMatch = path.match(tagTokenRe); if(type == "select"){ if(tokenMatch){ if(tokenMatch[1] == "#"){ fn[fn.length] = 'n = quickId(n, mode, root, "'+tokenMatch[2]+'");'; }else{ fn[fn.length] = 'n = getNodes(n, mode, "'+tokenMatch[2]+'");'; } path = path.replace(tokenMatch[0], ""); }else if(path.substr(0, 1) != '@'){ fn[fn.length] = 'n = getNodes(n, mode, "*");'; } }else{ if(tokenMatch){ if(tokenMatch[1] == "#"){ fn[fn.length] = 'n = byId(n, "'+tokenMatch[2]+'");'; }else{ fn[fn.length] = 'n = byTag(n, "'+tokenMatch[2]+'");'; } path = path.replace(tokenMatch[0], ""); } } while(!(modeMatch = path.match(modeRe))){ var matched = false; for(var j = 0; j < matchersLn; j++){ var t = matchers[j]; var m = path.match(t.re); if(m){ fn[fn.length] = t.select.replace(tplRe, function(x, i){ return m[i]; }); path = path.replace(m[0], ""); matched = true; break; } } if(!matched){ throw 'Error parsing selector, parsing failed at "' + path + '"'; } } if(modeMatch[1]){ fn[fn.length] = 'mode="'+modeMatch[1].replace(trimRe, "")+'";'; path = path.replace(modeMatch[1], ""); } } fn[fn.length] = "return nodup(n);\n}"; eval(fn.join("")); return f; }, jsSelect: function(path, root, type){ root = root || document; if(typeof root == "string"){ root = document.getElementById(root); } var paths = path.split(","), results = []; for(var i = 0, len = paths.length; i < len; i++){ var subPath = paths[i].replace(trimRe, ""); if(!cache[subPath]){ cache[subPath] = Ext.DomQuery.compile(subPath); if(!cache[subPath]){ throw subPath + " is not a valid selector"; } } var result = cache[subPath](root); if(result && result != document){ results = results.concat(result); } } if(paths.length > 1){ return nodup(results); } return results; }, isXml: function(el) { var docEl = (el ? el.ownerDocument || el : 0).documentElement; return docEl ? docEl.nodeName !== "HTML" : false; }, select : document.querySelectorAll ? function(path, root, type) { root = root || document; if (!Ext.DomQuery.isXml(root)) { try { var cs = root.querySelectorAll(path); return Ext.toArray(cs); } catch (ex) {} } return Ext.DomQuery.jsSelect.call(this, path, root, type); } : function(path, root, type) { return Ext.DomQuery.jsSelect.call(this, path, root, type); }, selectNode : function(path, root){ return Ext.DomQuery.select(path, root)[0]; }, selectValue : function(path, root, defaultValue){ path = path.replace(trimRe, ""); if(!valueCache[path]){ valueCache[path] = Ext.DomQuery.compile(path, "select"); } var n = valueCache[path](root), v; n = n[0] ? n[0] : n; if (typeof n.normalize == 'function') n.normalize(); v = (n && n.firstChild ? n.firstChild.nodeValue : null); return ((v === null||v === undefined||v==='') ? defaultValue : v); }, selectNumber : function(path, root, defaultValue){ var v = Ext.DomQuery.selectValue(path, root, defaultValue || 0); return parseFloat(v); }, is : function(el, ss){ if(typeof el == "string"){ el = document.getElementById(el); } var isArray = Ext.isArray(el), result = Ext.DomQuery.filter(isArray ? el : [el], ss); return isArray ? (result.length == el.length) : (result.length > 0); }, filter : function(els, ss, nonMatches){ ss = ss.replace(trimRe, ""); if(!simpleCache[ss]){ simpleCache[ss] = Ext.DomQuery.compile(ss, "simple"); } var result = simpleCache[ss](els); return nonMatches ? quickDiff(result, els) : result; }, matchers : [{ re: /^\.([\w\-]+)/, select: 'n = byClassName(n, " {1} ");' }, { re: /^\:([\w\-]+)(?:\(((?:[^\s>\/]*|.*?))\))?/, select: 'n = byPseudo(n, "{1}", "{2}");' },{ re: /^(?:([\[\{])(?:@)?([\w\-]+)\s?(?:(=|.=)\s?(["']?)(.*?)\4)?[\]\}])/, select: 'n = byAttribute(n, "{2}", "{5}", "{3}", "{1}");' }, { re: /^#([\w\-]+)/, select: 'n = byId(n, "{1}");' },{ re: /^@([\w\-]+)/, select: 'return {firstChild:{nodeValue:attrValue(n, "{1}")}};' } ], /** * Collection of operator comparison functions. The default operators are =, !=, ^=, $=, *=, %=, |= and ~=. * New operators can be added as long as the match the format c= where c is any character other than space, > <. */ operators : { "=" : function(a, v){ return a == v; }, "!=" : function(a, v){ return a != v; }, "^=" : function(a, v){ return a && a.substr(0, v.length) == v; }, "$=" : function(a, v){ return a && a.substr(a.length-v.length) == v; }, "*=" : function(a, v){ return a && a.indexOf(v) !== -1; }, "%=" : function(a, v){ return (a % v) == 0; }, "|=" : function(a, v){ return a && (a == v || a.substr(0, v.length+1) == v+'-'); }, "~=" : function(a, v){ return a && (' '+a+' ').indexOf(' '+v+' ') != -1; } }, /** *

      Object hash of "pseudo class" filter functions which are used when filtering selections. Each function is passed * two parameters:

        *
      • c : Array
        An Array of DOM elements to filter.
        • *
      • v : String
        The argument (if any) supplied in the selector.
        • *
      *

      A filter function returns an Array of DOM elements which conform to the pseudo class.

      *

      In addition to the provided pseudo classes listed above such as first-child and nth-child, * developers may add additional, custom psuedo class filters to select elements according to application-specific requirements.

      *

      For example, to filter <a> elements to only return links to external resources:

      * 
      Ext.DomQuery.pseudos.external = function(c, v){
    var r = [], ri = -1;
    for(var i = 0, ci; ci = c[i]; i++){
//      Include in result set only if it's a link to an external resource
        if(ci.hostname != location.hostname){
            r[++ri] = ci;
        }
    }
    return r;
};
       * Then external links could be gathered with the following statement:
      var externalLinks = Ext.select("a:external");
      */ pseudos : { "first-child" : function(c){ var r = [], ri = -1, n; for(var i = 0, ci; ci = n = c[i]; i++){ while((n = n.previousSibling) && n.nodeType != 1); if(!n){ r[++ri] = ci; } } return r; }, "last-child" : function(c){ var r = [], ri = -1, n; for(var i = 0, ci; ci = n = c[i]; i++){ while((n = n.nextSibling) && n.nodeType != 1); if(!n){ r[++ri] = ci; } } return r; }, "nth-child" : function(c, a) { var r = [], ri = -1, m = nthRe.exec(a == "even" && "2n" || a == "odd" && "2n+1" || !nthRe2.test(a) && "n+" + a || a), f = (m[1] || 1) - 0, l = m[2] - 0; for(var i = 0, n; n = c[i]; i++){ var pn = n.parentNode; if (batch != pn._batch) { var j = 0; for(var cn = pn.firstChild; cn; cn = cn.nextSibling){ if(cn.nodeType == 1){ cn.nodeIndex = ++j; } } pn._batch = batch; } if (f == 1) { if (l == 0 || n.nodeIndex == l){ r[++ri] = n; } } else if ((n.nodeIndex + l) % f == 0){ r[++ri] = n; } } return r; }, "only-child" : function(c){ var r = [], ri = -1;; for(var i = 0, ci; ci = c[i]; i++){ if(!prev(ci) && !next(ci)){ r[++ri] = ci; } } return r; }, "empty" : function(c){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ var cns = ci.childNodes, j = 0, cn, empty = true; while(cn = cns[j]){ ++j; if(cn.nodeType == 1 || cn.nodeType == 3){ empty = false; break; } } if(empty){ r[++ri] = ci; } } return r; }, "contains" : function(c, v){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if((ci.textContent||ci.innerText||'').indexOf(v) != -1){ r[++ri] = ci; } } return r; }, "nodeValue" : function(c, v){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if(ci.firstChild && ci.firstChild.nodeValue == v){ r[++ri] = ci; } } return r; }, "checked" : function(c){ var r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if(ci.checked == true){ r[++ri] = ci; } } return r; }, "not" : function(c, ss){ return Ext.DomQuery.filter(c, ss, true); }, "any" : function(c, selectors){ var ss = selectors.split('|'), r = [], ri = -1, s; for(var i = 0, ci; ci = c[i]; i++){ for(var j = 0; s = ss[j]; j++){ if(Ext.DomQuery.is(ci, s)){ r[++ri] = ci; break; } } } return r; }, "odd" : function(c){ return this["nth-child"](c, "odd"); }, "even" : function(c){ return this["nth-child"](c, "even"); }, "nth" : function(c, a){ return c[a-1] || []; }, "first" : function(c){ return c[0] || []; }, "last" : function(c){ return c[c.length-1] || []; }, "has" : function(c, ss){ var s = Ext.DomQuery.select, r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ if(s(ss, ci).length > 0){ r[++ri] = ci; } } return r; }, "next" : function(c, ss){ var is = Ext.DomQuery.is, r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ var n = next(ci); if(n && is(n, ss)){ r[++ri] = ci; } } return r; }, "prev" : function(c, ss){ var is = Ext.DomQuery.is, r = [], ri = -1; for(var i = 0, ci; ci = c[i]; i++){ var n = prev(ci); if(n && is(n, ss)){ r[++ri] = ci; } } return r; } } }; }(); /** * Selects an array of DOM nodes by CSS/XPath selector. Shorthand of {@link Ext.DomQuery#select} * @param {String} path The selector/xpath query * @param {Node} root (optional) The start of the query (defaults to document). * @return {Array} * @member Ext * @method query */ Ext.query = Ext.DomQuery.select; /** * @class Ext.util.DelayedTask *

      The DelayedTask class provides a convenient way to "buffer" the execution of a method, * performing setTimeout where a new timeout cancels the old timeout. When called, the * task will wait the specified time period before executing. If durng that time period, * the task is called again, the original call will be cancelled. This continues so that * the function is only called a single time for each iteration.

      *

      This method is especially useful for things like detecting whether a user has finished * typing in a text field. An example would be performing validation on a keypress. You can * use this class to buffer the keypress events for a certain number of milliseconds, and * perform only if they stop for that amount of time. Usage:

      
var task = new Ext.util.DelayedTask(function(){
    alert(Ext.getDom('myInputField').value.length);
});
// Wait 500ms before calling our function. If the user presses another key 
// during that 500ms, it will be cancelled and we'll wait another 500ms.
Ext.get('myInputField').on('keypress', function(){
    task.{@link #delay}(500); 
});
 *
      *

      Note that we are using a DelayedTask here to illustrate a point. The configuration * option buffer for {@link Ext.util.Observable#addListener addListener/on} will * also setup a delayed task for you to buffer events.

      * @constructor The parameters to this constructor serve as defaults and are not required. * @param {Function} fn (optional) The default function to call. * @param {Object} scope (optional) The default scope (The this reference) in which the * function is called. If not specified, this will refer to the browser window. * @param {Array} args (optional) The default Array of arguments. */ Ext.util.DelayedTask = function(fn, scope, args){ var me = this, id, call = function(){ clearInterval(id); id = null; fn.apply(scope, args || []); }; /** * Cancels any pending timeout and queues a new one * @param {Number} delay The milliseconds to delay * @param {Function} newFn (optional) Overrides function passed to constructor * @param {Object} newScope (optional) Overrides scope passed to constructor. Remember that if no scope * is specified, this will refer to the browser window. * @param {Array} newArgs (optional) Overrides args passed to constructor */ me.delay = function(delay, newFn, newScope, newArgs){ me.cancel(); fn = newFn || fn; scope = newScope || scope; args = newArgs || args; id = setInterval(call, delay); }; /** * Cancel the last queued timeout */ me.cancel = function(){ if(id){ clearInterval(id); id = null; } }; };/** * @class Ext.Element *

      Encapsulates a DOM element, adding simple DOM manipulation facilities, normalizing for browser differences.

      *

      All instances of this class inherit the methods of {@link Ext.Fx} making visual effects easily available to all DOM elements.

      *

      Note that the events documented in this class are not Ext events, they encapsulate browser events. To * access the underlying browser event, see {@link Ext.EventObject#browserEvent}. Some older * browsers may not support the full range of events. Which events are supported is beyond the control of ExtJs.

      * Usage:
      
// by id
var el = Ext.get("my-div");

// by DOM element reference
var el = Ext.get(myDivElement);
      * Animations
      *

      When an element is manipulated, by default there is no animation.

      * 
      
var el = Ext.get("my-div");

// no animation
el.setWidth(100);
 *
      *

      Many of the functions for manipulating an element have an optional "animate" parameter. This * parameter can be specified as boolean (true) for default animation effects.

      * 
      
// default animation
el.setWidth(100, true);
 *
      * *

      To configure the effects, an object literal with animation options to use as the Element animation * configuration object can also be specified. Note that the supported Element animation configuration * options are a subset of the {@link Ext.Fx} animation options specific to Fx effects. The supported * Element animation configuration options are:

      Option    Default   Description
--------- --------  ---------------------------------------------
{@link Ext.Fx#duration duration}  .35       The duration of the animation in seconds
{@link Ext.Fx#easing easing}    easeOut   The easing method
{@link Ext.Fx#callback callback}  none      A function to execute when the anim completes
{@link Ext.Fx#scope scope}     this      The scope (this) of the callback function
      * * 
      
// Element animation options object
var opt = {
    {@link Ext.Fx#duration duration}: 1,
    {@link Ext.Fx#easing easing}: 'elasticIn',
    {@link Ext.Fx#callback callback}: this.foo,
    {@link Ext.Fx#scope scope}: this
};
// animation with some options set
el.setWidth(100, opt);
 *
      *

      The Element animation object being used for the animation will be set on the options * object as "anim", which allows you to stop or manipulate the animation. Here is an example:

      * 
      
// using the "anim" property to get the Anim object
if(opt.anim.isAnimated()){
    opt.anim.stop();
}
 *
      *

      Also see the {@link #animate} method for another animation technique.

      *

      Composite (Collections of) Elements

      *

      For working with collections of Elements, see {@link Ext.CompositeElement}

      * @constructor Create a new Element directly. * @param {String/HTMLElement} element * @param {Boolean} forceNew (optional) By default the constructor checks to see if there is already an instance of this element in the cache and if there is it returns the same instance. This will skip that check (useful for extending this class). */ (function(){ var DOC = document; Ext.Element = function(element, forceNew){ var dom = typeof element == "string" ? DOC.getElementById(element) : element, id; if(!dom) return null; id = dom.id; if(!forceNew && id && Ext.elCache[id]){ // element object already exists return Ext.elCache[id].el; } /** * The DOM element * @type HTMLElement */ this.dom = dom; /** * The DOM element ID * @type String */ this.id = id || Ext.id(dom); }; var DH = Ext.DomHelper, El = Ext.Element, EC = Ext.elCache; El.prototype = { /** * Sets the passed attributes as attributes of this element (a style attribute can be a string, object or function) * @param {Object} o The object with the attributes * @param {Boolean} useSet (optional) false to override the default setAttribute to use expandos. * @return {Ext.Element} this */ set : function(o, useSet){ var el = this.dom, attr, val, useSet = (useSet !== false) && !!el.setAttribute; for (attr in o) { if (o.hasOwnProperty(attr)) { val = o[attr]; if (attr == 'style') { DH.applyStyles(el, val); } else if (attr == 'cls') { el.className = val; } else if (useSet) { el.setAttribute(attr, val); } else { el[attr] = val; } } } return this; }, // Mouse events /** * @event click * Fires when a mouse click is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event contextmenu * Fires when a right click is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event dblclick * Fires when a mouse double click is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mousedown * Fires when a mousedown is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseup * Fires when a mouseup is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseover * Fires when a mouseover is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mousemove * Fires when a mousemove is detected with the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseout * Fires when a mouseout is detected with the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseenter * Fires when the mouse enters the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event mouseleave * Fires when the mouse leaves the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // Keyboard events /** * @event keypress * Fires when a keypress is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event keydown * Fires when a keydown is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event keyup * Fires when a keyup is detected within the element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // HTML frame/object events /** * @event load * Fires when the user agent finishes loading all content within the element. Only supported by window, frames, objects and images. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event unload * Fires when the user agent removes all content from a window or frame. For elements, it fires when the target element or any of its content has been removed. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event abort * Fires when an object/image is stopped from loading before completely loaded. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event error * Fires when an object/image/frame cannot be loaded properly. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event resize * Fires when a document view is resized. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event scroll * Fires when a document view is scrolled. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // Form events /** * @event select * Fires when a user selects some text in a text field, including input and textarea. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event change * Fires when a control loses the input focus and its value has been modified since gaining focus. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event submit * Fires when a form is submitted. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event reset * Fires when a form is reset. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event focus * Fires when an element receives focus either via the pointing device or by tab navigation. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event blur * Fires when an element loses focus either via the pointing device or by tabbing navigation. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // User Interface events /** * @event DOMFocusIn * Where supported. Similar to HTML focus event, but can be applied to any focusable element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMFocusOut * Where supported. Similar to HTML blur event, but can be applied to any focusable element. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMActivate * Where supported. Fires when an element is activated, for instance, through a mouse click or a keypress. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ // DOM Mutation events /** * @event DOMSubtreeModified * Where supported. Fires when the subtree is modified. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeInserted * Where supported. Fires when a node has been added as a child of another node. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeRemoved * Where supported. Fires when a descendant node of the element is removed. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeRemovedFromDocument * Where supported. Fires when a node is being removed from a document. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMNodeInsertedIntoDocument * Where supported. Fires when a node is being inserted into a document. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMAttrModified * Where supported. Fires when an attribute has been modified. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * @event DOMCharacterDataModified * Where supported. Fires when the character data has been modified. * @param {Ext.EventObject} e The {@link Ext.EventObject} encapsulating the DOM event. * @param {HtmlElement} t The target of the event. * @param {Object} o The options configuration passed to the {@link #addListener} call. */ /** * The default unit to append to CSS values where a unit isn't provided (defaults to px). * @type String */ defaultUnit : "px", /** * Returns true if this element matches the passed simple selector (e.g. div.some-class or span:first-child) * @param {String} selector The simple selector to test * @return {Boolean} True if this element matches the selector, else false */ is : function(simpleSelector){ return Ext.DomQuery.is(this.dom, simpleSelector); }, /** * Tries to focus the element. Any exceptions are caught and ignored. * @param {Number} defer (optional) Milliseconds to defer the focus * @return {Ext.Element} this */ focus : function(defer, /* private */ dom) { var me = this, dom = dom || me.dom; try{ if(Number(defer)){ me.focus.defer(defer, null, [null, dom]); }else{ dom.focus(); } }catch(e){} return me; }, /** * Tries to blur the element. Any exceptions are caught and ignored. * @return {Ext.Element} this */ blur : function() { try{ this.dom.blur(); }catch(e){} return this; }, /** * Returns the value of the "value" attribute * @param {Boolean} asNumber true to parse the value as a number * @return {String/Number} */ getValue : function(asNumber){ var val = this.dom.value; return asNumber ? parseInt(val, 10) : val; }, /** * Appends an event handler to this element. The shorthand version {@link #on} is equivalent. * @param {String} eventName The name of event to handle. * @param {Function} fn The handler function the event invokes. This function is passed * the following parameters:
        *
      • evt : EventObject
        The {@link Ext.EventObject EventObject} describing the event.
        • *
      • el : HtmlElement
        The DOM element which was the target of the event. * Note that this may be filtered by using the delegate option.
        • *
      • o : Object
        The options object from the addListener call.
        • *
      * @param {Object} scope (optional) The scope (this reference) in which the handler function is executed. * If omitted, defaults to this Element.. * @param {Object} options (optional) An object containing handler configuration properties. * This may contain any of the following properties:
        *
      • scope Object :
        The scope (this reference) in which the handler function is executed. * If omitted, defaults to this Element.
        • *
      • delegate String:
        A simple selector to filter the target or look for a descendant of the target. See below for additional details.
        • *
      • stopEvent Boolean:
        True to stop the event. That is stop propagation, and prevent the default action.
        • *
      • preventDefault Boolean:
        True to prevent the default action
        • *
      • stopPropagation Boolean:
        True to prevent event propagation
        • *
      • normalized Boolean:
        False to pass a browser event to the handler function instead of an Ext.EventObject
        • *
      • target Ext.Element:
        Only call the handler if the event was fired on the target Element, not if the event was bubbled up from a child node.
        • *
      • delay Number:
        The number of milliseconds to delay the invocation of the handler after the event fires.
        • *
      • single Boolean:
        True to add a handler to handle just the next firing of the event, and then remove itself.
        • *
      • buffer Number:
        Causes the handler to be scheduled to run in an {@link Ext.util.DelayedTask} delayed * by the specified number of milliseconds. If the event fires again within that time, the original * handler is not invoked, but the new handler is scheduled in its place.
        • *

      *

      * Combining Options
      * In the following examples, the shorthand form {@link #on} is used rather than the more verbose * addListener. The two are equivalent. Using the options argument, it is possible to combine different * types of listeners:
      *
      * A delayed, one-time listener that auto stops the event and adds a custom argument (forumId) to the * options object. The options object is available as the third parameter in the handler function.

      * Code:
      
el.on('click', this.onClick, this, {
    single: true,
    delay: 100,
    stopEvent : true,
    forumId: 4
});

      *

      * Attaching multiple handlers in 1 call
      * The method also allows for a single argument to be passed which is a config object containing properties * which specify multiple handlers.

      *

      * Code:

      
el.on({
    'click' : {
        fn: this.onClick,
        scope: this,
        delay: 100
    },
    'mouseover' : {
        fn: this.onMouseOver,
        scope: this
    },
    'mouseout' : {
        fn: this.onMouseOut,
        scope: this
    }
});
      *

      * Or a shorthand syntax:
      * Code:

      
el.on({
    'click' : this.onClick,
    'mouseover' : this.onMouseOver,
    'mouseout' : this.onMouseOut,
    scope: this
});
     *

      *

      delegate

      *

      This is a configuration option that you can pass along when registering a handler for * an event to assist with event delegation. Event delegation is a technique that is used to * reduce memory consumption and prevent exposure to memory-leaks. By registering an event * for a container element as opposed to each element within a container. By setting this * configuration option to a simple selector, the target element will be filtered to look for * a descendant of the target. * For example:

      
// using this markup:
<div id='elId'>
    <p id='p1'>paragraph one</p>
    <p id='p2' class='clickable'>paragraph two</p>
    <p id='p3'>paragraph three</p>
</div>
// utilize event delegation to registering just one handler on the container element:
el = Ext.get('elId');
el.on(
    'click',
    function(e,t) {
        // handle click
        console.info(t.id); // 'p2'
    },
    this,
    {
        // filter the target element to be a descendant with the class 'clickable'
        delegate: '.clickable'
    }
);
     *

      * @return {Ext.Element} this */ addListener : function(eventName, fn, scope, options){ Ext.EventManager.on(this.dom, eventName, fn, scope || this, options); return this; }, /** * Removes an event handler from this element. The shorthand version {@link #un} is equivalent. * Note: if a scope was explicitly specified when {@link #addListener adding} the * listener, the same scope must be specified here. * Example: * 
      
el.removeListener('click', this.handlerFn);
// or
el.un('click', this.handlerFn);
      * @param {String} eventName The name of the event from which to remove the handler. * @param {Function} fn The handler function to remove. This must be a reference to the function passed into the {@link #addListener} call. * @param {Object} scope If a scope (this reference) was specified when the listener was added, * then this must refer to the same object. * @return {Ext.Element} this */ removeListener : function(eventName, fn, scope){ Ext.EventManager.removeListener(this.dom, eventName, fn, scope || this); return this; }, /** * Removes all previous added listeners from this element * @return {Ext.Element} this */ removeAllListeners : function(){ Ext.EventManager.removeAll(this.dom); return this; }, /** * Recursively removes all previous added listeners from this element and its children * @return {Ext.Element} this */ purgeAllListeners : function() { Ext.EventManager.purgeElement(this, true); return this; }, /** * @private Test if size has a unit, otherwise appends the default */ addUnits : function(size){ if(size === "" || size == "auto" || size === undefined){ size = size || ''; } else if(!isNaN(size) || !unitPattern.test(size)){ size = size + (this.defaultUnit || 'px'); } return size; }, /** *

      Updates the Same Origin Policy

      *

      Updating innerHTML of an element will not execute embedded <script> elements. This is a browser restriction.

      * @param {Mixed} options. Either a sring containing the URL from which to load the HTML, or an {@link Ext.Ajax#request} options object specifying * exactly how to request the HTML. * @return {Ext.Element} this */ load : function(url, params, cb){ Ext.Ajax.request(Ext.apply({ params: params, url: url.url || url, callback: cb, el: this.dom, indicatorText: url.indicatorText || '' }, Ext.isObject(url) ? url : {})); return this; }, isBorderBox : function(){ return Ext.isBorderBox || Ext.isForcedBorderBox || noBoxAdjust[(this.dom.tagName || "").toLowerCase()]; }, remove : function(){ var me = this, dom = me.dom; if (dom) { delete me.dom; Ext.removeNode(dom); } }, hover : function(overFn, outFn, scope, options){ var me = this; me.on('mouseenter', overFn, scope || me.dom, options); me.on('mouseleave', outFn, scope || me.dom, options); return me; }, contains : function(el){ return !el ? false : Ext.lib.Dom.isAncestor(this.dom, el.dom ? el.dom : el); }, getAttributeNS : function(ns, name){ return this.getAttribute(name, ns); }, getAttribute: (function(){ var test = document.createElement('table'), isBrokenOnTable = false, hasGetAttribute = 'getAttribute' in test, unknownRe = /undefined|unknown/; if (hasGetAttribute) { try { test.getAttribute('ext:qtip'); } catch (e) { isBrokenOnTable = true; } return function(name, ns) { var el = this.dom, value; if (el.getAttributeNS) { value = el.getAttributeNS(ns, name) || null; } if (value == null) { if (ns) { if (isBrokenOnTable && el.tagName.toUpperCase() == 'TABLE') { try { value = el.getAttribute(ns + ':' + name); } catch (e) { value = ''; } } else { value = el.getAttribute(ns + ':' + name); } } else { value = el.getAttribute(name) || el[name]; } } return value || ''; }; } else { return function(name, ns) { var el = this.om, value, attribute; if (ns) { attribute = el[ns + ':' + name]; value = unknownRe.test(typeof attribute) ? undefined : attribute; } else { value = el[name]; } return value || ''; }; } test = null; })(), update : function(html) { if (this.dom) { this.dom.innerHTML = html; } return this; } }; var ep = El.prototype; El.addMethods = function(o){ Ext.apply(ep, o); }; ep.on = ep.addListener; ep.un = ep.removeListener; ep.autoBoxAdjust = true; var unitPattern = /\d+(px|em|%|en|ex|pt|in|cm|mm|pc)$/i, docEl; El.get = function(el){ var ex, elm, id; if(!el){ return null; } if (typeof el == "string") { if (!(elm = DOC.getElementById(el))) { return null; } if (EC[el] && EC[el].el) { ex = EC[el].el; ex.dom = elm; } else { ex = El.addToCache(new El(elm)); } return ex; } else if (el.tagName) { if(!(id = el.id)){ id = Ext.id(el); } if (EC[id] && EC[id].el) { ex = EC[id].el; ex.dom = el; } else { ex = El.addToCache(new El(el)); } return ex; } else if (el instanceof El) { if(el != docEl){ if (Ext.isIE && (el.id == undefined || el.id == '')) { el.dom = el.dom; } else { el.dom = DOC.getElementById(el.id) || el.dom; } } return el; } else if(el.isComposite) { return el; } else if(Ext.isArray(el)) { return El.select(el); } else if(el == DOC) { if(!docEl){ var f = function(){}; f.prototype = El.prototype; docEl = new f(); docEl.dom = DOC; } return docEl; } return null; }; El.addToCache = function(el, id){ id = id || el.id; EC[id] = { el: el, data: {}, events: {} }; return el; }; El.data = function(el, key, value){ el = El.get(el); if (!el) { return null; } var c = EC[el.id].data; if(arguments.length == 2){ return c[key]; }else{ return (c[key] = value); } }; function garbageCollect(){ if(!Ext.enableGarbageCollector){ clearInterval(El.collectorThreadId); } else { var eid, el, d, o; for(eid in EC){ o = EC[eid]; if(o.skipGC){ Ext.EventManager.removeFromSpecialCache(o.el); continue; } el = o.el; d = el.dom; if(!d || !d.parentNode || (!d.offsetParent && !DOC.getElementById(eid))){ if(Ext.enableListenerCollection){ Ext.EventManager.removeAll(d); } delete EC[eid]; } } if (Ext.isIE) { var t = {}; for (eid in EC) { t[eid] = EC[eid]; } EC = Ext.elCache = t; } } } El.collectorThreadId = setInterval(garbageCollect, 30000); var flyFn = function(){}; flyFn.prototype = El.prototype; El.Flyweight = function(dom){ this.dom = dom; }; El.Flyweight.prototype = new flyFn(); El.Flyweight.prototype.isFlyweight = true; El._flyweights = {}; El.fly = function(el, named){ var ret = null; named = named || '_global'; if (el = Ext.getDom(el)) { (El._flyweights[named] = El._flyweights[named] || new El.Flyweight()).dom = el; ret = El._flyweights[named]; } return ret; }; Ext.get = El.get; Ext.fly = El.fly; var noBoxAdjust = Ext.isStrict ? { select:1 } : { input:1, select:1, textarea:1 }; if(Ext.isIE || Ext.isGecko){ noBoxAdjust['button'] = 1; } })(); Ext.Element.addMethods(function(){ var PARENTNODE = 'parentNode', NEXTSIBLING = 'nextSibling', PREVIOUSSIBLING = 'previousSibling', DQ = Ext.DomQuery, GET = Ext.get; return { findParent : function(simpleSelector, maxDepth, returnEl){ var p = this.dom, b = document.body, depth = 0, stopEl; if(Ext.isGecko && Object.prototype.toString.call(p) == '[object XULElement]') { return null; } maxDepth = maxDepth || 50; if (isNaN(maxDepth)) { stopEl = Ext.getDom(maxDepth); maxDepth = Number.MAX_VALUE; } while(p && p.nodeType == 1 && depth < maxDepth && p != b && p != stopEl){ if(DQ.is(p, simpleSelector)){ return returnEl ? GET(p) : p; } depth++; p = p.parentNode; } return null; }, findParentNode : function(simpleSelector, maxDepth, returnEl){ var p = Ext.fly(this.dom.parentNode, '_internal'); return p ? p.findParent(simpleSelector, maxDepth, returnEl) : null; }, up : function(simpleSelector, maxDepth){ return this.findParentNode(simpleSelector, maxDepth, true); }, select : function(selector){ return Ext.Element.select(selector, this.dom); }, query : function(selector){ return DQ.select(selector, this.dom); }, child : function(selector, returnDom){ var n = DQ.selectNode(selector, this.dom); return returnDom ? n : GET(n); }, down : function(selector, returnDom){ var n = DQ.selectNode(" > " + selector, this.dom); return returnDom ? n : GET(n); }, parent : function(selector, returnDom){ return this.matchNode(PARENTNODE, PARENTNODE, selector, returnDom); }, next : function(selector, returnDom){ return this.matchNode(NEXTSIBLING, NEXTSIBLING, selector, returnDom); }, prev : function(selector, returnDom){ return this.matchNode(PREVIOUSSIBLING, PREVIOUSSIBLING, selector, returnDom); }, first : function(selector, returnDom){ return this.matchNode(NEXTSIBLING, 'firstChild', selector, returnDom); }, last : function(selector, returnDom){ return this.matchNode(PREVIOUSSIBLING, 'lastChild', selector, returnDom); }, matchNode : function(dir, start, selector, returnDom){ var n = this.dom[start]; while(n){ if(n.nodeType == 1 && (!selector || DQ.is(n, selector))){ return !returnDom ? GET(n) : n; } n = n[dir]; } return null; } }; }()); Ext.Element.addMethods( function() { var GETDOM = Ext.getDom, GET = Ext.get, DH = Ext.DomHelper; return { appendChild: function(el){ return GET(el).appendTo(this); }, appendTo: function(el){ GETDOM(el).appendChild(this.dom); return this; }, insertBefore: function(el){ (el = GETDOM(el)).parentNode.insertBefore(this.dom, el); return this; }, insertAfter: function(el){ (el = GETDOM(el)).parentNode.insertBefore(this.dom, el.nextSibling); return this; }, insertFirst: function(el, returnDom){ el = el || {}; if(el.nodeType || el.dom || typeof el == 'string'){ el = GETDOM(el); this.dom.insertBefore(el, this.dom.firstChild); return !returnDom ? GET(el) : el; }else{ return this.createChild(el, this.dom.firstChild, returnDom); } }, replace: function(el){ el = GET(el); this.insertBefore(el); el.remove(); return this; }, replaceWith: function(el){ var me = this; if(el.nodeType || el.dom || typeof el == 'string'){ el = GETDOM(el); me.dom.parentNode.insertBefore(el, me.dom); }else{ el = DH.insertBefore(me.dom, el); } delete Ext.elCache[me.id]; Ext.removeNode(me.dom); me.id = Ext.id(me.dom = el); Ext.Element.addToCache(me.isFlyweight ? new Ext.Element(me.dom) : me); return me; }, createChild: function(config, insertBefore, returnDom){ config = config || {tag:'div'}; return insertBefore ? DH.insertBefore(insertBefore, config, returnDom !== true) : DH[!this.dom.firstChild ? 'overwrite' : 'append'](this.dom, config, returnDom !== true); }, wrap: function(config, returnDom){ var newEl = DH.insertBefore(this.dom, config || {tag: "div"}, !returnDom); newEl.dom ? newEl.dom.appendChild(this.dom) : newEl.appendChild(this.dom); return newEl; }, insertHtml : function(where, html, returnEl){ var el = DH.insertHtml(where, this.dom, html); return returnEl ? Ext.get(el) : el; } }; }()); Ext.Element.addMethods(function(){ var supports = Ext.supports, propCache = {}, camelRe = /(-[a-z])/gi, view = document.defaultView, opacityRe = /alpha\(opacity=(.*)\)/i, trimRe = /^\s+|\s+$/g, EL = Ext.Element, spacesRe = /\s+/, wordsRe = /\w/g, PADDING = "padding", MARGIN = "margin", BORDER = "border", LEFT = "-left", RIGHT = "-right", TOP = "-top", BOTTOM = "-bottom", WIDTH = "-width", MATH = Math, HIDDEN = 'hidden', ISCLIPPED = 'isClipped', OVERFLOW = 'overflow', OVERFLOWX = 'overflow-x', OVERFLOWY = 'overflow-y', ORIGINALCLIP = 'originalClip', borders = {l: BORDER + LEFT + WIDTH, r: BORDER + RIGHT + WIDTH, t: BORDER + TOP + WIDTH, b: BORDER + BOTTOM + WIDTH}, paddings = {l: PADDING + LEFT, r: PADDING + RIGHT, t: PADDING + TOP, b: PADDING + BOTTOM}, margins = {l: MARGIN + LEFT, r: MARGIN + RIGHT, t: MARGIN + TOP, b: MARGIN + BOTTOM}, data = Ext.Element.data; function camelFn(m, a) { return a.charAt(1).toUpperCase(); } function chkCache(prop) { return propCache[prop] || (propCache[prop] = prop == 'float' ? (supports.cssFloat ? 'cssFloat' : 'styleFloat') : prop.replace(camelRe, camelFn)); } return { adjustWidth : function(width) { var me = this; var isNum = (typeof width == "number"); if(isNum && me.autoBoxAdjust && !me.isBorderBox()){ width -= (me.getBorderWidth("lr") + me.getPadding("lr")); } return (isNum && width < 0) ? 0 : width; }, adjustHeight : function(height) { var me = this; var isNum = (typeof height == "number"); if(isNum && me.autoBoxAdjust && !me.isBorderBox()){ height -= (me.getBorderWidth("tb") + me.getPadding("tb")); } return (isNum && height < 0) ? 0 : height; }, addClass : function(className){ var me = this, i, len, v, cls = []; if (!Ext.isArray(className)) { if (typeof className == 'string' && !this.hasClass(className)) { me.dom.className += " " + className; } } else { for (i = 0, len = className.length; i < len; i++) { v = className[i]; if (typeof v == 'string' && (' ' + me.dom.className + ' ').indexOf(' ' + v + ' ') == -1) { cls.push(v); } } if (cls.length) { me.dom.className += " " + cls.join(" "); } } return me; }, removeClass : function(className){ var me = this, i, idx, len, cls, elClasses; if (!Ext.isArray(className)){ className = [className]; } if (me.dom && me.dom.className) { elClasses = me.dom.className.replace(trimRe, '').split(spacesRe); for (i = 0, len = className.length; i < len; i++) { cls = className[i]; if (typeof cls == 'string') { cls = cls.replace(trimRe, ''); idx = elClasses.indexOf(cls); if (idx != -1) { elClasses.splice(idx, 1); } } } me.dom.className = elClasses.join(" "); } return me; }, radioClass : function(className){ var cn = this.dom.parentNode.childNodes, v, i, len; className = Ext.isArray(className) ? className : [className]; for (i = 0, len = cn.length; i < len; i++) { v = cn[i]; if (v && v.nodeType == 1) { Ext.fly(v, '_internal').removeClass(className); } }; return this.addClass(className); }, toggleClass : function(className){ return this.hasClass(className) ? this.removeClass(className) : this.addClass(className); }, hasClass : function(className){ return className && (' '+this.dom.className+' ').indexOf(' '+className+' ') != -1; }, replaceClass : function(oldClassName, newClassName){ return this.removeClass(oldClassName).addClass(newClassName); }, isStyle : function(style, val) { return this.getStyle(style) == val; }, getStyle : function(){ return view && view.getComputedStyle ? function(prop){ var el = this.dom, v, cs, out, display; if(el == document){ return null; } prop = chkCache(prop); out = (v = el.style[prop]) ? v : (cs = view.getComputedStyle(el, "")) ? cs[prop] : null; if(prop == 'marginRight' && out != '0px' && !supports.correctRightMargin){ display = el.style.display; el.style.display = 'inline-block'; out = view.getComputedStyle(el, '').marginRight; el.style.display = display; } if(prop == 'backgroundColor' && out == 'rgba(0, 0, 0, 0)' && !supports.correctTransparentColor){ out = 'transparent'; } return out; } : function(prop){ var el = this.dom, m, cs; if(el == document) return null; if (prop == 'opacity') { if (el.style.filter.match) { if(m = el.style.filter.match(opacityRe)){ var fv = parseFloat(m[1]); if(!isNaN(fv)){ return fv ? fv / 100 : 0; } } } return 1; } prop = chkCache(prop); return el.style[prop] || ((cs = el.currentStyle) ? cs[prop] : null); }; }(), getColor : function(attr, defaultValue, prefix){ var v = this.getStyle(attr), color = (typeof prefix != 'undefined') ? prefix : '#', h; if(!v || (/transparent|inherit/.test(v))) { return defaultValue; } if(/^r/.test(v)){ Ext.each(v.slice(4, v.length -1).split(','), function(s){ h = parseInt(s, 10); color += (h < 16 ? '0' : '') + h.toString(16); }); }else{ v = v.replace('#', ''); color += v.length == 3 ? v.replace(/^(\w)(\w)(\w)$/, '$1$1$2$2$3$3') : v; } return(color.length > 5 ? color.toLowerCase() : defaultValue); }, setStyle : function(prop, value){ var tmp, style; if (typeof prop != 'object') { tmp = {}; tmp[prop] = value; prop = tmp; } for (style in prop) { value = prop[style]; style == 'opacity' ? this.setOpacity(value) : this.dom.style[chkCache(style)] = value; } return this; }, setOpacity : function(opacity, animate){ var me = this, s = me.dom.style; if(!animate || !me.anim){ if(Ext.isIE9m){ var opac = opacity < 1 ? 'alpha(opacity=' + opacity * 100 + ')' : '', val = s.filter.replace(opacityRe, '').replace(trimRe, ''); s.zoom = 1; s.filter = val + (val.length > 0 ? ' ' : '') + opac; }else{ s.opacity = opacity; } }else{ me.anim({opacity: {to: opacity}}, me.preanim(arguments, 1), null, .35, 'easeIn'); } return me; }, clearOpacity : function(){ var style = this.dom.style; if(Ext.isIE9m){ if(!Ext.isEmpty(style.filter)){ style.filter = style.filter.replace(opacityRe, '').replace(trimRe, ''); } }else{ style.opacity = style['-moz-opacity'] = style['-khtml-opacity'] = ''; } return this; }, getHeight : function(contentHeight){ var me = this, dom = me.dom, hidden = Ext.isIE9m && me.isStyle('display', 'none'), h = MATH.max(dom.offsetHeight, hidden ? 0 : dom.clientHeight) || 0; h = !contentHeight ? h : h - me.getBorderWidth("tb") - me.getPadding("tb"); return h < 0 ? 0 : h; }, getWidth : function(contentWidth){ var me = this, dom = me.dom, hidden = Ext.isIE9m && me.isStyle('display', 'none'), w = MATH.max(dom.offsetWidth, hidden ? 0 : dom.clientWidth) || 0; w = !contentWidth ? w : w - me.getBorderWidth("lr") - me.getPadding("lr"); return w < 0 ? 0 : w; }, setWidth : function(width, animate){ var me = this; width = me.adjustWidth(width); !animate || !me.anim ? me.dom.style.width = me.addUnits(width) : me.anim({width : {to : width}}, me.preanim(arguments, 1)); return me; }, setHeight : function(height, animate){ var me = this; height = me.adjustHeight(height); !animate || !me.anim ? me.dom.style.height = me.addUnits(height) : me.anim({height : {to : height}}, me.preanim(arguments, 1)); return me; }, getBorderWidth : function(side){ return this.addStyles(side, borders); }, getPadding : function(side){ return this.addStyles(side, paddings); }, clip : function(){ var me = this, dom = me.dom; if(!data(dom, ISCLIPPED)){ data(dom, ISCLIPPED, true); data(dom, ORIGINALCLIP, { o: me.getStyle(OVERFLOW), x: me.getStyle(OVERFLOWX), y: me.getStyle(OVERFLOWY) }); me.setStyle(OVERFLOW, HIDDEN); me.setStyle(OVERFLOWX, HIDDEN); me.setStyle(OVERFLOWY, HIDDEN); } return me; }, unclip : function(){ var me = this, dom = me.dom; if(data(dom, ISCLIPPED)){ data(dom, ISCLIPPED, false); var o = data(dom, ORIGINALCLIP); if(o.o){ me.setStyle(OVERFLOW, o.o); } if(o.x){ me.setStyle(OVERFLOWX, o.x); } if(o.y){ me.setStyle(OVERFLOWY, o.y); } } return me; }, addStyles : function(sides, styles){ var ttlSize = 0, sidesArr = sides.match(wordsRe), side, size, i, len = sidesArr.length; for (i = 0; i < len; i++) { side = sidesArr[i]; size = side && parseInt(this.getStyle(styles[side]), 10); if (size) { ttlSize += MATH.abs(size); } } return ttlSize; }, margins : margins }; }() ); (function(){ var D = Ext.lib.Dom, LEFT = "left", RIGHT = "right", TOP = "top", BOTTOM = "bottom", POSITION = "position", STATIC = "static", RELATIVE = "relative", AUTO = "auto", ZINDEX = "z-index"; Ext.Element.addMethods({ getX : function(){ return D.getX(this.dom); }, getY : function(){ return D.getY(this.dom); }, getXY : function(){ return D.getXY(this.dom); }, getOffsetsTo : function(el){ var o = this.getXY(), e = Ext.fly(el, '_internal').getXY(); return [o[0]-e[0],o[1]-e[1]]; }, setX : function(x, animate){ return this.setXY([x, this.getY()], this.animTest(arguments, animate, 1)); }, setY : function(y, animate){ return this.setXY([this.getX(), y], this.animTest(arguments, animate, 1)); }, setLeft : function(left){ this.setStyle(LEFT, this.addUnits(left)); return this; }, setTop : function(top){ this.setStyle(TOP, this.addUnits(top)); return this; }, setRight : function(right){ this.setStyle(RIGHT, this.addUnits(right)); return this; }, setBottom : function(bottom){ this.setStyle(BOTTOM, this.addUnits(bottom)); return this; }, setXY : function(pos, animate){ var me = this; if(!animate || !me.anim){ D.setXY(me.dom, pos); }else{ me.anim({points: {to: pos}}, me.preanim(arguments, 1), 'motion'); } return me; }, setLocation : function(x, y, animate){ return this.setXY([x, y], this.animTest(arguments, animate, 2)); }, moveTo : function(x, y, animate){ return this.setXY([x, y], this.animTest(arguments, animate, 2)); }, getLeft : function(local){ return !local ? this.getX() : parseInt(this.getStyle(LEFT), 10) || 0; }, getRight : function(local){ var me = this; return !local ? me.getX() + me.getWidth() : (me.getLeft(true) + me.getWidth()) || 0; }, getTop : function(local) { return !local ? this.getY() : parseInt(this.getStyle(TOP), 10) || 0; }, getBottom : function(local){ var me = this; return !local ? me.getY() + me.getHeight() : (me.getTop(true) + me.getHeight()) || 0; }, position : function(pos, zIndex, x, y){ var me = this; if(!pos && me.isStyle(POSITION, STATIC)){ me.setStyle(POSITION, RELATIVE); } else if(pos) { me.setStyle(POSITION, pos); } if(zIndex){ me.setStyle(ZINDEX, zIndex); } if(x || y) me.setXY([x || false, y || false]); }, clearPositioning : function(value){ value = value || ''; this.setStyle({ left : value, right : value, top : value, bottom : value, "z-index" : "", position : STATIC }); return this; }, getPositioning : function(){ var l = this.getStyle(LEFT); var t = this.getStyle(TOP); return { "position" : this.getStyle(POSITION), "left" : l, "right" : l ? "" : this.getStyle(RIGHT), "top" : t, "bottom" : t ? "" : this.getStyle(BOTTOM), "z-index" : this.getStyle(ZINDEX) }; }, setPositioning : function(pc){ var me = this, style = me.dom.style; me.setStyle(pc); if(pc.right == AUTO){ style.right = ""; } if(pc.bottom == AUTO){ style.bottom = ""; } return me; }, translatePoints : function(x, y){ y = isNaN(x[1]) ? y : x[1]; x = isNaN(x[0]) ? x : x[0]; var me = this, relative = me.isStyle(POSITION, RELATIVE), o = me.getXY(), l = parseInt(me.getStyle(LEFT), 10), t = parseInt(me.getStyle(TOP), 10); l = !isNaN(l) ? l : (relative ? 0 : me.dom.offsetLeft); t = !isNaN(t) ? t : (relative ? 0 : me.dom.offsetTop); return {left: (x - o[0] + l), top: (y - o[1] + t)}; }, animTest : function(args, animate, i) { return !!animate && this.preanim ? this.preanim(args, i) : false; } }); })(); Ext.Element.addMethods({ isScrollable : function(){ var dom = this.dom; return dom.scrollHeight > dom.clientHeight || dom.scrollWidth > dom.clientWidth; }, scrollTo : function(side, value){ this.dom["scroll" + (/top/i.test(side) ? "Top" : "Left")] = value; return this; }, getScroll : function(){ var d = this.dom, doc = document, body = doc.body, docElement = doc.documentElement, l, t, ret; if(d == doc || d == body){ if(Ext.isIE && Ext.isStrict){ l = docElement.scrollLeft; t = docElement.scrollTop; }else{ l = window.pageXOffset; t = window.pageYOffset; } ret = {left: l || (body ? body.scrollLeft : 0), top: t || (body ? body.scrollTop : 0)}; }else{ ret = {left: d.scrollLeft, top: d.scrollTop}; } return ret; } }); Ext.Element.VISIBILITY = 1; Ext.Element.DISPLAY = 2; Ext.Element.OFFSETS = 3; Ext.Element.ASCLASS = 4; Ext.Element.visibilityCls = 'x-hide-nosize'; Ext.Element.addMethods(function(){ var El = Ext.Element, OPACITY = "opacity", VISIBILITY = "visibility", DISPLAY = "display", HIDDEN = "hidden", OFFSETS = "offsets", ASCLASS = "asclass", NONE = "none", NOSIZE = 'nosize', ORIGINALDISPLAY = 'originalDisplay', VISMODE = 'visibilityMode', ISVISIBLE = 'isVisible', data = El.data, getDisplay = function(dom){ var d = data(dom, ORIGINALDISPLAY); if(d === undefined){ data(dom, ORIGINALDISPLAY, d = ''); } return d; }, getVisMode = function(dom){ var m = data(dom, VISMODE); if(m === undefined){ data(dom, VISMODE, m = 1); } return m; }; return { originalDisplay : "", visibilityMode : 1, setVisibilityMode : function(visMode){ data(this.dom, VISMODE, visMode); return this; }, animate : function(args, duration, onComplete, easing, animType){ this.anim(args, {duration: duration, callback: onComplete, easing: easing}, animType); return this; }, anim : function(args, opt, animType, defaultDur, defaultEase, cb){ animType = animType || 'run'; opt = opt || {}; var me = this, anim = Ext.lib.Anim[animType]( me.dom, args, (opt.duration || defaultDur) || .35, (opt.easing || defaultEase) || 'easeOut', function(){ if(cb) cb.call(me); if(opt.callback) opt.callback.call(opt.scope || me, me, opt); }, me ); opt.anim = anim; return anim; }, preanim : function(a, i){ return !a[i] ? false : (typeof a[i] == 'object' ? a[i]: {duration: a[i+1], callback: a[i+2], easing: a[i+3]}); }, isVisible : function() { var me = this, dom = me.dom, visible = data(dom, ISVISIBLE); if(typeof visible == 'boolean'){ return visible; } visible = !me.isStyle(VISIBILITY, HIDDEN) && !me.isStyle(DISPLAY, NONE) && !((getVisMode(dom) == El.ASCLASS) && me.hasClass(me.visibilityCls || El.visibilityCls)); data(dom, ISVISIBLE, visible); return visible; }, setVisible : function(visible, animate){ var me = this, isDisplay, isVisibility, isOffsets, isNosize, dom = me.dom, visMode = getVisMode(dom); if (typeof animate == 'string'){ switch (animate) { case DISPLAY: visMode = El.DISPLAY; break; case VISIBILITY: visMode = El.VISIBILITY; break; case OFFSETS: visMode = El.OFFSETS; break; case NOSIZE: case ASCLASS: visMode = El.ASCLASS; break; } me.setVisibilityMode(visMode); animate = false; } if (!animate || !me.anim) { if(visMode == El.ASCLASS ){ me[visible?'removeClass':'addClass'](me.visibilityCls || El.visibilityCls); } else if (visMode == El.DISPLAY){ return me.setDisplayed(visible); } else if (visMode == El.OFFSETS){ if (!visible){ me.hideModeStyles = { position: me.getStyle('position'), top: me.getStyle('top'), left: me.getStyle('left') }; me.applyStyles({position: 'absolute', top: '-10000px', left: '-10000px'}); } else { me.applyStyles(me.hideModeStyles || {position: '', top: '', left: ''}); delete me.hideModeStyles; } }else{ me.fixDisplay(); dom.style.visibility = visible ? "visible" : HIDDEN; } }else{ if(visible){ me.setOpacity(.01); me.setVisible(true); } me.anim({opacity: { to: (visible?1:0) }}, me.preanim(arguments, 1), null, .35, 'easeIn', function(){ visible || me.setVisible(false).setOpacity(1); }); } data(dom, ISVISIBLE, visible); return me; }, hasMetrics : function(){ var dom = this.dom; return this.isVisible() || (getVisMode(dom) == El.VISIBILITY); }, toggle : function(animate){ var me = this; me.setVisible(!me.isVisible(), me.preanim(arguments, 0)); return me; }, setDisplayed : function(value) { if(typeof value == "boolean"){ value = value ? getDisplay(this.dom) : NONE; } this.setStyle(DISPLAY, value); return this; }, fixDisplay : function(){ var me = this; if(me.isStyle(DISPLAY, NONE)){ me.setStyle(VISIBILITY, HIDDEN); me.setStyle(DISPLAY, getDisplay(this.dom)); if(me.isStyle(DISPLAY, NONE)){ me.setStyle(DISPLAY, "block"); } } }, hide : function(animate){ if (typeof animate == 'string'){ this.setVisible(false, animate); return this; } this.setVisible(false, this.preanim(arguments, 0)); return this; }, show : function(animate){ if (typeof animate == 'string'){ this.setVisible(true, animate); return this; } this.setVisible(true, this.preanim(arguments, 0)); return this; } }; }());(function(){ var NULL = null, UNDEFINED = undefined, TRUE = true, FALSE = false, SETX = "setX", SETY = "setY", SETXY = "setXY", LEFT = "left", BOTTOM = "bottom", TOP = "top", RIGHT = "right", HEIGHT = "height", WIDTH = "width", POINTS = "points", HIDDEN = "hidden", ABSOLUTE = "absolute", VISIBLE = "visible", MOTION = "motion", POSITION = "position", EASEOUT = "easeOut", flyEl = new Ext.Element.Flyweight(), queues = {}, getObject = function(o){ return o || {}; }, fly = function(dom){ flyEl.dom = dom; flyEl.id = Ext.id(dom); return flyEl; }, getQueue = function(id){ if(!queues[id]){ queues[id] = []; } return queues[id]; }, setQueue = function(id, value){ queues[id] = value; }; Ext.enableFx = TRUE; Ext.Fx = { switchStatements : function(key, fn, argHash){ return fn.apply(this, argHash[key]); }, slideIn : function(anchor, o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, xy, r, b, wrap, after, st, args, pt, bw, bh; anchor = anchor || "t"; me.queueFx(o, function(){ xy = fly(dom).getXY(); fly(dom).fixDisplay(); r = fly(dom).getFxRestore(); b = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: dom.offsetWidth, height: dom.offsetHeight}; b.right = b.x + b.width; b.bottom = b.y + b.height; fly(dom).setWidth(b.width).setHeight(b.height); wrap = fly(dom).fxWrap(r.pos, o, HIDDEN); st.visibility = VISIBLE; st.position = ABSOLUTE; function after(){ fly(dom).fxUnwrap(wrap, r.pos, o); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); } pt = {to: [b.x, b.y]}; bw = {to: b.width}; bh = {to: b.height}; function argCalc(wrap, style, ww, wh, sXY, sXYval, s1, s2, w, h, p){ var ret = {}; fly(wrap).setWidth(ww).setHeight(wh); if(fly(wrap)[sXY]){ fly(wrap)[sXY](sXYval); } style[s1] = style[s2] = "0"; if(w){ ret.width = w; } if(h){ ret.height = h; } if(p){ ret.points = p; } return ret; }; args = fly(dom).switchStatements(anchor.toLowerCase(), argCalc, { t : [wrap, st, b.width, 0, NULL, NULL, LEFT, BOTTOM, NULL, bh, NULL], l : [wrap, st, 0, b.height, NULL, NULL, RIGHT, TOP, bw, NULL, NULL], r : [wrap, st, b.width, b.height, SETX, b.right, LEFT, TOP, NULL, NULL, pt], b : [wrap, st, b.width, b.height, SETY, b.bottom, LEFT, TOP, NULL, bh, pt], tl : [wrap, st, 0, 0, NULL, NULL, RIGHT, BOTTOM, bw, bh, pt], bl : [wrap, st, 0, 0, SETY, b.y + b.height, RIGHT, TOP, bw, bh, pt], br : [wrap, st, 0, 0, SETXY, [b.right, b.bottom], LEFT, TOP, bw, bh, pt], tr : [wrap, st, 0, 0, SETX, b.x + b.width, LEFT, BOTTOM, bw, bh, pt] }); st.visibility = VISIBLE; fly(wrap).show(); arguments.callee.anim = fly(wrap).fxanim(args, o, MOTION, .5, EASEOUT, after); }); return me; }, slideOut : function(anchor, o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, xy = me.getXY(), wrap, r, b, a, zero = {to: 0}; anchor = anchor || "t"; me.queueFx(o, function(){ r = fly(dom).getFxRestore(); b = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: dom.offsetWidth, height: dom.offsetHeight}; b.right = b.x + b.width; b.bottom = b.y + b.height; fly(dom).setWidth(b.width).setHeight(b.height); wrap = fly(dom).fxWrap(r.pos, o, VISIBLE); st.visibility = VISIBLE; st.position = ABSOLUTE; fly(wrap).setWidth(b.width).setHeight(b.height); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).fxUnwrap(wrap, r.pos, o); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); } function argCalc(style, s1, s2, p1, v1, p2, v2, p3, v3){ var ret = {}; style[s1] = style[s2] = "0"; ret[p1] = v1; if(p2){ ret[p2] = v2; } if(p3){ ret[p3] = v3; } return ret; }; a = fly(dom).switchStatements(anchor.toLowerCase(), argCalc, { t : [st, LEFT, BOTTOM, HEIGHT, zero], l : [st, RIGHT, TOP, WIDTH, zero], r : [st, LEFT, TOP, WIDTH, zero, POINTS, {to : [b.right, b.y]}], b : [st, LEFT, TOP, HEIGHT, zero, POINTS, {to : [b.x, b.bottom]}], tl : [st, RIGHT, BOTTOM, WIDTH, zero, HEIGHT, zero], bl : [st, RIGHT, TOP, WIDTH, zero, HEIGHT, zero, POINTS, {to : [b.x, b.bottom]}], br : [st, LEFT, TOP, WIDTH, zero, HEIGHT, zero, POINTS, {to : [b.x + b.width, b.bottom]}], tr : [st, LEFT, BOTTOM, WIDTH, zero, HEIGHT, zero, POINTS, {to : [b.right, b.y]}] }); arguments.callee.anim = fly(wrap).fxanim(a, o, MOTION, .5, EASEOUT, after); }); return me; }, puff : function(o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, width, height, r; me.queueFx(o, function(){ width = fly(dom).getWidth(); height = fly(dom).getHeight(); fly(dom).clearOpacity(); fly(dom).show(); r = fly(dom).getFxRestore(); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).clearOpacity(); fly(dom).setPositioning(r.pos); st.width = r.width; st.height = r.height; st.fontSize = ''; fly(dom).afterFx(o); } arguments.callee.anim = fly(dom).fxanim({ width : {to : fly(dom).adjustWidth(width * 2)}, height : {to : fly(dom).adjustHeight(height * 2)}, points : {by : [-width * .5, -height * .5]}, opacity : {to : 0}, fontSize: {to : 200, unit: "%"} }, o, MOTION, .5, EASEOUT, after); }); return me; }, switchOff : function(o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, r; me.queueFx(o, function(){ fly(dom).clearOpacity(); fly(dom).clip(); r = fly(dom).getFxRestore(); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).clearOpacity(); fly(dom).setPositioning(r.pos); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); }; fly(dom).fxanim({opacity : {to : 0.3}}, NULL, NULL, .1, NULL, function(){ fly(dom).clearOpacity(); (function(){ fly(dom).fxanim({ height : {to : 1}, points : {by : [0, fly(dom).getHeight() * .5]} }, o, MOTION, 0.3, 'easeIn', after); }).defer(100); }); }); return me; }, highlight : function(color, o){ o = getObject(o); var me = this, dom = me.dom, attr = o.attr || "backgroundColor", a = {}, restore; me.queueFx(o, function(){ fly(dom).clearOpacity(); fly(dom).show(); function after(){ dom.style[attr] = restore; fly(dom).afterFx(o); } restore = dom.style[attr]; a[attr] = {from: color || "ffff9c", to: o.endColor || fly(dom).getColor(attr) || "ffffff"}; arguments.callee.anim = fly(dom).fxanim(a, o, 'color', 1, 'easeIn', after); }); return me; }, frame : function(color, count, o){ o = getObject(o); var me = this, dom = me.dom, proxy, active; me.queueFx(o, function(){ color = color || '#C3DAF9'; if(color.length == 6){ color = '#' + color; } count = count || 1; fly(dom).show(); var xy = fly(dom).getXY(), b = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: dom.offsetWidth, height: dom.offsetHeight}, queue = function(){ proxy = fly(document.body || document.documentElement).createChild({ style:{ position : ABSOLUTE, 'z-index': 35000, border : '0px solid ' + color } }); return proxy.queueFx({}, animFn); }; arguments.callee.anim = { isAnimated: true, stop: function() { count = 0; proxy.stopFx(); } }; function animFn(){ var scale = Ext.isBorderBox ? 2 : 1; active = proxy.anim({ top : {from : b.y, to : b.y - 20}, left : {from : b.x, to : b.x - 20}, borderWidth : {from : 0, to : 10}, opacity : {from : 1, to : 0}, height : {from : b.height, to : b.height + 20 * scale}, width : {from : b.width, to : b.width + 20 * scale} },{ duration: o.duration || 1, callback: function() { proxy.remove(); --count > 0 ? queue() : fly(dom).afterFx(o); } }); arguments.callee.anim = { isAnimated: true, stop: function(){ active.stop(); } }; }; queue(); }); return me; }, pause : function(seconds){ var dom = this.dom, t; this.queueFx({}, function(){ t = setTimeout(function(){ fly(dom).afterFx({}); }, seconds * 1000); arguments.callee.anim = { isAnimated: true, stop: function(){ clearTimeout(t); fly(dom).afterFx({}); } }; }); return this; }, fadeIn : function(o){ o = getObject(o); var me = this, dom = me.dom, to = o.endOpacity || 1; me.queueFx(o, function(){ fly(dom).setOpacity(0); fly(dom).fixDisplay(); dom.style.visibility = VISIBLE; arguments.callee.anim = fly(dom).fxanim({opacity:{to:to}}, o, NULL, .5, EASEOUT, function(){ if(to == 1){ fly(dom).clearOpacity(); } fly(dom).afterFx(o); }); }); return me; }, fadeOut : function(o){ o = getObject(o); var me = this, dom = me.dom, style = dom.style, to = o.endOpacity || 0; me.queueFx(o, function(){ arguments.callee.anim = fly(dom).fxanim({ opacity : {to : to}}, o, NULL, .5, EASEOUT, function(){ if(to == 0){ Ext.Element.data(dom, 'visibilityMode') == Ext.Element.DISPLAY || o.useDisplay ? style.display = "none" : style.visibility = HIDDEN; fly(dom).clearOpacity(); } fly(dom).afterFx(o); }); }); return me; }, scale : function(w, h, o){ this.shift(Ext.apply({}, o, { width: w, height: h })); return this; }, shift : function(o){ o = getObject(o); var dom = this.dom, a = {}; this.queueFx(o, function(){ for (var prop in o) { if (o[prop] != UNDEFINED) { a[prop] = {to : o[prop]}; } } a.width ? a.width.to = fly(dom).adjustWidth(o.width) : a; a.height ? a.height.to = fly(dom).adjustWidth(o.height) : a; if (a.x || a.y || a.xy) { a.points = a.xy || {to : [ a.x ? a.x.to : fly(dom).getX(), a.y ? a.y.to : fly(dom).getY()]}; } arguments.callee.anim = fly(dom).fxanim(a, o, MOTION, .35, EASEOUT, function(){ fly(dom).afterFx(o); }); }); return this; }, ghost : function(anchor, o){ o = getObject(o); var me = this, dom = me.dom, st = dom.style, a = {opacity: {to: 0}, points: {}}, pt = a.points, r, w, h; anchor = anchor || "b"; me.queueFx(o, function(){ r = fly(dom).getFxRestore(); w = fly(dom).getWidth(); h = fly(dom).getHeight(); function after(){ o.useDisplay ? fly(dom).setDisplayed(FALSE) : fly(dom).hide(); fly(dom).clearOpacity(); fly(dom).setPositioning(r.pos); st.width = r.width; st.height = r.height; fly(dom).afterFx(o); } pt.by = fly(dom).switchStatements(anchor.toLowerCase(), function(v1,v2){ return [v1, v2];}, { t : [0, -h], l : [-w, 0], r : [w, 0], b : [0, h], tl : [-w, -h], bl : [-w, h], br : [w, h], tr : [w, -h] }); arguments.callee.anim = fly(dom).fxanim(a, o, MOTION, .5, EASEOUT, after); }); return me; }, syncFx : function(){ var me = this; me.fxDefaults = Ext.apply(me.fxDefaults || {}, { block : FALSE, concurrent : TRUE, stopFx : FALSE }); return me; }, sequenceFx : function(){ var me = this; me.fxDefaults = Ext.apply(me.fxDefaults || {}, { block : FALSE, concurrent : FALSE, stopFx : FALSE }); return me; }, nextFx : function(){ var ef = getQueue(this.dom.id)[0]; if(ef){ ef.call(this); } }, hasActiveFx : function(){ return getQueue(this.dom.id)[0]; }, stopFx : function(finish){ var me = this, id = me.dom.id; if(me.hasActiveFx()){ var cur = getQueue(id)[0]; if(cur && cur.anim){ if(cur.anim.isAnimated){ setQueue(id, [cur]); cur.anim.stop(finish !== undefined ? finish : TRUE); }else{ setQueue(id, []); } } } return me; }, beforeFx : function(o){ if(this.hasActiveFx() && !o.concurrent){ if(o.stopFx){ this.stopFx(); return TRUE; } return FALSE; } return TRUE; }, hasFxBlock : function(){ var q = getQueue(this.dom.id); return q && q[0] && q[0].block; }, queueFx : function(o, fn){ var me = fly(this.dom); if(!me.hasFxBlock()){ Ext.applyIf(o, me.fxDefaults); if(!o.concurrent){ var run = me.beforeFx(o); fn.block = o.block; getQueue(me.dom.id).push(fn); if(run){ me.nextFx(); } }else{ fn.call(me); } } return me; }, fxWrap : function(pos, o, vis){ var dom = this.dom, wrap, wrapXY; if(!o.wrap || !(wrap = Ext.getDom(o.wrap))){ if(o.fixPosition){ wrapXY = fly(dom).getXY(); } var div = document.createElement("div"); div.style.visibility = vis; wrap = dom.parentNode.insertBefore(div, dom); fly(wrap).setPositioning(pos); if(fly(wrap).isStyle(POSITION, "static")){ fly(wrap).position("relative"); } fly(dom).clearPositioning('auto'); fly(wrap).clip(); wrap.appendChild(dom); if(wrapXY){ fly(wrap).setXY(wrapXY); } } return wrap; }, fxUnwrap : function(wrap, pos, o){ var dom = this.dom; fly(dom).clearPositioning(); fly(dom).setPositioning(pos); if(!o.wrap){ var pn = fly(wrap).dom.parentNode; pn.insertBefore(dom, wrap); fly(wrap).remove(); } }, getFxRestore : function(){ var st = this.dom.style; return {pos: this.getPositioning(), width: st.width, height : st.height}; }, afterFx : function(o){ var dom = this.dom, id = dom.id; if(o.afterStyle){ fly(dom).setStyle(o.afterStyle); } if(o.afterCls){ fly(dom).addClass(o.afterCls); } if(o.remove == TRUE){ fly(dom).remove(); } if(o.callback){ o.callback.call(o.scope, fly(dom)); } if(!o.concurrent){ getQueue(id).shift(); fly(dom).nextFx(); } }, fxanim : function(args, opt, animType, defaultDur, defaultEase, cb){ animType = animType || 'run'; opt = opt || {}; var anim = Ext.lib.Anim[animType]( this.dom, args, (opt.duration || defaultDur) || .35, (opt.easing || defaultEase) || EASEOUT, cb, this ); opt.anim = anim; return anim; } }; Ext.Fx.resize = Ext.Fx.scale; Ext.Element.addMethods(Ext.Fx); })(); Ext.CompositeElementLite = function(els, root){ this.elements = []; this.add(els, root); this.el = new Ext.Element.Flyweight(); }; Ext.CompositeElementLite.prototype = { isComposite: true, getElement : function(el){ var e = this.el; e.dom = el; e.id = el.id; return e; }, transformElement : function(el){ return Ext.getDom(el); }, getCount : function(){ return this.elements.length; }, add : function(els, root){ var me = this, elements = me.elements; if(!els){ return this; } if(typeof els == "string"){ els = Ext.Element.selectorFunction(els, root); }else if(els.isComposite){ els = els.elements; }else if(!Ext.isIterable(els)){ els = [els]; } for(var i = 0, len = els.length; i < len; ++i){ elements.push(me.transformElement(els[i])); } return me; }, invoke : function(fn, args){ var me = this, els = me.elements, len = els.length, e, i; for(i = 0; i < len; i++) { e = els[i]; if(e){ Ext.Element.prototype[fn].apply(me.getElement(e), args); } } return me; }, item : function(index){ var me = this, el = me.elements[index], out = null; if(el){ out = me.getElement(el); } return out; }, addListener : function(eventName, handler, scope, opt){ var els = this.elements, len = els.length, i, e; for(i = 0; i -1){ replacement = Ext.getDom(replacement); if(domReplace){ d = this.elements[index]; d.parentNode.insertBefore(replacement, d); Ext.removeNode(d); } this.elements.splice(index, 1, replacement); } return this; }, clear : function(){ this.elements = []; } }; Ext.CompositeElementLite.prototype.on = Ext.CompositeElementLite.prototype.addListener; Ext.CompositeElementLite.importElementMethods = function() { var fnName, ElProto = Ext.Element.prototype, CelProto = Ext.CompositeElementLite.prototype; for (fnName in ElProto) { if (typeof ElProto[fnName] == 'function'){ (function(fnName) { CelProto[fnName] = CelProto[fnName] || function() { return this.invoke(fnName, arguments); }; }).call(CelProto, fnName); } } }; Ext.CompositeElementLite.importElementMethods(); if(Ext.DomQuery){ Ext.Element.selectorFunction = Ext.DomQuery.select; } Ext.Element.select = function(selector, root){ var els; if(typeof selector == "string"){ els = Ext.Element.selectorFunction(selector, root); }else if(selector.length !== undefined){ els = selector; }else{ throw "Invalid selector"; } return new Ext.CompositeElementLite(els); }; Ext.select = Ext.Element.select; (function(){ var BEFOREREQUEST = "beforerequest", REQUESTCOMPLETE = "requestcomplete", REQUESTEXCEPTION = "requestexception", UNDEFINED = undefined, LOAD = 'load', POST = 'POST', GET = 'GET', WINDOW = window; Ext.data.Connection = function(config){ Ext.apply(this, config); this.addEvents( BEFOREREQUEST, REQUESTCOMPLETE, REQUESTEXCEPTION ); Ext.data.Connection.superclass.constructor.call(this); }; Ext.extend(Ext.data.Connection, Ext.util.Observable, { timeout : 30000, autoAbort:false, disableCaching: true, disableCachingParam: '_dc', request : function(o){ var me = this; if(me.fireEvent(BEFOREREQUEST, me, o)){ if (o.el) { if(!Ext.isEmpty(o.indicatorText)){ me.indicatorText = '
      '+o.indicatorText+"
      "; } if(me.indicatorText) { Ext.getDom(o.el).innerHTML = me.indicatorText; } o.success = (Ext.isFunction(o.success) ? o.success : function(){}).createInterceptor(function(response) { Ext.getDom(o.el).innerHTML = response.responseText; }); } var p = o.params, url = o.url || me.url, method, cb = {success: me.handleResponse, failure: me.handleFailure, scope: me, argument: {options: o}, timeout : Ext.num(o.timeout, me.timeout) }, form, serForm; if (Ext.isFunction(p)) { p = p.call(o.scope||WINDOW, o); } p = Ext.urlEncode(me.extraParams, Ext.isObject(p) ? Ext.urlEncode(p) : p); if (Ext.isFunction(url)) { url = url.call(o.scope || WINDOW, o); } if((form = Ext.getDom(o.form))){ url = url || form.action; if(o.isUpload || (/multipart\/form-data/i.test(form.getAttribute("enctype")))) { return me.doFormUpload.call(me, o, p, url); } serForm = Ext.lib.Ajax.serializeForm(form); p = p ? (p + '&' + serForm) : serForm; } method = o.method || me.method || ((p || o.xmlData || o.jsonData) ? POST : GET); if(method === GET && (me.disableCaching && o.disableCaching !== false) || o.disableCaching === true){ var dcp = o.disableCachingParam || me.disableCachingParam; url = Ext.urlAppend(url, dcp + '=' + (new Date().getTime())); } o.headers = Ext.applyIf(o.headers || {}, me.defaultHeaders || {}); if(o.autoAbort === true || me.autoAbort) { me.abort(); } if((method == GET || o.xmlData || o.jsonData) && p){ url = Ext.urlAppend(url, p); p = ''; } return (me.transId = Ext.lib.Ajax.request(method, url, cb, p, o)); }else{ return o.callback ? o.callback.apply(o.scope, [o,UNDEFINED,UNDEFINED]) : null; } }, isLoading : function(transId){ return transId ? Ext.lib.Ajax.isCallInProgress(transId) : !! this.transId; }, abort : function(transId){ if(transId || this.isLoading()){ Ext.lib.Ajax.abort(transId || this.transId); } }, handleResponse : function(response){ this.transId = false; var options = response.argument.options; response.argument = options ? options.argument : null; this.fireEvent(REQUESTCOMPLETE, this, response, options); if(options.success){ options.success.call(options.scope, response, options); } if(options.callback){ options.callback.call(options.scope, options, true, response); } }, handleFailure : function(response, e){ this.transId = false; var options = response.argument.options; response.argument = options ? options.argument : null; this.fireEvent(REQUESTEXCEPTION, this, response, options, e); if(options.failure){ options.failure.call(options.scope, response, options); } if(options.callback){ options.callback.call(options.scope, options, false, response); } }, doFormUpload : function(o, ps, url){ var id = Ext.id(), doc = document, frame = doc.createElement('iframe'), form = Ext.getDom(o.form), hiddens = [], hd, encoding = 'multipart/form-data', buf = { target: form.target, method: form.method, encoding: form.encoding, enctype: form.enctype, action: form.action }; Ext.fly(frame).set({ id: id, name: id, cls: 'x-hidden', src: Ext.SSL_SECURE_URL }); doc.body.appendChild(frame); if(Ext.isIE){ document.frames[id].name = id; } Ext.fly(form).set({ target: id, method: POST, enctype: encoding, encoding: encoding, action: url || buf.action }); Ext.iterate(Ext.urlDecode(ps, false), function(k, v){ hd = doc.createElement('input'); Ext.fly(hd).set({ type: 'hidden', value: v, name: k }); form.appendChild(hd); hiddens.push(hd); }); function cb(){ var me = this, r = {responseText : '', responseXML : null, argument : o.argument}, doc, firstChild; try{ doc = frame.contentWindow.document || frame.contentDocument || WINDOW.frames[id].document; if(doc){ if(doc.body){ if(/textarea/i.test((firstChild = doc.body.firstChild || {}).tagName)){ r.responseText = firstChild.value; }else{ r.responseText = doc.body.innerHTML; } } r.responseXML = doc.XMLDocument || doc; } } catch(e) {} Ext.EventManager.removeListener(frame, LOAD, cb, me); me.fireEvent(REQUESTCOMPLETE, me, r, o); function runCallback(fn, scope, args){ if(Ext.isFunction(fn)){ fn.apply(scope, args); } } runCallback(o.success, o.scope, [r, o]); runCallback(o.callback, o.scope, [o, true, r]); if(!me.debugUploads){ setTimeout(function(){Ext.removeNode(frame);}, 100); } } Ext.EventManager.on(frame, LOAD, cb, this); form.submit(); Ext.fly(form).set(buf); Ext.each(hiddens, function(h) { Ext.removeNode(h); }); } }); })(); Ext.Ajax = new Ext.data.Connection({ autoAbort : false, serializeForm : function(form){ return Ext.lib.Ajax.serializeForm(form); } }); Ext.util.JSON = new (function(){ var useHasOwn = !!{}.hasOwnProperty, isNative = function() { var useNative = null; return function() { if (useNative === null) { useNative = Ext.USE_NATIVE_JSON && window.JSON && JSON.toString() == '[object JSON]'; } return useNative; }; }(), pad = function(n) { return n < 10 ? "0" + n : n; }, doDecode = function(json){ return json ? eval("(" + json + ")") : ""; }, doEncode = function(o){ if(!Ext.isDefined(o) || o === null){ return "null"; }else if(Ext.isArray(o)){ return encodeArray(o); }else if(Ext.isDate(o)){ return Ext.util.JSON.encodeDate(o); }else if(Ext.isString(o)){ return encodeString(o); }else if(typeof o == "number"){ return isFinite(o) ? String(o) : "null"; }else if(Ext.isBoolean(o)){ return String(o); }else { var a = ["{"], b, i, v; for (i in o) { if(!o.getElementsByTagName){ if(!useHasOwn || o.hasOwnProperty(i)) { v = o[i]; switch (typeof v) { case "undefined": case "function": case "unknown": break; default: if(b){ a.push(','); } a.push(doEncode(i), ":", v === null ? "null" : doEncode(v)); b = true; } } } } a.push("}"); return a.join(""); } }, m = { "\b": '\\b', "\t": '\\t', "\n": '\\n', "\f": '\\f', "\r": '\\r', '"' : '\\"', "\\": '\\\\' }, encodeString = function(s){ if (/["\\\x00-\x1f]/.test(s)) { return '"' + s.replace(/([\x00-\x1f\\"])/g, function(a, b) { var c = m[b]; if(c){ return c; } c = b.charCodeAt(); return "\\u00" + Math.floor(c / 16).toString(16) + (c % 16).toString(16); }) + '"'; } return '"' + s + '"'; }, encodeArray = function(o){ var a = ["["], b, i, l = o.length, v; for (i = 0; i < l; i += 1) { v = o[i]; switch (typeof v) { case "undefined": case "function": case "unknown": break; default: if (b) { a.push(','); } a.push(v === null ? "null" : Ext.util.JSON.encode(v)); b = true; } } a.push("]"); return a.join(""); }; this.encodeDate = function(o){ return '"' + o.getFullYear() + "-" + pad(o.getMonth() + 1) + "-" + pad(o.getDate()) + "T" + pad(o.getHours()) + ":" + pad(o.getMinutes()) + ":" + pad(o.getSeconds()) + '"'; }; this.encode = function() { var ec; return function(o) { if (!ec) { ec = isNative() ? JSON.stringify : doEncode; } return ec(o); }; }(); this.decode = function() { var dc; return function(json) { if (!dc) { dc = isNative() ? JSON.parse : doDecode; } return dc(json); }; }(); })(); Ext.encode = Ext.util.JSON.encode; Ext.decode = Ext.util.JSON.decode; Ext.EventManager = function(){ var docReadyEvent, docReadyProcId, docReadyState = false, DETECT_NATIVE = Ext.isGecko || Ext.isWebKit || Ext.isSafari || Ext.isIE10p, E = Ext.lib.Event, D = Ext.lib.Dom, DOC = document, WINDOW = window, DOMCONTENTLOADED = "DOMContentLoaded", COMPLETE = 'complete', propRe = /^(?:scope|delay|buffer|single|stopEvent|preventDefault|stopPropagation|normalized|args|delegate)$/, specialElCache = []; function getId(el){ var id = false, i = 0, len = specialElCache.length, skip = false, o; if (el) { if (el.getElementById || el.navigator) { for(; i < len; ++i){ o = specialElCache[i]; if(o.el === el){ id = o.id; break; } } if(!id){ id = Ext.id(el); specialElCache.push({ id: id, el: el }); skip = true; } }else{ id = Ext.id(el); } if(!Ext.elCache[id]){ Ext.Element.addToCache(new Ext.Element(el), id); if(skip){ Ext.elCache[id].skipGC = true; } } } return id; } function addListener(el, ename, fn, task, wrap, scope){ el = Ext.getDom(el); var id = getId(el), es = Ext.elCache[id].events, wfn; wfn = E.on(el, ename, wrap); es[ename] = es[ename] || []; es[ename].push([fn, wrap, scope, wfn, task]); if(el.addEventListener && ename == "mousewheel"){ var args = ["DOMMouseScroll", wrap, false]; el.addEventListener.apply(el, args); Ext.EventManager.addListener(WINDOW, 'unload', function(){ el.removeEventListener.apply(el, args); }); } if(el == DOC && ename == "mousedown"){ Ext.EventManager.stoppedMouseDownEvent.addListener(wrap); } } function doScrollChk(){ if(window != top){ return false; } try{ DOC.documentElement.doScroll('left'); }catch(e){ return false; } fireDocReady(); return true; } function checkReadyState(e){ if(Ext.isIE9m && doScrollChk()){ return true; } if(DOC.readyState == COMPLETE){ fireDocReady(); return true; } docReadyState || (docReadyProcId = setTimeout(arguments.callee, 2)); return false; } var styles; function checkStyleSheets(e){ styles || (styles = Ext.query('style, link[rel=stylesheet]')); if(styles.length == DOC.styleSheets.length){ fireDocReady(); return true; } docReadyState || (docReadyProcId = setTimeout(arguments.callee, 2)); return false; } function OperaDOMContentLoaded(e){ DOC.removeEventListener(DOMCONTENTLOADED, arguments.callee, false); checkStyleSheets(); } function fireDocReady(e){ if(!docReadyState){ docReadyState = true; if(docReadyProcId){ clearTimeout(docReadyProcId); } if(DETECT_NATIVE) { DOC.removeEventListener(DOMCONTENTLOADED, fireDocReady, false); } if(Ext.isIE9m && checkReadyState.bindIE){ DOC.detachEvent('onreadystatechange', checkReadyState); } E.un(WINDOW, "load", arguments.callee); } if(docReadyEvent && !Ext.isReady){ Ext.isReady = true; docReadyEvent.fire(); docReadyEvent.listeners = []; } } function initDocReady(){ docReadyEvent || (docReadyEvent = new Ext.util.Event()); if (DETECT_NATIVE) { DOC.addEventListener(DOMCONTENTLOADED, fireDocReady, false); } if (Ext.isIE9m){ if(!checkReadyState()){ checkReadyState.bindIE = true; DOC.attachEvent('onreadystatechange', checkReadyState); } }else if(Ext.isOpera ){ (DOC.readyState == COMPLETE && checkStyleSheets()) || DOC.addEventListener(DOMCONTENTLOADED, OperaDOMContentLoaded, false); }else if (Ext.isWebKit){ checkReadyState(); } E.on(WINDOW, "load", fireDocReady); } function createTargeted(h, o){ return function(){ var args = Ext.toArray(arguments); if(o.target == Ext.EventObject.setEvent(args[0]).target){ h.apply(this, args); } }; } function createBuffered(h, o, task){ return function(e){ task.delay(o.buffer, h, null, [new Ext.EventObjectImpl(e)]); }; } function createSingle(h, el, ename, fn, scope){ return function(e){ Ext.EventManager.removeListener(el, ename, fn, scope); h(e); }; } function createDelayed(h, o, fn){ return function(e){ var task = new Ext.util.DelayedTask(h); if(!fn.tasks) { fn.tasks = []; } fn.tasks.push(task); task.delay(o.delay || 10, h, null, [new Ext.EventObjectImpl(e)]); }; } function listen(element, ename, opt, fn, scope){ var o = (!opt || typeof opt == "boolean") ? {} : opt, el = Ext.getDom(element), task; fn = fn || o.fn; scope = scope || o.scope; if(!el){ throw "Error listening for \"" + ename + '\". Element "' + element + '" doesn\'t exist.'; } function h(e){ if(!Ext){ return; } e = Ext.EventObject.setEvent(e); var t; if (o.delegate) { if(!(t = e.getTarget(o.delegate, el))){ return; } } else { t = e.target; } if (o.stopEvent) { e.stopEvent(); } if (o.preventDefault) { e.preventDefault(); } if (o.stopPropagation) { e.stopPropagation(); } if (o.normalized === false) { e = e.browserEvent; } fn.call(scope || el, e, t, o); } if(o.target){ h = createTargeted(h, o); } if(o.delay){ h = createDelayed(h, o, fn); } if(o.single){ h = createSingle(h, el, ename, fn, scope); } if(o.buffer){ task = new Ext.util.DelayedTask(h); h = createBuffered(h, o, task); } addListener(el, ename, fn, task, h, scope); return h; } var pub = { addListener : function(element, eventName, fn, scope, options){ if(typeof eventName == 'object'){ var o = eventName, e, val; for(e in o){ val = o[e]; if(!propRe.test(e)){ if(Ext.isFunction(val)){ listen(element, e, o, val, o.scope); }else{ listen(element, e, val); } } } } else { listen(element, eventName, options, fn, scope); } }, removeListener : function(el, eventName, fn, scope){ el = Ext.getDom(el); var id = getId(el), f = el && (Ext.elCache[id].events)[eventName] || [], wrap, i, l, k, len, fnc; for (i = 0, len = f.length; i < len; i++) { if (Ext.isArray(fnc = f[i]) && fnc[0] == fn && (!scope || fnc[2] == scope)) { if(fnc[4]) { fnc[4].cancel(); } k = fn.tasks && fn.tasks.length; if(k) { while(k--) { fn.tasks[k].cancel(); } delete fn.tasks; } wrap = fnc[1]; E.un(el, eventName, E.extAdapter ? fnc[3] : wrap); if(wrap && el.addEventListener && eventName == "mousewheel"){ el.removeEventListener("DOMMouseScroll", wrap, false); } if(wrap && el == DOC && eventName == "mousedown"){ Ext.EventManager.stoppedMouseDownEvent.removeListener(wrap); } f.splice(i, 1); if (f.length === 0) { delete Ext.elCache[id].events[eventName]; } for (k in Ext.elCache[id].events) { return false; } Ext.elCache[id].events = {}; return false; } } }, removeAll : function(el){ el = Ext.getDom(el); var id = getId(el), ec = Ext.elCache[id] || {}, es = ec.events || {}, f, i, len, ename, fn, k, wrap; for(ename in es){ if(es.hasOwnProperty(ename)){ f = es[ename]; for (i = 0, len = f.length; i < len; i++) { fn = f[i]; if(fn[4]) { fn[4].cancel(); } if(fn[0].tasks && (k = fn[0].tasks.length)) { while(k--) { fn[0].tasks[k].cancel(); } delete fn.tasks; } wrap = fn[1]; E.un(el, ename, E.extAdapter ? fn[3] : wrap); if(el.addEventListener && wrap && ename == "mousewheel"){ el.removeEventListener("DOMMouseScroll", wrap, false); } if(wrap && el == DOC && ename == "mousedown"){ Ext.EventManager.stoppedMouseDownEvent.removeListener(wrap); } } } } if (Ext.elCache[id]) { Ext.elCache[id].events = {}; } }, getListeners : function(el, eventName) { el = Ext.getDom(el); var id = getId(el), ec = Ext.elCache[id] || {}, es = ec.events || {}, results = []; if (es && es[eventName]) { return es[eventName]; } else { return null; } }, removeFromSpecialCache: function(o) { var i = 0, len = specialElCache.length; for (; i < len; ++i) { if (specialElCache[i].el == o) { specialElCache.splice(i, 1); } } }, purgeElement : function(el, recurse, eventName) { el = Ext.getDom(el); var id = getId(el), ec = Ext.elCache[id] || {}, es = ec.events || {}, i, f, len; if (eventName) { if (es && es.hasOwnProperty(eventName)) { f = es[eventName]; for (i = 0, len = f.length; i < len; i++) { Ext.EventManager.removeListener(el, eventName, f[i][0]); } } } else { Ext.EventManager.removeAll(el); } if (recurse && el && el.childNodes) { for (i = 0, len = el.childNodes.length; i < len; i++) { Ext.EventManager.purgeElement(el.childNodes[i], recurse, eventName); } } }, _unload : function() { var el; for (el in Ext.elCache) { Ext.EventManager.removeAll(el); } delete Ext.elCache; delete Ext.Element._flyweights; var c, conn, tid, ajax = Ext.lib.Ajax; (typeof ajax.conn == 'object') ? conn = ajax.conn : conn = {}; for (tid in conn) { c = conn[tid]; if (c) { ajax.abort({conn: c, tId: tid}); } } }, onDocumentReady : function(fn, scope, options){ if (Ext.isReady) { docReadyEvent || (docReadyEvent = new Ext.util.Event()); docReadyEvent.addListener(fn, scope, options); docReadyEvent.fire(); docReadyEvent.listeners = []; } else { if (!docReadyEvent) { initDocReady(); } options = options || {}; options.delay = options.delay || 1; docReadyEvent.addListener(fn, scope, options); } }, fireDocReady : fireDocReady }; pub.on = pub.addListener; pub.un = pub.removeListener; pub.stoppedMouseDownEvent = new Ext.util.Event(); return pub; }(); Ext.onReady = Ext.EventManager.onDocumentReady; (function(){ var initExtCss = function() { var bd = document.body || document.getElementsByTagName('body')[0]; if (!bd) { return false; } var cls = []; if (Ext.isIE) { if (!Ext.isIE10p) { cls.push('ext-ie'); } if (Ext.isIE6) { cls.push('ext-ie6'); } else if (Ext.isIE7) { cls.push('ext-ie7', 'ext-ie7m'); } else if (Ext.isIE8) { cls.push('ext-ie8', 'ext-ie8m'); } else if (Ext.isIE9) { cls.push('ext-ie9', 'ext-ie9m'); } else if (Ext.isIE10) { cls.push('ext-ie10'); } } if (Ext.isGecko) { if (Ext.isGecko2) { cls.push('ext-gecko2'); } else { cls.push('ext-gecko3'); } } if (Ext.isOpera) { cls.push('ext-opera'); } if (Ext.isWebKit) { cls.push('ext-webkit'); } if (Ext.isSafari) { cls.push("ext-safari " + (Ext.isSafari2 ? 'ext-safari2' : (Ext.isSafari3 ? 'ext-safari3' : 'ext-safari4'))); } else if(Ext.isChrome) { cls.push("ext-chrome"); } if (Ext.isMac) { cls.push("ext-mac"); } if (Ext.isLinux) { cls.push("ext-linux"); } if (Ext.isStrict || Ext.isBorderBox) { var p = bd.parentNode; if (p) { if (!Ext.isStrict) { Ext.fly(p, '_internal').addClass('x-quirks'); if (Ext.isIE9m && !Ext.isStrict) { Ext.isIEQuirks = true; } } Ext.fly(p, '_internal').addClass(((Ext.isStrict && Ext.isIE ) || (!Ext.enableForcedBoxModel && !Ext.isIE)) ? ' ext-strict' : ' ext-border-box'); } } if (Ext.enableForcedBoxModel && !Ext.isIE) { Ext.isForcedBorderBox = true; cls.push("ext-forced-border-box"); } Ext.fly(bd, '_internal').addClass(cls); return true; }; if (!initExtCss()) { Ext.onReady(initExtCss); } })(); (function(){ var supports = Ext.apply(Ext.supports, { correctRightMargin: true, correctTransparentColor: true, cssFloat: true }); var supportTests = function(){ var div = document.createElement('div'), doc = document, view, last; div.innerHTML = '
      '; doc.body.appendChild(div); last = div.lastChild; if((view = doc.defaultView)){ if(view.getComputedStyle(div.firstChild.firstChild, null).marginRight != '0px'){ supports.correctRightMargin = false; } if(view.getComputedStyle(last, null).backgroundColor != 'transparent'){ supports.correctTransparentColor = false; } } supports.cssFloat = !!last.style.cssFloat; doc.body.removeChild(div); }; if (Ext.isReady) { supportTests(); } else { Ext.onReady(supportTests); } })(); Ext.EventObject = function(){ var E = Ext.lib.Event, clickRe = /(dbl)?click/, safariKeys = { 3 : 13, 63234 : 37, 63235 : 39, 63232 : 38, 63233 : 40, 63276 : 33, 63277 : 34, 63272 : 46, 63273 : 36, 63275 : 35 }, btnMap = Ext.isIE ? {1:0,4:1,2:2} : {0:0,1:1,2:2}; Ext.EventObjectImpl = function(e){ if(e){ this.setEvent(e.browserEvent || e); } }; Ext.EventObjectImpl.prototype = { setEvent : function(e){ var me = this; if(e == me || (e && e.browserEvent)){ return e; } me.browserEvent = e; if(e){ me.button = e.button ? btnMap[e.button] : (e.which ? e.which - 1 : -1); if(clickRe.test(e.type) && me.button == -1){ me.button = 0; } me.type = e.type; me.shiftKey = e.shiftKey; me.ctrlKey = e.ctrlKey || e.metaKey || false; me.altKey = e.altKey; me.keyCode = e.keyCode; me.charCode = e.charCode; me.target = E.getTarget(e); me.xy = E.getXY(e); }else{ me.button = -1; me.shiftKey = false; me.ctrlKey = false; me.altKey = false; me.keyCode = 0; me.charCode = 0; me.target = null; me.xy = [0, 0]; } return me; }, stopEvent : function(){ var me = this; if(me.browserEvent){ if(me.browserEvent.type == 'mousedown'){ Ext.EventManager.stoppedMouseDownEvent.fire(me); } E.stopEvent(me.browserEvent); } }, preventDefault : function(){ if(this.browserEvent){ E.preventDefault(this.browserEvent); } }, stopPropagation : function(){ var me = this; if(me.browserEvent){ if(me.browserEvent.type == 'mousedown'){ Ext.EventManager.stoppedMouseDownEvent.fire(me); } E.stopPropagation(me.browserEvent); } }, getCharCode : function(){ return this.charCode || this.keyCode; }, getKey : function(){ return this.normalizeKey(this.keyCode || this.charCode); }, normalizeKey: function(k){ return Ext.isSafari ? (safariKeys[k] || k) : k; }, getPageX : function(){ return this.xy[0]; }, getPageY : function(){ return this.xy[1]; }, getXY : function(){ return this.xy; }, getTarget : function(selector, maxDepth, returnEl){ return selector ? Ext.fly(this.target).findParent(selector, maxDepth, returnEl) : (returnEl ? Ext.get(this.target) : this.target); }, getRelatedTarget : function(){ return this.browserEvent ? E.getRelatedTarget(this.browserEvent) : null; }, getWheelDelta : function(){ var e = this.browserEvent; var delta = 0; if(e.wheelDelta){ delta = e.wheelDelta/120; }else if(e.detail){ delta = -e.detail/3; } return delta; }, within : function(el, related, allowEl){ if(el){ var t = this[related ? "getRelatedTarget" : "getTarget"](); return t && ((allowEl ? (t == Ext.getDom(el)) : false) || Ext.fly(el).contains(t)); } return false; } }; return new Ext.EventObjectImpl(); }(); Ext.Loader = Ext.apply({}, { load: function(fileList, callback, scope, preserveOrder) { var scope = scope || this, head = document.getElementsByTagName("head")[0], fragment = document.createDocumentFragment(), numFiles = fileList.length, loadedFiles = 0, me = this; var loadFileIndex = function(index) { head.appendChild( me.buildScriptTag(fileList[index], onFileLoaded) ); }; var onFileLoaded = function() { loadedFiles ++; if (numFiles == loadedFiles && typeof callback == 'function') { callback.call(scope); } else { if (preserveOrder === true) { loadFileIndex(loadedFiles); } } }; if (preserveOrder === true) { loadFileIndex.call(this, 0); } else { Ext.each(fileList, function(file, index) { fragment.appendChild( this.buildScriptTag(file, onFileLoaded) ); }, this); head.appendChild(fragment); } }, buildScriptTag: function(filename, callback) { var script = document.createElement('script'); script.type = "text/javascript"; script.src = filename; if (script.readyState) { script.onreadystatechange = function() { if (script.readyState == "loaded" || script.readyState == "complete") { script.onreadystatechange = null; callback(); } }; } else { script.onload = callback; } return script; } }); Ext.ns("Ext.grid", "Ext.list", "Ext.dd", "Ext.tree", "Ext.form", "Ext.menu", "Ext.state", "Ext.layout.boxOverflow", "Ext.app", "Ext.ux", "Ext.chart", "Ext.direct", "Ext.slider"); Ext.apply(Ext, function(){ var E = Ext, idSeed = 0, scrollWidth = null; return { emptyFn : function(){}, BLANK_IMAGE_URL : Ext.isIE6 || Ext.isIE7 || Ext.isAir ? 'http:/' + '/www.extjs.com/s.gif' : 'data:image/gif;base64,R0lGODlhAQABAID/AMDAwAAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw==', extendX : function(supr, fn){ return Ext.extend(supr, fn(supr.prototype)); }, getDoc : function(){ return Ext.get(document); }, num : function(v, defaultValue){ v = Number(Ext.isEmpty(v) || Ext.isArray(v) || typeof v == 'boolean' || (typeof v == 'string' && v.trim().length == 0) ? NaN : v); return isNaN(v) ? defaultValue : v; }, value : function(v, defaultValue, allowBlank){ return Ext.isEmpty(v, allowBlank) ? defaultValue : v; }, escapeRe : function(s) { return s.replace(/([-.*+?^${}()|[\]\/\\])/g, "\\$1"); }, sequence : function(o, name, fn, scope){ o[name] = o[name].createSequence(fn, scope); }, addBehaviors : function(o){ if(!Ext.isReady){ Ext.onReady(function(){ Ext.addBehaviors(o); }); } else { var cache = {}, parts, b, s; for (b in o) { if ((parts = b.split('@'))[1]) { s = parts[0]; if(!cache[s]){ cache[s] = Ext.select(s); } cache[s].on(parts[1], o[b]); } } cache = null; } }, getScrollBarWidth: function(force){ if(!Ext.isReady){ return 0; } if(force === true || scrollWidth === null){ var div = Ext.getBody().createChild('
      '), child = div.child('div', true); var w1 = child.offsetWidth; div.setStyle('overflow', (Ext.isWebKit || Ext.isGecko) ? 'auto' : 'scroll'); var w2 = child.offsetWidth; div.remove(); scrollWidth = w1 - w2 + 2; } return scrollWidth; }, combine : function(){ var as = arguments, l = as.length, r = []; for(var i = 0; i < l; i++){ var a = as[i]; if(Ext.isArray(a)){ r = r.concat(a); }else if(a.length !== undefined && !a.substr){ r = r.concat(Array.prototype.slice.call(a, 0)); }else{ r.push(a); } } return r; }, copyTo : function(dest, source, names){ if(typeof names == 'string'){ names = names.split(/[,;\s]/); } Ext.each(names, function(name){ if(source.hasOwnProperty(name)){ dest[name] = source[name]; } }, this); return dest; }, destroy : function(){ Ext.each(arguments, function(arg){ if(arg){ if(Ext.isArray(arg)){ this.destroy.apply(this, arg); }else if(typeof arg.destroy == 'function'){ arg.destroy(); }else if(arg.dom){ arg.remove(); } } }, this); }, destroyMembers : function(o, arg1, arg2, etc){ for(var i = 1, a = arguments, len = a.length; i < len; i++) { Ext.destroy(o[a[i]]); delete o[a[i]]; } }, clean : function(arr){ var ret = []; Ext.each(arr, function(v){ if(!!v){ ret.push(v); } }); return ret; }, unique : function(arr){ var ret = [], collect = {}; Ext.each(arr, function(v) { if(!collect[v]){ ret.push(v); } collect[v] = true; }); return ret; }, flatten : function(arr){ var worker = []; function rFlatten(a) { Ext.each(a, function(v) { if(Ext.isArray(v)){ rFlatten(v); }else{ worker.push(v); } }); return worker; } return rFlatten(arr); }, min : function(arr, comp){ var ret = arr[0]; comp = comp || function(a,b){ return a < b ? -1 : 1; }; Ext.each(arr, function(v) { ret = comp(ret, v) == -1 ? ret : v; }); return ret; }, max : function(arr, comp){ var ret = arr[0]; comp = comp || function(a,b){ return a > b ? 1 : -1; }; Ext.each(arr, function(v) { ret = comp(ret, v) == 1 ? ret : v; }); return ret; }, mean : function(arr){ return arr.length > 0 ? Ext.sum(arr) / arr.length : undefined; }, sum : function(arr){ var ret = 0; Ext.each(arr, function(v) { ret += v; }); return ret; }, partition : function(arr, truth){ var ret = [[],[]]; Ext.each(arr, function(v, i, a) { ret[ (truth && truth(v, i, a)) || (!truth && v) ? 0 : 1].push(v); }); return ret; }, invoke : function(arr, methodName){ var ret = [], args = Array.prototype.slice.call(arguments, 2); Ext.each(arr, function(v,i) { if (v && typeof v[methodName] == 'function') { ret.push(v[methodName].apply(v, args)); } else { ret.push(undefined); } }); return ret; }, pluck : function(arr, prop){ var ret = []; Ext.each(arr, function(v) { ret.push( v[prop] ); }); return ret; }, zip : function(){ var parts = Ext.partition(arguments, function( val ){ return typeof val != 'function'; }), arrs = parts[0], fn = parts[1][0], len = Ext.max(Ext.pluck(arrs, "length")), ret = []; for (var i = 0; i < len; i++) { ret[i] = []; if(fn){ ret[i] = fn.apply(fn, Ext.pluck(arrs, i)); }else{ for (var j = 0, aLen = arrs.length; j < aLen; j++){ ret[i].push( arrs[j][i] ); } } } return ret; }, getCmp : function(id){ return Ext.ComponentMgr.get(id); }, useShims: E.isIE6 || (E.isMac && E.isGecko2), type : function(o){ if(o === undefined || o === null){ return false; } if(o.htmlElement){ return 'element'; } var t = typeof o; if(t == 'object' && o.nodeName) { switch(o.nodeType) { case 1: return 'element'; case 3: return (/\S/).test(o.nodeValue) ? 'textnode' : 'whitespace'; } } if(t == 'object' || t == 'function') { switch(o.constructor) { case Array: return 'array'; case RegExp: return 'regexp'; case Date: return 'date'; } if(typeof o.length == 'number' && typeof o.item == 'function') { return 'nodelist'; } } return t; }, intercept : function(o, name, fn, scope){ o[name] = o[name].createInterceptor(fn, scope); }, callback : function(cb, scope, args, delay){ if(typeof cb == 'function'){ if(delay){ cb.defer(delay, scope, args || []); }else{ cb.apply(scope, args || []); } } } }; }()); Ext.apply(Function.prototype, { createSequence : function(fcn, scope){ var method = this; return (typeof fcn != 'function') ? this : function(){ var retval = method.apply(this || window, arguments); fcn.apply(scope || this || window, arguments); return retval; }; } }); Ext.applyIf(String, { escape : function(string) { return string.replace(/('|\\)/g, "\\$1"); }, leftPad : function (val, size, ch) { var result = String(val); if(!ch) { ch = " "; } while (result.length < size) { result = ch + result; } return result; } }); String.prototype.toggle = function(value, other){ return this == value ? other : value; }; String.prototype.trim = function(){ var re = /^\s+|\s+$/g; return function(){ return this.replace(re, ""); }; }(); Date.prototype.getElapsed = function(date) { return Math.abs((date || new Date()).getTime()-this.getTime()); }; Ext.applyIf(Number.prototype, { constrain : function(min, max){ return Math.min(Math.max(this, min), max); } }); Ext.lib.Dom.getRegion = function(el) { return Ext.lib.Region.getRegion(el); }; Ext.lib.Region = function(t, r, b, l) { var me = this; me.top = t; me[1] = t; me.right = r; me.bottom = b; me.left = l; me[0] = l; }; Ext.lib.Region.prototype = { contains : function(region) { var me = this; return ( region.left >= me.left && region.right <= me.right && region.top >= me.top && region.bottom <= me.bottom ); }, getArea : function() { var me = this; return ( (me.bottom - me.top) * (me.right - me.left) ); }, intersect : function(region) { var me = this, t = Math.max(me.top, region.top), r = Math.min(me.right, region.right), b = Math.min(me.bottom, region.bottom), l = Math.max(me.left, region.left); if (b >= t && r >= l) { return new Ext.lib.Region(t, r, b, l); } }, union : function(region) { var me = this, t = Math.min(me.top, region.top), r = Math.max(me.right, region.right), b = Math.max(me.bottom, region.bottom), l = Math.min(me.left, region.left); return new Ext.lib.Region(t, r, b, l); }, constrainTo : function(r) { var me = this; me.top = me.top.constrain(r.top, r.bottom); me.bottom = me.bottom.constrain(r.top, r.bottom); me.left = me.left.constrain(r.left, r.right); me.right = me.right.constrain(r.left, r.right); return me; }, adjust : function(t, l, b, r) { var me = this; me.top += t; me.left += l; me.right += r; me.bottom += b; return me; } }; Ext.lib.Region.getRegion = function(el) { var p = Ext.lib.Dom.getXY(el), t = p[1], r = p[0] + el.offsetWidth, b = p[1] + el.offsetHeight, l = p[0]; return new Ext.lib.Region(t, r, b, l); }; Ext.lib.Point = function(x, y) { if (Ext.isArray(x)) { y = x[1]; x = x[0]; } var me = this; me.x = me.right = me.left = me[0] = x; me.y = me.top = me.bottom = me[1] = y; }; Ext.lib.Point.prototype = new Ext.lib.Region(); Ext.apply(Ext.DomHelper, function(){ var pub, afterbegin = 'afterbegin', afterend = 'afterend', beforebegin = 'beforebegin', beforeend = 'beforeend', confRe = /tag|children|cn|html$/i; function doInsert(el, o, returnElement, pos, sibling, append){ el = Ext.getDom(el); var newNode; if (pub.useDom) { newNode = createDom(o, null); if (append) { el.appendChild(newNode); } else { (sibling == 'firstChild' ? el : el.parentNode).insertBefore(newNode, el[sibling] || el); } } else { newNode = Ext.DomHelper.insertHtml(pos, el, Ext.DomHelper.createHtml(o)); } return returnElement ? Ext.get(newNode, true) : newNode; } function createDom(o, parentNode){ var el, doc = document, useSet, attr, val, cn; if (Ext.isArray(o)) { el = doc.createDocumentFragment(); for (var i = 0, l = o.length; i < l; i++) { createDom(o[i], el); } } else if (typeof o == 'string') { el = doc.createTextNode(o); } else { el = doc.createElement( o.tag || 'div' ); useSet = !!el.setAttribute; for (var attr in o) { if(!confRe.test(attr)){ val = o[attr]; if(attr == 'cls'){ el.className = val; }else{ if(useSet){ el.setAttribute(attr, val); }else{ el[attr] = val; } } } } Ext.DomHelper.applyStyles(el, o.style); if ((cn = o.children || o.cn)) { createDom(cn, el); } else if (o.html) { el.innerHTML = o.html; } } if(parentNode){ parentNode.appendChild(el); } return el; } pub = { createTemplate : function(o){ var html = Ext.DomHelper.createHtml(o); return new Ext.Template(html); }, useDom : false, insertBefore : function(el, o, returnElement){ return doInsert(el, o, returnElement, beforebegin); }, insertAfter : function(el, o, returnElement){ return doInsert(el, o, returnElement, afterend, 'nextSibling'); }, insertFirst : function(el, o, returnElement){ return doInsert(el, o, returnElement, afterbegin, 'firstChild'); }, append: function(el, o, returnElement){ return doInsert(el, o, returnElement, beforeend, '', true); }, createDom: createDom }; return pub; }()); Ext.apply(Ext.Template.prototype, { disableFormats : false, re : /\{([\w\-]+)(?:\:([\w\.]*)(?:\((.*?)?\))?)?\}/g, argsRe : /^\s*['"](.*)["']\s*$/, compileARe : /\\/g, compileBRe : /(\r\n|\n)/g, compileCRe : /'/g, /** * Returns an HTML fragment of this template with the specified values applied. * @param {Object/Array} values The template values. Can be an array if your params are numeric (i.e. {0}) or an object (i.e. {foo: 'bar'}) * @return {String} The HTML fragment * @hide repeat doc */ applyTemplate : function(values){ var me = this, useF = me.disableFormats !== true, fm = Ext.util.Format, tpl = me; if(me.compiled){ return me.compiled(values); } function fn(m, name, format, args){ if (format && useF) { if (format.substr(0, 5) == "this.") { return tpl.call(format.substr(5), values[name], values); } else { if (args) { // quoted values are required for strings in compiled templates, // but for non compiled we need to strip them // quoted reversed for jsmin var re = me.argsRe; args = args.split(','); for(var i = 0, len = args.length; i < len; i++){ args[i] = args[i].replace(re, "$1"); } args = [values[name]].concat(args); } else { args = [values[name]]; } return fm[format].apply(fm, args); } } else { return values[name] !== undefined ? values[name] : ""; } } return me.html.replace(me.re, fn); }, /** * Compiles the template into an internal function, eliminating the RegEx overhead. * @return {Ext.Template} this * @hide repeat doc */ compile : function(){ var me = this, fm = Ext.util.Format, useF = me.disableFormats !== true, sep = Ext.isGecko ? "+" : ",", body; function fn(m, name, format, args){ if(format && useF){ args = args ? ',' + args : ""; if(format.substr(0, 5) != "this."){ format = "fm." + format + '('; }else{ format = 'this.call("'+ format.substr(5) + '", '; args = ", values"; } }else{ args= ''; format = "(values['" + name + "'] == undefined ? '' : "; } return "'"+ sep + format + "values['" + name + "']" + args + ")"+sep+"'"; } // branched to use + in gecko and [].join() in others if(Ext.isGecko){ body = "this.compiled = function(values){ return '" + me.html.replace(me.compileARe, '\\\\').replace(me.compileBRe, '\\n').replace(me.compileCRe, "\\'").replace(me.re, fn) + "';};"; }else{ body = ["this.compiled = function(values){ return ['"]; body.push(me.html.replace(me.compileARe, '\\\\').replace(me.compileBRe, '\\n').replace(me.compileCRe, "\\'").replace(me.re, fn)); body.push("'].join('');};"); body = body.join(''); } eval(body); return me; }, // private function used to call members call : function(fnName, value, allValues){ return this[fnName](value, allValues); } }); Ext.Template.prototype.apply = Ext.Template.prototype.applyTemplate; /** * @class Ext.util.Functions * @singleton */ Ext.util.Functions = { /** * Creates an interceptor function. The passed function is called before the original one. If it returns false, * the original one is not called. The resulting function returns the results of the original function. * The passed function is called with the parameters of the original function. Example usage: * 
      
var sayHi = function(name){
    alert('Hi, ' + name);
}

sayHi('Fred'); // alerts "Hi, Fred"

// create a new function that validates input without
// directly modifying the original function:
var sayHiToFriend = Ext.createInterceptor(sayHi, function(name){
    return name == 'Brian';
});

sayHiToFriend('Fred');  // no alert
sayHiToFriend('Brian'); // alerts "Hi, Brian"
      * @param {Function} origFn The original function. * @param {Function} newFn The function to call before the original * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed. * If omitted, defaults to the scope in which the original function is called or the browser window. * @return {Function} The new function */ createInterceptor: function(origFn, newFn, scope) { var method = origFn; if (!Ext.isFunction(newFn)) { return origFn; } else { return function() { var me = this, args = arguments; newFn.target = me; newFn.method = origFn; return (newFn.apply(scope || me || window, args) !== false) ? origFn.apply(me || window, args) : null; }; } }, /** * Creates a delegate (callback) that sets the scope to obj. * Call directly on any function. Example: Ext.createDelegate(this.myFunction, this, [arg1, arg2]) * Will create a function that is automatically scoped to obj so that the this variable inside the * callback points to obj. Example usage: * 
      
var sayHi = function(name){
    // Note this use of "this.text" here.  This function expects to
    // execute within a scope that contains a text property.  In this
    // example, the "this" variable is pointing to the btn object that
    // was passed in createDelegate below.
    alert('Hi, ' + name + '. You clicked the "' + this.text + '" button.');
}

var btn = new Ext.Button({
    text: 'Say Hi',
    renderTo: Ext.getBody()
});

// This callback will execute in the scope of the
// button instance. Clicking the button alerts
// "Hi, Fred. You clicked the "Say Hi" button."
btn.on('click', Ext.createDelegate(sayHi, btn, ['Fred']));
      * @param {Function} fn The function to delegate. * @param {Object} scope (optional) The scope (this reference) in which the function is executed. * If omitted, defaults to the browser window. * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller) * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding, * if a number the args are inserted at the specified position * @return {Function} The new function */ createDelegate: function(fn, obj, args, appendArgs) { if (!Ext.isFunction(fn)) { return fn; } return function() { var callArgs = args || arguments; if (appendArgs === true) { callArgs = Array.prototype.slice.call(arguments, 0); callArgs = callArgs.concat(args); } else if (Ext.isNumber(appendArgs)) { callArgs = Array.prototype.slice.call(arguments, 0); // copy arguments first var applyArgs = [appendArgs, 0].concat(args); // create method call params Array.prototype.splice.apply(callArgs, applyArgs); // splice them in } return fn.apply(obj || window, callArgs); }; }, /** * Calls this function after the number of millseconds specified, optionally in a specific scope. Example usage: * 
      
var sayHi = function(name){
    alert('Hi, ' + name);
}

// executes immediately:
sayHi('Fred');

// executes after 2 seconds:
Ext.defer(sayHi, 2000, this, ['Fred']);

// this syntax is sometimes useful for deferring
// execution of an anonymous function:
Ext.defer(function(){
    alert('Anonymous');
}, 100);
      * @param {Function} fn The function to defer. * @param {Number} millis The number of milliseconds for the setTimeout call (if less than or equal to 0 the function is executed immediately) * @param {Object} scope (optional) The scope (this reference) in which the function is executed. * If omitted, defaults to the browser window. * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller) * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding, * if a number the args are inserted at the specified position * @return {Number} The timeout id that can be used with clearTimeout */ defer: function(fn, millis, obj, args, appendArgs) { fn = Ext.util.Functions.createDelegate(fn, obj, args, appendArgs); if (millis > 0) { return setTimeout(fn, millis); } fn(); return 0; }, /** * Create a combined function call sequence of the original function + the passed function. * The resulting function returns the results of the original function. * The passed fcn is called with the parameters of the original function. Example usage: * var sayHi = function(name){ alert('Hi, ' + name); } sayHi('Fred'); // alerts "Hi, Fred" var sayGoodbye = Ext.createSequence(sayHi, function(name){ alert('Bye, ' + name); }); sayGoodbye('Fred'); // both alerts show * @param {Function} origFn The original function. * @param {Function} newFn The function to sequence * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed. * If omitted, defaults to the scope in which the original function is called or the browser window. * @return {Function} The new function */ createSequence: function(origFn, newFn, scope) { if (!Ext.isFunction(newFn)) { return origFn; } else { return function() { var retval = origFn.apply(this || window, arguments); newFn.apply(scope || this || window, arguments); return retval; }; } } }; /** * Shorthand for {@link Ext.util.Functions#defer} * @param {Function} fn The function to defer. * @param {Number} millis The number of milliseconds for the setTimeout call (if less than or equal to 0 the function is executed immediately) * @param {Object} scope (optional) The scope (this reference) in which the function is executed. * If omitted, defaults to the browser window. * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller) * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding, * if a number the args are inserted at the specified position * @return {Number} The timeout id that can be used with clearTimeout * @member Ext * @method defer */ Ext.defer = Ext.util.Functions.defer; /** * Shorthand for {@link Ext.util.Functions#createInterceptor} * @param {Function} origFn The original function. * @param {Function} newFn The function to call before the original * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed. * If omitted, defaults to the scope in which the original function is called or the browser window. * @return {Function} The new function * @member Ext * @method createInterceptor */ Ext.createInterceptor = Ext.util.Functions.createInterceptor; /** * Shorthand for {@link Ext.util.Functions#createSequence} * @param {Function} origFn The original function. * @param {Function} newFn The function to sequence * @param {Object} scope (optional) The scope (this reference) in which the passed function is executed. * If omitted, defaults to the scope in which the original function is called or the browser window. * @return {Function} The new function * @member Ext * @method createSequence */ Ext.createSequence = Ext.util.Functions.createSequence; /** * Shorthand for {@link Ext.util.Functions#createDelegate} * @param {Function} fn The function to delegate. * @param {Object} scope (optional) The scope (this reference) in which the function is executed. * If omitted, defaults to the browser window. * @param {Array} args (optional) Overrides arguments for the call. (Defaults to the arguments passed by the caller) * @param {Boolean/Number} appendArgs (optional) if True args are appended to call args instead of overriding, * if a number the args are inserted at the specified position * @return {Function} The new function * @member Ext * @method createDelegate */ Ext.createDelegate = Ext.util.Functions.createDelegate; /** * @class Ext.util.Observable */ Ext.apply(Ext.util.Observable.prototype, function(){ // this is considered experimental (along with beforeMethod, afterMethod, removeMethodListener?) // allows for easier interceptor and sequences, including cancelling and overwriting the return value of the call // private function getMethodEvent(method){ var e = (this.methodEvents = this.methodEvents || {})[method], returnValue, v, cancel, obj = this; if (!e) { this.methodEvents[method] = e = {}; e.originalFn = this[method]; e.methodName = method; e.before = []; e.after = []; var makeCall = function(fn, scope, args){ if((v = fn.apply(scope || obj, args)) !== undefined){ if (typeof v == 'object') { if(v.returnValue !== undefined){ returnValue = v.returnValue; }else{ returnValue = v; } cancel = !!v.cancel; } else if (v === false) { cancel = true; } else { returnValue = v; } } }; this[method] = function(){ var args = Array.prototype.slice.call(arguments, 0), b; returnValue = v = undefined; cancel = false; for(var i = 0, len = e.before.length; i < len; i++){ b = e.before[i]; makeCall(b.fn, b.scope, args); if (cancel) { return returnValue; } } if((v = e.originalFn.apply(obj, args)) !== undefined){ returnValue = v; } for(var i = 0, len = e.after.length; i < len; i++){ b = e.after[i]; makeCall(b.fn, b.scope, args); if (cancel) { return returnValue; } } return returnValue; }; } return e; } return { // these are considered experimental // allows for easier interceptor and sequences, including cancelling and overwriting the return value of the call // adds an 'interceptor' called before the original method beforeMethod : function(method, fn, scope){ getMethodEvent.call(this, method).before.push({ fn: fn, scope: scope }); }, // adds a 'sequence' called after the original method afterMethod : function(method, fn, scope){ getMethodEvent.call(this, method).after.push({ fn: fn, scope: scope }); }, removeMethodListener: function(method, fn, scope){ var e = this.getMethodEvent(method); for(var i = 0, len = e.before.length; i < len; i++){ if(e.before[i].fn == fn && e.before[i].scope == scope){ e.before.splice(i, 1); return; } } for(var i = 0, len = e.after.length; i < len; i++){ if(e.after[i].fn == fn && e.after[i].scope == scope){ e.after.splice(i, 1); return; } } }, /** * Relays selected events from the specified Observable as if the events were fired by this. * @param {Object} o The Observable whose events this object is to relay. * @param {Array} events Array of event names to relay. */ relayEvents : function(o, events){ var me = this; function createHandler(ename){ return function(){ return me.fireEvent.apply(me, [ename].concat(Array.prototype.slice.call(arguments, 0))); }; } for(var i = 0, len = events.length; i < len; i++){ var ename = events[i]; me.events[ename] = me.events[ename] || true; o.on(ename, createHandler(ename), me); } }, /** *

      Enables events fired by this Observable to bubble up an owner hierarchy by calling * this.getBubbleTarget() if present. There is no implementation in the Observable base class.

      *

      This is commonly used by Ext.Components to bubble events to owner Containers. See {@link Ext.Component.getBubbleTarget}. The default * implementation in Ext.Component returns the Component's immediate owner. But if a known target is required, this can be overridden to * access the required target more quickly.

      *

      Example:

      
Ext.override(Ext.form.Field, {
    
    initComponent : Ext.form.Field.prototype.initComponent.createSequence(function() {
        this.enableBubble('change');
    }),

    
    getBubbleTarget : function() {
        if (!this.formPanel) {
            this.formPanel = this.findParentByType('form');
        }
        return this.formPanel;
    }
});

var myForm = new Ext.formPanel({
    title: 'User Details',
    items: [{
        ...
    }],
    listeners: {
        change: function() {
            
            myForm.header.setStyle('color', 'red');
        }
    }
});
      * @param {String/Array} events The event name to bubble, or an Array of event names. */ enableBubble : function(events){ var me = this; if(!Ext.isEmpty(events)){ events = Ext.isArray(events) ? events : Array.prototype.slice.call(arguments, 0); for(var i = 0, len = events.length; i < len; i++){ var ename = events[i]; ename = ename.toLowerCase(); var ce = me.events[ename] || true; if (typeof ce == 'boolean') { ce = new Ext.util.Event(me, ename); me.events[ename] = ce; } ce.bubble = true; } } } }; }()); Ext.util.Observable.capture = function(o, fn, scope){ o.fireEvent = o.fireEvent.createInterceptor(fn, scope); }; Ext.util.Observable.observeClass = function(c, listeners){ if(c){ if(!c.fireEvent){ Ext.apply(c, new Ext.util.Observable()); Ext.util.Observable.capture(c.prototype, c.fireEvent, c); } if(typeof listeners == 'object'){ c.on(listeners); } return c; } }; Ext.apply(Ext.EventManager, function(){ var resizeEvent, resizeTask, textEvent, textSize, D = Ext.lib.Dom, propRe = /^(?:scope|delay|buffer|single|stopEvent|preventDefault|stopPropagation|normalized|args|delegate)$/, unload = Ext.EventManager._unload, curWidth = 0, curHeight = 0, useKeydown = Ext.isWebKit ? Ext.num(navigator.userAgent.match(/AppleWebKit\/(\d+)/)[1]) >= 525 : !((Ext.isGecko && !Ext.isWindows) || Ext.isOpera); return { _unload: function(){ Ext.EventManager.un(window, "resize", this.fireWindowResize, this); unload.call(Ext.EventManager); }, doResizeEvent: function(){ var h = D.getViewHeight(), w = D.getViewWidth(); if(curHeight != h || curWidth != w){ resizeEvent.fire(curWidth = w, curHeight = h); } }, onWindowResize : function(fn, scope, options){ if(!resizeEvent){ resizeEvent = new Ext.util.Event(); resizeTask = new Ext.util.DelayedTask(this.doResizeEvent); Ext.EventManager.on(window, "resize", this.fireWindowResize, this); } resizeEvent.addListener(fn, scope, options); }, fireWindowResize : function(){ if(resizeEvent){ resizeTask.delay(100); } }, onTextResize : function(fn, scope, options){ if(!textEvent){ textEvent = new Ext.util.Event(); var textEl = new Ext.Element(document.createElement('div')); textEl.dom.className = 'x-text-resize'; textEl.dom.innerHTML = 'X'; textEl.appendTo(document.body); textSize = textEl.dom.offsetHeight; setInterval(function(){ if(textEl.dom.offsetHeight != textSize){ textEvent.fire(textSize, textSize = textEl.dom.offsetHeight); } }, this.textResizeInterval); } textEvent.addListener(fn, scope, options); }, removeResizeListener : function(fn, scope){ if(resizeEvent){ resizeEvent.removeListener(fn, scope); } }, fireResize : function(){ if(resizeEvent){ resizeEvent.fire(D.getViewWidth(), D.getViewHeight()); } }, textResizeInterval : 50, ieDeferSrc : false, getKeyEvent : function(){ return useKeydown ? 'keydown' : 'keypress'; }, useKeydown: useKeydown }; }()); Ext.EventManager.on = Ext.EventManager.addListener; Ext.apply(Ext.EventObjectImpl.prototype, { BACKSPACE: 8, TAB: 9, NUM_CENTER: 12, ENTER: 13, RETURN: 13, SHIFT: 16, CTRL: 17, CONTROL : 17, ALT: 18, PAUSE: 19, CAPS_LOCK: 20, ESC: 27, SPACE: 32, PAGE_UP: 33, PAGEUP : 33, PAGE_DOWN: 34, PAGEDOWN : 34, END: 35, HOME: 36, LEFT: 37, UP: 38, RIGHT: 39, DOWN: 40, PRINT_SCREEN: 44, INSERT: 45, DELETE: 46, ZERO: 48, ONE: 49, TWO: 50, THREE: 51, FOUR: 52, FIVE: 53, SIX: 54, SEVEN: 55, EIGHT: 56, NINE: 57, A: 65, B: 66, C: 67, D: 68, E: 69, F: 70, G: 71, H: 72, I: 73, J: 74, K: 75, L: 76, M: 77, N: 78, O: 79, P: 80, Q: 81, R: 82, S: 83, T: 84, U: 85, V: 86, W: 87, X: 88, Y: 89, Z: 90, CONTEXT_MENU: 93, NUM_ZERO: 96, NUM_ONE: 97, NUM_TWO: 98, NUM_THREE: 99, NUM_FOUR: 100, NUM_FIVE: 101, NUM_SIX: 102, NUM_SEVEN: 103, NUM_EIGHT: 104, NUM_NINE: 105, NUM_MULTIPLY: 106, NUM_PLUS: 107, NUM_MINUS: 109, NUM_PERIOD: 110, NUM_DIVISION: 111, F1: 112, F2: 113, F3: 114, F4: 115, F5: 116, F6: 117, F7: 118, F8: 119, F9: 120, F10: 121, F11: 122, F12: 123, isNavKeyPress : function(){ var me = this, k = this.normalizeKey(me.keyCode); return (k >= 33 && k <= 40) || k == me.RETURN || k == me.TAB || k == me.ESC; }, isSpecialKey : function(){ var k = this.normalizeKey(this.keyCode); return (this.type == 'keypress' && this.ctrlKey) || this.isNavKeyPress() || (k == this.BACKSPACE) || (k >= 16 && k <= 20) || (k >= 44 && k <= 46); }, getPoint : function(){ return new Ext.lib.Point(this.xy[0], this.xy[1]); }, hasModifier : function(){ return ((this.ctrlKey || this.altKey) || this.shiftKey); } }); Ext.Element.addMethods({ swallowEvent : function(eventName, preventDefault) { var me = this; function fn(e) { e.stopPropagation(); if (preventDefault) { e.preventDefault(); } } if (Ext.isArray(eventName)) { Ext.each(eventName, function(e) { me.on(e, fn); }); return me; } me.on(eventName, fn); return me; }, relayEvent : function(eventName, observable) { this.on(eventName, function(e) { observable.fireEvent(eventName, e); }); }, clean : function(forceReclean) { var me = this, dom = me.dom, n = dom.firstChild, ni = -1; if (Ext.Element.data(dom, 'isCleaned') && forceReclean !== true) { return me; } while (n) { var nx = n.nextSibling; if (n.nodeType == 3 && !(/\S/.test(n.nodeValue))) { dom.removeChild(n); } else { n.nodeIndex = ++ni; } n = nx; } Ext.Element.data(dom, 'isCleaned', true); return me; }, load : function() { var updateManager = this.getUpdater(); updateManager.update.apply(updateManager, arguments); return this; }, getUpdater : function() { return this.updateManager || (this.updateManager = new Ext.Updater(this)); }, update : function(html, loadScripts, callback) { if (!this.dom) { return this; } html = html || ""; if (loadScripts !== true) { this.dom.innerHTML = html; if (typeof callback == 'function') { callback(); } return this; } var id = Ext.id(), dom = this.dom; html += ''; Ext.lib.Event.onAvailable(id, function() { var DOC = document, hd = DOC.getElementsByTagName("head")[0], re = /(?:]*)?>)((\n|\r|.)*?)(?:<\/script>)/ig, srcRe = /\ssrc=([\'\"])(.*?)\1/i, typeRe = /\stype=([\'\"])(.*?)\1/i, match, attrs, srcMatch, typeMatch, el, s; while ((match = re.exec(html))) { attrs = match[1]; srcMatch = attrs ? attrs.match(srcRe) : false; if (srcMatch && srcMatch[2]) { s = DOC.createElement("script"); s.src = srcMatch[2]; typeMatch = attrs.match(typeRe); if (typeMatch && typeMatch[2]) { s.type = typeMatch[2]; } hd.appendChild(s); } else if (match[2] && match[2].length > 0) { if (window.execScript) { window.execScript(match[2]); } else { window.eval(match[2]); } } } el = DOC.getElementById(id); if (el) { Ext.removeNode(el); } if (typeof callback == 'function') { callback(); } }); dom.innerHTML = html.replace(/(?:)((\n|\r|.)*?)(?:<\/script>)/ig, ""); return this; }, removeAllListeners : function() { this.removeAnchor(); Ext.EventManager.removeAll(this.dom); return this; }, createProxy : function(config, renderTo, matchBox) { config = (typeof config == 'object') ? config : {tag : "div", cls: config}; var me = this, proxy = renderTo ? Ext.DomHelper.append(renderTo, config, true) : Ext.DomHelper.insertBefore(me.dom, config, true); if (matchBox && me.setBox && me.getBox) { proxy.setBox(me.getBox()); } return proxy; } }); Ext.Element.prototype.getUpdateManager = Ext.Element.prototype.getUpdater; Ext.Element.addMethods({ getAnchorXY : function(anchor, local, s){ anchor = (anchor || "tl").toLowerCase(); s = s || {}; var me = this, vp = me.dom == document.body || me.dom == document, w = s.width || vp ? Ext.lib.Dom.getViewWidth() : me.getWidth(), h = s.height || vp ? Ext.lib.Dom.getViewHeight() : me.getHeight(), xy, r = Math.round, o = me.getXY(), scroll = me.getScroll(), extraX = vp ? scroll.left : !local ? o[0] : 0, extraY = vp ? scroll.top : !local ? o[1] : 0, hash = { c : [r(w * 0.5), r(h * 0.5)], t : [r(w * 0.5), 0], l : [0, r(h * 0.5)], r : [w, r(h * 0.5)], b : [r(w * 0.5), h], tl : [0, 0], bl : [0, h], br : [w, h], tr : [w, 0] }; xy = hash[anchor]; return [xy[0] + extraX, xy[1] + extraY]; }, anchorTo : function(el, alignment, offsets, animate, monitorScroll, callback){ var me = this, dom = me.dom, scroll = !Ext.isEmpty(monitorScroll), action = function(){ Ext.fly(dom).alignTo(el, alignment, offsets, animate); Ext.callback(callback, Ext.fly(dom)); }, anchor = this.getAnchor(); this.removeAnchor(); Ext.apply(anchor, { fn: action, scroll: scroll }); Ext.EventManager.onWindowResize(action, null); if(scroll){ Ext.EventManager.on(window, 'scroll', action, null, {buffer: !isNaN(monitorScroll) ? monitorScroll : 50}); } action.call(me); return me; }, removeAnchor : function(){ var me = this, anchor = this.getAnchor(); if(anchor && anchor.fn){ Ext.EventManager.removeResizeListener(anchor.fn); if(anchor.scroll){ Ext.EventManager.un(window, 'scroll', anchor.fn); } delete anchor.fn; } return me; }, getAnchor : function(){ var data = Ext.Element.data, dom = this.dom; if (!dom) { return; } var anchor = data(dom, '_anchor'); if(!anchor){ anchor = data(dom, '_anchor', {}); } return anchor; }, getAlignToXY : function(el, p, o){ el = Ext.get(el); if(!el || !el.dom){ throw "Element.alignToXY with an element that doesn't exist"; } o = o || [0,0]; p = (!p || p == "?" ? "tl-bl?" : (!(/-/).test(p) && p !== "" ? "tl-" + p : p || "tl-bl")).toLowerCase(); var me = this, d = me.dom, a1, a2, x, y, w, h, r, dw = Ext.lib.Dom.getViewWidth() -10, dh = Ext.lib.Dom.getViewHeight()-10, p1y, p1x, p2y, p2x, swapY, swapX, doc = document, docElement = doc.documentElement, docBody = doc.body, scrollX = (docElement.scrollLeft || docBody.scrollLeft || 0)+5, scrollY = (docElement.scrollTop || docBody.scrollTop || 0)+5, c = false, p1 = "", p2 = "", m = p.match(/^([a-z]+)-([a-z]+)(\?)?$/); if(!m){ throw "Element.alignTo with an invalid alignment " + p; } p1 = m[1]; p2 = m[2]; c = !!m[3]; a1 = me.getAnchorXY(p1, true); a2 = el.getAnchorXY(p2, false); x = a2[0] - a1[0] + o[0]; y = a2[1] - a1[1] + o[1]; if(c){ w = me.getWidth(); h = me.getHeight(); r = el.getRegion(); p1y = p1.charAt(0); p1x = p1.charAt(p1.length-1); p2y = p2.charAt(0); p2x = p2.charAt(p2.length-1); swapY = ((p1y=="t" && p2y=="b") || (p1y=="b" && p2y=="t")); swapX = ((p1x=="r" && p2x=="l") || (p1x=="l" && p2x=="r")); if (x + w > dw + scrollX) { x = swapX ? r.left-w : dw+scrollX-w; } if (x < scrollX) { x = swapX ? r.right : scrollX; } if (y + h > dh + scrollY) { y = swapY ? r.top-h : dh+scrollY-h; } if (y < scrollY){ y = swapY ? r.bottom : scrollY; } } return [x,y]; }, alignTo : function(element, position, offsets, animate){ var me = this; return me.setXY(me.getAlignToXY(element, position, offsets), me.preanim && !!animate ? me.preanim(arguments, 3) : false); }, adjustForConstraints : function(xy, parent, offsets){ return this.getConstrainToXY(parent || document, false, offsets, xy) || xy; }, getConstrainToXY : function(el, local, offsets, proposedXY){ var os = {top:0, left:0, bottom:0, right: 0}; return function(el, local, offsets, proposedXY){ el = Ext.get(el); offsets = offsets ? Ext.applyIf(offsets, os) : os; var vw, vh, vx = 0, vy = 0; if(el.dom == document.body || el.dom == document){ vw =Ext.lib.Dom.getViewWidth(); vh = Ext.lib.Dom.getViewHeight(); }else{ vw = el.dom.clientWidth; vh = el.dom.clientHeight; if(!local){ var vxy = el.getXY(); vx = vxy[0]; vy = vxy[1]; } } var s = el.getScroll(); vx += offsets.left + s.left; vy += offsets.top + s.top; vw -= offsets.right; vh -= offsets.bottom; var vr = vx + vw, vb = vy + vh, xy = proposedXY || (!local ? this.getXY() : [this.getLeft(true), this.getTop(true)]), x = xy[0], y = xy[1], offset = this.getConstrainOffset(), w = this.dom.offsetWidth + offset, h = this.dom.offsetHeight + offset; var moved = false; if((x + w) > vr){ x = vr - w; moved = true; } if((y + h) > vb){ y = vb - h; moved = true; } if(x < vx){ x = vx; moved = true; } if(y < vy){ y = vy; moved = true; } return moved ? [x, y] : false; }; }(), getConstrainOffset : function(){ return 0; }, getCenterXY : function(){ return this.getAlignToXY(document, 'c-c'); }, center : function(centerIn){ return this.alignTo(centerIn || document, 'c-c'); } }); Ext.Element.addMethods({ select : function(selector, unique){ return Ext.Element.select(selector, unique, this.dom); } }); Ext.apply(Ext.Element.prototype, function() { var GETDOM = Ext.getDom, GET = Ext.get, DH = Ext.DomHelper; return { insertSibling: function(el, where, returnDom){ var me = this, rt, isAfter = (where || 'before').toLowerCase() == 'after', insertEl; if(Ext.isArray(el)){ insertEl = me; Ext.each(el, function(e) { rt = Ext.fly(insertEl, '_internal').insertSibling(e, where, returnDom); if(isAfter){ insertEl = rt; } }); return rt; } el = el || {}; if(el.nodeType || el.dom){ rt = me.dom.parentNode.insertBefore(GETDOM(el), isAfter ? me.dom.nextSibling : me.dom); if (!returnDom) { rt = GET(rt); } }else{ if (isAfter && !me.dom.nextSibling) { rt = DH.append(me.dom.parentNode, el, !returnDom); } else { rt = DH[isAfter ? 'insertAfter' : 'insertBefore'](me.dom, el, !returnDom); } } return rt; } }; }()); Ext.Element.boxMarkup = '
      '; Ext.Element.addMethods(function(){ var INTERNAL = "_internal", pxMatch = /(\d+\.?\d+)px/; return { applyStyles : function(style){ Ext.DomHelper.applyStyles(this.dom, style); return this; }, getStyles : function(){ var ret = {}; Ext.each(arguments, function(v) { ret[v] = this.getStyle(v); }, this); return ret; }, setOverflow : function(v){ var dom = this.dom; if(v=='auto' && Ext.isMac && Ext.isGecko2){ dom.style.overflow = 'hidden'; (function(){dom.style.overflow = 'auto';}).defer(1); }else{ dom.style.overflow = v; } }, boxWrap : function(cls){ cls = cls || 'x-box'; var el = Ext.get(this.insertHtml("beforeBegin", "
      " + String.format(Ext.Element.boxMarkup, cls) + "
      ")); Ext.DomQuery.selectNode('.' + cls + '-mc', el.dom).appendChild(this.dom); return el; }, setSize : function(width, height, animate){ var me = this; if(typeof width == 'object'){ height = width.height; width = width.width; } width = me.adjustWidth(width); height = me.adjustHeight(height); if(!animate || !me.anim){ me.dom.style.width = me.addUnits(width); me.dom.style.height = me.addUnits(height); }else{ me.anim({width: {to: width}, height: {to: height}}, me.preanim(arguments, 2)); } return me; }, getComputedHeight : function(){ var me = this, h = Math.max(me.dom.offsetHeight, me.dom.clientHeight); if(!h){ h = parseFloat(me.getStyle('height')) || 0; if(!me.isBorderBox()){ h += me.getFrameWidth('tb'); } } return h; }, getComputedWidth : function(){ var w = Math.max(this.dom.offsetWidth, this.dom.clientWidth); if(!w){ w = parseFloat(this.getStyle('width')) || 0; if(!this.isBorderBox()){ w += this.getFrameWidth('lr'); } } return w; }, getFrameWidth : function(sides, onlyContentBox){ return onlyContentBox && this.isBorderBox() ? 0 : (this.getPadding(sides) + this.getBorderWidth(sides)); }, addClassOnOver : function(className){ this.hover( function(){ Ext.fly(this, INTERNAL).addClass(className); }, function(){ Ext.fly(this, INTERNAL).removeClass(className); } ); return this; }, addClassOnFocus : function(className){ this.on("focus", function(){ Ext.fly(this, INTERNAL).addClass(className); }, this.dom); this.on("blur", function(){ Ext.fly(this, INTERNAL).removeClass(className); }, this.dom); return this; }, addClassOnClick : function(className){ var dom = this.dom; this.on("mousedown", function(){ Ext.fly(dom, INTERNAL).addClass(className); var d = Ext.getDoc(), fn = function(){ Ext.fly(dom, INTERNAL).removeClass(className); d.removeListener("mouseup", fn); }; d.on("mouseup", fn); }); return this; }, getViewSize : function(){ var doc = document, d = this.dom, isDoc = (d == doc || d == doc.body); if (isDoc) { var extdom = Ext.lib.Dom; return { width : extdom.getViewWidth(), height : extdom.getViewHeight() }; } else { return { width : d.clientWidth, height : d.clientHeight }; } }, getStyleSize : function(){ var me = this, w, h, doc = document, d = this.dom, isDoc = (d == doc || d == doc.body), s = d.style; if (isDoc) { var extdom = Ext.lib.Dom; return { width : extdom.getViewWidth(), height : extdom.getViewHeight() }; } if(s.width && s.width != 'auto'){ w = parseFloat(s.width); if(me.isBorderBox()){ w -= me.getFrameWidth('lr'); } } if(s.height && s.height != 'auto'){ h = parseFloat(s.height); if(me.isBorderBox()){ h -= me.getFrameWidth('tb'); } } return {width: w || me.getWidth(true), height: h || me.getHeight(true)}; }, getSize : function(contentSize){ return {width: this.getWidth(contentSize), height: this.getHeight(contentSize)}; }, repaint : function(){ var dom = this.dom; this.addClass("x-repaint"); setTimeout(function(){ Ext.fly(dom).removeClass("x-repaint"); }, 1); return this; }, unselectable : function(){ this.dom.unselectable = "on"; return this.swallowEvent("selectstart", true). addClass("x-unselectable"); }, getMargins : function(side){ var me = this, key, hash = {t:"top", l:"left", r:"right", b: "bottom"}, o = {}; if (!side) { for (key in me.margins){ o[hash[key]] = parseFloat(me.getStyle(me.margins[key])) || 0; } return o; } else { return me.addStyles.call(me, side, me.margins); } } }; }()); Ext.Element.addMethods({ setBox : function(box, adjust, animate){ var me = this, w = box.width, h = box.height; if((adjust && !me.autoBoxAdjust) && !me.isBorderBox()){ w -= (me.getBorderWidth("lr") + me.getPadding("lr")); h -= (me.getBorderWidth("tb") + me.getPadding("tb")); } me.setBounds(box.x, box.y, w, h, me.animTest.call(me, arguments, animate, 2)); return me; }, getBox : function(contentBox, local) { var me = this, xy, left, top, getBorderWidth = me.getBorderWidth, getPadding = me.getPadding, l, r, t, b; if(!local){ xy = me.getXY(); }else{ left = parseInt(me.getStyle("left"), 10) || 0; top = parseInt(me.getStyle("top"), 10) || 0; xy = [left, top]; } var el = me.dom, w = el.offsetWidth, h = el.offsetHeight, bx; if(!contentBox){ bx = {x: xy[0], y: xy[1], 0: xy[0], 1: xy[1], width: w, height: h}; }else{ l = getBorderWidth.call(me, "l") + getPadding.call(me, "l"); r = getBorderWidth.call(me, "r") + getPadding.call(me, "r"); t = getBorderWidth.call(me, "t") + getPadding.call(me, "t"); b = getBorderWidth.call(me, "b") + getPadding.call(me, "b"); bx = {x: xy[0]+l, y: xy[1]+t, 0: xy[0]+l, 1: xy[1]+t, width: w-(l+r), height: h-(t+b)}; } bx.right = bx.x + bx.width; bx.bottom = bx.y + bx.height; return bx; }, move : function(direction, distance, animate){ var me = this, xy = me.getXY(), x = xy[0], y = xy[1], left = [x - distance, y], right = [x + distance, y], top = [x, y - distance], bottom = [x, y + distance], hash = { l : left, left : left, r : right, right : right, t : top, top : top, up : top, b : bottom, bottom : bottom, down : bottom }; direction = direction.toLowerCase(); me.moveTo(hash[direction][0], hash[direction][1], me.animTest.call(me, arguments, animate, 2)); }, setLeftTop : function(left, top){ var me = this, style = me.dom.style; style.left = me.addUnits(left); style.top = me.addUnits(top); return me; }, getRegion : function(){ return Ext.lib.Dom.getRegion(this.dom); }, setBounds : function(x, y, width, height, animate){ var me = this; if (!animate || !me.anim) { me.setSize(width, height); me.setLocation(x, y); } else { me.anim({points: {to: [x, y]}, width: {to: me.adjustWidth(width)}, height: {to: me.adjustHeight(height)}}, me.preanim(arguments, 4), 'motion'); } return me; }, setRegion : function(region, animate) { return this.setBounds(region.left, region.top, region.right-region.left, region.bottom-region.top, this.animTest.call(this, arguments, animate, 1)); } }); Ext.Element.addMethods({ scrollTo : function(side, value, animate) { var top = /top/i.test(side), me = this, dom = me.dom, prop; if (!animate || !me.anim) { prop = 'scroll' + (top ? 'Top' : 'Left'); dom[prop] = value; } else { prop = 'scroll' + (top ? 'Left' : 'Top'); me.anim({scroll: {to: top ? [dom[prop], value] : [value, dom[prop]]}}, me.preanim(arguments, 2), 'scroll'); } return me; }, scrollIntoView : function(container, hscroll) { var c = Ext.getDom(container) || Ext.getBody().dom, el = this.dom, o = this.getOffsetsTo(c), l = o[0] + c.scrollLeft, t = o[1] + c.scrollTop, b = t + el.offsetHeight, r = l + el.offsetWidth, ch = c.clientHeight, ct = parseInt(c.scrollTop, 10), cl = parseInt(c.scrollLeft, 10), cb = ct + ch, cr = cl + c.clientWidth; if (el.offsetHeight > ch || t < ct) { c.scrollTop = t; } else if (b > cb) { c.scrollTop = b-ch; } c.scrollTop = c.scrollTop; if (hscroll !== false) { if (el.offsetWidth > c.clientWidth || l < cl) { c.scrollLeft = l; } else if (r > cr) { c.scrollLeft = r - c.clientWidth; } c.scrollLeft = c.scrollLeft; } return this; }, scrollChildIntoView : function(child, hscroll) { Ext.fly(child, '_scrollChildIntoView').scrollIntoView(this, hscroll); }, scroll : function(direction, distance, animate) { if (!this.isScrollable()) { return false; } var el = this.dom, l = el.scrollLeft, t = el.scrollTop, w = el.scrollWidth, h = el.scrollHeight, cw = el.clientWidth, ch = el.clientHeight, scrolled = false, v, hash = { l: Math.min(l + distance, w-cw), r: v = Math.max(l - distance, 0), t: Math.max(t - distance, 0), b: Math.min(t + distance, h-ch) }; hash.d = hash.b; hash.u = hash.t; direction = direction.substr(0, 1); if ((v = hash[direction]) > -1) { scrolled = true; this.scrollTo(direction == 'l' || direction == 'r' ? 'left' : 'top', v, this.preanim(arguments, 2)); } return scrolled; } }); Ext.Element.addMethods( function() { var VISIBILITY = "visibility", DISPLAY = "display", HIDDEN = "hidden", NONE = "none", XMASKED = "x-masked", XMASKEDRELATIVE = "x-masked-relative", data = Ext.Element.data; return { isVisible : function(deep) { var vis = !this.isStyle(VISIBILITY, HIDDEN) && !this.isStyle(DISPLAY, NONE), p = this.dom.parentNode; if (deep !== true || !vis) { return vis; } while (p && !(/^body/i.test(p.tagName))) { if (!Ext.fly(p, '_isVisible').isVisible()) { return false; } p = p.parentNode; } return true; }, isDisplayed : function() { return !this.isStyle(DISPLAY, NONE); }, enableDisplayMode : function(display) { this.setVisibilityMode(Ext.Element.DISPLAY); if (!Ext.isEmpty(display)) { data(this.dom, 'originalDisplay', display); } return this; }, mask : function(msg, msgCls) { var me = this, dom = me.dom, dh = Ext.DomHelper, EXTELMASKMSG = "ext-el-mask-msg", el, mask; if (!/^body/i.test(dom.tagName) && me.getStyle('position') == 'static') { me.addClass(XMASKEDRELATIVE); } if (el = data(dom, 'maskMsg')) { el.remove(); } if (el = data(dom, 'mask')) { el.remove(); } mask = dh.append(dom, {cls : "ext-el-mask"}, true); data(dom, 'mask', mask); me.addClass(XMASKED); mask.setDisplayed(true); if (typeof msg == 'string') { var mm = dh.append(dom, {cls : EXTELMASKMSG, cn:{tag:'div'}}, true); data(dom, 'maskMsg', mm); mm.dom.className = msgCls ? EXTELMASKMSG + " " + msgCls : EXTELMASKMSG; mm.dom.firstChild.innerHTML = msg; mm.setDisplayed(true); mm.center(me); } if (Ext.isIE && !(Ext.isIE7 && Ext.isStrict) && me.getStyle('height') == 'auto') { mask.setSize(undefined, me.getHeight()); } return mask; }, unmask : function() { var me = this, dom = me.dom, mask = data(dom, 'mask'), maskMsg = data(dom, 'maskMsg'); if (mask) { if (maskMsg) { maskMsg.remove(); data(dom, 'maskMsg', undefined); } mask.remove(); data(dom, 'mask', undefined); me.removeClass([XMASKED, XMASKEDRELATIVE]); } }, isMasked : function() { var m = data(this.dom, 'mask'); return m && m.isVisible(); }, createShim : function() { var el = document.createElement('iframe'), shim; el.frameBorder = '0'; el.className = 'ext-shim'; el.src = Ext.SSL_SECURE_URL; shim = Ext.get(this.dom.parentNode.insertBefore(el, this.dom)); shim.autoBoxAdjust = false; return shim; } }; }() ); Ext.Element.addMethods({ addKeyListener : function(key, fn, scope){ var config; if(typeof key != 'object' || Ext.isArray(key)){ config = { key: key, fn: fn, scope: scope }; }else{ config = { key : key.key, shift : key.shift, ctrl : key.ctrl, alt : key.alt, fn: fn, scope: scope }; } return new Ext.KeyMap(this, config); }, addKeyMap : function(config){ return new Ext.KeyMap(this, config); } }); Ext.CompositeElementLite.importElementMethods(); Ext.apply(Ext.CompositeElementLite.prototype, { addElements : function(els, root){ if(!els){ return this; } if(typeof els == "string"){ els = Ext.Element.selectorFunction(els, root); } var yels = this.elements; Ext.each(els, function(e) { yels.push(Ext.get(e)); }); return this; }, first : function(){ return this.item(0); }, last : function(){ return this.item(this.getCount()-1); }, contains : function(el){ return this.indexOf(el) != -1; }, removeElement : function(keys, removeDom){ var me = this, els = this.elements, el; Ext.each(keys, function(val){ if ((el = (els[val] || els[val = me.indexOf(val)]))) { if(removeDom){ if(el.dom){ el.remove(); }else{ Ext.removeNode(el); } } els.splice(val, 1); } }); return this; } }); Ext.CompositeElement = Ext.extend(Ext.CompositeElementLite, { constructor : function(els, root){ this.elements = []; this.add(els, root); }, getElement : function(el){ return el; }, transformElement : function(el){ return Ext.get(el); } }); Ext.Element.select = function(selector, unique, root){ var els; if(typeof selector == "string"){ els = Ext.Element.selectorFunction(selector, root); }else if(selector.length !== undefined){ els = selector; }else{ throw "Invalid selector"; } return (unique === true) ? new Ext.CompositeElement(els) : new Ext.CompositeElementLite(els); }; Ext.select = Ext.Element.select; Ext.UpdateManager = Ext.Updater = Ext.extend(Ext.util.Observable, function() { var BEFOREUPDATE = "beforeupdate", UPDATE = "update", FAILURE = "failure"; function processSuccess(response){ var me = this; me.transaction = null; if (response.argument.form && response.argument.reset) { try { response.argument.form.reset(); } catch(e){} } if (me.loadScripts) { me.renderer.render(me.el, response, me, updateComplete.createDelegate(me, [response])); } else { me.renderer.render(me.el, response, me); updateComplete.call(me, response); } } function updateComplete(response, type, success){ this.fireEvent(type || UPDATE, this.el, response); if(Ext.isFunction(response.argument.callback)){ response.argument.callback.call(response.argument.scope, this.el, Ext.isEmpty(success) ? true : false, response, response.argument.options); } } function processFailure(response){ updateComplete.call(this, response, FAILURE, !!(this.transaction = null)); } return { constructor: function(el, forceNew){ var me = this; el = Ext.get(el); if(!forceNew && el.updateManager){ return el.updateManager; } me.el = el; me.defaultUrl = null; me.addEvents( BEFOREUPDATE, UPDATE, FAILURE ); Ext.apply(me, Ext.Updater.defaults); me.transaction = null; me.refreshDelegate = me.refresh.createDelegate(me); me.updateDelegate = me.update.createDelegate(me); me.formUpdateDelegate = (me.formUpdate || function(){}).createDelegate(me); me.renderer = me.renderer || me.getDefaultRenderer(); Ext.Updater.superclass.constructor.call(me); }, setRenderer : function(renderer){ this.renderer = renderer; }, getRenderer : function(){ return this.renderer; }, getDefaultRenderer: function() { return new Ext.Updater.BasicRenderer(); }, setDefaultUrl : function(defaultUrl){ this.defaultUrl = defaultUrl; }, getEl : function(){ return this.el; }, update : function(url, params, callback, discardUrl){ var me = this, cfg, callerScope; if(me.fireEvent(BEFOREUPDATE, me.el, url, params) !== false){ if(Ext.isObject(url)){ cfg = url; url = cfg.url; params = params || cfg.params; callback = callback || cfg.callback; discardUrl = discardUrl || cfg.discardUrl; callerScope = cfg.scope; if(!Ext.isEmpty(cfg.nocache)){me.disableCaching = cfg.nocache;}; if(!Ext.isEmpty(cfg.text)){me.indicatorText = '
      '+cfg.text+"
      ";}; if(!Ext.isEmpty(cfg.scripts)){me.loadScripts = cfg.scripts;}; if(!Ext.isEmpty(cfg.timeout)){me.timeout = cfg.timeout;}; } me.showLoading(); if(!discardUrl){ me.defaultUrl = url; } if(Ext.isFunction(url)){ url = url.call(me); } var o = Ext.apply({}, { url : url, params: (Ext.isFunction(params) && callerScope) ? params.createDelegate(callerScope) : params, success: processSuccess, failure: processFailure, scope: me, callback: undefined, timeout: (me.timeout*1000), disableCaching: me.disableCaching, argument: { "options": cfg, "url": url, "form": null, "callback": callback, "scope": callerScope || window, "params": params } }, cfg); me.transaction = Ext.Ajax.request(o); } }, formUpdate : function(form, url, reset, callback){ var me = this; if(me.fireEvent(BEFOREUPDATE, me.el, form, url) !== false){ if(Ext.isFunction(url)){ url = url.call(me); } form = Ext.getDom(form); me.transaction = Ext.Ajax.request({ form: form, url:url, success: processSuccess, failure: processFailure, scope: me, timeout: (me.timeout*1000), argument: { "url": url, "form": form, "callback": callback, "reset": reset } }); me.showLoading.defer(1, me); } }, startAutoRefresh : function(interval, url, params, callback, refreshNow){ var me = this; if(refreshNow){ me.update(url || me.defaultUrl, params, callback, true); } if(me.autoRefreshProcId){ clearInterval(me.autoRefreshProcId); } me.autoRefreshProcId = setInterval(me.update.createDelegate(me, [url || me.defaultUrl, params, callback, true]), interval * 1000); }, stopAutoRefresh : function(){ if(this.autoRefreshProcId){ clearInterval(this.autoRefreshProcId); delete this.autoRefreshProcId; } }, isAutoRefreshing : function(){ return !!this.autoRefreshProcId; }, showLoading : function(){ if(this.showLoadIndicator){ this.el.dom.innerHTML = this.indicatorText; } }, abort : function(){ if(this.transaction){ Ext.Ajax.abort(this.transaction); } }, isUpdating : function(){ return this.transaction ? Ext.Ajax.isLoading(this.transaction) : false; }, refresh : function(callback){ if(this.defaultUrl){ this.update(this.defaultUrl, null, callback, true); } } }; }()); Ext.Updater.defaults = { timeout : 30, disableCaching : false, showLoadIndicator : true, indicatorText : '
      Loading...
      ', loadScripts : false, sslBlankUrl : Ext.SSL_SECURE_URL }; Ext.Updater.updateElement = function(el, url, params, options){ var um = Ext.get(el).getUpdater(); Ext.apply(um, options); um.update(url, params, options ? options.callback : null); }; Ext.Updater.BasicRenderer = function(){}; Ext.Updater.BasicRenderer.prototype = { render : function(el, response, updateManager, callback){ el.update(response.responseText, updateManager.loadScripts, callback); } }; (function() { Date.useStrict = false; function xf(format) { var args = Array.prototype.slice.call(arguments, 1); return format.replace(/\{(\d+)\}/g, function(m, i) { return args[i]; }); } Date.formatCodeToRegex = function(character, currentGroup) { var p = Date.parseCodes[character]; if (p) { p = typeof p == 'function'? p() : p; Date.parseCodes[character] = p; } return p ? Ext.applyIf({ c: p.c ? xf(p.c, currentGroup || "{0}") : p.c }, p) : { g:0, c:null, s:Ext.escapeRe(character) }; }; var $f = Date.formatCodeToRegex; Ext.apply(Date, { parseFunctions: { "M$": function(input, strict) { var re = new RegExp('\\/Date\\(([-+])?(\\d+)(?:[+-]\\d{4})?\\)\\/'); var r = (input || '').match(re); return r? new Date(((r[1] || '') + r[2]) * 1) : null; } }, parseRegexes: [], formatFunctions: { "M$": function() { return '\\/Date(' + this.getTime() + ')\\/'; } }, y2kYear : 50, MILLI : "ms", SECOND : "s", MINUTE : "mi", HOUR : "h", DAY : "d", MONTH : "mo", YEAR : "y", defaults: {}, dayNames : [ "Sunday", "Monday", "Tuesday", "Wednesday", "Thursday", "Friday", "Saturday" ], monthNames : [ "January", "February", "March", "April", "May", "June", "July", "August", "September", "October", "November", "December" ], monthNumbers : { Jan:0, Feb:1, Mar:2, Apr:3, May:4, Jun:5, Jul:6, Aug:7, Sep:8, Oct:9, Nov:10, Dec:11 }, getShortMonthName : function(month) { return Date.monthNames[month].substring(0, 3); }, getShortDayName : function(day) { return Date.dayNames[day].substring(0, 3); }, getMonthNumber : function(name) { return Date.monthNumbers[name.substring(0, 1).toUpperCase() + name.substring(1, 3).toLowerCase()]; }, formatContainsHourInfo : (function(){ var stripEscapeRe = /(\\.)/g, hourInfoRe = /([gGhHisucUOPZ]|M\$)/; return function(format){ return hourInfoRe.test(format.replace(stripEscapeRe, '')); }; })(), formatCodes : { d: "String.leftPad(this.getDate(), 2, '0')", D: "Date.getShortDayName(this.getDay())", j: "this.getDate()", l: "Date.dayNames[this.getDay()]", N: "(this.getDay() ? this.getDay() : 7)", S: "this.getSuffix()", w: "this.getDay()", z: "this.getDayOfYear()", W: "String.leftPad(this.getWeekOfYear(), 2, '0')", F: "Date.monthNames[this.getMonth()]", m: "String.leftPad(this.getMonth() + 1, 2, '0')", M: "Date.getShortMonthName(this.getMonth())", n: "(this.getMonth() + 1)", t: "this.getDaysInMonth()", L: "(this.isLeapYear() ? 1 : 0)", o: "(this.getFullYear() + (this.getWeekOfYear() == 1 && this.getMonth() > 0 ? +1 : (this.getWeekOfYear() >= 52 && this.getMonth() < 11 ? -1 : 0)))", Y: "String.leftPad(this.getFullYear(), 4, '0')", y: "('' + this.getFullYear()).substring(2, 4)", a: "(this.getHours() < 12 ? 'am' : 'pm')", A: "(this.getHours() < 12 ? 'AM' : 'PM')", g: "((this.getHours() % 12) ? this.getHours() % 12 : 12)", G: "this.getHours()", h: "String.leftPad((this.getHours() % 12) ? this.getHours() % 12 : 12, 2, '0')", H: "String.leftPad(this.getHours(), 2, '0')", i: "String.leftPad(this.getMinutes(), 2, '0')", s: "String.leftPad(this.getSeconds(), 2, '0')", u: "String.leftPad(this.getMilliseconds(), 3, '0')", O: "this.getGMTOffset()", P: "this.getGMTOffset(true)", T: "this.getTimezone()", Z: "(this.getTimezoneOffset() * -60)", c: function() { for (var c = "Y-m-dTH:i:sP", code = [], i = 0, l = c.length; i < l; ++i) { var e = c.charAt(i); code.push(e == "T" ? "'T'" : Date.getFormatCode(e)); } return code.join(" + "); }, U: "Math.round(this.getTime() / 1000)" }, isValid : function(y, m, d, h, i, s, ms) { h = h || 0; i = i || 0; s = s || 0; ms = ms || 0; var dt = new Date(y < 100 ? 100 : y, m - 1, d, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0); return y == dt.getFullYear() && m == dt.getMonth() + 1 && d == dt.getDate() && h == dt.getHours() && i == dt.getMinutes() && s == dt.getSeconds() && ms == dt.getMilliseconds(); }, parseDate : function(input, format, strict) { var p = Date.parseFunctions; if (p[format] == null) { Date.createParser(format); } return p[format](input, Ext.isDefined(strict) ? strict : Date.useStrict); }, getFormatCode : function(character) { var f = Date.formatCodes[character]; if (f) { f = typeof f == 'function'? f() : f; Date.formatCodes[character] = f; } return f || ("'" + String.escape(character) + "'"); }, createFormat : function(format) { var code = [], special = false, ch = ''; for (var i = 0; i < format.length; ++i) { ch = format.charAt(i); if (!special && ch == "\\") { special = true; } else if (special) { special = false; code.push("'" + String.escape(ch) + "'"); } else { code.push(Date.getFormatCode(ch)); } } Date.formatFunctions[format] = new Function("return " + code.join('+')); }, createParser : function() { var code = [ "var dt, y, m, d, h, i, s, ms, o, z, zz, u, v,", "def = Date.defaults,", "results = String(input).match(Date.parseRegexes[{0}]);", "if(results){", "{1}", "if(u != null){", "v = new Date(u * 1000);", "}else{", "dt = (new Date()).clearTime();", "y = Ext.num(y, Ext.num(def.y, dt.getFullYear()));", "m = Ext.num(m, Ext.num(def.m - 1, dt.getMonth()));", "d = Ext.num(d, Ext.num(def.d, dt.getDate()));", "h = Ext.num(h, Ext.num(def.h, dt.getHours()));", "i = Ext.num(i, Ext.num(def.i, dt.getMinutes()));", "s = Ext.num(s, Ext.num(def.s, dt.getSeconds()));", "ms = Ext.num(ms, Ext.num(def.ms, dt.getMilliseconds()));", "if(z >= 0 && y >= 0){", "v = new Date(y < 100 ? 100 : y, 0, 1, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);", "v = !strict? v : (strict === true && (z <= 364 || (v.isLeapYear() && z <= 365))? v.add(Date.DAY, z) : null);", "}else if(strict === true && !Date.isValid(y, m + 1, d, h, i, s, ms)){", "v = null;", "}else{", "v = new Date(y < 100 ? 100 : y, m, d, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);", "}", "}", "}", "if(v){", "if(zz != null){", "v = v.add(Date.SECOND, -v.getTimezoneOffset() * 60 - zz);", "}else if(o){", "v = v.add(Date.MINUTE, -v.getTimezoneOffset() + (sn == '+'? -1 : 1) * (hr * 60 + mn));", "}", "}", "return v;" ].join('\n'); return function(format) { var regexNum = Date.parseRegexes.length, currentGroup = 1, calc = [], regex = [], special = false, ch = "", i = 0, obj, last; for (; i < format.length; ++i) { ch = format.charAt(i); if (!special && ch == "\\") { special = true; } else if (special) { special = false; regex.push(String.escape(ch)); } else { obj = $f(ch, currentGroup); currentGroup += obj.g; regex.push(obj.s); if (obj.g && obj.c) { if (obj.calcLast) { last = obj.c; } else { calc.push(obj.c); } } } } if (last) { calc.push(last); } Date.parseRegexes[regexNum] = new RegExp("^" + regex.join('') + "$", 'i'); Date.parseFunctions[format] = new Function("input", "strict", xf(code, regexNum, calc.join(''))); }; }(), parseCodes : { d: { g:1, c:"d = parseInt(results[{0}], 10);\n", s:"(\\d{2})" }, j: { g:1, c:"d = parseInt(results[{0}], 10);\n", s:"(\\d{1,2})" }, D: function() { for (var a = [], i = 0; i < 7; a.push(Date.getShortDayName(i)), ++i); return { g:0, c:null, s:"(?:" + a.join("|") +")" }; }, l: function() { return { g:0, c:null, s:"(?:" + Date.dayNames.join("|") + ")" }; }, N: { g:0, c:null, s:"[1-7]" }, S: { g:0, c:null, s:"(?:st|nd|rd|th)" }, w: { g:0, c:null, s:"[0-6]" }, z: { g:1, c:"z = parseInt(results[{0}], 10);\n", s:"(\\d{1,3})" }, W: { g:0, c:null, s:"(?:\\d{2})" }, F: function() { return { g:1, c:"m = parseInt(Date.getMonthNumber(results[{0}]), 10);\n", s:"(" + Date.monthNames.join("|") + ")" }; }, M: function() { for (var a = [], i = 0; i < 12; a.push(Date.getShortMonthName(i)), ++i); return Ext.applyIf({ s:"(" + a.join("|") + ")" }, $f("F")); }, m: { g:1, c:"m = parseInt(results[{0}], 10) - 1;\n", s:"(\\d{2})" }, n: { g:1, c:"m = parseInt(results[{0}], 10) - 1;\n", s:"(\\d{1,2})" }, t: { g:0, c:null, s:"(?:\\d{2})" }, L: { g:0, c:null, s:"(?:1|0)" }, o: function() { return $f("Y"); }, Y: { g:1, c:"y = parseInt(results[{0}], 10);\n", s:"(\\d{4})" }, y: { g:1, c:"var ty = parseInt(results[{0}], 10);\n" + "y = ty > Date.y2kYear ? 1900 + ty : 2000 + ty;\n", s:"(\\d{1,2})" }, a: function(){ return $f("A"); }, A: { calcLast: true, g:1, c:"if (/(am)/i.test(results[{0}])) {\n" + "if (!h || h == 12) { h = 0; }\n" + "} else { if (!h || h < 12) { h = (h || 0) + 12; }}", s:"(AM|PM|am|pm)" }, g: function() { return $f("G"); }, G: { g:1, c:"h = parseInt(results[{0}], 10);\n", s:"(\\d{1,2})" }, h: function() { return $f("H"); }, H: { g:1, c:"h = parseInt(results[{0}], 10);\n", s:"(\\d{2})" }, i: { g:1, c:"i = parseInt(results[{0}], 10);\n", s:"(\\d{2})" }, s: { g:1, c:"s = parseInt(results[{0}], 10);\n", s:"(\\d{2})" }, u: { g:1, c:"ms = results[{0}]; ms = parseInt(ms, 10)/Math.pow(10, ms.length - 3);\n", s:"(\\d+)" }, O: { g:1, c:[ "o = results[{0}];", "var sn = o.substring(0,1),", "hr = o.substring(1,3)*1 + Math.floor(o.substring(3,5) / 60),", "mn = o.substring(3,5) % 60;", "o = ((-12 <= (hr*60 + mn)/60) && ((hr*60 + mn)/60 <= 14))? (sn + String.leftPad(hr, 2, '0') + String.leftPad(mn, 2, '0')) : null;\n" ].join("\n"), s: "([+\-]\\d{4})" }, P: { g:1, c:[ "o = results[{0}];", "var sn = o.substring(0,1),", "hr = o.substring(1,3)*1 + Math.floor(o.substring(4,6) / 60),", "mn = o.substring(4,6) % 60;", "o = ((-12 <= (hr*60 + mn)/60) && ((hr*60 + mn)/60 <= 14))? (sn + String.leftPad(hr, 2, '0') + String.leftPad(mn, 2, '0')) : null;\n" ].join("\n"), s: "([+\-]\\d{2}:\\d{2})" }, T: { g:0, c:null, s:"[A-Z]{1,4}" }, Z: { g:1, c:"zz = results[{0}] * 1;\n" + "zz = (-43200 <= zz && zz <= 50400)? zz : null;\n", s:"([+\-]?\\d{1,5})" }, c: function() { var calc = [], arr = [ $f("Y", 1), $f("m", 2), $f("d", 3), $f("h", 4), $f("i", 5), $f("s", 6), {c:"ms = results[7] || '0'; ms = parseInt(ms, 10)/Math.pow(10, ms.length - 3);\n"}, {c:[ "if(results[8]) {", "if(results[8] == 'Z'){", "zz = 0;", "}else if (results[8].indexOf(':') > -1){", $f("P", 8).c, "}else{", $f("O", 8).c, "}", "}" ].join('\n')} ]; for (var i = 0, l = arr.length; i < l; ++i) { calc.push(arr[i].c); } return { g:1, c:calc.join(""), s:[ arr[0].s, "(?:", "-", arr[1].s, "(?:", "-", arr[2].s, "(?:", "(?:T| )?", arr[3].s, ":", arr[4].s, "(?::", arr[5].s, ")?", "(?:(?:\\.|,)(\\d+))?", "(Z|(?:[-+]\\d{2}(?::)?\\d{2}))?", ")?", ")?", ")?" ].join("") }; }, U: { g:1, c:"u = parseInt(results[{0}], 10);\n", s:"(-?\\d+)" } } }); }()); Ext.apply(Date.prototype, { dateFormat : function(format) { if (Date.formatFunctions[format] == null) { Date.createFormat(format); } return Date.formatFunctions[format].call(this); }, getTimezone : function() { return this.toString().replace(/^.* (?:\((.*)\)|([A-Z]{1,4})(?:[\-+][0-9]{4})?(?: -?\d+)?)$/, "$1$2").replace(/[^A-Z]/g, ""); }, getGMTOffset : function(colon) { return (this.getTimezoneOffset() > 0 ? "-" : "+") + String.leftPad(Math.floor(Math.abs(this.getTimezoneOffset()) / 60), 2, "0") + (colon ? ":" : "") + String.leftPad(Math.abs(this.getTimezoneOffset() % 60), 2, "0"); }, getDayOfYear: function() { var num = 0, d = this.clone(), m = this.getMonth(), i; for (i = 0, d.setDate(1), d.setMonth(0); i < m; d.setMonth(++i)) { num += d.getDaysInMonth(); } return num + this.getDate() - 1; }, getWeekOfYear : function() { var ms1d = 864e5, ms7d = 7 * ms1d; return function() { var DC3 = Date.UTC(this.getFullYear(), this.getMonth(), this.getDate() + 3) / ms1d, AWN = Math.floor(DC3 / 7), Wyr = new Date(AWN * ms7d).getUTCFullYear(); return AWN - Math.floor(Date.UTC(Wyr, 0, 7) / ms7d) + 1; }; }(), isLeapYear : function() { var year = this.getFullYear(); return !!((year & 3) == 0 && (year % 100 || (year % 400 == 0 && year))); }, getFirstDayOfMonth : function() { var day = (this.getDay() - (this.getDate() - 1)) % 7; return (day < 0) ? (day + 7) : day; }, getLastDayOfMonth : function() { return this.getLastDateOfMonth().getDay(); }, getFirstDateOfMonth : function() { return new Date(this.getFullYear(), this.getMonth(), 1); }, getLastDateOfMonth : function() { return new Date(this.getFullYear(), this.getMonth(), this.getDaysInMonth()); }, getDaysInMonth: function() { var daysInMonth = [31, 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31]; return function() { var m = this.getMonth(); return m == 1 && this.isLeapYear() ? 29 : daysInMonth[m]; }; }(), getSuffix : function() { switch (this.getDate()) { case 1: case 21: case 31: return "st"; case 2: case 22: return "nd"; case 3: case 23: return "rd"; default: return "th"; } }, clone : function() { return new Date(this.getTime()); }, isDST : function() { return new Date(this.getFullYear(), 0, 1).getTimezoneOffset() != this.getTimezoneOffset(); }, clearTime : function(clone) { if (clone) { return this.clone().clearTime(); } var d = this.getDate(); this.setHours(0); this.setMinutes(0); this.setSeconds(0); this.setMilliseconds(0); if (this.getDate() != d) { for (var hr = 1, c = this.add(Date.HOUR, hr); c.getDate() != d; hr++, c = this.add(Date.HOUR, hr)); this.setDate(d); this.setHours(c.getHours()); } return this; }, add : function(interval, value) { var d = this.clone(); if (!interval || value === 0) return d; switch(interval.toLowerCase()) { case Date.MILLI: d.setMilliseconds(this.getMilliseconds() + value); break; case Date.SECOND: d.setSeconds(this.getSeconds() + value); break; case Date.MINUTE: d.setMinutes(this.getMinutes() + value); break; case Date.HOUR: d.setHours(this.getHours() + value); break; case Date.DAY: d.setDate(this.getDate() + value); break; case Date.MONTH: var day = this.getDate(); if (day > 28) { day = Math.min(day, this.getFirstDateOfMonth().add('mo', value).getLastDateOfMonth().getDate()); } d.setDate(day); d.setMonth(this.getMonth() + value); break; case Date.YEAR: d.setFullYear(this.getFullYear() + value); break; } return d; }, between : function(start, end) { var t = this.getTime(); return start.getTime() <= t && t <= end.getTime(); } }); Date.prototype.format = Date.prototype.dateFormat; if (Ext.isSafari && (navigator.userAgent.match(/WebKit\/(\d+)/)[1] || NaN) < 420) { Ext.apply(Date.prototype, { _xMonth : Date.prototype.setMonth, _xDate : Date.prototype.setDate, setMonth : function(num) { if (num <= -1) { var n = Math.ceil(-num), back_year = Math.ceil(n / 12), month = (n % 12) ? 12 - n % 12 : 0; this.setFullYear(this.getFullYear() - back_year); return this._xMonth(month); } else { return this._xMonth(num); } }, setDate : function(d) { return this.setTime(this.getTime() - (this.getDate() - d) * 864e5); } }); } Ext.util.MixedCollection = function(allowFunctions, keyFn){ this.items = []; this.map = {}; this.keys = []; this.length = 0; this.addEvents( 'clear', 'add', 'replace', 'remove', 'sort' ); this.allowFunctions = allowFunctions === true; if(keyFn){ this.getKey = keyFn; } Ext.util.MixedCollection.superclass.constructor.call(this); }; Ext.extend(Ext.util.MixedCollection, Ext.util.Observable, { allowFunctions : false, add : function(key, o){ if(arguments.length == 1){ o = arguments[0]; key = this.getKey(o); } if(typeof key != 'undefined' && key !== null){ var old = this.map[key]; if(typeof old != 'undefined'){ return this.replace(key, o); } this.map[key] = o; } this.length++; this.items.push(o); this.keys.push(key); this.fireEvent('add', this.length-1, o, key); return o; }, getKey : function(o){ return o.id; }, replace : function(key, o){ if(arguments.length == 1){ o = arguments[0]; key = this.getKey(o); } var old = this.map[key]; if(typeof key == 'undefined' || key === null || typeof old == 'undefined'){ return this.add(key, o); } var index = this.indexOfKey(key); this.items[index] = o; this.map[key] = o; this.fireEvent('replace', key, old, o); return o; }, addAll : function(objs){ if(arguments.length > 1 || Ext.isArray(objs)){ var args = arguments.length > 1 ? arguments : objs; for(var i = 0, len = args.length; i < len; i++){ this.add(args[i]); } }else{ for(var key in objs){ if(this.allowFunctions || typeof objs[key] != 'function'){ this.add(key, objs[key]); } } } }, each : function(fn, scope){ var items = [].concat(this.items); for(var i = 0, len = items.length; i < len; i++){ if(fn.call(scope || items[i], items[i], i, len) === false){ break; } } }, eachKey : function(fn, scope){ for(var i = 0, len = this.keys.length; i < len; i++){ fn.call(scope || window, this.keys[i], this.items[i], i, len); } }, find : function(fn, scope){ for(var i = 0, len = this.items.length; i < len; i++){ if(fn.call(scope || window, this.items[i], this.keys[i])){ return this.items[i]; } } return null; }, insert : function(index, key, o){ if(arguments.length == 2){ o = arguments[1]; key = this.getKey(o); } if(this.containsKey(key)){ this.suspendEvents(); this.removeKey(key); this.resumeEvents(); } if(index >= this.length){ return this.add(key, o); } this.length++; this.items.splice(index, 0, o); if(typeof key != 'undefined' && key !== null){ this.map[key] = o; } this.keys.splice(index, 0, key); this.fireEvent('add', index, o, key); return o; }, remove : function(o){ return this.removeAt(this.indexOf(o)); }, removeAt : function(index){ if(index < this.length && index >= 0){ this.length--; var o = this.items[index]; this.items.splice(index, 1); var key = this.keys[index]; if(typeof key != 'undefined'){ delete this.map[key]; } this.keys.splice(index, 1); this.fireEvent('remove', o, key); return o; } return false; }, removeKey : function(key){ return this.removeAt(this.indexOfKey(key)); }, getCount : function(){ return this.length; }, indexOf : function(o){ return this.items.indexOf(o); }, indexOfKey : function(key){ return this.keys.indexOf(key); }, item : function(key){ var mk = this.map[key], item = mk !== undefined ? mk : (typeof key == 'number') ? this.items[key] : undefined; return typeof item != 'function' || this.allowFunctions ? item : null; }, itemAt : function(index){ return this.items[index]; }, key : function(key){ return this.map[key]; }, contains : function(o){ return this.indexOf(o) != -1; }, containsKey : function(key){ return typeof this.map[key] != 'undefined'; }, clear : function(){ this.length = 0; this.items = []; this.keys = []; this.map = {}; this.fireEvent('clear'); }, first : function(){ return this.items[0]; }, last : function(){ return this.items[this.length-1]; }, _sort : function(property, dir, fn){ var i, len, dsc = String(dir).toUpperCase() == 'DESC' ? -1 : 1, c = [], keys = this.keys, items = this.items; fn = fn || function(a, b) { return a - b; }; for(i = 0, len = items.length; i < len; i++){ c[c.length] = { key : keys[i], value: items[i], index: i }; } c.sort(function(a, b){ var v = fn(a[property], b[property]) * dsc; if(v === 0){ v = (a.index < b.index ? -1 : 1); } return v; }); for(i = 0, len = c.length; i < len; i++){ items[i] = c[i].value; keys[i] = c[i].key; } this.fireEvent('sort', this); }, sort : function(dir, fn){ this._sort('value', dir, fn); }, reorder: function(mapping) { this.suspendEvents(); var items = this.items, index = 0, length = items.length, order = [], remaining = [], oldIndex; for (oldIndex in mapping) { order[mapping[oldIndex]] = items[oldIndex]; } for (index = 0; index < length; index++) { if (mapping[index] == undefined) { remaining.push(items[index]); } } for (index = 0; index < length; index++) { if (order[index] == undefined) { order[index] = remaining.shift(); } } this.clear(); this.addAll(order); this.resumeEvents(); this.fireEvent('sort', this); }, keySort : function(dir, fn){ this._sort('key', dir, fn || function(a, b){ var v1 = String(a).toUpperCase(), v2 = String(b).toUpperCase(); return v1 > v2 ? 1 : (v1 < v2 ? -1 : 0); }); }, getRange : function(start, end){ var items = this.items; if(items.length < 1){ return []; } start = start || 0; end = Math.min(typeof end == 'undefined' ? this.length-1 : end, this.length-1); var i, r = []; if(start <= end){ for(i = start; i <= end; i++) { r[r.length] = items[i]; } }else{ for(i = start; i >= end; i--) { r[r.length] = items[i]; } } return r; }, filter : function(property, value, anyMatch, caseSensitive){ if(Ext.isEmpty(value, false)){ return this.clone(); } value = this.createValueMatcher(value, anyMatch, caseSensitive); return this.filterBy(function(o){ return o && value.test(o[property]); }); }, filterBy : function(fn, scope){ var r = new Ext.util.MixedCollection(); r.getKey = this.getKey; var k = this.keys, it = this.items; for(var i = 0, len = it.length; i < len; i++){ if(fn.call(scope||this, it[i], k[i])){ r.add(k[i], it[i]); } } return r; }, findIndex : function(property, value, start, anyMatch, caseSensitive){ if(Ext.isEmpty(value, false)){ return -1; } value = this.createValueMatcher(value, anyMatch, caseSensitive); return this.findIndexBy(function(o){ return o && value.test(o[property]); }, null, start); }, findIndexBy : function(fn, scope, start){ var k = this.keys, it = this.items; for(var i = (start||0), len = it.length; i < len; i++){ if(fn.call(scope||this, it[i], k[i])){ return i; } } return -1; }, createValueMatcher : function(value, anyMatch, caseSensitive, exactMatch) { if (!value.exec) { var er = Ext.escapeRe; value = String(value); if (anyMatch === true) { value = er(value); } else { value = '^' + er(value); if (exactMatch === true) { value += '$'; } } value = new RegExp(value, caseSensitive ? '' : 'i'); } return value; }, clone : function(){ var r = new Ext.util.MixedCollection(); var k = this.keys, it = this.items; for(var i = 0, len = it.length; i < len; i++){ r.add(k[i], it[i]); } r.getKey = this.getKey; return r; } }); Ext.util.MixedCollection.prototype.get = Ext.util.MixedCollection.prototype.item; Ext.AbstractManager = Ext.extend(Object, { typeName: 'type', constructor: function(config) { Ext.apply(this, config || {}); this.all = new Ext.util.MixedCollection(); this.types = {}; }, get : function(id){ return this.all.get(id); }, register: function(item) { this.all.add(item); }, unregister: function(item) { this.all.remove(item); }, registerType : function(type, cls){ this.types[type] = cls; cls[this.typeName] = type; }, isRegistered : function(type){ return this.types[type] !== undefined; }, create: function(config, defaultType) { var type = config[this.typeName] || config.type || defaultType, Constructor = this.types[type]; if (Constructor == undefined) { throw new Error(String.format("The '{0}' type has not been registered with this manager", type)); } return new Constructor(config); }, onAvailable : function(id, fn, scope){ var all = this.all; all.on("add", function(index, o){ if (o.id == id) { fn.call(scope || o, o); all.un("add", fn, scope); } }); } }); Ext.util.Format = function() { var trimRe = /^\s+|\s+$/g, stripTagsRE = /<\/?[^>]+>/gi, stripScriptsRe = /(?:)((\n|\r|.)*?)(?:<\/script>)/ig, nl2brRe = /\r?\n/g; return { ellipsis : function(value, len, word) { if (value && value.length > len) { if (word) { var vs = value.substr(0, len - 2), index = Math.max(vs.lastIndexOf(' '), vs.lastIndexOf('.'), vs.lastIndexOf('!'), vs.lastIndexOf('?')); if (index == -1 || index < (len - 15)) { return value.substr(0, len - 3) + "..."; } else { return vs.substr(0, index) + "..."; } } else { return value.substr(0, len - 3) + "..."; } } return value; }, undef : function(value) { return value !== undefined ? value : ""; }, defaultValue : function(value, defaultValue) { if (!defaultValue && defaultValue !== 0) { defaultValue = ''; } return value !== undefined && value !== '' ? value : defaultValue; }, htmlEncode : function(value) { return !value ? value : String(value).replace(/&/g, "&").replace(/>/g, ">").replace(/").replace(/</g, "<").replace(/"/g, '"').replace(/&/g, "&"); }, trim : function(value) { return String(value).replace(trimRe, ""); }, substr : function(value, start, length) { return String(value).substr(start, length); }, lowercase : function(value) { return String(value).toLowerCase(); }, uppercase : function(value) { return String(value).toUpperCase(); }, capitalize : function(value) { return !value ? value : value.charAt(0).toUpperCase() + value.substr(1).toLowerCase(); }, call : function(value, fn) { if (arguments.length > 2) { var args = Array.prototype.slice.call(arguments, 2); args.unshift(value); return eval(fn).apply(window, args); } else { return eval(fn).call(window, value); } }, usMoney : function(v) { v = (Math.round((v-0)*100))/100; v = (v == Math.floor(v)) ? v + ".00" : ((v*10 == Math.floor(v*10)) ? v + "0" : v); v = String(v); var ps = v.split('.'), whole = ps[0], sub = ps[1] ? '.'+ ps[1] : '.00', r = /(\d+)(\d{3})/; while (r.test(whole)) { whole = whole.replace(r, '$1' + ',' + '$2'); } v = whole + sub; if (v.charAt(0) == '-') { return '-$' + v.substr(1); } return "$" + v; }, date : function(v, format) { if (!v) { return ""; } if (!Ext.isDate(v)) { v = new Date(Date.parse(v)); } return v.dateFormat(format || "m/d/Y"); }, dateRenderer : function(format) { return function(v) { return Ext.util.Format.date(v, format); }; }, stripTags : function(v) { return !v ? v : String(v).replace(stripTagsRE, ""); }, stripScripts : function(v) { return !v ? v : String(v).replace(stripScriptsRe, ""); }, fileSize : function(size) { if (size < 1024) { return size + " bytes"; } else if (size < 1048576) { return (Math.round(((size*10) / 1024))/10) + " KB"; } else { return (Math.round(((size*10) / 1048576))/10) + " MB"; } }, math : function(){ var fns = {}; return function(v, a){ if (!fns[a]) { fns[a] = new Function('v', 'return v ' + a + ';'); } return fns[a](v); }; }(), round : function(value, precision) { var result = Number(value); if (typeof precision == 'number') { precision = Math.pow(10, precision); result = Math.round(value * precision) / precision; } return result; }, number: function(v, format) { if (!format) { return v; } v = Ext.num(v, NaN); if (isNaN(v)) { return ''; } var comma = ',', dec = '.', i18n = false, neg = v < 0; v = Math.abs(v); if (format.substr(format.length - 2) == '/i') { format = format.substr(0, format.length - 2); i18n = true; comma = '.'; dec = ','; } var hasComma = format.indexOf(comma) != -1, psplit = (i18n ? format.replace(/[^\d\,]/g, '') : format.replace(/[^\d\.]/g, '')).split(dec); if (1 < psplit.length) { v = v.toFixed(psplit[1].length); } else if(2 < psplit.length) { throw ('NumberFormatException: invalid format, formats should have no more than 1 period: ' + format); } else { v = v.toFixed(0); } var fnum = v.toString(); psplit = fnum.split('.'); if (hasComma) { var cnum = psplit[0], parr = [], j = cnum.length, m = Math.floor(j / 3), n = cnum.length % 3 || 3, i; for (i = 0; i < j; i += n) { if (i != 0) { n = 3; } parr[parr.length] = cnum.substr(i, n); m -= 1; } fnum = parr.join(comma); if (psplit[1]) { fnum += dec + psplit[1]; } } else { if (psplit[1]) { fnum = psplit[0] + dec + psplit[1]; } } return (neg ? '-' : '') + format.replace(/[\d,?\.?]+/, fnum); }, numberRenderer : function(format) { return function(v) { return Ext.util.Format.number(v, format); }; }, plural : function(v, s, p) { return v +' ' + (v == 1 ? s : (p ? p : s+'s')); }, nl2br : function(v) { return Ext.isEmpty(v) ? '' : v.replace(nl2brRe, '
      '); } }; }(); Ext.XTemplate = function(){ Ext.XTemplate.superclass.constructor.apply(this, arguments); var me = this, s = me.html, re = /]*>((?:(?=([^<]+))\2|<(?!tpl\b[^>]*>))*?)<\/tpl>/, nameRe = /^]*?for="(.*?)"/, ifRe = /^]*?if="(.*?)"/, execRe = /^]*?exec="(.*?)"/, m, id = 0, tpls = [], VALUES = 'values', PARENT = 'parent', XINDEX = 'xindex', XCOUNT = 'xcount', RETURN = 'return ', WITHVALUES = 'with(values){ '; s = ['', s, ''].join(''); while((m = s.match(re))){ var m2 = m[0].match(nameRe), m3 = m[0].match(ifRe), m4 = m[0].match(execRe), exp = null, fn = null, exec = null, name = m2 && m2[1] ? m2[1] : ''; if (m3) { exp = m3 && m3[1] ? m3[1] : null; if(exp){ fn = new Function(VALUES, PARENT, XINDEX, XCOUNT, WITHVALUES + RETURN +(Ext.util.Format.htmlDecode(exp))+'; }'); } } if (m4) { exp = m4 && m4[1] ? m4[1] : null; if(exp){ exec = new Function(VALUES, PARENT, XINDEX, XCOUNT, WITHVALUES +(Ext.util.Format.htmlDecode(exp))+'; }'); } } if(name){ switch(name){ case '.': name = new Function(VALUES, PARENT, WITHVALUES + RETURN + VALUES + '; }'); break; case '..': name = new Function(VALUES, PARENT, WITHVALUES + RETURN + PARENT + '; }'); break; default: name = new Function(VALUES, PARENT, WITHVALUES + RETURN + name + '; }'); } } tpls.push({ id: id, target: name, exec: exec, test: fn, body: m[1]||'' }); s = s.replace(m[0], '{xtpl'+ id + '}'); ++id; } for(var i = tpls.length-1; i >= 0; --i){ me.compileTpl(tpls[i]); } me.master = tpls[tpls.length-1]; me.tpls = tpls; }; Ext.extend(Ext.XTemplate, Ext.Template, { re : /\{([\w\-\.\#]+)(?:\:([\w\.]*)(?:\((.*?)?\))?)?(\s?[\+\-\*\\]\s?[\d\.\+\-\*\\\(\)]+)?\}/g, codeRe : /\{\[((?:\\\]|.|\n)*?)\]\}/g, applySubTemplate : function(id, values, parent, xindex, xcount){ var me = this, len, t = me.tpls[id], vs, buf = []; if ((t.test && !t.test.call(me, values, parent, xindex, xcount)) || (t.exec && t.exec.call(me, values, parent, xindex, xcount))) { return ''; } vs = t.target ? t.target.call(me, values, parent) : values; len = vs.length; parent = t.target ? values : parent; if(t.target && Ext.isArray(vs)){ for(var i = 0, len = vs.length; i < len; i++){ buf[buf.length] = t.compiled.call(me, vs[i], parent, i+1, len); } return buf.join(''); } return t.compiled.call(me, vs, parent, xindex, xcount); }, compileTpl : function(tpl){ var fm = Ext.util.Format, useF = this.disableFormats !== true, sep = Ext.isGecko ? "+" : ",", body; function fn(m, name, format, args, math){ if(name.substr(0, 4) == 'xtpl'){ return "'"+ sep +'this.applySubTemplate('+name.substr(4)+', values, parent, xindex, xcount)'+sep+"'"; } var v; if(name === '.'){ v = 'values'; }else if(name === '#'){ v = 'xindex'; }else if(name.indexOf('.') != -1){ v = name; }else{ v = "values['" + name + "']"; } if(math){ v = '(' + v + math + ')'; } if (format && useF) { args = args ? ',' + args : ""; if(format.substr(0, 5) != "this."){ format = "fm." + format + '('; }else{ format = 'this.call("'+ format.substr(5) + '", '; args = ", values"; } } else { args= ''; format = "("+v+" === undefined ? '' : "; } return "'"+ sep + format + v + args + ")"+sep+"'"; } function codeFn(m, code){ return "'" + sep + '(' + code.replace(/\\'/g, "'") + ')' + sep + "'"; } if(Ext.isGecko){ body = "tpl.compiled = function(values, parent, xindex, xcount){ return '" + tpl.body.replace(/(\r\n|\n)/g, '\\n').replace(/'/g, "\\'").replace(this.re, fn).replace(this.codeRe, codeFn) + "';};"; }else{ body = ["tpl.compiled = function(values, parent, xindex, xcount){ return ['"]; body.push(tpl.body.replace(/(\r\n|\n)/g, '\\n').replace(/'/g, "\\'").replace(this.re, fn).replace(this.codeRe, codeFn)); body.push("'].join('');};"); body = body.join(''); } eval(body); return this; }, applyTemplate : function(values){ return this.master.compiled.call(this, values, {}, 1, 1); }, compile : function(){return this;} }); Ext.XTemplate.prototype.apply = Ext.XTemplate.prototype.applyTemplate; Ext.XTemplate.from = function(el){ el = Ext.getDom(el); return new Ext.XTemplate(el.value || el.innerHTML); }; Ext.util.CSS = function(){ var rules = null; var doc = document; var camelRe = /(-[a-z])/gi; var camelFn = function(m, a){ return a.charAt(1).toUpperCase(); }; return { createStyleSheet : function(cssText, id){ var ss; var head = doc.getElementsByTagName("head")[0]; var rules = doc.createElement("style"); rules.setAttribute("type", "text/css"); if(id){ rules.setAttribute("id", id); } if(Ext.isIE){ head.appendChild(rules); ss = rules.styleSheet; ss.cssText = cssText; }else{ try{ rules.appendChild(doc.createTextNode(cssText)); }catch(e){ rules.cssText = cssText; } head.appendChild(rules); ss = rules.styleSheet ? rules.styleSheet : (rules.sheet || doc.styleSheets[doc.styleSheets.length-1]); } this.cacheStyleSheet(ss); return ss; }, removeStyleSheet : function(id){ var existing = doc.getElementById(id); if(existing){ existing.parentNode.removeChild(existing); } }, swapStyleSheet : function(id, url){ this.removeStyleSheet(id); var ss = doc.createElement("link"); ss.setAttribute("rel", "stylesheet"); ss.setAttribute("type", "text/css"); ss.setAttribute("id", id); ss.setAttribute("href", url); doc.getElementsByTagName("head")[0].appendChild(ss); }, refreshCache : function(){ return this.getRules(true); }, cacheStyleSheet : function(ss){ if(!rules){ rules = {}; } try{ var ssRules = ss.cssRules || ss.rules; for(var j = ssRules.length-1; j >= 0; --j){ rules[ssRules[j].selectorText.toLowerCase()] = ssRules[j]; } }catch(e){} }, getRules : function(refreshCache){ if(rules === null || refreshCache){ rules = {}; var ds = doc.styleSheets; for(var i =0, len = ds.length; i < len; i++){ try{ this.cacheStyleSheet(ds[i]); }catch(e){} } } return rules; }, getRule : function(selector, refreshCache){ var rs = this.getRules(refreshCache); if(!Ext.isArray(selector)){ return rs[selector.toLowerCase()]; } for(var i = 0; i < selector.length; i++){ if(rs[selector[i]]){ return rs[selector[i].toLowerCase()]; } } return null; }, updateRule : function(selector, property, value){ if(!Ext.isArray(selector)){ var rule = this.getRule(selector); if(rule){ rule.style[property.replace(camelRe, camelFn)] = value; return true; } }else{ for(var i = 0; i < selector.length; i++){ if(this.updateRule(selector[i], property, value)){ return true; } } } return false; } }; }(); Ext.util.ClickRepeater = Ext.extend(Ext.util.Observable, { constructor : function(el, config){ this.el = Ext.get(el); this.el.unselectable(); Ext.apply(this, config); this.addEvents( "mousedown", "click", "mouseup" ); if(!this.disabled){ this.disabled = true; this.enable(); } if(this.handler){ this.on("click", this.handler, this.scope || this); } Ext.util.ClickRepeater.superclass.constructor.call(this); }, interval : 20, delay: 250, preventDefault : true, stopDefault : false, timer : 0, enable: function(){ if(this.disabled){ this.el.on('mousedown', this.handleMouseDown, this); if (Ext.isIE){ this.el.on('dblclick', this.handleDblClick, this); } if(this.preventDefault || this.stopDefault){ this.el.on('click', this.eventOptions, this); } } this.disabled = false; }, disable: function( force){ if(force || !this.disabled){ clearTimeout(this.timer); if(this.pressClass){ this.el.removeClass(this.pressClass); } Ext.getDoc().un('mouseup', this.handleMouseUp, this); this.el.removeAllListeners(); } this.disabled = true; }, setDisabled: function(disabled){ this[disabled ? 'disable' : 'enable'](); }, eventOptions: function(e){ if(this.preventDefault){ e.preventDefault(); } if(this.stopDefault){ e.stopEvent(); } }, destroy : function() { this.disable(true); Ext.destroy(this.el); this.purgeListeners(); }, handleDblClick : function(e){ clearTimeout(this.timer); this.el.blur(); this.fireEvent("mousedown", this, e); this.fireEvent("click", this, e); }, handleMouseDown : function(e){ clearTimeout(this.timer); this.el.blur(); if(this.pressClass){ this.el.addClass(this.pressClass); } this.mousedownTime = new Date(); Ext.getDoc().on("mouseup", this.handleMouseUp, this); this.el.on("mouseout", this.handleMouseOut, this); this.fireEvent("mousedown", this, e); this.fireEvent("click", this, e); if (this.accelerate) { this.delay = 400; } this.timer = this.click.defer(this.delay || this.interval, this, [e]); }, click : function(e){ this.fireEvent("click", this, e); this.timer = this.click.defer(this.accelerate ? this.easeOutExpo(this.mousedownTime.getElapsed(), 400, -390, 12000) : this.interval, this, [e]); }, easeOutExpo : function (t, b, c, d) { return (t==d) ? b+c : c * (-Math.pow(2, -10 * t/d) + 1) + b; }, handleMouseOut : function(){ clearTimeout(this.timer); if(this.pressClass){ this.el.removeClass(this.pressClass); } this.el.on("mouseover", this.handleMouseReturn, this); }, handleMouseReturn : function(){ this.el.un("mouseover", this.handleMouseReturn, this); if(this.pressClass){ this.el.addClass(this.pressClass); } this.click(); }, handleMouseUp : function(e){ clearTimeout(this.timer); this.el.un("mouseover", this.handleMouseReturn, this); this.el.un("mouseout", this.handleMouseOut, this); Ext.getDoc().un("mouseup", this.handleMouseUp, this); this.el.removeClass(this.pressClass); this.fireEvent("mouseup", this, e); } }); Ext.KeyNav = function(el, config){ this.el = Ext.get(el); Ext.apply(this, config); if(!this.disabled){ this.disabled = true; this.enable(); } }; Ext.KeyNav.prototype = { disabled : false, defaultEventAction: "stopEvent", forceKeyDown : false, relay : function(e){ var k = e.getKey(), h = this.keyToHandler[k]; if(h && this[h]){ if(this.doRelay(e, this[h], h) !== true){ e[this.defaultEventAction](); } } }, doRelay : function(e, h, hname){ return h.call(this.scope || this, e, hname); }, enter : false, left : false, right : false, up : false, down : false, tab : false, esc : false, pageUp : false, pageDown : false, del : false, home : false, end : false, space : false, keyToHandler : { 37 : "left", 39 : "right", 38 : "up", 40 : "down", 33 : "pageUp", 34 : "pageDown", 46 : "del", 36 : "home", 35 : "end", 13 : "enter", 27 : "esc", 9 : "tab", 32 : "space" }, stopKeyUp: function(e) { var k = e.getKey(); if (k >= 37 && k <= 40) { e.stopEvent(); } }, destroy: function(){ this.disable(); }, enable: function() { if (this.disabled) { if (Ext.isSafari2) { this.el.on('keyup', this.stopKeyUp, this); } this.el.on(this.isKeydown()? 'keydown' : 'keypress', this.relay, this); this.disabled = false; } }, disable: function() { if (!this.disabled) { if (Ext.isSafari2) { this.el.un('keyup', this.stopKeyUp, this); } this.el.un(this.isKeydown()? 'keydown' : 'keypress', this.relay, this); this.disabled = true; } }, setDisabled : function(disabled){ this[disabled ? "disable" : "enable"](); }, isKeydown: function(){ return this.forceKeyDown || Ext.EventManager.useKeydown; } }; Ext.KeyMap = function(el, config, eventName){ this.el = Ext.get(el); this.eventName = eventName || "keydown"; this.bindings = []; if(config){ this.addBinding(config); } this.enable(); }; Ext.KeyMap.prototype = { stopEvent : false, addBinding : function(config){ if(Ext.isArray(config)){ Ext.each(config, function(c){ this.addBinding(c); }, this); return; } var keyCode = config.key, fn = config.fn || config.handler, scope = config.scope; if (config.stopEvent) { this.stopEvent = config.stopEvent; } if(typeof keyCode == "string"){ var ks = []; var keyString = keyCode.toUpperCase(); for(var j = 0, len = keyString.length; j < len; j++){ ks.push(keyString.charCodeAt(j)); } keyCode = ks; } var keyArray = Ext.isArray(keyCode); var handler = function(e){ if(this.checkModifiers(config, e)){ var k = e.getKey(); if(keyArray){ for(var i = 0, len = keyCode.length; i < len; i++){ if(keyCode[i] == k){ if(this.stopEvent){ e.stopEvent(); } fn.call(scope || window, k, e); return; } } }else{ if(k == keyCode){ if(this.stopEvent){ e.stopEvent(); } fn.call(scope || window, k, e); } } } }; this.bindings.push(handler); }, checkModifiers: function(config, e){ var val, key, keys = ['shift', 'ctrl', 'alt']; for (var i = 0, len = keys.length; i < len; ++i){ key = keys[i]; val = config[key]; if(!(val === undefined || (val === e[key + 'Key']))){ return false; } } return true; }, on : function(key, fn, scope){ var keyCode, shift, ctrl, alt; if(typeof key == "object" && !Ext.isArray(key)){ keyCode = key.key; shift = key.shift; ctrl = key.ctrl; alt = key.alt; }else{ keyCode = key; } this.addBinding({ key: keyCode, shift: shift, ctrl: ctrl, alt: alt, fn: fn, scope: scope }); }, handleKeyDown : function(e){ if(this.enabled){ var b = this.bindings; for(var i = 0, len = b.length; i < len; i++){ b[i].call(this, e); } } }, isEnabled : function(){ return this.enabled; }, enable: function(){ if(!this.enabled){ this.el.on(this.eventName, this.handleKeyDown, this); this.enabled = true; } }, disable: function(){ if(this.enabled){ this.el.removeListener(this.eventName, this.handleKeyDown, this); this.enabled = false; } }, setDisabled : function(disabled){ this[disabled ? "disable" : "enable"](); } }; Ext.util.TextMetrics = function(){ var shared; return { measure : function(el, text, fixedWidth){ if(!shared){ shared = Ext.util.TextMetrics.Instance(el, fixedWidth); } shared.bind(el); shared.setFixedWidth(fixedWidth || 'auto'); return shared.getSize(text); }, createInstance : function(el, fixedWidth){ return Ext.util.TextMetrics.Instance(el, fixedWidth); } }; }(); Ext.util.TextMetrics.Instance = function(bindTo, fixedWidth){ var ml = new Ext.Element(document.createElement('div')); document.body.appendChild(ml.dom); ml.position('absolute'); ml.setLeftTop(-1000, -1000); ml.hide(); if(fixedWidth){ ml.setWidth(fixedWidth); } var instance = { getSize : function(text){ ml.update(text); var s = ml.getSize(); ml.update(''); return s; }, bind : function(el){ ml.setStyle( Ext.fly(el).getStyles('font-size','font-style', 'font-weight', 'font-family','line-height', 'text-transform', 'letter-spacing') ); }, setFixedWidth : function(width){ ml.setWidth(width); }, getWidth : function(text){ ml.dom.style.width = 'auto'; return this.getSize(text).width; }, getHeight : function(text){ return this.getSize(text).height; } }; instance.bind(bindTo); return instance; }; Ext.Element.addMethods({ getTextWidth : function(text, min, max){ return (Ext.util.TextMetrics.measure(this.dom, Ext.value(text, this.dom.innerHTML, true)).width).constrain(min || 0, max || 1000000); } }); Ext.util.Cookies = { set : function(name, value){ var argv = arguments; var argc = arguments.length; var expires = (argc > 2) ? argv[2] : null; var path = (argc > 3) ? argv[3] : '/'; var domain = (argc > 4) ? argv[4] : null; var secure = (argc > 5) ? argv[5] : false; document.cookie = name + "=" + escape(value) + ((expires === null) ? "" : ("; expires=" + expires.toGMTString())) + ((path === null) ? "" : ("; path=" + path)) + ((domain === null) ? "" : ("; domain=" + domain)) + ((secure === true) ? "; secure" : ""); }, get : function(name){ var arg = name + "="; var alen = arg.length; var clen = document.cookie.length; var i = 0; var j = 0; while(i < clen){ j = i + alen; if(document.cookie.substring(i, j) == arg){ return Ext.util.Cookies.getCookieVal(j); } i = document.cookie.indexOf(" ", i) + 1; if(i === 0){ break; } } return null; }, clear : function(name){ if(Ext.util.Cookies.get(name)){ document.cookie = name + "=" + "; expires=Thu, 01-Jan-70 00:00:01 GMT"; } }, getCookieVal : function(offset){ var endstr = document.cookie.indexOf(";", offset); if(endstr == -1){ endstr = document.cookie.length; } return unescape(document.cookie.substring(offset, endstr)); } }; Ext.handleError = function(e) { throw e; }; Ext.Error = function(message) { this.message = (this.lang[message]) ? this.lang[message] : message; }; Ext.Error.prototype = new Error(); Ext.apply(Ext.Error.prototype, { lang: {}, name: 'Ext.Error', getName : function() { return this.name; }, getMessage : function() { return this.message; }, toJson : function() { return Ext.encode(this); } }); Ext.ComponentMgr = function(){ var all = new Ext.util.MixedCollection(); var types = {}; var ptypes = {}; return { register : function(c){ all.add(c); }, unregister : function(c){ all.remove(c); }, get : function(id){ return all.get(id); }, onAvailable : function(id, fn, scope){ all.on("add", function(index, o){ if(o.id == id){ fn.call(scope || o, o); all.un("add", fn, scope); } }); }, all : all, types : types, ptypes: ptypes, isRegistered : function(xtype){ return types[xtype] !== undefined; }, isPluginRegistered : function(ptype){ return ptypes[ptype] !== undefined; }, registerType : function(xtype, cls){ types[xtype] = cls; cls.xtype = xtype; }, create : function(config, defaultType){ return config.render ? config : new types[config.xtype || defaultType](config); }, registerPlugin : function(ptype, cls){ ptypes[ptype] = cls; cls.ptype = ptype; }, createPlugin : function(config, defaultType){ var PluginCls = ptypes[config.ptype || defaultType]; if (PluginCls.init) { return PluginCls; } else { return new PluginCls(config); } } }; }(); Ext.reg = Ext.ComponentMgr.registerType; Ext.preg = Ext.ComponentMgr.registerPlugin; Ext.create = Ext.ComponentMgr.create; Ext.Component = function(config){ config = config || {}; if(config.initialConfig){ if(config.isAction){ this.baseAction = config; } config = config.initialConfig; }else if(config.tagName || config.dom || Ext.isString(config)){ config = {applyTo: config, id: config.id || config}; } this.initialConfig = config; Ext.apply(this, config); this.addEvents( 'added', 'disable', 'enable', 'beforeshow', 'show', 'beforehide', 'hide', 'removed', 'beforerender', 'render', 'afterrender', 'beforedestroy', 'destroy', 'beforestaterestore', 'staterestore', 'beforestatesave', 'statesave' ); this.getId(); Ext.ComponentMgr.register(this); Ext.Component.superclass.constructor.call(this); if(this.baseAction){ this.baseAction.addComponent(this); } this.initComponent(); if(this.plugins){ if(Ext.isArray(this.plugins)){ for(var i = 0, len = this.plugins.length; i < len; i++){ this.plugins[i] = this.initPlugin(this.plugins[i]); } }else{ this.plugins = this.initPlugin(this.plugins); } } if(this.stateful !== false){ this.initState(); } if(this.applyTo){ this.applyToMarkup(this.applyTo); delete this.applyTo; }else if(this.renderTo){ this.render(this.renderTo); delete this.renderTo; } }; Ext.Component.AUTO_ID = 1000; Ext.extend(Ext.Component, Ext.util.Observable, { disabled : false, hidden : false, autoEl : 'div', disabledClass : 'x-item-disabled', allowDomMove : true, autoShow : false, hideMode : 'display', hideParent : false, rendered : false, tplWriteMode : 'overwrite', bubbleEvents: [], ctype : 'Ext.Component', actionMode : 'el', getActionEl : function(){ return this[this.actionMode]; }, initPlugin : function(p){ if(p.ptype && !Ext.isFunction(p.init)){ p = Ext.ComponentMgr.createPlugin(p); }else if(Ext.isString(p)){ p = Ext.ComponentMgr.createPlugin({ ptype: p }); } p.init(this); return p; }, initComponent : function(){ if(this.listeners){ this.on(this.listeners); delete this.listeners; } this.enableBubble(this.bubbleEvents); }, render : function(container, position){ if(!this.rendered && this.fireEvent('beforerender', this) !== false){ if(!container && this.el){ this.el = Ext.get(this.el); container = this.el.dom.parentNode; this.allowDomMove = false; } this.container = Ext.get(container); if(this.ctCls){ this.container.addClass(this.ctCls); } this.rendered = true; if(position !== undefined){ if(Ext.isNumber(position)){ position = this.container.dom.childNodes[position]; }else{ position = Ext.getDom(position); } } this.onRender(this.container, position || null); if(this.autoShow){ this.el.removeClass(['x-hidden','x-hide-' + this.hideMode]); } if(this.cls){ this.el.addClass(this.cls); delete this.cls; } if(this.style){ this.el.applyStyles(this.style); delete this.style; } if(this.overCls){ this.el.addClassOnOver(this.overCls); } this.fireEvent('render', this); var contentTarget = this.getContentTarget(); if (this.html){ contentTarget.update(Ext.DomHelper.markup(this.html)); delete this.html; } if (this.contentEl){ var ce = Ext.getDom(this.contentEl); Ext.fly(ce).removeClass(['x-hidden', 'x-hide-display']); contentTarget.appendChild(ce); } if (this.tpl) { if (!this.tpl.compile) { this.tpl = new Ext.XTemplate(this.tpl); } if (this.data) { this.tpl[this.tplWriteMode](contentTarget, this.data); delete this.data; } } this.afterRender(this.container); if(this.hidden){ this.doHide(); } if(this.disabled){ this.disable(true); } if(this.stateful !== false){ this.initStateEvents(); } this.fireEvent('afterrender', this); } return this; }, update: function(htmlOrData, loadScripts, cb) { var contentTarget = this.getContentTarget(); if (this.tpl && typeof htmlOrData !== "string") { this.tpl[this.tplWriteMode](contentTarget, htmlOrData || {}); } else { var html = Ext.isObject(htmlOrData) ? Ext.DomHelper.markup(htmlOrData) : htmlOrData; contentTarget.update(html, loadScripts, cb); } }, onAdded : function(container, pos) { this.ownerCt = container; this.initRef(); this.fireEvent('added', this, container, pos); }, onRemoved : function() { this.removeRef(); this.fireEvent('removed', this, this.ownerCt); delete this.ownerCt; }, initRef : function() { if(this.ref && !this.refOwner){ var levels = this.ref.split('/'), last = levels.length, i = 0, t = this; while(t && i < last){ t = t.ownerCt; ++i; } if(t){ t[this.refName = levels[--i]] = this; this.refOwner = t; } } }, removeRef : function() { if (this.refOwner && this.refName) { delete this.refOwner[this.refName]; delete this.refOwner; } }, initState : function(){ if(Ext.state.Manager){ var id = this.getStateId(); if(id){ var state = Ext.state.Manager.get(id); if(state){ if(this.fireEvent('beforestaterestore', this, state) !== false){ this.applyState(Ext.apply({}, state)); this.fireEvent('staterestore', this, state); } } } } }, getStateId : function(){ return this.stateId || ((/^(ext-comp-|ext-gen)/).test(String(this.id)) ? null : this.id); }, initStateEvents : function(){ if(this.stateEvents){ for(var i = 0, e; e = this.stateEvents[i]; i++){ this.on(e, this.saveState, this, {delay:100}); } } }, applyState : function(state){ if(state){ Ext.apply(this, state); } }, getState : function(){ return null; }, saveState : function(){ if(Ext.state.Manager && this.stateful !== false){ var id = this.getStateId(); if(id){ var state = this.getState(); if(this.fireEvent('beforestatesave', this, state) !== false){ Ext.state.Manager.set(id, state); this.fireEvent('statesave', this, state); } } } }, applyToMarkup : function(el){ this.allowDomMove = false; this.el = Ext.get(el); this.render(this.el.dom.parentNode); }, addClass : function(cls){ if(this.el){ this.el.addClass(cls); }else{ this.cls = this.cls ? this.cls + ' ' + cls : cls; } return this; }, removeClass : function(cls){ if(this.el){ this.el.removeClass(cls); }else if(this.cls){ this.cls = this.cls.split(' ').remove(cls).join(' '); } return this; }, onRender : function(ct, position){ if(!this.el && this.autoEl){ if(Ext.isString(this.autoEl)){ this.el = document.createElement(this.autoEl); }else{ var div = document.createElement('div'); Ext.DomHelper.overwrite(div, this.autoEl); this.el = div.firstChild; } if (!this.el.id) { this.el.id = this.getId(); } } if(this.el){ this.el = Ext.get(this.el); if(this.allowDomMove !== false){ ct.dom.insertBefore(this.el.dom, position); if (div) { Ext.removeNode(div); div = null; } } } }, getAutoCreate : function(){ var cfg = Ext.isObject(this.autoCreate) ? this.autoCreate : Ext.apply({}, this.defaultAutoCreate); if(this.id && !cfg.id){ cfg.id = this.id; } return cfg; }, afterRender : Ext.emptyFn, destroy : function(){ if(!this.isDestroyed){ if(this.fireEvent('beforedestroy', this) !== false){ this.destroying = true; this.beforeDestroy(); if(this.ownerCt && this.ownerCt.remove){ this.ownerCt.remove(this, false); } if(this.rendered){ this.el.remove(); if(this.actionMode == 'container' || this.removeMode == 'container'){ this.container.remove(); } } if(this.focusTask && this.focusTask.cancel){ this.focusTask.cancel(); } this.onDestroy(); Ext.ComponentMgr.unregister(this); this.fireEvent('destroy', this); this.purgeListeners(); this.destroying = false; this.isDestroyed = true; } } }, deleteMembers : function(){ var args = arguments; for(var i = 0, len = args.length; i < len; ++i){ delete this[args[i]]; } }, beforeDestroy : Ext.emptyFn, onDestroy : Ext.emptyFn, getEl : function(){ return this.el; }, getContentTarget : function(){ return this.el; }, getId : function(){ return this.id || (this.id = 'ext-comp-' + (++Ext.Component.AUTO_ID)); }, getItemId : function(){ return this.itemId || this.getId(); }, focus : function(selectText, delay){ if(delay){ this.focusTask = new Ext.util.DelayedTask(this.focus, this, [selectText, false]); this.focusTask.delay(Ext.isNumber(delay) ? delay : 10); return this; } if(this.rendered && !this.isDestroyed){ this.el.focus(); if(selectText === true){ this.el.dom.select(); } } return this; }, blur : function(){ if(this.rendered){ this.el.blur(); } return this; }, disable : function( silent){ if(this.rendered){ this.onDisable(); } this.disabled = true; if(silent !== true){ this.fireEvent('disable', this); } return this; }, onDisable : function(){ this.getActionEl().addClass(this.disabledClass); this.el.dom.disabled = true; }, enable : function(){ if(this.rendered){ this.onEnable(); } this.disabled = false; this.fireEvent('enable', this); return this; }, onEnable : function(){ this.getActionEl().removeClass(this.disabledClass); this.el.dom.disabled = false; }, setDisabled : function(disabled){ return this[disabled ? 'disable' : 'enable'](); }, show : function(){ if(this.fireEvent('beforeshow', this) !== false){ this.hidden = false; if(this.autoRender){ this.render(Ext.isBoolean(this.autoRender) ? Ext.getBody() : this.autoRender); } if(this.rendered){ this.onShow(); } this.fireEvent('show', this); } return this; }, onShow : function(){ this.getVisibilityEl().removeClass('x-hide-' + this.hideMode); }, hide : function(){ if(this.fireEvent('beforehide', this) !== false){ this.doHide(); this.fireEvent('hide', this); } return this; }, doHide: function(){ this.hidden = true; if(this.rendered){ this.onHide(); } }, onHide : function(){ this.getVisibilityEl().addClass('x-hide-' + this.hideMode); }, getVisibilityEl : function(){ return this.hideParent ? this.container : this.getActionEl(); }, setVisible : function(visible){ return this[visible ? 'show' : 'hide'](); }, isVisible : function(){ return this.rendered && this.getVisibilityEl().isVisible(); }, cloneConfig : function(overrides){ overrides = overrides || {}; var id = overrides.id || Ext.id(); var cfg = Ext.applyIf(overrides, this.initialConfig); cfg.id = id; return new this.constructor(cfg); }, getXType : function(){ return this.constructor.xtype; }, isXType : function(xtype, shallow){ if (Ext.isFunction(xtype)){ xtype = xtype.xtype; }else if (Ext.isObject(xtype)){ xtype = xtype.constructor.xtype; } return !shallow ? ('/' + this.getXTypes() + '/').indexOf('/' + xtype + '/') != -1 : this.constructor.xtype == xtype; }, getXTypes : function(){ var tc = this.constructor; if(!tc.xtypes){ var c = [], sc = this; while(sc && sc.constructor.xtype){ c.unshift(sc.constructor.xtype); sc = sc.constructor.superclass; } tc.xtypeChain = c; tc.xtypes = c.join('/'); } return tc.xtypes; }, findParentBy : function(fn) { for (var p = this.ownerCt; (p != null) && !fn(p, this); p = p.ownerCt); return p || null; }, findParentByType : function(xtype, shallow){ return this.findParentBy(function(c){ return c.isXType(xtype, shallow); }); }, bubble : function(fn, scope, args){ var p = this; while(p){ if(fn.apply(scope || p, args || [p]) === false){ break; } p = p.ownerCt; } return this; }, getPositionEl : function(){ return this.positionEl || this.el; }, purgeListeners : function(){ Ext.Component.superclass.purgeListeners.call(this); if(this.mons){ this.on('beforedestroy', this.clearMons, this, {single: true}); } }, clearMons : function(){ Ext.each(this.mons, function(m){ m.item.un(m.ename, m.fn, m.scope); }, this); this.mons = []; }, createMons: function(){ if(!this.mons){ this.mons = []; this.on('beforedestroy', this.clearMons, this, {single: true}); } }, mon : function(item, ename, fn, scope, opt){ this.createMons(); if(Ext.isObject(ename)){ var propRe = /^(?:scope|delay|buffer|single|stopEvent|preventDefault|stopPropagation|normalized|args|delegate)$/; var o = ename; for(var e in o){ if(propRe.test(e)){ continue; } if(Ext.isFunction(o[e])){ this.mons.push({ item: item, ename: e, fn: o[e], scope: o.scope }); item.on(e, o[e], o.scope, o); }else{ this.mons.push({ item: item, ename: e, fn: o[e], scope: o.scope }); item.on(e, o[e]); } } return; } this.mons.push({ item: item, ename: ename, fn: fn, scope: scope }); item.on(ename, fn, scope, opt); }, mun : function(item, ename, fn, scope){ var found, mon; this.createMons(); for(var i = 0, len = this.mons.length; i < len; ++i){ mon = this.mons[i]; if(item === mon.item && ename == mon.ename && fn === mon.fn && scope === mon.scope){ this.mons.splice(i, 1); item.un(ename, fn, scope); found = true; break; } } return found; }, nextSibling : function(){ if(this.ownerCt){ var index = this.ownerCt.items.indexOf(this); if(index != -1 && index+1 < this.ownerCt.items.getCount()){ return this.ownerCt.items.itemAt(index+1); } } return null; }, previousSibling : function(){ if(this.ownerCt){ var index = this.ownerCt.items.indexOf(this); if(index > 0){ return this.ownerCt.items.itemAt(index-1); } } return null; }, getBubbleTarget : function(){ return this.ownerCt; } }); Ext.reg('component', Ext.Component); Ext.Action = Ext.extend(Object, { constructor : function(config){ this.initialConfig = config; this.itemId = config.itemId = (config.itemId || config.id || Ext.id()); this.items = []; }, isAction : true, setText : function(text){ this.initialConfig.text = text; this.callEach('setText', [text]); }, getText : function(){ return this.initialConfig.text; }, setIconClass : function(cls){ this.initialConfig.iconCls = cls; this.callEach('setIconClass', [cls]); }, getIconClass : function(){ return this.initialConfig.iconCls; }, setDisabled : function(v){ this.initialConfig.disabled = v; this.callEach('setDisabled', [v]); }, enable : function(){ this.setDisabled(false); }, disable : function(){ this.setDisabled(true); }, isDisabled : function(){ return this.initialConfig.disabled; }, setHidden : function(v){ this.initialConfig.hidden = v; this.callEach('setVisible', [!v]); }, show : function(){ this.setHidden(false); }, hide : function(){ this.setHidden(true); }, isHidden : function(){ return this.initialConfig.hidden; }, setHandler : function(fn, scope){ this.initialConfig.handler = fn; this.initialConfig.scope = scope; this.callEach('setHandler', [fn, scope]); }, each : function(fn, scope){ Ext.each(this.items, fn, scope); }, callEach : function(fnName, args){ var cs = this.items; for(var i = 0, len = cs.length; i < len; i++){ cs[i][fnName].apply(cs[i], args); } }, addComponent : function(comp){ this.items.push(comp); comp.on('destroy', this.removeComponent, this); }, removeComponent : function(comp){ this.items.remove(comp); }, execute : function(){ this.initialConfig.handler.apply(this.initialConfig.scope || window, arguments); } }); (function(){ Ext.Layer = function(config, existingEl){ config = config || {}; var dh = Ext.DomHelper, cp = config.parentEl, pel = cp ? Ext.getDom(cp) : document.body; if (existingEl) { this.dom = Ext.getDom(existingEl); } if(!this.dom){ var o = config.dh || {tag: 'div', cls: 'x-layer'}; this.dom = dh.append(pel, o); } if(config.cls){ this.addClass(config.cls); } this.constrain = config.constrain !== false; this.setVisibilityMode(Ext.Element.VISIBILITY); if(config.id){ this.id = this.dom.id = config.id; }else{ this.id = Ext.id(this.dom); } this.zindex = config.zindex || this.getZIndex(); this.position('absolute', this.zindex); if(config.shadow){ this.shadowOffset = config.shadowOffset || 4; this.shadow = new Ext.Shadow({ offset : this.shadowOffset, mode : config.shadow }); }else{ this.shadowOffset = 0; } this.useShim = config.shim !== false && Ext.useShims; this.useDisplay = config.useDisplay; this.hide(); }; var supr = Ext.Element.prototype; var shims = []; Ext.extend(Ext.Layer, Ext.Element, { getZIndex : function(){ return this.zindex || parseInt((this.getShim() || this).getStyle('z-index'), 10) || 11000; }, getShim : function(){ if(!this.useShim){ return null; } if(this.shim){ return this.shim; } var shim = shims.shift(); if(!shim){ shim = this.createShim(); shim.enableDisplayMode('block'); shim.dom.style.display = 'none'; shim.dom.style.visibility = 'visible'; } var pn = this.dom.parentNode; if(shim.dom.parentNode != pn){ pn.insertBefore(shim.dom, this.dom); } shim.setStyle('z-index', this.getZIndex()-2); this.shim = shim; return shim; }, hideShim : function(){ if(this.shim){ this.shim.setDisplayed(false); shims.push(this.shim); delete this.shim; } }, disableShadow : function(){ if(this.shadow){ this.shadowDisabled = true; this.shadow.hide(); this.lastShadowOffset = this.shadowOffset; this.shadowOffset = 0; } }, enableShadow : function(show){ if(this.shadow){ this.shadowDisabled = false; if(Ext.isDefined(this.lastShadowOffset)) { this.shadowOffset = this.lastShadowOffset; delete this.lastShadowOffset; } if(show){ this.sync(true); } } }, sync : function(doShow){ var shadow = this.shadow; if(!this.updating && this.isVisible() && (shadow || this.useShim)){ var shim = this.getShim(), w = this.getWidth(), h = this.getHeight(), l = this.getLeft(true), t = this.getTop(true); if(shadow && !this.shadowDisabled){ if(doShow && !shadow.isVisible()){ shadow.show(this); }else{ shadow.realign(l, t, w, h); } if(shim){ if(doShow){ shim.show(); } var shadowAdj = shadow.el.getXY(), shimStyle = shim.dom.style, shadowSize = shadow.el.getSize(); shimStyle.left = (shadowAdj[0])+'px'; shimStyle.top = (shadowAdj[1])+'px'; shimStyle.width = (shadowSize.width)+'px'; shimStyle.height = (shadowSize.height)+'px'; } }else if(shim){ if(doShow){ shim.show(); } shim.setSize(w, h); shim.setLeftTop(l, t); } } }, destroy : function(){ this.hideShim(); if(this.shadow){ this.shadow.hide(); } this.removeAllListeners(); Ext.removeNode(this.dom); delete this.dom; }, remove : function(){ this.destroy(); }, beginUpdate : function(){ this.updating = true; }, endUpdate : function(){ this.updating = false; this.sync(true); }, hideUnders : function(negOffset){ if(this.shadow){ this.shadow.hide(); } this.hideShim(); }, constrainXY : function(){ if(this.constrain){ var vw = Ext.lib.Dom.getViewWidth(), vh = Ext.lib.Dom.getViewHeight(); var s = Ext.getDoc().getScroll(); var xy = this.getXY(); var x = xy[0], y = xy[1]; var so = this.shadowOffset; var w = this.dom.offsetWidth+so, h = this.dom.offsetHeight+so; var moved = false; if((x + w) > vw+s.left){ x = vw - w - so; moved = true; } if((y + h) > vh+s.top){ y = vh - h - so; moved = true; } if(x < s.left){ x = s.left; moved = true; } if(y < s.top){ y = s.top; moved = true; } if(moved){ if(this.avoidY){ var ay = this.avoidY; if(y <= ay && (y+h) >= ay){ y = ay-h-5; } } xy = [x, y]; this.storeXY(xy); supr.setXY.call(this, xy); this.sync(); } } return this; }, getConstrainOffset : function(){ return this.shadowOffset; }, isVisible : function(){ return this.visible; }, showAction : function(){ this.visible = true; if(this.useDisplay === true){ this.setDisplayed(''); }else if(this.lastXY){ supr.setXY.call(this, this.lastXY); }else if(this.lastLT){ supr.setLeftTop.call(this, this.lastLT[0], this.lastLT[1]); } }, hideAction : function(){ this.visible = false; if(this.useDisplay === true){ this.setDisplayed(false); }else{ this.setLeftTop(-10000,-10000); } }, setVisible : function(v, a, d, c, e){ if(v){ this.showAction(); } if(a && v){ var cb = function(){ this.sync(true); if(c){ c(); } }.createDelegate(this); supr.setVisible.call(this, true, true, d, cb, e); }else{ if(!v){ this.hideUnders(true); } var cb = c; if(a){ cb = function(){ this.hideAction(); if(c){ c(); } }.createDelegate(this); } supr.setVisible.call(this, v, a, d, cb, e); if(v){ this.sync(true); }else if(!a){ this.hideAction(); } } return this; }, storeXY : function(xy){ delete this.lastLT; this.lastXY = xy; }, storeLeftTop : function(left, top){ delete this.lastXY; this.lastLT = [left, top]; }, beforeFx : function(){ this.beforeAction(); return Ext.Layer.superclass.beforeFx.apply(this, arguments); }, afterFx : function(){ Ext.Layer.superclass.afterFx.apply(this, arguments); this.sync(this.isVisible()); }, beforeAction : function(){ if(!this.updating && this.shadow){ this.shadow.hide(); } }, setLeft : function(left){ this.storeLeftTop(left, this.getTop(true)); supr.setLeft.apply(this, arguments); this.sync(); return this; }, setTop : function(top){ this.storeLeftTop(this.getLeft(true), top); supr.setTop.apply(this, arguments); this.sync(); return this; }, setLeftTop : function(left, top){ this.storeLeftTop(left, top); supr.setLeftTop.apply(this, arguments); this.sync(); return this; }, setXY : function(xy, a, d, c, e){ this.fixDisplay(); this.beforeAction(); this.storeXY(xy); var cb = this.createCB(c); supr.setXY.call(this, xy, a, d, cb, e); if(!a){ cb(); } return this; }, createCB : function(c){ var el = this; return function(){ el.constrainXY(); el.sync(true); if(c){ c(); } }; }, setX : function(x, a, d, c, e){ this.setXY([x, this.getY()], a, d, c, e); return this; }, setY : function(y, a, d, c, e){ this.setXY([this.getX(), y], a, d, c, e); return this; }, setSize : function(w, h, a, d, c, e){ this.beforeAction(); var cb = this.createCB(c); supr.setSize.call(this, w, h, a, d, cb, e); if(!a){ cb(); } return this; }, setWidth : function(w, a, d, c, e){ this.beforeAction(); var cb = this.createCB(c); supr.setWidth.call(this, w, a, d, cb, e); if(!a){ cb(); } return this; }, setHeight : function(h, a, d, c, e){ this.beforeAction(); var cb = this.createCB(c); supr.setHeight.call(this, h, a, d, cb, e); if(!a){ cb(); } return this; }, setBounds : function(x, y, w, h, a, d, c, e){ this.beforeAction(); var cb = this.createCB(c); if(!a){ this.storeXY([x, y]); supr.setXY.call(this, [x, y]); supr.setSize.call(this, w, h, a, d, cb, e); cb(); }else{ supr.setBounds.call(this, x, y, w, h, a, d, cb, e); } return this; }, setZIndex : function(zindex){ this.zindex = zindex; this.setStyle('z-index', zindex + 2); if(this.shadow){ this.shadow.setZIndex(zindex + 1); } if(this.shim){ this.shim.setStyle('z-index', zindex); } return this; } }); })(); Ext.Shadow = function(config) { Ext.apply(this, config); if (typeof this.mode != "string") { this.mode = this.defaultMode; } var o = this.offset, a = { h: 0 }, rad = Math.floor(this.offset / 2); switch (this.mode.toLowerCase()) { case "drop": a.w = 0; a.l = a.t = o; a.t -= 1; if (Ext.isIE9m) { a.l -= this.offset + rad; a.t -= this.offset + rad; a.w -= rad; a.h -= rad; a.t += 1; } break; case "sides": a.w = (o * 2); a.l = -o; a.t = o - 1; if (Ext.isIE9m) { a.l -= (this.offset - rad); a.t -= this.offset + rad; a.l += 1; a.w -= (this.offset - rad) * 2; a.w -= rad + 1; a.h -= 1; } break; case "frame": a.w = a.h = (o * 2); a.l = a.t = -o; a.t += 1; a.h -= 2; if (Ext.isIE9m) { a.l -= (this.offset - rad); a.t -= (this.offset - rad); a.l += 1; a.w -= (this.offset + rad + 1); a.h -= (this.offset + rad); a.h += 1; } break; }; this.adjusts = a; }; Ext.Shadow.prototype = { offset: 4, defaultMode: "drop", show: function(target) { target = Ext.get(target); if (!this.el) { this.el = Ext.Shadow.Pool.pull(); if (this.el.dom.nextSibling != target.dom) { this.el.insertBefore(target); } } this.el.setStyle("z-index", this.zIndex || parseInt(target.getStyle("z-index"), 10) - 1); if (Ext.isIE9m) { this.el.dom.style.filter = "progid:DXImageTransform.Microsoft.alpha(opacity=50) progid:DXImageTransform.Microsoft.Blur(pixelradius=" + (this.offset) + ")"; } this.realign( target.getLeft(true), target.getTop(true), target.getWidth(), target.getHeight() ); this.el.dom.style.display = "block"; }, isVisible: function() { return this.el ? true: false; }, realign: function(l, t, w, h) { if (!this.el) { return; } var a = this.adjusts, d = this.el.dom, s = d.style, iea = 0, sw = (w + a.w), sh = (h + a.h), sws = sw + "px", shs = sh + "px", cn, sww; s.left = (l + a.l) + "px"; s.top = (t + a.t) + "px"; if (s.width != sws || s.height != shs) { s.width = sws; s.height = shs; if (!Ext.isIE9m) { cn = d.childNodes; sww = Math.max(0, (sw - 12)) + "px"; cn[0].childNodes[1].style.width = sww; cn[1].childNodes[1].style.width = sww; cn[2].childNodes[1].style.width = sww; cn[1].style.height = Math.max(0, (sh - 12)) + "px"; } } }, hide: function() { if (this.el) { this.el.dom.style.display = "none"; Ext.Shadow.Pool.push(this.el); delete this.el; } }, setZIndex: function(z) { this.zIndex = z; if (this.el) { this.el.setStyle("z-index", z); } } }; Ext.Shadow.Pool = function() { var p = [], markup = Ext.isIE9m ? '
      ': '
      '; return { pull: function() { var sh = p.shift(); if (!sh) { sh = Ext.get(Ext.DomHelper.insertHtml("beforeBegin", document.body.firstChild, markup)); sh.autoBoxAdjust = false; } return sh; }, push: function(sh) { p.push(sh); } }; }(); Ext.BoxComponent = Ext.extend(Ext.Component, { initComponent : function(){ Ext.BoxComponent.superclass.initComponent.call(this); this.addEvents( 'resize', 'move' ); }, boxReady : false, deferHeight: false, setSize : function(w, h){ if(typeof w == 'object'){ h = w.height; w = w.width; } if (Ext.isDefined(w) && Ext.isDefined(this.boxMinWidth) && (w < this.boxMinWidth)) { w = this.boxMinWidth; } if (Ext.isDefined(h) && Ext.isDefined(this.boxMinHeight) && (h < this.boxMinHeight)) { h = this.boxMinHeight; } if (Ext.isDefined(w) && Ext.isDefined(this.boxMaxWidth) && (w > this.boxMaxWidth)) { w = this.boxMaxWidth; } if (Ext.isDefined(h) && Ext.isDefined(this.boxMaxHeight) && (h > this.boxMaxHeight)) { h = this.boxMaxHeight; } if(!this.boxReady){ this.width = w; this.height = h; return this; } if(this.cacheSizes !== false && this.lastSize && this.lastSize.width == w && this.lastSize.height == h){ return this; } this.lastSize = {width: w, height: h}; var adj = this.adjustSize(w, h), aw = adj.width, ah = adj.height, rz; if(aw !== undefined || ah !== undefined){ rz = this.getResizeEl(); if(!this.deferHeight && aw !== undefined && ah !== undefined){ rz.setSize(aw, ah); }else if(!this.deferHeight && ah !== undefined){ rz.setHeight(ah); }else if(aw !== undefined){ rz.setWidth(aw); } this.onResize(aw, ah, w, h); this.fireEvent('resize', this, aw, ah, w, h); } return this; }, setWidth : function(width){ return this.setSize(width); }, setHeight : function(height){ return this.setSize(undefined, height); }, getSize : function(){ return this.getResizeEl().getSize(); }, getWidth : function(){ return this.getResizeEl().getWidth(); }, getHeight : function(){ return this.getResizeEl().getHeight(); }, getOuterSize : function(){ var el = this.getResizeEl(); return {width: el.getWidth() + el.getMargins('lr'), height: el.getHeight() + el.getMargins('tb')}; }, getPosition : function(local){ var el = this.getPositionEl(); if(local === true){ return [el.getLeft(true), el.getTop(true)]; } return this.xy || el.getXY(); }, getBox : function(local){ var pos = this.getPosition(local); var s = this.getSize(); s.x = pos[0]; s.y = pos[1]; return s; }, updateBox : function(box){ this.setSize(box.width, box.height); this.setPagePosition(box.x, box.y); return this; }, getResizeEl : function(){ return this.resizeEl || this.el; }, setAutoScroll : function(scroll){ if(this.rendered){ this.getContentTarget().setOverflow(scroll ? 'auto' : ''); } this.autoScroll = scroll; return this; }, setPosition : function(x, y){ if(x && typeof x[1] == 'number'){ y = x[1]; x = x[0]; } this.x = x; this.y = y; if(!this.boxReady){ return this; } var adj = this.adjustPosition(x, y); var ax = adj.x, ay = adj.y; var el = this.getPositionEl(); if(ax !== undefined || ay !== undefined){ if(ax !== undefined && ay !== undefined){ el.setLeftTop(ax, ay); }else if(ax !== undefined){ el.setLeft(ax); }else if(ay !== undefined){ el.setTop(ay); } this.onPosition(ax, ay); this.fireEvent('move', this, ax, ay); } return this; }, setPagePosition : function(x, y){ if(x && typeof x[1] == 'number'){ y = x[1]; x = x[0]; } this.pageX = x; this.pageY = y; if(!this.boxReady){ return; } if(x === undefined || y === undefined){ return; } var p = this.getPositionEl().translatePoints(x, y); this.setPosition(p.left, p.top); return this; }, afterRender : function(){ Ext.BoxComponent.superclass.afterRender.call(this); if(this.resizeEl){ this.resizeEl = Ext.get(this.resizeEl); } if(this.positionEl){ this.positionEl = Ext.get(this.positionEl); } this.boxReady = true; Ext.isDefined(this.autoScroll) && this.setAutoScroll(this.autoScroll); this.setSize(this.width, this.height); if(this.x || this.y){ this.setPosition(this.x, this.y); }else if(this.pageX || this.pageY){ this.setPagePosition(this.pageX, this.pageY); } }, syncSize : function(){ delete this.lastSize; this.setSize(this.autoWidth ? undefined : this.getResizeEl().getWidth(), this.autoHeight ? undefined : this.getResizeEl().getHeight()); return this; }, onResize : function(adjWidth, adjHeight, rawWidth, rawHeight){ }, onPosition : function(x, y){ }, adjustSize : function(w, h){ if(this.autoWidth){ w = 'auto'; } if(this.autoHeight){ h = 'auto'; } return {width : w, height: h}; }, adjustPosition : function(x, y){ return {x : x, y: y}; } }); Ext.reg('box', Ext.BoxComponent); Ext.Spacer = Ext.extend(Ext.BoxComponent, { autoEl:'div' }); Ext.reg('spacer', Ext.Spacer); Ext.SplitBar = function(dragElement, resizingElement, orientation, placement, existingProxy){ this.el = Ext.get(dragElement, true); this.el.unselectable(); this.resizingEl = Ext.get(resizingElement, true); this.orientation = orientation || Ext.SplitBar.HORIZONTAL; this.minSize = 0; this.maxSize = 2000; this.animate = false; this.useShim = false; this.shim = null; if(!existingProxy){ this.proxy = Ext.SplitBar.createProxy(this.orientation); }else{ this.proxy = Ext.get(existingProxy).dom; } this.dd = new Ext.dd.DDProxy(this.el.dom.id, "XSplitBars", {dragElId : this.proxy.id}); this.dd.b4StartDrag = this.onStartProxyDrag.createDelegate(this); this.dd.endDrag = this.onEndProxyDrag.createDelegate(this); this.dragSpecs = {}; this.adapter = new Ext.SplitBar.BasicLayoutAdapter(); this.adapter.init(this); if(this.orientation == Ext.SplitBar.HORIZONTAL){ this.placement = placement || (this.el.getX() > this.resizingEl.getX() ? Ext.SplitBar.LEFT : Ext.SplitBar.RIGHT); this.el.addClass("x-splitbar-h"); }else{ this.placement = placement || (this.el.getY() > this.resizingEl.getY() ? Ext.SplitBar.TOP : Ext.SplitBar.BOTTOM); this.el.addClass("x-splitbar-v"); } this.addEvents( "resize", "moved", "beforeresize", "beforeapply" ); Ext.SplitBar.superclass.constructor.call(this); }; Ext.extend(Ext.SplitBar, Ext.util.Observable, { onStartProxyDrag : function(x, y){ this.fireEvent("beforeresize", this); this.overlay = Ext.DomHelper.append(document.body, {cls: "x-drag-overlay", html: " "}, true); this.overlay.unselectable(); this.overlay.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true)); this.overlay.show(); Ext.get(this.proxy).setDisplayed("block"); var size = this.adapter.getElementSize(this); this.activeMinSize = this.getMinimumSize(); this.activeMaxSize = this.getMaximumSize(); var c1 = size - this.activeMinSize; var c2 = Math.max(this.activeMaxSize - size, 0); if(this.orientation == Ext.SplitBar.HORIZONTAL){ this.dd.resetConstraints(); this.dd.setXConstraint( this.placement == Ext.SplitBar.LEFT ? c1 : c2, this.placement == Ext.SplitBar.LEFT ? c2 : c1, this.tickSize ); this.dd.setYConstraint(0, 0); }else{ this.dd.resetConstraints(); this.dd.setXConstraint(0, 0); this.dd.setYConstraint( this.placement == Ext.SplitBar.TOP ? c1 : c2, this.placement == Ext.SplitBar.TOP ? c2 : c1, this.tickSize ); } this.dragSpecs.startSize = size; this.dragSpecs.startPoint = [x, y]; Ext.dd.DDProxy.prototype.b4StartDrag.call(this.dd, x, y); }, onEndProxyDrag : function(e){ Ext.get(this.proxy).setDisplayed(false); var endPoint = Ext.lib.Event.getXY(e); if(this.overlay){ Ext.destroy(this.overlay); delete this.overlay; } var newSize; if(this.orientation == Ext.SplitBar.HORIZONTAL){ newSize = this.dragSpecs.startSize + (this.placement == Ext.SplitBar.LEFT ? endPoint[0] - this.dragSpecs.startPoint[0] : this.dragSpecs.startPoint[0] - endPoint[0] ); }else{ newSize = this.dragSpecs.startSize + (this.placement == Ext.SplitBar.TOP ? endPoint[1] - this.dragSpecs.startPoint[1] : this.dragSpecs.startPoint[1] - endPoint[1] ); } newSize = Math.min(Math.max(newSize, this.activeMinSize), this.activeMaxSize); if(newSize != this.dragSpecs.startSize){ if(this.fireEvent('beforeapply', this, newSize) !== false){ this.adapter.setElementSize(this, newSize); this.fireEvent("moved", this, newSize); this.fireEvent("resize", this, newSize); } } }, getAdapter : function(){ return this.adapter; }, setAdapter : function(adapter){ this.adapter = adapter; this.adapter.init(this); }, getMinimumSize : function(){ return this.minSize; }, setMinimumSize : function(minSize){ this.minSize = minSize; }, getMaximumSize : function(){ return this.maxSize; }, setMaximumSize : function(maxSize){ this.maxSize = maxSize; }, setCurrentSize : function(size){ var oldAnimate = this.animate; this.animate = false; this.adapter.setElementSize(this, size); this.animate = oldAnimate; }, destroy : function(removeEl){ Ext.destroy(this.shim, Ext.get(this.proxy)); this.dd.unreg(); if(removeEl){ this.el.remove(); } this.purgeListeners(); } }); Ext.SplitBar.createProxy = function(dir){ var proxy = new Ext.Element(document.createElement("div")); document.body.appendChild(proxy.dom); proxy.unselectable(); var cls = 'x-splitbar-proxy'; proxy.addClass(cls + ' ' + (dir == Ext.SplitBar.HORIZONTAL ? cls +'-h' : cls + '-v')); return proxy.dom; }; Ext.SplitBar.BasicLayoutAdapter = function(){ }; Ext.SplitBar.BasicLayoutAdapter.prototype = { init : function(s){ }, getElementSize : function(s){ if(s.orientation == Ext.SplitBar.HORIZONTAL){ return s.resizingEl.getWidth(); }else{ return s.resizingEl.getHeight(); } }, setElementSize : function(s, newSize, onComplete){ if(s.orientation == Ext.SplitBar.HORIZONTAL){ if(!s.animate){ s.resizingEl.setWidth(newSize); if(onComplete){ onComplete(s, newSize); } }else{ s.resizingEl.setWidth(newSize, true, .1, onComplete, 'easeOut'); } }else{ if(!s.animate){ s.resizingEl.setHeight(newSize); if(onComplete){ onComplete(s, newSize); } }else{ s.resizingEl.setHeight(newSize, true, .1, onComplete, 'easeOut'); } } } }; Ext.SplitBar.AbsoluteLayoutAdapter = function(container){ this.basic = new Ext.SplitBar.BasicLayoutAdapter(); this.container = Ext.get(container); }; Ext.SplitBar.AbsoluteLayoutAdapter.prototype = { init : function(s){ this.basic.init(s); }, getElementSize : function(s){ return this.basic.getElementSize(s); }, setElementSize : function(s, newSize, onComplete){ this.basic.setElementSize(s, newSize, this.moveSplitter.createDelegate(this, [s])); }, moveSplitter : function(s){ var yes = Ext.SplitBar; switch(s.placement){ case yes.LEFT: s.el.setX(s.resizingEl.getRight()); break; case yes.RIGHT: s.el.setStyle("right", (this.container.getWidth() - s.resizingEl.getLeft()) + "px"); break; case yes.TOP: s.el.setY(s.resizingEl.getBottom()); break; case yes.BOTTOM: s.el.setY(s.resizingEl.getTop() - s.el.getHeight()); break; } } }; Ext.SplitBar.VERTICAL = 1; Ext.SplitBar.HORIZONTAL = 2; Ext.SplitBar.LEFT = 1; Ext.SplitBar.RIGHT = 2; Ext.SplitBar.TOP = 3; Ext.SplitBar.BOTTOM = 4; Ext.Container = Ext.extend(Ext.BoxComponent, { bufferResize: 50, autoDestroy : true, forceLayout: false, defaultType : 'panel', resizeEvent: 'resize', bubbleEvents: ['add', 'remove'], initComponent : function(){ Ext.Container.superclass.initComponent.call(this); this.addEvents( 'afterlayout', 'beforeadd', 'beforeremove', 'add', 'remove' ); var items = this.items; if(items){ delete this.items; this.add(items); } }, initItems : function(){ if(!this.items){ this.items = new Ext.util.MixedCollection(false, this.getComponentId); this.getLayout(); } }, setLayout : function(layout){ if(this.layout && this.layout != layout){ this.layout.setContainer(null); } this.layout = layout; this.initItems(); layout.setContainer(this); }, afterRender: function(){ Ext.Container.superclass.afterRender.call(this); if(!this.layout){ this.layout = 'auto'; } if(Ext.isObject(this.layout) && !this.layout.layout){ this.layoutConfig = this.layout; this.layout = this.layoutConfig.type; } if(Ext.isString(this.layout)){ this.layout = new Ext.Container.LAYOUTS[this.layout.toLowerCase()](this.layoutConfig); } this.setLayout(this.layout); if(this.activeItem !== undefined && this.layout.setActiveItem){ var item = this.activeItem; delete this.activeItem; this.layout.setActiveItem(item); } if(!this.ownerCt){ this.doLayout(false, true); } if(this.monitorResize === true){ Ext.EventManager.onWindowResize(this.doLayout, this, [false]); } }, getLayoutTarget : function(){ return this.el; }, getComponentId : function(comp){ return comp.getItemId(); }, add : function(comp){ this.initItems(); var args = arguments.length > 1; if(args || Ext.isArray(comp)){ var result = []; Ext.each(args ? arguments : comp, function(c){ result.push(this.add(c)); }, this); return result; } var c = this.lookupComponent(this.applyDefaults(comp)); var index = this.items.length; if(this.fireEvent('beforeadd', this, c, index) !== false && this.onBeforeAdd(c) !== false){ this.items.add(c); c.onAdded(this, index); this.onAdd(c); this.fireEvent('add', this, c, index); } return c; }, onAdd : function(c){ }, onAdded : function(container, pos) { this.ownerCt = container; this.initRef(); this.cascade(function(c){ c.initRef(); }); this.fireEvent('added', this, container, pos); }, insert : function(index, comp) { var args = arguments, length = args.length, result = [], i, c; this.initItems(); if (length > 2) { for (i = length - 1; i >= 1; --i) { result.push(this.insert(index, args[i])); } return result; } c = this.lookupComponent(this.applyDefaults(comp)); index = Math.min(index, this.items.length); if (this.fireEvent('beforeadd', this, c, index) !== false && this.onBeforeAdd(c) !== false) { if (c.ownerCt == this) { this.items.remove(c); } this.items.insert(index, c); c.onAdded(this, index); this.onAdd(c); this.fireEvent('add', this, c, index); } return c; }, applyDefaults : function(c){ var d = this.defaults; if(d){ if(Ext.isFunction(d)){ d = d.call(this, c); } if(Ext.isString(c)){ c = Ext.ComponentMgr.get(c); Ext.apply(c, d); }else if(!c.events){ Ext.applyIf(c.isAction ? c.initialConfig : c, d); }else{ Ext.apply(c, d); } } return c; }, onBeforeAdd : function(item){ if(item.ownerCt){ item.ownerCt.remove(item, false); } if(this.hideBorders === true){ item.border = (item.border === true); } }, remove : function(comp, autoDestroy){ this.initItems(); var c = this.getComponent(comp); if(c && this.fireEvent('beforeremove', this, c) !== false){ this.doRemove(c, autoDestroy); this.fireEvent('remove', this, c); } return c; }, onRemove: function(c){ }, doRemove: function(c, autoDestroy){ var l = this.layout, hasLayout = l && this.rendered; if(hasLayout){ l.onRemove(c); } this.items.remove(c); c.onRemoved(); this.onRemove(c); if(autoDestroy === true || (autoDestroy !== false && this.autoDestroy)){ c.destroy(); } if(hasLayout){ l.afterRemove(c); } }, removeAll: function(autoDestroy){ this.initItems(); var item, rem = [], items = []; this.items.each(function(i){ rem.push(i); }); for (var i = 0, len = rem.length; i < len; ++i){ item = rem[i]; this.remove(item, autoDestroy); if(item.ownerCt !== this){ items.push(item); } } return items; }, getComponent : function(comp){ if(Ext.isObject(comp)){ comp = comp.getItemId(); } return this.items.get(comp); }, lookupComponent : function(comp){ if(Ext.isString(comp)){ return Ext.ComponentMgr.get(comp); }else if(!comp.events){ return this.createComponent(comp); } return comp; }, createComponent : function(config, defaultType){ if (config.render) { return config; } var c = Ext.create(Ext.apply({ ownerCt: this }, config), defaultType || this.defaultType); delete c.initialConfig.ownerCt; delete c.ownerCt; return c; }, canLayout : function() { var el = this.getVisibilityEl(); return el && el.dom && !el.isStyle("display", "none"); }, doLayout : function(shallow, force){ var rendered = this.rendered, forceLayout = force || this.forceLayout; if(this.collapsed || !this.canLayout()){ this.deferLayout = this.deferLayout || !shallow; if(!forceLayout){ return; } shallow = shallow && !this.deferLayout; } else { delete this.deferLayout; } if(rendered && this.layout){ this.layout.layout(); } if(shallow !== true && this.items){ var cs = this.items.items; for(var i = 0, len = cs.length; i < len; i++){ var c = cs[i]; if(c.doLayout){ c.doLayout(false, forceLayout); } } } if(rendered){ this.onLayout(shallow, forceLayout); } this.hasLayout = true; delete this.forceLayout; }, onLayout : Ext.emptyFn, shouldBufferLayout: function(){ var hl = this.hasLayout; if(this.ownerCt){ return hl ? !this.hasLayoutPending() : false; } return hl; }, hasLayoutPending: function(){ var pending = false; this.ownerCt.bubble(function(c){ if(c.layoutPending){ pending = true; return false; } }); return pending; }, onShow : function(){ Ext.Container.superclass.onShow.call(this); if(Ext.isDefined(this.deferLayout)){ delete this.deferLayout; this.doLayout(true); } }, getLayout : function(){ if(!this.layout){ var layout = new Ext.layout.AutoLayout(this.layoutConfig); this.setLayout(layout); } return this.layout; }, beforeDestroy : function(){ var c; if(this.items){ while(c = this.items.first()){ this.doRemove(c, true); } } if(this.monitorResize){ Ext.EventManager.removeResizeListener(this.doLayout, this); } Ext.destroy(this.layout); Ext.Container.superclass.beforeDestroy.call(this); }, cascade : function(fn, scope, args){ if(fn.apply(scope || this, args || [this]) !== false){ if(this.items){ var cs = this.items.items; for(var i = 0, len = cs.length; i < len; i++){ if(cs[i].cascade){ cs[i].cascade(fn, scope, args); }else{ fn.apply(scope || cs[i], args || [cs[i]]); } } } } return this; }, findById : function(id){ var m = null, ct = this; this.cascade(function(c){ if(ct != c && c.id === id){ m = c; return false; } }); return m; }, findByType : function(xtype, shallow){ return this.findBy(function(c){ return c.isXType(xtype, shallow); }); }, find : function(prop, value){ return this.findBy(function(c){ return c[prop] === value; }); }, findBy : function(fn, scope){ var m = [], ct = this; this.cascade(function(c){ if(ct != c && fn.call(scope || c, c, ct) === true){ m.push(c); } }); return m; }, get : function(key){ return this.getComponent(key); } }); Ext.Container.LAYOUTS = {}; Ext.reg('container', Ext.Container); Ext.layout.ContainerLayout = Ext.extend(Object, { monitorResize:false, activeItem : null, constructor : function(config){ this.id = Ext.id(null, 'ext-layout-'); Ext.apply(this, config); }, type: 'container', IEMeasureHack : function(target, viewFlag) { var tChildren = target.dom.childNodes, tLen = tChildren.length, c, d = [], e, i, ret; for (i = 0 ; i < tLen ; i++) { c = tChildren[i]; e = Ext.get(c); if (e) { d[i] = e.getStyle('display'); e.setStyle({display: 'none'}); } } ret = target ? target.getViewSize(viewFlag) : {}; for (i = 0 ; i < tLen ; i++) { c = tChildren[i]; e = Ext.get(c); if (e) { e.setStyle({display: d[i]}); } } return ret; }, getLayoutTargetSize : Ext.EmptyFn, layout : function(){ var ct = this.container, target = ct.getLayoutTarget(); if(!(this.hasLayout || Ext.isEmpty(this.targetCls))){ target.addClass(this.targetCls); } this.onLayout(ct, target); ct.fireEvent('afterlayout', ct, this); }, onLayout : function(ct, target){ this.renderAll(ct, target); }, isValidParent : function(c, target){ return target && c.getPositionEl().dom.parentNode == (target.dom || target); }, renderAll : function(ct, target){ var items = ct.items.items, i, c, len = items.length; for(i = 0; i < len; i++) { c = items[i]; if(c && (!c.rendered || !this.isValidParent(c, target))){ this.renderItem(c, i, target); } } }, renderItem : function(c, position, target){ if (c) { if (!c.rendered) { c.render(target, position); this.configureItem(c); } else if (!this.isValidParent(c, target)) { if (Ext.isNumber(position)) { position = target.dom.childNodes[position]; } target.dom.insertBefore(c.getPositionEl().dom, position || null); c.container = target; this.configureItem(c); } } }, getRenderedItems: function(ct){ var t = ct.getLayoutTarget(), cti = ct.items.items, len = cti.length, i, c, items = []; for (i = 0; i < len; i++) { if((c = cti[i]).rendered && this.isValidParent(c, t) && c.shouldLayout !== false){ items.push(c); } }; return items; }, configureItem: function(c){ if (this.extraCls) { var t = c.getPositionEl ? c.getPositionEl() : c; t.addClass(this.extraCls); } if (c.doLayout && this.forceLayout) { c.doLayout(); } if (this.renderHidden && c != this.activeItem) { c.hide(); } }, onRemove: function(c){ if(this.activeItem == c){ delete this.activeItem; } if(c.rendered && this.extraCls){ var t = c.getPositionEl ? c.getPositionEl() : c; t.removeClass(this.extraCls); } }, afterRemove: function(c){ if(c.removeRestore){ c.removeMode = 'container'; delete c.removeRestore; } }, onResize: function(){ var ct = this.container, b; if(ct.collapsed){ return; } if(b = ct.bufferResize && ct.shouldBufferLayout()){ if(!this.resizeTask){ this.resizeTask = new Ext.util.DelayedTask(this.runLayout, this); this.resizeBuffer = Ext.isNumber(b) ? b : 50; } ct.layoutPending = true; this.resizeTask.delay(this.resizeBuffer); }else{ this.runLayout(); } }, runLayout: function(){ var ct = this.container; this.layout(); ct.onLayout(); delete ct.layoutPending; }, setContainer : function(ct){ if(this.monitorResize && ct != this.container){ var old = this.container; if(old){ old.un(old.resizeEvent, this.onResize, this); } if(ct){ ct.on(ct.resizeEvent, this.onResize, this); } } this.container = ct; }, parseMargins : function(v){ if (Ext.isNumber(v)) { v = v.toString(); } var ms = v.split(' '), len = ms.length; if (len == 1) { ms[1] = ms[2] = ms[3] = ms[0]; } else if(len == 2) { ms[2] = ms[0]; ms[3] = ms[1]; } else if(len == 3) { ms[3] = ms[1]; } return { top :parseInt(ms[0], 10) || 0, right :parseInt(ms[1], 10) || 0, bottom:parseInt(ms[2], 10) || 0, left :parseInt(ms[3], 10) || 0 }; }, fieldTpl: (function() { var t = new Ext.Template( '
      ', '', '
      ', '
      ', '
      ' ); t.disableFormats = true; return t.compile(); })(), destroy : function(){ if(this.resizeTask && this.resizeTask.cancel){ this.resizeTask.cancel(); } if(this.container) { this.container.un(this.container.resizeEvent, this.onResize, this); } if(!Ext.isEmpty(this.targetCls)){ var target = this.container.getLayoutTarget(); if(target){ target.removeClass(this.targetCls); } } } }); Ext.layout.AutoLayout = Ext.extend(Ext.layout.ContainerLayout, { type: 'auto', monitorResize: true, onLayout : function(ct, target){ Ext.layout.AutoLayout.superclass.onLayout.call(this, ct, target); var cs = this.getRenderedItems(ct), len = cs.length, i, c; for(i = 0; i < len; i++){ c = cs[i]; if (c.doLayout){ c.doLayout(true); } } } }); Ext.Container.LAYOUTS['auto'] = Ext.layout.AutoLayout; Ext.layout.FitLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize:true, type: 'fit', getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(); if (!target) { return {}; } return target.getStyleSize(); }, onLayout : function(ct, target){ Ext.layout.FitLayout.superclass.onLayout.call(this, ct, target); if(!ct.collapsed){ this.setItemSize(this.activeItem || ct.items.itemAt(0), this.getLayoutTargetSize()); } }, setItemSize : function(item, size){ if(item && size.height > 0){ item.setSize(size); } } }); Ext.Container.LAYOUTS['fit'] = Ext.layout.FitLayout; Ext.layout.CardLayout = Ext.extend(Ext.layout.FitLayout, { deferredRender : false, layoutOnCardChange : false, renderHidden : true, type: 'card', setActiveItem : function(item){ var ai = this.activeItem, ct = this.container; item = ct.getComponent(item); if(item && ai != item){ if(ai){ ai.hide(); if (ai.hidden !== true) { return false; } ai.fireEvent('deactivate', ai); } var layout = item.doLayout && (this.layoutOnCardChange || !item.rendered); this.activeItem = item; delete item.deferLayout; item.show(); this.layout(); if(layout){ item.doLayout(); } item.fireEvent('activate', item); } }, renderAll : function(ct, target){ if(this.deferredRender){ this.renderItem(this.activeItem, undefined, target); }else{ Ext.layout.CardLayout.superclass.renderAll.call(this, ct, target); } } }); Ext.Container.LAYOUTS['card'] = Ext.layout.CardLayout; Ext.layout.AnchorLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize : true, type : 'anchor', defaultAnchor : '100%', parseAnchorRE : /^(r|right|b|bottom)$/i, getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(), ret = {}; if (target) { ret = target.getViewSize(); if (Ext.isIE9m && Ext.isStrict && ret.width == 0){ ret = target.getStyleSize(); } ret.width -= target.getPadding('lr'); ret.height -= target.getPadding('tb'); } return ret; }, onLayout : function(container, target) { Ext.layout.AnchorLayout.superclass.onLayout.call(this, container, target); var size = this.getLayoutTargetSize(), containerWidth = size.width, containerHeight = size.height, overflow = target.getStyle('overflow'), components = this.getRenderedItems(container), len = components.length, boxes = [], box, anchorWidth, anchorHeight, component, anchorSpec, calcWidth, calcHeight, anchorsArray, totalHeight = 0, i, el; if(containerWidth < 20 && containerHeight < 20){ return; } if(container.anchorSize) { if(typeof container.anchorSize == 'number') { anchorWidth = container.anchorSize; } else { anchorWidth = container.anchorSize.width; anchorHeight = container.anchorSize.height; } } else { anchorWidth = container.initialConfig.width; anchorHeight = container.initialConfig.height; } for(i = 0; i < len; i++) { component = components[i]; el = component.getPositionEl(); if (!component.anchor && component.items && !Ext.isNumber(component.width) && !(Ext.isIE6 && Ext.isStrict)){ component.anchor = this.defaultAnchor; } if(component.anchor) { anchorSpec = component.anchorSpec; if(!anchorSpec){ anchorsArray = component.anchor.split(' '); component.anchorSpec = anchorSpec = { right: this.parseAnchor(anchorsArray[0], component.initialConfig.width, anchorWidth), bottom: this.parseAnchor(anchorsArray[1], component.initialConfig.height, anchorHeight) }; } calcWidth = anchorSpec.right ? this.adjustWidthAnchor(anchorSpec.right(containerWidth) - el.getMargins('lr'), component) : undefined; calcHeight = anchorSpec.bottom ? this.adjustHeightAnchor(anchorSpec.bottom(containerHeight) - el.getMargins('tb'), component) : undefined; if(calcWidth || calcHeight) { boxes.push({ component: component, width: calcWidth || undefined, height: calcHeight || undefined }); } } } for (i = 0, len = boxes.length; i < len; i++) { box = boxes[i]; box.component.setSize(box.width, box.height); } if (overflow && overflow != 'hidden' && !this.adjustmentPass) { var newTargetSize = this.getLayoutTargetSize(); if (newTargetSize.width != size.width || newTargetSize.height != size.height){ this.adjustmentPass = true; this.onLayout(container, target); } } delete this.adjustmentPass; }, parseAnchor : function(a, start, cstart) { if (a && a != 'none') { var last; if (this.parseAnchorRE.test(a)) { var diff = cstart - start; return function(v){ if(v !== last){ last = v; return v - diff; } }; } else if(a.indexOf('%') != -1) { var ratio = parseFloat(a.replace('%', ''))*.01; return function(v){ if(v !== last){ last = v; return Math.floor(v*ratio); } }; } else { a = parseInt(a, 10); if (!isNaN(a)) { return function(v) { if (v !== last) { last = v; return v + a; } }; } } } return false; }, adjustWidthAnchor : function(value, comp){ return value; }, adjustHeightAnchor : function(value, comp){ return value; } }); Ext.Container.LAYOUTS['anchor'] = Ext.layout.AnchorLayout; Ext.layout.ColumnLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize:true, type: 'column', extraCls: 'x-column', scrollOffset : 0, targetCls: 'x-column-layout-ct', isValidParent : function(c, target){ return this.innerCt && c.getPositionEl().dom.parentNode == this.innerCt.dom; }, getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(), ret; if (target) { ret = target.getViewSize(); if (Ext.isIE9m && Ext.isStrict && ret.width == 0){ ret = target.getStyleSize(); } ret.width -= target.getPadding('lr'); ret.height -= target.getPadding('tb'); } return ret; }, renderAll : function(ct, target) { if(!this.innerCt){ this.innerCt = target.createChild({cls:'x-column-inner'}); this.innerCt.createChild({cls:'x-clear'}); } Ext.layout.ColumnLayout.superclass.renderAll.call(this, ct, this.innerCt); }, onLayout : function(ct, target){ var cs = ct.items.items, len = cs.length, c, i, m, margins = []; this.renderAll(ct, target); var size = this.getLayoutTargetSize(); if (Ext.isIE9m && (size.width < 1 && size.height < 1)) { return; } var w = size.width - this.scrollOffset, h = size.height, pw = w; this.innerCt.setWidth(w); for(i = 0; i < len; i++){ c = cs[i]; m = c.getPositionEl().getMargins('lr'); margins[i] = m; if(!c.columnWidth){ pw -= (c.getWidth() + m); } } pw = pw < 0 ? 0 : pw; for(i = 0; i < len; i++){ c = cs[i]; m = margins[i]; if(c.columnWidth){ c.setSize(Math.floor(c.columnWidth * pw) - m); } } if (Ext.isIE9m) { if (i = target.getStyle('overflow') && i != 'hidden' && !this.adjustmentPass) { var ts = this.getLayoutTargetSize(); if (ts.width != size.width){ this.adjustmentPass = true; this.onLayout(ct, target); } } } delete this.adjustmentPass; } }); Ext.Container.LAYOUTS['column'] = Ext.layout.ColumnLayout; Ext.layout.BorderLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize:true, rendered : false, type: 'border', targetCls: 'x-border-layout-ct', getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(); return target ? target.getViewSize() : {}; }, onLayout : function(ct, target){ var collapsed, i, c, pos, items = ct.items.items, len = items.length; if(!this.rendered){ collapsed = []; for(i = 0; i < len; i++) { c = items[i]; pos = c.region; if(c.collapsed){ collapsed.push(c); } c.collapsed = false; if(!c.rendered){ c.render(target, i); c.getPositionEl().addClass('x-border-panel'); } this[pos] = pos != 'center' && c.split ? new Ext.layout.BorderLayout.SplitRegion(this, c.initialConfig, pos) : new Ext.layout.BorderLayout.Region(this, c.initialConfig, pos); this[pos].render(target, c); } this.rendered = true; } var size = this.getLayoutTargetSize(); if(size.width < 20 || size.height < 20){ if(collapsed){ this.restoreCollapsed = collapsed; } return; }else if(this.restoreCollapsed){ collapsed = this.restoreCollapsed; delete this.restoreCollapsed; } var w = size.width, h = size.height, centerW = w, centerH = h, centerY = 0, centerX = 0, n = this.north, s = this.south, west = this.west, e = this.east, c = this.center, b, m, totalWidth, totalHeight; if(!c && Ext.layout.BorderLayout.WARN !== false){ throw 'No center region defined in BorderLayout ' + ct.id; } if(n && n.isVisible()){ b = n.getSize(); m = n.getMargins(); b.width = w - (m.left+m.right); b.x = m.left; b.y = m.top; centerY = b.height + b.y + m.bottom; centerH -= centerY; n.applyLayout(b); } if(s && s.isVisible()){ b = s.getSize(); m = s.getMargins(); b.width = w - (m.left+m.right); b.x = m.left; totalHeight = (b.height + m.top + m.bottom); b.y = h - totalHeight + m.top; centerH -= totalHeight; s.applyLayout(b); } if(west && west.isVisible()){ b = west.getSize(); m = west.getMargins(); b.height = centerH - (m.top+m.bottom); b.x = m.left; b.y = centerY + m.top; totalWidth = (b.width + m.left + m.right); centerX += totalWidth; centerW -= totalWidth; west.applyLayout(b); } if(e && e.isVisible()){ b = e.getSize(); m = e.getMargins(); b.height = centerH - (m.top+m.bottom); totalWidth = (b.width + m.left + m.right); b.x = w - totalWidth + m.left; b.y = centerY + m.top; centerW -= totalWidth; e.applyLayout(b); } if(c){ m = c.getMargins(); var centerBox = { x: centerX + m.left, y: centerY + m.top, width: centerW - (m.left+m.right), height: centerH - (m.top+m.bottom) }; c.applyLayout(centerBox); } if(collapsed){ for(i = 0, len = collapsed.length; i < len; i++){ collapsed[i].collapse(false); } } if(Ext.isIE9m && Ext.isStrict){ target.repaint(); } if (i = target.getStyle('overflow') && i != 'hidden' && !this.adjustmentPass) { var ts = this.getLayoutTargetSize(); if (ts.width != size.width || ts.height != size.height){ this.adjustmentPass = true; this.onLayout(ct, target); } } delete this.adjustmentPass; }, destroy: function() { var r = ['north', 'south', 'east', 'west'], i, region; for (i = 0; i < r.length; i++) { region = this[r[i]]; if(region){ if(region.destroy){ region.destroy(); }else if (region.split){ region.split.destroy(true); } } } Ext.layout.BorderLayout.superclass.destroy.call(this); } }); Ext.layout.BorderLayout.Region = function(layout, config, pos){ Ext.apply(this, config); this.layout = layout; this.position = pos; this.state = {}; if(typeof this.margins == 'string'){ this.margins = this.layout.parseMargins(this.margins); } this.margins = Ext.applyIf(this.margins || {}, this.defaultMargins); if(this.collapsible){ if(typeof this.cmargins == 'string'){ this.cmargins = this.layout.parseMargins(this.cmargins); } if(this.collapseMode == 'mini' && !this.cmargins){ this.cmargins = {left:0,top:0,right:0,bottom:0}; }else{ this.cmargins = Ext.applyIf(this.cmargins || {}, pos == 'north' || pos == 'south' ? this.defaultNSCMargins : this.defaultEWCMargins); } } }; Ext.layout.BorderLayout.Region.prototype = { collapsible : false, split:false, floatable: true, minWidth:50, minHeight:50, defaultMargins : {left:0,top:0,right:0,bottom:0}, defaultNSCMargins : {left:5,top:5,right:5,bottom:5}, defaultEWCMargins : {left:5,top:0,right:5,bottom:0}, floatingZIndex: 100, isCollapsed : false, render : function(ct, p){ this.panel = p; p.el.enableDisplayMode(); this.targetEl = ct; this.el = p.el; var gs = p.getState, ps = this.position; p.getState = function(){ return Ext.apply(gs.call(p) || {}, this.state); }.createDelegate(this); if(ps != 'center'){ p.allowQueuedExpand = false; p.on({ beforecollapse: this.beforeCollapse, collapse: this.onCollapse, beforeexpand: this.beforeExpand, expand: this.onExpand, hide: this.onHide, show: this.onShow, scope: this }); if(this.collapsible || this.floatable){ p.collapseEl = 'el'; p.slideAnchor = this.getSlideAnchor(); } if(p.tools && p.tools.toggle){ p.tools.toggle.addClass('x-tool-collapse-'+ps); p.tools.toggle.addClassOnOver('x-tool-collapse-'+ps+'-over'); } } }, getCollapsedEl : function(){ if(!this.collapsedEl){ if(!this.toolTemplate){ var tt = new Ext.Template( '
       
      ' ); tt.disableFormats = true; tt.compile(); Ext.layout.BorderLayout.Region.prototype.toolTemplate = tt; } this.collapsedEl = this.targetEl.createChild({ cls: "x-layout-collapsed x-layout-collapsed-"+this.position, id: this.panel.id + '-xcollapsed' }); this.collapsedEl.enableDisplayMode('block'); if(this.collapseMode == 'mini'){ this.collapsedEl.addClass('x-layout-cmini-'+this.position); this.miniCollapsedEl = this.collapsedEl.createChild({ cls: "x-layout-mini x-layout-mini-"+this.position, html: " " }); this.miniCollapsedEl.addClassOnOver('x-layout-mini-over'); this.collapsedEl.addClassOnOver("x-layout-collapsed-over"); this.collapsedEl.on('click', this.onExpandClick, this, {stopEvent:true}); }else { if(this.collapsible !== false && !this.hideCollapseTool) { var t = this.expandToolEl = this.toolTemplate.append( this.collapsedEl.dom, {id:'expand-'+this.position}, true); t.addClassOnOver('x-tool-expand-'+this.position+'-over'); t.on('click', this.onExpandClick, this, {stopEvent:true}); } if(this.floatable !== false || this.titleCollapse){ this.collapsedEl.addClassOnOver("x-layout-collapsed-over"); this.collapsedEl.on("click", this[this.floatable ? 'collapseClick' : 'onExpandClick'], this); } } } return this.collapsedEl; }, onExpandClick : function(e){ if(this.isSlid){ this.panel.expand(false); }else{ this.panel.expand(); } }, onCollapseClick : function(e){ this.panel.collapse(); }, beforeCollapse : function(p, animate){ this.lastAnim = animate; if(this.splitEl){ this.splitEl.hide(); } this.getCollapsedEl().show(); var el = this.panel.getEl(); this.originalZIndex = el.getStyle('z-index'); el.setStyle('z-index', 100); this.isCollapsed = true; this.layout.layout(); }, onCollapse : function(animate){ this.panel.el.setStyle('z-index', 1); if(this.lastAnim === false || this.panel.animCollapse === false){ this.getCollapsedEl().dom.style.visibility = 'visible'; }else{ this.getCollapsedEl().slideIn(this.panel.slideAnchor, {duration:.2}); } this.state.collapsed = true; this.panel.saveState(); }, beforeExpand : function(animate){ if(this.isSlid){ this.afterSlideIn(); } var c = this.getCollapsedEl(); this.el.show(); if(this.position == 'east' || this.position == 'west'){ this.panel.setSize(undefined, c.getHeight()); }else{ this.panel.setSize(c.getWidth(), undefined); } c.hide(); c.dom.style.visibility = 'hidden'; this.panel.el.setStyle('z-index', this.floatingZIndex); }, onExpand : function(){ this.isCollapsed = false; if(this.splitEl){ this.splitEl.show(); } this.layout.layout(); this.panel.el.setStyle('z-index', this.originalZIndex); this.state.collapsed = false; this.panel.saveState(); }, collapseClick : function(e){ if(this.isSlid){ e.stopPropagation(); this.slideIn(); }else{ e.stopPropagation(); this.slideOut(); } }, onHide : function(){ if(this.isCollapsed){ this.getCollapsedEl().hide(); }else if(this.splitEl){ this.splitEl.hide(); } }, onShow : function(){ if(this.isCollapsed){ this.getCollapsedEl().show(); }else if(this.splitEl){ this.splitEl.show(); } }, isVisible : function(){ return !this.panel.hidden; }, getMargins : function(){ return this.isCollapsed && this.cmargins ? this.cmargins : this.margins; }, getSize : function(){ return this.isCollapsed ? this.getCollapsedEl().getSize() : this.panel.getSize(); }, setPanel : function(panel){ this.panel = panel; }, getMinWidth: function(){ return this.minWidth; }, getMinHeight: function(){ return this.minHeight; }, applyLayoutCollapsed : function(box){ var ce = this.getCollapsedEl(); ce.setLeftTop(box.x, box.y); ce.setSize(box.width, box.height); }, applyLayout : function(box){ if(this.isCollapsed){ this.applyLayoutCollapsed(box); }else{ this.panel.setPosition(box.x, box.y); this.panel.setSize(box.width, box.height); } }, beforeSlide: function(){ this.panel.beforeEffect(); }, afterSlide : function(){ this.panel.afterEffect(); }, initAutoHide : function(){ if(this.autoHide !== false){ if(!this.autoHideHd){ this.autoHideSlideTask = new Ext.util.DelayedTask(this.slideIn, this); this.autoHideHd = { "mouseout": function(e){ if(!e.within(this.el, true)){ this.autoHideSlideTask.delay(500); } }, "mouseover" : function(e){ this.autoHideSlideTask.cancel(); }, scope : this }; } this.el.on(this.autoHideHd); this.collapsedEl.on(this.autoHideHd); } }, clearAutoHide : function(){ if(this.autoHide !== false){ this.el.un("mouseout", this.autoHideHd.mouseout); this.el.un("mouseover", this.autoHideHd.mouseover); this.collapsedEl.un("mouseout", this.autoHideHd.mouseout); this.collapsedEl.un("mouseover", this.autoHideHd.mouseover); } }, clearMonitor : function(){ Ext.getDoc().un("click", this.slideInIf, this); }, slideOut : function(){ if(this.isSlid || this.el.hasActiveFx()){ return; } this.isSlid = true; var ts = this.panel.tools, dh, pc; if(ts && ts.toggle){ ts.toggle.hide(); } this.el.show(); pc = this.panel.collapsed; this.panel.collapsed = false; if(this.position == 'east' || this.position == 'west'){ dh = this.panel.deferHeight; this.panel.deferHeight = false; this.panel.setSize(undefined, this.collapsedEl.getHeight()); this.panel.deferHeight = dh; }else{ this.panel.setSize(this.collapsedEl.getWidth(), undefined); } this.panel.collapsed = pc; this.restoreLT = [this.el.dom.style.left, this.el.dom.style.top]; this.el.alignTo(this.collapsedEl, this.getCollapseAnchor()); this.el.setStyle("z-index", this.floatingZIndex+2); this.panel.el.replaceClass('x-panel-collapsed', 'x-panel-floating'); if(this.animFloat !== false){ this.beforeSlide(); this.el.slideIn(this.getSlideAnchor(), { callback: function(){ this.afterSlide(); this.initAutoHide(); Ext.getDoc().on("click", this.slideInIf, this); }, scope: this, block: true }); }else{ this.initAutoHide(); Ext.getDoc().on("click", this.slideInIf, this); } }, afterSlideIn : function(){ this.clearAutoHide(); this.isSlid = false; this.clearMonitor(); this.el.setStyle("z-index", ""); this.panel.el.replaceClass('x-panel-floating', 'x-panel-collapsed'); this.el.dom.style.left = this.restoreLT[0]; this.el.dom.style.top = this.restoreLT[1]; var ts = this.panel.tools; if(ts && ts.toggle){ ts.toggle.show(); } }, slideIn : function(cb){ if(!this.isSlid || this.el.hasActiveFx()){ Ext.callback(cb); return; } this.isSlid = false; if(this.animFloat !== false){ this.beforeSlide(); this.el.slideOut(this.getSlideAnchor(), { callback: function(){ this.el.hide(); this.afterSlide(); this.afterSlideIn(); Ext.callback(cb); }, scope: this, block: true }); }else{ this.el.hide(); this.afterSlideIn(); } }, slideInIf : function(e){ if(!e.within(this.el)){ this.slideIn(); } }, anchors : { "west" : "left", "east" : "right", "north" : "top", "south" : "bottom" }, sanchors : { "west" : "l", "east" : "r", "north" : "t", "south" : "b" }, canchors : { "west" : "tl-tr", "east" : "tr-tl", "north" : "tl-bl", "south" : "bl-tl" }, getAnchor : function(){ return this.anchors[this.position]; }, getCollapseAnchor : function(){ return this.canchors[this.position]; }, getSlideAnchor : function(){ return this.sanchors[this.position]; }, getAlignAdj : function(){ var cm = this.cmargins; switch(this.position){ case "west": return [0, 0]; break; case "east": return [0, 0]; break; case "north": return [0, 0]; break; case "south": return [0, 0]; break; } }, getExpandAdj : function(){ var c = this.collapsedEl, cm = this.cmargins; switch(this.position){ case "west": return [-(cm.right+c.getWidth()+cm.left), 0]; break; case "east": return [cm.right+c.getWidth()+cm.left, 0]; break; case "north": return [0, -(cm.top+cm.bottom+c.getHeight())]; break; case "south": return [0, cm.top+cm.bottom+c.getHeight()]; break; } }, destroy : function(){ if (this.autoHideSlideTask && this.autoHideSlideTask.cancel){ this.autoHideSlideTask.cancel(); } Ext.destroyMembers(this, 'miniCollapsedEl', 'collapsedEl', 'expandToolEl'); } }; Ext.layout.BorderLayout.SplitRegion = function(layout, config, pos){ Ext.layout.BorderLayout.SplitRegion.superclass.constructor.call(this, layout, config, pos); this.applyLayout = this.applyFns[pos]; }; Ext.extend(Ext.layout.BorderLayout.SplitRegion, Ext.layout.BorderLayout.Region, { splitTip : "Drag to resize.", collapsibleSplitTip : "Drag to resize. Double click to hide.", useSplitTips : false, splitSettings : { north : { orientation: Ext.SplitBar.VERTICAL, placement: Ext.SplitBar.TOP, maxFn : 'getVMaxSize', minProp: 'minHeight', maxProp: 'maxHeight' }, south : { orientation: Ext.SplitBar.VERTICAL, placement: Ext.SplitBar.BOTTOM, maxFn : 'getVMaxSize', minProp: 'minHeight', maxProp: 'maxHeight' }, east : { orientation: Ext.SplitBar.HORIZONTAL, placement: Ext.SplitBar.RIGHT, maxFn : 'getHMaxSize', minProp: 'minWidth', maxProp: 'maxWidth' }, west : { orientation: Ext.SplitBar.HORIZONTAL, placement: Ext.SplitBar.LEFT, maxFn : 'getHMaxSize', minProp: 'minWidth', maxProp: 'maxWidth' } }, applyFns : { west : function(box){ if(this.isCollapsed){ return this.applyLayoutCollapsed(box); } var sd = this.splitEl.dom, s = sd.style; this.panel.setPosition(box.x, box.y); var sw = sd.offsetWidth; s.left = (box.x+box.width-sw)+'px'; s.top = (box.y)+'px'; s.height = Math.max(0, box.height)+'px'; this.panel.setSize(box.width-sw, box.height); }, east : function(box){ if(this.isCollapsed){ return this.applyLayoutCollapsed(box); } var sd = this.splitEl.dom, s = sd.style; var sw = sd.offsetWidth; this.panel.setPosition(box.x+sw, box.y); s.left = (box.x)+'px'; s.top = (box.y)+'px'; s.height = Math.max(0, box.height)+'px'; this.panel.setSize(box.width-sw, box.height); }, north : function(box){ if(this.isCollapsed){ return this.applyLayoutCollapsed(box); } var sd = this.splitEl.dom, s = sd.style; var sh = sd.offsetHeight; this.panel.setPosition(box.x, box.y); s.left = (box.x)+'px'; s.top = (box.y+box.height-sh)+'px'; s.width = Math.max(0, box.width)+'px'; this.panel.setSize(box.width, box.height-sh); }, south : function(box){ if(this.isCollapsed){ return this.applyLayoutCollapsed(box); } var sd = this.splitEl.dom, s = sd.style; var sh = sd.offsetHeight; this.panel.setPosition(box.x, box.y+sh); s.left = (box.x)+'px'; s.top = (box.y)+'px'; s.width = Math.max(0, box.width)+'px'; this.panel.setSize(box.width, box.height-sh); } }, render : function(ct, p){ Ext.layout.BorderLayout.SplitRegion.superclass.render.call(this, ct, p); var ps = this.position; this.splitEl = ct.createChild({ cls: "x-layout-split x-layout-split-"+ps, html: " ", id: this.panel.id + '-xsplit' }); if(this.collapseMode == 'mini'){ this.miniSplitEl = this.splitEl.createChild({ cls: "x-layout-mini x-layout-mini-"+ps, html: " " }); this.miniSplitEl.addClassOnOver('x-layout-mini-over'); this.miniSplitEl.on('click', this.onCollapseClick, this, {stopEvent:true}); } var s = this.splitSettings[ps]; this.split = new Ext.SplitBar(this.splitEl.dom, p.el, s.orientation); this.split.tickSize = this.tickSize; this.split.placement = s.placement; this.split.getMaximumSize = this[s.maxFn].createDelegate(this); this.split.minSize = this.minSize || this[s.minProp]; this.split.on("beforeapply", this.onSplitMove, this); this.split.useShim = this.useShim === true; this.maxSize = this.maxSize || this[s.maxProp]; if(p.hidden){ this.splitEl.hide(); } if(this.useSplitTips){ this.splitEl.dom.title = this.collapsible ? this.collapsibleSplitTip : this.splitTip; } if(this.collapsible){ this.splitEl.on("dblclick", this.onCollapseClick, this); } }, getSize : function(){ if(this.isCollapsed){ return this.collapsedEl.getSize(); } var s = this.panel.getSize(); if(this.position == 'north' || this.position == 'south'){ s.height += this.splitEl.dom.offsetHeight; }else{ s.width += this.splitEl.dom.offsetWidth; } return s; }, getHMaxSize : function(){ var cmax = this.maxSize || 10000; var center = this.layout.center; return Math.min(cmax, (this.el.getWidth()+center.el.getWidth())-center.getMinWidth()); }, getVMaxSize : function(){ var cmax = this.maxSize || 10000; var center = this.layout.center; return Math.min(cmax, (this.el.getHeight()+center.el.getHeight())-center.getMinHeight()); }, onSplitMove : function(split, newSize){ var s = this.panel.getSize(); this.lastSplitSize = newSize; if(this.position == 'north' || this.position == 'south'){ this.panel.setSize(s.width, newSize); this.state.height = newSize; }else{ this.panel.setSize(newSize, s.height); this.state.width = newSize; } this.layout.layout(); this.panel.saveState(); return false; }, getSplitBar : function(){ return this.split; }, destroy : function() { Ext.destroy(this.miniSplitEl, this.split, this.splitEl); Ext.layout.BorderLayout.SplitRegion.superclass.destroy.call(this); } }); Ext.Container.LAYOUTS['border'] = Ext.layout.BorderLayout; Ext.layout.FormLayout = Ext.extend(Ext.layout.AnchorLayout, { labelSeparator : ':', trackLabels: true, type: 'form', onRemove: function(c){ Ext.layout.FormLayout.superclass.onRemove.call(this, c); if(this.trackLabels){ c.un('show', this.onFieldShow, this); c.un('hide', this.onFieldHide, this); } var el = c.getPositionEl(), ct = c.getItemCt && c.getItemCt(); if (c.rendered && ct) { if (el && el.dom) { el.insertAfter(ct); } Ext.destroy(ct); Ext.destroyMembers(c, 'label', 'itemCt'); if (c.customItemCt) { Ext.destroyMembers(c, 'getItemCt', 'customItemCt'); } } }, setContainer : function(ct){ Ext.layout.FormLayout.superclass.setContainer.call(this, ct); ct.labelAlign = ct.labelAlign || this.labelAlign; if (ct.labelAlign) { ct.addClass('x-form-label-' + ct.labelAlign); } if (ct.hideLabels || this.hideLabels) { Ext.apply(this, { labelStyle: 'display:none', elementStyle: 'padding-left:0;', labelAdjust: 0 }); } else { this.labelSeparator = Ext.isDefined(ct.labelSeparator) ? ct.labelSeparator : this.labelSeparator; ct.labelWidth = ct.labelWidth || this.labelWidth || 100; if(Ext.isNumber(ct.labelWidth)){ var pad = ct.labelPad || this.labelPad; pad = Ext.isNumber(pad) ? pad : 5; Ext.apply(this, { labelAdjust: ct.labelWidth + pad, labelStyle: 'width:' + ct.labelWidth + 'px;', elementStyle: 'padding-left:' + (ct.labelWidth + pad) + 'px' }); } if(ct.labelAlign == 'top'){ Ext.apply(this, { labelStyle: 'width:auto;', labelAdjust: 0, elementStyle: 'padding-left:0;' }); } } }, isHide: function(c){ return c.hideLabel || this.container.hideLabels; }, onFieldShow: function(c){ c.getItemCt().removeClass('x-hide-' + c.hideMode); if (c.isComposite) { c.doLayout(); } }, onFieldHide: function(c){ c.getItemCt().addClass('x-hide-' + c.hideMode); }, getLabelStyle: function(s){ var ls = '', items = [this.labelStyle, s]; for (var i = 0, len = items.length; i < len; ++i){ if (items[i]){ ls += items[i]; if (ls.substr(-1, 1) != ';'){ ls += ';'; } } } return ls; }, renderItem : function(c, position, target){ if(c && (c.isFormField || c.fieldLabel) && c.inputType != 'hidden'){ var args = this.getTemplateArgs(c); if(Ext.isNumber(position)){ position = target.dom.childNodes[position] || null; } if(position){ c.itemCt = this.fieldTpl.insertBefore(position, args, true); }else{ c.itemCt = this.fieldTpl.append(target, args, true); } if(!c.getItemCt){ Ext.apply(c, { getItemCt: function(){ return c.itemCt; }, customItemCt: true }); } c.label = c.getItemCt().child('label.x-form-item-label'); if(!c.rendered){ c.render('x-form-el-' + c.id); }else if(!this.isValidParent(c, target)){ Ext.fly('x-form-el-' + c.id).appendChild(c.getPositionEl()); } if(this.trackLabels){ if(c.hidden){ this.onFieldHide(c); } c.on({ scope: this, show: this.onFieldShow, hide: this.onFieldHide }); } this.configureItem(c); }else { Ext.layout.FormLayout.superclass.renderItem.apply(this, arguments); } }, getTemplateArgs: function(field) { var noLabelSep = !field.fieldLabel || field.hideLabel, itemCls = (field.itemCls || this.container.itemCls || '') + (field.hideLabel ? ' x-hide-label' : ''); if (Ext.isIE9 && Ext.isIEQuirks && field instanceof Ext.form.TextField) { itemCls += ' x-input-wrapper'; } return { id : field.id, label : field.fieldLabel, itemCls : itemCls, clearCls : field.clearCls || 'x-form-clear-left', labelStyle : this.getLabelStyle(field.labelStyle), elementStyle : this.elementStyle || '', labelSeparator: noLabelSep ? '' : (Ext.isDefined(field.labelSeparator) ? field.labelSeparator : this.labelSeparator) }; }, adjustWidthAnchor: function(value, c){ if(c.label && !this.isHide(c) && (this.container.labelAlign != 'top')){ var adjust = Ext.isIE6 || Ext.isIEQuirks; return value - this.labelAdjust + (adjust ? -3 : 0); } return value; }, adjustHeightAnchor : function(value, c){ if(c.label && !this.isHide(c) && (this.container.labelAlign == 'top')){ return value - c.label.getHeight(); } return value; }, isValidParent : function(c, target){ return target && this.container.getEl().contains(c.getPositionEl()); } }); Ext.Container.LAYOUTS['form'] = Ext.layout.FormLayout; Ext.layout.AccordionLayout = Ext.extend(Ext.layout.FitLayout, { fill : true, autoWidth : true, titleCollapse : true, hideCollapseTool : false, collapseFirst : false, animate : false, sequence : false, activeOnTop : false, type: 'accordion', renderItem : function(c){ if(this.animate === false){ c.animCollapse = false; } c.collapsible = true; if(this.autoWidth){ c.autoWidth = true; } if(this.titleCollapse){ c.titleCollapse = true; } if(this.hideCollapseTool){ c.hideCollapseTool = true; } if(this.collapseFirst !== undefined){ c.collapseFirst = this.collapseFirst; } if(!this.activeItem && !c.collapsed){ this.setActiveItem(c, true); }else if(this.activeItem && this.activeItem != c){ c.collapsed = true; } Ext.layout.AccordionLayout.superclass.renderItem.apply(this, arguments); c.header.addClass('x-accordion-hd'); c.on('beforeexpand', this.beforeExpand, this); }, onRemove: function(c){ Ext.layout.AccordionLayout.superclass.onRemove.call(this, c); if(c.rendered){ c.header.removeClass('x-accordion-hd'); } c.un('beforeexpand', this.beforeExpand, this); }, beforeExpand : function(p, anim){ var ai = this.activeItem; if(ai){ if(this.sequence){ delete this.activeItem; if (!ai.collapsed){ ai.collapse({callback:function(){ p.expand(anim || true); }, scope: this}); return false; } }else{ ai.collapse(this.animate); } } this.setActive(p); if(this.activeOnTop){ p.el.dom.parentNode.insertBefore(p.el.dom, p.el.dom.parentNode.firstChild); } this.layout(); }, setItemSize : function(item, size){ if(this.fill && item){ var hh = 0, i, ct = this.getRenderedItems(this.container), len = ct.length, p; for (i = 0; i < len; i++) { if((p = ct[i]) != item && !p.hidden){ hh += p.header.getHeight(); } }; size.height -= hh; item.setSize(size); } }, setActiveItem : function(item){ this.setActive(item, true); }, setActive : function(item, expand){ var ai = this.activeItem; item = this.container.getComponent(item); if(ai != item){ if(item.rendered && item.collapsed && expand){ item.expand(); }else{ if(ai){ ai.fireEvent('deactivate', ai); } this.activeItem = item; item.fireEvent('activate', item); } } } }); Ext.Container.LAYOUTS.accordion = Ext.layout.AccordionLayout; Ext.layout.Accordion = Ext.layout.AccordionLayout; Ext.layout.TableLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize:false, type: 'table', targetCls: 'x-table-layout-ct', tableAttrs:null, setContainer : function(ct){ Ext.layout.TableLayout.superclass.setContainer.call(this, ct); this.currentRow = 0; this.currentColumn = 0; this.cells = []; }, onLayout : function(ct, target){ var cs = ct.items.items, len = cs.length, c, i; if(!this.table){ target.addClass('x-table-layout-ct'); this.table = target.createChild( Ext.apply({tag:'table', cls:'x-table-layout', cellspacing: 0, cn: {tag: 'tbody'}}, this.tableAttrs), null, true); } this.renderAll(ct, target); }, getRow : function(index){ var row = this.table.tBodies[0].childNodes[index]; if(!row){ row = document.createElement('tr'); this.table.tBodies[0].appendChild(row); } return row; }, getNextCell : function(c){ var cell = this.getNextNonSpan(this.currentColumn, this.currentRow); var curCol = this.currentColumn = cell[0], curRow = this.currentRow = cell[1]; for(var rowIndex = curRow; rowIndex < curRow + (c.rowspan || 1); rowIndex++){ if(!this.cells[rowIndex]){ this.cells[rowIndex] = []; } for(var colIndex = curCol; colIndex < curCol + (c.colspan || 1); colIndex++){ this.cells[rowIndex][colIndex] = true; } } var td = document.createElement('td'); if(c.cellId){ td.id = c.cellId; } var cls = 'x-table-layout-cell'; if(c.cellCls){ cls += ' ' + c.cellCls; } td.className = cls; if(c.colspan){ td.colSpan = c.colspan; } if(c.rowspan){ td.rowSpan = c.rowspan; } this.getRow(curRow).appendChild(td); return td; }, getNextNonSpan: function(colIndex, rowIndex){ var cols = this.columns; while((cols && colIndex >= cols) || (this.cells[rowIndex] && this.cells[rowIndex][colIndex])) { if(cols && colIndex >= cols){ rowIndex++; colIndex = 0; }else{ colIndex++; } } return [colIndex, rowIndex]; }, renderItem : function(c, position, target){ if(!this.table){ this.table = target.createChild( Ext.apply({tag:'table', cls:'x-table-layout', cellspacing: 0, cn: {tag: 'tbody'}}, this.tableAttrs), null, true); } if(c && !c.rendered){ c.render(this.getNextCell(c)); this.configureItem(c); }else if(c && !this.isValidParent(c, target)){ var container = this.getNextCell(c); container.insertBefore(c.getPositionEl().dom, null); c.container = Ext.get(container); this.configureItem(c); } }, isValidParent : function(c, target){ return c.getPositionEl().up('table', 5).dom.parentNode === (target.dom || target); }, destroy: function(){ delete this.table; Ext.layout.TableLayout.superclass.destroy.call(this); } }); Ext.Container.LAYOUTS['table'] = Ext.layout.TableLayout; Ext.layout.AbsoluteLayout = Ext.extend(Ext.layout.AnchorLayout, { extraCls: 'x-abs-layout-item', type: 'absolute', onLayout : function(ct, target){ target.position(); this.paddingLeft = target.getPadding('l'); this.paddingTop = target.getPadding('t'); Ext.layout.AbsoluteLayout.superclass.onLayout.call(this, ct, target); }, adjustWidthAnchor : function(value, comp){ return value ? value - comp.getPosition(true)[0] + this.paddingLeft : value; }, adjustHeightAnchor : function(value, comp){ return value ? value - comp.getPosition(true)[1] + this.paddingTop : value; } }); Ext.Container.LAYOUTS['absolute'] = Ext.layout.AbsoluteLayout; Ext.layout.BoxLayout = Ext.extend(Ext.layout.ContainerLayout, { defaultMargins : {left:0,top:0,right:0,bottom:0}, padding : '0', pack : 'start', monitorResize : true, type: 'box', scrollOffset : 0, extraCls : 'x-box-item', targetCls : 'x-box-layout-ct', innerCls : 'x-box-inner', constructor : function(config){ Ext.layout.BoxLayout.superclass.constructor.call(this, config); if (Ext.isString(this.defaultMargins)) { this.defaultMargins = this.parseMargins(this.defaultMargins); } var handler = this.overflowHandler; if (typeof handler == 'string') { handler = { type: handler }; } var handlerType = 'none'; if (handler && handler.type != undefined) { handlerType = handler.type; } var constructor = Ext.layout.boxOverflow[handlerType]; if (constructor[this.type]) { constructor = constructor[this.type]; } this.overflowHandler = new constructor(this, handler); }, onLayout: function(container, target) { Ext.layout.BoxLayout.superclass.onLayout.call(this, container, target); var tSize = this.getLayoutTargetSize(), items = this.getVisibleItems(container), calcs = this.calculateChildBoxes(items, tSize), boxes = calcs.boxes, meta = calcs.meta; if (tSize.width > 0) { var handler = this.overflowHandler, method = meta.tooNarrow ? 'handleOverflow' : 'clearOverflow'; var results = handler[method](calcs, tSize); if (results) { if (results.targetSize) { tSize = results.targetSize; } if (results.recalculate) { items = this.getVisibleItems(container); calcs = this.calculateChildBoxes(items, tSize); boxes = calcs.boxes; } } } this.layoutTargetLastSize = tSize; this.childBoxCache = calcs; this.updateInnerCtSize(tSize, calcs); this.updateChildBoxes(boxes); this.handleTargetOverflow(tSize, container, target); }, updateChildBoxes: function(boxes) { for (var i = 0, length = boxes.length; i < length; i++) { var box = boxes[i], comp = box.component; if (box.dirtySize) { comp.setSize(box.width, box.height); } if (isNaN(box.left) || isNaN(box.top)) { continue; } comp.setPosition(box.left, box.top); } }, updateInnerCtSize: function(tSize, calcs) { var align = this.align, padding = this.padding, width = tSize.width, height = tSize.height; if (this.type == 'hbox') { var innerCtWidth = width, innerCtHeight = calcs.meta.maxHeight + padding.top + padding.bottom; if (align == 'stretch') { innerCtHeight = height; } else if (align == 'middle') { innerCtHeight = Math.max(height, innerCtHeight); } } else { var innerCtHeight = height, innerCtWidth = calcs.meta.maxWidth + padding.left + padding.right; if (align == 'stretch') { innerCtWidth = width; } else if (align == 'center') { innerCtWidth = Math.max(width, innerCtWidth); } } this.innerCt.setSize(innerCtWidth || undefined, innerCtHeight || undefined); }, handleTargetOverflow: function(previousTargetSize, container, target) { var overflow = target.getStyle('overflow'); if (overflow && overflow != 'hidden' &&!this.adjustmentPass) { var newTargetSize = this.getLayoutTargetSize(); if (newTargetSize.width != previousTargetSize.width || newTargetSize.height != previousTargetSize.height){ this.adjustmentPass = true; this.onLayout(container, target); } } delete this.adjustmentPass; }, isValidParent : function(c, target) { return this.innerCt && c.getPositionEl().dom.parentNode == this.innerCt.dom; }, getVisibleItems: function(ct) { var ct = ct || this.container, t = ct.getLayoutTarget(), cti = ct.items.items, len = cti.length, i, c, items = []; for (i = 0; i < len; i++) { if((c = cti[i]).rendered && this.isValidParent(c, t) && c.hidden !== true && c.collapsed !== true && c.shouldLayout !== false){ items.push(c); } } return items; }, renderAll : function(ct, target) { if (!this.innerCt) { this.innerCt = target.createChild({cls:this.innerCls}); this.padding = this.parseMargins(this.padding); } Ext.layout.BoxLayout.superclass.renderAll.call(this, ct, this.innerCt); }, getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(), ret; if (target) { ret = target.getViewSize(); if (Ext.isIE9m && Ext.isStrict && ret.width == 0){ ret = target.getStyleSize(); } ret.width -= target.getPadding('lr'); ret.height -= target.getPadding('tb'); } return ret; }, renderItem : function(c) { if(Ext.isString(c.margins)){ c.margins = this.parseMargins(c.margins); }else if(!c.margins){ c.margins = this.defaultMargins; } Ext.layout.BoxLayout.superclass.renderItem.apply(this, arguments); }, destroy: function() { Ext.destroy(this.overflowHandler); Ext.layout.BoxLayout.superclass.destroy.apply(this, arguments); } }); Ext.layout.boxOverflow.None = Ext.extend(Object, { constructor: function(layout, config) { this.layout = layout; Ext.apply(this, config || {}); }, handleOverflow: Ext.emptyFn, clearOverflow: Ext.emptyFn }); Ext.layout.boxOverflow.none = Ext.layout.boxOverflow.None; Ext.layout.boxOverflow.Menu = Ext.extend(Ext.layout.boxOverflow.None, { afterCls: 'x-strip-right', noItemsMenuText : '
      (None)
      ', constructor: function(layout) { Ext.layout.boxOverflow.Menu.superclass.constructor.apply(this, arguments); this.menuItems = []; }, createInnerElements: function() { if (!this.afterCt) { this.afterCt = this.layout.innerCt.insertSibling({cls: this.afterCls}, 'before'); } }, clearOverflow: function(calculations, targetSize) { var newWidth = targetSize.width + (this.afterCt ? this.afterCt.getWidth() : 0), items = this.menuItems; this.hideTrigger(); for (var index = 0, length = items.length; index < length; index++) { items.pop().component.show(); } return { targetSize: { height: targetSize.height, width : newWidth } }; }, showTrigger: function() { this.createMenu(); this.menuTrigger.show(); }, hideTrigger: function() { if (this.menuTrigger != undefined) { this.menuTrigger.hide(); } }, beforeMenuShow: function(menu) { var items = this.menuItems, len = items.length, item, prev; var needsSep = function(group, item){ return group.isXType('buttongroup') && !(item instanceof Ext.Toolbar.Separator); }; this.clearMenu(); menu.removeAll(); for (var i = 0; i < len; i++) { item = items[i].component; if (prev && (needsSep(item, prev) || needsSep(prev, item))) { menu.add('-'); } this.addComponentToMenu(menu, item); prev = item; } if (menu.items.length < 1) { menu.add(this.noItemsMenuText); } }, createMenuConfig : function(component, hideOnClick){ var config = Ext.apply({}, component.initialConfig), group = component.toggleGroup; Ext.copyTo(config, component, [ 'iconCls', 'icon', 'itemId', 'disabled', 'handler', 'scope', 'menu' ]); Ext.apply(config, { text : component.overflowText || component.text, hideOnClick: hideOnClick }); if (group || component.enableToggle) { Ext.apply(config, { group : group, checked: component.pressed, listeners: { checkchange: function(item, checked){ component.toggle(checked); } } }); } delete config.ownerCt; delete config.xtype; delete config.id; return config; }, addComponentToMenu : function(menu, component) { if (component instanceof Ext.Toolbar.Separator) { menu.add('-'); } else if (Ext.isFunction(component.isXType)) { if (component.isXType('splitbutton')) { menu.add(this.createMenuConfig(component, true)); } else if (component.isXType('button')) { menu.add(this.createMenuConfig(component, !component.menu)); } else if (component.isXType('buttongroup')) { component.items.each(function(item){ this.addComponentToMenu(menu, item); }, this); } } }, clearMenu : function(){ var menu = this.moreMenu; if (menu && menu.items) { menu.items.each(function(item){ delete item.menu; }); } }, createMenu: function() { if (!this.menuTrigger) { this.createInnerElements(); this.menu = new Ext.menu.Menu({ ownerCt : this.layout.container, listeners: { scope: this, beforeshow: this.beforeMenuShow } }); this.menuTrigger = new Ext.Button({ iconCls : 'x-toolbar-more-icon', cls : 'x-toolbar-more', menu : this.menu, renderTo: this.afterCt }); } }, destroy: function() { Ext.destroy(this.menu, this.menuTrigger); } }); Ext.layout.boxOverflow.menu = Ext.layout.boxOverflow.Menu; Ext.layout.boxOverflow.HorizontalMenu = Ext.extend(Ext.layout.boxOverflow.Menu, { constructor: function() { Ext.layout.boxOverflow.HorizontalMenu.superclass.constructor.apply(this, arguments); var me = this, layout = me.layout, origFunction = layout.calculateChildBoxes; layout.calculateChildBoxes = function(visibleItems, targetSize) { var calcs = origFunction.apply(layout, arguments), meta = calcs.meta, items = me.menuItems; var hiddenWidth = 0; for (var index = 0, length = items.length; index < length; index++) { hiddenWidth += items[index].width; } meta.minimumWidth += hiddenWidth; meta.tooNarrow = meta.minimumWidth > targetSize.width; return calcs; }; }, handleOverflow: function(calculations, targetSize) { this.showTrigger(); var newWidth = targetSize.width - this.afterCt.getWidth(), boxes = calculations.boxes, usedWidth = 0, recalculate = false; for (var index = 0, length = boxes.length; index < length; index++) { usedWidth += boxes[index].width; } var spareWidth = newWidth - usedWidth, showCount = 0; for (var index = 0, length = this.menuItems.length; index < length; index++) { var hidden = this.menuItems[index], comp = hidden.component, width = hidden.width; if (width < spareWidth) { comp.show(); spareWidth -= width; showCount ++; recalculate = true; } else { break; } } if (recalculate) { this.menuItems = this.menuItems.slice(showCount); } else { for (var i = boxes.length - 1; i >= 0; i--) { var item = boxes[i].component, right = boxes[i].left + boxes[i].width; if (right >= newWidth) { this.menuItems.unshift({ component: item, width : boxes[i].width }); item.hide(); } else { break; } } } if (this.menuItems.length == 0) { this.hideTrigger(); } return { targetSize: { height: targetSize.height, width : newWidth }, recalculate: recalculate }; } }); Ext.layout.boxOverflow.menu.hbox = Ext.layout.boxOverflow.HorizontalMenu; Ext.layout.boxOverflow.Scroller = Ext.extend(Ext.layout.boxOverflow.None, { animateScroll: true, scrollIncrement: 100, wheelIncrement: 3, scrollRepeatInterval: 400, scrollDuration: 0.4, beforeCls: 'x-strip-left', afterCls: 'x-strip-right', scrollerCls: 'x-strip-scroller', beforeScrollerCls: 'x-strip-scroller-left', afterScrollerCls: 'x-strip-scroller-right', createWheelListener: function() { this.layout.innerCt.on({ scope : this, mousewheel: function(e) { e.stopEvent(); this.scrollBy(e.getWheelDelta() * this.wheelIncrement * -1, false); } }); }, handleOverflow: function(calculations, targetSize) { this.createInnerElements(); this.showScrollers(); }, clearOverflow: function() { this.hideScrollers(); }, showScrollers: function() { this.createScrollers(); this.beforeScroller.show(); this.afterScroller.show(); this.updateScrollButtons(); }, hideScrollers: function() { if (this.beforeScroller != undefined) { this.beforeScroller.hide(); this.afterScroller.hide(); } }, createScrollers: function() { if (!this.beforeScroller && !this.afterScroller) { var before = this.beforeCt.createChild({ cls: String.format("{0} {1} ", this.scrollerCls, this.beforeScrollerCls) }); var after = this.afterCt.createChild({ cls: String.format("{0} {1}", this.scrollerCls, this.afterScrollerCls) }); before.addClassOnOver(this.beforeScrollerCls + '-hover'); after.addClassOnOver(this.afterScrollerCls + '-hover'); before.setVisibilityMode(Ext.Element.DISPLAY); after.setVisibilityMode(Ext.Element.DISPLAY); this.beforeRepeater = new Ext.util.ClickRepeater(before, { interval: this.scrollRepeatInterval, handler : this.scrollLeft, scope : this }); this.afterRepeater = new Ext.util.ClickRepeater(after, { interval: this.scrollRepeatInterval, handler : this.scrollRight, scope : this }); this.beforeScroller = before; this.afterScroller = after; } }, destroy: function() { Ext.destroy(this.beforeScroller, this.afterScroller, this.beforeRepeater, this.afterRepeater, this.beforeCt, this.afterCt); }, scrollBy: function(delta, animate) { this.scrollTo(this.getScrollPosition() + delta, animate); }, getItem: function(item) { if (Ext.isString(item)) { item = Ext.getCmp(item); } else if (Ext.isNumber(item)) { item = this.items[item]; } return item; }, getScrollAnim: function() { return { duration: this.scrollDuration, callback: this.updateScrollButtons, scope : this }; }, updateScrollButtons: function() { if (this.beforeScroller == undefined || this.afterScroller == undefined) { return; } var beforeMeth = this.atExtremeBefore() ? 'addClass' : 'removeClass', afterMeth = this.atExtremeAfter() ? 'addClass' : 'removeClass', beforeCls = this.beforeScrollerCls + '-disabled', afterCls = this.afterScrollerCls + '-disabled'; this.beforeScroller[beforeMeth](beforeCls); this.afterScroller[afterMeth](afterCls); this.scrolling = false; }, atExtremeBefore: function() { return this.getScrollPosition() === 0; }, scrollLeft: function(animate) { this.scrollBy(-this.scrollIncrement, animate); }, scrollRight: function(animate) { this.scrollBy(this.scrollIncrement, animate); }, scrollToItem: function(item, animate) { item = this.getItem(item); if (item != undefined) { var visibility = this.getItemVisibility(item); if (!visibility.fullyVisible) { var box = item.getBox(true, true), newX = box.x; if (visibility.hiddenRight) { newX -= (this.layout.innerCt.getWidth() - box.width); } this.scrollTo(newX, animate); } } }, getItemVisibility: function(item) { var box = this.getItem(item).getBox(true, true), itemLeft = box.x, itemRight = box.x + box.width, scrollLeft = this.getScrollPosition(), scrollRight = this.layout.innerCt.getWidth() + scrollLeft; return { hiddenLeft : itemLeft < scrollLeft, hiddenRight : itemRight > scrollRight, fullyVisible: itemLeft > scrollLeft && itemRight < scrollRight }; } }); Ext.layout.boxOverflow.scroller = Ext.layout.boxOverflow.Scroller; Ext.layout.boxOverflow.VerticalScroller = Ext.extend(Ext.layout.boxOverflow.Scroller, { scrollIncrement: 75, wheelIncrement : 2, handleOverflow: function(calculations, targetSize) { Ext.layout.boxOverflow.VerticalScroller.superclass.handleOverflow.apply(this, arguments); return { targetSize: { height: targetSize.height - (this.beforeCt.getHeight() + this.afterCt.getHeight()), width : targetSize.width } }; }, createInnerElements: function() { var target = this.layout.innerCt; if (!this.beforeCt) { this.beforeCt = target.insertSibling({cls: this.beforeCls}, 'before'); this.afterCt = target.insertSibling({cls: this.afterCls}, 'after'); this.createWheelListener(); } }, scrollTo: function(position, animate) { var oldPosition = this.getScrollPosition(), newPosition = position.constrain(0, this.getMaxScrollBottom()); if (newPosition != oldPosition && !this.scrolling) { if (animate == undefined) { animate = this.animateScroll; } this.layout.innerCt.scrollTo('top', newPosition, animate ? this.getScrollAnim() : false); if (animate) { this.scrolling = true; } else { this.scrolling = false; this.updateScrollButtons(); } } }, getScrollPosition: function(){ return parseInt(this.layout.innerCt.dom.scrollTop, 10) || 0; }, getMaxScrollBottom: function() { return this.layout.innerCt.dom.scrollHeight - this.layout.innerCt.getHeight(); }, atExtremeAfter: function() { return this.getScrollPosition() >= this.getMaxScrollBottom(); } }); Ext.layout.boxOverflow.scroller.vbox = Ext.layout.boxOverflow.VerticalScroller; Ext.layout.boxOverflow.HorizontalScroller = Ext.extend(Ext.layout.boxOverflow.Scroller, { handleOverflow: function(calculations, targetSize) { Ext.layout.boxOverflow.HorizontalScroller.superclass.handleOverflow.apply(this, arguments); return { targetSize: { height: targetSize.height, width : targetSize.width - (this.beforeCt.getWidth() + this.afterCt.getWidth()) } }; }, createInnerElements: function() { var target = this.layout.innerCt; if (!this.beforeCt) { this.afterCt = target.insertSibling({cls: this.afterCls}, 'before'); this.beforeCt = target.insertSibling({cls: this.beforeCls}, 'before'); this.createWheelListener(); } }, scrollTo: function(position, animate) { var oldPosition = this.getScrollPosition(), newPosition = position.constrain(0, this.getMaxScrollRight()); if (newPosition != oldPosition && !this.scrolling) { if (animate == undefined) { animate = this.animateScroll; } this.layout.innerCt.scrollTo('left', newPosition, animate ? this.getScrollAnim() : false); if (animate) { this.scrolling = true; } else { this.scrolling = false; this.updateScrollButtons(); } } }, getScrollPosition: function(){ return parseInt(this.layout.innerCt.dom.scrollLeft, 10) || 0; }, getMaxScrollRight: function() { return this.layout.innerCt.dom.scrollWidth - this.layout.innerCt.getWidth(); }, atExtremeAfter: function() { return this.getScrollPosition() >= this.getMaxScrollRight(); } }); Ext.layout.boxOverflow.scroller.hbox = Ext.layout.boxOverflow.HorizontalScroller; Ext.layout.HBoxLayout = Ext.extend(Ext.layout.BoxLayout, { align: 'top', type : 'hbox', calculateChildBoxes: function(visibleItems, targetSize) { var visibleCount = visibleItems.length, padding = this.padding, topOffset = padding.top, leftOffset = padding.left, paddingVert = topOffset + padding.bottom, paddingHoriz = leftOffset + padding.right, width = targetSize.width - this.scrollOffset, height = targetSize.height, availHeight = Math.max(0, height - paddingVert), isStart = this.pack == 'start', isCenter = this.pack == 'center', isEnd = this.pack == 'end', nonFlexWidth = 0, maxHeight = 0, totalFlex = 0, desiredWidth = 0, minimumWidth = 0, boxes = [], child, childWidth, childHeight, childSize, childMargins, canLayout, i, calcs, flexedWidth, horizMargins, vertMargins, stretchHeight; for (i = 0; i < visibleCount; i++) { child = visibleItems[i]; childHeight = child.height; childWidth = child.width; canLayout = !child.hasLayout && typeof child.doLayout == 'function'; if (typeof childWidth != 'number') { if (child.flex && !childWidth) { totalFlex += child.flex; } else { if (!childWidth && canLayout) { child.doLayout(); } childSize = child.getSize(); childWidth = childSize.width; childHeight = childSize.height; } } childMargins = child.margins; horizMargins = childMargins.left + childMargins.right; nonFlexWidth += horizMargins + (childWidth || 0); desiredWidth += horizMargins + (child.flex ? child.minWidth || 0 : childWidth); minimumWidth += horizMargins + (child.minWidth || childWidth || 0); if (typeof childHeight != 'number') { if (canLayout) { child.doLayout(); } childHeight = child.getHeight(); } maxHeight = Math.max(maxHeight, childHeight + childMargins.top + childMargins.bottom); boxes.push({ component: child, height : childHeight || undefined, width : childWidth || undefined }); } var shortfall = desiredWidth - width, tooNarrow = minimumWidth > width; var availableWidth = Math.max(0, width - nonFlexWidth - paddingHoriz); if (tooNarrow) { for (i = 0; i < visibleCount; i++) { boxes[i].width = visibleItems[i].minWidth || visibleItems[i].width || boxes[i].width; } } else { if (shortfall > 0) { var minWidths = []; for (var index = 0, length = visibleCount; index < length; index++) { var item = visibleItems[index], minWidth = item.minWidth || 0; if (item.flex) { boxes[index].width = minWidth; } else { minWidths.push({ minWidth : minWidth, available: boxes[index].width - minWidth, index : index }); } } minWidths.sort(function(a, b) { return a.available > b.available ? 1 : -1; }); for (var i = 0, length = minWidths.length; i < length; i++) { var itemIndex = minWidths[i].index; if (itemIndex == undefined) { continue; } var item = visibleItems[itemIndex], box = boxes[itemIndex], oldWidth = box.width, minWidth = item.minWidth, newWidth = Math.max(minWidth, oldWidth - Math.ceil(shortfall / (length - i))), reduction = oldWidth - newWidth; boxes[itemIndex].width = newWidth; shortfall -= reduction; } } else { var remainingWidth = availableWidth, remainingFlex = totalFlex; for (i = 0; i < visibleCount; i++) { child = visibleItems[i]; calcs = boxes[i]; childMargins = child.margins; vertMargins = childMargins.top + childMargins.bottom; if (isStart && child.flex && !child.width) { flexedWidth = Math.ceil((child.flex / remainingFlex) * remainingWidth); remainingWidth -= flexedWidth; remainingFlex -= child.flex; calcs.width = flexedWidth; calcs.dirtySize = true; } } } } if (isCenter) { leftOffset += availableWidth / 2; } else if (isEnd) { leftOffset += availableWidth; } for (i = 0; i < visibleCount; i++) { child = visibleItems[i]; calcs = boxes[i]; childMargins = child.margins; leftOffset += childMargins.left; vertMargins = childMargins.top + childMargins.bottom; calcs.left = leftOffset; calcs.top = topOffset + childMargins.top; switch (this.align) { case 'stretch': stretchHeight = availHeight - vertMargins; calcs.height = stretchHeight.constrain(child.minHeight || 0, child.maxHeight || 1000000); calcs.dirtySize = true; break; case 'stretchmax': stretchHeight = maxHeight - vertMargins; calcs.height = stretchHeight.constrain(child.minHeight || 0, child.maxHeight || 1000000); calcs.dirtySize = true; break; case 'middle': var diff = availHeight - calcs.height - vertMargins; if (diff > 0) { calcs.top = topOffset + vertMargins + (diff / 2); } } leftOffset += calcs.width + childMargins.right; } return { boxes: boxes, meta : { maxHeight : maxHeight, nonFlexWidth: nonFlexWidth, desiredWidth: desiredWidth, minimumWidth: minimumWidth, shortfall : desiredWidth - width, tooNarrow : tooNarrow } }; } }); Ext.Container.LAYOUTS.hbox = Ext.layout.HBoxLayout; Ext.layout.VBoxLayout = Ext.extend(Ext.layout.BoxLayout, { align : 'left', type: 'vbox', calculateChildBoxes: function(visibleItems, targetSize) { var visibleCount = visibleItems.length, padding = this.padding, topOffset = padding.top, leftOffset = padding.left, paddingVert = topOffset + padding.bottom, paddingHoriz = leftOffset + padding.right, width = targetSize.width - this.scrollOffset, height = targetSize.height, availWidth = Math.max(0, width - paddingHoriz), isStart = this.pack == 'start', isCenter = this.pack == 'center', isEnd = this.pack == 'end', nonFlexHeight= 0, maxWidth = 0, totalFlex = 0, desiredHeight= 0, minimumHeight= 0, boxes = [], child, childWidth, childHeight, childSize, childMargins, canLayout, i, calcs, flexedHeight, horizMargins, vertMargins, stretchWidth, length; for (i = 0; i < visibleCount; i++) { child = visibleItems[i]; childHeight = child.height; childWidth = child.width; canLayout = !child.hasLayout && typeof child.doLayout == 'function'; if (typeof childHeight != 'number') { if (child.flex && !childHeight) { totalFlex += child.flex; } else { if (!childHeight && canLayout) { child.doLayout(); } childSize = child.getSize(); childWidth = childSize.width; childHeight = childSize.height; } } childMargins = child.margins; vertMargins = childMargins.top + childMargins.bottom; nonFlexHeight += vertMargins + (childHeight || 0); desiredHeight += vertMargins + (child.flex ? child.minHeight || 0 : childHeight); minimumHeight += vertMargins + (child.minHeight || childHeight || 0); if (typeof childWidth != 'number') { if (canLayout) { child.doLayout(); } childWidth = child.getWidth(); } maxWidth = Math.max(maxWidth, childWidth + childMargins.left + childMargins.right); boxes.push({ component: child, height : childHeight || undefined, width : childWidth || undefined }); } var shortfall = desiredHeight - height, tooNarrow = minimumHeight > height; var availableHeight = Math.max(0, (height - nonFlexHeight - paddingVert)); if (tooNarrow) { for (i = 0, length = visibleCount; i < length; i++) { boxes[i].height = visibleItems[i].minHeight || visibleItems[i].height || boxes[i].height; } } else { if (shortfall > 0) { var minHeights = []; for (var index = 0, length = visibleCount; index < length; index++) { var item = visibleItems[index], minHeight = item.minHeight || 0; if (item.flex) { boxes[index].height = minHeight; } else { minHeights.push({ minHeight: minHeight, available: boxes[index].height - minHeight, index : index }); } } minHeights.sort(function(a, b) { return a.available > b.available ? 1 : -1; }); for (var i = 0, length = minHeights.length; i < length; i++) { var itemIndex = minHeights[i].index; if (itemIndex == undefined) { continue; } var item = visibleItems[itemIndex], box = boxes[itemIndex], oldHeight = box.height, minHeight = item.minHeight, newHeight = Math.max(minHeight, oldHeight - Math.ceil(shortfall / (length - i))), reduction = oldHeight - newHeight; boxes[itemIndex].height = newHeight; shortfall -= reduction; } } else { var remainingHeight = availableHeight, remainingFlex = totalFlex; for (i = 0; i < visibleCount; i++) { child = visibleItems[i]; calcs = boxes[i]; childMargins = child.margins; horizMargins = childMargins.left + childMargins.right; if (isStart && child.flex && !child.height) { flexedHeight = Math.ceil((child.flex / remainingFlex) * remainingHeight); remainingHeight -= flexedHeight; remainingFlex -= child.flex; calcs.height = flexedHeight; calcs.dirtySize = true; } } } } if (isCenter) { topOffset += availableHeight / 2; } else if (isEnd) { topOffset += availableHeight; } for (i = 0; i < visibleCount; i++) { child = visibleItems[i]; calcs = boxes[i]; childMargins = child.margins; topOffset += childMargins.top; horizMargins = childMargins.left + childMargins.right; calcs.left = leftOffset + childMargins.left; calcs.top = topOffset; switch (this.align) { case 'stretch': stretchWidth = availWidth - horizMargins; calcs.width = stretchWidth.constrain(child.minWidth || 0, child.maxWidth || 1000000); calcs.dirtySize = true; break; case 'stretchmax': stretchWidth = maxWidth - horizMargins; calcs.width = stretchWidth.constrain(child.minWidth || 0, child.maxWidth || 1000000); calcs.dirtySize = true; break; case 'center': var diff = availWidth - calcs.width - horizMargins; if (diff > 0) { calcs.left = leftOffset + horizMargins + (diff / 2); } } topOffset += calcs.height + childMargins.bottom; } return { boxes: boxes, meta : { maxWidth : maxWidth, nonFlexHeight: nonFlexHeight, desiredHeight: desiredHeight, minimumHeight: minimumHeight, shortfall : desiredHeight - height, tooNarrow : tooNarrow } }; } }); Ext.Container.LAYOUTS.vbox = Ext.layout.VBoxLayout; Ext.layout.ToolbarLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize : true, type: 'toolbar', triggerWidth: 18, noItemsMenuText : '
      (None)
      ', lastOverflow: false, tableHTML: [ '', '', '', '', '', '', '', '
      ', '', '', '', '', '
      ', '      		', '', '', '', '', '', '', '', '
      ', '', '', '', '', '
      ', '      		', '', '', '', '', '
      ', '
      ', '
      ' ].join(""), onLayout : function(ct, target) { if (!this.leftTr) { var align = ct.buttonAlign == 'center' ? 'center' : 'left'; target.addClass('x-toolbar-layout-ct'); target.insertHtml('beforeEnd', String.format(this.tableHTML, align)); this.leftTr = target.child('tr.x-toolbar-left-row', true); this.rightTr = target.child('tr.x-toolbar-right-row', true); this.extrasTr = target.child('tr.x-toolbar-extras-row', true); if (this.hiddenItem == undefined) { this.hiddenItems = []; } } var side = ct.buttonAlign == 'right' ? this.rightTr : this.leftTr, items = ct.items.items, position = 0; for (var i = 0, len = items.length, c; i < len; i++, position++) { c = items[i]; if (c.isFill) { side = this.rightTr; position = -1; } else if (!c.rendered) { c.render(this.insertCell(c, side, position)); this.configureItem(c); } else { if (!c.xtbHidden && !this.isValidParent(c, side.childNodes[position])) { var td = this.insertCell(c, side, position); td.appendChild(c.getPositionEl().dom); c.container = Ext.get(td); } } } this.cleanup(this.leftTr); this.cleanup(this.rightTr); this.cleanup(this.extrasTr); this.fitToSize(target); }, cleanup : function(el) { var cn = el.childNodes, i, c; for (i = cn.length-1; i >= 0 && (c = cn[i]); i--) { if (!c.firstChild) { el.removeChild(c); } } }, insertCell : function(c, target, position) { var td = document.createElement('td'); td.className = 'x-toolbar-cell'; target.insertBefore(td, target.childNodes[position] || null); return td; }, hideItem : function(item) { this.hiddenItems.push(item); item.xtbHidden = true; item.xtbWidth = item.getPositionEl().dom.parentNode.offsetWidth; item.hide(); }, unhideItem : function(item) { item.show(); item.xtbHidden = false; this.hiddenItems.remove(item); }, getItemWidth : function(c) { return c.hidden ? (c.xtbWidth || 0) : c.getPositionEl().dom.parentNode.offsetWidth; }, fitToSize : function(target) { if (this.container.enableOverflow === false) { return; } var width = target.dom.clientWidth, tableWidth = target.dom.firstChild.offsetWidth, clipWidth = width - this.triggerWidth, lastWidth = this.lastWidth || 0, hiddenItems = this.hiddenItems, hasHiddens = hiddenItems.length != 0, isLarger = width >= lastWidth; this.lastWidth = width; if (tableWidth > width || (hasHiddens && isLarger)) { var items = this.container.items.items, len = items.length, loopWidth = 0, item; for (var i = 0; i < len; i++) { item = items[i]; if (!item.isFill) { loopWidth += this.getItemWidth(item); if (loopWidth > clipWidth) { if (!(item.hidden || item.xtbHidden)) { this.hideItem(item); } } else if (item.xtbHidden) { this.unhideItem(item); } } } } hasHiddens = hiddenItems.length != 0; if (hasHiddens) { this.initMore(); if (!this.lastOverflow) { this.container.fireEvent('overflowchange', this.container, true); this.lastOverflow = true; } } else if (this.more) { this.clearMenu(); this.more.destroy(); delete this.more; if (this.lastOverflow) { this.container.fireEvent('overflowchange', this.container, false); this.lastOverflow = false; } } }, createMenuConfig : function(component, hideOnClick){ var config = Ext.apply({}, component.initialConfig), group = component.toggleGroup; Ext.copyTo(config, component, [ 'iconCls', 'icon', 'itemId', 'disabled', 'handler', 'scope', 'menu' ]); Ext.apply(config, { text : component.overflowText || component.text, hideOnClick: hideOnClick }); if (group || component.enableToggle) { Ext.apply(config, { group : group, checked: component.pressed, listeners: { checkchange: function(item, checked){ component.toggle(checked); } } }); } delete config.ownerCt; delete config.xtype; delete config.id; return config; }, addComponentToMenu : function(menu, component) { if (component instanceof Ext.Toolbar.Separator) { menu.add('-'); } else if (Ext.isFunction(component.isXType)) { if (component.isXType('splitbutton')) { menu.add(this.createMenuConfig(component, true)); } else if (component.isXType('button')) { menu.add(this.createMenuConfig(component, !component.menu)); } else if (component.isXType('buttongroup')) { component.items.each(function(item){ this.addComponentToMenu(menu, item); }, this); } } }, clearMenu : function(){ var menu = this.moreMenu; if (menu && menu.items) { menu.items.each(function(item){ delete item.menu; }); } }, beforeMoreShow : function(menu) { var items = this.container.items.items, len = items.length, item, prev; var needsSep = function(group, item){ return group.isXType('buttongroup') && !(item instanceof Ext.Toolbar.Separator); }; this.clearMenu(); menu.removeAll(); for (var i = 0; i < len; i++) { item = items[i]; if (item.xtbHidden) { if (prev && (needsSep(item, prev) || needsSep(prev, item))) { menu.add('-'); } this.addComponentToMenu(menu, item); prev = item; } } if (menu.items.length < 1) { menu.add(this.noItemsMenuText); } }, initMore : function(){ if (!this.more) { this.moreMenu = new Ext.menu.Menu({ ownerCt : this.container, listeners: { beforeshow: this.beforeMoreShow, scope: this } }); this.more = new Ext.Button({ iconCls: 'x-toolbar-more-icon', cls : 'x-toolbar-more', menu : this.moreMenu, ownerCt: this.container }); var td = this.insertCell(this.more, this.extrasTr, 100); this.more.render(td); } }, destroy : function(){ Ext.destroy(this.more, this.moreMenu); delete this.leftTr; delete this.rightTr; delete this.extrasTr; Ext.layout.ToolbarLayout.superclass.destroy.call(this); } }); Ext.Container.LAYOUTS.toolbar = Ext.layout.ToolbarLayout; Ext.layout.MenuLayout = Ext.extend(Ext.layout.ContainerLayout, { monitorResize : true, type: 'menu', setContainer : function(ct){ this.monitorResize = !ct.floating; ct.on('autosize', this.doAutoSize, this); Ext.layout.MenuLayout.superclass.setContainer.call(this, ct); }, renderItem : function(c, position, target){ if (!this.itemTpl) { this.itemTpl = Ext.layout.MenuLayout.prototype.itemTpl = new Ext.XTemplate( '
    • ', '', '{altText}', '', '
      • ' ); } if(c && !c.rendered){ if(Ext.isNumber(position)){ position = target.dom.childNodes[position]; } var a = this.getItemArgs(c); c.render(c.positionEl = position ? this.itemTpl.insertBefore(position, a, true) : this.itemTpl.append(target, a, true)); c.positionEl.menuItemId = c.getItemId(); if (!a.isMenuItem && a.needsIcon) { c.positionEl.addClass('x-menu-list-item-indent'); } this.configureItem(c); }else if(c && !this.isValidParent(c, target)){ if(Ext.isNumber(position)){ position = target.dom.childNodes[position]; } target.dom.insertBefore(c.getActionEl().dom, position || null); } }, getItemArgs : function(c) { var isMenuItem = c instanceof Ext.menu.Item, canHaveIcon = !(isMenuItem || c instanceof Ext.menu.Separator); return { isMenuItem: isMenuItem, needsIcon: canHaveIcon && (c.icon || c.iconCls), icon: c.icon || Ext.BLANK_IMAGE_URL, iconCls: 'x-menu-item-icon ' + (c.iconCls || ''), itemId: 'x-menu-el-' + c.id, itemCls: 'x-menu-list-item ', altText: c.altText || '' }; }, isValidParent : function(c, target) { return c.el.up('li.x-menu-list-item', 5).dom.parentNode === (target.dom || target); }, onLayout : function(ct, target){ Ext.layout.MenuLayout.superclass.onLayout.call(this, ct, target); this.doAutoSize(); }, doAutoSize : function(){ var ct = this.container, w = ct.width; if(ct.floating){ if(w){ ct.setWidth(w); }else if(Ext.isIE9m){ ct.setWidth(Ext.isStrict && (Ext.isIE7 || Ext.isIE8 || Ext.isIE9) ? 'auto' : ct.minWidth); var el = ct.getEl(), t = el.dom.offsetWidth; ct.setWidth(ct.getLayoutTarget().getWidth() + el.getFrameWidth('lr')); } } } }); Ext.Container.LAYOUTS['menu'] = Ext.layout.MenuLayout; Ext.Viewport = Ext.extend(Ext.Container, { initComponent : function() { Ext.Viewport.superclass.initComponent.call(this); document.getElementsByTagName('html')[0].className += ' x-viewport'; this.el = Ext.getBody(); this.el.setHeight = Ext.emptyFn; this.el.setWidth = Ext.emptyFn; this.el.setSize = Ext.emptyFn; this.el.dom.scroll = 'no'; this.allowDomMove = false; this.autoWidth = true; this.autoHeight = true; Ext.EventManager.onWindowResize(this.fireResize, this); this.renderTo = this.el; }, fireResize : function(w, h){ this.fireEvent('resize', this, w, h, w, h); } }); Ext.reg('viewport', Ext.Viewport); Ext.Panel = Ext.extend(Ext.Container, { baseCls : 'x-panel', collapsedCls : 'x-panel-collapsed', maskDisabled : true, animCollapse : Ext.enableFx, headerAsText : true, buttonAlign : 'right', collapsed : false, collapseFirst : true, minButtonWidth : 75, elements : 'body', preventBodyReset : false, padding: undefined, resizeEvent: 'bodyresize', toolTarget : 'header', collapseEl : 'bwrap', slideAnchor : 't', disabledClass : '', deferHeight : true, expandDefaults: { duration : 0.25 }, collapseDefaults : { duration : 0.25 }, initComponent : function(){ Ext.Panel.superclass.initComponent.call(this); this.addEvents( 'bodyresize', 'titlechange', 'iconchange', 'collapse', 'expand', 'beforecollapse', 'beforeexpand', 'beforeclose', 'close', 'activate', 'deactivate' ); if(this.unstyled){ this.baseCls = 'x-plain'; } this.toolbars = []; if(this.tbar){ this.elements += ',tbar'; this.topToolbar = this.createToolbar(this.tbar); this.tbar = null; } if(this.bbar){ this.elements += ',bbar'; this.bottomToolbar = this.createToolbar(this.bbar); this.bbar = null; } if(this.header === true){ this.elements += ',header'; this.header = null; }else if(this.headerCfg || (this.title && this.header !== false)){ this.elements += ',header'; } if(this.footerCfg || this.footer === true){ this.elements += ',footer'; this.footer = null; } if(this.buttons){ this.fbar = this.buttons; this.buttons = null; } if(this.fbar){ this.createFbar(this.fbar); } if(this.autoLoad){ this.on('render', this.doAutoLoad, this, {delay:10}); } }, createFbar : function(fbar){ var min = this.minButtonWidth; this.elements += ',footer'; this.fbar = this.createToolbar(fbar, { buttonAlign: this.buttonAlign, toolbarCls: 'x-panel-fbar', enableOverflow: false, defaults: function(c){ return { minWidth: c.minWidth || min }; } }); this.fbar.items.each(function(c){ c.minWidth = c.minWidth || this.minButtonWidth; }, this); this.buttons = this.fbar.items.items; }, createToolbar: function(tb, options){ var result; if(Ext.isArray(tb)){ tb = { items: tb }; } result = tb.events ? Ext.apply(tb, options) : this.createComponent(Ext.apply({}, tb, options), 'toolbar'); this.toolbars.push(result); return result; }, createElement : function(name, pnode){ if(this[name]){ pnode.appendChild(this[name].dom); return; } if(name === 'bwrap' || this.elements.indexOf(name) != -1){ if(this[name+'Cfg']){ this[name] = Ext.fly(pnode).createChild(this[name+'Cfg']); }else{ var el = document.createElement('div'); el.className = this[name+'Cls']; this[name] = Ext.get(pnode.appendChild(el)); } if(this[name+'CssClass']){ this[name].addClass(this[name+'CssClass']); } if(this[name+'Style']){ this[name].applyStyles(this[name+'Style']); } } }, onRender : function(ct, position){ Ext.Panel.superclass.onRender.call(this, ct, position); this.createClasses(); var el = this.el, d = el.dom, bw, ts; if(this.collapsible && !this.hideCollapseTool){ this.tools = this.tools ? this.tools.slice(0) : []; this.tools[this.collapseFirst?'unshift':'push']({ id: 'toggle', handler : this.toggleCollapse, scope: this }); } if(this.tools){ ts = this.tools; this.elements += (this.header !== false) ? ',header' : ''; } this.tools = {}; el.addClass(this.baseCls); if(d.firstChild){ this.header = el.down('.'+this.headerCls); this.bwrap = el.down('.'+this.bwrapCls); var cp = this.bwrap ? this.bwrap : el; this.tbar = cp.down('.'+this.tbarCls); this.body = cp.down('.'+this.bodyCls); this.bbar = cp.down('.'+this.bbarCls); this.footer = cp.down('.'+this.footerCls); this.fromMarkup = true; } if (this.preventBodyReset === true) { el.addClass('x-panel-reset'); } if(this.cls){ el.addClass(this.cls); } if(this.buttons){ this.elements += ',footer'; } if(this.frame){ el.insertHtml('afterBegin', String.format(Ext.Element.boxMarkup, this.baseCls)); this.createElement('header', d.firstChild.firstChild.firstChild); this.createElement('bwrap', d); bw = this.bwrap.dom; var ml = d.childNodes[1], bl = d.childNodes[2]; bw.appendChild(ml); bw.appendChild(bl); var mc = bw.firstChild.firstChild.firstChild; this.createElement('tbar', mc); this.createElement('body', mc); this.createElement('bbar', mc); this.createElement('footer', bw.lastChild.firstChild.firstChild); if(!this.footer){ this.bwrap.dom.lastChild.className += ' x-panel-nofooter'; } this.ft = Ext.get(this.bwrap.dom.lastChild); this.mc = Ext.get(mc); }else{ this.createElement('header', d); this.createElement('bwrap', d); bw = this.bwrap.dom; this.createElement('tbar', bw); this.createElement('body', bw); this.createElement('bbar', bw); this.createElement('footer', bw); if(!this.header){ this.body.addClass(this.bodyCls + '-noheader'); if(this.tbar){ this.tbar.addClass(this.tbarCls + '-noheader'); } } } if(Ext.isDefined(this.padding)){ this.body.setStyle('padding', this.body.addUnits(this.padding)); } if(this.border === false){ this.el.addClass(this.baseCls + '-noborder'); this.body.addClass(this.bodyCls + '-noborder'); if(this.header){ this.header.addClass(this.headerCls + '-noborder'); } if(this.footer){ this.footer.addClass(this.footerCls + '-noborder'); } if(this.tbar){ this.tbar.addClass(this.tbarCls + '-noborder'); } if(this.bbar){ this.bbar.addClass(this.bbarCls + '-noborder'); } } if(this.bodyBorder === false){ this.body.addClass(this.bodyCls + '-noborder'); } this.bwrap.enableDisplayMode('block'); if(this.header){ this.header.unselectable(); if(this.headerAsText){ this.header.dom.innerHTML = ''+this.header.dom.innerHTML+''; if(this.iconCls){ this.setIconClass(this.iconCls); } } } if(this.floating){ this.makeFloating(this.floating); } if(this.collapsible && this.titleCollapse && this.header){ this.mon(this.header, 'click', this.toggleCollapse, this); this.header.setStyle('cursor', 'pointer'); } if(ts){ this.addTool.apply(this, ts); } if(this.fbar){ this.footer.addClass('x-panel-btns'); this.fbar.ownerCt = this; this.fbar.render(this.footer); this.footer.createChild({cls:'x-clear'}); } if(this.tbar && this.topToolbar){ this.topToolbar.ownerCt = this; this.topToolbar.render(this.tbar); } if(this.bbar && this.bottomToolbar){ this.bottomToolbar.ownerCt = this; this.bottomToolbar.render(this.bbar); } }, setIconClass : function(cls){ var old = this.iconCls; this.iconCls = cls; if(this.rendered && this.header){ if(this.frame){ this.header.addClass('x-panel-icon'); this.header.replaceClass(old, this.iconCls); }else{ var hd = this.header, img = hd.child('img.x-panel-inline-icon'); if(img){ Ext.fly(img).replaceClass(old, this.iconCls); }else{ var hdspan = hd.child('span.' + this.headerTextCls); if (hdspan) { Ext.DomHelper.insertBefore(hdspan.dom, { tag:'img', alt: '', src: Ext.BLANK_IMAGE_URL, cls:'x-panel-inline-icon '+this.iconCls }); } } } } this.fireEvent('iconchange', this, cls, old); }, makeFloating : function(cfg){ this.floating = true; this.el = new Ext.Layer(Ext.apply({}, cfg, { shadow: Ext.isDefined(this.shadow) ? this.shadow : 'sides', shadowOffset: this.shadowOffset, constrain:false, shim: this.shim === false ? false : undefined }), this.el); }, getTopToolbar : function(){ return this.topToolbar; }, getBottomToolbar : function(){ return this.bottomToolbar; }, getFooterToolbar : function() { return this.fbar; }, addButton : function(config, handler, scope){ if(!this.fbar){ this.createFbar([]); } if(handler){ if(Ext.isString(config)){ config = {text: config}; } config = Ext.apply({ handler: handler, scope: scope }, config); } return this.fbar.add(config); }, addTool : function(){ if(!this.rendered){ if(!this.tools){ this.tools = []; } Ext.each(arguments, function(arg){ this.tools.push(arg); }, this); return; } if(!this[this.toolTarget]){ return; } if(!this.toolTemplate){ var tt = new Ext.Template( '
       
      ' ); tt.disableFormats = true; tt.compile(); Ext.Panel.prototype.toolTemplate = tt; } for(var i = 0, a = arguments, len = a.length; i < len; i++) { var tc = a[i]; if(!this.tools[tc.id]){ var overCls = 'x-tool-'+tc.id+'-over'; var t = this.toolTemplate.insertFirst(this[this.toolTarget], tc, true); this.tools[tc.id] = t; t.enableDisplayMode('block'); this.mon(t, 'click', this.createToolHandler(t, tc, overCls, this)); if(tc.on){ this.mon(t, tc.on); } if(tc.hidden){ t.hide(); } if(tc.qtip){ if(Ext.isObject(tc.qtip)){ Ext.QuickTips.register(Ext.apply({ target: t.id }, tc.qtip)); } else { t.dom.qtip = tc.qtip; } } t.addClassOnOver(overCls); } } }, onLayout : function(shallow, force){ Ext.Panel.superclass.onLayout.apply(this, arguments); if(this.hasLayout && this.toolbars.length > 0){ Ext.each(this.toolbars, function(tb){ tb.doLayout(undefined, force); }); this.syncHeight(); } }, syncHeight : function(){ var h = this.toolbarHeight, bd = this.body, lsh = this.lastSize.height, sz; if(this.autoHeight || !Ext.isDefined(lsh) || lsh == 'auto'){ return; } if(h != this.getToolbarHeight()){ h = Math.max(0, lsh - this.getFrameHeight()); bd.setHeight(h); sz = bd.getSize(); this.toolbarHeight = this.getToolbarHeight(); this.onBodyResize(sz.width, sz.height); } }, onShow : function(){ if(this.floating){ return this.el.show(); } Ext.Panel.superclass.onShow.call(this); }, onHide : function(){ if(this.floating){ return this.el.hide(); } Ext.Panel.superclass.onHide.call(this); }, createToolHandler : function(t, tc, overCls, panel){ return function(e){ t.removeClass(overCls); if(tc.stopEvent !== false){ e.stopEvent(); } if(tc.handler){ tc.handler.call(tc.scope || t, e, t, panel, tc); } }; }, afterRender : function(){ if(this.floating && !this.hidden){ this.el.show(); } if(this.title){ this.setTitle(this.title); } Ext.Panel.superclass.afterRender.call(this); if (this.collapsed) { this.collapsed = false; this.collapse(false); } this.initEvents(); }, getKeyMap : function(){ if(!this.keyMap){ this.keyMap = new Ext.KeyMap(this.el, this.keys); } return this.keyMap; }, initEvents : function(){ if(this.keys){ this.getKeyMap(); } if(this.draggable){ this.initDraggable(); } if(this.toolbars.length > 0){ Ext.each(this.toolbars, function(tb){ tb.doLayout(); tb.on({ scope: this, afterlayout: this.syncHeight, remove: this.syncHeight }); }, this); this.syncHeight(); } }, initDraggable : function(){ this.dd = new Ext.Panel.DD(this, Ext.isBoolean(this.draggable) ? null : this.draggable); }, beforeEffect : function(anim){ if(this.floating){ this.el.beforeAction(); } if(anim !== false){ this.el.addClass('x-panel-animated'); } }, afterEffect : function(anim){ this.syncShadow(); this.el.removeClass('x-panel-animated'); }, createEffect : function(a, cb, scope){ var o = { scope:scope, block:true }; if(a === true){ o.callback = cb; return o; }else if(!a.callback){ o.callback = cb; }else { o.callback = function(){ cb.call(scope); Ext.callback(a.callback, a.scope); }; } return Ext.applyIf(o, a); }, collapse : function(animate){ if(this.collapsed || this.el.hasFxBlock() || this.fireEvent('beforecollapse', this, animate) === false){ return; } var doAnim = animate === true || (animate !== false && this.animCollapse); this.beforeEffect(doAnim); this.onCollapse(doAnim, animate); return this; }, onCollapse : function(doAnim, animArg){ if(doAnim){ this[this.collapseEl].slideOut(this.slideAnchor, Ext.apply(this.createEffect(animArg||true, this.afterCollapse, this), this.collapseDefaults)); }else{ this[this.collapseEl].hide(this.hideMode); this.afterCollapse(false); } }, afterCollapse : function(anim){ this.collapsed = true; this.el.addClass(this.collapsedCls); if(anim !== false){ this[this.collapseEl].hide(this.hideMode); } this.afterEffect(anim); this.cascade(function(c) { if (c.lastSize) { c.lastSize = { width: undefined, height: undefined }; } }); this.fireEvent('collapse', this); }, expand : function(animate){ if(!this.collapsed || this.el.hasFxBlock() || this.fireEvent('beforeexpand', this, animate) === false){ return; } var doAnim = animate === true || (animate !== false && this.animCollapse); this.el.removeClass(this.collapsedCls); this.beforeEffect(doAnim); this.onExpand(doAnim, animate); return this; }, onExpand : function(doAnim, animArg){ if(doAnim){ this[this.collapseEl].slideIn(this.slideAnchor, Ext.apply(this.createEffect(animArg||true, this.afterExpand, this), this.expandDefaults)); }else{ this[this.collapseEl].show(this.hideMode); this.afterExpand(false); } }, afterExpand : function(anim){ this.collapsed = false; if(anim !== false){ this[this.collapseEl].show(this.hideMode); } this.afterEffect(anim); if (this.deferLayout) { delete this.deferLayout; this.doLayout(true); } this.fireEvent('expand', this); }, toggleCollapse : function(animate){ this[this.collapsed ? 'expand' : 'collapse'](animate); return this; }, onDisable : function(){ if(this.rendered && this.maskDisabled){ this.el.mask(); } Ext.Panel.superclass.onDisable.call(this); }, onEnable : function(){ if(this.rendered && this.maskDisabled){ this.el.unmask(); } Ext.Panel.superclass.onEnable.call(this); }, onResize : function(adjWidth, adjHeight, rawWidth, rawHeight){ var w = adjWidth, h = adjHeight; if(Ext.isDefined(w) || Ext.isDefined(h)){ if(!this.collapsed){ if(Ext.isNumber(w)){ this.body.setWidth(w = this.adjustBodyWidth(w - this.getFrameWidth())); } else if (w == 'auto') { w = this.body.setWidth('auto').dom.offsetWidth; } else { w = this.body.dom.offsetWidth; } if(this.tbar){ this.tbar.setWidth(w); if(this.topToolbar){ this.topToolbar.setSize(w); } } if(this.bbar){ this.bbar.setWidth(w); if(this.bottomToolbar){ this.bottomToolbar.setSize(w); if (Ext.isIE9m) { this.bbar.setStyle('position', 'static'); this.bbar.setStyle('position', ''); } } } if(this.footer){ this.footer.setWidth(w); if(this.fbar){ this.fbar.setSize(Ext.isIE9m ? (w - this.footer.getFrameWidth('lr')) : 'auto'); } } if(Ext.isNumber(h)){ h = Math.max(0, h - this.getFrameHeight()); this.body.setHeight(h); }else if(h == 'auto'){ this.body.setHeight(h); } if(this.disabled && this.el._mask){ this.el._mask.setSize(this.el.dom.clientWidth, this.el.getHeight()); } }else{ this.queuedBodySize = {width: w, height: h}; if(!this.queuedExpand && this.allowQueuedExpand !== false){ this.queuedExpand = true; this.on('expand', function(){ delete this.queuedExpand; this.onResize(this.queuedBodySize.width, this.queuedBodySize.height); }, this, {single:true}); } } this.onBodyResize(w, h); } this.syncShadow(); Ext.Panel.superclass.onResize.call(this, adjWidth, adjHeight, rawWidth, rawHeight); }, onBodyResize: function(w, h){ this.fireEvent('bodyresize', this, w, h); }, getToolbarHeight: function(){ var h = 0; if(this.rendered){ Ext.each(this.toolbars, function(tb){ h += tb.getHeight(); }, this); } return h; }, adjustBodyHeight : function(h){ return h; }, adjustBodyWidth : function(w){ return w; }, onPosition : function(){ this.syncShadow(); }, getFrameWidth : function(){ var w = this.el.getFrameWidth('lr') + this.bwrap.getFrameWidth('lr'); if(this.frame){ var l = this.bwrap.dom.firstChild; w += (Ext.fly(l).getFrameWidth('l') + Ext.fly(l.firstChild).getFrameWidth('r')); w += this.mc.getFrameWidth('lr'); } return w; }, getFrameHeight : function() { var h = this.el.getFrameWidth('tb') + this.bwrap.getFrameWidth('tb'); h += (this.tbar ? this.tbar.getHeight() : 0) + (this.bbar ? this.bbar.getHeight() : 0); if(this.frame){ h += this.el.dom.firstChild.offsetHeight + this.ft.dom.offsetHeight + this.mc.getFrameWidth('tb'); }else{ h += (this.header ? this.header.getHeight() : 0) + (this.footer ? this.footer.getHeight() : 0); } return h; }, getInnerWidth : function(){ return this.getSize().width - this.getFrameWidth(); }, getInnerHeight : function(){ return this.body.getHeight(); }, syncShadow : function(){ if(this.floating){ this.el.sync(true); } }, getLayoutTarget : function(){ return this.body; }, getContentTarget : function(){ return this.body; }, setTitle : function(title, iconCls){ this.title = title; if(this.header && this.headerAsText){ this.header.child('span').update(title); } if(iconCls){ this.setIconClass(iconCls); } this.fireEvent('titlechange', this, title); return this; }, getUpdater : function(){ return this.body.getUpdater(); }, load : function(){ var um = this.body.getUpdater(); um.update.apply(um, arguments); return this; }, beforeDestroy : function(){ Ext.Panel.superclass.beforeDestroy.call(this); if(this.header){ this.header.removeAllListeners(); } if(this.tools){ for(var k in this.tools){ Ext.destroy(this.tools[k]); } } if(this.toolbars.length > 0){ Ext.each(this.toolbars, function(tb){ tb.un('afterlayout', this.syncHeight, this); tb.un('remove', this.syncHeight, this); }, this); } if(Ext.isArray(this.buttons)){ while(this.buttons.length) { Ext.destroy(this.buttons[0]); } } if(this.rendered){ Ext.destroy( this.ft, this.header, this.footer, this.tbar, this.bbar, this.body, this.mc, this.bwrap, this.dd ); if (this.fbar) { Ext.destroy( this.fbar, this.fbar.el ); } } Ext.destroy(this.toolbars); }, createClasses : function(){ this.headerCls = this.baseCls + '-header'; this.headerTextCls = this.baseCls + '-header-text'; this.bwrapCls = this.baseCls + '-bwrap'; this.tbarCls = this.baseCls + '-tbar'; this.bodyCls = this.baseCls + '-body'; this.bbarCls = this.baseCls + '-bbar'; this.footerCls = this.baseCls + '-footer'; }, createGhost : function(cls, useShim, appendTo){ var el = document.createElement('div'); el.className = 'x-panel-ghost ' + (cls ? cls : ''); if(this.header){ el.appendChild(this.el.dom.firstChild.cloneNode(true)); } Ext.fly(el.appendChild(document.createElement('ul'))).setHeight(this.bwrap.getHeight()); el.style.width = this.el.dom.offsetWidth + 'px';; if(!appendTo){ this.container.dom.appendChild(el); }else{ Ext.getDom(appendTo).appendChild(el); } if(useShim !== false && this.el.useShim !== false){ var layer = new Ext.Layer({shadow:false, useDisplay:true, constrain:false}, el); layer.show(); return layer; }else{ return new Ext.Element(el); } }, doAutoLoad : function(){ var u = this.body.getUpdater(); if(this.renderer){ u.setRenderer(this.renderer); } u.update(Ext.isObject(this.autoLoad) ? this.autoLoad : {url: this.autoLoad}); }, getTool : function(id) { return this.tools[id]; } }); Ext.reg('panel', Ext.Panel); Ext.Editor = function(field, config){ if(field.field){ this.field = Ext.create(field.field, 'textfield'); config = Ext.apply({}, field); delete config.field; }else{ this.field = field; } Ext.Editor.superclass.constructor.call(this, config); }; Ext.extend(Ext.Editor, Ext.Component, { allowBlur: true, value : "", alignment: "c-c?", offsets: [0, 0], shadow : "frame", constrain : false, swallowKeys : true, completeOnEnter : true, cancelOnEsc : true, updateEl : false, initComponent : function(){ Ext.Editor.superclass.initComponent.call(this); this.addEvents( "beforestartedit", "startedit", "beforecomplete", "complete", "canceledit", "specialkey" ); }, onRender : function(ct, position){ this.el = new Ext.Layer({ shadow: this.shadow, cls: "x-editor", parentEl : ct, shim : this.shim, shadowOffset: this.shadowOffset || 4, id: this.id, constrain: this.constrain }); if(this.zIndex){ this.el.setZIndex(this.zIndex); } this.el.setStyle("overflow", Ext.isGecko ? "auto" : "hidden"); if(this.field.msgTarget != 'title'){ this.field.msgTarget = 'qtip'; } this.field.inEditor = true; this.mon(this.field, { scope: this, blur: this.onBlur, specialkey: this.onSpecialKey }); if(this.field.grow){ this.mon(this.field, "autosize", this.el.sync, this.el, {delay:1}); } this.field.render(this.el).show(); this.field.getEl().dom.name = ''; if(this.swallowKeys){ this.field.el.swallowEvent([ 'keypress', 'keydown' ]); } }, onSpecialKey : function(field, e){ var key = e.getKey(), complete = this.completeOnEnter && key == e.ENTER, cancel = this.cancelOnEsc && key == e.ESC; if(complete || cancel){ e.stopEvent(); if(complete){ this.completeEdit(); }else{ this.cancelEdit(); } if(field.triggerBlur){ field.triggerBlur(); } } this.fireEvent('specialkey', field, e); }, startEdit : function(el, value){ if(this.editing){ this.completeEdit(); } this.boundEl = Ext.get(el); var v = value !== undefined ? value : this.boundEl.dom.innerHTML; if(!this.rendered){ this.render(this.parentEl || document.body); } if(this.fireEvent("beforestartedit", this, this.boundEl, v) !== false){ this.startValue = v; this.field.reset(); this.field.setValue(v); this.realign(true); this.editing = true; this.show(); } }, doAutoSize : function(){ if(this.autoSize){ var sz = this.boundEl.getSize(), fs = this.field.getSize(); switch(this.autoSize){ case "width": this.setSize(sz.width, fs.height); break; case "height": this.setSize(fs.width, sz.height); break; case "none": this.setSize(fs.width, fs.height); break; default: this.setSize(sz.width, sz.height); } } }, setSize : function(w, h){ delete this.field.lastSize; this.field.setSize(w, h); if(this.el){ if(Ext.isGecko2 || Ext.isOpera || (Ext.isIE7 && Ext.isStrict)){ this.el.setSize(w, h); } this.el.sync(); } }, realign : function(autoSize){ if(autoSize === true){ this.doAutoSize(); } this.el.alignTo(this.boundEl, this.alignment, this.offsets); }, completeEdit : function(remainVisible){ if(!this.editing){ return; } if (this.field.assertValue) { this.field.assertValue(); } var v = this.getValue(); if(!this.field.isValid()){ if(this.revertInvalid !== false){ this.cancelEdit(remainVisible); } return; } if(String(v) === String(this.startValue) && this.ignoreNoChange){ this.hideEdit(remainVisible); return; } if(this.fireEvent("beforecomplete", this, v, this.startValue) !== false){ v = this.getValue(); if(this.updateEl && this.boundEl){ this.boundEl.update(v); } this.hideEdit(remainVisible); this.fireEvent("complete", this, v, this.startValue); } }, onShow : function(){ this.el.show(); if(this.hideEl !== false){ this.boundEl.hide(); } this.field.show().focus(false, true); this.fireEvent("startedit", this.boundEl, this.startValue); }, cancelEdit : function(remainVisible){ if(this.editing){ var v = this.getValue(); this.setValue(this.startValue); this.hideEdit(remainVisible); this.fireEvent("canceledit", this, v, this.startValue); } }, hideEdit: function(remainVisible){ if(remainVisible !== true){ this.editing = false; this.hide(); } }, onBlur : function(){ if(this.allowBlur === true && this.editing && this.selectSameEditor !== true){ this.completeEdit(); } }, onHide : function(){ if(this.editing){ this.completeEdit(); return; } this.field.blur(); if(this.field.collapse){ this.field.collapse(); } this.el.hide(); if(this.hideEl !== false){ this.boundEl.show(); } }, setValue : function(v){ this.field.setValue(v); }, getValue : function(){ return this.field.getValue(); }, beforeDestroy : function(){ Ext.destroyMembers(this, 'field'); delete this.parentEl; delete this.boundEl; } }); Ext.reg('editor', Ext.Editor); Ext.ColorPalette = Ext.extend(Ext.Component, { itemCls : 'x-color-palette', value : null, clickEvent :'click', ctype : 'Ext.ColorPalette', allowReselect : false, colors : [ '000000', '993300', '333300', '003300', '003366', '000080', '333399', '333333', '800000', 'FF6600', '808000', '008000', '008080', '0000FF', '666699', '808080', 'FF0000', 'FF9900', '99CC00', '339966', '33CCCC', '3366FF', '800080', '969696', 'FF00FF', 'FFCC00', 'FFFF00', '00FF00', '00FFFF', '00CCFF', '993366', 'C0C0C0', 'FF99CC', 'FFCC99', 'FFFF99', 'CCFFCC', 'CCFFFF', '99CCFF', 'CC99FF', 'FFFFFF' ], initComponent : function(){ Ext.ColorPalette.superclass.initComponent.call(this); this.addEvents( 'select' ); if(this.handler){ this.on('select', this.handler, this.scope, true); } }, onRender : function(container, position){ this.autoEl = { tag: 'div', cls: this.itemCls }; Ext.ColorPalette.superclass.onRender.call(this, container, position); var t = this.tpl || new Ext.XTemplate( ' ' ); t.overwrite(this.el, this.colors); this.mon(this.el, this.clickEvent, this.handleClick, this, {delegate: 'a'}); if(this.clickEvent != 'click'){ this.mon(this.el, 'click', Ext.emptyFn, this, {delegate: 'a', preventDefault: true}); } }, afterRender : function(){ Ext.ColorPalette.superclass.afterRender.call(this); if(this.value){ var s = this.value; this.value = null; this.select(s, true); } }, handleClick : function(e, t){ e.preventDefault(); if(!this.disabled){ var c = t.className.match(/(?:^|\s)color-(.{6})(?:\s|$)/)[1]; this.select(c.toUpperCase()); } }, select : function(color, suppressEvent){ color = color.replace('#', ''); if(color != this.value || this.allowReselect){ var el = this.el; if(this.value){ el.child('a.color-'+this.value).removeClass('x-color-palette-sel'); } el.child('a.color-'+color).addClass('x-color-palette-sel'); this.value = color; if(suppressEvent !== true){ this.fireEvent('select', this, color); } } } }); Ext.reg('colorpalette', Ext.ColorPalette); Ext.DatePicker = Ext.extend(Ext.BoxComponent, { todayText : 'Today', okText : ' OK ', cancelText : 'Cancel', todayTip : '{0} (Spacebar)', minText : 'This date is before the minimum date', maxText : 'This date is after the maximum date', format : 'm/d/y', disabledDaysText : 'Disabled', disabledDatesText : 'Disabled', monthNames : Date.monthNames, dayNames : Date.dayNames, nextText : 'Next Month (Control+Right)', prevText : 'Previous Month (Control+Left)', monthYearText : 'Choose a month (Control+Up/Down to move years)', startDay : 0, showToday : true, focusOnSelect: true, initHour: 12, initComponent : function(){ Ext.DatePicker.superclass.initComponent.call(this); this.value = this.value ? this.value.clearTime(true) : new Date().clearTime(); this.addEvents( 'select' ); if(this.handler){ this.on('select', this.handler, this.scope || this); } this.initDisabledDays(); }, initDisabledDays : function(){ if(!this.disabledDatesRE && this.disabledDates){ var dd = this.disabledDates, len = dd.length - 1, re = '(?:'; Ext.each(dd, function(d, i){ re += Ext.isDate(d) ? '^' + Ext.escapeRe(d.dateFormat(this.format)) + '$' : dd[i]; if(i != len){ re += '|'; } }, this); this.disabledDatesRE = new RegExp(re + ')'); } }, setDisabledDates : function(dd){ if(Ext.isArray(dd)){ this.disabledDates = dd; this.disabledDatesRE = null; }else{ this.disabledDatesRE = dd; } this.initDisabledDays(); this.update(this.value, true); }, setDisabledDays : function(dd){ this.disabledDays = dd; this.update(this.value, true); }, setMinDate : function(dt){ this.minDate = dt; this.update(this.value, true); }, setMaxDate : function(dt){ this.maxDate = dt; this.update(this.value, true); }, setValue : function(value){ this.value = value.clearTime(true); this.update(this.value); }, getValue : function(){ return this.value; }, focus : function(){ this.update(this.activeDate); }, onEnable: function(initial){ Ext.DatePicker.superclass.onEnable.call(this); this.doDisabled(false); this.update(initial ? this.value : this.activeDate); if(Ext.isIE9m){ this.el.repaint(); } }, onDisable : function(){ Ext.DatePicker.superclass.onDisable.call(this); this.doDisabled(true); if(Ext.isIE9m && !Ext.isIE8){ Ext.each([].concat(this.textNodes, this.el.query('th span')), function(el){ Ext.fly(el).repaint(); }); } }, doDisabled : function(disabled){ this.keyNav.setDisabled(disabled); this.prevRepeater.setDisabled(disabled); this.nextRepeater.setDisabled(disabled); if(this.showToday){ this.todayKeyListener.setDisabled(disabled); this.todayBtn.setDisabled(disabled); } }, onRender : function(container, position){ var m = [ '', '', '', this.showToday ? '' : '', '
        
      '], dn = this.dayNames, i; for(i = 0; i < 7; i++){ var d = this.startDay+i; if(d > 6){ d = d-7; } m.push(''); } m[m.length] = ''; for(i = 0; i < 42; i++) { if(i % 7 === 0 && i !== 0){ m[m.length] = ''; } m[m.length] = ''; } m.push('
      ', dn[d].substr(0,1), '
      '); var el = document.createElement('div'); el.className = 'x-date-picker'; el.innerHTML = m.join(''); container.dom.insertBefore(el, position); this.el = Ext.get(el); this.eventEl = Ext.get(el.firstChild); this.prevRepeater = new Ext.util.ClickRepeater(this.el.child('td.x-date-left a'), { handler: this.showPrevMonth, scope: this, preventDefault:true, stopDefault:true }); this.nextRepeater = new Ext.util.ClickRepeater(this.el.child('td.x-date-right a'), { handler: this.showNextMonth, scope: this, preventDefault:true, stopDefault:true }); this.monthPicker = this.el.down('div.x-date-mp'); this.monthPicker.enableDisplayMode('block'); this.keyNav = new Ext.KeyNav(this.eventEl, { 'left' : function(e){ if(e.ctrlKey){ this.showPrevMonth(); }else{ this.update(this.activeDate.add('d', -1)); } }, 'right' : function(e){ if(e.ctrlKey){ this.showNextMonth(); }else{ this.update(this.activeDate.add('d', 1)); } }, 'up' : function(e){ if(e.ctrlKey){ this.showNextYear(); }else{ this.update(this.activeDate.add('d', -7)); } }, 'down' : function(e){ if(e.ctrlKey){ this.showPrevYear(); }else{ this.update(this.activeDate.add('d', 7)); } }, 'pageUp' : function(e){ this.showNextMonth(); }, 'pageDown' : function(e){ this.showPrevMonth(); }, 'enter' : function(e){ e.stopPropagation(); return true; }, scope : this }); this.el.unselectable(); this.cells = this.el.select('table.x-date-inner tbody td'); this.textNodes = this.el.query('table.x-date-inner tbody span'); this.mbtn = new Ext.Button({ text: ' ', tooltip: this.monthYearText, renderTo: this.el.child('td.x-date-middle', true) }); this.mbtn.el.child('em').addClass('x-btn-arrow'); if(this.showToday){ this.todayKeyListener = this.eventEl.addKeyListener(Ext.EventObject.SPACE, this.selectToday, this); var today = (new Date()).dateFormat(this.format); this.todayBtn = new Ext.Button({ renderTo: this.el.child('td.x-date-bottom', true), text: String.format(this.todayText, today), tooltip: String.format(this.todayTip, today), handler: this.selectToday, scope: this }); } this.mon(this.eventEl, 'mousewheel', this.handleMouseWheel, this); this.mon(this.eventEl, 'click', this.handleDateClick, this, {delegate: 'a.x-date-date'}); this.mon(this.mbtn, 'click', this.showMonthPicker, this); this.onEnable(true); }, createMonthPicker : function(){ if(!this.monthPicker.dom.firstChild){ var buf = ['']; for(var i = 0; i < 6; i++){ buf.push( '', '', i === 0 ? '' : '' ); } buf.push( '', '
      ', Date.getShortMonthName(i), '', Date.getShortMonthName(i + 6), '
      ' ); this.monthPicker.update(buf.join('')); this.mon(this.monthPicker, 'click', this.onMonthClick, this); this.mon(this.monthPicker, 'dblclick', this.onMonthDblClick, this); this.mpMonths = this.monthPicker.select('td.x-date-mp-month'); this.mpYears = this.monthPicker.select('td.x-date-mp-year'); this.mpMonths.each(function(m, a, i){ i += 1; if((i%2) === 0){ m.dom.xmonth = 5 + Math.round(i * 0.5); }else{ m.dom.xmonth = Math.round((i-1) * 0.5); } }); } }, showMonthPicker : function(){ if(!this.disabled){ this.createMonthPicker(); var size = this.el.getSize(); this.monthPicker.setSize(size); this.monthPicker.child('table').setSize(size); this.mpSelMonth = (this.activeDate || this.value).getMonth(); this.updateMPMonth(this.mpSelMonth); this.mpSelYear = (this.activeDate || this.value).getFullYear(); this.updateMPYear(this.mpSelYear); this.monthPicker.slideIn('t', {duration:0.2}); } }, updateMPYear : function(y){ this.mpyear = y; var ys = this.mpYears.elements; for(var i = 1; i <= 10; i++){ var td = ys[i-1], y2; if((i%2) === 0){ y2 = y + Math.round(i * 0.5); td.firstChild.innerHTML = y2; td.xyear = y2; }else{ y2 = y - (5-Math.round(i * 0.5)); td.firstChild.innerHTML = y2; td.xyear = y2; } this.mpYears.item(i-1)[y2 == this.mpSelYear ? 'addClass' : 'removeClass']('x-date-mp-sel'); } }, updateMPMonth : function(sm){ this.mpMonths.each(function(m, a, i){ m[m.dom.xmonth == sm ? 'addClass' : 'removeClass']('x-date-mp-sel'); }); }, selectMPMonth : function(m){ }, onMonthClick : function(e, t){ e.stopEvent(); var el = new Ext.Element(t), pn; if(el.is('button.x-date-mp-cancel')){ this.hideMonthPicker(); } else if(el.is('button.x-date-mp-ok')){ var d = new Date(this.mpSelYear, this.mpSelMonth, (this.activeDate || this.value).getDate()); if(d.getMonth() != this.mpSelMonth){ d = new Date(this.mpSelYear, this.mpSelMonth, 1).getLastDateOfMonth(); } this.update(d); this.hideMonthPicker(); } else if((pn = el.up('td.x-date-mp-month', 2))){ this.mpMonths.removeClass('x-date-mp-sel'); pn.addClass('x-date-mp-sel'); this.mpSelMonth = pn.dom.xmonth; } else if((pn = el.up('td.x-date-mp-year', 2))){ this.mpYears.removeClass('x-date-mp-sel'); pn.addClass('x-date-mp-sel'); this.mpSelYear = pn.dom.xyear; } else if(el.is('a.x-date-mp-prev')){ this.updateMPYear(this.mpyear-10); } else if(el.is('a.x-date-mp-next')){ this.updateMPYear(this.mpyear+10); } }, onMonthDblClick : function(e, t){ e.stopEvent(); var el = new Ext.Element(t), pn; if((pn = el.up('td.x-date-mp-month', 2))){ this.update(new Date(this.mpSelYear, pn.dom.xmonth, (this.activeDate || this.value).getDate())); this.hideMonthPicker(); } else if((pn = el.up('td.x-date-mp-year', 2))){ this.update(new Date(pn.dom.xyear, this.mpSelMonth, (this.activeDate || this.value).getDate())); this.hideMonthPicker(); } }, hideMonthPicker : function(disableAnim){ if(this.monthPicker){ if(disableAnim === true){ this.monthPicker.hide(); }else{ this.monthPicker.slideOut('t', {duration:0.2}); } } }, showPrevMonth : function(e){ this.update(this.activeDate.add('mo', -1)); }, showNextMonth : function(e){ this.update(this.activeDate.add('mo', 1)); }, showPrevYear : function(){ this.update(this.activeDate.add('y', -1)); }, showNextYear : function(){ this.update(this.activeDate.add('y', 1)); }, handleMouseWheel : function(e){ e.stopEvent(); if(!this.disabled){ var delta = e.getWheelDelta(); if(delta > 0){ this.showPrevMonth(); } else if(delta < 0){ this.showNextMonth(); } } }, handleDateClick : function(e, t){ e.stopEvent(); if(!this.disabled && t.dateValue && !Ext.fly(t.parentNode).hasClass('x-date-disabled')){ this.cancelFocus = this.focusOnSelect === false; this.setValue(new Date(t.dateValue)); delete this.cancelFocus; this.fireEvent('select', this, this.value); } }, selectToday : function(){ if(this.todayBtn && !this.todayBtn.disabled){ this.setValue(new Date().clearTime()); this.fireEvent('select', this, this.value); } }, update : function(date, forceRefresh){ if(this.rendered){ var vd = this.activeDate, vis = this.isVisible(); this.activeDate = date; if(!forceRefresh && vd && this.el){ var t = date.getTime(); if(vd.getMonth() == date.getMonth() && vd.getFullYear() == date.getFullYear()){ this.cells.removeClass('x-date-selected'); this.cells.each(function(c){ if(c.dom.firstChild.dateValue == t){ c.addClass('x-date-selected'); if(vis && !this.cancelFocus){ Ext.fly(c.dom.firstChild).focus(50); } return false; } }, this); return; } } var days = date.getDaysInMonth(), firstOfMonth = date.getFirstDateOfMonth(), startingPos = firstOfMonth.getDay()-this.startDay; if(startingPos < 0){ startingPos += 7; } days += startingPos; var pm = date.add('mo', -1), prevStart = pm.getDaysInMonth()-startingPos, cells = this.cells.elements, textEls = this.textNodes, d = (new Date(pm.getFullYear(), pm.getMonth(), prevStart, this.initHour)), today = new Date().clearTime().getTime(), sel = date.clearTime(true).getTime(), min = this.minDate ? this.minDate.clearTime(true) : Number.NEGATIVE_INFINITY, max = this.maxDate ? this.maxDate.clearTime(true) : Number.POSITIVE_INFINITY, ddMatch = this.disabledDatesRE, ddText = this.disabledDatesText, ddays = this.disabledDays ? this.disabledDays.join('') : false, ddaysText = this.disabledDaysText, format = this.format; if(this.showToday){ var td = new Date().clearTime(), disable = (td < min || td > max || (ddMatch && format && ddMatch.test(td.dateFormat(format))) || (ddays && ddays.indexOf(td.getDay()) != -1)); if(!this.disabled){ this.todayBtn.setDisabled(disable); this.todayKeyListener[disable ? 'disable' : 'enable'](); } } var setCellClass = function(cal, cell){ cell.title = ''; var t = d.clearTime(true).getTime(); cell.firstChild.dateValue = t; if(t == today){ cell.className += ' x-date-today'; cell.title = cal.todayText; } if(t == sel){ cell.className += ' x-date-selected'; if(vis){ Ext.fly(cell.firstChild).focus(50); } } if(t < min) { cell.className = ' x-date-disabled'; cell.title = cal.minText; return; } if(t > max) { cell.className = ' x-date-disabled'; cell.title = cal.maxText; return; } if(ddays){ if(ddays.indexOf(d.getDay()) != -1){ cell.title = ddaysText; cell.className = ' x-date-disabled'; } } if(ddMatch && format){ var fvalue = d.dateFormat(format); if(ddMatch.test(fvalue)){ cell.title = ddText.replace('%0', fvalue); cell.className = ' x-date-disabled'; } } }; var i = 0; for(; i < startingPos; i++) { textEls[i].innerHTML = (++prevStart); d.setDate(d.getDate()+1); cells[i].className = 'x-date-prevday'; setCellClass(this, cells[i]); } for(; i < days; i++){ var intDay = i - startingPos + 1; textEls[i].innerHTML = (intDay); d.setDate(d.getDate()+1); cells[i].className = 'x-date-active'; setCellClass(this, cells[i]); } var extraDays = 0; for(; i < 42; i++) { textEls[i].innerHTML = (++extraDays); d.setDate(d.getDate()+1); cells[i].className = 'x-date-nextday'; setCellClass(this, cells[i]); } this.mbtn.setText(this.monthNames[date.getMonth()] + ' ' + date.getFullYear()); if(!this.internalRender){ var main = this.el.dom.firstChild, w = main.offsetWidth; this.el.setWidth(w + this.el.getBorderWidth('lr')); Ext.fly(main).setWidth(w); this.internalRender = true; if(Ext.isOpera && !this.secondPass){ main.rows[0].cells[1].style.width = (w - (main.rows[0].cells[0].offsetWidth+main.rows[0].cells[2].offsetWidth)) + 'px'; this.secondPass = true; this.update.defer(10, this, [date]); } } } }, beforeDestroy : function() { if(this.rendered){ Ext.destroy( this.keyNav, this.monthPicker, this.eventEl, this.mbtn, this.nextRepeater, this.prevRepeater, this.cells.el, this.todayBtn ); delete this.textNodes; delete this.cells.elements; } } }); Ext.reg('datepicker', Ext.DatePicker); Ext.LoadMask = function(el, config){ this.el = Ext.get(el); Ext.apply(this, config); if(this.store){ this.store.on({ scope: this, beforeload: this.onBeforeLoad, load: this.onLoad, exception: this.onLoad }); this.removeMask = Ext.value(this.removeMask, false); }else{ var um = this.el.getUpdater(); um.showLoadIndicator = false; um.on({ scope: this, beforeupdate: this.onBeforeLoad, update: this.onLoad, failure: this.onLoad }); this.removeMask = Ext.value(this.removeMask, true); } }; Ext.LoadMask.prototype = { msg : 'Loading...', msgCls : 'x-mask-loading', disabled: false, disable : function(){ this.disabled = true; }, enable : function(){ this.disabled = false; }, onLoad : function(){ this.el.unmask(this.removeMask); }, onBeforeLoad : function(){ if(!this.disabled){ this.el.mask(this.msg, this.msgCls); } }, show: function(){ this.onBeforeLoad(); }, hide: function(){ this.onLoad(); }, destroy : function(){ if(this.store){ this.store.un('beforeload', this.onBeforeLoad, this); this.store.un('load', this.onLoad, this); this.store.un('exception', this.onLoad, this); }else{ var um = this.el.getUpdater(); um.un('beforeupdate', this.onBeforeLoad, this); um.un('update', this.onLoad, this); um.un('failure', this.onLoad, this); } } }; Ext.slider.Thumb = Ext.extend(Object, { dragging: false, constructor: function(config) { Ext.apply(this, config || {}, { cls: 'x-slider-thumb', constrain: false }); Ext.slider.Thumb.superclass.constructor.call(this, config); if (this.slider.vertical) { Ext.apply(this, Ext.slider.Thumb.Vertical); } }, render: function() { this.el = this.slider.innerEl.insertFirst({cls: this.cls}); this.initEvents(); }, enable: function() { this.disabled = false; this.el.removeClass(this.slider.disabledClass); }, disable: function() { this.disabled = true; this.el.addClass(this.slider.disabledClass); }, initEvents: function() { var el = this.el; el.addClassOnOver('x-slider-thumb-over'); this.tracker = new Ext.dd.DragTracker({ onBeforeStart: this.onBeforeDragStart.createDelegate(this), onStart : this.onDragStart.createDelegate(this), onDrag : this.onDrag.createDelegate(this), onEnd : this.onDragEnd.createDelegate(this), tolerance : 3, autoStart : 300 }); this.tracker.initEl(el); }, onBeforeDragStart : function(e) { if (this.disabled) { return false; } else { this.slider.promoteThumb(this); return true; } }, onDragStart: function(e){ this.el.addClass('x-slider-thumb-drag'); this.dragging = true; this.dragStartValue = this.value; this.slider.fireEvent('dragstart', this.slider, e, this); }, onDrag: function(e) { var slider = this.slider, index = this.index, newValue = this.getNewValue(); if (this.constrain) { var above = slider.thumbs[index + 1], below = slider.thumbs[index - 1]; if (below != undefined && newValue <= below.value) newValue = below.value; if (above != undefined && newValue >= above.value) newValue = above.value; } slider.setValue(index, newValue, false); slider.fireEvent('drag', slider, e, this); }, getNewValue: function() { var slider = this.slider, pos = slider.innerEl.translatePoints(this.tracker.getXY()); return Ext.util.Format.round(slider.reverseValue(pos.left), slider.decimalPrecision); }, onDragEnd: function(e) { var slider = this.slider, value = this.value; this.el.removeClass('x-slider-thumb-drag'); this.dragging = false; slider.fireEvent('dragend', slider, e); if (this.dragStartValue != value) { slider.fireEvent('changecomplete', slider, value, this); } }, destroy: function(){ Ext.destroyMembers(this, 'tracker', 'el'); } }); Ext.slider.MultiSlider = Ext.extend(Ext.BoxComponent, { vertical: false, minValue: 0, maxValue: 100, decimalPrecision: 0, keyIncrement: 1, increment: 0, clickRange: [5,15], clickToChange : true, animate: true, constrainThumbs: true, topThumbZIndex: 10000, initComponent : function(){ if(!Ext.isDefined(this.value)){ this.value = this.minValue; } this.thumbs = []; Ext.slider.MultiSlider.superclass.initComponent.call(this); this.keyIncrement = Math.max(this.increment, this.keyIncrement); this.addEvents( 'beforechange', 'change', 'changecomplete', 'dragstart', 'drag', 'dragend' ); if (this.values == undefined || Ext.isEmpty(this.values)) this.values = [0]; var values = this.values; for (var i=0; i < values.length; i++) { this.addThumb(values[i]); } if(this.vertical){ Ext.apply(this, Ext.slider.Vertical); } }, addThumb: function(value) { var thumb = new Ext.slider.Thumb({ value : value, slider : this, index : this.thumbs.length, constrain: this.constrainThumbs }); this.thumbs.push(thumb); if (this.rendered) thumb.render(); }, promoteThumb: function(topThumb) { var thumbs = this.thumbs, zIndex, thumb; for (var i = 0, j = thumbs.length; i < j; i++) { thumb = thumbs[i]; if (thumb == topThumb) { zIndex = this.topThumbZIndex; } else { zIndex = ''; } thumb.el.setStyle('zIndex', zIndex); } }, onRender : function() { this.autoEl = { cls: 'x-slider ' + (this.vertical ? 'x-slider-vert' : 'x-slider-horz'), cn : { cls: 'x-slider-end', cn : { cls:'x-slider-inner', cn : [{tag:'a', cls:'x-slider-focus', href:"#", tabIndex: '-1', hidefocus:'on'}] } } }; Ext.slider.MultiSlider.superclass.onRender.apply(this, arguments); this.endEl = this.el.first(); this.innerEl = this.endEl.first(); this.focusEl = this.innerEl.child('.x-slider-focus'); for (var i=0; i < this.thumbs.length; i++) { this.thumbs[i].render(); } var thumb = this.innerEl.child('.x-slider-thumb'); this.halfThumb = (this.vertical ? thumb.getHeight() : thumb.getWidth()) / 2; this.initEvents(); }, initEvents : function(){ this.mon(this.el, { scope : this, mousedown: this.onMouseDown, keydown : this.onKeyDown }); this.focusEl.swallowEvent("click", true); }, onMouseDown : function(e){ if(this.disabled){ return; } var thumbClicked = false; for (var i=0; i < this.thumbs.length; i++) { thumbClicked = thumbClicked || e.target == this.thumbs[i].el.dom; } if (this.clickToChange && !thumbClicked) { var local = this.innerEl.translatePoints(e.getXY()); this.onClickChange(local); } this.focus(); }, onClickChange : function(local) { if (local.top > this.clickRange[0] && local.top < this.clickRange[1]) { var thumb = this.getNearest(local, 'left'), index = thumb.index; this.setValue(index, Ext.util.Format.round(this.reverseValue(local.left), this.decimalPrecision), undefined, true); } }, getNearest: function(local, prop) { var localValue = prop == 'top' ? this.innerEl.getHeight() - local[prop] : local[prop], clickValue = this.reverseValue(localValue), nearestDistance = (this.maxValue - this.minValue) + 5, index = 0, nearest = null; for (var i=0; i < this.thumbs.length; i++) { var thumb = this.thumbs[i], value = thumb.value, dist = Math.abs(value - clickValue); if (Math.abs(dist <= nearestDistance)) { nearest = thumb; index = i; nearestDistance = dist; } } return nearest; }, onKeyDown : function(e){ if(this.disabled || this.thumbs.length !== 1){ e.preventDefault(); return; } var k = e.getKey(), val; switch(k){ case e.UP: case e.RIGHT: e.stopEvent(); val = e.ctrlKey ? this.maxValue : this.getValue(0) + this.keyIncrement; this.setValue(0, val, undefined, true); break; case e.DOWN: case e.LEFT: e.stopEvent(); val = e.ctrlKey ? this.minValue : this.getValue(0) - this.keyIncrement; this.setValue(0, val, undefined, true); break; default: e.preventDefault(); } }, doSnap : function(value){ if (!(this.increment && value)) { return value; } var newValue = value, inc = this.increment, m = value % inc; if (m != 0) { newValue -= m; if (m * 2 >= inc) { newValue += inc; } else if (m * 2 < -inc) { newValue -= inc; } } return newValue.constrain(this.minValue, this.maxValue); }, afterRender : function(){ Ext.slider.MultiSlider.superclass.afterRender.apply(this, arguments); for (var i=0; i < this.thumbs.length; i++) { var thumb = this.thumbs[i]; if (thumb.value !== undefined) { var v = this.normalizeValue(thumb.value); if (v !== thumb.value) { this.setValue(i, v, false); } else { this.moveThumb(i, this.translateValue(v), false); } } }; }, getRatio : function(){ var w = this.innerEl.getWidth(), v = this.maxValue - this.minValue; return v == 0 ? w : (w/v); }, normalizeValue : function(v){ v = this.doSnap(v); v = Ext.util.Format.round(v, this.decimalPrecision); v = v.constrain(this.minValue, this.maxValue); return v; }, setMinValue : function(val){ this.minValue = val; var i = 0, thumbs = this.thumbs, len = thumbs.length, t; for(; i < len; ++i){ t = thumbs[i]; t.value = t.value < val ? val : t.value; } this.syncThumb(); }, setMaxValue : function(val){ this.maxValue = val; var i = 0, thumbs = this.thumbs, len = thumbs.length, t; for(; i < len; ++i){ t = thumbs[i]; t.value = t.value > val ? val : t.value; } this.syncThumb(); }, setValue : function(index, v, animate, changeComplete) { var thumb = this.thumbs[index], el = thumb.el; v = this.normalizeValue(v); if (v !== thumb.value && this.fireEvent('beforechange', this, v, thumb.value, thumb) !== false) { thumb.value = v; if(this.rendered){ this.moveThumb(index, this.translateValue(v), animate !== false); this.fireEvent('change', this, v, thumb); if(changeComplete){ this.fireEvent('changecomplete', this, v, thumb); } } } }, translateValue : function(v) { var ratio = this.getRatio(); return (v * ratio) - (this.minValue * ratio) - this.halfThumb; }, reverseValue : function(pos){ var ratio = this.getRatio(); return (pos + (this.minValue * ratio)) / ratio; }, moveThumb: function(index, v, animate){ var thumb = this.thumbs[index].el; if(!animate || this.animate === false){ thumb.setLeft(v); }else{ thumb.shift({left: v, stopFx: true, duration:.35}); } }, focus : function(){ this.focusEl.focus(10); }, onResize : function(w, h){ var thumbs = this.thumbs, len = thumbs.length, i = 0; for(; i < len; ++i){ thumbs[i].el.stopFx(); } if(Ext.isNumber(w)){ this.innerEl.setWidth(w - (this.el.getPadding('l') + this.endEl.getPadding('r'))); } this.syncThumb(); Ext.slider.MultiSlider.superclass.onResize.apply(this, arguments); }, onDisable: function(){ Ext.slider.MultiSlider.superclass.onDisable.call(this); for (var i=0; i < this.thumbs.length; i++) { var thumb = this.thumbs[i], el = thumb.el; thumb.disable(); if(Ext.isIE){ var xy = el.getXY(); el.hide(); this.innerEl.addClass(this.disabledClass).dom.disabled = true; if (!this.thumbHolder) { this.thumbHolder = this.endEl.createChild({cls: 'x-slider-thumb ' + this.disabledClass}); } this.thumbHolder.show().setXY(xy); } } }, onEnable: function(){ Ext.slider.MultiSlider.superclass.onEnable.call(this); for (var i=0; i < this.thumbs.length; i++) { var thumb = this.thumbs[i], el = thumb.el; thumb.enable(); if (Ext.isIE) { this.innerEl.removeClass(this.disabledClass).dom.disabled = false; if (this.thumbHolder) this.thumbHolder.hide(); el.show(); this.syncThumb(); } } }, syncThumb : function() { if (this.rendered) { for (var i=0; i < this.thumbs.length; i++) { this.moveThumb(i, this.translateValue(this.thumbs[i].value)); } } }, getValue : function(index) { return this.thumbs[index].value; }, getValues: function() { var values = []; for (var i=0; i < this.thumbs.length; i++) { values.push(this.thumbs[i].value); } return values; }, beforeDestroy : function(){ var thumbs = this.thumbs; for(var i = 0, len = thumbs.length; i < len; ++i){ thumbs[i].destroy(); thumbs[i] = null; } Ext.destroyMembers(this, 'endEl', 'innerEl', 'focusEl', 'thumbHolder'); Ext.slider.MultiSlider.superclass.beforeDestroy.call(this); } }); Ext.reg('multislider', Ext.slider.MultiSlider); Ext.slider.SingleSlider = Ext.extend(Ext.slider.MultiSlider, { constructor: function(config) { config = config || {}; Ext.applyIf(config, { values: [config.value || 0] }); Ext.slider.SingleSlider.superclass.constructor.call(this, config); }, getValue: function() { return Ext.slider.SingleSlider.superclass.getValue.call(this, 0); }, setValue: function(value, animate) { var args = Ext.toArray(arguments), len = args.length; if (len == 1 || (len <= 3 && typeof arguments[1] != 'number')) { args.unshift(0); } return Ext.slider.SingleSlider.superclass.setValue.apply(this, args); }, syncThumb : function() { return Ext.slider.SingleSlider.superclass.syncThumb.apply(this, [0].concat(arguments)); }, getNearest : function(){ return this.thumbs[0]; } }); Ext.Slider = Ext.slider.SingleSlider; Ext.reg('slider', Ext.slider.SingleSlider); Ext.slider.Vertical = { onResize : function(w, h){ this.innerEl.setHeight(h - (this.el.getPadding('t') + this.endEl.getPadding('b'))); this.syncThumb(); }, getRatio : function(){ var h = this.innerEl.getHeight(), v = this.maxValue - this.minValue; return h/v; }, moveThumb: function(index, v, animate) { var thumb = this.thumbs[index], el = thumb.el; if (!animate || this.animate === false) { el.setBottom(v); } else { el.shift({bottom: v, stopFx: true, duration:.35}); } }, onClickChange : function(local) { if (local.left > this.clickRange[0] && local.left < this.clickRange[1]) { var thumb = this.getNearest(local, 'top'), index = thumb.index, value = this.minValue + this.reverseValue(this.innerEl.getHeight() - local.top); this.setValue(index, Ext.util.Format.round(value, this.decimalPrecision), undefined, true); } } }; Ext.slider.Thumb.Vertical = { getNewValue: function() { var slider = this.slider, innerEl = slider.innerEl, pos = innerEl.translatePoints(this.tracker.getXY()), bottom = innerEl.getHeight() - pos.top; return slider.minValue + Ext.util.Format.round(bottom / slider.getRatio(), slider.decimalPrecision); } }; Ext.ProgressBar = Ext.extend(Ext.BoxComponent, { baseCls : 'x-progress', animate : false, waitTimer : null, initComponent : function(){ Ext.ProgressBar.superclass.initComponent.call(this); this.addEvents( "update" ); }, onRender : function(ct, position){ var tpl = new Ext.Template( '
      ', '
      ', '
      ', '
      ', '
       
      ', '
      ', '
      ', '
      ', '
       
      ', '
      ', '
      ', '
      ' ); this.el = position ? tpl.insertBefore(position, {cls: this.baseCls}, true) : tpl.append(ct, {cls: this.baseCls}, true); if(this.id){ this.el.dom.id = this.id; } var inner = this.el.dom.firstChild; this.progressBar = Ext.get(inner.firstChild); if(this.textEl){ this.textEl = Ext.get(this.textEl); delete this.textTopEl; }else{ this.textTopEl = Ext.get(this.progressBar.dom.firstChild); var textBackEl = Ext.get(inner.childNodes[1]); this.textTopEl.setStyle("z-index", 99).addClass('x-hidden'); this.textEl = new Ext.CompositeElement([this.textTopEl.dom.firstChild, textBackEl.dom.firstChild]); this.textEl.setWidth(inner.offsetWidth); } this.progressBar.setHeight(inner.offsetHeight); }, afterRender : function(){ Ext.ProgressBar.superclass.afterRender.call(this); if(this.value){ this.updateProgress(this.value, this.text); }else{ this.updateText(this.text); } }, updateProgress : function(value, text, animate){ this.value = value || 0; if(text){ this.updateText(text); } if(this.rendered && !this.isDestroyed){ var w = Math.floor(value*this.el.dom.firstChild.offsetWidth); this.progressBar.setWidth(w, animate === true || (animate !== false && this.animate)); if(this.textTopEl){ this.textTopEl.removeClass('x-hidden').setWidth(w); } } this.fireEvent('update', this, value, text); return this; }, wait : function(o){ if(!this.waitTimer){ var scope = this; o = o || {}; this.updateText(o.text); this.waitTimer = Ext.TaskMgr.start({ run: function(i){ var inc = o.increment || 10; i -= 1; this.updateProgress(((((i+inc)%inc)+1)*(100/inc))*0.01, null, o.animate); }, interval: o.interval || 1000, duration: o.duration, onStop: function(){ if(o.fn){ o.fn.apply(o.scope || this); } this.reset(); }, scope: scope }); } return this; }, isWaiting : function(){ return this.waitTimer !== null; }, updateText : function(text){ this.text = text || ' '; if(this.rendered){ this.textEl.update(this.text); } return this; }, syncProgressBar : function(){ if(this.value){ this.updateProgress(this.value, this.text); } return this; }, setSize : function(w, h){ Ext.ProgressBar.superclass.setSize.call(this, w, h); if(this.textTopEl){ var inner = this.el.dom.firstChild; this.textEl.setSize(inner.offsetWidth, inner.offsetHeight); } this.syncProgressBar(); return this; }, reset : function(hide){ this.updateProgress(0); if(this.textTopEl){ this.textTopEl.addClass('x-hidden'); } this.clearTimer(); if(hide === true){ this.hide(); } return this; }, clearTimer : function(){ if(this.waitTimer){ this.waitTimer.onStop = null; Ext.TaskMgr.stop(this.waitTimer); this.waitTimer = null; } }, onDestroy: function(){ this.clearTimer(); if(this.rendered){ if(this.textEl.isComposite){ this.textEl.clear(); } Ext.destroyMembers(this, 'textEl', 'progressBar', 'textTopEl'); } Ext.ProgressBar.superclass.onDestroy.call(this); } }); Ext.reg('progress', Ext.ProgressBar); (function() { var Event=Ext.EventManager; var Dom=Ext.lib.Dom; Ext.dd.DragDrop = function(id, sGroup, config) { if(id) { this.init(id, sGroup, config); } }; Ext.dd.DragDrop.prototype = { id: null, config: null, dragElId: null, handleElId: null, invalidHandleTypes: null, invalidHandleIds: null, invalidHandleClasses: null, startPageX: 0, startPageY: 0, groups: null, locked: false, lock: function() { this.locked = true; }, moveOnly: false, unlock: function() { this.locked = false; }, isTarget: true, padding: null, _domRef: null, __ygDragDrop: true, constrainX: false, constrainY: false, minX: 0, maxX: 0, minY: 0, maxY: 0, maintainOffset: false, xTicks: null, yTicks: null, primaryButtonOnly: true, available: false, hasOuterHandles: false, b4StartDrag: function(x, y) { }, startDrag: function(x, y) { }, b4Drag: function(e) { }, onDrag: function(e) { }, onDragEnter: function(e, id) { }, b4DragOver: function(e) { }, onDragOver: function(e, id) { }, b4DragOut: function(e) { }, onDragOut: function(e, id) { }, b4DragDrop: function(e) { }, onDragDrop: function(e, id) { }, onInvalidDrop: function(e) { }, b4EndDrag: function(e) { }, endDrag: function(e) { }, b4MouseDown: function(e) { }, onMouseDown: function(e) { }, onMouseUp: function(e) { }, onAvailable: function () { }, defaultPadding : {left:0, right:0, top:0, bottom:0}, constrainTo : function(constrainTo, pad, inContent){ if(Ext.isNumber(pad)){ pad = {left: pad, right:pad, top:pad, bottom:pad}; } pad = pad || this.defaultPadding; var b = Ext.get(this.getEl()).getBox(), ce = Ext.get(constrainTo), s = ce.getScroll(), c, cd = ce.dom; if(cd == document.body){ c = { x: s.left, y: s.top, width: Ext.lib.Dom.getViewWidth(), height: Ext.lib.Dom.getViewHeight()}; }else{ var xy = ce.getXY(); c = {x : xy[0], y: xy[1], width: cd.clientWidth, height: cd.clientHeight}; } var topSpace = b.y - c.y, leftSpace = b.x - c.x; this.resetConstraints(); this.setXConstraint(leftSpace - (pad.left||0), c.width - leftSpace - b.width - (pad.right||0), this.xTickSize ); this.setYConstraint(topSpace - (pad.top||0), c.height - topSpace - b.height - (pad.bottom||0), this.yTickSize ); }, getEl: function() { if (!this._domRef) { this._domRef = Ext.getDom(this.id); } return this._domRef; }, getDragEl: function() { return Ext.getDom(this.dragElId); }, init: function(id, sGroup, config) { this.initTarget(id, sGroup, config); Event.on(this.id, "mousedown", this.handleMouseDown, this); }, initTarget: function(id, sGroup, config) { this.config = config || {}; this.DDM = Ext.dd.DDM; this.groups = {}; if (typeof id !== "string") { id = Ext.id(id); } this.id = id; this.addToGroup((sGroup) ? sGroup : "default"); this.handleElId = id; this.setDragElId(id); this.invalidHandleTypes = { A: "A" }; this.invalidHandleIds = {}; this.invalidHandleClasses = []; this.applyConfig(); this.handleOnAvailable(); }, applyConfig: function() { this.padding = this.config.padding || [0, 0, 0, 0]; this.isTarget = (this.config.isTarget !== false); this.maintainOffset = (this.config.maintainOffset); this.primaryButtonOnly = (this.config.primaryButtonOnly !== false); }, handleOnAvailable: function() { this.available = true; this.resetConstraints(); this.onAvailable(); }, setPadding: function(iTop, iRight, iBot, iLeft) { if (!iRight && 0 !== iRight) { this.padding = [iTop, iTop, iTop, iTop]; } else if (!iBot && 0 !== iBot) { this.padding = [iTop, iRight, iTop, iRight]; } else { this.padding = [iTop, iRight, iBot, iLeft]; } }, setInitPosition: function(diffX, diffY) { var el = this.getEl(); if (!this.DDM.verifyEl(el)) { return; } var dx = diffX || 0; var dy = diffY || 0; var p = Dom.getXY( el ); this.initPageX = p[0] - dx; this.initPageY = p[1] - dy; this.lastPageX = p[0]; this.lastPageY = p[1]; this.setStartPosition(p); }, setStartPosition: function(pos) { var p = pos || Dom.getXY( this.getEl() ); this.deltaSetXY = null; this.startPageX = p[0]; this.startPageY = p[1]; }, addToGroup: function(sGroup) { this.groups[sGroup] = true; this.DDM.regDragDrop(this, sGroup); }, removeFromGroup: function(sGroup) { if (this.groups[sGroup]) { delete this.groups[sGroup]; } this.DDM.removeDDFromGroup(this, sGroup); }, setDragElId: function(id) { this.dragElId = id; }, setHandleElId: function(id) { if (typeof id !== "string") { id = Ext.id(id); } this.handleElId = id; this.DDM.regHandle(this.id, id); }, setOuterHandleElId: function(id) { if (typeof id !== "string") { id = Ext.id(id); } Event.on(id, "mousedown", this.handleMouseDown, this); this.setHandleElId(id); this.hasOuterHandles = true; }, unreg: function() { Event.un(this.id, "mousedown", this.handleMouseDown); this._domRef = null; this.DDM._remove(this); }, destroy : function(){ this.unreg(); }, isLocked: function() { return (this.DDM.isLocked() || this.locked); }, handleMouseDown: function(e, oDD){ if (this.primaryButtonOnly && e.button != 0) { return; } if (this.isLocked()) { return; } this.DDM.refreshCache(this.groups); var pt = new Ext.lib.Point(Ext.lib.Event.getPageX(e), Ext.lib.Event.getPageY(e)); if (!this.hasOuterHandles && !this.DDM.isOverTarget(pt, this) ) { } else { if (this.clickValidator(e)) { this.setStartPosition(); this.b4MouseDown(e); this.onMouseDown(e); this.DDM.handleMouseDown(e, this); if (this.preventDefault || this.stopPropagation) { if (this.preventDefault) { e.preventDefault(); } if (this.stopPropagation) { e.stopPropagation(); } } else { this.DDM.stopEvent(e); } } else { } } }, clickValidator: function(e) { var target = e.getTarget(); return ( this.isValidHandleChild(target) && (this.id == this.handleElId || this.DDM.handleWasClicked(target, this.id)) ); }, addInvalidHandleType: function(tagName) { var type = tagName.toUpperCase(); this.invalidHandleTypes[type] = type; }, addInvalidHandleId: function(id) { if (typeof id !== "string") { id = Ext.id(id); } this.invalidHandleIds[id] = id; }, addInvalidHandleClass: function(cssClass) { this.invalidHandleClasses.push(cssClass); }, removeInvalidHandleType: function(tagName) { var type = tagName.toUpperCase(); delete this.invalidHandleTypes[type]; }, removeInvalidHandleId: function(id) { if (typeof id !== "string") { id = Ext.id(id); } delete this.invalidHandleIds[id]; }, removeInvalidHandleClass: function(cssClass) { for (var i=0, len=this.invalidHandleClasses.length; i= this.minX; i = i - iTickSize) { if (!tickMap[i]) { this.xTicks[this.xTicks.length] = i; tickMap[i] = true; } } for (i = this.initPageX; i <= this.maxX; i = i + iTickSize) { if (!tickMap[i]) { this.xTicks[this.xTicks.length] = i; tickMap[i] = true; } } this.xTicks.sort(this.DDM.numericSort) ; }, setYTicks: function(iStartY, iTickSize) { this.yTicks = []; this.yTickSize = iTickSize; var tickMap = {}; for (var i = this.initPageY; i >= this.minY; i = i - iTickSize) { if (!tickMap[i]) { this.yTicks[this.yTicks.length] = i; tickMap[i] = true; } } for (i = this.initPageY; i <= this.maxY; i = i + iTickSize) { if (!tickMap[i]) { this.yTicks[this.yTicks.length] = i; tickMap[i] = true; } } this.yTicks.sort(this.DDM.numericSort) ; }, setXConstraint: function(iLeft, iRight, iTickSize) { this.leftConstraint = iLeft; this.rightConstraint = iRight; this.minX = this.initPageX - iLeft; this.maxX = this.initPageX + iRight; if (iTickSize) { this.setXTicks(this.initPageX, iTickSize); } this.constrainX = true; }, clearConstraints: function() { this.constrainX = false; this.constrainY = false; this.clearTicks(); }, clearTicks: function() { this.xTicks = null; this.yTicks = null; this.xTickSize = 0; this.yTickSize = 0; }, setYConstraint: function(iUp, iDown, iTickSize) { this.topConstraint = iUp; this.bottomConstraint = iDown; this.minY = this.initPageY - iUp; this.maxY = this.initPageY + iDown; if (iTickSize) { this.setYTicks(this.initPageY, iTickSize); } this.constrainY = true; }, resetConstraints: function() { if (this.initPageX || this.initPageX === 0) { var dx = (this.maintainOffset) ? this.lastPageX - this.initPageX : 0; var dy = (this.maintainOffset) ? this.lastPageY - this.initPageY : 0; this.setInitPosition(dx, dy); } else { this.setInitPosition(); } if (this.constrainX) { this.setXConstraint( this.leftConstraint, this.rightConstraint, this.xTickSize ); } if (this.constrainY) { this.setYConstraint( this.topConstraint, this.bottomConstraint, this.yTickSize ); } }, getTick: function(val, tickArray) { if (!tickArray) { return val; } else if (tickArray[0] >= val) { return tickArray[0]; } else { for (var i=0, len=tickArray.length; i= val) { var diff1 = val - tickArray[i]; var diff2 = tickArray[next] - val; return (diff2 > diff1) ? tickArray[i] : tickArray[next]; } } return tickArray[tickArray.length - 1]; } }, toString: function() { return ("DragDrop " + this.id); } }; })(); if (!Ext.dd.DragDropMgr) { Ext.dd.DragDropMgr = function() { var Event = Ext.EventManager; return { ids: {}, handleIds: {}, dragCurrent: null, dragOvers: {}, deltaX: 0, deltaY: 0, preventDefault: true, stopPropagation: true, initialized: false, locked: false, init: function() { this.initialized = true; }, POINT: 0, INTERSECT: 1, mode: 0, notifyOccluded: false, _execOnAll: function(sMethod, args) { for (var i in this.ids) { for (var j in this.ids[i]) { var oDD = this.ids[i][j]; if (! this.isTypeOfDD(oDD)) { continue; } oDD[sMethod].apply(oDD, args); } } }, _onLoad: function() { this.init(); Event.on(document, "mouseup", this.handleMouseUp, this, true); Event.on(document, "mousemove", this.handleMouseMove, this, true); Event.on(window, "unload", this._onUnload, this, true); Event.on(window, "resize", this._onResize, this, true); }, _onResize: function(e) { this._execOnAll("resetConstraints", []); }, lock: function() { this.locked = true; }, unlock: function() { this.locked = false; }, isLocked: function() { return this.locked; }, locationCache: {}, useCache: true, clickPixelThresh: 3, clickTimeThresh: 350, dragThreshMet: false, clickTimeout: null, startX: 0, startY: 0, regDragDrop: function(oDD, sGroup) { if (!this.initialized) { this.init(); } if (!this.ids[sGroup]) { this.ids[sGroup] = {}; } this.ids[sGroup][oDD.id] = oDD; }, removeDDFromGroup: function(oDD, sGroup) { if (!this.ids[sGroup]) { this.ids[sGroup] = {}; } var obj = this.ids[sGroup]; if (obj && obj[oDD.id]) { delete obj[oDD.id]; } }, _remove: function(oDD) { for (var g in oDD.groups) { if (g && this.ids[g] && this.ids[g][oDD.id]) { delete this.ids[g][oDD.id]; } } delete this.handleIds[oDD.id]; }, regHandle: function(sDDId, sHandleId) { if (!this.handleIds[sDDId]) { this.handleIds[sDDId] = {}; } this.handleIds[sDDId][sHandleId] = sHandleId; }, isDragDrop: function(id) { return ( this.getDDById(id) ) ? true : false; }, getRelated: function(p_oDD, bTargetsOnly) { var oDDs = []; for (var i in p_oDD.groups) { for (var j in this.ids[i]) { var dd = this.ids[i][j]; if (! this.isTypeOfDD(dd)) { continue; } if (!bTargetsOnly || dd.isTarget) { oDDs[oDDs.length] = dd; } } } return oDDs; }, isLegalTarget: function (oDD, oTargetDD) { var targets = this.getRelated(oDD, true); for (var i=0, len=targets.length;i this.clickPixelThresh || diffY > this.clickPixelThresh) { this.startDrag(this.startX, this.startY); } } if (this.dragThreshMet) { this.dragCurrent.b4Drag(e); this.dragCurrent.onDrag(e); if(!this.dragCurrent.moveOnly){ this.fireEvents(e, false); } } this.stopEvent(e); return true; }, fireEvents: function(e, isDrop) { var me = this, dragCurrent = me.dragCurrent, mousePoint = e.getPoint(), overTarget, overTargetEl, allTargets = [], oldOvers = [], outEvts = [], overEvts = [], dropEvts = [], enterEvts = [], needsSort, i, len, sGroup; if (!dragCurrent || dragCurrent.isLocked()) { return; } for (i in me.dragOvers) { overTarget = me.dragOvers[i]; if (! me.isTypeOfDD(overTarget)) { continue; } if (! this.isOverTarget(mousePoint, overTarget, me.mode)) { outEvts.push( overTarget ); } oldOvers[i] = true; delete me.dragOvers[i]; } for (sGroup in dragCurrent.groups) { if ("string" != typeof sGroup) { continue; } for (i in me.ids[sGroup]) { overTarget = me.ids[sGroup][i]; if (me.isTypeOfDD(overTarget) && (overTargetEl = overTarget.getEl()) && (overTarget.isTarget) && (!overTarget.isLocked()) && ((overTarget != dragCurrent) || (dragCurrent.ignoreSelf === false))) { if ((overTarget.zIndex = me.getZIndex(overTargetEl)) !== -1) { needsSort = true; } allTargets.push(overTarget); } } } if (needsSort) { allTargets.sort(me.byZIndex); } for (i = 0, len = allTargets.length; i < len; i++) { overTarget = allTargets[i]; if (me.isOverTarget(mousePoint, overTarget, me.mode)) { if (isDrop) { dropEvts.push( overTarget ); } else { if (!oldOvers[overTarget.id]) { enterEvts.push( overTarget ); } else { overEvts.push( overTarget ); } me.dragOvers[overTarget.id] = overTarget; } if (!me.notifyOccluded) { break; } } } if (me.mode) { if (outEvts.length) { dragCurrent.b4DragOut(e, outEvts); dragCurrent.onDragOut(e, outEvts); } if (enterEvts.length) { dragCurrent.onDragEnter(e, enterEvts); } if (overEvts.length) { dragCurrent.b4DragOver(e, overEvts); dragCurrent.onDragOver(e, overEvts); } if (dropEvts.length) { dragCurrent.b4DragDrop(e, dropEvts); dragCurrent.onDragDrop(e, dropEvts); } } else { for (i=0, len=outEvts.length; i 2000) { } else { setTimeout(DDM._addListeners, 10); if (document && document.body) { DDM._timeoutCount += 1; } } } }, handleWasClicked: function(node, id) { if (this.isHandle(id, node.id)) { return true; } else { var p = node.parentNode; while (p) { if (this.isHandle(id, p.id)) { return true; } else { p = p.parentNode; } } } return false; } }; }(); Ext.dd.DDM = Ext.dd.DragDropMgr; Ext.dd.DDM._addListeners(); } Ext.dd.DD = function(id, sGroup, config) { if (id) { this.init(id, sGroup, config); } }; Ext.extend(Ext.dd.DD, Ext.dd.DragDrop, { scroll: true, autoOffset: function(iPageX, iPageY) { var x = iPageX - this.startPageX; var y = iPageY - this.startPageY; this.setDelta(x, y); }, setDelta: function(iDeltaX, iDeltaY) { this.deltaX = iDeltaX; this.deltaY = iDeltaY; }, setDragElPos: function(iPageX, iPageY) { var el = this.getDragEl(); this.alignElWithMouse(el, iPageX, iPageY); }, alignElWithMouse: function(el, iPageX, iPageY) { var oCoord = this.getTargetCoord(iPageX, iPageY); var fly = el.dom ? el : Ext.fly(el, '_dd'); if (!this.deltaSetXY) { var aCoord = [oCoord.x, oCoord.y]; fly.setXY(aCoord); var newLeft = fly.getLeft(true); var newTop = fly.getTop(true); this.deltaSetXY = [ newLeft - oCoord.x, newTop - oCoord.y ]; } else { fly.setLeftTop(oCoord.x + this.deltaSetXY[0], oCoord.y + this.deltaSetXY[1]); } this.cachePosition(oCoord.x, oCoord.y); this.autoScroll(oCoord.x, oCoord.y, el.offsetHeight, el.offsetWidth); return oCoord; }, cachePosition: function(iPageX, iPageY) { if (iPageX) { this.lastPageX = iPageX; this.lastPageY = iPageY; } else { var aCoord = Ext.lib.Dom.getXY(this.getEl()); this.lastPageX = aCoord[0]; this.lastPageY = aCoord[1]; } }, autoScroll: function(x, y, h, w) { if (this.scroll) { var clientH = Ext.lib.Dom.getViewHeight(); var clientW = Ext.lib.Dom.getViewWidth(); var st = this.DDM.getScrollTop(); var sl = this.DDM.getScrollLeft(); var bot = h + y; var right = w + x; var toBot = (clientH + st - y - this.deltaY); var toRight = (clientW + sl - x - this.deltaX); var thresh = 40; var scrAmt = (document.all) ? 80 : 30; if ( bot > clientH && toBot < thresh ) { window.scrollTo(sl, st + scrAmt); } if ( y < st && st > 0 && y - st < thresh ) { window.scrollTo(sl, st - scrAmt); } if ( right > clientW && toRight < thresh ) { window.scrollTo(sl + scrAmt, st); } if ( x < sl && sl > 0 && x - sl < thresh ) { window.scrollTo(sl - scrAmt, st); } } }, getTargetCoord: function(iPageX, iPageY) { var x = iPageX - this.deltaX; var y = iPageY - this.deltaY; if (this.constrainX) { if (x < this.minX) { x = this.minX; } if (x > this.maxX) { x = this.maxX; } } if (this.constrainY) { if (y < this.minY) { y = this.minY; } if (y > this.maxY) { y = this.maxY; } } x = this.getTick(x, this.xTicks); y = this.getTick(y, this.yTicks); return {x:x, y:y}; }, applyConfig: function() { Ext.dd.DD.superclass.applyConfig.call(this); this.scroll = (this.config.scroll !== false); }, b4MouseDown: function(e) { this.autoOffset(e.getPageX(), e.getPageY()); }, b4Drag: function(e) { this.setDragElPos(e.getPageX(), e.getPageY()); }, toString: function() { return ("DD " + this.id); } }); Ext.dd.DDProxy = function(id, sGroup, config) { if (id) { this.init(id, sGroup, config); this.initFrame(); } }; Ext.dd.DDProxy.dragElId = "ygddfdiv"; Ext.extend(Ext.dd.DDProxy, Ext.dd.DD, { resizeFrame: true, centerFrame: false, createFrame: function() { var self = this; var body = document.body; if (!body || !body.firstChild) { setTimeout( function() { self.createFrame(); }, 50 ); return; } var div = this.getDragEl(); if (!div) { div = document.createElement("div"); div.id = this.dragElId; var s = div.style; s.position = "absolute"; s.visibility = "hidden"; s.cursor = "move"; s.border = "2px solid #aaa"; s.zIndex = 999; body.insertBefore(div, body.firstChild); } }, initFrame: function() { this.createFrame(); }, applyConfig: function() { Ext.dd.DDProxy.superclass.applyConfig.call(this); this.resizeFrame = (this.config.resizeFrame !== false); this.centerFrame = (this.config.centerFrame); this.setDragElId(this.config.dragElId || Ext.dd.DDProxy.dragElId); }, showFrame: function(iPageX, iPageY) { var el = this.getEl(); var dragEl = this.getDragEl(); var s = dragEl.style; this._resizeProxy(); if (this.centerFrame) { this.setDelta( Math.round(parseInt(s.width, 10)/2), Math.round(parseInt(s.height, 10)/2) ); } this.setDragElPos(iPageX, iPageY); Ext.fly(dragEl).show(); }, _resizeProxy: function() { if (this.resizeFrame) { var el = this.getEl(); Ext.fly(this.getDragEl()).setSize(el.offsetWidth, el.offsetHeight); } }, b4MouseDown: function(e) { var x = e.getPageX(); var y = e.getPageY(); this.autoOffset(x, y); this.setDragElPos(x, y); }, b4StartDrag: function(x, y) { this.showFrame(x, y); }, b4EndDrag: function(e) { Ext.fly(this.getDragEl()).hide(); }, endDrag: function(e) { var lel = this.getEl(); var del = this.getDragEl(); del.style.visibility = ""; this.beforeMove(); lel.style.visibility = "hidden"; Ext.dd.DDM.moveToEl(lel, del); del.style.visibility = "hidden"; lel.style.visibility = ""; this.afterDrag(); }, beforeMove : function(){ }, afterDrag : function(){ }, toString: function() { return ("DDProxy " + this.id); } }); Ext.dd.DDTarget = function(id, sGroup, config) { if (id) { this.initTarget(id, sGroup, config); } }; Ext.extend(Ext.dd.DDTarget, Ext.dd.DragDrop, { getDragEl: Ext.emptyFn, isValidHandleChild: Ext.emptyFn, startDrag: Ext.emptyFn, endDrag: Ext.emptyFn, onDrag: Ext.emptyFn, onDragDrop: Ext.emptyFn, onDragEnter: Ext.emptyFn, onDragOut: Ext.emptyFn, onDragOver: Ext.emptyFn, onInvalidDrop: Ext.emptyFn, onMouseDown: Ext.emptyFn, onMouseUp: Ext.emptyFn, setXConstraint: Ext.emptyFn, setYConstraint: Ext.emptyFn, resetConstraints: Ext.emptyFn, clearConstraints: Ext.emptyFn, clearTicks: Ext.emptyFn, setInitPosition: Ext.emptyFn, setDragElId: Ext.emptyFn, setHandleElId: Ext.emptyFn, setOuterHandleElId: Ext.emptyFn, addInvalidHandleClass: Ext.emptyFn, addInvalidHandleId: Ext.emptyFn, addInvalidHandleType: Ext.emptyFn, removeInvalidHandleClass: Ext.emptyFn, removeInvalidHandleId: Ext.emptyFn, removeInvalidHandleType: Ext.emptyFn, toString: function() { return ("DDTarget " + this.id); } }); Ext.dd.DragTracker = Ext.extend(Ext.util.Observable, { active: false, tolerance: 5, autoStart: false, constructor : function(config){ Ext.apply(this, config); this.addEvents( 'mousedown', 'mouseup', 'mousemove', 'dragstart', 'dragend', 'drag' ); this.dragRegion = new Ext.lib.Region(0,0,0,0); if(this.el){ this.initEl(this.el); } Ext.dd.DragTracker.superclass.constructor.call(this, config); }, initEl: function(el){ this.el = Ext.get(el); el.on('mousedown', this.onMouseDown, this, this.delegate ? {delegate: this.delegate} : undefined); }, destroy : function(){ this.el.un('mousedown', this.onMouseDown, this); delete this.el; }, onMouseDown: function(e, target){ if(this.fireEvent('mousedown', this, e) !== false && this.onBeforeStart(e) !== false){ this.startXY = this.lastXY = e.getXY(); this.dragTarget = this.delegate ? target : this.el.dom; if(this.preventDefault !== false){ e.preventDefault(); } Ext.getDoc().on({ scope: this, mouseup: this.onMouseUp, mousemove: this.onMouseMove, selectstart: this.stopSelect }); if(this.autoStart){ this.timer = this.triggerStart.defer(this.autoStart === true ? 1000 : this.autoStart, this, [e]); } } }, onMouseMove: function(e, target){ var ieCheck = Ext.isIE6 || Ext.isIE7 || Ext.isIE8; if(this.active && ieCheck && !e.browserEvent.button){ e.preventDefault(); this.onMouseUp(e); return; } e.preventDefault(); var xy = e.getXY(), s = this.startXY; this.lastXY = xy; if(!this.active){ if(Math.abs(s[0]-xy[0]) > this.tolerance || Math.abs(s[1]-xy[1]) > this.tolerance){ this.triggerStart(e); }else{ return; } } this.fireEvent('mousemove', this, e); this.onDrag(e); this.fireEvent('drag', this, e); }, onMouseUp: function(e) { var doc = Ext.getDoc(), wasActive = this.active; doc.un('mousemove', this.onMouseMove, this); doc.un('mouseup', this.onMouseUp, this); doc.un('selectstart', this.stopSelect, this); e.preventDefault(); this.clearStart(); this.active = false; delete this.elRegion; this.fireEvent('mouseup', this, e); if(wasActive){ this.onEnd(e); this.fireEvent('dragend', this, e); } }, triggerStart: function(e) { this.clearStart(); this.active = true; this.onStart(e); this.fireEvent('dragstart', this, e); }, clearStart : function() { if(this.timer){ clearTimeout(this.timer); delete this.timer; } }, stopSelect : function(e) { e.stopEvent(); return false; }, onBeforeStart : function(e) { }, onStart : function(xy) { }, onDrag : function(e) { }, onEnd : function(e) { }, getDragTarget : function(){ return this.dragTarget; }, getDragCt : function(){ return this.el; }, getXY : function(constrain){ return constrain ? this.constrainModes[constrain].call(this, this.lastXY) : this.lastXY; }, getOffset : function(constrain){ var xy = this.getXY(constrain), s = this.startXY; return [s[0]-xy[0], s[1]-xy[1]]; }, constrainModes: { 'point' : function(xy){ if(!this.elRegion){ this.elRegion = this.getDragCt().getRegion(); } var dr = this.dragRegion; dr.left = xy[0]; dr.top = xy[1]; dr.right = xy[0]; dr.bottom = xy[1]; dr.constrainTo(this.elRegion); return [dr.left, dr.top]; } } }); Ext.dd.ScrollManager = function(){ var ddm = Ext.dd.DragDropMgr; var els = {}; var dragEl = null; var proc = {}; var onStop = function(e){ dragEl = null; clearProc(); }; var triggerRefresh = function(){ if(ddm.dragCurrent){ ddm.refreshCache(ddm.dragCurrent.groups); } }; var doScroll = function(){ if(ddm.dragCurrent){ var dds = Ext.dd.ScrollManager; var inc = proc.el.ddScrollConfig ? proc.el.ddScrollConfig.increment : dds.increment; if(!dds.animate){ if(proc.el.scroll(proc.dir, inc)){ triggerRefresh(); } }else{ proc.el.scroll(proc.dir, inc, true, dds.animDuration, triggerRefresh); } } }; var clearProc = function(){ if(proc.id){ clearInterval(proc.id); } proc.id = 0; proc.el = null; proc.dir = ""; }; var startProc = function(el, dir){ clearProc(); proc.el = el; proc.dir = dir; var group = el.ddScrollConfig ? el.ddScrollConfig.ddGroup : undefined, freq = (el.ddScrollConfig && el.ddScrollConfig.frequency) ? el.ddScrollConfig.frequency : Ext.dd.ScrollManager.frequency; if (group === undefined || ddm.dragCurrent.ddGroup == group) { proc.id = setInterval(doScroll, freq); } }; var onFire = function(e, isDrop){ if(isDrop || !ddm.dragCurrent){ return; } var dds = Ext.dd.ScrollManager; if(!dragEl || dragEl != ddm.dragCurrent){ dragEl = ddm.dragCurrent; dds.refreshCache(); } var xy = Ext.lib.Event.getXY(e); var pt = new Ext.lib.Point(xy[0], xy[1]); for(var id in els){ var el = els[id], r = el._region; var c = el.ddScrollConfig ? el.ddScrollConfig : dds; if(r && r.contains(pt) && el.isScrollable()){ if(r.bottom - pt.y <= c.vthresh){ if(proc.el != el){ startProc(el, "down"); } return; }else if(r.right - pt.x <= c.hthresh){ if(proc.el != el){ startProc(el, "left"); } return; }else if(pt.y - r.top <= c.vthresh){ if(proc.el != el){ startProc(el, "up"); } return; }else if(pt.x - r.left <= c.hthresh){ if(proc.el != el){ startProc(el, "right"); } return; } } } clearProc(); }; ddm.fireEvents = ddm.fireEvents.createSequence(onFire, ddm); ddm.stopDrag = ddm.stopDrag.createSequence(onStop, ddm); return { register : function(el){ if(Ext.isArray(el)){ for(var i = 0, len = el.length; i < len; i++) { this.register(el[i]); } }else{ el = Ext.get(el); els[el.id] = el; } }, unregister : function(el){ if(Ext.isArray(el)){ for(var i = 0, len = el.length; i < len; i++) { this.unregister(el[i]); } }else{ el = Ext.get(el); delete els[el.id]; } }, vthresh : 25, hthresh : 25, increment : 100, frequency : 500, animate: true, animDuration: .4, ddGroup: undefined, refreshCache : function(){ for(var id in els){ if(typeof els[id] == 'object'){ els[id]._region = els[id].getRegion(); } } } }; }(); Ext.dd.Registry = function(){ var elements = {}; var handles = {}; var autoIdSeed = 0; var getId = function(el, autogen){ if(typeof el == "string"){ return el; } var id = el.id; if(!id && autogen !== false){ id = "extdd-" + (++autoIdSeed); el.id = id; } return id; }; return { register : function(el, data){ data = data || {}; if(typeof el == "string"){ el = document.getElementById(el); } data.ddel = el; elements[getId(el)] = data; if(data.isHandle !== false){ handles[data.ddel.id] = data; } if(data.handles){ var hs = data.handles; for(var i = 0, len = hs.length; i < len; i++){ handles[getId(hs[i])] = data; } } }, unregister : function(el){ var id = getId(el, false); var data = elements[id]; if(data){ delete elements[id]; if(data.handles){ var hs = data.handles; for(var i = 0, len = hs.length; i < len; i++){ delete handles[getId(hs[i], false)]; } } } }, getHandle : function(id){ if(typeof id != "string"){ id = id.id; } return handles[id]; }, getHandleFromEvent : function(e){ var t = Ext.lib.Event.getTarget(e); return t ? handles[t.id] : null; }, getTarget : function(id){ if(typeof id != "string"){ id = id.id; } return elements[id]; }, getTargetFromEvent : function(e){ var t = Ext.lib.Event.getTarget(e); return t ? elements[t.id] || handles[t.id] : null; } }; }(); Ext.dd.StatusProxy = function(config){ Ext.apply(this, config); this.id = this.id || Ext.id(); this.el = new Ext.Layer({ dh: { id: this.id, tag: "div", cls: "x-dd-drag-proxy "+this.dropNotAllowed, children: [ {tag: "div", cls: "x-dd-drop-icon"}, {tag: "div", cls: "x-dd-drag-ghost"} ] }, shadow: !config || config.shadow !== false }); this.ghost = Ext.get(this.el.dom.childNodes[1]); this.dropStatus = this.dropNotAllowed; }; Ext.dd.StatusProxy.prototype = { dropAllowed : "x-dd-drop-ok", dropNotAllowed : "x-dd-drop-nodrop", setStatus : function(cssClass){ cssClass = cssClass || this.dropNotAllowed; if(this.dropStatus != cssClass){ this.el.replaceClass(this.dropStatus, cssClass); this.dropStatus = cssClass; } }, reset : function(clearGhost){ this.el.dom.className = "x-dd-drag-proxy " + this.dropNotAllowed; this.dropStatus = this.dropNotAllowed; if(clearGhost){ this.ghost.update(""); } }, update : function(html){ if(typeof html == "string"){ this.ghost.update(html); }else{ this.ghost.update(""); html.style.margin = "0"; this.ghost.dom.appendChild(html); } var el = this.ghost.dom.firstChild; if(el){ Ext.fly(el).setStyle('float', 'none'); } }, getEl : function(){ return this.el; }, getGhost : function(){ return this.ghost; }, hide : function(clear){ this.el.hide(); if(clear){ this.reset(true); } }, stop : function(){ if(this.anim && this.anim.isAnimated && this.anim.isAnimated()){ this.anim.stop(); } }, show : function(){ this.el.show(); }, sync : function(){ this.el.sync(); }, repair : function(xy, callback, scope){ this.callback = callback; this.scope = scope; if(xy && this.animRepair !== false){ this.el.addClass("x-dd-drag-repair"); this.el.hideUnders(true); this.anim = this.el.shift({ duration: this.repairDuration || .5, easing: 'easeOut', xy: xy, stopFx: true, callback: this.afterRepair, scope: this }); }else{ this.afterRepair(); } }, afterRepair : function(){ this.hide(true); if(typeof this.callback == "function"){ this.callback.call(this.scope || this); } this.callback = null; this.scope = null; }, destroy: function(){ Ext.destroy(this.ghost, this.el); } }; Ext.dd.DragSource = function(el, config){ this.el = Ext.get(el); if(!this.dragData){ this.dragData = {}; } Ext.apply(this, config); if(!this.proxy){ this.proxy = new Ext.dd.StatusProxy(); } Ext.dd.DragSource.superclass.constructor.call(this, this.el.dom, this.ddGroup || this.group, {dragElId : this.proxy.id, resizeFrame: false, isTarget: false, scroll: this.scroll === true}); this.dragging = false; }; Ext.extend(Ext.dd.DragSource, Ext.dd.DDProxy, { dropAllowed : "x-dd-drop-ok", dropNotAllowed : "x-dd-drop-nodrop", getDragData : function(e){ return this.dragData; }, onDragEnter : function(e, id){ var target = Ext.dd.DragDropMgr.getDDById(id); this.cachedTarget = target; if(this.beforeDragEnter(target, e, id) !== false){ if(target.isNotifyTarget){ var status = target.notifyEnter(this, e, this.dragData); this.proxy.setStatus(status); }else{ this.proxy.setStatus(this.dropAllowed); } if(this.afterDragEnter){ this.afterDragEnter(target, e, id); } } }, beforeDragEnter : function(target, e, id){ return true; }, alignElWithMouse: function() { Ext.dd.DragSource.superclass.alignElWithMouse.apply(this, arguments); this.proxy.sync(); }, onDragOver : function(e, id){ var target = this.cachedTarget || Ext.dd.DragDropMgr.getDDById(id); if(this.beforeDragOver(target, e, id) !== false){ if(target.isNotifyTarget){ var status = target.notifyOver(this, e, this.dragData); this.proxy.setStatus(status); } if(this.afterDragOver){ this.afterDragOver(target, e, id); } } }, beforeDragOver : function(target, e, id){ return true; }, onDragOut : function(e, id){ var target = this.cachedTarget || Ext.dd.DragDropMgr.getDDById(id); if(this.beforeDragOut(target, e, id) !== false){ if(target.isNotifyTarget){ target.notifyOut(this, e, this.dragData); } this.proxy.reset(); if(this.afterDragOut){ this.afterDragOut(target, e, id); } } this.cachedTarget = null; }, beforeDragOut : function(target, e, id){ return true; }, onDragDrop : function(e, id){ var target = this.cachedTarget || Ext.dd.DragDropMgr.getDDById(id); if(this.beforeDragDrop(target, e, id) !== false){ if(target.isNotifyTarget){ if(target.notifyDrop(this, e, this.dragData)){ this.onValidDrop(target, e, id); }else{ this.onInvalidDrop(target, e, id); } }else{ this.onValidDrop(target, e, id); } if(this.afterDragDrop){ this.afterDragDrop(target, e, id); } } delete this.cachedTarget; }, beforeDragDrop : function(target, e, id){ return true; }, onValidDrop : function(target, e, id){ this.hideProxy(); if(this.afterValidDrop){ this.afterValidDrop(target, e, id); } }, getRepairXY : function(e, data){ return this.el.getXY(); }, onInvalidDrop : function(target, e, id){ this.beforeInvalidDrop(target, e, id); if(this.cachedTarget){ if(this.cachedTarget.isNotifyTarget){ this.cachedTarget.notifyOut(this, e, this.dragData); } this.cacheTarget = null; } this.proxy.repair(this.getRepairXY(e, this.dragData), this.afterRepair, this); if(this.afterInvalidDrop){ this.afterInvalidDrop(e, id); } }, afterRepair : function(){ if(Ext.enableFx){ this.el.highlight(this.hlColor || "c3daf9"); } this.dragging = false; }, beforeInvalidDrop : function(target, e, id){ return true; }, handleMouseDown : function(e){ if(this.dragging) { return; } var data = this.getDragData(e); if(data && this.onBeforeDrag(data, e) !== false){ this.dragData = data; this.proxy.stop(); Ext.dd.DragSource.superclass.handleMouseDown.apply(this, arguments); } }, onBeforeDrag : function(data, e){ return true; }, onStartDrag : Ext.emptyFn, startDrag : function(x, y){ this.proxy.reset(); this.dragging = true; this.proxy.update(""); this.onInitDrag(x, y); this.proxy.show(); }, onInitDrag : function(x, y){ var clone = this.el.dom.cloneNode(true); clone.id = Ext.id(); this.proxy.update(clone); this.onStartDrag(x, y); return true; }, getProxy : function(){ return this.proxy; }, hideProxy : function(){ this.proxy.hide(); this.proxy.reset(true); this.dragging = false; }, triggerCacheRefresh : function(){ Ext.dd.DDM.refreshCache(this.groups); }, b4EndDrag: function(e) { }, endDrag : function(e){ this.onEndDrag(this.dragData, e); }, onEndDrag : function(data, e){ }, autoOffset : function(x, y) { this.setDelta(-12, -20); }, destroy: function(){ Ext.dd.DragSource.superclass.destroy.call(this); Ext.destroy(this.proxy); } }); Ext.dd.DropTarget = Ext.extend(Ext.dd.DDTarget, { constructor : function(el, config){ this.el = Ext.get(el); Ext.apply(this, config); if(this.containerScroll){ Ext.dd.ScrollManager.register(this.el); } Ext.dd.DropTarget.superclass.constructor.call(this, this.el.dom, this.ddGroup || this.group, {isTarget: true}); }, dropAllowed : "x-dd-drop-ok", dropNotAllowed : "x-dd-drop-nodrop", isTarget : true, isNotifyTarget : true, notifyEnter : function(dd, e, data){ if(this.overClass){ this.el.addClass(this.overClass); } return this.dropAllowed; }, notifyOver : function(dd, e, data){ return this.dropAllowed; }, notifyOut : function(dd, e, data){ if(this.overClass){ this.el.removeClass(this.overClass); } }, notifyDrop : function(dd, e, data){ return false; }, destroy : function(){ Ext.dd.DropTarget.superclass.destroy.call(this); if(this.containerScroll){ Ext.dd.ScrollManager.unregister(this.el); } } }); Ext.dd.DragZone = Ext.extend(Ext.dd.DragSource, { constructor : function(el, config){ Ext.dd.DragZone.superclass.constructor.call(this, el, config); if(this.containerScroll){ Ext.dd.ScrollManager.register(this.el); } }, getDragData : function(e){ return Ext.dd.Registry.getHandleFromEvent(e); }, onInitDrag : function(x, y){ this.proxy.update(this.dragData.ddel.cloneNode(true)); this.onStartDrag(x, y); return true; }, afterRepair : function(){ if(Ext.enableFx){ Ext.Element.fly(this.dragData.ddel).highlight(this.hlColor || "c3daf9"); } this.dragging = false; }, getRepairXY : function(e){ return Ext.Element.fly(this.dragData.ddel).getXY(); }, destroy : function(){ Ext.dd.DragZone.superclass.destroy.call(this); if(this.containerScroll){ Ext.dd.ScrollManager.unregister(this.el); } } }); Ext.dd.DropZone = function(el, config){ Ext.dd.DropZone.superclass.constructor.call(this, el, config); }; Ext.extend(Ext.dd.DropZone, Ext.dd.DropTarget, { getTargetFromEvent : function(e){ return Ext.dd.Registry.getTargetFromEvent(e); }, onNodeEnter : function(n, dd, e, data){ }, onNodeOver : function(n, dd, e, data){ return this.dropAllowed; }, onNodeOut : function(n, dd, e, data){ }, onNodeDrop : function(n, dd, e, data){ return false; }, onContainerOver : function(dd, e, data){ return this.dropNotAllowed; }, onContainerDrop : function(dd, e, data){ return false; }, notifyEnter : function(dd, e, data){ return this.dropNotAllowed; }, notifyOver : function(dd, e, data){ var n = this.getTargetFromEvent(e); if(!n){ if(this.lastOverNode){ this.onNodeOut(this.lastOverNode, dd, e, data); this.lastOverNode = null; } return this.onContainerOver(dd, e, data); } if(this.lastOverNode != n){ if(this.lastOverNode){ this.onNodeOut(this.lastOverNode, dd, e, data); } this.onNodeEnter(n, dd, e, data); this.lastOverNode = n; } return this.onNodeOver(n, dd, e, data); }, notifyOut : function(dd, e, data){ if(this.lastOverNode){ this.onNodeOut(this.lastOverNode, dd, e, data); this.lastOverNode = null; } }, notifyDrop : function(dd, e, data){ if(this.lastOverNode){ this.onNodeOut(this.lastOverNode, dd, e, data); this.lastOverNode = null; } var n = this.getTargetFromEvent(e); return n ? this.onNodeDrop(n, dd, e, data) : this.onContainerDrop(dd, e, data); }, triggerCacheRefresh : function(){ Ext.dd.DDM.refreshCache(this.groups); } }); Ext.Element.addMethods({ initDD : function(group, config, overrides){ var dd = new Ext.dd.DD(Ext.id(this.dom), group, config); return Ext.apply(dd, overrides); }, initDDProxy : function(group, config, overrides){ var dd = new Ext.dd.DDProxy(Ext.id(this.dom), group, config); return Ext.apply(dd, overrides); }, initDDTarget : function(group, config, overrides){ var dd = new Ext.dd.DDTarget(Ext.id(this.dom), group, config); return Ext.apply(dd, overrides); } }); Ext.data.Api = (function() { var validActions = {}; return { actions : { create : 'create', read : 'read', update : 'update', destroy : 'destroy' }, restActions : { create : 'POST', read : 'GET', update : 'PUT', destroy : 'DELETE' }, isAction : function(action) { return (Ext.data.Api.actions[action]) ? true : false; }, getVerb : function(name) { if (validActions[name]) { return validActions[name]; } for (var verb in this.actions) { if (this.actions[verb] === name) { validActions[name] = verb; break; } } return (validActions[name] !== undefined) ? validActions[name] : null; }, isValid : function(api){ var invalid = []; var crud = this.actions; for (var action in api) { if (!(action in crud)) { invalid.push(action); } } return (!invalid.length) ? true : invalid; }, hasUniqueUrl : function(proxy, verb) { var url = (proxy.api[verb]) ? proxy.api[verb].url : null; var unique = true; for (var action in proxy.api) { if ((unique = (action === verb) ? true : (proxy.api[action].url != url) ? true : false) === false) { break; } } return unique; }, prepare : function(proxy) { if (!proxy.api) { proxy.api = {}; } for (var verb in this.actions) { var action = this.actions[verb]; proxy.api[action] = proxy.api[action] || proxy.url || proxy.directFn; if (typeof(proxy.api[action]) == 'string') { proxy.api[action] = { url: proxy.api[action], method: (proxy.restful === true) ? Ext.data.Api.restActions[action] : undefined }; } } }, restify : function(proxy) { proxy.restful = true; for (var verb in this.restActions) { proxy.api[this.actions[verb]].method || (proxy.api[this.actions[verb]].method = this.restActions[verb]); } proxy.onWrite = proxy.onWrite.createInterceptor(function(action, o, response, rs) { var reader = o.reader; var res = new Ext.data.Response({ action: action, raw: response }); switch (response.status) { case 200: return true; break; case 201: if (Ext.isEmpty(res.raw.responseText)) { res.success = true; } else { return true; } break; case 204: res.success = true; res.data = null; break; default: return true; break; } if (res.success === true) { this.fireEvent("write", this, action, res.data, res, rs, o.request.arg); } else { this.fireEvent('exception', this, 'remote', action, o, res, rs); } o.request.callback.call(o.request.scope, res.data, res, res.success); return false; }, proxy); } }; })(); Ext.data.Response = function(params, response) { Ext.apply(this, params, { raw: response }); }; Ext.data.Response.prototype = { message : null, success : false, status : null, root : null, raw : null, getMessage : function() { return this.message; }, getSuccess : function() { return this.success; }, getStatus : function() { return this.status; }, getRoot : function() { return this.root; }, getRawResponse : function() { return this.raw; } }; Ext.data.Api.Error = Ext.extend(Ext.Error, { constructor : function(message, arg) { this.arg = arg; Ext.Error.call(this, message); }, name: 'Ext.data.Api' }); Ext.apply(Ext.data.Api.Error.prototype, { lang: { 'action-url-undefined': 'No fallback url defined for this action. When defining a DataProxy api, please be sure to define an url for each CRUD action in Ext.data.Api.actions or define a default url in addition to your api-configuration.', 'invalid': 'received an invalid API-configuration. Please ensure your proxy API-configuration contains only the actions defined in Ext.data.Api.actions', 'invalid-url': 'Invalid url. Please review your proxy configuration.', 'execute': 'Attempted to execute an unknown action. Valid API actions are defined in Ext.data.Api.actions"' } }); Ext.data.SortTypes = { none : function(s){ return s; }, stripTagsRE : /<\/?[^>]+>/gi, asText : function(s){ return String(s).replace(this.stripTagsRE, ""); }, asUCText : function(s){ return String(s).toUpperCase().replace(this.stripTagsRE, ""); }, asUCString : function(s) { return String(s).toUpperCase(); }, asDate : function(s) { if(!s){ return 0; } if(Ext.isDate(s)){ return s.getTime(); } return Date.parse(String(s)); }, asFloat : function(s) { var val = parseFloat(String(s).replace(/,/g, "")); return isNaN(val) ? 0 : val; }, asInt : function(s) { var val = parseInt(String(s).replace(/,/g, ""), 10); return isNaN(val) ? 0 : val; } }; Ext.data.Record = function(data, id){ this.id = (id || id === 0) ? id : Ext.data.Record.id(this); this.data = data || {}; }; Ext.data.Record.create = function(o){ var f = Ext.extend(Ext.data.Record, {}); var p = f.prototype; p.fields = new Ext.util.MixedCollection(false, function(field){ return field.name; }); for(var i = 0, len = o.length; i < len; i++){ p.fields.add(new Ext.data.Field(o[i])); } f.getField = function(name){ return p.fields.get(name); }; return f; }; Ext.data.Record.PREFIX = 'ext-record'; Ext.data.Record.AUTO_ID = 1; Ext.data.Record.EDIT = 'edit'; Ext.data.Record.REJECT = 'reject'; Ext.data.Record.COMMIT = 'commit'; Ext.data.Record.id = function(rec) { rec.phantom = true; return [Ext.data.Record.PREFIX, '-', Ext.data.Record.AUTO_ID++].join(''); }; Ext.data.Record.prototype = { dirty : false, editing : false, error : null, modified : null, phantom : false, join : function(store){ this.store = store; }, set : function(name, value){ var encode = Ext.isPrimitive(value) ? String : Ext.encode; if(encode(this.data[name]) == encode(value)) { return; } this.dirty = true; if(!this.modified){ this.modified = {}; } if(this.modified[name] === undefined){ this.modified[name] = this.data[name]; } this.data[name] = value; if(!this.editing){ this.afterEdit(); } }, afterEdit : function(){ if (this.store != undefined && typeof this.store.afterEdit == "function") { this.store.afterEdit(this); } }, afterReject : function(){ if(this.store){ this.store.afterReject(this); } }, afterCommit : function(){ if(this.store){ this.store.afterCommit(this); } }, get : function(name){ return this.data[name]; }, beginEdit : function(){ this.editing = true; this.modified = this.modified || {}; }, cancelEdit : function(){ this.editing = false; delete this.modified; }, endEdit : function(){ this.editing = false; if(this.dirty){ this.afterEdit(); } }, reject : function(silent){ var m = this.modified; for(var n in m){ if(typeof m[n] != "function"){ this.data[n] = m[n]; } } this.dirty = false; delete this.modified; this.editing = false; if(silent !== true){ this.afterReject(); } }, commit : function(silent){ this.dirty = false; delete this.modified; this.editing = false; if(silent !== true){ this.afterCommit(); } }, getChanges : function(){ var m = this.modified, cs = {}; for(var n in m){ if(m.hasOwnProperty(n)){ cs[n] = this.data[n]; } } return cs; }, hasError : function(){ return this.error !== null; }, clearError : function(){ this.error = null; }, copy : function(newId) { return new this.constructor(Ext.apply({}, this.data), newId || this.id); }, isModified : function(fieldName){ return !!(this.modified && this.modified.hasOwnProperty(fieldName)); }, isValid : function() { return this.fields.find(function(f) { return (f.allowBlank === false && Ext.isEmpty(this.data[f.name])) ? true : false; },this) ? false : true; }, markDirty : function(){ this.dirty = true; if(!this.modified){ this.modified = {}; } this.fields.each(function(f) { this.modified[f.name] = this.data[f.name]; },this); } }; Ext.StoreMgr = Ext.apply(new Ext.util.MixedCollection(), { register : function(){ for(var i = 0, s; (s = arguments[i]); i++){ this.add(s); } }, unregister : function(){ for(var i = 0, s; (s = arguments[i]); i++){ this.remove(this.lookup(s)); } }, lookup : function(id){ if(Ext.isArray(id)){ var fields = ['field1'], expand = !Ext.isArray(id[0]); if(!expand){ for(var i = 2, len = id[0].length; i <= len; ++i){ fields.push('field' + i); } } return new Ext.data.ArrayStore({ fields: fields, data: id, expandData: expand, autoDestroy: true, autoCreated: true }); } return Ext.isObject(id) ? (id.events ? id : Ext.create(id, 'store')) : this.get(id); }, getKey : function(o){ return o.storeId; } }); Ext.data.Store = Ext.extend(Ext.util.Observable, { writer : undefined, remoteSort : false, autoDestroy : false, pruneModifiedRecords : false, lastOptions : null, autoSave : true, batch : true, restful: false, paramNames : undefined, defaultParamNames : { start : 'start', limit : 'limit', sort : 'sort', dir : 'dir' }, isDestroyed: false, hasMultiSort: false, batchKey : '_ext_batch_', constructor : function(config){ this.data = new Ext.util.MixedCollection(false); this.data.getKey = function(o){ return o.id; }; this.removed = []; if(config && config.data){ this.inlineData = config.data; delete config.data; } Ext.apply(this, config); this.baseParams = Ext.isObject(this.baseParams) ? this.baseParams : {}; this.paramNames = Ext.applyIf(this.paramNames || {}, this.defaultParamNames); if((this.url || this.api) && !this.proxy){ this.proxy = new Ext.data.HttpProxy({url: this.url, api: this.api}); } if (this.restful === true && this.proxy) { this.batch = false; Ext.data.Api.restify(this.proxy); } if(this.reader){ if(!this.recordType){ this.recordType = this.reader.recordType; } if(this.reader.onMetaChange){ this.reader.onMetaChange = this.reader.onMetaChange.createSequence(this.onMetaChange, this); } if (this.writer) { if (this.writer instanceof(Ext.data.DataWriter) === false) { this.writer = this.buildWriter(this.writer); } this.writer.meta = this.reader.meta; this.pruneModifiedRecords = true; } } if(this.recordType){ this.fields = this.recordType.prototype.fields; } this.modified = []; this.addEvents( 'datachanged', 'metachange', 'add', 'remove', 'update', 'clear', 'exception', 'beforeload', 'load', 'loadexception', 'beforewrite', 'write', 'beforesave', 'save' ); if(this.proxy){ this.relayEvents(this.proxy, ['loadexception', 'exception']); } if (this.writer) { this.on({ scope: this, add: this.createRecords, remove: this.destroyRecord, update: this.updateRecord, clear: this.onClear }); } this.sortToggle = {}; if(this.sortField){ this.setDefaultSort(this.sortField, this.sortDir); }else if(this.sortInfo){ this.setDefaultSort(this.sortInfo.field, this.sortInfo.direction); } Ext.data.Store.superclass.constructor.call(this); if(this.id){ this.storeId = this.id; delete this.id; } if(this.storeId){ Ext.StoreMgr.register(this); } if(this.inlineData){ this.loadData(this.inlineData); delete this.inlineData; }else if(this.autoLoad){ this.load.defer(10, this, [ typeof this.autoLoad == 'object' ? this.autoLoad : undefined]); } this.batchCounter = 0; this.batches = {}; }, buildWriter : function(config) { var klass = undefined, type = (config.format || 'json').toLowerCase(); switch (type) { case 'json': klass = Ext.data.JsonWriter; break; case 'xml': klass = Ext.data.XmlWriter; break; default: klass = Ext.data.JsonWriter; } return new klass(config); }, destroy : function(){ if(!this.isDestroyed){ if(this.storeId){ Ext.StoreMgr.unregister(this); } this.clearData(); this.data = null; Ext.destroy(this.proxy); this.reader = this.writer = null; this.purgeListeners(); this.isDestroyed = true; } }, add : function(records) { var i, len, record, index; records = [].concat(records); if (records.length < 1) { return; } for (i = 0, len = records.length; i < len; i++) { record = records[i]; record.join(this); if (record.dirty || record.phantom) { this.modified.push(record); } } index = this.data.length; this.data.addAll(records); if (this.snapshot) { this.snapshot.addAll(records); } this.fireEvent('add', this, records, index); }, addSorted : function(record){ var index = this.findInsertIndex(record); this.insert(index, record); }, doUpdate: function(rec){ var id = rec.id; this.getById(id).join(null); this.data.replace(id, rec); if (this.snapshot) { this.snapshot.replace(id, rec); } rec.join(this); this.fireEvent('update', this, rec, Ext.data.Record.COMMIT); }, remove : function(record){ if(Ext.isArray(record)){ Ext.each(record, function(r){ this.remove(r); }, this); return; } var index = this.data.indexOf(record); if(index > -1){ record.join(null); this.data.removeAt(index); } if(this.pruneModifiedRecords){ this.modified.remove(record); } if(this.snapshot){ this.snapshot.remove(record); } if(index > -1){ this.fireEvent('remove', this, record, index); } }, removeAt : function(index){ this.remove(this.getAt(index)); }, removeAll : function(silent){ var items = []; this.each(function(rec){ items.push(rec); }); this.clearData(); if(this.snapshot){ this.snapshot.clear(); } if(this.pruneModifiedRecords){ this.modified = []; } if (silent !== true) { this.fireEvent('clear', this, items); } }, onClear: function(store, records){ Ext.each(records, function(rec, index){ this.destroyRecord(this, rec, index); }, this); }, insert : function(index, records) { var i, len, record; records = [].concat(records); for (i = 0, len = records.length; i < len; i++) { record = records[i]; this.data.insert(index + i, record); record.join(this); if (record.dirty || record.phantom) { this.modified.push(record); } } if (this.snapshot) { this.snapshot.addAll(records); } this.fireEvent('add', this, records, index); }, indexOf : function(record){ return this.data.indexOf(record); }, indexOfId : function(id){ return this.data.indexOfKey(id); }, getById : function(id){ return (this.snapshot || this.data).key(id); }, getAt : function(index){ return this.data.itemAt(index); }, getRange : function(start, end){ return this.data.getRange(start, end); }, storeOptions : function(o){ o = Ext.apply({}, o); delete o.callback; delete o.scope; this.lastOptions = o; }, clearData: function(){ this.data.each(function(rec) { rec.join(null); }); this.data.clear(); }, load : function(options) { options = Ext.apply({}, options); this.storeOptions(options); if(this.sortInfo && this.remoteSort){ var pn = this.paramNames; options.params = Ext.apply({}, options.params); options.params[pn.sort] = this.sortInfo.field; options.params[pn.dir] = this.sortInfo.direction; } try { return this.execute('read', null, options); } catch(e) { this.handleException(e); return false; } }, updateRecord : function(store, record, action) { if (action == Ext.data.Record.EDIT && this.autoSave === true && (!record.phantom || (record.phantom && record.isValid()))) { this.save(); } }, createRecords : function(store, records, index) { var modified = this.modified, length = records.length, record, i; for (i = 0; i < length; i++) { record = records[i]; if (record.phantom && record.isValid()) { record.markDirty(); if (modified.indexOf(record) == -1) { modified.push(record); } } } if (this.autoSave === true) { this.save(); } }, destroyRecord : function(store, record, index) { if (this.modified.indexOf(record) != -1) { this.modified.remove(record); } if (!record.phantom) { this.removed.push(record); record.lastIndex = index; if (this.autoSave === true) { this.save(); } } }, execute : function(action, rs, options, batch) { if (!Ext.data.Api.isAction(action)) { throw new Ext.data.Api.Error('execute', action); } options = Ext.applyIf(options||{}, { params: {} }); if(batch !== undefined){ this.addToBatch(batch); } var doRequest = true; if (action === 'read') { doRequest = this.fireEvent('beforeload', this, options); Ext.applyIf(options.params, this.baseParams); } else { if (this.writer.listful === true && this.restful !== true) { rs = (Ext.isArray(rs)) ? rs : [rs]; } else if (Ext.isArray(rs) && rs.length == 1) { rs = rs.shift(); } if ((doRequest = this.fireEvent('beforewrite', this, action, rs, options)) !== false) { this.writer.apply(options.params, this.baseParams, action, rs); } } if (doRequest !== false) { if (this.writer && this.proxy.url && !this.proxy.restful && !Ext.data.Api.hasUniqueUrl(this.proxy, action)) { options.params.xaction = action; } this.proxy.request(Ext.data.Api.actions[action], rs, options.params, this.reader, this.createCallback(action, rs, batch), this, options); } return doRequest; }, save : function() { if (!this.writer) { throw new Ext.data.Store.Error('writer-undefined'); } var queue = [], len, trans, batch, data = {}, i; if(this.removed.length){ queue.push(['destroy', this.removed]); } var rs = [].concat(this.getModifiedRecords()); if(rs.length){ var phantoms = []; for(i = rs.length-1; i >= 0; i--){ if(rs[i].phantom === true){ var rec = rs.splice(i, 1).shift(); if(rec.isValid()){ phantoms.push(rec); } }else if(!rs[i].isValid()){ rs.splice(i,1); } } if(phantoms.length){ queue.push(['create', phantoms]); } if(rs.length){ queue.push(['update', rs]); } } len = queue.length; if(len){ batch = ++this.batchCounter; for(i = 0; i < len; ++i){ trans = queue[i]; data[trans[0]] = trans[1]; } if(this.fireEvent('beforesave', this, data) !== false){ for(i = 0; i < len; ++i){ trans = queue[i]; this.doTransaction(trans[0], trans[1], batch); } return batch; } } return -1; }, doTransaction : function(action, rs, batch) { function transaction(records) { try{ this.execute(action, records, undefined, batch); }catch (e){ this.handleException(e); } } if(this.batch === false){ for(var i = 0, len = rs.length; i < len; i++){ transaction.call(this, rs[i]); } }else{ transaction.call(this, rs); } }, addToBatch : function(batch){ var b = this.batches, key = this.batchKey + batch, o = b[key]; if(!o){ b[key] = o = { id: batch, count: 0, data: {} }; } ++o.count; }, removeFromBatch : function(batch, action, data){ var b = this.batches, key = this.batchKey + batch, o = b[key], arr; if(o){ arr = o.data[action] || []; o.data[action] = arr.concat(data); if(o.count === 1){ data = o.data; delete b[key]; this.fireEvent('save', this, batch, data); }else{ --o.count; } } }, createCallback : function(action, rs, batch) { var actions = Ext.data.Api.actions; return (action == 'read') ? this.loadRecords : function(data, response, success) { this['on' + Ext.util.Format.capitalize(action) + 'Records'](success, rs, [].concat(data)); if (success === true) { this.fireEvent('write', this, action, data, response, rs); } this.removeFromBatch(batch, action, data); }; }, clearModified : function(rs) { if (Ext.isArray(rs)) { for (var n=rs.length-1;n>=0;n--) { this.modified.splice(this.modified.indexOf(rs[n]), 1); } } else { this.modified.splice(this.modified.indexOf(rs), 1); } }, reMap : function(record) { if (Ext.isArray(record)) { for (var i = 0, len = record.length; i < len; i++) { this.reMap(record[i]); } } else { delete this.data.map[record._phid]; this.data.map[record.id] = record; var index = this.data.keys.indexOf(record._phid); this.data.keys.splice(index, 1, record.id); delete record._phid; } }, onCreateRecords : function(success, rs, data) { if (success === true) { try { this.reader.realize(rs, data); } catch (e) { this.handleException(e); if (Ext.isArray(rs)) { this.onCreateRecords(success, rs, data); } } } }, onUpdateRecords : function(success, rs, data) { if (success === true) { try { this.reader.update(rs, data); } catch (e) { this.handleException(e); if (Ext.isArray(rs)) { this.onUpdateRecords(success, rs, data); } } } }, onDestroyRecords : function(success, rs, data) { rs = (rs instanceof Ext.data.Record) ? [rs] : [].concat(rs); for (var i=0,len=rs.length;i=0;i--) { this.insert(rs[i].lastIndex, rs[i]); } } }, handleException : function(e) { Ext.handleError(e); }, reload : function(options){ this.load(Ext.applyIf(options||{}, this.lastOptions)); }, loadRecords : function(o, options, success){ var i, len; if (this.isDestroyed === true) { return; } if(!o || success === false){ if(success !== false){ this.fireEvent('load', this, [], options); } if(options.callback){ options.callback.call(options.scope || this, [], options, false, o); } return; } var r = o.records, t = o.totalRecords || r.length; if(!options || options.add !== true){ if(this.pruneModifiedRecords){ this.modified = []; } for(i = 0, len = r.length; i < len; i++){ r[i].join(this); } if(this.snapshot){ this.data = this.snapshot; delete this.snapshot; } this.clearData(); this.data.addAll(r); this.totalLength = t; this.applySort(); this.fireEvent('datachanged', this); }else{ var toAdd = [], rec, cnt = 0; for(i = 0, len = r.length; i < len; ++i){ rec = r[i]; if(this.indexOfId(rec.id) > -1){ this.doUpdate(rec); }else{ toAdd.push(rec); ++cnt; } } this.totalLength = Math.max(t, this.data.length + cnt); this.add(toAdd); } this.fireEvent('load', this, r, options); if(options.callback){ options.callback.call(options.scope || this, r, options, true); } }, loadData : function(o, append){ var r = this.reader.readRecords(o); this.loadRecords(r, {add: append}, true); }, getCount : function(){ return this.data.length || 0; }, getTotalCount : function(){ return this.totalLength || 0; }, getSortState : function(){ return this.sortInfo; }, applySort : function(){ if ((this.sortInfo || this.multiSortInfo) && !this.remoteSort) { this.sortData(); } }, sortData : function() { var sortInfo = this.hasMultiSort ? this.multiSortInfo : this.sortInfo, direction = sortInfo.direction || "ASC", sorters = sortInfo.sorters, sortFns = []; if (!this.hasMultiSort) { sorters = [{direction: direction, field: sortInfo.field}]; } for (var i=0, j = sorters.length; i < j; i++) { sortFns.push(this.createSortFunction(sorters[i].field, sorters[i].direction)); } if (sortFns.length == 0) { return; } var directionModifier = direction.toUpperCase() == "DESC" ? -1 : 1; var fn = function(r1, r2) { var result = sortFns[0].call(this, r1, r2); if (sortFns.length > 1) { for (var i=1, j = sortFns.length; i < j; i++) { result = result || sortFns[i].call(this, r1, r2); } } return directionModifier * result; }; this.data.sort(direction, fn); if (this.snapshot && this.snapshot != this.data) { this.snapshot.sort(direction, fn); } }, createSortFunction: function(field, direction) { direction = direction || "ASC"; var directionModifier = direction.toUpperCase() == "DESC" ? -1 : 1; var sortType = this.fields.get(field).sortType; return function(r1, r2) { var v1 = sortType(r1.data[field]), v2 = sortType(r2.data[field]); return directionModifier * (v1 > v2 ? 1 : (v1 < v2 ? -1 : 0)); }; }, setDefaultSort : function(field, dir) { dir = dir ? dir.toUpperCase() : 'ASC'; this.sortInfo = {field: field, direction: dir}; this.sortToggle[field] = dir; }, sort : function(fieldName, dir) { if (Ext.isArray(arguments[0])) { return this.multiSort.call(this, fieldName, dir); } else { return this.singleSort(fieldName, dir); } }, singleSort: function(fieldName, dir) { var field = this.fields.get(fieldName); if (!field) { return false; } var name = field.name, sortInfo = this.sortInfo || null, sortToggle = this.sortToggle ? this.sortToggle[name] : null; if (!dir) { if (sortInfo && sortInfo.field == name) { dir = (this.sortToggle[name] || 'ASC').toggle('ASC', 'DESC'); } else { dir = field.sortDir; } } this.sortToggle[name] = dir; this.sortInfo = {field: name, direction: dir}; this.hasMultiSort = false; if (this.remoteSort) { if (!this.load(this.lastOptions)) { if (sortToggle) { this.sortToggle[name] = sortToggle; } if (sortInfo) { this.sortInfo = sortInfo; } } } else { this.applySort(); this.fireEvent('datachanged', this); } return true; }, multiSort: function(sorters, direction) { this.hasMultiSort = true; direction = direction || "ASC"; if (this.multiSortInfo && direction == this.multiSortInfo.direction) { direction = direction.toggle("ASC", "DESC"); } this.multiSortInfo = { sorters : sorters, direction: direction }; if (this.remoteSort) { this.singleSort(sorters[0].field, sorters[0].direction); } else { this.applySort(); this.fireEvent('datachanged', this); } }, each : function(fn, scope){ this.data.each(fn, scope); }, getModifiedRecords : function(){ return this.modified; }, sum : function(property, start, end){ var rs = this.data.items, v = 0; start = start || 0; end = (end || end === 0) ? end : rs.length-1; for(var i = start; i <= end; i++){ v += (rs[i].data[property] || 0); } return v; }, createFilterFn : function(property, value, anyMatch, caseSensitive, exactMatch){ if(Ext.isEmpty(value, false)){ return false; } value = this.data.createValueMatcher(value, anyMatch, caseSensitive, exactMatch); return function(r) { return value.test(r.data[property]); }; }, createMultipleFilterFn: function(filters) { return function(record) { var isMatch = true; for (var i=0, j = filters.length; i < j; i++) { var filter = filters[i], fn = filter.fn, scope = filter.scope; isMatch = isMatch && fn.call(scope, record); } return isMatch; }; }, filter : function(property, value, anyMatch, caseSensitive, exactMatch){ var fn; if (Ext.isObject(property)) { property = [property]; } if (Ext.isArray(property)) { var filters = []; for (var i=0, j = property.length; i < j; i++) { var filter = property[i], func = filter.fn, scope = filter.scope || this; if (!Ext.isFunction(func)) { func = this.createFilterFn(filter.property, filter.value, filter.anyMatch, filter.caseSensitive, filter.exactMatch); } filters.push({fn: func, scope: scope}); } fn = this.createMultipleFilterFn(filters); } else { fn = this.createFilterFn(property, value, anyMatch, caseSensitive, exactMatch); } return fn ? this.filterBy(fn) : this.clearFilter(); }, filterBy : function(fn, scope){ this.snapshot = this.snapshot || this.data; this.data = this.queryBy(fn, scope || this); this.fireEvent('datachanged', this); }, clearFilter : function(suppressEvent){ if(this.isFiltered()){ this.data = this.snapshot; delete this.snapshot; if(suppressEvent !== true){ this.fireEvent('datachanged', this); } } }, isFiltered : function(){ return !!this.snapshot && this.snapshot != this.data; }, query : function(property, value, anyMatch, caseSensitive){ var fn = this.createFilterFn(property, value, anyMatch, caseSensitive); return fn ? this.queryBy(fn) : this.data.clone(); }, queryBy : function(fn, scope){ var data = this.snapshot || this.data; return data.filterBy(fn, scope||this); }, find : function(property, value, start, anyMatch, caseSensitive){ var fn = this.createFilterFn(property, value, anyMatch, caseSensitive); return fn ? this.data.findIndexBy(fn, null, start) : -1; }, findExact: function(property, value, start){ return this.data.findIndexBy(function(rec){ return rec.get(property) === value; }, this, start); }, findBy : function(fn, scope, start){ return this.data.findIndexBy(fn, scope, start); }, collect : function(dataIndex, allowNull, bypassFilter){ var d = (bypassFilter === true && this.snapshot) ? this.snapshot.items : this.data.items; var v, sv, r = [], l = {}; for(var i = 0, len = d.length; i < len; i++){ v = d[i].data[dataIndex]; sv = String(v); if((allowNull || !Ext.isEmpty(v)) && !l[sv]){ l[sv] = true; r[r.length] = v; } } return r; }, afterEdit : function(record){ if(this.modified.indexOf(record) == -1){ this.modified.push(record); } this.fireEvent('update', this, record, Ext.data.Record.EDIT); }, afterReject : function(record){ this.modified.remove(record); this.fireEvent('update', this, record, Ext.data.Record.REJECT); }, afterCommit : function(record){ this.modified.remove(record); this.fireEvent('update', this, record, Ext.data.Record.COMMIT); }, commitChanges : function(){ var modified = this.modified.slice(0), length = modified.length, i; for (i = 0; i < length; i++){ modified[i].commit(); } this.modified = []; this.removed = []; }, rejectChanges : function() { var modified = this.modified.slice(0), removed = this.removed.slice(0).reverse(), mLength = modified.length, rLength = removed.length, i; for (i = 0; i < mLength; i++) { modified[i].reject(); } for (i = 0; i < rLength; i++) { this.insert(removed[i].lastIndex || 0, removed[i]); removed[i].reject(); } this.modified = []; this.removed = []; }, onMetaChange : function(meta){ this.recordType = this.reader.recordType; this.fields = this.recordType.prototype.fields; delete this.snapshot; if(this.reader.meta.sortInfo){ this.sortInfo = this.reader.meta.sortInfo; }else if(this.sortInfo && !this.fields.get(this.sortInfo.field)){ delete this.sortInfo; } if(this.writer){ this.writer.meta = this.reader.meta; } this.modified = []; this.fireEvent('metachange', this, this.reader.meta); }, findInsertIndex : function(record){ this.suspendEvents(); var data = this.data.clone(); this.data.add(record); this.applySort(); var index = this.data.indexOf(record); this.data = data; this.resumeEvents(); return index; }, setBaseParam : function (name, value){ this.baseParams = this.baseParams || {}; this.baseParams[name] = value; } }); Ext.reg('store', Ext.data.Store); Ext.data.Store.Error = Ext.extend(Ext.Error, { name: 'Ext.data.Store' }); Ext.apply(Ext.data.Store.Error.prototype, { lang: { 'writer-undefined' : 'Attempted to execute a write-action without a DataWriter installed.' } }); Ext.data.Field = Ext.extend(Object, { constructor : function(config){ if(Ext.isString(config)){ config = {name: config}; } Ext.apply(this, config); var types = Ext.data.Types, st = this.sortType, t; if(this.type){ if(Ext.isString(this.type)){ this.type = Ext.data.Types[this.type.toUpperCase()] || types.AUTO; } }else{ this.type = types.AUTO; } if(Ext.isString(st)){ this.sortType = Ext.data.SortTypes[st]; }else if(Ext.isEmpty(st)){ this.sortType = this.type.sortType; } if(!this.convert){ this.convert = this.type.convert; } }, dateFormat: null, useNull: false, defaultValue: "", mapping: null, sortType : null, sortDir : "ASC", allowBlank : true }); Ext.data.DataReader = function(meta, recordType){ this.meta = meta; this.recordType = Ext.isArray(recordType) ? Ext.data.Record.create(recordType) : recordType; if (this.recordType){ this.buildExtractors(); } }; Ext.data.DataReader.prototype = { getTotal: Ext.emptyFn, getRoot: Ext.emptyFn, getMessage: Ext.emptyFn, getSuccess: Ext.emptyFn, getId: Ext.emptyFn, buildExtractors : Ext.emptyFn, extractValues : Ext.emptyFn, realize: function(rs, data){ if (Ext.isArray(rs)) { for (var i = rs.length - 1; i >= 0; i--) { if (Ext.isArray(data)) { this.realize(rs.splice(i,1).shift(), data.splice(i,1).shift()); } else { this.realize(rs.splice(i,1).shift(), data); } } } else { if (Ext.isArray(data) && data.length == 1) { data = data.shift(); } if (!this.isData(data)) { throw new Ext.data.DataReader.Error('realize', rs); } rs.phantom = false; rs._phid = rs.id; rs.id = this.getId(data); rs.data = data; rs.commit(); rs.store.reMap(rs); } }, update : function(rs, data) { if (Ext.isArray(rs)) { for (var i=rs.length-1; i >= 0; i--) { if (Ext.isArray(data)) { this.update(rs.splice(i,1).shift(), data.splice(i,1).shift()); } else { this.update(rs.splice(i,1).shift(), data); } } } else { if (Ext.isArray(data) && data.length == 1) { data = data.shift(); } if (this.isData(data)) { rs.data = Ext.apply(rs.data, data); } rs.commit(); } }, extractData : function(root, returnRecords) { var rawName = (this instanceof Ext.data.JsonReader) ? 'json' : 'node'; var rs = []; if (this.isData(root) && !(this instanceof Ext.data.XmlReader)) { root = [root]; } var f = this.recordType.prototype.fields, fi = f.items, fl = f.length, rs = []; if (returnRecords === true) { var Record = this.recordType; for (var i = 0; i < root.length; i++) { var n = root[i]; var record = new Record(this.extractValues(n, fi, fl), this.getId(n)); record[rawName] = n; rs.push(record); } } else { for (var i = 0; i < root.length; i++) { var data = this.extractValues(root[i], fi, fl); data[this.meta.idProperty] = this.getId(root[i]); rs.push(data); } } return rs; }, isData : function(data) { return (data && Ext.isObject(data) && !Ext.isEmpty(this.getId(data))) ? true : false; }, onMetaChange : function(meta){ delete this.ef; this.meta = meta; this.recordType = Ext.data.Record.create(meta.fields); this.buildExtractors(); } }; Ext.data.DataReader.Error = Ext.extend(Ext.Error, { constructor : function(message, arg) { this.arg = arg; Ext.Error.call(this, message); }, name: 'Ext.data.DataReader' }); Ext.apply(Ext.data.DataReader.Error.prototype, { lang : { 'update': "#update received invalid data from server. Please see docs for DataReader#update and review your DataReader configuration.", 'realize': "#realize was called with invalid remote-data. Please see the docs for DataReader#realize and review your DataReader configuration.", 'invalid-response': "#readResponse received an invalid response from the server." } }); Ext.data.DataWriter = function(config){ Ext.apply(this, config); }; Ext.data.DataWriter.prototype = { writeAllFields : false, listful : false, apply : function(params, baseParams, action, rs) { var data = [], renderer = action + 'Record'; if (Ext.isArray(rs)) { Ext.each(rs, function(rec){ data.push(this[renderer](rec)); }, this); } else if (rs instanceof Ext.data.Record) { data = this[renderer](rs); } this.render(params, baseParams, data); }, render : Ext.emptyFn, updateRecord : Ext.emptyFn, createRecord : Ext.emptyFn, destroyRecord : Ext.emptyFn, toHash : function(rec, config) { var map = rec.fields.map, data = {}, raw = (this.writeAllFields === false && rec.phantom === false) ? rec.getChanges() : rec.data, m; Ext.iterate(raw, function(prop, value){ if((m = map[prop])){ data[m.mapping ? m.mapping : m.name] = value; } }); if (rec.phantom) { if (rec.fields.containsKey(this.meta.idProperty) && Ext.isEmpty(rec.data[this.meta.idProperty])) { delete data[this.meta.idProperty]; } } else { data[this.meta.idProperty] = rec.id; } return data; }, toArray : function(data) { var fields = []; Ext.iterate(data, function(k, v) {fields.push({name: k, value: v});},this); return fields; } }; Ext.data.DataProxy = function(conn){ conn = conn || {}; this.api = conn.api; this.url = conn.url; this.restful = conn.restful; this.listeners = conn.listeners; this.prettyUrls = conn.prettyUrls; this.addEvents( 'exception', 'beforeload', 'load', 'loadexception', 'beforewrite', 'write' ); Ext.data.DataProxy.superclass.constructor.call(this); try { Ext.data.Api.prepare(this); } catch (e) { if (e instanceof Ext.data.Api.Error) { e.toConsole(); } } Ext.data.DataProxy.relayEvents(this, ['beforewrite', 'write', 'exception']); }; Ext.extend(Ext.data.DataProxy, Ext.util.Observable, { restful: false, setApi : function() { if (arguments.length == 1) { var valid = Ext.data.Api.isValid(arguments[0]); if (valid === true) { this.api = arguments[0]; } else { throw new Ext.data.Api.Error('invalid', valid); } } else if (arguments.length == 2) { if (!Ext.data.Api.isAction(arguments[0])) { throw new Ext.data.Api.Error('invalid', arguments[0]); } this.api[arguments[0]] = arguments[1]; } Ext.data.Api.prepare(this); }, isApiAction : function(action) { return (this.api[action]) ? true : false; }, request : function(action, rs, params, reader, callback, scope, options) { if (!this.api[action] && !this.load) { throw new Ext.data.DataProxy.Error('action-undefined', action); } params = params || {}; if ((action === Ext.data.Api.actions.read) ? this.fireEvent("beforeload", this, params) : this.fireEvent("beforewrite", this, action, rs, params) !== false) { this.doRequest.apply(this, arguments); } else { callback.call(scope || this, null, options, false); } }, load : null, doRequest : function(action, rs, params, reader, callback, scope, options) { this.load(params, reader, callback, scope, options); }, onRead : Ext.emptyFn, onWrite : Ext.emptyFn, buildUrl : function(action, record) { record = record || null; var url = (this.conn && this.conn.url) ? this.conn.url : (this.api[action]) ? this.api[action].url : this.url; if (!url) { throw new Ext.data.Api.Error('invalid-url', action); } var provides = null; var m = url.match(/(.*)(\.json|\.xml|\.html)$/); if (m) { provides = m[2]; url = m[1]; } if ((this.restful === true || this.prettyUrls === true) && record instanceof Ext.data.Record && !record.phantom) { url += '/' + record.id; } return (provides === null) ? url : url + provides; }, destroy: function(){ this.purgeListeners(); } }); Ext.apply(Ext.data.DataProxy, Ext.util.Observable.prototype); Ext.util.Observable.call(Ext.data.DataProxy); Ext.data.DataProxy.Error = Ext.extend(Ext.Error, { constructor : function(message, arg) { this.arg = arg; Ext.Error.call(this, message); }, name: 'Ext.data.DataProxy' }); Ext.apply(Ext.data.DataProxy.Error.prototype, { lang: { 'action-undefined': "DataProxy attempted to execute an API-action but found an undefined url / function. Please review your Proxy url/api-configuration.", 'api-invalid': 'Recieved an invalid API-configuration. Please ensure your proxy API-configuration contains only the actions from Ext.data.Api.actions.' } }); Ext.data.Request = function(params) { Ext.apply(this, params); }; Ext.data.Request.prototype = { action : undefined, rs : undefined, params: undefined, callback : Ext.emptyFn, scope : undefined, reader : undefined }; Ext.data.Response = function(params) { Ext.apply(this, params); }; Ext.data.Response.prototype = { action: undefined, success : undefined, message : undefined, data: undefined, raw: undefined, records: undefined }; Ext.data.ScriptTagProxy = function(config){ Ext.apply(this, config); Ext.data.ScriptTagProxy.superclass.constructor.call(this, config); this.head = document.getElementsByTagName("head")[0]; }; Ext.data.ScriptTagProxy.TRANS_ID = 1000; Ext.extend(Ext.data.ScriptTagProxy, Ext.data.DataProxy, { timeout : 30000, callbackParam : "callback", nocache : true, doRequest : function(action, rs, params, reader, callback, scope, arg) { var p = Ext.urlEncode(Ext.apply(params, this.extraParams)); var url = this.buildUrl(action, rs); if (!url) { throw new Ext.data.Api.Error('invalid-url', url); } url = Ext.urlAppend(url, p); if(this.nocache){ url = Ext.urlAppend(url, '_dc=' + (new Date().getTime())); } var transId = ++Ext.data.ScriptTagProxy.TRANS_ID; var trans = { id : transId, action: action, cb : "stcCallback"+transId, scriptId : "stcScript"+transId, params : params, arg : arg, url : url, callback : callback, scope : scope, reader : reader }; window[trans.cb] = this.createCallback(action, rs, trans); url += String.format("&{0}={1}", this.callbackParam, trans.cb); if(this.autoAbort !== false){ this.abort(); } trans.timeoutId = this.handleFailure.defer(this.timeout, this, [trans]); var script = document.createElement("script"); script.setAttribute("src", url); script.setAttribute("type", "text/javascript"); script.setAttribute("id", trans.scriptId); this.head.appendChild(script); this.trans = trans; }, createCallback : function(action, rs, trans) { var self = this; return function(res) { self.trans = false; self.destroyTrans(trans, true); if (action === Ext.data.Api.actions.read) { self.onRead.call(self, action, trans, res); } else { self.onWrite.call(self, action, trans, res, rs); } }; }, onRead : function(action, trans, res) { var result; try { result = trans.reader.readRecords(res); }catch(e){ this.fireEvent("loadexception", this, trans, res, e); this.fireEvent('exception', this, 'response', action, trans, res, e); trans.callback.call(trans.scope||window, null, trans.arg, false); return; } if (result.success === false) { this.fireEvent('loadexception', this, trans, res); this.fireEvent('exception', this, 'remote', action, trans, res, null); } else { this.fireEvent("load", this, res, trans.arg); } trans.callback.call(trans.scope||window, result, trans.arg, result.success); }, onWrite : function(action, trans, response, rs) { var reader = trans.reader; try { var res = reader.readResponse(action, response); } catch (e) { this.fireEvent('exception', this, 'response', action, trans, res, e); trans.callback.call(trans.scope||window, null, res, false); return; } if(!res.success === true){ this.fireEvent('exception', this, 'remote', action, trans, res, rs); trans.callback.call(trans.scope||window, null, res, false); return; } this.fireEvent("write", this, action, res.data, res, rs, trans.arg ); trans.callback.call(trans.scope||window, res.data, res, true); }, isLoading : function(){ return this.trans ? true : false; }, abort : function(){ if(this.isLoading()){ this.destroyTrans(this.trans); } }, destroyTrans : function(trans, isLoaded){ this.head.removeChild(document.getElementById(trans.scriptId)); clearTimeout(trans.timeoutId); if(isLoaded){ window[trans.cb] = undefined; try{ delete window[trans.cb]; }catch(e){} }else{ window[trans.cb] = function(){ window[trans.cb] = undefined; try{ delete window[trans.cb]; }catch(e){} }; } }, handleFailure : function(trans){ this.trans = false; this.destroyTrans(trans, false); if (trans.action === Ext.data.Api.actions.read) { this.fireEvent("loadexception", this, null, trans.arg); } this.fireEvent('exception', this, 'response', trans.action, { response: null, options: trans.arg }); trans.callback.call(trans.scope||window, null, trans.arg, false); }, destroy: function(){ this.abort(); Ext.data.ScriptTagProxy.superclass.destroy.call(this); } }); Ext.data.HttpProxy = function(conn){ Ext.data.HttpProxy.superclass.constructor.call(this, conn); this.conn = conn; this.conn.url = null; this.useAjax = !conn || !conn.events; var actions = Ext.data.Api.actions; this.activeRequest = {}; for (var verb in actions) { this.activeRequest[actions[verb]] = undefined; } }; Ext.extend(Ext.data.HttpProxy, Ext.data.DataProxy, { getConnection : function() { return this.useAjax ? Ext.Ajax : this.conn; }, setUrl : function(url, makePermanent) { this.conn.url = url; if (makePermanent === true) { this.url = url; this.api = null; Ext.data.Api.prepare(this); } }, doRequest : function(action, rs, params, reader, cb, scope, arg) { var o = { method: (this.api[action]) ? this.api[action]['method'] : undefined, request: { callback : cb, scope : scope, arg : arg }, reader: reader, callback : this.createCallback(action, rs), scope: this }; if (params.jsonData) { o.jsonData = params.jsonData; } else if (params.xmlData) { o.xmlData = params.xmlData; } else { o.params = params || {}; } this.conn.url = this.buildUrl(action, rs); if(this.useAjax){ Ext.applyIf(o, this.conn); if (action == Ext.data.Api.actions.read && this.activeRequest[action]) { Ext.Ajax.abort(this.activeRequest[action]); } this.activeRequest[action] = Ext.Ajax.request(o); }else{ this.conn.request(o); } this.conn.url = null; }, createCallback : function(action, rs) { return function(o, success, response) { this.activeRequest[action] = undefined; if (!success) { if (action === Ext.data.Api.actions.read) { this.fireEvent('loadexception', this, o, response); } this.fireEvent('exception', this, 'response', action, o, response); o.request.callback.call(o.request.scope, null, o.request.arg, false); return; } if (action === Ext.data.Api.actions.read) { this.onRead(action, o, response); } else { this.onWrite(action, o, response, rs); } }; }, onRead : function(action, o, response) { var result; try { result = o.reader.read(response); }catch(e){ this.fireEvent('loadexception', this, o, response, e); this.fireEvent('exception', this, 'response', action, o, response, e); o.request.callback.call(o.request.scope, null, o.request.arg, false); return; } if (result.success === false) { this.fireEvent('loadexception', this, o, response); var res = o.reader.readResponse(action, response); this.fireEvent('exception', this, 'remote', action, o, res, null); } else { this.fireEvent('load', this, o, o.request.arg); } o.request.callback.call(o.request.scope, result, o.request.arg, result.success); }, onWrite : function(action, o, response, rs) { var reader = o.reader; var res; try { res = reader.readResponse(action, response); } catch (e) { this.fireEvent('exception', this, 'response', action, o, response, e); o.request.callback.call(o.request.scope, null, o.request.arg, false); return; } if (res.success === true) { this.fireEvent('write', this, action, res.data, res, rs, o.request.arg); } else { this.fireEvent('exception', this, 'remote', action, o, res, rs); } o.request.callback.call(o.request.scope, res.data, res, res.success); }, destroy: function(){ if(!this.useAjax){ this.conn.abort(); }else if(this.activeRequest){ var actions = Ext.data.Api.actions; for (var verb in actions) { if(this.activeRequest[actions[verb]]){ Ext.Ajax.abort(this.activeRequest[actions[verb]]); } } } Ext.data.HttpProxy.superclass.destroy.call(this); } }); Ext.data.MemoryProxy = function(data){ var api = {}; api[Ext.data.Api.actions.read] = true; Ext.data.MemoryProxy.superclass.constructor.call(this, { api: api }); this.data = data; }; Ext.extend(Ext.data.MemoryProxy, Ext.data.DataProxy, { doRequest : function(action, rs, params, reader, callback, scope, arg) { params = params || {}; var result; try { result = reader.readRecords(this.data); }catch(e){ this.fireEvent("loadexception", this, null, arg, e); this.fireEvent('exception', this, 'response', action, arg, null, e); callback.call(scope, null, arg, false); return; } callback.call(scope, result, arg, true); } }); Ext.data.Types = new function(){ var st = Ext.data.SortTypes; Ext.apply(this, { stripRe: /[\$,%]/g, AUTO: { convert: function(v){ return v; }, sortType: st.none, type: 'auto' }, STRING: { convert: function(v){ return (v === undefined || v === null) ? '' : String(v); }, sortType: st.asUCString, type: 'string' }, INT: { convert: function(v){ return v !== undefined && v !== null && v !== '' ? parseInt(String(v).replace(Ext.data.Types.stripRe, ''), 10) : (this.useNull ? null : 0); }, sortType: st.none, type: 'int' }, FLOAT: { convert: function(v){ return v !== undefined && v !== null && v !== '' ? parseFloat(String(v).replace(Ext.data.Types.stripRe, ''), 10) : (this.useNull ? null : 0); }, sortType: st.none, type: 'float' }, BOOL: { convert: function(v){ return v === true || v === 'true' || v == 1; }, sortType: st.none, type: 'bool' }, DATE: { convert: function(v){ var df = this.dateFormat; if(!v){ return null; } if(Ext.isDate(v)){ return v; } if(df){ if(df == 'timestamp'){ return new Date(v*1000); } if(df == 'time'){ return new Date(parseInt(v, 10)); } return Date.parseDate(v, df); } var parsed = Date.parse(v); return parsed ? new Date(parsed) : null; }, sortType: st.asDate, type: 'date' } }); Ext.apply(this, { BOOLEAN: this.BOOL, INTEGER: this.INT, NUMBER: this.FLOAT }); }; Ext.data.JsonWriter = Ext.extend(Ext.data.DataWriter, { encode : true, encodeDelete: false, constructor : function(config){ Ext.data.JsonWriter.superclass.constructor.call(this, config); }, render : function(params, baseParams, data) { if (this.encode === true) { Ext.apply(params, baseParams); params[this.meta.root] = Ext.encode(data); } else { var jdata = Ext.apply({}, baseParams); jdata[this.meta.root] = data; params.jsonData = jdata; } }, createRecord : function(rec) { return this.toHash(rec); }, updateRecord : function(rec) { return this.toHash(rec); }, destroyRecord : function(rec){ if(this.encodeDelete){ var data = {}; data[this.meta.idProperty] = rec.id; return data; }else{ return rec.id; } } }); Ext.data.JsonReader = function(meta, recordType){ meta = meta || {}; Ext.applyIf(meta, { idProperty: 'id', successProperty: 'success', totalProperty: 'total' }); Ext.data.JsonReader.superclass.constructor.call(this, meta, recordType || meta.fields); }; Ext.extend(Ext.data.JsonReader, Ext.data.DataReader, { read : function(response){ var json = response.responseText; var o = Ext.decode(json); if(!o) { throw {message: 'JsonReader.read: Json object not found'}; } return this.readRecords(o); }, readResponse : function(action, response) { var o = (response.responseText !== undefined) ? Ext.decode(response.responseText) : response; if(!o) { throw new Ext.data.JsonReader.Error('response'); } var root = this.getRoot(o), success = this.getSuccess(o); if (success && action === Ext.data.Api.actions.create) { var def = Ext.isDefined(root); if (def && Ext.isEmpty(root)) { throw new Ext.data.JsonReader.Error('root-empty', this.meta.root); } else if (!def) { throw new Ext.data.JsonReader.Error('root-undefined-response', this.meta.root); } } var res = new Ext.data.Response({ action: action, success: success, data: (root) ? this.extractData(root, false) : [], message: this.getMessage(o), raw: o }); if (Ext.isEmpty(res.success)) { throw new Ext.data.JsonReader.Error('successProperty-response', this.meta.successProperty); } return res; }, readRecords : function(o){ this.jsonData = o; if(o.metaData){ this.onMetaChange(o.metaData); } var s = this.meta, Record = this.recordType, f = Record.prototype.fields, fi = f.items, fl = f.length, v; var root = this.getRoot(o), c = root.length, totalRecords = c, success = true; if(s.totalProperty){ v = parseInt(this.getTotal(o), 10); if(!isNaN(v)){ totalRecords = v; } } if(s.successProperty){ v = this.getSuccess(o); if(v === false || v === 'false'){ success = false; } } return { success : success, records : this.extractData(root, true), totalRecords : totalRecords }; }, buildExtractors : function() { if(this.ef){ return; } var s = this.meta, Record = this.recordType, f = Record.prototype.fields, fi = f.items, fl = f.length; if(s.totalProperty) { this.getTotal = this.createAccessor(s.totalProperty); } if(s.successProperty) { this.getSuccess = this.createAccessor(s.successProperty); } if (s.messageProperty) { this.getMessage = this.createAccessor(s.messageProperty); } this.getRoot = s.root ? this.createAccessor(s.root) : function(p){return p;}; if (s.id || s.idProperty) { var g = this.createAccessor(s.id || s.idProperty); this.getId = function(rec) { var r = g(rec); return (r === undefined || r === '') ? null : r; }; } else { this.getId = function(){return null;}; } var ef = []; for(var i = 0; i < fl; i++){ f = fi[i]; var map = (f.mapping !== undefined && f.mapping !== null) ? f.mapping : f.name; ef.push(this.createAccessor(map)); } this.ef = ef; }, simpleAccess : function(obj, subsc) { return obj[subsc]; }, createAccessor : function(){ var re = /[\[\.]/; return function(expr) { if(Ext.isEmpty(expr)){ return Ext.emptyFn; } if(Ext.isFunction(expr)){ return expr; } var i = String(expr).search(re); if(i >= 0){ return new Function('obj', 'return obj' + (i > 0 ? '.' : '') + expr); } return function(obj){ return obj[expr]; }; }; }(), extractValues : function(data, items, len) { var f, values = {}; for(var j = 0; j < len; j++){ f = items[j]; var v = this.ef[j](data); values[f.name] = f.convert((v !== undefined) ? v : f.defaultValue, data); } return values; } }); Ext.data.JsonReader.Error = Ext.extend(Ext.Error, { constructor : function(message, arg) { this.arg = arg; Ext.Error.call(this, message); }, name : 'Ext.data.JsonReader' }); Ext.apply(Ext.data.JsonReader.Error.prototype, { lang: { 'response': 'An error occurred while json-decoding your server response', 'successProperty-response': 'Could not locate your "successProperty" in your server response. Please review your JsonReader config to ensure the config-property "successProperty" matches the property in your server-response. See the JsonReader docs.', 'root-undefined-config': 'Your JsonReader was configured without a "root" property. Please review your JsonReader config and make sure to define the root property. See the JsonReader docs.', 'idProperty-undefined' : 'Your JsonReader was configured without an "idProperty" Please review your JsonReader configuration and ensure the "idProperty" is set (e.g.: "id"). See the JsonReader docs.', 'root-empty': 'Data was expected to be returned by the server in the "root" property of the response. Please review your JsonReader configuration to ensure the "root" property matches that returned in the server-response. See JsonReader docs.' } }); Ext.data.ArrayReader = Ext.extend(Ext.data.JsonReader, { readRecords : function(o){ this.arrayData = o; var s = this.meta, sid = s ? Ext.num(s.idIndex, s.id) : null, recordType = this.recordType, fields = recordType.prototype.fields, records = [], success = true, v; var root = this.getRoot(o); for(var i = 0, len = root.length; i < len; i++) { var n = root[i], values = {}, id = ((sid || sid === 0) && n[sid] !== undefined && n[sid] !== "" ? n[sid] : null); for(var j = 0, jlen = fields.length; j < jlen; j++) { var f = fields.items[j], k = f.mapping !== undefined && f.mapping !== null ? f.mapping : j; v = n[k] !== undefined ? n[k] : f.defaultValue; v = f.convert(v, n); values[f.name] = v; } var record = new recordType(values, id); record.json = n; records[records.length] = record; } var totalRecords = records.length; if(s.totalProperty) { v = parseInt(this.getTotal(o), 10); if(!isNaN(v)) { totalRecords = v; } } if(s.successProperty){ v = this.getSuccess(o); if(v === false || v === 'false'){ success = false; } } return { success : success, records : records, totalRecords : totalRecords }; } }); Ext.data.ArrayStore = Ext.extend(Ext.data.Store, { constructor: function(config){ Ext.data.ArrayStore.superclass.constructor.call(this, Ext.apply(config, { reader: new Ext.data.ArrayReader(config) })); }, loadData : function(data, append){ if(this.expandData === true){ var r = []; for(var i = 0, len = data.length; i < len; i++){ r[r.length] = [data[i]]; } data = r; } Ext.data.ArrayStore.superclass.loadData.call(this, data, append); } }); Ext.reg('arraystore', Ext.data.ArrayStore); Ext.data.SimpleStore = Ext.data.ArrayStore; Ext.reg('simplestore', Ext.data.SimpleStore); Ext.data.JsonStore = Ext.extend(Ext.data.Store, { constructor: function(config){ Ext.data.JsonStore.superclass.constructor.call(this, Ext.apply(config, { reader: new Ext.data.JsonReader(config) })); } }); Ext.reg('jsonstore', Ext.data.JsonStore); Ext.data.XmlWriter = function(params) { Ext.data.XmlWriter.superclass.constructor.apply(this, arguments); this.tpl = (typeof(this.tpl) === 'string') ? new Ext.XTemplate(this.tpl).compile() : this.tpl.compile(); }; Ext.extend(Ext.data.XmlWriter, Ext.data.DataWriter, { documentRoot: 'xrequest', forceDocumentRoot: false, root: 'records', xmlVersion : '1.0', xmlEncoding: 'ISO-8859-15', tpl: '<\u003fxml version="{version}" encoding="{encoding}"\u003f><{documentRoot}><{name}>{value}<{root}><{parent.record}><{name}>{value}', render : function(params, baseParams, data) { baseParams = this.toArray(baseParams); params.xmlData = this.tpl.applyTemplate({ version: this.xmlVersion, encoding: this.xmlEncoding, documentRoot: (baseParams.length > 0 || this.forceDocumentRoot === true) ? this.documentRoot : false, record: this.meta.record, root: this.root, baseParams: baseParams, records: (Ext.isArray(data[0])) ? data : [data] }); }, createRecord : function(rec) { return this.toArray(this.toHash(rec)); }, updateRecord : function(rec) { return this.toArray(this.toHash(rec)); }, destroyRecord : function(rec) { var data = {}; data[this.meta.idProperty] = rec.id; return this.toArray(data); } }); Ext.data.XmlReader = function(meta, recordType){ meta = meta || {}; Ext.applyIf(meta, { idProperty: meta.idProperty || meta.idPath || meta.id, successProperty: meta.successProperty || meta.success }); Ext.data.XmlReader.superclass.constructor.call(this, meta, recordType || meta.fields); }; Ext.extend(Ext.data.XmlReader, Ext.data.DataReader, { read : function(response){ var doc = response.responseXML; if(!doc) { throw {message: "XmlReader.read: XML Document not available"}; } return this.readRecords(doc); }, readRecords : function(doc){ this.xmlData = doc; var root = doc.documentElement || doc, q = Ext.DomQuery, totalRecords = 0, success = true; if(this.meta.totalProperty){ totalRecords = this.getTotal(root, 0); } if(this.meta.successProperty){ success = this.getSuccess(root); } var records = this.extractData(q.select(this.meta.record, root), true); return { success : success, records : records, totalRecords : totalRecords || records.length }; }, readResponse : function(action, response) { var q = Ext.DomQuery, doc = response.responseXML, root = doc.documentElement || doc; var res = new Ext.data.Response({ action: action, success : this.getSuccess(root), message: this.getMessage(root), data: this.extractData(q.select(this.meta.record, root) || q.select(this.meta.root, root), false), raw: doc }); if (Ext.isEmpty(res.success)) { throw new Ext.data.DataReader.Error('successProperty-response', this.meta.successProperty); } if (action === Ext.data.Api.actions.create) { var def = Ext.isDefined(res.data); if (def && Ext.isEmpty(res.data)) { throw new Ext.data.JsonReader.Error('root-empty', this.meta.root); } else if (!def) { throw new Ext.data.JsonReader.Error('root-undefined-response', this.meta.root); } } return res; }, getSuccess : function() { return true; }, buildExtractors : function() { if(this.ef){ return; } var s = this.meta, Record = this.recordType, f = Record.prototype.fields, fi = f.items, fl = f.length; if(s.totalProperty) { this.getTotal = this.createAccessor(s.totalProperty); } if(s.successProperty) { this.getSuccess = this.createAccessor(s.successProperty); } if (s.messageProperty) { this.getMessage = this.createAccessor(s.messageProperty); } this.getRoot = function(res) { return (!Ext.isEmpty(res[this.meta.record])) ? res[this.meta.record] : res[this.meta.root]; }; if (s.idPath || s.idProperty) { var g = this.createAccessor(s.idPath || s.idProperty); this.getId = function(rec) { var id = g(rec) || rec.id; return (id === undefined || id === '') ? null : id; }; } else { this.getId = function(){return null;}; } var ef = []; for(var i = 0; i < fl; i++){ f = fi[i]; var map = (f.mapping !== undefined && f.mapping !== null) ? f.mapping : f.name; ef.push(this.createAccessor(map)); } this.ef = ef; }, createAccessor : function(){ var q = Ext.DomQuery; return function(key) { if (Ext.isFunction(key)) { return key; } switch(key) { case this.meta.totalProperty: return function(root, def){ return q.selectNumber(key, root, def); }; break; case this.meta.successProperty: return function(root, def) { var sv = q.selectValue(key, root, true); var success = sv !== false && sv !== 'false'; return success; }; break; default: return function(root, def) { return q.selectValue(key, root, def); }; break; } }; }(), extractValues : function(data, items, len) { var f, values = {}; for(var j = 0; j < len; j++){ f = items[j]; var v = this.ef[j](data); values[f.name] = f.convert((v !== undefined) ? v : f.defaultValue, data); } return values; } }); Ext.data.XmlStore = Ext.extend(Ext.data.Store, { constructor: function(config){ Ext.data.XmlStore.superclass.constructor.call(this, Ext.apply(config, { reader: new Ext.data.XmlReader(config) })); } }); Ext.reg('xmlstore', Ext.data.XmlStore); Ext.data.GroupingStore = Ext.extend(Ext.data.Store, { constructor: function(config) { config = config || {}; this.hasMultiSort = true; this.multiSortInfo = this.multiSortInfo || {sorters: []}; var sorters = this.multiSortInfo.sorters, groupField = config.groupField || this.groupField, sortInfo = config.sortInfo || this.sortInfo, groupDir = config.groupDir || this.groupDir; if(groupField){ sorters.push({ field : groupField, direction: groupDir }); } if (sortInfo) { sorters.push(sortInfo); } Ext.data.GroupingStore.superclass.constructor.call(this, config); this.addEvents( 'groupchange' ); this.applyGroupField(); }, remoteGroup : false, groupOnSort:false, groupDir : 'ASC', clearGrouping : function(){ this.groupField = false; if(this.remoteGroup){ if(this.baseParams){ delete this.baseParams.groupBy; delete this.baseParams.groupDir; } var lo = this.lastOptions; if(lo && lo.params){ delete lo.params.groupBy; delete lo.params.groupDir; } this.reload(); }else{ this.sort(); this.fireEvent('datachanged', this); } }, groupBy : function(field, forceRegroup, direction) { direction = direction ? (String(direction).toUpperCase() == 'DESC' ? 'DESC' : 'ASC') : this.groupDir; if (this.groupField == field && this.groupDir == direction && !forceRegroup) { return; } var sorters = this.multiSortInfo.sorters; if (sorters.length > 0 && sorters[0].field == this.groupField) { sorters.shift(); } this.groupField = field; this.groupDir = direction; this.applyGroupField(); var fireGroupEvent = function() { this.fireEvent('groupchange', this, this.getGroupState()); }; if (this.groupOnSort) { this.sort(field, direction); fireGroupEvent.call(this); return; } if (this.remoteGroup) { this.on('load', fireGroupEvent, this, {single: true}); this.reload(); } else { this.sort(sorters); fireGroupEvent.call(this); } }, sort : function(fieldName, dir) { if (this.remoteSort) { return Ext.data.GroupingStore.superclass.sort.call(this, fieldName, dir); } var sorters = []; if (Ext.isArray(arguments[0])) { sorters = arguments[0]; } else if (fieldName == undefined) { sorters = this.sortInfo ? [this.sortInfo] : []; } else { var field = this.fields.get(fieldName); if (!field) return false; var name = field.name, sortInfo = this.sortInfo || null, sortToggle = this.sortToggle ? this.sortToggle[name] : null; if (!dir) { if (sortInfo && sortInfo.field == name) { dir = (this.sortToggle[name] || 'ASC').toggle('ASC', 'DESC'); } else { dir = field.sortDir; } } this.sortToggle[name] = dir; this.sortInfo = {field: name, direction: dir}; sorters = [this.sortInfo]; } if (this.groupField) { sorters.unshift({direction: this.groupDir, field: this.groupField}); } return this.multiSort.call(this, sorters, dir); }, applyGroupField: function(){ if (this.remoteGroup) { if(!this.baseParams){ this.baseParams = {}; } Ext.apply(this.baseParams, { groupBy : this.groupField, groupDir: this.groupDir }); var lo = this.lastOptions; if (lo && lo.params) { lo.params.groupDir = this.groupDir; delete lo.params.groupBy; } } }, applyGrouping : function(alwaysFireChange){ if(this.groupField !== false){ this.groupBy(this.groupField, true, this.groupDir); return true; }else{ if(alwaysFireChange === true){ this.fireEvent('datachanged', this); } return false; } }, getGroupState : function(){ return this.groupOnSort && this.groupField !== false ? (this.sortInfo ? this.sortInfo.field : undefined) : this.groupField; } }); Ext.reg('groupingstore', Ext.data.GroupingStore); Ext.data.DirectProxy = function(config){ Ext.apply(this, config); if(typeof this.paramOrder == 'string'){ this.paramOrder = this.paramOrder.split(/[\s,|]/); } Ext.data.DirectProxy.superclass.constructor.call(this, config); }; Ext.extend(Ext.data.DirectProxy, Ext.data.DataProxy, { paramOrder: undefined, paramsAsHash: true, directFn : undefined, doRequest : function(action, rs, params, reader, callback, scope, options) { var args = [], directFn = this.api[action] || this.directFn; switch (action) { case Ext.data.Api.actions.create: args.push(params.jsonData); break; case Ext.data.Api.actions.read: if(directFn.directCfg.method.len > 0){ if(this.paramOrder){ for(var i = 0, len = this.paramOrder.length; i < len; i++){ args.push(params[this.paramOrder[i]]); } }else if(this.paramsAsHash){ args.push(params); } } break; case Ext.data.Api.actions.update: args.push(params.jsonData); break; case Ext.data.Api.actions.destroy: args.push(params.jsonData); break; } var trans = { params : params || {}, request: { callback : callback, scope : scope, arg : options }, reader: reader }; args.push(this.createCallback(action, rs, trans), this); directFn.apply(window, args); }, createCallback : function(action, rs, trans) { var me = this; return function(result, res) { if (!res.status) { if (action === Ext.data.Api.actions.read) { me.fireEvent("loadexception", me, trans, res, null); } me.fireEvent('exception', me, 'remote', action, trans, res, null); trans.request.callback.call(trans.request.scope, null, trans.request.arg, false); return; } if (action === Ext.data.Api.actions.read) { me.onRead(action, trans, result, res); } else { me.onWrite(action, trans, result, res, rs); } }; }, onRead : function(action, trans, result, res) { var records; try { records = trans.reader.readRecords(result); } catch (ex) { this.fireEvent("loadexception", this, trans, res, ex); this.fireEvent('exception', this, 'response', action, trans, res, ex); trans.request.callback.call(trans.request.scope, null, trans.request.arg, false); return; } this.fireEvent("load", this, res, trans.request.arg); trans.request.callback.call(trans.request.scope, records, trans.request.arg, true); }, onWrite : function(action, trans, result, res, rs) { var data = trans.reader.extractData(trans.reader.getRoot(result), false); var success = trans.reader.getSuccess(result); success = (success !== false); if (success){ this.fireEvent("write", this, action, data, res, rs, trans.request.arg); }else{ this.fireEvent('exception', this, 'remote', action, trans, result, rs); } trans.request.callback.call(trans.request.scope, data, res, success); } }); Ext.data.DirectStore = Ext.extend(Ext.data.Store, { constructor : function(config){ var c = Ext.apply({}, { batchTransactions: false }, config); Ext.data.DirectStore.superclass.constructor.call(this, Ext.apply(c, { proxy: Ext.isDefined(c.proxy) ? c.proxy : new Ext.data.DirectProxy(Ext.copyTo({}, c, 'paramOrder,paramsAsHash,directFn,api')), reader: (!Ext.isDefined(c.reader) && c.fields) ? new Ext.data.JsonReader(Ext.copyTo({}, c, 'totalProperty,root,idProperty'), c.fields) : c.reader })); } }); Ext.reg('directstore', Ext.data.DirectStore); Ext.Direct = Ext.extend(Ext.util.Observable, { exceptions: { TRANSPORT: 'xhr', PARSE: 'parse', LOGIN: 'login', SERVER: 'exception' }, constructor: function(){ this.addEvents( 'event', 'exception' ); this.transactions = {}; this.providers = {}; }, addProvider : function(provider){ var a = arguments; if(a.length > 1){ for(var i = 0, len = a.length; i < len; i++){ this.addProvider(a[i]); } return; } if(!provider.events){ provider = new Ext.Direct.PROVIDERS[provider.type](provider); } provider.id = provider.id || Ext.id(); this.providers[provider.id] = provider; provider.on('data', this.onProviderData, this); provider.on('exception', this.onProviderException, this); if(!provider.isConnected()){ provider.connect(); } return provider; }, getProvider : function(id){ return this.providers[id]; }, removeProvider : function(id){ var provider = id.id ? id : this.providers[id]; provider.un('data', this.onProviderData, this); provider.un('exception', this.onProviderException, this); delete this.providers[provider.id]; return provider; }, addTransaction: function(t){ this.transactions[t.tid] = t; return t; }, removeTransaction: function(t){ delete this.transactions[t.tid || t]; return t; }, getTransaction: function(tid){ return this.transactions[tid.tid || tid]; }, onProviderData : function(provider, e){ if(Ext.isArray(e)){ for(var i = 0, len = e.length; i < len; i++){ this.onProviderData(provider, e[i]); } return; } if(e.name && e.name != 'event' && e.name != 'exception'){ this.fireEvent(e.name, e); }else if(e.type == 'exception'){ this.fireEvent('exception', e); } this.fireEvent('event', e, provider); }, createEvent : function(response, extraProps){ return new Ext.Direct.eventTypes[response.type](Ext.apply(response, extraProps)); } }); Ext.Direct = new Ext.Direct(); Ext.Direct.TID = 1; Ext.Direct.PROVIDERS = {}; Ext.Direct.Transaction = function(config){ Ext.apply(this, config); this.tid = ++Ext.Direct.TID; this.retryCount = 0; }; Ext.Direct.Transaction.prototype = { send: function(){ this.provider.queueTransaction(this); }, retry: function(){ this.retryCount++; this.send(); }, getProvider: function(){ return this.provider; } };Ext.Direct.Event = function(config){ Ext.apply(this, config); }; Ext.Direct.Event.prototype = { status: true, getData: function(){ return this.data; } }; Ext.Direct.RemotingEvent = Ext.extend(Ext.Direct.Event, { type: 'rpc', getTransaction: function(){ return this.transaction || Ext.Direct.getTransaction(this.tid); } }); Ext.Direct.ExceptionEvent = Ext.extend(Ext.Direct.RemotingEvent, { status: false, type: 'exception' }); Ext.Direct.eventTypes = { 'rpc': Ext.Direct.RemotingEvent, 'event': Ext.Direct.Event, 'exception': Ext.Direct.ExceptionEvent }; Ext.direct.Provider = Ext.extend(Ext.util.Observable, { priority: 1, constructor : function(config){ Ext.apply(this, config); this.addEvents( 'connect', 'disconnect', 'data', 'exception' ); Ext.direct.Provider.superclass.constructor.call(this, config); }, isConnected: function(){ return false; }, connect: Ext.emptyFn, disconnect: Ext.emptyFn }); Ext.direct.JsonProvider = Ext.extend(Ext.direct.Provider, { parseResponse: function(xhr){ if(!Ext.isEmpty(xhr.responseText)){ if(typeof xhr.responseText == 'object'){ return xhr.responseText; } return Ext.decode(xhr.responseText); } return null; }, getEvents: function(xhr){ var data = null; try{ data = this.parseResponse(xhr); }catch(e){ var event = new Ext.Direct.ExceptionEvent({ data: e, xhr: xhr, code: Ext.Direct.exceptions.PARSE, message: 'Error parsing json response: \n\n ' + data }); return [event]; } var events = []; if(Ext.isArray(data)){ for(var i = 0, len = data.length; i < len; i++){ events.push(Ext.Direct.createEvent(data[i])); } }else{ events.push(Ext.Direct.createEvent(data)); } return events; } }); Ext.direct.PollingProvider = Ext.extend(Ext.direct.JsonProvider, { priority: 3, interval: 3000, constructor : function(config){ Ext.direct.PollingProvider.superclass.constructor.call(this, config); this.addEvents( 'beforepoll', 'poll' ); }, isConnected: function(){ return !!this.pollTask; }, connect: function(){ if(this.url && !this.pollTask){ this.pollTask = Ext.TaskMgr.start({ run: function(){ if(this.fireEvent('beforepoll', this) !== false){ if(typeof this.url == 'function'){ this.url(this.baseParams); }else{ Ext.Ajax.request({ url: this.url, callback: this.onData, scope: this, params: this.baseParams }); } } }, interval: this.interval, scope: this }); this.fireEvent('connect', this); }else if(!this.url){ throw 'Error initializing PollingProvider, no url configured.'; } }, disconnect: function(){ if(this.pollTask){ Ext.TaskMgr.stop(this.pollTask); delete this.pollTask; this.fireEvent('disconnect', this); } }, onData: function(opt, success, xhr){ if(success){ var events = this.getEvents(xhr); for(var i = 0, len = events.length; i < len; i++){ var e = events[i]; this.fireEvent('data', this, e); } }else{ var e = new Ext.Direct.ExceptionEvent({ data: e, code: Ext.Direct.exceptions.TRANSPORT, message: 'Unable to connect to the server.', xhr: xhr }); this.fireEvent('data', this, e); } } }); Ext.Direct.PROVIDERS['polling'] = Ext.direct.PollingProvider; Ext.direct.RemotingProvider = Ext.extend(Ext.direct.JsonProvider, { enableBuffer: 10, maxRetries: 1, timeout: undefined, constructor : function(config){ Ext.direct.RemotingProvider.superclass.constructor.call(this, config); this.addEvents( 'beforecall', 'call' ); this.namespace = (Ext.isString(this.namespace)) ? Ext.ns(this.namespace) : this.namespace || window; this.transactions = {}; this.callBuffer = []; }, initAPI : function(){ var o = this.actions; for(var c in o){ var cls = this.namespace[c] || (this.namespace[c] = {}), ms = o[c]; for(var i = 0, len = ms.length; i < len; i++){ var m = ms[i]; cls[m.name] = this.createMethod(c, m); } } }, isConnected: function(){ return !!this.connected; }, connect: function(){ if(this.url){ this.initAPI(); this.connected = true; this.fireEvent('connect', this); }else if(!this.url){ throw 'Error initializing RemotingProvider, no url configured.'; } }, disconnect: function(){ if(this.connected){ this.connected = false; this.fireEvent('disconnect', this); } }, onData: function(opt, success, xhr){ if(success){ var events = this.getEvents(xhr); for(var i = 0, len = events.length; i < len; i++){ var e = events[i], t = this.getTransaction(e); this.fireEvent('data', this, e); if(t){ this.doCallback(t, e, true); Ext.Direct.removeTransaction(t); } } }else{ var ts = [].concat(opt.ts); for(var i = 0, len = ts.length; i < len; i++){ var t = this.getTransaction(ts[i]); if(t && t.retryCount < this.maxRetries){ t.retry(); }else{ var e = new Ext.Direct.ExceptionEvent({ data: e, transaction: t, code: Ext.Direct.exceptions.TRANSPORT, message: 'Unable to connect to the server.', xhr: xhr }); this.fireEvent('data', this, e); if(t){ this.doCallback(t, e, false); Ext.Direct.removeTransaction(t); } } } } }, getCallData: function(t){ return { action: t.action, method: t.method, data: t.data, type: 'rpc', tid: t.tid }; }, doSend : function(data){ var o = { url: this.url, callback: this.onData, scope: this, ts: data, timeout: this.timeout }, callData; if(Ext.isArray(data)){ callData = []; for(var i = 0, len = data.length; i < len; i++){ callData.push(this.getCallData(data[i])); } }else{ callData = this.getCallData(data); } if(this.enableUrlEncode){ var params = {}; params[Ext.isString(this.enableUrlEncode) ? this.enableUrlEncode : 'data'] = Ext.encode(callData); o.params = params; }else{ o.jsonData = callData; } Ext.Ajax.request(o); }, combineAndSend : function(){ var len = this.callBuffer.length; if(len > 0){ this.doSend(len == 1 ? this.callBuffer[0] : this.callBuffer); this.callBuffer = []; } }, queueTransaction: function(t){ if(t.form){ this.processForm(t); return; } this.callBuffer.push(t); if(this.enableBuffer){ if(!this.callTask){ this.callTask = new Ext.util.DelayedTask(this.combineAndSend, this); } this.callTask.delay(Ext.isNumber(this.enableBuffer) ? this.enableBuffer : 10); }else{ this.combineAndSend(); } }, doCall : function(c, m, args){ var data = null, hs = args[m.len], scope = args[m.len+1]; if(m.len !== 0){ data = args.slice(0, m.len); } var t = new Ext.Direct.Transaction({ provider: this, args: args, action: c, method: m.name, data: data, cb: scope && Ext.isFunction(hs) ? hs.createDelegate(scope) : hs }); if(this.fireEvent('beforecall', this, t, m) !== false){ Ext.Direct.addTransaction(t); this.queueTransaction(t); this.fireEvent('call', this, t, m); } }, doForm : function(c, m, form, callback, scope){ var t = new Ext.Direct.Transaction({ provider: this, action: c, method: m.name, args:[form, callback, scope], cb: scope && Ext.isFunction(callback) ? callback.createDelegate(scope) : callback, isForm: true }); if(this.fireEvent('beforecall', this, t, m) !== false){ Ext.Direct.addTransaction(t); var isUpload = String(form.getAttribute("enctype")).toLowerCase() == 'multipart/form-data', params = { extTID: t.tid, extAction: c, extMethod: m.name, extType: 'rpc', extUpload: String(isUpload) }; Ext.apply(t, { form: Ext.getDom(form), isUpload: isUpload, params: callback && Ext.isObject(callback.params) ? Ext.apply(params, callback.params) : params }); this.fireEvent('call', this, t, m); this.processForm(t); } }, processForm: function(t){ Ext.Ajax.request({ url: this.url, params: t.params, callback: this.onData, scope: this, form: t.form, isUpload: t.isUpload, ts: t }); }, createMethod : function(c, m){ var f; if(!m.formHandler){ f = function(){ this.doCall(c, m, Array.prototype.slice.call(arguments, 0)); }.createDelegate(this); }else{ f = function(form, callback, scope){ this.doForm(c, m, form, callback, scope); }.createDelegate(this); } f.directCfg = { action: c, method: m }; return f; }, getTransaction: function(opt){ return opt && opt.tid ? Ext.Direct.getTransaction(opt.tid) : null; }, doCallback: function(t, e){ var fn = e.status ? 'success' : 'failure'; if(t && t.cb){ var hs = t.cb, result = Ext.isDefined(e.result) ? e.result : e.data; if(Ext.isFunction(hs)){ hs(result, e); } else{ Ext.callback(hs[fn], hs.scope, [result, e]); Ext.callback(hs.callback, hs.scope, [result, e]); } } } }); Ext.Direct.PROVIDERS['remoting'] = Ext.direct.RemotingProvider; Ext.Resizable = Ext.extend(Ext.util.Observable, { constructor: function(el, config){ this.el = Ext.get(el); if(config && config.wrap){ config.resizeChild = this.el; this.el = this.el.wrap(typeof config.wrap == 'object' ? config.wrap : {cls:'xresizable-wrap'}); this.el.id = this.el.dom.id = config.resizeChild.id + '-rzwrap'; this.el.setStyle('overflow', 'hidden'); this.el.setPositioning(config.resizeChild.getPositioning()); config.resizeChild.clearPositioning(); if(!config.width || !config.height){ var csize = config.resizeChild.getSize(); this.el.setSize(csize.width, csize.height); } if(config.pinned && !config.adjustments){ config.adjustments = 'auto'; } } this.proxy = this.el.createProxy({tag: 'div', cls: 'x-resizable-proxy', id: this.el.id + '-rzproxy'}, Ext.getBody()); this.proxy.unselectable(); this.proxy.enableDisplayMode('block'); Ext.apply(this, config); if(this.pinned){ this.disableTrackOver = true; this.el.addClass('x-resizable-pinned'); } var position = this.el.getStyle('position'); if(position != 'absolute' && position != 'fixed'){ this.el.setStyle('position', 'relative'); } if(!this.handles){ this.handles = 's,e,se'; if(this.multiDirectional){ this.handles += ',n,w'; } } if(this.handles == 'all'){ this.handles = 'n s e w ne nw se sw'; } var hs = this.handles.split(/\s*?[,;]\s*?| /); var ps = Ext.Resizable.positions; for(var i = 0, len = hs.length; i < len; i++){ if(hs[i] && ps[hs[i]]){ var pos = ps[hs[i]]; this[pos] = new Ext.Resizable.Handle(this, pos, this.disableTrackOver, this.transparent, this.handleCls); } } this.corner = this.southeast; if(this.handles.indexOf('n') != -1 || this.handles.indexOf('w') != -1){ this.updateBox = true; } this.activeHandle = null; if(this.resizeChild){ if(typeof this.resizeChild == 'boolean'){ this.resizeChild = Ext.get(this.el.dom.firstChild, true); }else{ this.resizeChild = Ext.get(this.resizeChild, true); } } if(this.adjustments == 'auto'){ var rc = this.resizeChild; var hw = this.west, he = this.east, hn = this.north, hs = this.south; if(rc && (hw || hn)){ rc.position('relative'); rc.setLeft(hw ? hw.el.getWidth() : 0); rc.setTop(hn ? hn.el.getHeight() : 0); } this.adjustments = [ (he ? -he.el.getWidth() : 0) + (hw ? -hw.el.getWidth() : 0), (hn ? -hn.el.getHeight() : 0) + (hs ? -hs.el.getHeight() : 0) -1 ]; } if(this.draggable){ this.dd = this.dynamic ? this.el.initDD(null) : this.el.initDDProxy(null, {dragElId: this.proxy.id}); this.dd.setHandleElId(this.resizeChild ? this.resizeChild.id : this.el.id); if(this.constrainTo){ this.dd.constrainTo(this.constrainTo); } } this.addEvents( 'beforeresize', 'resize' ); if(this.width !== null && this.height !== null){ this.resizeTo(this.width, this.height); }else{ this.updateChildSize(); } if(Ext.isIE){ this.el.dom.style.zoom = 1; } Ext.Resizable.superclass.constructor.call(this); }, adjustments : [0, 0], animate : false, disableTrackOver : false, draggable: false, duration : 0.35, dynamic : false, easing : 'easeOutStrong', enabled : true, handles : false, multiDirectional : false, height : null, width : null, heightIncrement : 0, widthIncrement : 0, minHeight : 5, minWidth : 5, maxHeight : 10000, maxWidth : 10000, minX: 0, minY: 0, pinned : false, preserveRatio : false, resizeChild : false, transparent: false, resizeTo : function(width, height){ this.el.setSize(width, height); this.updateChildSize(); this.fireEvent('resize', this, width, height, null); }, startSizing : function(e, handle){ this.fireEvent('beforeresize', this, e); if(this.enabled){ if(!this.overlay){ this.overlay = this.el.createProxy({tag: 'div', cls: 'x-resizable-overlay', html: ' '}, Ext.getBody()); this.overlay.unselectable(); this.overlay.enableDisplayMode('block'); this.overlay.on({ scope: this, mousemove: this.onMouseMove, mouseup: this.onMouseUp }); } this.overlay.setStyle('cursor', handle.el.getStyle('cursor')); this.resizing = true; this.startBox = this.el.getBox(); this.startPoint = e.getXY(); this.offsets = [(this.startBox.x + this.startBox.width) - this.startPoint[0], (this.startBox.y + this.startBox.height) - this.startPoint[1]]; this.overlay.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true)); this.overlay.show(); if(this.constrainTo) { var ct = Ext.get(this.constrainTo); this.resizeRegion = ct.getRegion().adjust( ct.getFrameWidth('t'), ct.getFrameWidth('l'), -ct.getFrameWidth('b'), -ct.getFrameWidth('r') ); } this.proxy.setStyle('visibility', 'hidden'); this.proxy.show(); this.proxy.setBox(this.startBox); if(!this.dynamic){ this.proxy.setStyle('visibility', 'visible'); } } }, onMouseDown : function(handle, e){ if(this.enabled){ e.stopEvent(); this.activeHandle = handle; this.startSizing(e, handle); } }, onMouseUp : function(e){ this.activeHandle = null; var size = this.resizeElement(); this.resizing = false; this.handleOut(); this.overlay.hide(); this.proxy.hide(); this.fireEvent('resize', this, size.width, size.height, e); }, updateChildSize : function(){ if(this.resizeChild){ var el = this.el; var child = this.resizeChild; var adj = this.adjustments; if(el.dom.offsetWidth){ var b = el.getSize(true); child.setSize(b.width+adj[0], b.height+adj[1]); } if(Ext.isIE9m){ setTimeout(function(){ if(el.dom.offsetWidth){ var b = el.getSize(true); child.setSize(b.width+adj[0], b.height+adj[1]); } }, 10); } } }, snap : function(value, inc, min){ if(!inc || !value){ return value; } var newValue = value; var m = value % inc; if(m > 0){ if(m > (inc/2)){ newValue = value + (inc-m); }else{ newValue = value - m; } } return Math.max(min, newValue); }, resizeElement : function(){ var box = this.proxy.getBox(); if(this.updateBox){ this.el.setBox(box, false, this.animate, this.duration, null, this.easing); }else{ this.el.setSize(box.width, box.height, this.animate, this.duration, null, this.easing); } this.updateChildSize(); if(!this.dynamic){ this.proxy.hide(); } if(this.draggable && this.constrainTo){ this.dd.resetConstraints(); this.dd.constrainTo(this.constrainTo); } return box; }, constrain : function(v, diff, m, mx){ if(v - diff < m){ diff = v - m; }else if(v - diff > mx){ diff = v - mx; } return diff; }, onMouseMove : function(e){ if(this.enabled && this.activeHandle){ try{ if(this.resizeRegion && !this.resizeRegion.contains(e.getPoint())) { return; } var curSize = this.curSize || this.startBox, x = this.startBox.x, y = this.startBox.y, ox = x, oy = y, w = curSize.width, h = curSize.height, ow = w, oh = h, mw = this.minWidth, mh = this.minHeight, mxw = this.maxWidth, mxh = this.maxHeight, wi = this.widthIncrement, hi = this.heightIncrement, eventXY = e.getXY(), diffX = -(this.startPoint[0] - Math.max(this.minX, eventXY[0])), diffY = -(this.startPoint[1] - Math.max(this.minY, eventXY[1])), pos = this.activeHandle.position, tw, th; switch(pos){ case 'east': w += diffX; w = Math.min(Math.max(mw, w), mxw); break; case 'south': h += diffY; h = Math.min(Math.max(mh, h), mxh); break; case 'southeast': w += diffX; h += diffY; w = Math.min(Math.max(mw, w), mxw); h = Math.min(Math.max(mh, h), mxh); break; case 'north': diffY = this.constrain(h, diffY, mh, mxh); y += diffY; h -= diffY; break; case 'west': diffX = this.constrain(w, diffX, mw, mxw); x += diffX; w -= diffX; break; case 'northeast': w += diffX; w = Math.min(Math.max(mw, w), mxw); diffY = this.constrain(h, diffY, mh, mxh); y += diffY; h -= diffY; break; case 'northwest': diffX = this.constrain(w, diffX, mw, mxw); diffY = this.constrain(h, diffY, mh, mxh); y += diffY; h -= diffY; x += diffX; w -= diffX; break; case 'southwest': diffX = this.constrain(w, diffX, mw, mxw); h += diffY; h = Math.min(Math.max(mh, h), mxh); x += diffX; w -= diffX; break; } var sw = this.snap(w, wi, mw); var sh = this.snap(h, hi, mh); if(sw != w || sh != h){ switch(pos){ case 'northeast': y -= sh - h; break; case 'north': y -= sh - h; break; case 'southwest': x -= sw - w; break; case 'west': x -= sw - w; break; case 'northwest': x -= sw - w; y -= sh - h; break; } w = sw; h = sh; } if(this.preserveRatio){ switch(pos){ case 'southeast': case 'east': h = oh * (w/ow); h = Math.min(Math.max(mh, h), mxh); w = ow * (h/oh); break; case 'south': w = ow * (h/oh); w = Math.min(Math.max(mw, w), mxw); h = oh * (w/ow); break; case 'northeast': w = ow * (h/oh); w = Math.min(Math.max(mw, w), mxw); h = oh * (w/ow); break; case 'north': tw = w; w = ow * (h/oh); w = Math.min(Math.max(mw, w), mxw); h = oh * (w/ow); x += (tw - w) / 2; break; case 'southwest': h = oh * (w/ow); h = Math.min(Math.max(mh, h), mxh); tw = w; w = ow * (h/oh); x += tw - w; break; case 'west': th = h; h = oh * (w/ow); h = Math.min(Math.max(mh, h), mxh); y += (th - h) / 2; tw = w; w = ow * (h/oh); x += tw - w; break; case 'northwest': tw = w; th = h; h = oh * (w/ow); h = Math.min(Math.max(mh, h), mxh); w = ow * (h/oh); y += th - h; x += tw - w; break; } } this.proxy.setBounds(x, y, w, h); if(this.dynamic){ this.resizeElement(); } }catch(ex){} } }, handleOver : function(){ if(this.enabled){ this.el.addClass('x-resizable-over'); } }, handleOut : function(){ if(!this.resizing){ this.el.removeClass('x-resizable-over'); } }, getEl : function(){ return this.el; }, getResizeChild : function(){ return this.resizeChild; }, destroy : function(removeEl){ Ext.destroy(this.dd, this.overlay, this.proxy); this.overlay = null; this.proxy = null; var ps = Ext.Resizable.positions; for(var k in ps){ if(typeof ps[k] != 'function' && this[ps[k]]){ this[ps[k]].destroy(); } } if(removeEl){ this.el.update(''); Ext.destroy(this.el); this.el = null; } this.purgeListeners(); }, syncHandleHeight : function(){ var h = this.el.getHeight(true); if(this.west){ this.west.el.setHeight(h); } if(this.east){ this.east.el.setHeight(h); } } }); Ext.Resizable.positions = { n: 'north', s: 'south', e: 'east', w: 'west', se: 'southeast', sw: 'southwest', nw: 'northwest', ne: 'northeast' }; Ext.Resizable.Handle = Ext.extend(Object, { constructor : function(rz, pos, disableTrackOver, transparent, cls){ if(!this.tpl){ var tpl = Ext.DomHelper.createTemplate( {tag: 'div', cls: 'x-resizable-handle x-resizable-handle-{0}'} ); tpl.compile(); Ext.Resizable.Handle.prototype.tpl = tpl; } this.position = pos; this.rz = rz; this.el = this.tpl.append(rz.el.dom, [this.position], true); this.el.unselectable(); if(transparent){ this.el.setOpacity(0); } if(!Ext.isEmpty(cls)){ this.el.addClass(cls); } this.el.on('mousedown', this.onMouseDown, this); if(!disableTrackOver){ this.el.on({ scope: this, mouseover: this.onMouseOver, mouseout: this.onMouseOut }); } }, afterResize : function(rz){ }, onMouseDown : function(e){ this.rz.onMouseDown(this, e); }, onMouseOver : function(e){ this.rz.handleOver(this, e); }, onMouseOut : function(e){ this.rz.handleOut(this, e); }, destroy : function(){ Ext.destroy(this.el); this.el = null; } }); Ext.Window = Ext.extend(Ext.Panel, { baseCls : 'x-window', resizable : true, draggable : true, closable : true, closeAction : 'close', constrain : false, constrainHeader : false, plain : false, minimizable : false, maximizable : false, minHeight : 100, minWidth : 200, expandOnShow : true, showAnimDuration: 0.25, hideAnimDuration: 0.25, collapsible : false, initHidden : undefined, hidden : true, elements : 'header,body', frame : true, floating : true, initComponent : function(){ this.initTools(); Ext.Window.superclass.initComponent.call(this); this.addEvents( 'resize', 'maximize', 'minimize', 'restore' ); if(Ext.isDefined(this.initHidden)){ this.hidden = this.initHidden; } if(this.hidden === false){ this.hidden = true; this.show(); } }, getState : function(){ return Ext.apply(Ext.Window.superclass.getState.call(this) || {}, this.getBox(true)); }, onRender : function(ct, position){ Ext.Window.superclass.onRender.call(this, ct, position); if(this.plain){ this.el.addClass('x-window-plain'); } this.focusEl = this.el.createChild({ tag: 'a', href:'#', cls:'x-dlg-focus', tabIndex:'-1', html: ' '}); this.focusEl.swallowEvent('click', true); this.proxy = this.el.createProxy('x-window-proxy'); this.proxy.enableDisplayMode('block'); if(this.modal){ this.mask = this.container.createChild({cls:'ext-el-mask'}, this.el.dom); this.mask.enableDisplayMode('block'); this.mask.hide(); this.mon(this.mask, 'click', this.focus, this); } if(this.maximizable){ this.mon(this.header, 'dblclick', this.toggleMaximize, this); } }, initEvents : function(){ Ext.Window.superclass.initEvents.call(this); if(this.animateTarget){ this.setAnimateTarget(this.animateTarget); } if(this.resizable){ this.resizer = new Ext.Resizable(this.el, { minWidth: this.minWidth, minHeight:this.minHeight, handles: this.resizeHandles || 'all', pinned: true, resizeElement : this.resizerAction, handleCls: 'x-window-handle' }); this.resizer.window = this; this.mon(this.resizer, 'beforeresize', this.beforeResize, this); } if(this.draggable){ this.header.addClass('x-window-draggable'); } this.mon(this.el, 'mousedown', this.toFront, this); this.manager = this.manager || Ext.WindowMgr; this.manager.register(this); if(this.maximized){ this.maximized = false; this.maximize(); } if(this.closable){ var km = this.getKeyMap(); km.on(27, this.onEsc, this); km.disable(); } }, initDraggable : function(){ this.dd = new Ext.Window.DD(this); }, onEsc : function(k, e){ if (this.activeGhost) { this.unghost(); } e.stopEvent(); this[this.closeAction](); }, beforeDestroy : function(){ if(this.rendered){ this.hide(); this.clearAnchor(); Ext.destroy( this.focusEl, this.resizer, this.dd, this.proxy, this.mask ); } Ext.Window.superclass.beforeDestroy.call(this); }, onDestroy : function(){ if(this.manager){ this.manager.unregister(this); } Ext.Window.superclass.onDestroy.call(this); }, initTools : function(){ if(this.minimizable){ this.addTool({ id: 'minimize', handler: this.minimize.createDelegate(this, []) }); } if(this.maximizable){ this.addTool({ id: 'maximize', handler: this.maximize.createDelegate(this, []) }); this.addTool({ id: 'restore', handler: this.restore.createDelegate(this, []), hidden:true }); } if(this.closable){ this.addTool({ id: 'close', handler: this[this.closeAction].createDelegate(this, []) }); } }, resizerAction : function(){ var box = this.proxy.getBox(); this.proxy.hide(); this.window.handleResize(box); return box; }, beforeResize : function(){ this.resizer.minHeight = Math.max(this.minHeight, this.getFrameHeight() + 40); this.resizer.minWidth = Math.max(this.minWidth, this.getFrameWidth() + 40); this.resizeBox = this.el.getBox(); }, updateHandles : function(){ if(Ext.isIE9m && this.resizer){ this.resizer.syncHandleHeight(); this.el.repaint(); } }, handleResize : function(box){ var rz = this.resizeBox; if(rz.x != box.x || rz.y != box.y){ this.updateBox(box); }else{ this.setSize(box); if (Ext.isIE6 && Ext.isStrict) { this.doLayout(); } } this.focus(); this.updateHandles(); this.saveState(); }, focus : function(){ var f = this.focusEl, db = this.defaultButton, t = typeof db, el, ct; if(Ext.isDefined(db)){ if(Ext.isNumber(db) && this.fbar){ f = this.fbar.items.get(db); }else if(Ext.isString(db)){ f = Ext.getCmp(db); }else{ f = db; } el = f.getEl(); ct = Ext.getDom(this.container); if (el && ct) { if (ct != document.body && !Ext.lib.Region.getRegion(ct).contains(Ext.lib.Region.getRegion(el.dom))){ return; } } } f = f || this.focusEl; f.focus.defer(10, f); }, setAnimateTarget : function(el){ el = Ext.get(el); this.animateTarget = el; }, beforeShow : function(){ delete this.el.lastXY; delete this.el.lastLT; if(this.x === undefined || this.y === undefined){ var xy = this.el.getAlignToXY(this.container, 'c-c'); var pos = this.el.translatePoints(xy[0], xy[1]); this.x = this.x === undefined? pos.left : this.x; this.y = this.y === undefined? pos.top : this.y; } this.el.setLeftTop(this.x, this.y); if(this.expandOnShow){ this.expand(false); } if(this.modal){ Ext.getBody().addClass('x-body-masked'); this.mask.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true)); this.mask.show(); } }, show : function(animateTarget, cb, scope){ if(!this.rendered){ this.render(Ext.getBody()); } if(this.hidden === false){ this.toFront(); return this; } if(this.fireEvent('beforeshow', this) === false){ return this; } if(cb){ this.on('show', cb, scope, {single:true}); } this.hidden = false; if(Ext.isDefined(animateTarget)){ this.setAnimateTarget(animateTarget); } this.beforeShow(); if(this.animateTarget){ this.animShow(); }else{ this.afterShow(); } return this; }, afterShow : function(isAnim){ if (this.isDestroyed){ return false; } this.proxy.hide(); this.el.setStyle('display', 'block'); this.el.show(); if(this.maximized){ this.fitContainer(); } if(Ext.isMac && Ext.isGecko2){ this.cascade(this.setAutoScroll); } if(this.monitorResize || this.modal || this.constrain || this.constrainHeader){ Ext.EventManager.onWindowResize(this.onWindowResize, this); } this.doConstrain(); this.doLayout(); if(this.keyMap){ this.keyMap.enable(); } this.toFront(); this.updateHandles(); if(isAnim && (Ext.isIE || Ext.isWebKit)){ var sz = this.getSize(); this.onResize(sz.width, sz.height); } this.onShow(); this.fireEvent('show', this); }, animShow : function(){ this.proxy.show(); this.proxy.setBox(this.animateTarget.getBox()); this.proxy.setOpacity(0); var b = this.getBox(); this.el.setStyle('display', 'none'); this.proxy.shift(Ext.apply(b, { callback: this.afterShow.createDelegate(this, [true], false), scope: this, easing: 'easeNone', duration: this.showAnimDuration, opacity: 0.5 })); }, hide : function(animateTarget, cb, scope){ if(this.hidden || this.fireEvent('beforehide', this) === false){ return this; } if(cb){ this.on('hide', cb, scope, {single:true}); } this.hidden = true; if(animateTarget !== undefined){ this.setAnimateTarget(animateTarget); } if(this.modal){ this.mask.hide(); Ext.getBody().removeClass('x-body-masked'); } if(this.animateTarget){ this.animHide(); }else{ this.el.hide(); this.afterHide(); } return this; }, afterHide : function(){ this.proxy.hide(); if(this.monitorResize || this.modal || this.constrain || this.constrainHeader){ Ext.EventManager.removeResizeListener(this.onWindowResize, this); } if(this.keyMap){ this.keyMap.disable(); } this.onHide(); this.fireEvent('hide', this); }, animHide : function(){ this.proxy.setOpacity(0.5); this.proxy.show(); var tb = this.getBox(false); this.proxy.setBox(tb); this.el.hide(); this.proxy.shift(Ext.apply(this.animateTarget.getBox(), { callback: this.afterHide, scope: this, duration: this.hideAnimDuration, easing: 'easeNone', opacity: 0 })); }, onShow : Ext.emptyFn, onHide : Ext.emptyFn, onWindowResize : function(){ if(this.maximized){ this.fitContainer(); } if(this.modal){ this.mask.setSize('100%', '100%'); var force = this.mask.dom.offsetHeight; this.mask.setSize(Ext.lib.Dom.getViewWidth(true), Ext.lib.Dom.getViewHeight(true)); } this.doConstrain(); }, doConstrain : function(){ if(this.constrain || this.constrainHeader){ var offsets; if(this.constrain){ offsets = { right:this.el.shadowOffset, left:this.el.shadowOffset, bottom:this.el.shadowOffset }; }else { var s = this.getSize(); offsets = { right:-(s.width - 100), bottom:-(s.height - 25 + this.el.getConstrainOffset()) }; } var xy = this.el.getConstrainToXY(this.container, true, offsets); if(xy){ this.setPosition(xy[0], xy[1]); } } }, ghost : function(cls){ var ghost = this.createGhost(cls); var box = this.getBox(true); ghost.setLeftTop(box.x, box.y); ghost.setWidth(box.width); this.el.hide(); this.activeGhost = ghost; return ghost; }, unghost : function(show, matchPosition){ if(!this.activeGhost) { return; } if(show !== false){ this.el.show(); this.focus.defer(10, this); if(Ext.isMac && Ext.isGecko2){ this.cascade(this.setAutoScroll); } } if(matchPosition !== false){ this.setPosition(this.activeGhost.getLeft(true), this.activeGhost.getTop(true)); } this.activeGhost.hide(); this.activeGhost.remove(); delete this.activeGhost; }, minimize : function(){ this.fireEvent('minimize', this); return this; }, close : function(){ if(this.fireEvent('beforeclose', this) !== false){ if(this.hidden){ this.doClose(); }else{ this.hide(null, this.doClose, this); } } }, doClose : function(){ this.fireEvent('close', this); this.destroy(); }, maximize : function(){ if(!this.maximized){ this.expand(false); this.restoreSize = this.getSize(); this.restorePos = this.getPosition(true); if (this.maximizable){ this.tools.maximize.hide(); this.tools.restore.show(); } this.maximized = true; this.el.disableShadow(); if(this.dd){ this.dd.lock(); } if(this.collapsible){ this.tools.toggle.hide(); } this.el.addClass('x-window-maximized'); this.container.addClass('x-window-maximized-ct'); this.setPosition(0, 0); this.fitContainer(); this.fireEvent('maximize', this); } return this; }, restore : function(){ if(this.maximized){ var t = this.tools; this.el.removeClass('x-window-maximized'); if(t.restore){ t.restore.hide(); } if(t.maximize){ t.maximize.show(); } this.setPosition(this.restorePos[0], this.restorePos[1]); this.setSize(this.restoreSize.width, this.restoreSize.height); delete this.restorePos; delete this.restoreSize; this.maximized = false; this.el.enableShadow(true); if(this.dd){ this.dd.unlock(); } if(this.collapsible && t.toggle){ t.toggle.show(); } this.container.removeClass('x-window-maximized-ct'); this.doConstrain(); this.fireEvent('restore', this); } return this; }, toggleMaximize : function(){ return this[this.maximized ? 'restore' : 'maximize'](); }, fitContainer : function(){ var vs = this.container.getViewSize(false); this.setSize(vs.width, vs.height); }, setZIndex : function(index){ if(this.modal){ this.mask.setStyle('z-index', index); } this.el.setZIndex(++index); index += 5; if(this.resizer){ this.resizer.proxy.setStyle('z-index', ++index); } this.lastZIndex = index; }, alignTo : function(element, position, offsets){ var xy = this.el.getAlignToXY(element, position, offsets); this.setPagePosition(xy[0], xy[1]); return this; }, anchorTo : function(el, alignment, offsets, monitorScroll){ this.clearAnchor(); this.anchorTarget = { el: el, alignment: alignment, offsets: offsets }; Ext.EventManager.onWindowResize(this.doAnchor, this); var tm = typeof monitorScroll; if(tm != 'undefined'){ Ext.EventManager.on(window, 'scroll', this.doAnchor, this, {buffer: tm == 'number' ? monitorScroll : 50}); } return this.doAnchor(); }, doAnchor : function(){ var o = this.anchorTarget; this.alignTo(o.el, o.alignment, o.offsets); return this; }, clearAnchor : function(){ if(this.anchorTarget){ Ext.EventManager.removeResizeListener(this.doAnchor, this); Ext.EventManager.un(window, 'scroll', this.doAnchor, this); delete this.anchorTarget; } return this; }, toFront : function(e){ if(this.manager.bringToFront(this)){ if(!e || !e.getTarget().focus){ this.focus(); } } return this; }, setActive : function(active){ if(active){ if(!this.maximized){ this.el.enableShadow(true); } this.fireEvent('activate', this); }else{ this.el.disableShadow(); this.fireEvent('deactivate', this); } }, toBack : function(){ this.manager.sendToBack(this); return this; }, center : function(){ var xy = this.el.getAlignToXY(this.container, 'c-c'); this.setPagePosition(xy[0], xy[1]); return this; } }); Ext.reg('window', Ext.Window); Ext.Window.DD = Ext.extend(Ext.dd.DD, { constructor : function(win){ this.win = win; Ext.Window.DD.superclass.constructor.call(this, win.el.id, 'WindowDD-'+win.id); this.setHandleElId(win.header.id); this.scroll = false; }, moveOnly:true, headerOffsets:[100, 25], startDrag : function(){ var w = this.win; this.proxy = w.ghost(w.initialConfig.cls); if(w.constrain !== false){ var so = w.el.shadowOffset; this.constrainTo(w.container, {right: so, left: so, bottom: so}); }else if(w.constrainHeader !== false){ var s = this.proxy.getSize(); this.constrainTo(w.container, {right: -(s.width-this.headerOffsets[0]), bottom: -(s.height-this.headerOffsets[1])}); } }, b4Drag : Ext.emptyFn, onDrag : function(e){ this.alignElWithMouse(this.proxy, e.getPageX(), e.getPageY()); }, endDrag : function(e){ this.win.unghost(); this.win.saveState(); } }); Ext.WindowGroup = function(){ var list = {}; var accessList = []; var front = null; var sortWindows = function(d1, d2){ return (!d1._lastAccess || d1._lastAccess < d2._lastAccess) ? -1 : 1; }; var orderWindows = function(){ var a = accessList, len = a.length; if(len > 0){ a.sort(sortWindows); var seed = a[0].manager.zseed; for(var i = 0; i < len; i++){ var win = a[i]; if(win && !win.hidden){ win.setZIndex(seed + (i*10)); } } } activateLast(); }; var setActiveWin = function(win){ if(win != front){ if(front){ front.setActive(false); } front = win; if(win){ win.setActive(true); } } }; var activateLast = function(){ for(var i = accessList.length-1; i >=0; --i) { if(!accessList[i].hidden){ setActiveWin(accessList[i]); return; } } setActiveWin(null); }; return { zseed : 9000, register : function(win){ if(win.manager){ win.manager.unregister(win); } win.manager = this; list[win.id] = win; accessList.push(win); win.on('hide', activateLast); }, unregister : function(win){ delete win.manager; delete list[win.id]; win.un('hide', activateLast); accessList.remove(win); }, get : function(id){ return typeof id == "object" ? id : list[id]; }, bringToFront : function(win){ win = this.get(win); if(win != front){ win._lastAccess = new Date().getTime(); orderWindows(); return true; } return false; }, sendToBack : function(win){ win = this.get(win); win._lastAccess = -(new Date().getTime()); orderWindows(); return win; }, hideAll : function(){ for(var id in list){ if(list[id] && typeof list[id] != "function" && list[id].isVisible()){ list[id].hide(); } } }, getActive : function(){ return front; }, getBy : function(fn, scope){ var r = []; for(var i = accessList.length-1; i >=0; --i) { var win = accessList[i]; if(fn.call(scope||win, win) !== false){ r.push(win); } } return r; }, each : function(fn, scope){ for(var id in list){ if(list[id] && typeof list[id] != "function"){ if(fn.call(scope || list[id], list[id]) === false){ return; } } } } }; }; Ext.WindowMgr = new Ext.WindowGroup(); Ext.MessageBox = function(){ var dlg, opt, mask, waitTimer, bodyEl, msgEl, textboxEl, textareaEl, progressBar, pp, iconEl, spacerEl, buttons, activeTextEl, bwidth, bufferIcon = '', iconCls = '', buttonNames = ['ok', 'yes', 'no', 'cancel']; var handleButton = function(button){ buttons[button].blur(); if(dlg.isVisible()){ dlg.hide(); handleHide(); Ext.callback(opt.fn, opt.scope||window, [button, activeTextEl.dom.value, opt], 1); } }; var handleHide = function(){ if(opt && opt.cls){ dlg.el.removeClass(opt.cls); } progressBar.reset(); }; var handleEsc = function(d, k, e){ if(opt && opt.closable !== false){ dlg.hide(); handleHide(); } if(e){ e.stopEvent(); } }; var updateButtons = function(b){ var width = 0, cfg; if(!b){ Ext.each(buttonNames, function(name){ buttons[name].hide(); }); return width; } dlg.footer.dom.style.display = ''; Ext.iterate(buttons, function(name, btn){ cfg = b[name]; if(cfg){ btn.show(); btn.setText(Ext.isString(cfg) ? cfg : Ext.MessageBox.buttonText[name]); width += btn.getEl().getWidth() + 15; }else{ btn.hide(); } }); return width; }; return { getDialog : function(titleText){ if(!dlg){ var btns = []; buttons = {}; Ext.each(buttonNames, function(name){ btns.push(buttons[name] = new Ext.Button({ text: this.buttonText[name], handler: handleButton.createCallback(name), hideMode: 'offsets' })); }, this); dlg = new Ext.Window({ autoCreate : true, title:titleText, resizable:false, constrain:true, constrainHeader:true, minimizable : false, maximizable : false, stateful: false, modal: true, shim:true, buttonAlign:"center", width:400, height:100, minHeight: 80, plain:true, footer:true, closable:true, close : function(){ if(opt && opt.buttons && opt.buttons.no && !opt.buttons.cancel){ handleButton("no"); }else{ handleButton("cancel"); } }, fbar: new Ext.Toolbar({ items: btns, enableOverflow: false }) }); dlg.render(document.body); dlg.getEl().addClass('x-window-dlg'); mask = dlg.mask; bodyEl = dlg.body.createChild({ html:'

      ' }); iconEl = Ext.get(bodyEl.dom.firstChild); var contentEl = bodyEl.dom.childNodes[1]; msgEl = Ext.get(contentEl.firstChild); textboxEl = Ext.get(contentEl.childNodes[2].firstChild); textboxEl.enableDisplayMode(); textboxEl.addKeyListener([10,13], function(){ if(dlg.isVisible() && opt && opt.buttons){ if(opt.buttons.ok){ handleButton("ok"); }else if(opt.buttons.yes){ handleButton("yes"); } } }); textareaEl = Ext.get(contentEl.childNodes[2].childNodes[1]); textareaEl.enableDisplayMode(); progressBar = new Ext.ProgressBar({ renderTo:bodyEl }); bodyEl.createChild({cls:'x-clear'}); } return dlg; }, updateText : function(text){ if(!dlg.isVisible() && !opt.width){ dlg.setSize(this.maxWidth, 100); } msgEl.update(text ? text + ' ' : ' '); var iw = iconCls != '' ? (iconEl.getWidth() + iconEl.getMargins('lr')) : 0, mw = msgEl.getWidth() + msgEl.getMargins('lr'), fw = dlg.getFrameWidth('lr'), bw = dlg.body.getFrameWidth('lr'), w; w = Math.max(Math.min(opt.width || iw+mw+fw+bw, opt.maxWidth || this.maxWidth), Math.max(opt.minWidth || this.minWidth, bwidth || 0)); if(opt.prompt === true){ activeTextEl.setWidth(w-iw-fw-bw); } if(opt.progress === true || opt.wait === true){ progressBar.setSize(w-iw-fw-bw); } if(Ext.isIE9m && w == bwidth){ w += 4; } msgEl.update(text || ' '); dlg.setSize(w, 'auto').center(); return this; }, updateProgress : function(value, progressText, msg){ progressBar.updateProgress(value, progressText); if(msg){ this.updateText(msg); } return this; }, isVisible : function(){ return dlg && dlg.isVisible(); }, hide : function(){ var proxy = dlg ? dlg.activeGhost : null; if(this.isVisible() || proxy){ dlg.hide(); handleHide(); if (proxy){ dlg.unghost(false, false); } } return this; }, show : function(options){ if(this.isVisible()){ this.hide(); } opt = options; var d = this.getDialog(opt.title || " "); d.setTitle(opt.title || " "); var allowClose = (opt.closable !== false && opt.progress !== true && opt.wait !== true); d.tools.close.setDisplayed(allowClose); activeTextEl = textboxEl; opt.prompt = opt.prompt || (opt.multiline ? true : false); if(opt.prompt){ if(opt.multiline){ textboxEl.hide(); textareaEl.show(); textareaEl.setHeight(Ext.isNumber(opt.multiline) ? opt.multiline : this.defaultTextHeight); activeTextEl = textareaEl; }else{ textboxEl.show(); textareaEl.hide(); } }else{ textboxEl.hide(); textareaEl.hide(); } activeTextEl.dom.value = opt.value || ""; if(opt.prompt){ d.focusEl = activeTextEl; }else{ var bs = opt.buttons; var db = null; if(bs && bs.ok){ db = buttons["ok"]; }else if(bs && bs.yes){ db = buttons["yes"]; } if (db){ d.focusEl = db; } } if(Ext.isDefined(opt.iconCls)){ d.setIconClass(opt.iconCls); } this.setIcon(Ext.isDefined(opt.icon) ? opt.icon : bufferIcon); bwidth = updateButtons(opt.buttons); progressBar.setVisible(opt.progress === true || opt.wait === true); this.updateProgress(0, opt.progressText); this.updateText(opt.msg); if(opt.cls){ d.el.addClass(opt.cls); } d.proxyDrag = opt.proxyDrag === true; d.modal = opt.modal !== false; d.mask = opt.modal !== false ? mask : false; if(!d.isVisible()){ document.body.appendChild(dlg.el.dom); d.setAnimateTarget(opt.animEl); d.on('show', function(){ if(allowClose === true){ d.keyMap.enable(); }else{ d.keyMap.disable(); } }, this, {single:true}); d.show(opt.animEl); } if(opt.wait === true){ progressBar.wait(opt.waitConfig); } return this; }, setIcon : function(icon){ if(!dlg){ bufferIcon = icon; return; } bufferIcon = undefined; if(icon && icon != ''){ iconEl.removeClass('x-hidden'); iconEl.replaceClass(iconCls, icon); bodyEl.addClass('x-dlg-icon'); iconCls = icon; }else{ iconEl.replaceClass(iconCls, 'x-hidden'); bodyEl.removeClass('x-dlg-icon'); iconCls = ''; } return this; }, progress : function(title, msg, progressText){ this.show({ title : title, msg : msg, buttons: false, progress:true, closable:false, minWidth: this.minProgressWidth, progressText: progressText }); return this; }, wait : function(msg, title, config){ this.show({ title : title, msg : msg, buttons: false, closable:false, wait:true, modal:true, minWidth: this.minProgressWidth, waitConfig: config }); return this; }, alert : function(title, msg, fn, scope){ this.show({ title : title, msg : msg, buttons: this.OK, fn: fn, scope : scope, minWidth: this.minWidth }); return this; }, confirm : function(title, msg, fn, scope){ this.show({ title : title, msg : msg, buttons: this.YESNO, fn: fn, scope : scope, icon: this.QUESTION, minWidth: this.minWidth }); return this; }, prompt : function(title, msg, fn, scope, multiline, value){ this.show({ title : title, msg : msg, buttons: this.OKCANCEL, fn: fn, minWidth: this.minPromptWidth, scope : scope, prompt:true, multiline: multiline, value: value }); return this; }, OK : {ok:true}, CANCEL : {cancel:true}, OKCANCEL : {ok:true, cancel:true}, YESNO : {yes:true, no:true}, YESNOCANCEL : {yes:true, no:true, cancel:true}, INFO : 'ext-mb-info', WARNING : 'ext-mb-warning', QUESTION : 'ext-mb-question', ERROR : 'ext-mb-error', defaultTextHeight : 75, maxWidth : 600, minWidth : 100, minProgressWidth : 250, minPromptWidth: 250, buttonText : { ok : "OK", cancel : "Cancel", yes : "Yes", no : "No" } }; }(); Ext.Msg = Ext.MessageBox; Ext.dd.PanelProxy = Ext.extend(Object, { constructor : function(panel, config){ this.panel = panel; this.id = this.panel.id +'-ddproxy'; Ext.apply(this, config); }, insertProxy : true, setStatus : Ext.emptyFn, reset : Ext.emptyFn, update : Ext.emptyFn, stop : Ext.emptyFn, sync: Ext.emptyFn, getEl : function(){ return this.ghost; }, getGhost : function(){ return this.ghost; }, getProxy : function(){ return this.proxy; }, hide : function(){ if(this.ghost){ if(this.proxy){ this.proxy.remove(); delete this.proxy; } this.panel.el.dom.style.display = ''; this.ghost.remove(); delete this.ghost; } }, show : function(){ if(!this.ghost){ this.ghost = this.panel.createGhost(this.panel.initialConfig.cls, undefined, Ext.getBody()); this.ghost.setXY(this.panel.el.getXY()); if(this.insertProxy){ this.proxy = this.panel.el.insertSibling({cls:'x-panel-dd-spacer'}); this.proxy.setSize(this.panel.getSize()); } this.panel.el.dom.style.display = 'none'; } }, repair : function(xy, callback, scope){ this.hide(); if(typeof callback == "function"){ callback.call(scope || this); } }, moveProxy : function(parentNode, before){ if(this.proxy){ parentNode.insertBefore(this.proxy.dom, before); } } }); Ext.Panel.DD = Ext.extend(Ext.dd.DragSource, { constructor : function(panel, cfg){ this.panel = panel; this.dragData = {panel: panel}; this.proxy = new Ext.dd.PanelProxy(panel, cfg); Ext.Panel.DD.superclass.constructor.call(this, panel.el, cfg); var h = panel.header, el = panel.body; if(h){ this.setHandleElId(h.id); el = panel.header; } el.setStyle('cursor', 'move'); this.scroll = false; }, showFrame: Ext.emptyFn, startDrag: Ext.emptyFn, b4StartDrag: function(x, y) { this.proxy.show(); }, b4MouseDown: function(e) { var x = e.getPageX(), y = e.getPageY(); this.autoOffset(x, y); }, onInitDrag : function(x, y){ this.onStartDrag(x, y); return true; }, createFrame : Ext.emptyFn, getDragEl : function(e){ return this.proxy.ghost.dom; }, endDrag : function(e){ this.proxy.hide(); this.panel.saveState(); }, autoOffset : function(x, y) { x -= this.startPageX; y -= this.startPageY; this.setDelta(x, y); } }); Ext.state.Provider = Ext.extend(Ext.util.Observable, { constructor : function(){ this.addEvents("statechange"); this.state = {}; Ext.state.Provider.superclass.constructor.call(this); }, get : function(name, defaultValue){ return typeof this.state[name] == "undefined" ? defaultValue : this.state[name]; }, clear : function(name){ delete this.state[name]; this.fireEvent("statechange", this, name, null); }, set : function(name, value){ this.state[name] = value; this.fireEvent("statechange", this, name, value); }, decodeValue : function(cookie){ var re = /^(a|n|d|b|s|o|e)\:(.*)$/, matches = re.exec(unescape(cookie)), all, type, v, kv; if(!matches || !matches[1]){ return; } type = matches[1]; v = matches[2]; switch(type){ case 'e': return null; case 'n': return parseFloat(v); case 'd': return new Date(Date.parse(v)); case 'b': return (v == '1'); case 'a': all = []; if(v != ''){ Ext.each(v.split('^'), function(val){ all.push(this.decodeValue(val)); }, this); } return all; case 'o': all = {}; if(v != ''){ Ext.each(v.split('^'), function(val){ kv = val.split('='); all[kv[0]] = this.decodeValue(kv[1]); }, this); } return all; default: return v; } }, encodeValue : function(v){ var enc, flat = '', i = 0, len, key; if(v == null){ return 'e:1'; }else if(typeof v == 'number'){ enc = 'n:' + v; }else if(typeof v == 'boolean'){ enc = 'b:' + (v ? '1' : '0'); }else if(Ext.isDate(v)){ enc = 'd:' + v.toGMTString(); }else if(Ext.isArray(v)){ for(len = v.length; i < len; i++){ flat += this.encodeValue(v[i]); if(i != len - 1){ flat += '^'; } } enc = 'a:' + flat; }else if(typeof v == 'object'){ for(key in v){ if(typeof v[key] != 'function' && v[key] !== undefined){ flat += key + '=' + this.encodeValue(v[key]) + '^'; } } enc = 'o:' + flat.substring(0, flat.length-1); }else{ enc = 's:' + v; } return escape(enc); } }); Ext.state.Manager = function(){ var provider = new Ext.state.Provider(); return { setProvider : function(stateProvider){ provider = stateProvider; }, get : function(key, defaultValue){ return provider.get(key, defaultValue); }, set : function(key, value){ provider.set(key, value); }, clear : function(key){ provider.clear(key); }, getProvider : function(){ return provider; } }; }(); Ext.state.CookieProvider = Ext.extend(Ext.state.Provider, { constructor : function(config){ Ext.state.CookieProvider.superclass.constructor.call(this); this.path = "/"; this.expires = new Date(new Date().getTime()+(1000*60*60*24*7)); this.domain = null; this.secure = false; Ext.apply(this, config); this.state = this.readCookies(); }, set : function(name, value){ if(typeof value == "undefined" || value === null){ this.clear(name); return; } this.setCookie(name, value); Ext.state.CookieProvider.superclass.set.call(this, name, value); }, clear : function(name){ this.clearCookie(name); Ext.state.CookieProvider.superclass.clear.call(this, name); }, readCookies : function(){ var cookies = {}, c = document.cookie + ";", re = /\s?(.*?)=(.*?);/g, matches, name, value; while((matches = re.exec(c)) != null){ name = matches[1]; value = matches[2]; if(name && name.substring(0,3) == "ys-"){ cookies[name.substr(3)] = this.decodeValue(value); } } return cookies; }, setCookie : function(name, value){ document.cookie = "ys-"+ name + "=" + this.encodeValue(value) + ((this.expires == null) ? "" : ("; expires=" + this.expires.toGMTString())) + ((this.path == null) ? "" : ("; path=" + this.path)) + ((this.domain == null) ? "" : ("; domain=" + this.domain)) + ((this.secure == true) ? "; secure" : ""); }, clearCookie : function(name){ document.cookie = "ys-" + name + "=null; expires=Thu, 01-Jan-70 00:00:01 GMT" + ((this.path == null) ? "" : ("; path=" + this.path)) + ((this.domain == null) ? "" : ("; domain=" + this.domain)) + ((this.secure == true) ? "; secure" : ""); } }); Ext.DataView = Ext.extend(Ext.BoxComponent, { selectedClass : "x-view-selected", emptyText : "", deferEmptyText: true, trackOver: false, blockRefresh: false, last: false, initComponent : function(){ Ext.DataView.superclass.initComponent.call(this); if(Ext.isString(this.tpl) || Ext.isArray(this.tpl)){ this.tpl = new Ext.XTemplate(this.tpl); } this.addEvents( "beforeclick", "click", "mouseenter", "mouseleave", "containerclick", "dblclick", "contextmenu", "containercontextmenu", "selectionchange", "beforeselect" ); this.store = Ext.StoreMgr.lookup(this.store); this.all = new Ext.CompositeElementLite(); this.selected = new Ext.CompositeElementLite(); }, afterRender : function(){ Ext.DataView.superclass.afterRender.call(this); this.mon(this.getTemplateTarget(), { "click": this.onClick, "dblclick": this.onDblClick, "contextmenu": this.onContextMenu, scope:this }); if(this.overClass || this.trackOver){ this.mon(this.getTemplateTarget(), { "mouseover": this.onMouseOver, "mouseout": this.onMouseOut, scope:this }); } if(this.store){ this.bindStore(this.store, true); } }, refresh : function() { this.clearSelections(false, true); var el = this.getTemplateTarget(), records = this.store.getRange(); el.update(''); if(records.length < 1){ if(!this.deferEmptyText || this.hasSkippedEmptyText){ el.update(this.emptyText); } this.all.clear(); }else{ this.tpl.overwrite(el, this.collectData(records, 0)); this.all.fill(Ext.query(this.itemSelector, el.dom)); this.updateIndexes(0); } this.hasSkippedEmptyText = true; }, getTemplateTarget: function(){ return this.el; }, prepareData : function(data){ return data; }, collectData : function(records, startIndex){ var r = [], i = 0, len = records.length; for(; i < len; i++){ r[r.length] = this.prepareData(records[i].data, startIndex + i, records[i]); } return r; }, bufferRender : function(records, index){ var div = document.createElement('div'); this.tpl.overwrite(div, this.collectData(records, index)); return Ext.query(this.itemSelector, div); }, onUpdate : function(ds, record){ var index = this.store.indexOf(record); if(index > -1){ var sel = this.isSelected(index), original = this.all.elements[index], node = this.bufferRender([record], index)[0]; this.all.replaceElement(index, node, true); if(sel){ this.selected.replaceElement(original, node); this.all.item(index).addClass(this.selectedClass); } this.updateIndexes(index, index); } }, onAdd : function(ds, records, index){ if(this.all.getCount() === 0){ this.refresh(); return; } var nodes = this.bufferRender(records, index), n, a = this.all.elements; if(index < this.all.getCount()){ n = this.all.item(index).insertSibling(nodes, 'before', true); a.splice.apply(a, [index, 0].concat(nodes)); }else{ n = this.all.last().insertSibling(nodes, 'after', true); a.push.apply(a, nodes); } this.updateIndexes(index); }, onRemove : function(ds, record, index){ this.deselect(index); this.all.removeElement(index, true); this.updateIndexes(index); if (this.store.getCount() === 0){ this.refresh(); } }, refreshNode : function(index){ this.onUpdate(this.store, this.store.getAt(index)); }, updateIndexes : function(startIndex, endIndex){ var ns = this.all.elements; startIndex = startIndex || 0; endIndex = endIndex || ((endIndex === 0) ? 0 : (ns.length - 1)); for(var i = startIndex; i <= endIndex; i++){ ns[i].viewIndex = i; } }, getStore : function(){ return this.store; }, bindStore : function(store, initial){ if(!initial && this.store){ if(store !== this.store && this.store.autoDestroy){ this.store.destroy(); }else{ this.store.un("beforeload", this.onBeforeLoad, this); this.store.un("datachanged", this.onDataChanged, this); this.store.un("add", this.onAdd, this); this.store.un("remove", this.onRemove, this); this.store.un("update", this.onUpdate, this); this.store.un("clear", this.refresh, this); } if(!store){ this.store = null; } } if(store){ store = Ext.StoreMgr.lookup(store); store.on({ scope: this, beforeload: this.onBeforeLoad, datachanged: this.onDataChanged, add: this.onAdd, remove: this.onRemove, update: this.onUpdate, clear: this.refresh }); } this.store = store; if(store){ this.refresh(); } }, onDataChanged: function() { if (this.blockRefresh !== true) { this.refresh.apply(this, arguments); } }, findItemFromChild : function(node){ return Ext.fly(node).findParent(this.itemSelector, this.getTemplateTarget()); }, onClick : function(e){ var item = e.getTarget(this.itemSelector, this.getTemplateTarget()), index; if(item){ index = this.indexOf(item); if(this.onItemClick(item, index, e) !== false){ this.fireEvent("click", this, index, item, e); } }else{ if(this.fireEvent("containerclick", this, e) !== false){ this.onContainerClick(e); } } }, onContainerClick : function(e){ this.clearSelections(); }, onContextMenu : function(e){ var item = e.getTarget(this.itemSelector, this.getTemplateTarget()); if(item){ this.fireEvent("contextmenu", this, this.indexOf(item), item, e); }else{ this.fireEvent("containercontextmenu", this, e); } }, onDblClick : function(e){ var item = e.getTarget(this.itemSelector, this.getTemplateTarget()); if(item){ this.fireEvent("dblclick", this, this.indexOf(item), item, e); } }, onMouseOver : function(e){ var item = e.getTarget(this.itemSelector, this.getTemplateTarget()); if(item && item !== this.lastItem){ this.lastItem = item; Ext.fly(item).addClass(this.overClass); this.fireEvent("mouseenter", this, this.indexOf(item), item, e); } }, onMouseOut : function(e){ if(this.lastItem){ if(!e.within(this.lastItem, true, true)){ Ext.fly(this.lastItem).removeClass(this.overClass); this.fireEvent("mouseleave", this, this.indexOf(this.lastItem), this.lastItem, e); delete this.lastItem; } } }, onItemClick : function(item, index, e){ if(this.fireEvent("beforeclick", this, index, item, e) === false){ return false; } if(this.multiSelect){ this.doMultiSelection(item, index, e); e.preventDefault(); }else if(this.singleSelect){ this.doSingleSelection(item, index, e); e.preventDefault(); } return true; }, doSingleSelection : function(item, index, e){ if(e.ctrlKey && this.isSelected(index)){ this.deselect(index); }else{ this.select(index, false); } }, doMultiSelection : function(item, index, e){ if(e.shiftKey && this.last !== false){ var last = this.last; this.selectRange(last, index, e.ctrlKey); this.last = last; }else{ if((e.ctrlKey||this.simpleSelect) && this.isSelected(index)){ this.deselect(index); }else{ this.select(index, e.ctrlKey || e.shiftKey || this.simpleSelect); } } }, getSelectionCount : function(){ return this.selected.getCount(); }, getSelectedNodes : function(){ return this.selected.elements; }, getSelectedIndexes : function(){ var indexes = [], selected = this.selected.elements, i = 0, len = selected.length; for(; i < len; i++){ indexes.push(selected[i].viewIndex); } return indexes; }, getSelectedRecords : function(){ return this.getRecords(this.selected.elements); }, getRecords : function(nodes){ var records = [], i = 0, len = nodes.length; for(; i < len; i++){ records[records.length] = this.store.getAt(nodes[i].viewIndex); } return records; }, getRecord : function(node){ return this.store.getAt(node.viewIndex); }, clearSelections : function(suppressEvent, skipUpdate){ if((this.multiSelect || this.singleSelect) && this.selected.getCount() > 0){ if(!skipUpdate){ this.selected.removeClass(this.selectedClass); } this.selected.clear(); this.last = false; if(!suppressEvent){ this.fireEvent("selectionchange", this, this.selected.elements); } } }, isSelected : function(node){ return this.selected.contains(this.getNode(node)); }, deselect : function(node){ if(this.isSelected(node)){ node = this.getNode(node); this.selected.removeElement(node); if(this.last == node.viewIndex){ this.last = false; } Ext.fly(node).removeClass(this.selectedClass); this.fireEvent("selectionchange", this, this.selected.elements); } }, select : function(nodeInfo, keepExisting, suppressEvent){ if(Ext.isArray(nodeInfo)){ if(!keepExisting){ this.clearSelections(true); } for(var i = 0, len = nodeInfo.length; i < len; i++){ this.select(nodeInfo[i], true, true); } if(!suppressEvent){ this.fireEvent("selectionchange", this, this.selected.elements); } } else{ var node = this.getNode(nodeInfo); if(!keepExisting){ this.clearSelections(true); } if(node && !this.isSelected(node)){ if(this.fireEvent("beforeselect", this, node, this.selected.elements) !== false){ Ext.fly(node).addClass(this.selectedClass); this.selected.add(node); this.last = node.viewIndex; if(!suppressEvent){ this.fireEvent("selectionchange", this, this.selected.elements); } } } } }, selectRange : function(start, end, keepExisting){ if(!keepExisting){ this.clearSelections(true); } this.select(this.getNodes(start, end), true); }, getNode : function(nodeInfo){ if(Ext.isString(nodeInfo)){ return document.getElementById(nodeInfo); }else if(Ext.isNumber(nodeInfo)){ return this.all.elements[nodeInfo]; }else if(nodeInfo instanceof Ext.data.Record){ var idx = this.store.indexOf(nodeInfo); return this.all.elements[idx]; } return nodeInfo; }, getNodes : function(start, end){ var ns = this.all.elements, nodes = [], i; start = start || 0; end = !Ext.isDefined(end) ? Math.max(ns.length - 1, 0) : end; if(start <= end){ for(i = start; i <= end && ns[i]; i++){ nodes.push(ns[i]); } } else{ for(i = start; i >= end && ns[i]; i--){ nodes.push(ns[i]); } } return nodes; }, indexOf : function(node){ node = this.getNode(node); if(Ext.isNumber(node.viewIndex)){ return node.viewIndex; } return this.all.indexOf(node); }, onBeforeLoad : function(){ if(this.loadingText){ this.clearSelections(false, true); this.getTemplateTarget().update('
      '+this.loadingText+'
      '); this.all.clear(); } }, onDestroy : function(){ this.all.clear(); this.selected.clear(); Ext.DataView.superclass.onDestroy.call(this); this.bindStore(null); } }); Ext.DataView.prototype.setStore = Ext.DataView.prototype.bindStore; Ext.reg('dataview', Ext.DataView); Ext.list.ListView = Ext.extend(Ext.DataView, { itemSelector: 'dl', selectedClass:'x-list-selected', overClass:'x-list-over', scrollOffset : undefined, columnResize: true, columnSort: true, maxColumnWidth: Ext.isIE9m ? 99 : 100, initComponent : function(){ if(this.columnResize){ this.colResizer = new Ext.list.ColumnResizer(this.colResizer); this.colResizer.init(this); } if(this.columnSort){ this.colSorter = new Ext.list.Sorter(this.columnSort); this.colSorter.init(this); } if(!this.internalTpl){ this.internalTpl = new Ext.XTemplate( '
      ', '', '
      ', '{header}', '
      ', '      ', '
      ', '
      ', '
      ', '
      ' ); } if(!this.tpl){ this.tpl = new Ext.XTemplate( '', '
      ', '', '
      ', ' class="{cls}">', '{[values.tpl.apply(parent)]}', '
      ', '      ', '
      ', '
      ', '      ' ); }; var cs = this.columns, allocatedWidth = 0, colsWithWidth = 0, len = cs.length, columns = []; for(var i = 0; i < len; i++){ var c = cs[i]; if(!c.isColumn) { c.xtype = c.xtype ? (/^lv/.test(c.xtype) ? c.xtype : 'lv' + c.xtype) : 'lvcolumn'; c = Ext.create(c); } if(c.width) { allocatedWidth += c.width*100; if(allocatedWidth > this.maxColumnWidth){ c.width -= (allocatedWidth - this.maxColumnWidth) / 100; } colsWithWidth++; } columns.push(c); } cs = this.columns = columns; if(colsWithWidth < len){ var remaining = len - colsWithWidth; if(allocatedWidth < this.maxColumnWidth){ var perCol = ((this.maxColumnWidth-allocatedWidth) / remaining)/100; for(var j = 0; j < len; j++){ var c = cs[j]; if(!c.width){ c.width = perCol; } } } } Ext.list.ListView.superclass.initComponent.call(this); }, onRender : function(){ this.autoEl = { cls: 'x-list-wrap' }; Ext.list.ListView.superclass.onRender.apply(this, arguments); this.internalTpl.overwrite(this.el, {columns: this.columns}); this.innerBody = Ext.get(this.el.dom.childNodes[1].firstChild); this.innerHd = Ext.get(this.el.dom.firstChild.firstChild); if(this.hideHeaders){ this.el.dom.firstChild.style.display = 'none'; } }, getTemplateTarget : function(){ return this.innerBody; }, collectData : function(){ var rs = Ext.list.ListView.superclass.collectData.apply(this, arguments); return { columns: this.columns, rows: rs }; }, verifyInternalSize : function(){ if(this.lastSize){ this.onResize(this.lastSize.width, this.lastSize.height); } }, onResize : function(w, h){ var body = this.innerBody.dom, header = this.innerHd.dom, scrollWidth = w - Ext.num(this.scrollOffset, Ext.getScrollBarWidth()) + 'px', parentNode; if(!body){ return; } parentNode = body.parentNode; if(Ext.isNumber(w)){ if(this.reserveScrollOffset || ((parentNode.offsetWidth - parentNode.clientWidth) > 10)){ body.style.width = scrollWidth; header.style.width = scrollWidth; }else{ body.style.width = w + 'px'; header.style.width = w + 'px'; setTimeout(function(){ if((parentNode.offsetWidth - parentNode.clientWidth) > 10){ body.style.width = scrollWidth; header.style.width = scrollWidth; } }, 10); } } if(Ext.isNumber(h)){ parentNode.style.height = Math.max(0, h - header.parentNode.offsetHeight) + 'px'; } }, updateIndexes : function(){ Ext.list.ListView.superclass.updateIndexes.apply(this, arguments); this.verifyInternalSize(); }, findHeaderIndex : function(header){ header = header.dom || header; var parentNode = header.parentNode, children = parentNode.parentNode.childNodes, i = 0, c; for(; c = children[i]; i++){ if(c == parentNode){ return i; } } return -1; }, setHdWidths : function(){ var els = this.innerHd.dom.getElementsByTagName('div'), i = 0, columns = this.columns, len = columns.length; for(; i < len; i++){ els[i].style.width = (columns[i].width*100) + '%'; } } }); Ext.reg('listview', Ext.list.ListView); Ext.ListView = Ext.list.ListView; Ext.list.Column = Ext.extend(Object, { isColumn: true, align: 'left', header: '', width: null, cls: '', constructor : function(c){ if(!c.tpl){ c.tpl = new Ext.XTemplate('{' + c.dataIndex + '}'); } else if(Ext.isString(c.tpl)){ c.tpl = new Ext.XTemplate(c.tpl); } Ext.apply(this, c); } }); Ext.reg('lvcolumn', Ext.list.Column); Ext.list.NumberColumn = Ext.extend(Ext.list.Column, { format: '0,000.00', constructor : function(c) { c.tpl = c.tpl || new Ext.XTemplate('{' + c.dataIndex + ':number("' + (c.format || this.format) + '")}'); Ext.list.NumberColumn.superclass.constructor.call(this, c); } }); Ext.reg('lvnumbercolumn', Ext.list.NumberColumn); Ext.list.DateColumn = Ext.extend(Ext.list.Column, { format: 'm/d/Y', constructor : function(c) { c.tpl = c.tpl || new Ext.XTemplate('{' + c.dataIndex + ':date("' + (c.format || this.format) + '")}'); Ext.list.DateColumn.superclass.constructor.call(this, c); } }); Ext.reg('lvdatecolumn', Ext.list.DateColumn); Ext.list.BooleanColumn = Ext.extend(Ext.list.Column, { trueText: 'true', falseText: 'false', undefinedText: ' ', constructor : function(c) { c.tpl = c.tpl || new Ext.XTemplate('{' + c.dataIndex + ':this.format}'); var t = this.trueText, f = this.falseText, u = this.undefinedText; c.tpl.format = function(v){ if(v === undefined){ return u; } if(!v || v === 'false'){ return f; } return t; }; Ext.list.DateColumn.superclass.constructor.call(this, c); } }); Ext.reg('lvbooleancolumn', Ext.list.BooleanColumn); Ext.list.ColumnResizer = Ext.extend(Ext.util.Observable, { minPct: .05, constructor: function(config){ Ext.apply(this, config); Ext.list.ColumnResizer.superclass.constructor.call(this); }, init : function(listView){ this.view = listView; listView.on('render', this.initEvents, this); }, initEvents : function(view){ view.mon(view.innerHd, 'mousemove', this.handleHdMove, this); this.tracker = new Ext.dd.DragTracker({ onBeforeStart: this.onBeforeStart.createDelegate(this), onStart: this.onStart.createDelegate(this), onDrag: this.onDrag.createDelegate(this), onEnd: this.onEnd.createDelegate(this), tolerance: 3, autoStart: 300 }); this.tracker.initEl(view.innerHd); view.on('beforedestroy', this.tracker.destroy, this.tracker); }, handleHdMove : function(e, t){ var handleWidth = 5, x = e.getPageX(), header = e.getTarget('em', 3, true); if(header){ var region = header.getRegion(), style = header.dom.style, parentNode = header.dom.parentNode; if(x - region.left <= handleWidth && parentNode != parentNode.parentNode.firstChild){ this.activeHd = Ext.get(parentNode.previousSibling.firstChild); style.cursor = Ext.isWebKit ? 'e-resize' : 'col-resize'; } else if(region.right - x <= handleWidth && parentNode != parentNode.parentNode.lastChild.previousSibling){ this.activeHd = header; style.cursor = Ext.isWebKit ? 'w-resize' : 'col-resize'; } else{ delete this.activeHd; style.cursor = ''; } } }, onBeforeStart : function(e){ this.dragHd = this.activeHd; return !!this.dragHd; }, onStart: function(e){ var me = this, view = me.view, dragHeader = me.dragHd, x = me.tracker.getXY()[0]; me.proxy = view.el.createChild({cls:'x-list-resizer'}); me.dragX = dragHeader.getX(); me.headerIndex = view.findHeaderIndex(dragHeader); me.headersDisabled = view.disableHeaders; view.disableHeaders = true; me.proxy.setHeight(view.el.getHeight()); me.proxy.setX(me.dragX); me.proxy.setWidth(x - me.dragX); this.setBoundaries(); }, setBoundaries: function(relativeX){ var view = this.view, headerIndex = this.headerIndex, width = view.innerHd.getWidth(), relativeX = view.innerHd.getX(), minWidth = Math.ceil(width * this.minPct), maxWidth = width - minWidth, numColumns = view.columns.length, headers = view.innerHd.select('em', true), minX = minWidth + relativeX, maxX = maxWidth + relativeX, header; if (numColumns == 2) { this.minX = minX; this.maxX = maxX; }else{ header = headers.item(headerIndex + 2); this.minX = headers.item(headerIndex).getX() + minWidth; this.maxX = header ? header.getX() - minWidth : maxX; if (headerIndex == 0) { this.minX = minX; } else if (headerIndex == numColumns - 2) { this.maxX = maxX; } } }, onDrag: function(e){ var me = this, cursorX = me.tracker.getXY()[0].constrain(me.minX, me.maxX); me.proxy.setWidth(cursorX - this.dragX); }, onEnd: function(e){ var newWidth = this.proxy.getWidth(), index = this.headerIndex, view = this.view, columns = view.columns, width = view.innerHd.getWidth(), newPercent = Math.ceil(newWidth * view.maxColumnWidth / width) / 100, disabled = this.headersDisabled, headerCol = columns[index], otherCol = columns[index + 1], totalPercent = headerCol.width + otherCol.width; this.proxy.remove(); headerCol.width = newPercent; otherCol.width = totalPercent - newPercent; delete this.dragHd; view.setHdWidths(); view.refresh(); setTimeout(function(){ view.disableHeaders = disabled; }, 100); } }); Ext.ListView.ColumnResizer = Ext.list.ColumnResizer; Ext.list.Sorter = Ext.extend(Ext.util.Observable, { sortClasses : ["sort-asc", "sort-desc"], constructor: function(config){ Ext.apply(this, config); Ext.list.Sorter.superclass.constructor.call(this); }, init : function(listView){ this.view = listView; listView.on('render', this.initEvents, this); }, initEvents : function(view){ view.mon(view.innerHd, 'click', this.onHdClick, this); view.innerHd.setStyle('cursor', 'pointer'); view.mon(view.store, 'datachanged', this.updateSortState, this); this.updateSortState.defer(10, this, [view.store]); }, updateSortState : function(store){ var state = store.getSortState(); if(!state){ return; } this.sortState = state; var cs = this.view.columns, sortColumn = -1; for(var i = 0, len = cs.length; i < len; i++){ if(cs[i].dataIndex == state.field){ sortColumn = i; break; } } if(sortColumn != -1){ var sortDir = state.direction; this.updateSortIcon(sortColumn, sortDir); } }, updateSortIcon : function(col, dir){ var sc = this.sortClasses; var hds = this.view.innerHd.select('em').removeClass(sc); hds.item(col).addClass(sc[dir == "DESC" ? 1 : 0]); }, onHdClick : function(e){ var hd = e.getTarget('em', 3); if(hd && !this.view.disableHeaders){ var index = this.view.findHeaderIndex(hd); this.view.store.sort(this.view.columns[index].dataIndex); } } }); Ext.ListView.Sorter = Ext.list.Sorter; Ext.TabPanel = Ext.extend(Ext.Panel, { deferredRender : true, tabWidth : 120, minTabWidth : 30, resizeTabs : false, enableTabScroll : false, scrollIncrement : 0, scrollRepeatInterval : 400, scrollDuration : 0.35, animScroll : true, tabPosition : 'top', baseCls : 'x-tab-panel', autoTabs : false, autoTabSelector : 'div.x-tab', activeTab : undefined, tabMargin : 2, plain : false, wheelIncrement : 20, idDelimiter : '__', itemCls : 'x-tab-item', elements : 'body', headerAsText : false, frame : false, hideBorders :true, initComponent : function(){ this.frame = false; Ext.TabPanel.superclass.initComponent.call(this); this.addEvents( 'beforetabchange', 'tabchange', 'contextmenu' ); this.setLayout(new Ext.layout.CardLayout(Ext.apply({ layoutOnCardChange: this.layoutOnTabChange, deferredRender: this.deferredRender }, this.layoutConfig))); if(this.tabPosition == 'top'){ this.elements += ',header'; this.stripTarget = 'header'; }else { this.elements += ',footer'; this.stripTarget = 'footer'; } if(!this.stack){ this.stack = Ext.TabPanel.AccessStack(); } this.initItems(); }, onRender : function(ct, position){ Ext.TabPanel.superclass.onRender.call(this, ct, position); if(this.plain){ var pos = this.tabPosition == 'top' ? 'header' : 'footer'; this[pos].addClass('x-tab-panel-'+pos+'-plain'); } var st = this[this.stripTarget]; this.stripWrap = st.createChild({cls:'x-tab-strip-wrap', cn:{ tag:'ul', cls:'x-tab-strip x-tab-strip-'+this.tabPosition}}); var beforeEl = (this.tabPosition=='bottom' ? this.stripWrap : null); st.createChild({cls:'x-tab-strip-spacer'}, beforeEl); this.strip = new Ext.Element(this.stripWrap.dom.firstChild); this.edge = this.strip.createChild({tag:'li', cls:'x-tab-edge', cn: [{tag: 'span', cls: 'x-tab-strip-text', cn: ' '}]}); this.strip.createChild({cls:'x-clear'}); this.body.addClass('x-tab-panel-body-'+this.tabPosition); if(!this.itemTpl){ var tt = new Ext.Template( '
    • ', '', '{text}', '
      • ' ); tt.disableFormats = true; tt.compile(); Ext.TabPanel.prototype.itemTpl = tt; } this.items.each(this.initTab, this); }, afterRender : function(){ Ext.TabPanel.superclass.afterRender.call(this); if(this.autoTabs){ this.readTabs(false); } if(this.activeTab !== undefined){ var item = Ext.isObject(this.activeTab) ? this.activeTab : this.items.get(this.activeTab); delete this.activeTab; this.setActiveTab(item); } }, initEvents : function(){ Ext.TabPanel.superclass.initEvents.call(this); this.mon(this.strip, { scope: this, mousedown: this.onStripMouseDown, contextmenu: this.onStripContextMenu }); if(this.enableTabScroll){ this.mon(this.strip, 'mousewheel', this.onWheel, this); } }, findTargets : function(e){ var item = null, itemEl = e.getTarget('li:not(.x-tab-edge)', this.strip); if(itemEl){ item = this.getComponent(itemEl.id.split(this.idDelimiter)[1]); if(item.disabled){ return { close : null, item : null, el : null }; } } return { close : e.getTarget('.x-tab-strip-close', this.strip), item : item, el : itemEl }; }, onStripMouseDown : function(e){ if(e.button !== 0){ return; } e.preventDefault(); var t = this.findTargets(e); if(t.close){ if (t.item.fireEvent('beforeclose', t.item) !== false) { t.item.fireEvent('close', t.item); this.remove(t.item); } return; } if(t.item && t.item != this.activeTab){ this.setActiveTab(t.item); } }, onStripContextMenu : function(e){ e.preventDefault(); var t = this.findTargets(e); if(t.item){ this.fireEvent('contextmenu', this, t.item, e); } }, readTabs : function(removeExisting){ if(removeExisting === true){ this.items.each(function(item){ this.remove(item); }, this); } var tabs = this.el.query(this.autoTabSelector); for(var i = 0, len = tabs.length; i < len; i++){ var tab = tabs[i], title = tab.getAttribute('title'); tab.removeAttribute('title'); this.add({ title: title, contentEl: tab }); } }, initTab : function(item, index){ var before = this.strip.dom.childNodes[index], p = this.getTemplateArgs(item), el = before ? this.itemTpl.insertBefore(before, p) : this.itemTpl.append(this.strip, p), cls = 'x-tab-strip-over', tabEl = Ext.get(el); tabEl.hover(function(){ if(!item.disabled){ tabEl.addClass(cls); } }, function(){ tabEl.removeClass(cls); }); if(item.tabTip){ tabEl.child('span.x-tab-strip-text', true).qtip = item.tabTip; } item.tabEl = el; tabEl.select('a').on('click', function(e){ if(!e.getPageX()){ this.onStripMouseDown(e); } }, this, {preventDefault: true}); item.on({ scope: this, disable: this.onItemDisabled, enable: this.onItemEnabled, titlechange: this.onItemTitleChanged, iconchange: this.onItemIconChanged, beforeshow: this.onBeforeShowItem }); }, getTemplateArgs : function(item) { var cls = item.closable ? 'x-tab-strip-closable' : ''; if(item.disabled){ cls += ' x-item-disabled'; } if(item.iconCls){ cls += ' x-tab-with-icon'; } if(item.tabCls){ cls += ' ' + item.tabCls; } return { id: this.id + this.idDelimiter + item.getItemId(), text: item.title, cls: cls, iconCls: item.iconCls || '' }; }, onAdd : function(c){ Ext.TabPanel.superclass.onAdd.call(this, c); if(this.rendered){ var items = this.items; this.initTab(c, items.indexOf(c)); this.delegateUpdates(); } }, onBeforeAdd : function(item){ var existing = item.events ? (this.items.containsKey(item.getItemId()) ? item : null) : this.items.get(item); if(existing){ this.setActiveTab(item); return false; } Ext.TabPanel.superclass.onBeforeAdd.apply(this, arguments); var es = item.elements; item.elements = es ? es.replace(',header', '') : es; item.border = (item.border === true); }, onRemove : function(c){ var te = Ext.get(c.tabEl); if(te){ te.select('a').removeAllListeners(); Ext.destroy(te); } Ext.TabPanel.superclass.onRemove.call(this, c); this.stack.remove(c); delete c.tabEl; c.un('disable', this.onItemDisabled, this); c.un('enable', this.onItemEnabled, this); c.un('titlechange', this.onItemTitleChanged, this); c.un('iconchange', this.onItemIconChanged, this); c.un('beforeshow', this.onBeforeShowItem, this); if(c == this.activeTab){ var next = this.stack.next(); if(next){ this.setActiveTab(next); }else if(this.items.getCount() > 0){ this.setActiveTab(0); }else{ this.setActiveTab(null); } } if(!this.destroying){ this.delegateUpdates(); } }, onBeforeShowItem : function(item){ if(item != this.activeTab){ this.setActiveTab(item); return false; } }, onItemDisabled : function(item){ var el = this.getTabEl(item); if(el){ Ext.fly(el).addClass('x-item-disabled'); } this.stack.remove(item); }, onItemEnabled : function(item){ var el = this.getTabEl(item); if(el){ Ext.fly(el).removeClass('x-item-disabled'); } }, onItemTitleChanged : function(item){ var el = this.getTabEl(item); if(el){ Ext.fly(el).child('span.x-tab-strip-text', true).innerHTML = item.title; this.delegateUpdates(); } }, onItemIconChanged : function(item, iconCls, oldCls){ var el = this.getTabEl(item); if(el){ el = Ext.get(el); el.child('span.x-tab-strip-text').replaceClass(oldCls, iconCls); el[Ext.isEmpty(iconCls) ? 'removeClass' : 'addClass']('x-tab-with-icon'); this.delegateUpdates(); } }, getTabEl : function(item){ var c = this.getComponent(item); return c ? c.tabEl : null; }, onResize : function(){ Ext.TabPanel.superclass.onResize.apply(this, arguments); this.delegateUpdates(); }, beginUpdate : function(){ this.suspendUpdates = true; }, endUpdate : function(){ this.suspendUpdates = false; this.delegateUpdates(); }, hideTabStripItem : function(item){ item = this.getComponent(item); var el = this.getTabEl(item); if(el){ el.style.display = 'none'; this.delegateUpdates(); } this.stack.remove(item); }, unhideTabStripItem : function(item){ item = this.getComponent(item); var el = this.getTabEl(item); if(el){ el.style.display = ''; this.delegateUpdates(); } }, delegateUpdates : function(){ var rendered = this.rendered; if(this.suspendUpdates){ return; } if(this.resizeTabs && rendered){ this.autoSizeTabs(); } if(this.enableTabScroll && rendered){ this.autoScrollTabs(); } }, autoSizeTabs : function(){ var count = this.items.length, ce = this.tabPosition != 'bottom' ? 'header' : 'footer', ow = this[ce].dom.offsetWidth, aw = this[ce].dom.clientWidth; if(!this.resizeTabs || count < 1 || !aw){ return; } var each = Math.max(Math.min(Math.floor((aw-4) / count) - this.tabMargin, this.tabWidth), this.minTabWidth); this.lastTabWidth = each; var lis = this.strip.query('li:not(.x-tab-edge)'); for(var i = 0, len = lis.length; i < len; i++) { var li = lis[i], inner = Ext.fly(li).child('.x-tab-strip-inner', true), tw = li.offsetWidth, iw = inner.offsetWidth; inner.style.width = (each - (tw-iw)) + 'px'; } }, adjustBodyWidth : function(w){ if(this.header){ this.header.setWidth(w); } if(this.footer){ this.footer.setWidth(w); } return w; }, setActiveTab : function(item){ item = this.getComponent(item); if(this.fireEvent('beforetabchange', this, item, this.activeTab) === false){ return; } if(!this.rendered){ this.activeTab = item; return; } if(this.activeTab != item){ if(this.activeTab){ var oldEl = this.getTabEl(this.activeTab); if(oldEl){ Ext.fly(oldEl).removeClass('x-tab-strip-active'); } } this.activeTab = item; if(item){ var el = this.getTabEl(item); Ext.fly(el).addClass('x-tab-strip-active'); this.stack.add(item); this.layout.setActiveItem(item); this.delegateUpdates(); if(this.scrolling){ this.scrollToTab(item, this.animScroll); } } this.fireEvent('tabchange', this, item); } }, getActiveTab : function(){ return this.activeTab || null; }, getItem : function(item){ return this.getComponent(item); }, autoScrollTabs : function(){ this.pos = this.tabPosition=='bottom' ? this.footer : this.header; var count = this.items.length, ow = this.pos.dom.offsetWidth, tw = this.pos.dom.clientWidth, wrap = this.stripWrap, wd = wrap.dom, cw = wd.offsetWidth, pos = this.getScrollPos(), l = this.edge.getOffsetsTo(this.stripWrap)[0] + pos; if(!this.enableTabScroll || cw < 20){ return; } if(count == 0 || l <= tw){ wd.scrollLeft = 0; wrap.setWidth(tw); if(this.scrolling){ this.scrolling = false; this.pos.removeClass('x-tab-scrolling'); this.scrollLeft.hide(); this.scrollRight.hide(); if(Ext.isAir || Ext.isWebKit){ wd.style.marginLeft = ''; wd.style.marginRight = ''; } } }else{ if(!this.scrolling){ this.pos.addClass('x-tab-scrolling'); if(Ext.isAir || Ext.isWebKit){ wd.style.marginLeft = '18px'; wd.style.marginRight = '18px'; } } tw -= wrap.getMargins('lr'); wrap.setWidth(tw > 20 ? tw : 20); if(!this.scrolling){ if(!this.scrollLeft){ this.createScrollers(); }else{ this.scrollLeft.show(); this.scrollRight.show(); } } this.scrolling = true; if(pos > (l-tw)){ wd.scrollLeft = l-tw; }else{ this.scrollToTab(this.activeTab, false); } this.updateScrollButtons(); } }, createScrollers : function(){ this.pos.addClass('x-tab-scrolling-' + this.tabPosition); var h = this.stripWrap.dom.offsetHeight; var sl = this.pos.insertFirst({ cls:'x-tab-scroller-left' }); sl.setHeight(h); sl.addClassOnOver('x-tab-scroller-left-over'); this.leftRepeater = new Ext.util.ClickRepeater(sl, { interval : this.scrollRepeatInterval, handler: this.onScrollLeft, scope: this }); this.scrollLeft = sl; var sr = this.pos.insertFirst({ cls:'x-tab-scroller-right' }); sr.setHeight(h); sr.addClassOnOver('x-tab-scroller-right-over'); this.rightRepeater = new Ext.util.ClickRepeater(sr, { interval : this.scrollRepeatInterval, handler: this.onScrollRight, scope: this }); this.scrollRight = sr; }, getScrollWidth : function(){ return this.edge.getOffsetsTo(this.stripWrap)[0] + this.getScrollPos(); }, getScrollPos : function(){ return parseInt(this.stripWrap.dom.scrollLeft, 10) || 0; }, getScrollArea : function(){ return parseInt(this.stripWrap.dom.clientWidth, 10) || 0; }, getScrollAnim : function(){ return {duration:this.scrollDuration, callback: this.updateScrollButtons, scope: this}; }, getScrollIncrement : function(){ return this.scrollIncrement || (this.resizeTabs ? this.lastTabWidth+2 : 100); }, scrollToTab : function(item, animate){ if(!item){ return; } var el = this.getTabEl(item), pos = this.getScrollPos(), area = this.getScrollArea(), left = Ext.fly(el).getOffsetsTo(this.stripWrap)[0] + pos, right = left + el.offsetWidth; if(left < pos){ this.scrollTo(left, animate); }else if(right > (pos + area)){ this.scrollTo(right - area, animate); } }, scrollTo : function(pos, animate){ this.stripWrap.scrollTo('left', pos, animate ? this.getScrollAnim() : false); if(!animate){ this.updateScrollButtons(); } }, onWheel : function(e){ var d = e.getWheelDelta()*this.wheelIncrement*-1; e.stopEvent(); var pos = this.getScrollPos(), newpos = pos + d, sw = this.getScrollWidth()-this.getScrollArea(); var s = Math.max(0, Math.min(sw, newpos)); if(s != pos){ this.scrollTo(s, false); } }, onScrollRight : function(){ var sw = this.getScrollWidth()-this.getScrollArea(), pos = this.getScrollPos(), s = Math.min(sw, pos + this.getScrollIncrement()); if(s != pos){ this.scrollTo(s, this.animScroll); } }, onScrollLeft : function(){ var pos = this.getScrollPos(), s = Math.max(0, pos - this.getScrollIncrement()); if(s != pos){ this.scrollTo(s, this.animScroll); } }, updateScrollButtons : function(){ var pos = this.getScrollPos(); this.scrollLeft[pos === 0 ? 'addClass' : 'removeClass']('x-tab-scroller-left-disabled'); this.scrollRight[pos >= (this.getScrollWidth()-this.getScrollArea()) ? 'addClass' : 'removeClass']('x-tab-scroller-right-disabled'); }, beforeDestroy : function() { Ext.destroy(this.leftRepeater, this.rightRepeater); this.deleteMembers('strip', 'edge', 'scrollLeft', 'scrollRight', 'stripWrap'); this.activeTab = null; Ext.TabPanel.superclass.beforeDestroy.apply(this); } }); Ext.reg('tabpanel', Ext.TabPanel); Ext.TabPanel.prototype.activate = Ext.TabPanel.prototype.setActiveTab; Ext.TabPanel.AccessStack = function(){ var items = []; return { add : function(item){ items.push(item); if(items.length > 10){ items.shift(); } }, remove : function(item){ var s = []; for(var i = 0, len = items.length; i < len; i++) { if(items[i] != item){ s.push(items[i]); } } items = s; }, next : function(){ return items.pop(); } }; }; Ext.Button = Ext.extend(Ext.BoxComponent, { hidden : false, disabled : false, pressed : false, enableToggle : false, menuAlign : 'tl-bl?', type : 'button', menuClassTarget : 'tr:nth(2)', clickEvent : 'click', handleMouseEvents : true, tooltipType : 'qtip', buttonSelector : 'button:first-child', scale : 'small', iconAlign : 'left', arrowAlign : 'right', initComponent : function(){ if(this.menu){ if (Ext.isArray(this.menu)){ this.menu = { items: this.menu }; } if (Ext.isObject(this.menu)){ this.menu.ownerCt = this; } this.menu = Ext.menu.MenuMgr.get(this.menu); this.menu.ownerCt = undefined; } Ext.Button.superclass.initComponent.call(this); this.addEvents( 'click', 'toggle', 'mouseover', 'mouseout', 'menushow', 'menuhide', 'menutriggerover', 'menutriggerout' ); if(Ext.isString(this.toggleGroup)){ this.enableToggle = true; } }, getTemplateArgs : function(){ return [this.type, 'x-btn-' + this.scale + ' x-btn-icon-' + this.scale + '-' + this.iconAlign, this.getMenuClass(), this.cls, this.id]; }, setButtonClass : function(){ if(this.useSetClass){ if(!Ext.isEmpty(this.oldCls)){ this.el.removeClass([this.oldCls, 'x-btn-pressed']); } this.oldCls = (this.iconCls || this.icon) ? (this.text ? 'x-btn-text-icon' : 'x-btn-icon') : 'x-btn-noicon'; this.el.addClass([this.oldCls, this.pressed ? 'x-btn-pressed' : null]); } }, getMenuClass : function(){ return this.menu ? (this.arrowAlign != 'bottom' ? 'x-btn-arrow' : 'x-btn-arrow-bottom') : ''; }, onRender : function(ct, position){ if(!this.template){ if(!Ext.Button.buttonTemplate){ Ext.Button.buttonTemplate = new Ext.Template( '', '', '', '', '
        
        
        
      '); Ext.Button.buttonTemplate.compile(); } this.template = Ext.Button.buttonTemplate; } var btn, targs = this.getTemplateArgs(); if(position){ btn = this.template.insertBefore(position, targs, true); }else{ btn = this.template.append(ct, targs, true); } this.btnEl = btn.child(this.buttonSelector); this.mon(this.btnEl, { scope: this, focus: this.onFocus, blur: this.onBlur }); this.initButtonEl(btn, this.btnEl); Ext.ButtonToggleMgr.register(this); }, initButtonEl : function(btn, btnEl){ this.el = btn; this.setIcon(this.icon); this.setText(this.text); this.setIconClass(this.iconCls); if(Ext.isDefined(this.tabIndex)){ btnEl.dom.tabIndex = this.tabIndex; } if(this.tooltip){ this.setTooltip(this.tooltip, true); } if(this.handleMouseEvents){ this.mon(btn, { scope: this, mouseover: this.onMouseOver, mousedown: this.onMouseDown }); } if(this.menu){ this.mon(this.menu, { scope: this, show: this.onMenuShow, hide: this.onMenuHide }); } if(this.repeat){ var repeater = new Ext.util.ClickRepeater(btn, Ext.isObject(this.repeat) ? this.repeat : {}); this.mon(repeater, 'click', this.onRepeatClick, this); }else{ this.mon(btn, this.clickEvent, this.onClick, this); } }, afterRender : function(){ Ext.Button.superclass.afterRender.call(this); this.useSetClass = true; this.setButtonClass(); this.doc = Ext.getDoc(); this.doAutoWidth(); }, setIconClass : function(cls){ this.iconCls = cls; if(this.el){ this.btnEl.dom.className = ''; this.btnEl.addClass(['x-btn-text', cls || '']); this.setButtonClass(); } return this; }, setTooltip : function(tooltip, initial){ if(this.rendered){ if(!initial){ this.clearTip(); } if(Ext.isObject(tooltip)){ Ext.QuickTips.register(Ext.apply({ target: this.btnEl.id }, tooltip)); this.tooltip = tooltip; }else{ this.btnEl.dom[this.tooltipType] = tooltip; } }else{ this.tooltip = tooltip; } return this; }, clearTip : function(){ if(Ext.isObject(this.tooltip)){ Ext.QuickTips.unregister(this.btnEl); } }, beforeDestroy : function(){ if(this.rendered){ this.clearTip(); } if(this.menu && this.destroyMenu !== false) { Ext.destroy(this.btnEl, this.menu); } Ext.destroy(this.repeater); }, onDestroy : function(){ if(this.rendered){ this.doc.un('mouseover', this.monitorMouseOver, this); this.doc.un('mouseup', this.onMouseUp, this); delete this.doc; delete this.btnEl; Ext.ButtonToggleMgr.unregister(this); } Ext.Button.superclass.onDestroy.call(this); }, doAutoWidth : function(){ if(this.autoWidth !== false && this.el && this.text && this.width === undefined){ this.el.setWidth('auto'); if(Ext.isIE7 && Ext.isStrict){ var ib = this.btnEl; if(ib && ib.getWidth() > 20){ ib.clip(); ib.setWidth(Ext.util.TextMetrics.measure(ib, this.text).width+ib.getFrameWidth('lr')); } } if(this.minWidth){ if(this.el.getWidth() < this.minWidth){ this.el.setWidth(this.minWidth); } } } }, setHandler : function(handler, scope){ this.handler = handler; this.scope = scope; return this; }, setText : function(text){ this.text = text; if(this.el){ this.btnEl.update(text || ' '); this.setButtonClass(); } this.doAutoWidth(); return this; }, setIcon : function(icon){ this.icon = icon; if(this.el){ this.btnEl.setStyle('background-image', icon ? 'url(' + icon + ')' : ''); this.setButtonClass(); } return this; }, getText : function(){ return this.text; }, toggle : function(state, suppressEvent){ state = state === undefined ? !this.pressed : !!state; if(state != this.pressed){ if(this.rendered){ this.el[state ? 'addClass' : 'removeClass']('x-btn-pressed'); } this.pressed = state; if(!suppressEvent){ this.fireEvent('toggle', this, state); if(this.toggleHandler){ this.toggleHandler.call(this.scope || this, this, state); } } } return this; }, onDisable : function(){ this.onDisableChange(true); }, onEnable : function(){ this.onDisableChange(false); }, onDisableChange : function(disabled){ if(this.el){ if(!Ext.isIE6 || !this.text){ this.el[disabled ? 'addClass' : 'removeClass'](this.disabledClass); } this.el.dom.disabled = disabled; } this.disabled = disabled; }, showMenu : function(){ if(this.rendered && this.menu){ if(this.tooltip){ Ext.QuickTips.getQuickTip().cancelShow(this.btnEl); } if(this.menu.isVisible()){ this.menu.hide(); } this.menu.ownerCt = this; this.menu.show(this.el, this.menuAlign); } return this; }, hideMenu : function(){ if(this.hasVisibleMenu()){ this.menu.hide(); } return this; }, hasVisibleMenu : function(){ return this.menu && this.menu.ownerCt == this && this.menu.isVisible(); }, onRepeatClick : function(repeat, e){ this.onClick(e); }, onClick : function(e){ if(e){ e.preventDefault(); } if(e.button !== 0){ return; } if(!this.disabled){ this.doToggle(); if(this.menu && !this.hasVisibleMenu() && !this.ignoreNextClick){ this.showMenu(); } this.fireEvent('click', this, e); if(this.handler){ this.handler.call(this.scope || this, this, e); } } }, doToggle: function(){ if (this.enableToggle && (this.allowDepress !== false || !this.pressed)) { this.toggle(); } }, isMenuTriggerOver : function(e, internal){ return this.menu && !internal; }, isMenuTriggerOut : function(e, internal){ return this.menu && !internal; }, onMouseOver : function(e){ if(!this.disabled){ var internal = e.within(this.el, true); if(!internal){ this.el.addClass('x-btn-over'); if(!this.monitoringMouseOver){ this.doc.on('mouseover', this.monitorMouseOver, this); this.monitoringMouseOver = true; } this.fireEvent('mouseover', this, e); } if(this.isMenuTriggerOver(e, internal)){ this.fireEvent('menutriggerover', this, this.menu, e); } } }, monitorMouseOver : function(e){ if(e.target != this.el.dom && !e.within(this.el)){ if(this.monitoringMouseOver){ this.doc.un('mouseover', this.monitorMouseOver, this); this.monitoringMouseOver = false; } this.onMouseOut(e); } }, onMouseOut : function(e){ var internal = e.within(this.el) && e.target != this.el.dom; this.el.removeClass('x-btn-over'); this.fireEvent('mouseout', this, e); if(this.isMenuTriggerOut(e, internal)){ this.fireEvent('menutriggerout', this, this.menu, e); } }, focus : function() { this.btnEl.focus(); }, blur : function() { this.btnEl.blur(); }, onFocus : function(e){ if(!this.disabled){ this.el.addClass('x-btn-focus'); } }, onBlur : function(e){ this.el.removeClass('x-btn-focus'); }, getClickEl : function(e, isUp){ return this.el; }, onMouseDown : function(e){ if(!this.disabled && e.button === 0){ this.getClickEl(e).addClass('x-btn-click'); this.doc.on('mouseup', this.onMouseUp, this); } }, onMouseUp : function(e){ if(e.button === 0){ this.getClickEl(e, true).removeClass('x-btn-click'); this.doc.un('mouseup', this.onMouseUp, this); } }, onMenuShow : function(e){ if(this.menu.ownerCt == this){ this.menu.ownerCt = this; this.ignoreNextClick = 0; this.el.addClass('x-btn-menu-active'); this.fireEvent('menushow', this, this.menu); } }, onMenuHide : function(e){ if(this.menu.ownerCt == this){ this.el.removeClass('x-btn-menu-active'); this.ignoreNextClick = this.restoreClick.defer(250, this); this.fireEvent('menuhide', this, this.menu); delete this.menu.ownerCt; } }, restoreClick : function(){ this.ignoreNextClick = 0; } }); Ext.reg('button', Ext.Button); Ext.ButtonToggleMgr = function(){ var groups = {}; function toggleGroup(btn, state){ if(state){ var g = groups[btn.toggleGroup]; for(var i = 0, l = g.length; i < l; i++){ if(g[i] != btn){ g[i].toggle(false); } } } } return { register : function(btn){ if(!btn.toggleGroup){ return; } var g = groups[btn.toggleGroup]; if(!g){ g = groups[btn.toggleGroup] = []; } g.push(btn); btn.on('toggle', toggleGroup); }, unregister : function(btn){ if(!btn.toggleGroup){ return; } var g = groups[btn.toggleGroup]; if(g){ g.remove(btn); btn.un('toggle', toggleGroup); } }, getPressed : function(group){ var g = groups[group]; if(g){ for(var i = 0, len = g.length; i < len; i++){ if(g[i].pressed === true){ return g[i]; } } } return null; } }; }(); Ext.SplitButton = Ext.extend(Ext.Button, { arrowSelector : 'em', split: true, initComponent : function(){ Ext.SplitButton.superclass.initComponent.call(this); this.addEvents("arrowclick"); }, onRender : function(){ Ext.SplitButton.superclass.onRender.apply(this, arguments); if(this.arrowTooltip){ this.el.child(this.arrowSelector).dom[this.tooltipType] = this.arrowTooltip; } }, setArrowHandler : function(handler, scope){ this.arrowHandler = handler; this.scope = scope; }, getMenuClass : function(){ return 'x-btn-split' + (this.arrowAlign == 'bottom' ? '-bottom' : ''); }, isClickOnArrow : function(e){ if (this.arrowAlign != 'bottom') { var visBtn = this.el.child('em.x-btn-split'); var right = visBtn.getRegion().right - visBtn.getPadding('r'); return e.getPageX() > right; } else { return e.getPageY() > this.btnEl.getRegion().bottom; } }, onClick : function(e, t){ e.preventDefault(); if(!this.disabled){ if(this.isClickOnArrow(e)){ if(this.menu && !this.menu.isVisible() && !this.ignoreNextClick){ this.showMenu(); } this.fireEvent("arrowclick", this, e); if(this.arrowHandler){ this.arrowHandler.call(this.scope || this, this, e); } }else{ this.doToggle(); this.fireEvent("click", this, e); if(this.handler){ this.handler.call(this.scope || this, this, e); } } } }, isMenuTriggerOver : function(e){ return this.menu && e.target.tagName == this.arrowSelector; }, isMenuTriggerOut : function(e, internal){ return this.menu && e.target.tagName != this.arrowSelector; } }); Ext.reg('splitbutton', Ext.SplitButton); Ext.CycleButton = Ext.extend(Ext.SplitButton, { getItemText : function(item){ if(item && this.showText === true){ var text = ''; if(this.prependText){ text += this.prependText; } text += item.text; return text; } return undefined; }, setActiveItem : function(item, suppressEvent){ if(!Ext.isObject(item)){ item = this.menu.getComponent(item); } if(item){ if(!this.rendered){ this.text = this.getItemText(item); this.iconCls = item.iconCls; }else{ var t = this.getItemText(item); if(t){ this.setText(t); } this.setIconClass(item.iconCls); } this.activeItem = item; if(!item.checked){ item.setChecked(true, suppressEvent); } if(this.forceIcon){ this.setIconClass(this.forceIcon); } if(!suppressEvent){ this.fireEvent('change', this, item); } } }, getActiveItem : function(){ return this.activeItem; }, initComponent : function(){ this.addEvents( "change" ); if(this.changeHandler){ this.on('change', this.changeHandler, this.scope||this); delete this.changeHandler; } this.itemCount = this.items.length; this.menu = {cls:'x-cycle-menu', items:[]}; var checked = 0; Ext.each(this.items, function(item, i){ Ext.apply(item, { group: item.group || this.id, itemIndex: i, checkHandler: this.checkHandler, scope: this, checked: item.checked || false }); this.menu.items.push(item); if(item.checked){ checked = i; } }, this); Ext.CycleButton.superclass.initComponent.call(this); this.on('click', this.toggleSelected, this); this.setActiveItem(checked, true); }, checkHandler : function(item, pressed){ if(pressed){ this.setActiveItem(item); } }, toggleSelected : function(){ var m = this.menu; m.render(); if(!m.hasLayout){ m.doLayout(); } var nextIdx, checkItem; for (var i = 1; i < this.itemCount; i++) { nextIdx = (this.activeItem.itemIndex + i) % this.itemCount; checkItem = m.items.itemAt(nextIdx); if (!checkItem.disabled) { checkItem.setChecked(true); break; } } } }); Ext.reg('cycle', Ext.CycleButton); Ext.Toolbar = function(config){ if(Ext.isArray(config)){ config = {items: config, layout: 'toolbar'}; } else { config = Ext.apply({ layout: 'toolbar' }, config); if(config.buttons) { config.items = config.buttons; } } Ext.Toolbar.superclass.constructor.call(this, config); }; (function(){ var T = Ext.Toolbar; Ext.extend(T, Ext.Container, { defaultType: 'button', enableOverflow : false, trackMenus : true, internalDefaults: {removeMode: 'container', hideParent: true}, toolbarCls: 'x-toolbar', initComponent : function(){ T.superclass.initComponent.call(this); this.addEvents('overflowchange'); }, onRender : function(ct, position){ if(!this.el){ if(!this.autoCreate){ this.autoCreate = { cls: this.toolbarCls + ' x-small-editor' }; } this.el = ct.createChild(Ext.apply({ id: this.id },this.autoCreate), position); Ext.Toolbar.superclass.onRender.apply(this, arguments); } }, lookupComponent : function(c){ if(Ext.isString(c)){ if(c == '-'){ c = new T.Separator(); }else if(c == ' '){ c = new T.Spacer(); }else if(c == '->'){ c = new T.Fill(); }else{ c = new T.TextItem(c); } this.applyDefaults(c); }else{ if(c.isFormField || c.render){ c = this.createComponent(c); }else if(c.tag){ c = new T.Item({autoEl: c}); }else if(c.tagName){ c = new T.Item({el:c}); }else if(Ext.isObject(c)){ c = c.xtype ? this.createComponent(c) : this.constructButton(c); } } return c; }, applyDefaults : function(c){ if(!Ext.isString(c)){ c = Ext.Toolbar.superclass.applyDefaults.call(this, c); var d = this.internalDefaults; if(c.events){ Ext.applyIf(c.initialConfig, d); Ext.apply(c, d); }else{ Ext.applyIf(c, d); } } return c; }, addSeparator : function(){ return this.add(new T.Separator()); }, addSpacer : function(){ return this.add(new T.Spacer()); }, addFill : function(){ this.add(new T.Fill()); }, addElement : function(el){ return this.addItem(new T.Item({el:el})); }, addItem : function(item){ return this.add.apply(this, arguments); }, addButton : function(config){ if(Ext.isArray(config)){ var buttons = []; for(var i = 0, len = config.length; i < len; i++) { buttons.push(this.addButton(config[i])); } return buttons; } return this.add(this.constructButton(config)); }, addText : function(text){ return this.addItem(new T.TextItem(text)); }, addDom : function(config){ return this.add(new T.Item({autoEl: config})); }, addField : function(field){ return this.add(field); }, insertButton : function(index, item){ if(Ext.isArray(item)){ var buttons = []; for(var i = 0, len = item.length; i < len; i++) { buttons.push(this.insertButton(index + i, item[i])); } return buttons; } return Ext.Toolbar.superclass.insert.call(this, index, item); }, trackMenu : function(item, remove){ if(this.trackMenus && item.menu){ var method = remove ? 'mun' : 'mon'; this[method](item, 'menutriggerover', this.onButtonTriggerOver, this); this[method](item, 'menushow', this.onButtonMenuShow, this); this[method](item, 'menuhide', this.onButtonMenuHide, this); } }, constructButton : function(item){ var b = item.events ? item : this.createComponent(item, item.split ? 'splitbutton' : this.defaultType); return b; }, onAdd : function(c){ Ext.Toolbar.superclass.onAdd.call(this); this.trackMenu(c); if(this.disabled){ c.disable(); } }, onRemove : function(c){ Ext.Toolbar.superclass.onRemove.call(this); if (c == this.activeMenuBtn) { delete this.activeMenuBtn; } this.trackMenu(c, true); }, onDisable : function(){ this.items.each(function(item){ if(item.disable){ item.disable(); } }); }, onEnable : function(){ this.items.each(function(item){ if(item.enable){ item.enable(); } }); }, onButtonTriggerOver : function(btn){ if(this.activeMenuBtn && this.activeMenuBtn != btn){ this.activeMenuBtn.hideMenu(); btn.showMenu(); this.activeMenuBtn = btn; } }, onButtonMenuShow : function(btn){ this.activeMenuBtn = btn; }, onButtonMenuHide : function(btn){ delete this.activeMenuBtn; } }); Ext.reg('toolbar', Ext.Toolbar); T.Item = Ext.extend(Ext.BoxComponent, { hideParent: true, enable:Ext.emptyFn, disable:Ext.emptyFn, focus:Ext.emptyFn }); Ext.reg('tbitem', T.Item); T.Separator = Ext.extend(T.Item, { onRender : function(ct, position){ this.el = ct.createChild({tag:'span', cls:'xtb-sep'}, position); } }); Ext.reg('tbseparator', T.Separator); T.Spacer = Ext.extend(T.Item, { onRender : function(ct, position){ this.el = ct.createChild({tag:'div', cls:'xtb-spacer', style: this.width?'width:'+this.width+'px':''}, position); } }); Ext.reg('tbspacer', T.Spacer); T.Fill = Ext.extend(T.Item, { render : Ext.emptyFn, isFill : true }); Ext.reg('tbfill', T.Fill); T.TextItem = Ext.extend(T.Item, { constructor: function(config){ T.TextItem.superclass.constructor.call(this, Ext.isString(config) ? {text: config} : config); }, onRender : function(ct, position) { this.autoEl = {cls: 'xtb-text', html: this.text || ''}; T.TextItem.superclass.onRender.call(this, ct, position); }, setText : function(t) { if(this.rendered){ this.el.update(t); }else{ this.text = t; } } }); Ext.reg('tbtext', T.TextItem); T.Button = Ext.extend(Ext.Button, {}); T.SplitButton = Ext.extend(Ext.SplitButton, {}); Ext.reg('tbbutton', T.Button); Ext.reg('tbsplit', T.SplitButton); })(); Ext.ButtonGroup = Ext.extend(Ext.Panel, { baseCls: 'x-btn-group', layout:'table', defaultType: 'button', frame: true, internalDefaults: {removeMode: 'container', hideParent: true}, initComponent : function(){ this.layoutConfig = this.layoutConfig || {}; Ext.applyIf(this.layoutConfig, { columns : this.columns }); if(!this.title){ this.addClass('x-btn-group-notitle'); } this.on('afterlayout', this.onAfterLayout, this); Ext.ButtonGroup.superclass.initComponent.call(this); }, applyDefaults : function(c){ c = Ext.ButtonGroup.superclass.applyDefaults.call(this, c); var d = this.internalDefaults; if(c.events){ Ext.applyIf(c.initialConfig, d); Ext.apply(c, d); }else{ Ext.applyIf(c, d); } return c; }, onAfterLayout : function(){ var bodyWidth = this.body.getFrameWidth('lr') + this.body.dom.firstChild.offsetWidth; this.body.setWidth(bodyWidth); this.el.setWidth(bodyWidth + this.getFrameWidth()); } }); Ext.reg('buttongroup', Ext.ButtonGroup); (function() { var T = Ext.Toolbar; Ext.PagingToolbar = Ext.extend(Ext.Toolbar, { pageSize : 20, displayMsg : 'Displaying {0} - {1} of {2}', emptyMsg : 'No data to display', beforePageText : 'Page', afterPageText : 'of {0}', firstText : 'First Page', prevText : 'Previous Page', nextText : 'Next Page', lastText : 'Last Page', refreshText : 'Refresh', initComponent : function(){ var pagingItems = [this.first = new T.Button({ tooltip: this.firstText, overflowText: this.firstText, iconCls: 'x-tbar-page-first', disabled: true, handler: this.moveFirst, scope: this }), this.prev = new T.Button({ tooltip: this.prevText, overflowText: this.prevText, iconCls: 'x-tbar-page-prev', disabled: true, handler: this.movePrevious, scope: this }), '-', this.beforePageText, this.inputItem = new Ext.form.NumberField({ cls: 'x-tbar-page-number', allowDecimals: false, allowNegative: false, enableKeyEvents: true, selectOnFocus: true, submitValue: false, listeners: { scope: this, keydown: this.onPagingKeyDown, blur: this.onPagingBlur } }), this.afterTextItem = new T.TextItem({ text: String.format(this.afterPageText, 1) }), '-', this.next = new T.Button({ tooltip: this.nextText, overflowText: this.nextText, iconCls: 'x-tbar-page-next', disabled: true, handler: this.moveNext, scope: this }), this.last = new T.Button({ tooltip: this.lastText, overflowText: this.lastText, iconCls: 'x-tbar-page-last', disabled: true, handler: this.moveLast, scope: this }), '-', this.refresh = new T.Button({ tooltip: this.refreshText, overflowText: this.refreshText, iconCls: 'x-tbar-loading', handler: this.doRefresh, scope: this })]; var userItems = this.items || this.buttons || []; if (this.prependButtons) { this.items = userItems.concat(pagingItems); }else{ this.items = pagingItems.concat(userItems); } delete this.buttons; if(this.displayInfo){ this.items.push('->'); this.items.push(this.displayItem = new T.TextItem({})); } Ext.PagingToolbar.superclass.initComponent.call(this); this.addEvents( 'change', 'beforechange' ); this.on('afterlayout', this.onFirstLayout, this, {single: true}); this.cursor = 0; this.bindStore(this.store, true); }, onFirstLayout : function(){ if(this.dsLoaded){ this.onLoad.apply(this, this.dsLoaded); } }, updateInfo : function(){ if(this.displayItem){ var count = this.store.getCount(); var msg = count == 0 ? this.emptyMsg : String.format( this.displayMsg, this.cursor+1, this.cursor+count, this.store.getTotalCount() ); this.displayItem.setText(msg); } }, onLoad : function(store, r, o){ if(!this.rendered){ this.dsLoaded = [store, r, o]; return; } var p = this.getParams(); this.cursor = (o.params && o.params[p.start]) ? o.params[p.start] : 0; var d = this.getPageData(), ap = d.activePage, ps = d.pages; this.afterTextItem.setText(String.format(this.afterPageText, d.pages)); this.inputItem.setValue(ap); this.first.setDisabled(ap == 1); this.prev.setDisabled(ap == 1); this.next.setDisabled(ap == ps); this.last.setDisabled(ap == ps); this.refresh.enable(); this.updateInfo(); this.fireEvent('change', this, d); }, getPageData : function(){ var total = this.store.getTotalCount(); return { total : total, activePage : Math.ceil((this.cursor+this.pageSize)/this.pageSize), pages : total < this.pageSize ? 1 : Math.ceil(total/this.pageSize) }; }, changePage : function(page){ this.doLoad(((page-1) * this.pageSize).constrain(0, this.store.getTotalCount())); }, onLoadError : function(){ if(!this.rendered){ return; } this.refresh.enable(); }, readPage : function(d){ var v = this.inputItem.getValue(), pageNum; if (!v || isNaN(pageNum = parseInt(v, 10))) { this.inputItem.setValue(d.activePage); return false; } return pageNum; }, onPagingFocus : function(){ this.inputItem.select(); }, onPagingBlur : function(e){ this.inputItem.setValue(this.getPageData().activePage); }, onPagingKeyDown : function(field, e){ var k = e.getKey(), d = this.getPageData(), pageNum; if (k == e.RETURN) { e.stopEvent(); pageNum = this.readPage(d); if(pageNum !== false){ pageNum = Math.min(Math.max(1, pageNum), d.pages) - 1; this.doLoad(pageNum * this.pageSize); } }else if (k == e.HOME || k == e.END){ e.stopEvent(); pageNum = k == e.HOME ? 1 : d.pages; field.setValue(pageNum); }else if (k == e.UP || k == e.PAGEUP || k == e.DOWN || k == e.PAGEDOWN){ e.stopEvent(); if((pageNum = this.readPage(d))){ var increment = e.shiftKey ? 10 : 1; if(k == e.DOWN || k == e.PAGEDOWN){ increment *= -1; } pageNum += increment; if(pageNum >= 1 & pageNum <= d.pages){ field.setValue(pageNum); } } } }, getParams : function(){ return this.paramNames || this.store.paramNames; }, beforeLoad : function(){ if(this.rendered && this.refresh){ this.refresh.disable(); } }, doLoad : function(start){ var o = {}, pn = this.getParams(); o[pn.start] = start; o[pn.limit] = this.pageSize; if(this.fireEvent('beforechange', this, o) !== false){ this.store.load({params:o}); } }, moveFirst : function(){ this.doLoad(0); }, movePrevious : function(){ this.doLoad(Math.max(0, this.cursor-this.pageSize)); }, moveNext : function(){ this.doLoad(this.cursor+this.pageSize); }, moveLast : function(){ var total = this.store.getTotalCount(), extra = total % this.pageSize; this.doLoad(extra ? (total - extra) : total - this.pageSize); }, doRefresh : function(){ this.doLoad(this.cursor); }, bindStore : function(store, initial){ var doLoad; if(!initial && this.store){ if(store !== this.store && this.store.autoDestroy){ this.store.destroy(); }else{ this.store.un('beforeload', this.beforeLoad, this); this.store.un('load', this.onLoad, this); this.store.un('exception', this.onLoadError, this); } if(!store){ this.store = null; } } if(store){ store = Ext.StoreMgr.lookup(store); store.on({ scope: this, beforeload: this.beforeLoad, load: this.onLoad, exception: this.onLoadError }); doLoad = true; } this.store = store; if(doLoad){ this.onLoad(store, null, {}); } }, unbind : function(store){ this.bindStore(null); }, bind : function(store){ this.bindStore(store); }, onDestroy : function(){ this.bindStore(null); Ext.PagingToolbar.superclass.onDestroy.call(this); } }); })(); Ext.reg('paging', Ext.PagingToolbar); Ext.History = (function () { var iframe, hiddenField; var ready = false; var currentToken; function getHash() { var href = location.href, i = href.indexOf("#"), hash = i >= 0 ? href.substr(i + 1) : null; if (Ext.isGecko) { hash = decodeURIComponent(hash); } return hash; } function doSave() { hiddenField.value = currentToken; } function handleStateChange(token) { currentToken = token; Ext.History.fireEvent('change', token); } function updateIFrame (token) { var html = ['
      ',Ext.util.Format.htmlEncode(token),'
      '].join(''); try { var doc = iframe.contentWindow.document; doc.open(); doc.write(html); doc.close(); return true; } catch (e) { return false; } } function checkIFrame() { if (!iframe.contentWindow || !iframe.contentWindow.document) { setTimeout(checkIFrame, 10); return; } var doc = iframe.contentWindow.document; var elem = doc.getElementById("state"); var token = elem ? elem.innerText : null; var hash = getHash(); setInterval(function () { doc = iframe.contentWindow.document; elem = doc.getElementById("state"); var newtoken = elem ? elem.innerText : null; var newHash = getHash(); if (newtoken !== token) { token = newtoken; handleStateChange(token); location.hash = token; hash = token; doSave(); } else if (newHash !== hash) { hash = newHash; updateIFrame(newHash); } }, 50); ready = true; Ext.History.fireEvent('ready', Ext.History); } function startUp() { currentToken = hiddenField.value ? hiddenField.value : getHash(); if (Ext.isIE) { checkIFrame(); } else { var hash = getHash(); setInterval(function () { var newHash = getHash(); if (newHash !== hash) { hash = newHash; handleStateChange(hash); doSave(); } }, 50); ready = true; Ext.History.fireEvent('ready', Ext.History); } } return { fieldId: 'x-history-field', iframeId: 'x-history-frame', events:{}, init: function (onReady, scope) { if(ready) { Ext.callback(onReady, scope, [this]); return; } if(!Ext.isReady){ Ext.onReady(function(){ Ext.History.init(onReady, scope); }); return; } hiddenField = Ext.getDom(Ext.History.fieldId); if (Ext.isIE) { iframe = Ext.getDom(Ext.History.iframeId); } this.addEvents( 'ready', 'change' ); if(onReady){ this.on('ready', onReady, scope, {single:true}); } startUp(); }, add: function (token, preventDup) { if(preventDup !== false){ if(this.getToken() == token){ return true; } } if (Ext.isIE) { return updateIFrame(token); } else { location.hash = token; return true; } }, back: function(){ history.go(-1); }, forward: function(){ history.go(1); }, getToken: function() { return ready ? currentToken : getHash(); } }; })(); Ext.apply(Ext.History, new Ext.util.Observable()); Ext.Tip = Ext.extend(Ext.Panel, { minWidth : 40, maxWidth : 300, shadow : "sides", defaultAlign : "tl-bl?", autoRender: true, quickShowInterval : 250, frame:true, hidden:true, baseCls: 'x-tip', floating:{shadow:true,shim:true,useDisplay:true,constrain:false}, autoHeight:true, closeAction: 'hide', initComponent : function(){ Ext.Tip.superclass.initComponent.call(this); if(this.closable && !this.title){ this.elements += ',header'; } }, afterRender : function(){ Ext.Tip.superclass.afterRender.call(this); if(this.closable){ this.addTool({ id: 'close', handler: this[this.closeAction], scope: this }); } }, showAt : function(xy){ Ext.Tip.superclass.show.call(this); if(this.measureWidth !== false && (!this.initialConfig || typeof this.initialConfig.width != 'number')){ this.doAutoWidth(); } if(this.constrainPosition){ xy = this.el.adjustForConstraints(xy); } this.setPagePosition(xy[0], xy[1]); }, doAutoWidth : function(adjust){ adjust = adjust || 0; var bw = this.body.getTextWidth(); if(this.title){ bw = Math.max(bw, this.header.child('span').getTextWidth(this.title)); } bw += this.getFrameWidth() + (this.closable ? 20 : 0) + this.body.getPadding("lr") + adjust; this.setWidth(bw.constrain(this.minWidth, this.maxWidth)); if(Ext.isIE7 && !this.repainted){ this.el.repaint(); this.repainted = true; } }, showBy : function(el, pos){ if(!this.rendered){ this.render(Ext.getBody()); } this.showAt(this.el.getAlignToXY(el, pos || this.defaultAlign)); }, initDraggable : function(){ this.dd = new Ext.Tip.DD(this, typeof this.draggable == 'boolean' ? null : this.draggable); this.header.addClass('x-tip-draggable'); } }); Ext.reg('tip', Ext.Tip); Ext.Tip.DD = function(tip, config){ Ext.apply(this, config); this.tip = tip; Ext.Tip.DD.superclass.constructor.call(this, tip.el.id, 'WindowDD-'+tip.id); this.setHandleElId(tip.header.id); this.scroll = false; }; Ext.extend(Ext.Tip.DD, Ext.dd.DD, { moveOnly:true, scroll:false, headerOffsets:[100, 25], startDrag : function(){ this.tip.el.disableShadow(); }, endDrag : function(e){ this.tip.el.enableShadow(true); } }); Ext.ToolTip = Ext.extend(Ext.Tip, { showDelay : 500, hideDelay : 200, dismissDelay : 5000, trackMouse : false, anchorToTarget : true, anchorOffset : 0, targetCounter : 0, constrainPosition : false, initComponent : function(){ Ext.ToolTip.superclass.initComponent.call(this); this.lastActive = new Date(); this.initTarget(this.target); this.origAnchor = this.anchor; }, onRender : function(ct, position){ Ext.ToolTip.superclass.onRender.call(this, ct, position); this.anchorCls = 'x-tip-anchor-' + this.getAnchorPosition(); this.anchorEl = this.el.createChild({ cls: 'x-tip-anchor ' + this.anchorCls }); }, afterRender : function(){ Ext.ToolTip.superclass.afterRender.call(this); this.anchorEl.setStyle('z-index', this.el.getZIndex() + 1).setVisibilityMode(Ext.Element.DISPLAY); }, initTarget : function(target){ var t; if((t = Ext.get(target))){ if(this.target){ var tg = Ext.get(this.target); this.mun(tg, 'mouseover', this.onTargetOver, this); this.mun(tg, 'mouseout', this.onTargetOut, this); this.mun(tg, 'mousemove', this.onMouseMove, this); } this.mon(t, { mouseover: this.onTargetOver, mouseout: this.onTargetOut, mousemove: this.onMouseMove, scope: this }); this.target = t; } if(this.anchor){ this.anchorTarget = this.target; } }, onMouseMove : function(e){ var t = this.delegate ? e.getTarget(this.delegate) : this.triggerElement = true; if (t) { this.targetXY = e.getXY(); if (t === this.triggerElement) { if(!this.hidden && this.trackMouse){ this.setPagePosition(this.getTargetXY()); } } else { this.hide(); this.lastActive = new Date(0); this.onTargetOver(e); } } else if (!this.closable && this.isVisible()) { this.hide(); } }, getTargetXY : function(){ if(this.delegate){ this.anchorTarget = this.triggerElement; } if(this.anchor){ this.targetCounter++; var offsets = this.getOffsets(), xy = (this.anchorToTarget && !this.trackMouse) ? this.el.getAlignToXY(this.anchorTarget, this.getAnchorAlign()) : this.targetXY, dw = Ext.lib.Dom.getViewWidth() - 5, dh = Ext.lib.Dom.getViewHeight() - 5, de = document.documentElement, bd = document.body, scrollX = (de.scrollLeft || bd.scrollLeft || 0) + 5, scrollY = (de.scrollTop || bd.scrollTop || 0) + 5, axy = [xy[0] + offsets[0], xy[1] + offsets[1]], sz = this.getSize(); this.anchorEl.removeClass(this.anchorCls); if(this.targetCounter < 2){ if(axy[0] < scrollX){ if(this.anchorToTarget){ this.defaultAlign = 'l-r'; if(this.mouseOffset){this.mouseOffset[0] *= -1;} } this.anchor = 'left'; return this.getTargetXY(); } if(axy[0]+sz.width > dw){ if(this.anchorToTarget){ this.defaultAlign = 'r-l'; if(this.mouseOffset){this.mouseOffset[0] *= -1;} } this.anchor = 'right'; return this.getTargetXY(); } if(axy[1] < scrollY){ if(this.anchorToTarget){ this.defaultAlign = 't-b'; if(this.mouseOffset){this.mouseOffset[1] *= -1;} } this.anchor = 'top'; return this.getTargetXY(); } if(axy[1]+sz.height > dh){ if(this.anchorToTarget){ this.defaultAlign = 'b-t'; if(this.mouseOffset){this.mouseOffset[1] *= -1;} } this.anchor = 'bottom'; return this.getTargetXY(); } } this.anchorCls = 'x-tip-anchor-'+this.getAnchorPosition(); this.anchorEl.addClass(this.anchorCls); this.targetCounter = 0; return axy; }else{ var mouseOffset = this.getMouseOffset(); return [this.targetXY[0]+mouseOffset[0], this.targetXY[1]+mouseOffset[1]]; } }, getMouseOffset : function(){ var offset = this.anchor ? [0,0] : [15,18]; if(this.mouseOffset){ offset[0] += this.mouseOffset[0]; offset[1] += this.mouseOffset[1]; } return offset; }, getAnchorPosition : function(){ if(this.anchor){ this.tipAnchor = this.anchor.charAt(0); }else{ var m = this.defaultAlign.match(/^([a-z]+)-([a-z]+)(\?)?$/); if(!m){ throw 'AnchorTip.defaultAlign is invalid'; } this.tipAnchor = m[1].charAt(0); } switch(this.tipAnchor){ case 't': return 'top'; case 'b': return 'bottom'; case 'r': return 'right'; } return 'left'; }, getAnchorAlign : function(){ switch(this.anchor){ case 'top' : return 'tl-bl'; case 'left' : return 'tl-tr'; case 'right': return 'tr-tl'; default : return 'bl-tl'; } }, getOffsets : function(){ var offsets, ap = this.getAnchorPosition().charAt(0); if(this.anchorToTarget && !this.trackMouse){ switch(ap){ case 't': offsets = [0, 9]; break; case 'b': offsets = [0, -13]; break; case 'r': offsets = [-13, 0]; break; default: offsets = [9, 0]; break; } }else{ switch(ap){ case 't': offsets = [-15-this.anchorOffset, 30]; break; case 'b': offsets = [-19-this.anchorOffset, -13-this.el.dom.offsetHeight]; break; case 'r': offsets = [-15-this.el.dom.offsetWidth, -13-this.anchorOffset]; break; default: offsets = [25, -13-this.anchorOffset]; break; } } var mouseOffset = this.getMouseOffset(); offsets[0] += mouseOffset[0]; offsets[1] += mouseOffset[1]; return offsets; }, onTargetOver : function(e){ if(this.disabled || e.within(this.target.dom, true)){ return; } var t = e.getTarget(this.delegate); if (t) { this.triggerElement = t; this.clearTimer('hide'); this.targetXY = e.getXY(); this.delayShow(); } }, delayShow : function(){ if(this.hidden && !this.showTimer){ if(this.lastActive.getElapsed() < this.quickShowInterval){ this.show(); }else{ this.showTimer = this.show.defer(this.showDelay, this); } }else if(!this.hidden && this.autoHide !== false){ this.show(); } }, onTargetOut : function(e){ if(this.disabled || e.within(this.target.dom, true)){ return; } this.clearTimer('show'); if(this.autoHide !== false){ this.delayHide(); } }, delayHide : function(){ if(!this.hidden && !this.hideTimer){ this.hideTimer = this.hide.defer(this.hideDelay, this); } }, hide: function(){ this.clearTimer('dismiss'); this.lastActive = new Date(); if(this.anchorEl){ this.anchorEl.hide(); } Ext.ToolTip.superclass.hide.call(this); delete this.triggerElement; }, show : function(){ if(this.anchor){ this.showAt([-1000,-1000]); this.origConstrainPosition = this.constrainPosition; this.constrainPosition = false; this.anchor = this.origAnchor; } this.showAt(this.getTargetXY()); if(this.anchor){ this.anchorEl.show(); this.syncAnchor(); this.constrainPosition = this.origConstrainPosition; }else{ this.anchorEl.hide(); } }, showAt : function(xy){ this.lastActive = new Date(); this.clearTimers(); Ext.ToolTip.superclass.showAt.call(this, xy); if(this.dismissDelay && this.autoHide !== false){ this.dismissTimer = this.hide.defer(this.dismissDelay, this); } if(this.anchor && !this.anchorEl.isVisible()){ this.syncAnchor(); this.anchorEl.show(); }else{ this.anchorEl.hide(); } }, syncAnchor : function(){ var anchorPos, targetPos, offset; switch(this.tipAnchor.charAt(0)){ case 't': anchorPos = 'b'; targetPos = 'tl'; offset = [20+this.anchorOffset, 2]; break; case 'r': anchorPos = 'l'; targetPos = 'tr'; offset = [-2, 11+this.anchorOffset]; break; case 'b': anchorPos = 't'; targetPos = 'bl'; offset = [20+this.anchorOffset, -2]; break; default: anchorPos = 'r'; targetPos = 'tl'; offset = [2, 11+this.anchorOffset]; break; } this.anchorEl.alignTo(this.el, anchorPos+'-'+targetPos, offset); }, setPagePosition : function(x, y){ Ext.ToolTip.superclass.setPagePosition.call(this, x, y); if(this.anchor){ this.syncAnchor(); } }, clearTimer : function(name){ name = name + 'Timer'; clearTimeout(this[name]); delete this[name]; }, clearTimers : function(){ this.clearTimer('show'); this.clearTimer('dismiss'); this.clearTimer('hide'); }, onShow : function(){ Ext.ToolTip.superclass.onShow.call(this); Ext.getDoc().on('mousedown', this.onDocMouseDown, this); }, onHide : function(){ Ext.ToolTip.superclass.onHide.call(this); Ext.getDoc().un('mousedown', this.onDocMouseDown, this); }, onDocMouseDown : function(e){ if(this.autoHide !== true && !this.closable && !e.within(this.el.dom)){ this.disable(); this.doEnable.defer(100, this); } }, doEnable : function(){ if(!this.isDestroyed){ this.enable(); } }, onDisable : function(){ this.clearTimers(); this.hide(); }, adjustPosition : function(x, y){ if(this.constrainPosition){ var ay = this.targetXY[1], h = this.getSize().height; if(y <= ay && (y+h) >= ay){ y = ay-h-5; } } return {x : x, y: y}; }, beforeDestroy : function(){ this.clearTimers(); Ext.destroy(this.anchorEl); delete this.anchorEl; delete this.target; delete this.anchorTarget; delete this.triggerElement; Ext.ToolTip.superclass.beforeDestroy.call(this); }, onDestroy : function(){ Ext.getDoc().un('mousedown', this.onDocMouseDown, this); Ext.ToolTip.superclass.onDestroy.call(this); } }); Ext.reg('tooltip', Ext.ToolTip); Ext.QuickTip = Ext.extend(Ext.ToolTip, { interceptTitles : false, tagConfig : { namespace : "ext", attribute : "qtip", width : "qwidth", target : "target", title : "qtitle", hide : "hide", cls : "qclass", align : "qalign", anchor : "anchor" }, initComponent : function(){ this.target = this.target || Ext.getDoc(); this.targets = this.targets || {}; Ext.QuickTip.superclass.initComponent.call(this); }, register : function(config){ var cs = Ext.isArray(config) ? config : arguments; for(var i = 0, len = cs.length; i < len; i++){ var c = cs[i]; var target = c.target; if(target){ if(Ext.isArray(target)){ for(var j = 0, jlen = target.length; j < jlen; j++){ this.targets[Ext.id(target[j])] = c; } } else{ this.targets[Ext.id(target)] = c; } } } }, unregister : function(el){ delete this.targets[Ext.id(el)]; }, cancelShow: function(el){ var at = this.activeTarget; el = Ext.get(el).dom; if(this.isVisible()){ if(at && at.el == el){ this.hide(); } }else if(at && at.el == el){ this.clearTimer('show'); } }, getTipCfg: function(e) { var t = e.getTarget(), ttp, cfg; if(this.interceptTitles && t.title && Ext.isString(t.title)){ ttp = t.title; t.qtip = ttp; t.removeAttribute("title"); e.preventDefault(); }else{ cfg = this.tagConfig; ttp = t.qtip || Ext.fly(t).getAttribute(cfg.attribute, cfg.namespace); } return ttp; }, onTargetOver : function(e){ if(this.disabled){ return; } this.targetXY = e.getXY(); var t = e.getTarget(); if(!t || t.nodeType !== 1 || t == document || t == document.body){ return; } if(this.activeTarget && ((t == this.activeTarget.el) || Ext.fly(this.activeTarget.el).contains(t))){ this.clearTimer('hide'); this.show(); return; } if(t && this.targets[t.id]){ this.activeTarget = this.targets[t.id]; this.activeTarget.el = t; this.anchor = this.activeTarget.anchor; if(this.anchor){ this.anchorTarget = t; } this.delayShow(); return; } var ttp, et = Ext.fly(t), cfg = this.tagConfig, ns = cfg.namespace; if(ttp = this.getTipCfg(e)){ var autoHide = et.getAttribute(cfg.hide, ns); this.activeTarget = { el: t, text: ttp, width: et.getAttribute(cfg.width, ns), autoHide: autoHide != "user" && autoHide !== 'false', title: et.getAttribute(cfg.title, ns), cls: et.getAttribute(cfg.cls, ns), align: et.getAttribute(cfg.align, ns) }; this.anchor = et.getAttribute(cfg.anchor, ns); if(this.anchor){ this.anchorTarget = t; } this.delayShow(); } }, onTargetOut : function(e){ if (this.activeTarget && e.within(this.activeTarget.el) && !this.getTipCfg(e)) { return; } this.clearTimer('show'); if(this.autoHide !== false){ this.delayHide(); } }, showAt : function(xy){ var t = this.activeTarget; if(t){ if(!this.rendered){ this.render(Ext.getBody()); this.activeTarget = t; } if(t.width){ this.setWidth(t.width); this.body.setWidth(this.adjustBodyWidth(t.width - this.getFrameWidth())); this.measureWidth = false; } else{ this.measureWidth = true; } this.setTitle(t.title || ''); this.body.update(t.text); this.autoHide = t.autoHide; this.dismissDelay = t.dismissDelay || this.dismissDelay; if(this.lastCls){ this.el.removeClass(this.lastCls); delete this.lastCls; } if(t.cls){ this.el.addClass(t.cls); this.lastCls = t.cls; } if(this.anchor){ this.constrainPosition = false; }else if(t.align){ xy = this.el.getAlignToXY(t.el, t.align); this.constrainPosition = false; }else{ this.constrainPosition = true; } } Ext.QuickTip.superclass.showAt.call(this, xy); }, hide: function(){ delete this.activeTarget; Ext.QuickTip.superclass.hide.call(this); } }); Ext.reg('quicktip', Ext.QuickTip); Ext.QuickTips = function(){ var tip, disabled = false; return { init : function(autoRender){ if(!tip){ if(!Ext.isReady){ Ext.onReady(function(){ Ext.QuickTips.init(autoRender); }); return; } tip = new Ext.QuickTip({ elements:'header,body', disabled: disabled }); if(autoRender !== false){ tip.render(Ext.getBody()); } } }, ddDisable : function(){ if(tip && !disabled){ tip.disable(); } }, ddEnable : function(){ if(tip && !disabled){ tip.enable(); } }, enable : function(){ if(tip){ tip.enable(); } disabled = false; }, disable : function(){ if(tip){ tip.disable(); } disabled = true; }, isEnabled : function(){ return tip !== undefined && !tip.disabled; }, getQuickTip : function(){ return tip; }, register : function(){ tip.register.apply(tip, arguments); }, unregister : function(){ tip.unregister.apply(tip, arguments); }, tips : function(){ tip.register.apply(tip, arguments); } }; }(); Ext.slider.Tip = Ext.extend(Ext.Tip, { minWidth: 10, offsets : [0, -10], init: function(slider) { slider.on({ scope : this, dragstart: this.onSlide, drag : this.onSlide, dragend : this.hide, destroy : this.destroy }); }, onSlide : function(slider, e, thumb) { this.show(); this.body.update(this.getText(thumb)); this.doAutoWidth(); this.el.alignTo(thumb.el, 'b-t?', this.offsets); }, getText : function(thumb) { return String(thumb.value); } }); Ext.ux.SliderTip = Ext.slider.Tip; Ext.tree.TreePanel = Ext.extend(Ext.Panel, { rootVisible : true, animate : Ext.enableFx, lines : true, enableDD : false, hlDrop : Ext.enableFx, pathSeparator : '/', bubbleEvents : [], initComponent : function(){ Ext.tree.TreePanel.superclass.initComponent.call(this); if(!this.eventModel){ this.eventModel = new Ext.tree.TreeEventModel(this); } var l = this.loader; if(!l){ l = new Ext.tree.TreeLoader({ dataUrl: this.dataUrl, requestMethod: this.requestMethod }); }else if(Ext.isObject(l) && !l.load){ l = new Ext.tree.TreeLoader(l); } this.loader = l; this.nodeHash = {}; if(this.root){ var r = this.root; delete this.root; this.setRootNode(r); } this.addEvents( 'append', 'remove', 'movenode', 'insert', 'beforeappend', 'beforeremove', 'beforemovenode', 'beforeinsert', 'beforeload', 'load', 'textchange', 'beforeexpandnode', 'beforecollapsenode', 'expandnode', 'disabledchange', 'collapsenode', 'beforeclick', 'click', 'containerclick', 'checkchange', 'beforedblclick', 'dblclick', 'containerdblclick', 'contextmenu', 'containercontextmenu', 'beforechildrenrendered', 'startdrag', 'enddrag', 'dragdrop', 'beforenodedrop', 'nodedrop', 'nodedragover' ); if(this.singleExpand){ this.on('beforeexpandnode', this.restrictExpand, this); } }, proxyNodeEvent : function(ename, a1, a2, a3, a4, a5, a6){ if(ename == 'collapse' || ename == 'expand' || ename == 'beforecollapse' || ename == 'beforeexpand' || ename == 'move' || ename == 'beforemove'){ ename = ename+'node'; } return this.fireEvent(ename, a1, a2, a3, a4, a5, a6); }, getRootNode : function(){ return this.root; }, setRootNode : function(node){ this.destroyRoot(); if(!node.render){ node = this.loader.createNode(node); } this.root = node; node.ownerTree = this; node.isRoot = true; this.registerNode(node); if(!this.rootVisible){ var uiP = node.attributes.uiProvider; node.ui = uiP ? new uiP(node) : new Ext.tree.RootTreeNodeUI(node); } if(this.innerCt){ this.clearInnerCt(); this.renderRoot(); } return node; }, clearInnerCt : function(){ this.innerCt.update(''); }, renderRoot : function(){ this.root.render(); if(!this.rootVisible){ this.root.renderChildren(); } }, getNodeById : function(id){ return this.nodeHash[id]; }, registerNode : function(node){ this.nodeHash[node.id] = node; }, unregisterNode : function(node){ delete this.nodeHash[node.id]; }, toString : function(){ return '[Tree'+(this.id?' '+this.id:'')+']'; }, restrictExpand : function(node){ var p = node.parentNode; if(p){ if(p.expandedChild && p.expandedChild.parentNode == p){ p.expandedChild.collapse(); } p.expandedChild = node; } }, getChecked : function(a, startNode){ startNode = startNode || this.root; var r = []; var f = function(){ if(this.attributes.checked){ r.push(!a ? this : (a == 'id' ? this.id : this.attributes[a])); } }; startNode.cascade(f); return r; }, getLoader : function(){ return this.loader; }, expandAll : function(){ this.root.expand(true); }, collapseAll : function(){ this.root.collapse(true); }, getSelectionModel : function(){ if(!this.selModel){ this.selModel = new Ext.tree.DefaultSelectionModel(); } return this.selModel; }, expandPath : function(path, attr, callback){ if(Ext.isEmpty(path)){ if(callback){ callback(false, undefined); } return; } attr = attr || 'id'; var keys = path.split(this.pathSeparator); var curNode = this.root; if(curNode.attributes[attr] != keys[1]){ if(callback){ callback(false, null); } return; } var index = 1; var f = function(){ if(++index == keys.length){ if(callback){ callback(true, curNode); } return; } var c = curNode.findChild(attr, keys[index]); if(!c){ if(callback){ callback(false, curNode); } return; } curNode = c; c.expand(false, false, f); }; curNode.expand(false, false, f); }, selectPath : function(path, attr, callback){ if(Ext.isEmpty(path)){ if(callback){ callback(false, undefined); } return; } attr = attr || 'id'; var keys = path.split(this.pathSeparator), v = keys.pop(); if(keys.length > 1){ var f = function(success, node){ if(success && node){ var n = node.findChild(attr, v); if(n){ n.select(); if(callback){ callback(true, n); } }else if(callback){ callback(false, n); } }else{ if(callback){ callback(false, n); } } }; this.expandPath(keys.join(this.pathSeparator), attr, f); }else{ this.root.select(); if(callback){ callback(true, this.root); } } }, getTreeEl : function(){ return this.body; }, onRender : function(ct, position){ Ext.tree.TreePanel.superclass.onRender.call(this, ct, position); this.el.addClass('x-tree'); this.innerCt = this.body.createChild({tag:'ul', cls:'x-tree-root-ct ' + (this.useArrows ? 'x-tree-arrows' : this.lines ? 'x-tree-lines' : 'x-tree-no-lines')}); }, initEvents : function(){ Ext.tree.TreePanel.superclass.initEvents.call(this); if(this.containerScroll){ Ext.dd.ScrollManager.register(this.body); } if((this.enableDD || this.enableDrop) && !this.dropZone){ this.dropZone = new Ext.tree.TreeDropZone(this, this.dropConfig || { ddGroup: this.ddGroup || 'TreeDD', appendOnly: this.ddAppendOnly === true }); } if((this.enableDD || this.enableDrag) && !this.dragZone){ this.dragZone = new Ext.tree.TreeDragZone(this, this.dragConfig || { ddGroup: this.ddGroup || 'TreeDD', scroll: this.ddScroll }); } this.getSelectionModel().init(this); }, afterRender : function(){ Ext.tree.TreePanel.superclass.afterRender.call(this); this.renderRoot(); }, beforeDestroy : function(){ if(this.rendered){ Ext.dd.ScrollManager.unregister(this.body); Ext.destroy(this.dropZone, this.dragZone); } this.destroyRoot(); Ext.destroy(this.loader); this.nodeHash = this.root = this.loader = null; Ext.tree.TreePanel.superclass.beforeDestroy.call(this); }, destroyRoot : function(){ if(this.root && this.root.destroy){ this.root.destroy(true); } } }); Ext.tree.TreePanel.nodeTypes = {}; Ext.reg('treepanel', Ext.tree.TreePanel);Ext.tree.TreeEventModel = function(tree){ this.tree = tree; this.tree.on('render', this.initEvents, this); }; Ext.tree.TreeEventModel.prototype = { initEvents : function(){ var t = this.tree; if(t.trackMouseOver !== false){ t.mon(t.innerCt, { scope: this, mouseover: this.delegateOver, mouseout: this.delegateOut }); } t.mon(t.getTreeEl(), { scope: this, click: this.delegateClick, dblclick: this.delegateDblClick, contextmenu: this.delegateContextMenu }); }, getNode : function(e){ var t; if(t = e.getTarget('.x-tree-node-el', 10)){ var id = Ext.fly(t, '_treeEvents').getAttribute('tree-node-id', 'ext'); if(id){ return this.tree.getNodeById(id); } } return null; }, getNodeTarget : function(e){ var t = e.getTarget('.x-tree-node-icon', 1); if(!t){ t = e.getTarget('.x-tree-node-el', 6); } return t; }, delegateOut : function(e, t){ if(!this.beforeEvent(e)){ return; } if(e.getTarget('.x-tree-ec-icon', 1)){ var n = this.getNode(e); this.onIconOut(e, n); if(n == this.lastEcOver){ delete this.lastEcOver; } } if((t = this.getNodeTarget(e)) && !e.within(t, true)){ this.onNodeOut(e, this.getNode(e)); } }, delegateOver : function(e, t){ if(!this.beforeEvent(e)){ return; } if(Ext.isGecko && !this.trackingDoc){ Ext.getBody().on('mouseover', this.trackExit, this); this.trackingDoc = true; } if(this.lastEcOver){ this.onIconOut(e, this.lastEcOver); delete this.lastEcOver; } if(e.getTarget('.x-tree-ec-icon', 1)){ this.lastEcOver = this.getNode(e); this.onIconOver(e, this.lastEcOver); } if(t = this.getNodeTarget(e)){ this.onNodeOver(e, this.getNode(e)); } }, trackExit : function(e){ if(this.lastOverNode){ if(this.lastOverNode.ui && !e.within(this.lastOverNode.ui.getEl())){ this.onNodeOut(e, this.lastOverNode); } delete this.lastOverNode; Ext.getBody().un('mouseover', this.trackExit, this); this.trackingDoc = false; } }, delegateClick : function(e, t){ if(this.beforeEvent(e)){ if(e.getTarget('input[type=checkbox]', 1)){ this.onCheckboxClick(e, this.getNode(e)); }else if(e.getTarget('.x-tree-ec-icon', 1)){ this.onIconClick(e, this.getNode(e)); }else if(this.getNodeTarget(e)){ this.onNodeClick(e, this.getNode(e)); } }else{ this.checkContainerEvent(e, 'click'); } }, delegateDblClick : function(e, t){ if(this.beforeEvent(e)){ if(this.getNodeTarget(e)){ this.onNodeDblClick(e, this.getNode(e)); } }else{ this.checkContainerEvent(e, 'dblclick'); } }, delegateContextMenu : function(e, t){ if(this.beforeEvent(e)){ if(this.getNodeTarget(e)){ this.onNodeContextMenu(e, this.getNode(e)); } }else{ this.checkContainerEvent(e, 'contextmenu'); } }, checkContainerEvent: function(e, type){ if(this.disabled){ e.stopEvent(); return false; } this.onContainerEvent(e, type); }, onContainerEvent: function(e, type){ this.tree.fireEvent('container' + type, this.tree, e); }, onNodeClick : function(e, node){ node.ui.onClick(e); }, onNodeOver : function(e, node){ this.lastOverNode = node; node.ui.onOver(e); }, onNodeOut : function(e, node){ node.ui.onOut(e); }, onIconOver : function(e, node){ node.ui.addClass('x-tree-ec-over'); }, onIconOut : function(e, node){ node.ui.removeClass('x-tree-ec-over'); }, onIconClick : function(e, node){ node.ui.ecClick(e); }, onCheckboxClick : function(e, node){ node.ui.onCheckChange(e); }, onNodeDblClick : function(e, node){ node.ui.onDblClick(e); }, onNodeContextMenu : function(e, node){ node.ui.onContextMenu(e); }, beforeEvent : function(e){ var node = this.getNode(e); if(this.disabled || !node || !node.ui){ e.stopEvent(); return false; } return true; }, disable: function(){ this.disabled = true; }, enable: function(){ this.disabled = false; } }; Ext.tree.DefaultSelectionModel = Ext.extend(Ext.util.Observable, { constructor : function(config){ this.selNode = null; this.addEvents( 'selectionchange', 'beforeselect' ); Ext.apply(this, config); Ext.tree.DefaultSelectionModel.superclass.constructor.call(this); }, init : function(tree){ this.tree = tree; tree.mon(tree.getTreeEl(), 'keydown', this.onKeyDown, this); tree.on('click', this.onNodeClick, this); }, onNodeClick : function(node, e){ this.select(node); }, select : function(node, selectNextNode){ if (!Ext.fly(node.ui.wrap).isVisible() && selectNextNode) { return selectNextNode.call(this, node); } var last = this.selNode; if(node == last){ node.ui.onSelectedChange(true); }else if(this.fireEvent('beforeselect', this, node, last) !== false){ if(last && last.ui){ last.ui.onSelectedChange(false); } this.selNode = node; node.ui.onSelectedChange(true); this.fireEvent('selectionchange', this, node, last); } return node; }, unselect : function(node, silent){ if(this.selNode == node){ this.clearSelections(silent); } }, clearSelections : function(silent){ var n = this.selNode; if(n){ n.ui.onSelectedChange(false); this.selNode = null; if(silent !== true){ this.fireEvent('selectionchange', this, null); } } return n; }, getSelectedNode : function(){ return this.selNode; }, isSelected : function(node){ return this.selNode == node; }, selectPrevious : function( s){ if(!(s = s || this.selNode || this.lastSelNode)){ return null; } var ps = s.previousSibling; if(ps){ if(!ps.isExpanded() || ps.childNodes.length < 1){ return this.select(ps, this.selectPrevious); } else{ var lc = ps.lastChild; while(lc && lc.isExpanded() && Ext.fly(lc.ui.wrap).isVisible() && lc.childNodes.length > 0){ lc = lc.lastChild; } return this.select(lc, this.selectPrevious); } } else if(s.parentNode && (this.tree.rootVisible || !s.parentNode.isRoot)){ return this.select(s.parentNode, this.selectPrevious); } return null; }, selectNext : function( s){ if(!(s = s || this.selNode || this.lastSelNode)){ return null; } if(s.firstChild && s.isExpanded() && Ext.fly(s.ui.wrap).isVisible()){ return this.select(s.firstChild, this.selectNext); }else if(s.nextSibling){ return this.select(s.nextSibling, this.selectNext); }else if(s.parentNode){ var newS = null; s.parentNode.bubble(function(){ if(this.nextSibling){ newS = this.getOwnerTree().selModel.select(this.nextSibling, this.selectNext); return false; } }); return newS; } return null; }, onKeyDown : function(e){ var s = this.selNode || this.lastSelNode; var sm = this; if(!s){ return; } var k = e.getKey(); switch(k){ case e.DOWN: e.stopEvent(); this.selectNext(); break; case e.UP: e.stopEvent(); this.selectPrevious(); break; case e.RIGHT: e.preventDefault(); if(s.hasChildNodes()){ if(!s.isExpanded()){ s.expand(); }else if(s.firstChild){ this.select(s.firstChild, e); } } break; case e.LEFT: e.preventDefault(); if(s.hasChildNodes() && s.isExpanded()){ s.collapse(); }else if(s.parentNode && (this.tree.rootVisible || s.parentNode != this.tree.getRootNode())){ this.select(s.parentNode, e); } break; }; } }); Ext.tree.MultiSelectionModel = Ext.extend(Ext.util.Observable, { constructor : function(config){ this.selNodes = []; this.selMap = {}; this.addEvents( 'selectionchange' ); Ext.apply(this, config); Ext.tree.MultiSelectionModel.superclass.constructor.call(this); }, init : function(tree){ this.tree = tree; tree.mon(tree.getTreeEl(), 'keydown', this.onKeyDown, this); tree.on('click', this.onNodeClick, this); }, onNodeClick : function(node, e){ if(e.ctrlKey && this.isSelected(node)){ this.unselect(node); }else{ this.select(node, e, e.ctrlKey); } }, select : function(node, e, keepExisting){ if(keepExisting !== true){ this.clearSelections(true); } if(this.isSelected(node)){ this.lastSelNode = node; return node; } this.selNodes.push(node); this.selMap[node.id] = node; this.lastSelNode = node; node.ui.onSelectedChange(true); this.fireEvent('selectionchange', this, this.selNodes); return node; }, unselect : function(node){ if(this.selMap[node.id]){ node.ui.onSelectedChange(false); var sn = this.selNodes; var index = sn.indexOf(node); if(index != -1){ this.selNodes.splice(index, 1); } delete this.selMap[node.id]; this.fireEvent('selectionchange', this, this.selNodes); } }, clearSelections : function(suppressEvent){ var sn = this.selNodes; if(sn.length > 0){ for(var i = 0, len = sn.length; i < len; i++){ sn[i].ui.onSelectedChange(false); } this.selNodes = []; this.selMap = {}; if(suppressEvent !== true){ this.fireEvent('selectionchange', this, this.selNodes); } } }, isSelected : function(node){ return this.selMap[node.id] ? true : false; }, getSelectedNodes : function(){ return this.selNodes.concat([]); }, onKeyDown : Ext.tree.DefaultSelectionModel.prototype.onKeyDown, selectNext : Ext.tree.DefaultSelectionModel.prototype.selectNext, selectPrevious : Ext.tree.DefaultSelectionModel.prototype.selectPrevious }); Ext.data.Tree = Ext.extend(Ext.util.Observable, { constructor: function(root){ this.nodeHash = {}; this.root = null; if(root){ this.setRootNode(root); } this.addEvents( "append", "remove", "move", "insert", "beforeappend", "beforeremove", "beforemove", "beforeinsert" ); Ext.data.Tree.superclass.constructor.call(this); }, pathSeparator: "/", proxyNodeEvent : function(){ return this.fireEvent.apply(this, arguments); }, getRootNode : function(){ return this.root; }, setRootNode : function(node){ this.root = node; node.ownerTree = this; node.isRoot = true; this.registerNode(node); return node; }, getNodeById : function(id){ return this.nodeHash[id]; }, registerNode : function(node){ this.nodeHash[node.id] = node; }, unregisterNode : function(node){ delete this.nodeHash[node.id]; }, toString : function(){ return "[Tree"+(this.id?" "+this.id:"")+"]"; } }); Ext.data.Node = Ext.extend(Ext.util.Observable, { constructor: function(attributes){ this.attributes = attributes || {}; this.leaf = this.attributes.leaf; this.id = this.attributes.id; if(!this.id){ this.id = Ext.id(null, "xnode-"); this.attributes.id = this.id; } this.childNodes = []; this.parentNode = null; this.firstChild = null; this.lastChild = null; this.previousSibling = null; this.nextSibling = null; this.addEvents({ "append" : true, "remove" : true, "move" : true, "insert" : true, "beforeappend" : true, "beforeremove" : true, "beforemove" : true, "beforeinsert" : true }); this.listeners = this.attributes.listeners; Ext.data.Node.superclass.constructor.call(this); }, fireEvent : function(evtName){ if(Ext.data.Node.superclass.fireEvent.apply(this, arguments) === false){ return false; } var ot = this.getOwnerTree(); if(ot){ if(ot.proxyNodeEvent.apply(ot, arguments) === false){ return false; } } return true; }, isLeaf : function(){ return this.leaf === true; }, setFirstChild : function(node){ this.firstChild = node; }, setLastChild : function(node){ this.lastChild = node; }, isLast : function(){ return (!this.parentNode ? true : this.parentNode.lastChild == this); }, isFirst : function(){ return (!this.parentNode ? true : this.parentNode.firstChild == this); }, hasChildNodes : function(){ return !this.isLeaf() && this.childNodes.length > 0; }, isExpandable : function(){ return this.attributes.expandable || this.hasChildNodes(); }, appendChild : function(node){ var multi = false; if(Ext.isArray(node)){ multi = node; }else if(arguments.length > 1){ multi = arguments; } if(multi){ for(var i = 0, len = multi.length; i < len; i++) { this.appendChild(multi[i]); } }else{ if(this.fireEvent("beforeappend", this.ownerTree, this, node) === false){ return false; } var index = this.childNodes.length; var oldParent = node.parentNode; if(oldParent){ if(node.fireEvent("beforemove", node.getOwnerTree(), node, oldParent, this, index) === false){ return false; } oldParent.removeChild(node); } index = this.childNodes.length; if(index === 0){ this.setFirstChild(node); } this.childNodes.push(node); node.parentNode = this; var ps = this.childNodes[index-1]; if(ps){ node.previousSibling = ps; ps.nextSibling = node; }else{ node.previousSibling = null; } node.nextSibling = null; this.setLastChild(node); node.setOwnerTree(this.getOwnerTree()); this.fireEvent("append", this.ownerTree, this, node, index); if(oldParent){ node.fireEvent("move", this.ownerTree, node, oldParent, this, index); } return node; } }, removeChild : function(node, destroy){ var index = this.childNodes.indexOf(node); if(index == -1){ return false; } if(this.fireEvent("beforeremove", this.ownerTree, this, node) === false){ return false; } this.childNodes.splice(index, 1); if(node.previousSibling){ node.previousSibling.nextSibling = node.nextSibling; } if(node.nextSibling){ node.nextSibling.previousSibling = node.previousSibling; } if(this.firstChild == node){ this.setFirstChild(node.nextSibling); } if(this.lastChild == node){ this.setLastChild(node.previousSibling); } this.fireEvent("remove", this.ownerTree, this, node); if(destroy){ node.destroy(true); }else{ node.clear(); } return node; }, clear : function(destroy){ this.setOwnerTree(null, destroy); this.parentNode = this.previousSibling = this.nextSibling = null; if(destroy){ this.firstChild = this.lastChild = null; } }, destroy : function( silent){ if(silent === true){ this.purgeListeners(); this.clear(true); Ext.each(this.childNodes, function(n){ n.destroy(true); }); this.childNodes = null; }else{ this.remove(true); } }, insertBefore : function(node, refNode){ if(!refNode){ return this.appendChild(node); } if(node == refNode){ return false; } if(this.fireEvent("beforeinsert", this.ownerTree, this, node, refNode) === false){ return false; } var index = this.childNodes.indexOf(refNode); var oldParent = node.parentNode; var refIndex = index; if(oldParent == this && this.childNodes.indexOf(node) < index){ refIndex--; } if(oldParent){ if(node.fireEvent("beforemove", node.getOwnerTree(), node, oldParent, this, index, refNode) === false){ return false; } oldParent.removeChild(node); } if(refIndex === 0){ this.setFirstChild(node); } this.childNodes.splice(refIndex, 0, node); node.parentNode = this; var ps = this.childNodes[refIndex-1]; if(ps){ node.previousSibling = ps; ps.nextSibling = node; }else{ node.previousSibling = null; } node.nextSibling = refNode; refNode.previousSibling = node; node.setOwnerTree(this.getOwnerTree()); this.fireEvent("insert", this.ownerTree, this, node, refNode); if(oldParent){ node.fireEvent("move", this.ownerTree, node, oldParent, this, refIndex, refNode); } return node; }, remove : function(destroy){ if (this.parentNode) { this.parentNode.removeChild(this, destroy); } return this; }, removeAll : function(destroy){ var cn = this.childNodes, n; while((n = cn[0])){ this.removeChild(n, destroy); } return this; }, item : function(index){ return this.childNodes[index]; }, replaceChild : function(newChild, oldChild){ var s = oldChild ? oldChild.nextSibling : null; this.removeChild(oldChild); this.insertBefore(newChild, s); return oldChild; }, indexOf : function(child){ return this.childNodes.indexOf(child); }, getOwnerTree : function(){ if(!this.ownerTree){ var p = this; while(p){ if(p.ownerTree){ this.ownerTree = p.ownerTree; break; } p = p.parentNode; } } return this.ownerTree; }, getDepth : function(){ var depth = 0; var p = this; while(p.parentNode){ ++depth; p = p.parentNode; } return depth; }, setOwnerTree : function(tree, destroy){ if(tree != this.ownerTree){ if(this.ownerTree){ this.ownerTree.unregisterNode(this); } this.ownerTree = tree; if(destroy !== true){ Ext.each(this.childNodes, function(n){ n.setOwnerTree(tree); }); } if(tree){ tree.registerNode(this); } } }, setId: function(id){ if(id !== this.id){ var t = this.ownerTree; if(t){ t.unregisterNode(this); } this.id = this.attributes.id = id; if(t){ t.registerNode(this); } this.onIdChange(id); } }, onIdChange: Ext.emptyFn, getPath : function(attr){ attr = attr || "id"; var p = this.parentNode; var b = [this.attributes[attr]]; while(p){ b.unshift(p.attributes[attr]); p = p.parentNode; } var sep = this.getOwnerTree().pathSeparator; return sep + b.join(sep); }, bubble : function(fn, scope, args){ var p = this; while(p){ if(fn.apply(scope || p, args || [p]) === false){ break; } p = p.parentNode; } }, cascade : function(fn, scope, args){ if(fn.apply(scope || this, args || [this]) !== false){ var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++) { cs[i].cascade(fn, scope, args); } } }, eachChild : function(fn, scope, args){ var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++) { if(fn.apply(scope || cs[i], args || [cs[i]]) === false){ break; } } }, findChild : function(attribute, value, deep){ return this.findChildBy(function(){ return this.attributes[attribute] == value; }, null, deep); }, findChildBy : function(fn, scope, deep){ var cs = this.childNodes, len = cs.length, i = 0, n, res; for(; i < len; i++){ n = cs[i]; if(fn.call(scope || n, n) === true){ return n; }else if (deep){ res = n.findChildBy(fn, scope, deep); if(res != null){ return res; } } } return null; }, sort : function(fn, scope){ var cs = this.childNodes; var len = cs.length; if(len > 0){ var sortFn = scope ? function(){fn.apply(scope, arguments);} : fn; cs.sort(sortFn); for(var i = 0; i < len; i++){ var n = cs[i]; n.previousSibling = cs[i-1]; n.nextSibling = cs[i+1]; if(i === 0){ this.setFirstChild(n); } if(i == len-1){ this.setLastChild(n); } } } }, contains : function(node){ return node.isAncestor(this); }, isAncestor : function(node){ var p = this.parentNode; while(p){ if(p == node){ return true; } p = p.parentNode; } return false; }, toString : function(){ return "[Node"+(this.id?" "+this.id:"")+"]"; } }); Ext.tree.TreeNode = Ext.extend(Ext.data.Node, { constructor : function(attributes){ attributes = attributes || {}; if(Ext.isString(attributes)){ attributes = {text: attributes}; } this.childrenRendered = false; this.rendered = false; Ext.tree.TreeNode.superclass.constructor.call(this, attributes); this.expanded = attributes.expanded === true; this.isTarget = attributes.isTarget !== false; this.draggable = attributes.draggable !== false && attributes.allowDrag !== false; this.allowChildren = attributes.allowChildren !== false && attributes.allowDrop !== false; this.text = attributes.text; this.disabled = attributes.disabled === true; this.hidden = attributes.hidden === true; this.addEvents( 'textchange', 'beforeexpand', 'beforecollapse', 'expand', 'disabledchange', 'collapse', 'beforeclick', 'click', 'checkchange', 'beforedblclick', 'dblclick', 'contextmenu', 'beforechildrenrendered' ); var uiClass = this.attributes.uiProvider || this.defaultUI || Ext.tree.TreeNodeUI; this.ui = new uiClass(this); }, preventHScroll : true, isExpanded : function(){ return this.expanded; }, getUI : function(){ return this.ui; }, getLoader : function(){ var owner; return this.loader || ((owner = this.getOwnerTree()) && owner.loader ? owner.loader : (this.loader = new Ext.tree.TreeLoader())); }, setFirstChild : function(node){ var of = this.firstChild; Ext.tree.TreeNode.superclass.setFirstChild.call(this, node); if(this.childrenRendered && of && node != of){ of.renderIndent(true, true); } if(this.rendered){ this.renderIndent(true, true); } }, setLastChild : function(node){ var ol = this.lastChild; Ext.tree.TreeNode.superclass.setLastChild.call(this, node); if(this.childrenRendered && ol && node != ol){ ol.renderIndent(true, true); } if(this.rendered){ this.renderIndent(true, true); } }, appendChild : function(n){ if(!n.render && !Ext.isArray(n)){ n = this.getLoader().createNode(n); } var node = Ext.tree.TreeNode.superclass.appendChild.call(this, n); if(node && this.childrenRendered){ node.render(); } this.ui.updateExpandIcon(); return node; }, removeChild : function(node, destroy){ this.ownerTree.getSelectionModel().unselect(node); Ext.tree.TreeNode.superclass.removeChild.apply(this, arguments); if(!destroy){ var rendered = node.ui.rendered; if(rendered){ node.ui.remove(); } if(rendered && this.childNodes.length < 1){ this.collapse(false, false); }else{ this.ui.updateExpandIcon(); } if(!this.firstChild && !this.isHiddenRoot()){ this.childrenRendered = false; } } return node; }, insertBefore : function(node, refNode){ if(!node.render){ node = this.getLoader().createNode(node); } var newNode = Ext.tree.TreeNode.superclass.insertBefore.call(this, node, refNode); if(newNode && refNode && this.childrenRendered){ node.render(); } this.ui.updateExpandIcon(); return newNode; }, setText : function(text){ var oldText = this.text; this.text = this.attributes.text = text; if(this.rendered){ this.ui.onTextChange(this, text, oldText); } this.fireEvent('textchange', this, text, oldText); }, setIconCls : function(cls){ var old = this.attributes.iconCls; this.attributes.iconCls = cls; if(this.rendered){ this.ui.onIconClsChange(this, cls, old); } }, setTooltip : function(tip, title){ this.attributes.qtip = tip; this.attributes.qtipTitle = title; if(this.rendered){ this.ui.onTipChange(this, tip, title); } }, setIcon : function(icon){ this.attributes.icon = icon; if(this.rendered){ this.ui.onIconChange(this, icon); } }, setHref : function(href, target){ this.attributes.href = href; this.attributes.hrefTarget = target; if(this.rendered){ this.ui.onHrefChange(this, href, target); } }, setCls : function(cls){ var old = this.attributes.cls; this.attributes.cls = cls; if(this.rendered){ this.ui.onClsChange(this, cls, old); } }, select : function(){ var t = this.getOwnerTree(); if(t){ t.getSelectionModel().select(this); } }, unselect : function(silent){ var t = this.getOwnerTree(); if(t){ t.getSelectionModel().unselect(this, silent); } }, isSelected : function(){ var t = this.getOwnerTree(); return t ? t.getSelectionModel().isSelected(this) : false; }, expand : function(deep, anim, callback, scope){ if(!this.expanded){ if(this.fireEvent('beforeexpand', this, deep, anim) === false){ return; } if(!this.childrenRendered){ this.renderChildren(); } this.expanded = true; if(!this.isHiddenRoot() && (this.getOwnerTree().animate && anim !== false) || anim){ this.ui.animExpand(function(){ this.fireEvent('expand', this); this.runCallback(callback, scope || this, [this]); if(deep === true){ this.expandChildNodes(true, true); } }.createDelegate(this)); return; }else{ this.ui.expand(); this.fireEvent('expand', this); this.runCallback(callback, scope || this, [this]); } }else{ this.runCallback(callback, scope || this, [this]); } if(deep === true){ this.expandChildNodes(true); } }, runCallback : function(cb, scope, args){ if(Ext.isFunction(cb)){ cb.apply(scope, args); } }, isHiddenRoot : function(){ return this.isRoot && !this.getOwnerTree().rootVisible; }, collapse : function(deep, anim, callback, scope){ if(this.expanded && !this.isHiddenRoot()){ if(this.fireEvent('beforecollapse', this, deep, anim) === false){ return; } this.expanded = false; if((this.getOwnerTree().animate && anim !== false) || anim){ this.ui.animCollapse(function(){ this.fireEvent('collapse', this); this.runCallback(callback, scope || this, [this]); if(deep === true){ this.collapseChildNodes(true); } }.createDelegate(this)); return; }else{ this.ui.collapse(); this.fireEvent('collapse', this); this.runCallback(callback, scope || this, [this]); } }else if(!this.expanded){ this.runCallback(callback, scope || this, [this]); } if(deep === true){ var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++) { cs[i].collapse(true, false); } } }, delayedExpand : function(delay){ if(!this.expandProcId){ this.expandProcId = this.expand.defer(delay, this); } }, cancelExpand : function(){ if(this.expandProcId){ clearTimeout(this.expandProcId); } this.expandProcId = false; }, toggle : function(){ if(this.expanded){ this.collapse(); }else{ this.expand(); } }, ensureVisible : function(callback, scope){ var tree = this.getOwnerTree(); tree.expandPath(this.parentNode ? this.parentNode.getPath() : this.getPath(), false, function(){ var node = tree.getNodeById(this.id); tree.getTreeEl().scrollChildIntoView(node.ui.anchor); this.runCallback(callback, scope || this, [this]); }.createDelegate(this)); }, expandChildNodes : function(deep, anim) { var cs = this.childNodes, i, len = cs.length; for (i = 0; i < len; i++) { cs[i].expand(deep, anim); } }, collapseChildNodes : function(deep){ var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++) { cs[i].collapse(deep); } }, disable : function(){ this.disabled = true; this.unselect(); if(this.rendered && this.ui.onDisableChange){ this.ui.onDisableChange(this, true); } this.fireEvent('disabledchange', this, true); }, enable : function(){ this.disabled = false; if(this.rendered && this.ui.onDisableChange){ this.ui.onDisableChange(this, false); } this.fireEvent('disabledchange', this, false); }, renderChildren : function(suppressEvent){ if(suppressEvent !== false){ this.fireEvent('beforechildrenrendered', this); } var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++){ cs[i].render(true); } this.childrenRendered = true; }, sort : function(fn, scope){ Ext.tree.TreeNode.superclass.sort.apply(this, arguments); if(this.childrenRendered){ var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++){ cs[i].render(true); } } }, render : function(bulkRender){ this.ui.render(bulkRender); if(!this.rendered){ this.getOwnerTree().registerNode(this); this.rendered = true; if(this.expanded){ this.expanded = false; this.expand(false, false); } } }, renderIndent : function(deep, refresh){ if(refresh){ this.ui.childIndent = null; } this.ui.renderIndent(); if(deep === true && this.childrenRendered){ var cs = this.childNodes; for(var i = 0, len = cs.length; i < len; i++){ cs[i].renderIndent(true, refresh); } } }, beginUpdate : function(){ this.childrenRendered = false; }, endUpdate : function(){ if(this.expanded && this.rendered){ this.renderChildren(); } }, destroy : function(silent){ if(silent === true){ this.unselect(true); } Ext.tree.TreeNode.superclass.destroy.call(this, silent); Ext.destroy(this.ui, this.loader); this.ui = this.loader = null; }, onIdChange : function(id){ this.ui.onIdChange(id); } }); Ext.tree.TreePanel.nodeTypes.node = Ext.tree.TreeNode; Ext.tree.AsyncTreeNode = function(config){ this.loaded = config && config.loaded === true; this.loading = false; Ext.tree.AsyncTreeNode.superclass.constructor.apply(this, arguments); this.addEvents('beforeload', 'load'); }; Ext.extend(Ext.tree.AsyncTreeNode, Ext.tree.TreeNode, { expand : function(deep, anim, callback, scope){ if(this.loading){ var timer; var f = function(){ if(!this.loading){ clearInterval(timer); this.expand(deep, anim, callback, scope); } }.createDelegate(this); timer = setInterval(f, 200); return; } if(!this.loaded){ if(this.fireEvent("beforeload", this) === false){ return; } this.loading = true; this.ui.beforeLoad(this); var loader = this.loader || this.attributes.loader || this.getOwnerTree().getLoader(); if(loader){ loader.load(this, this.loadComplete.createDelegate(this, [deep, anim, callback, scope]), this); return; } } Ext.tree.AsyncTreeNode.superclass.expand.call(this, deep, anim, callback, scope); }, isLoading : function(){ return this.loading; }, loadComplete : function(deep, anim, callback, scope){ this.loading = false; this.loaded = true; this.ui.afterLoad(this); this.fireEvent("load", this); this.expand(deep, anim, callback, scope); }, isLoaded : function(){ return this.loaded; }, hasChildNodes : function(){ if(!this.isLeaf() && !this.loaded){ return true; }else{ return Ext.tree.AsyncTreeNode.superclass.hasChildNodes.call(this); } }, reload : function(callback, scope){ this.collapse(false, false); while(this.firstChild){ this.removeChild(this.firstChild).destroy(); } this.childrenRendered = false; this.loaded = false; if(this.isHiddenRoot()){ this.expanded = false; } this.expand(false, false, callback, scope); } }); Ext.tree.TreePanel.nodeTypes.async = Ext.tree.AsyncTreeNode; Ext.tree.TreeNodeUI = Ext.extend(Object, { constructor : function(node){ Ext.apply(this, { node: node, rendered: false, animating: false, wasLeaf: true, ecc: 'x-tree-ec-icon x-tree-elbow', emptyIcon: Ext.BLANK_IMAGE_URL }); }, removeChild : function(node){ if(this.rendered){ this.ctNode.removeChild(node.ui.getEl()); } }, beforeLoad : function(){ this.addClass("x-tree-node-loading"); }, afterLoad : function(){ this.removeClass("x-tree-node-loading"); }, onTextChange : function(node, text, oldText){ if(this.rendered){ this.textNode.innerHTML = text; } }, onIconClsChange : function(node, cls, oldCls){ if(this.rendered){ Ext.fly(this.iconNode).replaceClass(oldCls, cls); } }, onIconChange : function(node, icon){ if(this.rendered){ var empty = Ext.isEmpty(icon); this.iconNode.src = empty ? this.emptyIcon : icon; Ext.fly(this.iconNode)[empty ? 'removeClass' : 'addClass']('x-tree-node-inline-icon'); } }, onTipChange : function(node, tip, title){ if(this.rendered){ var hasTitle = Ext.isDefined(title); if(this.textNode.setAttributeNS){ this.textNode.setAttributeNS("ext", "qtip", tip); if(hasTitle){ this.textNode.setAttributeNS("ext", "qtitle", title); } }else{ this.textNode.setAttribute("ext:qtip", tip); if(hasTitle){ this.textNode.setAttribute("ext:qtitle", title); } } } }, onHrefChange : function(node, href, target){ if(this.rendered){ this.anchor.href = this.getHref(href); if(Ext.isDefined(target)){ this.anchor.target = target; } } }, onClsChange : function(node, cls, oldCls){ if(this.rendered){ Ext.fly(this.elNode).replaceClass(oldCls, cls); } }, onDisableChange : function(node, state){ this.disabled = state; if (this.checkbox) { this.checkbox.disabled = state; } this[state ? 'addClass' : 'removeClass']('x-tree-node-disabled'); }, onSelectedChange : function(state){ if(state){ this.focus(); this.addClass("x-tree-selected"); }else{ this.removeClass("x-tree-selected"); } }, onMove : function(tree, node, oldParent, newParent, index, refNode){ this.childIndent = null; if(this.rendered){ var targetNode = newParent.ui.getContainer(); if(!targetNode){ this.holder = document.createElement("div"); this.holder.appendChild(this.wrap); return; } var insertBefore = refNode ? refNode.ui.getEl() : null; if(insertBefore){ targetNode.insertBefore(this.wrap, insertBefore); }else{ targetNode.appendChild(this.wrap); } this.node.renderIndent(true, oldParent != newParent); } }, addClass : function(cls){ if(this.elNode){ Ext.fly(this.elNode).addClass(cls); } }, removeClass : function(cls){ if(this.elNode){ Ext.fly(this.elNode).removeClass(cls); } }, remove : function(){ if(this.rendered){ this.holder = document.createElement("div"); this.holder.appendChild(this.wrap); } }, fireEvent : function(){ return this.node.fireEvent.apply(this.node, arguments); }, initEvents : function(){ this.node.on("move", this.onMove, this); if(this.node.disabled){ this.onDisableChange(this.node, true); } if(this.node.hidden){ this.hide(); } var ot = this.node.getOwnerTree(); var dd = ot.enableDD || ot.enableDrag || ot.enableDrop; if(dd && (!this.node.isRoot || ot.rootVisible)){ Ext.dd.Registry.register(this.elNode, { node: this.node, handles: this.getDDHandles(), isHandle: false }); } }, getDDHandles : function(){ return [this.iconNode, this.textNode, this.elNode]; }, hide : function(){ this.node.hidden = true; if(this.wrap){ this.wrap.style.display = "none"; } }, show : function(){ this.node.hidden = false; if(this.wrap){ this.wrap.style.display = ""; } }, onContextMenu : function(e){ if (this.node.hasListener("contextmenu") || this.node.getOwnerTree().hasListener("contextmenu")) { e.preventDefault(); this.focus(); this.fireEvent("contextmenu", this.node, e); } }, onClick : function(e){ if(this.dropping){ e.stopEvent(); return; } if(this.fireEvent("beforeclick", this.node, e) !== false){ var a = e.getTarget('a'); if(!this.disabled && this.node.attributes.href && a){ this.fireEvent("click", this.node, e); return; }else if(a && e.ctrlKey){ e.stopEvent(); } e.preventDefault(); if(this.disabled){ return; } if(this.node.attributes.singleClickExpand && !this.animating && this.node.isExpandable()){ this.node.toggle(); } this.fireEvent("click", this.node, e); }else{ e.stopEvent(); } }, onDblClick : function(e){ e.preventDefault(); if(this.disabled){ return; } if(this.fireEvent("beforedblclick", this.node, e) !== false){ if(this.checkbox){ this.toggleCheck(); } if(!this.animating && this.node.isExpandable()){ this.node.toggle(); } this.fireEvent("dblclick", this.node, e); } }, onOver : function(e){ this.addClass('x-tree-node-over'); }, onOut : function(e){ this.removeClass('x-tree-node-over'); }, onCheckChange : function(){ var checked = this.checkbox.checked; this.checkbox.defaultChecked = checked; this.node.attributes.checked = checked; this.fireEvent('checkchange', this.node, checked); }, ecClick : function(e){ if(!this.animating && this.node.isExpandable()){ this.node.toggle(); } }, startDrop : function(){ this.dropping = true; }, endDrop : function(){ setTimeout(function(){ this.dropping = false; }.createDelegate(this), 50); }, expand : function(){ this.updateExpandIcon(); this.ctNode.style.display = ""; }, focus : function(){ if(!this.node.preventHScroll){ try{this.anchor.focus(); }catch(e){} }else{ try{ var noscroll = this.node.getOwnerTree().getTreeEl().dom; var l = noscroll.scrollLeft; this.anchor.focus(); noscroll.scrollLeft = l; }catch(e){} } }, toggleCheck : function(value){ var cb = this.checkbox; if(cb){ cb.checked = (value === undefined ? !cb.checked : value); this.onCheckChange(); } }, blur : function(){ try{ this.anchor.blur(); }catch(e){} }, animExpand : function(callback){ var ct = Ext.get(this.ctNode); ct.stopFx(); if(!this.node.isExpandable()){ this.updateExpandIcon(); this.ctNode.style.display = ""; Ext.callback(callback); return; } this.animating = true; this.updateExpandIcon(); ct.slideIn('t', { callback : function(){ this.animating = false; Ext.callback(callback); }, scope: this, duration: this.node.ownerTree.duration || .25 }); }, highlight : function(){ var tree = this.node.getOwnerTree(); Ext.fly(this.wrap).highlight( tree.hlColor || "C3DAF9", {endColor: tree.hlBaseColor} ); }, collapse : function(){ this.updateExpandIcon(); this.ctNode.style.display = "none"; }, animCollapse : function(callback){ var ct = Ext.get(this.ctNode); ct.enableDisplayMode('block'); ct.stopFx(); this.animating = true; this.updateExpandIcon(); ct.slideOut('t', { callback : function(){ this.animating = false; Ext.callback(callback); }, scope: this, duration: this.node.ownerTree.duration || .25 }); }, getContainer : function(){ return this.ctNode; }, getEl : function(){ return this.wrap; }, appendDDGhost : function(ghostNode){ ghostNode.appendChild(this.elNode.cloneNode(true)); }, getDDRepairXY : function(){ return Ext.lib.Dom.getXY(this.iconNode); }, onRender : function(){ this.render(); }, render : function(bulkRender){ var n = this.node, a = n.attributes; var targetNode = n.parentNode ? n.parentNode.ui.getContainer() : n.ownerTree.innerCt.dom; if(!this.rendered){ this.rendered = true; this.renderElements(n, a, targetNode, bulkRender); if(a.qtip){ this.onTipChange(n, a.qtip, a.qtipTitle); }else if(a.qtipCfg){ a.qtipCfg.target = Ext.id(this.textNode); Ext.QuickTips.register(a.qtipCfg); } this.initEvents(); if(!this.node.expanded){ this.updateExpandIcon(true); } }else{ if(bulkRender === true) { targetNode.appendChild(this.wrap); } } }, renderElements : function(n, a, targetNode, bulkRender){ this.indentMarkup = n.parentNode ? n.parentNode.ui.getChildIndent() : ''; var cb = Ext.isBoolean(a.checked), nel, href = this.getHref(a.href), buf = ['
    • ', '',this.indentMarkup,"", '', '', cb ? ('' : '/>')) : '', '',n.text,"
      ", '', "
      • "].join(''); if(bulkRender !== true && n.nextSibling && (nel = n.nextSibling.ui.getEl())){ this.wrap = Ext.DomHelper.insertHtml("beforeBegin", nel, buf); }else{ this.wrap = Ext.DomHelper.insertHtml("beforeEnd", targetNode, buf); } this.elNode = this.wrap.childNodes[0]; this.ctNode = this.wrap.childNodes[1]; var cs = this.elNode.childNodes; this.indentNode = cs[0]; this.ecNode = cs[1]; this.iconNode = cs[2]; var index = 3; if(cb){ this.checkbox = cs[3]; this.checkbox.defaultChecked = this.checkbox.checked; index++; } this.anchor = cs[index]; this.textNode = cs[index].firstChild; }, getHref : function(href){ return Ext.isEmpty(href) ? (Ext.isGecko ? '' : '#') : href; }, getAnchor : function(){ return this.anchor; }, getTextEl : function(){ return this.textNode; }, getIconEl : function(){ return this.iconNode; }, isChecked : function(){ return this.checkbox ? this.checkbox.checked : false; }, updateExpandIcon : function(){ if(this.rendered){ var n = this.node, c1, c2, cls = n.isLast() ? "x-tree-elbow-end" : "x-tree-elbow", hasChild = n.hasChildNodes(); if(hasChild || n.attributes.expandable){ if(n.expanded){ cls += "-minus"; c1 = "x-tree-node-collapsed"; c2 = "x-tree-node-expanded"; }else{ cls += "-plus"; c1 = "x-tree-node-expanded"; c2 = "x-tree-node-collapsed"; } if(this.wasLeaf){ this.removeClass("x-tree-node-leaf"); this.wasLeaf = false; } if(this.c1 != c1 || this.c2 != c2){ Ext.fly(this.elNode).replaceClass(c1, c2); this.c1 = c1; this.c2 = c2; } }else{ if(!this.wasLeaf){ Ext.fly(this.elNode).replaceClass("x-tree-node-expanded", "x-tree-node-collapsed"); delete this.c1; delete this.c2; this.wasLeaf = true; } } var ecc = "x-tree-ec-icon "+cls; if(this.ecc != ecc){ this.ecNode.className = ecc; this.ecc = ecc; } } }, onIdChange: function(id){ if(this.rendered){ this.elNode.setAttribute('ext:tree-node-id', id); } }, getChildIndent : function(){ if(!this.childIndent){ var buf = [], p = this.node; while(p){ if(!p.isRoot || (p.isRoot && p.ownerTree.rootVisible)){ if(!p.isLast()) { buf.unshift(''); } else { buf.unshift(''); } } p = p.parentNode; } this.childIndent = buf.join(""); } return this.childIndent; }, renderIndent : function(){ if(this.rendered){ var indent = "", p = this.node.parentNode; if(p){ indent = p.ui.getChildIndent(); } if(this.indentMarkup != indent){ this.indentNode.innerHTML = indent; this.indentMarkup = indent; } this.updateExpandIcon(); } }, destroy : function(){ if(this.elNode){ Ext.dd.Registry.unregister(this.elNode.id); } Ext.each(['textnode', 'anchor', 'checkbox', 'indentNode', 'ecNode', 'iconNode', 'elNode', 'ctNode', 'wrap', 'holder'], function(el){ if(this[el]){ Ext.fly(this[el]).remove(); delete this[el]; } }, this); delete this.node; } }); Ext.tree.RootTreeNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { render : function(){ if(!this.rendered){ var targetNode = this.node.ownerTree.innerCt.dom; this.node.expanded = true; targetNode.innerHTML = '
      '; this.wrap = this.ctNode = targetNode.firstChild; } }, collapse : Ext.emptyFn, expand : Ext.emptyFn }); Ext.tree.TreeLoader = function(config){ this.baseParams = {}; Ext.apply(this, config); this.addEvents( "beforeload", "load", "loadexception" ); Ext.tree.TreeLoader.superclass.constructor.call(this); if(Ext.isString(this.paramOrder)){ this.paramOrder = this.paramOrder.split(/[\s,|]/); } }; Ext.extend(Ext.tree.TreeLoader, Ext.util.Observable, { uiProviders : {}, clearOnLoad : true, paramOrder: undefined, paramsAsHash: false, nodeParameter: 'node', directFn : undefined, load : function(node, callback, scope){ if(this.clearOnLoad){ while(node.firstChild){ node.removeChild(node.firstChild); } } if(this.doPreload(node)){ this.runCallback(callback, scope || node, [node]); }else if(this.directFn || this.dataUrl || this.url){ this.requestData(node, callback, scope || node); } }, doPreload : function(node){ if(node.attributes.children){ if(node.childNodes.length < 1){ var cs = node.attributes.children; node.beginUpdate(); for(var i = 0, len = cs.length; i < len; i++){ var cn = node.appendChild(this.createNode(cs[i])); if(this.preloadChildren){ this.doPreload(cn); } } node.endUpdate(); } return true; } return false; }, getParams: function(node){ var bp = Ext.apply({}, this.baseParams), np = this.nodeParameter, po = this.paramOrder; np && (bp[ np ] = node.id); if(this.directFn){ var buf = [node.id]; if(po){ if(np && po.indexOf(np) > -1){ buf = []; } for(var i = 0, len = po.length; i < len; i++){ buf.push(bp[ po[i] ]); } }else if(this.paramsAsHash){ buf = [bp]; } return buf; }else{ return bp; } }, requestData : function(node, callback, scope){ if(this.fireEvent("beforeload", this, node, callback) !== false){ if(this.directFn){ var args = this.getParams(node); args.push(this.processDirectResponse.createDelegate(this, [{callback: callback, node: node, scope: scope}], true)); this.directFn.apply(window, args); }else{ this.transId = Ext.Ajax.request({ method:this.requestMethod, url: this.dataUrl||this.url, success: this.handleResponse, failure: this.handleFailure, scope: this, argument: {callback: callback, node: node, scope: scope}, params: this.getParams(node) }); } }else{ this.runCallback(callback, scope || node, []); } }, processDirectResponse: function(result, response, args){ if(response.status){ this.handleResponse({ responseData: Ext.isArray(result) ? result : null, responseText: result, argument: args }); }else{ this.handleFailure({ argument: args }); } }, runCallback: function(cb, scope, args){ if(Ext.isFunction(cb)){ cb.apply(scope, args); } }, isLoading : function(){ return !!this.transId; }, abort : function(){ if(this.isLoading()){ Ext.Ajax.abort(this.transId); } }, createNode : function(attr){ if(this.baseAttrs){ Ext.applyIf(attr, this.baseAttrs); } if(this.applyLoader !== false && !attr.loader){ attr.loader = this; } if(Ext.isString(attr.uiProvider)){ attr.uiProvider = this.uiProviders[attr.uiProvider] || eval(attr.uiProvider); } if(attr.nodeType){ return new Ext.tree.TreePanel.nodeTypes[attr.nodeType](attr); }else{ return attr.leaf ? new Ext.tree.TreeNode(attr) : new Ext.tree.AsyncTreeNode(attr); } }, processResponse : function(response, node, callback, scope){ var json = response.responseText; try { var o = response.responseData || Ext.decode(json); node.beginUpdate(); for(var i = 0, len = o.length; i < len; i++){ var n = this.createNode(o[i]); if(n){ node.appendChild(n); } } node.endUpdate(); this.runCallback(callback, scope || node, [node]); }catch(e){ this.handleFailure(response); } }, handleResponse : function(response){ this.transId = false; var a = response.argument; this.processResponse(response, a.node, a.callback, a.scope); this.fireEvent("load", this, a.node, response); }, handleFailure : function(response){ this.transId = false; var a = response.argument; this.fireEvent("loadexception", this, a.node, response); this.runCallback(a.callback, a.scope || a.node, [a.node]); }, destroy : function(){ this.abort(); this.purgeListeners(); } }); Ext.tree.TreeFilter = function(tree, config){ this.tree = tree; this.filtered = {}; Ext.apply(this, config); }; Ext.tree.TreeFilter.prototype = { clearBlank:false, reverse:false, autoClear:false, remove:false, filter : function(value, attr, startNode){ attr = attr || "text"; var f; if(typeof value == "string"){ var vlen = value.length; if(vlen == 0 && this.clearBlank){ this.clear(); return; } value = value.toLowerCase(); f = function(n){ return n.attributes[attr].substr(0, vlen).toLowerCase() == value; }; }else if(value.exec){ f = function(n){ return value.test(n.attributes[attr]); }; }else{ throw 'Illegal filter type, must be string or regex'; } this.filterBy(f, null, startNode); }, filterBy : function(fn, scope, startNode){ startNode = startNode || this.tree.root; if(this.autoClear){ this.clear(); } var af = this.filtered, rv = this.reverse; var f = function(n){ if(n == startNode){ return true; } if(af[n.id]){ return false; } var m = fn.call(scope || n, n); if(!m || rv){ af[n.id] = n; n.ui.hide(); return false; } return true; }; startNode.cascade(f); if(this.remove){ for(var id in af){ if(typeof id != "function"){ var n = af[id]; if(n && n.parentNode){ n.parentNode.removeChild(n); } } } } }, clear : function(){ var t = this.tree; var af = this.filtered; for(var id in af){ if(typeof id != "function"){ var n = af[id]; if(n){ n.ui.show(); } } } this.filtered = {}; } }; Ext.tree.TreeSorter = Ext.extend(Object, { constructor: function(tree, config){ Ext.apply(this, config); tree.on({ scope: this, beforechildrenrendered: this.doSort, append: this.updateSort, insert: this.updateSort, textchange: this.updateSortParent }); var desc = this.dir && this.dir.toLowerCase() == 'desc', prop = this.property || 'text', sortType = this.sortType, folderSort = this.folderSort, caseSensitive = this.caseSensitive === true, leafAttr = this.leafAttr || 'leaf'; if(Ext.isString(sortType)){ sortType = Ext.data.SortTypes[sortType]; } this.sortFn = function(n1, n2){ var attr1 = n1.attributes, attr2 = n2.attributes; if(folderSort){ if(attr1[leafAttr] && !attr2[leafAttr]){ return 1; } if(!attr1[leafAttr] && attr2[leafAttr]){ return -1; } } var prop1 = attr1[prop], prop2 = attr2[prop], v1 = sortType ? sortType(prop1, n1) : (caseSensitive ? prop1 : prop1.toUpperCase()), v2 = sortType ? sortType(prop2, n2) : (caseSensitive ? prop2 : prop2.toUpperCase()); if(v1 < v2){ return desc ? 1 : -1; }else if(v1 > v2){ return desc ? -1 : 1; } return 0; }; }, doSort : function(node){ node.sort(this.sortFn); }, updateSort : function(tree, node){ if(node.childrenRendered){ this.doSort.defer(1, this, [node]); } }, updateSortParent : function(node){ var p = node.parentNode; if(p && p.childrenRendered){ this.doSort.defer(1, this, [p]); } } }); if(Ext.dd.DropZone){ Ext.tree.TreeDropZone = function(tree, config){ this.allowParentInsert = config.allowParentInsert || false; this.allowContainerDrop = config.allowContainerDrop || false; this.appendOnly = config.appendOnly || false; Ext.tree.TreeDropZone.superclass.constructor.call(this, tree.getTreeEl(), config); this.tree = tree; this.dragOverData = {}; this.lastInsertClass = "x-tree-no-status"; }; Ext.extend(Ext.tree.TreeDropZone, Ext.dd.DropZone, { ddGroup : "TreeDD", expandDelay : 1000, expandNode : function(node){ if(node.hasChildNodes() && !node.isExpanded()){ node.expand(false, null, this.triggerCacheRefresh.createDelegate(this)); } }, queueExpand : function(node){ this.expandProcId = this.expandNode.defer(this.expandDelay, this, [node]); }, cancelExpand : function(){ if(this.expandProcId){ clearTimeout(this.expandProcId); this.expandProcId = false; } }, isValidDropPoint : function(n, pt, dd, e, data){ if(!n || !data){ return false; } var targetNode = n.node; var dropNode = data.node; if(!(targetNode && targetNode.isTarget && pt)){ return false; } if(pt == "append" && targetNode.allowChildren === false){ return false; } if((pt == "above" || pt == "below") && (targetNode.parentNode && targetNode.parentNode.allowChildren === false)){ return false; } if(dropNode && (targetNode == dropNode || dropNode.contains(targetNode))){ return false; } var overEvent = this.dragOverData; overEvent.tree = this.tree; overEvent.target = targetNode; overEvent.data = data; overEvent.point = pt; overEvent.source = dd; overEvent.rawEvent = e; overEvent.dropNode = dropNode; overEvent.cancel = false; var result = this.tree.fireEvent("nodedragover", overEvent); return overEvent.cancel === false && result !== false; }, getDropPoint : function(e, n, dd){ var tn = n.node; if(tn.isRoot){ return tn.allowChildren !== false ? "append" : false; } var dragEl = n.ddel; var t = Ext.lib.Dom.getY(dragEl), b = t + dragEl.offsetHeight; var y = Ext.lib.Event.getPageY(e); var noAppend = tn.allowChildren === false || tn.isLeaf(); if(this.appendOnly || tn.parentNode.allowChildren === false){ return noAppend ? false : "append"; } var noBelow = false; if(!this.allowParentInsert){ noBelow = tn.hasChildNodes() && tn.isExpanded(); } var q = (b - t) / (noAppend ? 2 : 3); if(y >= t && y < (t + q)){ return "above"; }else if(!noBelow && (noAppend || y >= b-q && y <= b)){ return "below"; }else{ return "append"; } }, onNodeEnter : function(n, dd, e, data){ this.cancelExpand(); }, onContainerOver : function(dd, e, data) { if (this.allowContainerDrop && this.isValidDropPoint({ ddel: this.tree.getRootNode().ui.elNode, node: this.tree.getRootNode() }, "append", dd, e, data)) { return this.dropAllowed; } return this.dropNotAllowed; }, onNodeOver : function(n, dd, e, data){ var pt = this.getDropPoint(e, n, dd); var node = n.node; if(!this.expandProcId && pt == "append" && node.hasChildNodes() && !n.node.isExpanded()){ this.queueExpand(node); }else if(pt != "append"){ this.cancelExpand(); } var returnCls = this.dropNotAllowed; if(this.isValidDropPoint(n, pt, dd, e, data)){ if(pt){ var el = n.ddel; var cls; if(pt == "above"){ returnCls = n.node.isFirst() ? "x-tree-drop-ok-above" : "x-tree-drop-ok-between"; cls = "x-tree-drag-insert-above"; }else if(pt == "below"){ returnCls = n.node.isLast() ? "x-tree-drop-ok-below" : "x-tree-drop-ok-between"; cls = "x-tree-drag-insert-below"; }else{ returnCls = "x-tree-drop-ok-append"; cls = "x-tree-drag-append"; } if(this.lastInsertClass != cls){ Ext.fly(el).replaceClass(this.lastInsertClass, cls); this.lastInsertClass = cls; } } } return returnCls; }, onNodeOut : function(n, dd, e, data){ this.cancelExpand(); this.removeDropIndicators(n); }, onNodeDrop : function(n, dd, e, data){ var point = this.getDropPoint(e, n, dd); var targetNode = n.node; targetNode.ui.startDrop(); if(!this.isValidDropPoint(n, point, dd, e, data)){ targetNode.ui.endDrop(); return false; } var dropNode = data.node || (dd.getTreeNode ? dd.getTreeNode(data, targetNode, point, e) : null); return this.processDrop(targetNode, data, point, dd, e, dropNode); }, onContainerDrop : function(dd, e, data){ if (this.allowContainerDrop && this.isValidDropPoint({ ddel: this.tree.getRootNode().ui.elNode, node: this.tree.getRootNode() }, "append", dd, e, data)) { var targetNode = this.tree.getRootNode(); targetNode.ui.startDrop(); var dropNode = data.node || (dd.getTreeNode ? dd.getTreeNode(data, targetNode, 'append', e) : null); return this.processDrop(targetNode, data, 'append', dd, e, dropNode); } return false; }, processDrop: function(target, data, point, dd, e, dropNode){ var dropEvent = { tree : this.tree, target: target, data: data, point: point, source: dd, rawEvent: e, dropNode: dropNode, cancel: !dropNode, dropStatus: false }; var retval = this.tree.fireEvent("beforenodedrop", dropEvent); if(retval === false || dropEvent.cancel === true || !dropEvent.dropNode){ target.ui.endDrop(); return dropEvent.dropStatus; } target = dropEvent.target; if(point == 'append' && !target.isExpanded()){ target.expand(false, null, function(){ this.completeDrop(dropEvent); }.createDelegate(this)); }else{ this.completeDrop(dropEvent); } return true; }, completeDrop : function(de){ var ns = de.dropNode, p = de.point, t = de.target; if(!Ext.isArray(ns)){ ns = [ns]; } var n; for(var i = 0, len = ns.length; i < len; i++){ n = ns[i]; if(p == "above"){ t.parentNode.insertBefore(n, t); }else if(p == "below"){ t.parentNode.insertBefore(n, t.nextSibling); }else{ t.appendChild(n); } } n.ui.focus(); if(Ext.enableFx && this.tree.hlDrop){ n.ui.highlight(); } t.ui.endDrop(); this.tree.fireEvent("nodedrop", de); }, afterNodeMoved : function(dd, data, e, targetNode, dropNode){ if(Ext.enableFx && this.tree.hlDrop){ dropNode.ui.focus(); dropNode.ui.highlight(); } this.tree.fireEvent("nodedrop", this.tree, targetNode, data, dd, e); }, getTree : function(){ return this.tree; }, removeDropIndicators : function(n){ if(n && n.ddel){ var el = n.ddel; Ext.fly(el).removeClass([ "x-tree-drag-insert-above", "x-tree-drag-insert-below", "x-tree-drag-append"]); this.lastInsertClass = "_noclass"; } }, beforeDragDrop : function(target, e, id){ this.cancelExpand(); return true; }, afterRepair : function(data){ if(data && Ext.enableFx){ data.node.ui.highlight(); } this.hideProxy(); } }); } if(Ext.dd.DragZone){ Ext.tree.TreeDragZone = function(tree, config){ Ext.tree.TreeDragZone.superclass.constructor.call(this, tree.innerCt, config); this.tree = tree; }; Ext.extend(Ext.tree.TreeDragZone, Ext.dd.DragZone, { ddGroup : "TreeDD", onBeforeDrag : function(data, e){ var n = data.node; return n && n.draggable && !n.disabled; }, onInitDrag : function(e){ var data = this.dragData; this.tree.getSelectionModel().select(data.node); this.tree.eventModel.disable(); this.proxy.update(""); data.node.ui.appendDDGhost(this.proxy.ghost.dom); this.tree.fireEvent("startdrag", this.tree, data.node, e); }, getRepairXY : function(e, data){ return data.node.ui.getDDRepairXY(); }, onEndDrag : function(data, e){ this.tree.eventModel.enable.defer(100, this.tree.eventModel); this.tree.fireEvent("enddrag", this.tree, data.node, e); }, onValidDrop : function(dd, e, id){ this.tree.fireEvent("dragdrop", this.tree, this.dragData.node, dd, e); this.hideProxy(); }, beforeInvalidDrop : function(e, id){ var sm = this.tree.getSelectionModel(); sm.clearSelections(); sm.select(this.dragData.node); }, afterRepair : function(){ if (Ext.enableFx && this.tree.hlDrop) { Ext.Element.fly(this.dragData.ddel).highlight(this.hlColor || "c3daf9"); } this.dragging = false; } }); } Ext.tree.TreeEditor = function(tree, fc, config){ fc = fc || {}; var field = fc.events ? fc : new Ext.form.TextField(fc); Ext.tree.TreeEditor.superclass.constructor.call(this, field, config); this.tree = tree; if(!tree.rendered){ tree.on('render', this.initEditor, this); }else{ this.initEditor(tree); } }; Ext.extend(Ext.tree.TreeEditor, Ext.Editor, { alignment: "l-l", autoSize: false, hideEl : false, cls: "x-small-editor x-tree-editor", shim:false, shadow:"frame", maxWidth: 250, editDelay : 350, initEditor : function(tree){ tree.on({ scope : this, beforeclick: this.beforeNodeClick, dblclick : this.onNodeDblClick }); this.on({ scope : this, complete : this.updateNode, beforestartedit: this.fitToTree, specialkey : this.onSpecialKey }); this.on('startedit', this.bindScroll, this, {delay:10}); }, fitToTree : function(ed, el){ var td = this.tree.getTreeEl().dom, nd = el.dom; if(td.scrollLeft > nd.offsetLeft){ td.scrollLeft = nd.offsetLeft; } var w = Math.min( this.maxWidth, (td.clientWidth > 20 ? td.clientWidth : td.offsetWidth) - Math.max(0, nd.offsetLeft-td.scrollLeft) - 5); this.setSize(w, ''); }, triggerEdit : function(node, defer){ this.completeEdit(); if(node.attributes.editable !== false){ this.editNode = node; if(this.tree.autoScroll){ Ext.fly(node.ui.getEl()).scrollIntoView(this.tree.body); } var value = node.text || ''; if (!Ext.isGecko && Ext.isEmpty(node.text)){ node.setText(' '); } this.autoEditTimer = this.startEdit.defer(this.editDelay, this, [node.ui.textNode, value]); return false; } }, bindScroll : function(){ this.tree.getTreeEl().on('scroll', this.cancelEdit, this); }, beforeNodeClick : function(node, e){ clearTimeout(this.autoEditTimer); if(this.tree.getSelectionModel().isSelected(node)){ e.stopEvent(); return this.triggerEdit(node); } }, onNodeDblClick : function(node, e){ clearTimeout(this.autoEditTimer); }, updateNode : function(ed, value){ this.tree.getTreeEl().un('scroll', this.cancelEdit, this); this.editNode.setText(value); }, onHide : function(){ Ext.tree.TreeEditor.superclass.onHide.call(this); if(this.editNode){ this.editNode.ui.focus.defer(50, this.editNode.ui); } }, onSpecialKey : function(field, e){ var k = e.getKey(); if(k == e.ESC){ e.stopEvent(); this.cancelEdit(); }else if(k == e.ENTER && !e.hasModifier()){ e.stopEvent(); this.completeEdit(); } }, onDestroy : function(){ clearTimeout(this.autoEditTimer); Ext.tree.TreeEditor.superclass.onDestroy.call(this); var tree = this.tree; tree.un('beforeclick', this.beforeNodeClick, this); tree.un('dblclick', this.onNodeDblClick, this); } }); var swfobject = function() { var UNDEF = "undefined", OBJECT = "object", SHOCKWAVE_FLASH = "Shockwave Flash", SHOCKWAVE_FLASH_AX = "ShockwaveFlash.ShockwaveFlash", FLASH_MIME_TYPE = "application/x-shockwave-flash", EXPRESS_INSTALL_ID = "SWFObjectExprInst", ON_READY_STATE_CHANGE = "onreadystatechange", win = window, doc = document, nav = navigator, plugin = false, domLoadFnArr = [main], regObjArr = [], objIdArr = [], listenersArr = [], storedAltContent, storedAltContentId, storedCallbackFn, storedCallbackObj, isDomLoaded = false, isExpressInstallActive = false, dynamicStylesheet, dynamicStylesheetMedia, autoHideShow = true, ua = function() { var w3cdom = typeof doc.getElementById != UNDEF && typeof doc.getElementsByTagName != UNDEF && typeof doc.createElement != UNDEF, u = nav.userAgent.toLowerCase(), p = nav.platform.toLowerCase(), windows = p ? (/win/).test(p) : /win/.test(u), mac = p ? (/mac/).test(p) : /mac/.test(u), webkit = /webkit/.test(u) ? parseFloat(u.replace(/^.*webkit\/(\d+(\.\d+)?).*$/, "$1")) : false, ie = !+"\v1", playerVersion = [0,0,0], d = null; if (typeof nav.plugins != UNDEF && typeof nav.plugins[SHOCKWAVE_FLASH] == OBJECT) { d = nav.plugins[SHOCKWAVE_FLASH].description; if (d && !(typeof nav.mimeTypes != UNDEF && nav.mimeTypes[FLASH_MIME_TYPE] && !nav.mimeTypes[FLASH_MIME_TYPE].enabledPlugin)) { plugin = true; ie = false; d = d.replace(/^.*\s+(\S+\s+\S+$)/, "$1"); playerVersion[0] = parseInt(d.replace(/^(.*)\..*$/, "$1"), 10); playerVersion[1] = parseInt(d.replace(/^.*\.(.*)\s.*$/, "$1"), 10); playerVersion[2] = /[a-zA-Z]/.test(d) ? parseInt(d.replace(/^.*[a-zA-Z]+(.*)$/, "$1"), 10) : 0; } } else if (typeof win.ActiveXObject != UNDEF) { try { var a = new ActiveXObject(SHOCKWAVE_FLASH_AX); if (a) { d = a.GetVariable("$version"); if (d) { ie = true; d = d.split(" ")[1].split(","); playerVersion = [parseInt(d[0], 10), parseInt(d[1], 10), parseInt(d[2], 10)]; } } } catch(e) {} } return { w3:w3cdom, pv:playerVersion, wk:webkit, ie:ie, win:windows, mac:mac }; }(), onDomLoad = function() { if (!ua.w3) { return; } if ((typeof doc.readyState != UNDEF && doc.readyState == "complete") || (typeof doc.readyState == UNDEF && (doc.getElementsByTagName("body")[0] || doc.body))) { callDomLoadFunctions(); } if (!isDomLoaded) { if (typeof doc.addEventListener != UNDEF) { doc.addEventListener("DOMContentLoaded", callDomLoadFunctions, false); } if (ua.ie && ua.win) { doc.attachEvent(ON_READY_STATE_CHANGE, function() { if (doc.readyState == "complete") { doc.detachEvent(ON_READY_STATE_CHANGE, arguments.callee); callDomLoadFunctions(); } }); if (win == top) { (function(){ if (isDomLoaded) { return; } try { doc.documentElement.doScroll("left"); } catch(e) { setTimeout(arguments.callee, 0); return; } callDomLoadFunctions(); })(); } } if (ua.wk) { (function(){ if (isDomLoaded) { return; } if (!(/loaded|complete/).test(doc.readyState)) { setTimeout(arguments.callee, 0); return; } callDomLoadFunctions(); })(); } addLoadEvent(callDomLoadFunctions); } }(); function callDomLoadFunctions() { if (isDomLoaded) { return; } try { var t = doc.getElementsByTagName("body")[0].appendChild(createElement("span")); t.parentNode.removeChild(t); } catch (e) { return; } isDomLoaded = true; var dl = domLoadFnArr.length; for (var i = 0; i < dl; i++) { domLoadFnArr[i](); } } function addDomLoadEvent(fn) { if (isDomLoaded) { fn(); } else { domLoadFnArr[domLoadFnArr.length] = fn; } } function addLoadEvent(fn) { if (typeof win.addEventListener != UNDEF) { win.addEventListener("load", fn, false); } else if (typeof doc.addEventListener != UNDEF) { doc.addEventListener("load", fn, false); } else if (typeof win.attachEvent != UNDEF) { addListener(win, "onload", fn); } else if (typeof win.onload == "function") { var fnOld = win.onload; win.onload = function() { fnOld(); fn(); }; } else { win.onload = fn; } } function main() { if (plugin) { testPlayerVersion(); } else { matchVersions(); } } function testPlayerVersion() { var b = doc.getElementsByTagName("body")[0]; var o = createElement(OBJECT); o.setAttribute("type", FLASH_MIME_TYPE); var t = b.appendChild(o); if (t) { var counter = 0; (function(){ if (typeof t.GetVariable != UNDEF) { var d = t.GetVariable("$version"); if (d) { d = d.split(" ")[1].split(","); ua.pv = [parseInt(d[0], 10), parseInt(d[1], 10), parseInt(d[2], 10)]; } } else if (counter < 10) { counter++; setTimeout(arguments.callee, 10); return; } b.removeChild(o); t = null; matchVersions(); })(); } else { matchVersions(); } } function matchVersions() { var rl = regObjArr.length; if (rl > 0) { for (var i = 0; i < rl; i++) { var id = regObjArr[i].id; var cb = regObjArr[i].callbackFn; var cbObj = {success:false, id:id}; if (ua.pv[0] > 0) { var obj = getElementById(id); if (obj) { if (hasPlayerVersion(regObjArr[i].swfVersion) && !(ua.wk && ua.wk < 312)) { setVisibility(id, true); if (cb) { cbObj.success = true; cbObj.ref = getObjectById(id); cb(cbObj); } } else if (regObjArr[i].expressInstall && canExpressInstall()) { var att = {}; att.data = regObjArr[i].expressInstall; att.width = obj.getAttribute("width") || "0"; att.height = obj.getAttribute("height") || "0"; if (obj.getAttribute("class")) { att.styleclass = obj.getAttribute("class"); } if (obj.getAttribute("align")) { att.align = obj.getAttribute("align"); } var par = {}; var p = obj.getElementsByTagName("param"); var pl = p.length; for (var j = 0; j < pl; j++) { if (p[j].getAttribute("name").toLowerCase() != "movie") { par[p[j].getAttribute("name")] = p[j].getAttribute("value"); } } showExpressInstall(att, par, id, cb); } else { displayAltContent(obj); if (cb) { cb(cbObj); } } } } else { setVisibility(id, true); if (cb) { var o = getObjectById(id); if (o && typeof o.SetVariable != UNDEF) { cbObj.success = true; cbObj.ref = o; } cb(cbObj); } } } } } function getObjectById(objectIdStr) { var r = null; var o = getElementById(objectIdStr); if (o && o.nodeName == "OBJECT") { if (typeof o.SetVariable != UNDEF) { r = o; } else { var n = o.getElementsByTagName(OBJECT)[0]; if (n) { r = n; } } } return r; } function canExpressInstall() { return !isExpressInstallActive && hasPlayerVersion("6.0.65") && (ua.win || ua.mac) && !(ua.wk && ua.wk < 312); } function showExpressInstall(att, par, replaceElemIdStr, callbackFn) { isExpressInstallActive = true; storedCallbackFn = callbackFn || null; storedCallbackObj = {success:false, id:replaceElemIdStr}; var obj = getElementById(replaceElemIdStr); if (obj) { if (obj.nodeName == "OBJECT") { storedAltContent = abstractAltContent(obj); storedAltContentId = null; } else { storedAltContent = obj; storedAltContentId = replaceElemIdStr; } att.id = EXPRESS_INSTALL_ID; if (typeof att.width == UNDEF || (!(/%$/).test(att.width) && parseInt(att.width, 10) < 310)) { att.width = "310"; } if (typeof att.height == UNDEF || (!(/%$/).test(att.height) && parseInt(att.height, 10) < 137)) { att.height = "137"; } doc.title = doc.title.slice(0, 47) + " - Flash Player Installation"; var pt = ua.ie && ua.win ? "ActiveX" : "PlugIn", fv = "MMredirectURL=" + win.location.toString().replace(/&/g,"%26") + "&MMplayerType=" + pt + "&MMdoctitle=" + doc.title; if (typeof par.flashvars != UNDEF) { par.flashvars += "&" + fv; } else { par.flashvars = fv; } if (ua.ie && ua.win && obj.readyState != 4) { var newObj = createElement("div"); replaceElemIdStr += "SWFObjectNew"; newObj.setAttribute("id", replaceElemIdStr); obj.parentNode.insertBefore(newObj, obj); obj.style.display = "none"; (function(){ if (obj.readyState == 4) { obj.parentNode.removeChild(obj); } else { setTimeout(arguments.callee, 10); } })(); } createSWF(att, par, replaceElemIdStr); } } function displayAltContent(obj) { if (ua.ie && ua.win && obj.readyState != 4) { var el = createElement("div"); obj.parentNode.insertBefore(el, obj); el.parentNode.replaceChild(abstractAltContent(obj), el); obj.style.display = "none"; (function(){ if (obj.readyState == 4) { obj.parentNode.removeChild(obj); } else { setTimeout(arguments.callee, 10); } })(); } else { obj.parentNode.replaceChild(abstractAltContent(obj), obj); } } function abstractAltContent(obj) { var ac = createElement("div"); if (ua.win && ua.ie) { ac.innerHTML = obj.innerHTML; } else { var nestedObj = obj.getElementsByTagName(OBJECT)[0]; if (nestedObj) { var c = nestedObj.childNodes; if (c) { var cl = c.length; for (var i = 0; i < cl; i++) { if (!(c[i].nodeType == 1 && c[i].nodeName == "PARAM") && !(c[i].nodeType == 8)) { ac.appendChild(c[i].cloneNode(true)); } } } } } return ac; } function createSWF(attObj, parObj, id) { var r, el = getElementById(id); if (ua.wk && ua.wk < 312) { return r; } if (el) { if (typeof attObj.id == UNDEF) { attObj.id = id; } if (ua.ie && ua.win) { var att = ""; for (var i in attObj) { if (attObj[i] != Object.prototype[i]) { if (i.toLowerCase() == "data") { parObj.movie = attObj[i]; } else if (i.toLowerCase() == "styleclass") { att += ' class="' + attObj[i] + '"'; } else if (i.toLowerCase() != "classid") { att += ' ' + i + '="' + attObj[i] + '"'; } } } var par = ""; for (var j in parObj) { if (parObj[j] != Object.prototype[j]) { par += ''; } } el.outerHTML = '' + par + ''; objIdArr[objIdArr.length] = attObj.id; r = getElementById(attObj.id); } else { var o = createElement(OBJECT); o.setAttribute("type", FLASH_MIME_TYPE); for (var m in attObj) { if (attObj[m] != Object.prototype[m]) { if (m.toLowerCase() == "styleclass") { o.setAttribute("class", attObj[m]); } else if (m.toLowerCase() != "classid") { o.setAttribute(m, attObj[m]); } } } for (var n in parObj) { if (parObj[n] != Object.prototype[n] && n.toLowerCase() != "movie") { createObjParam(o, n, parObj[n]); } } el.parentNode.replaceChild(o, el); r = o; } } return r; } function createObjParam(el, pName, pValue) { var p = createElement("param"); p.setAttribute("name", pName); p.setAttribute("value", pValue); el.appendChild(p); } function removeSWF(id) { var obj = getElementById(id); if (obj && obj.nodeName == "OBJECT") { if (ua.ie && ua.win) { obj.style.display = "none"; (function(){ if (obj.readyState == 4) { removeObjectInIE(id); } else { setTimeout(arguments.callee, 10); } })(); } else { obj.parentNode.removeChild(obj); } } } function removeObjectInIE(id) { var obj = getElementById(id); if (obj) { for (var i in obj) { if (typeof obj[i] == "function") { obj[i] = null; } } obj.parentNode.removeChild(obj); } } function getElementById(id) { var el = null; try { el = doc.getElementById(id); } catch (e) {} return el; } function createElement(el) { return doc.createElement(el); } function addListener(target, eventType, fn) { target.attachEvent(eventType, fn); listenersArr[listenersArr.length] = [target, eventType, fn]; } function hasPlayerVersion(rv) { var pv = ua.pv, v = rv.split("."); v[0] = parseInt(v[0], 10); v[1] = parseInt(v[1], 10) || 0; v[2] = parseInt(v[2], 10) || 0; return (pv[0] > v[0] || (pv[0] == v[0] && pv[1] > v[1]) || (pv[0] == v[0] && pv[1] == v[1] && pv[2] >= v[2])) ? true : false; } function createCSS(sel, decl, media, newStyle) { if (ua.ie && ua.mac) { return; } var h = doc.getElementsByTagName("head")[0]; if (!h) { return; } var m = (media && typeof media == "string") ? media : "screen"; if (newStyle) { dynamicStylesheet = null; dynamicStylesheetMedia = null; } if (!dynamicStylesheet || dynamicStylesheetMedia != m) { var s = createElement("style"); s.setAttribute("type", "text/css"); s.setAttribute("media", m); dynamicStylesheet = h.appendChild(s); if (ua.ie && ua.win && typeof doc.styleSheets != UNDEF && doc.styleSheets.length > 0) { dynamicStylesheet = doc.styleSheets[doc.styleSheets.length - 1]; } dynamicStylesheetMedia = m; } if (ua.ie && ua.win) { if (dynamicStylesheet && typeof dynamicStylesheet.addRule == OBJECT) { dynamicStylesheet.addRule(sel, decl); } } else { if (dynamicStylesheet && typeof doc.createTextNode != UNDEF) { dynamicStylesheet.appendChild(doc.createTextNode(sel + " {" + decl + "}")); } } } function setVisibility(id, isVisible) { if (!autoHideShow) { return; } var v = isVisible ? "visible" : "hidden"; if (isDomLoaded && getElementById(id)) { getElementById(id).style.visibility = v; } else { createCSS("#" + id, "visibility:" + v); } } function urlEncodeIfNecessary(s) { var regex = /[\\\"<>\.;]/; var hasBadChars = regex.exec(s) != null; return hasBadChars && typeof encodeURIComponent != UNDEF ? encodeURIComponent(s) : s; } var cleanup = function() { if (ua.ie && ua.win) { window.attachEvent("onunload", function() { var ll = listenersArr.length; for (var i = 0; i < ll; i++) { listenersArr[i][0].detachEvent(listenersArr[i][1], listenersArr[i][2]); } var il = objIdArr.length; for (var j = 0; j < il; j++) { removeSWF(objIdArr[j]); } for (var k in ua) { ua[k] = null; } ua = null; for (var l in swfobject) { swfobject[l] = null; } swfobject = null; window.detachEvent('onunload', arguments.callee); }); } }(); return { registerObject: function(objectIdStr, swfVersionStr, xiSwfUrlStr, callbackFn) { if (ua.w3 && objectIdStr && swfVersionStr) { var regObj = {}; regObj.id = objectIdStr; regObj.swfVersion = swfVersionStr; regObj.expressInstall = xiSwfUrlStr; regObj.callbackFn = callbackFn; regObjArr[regObjArr.length] = regObj; setVisibility(objectIdStr, false); } else if (callbackFn) { callbackFn({success:false, id:objectIdStr}); } }, getObjectById: function(objectIdStr) { if (ua.w3) { return getObjectById(objectIdStr); } }, embedSWF: function(swfUrlStr, replaceElemIdStr, widthStr, heightStr, swfVersionStr, xiSwfUrlStr, flashvarsObj, parObj, attObj, callbackFn) { var callbackObj = {success:false, id:replaceElemIdStr}; if (ua.w3 && !(ua.wk && ua.wk < 312) && swfUrlStr && replaceElemIdStr && widthStr && heightStr && swfVersionStr) { setVisibility(replaceElemIdStr, false); addDomLoadEvent(function() { widthStr += ""; heightStr += ""; var att = {}; if (attObj && typeof attObj === OBJECT) { for (var i in attObj) { att[i] = attObj[i]; } } att.data = swfUrlStr; att.width = widthStr; att.height = heightStr; var par = {}; if (parObj && typeof parObj === OBJECT) { for (var j in parObj) { par[j] = parObj[j]; } } if (flashvarsObj && typeof flashvarsObj === OBJECT) { for (var k in flashvarsObj) { if (typeof par.flashvars != UNDEF) { par.flashvars += "&" + k + "=" + flashvarsObj[k]; } else { par.flashvars = k + "=" + flashvarsObj[k]; } } } if (hasPlayerVersion(swfVersionStr)) { var obj = createSWF(att, par, replaceElemIdStr); if (att.id == replaceElemIdStr) { setVisibility(replaceElemIdStr, true); } callbackObj.success = true; callbackObj.ref = obj; } else if (xiSwfUrlStr && canExpressInstall()) { att.data = xiSwfUrlStr; showExpressInstall(att, par, replaceElemIdStr, callbackFn); return; } else { setVisibility(replaceElemIdStr, true); } if (callbackFn) { callbackFn(callbackObj); } }); } else if (callbackFn) { callbackFn(callbackObj); } }, switchOffAutoHideShow: function() { autoHideShow = false; }, ua: ua, getFlashPlayerVersion: function() { return { major:ua.pv[0], minor:ua.pv[1], release:ua.pv[2] }; }, hasFlashPlayerVersion: hasPlayerVersion, createSWF: function(attObj, parObj, replaceElemIdStr) { if (ua.w3) { return createSWF(attObj, parObj, replaceElemIdStr); } else { return undefined; } }, showExpressInstall: function(att, par, replaceElemIdStr, callbackFn) { if (ua.w3 && canExpressInstall()) { showExpressInstall(att, par, replaceElemIdStr, callbackFn); } }, removeSWF: function(objElemIdStr) { if (ua.w3) { removeSWF(objElemIdStr); } }, createCSS: function(selStr, declStr, mediaStr, newStyleBoolean) { if (ua.w3) { createCSS(selStr, declStr, mediaStr, newStyleBoolean); } }, addDomLoadEvent: addDomLoadEvent, addLoadEvent: addLoadEvent, getQueryParamValue: function(param) { var q = doc.location.search || doc.location.hash; if (q) { if (/\?/.test(q)) { q = q.split("?")[1]; } if (param == null) { return urlEncodeIfNecessary(q); } var pairs = q.split("&"); for (var i = 0; i < pairs.length; i++) { if (pairs[i].substring(0, pairs[i].indexOf("=")) == param) { return urlEncodeIfNecessary(pairs[i].substring((pairs[i].indexOf("=") + 1))); } } } return ""; }, expressInstallCallback: function() { if (isExpressInstallActive) { var obj = getElementById(EXPRESS_INSTALL_ID); if (obj && storedAltContent) { obj.parentNode.replaceChild(storedAltContent, obj); if (storedAltContentId) { setVisibility(storedAltContentId, true); if (ua.ie && ua.win) { storedAltContent.style.display = "block"; } } if (storedCallbackFn) { storedCallbackFn(storedCallbackObj); } } isExpressInstallActive = false; } } }; }(); Ext.FlashComponent = Ext.extend(Ext.BoxComponent, { flashVersion : '9.0.115', backgroundColor: '#ffffff', wmode: 'opaque', flashVars: undefined, flashParams: undefined, url: undefined, swfId : undefined, swfWidth: '100%', swfHeight: '100%', expressInstall: false, initComponent : function(){ Ext.FlashComponent.superclass.initComponent.call(this); this.addEvents( 'initialize' ); }, onRender : function(){ Ext.FlashComponent.superclass.onRender.apply(this, arguments); var params = Ext.apply({ allowScriptAccess: 'always', bgcolor: this.backgroundColor, wmode: this.wmode }, this.flashParams), vars = Ext.apply({ allowedDomain: document.location.hostname, YUISwfId: this.getId(), YUIBridgeCallback: 'Ext.FlashEventProxy.onEvent' }, this.flashVars); new swfobject.embedSWF(this.url, this.id, this.swfWidth, this.swfHeight, this.flashVersion, this.expressInstall ? Ext.FlashComponent.EXPRESS_INSTALL_URL : undefined, vars, params); this.swf = Ext.getDom(this.id); this.el = Ext.get(this.swf); }, getSwfId : function(){ return this.swfId || (this.swfId = "extswf" + (++Ext.Component.AUTO_ID)); }, getId : function(){ return this.id || (this.id = "extflashcmp" + (++Ext.Component.AUTO_ID)); }, onFlashEvent : function(e){ switch(e.type){ case "swfReady": this.initSwf(); return; case "log": return; } e.component = this; this.fireEvent(e.type.toLowerCase().replace(/event$/, ''), e); }, initSwf : function(){ this.onSwfReady(!!this.isInitialized); this.isInitialized = true; this.fireEvent('initialize', this); }, beforeDestroy: function(){ if(this.rendered){ swfobject.removeSWF(this.swf.id); } Ext.FlashComponent.superclass.beforeDestroy.call(this); }, onSwfReady : Ext.emptyFn }); Ext.FlashComponent.EXPRESS_INSTALL_URL = 'http:/' + '/swfobject.googlecode.com/svn/trunk/swfobject/expressInstall.swf'; Ext.reg('flash', Ext.FlashComponent); Ext.FlashEventProxy = { onEvent : function(id, e){ var fp = Ext.getCmp(id); if(fp){ fp.onFlashEvent(e); }else{ arguments.callee.defer(10, this, [id, e]); } } }; Ext.chart.Chart = Ext.extend(Ext.FlashComponent, { refreshBuffer: 100, chartStyle: { padding: 10, animationEnabled: true, font: { name: 'Tahoma', color: 0x444444, size: 11 }, dataTip: { padding: 5, border: { color: 0x99bbe8, size:1 }, background: { color: 0xDAE7F6, alpha: .9 }, font: { name: 'Tahoma', color: 0x15428B, size: 10, bold: true } } }, extraStyle: null, seriesStyles: null, disableCaching: Ext.isIE || Ext.isOpera, disableCacheParam: '_dc', initComponent : function(){ Ext.chart.Chart.superclass.initComponent.call(this); if(!this.url){ this.url = Ext.chart.Chart.CHART_URL; } if(this.disableCaching){ this.url = Ext.urlAppend(this.url, String.format('{0}={1}', this.disableCacheParam, new Date().getTime())); } this.addEvents( 'itemmouseover', 'itemmouseout', 'itemclick', 'itemdoubleclick', 'itemdragstart', 'itemdrag', 'itemdragend', 'beforerefresh', 'refresh' ); this.store = Ext.StoreMgr.lookup(this.store); }, setStyle: function(name, value){ this.swf.setStyle(name, Ext.encode(value)); }, setStyles: function(styles){ this.swf.setStyles(Ext.encode(styles)); }, setSeriesStyles: function(styles){ this.seriesStyles = styles; var s = []; Ext.each(styles, function(style){ s.push(Ext.encode(style)); }); this.swf.setSeriesStyles(s); }, setCategoryNames : function(names){ this.swf.setCategoryNames(names); }, setLegendRenderer : function(fn, scope){ var chart = this; scope = scope || chart; chart.removeFnProxy(chart.legendFnName); chart.legendFnName = chart.createFnProxy(function(name){ return fn.call(scope, name); }); chart.swf.setLegendLabelFunction(chart.legendFnName); }, setTipRenderer : function(fn, scope){ var chart = this; scope = scope || chart; chart.removeFnProxy(chart.tipFnName); chart.tipFnName = chart.createFnProxy(function(item, index, series){ var record = chart.store.getAt(index); return fn.call(scope, chart, record, index, series); }); chart.swf.setDataTipFunction(chart.tipFnName); }, setSeries : function(series){ this.series = series; this.refresh(); }, bindStore : function(store, initial){ if(!initial && this.store){ if(store !== this.store && this.store.autoDestroy){ this.store.destroy(); }else{ this.store.un("datachanged", this.refresh, this); this.store.un("add", this.delayRefresh, this); this.store.un("remove", this.delayRefresh, this); this.store.un("update", this.delayRefresh, this); this.store.un("clear", this.refresh, this); } } if(store){ store = Ext.StoreMgr.lookup(store); store.on({ scope: this, datachanged: this.refresh, add: this.delayRefresh, remove: this.delayRefresh, update: this.delayRefresh, clear: this.refresh }); } this.store = store; if(store && !initial){ this.refresh(); } }, onSwfReady : function(isReset){ Ext.chart.Chart.superclass.onSwfReady.call(this, isReset); var ref; this.swf.setType(this.type); if(this.chartStyle){ this.setStyles(Ext.apply({}, this.extraStyle, this.chartStyle)); } if(this.categoryNames){ this.setCategoryNames(this.categoryNames); } if(this.tipRenderer){ ref = this.getFunctionRef(this.tipRenderer); this.setTipRenderer(ref.fn, ref.scope); } if(this.legendRenderer){ ref = this.getFunctionRef(this.legendRenderer); this.setLegendRenderer(ref.fn, ref.scope); } if(!isReset){ this.bindStore(this.store, true); } this.refresh.defer(10, this); }, delayRefresh : function(){ if(!this.refreshTask){ this.refreshTask = new Ext.util.DelayedTask(this.refresh, this); } this.refreshTask.delay(this.refreshBuffer); }, refresh : function(){ if(this.fireEvent('beforerefresh', this) !== false){ var styleChanged = false; var data = [], rs = this.store.data.items; for(var j = 0, len = rs.length; j < len; j++){ data[j] = rs[j].data; } var dataProvider = []; var seriesCount = 0; var currentSeries = null; var i = 0; if(this.series){ seriesCount = this.series.length; for(i = 0; i < seriesCount; i++){ currentSeries = this.series[i]; var clonedSeries = {}; for(var prop in currentSeries){ if(prop == "style" && currentSeries.style !== null){ clonedSeries.style = Ext.encode(currentSeries.style); styleChanged = true; } else{ clonedSeries[prop] = currentSeries[prop]; } } dataProvider.push(clonedSeries); } } if(seriesCount > 0){ for(i = 0; i < seriesCount; i++){ currentSeries = dataProvider[i]; if(!currentSeries.type){ currentSeries.type = this.type; } currentSeries.dataProvider = data; } } else{ dataProvider.push({type: this.type, dataProvider: data}); } this.swf.setDataProvider(dataProvider); if(this.seriesStyles){ this.setSeriesStyles(this.seriesStyles); } this.fireEvent('refresh', this); } }, createFnProxy : function(fn){ var fnName = 'extFnProxy' + (++Ext.chart.Chart.PROXY_FN_ID); Ext.chart.Chart.proxyFunction[fnName] = fn; return 'Ext.chart.Chart.proxyFunction.' + fnName; }, removeFnProxy : function(fn){ if(!Ext.isEmpty(fn)){ fn = fn.replace('Ext.chart.Chart.proxyFunction.', ''); delete Ext.chart.Chart.proxyFunction[fn]; } }, getFunctionRef : function(val){ if(Ext.isFunction(val)){ return { fn: val, scope: this }; }else{ return { fn: val.fn, scope: val.scope || this }; } }, onDestroy: function(){ if (this.refreshTask && this.refreshTask.cancel){ this.refreshTask.cancel(); } Ext.chart.Chart.superclass.onDestroy.call(this); this.bindStore(null); this.removeFnProxy(this.tipFnName); this.removeFnProxy(this.legendFnName); } }); Ext.reg('chart', Ext.chart.Chart); Ext.chart.Chart.PROXY_FN_ID = 0; Ext.chart.Chart.proxyFunction = {}; Ext.chart.Chart.CHART_URL = 'http:/' + '/yui.yahooapis.com/2.8.2/build/charts/assets/charts.swf'; Ext.chart.PieChart = Ext.extend(Ext.chart.Chart, { type: 'pie', onSwfReady : function(isReset){ Ext.chart.PieChart.superclass.onSwfReady.call(this, isReset); this.setDataField(this.dataField); this.setCategoryField(this.categoryField); }, setDataField : function(field){ this.dataField = field; this.swf.setDataField(field); }, setCategoryField : function(field){ this.categoryField = field; this.swf.setCategoryField(field); } }); Ext.reg('piechart', Ext.chart.PieChart); Ext.chart.CartesianChart = Ext.extend(Ext.chart.Chart, { onSwfReady : function(isReset){ Ext.chart.CartesianChart.superclass.onSwfReady.call(this, isReset); this.labelFn = []; if(this.xField){ this.setXField(this.xField); } if(this.yField){ this.setYField(this.yField); } if(this.xAxis){ this.setXAxis(this.xAxis); } if(this.xAxes){ this.setXAxes(this.xAxes); } if(this.yAxis){ this.setYAxis(this.yAxis); } if(this.yAxes){ this.setYAxes(this.yAxes); } if(Ext.isDefined(this.constrainViewport)){ this.swf.setConstrainViewport(this.constrainViewport); } }, setXField : function(value){ this.xField = value; this.swf.setHorizontalField(value); }, setYField : function(value){ this.yField = value; this.swf.setVerticalField(value); }, setXAxis : function(value){ this.xAxis = this.createAxis('xAxis', value); this.swf.setHorizontalAxis(this.xAxis); }, setXAxes : function(value){ var axis; for(var i = 0; i < value.length; i++) { axis = this.createAxis('xAxis' + i, value[i]); this.swf.setHorizontalAxis(axis); } }, setYAxis : function(value){ this.yAxis = this.createAxis('yAxis', value); this.swf.setVerticalAxis(this.yAxis); }, setYAxes : function(value){ var axis; for(var i = 0; i < value.length; i++) { axis = this.createAxis('yAxis' + i, value[i]); this.swf.setVerticalAxis(axis); } }, createAxis : function(axis, value){ var o = Ext.apply({}, value), ref, old; if(this[axis]){ old = this[axis].labelFunction; this.removeFnProxy(old); this.labelFn.remove(old); } if(o.labelRenderer){ ref = this.getFunctionRef(o.labelRenderer); o.labelFunction = this.createFnProxy(function(v){ return ref.fn.call(ref.scope, v); }); delete o.labelRenderer; this.labelFn.push(o.labelFunction); } if(axis.indexOf('xAxis') > -1 && o.position == 'left'){ o.position = 'bottom'; } return o; }, onDestroy : function(){ Ext.chart.CartesianChart.superclass.onDestroy.call(this); Ext.each(this.labelFn, function(fn){ this.removeFnProxy(fn); }, this); } }); Ext.reg('cartesianchart', Ext.chart.CartesianChart); Ext.chart.LineChart = Ext.extend(Ext.chart.CartesianChart, { type: 'line' }); Ext.reg('linechart', Ext.chart.LineChart); Ext.chart.ColumnChart = Ext.extend(Ext.chart.CartesianChart, { type: 'column' }); Ext.reg('columnchart', Ext.chart.ColumnChart); Ext.chart.StackedColumnChart = Ext.extend(Ext.chart.CartesianChart, { type: 'stackcolumn' }); Ext.reg('stackedcolumnchart', Ext.chart.StackedColumnChart); Ext.chart.BarChart = Ext.extend(Ext.chart.CartesianChart, { type: 'bar' }); Ext.reg('barchart', Ext.chart.BarChart); Ext.chart.StackedBarChart = Ext.extend(Ext.chart.CartesianChart, { type: 'stackbar' }); Ext.reg('stackedbarchart', Ext.chart.StackedBarChart); Ext.chart.Axis = function(config){ Ext.apply(this, config); }; Ext.chart.Axis.prototype = { type: null, orientation: "horizontal", reverse: false, labelFunction: null, hideOverlappingLabels: true, labelSpacing: 2 }; Ext.chart.NumericAxis = Ext.extend(Ext.chart.Axis, { type: "numeric", minimum: NaN, maximum: NaN, majorUnit: NaN, minorUnit: NaN, snapToUnits: true, alwaysShowZero: true, scale: "linear", roundMajorUnit: true, calculateByLabelSize: true, position: 'left', adjustMaximumByMajorUnit: true, adjustMinimumByMajorUnit: true }); Ext.chart.TimeAxis = Ext.extend(Ext.chart.Axis, { type: "time", minimum: null, maximum: null, majorUnit: NaN, majorTimeUnit: null, minorUnit: NaN, minorTimeUnit: null, snapToUnits: true, stackingEnabled: false, calculateByLabelSize: true }); Ext.chart.CategoryAxis = Ext.extend(Ext.chart.Axis, { type: "category", categoryNames: null, calculateCategoryCount: false }); Ext.chart.Series = function(config) { Ext.apply(this, config); }; Ext.chart.Series.prototype = { type: null, displayName: null }; Ext.chart.CartesianSeries = Ext.extend(Ext.chart.Series, { xField: null, yField: null, showInLegend: true, axis: 'primary' }); Ext.chart.ColumnSeries = Ext.extend(Ext.chart.CartesianSeries, { type: "column" }); Ext.chart.LineSeries = Ext.extend(Ext.chart.CartesianSeries, { type: "line" }); Ext.chart.BarSeries = Ext.extend(Ext.chart.CartesianSeries, { type: "bar" }); Ext.chart.PieSeries = Ext.extend(Ext.chart.Series, { type: "pie", dataField: null, categoryField: null }); Ext.menu.Menu = Ext.extend(Ext.Container, { minWidth : 120, shadow : 'sides', subMenuAlign : 'tl-tr?', defaultAlign : 'tl-bl?', allowOtherMenus : false, ignoreParentClicks : false, enableScrolling : true, maxHeight : null, scrollIncrement : 24, showSeparator : true, defaultOffsets : [0, 0], plain : false, floating : true, zIndex: 15000, hidden : true, layout : 'menu', hideMode : 'offsets', scrollerHeight : 8, autoLayout : true, defaultType : 'menuitem', bufferResize : false, initComponent : function(){ if(Ext.isArray(this.initialConfig)){ Ext.apply(this, {items:this.initialConfig}); } this.addEvents( 'click', 'mouseover', 'mouseout', 'itemclick' ); Ext.menu.MenuMgr.register(this); if(this.floating){ Ext.EventManager.onWindowResize(this.hide, this); }else{ if(this.initialConfig.hidden !== false){ this.hidden = false; } this.internalDefaults = {hideOnClick: false}; } Ext.menu.Menu.superclass.initComponent.call(this); if(this.autoLayout){ var fn = this.doLayout.createDelegate(this, []); this.on({ add: fn, remove: fn }); } }, getLayoutTarget : function() { return this.ul; }, onRender : function(ct, position){ if(!ct){ ct = Ext.getBody(); } var dh = { id: this.getId(), cls: 'x-menu ' + ((this.floating) ? 'x-menu-floating x-layer ' : '') + (this.cls || '') + (this.plain ? ' x-menu-plain' : '') + (this.showSeparator ? '' : ' x-menu-nosep'), style: this.style, cn: [ {tag: 'a', cls: 'x-menu-focus', href: '#', onclick: 'return false;', tabIndex: '-1'}, {tag: 'ul', cls: 'x-menu-list'} ] }; if(this.floating){ this.el = new Ext.Layer({ shadow: this.shadow, dh: dh, constrain: false, parentEl: ct, zindex: this.zIndex }); }else{ this.el = ct.createChild(dh); } Ext.menu.Menu.superclass.onRender.call(this, ct, position); if(!this.keyNav){ this.keyNav = new Ext.menu.MenuNav(this); } this.focusEl = this.el.child('a.x-menu-focus'); this.ul = this.el.child('ul.x-menu-list'); this.mon(this.ul, { scope: this, click: this.onClick, mouseover: this.onMouseOver, mouseout: this.onMouseOut }); if(this.enableScrolling){ this.mon(this.el, { scope: this, delegate: '.x-menu-scroller', click: this.onScroll, mouseover: this.deactivateActive }); } }, findTargetItem : function(e){ var t = e.getTarget('.x-menu-list-item', this.ul, true); if(t && t.menuItemId){ return this.items.get(t.menuItemId); } }, onClick : function(e){ var t = this.findTargetItem(e); if(t){ if(t.isFormField){ this.setActiveItem(t); }else if(t instanceof Ext.menu.BaseItem){ if(t.menu && this.ignoreParentClicks){ t.expandMenu(); e.preventDefault(); }else if(t.onClick){ t.onClick(e); this.fireEvent('click', this, t, e); } } } }, setActiveItem : function(item, autoExpand){ if(item != this.activeItem){ this.deactivateActive(); if((this.activeItem = item).isFormField){ item.focus(); }else{ item.activate(autoExpand); } }else if(autoExpand){ item.expandMenu(); } }, deactivateActive : function(){ var a = this.activeItem; if(a){ if(a.isFormField){ if(a.collapse){ a.collapse(); } }else{ a.deactivate(); } delete this.activeItem; } }, tryActivate : function(start, step){ var items = this.items; for(var i = start, len = items.length; i >= 0 && i < len; i+= step){ var item = items.get(i); if(item.isVisible() && !item.disabled && (item.canActivate || item.isFormField)){ this.setActiveItem(item, false); return item; } } return false; }, onMouseOver : function(e){ var t = this.findTargetItem(e); if(t){ if(t.canActivate && !t.disabled){ this.setActiveItem(t, true); } } this.over = true; this.fireEvent('mouseover', this, e, t); }, onMouseOut : function(e){ var t = this.findTargetItem(e); if(t){ if(t == this.activeItem && t.shouldDeactivate && t.shouldDeactivate(e)){ this.activeItem.deactivate(); delete this.activeItem; } } this.over = false; this.fireEvent('mouseout', this, e, t); }, onScroll : function(e, t){ if(e){ e.stopEvent(); } var ul = this.ul.dom, top = Ext.fly(t).is('.x-menu-scroller-top'); ul.scrollTop += this.scrollIncrement * (top ? -1 : 1); if(top ? ul.scrollTop <= 0 : ul.scrollTop + this.activeMax >= ul.scrollHeight){ this.onScrollerOut(null, t); } }, onScrollerIn : function(e, t){ var ul = this.ul.dom, top = Ext.fly(t).is('.x-menu-scroller-top'); if(top ? ul.scrollTop > 0 : ul.scrollTop + this.activeMax < ul.scrollHeight){ Ext.fly(t).addClass(['x-menu-item-active', 'x-menu-scroller-active']); } }, onScrollerOut : function(e, t){ Ext.fly(t).removeClass(['x-menu-item-active', 'x-menu-scroller-active']); }, show : function(el, pos, parentMenu){ if(this.floating){ this.parentMenu = parentMenu; if(!this.el){ this.render(); this.doLayout(false, true); } this.showAt(this.el.getAlignToXY(el, pos || this.defaultAlign, this.defaultOffsets), parentMenu); }else{ Ext.menu.Menu.superclass.show.call(this); } }, showAt : function(xy, parentMenu){ if(this.fireEvent('beforeshow', this) !== false){ this.parentMenu = parentMenu; if(!this.el){ this.render(); } if(this.enableScrolling){ this.el.setXY(xy); xy[1] = this.constrainScroll(xy[1]); xy = [this.el.adjustForConstraints(xy)[0], xy[1]]; }else{ xy = this.el.adjustForConstraints(xy); } this.el.setXY(xy); this.el.show(); Ext.menu.Menu.superclass.onShow.call(this); if(Ext.isIE9m){ this.fireEvent('autosize', this); if(!Ext.isIE8){ this.el.repaint(); } } this.hidden = false; this.focus(); this.fireEvent('show', this); } }, constrainScroll : function(y){ var max, full = this.ul.setHeight('auto').getHeight(), returnY = y, normalY, parentEl, scrollTop, viewHeight; if(this.floating){ parentEl = Ext.fly(this.el.dom.parentNode); scrollTop = parentEl.getScroll().top; viewHeight = parentEl.getViewSize().height; normalY = y - scrollTop; max = this.maxHeight ? this.maxHeight : viewHeight - normalY; if(full > viewHeight) { max = viewHeight; returnY = y - normalY; } else if(max < full) { returnY = y - (full - max); max = full; } }else{ max = this.getHeight(); } if (this.maxHeight){ max = Math.min(this.maxHeight, max); } if(full > max && max > 0){ this.activeMax = max - this.scrollerHeight * 2 - this.el.getFrameWidth('tb') - Ext.num(this.el.shadowOffset, 0); this.ul.setHeight(this.activeMax); this.createScrollers(); this.el.select('.x-menu-scroller').setDisplayed(''); }else{ this.ul.setHeight(full); this.el.select('.x-menu-scroller').setDisplayed('none'); } this.ul.dom.scrollTop = 0; return returnY; }, createScrollers : function(){ if(!this.scroller){ this.scroller = { pos: 0, top: this.el.insertFirst({ tag: 'div', cls: 'x-menu-scroller x-menu-scroller-top', html: ' ' }), bottom: this.el.createChild({ tag: 'div', cls: 'x-menu-scroller x-menu-scroller-bottom', html: ' ' }) }; this.scroller.top.hover(this.onScrollerIn, this.onScrollerOut, this); this.scroller.topRepeater = new Ext.util.ClickRepeater(this.scroller.top, { listeners: { click: this.onScroll.createDelegate(this, [null, this.scroller.top], false) } }); this.scroller.bottom.hover(this.onScrollerIn, this.onScrollerOut, this); this.scroller.bottomRepeater = new Ext.util.ClickRepeater(this.scroller.bottom, { listeners: { click: this.onScroll.createDelegate(this, [null, this.scroller.bottom], false) } }); } }, onLayout : function(){ if(this.isVisible()){ if(this.enableScrolling){ this.constrainScroll(this.el.getTop()); } if(this.floating){ this.el.sync(); } } }, focus : function(){ if(!this.hidden){ this.doFocus.defer(50, this); } }, doFocus : function(){ if(!this.hidden){ this.focusEl.focus(); } }, hide : function(deep){ if (!this.isDestroyed) { this.deepHide = deep; Ext.menu.Menu.superclass.hide.call(this); delete this.deepHide; } }, onHide : function(){ Ext.menu.Menu.superclass.onHide.call(this); this.deactivateActive(); if(this.el && this.floating){ this.el.hide(); } var pm = this.parentMenu; if(this.deepHide === true && pm){ if(pm.floating){ pm.hide(true); }else{ pm.deactivateActive(); } } }, lookupComponent : function(c){ if(Ext.isString(c)){ c = (c == 'separator' || c == '-') ? new Ext.menu.Separator() : new Ext.menu.TextItem(c); this.applyDefaults(c); }else{ if(Ext.isObject(c)){ c = this.getMenuItem(c); }else if(c.tagName || c.el){ c = new Ext.BoxComponent({ el: c }); } } return c; }, applyDefaults : function(c) { if (!Ext.isString(c)) { c = Ext.menu.Menu.superclass.applyDefaults.call(this, c); var d = this.internalDefaults; if(d){ if(c.events){ Ext.applyIf(c.initialConfig, d); Ext.apply(c, d); }else{ Ext.applyIf(c, d); } } } return c; }, getMenuItem : function(config) { config.ownerCt = this; if (!config.isXType) { if (!config.xtype && Ext.isBoolean(config.checked)) { return new Ext.menu.CheckItem(config); } return Ext.create(config, this.defaultType); } return config; }, addSeparator : function() { return this.add(new Ext.menu.Separator()); }, addElement : function(el) { return this.add(new Ext.menu.BaseItem({ el: el })); }, addItem : function(item) { return this.add(item); }, addMenuItem : function(config) { return this.add(this.getMenuItem(config)); }, addText : function(text){ return this.add(new Ext.menu.TextItem(text)); }, onDestroy : function(){ Ext.EventManager.removeResizeListener(this.hide, this); var pm = this.parentMenu; if(pm && pm.activeChild == this){ delete pm.activeChild; } delete this.parentMenu; Ext.menu.Menu.superclass.onDestroy.call(this); Ext.menu.MenuMgr.unregister(this); if(this.keyNav) { this.keyNav.disable(); } var s = this.scroller; if(s){ Ext.destroy(s.topRepeater, s.bottomRepeater, s.top, s.bottom); } Ext.destroy( this.el, this.focusEl, this.ul ); } }); Ext.reg('menu', Ext.menu.Menu); Ext.menu.MenuNav = Ext.extend(Ext.KeyNav, function(){ function up(e, m){ if(!m.tryActivate(m.items.indexOf(m.activeItem)-1, -1)){ m.tryActivate(m.items.length-1, -1); } } function down(e, m){ if(!m.tryActivate(m.items.indexOf(m.activeItem)+1, 1)){ m.tryActivate(0, 1); } } return { constructor : function(menu){ Ext.menu.MenuNav.superclass.constructor.call(this, menu.el); this.scope = this.menu = menu; }, doRelay : function(e, h){ var k = e.getKey(); if (this.menu.activeItem && this.menu.activeItem.isFormField && k != e.TAB) { return false; } if(!this.menu.activeItem && e.isNavKeyPress() && k != e.SPACE && k != e.RETURN){ this.menu.tryActivate(0, 1); return false; } return h.call(this.scope || this, e, this.menu); }, tab: function(e, m) { e.stopEvent(); if (e.shiftKey) { up(e, m); } else { down(e, m); } }, up : up, down : down, right : function(e, m){ if(m.activeItem){ m.activeItem.expandMenu(true); } }, left : function(e, m){ m.hide(); if(m.parentMenu && m.parentMenu.activeItem){ m.parentMenu.activeItem.activate(); } }, enter : function(e, m){ if(m.activeItem){ e.stopPropagation(); m.activeItem.onClick(e); m.fireEvent('click', this, m.activeItem); return true; } } }; }()); Ext.menu.MenuMgr = function(){ var menus, active, map, groups = {}, attached = false, lastShow = new Date(); function init(){ menus = {}; active = new Ext.util.MixedCollection(); map = Ext.getDoc().addKeyListener(27, hideAll); map.disable(); } function hideAll(){ if(active && active.length > 0){ var c = active.clone(); c.each(function(m){ m.hide(); }); return true; } return false; } function onHide(m){ active.remove(m); if(active.length < 1){ map.disable(); Ext.getDoc().un("mousedown", onMouseDown); attached = false; } } function onShow(m){ var last = active.last(); lastShow = new Date(); active.add(m); if(!attached){ map.enable(); Ext.getDoc().on("mousedown", onMouseDown); attached = true; } if(m.parentMenu){ m.getEl().setZIndex(parseInt(m.parentMenu.getEl().getStyle("z-index"), 10) + 3); m.parentMenu.activeChild = m; }else if(last && !last.isDestroyed && last.isVisible()){ m.getEl().setZIndex(parseInt(last.getEl().getStyle("z-index"), 10) + 3); } } function onBeforeHide(m){ if(m.activeChild){ m.activeChild.hide(); } if(m.autoHideTimer){ clearTimeout(m.autoHideTimer); delete m.autoHideTimer; } } function onBeforeShow(m){ var pm = m.parentMenu; if(!pm && !m.allowOtherMenus){ hideAll(); }else if(pm && pm.activeChild){ pm.activeChild.hide(); } } function onMouseDown(e){ if(lastShow.getElapsed() > 50 && active.length > 0 && !e.getTarget(".x-menu")){ hideAll(); } } return { hideAll : function(){ return hideAll(); }, register : function(menu){ if(!menus){ init(); } menus[menu.id] = menu; menu.on({ beforehide: onBeforeHide, hide: onHide, beforeshow: onBeforeShow, show: onShow }); }, get : function(menu){ if(typeof menu == "string"){ if(!menus){ return null; } return menus[menu]; }else if(menu.events){ return menu; }else if(typeof menu.length == 'number'){ return new Ext.menu.Menu({items:menu}); }else{ return Ext.create(menu, 'menu'); } }, unregister : function(menu){ delete menus[menu.id]; menu.un("beforehide", onBeforeHide); menu.un("hide", onHide); menu.un("beforeshow", onBeforeShow); menu.un("show", onShow); }, registerCheckable : function(menuItem){ var g = menuItem.group; if(g){ if(!groups[g]){ groups[g] = []; } groups[g].push(menuItem); } }, unregisterCheckable : function(menuItem){ var g = menuItem.group; if(g){ groups[g].remove(menuItem); } }, onCheckChange: function(item, state){ if(item.group && state){ var group = groups[item.group], i = 0, len = group.length, current; for(; i < len; i++){ current = group[i]; if(current != item){ current.setChecked(false); } } } }, getCheckedItem : function(groupId){ var g = groups[groupId]; if(g){ for(var i = 0, l = g.length; i < l; i++){ if(g[i].checked){ return g[i]; } } } return null; }, setCheckedItem : function(groupId, itemId){ var g = groups[groupId]; if(g){ for(var i = 0, l = g.length; i < l; i++){ if(g[i].id == itemId){ g[i].setChecked(true); } } } return null; } }; }(); Ext.menu.BaseItem = Ext.extend(Ext.Component, { canActivate : false, activeClass : "x-menu-item-active", hideOnClick : true, clickHideDelay : 1, ctype : "Ext.menu.BaseItem", actionMode : "container", initComponent : function(){ Ext.menu.BaseItem.superclass.initComponent.call(this); this.addEvents( 'click', 'activate', 'deactivate' ); if(this.handler){ this.on("click", this.handler, this.scope); } }, onRender : function(container, position){ Ext.menu.BaseItem.superclass.onRender.apply(this, arguments); if(this.ownerCt && this.ownerCt instanceof Ext.menu.Menu){ this.parentMenu = this.ownerCt; }else{ this.container.addClass('x-menu-list-item'); this.mon(this.el, { scope: this, click: this.onClick, mouseenter: this.activate, mouseleave: this.deactivate }); } }, setHandler : function(handler, scope){ if(this.handler){ this.un("click", this.handler, this.scope); } this.on("click", this.handler = handler, this.scope = scope); }, onClick : function(e){ if(!this.disabled && this.fireEvent("click", this, e) !== false && (this.parentMenu && this.parentMenu.fireEvent("itemclick", this, e) !== false)){ this.handleClick(e); }else{ e.stopEvent(); } }, activate : function(){ if(this.disabled){ return false; } var li = this.container; li.addClass(this.activeClass); this.region = li.getRegion().adjust(2, 2, -2, -2); this.fireEvent("activate", this); return true; }, deactivate : function(){ this.container.removeClass(this.activeClass); this.fireEvent("deactivate", this); }, shouldDeactivate : function(e){ return !this.region || !this.region.contains(e.getPoint()); }, handleClick : function(e){ var pm = this.parentMenu; if(this.hideOnClick){ if(pm.floating){ this.clickHideDelayTimer = pm.hide.defer(this.clickHideDelay, pm, [true]); }else{ pm.deactivateActive(); } } }, beforeDestroy: function(){ clearTimeout(this.clickHideDelayTimer); Ext.menu.BaseItem.superclass.beforeDestroy.call(this); }, expandMenu : Ext.emptyFn, hideMenu : Ext.emptyFn }); Ext.reg('menubaseitem', Ext.menu.BaseItem); Ext.menu.TextItem = Ext.extend(Ext.menu.BaseItem, { hideOnClick : false, itemCls : "x-menu-text", constructor : function(config) { if (typeof config == 'string') { config = { text: config }; } Ext.menu.TextItem.superclass.constructor.call(this, config); }, onRender : function() { var s = document.createElement("span"); s.className = this.itemCls; s.innerHTML = this.text; this.el = s; Ext.menu.TextItem.superclass.onRender.apply(this, arguments); } }); Ext.reg('menutextitem', Ext.menu.TextItem); Ext.menu.Separator = Ext.extend(Ext.menu.BaseItem, { itemCls : "x-menu-sep", hideOnClick : false, activeClass: '', onRender : function(li){ var s = document.createElement("span"); s.className = this.itemCls; s.innerHTML = " "; this.el = s; li.addClass("x-menu-sep-li"); Ext.menu.Separator.superclass.onRender.apply(this, arguments); } }); Ext.reg('menuseparator', Ext.menu.Separator); Ext.menu.Item = Ext.extend(Ext.menu.BaseItem, { itemCls : 'x-menu-item', canActivate : true, showDelay: 200, altText: '', hideDelay: 200, ctype: 'Ext.menu.Item', initComponent : function(){ Ext.menu.Item.superclass.initComponent.call(this); if(this.menu){ if (Ext.isArray(this.menu)){ this.menu = { items: this.menu }; } if (Ext.isObject(this.menu)){ this.menu.ownerCt = this; } this.menu = Ext.menu.MenuMgr.get(this.menu); this.menu.ownerCt = undefined; } }, onRender : function(container, position){ if (!this.itemTpl) { this.itemTpl = Ext.menu.Item.prototype.itemTpl = new Ext.XTemplate( '', ' target="{hrefTarget}"', '', '>', '{altText}', '{text}', '' ); } var a = this.getTemplateArgs(); this.el = position ? this.itemTpl.insertBefore(position, a, true) : this.itemTpl.append(container, a, true); this.iconEl = this.el.child('img.x-menu-item-icon'); this.textEl = this.el.child('.x-menu-item-text'); if(!this.href) { this.mon(this.el, 'click', Ext.emptyFn, null, { preventDefault: true }); } Ext.menu.Item.superclass.onRender.call(this, container, position); }, getTemplateArgs: function() { return { id: this.id, cls: this.itemCls + (this.menu ? ' x-menu-item-arrow' : '') + (this.cls ? ' ' + this.cls : ''), href: this.href || '#', hrefTarget: this.hrefTarget, icon: this.icon || Ext.BLANK_IMAGE_URL, iconCls: this.iconCls || '', text: this.itemText||this.text||' ', altText: this.altText || '' }; }, setText : function(text){ this.text = text||' '; if(this.rendered){ this.textEl.update(this.text); this.parentMenu.layout.doAutoSize(); } }, setIconClass : function(cls){ var oldCls = this.iconCls; this.iconCls = cls; if(this.rendered){ this.iconEl.replaceClass(oldCls, this.iconCls); } }, beforeDestroy: function(){ clearTimeout(this.showTimer); clearTimeout(this.hideTimer); if (this.menu){ delete this.menu.ownerCt; this.menu.destroy(); } Ext.menu.Item.superclass.beforeDestroy.call(this); }, handleClick : function(e){ if(!this.href){ e.stopEvent(); } Ext.menu.Item.superclass.handleClick.apply(this, arguments); }, activate : function(autoExpand){ if(Ext.menu.Item.superclass.activate.apply(this, arguments)){ this.focus(); if(autoExpand){ this.expandMenu(); } } return true; }, shouldDeactivate : function(e){ if(Ext.menu.Item.superclass.shouldDeactivate.call(this, e)){ if(this.menu && this.menu.isVisible()){ return !this.menu.getEl().getRegion().contains(e.getPoint()); } return true; } return false; }, deactivate : function(){ Ext.menu.Item.superclass.deactivate.apply(this, arguments); this.hideMenu(); }, expandMenu : function(autoActivate){ if(!this.disabled && this.menu){ clearTimeout(this.hideTimer); delete this.hideTimer; if(!this.menu.isVisible() && !this.showTimer){ this.showTimer = this.deferExpand.defer(this.showDelay, this, [autoActivate]); }else if (this.menu.isVisible() && autoActivate){ this.menu.tryActivate(0, 1); } } }, deferExpand : function(autoActivate){ delete this.showTimer; this.menu.show(this.container, this.parentMenu.subMenuAlign || 'tl-tr?', this.parentMenu); if(autoActivate){ this.menu.tryActivate(0, 1); } }, hideMenu : function(){ clearTimeout(this.showTimer); delete this.showTimer; if(!this.hideTimer && this.menu && this.menu.isVisible()){ this.hideTimer = this.deferHide.defer(this.hideDelay, this); } }, deferHide : function(){ delete this.hideTimer; if(this.menu.over){ this.parentMenu.setActiveItem(this, false); }else{ this.menu.hide(); } } }); Ext.reg('menuitem', Ext.menu.Item); Ext.menu.CheckItem = Ext.extend(Ext.menu.Item, { itemCls : "x-menu-item x-menu-check-item", groupClass : "x-menu-group-item", checked: false, ctype: "Ext.menu.CheckItem", initComponent : function(){ Ext.menu.CheckItem.superclass.initComponent.call(this); this.addEvents( "beforecheckchange" , "checkchange" ); if(this.checkHandler){ this.on('checkchange', this.checkHandler, this.scope); } Ext.menu.MenuMgr.registerCheckable(this); }, onRender : function(c){ Ext.menu.CheckItem.superclass.onRender.apply(this, arguments); if(this.group){ this.el.addClass(this.groupClass); } if(this.checked){ this.checked = false; this.setChecked(true, true); } }, destroy : function(){ Ext.menu.MenuMgr.unregisterCheckable(this); Ext.menu.CheckItem.superclass.destroy.apply(this, arguments); }, setChecked : function(state, suppressEvent){ var suppress = suppressEvent === true; if(this.checked != state && (suppress || this.fireEvent("beforecheckchange", this, state) !== false)){ Ext.menu.MenuMgr.onCheckChange(this, state); if(this.container){ this.container[state ? "addClass" : "removeClass"]("x-menu-item-checked"); } this.checked = state; if(!suppress){ this.fireEvent("checkchange", this, state); } } }, handleClick : function(e){ if(!this.disabled && !(this.checked && this.group)){ this.setChecked(!this.checked); } Ext.menu.CheckItem.superclass.handleClick.apply(this, arguments); } }); Ext.reg('menucheckitem', Ext.menu.CheckItem); Ext.menu.DateMenu = Ext.extend(Ext.menu.Menu, { enableScrolling : false, hideOnClick : true, pickerId : null, cls : 'x-date-menu', initComponent : function(){ this.on('beforeshow', this.onBeforeShow, this); if(this.strict = (Ext.isIE7 && Ext.isStrict)){ this.on('show', this.onShow, this, {single: true, delay: 20}); } Ext.apply(this, { plain: true, showSeparator: false, items: this.picker = new Ext.DatePicker(Ext.applyIf({ internalRender: this.strict || !Ext.isIE9m, ctCls: 'x-menu-date-item', id: this.pickerId }, this.initialConfig)) }); this.picker.purgeListeners(); Ext.menu.DateMenu.superclass.initComponent.call(this); this.relayEvents(this.picker, ['select']); this.on('show', this.picker.focus, this.picker); this.on('select', this.menuHide, this); if(this.handler){ this.on('select', this.handler, this.scope || this); } }, menuHide : function() { if(this.hideOnClick){ this.hide(true); } }, onBeforeShow : function(){ if(this.picker){ this.picker.hideMonthPicker(true); } }, onShow : function(){ var el = this.picker.getEl(); el.setWidth(el.getWidth()); } }); Ext.reg('datemenu', Ext.menu.DateMenu); Ext.menu.ColorMenu = Ext.extend(Ext.menu.Menu, { enableScrolling : false, hideOnClick : true, cls : 'x-color-menu', paletteId : null, initComponent : function(){ Ext.apply(this, { plain: true, showSeparator: false, items: this.palette = new Ext.ColorPalette(Ext.applyIf({ id: this.paletteId }, this.initialConfig)) }); this.palette.purgeListeners(); Ext.menu.ColorMenu.superclass.initComponent.call(this); this.relayEvents(this.palette, ['select']); this.on('select', this.menuHide, this); if(this.handler){ this.on('select', this.handler, this.scope || this); } }, menuHide : function(){ if(this.hideOnClick){ this.hide(true); } } }); Ext.reg('colormenu', Ext.menu.ColorMenu); Ext.form.Field = Ext.extend(Ext.BoxComponent, { invalidClass : 'x-form-invalid', invalidText : 'The value in this field is invalid', focusClass : 'x-form-focus', validationEvent : 'keyup', validateOnBlur : true, validationDelay : 250, defaultAutoCreate : {tag: 'input', type: 'text', size: '20', autocomplete: 'off'}, fieldClass : 'x-form-field', msgTarget : 'qtip', msgFx : 'normal', readOnly : false, disabled : false, submitValue: true, isFormField : true, msgDisplay: '', hasFocus : false, initComponent : function(){ Ext.form.Field.superclass.initComponent.call(this); this.addEvents( 'focus', 'blur', 'specialkey', 'change', 'invalid', 'valid' ); }, getName : function(){ return this.rendered && this.el.dom.name ? this.el.dom.name : this.name || this.id || ''; }, onRender : function(ct, position){ if(!this.el){ var cfg = this.getAutoCreate(); if(!cfg.name){ cfg.name = this.name || this.id; } if(this.inputType){ cfg.type = this.inputType; } this.autoEl = cfg; } Ext.form.Field.superclass.onRender.call(this, ct, position); if(this.submitValue === false){ this.el.dom.removeAttribute('name'); } var type = this.el.dom.type; if(type){ if(type == 'password'){ type = 'text'; } this.el.addClass('x-form-'+type); } if(this.readOnly){ this.setReadOnly(true); } if(this.tabIndex !== undefined){ this.el.dom.setAttribute('tabIndex', this.tabIndex); } this.el.addClass([this.fieldClass, this.cls]); }, getItemCt : function(){ return this.itemCt; }, initValue : function(){ if(this.value !== undefined){ this.setValue(this.value); }else if(!Ext.isEmpty(this.el.dom.value) && this.el.dom.value != this.emptyText){ this.setValue(this.el.dom.value); } this.originalValue = this.getValue(); }, isDirty : function() { if(this.disabled || !this.rendered) { return false; } return String(this.getValue()) !== String(this.originalValue); }, setReadOnly : function(readOnly){ if(this.rendered){ this.el.dom.readOnly = readOnly; } this.readOnly = readOnly; }, afterRender : function(){ Ext.form.Field.superclass.afterRender.call(this); this.initEvents(); this.initValue(); }, fireKey : function(e){ if(e.isSpecialKey()){ this.fireEvent('specialkey', this, e); } }, reset : function(){ this.setValue(this.originalValue); this.clearInvalid(); }, initEvents : function(){ this.mon(this.el, Ext.EventManager.getKeyEvent(), this.fireKey, this); this.mon(this.el, 'focus', this.onFocus, this); this.mon(this.el, 'blur', this.onBlur, this, this.inEditor ? {buffer:10} : null); }, preFocus: Ext.emptyFn, onFocus : function(){ this.preFocus(); if(this.focusClass){ this.el.addClass(this.focusClass); } if(!this.hasFocus){ this.hasFocus = true; this.startValue = this.getValue(); this.fireEvent('focus', this); } }, beforeBlur : Ext.emptyFn, onBlur : function(){ this.beforeBlur(); if(this.focusClass){ this.el.removeClass(this.focusClass); } this.hasFocus = false; if(this.validationEvent !== false && (this.validateOnBlur || this.validationEvent == 'blur')){ this.validate(); } var v = this.getValue(); if(String(v) !== String(this.startValue)){ this.fireEvent('change', this, v, this.startValue); } this.fireEvent('blur', this); this.postBlur(); }, postBlur : Ext.emptyFn, isValid : function(preventMark){ if(this.disabled){ return true; } var restore = this.preventMark; this.preventMark = preventMark === true; var v = this.validateValue(this.processValue(this.getRawValue()), preventMark); this.preventMark = restore; return v; }, validate : function(){ if(this.disabled || this.validateValue(this.processValue(this.getRawValue()))){ this.clearInvalid(); return true; } return false; }, processValue : function(value){ return value; }, validateValue : function(value) { var error = this.getErrors(value)[0]; if (error == undefined) { return true; } else { this.markInvalid(error); return false; } }, getErrors: function() { return []; }, getActiveError : function(){ return this.activeError || ''; }, markInvalid : function(msg){ if (this.rendered && !this.preventMark) { msg = msg || this.invalidText; var mt = this.getMessageHandler(); if(mt){ mt.mark(this, msg); }else if(this.msgTarget){ this.el.addClass(this.invalidClass); var t = Ext.getDom(this.msgTarget); if(t){ t.innerHTML = msg; t.style.display = this.msgDisplay; } } } this.setActiveError(msg); }, clearInvalid : function(){ if (this.rendered && !this.preventMark) { this.el.removeClass(this.invalidClass); var mt = this.getMessageHandler(); if(mt){ mt.clear(this); }else if(this.msgTarget){ this.el.removeClass(this.invalidClass); var t = Ext.getDom(this.msgTarget); if(t){ t.innerHTML = ''; t.style.display = 'none'; } } } this.unsetActiveError(); }, setActiveError: function(msg, suppressEvent) { this.activeError = msg; if (suppressEvent !== true) this.fireEvent('invalid', this, msg); }, unsetActiveError: function(suppressEvent) { delete this.activeError; if (suppressEvent !== true) this.fireEvent('valid', this); }, getMessageHandler : function(){ return Ext.form.MessageTargets[this.msgTarget]; }, getErrorCt : function(){ return this.el.findParent('.x-form-element', 5, true) || this.el.findParent('.x-form-field-wrap', 5, true); }, alignErrorEl : function(){ this.errorEl.setWidth(this.getErrorCt().getWidth(true) - 20); }, alignErrorIcon : function(){ this.errorIcon.alignTo(this.el, 'tl-tr', [2, 0]); }, getRawValue : function(){ var v = this.rendered ? this.el.getValue() : Ext.value(this.value, ''); if(v === this.emptyText){ v = ''; } return v; }, getValue : function(){ if(!this.rendered) { return this.value; } var v = this.el.getValue(); if(v === this.emptyText || v === undefined){ v = ''; } return v; }, setRawValue : function(v){ return this.rendered ? (this.el.dom.value = (Ext.isEmpty(v) ? '' : v)) : ''; }, setValue : function(v){ this.value = v; if(this.rendered){ this.el.dom.value = (Ext.isEmpty(v) ? '' : v); this.validate(); } return this; }, append : function(v){ this.setValue([this.getValue(), v].join('')); } }); Ext.form.MessageTargets = { 'qtip' : { mark: function(field, msg){ field.el.addClass(field.invalidClass); field.el.dom.qtip = msg; field.el.dom.qclass = 'x-form-invalid-tip'; if(Ext.QuickTips){ Ext.QuickTips.enable(); } }, clear: function(field){ field.el.removeClass(field.invalidClass); field.el.dom.qtip = ''; } }, 'title' : { mark: function(field, msg){ field.el.addClass(field.invalidClass); field.el.dom.title = msg; }, clear: function(field){ field.el.dom.title = ''; } }, 'under' : { mark: function(field, msg){ field.el.addClass(field.invalidClass); if(!field.errorEl){ var elp = field.getErrorCt(); if(!elp){ field.el.dom.title = msg; return; } field.errorEl = elp.createChild({cls:'x-form-invalid-msg'}); field.on('resize', field.alignErrorEl, field); field.on('destroy', function(){ Ext.destroy(this.errorEl); }, field); } field.alignErrorEl(); field.errorEl.update(msg); Ext.form.Field.msgFx[field.msgFx].show(field.errorEl, field); }, clear: function(field){ field.el.removeClass(field.invalidClass); if(field.errorEl){ Ext.form.Field.msgFx[field.msgFx].hide(field.errorEl, field); }else{ field.el.dom.title = ''; } } }, 'side' : { mark: function(field, msg){ field.el.addClass(field.invalidClass); if(!field.errorIcon){ var elp = field.getErrorCt(); if(!elp){ field.el.dom.title = msg; return; } field.errorIcon = elp.createChild({cls:'x-form-invalid-icon'}); if (field.ownerCt) { field.ownerCt.on('afterlayout', field.alignErrorIcon, field); field.ownerCt.on('expand', field.alignErrorIcon, field); } field.on('resize', field.alignErrorIcon, field); field.on('destroy', function(){ Ext.destroy(this.errorIcon); }, field); } field.alignErrorIcon(); field.errorIcon.dom.qtip = msg; field.errorIcon.dom.qclass = 'x-form-invalid-tip'; field.errorIcon.show(); }, clear: function(field){ field.el.removeClass(field.invalidClass); if(field.errorIcon){ field.errorIcon.dom.qtip = ''; field.errorIcon.hide(); }else{ field.el.dom.title = ''; } } } }; Ext.form.Field.msgFx = { normal : { show: function(msgEl, f){ msgEl.setDisplayed('block'); }, hide : function(msgEl, f){ msgEl.setDisplayed(false).update(''); } }, slide : { show: function(msgEl, f){ msgEl.slideIn('t', {stopFx:true}); }, hide : function(msgEl, f){ msgEl.slideOut('t', {stopFx:true,useDisplay:true}); } }, slideRight : { show: function(msgEl, f){ msgEl.fixDisplay(); msgEl.alignTo(f.el, 'tl-tr'); msgEl.slideIn('l', {stopFx:true}); }, hide : function(msgEl, f){ msgEl.slideOut('l', {stopFx:true,useDisplay:true}); } } }; Ext.reg('field', Ext.form.Field); Ext.form.TextField = Ext.extend(Ext.form.Field, { grow : false, growMin : 30, growMax : 800, vtype : null, maskRe : null, disableKeyFilter : false, allowBlank : true, minLength : 0, maxLength : Number.MAX_VALUE, minLengthText : 'The minimum length for this field is {0}', maxLengthText : 'The maximum length for this field is {0}', selectOnFocus : false, blankText : 'This field is required', validator : null, regex : null, regexText : '', emptyText : null, emptyClass : 'x-form-empty-field', initComponent : function(){ Ext.form.TextField.superclass.initComponent.call(this); this.addEvents( 'autosize', 'keydown', 'keyup', 'keypress' ); }, initEvents : function(){ Ext.form.TextField.superclass.initEvents.call(this); if(this.validationEvent == 'keyup'){ this.validationTask = new Ext.util.DelayedTask(this.validate, this); this.mon(this.el, 'keyup', this.filterValidation, this); } else if(this.validationEvent !== false && this.validationEvent != 'blur'){ this.mon(this.el, this.validationEvent, this.validate, this, {buffer: this.validationDelay}); } if(this.selectOnFocus || this.emptyText){ this.mon(this.el, 'mousedown', this.onMouseDown, this); if(this.emptyText){ this.applyEmptyText(); } } if(this.maskRe || (this.vtype && this.disableKeyFilter !== true && (this.maskRe = Ext.form.VTypes[this.vtype+'Mask']))){ this.mon(this.el, 'keypress', this.filterKeys, this); } if(this.grow){ this.mon(this.el, 'keyup', this.onKeyUpBuffered, this, {buffer: 50}); this.mon(this.el, 'click', this.autoSize, this); } if(this.enableKeyEvents){ this.mon(this.el, { scope: this, keyup: this.onKeyUp, keydown: this.onKeyDown, keypress: this.onKeyPress }); } }, onMouseDown: function(e){ if(!this.hasFocus){ this.mon(this.el, 'mouseup', Ext.emptyFn, this, { single: true, preventDefault: true }); } }, processValue : function(value){ if(this.stripCharsRe){ var newValue = value.replace(this.stripCharsRe, ''); if(newValue !== value){ this.setRawValue(newValue); return newValue; } } return value; }, filterValidation : function(e){ if(!e.isNavKeyPress()){ this.validationTask.delay(this.validationDelay); } }, onDisable: function(){ Ext.form.TextField.superclass.onDisable.call(this); if(Ext.isIE){ this.el.dom.unselectable = 'on'; } }, onEnable: function(){ Ext.form.TextField.superclass.onEnable.call(this); if(Ext.isIE){ this.el.dom.unselectable = ''; } }, onKeyUpBuffered : function(e){ if(this.doAutoSize(e)){ this.autoSize(); } }, doAutoSize : function(e){ return !e.isNavKeyPress(); }, onKeyUp : function(e){ this.fireEvent('keyup', this, e); }, onKeyDown : function(e){ this.fireEvent('keydown', this, e); }, onKeyPress : function(e){ this.fireEvent('keypress', this, e); }, reset : function(){ Ext.form.TextField.superclass.reset.call(this); this.applyEmptyText(); }, applyEmptyText : function(){ if(this.rendered && this.emptyText && this.getRawValue().length < 1 && !this.hasFocus){ this.setRawValue(this.emptyText); this.el.addClass(this.emptyClass); } }, preFocus : function(){ var el = this.el, isEmpty; if(this.emptyText){ if(el.dom.value == this.emptyText){ this.setRawValue(''); isEmpty = true; } el.removeClass(this.emptyClass); } if(this.selectOnFocus || isEmpty){ el.dom.select(); } }, postBlur : function(){ this.applyEmptyText(); }, filterKeys : function(e){ if(e.ctrlKey){ return; } var k = e.getKey(); if(Ext.isGecko && (e.isNavKeyPress() || k == e.BACKSPACE || (k == e.DELETE && e.button == -1))){ return; } var cc = String.fromCharCode(e.getCharCode()); if(!Ext.isGecko && e.isSpecialKey() && !cc){ return; } if(!this.maskRe.test(cc)){ e.stopEvent(); } }, setValue : function(v){ if(this.emptyText && this.el && !Ext.isEmpty(v)){ this.el.removeClass(this.emptyClass); } Ext.form.TextField.superclass.setValue.apply(this, arguments); this.applyEmptyText(); this.autoSize(); return this; }, getErrors: function(value) { var errors = Ext.form.TextField.superclass.getErrors.apply(this, arguments); value = Ext.isDefined(value) ? value : this.processValue(this.getRawValue()); if (Ext.isFunction(this.validator)) { var msg = this.validator(value); if (msg !== true) { errors.push(msg); } } if (value.length < 1 || value === this.emptyText) { if (this.allowBlank) { return errors; } else { errors.push(this.blankText); } } if (!this.allowBlank && (value.length < 1 || value === this.emptyText)) { errors.push(this.blankText); } if (value.length < this.minLength) { errors.push(String.format(this.minLengthText, this.minLength)); } if (value.length > this.maxLength) { errors.push(String.format(this.maxLengthText, this.maxLength)); } if (this.vtype) { var vt = Ext.form.VTypes; if(!vt[this.vtype](value, this)){ errors.push(this.vtypeText || vt[this.vtype +'Text']); } } if (this.regex && !this.regex.test(value)) { errors.push(this.regexText); } return errors; }, selectText : function(start, end){ var v = this.getRawValue(); var doFocus = false; if(v.length > 0){ start = start === undefined ? 0 : start; end = end === undefined ? v.length : end; var d = this.el.dom; if(d.setSelectionRange){ d.setSelectionRange(start, end); }else if(d.createTextRange){ var range = d.createTextRange(); range.moveStart('character', start); range.moveEnd('character', end-v.length); range.select(); } doFocus = Ext.isGecko || Ext.isOpera; }else{ doFocus = true; } if(doFocus){ this.focus(); } }, autoSize : function(){ if(!this.grow || !this.rendered){ return; } if(!this.metrics){ this.metrics = Ext.util.TextMetrics.createInstance(this.el); } var el = this.el; var v = el.dom.value; var d = document.createElement('div'); d.appendChild(document.createTextNode(v)); v = d.innerHTML; Ext.removeNode(d); d = null; v += ' '; var w = Math.min(this.growMax, Math.max(this.metrics.getWidth(v) + 10, this.growMin)); this.el.setWidth(w); this.fireEvent('autosize', this, w); }, onDestroy: function(){ if(this.validationTask){ this.validationTask.cancel(); this.validationTask = null; } Ext.form.TextField.superclass.onDestroy.call(this); } }); Ext.reg('textfield', Ext.form.TextField); Ext.form.TriggerField = Ext.extend(Ext.form.TextField, { defaultAutoCreate : {tag: "input", type: "text", size: "16", autocomplete: "off"}, hideTrigger:false, editable: true, readOnly: false, wrapFocusClass: 'x-trigger-wrap-focus', autoSize: Ext.emptyFn, monitorTab : true, deferHeight : true, mimicing : false, actionMode: 'wrap', defaultTriggerWidth: 17, onResize : function(w, h){ Ext.form.TriggerField.superclass.onResize.call(this, w, h); var tw = this.getTriggerWidth(); if(Ext.isNumber(w)){ this.el.setWidth(w - tw); } this.wrap.setWidth(this.el.getWidth() + tw); }, getTriggerWidth: function(){ var tw = this.trigger.getWidth(); if(!this.hideTrigger && !this.readOnly && tw === 0){ tw = this.defaultTriggerWidth; } return tw; }, alignErrorIcon : function(){ if(this.wrap){ this.errorIcon.alignTo(this.wrap, 'tl-tr', [2, 0]); } }, onRender : function(ct, position){ this.doc = Ext.isIE ? Ext.getBody() : Ext.getDoc(); Ext.form.TriggerField.superclass.onRender.call(this, ct, position); this.wrap = this.el.wrap({cls: 'x-form-field-wrap x-form-field-trigger-wrap'}); this.trigger = this.wrap.createChild(this.triggerConfig || {tag: "img", src: Ext.BLANK_IMAGE_URL, alt: "", cls: "x-form-trigger " + this.triggerClass}); this.initTrigger(); if(!this.width){ this.wrap.setWidth(this.el.getWidth()+this.trigger.getWidth()); } this.resizeEl = this.positionEl = this.wrap; }, getWidth: function() { return(this.el.getWidth() + this.trigger.getWidth()); }, updateEditState: function(){ if(this.rendered){ if (this.readOnly) { this.el.dom.readOnly = true; this.el.addClass('x-trigger-noedit'); this.mun(this.el, 'click', this.onTriggerClick, this); this.trigger.setDisplayed(false); } else { if (!this.editable) { this.el.dom.readOnly = true; this.el.addClass('x-trigger-noedit'); this.mon(this.el, 'click', this.onTriggerClick, this); } else { this.el.dom.readOnly = false; this.el.removeClass('x-trigger-noedit'); this.mun(this.el, 'click', this.onTriggerClick, this); } this.trigger.setDisplayed(!this.hideTrigger); } this.onResize(this.width || this.wrap.getWidth()); } }, setHideTrigger: function(hideTrigger){ if(hideTrigger != this.hideTrigger){ this.hideTrigger = hideTrigger; this.updateEditState(); } }, setEditable: function(editable){ if(editable != this.editable){ this.editable = editable; this.updateEditState(); } }, setReadOnly: function(readOnly){ if(readOnly != this.readOnly){ this.readOnly = readOnly; this.updateEditState(); } }, afterRender : function(){ Ext.form.TriggerField.superclass.afterRender.call(this); this.updateEditState(); }, initTrigger : function(){ this.mon(this.trigger, 'click', this.onTriggerClick, this, {preventDefault:true}); this.trigger.addClassOnOver('x-form-trigger-over'); this.trigger.addClassOnClick('x-form-trigger-click'); }, onDestroy : function(){ Ext.destroy(this.trigger, this.wrap); if (this.mimicing){ this.doc.un('mousedown', this.mimicBlur, this); } delete this.doc; Ext.form.TriggerField.superclass.onDestroy.call(this); }, onFocus : function(){ Ext.form.TriggerField.superclass.onFocus.call(this); if(!this.mimicing){ this.wrap.addClass(this.wrapFocusClass); this.mimicing = true; this.doc.on('mousedown', this.mimicBlur, this, {delay: 10}); if(this.monitorTab){ this.on('specialkey', this.checkTab, this); } } }, checkTab : function(me, e){ if(e.getKey() == e.TAB){ this.triggerBlur(); } }, onBlur : Ext.emptyFn, mimicBlur : function(e){ if(!this.isDestroyed && !this.wrap.contains(e.target) && this.validateBlur(e)){ this.triggerBlur(); } }, triggerBlur : function(){ this.mimicing = false; this.doc.un('mousedown', this.mimicBlur, this); if(this.monitorTab && this.el){ this.un('specialkey', this.checkTab, this); } Ext.form.TriggerField.superclass.onBlur.call(this); if(this.wrap){ this.wrap.removeClass(this.wrapFocusClass); } }, beforeBlur : Ext.emptyFn, validateBlur : function(e){ return true; }, onTriggerClick : Ext.emptyFn }); Ext.form.TwinTriggerField = Ext.extend(Ext.form.TriggerField, { initComponent : function(){ Ext.form.TwinTriggerField.superclass.initComponent.call(this); this.triggerConfig = { tag:'span', cls:'x-form-twin-triggers', cn:[ {tag: "img", src: Ext.BLANK_IMAGE_URL, alt: "", cls: "x-form-trigger " + this.trigger1Class}, {tag: "img", src: Ext.BLANK_IMAGE_URL, alt: "", cls: "x-form-trigger " + this.trigger2Class} ]}; }, getTrigger : function(index){ return this.triggers[index]; }, afterRender: function(){ Ext.form.TwinTriggerField.superclass.afterRender.call(this); var triggers = this.triggers, i = 0, len = triggers.length; for(; i < len; ++i){ if(this['hideTrigger' + (i + 1)]){ triggers[i].hide(); } } }, initTrigger : function(){ var ts = this.trigger.select('.x-form-trigger', true), triggerField = this; ts.each(function(t, all, index){ var triggerIndex = 'Trigger'+(index+1); t.hide = function(){ var w = triggerField.wrap.getWidth(); this.dom.style.display = 'none'; triggerField.el.setWidth(w-triggerField.trigger.getWidth()); triggerField['hidden' + triggerIndex] = true; }; t.show = function(){ var w = triggerField.wrap.getWidth(); this.dom.style.display = ''; triggerField.el.setWidth(w-triggerField.trigger.getWidth()); triggerField['hidden' + triggerIndex] = false; }; this.mon(t, 'click', this['on'+triggerIndex+'Click'], this, {preventDefault:true}); t.addClassOnOver('x-form-trigger-over'); t.addClassOnClick('x-form-trigger-click'); }, this); this.triggers = ts.elements; }, getTriggerWidth: function(){ var tw = 0; Ext.each(this.triggers, function(t, index){ var triggerIndex = 'Trigger' + (index + 1), w = t.getWidth(); if(w === 0 && !this['hidden' + triggerIndex]){ tw += this.defaultTriggerWidth; }else{ tw += w; } }, this); return tw; }, onDestroy : function() { Ext.destroy(this.triggers); Ext.form.TwinTriggerField.superclass.onDestroy.call(this); }, onTrigger1Click : Ext.emptyFn, onTrigger2Click : Ext.emptyFn }); Ext.reg('trigger', Ext.form.TriggerField); Ext.reg('twintrigger', Ext.form.TwinTriggerField); Ext.form.TextArea = Ext.extend(Ext.form.TextField, { growMin : 60, growMax: 1000, growAppend : ' \n ', enterIsSpecial : false, preventScrollbars: false, onRender : function(ct, position){ if(!this.el){ this.defaultAutoCreate = { tag: "textarea", style:"width:100px;height:60px;", autocomplete: "off" }; } Ext.form.TextArea.superclass.onRender.call(this, ct, position); if(this.grow){ this.textSizeEl = Ext.DomHelper.append(document.body, { tag: "pre", cls: "x-form-grow-sizer" }); if(this.preventScrollbars){ this.el.setStyle("overflow", "hidden"); } this.el.setHeight(this.growMin); } }, onDestroy : function(){ Ext.removeNode(this.textSizeEl); Ext.form.TextArea.superclass.onDestroy.call(this); }, fireKey : function(e){ if(e.isSpecialKey() && (this.enterIsSpecial || (e.getKey() != e.ENTER || e.hasModifier()))){ this.fireEvent("specialkey", this, e); } }, doAutoSize : function(e){ return !e.isNavKeyPress() || e.getKey() == e.ENTER; }, filterValidation: function(e) { if(!e.isNavKeyPress() || (!this.enterIsSpecial && e.keyCode == e.ENTER)){ this.validationTask.delay(this.validationDelay); } }, autoSize: function(){ if(!this.grow || !this.textSizeEl){ return; } var el = this.el, v = Ext.util.Format.htmlEncode(el.dom.value), ts = this.textSizeEl, h; Ext.fly(ts).setWidth(this.el.getWidth()); if(v.length < 1){ v = "  "; }else{ v += this.growAppend; if(Ext.isIE){ v = v.replace(/\n/g, ' 
      '); } } ts.innerHTML = v; h = Math.min(this.growMax, Math.max(ts.offsetHeight, this.growMin)); if(h != this.lastHeight){ this.lastHeight = h; this.el.setHeight(h); this.fireEvent("autosize", this, h); } } }); Ext.reg('textarea', Ext.form.TextArea); Ext.form.NumberField = Ext.extend(Ext.form.TextField, { fieldClass: "x-form-field x-form-num-field", allowDecimals : true, decimalSeparator : ".", decimalPrecision : 2, allowNegative : true, minValue : Number.NEGATIVE_INFINITY, maxValue : Number.MAX_VALUE, minText : "The minimum value for this field is {0}", maxText : "The maximum value for this field is {0}", nanText : "{0} is not a valid number", baseChars : "0123456789", autoStripChars: false, initEvents : function() { var allowed = this.baseChars + ''; if (this.allowDecimals) { allowed += this.decimalSeparator; } if (this.allowNegative) { allowed += '-'; } allowed = Ext.escapeRe(allowed); this.maskRe = new RegExp('[' + allowed + ']'); if (this.autoStripChars) { this.stripCharsRe = new RegExp('[^' + allowed + ']', 'gi'); } Ext.form.NumberField.superclass.initEvents.call(this); }, getErrors: function(value) { var errors = Ext.form.NumberField.superclass.getErrors.apply(this, arguments); value = Ext.isDefined(value) ? value : this.processValue(this.getRawValue()); if (value.length < 1) { return errors; } value = String(value).replace(this.decimalSeparator, "."); if(isNaN(value)){ errors.push(String.format(this.nanText, value)); } var num = this.parseValue(value); if (num < this.minValue) { errors.push(String.format(this.minText, this.minValue)); } if (num > this.maxValue) { errors.push(String.format(this.maxText, this.maxValue)); } return errors; }, getValue : function() { return this.fixPrecision(this.parseValue(Ext.form.NumberField.superclass.getValue.call(this))); }, setValue : function(v) { v = Ext.isNumber(v) ? v : parseFloat(String(v).replace(this.decimalSeparator, ".")); v = this.fixPrecision(v); v = isNaN(v) ? '' : String(v).replace(".", this.decimalSeparator); return Ext.form.NumberField.superclass.setValue.call(this, v); }, setMinValue : function(value) { this.minValue = Ext.num(value, Number.NEGATIVE_INFINITY); }, setMaxValue : function(value) { this.maxValue = Ext.num(value, Number.MAX_VALUE); }, parseValue : function(value) { value = parseFloat(String(value).replace(this.decimalSeparator, ".")); return isNaN(value) ? '' : value; }, fixPrecision : function(value) { var nan = isNaN(value); if (!this.allowDecimals || this.decimalPrecision == -1 || nan || !value) { return nan ? '' : value; } return parseFloat(parseFloat(value).toFixed(this.decimalPrecision)); }, beforeBlur : function() { var v = this.parseValue(this.getRawValue()); if (!Ext.isEmpty(v)) { this.setValue(v); } } }); Ext.reg('numberfield', Ext.form.NumberField); Ext.form.DateField = Ext.extend(Ext.form.TriggerField, { format : "m/d/Y", altFormats : "m/d/Y|n/j/Y|n/j/y|m/j/y|n/d/y|m/j/Y|n/d/Y|m-d-y|m-d-Y|m/d|m-d|md|mdy|mdY|d|Y-m-d|n-j|n/j", disabledDaysText : "Disabled", disabledDatesText : "Disabled", minText : "The date in this field must be equal to or after {0}", maxText : "The date in this field must be equal to or before {0}", invalidText : "{0} is not a valid date - it must be in the format {1}", triggerClass : 'x-form-date-trigger', showToday : true, startDay : 0, defaultAutoCreate : {tag: "input", type: "text", size: "10", autocomplete: "off"}, initTime: '12', initTimeFormat: 'H', safeParse : function(value, format) { if (Date.formatContainsHourInfo(format)) { return Date.parseDate(value, format); } else { var parsedDate = Date.parseDate(value + ' ' + this.initTime, format + ' ' + this.initTimeFormat); if (parsedDate) { return parsedDate.clearTime(); } } }, initComponent : function(){ Ext.form.DateField.superclass.initComponent.call(this); this.addEvents( 'select' ); if(Ext.isString(this.minValue)){ this.minValue = this.parseDate(this.minValue); } if(Ext.isString(this.maxValue)){ this.maxValue = this.parseDate(this.maxValue); } this.disabledDatesRE = null; this.initDisabledDays(); }, initEvents: function() { Ext.form.DateField.superclass.initEvents.call(this); this.keyNav = new Ext.KeyNav(this.el, { "down": function(e) { this.onTriggerClick(); }, scope: this, forceKeyDown: true }); }, initDisabledDays : function(){ if(this.disabledDates){ var dd = this.disabledDates, len = dd.length - 1, re = "(?:"; Ext.each(dd, function(d, i){ re += Ext.isDate(d) ? '^' + Ext.escapeRe(d.dateFormat(this.format)) + '$' : dd[i]; if(i != len){ re += '|'; } }, this); this.disabledDatesRE = new RegExp(re + ')'); } }, setDisabledDates : function(dd){ this.disabledDates = dd; this.initDisabledDays(); if(this.menu){ this.menu.picker.setDisabledDates(this.disabledDatesRE); } }, setDisabledDays : function(dd){ this.disabledDays = dd; if(this.menu){ this.menu.picker.setDisabledDays(dd); } }, setMinValue : function(dt){ this.minValue = (Ext.isString(dt) ? this.parseDate(dt) : dt); if(this.menu){ this.menu.picker.setMinDate(this.minValue); } }, setMaxValue : function(dt){ this.maxValue = (Ext.isString(dt) ? this.parseDate(dt) : dt); if(this.menu){ this.menu.picker.setMaxDate(this.maxValue); } }, getErrors: function(value) { var errors = Ext.form.DateField.superclass.getErrors.apply(this, arguments); value = this.formatDate(value || this.processValue(this.getRawValue())); if (value.length < 1) { return errors; } var svalue = value; value = this.parseDate(value); if (!value) { errors.push(String.format(this.invalidText, svalue, this.format)); return errors; } var time = value.getTime(); if (this.minValue && time < this.minValue.clearTime().getTime()) { errors.push(String.format(this.minText, this.formatDate(this.minValue))); } if (this.maxValue && time > this.maxValue.clearTime().getTime()) { errors.push(String.format(this.maxText, this.formatDate(this.maxValue))); } if (this.disabledDays) { var day = value.getDay(); for(var i = 0; i < this.disabledDays.length; i++) { if (day === this.disabledDays[i]) { errors.push(this.disabledDaysText); break; } } } var fvalue = this.formatDate(value); if (this.disabledDatesRE && this.disabledDatesRE.test(fvalue)) { errors.push(String.format(this.disabledDatesText, fvalue)); } return errors; }, validateBlur : function(){ return !this.menu || !this.menu.isVisible(); }, getValue : function(){ return this.parseDate(Ext.form.DateField.superclass.getValue.call(this)) || ""; }, setValue : function(date){ return Ext.form.DateField.superclass.setValue.call(this, this.formatDate(this.parseDate(date))); }, parseDate : function(value) { if(!value || Ext.isDate(value)){ return value; } var v = this.safeParse(value, this.format), af = this.altFormats, afa = this.altFormatsArray; if (!v && af) { afa = afa || af.split("|"); for (var i = 0, len = afa.length; i < len && !v; i++) { v = this.safeParse(value, afa[i]); } } return v; }, onDestroy : function(){ Ext.destroy(this.menu, this.keyNav); Ext.form.DateField.superclass.onDestroy.call(this); }, formatDate : function(date){ return Ext.isDate(date) ? date.dateFormat(this.format) : date; }, onTriggerClick : function(){ if(this.disabled){ return; } if(this.menu == null){ this.menu = new Ext.menu.DateMenu({ hideOnClick: false, focusOnSelect: false }); } this.onFocus(); Ext.apply(this.menu.picker, { minDate : this.minValue, maxDate : this.maxValue, disabledDatesRE : this.disabledDatesRE, disabledDatesText : this.disabledDatesText, disabledDays : this.disabledDays, disabledDaysText : this.disabledDaysText, format : this.format, showToday : this.showToday, startDay: this.startDay, minText : String.format(this.minText, this.formatDate(this.minValue)), maxText : String.format(this.maxText, this.formatDate(this.maxValue)) }); this.menu.picker.setValue(this.getValue() || new Date()); this.menu.show(this.el, "tl-bl?"); this.menuEvents('on'); }, menuEvents: function(method){ this.menu[method]('select', this.onSelect, this); this.menu[method]('hide', this.onMenuHide, this); this.menu[method]('show', this.onFocus, this); }, onSelect: function(m, d){ this.setValue(d); this.fireEvent('select', this, d); this.menu.hide(); }, onMenuHide: function(){ this.focus(false, 60); this.menuEvents('un'); }, beforeBlur : function(){ var v = this.parseDate(this.getRawValue()); if(v){ this.setValue(v); } } }); Ext.reg('datefield', Ext.form.DateField); Ext.form.DisplayField = Ext.extend(Ext.form.Field, { validationEvent : false, validateOnBlur : false, defaultAutoCreate : {tag: "div"}, fieldClass : "x-form-display-field", htmlEncode: false, initEvents : Ext.emptyFn, isValid : function(){ return true; }, validate : function(){ return true; }, getRawValue : function(){ var v = this.rendered ? this.el.dom.innerHTML : Ext.value(this.value, ''); if(v === this.emptyText){ v = ''; } if(this.htmlEncode){ v = Ext.util.Format.htmlDecode(v); } return v; }, getValue : function(){ return this.getRawValue(); }, getName: function() { return this.name; }, setRawValue : function(v){ if(this.htmlEncode){ v = Ext.util.Format.htmlEncode(v); } return this.rendered ? (this.el.dom.innerHTML = (Ext.isEmpty(v) ? '' : v)) : (this.value = v); }, setValue : function(v){ this.setRawValue(v); return this; } }); Ext.reg('displayfield', Ext.form.DisplayField); Ext.form.ComboBox = Ext.extend(Ext.form.TriggerField, { defaultAutoCreate : {tag: "input", type: "text", size: "24", autocomplete: "off"}, listClass : '', selectedClass : 'x-combo-selected', listEmptyText: '', triggerClass : 'x-form-arrow-trigger', shadow : 'sides', listAlign : 'tl-bl?', maxHeight : 300, minHeight : 90, triggerAction : 'query', minChars : 4, autoSelect : true, typeAhead : false, queryDelay : 500, pageSize : 0, selectOnFocus : false, queryParam : 'query', loadingText : 'Loading...', resizable : false, handleHeight : 8, allQuery: '', mode: 'remote', minListWidth : 70, forceSelection : false, typeAheadDelay : 250, lazyInit : true, clearFilterOnReset : true, submitValue: undefined, initComponent : function(){ Ext.form.ComboBox.superclass.initComponent.call(this); this.addEvents( 'expand', 'collapse', 'beforeselect', 'select', 'beforequery' ); if(this.transform){ var s = Ext.getDom(this.transform); if(!this.hiddenName){ this.hiddenName = s.name; } if(!this.store){ this.mode = 'local'; var d = [], opts = s.options; for(var i = 0, len = opts.length;i < len; i++){ var o = opts[i], value = (o.hasAttribute ? o.hasAttribute('value') : o.getAttributeNode('value').specified) ? o.value : o.text; if(o.selected && Ext.isEmpty(this.value, true)) { this.value = value; } d.push([value, o.text]); } this.store = new Ext.data.ArrayStore({ idIndex: 0, fields: ['value', 'text'], data : d, autoDestroy: true }); this.valueField = 'value'; this.displayField = 'text'; } s.name = Ext.id(); if(!this.lazyRender){ this.target = true; this.el = Ext.DomHelper.insertBefore(s, this.autoCreate || this.defaultAutoCreate); this.render(this.el.parentNode, s); } Ext.removeNode(s); } else if(this.store){ this.store = Ext.StoreMgr.lookup(this.store); if(this.store.autoCreated){ this.displayField = this.valueField = 'field1'; if(!this.store.expandData){ this.displayField = 'field2'; } this.mode = 'local'; } } this.selectedIndex = -1; if(this.mode == 'local'){ if(!Ext.isDefined(this.initialConfig.queryDelay)){ this.queryDelay = 10; } if(!Ext.isDefined(this.initialConfig.minChars)){ this.minChars = 0; } } }, onRender : function(ct, position){ if(this.hiddenName && !Ext.isDefined(this.submitValue)){ this.submitValue = false; } Ext.form.ComboBox.superclass.onRender.call(this, ct, position); if(this.hiddenName){ this.hiddenField = this.el.insertSibling({tag:'input', type:'hidden', name: this.hiddenName, id: (this.hiddenId || Ext.id())}, 'before', true); } if(Ext.isGecko){ this.el.dom.setAttribute('autocomplete', 'off'); } if(!this.lazyInit){ this.initList(); }else{ this.on('focus', this.initList, this, {single: true}); } }, initValue : function(){ Ext.form.ComboBox.superclass.initValue.call(this); if(this.hiddenField){ this.hiddenField.value = Ext.value(Ext.isDefined(this.hiddenValue) ? this.hiddenValue : this.value, ''); } }, getParentZIndex : function(){ var zindex; if (this.ownerCt){ this.findParentBy(function(ct){ zindex = parseInt(ct.getPositionEl().getStyle('z-index'), 10); return !!zindex; }); } return zindex; }, getZIndex : function(listParent){ listParent = listParent || Ext.getDom(this.getListParent() || Ext.getBody()); var zindex = parseInt(Ext.fly(listParent).getStyle('z-index'), 10); if(!zindex){ zindex = this.getParentZIndex(); } return (zindex || 12000) + 5; }, initList : function(){ if(!this.list){ var cls = 'x-combo-list', listParent = Ext.getDom(this.getListParent() || Ext.getBody()); this.list = new Ext.Layer({ parentEl: listParent, shadow: this.shadow, cls: [cls, this.listClass].join(' '), constrain:false, zindex: this.getZIndex(listParent) }); var lw = this.listWidth || Math.max(this.wrap.getWidth(), this.minListWidth); this.list.setSize(lw, 0); this.list.swallowEvent('mousewheel'); this.assetHeight = 0; if(this.syncFont !== false){ this.list.setStyle('font-size', this.el.getStyle('font-size')); } if(this.title){ this.header = this.list.createChild({cls:cls+'-hd', html: this.title}); this.assetHeight += this.header.getHeight(); } this.innerList = this.list.createChild({cls:cls+'-inner'}); this.mon(this.innerList, 'mouseover', this.onViewOver, this); this.mon(this.innerList, 'mousemove', this.onViewMove, this); this.innerList.setWidth(lw - this.list.getFrameWidth('lr')); if(this.pageSize){ this.footer = this.list.createChild({cls:cls+'-ft'}); this.pageTb = new Ext.PagingToolbar({ store: this.store, pageSize: this.pageSize, renderTo:this.footer }); this.assetHeight += this.footer.getHeight(); } if(!this.tpl){ this.tpl = '
      {' + this.displayField + '}
      '; } this.view = new Ext.DataView({ applyTo: this.innerList, tpl: this.tpl, singleSelect: true, selectedClass: this.selectedClass, itemSelector: this.itemSelector || '.' + cls + '-item', emptyText: this.listEmptyText, deferEmptyText: false }); this.mon(this.view, { containerclick : this.onViewClick, click : this.onViewClick, scope :this }); this.bindStore(this.store, true); if(this.resizable){ this.resizer = new Ext.Resizable(this.list, { pinned:true, handles:'se' }); this.mon(this.resizer, 'resize', function(r, w, h){ this.maxHeight = h-this.handleHeight-this.list.getFrameWidth('tb')-this.assetHeight; this.listWidth = w; this.innerList.setWidth(w - this.list.getFrameWidth('lr')); this.restrictHeight(); }, this); this[this.pageSize?'footer':'innerList'].setStyle('margin-bottom', this.handleHeight+'px'); } } }, getListParent : function() { return document.body; }, getStore : function(){ return this.store; }, bindStore : function(store, initial){ if(this.store && !initial){ if(this.store !== store && this.store.autoDestroy){ this.store.destroy(); }else{ this.store.un('beforeload', this.onBeforeLoad, this); this.store.un('load', this.onLoad, this); this.store.un('exception', this.collapse, this); } if(!store){ this.store = null; if(this.view){ this.view.bindStore(null); } if(this.pageTb){ this.pageTb.bindStore(null); } } } if(store){ if(!initial) { this.lastQuery = null; if(this.pageTb) { this.pageTb.bindStore(store); } } this.store = Ext.StoreMgr.lookup(store); this.store.on({ scope: this, beforeload: this.onBeforeLoad, load: this.onLoad, exception: this.collapse }); if(this.view){ this.view.bindStore(store); } } }, reset : function(){ if(this.clearFilterOnReset && this.mode == 'local'){ this.store.clearFilter(); } Ext.form.ComboBox.superclass.reset.call(this); }, initEvents : function(){ Ext.form.ComboBox.superclass.initEvents.call(this); this.keyNav = new Ext.KeyNav(this.el, { "up" : function(e){ this.inKeyMode = true; this.selectPrev(); }, "down" : function(e){ if(!this.isExpanded()){ this.onTriggerClick(); }else{ this.inKeyMode = true; this.selectNext(); } }, "enter" : function(e){ this.onViewClick(); }, "esc" : function(e){ this.collapse(); }, "tab" : function(e){ if (this.forceSelection === true) { this.collapse(); } else { this.onViewClick(false); } return true; }, scope : this, doRelay : function(e, h, hname){ if(hname == 'down' || this.scope.isExpanded()){ var relay = Ext.KeyNav.prototype.doRelay.apply(this, arguments); if((((Ext.isIE9 && Ext.isStrict) || Ext.isIE10p) || !Ext.isIE) && Ext.EventManager.useKeydown){ this.scope.fireKey(e); } return relay; } return true; }, forceKeyDown : true, defaultEventAction: 'stopEvent' }); this.queryDelay = Math.max(this.queryDelay || 10, this.mode == 'local' ? 10 : 250); this.dqTask = new Ext.util.DelayedTask(this.initQuery, this); if(this.typeAhead){ this.taTask = new Ext.util.DelayedTask(this.onTypeAhead, this); } if(!this.enableKeyEvents){ this.mon(this.el, 'keyup', this.onKeyUp, this); } }, onDestroy : function(){ if (this.dqTask){ this.dqTask.cancel(); this.dqTask = null; } this.bindStore(null); Ext.destroy( this.resizer, this.view, this.pageTb, this.list ); Ext.destroyMembers(this, 'hiddenField'); Ext.form.ComboBox.superclass.onDestroy.call(this); }, fireKey : function(e){ if (!this.isExpanded()) { Ext.form.ComboBox.superclass.fireKey.call(this, e); } }, onResize : function(w, h){ Ext.form.ComboBox.superclass.onResize.apply(this, arguments); if(!isNaN(w) && this.isVisible() && this.list){ this.doResize(w); }else{ this.bufferSize = w; } }, doResize: function(w){ if(!Ext.isDefined(this.listWidth)){ var lw = Math.max(w, this.minListWidth); this.list.setWidth(lw); this.innerList.setWidth(lw - this.list.getFrameWidth('lr')); } }, onEnable : function(){ Ext.form.ComboBox.superclass.onEnable.apply(this, arguments); if(this.hiddenField){ this.hiddenField.disabled = false; } }, onDisable : function(){ Ext.form.ComboBox.superclass.onDisable.apply(this, arguments); if(this.hiddenField){ this.hiddenField.disabled = true; } }, onBeforeLoad : function(){ if(!this.hasFocus){ return; } this.innerList.update(this.loadingText ? '
      '+this.loadingText+'
      ' : ''); this.restrictHeight(); this.selectedIndex = -1; }, onLoad : function(){ if(!this.hasFocus){ return; } if(this.store.getCount() > 0 || this.listEmptyText){ this.expand(); this.restrictHeight(); if(this.lastQuery == this.allQuery){ if(this.editable){ this.el.dom.select(); } if(this.autoSelect !== false && !this.selectByValue(this.value, true)){ this.select(0, true); } }else{ if(this.autoSelect !== false){ this.selectNext(); } if(this.typeAhead && this.lastKey != Ext.EventObject.BACKSPACE && this.lastKey != Ext.EventObject.DELETE){ this.taTask.delay(this.typeAheadDelay); } } }else{ this.collapse(); } }, onTypeAhead : function(){ if(this.store.getCount() > 0){ var r = this.store.getAt(0); var newValue = r.data[this.displayField]; var len = newValue.length; var selStart = this.getRawValue().length; if(selStart != len){ this.setRawValue(newValue); this.selectText(selStart, newValue.length); } } }, assertValue : function(){ var val = this.getRawValue(), rec; if(this.valueField && Ext.isDefined(this.value)){ rec = this.findRecord(this.valueField, this.value); } if(!rec || rec.get(this.displayField) != val){ rec = this.findRecord(this.displayField, val); } if(!rec && this.forceSelection){ if(val.length > 0 && val != this.emptyText){ this.el.dom.value = Ext.value(this.lastSelectionText, ''); this.applyEmptyText(); }else{ this.clearValue(); } }else{ if(rec && this.valueField){ if (this.value == val){ return; } val = rec.get(this.valueField || this.displayField); } this.setValue(val); } }, onSelect : function(record, index){ if(this.fireEvent('beforeselect', this, record, index) !== false){ this.setValue(record.data[this.valueField || this.displayField]); this.collapse(); this.fireEvent('select', this, record, index); } }, getName: function(){ var hf = this.hiddenField; return hf && hf.name ? hf.name : this.hiddenName || Ext.form.ComboBox.superclass.getName.call(this); }, getValue : function(){ if(this.valueField){ return Ext.isDefined(this.value) ? this.value : ''; }else{ return Ext.form.ComboBox.superclass.getValue.call(this); } }, clearValue : function(){ if(this.hiddenField){ this.hiddenField.value = ''; } this.setRawValue(''); this.lastSelectionText = ''; this.applyEmptyText(); this.value = ''; }, setValue : function(v){ var text = v; if(this.valueField){ var r = this.findRecord(this.valueField, v); if(r){ text = r.data[this.displayField]; }else if(Ext.isDefined(this.valueNotFoundText)){ text = this.valueNotFoundText; } } this.lastSelectionText = text; if(this.hiddenField){ this.hiddenField.value = Ext.value(v, ''); } Ext.form.ComboBox.superclass.setValue.call(this, text); this.value = v; return this; }, findRecord : function(prop, value){ var record; if(this.store.getCount() > 0){ this.store.each(function(r){ if(r.data[prop] == value){ record = r; return false; } }); } return record; }, onViewMove : function(e, t){ this.inKeyMode = false; }, onViewOver : function(e, t){ if(this.inKeyMode){ return; } var item = this.view.findItemFromChild(t); if(item){ var index = this.view.indexOf(item); this.select(index, false); } }, onViewClick : function(doFocus){ var index = this.view.getSelectedIndexes()[0], s = this.store, r = s.getAt(index); if(r){ this.onSelect(r, index); }else { this.collapse(); } if(doFocus !== false){ this.el.focus(); } }, restrictHeight : function(){ this.innerList.dom.style.height = ''; var inner = this.innerList.dom, pad = this.list.getFrameWidth('tb') + (this.resizable ? this.handleHeight : 0) + this.assetHeight, h = Math.max(inner.clientHeight, inner.offsetHeight, inner.scrollHeight), ha = this.getPosition()[1]-Ext.getBody().getScroll().top, hb = Ext.lib.Dom.getViewHeight()-ha-this.getSize().height, space = Math.max(ha, hb, this.minHeight || 0)-this.list.shadowOffset-pad-5; h = Math.min(h, space, this.maxHeight); this.innerList.setHeight(h); this.list.beginUpdate(); this.list.setHeight(h+pad); this.list.alignTo.apply(this.list, [this.el].concat(this.listAlign)); this.list.endUpdate(); }, isExpanded : function(){ return this.list && this.list.isVisible(); }, selectByValue : function(v, scrollIntoView){ if(!Ext.isEmpty(v, true)){ var r = this.findRecord(this.valueField || this.displayField, v); if(r){ this.select(this.store.indexOf(r), scrollIntoView); return true; } } return false; }, select : function(index, scrollIntoView){ this.selectedIndex = index; this.view.select(index); if(scrollIntoView !== false){ var el = this.view.getNode(index); if(el){ this.innerList.scrollChildIntoView(el, false); } } }, selectNext : function(){ var ct = this.store.getCount(); if(ct > 0){ if(this.selectedIndex == -1){ this.select(0); }else if(this.selectedIndex < ct-1){ this.select(this.selectedIndex+1); } } }, selectPrev : function(){ var ct = this.store.getCount(); if(ct > 0){ if(this.selectedIndex == -1){ this.select(0); }else if(this.selectedIndex !== 0){ this.select(this.selectedIndex-1); } } }, onKeyUp : function(e){ var k = e.getKey(); if(this.editable !== false && this.readOnly !== true && (k == e.BACKSPACE || !e.isSpecialKey())){ this.lastKey = k; this.dqTask.delay(this.queryDelay); } Ext.form.ComboBox.superclass.onKeyUp.call(this, e); }, validateBlur : function(){ return !this.list || !this.list.isVisible(); }, initQuery : function(){ this.doQuery(this.getRawValue()); }, beforeBlur : function(){ this.assertValue(); }, postBlur : function(){ Ext.form.ComboBox.superclass.postBlur.call(this); this.collapse(); this.inKeyMode = false; }, doQuery : function(q, forceAll){ q = Ext.isEmpty(q) ? '' : q; var qe = { query: q, forceAll: forceAll, combo: this, cancel:false }; if(this.fireEvent('beforequery', qe)===false || qe.cancel){ return false; } q = qe.query; forceAll = qe.forceAll; if(forceAll === true || (q.length >= this.minChars)){ if(this.lastQuery !== q){ this.lastQuery = q; if(this.mode == 'local'){ this.selectedIndex = -1; if(forceAll){ this.store.clearFilter(); }else{ this.store.filter(this.displayField, q); } this.onLoad(); }else{ this.store.baseParams[this.queryParam] = q; this.store.load({ params: this.getParams(q) }); this.expand(); } }else{ this.selectedIndex = -1; this.onLoad(); } } }, getParams : function(q){ var params = {}, paramNames = this.store.paramNames; if(this.pageSize){ params[paramNames.start] = 0; params[paramNames.limit] = this.pageSize; } return params; }, collapse : function(){ if(!this.isExpanded()){ return; } this.list.hide(); Ext.getDoc().un('mousewheel', this.collapseIf, this); Ext.getDoc().un('mousedown', this.collapseIf, this); this.fireEvent('collapse', this); }, collapseIf : function(e){ if(!this.isDestroyed && !e.within(this.wrap) && !e.within(this.list)){ this.collapse(); } }, expand : function(){ if(this.isExpanded() || !this.hasFocus){ return; } if(this.title || this.pageSize){ this.assetHeight = 0; if(this.title){ this.assetHeight += this.header.getHeight(); } if(this.pageSize){ this.assetHeight += this.footer.getHeight(); } } if(this.bufferSize){ this.doResize(this.bufferSize); delete this.bufferSize; } this.list.alignTo.apply(this.list, [this.el].concat(this.listAlign)); this.list.setZIndex(this.getZIndex()); this.list.show(); if(Ext.isGecko2){ this.innerList.setOverflow('auto'); } this.mon(Ext.getDoc(), { scope: this, mousewheel: this.collapseIf, mousedown: this.collapseIf }); this.fireEvent('expand', this); }, onTriggerClick : function(){ if(this.readOnly || this.disabled){ return; } if(this.isExpanded()){ this.collapse(); this.el.focus(); }else { this.onFocus({}); if(this.triggerAction == 'all') { this.doQuery(this.allQuery, true); } else { this.doQuery(this.getRawValue()); } this.el.focus(); } } }); Ext.reg('combo', Ext.form.ComboBox); Ext.form.Checkbox = Ext.extend(Ext.form.Field, { focusClass : undefined, fieldClass : 'x-form-field', checked : false, boxLabel: ' ', defaultAutoCreate : { tag: 'input', type: 'checkbox', autocomplete: 'off'}, actionMode : 'wrap', initComponent : function(){ Ext.form.Checkbox.superclass.initComponent.call(this); this.addEvents( 'check' ); }, onResize : function(){ Ext.form.Checkbox.superclass.onResize.apply(this, arguments); if(!this.boxLabel && !this.fieldLabel){ this.el.alignTo(this.wrap, 'c-c'); } }, initEvents : function(){ Ext.form.Checkbox.superclass.initEvents.call(this); this.mon(this.el, { scope: this, click: this.onClick, change: this.onClick }); }, markInvalid : Ext.emptyFn, clearInvalid : Ext.emptyFn, onRender : function(ct, position){ Ext.form.Checkbox.superclass.onRender.call(this, ct, position); if(this.inputValue !== undefined){ this.el.dom.value = this.inputValue; } this.wrap = this.el.wrap({cls: 'x-form-check-wrap'}); if(this.boxLabel){ this.wrap.createChild({tag: 'label', htmlFor: this.el.id, cls: 'x-form-cb-label', html: this.boxLabel}); } if(this.checked){ this.setValue(true); }else{ this.checked = this.el.dom.checked; } if (Ext.isIEQuirks) { this.wrap.repaint(); } this.resizeEl = this.positionEl = this.wrap; }, onDestroy : function(){ Ext.destroy(this.wrap); Ext.form.Checkbox.superclass.onDestroy.call(this); }, initValue : function() { this.originalValue = this.getValue(); }, getValue : function(){ if(this.rendered){ return this.el.dom.checked; } return this.checked; }, onClick : function(){ if(this.el.dom.checked != this.checked){ this.setValue(this.el.dom.checked); } }, setValue : function(v){ var checked = this.checked, inputVal = this.inputValue; if (v === false) { this.checked = false; } else { this.checked = (v === true || v === 'true' || v == '1' || (inputVal ? v == inputVal : String(v).toLowerCase() == 'on')); } if(this.rendered){ this.el.dom.checked = this.checked; this.el.dom.defaultChecked = this.checked; } if(checked != this.checked){ this.fireEvent('check', this, this.checked); if(this.handler){ this.handler.call(this.scope || this, this, this.checked); } } return this; } }); Ext.reg('checkbox', Ext.form.Checkbox); Ext.form.CheckboxGroup = Ext.extend(Ext.form.Field, { columns : 'auto', vertical : false, allowBlank : true, blankText : "You must select at least one item in this group", defaultType : 'checkbox', groupCls : 'x-form-check-group', initComponent: function(){ this.addEvents( 'change' ); this.on('change', this.validate, this); Ext.form.CheckboxGroup.superclass.initComponent.call(this); }, onRender : function(ct, position){ if(!this.el){ var panelCfg = { autoEl: { id: this.id }, cls: this.groupCls, layout: 'column', renderTo: ct, bufferResize: false }; var colCfg = { xtype: 'container', defaultType: this.defaultType, layout: 'form', defaults: { hideLabel: true, anchor: '100%' } }; if(this.items[0].items){ Ext.apply(panelCfg, { layoutConfig: {columns: this.items.length}, defaults: this.defaults, items: this.items }); for(var i=0, len=this.items.length; i0 && i%rows==0){ ri++; } if(this.items[i].fieldLabel){ this.items[i].hideLabel = false; } cols[ri].items.push(this.items[i]); }; }else{ for(var i=0, len=this.items.length; i -1){ item.setValue(true); } }); }, getBox : function(id){ var box = null; this.eachItem(function(f){ if(id == f || f.dataIndex == id || f.id == id || f.getName() == id){ box = f; return false; } }); return box; }, getValue : function(){ var out = []; this.eachItem(function(item){ if(item.checked){ out.push(item); } }); return out; }, eachItem: function(fn, scope) { if(this.items && this.items.each){ this.items.each(fn, scope || this); } }, getRawValue : Ext.emptyFn, setRawValue : Ext.emptyFn }); Ext.reg('checkboxgroup', Ext.form.CheckboxGroup); Ext.form.CompositeField = Ext.extend(Ext.form.Field, { defaultMargins: '0 5 0 0', skipLastItemMargin: true, isComposite: true, combineErrors: true, labelConnector: ', ', initComponent: function() { var labels = [], items = this.items, item; for (var i=0, j = items.length; i < j; i++) { item = items[i]; if (!Ext.isEmpty(item.ref)){ item.ref = '../' + item.ref; } labels.push(item.fieldLabel); Ext.applyIf(item, this.defaults); if (!(i == j - 1 && this.skipLastItemMargin)) { Ext.applyIf(item, {margins: this.defaultMargins}); } } this.fieldLabel = this.fieldLabel || this.buildLabel(labels); this.fieldErrors = new Ext.util.MixedCollection(true, function(item) { return item.field; }); this.fieldErrors.on({ scope : this, add : this.updateInvalidMark, remove : this.updateInvalidMark, replace: this.updateInvalidMark }); Ext.form.CompositeField.superclass.initComponent.apply(this, arguments); this.innerCt = new Ext.Container({ layout : 'hbox', items : this.items, cls : 'x-form-composite', defaultMargins: '0 3 0 0', ownerCt: this }); delete this.innerCt.ownerCt; var fields = this.innerCt.findBy(function(c) { return c.isFormField; }, this); this.items = new Ext.util.MixedCollection(); this.items.addAll(fields); }, onRender: function(ct, position) { if (!this.el) { var innerCt = this.innerCt; innerCt.render(ct); this.innerCt.ownerCt = this; this.el = innerCt.getEl(); if (this.combineErrors) { this.eachItem(function(field) { Ext.apply(field, { markInvalid : this.onFieldMarkInvalid.createDelegate(this, [field], 0), clearInvalid: this.onFieldClearInvalid.createDelegate(this, [field], 0) }); }); } var l = this.el.parent().parent().child('label', true); if (l) { l.setAttribute('for', this.items.items[0].id); } } Ext.form.CompositeField.superclass.onRender.apply(this, arguments); }, onFieldMarkInvalid: function(field, message) { var name = field.getName(), error = { field: name, errorName: field.fieldLabel || name, error: message }; this.fieldErrors.replace(name, error); if (!field.preventMark) { field.el.addClass(field.invalidClass); } }, onFieldClearInvalid: function(field) { this.fieldErrors.removeKey(field.getName()); field.el.removeClass(field.invalidClass); }, updateInvalidMark: function() { var ieStrict = Ext.isIE6 && Ext.isStrict; if (this.fieldErrors.length == 0) { this.clearInvalid(); if (ieStrict) { this.clearInvalid.defer(50, this); } } else { var message = this.buildCombinedErrorMessage(this.fieldErrors.items); this.sortErrors(); this.markInvalid(message); if (ieStrict) { this.markInvalid(message); } } }, validateValue: function(value, preventMark) { var valid = true; this.eachItem(function(field) { if (!field.isValid(preventMark)) { valid = false; } }); return valid; }, buildCombinedErrorMessage: function(errors) { var combined = [], error; for (var i = 0, j = errors.length; i < j; i++) { error = errors[i]; combined.push(String.format("{0}: {1}", error.errorName, error.error)); } return combined.join("
      "); }, sortErrors: function() { var fields = this.items; this.fieldErrors.sort("ASC", function(a, b) { var findByName = function(key) { return function(field) { return field.getName() == key; }; }; var aIndex = fields.findIndexBy(findByName(a.field)), bIndex = fields.findIndexBy(findByName(b.field)); return aIndex < bIndex ? -1 : 1; }); }, reset: function() { this.eachItem(function(item) { item.reset(); }); (function() { this.clearInvalid(); }).defer(50, this); }, clearInvalidChildren: function() { this.eachItem(function(item) { item.clearInvalid(); }); }, buildLabel: function(segments) { return Ext.clean(segments).join(this.labelConnector); }, isDirty: function(){ if (this.disabled || !this.rendered) { return false; } var dirty = false; this.eachItem(function(item){ if(item.isDirty()){ dirty = true; return false; } }); return dirty; }, eachItem: function(fn, scope) { if(this.items && this.items.each){ this.items.each(fn, scope || this); } }, onResize: function(adjWidth, adjHeight, rawWidth, rawHeight) { var innerCt = this.innerCt; if (this.rendered && innerCt.rendered) { innerCt.setSize(adjWidth, adjHeight); } Ext.form.CompositeField.superclass.onResize.apply(this, arguments); }, doLayout: function(shallow, force) { if (this.rendered) { var innerCt = this.innerCt; innerCt.forceLayout = this.ownerCt.forceLayout; innerCt.doLayout(shallow, force); } }, beforeDestroy: function(){ Ext.destroy(this.innerCt); Ext.form.CompositeField.superclass.beforeDestroy.call(this); }, setReadOnly : function(readOnly) { if (readOnly == undefined) { readOnly = true; } readOnly = !!readOnly; if(this.rendered){ this.eachItem(function(item){ item.setReadOnly(readOnly); }); } this.readOnly = readOnly; }, onShow : function() { Ext.form.CompositeField.superclass.onShow.call(this); this.doLayout(); }, onDisable : function(){ this.eachItem(function(item){ item.disable(); }); }, onEnable : function(){ this.eachItem(function(item){ item.enable(); }); } }); Ext.reg('compositefield', Ext.form.CompositeField); Ext.form.Radio = Ext.extend(Ext.form.Checkbox, { inputType: 'radio', markInvalid : Ext.emptyFn, clearInvalid : Ext.emptyFn, getGroupValue : function(){ var p = this.el.up('form') || Ext.getBody(); var c = p.child('input[name="'+this.el.dom.name+'"]:checked', true); return c ? c.value : null; }, setValue : function(v){ var checkEl, els, radio; if (typeof v == 'boolean') { Ext.form.Radio.superclass.setValue.call(this, v); } else if (this.rendered) { checkEl = this.getCheckEl(); radio = checkEl.child('input[name="' + this.el.dom.name + '"][value="' + v + '"]', true); if(radio){ Ext.getCmp(radio.id).setValue(true); } } if(this.rendered && this.checked){ checkEl = checkEl || this.getCheckEl(); els = this.getCheckEl().select('input[name="' + this.el.dom.name + '"]'); els.each(function(el){ if(el.dom.id != this.id){ Ext.getCmp(el.dom.id).setValue(false); } }, this); } return this; }, getCheckEl: function(){ if(this.inGroup){ return this.el.up('.x-form-radio-group'); } return this.el.up('form') || Ext.getBody(); } }); Ext.reg('radio', Ext.form.Radio); Ext.form.RadioGroup = Ext.extend(Ext.form.CheckboxGroup, { allowBlank : true, blankText : 'You must select one item in this group', defaultType : 'radio', groupCls : 'x-form-radio-group', getValue : function(){ var out = null; this.eachItem(function(item){ if(item.checked){ out = item; return false; } }); return out; }, onSetValue : function(id, value){ if(arguments.length > 1){ var f = this.getBox(id); if(f){ f.setValue(value); if(f.checked){ this.eachItem(function(item){ if (item !== f){ item.setValue(false); } }); } } }else{ this.setValueForItem(id); } }, setValueForItem : function(val){ val = String(val).split(',')[0]; this.eachItem(function(item){ item.setValue(val == item.inputValue); }); }, fireChecked : function(){ if(!this.checkTask){ this.checkTask = new Ext.util.DelayedTask(this.bufferChecked, this); } this.checkTask.delay(10); }, bufferChecked : function(){ var out = null; this.eachItem(function(item){ if(item.checked){ out = item; return false; } }); this.fireEvent('change', this, out); }, onDestroy : function(){ if(this.checkTask){ this.checkTask.cancel(); this.checkTask = null; } Ext.form.RadioGroup.superclass.onDestroy.call(this); } }); Ext.reg('radiogroup', Ext.form.RadioGroup); Ext.form.Hidden = Ext.extend(Ext.form.Field, { inputType : 'hidden', shouldLayout: false, onRender : function(){ Ext.form.Hidden.superclass.onRender.apply(this, arguments); }, initEvents : function(){ this.originalValue = this.getValue(); }, setSize : Ext.emptyFn, setWidth : Ext.emptyFn, setHeight : Ext.emptyFn, setPosition : Ext.emptyFn, setPagePosition : Ext.emptyFn, markInvalid : Ext.emptyFn, clearInvalid : Ext.emptyFn }); Ext.reg('hidden', Ext.form.Hidden); Ext.form.BasicForm = Ext.extend(Ext.util.Observable, { constructor: function(el, config){ Ext.apply(this, config); if(Ext.isString(this.paramOrder)){ this.paramOrder = this.paramOrder.split(/[\s,|]/); } this.items = new Ext.util.MixedCollection(false, function(o){ return o.getItemId(); }); this.addEvents( 'beforeaction', 'actionfailed', 'actioncomplete' ); if(el){ this.initEl(el); } Ext.form.BasicForm.superclass.constructor.call(this); }, timeout: 30, paramOrder: undefined, paramsAsHash: false, waitTitle: 'Please Wait...', activeAction : null, trackResetOnLoad : false, initEl : function(el){ this.el = Ext.get(el); this.id = this.el.id || Ext.id(); if(!this.standardSubmit){ this.el.on('submit', this.onSubmit, this); } this.el.addClass('x-form'); }, getEl: function(){ return this.el; }, onSubmit : function(e){ e.stopEvent(); }, destroy: function(bound){ if(bound !== true){ this.items.each(function(f){ Ext.destroy(f); }); Ext.destroy(this.el); } this.items.clear(); this.purgeListeners(); }, isValid : function(){ var valid = true; this.items.each(function(f){ if(!f.validate()){ valid = false; } }); return valid; }, isDirty : function(){ var dirty = false; this.items.each(function(f){ if(f.isDirty()){ dirty = true; return false; } }); return dirty; }, doAction : function(action, options){ if(Ext.isString(action)){ action = new Ext.form.Action.ACTION_TYPES[action](this, options); } if(this.fireEvent('beforeaction', this, action) !== false){ this.beforeAction(action); action.run.defer(100, action); } return this; }, submit : function(options){ options = options || {}; if(this.standardSubmit){ var v = options.clientValidation === false || this.isValid(); if(v){ var el = this.el.dom; if(this.url && Ext.isEmpty(el.action)){ el.action = this.url; } el.submit(); } return v; } var submitAction = String.format('{0}submit', this.api ? 'direct' : ''); this.doAction(submitAction, options); return this; }, load : function(options){ var loadAction = String.format('{0}load', this.api ? 'direct' : ''); this.doAction(loadAction, options); return this; }, updateRecord : function(record){ record.beginEdit(); var fs = record.fields, field, value; fs.each(function(f){ field = this.findField(f.name); if(field){ value = field.getValue(); if (Ext.type(value) !== false && value.getGroupValue) { value = value.getGroupValue(); } else if ( field.eachItem ) { value = []; field.eachItem(function(item){ value.push(item.getValue()); }); } record.set(f.name, value); } }, this); record.endEdit(); return this; }, loadRecord : function(record){ this.setValues(record.data); return this; }, beforeAction : function(action){ this.items.each(function(f){ if(f.isFormField && f.syncValue){ f.syncValue(); } }); var o = action.options; if(o.waitMsg){ if(this.waitMsgTarget === true){ this.el.mask(o.waitMsg, 'x-mask-loading'); }else if(this.waitMsgTarget){ this.waitMsgTarget = Ext.get(this.waitMsgTarget); this.waitMsgTarget.mask(o.waitMsg, 'x-mask-loading'); }else{ Ext.MessageBox.wait(o.waitMsg, o.waitTitle || this.waitTitle); } } }, afterAction : function(action, success){ this.activeAction = null; var o = action.options; if(o.waitMsg){ if(this.waitMsgTarget === true){ this.el.unmask(); }else if(this.waitMsgTarget){ this.waitMsgTarget.unmask(); }else{ Ext.MessageBox.updateProgress(1); Ext.MessageBox.hide(); } } if(success){ if(o.reset){ this.reset(); } Ext.callback(o.success, o.scope, [this, action]); this.fireEvent('actioncomplete', this, action); }else{ Ext.callback(o.failure, o.scope, [this, action]); this.fireEvent('actionfailed', this, action); } }, findField : function(id) { var field = this.items.get(id); if (!Ext.isObject(field)) { var findMatchingField = function(f) { if (f.isFormField) { if (f.dataIndex == id || f.id == id || f.getName() == id) { field = f; return false; } else if (f.isComposite) { return f.items.each(findMatchingField); } else if (f instanceof Ext.form.CheckboxGroup && f.rendered) { return f.eachItem(findMatchingField); } } }; this.items.each(findMatchingField); } return field || null; }, markInvalid : function(errors){ if (Ext.isArray(errors)) { for(var i = 0, len = errors.length; i < len; i++){ var fieldError = errors[i]; var f = this.findField(fieldError.id); if(f){ f.markInvalid(fieldError.msg); } } } else { var field, id; for(id in errors){ if(!Ext.isFunction(errors[id]) && (field = this.findField(id))){ field.markInvalid(errors[id]); } } } return this; }, setValues : function(values){ if(Ext.isArray(values)){ for(var i = 0, len = values.length; i < len; i++){ var v = values[i]; var f = this.findField(v.id); if(f){ f.setValue(v.value); if(this.trackResetOnLoad){ f.originalValue = f.getValue(); } } } }else{ var field, id; for(id in values){ if(!Ext.isFunction(values[id]) && (field = this.findField(id))){ field.setValue(values[id]); if(this.trackResetOnLoad){ field.originalValue = field.getValue(); } } } } return this; }, getValues : function(asString){ var fs = Ext.lib.Ajax.serializeForm(this.el.dom); if(asString === true){ return fs; } return Ext.urlDecode(fs); }, getFieldValues : function(dirtyOnly){ var o = {}, n, key, val; this.items.each(function(f) { if (!f.disabled && (dirtyOnly !== true || f.isDirty())) { n = f.getName(); key = o[n]; val = f.getValue(); if(Ext.isDefined(key)){ if(Ext.isArray(key)){ o[n].push(val); }else{ o[n] = [key, val]; } }else{ o[n] = val; } } }); return o; }, clearInvalid : function(){ this.items.each(function(f){ f.clearInvalid(); }); return this; }, reset : function(){ this.items.each(function(f){ f.reset(); }); return this; }, add : function(){ this.items.addAll(Array.prototype.slice.call(arguments, 0)); return this; }, remove : function(field){ this.items.remove(field); return this; }, cleanDestroyed : function() { this.items.filterBy(function(o) { return !!o.isDestroyed; }).each(this.remove, this); }, render : function(){ this.items.each(function(f){ if(f.isFormField && !f.rendered && document.getElementById(f.id)){ f.applyToMarkup(f.id); } }); return this; }, applyToFields : function(o){ this.items.each(function(f){ Ext.apply(f, o); }); return this; }, applyIfToFields : function(o){ this.items.each(function(f){ Ext.applyIf(f, o); }); return this; }, callFieldMethod : function(fnName, args){ args = args || []; this.items.each(function(f){ if(Ext.isFunction(f[fnName])){ f[fnName].apply(f, args); } }); return this; } }); Ext.BasicForm = Ext.form.BasicForm; Ext.FormPanel = Ext.extend(Ext.Panel, { minButtonWidth : 75, labelAlign : 'left', monitorValid : false, monitorPoll : 200, layout : 'form', initComponent : function(){ this.form = this.createForm(); Ext.FormPanel.superclass.initComponent.call(this); this.bodyCfg = { tag: 'form', cls: this.baseCls + '-body', method : this.method || 'POST', id : this.formId || Ext.id() }; if(this.fileUpload) { this.bodyCfg.enctype = 'multipart/form-data'; } this.initItems(); this.addEvents( 'clientvalidation' ); this.relayEvents(this.form, ['beforeaction', 'actionfailed', 'actioncomplete']); }, createForm : function(){ var config = Ext.applyIf({listeners: {}}, this.initialConfig); return new Ext.form.BasicForm(null, config); }, initFields : function(){ var f = this.form; var formPanel = this; var fn = function(c){ if(formPanel.isField(c)){ f.add(c); }else if(c.findBy && c != formPanel){ formPanel.applySettings(c); if(c.items && c.items.each){ c.items.each(fn, this); } } }; this.items.each(fn, this); }, applySettings: function(c){ var ct = c.ownerCt; Ext.applyIf(c, { labelAlign: ct.labelAlign, labelWidth: ct.labelWidth, itemCls: ct.itemCls }); }, getLayoutTarget : function(){ return this.form.el; }, getForm : function(){ return this.form; }, onRender : function(ct, position){ this.initFields(); Ext.FormPanel.superclass.onRender.call(this, ct, position); this.form.initEl(this.body); }, beforeDestroy : function(){ this.stopMonitoring(); this.form.destroy(true); Ext.FormPanel.superclass.beforeDestroy.call(this); }, isField : function(c) { return !!c.setValue && !!c.getValue && !!c.markInvalid && !!c.clearInvalid; }, initEvents : function(){ Ext.FormPanel.superclass.initEvents.call(this); this.on({ scope: this, add: this.onAddEvent, remove: this.onRemoveEvent }); if(this.monitorValid){ this.startMonitoring(); } }, onAdd: function(c){ Ext.FormPanel.superclass.onAdd.call(this, c); this.processAdd(c); }, onAddEvent: function(ct, c){ if(ct !== this){ this.processAdd(c); } }, processAdd : function(c){ if(this.isField(c)){ this.form.add(c); }else if(c.findBy){ this.applySettings(c); this.form.add.apply(this.form, c.findBy(this.isField)); } }, onRemove: function(c){ Ext.FormPanel.superclass.onRemove.call(this, c); this.processRemove(c); }, onRemoveEvent: function(ct, c){ if(ct !== this){ this.processRemove(c); } }, processRemove: function(c){ if(!this.destroying){ if(this.isField(c)){ this.form.remove(c); }else if (c.findBy){ Ext.each(c.findBy(this.isField), this.form.remove, this.form); this.form.cleanDestroyed(); } } }, startMonitoring : function(){ if(!this.validTask){ this.validTask = new Ext.util.TaskRunner(); this.validTask.start({ run : this.bindHandler, interval : this.monitorPoll || 200, scope: this }); } }, stopMonitoring : function(){ if(this.validTask){ this.validTask.stopAll(); this.validTask = null; } }, load : function(){ this.form.load.apply(this.form, arguments); }, onDisable : function(){ Ext.FormPanel.superclass.onDisable.call(this); if(this.form){ this.form.items.each(function(){ this.disable(); }); } }, onEnable : function(){ Ext.FormPanel.superclass.onEnable.call(this); if(this.form){ this.form.items.each(function(){ this.enable(); }); } }, bindHandler : function(){ var valid = true; this.form.items.each(function(f){ if(!f.isValid(true)){ valid = false; return false; } }); if(this.fbar){ var fitems = this.fbar.items.items; for(var i = 0, len = fitems.length; i < len; i++){ var btn = fitems[i]; if(btn.formBind === true && btn.disabled === valid){ btn.setDisabled(!valid); } } } this.fireEvent('clientvalidation', this, valid); } }); Ext.reg('form', Ext.FormPanel); Ext.form.FormPanel = Ext.FormPanel; Ext.form.FieldSet = Ext.extend(Ext.Panel, { baseCls : 'x-fieldset', layout : 'form', animCollapse : false, onRender : function(ct, position){ if(!this.el){ this.el = document.createElement('fieldset'); this.el.id = this.id; if (this.title || this.header || this.checkboxToggle) { this.el.appendChild(document.createElement('legend')).className = this.baseCls + '-header'; } } Ext.form.FieldSet.superclass.onRender.call(this, ct, position); if(this.checkboxToggle){ var o = typeof this.checkboxToggle == 'object' ? this.checkboxToggle : {tag: 'input', type: 'checkbox', name: this.checkboxName || this.id+'-checkbox'}; this.checkbox = this.header.insertFirst(o); this.checkbox.dom.checked = !this.collapsed; this.mon(this.checkbox, 'click', this.onCheckClick, this); } }, onCollapse : function(doAnim, animArg){ if(this.checkbox){ this.checkbox.dom.checked = false; } Ext.form.FieldSet.superclass.onCollapse.call(this, doAnim, animArg); }, onExpand : function(doAnim, animArg){ if(this.checkbox){ this.checkbox.dom.checked = true; } Ext.form.FieldSet.superclass.onExpand.call(this, doAnim, animArg); }, onCheckClick : function(){ this[this.checkbox.dom.checked ? 'expand' : 'collapse'](); } }); Ext.reg('fieldset', Ext.form.FieldSet); Ext.form.HtmlEditor = Ext.extend(Ext.form.Field, { enableFormat : true, enableFontSize : true, enableColors : true, enableAlignments : true, enableLists : true, enableSourceEdit : true, enableLinks : true, enableFont : true, createLinkText : 'Please enter the URL for the link:', defaultLinkValue : 'http:/'+'/', fontFamilies : [ 'Arial', 'Courier New', 'Tahoma', 'Times New Roman', 'Verdana' ], defaultFont: 'tahoma', defaultValue: (Ext.isOpera || Ext.isIE6) ? ' ' : '​', actionMode: 'wrap', validationEvent : false, deferHeight: true, initialized : false, activated : false, sourceEditMode : false, onFocus : Ext.emptyFn, iframePad:3, hideMode:'offsets', defaultAutoCreate : { tag: "textarea", style:"width:500px;height:300px;", autocomplete: "off" }, initComponent : function(){ this.addEvents( 'initialize', 'activate', 'beforesync', 'beforepush', 'sync', 'push', 'editmodechange' ); Ext.form.HtmlEditor.superclass.initComponent.call(this); }, createFontOptions : function(){ var buf = [], fs = this.fontFamilies, ff, lc; for(var i = 0, len = fs.length; i< len; i++){ ff = fs[i]; lc = ff.toLowerCase(); buf.push( '' ); } return buf.join(''); }, createToolbar : function(editor){ var items = []; var tipsEnabled = Ext.QuickTips && Ext.QuickTips.isEnabled(); function btn(id, toggle, handler){ return { itemId : id, cls : 'x-btn-icon', iconCls: 'x-edit-'+id, enableToggle:toggle !== false, scope: editor, handler:handler||editor.relayBtnCmd, clickEvent:'mousedown', tooltip: tipsEnabled ? editor.buttonTips[id] || undefined : undefined, overflowText: editor.buttonTips[id].title || undefined, tabIndex:-1 }; } if(this.enableFont && !Ext.isSafari2){ var fontSelectItem = new Ext.Toolbar.Item({ autoEl: { tag:'select', cls:'x-font-select', html: this.createFontOptions() } }); items.push( fontSelectItem, '-' ); } if(this.enableFormat){ items.push( btn('bold'), btn('italic'), btn('underline') ); } if(this.enableFontSize){ items.push( '-', btn('increasefontsize', false, this.adjustFont), btn('decreasefontsize', false, this.adjustFont) ); } if(this.enableColors){ items.push( '-', { itemId:'forecolor', cls:'x-btn-icon', iconCls: 'x-edit-forecolor', clickEvent:'mousedown', tooltip: tipsEnabled ? editor.buttonTips.forecolor || undefined : undefined, tabIndex:-1, menu : new Ext.menu.ColorMenu({ allowReselect: true, focus: Ext.emptyFn, value:'000000', plain:true, listeners: { scope: this, select: function(cp, color){ this.execCmd('forecolor', Ext.isWebKit || Ext.isIE ? '#'+color : color); this.deferFocus(); } }, clickEvent:'mousedown' }) }, { itemId:'backcolor', cls:'x-btn-icon', iconCls: 'x-edit-backcolor', clickEvent:'mousedown', tooltip: tipsEnabled ? editor.buttonTips.backcolor || undefined : undefined, tabIndex:-1, menu : new Ext.menu.ColorMenu({ focus: Ext.emptyFn, value:'FFFFFF', plain:true, allowReselect: true, listeners: { scope: this, select: function(cp, color){ if(Ext.isGecko){ this.execCmd('useCSS', false); this.execCmd('hilitecolor', color); this.execCmd('useCSS', true); this.deferFocus(); }else{ this.execCmd(Ext.isOpera ? 'hilitecolor' : 'backcolor', Ext.isWebKit || Ext.isIE ? '#'+color : color); this.deferFocus(); } } }, clickEvent:'mousedown' }) } ); } if(this.enableAlignments){ items.push( '-', btn('justifyleft'), btn('justifycenter'), btn('justifyright') ); } if(!Ext.isSafari2){ if(this.enableLinks){ items.push( '-', btn('createlink', false, this.createLink) ); } if(this.enableLists){ items.push( '-', btn('insertorderedlist'), btn('insertunorderedlist') ); } if(this.enableSourceEdit){ items.push( '-', btn('sourceedit', true, function(btn){ this.toggleSourceEdit(!this.sourceEditMode); }) ); } } var tb = new Ext.Toolbar({ renderTo: this.wrap.dom.firstChild, items: items }); if (fontSelectItem) { this.fontSelect = fontSelectItem.el; this.mon(this.fontSelect, 'change', function(){ var font = this.fontSelect.dom.value; this.relayCmd('fontname', font); this.deferFocus(); }, this); } this.mon(tb.el, 'click', function(e){ e.preventDefault(); }); this.tb = tb; this.tb.doLayout(); }, onDisable: function(){ this.wrap.mask(); Ext.form.HtmlEditor.superclass.onDisable.call(this); }, onEnable: function(){ this.wrap.unmask(); Ext.form.HtmlEditor.superclass.onEnable.call(this); }, setReadOnly: function(readOnly){ Ext.form.HtmlEditor.superclass.setReadOnly.call(this, readOnly); if(this.initialized){ if(Ext.isIE){ this.getEditorBody().contentEditable = !readOnly; }else{ this.setDesignMode(!readOnly); } var bd = this.getEditorBody(); if(bd){ bd.style.cursor = this.readOnly ? 'default' : 'text'; } this.disableItems(readOnly); } }, getDocMarkup : function(){ var h = Ext.fly(this.iframe).getHeight() - this.iframePad * 2; return String.format('', this.iframePad, h); }, getEditorBody : function(){ var doc = this.getDoc(); return doc.body || doc.documentElement; }, getDoc : function(){ return Ext.isIE ? this.getWin().document : (this.iframe.contentDocument || this.getWin().document); }, getWin : function(){ return Ext.isIE ? this.iframe.contentWindow : window.frames[this.iframe.name]; }, onRender : function(ct, position){ Ext.form.HtmlEditor.superclass.onRender.call(this, ct, position); this.el.dom.style.border = '0 none'; this.el.dom.setAttribute('tabIndex', -1); this.el.addClass('x-hidden'); if(Ext.isIE){ this.el.applyStyles('margin-top:-1px;margin-bottom:-1px;'); } this.wrap = this.el.wrap({ cls:'x-html-editor-wrap', cn:{cls:'x-html-editor-tb'} }); this.createToolbar(this); this.disableItems(true); this.tb.doLayout(); this.createIFrame(); if(!this.width){ var sz = this.el.getSize(); this.setSize(sz.width, this.height || sz.height); } this.resizeEl = this.positionEl = this.wrap; }, createIFrame: function(){ var iframe = document.createElement('iframe'); iframe.name = Ext.id(); iframe.frameBorder = '0'; iframe.style.overflow = 'auto'; iframe.src = Ext.SSL_SECURE_URL; this.wrap.dom.appendChild(iframe); this.iframe = iframe; this.monitorTask = Ext.TaskMgr.start({ run: this.checkDesignMode, scope: this, interval:100 }); }, initFrame : function(){ Ext.TaskMgr.stop(this.monitorTask); var doc = this.getDoc(); this.win = this.getWin(); doc.open(); doc.write(this.getDocMarkup()); doc.close(); this.readyTask = { run : function(){ var doc = this.getDoc(); if(doc.body || doc.readyState == 'complete'){ Ext.TaskMgr.stop(this.readyTask); this.setDesignMode(true); this.initEditor.defer(10, this); } }, interval : 10, duration:10000, scope: this }; Ext.TaskMgr.start(this.readyTask); }, checkDesignMode : function(){ if(this.wrap && this.wrap.dom.offsetWidth){ var doc = this.getDoc(); if(!doc){ return; } if(!doc.editorInitialized || this.getDesignMode() != 'on'){ this.initFrame(); } } }, setDesignMode : function(mode){ var doc = this.getDoc(); if (doc) { if(this.readOnly){ mode = false; } doc.designMode = (/on|true/i).test(String(mode).toLowerCase()) ?'on':'off'; } }, getDesignMode : function(){ var doc = this.getDoc(); if(!doc){ return ''; } return String(doc.designMode).toLowerCase(); }, disableItems: function(disabled){ if(this.fontSelect){ this.fontSelect.dom.disabled = disabled; } this.tb.items.each(function(item){ if(item.getItemId() != 'sourceedit'){ item.setDisabled(disabled); } }); }, onResize : function(w, h){ Ext.form.HtmlEditor.superclass.onResize.apply(this, arguments); if(this.el && this.iframe){ if(Ext.isNumber(w)){ var aw = w - this.wrap.getFrameWidth('lr'); this.el.setWidth(aw); this.tb.setWidth(aw); this.iframe.style.width = Math.max(aw, 0) + 'px'; } if(Ext.isNumber(h)){ var ah = h - this.wrap.getFrameWidth('tb') - this.tb.el.getHeight(); this.el.setHeight(ah); this.iframe.style.height = Math.max(ah, 0) + 'px'; var bd = this.getEditorBody(); if(bd){ bd.style.height = Math.max((ah - (this.iframePad*2)), 0) + 'px'; } } } }, toggleSourceEdit : function(sourceEditMode){ var iframeHeight, elHeight; if (sourceEditMode === undefined) { sourceEditMode = !this.sourceEditMode; } this.sourceEditMode = sourceEditMode === true; var btn = this.tb.getComponent('sourceedit'); if (btn.pressed !== this.sourceEditMode) { btn.toggle(this.sourceEditMode); if (!btn.xtbHidden) { return; } } if (this.sourceEditMode) { this.previousSize = this.getSize(); iframeHeight = Ext.get(this.iframe).getHeight(); this.disableItems(true); this.syncValue(); this.iframe.className = 'x-hidden'; this.el.removeClass('x-hidden'); this.el.dom.removeAttribute('tabIndex'); this.el.focus(); this.el.dom.style.height = iframeHeight + 'px'; } else { elHeight = parseInt(this.el.dom.style.height, 10); if (this.initialized) { this.disableItems(this.readOnly); } this.pushValue(); this.iframe.className = ''; this.el.addClass('x-hidden'); this.el.dom.setAttribute('tabIndex', -1); this.deferFocus(); this.setSize(this.previousSize); delete this.previousSize; this.iframe.style.height = elHeight + 'px'; } this.fireEvent('editmodechange', this, this.sourceEditMode); }, createLink : function() { var url = prompt(this.createLinkText, this.defaultLinkValue); if(url && url != 'http:/'+'/'){ this.relayCmd('createlink', url); } }, initEvents : function(){ this.originalValue = this.getValue(); }, markInvalid : Ext.emptyFn, clearInvalid : Ext.emptyFn, setValue : function(v){ Ext.form.HtmlEditor.superclass.setValue.call(this, v); this.pushValue(); return this; }, cleanHtml: function(html) { html = String(html); if(Ext.isWebKit){ html = html.replace(/\sclass="(?:Apple-style-span|khtml-block-placeholder)"/gi, ''); } if(html.charCodeAt(0) == this.defaultValue.replace(/\D/g, '')){ html = html.substring(1); } return html; }, syncValue : function(){ if(this.initialized){ var bd = this.getEditorBody(); var html = bd.innerHTML; if(Ext.isWebKit){ var bs = bd.getAttribute('style'); var m = bs.match(/text-align:(.*?);/i); if(m && m[1]){ html = '
      ' + html + '
      '; } } html = this.cleanHtml(html); if(this.fireEvent('beforesync', this, html) !== false){ this.el.dom.value = html; this.fireEvent('sync', this, html); } } }, getValue : function() { this[this.sourceEditMode ? 'pushValue' : 'syncValue'](); return Ext.form.HtmlEditor.superclass.getValue.call(this); }, pushValue : function(){ if(this.initialized){ var v = this.el.dom.value; if(!this.activated && v.length < 1){ v = this.defaultValue; } if(this.fireEvent('beforepush', this, v) !== false){ this.getEditorBody().innerHTML = v; if(Ext.isGecko){ this.setDesignMode(false); this.setDesignMode(true); } this.fireEvent('push', this, v); } } }, deferFocus : function(){ this.focus.defer(10, this); }, focus : function(){ if(this.win && !this.sourceEditMode){ this.win.focus(); }else{ this.el.focus(); } }, initEditor : function(){ try{ var dbody = this.getEditorBody(), ss = this.el.getStyles('font-size', 'font-family', 'background-image', 'background-repeat', 'background-color', 'color'), doc, fn; ss['background-attachment'] = 'fixed'; dbody.bgProperties = 'fixed'; Ext.DomHelper.applyStyles(dbody, ss); doc = this.getDoc(); if(doc){ try{ Ext.EventManager.removeAll(doc); }catch(e){} } fn = this.onEditorEvent.createDelegate(this); Ext.EventManager.on(doc, { mousedown: fn, dblclick: fn, click: fn, keyup: fn, buffer:100 }); if(Ext.isGecko){ Ext.EventManager.on(doc, 'keypress', this.applyCommand, this); } if(Ext.isIE || Ext.isWebKit || Ext.isOpera){ Ext.EventManager.on(doc, 'keydown', this.fixKeys, this); } doc.editorInitialized = true; this.initialized = true; this.pushValue(); this.setReadOnly(this.readOnly); this.fireEvent('initialize', this); }catch(e){} }, beforeDestroy : function(){ if(this.monitorTask){ Ext.TaskMgr.stop(this.monitorTask); } if(this.readyTask){ Ext.TaskMgr.stop(this.readyTask); } if(this.rendered){ Ext.destroy(this.tb); var doc = this.getDoc(); Ext.EventManager.removeFromSpecialCache(doc); if(doc){ try{ Ext.EventManager.removeAll(doc); for (var prop in doc){ delete doc[prop]; } }catch(e){} } if(this.wrap){ this.wrap.dom.innerHTML = ''; this.wrap.remove(); } } Ext.form.HtmlEditor.superclass.beforeDestroy.call(this); }, onFirstFocus : function(){ this.activated = true; this.disableItems(this.readOnly); if(Ext.isGecko){ this.win.focus(); var s = this.win.getSelection(); if(!s.focusNode || s.focusNode.nodeType != 3){ var r = s.getRangeAt(0); r.selectNodeContents(this.getEditorBody()); r.collapse(true); this.deferFocus(); } try{ this.execCmd('useCSS', true); this.execCmd('styleWithCSS', false); }catch(e){} } this.fireEvent('activate', this); }, adjustFont: function(btn){ var adjust = btn.getItemId() == 'increasefontsize' ? 1 : -1, doc = this.getDoc(), v = parseInt(doc.queryCommandValue('FontSize') || 2, 10); if((Ext.isSafari && !Ext.isSafari2) || Ext.isChrome || Ext.isAir){ if(v <= 10){ v = 1 + adjust; }else if(v <= 13){ v = 2 + adjust; }else if(v <= 16){ v = 3 + adjust; }else if(v <= 18){ v = 4 + adjust; }else if(v <= 24){ v = 5 + adjust; }else { v = 6 + adjust; } v = v.constrain(1, 6); }else{ if(Ext.isSafari){ adjust *= 2; } v = Math.max(1, v+adjust) + (Ext.isSafari ? 'px' : 0); } this.execCmd('FontSize', v); }, onEditorEvent : function(e){ this.updateToolbar(); }, updateToolbar: function(){ if(this.readOnly){ return; } if(!this.activated){ this.onFirstFocus(); return; } var btns = this.tb.items.map, doc = this.getDoc(); if(this.enableFont && !Ext.isSafari2){ var name = (doc.queryCommandValue('FontName')||this.defaultFont).toLowerCase(); if(name != this.fontSelect.dom.value){ this.fontSelect.dom.value = name; } } if(this.enableFormat){ btns.bold.toggle(doc.queryCommandState('bold')); btns.italic.toggle(doc.queryCommandState('italic')); btns.underline.toggle(doc.queryCommandState('underline')); } if(this.enableAlignments){ btns.justifyleft.toggle(doc.queryCommandState('justifyleft')); btns.justifycenter.toggle(doc.queryCommandState('justifycenter')); btns.justifyright.toggle(doc.queryCommandState('justifyright')); } if(!Ext.isSafari2 && this.enableLists){ btns.insertorderedlist.toggle(doc.queryCommandState('insertorderedlist')); btns.insertunorderedlist.toggle(doc.queryCommandState('insertunorderedlist')); } Ext.menu.MenuMgr.hideAll(); this.syncValue(); }, relayBtnCmd : function(btn){ this.relayCmd(btn.getItemId()); }, relayCmd : function(cmd, value){ (function(){ this.focus(); this.execCmd(cmd, value); this.updateToolbar(); }).defer(10, this); }, execCmd : function(cmd, value){ var doc = this.getDoc(); doc.execCommand(cmd, false, value === undefined ? null : value); this.syncValue(); }, applyCommand : function(e){ if(e.ctrlKey){ var c = e.getCharCode(), cmd; if(c > 0){ c = String.fromCharCode(c); switch(c){ case 'b': cmd = 'bold'; break; case 'i': cmd = 'italic'; break; case 'u': cmd = 'underline'; break; } if(cmd){ this.win.focus(); this.execCmd(cmd); this.deferFocus(); e.preventDefault(); } } } }, insertAtCursor : function(text){ if(!this.activated){ return; } if(Ext.isIE){ this.win.focus(); var doc = this.getDoc(), r = doc.selection.createRange(); if(r){ r.pasteHTML(text); this.syncValue(); this.deferFocus(); } }else{ this.win.focus(); this.execCmd('InsertHTML', text); this.deferFocus(); } }, fixKeys : function(){ if(Ext.isIE){ return function(e){ var k = e.getKey(), doc = this.getDoc(), r; if(k == e.TAB){ e.stopEvent(); r = doc.selection.createRange(); if(r){ r.collapse(true); r.pasteHTML('    '); this.deferFocus(); } }else if(k == e.ENTER){ r = doc.selection.createRange(); if(r){ var target = r.parentElement(); if(!target || target.tagName.toLowerCase() != 'li'){ e.stopEvent(); r.pasteHTML('
      '); r.collapse(false); r.select(); } } } }; }else if(Ext.isOpera){ return function(e){ var k = e.getKey(); if(k == e.TAB){ e.stopEvent(); this.win.focus(); this.execCmd('InsertHTML','    '); this.deferFocus(); } }; }else if(Ext.isWebKit){ return function(e){ var k = e.getKey(); if(k == e.TAB){ e.stopEvent(); this.execCmd('InsertText','\t'); this.deferFocus(); }else if(k == e.ENTER){ e.stopEvent(); this.execCmd('InsertHtml','

      '); this.deferFocus(); } }; } }(), getToolbar : function(){ return this.tb; }, buttonTips : { bold : { title: 'Bold (Ctrl+B)', text: 'Make the selected text bold.', cls: 'x-html-editor-tip' }, italic : { title: 'Italic (Ctrl+I)', text: 'Make the selected text italic.', cls: 'x-html-editor-tip' }, underline : { title: 'Underline (Ctrl+U)', text: 'Underline the selected text.', cls: 'x-html-editor-tip' }, increasefontsize : { title: 'Grow Text', text: 'Increase the font size.', cls: 'x-html-editor-tip' }, decreasefontsize : { title: 'Shrink Text', text: 'Decrease the font size.', cls: 'x-html-editor-tip' }, backcolor : { title: 'Text Highlight Color', text: 'Change the background color of the selected text.', cls: 'x-html-editor-tip' }, forecolor : { title: 'Font Color', text: 'Change the color of the selected text.', cls: 'x-html-editor-tip' }, justifyleft : { title: 'Align Text Left', text: 'Align text to the left.', cls: 'x-html-editor-tip' }, justifycenter : { title: 'Center Text', text: 'Center text in the editor.', cls: 'x-html-editor-tip' }, justifyright : { title: 'Align Text Right', text: 'Align text to the right.', cls: 'x-html-editor-tip' }, insertunorderedlist : { title: 'Bullet List', text: 'Start a bulleted list.', cls: 'x-html-editor-tip' }, insertorderedlist : { title: 'Numbered List', text: 'Start a numbered list.', cls: 'x-html-editor-tip' }, createlink : { title: 'Hyperlink', text: 'Make the selected text a hyperlink.', cls: 'x-html-editor-tip' }, sourceedit : { title: 'Source Edit', text: 'Switch to source editing mode.', cls: 'x-html-editor-tip' } } }); Ext.reg('htmleditor', Ext.form.HtmlEditor); Ext.form.TimeField = Ext.extend(Ext.form.ComboBox, { minValue : undefined, maxValue : undefined, minText : "The time in this field must be equal to or after {0}", maxText : "The time in this field must be equal to or before {0}", invalidText : "{0} is not a valid time", format : "g:i A", altFormats : "g:ia|g:iA|g:i a|g:i A|h:i|g:i|H:i|ga|ha|gA|h a|g a|g A|gi|hi|gia|hia|g|H|gi a|hi a|giA|hiA|gi A|hi A", increment: 15, mode: 'local', triggerAction: 'all', typeAhead: false, initDate: '1/1/2008', initDateFormat: 'j/n/Y', initComponent : function(){ if(Ext.isDefined(this.minValue)){ this.setMinValue(this.minValue, true); } if(Ext.isDefined(this.maxValue)){ this.setMaxValue(this.maxValue, true); } if(!this.store){ this.generateStore(true); } Ext.form.TimeField.superclass.initComponent.call(this); }, setMinValue: function(value, initial){ this.setLimit(value, true, initial); return this; }, setMaxValue: function(value, initial){ this.setLimit(value, false, initial); return this; }, generateStore: function(initial){ var min = this.minValue || new Date(this.initDate).clearTime(), max = this.maxValue || new Date(this.initDate).clearTime().add('mi', (24 * 60) - 1), times = []; while(min <= max){ times.push(min.dateFormat(this.format)); min = min.add('mi', this.increment); } this.bindStore(times, initial); }, setLimit: function(value, isMin, initial){ var d; if(Ext.isString(value)){ d = this.parseDate(value); }else if(Ext.isDate(value)){ d = value; } if(d){ var val = new Date(this.initDate).clearTime(); val.setHours(d.getHours(), d.getMinutes(), d.getSeconds(), d.getMilliseconds()); this[isMin ? 'minValue' : 'maxValue'] = val; if(!initial){ this.generateStore(); } } }, getValue : function(){ var v = Ext.form.TimeField.superclass.getValue.call(this); return this.formatDate(this.parseDate(v)) || ''; }, setValue : function(value){ return Ext.form.TimeField.superclass.setValue.call(this, this.formatDate(this.parseDate(value))); }, validateValue : Ext.form.DateField.prototype.validateValue, formatDate : Ext.form.DateField.prototype.formatDate, parseDate: function(value) { if (!value || Ext.isDate(value)) { return value; } var id = this.initDate + ' ', idf = this.initDateFormat + ' ', v = Date.parseDate(id + value, idf + this.format), af = this.altFormats; if (!v && af) { if (!this.altFormatsArray) { this.altFormatsArray = af.split("|"); } for (var i = 0, afa = this.altFormatsArray, len = afa.length; i < len && !v; i++) { v = Date.parseDate(id + value, idf + afa[i]); } } return v; } }); Ext.reg('timefield', Ext.form.TimeField); Ext.form.SliderField = Ext.extend(Ext.form.Field, { useTips : true, tipText : null, actionMode: 'wrap', initComponent : function() { var cfg = Ext.copyTo({ id: this.id + '-slider' }, this.initialConfig, ['vertical', 'minValue', 'maxValue', 'decimalPrecision', 'keyIncrement', 'increment', 'clickToChange', 'animate']); if (this.useTips) { var plug = this.tipText ? {getText: this.tipText} : {}; cfg.plugins = [new Ext.slider.Tip(plug)]; } this.slider = new Ext.Slider(cfg); Ext.form.SliderField.superclass.initComponent.call(this); }, onRender : function(ct, position){ this.autoCreate = { id: this.id, name: this.name, type: 'hidden', tag: 'input' }; Ext.form.SliderField.superclass.onRender.call(this, ct, position); this.wrap = this.el.wrap({cls: 'x-form-field-wrap'}); this.resizeEl = this.positionEl = this.wrap; this.slider.render(this.wrap); }, onResize : function(w, h, aw, ah){ Ext.form.SliderField.superclass.onResize.call(this, w, h, aw, ah); this.slider.setSize(w, h); }, initEvents : function(){ Ext.form.SliderField.superclass.initEvents.call(this); this.slider.on('change', this.onChange, this); }, onChange : function(slider, v){ this.setValue(v, undefined, true); }, onEnable : function(){ Ext.form.SliderField.superclass.onEnable.call(this); this.slider.enable(); }, onDisable : function(){ Ext.form.SliderField.superclass.onDisable.call(this); this.slider.disable(); }, beforeDestroy : function(){ Ext.destroy(this.slider); Ext.form.SliderField.superclass.beforeDestroy.call(this); }, alignErrorIcon : function(){ this.errorIcon.alignTo(this.slider.el, 'tl-tr', [2, 0]); }, setMinValue : function(v){ this.slider.setMinValue(v); return this; }, setMaxValue : function(v){ this.slider.setMaxValue(v); return this; }, setValue : function(v, animate, silent){ if(!silent){ this.slider.setValue(v, animate); } return Ext.form.SliderField.superclass.setValue.call(this, this.slider.getValue()); }, getValue : function(){ return this.slider.getValue(); } }); Ext.reg('sliderfield', Ext.form.SliderField); Ext.form.Label = Ext.extend(Ext.BoxComponent, { onRender : function(ct, position){ if(!this.el){ this.el = document.createElement('label'); this.el.id = this.getId(); this.el.innerHTML = this.text ? Ext.util.Format.htmlEncode(this.text) : (this.html || ''); if(this.forId){ this.el.setAttribute('for', this.forId); } } Ext.form.Label.superclass.onRender.call(this, ct, position); }, setText : function(t, encode){ var e = encode === false; this[!e ? 'text' : 'html'] = t; delete this[e ? 'text' : 'html']; if(this.rendered){ this.el.dom.innerHTML = encode !== false ? Ext.util.Format.htmlEncode(t) : t; } return this; } }); Ext.reg('label', Ext.form.Label); Ext.form.Action = function(form, options){ this.form = form; this.options = options || {}; }; Ext.form.Action.CLIENT_INVALID = 'client'; Ext.form.Action.SERVER_INVALID = 'server'; Ext.form.Action.CONNECT_FAILURE = 'connect'; Ext.form.Action.LOAD_FAILURE = 'load'; Ext.form.Action.prototype = { type : 'default', run : function(options){ }, success : function(response){ }, handleResponse : function(response){ }, failure : function(response){ this.response = response; this.failureType = Ext.form.Action.CONNECT_FAILURE; this.form.afterAction(this, false); }, processResponse : function(response){ this.response = response; if(!response.responseText && !response.responseXML){ return true; } this.result = this.handleResponse(response); return this.result; }, decodeResponse: function(response) { try { return Ext.decode(response.responseText); } catch(e) { return false; } }, getUrl : function(appendParams){ var url = this.options.url || this.form.url || this.form.el.dom.action; if(appendParams){ var p = this.getParams(); if(p){ url = Ext.urlAppend(url, p); } } return url; }, getMethod : function(){ return (this.options.method || this.form.method || this.form.el.dom.method || 'POST').toUpperCase(); }, getParams : function(){ var bp = this.form.baseParams; var p = this.options.params; if(p){ if(typeof p == "object"){ p = Ext.urlEncode(Ext.applyIf(p, bp)); }else if(typeof p == 'string' && bp){ p += '&' + Ext.urlEncode(bp); } }else if(bp){ p = Ext.urlEncode(bp); } return p; }, createCallback : function(opts){ var opts = opts || {}; return { success: this.success, failure: this.failure, scope: this, timeout: (opts.timeout*1000) || (this.form.timeout*1000), upload: this.form.fileUpload ? this.success : undefined }; } }; Ext.form.Action.Submit = function(form, options){ Ext.form.Action.Submit.superclass.constructor.call(this, form, options); }; Ext.extend(Ext.form.Action.Submit, Ext.form.Action, { type : 'submit', run : function(){ var o = this.options, method = this.getMethod(), isGet = method == 'GET'; if(o.clientValidation === false || this.form.isValid()){ if (o.submitEmptyText === false) { var fields = this.form.items, emptyFields = [], setupEmptyFields = function(f){ if (f.el.getValue() == f.emptyText) { emptyFields.push(f); f.el.dom.value = ""; } if(f.isComposite && f.rendered){ f.items.each(setupEmptyFields); } }; fields.each(setupEmptyFields); } Ext.Ajax.request(Ext.apply(this.createCallback(o), { form:this.form.el.dom, url:this.getUrl(isGet), method: method, headers: o.headers, params:!isGet ? this.getParams() : null, isUpload: this.form.fileUpload })); if (o.submitEmptyText === false) { Ext.each(emptyFields, function(f) { if (f.applyEmptyText) { f.applyEmptyText(); } }); } }else if (o.clientValidation !== false){ this.failureType = Ext.form.Action.CLIENT_INVALID; this.form.afterAction(this, false); } }, success : function(response){ var result = this.processResponse(response); if(result === true || result.success){ this.form.afterAction(this, true); return; } if(result.errors){ this.form.markInvalid(result.errors); } this.failureType = Ext.form.Action.SERVER_INVALID; this.form.afterAction(this, false); }, handleResponse : function(response){ if(this.form.errorReader){ var rs = this.form.errorReader.read(response); var errors = []; if(rs.records){ for(var i = 0, len = rs.records.length; i < len; i++) { var r = rs.records[i]; errors[i] = r.data; } } if(errors.length < 1){ errors = null; } return { success : rs.success, errors : errors }; } return this.decodeResponse(response); } }); Ext.form.Action.Load = function(form, options){ Ext.form.Action.Load.superclass.constructor.call(this, form, options); this.reader = this.form.reader; }; Ext.extend(Ext.form.Action.Load, Ext.form.Action, { type : 'load', run : function(){ Ext.Ajax.request(Ext.apply( this.createCallback(this.options), { method:this.getMethod(), url:this.getUrl(false), headers: this.options.headers, params:this.getParams() })); }, success : function(response){ var result = this.processResponse(response); if(result === true || !result.success || !result.data){ this.failureType = Ext.form.Action.LOAD_FAILURE; this.form.afterAction(this, false); return; } this.form.clearInvalid(); this.form.setValues(result.data); this.form.afterAction(this, true); }, handleResponse : function(response){ if(this.form.reader){ var rs = this.form.reader.read(response); var data = rs.records && rs.records[0] ? rs.records[0].data : null; return { success : rs.success, data : data }; } return this.decodeResponse(response); } }); Ext.form.Action.DirectLoad = Ext.extend(Ext.form.Action.Load, { constructor: function(form, opts) { Ext.form.Action.DirectLoad.superclass.constructor.call(this, form, opts); }, type : 'directload', run : function(){ var args = this.getParams(); args.push(this.success, this); this.form.api.load.apply(window, args); }, getParams : function() { var buf = [], o = {}; var bp = this.form.baseParams; var p = this.options.params; Ext.apply(o, p, bp); var paramOrder = this.form.paramOrder; if(paramOrder){ for(var i = 0, len = paramOrder.length; i < len; i++){ buf.push(o[paramOrder[i]]); } }else if(this.form.paramsAsHash){ buf.push(o); } return buf; }, processResponse : function(result) { this.result = result; return result; }, success : function(response, trans){ if(trans.type == Ext.Direct.exceptions.SERVER){ response = {}; } Ext.form.Action.DirectLoad.superclass.success.call(this, response); } }); Ext.form.Action.DirectSubmit = Ext.extend(Ext.form.Action.Submit, { constructor : function(form, opts) { Ext.form.Action.DirectSubmit.superclass.constructor.call(this, form, opts); }, type : 'directsubmit', run : function(){ var o = this.options; if(o.clientValidation === false || this.form.isValid()){ this.success.params = this.getParams(); this.form.api.submit(this.form.el.dom, this.success, this); }else if (o.clientValidation !== false){ this.failureType = Ext.form.Action.CLIENT_INVALID; this.form.afterAction(this, false); } }, getParams : function() { var o = {}; var bp = this.form.baseParams; var p = this.options.params; Ext.apply(o, p, bp); return o; }, processResponse : function(result) { this.result = result; return result; }, success : function(response, trans){ if(trans.type == Ext.Direct.exceptions.SERVER){ response = {}; } Ext.form.Action.DirectSubmit.superclass.success.call(this, response); } }); Ext.form.Action.ACTION_TYPES = { 'load' : Ext.form.Action.Load, 'submit' : Ext.form.Action.Submit, 'directload' : Ext.form.Action.DirectLoad, 'directsubmit' : Ext.form.Action.DirectSubmit }; Ext.form.VTypes = function(){ var alpha = /^[a-zA-Z_]+$/, alphanum = /^[a-zA-Z0-9_]+$/, email = /^(\w+)([\-+.\'][\w]+)*@(\w[\-\w]*\.){1,5}([A-Za-z]){2,6}$/, url = /(((^https?)|(^ftp)):\/\/([\-\w]+\.)+\w{2,3}(\/[%\-\w]+(\.\w{2,})?)*(([\w\-\.\?\\\/+@&#;`~=%!]*)(\.\w{2,})?)*\/?)/i; return { 'email' : function(v){ return email.test(v); }, 'emailText' : 'This field should be an e-mail address in the format "user@example.com"', 'emailMask' : /[a-z0-9_\.\-\+\'@]/i, /** * The function used to validate URLs * @param {String} value The URL * @return {Boolean} true if the RegExp test passed, and false if not. */ 'url' : function(v){ return url.test(v); }, /** * The error text to display when the url validation function returns false. Defaults to: * 'This field should be a URL in the format "http:/'+'/www.example.com"' * @type String */ 'urlText' : 'This field should be a URL in the format "http:/'+'/www.example.com"', /** * The function used to validate alpha values * @param {String} value The value * @return {Boolean} true if the RegExp test passed, and false if not. */ 'alpha' : function(v){ return alpha.test(v); }, /** * The error text to display when the alpha validation function returns false. Defaults to: * 'This field should only contain letters and _' * @type String */ 'alphaText' : 'This field should only contain letters and _', /** * The keystroke filter mask to be applied on alpha input. Defaults to: * /[a-z_]/i * @type RegExp */ 'alphaMask' : /[a-z_]/i, /** * The function used to validate alphanumeric values * @param {String} value The value * @return {Boolean} true if the RegExp test passed, and false if not. */ 'alphanum' : function(v){ return alphanum.test(v); }, /** * The error text to display when the alphanumeric validation function returns false. Defaults to: * 'This field should only contain letters, numbers and _' * @type String */ 'alphanumText' : 'This field should only contain letters, numbers and _', /** * The keystroke filter mask to be applied on alphanumeric input. Defaults to: * /[a-z0-9_]/i * @type RegExp */ 'alphanumMask' : /[a-z0-9_]/i }; }(); /** * @class Ext.grid.GridPanel * @extends Ext.Panel *

      This class represents the primary interface of a component based grid control to represent data * in a tabular format of rows and columns. The GridPanel is composed of the following:

      *
        *
      • {@link Ext.data.Store Store} : The Model holding the data records (rows) *
        • *
      • {@link Ext.grid.ColumnModel Column model} : Column makeup *
        • *
      • {@link Ext.grid.GridView View} : Encapsulates the user interface *
        • *
      • {@link Ext.grid.AbstractSelectionModel selection model} : Selection behavior *
        • *
      *

      Example usage:

      * 
      
var grid = new Ext.grid.GridPanel({
    {@link #store}: new {@link Ext.data.Store}({
        {@link Ext.data.Store#autoDestroy autoDestroy}: true,
        {@link Ext.data.Store#reader reader}: reader,
        {@link Ext.data.Store#data data}: xg.dummyData
    }),
    {@link #colModel}: new {@link Ext.grid.ColumnModel}({
        {@link Ext.grid.ColumnModel#defaults defaults}: {
            width: 120,
            sortable: true
        },
        {@link Ext.grid.ColumnModel#columns columns}: [
            {id: 'company', header: 'Company', width: 200, sortable: true, dataIndex: 'company'},
            {header: 'Price', renderer: Ext.util.Format.usMoney, dataIndex: 'price'},
            {header: 'Change', dataIndex: 'change'},
            {header: '% Change', dataIndex: 'pctChange'},
            // instead of specifying renderer: Ext.util.Format.dateRenderer('m/d/Y') use xtype
            {
                header: 'Last Updated', width: 135, dataIndex: 'lastChange',
                xtype: 'datecolumn', format: 'M d, Y'
            }
        ]
    }),
    {@link #viewConfig}: {
        {@link Ext.grid.GridView#forceFit forceFit}: true,

//      Return CSS class to apply to rows depending upon data values
        {@link Ext.grid.GridView#getRowClass getRowClass}: function(record, index) {
            var c = record.{@link Ext.data.Record#get get}('change');
            if (c < 0) {
                return 'price-fall';
            } else if (c > 0) {
                return 'price-rise';
            }
        }
    },
    {@link #sm}: new Ext.grid.RowSelectionModel({singleSelect:true}),
    width: 600,
    height: 300,
    frame: true,
    title: 'Framed with Row Selection and Horizontal Scrolling',
    iconCls: 'icon-grid'
});
 *
      *

      Notes:

      *
        *
      • Although this class inherits many configuration options from base classes, some of them * (such as autoScroll, autoWidth, layout, items, etc) are not used by this class, and will * have no effect.
        • *
      • A grid requires a width in which to scroll its columns, and a height in which to * scroll its rows. These dimensions can either be set explicitly through the * {@link Ext.BoxComponent#height height} and {@link Ext.BoxComponent#width width} * configuration options or implicitly set by using the grid as a child item of a * {@link Ext.Container Container} which will have a {@link Ext.Container#layout layout manager} * provide the sizing of its child items (for example the Container of the Grid may specify * {@link Ext.Container#layout layout}:'fit').
        • *
      • To access the data in a Grid, it is necessary to use the data model encapsulated * by the {@link #store Store}. See the {@link #cellclick} event for more details.
        • *
      * @constructor * @param {Object} config The config object * @xtype grid */ Ext.grid.GridPanel = Ext.extend(Ext.Panel, { /** * @cfg {String} autoExpandColumn *

      The {@link Ext.grid.Column#id id} of a {@link Ext.grid.Column column} in * this grid that should expand to fill unused space. This value specified here can not * be 0.

      *

      Note: If the Grid's {@link Ext.grid.GridView view} is configured with * {@link Ext.grid.GridView#forceFit forceFit}=true the autoExpandColumn * is ignored. See {@link Ext.grid.Column}.{@link Ext.grid.Column#width width} * for additional details.

      *

      See {@link #autoExpandMax} and {@link #autoExpandMin} also.

      */ autoExpandColumn : false, autoExpandMax : 1000, autoExpandMin : 50, columnLines : false, ddText : '{0} selected row{1}', deferRowRender : true, enableColumnHide : true, enableColumnMove : true, enableDragDrop : false, enableHdMenu : true, loadMask : false, minColumnWidth : 25, stripeRows : false, trackMouseOver : true, stateEvents : ['columnmove', 'columnresize', 'sortchange', 'groupchange'], view : null, bubbleEvents: [], rendered : false, viewReady : false, initComponent : function() { Ext.grid.GridPanel.superclass.initComponent.call(this); if (this.columnLines) { this.cls = (this.cls || '') + ' x-grid-with-col-lines'; } this.autoScroll = false; this.autoWidth = false; if(Ext.isArray(this.columns)){ this.colModel = new Ext.grid.ColumnModel(this.columns); delete this.columns; } if(this.ds){ this.store = this.ds; delete this.ds; } if(this.cm){ this.colModel = this.cm; delete this.cm; } if(this.sm){ this.selModel = this.sm; delete this.sm; } this.store = Ext.StoreMgr.lookup(this.store); this.addEvents( 'click', 'dblclick', 'contextmenu', 'mousedown', 'mouseup', 'mouseover', 'mouseout', 'keypress', 'keydown', 'cellmousedown', 'rowmousedown', 'headermousedown', 'groupmousedown', 'rowbodymousedown', 'containermousedown', 'cellclick', 'celldblclick', 'rowclick', 'rowdblclick', 'headerclick', 'headerdblclick', 'groupclick', 'groupdblclick', 'containerclick', 'containerdblclick', 'rowbodyclick', 'rowbodydblclick', 'rowcontextmenu', 'cellcontextmenu', 'headercontextmenu', 'groupcontextmenu', 'containercontextmenu', 'rowbodycontextmenu', 'bodyscroll', 'columnresize', 'columnmove', 'sortchange', 'groupchange', 'reconfigure', 'viewready' ); }, onRender : function(ct, position){ Ext.grid.GridPanel.superclass.onRender.apply(this, arguments); var c = this.getGridEl(); this.el.addClass('x-grid-panel'); this.mon(c, { scope: this, mousedown: this.onMouseDown, click: this.onClick, dblclick: this.onDblClick, contextmenu: this.onContextMenu }); this.relayEvents(c, ['mousedown','mouseup','mouseover','mouseout','keypress', 'keydown']); var view = this.getView(); view.init(this); view.render(); this.getSelectionModel().init(this); }, initEvents : function(){ Ext.grid.GridPanel.superclass.initEvents.call(this); if(this.loadMask){ this.loadMask = new Ext.LoadMask(this.bwrap, Ext.apply({store:this.store}, this.loadMask)); } }, initStateEvents : function(){ Ext.grid.GridPanel.superclass.initStateEvents.call(this); this.mon(this.colModel, 'hiddenchange', this.saveState, this, {delay: 100}); }, applyState : function(state){ var cm = this.colModel, cs = state.columns, store = this.store, s, c, colIndex; if(cs){ for(var i = 0, len = cs.length; i < len; i++){ s = cs[i]; c = cm.getColumnById(s.id); if(c){ colIndex = cm.getIndexById(s.id); cm.setState(colIndex, { hidden: s.hidden, width: s.width, sortable: c.sortable, editable: c.editable }); if(colIndex != i){ cm.moveColumn(colIndex, i); } } } } if(store){ s = state.sort; if(s){ store[store.remoteSort ? 'setDefaultSort' : 'sort'](s.field, s.direction); } s = state.group; if(store.groupBy){ if(s){ store.groupBy(s); }else{ store.clearGrouping(); } } } var o = Ext.apply({}, state); delete o.columns; delete o.sort; Ext.grid.GridPanel.superclass.applyState.call(this, o); }, getState : function(){ var o = {columns: []}, store = this.store, ss, gs; for(var i = 0, c; (c = this.colModel.config[i]); i++){ o.columns[i] = { id: c.id, width: c.width }; if(c.hidden){ o.columns[i].hidden = true; } } if(store){ ss = store.getSortState(); if(ss){ o.sort = ss; } if(store.getGroupState){ gs = store.getGroupState(); if(gs){ o.group = gs; } } } return o; }, afterRender : function(){ Ext.grid.GridPanel.superclass.afterRender.call(this); var v = this.view; this.on('bodyresize', v.layout, v); v.layout(true); if(this.deferRowRender){ if (!this.deferRowRenderTask){ this.deferRowRenderTask = new Ext.util.DelayedTask(v.afterRender, this.view); } this.deferRowRenderTask.delay(10); }else{ v.afterRender(); } this.viewReady = true; }, reconfigure : function(store, colModel){ var rendered = this.rendered; if(rendered){ if(this.loadMask){ this.loadMask.destroy(); this.loadMask = new Ext.LoadMask(this.bwrap, Ext.apply({}, {store:store}, this.initialConfig.loadMask)); } } if(this.view){ this.view.initData(store, colModel); } this.store = store; this.colModel = colModel; if(rendered){ this.view.refresh(true); } this.fireEvent('reconfigure', this, store, colModel); }, onDestroy : function(){ if (this.deferRowRenderTask && this.deferRowRenderTask.cancel){ this.deferRowRenderTask.cancel(); } if(this.rendered){ Ext.destroy(this.view, this.loadMask); }else if(this.store && this.store.autoDestroy){ this.store.destroy(); } Ext.destroy(this.colModel, this.selModel); this.store = this.selModel = this.colModel = this.view = this.loadMask = null; Ext.grid.GridPanel.superclass.onDestroy.call(this); }, processEvent : function(name, e){ this.view.processEvent(name, e); }, onClick : function(e){ this.processEvent('click', e); }, onMouseDown : function(e){ this.processEvent('mousedown', e); }, onContextMenu : function(e, t){ this.processEvent('contextmenu', e); }, onDblClick : function(e){ this.processEvent('dblclick', e); }, walkCells : function(row, col, step, fn, scope){ var cm = this.colModel, clen = cm.getColumnCount(), ds = this.store, rlen = ds.getCount(), first = true; if(step < 0){ if(col < 0){ row--; first = false; } while(row >= 0){ if(!first){ col = clen-1; } first = false; while(col >= 0){ if(fn.call(scope || this, row, col, cm) === true){ return [row, col]; } col--; } row--; } } else { if(col >= clen){ row++; first = false; } while(row < rlen){ if(!first){ col = 0; } first = false; while(col < clen){ if(fn.call(scope || this, row, col, cm) === true){ return [row, col]; } col++; } row++; } } return null; }, getGridEl : function(){ return this.body; }, stopEditing : Ext.emptyFn, getSelectionModel : function(){ if(!this.selModel){ this.selModel = new Ext.grid.RowSelectionModel( this.disableSelection ? {selectRow: Ext.emptyFn} : null); } return this.selModel; }, getStore : function(){ return this.store; }, getColumnModel : function(){ return this.colModel; }, getView : function() { if (!this.view) { this.view = new Ext.grid.GridView(this.viewConfig); } return this.view; }, getDragDropText : function(){ var count = this.selModel.getCount ? this.selModel.getCount() : 1; return String.format(this.ddText, count, count == 1 ? '' : 's'); } }); Ext.reg('grid', Ext.grid.GridPanel); Ext.grid.PivotGrid = Ext.extend(Ext.grid.GridPanel, { aggregator: 'sum', renderer: undefined, initComponent: function() { Ext.grid.PivotGrid.superclass.initComponent.apply(this, arguments); this.initAxes(); this.enableColumnResize = false; this.viewConfig = Ext.apply(this.viewConfig || {}, { forceFit: true }); this.colModel = new Ext.grid.ColumnModel({}); }, getAggregator: function() { if (typeof this.aggregator == 'string') { return Ext.grid.PivotAggregatorMgr.types[this.aggregator]; } else { return this.aggregator; } }, setAggregator: function(aggregator) { this.aggregator = aggregator; }, setMeasure: function(measure) { this.measure = measure; }, setLeftAxis: function(axis, refresh) { this.leftAxis = axis; if (refresh) { this.view.refresh(); } }, setTopAxis: function(axis, refresh) { this.topAxis = axis; if (refresh) { this.view.refresh(); } }, initAxes: function() { var PivotAxis = Ext.grid.PivotAxis; if (!(this.leftAxis instanceof PivotAxis)) { this.setLeftAxis(new PivotAxis({ orientation: 'vertical', dimensions : this.leftAxis || [], store : this.store })); }; if (!(this.topAxis instanceof PivotAxis)) { this.setTopAxis(new PivotAxis({ orientation: 'horizontal', dimensions : this.topAxis || [], store : this.store })); }; }, extractData: function() { var records = this.store.data.items, recCount = records.length, cells = [], record, i, j, k; if (recCount == 0) { return []; } var leftTuples = this.leftAxis.getTuples(), leftCount = leftTuples.length, topTuples = this.topAxis.getTuples(), topCount = topTuples.length, aggregator = this.getAggregator(); for (i = 0; i < recCount; i++) { record = records[i]; for (j = 0; j < leftCount; j++) { cells[j] = cells[j] || []; if (leftTuples[j].matcher(record) === true) { for (k = 0; k < topCount; k++) { cells[j][k] = cells[j][k] || []; if (topTuples[k].matcher(record)) { cells[j][k].push(record); } } } } } var rowCount = cells.length, colCount, row; for (i = 0; i < rowCount; i++) { row = cells[i]; colCount = row.length; for (j = 0; j < colCount; j++) { cells[i][j] = aggregator(cells[i][j], this.measure); } } return cells; }, getView: function() { if (!this.view) { this.view = new Ext.grid.PivotGridView(this.viewConfig); } return this.view; } }); Ext.reg('pivotgrid', Ext.grid.PivotGrid); Ext.grid.PivotAggregatorMgr = new Ext.AbstractManager(); Ext.grid.PivotAggregatorMgr.registerType('sum', function(records, measure) { var length = records.length, total = 0, i; for (i = 0; i < length; i++) { total += records[i].get(measure); } return total; }); Ext.grid.PivotAggregatorMgr.registerType('avg', function(records, measure) { var length = records.length, total = 0, i; for (i = 0; i < length; i++) { total += records[i].get(measure); } return (total / length) || 'n/a'; }); Ext.grid.PivotAggregatorMgr.registerType('min', function(records, measure) { var data = [], length = records.length, i; for (i = 0; i < length; i++) { data.push(records[i].get(measure)); } return Math.min.apply(this, data) || 'n/a'; }); Ext.grid.PivotAggregatorMgr.registerType('max', function(records, measure) { var data = [], length = records.length, i; for (i = 0; i < length; i++) { data.push(records[i].get(measure)); } return Math.max.apply(this, data) || 'n/a'; }); Ext.grid.PivotAggregatorMgr.registerType('count', function(records, measure) { return records.length; }); Ext.grid.GridView = Ext.extend(Ext.util.Observable, { deferEmptyText : true, scrollOffset : undefined, autoFill : false, forceFit : false, sortClasses : ['sort-asc', 'sort-desc'], sortAscText : 'Sort Ascending', sortDescText : 'Sort Descending', hideSortIcons: false, columnsText : 'Columns', selectedRowClass : 'x-grid3-row-selected', borderWidth : 2, tdClass : 'x-grid3-cell', hdCls : 'x-grid3-hd', markDirty : true, cellSelectorDepth : 4, rowSelectorDepth : 10, rowBodySelectorDepth : 10, cellSelector : 'td.x-grid3-cell', rowSelector : 'div.x-grid3-row', rowBodySelector : 'div.x-grid3-row-body', firstRowCls: 'x-grid3-row-first', lastRowCls: 'x-grid3-row-last', rowClsRe: /(?:^|\s+)x-grid3-row-(first|last|alt)(?:\s+|$)/g, headerMenuOpenCls: 'x-grid3-hd-menu-open', rowOverCls: 'x-grid3-row-over', constructor : function(config) { Ext.apply(this, config); this.addEvents( 'beforerowremoved', 'beforerowsinserted', 'beforerefresh', 'rowremoved', 'rowsinserted', 'rowupdated', 'refresh' ); Ext.grid.GridView.superclass.constructor.call(this); }, masterTpl: new Ext.Template( '
      ', '
      ', '
      ', '
      ', '
      {header}
      ', '
      ', '
      ', '
      ', '
      ', '
      {body}
      ', '', '
      ', '
      ', '
       
      ', '
       
      ', '
      ' ), headerTpl: new Ext.Template( '', '', '{cells}', '', '
      ' ), bodyTpl: new Ext.Template('{rows}'), cellTpl: new Ext.Template( '', '
      {value}
      ', '' ), initTemplates : function() { var templates = this.templates || {}, template, name, headerCellTpl = new Ext.Template( '', '
      ', this.grid.enableHdMenu ? '' : '', '{value}', '', '
      ', '' ), rowBodyText = [ '', '', '
      {body}
      ', '', '' ].join(""), innerText = [ '', '', '{cells}', this.enableRowBody ? rowBodyText : '', '', '
      ' ].join(""); Ext.applyIf(templates, { hcell : headerCellTpl, cell : this.cellTpl, body : this.bodyTpl, header : this.headerTpl, master : this.masterTpl, row : new Ext.Template('
      ' + innerText + '
      '), rowInner: new Ext.Template(innerText) }); for (name in templates) { template = templates[name]; if (template && Ext.isFunction(template.compile) && !template.compiled) { template.disableFormats = true; template.compile(); } } this.templates = templates; this.colRe = new RegExp('x-grid3-td-([^\\s]+)', ''); }, fly : function(el) { if (!this._flyweight) { this._flyweight = new Ext.Element.Flyweight(document.body); } this._flyweight.dom = el; return this._flyweight; }, getEditorParent : function() { return this.scroller.dom; }, initElements : function() { var Element = Ext.Element, el = Ext.get(this.grid.getGridEl().dom.firstChild), mainWrap = new Element(el.child('div.x-grid3-viewport')), mainHd = new Element(mainWrap.child('div.x-grid3-header')), scroller = new Element(mainWrap.child('div.x-grid3-scroller')); if (this.grid.hideHeaders) { mainHd.setDisplayed(false); } if (this.forceFit) { scroller.setStyle('overflow-x', 'hidden'); } Ext.apply(this, { el : el, mainWrap: mainWrap, scroller: scroller, mainHd : mainHd, innerHd : mainHd.child('div.x-grid3-header-inner').dom, mainBody: new Element(Element.fly(scroller).child('div.x-grid3-body')), focusEl : new Element(Element.fly(scroller).child('a')), resizeMarker: new Element(el.child('div.x-grid3-resize-marker')), resizeProxy : new Element(el.child('div.x-grid3-resize-proxy')) }); this.focusEl.swallowEvent('click', true); }, getRows : function() { return this.hasRows() ? this.mainBody.dom.childNodes : []; }, findCell : function(el) { if (!el) { return false; } return this.fly(el).findParent(this.cellSelector, this.cellSelectorDepth); }, findCellIndex : function(el, requiredCls) { var cell = this.findCell(el), hasCls; if (cell) { hasCls = this.fly(cell).hasClass(requiredCls); if (!requiredCls || hasCls) { return this.getCellIndex(cell); } } return false; }, getCellIndex : function(el) { if (el) { var match = el.className.match(this.colRe); if (match && match[1]) { return this.cm.getIndexById(match[1]); } } return false; }, findHeaderCell : function(el) { var cell = this.findCell(el); return cell && this.fly(cell).hasClass(this.hdCls) ? cell : null; }, findHeaderIndex : function(el){ return this.findCellIndex(el, this.hdCls); }, findRow : function(el) { if (!el) { return false; } return this.fly(el).findParent(this.rowSelector, this.rowSelectorDepth); }, findRowIndex : function(el) { var row = this.findRow(el); return row ? row.rowIndex : false; }, findRowBody : function(el) { if (!el) { return false; } return this.fly(el).findParent(this.rowBodySelector, this.rowBodySelectorDepth); }, getRow : function(row) { return this.getRows()[row]; }, getCell : function(row, col) { return Ext.fly(this.getRow(row)).query(this.cellSelector)[col]; }, getHeaderCell : function(index) { return this.mainHd.dom.getElementsByTagName('td')[index]; }, addRowClass : function(rowId, cls) { var row = this.getRow(rowId); if (row) { this.fly(row).addClass(cls); } }, removeRowClass : function(row, cls) { var r = this.getRow(row); if(r){ this.fly(r).removeClass(cls); } }, removeRow : function(row) { Ext.removeNode(this.getRow(row)); this.syncFocusEl(row); }, removeRows : function(firstRow, lastRow) { var bd = this.mainBody.dom, rowIndex; for (rowIndex = firstRow; rowIndex <= lastRow; rowIndex++){ Ext.removeNode(bd.childNodes[firstRow]); } this.syncFocusEl(firstRow); }, getScrollState : function() { var sb = this.scroller.dom; return { left: sb.scrollLeft, top : sb.scrollTop }; }, restoreScroll : function(state) { var sb = this.scroller.dom; sb.scrollLeft = state.left; sb.scrollTop = state.top; }, scrollToTop : function() { var dom = this.scroller.dom; dom.scrollTop = 0; dom.scrollLeft = 0; }, syncScroll : function() { this.syncHeaderScroll(); var mb = this.scroller.dom; this.grid.fireEvent('bodyscroll', mb.scrollLeft, mb.scrollTop); }, syncHeaderScroll : function() { var innerHd = this.innerHd, scrollLeft = this.scroller.dom.scrollLeft; innerHd.scrollLeft = scrollLeft; innerHd.scrollLeft = scrollLeft; }, updateSortIcon : function(col, dir) { var sortClasses = this.sortClasses, sortClass = sortClasses[dir == "DESC" ? 1 : 0], headers = this.mainHd.select('td').removeClass(sortClasses); headers.item(col).addClass(sortClass); }, updateAllColumnWidths : function() { var totalWidth = this.getTotalWidth(), colCount = this.cm.getColumnCount(), rows = this.getRows(), rowCount = rows.length, widths = [], row, rowFirstChild, trow, i, j; for (i = 0; i < colCount; i++) { widths[i] = this.getColumnWidth(i); this.getHeaderCell(i).style.width = widths[i]; } this.updateHeaderWidth(); for (i = 0; i < rowCount; i++) { row = rows[i]; row.style.width = totalWidth; rowFirstChild = row.firstChild; if (rowFirstChild) { rowFirstChild.style.width = totalWidth; trow = rowFirstChild.rows[0]; for (j = 0; j < colCount; j++) { trow.childNodes[j].style.width = widths[j]; } } } this.onAllColumnWidthsUpdated(widths, totalWidth); }, updateColumnWidth : function(column, width) { var columnWidth = this.getColumnWidth(column), totalWidth = this.getTotalWidth(), headerCell = this.getHeaderCell(column), nodes = this.getRows(), nodeCount = nodes.length, row, i, firstChild; this.updateHeaderWidth(); headerCell.style.width = columnWidth; for (i = 0; i < nodeCount; i++) { row = nodes[i]; firstChild = row.firstChild; row.style.width = totalWidth; if (firstChild) { firstChild.style.width = totalWidth; firstChild.rows[0].childNodes[column].style.width = columnWidth; } } this.onColumnWidthUpdated(column, columnWidth, totalWidth); }, updateColumnHidden : function(col, hidden) { var totalWidth = this.getTotalWidth(), display = hidden ? 'none' : '', headerCell = this.getHeaderCell(col), nodes = this.getRows(), nodeCount = nodes.length, row, rowFirstChild, i; this.updateHeaderWidth(); headerCell.style.display = display; for (i = 0; i < nodeCount; i++) { row = nodes[i]; row.style.width = totalWidth; rowFirstChild = row.firstChild; if (rowFirstChild) { rowFirstChild.style.width = totalWidth; rowFirstChild.rows[0].childNodes[col].style.display = display; } } this.onColumnHiddenUpdated(col, hidden, totalWidth); delete this.lastViewWidth; this.layout(); }, doRender : function(columns, records, store, startRow, colCount, stripe) { var templates = this.templates, cellTemplate = templates.cell, rowTemplate = templates.row, last = colCount - 1, tstyle = 'width:' + this.getTotalWidth() + ';', rowBuffer = [], colBuffer = [], rowParams = {tstyle: tstyle}, meta = {}, len = records.length, alt, column, record, i, j, rowIndex; for (j = 0; j < len; j++) { record = records[j]; colBuffer = []; rowIndex = j + startRow; for (i = 0; i < colCount; i++) { column = columns[i]; meta.id = column.id; meta.css = i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); meta.attr = meta.cellAttr = ''; meta.style = column.style; meta.value = column.renderer.call(column.scope, record.data[column.name], meta, record, rowIndex, i, store); if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (this.markDirty && record.dirty && typeof record.modified[column.name] != 'undefined') { meta.css += ' x-grid3-dirty-cell'; } colBuffer[colBuffer.length] = cellTemplate.apply(meta); } alt = []; if (stripe && ((rowIndex + 1) % 2 === 0)) { alt[0] = 'x-grid3-row-alt'; } if (record.dirty) { alt[1] = ' x-grid3-dirty-row'; } rowParams.cols = colCount; if (this.getRowClass) { alt[2] = this.getRowClass(record, rowIndex, rowParams, store); } rowParams.alt = alt.join(' '); rowParams.cells = colBuffer.join(''); rowBuffer[rowBuffer.length] = rowTemplate.apply(rowParams); } return rowBuffer.join(''); }, processRows : function(startRow, skipStripe) { if (!this.ds || this.ds.getCount() < 1) { return; } var rows = this.getRows(), length = rows.length, row, i; skipStripe = skipStripe || !this.grid.stripeRows; startRow = startRow || 0; for (i = 0; i < length; i++) { row = rows[i]; if (row) { row.rowIndex = i; if (!skipStripe) { row.className = row.className.replace(this.rowClsRe, ' '); if ((i + 1) % 2 === 0){ row.className += ' x-grid3-row-alt'; } } } } if (startRow === 0) { Ext.fly(rows[0]).addClass(this.firstRowCls); } Ext.fly(rows[length - 1]).addClass(this.lastRowCls); }, afterRender : function() { if (!this.ds || !this.cm) { return; } this.mainBody.dom.innerHTML = this.renderBody() || ' '; this.processRows(0, true); if (this.deferEmptyText !== true) { this.applyEmptyText(); } this.grid.fireEvent('viewready', this.grid); }, afterRenderUI: function() { var grid = this.grid; this.initElements(); Ext.fly(this.innerHd).on('click', this.handleHdDown, this); this.mainHd.on({ scope : this, mouseover: this.handleHdOver, mouseout : this.handleHdOut, mousemove: this.handleHdMove }); this.scroller.on('scroll', this.syncScroll, this); if (grid.enableColumnResize !== false) { this.splitZone = new Ext.grid.GridView.SplitDragZone(grid, this.mainHd.dom); } if (grid.enableColumnMove) { this.columnDrag = new Ext.grid.GridView.ColumnDragZone(grid, this.innerHd); this.columnDrop = new Ext.grid.HeaderDropZone(grid, this.mainHd.dom); } if (grid.enableHdMenu !== false) { this.hmenu = new Ext.menu.Menu({id: grid.id + '-hctx'}); this.hmenu.add( {itemId:'asc', text: this.sortAscText, cls: 'xg-hmenu-sort-asc'}, {itemId:'desc', text: this.sortDescText, cls: 'xg-hmenu-sort-desc'} ); if (grid.enableColumnHide !== false) { this.colMenu = new Ext.menu.Menu({id:grid.id + '-hcols-menu'}); this.colMenu.on({ scope : this, beforeshow: this.beforeColMenuShow, itemclick : this.handleHdMenuClick }); this.hmenu.add({ itemId: 'sortSep', xtype: 'menuseparator' }, { itemId:'columns', hideOnClick: false, text: this.columnsText, menu: this.colMenu, iconCls: 'x-cols-icon' }); } this.hmenu.on('itemclick', this.handleHdMenuClick, this); } if (grid.trackMouseOver) { this.mainBody.on({ scope : this, mouseover: this.onRowOver, mouseout : this.onRowOut }); } if (grid.enableDragDrop || grid.enableDrag) { this.dragZone = new Ext.grid.GridDragZone(grid, { ddGroup : grid.ddGroup || 'GridDD' }); } this.updateHeaderSortState(); }, renderUI : function() { var templates = this.templates; return templates.master.apply({ body : templates.body.apply({rows:' '}), header: this.renderHeaders(), ostyle: 'width:' + this.getOffsetWidth() + ';', bstyle: 'width:' + this.getTotalWidth() + ';' }); }, processEvent : function(name, e) { var target = e.getTarget(), grid = this.grid, header = this.findHeaderIndex(target), row, cell, col, body; grid.fireEvent(name, e); if (header !== false) { grid.fireEvent('header' + name, grid, header, e); } else { row = this.findRowIndex(target); if (row !== false) { cell = this.findCellIndex(target); if (cell !== false) { col = grid.colModel.getColumnAt(cell); if (grid.fireEvent('cell' + name, grid, row, cell, e) !== false) { if (!col || (col.processEvent && (col.processEvent(name, e, grid, row, cell) !== false))) { grid.fireEvent('row' + name, grid, row, e); } } } else { if (grid.fireEvent('row' + name, grid, row, e) !== false) { (body = this.findRowBody(target)) && grid.fireEvent('rowbody' + name, grid, row, e); } } } else { grid.fireEvent('container' + name, grid, e); } } }, layout : function(initial) { if (!this.mainBody) { return; } var grid = this.grid, gridEl = grid.getGridEl(), gridSize = gridEl.getSize(true), gridWidth = gridSize.width, gridHeight = gridSize.height, scroller = this.scroller, scrollStyle, headerHeight, scrollHeight; if (gridWidth < 20 || gridHeight < 20) { return; } if (grid.autoHeight) { scrollStyle = scroller.dom.style; scrollStyle.overflow = 'visible'; if (Ext.isWebKit) { scrollStyle.position = 'static'; } } else { this.el.setSize(gridWidth, gridHeight); headerHeight = this.mainHd.getHeight(); scrollHeight = gridHeight - headerHeight; scroller.setSize(gridWidth, scrollHeight); if (this.innerHd) { this.innerHd.style.width = (gridWidth) + "px"; } } if (this.forceFit || (initial === true && this.autoFill)) { if (this.lastViewWidth != gridWidth) { this.fitColumns(false, false); this.lastViewWidth = gridWidth; } } else { this.autoExpand(); this.syncHeaderScroll(); } this.onLayout(gridWidth, scrollHeight); }, onLayout : function(vw, vh) { }, onColumnWidthUpdated : function(col, w, tw) { }, onAllColumnWidthsUpdated : function(ws, tw) { }, onColumnHiddenUpdated : function(col, hidden, tw) { }, updateColumnText : function(col, text) { }, afterMove : function(colIndex) { }, init : function(grid) { this.grid = grid; this.initTemplates(); this.initData(grid.store, grid.colModel); this.initUI(grid); }, getColumnId : function(index){ return this.cm.getColumnId(index); }, getOffsetWidth : function() { return (this.cm.getTotalWidth() + this.getScrollOffset()) + 'px'; }, getScrollOffset: function() { return Ext.num(this.scrollOffset, Ext.getScrollBarWidth()); }, renderHeaders : function() { var colModel = this.cm, templates = this.templates, headerTpl = templates.hcell, properties = {}, colCount = colModel.getColumnCount(), last = colCount - 1, cells = [], i, cssCls; for (i = 0; i < colCount; i++) { if (i == 0) { cssCls = 'x-grid3-cell-first '; } else { cssCls = i == last ? 'x-grid3-cell-last ' : ''; } properties = { id : colModel.getColumnId(i), value : colModel.getColumnHeader(i) || '', style : this.getColumnStyle(i, true), css : cssCls, tooltip: this.getColumnTooltip(i) }; if (colModel.config[i].align == 'right') { properties.istyle = 'padding-right: 16px;'; } else { delete properties.istyle; } cells[i] = headerTpl.apply(properties); } return templates.header.apply({ cells : cells.join(""), tstyle: String.format("width: {0};", this.getTotalWidth()) }); }, getColumnTooltip : function(i) { var tooltip = this.cm.getColumnTooltip(i); if (tooltip) { if (Ext.QuickTips.isEnabled()) { return 'ext:qtip="' + tooltip + '"'; } else { return 'title="' + tooltip + '"'; } } return ''; }, beforeUpdate : function() { this.grid.stopEditing(true); }, updateHeaders : function() { this.innerHd.firstChild.innerHTML = this.renderHeaders(); this.updateHeaderWidth(false); }, updateHeaderWidth: function(updateMain) { var innerHdChild = this.innerHd.firstChild, totalWidth = this.getTotalWidth(); innerHdChild.style.width = this.getOffsetWidth(); innerHdChild.firstChild.style.width = totalWidth; if (updateMain !== false) { this.mainBody.dom.style.width = totalWidth; } }, focusRow : function(row) { this.focusCell(row, 0, false); }, focusCell : function(row, col, hscroll) { this.syncFocusEl(this.ensureVisible(row, col, hscroll)); var focusEl = this.focusEl; if (Ext.isGecko) { focusEl.focus(); } else { focusEl.focus.defer(1, focusEl); } }, resolveCell : function(row, col, hscroll) { if (!Ext.isNumber(row)) { row = row.rowIndex; } if (!this.ds) { return null; } if (row < 0 || row >= this.ds.getCount()) { return null; } col = (col !== undefined ? col : 0); var rowEl = this.getRow(row), colModel = this.cm, colCount = colModel.getColumnCount(), cellEl; if (!(hscroll === false && col === 0)) { while (col < colCount && colModel.isHidden(col)) { col++; } cellEl = this.getCell(row, col); } return {row: rowEl, cell: cellEl}; }, getResolvedXY : function(resolved) { if (!resolved) { return null; } var cell = resolved.cell, row = resolved.row; if (cell) { return Ext.fly(cell).getXY(); } else { return [this.el.getX(), Ext.fly(row).getY()]; } }, syncFocusEl : function(row, col, hscroll) { var xy = row; if (!Ext.isArray(xy)) { row = Math.min(row, Math.max(0, this.getRows().length-1)); if (isNaN(row)) { return; } xy = this.getResolvedXY(this.resolveCell(row, col, hscroll)); } this.focusEl.setXY(xy || this.scroller.getXY()); }, ensureVisible : function(row, col, hscroll) { var resolved = this.resolveCell(row, col, hscroll); if (!resolved || !resolved.row) { return null; } var rowEl = resolved.row, cellEl = resolved.cell, c = this.scroller.dom, p = rowEl, ctop = 0, stop = this.el.dom; while (p && p != stop) { ctop += p.offsetTop; p = p.offsetParent; } ctop -= this.mainHd.dom.offsetHeight; stop = parseInt(c.scrollTop, 10); var cbot = ctop + rowEl.offsetHeight, ch = c.clientHeight, sbot = stop + ch; if (ctop < stop) { c.scrollTop = ctop; } else if(cbot > sbot) { c.scrollTop = cbot-ch; } if (hscroll !== false) { var cleft = parseInt(cellEl.offsetLeft, 10), cright = cleft + cellEl.offsetWidth, sleft = parseInt(c.scrollLeft, 10), sright = sleft + c.clientWidth; if (cleft < sleft) { c.scrollLeft = cleft; } else if(cright > sright) { c.scrollLeft = cright-c.clientWidth; } } return this.getResolvedXY(resolved); }, insertRows : function(dm, firstRow, lastRow, isUpdate) { var last = dm.getCount() - 1; if( !isUpdate && firstRow === 0 && lastRow >= last) { this.fireEvent('beforerowsinserted', this, firstRow, lastRow); this.refresh(); this.fireEvent('rowsinserted', this, firstRow, lastRow); } else { if (!isUpdate) { this.fireEvent('beforerowsinserted', this, firstRow, lastRow); } var html = this.renderRows(firstRow, lastRow), before = this.getRow(firstRow); if (before) { if(firstRow === 0){ Ext.fly(this.getRow(0)).removeClass(this.firstRowCls); } Ext.DomHelper.insertHtml('beforeBegin', before, html); } else { var r = this.getRow(last - 1); if(r){ Ext.fly(r).removeClass(this.lastRowCls); } Ext.DomHelper.insertHtml('beforeEnd', this.mainBody.dom, html); } if (!isUpdate) { this.processRows(firstRow); this.fireEvent('rowsinserted', this, firstRow, lastRow); } else if (firstRow === 0 || firstRow >= last) { Ext.fly(this.getRow(firstRow)).addClass(firstRow === 0 ? this.firstRowCls : this.lastRowCls); } } this.syncFocusEl(firstRow); }, deleteRows : function(dm, firstRow, lastRow) { if (dm.getRowCount() < 1) { this.refresh(); } else { this.fireEvent('beforerowsdeleted', this, firstRow, lastRow); this.removeRows(firstRow, lastRow); this.processRows(firstRow); this.fireEvent('rowsdeleted', this, firstRow, lastRow); } }, getColumnStyle : function(colIndex, isHeader) { var colModel = this.cm, colConfig = colModel.config, style = isHeader ? '' : colConfig[colIndex].css || '', align = colConfig[colIndex].align; style += String.format("width: {0};", this.getColumnWidth(colIndex)); if (colModel.isHidden(colIndex)) { style += 'display: none; '; } if (align) { style += String.format("text-align: {0};", align); } return style; }, getColumnWidth : function(column) { var columnWidth = this.cm.getColumnWidth(column), borderWidth = this.borderWidth; if (Ext.isNumber(columnWidth)) { if (Ext.isBorderBox) { return columnWidth + "px"; } else { return Math.max(columnWidth - borderWidth, 0) + "px"; } } else { return columnWidth; } }, getTotalWidth : function() { return this.cm.getTotalWidth() + 'px'; }, fitColumns : function(preventRefresh, onlyExpand, omitColumn) { var grid = this.grid, colModel = this.cm, totalColWidth = colModel.getTotalWidth(false), gridWidth = this.getGridInnerWidth(), extraWidth = gridWidth - totalColWidth, columns = [], extraCol = 0, width = 0, colWidth, fraction, i; if (gridWidth < 20 || extraWidth === 0) { return false; } var visibleColCount = colModel.getColumnCount(true), totalColCount = colModel.getColumnCount(false), adjCount = visibleColCount - (Ext.isNumber(omitColumn) ? 1 : 0); if (adjCount === 0) { adjCount = 1; omitColumn = undefined; } for (i = 0; i < totalColCount; i++) { if (!colModel.isFixed(i) && i !== omitColumn) { colWidth = colModel.getColumnWidth(i); columns.push(i, colWidth); if (!colModel.isHidden(i)) { extraCol = i; width += colWidth; } } } fraction = (gridWidth - colModel.getTotalWidth()) / width; while (columns.length) { colWidth = columns.pop(); i = columns.pop(); colModel.setColumnWidth(i, Math.max(grid.minColumnWidth, Math.floor(colWidth + colWidth * fraction)), true); } totalColWidth = colModel.getTotalWidth(false); if (totalColWidth > gridWidth) { var adjustCol = (adjCount == visibleColCount) ? extraCol : omitColumn, newWidth = Math.max(1, colModel.getColumnWidth(adjustCol) - (totalColWidth - gridWidth)); colModel.setColumnWidth(adjustCol, newWidth, true); } if (preventRefresh !== true) { this.updateAllColumnWidths(); } return true; }, autoExpand : function(preventUpdate) { var grid = this.grid, colModel = this.cm, gridWidth = this.getGridInnerWidth(), totalColumnWidth = colModel.getTotalWidth(false), autoExpandColumn = grid.autoExpandColumn; if (!this.userResized && autoExpandColumn) { if (gridWidth != totalColumnWidth) { var colIndex = colModel.getIndexById(autoExpandColumn), currentWidth = colModel.getColumnWidth(colIndex), desiredWidth = gridWidth - totalColumnWidth + currentWidth, newWidth = Math.min(Math.max(desiredWidth, grid.autoExpandMin), grid.autoExpandMax); if (currentWidth != newWidth) { colModel.setColumnWidth(colIndex, newWidth, true); if (preventUpdate !== true) { this.updateColumnWidth(colIndex, newWidth); } } } } }, getGridInnerWidth: function() { return this.grid.getGridEl().getWidth(true) - this.getScrollOffset(); }, getColumnData : function() { var columns = [], colModel = this.cm, colCount = colModel.getColumnCount(), fields = this.ds.fields, i, name; for (i = 0; i < colCount; i++) { name = colModel.getDataIndex(i); columns[i] = { name : Ext.isDefined(name) ? name : (fields.get(i) ? fields.get(i).name : undefined), renderer: colModel.getRenderer(i), scope : colModel.getRendererScope(i), id : colModel.getColumnId(i), style : this.getColumnStyle(i) }; } return columns; }, renderRows : function(startRow, endRow) { var grid = this.grid, store = grid.store, stripe = grid.stripeRows, colModel = grid.colModel, colCount = colModel.getColumnCount(), rowCount = store.getCount(), records; if (rowCount < 1) { return ''; } startRow = startRow || 0; endRow = Ext.isDefined(endRow) ? endRow : rowCount - 1; records = store.getRange(startRow, endRow); return this.doRender(this.getColumnData(), records, store, startRow, colCount, stripe); }, renderBody : function(){ var markup = this.renderRows() || ' '; return this.templates.body.apply({rows: markup}); }, refreshRow: function(record) { var store = this.ds, colCount = this.cm.getColumnCount(), columns = this.getColumnData(), last = colCount - 1, cls = ['x-grid3-row'], rowParams = { tstyle: String.format("width: {0};", this.getTotalWidth()) }, colBuffer = [], cellTpl = this.templates.cell, rowIndex, row, column, meta, css, i; if (Ext.isNumber(record)) { rowIndex = record; record = store.getAt(rowIndex); } else { rowIndex = store.indexOf(record); } if (!record || rowIndex < 0) { return; } for (i = 0; i < colCount; i++) { column = columns[i]; if (i == 0) { css = 'x-grid3-cell-first'; } else { css = (i == last) ? 'x-grid3-cell-last ' : ''; } meta = { id : column.id, style : column.style, css : css, attr : "", cellAttr: "" }; meta.value = column.renderer.call(column.scope, record.data[column.name], meta, record, rowIndex, i, store); if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (this.markDirty && record.dirty && typeof record.modified[column.name] != 'undefined') { meta.css += ' x-grid3-dirty-cell'; } colBuffer[i] = cellTpl.apply(meta); } row = this.getRow(rowIndex); row.className = ''; if (this.grid.stripeRows && ((rowIndex + 1) % 2 === 0)) { cls.push('x-grid3-row-alt'); } if (this.getRowClass) { rowParams.cols = colCount; cls.push(this.getRowClass(record, rowIndex, rowParams, store)); } this.fly(row).addClass(cls).setStyle(rowParams.tstyle); rowParams.cells = colBuffer.join(""); row.innerHTML = this.templates.rowInner.apply(rowParams); this.fireEvent('rowupdated', this, rowIndex, record); }, refresh : function(headersToo) { this.fireEvent('beforerefresh', this); this.grid.stopEditing(true); var result = this.renderBody(); this.mainBody.update(result).setWidth(this.getTotalWidth()); if (headersToo === true) { this.updateHeaders(); this.updateHeaderSortState(); } this.processRows(0, true); this.layout(); this.applyEmptyText(); this.fireEvent('refresh', this); }, applyEmptyText : function() { if (this.emptyText && !this.hasRows()) { this.mainBody.update('
      ' + this.emptyText + '
      '); } }, updateHeaderSortState : function() { var state = this.ds.getSortState(); if (!state) { return; } if (!this.sortState || (this.sortState.field != state.field || this.sortState.direction != state.direction)) { this.grid.fireEvent('sortchange', this.grid, state); } this.sortState = state; var sortColumn = this.cm.findColumnIndex(state.field); if (sortColumn != -1) { var sortDir = state.direction; this.updateSortIcon(sortColumn, sortDir); } }, clearHeaderSortState : function() { if (!this.sortState) { return; } this.grid.fireEvent('sortchange', this.grid, null); this.mainHd.select('td').removeClass(this.sortClasses); delete this.sortState; }, destroy : function() { var me = this, grid = me.grid, gridEl = grid.getGridEl(), dragZone = me.dragZone, splitZone = me.splitZone, columnDrag = me.columnDrag, columnDrop = me.columnDrop, scrollToTopTask = me.scrollToTopTask, columnDragData, columnDragProxy; if (scrollToTopTask && scrollToTopTask.cancel) { scrollToTopTask.cancel(); } Ext.destroyMembers(me, 'colMenu', 'hmenu'); me.initData(null, null); me.purgeListeners(); Ext.fly(me.innerHd).un("click", me.handleHdDown, me); if (grid.enableColumnMove) { columnDragData = columnDrag.dragData; columnDragProxy = columnDrag.proxy; Ext.destroy( columnDrag.el, columnDragProxy.ghost, columnDragProxy.el, columnDrop.el, columnDrop.proxyTop, columnDrop.proxyBottom, columnDragData.ddel, columnDragData.header ); if (columnDragProxy.anim) { Ext.destroy(columnDragProxy.anim); } delete columnDragProxy.ghost; delete columnDragData.ddel; delete columnDragData.header; columnDrag.destroy(); delete Ext.dd.DDM.locationCache[columnDrag.id]; delete columnDrag._domRef; delete columnDrop.proxyTop; delete columnDrop.proxyBottom; columnDrop.destroy(); delete Ext.dd.DDM.locationCache["gridHeader" + gridEl.id]; delete columnDrop._domRef; delete Ext.dd.DDM.ids[columnDrop.ddGroup]; } if (splitZone) { splitZone.destroy(); delete splitZone._domRef; delete Ext.dd.DDM.ids["gridSplitters" + gridEl.id]; } Ext.fly(me.innerHd).removeAllListeners(); Ext.removeNode(me.innerHd); delete me.innerHd; Ext.destroy( me.el, me.mainWrap, me.mainHd, me.scroller, me.mainBody, me.focusEl, me.resizeMarker, me.resizeProxy, me.activeHdBtn, me._flyweight, dragZone, splitZone ); delete grid.container; if (dragZone) { dragZone.destroy(); } Ext.dd.DDM.currentTarget = null; delete Ext.dd.DDM.locationCache[gridEl.id]; Ext.EventManager.removeResizeListener(me.onWindowResize, me); }, onDenyColumnHide : function() { }, render : function() { if (this.autoFill) { var ct = this.grid.ownerCt; if (ct && ct.getLayout()) { ct.on('afterlayout', function() { this.fitColumns(true, true); this.updateHeaders(); this.updateHeaderSortState(); }, this, {single: true}); } } else if (this.forceFit) { this.fitColumns(true, false); } else if (this.grid.autoExpandColumn) { this.autoExpand(true); } this.grid.getGridEl().dom.innerHTML = this.renderUI(); this.afterRenderUI(); }, initData : function(newStore, newColModel) { var me = this; if (me.ds) { var oldStore = me.ds; oldStore.un('add', me.onAdd, me); oldStore.un('load', me.onLoad, me); oldStore.un('clear', me.onClear, me); oldStore.un('remove', me.onRemove, me); oldStore.un('update', me.onUpdate, me); oldStore.un('datachanged', me.onDataChange, me); if (oldStore !== newStore && oldStore.autoDestroy) { oldStore.destroy(); } } if (newStore) { newStore.on({ scope : me, load : me.onLoad, add : me.onAdd, remove : me.onRemove, update : me.onUpdate, clear : me.onClear, datachanged: me.onDataChange }); } if (me.cm) { var oldColModel = me.cm; oldColModel.un('configchange', me.onColConfigChange, me); oldColModel.un('widthchange', me.onColWidthChange, me); oldColModel.un('headerchange', me.onHeaderChange, me); oldColModel.un('hiddenchange', me.onHiddenChange, me); oldColModel.un('columnmoved', me.onColumnMove, me); } if (newColModel) { delete me.lastViewWidth; newColModel.on({ scope : me, configchange: me.onColConfigChange, widthchange : me.onColWidthChange, headerchange: me.onHeaderChange, hiddenchange: me.onHiddenChange, columnmoved : me.onColumnMove }); } me.ds = newStore; me.cm = newColModel; }, onDataChange : function(){ this.refresh(true); this.updateHeaderSortState(); this.syncFocusEl(0); }, onClear : function() { this.refresh(); this.syncFocusEl(0); }, onUpdate : function(store, record) { this.refreshRow(record); }, onAdd : function(store, records, index) { this.insertRows(store, index, index + (records.length-1)); }, onRemove : function(store, record, index, isUpdate) { if (isUpdate !== true) { this.fireEvent('beforerowremoved', this, index, record); } this.removeRow(index); if (isUpdate !== true) { this.processRows(index); this.applyEmptyText(); this.fireEvent('rowremoved', this, index, record); } }, onLoad : function() { if (Ext.isGecko) { if (!this.scrollToTopTask) { this.scrollToTopTask = new Ext.util.DelayedTask(this.scrollToTop, this); } this.scrollToTopTask.delay(1); } else { this.scrollToTop(); } }, onColWidthChange : function(cm, col, width) { this.updateColumnWidth(col, width); }, onHeaderChange : function(cm, col, text) { this.updateHeaders(); }, onHiddenChange : function(cm, col, hidden) { this.updateColumnHidden(col, hidden); }, onColumnMove : function(cm, oldIndex, newIndex) { this.indexMap = null; this.refresh(true); this.restoreScroll(this.getScrollState()); this.afterMove(newIndex); this.grid.fireEvent('columnmove', oldIndex, newIndex); }, onColConfigChange : function() { delete this.lastViewWidth; this.indexMap = null; this.refresh(true); }, initUI : function(grid) { grid.on('headerclick', this.onHeaderClick, this); }, initEvents : Ext.emptyFn, onHeaderClick : function(g, index) { if (this.headersDisabled || !this.cm.isSortable(index)) { return; } g.stopEditing(true); g.store.sort(this.cm.getDataIndex(index)); }, onRowOver : function(e, target) { var row = this.findRowIndex(target); if (row !== false) { this.addRowClass(row, this.rowOverCls); } }, onRowOut : function(e, target) { var row = this.findRowIndex(target); if (row !== false && !e.within(this.getRow(row), true)) { this.removeRowClass(row, this.rowOverCls); } }, onRowSelect : function(row) { this.addRowClass(row, this.selectedRowClass); }, onRowDeselect : function(row) { this.removeRowClass(row, this.selectedRowClass); }, onCellSelect : function(row, col) { var cell = this.getCell(row, col); if (cell) { this.fly(cell).addClass('x-grid3-cell-selected'); } }, onCellDeselect : function(row, col) { var cell = this.getCell(row, col); if (cell) { this.fly(cell).removeClass('x-grid3-cell-selected'); } }, handleWheel : function(e) { e.stopPropagation(); }, onColumnSplitterMoved : function(cellIndex, width) { this.userResized = true; this.grid.colModel.setColumnWidth(cellIndex, width, true); if (this.forceFit) { this.fitColumns(true, false, cellIndex); this.updateAllColumnWidths(); } else { this.updateColumnWidth(cellIndex, width); this.syncHeaderScroll(); } this.grid.fireEvent('columnresize', cellIndex, width); }, beforeColMenuShow : function() { var colModel = this.cm, colCount = colModel.getColumnCount(), colMenu = this.colMenu, i; colMenu.removeAll(); for (i = 0; i < colCount; i++) { if (colModel.config[i].hideable !== false) { colMenu.add(new Ext.menu.CheckItem({ text : colModel.getColumnHeader(i), itemId : 'col-' + colModel.getColumnId(i), checked : !colModel.isHidden(i), disabled : colModel.config[i].hideable === false, hideOnClick: false })); } } }, handleHdMenuClick : function(item) { var store = this.ds, dataIndex = this.cm.getDataIndex(this.hdCtxIndex); switch (item.getItemId()) { case 'asc': store.sort(dataIndex, 'ASC'); break; case 'desc': store.sort(dataIndex, 'DESC'); break; default: this.handleHdMenuClickDefault(item); } return true; }, handleHdMenuClickDefault: function(item) { var colModel = this.cm, itemId = item.getItemId(), index = colModel.getIndexById(itemId.substr(4)); if (index != -1) { if (item.checked && colModel.getColumnsBy(this.isHideableColumn, this).length <= 1) { this.onDenyColumnHide(); return; } colModel.setHidden(index, item.checked); } }, handleHdDown : function(e, target) { if (Ext.fly(target).hasClass('x-grid3-hd-btn')) { e.stopEvent(); var colModel = this.cm, header = this.findHeaderCell(target), index = this.getCellIndex(header), sortable = colModel.isSortable(index), menu = this.hmenu, menuItems = menu.items, menuCls = this.headerMenuOpenCls, sep; this.hdCtxIndex = index; Ext.fly(header).addClass(menuCls); if (this.hideSortIcons) { menuItems.get('asc').setVisible(sortable); menuItems.get('desc').setVisible(sortable); sep = menuItems.get('sortSep'); if (sep) { sep.setVisible(sortable); } } else { menuItems.get('asc').setDisabled(!sortable); menuItems.get('desc').setDisabled(!sortable); } menu.on('hide', function() { Ext.fly(header).removeClass(menuCls); }, this, {single:true}); menu.show(target, 'tl-bl?'); } }, handleHdMove : function(e) { var header = this.findHeaderCell(this.activeHdRef); if (header && !this.headersDisabled) { var handleWidth = this.splitHandleWidth || 5, activeRegion = this.activeHdRegion, headerStyle = header.style, colModel = this.cm, cursor = '', pageX = e.getPageX(); if (this.grid.enableColumnResize !== false) { var activeHeaderIndex = this.activeHdIndex, previousVisible = this.getPreviousVisible(activeHeaderIndex), currentResizable = colModel.isResizable(activeHeaderIndex), previousResizable = previousVisible && colModel.isResizable(previousVisible), inLeftResizer = pageX - activeRegion.left <= handleWidth, inRightResizer = activeRegion.right - pageX <= (!this.activeHdBtn ? handleWidth : 2); if (inLeftResizer && previousResizable) { cursor = Ext.isAir ? 'move' : Ext.isWebKit ? 'e-resize' : 'col-resize'; } else if (inRightResizer && currentResizable) { cursor = Ext.isAir ? 'move' : Ext.isWebKit ? 'w-resize' : 'col-resize'; } } headerStyle.cursor = cursor; } }, getPreviousVisible: function(index) { while (index > 0) { if (!this.cm.isHidden(index - 1)) { return index; } index--; } return undefined; }, handleHdOver : function(e, target) { var header = this.findHeaderCell(target); if (header && !this.headersDisabled) { var fly = this.fly(header); this.activeHdRef = target; this.activeHdIndex = this.getCellIndex(header); this.activeHdRegion = fly.getRegion(); if (!this.isMenuDisabled(this.activeHdIndex, fly)) { fly.addClass('x-grid3-hd-over'); this.activeHdBtn = fly.child('.x-grid3-hd-btn'); if (this.activeHdBtn) { this.activeHdBtn.dom.style.height = (header.firstChild.offsetHeight - 1) + 'px'; } } } }, handleHdOut : function(e, target) { var header = this.findHeaderCell(target); if (header && (!Ext.isIE9m || !e.within(header, true))) { this.activeHdRef = null; this.fly(header).removeClass('x-grid3-hd-over'); header.style.cursor = ''; } }, isMenuDisabled: function(cellIndex, el) { return this.cm.isMenuDisabled(cellIndex); }, hasRows : function() { var fc = this.mainBody.dom.firstChild; return fc && fc.nodeType == 1 && fc.className != 'x-grid-empty'; }, isHideableColumn : function(c) { return !c.hidden; }, bind : function(d, c) { this.initData(d, c); } }); Ext.grid.GridView.SplitDragZone = Ext.extend(Ext.dd.DDProxy, { constructor: function(grid, hd){ this.grid = grid; this.view = grid.getView(); this.marker = this.view.resizeMarker; this.proxy = this.view.resizeProxy; Ext.grid.GridView.SplitDragZone.superclass.constructor.call(this, hd, 'gridSplitters' + this.grid.getGridEl().id, { dragElId : Ext.id(this.proxy.dom), resizeFrame:false }); this.scroll = false; this.hw = this.view.splitHandleWidth || 5; }, b4StartDrag : function(x, y){ this.dragHeadersDisabled = this.view.headersDisabled; this.view.headersDisabled = true; var h = this.view.mainWrap.getHeight(); this.marker.setHeight(h); this.marker.show(); this.marker.alignTo(this.view.getHeaderCell(this.cellIndex), 'tl-tl', [-2, 0]); this.proxy.setHeight(h); var w = this.cm.getColumnWidth(this.cellIndex), minw = Math.max(w-this.grid.minColumnWidth, 0); this.resetConstraints(); this.setXConstraint(minw, 1000); this.setYConstraint(0, 0); this.minX = x - minw; this.maxX = x + 1000; this.startPos = x; Ext.dd.DDProxy.prototype.b4StartDrag.call(this, x, y); }, allowHeaderDrag : function(e){ return true; }, handleMouseDown : function(e){ var t = this.view.findHeaderCell(e.getTarget()); if(t && this.allowHeaderDrag(e)){ var xy = this.view.fly(t).getXY(), x = xy[0], exy = e.getXY(), ex = exy[0], w = t.offsetWidth, adjust = false; if((ex - x) <= this.hw){ adjust = -1; }else if((x+w) - ex <= this.hw){ adjust = 0; } if(adjust !== false){ this.cm = this.grid.colModel; var ci = this.view.getCellIndex(t); if(adjust == -1){ if (ci + adjust < 0) { return; } while(this.cm.isHidden(ci+adjust)){ --adjust; if(ci+adjust < 0){ return; } } } this.cellIndex = ci+adjust; this.split = t.dom; if(this.cm.isResizable(this.cellIndex) && !this.cm.isFixed(this.cellIndex)){ Ext.grid.GridView.SplitDragZone.superclass.handleMouseDown.apply(this, arguments); } }else if(this.view.columnDrag){ this.view.columnDrag.callHandleMouseDown(e); } } }, endDrag : function(e){ this.marker.hide(); var v = this.view, endX = Math.max(this.minX, e.getPageX()), diff = endX - this.startPos, disabled = this.dragHeadersDisabled; v.onColumnSplitterMoved(this.cellIndex, this.cm.getColumnWidth(this.cellIndex)+diff); setTimeout(function(){ v.headersDisabled = disabled; }, 50); }, autoOffset : function(){ this.setDelta(0,0); } }); Ext.grid.PivotGridView = Ext.extend(Ext.grid.GridView, { colHeaderCellCls: 'grid-hd-group-cell', title: '', getColumnHeaders: function() { return this.grid.topAxis.buildHeaders();; }, getRowHeaders: function() { return this.grid.leftAxis.buildHeaders(); }, renderRows : function(startRow, endRow) { var grid = this.grid, rows = grid.extractData(), rowCount = rows.length, templates = this.templates, renderer = grid.renderer, hasRenderer = typeof renderer == 'function', getCellCls = this.getCellCls, hasGetCellCls = typeof getCellCls == 'function', cellTemplate = templates.cell, rowTemplate = templates.row, rowBuffer = [], meta = {}, tstyle = 'width:' + this.getGridInnerWidth() + 'px;', colBuffer, colCount, column, i, row; startRow = startRow || 0; endRow = Ext.isDefined(endRow) ? endRow : rowCount - 1; for (i = 0; i < rowCount; i++) { row = rows[i]; colCount = row.length; colBuffer = []; for (var j = 0; j < colCount; j++) { meta.id = i + '-' + j; meta.css = j === 0 ? 'x-grid3-cell-first ' : (j == (colCount - 1) ? 'x-grid3-cell-last ' : ''); meta.attr = meta.cellAttr = ''; meta.value = row[j]; if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (hasRenderer) { meta.value = renderer(meta.value); } if (hasGetCellCls) { meta.css += getCellCls(meta.value) + ' '; } colBuffer[colBuffer.length] = cellTemplate.apply(meta); } rowBuffer[rowBuffer.length] = rowTemplate.apply({ tstyle: tstyle, cols : colCount, cells : colBuffer.join(""), alt : '' }); } return rowBuffer.join(""); }, masterTpl: new Ext.Template( '
      ', '
      ', '
      ', '
      {title}
      ', '
      ', '
      ', '
      ', '
      ', '
      ', '
      ', '
      ', '
      {body}
      ', '', '
      ', '
      ', '
       
      ', '
       
      ', '
      ' ), initTemplates: function() { Ext.grid.PivotGridView.superclass.initTemplates.apply(this, arguments); var templates = this.templates || {}; if (!templates.gcell) { templates.gcell = new Ext.XTemplate( '', '
      ', this.grid.enableHdMenu ? '' : '', '{value}', '
      ', '' ); } this.templates = templates; this.hrowRe = new RegExp("ux-grid-hd-group-row-(\\d+)", ""); }, initElements: function() { Ext.grid.PivotGridView.superclass.initElements.apply(this, arguments); this.rowHeadersEl = new Ext.Element(this.scroller.child('div.x-grid3-row-headers')); this.headerTitleEl = new Ext.Element(this.mainHd.child('div.x-grid3-header-title')); }, getGridInnerWidth: function() { var previousWidth = Ext.grid.PivotGridView.superclass.getGridInnerWidth.apply(this, arguments); return previousWidth - this.getTotalRowHeaderWidth(); }, getTotalRowHeaderWidth: function() { var headers = this.getRowHeaders(), length = headers.length, total = 0, i; for (i = 0; i< length; i++) { total += headers[i].width; } return total; }, getTotalColumnHeaderHeight: function() { return this.getColumnHeaders().length * 21; }, getCellIndex : function(el) { if (el) { var match = el.className.match(this.colRe), data; if (match && (data = match[1])) { return parseInt(data.split('-')[1], 10); } } return false; }, renderUI : function() { var templates = this.templates, innerWidth = this.getGridInnerWidth(); return templates.master.apply({ body : templates.body.apply({rows:' '}), ostyle: 'width:' + innerWidth + 'px', bstyle: 'width:' + innerWidth + 'px' }); }, onLayout: function(width, height) { Ext.grid.PivotGridView.superclass.onLayout.apply(this, arguments); var width = this.getGridInnerWidth(); this.resizeColumnHeaders(width); this.resizeAllRows(width); }, refresh : function(headersToo) { this.fireEvent('beforerefresh', this); this.grid.stopEditing(true); var result = this.renderBody(); this.mainBody.update(result).setWidth(this.getGridInnerWidth()); if (headersToo === true) { this.updateHeaders(); this.updateHeaderSortState(); } this.processRows(0, true); this.layout(); this.applyEmptyText(); this.fireEvent('refresh', this); }, renderHeaders: Ext.emptyFn, fitColumns: Ext.emptyFn, resizeColumnHeaders: function(width) { var topAxis = this.grid.topAxis; if (topAxis.rendered) { topAxis.el.setWidth(width); } }, resizeRowHeaders: function() { var rowHeaderWidth = this.getTotalRowHeaderWidth(), marginStyle = String.format("margin-left: {0}px;", rowHeaderWidth); this.rowHeadersEl.setWidth(rowHeaderWidth); this.mainBody.applyStyles(marginStyle); Ext.fly(this.innerHd).applyStyles(marginStyle); this.headerTitleEl.setWidth(rowHeaderWidth); this.headerTitleEl.setHeight(this.getTotalColumnHeaderHeight()); }, resizeAllRows: function(width) { var rows = this.getRows(), length = rows.length, i; for (i = 0; i < length; i++) { Ext.fly(rows[i]).setWidth(width); Ext.fly(rows[i]).child('table').setWidth(width); } }, updateHeaders: function() { this.renderGroupRowHeaders(); this.renderGroupColumnHeaders(); }, renderGroupRowHeaders: function() { var leftAxis = this.grid.leftAxis; this.resizeRowHeaders(); leftAxis.rendered = false; leftAxis.render(this.rowHeadersEl); this.setTitle(this.title); }, setTitle: function(title) { this.headerTitleEl.child('span').dom.innerHTML = title; }, renderGroupColumnHeaders: function() { var topAxis = this.grid.topAxis; topAxis.rendered = false; topAxis.render(this.innerHd.firstChild); }, isMenuDisabled: function(cellIndex, el) { return true; } }); Ext.grid.PivotAxis = Ext.extend(Ext.Component, { orientation: 'horizontal', defaultHeaderWidth: 80, paddingWidth: 7, setDimensions: function(dimensions) { this.dimensions = dimensions; }, onRender: function(ct, position) { var rows = this.orientation == 'horizontal' ? this.renderHorizontalRows() : this.renderVerticalRows(); this.el = Ext.DomHelper.overwrite(ct.dom, {tag: 'table', cn: rows}, true); }, renderHorizontalRows: function() { var headers = this.buildHeaders(), rowCount = headers.length, rows = [], cells, cols, colCount, i, j; for (i = 0; i < rowCount; i++) { cells = []; cols = headers[i].items; colCount = cols.length; for (j = 0; j < colCount; j++) { cells.push({ tag: 'td', html: cols[j].header, colspan: cols[j].span }); } rows[i] = { tag: 'tr', cn: cells }; } return rows; }, renderVerticalRows: function() { var headers = this.buildHeaders(), colCount = headers.length, rowCells = [], rows = [], rowCount, col, row, colWidth, i, j; for (i = 0; i < colCount; i++) { col = headers[i]; colWidth = col.width || 80; rowCount = col.items.length; for (j = 0; j < rowCount; j++) { row = col.items[j]; rowCells[row.start] = rowCells[row.start] || []; rowCells[row.start].push({ tag : 'td', html : row.header, rowspan: row.span, width : Ext.isBorderBox ? colWidth : colWidth - this.paddingWidth }); } } rowCount = rowCells.length; for (i = 0; i < rowCount; i++) { rows[i] = { tag: 'tr', cn : rowCells[i] }; } return rows; }, getTuples: function() { var newStore = new Ext.data.Store({}); newStore.data = this.store.data.clone(); newStore.fields = this.store.fields; var sorters = [], dimensions = this.dimensions, length = dimensions.length, i; for (i = 0; i < length; i++) { sorters.push({ field : dimensions[i].dataIndex, direction: dimensions[i].direction || 'ASC' }); } newStore.sort(sorters); var records = newStore.data.items, hashes = [], tuples = [], recData, hash, info, data, key; length = records.length; for (i = 0; i < length; i++) { info = this.getRecordInfo(records[i]); data = info.data; hash = ""; for (key in data) { hash += data[key] + '---'; } if (hashes.indexOf(hash) == -1) { hashes.push(hash); tuples.push(info); } } newStore.destroy(); return tuples; }, getRecordInfo: function(record) { var dimensions = this.dimensions, length = dimensions.length, data = {}, dimension, dataIndex, i; for (i = 0; i < length; i++) { dimension = dimensions[i]; dataIndex = dimension.dataIndex; data[dataIndex] = record.get(dataIndex); } var createMatcherFunction = function(data) { return function(record) { for (var dataIndex in data) { if (record.get(dataIndex) != data[dataIndex]) { return false; } } return true; }; }; return { data: data, matcher: createMatcherFunction(data) }; }, buildHeaders: function() { var tuples = this.getTuples(), rowCount = tuples.length, dimensions = this.dimensions, dimension, colCount = dimensions.length, headers = [], tuple, rows, currentHeader, previousHeader, span, start, isLast, changed, i, j; for (i = 0; i < colCount; i++) { dimension = dimensions[i]; rows = []; span = 0; start = 0; for (j = 0; j < rowCount; j++) { tuple = tuples[j]; isLast = j == (rowCount - 1); currentHeader = tuple.data[dimension.dataIndex]; changed = previousHeader != undefined && previousHeader != currentHeader; if (i > 0 && j > 0) { changed = changed || tuple.data[dimensions[i-1].dataIndex] != tuples[j-1].data[dimensions[i-1].dataIndex]; } if (changed) { rows.push({ header: previousHeader, span : span, start : start }); start += span; span = 0; } if (isLast) { rows.push({ header: currentHeader, span : span + 1, start : start }); start += span; span = 0; } previousHeader = currentHeader; span++; } headers.push({ items: rows, width: dimension.width || this.defaultHeaderWidth }); previousHeader = undefined; } return headers; } }); Ext.grid.HeaderDragZone = Ext.extend(Ext.dd.DragZone, { maxDragWidth: 120, constructor : function(grid, hd, hd2){ this.grid = grid; this.view = grid.getView(); this.ddGroup = "gridHeader" + this.grid.getGridEl().id; Ext.grid.HeaderDragZone.superclass.constructor.call(this, hd); if(hd2){ this.setHandleElId(Ext.id(hd)); this.setOuterHandleElId(Ext.id(hd2)); } this.scroll = false; }, getDragData : function(e){ var t = Ext.lib.Event.getTarget(e), h = this.view.findHeaderCell(t); if(h){ return {ddel: h.firstChild, header:h}; } return false; }, onInitDrag : function(e){ this.dragHeadersDisabled = this.view.headersDisabled; this.view.headersDisabled = true; var clone = this.dragData.ddel.cloneNode(true); clone.id = Ext.id(); clone.style.width = Math.min(this.dragData.header.offsetWidth,this.maxDragWidth) + "px"; this.proxy.update(clone); return true; }, afterValidDrop : function(){ this.completeDrop(); }, afterInvalidDrop : function(){ this.completeDrop(); }, completeDrop: function(){ var v = this.view, disabled = this.dragHeadersDisabled; setTimeout(function(){ v.headersDisabled = disabled; }, 50); } }); Ext.grid.HeaderDropZone = Ext.extend(Ext.dd.DropZone, { proxyOffsets : [-4, -9], fly: Ext.Element.fly, constructor : function(grid, hd, hd2){ this.grid = grid; this.view = grid.getView(); this.proxyTop = Ext.DomHelper.append(document.body, { cls:"col-move-top", html:" " }, true); this.proxyBottom = Ext.DomHelper.append(document.body, { cls:"col-move-bottom", html:" " }, true); this.proxyTop.hide = this.proxyBottom.hide = function(){ this.setLeftTop(-100,-100); this.setStyle("visibility", "hidden"); }; this.ddGroup = "gridHeader" + this.grid.getGridEl().id; Ext.grid.HeaderDropZone.superclass.constructor.call(this, grid.getGridEl().dom); }, getTargetFromEvent : function(e){ var t = Ext.lib.Event.getTarget(e), cindex = this.view.findCellIndex(t); if(cindex !== false){ return this.view.getHeaderCell(cindex); } }, nextVisible : function(h){ var v = this.view, cm = this.grid.colModel; h = h.nextSibling; while(h){ if(!cm.isHidden(v.getCellIndex(h))){ return h; } h = h.nextSibling; } return null; }, prevVisible : function(h){ var v = this.view, cm = this.grid.colModel; h = h.prevSibling; while(h){ if(!cm.isHidden(v.getCellIndex(h))){ return h; } h = h.prevSibling; } return null; }, positionIndicator : function(h, n, e){ var x = Ext.lib.Event.getPageX(e), r = Ext.lib.Dom.getRegion(n.firstChild), px, pt, py = r.top + this.proxyOffsets[1]; if((r.right - x) <= (r.right-r.left)/2){ px = r.right+this.view.borderWidth; pt = "after"; }else{ px = r.left; pt = "before"; } if(this.grid.colModel.isFixed(this.view.getCellIndex(n))){ return false; } px += this.proxyOffsets[0]; this.proxyTop.setLeftTop(px, py); this.proxyTop.show(); if(!this.bottomOffset){ this.bottomOffset = this.view.mainHd.getHeight(); } this.proxyBottom.setLeftTop(px, py+this.proxyTop.dom.offsetHeight+this.bottomOffset); this.proxyBottom.show(); return pt; }, onNodeEnter : function(n, dd, e, data){ if(data.header != n){ this.positionIndicator(data.header, n, e); } }, onNodeOver : function(n, dd, e, data){ var result = false; if(data.header != n){ result = this.positionIndicator(data.header, n, e); } if(!result){ this.proxyTop.hide(); this.proxyBottom.hide(); } return result ? this.dropAllowed : this.dropNotAllowed; }, onNodeOut : function(n, dd, e, data){ this.proxyTop.hide(); this.proxyBottom.hide(); }, onNodeDrop : function(n, dd, e, data){ var h = data.header; if(h != n){ var cm = this.grid.colModel, x = Ext.lib.Event.getPageX(e), r = Ext.lib.Dom.getRegion(n.firstChild), pt = (r.right - x) <= ((r.right-r.left)/2) ? "after" : "before", oldIndex = this.view.getCellIndex(h), newIndex = this.view.getCellIndex(n); if(pt == "after"){ newIndex++; } if(oldIndex < newIndex){ newIndex--; } cm.moveColumn(oldIndex, newIndex); return true; } return false; } }); Ext.grid.GridView.ColumnDragZone = Ext.extend(Ext.grid.HeaderDragZone, { constructor : function(grid, hd){ Ext.grid.GridView.ColumnDragZone.superclass.constructor.call(this, grid, hd, null); this.proxy.el.addClass('x-grid3-col-dd'); }, handleMouseDown : function(e){ }, callHandleMouseDown : function(e){ Ext.grid.GridView.ColumnDragZone.superclass.handleMouseDown.call(this, e); } }); Ext.grid.SplitDragZone = Ext.extend(Ext.dd.DDProxy, { fly: Ext.Element.fly, constructor : function(grid, hd, hd2){ this.grid = grid; this.view = grid.getView(); this.proxy = this.view.resizeProxy; Ext.grid.SplitDragZone.superclass.constructor.call(this, hd, "gridSplitters" + this.grid.getGridEl().id, { dragElId : Ext.id(this.proxy.dom), resizeFrame:false }); this.setHandleElId(Ext.id(hd)); this.setOuterHandleElId(Ext.id(hd2)); this.scroll = false; }, b4StartDrag : function(x, y){ this.view.headersDisabled = true; this.proxy.setHeight(this.view.mainWrap.getHeight()); var w = this.cm.getColumnWidth(this.cellIndex); var minw = Math.max(w-this.grid.minColumnWidth, 0); this.resetConstraints(); this.setXConstraint(minw, 1000); this.setYConstraint(0, 0); this.minX = x - minw; this.maxX = x + 1000; this.startPos = x; Ext.dd.DDProxy.prototype.b4StartDrag.call(this, x, y); }, handleMouseDown : function(e){ var ev = Ext.EventObject.setEvent(e); var t = this.fly(ev.getTarget()); if(t.hasClass("x-grid-split")){ this.cellIndex = this.view.getCellIndex(t.dom); this.split = t.dom; this.cm = this.grid.colModel; if(this.cm.isResizable(this.cellIndex) && !this.cm.isFixed(this.cellIndex)){ Ext.grid.SplitDragZone.superclass.handleMouseDown.apply(this, arguments); } } }, endDrag : function(e){ this.view.headersDisabled = false; var endX = Math.max(this.minX, Ext.lib.Event.getPageX(e)); var diff = endX - this.startPos; this.view.onColumnSplitterMoved(this.cellIndex, this.cm.getColumnWidth(this.cellIndex)+diff); }, autoOffset : function(){ this.setDelta(0,0); } }); Ext.grid.GridDragZone = function(grid, config){ this.view = grid.getView(); Ext.grid.GridDragZone.superclass.constructor.call(this, this.view.mainBody.dom, config); this.scroll = false; this.grid = grid; this.ddel = document.createElement('div'); this.ddel.className = 'x-grid-dd-wrap'; this.preventDefault = true; }; Ext.extend(Ext.grid.GridDragZone, Ext.dd.DragZone, { ddGroup : "GridDD", getDragData : function(e){ var t = Ext.lib.Event.getTarget(e), sm, rowIndex = this.view.findRowIndex(t), cellIndex, selectedCell, selection; if (rowIndex !== false){ sm = this.grid.selModel; if (sm.getSelectedCell) { cellIndex = this.view.findCellIndex(t); selectedCell = sm.getSelectedCell(); if (!selectedCell || selectedCell[0] !== rowIndex || selectedCell[1] !== cellIndex) { sm.handleMouseDown(this.grid, rowIndex, cellIndex, e); } if (this.grid.dragCell) { selection = sm.getSelectedCell(); if (!this.grid.hasOwnProperty('ddText')) { this.grid.ddText = '{0} selected cell{1}'; } } else { selection = [this.grid.store.getAt(rowIndex)]; } } else { if(!sm.isSelected(rowIndex) || e.hasModifier()){ sm.handleMouseDown(this.grid, rowIndex, e); } selection = sm.getSelections(); } return {grid: this.grid, ddel: this.ddel, rowIndex: rowIndex, selections: selection}; } return false; }, onInitDrag : function(e){ var data = this.dragData; this.ddel.innerHTML = this.grid.getDragDropText(); this.proxy.update(this.ddel); }, afterRepair : function(){ this.dragging = false; }, getRepairXY : function(e, data){ return false; }, onEndDrag : function(data, e){ }, onValidDrop : function(dd, e, id){ this.hideProxy(); }, beforeInvalidDrop : function(e, id){ } }); Ext.grid.ColumnModel = Ext.extend(Ext.util.Observable, { defaultWidth: 100, defaultSortable: false, constructor : function(config) { if (config.columns) { Ext.apply(this, config); this.setConfig(config.columns, true); } else { this.setConfig(config, true); } this.addEvents( "widthchange", "headerchange", "hiddenchange", "columnmoved", "configchange" ); Ext.grid.ColumnModel.superclass.constructor.call(this); }, getColumnId : function(index) { return this.config[index].id; }, getColumnAt : function(index) { return this.config[index]; }, setConfig : function(config, initial) { var i, c, len; if (!initial) { delete this.totalWidth; for (i = 0, len = this.config.length; i < len; i++) { c = this.config[i]; if (c.setEditor) { c.setEditor(null); } } } this.defaults = Ext.apply({ width: this.defaultWidth, sortable: this.defaultSortable }, this.defaults); this.config = config; this.lookup = {}; for (i = 0, len = config.length; i < len; i++) { c = Ext.applyIf(config[i], this.defaults); if (Ext.isEmpty(c.id)) { c.id = i; } if (!c.isColumn) { var Cls = Ext.grid.Column.types[c.xtype || 'gridcolumn']; c = new Cls(c); config[i] = c; } this.lookup[c.id] = c; } if (!initial) { this.fireEvent('configchange', this); } }, getColumnById : function(id) { return this.lookup[id]; }, getIndexById : function(id) { for (var i = 0, len = this.config.length; i < len; i++) { if (this.config[i].id == id) { return i; } } return -1; }, moveColumn : function(oldIndex, newIndex) { var config = this.config, c = config[oldIndex]; config.splice(oldIndex, 1); config.splice(newIndex, 0, c); this.dataMap = null; this.fireEvent("columnmoved", this, oldIndex, newIndex); }, getColumnCount : function(visibleOnly) { var length = this.config.length, c = 0, i; if (visibleOnly === true) { for (i = 0; i < length; i++) { if (!this.isHidden(i)) { c++; } } return c; } return length; }, getColumnsBy : function(fn, scope) { var config = this.config, length = config.length, result = [], i, c; for (i = 0; i < length; i++){ c = config[i]; if (fn.call(scope || this, c, i) === true) { result[result.length] = c; } } return result; }, isSortable : function(col) { return !!this.config[col].sortable; }, isMenuDisabled : function(col) { return !!this.config[col].menuDisabled; }, getRenderer : function(col) { return this.config[col].renderer || Ext.grid.ColumnModel.defaultRenderer; }, getRendererScope : function(col) { return this.config[col].scope; }, setRenderer : function(col, fn) { this.config[col].renderer = fn; }, getColumnWidth : function(col) { var width = this.config[col].width; if(typeof width != 'number'){ width = this.defaultWidth; } return width; }, setColumnWidth : function(col, width, suppressEvent) { this.config[col].width = width; this.totalWidth = null; if (!suppressEvent) { this.fireEvent("widthchange", this, col, width); } }, getTotalWidth : function(includeHidden) { if (!this.totalWidth) { this.totalWidth = 0; for (var i = 0, len = this.config.length; i < len; i++) { if (includeHidden || !this.isHidden(i)) { this.totalWidth += this.getColumnWidth(i); } } } return this.totalWidth; }, getColumnHeader : function(col) { return this.config[col].header; }, setColumnHeader : function(col, header) { this.config[col].header = header; this.fireEvent("headerchange", this, col, header); }, getColumnTooltip : function(col) { return this.config[col].tooltip; }, setColumnTooltip : function(col, tooltip) { this.config[col].tooltip = tooltip; }, getDataIndex : function(col) { return this.config[col].dataIndex; }, setDataIndex : function(col, dataIndex) { this.config[col].dataIndex = dataIndex; }, findColumnIndex : function(dataIndex) { var c = this.config; for(var i = 0, len = c.length; i < len; i++){ if(c[i].dataIndex == dataIndex){ return i; } } return -1; }, isCellEditable : function(colIndex, rowIndex) { var c = this.config[colIndex], ed = c.editable; return !!(ed || (!Ext.isDefined(ed) && c.editor)); }, getCellEditor : function(colIndex, rowIndex) { return this.config[colIndex].getCellEditor(rowIndex); }, setEditable : function(col, editable) { this.config[col].editable = editable; }, isHidden : function(colIndex) { return !!this.config[colIndex].hidden; }, isFixed : function(colIndex) { return !!this.config[colIndex].fixed; }, isResizable : function(colIndex) { return colIndex >= 0 && this.config[colIndex].resizable !== false && this.config[colIndex].fixed !== true; }, setHidden : function(colIndex, hidden) { var c = this.config[colIndex]; if(c.hidden !== hidden){ c.hidden = hidden; this.totalWidth = null; this.fireEvent("hiddenchange", this, colIndex, hidden); } }, setEditor : function(col, editor) { this.config[col].setEditor(editor); }, destroy : function() { var length = this.config.length, i = 0; for (; i < length; i++){ this.config[i].destroy(); } delete this.config; delete this.lookup; this.purgeListeners(); }, setState : function(col, state) { state = Ext.applyIf(state, this.defaults); Ext.apply(this.config[col], state); } }); Ext.grid.ColumnModel.defaultRenderer = function(value) { if (typeof value == "string" && value.length < 1) { return " "; } return value; }; Ext.grid.AbstractSelectionModel = Ext.extend(Ext.util.Observable, { constructor : function(){ this.locked = false; Ext.grid.AbstractSelectionModel.superclass.constructor.call(this); }, init : function(grid){ this.grid = grid; if(this.lockOnInit){ delete this.lockOnInit; this.locked = false; this.lock(); } this.initEvents(); }, lock : function(){ if(!this.locked){ this.locked = true; var g = this.grid; if(g){ g.getView().on({ scope: this, beforerefresh: this.sortUnLock, refresh: this.sortLock }); }else{ this.lockOnInit = true; } } }, sortLock : function() { this.locked = true; }, sortUnLock : function() { this.locked = false; }, unlock : function(){ if(this.locked){ this.locked = false; var g = this.grid, gv; if(g){ gv = g.getView(); gv.un('beforerefresh', this.sortUnLock, this); gv.un('refresh', this.sortLock, this); }else{ delete this.lockOnInit; } } }, isLocked : function(){ return this.locked; }, destroy: function(){ this.unlock(); this.purgeListeners(); } }); Ext.grid.RowSelectionModel = Ext.extend(Ext.grid.AbstractSelectionModel, { singleSelect : false, constructor : function(config){ Ext.apply(this, config); this.selections = new Ext.util.MixedCollection(false, function(o){ return o.id; }); this.last = false; this.lastActive = false; this.addEvents( 'selectionchange', 'beforerowselect', 'rowselect', 'rowdeselect' ); Ext.grid.RowSelectionModel.superclass.constructor.call(this); }, initEvents : function(){ if(!this.grid.enableDragDrop && !this.grid.enableDrag){ this.grid.on('rowmousedown', this.handleMouseDown, this); } this.rowNav = new Ext.KeyNav(this.grid.getGridEl(), { up: this.onKeyPress, down: this.onKeyPress, scope: this }); this.grid.getView().on({ scope: this, refresh: this.onRefresh, rowupdated: this.onRowUpdated, rowremoved: this.onRemove }); }, onKeyPress : function(e, name){ var up = name == 'up', method = up ? 'selectPrevious' : 'selectNext', add = up ? -1 : 1, last; if(!e.shiftKey || this.singleSelect){ this[method](false); }else if(this.last !== false && this.lastActive !== false){ last = this.last; this.selectRange(this.last, this.lastActive + add); this.grid.getView().focusRow(this.lastActive); if(last !== false){ this.last = last; } }else{ this.selectFirstRow(); } }, onRefresh : function(){ var ds = this.grid.store, s = this.getSelections(), i = 0, len = s.length, index, r; this.silent = true; this.clearSelections(true); for(; i < len; i++){ r = s[i]; if((index = ds.indexOfId(r.id)) != -1){ this.selectRow(index, true); } } if(s.length != this.selections.getCount()){ this.fireEvent('selectionchange', this); } this.silent = false; }, onRemove : function(v, index, r){ if(this.selections.remove(r) !== false){ this.fireEvent('selectionchange', this); } }, onRowUpdated : function(v, index, r){ if(this.isSelected(r)){ v.onRowSelect(index); } }, selectRecords : function(records, keepExisting){ if(!keepExisting){ this.clearSelections(); } var ds = this.grid.store, i = 0, len = records.length; for(; i < len; i++){ this.selectRow(ds.indexOf(records[i]), true); } }, getCount : function(){ return this.selections.length; }, selectFirstRow : function(){ this.selectRow(0); }, selectLastRow : function(keepExisting){ this.selectRow(this.grid.store.getCount() - 1, keepExisting); }, selectNext : function(keepExisting){ if(this.hasNext()){ this.selectRow(this.last+1, keepExisting); this.grid.getView().focusRow(this.last); return true; } return false; }, selectPrevious : function(keepExisting){ if(this.hasPrevious()){ this.selectRow(this.last-1, keepExisting); this.grid.getView().focusRow(this.last); return true; } return false; }, hasNext : function(){ return this.last !== false && (this.last+1) < this.grid.store.getCount(); }, hasPrevious : function(){ return !!this.last; }, getSelections : function(){ return [].concat(this.selections.items); }, getSelected : function(){ return this.selections.itemAt(0); }, each : function(fn, scope){ var s = this.getSelections(), i = 0, len = s.length; for(; i < len; i++){ if(fn.call(scope || this, s[i], i) === false){ return false; } } return true; }, clearSelections : function(fast){ if(this.isLocked()){ return; } if(fast !== true){ var ds = this.grid.store, s = this.selections; s.each(function(r){ this.deselectRow(ds.indexOfId(r.id)); }, this); s.clear(); }else{ this.selections.clear(); } this.last = false; }, selectAll : function(){ if(this.isLocked()){ return; } this.selections.clear(); for(var i = 0, len = this.grid.store.getCount(); i < len; i++){ this.selectRow(i, true); } }, hasSelection : function(){ return this.selections.length > 0; }, isSelected : function(index){ var r = Ext.isNumber(index) ? this.grid.store.getAt(index) : index; return (r && this.selections.key(r.id) ? true : false); }, isIdSelected : function(id){ return (this.selections.key(id) ? true : false); }, handleMouseDown : function(g, rowIndex, e){ if(e.button !== 0 || this.isLocked()){ return; } var view = this.grid.getView(); if(e.shiftKey && !this.singleSelect && this.last !== false){ var last = this.last; this.selectRange(last, rowIndex, e.ctrlKey); this.last = last; view.focusRow(rowIndex); }else{ var isSelected = this.isSelected(rowIndex); if(e.ctrlKey && isSelected){ this.deselectRow(rowIndex); }else if(!isSelected || this.getCount() > 1){ this.selectRow(rowIndex, e.ctrlKey || e.shiftKey); view.focusRow(rowIndex); } } }, selectRows : function(rows, keepExisting){ if(!keepExisting){ this.clearSelections(); } for(var i = 0, len = rows.length; i < len; i++){ this.selectRow(rows[i], true); } }, selectRange : function(startRow, endRow, keepExisting){ var i; if(this.isLocked()){ return; } if(!keepExisting){ this.clearSelections(); } if(startRow <= endRow){ for(i = startRow; i <= endRow; i++){ this.selectRow(i, true); } }else{ for(i = startRow; i >= endRow; i--){ this.selectRow(i, true); } } }, deselectRange : function(startRow, endRow, preventViewNotify){ if(this.isLocked()){ return; } for(var i = startRow; i <= endRow; i++){ this.deselectRow(i, preventViewNotify); } }, selectRow : function(index, keepExisting, preventViewNotify){ if(this.isLocked() || (index < 0 || index >= this.grid.store.getCount()) || (keepExisting && this.isSelected(index))){ return; } var r = this.grid.store.getAt(index); if(r && this.fireEvent('beforerowselect', this, index, keepExisting, r) !== false){ if(!keepExisting || this.singleSelect){ this.clearSelections(); } this.selections.add(r); this.last = this.lastActive = index; if(!preventViewNotify){ this.grid.getView().onRowSelect(index); } if(!this.silent){ this.fireEvent('rowselect', this, index, r); this.fireEvent('selectionchange', this); } } }, deselectRow : function(index, preventViewNotify){ if(this.isLocked()){ return; } if(this.last == index){ this.last = false; } if(this.lastActive == index){ this.lastActive = false; } var r = this.grid.store.getAt(index); if(r){ this.selections.remove(r); if(!preventViewNotify){ this.grid.getView().onRowDeselect(index); } this.fireEvent('rowdeselect', this, index, r); this.fireEvent('selectionchange', this); } }, acceptsNav : function(row, col, cm){ return !cm.isHidden(col) && cm.isCellEditable(col, row); }, onEditorKey : function(field, e){ var k = e.getKey(), newCell, g = this.grid, last = g.lastEdit, ed = g.activeEditor, shift = e.shiftKey, ae, last, r, c; if(k == e.TAB){ e.stopEvent(); ed.completeEdit(); if(shift){ newCell = g.walkCells(ed.row, ed.col-1, -1, this.acceptsNav, this); }else{ newCell = g.walkCells(ed.row, ed.col+1, 1, this.acceptsNav, this); } }else if(k == e.ENTER){ if(this.moveEditorOnEnter !== false){ if(shift){ newCell = g.walkCells(last.row - 1, last.col, -1, this.acceptsNav, this); }else{ newCell = g.walkCells(last.row + 1, last.col, 1, this.acceptsNav, this); } } } if(newCell){ r = newCell[0]; c = newCell[1]; this.onEditorSelect(r, last.row); if(g.isEditor && g.editing){ ae = g.activeEditor; if(ae && ae.field.triggerBlur){ ae.field.triggerBlur(); } } g.startEditing(r, c); } }, onEditorSelect: function(row, lastRow){ if(lastRow != row){ this.selectRow(row); } }, destroy : function(){ Ext.destroy(this.rowNav); this.rowNav = null; Ext.grid.RowSelectionModel.superclass.destroy.call(this); } }); Ext.grid.Column = Ext.extend(Ext.util.Observable, { isColumn : true, constructor : function(config){ Ext.apply(this, config); if(Ext.isString(this.renderer)){ this.renderer = Ext.util.Format[this.renderer]; }else if(Ext.isObject(this.renderer)){ this.scope = this.renderer.scope; this.renderer = this.renderer.fn; } if(!this.scope){ this.scope = this; } var ed = this.editor; delete this.editor; this.setEditor(ed); this.addEvents( 'click', 'contextmenu', 'dblclick', 'mousedown' ); Ext.grid.Column.superclass.constructor.call(this); }, processEvent : function(name, e, grid, rowIndex, colIndex){ return this.fireEvent(name, this, grid, rowIndex, e); }, destroy: function() { if(this.setEditor){ this.setEditor(null); } this.purgeListeners(); }, renderer : function(value){ return value; }, getEditor: function(rowIndex){ return this.editable !== false ? this.editor : null; }, setEditor : function(editor){ var ed = this.editor; if(ed){ if(ed.gridEditor){ ed.gridEditor.destroy(); delete ed.gridEditor; }else{ ed.destroy(); } } this.editor = null; if(editor){ if(!editor.isXType){ editor = Ext.create(editor, 'textfield'); } this.editor = editor; } }, getCellEditor: function(rowIndex){ var ed = this.getEditor(rowIndex); if(ed){ if(!ed.startEdit){ if(!ed.gridEditor){ ed.gridEditor = new Ext.grid.GridEditor(ed); } ed = ed.gridEditor; } } return ed; } }); Ext.grid.BooleanColumn = Ext.extend(Ext.grid.Column, { trueText: 'true', falseText: 'false', undefinedText: ' ', constructor: function(cfg){ Ext.grid.BooleanColumn.superclass.constructor.call(this, cfg); var t = this.trueText, f = this.falseText, u = this.undefinedText; this.renderer = function(v){ if(v === undefined){ return u; } if(!v || v === 'false'){ return f; } return t; }; } }); Ext.grid.NumberColumn = Ext.extend(Ext.grid.Column, { format : '0,000.00', constructor: function(cfg){ Ext.grid.NumberColumn.superclass.constructor.call(this, cfg); this.renderer = Ext.util.Format.numberRenderer(this.format); } }); Ext.grid.DateColumn = Ext.extend(Ext.grid.Column, { format : 'm/d/Y', constructor: function(cfg){ Ext.grid.DateColumn.superclass.constructor.call(this, cfg); this.renderer = Ext.util.Format.dateRenderer(this.format); } }); Ext.grid.TemplateColumn = Ext.extend(Ext.grid.Column, { constructor: function(cfg){ Ext.grid.TemplateColumn.superclass.constructor.call(this, cfg); var tpl = (!Ext.isPrimitive(this.tpl) && this.tpl.compile) ? this.tpl : new Ext.XTemplate(this.tpl); this.renderer = function(value, p, r){ return tpl.apply(r.data); }; this.tpl = tpl; } }); Ext.grid.ActionColumn = Ext.extend(Ext.grid.Column, { header: ' ', actionIdRe: /x-action-col-(\d+)/, altText: '', constructor: function(cfg) { var me = this, items = cfg.items || (me.items = [me]), l = items.length, i, item; Ext.grid.ActionColumn.superclass.constructor.call(me, cfg); me.renderer = function(v, meta) { v = Ext.isFunction(cfg.renderer) ? cfg.renderer.apply(this, arguments)||'' : ''; meta.css += ' x-action-col-cell'; for (i = 0; i < l; i++) { item = items[i]; v += '' + (item.altText || me.altText) + ''; } return v; }; }, destroy: function() { delete this.items; delete this.renderer; return Ext.grid.ActionColumn.superclass.destroy.apply(this, arguments); }, processEvent : function(name, e, grid, rowIndex, colIndex){ var m = e.getTarget().className.match(this.actionIdRe), item, fn; if (m && (item = this.items[parseInt(m[1], 10)])) { if (name == 'click') { (fn = item.handler || this.handler) && fn.call(item.scope||this.scope||this, grid, rowIndex, colIndex, item, e); } else if ((name == 'mousedown') && (item.stopSelection !== false)) { return false; } } return Ext.grid.ActionColumn.superclass.processEvent.apply(this, arguments); } }); Ext.grid.Column.types = { gridcolumn : Ext.grid.Column, booleancolumn: Ext.grid.BooleanColumn, numbercolumn: Ext.grid.NumberColumn, datecolumn: Ext.grid.DateColumn, templatecolumn: Ext.grid.TemplateColumn, actioncolumn: Ext.grid.ActionColumn }; Ext.grid.RowNumberer = Ext.extend(Object, { header: "", width: 23, sortable: false, constructor : function(config){ Ext.apply(this, config); if(this.rowspan){ this.renderer = this.renderer.createDelegate(this); } }, fixed:true, hideable: false, menuDisabled:true, dataIndex: '', id: 'numberer', rowspan: undefined, renderer : function(v, p, record, rowIndex){ if(this.rowspan){ p.cellAttr = 'rowspan="'+this.rowspan+'"'; } return rowIndex+1; } }); Ext.grid.CheckboxSelectionModel = Ext.extend(Ext.grid.RowSelectionModel, { header : '
       
      ', width : 20, sortable : false, menuDisabled : true, fixed : true, hideable: false, dataIndex : '', id : 'checker', isColumn: true, constructor : function(){ Ext.grid.CheckboxSelectionModel.superclass.constructor.apply(this, arguments); if(this.checkOnly){ this.handleMouseDown = Ext.emptyFn; } }, initEvents : function(){ Ext.grid.CheckboxSelectionModel.superclass.initEvents.call(this); this.grid.on('render', function(){ Ext.fly(this.grid.getView().innerHd).on('mousedown', this.onHdMouseDown, this); }, this); }, processEvent : function(name, e, grid, rowIndex, colIndex){ if (name == 'mousedown') { this.onMouseDown(e, e.getTarget()); return false; } else { return Ext.grid.Column.prototype.processEvent.apply(this, arguments); } }, onMouseDown : function(e, t){ if(e.button === 0 && t.className == 'x-grid3-row-checker'){ e.stopEvent(); var row = e.getTarget('.x-grid3-row'); if(row){ var index = row.rowIndex; if(this.isSelected(index)){ this.deselectRow(index); }else{ this.selectRow(index, true); this.grid.getView().focusRow(index); } } } }, onHdMouseDown : function(e, t) { if(t.className == 'x-grid3-hd-checker'){ e.stopEvent(); var hd = Ext.fly(t.parentNode); var isChecked = hd.hasClass('x-grid3-hd-checker-on'); if(isChecked){ hd.removeClass('x-grid3-hd-checker-on'); this.clearSelections(); }else{ hd.addClass('x-grid3-hd-checker-on'); this.selectAll(); } } }, renderer : function(v, p, record){ return '
       
      '; }, onEditorSelect: function(row, lastRow){ if(lastRow != row && !this.checkOnly){ this.selectRow(row); } } }); Ext.grid.CellSelectionModel = Ext.extend(Ext.grid.AbstractSelectionModel, { constructor : function(config){ Ext.apply(this, config); this.selection = null; this.addEvents( "beforecellselect", "cellselect", "selectionchange" ); Ext.grid.CellSelectionModel.superclass.constructor.call(this); }, initEvents : function(){ this.grid.on('cellmousedown', this.handleMouseDown, this); this.grid.on(Ext.EventManager.getKeyEvent(), this.handleKeyDown, this); this.grid.getView().on({ scope: this, refresh: this.onViewChange, rowupdated: this.onRowUpdated, beforerowremoved: this.clearSelections, beforerowsinserted: this.clearSelections }); if(this.grid.isEditor){ this.grid.on('beforeedit', this.beforeEdit, this); } }, beforeEdit : function(e){ this.select(e.row, e.column, false, true, e.record); }, onRowUpdated : function(v, index, r){ if(this.selection && this.selection.record == r){ v.onCellSelect(index, this.selection.cell[1]); } }, onViewChange : function(){ this.clearSelections(true); }, getSelectedCell : function(){ return this.selection ? this.selection.cell : null; }, clearSelections : function(preventNotify){ var s = this.selection; if(s){ if(preventNotify !== true){ this.grid.view.onCellDeselect(s.cell[0], s.cell[1]); } this.selection = null; this.fireEvent("selectionchange", this, null); } }, hasSelection : function(){ return this.selection ? true : false; }, handleMouseDown : function(g, row, cell, e){ if(e.button !== 0 || this.isLocked()){ return; } this.select(row, cell); }, select : function(rowIndex, colIndex, preventViewNotify, preventFocus, r){ if(this.fireEvent("beforecellselect", this, rowIndex, colIndex) !== false){ this.clearSelections(); r = r || this.grid.store.getAt(rowIndex); this.selection = { record : r, cell : [rowIndex, colIndex] }; if(!preventViewNotify){ var v = this.grid.getView(); v.onCellSelect(rowIndex, colIndex); if(preventFocus !== true){ v.focusCell(rowIndex, colIndex); } } this.fireEvent("cellselect", this, rowIndex, colIndex); this.fireEvent("selectionchange", this, this.selection); } }, isSelectable : function(rowIndex, colIndex, cm){ return !cm.isHidden(colIndex); }, onEditorKey: function(field, e){ if(e.getKey() == e.TAB){ this.handleKeyDown(e); } }, handleKeyDown : function(e){ if(!e.isNavKeyPress()){ return; } var k = e.getKey(), g = this.grid, s = this.selection, sm = this, walk = function(row, col, step){ return g.walkCells( row, col, step, g.isEditor && g.editing ? sm.acceptsNav : sm.isSelectable, sm ); }, cell, newCell, r, c, ae; switch(k){ case e.ESC: case e.PAGE_UP: case e.PAGE_DOWN: break; default: e.stopEvent(); break; } if(!s){ cell = walk(0, 0, 1); if(cell){ this.select(cell[0], cell[1]); } return; } cell = s.cell; r = cell[0]; c = cell[1]; switch(k){ case e.TAB: if(e.shiftKey){ newCell = walk(r, c - 1, -1); }else{ newCell = walk(r, c + 1, 1); } break; case e.DOWN: newCell = walk(r + 1, c, 1); break; case e.UP: newCell = walk(r - 1, c, -1); break; case e.RIGHT: newCell = walk(r, c + 1, 1); break; case e.LEFT: newCell = walk(r, c - 1, -1); break; case e.ENTER: if (g.isEditor && !g.editing) { g.startEditing(r, c); return; } break; } if(newCell){ r = newCell[0]; c = newCell[1]; this.select(r, c); if(g.isEditor && g.editing){ ae = g.activeEditor; if(ae && ae.field.triggerBlur){ ae.field.triggerBlur(); } g.startEditing(r, c); } } }, acceptsNav : function(row, col, cm){ return !cm.isHidden(col) && cm.isCellEditable(col, row); } }); Ext.grid.EditorGridPanel = Ext.extend(Ext.grid.GridPanel, { clicksToEdit: 2, forceValidation: false, isEditor : true, detectEdit: false, autoEncode : false, trackMouseOver: false, initComponent : function(){ Ext.grid.EditorGridPanel.superclass.initComponent.call(this); if(!this.selModel){ this.selModel = new Ext.grid.CellSelectionModel(); } this.activeEditor = null; this.addEvents( "beforeedit", "afteredit", "validateedit" ); }, initEvents : function(){ Ext.grid.EditorGridPanel.superclass.initEvents.call(this); this.getGridEl().on('mousewheel', this.stopEditing.createDelegate(this, [true]), this); this.on('columnresize', this.stopEditing, this, [true]); if(this.clicksToEdit == 1){ this.on("cellclick", this.onCellDblClick, this); }else { var view = this.getView(); if(this.clicksToEdit == 'auto' && view.mainBody){ view.mainBody.on('mousedown', this.onAutoEditClick, this); } this.on('celldblclick', this.onCellDblClick, this); } }, onResize : function(){ Ext.grid.EditorGridPanel.superclass.onResize.apply(this, arguments); var ae = this.activeEditor; if(this.editing && ae){ ae.realign(true); } }, onCellDblClick : function(g, row, col){ this.startEditing(row, col); }, onAutoEditClick : function(e, t){ if(e.button !== 0){ return; } var row = this.view.findRowIndex(t), col = this.view.findCellIndex(t); if(row !== false && col !== false){ this.stopEditing(); if(this.selModel.getSelectedCell){ var sc = this.selModel.getSelectedCell(); if(sc && sc[0] === row && sc[1] === col){ this.startEditing(row, col); } }else{ if(this.selModel.isSelected(row)){ this.startEditing(row, col); } } } }, onEditComplete : function(ed, value, startValue){ this.editing = false; this.lastActiveEditor = this.activeEditor; this.activeEditor = null; var r = ed.record, field = this.colModel.getDataIndex(ed.col); value = this.postEditValue(value, startValue, r, field); if(this.forceValidation === true || String(value) !== String(startValue)){ var e = { grid: this, record: r, field: field, originalValue: startValue, value: value, row: ed.row, column: ed.col, cancel:false }; if(this.fireEvent("validateedit", e) !== false && !e.cancel && String(value) !== String(startValue)){ r.set(field, e.value); delete e.cancel; this.fireEvent("afteredit", e); } } this.view.focusCell(ed.row, ed.col); }, startEditing : function(row, col){ this.stopEditing(); if(this.colModel.isCellEditable(col, row)){ this.view.ensureVisible(row, col, true); var r = this.store.getAt(row), field = this.colModel.getDataIndex(col), e = { grid: this, record: r, field: field, value: r.data[field], row: row, column: col, cancel:false }; if(this.fireEvent("beforeedit", e) !== false && !e.cancel){ this.editing = true; var ed = this.colModel.getCellEditor(col, row); if(!ed){ return; } if(!ed.rendered){ ed.parentEl = this.view.getEditorParent(ed); ed.on({ scope: this, render: { fn: function(c){ c.field.focus(false, true); }, single: true, scope: this }, specialkey: function(field, e){ this.getSelectionModel().onEditorKey(field, e); }, complete: this.onEditComplete, canceledit: this.stopEditing.createDelegate(this, [true]) }); } Ext.apply(ed, { row : row, col : col, record : r }); this.lastEdit = { row: row, col: col }; this.activeEditor = ed; if (ed.field.isXType('checkbox')) { ed.allowBlur = false; this.setupCheckbox(ed.field); } ed.selectSameEditor = (this.activeEditor == this.lastActiveEditor); var v = this.preEditValue(r, field); ed.startEdit(this.view.getCell(row, col).firstChild, Ext.isDefined(v) ? v : ''); (function(){ delete ed.selectSameEditor; }).defer(50); } } }, setupCheckbox: function(field){ var me = this, fn = function() { field.el.on('click', me.onCheckClick, me, {single: true}); }; if (field.rendered) { fn(); } else { field.on('render', fn, null, {single: true}); } }, onCheckClick: function(){ var ed = this.activeEditor; ed.allowBlur = true; ed.field.focus(false, 10); }, preEditValue : function(r, field){ var value = r.data[field]; return this.autoEncode && Ext.isString(value) ? Ext.util.Format.htmlDecode(value) : value; }, postEditValue : function(value, originalValue, r, field){ return this.autoEncode && Ext.isString(value) ? Ext.util.Format.htmlEncode(value) : value; }, stopEditing : function(cancel){ if(this.editing){ var ae = this.lastActiveEditor = this.activeEditor; if(ae){ ae[cancel === true ? 'cancelEdit' : 'completeEdit'](); this.view.focusCell(ae.row, ae.col); } this.activeEditor = null; } this.editing = false; } }); Ext.reg('editorgrid', Ext.grid.EditorGridPanel); Ext.grid.GridEditor = function(field, config){ Ext.grid.GridEditor.superclass.constructor.call(this, field, config); field.monitorTab = false; }; Ext.extend(Ext.grid.GridEditor, Ext.Editor, { alignment: "tl-tl", autoSize: "width", hideEl : false, cls: "x-small-editor x-grid-editor", shim:false, shadow:false }); Ext.grid.PropertyRecord = Ext.data.Record.create([ {name:'name',type:'string'}, 'value' ]); Ext.grid.PropertyStore = Ext.extend(Ext.util.Observable, { constructor : function(grid, source){ this.grid = grid; this.store = new Ext.data.Store({ recordType : Ext.grid.PropertyRecord }); this.store.on('update', this.onUpdate, this); if(source){ this.setSource(source); } Ext.grid.PropertyStore.superclass.constructor.call(this); }, setSource : function(o){ this.source = o; this.store.removeAll(); var data = []; for(var k in o){ if(this.isEditableValue(o[k])){ data.push(new Ext.grid.PropertyRecord({name: k, value: o[k]}, k)); } } this.store.loadRecords({records: data}, {}, true); }, onUpdate : function(ds, record, type){ if(type == Ext.data.Record.EDIT){ var v = record.data.value; var oldValue = record.modified.value; if(this.grid.fireEvent('beforepropertychange', this.source, record.id, v, oldValue) !== false){ this.source[record.id] = v; record.commit(); this.grid.fireEvent('propertychange', this.source, record.id, v, oldValue); }else{ record.reject(); } } }, getProperty : function(row){ return this.store.getAt(row); }, isEditableValue: function(val){ return Ext.isPrimitive(val) || Ext.isDate(val); }, setValue : function(prop, value, create){ var r = this.getRec(prop); if(r){ r.set('value', value); this.source[prop] = value; }else if(create){ this.source[prop] = value; r = new Ext.grid.PropertyRecord({name: prop, value: value}, prop); this.store.add(r); } }, remove : function(prop){ var r = this.getRec(prop); if(r){ this.store.remove(r); delete this.source[prop]; } }, getRec : function(prop){ return this.store.getById(prop); }, getSource : function(){ return this.source; } }); Ext.grid.PropertyColumnModel = Ext.extend(Ext.grid.ColumnModel, { nameText : 'Name', valueText : 'Value', dateFormat : 'm/j/Y', trueText: 'true', falseText: 'false', constructor : function(grid, store){ var g = Ext.grid, f = Ext.form; this.grid = grid; g.PropertyColumnModel.superclass.constructor.call(this, [ {header: this.nameText, width:50, sortable: true, dataIndex:'name', id: 'name', menuDisabled:true}, {header: this.valueText, width:50, resizable:false, dataIndex: 'value', id: 'value', menuDisabled:true} ]); this.store = store; var bfield = new f.Field({ autoCreate: {tag: 'select', children: [ {tag: 'option', value: 'true', html: this.trueText}, {tag: 'option', value: 'false', html: this.falseText} ]}, getValue : function(){ return this.el.dom.value == 'true'; } }); this.editors = { 'date' : new g.GridEditor(new f.DateField({selectOnFocus:true})), 'string' : new g.GridEditor(new f.TextField({selectOnFocus:true})), 'number' : new g.GridEditor(new f.NumberField({selectOnFocus:true, style:'text-align:left;'})), 'boolean' : new g.GridEditor(bfield, { autoSize: 'both' }) }; this.renderCellDelegate = this.renderCell.createDelegate(this); this.renderPropDelegate = this.renderProp.createDelegate(this); }, renderDate : function(dateVal){ return dateVal.dateFormat(this.dateFormat); }, renderBool : function(bVal){ return this[bVal ? 'trueText' : 'falseText']; }, isCellEditable : function(colIndex, rowIndex){ return colIndex == 1; }, getRenderer : function(col){ return col == 1 ? this.renderCellDelegate : this.renderPropDelegate; }, renderProp : function(v){ return this.getPropertyName(v); }, renderCell : function(val, meta, rec){ var renderer = this.grid.customRenderers[rec.get('name')]; if(renderer){ return renderer.apply(this, arguments); } var rv = val; if(Ext.isDate(val)){ rv = this.renderDate(val); }else if(typeof val == 'boolean'){ rv = this.renderBool(val); } return Ext.util.Format.htmlEncode(rv); }, getPropertyName : function(name){ var pn = this.grid.propertyNames; return pn && pn[name] ? pn[name] : name; }, getCellEditor : function(colIndex, rowIndex){ var p = this.store.getProperty(rowIndex), n = p.data.name, val = p.data.value; if(this.grid.customEditors[n]){ return this.grid.customEditors[n]; } if(Ext.isDate(val)){ return this.editors.date; }else if(typeof val == 'number'){ return this.editors.number; }else if(typeof val == 'boolean'){ return this.editors['boolean']; }else{ return this.editors.string; } }, destroy : function(){ Ext.grid.PropertyColumnModel.superclass.destroy.call(this); this.destroyEditors(this.editors); this.destroyEditors(this.grid.customEditors); }, destroyEditors: function(editors){ for(var ed in editors){ Ext.destroy(editors[ed]); } } }); Ext.grid.PropertyGrid = Ext.extend(Ext.grid.EditorGridPanel, { enableColumnMove:false, stripeRows:false, trackMouseOver: false, clicksToEdit:1, enableHdMenu : false, viewConfig : { forceFit:true }, initComponent : function(){ this.customRenderers = this.customRenderers || {}; this.customEditors = this.customEditors || {}; this.lastEditRow = null; var store = new Ext.grid.PropertyStore(this); this.propStore = store; var cm = new Ext.grid.PropertyColumnModel(this, store); store.store.sort('name', 'ASC'); this.addEvents( 'beforepropertychange', 'propertychange' ); this.cm = cm; this.ds = store.store; Ext.grid.PropertyGrid.superclass.initComponent.call(this); this.mon(this.selModel, 'beforecellselect', function(sm, rowIndex, colIndex){ if(colIndex === 0){ this.startEditing.defer(200, this, [rowIndex, 1]); return false; } }, this); }, onRender : function(){ Ext.grid.PropertyGrid.superclass.onRender.apply(this, arguments); this.getGridEl().addClass('x-props-grid'); }, afterRender: function(){ Ext.grid.PropertyGrid.superclass.afterRender.apply(this, arguments); if(this.source){ this.setSource(this.source); } }, setSource : function(source){ this.propStore.setSource(source); }, getSource : function(){ return this.propStore.getSource(); }, setProperty : function(prop, value, create){ this.propStore.setValue(prop, value, create); }, removeProperty : function(prop){ this.propStore.remove(prop); } }); Ext.reg("propertygrid", Ext.grid.PropertyGrid); Ext.grid.GroupingView = Ext.extend(Ext.grid.GridView, { groupByText : 'Group By This Field', showGroupsText : 'Show in Groups', hideGroupedColumn : false, showGroupName : true, startCollapsed : false, enableGrouping : true, enableGroupingMenu : true, enableNoGroups : true, emptyGroupText : '(None)', ignoreAdd : false, groupTextTpl : '{text}', groupMode: 'value', cancelEditOnToggle: true, initTemplates : function(){ Ext.grid.GroupingView.superclass.initTemplates.call(this); this.state = {}; var sm = this.grid.getSelectionModel(); sm.on(sm.selectRow ? 'beforerowselect' : 'beforecellselect', this.onBeforeRowSelect, this); if(!this.startGroup){ this.startGroup = new Ext.XTemplate( '
      ', '
      ', this.groupTextTpl ,'
      ', '
      ' ); } this.startGroup.compile(); if (!this.endGroup) { this.endGroup = '
      '; } }, findGroup : function(el){ return Ext.fly(el).up('.x-grid-group', this.mainBody.dom); }, getGroups : function(){ return this.hasRows() ? this.mainBody.dom.childNodes : []; }, onAdd : function(ds, records, index) { if (this.canGroup() && !this.ignoreAdd) { var ss = this.getScrollState(); this.fireEvent('beforerowsinserted', ds, index, index + (records.length-1)); this.refresh(); this.restoreScroll(ss); this.fireEvent('rowsinserted', ds, index, index + (records.length-1)); } else if (!this.canGroup()) { Ext.grid.GroupingView.superclass.onAdd.apply(this, arguments); } }, onRemove : function(ds, record, index, isUpdate){ Ext.grid.GroupingView.superclass.onRemove.apply(this, arguments); var g = document.getElementById(record._groupId); if(g && g.childNodes[1].childNodes.length < 1){ Ext.removeNode(g); } this.applyEmptyText(); }, refreshRow : function(record){ if(this.ds.getCount()==1){ this.refresh(); }else{ this.isUpdating = true; Ext.grid.GroupingView.superclass.refreshRow.apply(this, arguments); this.isUpdating = false; } }, beforeMenuShow : function(){ var item, items = this.hmenu.items, disabled = this.cm.config[this.hdCtxIndex].groupable === false; if((item = items.get('groupBy'))){ item.setDisabled(disabled); } if((item = items.get('showGroups'))){ item.setDisabled(disabled); item.setChecked(this.canGroup(), true); } }, renderUI : function(){ var markup = Ext.grid.GroupingView.superclass.renderUI.call(this); if(this.enableGroupingMenu && this.hmenu){ this.hmenu.add('-',{ itemId:'groupBy', text: this.groupByText, handler: this.onGroupByClick, scope: this, iconCls:'x-group-by-icon' }); if(this.enableNoGroups){ this.hmenu.add({ itemId:'showGroups', text: this.showGroupsText, checked: true, checkHandler: this.onShowGroupsClick, scope: this }); } this.hmenu.on('beforeshow', this.beforeMenuShow, this); } return markup; }, processEvent: function(name, e){ Ext.grid.GroupingView.superclass.processEvent.call(this, name, e); var hd = e.getTarget('.x-grid-group-hd', this.mainBody); if(hd){ var field = this.getGroupField(), prefix = this.getPrefix(field), groupValue = hd.id.substring(prefix.length), emptyRe = new RegExp('gp-' + Ext.escapeRe(field) + '--hd'); groupValue = groupValue.substr(0, groupValue.length - 3); if(groupValue || emptyRe.test(hd.id)){ this.grid.fireEvent('group' + name, this.grid, field, groupValue, e); } if(name == 'mousedown' && e.button == 0){ this.toggleGroup(hd.parentNode); } } }, onGroupByClick : function(){ var grid = this.grid; this.enableGrouping = true; grid.store.groupBy(this.cm.getDataIndex(this.hdCtxIndex)); grid.fireEvent('groupchange', grid, grid.store.getGroupState()); this.beforeMenuShow(); this.refresh(); }, onShowGroupsClick : function(mi, checked){ this.enableGrouping = checked; if(checked){ this.onGroupByClick(); }else{ this.grid.store.clearGrouping(); this.grid.fireEvent('groupchange', this, null); } }, toggleRowIndex : function(rowIndex, expanded){ if(!this.canGroup()){ return; } var row = this.getRow(rowIndex); if(row){ this.toggleGroup(this.findGroup(row), expanded); } }, toggleGroup : function(group, expanded){ var gel = Ext.get(group), id = Ext.util.Format.htmlEncode(gel.id); expanded = Ext.isDefined(expanded) ? expanded : gel.hasClass('x-grid-group-collapsed'); if(this.state[id] !== expanded){ if (this.cancelEditOnToggle !== false) { this.grid.stopEditing(true); } this.state[id] = expanded; gel[expanded ? 'removeClass' : 'addClass']('x-grid-group-collapsed'); } }, toggleAllGroups : function(expanded){ var groups = this.getGroups(); for(var i = 0, len = groups.length; i < len; i++){ this.toggleGroup(groups[i], expanded); } }, expandAllGroups : function(){ this.toggleAllGroups(true); }, collapseAllGroups : function(){ this.toggleAllGroups(false); }, getGroup : function(v, r, groupRenderer, rowIndex, colIndex, ds){ var column = this.cm.config[colIndex], g = groupRenderer ? groupRenderer.call(column.scope, v, {}, r, rowIndex, colIndex, ds) : String(v); if(g === '' || g === ' '){ g = column.emptyGroupText || this.emptyGroupText; } return g; }, getGroupField : function(){ return this.grid.store.getGroupState(); }, afterRender : function(){ if(!this.ds || !this.cm){ return; } Ext.grid.GroupingView.superclass.afterRender.call(this); if(this.grid.deferRowRender){ this.updateGroupWidths(); } }, afterRenderUI: function () { Ext.grid.GroupingView.superclass.afterRenderUI.call(this); if (this.enableGroupingMenu && this.hmenu) { this.hmenu.add('-',{ itemId:'groupBy', text: this.groupByText, handler: this.onGroupByClick, scope: this, iconCls:'x-group-by-icon' }); if (this.enableNoGroups) { this.hmenu.add({ itemId:'showGroups', text: this.showGroupsText, checked: true, checkHandler: this.onShowGroupsClick, scope: this }); } this.hmenu.on('beforeshow', this.beforeMenuShow, this); } }, renderRows : function(){ var groupField = this.getGroupField(); var eg = !!groupField; if(this.hideGroupedColumn) { var colIndex = this.cm.findColumnIndex(groupField), hasLastGroupField = Ext.isDefined(this.lastGroupField); if(!eg && hasLastGroupField){ this.mainBody.update(''); this.cm.setHidden(this.cm.findColumnIndex(this.lastGroupField), false); delete this.lastGroupField; }else if (eg && !hasLastGroupField){ this.lastGroupField = groupField; this.cm.setHidden(colIndex, true); }else if (eg && hasLastGroupField && groupField !== this.lastGroupField) { this.mainBody.update(''); var oldIndex = this.cm.findColumnIndex(this.lastGroupField); this.cm.setHidden(oldIndex, false); this.lastGroupField = groupField; this.cm.setHidden(colIndex, true); } } return Ext.grid.GroupingView.superclass.renderRows.apply( this, arguments); }, doRender : function(cs, rs, ds, startRow, colCount, stripe){ if(rs.length < 1){ return ''; } if(!this.canGroup() || this.isUpdating){ return Ext.grid.GroupingView.superclass.doRender.apply(this, arguments); } var groupField = this.getGroupField(), colIndex = this.cm.findColumnIndex(groupField), g, gstyle = 'width:' + this.getTotalWidth() + ';', cfg = this.cm.config[colIndex], groupRenderer = cfg.groupRenderer || cfg.renderer, prefix = this.showGroupName ? (cfg.groupName || cfg.header)+': ' : '', groups = [], curGroup, i, len, gid; for(i = 0, len = rs.length; i < len; i++){ var rowIndex = startRow + i, r = rs[i], gvalue = r.data[groupField]; g = this.getGroup(gvalue, r, groupRenderer, rowIndex, colIndex, ds); if(!curGroup || curGroup.group != g){ gid = this.constructId(gvalue, groupField, colIndex); this.state[gid] = !(Ext.isDefined(this.state[gid]) ? !this.state[gid] : this.startCollapsed); curGroup = { group: g, gvalue: gvalue, text: prefix + g, groupId: gid, startRow: rowIndex, rs: [r], cls: this.state[gid] ? '' : 'x-grid-group-collapsed', style: gstyle }; groups.push(curGroup); }else{ curGroup.rs.push(r); } r._groupId = gid; } var buf = []; for(i = 0, len = groups.length; i < len; i++){ g = groups[i]; this.doGroupStart(buf, g, cs, ds, colCount); buf[buf.length] = Ext.grid.GroupingView.superclass.doRender.call( this, cs, g.rs, ds, g.startRow, colCount, stripe); this.doGroupEnd(buf, g, cs, ds, colCount); } return buf.join(''); }, getGroupId : function(value){ var field = this.getGroupField(); return this.constructId(value, field, this.cm.findColumnIndex(field)); }, constructId : function(value, field, idx){ var cfg = this.cm.config[idx], groupRenderer = cfg.groupRenderer || cfg.renderer, val = (this.groupMode == 'value') ? value : this.getGroup(value, {data:{}}, groupRenderer, 0, idx, this.ds); return this.getPrefix(field) + Ext.util.Format.htmlEncode(val); }, canGroup : function(){ return this.enableGrouping && !!this.getGroupField(); }, getPrefix: function(field){ return this.grid.getGridEl().id + '-gp-' + field + '-'; }, doGroupStart : function(buf, g, cs, ds, colCount){ buf[buf.length] = this.startGroup.apply(g); }, doGroupEnd : function(buf, g, cs, ds, colCount){ buf[buf.length] = this.endGroup; }, getRows : function(){ if(!this.canGroup()){ return Ext.grid.GroupingView.superclass.getRows.call(this); } var r = [], gs = this.getGroups(), g, i = 0, len = gs.length, j, jlen; for(; i < len; ++i){ g = gs[i].childNodes[1]; if(g){ g = g.childNodes; for(j = 0, jlen = g.length; j < jlen; ++j){ r[r.length] = g[j]; } } } return r; }, updateGroupWidths : function(){ if(!this.canGroup() || !this.hasRows()){ return; } var tw = Math.max(this.cm.getTotalWidth(), this.el.dom.offsetWidth-this.getScrollOffset()) +'px'; var gs = this.getGroups(); for(var i = 0, len = gs.length; i < len; i++){ gs[i].firstChild.style.width = tw; } }, onColumnWidthUpdated : function(col, w, tw){ Ext.grid.GroupingView.superclass.onColumnWidthUpdated.call(this, col, w, tw); this.updateGroupWidths(); }, onAllColumnWidthsUpdated : function(ws, tw){ Ext.grid.GroupingView.superclass.onAllColumnWidthsUpdated.call(this, ws, tw); this.updateGroupWidths(); }, onColumnHiddenUpdated : function(col, hidden, tw){ Ext.grid.GroupingView.superclass.onColumnHiddenUpdated.call(this, col, hidden, tw); this.updateGroupWidths(); }, onLayout : function(){ this.updateGroupWidths(); }, onBeforeRowSelect : function(sm, rowIndex){ this.toggleRowIndex(rowIndex, true); } }); Ext.grid.GroupingView.GROUP_ID = 1000; ================================================ FILE: client/src/ext/ext-all.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ (function(){var h=Ext.util,j=Ext.each,g=true,i=false;h.Observable=function(){var k=this,l=k.events;if(k.listeners){k.on(k.listeners);delete k.listeners}k.events=l||{}};h.Observable.prototype={filterOptRe:/^(?:scope|delay|buffer|single)$/,fireEvent:function(){var k=Array.prototype.slice.call(arguments,0),m=k[0].toLowerCase(),n=this,l=g,p=n.events[m],s,o,r;if(n.eventsSuspended===g){if(o=n.eventQueue){o.push(k)}}else{if(typeof p=="object"){if(p.bubble){if(p.fire.apply(p,k.slice(1))===i){return i}r=n.getBubbleTarget&&n.getBubbleTarget();if(r&&r.enableBubble){s=r.events[m];if(!s||typeof s!="object"||!s.bubble){r.enableBubble(m)}return r.fireEvent.apply(r,k)}}else{k.shift();l=p.fire.apply(p,k)}}}return l},addListener:function(k,m,l,r){var n=this,q,s,p;if(typeof k=="object"){r=k;for(q in r){s=r[q];if(!n.filterOptRe.test(q)){n.addListener(q,s.fn||s,s.scope||r.scope,s.fn?s:r)}}}else{k=k.toLowerCase();p=n.events[k]||g;if(typeof p=="boolean"){n.events[k]=p=new h.Event(n,k)}p.addListener(m,l,typeof r=="object"?r:{})}},removeListener:function(k,m,l){var n=this.events[k.toLowerCase()];if(typeof n=="object"){n.removeListener(m,l)}},purgeListeners:function(){var m=this.events,k,l;for(l in m){k=m[l];if(typeof k=="object"){k.clearListeners()}}},addEvents:function(n){var m=this;m.events=m.events||{};if(typeof n=="string"){var k=arguments,l=k.length;while(l--){m.events[k[l]]=m.events[k[l]]||g}}else{Ext.applyIf(m.events,n)}},hasListener:function(k){var l=this.events[k.toLowerCase()];return typeof l=="object"&&l.listeners.length>0},suspendEvents:function(k){this.eventsSuspended=g;if(k&&!this.eventQueue){this.eventQueue=[]}},resumeEvents:function(){var k=this,l=k.eventQueue||[];k.eventsSuspended=i;delete k.eventQueue;j(l,function(m){k.fireEvent.apply(k,m)})}};var d=h.Observable.prototype;d.on=d.addListener;d.un=d.removeListener;h.Observable.releaseCapture=function(k){k.fireEvent=d.fireEvent};function e(l,m,k){return function(){if(m.target==arguments[0]){l.apply(k,Array.prototype.slice.call(arguments,0))}}}function b(n,p,k,m){k.task=new h.DelayedTask();return function(){k.task.delay(p.buffer,n,m,Array.prototype.slice.call(arguments,0))}}function c(m,n,l,k){return function(){n.removeListener(l,k);return m.apply(k,arguments)}}function a(n,p,k,m){return function(){var l=new h.DelayedTask(),o=Array.prototype.slice.call(arguments,0);if(!k.tasks){k.tasks=[]}k.tasks.push(l);l.delay(p.delay||10,function(){k.tasks.remove(l);n.apply(m,o)},m)}}h.Event=function(l,k){this.name=k;this.obj=l;this.listeners=[]};h.Event.prototype={addListener:function(o,n,m){var p=this,k;n=n||p.obj;if(!p.isListening(o,n)){k=p.createListener(o,n,m);if(p.firing){p.listeners=p.listeners.slice(0)}p.listeners.push(k)}},createListener:function(p,n,q){q=q||{};n=n||this.obj;var k={fn:p,scope:n,options:q},m=p;if(q.target){m=e(m,q,n)}if(q.delay){m=a(m,q,k,n)}if(q.single){m=c(m,this,p,n)}if(q.buffer){m=b(m,q,k,n)}k.fireFn=m;return k},findListener:function(o,n){var p=this.listeners,m=p.length,k;n=n||this.obj;while(m--){k=p[m];if(k){if(k.fn==o&&k.scope==n){return m}}}return -1},isListening:function(l,k){return this.findListener(l,k)!=-1},removeListener:function(r,q){var p,m,n,s=this,o=i;if((p=s.findListener(r,q))!=-1){if(s.firing){s.listeners=s.listeners.slice(0)}m=s.listeners[p];if(m.task){m.task.cancel();delete m.task}n=m.tasks&&m.tasks.length;if(n){while(n--){m.tasks[n].cancel()}delete m.tasks}s.listeners.splice(p,1);o=g}return o},clearListeners:function(){var n=this,k=n.listeners,m=k.length;while(m--){n.removeListener(k[m].fn,k[m].scope)}},fire:function(){var q=this,p=q.listeners,k=p.length,o=0,m;if(k>0){q.firing=g;var n=Array.prototype.slice.call(arguments,0);for(;o",i="",b=a+"",j=""+i,l=b+"",w=""+j;function h(B,D,C,E,A,y){var z=r.insertHtml(E,Ext.getDom(B),u(D));return C?Ext.get(z,true):z}function u(D){var z="",y,C,B,E;if(typeof D=="string"){z=D}else{if(Ext.isArray(D)){for(var A=0;A"}}}return z}function g(F,C,B,D){x.innerHTML=[C,B,D].join("");var y=-1,A=x,z;while(++y "'+D+'"'},insertBefore:function(y,A,z){return h(y,A,z,c)},insertAfter:function(y,A,z){return h(y,A,z,p,"nextSibling")},insertFirst:function(y,A,z){return h(y,A,z,n,"firstChild")},append:function(y,A,z){return h(y,A,z,q,"",true)},overwrite:function(y,A,z){y=Ext.getDom(y);y.innerHTML=u(A);return z?Ext.get(y.firstChild):y.firstChild},createHtml:u};return r}();Ext.Template=function(h){var j=this,c=arguments,e=[],d;if(Ext.isArray(h)){h=h.join("")}else{if(c.length>1){for(var g=0,b=c.length;g+~]\s?|\s|$)/,tagTokenRe=/^(#)?([\w\-\*]+)/,nthRe=/(\d*)n\+?(\d*)/,nthRe2=/\D/,isIE=window.ActiveXObject?true:false,key=30803;eval("var batch = 30803;");function child(parent,index){var i=0,n=parent.firstChild;while(n){if(n.nodeType==1){if(++i==index){return n}}n=n.nextSibling}return null}function next(n){while((n=n.nextSibling)&&n.nodeType!=1){}return n}function prev(n){while((n=n.previousSibling)&&n.nodeType!=1){}return n}function children(parent){var n=parent.firstChild,nodeIndex=-1,nextNode;while(n){nextNode=n.nextSibling;if(n.nodeType==3&&!nonSpace.test(n.nodeValue)){parent.removeChild(n)}else{n.nodeIndex=++nodeIndex}n=nextNode}return this}function byClassName(nodeSet,cls){if(!cls){return nodeSet}var result=[],ri=-1;for(var i=0,ci;ci=nodeSet[i];i++){if((" "+ci.className+" ").indexOf(cls)!=-1){result[++ri]=ci}}return result}function attrValue(n,attr){if(!n.tagName&&typeof n.length!="undefined"){n=n[0]}if(!n){return null}if(attr=="for"){return n.htmlFor}if(attr=="class"||attr=="className"){return n.className}return n.getAttribute(attr)||n[attr]}function getNodes(ns,mode,tagName){var result=[],ri=-1,cs;if(!ns){return result}tagName=tagName||"*";if(typeof ns.getElementsByTagName!="undefined"){ns=[ns]}if(!mode){for(var i=0,ni;ni=ns[i];i++){cs=ni.getElementsByTagName(tagName);for(var j=0,ci;ci=cs[j];j++){result[++ri]=ci}}}else{if(mode=="/"||mode==">"){var utag=tagName.toUpperCase();for(var i=0,ni,cn;ni=ns[i];i++){cn=ni.childNodes;for(var j=0,cj;cj=cn[j];j++){if(cj.nodeName==utag||cj.nodeName==tagName||tagName=="*"){result[++ri]=cj}}}}else{if(mode=="+"){var utag=tagName.toUpperCase();for(var i=0,n;n=ns[i];i++){while((n=n.nextSibling)&&n.nodeType!=1){}if(n&&(n.nodeName==utag||n.nodeName==tagName||tagName=="*")){result[++ri]=n}}}else{if(mode=="~"){var utag=tagName.toUpperCase();for(var i=0,n;n=ns[i];i++){while((n=n.nextSibling)){if(n.nodeName==utag||n.nodeName==tagName||tagName=="*"){result[++ri]=n}}}}}}}return result}function concat(a,b){if(b.slice){return a.concat(b)}for(var i=0,l=b.length;i1){return nodup(results)}return results},isXml:function(el){var docEl=(el?el.ownerDocument||el:0).documentElement;return docEl?docEl.nodeName!=="HTML":false},select:document.querySelectorAll?function(path,root,type){root=root||document;if(!Ext.DomQuery.isXml(root)){try{var cs=root.querySelectorAll(path);return Ext.toArray(cs)}catch(ex){}}return Ext.DomQuery.jsSelect.call(this,path,root,type)}:function(path,root,type){return Ext.DomQuery.jsSelect.call(this,path,root,type)},selectNode:function(path,root){return Ext.DomQuery.select(path,root)[0]},selectValue:function(path,root,defaultValue){path=path.replace(trimRe,"");if(!valueCache[path]){valueCache[path]=Ext.DomQuery.compile(path,"select")}var n=valueCache[path](root),v;n=n[0]?n[0]:n;if(typeof n.normalize=="function"){n.normalize()}v=(n&&n.firstChild?n.firstChild.nodeValue:null);return((v===null||v===undefined||v==="")?defaultValue:v)},selectNumber:function(path,root,defaultValue){var v=Ext.DomQuery.selectValue(path,root,defaultValue||0);return parseFloat(v)},is:function(el,ss){if(typeof el=="string"){el=document.getElementById(el)}var isArray=Ext.isArray(el),result=Ext.DomQuery.filter(isArray?el:[el],ss);return isArray?(result.length==el.length):(result.length>0)},filter:function(els,ss,nonMatches){ss=ss.replace(trimRe,"");if(!simpleCache[ss]){simpleCache[ss]=Ext.DomQuery.compile(ss,"simple")}var result=simpleCache[ss](els);return nonMatches?quickDiff(result,els):result},matchers:[{re:/^\.([\w\-]+)/,select:'n = byClassName(n, " {1} ");'},{re:/^\:([\w\-]+)(?:\(((?:[^\s>\/]*|.*?))\))?/,select:'n = byPseudo(n, "{1}", "{2}");'},{re:/^(?:([\[\{])(?:@)?([\w\-]+)\s?(?:(=|.=)\s?(["']?)(.*?)\4)?[\]\}])/,select:'n = byAttribute(n, "{2}", "{5}", "{3}", "{1}");'},{re:/^#([\w\-]+)/,select:'n = byId(n, "{1}");'},{re:/^@([\w\-]+)/,select:'return {firstChild:{nodeValue:attrValue(n, "{1}")}};'}],operators:{"=":function(a,v){return a==v},"!=":function(a,v){return a!=v},"^=":function(a,v){return a&&a.substr(0,v.length)==v},"$=":function(a,v){return a&&a.substr(a.length-v.length)==v},"*=":function(a,v){return a&&a.indexOf(v)!==-1},"%=":function(a,v){return(a%v)==0},"|=":function(a,v){return a&&(a==v||a.substr(0,v.length+1)==v+"-")},"~=":function(a,v){return a&&(" "+a+" ").indexOf(" "+v+" ")!=-1}},pseudos:{"first-child":function(c){var r=[],ri=-1,n;for(var i=0,ci;ci=n=c[i];i++){while((n=n.previousSibling)&&n.nodeType!=1){}if(!n){r[++ri]=ci}}return r},"last-child":function(c){var r=[],ri=-1,n;for(var i=0,ci;ci=n=c[i];i++){while((n=n.nextSibling)&&n.nodeType!=1){}if(!n){r[++ri]=ci}}return r},"nth-child":function(c,a){var r=[],ri=-1,m=nthRe.exec(a=="even"&&"2n"||a=="odd"&&"2n+1"||!nthRe2.test(a)&&"n+"+a||a),f=(m[1]||1)-0,l=m[2]-0;for(var i=0,n;n=c[i];i++){var pn=n.parentNode;if(batch!=pn._batch){var j=0;for(var cn=pn.firstChild;cn;cn=cn.nextSibling){if(cn.nodeType==1){cn.nodeIndex=++j}}pn._batch=batch}if(f==1){if(l==0||n.nodeIndex==l){r[++ri]=n}}else{if((n.nodeIndex+l)%f==0){r[++ri]=n}}}return r},"only-child":function(c){var r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){if(!prev(ci)&&!next(ci)){r[++ri]=ci}}return r},empty:function(c){var r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){var cns=ci.childNodes,j=0,cn,empty=true;while(cn=cns[j]){++j;if(cn.nodeType==1||cn.nodeType==3){empty=false;break}}if(empty){r[++ri]=ci}}return r},contains:function(c,v){var r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){if((ci.textContent||ci.innerText||"").indexOf(v)!=-1){r[++ri]=ci}}return r},nodeValue:function(c,v){var r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){if(ci.firstChild&&ci.firstChild.nodeValue==v){r[++ri]=ci}}return r},checked:function(c){var r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){if(ci.checked==true){r[++ri]=ci}}return r},not:function(c,ss){return Ext.DomQuery.filter(c,ss,true)},any:function(c,selectors){var ss=selectors.split("|"),r=[],ri=-1,s;for(var i=0,ci;ci=c[i];i++){for(var j=0;s=ss[j];j++){if(Ext.DomQuery.is(ci,s)){r[++ri]=ci;break}}}return r},odd:function(c){return this["nth-child"](c,"odd")},even:function(c){return this["nth-child"](c,"even")},nth:function(c,a){return c[a-1]||[]},first:function(c){return c[0]||[]},last:function(c){return c[c.length-1]||[]},has:function(c,ss){var s=Ext.DomQuery.select,r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){if(s(ss,ci).length>0){r[++ri]=ci}}return r},next:function(c,ss){var is=Ext.DomQuery.is,r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){var n=next(ci);if(n&&is(n,ss)){r[++ri]=ci}}return r},prev:function(c,ss){var is=Ext.DomQuery.is,r=[],ri=-1;for(var i=0,ci;ci=c[i];i++){var n=prev(ci);if(n&&is(n,ss)){r[++ri]=ci}}return r}}}}();Ext.query=Ext.DomQuery.select;Ext.util.DelayedTask=function(d,c,a){var e=this,g,b=function(){clearInterval(g);g=null;d.apply(c,a||[])};e.delay=function(i,k,j,h){e.cancel();d=k||d;c=j||c;a=h||a;g=setInterval(b,i)};e.cancel=function(){if(g){clearInterval(g);g=null}}};(function(){var h=document;Ext.Element=function(l,m){var n=typeof l=="string"?h.getElementById(l):l,o;if(!n){return null}o=n.id;if(!m&&o&&Ext.elCache[o]){return Ext.elCache[o].el}this.dom=n;this.id=o||Ext.id(n)};var d=Ext.DomHelper,e=Ext.Element,a=Ext.elCache;e.prototype={set:function(q,m){var n=this.dom,l,p,m=(m!==false)&&!!n.setAttribute;for(l in q){if(q.hasOwnProperty(l)){p=q[l];if(l=="style"){d.applyStyles(n,p)}else{if(l=="cls"){n.className=p}else{if(m){n.setAttribute(l,p)}else{n[l]=p}}}}}return this},defaultUnit:"px",is:function(l){return Ext.DomQuery.is(this.dom,l)},focus:function(o,n){var l=this,n=n||l.dom;try{if(Number(o)){l.focus.defer(o,null,[null,n])}else{n.focus()}}catch(m){}return l},blur:function(){try{this.dom.blur()}catch(l){}return this},getValue:function(l){var m=this.dom.value;return l?parseInt(m,10):m},addListener:function(l,o,n,m){Ext.EventManager.on(this.dom,l,o,n||this,m);return this},removeListener:function(l,n,m){Ext.EventManager.removeListener(this.dom,l,n,m||this);return this},removeAllListeners:function(){Ext.EventManager.removeAll(this.dom);return this},purgeAllListeners:function(){Ext.EventManager.purgeElement(this,true);return this},addUnits:function(l){if(l===""||l=="auto"||l===undefined){l=l||""}else{if(!isNaN(l)||!i.test(l)){l=l+(this.defaultUnit||"px")}}return l},load:function(m,n,l){Ext.Ajax.request(Ext.apply({params:n,url:m.url||m,callback:l,el:this.dom,indicatorText:m.indicatorText||""},Ext.isObject(m)?m:{}));return this},isBorderBox:function(){return Ext.isBorderBox||Ext.isForcedBorderBox||g[(this.dom.tagName||"").toLowerCase()]},remove:function(){var l=this,m=l.dom;if(m){delete l.dom;Ext.removeNode(m)}},hover:function(m,l,o,n){var p=this;p.on("mouseenter",m,o||p.dom,n);p.on("mouseleave",l,o||p.dom,n);return p},contains:function(l){return !l?false:Ext.lib.Dom.isAncestor(this.dom,l.dom?l.dom:l)},getAttributeNS:function(m,l){return this.getAttribute(l,m)},getAttribute:(function(){var p=document.createElement("table"),o=false,m="getAttribute" in p,l=/undefined|unknown/;if(m){try{p.getAttribute("ext:qtip")}catch(n){o=true}return function(q,s){var r=this.dom,t;if(r.getAttributeNS){t=r.getAttributeNS(s,q)||null}if(t==null){if(s){if(o&&r.tagName.toUpperCase()=="TABLE"){try{t=r.getAttribute(s+":"+q)}catch(u){t=""}}else{t=r.getAttribute(s+":"+q)}}else{t=r.getAttribute(q)||r[q]}}return t||""}}else{return function(q,s){var r=this.om,u,t;if(s){t=r[s+":"+q];u=l.test(typeof t)?undefined:t}else{u=r[q]}return u||""}}p=null})(),update:function(l){if(this.dom){this.dom.innerHTML=l}return this}};var k=e.prototype;e.addMethods=function(l){Ext.apply(k,l)};k.on=k.addListener;k.un=k.removeListener;k.autoBoxAdjust=true;var i=/\d+(px|em|%|en|ex|pt|in|cm|mm|pc)$/i,c;e.get=function(m){var l,p,o;if(!m){return null}if(typeof m=="string"){if(!(p=h.getElementById(m))){return null}if(a[m]&&a[m].el){l=a[m].el;l.dom=p}else{l=e.addToCache(new e(p))}return l}else{if(m.tagName){if(!(o=m.id)){o=Ext.id(m)}if(a[o]&&a[o].el){l=a[o].el;l.dom=m}else{l=e.addToCache(new e(m))}return l}else{if(m instanceof e){if(m!=c){if(Ext.isIE&&(m.id==undefined||m.id=="")){m.dom=m.dom}else{m.dom=h.getElementById(m.id)||m.dom}}return m}else{if(m.isComposite){return m}else{if(Ext.isArray(m)){return e.select(m)}else{if(m==h){if(!c){var n=function(){};n.prototype=e.prototype;c=new n();c.dom=h}return c}}}}}}return null};e.addToCache=function(l,m){m=m||l.id;a[m]={el:l,data:{},events:{}};return l};e.data=function(m,l,n){m=e.get(m);if(!m){return null}var o=a[m.id].data;if(arguments.length==2){return o[l]}else{return(o[l]=n)}};function j(){if(!Ext.enableGarbageCollector){clearInterval(e.collectorThreadId)}else{var l,n,q,p;for(l in a){p=a[l];if(p.skipGC){Ext.EventManager.removeFromSpecialCache(p.el);continue}n=p.el;q=n.dom;if(!q||!q.parentNode||(!q.offsetParent&&!h.getElementById(l))){if(Ext.enableListenerCollection){Ext.EventManager.removeAll(q)}delete a[l]}}if(Ext.isIE){var m={};for(l in a){m[l]=a[l]}a=Ext.elCache=m}}}e.collectorThreadId=setInterval(j,30000);var b=function(){};b.prototype=e.prototype;e.Flyweight=function(l){this.dom=l};e.Flyweight.prototype=new b();e.Flyweight.prototype.isFlyweight=true;e._flyweights={};e.fly=function(n,l){var m=null;l=l||"_global";if(n=Ext.getDom(n)){(e._flyweights[l]=e._flyweights[l]||new e.Flyweight()).dom=n;m=e._flyweights[l]}return m};Ext.get=e.get;Ext.fly=e.fly;var g=Ext.isStrict?{select:1}:{input:1,select:1,textarea:1};if(Ext.isIE||Ext.isGecko){g.button=1}})();Ext.Element.addMethods(function(){var d="parentNode",b="nextSibling",c="previousSibling",e=Ext.DomQuery,a=Ext.get;return{findParent:function(m,l,h){var j=this.dom,g=document.body,k=0,i;if(Ext.isGecko&&Object.prototype.toString.call(j)=="[object XULElement]"){return null}l=l||50;if(isNaN(l)){i=Ext.getDom(l);l=Number.MAX_VALUE}while(j&&j.nodeType==1&&k "+g,this.dom);return h?i:a(i)},parent:function(g,h){return this.matchNode(d,d,g,h)},next:function(g,h){return this.matchNode(b,b,g,h)},prev:function(g,h){return this.matchNode(c,c,g,h)},first:function(g,h){return this.matchNode(b,"firstChild",g,h)},last:function(g,h){return this.matchNode(c,"lastChild",g,h)},matchNode:function(h,k,g,i){var j=this.dom[k];while(j){if(j.nodeType==1&&(!g||e.is(j,g))){return !i?a(j):j}j=j[h]}return null}}}());Ext.Element.addMethods(function(){var c=Ext.getDom,a=Ext.get,b=Ext.DomHelper;return{appendChild:function(d){return a(d).appendTo(this)},appendTo:function(d){c(d).appendChild(this.dom);return this},insertBefore:function(d){(d=c(d)).parentNode.insertBefore(this.dom,d);return this},insertAfter:function(d){(d=c(d)).parentNode.insertBefore(this.dom,d.nextSibling);return this},insertFirst:function(e,d){e=e||{};if(e.nodeType||e.dom||typeof e=="string"){e=c(e);this.dom.insertBefore(e,this.dom.firstChild);return !d?a(e):e}else{return this.createChild(e,this.dom.firstChild,d)}},replace:function(d){d=a(d);this.insertBefore(d);d.remove();return this},replaceWith:function(d){var e=this;if(d.nodeType||d.dom||typeof d=="string"){d=c(d);e.dom.parentNode.insertBefore(d,e.dom)}else{d=b.insertBefore(e.dom,d)}delete Ext.elCache[e.id];Ext.removeNode(e.dom);e.id=Ext.id(e.dom=d);Ext.Element.addToCache(e.isFlyweight?new Ext.Element(e.dom):e);return e},createChild:function(e,d,g){e=e||{tag:"div"};return d?b.insertBefore(d,e,g!==true):b[!this.dom.firstChild?"overwrite":"append"](this.dom,e,g!==true)},wrap:function(d,e){var g=b.insertBefore(this.dom,d||{tag:"div"},!e);g.dom?g.dom.appendChild(this.dom):g.appendChild(this.dom);return g},insertHtml:function(e,g,d){var h=b.insertHtml(e,this.dom,g);return d?Ext.get(h):h}}}());Ext.Element.addMethods(function(){var A=Ext.supports,h={},x=/(-[a-z])/gi,s=document.defaultView,D=/alpha\(opacity=(.*)\)/i,l=/^\s+|\s+$/g,B=Ext.Element,u=/\s+/,b=/\w/g,d="padding",c="margin",y="border",t="-left",q="-right",w="-top",o="-bottom",j="-width",r=Math,z="hidden",e="isClipped",k="overflow",n="overflow-x",m="overflow-y",C="originalClip",i={l:y+t+j,r:y+q+j,t:y+w+j,b:y+o+j},g={l:d+t,r:d+q,t:d+w,b:d+o},a={l:c+t,r:c+q,t:c+w,b:c+o},E=Ext.Element.data;function p(F,G){return G.charAt(1).toUpperCase()}function v(F){return h[F]||(h[F]=F=="float"?(A.cssFloat?"cssFloat":"styleFloat"):F.replace(x,p))}return{adjustWidth:function(F){var G=this;var H=(typeof F=="number");if(H&&G.autoBoxAdjust&&!G.isBorderBox()){F-=(G.getBorderWidth("lr")+G.getPadding("lr"))}return(H&&F<0)?0:F},adjustHeight:function(F){var G=this;var H=(typeof F=="number");if(H&&G.autoBoxAdjust&&!G.isBorderBox()){F-=(G.getBorderWidth("tb")+G.getPadding("tb"))}return(H&&F<0)?0:F},addClass:function(J){var K=this,I,F,H,G=[];if(!Ext.isArray(J)){if(typeof J=="string"&&!this.hasClass(J)){K.dom.className+=" "+J}}else{for(I=0,F=J.length;I5?H.toLowerCase():G)},setStyle:function(I,H){var F,G;if(typeof I!="object"){F={};F[I]=H;I=F}for(G in I){H=I[G];G=="opacity"?this.setOpacity(H):this.dom.style[v(G)]=H}return this},setOpacity:function(G,F){var J=this,H=J.dom.style;if(!F||!J.anim){if(Ext.isIE9m){var I=G<1?"alpha(opacity="+G*100+")":"",K=H.filter.replace(D,"").replace(l,"");H.zoom=1;H.filter=K+(K.length>0?" ":"")+I}else{H.opacity=G}}else{J.anim({opacity:{to:G}},J.preanim(arguments,1),null,0.35,"easeIn")}return J},clearOpacity:function(){var F=this.dom.style;if(Ext.isIE9m){if(!Ext.isEmpty(F.filter)){F.filter=F.filter.replace(D,"").replace(l,"")}}else{F.opacity=F["-moz-opacity"]=F["-khtml-opacity"]=""}return this},getHeight:function(H){var G=this,J=G.dom,I=Ext.isIE9m&&G.isStyle("display","none"),F=r.max(J.offsetHeight,I?0:J.clientHeight)||0;F=!H?F:F-G.getBorderWidth("tb")-G.getPadding("tb");return F<0?0:F},getWidth:function(G){var H=this,J=H.dom,I=Ext.isIE9m&&H.isStyle("display","none"),F=r.max(J.offsetWidth,I?0:J.clientWidth)||0;F=!G?F:F-H.getBorderWidth("lr")-H.getPadding("lr");return F<0?0:F},setWidth:function(G,F){var H=this;G=H.adjustWidth(G);!F||!H.anim?H.dom.style.width=H.addUnits(G):H.anim({width:{to:G}},H.preanim(arguments,1));return H},setHeight:function(F,G){var H=this;F=H.adjustHeight(F);!G||!H.anim?H.dom.style.height=H.addUnits(F):H.anim({height:{to:F}},H.preanim(arguments,1));return H},getBorderWidth:function(F){return this.addStyles(F,i)},getPadding:function(F){return this.addStyles(F,g)},clip:function(){var F=this,G=F.dom;if(!E(G,e)){E(G,e,true);E(G,C,{o:F.getStyle(k),x:F.getStyle(n),y:F.getStyle(m)});F.setStyle(k,z);F.setStyle(n,z);F.setStyle(m,z)}return F},unclip:function(){var F=this,H=F.dom;if(E(H,e)){E(H,e,false);var G=E(H,C);if(G.o){F.setStyle(k,G.o)}if(G.x){F.setStyle(n,G.x)}if(G.y){F.setStyle(m,G.y)}}return F},addStyles:function(M,L){var J=0,K=M.match(b),I,H,G,F=K.length;for(G=0;Ga.clientHeight||a.scrollWidth>a.clientWidth},scrollTo:function(a,b){this.dom["scroll"+(/top/i.test(a)?"Top":"Left")]=b;return this},getScroll:function(){var i=this.dom,h=document,a=h.body,c=h.documentElement,b,g,e;if(i==h||i==a){if(Ext.isIE&&Ext.isStrict){b=c.scrollLeft;g=c.scrollTop}else{b=window.pageXOffset;g=window.pageYOffset}e={left:b||(a?a.scrollLeft:0),top:g||(a?a.scrollTop:0)}}else{e={left:i.scrollLeft,top:i.scrollTop}}return e}});Ext.Element.VISIBILITY=1;Ext.Element.DISPLAY=2;Ext.Element.OFFSETS=3;Ext.Element.ASCLASS=4;Ext.Element.visibilityCls="x-hide-nosize";Ext.Element.addMethods(function(){var e=Ext.Element,p="opacity",j="visibility",g="display",d="hidden",n="offsets",k="asclass",m="none",a="nosize",b="originalDisplay",c="visibilityMode",h="isVisible",i=e.data,l=function(r){var q=i(r,b);if(q===undefined){i(r,b,q="")}return q},o=function(r){var q=i(r,c);if(q===undefined){i(r,c,q=1)}return q};return{originalDisplay:"",visibilityMode:1,setVisibilityMode:function(q){i(this.dom,c,q);return this},animate:function(r,t,s,u,q){this.anim(r,{duration:t,callback:s,easing:u},q);return this},anim:function(t,u,r,w,s,q){r=r||"run";u=u||{};var v=this,x=Ext.lib.Anim[r](v.dom,t,(u.duration||w)||0.35,(u.easing||s)||"easeOut",function(){if(q){q.call(v)}if(u.callback){u.callback.call(u.scope||v,v,u)}},v);u.anim=x;return x},preanim:function(q,r){return !q[r]?false:(typeof q[r]=="object"?q[r]:{duration:q[r+1],callback:q[r+2],easing:q[r+3]})},isVisible:function(){var q=this,s=q.dom,r=i(s,h);if(typeof r=="boolean"){return r}r=!q.isStyle(j,d)&&!q.isStyle(g,m)&&!((o(s)==e.ASCLASS)&&q.hasClass(q.visibilityCls||e.visibilityCls));i(s,h,r);return r},setVisible:function(t,q){var w=this,r,y,x,v,u=w.dom,s=o(u);if(typeof q=="string"){switch(q){case g:s=e.DISPLAY;break;case j:s=e.VISIBILITY;break;case n:s=e.OFFSETS;break;case a:case k:s=e.ASCLASS;break}w.setVisibilityMode(s);q=false}if(!q||!w.anim){if(s==e.ASCLASS){w[t?"removeClass":"addClass"](w.visibilityCls||e.visibilityCls)}else{if(s==e.DISPLAY){return w.setDisplayed(t)}else{if(s==e.OFFSETS){if(!t){w.hideModeStyles={position:w.getStyle("position"),top:w.getStyle("top"),left:w.getStyle("left")};w.applyStyles({position:"absolute",top:"-10000px",left:"-10000px"})}else{w.applyStyles(w.hideModeStyles||{position:"",top:"",left:""});delete w.hideModeStyles}}else{w.fixDisplay();u.style.visibility=t?"visible":d}}}}else{if(t){w.setOpacity(0.01);w.setVisible(true)}w.anim({opacity:{to:(t?1:0)}},w.preanim(arguments,1),null,0.35,"easeIn",function(){t||w.setVisible(false).setOpacity(1)})}i(u,h,t);return w},hasMetrics:function(){var q=this.dom;return this.isVisible()||(o(q)==e.VISIBILITY)},toggle:function(q){var r=this;r.setVisible(!r.isVisible(),r.preanim(arguments,0));return r},setDisplayed:function(q){if(typeof q=="boolean"){q=q?l(this.dom):m}this.setStyle(g,q);return this},fixDisplay:function(){var q=this;if(q.isStyle(g,m)){q.setStyle(j,d);q.setStyle(g,l(this.dom));if(q.isStyle(g,m)){q.setStyle(g,"block")}}},hide:function(q){if(typeof q=="string"){this.setVisible(false,q);return this}this.setVisible(false,this.preanim(arguments,0));return this},show:function(q){if(typeof q=="string"){this.setVisible(true,q);return this}this.setVisible(true,this.preanim(arguments,0));return this}}}());(function(){var y=null,A=undefined,k=true,t=false,j="setX",h="setY",a="setXY",n="left",l="bottom",s="top",m="right",q="height",g="width",i="points",w="hidden",z="absolute",u="visible",e="motion",o="position",r="easeOut",d=new Ext.Element.Flyweight(),v={},x=function(B){return B||{}},p=function(B){d.dom=B;d.id=Ext.id(B);return d},c=function(B){if(!v[B]){v[B]=[]}return v[B]},b=function(C,B){v[C]=B};Ext.enableFx=k;Ext.Fx={switchStatements:function(C,D,B){return D.apply(this,B[C])},slideIn:function(H,E){E=x(E);var J=this,G=J.dom,M=G.style,O,B,L,D,C,M,I,N,K,F;H=H||"t";J.queueFx(E,function(){O=p(G).getXY();p(G).fixDisplay();B=p(G).getFxRestore();L={x:O[0],y:O[1],0:O[0],1:O[1],width:G.offsetWidth,height:G.offsetHeight};L.right=L.x+L.width;L.bottom=L.y+L.height;p(G).setWidth(L.width).setHeight(L.height);D=p(G).fxWrap(B.pos,E,w);M.visibility=u;M.position=z;function P(){p(G).fxUnwrap(D,B.pos,E);M.width=B.width;M.height=B.height;p(G).afterFx(E)}N={to:[L.x,L.y]};K={to:L.width};F={to:L.height};function Q(U,R,V,S,X,Z,ac,ab,aa,W,T){var Y={};p(U).setWidth(V).setHeight(S);if(p(U)[X]){p(U)[X](Z)}R[ac]=R[ab]="0";if(aa){Y.width=aa}if(W){Y.height=W}if(T){Y.points=T}return Y}I=p(G).switchStatements(H.toLowerCase(),Q,{t:[D,M,L.width,0,y,y,n,l,y,F,y],l:[D,M,0,L.height,y,y,m,s,K,y,y],r:[D,M,L.width,L.height,j,L.right,n,s,y,y,N],b:[D,M,L.width,L.height,h,L.bottom,n,s,y,F,N],tl:[D,M,0,0,y,y,m,l,K,F,N],bl:[D,M,0,0,h,L.y+L.height,m,s,K,F,N],br:[D,M,0,0,a,[L.right,L.bottom],n,s,K,F,N],tr:[D,M,0,0,j,L.x+L.width,n,l,K,F,N]});M.visibility=u;p(D).show();arguments.callee.anim=p(D).fxanim(I,E,e,0.5,r,P)});return J},slideOut:function(F,D){D=x(D);var H=this,E=H.dom,K=E.style,L=H.getXY(),C,B,I,J,G={to:0};F=F||"t";H.queueFx(D,function(){B=p(E).getFxRestore();I={x:L[0],y:L[1],0:L[0],1:L[1],width:E.offsetWidth,height:E.offsetHeight};I.right=I.x+I.width;I.bottom=I.y+I.height;p(E).setWidth(I.width).setHeight(I.height);C=p(E).fxWrap(B.pos,D,u);K.visibility=u;K.position=z;p(C).setWidth(I.width).setHeight(I.height);function M(){D.useDisplay?p(E).setDisplayed(t):p(E).hide();p(E).fxUnwrap(C,B.pos,D);K.width=B.width;K.height=B.height;p(E).afterFx(D)}function N(O,W,U,X,S,V,R,T,Q){var P={};O[W]=O[U]="0";P[X]=S;if(V){P[V]=R}if(T){P[T]=Q}return P}J=p(E).switchStatements(F.toLowerCase(),N,{t:[K,n,l,q,G],l:[K,m,s,g,G],r:[K,n,s,g,G,i,{to:[I.right,I.y]}],b:[K,n,s,q,G,i,{to:[I.x,I.bottom]}],tl:[K,m,l,g,G,q,G],bl:[K,m,s,g,G,q,G,i,{to:[I.x,I.bottom]}],br:[K,n,s,g,G,q,G,i,{to:[I.x+I.width,I.bottom]}],tr:[K,n,l,g,G,q,G,i,{to:[I.right,I.y]}]});arguments.callee.anim=p(C).fxanim(J,D,e,0.5,r,M)});return H},puff:function(H){H=x(H);var F=this,G=F.dom,C=G.style,D,B,E;F.queueFx(H,function(){D=p(G).getWidth();B=p(G).getHeight();p(G).clearOpacity();p(G).show();E=p(G).getFxRestore();function I(){H.useDisplay?p(G).setDisplayed(t):p(G).hide();p(G).clearOpacity();p(G).setPositioning(E.pos);C.width=E.width;C.height=E.height;C.fontSize="";p(G).afterFx(H)}arguments.callee.anim=p(G).fxanim({width:{to:p(G).adjustWidth(D*2)},height:{to:p(G).adjustHeight(B*2)},points:{by:[-D*0.5,-B*0.5]},opacity:{to:0},fontSize:{to:200,unit:"%"}},H,e,0.5,r,I)});return F},switchOff:function(F){F=x(F);var D=this,E=D.dom,B=E.style,C;D.queueFx(F,function(){p(E).clearOpacity();p(E).clip();C=p(E).getFxRestore();function G(){F.useDisplay?p(E).setDisplayed(t):p(E).hide();p(E).clearOpacity();p(E).setPositioning(C.pos);B.width=C.width;B.height=C.height;p(E).afterFx(F)}p(E).fxanim({opacity:{to:0.3}},y,y,0.1,y,function(){p(E).clearOpacity();(function(){p(E).fxanim({height:{to:1},points:{by:[0,p(E).getHeight()*0.5]}},F,e,0.3,"easeIn",G)}).defer(100)})});return D},highlight:function(D,H){H=x(H);var F=this,G=F.dom,B=H.attr||"backgroundColor",C={},E;F.queueFx(H,function(){p(G).clearOpacity();p(G).show();function I(){G.style[B]=E;p(G).afterFx(H)}E=G.style[B];C[B]={from:D||"ffff9c",to:H.endColor||p(G).getColor(B)||"ffffff"};arguments.callee.anim=p(G).fxanim(C,H,"color",1,"easeIn",I)});return F},frame:function(B,E,H){H=x(H);var D=this,G=D.dom,C,F;D.queueFx(H,function(){B=B||"#C3DAF9";if(B.length==6){B="#"+B}E=E||1;p(G).show();var L=p(G).getXY(),J={x:L[0],y:L[1],0:L[0],1:L[1],width:G.offsetWidth,height:G.offsetHeight},I=function(){C=p(document.body||document.documentElement).createChild({style:{position:z,"z-index":35000,border:"0px solid "+B}});return C.queueFx({},K)};arguments.callee.anim={isAnimated:true,stop:function(){E=0;C.stopFx()}};function K(){var M=Ext.isBorderBox?2:1;F=C.anim({top:{from:J.y,to:J.y-20},left:{from:J.x,to:J.x-20},borderWidth:{from:0,to:10},opacity:{from:1,to:0},height:{from:J.height,to:J.height+20*M},width:{from:J.width,to:J.width+20*M}},{duration:H.duration||1,callback:function(){C.remove();--E>0?I():p(G).afterFx(H)}});arguments.callee.anim={isAnimated:true,stop:function(){F.stop()}}}I()});return D},pause:function(D){var C=this.dom,B;this.queueFx({},function(){B=setTimeout(function(){p(C).afterFx({})},D*1000);arguments.callee.anim={isAnimated:true,stop:function(){clearTimeout(B);p(C).afterFx({})}}});return this},fadeIn:function(D){D=x(D);var B=this,C=B.dom,E=D.endOpacity||1;B.queueFx(D,function(){p(C).setOpacity(0);p(C).fixDisplay();C.style.visibility=u;arguments.callee.anim=p(C).fxanim({opacity:{to:E}},D,y,0.5,r,function(){if(E==1){p(C).clearOpacity()}p(C).afterFx(D)})});return B},fadeOut:function(E){E=x(E);var C=this,D=C.dom,B=D.style,F=E.endOpacity||0;C.queueFx(E,function(){arguments.callee.anim=p(D).fxanim({opacity:{to:F}},E,y,0.5,r,function(){if(F==0){Ext.Element.data(D,"visibilityMode")==Ext.Element.DISPLAY||E.useDisplay?B.display="none":B.visibility=w;p(D).clearOpacity()}p(D).afterFx(E)})});return C},scale:function(B,C,D){this.shift(Ext.apply({},D,{width:B,height:C}));return this},shift:function(D){D=x(D);var C=this.dom,B={};this.queueFx(D,function(){for(var E in D){if(D[E]!=A){B[E]={to:D[E]}}}B.width?B.width.to=p(C).adjustWidth(D.width):B;B.height?B.height.to=p(C).adjustWidth(D.height):B;if(B.x||B.y||B.xy){B.points=B.xy||{to:[B.x?B.x.to:p(C).getX(),B.y?B.y.to:p(C).getY()]}}arguments.callee.anim=p(C).fxanim(B,D,e,0.35,r,function(){p(C).afterFx(D)})});return this},ghost:function(E,C){C=x(C);var G=this,D=G.dom,J=D.style,H={opacity:{to:0},points:{}},K=H.points,B,I,F;E=E||"b";G.queueFx(C,function(){B=p(D).getFxRestore();I=p(D).getWidth();F=p(D).getHeight();function L(){C.useDisplay?p(D).setDisplayed(t):p(D).hide();p(D).clearOpacity();p(D).setPositioning(B.pos);J.width=B.width;J.height=B.height;p(D).afterFx(C)}K.by=p(D).switchStatements(E.toLowerCase(),function(N,M){return[N,M]},{t:[0,-F],l:[-I,0],r:[I,0],b:[0,F],tl:[-I,-F],bl:[-I,F],br:[I,F],tr:[I,-F]});arguments.callee.anim=p(D).fxanim(H,C,e,0.5,r,L)});return G},syncFx:function(){var B=this;B.fxDefaults=Ext.apply(B.fxDefaults||{},{block:t,concurrent:k,stopFx:t});return B},sequenceFx:function(){var B=this;B.fxDefaults=Ext.apply(B.fxDefaults||{},{block:t,concurrent:t,stopFx:t});return B},nextFx:function(){var B=c(this.dom.id)[0];if(B){B.call(this)}},hasActiveFx:function(){return c(this.dom.id)[0]},stopFx:function(B){var C=this,E=C.dom.id;if(C.hasActiveFx()){var D=c(E)[0];if(D&&D.anim){if(D.anim.isAnimated){b(E,[D]);D.anim.stop(B!==undefined?B:k)}else{b(E,[])}}}return C},beforeFx:function(B){if(this.hasActiveFx()&&!B.concurrent){if(B.stopFx){this.stopFx();return k}return t}return k},hasFxBlock:function(){var B=c(this.dom.id);return B&&B[0]&&B[0].block},queueFx:function(E,B){var C=p(this.dom);if(!C.hasFxBlock()){Ext.applyIf(E,C.fxDefaults);if(!E.concurrent){var D=C.beforeFx(E);B.block=E.block;c(C.dom.id).push(B);if(D){C.nextFx()}}else{B.call(C)}}return C},fxWrap:function(H,F,D){var E=this.dom,C,B;if(!F.wrap||!(C=Ext.getDom(F.wrap))){if(F.fixPosition){B=p(E).getXY()}var G=document.createElement("div");G.style.visibility=D;C=E.parentNode.insertBefore(G,E);p(C).setPositioning(H);if(p(C).isStyle(o,"static")){p(C).position("relative")}p(E).clearPositioning("auto");p(C).clip();C.appendChild(E);if(B){p(C).setXY(B)}}return C},fxUnwrap:function(C,F,E){var D=this.dom;p(D).clearPositioning();p(D).setPositioning(F);if(!E.wrap){var B=p(C).dom.parentNode;B.insertBefore(D,C);p(C).remove()}},getFxRestore:function(){var B=this.dom.style;return{pos:this.getPositioning(),width:B.width,height:B.height}},afterFx:function(C){var B=this.dom,D=B.id;if(C.afterStyle){p(B).setStyle(C.afterStyle)}if(C.afterCls){p(B).addClass(C.afterCls)}if(C.remove==k){p(B).remove()}if(C.callback){C.callback.call(C.scope,p(B))}if(!C.concurrent){c(D).shift();p(B).nextFx()}},fxanim:function(E,F,C,G,D,B){C=C||"run";F=F||{};var H=Ext.lib.Anim[C](this.dom,E,(F.duration||G)||0.35,(F.easing||D)||r,B,this);F.anim=H;return H}};Ext.Fx.resize=Ext.Fx.scale;Ext.Element.addMethods(Ext.Fx)})();Ext.CompositeElementLite=function(b,a){this.elements=[];this.add(b,a);this.el=new Ext.Element.Flyweight()};Ext.CompositeElementLite.prototype={isComposite:true,getElement:function(a){var b=this.el;b.dom=a;b.id=a.id;return b},transformElement:function(a){return Ext.getDom(a)},getCount:function(){return this.elements.length},add:function(d,b){var e=this,g=e.elements;if(!d){return this}if(typeof d=="string"){d=Ext.Element.selectorFunction(d,b)}else{if(d.isComposite){d=d.elements}else{if(!Ext.isIterable(d)){d=[d]}}}for(var c=0,a=d.length;c-1){c=Ext.getDom(c);if(a){g=this.elements[b];g.parentNode.insertBefore(c,g);Ext.removeNode(g)}this.elements.splice(b,1,c)}return this},clear:function(){this.elements=[]}};Ext.CompositeElementLite.prototype.on=Ext.CompositeElementLite.prototype.addListener;Ext.CompositeElementLite.importElementMethods=function(){var c,b=Ext.Element.prototype,a=Ext.CompositeElementLite.prototype;for(c in b){if(typeof b[c]=="function"){(function(d){a[d]=a[d]||function(){return this.invoke(d,arguments)}}).call(a,c)}}};Ext.CompositeElementLite.importElementMethods();if(Ext.DomQuery){Ext.Element.selectorFunction=Ext.DomQuery.select}Ext.Element.select=function(a,b){var c;if(typeof a=="string"){c=Ext.Element.selectorFunction(a,b)}else{if(a.length!==undefined){c=a}else{throw"Invalid selector"}}return new Ext.CompositeElementLite(c)};Ext.select=Ext.Element.select;(function(){var b="beforerequest",e="requestcomplete",d="requestexception",h=undefined,c="load",i="POST",a="GET",g=window;Ext.data.Connection=function(j){Ext.apply(this,j);this.addEvents(b,e,d);Ext.data.Connection.superclass.constructor.call(this)};Ext.extend(Ext.data.Connection,Ext.util.Observable,{timeout:30000,autoAbort:false,disableCaching:true,disableCachingParam:"_dc",request:function(n){var s=this;if(s.fireEvent(b,s,n)){if(n.el){if(!Ext.isEmpty(n.indicatorText)){s.indicatorText='
      '+n.indicatorText+"
      "}if(s.indicatorText){Ext.getDom(n.el).innerHTML=s.indicatorText}n.success=(Ext.isFunction(n.success)?n.success:function(){}).createInterceptor(function(o){Ext.getDom(n.el).innerHTML=o.responseText})}var l=n.params,k=n.url||s.url,j,q={success:s.handleResponse,failure:s.handleFailure,scope:s,argument:{options:n},timeout:Ext.num(n.timeout,s.timeout)},m,t;if(Ext.isFunction(l)){l=l.call(n.scope||g,n)}l=Ext.urlEncode(s.extraParams,Ext.isObject(l)?Ext.urlEncode(l):l);if(Ext.isFunction(k)){k=k.call(n.scope||g,n)}if((m=Ext.getDom(n.form))){k=k||m.action;if(n.isUpload||(/multipart\/form-data/i.test(m.getAttribute("enctype")))){return s.doFormUpload.call(s,n,l,k)}t=Ext.lib.Ajax.serializeForm(m);l=l?(l+"&"+t):t}j=n.method||s.method||((l||n.xmlData||n.jsonData)?i:a);if(j===a&&(s.disableCaching&&n.disableCaching!==false)||n.disableCaching===true){var r=n.disableCachingParam||s.disableCachingParam;k=Ext.urlAppend(k,r+"="+(new Date().getTime()))}n.headers=Ext.applyIf(n.headers||{},s.defaultHeaders||{});if(n.autoAbort===true||s.autoAbort){s.abort()}if((j==a||n.xmlData||n.jsonData)&&l){k=Ext.urlAppend(k,l);l=""}return(s.transId=Ext.lib.Ajax.request(j,k,q,l,n))}else{return n.callback?n.callback.apply(n.scope,[n,h,h]):null}},isLoading:function(j){return j?Ext.lib.Ajax.isCallInProgress(j):!!this.transId},abort:function(j){if(j||this.isLoading()){Ext.lib.Ajax.abort(j||this.transId)}},handleResponse:function(j){this.transId=false;var k=j.argument.options;j.argument=k?k.argument:null;this.fireEvent(e,this,j,k);if(k.success){k.success.call(k.scope,j,k)}if(k.callback){k.callback.call(k.scope,k,true,j)}},handleFailure:function(j,l){this.transId=false;var k=j.argument.options;j.argument=k?k.argument:null;this.fireEvent(d,this,j,k,l);if(k.failure){k.failure.call(k.scope,j,k)}if(k.callback){k.callback.call(k.scope,k,false,j)}},doFormUpload:function(q,j,k){var l=Ext.id(),v=document,r=v.createElement("iframe"),m=Ext.getDom(q.form),u=[],t,p="multipart/form-data",n={target:m.target,method:m.method,encoding:m.encoding,enctype:m.enctype,action:m.action};Ext.fly(r).set({id:l,name:l,cls:"x-hidden",src:Ext.SSL_SECURE_URL});v.body.appendChild(r);if(Ext.isIE){document.frames[l].name=l}Ext.fly(m).set({target:l,method:i,enctype:p,encoding:p,action:k||n.action});Ext.iterate(Ext.urlDecode(j,false),function(w,o){t=v.createElement("input");Ext.fly(t).set({type:"hidden",value:o,name:w});m.appendChild(t);u.push(t)});function s(){var x=this,w={responseText:"",responseXML:null,argument:q.argument},A,z;try{A=r.contentWindow.document||r.contentDocument||g.frames[l].document;if(A){if(A.body){if(/textarea/i.test((z=A.body.firstChild||{}).tagName)){w.responseText=z.value}else{w.responseText=A.body.innerHTML}}w.responseXML=A.XMLDocument||A}}catch(y){}Ext.EventManager.removeListener(r,c,s,x);x.fireEvent(e,x,w,q);function o(D,C,B){if(Ext.isFunction(D)){D.apply(C,B)}}o(q.success,q.scope,[w,q]);o(q.callback,q.scope,[q,true,w]);if(!x.debugUploads){setTimeout(function(){Ext.removeNode(r)},100)}}Ext.EventManager.on(r,c,s,this);m.submit();Ext.fly(m).set(n);Ext.each(u,function(o){Ext.removeNode(o)})}})})();Ext.Ajax=new Ext.data.Connection({autoAbort:false,serializeForm:function(a){return Ext.lib.Ajax.serializeForm(a)}});Ext.util.JSON=new (function(){var useHasOwn=!!{}.hasOwnProperty,isNative=function(){var useNative=null;return function(){if(useNative===null){useNative=Ext.USE_NATIVE_JSON&&window.JSON&&JSON.toString()=="[object JSON]"}return useNative}}(),pad=function(n){return n<10?"0"+n:n},doDecode=function(json){return json?eval("("+json+")"):""},doEncode=function(o){if(!Ext.isDefined(o)||o===null){return"null"}else{if(Ext.isArray(o)){return encodeArray(o)}else{if(Ext.isDate(o)){return Ext.util.JSON.encodeDate(o)}else{if(Ext.isString(o)){return encodeString(o)}else{if(typeof o=="number"){return isFinite(o)?String(o):"null"}else{if(Ext.isBoolean(o)){return String(o)}else{var a=["{"],b,i,v;for(i in o){if(!o.getElementsByTagName){if(!useHasOwn||o.hasOwnProperty(i)){v=o[i];switch(typeof v){case"undefined":case"function":case"unknown":break;default:if(b){a.push(",")}a.push(doEncode(i),":",v===null?"null":doEncode(v));b=true}}}}a.push("}");return a.join("")}}}}}}},m={"\b":"\\b","\t":"\\t","\n":"\\n","\f":"\\f","\r":"\\r",'"':'\\"',"\\":"\\\\"},encodeString=function(s){if(/["\\\x00-\x1f]/.test(s)){return'"'+s.replace(/([\x00-\x1f\\"])/g,function(a,b){var c=m[b];if(c){return c}c=b.charCodeAt();return"\\u00"+Math.floor(c/16).toString(16)+(c%16).toString(16)})+'"'}return'"'+s+'"'},encodeArray=function(o){var a=["["],b,i,l=o.length,v;for(i=0;i
      ';e.body.appendChild(g);d=g.lastChild;if((c=e.defaultView)){if(c.getComputedStyle(g.firstChild.firstChild,null).marginRight!="0px"){b.correctRightMargin=false}if(c.getComputedStyle(d,null).backgroundColor!="transparent"){b.correctTransparentColor=false}}b.cssFloat=!!d.style.cssFloat;e.body.removeChild(g)};if(Ext.isReady){a()}else{Ext.onReady(a)}})();Ext.EventObject=function(){var b=Ext.lib.Event,c=/(dbl)?click/,a={3:13,63234:37,63235:39,63232:38,63233:40,63276:33,63277:34,63272:46,63273:36,63275:35},d=Ext.isIE?{1:0,4:1,2:2}:{0:0,1:1,2:2};Ext.EventObjectImpl=function(g){if(g){this.setEvent(g.browserEvent||g)}};Ext.EventObjectImpl.prototype={setEvent:function(h){var g=this;if(h==g||(h&&h.browserEvent)){return h}g.browserEvent=h;if(h){g.button=h.button?d[h.button]:(h.which?h.which-1:-1);if(c.test(h.type)&&g.button==-1){g.button=0}g.type=h.type;g.shiftKey=h.shiftKey;g.ctrlKey=h.ctrlKey||h.metaKey||false;g.altKey=h.altKey;g.keyCode=h.keyCode;g.charCode=h.charCode;g.target=b.getTarget(h);g.xy=b.getXY(h)}else{g.button=-1;g.shiftKey=false;g.ctrlKey=false;g.altKey=false;g.keyCode=0;g.charCode=0;g.target=null;g.xy=[0,0]}return g},stopEvent:function(){var e=this;if(e.browserEvent){if(e.browserEvent.type=="mousedown"){Ext.EventManager.stoppedMouseDownEvent.fire(e)}b.stopEvent(e.browserEvent)}},preventDefault:function(){if(this.browserEvent){b.preventDefault(this.browserEvent)}},stopPropagation:function(){var e=this;if(e.browserEvent){if(e.browserEvent.type=="mousedown"){Ext.EventManager.stoppedMouseDownEvent.fire(e)}b.stopPropagation(e.browserEvent)}},getCharCode:function(){return this.charCode||this.keyCode},getKey:function(){return this.normalizeKey(this.keyCode||this.charCode)},normalizeKey:function(e){return Ext.isSafari?(a[e]||e):e},getPageX:function(){return this.xy[0]},getPageY:function(){return this.xy[1]},getXY:function(){return this.xy},getTarget:function(g,h,e){return g?Ext.fly(this.target).findParent(g,h,e):(e?Ext.get(this.target):this.target)},getRelatedTarget:function(){return this.browserEvent?b.getRelatedTarget(this.browserEvent):null},getWheelDelta:function(){var g=this.browserEvent;var h=0;if(g.wheelDelta){h=g.wheelDelta/120}else{if(g.detail){h=-g.detail/3}}return h},within:function(h,i,e){if(h){var g=this[i?"getRelatedTarget":"getTarget"]();return g&&((e?(g==Ext.getDom(h)):false)||Ext.fly(h).contains(g))}return false}};return new Ext.EventObjectImpl()}();Ext.Loader=Ext.apply({},{load:function(j,i,k,c){var k=k||this,g=document.getElementsByTagName("head")[0],b=document.createDocumentFragment(),a=j.length,h=0,e=this;var l=function(m){g.appendChild(e.buildScriptTag(j[m],d))};var d=function(){h++;if(a==h&&typeof i=="function"){i.call(k)}else{if(c===true){l(h)}}};if(c===true){l.call(this,0)}else{Ext.each(j,function(n,m){b.appendChild(this.buildScriptTag(n,d))},this);g.appendChild(b)}},buildScriptTag:function(b,c){var a=document.createElement("script");a.type="text/javascript";a.src=b;if(a.readyState){a.onreadystatechange=function(){if(a.readyState=="loaded"||a.readyState=="complete"){a.onreadystatechange=null;c()}}}else{a.onload=c}return a}});Ext.ns("Ext.grid","Ext.list","Ext.dd","Ext.tree","Ext.form","Ext.menu","Ext.state","Ext.layout.boxOverflow","Ext.app","Ext.ux","Ext.chart","Ext.direct","Ext.slider");Ext.apply(Ext,function(){var c=Ext,a=0,b=null;return{emptyFn:function(){},BLANK_IMAGE_URL:Ext.isIE6||Ext.isIE7||Ext.isAir?"http://www.extjs.com/s.gif":"data:image/gif;base64,R0lGODlhAQABAID/AMDAwAAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw==",extendX:function(d,e){return Ext.extend(d,e(d.prototype))},getDoc:function(){return Ext.get(document)},num:function(e,d){e=Number(Ext.isEmpty(e)||Ext.isArray(e)||typeof e=="boolean"||(typeof e=="string"&&e.trim().length==0)?NaN:e);return isNaN(e)?d:e},value:function(g,d,e){return Ext.isEmpty(g,e)?d:g},escapeRe:function(d){return d.replace(/([-.*+?^${}()|[\]\/\\])/g,"\\$1")},sequence:function(h,d,g,e){h[d]=h[d].createSequence(g,e)},addBehaviors:function(i){if(!Ext.isReady){Ext.onReady(function(){Ext.addBehaviors(i)})}else{var e={},h,d,g;for(d in i){if((h=d.split("@"))[1]){g=h[0];if(!e[g]){e[g]=Ext.select(g)}e[g].on(h[1],i[d])}}e=null}},getScrollBarWidth:function(g){if(!Ext.isReady){return 0}if(g===true||b===null){var i=Ext.getBody().createChild('
      '),h=i.child("div",true);var e=h.offsetWidth;i.setStyle("overflow",(Ext.isWebKit||Ext.isGecko)?"auto":"scroll");var d=h.offsetWidth;i.remove();b=e-d+2}return b},combine:function(){var g=arguments,e=g.length,j=[];for(var h=0;hh?1:-1};Ext.each(d,function(h){g=e(g,h)==1?g:h});return g},mean:function(d){return d.length>0?Ext.sum(d)/d.length:undefined},sum:function(d){var e=0;Ext.each(d,function(g){e+=g});return e},partition:function(d,e){var g=[[],[]];Ext.each(d,function(j,k,h){g[(e&&e(j,k,h))||(!e&&j)?0:1].push(j)});return g},invoke:function(d,e){var h=[],g=Array.prototype.slice.call(arguments,2);Ext.each(d,function(j,k){if(j&&typeof j[e]=="function"){h.push(j[e].apply(j,g))}else{h.push(undefined)}});return h},pluck:function(d,g){var e=[];Ext.each(d,function(h){e.push(h[g])});return e},zip:function(){var n=Ext.partition(arguments,function(i){return typeof i!="function"}),k=n[0],m=n[1][0],d=Ext.max(Ext.pluck(k,"length")),h=[];for(var l=0;l=a.left&&b.right<=a.right&&b.top>=a.top&&b.bottom<=a.bottom)},getArea:function(){var a=this;return((a.bottom-a.top)*(a.right-a.left))},intersect:function(h){var g=this,d=Math.max(g.top,h.top),e=Math.min(g.right,h.right),a=Math.min(g.bottom,h.bottom),c=Math.max(g.left,h.left);if(a>=d&&e>=c){return new Ext.lib.Region(d,e,a,c)}},union:function(h){var g=this,d=Math.min(g.top,h.top),e=Math.max(g.right,h.right),a=Math.max(g.bottom,h.bottom),c=Math.min(g.left,h.left);return new Ext.lib.Region(d,e,a,c)},constrainTo:function(b){var a=this;a.top=a.top.constrain(b.top,b.bottom);a.bottom=a.bottom.constrain(b.top,b.bottom);a.left=a.left.constrain(b.left,b.right);a.right=a.right.constrain(b.left,b.right);return a},adjust:function(d,c,a,g){var e=this;e.top+=d;e.left+=c;e.right+=g;e.bottom+=a;return e}};Ext.lib.Region.getRegion=function(e){var h=Ext.lib.Dom.getXY(e),d=h[1],g=h[0]+e.offsetWidth,a=h[1]+e.offsetHeight,c=h[0];return new Ext.lib.Region(d,g,a,c)};Ext.lib.Point=function(a,c){if(Ext.isArray(a)){c=a[1];a=a[0]}var b=this;b.x=b.right=b.left=b[0]=a;b.y=b.top=b.bottom=b[1]=c};Ext.lib.Point.prototype=new Ext.lib.Region();Ext.apply(Ext.DomHelper,function(){var e,a="afterbegin",h="afterend",i="beforebegin",d="beforeend",b=/tag|children|cn|html$/i;function g(m,p,n,q,l,j){m=Ext.getDom(m);var k;if(e.useDom){k=c(p,null);if(j){m.appendChild(k)}else{(l=="firstChild"?m:m.parentNode).insertBefore(k,m[l]||m)}}else{k=Ext.DomHelper.insertHtml(q,m,Ext.DomHelper.createHtml(p))}return n?Ext.get(k,true):k}function c(j,r){var k,u=document,p,s,m,t;if(Ext.isArray(j)){k=u.createDocumentFragment();for(var q=0,n=j.length;q0){return setTimeout(d,c)}d();return 0},createSequence:function(c,b,a){if(!Ext.isFunction(b)){return c}else{return function(){var d=c.apply(this||window,arguments);b.apply(a||this||window,arguments);return d}}}};Ext.defer=Ext.util.Functions.defer;Ext.createInterceptor=Ext.util.Functions.createInterceptor;Ext.createSequence=Ext.util.Functions.createSequence;Ext.createDelegate=Ext.util.Functions.createDelegate;Ext.apply(Ext.util.Observable.prototype,function(){function a(j){var i=(this.methodEvents=this.methodEvents||{})[j],d,c,g,h=this;if(!i){this.methodEvents[j]=i={};i.originalFn=this[j];i.methodName=j;i.before=[];i.after=[];var b=function(l,k,e){if((c=l.apply(k||h,e))!==undefined){if(typeof c=="object"){if(c.returnValue!==undefined){d=c.returnValue}else{d=c}g=!!c.cancel}else{if(c===false){g=true}else{d=c}}}};this[j]=function(){var l=Array.prototype.slice.call(arguments,0),k;d=c=undefined;g=false;for(var m=0,e=i.before.length;m=525:!((Ext.isGecko&&!Ext.isWindows)||Ext.isOpera);return{_unload:function(){Ext.EventManager.un(window,"resize",this.fireWindowResize,this);c.call(Ext.EventManager)},doResizeEvent:function(){var m=a.getViewHeight(),l=a.getViewWidth();if(h!=m||i!=l){d.fire(i=l,h=m)}},onWindowResize:function(n,m,l){if(!d){d=new Ext.util.Event();k=new Ext.util.DelayedTask(this.doResizeEvent);Ext.EventManager.on(window,"resize",this.fireWindowResize,this)}d.addListener(n,m,l)},fireWindowResize:function(){if(d){k.delay(100)}},onTextResize:function(o,n,l){if(!g){g=new Ext.util.Event();var m=new Ext.Element(document.createElement("div"));m.dom.className="x-text-resize";m.dom.innerHTML="X";m.appendTo(document.body);b=m.dom.offsetHeight;setInterval(function(){if(m.dom.offsetHeight!=b){g.fire(b,b=m.dom.offsetHeight)}},this.textResizeInterval)}g.addListener(o,n,l)},removeResizeListener:function(m,l){if(d){d.removeListener(m,l)}},fireResize:function(){if(d){d.fire(a.getViewWidth(),a.getViewHeight())}},textResizeInterval:50,ieDeferSrc:false,getKeyEvent:function(){return e?"keydown":"keypress"},useKeydown:e}}());Ext.EventManager.on=Ext.EventManager.addListener;Ext.apply(Ext.EventObjectImpl.prototype,{BACKSPACE:8,TAB:9,NUM_CENTER:12,ENTER:13,RETURN:13,SHIFT:16,CTRL:17,CONTROL:17,ALT:18,PAUSE:19,CAPS_LOCK:20,ESC:27,SPACE:32,PAGE_UP:33,PAGEUP:33,PAGE_DOWN:34,PAGEDOWN:34,END:35,HOME:36,LEFT:37,UP:38,RIGHT:39,DOWN:40,PRINT_SCREEN:44,INSERT:45,DELETE:46,ZERO:48,ONE:49,TWO:50,THREE:51,FOUR:52,FIVE:53,SIX:54,SEVEN:55,EIGHT:56,NINE:57,A:65,B:66,C:67,D:68,E:69,F:70,G:71,H:72,I:73,J:74,K:75,L:76,M:77,N:78,O:79,P:80,Q:81,R:82,S:83,T:84,U:85,V:86,W:87,X:88,Y:89,Z:90,CONTEXT_MENU:93,NUM_ZERO:96,NUM_ONE:97,NUM_TWO:98,NUM_THREE:99,NUM_FOUR:100,NUM_FIVE:101,NUM_SIX:102,NUM_SEVEN:103,NUM_EIGHT:104,NUM_NINE:105,NUM_MULTIPLY:106,NUM_PLUS:107,NUM_MINUS:109,NUM_PERIOD:110,NUM_DIVISION:111,F1:112,F2:113,F3:114,F4:115,F5:116,F6:117,F7:118,F8:119,F9:120,F10:121,F11:122,F12:123,isNavKeyPress:function(){var b=this,a=this.normalizeKey(b.keyCode);return(a>=33&&a<=40)||a==b.RETURN||a==b.TAB||a==b.ESC},isSpecialKey:function(){var a=this.normalizeKey(this.keyCode);return(this.type=="keypress"&&this.ctrlKey)||this.isNavKeyPress()||(a==this.BACKSPACE)||(a>=16&&a<=20)||(a>=44&&a<=46)},getPoint:function(){return new Ext.lib.Point(this.xy[0],this.xy[1])},hasModifier:function(){return((this.ctrlKey||this.altKey)||this.shiftKey)}});Ext.Element.addMethods({swallowEvent:function(a,b){var d=this;function c(g){g.stopPropagation();if(b){g.preventDefault()}}if(Ext.isArray(a)){Ext.each(a,function(g){d.on(g,c)});return d}d.on(a,c);return d},relayEvent:function(a,b){this.on(a,function(c){b.fireEvent(a,c)})},clean:function(b){var d=this,e=d.dom,g=e.firstChild,c=-1;if(Ext.Element.data(e,"isCleaned")&&b!==true){return d}while(g){var a=g.nextSibling;if(g.nodeType==3&&!(/\S/.test(g.nodeValue))){e.removeChild(g)}else{g.nodeIndex=++c}g=a}Ext.Element.data(e,"isCleaned",true);return d},load:function(){var a=this.getUpdater();a.update.apply(a,arguments);return this},getUpdater:function(){return this.updateManager||(this.updateManager=new Ext.Updater(this))},update:function(html,loadScripts,callback){if(!this.dom){return this}html=html||"";if(loadScripts!==true){this.dom.innerHTML=html;if(typeof callback=="function"){callback()}return this}var id=Ext.id(),dom=this.dom;html+='';Ext.lib.Event.onAvailable(id,function(){var DOC=document,hd=DOC.getElementsByTagName("head")[0],re=/(?:]*)?>)((\n|\r|.)*?)(?:<\/script>)/ig,srcRe=/\ssrc=([\'\"])(.*?)\1/i,typeRe=/\stype=([\'\"])(.*?)\1/i,match,attrs,srcMatch,typeMatch,el,s;while((match=re.exec(html))){attrs=match[1];srcMatch=attrs?attrs.match(srcRe):false;if(srcMatch&&srcMatch[2]){s=DOC.createElement("script");s.src=srcMatch[2];typeMatch=attrs.match(typeRe);if(typeMatch&&typeMatch[2]){s.type=typeMatch[2]}hd.appendChild(s)}else{if(match[2]&&match[2].length>0){if(window.execScript){window.execScript(match[2])}else{window.eval(match[2])}}}}el=DOC.getElementById(id);if(el){Ext.removeNode(el)}if(typeof callback=="function"){callback()}});dom.innerHTML=html.replace(/(?:)((\n|\r|.)*?)(?:<\/script>)/ig,"");return this},removeAllListeners:function(){this.removeAnchor();Ext.EventManager.removeAll(this.dom);return this},createProxy:function(a,e,d){a=(typeof a=="object")?a:{tag:"div",cls:a};var c=this,b=e?Ext.DomHelper.append(e,a,true):Ext.DomHelper.insertBefore(c.dom,a,true);if(d&&c.setBox&&c.getBox){b.setBox(c.getBox())}return b}});Ext.Element.prototype.getUpdateManager=Ext.Element.prototype.getUpdater;Ext.Element.addMethods({getAnchorXY:function(e,l,q){e=(e||"tl").toLowerCase();q=q||{};var k=this,b=k.dom==document.body||k.dom==document,n=q.width||b?Ext.lib.Dom.getViewWidth():k.getWidth(),i=q.height||b?Ext.lib.Dom.getViewHeight():k.getHeight(),p,a=Math.round,c=k.getXY(),m=k.getScroll(),j=b?m.left:!l?c[0]:0,g=b?m.top:!l?c[1]:0,d={c:[a(n*0.5),a(i*0.5)],t:[a(n*0.5),0],l:[0,a(i*0.5)],r:[n,a(i*0.5)],b:[a(n*0.5),i],tl:[0,0],bl:[0,i],br:[n,i],tr:[n,0]};p=d[e];return[p[0]+j,p[1]+g]},anchorTo:function(b,h,c,a,k,l){var i=this,e=i.dom,j=!Ext.isEmpty(k),d=function(){Ext.fly(e).alignTo(b,h,c,a);Ext.callback(l,Ext.fly(e))},g=this.getAnchor();this.removeAnchor();Ext.apply(g,{fn:d,scroll:j});Ext.EventManager.onWindowResize(d,null);if(j){Ext.EventManager.on(window,"scroll",d,null,{buffer:!isNaN(k)?k:50})}d.call(i);return i},removeAnchor:function(){var b=this,a=this.getAnchor();if(a&&a.fn){Ext.EventManager.removeResizeListener(a.fn);if(a.scroll){Ext.EventManager.un(window,"scroll",a.fn)}delete a.fn}return b},getAnchor:function(){var b=Ext.Element.data,c=this.dom;if(!c){return}var a=b(c,"_anchor");if(!a){a=b(c,"_anchor",{})}return a},getAlignToXY:function(g,A,B){g=Ext.get(g);if(!g||!g.dom){throw"Element.alignToXY with an element that doesn't exist"}B=B||[0,0];A=(!A||A=="?"?"tl-bl?":(!(/-/).test(A)&&A!==""?"tl-"+A:A||"tl-bl")).toLowerCase();var K=this,H=K.dom,M,L,n,l,s,F,v,t=Ext.lib.Dom.getViewWidth()-10,G=Ext.lib.Dom.getViewHeight()-10,b,i,j,k,u,z,N=document,J=N.documentElement,q=N.body,E=(J.scrollLeft||q.scrollLeft||0)+5,D=(J.scrollTop||q.scrollTop||0)+5,I=false,e="",a="",C=A.match(/^([a-z]+)-([a-z]+)(\?)?$/);if(!C){throw"Element.alignTo with an invalid alignment "+A}e=C[1];a=C[2];I=!!C[3];M=K.getAnchorXY(e,true);L=g.getAnchorXY(a,false);n=L[0]-M[0]+B[0];l=L[1]-M[1]+B[1];if(I){s=K.getWidth();F=K.getHeight();v=g.getRegion();b=e.charAt(0);i=e.charAt(e.length-1);j=a.charAt(0);k=a.charAt(a.length-1);u=((b=="t"&&j=="b")||(b=="b"&&j=="t"));z=((i=="r"&&k=="l")||(i=="l"&&k=="r"));if(n+s>t+E){n=z?v.left-s:t+E-s}if(nG+D){l=u?v.top-F:G+D-F}if(lB){p=B-q;m=true}if((o+C)>g){o=g-C;m=true}if(p"+String.format(Ext.Element.boxMarkup,c)+"
      "));Ext.DomQuery.selectNode("."+c+"-mc",d.dom).appendChild(this.dom);return d},setSize:function(e,c,d){var g=this;if(typeof e=="object"){c=e.height;e=e.width}e=g.adjustWidth(e);c=g.adjustHeight(c);if(!d||!g.anim){g.dom.style.width=g.addUnits(e);g.dom.style.height=g.addUnits(c)}else{g.anim({width:{to:e},height:{to:c}},g.preanim(arguments,2))}return g},getComputedHeight:function(){var d=this,c=Math.max(d.dom.offsetHeight,d.dom.clientHeight);if(!c){c=parseFloat(d.getStyle("height"))||0;if(!d.isBorderBox()){c+=d.getFrameWidth("tb")}}return c},getComputedWidth:function(){var c=Math.max(this.dom.offsetWidth,this.dom.clientWidth);if(!c){c=parseFloat(this.getStyle("width"))||0;if(!this.isBorderBox()){c+=this.getFrameWidth("lr")}}return c},getFrameWidth:function(d,c){return c&&this.isBorderBox()?0:(this.getPadding(d)+this.getBorderWidth(d))},addClassOnOver:function(c){this.hover(function(){Ext.fly(this,a).addClass(c)},function(){Ext.fly(this,a).removeClass(c)});return this},addClassOnFocus:function(c){this.on("focus",function(){Ext.fly(this,a).addClass(c)},this.dom);this.on("blur",function(){Ext.fly(this,a).removeClass(c)},this.dom);return this},addClassOnClick:function(c){var d=this.dom;this.on("mousedown",function(){Ext.fly(d,a).addClass(c);var g=Ext.getDoc(),e=function(){Ext.fly(d,a).removeClass(c);g.removeListener("mouseup",e)};g.on("mouseup",e)});return this},getViewSize:function(){var g=document,h=this.dom,c=(h==g||h==g.body);if(c){var e=Ext.lib.Dom;return{width:e.getViewWidth(),height:e.getViewHeight()}}else{return{width:h.clientWidth,height:h.clientHeight}}},getStyleSize:function(){var j=this,c,i,l=document,m=this.dom,e=(m==l||m==l.body),g=m.style;if(e){var k=Ext.lib.Dom;return{width:k.getViewWidth(),height:k.getViewHeight()}}if(g.width&&g.width!="auto"){c=parseFloat(g.width);if(j.isBorderBox()){c-=j.getFrameWidth("lr")}}if(g.height&&g.height!="auto"){i=parseFloat(g.height);if(j.isBorderBox()){i-=j.getFrameWidth("tb")}}return{width:c||j.getWidth(true),height:i||j.getHeight(true)}},getSize:function(c){return{width:this.getWidth(c),height:this.getHeight(c)}},repaint:function(){var c=this.dom;this.addClass("x-repaint");setTimeout(function(){Ext.fly(c).removeClass("x-repaint")},1);return this},unselectable:function(){this.dom.unselectable="on";return this.swallowEvent("selectstart",true).addClass("x-unselectable")},getMargins:function(d){var e=this,c,g={t:"top",l:"left",r:"right",b:"bottom"},h={};if(!d){for(c in e.margins){h[g[c]]=parseFloat(e.getStyle(e.margins[c]))||0}return h}else{return e.addStyles.call(e,d,e.margins)}}}}());Ext.Element.addMethods({setBox:function(e,g,b){var d=this,a=e.width,c=e.height;if((g&&!d.autoBoxAdjust)&&!d.isBorderBox()){a-=(d.getBorderWidth("lr")+d.getPadding("lr"));c-=(d.getBorderWidth("tb")+d.getPadding("tb"))}d.setBounds(e.x,e.y,a,c,d.animTest.call(d,arguments,b,2));return d},getBox:function(j,p){var m=this,v,e,o,d=m.getBorderWidth,q=m.getPadding,g,a,u,n;if(!p){v=m.getXY()}else{e=parseInt(m.getStyle("left"),10)||0;o=parseInt(m.getStyle("top"),10)||0;v=[e,o]}var c=m.dom,s=c.offsetWidth,i=c.offsetHeight,k;if(!j){k={x:v[0],y:v[1],0:v[0],1:v[1],width:s,height:i}}else{g=d.call(m,"l")+q.call(m,"l");a=d.call(m,"r")+q.call(m,"r");u=d.call(m,"t")+q.call(m,"t");n=d.call(m,"b")+q.call(m,"b");k={x:v[0]+g,y:v[1]+u,0:v[0]+g,1:v[1]+u,width:s-(g+a),height:i-(u+n)}}k.right=k.x+k.width;k.bottom=k.y+k.height;return k},move:function(j,b,c){var g=this,m=g.getXY(),k=m[0],i=m[1],d=[k-b,i],l=[k+b,i],h=[k,i-b],a=[k,i+b],e={l:d,left:d,r:l,right:l,t:h,top:h,up:h,b:a,bottom:a,down:a};j=j.toLowerCase();g.moveTo(e[j][0],e[j][1],g.animTest.call(g,arguments,c,2))},setLeftTop:function(d,c){var b=this,a=b.dom.style;a.left=b.addUnits(d);a.top=b.addUnits(c);return b},getRegion:function(){return Ext.lib.Dom.getRegion(this.dom)},setBounds:function(b,g,d,a,c){var e=this;if(!c||!e.anim){e.setSize(d,a);e.setLocation(b,g)}else{e.anim({points:{to:[b,g]},width:{to:e.adjustWidth(d)},height:{to:e.adjustHeight(a)}},e.preanim(arguments,4),"motion")}return e},setRegion:function(b,a){return this.setBounds(b.left,b.top,b.right-b.left,b.bottom-b.top,this.animTest.call(this,arguments,a,1))}});Ext.Element.addMethods({scrollTo:function(b,d,a){var e=/top/i.test(b),c=this,g=c.dom,h;if(!a||!c.anim){h="scroll"+(e?"Top":"Left");g[h]=d}else{h="scroll"+(e?"Left":"Top");c.anim({scroll:{to:e?[g[h],d]:[d,g[h]]}},c.preanim(arguments,2),"scroll")}return c},scrollIntoView:function(e,i){var p=Ext.getDom(e)||Ext.getBody().dom,h=this.dom,g=this.getOffsetsTo(p),k=g[0]+p.scrollLeft,u=g[1]+p.scrollTop,q=u+h.offsetHeight,d=k+h.offsetWidth,a=p.clientHeight,m=parseInt(p.scrollTop,10),s=parseInt(p.scrollLeft,10),j=m+a,n=s+p.clientWidth;if(h.offsetHeight>a||uj){p.scrollTop=q-a}}p.scrollTop=p.scrollTop;if(i!==false){if(h.offsetWidth>p.clientWidth||kn){p.scrollLeft=d-p.clientWidth}}p.scrollLeft=p.scrollLeft}return this},scrollChildIntoView:function(b,a){Ext.fly(b,"_scrollChildIntoView").scrollIntoView(this,a)},scroll:function(m,b,d){if(!this.isScrollable()){return false}var e=this.dom,g=e.scrollLeft,p=e.scrollTop,n=e.scrollWidth,k=e.scrollHeight,i=e.clientWidth,a=e.clientHeight,c=false,o,j={l:Math.min(g+b,n-i),r:o=Math.max(g-b,0),t:Math.max(p-b,0),b:Math.min(p+b,k-a)};j.d=j.b;j.u=j.t;m=m.substr(0,1);if((o=j[m])>-1){c=true;this.scrollTo(m=="l"||m=="r"?"left":"top",o,this.preanim(arguments,2))}return c}});Ext.Element.addMethods(function(){var d="visibility",b="display",a="hidden",h="none",c="x-masked",g="x-masked-relative",e=Ext.Element.data;return{isVisible:function(i){var j=!this.isStyle(d,a)&&!this.isStyle(b,h),k=this.dom.parentNode;if(i!==true||!j){return j}while(k&&!(/^body/i.test(k.tagName))){if(!Ext.fly(k,"_isVisible").isVisible()){return false}k=k.parentNode}return true},isDisplayed:function(){return !this.isStyle(b,h)},enableDisplayMode:function(i){this.setVisibilityMode(Ext.Element.DISPLAY);if(!Ext.isEmpty(i)){e(this.dom,"originalDisplay",i)}return this},mask:function(j,n){var p=this,l=p.dom,o=Ext.DomHelper,m="ext-el-mask-msg",i,q;if(!/^body/i.test(l.tagName)&&p.getStyle("position")=="static"){p.addClass(g)}if(i=e(l,"maskMsg")){i.remove()}if(i=e(l,"mask")){i.remove()}q=o.append(l,{cls:"ext-el-mask"},true);e(l,"mask",q);p.addClass(c);q.setDisplayed(true);if(typeof j=="string"){var k=o.append(l,{cls:m,cn:{tag:"div"}},true);e(l,"maskMsg",k);k.dom.className=n?m+" "+n:m;k.dom.firstChild.innerHTML=j;k.setDisplayed(true);k.center(p)}if(Ext.isIE&&!(Ext.isIE7&&Ext.isStrict)&&p.getStyle("height")=="auto"){q.setSize(undefined,p.getHeight())}return q},unmask:function(){var k=this,l=k.dom,i=e(l,"mask"),j=e(l,"maskMsg");if(i){if(j){j.remove();e(l,"maskMsg",undefined)}i.remove();e(l,"mask",undefined);k.removeClass([c,g])}},isMasked:function(){var i=e(this.dom,"mask");return i&&i.isVisible()},createShim:function(){var i=document.createElement("iframe"),j;i.frameBorder="0";i.className="ext-shim";i.src=Ext.SSL_SECURE_URL;j=Ext.get(this.dom.parentNode.insertBefore(i,this.dom));j.autoBoxAdjust=false;return j}}}());Ext.Element.addMethods({addKeyListener:function(b,d,c){var a;if(typeof b!="object"||Ext.isArray(b)){a={key:b,fn:d,scope:c}}else{a={key:b.key,shift:b.shift,ctrl:b.ctrl,alt:b.alt,fn:d,scope:c}}return new Ext.KeyMap(this,a)},addKeyMap:function(a){return new Ext.KeyMap(this,a)}});Ext.CompositeElementLite.importElementMethods();Ext.apply(Ext.CompositeElementLite.prototype,{addElements:function(c,a){if(!c){return this}if(typeof c=="string"){c=Ext.Element.selectorFunction(c,a)}var b=this.elements;Ext.each(c,function(d){b.push(Ext.get(d))});return this},first:function(){return this.item(0)},last:function(){return this.item(this.getCount()-1)},contains:function(a){return this.indexOf(a)!=-1},removeElement:function(d,e){var c=this,a=this.elements,b;Ext.each(d,function(g){if((b=(a[g]||a[g=c.indexOf(g)]))){if(e){if(b.dom){b.remove()}else{Ext.removeNode(b)}}a.splice(g,1)}});return this}});Ext.CompositeElement=Ext.extend(Ext.CompositeElementLite,{constructor:function(b,a){this.elements=[];this.add(b,a)},getElement:function(a){return a},transformElement:function(a){return Ext.get(a)}});Ext.Element.select=function(a,d,b){var c;if(typeof a=="string"){c=Ext.Element.selectorFunction(a,b)}else{if(a.length!==undefined){c=a}else{throw"Invalid selector"}}return(d===true)?new Ext.CompositeElement(c):new Ext.CompositeElementLite(c)};Ext.select=Ext.Element.select;Ext.UpdateManager=Ext.Updater=Ext.extend(Ext.util.Observable,function(){var b="beforeupdate",d="update",c="failure";function a(h){var i=this;i.transaction=null;if(h.argument.form&&h.argument.reset){try{h.argument.form.reset()}catch(j){}}if(i.loadScripts){i.renderer.render(i.el,h,i,g.createDelegate(i,[h]))}else{i.renderer.render(i.el,h,i);g.call(i,h)}}function g(h,i,j){this.fireEvent(i||d,this.el,h);if(Ext.isFunction(h.argument.callback)){h.argument.callback.call(h.argument.scope,this.el,Ext.isEmpty(j)?true:false,h,h.argument.options)}}function e(h){g.call(this,h,c,!!(this.transaction=null))}return{constructor:function(i,h){var j=this;i=Ext.get(i);if(!h&&i.updateManager){return i.updateManager}j.el=i;j.defaultUrl=null;j.addEvents(b,d,c);Ext.apply(j,Ext.Updater.defaults);j.transaction=null;j.refreshDelegate=j.refresh.createDelegate(j);j.updateDelegate=j.update.createDelegate(j);j.formUpdateDelegate=(j.formUpdate||function(){}).createDelegate(j);j.renderer=j.renderer||j.getDefaultRenderer();Ext.Updater.superclass.constructor.call(j)},setRenderer:function(h){this.renderer=h},getRenderer:function(){return this.renderer},getDefaultRenderer:function(){return new Ext.Updater.BasicRenderer()},setDefaultUrl:function(h){this.defaultUrl=h},getEl:function(){return this.el},update:function(i,n,p,l){var k=this,h,j;if(k.fireEvent(b,k.el,i,n)!==false){if(Ext.isObject(i)){h=i;i=h.url;n=n||h.params;p=p||h.callback;l=l||h.discardUrl;j=h.scope;if(!Ext.isEmpty(h.nocache)){k.disableCaching=h.nocache}if(!Ext.isEmpty(h.text)){k.indicatorText='
      '+h.text+"
      "}if(!Ext.isEmpty(h.scripts)){k.loadScripts=h.scripts}if(!Ext.isEmpty(h.timeout)){k.timeout=h.timeout}}k.showLoading();if(!l){k.defaultUrl=i}if(Ext.isFunction(i)){i=i.call(k)}var m=Ext.apply({},{url:i,params:(Ext.isFunction(n)&&j)?n.createDelegate(j):n,success:a,failure:e,scope:k,callback:undefined,timeout:(k.timeout*1000),disableCaching:k.disableCaching,argument:{options:h,url:i,form:null,callback:p,scope:j||window,params:n}},h);k.transaction=Ext.Ajax.request(m)}},formUpdate:function(k,h,j,l){var i=this;if(i.fireEvent(b,i.el,k,h)!==false){if(Ext.isFunction(h)){h=h.call(i)}k=Ext.getDom(k);i.transaction=Ext.Ajax.request({form:k,url:h,success:a,failure:e,scope:i,timeout:(i.timeout*1000),argument:{url:h,form:k,callback:l,reset:j}});i.showLoading.defer(1,i)}},startAutoRefresh:function(i,j,l,m,h){var k=this;if(h){k.update(j||k.defaultUrl,l,m,true)}if(k.autoRefreshProcId){clearInterval(k.autoRefreshProcId)}k.autoRefreshProcId=setInterval(k.update.createDelegate(k,[j||k.defaultUrl,l,m,true]),i*1000)},stopAutoRefresh:function(){if(this.autoRefreshProcId){clearInterval(this.autoRefreshProcId);delete this.autoRefreshProcId}},isAutoRefreshing:function(){return !!this.autoRefreshProcId},showLoading:function(){if(this.showLoadIndicator){this.el.dom.innerHTML=this.indicatorText}},abort:function(){if(this.transaction){Ext.Ajax.abort(this.transaction)}},isUpdating:function(){return this.transaction?Ext.Ajax.isLoading(this.transaction):false},refresh:function(h){if(this.defaultUrl){this.update(this.defaultUrl,null,h,true)}}}}());Ext.Updater.defaults={timeout:30,disableCaching:false,showLoadIndicator:true,indicatorText:'
      Loading...
      ',loadScripts:false,sslBlankUrl:Ext.SSL_SECURE_URL};Ext.Updater.updateElement=function(d,c,e,b){var a=Ext.get(d).getUpdater();Ext.apply(a,b);a.update(c,e,b?b.callback:null)};Ext.Updater.BasicRenderer=function(){};Ext.Updater.BasicRenderer.prototype={render:function(c,a,b,d){c.update(a.responseText,b.loadScripts,d)}};(function(){Date.useStrict=false;function b(d){var c=Array.prototype.slice.call(arguments,1);return d.replace(/\{(\d+)\}/g,function(e,g){return c[g]})}Date.formatCodeToRegex=function(d,c){var e=Date.parseCodes[d];if(e){e=typeof e=="function"?e():e;Date.parseCodes[d]=e}return e?Ext.applyIf({c:e.c?b(e.c,c||"{0}"):e.c},e):{g:0,c:null,s:Ext.escapeRe(d)}};var a=Date.formatCodeToRegex;Ext.apply(Date,{parseFunctions:{"M$":function(d,c){var e=new RegExp("\\/Date\\(([-+])?(\\d+)(?:[+-]\\d{4})?\\)\\/");var g=(d||"").match(e);return g?new Date(((g[1]||"")+g[2])*1):null}},parseRegexes:[],formatFunctions:{"M$":function(){return"\\/Date("+this.getTime()+")\\/"}},y2kYear:50,MILLI:"ms",SECOND:"s",MINUTE:"mi",HOUR:"h",DAY:"d",MONTH:"mo",YEAR:"y",defaults:{},dayNames:["Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"],monthNames:["January","February","March","April","May","June","July","August","September","October","November","December"],monthNumbers:{Jan:0,Feb:1,Mar:2,Apr:3,May:4,Jun:5,Jul:6,Aug:7,Sep:8,Oct:9,Nov:10,Dec:11},getShortMonthName:function(c){return Date.monthNames[c].substring(0,3)},getShortDayName:function(c){return Date.dayNames[c].substring(0,3)},getMonthNumber:function(c){return Date.monthNumbers[c.substring(0,1).toUpperCase()+c.substring(1,3).toLowerCase()]},formatContainsHourInfo:(function(){var d=/(\\.)/g,c=/([gGhHisucUOPZ]|M\$)/;return function(e){return c.test(e.replace(d,""))}})(),formatCodes:{d:"String.leftPad(this.getDate(), 2, '0')",D:"Date.getShortDayName(this.getDay())",j:"this.getDate()",l:"Date.dayNames[this.getDay()]",N:"(this.getDay() ? this.getDay() : 7)",S:"this.getSuffix()",w:"this.getDay()",z:"this.getDayOfYear()",W:"String.leftPad(this.getWeekOfYear(), 2, '0')",F:"Date.monthNames[this.getMonth()]",m:"String.leftPad(this.getMonth() + 1, 2, '0')",M:"Date.getShortMonthName(this.getMonth())",n:"(this.getMonth() + 1)",t:"this.getDaysInMonth()",L:"(this.isLeapYear() ? 1 : 0)",o:"(this.getFullYear() + (this.getWeekOfYear() == 1 && this.getMonth() > 0 ? +1 : (this.getWeekOfYear() >= 52 && this.getMonth() < 11 ? -1 : 0)))",Y:"String.leftPad(this.getFullYear(), 4, '0')",y:"('' + this.getFullYear()).substring(2, 4)",a:"(this.getHours() < 12 ? 'am' : 'pm')",A:"(this.getHours() < 12 ? 'AM' : 'PM')",g:"((this.getHours() % 12) ? this.getHours() % 12 : 12)",G:"this.getHours()",h:"String.leftPad((this.getHours() % 12) ? this.getHours() % 12 : 12, 2, '0')",H:"String.leftPad(this.getHours(), 2, '0')",i:"String.leftPad(this.getMinutes(), 2, '0')",s:"String.leftPad(this.getSeconds(), 2, '0')",u:"String.leftPad(this.getMilliseconds(), 3, '0')",O:"this.getGMTOffset()",P:"this.getGMTOffset(true)",T:"this.getTimezone()",Z:"(this.getTimezoneOffset() * -60)",c:function(){for(var k="Y-m-dTH:i:sP",h=[],g=0,d=k.length;g= 0 && y >= 0){","v = new Date(y < 100 ? 100 : y, 0, 1, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);","v = !strict? v : (strict === true && (z <= 364 || (v.isLeapYear() && z <= 365))? v.add(Date.DAY, z) : null);","}else if(strict === true && !Date.isValid(y, m + 1, d, h, i, s, ms)){","v = null;","}else{","v = new Date(y < 100 ? 100 : y, m, d, h, i, s, ms).add(Date.YEAR, y < 100 ? y - 100 : 0);","}","}","}","if(v){","if(zz != null){","v = v.add(Date.SECOND, -v.getTimezoneOffset() * 60 - zz);","}else if(o){","v = v.add(Date.MINUTE, -v.getTimezoneOffset() + (sn == '+'? -1 : 1) * (hr * 60 + mn));","}","}","return v;"].join("\n");return function(m){var e=Date.parseRegexes.length,o=1,g=[],l=[],k=false,d="",j=0,h,n;for(;j Date.y2kYear ? 1900 + ty : 2000 + ty;\n",s:"(\\d{1,2})"},a:function(){return a("A")},A:{calcLast:true,g:1,c:"if (/(am)/i.test(results[{0}])) {\nif (!h || h == 12) { h = 0; }\n} else { if (!h || h < 12) { h = (h || 0) + 12; }}",s:"(AM|PM|am|pm)"},g:function(){return a("G")},G:{g:1,c:"h = parseInt(results[{0}], 10);\n",s:"(\\d{1,2})"},h:function(){return a("H")},H:{g:1,c:"h = parseInt(results[{0}], 10);\n",s:"(\\d{2})"},i:{g:1,c:"i = parseInt(results[{0}], 10);\n",s:"(\\d{2})"},s:{g:1,c:"s = parseInt(results[{0}], 10);\n",s:"(\\d{2})"},u:{g:1,c:"ms = results[{0}]; ms = parseInt(ms, 10)/Math.pow(10, ms.length - 3);\n",s:"(\\d+)"},O:{g:1,c:["o = results[{0}];","var sn = o.substring(0,1),","hr = o.substring(1,3)*1 + Math.floor(o.substring(3,5) / 60),","mn = o.substring(3,5) % 60;","o = ((-12 <= (hr*60 + mn)/60) && ((hr*60 + mn)/60 <= 14))? (sn + String.leftPad(hr, 2, '0') + String.leftPad(mn, 2, '0')) : null;\n"].join("\n"),s:"([+-]\\d{4})"},P:{g:1,c:["o = results[{0}];","var sn = o.substring(0,1),","hr = o.substring(1,3)*1 + Math.floor(o.substring(4,6) / 60),","mn = o.substring(4,6) % 60;","o = ((-12 <= (hr*60 + mn)/60) && ((hr*60 + mn)/60 <= 14))? (sn + String.leftPad(hr, 2, '0') + String.leftPad(mn, 2, '0')) : null;\n"].join("\n"),s:"([+-]\\d{2}:\\d{2})"},T:{g:0,c:null,s:"[A-Z]{1,4}"},Z:{g:1,c:"zz = results[{0}] * 1;\nzz = (-43200 <= zz && zz <= 50400)? zz : null;\n",s:"([+-]?\\d{1,5})"},c:function(){var e=[],c=[a("Y",1),a("m",2),a("d",3),a("h",4),a("i",5),a("s",6),{c:"ms = results[7] || '0'; ms = parseInt(ms, 10)/Math.pow(10, ms.length - 3);\n"},{c:["if(results[8]) {","if(results[8] == 'Z'){","zz = 0;","}else if (results[8].indexOf(':') > -1){",a("P",8).c,"}else{",a("O",8).c,"}","}"].join("\n")}];for(var g=0,d=c.length;g0?"-":"+")+String.leftPad(Math.floor(Math.abs(this.getTimezoneOffset())/60),2,"0")+(a?":":"")+String.leftPad(Math.abs(this.getTimezoneOffset()%60),2,"0")},getDayOfYear:function(){var b=0,e=this.clone(),a=this.getMonth(),c;for(c=0,e.setDate(1),e.setMonth(0);c28){a=Math.min(a,this.getFirstDateOfMonth().add("mo",c).getLastDateOfMonth().getDate())}e.setDate(a);e.setMonth(this.getMonth()+c);break;case Date.YEAR:e.setFullYear(this.getFullYear()+c);break}return e},between:function(c,a){var b=this.getTime();return c.getTime()<=b&&b<=a.getTime()}});Date.prototype.format=Date.prototype.dateFormat;if(Ext.isSafari&&(navigator.userAgent.match(/WebKit\/(\d+)/)[1]||NaN)<420){Ext.apply(Date.prototype,{_xMonth:Date.prototype.setMonth,_xDate:Date.prototype.setDate,setMonth:function(a){if(a<=-1){var d=Math.ceil(-a),c=Math.ceil(d/12),b=(d%12)?12-d%12:0;this.setFullYear(this.getFullYear()-c);return this._xMonth(b)}else{return this._xMonth(a)}},setDate:function(a){return this.setTime(this.getTime()-(this.getDate()-a)*86400000)}})}Ext.util.MixedCollection=function(b,a){this.items=[];this.map={};this.keys=[];this.length=0;this.addEvents("clear","add","replace","remove","sort");this.allowFunctions=b===true;if(a){this.getKey=a}Ext.util.MixedCollection.superclass.constructor.call(this)};Ext.extend(Ext.util.MixedCollection,Ext.util.Observable,{allowFunctions:false,add:function(b,c){if(arguments.length==1){c=arguments[0];b=this.getKey(c)}if(typeof b!="undefined"&&b!==null){var a=this.map[b];if(typeof a!="undefined"){return this.replace(b,c)}this.map[b]=c}this.length++;this.items.push(c);this.keys.push(b);this.fireEvent("add",this.length-1,c,b);return c},getKey:function(a){return a.id},replace:function(c,d){if(arguments.length==1){d=arguments[0];c=this.getKey(d)}var a=this.map[c];if(typeof c=="undefined"||c===null||typeof a=="undefined"){return this.add(c,d)}var b=this.indexOfKey(c);this.items[b]=d;this.map[c]=d;this.fireEvent("replace",c,a,d);return d},addAll:function(e){if(arguments.length>1||Ext.isArray(e)){var b=arguments.length>1?arguments:e;for(var d=0,a=b.length;d=this.length){return this.add(b,c)}this.length++;this.items.splice(a,0,c);if(typeof b!="undefined"&&b!==null){this.map[b]=c}this.keys.splice(a,0,b);this.fireEvent("add",a,c,b);return c},remove:function(a){return this.removeAt(this.indexOf(a))},removeAt:function(a){if(a=0){this.length--;var c=this.items[a];this.items.splice(a,1);var b=this.keys[a];if(typeof b!="undefined"){delete this.map[b]}this.keys.splice(a,1);this.fireEvent("remove",c,b);return c}return false},removeKey:function(a){return this.removeAt(this.indexOfKey(a))},getCount:function(){return this.length},indexOf:function(a){return this.items.indexOf(a)},indexOfKey:function(a){return this.keys.indexOf(a)},item:function(b){var a=this.map[b],c=a!==undefined?a:(typeof b=="number")?this.items[b]:undefined;return typeof c!="function"||this.allowFunctions?c:null},itemAt:function(a){return this.items[a]},key:function(a){return this.map[a]},contains:function(a){return this.indexOf(a)!=-1},containsKey:function(a){return typeof this.map[a]!="undefined"},clear:function(){this.length=0;this.items=[];this.keys=[];this.map={};this.fireEvent("clear")},first:function(){return this.items[0]},last:function(){return this.items[this.length-1]},_sort:function(k,a,j){var d,e,b=String(a).toUpperCase()=="DESC"?-1:1,h=[],l=this.keys,g=this.items;j=j||function(i,c){return i-c};for(d=0,e=g.length;de?1:(g=a;c--){d[d.length]=b[c]}}return d},filter:function(c,b,d,a){if(Ext.isEmpty(b,false)){return this.clone()}b=this.createValueMatcher(b,d,a);return this.filterBy(function(e){return e&&b.test(e[c])})},filterBy:function(g,e){var h=new Ext.util.MixedCollection();h.getKey=this.getKey;var b=this.keys,d=this.items;for(var c=0,a=d.length;c]+>/gi,stripScriptsRe=/(?:)((\n|\r|.)*?)(?:<\/script>)/ig,nl2brRe=/\r?\n/g;return{ellipsis:function(value,len,word){if(value&&value.length>len){if(word){var vs=value.substr(0,len-2),index=Math.max(vs.lastIndexOf(" "),vs.lastIndexOf("."),vs.lastIndexOf("!"),vs.lastIndexOf("?"));if(index==-1||index<(len-15)){return value.substr(0,len-3)+"..."}else{return vs.substr(0,index)+"..."}}else{return value.substr(0,len-3)+"..."}}return value},undef:function(value){return value!==undefined?value:""},defaultValue:function(value,defaultValue){if(!defaultValue&&defaultValue!==0){defaultValue=""}return value!==undefined&&value!==""?value:defaultValue},htmlEncode:function(value){return !value?value:String(value).replace(/&/g,"&").replace(/>/g,">").replace(/").replace(/</g,"<").replace(/"/g,'"').replace(/&/g,"&")},trim:function(value){return String(value).replace(trimRe,"")},substr:function(value,start,length){return String(value).substr(start,length)},lowercase:function(value){return String(value).toLowerCase()},uppercase:function(value){return String(value).toUpperCase()},capitalize:function(value){return !value?value:value.charAt(0).toUpperCase()+value.substr(1).toLowerCase()},call:function(value,fn){if(arguments.length>2){var args=Array.prototype.slice.call(arguments,2);args.unshift(value);return eval(fn).apply(window,args)}else{return eval(fn).call(window,value)}},usMoney:function(v){v=(Math.round((v-0)*100))/100;v=(v==Math.floor(v))?v+".00":((v*10==Math.floor(v*10))?v+"0":v);v=String(v);var ps=v.split("."),whole=ps[0],sub=ps[1]?"."+ps[1]:".00",r=/(\d+)(\d{3})/;while(r.test(whole)){whole=whole.replace(r,"$1,$2")}v=whole+sub;if(v.charAt(0)=="-"){return"-$"+v.substr(1)}return"$"+v},date:function(v,format){if(!v){return""}if(!Ext.isDate(v)){v=new Date(Date.parse(v))}return v.dateFormat(format||"m/d/Y")},dateRenderer:function(format){return function(v){return Ext.util.Format.date(v,format)}},stripTags:function(v){return !v?v:String(v).replace(stripTagsRE,"")},stripScripts:function(v){return !v?v:String(v).replace(stripScriptsRe,"")},fileSize:function(size){if(size<1024){return size+" bytes"}else{if(size<1048576){return(Math.round(((size*10)/1024))/10)+" KB"}else{return(Math.round(((size*10)/1048576))/10)+" MB"}}},math:function(){var fns={};return function(v,a){if(!fns[a]){fns[a]=new Function("v","return v "+a+";")}return fns[a](v)}}(),round:function(value,precision){var result=Number(value);if(typeof precision=="number"){precision=Math.pow(10,precision);result=Math.round(value*precision)/precision}return result},number:function(v,format){if(!format){return v}v=Ext.num(v,NaN);if(isNaN(v)){return""}var comma=",",dec=".",i18n=false,neg=v<0;v=Math.abs(v);if(format.substr(format.length-2)=="/i"){format=format.substr(0,format.length-2);i18n=true;comma=".";dec=","}var hasComma=format.indexOf(comma)!=-1,psplit=(i18n?format.replace(/[^\d\,]/g,""):format.replace(/[^\d\.]/g,"")).split(dec);if(1")}}}();Ext.XTemplate=function(){Ext.XTemplate.superclass.constructor.apply(this,arguments);var y=this,j=y.html,q=/]*>((?:(?=([^<]+))\2|<(?!tpl\b[^>]*>))*?)<\/tpl>/,d=/^]*?for="(.*?)"/,v=/^]*?if="(.*?)"/,x=/^]*?exec="(.*?)"/,r,p=0,k=[],o="values",w="parent",l="xindex",n="xcount",e="return ",c="with(values){ ";j=["",j,""].join("");while((r=j.match(q))){var b=r[0].match(d),a=r[0].match(v),A=r[0].match(x),g=null,h=null,t=null,z=b&&b[1]?b[1]:"";if(a){g=a&&a[1]?a[1]:null;if(g){h=new Function(o,w,l,n,c+e+(Ext.util.Format.htmlDecode(g))+"; }")}}if(A){g=A&&A[1]?A[1]:null;if(g){t=new Function(o,w,l,n,c+(Ext.util.Format.htmlDecode(g))+"; }")}}if(z){switch(z){case".":z=new Function(o,w,c+e+o+"; }");break;case"..":z=new Function(o,w,c+e+w+"; }");break;default:z=new Function(o,w,c+e+z+"; }")}}k.push({id:p,target:z,exec:t,test:h,body:r[1]||""});j=j.replace(r[0],"{xtpl"+p+"}");++p}for(var u=k.length-1;u>=0;--u){y.compileTpl(k[u])}y.master=k[k.length-1];y.tpls=k};Ext.extend(Ext.XTemplate,Ext.Template,{re:/\{([\w\-\.\#]+)(?:\:([\w\.]*)(?:\((.*?)?\))?)?(\s?[\+\-\*\\]\s?[\d\.\+\-\*\\\(\)]+)?\}/g,codeRe:/\{\[((?:\\\]|.|\n)*?)\]\}/g,applySubTemplate:function(a,k,j,d,c){var h=this,g,m=h.tpls[a],l,b=[];if((m.test&&!m.test.call(h,k,j,d,c))||(m.exec&&m.exec.call(h,k,j,d,c))){return""}l=m.target?m.target.call(h,k,j):k;g=l.length;j=m.target?k:j;if(m.target&&Ext.isArray(l)){for(var e=0,g=l.length;e=0;--g){d[k[g].selectorText.toLowerCase()]=k[g]}}catch(i){}},getRules:function(h){if(d===null||h){d={};var k=c.styleSheets;for(var j=0,g=k.length;j=37&&a<=40){b.stopEvent()}},destroy:function(){this.disable()},enable:function(){if(this.disabled){if(Ext.isSafari2){this.el.on("keyup",this.stopKeyUp,this)}this.el.on(this.isKeydown()?"keydown":"keypress",this.relay,this);this.disabled=false}},disable:function(){if(!this.disabled){if(Ext.isSafari2){this.el.un("keyup",this.stopKeyUp,this)}this.el.un(this.isKeydown()?"keydown":"keypress",this.relay,this);this.disabled=true}},setDisabled:function(a){this[a?"disable":"enable"]()},isKeydown:function(){return this.forceKeyDown||Ext.EventManager.useKeydown}};Ext.KeyMap=function(c,b,a){this.el=Ext.get(c);this.eventName=a||"keydown";this.bindings=[];if(b){this.addBinding(b)}this.enable()};Ext.KeyMap.prototype={stopEvent:false,addBinding:function(b){if(Ext.isArray(b)){Ext.each(b,function(j){this.addBinding(j)},this);return}var k=b.key,g=b.fn||b.handler,l=b.scope;if(b.stopEvent){this.stopEvent=b.stopEvent}if(typeof k=="string"){var h=[];var e=k.toUpperCase();for(var c=0,d=e.length;c2)?a[2]:null;var h=(i>3)?a[3]:"/";var d=(i>4)?a[4]:null;var g=(i>5)?a[5]:false;document.cookie=c+"="+escape(e)+((b===null)?"":("; expires="+b.toGMTString()))+((h===null)?"":("; path="+h))+((d===null)?"":("; domain="+d))+((g===true)?"; secure":"")},get:function(d){var b=d+"=";var g=b.length;var a=document.cookie.length;var e=0;var c=0;while(e0){return this.ownerCt.items.itemAt(a-1)}}return null},getBubbleTarget:function(){return this.ownerCt}});Ext.reg("component",Ext.Component);Ext.Action=Ext.extend(Object,{constructor:function(a){this.initialConfig=a;this.itemId=a.itemId=(a.itemId||a.id||Ext.id());this.items=[]},isAction:true,setText:function(a){this.initialConfig.text=a;this.callEach("setText",[a])},getText:function(){return this.initialConfig.text},setIconClass:function(a){this.initialConfig.iconCls=a;this.callEach("setIconClass",[a])},getIconClass:function(){return this.initialConfig.iconCls},setDisabled:function(a){this.initialConfig.disabled=a;this.callEach("setDisabled",[a])},enable:function(){this.setDisabled(false)},disable:function(){this.setDisabled(true)},isDisabled:function(){return this.initialConfig.disabled},setHidden:function(a){this.initialConfig.hidden=a;this.callEach("setVisible",[!a])},show:function(){this.setHidden(false)},hide:function(){this.setHidden(true)},isHidden:function(){return this.initialConfig.hidden},setHandler:function(b,a){this.initialConfig.handler=b;this.initialConfig.scope=a;this.callEach("setHandler",[b,a])},each:function(b,a){Ext.each(this.items,b,a)},callEach:function(e,b){var d=this.items;for(var c=0,a=d.length;cj+o.left){k=j-l-c;g=true}if((i+e)>d+o.top){i=d-e-c;g=true}if(k=m){i=m-e-5}}n=[k,i];this.storeXY(n);a.setXY.call(this,n);this.sync()}}return this},getConstrainOffset:function(){return this.shadowOffset},isVisible:function(){return this.visible},showAction:function(){this.visible=true;if(this.useDisplay===true){this.setDisplayed("")}else{if(this.lastXY){a.setXY.call(this,this.lastXY)}else{if(this.lastLT){a.setLeftTop.call(this,this.lastLT[0],this.lastLT[1])}}}},hideAction:function(){this.visible=false;if(this.useDisplay===true){this.setDisplayed(false)}else{this.setLeftTop(-10000,-10000)}},setVisible:function(i,h,k,l,j){if(i){this.showAction()}if(h&&i){var g=function(){this.sync(true);if(l){l()}}.createDelegate(this);a.setVisible.call(this,true,true,k,g,j)}else{if(!i){this.hideUnders(true)}var g=l;if(h){g=function(){this.hideAction();if(l){l()}}.createDelegate(this)}a.setVisible.call(this,i,h,k,g,j);if(i){this.sync(true)}else{if(!h){this.hideAction()}}}return this},storeXY:function(c){delete this.lastLT;this.lastXY=c},storeLeftTop:function(d,c){delete this.lastXY;this.lastLT=[d,c]},beforeFx:function(){this.beforeAction();return Ext.Layer.superclass.beforeFx.apply(this,arguments)},afterFx:function(){Ext.Layer.superclass.afterFx.apply(this,arguments);this.sync(this.isVisible())},beforeAction:function(){if(!this.updating&&this.shadow){this.shadow.hide()}},setLeft:function(c){this.storeLeftTop(c,this.getTop(true));a.setLeft.apply(this,arguments);this.sync();return this},setTop:function(c){this.storeLeftTop(this.getLeft(true),c);a.setTop.apply(this,arguments);this.sync();return this},setLeftTop:function(d,c){this.storeLeftTop(d,c);a.setLeftTop.apply(this,arguments);this.sync();return this},setXY:function(j,h,k,l,i){this.fixDisplay();this.beforeAction();this.storeXY(j);var g=this.createCB(l);a.setXY.call(this,j,h,k,g,i);if(!h){g()}return this},createCB:function(e){var d=this;return function(){d.constrainXY();d.sync(true);if(e){e()}}},setX:function(g,h,j,k,i){this.setXY([g,this.getY()],h,j,k,i);return this},setY:function(k,g,i,j,h){this.setXY([this.getX(),k],g,i,j,h);return this},setSize:function(j,k,i,m,n,l){this.beforeAction();var g=this.createCB(n);a.setSize.call(this,j,k,i,m,g,l);if(!i){g()}return this},setWidth:function(i,h,k,l,j){this.beforeAction();var g=this.createCB(l);a.setWidth.call(this,i,h,k,g,j);if(!h){g()}return this},setHeight:function(j,i,l,m,k){this.beforeAction();var g=this.createCB(m);a.setHeight.call(this,j,i,l,g,k);if(!i){g()}return this},setBounds:function(o,m,p,i,n,k,l,j){this.beforeAction();var g=this.createCB(l);if(!n){this.storeXY([o,m]);a.setXY.call(this,[o,m]);a.setSize.call(this,p,i,n,k,g,j);g()}else{a.setBounds.call(this,o,m,p,i,n,k,g,j)}return this},setZIndex:function(c){this.zindex=c;this.setStyle("z-index",c+2);if(this.shadow){this.shadow.setZIndex(c+1)}if(this.shim){this.shim.setStyle("z-index",c)}return this}})})();Ext.Shadow=function(d){Ext.apply(this,d);if(typeof this.mode!="string"){this.mode=this.defaultMode}var e=this.offset,c={h:0},b=Math.floor(this.offset/2);switch(this.mode.toLowerCase()){case"drop":c.w=0;c.l=c.t=e;c.t-=1;if(Ext.isIE9m){c.l-=this.offset+b;c.t-=this.offset+b;c.w-=b;c.h-=b;c.t+=1}break;case"sides":c.w=(e*2);c.l=-e;c.t=e-1;if(Ext.isIE9m){c.l-=(this.offset-b);c.t-=this.offset+b;c.l+=1;c.w-=(this.offset-b)*2;c.w-=b+1;c.h-=1}break;case"frame":c.w=c.h=(e*2);c.l=c.t=-e;c.t+=1;c.h-=2;if(Ext.isIE9m){c.l-=(this.offset-b);c.t-=(this.offset-b);c.l+=1;c.w-=(this.offset+b+1);c.h-=(this.offset+b);c.h+=1}break}this.adjusts=c};Ext.Shadow.prototype={offset:4,defaultMode:"drop",show:function(a){a=Ext.get(a);if(!this.el){this.el=Ext.Shadow.Pool.pull();if(this.el.dom.nextSibling!=a.dom){this.el.insertBefore(a)}}this.el.setStyle("z-index",this.zIndex||parseInt(a.getStyle("z-index"),10)-1);if(Ext.isIE9m){this.el.dom.style.filter="progid:DXImageTransform.Microsoft.alpha(opacity=50) progid:DXImageTransform.Microsoft.Blur(pixelradius="+(this.offset)+")"}this.realign(a.getLeft(true),a.getTop(true),a.getWidth(),a.getHeight());this.el.dom.style.display="block"},isVisible:function(){return this.el?true:false},realign:function(b,r,q,g){if(!this.el){return}var n=this.adjusts,k=this.el.dom,u=k.style,i=0,p=(q+n.w),e=(g+n.h),j=p+"px",o=e+"px",m,c;u.left=(b+n.l)+"px";u.top=(r+n.t)+"px";if(u.width!=j||u.height!=o){u.width=j;u.height=o;if(!Ext.isIE9m){m=k.childNodes;c=Math.max(0,(p-12))+"px";m[0].childNodes[1].style.width=c;m[1].childNodes[1].style.width=c;m[2].childNodes[1].style.width=c;m[1].style.height=Math.max(0,(e-12))+"px"}}},hide:function(){if(this.el){this.el.dom.style.display="none";Ext.Shadow.Pool.push(this.el);delete this.el}},setZIndex:function(a){this.zIndex=a;if(this.el){this.el.setStyle("z-index",a)}}};Ext.Shadow.Pool=function(){var b=[],a=Ext.isIE9m?'
      ':'
      ';return{pull:function(){var c=b.shift();if(!c){c=Ext.get(Ext.DomHelper.insertHtml("beforeBegin",document.body.firstChild,a));c.autoBoxAdjust=false}return c},push:function(c){b.push(c)}}}();Ext.BoxComponent=Ext.extend(Ext.Component,{initComponent:function(){Ext.BoxComponent.superclass.initComponent.call(this);this.addEvents("resize","move")},boxReady:false,deferHeight:false,setSize:function(b,d){if(typeof b=="object"){d=b.height;b=b.width}if(Ext.isDefined(b)&&Ext.isDefined(this.boxMinWidth)&&(bthis.boxMaxWidth)){b=this.boxMaxWidth}if(Ext.isDefined(d)&&Ext.isDefined(this.boxMaxHeight)&&(d>this.boxMaxHeight)){d=this.boxMaxHeight}if(!this.boxReady){this.width=b;this.height=d;return this}if(this.cacheSizes!==false&&this.lastSize&&this.lastSize.width==b&&this.lastSize.height==d){return this}this.lastSize={width:b,height:d};var c=this.adjustSize(b,d),g=c.width,a=c.height,e;if(g!==undefined||a!==undefined){e=this.getResizeEl();if(!this.deferHeight&&g!==undefined&&a!==undefined){e.setSize(g,a)}else{if(!this.deferHeight&&a!==undefined){e.setHeight(a)}else{if(g!==undefined){e.setWidth(g)}}}this.onResize(g,a,b,d);this.fireEvent("resize",this,g,a,b,d)}return this},setWidth:function(a){return this.setSize(a)},setHeight:function(a){return this.setSize(undefined,a)},getSize:function(){return this.getResizeEl().getSize()},getWidth:function(){return this.getResizeEl().getWidth()},getHeight:function(){return this.getResizeEl().getHeight()},getOuterSize:function(){var a=this.getResizeEl();return{width:a.getWidth()+a.getMargins("lr"),height:a.getHeight()+a.getMargins("tb")}},getPosition:function(a){var b=this.getPositionEl();if(a===true){return[b.getLeft(true),b.getTop(true)]}return this.xy||b.getXY()},getBox:function(a){var c=this.getPosition(a);var b=this.getSize();b.x=c[0];b.y=c[1];return b},updateBox:function(a){this.setSize(a.width,a.height);this.setPagePosition(a.x,a.y);return this},getResizeEl:function(){return this.resizeEl||this.el},setAutoScroll:function(a){if(this.rendered){this.getContentTarget().setOverflow(a?"auto":"")}this.autoScroll=a;return this},setPosition:function(a,g){if(a&&typeof a[1]=="number"){g=a[1];a=a[0]}this.x=a;this.y=g;if(!this.boxReady){return this}var b=this.adjustPosition(a,g);var e=b.x,d=b.y;var c=this.getPositionEl();if(e!==undefined||d!==undefined){if(e!==undefined&&d!==undefined){c.setLeftTop(e,d)}else{if(e!==undefined){c.setLeft(e)}else{if(d!==undefined){c.setTop(d)}}}this.onPosition(e,d);this.fireEvent("move",this,e,d)}return this},setPagePosition:function(a,c){if(a&&typeof a[1]=="number"){c=a[1];a=a[0]}this.pageX=a;this.pageY=c;if(!this.boxReady){return}if(a===undefined||c===undefined){return}var b=this.getPositionEl().translatePoints(a,c);this.setPosition(b.left,b.top);return this},afterRender:function(){Ext.BoxComponent.superclass.afterRender.call(this);if(this.resizeEl){this.resizeEl=Ext.get(this.resizeEl)}if(this.positionEl){this.positionEl=Ext.get(this.positionEl)}this.boxReady=true;Ext.isDefined(this.autoScroll)&&this.setAutoScroll(this.autoScroll);this.setSize(this.width,this.height);if(this.x||this.y){this.setPosition(this.x,this.y)}else{if(this.pageX||this.pageY){this.setPagePosition(this.pageX,this.pageY)}}},syncSize:function(){delete this.lastSize;this.setSize(this.autoWidth?undefined:this.getResizeEl().getWidth(),this.autoHeight?undefined:this.getResizeEl().getHeight());return this},onResize:function(d,b,a,c){},onPosition:function(a,b){},adjustSize:function(a,b){if(this.autoWidth){a="auto"}if(this.autoHeight){b="auto"}return{width:a,height:b}},adjustPosition:function(a,b){return{x:a,y:b}}});Ext.reg("box",Ext.BoxComponent);Ext.Spacer=Ext.extend(Ext.BoxComponent,{autoEl:"div"});Ext.reg("spacer",Ext.Spacer);Ext.SplitBar=function(c,e,b,d,a){this.el=Ext.get(c,true);this.el.unselectable();this.resizingEl=Ext.get(e,true);this.orientation=b||Ext.SplitBar.HORIZONTAL;this.minSize=0;this.maxSize=2000;this.animate=false;this.useShim=false;this.shim=null;if(!a){this.proxy=Ext.SplitBar.createProxy(this.orientation)}else{this.proxy=Ext.get(a).dom}this.dd=new Ext.dd.DDProxy(this.el.dom.id,"XSplitBars",{dragElId:this.proxy.id});this.dd.b4StartDrag=this.onStartProxyDrag.createDelegate(this);this.dd.endDrag=this.onEndProxyDrag.createDelegate(this);this.dragSpecs={};this.adapter=new Ext.SplitBar.BasicLayoutAdapter();this.adapter.init(this);if(this.orientation==Ext.SplitBar.HORIZONTAL){this.placement=d||(this.el.getX()>this.resizingEl.getX()?Ext.SplitBar.LEFT:Ext.SplitBar.RIGHT);this.el.addClass("x-splitbar-h")}else{this.placement=d||(this.el.getY()>this.resizingEl.getY()?Ext.SplitBar.TOP:Ext.SplitBar.BOTTOM);this.el.addClass("x-splitbar-v")}this.addEvents("resize","moved","beforeresize","beforeapply");Ext.SplitBar.superclass.constructor.call(this)};Ext.extend(Ext.SplitBar,Ext.util.Observable,{onStartProxyDrag:function(a,e){this.fireEvent("beforeresize",this);this.overlay=Ext.DomHelper.append(document.body,{cls:"x-drag-overlay",html:" "},true);this.overlay.unselectable();this.overlay.setSize(Ext.lib.Dom.getViewWidth(true),Ext.lib.Dom.getViewHeight(true));this.overlay.show();Ext.get(this.proxy).setDisplayed("block");var c=this.adapter.getElementSize(this);this.activeMinSize=this.getMinimumSize();this.activeMaxSize=this.getMaximumSize();var d=c-this.activeMinSize;var b=Math.max(this.activeMaxSize-c,0);if(this.orientation==Ext.SplitBar.HORIZONTAL){this.dd.resetConstraints();this.dd.setXConstraint(this.placement==Ext.SplitBar.LEFT?d:b,this.placement==Ext.SplitBar.LEFT?b:d,this.tickSize);this.dd.setYConstraint(0,0)}else{this.dd.resetConstraints();this.dd.setXConstraint(0,0);this.dd.setYConstraint(this.placement==Ext.SplitBar.TOP?d:b,this.placement==Ext.SplitBar.TOP?b:d,this.tickSize)}this.dragSpecs.startSize=c;this.dragSpecs.startPoint=[a,e];Ext.dd.DDProxy.prototype.b4StartDrag.call(this.dd,a,e)},onEndProxyDrag:function(c){Ext.get(this.proxy).setDisplayed(false);var b=Ext.lib.Event.getXY(c);if(this.overlay){Ext.destroy(this.overlay);delete this.overlay}var a;if(this.orientation==Ext.SplitBar.HORIZONTAL){a=this.dragSpecs.startSize+(this.placement==Ext.SplitBar.LEFT?b[0]-this.dragSpecs.startPoint[0]:this.dragSpecs.startPoint[0]-b[0])}else{a=this.dragSpecs.startSize+(this.placement==Ext.SplitBar.TOP?b[1]-this.dragSpecs.startPoint[1]:this.dragSpecs.startPoint[1]-b[1])}a=Math.min(Math.max(a,this.activeMinSize),this.activeMaxSize);if(a!=this.dragSpecs.startSize){if(this.fireEvent("beforeapply",this,a)!==false){this.adapter.setElementSize(this,a);this.fireEvent("moved",this,a);this.fireEvent("resize",this,a)}}},getAdapter:function(){return this.adapter},setAdapter:function(a){this.adapter=a;this.adapter.init(this)},getMinimumSize:function(){return this.minSize},setMinimumSize:function(a){this.minSize=a},getMaximumSize:function(){return this.maxSize},setMaximumSize:function(a){this.maxSize=a},setCurrentSize:function(b){var a=this.animate;this.animate=false;this.adapter.setElementSize(this,b);this.animate=a},destroy:function(a){Ext.destroy(this.shim,Ext.get(this.proxy));this.dd.unreg();if(a){this.el.remove()}this.purgeListeners()}});Ext.SplitBar.createProxy=function(b){var c=new Ext.Element(document.createElement("div"));document.body.appendChild(c.dom);c.unselectable();var a="x-splitbar-proxy";c.addClass(a+" "+(b==Ext.SplitBar.HORIZONTAL?a+"-h":a+"-v"));return c.dom};Ext.SplitBar.BasicLayoutAdapter=function(){};Ext.SplitBar.BasicLayoutAdapter.prototype={init:function(a){},getElementSize:function(a){if(a.orientation==Ext.SplitBar.HORIZONTAL){return a.resizingEl.getWidth()}else{return a.resizingEl.getHeight()}},setElementSize:function(b,a,c){if(b.orientation==Ext.SplitBar.HORIZONTAL){if(!b.animate){b.resizingEl.setWidth(a);if(c){c(b,a)}}else{b.resizingEl.setWidth(a,true,0.1,c,"easeOut")}}else{if(!b.animate){b.resizingEl.setHeight(a);if(c){c(b,a)}}else{b.resizingEl.setHeight(a,true,0.1,c,"easeOut")}}}};Ext.SplitBar.AbsoluteLayoutAdapter=function(a){this.basic=new Ext.SplitBar.BasicLayoutAdapter();this.container=Ext.get(a)};Ext.SplitBar.AbsoluteLayoutAdapter.prototype={init:function(a){this.basic.init(a)},getElementSize:function(a){return this.basic.getElementSize(a)},setElementSize:function(b,a,c){this.basic.setElementSize(b,a,this.moveSplitter.createDelegate(this,[b]))},moveSplitter:function(a){var b=Ext.SplitBar;switch(a.placement){case b.LEFT:a.el.setX(a.resizingEl.getRight());break;case b.RIGHT:a.el.setStyle("right",(this.container.getWidth()-a.resizingEl.getLeft())+"px");break;case b.TOP:a.el.setY(a.resizingEl.getBottom());break;case b.BOTTOM:a.el.setY(a.resizingEl.getTop()-a.el.getHeight());break}}};Ext.SplitBar.VERTICAL=1;Ext.SplitBar.HORIZONTAL=2;Ext.SplitBar.LEFT=1;Ext.SplitBar.RIGHT=2;Ext.SplitBar.TOP=3;Ext.SplitBar.BOTTOM=4;Ext.Container=Ext.extend(Ext.BoxComponent,{bufferResize:50,autoDestroy:true,forceLayout:false,defaultType:"panel",resizeEvent:"resize",bubbleEvents:["add","remove"],initComponent:function(){Ext.Container.superclass.initComponent.call(this);this.addEvents("afterlayout","beforeadd","beforeremove","add","remove");var a=this.items;if(a){delete this.items;this.add(a)}},initItems:function(){if(!this.items){this.items=new Ext.util.MixedCollection(false,this.getComponentId);this.getLayout()}},setLayout:function(a){if(this.layout&&this.layout!=a){this.layout.setContainer(null)}this.layout=a;this.initItems();a.setContainer(this)},afterRender:function(){Ext.Container.superclass.afterRender.call(this);if(!this.layout){this.layout="auto"}if(Ext.isObject(this.layout)&&!this.layout.layout){this.layoutConfig=this.layout;this.layout=this.layoutConfig.type}if(Ext.isString(this.layout)){this.layout=new Ext.Container.LAYOUTS[this.layout.toLowerCase()](this.layoutConfig)}this.setLayout(this.layout);if(this.activeItem!==undefined&&this.layout.setActiveItem){var a=this.activeItem;delete this.activeItem;this.layout.setActiveItem(a)}if(!this.ownerCt){this.doLayout(false,true)}if(this.monitorResize===true){Ext.EventManager.onWindowResize(this.doLayout,this,[false])}},getLayoutTarget:function(){return this.el},getComponentId:function(a){return a.getItemId()},add:function(b){this.initItems();var e=arguments.length>1;if(e||Ext.isArray(b)){var a=[];Ext.each(e?arguments:b,function(h){a.push(this.add(h))},this);return a}var g=this.lookupComponent(this.applyDefaults(b));var d=this.items.length;if(this.fireEvent("beforeadd",this,g,d)!==false&&this.onBeforeAdd(g)!==false){this.items.add(g);g.onAdded(this,d);this.onAdd(g);this.fireEvent("add",this,g,d)}return g},onAdd:function(a){},onAdded:function(a,b){this.ownerCt=a;this.initRef();this.cascade(function(d){d.initRef()});this.fireEvent("added",this,a,b)},insert:function(e,b){var d=arguments,h=d.length,a=[],g,j;this.initItems();if(h>2){for(g=h-1;g>=1;--g){a.push(this.insert(e,d[g]))}return a}j=this.lookupComponent(this.applyDefaults(b));e=Math.min(e,this.items.length);if(this.fireEvent("beforeadd",this,j,e)!==false&&this.onBeforeAdd(j)!==false){if(j.ownerCt==this){this.items.remove(j)}this.items.insert(e,j);j.onAdded(this,e);this.onAdd(j);this.fireEvent("add",this,j,e)}return j},applyDefaults:function(b){var a=this.defaults;if(a){if(Ext.isFunction(a)){a=a.call(this,b)}if(Ext.isString(b)){b=Ext.ComponentMgr.get(b);Ext.apply(b,a)}else{if(!b.events){Ext.applyIf(b.isAction?b.initialConfig:b,a)}else{Ext.apply(b,a)}}}return b},onBeforeAdd:function(a){if(a.ownerCt){a.ownerCt.remove(a,false)}if(this.hideBorders===true){a.border=(a.border===true)}},remove:function(a,b){this.initItems();var d=this.getComponent(a);if(d&&this.fireEvent("beforeremove",this,d)!==false){this.doRemove(d,b);this.fireEvent("remove",this,d)}return d},onRemove:function(a){},doRemove:function(e,d){var b=this.layout,a=b&&this.rendered;if(a){b.onRemove(e)}this.items.remove(e);e.onRemoved();this.onRemove(e);if(d===true||(d!==false&&this.autoDestroy)){e.destroy()}if(a){b.afterRemove(e)}},removeAll:function(c){this.initItems();var e,g=[],b=[];this.items.each(function(h){g.push(h)});for(var d=0,a=g.length;d','','
      ','
      ',"
      ");a.disableFormats=true;return a.compile()})(),destroy:function(){if(this.resizeTask&&this.resizeTask.cancel){this.resizeTask.cancel()}if(this.container){this.container.un(this.container.resizeEvent,this.onResize,this)}if(!Ext.isEmpty(this.targetCls)){var a=this.container.getLayoutTarget();if(a){a.removeClass(this.targetCls)}}}});Ext.layout.AutoLayout=Ext.extend(Ext.layout.ContainerLayout,{type:"auto",monitorResize:true,onLayout:function(d,g){Ext.layout.AutoLayout.superclass.onLayout.call(this,d,g);var e=this.getRenderedItems(d),a=e.length,b,h;for(b=0;b0){b.setSize(a)}}});Ext.Container.LAYOUTS.fit=Ext.layout.FitLayout;Ext.layout.CardLayout=Ext.extend(Ext.layout.FitLayout,{deferredRender:false,layoutOnCardChange:false,renderHidden:true,type:"card",setActiveItem:function(d){var a=this.activeItem,b=this.container;d=b.getComponent(d);if(d&&a!=d){if(a){a.hide();if(a.hidden!==true){return false}a.fireEvent("deactivate",a)}var c=d.doLayout&&(this.layoutOnCardChange||!d.rendered);this.activeItem=d;delete d.deferLayout;d.show();this.layout();if(c){d.doLayout()}d.fireEvent("activate",d)}},renderAll:function(a,b){if(this.deferredRender){this.renderItem(this.activeItem,undefined,b)}else{Ext.layout.CardLayout.superclass.renderAll.call(this,a,b)}}});Ext.Container.LAYOUTS.card=Ext.layout.CardLayout;Ext.layout.AnchorLayout=Ext.extend(Ext.layout.ContainerLayout,{monitorResize:true,type:"anchor",defaultAnchor:"100%",parseAnchorRE:/^(r|right|b|bottom)$/i,getLayoutTargetSize:function(){var b=this.container.getLayoutTarget(),a={};if(b){a=b.getViewSize();if(Ext.isIE9m&&Ext.isStrict&&a.width==0){a=b.getStyleSize()}a.width-=b.getPadding("lr");a.height-=b.getPadding("tb")}return a},onLayout:function(m,w){Ext.layout.AnchorLayout.superclass.onLayout.call(this,m,w);var p=this.getLayoutTargetSize(),k=p.width,o=p.height,q=w.getStyle("overflow"),n=this.getRenderedItems(m),t=n.length,g=[],j,a,v,l,h,c,e,d,u=0,s,b;if(k<20&&o<20){return}if(m.anchorSize){if(typeof m.anchorSize=="number"){a=m.anchorSize}else{a=m.anchorSize.width;v=m.anchorSize.height}}else{a=m.initialConfig.width;v=m.initialConfig.height}for(s=0;s 
    ');b.disableFormats=true;b.compile();Ext.layout.BorderLayout.Region.prototype.toolTemplate=b}this.collapsedEl=this.targetEl.createChild({cls:"x-layout-collapsed x-layout-collapsed-"+this.position,id:this.panel.id+"-xcollapsed"});this.collapsedEl.enableDisplayMode("block");if(this.collapseMode=="mini"){this.collapsedEl.addClass("x-layout-cmini-"+this.position);this.miniCollapsedEl=this.collapsedEl.createChild({cls:"x-layout-mini x-layout-mini-"+this.position,html:" "});this.miniCollapsedEl.addClassOnOver("x-layout-mini-over");this.collapsedEl.addClassOnOver("x-layout-collapsed-over");this.collapsedEl.on("click",this.onExpandClick,this,{stopEvent:true})}else{if(this.collapsible!==false&&!this.hideCollapseTool){var a=this.expandToolEl=this.toolTemplate.append(this.collapsedEl.dom,{id:"expand-"+this.position},true);a.addClassOnOver("x-tool-expand-"+this.position+"-over");a.on("click",this.onExpandClick,this,{stopEvent:true})}if(this.floatable!==false||this.titleCollapse){this.collapsedEl.addClassOnOver("x-layout-collapsed-over");this.collapsedEl.on("click",this[this.floatable?"collapseClick":"onExpandClick"],this)}}}return this.collapsedEl},onExpandClick:function(a){if(this.isSlid){this.panel.expand(false)}else{this.panel.expand()}},onCollapseClick:function(a){this.panel.collapse()},beforeCollapse:function(c,a){this.lastAnim=a;if(this.splitEl){this.splitEl.hide()}this.getCollapsedEl().show();var b=this.panel.getEl();this.originalZIndex=b.getStyle("z-index");b.setStyle("z-index",100);this.isCollapsed=true;this.layout.layout()},onCollapse:function(a){this.panel.el.setStyle("z-index",1);if(this.lastAnim===false||this.panel.animCollapse===false){this.getCollapsedEl().dom.style.visibility="visible"}else{this.getCollapsedEl().slideIn(this.panel.slideAnchor,{duration:0.2})}this.state.collapsed=true;this.panel.saveState()},beforeExpand:function(a){if(this.isSlid){this.afterSlideIn()}var b=this.getCollapsedEl();this.el.show();if(this.position=="east"||this.position=="west"){this.panel.setSize(undefined,b.getHeight())}else{this.panel.setSize(b.getWidth(),undefined)}b.hide();b.dom.style.visibility="hidden";this.panel.el.setStyle("z-index",this.floatingZIndex)},onExpand:function(){this.isCollapsed=false;if(this.splitEl){this.splitEl.show()}this.layout.layout();this.panel.el.setStyle("z-index",this.originalZIndex);this.state.collapsed=false;this.panel.saveState()},collapseClick:function(a){if(this.isSlid){a.stopPropagation();this.slideIn()}else{a.stopPropagation();this.slideOut()}},onHide:function(){if(this.isCollapsed){this.getCollapsedEl().hide()}else{if(this.splitEl){this.splitEl.hide()}}},onShow:function(){if(this.isCollapsed){this.getCollapsedEl().show()}else{if(this.splitEl){this.splitEl.show()}}},isVisible:function(){return !this.panel.hidden},getMargins:function(){return this.isCollapsed&&this.cmargins?this.cmargins:this.margins},getSize:function(){return this.isCollapsed?this.getCollapsedEl().getSize():this.panel.getSize()},setPanel:function(a){this.panel=a},getMinWidth:function(){return this.minWidth},getMinHeight:function(){return this.minHeight},applyLayoutCollapsed:function(a){var b=this.getCollapsedEl();b.setLeftTop(a.x,a.y);b.setSize(a.width,a.height)},applyLayout:function(a){if(this.isCollapsed){this.applyLayoutCollapsed(a)}else{this.panel.setPosition(a.x,a.y);this.panel.setSize(a.width,a.height)}},beforeSlide:function(){this.panel.beforeEffect()},afterSlide:function(){this.panel.afterEffect()},initAutoHide:function(){if(this.autoHide!==false){if(!this.autoHideHd){this.autoHideSlideTask=new Ext.util.DelayedTask(this.slideIn,this);this.autoHideHd={mouseout:function(a){if(!a.within(this.el,true)){this.autoHideSlideTask.delay(500)}},mouseover:function(a){this.autoHideSlideTask.cancel()},scope:this}}this.el.on(this.autoHideHd);this.collapsedEl.on(this.autoHideHd)}},clearAutoHide:function(){if(this.autoHide!==false){this.el.un("mouseout",this.autoHideHd.mouseout);this.el.un("mouseover",this.autoHideHd.mouseover);this.collapsedEl.un("mouseout",this.autoHideHd.mouseout);this.collapsedEl.un("mouseover",this.autoHideHd.mouseover)}},clearMonitor:function(){Ext.getDoc().un("click",this.slideInIf,this)},slideOut:function(){if(this.isSlid||this.el.hasActiveFx()){return}this.isSlid=true;var b=this.panel.tools,c,a;if(b&&b.toggle){b.toggle.hide()}this.el.show();a=this.panel.collapsed;this.panel.collapsed=false;if(this.position=="east"||this.position=="west"){c=this.panel.deferHeight;this.panel.deferHeight=false;this.panel.setSize(undefined,this.collapsedEl.getHeight());this.panel.deferHeight=c}else{this.panel.setSize(this.collapsedEl.getWidth(),undefined)}this.panel.collapsed=a;this.restoreLT=[this.el.dom.style.left,this.el.dom.style.top];this.el.alignTo(this.collapsedEl,this.getCollapseAnchor());this.el.setStyle("z-index",this.floatingZIndex+2);this.panel.el.replaceClass("x-panel-collapsed","x-panel-floating");if(this.animFloat!==false){this.beforeSlide();this.el.slideIn(this.getSlideAnchor(),{callback:function(){this.afterSlide();this.initAutoHide();Ext.getDoc().on("click",this.slideInIf,this)},scope:this,block:true})}else{this.initAutoHide();Ext.getDoc().on("click",this.slideInIf,this)}},afterSlideIn:function(){this.clearAutoHide();this.isSlid=false;this.clearMonitor();this.el.setStyle("z-index","");this.panel.el.replaceClass("x-panel-floating","x-panel-collapsed");this.el.dom.style.left=this.restoreLT[0];this.el.dom.style.top=this.restoreLT[1];var a=this.panel.tools;if(a&&a.toggle){a.toggle.show()}},slideIn:function(a){if(!this.isSlid||this.el.hasActiveFx()){Ext.callback(a);return}this.isSlid=false;if(this.animFloat!==false){this.beforeSlide();this.el.slideOut(this.getSlideAnchor(),{callback:function(){this.el.hide();this.afterSlide();this.afterSlideIn();Ext.callback(a)},scope:this,block:true})}else{this.el.hide();this.afterSlideIn()}},slideInIf:function(a){if(!a.within(this.el)){this.slideIn()}},anchors:{west:"left",east:"right",north:"top",south:"bottom"},sanchors:{west:"l",east:"r",north:"t",south:"b"},canchors:{west:"tl-tr",east:"tr-tl",north:"tl-bl",south:"bl-tl"},getAnchor:function(){return this.anchors[this.position]},getCollapseAnchor:function(){return this.canchors[this.position]},getSlideAnchor:function(){return this.sanchors[this.position]},getAlignAdj:function(){var a=this.cmargins;switch(this.position){case"west":return[0,0];break;case"east":return[0,0];break;case"north":return[0,0];break;case"south":return[0,0];break}},getExpandAdj:function(){var b=this.collapsedEl,a=this.cmargins;switch(this.position){case"west":return[-(a.right+b.getWidth()+a.left),0];break;case"east":return[a.right+b.getWidth()+a.left,0];break;case"north":return[0,-(a.top+a.bottom+b.getHeight())];break;case"south":return[0,a.top+a.bottom+b.getHeight()];break}},destroy:function(){if(this.autoHideSlideTask&&this.autoHideSlideTask.cancel){this.autoHideSlideTask.cancel()}Ext.destroyMembers(this,"miniCollapsedEl","collapsedEl","expandToolEl")}};Ext.layout.BorderLayout.SplitRegion=function(b,a,c){Ext.layout.BorderLayout.SplitRegion.superclass.constructor.call(this,b,a,c);this.applyLayout=this.applyFns[c]};Ext.extend(Ext.layout.BorderLayout.SplitRegion,Ext.layout.BorderLayout.Region,{splitTip:"Drag to resize.",collapsibleSplitTip:"Drag to resize. Double click to hide.",useSplitTips:false,splitSettings:{north:{orientation:Ext.SplitBar.VERTICAL,placement:Ext.SplitBar.TOP,maxFn:"getVMaxSize",minProp:"minHeight",maxProp:"maxHeight"},south:{orientation:Ext.SplitBar.VERTICAL,placement:Ext.SplitBar.BOTTOM,maxFn:"getVMaxSize",minProp:"minHeight",maxProp:"maxHeight"},east:{orientation:Ext.SplitBar.HORIZONTAL,placement:Ext.SplitBar.RIGHT,maxFn:"getHMaxSize",minProp:"minWidth",maxProp:"maxWidth"},west:{orientation:Ext.SplitBar.HORIZONTAL,placement:Ext.SplitBar.LEFT,maxFn:"getHMaxSize",minProp:"minWidth",maxProp:"maxWidth"}},applyFns:{west:function(c){if(this.isCollapsed){return this.applyLayoutCollapsed(c)}var d=this.splitEl.dom,b=d.style;this.panel.setPosition(c.x,c.y);var a=d.offsetWidth;b.left=(c.x+c.width-a)+"px";b.top=(c.y)+"px";b.height=Math.max(0,c.height)+"px";this.panel.setSize(c.width-a,c.height)},east:function(c){if(this.isCollapsed){return this.applyLayoutCollapsed(c)}var d=this.splitEl.dom,b=d.style;var a=d.offsetWidth;this.panel.setPosition(c.x+a,c.y);b.left=(c.x)+"px";b.top=(c.y)+"px";b.height=Math.max(0,c.height)+"px";this.panel.setSize(c.width-a,c.height)},north:function(c){if(this.isCollapsed){return this.applyLayoutCollapsed(c)}var d=this.splitEl.dom,b=d.style;var a=d.offsetHeight;this.panel.setPosition(c.x,c.y);b.left=(c.x)+"px";b.top=(c.y+c.height-a)+"px";b.width=Math.max(0,c.width)+"px";this.panel.setSize(c.width,c.height-a)},south:function(c){if(this.isCollapsed){return this.applyLayoutCollapsed(c)}var d=this.splitEl.dom,b=d.style;var a=d.offsetHeight;this.panel.setPosition(c.x,c.y+a);b.left=(c.x)+"px";b.top=(c.y)+"px";b.width=Math.max(0,c.width)+"px";this.panel.setSize(c.width,c.height-a)}},render:function(a,c){Ext.layout.BorderLayout.SplitRegion.superclass.render.call(this,a,c);var d=this.position;this.splitEl=a.createChild({cls:"x-layout-split x-layout-split-"+d,html:" ",id:this.panel.id+"-xsplit"});if(this.collapseMode=="mini"){this.miniSplitEl=this.splitEl.createChild({cls:"x-layout-mini x-layout-mini-"+d,html:" "});this.miniSplitEl.addClassOnOver("x-layout-mini-over");this.miniSplitEl.on("click",this.onCollapseClick,this,{stopEvent:true})}var b=this.splitSettings[d];this.split=new Ext.SplitBar(this.splitEl.dom,c.el,b.orientation);this.split.tickSize=this.tickSize;this.split.placement=b.placement;this.split.getMaximumSize=this[b.maxFn].createDelegate(this);this.split.minSize=this.minSize||this[b.minProp];this.split.on("beforeapply",this.onSplitMove,this);this.split.useShim=this.useShim===true;this.maxSize=this.maxSize||this[b.maxProp];if(c.hidden){this.splitEl.hide()}if(this.useSplitTips){this.splitEl.dom.title=this.collapsible?this.collapsibleSplitTip:this.splitTip}if(this.collapsible){this.splitEl.on("dblclick",this.onCollapseClick,this)}},getSize:function(){if(this.isCollapsed){return this.collapsedEl.getSize()}var a=this.panel.getSize();if(this.position=="north"||this.position=="south"){a.height+=this.splitEl.dom.offsetHeight}else{a.width+=this.splitEl.dom.offsetWidth}return a},getHMaxSize:function(){var b=this.maxSize||10000;var a=this.layout.center;return Math.min(b,(this.el.getWidth()+a.el.getWidth())-a.getMinWidth())},getVMaxSize:function(){var b=this.maxSize||10000;var a=this.layout.center;return Math.min(b,(this.el.getHeight()+a.el.getHeight())-a.getMinHeight())},onSplitMove:function(b,a){var c=this.panel.getSize();this.lastSplitSize=a;if(this.position=="north"||this.position=="south"){this.panel.setSize(c.width,a);this.state.height=a}else{this.panel.setSize(a,c.height);this.state.width=a}this.layout.layout();this.panel.saveState();return false},getSplitBar:function(){return this.split},destroy:function(){Ext.destroy(this.miniSplitEl,this.split,this.splitEl);Ext.layout.BorderLayout.SplitRegion.superclass.destroy.call(this)}});Ext.Container.LAYOUTS.border=Ext.layout.BorderLayout;Ext.layout.FormLayout=Ext.extend(Ext.layout.AnchorLayout,{labelSeparator:":",trackLabels:true,type:"form",onRemove:function(d){Ext.layout.FormLayout.superclass.onRemove.call(this,d);if(this.trackLabels){d.un("show",this.onFieldShow,this);d.un("hide",this.onFieldHide,this)}var b=d.getPositionEl(),a=d.getItemCt&&d.getItemCt();if(d.rendered&&a){if(b&&b.dom){b.insertAfter(a)}Ext.destroy(a);Ext.destroyMembers(d,"label","itemCt");if(d.customItemCt){Ext.destroyMembers(d,"getItemCt","customItemCt")}}},setContainer:function(a){Ext.layout.FormLayout.superclass.setContainer.call(this,a);a.labelAlign=a.labelAlign||this.labelAlign;if(a.labelAlign){a.addClass("x-form-label-"+a.labelAlign)}if(a.hideLabels||this.hideLabels){Ext.apply(this,{labelStyle:"display:none",elementStyle:"padding-left:0;",labelAdjust:0})}else{this.labelSeparator=Ext.isDefined(a.labelSeparator)?a.labelSeparator:this.labelSeparator;a.labelWidth=a.labelWidth||this.labelWidth||100;if(Ext.isNumber(a.labelWidth)){var b=a.labelPad||this.labelPad;b=Ext.isNumber(b)?b:5;Ext.apply(this,{labelAdjust:a.labelWidth+b,labelStyle:"width:"+a.labelWidth+"px;",elementStyle:"padding-left:"+(a.labelWidth+b)+"px"})}if(a.labelAlign=="top"){Ext.apply(this,{labelStyle:"width:auto;",labelAdjust:0,elementStyle:"padding-left:0;"})}}},isHide:function(a){return a.hideLabel||this.container.hideLabels},onFieldShow:function(a){a.getItemCt().removeClass("x-hide-"+a.hideMode);if(a.isComposite){a.doLayout()}},onFieldHide:function(a){a.getItemCt().addClass("x-hide-"+a.hideMode)},getLabelStyle:function(e){var b="",c=[this.labelStyle,e];for(var d=0,a=c.length;d=b)||(this.cells[c]&&this.cells[c][a])){if(b&&a>=b){c++;a=0}else{a++}}return[a,c]},renderItem:function(e,a,d){if(!this.table){this.table=d.createChild(Ext.apply({tag:"table",cls:"x-table-layout",cellspacing:0,cn:{tag:"tbody"}},this.tableAttrs),null,true)}if(e&&!e.rendered){e.render(this.getNextCell(e));this.configureItem(e)}else{if(e&&!this.isValidParent(e,d)){var b=this.getNextCell(e);b.insertBefore(e.getPositionEl().dom,null);e.container=Ext.get(b);this.configureItem(e)}}},isValidParent:function(b,a){return b.getPositionEl().up("table",5).dom.parentNode===(a.dom||a)},destroy:function(){delete this.table;Ext.layout.TableLayout.superclass.destroy.call(this)}});Ext.Container.LAYOUTS.table=Ext.layout.TableLayout;Ext.layout.AbsoluteLayout=Ext.extend(Ext.layout.AnchorLayout,{extraCls:"x-abs-layout-item",type:"absolute",onLayout:function(a,b){b.position();this.paddingLeft=b.getPadding("l");this.paddingTop=b.getPadding("t");Ext.layout.AbsoluteLayout.superclass.onLayout.call(this,a,b)},adjustWidthAnchor:function(b,a){return b?b-a.getPosition(true)[0]+this.paddingLeft:b},adjustHeightAnchor:function(b,a){return b?b-a.getPosition(true)[1]+this.paddingTop:b}});Ext.Container.LAYOUTS.absolute=Ext.layout.AbsoluteLayout;Ext.layout.BoxLayout=Ext.extend(Ext.layout.ContainerLayout,{defaultMargins:{left:0,top:0,right:0,bottom:0},padding:"0",pack:"start",monitorResize:true,type:"box",scrollOffset:0,extraCls:"x-box-item",targetCls:"x-box-layout-ct",innerCls:"x-box-inner",constructor:function(a){Ext.layout.BoxLayout.superclass.constructor.call(this,a);if(Ext.isString(this.defaultMargins)){this.defaultMargins=this.parseMargins(this.defaultMargins)}var d=this.overflowHandler;if(typeof d=="string"){d={type:d}}var c="none";if(d&&d.type!=undefined){c=d.type}var b=Ext.layout.boxOverflow[c];if(b[this.type]){b=b[this.type]}this.overflowHandler=new b(this,d)},onLayout:function(b,h){Ext.layout.BoxLayout.superclass.onLayout.call(this,b,h);var d=this.getLayoutTargetSize(),i=this.getVisibleItems(b),c=this.calculateChildBoxes(i,d),g=c.boxes,j=c.meta;if(d.width>0){var k=this.overflowHandler,a=j.tooNarrow?"handleOverflow":"clearOverflow";var e=k[a](c,d);if(e){if(e.targetSize){d=e.targetSize}if(e.recalculate){i=this.getVisibleItems(b);c=this.calculateChildBoxes(i,d);g=c.boxes}}}this.layoutTargetLastSize=d;this.childBoxCache=c;this.updateInnerCtSize(d,c);this.updateChildBoxes(g);this.handleTargetOverflow(d,b,h)},updateChildBoxes:function(c){for(var b=0,e=c.length;b(None)
    ',constructor:function(a){Ext.layout.boxOverflow.Menu.superclass.constructor.apply(this,arguments);this.menuItems=[]},createInnerElements:function(){if(!this.afterCt){this.afterCt=this.layout.innerCt.insertSibling({cls:this.afterCls},"before")}},clearOverflow:function(a,g){var e=g.width+(this.afterCt?this.afterCt.getWidth():0),b=this.menuItems;this.hideTrigger();for(var c=0,d=b.length;ci.width;return l}},handleOverflow:function(d,h){this.showTrigger();var k=h.width-this.afterCt.getWidth(),l=d.boxes,e=0,r=false;for(var o=0,c=l.length;o=0;j--){var q=l[j].component,p=l[j].left+l[j].width;if(p>=k){this.menuItems.unshift({component:q,width:l[j].width});q.hide()}else{break}}}if(this.menuItems.length==0){this.hideTrigger()}return{targetSize:{height:h.height,width:k},recalculate:r}}});Ext.layout.boxOverflow.menu.hbox=Ext.layout.boxOverflow.HorizontalMenu;Ext.layout.boxOverflow.Scroller=Ext.extend(Ext.layout.boxOverflow.None,{animateScroll:true,scrollIncrement:100,wheelIncrement:3,scrollRepeatInterval:400,scrollDuration:0.4,beforeCls:"x-strip-left",afterCls:"x-strip-right",scrollerCls:"x-strip-scroller",beforeScrollerCls:"x-strip-scroller-left",afterScrollerCls:"x-strip-scroller-right",createWheelListener:function(){this.layout.innerCt.on({scope:this,mousewheel:function(a){a.stopEvent();this.scrollBy(a.getWheelDelta()*this.wheelIncrement*-1,false)}})},handleOverflow:function(a,b){this.createInnerElements();this.showScrollers()},clearOverflow:function(){this.hideScrollers()},showScrollers:function(){this.createScrollers();this.beforeScroller.show();this.afterScroller.show();this.updateScrollButtons()},hideScrollers:function(){if(this.beforeScroller!=undefined){this.beforeScroller.hide();this.afterScroller.hide()}},createScrollers:function(){if(!this.beforeScroller&&!this.afterScroller){var a=this.beforeCt.createChild({cls:String.format("{0} {1} ",this.scrollerCls,this.beforeScrollerCls)});var b=this.afterCt.createChild({cls:String.format("{0} {1}",this.scrollerCls,this.afterScrollerCls)});a.addClassOnOver(this.beforeScrollerCls+"-hover");b.addClassOnOver(this.afterScrollerCls+"-hover");a.setVisibilityMode(Ext.Element.DISPLAY);b.setVisibilityMode(Ext.Element.DISPLAY);this.beforeRepeater=new Ext.util.ClickRepeater(a,{interval:this.scrollRepeatInterval,handler:this.scrollLeft,scope:this});this.afterRepeater=new Ext.util.ClickRepeater(b,{interval:this.scrollRepeatInterval,handler:this.scrollRight,scope:this});this.beforeScroller=a;this.afterScroller=b}},destroy:function(){Ext.destroy(this.beforeScroller,this.afterScroller,this.beforeRepeater,this.afterRepeater,this.beforeCt,this.afterCt)},scrollBy:function(b,a){this.scrollTo(this.getScrollPosition()+b,a)},getItem:function(a){if(Ext.isString(a)){a=Ext.getCmp(a)}else{if(Ext.isNumber(a)){a=this.items[a]}}return a},getScrollAnim:function(){return{duration:this.scrollDuration,callback:this.updateScrollButtons,scope:this}},updateScrollButtons:function(){if(this.beforeScroller==undefined||this.afterScroller==undefined){return}var d=this.atExtremeBefore()?"addClass":"removeClass",c=this.atExtremeAfter()?"addClass":"removeClass",a=this.beforeScrollerCls+"-disabled",b=this.afterScrollerCls+"-disabled";this.beforeScroller[d](a);this.afterScroller[c](b);this.scrolling=false},atExtremeBefore:function(){return this.getScrollPosition()===0},scrollLeft:function(a){this.scrollBy(-this.scrollIncrement,a)},scrollRight:function(a){this.scrollBy(this.scrollIncrement,a)},scrollToItem:function(d,b){d=this.getItem(d);if(d!=undefined){var a=this.getItemVisibility(d);if(!a.fullyVisible){var c=d.getBox(true,true),e=c.x;if(a.hiddenRight){e-=(this.layout.innerCt.getWidth()-c.width)}this.scrollTo(e,b)}}},getItemVisibility:function(e){var d=this.getItem(e).getBox(true,true),a=d.x,c=d.x+d.width,g=this.getScrollPosition(),b=this.layout.innerCt.getWidth()+g;return{hiddenLeft:ab,fullyVisible:a>g&&c=this.getMaxScrollBottom()}});Ext.layout.boxOverflow.scroller.vbox=Ext.layout.boxOverflow.VerticalScroller;Ext.layout.boxOverflow.HorizontalScroller=Ext.extend(Ext.layout.boxOverflow.Scroller,{handleOverflow:function(a,b){Ext.layout.boxOverflow.HorizontalScroller.superclass.handleOverflow.apply(this,arguments);return{targetSize:{height:b.height,width:b.width-(this.beforeCt.getWidth()+this.afterCt.getWidth())}}},createInnerElements:function(){var a=this.layout.innerCt;if(!this.beforeCt){this.afterCt=a.insertSibling({cls:this.afterCls},"before");this.beforeCt=a.insertSibling({cls:this.beforeCls},"before");this.createWheelListener()}},scrollTo:function(a,b){var d=this.getScrollPosition(),c=a.constrain(0,this.getMaxScrollRight());if(c!=d&&!this.scrolling){if(b==undefined){b=this.animateScroll}this.layout.innerCt.scrollTo("left",c,b?this.getScrollAnim():false);if(b){this.scrolling=true}else{this.scrolling=false;this.updateScrollButtons()}}},getScrollPosition:function(){return parseInt(this.layout.innerCt.dom.scrollLeft,10)||0},getMaxScrollRight:function(){return this.layout.innerCt.dom.scrollWidth-this.layout.innerCt.getWidth()},atExtremeAfter:function(){return this.getScrollPosition()>=this.getMaxScrollRight()}});Ext.layout.boxOverflow.scroller.hbox=Ext.layout.boxOverflow.HorizontalScroller;Ext.layout.HBoxLayout=Ext.extend(Ext.layout.BoxLayout,{align:"top",type:"hbox",calculateChildBoxes:function(r,b){var F=r.length,R=this.padding,D=R.top,U=R.left,y=D+R.bottom,O=U+R.right,a=b.width-this.scrollOffset,e=b.height,o=Math.max(0,e-y),P=this.pack=="start",W=this.pack=="center",A=this.pack=="end",L=0,Q=0,T=0,l=0,X=0,H=[],k,J,M,V,w,j,S,I,c,x,q,N;for(S=0;Sa;var n=Math.max(0,a-L-O);if(p){for(S=0;S0){var C=[];for(var E=0,v=F;Ei.available?1:-1});for(var S=0,v=C.length;S0){I.top=D+q+(z/2)}}U+=I.width+w.right}return{boxes:H,meta:{maxHeight:Q,nonFlexWidth:L,desiredWidth:l,minimumWidth:X,shortfall:l-a,tooNarrow:p}}}});Ext.Container.LAYOUTS.hbox=Ext.layout.HBoxLayout;Ext.layout.VBoxLayout=Ext.extend(Ext.layout.BoxLayout,{align:"left",type:"vbox",calculateChildBoxes:function(o,b){var E=o.length,R=this.padding,C=R.top,V=R.left,x=C+R.bottom,O=V+R.right,a=b.width-this.scrollOffset,c=b.height,K=Math.max(0,a-O),P=this.pack=="start",X=this.pack=="center",z=this.pack=="end",k=0,u=0,U=0,L=0,m=0,G=[],h,I,N,W,t,g,T,H,S,w,n,d,r;for(T=0;Tc;var q=Math.max(0,(c-k-x));if(l){for(T=0,r=E;T0){var J=[];for(var D=0,r=E;Di.available?1:-1});for(var T=0,r=J.length;T0){H.left=V+w+(y/2)}}C+=H.height+t.bottom}return{boxes:G,meta:{maxWidth:u,nonFlexHeight:k,desiredHeight:L,minimumHeight:m,shortfall:L-c,tooNarrow:l}}}});Ext.Container.LAYOUTS.vbox=Ext.layout.VBoxLayout;Ext.layout.ToolbarLayout=Ext.extend(Ext.layout.ContainerLayout,{monitorResize:true,type:"toolbar",triggerWidth:18,noItemsMenuText:'
    (None)
    ',lastOverflow:false,tableHTML:['',"","",'",'","","","
    ','',"",'',"","
    ","    		','',"","","","","","","
    ",'',"",'',"","
    ","    		",'',"",'',"","
    ","
    ","
    "].join(""),onLayout:function(e,j){if(!this.leftTr){var h=e.buttonAlign=="center"?"center":"left";j.addClass("x-toolbar-layout-ct");j.insertHtml("beforeEnd",String.format(this.tableHTML,h));this.leftTr=j.child("tr.x-toolbar-left-row",true);this.rightTr=j.child("tr.x-toolbar-right-row",true);this.extrasTr=j.child("tr.x-toolbar-extras-row",true);if(this.hiddenItem==undefined){this.hiddenItems=[]}}var k=e.buttonAlign=="right"?this.rightTr:this.leftTr,l=e.items.items,d=0;for(var b=0,g=l.length,m;b=0&&(d=e[a]);a--){if(!d.firstChild){b.removeChild(d)}}},insertCell:function(e,b,a){var d=document.createElement("td");d.className="x-toolbar-cell";b.insertBefore(d,b.childNodes[a]||null);return d},hideItem:function(a){this.hiddenItems.push(a);a.xtbHidden=true;a.xtbWidth=a.getPositionEl().dom.parentNode.offsetWidth;a.hide()},unhideItem:function(a){a.show();a.xtbHidden=false;this.hiddenItems.remove(a)},getItemWidth:function(a){return a.hidden?(a.xtbWidth||0):a.getPositionEl().dom.parentNode.offsetWidth},fitToSize:function(k){if(this.container.enableOverflow===false){return}var b=k.dom.clientWidth,j=k.dom.firstChild.offsetWidth,m=b-this.triggerWidth,a=this.lastWidth||0,c=this.hiddenItems,e=c.length!=0,n=b>=a;this.lastWidth=b;if(j>b||(e&&n)){var l=this.container.items.items,h=l.length,d=0,o;for(var g=0;gm){if(!(o.hidden||o.xtbHidden)){this.hideItem(o)}}else{if(o.xtbHidden){this.unhideItem(o)}}}}}e=c.length!=0;if(e){this.initMore();if(!this.lastOverflow){this.container.fireEvent("overflowchange",this.container,true);this.lastOverflow=true}}else{if(this.more){this.clearMenu();this.more.destroy();delete this.more;if(this.lastOverflow){this.container.fireEvent("overflowchange",this.container,false);this.lastOverflow=false}}}},createMenuConfig:function(c,a){var b=Ext.apply({},c.initialConfig),d=c.toggleGroup;Ext.copyTo(b,c,["iconCls","icon","itemId","disabled","handler","scope","menu"]);Ext.apply(b,{text:c.overflowText||c.text,hideOnClick:a});if(d||c.enableToggle){Ext.apply(b,{group:d,checked:c.pressed,listeners:{checkchange:function(g,e){c.toggle(e)}}})}delete b.ownerCt;delete b.xtype;delete b.id;return b},addComponentToMenu:function(b,a){if(a instanceof Ext.Toolbar.Separator){b.add("-")}else{if(Ext.isFunction(a.isXType)){if(a.isXType("splitbutton")){b.add(this.createMenuConfig(a,true))}else{if(a.isXType("button")){b.add(this.createMenuConfig(a,!a.menu))}else{if(a.isXType("buttongroup")){a.items.each(function(c){this.addComponentToMenu(b,c)},this)}}}}}},clearMenu:function(){var a=this.moreMenu;if(a&&a.items){a.items.each(function(b){delete b.menu})}},beforeMoreShow:function(h){var b=this.container.items.items,a=b.length,g,e;var c=function(j,i){return j.isXType("buttongroup")&&!(i instanceof Ext.Toolbar.Separator)};this.clearMenu();h.removeAll();for(var d=0;d','','{altText}',"","")}if(g&&!g.rendered){if(Ext.isNumber(b)){b=e.dom.childNodes[b]}var d=this.getItemArgs(g);g.render(g.positionEl=b?this.itemTpl.insertBefore(b,d,true):this.itemTpl.append(e,d,true));g.positionEl.menuItemId=g.getItemId();if(!d.isMenuItem&&d.needsIcon){g.positionEl.addClass("x-menu-list-item-indent")}this.configureItem(g)}else{if(g&&!this.isValidParent(g,e)){if(Ext.isNumber(b)){b=e.dom.childNodes[b]}e.dom.insertBefore(g.getActionEl().dom,b||null)}}},getItemArgs:function(d){var a=d instanceof Ext.menu.Item,b=!(a||d instanceof Ext.menu.Separator);return{isMenuItem:a,needsIcon:b&&(d.icon||d.iconCls),icon:d.icon||Ext.BLANK_IMAGE_URL,iconCls:"x-menu-item-icon "+(d.iconCls||""),itemId:"x-menu-el-"+d.id,itemCls:"x-menu-list-item ",altText:d.altText||""}},isValidParent:function(b,a){return b.el.up("li.x-menu-list-item",5).dom.parentNode===(a.dom||a)},onLayout:function(a,b){Ext.layout.MenuLayout.superclass.onLayout.call(this,a,b);this.doAutoSize()},doAutoSize:function(){var c=this.container,a=c.width;if(c.floating){if(a){c.setWidth(a)}else{if(Ext.isIE9m){c.setWidth(Ext.isStrict&&(Ext.isIE7||Ext.isIE8||Ext.isIE9)?"auto":c.minWidth);var d=c.getEl(),b=d.dom.offsetWidth;c.setWidth(c.getLayoutTarget().getWidth()+d.getFrameWidth("lr"))}}}}});Ext.Container.LAYOUTS.menu=Ext.layout.MenuLayout;Ext.Viewport=Ext.extend(Ext.Container,{initComponent:function(){Ext.Viewport.superclass.initComponent.call(this);document.getElementsByTagName("html")[0].className+=" x-viewport";this.el=Ext.getBody();this.el.setHeight=Ext.emptyFn;this.el.setWidth=Ext.emptyFn;this.el.setSize=Ext.emptyFn;this.el.dom.scroll="no";this.allowDomMove=false;this.autoWidth=true;this.autoHeight=true;Ext.EventManager.onWindowResize(this.fireResize,this);this.renderTo=this.el},fireResize:function(a,b){this.fireEvent("resize",this,a,b,a,b)}});Ext.reg("viewport",Ext.Viewport);Ext.Panel=Ext.extend(Ext.Container,{baseCls:"x-panel",collapsedCls:"x-panel-collapsed",maskDisabled:true,animCollapse:Ext.enableFx,headerAsText:true,buttonAlign:"right",collapsed:false,collapseFirst:true,minButtonWidth:75,elements:"body",preventBodyReset:false,padding:undefined,resizeEvent:"bodyresize",toolTarget:"header",collapseEl:"bwrap",slideAnchor:"t",disabledClass:"",deferHeight:true,expandDefaults:{duration:0.25},collapseDefaults:{duration:0.25},initComponent:function(){Ext.Panel.superclass.initComponent.call(this);this.addEvents("bodyresize","titlechange","iconchange","collapse","expand","beforecollapse","beforeexpand","beforeclose","close","activate","deactivate");if(this.unstyled){this.baseCls="x-plain"}this.toolbars=[];if(this.tbar){this.elements+=",tbar";this.topToolbar=this.createToolbar(this.tbar);this.tbar=null}if(this.bbar){this.elements+=",bbar";this.bottomToolbar=this.createToolbar(this.bbar);this.bbar=null}if(this.header===true){this.elements+=",header";this.header=null}else{if(this.headerCfg||(this.title&&this.header!==false)){this.elements+=",header"}}if(this.footerCfg||this.footer===true){this.elements+=",footer";this.footer=null}if(this.buttons){this.fbar=this.buttons;this.buttons=null}if(this.fbar){this.createFbar(this.fbar)}if(this.autoLoad){this.on("render",this.doAutoLoad,this,{delay:10})}},createFbar:function(b){var a=this.minButtonWidth;this.elements+=",footer";this.fbar=this.createToolbar(b,{buttonAlign:this.buttonAlign,toolbarCls:"x-panel-fbar",enableOverflow:false,defaults:function(d){return{minWidth:d.minWidth||a}}});this.fbar.items.each(function(d){d.minWidth=d.minWidth||this.minButtonWidth},this);this.buttons=this.fbar.items.items},createToolbar:function(b,c){var a;if(Ext.isArray(b)){b={items:b}}a=b.events?Ext.apply(b,c):this.createComponent(Ext.apply({},b,c),"toolbar");this.toolbars.push(a);return a},createElement:function(a,c){if(this[a]){c.appendChild(this[a].dom);return}if(a==="bwrap"||this.elements.indexOf(a)!=-1){if(this[a+"Cfg"]){this[a]=Ext.fly(c).createChild(this[a+"Cfg"])}else{var b=document.createElement("div");b.className=this[a+"Cls"];this[a]=Ext.get(c.appendChild(b))}if(this[a+"CssClass"]){this[a].addClass(this[a+"CssClass"])}if(this[a+"Style"]){this[a].applyStyles(this[a+"Style"])}}},onRender:function(g,e){Ext.Panel.superclass.onRender.call(this,g,e);this.createClasses();var a=this.el,h=a.dom,k,i;if(this.collapsible&&!this.hideCollapseTool){this.tools=this.tools?this.tools.slice(0):[];this.tools[this.collapseFirst?"unshift":"push"]({id:"toggle",handler:this.toggleCollapse,scope:this})}if(this.tools){i=this.tools;this.elements+=(this.header!==false)?",header":""}this.tools={};a.addClass(this.baseCls);if(h.firstChild){this.header=a.down("."+this.headerCls);this.bwrap=a.down("."+this.bwrapCls);var j=this.bwrap?this.bwrap:a;this.tbar=j.down("."+this.tbarCls);this.body=j.down("."+this.bodyCls);this.bbar=j.down("."+this.bbarCls);this.footer=j.down("."+this.footerCls);this.fromMarkup=true}if(this.preventBodyReset===true){a.addClass("x-panel-reset")}if(this.cls){a.addClass(this.cls)}if(this.buttons){this.elements+=",footer"}if(this.frame){a.insertHtml("afterBegin",String.format(Ext.Element.boxMarkup,this.baseCls));this.createElement("header",h.firstChild.firstChild.firstChild);this.createElement("bwrap",h);k=this.bwrap.dom;var c=h.childNodes[1],b=h.childNodes[2];k.appendChild(c);k.appendChild(b);var l=k.firstChild.firstChild.firstChild;this.createElement("tbar",l);this.createElement("body",l);this.createElement("bbar",l);this.createElement("footer",k.lastChild.firstChild.firstChild);if(!this.footer){this.bwrap.dom.lastChild.className+=" x-panel-nofooter"}this.ft=Ext.get(this.bwrap.dom.lastChild);this.mc=Ext.get(l)}else{this.createElement("header",h);this.createElement("bwrap",h);k=this.bwrap.dom;this.createElement("tbar",k);this.createElement("body",k);this.createElement("bbar",k);this.createElement("footer",k);if(!this.header){this.body.addClass(this.bodyCls+"-noheader");if(this.tbar){this.tbar.addClass(this.tbarCls+"-noheader")}}}if(Ext.isDefined(this.padding)){this.body.setStyle("padding",this.body.addUnits(this.padding))}if(this.border===false){this.el.addClass(this.baseCls+"-noborder");this.body.addClass(this.bodyCls+"-noborder");if(this.header){this.header.addClass(this.headerCls+"-noborder")}if(this.footer){this.footer.addClass(this.footerCls+"-noborder")}if(this.tbar){this.tbar.addClass(this.tbarCls+"-noborder")}if(this.bbar){this.bbar.addClass(this.bbarCls+"-noborder")}}if(this.bodyBorder===false){this.body.addClass(this.bodyCls+"-noborder")}this.bwrap.enableDisplayMode("block");if(this.header){this.header.unselectable();if(this.headerAsText){this.header.dom.innerHTML=''+this.header.dom.innerHTML+"";if(this.iconCls){this.setIconClass(this.iconCls)}}}if(this.floating){this.makeFloating(this.floating)}if(this.collapsible&&this.titleCollapse&&this.header){this.mon(this.header,"click",this.toggleCollapse,this);this.header.setStyle("cursor","pointer")}if(i){this.addTool.apply(this,i)}if(this.fbar){this.footer.addClass("x-panel-btns");this.fbar.ownerCt=this;this.fbar.render(this.footer);this.footer.createChild({cls:"x-clear"})}if(this.tbar&&this.topToolbar){this.topToolbar.ownerCt=this;this.topToolbar.render(this.tbar)}if(this.bbar&&this.bottomToolbar){this.bottomToolbar.ownerCt=this;this.bottomToolbar.render(this.bbar)}},setIconClass:function(b){var a=this.iconCls;this.iconCls=b;if(this.rendered&&this.header){if(this.frame){this.header.addClass("x-panel-icon");this.header.replaceClass(a,this.iconCls)}else{var e=this.header,c=e.child("img.x-panel-inline-icon");if(c){Ext.fly(c).replaceClass(a,this.iconCls)}else{var d=e.child("span."+this.headerTextCls);if(d){Ext.DomHelper.insertBefore(d.dom,{tag:"img",alt:"",src:Ext.BLANK_IMAGE_URL,cls:"x-panel-inline-icon "+this.iconCls})}}}}this.fireEvent("iconchange",this,b,a)},makeFloating:function(a){this.floating=true;this.el=new Ext.Layer(Ext.apply({},a,{shadow:Ext.isDefined(this.shadow)?this.shadow:"sides",shadowOffset:this.shadowOffset,constrain:false,shim:this.shim===false?false:undefined}),this.el)},getTopToolbar:function(){return this.topToolbar},getBottomToolbar:function(){return this.bottomToolbar},getFooterToolbar:function(){return this.fbar},addButton:function(a,c,b){if(!this.fbar){this.createFbar([])}if(c){if(Ext.isString(a)){a={text:a}}a=Ext.apply({handler:c,scope:b},a)}return this.fbar.add(a)},addTool:function(){if(!this.rendered){if(!this.tools){this.tools=[]}Ext.each(arguments,function(a){this.tools.push(a)},this);return}if(!this[this.toolTarget]){return}if(!this.toolTemplate){var h=new Ext.Template('
     
    ');h.disableFormats=true;h.compile();Ext.Panel.prototype.toolTemplate=h}for(var g=0,d=arguments,c=d.length;g0){Ext.each(this.toolbars,function(c){c.doLayout(undefined,a)});this.syncHeight()}},syncHeight:function(){var b=this.toolbarHeight,c=this.body,a=this.lastSize.height,d;if(this.autoHeight||!Ext.isDefined(a)||a=="auto"){return}if(b!=this.getToolbarHeight()){b=Math.max(0,a-this.getFrameHeight());c.setHeight(b);d=c.getSize();this.toolbarHeight=this.getToolbarHeight();this.onBodyResize(d.width,d.height)}},onShow:function(){if(this.floating){return this.el.show()}Ext.Panel.superclass.onShow.call(this)},onHide:function(){if(this.floating){return this.el.hide()}Ext.Panel.superclass.onHide.call(this)},createToolHandler:function(c,a,d,b){return function(g){c.removeClass(d);if(a.stopEvent!==false){g.stopEvent()}if(a.handler){a.handler.call(a.scope||c,g,c,b,a)}}},afterRender:function(){if(this.floating&&!this.hidden){this.el.show()}if(this.title){this.setTitle(this.title)}Ext.Panel.superclass.afterRender.call(this);if(this.collapsed){this.collapsed=false;this.collapse(false)}this.initEvents()},getKeyMap:function(){if(!this.keyMap){this.keyMap=new Ext.KeyMap(this.el,this.keys)}return this.keyMap},initEvents:function(){if(this.keys){this.getKeyMap()}if(this.draggable){this.initDraggable()}if(this.toolbars.length>0){Ext.each(this.toolbars,function(a){a.doLayout();a.on({scope:this,afterlayout:this.syncHeight,remove:this.syncHeight})},this);this.syncHeight()}},initDraggable:function(){this.dd=new Ext.Panel.DD(this,Ext.isBoolean(this.draggable)?null:this.draggable)},beforeEffect:function(a){if(this.floating){this.el.beforeAction()}if(a!==false){this.el.addClass("x-panel-animated")}},afterEffect:function(a){this.syncShadow();this.el.removeClass("x-panel-animated")},createEffect:function(c,b,d){var e={scope:d,block:true};if(c===true){e.callback=b;return e}else{if(!c.callback){e.callback=b}else{e.callback=function(){b.call(d);Ext.callback(c.callback,c.scope)}}}return Ext.applyIf(e,c)},collapse:function(b){if(this.collapsed||this.el.hasFxBlock()||this.fireEvent("beforecollapse",this,b)===false){return}var a=b===true||(b!==false&&this.animCollapse);this.beforeEffect(a);this.onCollapse(a,b);return this},onCollapse:function(a,b){if(a){this[this.collapseEl].slideOut(this.slideAnchor,Ext.apply(this.createEffect(b||true,this.afterCollapse,this),this.collapseDefaults))}else{this[this.collapseEl].hide(this.hideMode);this.afterCollapse(false)}},afterCollapse:function(a){this.collapsed=true;this.el.addClass(this.collapsedCls);if(a!==false){this[this.collapseEl].hide(this.hideMode)}this.afterEffect(a);this.cascade(function(b){if(b.lastSize){b.lastSize={width:undefined,height:undefined}}});this.fireEvent("collapse",this)},expand:function(b){if(!this.collapsed||this.el.hasFxBlock()||this.fireEvent("beforeexpand",this,b)===false){return}var a=b===true||(b!==false&&this.animCollapse);this.el.removeClass(this.collapsedCls);this.beforeEffect(a);this.onExpand(a,b);return this},onExpand:function(a,b){if(a){this[this.collapseEl].slideIn(this.slideAnchor,Ext.apply(this.createEffect(b||true,this.afterExpand,this),this.expandDefaults))}else{this[this.collapseEl].show(this.hideMode);this.afterExpand(false)}},afterExpand:function(a){this.collapsed=false;if(a!==false){this[this.collapseEl].show(this.hideMode)}this.afterEffect(a);if(this.deferLayout){delete this.deferLayout;this.doLayout(true)}this.fireEvent("expand",this)},toggleCollapse:function(a){this[this.collapsed?"expand":"collapse"](a);return this},onDisable:function(){if(this.rendered&&this.maskDisabled){this.el.mask()}Ext.Panel.superclass.onDisable.call(this)},onEnable:function(){if(this.rendered&&this.maskDisabled){this.el.unmask()}Ext.Panel.superclass.onEnable.call(this)},onResize:function(g,d,c,e){var a=g,b=d;if(Ext.isDefined(a)||Ext.isDefined(b)){if(!this.collapsed){if(Ext.isNumber(a)){this.body.setWidth(a=this.adjustBodyWidth(a-this.getFrameWidth()))}else{if(a=="auto"){a=this.body.setWidth("auto").dom.offsetWidth}else{a=this.body.dom.offsetWidth}}if(this.tbar){this.tbar.setWidth(a);if(this.topToolbar){this.topToolbar.setSize(a)}}if(this.bbar){this.bbar.setWidth(a);if(this.bottomToolbar){this.bottomToolbar.setSize(a);if(Ext.isIE9m){this.bbar.setStyle("position","static");this.bbar.setStyle("position","")}}}if(this.footer){this.footer.setWidth(a);if(this.fbar){this.fbar.setSize(Ext.isIE9m?(a-this.footer.getFrameWidth("lr")):"auto")}}if(Ext.isNumber(b)){b=Math.max(0,b-this.getFrameHeight());this.body.setHeight(b)}else{if(b=="auto"){this.body.setHeight(b)}}if(this.disabled&&this.el._mask){this.el._mask.setSize(this.el.dom.clientWidth,this.el.getHeight())}}else{this.queuedBodySize={width:a,height:b};if(!this.queuedExpand&&this.allowQueuedExpand!==false){this.queuedExpand=true;this.on("expand",function(){delete this.queuedExpand;this.onResize(this.queuedBodySize.width,this.queuedBodySize.height)},this,{single:true})}}this.onBodyResize(a,b)}this.syncShadow();Ext.Panel.superclass.onResize.call(this,g,d,c,e)},onBodyResize:function(a,b){this.fireEvent("bodyresize",this,a,b)},getToolbarHeight:function(){var a=0;if(this.rendered){Ext.each(this.toolbars,function(b){a+=b.getHeight()},this)}return a},adjustBodyHeight:function(a){return a},adjustBodyWidth:function(a){return a},onPosition:function(){this.syncShadow()},getFrameWidth:function(){var b=this.el.getFrameWidth("lr")+this.bwrap.getFrameWidth("lr");if(this.frame){var a=this.bwrap.dom.firstChild;b+=(Ext.fly(a).getFrameWidth("l")+Ext.fly(a.firstChild).getFrameWidth("r"));b+=this.mc.getFrameWidth("lr")}return b},getFrameHeight:function(){var a=this.el.getFrameWidth("tb")+this.bwrap.getFrameWidth("tb");a+=(this.tbar?this.tbar.getHeight():0)+(this.bbar?this.bbar.getHeight():0);if(this.frame){a+=this.el.dom.firstChild.offsetHeight+this.ft.dom.offsetHeight+this.mc.getFrameWidth("tb")}else{a+=(this.header?this.header.getHeight():0)+(this.footer?this.footer.getHeight():0)}return a},getInnerWidth:function(){return this.getSize().width-this.getFrameWidth()},getInnerHeight:function(){return this.body.getHeight()},syncShadow:function(){if(this.floating){this.el.sync(true)}},getLayoutTarget:function(){return this.body},getContentTarget:function(){return this.body},setTitle:function(b,a){this.title=b;if(this.header&&this.headerAsText){this.header.child("span").update(b)}if(a){this.setIconClass(a)}this.fireEvent("titlechange",this,b);return this},getUpdater:function(){return this.body.getUpdater()},load:function(){var a=this.body.getUpdater();a.update.apply(a,arguments);return this},beforeDestroy:function(){Ext.Panel.superclass.beforeDestroy.call(this);if(this.header){this.header.removeAllListeners()}if(this.tools){for(var a in this.tools){Ext.destroy(this.tools[a])}}if(this.toolbars.length>0){Ext.each(this.toolbars,function(b){b.un("afterlayout",this.syncHeight,this);b.un("remove",this.syncHeight,this)},this)}if(Ext.isArray(this.buttons)){while(this.buttons.length){Ext.destroy(this.buttons[0])}}if(this.rendered){Ext.destroy(this.ft,this.header,this.footer,this.tbar,this.bbar,this.body,this.mc,this.bwrap,this.dd);if(this.fbar){Ext.destroy(this.fbar,this.fbar.el)}}Ext.destroy(this.toolbars)},createClasses:function(){this.headerCls=this.baseCls+"-header";this.headerTextCls=this.baseCls+"-header-text";this.bwrapCls=this.baseCls+"-bwrap";this.tbarCls=this.baseCls+"-tbar";this.bodyCls=this.baseCls+"-body";this.bbarCls=this.baseCls+"-bbar";this.footerCls=this.baseCls+"-footer"},createGhost:function(a,e,b){var d=document.createElement("div");d.className="x-panel-ghost "+(a?a:"");if(this.header){d.appendChild(this.el.dom.firstChild.cloneNode(true))}Ext.fly(d.appendChild(document.createElement("ul"))).setHeight(this.bwrap.getHeight());d.style.width=this.el.dom.offsetWidth+"px";if(!b){this.container.dom.appendChild(d)}else{Ext.getDom(b).appendChild(d)}if(e!==false&&this.el.useShim!==false){var c=new Ext.Layer({shadow:false,useDisplay:true,constrain:false},d);c.show();return c}else{return new Ext.Element(d)}},doAutoLoad:function(){var a=this.body.getUpdater();if(this.renderer){a.setRenderer(this.renderer)}a.update(Ext.isObject(this.autoLoad)?this.autoLoad:{url:this.autoLoad})},getTool:function(a){return this.tools[a]}});Ext.reg("panel",Ext.Panel);Ext.Editor=function(b,a){if(b.field){this.field=Ext.create(b.field,"textfield");a=Ext.apply({},b);delete a.field}else{this.field=b}Ext.Editor.superclass.constructor.call(this,a)};Ext.extend(Ext.Editor,Ext.Component,{allowBlur:true,value:"",alignment:"c-c?",offsets:[0,0],shadow:"frame",constrain:false,swallowKeys:true,completeOnEnter:true,cancelOnEsc:true,updateEl:false,initComponent:function(){Ext.Editor.superclass.initComponent.call(this);this.addEvents("beforestartedit","startedit","beforecomplete","complete","canceledit","specialkey")},onRender:function(b,a){this.el=new Ext.Layer({shadow:this.shadow,cls:"x-editor",parentEl:b,shim:this.shim,shadowOffset:this.shadowOffset||4,id:this.id,constrain:this.constrain});if(this.zIndex){this.el.setZIndex(this.zIndex)}this.el.setStyle("overflow",Ext.isGecko?"auto":"hidden");if(this.field.msgTarget!="title"){this.field.msgTarget="qtip"}this.field.inEditor=true;this.mon(this.field,{scope:this,blur:this.onBlur,specialkey:this.onSpecialKey});if(this.field.grow){this.mon(this.field,"autosize",this.el.sync,this.el,{delay:1})}this.field.render(this.el).show();this.field.getEl().dom.name="";if(this.swallowKeys){this.field.el.swallowEvent(["keypress","keydown"])}},onSpecialKey:function(g,d){var b=d.getKey(),a=this.completeOnEnter&&b==d.ENTER,c=this.cancelOnEsc&&b==d.ESC;if(a||c){d.stopEvent();if(a){this.completeEdit()}else{this.cancelEdit()}if(g.triggerBlur){g.triggerBlur()}}this.fireEvent("specialkey",g,d)},startEdit:function(b,c){if(this.editing){this.completeEdit()}this.boundEl=Ext.get(b);var a=c!==undefined?c:this.boundEl.dom.innerHTML;if(!this.rendered){this.render(this.parentEl||document.body)}if(this.fireEvent("beforestartedit",this,this.boundEl,a)!==false){this.startValue=a;this.field.reset();this.field.setValue(a);this.realign(true);this.editing=true;this.show()}},doAutoSize:function(){if(this.autoSize){var b=this.boundEl.getSize(),a=this.field.getSize();switch(this.autoSize){case"width":this.setSize(b.width,a.height);break;case"height":this.setSize(a.width,b.height);break;case"none":this.setSize(a.width,a.height);break;default:this.setSize(b.width,b.height)}}},setSize:function(a,b){delete this.field.lastSize;this.field.setSize(a,b);if(this.el){if(Ext.isGecko2||Ext.isOpera||(Ext.isIE7&&Ext.isStrict)){this.el.setSize(a,b)}this.el.sync()}},realign:function(a){if(a===true){this.doAutoSize()}this.el.alignTo(this.boundEl,this.alignment,this.offsets)},completeEdit:function(a){if(!this.editing){return}if(this.field.assertValue){this.field.assertValue()}var b=this.getValue();if(!this.field.isValid()){if(this.revertInvalid!==false){this.cancelEdit(a)}return}if(String(b)===String(this.startValue)&&this.ignoreNoChange){this.hideEdit(a);return}if(this.fireEvent("beforecomplete",this,b,this.startValue)!==false){b=this.getValue();if(this.updateEl&&this.boundEl){this.boundEl.update(b)}this.hideEdit(a);this.fireEvent("complete",this,b,this.startValue)}},onShow:function(){this.el.show();if(this.hideEl!==false){this.boundEl.hide()}this.field.show().focus(false,true);this.fireEvent("startedit",this.boundEl,this.startValue)},cancelEdit:function(a){if(this.editing){var b=this.getValue();this.setValue(this.startValue);this.hideEdit(a);this.fireEvent("canceledit",this,b,this.startValue)}},hideEdit:function(a){if(a!==true){this.editing=false;this.hide()}},onBlur:function(){if(this.allowBlur===true&&this.editing&&this.selectSameEditor!==true){this.completeEdit()}},onHide:function(){if(this.editing){this.completeEdit();return}this.field.blur();if(this.field.collapse){this.field.collapse()}this.el.hide();if(this.hideEl!==false){this.boundEl.show()}},setValue:function(a){this.field.setValue(a)},getValue:function(){return this.field.getValue()},beforeDestroy:function(){Ext.destroyMembers(this,"field");delete this.parentEl;delete this.boundEl}});Ext.reg("editor",Ext.Editor);Ext.ColorPalette=Ext.extend(Ext.Component,{itemCls:"x-color-palette",value:null,clickEvent:"click",ctype:"Ext.ColorPalette",allowReselect:false,colors:["000000","993300","333300","003300","003366","000080","333399","333333","800000","FF6600","808000","008000","008080","0000FF","666699","808080","FF0000","FF9900","99CC00","339966","33CCCC","3366FF","800080","969696","FF00FF","FFCC00","FFFF00","00FF00","00FFFF","00CCFF","993366","C0C0C0","FF99CC","FFCC99","FFFF99","CCFFCC","CCFFFF","99CCFF","CC99FF","FFFFFF"],initComponent:function(){Ext.ColorPalette.superclass.initComponent.call(this);this.addEvents("select");if(this.handler){this.on("select",this.handler,this.scope,true)}},onRender:function(b,a){this.autoEl={tag:"div",cls:this.itemCls};Ext.ColorPalette.superclass.onRender.call(this,b,a);var c=this.tpl||new Ext.XTemplate(' ');c.overwrite(this.el,this.colors);this.mon(this.el,this.clickEvent,this.handleClick,this,{delegate:"a"});if(this.clickEvent!="click"){this.mon(this.el,"click",Ext.emptyFn,this,{delegate:"a",preventDefault:true})}},afterRender:function(){Ext.ColorPalette.superclass.afterRender.call(this);if(this.value){var a=this.value;this.value=null;this.select(a,true)}},handleClick:function(b,a){b.preventDefault();if(!this.disabled){var d=a.className.match(/(?:^|\s)color-(.{6})(?:\s|$)/)[1];this.select(d.toUpperCase())}},select:function(b,a){b=b.replace("#","");if(b!=this.value||this.allowReselect){var c=this.el;if(this.value){c.child("a.color-"+this.value).removeClass("x-color-palette-sel")}c.child("a.color-"+b).addClass("x-color-palette-sel");this.value=b;if(a!==true){this.fireEvent("select",this,b)}}}});Ext.reg("colorpalette",Ext.ColorPalette);Ext.DatePicker=Ext.extend(Ext.BoxComponent,{todayText:"Today",okText:" OK ",cancelText:"Cancel",todayTip:"{0} (Spacebar)",minText:"This date is before the minimum date",maxText:"This date is after the maximum date",format:"m/d/y",disabledDaysText:"Disabled",disabledDatesText:"Disabled",monthNames:Date.monthNames,dayNames:Date.dayNames,nextText:"Next Month (Control+Right)",prevText:"Previous Month (Control+Left)",monthYearText:"Choose a month (Control+Up/Down to move years)",startDay:0,showToday:true,focusOnSelect:true,initHour:12,initComponent:function(){Ext.DatePicker.superclass.initComponent.call(this);this.value=this.value?this.value.clearTime(true):new Date().clearTime();this.addEvents("select");if(this.handler){this.on("select",this.handler,this.scope||this)}this.initDisabledDays()},initDisabledDays:function(){if(!this.disabledDatesRE&&this.disabledDates){var b=this.disabledDates,a=b.length-1,c="(?:";Ext.each(b,function(g,e){c+=Ext.isDate(g)?"^"+Ext.escapeRe(g.dateFormat(this.format))+"$":b[e];if(e!=a){c+="|"}},this);this.disabledDatesRE=new RegExp(c+")")}},setDisabledDates:function(a){if(Ext.isArray(a)){this.disabledDates=a;this.disabledDatesRE=null}else{this.disabledDatesRE=a}this.initDisabledDays();this.update(this.value,true)},setDisabledDays:function(a){this.disabledDays=a;this.update(this.value,true)},setMinDate:function(a){this.minDate=a;this.update(this.value,true)},setMaxDate:function(a){this.maxDate=a;this.update(this.value,true)},setValue:function(a){this.value=a.clearTime(true);this.update(this.value)},getValue:function(){return this.value},focus:function(){this.update(this.activeDate)},onEnable:function(a){Ext.DatePicker.superclass.onEnable.call(this);this.doDisabled(false);this.update(a?this.value:this.activeDate);if(Ext.isIE9m){this.el.repaint()}},onDisable:function(){Ext.DatePicker.superclass.onDisable.call(this);this.doDisabled(true);if(Ext.isIE9m&&!Ext.isIE8){Ext.each([].concat(this.textNodes,this.el.query("th span")),function(a){Ext.fly(a).repaint()})}},doDisabled:function(a){this.keyNav.setDisabled(a);this.prevRepeater.setDisabled(a);this.nextRepeater.setDisabled(a);if(this.showToday){this.todayKeyListener.setDisabled(a);this.todayBtn.setDisabled(a)}},onRender:function(e,b){var a=['','','",this.showToday?'':"",'
      
    '],c=this.dayNames,h;for(h=0;h<7;h++){var k=this.startDay+h;if(k>6){k=k-7}a.push("")}a[a.length]="";for(h=0;h<42;h++){if(h%7===0&&h!==0){a[a.length]=""}a[a.length]=''}a.push("
    ",c[k].substr(0,1),"
    ');var j=document.createElement("div");j.className="x-date-picker";j.innerHTML=a.join("");e.dom.insertBefore(j,b);this.el=Ext.get(j);this.eventEl=Ext.get(j.firstChild);this.prevRepeater=new Ext.util.ClickRepeater(this.el.child("td.x-date-left a"),{handler:this.showPrevMonth,scope:this,preventDefault:true,stopDefault:true});this.nextRepeater=new Ext.util.ClickRepeater(this.el.child("td.x-date-right a"),{handler:this.showNextMonth,scope:this,preventDefault:true,stopDefault:true});this.monthPicker=this.el.down("div.x-date-mp");this.monthPicker.enableDisplayMode("block");this.keyNav=new Ext.KeyNav(this.eventEl,{left:function(d){if(d.ctrlKey){this.showPrevMonth()}else{this.update(this.activeDate.add("d",-1))}},right:function(d){if(d.ctrlKey){this.showNextMonth()}else{this.update(this.activeDate.add("d",1))}},up:function(d){if(d.ctrlKey){this.showNextYear()}else{this.update(this.activeDate.add("d",-7))}},down:function(d){if(d.ctrlKey){this.showPrevYear()}else{this.update(this.activeDate.add("d",7))}},pageUp:function(d){this.showNextMonth()},pageDown:function(d){this.showPrevMonth()},enter:function(d){d.stopPropagation();return true},scope:this});this.el.unselectable();this.cells=this.el.select("table.x-date-inner tbody td");this.textNodes=this.el.query("table.x-date-inner tbody span");this.mbtn=new Ext.Button({text:" ",tooltip:this.monthYearText,renderTo:this.el.child("td.x-date-middle",true)});this.mbtn.el.child("em").addClass("x-btn-arrow");if(this.showToday){this.todayKeyListener=this.eventEl.addKeyListener(Ext.EventObject.SPACE,this.selectToday,this);var g=(new Date()).dateFormat(this.format);this.todayBtn=new Ext.Button({renderTo:this.el.child("td.x-date-bottom",true),text:String.format(this.todayText,g),tooltip:String.format(this.todayTip,g),handler:this.selectToday,scope:this})}this.mon(this.eventEl,"mousewheel",this.handleMouseWheel,this);this.mon(this.eventEl,"click",this.handleDateClick,this,{delegate:"a.x-date-date"});this.mon(this.mbtn,"click",this.showMonthPicker,this);this.onEnable(true)},createMonthPicker:function(){if(!this.monthPicker.dom.firstChild){var a=[''];for(var b=0;b<6;b++){a.push('",'",b===0?'':'')}a.push('","
    ',Date.getShortMonthName(b),"',Date.getShortMonthName(b+6),"
    ");this.monthPicker.update(a.join(""));this.mon(this.monthPicker,"click",this.onMonthClick,this);this.mon(this.monthPicker,"dblclick",this.onMonthDblClick,this);this.mpMonths=this.monthPicker.select("td.x-date-mp-month");this.mpYears=this.monthPicker.select("td.x-date-mp-year");this.mpMonths.each(function(c,d,e){e+=1;if((e%2)===0){c.dom.xmonth=5+Math.round(e*0.5)}else{c.dom.xmonth=Math.round((e-1)*0.5)}})}},showMonthPicker:function(){if(!this.disabled){this.createMonthPicker();var a=this.el.getSize();this.monthPicker.setSize(a);this.monthPicker.child("table").setSize(a);this.mpSelMonth=(this.activeDate||this.value).getMonth();this.updateMPMonth(this.mpSelMonth);this.mpSelYear=(this.activeDate||this.value).getFullYear();this.updateMPYear(this.mpSelYear);this.monthPicker.slideIn("t",{duration:0.2})}},updateMPYear:function(e){this.mpyear=e;var c=this.mpYears.elements;for(var b=1;b<=10;b++){var d=c[b-1],a;if((b%2)===0){a=e+Math.round(b*0.5);d.firstChild.innerHTML=a;d.xyear=a}else{a=e-(5-Math.round(b*0.5));d.firstChild.innerHTML=a;d.xyear=a}this.mpYears.item(b-1)[a==this.mpSelYear?"addClass":"removeClass"]("x-date-mp-sel")}},updateMPMonth:function(a){this.mpMonths.each(function(b,c,d){b[b.dom.xmonth==a?"addClass":"removeClass"]("x-date-mp-sel")})},selectMPMonth:function(a){},onMonthClick:function(g,b){g.stopEvent();var c=new Ext.Element(b),a;if(c.is("button.x-date-mp-cancel")){this.hideMonthPicker()}else{if(c.is("button.x-date-mp-ok")){var h=new Date(this.mpSelYear,this.mpSelMonth,(this.activeDate||this.value).getDate());if(h.getMonth()!=this.mpSelMonth){h=new Date(this.mpSelYear,this.mpSelMonth,1).getLastDateOfMonth()}this.update(h);this.hideMonthPicker()}else{if((a=c.up("td.x-date-mp-month",2))){this.mpMonths.removeClass("x-date-mp-sel");a.addClass("x-date-mp-sel");this.mpSelMonth=a.dom.xmonth}else{if((a=c.up("td.x-date-mp-year",2))){this.mpYears.removeClass("x-date-mp-sel");a.addClass("x-date-mp-sel");this.mpSelYear=a.dom.xyear}else{if(c.is("a.x-date-mp-prev")){this.updateMPYear(this.mpyear-10)}else{if(c.is("a.x-date-mp-next")){this.updateMPYear(this.mpyear+10)}}}}}}},onMonthDblClick:function(d,b){d.stopEvent();var c=new Ext.Element(b),a;if((a=c.up("td.x-date-mp-month",2))){this.update(new Date(this.mpSelYear,a.dom.xmonth,(this.activeDate||this.value).getDate()));this.hideMonthPicker()}else{if((a=c.up("td.x-date-mp-year",2))){this.update(new Date(a.dom.xyear,this.mpSelMonth,(this.activeDate||this.value).getDate()));this.hideMonthPicker()}}},hideMonthPicker:function(a){if(this.monthPicker){if(a===true){this.monthPicker.hide()}else{this.monthPicker.slideOut("t",{duration:0.2})}}},showPrevMonth:function(a){this.update(this.activeDate.add("mo",-1))},showNextMonth:function(a){this.update(this.activeDate.add("mo",1))},showPrevYear:function(){this.update(this.activeDate.add("y",-1))},showNextYear:function(){this.update(this.activeDate.add("y",1))},handleMouseWheel:function(a){a.stopEvent();if(!this.disabled){var b=a.getWheelDelta();if(b>0){this.showPrevMonth()}else{if(b<0){this.showNextMonth()}}}},handleDateClick:function(b,a){b.stopEvent();if(!this.disabled&&a.dateValue&&!Ext.fly(a.parentNode).hasClass("x-date-disabled")){this.cancelFocus=this.focusOnSelect===false;this.setValue(new Date(a.dateValue));delete this.cancelFocus;this.fireEvent("select",this,this.value)}},selectToday:function(){if(this.todayBtn&&!this.todayBtn.disabled){this.setValue(new Date().clearTime());this.fireEvent("select",this,this.value)}},update:function(G,A){if(this.rendered){var a=this.activeDate,p=this.isVisible();this.activeDate=G;if(!A&&a&&this.el){var o=G.getTime();if(a.getMonth()==G.getMonth()&&a.getFullYear()==G.getFullYear()){this.cells.removeClass("x-date-selected");this.cells.each(function(d){if(d.dom.firstChild.dateValue==o){d.addClass("x-date-selected");if(p&&!this.cancelFocus){Ext.fly(d.dom.firstChild).focus(50)}return false}},this);return}}var k=G.getDaysInMonth(),q=G.getFirstDateOfMonth(),g=q.getDay()-this.startDay;if(g<0){g+=7}k+=g;var B=G.add("mo",-1),h=B.getDaysInMonth()-g,e=this.cells.elements,r=this.textNodes,D=(new Date(B.getFullYear(),B.getMonth(),h,this.initHour)),C=new Date().clearTime().getTime(),v=G.clearTime(true).getTime(),u=this.minDate?this.minDate.clearTime(true):Number.NEGATIVE_INFINITY,y=this.maxDate?this.maxDate.clearTime(true):Number.POSITIVE_INFINITY,F=this.disabledDatesRE,s=this.disabledDatesText,I=this.disabledDays?this.disabledDays.join(""):false,E=this.disabledDaysText,z=this.format;if(this.showToday){var m=new Date().clearTime(),c=(my||(F&&z&&F.test(m.dateFormat(z)))||(I&&I.indexOf(m.getDay())!=-1));if(!this.disabled){this.todayBtn.setDisabled(c);this.todayKeyListener[c?"disable":"enable"]()}}var l=function(J,d){d.title="";var i=D.clearTime(true).getTime();d.firstChild.dateValue=i;if(i==C){d.className+=" x-date-today";d.title=J.todayText}if(i==v){d.className+=" x-date-selected";if(p){Ext.fly(d.firstChild).focus(50)}}if(iy){d.className=" x-date-disabled";d.title=J.maxText;return}if(I){if(I.indexOf(D.getDay())!=-1){d.title=E;d.className=" x-date-disabled"}}if(F&&z){var w=D.dateFormat(z);if(F.test(w)){d.title=s.replace("%0",w);d.className=" x-date-disabled"}}};var x=0;for(;x=a.value){d=a.value}}c.setValue(b,d,false);c.fireEvent("drag",c,g,this)},getNewValue:function(){var a=this.slider,b=a.innerEl.translatePoints(this.tracker.getXY());return Ext.util.Format.round(a.reverseValue(b.left),a.decimalPrecision)},onDragEnd:function(c){var a=this.slider,b=this.value;this.el.removeClass("x-slider-thumb-drag");this.dragging=false;a.fireEvent("dragend",a,c);if(this.dragStartValue!=b){a.fireEvent("changecomplete",a,b,this)}},destroy:function(){Ext.destroyMembers(this,"tracker","el")}});Ext.slider.MultiSlider=Ext.extend(Ext.BoxComponent,{vertical:false,minValue:0,maxValue:100,decimalPrecision:0,keyIncrement:1,increment:0,clickRange:[5,15],clickToChange:true,animate:true,constrainThumbs:true,topThumbZIndex:10000,initComponent:function(){if(!Ext.isDefined(this.value)){this.value=this.minValue}this.thumbs=[];Ext.slider.MultiSlider.superclass.initComponent.call(this);this.keyIncrement=Math.max(this.increment,this.keyIncrement);this.addEvents("beforechange","change","changecomplete","dragstart","drag","dragend");if(this.values==undefined||Ext.isEmpty(this.values)){this.values=[0]}var a=this.values;for(var b=0;bthis.clickRange[0]&&c.top=c){d+=c}else{if(a*2<-c){d-=c}}}return d.constrain(this.minValue,this.maxValue)},afterRender:function(){Ext.slider.MultiSlider.superclass.afterRender.apply(this,arguments);for(var c=0;ce?e:c.value}this.syncThumb()},setValue:function(d,c,b,g){var a=this.thumbs[d],e=a.el;c=this.normalizeValue(c);if(c!==a.value&&this.fireEvent("beforechange",this,c,a.value,a)!==false){a.value=c;if(this.rendered){this.moveThumb(d,this.translateValue(c),b!==false);this.fireEvent("change",this,c,a);if(g){this.fireEvent("changecomplete",this,c,a)}}}},translateValue:function(a){var b=this.getRatio();return(a*b)-(this.minValue*b)-this.halfThumb},reverseValue:function(b){var a=this.getRatio();return(b+(this.minValue*a))/a},moveThumb:function(d,c,b){var a=this.thumbs[d].el;if(!b||this.animate===false){a.setLeft(c)}else{a.shift({left:c,stopFx:true,duration:0.35})}},focus:function(){this.focusEl.focus(10)},onResize:function(c,e){var b=this.thumbs,a=b.length,d=0;for(;dthis.clickRange[0]&&c.left','
    ','
    ','
    ',"
     
    ","
    ","
    ",'
    ',"
     
    ","
    ","
    ","");this.el=a?c.insertBefore(a,{cls:this.baseCls},true):c.append(d,{cls:this.baseCls},true);if(this.id){this.el.dom.id=this.id}var b=this.el.dom.firstChild;this.progressBar=Ext.get(b.firstChild);if(this.textEl){this.textEl=Ext.get(this.textEl);delete this.textTopEl}else{this.textTopEl=Ext.get(this.progressBar.dom.firstChild);var e=Ext.get(b.childNodes[1]);this.textTopEl.setStyle("z-index",99).addClass("x-hidden");this.textEl=new Ext.CompositeElement([this.textTopEl.dom.firstChild,e.dom.firstChild]);this.textEl.setWidth(b.offsetWidth)}this.progressBar.setHeight(b.offsetHeight)},afterRender:function(){Ext.ProgressBar.superclass.afterRender.call(this);if(this.value){this.updateProgress(this.value,this.text)}else{this.updateText(this.text)}},updateProgress:function(c,d,b){this.value=c||0;if(d){this.updateText(d)}if(this.rendered&&!this.isDestroyed){var a=Math.floor(c*this.el.dom.firstChild.offsetWidth);this.progressBar.setWidth(a,b===true||(b!==false&&this.animate));if(this.textTopEl){this.textTopEl.removeClass("x-hidden").setWidth(a)}}this.fireEvent("update",this,c,d);return this},wait:function(b){if(!this.waitTimer){var a=this;b=b||{};this.updateText(b.text);this.waitTimer=Ext.TaskMgr.start({run:function(c){var d=b.increment||10;c-=1;this.updateProgress(((((c+d)%d)+1)*(100/d))*0.01,null,b.animate)},interval:b.interval||1000,duration:b.duration,onStop:function(){if(b.fn){b.fn.apply(b.scope||this)}this.reset()},scope:a})}return this},isWaiting:function(){return this.waitTimer!==null},updateText:function(a){this.text=a||" ";if(this.rendered){this.textEl.update(this.text)}return this},syncProgressBar:function(){if(this.value){this.updateProgress(this.value,this.text)}return this},setSize:function(a,c){Ext.ProgressBar.superclass.setSize.call(this,a,c);if(this.textTopEl){var b=this.el.dom.firstChild;this.textEl.setSize(b.offsetWidth,b.offsetHeight)}this.syncProgressBar();return this},reset:function(a){this.updateProgress(0);if(this.textTopEl){this.textTopEl.addClass("x-hidden")}this.clearTimer();if(a===true){this.hide()}return this},clearTimer:function(){if(this.waitTimer){this.waitTimer.onStop=null;Ext.TaskMgr.stop(this.waitTimer);this.waitTimer=null}},onDestroy:function(){this.clearTimer();if(this.rendered){if(this.textEl.isComposite){this.textEl.clear()}Ext.destroyMembers(this,"textEl","progressBar","textTopEl")}Ext.ProgressBar.superclass.onDestroy.call(this)}});Ext.reg("progress",Ext.ProgressBar);(function(){var a=Ext.EventManager;var b=Ext.lib.Dom;Ext.dd.DragDrop=function(e,c,d){if(e){this.init(e,c,d)}};Ext.dd.DragDrop.prototype={id:null,config:null,dragElId:null,handleElId:null,invalidHandleTypes:null,invalidHandleIds:null,invalidHandleClasses:null,startPageX:0,startPageY:0,groups:null,locked:false,lock:function(){this.locked=true},moveOnly:false,unlock:function(){this.locked=false},isTarget:true,padding:null,_domRef:null,__ygDragDrop:true,constrainX:false,constrainY:false,minX:0,maxX:0,minY:0,maxY:0,maintainOffset:false,xTicks:null,yTicks:null,primaryButtonOnly:true,available:false,hasOuterHandles:false,b4StartDrag:function(c,d){},startDrag:function(c,d){},b4Drag:function(c){},onDrag:function(c){},onDragEnter:function(c,d){},b4DragOver:function(c){},onDragOver:function(c,d){},b4DragOut:function(c){},onDragOut:function(c,d){},b4DragDrop:function(c){},onDragDrop:function(c,d){},onInvalidDrop:function(c){},b4EndDrag:function(c){},endDrag:function(c){},b4MouseDown:function(c){},onMouseDown:function(c){},onMouseUp:function(c){},onAvailable:function(){},defaultPadding:{left:0,right:0,top:0,bottom:0},constrainTo:function(j,h,o){if(Ext.isNumber(h)){h={left:h,right:h,top:h,bottom:h}}h=h||this.defaultPadding;var l=Ext.get(this.getEl()).getBox(),d=Ext.get(j),n=d.getScroll(),k,e=d.dom;if(e==document.body){k={x:n.left,y:n.top,width:Ext.lib.Dom.getViewWidth(),height:Ext.lib.Dom.getViewHeight()}}else{var m=d.getXY();k={x:m[0],y:m[1],width:e.clientWidth,height:e.clientHeight}}var i=l.y-k.y,g=l.x-k.x;this.resetConstraints();this.setXConstraint(g-(h.left||0),k.width-g-l.width-(h.right||0),this.xTickSize);this.setYConstraint(i-(h.top||0),k.height-i-l.height-(h.bottom||0),this.yTickSize)},getEl:function(){if(!this._domRef){this._domRef=Ext.getDom(this.id)}return this._domRef},getDragEl:function(){return Ext.getDom(this.dragElId)},init:function(e,c,d){this.initTarget(e,c,d);a.on(this.id,"mousedown",this.handleMouseDown,this)},initTarget:function(e,c,d){this.config=d||{};this.DDM=Ext.dd.DDM;this.groups={};if(typeof e!=="string"){e=Ext.id(e)}this.id=e;this.addToGroup((c)?c:"default");this.handleElId=e;this.setDragElId(e);this.invalidHandleTypes={A:"A"};this.invalidHandleIds={};this.invalidHandleClasses=[];this.applyConfig();this.handleOnAvailable()},applyConfig:function(){this.padding=this.config.padding||[0,0,0,0];this.isTarget=(this.config.isTarget!==false);this.maintainOffset=(this.config.maintainOffset);this.primaryButtonOnly=(this.config.primaryButtonOnly!==false)},handleOnAvailable:function(){this.available=true;this.resetConstraints();this.onAvailable()},setPadding:function(e,c,g,d){if(!c&&0!==c){this.padding=[e,e,e,e]}else{if(!g&&0!==g){this.padding=[e,c,e,c]}else{this.padding=[e,c,g,d]}}},setInitPosition:function(g,e){var h=this.getEl();if(!this.DDM.verifyEl(h)){return}var d=g||0;var c=e||0;var i=b.getXY(h);this.initPageX=i[0]-d;this.initPageY=i[1]-c;this.lastPageX=i[0];this.lastPageY=i[1];this.setStartPosition(i)},setStartPosition:function(d){var c=d||b.getXY(this.getEl());this.deltaSetXY=null;this.startPageX=c[0];this.startPageY=c[1]},addToGroup:function(c){this.groups[c]=true;this.DDM.regDragDrop(this,c)},removeFromGroup:function(c){if(this.groups[c]){delete this.groups[c]}this.DDM.removeDDFromGroup(this,c)},setDragElId:function(c){this.dragElId=c},setHandleElId:function(c){if(typeof c!=="string"){c=Ext.id(c)}this.handleElId=c;this.DDM.regHandle(this.id,c)},setOuterHandleElId:function(c){if(typeof c!=="string"){c=Ext.id(c)}a.on(c,"mousedown",this.handleMouseDown,this);this.setHandleElId(c);this.hasOuterHandles=true},unreg:function(){a.un(this.id,"mousedown",this.handleMouseDown);this._domRef=null;this.DDM._remove(this)},destroy:function(){this.unreg()},isLocked:function(){return(this.DDM.isLocked()||this.locked)},handleMouseDown:function(g,d){if(this.primaryButtonOnly&&g.button!=0){return}if(this.isLocked()){return}this.DDM.refreshCache(this.groups);var c=new Ext.lib.Point(Ext.lib.Event.getPageX(g),Ext.lib.Event.getPageY(g));if(!this.hasOuterHandles&&!this.DDM.isOverTarget(c,this)){}else{if(this.clickValidator(g)){this.setStartPosition();this.b4MouseDown(g);this.onMouseDown(g);this.DDM.handleMouseDown(g,this);if(this.preventDefault||this.stopPropagation){if(this.preventDefault){g.preventDefault()}if(this.stopPropagation){g.stopPropagation()}}else{this.DDM.stopEvent(g)}}else{}}},clickValidator:function(d){var c=d.getTarget();return(this.isValidHandleChild(c)&&(this.id==this.handleElId||this.DDM.handleWasClicked(c,this.id)))},addInvalidHandleType:function(c){var d=c.toUpperCase();this.invalidHandleTypes[d]=d},addInvalidHandleId:function(c){if(typeof c!=="string"){c=Ext.id(c)}this.invalidHandleIds[c]=c},addInvalidHandleClass:function(c){this.invalidHandleClasses.push(c)},removeInvalidHandleType:function(c){var d=c.toUpperCase();delete this.invalidHandleTypes[d]},removeInvalidHandleId:function(c){if(typeof c!=="string"){c=Ext.id(c)}delete this.invalidHandleIds[c]},removeInvalidHandleClass:function(d){for(var e=0,c=this.invalidHandleClasses.length;e=this.minX;d=d-c){if(!e[d]){this.xTicks[this.xTicks.length]=d;e[d]=true}}for(d=this.initPageX;d<=this.maxX;d=d+c){if(!e[d]){this.xTicks[this.xTicks.length]=d;e[d]=true}}this.xTicks.sort(this.DDM.numericSort)},setYTicks:function(g,c){this.yTicks=[];this.yTickSize=c;var e={};for(var d=this.initPageY;d>=this.minY;d=d-c){if(!e[d]){this.yTicks[this.yTicks.length]=d;e[d]=true}}for(d=this.initPageY;d<=this.maxY;d=d+c){if(!e[d]){this.yTicks[this.yTicks.length]=d;e[d]=true}}this.yTicks.sort(this.DDM.numericSort)},setXConstraint:function(e,d,c){this.leftConstraint=e;this.rightConstraint=d;this.minX=this.initPageX-e;this.maxX=this.initPageX+d;if(c){this.setXTicks(this.initPageX,c)}this.constrainX=true},clearConstraints:function(){this.constrainX=false;this.constrainY=false;this.clearTicks()},clearTicks:function(){this.xTicks=null;this.yTicks=null;this.xTickSize=0;this.yTickSize=0},setYConstraint:function(c,e,d){this.topConstraint=c;this.bottomConstraint=e;this.minY=this.initPageY-c;this.maxY=this.initPageY+e;if(d){this.setYTicks(this.initPageY,d)}this.constrainY=true},resetConstraints:function(){if(this.initPageX||this.initPageX===0){var d=(this.maintainOffset)?this.lastPageX-this.initPageX:0;var c=(this.maintainOffset)?this.lastPageY-this.initPageY:0;this.setInitPosition(d,c)}else{this.setInitPosition()}if(this.constrainX){this.setXConstraint(this.leftConstraint,this.rightConstraint,this.xTickSize)}if(this.constrainY){this.setYConstraint(this.topConstraint,this.bottomConstraint,this.yTickSize)}},getTick:function(k,g){if(!g){return k}else{if(g[0]>=k){return g[0]}else{for(var d=0,c=g.length;d=k){var j=k-g[d];var h=g[e]-k;return(h>j)?g[d]:g[e]}}return g[g.length-1]}}},toString:function(){return("DragDrop "+this.id)}}})();if(!Ext.dd.DragDropMgr){Ext.dd.DragDropMgr=function(){var a=Ext.EventManager;return{ids:{},handleIds:{},dragCurrent:null,dragOvers:{},deltaX:0,deltaY:0,preventDefault:true,stopPropagation:true,initialized:false,locked:false,init:function(){this.initialized=true},POINT:0,INTERSECT:1,mode:0,notifyOccluded:false,_execOnAll:function(d,c){for(var e in this.ids){for(var b in this.ids[e]){var g=this.ids[e][b];if(!this.isTypeOfDD(g)){continue}g[d].apply(g,c)}}},_onLoad:function(){this.init();a.on(document,"mouseup",this.handleMouseUp,this,true);a.on(document,"mousemove",this.handleMouseMove,this,true);a.on(window,"unload",this._onUnload,this,true);a.on(window,"resize",this._onResize,this,true)},_onResize:function(b){this._execOnAll("resetConstraints",[])},lock:function(){this.locked=true},unlock:function(){this.locked=false},isLocked:function(){return this.locked},locationCache:{},useCache:true,clickPixelThresh:3,clickTimeThresh:350,dragThreshMet:false,clickTimeout:null,startX:0,startY:0,regDragDrop:function(c,b){if(!this.initialized){this.init()}if(!this.ids[b]){this.ids[b]={}}this.ids[b][c.id]=c},removeDDFromGroup:function(d,b){if(!this.ids[b]){this.ids[b]={}}var c=this.ids[b];if(c&&c[d.id]){delete c[d.id]}},_remove:function(c){for(var b in c.groups){if(b&&this.ids[b]&&this.ids[b][c.id]){delete this.ids[b][c.id]}}delete this.handleIds[c.id]},regHandle:function(c,b){if(!this.handleIds[c]){this.handleIds[c]={}}this.handleIds[c][b]=b},isDragDrop:function(b){return(this.getDDById(b))?true:false},getRelated:function(h,c){var g=[];for(var e in h.groups){for(var d in this.ids[e]){var b=this.ids[e][d];if(!this.isTypeOfDD(b)){continue}if(!c||b.isTarget){g[g.length]=b}}}return g},isLegalTarget:function(g,e){var c=this.getRelated(g,true);for(var d=0,b=c.length;dthis.clickPixelThresh||b>this.clickPixelThresh){this.startDrag(this.startX,this.startY)}}if(this.dragThreshMet){this.dragCurrent.b4Drag(d);this.dragCurrent.onDrag(d);if(!this.dragCurrent.moveOnly){this.fireEvents(d,false)}}this.stopEvent(d);return true},fireEvents:function(o,r){var q=this,l=q.dragCurrent,s=o.getPoint(),c,u,g=[],b=[],h=[],m=[],k=[],d=[],p,j,n,t;if(!l||l.isLocked()){return}for(j in q.dragOvers){c=q.dragOvers[j];if(!q.isTypeOfDD(c)){continue}if(!this.isOverTarget(s,c,q.mode)){h.push(c)}b[j]=true;delete q.dragOvers[j]}for(t in l.groups){if("string"!=typeof t){continue}for(j in q.ids[t]){c=q.ids[t][j];if(q.isTypeOfDD(c)&&(u=c.getEl())&&(c.isTarget)&&(!c.isLocked())&&((c!=l)||(l.ignoreSelf===false))){if((c.zIndex=q.getZIndex(u))!==-1){p=true}g.push(c)}}}if(p){g.sort(q.byZIndex)}for(j=0,n=g.length;j2000){}else{setTimeout(b._addListeners,10);if(document&&document.body){b._timeoutCount+=1}}}},handleWasClicked:function(b,d){if(this.isHandle(d,b.id)){return true}else{var c=b.parentNode;while(c){if(this.isHandle(d,c.id)){return true}else{c=c.parentNode}}}return false}}}();Ext.dd.DDM=Ext.dd.DragDropMgr;Ext.dd.DDM._addListeners()}Ext.dd.DD=function(c,a,b){if(c){this.init(c,a,b)}};Ext.extend(Ext.dd.DD,Ext.dd.DragDrop,{scroll:true,autoOffset:function(c,b){var a=c-this.startPageX;var d=b-this.startPageY;this.setDelta(a,d)},setDelta:function(b,a){this.deltaX=b;this.deltaY=a},setDragElPos:function(c,b){var a=this.getDragEl();this.alignElWithMouse(a,c,b)},alignElWithMouse:function(c,h,g){var e=this.getTargetCoord(h,g);var b=c.dom?c:Ext.fly(c,"_dd");if(!this.deltaSetXY){var i=[e.x,e.y];b.setXY(i);var d=b.getLeft(true);var a=b.getTop(true);this.deltaSetXY=[d-e.x,a-e.y]}else{b.setLeftTop(e.x+this.deltaSetXY[0],e.y+this.deltaSetXY[1])}this.cachePosition(e.x,e.y);this.autoScroll(e.x,e.y,c.offsetHeight,c.offsetWidth);return e},cachePosition:function(b,a){if(b){this.lastPageX=b;this.lastPageY=a}else{var c=Ext.lib.Dom.getXY(this.getEl());this.lastPageX=c[0];this.lastPageY=c[1]}},autoScroll:function(l,k,e,m){if(this.scroll){var n=Ext.lib.Dom.getViewHeight();var b=Ext.lib.Dom.getViewWidth();var p=this.DDM.getScrollTop();var d=this.DDM.getScrollLeft();var j=e+k;var o=m+l;var i=(n+p-k-this.deltaY);var g=(b+d-l-this.deltaX);var c=40;var a=(document.all)?80:30;if(j>n&&i0&&k-pb&&g0&&l-dthis.maxX){a=this.maxX}}if(this.constrainY){if(dthis.maxY){d=this.maxY}}a=this.getTick(a,this.xTicks);d=this.getTick(d,this.yTicks);return{x:a,y:d}},applyConfig:function(){Ext.dd.DD.superclass.applyConfig.call(this);this.scroll=(this.config.scroll!==false)},b4MouseDown:function(a){this.autoOffset(a.getPageX(),a.getPageY())},b4Drag:function(a){this.setDragElPos(a.getPageX(),a.getPageY())},toString:function(){return("DD "+this.id)}});Ext.dd.DDProxy=function(c,a,b){if(c){this.init(c,a,b);this.initFrame()}};Ext.dd.DDProxy.dragElId="ygddfdiv";Ext.extend(Ext.dd.DDProxy,Ext.dd.DD,{resizeFrame:true,centerFrame:false,createFrame:function(){var b=this;var a=document.body;if(!a||!a.firstChild){setTimeout(function(){b.createFrame()},50);return}var d=this.getDragEl();if(!d){d=document.createElement("div");d.id=this.dragElId;var c=d.style;c.position="absolute";c.visibility="hidden";c.cursor="move";c.border="2px solid #aaa";c.zIndex=999;a.insertBefore(d,a.firstChild)}},initFrame:function(){this.createFrame()},applyConfig:function(){Ext.dd.DDProxy.superclass.applyConfig.call(this);this.resizeFrame=(this.config.resizeFrame!==false);this.centerFrame=(this.config.centerFrame);this.setDragElId(this.config.dragElId||Ext.dd.DDProxy.dragElId)},showFrame:function(e,d){var c=this.getEl();var a=this.getDragEl();var b=a.style;this._resizeProxy();if(this.centerFrame){this.setDelta(Math.round(parseInt(b.width,10)/2),Math.round(parseInt(b.height,10)/2))}this.setDragElPos(e,d);Ext.fly(a).show()},_resizeProxy:function(){if(this.resizeFrame){var a=this.getEl();Ext.fly(this.getDragEl()).setSize(a.offsetWidth,a.offsetHeight)}},b4MouseDown:function(b){var a=b.getPageX();var c=b.getPageY();this.autoOffset(a,c);this.setDragElPos(a,c)},b4StartDrag:function(a,b){this.showFrame(a,b)},b4EndDrag:function(a){Ext.fly(this.getDragEl()).hide()},endDrag:function(c){var b=this.getEl();var a=this.getDragEl();a.style.visibility="";this.beforeMove();b.style.visibility="hidden";Ext.dd.DDM.moveToEl(b,a);a.style.visibility="hidden";b.style.visibility="";this.afterDrag()},beforeMove:function(){},afterDrag:function(){},toString:function(){return("DDProxy "+this.id)}});Ext.dd.DDTarget=function(c,a,b){if(c){this.initTarget(c,a,b)}};Ext.extend(Ext.dd.DDTarget,Ext.dd.DragDrop,{getDragEl:Ext.emptyFn,isValidHandleChild:Ext.emptyFn,startDrag:Ext.emptyFn,endDrag:Ext.emptyFn,onDrag:Ext.emptyFn,onDragDrop:Ext.emptyFn,onDragEnter:Ext.emptyFn,onDragOut:Ext.emptyFn,onDragOver:Ext.emptyFn,onInvalidDrop:Ext.emptyFn,onMouseDown:Ext.emptyFn,onMouseUp:Ext.emptyFn,setXConstraint:Ext.emptyFn,setYConstraint:Ext.emptyFn,resetConstraints:Ext.emptyFn,clearConstraints:Ext.emptyFn,clearTicks:Ext.emptyFn,setInitPosition:Ext.emptyFn,setDragElId:Ext.emptyFn,setHandleElId:Ext.emptyFn,setOuterHandleElId:Ext.emptyFn,addInvalidHandleClass:Ext.emptyFn,addInvalidHandleId:Ext.emptyFn,addInvalidHandleType:Ext.emptyFn,removeInvalidHandleClass:Ext.emptyFn,removeInvalidHandleId:Ext.emptyFn,removeInvalidHandleType:Ext.emptyFn,toString:function(){return("DDTarget "+this.id)}});Ext.dd.DragTracker=Ext.extend(Ext.util.Observable,{active:false,tolerance:5,autoStart:false,constructor:function(a){Ext.apply(this,a);this.addEvents("mousedown","mouseup","mousemove","dragstart","dragend","drag");this.dragRegion=new Ext.lib.Region(0,0,0,0);if(this.el){this.initEl(this.el)}Ext.dd.DragTracker.superclass.constructor.call(this,a)},initEl:function(a){this.el=Ext.get(a);a.on("mousedown",this.onMouseDown,this,this.delegate?{delegate:this.delegate}:undefined)},destroy:function(){this.el.un("mousedown",this.onMouseDown,this);delete this.el},onMouseDown:function(b,a){if(this.fireEvent("mousedown",this,b)!==false&&this.onBeforeStart(b)!==false){this.startXY=this.lastXY=b.getXY();this.dragTarget=this.delegate?a:this.el.dom;if(this.preventDefault!==false){b.preventDefault()}Ext.getDoc().on({scope:this,mouseup:this.onMouseUp,mousemove:this.onMouseMove,selectstart:this.stopSelect});if(this.autoStart){this.timer=this.triggerStart.defer(this.autoStart===true?1000:this.autoStart,this,[b])}}},onMouseMove:function(g,d){var b=Ext.isIE6||Ext.isIE7||Ext.isIE8;if(this.active&&b&&!g.browserEvent.button){g.preventDefault();this.onMouseUp(g);return}g.preventDefault();var c=g.getXY(),a=this.startXY;this.lastXY=c;if(!this.active){if(Math.abs(a[0]-c[0])>this.tolerance||Math.abs(a[1]-c[1])>this.tolerance){this.triggerStart(g)}else{return}}this.fireEvent("mousemove",this,g);this.onDrag(g);this.fireEvent("drag",this,g)},onMouseUp:function(c){var b=Ext.getDoc(),a=this.active;b.un("mousemove",this.onMouseMove,this);b.un("mouseup",this.onMouseUp,this);b.un("selectstart",this.stopSelect,this);c.preventDefault();this.clearStart();this.active=false;delete this.elRegion;this.fireEvent("mouseup",this,c);if(a){this.onEnd(c);this.fireEvent("dragend",this,c)}},triggerStart:function(a){this.clearStart();this.active=true;this.onStart(a);this.fireEvent("dragstart",this,a)},clearStart:function(){if(this.timer){clearTimeout(this.timer);delete this.timer}},stopSelect:function(a){a.stopEvent();return false},onBeforeStart:function(a){},onStart:function(a){},onDrag:function(a){},onEnd:function(a){},getDragTarget:function(){return this.dragTarget},getDragCt:function(){return this.el},getXY:function(a){return a?this.constrainModes[a].call(this,this.lastXY):this.lastXY},getOffset:function(c){var b=this.getXY(c),a=this.startXY;return[a[0]-b[0],a[1]-b[1]]},constrainModes:{point:function(b){if(!this.elRegion){this.elRegion=this.getDragCt().getRegion()}var a=this.dragRegion;a.left=b[0];a.top=b[1];a.right=b[0];a.bottom=b[1];a.constrainTo(this.elRegion);return[a.left,a.top]}}});Ext.dd.ScrollManager=function(){var c=Ext.dd.DragDropMgr;var e={};var b=null;var i={};var h=function(l){b=null;a()};var j=function(){if(c.dragCurrent){c.refreshCache(c.dragCurrent.groups)}};var d=function(){if(c.dragCurrent){var l=Ext.dd.ScrollManager;var m=i.el.ddScrollConfig?i.el.ddScrollConfig.increment:l.increment;if(!l.animate){if(i.el.scroll(i.dir,m)){j()}}else{i.el.scroll(i.dir,m,true,l.animDuration,j)}}};var a=function(){if(i.id){clearInterval(i.id)}i.id=0;i.el=null;i.dir=""};var g=function(m,l){a();i.el=m;i.dir=l;var o=m.ddScrollConfig?m.ddScrollConfig.ddGroup:undefined,n=(m.ddScrollConfig&&m.ddScrollConfig.frequency)?m.ddScrollConfig.frequency:Ext.dd.ScrollManager.frequency;if(o===undefined||c.dragCurrent.ddGroup==o){i.id=setInterval(d,n)}};var k=function(o,q){if(q||!c.dragCurrent){return}var s=Ext.dd.ScrollManager;if(!b||b!=c.dragCurrent){b=c.dragCurrent;s.refreshCache()}var t=Ext.lib.Event.getXY(o);var u=new Ext.lib.Point(t[0],t[1]);for(var m in e){var n=e[m],l=n._region;var p=n.ddScrollConfig?n.ddScrollConfig:s;if(l&&l.contains(u)&&n.isScrollable()){if(l.bottom-u.y<=p.vthresh){if(i.el!=n){g(n,"down")}return}else{if(l.right-u.x<=p.hthresh){if(i.el!=n){g(n,"left")}return}else{if(u.y-l.top<=p.vthresh){if(i.el!=n){g(n,"up")}return}else{if(u.x-l.left<=p.hthresh){if(i.el!=n){g(n,"right")}return}}}}}}a()};c.fireEvents=c.fireEvents.createSequence(k,c);c.stopDrag=c.stopDrag.createSequence(h,c);return{register:function(n){if(Ext.isArray(n)){for(var m=0,l=n.length;m]+>/gi,asText:function(a){return String(a).replace(this.stripTagsRE,"")},asUCText:function(a){return String(a).toUpperCase().replace(this.stripTagsRE,"")},asUCString:function(a){return String(a).toUpperCase()},asDate:function(a){if(!a){return 0}if(Ext.isDate(a)){return a.getTime()}return Date.parse(String(a))},asFloat:function(a){var b=parseFloat(String(a).replace(/,/g,""));return isNaN(b)?0:b},asInt:function(a){var b=parseInt(String(a).replace(/,/g,""),10);return isNaN(b)?0:b}};Ext.data.Record=function(a,b){this.id=(b||b===0)?b:Ext.data.Record.id(this);this.data=a||{}};Ext.data.Record.create=function(e){var c=Ext.extend(Ext.data.Record,{});var d=c.prototype;d.fields=new Ext.util.MixedCollection(false,function(g){return g.name});for(var b=0,a=e.length;b-1){a.join(null);this.data.removeAt(b)}if(this.pruneModifiedRecords){this.modified.remove(a)}if(this.snapshot){this.snapshot.remove(a)}if(b>-1){this.fireEvent("remove",this,a,b)}},removeAt:function(a){this.remove(this.getAt(a))},removeAll:function(b){var a=[];this.each(function(c){a.push(c)});this.clearData();if(this.snapshot){this.snapshot.clear()}if(this.pruneModifiedRecords){this.modified=[]}if(b!==true){this.fireEvent("clear",this,a)}},onClear:function(b,a){Ext.each(a,function(d,c){this.destroyRecord(this,d,c)},this)},insert:function(d,c){var e,a,b;c=[].concat(c);for(e=0,a=c.length;e=0;d--){if(b[d].phantom===true){var a=b.splice(d,1).shift();if(a.isValid()){g.push(a)}}else{if(!b[d].isValid()){b.splice(d,1)}}}if(g.length){h.push(["create",g])}if(b.length){h.push(["update",b])}}j=h.length;if(j){e=++this.batchCounter;for(d=0;d=0;b--){this.modified.splice(this.modified.indexOf(a[b]),1)}}else{this.modified.splice(this.modified.indexOf(a),1)}},reMap:function(b){if(Ext.isArray(b)){for(var d=0,a=b.length;d=0;c--){this.insert(b[c].lastIndex,b[c])}}},handleException:function(a){Ext.handleError(a)},reload:function(a){this.load(Ext.applyIf(a||{},this.lastOptions))},loadRecords:function(b,l,h){var e,g;if(this.isDestroyed===true){return}if(!b||h===false){if(h!==false){this.fireEvent("load",this,[],l)}if(l.callback){l.callback.call(l.scope||this,[],l,false,b)}return}var a=b.records,j=b.totalRecords||a.length;if(!l||l.add!==true){if(this.pruneModifiedRecords){this.modified=[]}for(e=0,g=a.length;e-1){this.doUpdate(d)}else{k.push(d);++c}}this.totalLength=Math.max(j,this.data.length+c);this.add(k)}this.fireEvent("load",this,a,l);if(l.callback){l.callback.call(l.scope||this,a,l,true)}},loadData:function(c,a){var b=this.reader.readRecords(c);this.loadRecords(b,{add:a},true)},getCount:function(){return this.data.length||0},getTotalCount:function(){return this.totalLength||0},getSortState:function(){return this.sortInfo},applySort:function(){if((this.sortInfo||this.multiSortInfo)&&!this.remoteSort){this.sortData()}},sortData:function(){var a=this.hasMultiSort?this.multiSortInfo:this.sortInfo,k=a.direction||"ASC",h=a.sorters,c=[];if(!this.hasMultiSort){h=[{direction:k,field:a.field}]}for(var d=0,b=h.length;d1){for(var p=1,o=c.length;ph?1:(i=0;b--){if(Ext.isArray(c)){this.realize(a.splice(b,1).shift(),c.splice(b,1).shift())}else{this.realize(a.splice(b,1).shift(),c)}}}else{if(Ext.isArray(c)&&c.length==1){c=c.shift()}if(!this.isData(c)){throw new Ext.data.DataReader.Error("realize",a)}a.phantom=false;a._phid=a.id;a.id=this.getId(c);a.data=c;a.commit();a.store.reMap(a)}},update:function(a,c){if(Ext.isArray(a)){for(var b=a.length-1;b>=0;b--){if(Ext.isArray(c)){this.update(a.splice(b,1).shift(),c.splice(b,1).shift())}else{this.update(a.splice(b,1).shift(),c)}}}else{if(Ext.isArray(c)&&c.length==1){c=c.shift()}if(this.isData(c)){a.data=Ext.apply(a.data,c)}a.commit()}},extractData:function(k,a){var j=(this instanceof Ext.data.JsonReader)?"json":"node";var c=[];if(this.isData(k)&&!(this instanceof Ext.data.XmlReader)){k=[k]}var h=this.recordType.prototype.fields,o=h.items,m=h.length,c=[];if(a===true){var l=this.recordType;for(var e=0;e=0){return new Function("obj","return obj"+(b>0?".":"")+c)}return function(d){return d[c]}}}(),extractValues:function(h,d,a){var g,c={};for(var e=0;e<\u003fxml version="{version}" encoding="{encoding}"\u003f><{documentRoot}><{name}>{value}<{root}><{parent.record}><{name}>{value}',render:function(b,c,a){c=this.toArray(c);b.xmlData=this.tpl.applyTemplate({version:this.xmlVersion,encoding:this.xmlEncoding,documentRoot:(c.length>0||this.forceDocumentRoot===true)?this.documentRoot:false,record:this.meta.record,root:this.root,baseParams:c,records:(Ext.isArray(a[0]))?a:[a]})},createRecord:function(a){return this.toArray(this.toHash(a))},updateRecord:function(a){return this.toArray(this.toHash(a))},destroyRecord:function(b){var a={};a[this.meta.idProperty]=b.id;return this.toArray(a)}});Ext.data.XmlReader=function(a,b){a=a||{};Ext.applyIf(a,{idProperty:a.idProperty||a.idPath||a.id,successProperty:a.successProperty||a.success});Ext.data.XmlReader.superclass.constructor.call(this,a,b||a.fields)};Ext.extend(Ext.data.XmlReader,Ext.data.DataReader,{read:function(a){var b=a.responseXML;if(!b){throw {message:"XmlReader.read: XML Document not available"}}return this.readRecords(b)},readRecords:function(d){this.xmlData=d;var a=d.documentElement||d,c=Ext.DomQuery,g=0,e=true;if(this.meta.totalProperty){g=this.getTotal(a,0)}if(this.meta.successProperty){e=this.getSuccess(a)}var b=this.extractData(c.select(this.meta.record,a),true);return{success:e,records:b,totalRecords:g||b.length}},readResponse:function(g,b){var e=Ext.DomQuery,h=b.responseXML,a=h.documentElement||h;var c=new Ext.data.Response({action:g,success:this.getSuccess(a),message:this.getMessage(a),data:this.extractData(e.select(this.meta.record,a)||e.select(this.meta.root,a),false),raw:h});if(Ext.isEmpty(c.success)){throw new Ext.data.DataReader.Error("successProperty-response",this.meta.successProperty)}if(g===Ext.data.Api.actions.create){var d=Ext.isDefined(c.data);if(d&&Ext.isEmpty(c.data)){throw new Ext.data.JsonReader.Error("root-empty",this.meta.root)}else{if(!d){throw new Ext.data.JsonReader.Error("root-undefined-response",this.meta.root)}}}return c},getSuccess:function(){return true},buildExtractors:function(){if(this.ef){return}var l=this.meta,h=this.recordType,e=h.prototype.fields,k=e.items,j=e.length;if(l.totalProperty){this.getTotal=this.createAccessor(l.totalProperty)}if(l.successProperty){this.getSuccess=this.createAccessor(l.successProperty)}if(l.messageProperty){this.getMessage=this.createAccessor(l.messageProperty)}this.getRoot=function(g){return(!Ext.isEmpty(g[this.meta.record]))?g[this.meta.record]:g[this.meta.root]};if(l.idPath||l.idProperty){var d=this.createAccessor(l.idPath||l.idProperty);this.getId=function(g){var i=d(g)||g.id;return(i===undefined||i==="")?null:i}}else{this.getId=function(){return null}}var c=[];for(var b=0;b0&&c[0].field==this.groupField){c.shift()}this.groupField=e;this.groupDir=d;this.applyGroupField();var b=function(){this.fireEvent("groupchange",this,this.getGroupState())};if(this.groupOnSort){this.sort(e,d);b.call(this);return}if(this.remoteGroup){this.on("load",b,this,{single:true});this.reload()}else{this.sort(c);b.call(this)}},sort:function(h,c){if(this.remoteSort){return Ext.data.GroupingStore.superclass.sort.call(this,h,c)}var g=[];if(Ext.isArray(arguments[0])){g=arguments[0]}else{if(h==undefined){g=this.sortInfo?[this.sortInfo]:[]}else{var e=this.fields.get(h);if(!e){return false}var b=e.name,a=this.sortInfo||null,d=this.sortToggle?this.sortToggle[b]:null;if(!c){if(a&&a.field==b){c=(this.sortToggle[b]||"ASC").toggle("ASC","DESC")}else{c=e.sortDir}}this.sortToggle[b]=c;this.sortInfo={field:b,direction:c};g=[this.sortInfo]}}if(this.groupField){g.unshift({direction:this.groupDir,field:this.groupField})}return this.multiSort.call(this,g,c)},applyGroupField:function(){if(this.remoteGroup){if(!this.baseParams){this.baseParams={}}Ext.apply(this.baseParams,{groupBy:this.groupField,groupDir:this.groupDir});var a=this.lastOptions;if(a&&a.params){a.params.groupDir=this.groupDir;delete a.params.groupBy}}},applyGrouping:function(a){if(this.groupField!==false){this.groupBy(this.groupField,true,this.groupDir);return true}else{if(a===true){this.fireEvent("datachanged",this)}return false}},getGroupState:function(){return this.groupOnSort&&this.groupField!==false?(this.sortInfo?this.sortInfo.field:undefined):this.groupField}});Ext.reg("groupingstore",Ext.data.GroupingStore);Ext.data.DirectProxy=function(a){Ext.apply(this,a);if(typeof this.paramOrder=="string"){this.paramOrder=this.paramOrder.split(/[\s,|]/)}Ext.data.DirectProxy.superclass.constructor.call(this,a)};Ext.extend(Ext.data.DirectProxy,Ext.data.DataProxy,{paramOrder:undefined,paramsAsHash:true,directFn:undefined,doRequest:function(b,c,a,e,k,l,n){var j=[],h=this.api[b]||this.directFn;switch(b){case Ext.data.Api.actions.create:j.push(a.jsonData);break;case Ext.data.Api.actions.read:if(h.directCfg.method.len>0){if(this.paramOrder){for(var d=0,g=this.paramOrder.length;d1){for(var d=0,b=c.length;d0){this.doSend(a==1?this.callBuffer[0]:this.callBuffer);this.callBuffer=[]}},queueTransaction:function(a){if(a.form){this.processForm(a);return}this.callBuffer.push(a);if(this.enableBuffer){if(!this.callTask){this.callTask=new Ext.util.DelayedTask(this.combineAndSend,this)}this.callTask.delay(Ext.isNumber(this.enableBuffer)?this.enableBuffer:10)}else{this.combineAndSend()}},doCall:function(i,a,b){var h=null,e=b[a.len],g=b[a.len+1];if(a.len!==0){h=b.slice(0,a.len)}var d=new Ext.Direct.Transaction({provider:this,args:b,action:i,method:a.name,data:h,cb:g&&Ext.isFunction(e)?e.createDelegate(g):e});if(this.fireEvent("beforecall",this,d,a)!==false){Ext.Direct.addTransaction(d);this.queueTransaction(d);this.fireEvent("call",this,d,a)}},doForm:function(j,b,g,i,e){var d=new Ext.Direct.Transaction({provider:this,action:j,method:b.name,args:[g,i,e],cb:e&&Ext.isFunction(i)?i.createDelegate(e):i,isForm:true});if(this.fireEvent("beforecall",this,d,b)!==false){Ext.Direct.addTransaction(d);var a=String(g.getAttribute("enctype")).toLowerCase()=="multipart/form-data",h={extTID:d.tid,extAction:j,extMethod:b.name,extType:"rpc",extUpload:String(a)};Ext.apply(d,{form:Ext.getDom(g),isUpload:a,params:i&&Ext.isObject(i.params)?Ext.apply(h,i.params):h});this.fireEvent("call",this,d,b);this.processForm(d)}},processForm:function(a){Ext.Ajax.request({url:this.url,params:a.params,callback:this.onData,scope:this,form:a.form,isUpload:a.isUpload,ts:a})},createMethod:function(d,a){var b;if(!a.formHandler){b=function(){this.doCall(d,a,Array.prototype.slice.call(arguments,0))}.createDelegate(this)}else{b=function(e,g,c){this.doForm(d,a,e,g,c)}.createDelegate(this)}b.directCfg={action:d,method:a};return b},getTransaction:function(a){return a&&a.tid?Ext.Direct.getTransaction(a.tid):null},doCallback:function(c,g){var d=g.status?"success":"failure";if(c&&c.cb){var b=c.cb,a=Ext.isDefined(g.result)?g.result:g.data;if(Ext.isFunction(b)){b(a,g)}else{Ext.callback(b[d],b.scope,[a,g]);Ext.callback(b.callback,b.scope,[a,g])}}}});Ext.Direct.PROVIDERS.remoting=Ext.direct.RemotingProvider;Ext.Resizable=Ext.extend(Ext.util.Observable,{constructor:function(d,e){this.el=Ext.get(d);if(e&&e.wrap){e.resizeChild=this.el;this.el=this.el.wrap(typeof e.wrap=="object"?e.wrap:{cls:"xresizable-wrap"});this.el.id=this.el.dom.id=e.resizeChild.id+"-rzwrap";this.el.setStyle("overflow","hidden");this.el.setPositioning(e.resizeChild.getPositioning());e.resizeChild.clearPositioning();if(!e.width||!e.height){var g=e.resizeChild.getSize();this.el.setSize(g.width,g.height)}if(e.pinned&&!e.adjustments){e.adjustments="auto"}}this.proxy=this.el.createProxy({tag:"div",cls:"x-resizable-proxy",id:this.el.id+"-rzproxy"},Ext.getBody());this.proxy.unselectable();this.proxy.enableDisplayMode("block");Ext.apply(this,e);if(this.pinned){this.disableTrackOver=true;this.el.addClass("x-resizable-pinned")}var k=this.el.getStyle("position");if(k!="absolute"&&k!="fixed"){this.el.setStyle("position","relative")}if(!this.handles){this.handles="s,e,se";if(this.multiDirectional){this.handles+=",n,w"}}if(this.handles=="all"){this.handles="n s e w ne nw se sw"}var o=this.handles.split(/\s*?[,;]\s*?| /);var c=Ext.Resizable.positions;for(var j=0,l=o.length;j0){if(a>(e/2)){d=c+(e-a)}else{d=c-a}}return Math.max(b,d)},resizeElement:function(){var a=this.proxy.getBox();if(this.updateBox){this.el.setBox(a,false,this.animate,this.duration,null,this.easing)}else{this.el.setSize(a.width,a.height,this.animate,this.duration,null,this.easing)}this.updateChildSize();if(!this.dynamic){this.proxy.hide()}if(this.draggable&&this.constrainTo){this.dd.resetConstraints();this.dd.constrainTo(this.constrainTo)}return a},constrain:function(b,c,a,d){if(b-cd){c=b-d}}return c},onMouseMove:function(z){if(this.enabled&&this.activeHandle){try{if(this.resizeRegion&&!this.resizeRegion.contains(z.getPoint())){return}var t=this.curSize||this.startBox,l=this.startBox.x,k=this.startBox.y,c=l,b=k,m=t.width,u=t.height,d=m,o=u,n=this.minWidth,A=this.minHeight,s=this.maxWidth,D=this.maxHeight,i=this.widthIncrement,a=this.heightIncrement,B=z.getXY(),r=-(this.startPoint[0]-Math.max(this.minX,B[0])),p=-(this.startPoint[1]-Math.max(this.minY,B[1])),j=this.activeHandle.position,E,g;switch(j){case"east":m+=r;m=Math.min(Math.max(n,m),s);break;case"south":u+=p;u=Math.min(Math.max(A,u),D);break;case"southeast":m+=r;u+=p;m=Math.min(Math.max(n,m),s);u=Math.min(Math.max(A,u),D);break;case"north":p=this.constrain(u,p,A,D);k+=p;u-=p;break;case"west":r=this.constrain(m,r,n,s);l+=r;m-=r;break;case"northeast":m+=r;m=Math.min(Math.max(n,m),s);p=this.constrain(u,p,A,D);k+=p;u-=p;break;case"northwest":r=this.constrain(m,r,n,s);p=this.constrain(u,p,A,D);k+=p;u-=p;l+=r;m-=r;break;case"southwest":r=this.constrain(m,r,n,s);u+=p;u=Math.min(Math.max(A,u),D);l+=r;m-=r;break}var q=this.snap(m,i,n);var C=this.snap(u,a,A);if(q!=m||C!=u){switch(j){case"northeast":k-=C-u;break;case"north":k-=C-u;break;case"southwest":l-=q-m;break;case"west":l-=q-m;break;case"northwest":l-=q-m;k-=C-u;break}m=q;u=C}if(this.preserveRatio){switch(j){case"southeast":case"east":u=o*(m/d);u=Math.min(Math.max(A,u),D);m=d*(u/o);break;case"south":m=d*(u/o);m=Math.min(Math.max(n,m),s);u=o*(m/d);break;case"northeast":m=d*(u/o);m=Math.min(Math.max(n,m),s);u=o*(m/d);break;case"north":E=m;m=d*(u/o);m=Math.min(Math.max(n,m),s);u=o*(m/d);l+=(E-m)/2;break;case"southwest":u=o*(m/d);u=Math.min(Math.max(A,u),D);E=m;m=d*(u/o);l+=E-m;break;case"west":g=u;u=o*(m/d);u=Math.min(Math.max(A,u),D);k+=(g-u)/2;E=m;m=d*(u/o);l+=E-m;break;case"northwest":E=m;g=u;u=o*(m/d);u=Math.min(Math.max(A,u),D);m=d*(u/o);k+=g-u;l+=E-m;break}}this.proxy.setBounds(l,k,m,u);if(this.dynamic){this.resizeElement()}}catch(v){}}},handleOver:function(){if(this.enabled){this.el.addClass("x-resizable-over")}},handleOut:function(){if(!this.resizing){this.el.removeClass("x-resizable-over")}},getEl:function(){return this.el},getResizeChild:function(){return this.resizeChild},destroy:function(b){Ext.destroy(this.dd,this.overlay,this.proxy);this.overlay=null;this.proxy=null;var c=Ext.Resizable.positions;for(var a in c){if(typeof c[a]!="function"&&this[c[a]]){this[c[a]].destroy()}}if(b){this.el.update("");Ext.destroy(this.el);this.el=null}this.purgeListeners()},syncHandleHeight:function(){var a=this.el.getHeight(true);if(this.west){this.west.el.setHeight(a)}if(this.east){this.east.el.setHeight(a)}}});Ext.Resizable.positions={n:"north",s:"south",e:"east",w:"west",se:"southeast",sw:"southwest",nw:"northwest",ne:"northeast"};Ext.Resizable.Handle=Ext.extend(Object,{constructor:function(d,g,c,e,a){if(!this.tpl){var b=Ext.DomHelper.createTemplate({tag:"div",cls:"x-resizable-handle x-resizable-handle-{0}"});b.compile();Ext.Resizable.Handle.prototype.tpl=b}this.position=g;this.rz=d;this.el=this.tpl.append(d.el.dom,[this.position],true);this.el.unselectable();if(e){this.el.setOpacity(0)}if(!Ext.isEmpty(a)){this.el.addClass(a)}this.el.on("mousedown",this.onMouseDown,this);if(!c){this.el.on({scope:this,mouseover:this.onMouseOver,mouseout:this.onMouseOut})}},afterResize:function(a){},onMouseDown:function(a){this.rz.onMouseDown(this,a)},onMouseOver:function(a){this.rz.handleOver(this,a)},onMouseOut:function(a){this.rz.handleOut(this,a)},destroy:function(){Ext.destroy(this.el);this.el=null}});Ext.Window=Ext.extend(Ext.Panel,{baseCls:"x-window",resizable:true,draggable:true,closable:true,closeAction:"close",constrain:false,constrainHeader:false,plain:false,minimizable:false,maximizable:false,minHeight:100,minWidth:200,expandOnShow:true,showAnimDuration:0.25,hideAnimDuration:0.25,collapsible:false,initHidden:undefined,hidden:true,elements:"header,body",frame:true,floating:true,initComponent:function(){this.initTools();Ext.Window.superclass.initComponent.call(this);this.addEvents("resize","maximize","minimize","restore");if(Ext.isDefined(this.initHidden)){this.hidden=this.initHidden}if(this.hidden===false){this.hidden=true;this.show()}},getState:function(){return Ext.apply(Ext.Window.superclass.getState.call(this)||{},this.getBox(true))},onRender:function(b,a){Ext.Window.superclass.onRender.call(this,b,a);if(this.plain){this.el.addClass("x-window-plain")}this.focusEl=this.el.createChild({tag:"a",href:"#",cls:"x-dlg-focus",tabIndex:"-1",html:" "});this.focusEl.swallowEvent("click",true);this.proxy=this.el.createProxy("x-window-proxy");this.proxy.enableDisplayMode("block");if(this.modal){this.mask=this.container.createChild({cls:"ext-el-mask"},this.el.dom);this.mask.enableDisplayMode("block");this.mask.hide();this.mon(this.mask,"click",this.focus,this)}if(this.maximizable){this.mon(this.header,"dblclick",this.toggleMaximize,this)}},initEvents:function(){Ext.Window.superclass.initEvents.call(this);if(this.animateTarget){this.setAnimateTarget(this.animateTarget)}if(this.resizable){this.resizer=new Ext.Resizable(this.el,{minWidth:this.minWidth,minHeight:this.minHeight,handles:this.resizeHandles||"all",pinned:true,resizeElement:this.resizerAction,handleCls:"x-window-handle"});this.resizer.window=this;this.mon(this.resizer,"beforeresize",this.beforeResize,this)}if(this.draggable){this.header.addClass("x-window-draggable")}this.mon(this.el,"mousedown",this.toFront,this);this.manager=this.manager||Ext.WindowMgr;this.manager.register(this);if(this.maximized){this.maximized=false;this.maximize()}if(this.closable){var a=this.getKeyMap();a.on(27,this.onEsc,this);a.disable()}},initDraggable:function(){this.dd=new Ext.Window.DD(this)},onEsc:function(a,b){if(this.activeGhost){this.unghost()}b.stopEvent();this[this.closeAction]()},beforeDestroy:function(){if(this.rendered){this.hide();this.clearAnchor();Ext.destroy(this.focusEl,this.resizer,this.dd,this.proxy,this.mask)}Ext.Window.superclass.beforeDestroy.call(this)},onDestroy:function(){if(this.manager){this.manager.unregister(this)}Ext.Window.superclass.onDestroy.call(this)},initTools:function(){if(this.minimizable){this.addTool({id:"minimize",handler:this.minimize.createDelegate(this,[])})}if(this.maximizable){this.addTool({id:"maximize",handler:this.maximize.createDelegate(this,[])});this.addTool({id:"restore",handler:this.restore.createDelegate(this,[]),hidden:true})}if(this.closable){this.addTool({id:"close",handler:this[this.closeAction].createDelegate(this,[])})}},resizerAction:function(){var a=this.proxy.getBox();this.proxy.hide();this.window.handleResize(a);return a},beforeResize:function(){this.resizer.minHeight=Math.max(this.minHeight,this.getFrameHeight()+40);this.resizer.minWidth=Math.max(this.minWidth,this.getFrameWidth()+40);this.resizeBox=this.el.getBox()},updateHandles:function(){if(Ext.isIE9m&&this.resizer){this.resizer.syncHandleHeight();this.el.repaint()}},handleResize:function(b){var a=this.resizeBox;if(a.x!=b.x||a.y!=b.y){this.updateBox(b)}else{this.setSize(b);if(Ext.isIE6&&Ext.isStrict){this.doLayout()}}this.focus();this.updateHandles();this.saveState()},focus:function(){var e=this.focusEl,a=this.defaultButton,c=typeof a,d,b;if(Ext.isDefined(a)){if(Ext.isNumber(a)&&this.fbar){e=this.fbar.items.get(a)}else{if(Ext.isString(a)){e=Ext.getCmp(a)}else{e=a}}d=e.getEl();b=Ext.getDom(this.container);if(d&&b){if(b!=document.body&&!Ext.lib.Region.getRegion(b).contains(Ext.lib.Region.getRegion(d.dom))){return}}}e=e||this.focusEl;e.focus.defer(10,e)},setAnimateTarget:function(a){a=Ext.get(a);this.animateTarget=a},beforeShow:function(){delete this.el.lastXY;delete this.el.lastLT;if(this.x===undefined||this.y===undefined){var a=this.el.getAlignToXY(this.container,"c-c");var b=this.el.translatePoints(a[0],a[1]);this.x=this.x===undefined?b.left:this.x;this.y=this.y===undefined?b.top:this.y}this.el.setLeftTop(this.x,this.y);if(this.expandOnShow){this.expand(false)}if(this.modal){Ext.getBody().addClass("x-body-masked");this.mask.setSize(Ext.lib.Dom.getViewWidth(true),Ext.lib.Dom.getViewHeight(true));this.mask.show()}},show:function(c,a,b){if(!this.rendered){this.render(Ext.getBody())}if(this.hidden===false){this.toFront();return this}if(this.fireEvent("beforeshow",this)===false){return this}if(a){this.on("show",a,b,{single:true})}this.hidden=false;if(Ext.isDefined(c)){this.setAnimateTarget(c)}this.beforeShow();if(this.animateTarget){this.animShow()}else{this.afterShow()}return this},afterShow:function(b){if(this.isDestroyed){return false}this.proxy.hide();this.el.setStyle("display","block");this.el.show();if(this.maximized){this.fitContainer()}if(Ext.isMac&&Ext.isGecko2){this.cascade(this.setAutoScroll)}if(this.monitorResize||this.modal||this.constrain||this.constrainHeader){Ext.EventManager.onWindowResize(this.onWindowResize,this)}this.doConstrain();this.doLayout();if(this.keyMap){this.keyMap.enable()}this.toFront();this.updateHandles();if(b&&(Ext.isIE||Ext.isWebKit)){var a=this.getSize();this.onResize(a.width,a.height)}this.onShow();this.fireEvent("show",this)},animShow:function(){this.proxy.show();this.proxy.setBox(this.animateTarget.getBox());this.proxy.setOpacity(0);var a=this.getBox();this.el.setStyle("display","none");this.proxy.shift(Ext.apply(a,{callback:this.afterShow.createDelegate(this,[true],false),scope:this,easing:"easeNone",duration:this.showAnimDuration,opacity:0.5}))},hide:function(c,a,b){if(this.hidden||this.fireEvent("beforehide",this)===false){return this}if(a){this.on("hide",a,b,{single:true})}this.hidden=true;if(c!==undefined){this.setAnimateTarget(c)}if(this.modal){this.mask.hide();Ext.getBody().removeClass("x-body-masked")}if(this.animateTarget){this.animHide()}else{this.el.hide();this.afterHide()}return this},afterHide:function(){this.proxy.hide();if(this.monitorResize||this.modal||this.constrain||this.constrainHeader){Ext.EventManager.removeResizeListener(this.onWindowResize,this)}if(this.keyMap){this.keyMap.disable()}this.onHide();this.fireEvent("hide",this)},animHide:function(){this.proxy.setOpacity(0.5);this.proxy.show();var a=this.getBox(false);this.proxy.setBox(a);this.el.hide();this.proxy.shift(Ext.apply(this.animateTarget.getBox(),{callback:this.afterHide,scope:this,duration:this.hideAnimDuration,easing:"easeNone",opacity:0}))},onShow:Ext.emptyFn,onHide:Ext.emptyFn,onWindowResize:function(){if(this.maximized){this.fitContainer()}if(this.modal){this.mask.setSize("100%","100%");var a=this.mask.dom.offsetHeight;this.mask.setSize(Ext.lib.Dom.getViewWidth(true),Ext.lib.Dom.getViewHeight(true))}this.doConstrain()},doConstrain:function(){if(this.constrain||this.constrainHeader){var b;if(this.constrain){b={right:this.el.shadowOffset,left:this.el.shadowOffset,bottom:this.el.shadowOffset}}else{var a=this.getSize();b={right:-(a.width-100),bottom:-(a.height-25+this.el.getConstrainOffset())}}var c=this.el.getConstrainToXY(this.container,true,b);if(c){this.setPosition(c[0],c[1])}}},ghost:function(a){var c=this.createGhost(a);var b=this.getBox(true);c.setLeftTop(b.x,b.y);c.setWidth(b.width);this.el.hide();this.activeGhost=c;return c},unghost:function(b,a){if(!this.activeGhost){return}if(b!==false){this.el.show();this.focus.defer(10,this);if(Ext.isMac&&Ext.isGecko2){this.cascade(this.setAutoScroll)}}if(a!==false){this.setPosition(this.activeGhost.getLeft(true),this.activeGhost.getTop(true))}this.activeGhost.hide();this.activeGhost.remove();delete this.activeGhost},minimize:function(){this.fireEvent("minimize",this);return this},close:function(){if(this.fireEvent("beforeclose",this)!==false){if(this.hidden){this.doClose()}else{this.hide(null,this.doClose,this)}}},doClose:function(){this.fireEvent("close",this);this.destroy()},maximize:function(){if(!this.maximized){this.expand(false);this.restoreSize=this.getSize();this.restorePos=this.getPosition(true);if(this.maximizable){this.tools.maximize.hide();this.tools.restore.show()}this.maximized=true;this.el.disableShadow();if(this.dd){this.dd.lock()}if(this.collapsible){this.tools.toggle.hide()}this.el.addClass("x-window-maximized");this.container.addClass("x-window-maximized-ct");this.setPosition(0,0);this.fitContainer();this.fireEvent("maximize",this)}return this},restore:function(){if(this.maximized){var a=this.tools;this.el.removeClass("x-window-maximized");if(a.restore){a.restore.hide()}if(a.maximize){a.maximize.show()}this.setPosition(this.restorePos[0],this.restorePos[1]);this.setSize(this.restoreSize.width,this.restoreSize.height);delete this.restorePos;delete this.restoreSize;this.maximized=false;this.el.enableShadow(true);if(this.dd){this.dd.unlock()}if(this.collapsible&&a.toggle){a.toggle.show()}this.container.removeClass("x-window-maximized-ct");this.doConstrain();this.fireEvent("restore",this)}return this},toggleMaximize:function(){return this[this.maximized?"restore":"maximize"]()},fitContainer:function(){var a=this.container.getViewSize(false);this.setSize(a.width,a.height)},setZIndex:function(a){if(this.modal){this.mask.setStyle("z-index",a)}this.el.setZIndex(++a);a+=5;if(this.resizer){this.resizer.proxy.setStyle("z-index",++a)}this.lastZIndex=a},alignTo:function(b,a,c){var d=this.el.getAlignToXY(b,a,c);this.setPagePosition(d[0],d[1]);return this},anchorTo:function(c,e,d,b){this.clearAnchor();this.anchorTarget={el:c,alignment:e,offsets:d};Ext.EventManager.onWindowResize(this.doAnchor,this);var a=typeof b;if(a!="undefined"){Ext.EventManager.on(window,"scroll",this.doAnchor,this,{buffer:a=="number"?b:50})}return this.doAnchor()},doAnchor:function(){var a=this.anchorTarget;this.alignTo(a.el,a.alignment,a.offsets);return this},clearAnchor:function(){if(this.anchorTarget){Ext.EventManager.removeResizeListener(this.doAnchor,this);Ext.EventManager.un(window,"scroll",this.doAnchor,this);delete this.anchorTarget}return this},toFront:function(a){if(this.manager.bringToFront(this)){if(!a||!a.getTarget().focus){this.focus()}}return this},setActive:function(a){if(a){if(!this.maximized){this.el.enableShadow(true)}this.fireEvent("activate",this)}else{this.el.disableShadow();this.fireEvent("deactivate",this)}},toBack:function(){this.manager.sendToBack(this);return this},center:function(){var a=this.el.getAlignToXY(this.container,"c-c");this.setPagePosition(a[0],a[1]);return this}});Ext.reg("window",Ext.Window);Ext.Window.DD=Ext.extend(Ext.dd.DD,{constructor:function(a){this.win=a;Ext.Window.DD.superclass.constructor.call(this,a.el.id,"WindowDD-"+a.id);this.setHandleElId(a.header.id);this.scroll=false},moveOnly:true,headerOffsets:[100,25],startDrag:function(){var a=this.win;this.proxy=a.ghost(a.initialConfig.cls);if(a.constrain!==false){var c=a.el.shadowOffset;this.constrainTo(a.container,{right:c,left:c,bottom:c})}else{if(a.constrainHeader!==false){var b=this.proxy.getSize();this.constrainTo(a.container,{right:-(b.width-this.headerOffsets[0]),bottom:-(b.height-this.headerOffsets[1])})}}},b4Drag:Ext.emptyFn,onDrag:function(a){this.alignElWithMouse(this.proxy,a.getPageX(),a.getPageY())},endDrag:function(a){this.win.unghost();this.win.saveState()}});Ext.WindowGroup=function(){var g={};var d=[];var e=null;var c=function(j,i){return(!j._lastAccess||j._lastAccess0){l.sort(c);var k=l[0].manager.zseed;for(var m=0;m=0;--j){if(!d[j].hidden){b(d[j]);return}}b(null)};return{zseed:9000,register:function(i){if(i.manager){i.manager.unregister(i)}i.manager=this;g[i.id]=i;d.push(i);i.on("hide",a)},unregister:function(i){delete i.manager;delete g[i.id];i.un("hide",a);d.remove(i)},get:function(i){return typeof i=="object"?i:g[i]},bringToFront:function(i){i=this.get(i);if(i!=e){i._lastAccess=new Date().getTime();h();return true}return false},sendToBack:function(i){i=this.get(i);i._lastAccess=-(new Date().getTime());h();return i},hideAll:function(){for(var i in g){if(g[i]&&typeof g[i]!="function"&&g[i].isVisible()){g[i].hide()}}},getActive:function(){return e},getBy:function(l,k){var m=[];for(var j=d.length-1;j>=0;--j){var n=d[j];if(l.call(k||n,n)!==false){m.push(n)}}return m},each:function(j,i){for(var k in g){if(g[k]&&typeof g[k]!="function"){if(j.call(i||g[k],g[k])===false){return}}}}}};Ext.WindowMgr=new Ext.WindowGroup();Ext.MessageBox=function(){var u,b,q,t,h,l,s,a,n,p,j,g,r,v,o,i="",d="",m=["ok","yes","no","cancel"];var c=function(x){r[x].blur();if(u.isVisible()){u.hide();w();Ext.callback(b.fn,b.scope||window,[x,v.dom.value,b],1)}};var w=function(){if(b&&b.cls){u.el.removeClass(b.cls)}n.reset()};var e=function(z,x,y){if(b&&b.closable!==false){u.hide();w()}if(y){y.stopEvent()}};var k=function(x){var z=0,y;if(!x){Ext.each(m,function(A){r[A].hide()});return z}u.footer.dom.style.display="";Ext.iterate(r,function(A,B){y=x[A];if(y){B.show();B.setText(Ext.isString(y)?y:Ext.MessageBox.buttonText[A]);z+=B.getEl().getWidth()+15}else{B.hide()}});return z};return{getDialog:function(x){if(!u){var z=[];r={};Ext.each(m,function(A){z.push(r[A]=new Ext.Button({text:this.buttonText[A],handler:c.createCallback(A),hideMode:"offsets"}))},this);u=new Ext.Window({autoCreate:true,title:x,resizable:false,constrain:true,constrainHeader:true,minimizable:false,maximizable:false,stateful:false,modal:true,shim:true,buttonAlign:"center",width:400,height:100,minHeight:80,plain:true,footer:true,closable:true,close:function(){if(b&&b.buttons&&b.buttons.no&&!b.buttons.cancel){c("no")}else{c("cancel")}},fbar:new Ext.Toolbar({items:z,enableOverflow:false})});u.render(document.body);u.getEl().addClass("x-window-dlg");q=u.mask;h=u.body.createChild({html:'

    '});j=Ext.get(h.dom.firstChild);var y=h.dom.childNodes[1];l=Ext.get(y.firstChild);s=Ext.get(y.childNodes[2].firstChild);s.enableDisplayMode();s.addKeyListener([10,13],function(){if(u.isVisible()&&b&&b.buttons){if(b.buttons.ok){c("ok")}else{if(b.buttons.yes){c("yes")}}}});a=Ext.get(y.childNodes[2].childNodes[1]);a.enableDisplayMode();n=new Ext.ProgressBar({renderTo:h});h.createChild({cls:"x-clear"})}return u},updateText:function(A){if(!u.isVisible()&&!b.width){u.setSize(this.maxWidth,100)}l.update(A?A+" ":" ");var y=d!=""?(j.getWidth()+j.getMargins("lr")):0,C=l.getWidth()+l.getMargins("lr"),z=u.getFrameWidth("lr"),B=u.body.getFrameWidth("lr"),x;x=Math.max(Math.min(b.width||y+C+z+B,b.maxWidth||this.maxWidth),Math.max(b.minWidth||this.minWidth,o||0));if(b.prompt===true){v.setWidth(x-y-z-B)}if(b.progress===true||b.wait===true){n.setSize(x-y-z-B)}if(Ext.isIE9m&&x==o){x+=4}l.update(A||" ");u.setSize(x,"auto").center();return this},updateProgress:function(y,x,z){n.updateProgress(y,x);if(z){this.updateText(z)}return this},isVisible:function(){return u&&u.isVisible()},hide:function(){var x=u?u.activeGhost:null;if(this.isVisible()||x){u.hide();w();if(x){u.unghost(false,false)}}return this},show:function(A){if(this.isVisible()){this.hide()}b=A;var B=this.getDialog(b.title||" ");B.setTitle(b.title||" ");var x=(b.closable!==false&&b.progress!==true&&b.wait!==true);B.tools.close.setDisplayed(x);v=s;b.prompt=b.prompt||(b.multiline?true:false);if(b.prompt){if(b.multiline){s.hide();a.show();a.setHeight(Ext.isNumber(b.multiline)?b.multiline:this.defaultTextHeight);v=a}else{s.show();a.hide()}}else{s.hide();a.hide()}v.dom.value=b.value||"";if(b.prompt){B.focusEl=v}else{var z=b.buttons;var y=null;if(z&&z.ok){y=r.ok}else{if(z&&z.yes){y=r.yes}}if(y){B.focusEl=y}}if(Ext.isDefined(b.iconCls)){B.setIconClass(b.iconCls)}this.setIcon(Ext.isDefined(b.icon)?b.icon:i);o=k(b.buttons);n.setVisible(b.progress===true||b.wait===true);this.updateProgress(0,b.progressText);this.updateText(b.msg);if(b.cls){B.el.addClass(b.cls)}B.proxyDrag=b.proxyDrag===true;B.modal=b.modal!==false;B.mask=b.modal!==false?q:false;if(!B.isVisible()){document.body.appendChild(u.el.dom);B.setAnimateTarget(b.animEl);B.on("show",function(){if(x===true){B.keyMap.enable()}else{B.keyMap.disable()}},this,{single:true});B.show(b.animEl)}if(b.wait===true){n.wait(b.waitConfig)}return this},setIcon:function(x){if(!u){i=x;return}i=undefined;if(x&&x!=""){j.removeClass("x-hidden");j.replaceClass(d,x);h.addClass("x-dlg-icon");d=x}else{j.replaceClass(d,"x-hidden");h.removeClass("x-dlg-icon");d=""}return this},progress:function(z,y,x){this.show({title:z,msg:y,buttons:false,progress:true,closable:false,minWidth:this.minProgressWidth,progressText:x});return this},wait:function(z,y,x){this.show({title:y,msg:z,buttons:false,closable:false,wait:true,modal:true,minWidth:this.minProgressWidth,waitConfig:x});return this},alert:function(A,z,y,x){this.show({title:A,msg:z,buttons:this.OK,fn:y,scope:x,minWidth:this.minWidth});return this},confirm:function(A,z,y,x){this.show({title:A,msg:z,buttons:this.YESNO,fn:y,scope:x,icon:this.QUESTION,minWidth:this.minWidth});return this},prompt:function(C,B,z,y,x,A){this.show({title:C,msg:B,buttons:this.OKCANCEL,fn:z,minWidth:this.minPromptWidth,scope:y,prompt:true,multiline:x,value:A});return this},OK:{ok:true},CANCEL:{cancel:true},OKCANCEL:{ok:true,cancel:true},YESNO:{yes:true,no:true},YESNOCANCEL:{yes:true,no:true,cancel:true},INFO:"ext-mb-info",WARNING:"ext-mb-warning",QUESTION:"ext-mb-question",ERROR:"ext-mb-error",defaultTextHeight:75,maxWidth:600,minWidth:100,minProgressWidth:250,minPromptWidth:250,buttonText:{ok:"OK",cancel:"Cancel",yes:"Yes",no:"No"}}}();Ext.Msg=Ext.MessageBox;Ext.dd.PanelProxy=Ext.extend(Object,{constructor:function(a,b){this.panel=a;this.id=this.panel.id+"-ddproxy";Ext.apply(this,b)},insertProxy:true,setStatus:Ext.emptyFn,reset:Ext.emptyFn,update:Ext.emptyFn,stop:Ext.emptyFn,sync:Ext.emptyFn,getEl:function(){return this.ghost},getGhost:function(){return this.ghost},getProxy:function(){return this.proxy},hide:function(){if(this.ghost){if(this.proxy){this.proxy.remove();delete this.proxy}this.panel.el.dom.style.display="";this.ghost.remove();delete this.ghost}},show:function(){if(!this.ghost){this.ghost=this.panel.createGhost(this.panel.initialConfig.cls,undefined,Ext.getBody());this.ghost.setXY(this.panel.el.getXY());if(this.insertProxy){this.proxy=this.panel.el.insertSibling({cls:"x-panel-dd-spacer"});this.proxy.setSize(this.panel.getSize())}this.panel.el.dom.style.display="none"}},repair:function(b,c,a){this.hide();if(typeof c=="function"){c.call(a||this)}},moveProxy:function(a,b){if(this.proxy){a.insertBefore(this.proxy.dom,b)}}});Ext.Panel.DD=Ext.extend(Ext.dd.DragSource,{constructor:function(b,a){this.panel=b;this.dragData={panel:b};this.proxy=new Ext.dd.PanelProxy(b,a);Ext.Panel.DD.superclass.constructor.call(this,b.el,a);var d=b.header,c=b.body;if(d){this.setHandleElId(d.id);c=b.header}c.setStyle("cursor","move");this.scroll=false},showFrame:Ext.emptyFn,startDrag:Ext.emptyFn,b4StartDrag:function(a,b){this.proxy.show()},b4MouseDown:function(b){var a=b.getPageX(),c=b.getPageY();this.autoOffset(a,c)},onInitDrag:function(a,b){this.onStartDrag(a,b);return true},createFrame:Ext.emptyFn,getDragEl:function(a){return this.proxy.ghost.dom},endDrag:function(a){this.proxy.hide();this.panel.saveState()},autoOffset:function(a,b){a-=this.startPageX;b-=this.startPageY;this.setDelta(a,b)}});Ext.state.Provider=Ext.extend(Ext.util.Observable,{constructor:function(){this.addEvents("statechange");this.state={};Ext.state.Provider.superclass.constructor.call(this)},get:function(b,a){return typeof this.state[b]=="undefined"?a:this.state[b]},clear:function(a){delete this.state[a];this.fireEvent("statechange",this,a,null)},set:function(a,b){this.state[a]=b;this.fireEvent("statechange",this,a,b)},decodeValue:function(b){var e=/^(a|n|d|b|s|o|e)\:(.*)$/,h=e.exec(unescape(b)),d,c,a,g;if(!h||!h[1]){return}c=h[1];a=h[2];switch(c){case"e":return null;case"n":return parseFloat(a);case"d":return new Date(Date.parse(a));case"b":return(a=="1");case"a":d=[];if(a!=""){Ext.each(a.split("^"),function(i){d.push(this.decodeValue(i))},this)}return d;case"o":d={};if(a!=""){Ext.each(a.split("^"),function(i){g=i.split("=");d[g[0]]=this.decodeValue(g[1])},this)}return d;default:return a}},encodeValue:function(c){var b,g="",e=0,a,d;if(c==null){return"e:1"}else{if(typeof c=="number"){b="n:"+c}else{if(typeof c=="boolean"){b="b:"+(c?"1":"0")}else{if(Ext.isDate(c)){b="d:"+c.toGMTString()}else{if(Ext.isArray(c)){for(a=c.length;e-1){var e=this.isSelected(b),c=this.all.elements[b],d=this.bufferRender([a],b)[0];this.all.replaceElement(b,d,true);if(e){this.selected.replaceElement(c,d);this.all.item(b).addClass(this.selectedClass)}this.updateIndexes(b,b)}},onAdd:function(g,d,e){if(this.all.getCount()===0){this.refresh();return}var c=this.bufferRender(d,e),h,b=this.all.elements;if(e0){if(!b){this.selected.removeClass(this.selectedClass)}this.selected.clear();this.last=false;if(!a){this.fireEvent("selectionchange",this,this.selected.elements)}}},isSelected:function(a){return this.selected.contains(this.getNode(a))},deselect:function(a){if(this.isSelected(a)){a=this.getNode(a);this.selected.removeElement(a);if(this.last==a.viewIndex){this.last=false}Ext.fly(a).removeClass(this.selectedClass);this.fireEvent("selectionchange",this,this.selected.elements)}},select:function(d,g,b){if(Ext.isArray(d)){if(!g){this.clearSelections(true)}for(var c=0,a=d.length;c=a&&d[c];c--){b.push(d[c])}}return b},indexOf:function(a){a=this.getNode(a);if(Ext.isNumber(a.viewIndex)){return a.viewIndex}return this.all.indexOf(a)},onBeforeLoad:function(){if(this.loadingText){this.clearSelections(false,true);this.getTemplateTarget().update('
    '+this.loadingText+"
    ");this.all.clear()}},onDestroy:function(){this.all.clear();this.selected.clear();Ext.DataView.superclass.onDestroy.call(this);this.bindStore(null)}});Ext.DataView.prototype.setStore=Ext.DataView.prototype.bindStore;Ext.reg("dataview",Ext.DataView);Ext.list.ListView=Ext.extend(Ext.DataView,{itemSelector:"dl",selectedClass:"x-list-selected",overClass:"x-list-over",scrollOffset:undefined,columnResize:true,columnSort:true,maxColumnWidth:Ext.isIE9m?99:100,initComponent:function(){if(this.columnResize){this.colResizer=new Ext.list.ColumnResizer(this.colResizer);this.colResizer.init(this)}if(this.columnSort){this.colSorter=new Ext.list.Sorter(this.columnSort);this.colSorter.init(this)}if(!this.internalTpl){this.internalTpl=new Ext.XTemplate('
    ','','
    ',"{header}","
    ","    ",'
    ',"
    ",'
    ',"
    ")}if(!this.tpl){this.tpl=new Ext.XTemplate('',"
    ",'','
    ',' class="{cls}">',"{[values.tpl.apply(parent)]}","
    ","    ",'
    ',"
    ","    ")}var l=this.columns,h=0,k=0,m=l.length,b=[];for(var g=0;gthis.maxColumnWidth){n.width-=(h-this.maxColumnWidth)/100}k++}b.push(n)}l=this.columns=b;if(k10)){b.style.width=d;g.style.width=d}else{b.style.width=c+"px";g.style.width=c+"px";setTimeout(function(){if((a.offsetWidth-a.clientWidth)>10){b.style.width=d;g.style.width=d}},10)}}if(Ext.isNumber(e)){a.style.height=Math.max(0,e-g.parentNode.offsetHeight)+"px"}},updateIndexes:function(){Ext.list.ListView.superclass.updateIndexes.apply(this,arguments);this.verifyInternalSize()},findHeaderIndex:function(g){g=g.dom||g;var a=g.parentNode,d=a.parentNode.childNodes,b=0,e;for(;e=d[b];b++){if(e==a){return b}}return -1},setHdWidths:function(){var d=this.innerHd.dom.getElementsByTagName("div"),c=0,b=this.columns,a=b.length;for(;c','','{text}',"");d.disableFormats=true;d.compile();Ext.TabPanel.prototype.itemTpl=d}this.items.each(this.initTab,this)},afterRender:function(){Ext.TabPanel.superclass.afterRender.call(this);if(this.autoTabs){this.readTabs(false)}if(this.activeTab!==undefined){var a=Ext.isObject(this.activeTab)?this.activeTab:this.items.get(this.activeTab);delete this.activeTab;this.setActiveTab(a)}},initEvents:function(){Ext.TabPanel.superclass.initEvents.call(this);this.mon(this.strip,{scope:this,mousedown:this.onStripMouseDown,contextmenu:this.onStripContextMenu});if(this.enableTabScroll){this.mon(this.strip,"mousewheel",this.onWheel,this)}},findTargets:function(c){var b=null,a=c.getTarget("li:not(.x-tab-edge)",this.strip);if(a){b=this.getComponent(a.id.split(this.idDelimiter)[1]);if(b.disabled){return{close:null,item:null,el:null}}}return{close:c.getTarget(".x-tab-strip-close",this.strip),item:b,el:a}},onStripMouseDown:function(b){if(b.button!==0){return}b.preventDefault();var a=this.findTargets(b);if(a.close){if(a.item.fireEvent("beforeclose",a.item)!==false){a.item.fireEvent("close",a.item);this.remove(a.item)}return}if(a.item&&a.item!=this.activeTab){this.setActiveTab(a.item)}},onStripContextMenu:function(b){b.preventDefault();var a=this.findTargets(b);if(a.item){this.fireEvent("contextmenu",this,a.item,b)}},readTabs:function(d){if(d===true){this.items.each(function(h){this.remove(h)},this)}var c=this.el.query(this.autoTabSelector);for(var b=0,a=c.length;b0){this.setActiveTab(0)}else{this.setActiveTab(null)}}}if(!this.destroying){this.delegateUpdates()}},onBeforeShowItem:function(a){if(a!=this.activeTab){this.setActiveTab(a);return false}},onItemDisabled:function(b){var a=this.getTabEl(b);if(a){Ext.fly(a).addClass("x-item-disabled")}this.stack.remove(b)},onItemEnabled:function(b){var a=this.getTabEl(b);if(a){Ext.fly(a).removeClass("x-item-disabled")}},onItemTitleChanged:function(b){var a=this.getTabEl(b);if(a){Ext.fly(a).child("span.x-tab-strip-text",true).innerHTML=b.title;this.delegateUpdates()}},onItemIconChanged:function(d,a,c){var b=this.getTabEl(d);if(b){b=Ext.get(b);b.child("span.x-tab-strip-text").replaceClass(c,a);b[Ext.isEmpty(a)?"removeClass":"addClass"]("x-tab-with-icon");this.delegateUpdates()}},getTabEl:function(a){var b=this.getComponent(a);return b?b.tabEl:null},onResize:function(){Ext.TabPanel.superclass.onResize.apply(this,arguments);this.delegateUpdates()},beginUpdate:function(){this.suspendUpdates=true},endUpdate:function(){this.suspendUpdates=false;this.delegateUpdates()},hideTabStripItem:function(b){b=this.getComponent(b);var a=this.getTabEl(b);if(a){a.style.display="none";this.delegateUpdates()}this.stack.remove(b)},unhideTabStripItem:function(b){b=this.getComponent(b);var a=this.getTabEl(b);if(a){a.style.display="";this.delegateUpdates()}},delegateUpdates:function(){var a=this.rendered;if(this.suspendUpdates){return}if(this.resizeTabs&&a){this.autoSizeTabs()}if(this.enableTabScroll&&a){this.autoScrollTabs()}},autoSizeTabs:function(){var h=this.items.length,b=this.tabPosition!="bottom"?"header":"footer",c=this[b].dom.offsetWidth,a=this[b].dom.clientWidth;if(!this.resizeTabs||h<1||!a){return}var k=Math.max(Math.min(Math.floor((a-4)/h)-this.tabMargin,this.tabWidth),this.minTabWidth);this.lastTabWidth=k;var m=this.strip.query("li:not(.x-tab-edge)");for(var e=0,j=m.length;e20?c:20);if(!this.scrolling){if(!this.scrollLeft){this.createScrollers()}else{this.scrollLeft.show();this.scrollRight.show()}}this.scrolling=true;if(i>(a-c)){e.scrollLeft=a-c}else{this.scrollToTab(this.activeTab,false)}this.updateScrollButtons()}},createScrollers:function(){this.pos.addClass("x-tab-scrolling-"+this.tabPosition);var c=this.stripWrap.dom.offsetHeight;var a=this.pos.insertFirst({cls:"x-tab-scroller-left"});a.setHeight(c);a.addClassOnOver("x-tab-scroller-left-over");this.leftRepeater=new Ext.util.ClickRepeater(a,{interval:this.scrollRepeatInterval,handler:this.onScrollLeft,scope:this});this.scrollLeft=a;var b=this.pos.insertFirst({cls:"x-tab-scroller-right"});b.setHeight(c);b.addClassOnOver("x-tab-scroller-right-over");this.rightRepeater=new Ext.util.ClickRepeater(b,{interval:this.scrollRepeatInterval,handler:this.onScrollRight,scope:this});this.scrollRight=b},getScrollWidth:function(){return this.edge.getOffsetsTo(this.stripWrap)[0]+this.getScrollPos()},getScrollPos:function(){return parseInt(this.stripWrap.dom.scrollLeft,10)||0},getScrollArea:function(){return parseInt(this.stripWrap.dom.clientWidth,10)||0},getScrollAnim:function(){return{duration:this.scrollDuration,callback:this.updateScrollButtons,scope:this}},getScrollIncrement:function(){return this.scrollIncrement||(this.resizeTabs?this.lastTabWidth+2:100)},scrollToTab:function(e,a){if(!e){return}var c=this.getTabEl(e),h=this.getScrollPos(),d=this.getScrollArea(),g=Ext.fly(c).getOffsetsTo(this.stripWrap)[0]+h,b=g+c.offsetWidth;if(g(h+d)){this.scrollTo(b-d,a)}}},scrollTo:function(b,a){this.stripWrap.scrollTo("left",b,a?this.getScrollAnim():false);if(!a){this.updateScrollButtons()}},onWheel:function(g){var h=g.getWheelDelta()*this.wheelIncrement*-1;g.stopEvent();var i=this.getScrollPos(),c=i+h,a=this.getScrollWidth()-this.getScrollArea();var b=Math.max(0,Math.min(a,c));if(b!=i){this.scrollTo(b,false)}},onScrollRight:function(){var a=this.getScrollWidth()-this.getScrollArea(),c=this.getScrollPos(),b=Math.min(a,c+this.getScrollIncrement());if(b!=c){this.scrollTo(b,this.animScroll)}},onScrollLeft:function(){var b=this.getScrollPos(),a=Math.max(0,b-this.getScrollIncrement());if(a!=b){this.scrollTo(a,this.animScroll)}},updateScrollButtons:function(){var a=this.getScrollPos();this.scrollLeft[a===0?"addClass":"removeClass"]("x-tab-scroller-left-disabled");this.scrollRight[a>=(this.getScrollWidth()-this.getScrollArea())?"addClass":"removeClass"]("x-tab-scroller-right-disabled")},beforeDestroy:function(){Ext.destroy(this.leftRepeater,this.rightRepeater);this.deleteMembers("strip","edge","scrollLeft","scrollRight","stripWrap");this.activeTab=null;Ext.TabPanel.superclass.beforeDestroy.apply(this)}});Ext.reg("tabpanel",Ext.TabPanel);Ext.TabPanel.prototype.activate=Ext.TabPanel.prototype.setActiveTab;Ext.TabPanel.AccessStack=function(){var a=[];return{add:function(b){a.push(b);if(a.length>10){a.shift()}},remove:function(e){var d=[];for(var c=0,b=a.length;c','  ','  ','  ',"");Ext.Button.buttonTemplate.compile()}this.template=Ext.Button.buttonTemplate}var b,d=this.getTemplateArgs();if(a){b=this.template.insertBefore(a,d,true)}else{b=this.template.append(c,d,true)}this.btnEl=b.child(this.buttonSelector);this.mon(this.btnEl,{scope:this,focus:this.onFocus,blur:this.onBlur});this.initButtonEl(b,this.btnEl);Ext.ButtonToggleMgr.register(this)},initButtonEl:function(b,c){this.el=b;this.setIcon(this.icon);this.setText(this.text);this.setIconClass(this.iconCls);if(Ext.isDefined(this.tabIndex)){c.dom.tabIndex=this.tabIndex}if(this.tooltip){this.setTooltip(this.tooltip,true)}if(this.handleMouseEvents){this.mon(b,{scope:this,mouseover:this.onMouseOver,mousedown:this.onMouseDown})}if(this.menu){this.mon(this.menu,{scope:this,show:this.onMenuShow,hide:this.onMenuHide})}if(this.repeat){var a=new Ext.util.ClickRepeater(b,Ext.isObject(this.repeat)?this.repeat:{});this.mon(a,"click",this.onRepeatClick,this)}else{this.mon(b,this.clickEvent,this.onClick,this)}},afterRender:function(){Ext.Button.superclass.afterRender.call(this);this.useSetClass=true;this.setButtonClass();this.doc=Ext.getDoc();this.doAutoWidth()},setIconClass:function(a){this.iconCls=a;if(this.el){this.btnEl.dom.className="";this.btnEl.addClass(["x-btn-text",a||""]);this.setButtonClass()}return this},setTooltip:function(b,a){if(this.rendered){if(!a){this.clearTip()}if(Ext.isObject(b)){Ext.QuickTips.register(Ext.apply({target:this.btnEl.id},b));this.tooltip=b}else{this.btnEl.dom[this.tooltipType]=b}}else{this.tooltip=b}return this},clearTip:function(){if(Ext.isObject(this.tooltip)){Ext.QuickTips.unregister(this.btnEl)}},beforeDestroy:function(){if(this.rendered){this.clearTip()}if(this.menu&&this.destroyMenu!==false){Ext.destroy(this.btnEl,this.menu)}Ext.destroy(this.repeater)},onDestroy:function(){if(this.rendered){this.doc.un("mouseover",this.monitorMouseOver,this);this.doc.un("mouseup",this.onMouseUp,this);delete this.doc;delete this.btnEl;Ext.ButtonToggleMgr.unregister(this)}Ext.Button.superclass.onDestroy.call(this)},doAutoWidth:function(){if(this.autoWidth!==false&&this.el&&this.text&&this.width===undefined){this.el.setWidth("auto");if(Ext.isIE7&&Ext.isStrict){var a=this.btnEl;if(a&&a.getWidth()>20){a.clip();a.setWidth(Ext.util.TextMetrics.measure(a,this.text).width+a.getFrameWidth("lr"))}}if(this.minWidth){if(this.el.getWidth()a}else{return c.getPageY()>this.btnEl.getRegion().bottom}},onClick:function(b,a){b.preventDefault();if(!this.disabled){if(this.isClickOnArrow(b)){if(this.menu&&!this.menu.isVisible()&&!this.ignoreNextClick){this.showMenu()}this.fireEvent("arrowclick",this,b);if(this.arrowHandler){this.arrowHandler.call(this.scope||this,this,b)}}else{this.doToggle();this.fireEvent("click",this,b);if(this.handler){this.handler.call(this.scope||this,this,b)}}}},isMenuTriggerOver:function(a){return this.menu&&a.target.tagName==this.arrowSelector},isMenuTriggerOut:function(b,a){return this.menu&&b.target.tagName!=this.arrowSelector}});Ext.reg("splitbutton",Ext.SplitButton);Ext.CycleButton=Ext.extend(Ext.SplitButton,{getItemText:function(a){if(a&&this.showText===true){var b="";if(this.prependText){b+=this.prependText}b+=a.text;return b}return undefined},setActiveItem:function(c,a){if(!Ext.isObject(c)){c=this.menu.getComponent(c)}if(c){if(!this.rendered){this.text=this.getItemText(c);this.iconCls=c.iconCls}else{var b=this.getItemText(c);if(b){this.setText(b)}this.setIconClass(c.iconCls)}this.activeItem=c;if(!c.checked){c.setChecked(true,a)}if(this.forceIcon){this.setIconClass(this.forceIcon)}if(!a){this.fireEvent("change",this,c)}}},getActiveItem:function(){return this.activeItem},initComponent:function(){this.addEvents("change");if(this.changeHandler){this.on("change",this.changeHandler,this.scope||this);delete this.changeHandler}this.itemCount=this.items.length;this.menu={cls:"x-cycle-menu",items:[]};var a=0;Ext.each(this.items,function(c,b){Ext.apply(c,{group:c.group||this.id,itemIndex:b,checkHandler:this.checkHandler,scope:this,checked:c.checked||false});this.menu.items.push(c);if(c.checked){a=b}},this);Ext.CycleButton.superclass.initComponent.call(this);this.on("click",this.toggleSelected,this);this.setActiveItem(a,true)},checkHandler:function(a,b){if(b){this.setActiveItem(a)}},toggleSelected:function(){var a=this.menu;a.render();if(!a.hasLayout){a.doLayout()}var d,b;for(var c=1;c"){b=new a.Fill()}else{b=new a.TextItem(b)}}}this.applyDefaults(b)}else{if(b.isFormField||b.render){b=this.createComponent(b)}else{if(b.tag){b=new a.Item({autoEl:b})}else{if(b.tagName){b=new a.Item({el:b})}else{if(Ext.isObject(b)){b=b.xtype?this.createComponent(b):this.constructButton(b)}}}}}return b},applyDefaults:function(e){if(!Ext.isString(e)){e=Ext.Toolbar.superclass.applyDefaults.call(this,e);var b=this.internalDefaults;if(e.events){Ext.applyIf(e.initialConfig,b);Ext.apply(e,b)}else{Ext.applyIf(e,b)}}return e},addSeparator:function(){return this.add(new a.Separator())},addSpacer:function(){return this.add(new a.Spacer())},addFill:function(){this.add(new a.Fill())},addElement:function(b){return this.addItem(new a.Item({el:b}))},addItem:function(b){return this.add.apply(this,arguments)},addButton:function(c){if(Ext.isArray(c)){var e=[];for(var d=0,b=c.length;d");this.items.push(this.displayItem=new a.TextItem({}))}Ext.PagingToolbar.superclass.initComponent.call(this);this.addEvents("change","beforechange");this.on("afterlayout",this.onFirstLayout,this,{single:true});this.cursor=0;this.bindStore(this.store,true)},onFirstLayout:function(){if(this.dsLoaded){this.onLoad.apply(this,this.dsLoaded)}},updateInfo:function(){if(this.displayItem){var b=this.store.getCount();var c=b==0?this.emptyMsg:String.format(this.displayMsg,this.cursor+1,this.cursor+b,this.store.getTotalCount());this.displayItem.setText(c)}},onLoad:function(b,e,j){if(!this.rendered){this.dsLoaded=[b,e,j];return}var g=this.getParams();this.cursor=(j.params&&j.params[g.start])?j.params[g.start]:0;var i=this.getPageData(),c=i.activePage,h=i.pages;this.afterTextItem.setText(String.format(this.afterPageText,i.pages));this.inputItem.setValue(c);this.first.setDisabled(c==1);this.prev.setDisabled(c==1);this.next.setDisabled(c==h);this.last.setDisabled(c==h);this.refresh.enable();this.updateInfo();this.fireEvent("change",this,i)},getPageData:function(){var b=this.store.getTotalCount();return{total:b,activePage:Math.ceil((this.cursor+this.pageSize)/this.pageSize),pages:b=1&g<=j.pages){i.setValue(g)}}}}}},getParams:function(){return this.paramNames||this.store.paramNames},beforeLoad:function(){if(this.rendered&&this.refresh){this.refresh.disable()}},doLoad:function(d){var c={},b=this.getParams();c[b.start]=d;c[b.limit]=this.pageSize;if(this.fireEvent("beforechange",this,c)!==false){this.store.load({params:c})}},moveFirst:function(){this.doLoad(0)},movePrevious:function(){this.doLoad(Math.max(0,this.cursor-this.pageSize))},moveNext:function(){this.doLoad(this.cursor+this.pageSize)},moveLast:function(){var c=this.store.getTotalCount(),b=c%this.pageSize;this.doLoad(b?(c-b):c-this.pageSize)},doRefresh:function(){this.doLoad(this.cursor)},bindStore:function(c,d){var b;if(!d&&this.store){if(c!==this.store&&this.store.autoDestroy){this.store.destroy()}else{this.store.un("beforeload",this.beforeLoad,this);this.store.un("load",this.onLoad,this);this.store.un("exception",this.onLoadError,this)}if(!c){this.store=null}}if(c){c=Ext.StoreMgr.lookup(c);c.on({scope:this,beforeload:this.beforeLoad,load:this.onLoad,exception:this.onLoadError});b=true}this.store=c;if(b){this.onLoad(c,null,{})}},unbind:function(b){this.bindStore(null)},bind:function(b){this.bindStore(b)},onDestroy:function(){this.bindStore(null);Ext.PagingToolbar.superclass.onDestroy.call(this)}})})();Ext.reg("paging",Ext.PagingToolbar);Ext.History=(function(){var e,c;var k=false;var d;function g(){var l=location.href,m=l.indexOf("#"),n=m>=0?l.substr(m+1):null;if(Ext.isGecko){n=decodeURIComponent(n)}return n}function a(){c.value=d}function h(l){d=l;Ext.History.fireEvent("change",l)}function i(m){var l=['
    ',Ext.util.Format.htmlEncode(m),"
    "].join("");try{var o=e.contentWindow.document;o.open();o.write(l);o.close();return true}catch(n){return false}}function b(){if(!e.contentWindow||!e.contentWindow.document){setTimeout(b,10);return}var o=e.contentWindow.document;var m=o.getElementById("state");var l=m?m.innerText:null;var n=g();setInterval(function(){o=e.contentWindow.document;m=o.getElementById("state");var q=m?m.innerText:null;var p=g();if(q!==l){l=q;h(l);location.hash=l;n=l;a()}else{if(p!==n){n=p;i(p)}}},50);k=true;Ext.History.fireEvent("ready",Ext.History)}function j(){d=c.value?c.value:g();if(Ext.isIE){b()}else{var l=g();setInterval(function(){var m=g();if(m!==l){l=m;h(l);a()}},50);k=true;Ext.History.fireEvent("ready",Ext.History)}}return{fieldId:"x-history-field",iframeId:"x-history-frame",events:{},init:function(m,l){if(k){Ext.callback(m,l,[this]);return}if(!Ext.isReady){Ext.onReady(function(){Ext.History.init(m,l)});return}c=Ext.getDom(Ext.History.fieldId);if(Ext.isIE){e=Ext.getDom(Ext.History.iframeId)}this.addEvents("ready","change");if(m){this.on("ready",m,l,{single:true})}j()},add:function(l,m){if(m!==false){if(this.getToken()==l){return true}}if(Ext.isIE){return i(l)}else{location.hash=l;return true}},back:function(){history.go(-1)},forward:function(){history.go(1)},getToken:function(){return k?d:g()}}})();Ext.apply(Ext.History,new Ext.util.Observable());Ext.Tip=Ext.extend(Ext.Panel,{minWidth:40,maxWidth:300,shadow:"sides",defaultAlign:"tl-bl?",autoRender:true,quickShowInterval:250,frame:true,hidden:true,baseCls:"x-tip",floating:{shadow:true,shim:true,useDisplay:true,constrain:false},autoHeight:true,closeAction:"hide",initComponent:function(){Ext.Tip.superclass.initComponent.call(this);if(this.closable&&!this.title){this.elements+=",header"}},afterRender:function(){Ext.Tip.superclass.afterRender.call(this);if(this.closable){this.addTool({id:"close",handler:this[this.closeAction],scope:this})}},showAt:function(a){Ext.Tip.superclass.show.call(this);if(this.measureWidth!==false&&(!this.initialConfig||typeof this.initialConfig.width!="number")){this.doAutoWidth()}if(this.constrainPosition){a=this.el.adjustForConstraints(a)}this.setPagePosition(a[0],a[1])},doAutoWidth:function(a){a=a||0;var b=this.body.getTextWidth();if(this.title){b=Math.max(b,this.header.child("span").getTextWidth(this.title))}b+=this.getFrameWidth()+(this.closable?20:0)+this.body.getPadding("lr")+a;this.setWidth(b.constrain(this.minWidth,this.maxWidth));if(Ext.isIE7&&!this.repainted){this.el.repaint();this.repainted=true}},showBy:function(a,b){if(!this.rendered){this.render(Ext.getBody())}this.showAt(this.el.getAlignToXY(a,b||this.defaultAlign))},initDraggable:function(){this.dd=new Ext.Tip.DD(this,typeof this.draggable=="boolean"?null:this.draggable);this.header.addClass("x-tip-draggable")}});Ext.reg("tip",Ext.Tip);Ext.Tip.DD=function(b,a){Ext.apply(this,a);this.tip=b;Ext.Tip.DD.superclass.constructor.call(this,b.el.id,"WindowDD-"+b.id);this.setHandleElId(b.header.id);this.scroll=false};Ext.extend(Ext.Tip.DD,Ext.dd.DD,{moveOnly:true,scroll:false,headerOffsets:[100,25],startDrag:function(){this.tip.el.disableShadow()},endDrag:function(a){this.tip.el.enableShadow(true)}});Ext.ToolTip=Ext.extend(Ext.Tip,{showDelay:500,hideDelay:200,dismissDelay:5000,trackMouse:false,anchorToTarget:true,anchorOffset:0,targetCounter:0,constrainPosition:false,initComponent:function(){Ext.ToolTip.superclass.initComponent.call(this);this.lastActive=new Date();this.initTarget(this.target);this.origAnchor=this.anchor},onRender:function(b,a){Ext.ToolTip.superclass.onRender.call(this,b,a);this.anchorCls="x-tip-anchor-"+this.getAnchorPosition();this.anchorEl=this.el.createChild({cls:"x-tip-anchor "+this.anchorCls})},afterRender:function(){Ext.ToolTip.superclass.afterRender.call(this);this.anchorEl.setStyle("z-index",this.el.getZIndex()+1).setVisibilityMode(Ext.Element.DISPLAY)},initTarget:function(c){var a;if((a=Ext.get(c))){if(this.target){var b=Ext.get(this.target);this.mun(b,"mouseover",this.onTargetOver,this);this.mun(b,"mouseout",this.onTargetOut,this);this.mun(b,"mousemove",this.onMouseMove,this)}this.mon(a,{mouseover:this.onTargetOver,mouseout:this.onTargetOut,mousemove:this.onMouseMove,scope:this});this.target=a}if(this.anchor){this.anchorTarget=this.target}},onMouseMove:function(b){var a=this.delegate?b.getTarget(this.delegate):this.triggerElement=true;if(a){this.targetXY=b.getXY();if(a===this.triggerElement){if(!this.hidden&&this.trackMouse){this.setPagePosition(this.getTargetXY())}}else{this.hide();this.lastActive=new Date(0);this.onTargetOver(b)}}else{if(!this.closable&&this.isVisible()){this.hide()}}},getTargetXY:function(){if(this.delegate){this.anchorTarget=this.triggerElement}if(this.anchor){this.targetCounter++;var c=this.getOffsets(),l=(this.anchorToTarget&&!this.trackMouse)?this.el.getAlignToXY(this.anchorTarget,this.getAnchorAlign()):this.targetXY,a=Ext.lib.Dom.getViewWidth()-5,h=Ext.lib.Dom.getViewHeight()-5,i=document.documentElement,e=document.body,k=(i.scrollLeft||e.scrollLeft||0)+5,j=(i.scrollTop||e.scrollTop||0)+5,b=[l[0]+c[0],l[1]+c[1]],g=this.getSize();this.anchorEl.removeClass(this.anchorCls);if(this.targetCounter<2){if(b[0]a){if(this.anchorToTarget){this.defaultAlign="r-l";if(this.mouseOffset){this.mouseOffset[0]*=-1}}this.anchor="right";return this.getTargetXY()}if(b[1]h){if(this.anchorToTarget){this.defaultAlign="b-t";if(this.mouseOffset){this.mouseOffset[1]*=-1}}this.anchor="bottom";return this.getTargetXY()}}this.anchorCls="x-tip-anchor-"+this.getAnchorPosition();this.anchorEl.addClass(this.anchorCls);this.targetCounter=0;return b}else{var d=this.getMouseOffset();return[this.targetXY[0]+d[0],this.targetXY[1]+d[1]]}},getMouseOffset:function(){var a=this.anchor?[0,0]:[15,18];if(this.mouseOffset){a[0]+=this.mouseOffset[0];a[1]+=this.mouseOffset[1]}return a},getAnchorPosition:function(){if(this.anchor){this.tipAnchor=this.anchor.charAt(0)}else{var a=this.defaultAlign.match(/^([a-z]+)-([a-z]+)(\?)?$/);if(!a){throw"AnchorTip.defaultAlign is invalid"}this.tipAnchor=a[1].charAt(0)}switch(this.tipAnchor){case"t":return"top";case"b":return"bottom";case"r":return"right"}return"left"},getAnchorAlign:function(){switch(this.anchor){case"top":return"tl-bl";case"left":return"tl-tr";case"right":return"tr-tl";default:return"bl-tl"}},getOffsets:function(){var b,a=this.getAnchorPosition().charAt(0);if(this.anchorToTarget&&!this.trackMouse){switch(a){case"t":b=[0,9];break;case"b":b=[0,-13];break;case"r":b=[-13,0];break;default:b=[9,0];break}}else{switch(a){case"t":b=[-15-this.anchorOffset,30];break;case"b":b=[-19-this.anchorOffset,-13-this.el.dom.offsetHeight];break;case"r":b=[-15-this.el.dom.offsetWidth,-13-this.anchorOffset];break;default:b=[25,-13-this.anchorOffset];break}}var c=this.getMouseOffset();b[0]+=c[0];b[1]+=c[1];return b},onTargetOver:function(b){if(this.disabled||b.within(this.target.dom,true)){return}var a=b.getTarget(this.delegate);if(a){this.triggerElement=a;this.clearTimer("hide");this.targetXY=b.getXY();this.delayShow()}},delayShow:function(){if(this.hidden&&!this.showTimer){if(this.lastActive.getElapsed()=c){d=c-b-5}}return{x:a,y:d}},beforeDestroy:function(){this.clearTimers();Ext.destroy(this.anchorEl);delete this.anchorEl;delete this.target;delete this.anchorTarget;delete this.triggerElement;Ext.ToolTip.superclass.beforeDestroy.call(this)},onDestroy:function(){Ext.getDoc().un("mousedown",this.onDocMouseDown,this);Ext.ToolTip.superclass.onDestroy.call(this)}});Ext.reg("tooltip",Ext.ToolTip);Ext.QuickTip=Ext.extend(Ext.ToolTip,{interceptTitles:false,tagConfig:{namespace:"ext",attribute:"qtip",width:"qwidth",target:"target",title:"qtitle",hide:"hide",cls:"qclass",align:"qalign",anchor:"anchor"},initComponent:function(){this.target=this.target||Ext.getDoc();this.targets=this.targets||{};Ext.QuickTip.superclass.initComponent.call(this)},register:function(e){var h=Ext.isArray(e)?e:arguments;for(var g=0,a=h.length;g1){var d=function(i,h){if(i&&h){var j=h.findChild(a,b);if(j){j.select();if(g){g(true,j)}}else{if(g){g(false,j)}}}else{if(g){g(false,j)}}};this.expandPath(c.join(this.pathSeparator),a,d)}else{this.root.select();if(g){g(true,this.root)}}},getTreeEl:function(){return this.body},onRender:function(b,a){Ext.tree.TreePanel.superclass.onRender.call(this,b,a);this.el.addClass("x-tree");this.innerCt=this.body.createChild({tag:"ul",cls:"x-tree-root-ct "+(this.useArrows?"x-tree-arrows":this.lines?"x-tree-lines":"x-tree-no-lines")})},initEvents:function(){Ext.tree.TreePanel.superclass.initEvents.call(this);if(this.containerScroll){Ext.dd.ScrollManager.register(this.body)}if((this.enableDD||this.enableDrop)&&!this.dropZone){this.dropZone=new Ext.tree.TreeDropZone(this,this.dropConfig||{ddGroup:this.ddGroup||"TreeDD",appendOnly:this.ddAppendOnly===true})}if((this.enableDD||this.enableDrag)&&!this.dragZone){this.dragZone=new Ext.tree.TreeDragZone(this,this.dragConfig||{ddGroup:this.ddGroup||"TreeDD",scroll:this.ddScroll})}this.getSelectionModel().init(this)},afterRender:function(){Ext.tree.TreePanel.superclass.afterRender.call(this);this.renderRoot()},beforeDestroy:function(){if(this.rendered){Ext.dd.ScrollManager.unregister(this.body);Ext.destroy(this.dropZone,this.dragZone)}this.destroyRoot();Ext.destroy(this.loader);this.nodeHash=this.root=this.loader=null;Ext.tree.TreePanel.superclass.beforeDestroy.call(this)},destroyRoot:function(){if(this.root&&this.root.destroy){this.root.destroy(true)}}});Ext.tree.TreePanel.nodeTypes={};Ext.reg("treepanel",Ext.tree.TreePanel);Ext.tree.TreeEventModel=function(a){this.tree=a;this.tree.on("render",this.initEvents,this)};Ext.tree.TreeEventModel.prototype={initEvents:function(){var a=this.tree;if(a.trackMouseOver!==false){a.mon(a.innerCt,{scope:this,mouseover:this.delegateOver,mouseout:this.delegateOut})}a.mon(a.getTreeEl(),{scope:this,click:this.delegateClick,dblclick:this.delegateDblClick,contextmenu:this.delegateContextMenu})},getNode:function(b){var a;if(a=b.getTarget(".x-tree-node-el",10)){var c=Ext.fly(a,"_treeEvents").getAttribute("tree-node-id","ext");if(c){return this.tree.getNodeById(c)}}return null},getNodeTarget:function(b){var a=b.getTarget(".x-tree-node-icon",1);if(!a){a=b.getTarget(".x-tree-node-el",6)}return a},delegateOut:function(b,a){if(!this.beforeEvent(b)){return}if(b.getTarget(".x-tree-ec-icon",1)){var c=this.getNode(b);this.onIconOut(b,c);if(c==this.lastEcOver){delete this.lastEcOver}}if((a=this.getNodeTarget(b))&&!b.within(a,true)){this.onNodeOut(b,this.getNode(b))}},delegateOver:function(b,a){if(!this.beforeEvent(b)){return}if(Ext.isGecko&&!this.trackingDoc){Ext.getBody().on("mouseover",this.trackExit,this);this.trackingDoc=true}if(this.lastEcOver){this.onIconOut(b,this.lastEcOver);delete this.lastEcOver}if(b.getTarget(".x-tree-ec-icon",1)){this.lastEcOver=this.getNode(b);this.onIconOver(b,this.lastEcOver)}if(a=this.getNodeTarget(b)){this.onNodeOver(b,this.getNode(b))}},trackExit:function(a){if(this.lastOverNode){if(this.lastOverNode.ui&&!a.within(this.lastOverNode.ui.getEl())){this.onNodeOut(a,this.lastOverNode)}delete this.lastOverNode;Ext.getBody().un("mouseover",this.trackExit,this);this.trackingDoc=false}},delegateClick:function(b,a){if(this.beforeEvent(b)){if(b.getTarget("input[type=checkbox]",1)){this.onCheckboxClick(b,this.getNode(b))}else{if(b.getTarget(".x-tree-ec-icon",1)){this.onIconClick(b,this.getNode(b))}else{if(this.getNodeTarget(b)){this.onNodeClick(b,this.getNode(b))}}}}else{this.checkContainerEvent(b,"click")}},delegateDblClick:function(b,a){if(this.beforeEvent(b)){if(this.getNodeTarget(b)){this.onNodeDblClick(b,this.getNode(b))}}else{this.checkContainerEvent(b,"dblclick")}},delegateContextMenu:function(b,a){if(this.beforeEvent(b)){if(this.getNodeTarget(b)){this.onNodeContextMenu(b,this.getNode(b))}}else{this.checkContainerEvent(b,"contextmenu")}},checkContainerEvent:function(b,a){if(this.disabled){b.stopEvent();return false}this.onContainerEvent(b,a)},onContainerEvent:function(b,a){this.tree.fireEvent("container"+a,this.tree,b)},onNodeClick:function(b,a){a.ui.onClick(b)},onNodeOver:function(b,a){this.lastOverNode=a;a.ui.onOver(b)},onNodeOut:function(b,a){a.ui.onOut(b)},onIconOver:function(b,a){a.ui.addClass("x-tree-ec-over")},onIconOut:function(b,a){a.ui.removeClass("x-tree-ec-over")},onIconClick:function(b,a){a.ui.ecClick(b)},onCheckboxClick:function(b,a){a.ui.onCheckChange(b)},onNodeDblClick:function(b,a){a.ui.onDblClick(b)},onNodeContextMenu:function(b,a){a.ui.onContextMenu(b)},beforeEvent:function(b){var a=this.getNode(b);if(this.disabled||!a||!a.ui){b.stopEvent();return false}return true},disable:function(){this.disabled=true},enable:function(){this.disabled=false}};Ext.tree.DefaultSelectionModel=Ext.extend(Ext.util.Observable,{constructor:function(a){this.selNode=null;this.addEvents("selectionchange","beforeselect");Ext.apply(this,a);Ext.tree.DefaultSelectionModel.superclass.constructor.call(this)},init:function(a){this.tree=a;a.mon(a.getTreeEl(),"keydown",this.onKeyDown,this);a.on("click",this.onNodeClick,this)},onNodeClick:function(a,b){this.select(a)},select:function(c,a){if(!Ext.fly(c.ui.wrap).isVisible()&&a){return a.call(this,c)}var b=this.selNode;if(c==b){c.ui.onSelectedChange(true)}else{if(this.fireEvent("beforeselect",this,c,b)!==false){if(b&&b.ui){b.ui.onSelectedChange(false)}this.selNode=c;c.ui.onSelectedChange(true);this.fireEvent("selectionchange",this,c,b)}}return c},unselect:function(b,a){if(this.selNode==b){this.clearSelections(a)}},clearSelections:function(a){var b=this.selNode;if(b){b.ui.onSelectedChange(false);this.selNode=null;if(a!==true){this.fireEvent("selectionchange",this,null)}}return b},getSelectedNode:function(){return this.selNode},isSelected:function(a){return this.selNode==a},selectPrevious:function(a){if(!(a=a||this.selNode||this.lastSelNode)){return null}var c=a.previousSibling;if(c){if(!c.isExpanded()||c.childNodes.length<1){return this.select(c,this.selectPrevious)}else{var b=c.lastChild;while(b&&b.isExpanded()&&Ext.fly(b.ui.wrap).isVisible()&&b.childNodes.length>0){b=b.lastChild}return this.select(b,this.selectPrevious)}}else{if(a.parentNode&&(this.tree.rootVisible||!a.parentNode.isRoot)){return this.select(a.parentNode,this.selectPrevious)}}return null},selectNext:function(b){if(!(b=b||this.selNode||this.lastSelNode)){return null}if(b.firstChild&&b.isExpanded()&&Ext.fly(b.ui.wrap).isVisible()){return this.select(b.firstChild,this.selectNext)}else{if(b.nextSibling){return this.select(b.nextSibling,this.selectNext)}else{if(b.parentNode){var a=null;b.parentNode.bubble(function(){if(this.nextSibling){a=this.getOwnerTree().selModel.select(this.nextSibling,this.selectNext);return false}});return a}}}return null},onKeyDown:function(c){var b=this.selNode||this.lastSelNode;var d=this;if(!b){return}var a=c.getKey();switch(a){case c.DOWN:c.stopEvent();this.selectNext();break;case c.UP:c.stopEvent();this.selectPrevious();break;case c.RIGHT:c.preventDefault();if(b.hasChildNodes()){if(!b.isExpanded()){b.expand()}else{if(b.firstChild){this.select(b.firstChild,c)}}}break;case c.LEFT:c.preventDefault();if(b.hasChildNodes()&&b.isExpanded()){b.collapse()}else{if(b.parentNode&&(this.tree.rootVisible||b.parentNode!=this.tree.getRootNode())){this.select(b.parentNode,c)}}break}}});Ext.tree.MultiSelectionModel=Ext.extend(Ext.util.Observable,{constructor:function(a){this.selNodes=[];this.selMap={};this.addEvents("selectionchange");Ext.apply(this,a);Ext.tree.MultiSelectionModel.superclass.constructor.call(this)},init:function(a){this.tree=a;a.mon(a.getTreeEl(),"keydown",this.onKeyDown,this);a.on("click",this.onNodeClick,this)},onNodeClick:function(a,b){if(b.ctrlKey&&this.isSelected(a)){this.unselect(a)}else{this.select(a,b,b.ctrlKey)}},select:function(a,c,b){if(b!==true){this.clearSelections(true)}if(this.isSelected(a)){this.lastSelNode=a;return a}this.selNodes.push(a);this.selMap[a.id]=a;this.lastSelNode=a;a.ui.onSelectedChange(true);this.fireEvent("selectionchange",this,this.selNodes);return a},unselect:function(b){if(this.selMap[b.id]){b.ui.onSelectedChange(false);var c=this.selNodes;var a=c.indexOf(b);if(a!=-1){this.selNodes.splice(a,1)}delete this.selMap[b.id];this.fireEvent("selectionchange",this,this.selNodes)}},clearSelections:function(b){var d=this.selNodes;if(d.length>0){for(var c=0,a=d.length;c0},isExpandable:function(){return this.attributes.expandable||this.hasChildNodes()},appendChild:function(e){var g=false;if(Ext.isArray(e)){g=e}else{if(arguments.length>1){g=arguments}}if(g){for(var d=0,a=g.length;d0){var g=d?function(){e.apply(d,arguments)}:e;c.sort(g);for(var b=0;b
    ','',this.indentMarkup,"",'','',g?('':"/>")):"",'',e.text,"
    ",'',""].join("");if(l!==true&&e.nextSibling&&(b=e.nextSibling.ui.getEl())){this.wrap=Ext.DomHelper.insertHtml("beforeBegin",b,d)}else{this.wrap=Ext.DomHelper.insertHtml("beforeEnd",j,d)}this.elNode=this.wrap.childNodes[0];this.ctNode=this.wrap.childNodes[1];var i=this.elNode.childNodes;this.indentNode=i[0];this.ecNode=i[1];this.iconNode=i[2];var h=3;if(g){this.checkbox=i[3];this.checkbox.defaultChecked=this.checkbox.checked;h++}this.anchor=i[h];this.textNode=i[h].firstChild},getHref:function(a){return Ext.isEmpty(a)?(Ext.isGecko?"":"#"):a},getAnchor:function(){return this.anchor},getTextEl:function(){return this.textNode},getIconEl:function(){return this.iconNode},isChecked:function(){return this.checkbox?this.checkbox.checked:false},updateExpandIcon:function(){if(this.rendered){var g=this.node,d,c,a=g.isLast()?"x-tree-elbow-end":"x-tree-elbow",e=g.hasChildNodes();if(e||g.attributes.expandable){if(g.expanded){a+="-minus";d="x-tree-node-collapsed";c="x-tree-node-expanded"}else{a+="-plus";d="x-tree-node-expanded";c="x-tree-node-collapsed"}if(this.wasLeaf){this.removeClass("x-tree-node-leaf");this.wasLeaf=false}if(this.c1!=d||this.c2!=c){Ext.fly(this.elNode).replaceClass(d,c);this.c1=d;this.c2=c}}else{if(!this.wasLeaf){Ext.fly(this.elNode).replaceClass("x-tree-node-expanded","x-tree-node-collapsed");delete this.c1;delete this.c2;this.wasLeaf=true}}var b="x-tree-ec-icon "+a;if(this.ecc!=b){this.ecNode.className=b;this.ecc=b}}},onIdChange:function(a){if(this.rendered){this.elNode.setAttribute("ext:tree-node-id",a)}},getChildIndent:function(){if(!this.childIndent){var a=[],b=this.node;while(b){if(!b.isRoot||(b.isRoot&&b.ownerTree.rootVisible)){if(!b.isLast()){a.unshift('')}else{a.unshift('')}}b=b.parentNode}this.childIndent=a.join("")}return this.childIndent},renderIndent:function(){if(this.rendered){var a="",b=this.node.parentNode;if(b){a=b.ui.getChildIndent()}if(this.indentMarkup!=a){this.indentNode.innerHTML=a;this.indentMarkup=a}this.updateExpandIcon()}},destroy:function(){if(this.elNode){Ext.dd.Registry.unregister(this.elNode.id)}Ext.each(["textnode","anchor","checkbox","indentNode","ecNode","iconNode","elNode","ctNode","wrap","holder"],function(a){if(this[a]){Ext.fly(this[a]).remove();delete this[a]}},this);delete this.node}});Ext.tree.RootTreeNodeUI=Ext.extend(Ext.tree.TreeNodeUI,{render:function(){if(!this.rendered){var a=this.node.ownerTree.innerCt.dom;this.node.expanded=true;a.innerHTML='
    ';this.wrap=this.ctNode=a.firstChild}},collapse:Ext.emptyFn,expand:Ext.emptyFn});Ext.tree.TreeLoader=function(a){this.baseParams={};Ext.apply(this,a);this.addEvents("beforeload","load","loadexception");Ext.tree.TreeLoader.superclass.constructor.call(this);if(Ext.isString(this.paramOrder)){this.paramOrder=this.paramOrder.split(/[\s,|]/)}};Ext.extend(Ext.tree.TreeLoader,Ext.util.Observable,{uiProviders:{},clearOnLoad:true,paramOrder:undefined,paramsAsHash:false,nodeParameter:"node",directFn:undefined,load:function(b,c,a){if(this.clearOnLoad){while(b.firstChild){b.removeChild(b.firstChild)}}if(this.doPreload(b)){this.runCallback(c,a||b,[b])}else{if(this.directFn||this.dataUrl||this.url){this.requestData(b,c,a||b)}}},doPreload:function(d){if(d.attributes.children){if(d.childNodes.length<1){var c=d.attributes.children;d.beginUpdate();for(var b=0,a=c.length;b-1){c=[]}for(var d=0,a=b.length;dp){return e?-1:1}}return 0}},doSort:function(a){a.sort(this.sortFn)},updateSort:function(a,b){if(b.childrenRendered){this.doSort.defer(1,this,[b])}},updateSortParent:function(a){var b=a.parentNode;if(b&&b.childrenRendered){this.doSort.defer(1,this,[b])}}});if(Ext.dd.DropZone){Ext.tree.TreeDropZone=function(a,b){this.allowParentInsert=b.allowParentInsert||false;this.allowContainerDrop=b.allowContainerDrop||false;this.appendOnly=b.appendOnly||false;Ext.tree.TreeDropZone.superclass.constructor.call(this,a.getTreeEl(),b);this.tree=a;this.dragOverData={};this.lastInsertClass="x-tree-no-status"};Ext.extend(Ext.tree.TreeDropZone,Ext.dd.DropZone,{ddGroup:"TreeDD",expandDelay:1000,expandNode:function(a){if(a.hasChildNodes()&&!a.isExpanded()){a.expand(false,null,this.triggerCacheRefresh.createDelegate(this))}},queueExpand:function(a){this.expandProcId=this.expandNode.defer(this.expandDelay,this,[a])},cancelExpand:function(){if(this.expandProcId){clearTimeout(this.expandProcId);this.expandProcId=false}},isValidDropPoint:function(a,k,i,d,c){if(!a||!c){return false}var g=a.node;var h=c.node;if(!(g&&g.isTarget&&k)){return false}if(k=="append"&&g.allowChildren===false){return false}if((k=="above"||k=="below")&&(g.parentNode&&g.parentNode.allowChildren===false)){return false}if(h&&(g==h||h.contains(g))){return false}var b=this.dragOverData;b.tree=this.tree;b.target=g;b.data=c;b.point=k;b.source=i;b.rawEvent=d;b.dropNode=h;b.cancel=false;var j=this.tree.fireEvent("nodedragover",b);return b.cancel===false&&j!==false},getDropPoint:function(h,g,l){var m=g.node;if(m.isRoot){return m.allowChildren!==false?"append":false}var c=g.ddel;var o=Ext.lib.Dom.getY(c),j=o+c.offsetHeight;var i=Ext.lib.Event.getPageY(h);var k=m.allowChildren===false||m.isLeaf();if(this.appendOnly||m.parentNode.allowChildren===false){return k?false:"append"}var d=false;if(!this.allowParentInsert){d=m.hasChildNodes()&&m.isExpanded()}var a=(j-o)/(k?2:3);if(i>=o&&i<(o+a)){return"above"}else{if(!d&&(k||i>=j-a&&i<=j)){return"below"}else{return"append"}}},onNodeEnter:function(d,a,c,b){this.cancelExpand()},onContainerOver:function(a,c,b){if(this.allowContainerDrop&&this.isValidDropPoint({ddel:this.tree.getRootNode().ui.elNode,node:this.tree.getRootNode()},"append",a,c,b)){return this.dropAllowed}return this.dropNotAllowed},onNodeOver:function(b,i,h,g){var k=this.getDropPoint(h,b,i);var c=b.node;if(!this.expandProcId&&k=="append"&&c.hasChildNodes()&&!b.node.isExpanded()){this.queueExpand(c)}else{if(k!="append"){this.cancelExpand()}}var d=this.dropNotAllowed;if(this.isValidDropPoint(b,k,i,h,g)){if(k){var a=b.ddel;var j;if(k=="above"){d=b.node.isFirst()?"x-tree-drop-ok-above":"x-tree-drop-ok-between";j="x-tree-drag-insert-above"}else{if(k=="below"){d=b.node.isLast()?"x-tree-drop-ok-below":"x-tree-drop-ok-between";j="x-tree-drag-insert-below"}else{d="x-tree-drop-ok-append";j="x-tree-drag-append"}}if(this.lastInsertClass!=j){Ext.fly(a).replaceClass(this.lastInsertClass,j);this.lastInsertClass=j}}}return d},onNodeOut:function(d,a,c,b){this.cancelExpand();this.removeDropIndicators(d)},onNodeDrop:function(i,b,h,d){var a=this.getDropPoint(h,i,b);var g=i.node;g.ui.startDrop();if(!this.isValidDropPoint(i,a,b,h,d)){g.ui.endDrop();return false}var c=d.node||(b.getTreeNode?b.getTreeNode(d,g,a,h):null);return this.processDrop(g,d,a,b,h,c)},onContainerDrop:function(a,g,c){if(this.allowContainerDrop&&this.isValidDropPoint({ddel:this.tree.getRootNode().ui.elNode,node:this.tree.getRootNode()},"append",a,g,c)){var d=this.tree.getRootNode();d.ui.startDrop();var b=c.node||(a.getTreeNode?a.getTreeNode(c,d,"append",g):null);return this.processDrop(d,c,"append",a,g,b)}return false},processDrop:function(j,h,b,a,i,d){var g={tree:this.tree,target:j,data:h,point:b,source:a,rawEvent:i,dropNode:d,cancel:!d,dropStatus:false};var c=this.tree.fireEvent("beforenodedrop",g);if(c===false||g.cancel===true||!g.dropNode){j.ui.endDrop();return g.dropStatus}j=g.target;if(b=="append"&&!j.isExpanded()){j.expand(false,null,function(){this.completeDrop(g)}.createDelegate(this))}else{this.completeDrop(g)}return true},completeDrop:function(h){var d=h.dropNode,e=h.point,c=h.target;if(!Ext.isArray(d)){d=[d]}var g;for(var b=0,a=d.length;bd.offsetLeft){e.scrollLeft=d.offsetLeft}var a=Math.min(this.maxWidth,(e.clientWidth>20?e.clientWidth:e.offsetWidth)-Math.max(0,d.offsetLeft-e.scrollLeft)-5);this.setSize(a,"")},triggerEdit:function(a,c){this.completeEdit();if(a.attributes.editable!==false){this.editNode=a;if(this.tree.autoScroll){Ext.fly(a.ui.getEl()).scrollIntoView(this.tree.body)}var b=a.text||"";if(!Ext.isGecko&&Ext.isEmpty(a.text)){a.setText(" ")}this.autoEditTimer=this.startEdit.defer(this.editDelay,this,[a.ui.textNode,b]);return false}},bindScroll:function(){this.tree.getTreeEl().on("scroll",this.cancelEdit,this)},beforeNodeClick:function(a,b){clearTimeout(this.autoEditTimer);if(this.tree.getSelectionModel().isSelected(a)){b.stopEvent();return this.triggerEdit(a)}},onNodeDblClick:function(a,b){clearTimeout(this.autoEditTimer)},updateNode:function(a,b){this.tree.getTreeEl().un("scroll",this.cancelEdit,this);this.editNode.setText(b)},onHide:function(){Ext.tree.TreeEditor.superclass.onHide.call(this);if(this.editNode){this.editNode.ui.focus.defer(50,this.editNode.ui)}},onSpecialKey:function(c,b){var a=b.getKey();if(a==b.ESC){b.stopEvent();this.cancelEdit()}else{if(a==b.ENTER&&!b.hasModifier()){b.stopEvent();this.completeEdit()}}},onDestroy:function(){clearTimeout(this.autoEditTimer);Ext.tree.TreeEditor.superclass.onDestroy.call(this);var a=this.tree;a.un("beforeclick",this.beforeNodeClick,this);a.un("dblclick",this.onNodeDblClick,this)}});var swfobject=function(){var E="undefined",s="object",T="Shockwave Flash",X="ShockwaveFlash.ShockwaveFlash",r="application/x-shockwave-flash",S="SWFObjectExprInst",y="onreadystatechange",P=window,k=document,u=navigator,U=false,V=[i],p=[],O=[],J=[],m,R,F,C,K=false,a=false,o,H,n=true,N=function(){var ab=typeof k.getElementById!=E&&typeof k.getElementsByTagName!=E&&typeof k.createElement!=E,ai=u.userAgent.toLowerCase(),Z=u.platform.toLowerCase(),af=Z?(/win/).test(Z):/win/.test(ai),ad=Z?(/mac/).test(Z):/mac/.test(ai),ag=/webkit/.test(ai)?parseFloat(ai.replace(/^.*webkit\/(\d+(\.\d+)?).*$/,"$1")):false,Y=!+"\v1",ah=[0,0,0],ac=null;if(typeof u.plugins!=E&&typeof u.plugins[T]==s){ac=u.plugins[T].description;if(ac&&!(typeof u.mimeTypes!=E&&u.mimeTypes[r]&&!u.mimeTypes[r].enabledPlugin)){U=true;Y=false;ac=ac.replace(/^.*\s+(\S+\s+\S+$)/,"$1");ah[0]=parseInt(ac.replace(/^(.*)\..*$/,"$1"),10);ah[1]=parseInt(ac.replace(/^.*\.(.*)\s.*$/,"$1"),10);ah[2]=/[a-zA-Z]/.test(ac)?parseInt(ac.replace(/^.*[a-zA-Z]+(.*)$/,"$1"),10):0}}else{if(typeof P.ActiveXObject!=E){try{var ae=new ActiveXObject(X);if(ae){ac=ae.GetVariable("$version");if(ac){Y=true;ac=ac.split(" ")[1].split(",");ah=[parseInt(ac[0],10),parseInt(ac[1],10),parseInt(ac[2],10)]}}}catch(aa){}}}return{w3:ab,pv:ah,wk:ag,ie:Y,win:af,mac:ad}}(),l=function(){if(!N.w3){return}if((typeof k.readyState!=E&&k.readyState=="complete")||(typeof k.readyState==E&&(k.getElementsByTagName("body")[0]||k.body))){g()}if(!K){if(typeof k.addEventListener!=E){k.addEventListener("DOMContentLoaded",g,false)}if(N.ie&&N.win){k.attachEvent(y,function(){if(k.readyState=="complete"){k.detachEvent(y,arguments.callee);g()}});if(P==top){(function(){if(K){return}try{k.documentElement.doScroll("left")}catch(Y){setTimeout(arguments.callee,0);return}g()})()}}if(N.wk){(function(){if(K){return}if(!(/loaded|complete/).test(k.readyState)){setTimeout(arguments.callee,0);return}g()})()}t(g)}}();function g(){if(K){return}try{var aa=k.getElementsByTagName("body")[0].appendChild(D("span"));aa.parentNode.removeChild(aa)}catch(ab){return}K=true;var Y=V.length;for(var Z=0;Z0){for(var ag=0;ag0){var af=c(Z);if(af){if(G(p[ag].swfVersion)&&!(N.wk&&N.wk<312)){x(Z,true);if(ac){ab.success=true;ab.ref=A(Z);ac(ab)}}else{if(p[ag].expressInstall&&B()){var aj={};aj.data=p[ag].expressInstall;aj.width=af.getAttribute("width")||"0";aj.height=af.getAttribute("height")||"0";if(af.getAttribute("class")){aj.styleclass=af.getAttribute("class")}if(af.getAttribute("align")){aj.align=af.getAttribute("align")}var ai={};var Y=af.getElementsByTagName("param");var ad=Y.length;for(var ae=0;ae'}}ab.outerHTML='"+ag+"";O[O.length]=aj.id;Y=c(aj.id)}else{var aa=D(s);aa.setAttribute("type",r);for(var ad in aj){if(aj[ad]!=Object.prototype[ad]){if(ad.toLowerCase()=="styleclass"){aa.setAttribute("class",aj[ad])}else{if(ad.toLowerCase()!="classid"){aa.setAttribute(ad,aj[ad])}}}}for(var ac in ah){if(ah[ac]!=Object.prototype[ac]&&ac.toLowerCase()!="movie"){e(aa,ac,ah[ac])}}ab.parentNode.replaceChild(aa,ab);Y=aa}}return Y}function e(aa,Y,Z){var ab=D("param");ab.setAttribute("name",Y);ab.setAttribute("value",Z);aa.appendChild(ab)}function z(Z){var Y=c(Z);if(Y&&Y.nodeName=="OBJECT"){if(N.ie&&N.win){Y.style.display="none";(function(){if(Y.readyState==4){b(Z)}else{setTimeout(arguments.callee,10)}})()}else{Y.parentNode.removeChild(Y)}}}function b(aa){var Z=c(aa);if(Z){for(var Y in Z){if(typeof Z[Y]=="function"){Z[Y]=null}}Z.parentNode.removeChild(Z)}}function c(aa){var Y=null;try{Y=k.getElementById(aa)}catch(Z){}return Y}function D(Y){return k.createElement(Y)}function j(aa,Y,Z){aa.attachEvent(Y,Z);J[J.length]=[aa,Y,Z]}function G(aa){var Z=N.pv,Y=aa.split(".");Y[0]=parseInt(Y[0],10);Y[1]=parseInt(Y[1],10)||0;Y[2]=parseInt(Y[2],10)||0;return(Z[0]>Y[0]||(Z[0]==Y[0]&&Z[1]>Y[1])||(Z[0]==Y[0]&&Z[1]==Y[1]&&Z[2]>=Y[2]))?true:false}function w(ad,Z,ae,ac){if(N.ie&&N.mac){return}var ab=k.getElementsByTagName("head")[0];if(!ab){return}var Y=(ae&&typeof ae=="string")?ae:"screen";if(ac){o=null;H=null}if(!o||H!=Y){var aa=D("style");aa.setAttribute("type","text/css");aa.setAttribute("media",Y);o=ab.appendChild(aa);if(N.ie&&N.win&&typeof k.styleSheets!=E&&k.styleSheets.length>0){o=k.styleSheets[k.styleSheets.length-1]}H=Y}if(N.ie&&N.win){if(o&&typeof o.addRule==s){o.addRule(ad,Z)}}else{if(o&&typeof k.createTextNode!=E){o.appendChild(k.createTextNode(ad+" {"+Z+"}"))}}}function x(aa,Y){if(!n){return}var Z=Y?"visible":"hidden";if(K&&c(aa)){c(aa).style.visibility=Z}else{w("#"+aa,"visibility:"+Z)}}function M(Z){var aa=/[\\\"<>\.;]/;var Y=aa.exec(Z)!=null;return Y&&typeof encodeURIComponent!=E?encodeURIComponent(Z):Z}var d=function(){if(N.ie&&N.win){window.attachEvent("onunload",function(){var ad=J.length;for(var ac=0;ac0){for(h=0;h-1&&e.position=="left"){e.position="bottom"}return e},onDestroy:function(){Ext.chart.CartesianChart.superclass.onDestroy.call(this);Ext.each(this.labelFn,function(a){this.removeFnProxy(a)},this)}});Ext.reg("cartesianchart",Ext.chart.CartesianChart);Ext.chart.LineChart=Ext.extend(Ext.chart.CartesianChart,{type:"line"});Ext.reg("linechart",Ext.chart.LineChart);Ext.chart.ColumnChart=Ext.extend(Ext.chart.CartesianChart,{type:"column"});Ext.reg("columnchart",Ext.chart.ColumnChart);Ext.chart.StackedColumnChart=Ext.extend(Ext.chart.CartesianChart,{type:"stackcolumn"});Ext.reg("stackedcolumnchart",Ext.chart.StackedColumnChart);Ext.chart.BarChart=Ext.extend(Ext.chart.CartesianChart,{type:"bar"});Ext.reg("barchart",Ext.chart.BarChart);Ext.chart.StackedBarChart=Ext.extend(Ext.chart.CartesianChart,{type:"stackbar"});Ext.reg("stackedbarchart",Ext.chart.StackedBarChart);Ext.chart.Axis=function(a){Ext.apply(this,a)};Ext.chart.Axis.prototype={type:null,orientation:"horizontal",reverse:false,labelFunction:null,hideOverlappingLabels:true,labelSpacing:2};Ext.chart.NumericAxis=Ext.extend(Ext.chart.Axis,{type:"numeric",minimum:NaN,maximum:NaN,majorUnit:NaN,minorUnit:NaN,snapToUnits:true,alwaysShowZero:true,scale:"linear",roundMajorUnit:true,calculateByLabelSize:true,position:"left",adjustMaximumByMajorUnit:true,adjustMinimumByMajorUnit:true});Ext.chart.TimeAxis=Ext.extend(Ext.chart.Axis,{type:"time",minimum:null,maximum:null,majorUnit:NaN,majorTimeUnit:null,minorUnit:NaN,minorTimeUnit:null,snapToUnits:true,stackingEnabled:false,calculateByLabelSize:true});Ext.chart.CategoryAxis=Ext.extend(Ext.chart.Axis,{type:"category",categoryNames:null,calculateCategoryCount:false});Ext.chart.Series=function(a){Ext.apply(this,a)};Ext.chart.Series.prototype={type:null,displayName:null};Ext.chart.CartesianSeries=Ext.extend(Ext.chart.Series,{xField:null,yField:null,showInLegend:true,axis:"primary"});Ext.chart.ColumnSeries=Ext.extend(Ext.chart.CartesianSeries,{type:"column"});Ext.chart.LineSeries=Ext.extend(Ext.chart.CartesianSeries,{type:"line"});Ext.chart.BarSeries=Ext.extend(Ext.chart.CartesianSeries,{type:"bar"});Ext.chart.PieSeries=Ext.extend(Ext.chart.Series,{type:"pie",dataField:null,categoryField:null});Ext.menu.Menu=Ext.extend(Ext.Container,{minWidth:120,shadow:"sides",subMenuAlign:"tl-tr?",defaultAlign:"tl-bl?",allowOtherMenus:false,ignoreParentClicks:false,enableScrolling:true,maxHeight:null,scrollIncrement:24,showSeparator:true,defaultOffsets:[0,0],plain:false,floating:true,zIndex:15000,hidden:true,layout:"menu",hideMode:"offsets",scrollerHeight:8,autoLayout:true,defaultType:"menuitem",bufferResize:false,initComponent:function(){if(Ext.isArray(this.initialConfig)){Ext.apply(this,{items:this.initialConfig})}this.addEvents("click","mouseover","mouseout","itemclick");Ext.menu.MenuMgr.register(this);if(this.floating){Ext.EventManager.onWindowResize(this.hide,this)}else{if(this.initialConfig.hidden!==false){this.hidden=false}this.internalDefaults={hideOnClick:false}}Ext.menu.Menu.superclass.initComponent.call(this);if(this.autoLayout){var a=this.doLayout.createDelegate(this,[]);this.on({add:a,remove:a})}},getLayoutTarget:function(){return this.ul},onRender:function(b,a){if(!b){b=Ext.getBody()}var c={id:this.getId(),cls:"x-menu "+((this.floating)?"x-menu-floating x-layer ":"")+(this.cls||"")+(this.plain?" x-menu-plain":"")+(this.showSeparator?"":" x-menu-nosep"),style:this.style,cn:[{tag:"a",cls:"x-menu-focus",href:"#",onclick:"return false;",tabIndex:"-1"},{tag:"ul",cls:"x-menu-list"}]};if(this.floating){this.el=new Ext.Layer({shadow:this.shadow,dh:c,constrain:false,parentEl:b,zindex:this.zIndex})}else{this.el=b.createChild(c)}Ext.menu.Menu.superclass.onRender.call(this,b,a);if(!this.keyNav){this.keyNav=new Ext.menu.MenuNav(this)}this.focusEl=this.el.child("a.x-menu-focus");this.ul=this.el.child("ul.x-menu-list");this.mon(this.ul,{scope:this,click:this.onClick,mouseover:this.onMouseOver,mouseout:this.onMouseOut});if(this.enableScrolling){this.mon(this.el,{scope:this,delegate:".x-menu-scroller",click:this.onScroll,mouseover:this.deactivateActive})}},findTargetItem:function(b){var a=b.getTarget(".x-menu-list-item",this.ul,true);if(a&&a.menuItemId){return this.items.get(a.menuItemId)}},onClick:function(b){var a=this.findTargetItem(b);if(a){if(a.isFormField){this.setActiveItem(a)}else{if(a instanceof Ext.menu.BaseItem){if(a.menu&&this.ignoreParentClicks){a.expandMenu();b.preventDefault()}else{if(a.onClick){a.onClick(b);this.fireEvent("click",this,a,b)}}}}}},setActiveItem:function(a,b){if(a!=this.activeItem){this.deactivateActive();if((this.activeItem=a).isFormField){a.focus()}else{a.activate(b)}}else{if(b){a.expandMenu()}}},deactivateActive:function(){var b=this.activeItem;if(b){if(b.isFormField){if(b.collapse){b.collapse()}}else{b.deactivate()}delete this.activeItem}},tryActivate:function(g,e){var b=this.items;for(var c=g,a=b.length;c>=0&&c=a.scrollHeight){this.onScrollerOut(null,b)}},onScrollerIn:function(d,b){var a=this.ul.dom,c=Ext.fly(b).is(".x-menu-scroller-top");if(c?a.scrollTop>0:a.scrollTop+this.activeMaxc){b=c;a=i-h}else{if(bb&&b>0){this.activeMax=b-this.scrollerHeight*2-this.el.getFrameWidth("tb")-Ext.num(this.el.shadowOffset,0);this.ul.setHeight(this.activeMax);this.createScrollers();this.el.select(".x-menu-scroller").setDisplayed("")}else{this.ul.setHeight(d);this.el.select(".x-menu-scroller").setDisplayed("none")}this.ul.dom.scrollTop=0;return a},createScrollers:function(){if(!this.scroller){this.scroller={pos:0,top:this.el.insertFirst({tag:"div",cls:"x-menu-scroller x-menu-scroller-top",html:" "}),bottom:this.el.createChild({tag:"div",cls:"x-menu-scroller x-menu-scroller-bottom",html:" "})};this.scroller.top.hover(this.onScrollerIn,this.onScrollerOut,this);this.scroller.topRepeater=new Ext.util.ClickRepeater(this.scroller.top,{listeners:{click:this.onScroll.createDelegate(this,[null,this.scroller.top],false)}});this.scroller.bottom.hover(this.onScrollerIn,this.onScrollerOut,this);this.scroller.bottomRepeater=new Ext.util.ClickRepeater(this.scroller.bottom,{listeners:{click:this.onScroll.createDelegate(this,[null,this.scroller.bottom],false)}})}},onLayout:function(){if(this.isVisible()){if(this.enableScrolling){this.constrainScroll(this.el.getTop())}if(this.floating){this.el.sync()}}},focus:function(){if(!this.hidden){this.doFocus.defer(50,this)}},doFocus:function(){if(!this.hidden){this.focusEl.focus()}},hide:function(a){if(!this.isDestroyed){this.deepHide=a;Ext.menu.Menu.superclass.hide.call(this);delete this.deepHide}},onHide:function(){Ext.menu.Menu.superclass.onHide.call(this);this.deactivateActive();if(this.el&&this.floating){this.el.hide()}var a=this.parentMenu;if(this.deepHide===true&&a){if(a.floating){a.hide(true)}else{a.deactivateActive()}}},lookupComponent:function(a){if(Ext.isString(a)){a=(a=="separator"||a=="-")?new Ext.menu.Separator():new Ext.menu.TextItem(a);this.applyDefaults(a)}else{if(Ext.isObject(a)){a=this.getMenuItem(a)}else{if(a.tagName||a.el){a=new Ext.BoxComponent({el:a})}}}return a},applyDefaults:function(b){if(!Ext.isString(b)){b=Ext.menu.Menu.superclass.applyDefaults.call(this,b);var a=this.internalDefaults;if(a){if(b.events){Ext.applyIf(b.initialConfig,a);Ext.apply(b,a)}else{Ext.applyIf(b,a)}}}return b},getMenuItem:function(a){a.ownerCt=this;if(!a.isXType){if(!a.xtype&&Ext.isBoolean(a.checked)){return new Ext.menu.CheckItem(a)}return Ext.create(a,this.defaultType)}return a},addSeparator:function(){return this.add(new Ext.menu.Separator())},addElement:function(a){return this.add(new Ext.menu.BaseItem({el:a}))},addItem:function(a){return this.add(a)},addMenuItem:function(a){return this.add(this.getMenuItem(a))},addText:function(a){return this.add(new Ext.menu.TextItem(a))},onDestroy:function(){Ext.EventManager.removeResizeListener(this.hide,this);var a=this.parentMenu;if(a&&a.activeChild==this){delete a.activeChild}delete this.parentMenu;Ext.menu.Menu.superclass.onDestroy.call(this);Ext.menu.MenuMgr.unregister(this);if(this.keyNav){this.keyNav.disable()}var b=this.scroller;if(b){Ext.destroy(b.topRepeater,b.bottomRepeater,b.top,b.bottom)}Ext.destroy(this.el,this.focusEl,this.ul)}});Ext.reg("menu",Ext.menu.Menu);Ext.menu.MenuNav=Ext.extend(Ext.KeyNav,function(){function a(d,c){if(!c.tryActivate(c.items.indexOf(c.activeItem)-1,-1)){c.tryActivate(c.items.length-1,-1)}}function b(d,c){if(!c.tryActivate(c.items.indexOf(c.activeItem)+1,1)){c.tryActivate(0,1)}}return{constructor:function(c){Ext.menu.MenuNav.superclass.constructor.call(this,c.el);this.scope=this.menu=c},doRelay:function(g,d){var c=g.getKey();if(this.menu.activeItem&&this.menu.activeItem.isFormField&&c!=g.TAB){return false}if(!this.menu.activeItem&&g.isNavKeyPress()&&c!=g.SPACE&&c!=g.RETURN){this.menu.tryActivate(0,1);return false}return d.call(this.scope||this,g,this.menu)},tab:function(d,c){d.stopEvent();if(d.shiftKey){a(d,c)}else{b(d,c)}},up:a,down:b,right:function(d,c){if(c.activeItem){c.activeItem.expandMenu(true)}},left:function(d,c){c.hide();if(c.parentMenu&&c.parentMenu.activeItem){c.parentMenu.activeItem.activate()}},enter:function(d,c){if(c.activeItem){d.stopPropagation();c.activeItem.onClick(d);c.fireEvent("click",this,c.activeItem);return true}}}}());Ext.menu.MenuMgr=function(){var h,e,b,d={},a=false,l=new Date();function n(){h={};e=new Ext.util.MixedCollection();b=Ext.getDoc().addKeyListener(27,j);b.disable()}function j(){if(e&&e.length>0){var o=e.clone();o.each(function(p){p.hide()});return true}return false}function g(o){e.remove(o);if(e.length<1){b.disable();Ext.getDoc().un("mousedown",m);a=false}}function k(o){var p=e.last();l=new Date();e.add(o);if(!a){b.enable();Ext.getDoc().on("mousedown",m);a=true}if(o.parentMenu){o.getEl().setZIndex(parseInt(o.parentMenu.getEl().getStyle("z-index"),10)+3);o.parentMenu.activeChild=o}else{if(p&&!p.isDestroyed&&p.isVisible()){o.getEl().setZIndex(parseInt(p.getEl().getStyle("z-index"),10)+3)}}}function c(o){if(o.activeChild){o.activeChild.hide()}if(o.autoHideTimer){clearTimeout(o.autoHideTimer);delete o.autoHideTimer}}function i(o){var p=o.parentMenu;if(!p&&!o.allowOtherMenus){j()}else{if(p&&p.activeChild){p.activeChild.hide()}}}function m(o){if(l.getElapsed()>50&&e.length>0&&!o.getTarget(".x-menu")){j()}}return{hideAll:function(){return j()},register:function(o){if(!h){n()}h[o.id]=o;o.on({beforehide:c,hide:g,beforeshow:i,show:k})},get:function(o){if(typeof o=="string"){if(!h){return null}return h[o]}else{if(o.events){return o}else{if(typeof o.length=="number"){return new Ext.menu.Menu({items:o})}else{return Ext.create(o,"menu")}}}},unregister:function(o){delete h[o.id];o.un("beforehide",c);o.un("hide",g);o.un("beforeshow",i);o.un("show",k)},registerCheckable:function(o){var p=o.group;if(p){if(!d[p]){d[p]=[]}d[p].push(o)}},unregisterCheckable:function(o){var p=o.group;if(p){d[p].remove(o)}},onCheckChange:function(q,r){if(q.group&&r){var t=d[q.group],p=0,o=t.length,s;for(;p',' target="{hrefTarget}"',"",">",'{altText}','{text}',"")}var c=this.getTemplateArgs();this.el=b?this.itemTpl.insertBefore(b,c,true):this.itemTpl.append(d,c,true);this.iconEl=this.el.child("img.x-menu-item-icon");this.textEl=this.el.child(".x-menu-item-text");if(!this.href){this.mon(this.el,"click",Ext.emptyFn,null,{preventDefault:true})}Ext.menu.Item.superclass.onRender.call(this,d,b)},getTemplateArgs:function(){return{id:this.id,cls:this.itemCls+(this.menu?" x-menu-item-arrow":"")+(this.cls?" "+this.cls:""),href:this.href||"#",hrefTarget:this.hrefTarget,icon:this.icon||Ext.BLANK_IMAGE_URL,iconCls:this.iconCls||"",text:this.itemText||this.text||" ",altText:this.altText||""}},setText:function(a){this.text=a||" ";if(this.rendered){this.textEl.update(this.text);this.parentMenu.layout.doAutoSize()}},setIconClass:function(a){var b=this.iconCls;this.iconCls=a;if(this.rendered){this.iconEl.replaceClass(b,this.iconCls)}},beforeDestroy:function(){clearTimeout(this.showTimer);clearTimeout(this.hideTimer);if(this.menu){delete this.menu.ownerCt;this.menu.destroy()}Ext.menu.Item.superclass.beforeDestroy.call(this)},handleClick:function(a){if(!this.href){a.stopEvent()}Ext.menu.Item.superclass.handleClick.apply(this,arguments)},activate:function(a){if(Ext.menu.Item.superclass.activate.apply(this,arguments)){this.focus();if(a){this.expandMenu()}}return true},shouldDeactivate:function(a){if(Ext.menu.Item.superclass.shouldDeactivate.call(this,a)){if(this.menu&&this.menu.isVisible()){return !this.menu.getEl().getRegion().contains(a.getPoint())}return true}return false},deactivate:function(){Ext.menu.Item.superclass.deactivate.apply(this,arguments);this.hideMenu()},expandMenu:function(a){if(!this.disabled&&this.menu){clearTimeout(this.hideTimer);delete this.hideTimer;if(!this.menu.isVisible()&&!this.showTimer){this.showTimer=this.deferExpand.defer(this.showDelay,this,[a])}else{if(this.menu.isVisible()&&a){this.menu.tryActivate(0,1)}}}},deferExpand:function(a){delete this.showTimer;this.menu.show(this.container,this.parentMenu.subMenuAlign||"tl-tr?",this.parentMenu);if(a){this.menu.tryActivate(0,1)}},hideMenu:function(){clearTimeout(this.showTimer);delete this.showTimer;if(!this.hideTimer&&this.menu&&this.menu.isVisible()){this.hideTimer=this.deferHide.defer(this.hideDelay,this)}},deferHide:function(){delete this.hideTimer;if(this.menu.over){this.parentMenu.setActiveItem(this,false)}else{this.menu.hide()}}});Ext.reg("menuitem",Ext.menu.Item);Ext.menu.CheckItem=Ext.extend(Ext.menu.Item,{itemCls:"x-menu-item x-menu-check-item",groupClass:"x-menu-group-item",checked:false,ctype:"Ext.menu.CheckItem",initComponent:function(){Ext.menu.CheckItem.superclass.initComponent.call(this);this.addEvents("beforecheckchange","checkchange");if(this.checkHandler){this.on("checkchange",this.checkHandler,this.scope)}Ext.menu.MenuMgr.registerCheckable(this)},onRender:function(a){Ext.menu.CheckItem.superclass.onRender.apply(this,arguments);if(this.group){this.el.addClass(this.groupClass)}if(this.checked){this.checked=false;this.setChecked(true,true)}},destroy:function(){Ext.menu.MenuMgr.unregisterCheckable(this);Ext.menu.CheckItem.superclass.destroy.apply(this,arguments)},setChecked:function(b,a){var c=a===true;if(this.checked!=b&&(c||this.fireEvent("beforecheckchange",this,b)!==false)){Ext.menu.MenuMgr.onCheckChange(this,b);if(this.container){this.container[b?"addClass":"removeClass"]("x-menu-item-checked")}this.checked=b;if(!c){this.fireEvent("checkchange",this,b)}}},handleClick:function(a){if(!this.disabled&&!(this.checked&&this.group)){this.setChecked(!this.checked)}Ext.menu.CheckItem.superclass.handleClick.apply(this,arguments)}});Ext.reg("menucheckitem",Ext.menu.CheckItem);Ext.menu.DateMenu=Ext.extend(Ext.menu.Menu,{enableScrolling:false,hideOnClick:true,pickerId:null,cls:"x-date-menu",initComponent:function(){this.on("beforeshow",this.onBeforeShow,this);if(this.strict=(Ext.isIE7&&Ext.isStrict)){this.on("show",this.onShow,this,{single:true,delay:20})}Ext.apply(this,{plain:true,showSeparator:false,items:this.picker=new Ext.DatePicker(Ext.applyIf({internalRender:this.strict||!Ext.isIE9m,ctCls:"x-menu-date-item",id:this.pickerId},this.initialConfig))});this.picker.purgeListeners();Ext.menu.DateMenu.superclass.initComponent.call(this);this.relayEvents(this.picker,["select"]);this.on("show",this.picker.focus,this.picker);this.on("select",this.menuHide,this);if(this.handler){this.on("select",this.handler,this.scope||this)}},menuHide:function(){if(this.hideOnClick){this.hide(true)}},onBeforeShow:function(){if(this.picker){this.picker.hideMonthPicker(true)}},onShow:function(){var a=this.picker.getEl();a.setWidth(a.getWidth())}});Ext.reg("datemenu",Ext.menu.DateMenu);Ext.menu.ColorMenu=Ext.extend(Ext.menu.Menu,{enableScrolling:false,hideOnClick:true,cls:"x-color-menu",paletteId:null,initComponent:function(){Ext.apply(this,{plain:true,showSeparator:false,items:this.palette=new Ext.ColorPalette(Ext.applyIf({id:this.paletteId},this.initialConfig))});this.palette.purgeListeners();Ext.menu.ColorMenu.superclass.initComponent.call(this);this.relayEvents(this.palette,["select"]);this.on("select",this.menuHide,this);if(this.handler){this.on("select",this.handler,this.scope||this)}},menuHide:function(){if(this.hideOnClick){this.hide(true)}}});Ext.reg("colormenu",Ext.menu.ColorMenu);Ext.form.Field=Ext.extend(Ext.BoxComponent,{invalidClass:"x-form-invalid",invalidText:"The value in this field is invalid",focusClass:"x-form-focus",validationEvent:"keyup",validateOnBlur:true,validationDelay:250,defaultAutoCreate:{tag:"input",type:"text",size:"20",autocomplete:"off"},fieldClass:"x-form-field",msgTarget:"qtip",msgFx:"normal",readOnly:false,disabled:false,submitValue:true,isFormField:true,msgDisplay:"",hasFocus:false,initComponent:function(){Ext.form.Field.superclass.initComponent.call(this);this.addEvents("focus","blur","specialkey","change","invalid","valid")},getName:function(){return this.rendered&&this.el.dom.name?this.el.dom.name:this.name||this.id||""},onRender:function(c,a){if(!this.el){var b=this.getAutoCreate();if(!b.name){b.name=this.name||this.id}if(this.inputType){b.type=this.inputType}this.autoEl=b}Ext.form.Field.superclass.onRender.call(this,c,a);if(this.submitValue===false){this.el.dom.removeAttribute("name")}var d=this.el.dom.type;if(d){if(d=="password"){d="text"}this.el.addClass("x-form-"+d)}if(this.readOnly){this.setReadOnly(true)}if(this.tabIndex!==undefined){this.el.dom.setAttribute("tabIndex",this.tabIndex)}this.el.addClass([this.fieldClass,this.cls])},getItemCt:function(){return this.itemCt},initValue:function(){if(this.value!==undefined){this.setValue(this.value)}else{if(!Ext.isEmpty(this.el.dom.value)&&this.el.dom.value!=this.emptyText){this.setValue(this.el.dom.value)}}this.originalValue=this.getValue()},isDirty:function(){if(this.disabled||!this.rendered){return false}return String(this.getValue())!==String(this.originalValue)},setReadOnly:function(a){if(this.rendered){this.el.dom.readOnly=a}this.readOnly=a},afterRender:function(){Ext.form.Field.superclass.afterRender.call(this);this.initEvents();this.initValue()},fireKey:function(a){if(a.isSpecialKey()){this.fireEvent("specialkey",this,a)}},reset:function(){this.setValue(this.originalValue);this.clearInvalid()},initEvents:function(){this.mon(this.el,Ext.EventManager.getKeyEvent(),this.fireKey,this);this.mon(this.el,"focus",this.onFocus,this);this.mon(this.el,"blur",this.onBlur,this,this.inEditor?{buffer:10}:null)},preFocus:Ext.emptyFn,onFocus:function(){this.preFocus();if(this.focusClass){this.el.addClass(this.focusClass)}if(!this.hasFocus){this.hasFocus=true;this.startValue=this.getValue();this.fireEvent("focus",this)}},beforeBlur:Ext.emptyFn,onBlur:function(){this.beforeBlur();if(this.focusClass){this.el.removeClass(this.focusClass)}this.hasFocus=false;if(this.validationEvent!==false&&(this.validateOnBlur||this.validationEvent=="blur")){this.validate()}var a=this.getValue();if(String(a)!==String(this.startValue)){this.fireEvent("change",this,a,this.startValue)}this.fireEvent("blur",this);this.postBlur()},postBlur:Ext.emptyFn,isValid:function(a){if(this.disabled){return true}var c=this.preventMark;this.preventMark=a===true;var b=this.validateValue(this.processValue(this.getRawValue()),a);this.preventMark=c;return b},validate:function(){if(this.disabled||this.validateValue(this.processValue(this.getRawValue()))){this.clearInvalid();return true}return false},processValue:function(a){return a},validateValue:function(b){var a=this.getErrors(b)[0];if(a==undefined){return true}else{this.markInvalid(a);return false}},getErrors:function(){return[]},getActiveError:function(){return this.activeError||""},markInvalid:function(c){if(this.rendered&&!this.preventMark){c=c||this.invalidText;var a=this.getMessageHandler();if(a){a.mark(this,c)}else{if(this.msgTarget){this.el.addClass(this.invalidClass);var b=Ext.getDom(this.msgTarget);if(b){b.innerHTML=c;b.style.display=this.msgDisplay}}}}this.setActiveError(c)},clearInvalid:function(){if(this.rendered&&!this.preventMark){this.el.removeClass(this.invalidClass);var a=this.getMessageHandler();if(a){a.clear(this)}else{if(this.msgTarget){this.el.removeClass(this.invalidClass);var b=Ext.getDom(this.msgTarget);if(b){b.innerHTML="";b.style.display="none"}}}}this.unsetActiveError()},setActiveError:function(b,a){this.activeError=b;if(a!==true){this.fireEvent("invalid",this,b)}},unsetActiveError:function(a){delete this.activeError;if(a!==true){this.fireEvent("valid",this)}},getMessageHandler:function(){return Ext.form.MessageTargets[this.msgTarget]},getErrorCt:function(){return this.el.findParent(".x-form-element",5,true)||this.el.findParent(".x-form-field-wrap",5,true)},alignErrorEl:function(){this.errorEl.setWidth(this.getErrorCt().getWidth(true)-20)},alignErrorIcon:function(){this.errorIcon.alignTo(this.el,"tl-tr",[2,0])},getRawValue:function(){var a=this.rendered?this.el.getValue():Ext.value(this.value,"");if(a===this.emptyText){a=""}return a},getValue:function(){if(!this.rendered){return this.value}var a=this.el.getValue();if(a===this.emptyText||a===undefined){a=""}return a},setRawValue:function(a){return this.rendered?(this.el.dom.value=(Ext.isEmpty(a)?"":a)):""},setValue:function(a){this.value=a;if(this.rendered){this.el.dom.value=(Ext.isEmpty(a)?"":a);this.validate()}return this},append:function(a){this.setValue([this.getValue(),a].join(""))}});Ext.form.MessageTargets={qtip:{mark:function(a,b){a.el.addClass(a.invalidClass);a.el.dom.qtip=b;a.el.dom.qclass="x-form-invalid-tip";if(Ext.QuickTips){Ext.QuickTips.enable()}},clear:function(a){a.el.removeClass(a.invalidClass);a.el.dom.qtip=""}},title:{mark:function(a,b){a.el.addClass(a.invalidClass);a.el.dom.title=b},clear:function(a){a.el.dom.title=""}},under:{mark:function(b,c){b.el.addClass(b.invalidClass);if(!b.errorEl){var a=b.getErrorCt();if(!a){b.el.dom.title=c;return}b.errorEl=a.createChild({cls:"x-form-invalid-msg"});b.on("resize",b.alignErrorEl,b);b.on("destroy",function(){Ext.destroy(this.errorEl)},b)}b.alignErrorEl();b.errorEl.update(c);Ext.form.Field.msgFx[b.msgFx].show(b.errorEl,b)},clear:function(a){a.el.removeClass(a.invalidClass);if(a.errorEl){Ext.form.Field.msgFx[a.msgFx].hide(a.errorEl,a)}else{a.el.dom.title=""}}},side:{mark:function(b,c){b.el.addClass(b.invalidClass);if(!b.errorIcon){var a=b.getErrorCt();if(!a){b.el.dom.title=c;return}b.errorIcon=a.createChild({cls:"x-form-invalid-icon"});if(b.ownerCt){b.ownerCt.on("afterlayout",b.alignErrorIcon,b);b.ownerCt.on("expand",b.alignErrorIcon,b)}b.on("resize",b.alignErrorIcon,b);b.on("destroy",function(){Ext.destroy(this.errorIcon)},b)}b.alignErrorIcon();b.errorIcon.dom.qtip=c;b.errorIcon.dom.qclass="x-form-invalid-tip";b.errorIcon.show()},clear:function(a){a.el.removeClass(a.invalidClass);if(a.errorIcon){a.errorIcon.dom.qtip="";a.errorIcon.hide()}else{a.el.dom.title=""}}}};Ext.form.Field.msgFx={normal:{show:function(a,b){a.setDisplayed("block")},hide:function(a,b){a.setDisplayed(false).update("")}},slide:{show:function(a,b){a.slideIn("t",{stopFx:true})},hide:function(a,b){a.slideOut("t",{stopFx:true,useDisplay:true})}},slideRight:{show:function(a,b){a.fixDisplay();a.alignTo(b.el,"tl-tr");a.slideIn("l",{stopFx:true})},hide:function(a,b){a.slideOut("l",{stopFx:true,useDisplay:true})}}};Ext.reg("field",Ext.form.Field);Ext.form.TextField=Ext.extend(Ext.form.Field,{grow:false,growMin:30,growMax:800,vtype:null,maskRe:null,disableKeyFilter:false,allowBlank:true,minLength:0,maxLength:Number.MAX_VALUE,minLengthText:"The minimum length for this field is {0}",maxLengthText:"The maximum length for this field is {0}",selectOnFocus:false,blankText:"This field is required",validator:null,regex:null,regexText:"",emptyText:null,emptyClass:"x-form-empty-field",initComponent:function(){Ext.form.TextField.superclass.initComponent.call(this);this.addEvents("autosize","keydown","keyup","keypress")},initEvents:function(){Ext.form.TextField.superclass.initEvents.call(this);if(this.validationEvent=="keyup"){this.validationTask=new Ext.util.DelayedTask(this.validate,this);this.mon(this.el,"keyup",this.filterValidation,this)}else{if(this.validationEvent!==false&&this.validationEvent!="blur"){this.mon(this.el,this.validationEvent,this.validate,this,{buffer:this.validationDelay})}}if(this.selectOnFocus||this.emptyText){this.mon(this.el,"mousedown",this.onMouseDown,this);if(this.emptyText){this.applyEmptyText()}}if(this.maskRe||(this.vtype&&this.disableKeyFilter!==true&&(this.maskRe=Ext.form.VTypes[this.vtype+"Mask"]))){this.mon(this.el,"keypress",this.filterKeys,this)}if(this.grow){this.mon(this.el,"keyup",this.onKeyUpBuffered,this,{buffer:50});this.mon(this.el,"click",this.autoSize,this)}if(this.enableKeyEvents){this.mon(this.el,{scope:this,keyup:this.onKeyUp,keydown:this.onKeyDown,keypress:this.onKeyPress})}},onMouseDown:function(a){if(!this.hasFocus){this.mon(this.el,"mouseup",Ext.emptyFn,this,{single:true,preventDefault:true})}},processValue:function(a){if(this.stripCharsRe){var b=a.replace(this.stripCharsRe,"");if(b!==a){this.setRawValue(b);return b}}return a},filterValidation:function(a){if(!a.isNavKeyPress()){this.validationTask.delay(this.validationDelay)}},onDisable:function(){Ext.form.TextField.superclass.onDisable.call(this);if(Ext.isIE){this.el.dom.unselectable="on"}},onEnable:function(){Ext.form.TextField.superclass.onEnable.call(this);if(Ext.isIE){this.el.dom.unselectable=""}},onKeyUpBuffered:function(a){if(this.doAutoSize(a)){this.autoSize()}},doAutoSize:function(a){return !a.isNavKeyPress()},onKeyUp:function(a){this.fireEvent("keyup",this,a)},onKeyDown:function(a){this.fireEvent("keydown",this,a)},onKeyPress:function(a){this.fireEvent("keypress",this,a)},reset:function(){Ext.form.TextField.superclass.reset.call(this);this.applyEmptyText()},applyEmptyText:function(){if(this.rendered&&this.emptyText&&this.getRawValue().length<1&&!this.hasFocus){this.setRawValue(this.emptyText);this.el.addClass(this.emptyClass)}},preFocus:function(){var a=this.el,b;if(this.emptyText){if(a.dom.value==this.emptyText){this.setRawValue("");b=true}a.removeClass(this.emptyClass)}if(this.selectOnFocus||b){a.dom.select()}},postBlur:function(){this.applyEmptyText()},filterKeys:function(b){if(b.ctrlKey){return}var a=b.getKey();if(Ext.isGecko&&(b.isNavKeyPress()||a==b.BACKSPACE||(a==b.DELETE&&b.button==-1))){return}var c=String.fromCharCode(b.getCharCode());if(!Ext.isGecko&&b.isSpecialKey()&&!c){return}if(!this.maskRe.test(c)){b.stopEvent()}},setValue:function(a){if(this.emptyText&&this.el&&!Ext.isEmpty(a)){this.el.removeClass(this.emptyClass)}Ext.form.TextField.superclass.setValue.apply(this,arguments);this.applyEmptyText();this.autoSize();return this},getErrors:function(a){var d=Ext.form.TextField.superclass.getErrors.apply(this,arguments);a=Ext.isDefined(a)?a:this.processValue(this.getRawValue());if(Ext.isFunction(this.validator)){var c=this.validator(a);if(c!==true){d.push(c)}}if(a.length<1||a===this.emptyText){if(this.allowBlank){return d}else{d.push(this.blankText)}}if(!this.allowBlank&&(a.length<1||a===this.emptyText)){d.push(this.blankText)}if(a.lengththis.maxLength){d.push(String.format(this.maxLengthText,this.maxLength))}if(this.vtype){var b=Ext.form.VTypes;if(!b[this.vtype](a,this)){d.push(this.vtypeText||b[this.vtype+"Text"])}}if(this.regex&&!this.regex.test(a)){d.push(this.regexText)}return d},selectText:function(h,a){var c=this.getRawValue();var e=false;if(c.length>0){h=h===undefined?0:h;a=a===undefined?c.length:a;var g=this.el.dom;if(g.setSelectionRange){g.setSelectionRange(h,a)}else{if(g.createTextRange){var b=g.createTextRange();b.moveStart("character",h);b.moveEnd("character",a-c.length);b.select()}}e=Ext.isGecko||Ext.isOpera}else{e=true}if(e){this.focus()}},autoSize:function(){if(!this.grow||!this.rendered){return}if(!this.metrics){this.metrics=Ext.util.TextMetrics.createInstance(this.el)}var c=this.el;var b=c.dom.value;var e=document.createElement("div");e.appendChild(document.createTextNode(b));b=e.innerHTML;Ext.removeNode(e);e=null;b+=" ";var a=Math.min(this.growMax,Math.max(this.metrics.getWidth(b)+10,this.growMin));this.el.setWidth(a);this.fireEvent("autosize",this,a)},onDestroy:function(){if(this.validationTask){this.validationTask.cancel();this.validationTask=null}Ext.form.TextField.superclass.onDestroy.call(this)}});Ext.reg("textfield",Ext.form.TextField);Ext.form.TriggerField=Ext.extend(Ext.form.TextField,{defaultAutoCreate:{tag:"input",type:"text",size:"16",autocomplete:"off"},hideTrigger:false,editable:true,readOnly:false,wrapFocusClass:"x-trigger-wrap-focus",autoSize:Ext.emptyFn,monitorTab:true,deferHeight:true,mimicing:false,actionMode:"wrap",defaultTriggerWidth:17,onResize:function(a,c){Ext.form.TriggerField.superclass.onResize.call(this,a,c);var b=this.getTriggerWidth();if(Ext.isNumber(a)){this.el.setWidth(a-b)}this.wrap.setWidth(this.el.getWidth()+b)},getTriggerWidth:function(){var a=this.trigger.getWidth();if(!this.hideTrigger&&!this.readOnly&&a===0){a=this.defaultTriggerWidth}return a},alignErrorIcon:function(){if(this.wrap){this.errorIcon.alignTo(this.wrap,"tl-tr",[2,0])}},onRender:function(b,a){this.doc=Ext.isIE?Ext.getBody():Ext.getDoc();Ext.form.TriggerField.superclass.onRender.call(this,b,a);this.wrap=this.el.wrap({cls:"x-form-field-wrap x-form-field-trigger-wrap"});this.trigger=this.wrap.createChild(this.triggerConfig||{tag:"img",src:Ext.BLANK_IMAGE_URL,alt:"",cls:"x-form-trigger "+this.triggerClass});this.initTrigger();if(!this.width){this.wrap.setWidth(this.el.getWidth()+this.trigger.getWidth())}this.resizeEl=this.positionEl=this.wrap},getWidth:function(){return(this.el.getWidth()+this.trigger.getWidth())},updateEditState:function(){if(this.rendered){if(this.readOnly){this.el.dom.readOnly=true;this.el.addClass("x-trigger-noedit");this.mun(this.el,"click",this.onTriggerClick,this);this.trigger.setDisplayed(false)}else{if(!this.editable){this.el.dom.readOnly=true;this.el.addClass("x-trigger-noedit");this.mon(this.el,"click",this.onTriggerClick,this)}else{this.el.dom.readOnly=false;this.el.removeClass("x-trigger-noedit");this.mun(this.el,"click",this.onTriggerClick,this)}this.trigger.setDisplayed(!this.hideTrigger)}this.onResize(this.width||this.wrap.getWidth())}},setHideTrigger:function(a){if(a!=this.hideTrigger){this.hideTrigger=a;this.updateEditState()}},setEditable:function(a){if(a!=this.editable){this.editable=a;this.updateEditState()}},setReadOnly:function(a){if(a!=this.readOnly){this.readOnly=a;this.updateEditState()}},afterRender:function(){Ext.form.TriggerField.superclass.afterRender.call(this);this.updateEditState()},initTrigger:function(){this.mon(this.trigger,"click",this.onTriggerClick,this,{preventDefault:true});this.trigger.addClassOnOver("x-form-trigger-over");this.trigger.addClassOnClick("x-form-trigger-click")},onDestroy:function(){Ext.destroy(this.trigger,this.wrap);if(this.mimicing){this.doc.un("mousedown",this.mimicBlur,this)}delete this.doc;Ext.form.TriggerField.superclass.onDestroy.call(this)},onFocus:function(){Ext.form.TriggerField.superclass.onFocus.call(this);if(!this.mimicing){this.wrap.addClass(this.wrapFocusClass);this.mimicing=true;this.doc.on("mousedown",this.mimicBlur,this,{delay:10});if(this.monitorTab){this.on("specialkey",this.checkTab,this)}}},checkTab:function(a,b){if(b.getKey()==b.TAB){this.triggerBlur()}},onBlur:Ext.emptyFn,mimicBlur:function(a){if(!this.isDestroyed&&!this.wrap.contains(a.target)&&this.validateBlur(a)){this.triggerBlur()}},triggerBlur:function(){this.mimicing=false;this.doc.un("mousedown",this.mimicBlur,this);if(this.monitorTab&&this.el){this.un("specialkey",this.checkTab,this)}Ext.form.TriggerField.superclass.onBlur.call(this);if(this.wrap){this.wrap.removeClass(this.wrapFocusClass)}},beforeBlur:Ext.emptyFn,validateBlur:function(a){return true},onTriggerClick:Ext.emptyFn});Ext.form.TwinTriggerField=Ext.extend(Ext.form.TriggerField,{initComponent:function(){Ext.form.TwinTriggerField.superclass.initComponent.call(this);this.triggerConfig={tag:"span",cls:"x-form-twin-triggers",cn:[{tag:"img",src:Ext.BLANK_IMAGE_URL,alt:"",cls:"x-form-trigger "+this.trigger1Class},{tag:"img",src:Ext.BLANK_IMAGE_URL,alt:"",cls:"x-form-trigger "+this.trigger2Class}]}},getTrigger:function(a){return this.triggers[a]},afterRender:function(){Ext.form.TwinTriggerField.superclass.afterRender.call(this);var c=this.triggers,b=0,a=c.length;for(;b")}}d.innerHTML=a;b=Math.min(this.growMax,Math.max(d.offsetHeight,this.growMin));if(b!=this.lastHeight){this.lastHeight=b;this.el.setHeight(b);this.fireEvent("autosize",this,b)}}});Ext.reg("textarea",Ext.form.TextArea);Ext.form.NumberField=Ext.extend(Ext.form.TextField,{fieldClass:"x-form-field x-form-num-field",allowDecimals:true,decimalSeparator:".",decimalPrecision:2,allowNegative:true,minValue:Number.NEGATIVE_INFINITY,maxValue:Number.MAX_VALUE,minText:"The minimum value for this field is {0}",maxText:"The maximum value for this field is {0}",nanText:"{0} is not a valid number",baseChars:"0123456789",autoStripChars:false,initEvents:function(){var a=this.baseChars+"";if(this.allowDecimals){a+=this.decimalSeparator}if(this.allowNegative){a+="-"}a=Ext.escapeRe(a);this.maskRe=new RegExp("["+a+"]");if(this.autoStripChars){this.stripCharsRe=new RegExp("[^"+a+"]","gi")}Ext.form.NumberField.superclass.initEvents.call(this)},getErrors:function(b){var c=Ext.form.NumberField.superclass.getErrors.apply(this,arguments);b=Ext.isDefined(b)?b:this.processValue(this.getRawValue());if(b.length<1){return c}b=String(b).replace(this.decimalSeparator,".");if(isNaN(b)){c.push(String.format(this.nanText,b))}var a=this.parseValue(b);if(athis.maxValue){c.push(String.format(this.maxText,this.maxValue))}return c},getValue:function(){return this.fixPrecision(this.parseValue(Ext.form.NumberField.superclass.getValue.call(this)))},setValue:function(a){a=Ext.isNumber(a)?a:parseFloat(String(a).replace(this.decimalSeparator,"."));a=this.fixPrecision(a);a=isNaN(a)?"":String(a).replace(".",this.decimalSeparator);return Ext.form.NumberField.superclass.setValue.call(this,a)},setMinValue:function(a){this.minValue=Ext.num(a,Number.NEGATIVE_INFINITY)},setMaxValue:function(a){this.maxValue=Ext.num(a,Number.MAX_VALUE)},parseValue:function(a){a=parseFloat(String(a).replace(this.decimalSeparator,"."));return isNaN(a)?"":a},fixPrecision:function(b){var a=isNaN(b);if(!this.allowDecimals||this.decimalPrecision==-1||a||!b){return a?"":b}return parseFloat(parseFloat(b).toFixed(this.decimalPrecision))},beforeBlur:function(){var a=this.parseValue(this.getRawValue());if(!Ext.isEmpty(a)){this.setValue(a)}}});Ext.reg("numberfield",Ext.form.NumberField);Ext.form.DateField=Ext.extend(Ext.form.TriggerField,{format:"m/d/Y",altFormats:"m/d/Y|n/j/Y|n/j/y|m/j/y|n/d/y|m/j/Y|n/d/Y|m-d-y|m-d-Y|m/d|m-d|md|mdy|mdY|d|Y-m-d|n-j|n/j",disabledDaysText:"Disabled",disabledDatesText:"Disabled",minText:"The date in this field must be equal to or after {0}",maxText:"The date in this field must be equal to or before {0}",invalidText:"{0} is not a valid date - it must be in the format {1}",triggerClass:"x-form-date-trigger",showToday:true,startDay:0,defaultAutoCreate:{tag:"input",type:"text",size:"10",autocomplete:"off"},initTime:"12",initTimeFormat:"H",safeParse:function(b,c){if(Date.formatContainsHourInfo(c)){return Date.parseDate(b,c)}else{var a=Date.parseDate(b+" "+this.initTime,c+" "+this.initTimeFormat);if(a){return a.clearTime()}}},initComponent:function(){Ext.form.DateField.superclass.initComponent.call(this);this.addEvents("select");if(Ext.isString(this.minValue)){this.minValue=this.parseDate(this.minValue)}if(Ext.isString(this.maxValue)){this.maxValue=this.parseDate(this.maxValue)}this.disabledDatesRE=null;this.initDisabledDays()},initEvents:function(){Ext.form.DateField.superclass.initEvents.call(this);this.keyNav=new Ext.KeyNav(this.el,{down:function(a){this.onTriggerClick()},scope:this,forceKeyDown:true})},initDisabledDays:function(){if(this.disabledDates){var b=this.disabledDates,a=b.length-1,c="(?:";Ext.each(b,function(g,e){c+=Ext.isDate(g)?"^"+Ext.escapeRe(g.dateFormat(this.format))+"$":b[e];if(e!=a){c+="|"}},this);this.disabledDatesRE=new RegExp(c+")")}},setDisabledDates:function(a){this.disabledDates=a;this.initDisabledDays();if(this.menu){this.menu.picker.setDisabledDates(this.disabledDatesRE)}},setDisabledDays:function(a){this.disabledDays=a;if(this.menu){this.menu.picker.setDisabledDays(a)}},setMinValue:function(a){this.minValue=(Ext.isString(a)?this.parseDate(a):a);if(this.menu){this.menu.picker.setMinDate(this.minValue)}},setMaxValue:function(a){this.maxValue=(Ext.isString(a)?this.parseDate(a):a);if(this.menu){this.menu.picker.setMaxDate(this.maxValue)}},getErrors:function(e){var h=Ext.form.DateField.superclass.getErrors.apply(this,arguments);e=this.formatDate(e||this.processValue(this.getRawValue()));if(e.length<1){return h}var c=e;e=this.parseDate(e);if(!e){h.push(String.format(this.invalidText,c,this.format));return h}var g=e.getTime();if(this.minValue&&gthis.maxValue.clearTime().getTime()){h.push(String.format(this.maxText,this.formatDate(this.maxValue)))}if(this.disabledDays){var a=e.getDay();for(var b=0;b
    {'+this.displayField+"}
    "}this.view=new Ext.DataView({applyTo:this.innerList,tpl:this.tpl,singleSelect:true,selectedClass:this.selectedClass,itemSelector:this.itemSelector||"."+a+"-item",emptyText:this.listEmptyText,deferEmptyText:false});this.mon(this.view,{containerclick:this.onViewClick,click:this.onViewClick,scope:this});this.bindStore(this.store,true);if(this.resizable){this.resizer=new Ext.Resizable(this.list,{pinned:true,handles:"se"});this.mon(this.resizer,"resize",function(g,d,e){this.maxHeight=e-this.handleHeight-this.list.getFrameWidth("tb")-this.assetHeight;this.listWidth=d;this.innerList.setWidth(d-this.list.getFrameWidth("lr"));this.restrictHeight()},this);this[this.pageSize?"footer":"innerList"].setStyle("margin-bottom",this.handleHeight+"px")}}},getListParent:function(){return document.body},getStore:function(){return this.store},bindStore:function(a,b){if(this.store&&!b){if(this.store!==a&&this.store.autoDestroy){this.store.destroy()}else{this.store.un("beforeload",this.onBeforeLoad,this);this.store.un("load",this.onLoad,this);this.store.un("exception",this.collapse,this)}if(!a){this.store=null;if(this.view){this.view.bindStore(null)}if(this.pageTb){this.pageTb.bindStore(null)}}}if(a){if(!b){this.lastQuery=null;if(this.pageTb){this.pageTb.bindStore(a)}}this.store=Ext.StoreMgr.lookup(a);this.store.on({scope:this,beforeload:this.onBeforeLoad,load:this.onLoad,exception:this.collapse});if(this.view){this.view.bindStore(a)}}},reset:function(){if(this.clearFilterOnReset&&this.mode=="local"){this.store.clearFilter()}Ext.form.ComboBox.superclass.reset.call(this)},initEvents:function(){Ext.form.ComboBox.superclass.initEvents.call(this);this.keyNav=new Ext.KeyNav(this.el,{up:function(a){this.inKeyMode=true;this.selectPrev()},down:function(a){if(!this.isExpanded()){this.onTriggerClick()}else{this.inKeyMode=true;this.selectNext()}},enter:function(a){this.onViewClick()},esc:function(a){this.collapse()},tab:function(a){if(this.forceSelection===true){this.collapse()}else{this.onViewClick(false)}return true},scope:this,doRelay:function(c,b,a){if(a=="down"||this.scope.isExpanded()){var d=Ext.KeyNav.prototype.doRelay.apply(this,arguments);if((((Ext.isIE9&&Ext.isStrict)||Ext.isIE10p)||!Ext.isIE)&&Ext.EventManager.useKeydown){this.scope.fireKey(c)}return d}return true},forceKeyDown:true,defaultEventAction:"stopEvent"});this.queryDelay=Math.max(this.queryDelay||10,this.mode=="local"?10:250);this.dqTask=new Ext.util.DelayedTask(this.initQuery,this);if(this.typeAhead){this.taTask=new Ext.util.DelayedTask(this.onTypeAhead,this)}if(!this.enableKeyEvents){this.mon(this.el,"keyup",this.onKeyUp,this)}},onDestroy:function(){if(this.dqTask){this.dqTask.cancel();this.dqTask=null}this.bindStore(null);Ext.destroy(this.resizer,this.view,this.pageTb,this.list);Ext.destroyMembers(this,"hiddenField");Ext.form.ComboBox.superclass.onDestroy.call(this)},fireKey:function(a){if(!this.isExpanded()){Ext.form.ComboBox.superclass.fireKey.call(this,a)}},onResize:function(a,b){Ext.form.ComboBox.superclass.onResize.apply(this,arguments);if(!isNaN(a)&&this.isVisible()&&this.list){this.doResize(a)}else{this.bufferSize=a}},doResize:function(a){if(!Ext.isDefined(this.listWidth)){var b=Math.max(a,this.minListWidth);this.list.setWidth(b);this.innerList.setWidth(b-this.list.getFrameWidth("lr"))}},onEnable:function(){Ext.form.ComboBox.superclass.onEnable.apply(this,arguments);if(this.hiddenField){this.hiddenField.disabled=false}},onDisable:function(){Ext.form.ComboBox.superclass.onDisable.apply(this,arguments);if(this.hiddenField){this.hiddenField.disabled=true}},onBeforeLoad:function(){if(!this.hasFocus){return}this.innerList.update(this.loadingText?'
    '+this.loadingText+"
    ":"");this.restrictHeight();this.selectedIndex=-1},onLoad:function(){if(!this.hasFocus){return}if(this.store.getCount()>0||this.listEmptyText){this.expand();this.restrictHeight();if(this.lastQuery==this.allQuery){if(this.editable){this.el.dom.select()}if(this.autoSelect!==false&&!this.selectByValue(this.value,true)){this.select(0,true)}}else{if(this.autoSelect!==false){this.selectNext()}if(this.typeAhead&&this.lastKey!=Ext.EventObject.BACKSPACE&&this.lastKey!=Ext.EventObject.DELETE){this.taTask.delay(this.typeAheadDelay)}}}else{this.collapse()}},onTypeAhead:function(){if(this.store.getCount()>0){var b=this.store.getAt(0);var c=b.data[this.displayField];var a=c.length;var d=this.getRawValue().length;if(d!=a){this.setRawValue(c);this.selectText(d,c.length)}}},assertValue:function(){var b=this.getRawValue(),a;if(this.valueField&&Ext.isDefined(this.value)){a=this.findRecord(this.valueField,this.value)}if(!a||a.get(this.displayField)!=b){a=this.findRecord(this.displayField,b)}if(!a&&this.forceSelection){if(b.length>0&&b!=this.emptyText){this.el.dom.value=Ext.value(this.lastSelectionText,"");this.applyEmptyText()}else{this.clearValue()}}else{if(a&&this.valueField){if(this.value==b){return}b=a.get(this.valueField||this.displayField)}this.setValue(b)}},onSelect:function(a,b){if(this.fireEvent("beforeselect",this,a,b)!==false){this.setValue(a.data[this.valueField||this.displayField]);this.collapse();this.fireEvent("select",this,a,b)}},getName:function(){var a=this.hiddenField;return a&&a.name?a.name:this.hiddenName||Ext.form.ComboBox.superclass.getName.call(this)},getValue:function(){if(this.valueField){return Ext.isDefined(this.value)?this.value:""}else{return Ext.form.ComboBox.superclass.getValue.call(this)}},clearValue:function(){if(this.hiddenField){this.hiddenField.value=""}this.setRawValue("");this.lastSelectionText="";this.applyEmptyText();this.value=""},setValue:function(a){var c=a;if(this.valueField){var b=this.findRecord(this.valueField,a);if(b){c=b.data[this.displayField]}else{if(Ext.isDefined(this.valueNotFoundText)){c=this.valueNotFoundText}}}this.lastSelectionText=c;if(this.hiddenField){this.hiddenField.value=Ext.value(a,"")}Ext.form.ComboBox.superclass.setValue.call(this,c);this.value=a;return this},findRecord:function(c,b){var a;if(this.store.getCount()>0){this.store.each(function(d){if(d.data[c]==b){a=d;return false}})}return a},onViewMove:function(b,a){this.inKeyMode=false},onViewOver:function(d,b){if(this.inKeyMode){return}var c=this.view.findItemFromChild(b);if(c){var a=this.view.indexOf(c);this.select(a,false)}},onViewClick:function(b){var a=this.view.getSelectedIndexes()[0],c=this.store,d=c.getAt(a);if(d){this.onSelect(d,a)}else{this.collapse()}if(b!==false){this.el.focus()}},restrictHeight:function(){this.innerList.dom.style.height="";var b=this.innerList.dom,e=this.list.getFrameWidth("tb")+(this.resizable?this.handleHeight:0)+this.assetHeight,c=Math.max(b.clientHeight,b.offsetHeight,b.scrollHeight),a=this.getPosition()[1]-Ext.getBody().getScroll().top,g=Ext.lib.Dom.getViewHeight()-a-this.getSize().height,d=Math.max(a,g,this.minHeight||0)-this.list.shadowOffset-e-5;c=Math.min(c,d,this.maxHeight);this.innerList.setHeight(c);this.list.beginUpdate();this.list.setHeight(c+e);this.list.alignTo.apply(this.list,[this.el].concat(this.listAlign));this.list.endUpdate()},isExpanded:function(){return this.list&&this.list.isVisible()},selectByValue:function(a,c){if(!Ext.isEmpty(a,true)){var b=this.findRecord(this.valueField||this.displayField,a);if(b){this.select(this.store.indexOf(b),c);return true}}return false},select:function(a,c){this.selectedIndex=a;this.view.select(a);if(c!==false){var b=this.view.getNode(a);if(b){this.innerList.scrollChildIntoView(b,false)}}},selectNext:function(){var a=this.store.getCount();if(a>0){if(this.selectedIndex==-1){this.select(0)}else{if(this.selectedIndex0){if(this.selectedIndex==-1){this.select(0)}else{if(this.selectedIndex!==0){this.select(this.selectedIndex-1)}}}},onKeyUp:function(b){var a=b.getKey();if(this.editable!==false&&this.readOnly!==true&&(a==b.BACKSPACE||!b.isSpecialKey())){this.lastKey=a;this.dqTask.delay(this.queryDelay)}Ext.form.ComboBox.superclass.onKeyUp.call(this,b)},validateBlur:function(){return !this.list||!this.list.isVisible()},initQuery:function(){this.doQuery(this.getRawValue())},beforeBlur:function(){this.assertValue()},postBlur:function(){Ext.form.ComboBox.superclass.postBlur.call(this);this.collapse();this.inKeyMode=false},doQuery:function(c,b){c=Ext.isEmpty(c)?"":c;var a={query:c,forceAll:b,combo:this,cancel:false};if(this.fireEvent("beforequery",a)===false||a.cancel){return false}c=a.query;b=a.forceAll;if(b===true||(c.length>=this.minChars)){if(this.lastQuery!==c){this.lastQuery=c;if(this.mode=="local"){this.selectedIndex=-1;if(b){this.store.clearFilter()}else{this.store.filter(this.displayField,c)}this.onLoad()}else{this.store.baseParams[this.queryParam]=c;this.store.load({params:this.getParams(c)});this.expand()}}else{this.selectedIndex=-1;this.onLoad()}}},getParams:function(a){var b={},c=this.store.paramNames;if(this.pageSize){b[c.start]=0;b[c.limit]=this.pageSize}return b},collapse:function(){if(!this.isExpanded()){return}this.list.hide();Ext.getDoc().un("mousewheel",this.collapseIf,this);Ext.getDoc().un("mousedown",this.collapseIf,this);this.fireEvent("collapse",this)},collapseIf:function(a){if(!this.isDestroyed&&!a.within(this.wrap)&&!a.within(this.list)){this.collapse()}},expand:function(){if(this.isExpanded()||!this.hasFocus){return}if(this.title||this.pageSize){this.assetHeight=0;if(this.title){this.assetHeight+=this.header.getHeight()}if(this.pageSize){this.assetHeight+=this.footer.getHeight()}}if(this.bufferSize){this.doResize(this.bufferSize);delete this.bufferSize}this.list.alignTo.apply(this.list,[this.el].concat(this.listAlign));this.list.setZIndex(this.getZIndex());this.list.show();if(Ext.isGecko2){this.innerList.setOverflow("auto")}this.mon(Ext.getDoc(),{scope:this,mousewheel:this.collapseIf,mousedown:this.collapseIf});this.fireEvent("expand",this)},onTriggerClick:function(){if(this.readOnly||this.disabled){return}if(this.isExpanded()){this.collapse();this.el.focus()}else{this.onFocus({});if(this.triggerAction=="all"){this.doQuery(this.allQuery,true)}else{this.doQuery(this.getRawValue())}this.el.focus()}}});Ext.reg("combo",Ext.form.ComboBox);Ext.form.Checkbox=Ext.extend(Ext.form.Field,{focusClass:undefined,fieldClass:"x-form-field",checked:false,boxLabel:" ",defaultAutoCreate:{tag:"input",type:"checkbox",autocomplete:"off"},actionMode:"wrap",initComponent:function(){Ext.form.Checkbox.superclass.initComponent.call(this);this.addEvents("check")},onResize:function(){Ext.form.Checkbox.superclass.onResize.apply(this,arguments);if(!this.boxLabel&&!this.fieldLabel){this.el.alignTo(this.wrap,"c-c")}},initEvents:function(){Ext.form.Checkbox.superclass.initEvents.call(this);this.mon(this.el,{scope:this,click:this.onClick,change:this.onClick})},markInvalid:Ext.emptyFn,clearInvalid:Ext.emptyFn,onRender:function(b,a){Ext.form.Checkbox.superclass.onRender.call(this,b,a);if(this.inputValue!==undefined){this.el.dom.value=this.inputValue}this.wrap=this.el.wrap({cls:"x-form-check-wrap"});if(this.boxLabel){this.wrap.createChild({tag:"label",htmlFor:this.el.id,cls:"x-form-cb-label",html:this.boxLabel})}if(this.checked){this.setValue(true)}else{this.checked=this.el.dom.checked}if(Ext.isIEQuirks){this.wrap.repaint()}this.resizeEl=this.positionEl=this.wrap},onDestroy:function(){Ext.destroy(this.wrap);Ext.form.Checkbox.superclass.onDestroy.call(this)},initValue:function(){this.originalValue=this.getValue()},getValue:function(){if(this.rendered){return this.el.dom.checked}return this.checked},onClick:function(){if(this.el.dom.checked!=this.checked){this.setValue(this.el.dom.checked)}},setValue:function(a){var c=this.checked,b=this.inputValue;if(a===false){this.checked=false}else{this.checked=(a===true||a==="true"||a=="1"||(b?a==b:String(a).toLowerCase()=="on"))}if(this.rendered){this.el.dom.checked=this.checked;this.el.dom.defaultChecked=this.checked}if(c!=this.checked){this.fireEvent("check",this,this.checked);if(this.handler){this.handler.call(this.scope||this,this,this.checked)}}return this}});Ext.reg("checkbox",Ext.form.Checkbox);Ext.form.CheckboxGroup=Ext.extend(Ext.form.Field,{columns:"auto",vertical:false,allowBlank:true,blankText:"You must select at least one item in this group",defaultType:"checkbox",groupCls:"x-form-check-group",initComponent:function(){this.addEvents("change");this.on("change",this.validate,this);Ext.form.CheckboxGroup.superclass.initComponent.call(this)},onRender:function(j,g){if(!this.el){var p={autoEl:{id:this.id},cls:this.groupCls,layout:"column",renderTo:j,bufferResize:false};var a={xtype:"container",defaultType:this.defaultType,layout:"form",defaults:{hideLabel:true,anchor:"100%"}};if(this.items[0].items){Ext.apply(p,{layoutConfig:{columns:this.items.length},defaults:this.defaults,items:this.items});for(var e=0,m=this.items.length;e0&&e%r==0){o++}if(this.items[e].fieldLabel){this.items[e].hideLabel=false}n[o].items.push(this.items[e])}}else{for(var e=0,m=this.items.length;e-1){b.setValue(true)}})},getBox:function(b){var a=null;this.eachItem(function(c){if(b==c||c.dataIndex==b||c.id==b||c.getName()==b){a=c;return false}});return a},getValue:function(){var a=[];this.eachItem(function(b){if(b.checked){a.push(b)}});return a},eachItem:function(b,a){if(this.items&&this.items.each){this.items.each(b,a||this)}},getRawValue:Ext.emptyFn,setRawValue:Ext.emptyFn});Ext.reg("checkboxgroup",Ext.form.CheckboxGroup);Ext.form.CompositeField=Ext.extend(Ext.form.Field,{defaultMargins:"0 5 0 0",skipLastItemMargin:true,isComposite:true,combineErrors:true,labelConnector:", ",initComponent:function(){var g=[],b=this.items,e;for(var d=0,c=b.length;d")},sortErrors:function(){var a=this.items;this.fieldErrors.sort("ASC",function(g,d){var c=function(b){return function(i){return i.getName()==b}};var h=a.findIndexBy(c(g.field)),e=a.findIndexBy(c(d.field));return h1){var a=this.getBox(c);if(a){a.setValue(b);if(a.checked){this.eachItem(function(d){if(d!==a){d.setValue(false)}})}}}else{this.setValueForItem(c)}},setValueForItem:function(a){a=String(a).split(",")[0];this.eachItem(function(b){b.setValue(a==b.inputValue)})},fireChecked:function(){if(!this.checkTask){this.checkTask=new Ext.util.DelayedTask(this.bufferChecked,this)}this.checkTask.delay(10)},bufferChecked:function(){var a=null;this.eachItem(function(b){if(b.checked){a=b;return false}});this.fireEvent("change",this,a)},onDestroy:function(){if(this.checkTask){this.checkTask.cancel();this.checkTask=null}Ext.form.RadioGroup.superclass.onDestroy.call(this)}});Ext.reg("radiogroup",Ext.form.RadioGroup);Ext.form.Hidden=Ext.extend(Ext.form.Field,{inputType:"hidden",shouldLayout:false,onRender:function(){Ext.form.Hidden.superclass.onRender.apply(this,arguments)},initEvents:function(){this.originalValue=this.getValue()},setSize:Ext.emptyFn,setWidth:Ext.emptyFn,setHeight:Ext.emptyFn,setPosition:Ext.emptyFn,setPagePosition:Ext.emptyFn,markInvalid:Ext.emptyFn,clearInvalid:Ext.emptyFn});Ext.reg("hidden",Ext.form.Hidden);Ext.form.BasicForm=Ext.extend(Ext.util.Observable,{constructor:function(b,a){Ext.apply(this,a);if(Ext.isString(this.paramOrder)){this.paramOrder=this.paramOrder.split(/[\s,|]/)}this.items=new Ext.util.MixedCollection(false,function(c){return c.getItemId()});this.addEvents("beforeaction","actionfailed","actioncomplete");if(b){this.initEl(b)}Ext.form.BasicForm.superclass.constructor.call(this)},timeout:30,paramOrder:undefined,paramsAsHash:false,waitTitle:"Please Wait...",activeAction:null,trackResetOnLoad:false,initEl:function(a){this.el=Ext.get(a);this.id=this.el.id||Ext.id();if(!this.standardSubmit){this.el.on("submit",this.onSubmit,this)}this.el.addClass("x-form")},getEl:function(){return this.el},onSubmit:function(a){a.stopEvent()},destroy:function(a){if(a!==true){this.items.each(function(b){Ext.destroy(b)});Ext.destroy(this.el)}this.items.clear();this.purgeListeners()},isValid:function(){var a=true;this.items.each(function(b){if(!b.validate()){a=false}});return a},isDirty:function(){var a=false;this.items.each(function(b){if(b.isDirty()){a=true;return false}});return a},doAction:function(b,a){if(Ext.isString(b)){b=new Ext.form.Action.ACTION_TYPES[b](this,a)}if(this.fireEvent("beforeaction",this,b)!==false){this.beforeAction(b);b.run.defer(100,b)}return this},submit:function(b){b=b||{};if(this.standardSubmit){var a=b.clientValidation===false||this.isValid();if(a){var c=this.el.dom;if(this.url&&Ext.isEmpty(c.action)){c.action=this.url}c.submit()}return a}var d=String.format("{0}submit",this.api?"direct":"");this.doAction(d,b);return this},load:function(a){var b=String.format("{0}load",this.api?"direct":"");this.doAction(b,a);return this},updateRecord:function(b){b.beginEdit();var a=b.fields,d,c;a.each(function(e){d=this.findField(e.name);if(d){c=d.getValue();if(Ext.type(c)!==false&&c.getGroupValue){c=c.getGroupValue()}else{if(d.eachItem){c=[];d.eachItem(function(g){c.push(g.getValue())})}}b.set(e.name,c)}},this);b.endEdit();return this},loadRecord:function(a){this.setValues(a.data);return this},beforeAction:function(a){this.items.each(function(c){if(c.isFormField&&c.syncValue){c.syncValue()}});var b=a.options;if(b.waitMsg){if(this.waitMsgTarget===true){this.el.mask(b.waitMsg,"x-mask-loading")}else{if(this.waitMsgTarget){this.waitMsgTarget=Ext.get(this.waitMsgTarget);this.waitMsgTarget.mask(b.waitMsg,"x-mask-loading")}else{Ext.MessageBox.wait(b.waitMsg,b.waitTitle||this.waitTitle)}}}},afterAction:function(a,c){this.activeAction=null;var b=a.options;if(b.waitMsg){if(this.waitMsgTarget===true){this.el.unmask()}else{if(this.waitMsgTarget){this.waitMsgTarget.unmask()}else{Ext.MessageBox.updateProgress(1);Ext.MessageBox.hide()}}}if(c){if(b.reset){this.reset()}Ext.callback(b.success,b.scope,[this,a]);this.fireEvent("actioncomplete",this,a)}else{Ext.callback(b.failure,b.scope,[this,a]);this.fireEvent("actionfailed",this,a)}},findField:function(c){var b=this.items.get(c);if(!Ext.isObject(b)){var a=function(d){if(d.isFormField){if(d.dataIndex==c||d.id==c||d.getName()==c){b=d;return false}else{if(d.isComposite){return d.items.each(a)}else{if(d instanceof Ext.form.CheckboxGroup&&d.rendered){return d.eachItem(a)}}}}};this.items.each(a)}return b||null},markInvalid:function(h){if(Ext.isArray(h)){for(var c=0,a=h.length;c':">"),c,"")}return d.join("")},createToolbar:function(e){var c=[];var a=Ext.QuickTips&&Ext.QuickTips.isEnabled();function d(j,h,i){return{itemId:j,cls:"x-btn-icon",iconCls:"x-edit-"+j,enableToggle:h!==false,scope:e,handler:i||e.relayBtnCmd,clickEvent:"mousedown",tooltip:a?e.buttonTips[j]||undefined:undefined,overflowText:e.buttonTips[j].title||undefined,tabIndex:-1}}if(this.enableFont&&!Ext.isSafari2){var g=new Ext.Toolbar.Item({autoEl:{tag:"select",cls:"x-font-select",html:this.createFontOptions()}});c.push(g,"-")}if(this.enableFormat){c.push(d("bold"),d("italic"),d("underline"))}if(this.enableFontSize){c.push("-",d("increasefontsize",false,this.adjustFont),d("decreasefontsize",false,this.adjustFont))}if(this.enableColors){c.push("-",{itemId:"forecolor",cls:"x-btn-icon",iconCls:"x-edit-forecolor",clickEvent:"mousedown",tooltip:a?e.buttonTips.forecolor||undefined:undefined,tabIndex:-1,menu:new Ext.menu.ColorMenu({allowReselect:true,focus:Ext.emptyFn,value:"000000",plain:true,listeners:{scope:this,select:function(i,h){this.execCmd("forecolor",Ext.isWebKit||Ext.isIE?"#"+h:h);this.deferFocus()}},clickEvent:"mousedown"})},{itemId:"backcolor",cls:"x-btn-icon",iconCls:"x-edit-backcolor",clickEvent:"mousedown",tooltip:a?e.buttonTips.backcolor||undefined:undefined,tabIndex:-1,menu:new Ext.menu.ColorMenu({focus:Ext.emptyFn,value:"FFFFFF",plain:true,allowReselect:true,listeners:{scope:this,select:function(i,h){if(Ext.isGecko){this.execCmd("useCSS",false);this.execCmd("hilitecolor",h);this.execCmd("useCSS",true);this.deferFocus()}else{this.execCmd(Ext.isOpera?"hilitecolor":"backcolor",Ext.isWebKit||Ext.isIE?"#"+h:h);this.deferFocus()}}},clickEvent:"mousedown"})})}if(this.enableAlignments){c.push("-",d("justifyleft"),d("justifycenter"),d("justifyright"))}if(!Ext.isSafari2){if(this.enableLinks){c.push("-",d("createlink",false,this.createLink))}if(this.enableLists){c.push("-",d("insertorderedlist"),d("insertunorderedlist"))}if(this.enableSourceEdit){c.push("-",d("sourceedit",true,function(h){this.toggleSourceEdit(!this.sourceEditMode)}))}}var b=new Ext.Toolbar({renderTo:this.wrap.dom.firstChild,items:c});if(g){this.fontSelect=g.el;this.mon(this.fontSelect,"change",function(){var h=this.fontSelect.dom.value;this.relayCmd("fontname",h);this.deferFocus()},this)}this.mon(b.el,"click",function(h){h.preventDefault()});this.tb=b;this.tb.doLayout()},onDisable:function(){this.wrap.mask();Ext.form.HtmlEditor.superclass.onDisable.call(this)},onEnable:function(){this.wrap.unmask();Ext.form.HtmlEditor.superclass.onEnable.call(this)},setReadOnly:function(b){Ext.form.HtmlEditor.superclass.setReadOnly.call(this,b);if(this.initialized){if(Ext.isIE){this.getEditorBody().contentEditable=!b}else{this.setDesignMode(!b)}var a=this.getEditorBody();if(a){a.style.cursor=this.readOnly?"default":"text"}this.disableItems(b)}},getDocMarkup:function(){var a=Ext.fly(this.iframe).getHeight()-this.iframePad*2;return String.format('',this.iframePad,a)},getEditorBody:function(){var a=this.getDoc();return a.body||a.documentElement},getDoc:function(){return Ext.isIE?this.getWin().document:(this.iframe.contentDocument||this.getWin().document)},getWin:function(){return Ext.isIE?this.iframe.contentWindow:window.frames[this.iframe.name]},onRender:function(b,a){Ext.form.HtmlEditor.superclass.onRender.call(this,b,a);this.el.dom.style.border="0 none";this.el.dom.setAttribute("tabIndex",-1);this.el.addClass("x-hidden");if(Ext.isIE){this.el.applyStyles("margin-top:-1px;margin-bottom:-1px;")}this.wrap=this.el.wrap({cls:"x-html-editor-wrap",cn:{cls:"x-html-editor-tb"}});this.createToolbar(this);this.disableItems(true);this.tb.doLayout();this.createIFrame();if(!this.width){var c=this.el.getSize();this.setSize(c.width,this.height||c.height)}this.resizeEl=this.positionEl=this.wrap},createIFrame:function(){var a=document.createElement("iframe");a.name=Ext.id();a.frameBorder="0";a.style.overflow="auto";a.src=Ext.SSL_SECURE_URL;this.wrap.dom.appendChild(a);this.iframe=a;this.monitorTask=Ext.TaskMgr.start({run:this.checkDesignMode,scope:this,interval:100})},initFrame:function(){Ext.TaskMgr.stop(this.monitorTask);var a=this.getDoc();this.win=this.getWin();a.open();a.write(this.getDocMarkup());a.close();this.readyTask={run:function(){var b=this.getDoc();if(b.body||b.readyState=="complete"){Ext.TaskMgr.stop(this.readyTask);this.setDesignMode(true);this.initEditor.defer(10,this)}},interval:10,duration:10000,scope:this};Ext.TaskMgr.start(this.readyTask)},checkDesignMode:function(){if(this.wrap&&this.wrap.dom.offsetWidth){var a=this.getDoc();if(!a){return}if(!a.editorInitialized||this.getDesignMode()!="on"){this.initFrame()}}},setDesignMode:function(b){var a=this.getDoc();if(a){if(this.readOnly){b=false}a.designMode=(/on|true/i).test(String(b).toLowerCase())?"on":"off"}},getDesignMode:function(){var a=this.getDoc();if(!a){return""}return String(a.designMode).toLowerCase()},disableItems:function(a){if(this.fontSelect){this.fontSelect.dom.disabled=a}this.tb.items.each(function(b){if(b.getItemId()!="sourceedit"){b.setDisabled(a)}})},onResize:function(b,c){Ext.form.HtmlEditor.superclass.onResize.apply(this,arguments);if(this.el&&this.iframe){if(Ext.isNumber(b)){var e=b-this.wrap.getFrameWidth("lr");this.el.setWidth(e);this.tb.setWidth(e);this.iframe.style.width=Math.max(e,0)+"px"}if(Ext.isNumber(c)){var a=c-this.wrap.getFrameWidth("tb")-this.tb.el.getHeight();this.el.setHeight(a);this.iframe.style.height=Math.max(a,0)+"px";var d=this.getEditorBody();if(d){d.style.height=Math.max((a-(this.iframePad*2)),0)+"px"}}}},toggleSourceEdit:function(b){var d,a;if(b===undefined){b=!this.sourceEditMode}this.sourceEditMode=b===true;var c=this.tb.getComponent("sourceedit");if(c.pressed!==this.sourceEditMode){c.toggle(this.sourceEditMode);if(!c.xtbHidden){return}}if(this.sourceEditMode){this.previousSize=this.getSize();d=Ext.get(this.iframe).getHeight();this.disableItems(true);this.syncValue();this.iframe.className="x-hidden";this.el.removeClass("x-hidden");this.el.dom.removeAttribute("tabIndex");this.el.focus();this.el.dom.style.height=d+"px"}else{a=parseInt(this.el.dom.style.height,10);if(this.initialized){this.disableItems(this.readOnly)}this.pushValue();this.iframe.className="";this.el.addClass("x-hidden");this.el.dom.setAttribute("tabIndex",-1);this.deferFocus();this.setSize(this.previousSize);delete this.previousSize;this.iframe.style.height=a+"px"}this.fireEvent("editmodechange",this,this.sourceEditMode)},createLink:function(){var a=prompt(this.createLinkText,this.defaultLinkValue);if(a&&a!="http://"){this.relayCmd("createlink",a)}},initEvents:function(){this.originalValue=this.getValue()},markInvalid:Ext.emptyFn,clearInvalid:Ext.emptyFn,setValue:function(a){Ext.form.HtmlEditor.superclass.setValue.call(this,a);this.pushValue();return this},cleanHtml:function(a){a=String(a);if(Ext.isWebKit){a=a.replace(/\sclass="(?:Apple-style-span|khtml-block-placeholder)"/gi,"")}if(a.charCodeAt(0)==this.defaultValue.replace(/\D/g,"")){a=a.substring(1)}return a},syncValue:function(){if(this.initialized){var d=this.getEditorBody();var c=d.innerHTML;if(Ext.isWebKit){var b=d.getAttribute("style");var a=b.match(/text-align:(.*?);/i);if(a&&a[1]){c='
    '+c+"
    "}}c=this.cleanHtml(c);if(this.fireEvent("beforesync",this,c)!==false){this.el.dom.value=c;this.fireEvent("sync",this,c)}}},getValue:function(){this[this.sourceEditMode?"pushValue":"syncValue"]();return Ext.form.HtmlEditor.superclass.getValue.call(this)},pushValue:function(){if(this.initialized){var a=this.el.dom.value;if(!this.activated&&a.length<1){a=this.defaultValue}if(this.fireEvent("beforepush",this,a)!==false){this.getEditorBody().innerHTML=a;if(Ext.isGecko){this.setDesignMode(false);this.setDesignMode(true)}this.fireEvent("push",this,a)}}},deferFocus:function(){this.focus.defer(10,this)},focus:function(){if(this.win&&!this.sourceEditMode){this.win.focus()}else{this.el.focus()}},initEditor:function(){try{var c=this.getEditorBody(),a=this.el.getStyles("font-size","font-family","background-image","background-repeat","background-color","color"),g,b;a["background-attachment"]="fixed";c.bgProperties="fixed";Ext.DomHelper.applyStyles(c,a);g=this.getDoc();if(g){try{Ext.EventManager.removeAll(g)}catch(d){}}b=this.onEditorEvent.createDelegate(this);Ext.EventManager.on(g,{mousedown:b,dblclick:b,click:b,keyup:b,buffer:100});if(Ext.isGecko){Ext.EventManager.on(g,"keypress",this.applyCommand,this)}if(Ext.isIE||Ext.isWebKit||Ext.isOpera){Ext.EventManager.on(g,"keydown",this.fixKeys,this)}g.editorInitialized=true;this.initialized=true;this.pushValue();this.setReadOnly(this.readOnly);this.fireEvent("initialize",this)}catch(d){}},beforeDestroy:function(){if(this.monitorTask){Ext.TaskMgr.stop(this.monitorTask)}if(this.readyTask){Ext.TaskMgr.stop(this.readyTask)}if(this.rendered){Ext.destroy(this.tb);var b=this.getDoc();Ext.EventManager.removeFromSpecialCache(b);if(b){try{Ext.EventManager.removeAll(b);for(var c in b){delete b[c]}}catch(a){}}if(this.wrap){this.wrap.dom.innerHTML="";this.wrap.remove()}}Ext.form.HtmlEditor.superclass.beforeDestroy.call(this)},onFirstFocus:function(){this.activated=true;this.disableItems(this.readOnly);if(Ext.isGecko){this.win.focus();var a=this.win.getSelection();if(!a.focusNode||a.focusNode.nodeType!=3){var b=a.getRangeAt(0);b.selectNodeContents(this.getEditorBody());b.collapse(true);this.deferFocus()}try{this.execCmd("useCSS",true);this.execCmd("styleWithCSS",false)}catch(c){}}this.fireEvent("activate",this)},adjustFont:function(b){var d=b.getItemId()=="increasefontsize"?1:-1,c=this.getDoc(),a=parseInt(c.queryCommandValue("FontSize")||2,10);if((Ext.isSafari&&!Ext.isSafari2)||Ext.isChrome||Ext.isAir){if(a<=10){a=1+d}else{if(a<=13){a=2+d}else{if(a<=16){a=3+d}else{if(a<=18){a=4+d}else{if(a<=24){a=5+d}else{a=6+d}}}}}a=a.constrain(1,6)}else{if(Ext.isSafari){d*=2}a=Math.max(1,a+d)+(Ext.isSafari?"px":0)}this.execCmd("FontSize",a)},onEditorEvent:function(a){this.updateToolbar()},updateToolbar:function(){if(this.readOnly){return}if(!this.activated){this.onFirstFocus();return}var b=this.tb.items.map,c=this.getDoc();if(this.enableFont&&!Ext.isSafari2){var a=(c.queryCommandValue("FontName")||this.defaultFont).toLowerCase();if(a!=this.fontSelect.dom.value){this.fontSelect.dom.value=a}}if(this.enableFormat){b.bold.toggle(c.queryCommandState("bold"));b.italic.toggle(c.queryCommandState("italic"));b.underline.toggle(c.queryCommandState("underline"))}if(this.enableAlignments){b.justifyleft.toggle(c.queryCommandState("justifyleft"));b.justifycenter.toggle(c.queryCommandState("justifycenter"));b.justifyright.toggle(c.queryCommandState("justifyright"))}if(!Ext.isSafari2&&this.enableLists){b.insertorderedlist.toggle(c.queryCommandState("insertorderedlist"));b.insertunorderedlist.toggle(c.queryCommandState("insertunorderedlist"))}Ext.menu.MenuMgr.hideAll();this.syncValue()},relayBtnCmd:function(a){this.relayCmd(a.getItemId())},relayCmd:function(b,a){(function(){this.focus();this.execCmd(b,a);this.updateToolbar()}).defer(10,this)},execCmd:function(b,a){var c=this.getDoc();c.execCommand(b,false,a===undefined?null:a);this.syncValue()},applyCommand:function(b){if(b.ctrlKey){var d=b.getCharCode(),a;if(d>0){d=String.fromCharCode(d);switch(d){case"b":a="bold";break;case"i":a="italic";break;case"u":a="underline";break}if(a){this.win.focus();this.execCmd(a);this.deferFocus();b.preventDefault()}}}},insertAtCursor:function(c){if(!this.activated){return}if(Ext.isIE){this.win.focus();var b=this.getDoc(),a=b.selection.createRange();if(a){a.pasteHTML(c);this.syncValue();this.deferFocus()}}else{this.win.focus();this.execCmd("InsertHTML",c);this.deferFocus()}},fixKeys:function(){if(Ext.isIE){return function(g){var a=g.getKey(),d=this.getDoc(),b;if(a==g.TAB){g.stopEvent();b=d.selection.createRange();if(b){b.collapse(true);b.pasteHTML("    ");this.deferFocus()}}else{if(a==g.ENTER){b=d.selection.createRange();if(b){var c=b.parentElement();if(!c||c.tagName.toLowerCase()!="li"){g.stopEvent();b.pasteHTML("
    ");b.collapse(false);b.select()}}}}}}else{if(Ext.isOpera){return function(b){var a=b.getKey();if(a==b.TAB){b.stopEvent();this.win.focus();this.execCmd("InsertHTML","    ");this.deferFocus()}}}else{if(Ext.isWebKit){return function(b){var a=b.getKey();if(a==b.TAB){b.stopEvent();this.execCmd("InsertText","\t");this.deferFocus()}else{if(a==b.ENTER){b.stopEvent();this.execCmd("InsertHtml","

    ");this.deferFocus()}}}}}}}(),getToolbar:function(){return this.tb},buttonTips:{bold:{title:"Bold (Ctrl+B)",text:"Make the selected text bold.",cls:"x-html-editor-tip"},italic:{title:"Italic (Ctrl+I)",text:"Make the selected text italic.",cls:"x-html-editor-tip"},underline:{title:"Underline (Ctrl+U)",text:"Underline the selected text.",cls:"x-html-editor-tip"},increasefontsize:{title:"Grow Text",text:"Increase the font size.",cls:"x-html-editor-tip"},decreasefontsize:{title:"Shrink Text",text:"Decrease the font size.",cls:"x-html-editor-tip"},backcolor:{title:"Text Highlight Color",text:"Change the background color of the selected text.",cls:"x-html-editor-tip"},forecolor:{title:"Font Color",text:"Change the color of the selected text.",cls:"x-html-editor-tip"},justifyleft:{title:"Align Text Left",text:"Align text to the left.",cls:"x-html-editor-tip"},justifycenter:{title:"Center Text",text:"Center text in the editor.",cls:"x-html-editor-tip"},justifyright:{title:"Align Text Right",text:"Align text to the right.",cls:"x-html-editor-tip"},insertunorderedlist:{title:"Bullet List",text:"Start a bulleted list.",cls:"x-html-editor-tip"},insertorderedlist:{title:"Numbered List",text:"Start a numbered list.",cls:"x-html-editor-tip"},createlink:{title:"Hyperlink",text:"Make the selected text a hyperlink.",cls:"x-html-editor-tip"},sourceedit:{title:"Source Edit",text:"Switch to source editing mode.",cls:"x-html-editor-tip"}}});Ext.reg("htmleditor",Ext.form.HtmlEditor);Ext.form.TimeField=Ext.extend(Ext.form.ComboBox,{minValue:undefined,maxValue:undefined,minText:"The time in this field must be equal to or after {0}",maxText:"The time in this field must be equal to or before {0}",invalidText:"{0} is not a valid time",format:"g:i A",altFormats:"g:ia|g:iA|g:i a|g:i A|h:i|g:i|H:i|ga|ha|gA|h a|g a|g A|gi|hi|gia|hia|g|H|gi a|hi a|giA|hiA|gi A|hi A",increment:15,mode:"local",triggerAction:"all",typeAhead:false,initDate:"1/1/2008",initDateFormat:"j/n/Y",initComponent:function(){if(Ext.isDefined(this.minValue)){this.setMinValue(this.minValue,true)}if(Ext.isDefined(this.maxValue)){this.setMaxValue(this.maxValue,true)}if(!this.store){this.generateStore(true)}Ext.form.TimeField.superclass.initComponent.call(this)},setMinValue:function(b,a){this.setLimit(b,true,a);return this},setMaxValue:function(b,a){this.setLimit(b,false,a);return this},generateStore:function(b){var c=this.minValue||new Date(this.initDate).clearTime(),a=this.maxValue||new Date(this.initDate).clearTime().add("mi",(24*60)-1),d=[];while(c<=a){d.push(c.dateFormat(this.format));c=c.add("mi",this.increment)}this.bindStore(d,b)},setLimit:function(b,g,a){var e;if(Ext.isString(b)){e=this.parseDate(b)}else{if(Ext.isDate(b)){e=b}}if(e){var c=new Date(this.initDate).clearTime();c.setHours(e.getHours(),e.getMinutes(),e.getSeconds(),e.getMilliseconds());this[g?"minValue":"maxValue"]=c;if(!a){this.generateStore()}}},getValue:function(){var a=Ext.form.TimeField.superclass.getValue.call(this);return this.formatDate(this.parseDate(a))||""},setValue:function(a){return Ext.form.TimeField.superclass.setValue.call(this,this.formatDate(this.parseDate(a)))},validateValue:Ext.form.DateField.prototype.validateValue,formatDate:Ext.form.DateField.prototype.formatDate,parseDate:function(h){if(!h||Ext.isDate(h)){return h}var j=this.initDate+" ",g=this.initDateFormat+" ",b=Date.parseDate(j+h,g+this.format),c=this.altFormats;if(!b&&c){if(!this.altFormatsArray){this.altFormatsArray=c.split("|")}for(var e=0,d=this.altFormatsArray,a=d.length;e=0){if(!d){c=g-1}d=false;while(c>=0){if(e.call(j||this,k,c,i)===true){return[k,c]}c--}k--}}else{if(c>=g){k++;d=false}while(k','
    ','
    ','
    ','
    {header}
    ',"
    ",'
    ',"
    ",'
    ','
    {body}
    ','',"
    ","
    ",'
     
    ','
     
    ',""),headerTpl:new Ext.Template('',"",'{cells}',"","
    "),bodyTpl:new Ext.Template("{rows}"),cellTpl:new Ext.Template('','
    {value}
    ',""),initTemplates:function(){var c=this.templates||{},d,b,g=new Ext.Template('','
    ',this.grid.enableHdMenu?'':"","{value}",'',"
    ",""),a=['','','
    {body}
    ',"",""].join(""),e=['',"","{cells}",this.enableRowBody?a:"","","
    "].join("");Ext.applyIf(c,{hcell:g,cell:this.cellTpl,body:this.bodyTpl,header:this.headerTpl,master:this.masterTpl,row:new Ext.Template('
    '+e+"
    "),rowInner:new Ext.Template(e)});for(b in c){d=c[b];if(d&&Ext.isFunction(d.compile)&&!d.compiled){d.disableFormats=true;d.compile()}}this.templates=c;this.colRe=new RegExp("x-grid3-td-([^\\s]+)","")},fly:function(a){if(!this._flyweight){this._flyweight=new Ext.Element.Flyweight(document.body)}this._flyweight.dom=a;return this._flyweight},getEditorParent:function(){return this.scroller.dom},initElements:function(){var b=Ext.Element,d=Ext.get(this.grid.getGridEl().dom.firstChild),e=new b(d.child("div.x-grid3-viewport")),c=new b(e.child("div.x-grid3-header")),a=new b(e.child("div.x-grid3-scroller"));if(this.grid.hideHeaders){c.setDisplayed(false)}if(this.forceFit){a.setStyle("overflow-x","hidden")}Ext.apply(this,{el:d,mainWrap:e,scroller:a,mainHd:c,innerHd:c.child("div.x-grid3-header-inner").dom,mainBody:new b(b.fly(a).child("div.x-grid3-body")),focusEl:new b(b.fly(a).child("a")),resizeMarker:new b(d.child("div.x-grid3-resize-marker")),resizeProxy:new b(d.child("div.x-grid3-resize-proxy"))});this.focusEl.swallowEvent("click",true)},getRows:function(){return this.hasRows()?this.mainBody.dom.childNodes:[]},findCell:function(a){if(!a){return false}return this.fly(a).findParent(this.cellSelector,this.cellSelectorDepth)},findCellIndex:function(d,c){var b=this.findCell(d),a;if(b){a=this.fly(b).hasClass(c);if(!c||a){return this.getCellIndex(b)}}return false},getCellIndex:function(b){if(b){var a=b.className.match(this.colRe);if(a&&a[1]){return this.cm.getIndexById(a[1])}}return false},findHeaderCell:function(b){var a=this.findCell(b);return a&&this.fly(a).hasClass(this.hdCls)?a:null},findHeaderIndex:function(a){return this.findCellIndex(a,this.hdCls)},findRow:function(a){if(!a){return false}return this.fly(a).findParent(this.rowSelector,this.rowSelectorDepth)},findRowIndex:function(a){var b=this.findRow(a);return b?b.rowIndex:false},findRowBody:function(a){if(!a){return false}return this.fly(a).findParent(this.rowBodySelector,this.rowBodySelectorDepth)},getRow:function(a){return this.getRows()[a]},getCell:function(b,a){return Ext.fly(this.getRow(b)).query(this.cellSelector)[a]},getHeaderCell:function(a){return this.mainHd.dom.getElementsByTagName("td")[a]},addRowClass:function(b,a){var c=this.getRow(b);if(c){this.fly(c).addClass(a)}},removeRowClass:function(c,a){var b=this.getRow(c);if(b){this.fly(b).removeClass(a)}},removeRow:function(a){Ext.removeNode(this.getRow(a));this.syncFocusEl(a)},removeRows:function(c,a){var b=this.mainBody.dom,d;for(d=c;d<=a;d++){Ext.removeNode(b.childNodes[c])}this.syncFocusEl(c)},getScrollState:function(){var a=this.scroller.dom;return{left:a.scrollLeft,top:a.scrollTop}},restoreScroll:function(a){var b=this.scroller.dom;b.scrollLeft=a.left;b.scrollTop=a.top},scrollToTop:function(){var a=this.scroller.dom;a.scrollTop=0;a.scrollLeft=0},syncScroll:function(){this.syncHeaderScroll();var a=this.scroller.dom;this.grid.fireEvent("bodyscroll",a.scrollLeft,a.scrollTop)},syncHeaderScroll:function(){var a=this.innerHd,b=this.scroller.dom.scrollLeft;a.scrollLeft=b;a.scrollLeft=b},updateSortIcon:function(d,c){var a=this.sortClasses,b=a[c=="DESC"?1:0],e=this.mainHd.select("td").removeClass(a);e.item(d).addClass(b)},updateAllColumnWidths:function(){var e=this.getTotalWidth(),k=this.cm.getColumnCount(),m=this.getRows(),g=m.length,b=[],l,a,h,d,c;for(d=0;d=this.ds.getCount()){return null}d=(d!==undefined?d:0);var c=this.getRow(h),b=this.cm,e=b.getColumnCount(),a;if(!(g===false&&d===0)){while(dm){n.scrollTop=q-a}}if(e!==false){var l=parseInt(h.offsetLeft,10),j=l+h.offsetWidth,i=parseInt(n.scrollLeft,10),b=i+n.clientWidth;if(lb){n.scrollLeft=j-n.clientWidth}}}return this.getResolvedXY(r)},insertRows:function(a,i,e,h){var d=a.getCount()-1;if(!h&&i===0&&e>=d){this.fireEvent("beforerowsinserted",this,i,e);this.refresh();this.fireEvent("rowsinserted",this,i,e)}else{if(!h){this.fireEvent("beforerowsinserted",this,i,e)}var b=this.renderRows(i,e),g=this.getRow(i);if(g){if(i===0){Ext.fly(this.getRow(0)).removeClass(this.firstRowCls)}Ext.DomHelper.insertHtml("beforeBegin",g,b)}else{var c=this.getRow(d-1);if(c){Ext.fly(c).removeClass(this.lastRowCls)}Ext.DomHelper.insertHtml("beforeEnd",this.mainBody.dom,b)}if(!h){this.processRows(i);this.fireEvent("rowsinserted",this,i,e)}else{if(i===0||i>=d){Ext.fly(this.getRow(i)).addClass(i===0?this.firstRowCls:this.lastRowCls)}}}this.syncFocusEl(i)},deleteRows:function(a,c,b){if(a.getRowCount()<1){this.refresh()}else{this.fireEvent("beforerowsdeleted",this,c,b);this.removeRows(c,b);this.processRows(c);this.fireEvent("rowsdeleted",this,c,b)}},getColumnStyle:function(b,d){var a=this.cm,g=a.config,c=d?"":g[b].css||"",e=g[b].align;c+=String.format("width: {0};",this.getColumnWidth(b));if(a.isHidden(b)){c+="display: none; "}if(e){c+=String.format("text-align: {0};",e)}return c},getColumnWidth:function(b){var c=this.cm.getColumnWidth(b),a=this.borderWidth;if(Ext.isNumber(c)){if(Ext.isBorderBox){return c+"px"}else{return Math.max(c-a,0)+"px"}}else{return c}},getTotalWidth:function(){return this.cm.getTotalWidth()+"px"},fitColumns:function(g,j,h){var a=this.grid,l=this.cm,s=l.getTotalWidth(false),q=this.getGridInnerWidth(),r=q-s,c=[],o=0,n=0,u,d,p;if(q<20||r===0){return false}var e=l.getColumnCount(true),m=l.getColumnCount(false),b=e-(Ext.isNumber(h)?1:0);if(b===0){b=1;h=undefined}for(p=0;pq){var t=(b==e)?o:h,k=Math.max(1,l.getColumnWidth(t)-(s-q));l.setColumnWidth(t,k,true)}if(g!==true){this.updateAllColumnWidths()}return true},autoExpand:function(k){var a=this.grid,i=this.cm,e=this.getGridInnerWidth(),c=i.getTotalWidth(false),g=a.autoExpandColumn;if(!this.userResized&&g){if(e!=c){var j=i.getIndexById(g),b=i.getColumnWidth(j),h=e-c+b,d=Math.min(Math.max(h,a.autoExpandMin),a.autoExpandMax);if(b!=d){i.setColumnWidth(j,d,true);if(k!==true){this.updateColumnWidth(j,d)}}}}},getGridInnerWidth:function(){return this.grid.getGridEl().getWidth(true)-this.getScrollOffset()},getColumnData:function(){var e=[],c=this.cm,g=c.getColumnCount(),a=this.ds.fields,d,b;for(d=0;d'+this.emptyText+"")}},updateHeaderSortState:function(){var b=this.ds.getSortState();if(!b){return}if(!this.sortState||(this.sortState.field!=b.field||this.sortState.direction!=b.direction)){this.grid.fireEvent("sortchange",this.grid,b)}this.sortState=b;var c=this.cm.findColumnIndex(b.field);if(c!=-1){var a=b.direction;this.updateSortIcon(c,a)}},clearHeaderSortState:function(){if(!this.sortState){return}this.grid.fireEvent("sortchange",this.grid,null);this.mainHd.select("td").removeClass(this.sortClasses);delete this.sortState},destroy:function(){var j=this,a=j.grid,d=a.getGridEl(),i=j.dragZone,g=j.splitZone,h=j.columnDrag,e=j.columnDrop,k=j.scrollToTopTask,c,b;if(k&&k.cancel){k.cancel()}Ext.destroyMembers(j,"colMenu","hmenu");j.initData(null,null);j.purgeListeners();Ext.fly(j.innerHd).un("click",j.handleHdDown,j);if(a.enableColumnMove){c=h.dragData;b=h.proxy;Ext.destroy(h.el,b.ghost,b.el,e.el,e.proxyTop,e.proxyBottom,c.ddel,c.header);if(b.anim){Ext.destroy(b.anim)}delete b.ghost;delete c.ddel;delete c.header;h.destroy();delete Ext.dd.DDM.locationCache[h.id];delete h._domRef;delete e.proxyTop;delete e.proxyBottom;e.destroy();delete Ext.dd.DDM.locationCache["gridHeader"+d.id];delete e._domRef;delete Ext.dd.DDM.ids[e.ddGroup]}if(g){g.destroy();delete g._domRef;delete Ext.dd.DDM.ids["gridSplitters"+d.id]}Ext.fly(j.innerHd).removeAllListeners();Ext.removeNode(j.innerHd);delete j.innerHd;Ext.destroy(j.el,j.mainWrap,j.mainHd,j.scroller,j.mainBody,j.focusEl,j.resizeMarker,j.resizeProxy,j.activeHdBtn,j._flyweight,i,g);delete a.container;if(i){i.destroy()}Ext.dd.DDM.currentTarget=null;delete Ext.dd.DDM.locationCache[d.id];Ext.EventManager.removeResizeListener(j.onWindowResize,j)},onDenyColumnHide:function(){},render:function(){if(this.autoFill){var a=this.grid.ownerCt;if(a&&a.getLayout()){a.on("afterlayout",function(){this.fitColumns(true,true);this.updateHeaders();this.updateHeaderSortState()},this,{single:true})}}else{if(this.forceFit){this.fitColumns(true,false)}else{if(this.grid.autoExpandColumn){this.autoExpand(true)}}}this.grid.getGridEl().dom.innerHTML=this.renderUI();this.afterRenderUI()},initData:function(a,e){var b=this;if(b.ds){var d=b.ds;d.un("add",b.onAdd,b);d.un("load",b.onLoad,b);d.un("clear",b.onClear,b);d.un("remove",b.onRemove,b);d.un("update",b.onUpdate,b);d.un("datachanged",b.onDataChange,b);if(d!==a&&d.autoDestroy){d.destroy()}}if(a){a.on({scope:b,load:b.onLoad,add:b.onAdd,remove:b.onRemove,update:b.onUpdate,clear:b.onClear,datachanged:b.onDataChange})}if(b.cm){var c=b.cm;c.un("configchange",b.onColConfigChange,b);c.un("widthchange",b.onColWidthChange,b);c.un("headerchange",b.onHeaderChange,b);c.un("hiddenchange",b.onHiddenChange,b);c.un("columnmoved",b.onColumnMove,b)}if(e){delete b.lastViewWidth;e.on({scope:b,configchange:b.onColConfigChange,widthchange:b.onColWidthChange,headerchange:b.onHeaderChange,hiddenchange:b.onHiddenChange,columnmoved:b.onColumnMove})}b.ds=a;b.cm=e},onDataChange:function(){this.refresh(true);this.updateHeaderSortState();this.syncFocusEl(0)},onClear:function(){this.refresh();this.syncFocusEl(0)},onUpdate:function(b,a){this.refreshRow(a)},onAdd:function(b,a,c){this.insertRows(b,c,c+(a.length-1))},onRemove:function(b,a,c,d){if(d!==true){this.fireEvent("beforerowremoved",this,c,a)}this.removeRow(c);if(d!==true){this.processRows(c);this.applyEmptyText();this.fireEvent("rowremoved",this,c,a)}},onLoad:function(){if(Ext.isGecko){if(!this.scrollToTopTask){this.scrollToTopTask=new Ext.util.DelayedTask(this.scrollToTop,this)}this.scrollToTopTask.delay(1)}else{this.scrollToTop()}},onColWidthChange:function(a,b,c){this.updateColumnWidth(b,c)},onHeaderChange:function(a,b,c){this.updateHeaders()},onHiddenChange:function(a,b,c){this.updateColumnHidden(b,c)},onColumnMove:function(a,c,b){this.indexMap=null;this.refresh(true);this.restoreScroll(this.getScrollState());this.afterMove(b);this.grid.fireEvent("columnmove",c,b)},onColConfigChange:function(){delete this.lastViewWidth;this.indexMap=null;this.refresh(true)},initUI:function(a){a.on("headerclick",this.onHeaderClick,this)},initEvents:Ext.emptyFn,onHeaderClick:function(b,a){if(this.headersDisabled||!this.cm.isSortable(a)){return}b.stopEditing(true);b.store.sort(this.cm.getDataIndex(a))},onRowOver:function(b,a){var c=this.findRowIndex(a);if(c!==false){this.addRowClass(c,this.rowOverCls)}},onRowOut:function(b,a){var c=this.findRowIndex(a);if(c!==false&&!b.within(this.getRow(c),true)){this.removeRowClass(c,this.rowOverCls)}},onRowSelect:function(a){this.addRowClass(a,this.selectedRowClass)},onRowDeselect:function(a){this.removeRowClass(a,this.selectedRowClass)},onCellSelect:function(c,b){var a=this.getCell(c,b);if(a){this.fly(a).addClass("x-grid3-cell-selected")}},onCellDeselect:function(c,b){var a=this.getCell(c,b);if(a){this.fly(a).removeClass("x-grid3-cell-selected")}},handleWheel:function(a){a.stopPropagation()},onColumnSplitterMoved:function(a,b){this.userResized=true;this.grid.colModel.setColumnWidth(a,b,true);if(this.forceFit){this.fitColumns(true,false,a);this.updateAllColumnWidths()}else{this.updateColumnWidth(a,b);this.syncHeaderScroll()}this.grid.fireEvent("columnresize",a,b)},beforeColMenuShow:function(){var b=this.cm,d=b.getColumnCount(),a=this.colMenu,c;a.removeAll();for(c=0;c0){if(!this.cm.isHidden(a-1)){return a}a--}return undefined},handleHdOver:function(c,b){var d=this.findHeaderCell(b);if(d&&!this.headersDisabled){var a=this.fly(d);this.activeHdRef=b;this.activeHdIndex=this.getCellIndex(d);this.activeHdRegion=a.getRegion();if(!this.isMenuDisabled(this.activeHdIndex,a)){a.addClass("x-grid3-hd-over");this.activeHdBtn=a.child(".x-grid3-hd-btn");if(this.activeHdBtn){this.activeHdBtn.dom.style.height=(d.firstChild.offsetHeight-1)+"px"}}}},handleHdOut:function(b,a){var c=this.findHeaderCell(a);if(c&&(!Ext.isIE9m||!b.within(c,true))){this.activeHdRef=null;this.fly(c).removeClass("x-grid3-hd-over");c.style.cursor=""}},isMenuDisabled:function(a,b){return this.cm.isMenuDisabled(a)},hasRows:function(){var a=this.mainBody.dom.firstChild;return a&&a.nodeType==1&&a.className!="x-grid-empty"},isHideableColumn:function(a){return !a.hidden},bind:function(a,b){this.initData(a,b)}});Ext.grid.GridView.SplitDragZone=Ext.extend(Ext.dd.DDProxy,{constructor:function(a,b){this.grid=a;this.view=a.getView();this.marker=this.view.resizeMarker;this.proxy=this.view.resizeProxy;Ext.grid.GridView.SplitDragZone.superclass.constructor.call(this,b,"gridSplitters"+this.grid.getGridEl().id,{dragElId:Ext.id(this.proxy.dom),resizeFrame:false});this.scroll=false;this.hw=this.view.splitHandleWidth||5},b4StartDrag:function(a,e){this.dragHeadersDisabled=this.view.headersDisabled;this.view.headersDisabled=true;var d=this.view.mainWrap.getHeight();this.marker.setHeight(d);this.marker.show();this.marker.alignTo(this.view.getHeaderCell(this.cellIndex),"tl-tl",[-2,0]);this.proxy.setHeight(d);var b=this.cm.getColumnWidth(this.cellIndex),c=Math.max(b-this.grid.minColumnWidth,0);this.resetConstraints();this.setXConstraint(c,1000);this.setYConstraint(0,0);this.minX=a-c;this.maxX=a+1000;this.startPos=a;Ext.dd.DDProxy.prototype.b4StartDrag.call(this,a,e)},allowHeaderDrag:function(a){return true},handleMouseDown:function(a){var h=this.view.findHeaderCell(a.getTarget());if(h&&this.allowHeaderDrag(a)){var k=this.view.fly(h).getXY(),c=k[0],i=a.getXY(),b=i[0],g=h.offsetWidth,d=false;if((b-c)<=this.hw){d=-1}else{if((c+g)-b<=this.hw){d=0}}if(d!==false){this.cm=this.grid.colModel;var j=this.view.getCellIndex(h);if(d==-1){if(j+d<0){return}while(this.cm.isHidden(j+d)){--d;if(j+d<0){return}}}this.cellIndex=j+d;this.split=h.dom;if(this.cm.isResizable(this.cellIndex)&&!this.cm.isFixed(this.cellIndex)){Ext.grid.GridView.SplitDragZone.superclass.handleMouseDown.apply(this,arguments)}}else{if(this.view.columnDrag){this.view.columnDrag.callHandleMouseDown(a)}}}},endDrag:function(g){this.marker.hide();var a=this.view,c=Math.max(this.minX,g.getPageX()),d=c-this.startPos,b=this.dragHeadersDisabled;a.onColumnSplitterMoved(this.cellIndex,this.cm.getColumnWidth(this.cellIndex)+d);setTimeout(function(){a.headersDisabled=b},50)},autoOffset:function(){this.setDelta(0,0)}});Ext.grid.PivotGridView=Ext.extend(Ext.grid.GridView,{colHeaderCellCls:"grid-hd-group-cell",title:"",getColumnHeaders:function(){return this.grid.topAxis.buildHeaders()},getRowHeaders:function(){return this.grid.leftAxis.buildHeaders()},renderRows:function(a,t){var b=this.grid,o=b.extractData(),p=o.length,g=this.templates,s=b.renderer,h=typeof s=="function",w=this.getCellCls,n=typeof w=="function",d=g.cell,x=g.row,k=[],q={},c="width:"+this.getGridInnerWidth()+"px;",l,r,e,v,m;a=a||0;t=Ext.isDefined(t)?t:p-1;for(v=0;v','
    ','
    ','
    {title}
    ','
    ','
    ',"
    ",'
    ',"
    ",'
    ','
    ','
    {body}
    ','',"
    ","
    ",'
     
    ','
     
    ',""),initTemplates:function(){Ext.grid.PivotGridView.superclass.initTemplates.apply(this,arguments);var a=this.templates||{};if(!a.gcell){a.gcell=new Ext.XTemplate('','
    ',this.grid.enableHdMenu?'':"","{value}","
    ","")}this.templates=a;this.hrowRe=new RegExp("ux-grid-hd-group-row-(\\d+)","")},initElements:function(){Ext.grid.PivotGridView.superclass.initElements.apply(this,arguments);this.rowHeadersEl=new Ext.Element(this.scroller.child("div.x-grid3-row-headers"));this.headerTitleEl=new Ext.Element(this.mainHd.child("div.x-grid3-header-title"))},getGridInnerWidth:function(){var a=Ext.grid.PivotGridView.superclass.getGridInnerWidth.apply(this,arguments);return a-this.getTotalRowHeaderWidth()},getTotalRowHeaderWidth:function(){var d=this.getRowHeaders(),c=d.length,b=0,a;for(a=0;a0&&d>0){h=h||o.data[a[g-1].dataIndex]!=l[d-1].data[a[g-1].dataIndex]}if(h){s.push({header:q,span:p,start:b});b+=p;p=0}if(k){s.push({header:n,span:p+1,start:b});b+=p;p=0}q=n;p++}c.push({items:s,width:e.width||this.defaultHeaderWidth});q=undefined}return c}});Ext.grid.HeaderDragZone=Ext.extend(Ext.dd.DragZone,{maxDragWidth:120,constructor:function(a,c,b){this.grid=a;this.view=a.getView();this.ddGroup="gridHeader"+this.grid.getGridEl().id;Ext.grid.HeaderDragZone.superclass.constructor.call(this,c);if(b){this.setHandleElId(Ext.id(c));this.setOuterHandleElId(Ext.id(b))}this.scroll=false},getDragData:function(c){var a=Ext.lib.Event.getTarget(c),b=this.view.findHeaderCell(a);if(b){return{ddel:b.firstChild,header:b}}return false},onInitDrag:function(a){this.dragHeadersDisabled=this.view.headersDisabled;this.view.headersDisabled=true;var b=this.dragData.ddel.cloneNode(true);b.id=Ext.id();b.style.width=Math.min(this.dragData.header.offsetWidth,this.maxDragWidth)+"px";this.proxy.update(b);return true},afterValidDrop:function(){this.completeDrop()},afterInvalidDrop:function(){this.completeDrop()},completeDrop:function(){var a=this.view,b=this.dragHeadersDisabled;setTimeout(function(){a.headersDisabled=b},50)}});Ext.grid.HeaderDropZone=Ext.extend(Ext.dd.DropZone,{proxyOffsets:[-4,-9],fly:Ext.Element.fly,constructor:function(a,c,b){this.grid=a;this.view=a.getView();this.proxyTop=Ext.DomHelper.append(document.body,{cls:"col-move-top",html:" "},true);this.proxyBottom=Ext.DomHelper.append(document.body,{cls:"col-move-bottom",html:" "},true);this.proxyTop.hide=this.proxyBottom.hide=function(){this.setLeftTop(-100,-100);this.setStyle("visibility","hidden")};this.ddGroup="gridHeader"+this.grid.getGridEl().id;Ext.grid.HeaderDropZone.superclass.constructor.call(this,a.getGridEl().dom)},getTargetFromEvent:function(c){var a=Ext.lib.Event.getTarget(c),b=this.view.findCellIndex(a);if(b!==false){return this.view.getHeaderCell(b)}},nextVisible:function(c){var b=this.view,a=this.grid.colModel;c=c.nextSibling;while(c){if(!a.isHidden(b.getCellIndex(c))){return c}c=c.nextSibling}return null},prevVisible:function(c){var b=this.view,a=this.grid.colModel;c=c.prevSibling;while(c){if(!a.isHidden(b.getCellIndex(c))){return c}c=c.prevSibling}return null},positionIndicator:function(d,k,j){var a=Ext.lib.Event.getPageX(j),g=Ext.lib.Dom.getRegion(k.firstChild),c,i,b=g.top+this.proxyOffsets[1];if((g.right-a)<=(g.right-g.left)/2){c=g.right+this.view.borderWidth;i="after"}else{c=g.left;i="before"}if(this.grid.colModel.isFixed(this.view.getCellIndex(k))){return false}c+=this.proxyOffsets[0];this.proxyTop.setLeftTop(c,b);this.proxyTop.show();if(!this.bottomOffset){this.bottomOffset=this.view.mainHd.getHeight()}this.proxyBottom.setLeftTop(c,b+this.proxyTop.dom.offsetHeight+this.bottomOffset);this.proxyBottom.show();return i},onNodeEnter:function(d,a,c,b){if(b.header!=d){this.positionIndicator(b.header,d,c)}},onNodeOver:function(g,b,d,c){var a=false;if(c.header!=g){a=this.positionIndicator(c.header,g,d)}if(!a){this.proxyTop.hide();this.proxyBottom.hide()}return a?this.dropAllowed:this.dropNotAllowed},onNodeOut:function(d,a,c,b){this.proxyTop.hide();this.proxyBottom.hide()},onNodeDrop:function(b,m,g,c){var d=c.header;if(d!=b){var k=this.grid.colModel,j=Ext.lib.Event.getPageX(g),a=Ext.lib.Dom.getRegion(b.firstChild),o=(a.right-j)<=((a.right-a.left)/2)?"after":"before",i=this.view.getCellIndex(d),l=this.view.getCellIndex(b);if(o=="after"){l++}if(i=0&&this.config[a].resizable!==false&&this.config[a].fixed!==true},setHidden:function(a,b){var d=this.config[a];if(d.hidden!==b){d.hidden=b;this.totalWidth=null;this.fireEvent("hiddenchange",this,a,b)}},setEditor:function(a,b){this.config[a].setEditor(b)},destroy:function(){var b=this.config.length,a=0;for(;a0},isSelected:function(a){var b=Ext.isNumber(a)?this.grid.store.getAt(a):a;return(b&&this.selections.key(b.id)?true:false)},isIdSelected:function(a){return(this.selections.key(a)?true:false)},handleMouseDown:function(d,i,h){if(h.button!==0||this.isLocked()){return}var a=this.grid.getView();if(h.shiftKey&&!this.singleSelect&&this.last!==false){var c=this.last;this.selectRange(c,i,h.ctrlKey);this.last=c;a.focusRow(i)}else{var b=this.isSelected(i);if(h.ctrlKey&&b){this.deselectRow(i)}else{if(!b||this.getCount()>1){this.selectRow(i,h.ctrlKey||h.shiftKey);a.focusRow(i)}}}},selectRows:function(c,d){if(!d){this.clearSelections()}for(var b=0,a=c.length;b=a;c--){this.selectRow(c,true)}}},deselectRange:function(c,b,a){if(this.isLocked()){return}for(var d=c;d<=b;d++){this.deselectRow(d,a)}},selectRow:function(b,d,a){if(this.isLocked()||(b<0||b>=this.grid.store.getCount())||(d&&this.isSelected(b))){return}var c=this.grid.store.getAt(b);if(c&&this.fireEvent("beforerowselect",this,b,d,c)!==false){if(!d||this.singleSelect){this.clearSelections()}this.selections.add(c);this.last=this.lastActive=b;if(!a){this.grid.getView().onRowSelect(b)}if(!this.silent){this.fireEvent("rowselect",this,b,c);this.fireEvent("selectionchange",this)}}},deselectRow:function(b,a){if(this.isLocked()){return}if(this.last==b){this.last=false}if(this.lastActive==b){this.lastActive=false}var c=this.grid.store.getAt(b);if(c){this.selections.remove(c);if(!a){this.grid.getView().onRowDeselect(b)}this.fireEvent("rowdeselect",this,b,c);this.fireEvent("selectionchange",this)}},acceptsNav:function(c,b,a){return !a.isHidden(b)&&a.isCellEditable(b,c)},onEditorKey:function(n,l){var d=l.getKey(),h,i=this.grid,p=i.lastEdit,j=i.activeEditor,b=l.shiftKey,o,p,a,m;if(d==l.TAB){l.stopEvent();j.completeEdit();if(b){h=i.walkCells(j.row,j.col-1,-1,this.acceptsNav,this)}else{h=i.walkCells(j.row,j.col+1,1,this.acceptsNav,this)}}else{if(d==l.ENTER){if(this.moveEditorOnEnter!==false){if(b){h=i.walkCells(p.row-1,p.col,-1,this.acceptsNav,this)}else{h=i.walkCells(p.row+1,p.col,1,this.acceptsNav,this)}}}}if(h){a=h[0];m=h[1];this.onEditorSelect(a,p.row);if(i.isEditor&&i.editing){o=i.activeEditor;if(o&&o.field.triggerBlur){o.field.triggerBlur()}}i.startEditing(a,m)}},onEditorSelect:function(b,a){if(a!=b){this.selectRow(b)}},destroy:function(){Ext.destroy(this.rowNav);this.rowNav=null;Ext.grid.RowSelectionModel.superclass.destroy.call(this)}});Ext.grid.Column=Ext.extend(Ext.util.Observable,{isColumn:true,constructor:function(b){Ext.apply(this,b);if(Ext.isString(this.renderer)){this.renderer=Ext.util.Format[this.renderer]}else{if(Ext.isObject(this.renderer)){this.scope=this.renderer.scope;this.renderer=this.renderer.fn}}if(!this.scope){this.scope=this}var a=this.editor;delete this.editor;this.setEditor(a);this.addEvents("click","contextmenu","dblclick","mousedown");Ext.grid.Column.superclass.constructor.call(this)},processEvent:function(b,d,c,g,a){return this.fireEvent(b,this,c,g,d)},destroy:function(){if(this.setEditor){this.setEditor(null)}this.purgeListeners()},renderer:function(a){return a},getEditor:function(a){return this.editable!==false?this.editor:null},setEditor:function(b){var a=this.editor;if(a){if(a.gridEditor){a.gridEditor.destroy();delete a.gridEditor}else{a.destroy()}}this.editor=null;if(b){if(!b.isXType){b=Ext.create(b,"textfield")}this.editor=b}},getCellEditor:function(b){var a=this.getEditor(b);if(a){if(!a.startEdit){if(!a.gridEditor){a.gridEditor=new Ext.grid.GridEditor(a)}a=a.gridEditor}}return a}});Ext.grid.BooleanColumn=Ext.extend(Ext.grid.Column,{trueText:"true",falseText:"false",undefinedText:" ",constructor:function(a){Ext.grid.BooleanColumn.superclass.constructor.call(this,a);var c=this.trueText,d=this.falseText,b=this.undefinedText;this.renderer=function(e){if(e===undefined){return b}if(!e||e==="false"){return d}return c}}});Ext.grid.NumberColumn=Ext.extend(Ext.grid.Column,{format:"0,000.00",constructor:function(a){Ext.grid.NumberColumn.superclass.constructor.call(this,a);this.renderer=Ext.util.Format.numberRenderer(this.format)}});Ext.grid.DateColumn=Ext.extend(Ext.grid.Column,{format:"m/d/Y",constructor:function(a){Ext.grid.DateColumn.superclass.constructor.call(this,a);this.renderer=Ext.util.Format.dateRenderer(this.format)}});Ext.grid.TemplateColumn=Ext.extend(Ext.grid.Column,{constructor:function(a){Ext.grid.TemplateColumn.superclass.constructor.call(this,a);var b=(!Ext.isPrimitive(this.tpl)&&this.tpl.compile)?this.tpl:new Ext.XTemplate(this.tpl);this.renderer=function(d,e,c){return b.apply(c.data)};this.tpl=b}});Ext.grid.ActionColumn=Ext.extend(Ext.grid.Column,{header:" ",actionIdRe:/x-action-col-(\d+)/,altText:"",constructor:function(b){var g=this,c=b.items||(g.items=[g]),a=c.length,d,e;Ext.grid.ActionColumn.superclass.constructor.call(g,b);g.renderer=function(h,i){h=Ext.isFunction(b.renderer)?b.renderer.apply(this,arguments)||"":"";i.css+=" x-action-col-cell";for(d=0;d"}return h}},destroy:function(){delete this.items;delete this.renderer;return Ext.grid.ActionColumn.superclass.destroy.apply(this,arguments)},processEvent:function(c,i,d,j,b){var a=i.getTarget().className.match(this.actionIdRe),h,g;if(a&&(h=this.items[parseInt(a[1],10)])){if(c=="click"){(g=h.handler||this.handler)&&g.call(h.scope||this.scope||this,d,j,b,h,i)}else{if((c=="mousedown")&&(h.stopSelection!==false)){return false}}}return Ext.grid.ActionColumn.superclass.processEvent.apply(this,arguments)}});Ext.grid.Column.types={gridcolumn:Ext.grid.Column,booleancolumn:Ext.grid.BooleanColumn,numbercolumn:Ext.grid.NumberColumn,datecolumn:Ext.grid.DateColumn,templatecolumn:Ext.grid.TemplateColumn,actioncolumn:Ext.grid.ActionColumn};Ext.grid.RowNumberer=Ext.extend(Object,{header:"",width:23,sortable:false,constructor:function(a){Ext.apply(this,a);if(this.rowspan){this.renderer=this.renderer.createDelegate(this)}},fixed:true,hideable:false,menuDisabled:true,dataIndex:"",id:"numberer",rowspan:undefined,renderer:function(b,c,a,d){if(this.rowspan){c.cellAttr='rowspan="'+this.rowspan+'"'}return d+1}});Ext.grid.CheckboxSelectionModel=Ext.extend(Ext.grid.RowSelectionModel,{header:'
     
    ',width:20,sortable:false,menuDisabled:true,fixed:true,hideable:false,dataIndex:"",id:"checker",isColumn:true,constructor:function(){Ext.grid.CheckboxSelectionModel.superclass.constructor.apply(this,arguments);if(this.checkOnly){this.handleMouseDown=Ext.emptyFn}},initEvents:function(){Ext.grid.CheckboxSelectionModel.superclass.initEvents.call(this);this.grid.on("render",function(){Ext.fly(this.grid.getView().innerHd).on("mousedown",this.onHdMouseDown,this)},this)},processEvent:function(b,d,c,g,a){if(b=="mousedown"){this.onMouseDown(d,d.getTarget());return false}else{return Ext.grid.Column.prototype.processEvent.apply(this,arguments)}},onMouseDown:function(c,b){if(c.button===0&&b.className=="x-grid3-row-checker"){c.stopEvent();var d=c.getTarget(".x-grid3-row");if(d){var a=d.rowIndex;if(this.isSelected(a)){this.deselectRow(a)}else{this.selectRow(a,true);this.grid.getView().focusRow(a)}}}},onHdMouseDown:function(c,a){if(a.className=="x-grid3-hd-checker"){c.stopEvent();var b=Ext.fly(a.parentNode);var d=b.hasClass("x-grid3-hd-checker-on");if(d){b.removeClass("x-grid3-hd-checker-on");this.clearSelections()}else{b.addClass("x-grid3-hd-checker-on");this.selectAll()}}},renderer:function(b,c,a){return'
     
    '},onEditorSelect:function(b,a){if(a!=b&&!this.checkOnly){this.selectRow(b)}}});Ext.grid.CellSelectionModel=Ext.extend(Ext.grid.AbstractSelectionModel,{constructor:function(a){Ext.apply(this,a);this.selection=null;this.addEvents("beforecellselect","cellselect","selectionchange");Ext.grid.CellSelectionModel.superclass.constructor.call(this)},initEvents:function(){this.grid.on("cellmousedown",this.handleMouseDown,this);this.grid.on(Ext.EventManager.getKeyEvent(),this.handleKeyDown,this);this.grid.getView().on({scope:this,refresh:this.onViewChange,rowupdated:this.onRowUpdated,beforerowremoved:this.clearSelections,beforerowsinserted:this.clearSelections});if(this.grid.isEditor){this.grid.on("beforeedit",this.beforeEdit,this)}},beforeEdit:function(a){this.select(a.row,a.column,false,true,a.record)},onRowUpdated:function(a,b,c){if(this.selection&&this.selection.record==c){a.onCellSelect(b,this.selection.cell[1])}},onViewChange:function(){this.clearSelections(true)},getSelectedCell:function(){return this.selection?this.selection.cell:null},clearSelections:function(b){var a=this.selection;if(a){if(b!==true){this.grid.view.onCellDeselect(a.cell[0],a.cell[1])}this.selection=null;this.fireEvent("selectionchange",this,null)}},hasSelection:function(){return this.selection?true:false},handleMouseDown:function(b,d,a,c){if(c.button!==0||this.isLocked()){return}this.select(d,a)},select:function(g,c,b,e,d){if(this.fireEvent("beforecellselect",this,g,c)!==false){this.clearSelections();d=d||this.grid.store.getAt(g);this.selection={record:d,cell:[g,c]};if(!b){var a=this.grid.getView();a.onCellSelect(g,c);if(e!==true){a.focusCell(g,c)}}this.fireEvent("cellselect",this,g,c);this.fireEvent("selectionchange",this,this.selection)}},isSelectable:function(c,b,a){return !a.isHidden(b)},onEditorKey:function(b,a){if(a.getKey()==a.TAB){this.handleKeyDown(a)}},handleKeyDown:function(j){if(!j.isNavKeyPress()){return}var d=j.getKey(),i=this.grid,p=this.selection,b=this,m=function(g,c,e){return i.walkCells(g,c,e,i.isEditor&&i.editing?b.acceptsNav:b.isSelectable,b)},o,h,a,l,n;switch(d){case j.ESC:case j.PAGE_UP:case j.PAGE_DOWN:break;default:j.stopEvent();break}if(!p){o=m(0,0,1);if(o){this.select(o[0],o[1])}return}o=p.cell;a=o[0];l=o[1];switch(d){case j.TAB:if(j.shiftKey){h=m(a,l-1,-1)}else{h=m(a,l+1,1)}break;case j.DOWN:h=m(a+1,l,1);break;case j.UP:h=m(a-1,l,-1);break;case j.RIGHT:h=m(a,l+1,1);break;case j.LEFT:h=m(a,l-1,-1);break;case j.ENTER:if(i.isEditor&&!i.editing){i.startEditing(a,l);return}break}if(h){a=h[0];l=h[1];this.select(a,l);if(i.isEditor&&i.editing){n=i.activeEditor;if(n&&n.field.triggerBlur){n.field.triggerBlur()}i.startEditing(a,l)}}},acceptsNav:function(c,b,a){return !a.isHidden(b)&&a.isCellEditable(b,c)}});Ext.grid.EditorGridPanel=Ext.extend(Ext.grid.GridPanel,{clicksToEdit:2,forceValidation:false,isEditor:true,detectEdit:false,autoEncode:false,trackMouseOver:false,initComponent:function(){Ext.grid.EditorGridPanel.superclass.initComponent.call(this);if(!this.selModel){this.selModel=new Ext.grid.CellSelectionModel()}this.activeEditor=null;this.addEvents("beforeedit","afteredit","validateedit")},initEvents:function(){Ext.grid.EditorGridPanel.superclass.initEvents.call(this);this.getGridEl().on("mousewheel",this.stopEditing.createDelegate(this,[true]),this);this.on("columnresize",this.stopEditing,this,[true]);if(this.clicksToEdit==1){this.on("cellclick",this.onCellDblClick,this)}else{var a=this.getView();if(this.clicksToEdit=="auto"&&a.mainBody){a.mainBody.on("mousedown",this.onAutoEditClick,this)}this.on("celldblclick",this.onCellDblClick,this)}},onResize:function(){Ext.grid.EditorGridPanel.superclass.onResize.apply(this,arguments);var a=this.activeEditor;if(this.editing&&a){a.realign(true)}},onCellDblClick:function(b,c,a){this.startEditing(c,a)},onAutoEditClick:function(c,b){if(c.button!==0){return}var g=this.view.findRowIndex(b),a=this.view.findCellIndex(b);if(g!==false&&a!==false){this.stopEditing();if(this.selModel.getSelectedCell){var d=this.selModel.getSelectedCell();if(d&&d[0]===g&&d[1]===a){this.startEditing(g,a)}}else{if(this.selModel.isSelected(g)){this.startEditing(g,a)}}}},onEditComplete:function(b,d,a){this.editing=false;this.lastActiveEditor=this.activeEditor;this.activeEditor=null;var c=b.record,h=this.colModel.getDataIndex(b.col);d=this.postEditValue(d,a,c,h);if(this.forceValidation===true||String(d)!==String(a)){var g={grid:this,record:c,field:h,originalValue:a,value:d,row:b.row,column:b.col,cancel:false};if(this.fireEvent("validateedit",g)!==false&&!g.cancel&&String(d)!==String(a)){c.set(h,g.value);delete g.cancel;this.fireEvent("afteredit",g)}}this.view.focusCell(b.row,b.col)},startEditing:function(i,c){this.stopEditing();if(this.colModel.isCellEditable(c,i)){this.view.ensureVisible(i,c,true);var d=this.store.getAt(i),h=this.colModel.getDataIndex(c),g={grid:this,record:d,field:h,value:d.data[h],row:i,column:c,cancel:false};if(this.fireEvent("beforeedit",g)!==false&&!g.cancel){this.editing=true;var b=this.colModel.getCellEditor(c,i);if(!b){return}if(!b.rendered){b.parentEl=this.view.getEditorParent(b);b.on({scope:this,render:{fn:function(e){e.field.focus(false,true)},single:true,scope:this},specialkey:function(k,j){this.getSelectionModel().onEditorKey(k,j)},complete:this.onEditComplete,canceledit:this.stopEditing.createDelegate(this,[true])})}Ext.apply(b,{row:i,col:c,record:d});this.lastEdit={row:i,col:c};this.activeEditor=b;if(b.field.isXType("checkbox")){b.allowBlur=false;this.setupCheckbox(b.field)}b.selectSameEditor=(this.activeEditor==this.lastActiveEditor);var a=this.preEditValue(d,h);b.startEdit(this.view.getCell(i,c).firstChild,Ext.isDefined(a)?a:"");(function(){delete b.selectSameEditor}).defer(50)}}},setupCheckbox:function(c){var b=this,a=function(){c.el.on("click",b.onCheckClick,b,{single:true})};if(c.rendered){a()}else{c.on("render",a,null,{single:true})}},onCheckClick:function(){var a=this.activeEditor;a.allowBlur=true;a.field.focus(false,10)},preEditValue:function(a,c){var b=a.data[c];return this.autoEncode&&Ext.isString(b)?Ext.util.Format.htmlDecode(b):b},postEditValue:function(c,a,b,d){return this.autoEncode&&Ext.isString(c)?Ext.util.Format.htmlEncode(c):c},stopEditing:function(b){if(this.editing){var a=this.lastActiveEditor=this.activeEditor;if(a){a[b===true?"cancelEdit":"completeEdit"]();this.view.focusCell(a.row,a.col)}this.activeEditor=null}this.editing=false}});Ext.reg("editorgrid",Ext.grid.EditorGridPanel);Ext.grid.GridEditor=function(b,a){Ext.grid.GridEditor.superclass.constructor.call(this,b,a);b.monitorTab=false};Ext.extend(Ext.grid.GridEditor,Ext.Editor,{alignment:"tl-tl",autoSize:"width",hideEl:false,cls:"x-small-editor x-grid-editor",shim:false,shadow:false});Ext.grid.PropertyRecord=Ext.data.Record.create([{name:"name",type:"string"},"value"]);Ext.grid.PropertyStore=Ext.extend(Ext.util.Observable,{constructor:function(a,b){this.grid=a;this.store=new Ext.data.Store({recordType:Ext.grid.PropertyRecord});this.store.on("update",this.onUpdate,this);if(b){this.setSource(b)}Ext.grid.PropertyStore.superclass.constructor.call(this)},setSource:function(c){this.source=c;this.store.removeAll();var b=[];for(var a in c){if(this.isEditableValue(c[a])){b.push(new Ext.grid.PropertyRecord({name:a,value:c[a]},a))}}this.store.loadRecords({records:b},{},true)},onUpdate:function(e,a,d){if(d==Ext.data.Record.EDIT){var b=a.data.value;var c=a.modified.value;if(this.grid.fireEvent("beforepropertychange",this.source,a.id,b,c)!==false){this.source[a.id]=b;a.commit();this.grid.fireEvent("propertychange",this.source,a.id,b,c)}else{a.reject()}}},getProperty:function(a){return this.store.getAt(a)},isEditableValue:function(a){return Ext.isPrimitive(a)||Ext.isDate(a)},setValue:function(d,c,a){var b=this.getRec(d);if(b){b.set("value",c);this.source[d]=c}else{if(a){this.source[d]=c;b=new Ext.grid.PropertyRecord({name:d,value:c},d);this.store.add(b)}}},remove:function(b){var a=this.getRec(b);if(a){this.store.remove(a);delete this.source[b]}},getRec:function(a){return this.store.getById(a)},getSource:function(){return this.source}});Ext.grid.PropertyColumnModel=Ext.extend(Ext.grid.ColumnModel,{nameText:"Name",valueText:"Value",dateFormat:"m/j/Y",trueText:"true",falseText:"false",constructor:function(c,b){var d=Ext.grid,e=Ext.form;this.grid=c;d.PropertyColumnModel.superclass.constructor.call(this,[{header:this.nameText,width:50,sortable:true,dataIndex:"name",id:"name",menuDisabled:true},{header:this.valueText,width:50,resizable:false,dataIndex:"value",id:"value",menuDisabled:true}]);this.store=b;var a=new e.Field({autoCreate:{tag:"select",children:[{tag:"option",value:"true",html:this.trueText},{tag:"option",value:"false",html:this.falseText}]},getValue:function(){return this.el.dom.value=="true"}});this.editors={date:new d.GridEditor(new e.DateField({selectOnFocus:true})),string:new d.GridEditor(new e.TextField({selectOnFocus:true})),number:new d.GridEditor(new e.NumberField({selectOnFocus:true,style:"text-align:left;"})),"boolean":new d.GridEditor(a,{autoSize:"both"})};this.renderCellDelegate=this.renderCell.createDelegate(this);this.renderPropDelegate=this.renderProp.createDelegate(this)},renderDate:function(a){return a.dateFormat(this.dateFormat)},renderBool:function(a){return this[a?"trueText":"falseText"]},isCellEditable:function(a,b){return a==1},getRenderer:function(a){return a==1?this.renderCellDelegate:this.renderPropDelegate},renderProp:function(a){return this.getPropertyName(a)},renderCell:function(d,b,c){var a=this.grid.customRenderers[c.get("name")];if(a){return a.apply(this,arguments)}var e=d;if(Ext.isDate(d)){e=this.renderDate(d)}else{if(typeof d=="boolean"){e=this.renderBool(d)}}return Ext.util.Format.htmlEncode(e)},getPropertyName:function(b){var a=this.grid.propertyNames;return a&&a[b]?a[b]:b},getCellEditor:function(a,e){var b=this.store.getProperty(e),d=b.data.name,c=b.data.value;if(this.grid.customEditors[d]){return this.grid.customEditors[d]}if(Ext.isDate(c)){return this.editors.date}else{if(typeof c=="number"){return this.editors.number}else{if(typeof c=="boolean"){return this.editors["boolean"]}else{return this.editors.string}}}},destroy:function(){Ext.grid.PropertyColumnModel.superclass.destroy.call(this);this.destroyEditors(this.editors);this.destroyEditors(this.grid.customEditors)},destroyEditors:function(b){for(var a in b){Ext.destroy(b[a])}}});Ext.grid.PropertyGrid=Ext.extend(Ext.grid.EditorGridPanel,{enableColumnMove:false,stripeRows:false,trackMouseOver:false,clicksToEdit:1,enableHdMenu:false,viewConfig:{forceFit:true},initComponent:function(){this.customRenderers=this.customRenderers||{};this.customEditors=this.customEditors||{};this.lastEditRow=null;var b=new Ext.grid.PropertyStore(this);this.propStore=b;var a=new Ext.grid.PropertyColumnModel(this,b);b.store.sort("name","ASC");this.addEvents("beforepropertychange","propertychange");this.cm=a;this.ds=b.store;Ext.grid.PropertyGrid.superclass.initComponent.call(this);this.mon(this.selModel,"beforecellselect",function(e,d,c){if(c===0){this.startEditing.defer(200,this,[d,1]);return false}},this)},onRender:function(){Ext.grid.PropertyGrid.superclass.onRender.apply(this,arguments);this.getGridEl().addClass("x-props-grid")},afterRender:function(){Ext.grid.PropertyGrid.superclass.afterRender.apply(this,arguments);if(this.source){this.setSource(this.source)}},setSource:function(a){this.propStore.setSource(a)},getSource:function(){return this.propStore.getSource()},setProperty:function(c,b,a){this.propStore.setValue(c,b,a)},removeProperty:function(a){this.propStore.remove(a)}});Ext.reg("propertygrid",Ext.grid.PropertyGrid);Ext.grid.GroupingView=Ext.extend(Ext.grid.GridView,{groupByText:"Group By This Field",showGroupsText:"Show in Groups",hideGroupedColumn:false,showGroupName:true,startCollapsed:false,enableGrouping:true,enableGroupingMenu:true,enableNoGroups:true,emptyGroupText:"(None)",ignoreAdd:false,groupTextTpl:"{text}",groupMode:"value",cancelEditOnToggle:true,initTemplates:function(){Ext.grid.GroupingView.superclass.initTemplates.call(this);this.state={};var a=this.grid.getSelectionModel();a.on(a.selectRow?"beforerowselect":"beforecellselect",this.onBeforeRowSelect,this);if(!this.startGroup){this.startGroup=new Ext.XTemplate('
    ','
    ',this.groupTextTpl,"
    ",'
    ')}this.startGroup.compile();if(!this.endGroup){this.endGroup="
    "}},findGroup:function(a){return Ext.fly(a).up(".x-grid-group",this.mainBody.dom)},getGroups:function(){return this.hasRows()?this.mainBody.dom.childNodes:[]},onAdd:function(d,a,b){if(this.canGroup()&&!this.ignoreAdd){var c=this.getScrollState();this.fireEvent("beforerowsinserted",d,b,b+(a.length-1));this.refresh();this.restoreScroll(c);this.fireEvent("rowsinserted",d,b,b+(a.length-1))}else{if(!this.canGroup()){Ext.grid.GroupingView.superclass.onAdd.apply(this,arguments)}}},onRemove:function(e,a,b,d){Ext.grid.GroupingView.superclass.onRemove.apply(this,arguments);var c=document.getElementById(a._groupId);if(c&&c.childNodes[1].childNodes.length<1){Ext.removeNode(c)}this.applyEmptyText()},refreshRow:function(a){if(this.ds.getCount()==1){this.refresh()}else{this.isUpdating=true;Ext.grid.GroupingView.superclass.refreshRow.apply(this,arguments);this.isUpdating=false}},beforeMenuShow:function(){var c,a=this.hmenu.items,b=this.cm.config[this.hdCtxIndex].groupable===false;if((c=a.get("groupBy"))){c.setDisabled(b)}if((c=a.get("showGroups"))){c.setDisabled(b);c.setChecked(this.canGroup(),true)}},renderUI:function(){var a=Ext.grid.GroupingView.superclass.renderUI.call(this);if(this.enableGroupingMenu&&this.hmenu){this.hmenu.add("-",{itemId:"groupBy",text:this.groupByText,handler:this.onGroupByClick,scope:this,iconCls:"x-group-by-icon"});if(this.enableNoGroups){this.hmenu.add({itemId:"showGroups",text:this.showGroupsText,checked:true,checkHandler:this.onShowGroupsClick,scope:this})}this.hmenu.on("beforeshow",this.beforeMenuShow,this)}return a},processEvent:function(b,i){Ext.grid.GroupingView.superclass.processEvent.call(this,b,i);var h=i.getTarget(".x-grid-group-hd",this.mainBody);if(h){var g=this.getGroupField(),d=this.getPrefix(g),a=h.id.substring(d.length),c=new RegExp("gp-"+Ext.escapeRe(g)+"--hd");a=a.substr(0,a.length-3);if(a||c.test(h.id)){this.grid.fireEvent("group"+b,this.grid,g,a,i)}if(b=="mousedown"&&i.button==0){this.toggleGroup(h.parentNode)}}},onGroupByClick:function(){var a=this.grid;this.enableGrouping=true;a.store.groupBy(this.cm.getDataIndex(this.hdCtxIndex));a.fireEvent("groupchange",a,a.store.getGroupState());this.beforeMenuShow();this.refresh()},onShowGroupsClick:function(a,b){this.enableGrouping=b;if(b){this.onGroupByClick()}else{this.grid.store.clearGrouping();this.grid.fireEvent("groupchange",this,null)}},toggleRowIndex:function(c,a){if(!this.canGroup()){return}var b=this.getRow(c);if(b){this.toggleGroup(this.findGroup(b),a)}},toggleGroup:function(c,b){var a=Ext.get(c),d=Ext.util.Format.htmlEncode(a.id);b=Ext.isDefined(b)?b:a.hasClass("x-grid-group-collapsed");if(this.state[d]!==b){if(this.cancelEditOnToggle!==false){this.grid.stopEditing(true)}this.state[d]=b;a[b?"removeClass":"addClass"]("x-grid-group-collapsed")}},toggleAllGroups:function(c){var b=this.getGroups();for(var d=0,a=b.length;d Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. Preamble The GNU General Public License is a free, copyleft license for software and other kinds of works. The licenses for most software and other practical works are designed to take away your freedom to share and change the works. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change all versions of a program--to make sure it remains free software for all its users. We, the Free Software Foundation, use the GNU General Public License for most of our software; it applies also to any other work released this way by its authors. You can apply it to your programs, too. When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs, and that you know you can do these things. To protect your rights, we need to prevent others from denying you these rights or asking you to surrender the rights. Therefore, you have certain responsibilities if you distribute copies of the software, or if you modify it: responsibilities to respect the freedom of others. For example, if you distribute copies of such a program, whether gratis or for a fee, you must pass on to the recipients the same freedoms that you received. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. Developers that use the GNU GPL protect your rights with two steps: (1) assert copyright on the software, and (2) offer you this License giving you legal permission to copy, distribute and/or modify it. For the developers' and authors' protection, the GPL clearly explains that there is no warranty for this free software. For both users' and authors' sake, the GPL requires that modified versions be marked as changed, so that their problems will not be attributed erroneously to authors of previous versions. Some devices are designed to deny users access to install or run modified versions of the software inside them, although the manufacturer can do so. This is fundamentally incompatible with the aim of protecting users' freedom to change the software. The systematic pattern of such abuse occurs in the area of products for individuals to use, which is precisely where it is most unacceptable. Therefore, we have designed this version of the GPL to prohibit the practice for those products. If such problems arise substantially in other domains, we stand ready to extend this provision to those domains in future versions of the GPL, as needed to protect the freedom of users. Finally, every program is threatened constantly by software patents. States should not allow patents to restrict development and use of software on general-purpose computers, but in those that do, we wish to avoid the special danger that patents applied to a free program could make it effectively proprietary. To prevent this, the GPL assures that patents cannot be used to render the program non-free. The precise terms and conditions for copying, distribution and modification follow. TERMS AND CONDITIONS 0. Definitions. "This License" refers to version 3 of the GNU General Public License. "Copyright" also means copyright-like laws that apply to other kinds of works, such as semiconductor masks. "The Program" refers to any copyrightable work licensed under this License. Each licensee is addressed as "you". "Licensees" and "recipients" may be individuals or organizations. To "modify" a work means to copy from or adapt all or part of the work in a fashion requiring copyright permission, other than the making of an exact copy. The resulting work is called a "modified version" of the earlier work or a work "based on" the earlier work. A "covered work" means either the unmodified Program or a work based on the Program. To "propagate" a work means to do anything with it that, without permission, would make you directly or secondarily liable for infringement under applicable copyright law, except executing it on a computer or modifying a private copy. Propagation includes copying, distribution (with or without modification), making available to the public, and in some countries other activities as well. To "convey" a work means any kind of propagation that enables other parties to make or receive copies. Mere interaction with a user through a computer network, with no transfer of a copy, is not conveying. An interactive user interface displays "Appropriate Legal Notices" to the extent that it includes a convenient and prominently visible feature that (1) displays an appropriate copyright notice, and (2) tells the user that there is no warranty for the work (except to the extent that warranties are provided), that licensees may convey the work under this License, and how to view a copy of this License. If the interface presents a list of user commands or options, such as a menu, a prominent item in the list meets this criterion. 1. Source Code. The "source code" for a work means the preferred form of the work for making modifications to it. "Object code" means any non-source form of a work. A "Standard Interface" means an interface that either is an official standard defined by a recognized standards body, or, in the case of interfaces specified for a particular programming language, one that is widely used among developers working in that language. The "System Libraries" of an executable work include anything, other than the work as a whole, that (a) is included in the normal form of packaging a Major Component, but which is not part of that Major Component, and (b) serves only to enable use of the work with that Major Component, or to implement a Standard Interface for which an implementation is available to the public in source code form. A "Major Component", in this context, means a major essential component (kernel, window system, and so on) of the specific operating system (if any) on which the executable work runs, or a compiler used to produce the work, or an object code interpreter used to run it. The "Corresponding Source" for a work in object code form means all the source code needed to generate, install, and (for an executable work) run the object code and to modify the work, including scripts to control those activities. However, it does not include the work's System Libraries, or general-purpose tools or generally available free programs which are used unmodified in performing those activities but which are not part of the work. For example, Corresponding Source includes interface definition files associated with source files for the work, and the source code for shared libraries and dynamically linked subprograms that the work is specifically designed to require, such as by intimate data communication or control flow between those subprograms and other parts of the work. The Corresponding Source need not include anything that users can regenerate automatically from other parts of the Corresponding Source. The Corresponding Source for a work in source code form is that same work. 2. Basic Permissions. All rights granted under this License are granted for the term of copyright on the Program, and are irrevocable provided the stated conditions are met. This License explicitly affirms your unlimited permission to run the unmodified Program. The output from running a covered work is covered by this License only if the output, given its content, constitutes a covered work. This License acknowledges your rights of fair use or other equivalent, as provided by copyright law. You may make, run and propagate covered works that you do not convey, without conditions so long as your license otherwise remains in force. You may convey covered works to others for the sole purpose of having them make modifications exclusively for you, or provide you with facilities for running those works, provided that you comply with the terms of this License in conveying all material for which you do not control copyright. Those thus making or running the covered works for you must do so exclusively on your behalf, under your direction and control, on terms that prohibit them from making any copies of your copyrighted material outside their relationship with you. Conveying under any other circumstances is permitted solely under the conditions stated below. Sublicensing is not allowed; section 10 makes it unnecessary. 3. Protecting Users' Legal Rights From Anti-Circumvention Law. No covered work shall be deemed part of an effective technological measure under any applicable law fulfilling obligations under article 11 of the WIPO copyright treaty adopted on 20 December 1996, or similar laws prohibiting or restricting circumvention of such measures. When you convey a covered work, you waive any legal power to forbid circumvention of technological measures to the extent such circumvention is effected by exercising rights under this License with respect to the covered work, and you disclaim any intention to limit operation or modification of the work as a means of enforcing, against the work's users, your or third parties' legal rights to forbid circumvention of technological measures. 4. Conveying Verbatim Copies. You may convey verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice; keep intact all notices stating that this License and any non-permissive terms added in accord with section 7 apply to the code; keep intact all notices of the absence of any warranty; and give all recipients a copy of this License along with the Program. You may charge any price or no price for each copy that you convey, and you may offer support or warranty protection for a fee. 5. Conveying Modified Source Versions. You may convey a work based on the Program, or the modifications to produce it from the Program, in the form of source code under the terms of section 4, provided that you also meet all of these conditions: a) The work must carry prominent notices stating that you modified it, and giving a relevant date. b) The work must carry prominent notices stating that it is released under this License and any conditions added under section 7. This requirement modifies the requirement in section 4 to "keep intact all notices". c) You must license the entire work, as a whole, under this License to anyone who comes into possession of a copy. This License will therefore apply, along with any applicable section 7 additional terms, to the whole of the work, and all its parts, regardless of how they are packaged. This License gives no permission to license the work in any other way, but it does not invalidate such permission if you have separately received it. d) If the work has interactive user interfaces, each must display Appropriate Legal Notices; however, if the Program has interactive interfaces that do not display Appropriate Legal Notices, your work need not make them do so. A compilation of a covered work with other separate and independent works, which are not by their nature extensions of the covered work, and which are not combined with it such as to form a larger program, in or on a volume of a storage or distribution medium, is called an "aggregate" if the compilation and its resulting copyright are not used to limit the access or legal rights of the compilation's users beyond what the individual works permit. Inclusion of a covered work in an aggregate does not cause this License to apply to the other parts of the aggregate. 6. Conveying Non-Source Forms. You may convey a covered work in object code form under the terms of sections 4 and 5, provided that you also convey the machine-readable Corresponding Source under the terms of this License, in one of these ways: a) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by the Corresponding Source fixed on a durable physical medium customarily used for software interchange. b) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by a written offer, valid for at least three years and valid for as long as you offer spare parts or customer support for that product model, to give anyone who possesses the object code either (1) a copy of the Corresponding Source for all the software in the product that is covered by this License, on a durable physical medium customarily used for software interchange, for a price no more than your reasonable cost of physically performing this conveying of source, or (2) access to copy the Corresponding Source from a network server at no charge. c) Convey individual copies of the object code with a copy of the written offer to provide the Corresponding Source. This alternative is allowed only occasionally and noncommercially, and only if you received the object code with such an offer, in accord with subsection 6b. d) Convey the object code by offering access from a designated place (gratis or for a charge), and offer equivalent access to the Corresponding Source in the same way through the same place at no further charge. You need not require recipients to copy the Corresponding Source along with the object code. If the place to copy the object code is a network server, the Corresponding Source may be on a different server (operated by you or a third party) that supports equivalent copying facilities, provided you maintain clear directions next to the object code saying where to find the Corresponding Source. Regardless of what server hosts the Corresponding Source, you remain obligated to ensure that it is available for as long as needed to satisfy these requirements. e) Convey the object code using peer-to-peer transmission, provided you inform other peers where the object code and Corresponding Source of the work are being offered to the general public at no charge under subsection 6d. A separable portion of the object code, whose source code is excluded from the Corresponding Source as a System Library, need not be included in conveying the object code work. A "User Product" is either (1) a "consumer product", which means any tangible personal property which is normally used for personal, family, or household purposes, or (2) anything designed or sold for incorporation into a dwelling. In determining whether a product is a consumer product, doubtful cases shall be resolved in favor of coverage. For a particular product received by a particular user, "normally used" refers to a typical or common use of that class of product, regardless of the status of the particular user or of the way in which the particular user actually uses, or expects or is expected to use, the product. A product is a consumer product regardless of whether the product has substantial commercial, industrial or non-consumer uses, unless such uses represent the only significant mode of use of the product. "Installation Information" for a User Product means any methods, procedures, authorization keys, or other information required to install and execute modified versions of a covered work in that User Product from a modified version of its Corresponding Source. The information must suffice to ensure that the continued functioning of the modified object code is in no case prevented or interfered with solely because modification has been made. If you convey an object code work under this section in, or with, or specifically for use in, a User Product, and the conveying occurs as part of a transaction in which the right of possession and use of the User Product is transferred to the recipient in perpetuity or for a fixed term (regardless of how the transaction is characterized), the Corresponding Source conveyed under this section must be accompanied by the Installation Information. But this requirement does not apply if neither you nor any third party retains the ability to install modified object code on the User Product (for example, the work has been installed in ROM). The requirement to provide Installation Information does not include a requirement to continue to provide support service, warranty, or updates for a work that has been modified or installed by the recipient, or for the User Product in which it has been modified or installed. Access to a network may be denied when the modification itself materially and adversely affects the operation of the network or violates the rules and protocols for communication across the network. Corresponding Source conveyed, and Installation Information provided, in accord with this section must be in a format that is publicly documented (and with an implementation available to the public in source code form), and must require no special password or key for unpacking, reading or copying. 7. Additional Terms. "Additional permissions" are terms that supplement the terms of this License by making exceptions from one or more of its conditions. Additional permissions that are applicable to the entire Program shall be treated as though they were included in this License, to the extent that they are valid under applicable law. If additional permissions apply only to part of the Program, that part may be used separately under those permissions, but the entire Program remains governed by this License without regard to the additional permissions. When you convey a copy of a covered work, you may at your option remove any additional permissions from that copy, or from any part of it. (Additional permissions may be written to require their own removal in certain cases when you modify the work.) You may place additional permissions on material, added by you to a covered work, for which you have or can give appropriate copyright permission. Notwithstanding any other provision of this License, for material you add to a covered work, you may (if authorized by the copyright holders of that material) supplement the terms of this License with terms: a) Disclaiming warranty or limiting liability differently from the terms of sections 15 and 16 of this License; or b) Requiring preservation of specified reasonable legal notices or author attributions in that material or in the Appropriate Legal Notices displayed by works containing it; or c) Prohibiting misrepresentation of the origin of that material, or requiring that modified versions of such material be marked in reasonable ways as different from the original version; or d) Limiting the use for publicity purposes of names of licensors or authors of the material; or e) Declining to grant rights under trademark law for use of some trade names, trademarks, or service marks; or f) Requiring indemnification of licensors and authors of that material by anyone who conveys the material (or modified versions of it) with contractual assumptions of liability to the recipient, for any liability that these contractual assumptions directly impose on those licensors and authors. All other non-permissive additional terms are considered "further restrictions" within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term. If a license document contains a further restriction but permits relicensing or conveying under this License, you may add to a covered work material governed by the terms of that license document, provided that the further restriction does not survive such relicensing or conveying. If you add terms to a covered work in accord with this section, you must place, in the relevant source files, a statement of the additional terms that apply to those files, or a notice indicating where to find the applicable terms. Additional terms, permissive or non-permissive, may be stated in the form of a separately written license, or stated as exceptions; the above requirements apply either way. 8. Termination. You may not propagate or modify a covered work except as expressly provided under this License. Any attempt otherwise to propagate or modify it is void, and will automatically terminate your rights under this License (including any patent licenses granted under the third paragraph of section 11). However, if you cease all violation of this License, then your license from a particular copyright holder is reinstated (a) provisionally, unless and until the copyright holder explicitly and finally terminates your license, and (b) permanently, if the copyright holder fails to notify you of the violation by some reasonable means prior to 60 days after the cessation. Moreover, your license from a particular copyright holder is reinstated permanently if the copyright holder notifies you of the violation by some reasonable means, this is the first time you have received notice of violation of this License (for any work) from that copyright holder, and you cure the violation prior to 30 days after your receipt of the notice. Termination of your rights under this section does not terminate the licenses of parties who have received copies or rights from you under this License. If your rights have been terminated and not permanently reinstated, you do not qualify to receive new licenses for the same material under section 10. 9. Acceptance Not Required for Having Copies. You are not required to accept this License in order to receive or run a copy of the Program. Ancillary propagation of a covered work occurring solely as a consequence of using peer-to-peer transmission to receive a copy likewise does not require acceptance. However, nothing other than this License grants you permission to propagate or modify any covered work. These actions infringe copyright if you do not accept this License. Therefore, by modifying or propagating a covered work, you indicate your acceptance of this License to do so. 10. Automatic Licensing of Downstream Recipients. Each time you convey a covered work, the recipient automatically receives a license from the original licensors, to run, modify and propagate that work, subject to this License. You are not responsible for enforcing compliance by third parties with this License. An "entity transaction" is a transaction transferring control of an organization, or substantially all assets of one, or subdividing an organization, or merging organizations. If propagation of a covered work results from an entity transaction, each party to that transaction who receives a copy of the work also receives whatever licenses to the work the party's predecessor in interest had or could give under the previous paragraph, plus a right to possession of the Corresponding Source of the work from the predecessor in interest, if the predecessor has it or can get it with reasonable efforts. You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License. For example, you may not impose a license fee, royalty, or other charge for exercise of rights granted under this License, and you may not initiate litigation (including a cross-claim or counterclaim in a lawsuit) alleging that any patent claim is infringed by making, using, selling, offering for sale, or importing the Program or any portion of it. 11. Patents. A "contributor" is a copyright holder who authorizes use under this License of the Program or a work on which the Program is based. The work thus licensed is called the contributor's "contributor version". A contributor's "essential patent claims" are all patent claims owned or controlled by the contributor, whether already acquired or hereafter acquired, that would be infringed by some manner, permitted by this License, of making, using, or selling its contributor version, but do not include claims that would be infringed only as a consequence of further modification of the contributor version. For purposes of this definition, "control" includes the right to grant patent sublicenses in a manner consistent with the requirements of this License. Each contributor grants you a non-exclusive, worldwide, royalty-free patent license under the contributor's essential patent claims, to make, use, sell, offer for sale, import and otherwise run, modify and propagate the contents of its contributor version. In the following three paragraphs, a "patent license" is any express agreement or commitment, however denominated, not to enforce a patent (such as an express permission to practice a patent or covenant not to sue for patent infringement). To "grant" such a patent license to a party means to make such an agreement or commitment not to enforce a patent against the party. If you convey a covered work, knowingly relying on a patent license, and the Corresponding Source of the work is not available for anyone to copy, free of charge and under the terms of this License, through a publicly available network server or other readily accessible means, then you must either (1) cause the Corresponding Source to be so available, or (2) arrange to deprive yourself of the benefit of the patent license for this particular work, or (3) arrange, in a manner consistent with the requirements of this License, to extend the patent license to downstream recipients. "Knowingly relying" means you have actual knowledge that, but for the patent license, your conveying the covered work in a country, or your recipient's use of the covered work in a country, would infringe one or more identifiable patents in that country that you have reason to believe are valid. If, pursuant to or in connection with a single transaction or arrangement, you convey, or propagate by procuring conveyance of, a covered work, and grant a patent license to some of the parties receiving the covered work authorizing them to use, propagate, modify or convey a specific copy of the covered work, then the patent license you grant is automatically extended to all recipients of the covered work and works based on it. A patent license is "discriminatory" if it does not include within the scope of its coverage, prohibits the exercise of, or is conditioned on the non-exercise of one or more of the rights that are specifically granted under this License. You may not convey a covered work if you are a party to an arrangement with a third party that is in the business of distributing software, under which you make payment to the third party based on the extent of your activity of conveying the work, and under which the third party grants, to any of the parties who would receive the covered work from you, a discriminatory patent license (a) in connection with copies of the covered work conveyed by you (or copies made from those copies), or (b) primarily for and in connection with specific products or compilations that contain the covered work, unless you entered into that arrangement, or that patent license was granted, prior to 28 March 2007. Nothing in this License shall be construed as excluding or limiting any implied license or other defenses to infringement that may otherwise be available to you under applicable patent law. 12. No Surrender of Others' Freedom. If conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot convey a covered work so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not convey it at all. For example, if you agree to terms that obligate you to collect a royalty for further conveying from those to whom you convey the Program, the only way you could satisfy both those terms and this License would be to refrain entirely from conveying the Program. 13. Use with the GNU Affero General Public License. Notwithstanding any other provision of this License, you have permission to link or combine any covered work with a work licensed under version 3 of the GNU Affero General Public License into a single combined work, and to convey the resulting work. The terms of this License will continue to apply to the part which is the covered work, but the special requirements of the GNU Affero General Public License, section 13, concerning interaction through a network will apply to the combination as such. 14. Revised Versions of this License. The Free Software Foundation may publish revised and/or new versions of the GNU General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Program specifies that a certain numbered version of the GNU General Public License "or any later version" applies to it, you have the option of following the terms and conditions either of that numbered version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of the GNU General Public License, you may choose any version ever published by the Free Software Foundation. If the Program specifies that a proxy can decide which future versions of the GNU General Public License can be used, that proxy's public statement of acceptance of a version permanently authorizes you to choose that version for the Program. Later license versions may give you additional or different permissions. However, no additional obligations are imposed on any author or copyright holder as a result of your choosing to follow a later version. 15. Disclaimer of Warranty. THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 16. Limitation of Liability. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. 17. Interpretation of Sections 15 and 16. If the disclaimer of warranty and limitation of liability provided above cannot be given local legal effect according to their terms, reviewing courts shall apply local law that most closely approximates an absolute waiver of all civil liability in connection with the Program, unless a warranty or assumption of liability accompanies a copy of the Program in return for a fee. END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively state the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. Copyright (C) This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see . Also add information on how to contact you by electronic and paper mail. If the program does terminal interaction, make it output a short notice like this when it starts in an interactive mode: Copyright (C) This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'. This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. The hypothetical commands `show w' and `show c' should show the appropriate parts of the General Public License. Of course, your program's commands might be different; for a GUI interface, you would use an "about box". You should also get your employer (if you work as a programmer) or school, if any, to sign a "copyright disclaimer" for the program, if necessary. For more information on this, and how to apply and follow the GNU GPL, see . The GNU General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. But first, please read . ================================================ FILE: client/src/ext/index.html ================================================ Welcome to Ext JS

    Learn

    Use the included files to view samples and our API documentation.

    For advanced, hands-on support, please see our premium support subscriptions. Larger organizations can use our enterprise training and services.

    Engage

    Our community forums have over 100,000 registered users and are a great place to ask questions and interact with other Ext JS developers.

    Join Sencha Forum

    License

    Ext JS is dual licensed. This means:

    • Free to use and test in your local development environment.
    • Free to use in your open source projects.
    • Purchase a developer license if you don’t plan on releasing your website or application’s code as open source.

    To purchase a commercial license, please see our pricing page.

    Check out our Job Board »

    ================================================ FILE: client/src/ext/license.txt ================================================ Ext JS 3.4 - JavaScript Library Copyright (c) 2006-2013, Sencha Inc. All rights reserved. licensing@sencha.com http://www.sencha.com/license Open Source License ------------------------------------------------------------------------------------------ This version of Ext JS is licensed under the terms of the Open Source GPL 3.0 license. http://www.gnu.org/licenses/gpl.html There are several FLOSS exceptions available for use with this release for open source applications that are distributed under a license other than GPL. * Open Source License Exception for Applications http://www.sencha.com/products/floss-exception.php * Open Source License Exception for Development http://www.sencha.com/products/ux-exception.php Alternate Licensing ------------------------------------------------------------------------------------------ Commercial and OEM Licenses are available for an alternate download of Ext JS. This is the appropriate option if you are creating proprietary applications and you are not prepared to distribute and share the source code of your application under the GPL v3 license. Please visit http://www.sencha.com/license for more details. -- This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT OF THIRD-PARTY INTELLECTUAL PROPERTY RIGHTS. See the GNU General Public License for more details. ================================================ FILE: client/src/ext/release-notes.html ================================================ Release Notes for Ext JS 3.4.0

    Release Notes for Ext JS 3.4.1.1

    Release Date: March 29, 2013
    Version Number: 3.4.1.1
    Downloads: Commercial GPL

    New Features

    • EXTJSIII-118 - Support for IE10

    Bugs Fixed

    • EXTJSIII-115 - Ajax of XML data does not properly handle XML namespaces on IE8
    • EXTJSIII-119 - Grid causes double scrollbars in WebKit

    Release Notes for Ext JS 3.4.1

    Release Date: July 30, 2012
    Version Number: 3.4.1

    New Features

    • Added a functionally-reduced flavor of Ext.define. This will allow you to start structuring and declaring your classes using the new syntax. To clarify, this is not a back-port of the V4 class system or the dynamic loader, only a simple wrapper around Ext.extend and Ext.override. As such, only the most important directives are provided:
      • extend
      • override
      • statics
      • singleton
      • xtype
      • callParent

    Bugs Fixed

    • EXTJSIII-15 - IE 9.0: Active tab has double lines underneath it in quirks mode
    • EXTJSIII-17 - enableDragDrop on EditorGridPanel breaks when using CheckColumn
    • EXTJSIII-18 - CompositeField ownerCt chain broken
    • EXTJSIII-19 - Ext.calendar cannot be recreated after being destroyed
    • EXTJSIII-23 - Form layout ignores container's layoutConfig
    • EXTJSIII-24 - Can't access checkbox when using BooleanColumn's editor is a checkbox
    • EXTJSIII-30 - notifyDrop called in wrong ddGroup and/or multiple times
    • EXTJSIII-31 - Grid drag zone swallows document mousedown event in IE
    • EXTJSIII-32 - Destroying an Ext.form.HtmlEditor twice is causing it to fail to initialize on all subsequent creations of the editor in IE 9
    • EXTJSIII-33 - User cannot create select region in IE9
    • EXTJSIII-34 - applyState on grid wipes out sortable property
    • EXTJSIII-35 - Ext.util.Format.defaultValue doesn't default to an empty string
    • EXTJSIII-37 - Ext.data.HttpProxy.doRequest does not abort an activeRequest for the same action
    • EXTJSIII-38 - Update scroller in tabPanel when tab title is changed.
    • EXTJSIII-39 - DragTracker broken in IE9 Strict mode
    • EXTJSIII-41 - Buttons in a toolbar loose their position after the left side is collapsed
    • EXTJSIII-44 - Documentation error in BorderLayout.Region
    • EXTJSIII-45 - Store.hasMultiSort listed as Store.multiSort
    • EXTJSIII-48 - Component not allowing select should have proper CSS style
    • EXTJSIII-49 - Wrong ext-lang-tr.js distributed with ExtJS 3.4.0
    • EXTJSIII-50 - Focus jump out of order when tab key press from a Grid cell in editing in IE9 standard mode
    • EXTJSIII-54 - Toolbar reorderer bug. Dragged items can lose contact with mouse pointer.

    Release Notes for Ext JS 3.4.0

    Release Date: June 9, 2011
    Current Version: 3.4.0 (rev 7395/288)
    Previous Version: 3.3.3 (rev 7389/286)

    Changes

    Menu

    • Incorrect menu width on IE9
    • Fix Reorderable example

    Form/Field

    • Fix an issue with composite fields being marked incorrectly
    • Trigger fields are now flushed with fields on IE9
    • Fix field width in IE9
    • Fix fieldset header checkboxes in IE9 quirks

    Misc

    • Allow altText to be specified on a per item basis for grid columns
    • Ensure there's no bottom margin on the multi-select
    • Apply additional css classes for IE9 (ext-ie9 and x-quirks)
    • Apply additional boolean flags for IE9 (Ext.isIE9 and Ext.isIEQuirks)
    • Add support to insertHTML method to prevent createContextualFragment errors with IE9
    ================================================ FILE: client/src/ext/resources/css/debug.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ #x-debug-browser .x-tree .x-tree-node a span { padding-top:2px; line-height:18px; } #x-debug-browser .x-tool-toggle { background-position:0 -75px; } #x-debug-browser .x-tool-toggle-over { background-position:-15px -75px; } #x-debug-browser.x-panel-collapsed .x-tool-toggle { background-position:0 -60px; } #x-debug-browser.x-panel-collapsed .x-tool-toggle-over { background-position:-15px -60px; }#x-debug-browser .x-tree .x-tree-node a span { color:#222297; font-size:11px; font-family:"monotype","courier new",sans-serif; } #x-debug-browser .x-tree a i { color:#ff4545; font-style:normal; } #x-debug-browser .x-tree a em { color:#999; } #x-debug-browser .x-tree .x-tree-node .x-tree-selected a span{ background-color:#c3daf9; } ================================================ FILE: client/src/ext/resources/css/ext-all-notheme.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ html,body,div,dl,dt,dd,ul,ol,li,h1,h2,h3,h4,h5,h6,pre,form,fieldset,input,p,blockquote,th,td{margin:0;padding:0;}img,body,html{border:0;}address,caption,cite,code,dfn,em,strong,th,var{font-style:normal;font-weight:normal;}ol,ul {list-style:none;}caption,th {text-align:left;}h1,h2,h3,h4,h5,h6{font-size:100%;}q:before,q:after{content:'';} .ext-forced-border-box, .ext-forced-border-box * { -moz-box-sizing: border-box; -ms-box-sizing: border-box; -webkit-box-sizing: border-box; } .ext-el-mask { z-index: 100; position: absolute; top:0; left:0; -moz-opacity: 0.5; opacity: .50; filter: alpha(opacity=50); width: 100%; height: 100%; zoom: 1; } .ext-el-mask-msg { z-index: 20001; position: absolute; top: 0; left: 0; border:1px solid; background:repeat-x 0 -16px; padding:2px; } .ext-el-mask-msg div { padding:5px 10px 5px 10px; border:1px solid; cursor:wait; } .ext-shim { position:absolute; visibility:hidden; left:0; top:0; overflow:hidden; } .ext-ie .ext-shim { filter: alpha(opacity=0); } .ext-ie6 .ext-shim { margin-left: 5px; margin-top: 3px; } .x-mask-loading div { padding:5px 10px 5px 25px; background:no-repeat 5px 5px; line-height:16px; } /* class for hiding elements without using display:none */ .x-hidden, .x-hide-offsets { position:absolute !important; left:-10000px; top:-10000px; visibility:hidden; } .x-hide-display { display:none !important; } .x-hide-nosize, .x-hide-nosize * /* Emulate display:none for children */ { height:0px!important; width:0px!important; visibility:hidden!important; border:none!important; zoom:1; } .x-hide-visibility { visibility:hidden !important; } .x-masked { overflow: hidden !important; } .x-masked-relative { position: relative !important; } .x-masked select, .x-masked object, .x-masked embed { visibility: hidden; } .x-layer { visibility: hidden; } .x-unselectable, .x-unselectable * { user-select: none; -o-user-select: none; -ms-user-select: none; -moz-user-select: -moz-none; -webkit-user-select: none; cursor:default; } .x-repaint { zoom: 1; background-color: transparent; -moz-outline: none; outline: none; } .x-item-disabled { cursor: default; opacity: .6; -moz-opacity: .6; filter: alpha(opacity=60); } .x-item-disabled * { cursor: default !important; } .x-form-radio-group .x-item-disabled { filter: none; } .x-splitbar-proxy { position: absolute; visibility: hidden; z-index: 20001; zoom: 1; line-height: 1px; font-size: 1px; overflow: hidden; } .x-splitbar-h, .x-splitbar-proxy-h { cursor: e-resize; cursor: col-resize; } .x-splitbar-v, .x-splitbar-proxy-v { cursor: s-resize; cursor: row-resize; } .x-color-palette { width: 150px; height: 92px; cursor: pointer; } .x-color-palette a { border: 1px solid; float: left; padding: 2px; text-decoration: none; -moz-outline: 0 none; outline: 0 none; cursor: pointer; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border: 1px solid; } .x-color-palette em { display: block; border: 1px solid; } .x-color-palette em span { cursor: pointer; display: block; height: 10px; line-height: 10px; width: 10px; } .x-ie-shadow { display: none; position: absolute; overflow: hidden; left:0; top:0; zoom:1; } .x-shadow { display: none; position: absolute; overflow: hidden; left:0; top:0; } .x-shadow * { overflow: hidden; } .x-shadow * { padding: 0; border: 0; margin: 0; clear: none; zoom: 1; } /* top bottom */ .x-shadow .xstc, .x-shadow .xsbc { height: 6px; float: left; } /* corners */ .x-shadow .xstl, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbr { width: 6px; height: 6px; float: left; } /* sides */ .x-shadow .xsc { width: 100%; } .x-shadow .xsml, .x-shadow .xsmr { width: 6px; float: left; height: 100%; } .x-shadow .xsmc { float: left; height: 100%; background-color: transparent; } .x-shadow .xst, .x-shadow .xsb { height: 6px; overflow: hidden; width: 100%; } .x-shadow .xsml { background: transparent repeat-y 0 0; } .x-shadow .xsmr { background: transparent repeat-y -6px 0; } .x-shadow .xstl { background: transparent no-repeat 0 0; } .x-shadow .xstc { background: transparent repeat-x 0 -30px; } .x-shadow .xstr { background: transparent repeat-x 0 -18px; } .x-shadow .xsbl { background: transparent no-repeat 0 -12px; } .x-shadow .xsbc { background: transparent repeat-x 0 -36px; } .x-shadow .xsbr { background: transparent repeat-x 0 -6px; } .loading-indicator { background: no-repeat left; padding-left: 20px; line-height: 16px; margin: 3px; } .x-text-resize { position: absolute; left: -1000px; top: -1000px; visibility: hidden; zoom: 1; } .x-drag-overlay { width: 100%; height: 100%; display: none; position: absolute; left: 0; top: 0; background-image:url(../images/default/s.gif); z-index: 20000; } .x-clear { clear:both; height:0; overflow:hidden; line-height:0; font-size:0; } .x-spotlight { z-index: 8999; position: absolute; top:0; left:0; -moz-opacity: 0.5; opacity: .50; filter: alpha(opacity=50); width:0; height:0; zoom: 1; } #x-history-frame { position:absolute; top:-1px; left:0; width:1px; height:1px; visibility:hidden; } #x-history-field { position:absolute; top:0; left:-1px; width:1px; height:1px; visibility:hidden; } .x-resizable-handle { position:absolute; z-index:100; /* ie needs these */ font-size:1px; line-height:6px; overflow:hidden; filter:alpha(opacity=0); opacity:0; zoom:1; } .x-resizable-handle-east{ width:6px; cursor:e-resize; right:0; top:0; height:100%; } .ext-ie .x-resizable-handle-east { margin-right:-1px; /*IE rounding error*/ } .x-resizable-handle-south{ width:100%; cursor:s-resize; left:0; bottom:0; height:6px; } .ext-ie .x-resizable-handle-south { margin-bottom:-1px; /*IE rounding error*/ } .x-resizable-handle-west{ width:6px; cursor:w-resize; left:0; top:0; height:100%; } .x-resizable-handle-north{ width:100%; cursor:n-resize; left:0; top:0; height:6px; } .x-resizable-handle-southeast{ width:6px; cursor:se-resize; right:0; bottom:0; height:6px; z-index:101; } .x-resizable-handle-northwest{ width:6px; cursor:nw-resize; left:0; top:0; height:6px; z-index:101; } .x-resizable-handle-northeast{ width:6px; cursor:ne-resize; right:0; top:0; height:6px; z-index:101; } .x-resizable-handle-southwest{ width:6px; cursor:sw-resize; left:0; bottom:0; height:6px; z-index:101; } .x-resizable-over .x-resizable-handle, .x-resizable-pinned .x-resizable-handle{ filter:alpha(opacity=100); opacity:1; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-position: left; } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-position: top; } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-position: top left; } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-position:bottom right; } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-position: bottom left; } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-position: top right; } .x-resizable-proxy{ border: 1px dashed; position:absolute; overflow:hidden; display:none; left:0; top:0; z-index:50000; } .x-resizable-overlay{ width:100%; height:100%; display:none; position:absolute; left:0; top:0; z-index:200000; -moz-opacity: 0; opacity:0; filter: alpha(opacity=0); } .x-tab-panel { overflow:hidden; } .x-tab-panel-header, .x-tab-panel-footer { border: 1px solid; overflow:hidden; zoom:1; } .x-tab-panel-header { border: 1px solid; padding-bottom: 2px; } .x-tab-panel-footer { border: 1px solid; padding-top: 2px; } .x-tab-strip-wrap { width:100%; overflow:hidden; position:relative; zoom:1; } ul.x-tab-strip { display:block; width:5000px; zoom:1; } ul.x-tab-strip-top{ padding-top: 1px; background: repeat-x bottom; border-bottom: 1px solid; } ul.x-tab-strip-bottom{ padding-bottom: 1px; background: repeat-x top; border-top: 1px solid; border-bottom: 0 none; } .x-tab-panel-header-plain .x-tab-strip-top { background:transparent !important; padding-top:0 !important; } .x-tab-panel-header-plain { background:transparent !important; border-width:0 !important; padding-bottom:0 !important; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border:1px solid; height:2px; font-size:1px; line-height:1px; } .x-tab-panel-header-plain .x-tab-strip-spacer { border-top: 0 none; } .x-tab-panel-footer-plain .x-tab-strip-spacer { border-bottom: 0 none; } .x-tab-panel-footer-plain .x-tab-strip-bottom { background:transparent !important; padding-bottom:0 !important; } .x-tab-panel-footer-plain { background:transparent !important; border-width:0 !important; padding-top:0 !important; } .ext-border-box .x-tab-panel-header-plain .x-tab-strip-spacer, .ext-border-box .x-tab-panel-footer-plain .x-tab-strip-spacer { height:3px; } ul.x-tab-strip li { float:left; margin-left:2px; } ul.x-tab-strip li.x-tab-edge { float:left; margin:0 !important; padding:0 !important; border:0 none !important; font-size:1px !important; line-height:1px !important; overflow:hidden; zoom:1; background:transparent !important; width:1px; } .x-tab-strip a, .x-tab-strip span, .x-tab-strip em { display:block; } .x-tab-strip a { text-decoration:none !important; -moz-outline: none; outline: none; cursor:pointer; } .x-tab-strip-inner { overflow:hidden; text-overflow: ellipsis; } .x-tab-strip span.x-tab-strip-text { white-space: nowrap; cursor:pointer; padding:4px 0; } .x-tab-strip-top .x-tab-with-icon .x-tab-right { padding-left:6px; } .x-tab-strip .x-tab-with-icon span.x-tab-strip-text { padding-left:20px; background-position: 0 3px; background-repeat: no-repeat; } .x-tab-strip-active, .x-tab-strip-active a.x-tab-right { cursor:default; } .x-tab-strip-active span.x-tab-strip-text { cursor:default; } .x-tab-strip-disabled .x-tabs-text { cursor:default; } .x-tab-panel-body { overflow:hidden; } .x-tab-panel-bwrap { overflow:hidden; } .ext-ie .x-tab-strip .x-tab-right { position:relative; } .x-tab-strip-top .x-tab-strip-active .x-tab-right { margin-bottom:-1px; } /* * For IE8/9 in quirks mode */ .ext-ie8 .x-tab-strip li { position: relative; } .ext-border-box .ext-ie8 .x-tab-strip-top .x-tab-right, .ext-border-box .ext-ie9 .x-tab-strip-top .x-tab-right { top: 1px; } .ext-ie8 .x-tab-strip-top, .ext-ie9 .x-tab-strip-top { padding-top: 1px; } .ext-border-box .ext-ie8 .x-tab-strip-top, .ext-border-box .ext-ie9 .x-tab-strip-top { padding-top: 0; } .ext-ie8 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close, .ext-ie9 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { top:3px; } .ext-border-box .ext-ie8 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close, .ext-border-box .ext-ie9 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { top:4px; } .ext-ie8 .x-tab-strip-bottom .x-tab-right, .ext-ie9 .x-tab-strip-bottom .x-tab-right{ top:0; } .x-tab-strip-top .x-tab-strip-active .x-tab-right span.x-tab-strip-text { padding-bottom:5px; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { margin-top:-1px; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right span.x-tab-strip-text { padding-top:5px; } .x-tab-strip-top .x-tab-right { background: transparent no-repeat 0 -51px; padding-left:10px; } .x-tab-strip-top .x-tab-left { background: transparent no-repeat right -351px; padding-right:10px; } .x-tab-strip-top .x-tab-strip-inner { background: transparent repeat-x 0 -201px; } .x-tab-strip-top .x-tab-strip-over .x-tab-right { background-position:0 -101px; } .x-tab-strip-top .x-tab-strip-over .x-tab-left { background-position:right -401px; } .x-tab-strip-top .x-tab-strip-over .x-tab-strip-inner { background-position:0 -251px; } .x-tab-strip-top .x-tab-strip-active .x-tab-right { background-position: 0 0; } .x-tab-strip-top .x-tab-strip-active .x-tab-left { background-position: right -301px; } .x-tab-strip-top .x-tab-strip-active .x-tab-strip-inner { background-position: 0 -151px; } .x-tab-strip-bottom .x-tab-right { background: no-repeat bottom right; } .x-tab-strip-bottom .x-tab-left { background: no-repeat bottom left; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background: no-repeat bottom right; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background: no-repeat bottom left; } .x-tab-strip-bottom .x-tab-left { margin-right: 3px; padding:0 10px; } .x-tab-strip-bottom .x-tab-right { padding:0; } .x-tab-strip .x-tab-strip-close { display:none; } .x-tab-strip-closable { position:relative; } .x-tab-strip-closable .x-tab-left { padding-right:19px; } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { opacity:.6; -moz-opacity:.6; background-repeat:no-repeat; display:block; width:11px; height:11px; position:absolute; top:3px; right:3px; cursor:pointer; z-index:2; } .x-tab-strip .x-tab-strip-active a.x-tab-strip-close { opacity:.8; -moz-opacity:.8; } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ opacity:1; -moz-opacity:1; } .x-tab-panel-body { border: 1px solid; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background: transparent no-repeat -18px 0; border-bottom: 1px solid; width:18px; position:absolute; left:0; top:0; z-index:10; cursor:pointer; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background: transparent no-repeat 0 0; border-bottom: 1px solid; width:18px; position:absolute; right:0; top:0; z-index:10; cursor:pointer; } .x-tab-scroller-right-over { background-position: -18px 0; } .x-tab-scroller-right-disabled { background-position: 0 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scrolling-bottom .x-tab-scroller-left, .x-tab-scrolling-bottom .x-tab-scroller-right{ margin-top: 1px; } .x-tab-scrolling .x-tab-strip-wrap { margin-left:18px; margin-right:18px; } .x-tab-scrolling { position:relative; } .x-tab-panel-bbar .x-toolbar { border:1px solid; border-top:0 none; overflow:hidden; padding:2px; } .x-tab-panel-tbar .x-toolbar { border:1px solid; border-top:0 none; overflow:hidden; padding:2px; }/* all fields */ .x-form-field{ margin: 0 0 0 0; } .ext-webkit *:focus{ outline: none !important; } /* ---- text fields ---- */ .x-form-text, textarea.x-form-field{ padding:1px 3px; background:repeat-x 0 0; border:1px solid; } textarea.x-form-field { padding:2px 3px; } .x-form-text, .ext-ie .x-form-file { height:22px; line-height:18px; vertical-align:middle; } .ext-ie6 .x-form-text, .ext-ie7 .x-form-text { margin:-1px 0; /* ie bogus margin bug */ height:22px; /* ie quirks */ line-height:18px; } .x-quirks .ext-ie9 .x-form-text { height: 22px; padding-top: 3px; padding-bottom: 0px; } /* Ugly hacks for the bogus 1px margin bug in IE9 quirks */ .x-quirks .ext-ie9 .x-input-wrapper .x-form-text, .x-quirks .ext-ie9 .x-form-field-trigger-wrap .x-form-text { margin-top: -1px; margin-bottom: -1px; } .x-quirks .ext-ie9 .x-input-wrapper .x-form-element { margin-bottom: -1px; } .ext-ie6 .x-form-field-wrap .x-form-file-btn, .ext-ie7 .x-form-field-wrap .x-form-file-btn { top: -1px; /* because of all these margin hacks, these buttons are off by one pixel in IE6,7 */ } .ext-ie6 textarea.x-form-field, .ext-ie7 textarea.x-form-field { margin:-1px 0; /* ie bogus margin bug */ } .ext-strict .x-form-text { height:18px; } .ext-safari.ext-mac textarea.x-form-field { margin-bottom:-2px; /* another bogus margin bug, safari/mac only */ } /* .ext-strict .ext-ie8 .x-form-text, .ext-strict .ext-ie8 textarea.x-form-field { margin-bottom: 1px; } */ .ext-gecko .x-form-text , .ext-ie8 .x-form-text { padding-top:2px; /* FF won't center the text vertically */ padding-bottom:0; } .ext-ie6 .x-form-composite .x-form-text.x-box-item, .ext-ie7 .x-form-composite .x-form-text.x-box-item { margin: 0 !important; /* clear ie bogus margin bug fix */ } textarea { resize: none; /* Disable browser resizable textarea */ } /* select boxes */ .x-form-select-one { height:20px; line-height:18px; vertical-align:middle; border: 1px solid; } /* multi select boxes */ /* --- TODO --- */ /* 2.0.2 style */ .x-form-check-wrap { line-height:18px; height: auto; } .ext-ie .x-form-check-wrap input { width:15px; height:15px; } .x-form-check-wrap input{ vertical-align: bottom; } .x-editor .x-form-check-wrap { padding:3px; } .x-editor .x-form-checkbox { height:13px; } .x-form-check-group-label { border-bottom: 1px solid; margin-bottom: 5px; padding-left: 3px !important; float: none !important; } /* wrapped fields and triggers */ .x-form-field-wrap .x-form-trigger{ width:17px; height:21px; border:0; background:transparent no-repeat 0 0; cursor:pointer; border-bottom: 1px solid; position:absolute; top:0; } .x-form-field-wrap .x-form-date-trigger, .x-form-field-wrap .x-form-clear-trigger, .x-form-field-wrap .x-form-search-trigger{ cursor:pointer; } .x-form-field-wrap .x-form-twin-triggers .x-form-trigger{ position:static; top:auto; vertical-align:top; } .x-form-field-wrap { position:relative; left:0;top:0; text-align: left; zoom:1; white-space: nowrap; } .ext-strict .ext-ie8 .x-toolbar-cell .x-form-field-trigger-wrap .x-form-trigger { right: 0; /* IE8 Strict mode trigger bug */ } .x-form-field-wrap .x-form-trigger-over{ background-position:-17px 0; } .x-form-field-wrap .x-form-trigger-click{ background-position:-34px 0; } .x-trigger-wrap-focus .x-form-trigger{ background-position:-51px 0; } .x-trigger-wrap-focus .x-form-trigger-over{ background-position:-68px 0; } .x-trigger-wrap-focus .x-form-trigger-click{ background-position:-85px 0; } .x-trigger-wrap-focus .x-form-trigger{ border-bottom: 1px solid; } .x-item-disabled .x-form-trigger-over{ background-position:0 0 !important; border-bottom: 1px solid; } .x-item-disabled .x-form-trigger-click{ background-position:0 0 !important; border-bottom: 1px solid; } .x-trigger-noedit{ cursor:pointer; } /* field focus style */ .x-form-focus, textarea.x-form-focus{ border: 1px solid; } /* invalid fields */ .x-form-invalid, textarea.x-form-invalid{ background:repeat-x bottom; border: 1px solid; } .x-form-inner-invalid, textarea.x-form-inner-invalid{ background:repeat-x bottom; } /* editors */ .x-editor { visibility:hidden; padding:0; margin:0; } .x-form-grow-sizer { left: -10000px; padding: 8px 3px; position: absolute; visibility:hidden; top: -10000px; white-space: pre-wrap; white-space: -moz-pre-wrap; white-space: -pre-wrap; white-space: -o-pre-wrap; word-wrap: break-word; zoom:1; } .x-form-grow-sizer p { margin:0 !important; border:0 none !important; padding:0 !important; } /* Form Items CSS */ .x-form-item { display:block; margin-bottom:4px; zoom:1; } .x-form-item label.x-form-item-label { display:block; float:left; width:100px; padding:3px; padding-left:0; clear:left; z-index:2; position:relative; } .x-form-element { padding-left:105px; position:relative; } .x-form-invalid-msg { padding:2px; padding-left:18px; background: transparent no-repeat 0 2px; line-height:16px; width:200px; } .x-form-label-left label.x-form-item-label { text-align:left; } .x-form-label-right label.x-form-item-label { text-align:right; } .x-form-label-top .x-form-item label.x-form-item-label { width:auto; float:none; clear:none; display:inline; margin-bottom:4px; position:static; } .x-form-label-top .x-form-element { padding-left:0; padding-top:4px; } .x-form-label-top .x-form-item { padding-bottom:4px; } /* Editor small font for grid, toolbar and tree */ .x-small-editor .x-form-text { height:20px; line-height:16px; vertical-align:middle; } .ext-ie6 .x-small-editor .x-form-text, .ext-ie7 .x-small-editor .x-form-text { margin-top:-1px !important; /* ie bogus margin bug */ margin-bottom:-1px !important; height:20px !important; /* ie quirks */ line-height:16px !important; } .ext-strict .x-small-editor .x-form-text { height:16px !important; } .ext-ie6 .x-small-editor .x-form-text, .ext-ie7 .x-small-editor .x-form-text { height:20px; line-height:16px; } .ext-border-box .x-small-editor .x-form-text { height:20px; } .x-small-editor .x-form-select-one { height:20px; line-height:16px; vertical-align:middle; } .x-small-editor .x-form-num-field { text-align:right; } .x-small-editor .x-form-field-wrap .x-form-trigger{ height:19px; } .ext-webkit .x-small-editor .x-form-text{padding-top:3px;font-size:100%;} .ext-strict .ext-webkit .x-small-editor .x-form-text{ height:14px !important; } .x-form-clear { clear:both; height:0; overflow:hidden; line-height:0; font-size:0; } .x-form-clear-left { clear:left; height:0; overflow:hidden; line-height:0; font-size:0; } .ext-ie6 .x-form-check-wrap input, .ext-border-box .x-form-check-wrap input{ margin-top: 3px; } .x-form-cb-label { position: relative; margin-left:4px; top: 2px; } .ext-ie .x-form-cb-label{ top: 1px; } .ext-ie6 .x-form-cb-label, .ext-border-box .x-form-cb-label{ top: 3px; } .x-form-display-field{ padding-top: 2px; } .ext-gecko .x-form-display-field, .ext-strict .ext-ie7 .x-form-display-field{ padding-top: 1px; } .ext-ie .x-form-display-field{ padding-top: 3px; } .ext-strict .ext-ie8 .x-form-display-field{ padding-top: 0; } .x-form-column { float:left; padding:0; margin:0; width:48%; overflow:hidden; zoom:1; } /* buttons */ .x-form .x-form-btns-ct .x-btn{ float:right; clear:none; } .x-form .x-form-btns-ct .x-form-btns td { border:0; padding:0; } .x-form .x-form-btns-ct .x-form-btns-right table{ float:right; clear:none; } .x-form .x-form-btns-ct .x-form-btns-left table{ float:left; clear:none; } .x-form .x-form-btns-ct .x-form-btns-center{ text-align:center; /*ie*/ } .x-form .x-form-btns-ct .x-form-btns-center table{ margin:0 auto; /*everyone else*/ } .x-form .x-form-btns-ct table td.x-form-btn-td{ padding:3px; } .x-form .x-form-btns-ct .x-btn-focus .x-btn-left{ background-position:0 -147px; } .x-form .x-form-btns-ct .x-btn-focus .x-btn-right{ background-position:0 -168px; } .x-form .x-form-btns-ct .x-btn-focus .x-btn-center{ background-position:0 -189px; } .x-form .x-form-btns-ct .x-btn-click .x-btn-center{ background-position:0 -126px; } .x-form .x-form-btns-ct .x-btn-click .x-btn-right{ background-position:0 -84px; } .x-form .x-form-btns-ct .x-btn-click .x-btn-left{ background-position:0 -63px; } .x-form-invalid-icon { width:16px; height:18px; visibility:hidden; position:absolute; left:0; top:0; display:block; background:transparent no-repeat 0 2px; } /* fieldsets */ .x-fieldset { border:1px solid; padding:10px; margin-bottom:10px; display:block; /* preserve margins in IE */ } /* make top of checkbox/tools visible in webkit */ .ext-webkit .x-fieldset-header { padding-top: 1px; } .ext-ie .x-fieldset legend { margin-bottom:10px; } .ext-strict .ext-ie9 .x-fieldset legend.x-fieldset-header { padding-top: 1px; } .ext-ie .x-fieldset { padding-top: 0; padding-bottom:10px; } .x-fieldset legend .x-tool-toggle { margin-right:3px; margin-left:0; float:left !important; } .x-fieldset legend input { margin-right:3px; float:left !important; height:13px; width:13px; } fieldset.x-panel-collapsed { padding-bottom:0 !important; border-width: 1px 1px 0 1px !important; border-left-color: transparent; border-right-color: transparent; } .ext-ie6 fieldset.x-panel-collapsed{ padding-bottom:0 !important; border-width: 1px 0 0 0 !important; margin-left: 1px; margin-right: 1px; } fieldset.x-panel-collapsed .x-fieldset-bwrap { visibility:hidden; position:absolute; left:-1000px; top:-1000px; } .ext-ie .x-fieldset-bwrap { zoom:1; } .x-fieldset-noborder { border:0px none transparent; } .x-fieldset-noborder legend { margin-left:-3px; } /* IE legend positioning bug */ .ext-ie .x-fieldset-noborder legend { position: relative; margin-bottom:23px; } .ext-ie .x-fieldset-noborder legend span { position: absolute; left:16px; } .ext-gecko .x-window-body .x-form-item { -moz-outline: none; outline: none; overflow: auto; } .ext-mac.ext-gecko .x-window-body .x-form-item { overflow:hidden; } .ext-gecko .x-form-item { -moz-outline: none; outline: none; } .x-hide-label label.x-form-item-label { display:none; } .x-hide-label .x-form-element { padding-left: 0 !important; } .x-form-label-top .x-hide-label label.x-form-item-label{ display: none; } .x-fieldset { overflow:hidden; } .x-fieldset-bwrap { overflow:hidden; zoom:1; } .x-fieldset-body { overflow:hidden; } .x-btn{ cursor:pointer; white-space: nowrap; } .x-btn button{ border:0 none; background-color:transparent; padding-left:3px; padding-right:3px; cursor:pointer; margin:0; overflow:visible; width:auto; -moz-outline:0 none; outline:0 none; } * html .ext-ie .x-btn button { width:1px; } .ext-gecko .x-btn button, .ext-webkit .x-btn button { padding-left:0; padding-right:0; } .ext-gecko .x-btn button::-moz-focus-inner { padding:0; } .ext-ie .x-btn button { padding-top:2px; } .x-btn td { padding:0 !important; } .x-btn-text { cursor:pointer; white-space: nowrap; padding:0; } /* icon placement and sizing styles */ /* Only text */ .x-btn-noicon .x-btn-small .x-btn-text{ height: 16px; } .x-btn-noicon .x-btn-medium .x-btn-text{ height: 24px; } .x-btn-noicon .x-btn-large .x-btn-text{ height: 32px; } /* Only icons */ .x-btn-icon .x-btn-text{ background-position: center; background-repeat: no-repeat; } .x-btn-icon .x-btn-small .x-btn-text{ height: 16px; width: 16px; } .x-btn-icon .x-btn-medium .x-btn-text{ height: 24px; width: 24px; } .x-btn-icon .x-btn-large .x-btn-text{ height: 32px; width: 32px; } /* Icons and text */ /* left */ .x-btn-text-icon .x-btn-icon-small-left .x-btn-text{ background-position: 0 center; background-repeat: no-repeat; padding-left:18px; height:16px; } .x-btn-text-icon .x-btn-icon-medium-left .x-btn-text{ background-position: 0 center; background-repeat: no-repeat; padding-left:26px; height:24px; } .x-btn-text-icon .x-btn-icon-large-left .x-btn-text{ background-position: 0 center; background-repeat: no-repeat; padding-left:34px; height:32px; } /* top */ .x-btn-text-icon .x-btn-icon-small-top .x-btn-text{ background-position: center 0; background-repeat: no-repeat; padding-top:18px; } .x-btn-text-icon .x-btn-icon-medium-top .x-btn-text{ background-position: center 0; background-repeat: no-repeat; padding-top:26px; } .x-btn-text-icon .x-btn-icon-large-top .x-btn-text{ background-position: center 0; background-repeat: no-repeat; padding-top:34px; } /* right */ .x-btn-text-icon .x-btn-icon-small-right .x-btn-text{ background-position: right center; background-repeat: no-repeat; padding-right:18px; height:16px; } .x-btn-text-icon .x-btn-icon-medium-right .x-btn-text{ background-position: right center; background-repeat: no-repeat; padding-right:26px; height:24px; } .x-btn-text-icon .x-btn-icon-large-right .x-btn-text{ background-position: right center; background-repeat: no-repeat; padding-right:34px; height:32px; } /* bottom */ .x-btn-text-icon .x-btn-icon-small-bottom .x-btn-text{ background-position: center bottom; background-repeat: no-repeat; padding-bottom:18px; } .x-btn-text-icon .x-btn-icon-medium-bottom .x-btn-text{ background-position: center bottom; background-repeat: no-repeat; padding-bottom:26px; } .x-btn-text-icon .x-btn-icon-large-bottom .x-btn-text{ background-position: center bottom; background-repeat: no-repeat; padding-bottom:34px; } /* background positioning */ .x-btn-tr i, .x-btn-tl i, .x-btn-mr i, .x-btn-ml i, .x-btn-br i, .x-btn-bl i{ font-size:1px; line-height:1px; width:3px; display:block; overflow:hidden; } .x-btn-tr i, .x-btn-tl i, .x-btn-br i, .x-btn-bl i{ height:3px; } .x-btn-tl{ width:3px; height:3px; background:no-repeat 0 0; } .x-btn-tr{ width:3px; height:3px; background:no-repeat -3px 0; } .x-btn-tc{ height:3px; background:repeat-x 0 -6px; } .x-btn-ml{ width:3px; background:no-repeat 0 -24px; } .x-btn-mr{ width:3px; background:no-repeat -3px -24px; } .x-btn-mc{ background:repeat-x 0 -1096px; vertical-align: middle; text-align:center; padding:0 5px; cursor:pointer; white-space:nowrap; } /* Fixes an issue with the button height */ .ext-strict .ext-ie6 .x-btn-mc, .ext-strict .ext-ie7 .x-btn-mc { height: 100%; } .x-btn-bl{ width:3px; height:3px; background:no-repeat 0 -3px; } .x-btn-br{ width:3px; height:3px; background:no-repeat -3px -3px; } .x-btn-bc{ height:3px; background:repeat-x 0 -15px; } .x-btn-over .x-btn-tl{ background-position: -6px 0; } .x-btn-over .x-btn-tr{ background-position: -9px 0; } .x-btn-over .x-btn-tc{ background-position: 0 -9px; } .x-btn-over .x-btn-ml{ background-position: -6px -24px; } .x-btn-over .x-btn-mr{ background-position: -9px -24px; } .x-btn-over .x-btn-mc{ background-position: 0 -2168px; } .x-btn-over .x-btn-bl{ background-position: -6px -3px; } .x-btn-over .x-btn-br{ background-position: -9px -3px; } .x-btn-over .x-btn-bc{ background-position: 0 -18px; } .x-btn-click .x-btn-tl, .x-btn-menu-active .x-btn-tl, .x-btn-pressed .x-btn-tl{ background-position: -12px 0; } .x-btn-click .x-btn-tr, .x-btn-menu-active .x-btn-tr, .x-btn-pressed .x-btn-tr{ background-position: -15px 0; } .x-btn-click .x-btn-tc, .x-btn-menu-active .x-btn-tc, .x-btn-pressed .x-btn-tc{ background-position: 0 -12px; } .x-btn-click .x-btn-ml, .x-btn-menu-active .x-btn-ml, .x-btn-pressed .x-btn-ml{ background-position: -12px -24px; } .x-btn-click .x-btn-mr, .x-btn-menu-active .x-btn-mr, .x-btn-pressed .x-btn-mr{ background-position: -15px -24px; } .x-btn-click .x-btn-mc, .x-btn-menu-active .x-btn-mc, .x-btn-pressed .x-btn-mc{ background-position: 0 -3240px; } .x-btn-click .x-btn-bl, .x-btn-menu-active .x-btn-bl, .x-btn-pressed .x-btn-bl{ background-position: -12px -3px; } .x-btn-click .x-btn-br, .x-btn-menu-active .x-btn-br, .x-btn-pressed .x-btn-br{ background-position: -15px -3px; } .x-btn-click .x-btn-bc, .x-btn-menu-active .x-btn-bc, .x-btn-pressed .x-btn-bc{ background-position: 0 -21px; } .x-btn-disabled *{ cursor:default !important; } /* With a menu arrow */ /* right */ .x-btn-mc em.x-btn-arrow { display:block; background:transparent no-repeat right center; padding-right:10px; } .x-btn-mc em.x-btn-split { display:block; background:transparent no-repeat right center; padding-right:14px; } /* bottom */ .x-btn-mc em.x-btn-arrow-bottom { display:block; background:transparent no-repeat center bottom; padding-bottom:14px; } .x-btn-mc em.x-btn-split-bottom { display:block; background:transparent no-repeat center bottom; padding-bottom:14px; } /* height adjustment class */ .x-btn-as-arrow .x-btn-mc em { display:block; background-color:transparent; padding-bottom:14px; } /* groups */ .x-btn-group { padding:1px; } .x-btn-group-header { padding:2px; text-align:center; } .x-btn-group-tc { background: transparent repeat-x 0 0; overflow:hidden; } .x-btn-group-tl { background: transparent no-repeat 0 0; padding-left:3px; zoom:1; } .x-btn-group-tr { background: transparent no-repeat right 0; zoom:1; padding-right:3px; } .x-btn-group-bc { background: transparent repeat-x 0 bottom; zoom:1; } .x-btn-group-bc .x-panel-footer { zoom:1; } .x-btn-group-bl { background: transparent no-repeat 0 bottom; padding-left:3px; zoom:1; } .x-btn-group-br { background: transparent no-repeat right bottom; padding-right:3px; zoom:1; } .x-btn-group-mc { border:0 none; padding:1px 0 0 0; margin:0; } .x-btn-group-mc .x-btn-group-body { background-color:transparent; border: 0 none; } .x-btn-group-ml { background: transparent repeat-y 0 0; padding-left:3px; zoom:1; } .x-btn-group-mr { background: transparent repeat-y right 0; padding-right:3px; zoom:1; } .x-btn-group-bc .x-btn-group-footer { padding-bottom:6px; } .x-panel-nofooter .x-btn-group-bc { height:3px; font-size:0; line-height:0; } .x-btn-group-bwrap { overflow:hidden; zoom:1; } .x-btn-group-body { overflow:hidden; zoom:1; } .x-btn-group-notitle .x-btn-group-tc { background: transparent repeat-x 0 0; overflow:hidden; height:2px; }.x-toolbar{ border-style:solid; border-width:0 0 1px 0; display: block; padding:2px; background:repeat-x top left; position:relative; left:0; top:0; zoom:1; overflow:hidden; } .x-toolbar-left { width: 100%; } .x-toolbar .x-item-disabled .x-btn-icon { opacity: .35; -moz-opacity: .35; filter: alpha(opacity=35); } .x-toolbar td { vertical-align:middle; } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ white-space: nowrap; } .x-toolbar .x-item-disabled { cursor:default; opacity:.6; -moz-opacity:.6; filter:alpha(opacity=60); } .x-toolbar .x-item-disabled * { cursor:default; } .x-toolbar .x-toolbar-cell { vertical-align:middle; } .x-toolbar .x-btn-tl, .x-toolbar .x-btn-tr, .x-toolbar .x-btn-tc, .x-toolbar .x-btn-ml, .x-toolbar .x-btn-mr, .x-toolbar .x-btn-mc, .x-toolbar .x-btn-bl, .x-toolbar .x-btn-br, .x-toolbar .x-btn-bc { background-position: 500px 500px; } /* These rules are duplicated from button.css to give priority of x-toolbar rules above */ .x-toolbar .x-btn-over .x-btn-tl{ background-position: -6px 0; } .x-toolbar .x-btn-over .x-btn-tr{ background-position: -9px 0; } .x-toolbar .x-btn-over .x-btn-tc{ background-position: 0 -9px; } .x-toolbar .x-btn-over .x-btn-ml{ background-position: -6px -24px; } .x-toolbar .x-btn-over .x-btn-mr{ background-position: -9px -24px; } .x-toolbar .x-btn-over .x-btn-mc{ background-position: 0 -2168px; } .x-toolbar .x-btn-over .x-btn-bl{ background-position: -6px -3px; } .x-toolbar .x-btn-over .x-btn-br{ background-position: -9px -3px; } .x-toolbar .x-btn-over .x-btn-bc{ background-position: 0 -18px; } .x-toolbar .x-btn-click .x-btn-tl, .x-toolbar .x-btn-menu-active .x-btn-tl, .x-toolbar .x-btn-pressed .x-btn-tl{ background-position: -12px 0; } .x-toolbar .x-btn-click .x-btn-tr, .x-toolbar .x-btn-menu-active .x-btn-tr, .x-toolbar .x-btn-pressed .x-btn-tr{ background-position: -15px 0; } .x-toolbar .x-btn-click .x-btn-tc, .x-toolbar .x-btn-menu-active .x-btn-tc, .x-toolbar .x-btn-pressed .x-btn-tc{ background-position: 0 -12px; } .x-toolbar .x-btn-click .x-btn-ml, .x-toolbar .x-btn-menu-active .x-btn-ml, .x-toolbar .x-btn-pressed .x-btn-ml{ background-position: -12px -24px; } .x-toolbar .x-btn-click .x-btn-mr, .x-toolbar .x-btn-menu-active .x-btn-mr, .x-toolbar .x-btn-pressed .x-btn-mr{ background-position: -15px -24px; } .x-toolbar .x-btn-click .x-btn-mc, .x-toolbar .x-btn-menu-active .x-btn-mc, .x-toolbar .x-btn-pressed .x-btn-mc{ background-position: 0 -3240px; } .x-toolbar .x-btn-click .x-btn-bl, .x-toolbar .x-btn-menu-active .x-btn-bl, .x-toolbar .x-btn-pressed .x-btn-bl{ background-position: -12px -3px; } .x-toolbar .x-btn-click .x-btn-br, .x-toolbar .x-btn-menu-active .x-btn-br, .x-toolbar .x-btn-pressed .x-btn-br{ background-position: -15px -3px; } .x-toolbar .x-btn-click .x-btn-bc, .x-toolbar .x-btn-menu-active .x-btn-bc, .x-toolbar .x-btn-pressed .x-btn-bc{ background-position: 0 -21px; } .x-toolbar div.xtb-text{ padding:2px 2px 0; line-height:16px; display:block; } .x-toolbar .xtb-sep { background-position: center; background-repeat: no-repeat; display: block; font-size: 1px; height: 16px; width:4px; overflow: hidden; cursor:default; margin: 0 2px 0; border:0; } .x-toolbar .xtb-spacer { width:2px; } /* Paging Toolbar */ .x-tbar-page-number{ width:30px; height:14px; } .ext-ie .x-tbar-page-number{ margin-top: 2px; } .x-paging-info { position:absolute; top:5px; right: 8px; } /* floating */ .x-toolbar-ct { width:100%; } .x-toolbar-right td { text-align: center; } .x-panel-tbar, .x-panel-bbar, .x-window-tbar, .x-window-bbar, .x-tab-panel-tbar, .x-tab-panel-bbar, .x-plain-tbar, .x-plain-bbar { overflow:hidden; zoom:1; } .x-toolbar-more .x-btn-small .x-btn-text{ height: 16px; width: 12px; } .x-toolbar-more em.x-btn-arrow { display:inline; background-color:transparent; padding-right:0; } .x-toolbar-more .x-btn-mc em.x-btn-arrow { background-image: none; } div.x-toolbar-no-items { color:gray !important; padding:5px 10px !important; } /* fix ie toolbar form items */ .ext-border-box .x-toolbar-cell .x-form-text { margin-bottom:-1px !important; } .ext-border-box .x-toolbar-cell .x-form-field-wrap .x-form-text { margin:0 !important; } .ext-ie .x-toolbar-cell .x-form-field-wrap { height:21px; } .ext-ie .x-toolbar-cell .x-form-text { position:relative; top:-1px; } .ext-strict .ext-ie8 .x-toolbar-cell .x-form-field-trigger-wrap .x-form-text, .ext-strict .ext-ie .x-toolbar-cell .x-form-text { top: 0px; } .x-toolbar-right td .x-form-field-trigger-wrap{ text-align: left; } .x-toolbar-cell .x-form-checkbox, .x-toolbar-cell .x-form-radio{ margin-top: 5px; } .x-toolbar-cell .x-form-cb-label{ vertical-align: bottom; top: 1px; } .ext-ie .x-toolbar-cell .x-form-checkbox, .ext-ie .x-toolbar-cell .x-form-radio{ margin-top: 4px; } .ext-ie .x-toolbar-cell .x-form-cb-label{ top: 0; } /* Grid3 styles */ .x-grid3 { position:relative; overflow:hidden; } .x-grid-panel .x-panel-body { overflow:hidden !important; } .x-grid-panel .x-panel-mc .x-panel-body { border:1px solid; } .x-grid3 table { table-layout:fixed; } .x-grid3-viewport{ overflow:hidden; } .x-grid3-hd-row td, .x-grid3-row td, .x-grid3-summary-row td{ -moz-outline: none; outline: none; -moz-user-focus: normal; } .x-grid3-row td, .x-grid3-summary-row td { line-height:13px; vertical-align: top; padding-left:1px; padding-right:1px; -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-grid3-cell{ -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-grid3-hd-row td { line-height:15px; vertical-align:middle; border-left:1px solid; border-right:1px solid; } .x-grid3-hd-row .x-grid3-marker-hd { padding:3px; } .x-grid3-row .x-grid3-marker { padding:3px; } .x-grid3-cell-inner, .x-grid3-hd-inner{ overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; padding:3px 3px 3px 5px; white-space: nowrap; } /* ActionColumn, reduce padding to accommodate 16x16 icons in normal row height */ .x-action-col-cell .x-grid3-cell-inner { padding-top: 1px; padding-bottom: 1px; } .x-action-col-icon { cursor: pointer; } .x-grid3-hd-inner { position:relative; cursor:inherit; padding:4px 3px 4px 5px; } .x-grid3-row-body { white-space:normal; } .x-grid3-body-cell { -moz-outline:0 none; outline:0 none; } /* IE Quirks to clip */ .ext-ie .x-grid3-cell-inner, .ext-ie .x-grid3-hd-inner{ width:100%; } /* reverse above in strict mode */ .ext-strict .x-grid3-cell-inner, .ext-strict .x-grid3-hd-inner{ width:auto; } .x-grid-row-loading { background: no-repeat center center; } .x-grid-page { overflow:hidden; } .x-grid3-row { cursor: default; border: 1px solid; width:100%; } .x-grid3-row-over { border:1px solid; background: repeat-x left top; } .x-grid3-resize-proxy { width:1px; left:0; cursor: e-resize; cursor: col-resize; position:absolute; top:0; height:100px; overflow:hidden; visibility:hidden; border:0 none; z-index:7; } .x-grid3-resize-marker { width:1px; left:0; position:absolute; top:0; height:100px; overflow:hidden; visibility:hidden; border:0 none; z-index:7; } .x-grid3-focus { position:absolute; left:0; top:0; width:1px; height:1px; line-height:1px; font-size:1px; -moz-outline:0 none; outline:0 none; -moz-user-select: text; -khtml-user-select: text; -webkit-user-select:ignore; } /* header styles */ .x-grid3-header{ background: repeat-x 0 bottom; cursor:default; zoom:1; padding:1px 0 0 0; } .x-grid3-header-pop { border-left:1px solid; float:right; clear:none; } .x-grid3-header-pop-inner { border-left:1px solid; width:14px; height:19px; background: transparent no-repeat center center; } .ext-ie .x-grid3-header-pop-inner { width:15px; } .ext-strict .x-grid3-header-pop-inner { width:14px; } .x-grid3-header-inner { overflow:hidden; zoom:1; float:left; } .x-grid3-header-offset { padding-left:1px; text-align: left; } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left:1px solid; border-right:1px solid; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background: repeat-x left bottom; } .x-grid3-sort-icon{ background-repeat: no-repeat; display: none; height: 4px; width: 13px; margin-left:3px; vertical-align: middle; } .sort-asc .x-grid3-sort-icon, .sort-desc .x-grid3-sort-icon { display: inline; } /* Header position fixes for IE strict mode */ .ext-strict .ext-ie .x-grid3-header-inner, .ext-strict .ext-ie6 .x-grid3-hd { position:relative; } .ext-strict .ext-ie6 .x-grid3-hd-inner{ position:static; } /* Body Styles */ .x-grid3-body { zoom:1; } .x-grid3-scroller { overflow:auto; zoom:1; position:relative; } .x-grid3-cell-text, .x-grid3-hd-text { display: block; padding: 3px 5px 3px 5px; -moz-user-select: none; -khtml-user-select: none; -webkit-user-select:ignore; } .x-grid3-split { background-position: center; background-repeat: no-repeat; cursor: e-resize; cursor: col-resize; display: block; font-size: 1px; height: 16px; overflow: hidden; position: absolute; top: 2px; width: 6px; z-index: 3; } /* Column Reorder DD */ .x-dd-drag-proxy .x-grid3-hd-inner{ background: repeat-x left bottom; width:120px; padding:3px; border:1px solid; overflow:hidden; } .col-move-top, .col-move-bottom{ width:9px; height:9px; position:absolute; top:0; line-height:1px; font-size:1px; overflow:hidden; visibility:hidden; z-index:20000; background:transparent no-repeat left top; } /* Selection Styles */ .x-grid3-row-selected { border:1px dotted; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background: repeat-x 0 bottom !important; vertical-align:middle !important; padding:0; border-top:1px solid; border-bottom:none !important; border-right:1px solid !important; text-align:center; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ padding:0 4px; text-align:center; } /* dirty cells */ .x-grid3-dirty-cell { background: transparent no-repeat 0 0; } /* Grid Toolbars */ .x-grid3-topbar, .x-grid3-bottombar{ overflow:hidden; display:none; zoom:1; position:relative; } .x-grid3-topbar .x-toolbar{ border-right:0 none; } .x-grid3-bottombar .x-toolbar{ border-right:0 none; border-bottom:0 none; border-top:1px solid; } /* Props Grid Styles */ .x-props-grid .x-grid3-cell{ padding:1px; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background:transparent repeat-y -16px !important; padding-left:12px; } .x-props-grid .x-grid3-body .x-grid3-td-name{ padding:1px; padding-right:0; border:0 none; border-right:1px solid; } /* dd */ .x-grid3-col-dd { border:0 none; padding:0; background-color:transparent; } .x-dd-drag-ghost .x-grid3-dd-wrap { padding:1px 3px 3px 1px; } .x-grid3-hd { -moz-user-select:none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-grid3-hd-btn { display:none; position:absolute; width:14px; background:no-repeat left center; right:0; top:0; z-index:2; cursor:pointer; } .x-grid3-hd-over .x-grid3-hd-btn, .x-grid3-hd-menu-open .x-grid3-hd-btn { display:block; } a.x-grid3-hd-btn:hover { background-position:-14px center; } /* Expanders */ .x-grid3-body .x-grid3-td-expander { background:transparent repeat-y right; } .x-grid3-body .x-grid3-td-expander .x-grid3-cell-inner { padding:0 !important; height:100%; } .x-grid3-row-expander { width:100%; height:18px; background-position:4px 2px; background-repeat:no-repeat; background-color:transparent; } .x-grid3-row-collapsed .x-grid3-row-expander { background-position:4px 2px; } .x-grid3-row-expanded .x-grid3-row-expander { background-position:-21px 2px; } .x-grid3-row-collapsed .x-grid3-row-body { display:none !important; } .x-grid3-row-expanded .x-grid3-row-body { display:block !important; } /* Checkers */ .x-grid3-body .x-grid3-td-checker { background:transparent repeat-y right; } .x-grid3-body .x-grid3-td-checker .x-grid3-cell-inner, .x-grid3-header .x-grid3-td-checker .x-grid3-hd-inner { padding:0 !important; height:100%; } .x-grid3-row-checker, .x-grid3-hd-checker { width:100%; height:18px; background-position:2px 2px; background-repeat:no-repeat; background-color:transparent; } .x-grid3-row .x-grid3-row-checker { background-position:2px 2px; } .x-grid3-row-selected .x-grid3-row-checker, .x-grid3-hd-checker-on .x-grid3-hd-checker,.x-grid3-row-checked .x-grid3-row-checker { background-position:-23px 2px; } .x-grid3-hd-checker { background-position:2px 1px; } .ext-border-box .x-grid3-hd-checker { background-position:2px 3px; } .x-grid3-hd-checker-on .x-grid3-hd-checker { background-position:-23px 1px; } .ext-border-box .x-grid3-hd-checker-on .x-grid3-hd-checker { background-position:-23px 3px; } /* Numberer */ .x-grid3-body .x-grid3-td-numberer { background:transparent repeat-y right; } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { padding:3px 5px 0 0 !important; text-align:right; } /* Row Icon */ .x-grid3-body .x-grid3-td-row-icon { background:transparent repeat-y right; vertical-align:top; text-align:center; } .x-grid3-body .x-grid3-td-row-icon .x-grid3-cell-inner { padding:0 !important; background-position:center center; background-repeat:no-repeat; width:16px; height:16px; margin-left:2px; margin-top:3px; } /* All specials */ .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background:transparent repeat-y right; } .x-grid3-body .x-grid3-check-col-td .x-grid3-cell-inner { padding: 1px 0 0 0 !important; } .x-grid3-check-col { width:100%; height:16px; background-position:center center; background-repeat:no-repeat; background-color:transparent; } .x-grid3-check-col-on { width:100%; height:16px; background-position:center center; background-repeat:no-repeat; background-color:transparent; } /* Grouping classes */ .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom: 2px solid; cursor:pointer; padding-top:6px; } .x-grid-group-hd div.x-grid-group-title { background:transparent no-repeat 3px 3px; padding:4px 4px 4px 17px; } .x-grid-group-collapsed .x-grid-group-body { display:none; } .ext-ie6 .x-grid3 .x-editor .x-form-text, .ext-ie7 .x-grid3 .x-editor .x-form-text { position:relative; top:-1px; } .x-grid-editor .x-form-check-wrap { text-align: center; margin-top: -4px; } .ext-ie .x-props-grid .x-editor .x-form-text { position:static; top:0; } .x-grid-empty { padding:10px; } /* fix floating toolbar issue */ .ext-ie7 .x-grid-panel .x-panel-bbar { position:relative; } /* Reset position to static when Grid Panel has been framed */ /* to resolve 'snapping' from top to bottom behavior. */ /* @forumThread 86656 */ .ext-ie7 .x-grid-panel .x-panel-mc .x-panel-bbar { position: static; } .ext-ie6 .x-grid3-header { position: relative; } /* Fix WebKit bug in Grids */ .ext-webkit .x-grid-panel .x-panel-bwrap{ -webkit-user-select:none; } .ext-webkit .x-tbar-page-number{ -webkit-user-select:ignore; } /* end*/ /* column lines */ .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { padding-right:0; border-right:1px solid; } .x-pivotgrid .x-grid3-header-offset table { width: 100%; border-collapse: collapse; } .x-pivotgrid .x-grid3-header-offset table td { padding: 4px 3px 4px 5px; text-align: center; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; font-size: 11px; line-height: 13px; font-family: tahoma; } .x-pivotgrid .x-grid3-row-headers { display: block; float: left; } .x-pivotgrid .x-grid3-row-headers table { height: 100%; width: 100%; border-collapse: collapse; } .x-pivotgrid .x-grid3-row-headers table td { height: 18px; padding: 2px 7px 0 0; text-align: right; text-overflow: ellipsis; font-size: 11px; font-family: tahoma; } .ext-gecko .x-pivotgrid .x-grid3-row-headers table td { height: 21px; } .x-grid3-header-title { top: 0%; left: 0%; position: absolute; text-align: center; vertical-align: middle; font-family: tahoma; font-size: 11px; padding: auto 1px; display: table-cell; } .x-grid3-header-title span { position: absolute; top: 50%; left: 0%; width: 100%; margin-top: -6px; }.x-dd-drag-proxy{ position:absolute; left:0; top:0; visibility:hidden; z-index:15000; } .x-dd-drag-ghost{ -moz-opacity: 0.85; opacity:.85; filter: alpha(opacity=85); border: 1px solid; padding:3px; padding-left:20px; white-space:nowrap; } .x-dd-drag-repair .x-dd-drag-ghost{ -moz-opacity: 0.4; opacity:.4; filter: alpha(opacity=40); border:0 none; padding:0; background-color:transparent; } .x-dd-drag-repair .x-dd-drop-icon{ visibility:hidden; } .x-dd-drop-icon{ position:absolute; top:3px; left:3px; display:block; width:16px; height:16px; background-color:transparent; background-position: center; background-repeat: no-repeat; z-index:1; } .x-view-selector { position:absolute; left:0; top:0; width:0; border:1px dotted; opacity: .5; -moz-opacity: .5; filter:alpha(opacity=50); zoom:1; }.ext-strict .ext-ie .x-tree .x-panel-bwrap{ position:relative; overflow:hidden; } .x-tree-icon, .x-tree-ec-icon, .x-tree-elbow-line, .x-tree-elbow, .x-tree-elbow-end, .x-tree-elbow-plus, .x-tree-elbow-minus, .x-tree-elbow-end-plus, .x-tree-elbow-end-minus{ border: 0 none; height: 18px; margin: 0; padding: 0; vertical-align: top; width: 16px; background-repeat: no-repeat; } .x-tree-node-collapsed .x-tree-node-icon, .x-tree-node-expanded .x-tree-node-icon, .x-tree-node-leaf .x-tree-node-icon{ border: 0 none; height: 18px; margin: 0; padding: 0; vertical-align: top; width: 16px; background-position:center; background-repeat: no-repeat; } .ext-ie .x-tree-node-indent img, .ext-ie .x-tree-node-icon, .ext-ie .x-tree-ec-icon { vertical-align: middle !important; } .ext-strict .ext-ie8 .x-tree-node-indent img, .ext-strict .ext-ie8 .x-tree-node-icon, .ext-strict .ext-ie8 .x-tree-ec-icon { vertical-align: top !important; } /* checkboxes */ input.x-tree-node-cb { margin-left:1px; height: 19px; vertical-align: bottom; } .ext-ie input.x-tree-node-cb { margin-left:0; margin-top: 1px; width: 16px; height: 16px; vertical-align: middle; } .ext-strict .ext-ie8 input.x-tree-node-cb{ margin: 1px 1px; height: 14px; vertical-align: bottom; } .ext-strict .ext-ie8 input.x-tree-node-cb + a{ vertical-align: bottom; } .ext-opera input.x-tree-node-cb { height: 14px; vertical-align: middle; } .x-tree-noicon .x-tree-node-icon{ width:0; height:0; } /* No line styles */ .x-tree-no-lines .x-tree-elbow{ background-color:transparent; } .x-tree-no-lines .x-tree-elbow-end{ background-color:transparent; } .x-tree-no-lines .x-tree-elbow-line{ background-color:transparent; } /* Arrows */ .x-tree-arrows .x-tree-elbow{ background-color:transparent; } .x-tree-arrows .x-tree-elbow-plus{ background:transparent no-repeat 0 0; } .x-tree-arrows .x-tree-elbow-minus{ background:transparent no-repeat -16px 0; } .x-tree-arrows .x-tree-elbow-end{ background-color:transparent; } .x-tree-arrows .x-tree-elbow-end-plus{ background:transparent no-repeat 0 0; } .x-tree-arrows .x-tree-elbow-end-minus{ background:transparent no-repeat -16px 0; } .x-tree-arrows .x-tree-elbow-line{ background-color:transparent; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-plus{ background-position:-32px 0; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-minus{ background-position:-48px 0; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-end-plus{ background-position:-32px 0; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-end-minus{ background-position:-48px 0; } .x-tree-elbow-plus, .x-tree-elbow-minus, .x-tree-elbow-end-plus, .x-tree-elbow-end-minus{ cursor:pointer; } .ext-ie ul.x-tree-node-ct{ font-size:0; line-height:0; zoom:1; } .x-tree-node{ white-space: nowrap; } .x-tree-node-el { line-height:18px; cursor:pointer; } .x-tree-node a, .x-dd-drag-ghost a{ text-decoration:none; -khtml-user-select:none; -moz-user-select:none; -webkit-user-select:ignore; -kthml-user-focus:normal; -moz-user-focus:normal; -moz-outline: 0 none; outline:0 none; } .x-tree-node a span, .x-dd-drag-ghost a span{ text-decoration:none; padding:1px 3px 1px 2px; } .x-tree-node .x-tree-node-disabled .x-tree-node-icon{ -moz-opacity: 0.5; opacity:.5; filter: alpha(opacity=50); } .x-tree-node .x-tree-node-inline-icon{ background-color:transparent; } .x-tree-node a:hover, .x-dd-drag-ghost a:hover{ text-decoration:none; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom:1px dotted; } .x-tree-node div.x-tree-drag-insert-above{ border-top:1px dotted; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below{ border-bottom:0 none; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above{ border-top:0 none; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom:2px solid; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top:2px solid; } .x-tree-node .x-tree-drag-append a span{ border:1px dotted; } .x-dd-drag-ghost .x-tree-node-indent, .x-dd-drag-ghost .x-tree-ec-icon{ display:none !important; } /* Fix for ie rootVisible:false issue */ .x-tree-root-ct { zoom:1; } .x-date-picker { border: 1px solid; border-top:0 none; position:relative; } .x-date-picker a { -moz-outline:0 none; outline:0 none; } .x-date-inner, .x-date-inner td, .x-date-inner th{ border-collapse:separate; } .x-date-middle,.x-date-left,.x-date-right { background: repeat-x 0 -83px; overflow:hidden; } .x-date-middle .x-btn-tc,.x-date-middle .x-btn-tl,.x-date-middle .x-btn-tr, .x-date-middle .x-btn-mc,.x-date-middle .x-btn-ml,.x-date-middle .x-btn-mr, .x-date-middle .x-btn-bc,.x-date-middle .x-btn-bl,.x-date-middle .x-btn-br{ background:transparent !important; vertical-align:middle; } .x-date-middle .x-btn-mc em.x-btn-arrow { background:transparent no-repeat right 0; } .x-date-right, .x-date-left { width:18px; } .x-date-right{ text-align:right; } .x-date-middle { padding-top:2px; padding-bottom:2px; width:130px; /* FF3 */ } .x-date-right a, .x-date-left a{ display:block; width:16px; height:16px; background-position: center; background-repeat: no-repeat; cursor:pointer; -moz-opacity: 0.6; opacity:.6; filter: alpha(opacity=60); } .x-date-right a:hover, .x-date-left a:hover{ -moz-opacity: 1; opacity:1; filter: alpha(opacity=100); } .x-item-disabled .x-date-right a:hover, .x-item-disabled .x-date-left a:hover{ -moz-opacity: 0.6; opacity:.6; filter: alpha(opacity=60); } .x-date-right a { margin-right:2px; text-decoration:none !important; } .x-date-left a{ margin-left:2px; text-decoration:none !important; } table.x-date-inner { width: 100%; table-layout:fixed; } .ext-webkit table.x-date-inner{ /* Fix for webkit browsers */ width: 175px; } .x-date-inner th { width:25px; } .x-date-inner th { background: repeat-x left top; text-align:right !important; border-bottom: 1px solid; cursor:default; padding:0; border-collapse:separate; } .x-date-inner th span { display:block; padding:2px; padding-right:7px; } .x-date-inner td { border: 1px solid; text-align:right; padding:0; } .x-date-inner a { padding:2px 5px; display:block; text-decoration:none; text-align:right; zoom:1; } .x-date-inner .x-date-active{ cursor:pointer; color:black; } .x-date-inner .x-date-selected a{ background: repeat-x left top; border:1px solid; padding:1px 4px; } .x-date-inner .x-date-today a{ border: 1px solid; padding:1px 4px; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { text-decoration:none !important; } .x-date-bottom { padding:4px; border-top: 1px solid; background: repeat-x left top; } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ text-decoration:none !important; } .x-item-disabled .x-date-inner a:hover{ background: none; } .x-date-inner .x-date-disabled a { cursor:default; } .x-date-menu .x-menu-item { padding:1px 24px 1px 4px; white-space: nowrap; } .x-date-menu .x-menu-item .x-menu-item-icon { width:10px; height:10px; margin-right:5px; background-position:center -4px !important; } .x-date-mp { position:absolute; left:0; top:0; display:none; } .x-date-mp td { padding:2px; font:normal 11px arial, helvetica,tahoma,sans-serif; } td.x-date-mp-month,td.x-date-mp-year,td.x-date-mp-ybtn { border: 0 none; text-align:center; vertical-align: middle; width:25%; } .x-date-mp-ok { margin-right:3px; } .x-date-mp-btns button { text-decoration:none; text-align:center; text-decoration:none !important; border:1px solid; padding:1px 3px 1px; cursor:pointer; } .x-date-mp-btns { background: repeat-x left top; } .x-date-mp-btns td { border-top: 1px solid; text-align:center; } td.x-date-mp-month a,td.x-date-mp-year a { display:block; padding:2px 4px; text-decoration:none; text-align:center; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { text-decoration:none; cursor:pointer; } td.x-date-mp-sel a { padding:1px 3px; background: repeat-x left top; border:1px solid; } .x-date-mp-ybtn a { overflow:hidden; width:15px; height:15px; cursor:pointer; background:transparent no-repeat; display:block; margin:0 auto; } .x-date-mp-ybtn a.x-date-mp-next { background-position:0 -120px; } .x-date-mp-ybtn a.x-date-mp-next:hover { background-position:-15px -120px; } .x-date-mp-ybtn a.x-date-mp-prev { background-position:0 -105px; } .x-date-mp-ybtn a.x-date-mp-prev:hover { background-position:-15px -105px; } .x-date-mp-ybtn { text-align:center; } td.x-date-mp-sep { border-right:1px solid; }.x-tip{ position: absolute; top: 0; left:0; visibility: hidden; z-index: 20002; border:0 none; } .x-tip .x-tip-close{ height: 15px; float:right; width: 15px; margin:0 0 2px 2px; cursor:pointer; display:none; } .x-tip .x-tip-tc { background: transparent no-repeat 0 -62px; padding-top:3px; overflow:hidden; zoom:1; } .x-tip .x-tip-tl { background: transparent no-repeat 0 0; padding-left:6px; overflow:hidden; zoom:1; } .x-tip .x-tip-tr { background: transparent no-repeat right 0; padding-right:6px; overflow:hidden; zoom:1; } .x-tip .x-tip-bc { background: transparent no-repeat 0 -121px; height:3px; overflow:hidden; } .x-tip .x-tip-bl { background: transparent no-repeat 0 -59px; padding-left:6px; zoom:1; } .x-tip .x-tip-br { background: transparent no-repeat right -59px; padding-right:6px; zoom:1; } .x-tip .x-tip-mc { border:0 none; } .x-tip .x-tip-ml { background: no-repeat 0 -124px; padding-left:6px; zoom:1; } .x-tip .x-tip-mr { background: transparent no-repeat right -124px; padding-right:6px; zoom:1; } .ext-ie .x-tip .x-tip-header,.ext-ie .x-tip .x-tip-tc { font-size:0; line-height:0; } .ext-border-box .x-tip .x-tip-header, .ext-border-box .x-tip .x-tip-tc{ line-height: 1px; } .x-tip .x-tip-header-text { padding:0; margin:0 0 2px 0; } .x-tip .x-tip-body { margin:0 !important; line-height:14px; padding:0; } .x-tip .x-tip-body .loading-indicator { margin:0; } .x-tip-draggable .x-tip-header,.x-tip-draggable .x-tip-header-text { cursor:move; } .x-form-invalid-tip .x-tip-tc { background: repeat-x 0 -12px; padding-top:6px; } .x-form-invalid-tip .x-tip-bc { background: repeat-x 0 -18px; height:6px; } .x-form-invalid-tip .x-tip-bl { background: no-repeat 0 -6px; } .x-form-invalid-tip .x-tip-br { background: no-repeat right -6px; } .x-form-invalid-tip .x-tip-body { padding:2px; } .x-form-invalid-tip .x-tip-body { padding-left:24px; background:transparent no-repeat 2px 2px; } .x-tip-anchor { position: absolute; width: 9px; height: 10px; overflow:hidden; background: transparent no-repeat 0 0; zoom:1; } .x-tip-anchor-bottom { background-position: -9px 0; } .x-tip-anchor-right { background-position: -18px 0; width: 10px; } .x-tip-anchor-left { background-position: -28px 0; width: 10px; }.x-menu { z-index: 15000; zoom: 1; background: repeat-y; } .x-menu-floating{ border: 1px solid; } .x-menu a { text-decoration: none !important; } .ext-ie .x-menu { zoom:1; overflow:hidden; } .x-menu-list{ padding: 2px; background-color:transparent; border:0 none; overflow:hidden; overflow-y: hidden; } .ext-strict .ext-ie .x-menu-list{ position: relative; } .x-menu li{ line-height:100%; } .x-menu li.x-menu-sep-li{ font-size:1px; line-height:1px; } .x-menu-list-item{ white-space: nowrap; display:block; padding:1px; } .x-menu-item{ -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-menu-item-arrow{ background:transparent no-repeat right; } .x-menu-sep { display:block; font-size:1px; line-height:1px; margin: 2px 3px; border-bottom:1px solid; overflow:hidden; } .x-menu-focus { position:absolute; left:-1px; top:-1px; width:1px; height:1px; line-height:1px; font-size:1px; -moz-outline:0 none; outline:0 none; -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; overflow:hidden; display:block; } a.x-menu-item { cursor: pointer; display: block; line-height: 16px; outline-color: -moz-use-text-color; outline-style: none; outline-width: 0; padding: 3px 21px 3px 27px; position: relative; text-decoration: none; white-space: nowrap; } .x-menu-item-active { background-repeat: repeat-x; background-position: left bottom; border-style:solid; border-width: 1px 0; margin:0 1px; padding: 0; } .x-menu-item-active a.x-menu-item { border-style:solid; border-width:0 1px; margin:0 -1px; } .x-menu-item-icon { border: 0 none; height: 16px; padding: 0; vertical-align: top; width: 16px; position: absolute; left: 3px; top: 3px; margin: 0; background-position:center; } .ext-ie .x-menu-item-icon { left: -24px; } .ext-strict .x-menu-item-icon { left: 3px; } .ext-ie6 .x-menu-item-icon { left: -24px; } .ext-ie .x-menu-item-icon { vertical-align: middle; } .x-menu-check-item .x-menu-item-icon{ background: transparent no-repeat center; } .x-menu-group-item .x-menu-item-icon{ background-color: transparent; } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background: transparent no-repeat center; } .x-date-menu .x-menu-list{ padding: 0; } .x-menu-date-item{ padding:0; } .x-menu .x-color-palette, .x-menu .x-date-picker{ margin-left: 26px; margin-right:4px; } .x-menu .x-date-picker{ border:1px solid; margin-top:2px; margin-bottom:2px; } .x-menu-plain .x-color-palette, .x-menu-plain .x-date-picker{ margin: 0; border: 0 none; } .x-date-menu { padding:0 !important; } /* * fixes separator visibility problem in IE 6 */ .ext-strict .ext-ie6 .x-menu-sep-li { padding: 3px 4px; } .ext-strict .ext-ie6 .x-menu-sep { margin: 0; height: 1px; } /* * Fixes an issue with "fat" separators in webkit */ .ext-webkit .x-menu-sep{ height: 1px; } /* * Ugly mess to remove the white border under the picker */ .ext-ie .x-date-menu{ height: 199px; } .ext-strict .ext-ie .x-date-menu, .ext-border-box .ext-ie8 .x-date-menu{ height: 197px; } .ext-strict .ext-ie7 .x-date-menu{ height: 195px; } .ext-strict .ext-ie8 .x-date-menu{ height: auto; } .x-cycle-menu .x-menu-item-checked { border:1px dotted !important; padding:0; } .x-menu .x-menu-scroller { width: 100%; background-repeat:no-repeat; background-position:center; height:8px; line-height: 8px; cursor:pointer; margin: 0; padding: 0; } .x-menu .x-menu-scroller-active{ height: 6px; line-height: 6px; } .x-menu-list-item-indent{ padding-left: 27px; }/* Creates rounded, raised boxes like on the Ext website - the markup isn't pretty:

    YOUR TITLE HERE (optional)

    YOUR CONTENT HERE
    */ .x-box-tl { background: transparent no-repeat 0 0; zoom:1; } .x-box-tc { height: 8px; background: transparent repeat-x 0 0; overflow: hidden; } .x-box-tr { background: transparent no-repeat right -8px; } .x-box-ml { background: transparent repeat-y 0; padding-left: 4px; overflow: hidden; zoom:1; } .x-box-mc { background: repeat-x 0 -16px; padding: 4px 10px; } .x-box-mc h3 { margin: 0 0 4px 0; zoom:1; } .x-box-mr { background: transparent repeat-y right; padding-right: 4px; overflow: hidden; } .x-box-bl { background: transparent no-repeat 0 -16px; zoom:1; } .x-box-bc { background: transparent repeat-x 0 -8px; height: 8px; overflow: hidden; } .x-box-br { background: transparent no-repeat right -24px; } .x-box-tl, .x-box-bl { padding-left: 8px; overflow: hidden; } .x-box-tr, .x-box-br { padding-right: 8px; overflow: hidden; }.x-combo-list { border:1px solid; zoom:1; overflow:hidden; } .x-combo-list-inner { overflow:auto; position:relative; /* for calculating scroll offsets */ zoom:1; overflow-x:hidden; } .x-combo-list-hd { border-bottom:1px solid; padding:3px; } .x-resizable-pinned .x-combo-list-inner { border-bottom:1px solid; } .x-combo-list-item { padding:2px; border:1px solid; white-space: nowrap; overflow:hidden; text-overflow: ellipsis; } .x-combo-list .x-combo-selected{ border:1px dotted !important; cursor:pointer; } .x-combo-list .x-toolbar { border-top:1px solid; border-bottom:0 none; }.x-panel { border-style: solid; border-width:0; } .x-panel-header { overflow:hidden; zoom:1; padding:5px 3px 4px 5px; border:1px solid; line-height: 15px; background: transparent repeat-x 0 -1px; } .x-panel-body { border:1px solid; border-top:0 none; overflow:hidden; position: relative; /* added for item scroll positioning */ } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border:1px solid; border-top:0 none; overflow:hidden; padding:2px; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top:1px solid; border-bottom: 0 none; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top:1px solid; } .x-panel-header { overflow:hidden; zoom:1; } .x-panel-tl .x-panel-header { padding:5px 0 4px 0; border:0 none; background:transparent no-repeat; } .x-panel-tl .x-panel-icon, .x-window-tl .x-panel-icon { padding-left:20px !important; background-repeat:no-repeat; background-position:0 4px; zoom:1; } .x-panel-inline-icon { width:16px; height:16px; background-repeat:no-repeat; background-position:0 0; vertical-align:middle; margin-right:4px; margin-top:-1px; margin-bottom:-1px; } .x-panel-tc { background: transparent repeat-x 0 0; overflow:hidden; } /* fix ie7 strict mode bug */ .ext-strict .ext-ie7 .x-panel-tc { overflow: visible; } .x-panel-tl { background: transparent no-repeat 0 0; padding-left:6px; zoom:1; border-bottom:1px solid; } .x-panel-tr { background: transparent no-repeat right 0; zoom:1; padding-right:6px; } .x-panel-bc { background: transparent repeat-x 0 bottom; zoom:1; } .x-panel-bc .x-panel-footer { zoom:1; } .x-panel-bl { background: transparent no-repeat 0 bottom; padding-left:6px; zoom:1; } .x-panel-br { background: transparent no-repeat right bottom; padding-right:6px; zoom:1; } .x-panel-mc { border:0 none; padding:0; margin:0; padding-top:6px; } .x-panel-mc .x-panel-body { background-color:transparent; border: 0 none; } .x-panel-ml { background: repeat-y 0 0; padding-left:6px; zoom:1; } .x-panel-mr { background: transparent repeat-y right 0; padding-right:6px; zoom:1; } .x-panel-bc .x-panel-footer { padding-bottom:6px; } .x-panel-nofooter .x-panel-bc, .x-panel-nofooter .x-window-bc { height:6px; font-size:0; line-height:0; } .x-panel-bwrap { overflow:hidden; zoom:1; left:0; top:0; } .x-panel-body { overflow:hidden; zoom:1; } .x-panel-collapsed .x-resizable-handle{ display:none; } .ext-gecko .x-panel-animated div { overflow:hidden !important; } /* Plain */ .x-plain-body { overflow:hidden; } .x-plain-bbar .x-toolbar { overflow:hidden; padding:2px; } .x-plain-tbar .x-toolbar { overflow:hidden; padding:2px; } .x-plain-bwrap { overflow:hidden; zoom:1; } .x-plain { overflow:hidden; } /* Tools */ .x-tool { overflow:hidden; width:15px; height:15px; float:right; cursor:pointer; background:transparent no-repeat; margin-left:2px; } /* expand / collapse tools */ .x-tool-toggle { background-position:0 -60px; } .x-tool-toggle-over { background-position:-15px -60px; } .x-panel-collapsed .x-tool-toggle { background-position:0 -75px; } .x-panel-collapsed .x-tool-toggle-over { background-position:-15px -75px; } .x-tool-close { background-position:0 -0; } .x-tool-close-over { background-position:-15px 0; } .x-tool-minimize { background-position:0 -15px; } .x-tool-minimize-over { background-position:-15px -15px; } .x-tool-maximize { background-position:0 -30px; } .x-tool-maximize-over { background-position:-15px -30px; } .x-tool-restore { background-position:0 -45px; } .x-tool-restore-over { background-position:-15px -45px; } .x-tool-gear { background-position:0 -90px; } .x-tool-gear-over { background-position:-15px -90px; } .x-tool-prev { background-position:0 -105px; } .x-tool-prev-over { background-position:-15px -105px; } .x-tool-next { background-position:0 -120px; } .x-tool-next-over { background-position:-15px -120px; } .x-tool-pin { background-position:0 -135px; } .x-tool-pin-over { background-position:-15px -135px; } .x-tool-unpin { background-position:0 -150px; } .x-tool-unpin-over { background-position:-15px -150px; } .x-tool-right { background-position:0 -165px; } .x-tool-right-over { background-position:-15px -165px; } .x-tool-left { background-position:0 -180px; } .x-tool-left-over { background-position:-15px -180px; } .x-tool-down { background-position:0 -195px; } .x-tool-down-over { background-position:-15px -195px; } .x-tool-up { background-position:0 -210px; } .x-tool-up-over { background-position:-15px -210px; } .x-tool-refresh { background-position:0 -225px; } .x-tool-refresh-over { background-position:-15px -225px; } .x-tool-plus { background-position:0 -240px; } .x-tool-plus-over { background-position:-15px -240px; } .x-tool-minus { background-position:0 -255px; } .x-tool-minus-over { background-position:-15px -255px; } .x-tool-search { background-position:0 -270px; } .x-tool-search-over { background-position:-15px -270px; } .x-tool-save { background-position:0 -285px; } .x-tool-save-over { background-position:-15px -285px; } .x-tool-help { background-position:0 -300px; } .x-tool-help-over { background-position:-15px -300px; } .x-tool-print { background-position:0 -315px; } .x-tool-print-over { background-position:-15px -315px; } .x-tool-expand { background-position:0 -330px; } .x-tool-expand-over { background-position:-15px -330px; } .x-tool-collapse { background-position:0 -345px; } .x-tool-collapse-over { background-position:-15px -345px; } .x-tool-resize { background-position:0 -360px; } .x-tool-resize-over { background-position:-15px -360px; } .x-tool-move { background-position:0 -375px; } .x-tool-move-over { background-position:-15px -375px; } /* Ghosting */ .x-panel-ghost { z-index:12000; overflow:hidden; position:absolute; left:0;top:0; opacity:.65; -moz-opacity:.65; filter:alpha(opacity=65); } .x-panel-ghost ul { margin:0; padding:0; overflow:hidden; font-size:0; line-height:0; border:1px solid; border-top:0 none; display:block; } .x-panel-ghost * { cursor:move !important; } .x-panel-dd-spacer { border:2px dashed; } /* Buttons */ .x-panel-btns { padding:5px; overflow:hidden; } .x-panel-btns td.x-toolbar-cell{ padding:3px; } .x-panel-btns .x-btn-focus .x-btn-left{ background-position:0 -147px; } .x-panel-btns .x-btn-focus .x-btn-right{ background-position:0 -168px; } .x-panel-btns .x-btn-focus .x-btn-center{ background-position:0 -189px; } .x-panel-btns .x-btn-over .x-btn-left{ background-position:0 -63px; } .x-panel-btns .x-btn-over .x-btn-right{ background-position:0 -84px; } .x-panel-btns .x-btn-over .x-btn-center{ background-position:0 -105px; } .x-panel-btns .x-btn-click .x-btn-center{ background-position:0 -126px; } .x-panel-btns .x-btn-click .x-btn-right{ background-position:0 -84px; } .x-panel-btns .x-btn-click .x-btn-left{ background-position:0 -63px; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ white-space: nowrap; } /** * W3C Suggested Default style sheet for HTML 4 * http://www.w3.org/TR/CSS21/sample.html * * Resets for Ext.Panel @cfg normal: true */ .x-panel-reset .x-panel-body html, .x-panel-reset .x-panel-body address, .x-panel-reset .x-panel-body blockquote, .x-panel-reset .x-panel-body body, .x-panel-reset .x-panel-body dd, .x-panel-reset .x-panel-body div, .x-panel-reset .x-panel-body dl, .x-panel-reset .x-panel-body dt, .x-panel-reset .x-panel-body fieldset, .x-panel-reset .x-panel-body form, .x-panel-reset .x-panel-body frame, frameset, .x-panel-reset .x-panel-body h1, .x-panel-reset .x-panel-body h2, .x-panel-reset .x-panel-body h3, .x-panel-reset .x-panel-body h4, .x-panel-reset .x-panel-body h5, .x-panel-reset .x-panel-body h6, .x-panel-reset .x-panel-body noframes, .x-panel-reset .x-panel-body ol, .x-panel-reset .x-panel-body p, .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body center, .x-panel-reset .x-panel-body dir, .x-panel-reset .x-panel-body hr, .x-panel-reset .x-panel-body menu, .x-panel-reset .x-panel-body pre { display: block } .x-panel-reset .x-panel-body li { display: list-item } .x-panel-reset .x-panel-body head { display: none } .x-panel-reset .x-panel-body table { display: table } .x-panel-reset .x-panel-body tr { display: table-row } .x-panel-reset .x-panel-body thead { display: table-header-group } .x-panel-reset .x-panel-body tbody { display: table-row-group } .x-panel-reset .x-panel-body tfoot { display: table-footer-group } .x-panel-reset .x-panel-body col { display: table-column } .x-panel-reset .x-panel-body colgroup { display: table-column-group } .x-panel-reset .x-panel-body td, .x-panel-reset .x-panel-body th { display: table-cell } .x-panel-reset .x-panel-body caption { display: table-caption } .x-panel-reset .x-panel-body th { font-weight: bolder; text-align: center } .x-panel-reset .x-panel-body caption { text-align: center } .x-panel-reset .x-panel-body body { margin: 8px } .x-panel-reset .x-panel-body h1 { font-size: 2em; margin: .67em 0 } .x-panel-reset .x-panel-body h2 { font-size: 1.5em; margin: .75em 0 } .x-panel-reset .x-panel-body h3 { font-size: 1.17em; margin: .83em 0 } .x-panel-reset .x-panel-body h4, .x-panel-reset .x-panel-body p, .x-panel-reset .x-panel-body blockquote, .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body fieldset, .x-panel-reset .x-panel-body form, .x-panel-reset .x-panel-body ol, .x-panel-reset .x-panel-body dl, .x-panel-reset .x-panel-body dir, .x-panel-reset .x-panel-body menu { margin: 1.12em 0 } .x-panel-reset .x-panel-body h5 { font-size: .83em; margin: 1.5em 0 } .x-panel-reset .x-panel-body h6 { font-size: .75em; margin: 1.67em 0 } .x-panel-reset .x-panel-body h1, .x-panel-reset .x-panel-body h2, .x-panel-reset .x-panel-body h3, .x-panel-reset .x-panel-body h4, .x-panel-reset .x-panel-body h5, .x-panel-reset .x-panel-body h6, .x-panel-reset .x-panel-body b, .x-panel-reset .x-panel-body strong { font-weight: bolder } .x-panel-reset .x-panel-body blockquote { margin-left: 40px; margin-right: 40px } .x-panel-reset .x-panel-body i, .x-panel-reset .x-panel-body cite, .x-panel-reset .x-panel-body em, .x-panel-reset .x-panel-body var, .x-panel-reset .x-panel-body address { font-style: italic } .x-panel-reset .x-panel-body pre, .x-panel-reset .x-panel-body tt, .x-panel-reset .x-panel-body code, .x-panel-reset .x-panel-body kbd, .x-panel-reset .x-panel-body samp { font-family: monospace } .x-panel-reset .x-panel-body pre { white-space: pre } .x-panel-reset .x-panel-body button, .x-panel-reset .x-panel-body textarea, .x-panel-reset .x-panel-body input, .x-panel-reset .x-panel-body select { display: inline-block } .x-panel-reset .x-panel-body big { font-size: 1.17em } .x-panel-reset .x-panel-body small, .x-panel-reset .x-panel-body sub, .x-panel-reset .x-panel-body sup { font-size: .83em } .x-panel-reset .x-panel-body sub { vertical-align: sub } .x-panel-reset .x-panel-body sup { vertical-align: super } .x-panel-reset .x-panel-body table { border-spacing: 2px; } .x-panel-reset .x-panel-body thead, .x-panel-reset .x-panel-body tbody, .x-panel-reset .x-panel-body tfoot { vertical-align: middle } .x-panel-reset .x-panel-body td, .x-panel-reset .x-panel-body th { vertical-align: inherit } .x-panel-reset .x-panel-body s, .x-panel-reset .x-panel-body strike, .x-panel-reset .x-panel-body del { text-decoration: line-through } .x-panel-reset .x-panel-body hr { border: 1px inset } .x-panel-reset .x-panel-body ol, .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body dir, .x-panel-reset .x-panel-body menu, .x-panel-reset .x-panel-body dd { margin-left: 40px } .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body menu, .x-panel-reset .x-panel-body dir { list-style-type: disc;} .x-panel-reset .x-panel-body ol { list-style-type: decimal } .x-panel-reset .x-panel-body ol ul, .x-panel-reset .x-panel-body ul ol, .x-panel-reset .x-panel-body ul ul, .x-panel-reset .x-panel-body ol ol { margin-top: 0; margin-bottom: 0 } .x-panel-reset .x-panel-body u, .x-panel-reset .x-panel-body ins { text-decoration: underline } .x-panel-reset .x-panel-body br:before { content: "\A" } .x-panel-reset .x-panel-body :before, .x-panel-reset .x-panel-body :after { white-space: pre-line } .x-panel-reset .x-panel-body center { text-align: center } .x-panel-reset .x-panel-body :link, .x-panel-reset .x-panel-body :visited { text-decoration: underline } .x-panel-reset .x-panel-body :focus { outline: invert dotted thin } /* Begin bidirectionality settings (do not change) */ .x-panel-reset .x-panel-body BDO[DIR="ltr"] { direction: ltr; unicode-bidi: bidi-override } .x-panel-reset .x-panel-body BDO[DIR="rtl"] { direction: rtl; unicode-bidi: bidi-override } .x-window { zoom:1; } .x-window .x-window-handle { opacity:0; -moz-opacity:0; filter:alpha(opacity=0); } .x-window-proxy { border:1px solid; z-index:12000; overflow:hidden; position:absolute; left:0;top:0; display:none; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); } .x-window-header { overflow:hidden; zoom:1; } .x-window-bwrap { z-index:1; position:relative; zoom:1; left:0;top:0; } .x-window-tl .x-window-header { padding:5px 0 4px 0; } .x-window-header-text { cursor:pointer; } .x-window-tc { background: transparent repeat-x 0 0; overflow:hidden; zoom:1; } .x-window-tl { background: transparent no-repeat 0 0; padding-left:6px; zoom:1; z-index:1; position:relative; } .x-window-tr { background: transparent no-repeat right 0; padding-right:6px; } .x-window-bc { background: transparent repeat-x 0 bottom; zoom:1; } .x-window-bc .x-window-footer { padding-bottom:6px; zoom:1; font-size:0; line-height:0; } .x-window-bl { background: transparent no-repeat 0 bottom; padding-left:6px; zoom:1; } .x-window-br { background: transparent no-repeat right bottom; padding-right:6px; zoom:1; } .x-window-mc { border:1px solid; padding:0; margin:0; } .x-window-ml { background: transparent repeat-y 0 0; padding-left:6px; zoom:1; } .x-window-mr { background: transparent repeat-y right 0; padding-right:6px; zoom:1; } .x-window-body { overflow:hidden; } .x-window-bwrap { overflow:hidden; } .x-window-maximized .x-window-bl, .x-window-maximized .x-window-br, .x-window-maximized .x-window-ml, .x-window-maximized .x-window-mr, .x-window-maximized .x-window-tl, .x-window-maximized .x-window-tr { padding:0; } .x-window-maximized .x-window-footer { padding-bottom:0; } .x-window-maximized .x-window-tc { padding-left:3px; padding-right:3px; } .x-window-maximized .x-window-mc { border-left:0 none; border-right:0 none; } .x-window-tbar .x-toolbar, .x-window-bbar .x-toolbar { border-left:0 none; border-right: 0 none; } .x-window-bbar .x-toolbar { border-top:1px solid; border-bottom:0 none; } .x-window-draggable, .x-window-draggable .x-window-header-text { cursor:move; } .x-window-maximized .x-window-draggable, .x-window-maximized .x-window-draggable .x-window-header-text { cursor:default; } .x-window-body { background-color:transparent; } .x-panel-ghost .x-window-tl { border-bottom:1px solid; } .x-panel-collapsed .x-window-tl { border-bottom:1px solid; } .x-window-maximized-ct { overflow:hidden; } .x-window-maximized .x-window-handle { display:none; } .x-window-sizing-ghost ul { border:0 none !important; } .x-dlg-focus{ -moz-outline:0 none; outline:0 none; width:0; height:0; overflow:hidden; position:absolute; top:0; left:0; } .ext-webkit .x-dlg-focus{ width: 1px; height: 1px; } .x-dlg-mask{ z-index:10000; display:none; position:absolute; top:0; left:0; -moz-opacity: 0.5; opacity:.50; filter: alpha(opacity=50); } body.ext-ie6.x-body-masked select { visibility:hidden; } body.ext-ie6.x-body-masked .x-window select { visibility:visible; } .x-window-plain .x-window-mc { border: 1px solid; } .x-window-plain .x-window-body { border: 1px solid; background:transparent !important; }.x-html-editor-wrap { border:1px solid; } .x-html-editor-tb .x-btn-text { background:transparent no-repeat; } .x-html-editor-tb .x-edit-bold, .x-menu-item img.x-edit-bold { background-position:0 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-italic, .x-menu-item img.x-edit-italic { background-position:-16px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-underline, .x-menu-item img.x-edit-underline { background-position:-32px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-forecolor, .x-menu-item img.x-edit-forecolor { background-position:-160px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-backcolor, .x-menu-item img.x-edit-backcolor { background-position:-176px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-justifyleft, .x-menu-item img.x-edit-justifyleft { background-position:-112px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-justifycenter, .x-menu-item img.x-edit-justifycenter { background-position:-128px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-justifyright, .x-menu-item img.x-edit-justifyright { background-position:-144px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-insertorderedlist, .x-menu-item img.x-edit-insertorderedlist { background-position:-80px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-insertunorderedlist, .x-menu-item img.x-edit-insertunorderedlist { background-position:-96px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-increasefontsize, .x-menu-item img.x-edit-increasefontsize { background-position:-48px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-decreasefontsize, .x-menu-item img.x-edit-decreasefontsize { background-position:-64px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-sourceedit, .x-menu-item img.x-edit-sourceedit { background-position:-192px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-createlink, .x-menu-item img.x-edit-createlink { background-position:-208px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tip .x-tip-bd .x-tip-bd-inner { padding:5px; padding-bottom:1px; } .x-html-editor-tb .x-toolbar { position:static !important; }.x-panel-noborder .x-panel-body-noborder { border-width:0; } .x-panel-noborder .x-panel-header-noborder { border-width:0 0 1px; border-style:solid; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-width:0 0 1px; border-style:solid; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-width:1px 0 0 0; border-style:solid; } .x-window-noborder .x-window-mc { border-width:0; } .x-window-plain .x-window-body-noborder { border-width:0; } .x-tab-panel-noborder .x-tab-panel-body-noborder { border-width:0; } .x-tab-panel-noborder .x-tab-panel-header-noborder { border-width: 0 0 1px 0; } .x-tab-panel-noborder .x-tab-panel-footer-noborder { border-width: 1px 0 0 0; } .x-tab-panel-bbar-noborder .x-toolbar { border-width: 1px 0 0 0; border-style:solid; } .x-tab-panel-tbar-noborder .x-toolbar { border-width:0 0 1px; border-style:solid; }.x-border-layout-ct { position: relative; } .x-border-panel { position:absolute; left:0; top:0; } .x-tool-collapse-south { background-position:0 -195px; } .x-tool-collapse-south-over { background-position:-15px -195px; } .x-tool-collapse-north { background-position:0 -210px; } .x-tool-collapse-north-over { background-position:-15px -210px; } .x-tool-collapse-west { background-position:0 -180px; } .x-tool-collapse-west-over { background-position:-15px -180px; } .x-tool-collapse-east { background-position:0 -165px; } .x-tool-collapse-east-over { background-position:-15px -165px; } .x-tool-expand-south { background-position:0 -210px; } .x-tool-expand-south-over { background-position:-15px -210px; } .x-tool-expand-north { background-position:0 -195px; } .x-tool-expand-north-over { background-position:-15px -195px; } .x-tool-expand-west { background-position:0 -165px; } .x-tool-expand-west-over { background-position:-15px -165px; } .x-tool-expand-east { background-position:0 -180px; } .x-tool-expand-east-over { background-position:-15px -180px; } .x-tool-expand-north, .x-tool-expand-south { float:right; margin:3px; } .x-tool-expand-east, .x-tool-expand-west { float:none; margin:3px 2px; } .x-accordion-hd .x-tool-toggle { background-position:0 -255px; } .x-accordion-hd .x-tool-toggle-over { background-position:-15px -255px; } .x-panel-collapsed .x-accordion-hd .x-tool-toggle { background-position:0 -240px; } .x-panel-collapsed .x-accordion-hd .x-tool-toggle-over { background-position:-15px -240px; } .x-accordion-hd { padding-top:4px; padding-bottom:3px; border-top:0 none; background: transparent repeat-x 0 -9px; } .x-layout-collapsed{ position:absolute; left:-10000px; top:-10000px; visibility:hidden; width:20px; height:20px; overflow:hidden; border:1px solid; z-index:20; } .ext-border-box .x-layout-collapsed{ width:22px; height:22px; } .x-layout-collapsed-over{ cursor:pointer; } .x-layout-collapsed-west .x-layout-collapsed-tools, .x-layout-collapsed-east .x-layout-collapsed-tools{ position:absolute; top:0; left:0; width:20px; height:20px; } .x-layout-split{ position:absolute; height:5px; width:5px; line-height:1px; font-size:1px; z-index:3; background-color:transparent; } /* IE6 strict won't drag w/out a color */ .ext-strict .ext-ie6 .x-layout-split{ background-color: #fff !important; filter: alpha(opacity=1); } .x-layout-split-h{ background-image:url(../images/default/s.gif); background-position: left; } .x-layout-split-v{ background-image:url(../images/default/s.gif); background-position: top; } .x-column-layout-ct { overflow:hidden; zoom:1; } .x-column { float:left; padding:0; margin:0; overflow:hidden; zoom:1; } .x-column-inner { overflow:hidden; zoom:1; } /* mini mode */ .x-layout-mini { position:absolute; top:0; left:0; display:block; width:5px; height:35px; cursor:pointer; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); } .x-layout-mini-over, .x-layout-collapsed-over .x-layout-mini{ opacity:1; -moz-opacity:1; filter:none; } .x-layout-split-west .x-layout-mini { top:48%; } .x-layout-split-east .x-layout-mini { top:48%; } .x-layout-split-north .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-split-south .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-cmini-west .x-layout-mini { top:48%; } .x-layout-cmini-east .x-layout-mini { top:48%; } .x-layout-cmini-north .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-cmini-south .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-cmini-west, .x-layout-cmini-east { border:0 none; width:5px !important; padding:0; background-color:transparent; } .x-layout-cmini-north, .x-layout-cmini-south { border:0 none; height:5px !important; padding:0; background-color:transparent; } .x-viewport, .x-viewport body { margin: 0; padding: 0; border: 0 none; overflow: hidden; height: 100%; } .x-abs-layout-item { position:absolute; left:0; top:0; } .ext-ie input.x-abs-layout-item, .ext-ie textarea.x-abs-layout-item { margin:0; } .x-box-layout-ct { overflow:hidden; zoom:1; } .x-box-inner { overflow:hidden; zoom:1; position:relative; left:0; top:0; } .x-box-item { position:absolute; left:0; top:0; }.x-progress-wrap { border:1px solid; overflow:hidden; } .x-progress-inner { height:18px; background:repeat-x; position:relative; } .x-progress-bar { height:18px; float:left; width:0; background: repeat-x left center; border-top:1px solid; border-bottom:1px solid; border-right:1px solid; } .x-progress-text { padding:1px 5px; overflow:hidden; position:absolute; left:0; text-align:center; } .x-progress-text-back { line-height:16px; } .ext-ie .x-progress-text-back { line-height:15px; } .ext-strict .ext-ie7 .x-progress-text-back{ width: 100%; } .x-list-header{ background: repeat-x 0 bottom; cursor:default; zoom:1; height:22px; } .x-list-header-inner div { display:block; float:left; overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; white-space: nowrap; } .x-list-header-inner div em { display:block; border-left:1px solid; padding:4px 4px; overflow:hidden; -moz-user-select: none; -khtml-user-select: none; line-height:14px; } .x-list-body { overflow:auto; overflow-x:hidden; overflow-y:auto; zoom:1; float: left; width: 100%; } .x-list-body dl { zoom:1; } .x-list-body dt { display:block; float:left; overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; white-space: nowrap; cursor:pointer; zoom:1; } .x-list-body dt em { display:block; padding:3px 4px; overflow:hidden; -moz-user-select: none; -khtml-user-select: none; } .x-list-resizer { border-left:1px solid; border-right:1px solid; position:absolute; left:0; top:0; } .x-list-header-inner em.sort-asc { background: transparent no-repeat center 0; border-style:solid; border-width: 0 1px 1px; padding-bottom:3px; } .x-list-header-inner em.sort-desc { background: transparent no-repeat center -23px; border-style:solid; border-width: 0 1px 1px; padding-bottom:3px; } /* Shared styles */ .x-slider { zoom:1; } .x-slider-inner { position:relative; left:0; top:0; overflow:visible; zoom:1; } .x-slider-focus { position:absolute; left:0; top:0; width:1px; height:1px; line-height:1px; font-size:1px; -moz-outline:0 none; outline:0 none; -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; display:block; overflow:hidden; } /* Horizontal styles */ .x-slider-horz { padding-left:7px; background:transparent no-repeat 0 -22px; } .x-slider-horz .x-slider-end { padding-right:7px; zoom:1; background:transparent no-repeat right -44px; } .x-slider-horz .x-slider-inner { background:transparent repeat-x 0 0; height:22px; } .x-slider-horz .x-slider-thumb { width:14px; height:15px; position:absolute; left:0; top:3px; background:transparent no-repeat 0 0; } .x-slider-horz .x-slider-thumb-over { background-position: -14px -15px; } .x-slider-horz .x-slider-thumb-drag { background-position: -28px -30px; } /* Vertical styles */ .x-slider-vert { padding-top:7px; background:transparent no-repeat -44px 0; width:22px; } .x-slider-vert .x-slider-end { padding-bottom:7px; zoom:1; background:transparent no-repeat -22px bottom; } .x-slider-vert .x-slider-inner { background:transparent repeat-y 0 0; } .x-slider-vert .x-slider-thumb { width:15px; height:14px; position:absolute; left:3px; bottom:0; background:transparent no-repeat 0 0; } .x-slider-vert .x-slider-thumb-over { background-position: -15px -14px; } .x-slider-vert .x-slider-thumb-drag { background-position: -30px -28px; }.x-window-dlg .x-window-body { border:0 none !important; padding:5px 10px; overflow:hidden !important; } .x-window-dlg .x-window-mc { border:0 none !important; } .x-window-dlg .ext-mb-input { margin-top:4px; width:95%; } .x-window-dlg .ext-mb-textarea { margin-top:4px; } .x-window-dlg .x-progress-wrap { margin-top:4px; } .ext-ie .x-window-dlg .x-progress-wrap { margin-top:6px; } .x-window-dlg .x-msg-box-wait { background:transparent no-repeat left; display:block; width:300px; padding-left:18px; line-height:18px; } .x-window-dlg .ext-mb-icon { float:left; width:47px; height:32px; } .x-window-dlg .x-dlg-icon .ext-mb-content{ zoom: 1; margin-left: 47px; } .x-window-dlg .ext-mb-info, .x-window-dlg .ext-mb-warning, .x-window-dlg .ext-mb-question, .x-window-dlg .ext-mb-error { background:transparent no-repeat top left; } .ext-gecko2 .ext-mb-fix-cursor { overflow:auto; } ================================================ FILE: client/src/ext/resources/css/ext-all.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ html,body,div,dl,dt,dd,ul,ol,li,h1,h2,h3,h4,h5,h6,pre,form,fieldset,input,p,blockquote,th,td{margin:0;padding:0}img,body,html{border:0}address,caption,cite,code,dfn,em,strong,th,var{font-style:normal;font-weight:normal}ol,ul{list-style:none}caption,th{text-align:left}h1,h2,h3,h4,h5,h6{font-size:100%}q:before,q:after{content:''}.ext-forced-border-box,.ext-forced-border-box *{-moz-box-sizing:border-box;-ms-box-sizing:border-box;-webkit-box-sizing:border-box}.ext-el-mask{z-index:100;position:absolute;top:0;left:0;-moz-opacity:.5;opacity:.50;filter:alpha(opacity=50);width:100%;height:100%;zoom:1}.ext-el-mask-msg{z-index:20001;position:absolute;top:0;left:0;border:1px solid;background:repeat-x 0 -16px;padding:2px}.ext-el-mask-msg div{padding:5px 10px 5px 10px;border:1px solid;cursor:wait}.ext-shim{position:absolute;visibility:hidden;left:0;top:0;overflow:hidden}.ext-ie .ext-shim{filter:alpha(opacity=0)}.ext-ie6 .ext-shim{margin-left:5px;margin-top:3px}.x-mask-loading div{padding:5px 10px 5px 25px;background:no-repeat 5px 5px;line-height:16px}.x-hidden,.x-hide-offsets{position:absolute!important;left:-10000px;top:-10000px;visibility:hidden}.x-hide-display{display:none!important}.x-hide-nosize,.x-hide-nosize *{height:0!important;width:0!important;visibility:hidden!important;border:none!important;zoom:1}.x-hide-visibility{visibility:hidden!important}.x-masked{overflow:hidden!important}.x-masked-relative{position:relative!important}.x-masked select,.x-masked object,.x-masked embed{visibility:hidden}.x-layer{visibility:hidden}.x-unselectable,.x-unselectable *{user-select:none;-o-user-select:none;-ms-user-select:none;-moz-user-select:-moz-none;-webkit-user-select:none;cursor:default}.x-repaint{zoom:1;background-color:transparent;-moz-outline:0;outline:0}.x-item-disabled{cursor:default;opacity:.6;-moz-opacity:.6;filter:alpha(opacity=60)}.x-item-disabled *{cursor:default!important}.x-form-radio-group .x-item-disabled{filter:none}.x-splitbar-proxy{position:absolute;visibility:hidden;z-index:20001;zoom:1;line-height:1px;font-size:1px;overflow:hidden}.x-splitbar-h,.x-splitbar-proxy-h{cursor:e-resize;cursor:col-resize}.x-splitbar-v,.x-splitbar-proxy-v{cursor:s-resize;cursor:row-resize}.x-color-palette{width:150px;height:92px;cursor:pointer}.x-color-palette a{border:1px solid;float:left;padding:2px;text-decoration:none;-moz-outline:0 none;outline:0 none;cursor:pointer}.x-color-palette a:hover,.x-color-palette a.x-color-palette-sel{border:1px solid}.x-color-palette em{display:block;border:1px solid}.x-color-palette em span{cursor:pointer;display:block;height:10px;line-height:10px;width:10px}.x-ie-shadow{display:none;position:absolute;overflow:hidden;left:0;top:0;zoom:1}.x-shadow{display:none;position:absolute;overflow:hidden;left:0;top:0}.x-shadow *{overflow:hidden}.x-shadow *{padding:0;border:0;margin:0;clear:none;zoom:1}.x-shadow .xstc,.x-shadow .xsbc{height:6px;float:left}.x-shadow .xstl,.x-shadow .xstr,.x-shadow .xsbl,.x-shadow .xsbr{width:6px;height:6px;float:left}.x-shadow .xsc{width:100%}.x-shadow .xsml,.x-shadow .xsmr{width:6px;float:left;height:100%}.x-shadow .xsmc{float:left;height:100%;background-color:transparent}.x-shadow .xst,.x-shadow .xsb{height:6px;overflow:hidden;width:100%}.x-shadow .xsml{background:transparent repeat-y 0 0}.x-shadow .xsmr{background:transparent repeat-y -6px 0}.x-shadow .xstl{background:transparent no-repeat 0 0}.x-shadow .xstc{background:transparent repeat-x 0 -30px}.x-shadow .xstr{background:transparent repeat-x 0 -18px}.x-shadow .xsbl{background:transparent no-repeat 0 -12px}.x-shadow .xsbc{background:transparent repeat-x 0 -36px}.x-shadow .xsbr{background:transparent repeat-x 0 -6px}.loading-indicator{background:no-repeat left;padding-left:20px;line-height:16px;margin:3px}.x-text-resize{position:absolute;left:-1000px;top:-1000px;visibility:hidden;zoom:1}.x-drag-overlay{width:100%;height:100%;display:none;position:absolute;left:0;top:0;background-image:url(../images/default/s.gif);z-index:20000}.x-clear{clear:both;height:0;overflow:hidden;line-height:0;font-size:0}.x-spotlight{z-index:8999;position:absolute;top:0;left:0;-moz-opacity:.5;opacity:.50;filter:alpha(opacity=50);width:0;height:0;zoom:1}#x-history-frame{position:absolute;top:-1px;left:0;width:1px;height:1px;visibility:hidden}#x-history-field{position:absolute;top:0;left:-1px;width:1px;height:1px;visibility:hidden}.x-resizable-handle{position:absolute;z-index:100;font-size:1px;line-height:6px;overflow:hidden;filter:alpha(opacity=0);opacity:0;zoom:1}.x-resizable-handle-east{width:6px;cursor:e-resize;right:0;top:0;height:100%}.ext-ie .x-resizable-handle-east{margin-right:-1px}.x-resizable-handle-south{width:100%;cursor:s-resize;left:0;bottom:0;height:6px}.ext-ie .x-resizable-handle-south{margin-bottom:-1px}.x-resizable-handle-west{width:6px;cursor:w-resize;left:0;top:0;height:100%}.x-resizable-handle-north{width:100%;cursor:n-resize;left:0;top:0;height:6px}.x-resizable-handle-southeast{width:6px;cursor:se-resize;right:0;bottom:0;height:6px;z-index:101}.x-resizable-handle-northwest{width:6px;cursor:nw-resize;left:0;top:0;height:6px;z-index:101}.x-resizable-handle-northeast{width:6px;cursor:ne-resize;right:0;top:0;height:6px;z-index:101}.x-resizable-handle-southwest{width:6px;cursor:sw-resize;left:0;bottom:0;height:6px;z-index:101}.x-resizable-over .x-resizable-handle,.x-resizable-pinned .x-resizable-handle{filter:alpha(opacity=100);opacity:1}.x-resizable-over .x-resizable-handle-east,.x-resizable-pinned .x-resizable-handle-east,.x-resizable-over .x-resizable-handle-west,.x-resizable-pinned .x-resizable-handle-west{background-position:left}.x-resizable-over .x-resizable-handle-south,.x-resizable-pinned .x-resizable-handle-south,.x-resizable-over .x-resizable-handle-north,.x-resizable-pinned .x-resizable-handle-north{background-position:top}.x-resizable-over .x-resizable-handle-southeast,.x-resizable-pinned .x-resizable-handle-southeast{background-position:top left}.x-resizable-over .x-resizable-handle-northwest,.x-resizable-pinned .x-resizable-handle-northwest{background-position:bottom right}.x-resizable-over .x-resizable-handle-northeast,.x-resizable-pinned .x-resizable-handle-northeast{background-position:bottom left}.x-resizable-over .x-resizable-handle-southwest,.x-resizable-pinned .x-resizable-handle-southwest{background-position:top right}.x-resizable-proxy{border:1px dashed;position:absolute;overflow:hidden;display:none;left:0;top:0;z-index:50000}.x-resizable-overlay{width:100%;height:100%;display:none;position:absolute;left:0;top:0;z-index:200000;-moz-opacity:0;opacity:0;filter:alpha(opacity=0)}.x-tab-panel{overflow:hidden}.x-tab-panel-header,.x-tab-panel-footer{border:1px solid;overflow:hidden;zoom:1}.x-tab-panel-header{border:1px solid;padding-bottom:2px}.x-tab-panel-footer{border:1px solid;padding-top:2px}.x-tab-strip-wrap{width:100%;overflow:hidden;position:relative;zoom:1}ul.x-tab-strip{display:block;width:5000px;zoom:1}ul.x-tab-strip-top{padding-top:1px;background:repeat-x bottom;border-bottom:1px solid}ul.x-tab-strip-bottom{padding-bottom:1px;background:repeat-x top;border-top:1px solid;border-bottom:0 none}.x-tab-panel-header-plain .x-tab-strip-top{background:transparent!important;padding-top:0!important}.x-tab-panel-header-plain{background:transparent!important;border-width:0!important;padding-bottom:0!important}.x-tab-panel-header-plain .x-tab-strip-spacer,.x-tab-panel-footer-plain .x-tab-strip-spacer{border:1px solid;height:2px;font-size:1px;line-height:1px}.x-tab-panel-header-plain .x-tab-strip-spacer{border-top:0 none}.x-tab-panel-footer-plain .x-tab-strip-spacer{border-bottom:0 none}.x-tab-panel-footer-plain .x-tab-strip-bottom{background:transparent!important;padding-bottom:0!important}.x-tab-panel-footer-plain{background:transparent!important;border-width:0!important;padding-top:0!important}.ext-border-box .x-tab-panel-header-plain .x-tab-strip-spacer,.ext-border-box .x-tab-panel-footer-plain .x-tab-strip-spacer{height:3px}ul.x-tab-strip li{float:left;margin-left:2px}ul.x-tab-strip li.x-tab-edge{float:left;margin:0!important;padding:0!important;border:0 none!important;font-size:1px!important;line-height:1px!important;overflow:hidden;zoom:1;background:transparent!important;width:1px}.x-tab-strip a,.x-tab-strip span,.x-tab-strip em{display:block}.x-tab-strip a{text-decoration:none!important;-moz-outline:0;outline:0;cursor:pointer}.x-tab-strip-inner{overflow:hidden;text-overflow:ellipsis}.x-tab-strip span.x-tab-strip-text{white-space:nowrap;cursor:pointer;padding:4px 0}.x-tab-strip-top .x-tab-with-icon .x-tab-right{padding-left:6px}.x-tab-strip .x-tab-with-icon span.x-tab-strip-text{padding-left:20px;background-position:0 3px;background-repeat:no-repeat}.x-tab-strip-active,.x-tab-strip-active a.x-tab-right{cursor:default}.x-tab-strip-active span.x-tab-strip-text{cursor:default}.x-tab-strip-disabled .x-tabs-text{cursor:default}.x-tab-panel-body{overflow:hidden}.x-tab-panel-bwrap{overflow:hidden}.ext-ie .x-tab-strip .x-tab-right{position:relative}.x-tab-strip-top .x-tab-strip-active .x-tab-right{margin-bottom:-1px}.ext-ie8 .x-tab-strip li{position:relative}.ext-border-box .ext-ie8 .x-tab-strip-top .x-tab-right,.ext-border-box .ext-ie9 .x-tab-strip-top .x-tab-right{top:1px}.ext-ie8 .x-tab-strip-top,.ext-ie9 .x-tab-strip-top{padding-top:1px}.ext-border-box .ext-ie8 .x-tab-strip-top,.ext-border-box .ext-ie9 .x-tab-strip-top{padding-top:0}.ext-ie8 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close,.ext-ie9 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close{top:3px}.ext-border-box .ext-ie8 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close,.ext-border-box .ext-ie9 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close{top:4px}.ext-ie8 .x-tab-strip-bottom .x-tab-right,.ext-ie9 .x-tab-strip-bottom .x-tab-right{top:0}.x-tab-strip-top .x-tab-strip-active .x-tab-right span.x-tab-strip-text{padding-bottom:5px}.x-tab-strip-bottom .x-tab-strip-active .x-tab-right{margin-top:-1px}.x-tab-strip-bottom .x-tab-strip-active .x-tab-right span.x-tab-strip-text{padding-top:5px}.x-tab-strip-top .x-tab-right{background:transparent no-repeat 0 -51px;padding-left:10px}.x-tab-strip-top .x-tab-left{background:transparent no-repeat right -351px;padding-right:10px}.x-tab-strip-top .x-tab-strip-inner{background:transparent repeat-x 0 -201px}.x-tab-strip-top .x-tab-strip-over .x-tab-right{background-position:0 -101px}.x-tab-strip-top .x-tab-strip-over .x-tab-left{background-position:right -401px}.x-tab-strip-top .x-tab-strip-over .x-tab-strip-inner{background-position:0 -251px}.x-tab-strip-top .x-tab-strip-active .x-tab-right{background-position:0 0}.x-tab-strip-top .x-tab-strip-active .x-tab-left{background-position:right -301px}.x-tab-strip-top .x-tab-strip-active .x-tab-strip-inner{background-position:0 -151px}.x-tab-strip-bottom .x-tab-right{background:no-repeat bottom right}.x-tab-strip-bottom .x-tab-left{background:no-repeat bottom left}.x-tab-strip-bottom .x-tab-strip-active .x-tab-right{background:no-repeat bottom right}.x-tab-strip-bottom .x-tab-strip-active .x-tab-left{background:no-repeat bottom left}.x-tab-strip-bottom .x-tab-left{margin-right:3px;padding:0 10px}.x-tab-strip-bottom .x-tab-right{padding:0}.x-tab-strip .x-tab-strip-close{display:none}.x-tab-strip-closable{position:relative}.x-tab-strip-closable .x-tab-left{padding-right:19px}.x-tab-strip .x-tab-strip-closable a.x-tab-strip-close{opacity:.6;-moz-opacity:.6;background-repeat:no-repeat;display:block;width:11px;height:11px;position:absolute;top:3px;right:3px;cursor:pointer;z-index:2}.x-tab-strip .x-tab-strip-active a.x-tab-strip-close{opacity:.8;-moz-opacity:.8}.x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{opacity:1;-moz-opacity:1}.x-tab-panel-body{border:1px solid}.x-tab-panel-body-top{border-top:0 none}.x-tab-panel-body-bottom{border-bottom:0 none}.x-tab-scroller-left{background:transparent no-repeat -18px 0;border-bottom:1px solid;width:18px;position:absolute;left:0;top:0;z-index:10;cursor:pointer}.x-tab-scroller-left-over{background-position:0 0}.x-tab-scroller-left-disabled{background-position:-18px 0;opacity:.5;-moz-opacity:.5;filter:alpha(opacity=50);cursor:default}.x-tab-scroller-right{background:transparent no-repeat 0 0;border-bottom:1px solid;width:18px;position:absolute;right:0;top:0;z-index:10;cursor:pointer}.x-tab-scroller-right-over{background-position:-18px 0}.x-tab-scroller-right-disabled{background-position:0 0;opacity:.5;-moz-opacity:.5;filter:alpha(opacity=50);cursor:default}.x-tab-scrolling-bottom .x-tab-scroller-left,.x-tab-scrolling-bottom .x-tab-scroller-right{margin-top:1px}.x-tab-scrolling .x-tab-strip-wrap{margin-left:18px;margin-right:18px}.x-tab-scrolling{position:relative}.x-tab-panel-bbar .x-toolbar{border:1px solid;border-top:0 none;overflow:hidden;padding:2px}.x-tab-panel-tbar .x-toolbar{border:1px solid;border-top:0 none;overflow:hidden;padding:2px}.x-form-field{margin:0}.ext-webkit *:focus{outline:none!important}.x-form-text,textarea.x-form-field{padding:1px 3px;background:repeat-x 0 0;border:1px solid}textarea.x-form-field{padding:2px 3px}.x-form-text,.ext-ie .x-form-file{height:22px;line-height:18px;vertical-align:middle}.ext-ie6 .x-form-text,.ext-ie7 .x-form-text{margin:-1px 0;height:22px;line-height:18px}.x-quirks .ext-ie9 .x-form-text{height:22px;padding-top:3px;padding-bottom:0}.x-quirks .ext-ie9 .x-input-wrapper .x-form-text,.x-quirks .ext-ie9 .x-form-field-trigger-wrap .x-form-text{margin-top:-1px;margin-bottom:-1px}.x-quirks .ext-ie9 .x-input-wrapper .x-form-element{margin-bottom:-1px}.ext-ie6 .x-form-field-wrap .x-form-file-btn,.ext-ie7 .x-form-field-wrap .x-form-file-btn{top:-1px}.ext-ie6 textarea.x-form-field,.ext-ie7 textarea.x-form-field{margin:-1px 0}.ext-strict .x-form-text{height:18px}.ext-safari.ext-mac textarea.x-form-field{margin-bottom:-2px}.ext-gecko .x-form-text,.ext-ie8 .x-form-text{padding-top:2px;padding-bottom:0}.ext-ie6 .x-form-composite .x-form-text.x-box-item,.ext-ie7 .x-form-composite .x-form-text.x-box-item{margin:0!important}textarea{resize:none}.x-form-select-one{height:20px;line-height:18px;vertical-align:middle;border:1px solid}.x-form-check-wrap{line-height:18px;height:auto}.ext-ie .x-form-check-wrap input{width:15px;height:15px}.x-form-check-wrap input{vertical-align:bottom}.x-editor .x-form-check-wrap{padding:3px}.x-editor .x-form-checkbox{height:13px}.x-form-check-group-label{border-bottom:1px solid;margin-bottom:5px;padding-left:3px!important;float:none!important}.x-form-field-wrap .x-form-trigger{width:17px;height:21px;border:0;background:transparent no-repeat 0 0;cursor:pointer;border-bottom:1px solid;position:absolute;top:0}.x-form-field-wrap .x-form-date-trigger,.x-form-field-wrap .x-form-clear-trigger,.x-form-field-wrap .x-form-search-trigger{cursor:pointer}.x-form-field-wrap .x-form-twin-triggers .x-form-trigger{position:static;top:auto;vertical-align:top}.x-form-field-wrap{position:relative;left:0;top:0;text-align:left;zoom:1;white-space:nowrap}.ext-strict .ext-ie8 .x-toolbar-cell .x-form-field-trigger-wrap .x-form-trigger{right:0}.x-form-field-wrap .x-form-trigger-over{background-position:-17px 0}.x-form-field-wrap .x-form-trigger-click{background-position:-34px 0}.x-trigger-wrap-focus .x-form-trigger{background-position:-51px 0}.x-trigger-wrap-focus .x-form-trigger-over{background-position:-68px 0}.x-trigger-wrap-focus .x-form-trigger-click{background-position:-85px 0}.x-trigger-wrap-focus .x-form-trigger{border-bottom:1px solid}.x-item-disabled .x-form-trigger-over{background-position:0 0!important;border-bottom:1px solid}.x-item-disabled .x-form-trigger-click{background-position:0 0!important;border-bottom:1px solid}.x-trigger-noedit{cursor:pointer}.x-form-focus,textarea.x-form-focus{border:1px solid}.x-form-invalid,textarea.x-form-invalid{background:repeat-x bottom;border:1px solid}.x-form-inner-invalid,textarea.x-form-inner-invalid{background:repeat-x bottom}.x-editor{visibility:hidden;padding:0;margin:0}.x-form-grow-sizer{left:-10000px;padding:8px 3px;position:absolute;visibility:hidden;top:-10000px;white-space:pre-wrap;white-space:-moz-pre-wrap;white-space:-pre-wrap;white-space:-o-pre-wrap;word-wrap:break-word;zoom:1}.x-form-grow-sizer p{margin:0!important;border:0 none!important;padding:0!important}.x-form-item{display:block;margin-bottom:4px;zoom:1}.x-form-item label.x-form-item-label{display:block;float:left;width:100px;padding:3px;padding-left:0;clear:left;z-index:2;position:relative}.x-form-element{padding-left:105px;position:relative}.x-form-invalid-msg{padding:2px;padding-left:18px;background:transparent no-repeat 0 2px;line-height:16px;width:200px}.x-form-label-left label.x-form-item-label{text-align:left}.x-form-label-right label.x-form-item-label{text-align:right}.x-form-label-top .x-form-item label.x-form-item-label{width:auto;float:none;clear:none;display:inline;margin-bottom:4px;position:static}.x-form-label-top .x-form-element{padding-left:0;padding-top:4px}.x-form-label-top .x-form-item{padding-bottom:4px}.x-small-editor .x-form-text{height:20px;line-height:16px;vertical-align:middle}.ext-ie6 .x-small-editor .x-form-text,.ext-ie7 .x-small-editor .x-form-text{margin-top:-1px!important;margin-bottom:-1px!important;height:20px!important;line-height:16px!important}.ext-strict .x-small-editor .x-form-text{height:16px!important}.ext-ie6 .x-small-editor .x-form-text,.ext-ie7 .x-small-editor .x-form-text{height:20px;line-height:16px}.ext-border-box .x-small-editor .x-form-text{height:20px}.x-small-editor .x-form-select-one{height:20px;line-height:16px;vertical-align:middle}.x-small-editor .x-form-num-field{text-align:right}.x-small-editor .x-form-field-wrap .x-form-trigger{height:19px}.ext-webkit .x-small-editor .x-form-text{padding-top:3px;font-size:100%}.ext-strict .ext-webkit .x-small-editor .x-form-text{height:14px!important}.x-form-clear{clear:both;height:0;overflow:hidden;line-height:0;font-size:0}.x-form-clear-left{clear:left;height:0;overflow:hidden;line-height:0;font-size:0}.ext-ie6 .x-form-check-wrap input,.ext-border-box .x-form-check-wrap input{margin-top:3px}.x-form-cb-label{position:relative;margin-left:4px;top:2px}.ext-ie .x-form-cb-label{top:1px}.ext-ie6 .x-form-cb-label,.ext-border-box .x-form-cb-label{top:3px}.x-form-display-field{padding-top:2px}.ext-gecko .x-form-display-field,.ext-strict .ext-ie7 .x-form-display-field{padding-top:1px}.ext-ie .x-form-display-field{padding-top:3px}.ext-strict .ext-ie8 .x-form-display-field{padding-top:0}.x-form-column{float:left;padding:0;margin:0;width:48%;overflow:hidden;zoom:1}.x-form .x-form-btns-ct .x-btn{float:right;clear:none}.x-form .x-form-btns-ct .x-form-btns td{border:0;padding:0}.x-form .x-form-btns-ct .x-form-btns-right table{float:right;clear:none}.x-form .x-form-btns-ct .x-form-btns-left table{float:left;clear:none}.x-form .x-form-btns-ct .x-form-btns-center{text-align:center}.x-form .x-form-btns-ct .x-form-btns-center table{margin:0 auto}.x-form .x-form-btns-ct table td.x-form-btn-td{padding:3px}.x-form .x-form-btns-ct .x-btn-focus .x-btn-left{background-position:0 -147px}.x-form .x-form-btns-ct .x-btn-focus .x-btn-right{background-position:0 -168px}.x-form .x-form-btns-ct .x-btn-focus .x-btn-center{background-position:0 -189px}.x-form .x-form-btns-ct .x-btn-click .x-btn-center{background-position:0 -126px}.x-form .x-form-btns-ct .x-btn-click .x-btn-right{background-position:0 -84px}.x-form .x-form-btns-ct .x-btn-click .x-btn-left{background-position:0 -63px}.x-form-invalid-icon{width:16px;height:18px;visibility:hidden;position:absolute;left:0;top:0;display:block;background:transparent no-repeat 0 2px}.x-fieldset{border:1px solid;padding:10px;margin-bottom:10px;display:block}.ext-webkit .x-fieldset-header{padding-top:1px}.ext-ie .x-fieldset legend{margin-bottom:10px}.ext-strict .ext-ie9 .x-fieldset legend.x-fieldset-header{padding-top:1px}.ext-ie .x-fieldset{padding-top:0;padding-bottom:10px}.x-fieldset legend .x-tool-toggle{margin-right:3px;margin-left:0;float:left!important}.x-fieldset legend input{margin-right:3px;float:left!important;height:13px;width:13px}fieldset.x-panel-collapsed{padding-bottom:0!important;border-width:1px 1px 0 1px!important;border-left-color:transparent;border-right-color:transparent}.ext-ie6 fieldset.x-panel-collapsed{padding-bottom:0!important;border-width:1px 0 0 0!important;margin-left:1px;margin-right:1px}fieldset.x-panel-collapsed .x-fieldset-bwrap{visibility:hidden;position:absolute;left:-1000px;top:-1000px}.ext-ie .x-fieldset-bwrap{zoom:1}.x-fieldset-noborder{border:0 none transparent}.x-fieldset-noborder legend{margin-left:-3px}.ext-ie .x-fieldset-noborder legend{position:relative;margin-bottom:23px}.ext-ie .x-fieldset-noborder legend span{position:absolute;left:16px}.ext-gecko .x-window-body .x-form-item{-moz-outline:0;outline:0;overflow:auto}.ext-mac.ext-gecko .x-window-body .x-form-item{overflow:hidden}.ext-gecko .x-form-item{-moz-outline:0;outline:0}.x-hide-label label.x-form-item-label{display:none}.x-hide-label .x-form-element{padding-left:0!important}.x-form-label-top .x-hide-label label.x-form-item-label{display:none}.x-fieldset{overflow:hidden}.x-fieldset-bwrap{overflow:hidden;zoom:1}.x-fieldset-body{overflow:hidden}.x-btn{cursor:pointer;white-space:nowrap}.x-btn button{border:0 none;background-color:transparent;padding-left:3px;padding-right:3px;cursor:pointer;margin:0;overflow:visible;width:auto;-moz-outline:0 none;outline:0 none}* html .ext-ie .x-btn button{width:1px}.ext-gecko .x-btn button,.ext-webkit .x-btn button{padding-left:0;padding-right:0}.ext-gecko .x-btn button::-moz-focus-inner{padding:0}.ext-ie .x-btn button{padding-top:2px}.x-btn td{padding:0!important}.x-btn-text{cursor:pointer;white-space:nowrap;padding:0}.x-btn-noicon .x-btn-small .x-btn-text{height:16px}.x-btn-noicon .x-btn-medium .x-btn-text{height:24px}.x-btn-noicon .x-btn-large .x-btn-text{height:32px}.x-btn-icon .x-btn-text{background-position:center;background-repeat:no-repeat}.x-btn-icon .x-btn-small .x-btn-text{height:16px;width:16px}.x-btn-icon .x-btn-medium .x-btn-text{height:24px;width:24px}.x-btn-icon .x-btn-large .x-btn-text{height:32px;width:32px}.x-btn-text-icon .x-btn-icon-small-left .x-btn-text{background-position:0 center;background-repeat:no-repeat;padding-left:18px;height:16px}.x-btn-text-icon .x-btn-icon-medium-left .x-btn-text{background-position:0 center;background-repeat:no-repeat;padding-left:26px;height:24px}.x-btn-text-icon .x-btn-icon-large-left .x-btn-text{background-position:0 center;background-repeat:no-repeat;padding-left:34px;height:32px}.x-btn-text-icon .x-btn-icon-small-top .x-btn-text{background-position:center 0;background-repeat:no-repeat;padding-top:18px}.x-btn-text-icon .x-btn-icon-medium-top .x-btn-text{background-position:center 0;background-repeat:no-repeat;padding-top:26px}.x-btn-text-icon .x-btn-icon-large-top .x-btn-text{background-position:center 0;background-repeat:no-repeat;padding-top:34px}.x-btn-text-icon .x-btn-icon-small-right .x-btn-text{background-position:right center;background-repeat:no-repeat;padding-right:18px;height:16px}.x-btn-text-icon .x-btn-icon-medium-right .x-btn-text{background-position:right center;background-repeat:no-repeat;padding-right:26px;height:24px}.x-btn-text-icon .x-btn-icon-large-right .x-btn-text{background-position:right center;background-repeat:no-repeat;padding-right:34px;height:32px}.x-btn-text-icon .x-btn-icon-small-bottom .x-btn-text{background-position:center bottom;background-repeat:no-repeat;padding-bottom:18px}.x-btn-text-icon .x-btn-icon-medium-bottom .x-btn-text{background-position:center bottom;background-repeat:no-repeat;padding-bottom:26px}.x-btn-text-icon .x-btn-icon-large-bottom .x-btn-text{background-position:center bottom;background-repeat:no-repeat;padding-bottom:34px}.x-btn-tr i,.x-btn-tl i,.x-btn-mr i,.x-btn-ml i,.x-btn-br i,.x-btn-bl i{font-size:1px;line-height:1px;width:3px;display:block;overflow:hidden}.x-btn-tr i,.x-btn-tl i,.x-btn-br i,.x-btn-bl i{height:3px}.x-btn-tl{width:3px;height:3px;background:no-repeat 0 0}.x-btn-tr{width:3px;height:3px;background:no-repeat -3px 0}.x-btn-tc{height:3px;background:repeat-x 0 -6px}.x-btn-ml{width:3px;background:no-repeat 0 -24px}.x-btn-mr{width:3px;background:no-repeat -3px -24px}.x-btn-mc{background:repeat-x 0 -1096px;vertical-align:middle;text-align:center;padding:0 5px;cursor:pointer;white-space:nowrap}.ext-strict .ext-ie6 .x-btn-mc,.ext-strict .ext-ie7 .x-btn-mc{height:100%}.x-btn-bl{width:3px;height:3px;background:no-repeat 0 -3px}.x-btn-br{width:3px;height:3px;background:no-repeat -3px -3px}.x-btn-bc{height:3px;background:repeat-x 0 -15px}.x-btn-over .x-btn-tl{background-position:-6px 0}.x-btn-over .x-btn-tr{background-position:-9px 0}.x-btn-over .x-btn-tc{background-position:0 -9px}.x-btn-over .x-btn-ml{background-position:-6px -24px}.x-btn-over .x-btn-mr{background-position:-9px -24px}.x-btn-over .x-btn-mc{background-position:0 -2168px}.x-btn-over .x-btn-bl{background-position:-6px -3px}.x-btn-over .x-btn-br{background-position:-9px -3px}.x-btn-over .x-btn-bc{background-position:0 -18px}.x-btn-click .x-btn-tl,.x-btn-menu-active .x-btn-tl,.x-btn-pressed .x-btn-tl{background-position:-12px 0}.x-btn-click .x-btn-tr,.x-btn-menu-active .x-btn-tr,.x-btn-pressed .x-btn-tr{background-position:-15px 0}.x-btn-click .x-btn-tc,.x-btn-menu-active .x-btn-tc,.x-btn-pressed .x-btn-tc{background-position:0 -12px}.x-btn-click .x-btn-ml,.x-btn-menu-active .x-btn-ml,.x-btn-pressed .x-btn-ml{background-position:-12px -24px}.x-btn-click .x-btn-mr,.x-btn-menu-active .x-btn-mr,.x-btn-pressed .x-btn-mr{background-position:-15px -24px}.x-btn-click .x-btn-mc,.x-btn-menu-active .x-btn-mc,.x-btn-pressed .x-btn-mc{background-position:0 -3240px}.x-btn-click .x-btn-bl,.x-btn-menu-active .x-btn-bl,.x-btn-pressed .x-btn-bl{background-position:-12px -3px}.x-btn-click .x-btn-br,.x-btn-menu-active .x-btn-br,.x-btn-pressed .x-btn-br{background-position:-15px -3px}.x-btn-click .x-btn-bc,.x-btn-menu-active .x-btn-bc,.x-btn-pressed .x-btn-bc{background-position:0 -21px}.x-btn-disabled *{cursor:default!important}.x-btn-mc em.x-btn-arrow{display:block;background:transparent no-repeat right center;padding-right:10px}.x-btn-mc em.x-btn-split{display:block;background:transparent no-repeat right center;padding-right:14px}.x-btn-mc em.x-btn-arrow-bottom{display:block;background:transparent no-repeat center bottom;padding-bottom:14px}.x-btn-mc em.x-btn-split-bottom{display:block;background:transparent no-repeat center bottom;padding-bottom:14px}.x-btn-as-arrow .x-btn-mc em{display:block;background-color:transparent;padding-bottom:14px}.x-btn-group{padding:1px}.x-btn-group-header{padding:2px;text-align:center}.x-btn-group-tc{background:transparent repeat-x 0 0;overflow:hidden}.x-btn-group-tl{background:transparent no-repeat 0 0;padding-left:3px;zoom:1}.x-btn-group-tr{background:transparent no-repeat right 0;zoom:1;padding-right:3px}.x-btn-group-bc{background:transparent repeat-x 0 bottom;zoom:1}.x-btn-group-bc .x-panel-footer{zoom:1}.x-btn-group-bl{background:transparent no-repeat 0 bottom;padding-left:3px;zoom:1}.x-btn-group-br{background:transparent no-repeat right bottom;padding-right:3px;zoom:1}.x-btn-group-mc{border:0 none;padding:1px 0 0 0;margin:0}.x-btn-group-mc .x-btn-group-body{background-color:transparent;border:0 none}.x-btn-group-ml{background:transparent repeat-y 0 0;padding-left:3px;zoom:1}.x-btn-group-mr{background:transparent repeat-y right 0;padding-right:3px;zoom:1}.x-btn-group-bc .x-btn-group-footer{padding-bottom:6px}.x-panel-nofooter .x-btn-group-bc{height:3px;font-size:0;line-height:0}.x-btn-group-bwrap{overflow:hidden;zoom:1}.x-btn-group-body{overflow:hidden;zoom:1}.x-btn-group-notitle .x-btn-group-tc{background:transparent repeat-x 0 0;overflow:hidden;height:2px}.x-toolbar{border-style:solid;border-width:0 0 1px 0;display:block;padding:2px;background:repeat-x top left;position:relative;left:0;top:0;zoom:1;overflow:hidden}.x-toolbar-left{width:100%}.x-toolbar .x-item-disabled .x-btn-icon{opacity:.35;-moz-opacity:.35;filter:alpha(opacity=35)}.x-toolbar td{vertical-align:middle}.x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{white-space:nowrap}.x-toolbar .x-item-disabled{cursor:default;opacity:.6;-moz-opacity:.6;filter:alpha(opacity=60)}.x-toolbar .x-item-disabled *{cursor:default}.x-toolbar .x-toolbar-cell{vertical-align:middle}.x-toolbar .x-btn-tl,.x-toolbar .x-btn-tr,.x-toolbar .x-btn-tc,.x-toolbar .x-btn-ml,.x-toolbar .x-btn-mr,.x-toolbar .x-btn-mc,.x-toolbar .x-btn-bl,.x-toolbar .x-btn-br,.x-toolbar .x-btn-bc{background-position:500px 500px}.x-toolbar .x-btn-over .x-btn-tl{background-position:-6px 0}.x-toolbar .x-btn-over .x-btn-tr{background-position:-9px 0}.x-toolbar .x-btn-over .x-btn-tc{background-position:0 -9px}.x-toolbar .x-btn-over .x-btn-ml{background-position:-6px -24px}.x-toolbar .x-btn-over .x-btn-mr{background-position:-9px -24px}.x-toolbar .x-btn-over .x-btn-mc{background-position:0 -2168px}.x-toolbar .x-btn-over .x-btn-bl{background-position:-6px -3px}.x-toolbar .x-btn-over .x-btn-br{background-position:-9px -3px}.x-toolbar .x-btn-over .x-btn-bc{background-position:0 -18px}.x-toolbar .x-btn-click .x-btn-tl,.x-toolbar .x-btn-menu-active .x-btn-tl,.x-toolbar .x-btn-pressed .x-btn-tl{background-position:-12px 0}.x-toolbar .x-btn-click .x-btn-tr,.x-toolbar .x-btn-menu-active .x-btn-tr,.x-toolbar .x-btn-pressed .x-btn-tr{background-position:-15px 0}.x-toolbar .x-btn-click .x-btn-tc,.x-toolbar .x-btn-menu-active .x-btn-tc,.x-toolbar .x-btn-pressed .x-btn-tc{background-position:0 -12px}.x-toolbar .x-btn-click .x-btn-ml,.x-toolbar .x-btn-menu-active .x-btn-ml,.x-toolbar .x-btn-pressed .x-btn-ml{background-position:-12px -24px}.x-toolbar .x-btn-click .x-btn-mr,.x-toolbar .x-btn-menu-active .x-btn-mr,.x-toolbar .x-btn-pressed .x-btn-mr{background-position:-15px -24px}.x-toolbar .x-btn-click .x-btn-mc,.x-toolbar .x-btn-menu-active .x-btn-mc,.x-toolbar .x-btn-pressed .x-btn-mc{background-position:0 -3240px}.x-toolbar .x-btn-click .x-btn-bl,.x-toolbar .x-btn-menu-active .x-btn-bl,.x-toolbar .x-btn-pressed .x-btn-bl{background-position:-12px -3px}.x-toolbar .x-btn-click .x-btn-br,.x-toolbar .x-btn-menu-active .x-btn-br,.x-toolbar .x-btn-pressed .x-btn-br{background-position:-15px -3px}.x-toolbar .x-btn-click .x-btn-bc,.x-toolbar .x-btn-menu-active .x-btn-bc,.x-toolbar .x-btn-pressed .x-btn-bc{background-position:0 -21px}.x-toolbar div.xtb-text{padding:2px 2px 0;line-height:16px;display:block}.x-toolbar .xtb-sep{background-position:center;background-repeat:no-repeat;display:block;font-size:1px;height:16px;width:4px;overflow:hidden;cursor:default;margin:0 2px 0;border:0}.x-toolbar .xtb-spacer{width:2px}.x-tbar-page-number{width:30px;height:14px}.ext-ie .x-tbar-page-number{margin-top:2px}.x-paging-info{position:absolute;top:5px;right:8px}.x-toolbar-ct{width:100%}.x-toolbar-right td{text-align:center}.x-panel-tbar,.x-panel-bbar,.x-window-tbar,.x-window-bbar,.x-tab-panel-tbar,.x-tab-panel-bbar,.x-plain-tbar,.x-plain-bbar{overflow:hidden;zoom:1}.x-toolbar-more .x-btn-small .x-btn-text{height:16px;width:12px}.x-toolbar-more em.x-btn-arrow{display:inline;background-color:transparent;padding-right:0}.x-toolbar-more .x-btn-mc em.x-btn-arrow{background-image:none}div.x-toolbar-no-items{color:gray!important;padding:5px 10px!important}.ext-border-box .x-toolbar-cell .x-form-text{margin-bottom:-1px!important}.ext-border-box .x-toolbar-cell .x-form-field-wrap .x-form-text{margin:0!important}.ext-ie .x-toolbar-cell .x-form-field-wrap{height:21px}.ext-ie .x-toolbar-cell .x-form-text{position:relative;top:-1px}.ext-strict .ext-ie8 .x-toolbar-cell .x-form-field-trigger-wrap .x-form-text,.ext-strict .ext-ie .x-toolbar-cell .x-form-text{top:0}.x-toolbar-right td .x-form-field-trigger-wrap{text-align:left}.x-toolbar-cell .x-form-checkbox,.x-toolbar-cell .x-form-radio{margin-top:5px}.x-toolbar-cell .x-form-cb-label{vertical-align:bottom;top:1px}.ext-ie .x-toolbar-cell .x-form-checkbox,.ext-ie .x-toolbar-cell .x-form-radio{margin-top:4px}.ext-ie .x-toolbar-cell .x-form-cb-label{top:0}.x-grid3{position:relative;overflow:hidden}.x-grid-panel .x-panel-body{overflow:hidden!important}.x-grid-panel .x-panel-mc .x-panel-body{border:1px solid}.x-grid3 table{table-layout:fixed}.x-grid3-viewport{overflow:hidden}.x-grid3-hd-row td,.x-grid3-row td,.x-grid3-summary-row td{-moz-outline:0;outline:0;-moz-user-focus:normal}.x-grid3-row td,.x-grid3-summary-row td{line-height:13px;vertical-align:top;padding-left:1px;padding-right:1px;-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore}.x-grid3-cell{-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore}.x-grid3-hd-row td{line-height:15px;vertical-align:middle;border-left:1px solid;border-right:1px solid}.x-grid3-hd-row .x-grid3-marker-hd{padding:3px}.x-grid3-row .x-grid3-marker{padding:3px}.x-grid3-cell-inner,.x-grid3-hd-inner{overflow:hidden;-o-text-overflow:ellipsis;text-overflow:ellipsis;padding:3px 3px 3px 5px;white-space:nowrap}.x-action-col-cell .x-grid3-cell-inner{padding-top:1px;padding-bottom:1px}.x-action-col-icon{cursor:pointer}.x-grid3-hd-inner{position:relative;cursor:inherit;padding:4px 3px 4px 5px}.x-grid3-row-body{white-space:normal}.x-grid3-body-cell{-moz-outline:0 none;outline:0 none}.ext-ie .x-grid3-cell-inner,.ext-ie .x-grid3-hd-inner{width:100%}.ext-strict .x-grid3-cell-inner,.ext-strict .x-grid3-hd-inner{width:auto}.x-grid-row-loading{background:no-repeat center center}.x-grid-page{overflow:hidden}.x-grid3-row{cursor:default;border:1px solid;width:100%}.x-grid3-row-over{border:1px solid;background:repeat-x left top}.x-grid3-resize-proxy{width:1px;left:0;cursor:e-resize;cursor:col-resize;position:absolute;top:0;height:100px;overflow:hidden;visibility:hidden;border:0 none;z-index:7}.x-grid3-resize-marker{width:1px;left:0;position:absolute;top:0;height:100px;overflow:hidden;visibility:hidden;border:0 none;z-index:7}.x-grid3-focus{position:absolute;left:0;top:0;width:1px;height:1px;line-height:1px;font-size:1px;-moz-outline:0 none;outline:0 none;-moz-user-select:text;-khtml-user-select:text;-webkit-user-select:ignore}.x-grid3-header{background:repeat-x 0 bottom;cursor:default;zoom:1;padding:1px 0 0 0}.x-grid3-header-pop{border-left:1px solid;float:right;clear:none}.x-grid3-header-pop-inner{border-left:1px solid;width:14px;height:19px;background:transparent no-repeat center center}.ext-ie .x-grid3-header-pop-inner{width:15px}.ext-strict .x-grid3-header-pop-inner{width:14px}.x-grid3-header-inner{overflow:hidden;zoom:1;float:left}.x-grid3-header-offset{padding-left:1px;text-align:left}td.x-grid3-hd-over,td.sort-desc,td.sort-asc,td.x-grid3-hd-menu-open{border-left:1px solid;border-right:1px solid}td.x-grid3-hd-over .x-grid3-hd-inner,td.sort-desc .x-grid3-hd-inner,td.sort-asc .x-grid3-hd-inner,td.x-grid3-hd-menu-open .x-grid3-hd-inner{background:repeat-x left bottom}.x-grid3-sort-icon{background-repeat:no-repeat;display:none;height:4px;width:13px;margin-left:3px;vertical-align:middle}.sort-asc .x-grid3-sort-icon,.sort-desc .x-grid3-sort-icon{display:inline}.ext-strict .ext-ie .x-grid3-header-inner,.ext-strict .ext-ie6 .x-grid3-hd{position:relative}.ext-strict .ext-ie6 .x-grid3-hd-inner{position:static}.x-grid3-body{zoom:1}.x-grid3-scroller{overflow:auto;zoom:1;position:relative}.x-grid3-cell-text,.x-grid3-hd-text{display:block;padding:3px 5px 3px 5px;-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore}.x-grid3-split{background-position:center;background-repeat:no-repeat;cursor:e-resize;cursor:col-resize;display:block;font-size:1px;height:16px;overflow:hidden;position:absolute;top:2px;width:6px;z-index:3}.x-dd-drag-proxy .x-grid3-hd-inner{background:repeat-x left bottom;width:120px;padding:3px;border:1px solid;overflow:hidden}.col-move-top,.col-move-bottom{width:9px;height:9px;position:absolute;top:0;line-height:1px;font-size:1px;overflow:hidden;visibility:hidden;z-index:20000;background:transparent no-repeat left top}.x-grid3-row-selected{border:1px dotted}.x-grid3-locked td.x-grid3-row-marker,.x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{background:repeat-x 0 bottom!important;vertical-align:middle!important;padding:0;border-top:1px solid;border-bottom:none!important;border-right:1px solid!important;text-align:center}.x-grid3-locked td.x-grid3-row-marker div,.x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{padding:0 4px;text-align:center}.x-grid3-dirty-cell{background:transparent no-repeat 0 0}.x-grid3-topbar,.x-grid3-bottombar{overflow:hidden;display:none;zoom:1;position:relative}.x-grid3-topbar .x-toolbar{border-right:0 none}.x-grid3-bottombar .x-toolbar{border-right:0 none;border-bottom:0 none;border-top:1px solid}.x-props-grid .x-grid3-cell{padding:1px}.x-props-grid .x-grid3-td-name .x-grid3-cell-inner{background:transparent repeat-y -16px!important;padding-left:12px}.x-props-grid .x-grid3-body .x-grid3-td-name{padding:1px;padding-right:0;border:0 none;border-right:1px solid}.x-grid3-col-dd{border:0 none;padding:0;background-color:transparent}.x-dd-drag-ghost .x-grid3-dd-wrap{padding:1px 3px 3px 1px}.x-grid3-hd{-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore}.x-grid3-hd-btn{display:none;position:absolute;width:14px;background:no-repeat left center;right:0;top:0;z-index:2;cursor:pointer}.x-grid3-hd-over .x-grid3-hd-btn,.x-grid3-hd-menu-open .x-grid3-hd-btn{display:block}a.x-grid3-hd-btn:hover{background-position:-14px center}.x-grid3-body .x-grid3-td-expander{background:transparent repeat-y right}.x-grid3-body .x-grid3-td-expander .x-grid3-cell-inner{padding:0!important;height:100%}.x-grid3-row-expander{width:100%;height:18px;background-position:4px 2px;background-repeat:no-repeat;background-color:transparent}.x-grid3-row-collapsed .x-grid3-row-expander{background-position:4px 2px}.x-grid3-row-expanded .x-grid3-row-expander{background-position:-21px 2px}.x-grid3-row-collapsed .x-grid3-row-body{display:none!important}.x-grid3-row-expanded .x-grid3-row-body{display:block!important}.x-grid3-body .x-grid3-td-checker{background:transparent repeat-y right}.x-grid3-body .x-grid3-td-checker .x-grid3-cell-inner,.x-grid3-header .x-grid3-td-checker .x-grid3-hd-inner{padding:0!important;height:100%}.x-grid3-row-checker,.x-grid3-hd-checker{width:100%;height:18px;background-position:2px 2px;background-repeat:no-repeat;background-color:transparent}.x-grid3-row .x-grid3-row-checker{background-position:2px 2px}.x-grid3-row-selected .x-grid3-row-checker,.x-grid3-hd-checker-on .x-grid3-hd-checker,.x-grid3-row-checked .x-grid3-row-checker{background-position:-23px 2px}.x-grid3-hd-checker{background-position:2px 1px}.ext-border-box .x-grid3-hd-checker{background-position:2px 3px}.x-grid3-hd-checker-on .x-grid3-hd-checker{background-position:-23px 1px}.ext-border-box .x-grid3-hd-checker-on .x-grid3-hd-checker{background-position:-23px 3px}.x-grid3-body .x-grid3-td-numberer{background:transparent repeat-y right}.x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner{padding:3px 5px 0 0!important;text-align:right}.x-grid3-body .x-grid3-td-row-icon{background:transparent repeat-y right;vertical-align:top;text-align:center}.x-grid3-body .x-grid3-td-row-icon .x-grid3-cell-inner{padding:0!important;background-position:center center;background-repeat:no-repeat;width:16px;height:16px;margin-left:2px;margin-top:3px}.x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer,.x-grid3-body .x-grid3-row-selected .x-grid3-td-checker,.x-grid3-body .x-grid3-row-selected .x-grid3-td-expander{background:transparent repeat-y right}.x-grid3-body .x-grid3-check-col-td .x-grid3-cell-inner{padding:1px 0 0 0!important}.x-grid3-check-col{width:100%;height:16px;background-position:center center;background-repeat:no-repeat;background-color:transparent}.x-grid3-check-col-on{width:100%;height:16px;background-position:center center;background-repeat:no-repeat;background-color:transparent}.x-grid-group,.x-grid-group-body,.x-grid-group-hd{zoom:1}.x-grid-group-hd{border-bottom:2px solid;cursor:pointer;padding-top:6px}.x-grid-group-hd div.x-grid-group-title{background:transparent no-repeat 3px 3px;padding:4px 4px 4px 17px}.x-grid-group-collapsed .x-grid-group-body{display:none}.ext-ie6 .x-grid3 .x-editor .x-form-text,.ext-ie7 .x-grid3 .x-editor .x-form-text{position:relative;top:-1px}.x-grid-editor .x-form-check-wrap{text-align:center;margin-top:-4px}.ext-ie .x-props-grid .x-editor .x-form-text{position:static;top:0}.x-grid-empty{padding:10px}.ext-ie7 .x-grid-panel .x-panel-bbar{position:relative}.ext-ie7 .x-grid-panel .x-panel-mc .x-panel-bbar{position:static}.ext-ie6 .x-grid3-header{position:relative}.ext-webkit .x-grid-panel .x-panel-bwrap{-webkit-user-select:none}.ext-webkit .x-tbar-page-number{-webkit-user-select:ignore}.x-grid-with-col-lines .x-grid3-row td.x-grid3-cell{padding-right:0;border-right:1px solid}.x-pivotgrid .x-grid3-header-offset table{width:100%;border-collapse:collapse}.x-pivotgrid .x-grid3-header-offset table td{padding:4px 3px 4px 5px;text-align:center;white-space:nowrap;overflow:hidden;text-overflow:ellipsis;font-size:11px;line-height:13px;font-family:tahoma}.x-pivotgrid .x-grid3-row-headers{display:block;float:left}.x-pivotgrid .x-grid3-row-headers table{height:100%;width:100%;border-collapse:collapse}.x-pivotgrid .x-grid3-row-headers table td{height:18px;padding:2px 7px 0 0;text-align:right;text-overflow:ellipsis;font-size:11px;font-family:tahoma}.ext-gecko .x-pivotgrid .x-grid3-row-headers table td{height:21px}.x-grid3-header-title{top:0;left:0;position:absolute;text-align:center;vertical-align:middle;font-family:tahoma;font-size:11px;padding:auto 1px;display:table-cell}.x-grid3-header-title span{position:absolute;top:50%;left:0;width:100%;margin-top:-6px}.x-dd-drag-proxy{position:absolute;left:0;top:0;visibility:hidden;z-index:15000}.x-dd-drag-ghost{-moz-opacity:.85;opacity:.85;filter:alpha(opacity=85);border:1px solid;padding:3px;padding-left:20px;white-space:nowrap}.x-dd-drag-repair .x-dd-drag-ghost{-moz-opacity:.4;opacity:.4;filter:alpha(opacity=40);border:0 none;padding:0;background-color:transparent}.x-dd-drag-repair .x-dd-drop-icon{visibility:hidden}.x-dd-drop-icon{position:absolute;top:3px;left:3px;display:block;width:16px;height:16px;background-color:transparent;background-position:center;background-repeat:no-repeat;z-index:1}.x-view-selector{position:absolute;left:0;top:0;width:0;border:1px dotted;opacity:.5;-moz-opacity:.5;filter:alpha(opacity=50);zoom:1}.ext-strict .ext-ie .x-tree .x-panel-bwrap{position:relative;overflow:hidden}.x-tree-icon,.x-tree-ec-icon,.x-tree-elbow-line,.x-tree-elbow,.x-tree-elbow-end,.x-tree-elbow-plus,.x-tree-elbow-minus,.x-tree-elbow-end-plus,.x-tree-elbow-end-minus{border:0 none;height:18px;margin:0;padding:0;vertical-align:top;width:16px;background-repeat:no-repeat}.x-tree-node-collapsed .x-tree-node-icon,.x-tree-node-expanded .x-tree-node-icon,.x-tree-node-leaf .x-tree-node-icon{border:0 none;height:18px;margin:0;padding:0;vertical-align:top;width:16px;background-position:center;background-repeat:no-repeat}.ext-ie .x-tree-node-indent img,.ext-ie .x-tree-node-icon,.ext-ie .x-tree-ec-icon{vertical-align:middle!important}.ext-strict .ext-ie8 .x-tree-node-indent img,.ext-strict .ext-ie8 .x-tree-node-icon,.ext-strict .ext-ie8 .x-tree-ec-icon{vertical-align:top!important}input.x-tree-node-cb{margin-left:1px;height:19px;vertical-align:bottom}.ext-ie input.x-tree-node-cb{margin-left:0;margin-top:1px;width:16px;height:16px;vertical-align:middle}.ext-strict .ext-ie8 input.x-tree-node-cb{margin:1px 1px;height:14px;vertical-align:bottom}.ext-strict .ext-ie8 input.x-tree-node-cb+a{vertical-align:bottom}.ext-opera input.x-tree-node-cb{height:14px;vertical-align:middle}.x-tree-noicon .x-tree-node-icon{width:0;height:0}.x-tree-no-lines .x-tree-elbow{background-color:transparent}.x-tree-no-lines .x-tree-elbow-end{background-color:transparent}.x-tree-no-lines .x-tree-elbow-line{background-color:transparent}.x-tree-arrows .x-tree-elbow{background-color:transparent}.x-tree-arrows .x-tree-elbow-plus{background:transparent no-repeat 0 0}.x-tree-arrows .x-tree-elbow-minus{background:transparent no-repeat -16px 0}.x-tree-arrows .x-tree-elbow-end{background-color:transparent}.x-tree-arrows .x-tree-elbow-end-plus{background:transparent no-repeat 0 0}.x-tree-arrows .x-tree-elbow-end-minus{background:transparent no-repeat -16px 0}.x-tree-arrows .x-tree-elbow-line{background-color:transparent}.x-tree-arrows .x-tree-ec-over .x-tree-elbow-plus{background-position:-32px 0}.x-tree-arrows .x-tree-ec-over .x-tree-elbow-minus{background-position:-48px 0}.x-tree-arrows .x-tree-ec-over .x-tree-elbow-end-plus{background-position:-32px 0}.x-tree-arrows .x-tree-ec-over .x-tree-elbow-end-minus{background-position:-48px 0}.x-tree-elbow-plus,.x-tree-elbow-minus,.x-tree-elbow-end-plus,.x-tree-elbow-end-minus{cursor:pointer}.ext-ie ul.x-tree-node-ct{font-size:0;line-height:0;zoom:1}.x-tree-node{white-space:nowrap}.x-tree-node-el{line-height:18px;cursor:pointer}.x-tree-node a,.x-dd-drag-ghost a{text-decoration:none;-khtml-user-select:none;-moz-user-select:none;-webkit-user-select:ignore;-kthml-user-focus:normal;-moz-user-focus:normal;-moz-outline:0 none;outline:0 none}.x-tree-node a span,.x-dd-drag-ghost a span{text-decoration:none;padding:1px 3px 1px 2px}.x-tree-node .x-tree-node-disabled .x-tree-node-icon{-moz-opacity:.5;opacity:.5;filter:alpha(opacity=50)}.x-tree-node .x-tree-node-inline-icon{background-color:transparent}.x-tree-node a:hover,.x-dd-drag-ghost a:hover{text-decoration:none}.x-tree-node div.x-tree-drag-insert-below{border-bottom:1px dotted}.x-tree-node div.x-tree-drag-insert-above{border-top:1px dotted}.x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below{border-bottom:0 none}.x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above{border-top:0 none}.x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{border-bottom:2px solid}.x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{border-top:2px solid}.x-tree-node .x-tree-drag-append a span{border:1px dotted}.x-dd-drag-ghost .x-tree-node-indent,.x-dd-drag-ghost .x-tree-ec-icon{display:none!important}.x-tree-root-ct{zoom:1}.x-date-picker{border:1px solid;border-top:0 none;position:relative}.x-date-picker a{-moz-outline:0 none;outline:0 none}.x-date-inner,.x-date-inner td,.x-date-inner th{border-collapse:separate}.x-date-middle,.x-date-left,.x-date-right{background:repeat-x 0 -83px;overflow:hidden}.x-date-middle .x-btn-tc,.x-date-middle .x-btn-tl,.x-date-middle .x-btn-tr,.x-date-middle .x-btn-mc,.x-date-middle .x-btn-ml,.x-date-middle .x-btn-mr,.x-date-middle .x-btn-bc,.x-date-middle .x-btn-bl,.x-date-middle .x-btn-br{background:transparent!important;vertical-align:middle}.x-date-middle .x-btn-mc em.x-btn-arrow{background:transparent no-repeat right 0}.x-date-right,.x-date-left{width:18px}.x-date-right{text-align:right}.x-date-middle{padding-top:2px;padding-bottom:2px;width:130px}.x-date-right a,.x-date-left a{display:block;width:16px;height:16px;background-position:center;background-repeat:no-repeat;cursor:pointer;-moz-opacity:.6;opacity:.6;filter:alpha(opacity=60)}.x-date-right a:hover,.x-date-left a:hover{-moz-opacity:1;opacity:1;filter:alpha(opacity=100)}.x-item-disabled .x-date-right a:hover,.x-item-disabled .x-date-left a:hover{-moz-opacity:.6;opacity:.6;filter:alpha(opacity=60)}.x-date-right a{margin-right:2px;text-decoration:none!important}.x-date-left a{margin-left:2px;text-decoration:none!important}table.x-date-inner{width:100%;table-layout:fixed}.ext-webkit table.x-date-inner{width:175px}.x-date-inner th{width:25px}.x-date-inner th{background:repeat-x left top;text-align:right!important;border-bottom:1px solid;cursor:default;padding:0;border-collapse:separate}.x-date-inner th span{display:block;padding:2px;padding-right:7px}.x-date-inner td{border:1px solid;text-align:right;padding:0}.x-date-inner a{padding:2px 5px;display:block;text-decoration:none;text-align:right;zoom:1}.x-date-inner .x-date-active{cursor:pointer;color:black}.x-date-inner .x-date-selected a{background:repeat-x left top;border:1px solid;padding:1px 4px}.x-date-inner .x-date-today a{border:1px solid;padding:1px 4px}.x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a{text-decoration:none!important}.x-date-bottom{padding:4px;border-top:1px solid;background:repeat-x left top}.x-date-inner a:hover,.x-date-inner .x-date-disabled a:hover{text-decoration:none!important}.x-item-disabled .x-date-inner a:hover{background:0}.x-date-inner .x-date-disabled a{cursor:default}.x-date-menu .x-menu-item{padding:1px 24px 1px 4px;white-space:nowrap}.x-date-menu .x-menu-item .x-menu-item-icon{width:10px;height:10px;margin-right:5px;background-position:center -4px!important}.x-date-mp{position:absolute;left:0;top:0;display:none}.x-date-mp td{padding:2px;font:normal 11px arial,helvetica,tahoma,sans-serif}td.x-date-mp-month,td.x-date-mp-year,td.x-date-mp-ybtn{border:0 none;text-align:center;vertical-align:middle;width:25%}.x-date-mp-ok{margin-right:3px}.x-date-mp-btns button{text-decoration:none;text-align:center;text-decoration:none!important;border:1px solid;padding:1px 3px 1px;cursor:pointer}.x-date-mp-btns{background:repeat-x left top}.x-date-mp-btns td{border-top:1px solid;text-align:center}td.x-date-mp-month a,td.x-date-mp-year a{display:block;padding:2px 4px;text-decoration:none;text-align:center}td.x-date-mp-month a:hover,td.x-date-mp-year a:hover{text-decoration:none;cursor:pointer}td.x-date-mp-sel a{padding:1px 3px;background:repeat-x left top;border:1px solid}.x-date-mp-ybtn a{overflow:hidden;width:15px;height:15px;cursor:pointer;background:transparent no-repeat;display:block;margin:0 auto}.x-date-mp-ybtn a.x-date-mp-next{background-position:0 -120px}.x-date-mp-ybtn a.x-date-mp-next:hover{background-position:-15px -120px}.x-date-mp-ybtn a.x-date-mp-prev{background-position:0 -105px}.x-date-mp-ybtn a.x-date-mp-prev:hover{background-position:-15px -105px}.x-date-mp-ybtn{text-align:center}td.x-date-mp-sep{border-right:1px solid}.x-tip{position:absolute;top:0;left:0;visibility:hidden;z-index:20002;border:0 none}.x-tip .x-tip-close{height:15px;float:right;width:15px;margin:0 0 2px 2px;cursor:pointer;display:none}.x-tip .x-tip-tc{background:transparent no-repeat 0 -62px;padding-top:3px;overflow:hidden;zoom:1}.x-tip .x-tip-tl{background:transparent no-repeat 0 0;padding-left:6px;overflow:hidden;zoom:1}.x-tip .x-tip-tr{background:transparent no-repeat right 0;padding-right:6px;overflow:hidden;zoom:1}.x-tip .x-tip-bc{background:transparent no-repeat 0 -121px;height:3px;overflow:hidden}.x-tip .x-tip-bl{background:transparent no-repeat 0 -59px;padding-left:6px;zoom:1}.x-tip .x-tip-br{background:transparent no-repeat right -59px;padding-right:6px;zoom:1}.x-tip .x-tip-mc{border:0 none}.x-tip .x-tip-ml{background:no-repeat 0 -124px;padding-left:6px;zoom:1}.x-tip .x-tip-mr{background:transparent no-repeat right -124px;padding-right:6px;zoom:1}.ext-ie .x-tip .x-tip-header,.ext-ie .x-tip .x-tip-tc{font-size:0;line-height:0}.ext-border-box .x-tip .x-tip-header,.ext-border-box .x-tip .x-tip-tc{line-height:1px}.x-tip .x-tip-header-text{padding:0;margin:0 0 2px 0}.x-tip .x-tip-body{margin:0!important;line-height:14px;padding:0}.x-tip .x-tip-body .loading-indicator{margin:0}.x-tip-draggable .x-tip-header,.x-tip-draggable .x-tip-header-text{cursor:move}.x-form-invalid-tip .x-tip-tc{background:repeat-x 0 -12px;padding-top:6px}.x-form-invalid-tip .x-tip-bc{background:repeat-x 0 -18px;height:6px}.x-form-invalid-tip .x-tip-bl{background:no-repeat 0 -6px}.x-form-invalid-tip .x-tip-br{background:no-repeat right -6px}.x-form-invalid-tip .x-tip-body{padding:2px}.x-form-invalid-tip .x-tip-body{padding-left:24px;background:transparent no-repeat 2px 2px}.x-tip-anchor{position:absolute;width:9px;height:10px;overflow:hidden;background:transparent no-repeat 0 0;zoom:1}.x-tip-anchor-bottom{background-position:-9px 0}.x-tip-anchor-right{background-position:-18px 0;width:10px}.x-tip-anchor-left{background-position:-28px 0;width:10px}.x-menu{z-index:15000;zoom:1;background:repeat-y}.x-menu-floating{border:1px solid}.x-menu a{text-decoration:none!important}.ext-ie .x-menu{zoom:1;overflow:hidden}.x-menu-list{padding:2px;background-color:transparent;border:0 none;overflow:hidden;overflow-y:hidden}.ext-strict .ext-ie .x-menu-list{position:relative}.x-menu li{line-height:100%}.x-menu li.x-menu-sep-li{font-size:1px;line-height:1px}.x-menu-list-item{white-space:nowrap;display:block;padding:1px}.x-menu-item{-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore}.x-menu-item-arrow{background:transparent no-repeat right}.x-menu-sep{display:block;font-size:1px;line-height:1px;margin:2px 3px;border-bottom:1px solid;overflow:hidden}.x-menu-focus{position:absolute;left:-1px;top:-1px;width:1px;height:1px;line-height:1px;font-size:1px;-moz-outline:0 none;outline:0 none;-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore;overflow:hidden;display:block}a.x-menu-item{cursor:pointer;display:block;line-height:16px;outline-color:-moz-use-text-color;outline-style:none;outline-width:0;padding:3px 21px 3px 27px;position:relative;text-decoration:none;white-space:nowrap}.x-menu-item-active{background-repeat:repeat-x;background-position:left bottom;border-style:solid;border-width:1px 0;margin:0 1px;padding:0}.x-menu-item-active a.x-menu-item{border-style:solid;border-width:0 1px;margin:0 -1px}.x-menu-item-icon{border:0 none;height:16px;padding:0;vertical-align:top;width:16px;position:absolute;left:3px;top:3px;margin:0;background-position:center}.ext-ie .x-menu-item-icon{left:-24px}.ext-strict .x-menu-item-icon{left:3px}.ext-ie6 .x-menu-item-icon{left:-24px}.ext-ie .x-menu-item-icon{vertical-align:middle}.x-menu-check-item .x-menu-item-icon{background:transparent no-repeat center}.x-menu-group-item .x-menu-item-icon{background-color:transparent}.x-menu-item-checked .x-menu-group-item .x-menu-item-icon{background:transparent no-repeat center}.x-date-menu .x-menu-list{padding:0}.x-menu-date-item{padding:0}.x-menu .x-color-palette,.x-menu .x-date-picker{margin-left:26px;margin-right:4px}.x-menu .x-date-picker{border:1px solid;margin-top:2px;margin-bottom:2px}.x-menu-plain .x-color-palette,.x-menu-plain .x-date-picker{margin:0;border:0 none}.x-date-menu{padding:0!important}.ext-strict .ext-ie6 .x-menu-sep-li{padding:3px 4px}.ext-strict .ext-ie6 .x-menu-sep{margin:0;height:1px}.ext-webkit .x-menu-sep{height:1px}.ext-ie .x-date-menu{height:199px}.ext-strict .ext-ie .x-date-menu,.ext-border-box .ext-ie8 .x-date-menu{height:197px}.ext-strict .ext-ie7 .x-date-menu{height:195px}.ext-strict .ext-ie8 .x-date-menu{height:auto}.x-cycle-menu .x-menu-item-checked{border:1px dotted!important;padding:0}.x-menu .x-menu-scroller{width:100%;background-repeat:no-repeat;background-position:center;height:8px;line-height:8px;cursor:pointer;margin:0;padding:0}.x-menu .x-menu-scroller-active{height:6px;line-height:6px}.x-menu-list-item-indent{padding-left:27px}.x-box-tl{background:transparent no-repeat 0 0;zoom:1}.x-box-tc{height:8px;background:transparent repeat-x 0 0;overflow:hidden}.x-box-tr{background:transparent no-repeat right -8px}.x-box-ml{background:transparent repeat-y 0;padding-left:4px;overflow:hidden;zoom:1}.x-box-mc{background:repeat-x 0 -16px;padding:4px 10px}.x-box-mc h3{margin:0 0 4px 0;zoom:1}.x-box-mr{background:transparent repeat-y right;padding-right:4px;overflow:hidden}.x-box-bl{background:transparent no-repeat 0 -16px;zoom:1}.x-box-bc{background:transparent repeat-x 0 -8px;height:8px;overflow:hidden}.x-box-br{background:transparent no-repeat right -24px}.x-box-tl,.x-box-bl{padding-left:8px;overflow:hidden}.x-box-tr,.x-box-br{padding-right:8px;overflow:hidden}.x-combo-list{border:1px solid;zoom:1;overflow:hidden}.x-combo-list-inner{overflow:auto;position:relative;zoom:1;overflow-x:hidden}.x-combo-list-hd{border-bottom:1px solid;padding:3px}.x-resizable-pinned .x-combo-list-inner{border-bottom:1px solid}.x-combo-list-item{padding:2px;border:1px solid;white-space:nowrap;overflow:hidden;text-overflow:ellipsis}.x-combo-list .x-combo-selected{border:1px dotted!important;cursor:pointer}.x-combo-list .x-toolbar{border-top:1px solid;border-bottom:0 none}.x-panel{border-style:solid;border-width:0}.x-panel-header{overflow:hidden;zoom:1;padding:5px 3px 4px 5px;border:1px solid;line-height:15px;background:transparent repeat-x 0 -1px}.x-panel-body{border:1px solid;border-top:0 none;overflow:hidden;position:relative}.x-panel-bbar .x-toolbar,.x-panel-tbar .x-toolbar{border:1px solid;border-top:0 none;overflow:hidden;padding:2px}.x-panel-tbar-noheader .x-toolbar,.x-panel-mc .x-panel-tbar .x-toolbar{border-top:1px solid;border-bottom:0 none}.x-panel-body-noheader,.x-panel-mc .x-panel-body{border-top:1px solid}.x-panel-header{overflow:hidden;zoom:1}.x-panel-tl .x-panel-header{padding:5px 0 4px 0;border:0 none;background:transparent no-repeat}.x-panel-tl .x-panel-icon,.x-window-tl .x-panel-icon{padding-left:20px!important;background-repeat:no-repeat;background-position:0 4px;zoom:1}.x-panel-inline-icon{width:16px;height:16px;background-repeat:no-repeat;background-position:0 0;vertical-align:middle;margin-right:4px;margin-top:-1px;margin-bottom:-1px}.x-panel-tc{background:transparent repeat-x 0 0;overflow:hidden}.ext-strict .ext-ie7 .x-panel-tc{overflow:visible}.x-panel-tl{background:transparent no-repeat 0 0;padding-left:6px;zoom:1;border-bottom:1px solid}.x-panel-tr{background:transparent no-repeat right 0;zoom:1;padding-right:6px}.x-panel-bc{background:transparent repeat-x 0 bottom;zoom:1}.x-panel-bc .x-panel-footer{zoom:1}.x-panel-bl{background:transparent no-repeat 0 bottom;padding-left:6px;zoom:1}.x-panel-br{background:transparent no-repeat right bottom;padding-right:6px;zoom:1}.x-panel-mc{border:0 none;padding:0;margin:0;padding-top:6px}.x-panel-mc .x-panel-body{background-color:transparent;border:0 none}.x-panel-ml{background:repeat-y 0 0;padding-left:6px;zoom:1}.x-panel-mr{background:transparent repeat-y right 0;padding-right:6px;zoom:1}.x-panel-bc .x-panel-footer{padding-bottom:6px}.x-panel-nofooter .x-panel-bc,.x-panel-nofooter .x-window-bc{height:6px;font-size:0;line-height:0}.x-panel-bwrap{overflow:hidden;zoom:1;left:0;top:0}.x-panel-body{overflow:hidden;zoom:1}.x-panel-collapsed .x-resizable-handle{display:none}.ext-gecko .x-panel-animated div{overflow:hidden!important}.x-plain-body{overflow:hidden}.x-plain-bbar .x-toolbar{overflow:hidden;padding:2px}.x-plain-tbar .x-toolbar{overflow:hidden;padding:2px}.x-plain-bwrap{overflow:hidden;zoom:1}.x-plain{overflow:hidden}.x-tool{overflow:hidden;width:15px;height:15px;float:right;cursor:pointer;background:transparent no-repeat;margin-left:2px}.x-tool-toggle{background-position:0 -60px}.x-tool-toggle-over{background-position:-15px -60px}.x-panel-collapsed .x-tool-toggle{background-position:0 -75px}.x-panel-collapsed .x-tool-toggle-over{background-position:-15px -75px}.x-tool-close{background-position:0 -0}.x-tool-close-over{background-position:-15px 0}.x-tool-minimize{background-position:0 -15px}.x-tool-minimize-over{background-position:-15px -15px}.x-tool-maximize{background-position:0 -30px}.x-tool-maximize-over{background-position:-15px -30px}.x-tool-restore{background-position:0 -45px}.x-tool-restore-over{background-position:-15px -45px}.x-tool-gear{background-position:0 -90px}.x-tool-gear-over{background-position:-15px -90px}.x-tool-prev{background-position:0 -105px}.x-tool-prev-over{background-position:-15px -105px}.x-tool-next{background-position:0 -120px}.x-tool-next-over{background-position:-15px -120px}.x-tool-pin{background-position:0 -135px}.x-tool-pin-over{background-position:-15px -135px}.x-tool-unpin{background-position:0 -150px}.x-tool-unpin-over{background-position:-15px -150px}.x-tool-right{background-position:0 -165px}.x-tool-right-over{background-position:-15px -165px}.x-tool-left{background-position:0 -180px}.x-tool-left-over{background-position:-15px -180px}.x-tool-down{background-position:0 -195px}.x-tool-down-over{background-position:-15px -195px}.x-tool-up{background-position:0 -210px}.x-tool-up-over{background-position:-15px -210px}.x-tool-refresh{background-position:0 -225px}.x-tool-refresh-over{background-position:-15px -225px}.x-tool-plus{background-position:0 -240px}.x-tool-plus-over{background-position:-15px -240px}.x-tool-minus{background-position:0 -255px}.x-tool-minus-over{background-position:-15px -255px}.x-tool-search{background-position:0 -270px}.x-tool-search-over{background-position:-15px -270px}.x-tool-save{background-position:0 -285px}.x-tool-save-over{background-position:-15px -285px}.x-tool-help{background-position:0 -300px}.x-tool-help-over{background-position:-15px -300px}.x-tool-print{background-position:0 -315px}.x-tool-print-over{background-position:-15px -315px}.x-tool-expand{background-position:0 -330px}.x-tool-expand-over{background-position:-15px -330px}.x-tool-collapse{background-position:0 -345px}.x-tool-collapse-over{background-position:-15px -345px}.x-tool-resize{background-position:0 -360px}.x-tool-resize-over{background-position:-15px -360px}.x-tool-move{background-position:0 -375px}.x-tool-move-over{background-position:-15px -375px}.x-panel-ghost{z-index:12000;overflow:hidden;position:absolute;left:0;top:0;opacity:.65;-moz-opacity:.65;filter:alpha(opacity=65)}.x-panel-ghost ul{margin:0;padding:0;overflow:hidden;font-size:0;line-height:0;border:1px solid;border-top:0 none;display:block}.x-panel-ghost *{cursor:move!important}.x-panel-dd-spacer{border:2px dashed}.x-panel-btns{padding:5px;overflow:hidden}.x-panel-btns td.x-toolbar-cell{padding:3px}.x-panel-btns .x-btn-focus .x-btn-left{background-position:0 -147px}.x-panel-btns .x-btn-focus .x-btn-right{background-position:0 -168px}.x-panel-btns .x-btn-focus .x-btn-center{background-position:0 -189px}.x-panel-btns .x-btn-over .x-btn-left{background-position:0 -63px}.x-panel-btns .x-btn-over .x-btn-right{background-position:0 -84px}.x-panel-btns .x-btn-over .x-btn-center{background-position:0 -105px}.x-panel-btns .x-btn-click .x-btn-center{background-position:0 -126px}.x-panel-btns .x-btn-click .x-btn-right{background-position:0 -84px}.x-panel-btns .x-btn-click .x-btn-left{background-position:0 -63px}.x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{white-space:nowrap}.x-panel-reset .x-panel-body html,.x-panel-reset .x-panel-body address,.x-panel-reset .x-panel-body blockquote,.x-panel-reset .x-panel-body body,.x-panel-reset .x-panel-body dd,.x-panel-reset .x-panel-body div,.x-panel-reset .x-panel-body dl,.x-panel-reset .x-panel-body dt,.x-panel-reset .x-panel-body fieldset,.x-panel-reset .x-panel-body form,.x-panel-reset .x-panel-body frame,frameset,.x-panel-reset .x-panel-body h1,.x-panel-reset .x-panel-body h2,.x-panel-reset .x-panel-body h3,.x-panel-reset .x-panel-body h4,.x-panel-reset .x-panel-body h5,.x-panel-reset .x-panel-body h6,.x-panel-reset .x-panel-body noframes,.x-panel-reset .x-panel-body ol,.x-panel-reset .x-panel-body p,.x-panel-reset .x-panel-body ul,.x-panel-reset .x-panel-body center,.x-panel-reset .x-panel-body dir,.x-panel-reset .x-panel-body hr,.x-panel-reset .x-panel-body menu,.x-panel-reset .x-panel-body pre{display:block}.x-panel-reset .x-panel-body li{display:list-item}.x-panel-reset .x-panel-body head{display:none}.x-panel-reset .x-panel-body table{display:table}.x-panel-reset .x-panel-body tr{display:table-row}.x-panel-reset .x-panel-body thead{display:table-header-group}.x-panel-reset .x-panel-body tbody{display:table-row-group}.x-panel-reset .x-panel-body tfoot{display:table-footer-group}.x-panel-reset .x-panel-body col{display:table-column}.x-panel-reset .x-panel-body colgroup{display:table-column-group}.x-panel-reset .x-panel-body td,.x-panel-reset .x-panel-body th{display:table-cell}.x-panel-reset .x-panel-body caption{display:table-caption}.x-panel-reset .x-panel-body th{font-weight:bolder;text-align:center}.x-panel-reset .x-panel-body caption{text-align:center}.x-panel-reset .x-panel-body body{margin:8px}.x-panel-reset .x-panel-body h1{font-size:2em;margin:.67em 0}.x-panel-reset .x-panel-body h2{font-size:1.5em;margin:.75em 0}.x-panel-reset .x-panel-body h3{font-size:1.17em;margin:.83em 0}.x-panel-reset .x-panel-body h4,.x-panel-reset .x-panel-body p,.x-panel-reset .x-panel-body blockquote,.x-panel-reset .x-panel-body ul,.x-panel-reset .x-panel-body fieldset,.x-panel-reset .x-panel-body form,.x-panel-reset .x-panel-body ol,.x-panel-reset .x-panel-body dl,.x-panel-reset .x-panel-body dir,.x-panel-reset .x-panel-body menu{margin:1.12em 0}.x-panel-reset .x-panel-body h5{font-size:.83em;margin:1.5em 0}.x-panel-reset .x-panel-body h6{font-size:.75em;margin:1.67em 0}.x-panel-reset .x-panel-body h1,.x-panel-reset .x-panel-body h2,.x-panel-reset .x-panel-body h3,.x-panel-reset .x-panel-body h4,.x-panel-reset .x-panel-body h5,.x-panel-reset .x-panel-body h6,.x-panel-reset .x-panel-body b,.x-panel-reset .x-panel-body strong{font-weight:bolder}.x-panel-reset .x-panel-body blockquote{margin-left:40px;margin-right:40px}.x-panel-reset .x-panel-body i,.x-panel-reset .x-panel-body cite,.x-panel-reset .x-panel-body em,.x-panel-reset .x-panel-body var,.x-panel-reset .x-panel-body address{font-style:italic}.x-panel-reset .x-panel-body pre,.x-panel-reset .x-panel-body tt,.x-panel-reset .x-panel-body code,.x-panel-reset .x-panel-body kbd,.x-panel-reset .x-panel-body samp{font-family:monospace}.x-panel-reset .x-panel-body pre{white-space:pre}.x-panel-reset .x-panel-body button,.x-panel-reset .x-panel-body textarea,.x-panel-reset .x-panel-body input,.x-panel-reset .x-panel-body select{display:inline-block}.x-panel-reset .x-panel-body big{font-size:1.17em}.x-panel-reset .x-panel-body small,.x-panel-reset .x-panel-body sub,.x-panel-reset .x-panel-body sup{font-size:.83em}.x-panel-reset .x-panel-body sub{vertical-align:sub}.x-panel-reset .x-panel-body sup{vertical-align:super}.x-panel-reset .x-panel-body table{border-spacing:2px}.x-panel-reset .x-panel-body thead,.x-panel-reset .x-panel-body tbody,.x-panel-reset .x-panel-body tfoot{vertical-align:middle}.x-panel-reset .x-panel-body td,.x-panel-reset .x-panel-body th{vertical-align:inherit}.x-panel-reset .x-panel-body s,.x-panel-reset .x-panel-body strike,.x-panel-reset .x-panel-body del{text-decoration:line-through}.x-panel-reset .x-panel-body hr{border:1px inset}.x-panel-reset .x-panel-body ol,.x-panel-reset .x-panel-body ul,.x-panel-reset .x-panel-body dir,.x-panel-reset .x-panel-body menu,.x-panel-reset .x-panel-body dd{margin-left:40px}.x-panel-reset .x-panel-body ul,.x-panel-reset .x-panel-body menu,.x-panel-reset .x-panel-body dir{list-style-type:disc}.x-panel-reset .x-panel-body ol{list-style-type:decimal}.x-panel-reset .x-panel-body ol ul,.x-panel-reset .x-panel-body ul ol,.x-panel-reset .x-panel-body ul ul,.x-panel-reset .x-panel-body ol ol{margin-top:0;margin-bottom:0}.x-panel-reset .x-panel-body u,.x-panel-reset .x-panel-body ins{text-decoration:underline}.x-panel-reset .x-panel-body br:before{content:"\A"}.x-panel-reset .x-panel-body :before,.x-panel-reset .x-panel-body :after{white-space:pre-line}.x-panel-reset .x-panel-body center{text-align:center}.x-panel-reset .x-panel-body :link,.x-panel-reset .x-panel-body :visited{text-decoration:underline}.x-panel-reset .x-panel-body :focus{outline:invert dotted thin}.x-panel-reset .x-panel-body BDO[DIR="ltr"]{direction:ltr;unicode-bidi:bidi-override}.x-panel-reset .x-panel-body BDO[DIR="rtl"]{direction:rtl;unicode-bidi:bidi-override}.x-window{zoom:1}.x-window .x-window-handle{opacity:0;-moz-opacity:0;filter:alpha(opacity=0)}.x-window-proxy{border:1px solid;z-index:12000;overflow:hidden;position:absolute;left:0;top:0;display:none;opacity:.5;-moz-opacity:.5;filter:alpha(opacity=50)}.x-window-header{overflow:hidden;zoom:1}.x-window-bwrap{z-index:1;position:relative;zoom:1;left:0;top:0}.x-window-tl .x-window-header{padding:5px 0 4px 0}.x-window-header-text{cursor:pointer}.x-window-tc{background:transparent repeat-x 0 0;overflow:hidden;zoom:1}.x-window-tl{background:transparent no-repeat 0 0;padding-left:6px;zoom:1;z-index:1;position:relative}.x-window-tr{background:transparent no-repeat right 0;padding-right:6px}.x-window-bc{background:transparent repeat-x 0 bottom;zoom:1}.x-window-bc .x-window-footer{padding-bottom:6px;zoom:1;font-size:0;line-height:0}.x-window-bl{background:transparent no-repeat 0 bottom;padding-left:6px;zoom:1}.x-window-br{background:transparent no-repeat right bottom;padding-right:6px;zoom:1}.x-window-mc{border:1px solid;padding:0;margin:0}.x-window-ml{background:transparent repeat-y 0 0;padding-left:6px;zoom:1}.x-window-mr{background:transparent repeat-y right 0;padding-right:6px;zoom:1}.x-window-body{overflow:hidden}.x-window-bwrap{overflow:hidden}.x-window-maximized .x-window-bl,.x-window-maximized .x-window-br,.x-window-maximized .x-window-ml,.x-window-maximized .x-window-mr,.x-window-maximized .x-window-tl,.x-window-maximized .x-window-tr{padding:0}.x-window-maximized .x-window-footer{padding-bottom:0}.x-window-maximized .x-window-tc{padding-left:3px;padding-right:3px}.x-window-maximized .x-window-mc{border-left:0 none;border-right:0 none}.x-window-tbar .x-toolbar,.x-window-bbar .x-toolbar{border-left:0 none;border-right:0 none}.x-window-bbar .x-toolbar{border-top:1px solid;border-bottom:0 none}.x-window-draggable,.x-window-draggable .x-window-header-text{cursor:move}.x-window-maximized .x-window-draggable,.x-window-maximized .x-window-draggable .x-window-header-text{cursor:default}.x-window-body{background-color:transparent}.x-panel-ghost .x-window-tl{border-bottom:1px solid}.x-panel-collapsed .x-window-tl{border-bottom:1px solid}.x-window-maximized-ct{overflow:hidden}.x-window-maximized .x-window-handle{display:none}.x-window-sizing-ghost ul{border:0 none!important}.x-dlg-focus{-moz-outline:0 none;outline:0 none;width:0;height:0;overflow:hidden;position:absolute;top:0;left:0}.ext-webkit .x-dlg-focus{width:1px;height:1px}.x-dlg-mask{z-index:10000;display:none;position:absolute;top:0;left:0;-moz-opacity:.5;opacity:.50;filter:alpha(opacity=50)}body.ext-ie6.x-body-masked select{visibility:hidden}body.ext-ie6.x-body-masked .x-window select{visibility:visible}.x-window-plain .x-window-mc{border:1px solid}.x-window-plain .x-window-body{border:1px solid;background:transparent!important}.x-html-editor-wrap{border:1px solid}.x-html-editor-tb .x-btn-text{background:transparent no-repeat}.x-html-editor-tb .x-edit-bold,.x-menu-item img.x-edit-bold{background-position:0 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-italic,.x-menu-item img.x-edit-italic{background-position:-16px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-underline,.x-menu-item img.x-edit-underline{background-position:-32px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-forecolor,.x-menu-item img.x-edit-forecolor{background-position:-160px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-backcolor,.x-menu-item img.x-edit-backcolor{background-position:-176px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-justifyleft,.x-menu-item img.x-edit-justifyleft{background-position:-112px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-justifycenter,.x-menu-item img.x-edit-justifycenter{background-position:-128px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-justifyright,.x-menu-item img.x-edit-justifyright{background-position:-144px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-insertorderedlist,.x-menu-item img.x-edit-insertorderedlist{background-position:-80px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-insertunorderedlist,.x-menu-item img.x-edit-insertunorderedlist{background-position:-96px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-increasefontsize,.x-menu-item img.x-edit-increasefontsize{background-position:-48px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-decreasefontsize,.x-menu-item img.x-edit-decreasefontsize{background-position:-64px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-sourceedit,.x-menu-item img.x-edit-sourceedit{background-position:-192px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tb .x-edit-createlink,.x-menu-item img.x-edit-createlink{background-position:-208px 0;background-image:url(../images/default/editor/tb-sprite.gif)}.x-html-editor-tip .x-tip-bd .x-tip-bd-inner{padding:5px;padding-bottom:1px}.x-html-editor-tb .x-toolbar{position:static!important}.x-panel-noborder .x-panel-body-noborder{border-width:0}.x-panel-noborder .x-panel-header-noborder{border-width:0 0 1px;border-style:solid}.x-panel-noborder .x-panel-tbar-noborder .x-toolbar{border-width:0 0 1px;border-style:solid}.x-panel-noborder .x-panel-bbar-noborder .x-toolbar{border-width:1px 0 0 0;border-style:solid}.x-window-noborder .x-window-mc{border-width:0}.x-window-plain .x-window-body-noborder{border-width:0}.x-tab-panel-noborder .x-tab-panel-body-noborder{border-width:0}.x-tab-panel-noborder .x-tab-panel-header-noborder{border-width:0 0 1px 0}.x-tab-panel-noborder .x-tab-panel-footer-noborder{border-width:1px 0 0 0}.x-tab-panel-bbar-noborder .x-toolbar{border-width:1px 0 0 0;border-style:solid}.x-tab-panel-tbar-noborder .x-toolbar{border-width:0 0 1px;border-style:solid}.x-border-layout-ct{position:relative}.x-border-panel{position:absolute;left:0;top:0}.x-tool-collapse-south{background-position:0 -195px}.x-tool-collapse-south-over{background-position:-15px -195px}.x-tool-collapse-north{background-position:0 -210px}.x-tool-collapse-north-over{background-position:-15px -210px}.x-tool-collapse-west{background-position:0 -180px}.x-tool-collapse-west-over{background-position:-15px -180px}.x-tool-collapse-east{background-position:0 -165px}.x-tool-collapse-east-over{background-position:-15px -165px}.x-tool-expand-south{background-position:0 -210px}.x-tool-expand-south-over{background-position:-15px -210px}.x-tool-expand-north{background-position:0 -195px}.x-tool-expand-north-over{background-position:-15px -195px}.x-tool-expand-west{background-position:0 -165px}.x-tool-expand-west-over{background-position:-15px -165px}.x-tool-expand-east{background-position:0 -180px}.x-tool-expand-east-over{background-position:-15px -180px}.x-tool-expand-north,.x-tool-expand-south{float:right;margin:3px}.x-tool-expand-east,.x-tool-expand-west{float:none;margin:3px 2px}.x-accordion-hd .x-tool-toggle{background-position:0 -255px}.x-accordion-hd .x-tool-toggle-over{background-position:-15px -255px}.x-panel-collapsed .x-accordion-hd .x-tool-toggle{background-position:0 -240px}.x-panel-collapsed .x-accordion-hd .x-tool-toggle-over{background-position:-15px -240px}.x-accordion-hd{padding-top:4px;padding-bottom:3px;border-top:0 none;background:transparent repeat-x 0 -9px}.x-layout-collapsed{position:absolute;left:-10000px;top:-10000px;visibility:hidden;width:20px;height:20px;overflow:hidden;border:1px solid;z-index:20}.ext-border-box .x-layout-collapsed{width:22px;height:22px}.x-layout-collapsed-over{cursor:pointer}.x-layout-collapsed-west .x-layout-collapsed-tools,.x-layout-collapsed-east .x-layout-collapsed-tools{position:absolute;top:0;left:0;width:20px;height:20px}.x-layout-split{position:absolute;height:5px;width:5px;line-height:1px;font-size:1px;z-index:3;background-color:transparent}.ext-strict .ext-ie6 .x-layout-split{background-color:#fff!important;filter:alpha(opacity=1)}.x-layout-split-h{background-image:url(../images/default/s.gif);background-position:left}.x-layout-split-v{background-image:url(../images/default/s.gif);background-position:top}.x-column-layout-ct{overflow:hidden;zoom:1}.x-column{float:left;padding:0;margin:0;overflow:hidden;zoom:1}.x-column-inner{overflow:hidden;zoom:1}.x-layout-mini{position:absolute;top:0;left:0;display:block;width:5px;height:35px;cursor:pointer;opacity:.5;-moz-opacity:.5;filter:alpha(opacity=50)}.x-layout-mini-over,.x-layout-collapsed-over .x-layout-mini{opacity:1;-moz-opacity:1;filter:none}.x-layout-split-west .x-layout-mini{top:48%}.x-layout-split-east .x-layout-mini{top:48%}.x-layout-split-north .x-layout-mini{left:48%;height:5px;width:35px}.x-layout-split-south .x-layout-mini{left:48%;height:5px;width:35px}.x-layout-cmini-west .x-layout-mini{top:48%}.x-layout-cmini-east .x-layout-mini{top:48%}.x-layout-cmini-north .x-layout-mini{left:48%;height:5px;width:35px}.x-layout-cmini-south .x-layout-mini{left:48%;height:5px;width:35px}.x-layout-cmini-west,.x-layout-cmini-east{border:0 none;width:5px!important;padding:0;background-color:transparent}.x-layout-cmini-north,.x-layout-cmini-south{border:0 none;height:5px!important;padding:0;background-color:transparent}.x-viewport,.x-viewport body{margin:0;padding:0;border:0 none;overflow:hidden;height:100%}.x-abs-layout-item{position:absolute;left:0;top:0}.ext-ie input.x-abs-layout-item,.ext-ie textarea.x-abs-layout-item{margin:0}.x-box-layout-ct{overflow:hidden;zoom:1}.x-box-inner{overflow:hidden;zoom:1;position:relative;left:0;top:0}.x-box-item{position:absolute;left:0;top:0}.x-progress-wrap{border:1px solid;overflow:hidden}.x-progress-inner{height:18px;background:repeat-x;position:relative}.x-progress-bar{height:18px;float:left;width:0;background:repeat-x left center;border-top:1px solid;border-bottom:1px solid;border-right:1px solid}.x-progress-text{padding:1px 5px;overflow:hidden;position:absolute;left:0;text-align:center}.x-progress-text-back{line-height:16px}.ext-ie .x-progress-text-back{line-height:15px}.ext-strict .ext-ie7 .x-progress-text-back{width:100%}.x-list-header{background:repeat-x 0 bottom;cursor:default;zoom:1;height:22px}.x-list-header-inner div{display:block;float:left;overflow:hidden;-o-text-overflow:ellipsis;text-overflow:ellipsis;white-space:nowrap}.x-list-header-inner div em{display:block;border-left:1px solid;padding:4px 4px;overflow:hidden;-moz-user-select:none;-khtml-user-select:none;line-height:14px}.x-list-body{overflow:auto;overflow-x:hidden;overflow-y:auto;zoom:1;float:left;width:100%}.x-list-body dl{zoom:1}.x-list-body dt{display:block;float:left;overflow:hidden;-o-text-overflow:ellipsis;text-overflow:ellipsis;white-space:nowrap;cursor:pointer;zoom:1}.x-list-body dt em{display:block;padding:3px 4px;overflow:hidden;-moz-user-select:none;-khtml-user-select:none}.x-list-resizer{border-left:1px solid;border-right:1px solid;position:absolute;left:0;top:0}.x-list-header-inner em.sort-asc{background:transparent no-repeat center 0;border-style:solid;border-width:0 1px 1px;padding-bottom:3px}.x-list-header-inner em.sort-desc{background:transparent no-repeat center -23px;border-style:solid;border-width:0 1px 1px;padding-bottom:3px}.x-slider{zoom:1}.x-slider-inner{position:relative;left:0;top:0;overflow:visible;zoom:1}.x-slider-focus{position:absolute;left:0;top:0;width:1px;height:1px;line-height:1px;font-size:1px;-moz-outline:0 none;outline:0 none;-moz-user-select:none;-khtml-user-select:none;-webkit-user-select:ignore;display:block;overflow:hidden}.x-slider-horz{padding-left:7px;background:transparent no-repeat 0 -22px}.x-slider-horz .x-slider-end{padding-right:7px;zoom:1;background:transparent no-repeat right -44px}.x-slider-horz .x-slider-inner{background:transparent repeat-x 0 0;height:22px}.x-slider-horz .x-slider-thumb{width:14px;height:15px;position:absolute;left:0;top:3px;background:transparent no-repeat 0 0}.x-slider-horz .x-slider-thumb-over{background-position:-14px -15px}.x-slider-horz .x-slider-thumb-drag{background-position:-28px -30px}.x-slider-vert{padding-top:7px;background:transparent no-repeat -44px 0;width:22px}.x-slider-vert .x-slider-end{padding-bottom:7px;zoom:1;background:transparent no-repeat -22px bottom}.x-slider-vert .x-slider-inner{background:transparent repeat-y 0 0}.x-slider-vert .x-slider-thumb{width:15px;height:14px;position:absolute;left:3px;bottom:0;background:transparent no-repeat 0 0}.x-slider-vert .x-slider-thumb-over{background-position:-15px -14px}.x-slider-vert .x-slider-thumb-drag{background-position:-30px -28px}.x-window-dlg .x-window-body{border:0 none!important;padding:5px 10px;overflow:hidden!important}.x-window-dlg .x-window-mc{border:0 none!important}.x-window-dlg .ext-mb-input{margin-top:4px;width:95%}.x-window-dlg .ext-mb-textarea{margin-top:4px}.x-window-dlg .x-progress-wrap{margin-top:4px}.ext-ie .x-window-dlg .x-progress-wrap{margin-top:6px}.x-window-dlg .x-msg-box-wait{background:transparent no-repeat left;display:block;width:300px;padding-left:18px;line-height:18px}.x-window-dlg .ext-mb-icon{float:left;width:47px;height:32px}.x-window-dlg .x-dlg-icon .ext-mb-content{zoom:1;margin-left:47px}.x-window-dlg .ext-mb-info,.x-window-dlg .ext-mb-warning,.x-window-dlg .ext-mb-question,.x-window-dlg .ext-mb-error{background:transparent no-repeat top left}.ext-gecko2 .ext-mb-fix-cursor{overflow:auto}.ext-el-mask{background-color:#ccc}.ext-el-mask-msg{border-color:#6593cf;background-color:#c3daf9;background-image:url(../images/default/box/tb-blue.gif)}.ext-el-mask-msg div{background-color:#eee;border-color:#a3bad9;color:#222;font:normal 11px tahoma,arial,helvetica,sans-serif}.x-mask-loading div{background-color:#fbfbfb;background-image:url(../images/default/grid/loading.gif)}.x-item-disabled{color:gray}.x-item-disabled *{color:gray!important}.x-splitbar-proxy{background-color:#aaa}.x-color-palette a{border-color:#fff}.x-color-palette a:hover,.x-color-palette a.x-color-palette-sel{border-color:#8bb8f3;background-color:#deecfd}.x-color-palette em{border-color:#aca899}.x-ie-shadow{background-color:#777}.x-shadow .xsmc{background-image:url(../images/default/shadow-c.png)}.x-shadow .xsml,.x-shadow .xsmr{background-image:url(../images/default/shadow-lr.png)}.x-shadow .xstl,.x-shadow .xstc,.x-shadow .xstr,.x-shadow .xsbl,.x-shadow .xsbc,.x-shadow .xsbr{background-image:url(../images/default/shadow.png)}.loading-indicator{font-size:11px;background-image:url(../images/default/grid/loading.gif)}.x-spotlight{background-color:#ccc}.x-tab-panel-header,.x-tab-panel-footer{background-color:#deecfd;border-color:#8db2e3;overflow:hidden;zoom:1}.x-tab-panel-header,.x-tab-panel-footer{border-color:#8db2e3}ul.x-tab-strip-top{background-color:#cedff5;background-image:url(../images/default/tabs/tab-strip-bg.gif);border-bottom-color:#8db2e3}ul.x-tab-strip-bottom{background-color:#cedff5;background-image:url(../images/default/tabs/tab-strip-btm-bg.gif);border-top-color:#8db2e3}.x-tab-panel-header-plain .x-tab-strip-spacer,.x-tab-panel-footer-plain .x-tab-strip-spacer{border-color:#8db2e3;background-color:#deecfd}.x-tab-strip span.x-tab-strip-text{font:normal 11px tahoma,arial,helvetica;color:#416aa3}.x-tab-strip-over span.x-tab-strip-text{color:#15428b}.x-tab-strip-active span.x-tab-strip-text{color:#15428b;font-weight:bold}.x-tab-strip-disabled .x-tabs-text{color:#aaa}.x-tab-strip-top .x-tab-right,.x-tab-strip-top .x-tab-left,.x-tab-strip-top .x-tab-strip-inner{background-image:url(../images/default/tabs/tabs-sprite.gif)}.x-tab-strip-bottom .x-tab-right{background-image:url(../images/default/tabs/tab-btm-inactive-right-bg.gif)}.x-tab-strip-bottom .x-tab-left{background-image:url(../images/default/tabs/tab-btm-inactive-left-bg.gif)}.x-tab-strip-bottom .x-tab-strip-over .x-tab-right{background-image:url(../images/default/tabs/tab-btm-over-right-bg.gif)}.x-tab-strip-bottom .x-tab-strip-over .x-tab-left{background-image:url(../images/default/tabs/tab-btm-over-left-bg.gif)}.x-tab-strip-bottom .x-tab-strip-active .x-tab-right{background-image:url(../images/default/tabs/tab-btm-right-bg.gif)}.x-tab-strip-bottom .x-tab-strip-active .x-tab-left{background-image:url(../images/default/tabs/tab-btm-left-bg.gif)}.x-tab-strip .x-tab-strip-closable a.x-tab-strip-close{background-image:url(../images/default/tabs/tab-close.gif)}.x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{background-image:url(../images/default/tabs/tab-close.gif)}.x-tab-panel-body{border-color:#8db2e3;background-color:#fff}.x-tab-panel-body-top{border-top:0 none}.x-tab-panel-body-bottom{border-bottom:0 none}.x-tab-scroller-left{background-image:url(../images/default/tabs/scroll-left.gif);border-bottom-color:#8db2e3}.x-tab-scroller-left-over{background-position:0 0}.x-tab-scroller-left-disabled{background-position:-18px 0;opacity:.5;-moz-opacity:.5;filter:alpha(opacity=50);cursor:default}.x-tab-scroller-right{background-image:url(../images/default/tabs/scroll-right.gif);border-bottom-color:#8db2e3}.x-tab-panel-bbar .x-toolbar,.x-tab-panel-tbar .x-toolbar{border-color:#99bbe8}.x-form-field{font:normal 12px tahoma,arial,helvetica,sans-serif}.x-form-text,textarea.x-form-field{background-color:#fff;background-image:url(../images/default/form/text-bg.gif);border-color:#b5b8c8}.x-form-select-one{background-color:#fff;border-color:#b5b8c8}.x-form-check-group-label{border-bottom:1px solid #99bbe8;color:#15428b}.x-editor .x-form-check-wrap{background-color:#fff}.x-form-field-wrap .x-form-trigger{background-image:url(../images/default/form/trigger.gif);border-bottom-color:#b5b8c8}.x-form-field-wrap .x-form-date-trigger{background-image:url(../images/default/form/date-trigger.gif)}.x-form-field-wrap .x-form-clear-trigger{background-image:url(../images/default/form/clear-trigger.gif)}.x-form-field-wrap .x-form-search-trigger{background-image:url(../images/default/form/search-trigger.gif)}.x-trigger-wrap-focus .x-form-trigger{border-bottom-color:#7eadd9}.x-item-disabled .x-form-trigger-over{border-bottom-color:#b5b8c8}.x-item-disabled .x-form-trigger-click{border-bottom-color:#b5b8c8}.x-form-focus,textarea.x-form-focus{border-color:#7eadd9}.x-form-invalid,textarea.x-form-invalid{background-color:#fff;background-image:url(../images/default/grid/invalid_line.gif);border-color:#c30}.x-form-invalid.x-form-composite{border:0;background-image:none}.x-form-invalid.x-form-composite .x-form-invalid{background-color:#fff;background-image:url(../images/default/grid/invalid_line.gif);border-color:#c30}.x-form-inner-invalid,textarea.x-form-inner-invalid{background-color:#fff;background-image:url(../images/default/grid/invalid_line.gif)}.x-form-grow-sizer{font:normal 12px tahoma,arial,helvetica,sans-serif}.x-form-item{font:normal 12px tahoma,arial,helvetica,sans-serif}.x-form-invalid-msg{color:#c0272b;font:normal 11px tahoma,arial,helvetica,sans-serif;background-image:url(../images/default/shared/warning.gif)}.x-form-empty-field{color:gray}.x-small-editor .x-form-field{font:normal 11px arial,tahoma,helvetica,sans-serif}.ext-webkit .x-small-editor .x-form-field{font:normal 11px arial,tahoma,helvetica,sans-serif}.x-form-invalid-icon{background-image:url(../images/default/form/exclamation.gif)}.x-fieldset{border-color:#b5b8c8}.x-fieldset legend{font:bold 11px tahoma,arial,helvetica,sans-serif;color:#15428b}.x-btn{font:normal 11px tahoma,verdana,helvetica}.x-btn button{font:normal 11px arial,tahoma,verdana,helvetica;color:#333}.x-btn em{font-style:normal;font-weight:normal}.x-btn-tl,.x-btn-tr,.x-btn-tc,.x-btn-ml,.x-btn-mr,.x-btn-mc,.x-btn-bl,.x-btn-br,.x-btn-bc{background-image:url(../images/default/button/btn.gif)}.x-btn-click .x-btn-text,.x-btn-menu-active .x-btn-text,.x-btn-pressed .x-btn-text{color:#000}.x-btn-disabled *{color:gray!important}.x-btn-mc em.x-btn-arrow{background-image:url(../images/default/button/arrow.gif)}.x-btn-mc em.x-btn-split{background-image:url(../images/default/button/s-arrow.gif)}.x-btn-over .x-btn-mc em.x-btn-split,.x-btn-click .x-btn-mc em.x-btn-split,.x-btn-menu-active .x-btn-mc em.x-btn-split,.x-btn-pressed .x-btn-mc em.x-btn-split{background-image:url(../images/default/button/s-arrow-o.gif)}.x-btn-mc em.x-btn-arrow-bottom{background-image:url(../images/default/button/s-arrow-b-noline.gif)}.x-btn-mc em.x-btn-split-bottom{background-image:url(../images/default/button/s-arrow-b.gif)}.x-btn-over .x-btn-mc em.x-btn-split-bottom,.x-btn-click .x-btn-mc em.x-btn-split-bottom,.x-btn-menu-active .x-btn-mc em.x-btn-split-bottom,.x-btn-pressed .x-btn-mc em.x-btn-split-bottom{background-image:url(../images/default/button/s-arrow-bo.gif)}.x-btn-group-header{color:#3e6aaa}.x-btn-group-tc{background-image:url(../images/default/button/group-tb.gif)}.x-btn-group-tl{background-image:url(../images/default/button/group-cs.gif)}.x-btn-group-tr{background-image:url(../images/default/button/group-cs.gif)}.x-btn-group-bc{background-image:url(../images/default/button/group-tb.gif)}.x-btn-group-bl{background-image:url(../images/default/button/group-cs.gif)}.x-btn-group-br{background-image:url(../images/default/button/group-cs.gif)}.x-btn-group-ml{background-image:url(../images/default/button/group-lr.gif)}.x-btn-group-mr{background-image:url(../images/default/button/group-lr.gif)}.x-btn-group-notitle .x-btn-group-tc{background-image:url(../images/default/button/group-tb.gif)}.x-toolbar{border-color:#a9bfd3;background-color:#d0def0;background-image:url(../images/default/toolbar/bg.gif)}.x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{font:normal 11px arial,tahoma,helvetica,sans-serif}.x-toolbar .x-item-disabled{color:gray}.x-toolbar .x-item-disabled *{color:gray}.x-toolbar .x-btn-mc em.x-btn-split{background-image:url(../images/default/button/s-arrow-noline.gif)}.x-toolbar .x-btn-over .x-btn-mc em.x-btn-split,.x-toolbar .x-btn-click .x-btn-mc em.x-btn-split,.x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split,.x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split{background-image:url(../images/default/button/s-arrow-o.gif)}.x-toolbar .x-btn-mc em.x-btn-split-bottom{background-image:url(../images/default/button/s-arrow-b-noline.gif)}.x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom,.x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom,.x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom,.x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom{background-image:url(../images/default/button/s-arrow-bo.gif)}.x-toolbar .xtb-sep{background-image:url(../images/default/grid/grid-blue-split.gif)}.x-tbar-page-first{background-image:url(../images/default/grid/page-first.gif)!important}.x-tbar-loading{background-image:url(../images/default/grid/refresh.gif)!important}.x-tbar-page-last{background-image:url(../images/default/grid/page-last.gif)!important}.x-tbar-page-next{background-image:url(../images/default/grid/page-next.gif)!important}.x-tbar-page-prev{background-image:url(../images/default/grid/page-prev.gif)!important}.x-item-disabled .x-tbar-loading{background-image:url(../images/default/grid/refresh-disabled.gif)!important}.x-item-disabled .x-tbar-page-first{background-image:url(../images/default/grid/page-first-disabled.gif)!important}.x-item-disabled .x-tbar-page-last{background-image:url(../images/default/grid/page-last-disabled.gif)!important}.x-item-disabled .x-tbar-page-next{background-image:url(../images/default/grid/page-next-disabled.gif)!important}.x-item-disabled .x-tbar-page-prev{background-image:url(../images/default/grid/page-prev-disabled.gif)!important}.x-paging-info{color:#444}.x-toolbar-more-icon{background-image:url(../images/default/toolbar/more.gif)!important}.x-resizable-handle{background-color:#fff}.x-resizable-over .x-resizable-handle-east,.x-resizable-pinned .x-resizable-handle-east,.x-resizable-over .x-resizable-handle-west,.x-resizable-pinned .x-resizable-handle-west{background-image:url(../images/default/sizer/e-handle.gif)}.x-resizable-over .x-resizable-handle-south,.x-resizable-pinned .x-resizable-handle-south,.x-resizable-over .x-resizable-handle-north,.x-resizable-pinned .x-resizable-handle-north{background-image:url(../images/default/sizer/s-handle.gif)}.x-resizable-over .x-resizable-handle-north,.x-resizable-pinned .x-resizable-handle-north{background-image:url(../images/default/sizer/s-handle.gif)}.x-resizable-over .x-resizable-handle-southeast,.x-resizable-pinned .x-resizable-handle-southeast{background-image:url(../images/default/sizer/se-handle.gif)}.x-resizable-over .x-resizable-handle-northwest,.x-resizable-pinned .x-resizable-handle-northwest{background-image:url(../images/default/sizer/nw-handle.gif)}.x-resizable-over .x-resizable-handle-northeast,.x-resizable-pinned .x-resizable-handle-northeast{background-image:url(../images/default/sizer/ne-handle.gif)}.x-resizable-over .x-resizable-handle-southwest,.x-resizable-pinned .x-resizable-handle-southwest{background-image:url(../images/default/sizer/sw-handle.gif)}.x-resizable-proxy{border-color:#3b5a82}.x-resizable-overlay{background-color:#fff}.x-grid3{background-color:#fff}.x-grid-panel .x-panel-mc .x-panel-body{border-color:#99bbe8}.x-grid3-row td,.x-grid3-summary-row td{font:normal 11px/13px arial,tahoma,helvetica,sans-serif}.x-grid3-hd-row td{font:normal 11px/15px arial,tahoma,helvetica,sans-serif}.x-grid3-hd-row td{border-left-color:#eee;border-right-color:#d0d0d0}.x-grid-row-loading{background-color:#fff;background-image:url(../images/default/shared/loading-balls.gif)}.x-grid3-row{border-color:#ededed;border-top-color:#fff}.x-grid3-row-alt{background-color:#fafafa}.x-grid3-row-over{border-color:#ddd;background-color:#efefef;background-image:url(../images/default/grid/row-over.gif)}.x-grid3-resize-proxy{background-color:#777}.x-grid3-resize-marker{background-color:#777}.x-grid3-header{background-color:#f9f9f9;background-image:url(../images/default/grid/grid3-hrow.gif)}.x-grid3-header-pop{border-left-color:#d0d0d0}.x-grid3-header-pop-inner{border-left-color:#eee;background-image:url(../images/default/grid/hd-pop.gif)}td.x-grid3-hd-over,td.sort-desc,td.sort-asc,td.x-grid3-hd-menu-open{border-left-color:#aaccf6;border-right-color:#aaccf6}td.x-grid3-hd-over .x-grid3-hd-inner,td.sort-desc .x-grid3-hd-inner,td.sort-asc .x-grid3-hd-inner,td.x-grid3-hd-menu-open .x-grid3-hd-inner{background-color:#ebf3fd;background-image:url(../images/default/grid/grid3-hrow-over.gif)}.sort-asc .x-grid3-sort-icon{background-image:url(../images/default/grid/sort_asc.gif)}.sort-desc .x-grid3-sort-icon{background-image:url(../images/default/grid/sort_desc.gif)}.x-grid3-cell-text,.x-grid3-hd-text{color:#000}.x-grid3-split{background-image:url(../images/default/grid/grid-split.gif)}.x-grid3-hd-text{color:#15428b}.x-dd-drag-proxy .x-grid3-hd-inner{background-color:#ebf3fd;background-image:url(../images/default/grid/grid3-hrow-over.gif);border-color:#aaccf6}.col-move-top{background-image:url(../images/default/grid/col-move-top.gif)}.col-move-bottom{background-image:url(../images/default/grid/col-move-bottom.gif)}td.grid-hd-group-cell{background:url(../images/default/grid/grid3-hrow.gif) repeat-x bottom}.x-grid3-row-selected{background-color:#dfe8f6!important;background-image:none;border-color:#a3bae9}.x-grid3-cell-selected{background-color:#b8cfee!important;color:#000}.x-grid3-cell-selected span{color:#000!important}.x-grid3-cell-selected .x-grid3-cell-text{color:#000}.x-grid3-locked td.x-grid3-row-marker,.x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{background-color:#ebeadb!important;background-image:url(../images/default/grid/grid-hrow.gif)!important;color:#000;border-top-color:#fff;border-right-color:#6fa0df!important}.x-grid3-locked td.x-grid3-row-marker div,.x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{color:#15428b!important}.x-grid3-dirty-cell{background-image:url(../images/default/grid/dirty.gif)}.x-grid3-topbar,.x-grid3-bottombar{font:normal 11px arial,tahoma,helvetica,sans-serif}.x-grid3-bottombar .x-toolbar{border-top-color:#a9bfd3}.x-props-grid .x-grid3-td-name .x-grid3-cell-inner{background-image:url(../images/default/grid/grid3-special-col-bg.gif)!important;color:#000!important}.x-props-grid .x-grid3-body .x-grid3-td-name{background-color:#fff!important;border-right-color:#eee}.xg-hmenu-sort-asc .x-menu-item-icon{background-image:url(../images/default/grid/hmenu-asc.gif)}.xg-hmenu-sort-desc .x-menu-item-icon{background-image:url(../images/default/grid/hmenu-desc.gif)}.xg-hmenu-lock .x-menu-item-icon{background-image:url(../images/default/grid/hmenu-lock.gif)}.xg-hmenu-unlock .x-menu-item-icon{background-image:url(../images/default/grid/hmenu-unlock.gif)}.x-grid3-hd-btn{background-color:#c3daf9;background-image:url(../images/default/grid/grid3-hd-btn.gif)}.x-grid3-body .x-grid3-td-expander{background-image:url(../images/default/grid/grid3-special-col-bg.gif)}.x-grid3-row-expander{background-image:url(../images/default/grid/row-expand-sprite.gif)}.x-grid3-body .x-grid3-td-checker{background-image:url(../images/default/grid/grid3-special-col-bg.gif)}.x-grid3-row-checker,.x-grid3-hd-checker{background-image:url(../images/default/grid/row-check-sprite.gif)}.x-grid3-body .x-grid3-td-numberer{background-image:url(../images/default/grid/grid3-special-col-bg.gif)}.x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner{color:#444}.x-grid3-body .x-grid3-td-row-icon{background-image:url(../images/default/grid/grid3-special-col-bg.gif)}.x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer,.x-grid3-body .x-grid3-row-selected .x-grid3-td-checker,.x-grid3-body .x-grid3-row-selected .x-grid3-td-expander{background-image:url(../images/default/grid/grid3-special-col-sel-bg.gif)}.x-grid3-check-col{background-image:url(../images/default/menu/unchecked.gif)}.x-grid3-check-col-on{background-image:url(../images/default/menu/checked.gif)}.x-grid-group,.x-grid-group-body,.x-grid-group-hd{zoom:1}.x-grid-group-hd{border-bottom-color:#99bbe8}.x-grid-group-hd div.x-grid-group-title{background-image:url(../images/default/grid/group-collapse.gif);color:#3764a0;font:bold 11px tahoma,arial,helvetica,sans-serif}.x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title{background-image:url(../images/default/grid/group-expand.gif)}.x-group-by-icon{background-image:url(../images/default/grid/group-by.gif)}.x-cols-icon{background-image:url(../images/default/grid/columns.gif)}.x-show-groups-icon{background-image:url(../images/default/grid/group-by.gif)}.x-grid-empty{color:gray;font:normal 11px tahoma,arial,helvetica,sans-serif}.x-grid-with-col-lines .x-grid3-row td.x-grid3-cell{border-right-color:#ededed}.x-grid-with-col-lines .x-grid3-row-selected{border-top-color:#a3bae9}.x-pivotgrid .x-grid3-header-offset table td{background:url(../images/default/grid/grid3-hrow.gif) repeat-x 50% 100%;border-left:1px solid;border-right:1px solid;border-left-color:#EEE;border-right-color:#d0d0d0}.x-pivotgrid .x-grid3-row-headers{background-color:#f9f9f9}.x-pivotgrid .x-grid3-row-headers table td{background:#EEE url(../images/default/grid/grid3-rowheader.gif) repeat-x left top;border-left:1px solid;border-right:1px solid;border-left-color:#EEE;border-right-color:#d0d0d0;border-bottom:1px solid;border-bottom-color:#d0d0d0;height:18px}.x-dd-drag-ghost{color:#000;font:normal 11px arial,helvetica,sans-serif;border-color:#ddd #bbb #bbb #ddd;background-color:#fff}.x-dd-drop-nodrop .x-dd-drop-icon{background-image:url(../images/default/dd/drop-no.gif)}.x-dd-drop-ok .x-dd-drop-icon{background-image:url(../images/default/dd/drop-yes.gif)}.x-dd-drop-ok-add .x-dd-drop-icon{background-image:url(../images/default/dd/drop-add.gif)}.x-view-selector{background-color:#c3daf9;border-color:#39b}.x-tree-node-expanded .x-tree-node-icon{background-image:url(../images/default/tree/folder-open.gif)}.x-tree-node-leaf .x-tree-node-icon{background-image:url(../images/default/tree/leaf.gif)}.x-tree-node-collapsed .x-tree-node-icon{background-image:url(../images/default/tree/folder.gif)}.x-tree-node-loading .x-tree-node-icon{background-image:url(../images/default/tree/loading.gif)!important}.x-tree-node .x-tree-node-inline-icon{background-image:none}.x-tree-node-loading a span{font-style:italic;color:#444}.x-tree-lines .x-tree-elbow{background-image:url(../images/default/tree/elbow.gif)}.x-tree-lines .x-tree-elbow-plus{background-image:url(../images/default/tree/elbow-plus.gif)}.x-tree-lines .x-tree-elbow-minus{background-image:url(../images/default/tree/elbow-minus.gif)}.x-tree-lines .x-tree-elbow-end{background-image:url(../images/default/tree/elbow-end.gif)}.x-tree-lines .x-tree-elbow-end-plus{background-image:url(../images/default/tree/elbow-end-plus.gif)}.x-tree-lines .x-tree-elbow-end-minus{background-image:url(../images/default/tree/elbow-end-minus.gif)}.x-tree-lines .x-tree-elbow-line{background-image:url(../images/default/tree/elbow-line.gif)}.x-tree-no-lines .x-tree-elbow-plus{background-image:url(../images/default/tree/elbow-plus-nl.gif)}.x-tree-no-lines .x-tree-elbow-minus{background-image:url(../images/default/tree/elbow-minus-nl.gif)}.x-tree-no-lines .x-tree-elbow-end-plus{background-image:url(../images/default/tree/elbow-end-plus-nl.gif)}.x-tree-no-lines .x-tree-elbow-end-minus{background-image:url(../images/default/tree/elbow-end-minus-nl.gif)}.x-tree-arrows .x-tree-elbow-plus{background-image:url(../images/default/tree/arrows.gif)}.x-tree-arrows .x-tree-elbow-minus{background-image:url(../images/default/tree/arrows.gif)}.x-tree-arrows .x-tree-elbow-end-plus{background-image:url(../images/default/tree/arrows.gif)}.x-tree-arrows .x-tree-elbow-end-minus{background-image:url(../images/default/tree/arrows.gif)}.x-tree-node{color:#000;font:normal 11px arial,tahoma,helvetica,sans-serif}.x-tree-node a,.x-dd-drag-ghost a{color:#000}.x-tree-node a span,.x-dd-drag-ghost a span{color:#000}.x-tree-node .x-tree-node-disabled a span{color:gray!important}.x-tree-node div.x-tree-drag-insert-below{border-bottom-color:#36c}.x-tree-node div.x-tree-drag-insert-above{border-top-color:#36c}.x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{border-bottom-color:#36c}.x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{border-top-color:#36c}.x-tree-node .x-tree-drag-append a span{background-color:#ddd;border-color:gray}.x-tree-node .x-tree-node-over{background-color:#eee}.x-tree-node .x-tree-selected{background-color:#d9e8fb}.x-tree-drop-ok-append .x-dd-drop-icon{background-image:url(../images/default/tree/drop-add.gif)}.x-tree-drop-ok-above .x-dd-drop-icon{background-image:url(../images/default/tree/drop-over.gif)}.x-tree-drop-ok-below .x-dd-drop-icon{background-image:url(../images/default/tree/drop-under.gif)}.x-tree-drop-ok-between .x-dd-drop-icon{background-image:url(../images/default/tree/drop-between.gif)}.x-date-picker{border-color:#1b376c;background-color:#fff}.x-date-middle,.x-date-left,.x-date-right{background-image:url(../images/default/shared/hd-sprite.gif);color:#fff;font:bold 11px "sans serif",tahoma,verdana,helvetica}.x-date-middle .x-btn .x-btn-text{color:#fff}.x-date-middle .x-btn-mc em.x-btn-arrow{background-image:url(../images/default/toolbar/btn-arrow-light.gif)}.x-date-right a{background-image:url(../images/default/shared/right-btn.gif)}.x-date-left a{background-image:url(../images/default/shared/left-btn.gif)}.x-date-inner th{background-color:#dfecfb;background-image:url(../images/default/shared/glass-bg.gif);border-bottom-color:#a3bad9;font:normal 10px arial,helvetica,tahoma,sans-serif;color:#233d6d}.x-date-inner td{border-color:#fff}.x-date-inner a{font:normal 11px arial,helvetica,tahoma,sans-serif;color:#000}.x-date-inner .x-date-active{color:#000}.x-date-inner .x-date-selected a{background-color:#dfecfb;background-image:url(../images/default/shared/glass-bg.gif);border-color:#8db2e3}.x-date-inner .x-date-today a{border-color:darkred}.x-date-inner .x-date-selected span{font-weight:bold}.x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a{color:#aaa}.x-date-bottom{border-top-color:#a3bad9;background-color:#dfecfb;background-image:url(../images/default/shared/glass-bg.gif)}.x-date-inner a:hover,.x-date-inner .x-date-disabled a:hover{color:#000;background-color:#ddecfe}.x-date-inner .x-date-disabled a{background-color:#eee;color:#bbb}.x-date-mmenu{background-color:#eee!important}.x-date-mmenu .x-menu-item{font-size:10px;color:#000}.x-date-mp{background-color:#fff}.x-date-mp td{font:normal 11px arial,helvetica,tahoma,sans-serif}.x-date-mp-btns button{background-color:#083772;color:#fff;border-color:#36c #005 #005 #36c;font:normal 11px arial,helvetica,tahoma,sans-serif}.x-date-mp-btns{background-color:#dfecfb;background-image:url(../images/default/shared/glass-bg.gif)}.x-date-mp-btns td{border-top-color:#c5d2df}td.x-date-mp-month a,td.x-date-mp-year a{color:#15428b}td.x-date-mp-month a:hover,td.x-date-mp-year a:hover{color:#15428b;background-color:#ddecfe}td.x-date-mp-sel a{background-color:#dfecfb;background-image:url(../images/default/shared/glass-bg.gif);border-color:#8db2e3}.x-date-mp-ybtn a{background-image:url(../images/default/panel/tool-sprites.gif)}td.x-date-mp-sep{border-right-color:#c5d2df}.x-tip .x-tip-close{background-image:url(../images/default/qtip/close.gif)}.x-tip .x-tip-tc,.x-tip .x-tip-tl,.x-tip .x-tip-tr,.x-tip .x-tip-bc,.x-tip .x-tip-bl,.x-tip .x-tip-br,.x-tip .x-tip-ml,.x-tip .x-tip-mr{background-image:url(../images/default/qtip/tip-sprite.gif)}.x-tip .x-tip-mc{font:normal 11px tahoma,arial,helvetica,sans-serif}.x-tip .x-tip-ml{background-color:#fff}.x-tip .x-tip-header-text{font:bold 11px tahoma,arial,helvetica,sans-serif;color:#444}.x-tip .x-tip-body{font:normal 11px tahoma,arial,helvetica,sans-serif;color:#444}.x-form-invalid-tip .x-tip-tc,.x-form-invalid-tip .x-tip-tl,.x-form-invalid-tip .x-tip-tr,.x-form-invalid-tip .x-tip-bc,.x-form-invalid-tip .x-tip-bl,.x-form-invalid-tip .x-tip-br,.x-form-invalid-tip .x-tip-ml,.x-form-invalid-tip .x-tip-mr{background-image:url(../images/default/form/error-tip-corners.gif)}.x-form-invalid-tip .x-tip-body{background-image:url(../images/default/form/exclamation.gif)}.x-tip-anchor{background-image:url(../images/default/qtip/tip-anchor-sprite.gif)}.x-menu{background-color:#f0f0f0;background-image:url(../images/default/menu/menu.gif)}.x-menu-floating{border-color:#718bb7}.x-menu-nosep{background-image:none}.x-menu-list-item{font:normal 11px arial,tahoma,sans-serif}.x-menu-item-arrow{background-image:url(../images/default/menu/menu-parent.gif)}.x-menu-sep{background-color:#e0e0e0;border-bottom-color:#fff}a.x-menu-item{color:#222}.x-menu-item-active{background-image:url(../images/default/menu/item-over.gif);background-color:#dbecf4;border-color:#aaccf6}.x-menu-item-active a.x-menu-item{border-color:#aaccf6}.x-menu-check-item .x-menu-item-icon{background-image:url(../images/default/menu/unchecked.gif)}.x-menu-item-checked .x-menu-item-icon{background-image:url(../images/default/menu/checked.gif)}.x-menu-item-checked .x-menu-group-item .x-menu-item-icon{background-image:url(../images/default/menu/group-checked.gif)}.x-menu-group-item .x-menu-item-icon{background-image:none}.x-menu-plain{background-color:#f0f0f0!important;background-image:none}.x-date-menu,.x-color-menu{background-color:#fff!important}.x-menu .x-date-picker{border-color:#a3bad9}.x-cycle-menu .x-menu-item-checked{border-color:#a3bae9!important;background-color:#def8f6}.x-menu-scroller-top{background-image:url(../images/default/layout/mini-top.gif)}.x-menu-scroller-bottom{background-image:url(../images/default/layout/mini-bottom.gif)}.x-box-tl{background-image:url(../images/default/box/corners.gif)}.x-box-tc{background-image:url(../images/default/box/tb.gif)}.x-box-tr{background-image:url(../images/default/box/corners.gif)}.x-box-ml{background-image:url(../images/default/box/l.gif)}.x-box-mc{background-color:#eee;background-image:url(../images/default/box/tb.gif);font-family:"Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif;color:#393939;font-size:12px}.x-box-mc h3{font-size:14px;font-weight:bold}.x-box-mr{background-image:url(../images/default/box/r.gif)}.x-box-bl{background-image:url(../images/default/box/corners.gif)}.x-box-bc{background-image:url(../images/default/box/tb.gif)}.x-box-br{background-image:url(../images/default/box/corners.gif)}.x-box-blue .x-box-bl,.x-box-blue .x-box-br,.x-box-blue .x-box-tl,.x-box-blue .x-box-tr{background-image:url(../images/default/box/corners-blue.gif)}.x-box-blue .x-box-bc,.x-box-blue .x-box-mc,.x-box-blue .x-box-tc{background-image:url(../images/default/box/tb-blue.gif)}.x-box-blue .x-box-mc{background-color:#c3daf9}.x-box-blue .x-box-mc h3{color:#17385b}.x-box-blue .x-box-ml{background-image:url(../images/default/box/l-blue.gif)}.x-box-blue .x-box-mr{background-image:url(../images/default/box/r-blue.gif)}.x-combo-list{border-color:#98c0f4;background-color:#ddecfe;font:normal 12px tahoma,arial,helvetica,sans-serif}.x-combo-list-inner{background-color:#fff}.x-combo-list-hd{font:bold 11px tahoma,arial,helvetica,sans-serif;color:#15428b;background-image:url(../images/default/layout/panel-title-light-bg.gif);border-bottom-color:#98c0f4}.x-resizable-pinned .x-combo-list-inner{border-bottom-color:#98c0f4}.x-combo-list-item{border-color:#fff}.x-combo-list .x-combo-selected{border-color:#a3bae9!important;background-color:#dfe8f6}.x-combo-list .x-toolbar{border-top-color:#98c0f4}.x-combo-list-small{font:normal 11px tahoma,arial,helvetica,sans-serif}.x-panel{border-color:#99bbe8}.x-panel-header{color:#15428b;font-weight:bold;font-size:11px;font-family:tahoma,arial,verdana,sans-serif;border-color:#99bbe8;background-image:url(../images/default/panel/white-top-bottom.gif)}.x-panel-body{border-color:#99bbe8;background-color:#fff}.x-panel-bbar .x-toolbar,.x-panel-tbar .x-toolbar{border-color:#99bbe8}.x-panel-tbar-noheader .x-toolbar,.x-panel-mc .x-panel-tbar .x-toolbar{border-top-color:#99bbe8}.x-panel-body-noheader,.x-panel-mc .x-panel-body{border-top-color:#99bbe8}.x-panel-tl .x-panel-header{color:#15428b;font:bold 11px tahoma,arial,verdana,sans-serif}.x-panel-tc{background-image:url(../images/default/panel/top-bottom.gif)}.x-panel-tl,.x-panel-tr,.x-panel-bl,.x-panel-br{background-image:url(../images/default/panel/corners-sprite.gif);border-bottom-color:#99bbe8}.x-panel-bc{background-image:url(../images/default/panel/top-bottom.gif)}.x-panel-mc{font:normal 11px tahoma,arial,helvetica,sans-serif;background-color:#dfe8f6}.x-panel-ml{background-color:#fff;background-image:url(../images/default/panel/left-right.gif)}.x-panel-mr{background-image:url(../images/default/panel/left-right.gif)}.x-tool{background-image:url(../images/default/panel/tool-sprites.gif)}.x-panel-ghost{background-color:#cbddf3}.x-panel-ghost ul{border-color:#99bbe8}.x-panel-dd-spacer{border-color:#99bbe8}.x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{font:normal 11px arial,tahoma,helvetica,sans-serif}.x-window-proxy{background-color:#c7dffc;border-color:#99bbe8}.x-window-tl .x-window-header{color:#15428b;font:bold 11px tahoma,arial,verdana,sans-serif}.x-window-tc{background-image:url(../images/default/window/top-bottom.png)}.x-window-tl{background-image:url(../images/default/window/left-corners.png)}.x-window-tr{background-image:url(../images/default/window/right-corners.png)}.x-window-bc{background-image:url(../images/default/window/top-bottom.png)}.x-window-bl{background-image:url(../images/default/window/left-corners.png)}.x-window-br{background-image:url(../images/default/window/right-corners.png)}.x-window-mc{border-color:#99bbe8;font:normal 11px tahoma,arial,helvetica,sans-serif;background-color:#dfe8f6}.x-window-ml{background-image:url(../images/default/window/left-right.png)}.x-window-mr{background-image:url(../images/default/window/left-right.png)}.x-window-maximized .x-window-tc{background-color:#fff}.x-window-bbar .x-toolbar{border-top-color:#99bbe8}.x-panel-ghost .x-window-tl{border-bottom-color:#99bbe8}.x-panel-collapsed .x-window-tl{border-bottom-color:#84a0c4}.x-dlg-mask{background-color:#ccc}.x-window-plain .x-window-mc{background-color:#ccd9e8;border-color:#a3bae9 #dfe8f6 #dfe8f6 #a3bae9}.x-window-plain .x-window-body{border-color:#dfe8f6 #a3bae9 #a3bae9 #dfe8f6}body.x-body-masked .x-window-plain .x-window-mc{background-color:#ccd9e8}.x-html-editor-wrap{border-color:#a9bfd3;background-color:#fff}.x-html-editor-tb .x-btn-text{background-image:url(../images/default/editor/tb-sprite.gif)}.x-panel-noborder .x-panel-header-noborder{border-bottom-color:#99bbe8}.x-panel-noborder .x-panel-tbar-noborder .x-toolbar{border-bottom-color:#99bbe8}.x-panel-noborder .x-panel-bbar-noborder .x-toolbar{border-top-color:#99bbe8}.x-tab-panel-bbar-noborder .x-toolbar{border-top-color:#99bbe8}.x-tab-panel-tbar-noborder .x-toolbar{border-bottom-color:#99bbe8}.x-border-layout-ct{background-color:#dfe8f6}.x-accordion-hd{color:#222;font-weight:normal;background-image:url(../images/default/panel/light-hd.gif)}.x-layout-collapsed{background-color:#d2e0f2;border-color:#98c0f4}.x-layout-collapsed-over{background-color:#d9e8fb}.x-layout-split-west .x-layout-mini{background-image:url(../images/default/layout/mini-left.gif)}.x-layout-split-east .x-layout-mini{background-image:url(../images/default/layout/mini-right.gif)}.x-layout-split-north .x-layout-mini{background-image:url(../images/default/layout/mini-top.gif)}.x-layout-split-south .x-layout-mini{background-image:url(../images/default/layout/mini-bottom.gif)}.x-layout-cmini-west .x-layout-mini{background-image:url(../images/default/layout/mini-right.gif)}.x-layout-cmini-east .x-layout-mini{background-image:url(../images/default/layout/mini-left.gif)}.x-layout-cmini-north .x-layout-mini{background-image:url(../images/default/layout/mini-bottom.gif)}.x-layout-cmini-south .x-layout-mini{background-image:url(../images/default/layout/mini-top.gif)}.x-progress-wrap{border-color:#6593cf}.x-progress-inner{background-color:#e0e8f3;background-image:url(../images/default/qtip/bg.gif)}.x-progress-bar{background-color:#9cbfee;background-image:url(../images/default/progress/progress-bg.gif);border-top-color:#d1e4fd;border-bottom-color:#7fa9e4;border-right-color:#7fa9e4}.x-progress-text{font-size:11px;font-weight:bold;color:#fff}.x-progress-text-back{color:#396095}.x-list-header{background-color:#f9f9f9;background-image:url(../images/default/grid/grid3-hrow.gif)}.x-list-header-inner div em{border-left-color:#ddd;font:normal 11px arial,tahoma,helvetica,sans-serif}.x-list-body dt em{font:normal 11px arial,tahoma,helvetica,sans-serif}.x-list-over{background-color:#eee}.x-list-selected{background-color:#dfe8f6}.x-list-resizer{border-left-color:#555;border-right-color:#555}.x-list-header-inner em.sort-asc,.x-list-header-inner em.sort-desc{background-image:url(../images/default/grid/sort-hd.gif);border-color:#99bbe8}.x-slider-horz,.x-slider-horz .x-slider-end,.x-slider-horz .x-slider-inner{background-image:url(../images/default/slider/slider-bg.png)}.x-slider-horz .x-slider-thumb{background-image:url(../images/default/slider/slider-thumb.png)}.x-slider-vert,.x-slider-vert .x-slider-end,.x-slider-vert .x-slider-inner{background-image:url(../images/default/slider/slider-v-bg.png)}.x-slider-vert .x-slider-thumb{background-image:url(../images/default/slider/slider-v-thumb.png)}.x-window-dlg .ext-mb-text,.x-window-dlg .x-window-header-text{font-size:12px}.x-window-dlg .ext-mb-textarea{font:normal 12px tahoma,arial,helvetica,sans-serif}.x-window-dlg .x-msg-box-wait{background-image:url(../images/default/grid/loading.gif)}.x-window-dlg .ext-mb-info{background-image:url(../images/default/window/icon-info.gif)}.x-window-dlg .ext-mb-warning{background-image:url(../images/default/window/icon-warning.gif)}.x-window-dlg .ext-mb-question{background-image:url(../images/default/window/icon-question.gif)}.x-window-dlg .ext-mb-error{background-image:url(../images/default/window/icon-error.gif)} ================================================ FILE: client/src/ext/resources/css/reset-min.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ html,body,div,dl,dt,dd,ul,ol,li,h1,h2,h3,h4,h5,h6,pre,form,fieldset,input,p,blockquote,th,td{margin:0;padding:0;}img,body,html{border:0;}address,caption,cite,code,dfn,em,strong,th,var{font-style:normal;font-weight:normal;}ol,ul {list-style:none;}caption,th {text-align:left;}h1,h2,h3,h4,h5,h6{font-size:100%;}q:before,q:after{content:'';} ================================================ FILE: client/src/ext/resources/css/structure/borders.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel-noborder .x-panel-body-noborder { border-width:0; } .x-panel-noborder .x-panel-header-noborder { border-width:0 0 1px; border-style:solid; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-width:0 0 1px; border-style:solid; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-width:1px 0 0 0; border-style:solid; } .x-window-noborder .x-window-mc { border-width:0; } .x-window-plain .x-window-body-noborder { border-width:0; } .x-tab-panel-noborder .x-tab-panel-body-noborder { border-width:0; } .x-tab-panel-noborder .x-tab-panel-header-noborder { border-width: 0 0 1px 0; } .x-tab-panel-noborder .x-tab-panel-footer-noborder { border-width: 1px 0 0 0; } .x-tab-panel-bbar-noborder .x-toolbar { border-width: 1px 0 0 0; border-style:solid; } .x-tab-panel-tbar-noborder .x-toolbar { border-width:0 0 1px; border-style:solid; } ================================================ FILE: client/src/ext/resources/css/structure/box.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* Creates rounded, raised boxes like on the Ext website - the markup isn't pretty:

    YOUR TITLE HERE (optional)

    YOUR CONTENT HERE
    */ .x-box-tl { background: transparent no-repeat 0 0; zoom:1; } .x-box-tc { height: 8px; background: transparent repeat-x 0 0; overflow: hidden; } .x-box-tr { background: transparent no-repeat right -8px; } .x-box-ml { background: transparent repeat-y 0; padding-left: 4px; overflow: hidden; zoom:1; } .x-box-mc { background: repeat-x 0 -16px; padding: 4px 10px; } .x-box-mc h3 { margin: 0 0 4px 0; zoom:1; } .x-box-mr { background: transparent repeat-y right; padding-right: 4px; overflow: hidden; } .x-box-bl { background: transparent no-repeat 0 -16px; zoom:1; } .x-box-bc { background: transparent repeat-x 0 -8px; height: 8px; overflow: hidden; } .x-box-br { background: transparent no-repeat right -24px; } .x-box-tl, .x-box-bl { padding-left: 8px; overflow: hidden; } .x-box-tr, .x-box-br { padding-right: 8px; overflow: hidden; } ================================================ FILE: client/src/ext/resources/css/structure/button.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-btn{ cursor:pointer; white-space: nowrap; } .x-btn button{ border:0 none; background-color:transparent; padding-left:3px; padding-right:3px; cursor:pointer; margin:0; overflow:visible; width:auto; -moz-outline:0 none; outline:0 none; } * html .ext-ie .x-btn button { width:1px; } .ext-gecko .x-btn button, .ext-webkit .x-btn button { padding-left:0; padding-right:0; } .ext-gecko .x-btn button::-moz-focus-inner { padding:0; } .ext-ie .x-btn button { padding-top:2px; } .x-btn td { padding:0 !important; } .x-btn-text { cursor:pointer; white-space: nowrap; padding:0; } /* icon placement and sizing styles */ /* Only text */ .x-btn-noicon .x-btn-small .x-btn-text{ height: 16px; } .x-btn-noicon .x-btn-medium .x-btn-text{ height: 24px; } .x-btn-noicon .x-btn-large .x-btn-text{ height: 32px; } /* Only icons */ .x-btn-icon .x-btn-text{ background-position: center; background-repeat: no-repeat; } .x-btn-icon .x-btn-small .x-btn-text{ height: 16px; width: 16px; } .x-btn-icon .x-btn-medium .x-btn-text{ height: 24px; width: 24px; } .x-btn-icon .x-btn-large .x-btn-text{ height: 32px; width: 32px; } /* Icons and text */ /* left */ .x-btn-text-icon .x-btn-icon-small-left .x-btn-text{ background-position: 0 center; background-repeat: no-repeat; padding-left:18px; height:16px; } .x-btn-text-icon .x-btn-icon-medium-left .x-btn-text{ background-position: 0 center; background-repeat: no-repeat; padding-left:26px; height:24px; } .x-btn-text-icon .x-btn-icon-large-left .x-btn-text{ background-position: 0 center; background-repeat: no-repeat; padding-left:34px; height:32px; } /* top */ .x-btn-text-icon .x-btn-icon-small-top .x-btn-text{ background-position: center 0; background-repeat: no-repeat; padding-top:18px; } .x-btn-text-icon .x-btn-icon-medium-top .x-btn-text{ background-position: center 0; background-repeat: no-repeat; padding-top:26px; } .x-btn-text-icon .x-btn-icon-large-top .x-btn-text{ background-position: center 0; background-repeat: no-repeat; padding-top:34px; } /* right */ .x-btn-text-icon .x-btn-icon-small-right .x-btn-text{ background-position: right center; background-repeat: no-repeat; padding-right:18px; height:16px; } .x-btn-text-icon .x-btn-icon-medium-right .x-btn-text{ background-position: right center; background-repeat: no-repeat; padding-right:26px; height:24px; } .x-btn-text-icon .x-btn-icon-large-right .x-btn-text{ background-position: right center; background-repeat: no-repeat; padding-right:34px; height:32px; } /* bottom */ .x-btn-text-icon .x-btn-icon-small-bottom .x-btn-text{ background-position: center bottom; background-repeat: no-repeat; padding-bottom:18px; } .x-btn-text-icon .x-btn-icon-medium-bottom .x-btn-text{ background-position: center bottom; background-repeat: no-repeat; padding-bottom:26px; } .x-btn-text-icon .x-btn-icon-large-bottom .x-btn-text{ background-position: center bottom; background-repeat: no-repeat; padding-bottom:34px; } /* background positioning */ .x-btn-tr i, .x-btn-tl i, .x-btn-mr i, .x-btn-ml i, .x-btn-br i, .x-btn-bl i{ font-size:1px; line-height:1px; width:3px; display:block; overflow:hidden; } .x-btn-tr i, .x-btn-tl i, .x-btn-br i, .x-btn-bl i{ height:3px; } .x-btn-tl{ width:3px; height:3px; background:no-repeat 0 0; } .x-btn-tr{ width:3px; height:3px; background:no-repeat -3px 0; } .x-btn-tc{ height:3px; background:repeat-x 0 -6px; } .x-btn-ml{ width:3px; background:no-repeat 0 -24px; } .x-btn-mr{ width:3px; background:no-repeat -3px -24px; } .x-btn-mc{ background:repeat-x 0 -1096px; vertical-align: middle; text-align:center; padding:0 5px; cursor:pointer; white-space:nowrap; } /* Fixes an issue with the button height */ .ext-strict .ext-ie6 .x-btn-mc, .ext-strict .ext-ie7 .x-btn-mc { height: 100%; } .x-btn-bl{ width:3px; height:3px; background:no-repeat 0 -3px; } .x-btn-br{ width:3px; height:3px; background:no-repeat -3px -3px; } .x-btn-bc{ height:3px; background:repeat-x 0 -15px; } .x-btn-over .x-btn-tl{ background-position: -6px 0; } .x-btn-over .x-btn-tr{ background-position: -9px 0; } .x-btn-over .x-btn-tc{ background-position: 0 -9px; } .x-btn-over .x-btn-ml{ background-position: -6px -24px; } .x-btn-over .x-btn-mr{ background-position: -9px -24px; } .x-btn-over .x-btn-mc{ background-position: 0 -2168px; } .x-btn-over .x-btn-bl{ background-position: -6px -3px; } .x-btn-over .x-btn-br{ background-position: -9px -3px; } .x-btn-over .x-btn-bc{ background-position: 0 -18px; } .x-btn-click .x-btn-tl, .x-btn-menu-active .x-btn-tl, .x-btn-pressed .x-btn-tl{ background-position: -12px 0; } .x-btn-click .x-btn-tr, .x-btn-menu-active .x-btn-tr, .x-btn-pressed .x-btn-tr{ background-position: -15px 0; } .x-btn-click .x-btn-tc, .x-btn-menu-active .x-btn-tc, .x-btn-pressed .x-btn-tc{ background-position: 0 -12px; } .x-btn-click .x-btn-ml, .x-btn-menu-active .x-btn-ml, .x-btn-pressed .x-btn-ml{ background-position: -12px -24px; } .x-btn-click .x-btn-mr, .x-btn-menu-active .x-btn-mr, .x-btn-pressed .x-btn-mr{ background-position: -15px -24px; } .x-btn-click .x-btn-mc, .x-btn-menu-active .x-btn-mc, .x-btn-pressed .x-btn-mc{ background-position: 0 -3240px; } .x-btn-click .x-btn-bl, .x-btn-menu-active .x-btn-bl, .x-btn-pressed .x-btn-bl{ background-position: -12px -3px; } .x-btn-click .x-btn-br, .x-btn-menu-active .x-btn-br, .x-btn-pressed .x-btn-br{ background-position: -15px -3px; } .x-btn-click .x-btn-bc, .x-btn-menu-active .x-btn-bc, .x-btn-pressed .x-btn-bc{ background-position: 0 -21px; } .x-btn-disabled *{ cursor:default !important; } /* With a menu arrow */ /* right */ .x-btn-mc em.x-btn-arrow { display:block; background:transparent no-repeat right center; padding-right:10px; } .x-btn-mc em.x-btn-split { display:block; background:transparent no-repeat right center; padding-right:14px; } /* bottom */ .x-btn-mc em.x-btn-arrow-bottom { display:block; background:transparent no-repeat center bottom; padding-bottom:14px; } .x-btn-mc em.x-btn-split-bottom { display:block; background:transparent no-repeat center bottom; padding-bottom:14px; } /* height adjustment class */ .x-btn-as-arrow .x-btn-mc em { display:block; background-color:transparent; padding-bottom:14px; } /* groups */ .x-btn-group { padding:1px; } .x-btn-group-header { padding:2px; text-align:center; } .x-btn-group-tc { background: transparent repeat-x 0 0; overflow:hidden; } .x-btn-group-tl { background: transparent no-repeat 0 0; padding-left:3px; zoom:1; } .x-btn-group-tr { background: transparent no-repeat right 0; zoom:1; padding-right:3px; } .x-btn-group-bc { background: transparent repeat-x 0 bottom; zoom:1; } .x-btn-group-bc .x-panel-footer { zoom:1; } .x-btn-group-bl { background: transparent no-repeat 0 bottom; padding-left:3px; zoom:1; } .x-btn-group-br { background: transparent no-repeat right bottom; padding-right:3px; zoom:1; } .x-btn-group-mc { border:0 none; padding:1px 0 0 0; margin:0; } .x-btn-group-mc .x-btn-group-body { background-color:transparent; border: 0 none; } .x-btn-group-ml { background: transparent repeat-y 0 0; padding-left:3px; zoom:1; } .x-btn-group-mr { background: transparent repeat-y right 0; padding-right:3px; zoom:1; } .x-btn-group-bc .x-btn-group-footer { padding-bottom:6px; } .x-panel-nofooter .x-btn-group-bc { height:3px; font-size:0; line-height:0; } .x-btn-group-bwrap { overflow:hidden; zoom:1; } .x-btn-group-body { overflow:hidden; zoom:1; } .x-btn-group-notitle .x-btn-group-tc { background: transparent repeat-x 0 0; overflow:hidden; height:2px; } ================================================ FILE: client/src/ext/resources/css/structure/combo.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-combo-list { border:1px solid; zoom:1; overflow:hidden; } .x-combo-list-inner { overflow:auto; position:relative; /* for calculating scroll offsets */ zoom:1; overflow-x:hidden; } .x-combo-list-hd { border-bottom:1px solid; padding:3px; } .x-resizable-pinned .x-combo-list-inner { border-bottom:1px solid; } .x-combo-list-item { padding:2px; border:1px solid; white-space: nowrap; overflow:hidden; text-overflow: ellipsis; } .x-combo-list .x-combo-selected{ border:1px dotted !important; cursor:pointer; } .x-combo-list .x-toolbar { border-top:1px solid; border-bottom:0 none; } ================================================ FILE: client/src/ext/resources/css/structure/core.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-el-mask { z-index: 100; position: absolute; top:0; left:0; -moz-opacity: 0.5; opacity: .50; filter: alpha(opacity=50); width: 100%; height: 100%; zoom: 1; } .ext-el-mask-msg { z-index: 20001; position: absolute; top: 0; left: 0; border:1px solid; background:repeat-x 0 -16px; padding:2px; } .ext-el-mask-msg div { padding:5px 10px 5px 10px; border:1px solid; cursor:wait; } .ext-shim { position:absolute; visibility:hidden; left:0; top:0; overflow:hidden; } .ext-ie .ext-shim { filter: alpha(opacity=0); } .ext-ie6 .ext-shim { margin-left: 5px; margin-top: 3px; } .x-mask-loading div { padding:5px 10px 5px 25px; background:no-repeat 5px 5px; line-height:16px; } /* class for hiding elements without using display:none */ .x-hidden, .x-hide-offsets { position:absolute !important; left:-10000px; top:-10000px; visibility:hidden; } .x-hide-display { display:none !important; } .x-hide-nosize, .x-hide-nosize * /* Emulate display:none for children */ { height:0px!important; width:0px!important; visibility:hidden!important; border:none!important; zoom:1; } .x-hide-visibility { visibility:hidden !important; } .x-masked { overflow: hidden !important; } .x-masked-relative { position: relative !important; } .x-masked select, .x-masked object, .x-masked embed { visibility: hidden; } .x-layer { visibility: hidden; } .x-unselectable, .x-unselectable * { user-select: none; -o-user-select: none; -ms-user-select: none; -moz-user-select: -moz-none; -webkit-user-select: none; cursor:default; } .x-repaint { zoom: 1; background-color: transparent; -moz-outline: none; outline: none; } .x-item-disabled { cursor: default; opacity: .6; -moz-opacity: .6; filter: alpha(opacity=60); } .x-item-disabled * { cursor: default !important; } .x-form-radio-group .x-item-disabled { filter: none; } .x-splitbar-proxy { position: absolute; visibility: hidden; z-index: 20001; zoom: 1; line-height: 1px; font-size: 1px; overflow: hidden; } .x-splitbar-h, .x-splitbar-proxy-h { cursor: e-resize; cursor: col-resize; } .x-splitbar-v, .x-splitbar-proxy-v { cursor: s-resize; cursor: row-resize; } .x-color-palette { width: 150px; height: 92px; cursor: pointer; } .x-color-palette a { border: 1px solid; float: left; padding: 2px; text-decoration: none; -moz-outline: 0 none; outline: 0 none; cursor: pointer; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border: 1px solid; } .x-color-palette em { display: block; border: 1px solid; } .x-color-palette em span { cursor: pointer; display: block; height: 10px; line-height: 10px; width: 10px; } .x-ie-shadow { display: none; position: absolute; overflow: hidden; left:0; top:0; zoom:1; } .x-shadow { display: none; position: absolute; overflow: hidden; left:0; top:0; } .x-shadow * { overflow: hidden; } .x-shadow * { padding: 0; border: 0; margin: 0; clear: none; zoom: 1; } /* top bottom */ .x-shadow .xstc, .x-shadow .xsbc { height: 6px; float: left; } /* corners */ .x-shadow .xstl, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbr { width: 6px; height: 6px; float: left; } /* sides */ .x-shadow .xsc { width: 100%; } .x-shadow .xsml, .x-shadow .xsmr { width: 6px; float: left; height: 100%; } .x-shadow .xsmc { float: left; height: 100%; background-color: transparent; } .x-shadow .xst, .x-shadow .xsb { height: 6px; overflow: hidden; width: 100%; } .x-shadow .xsml { background: transparent repeat-y 0 0; } .x-shadow .xsmr { background: transparent repeat-y -6px 0; } .x-shadow .xstl { background: transparent no-repeat 0 0; } .x-shadow .xstc { background: transparent repeat-x 0 -30px; } .x-shadow .xstr { background: transparent repeat-x 0 -18px; } .x-shadow .xsbl { background: transparent no-repeat 0 -12px; } .x-shadow .xsbc { background: transparent repeat-x 0 -36px; } .x-shadow .xsbr { background: transparent repeat-x 0 -6px; } .loading-indicator { background: no-repeat left; padding-left: 20px; line-height: 16px; margin: 3px; } .x-text-resize { position: absolute; left: -1000px; top: -1000px; visibility: hidden; zoom: 1; } .x-drag-overlay { width: 100%; height: 100%; display: none; position: absolute; left: 0; top: 0; background-image:url(../images/default/s.gif); z-index: 20000; } .x-clear { clear:both; height:0; overflow:hidden; line-height:0; font-size:0; } .x-spotlight { z-index: 8999; position: absolute; top:0; left:0; -moz-opacity: 0.5; opacity: .50; filter: alpha(opacity=50); width:0; height:0; zoom: 1; } #x-history-frame { position:absolute; top:-1px; left:0; width:1px; height:1px; visibility:hidden; } #x-history-field { position:absolute; top:0; left:-1px; width:1px; height:1px; visibility:hidden; } ================================================ FILE: client/src/ext/resources/css/structure/date-picker.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-date-picker { border: 1px solid; border-top:0 none; position:relative; } .x-date-picker a { -moz-outline:0 none; outline:0 none; } .x-date-inner, .x-date-inner td, .x-date-inner th{ border-collapse:separate; } .x-date-middle,.x-date-left,.x-date-right { background: repeat-x 0 -83px; overflow:hidden; } .x-date-middle .x-btn-tc,.x-date-middle .x-btn-tl,.x-date-middle .x-btn-tr, .x-date-middle .x-btn-mc,.x-date-middle .x-btn-ml,.x-date-middle .x-btn-mr, .x-date-middle .x-btn-bc,.x-date-middle .x-btn-bl,.x-date-middle .x-btn-br{ background:transparent !important; vertical-align:middle; } .x-date-middle .x-btn-mc em.x-btn-arrow { background:transparent no-repeat right 0; } .x-date-right, .x-date-left { width:18px; } .x-date-right{ text-align:right; } .x-date-middle { padding-top:2px; padding-bottom:2px; width:130px; /* FF3 */ } .x-date-right a, .x-date-left a{ display:block; width:16px; height:16px; background-position: center; background-repeat: no-repeat; cursor:pointer; -moz-opacity: 0.6; opacity:.6; filter: alpha(opacity=60); } .x-date-right a:hover, .x-date-left a:hover{ -moz-opacity: 1; opacity:1; filter: alpha(opacity=100); } .x-item-disabled .x-date-right a:hover, .x-item-disabled .x-date-left a:hover{ -moz-opacity: 0.6; opacity:.6; filter: alpha(opacity=60); } .x-date-right a { margin-right:2px; text-decoration:none !important; } .x-date-left a{ margin-left:2px; text-decoration:none !important; } table.x-date-inner { width: 100%; table-layout:fixed; } .ext-webkit table.x-date-inner{ /* Fix for webkit browsers */ width: 175px; } .x-date-inner th { width:25px; } .x-date-inner th { background: repeat-x left top; text-align:right !important; border-bottom: 1px solid; cursor:default; padding:0; border-collapse:separate; } .x-date-inner th span { display:block; padding:2px; padding-right:7px; } .x-date-inner td { border: 1px solid; text-align:right; padding:0; } .x-date-inner a { padding:2px 5px; display:block; text-decoration:none; text-align:right; zoom:1; } .x-date-inner .x-date-active{ cursor:pointer; color:black; } .x-date-inner .x-date-selected a{ background: repeat-x left top; border:1px solid; padding:1px 4px; } .x-date-inner .x-date-today a{ border: 1px solid; padding:1px 4px; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { text-decoration:none !important; } .x-date-bottom { padding:4px; border-top: 1px solid; background: repeat-x left top; } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ text-decoration:none !important; } .x-item-disabled .x-date-inner a:hover{ background: none; } .x-date-inner .x-date-disabled a { cursor:default; } .x-date-menu .x-menu-item { padding:1px 24px 1px 4px; white-space: nowrap; } .x-date-menu .x-menu-item .x-menu-item-icon { width:10px; height:10px; margin-right:5px; background-position:center -4px !important; } .x-date-mp { position:absolute; left:0; top:0; display:none; } .x-date-mp td { padding:2px; font:normal 11px arial, helvetica,tahoma,sans-serif; } td.x-date-mp-month,td.x-date-mp-year,td.x-date-mp-ybtn { border: 0 none; text-align:center; vertical-align: middle; width:25%; } .x-date-mp-ok { margin-right:3px; } .x-date-mp-btns button { text-decoration:none; text-align:center; text-decoration:none !important; border:1px solid; padding:1px 3px 1px; cursor:pointer; } .x-date-mp-btns { background: repeat-x left top; } .x-date-mp-btns td { border-top: 1px solid; text-align:center; } td.x-date-mp-month a,td.x-date-mp-year a { display:block; padding:2px 4px; text-decoration:none; text-align:center; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { text-decoration:none; cursor:pointer; } td.x-date-mp-sel a { padding:1px 3px; background: repeat-x left top; border:1px solid; } .x-date-mp-ybtn a { overflow:hidden; width:15px; height:15px; cursor:pointer; background:transparent no-repeat; display:block; margin:0 auto; } .x-date-mp-ybtn a.x-date-mp-next { background-position:0 -120px; } .x-date-mp-ybtn a.x-date-mp-next:hover { background-position:-15px -120px; } .x-date-mp-ybtn a.x-date-mp-prev { background-position:0 -105px; } .x-date-mp-ybtn a.x-date-mp-prev:hover { background-position:-15px -105px; } .x-date-mp-ybtn { text-align:center; } td.x-date-mp-sep { border-right:1px solid; } ================================================ FILE: client/src/ext/resources/css/structure/dd.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-dd-drag-proxy{ position:absolute; left:0; top:0; visibility:hidden; z-index:15000; } .x-dd-drag-ghost{ -moz-opacity: 0.85; opacity:.85; filter: alpha(opacity=85); border: 1px solid; padding:3px; padding-left:20px; white-space:nowrap; } .x-dd-drag-repair .x-dd-drag-ghost{ -moz-opacity: 0.4; opacity:.4; filter: alpha(opacity=40); border:0 none; padding:0; background-color:transparent; } .x-dd-drag-repair .x-dd-drop-icon{ visibility:hidden; } .x-dd-drop-icon{ position:absolute; top:3px; left:3px; display:block; width:16px; height:16px; background-color:transparent; background-position: center; background-repeat: no-repeat; z-index:1; } .x-view-selector { position:absolute; left:0; top:0; width:0; border:1px dotted; opacity: .5; -moz-opacity: .5; filter:alpha(opacity=50); zoom:1; } ================================================ FILE: client/src/ext/resources/css/structure/debug.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ #x-debug-browser .x-tree .x-tree-node a span { padding-top:2px; line-height:18px; } #x-debug-browser .x-tool-toggle { background-position:0 -75px; } #x-debug-browser .x-tool-toggle-over { background-position:-15px -75px; } #x-debug-browser.x-panel-collapsed .x-tool-toggle { background-position:0 -60px; } #x-debug-browser.x-panel-collapsed .x-tool-toggle-over { background-position:-15px -60px; } ================================================ FILE: client/src/ext/resources/css/structure/dialog.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-dlg .x-window-body { border:0 none !important; padding:5px 10px; overflow:hidden !important; } .x-window-dlg .x-window-mc { border:0 none !important; } .x-window-dlg .ext-mb-input { margin-top:4px; width:95%; } .x-window-dlg .ext-mb-textarea { margin-top:4px; } .x-window-dlg .x-progress-wrap { margin-top:4px; } .ext-ie .x-window-dlg .x-progress-wrap { margin-top:6px; } .x-window-dlg .x-msg-box-wait { background:transparent no-repeat left; display:block; width:300px; padding-left:18px; line-height:18px; } .x-window-dlg .ext-mb-icon { float:left; width:47px; height:32px; } .x-window-dlg .x-dlg-icon .ext-mb-content{ zoom: 1; margin-left: 47px; } .x-window-dlg .ext-mb-info, .x-window-dlg .ext-mb-warning, .x-window-dlg .ext-mb-question, .x-window-dlg .ext-mb-error { background:transparent no-repeat top left; } .ext-gecko2 .ext-mb-fix-cursor { overflow:auto; } ================================================ FILE: client/src/ext/resources/css/structure/editor.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-html-editor-wrap { border:1px solid; } .x-html-editor-tb .x-btn-text { background:transparent no-repeat; } .x-html-editor-tb .x-edit-bold, .x-menu-item img.x-edit-bold { background-position:0 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-italic, .x-menu-item img.x-edit-italic { background-position:-16px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-underline, .x-menu-item img.x-edit-underline { background-position:-32px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-forecolor, .x-menu-item img.x-edit-forecolor { background-position:-160px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-backcolor, .x-menu-item img.x-edit-backcolor { background-position:-176px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-justifyleft, .x-menu-item img.x-edit-justifyleft { background-position:-112px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-justifycenter, .x-menu-item img.x-edit-justifycenter { background-position:-128px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-justifyright, .x-menu-item img.x-edit-justifyright { background-position:-144px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-insertorderedlist, .x-menu-item img.x-edit-insertorderedlist { background-position:-80px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-insertunorderedlist, .x-menu-item img.x-edit-insertunorderedlist { background-position:-96px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-increasefontsize, .x-menu-item img.x-edit-increasefontsize { background-position:-48px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-decreasefontsize, .x-menu-item img.x-edit-decreasefontsize { background-position:-64px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-sourceedit, .x-menu-item img.x-edit-sourceedit { background-position:-192px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tb .x-edit-createlink, .x-menu-item img.x-edit-createlink { background-position:-208px 0; background-image:url(../images/default/editor/tb-sprite.gif); } .x-html-editor-tip .x-tip-bd .x-tip-bd-inner { padding:5px; padding-bottom:1px; } .x-html-editor-tb .x-toolbar { position:static !important; } ================================================ FILE: client/src/ext/resources/css/structure/form.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* all fields */ .x-form-field{ margin: 0 0 0 0; } .ext-webkit *:focus{ outline: none !important; } /* ---- text fields ---- */ .x-form-text, textarea.x-form-field{ padding:1px 3px; background:repeat-x 0 0; border:1px solid; } textarea.x-form-field { padding:2px 3px; } .x-form-text, .ext-ie .x-form-file { height:22px; line-height:18px; vertical-align:middle; } .ext-ie6 .x-form-text, .ext-ie7 .x-form-text { margin:-1px 0; /* ie bogus margin bug */ height:22px; /* ie quirks */ line-height:18px; } .x-quirks .ext-ie9 .x-form-text { height: 22px; padding-top: 3px; padding-bottom: 0px; } /* Ugly hacks for the bogus 1px margin bug in IE9 quirks */ .x-quirks .ext-ie9 .x-input-wrapper .x-form-text, .x-quirks .ext-ie9 .x-form-field-trigger-wrap .x-form-text { margin-top: -1px; margin-bottom: -1px; } .x-quirks .ext-ie9 .x-input-wrapper .x-form-element { margin-bottom: -1px; } .ext-ie6 .x-form-field-wrap .x-form-file-btn, .ext-ie7 .x-form-field-wrap .x-form-file-btn { top: -1px; /* because of all these margin hacks, these buttons are off by one pixel in IE6,7 */ } .ext-ie6 textarea.x-form-field, .ext-ie7 textarea.x-form-field { margin:-1px 0; /* ie bogus margin bug */ } .ext-strict .x-form-text { height:18px; } .ext-safari.ext-mac textarea.x-form-field { margin-bottom:-2px; /* another bogus margin bug, safari/mac only */ } /* .ext-strict .ext-ie8 .x-form-text, .ext-strict .ext-ie8 textarea.x-form-field { margin-bottom: 1px; } */ .ext-gecko .x-form-text , .ext-ie8 .x-form-text { padding-top:2px; /* FF won't center the text vertically */ padding-bottom:0; } .ext-ie6 .x-form-composite .x-form-text.x-box-item, .ext-ie7 .x-form-composite .x-form-text.x-box-item { margin: 0 !important; /* clear ie bogus margin bug fix */ } textarea { resize: none; /* Disable browser resizable textarea */ } /* select boxes */ .x-form-select-one { height:20px; line-height:18px; vertical-align:middle; border: 1px solid; } /* multi select boxes */ /* --- TODO --- */ /* 2.0.2 style */ .x-form-check-wrap { line-height:18px; height: auto; } .ext-ie .x-form-check-wrap input { width:15px; height:15px; } .x-form-check-wrap input{ vertical-align: bottom; } .x-editor .x-form-check-wrap { padding:3px; } .x-editor .x-form-checkbox { height:13px; } .x-form-check-group-label { border-bottom: 1px solid; margin-bottom: 5px; padding-left: 3px !important; float: none !important; } /* wrapped fields and triggers */ .x-form-field-wrap .x-form-trigger{ width:17px; height:21px; border:0; background:transparent no-repeat 0 0; cursor:pointer; border-bottom: 1px solid; position:absolute; top:0; } .x-form-field-wrap .x-form-date-trigger, .x-form-field-wrap .x-form-clear-trigger, .x-form-field-wrap .x-form-search-trigger{ cursor:pointer; } .x-form-field-wrap .x-form-twin-triggers .x-form-trigger{ position:static; top:auto; vertical-align:top; } .x-form-field-wrap { position:relative; left:0;top:0; text-align: left; zoom:1; white-space: nowrap; } .ext-strict .ext-ie8 .x-toolbar-cell .x-form-field-trigger-wrap .x-form-trigger { right: 0; /* IE8 Strict mode trigger bug */ } .x-form-field-wrap .x-form-trigger-over{ background-position:-17px 0; } .x-form-field-wrap .x-form-trigger-click{ background-position:-34px 0; } .x-trigger-wrap-focus .x-form-trigger{ background-position:-51px 0; } .x-trigger-wrap-focus .x-form-trigger-over{ background-position:-68px 0; } .x-trigger-wrap-focus .x-form-trigger-click{ background-position:-85px 0; } .x-trigger-wrap-focus .x-form-trigger{ border-bottom: 1px solid; } .x-item-disabled .x-form-trigger-over{ background-position:0 0 !important; border-bottom: 1px solid; } .x-item-disabled .x-form-trigger-click{ background-position:0 0 !important; border-bottom: 1px solid; } .x-trigger-noedit{ cursor:pointer; } /* field focus style */ .x-form-focus, textarea.x-form-focus{ border: 1px solid; } /* invalid fields */ .x-form-invalid, textarea.x-form-invalid{ background:repeat-x bottom; border: 1px solid; } .x-form-inner-invalid, textarea.x-form-inner-invalid{ background:repeat-x bottom; } /* editors */ .x-editor { visibility:hidden; padding:0; margin:0; } .x-form-grow-sizer { left: -10000px; padding: 8px 3px; position: absolute; visibility:hidden; top: -10000px; white-space: pre-wrap; white-space: -moz-pre-wrap; white-space: -pre-wrap; white-space: -o-pre-wrap; word-wrap: break-word; zoom:1; } .x-form-grow-sizer p { margin:0 !important; border:0 none !important; padding:0 !important; } /* Form Items CSS */ .x-form-item { display:block; margin-bottom:4px; zoom:1; } .x-form-item label.x-form-item-label { display:block; float:left; width:100px; padding:3px; padding-left:0; clear:left; z-index:2; position:relative; } .x-form-element { padding-left:105px; position:relative; } .x-form-invalid-msg { padding:2px; padding-left:18px; background: transparent no-repeat 0 2px; line-height:16px; width:200px; } .x-form-label-left label.x-form-item-label { text-align:left; } .x-form-label-right label.x-form-item-label { text-align:right; } .x-form-label-top .x-form-item label.x-form-item-label { width:auto; float:none; clear:none; display:inline; margin-bottom:4px; position:static; } .x-form-label-top .x-form-element { padding-left:0; padding-top:4px; } .x-form-label-top .x-form-item { padding-bottom:4px; } /* Editor small font for grid, toolbar and tree */ .x-small-editor .x-form-text { height:20px; line-height:16px; vertical-align:middle; } .ext-ie6 .x-small-editor .x-form-text, .ext-ie7 .x-small-editor .x-form-text { margin-top:-1px !important; /* ie bogus margin bug */ margin-bottom:-1px !important; height:20px !important; /* ie quirks */ line-height:16px !important; } .ext-strict .x-small-editor .x-form-text { height:16px !important; } .ext-ie6 .x-small-editor .x-form-text, .ext-ie7 .x-small-editor .x-form-text { height:20px; line-height:16px; } .ext-border-box .x-small-editor .x-form-text { height:20px; } .x-small-editor .x-form-select-one { height:20px; line-height:16px; vertical-align:middle; } .x-small-editor .x-form-num-field { text-align:right; } .x-small-editor .x-form-field-wrap .x-form-trigger{ height:19px; } .ext-webkit .x-small-editor .x-form-text{padding-top:3px;font-size:100%;} .ext-strict .ext-webkit .x-small-editor .x-form-text{ height:14px !important; } .x-form-clear { clear:both; height:0; overflow:hidden; line-height:0; font-size:0; } .x-form-clear-left { clear:left; height:0; overflow:hidden; line-height:0; font-size:0; } .ext-ie6 .x-form-check-wrap input, .ext-border-box .x-form-check-wrap input{ margin-top: 3px; } .x-form-cb-label { position: relative; margin-left:4px; top: 2px; } .ext-ie .x-form-cb-label{ top: 1px; } .ext-ie6 .x-form-cb-label, .ext-border-box .x-form-cb-label{ top: 3px; } .x-form-display-field{ padding-top: 2px; } .ext-gecko .x-form-display-field, .ext-strict .ext-ie7 .x-form-display-field{ padding-top: 1px; } .ext-ie .x-form-display-field{ padding-top: 3px; } .ext-strict .ext-ie8 .x-form-display-field{ padding-top: 0; } .x-form-column { float:left; padding:0; margin:0; width:48%; overflow:hidden; zoom:1; } /* buttons */ .x-form .x-form-btns-ct .x-btn{ float:right; clear:none; } .x-form .x-form-btns-ct .x-form-btns td { border:0; padding:0; } .x-form .x-form-btns-ct .x-form-btns-right table{ float:right; clear:none; } .x-form .x-form-btns-ct .x-form-btns-left table{ float:left; clear:none; } .x-form .x-form-btns-ct .x-form-btns-center{ text-align:center; /*ie*/ } .x-form .x-form-btns-ct .x-form-btns-center table{ margin:0 auto; /*everyone else*/ } .x-form .x-form-btns-ct table td.x-form-btn-td{ padding:3px; } .x-form .x-form-btns-ct .x-btn-focus .x-btn-left{ background-position:0 -147px; } .x-form .x-form-btns-ct .x-btn-focus .x-btn-right{ background-position:0 -168px; } .x-form .x-form-btns-ct .x-btn-focus .x-btn-center{ background-position:0 -189px; } .x-form .x-form-btns-ct .x-btn-click .x-btn-center{ background-position:0 -126px; } .x-form .x-form-btns-ct .x-btn-click .x-btn-right{ background-position:0 -84px; } .x-form .x-form-btns-ct .x-btn-click .x-btn-left{ background-position:0 -63px; } .x-form-invalid-icon { width:16px; height:18px; visibility:hidden; position:absolute; left:0; top:0; display:block; background:transparent no-repeat 0 2px; } /* fieldsets */ .x-fieldset { border:1px solid; padding:10px; margin-bottom:10px; display:block; /* preserve margins in IE */ } /* make top of checkbox/tools visible in webkit */ .ext-webkit .x-fieldset-header { padding-top: 1px; } .ext-ie .x-fieldset legend { margin-bottom:10px; } .ext-strict .ext-ie9 .x-fieldset legend.x-fieldset-header { padding-top: 1px; } .ext-ie .x-fieldset { padding-top: 0; padding-bottom:10px; } .x-fieldset legend .x-tool-toggle { margin-right:3px; margin-left:0; float:left !important; } .x-fieldset legend input { margin-right:3px; float:left !important; height:13px; width:13px; } fieldset.x-panel-collapsed { padding-bottom:0 !important; border-width: 1px 1px 0 1px !important; border-left-color: transparent; border-right-color: transparent; } .ext-ie6 fieldset.x-panel-collapsed{ padding-bottom:0 !important; border-width: 1px 0 0 0 !important; margin-left: 1px; margin-right: 1px; } fieldset.x-panel-collapsed .x-fieldset-bwrap { visibility:hidden; position:absolute; left:-1000px; top:-1000px; } .ext-ie .x-fieldset-bwrap { zoom:1; } .x-fieldset-noborder { border:0px none transparent; } .x-fieldset-noborder legend { margin-left:-3px; } /* IE legend positioning bug */ .ext-ie .x-fieldset-noborder legend { position: relative; margin-bottom:23px; } .ext-ie .x-fieldset-noborder legend span { position: absolute; left:16px; } .ext-gecko .x-window-body .x-form-item { -moz-outline: none; outline: none; overflow: auto; } .ext-mac.ext-gecko .x-window-body .x-form-item { overflow:hidden; } .ext-gecko .x-form-item { -moz-outline: none; outline: none; } .x-hide-label label.x-form-item-label { display:none; } .x-hide-label .x-form-element { padding-left: 0 !important; } .x-form-label-top .x-hide-label label.x-form-item-label{ display: none; } .x-fieldset { overflow:hidden; } .x-fieldset-bwrap { overflow:hidden; zoom:1; } .x-fieldset-body { overflow:hidden; } ================================================ FILE: client/src/ext/resources/css/structure/grid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* Grid3 styles */ .x-grid3 { position:relative; overflow:hidden; } .x-grid-panel .x-panel-body { overflow:hidden !important; } .x-grid-panel .x-panel-mc .x-panel-body { border:1px solid; } .x-grid3 table { table-layout:fixed; } .x-grid3-viewport{ overflow:hidden; } .x-grid3-hd-row td, .x-grid3-row td, .x-grid3-summary-row td{ -moz-outline: none; outline: none; -moz-user-focus: normal; } .x-grid3-row td, .x-grid3-summary-row td { line-height:13px; vertical-align: top; padding-left:1px; padding-right:1px; -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-grid3-cell{ -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-grid3-hd-row td { line-height:15px; vertical-align:middle; border-left:1px solid; border-right:1px solid; } .x-grid3-hd-row .x-grid3-marker-hd { padding:3px; } .x-grid3-row .x-grid3-marker { padding:3px; } .x-grid3-cell-inner, .x-grid3-hd-inner{ overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; padding:3px 3px 3px 5px; white-space: nowrap; } /* ActionColumn, reduce padding to accommodate 16x16 icons in normal row height */ .x-action-col-cell .x-grid3-cell-inner { padding-top: 1px; padding-bottom: 1px; } .x-action-col-icon { cursor: pointer; } .x-grid3-hd-inner { position:relative; cursor:inherit; padding:4px 3px 4px 5px; } .x-grid3-row-body { white-space:normal; } .x-grid3-body-cell { -moz-outline:0 none; outline:0 none; } /* IE Quirks to clip */ .ext-ie .x-grid3-cell-inner, .ext-ie .x-grid3-hd-inner{ width:100%; } /* reverse above in strict mode */ .ext-strict .x-grid3-cell-inner, .ext-strict .x-grid3-hd-inner{ width:auto; } .x-grid-row-loading { background: no-repeat center center; } .x-grid-page { overflow:hidden; } .x-grid3-row { cursor: default; border: 1px solid; width:100%; } .x-grid3-row-over { border:1px solid; background: repeat-x left top; } .x-grid3-resize-proxy { width:1px; left:0; cursor: e-resize; cursor: col-resize; position:absolute; top:0; height:100px; overflow:hidden; visibility:hidden; border:0 none; z-index:7; } .x-grid3-resize-marker { width:1px; left:0; position:absolute; top:0; height:100px; overflow:hidden; visibility:hidden; border:0 none; z-index:7; } .x-grid3-focus { position:absolute; left:0; top:0; width:1px; height:1px; line-height:1px; font-size:1px; -moz-outline:0 none; outline:0 none; -moz-user-select: text; -khtml-user-select: text; -webkit-user-select:ignore; } /* header styles */ .x-grid3-header{ background: repeat-x 0 bottom; cursor:default; zoom:1; padding:1px 0 0 0; } .x-grid3-header-pop { border-left:1px solid; float:right; clear:none; } .x-grid3-header-pop-inner { border-left:1px solid; width:14px; height:19px; background: transparent no-repeat center center; } .ext-ie .x-grid3-header-pop-inner { width:15px; } .ext-strict .x-grid3-header-pop-inner { width:14px; } .x-grid3-header-inner { overflow:hidden; zoom:1; float:left; } .x-grid3-header-offset { padding-left:1px; text-align: left; } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left:1px solid; border-right:1px solid; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background: repeat-x left bottom; } .x-grid3-sort-icon{ background-repeat: no-repeat; display: none; height: 4px; width: 13px; margin-left:3px; vertical-align: middle; } .sort-asc .x-grid3-sort-icon, .sort-desc .x-grid3-sort-icon { display: inline; } /* Header position fixes for IE strict mode */ .ext-strict .ext-ie .x-grid3-header-inner, .ext-strict .ext-ie6 .x-grid3-hd { position:relative; } .ext-strict .ext-ie6 .x-grid3-hd-inner{ position:static; } /* Body Styles */ .x-grid3-body { zoom:1; } .x-grid3-scroller { overflow:auto; zoom:1; position:relative; } .x-grid3-cell-text, .x-grid3-hd-text { display: block; padding: 3px 5px 3px 5px; -moz-user-select: none; -khtml-user-select: none; -webkit-user-select:ignore; } .x-grid3-split { background-position: center; background-repeat: no-repeat; cursor: e-resize; cursor: col-resize; display: block; font-size: 1px; height: 16px; overflow: hidden; position: absolute; top: 2px; width: 6px; z-index: 3; } /* Column Reorder DD */ .x-dd-drag-proxy .x-grid3-hd-inner{ background: repeat-x left bottom; width:120px; padding:3px; border:1px solid; overflow:hidden; } .col-move-top, .col-move-bottom{ width:9px; height:9px; position:absolute; top:0; line-height:1px; font-size:1px; overflow:hidden; visibility:hidden; z-index:20000; background:transparent no-repeat left top; } /* Selection Styles */ .x-grid3-row-selected { border:1px dotted; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background: repeat-x 0 bottom !important; vertical-align:middle !important; padding:0; border-top:1px solid; border-bottom:none !important; border-right:1px solid !important; text-align:center; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ padding:0 4px; text-align:center; } /* dirty cells */ .x-grid3-dirty-cell { background: transparent no-repeat 0 0; } /* Grid Toolbars */ .x-grid3-topbar, .x-grid3-bottombar{ overflow:hidden; display:none; zoom:1; position:relative; } .x-grid3-topbar .x-toolbar{ border-right:0 none; } .x-grid3-bottombar .x-toolbar{ border-right:0 none; border-bottom:0 none; border-top:1px solid; } /* Props Grid Styles */ .x-props-grid .x-grid3-cell{ padding:1px; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background:transparent repeat-y -16px !important; padding-left:12px; } .x-props-grid .x-grid3-body .x-grid3-td-name{ padding:1px; padding-right:0; border:0 none; border-right:1px solid; } /* dd */ .x-grid3-col-dd { border:0 none; padding:0; background-color:transparent; } .x-dd-drag-ghost .x-grid3-dd-wrap { padding:1px 3px 3px 1px; } .x-grid3-hd { -moz-user-select:none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-grid3-hd-btn { display:none; position:absolute; width:14px; background:no-repeat left center; right:0; top:0; z-index:2; cursor:pointer; } .x-grid3-hd-over .x-grid3-hd-btn, .x-grid3-hd-menu-open .x-grid3-hd-btn { display:block; } a.x-grid3-hd-btn:hover { background-position:-14px center; } /* Expanders */ .x-grid3-body .x-grid3-td-expander { background:transparent repeat-y right; } .x-grid3-body .x-grid3-td-expander .x-grid3-cell-inner { padding:0 !important; height:100%; } .x-grid3-row-expander { width:100%; height:18px; background-position:4px 2px; background-repeat:no-repeat; background-color:transparent; } .x-grid3-row-collapsed .x-grid3-row-expander { background-position:4px 2px; } .x-grid3-row-expanded .x-grid3-row-expander { background-position:-21px 2px; } .x-grid3-row-collapsed .x-grid3-row-body { display:none !important; } .x-grid3-row-expanded .x-grid3-row-body { display:block !important; } /* Checkers */ .x-grid3-body .x-grid3-td-checker { background:transparent repeat-y right; } .x-grid3-body .x-grid3-td-checker .x-grid3-cell-inner, .x-grid3-header .x-grid3-td-checker .x-grid3-hd-inner { padding:0 !important; height:100%; } .x-grid3-row-checker, .x-grid3-hd-checker { width:100%; height:18px; background-position:2px 2px; background-repeat:no-repeat; background-color:transparent; } .x-grid3-row .x-grid3-row-checker { background-position:2px 2px; } .x-grid3-row-selected .x-grid3-row-checker, .x-grid3-hd-checker-on .x-grid3-hd-checker,.x-grid3-row-checked .x-grid3-row-checker { background-position:-23px 2px; } .x-grid3-hd-checker { background-position:2px 1px; } .ext-border-box .x-grid3-hd-checker { background-position:2px 3px; } .x-grid3-hd-checker-on .x-grid3-hd-checker { background-position:-23px 1px; } .ext-border-box .x-grid3-hd-checker-on .x-grid3-hd-checker { background-position:-23px 3px; } /* Numberer */ .x-grid3-body .x-grid3-td-numberer { background:transparent repeat-y right; } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { padding:3px 5px 0 0 !important; text-align:right; } /* Row Icon */ .x-grid3-body .x-grid3-td-row-icon { background:transparent repeat-y right; vertical-align:top; text-align:center; } .x-grid3-body .x-grid3-td-row-icon .x-grid3-cell-inner { padding:0 !important; background-position:center center; background-repeat:no-repeat; width:16px; height:16px; margin-left:2px; margin-top:3px; } /* All specials */ .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background:transparent repeat-y right; } .x-grid3-body .x-grid3-check-col-td .x-grid3-cell-inner { padding: 1px 0 0 0 !important; } .x-grid3-check-col { width:100%; height:16px; background-position:center center; background-repeat:no-repeat; background-color:transparent; } .x-grid3-check-col-on { width:100%; height:16px; background-position:center center; background-repeat:no-repeat; background-color:transparent; } /* Grouping classes */ .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom: 2px solid; cursor:pointer; padding-top:6px; } .x-grid-group-hd div.x-grid-group-title { background:transparent no-repeat 3px 3px; padding:4px 4px 4px 17px; } .x-grid-group-collapsed .x-grid-group-body { display:none; } .ext-ie6 .x-grid3 .x-editor .x-form-text, .ext-ie7 .x-grid3 .x-editor .x-form-text { position:relative; top:-1px; } .x-grid-editor .x-form-check-wrap { text-align: center; margin-top: -4px; } .ext-ie .x-props-grid .x-editor .x-form-text { position:static; top:0; } .x-grid-empty { padding:10px; } /* fix floating toolbar issue */ .ext-ie7 .x-grid-panel .x-panel-bbar { position:relative; } /* Reset position to static when Grid Panel has been framed */ /* to resolve 'snapping' from top to bottom behavior. */ /* @forumThread 86656 */ .ext-ie7 .x-grid-panel .x-panel-mc .x-panel-bbar { position: static; } .ext-ie6 .x-grid3-header { position: relative; } /* Fix WebKit bug in Grids */ .ext-webkit .x-grid-panel .x-panel-bwrap{ -webkit-user-select:none; } .ext-webkit .x-tbar-page-number{ -webkit-user-select:ignore; } /* end*/ /* column lines */ .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { padding-right:0; border-right:1px solid; } ================================================ FILE: client/src/ext/resources/css/structure/layout.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-border-layout-ct { position: relative; } .x-border-panel { position:absolute; left:0; top:0; } .x-tool-collapse-south { background-position:0 -195px; } .x-tool-collapse-south-over { background-position:-15px -195px; } .x-tool-collapse-north { background-position:0 -210px; } .x-tool-collapse-north-over { background-position:-15px -210px; } .x-tool-collapse-west { background-position:0 -180px; } .x-tool-collapse-west-over { background-position:-15px -180px; } .x-tool-collapse-east { background-position:0 -165px; } .x-tool-collapse-east-over { background-position:-15px -165px; } .x-tool-expand-south { background-position:0 -210px; } .x-tool-expand-south-over { background-position:-15px -210px; } .x-tool-expand-north { background-position:0 -195px; } .x-tool-expand-north-over { background-position:-15px -195px; } .x-tool-expand-west { background-position:0 -165px; } .x-tool-expand-west-over { background-position:-15px -165px; } .x-tool-expand-east { background-position:0 -180px; } .x-tool-expand-east-over { background-position:-15px -180px; } .x-tool-expand-north, .x-tool-expand-south { float:right; margin:3px; } .x-tool-expand-east, .x-tool-expand-west { float:none; margin:3px 2px; } .x-accordion-hd .x-tool-toggle { background-position:0 -255px; } .x-accordion-hd .x-tool-toggle-over { background-position:-15px -255px; } .x-panel-collapsed .x-accordion-hd .x-tool-toggle { background-position:0 -240px; } .x-panel-collapsed .x-accordion-hd .x-tool-toggle-over { background-position:-15px -240px; } .x-accordion-hd { padding-top:4px; padding-bottom:3px; border-top:0 none; background: transparent repeat-x 0 -9px; } .x-layout-collapsed{ position:absolute; left:-10000px; top:-10000px; visibility:hidden; width:20px; height:20px; overflow:hidden; border:1px solid; z-index:20; } .ext-border-box .x-layout-collapsed{ width:22px; height:22px; } .x-layout-collapsed-over{ cursor:pointer; } .x-layout-collapsed-west .x-layout-collapsed-tools, .x-layout-collapsed-east .x-layout-collapsed-tools{ position:absolute; top:0; left:0; width:20px; height:20px; } .x-layout-split{ position:absolute; height:5px; width:5px; line-height:1px; font-size:1px; z-index:3; background-color:transparent; } /* IE6 strict won't drag w/out a color */ .ext-strict .ext-ie6 .x-layout-split{ background-color: #fff !important; filter: alpha(opacity=1); } .x-layout-split-h{ background-image:url(../images/default/s.gif); background-position: left; } .x-layout-split-v{ background-image:url(../images/default/s.gif); background-position: top; } .x-column-layout-ct { overflow:hidden; zoom:1; } .x-column { float:left; padding:0; margin:0; overflow:hidden; zoom:1; } .x-column-inner { overflow:hidden; zoom:1; } /* mini mode */ .x-layout-mini { position:absolute; top:0; left:0; display:block; width:5px; height:35px; cursor:pointer; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); } .x-layout-mini-over, .x-layout-collapsed-over .x-layout-mini{ opacity:1; -moz-opacity:1; filter:none; } .x-layout-split-west .x-layout-mini { top:48%; } .x-layout-split-east .x-layout-mini { top:48%; } .x-layout-split-north .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-split-south .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-cmini-west .x-layout-mini { top:48%; } .x-layout-cmini-east .x-layout-mini { top:48%; } .x-layout-cmini-north .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-cmini-south .x-layout-mini { left:48%; height:5px; width:35px; } .x-layout-cmini-west, .x-layout-cmini-east { border:0 none; width:5px !important; padding:0; background-color:transparent; } .x-layout-cmini-north, .x-layout-cmini-south { border:0 none; height:5px !important; padding:0; background-color:transparent; } .x-viewport, .x-viewport body { margin: 0; padding: 0; border: 0 none; overflow: hidden; height: 100%; } .x-abs-layout-item { position:absolute; left:0; top:0; } .ext-ie input.x-abs-layout-item, .ext-ie textarea.x-abs-layout-item { margin:0; } .x-box-layout-ct { overflow:hidden; zoom:1; } .x-box-inner { overflow:hidden; zoom:1; position:relative; left:0; top:0; } .x-box-item { position:absolute; left:0; top:0; } ================================================ FILE: client/src/ext/resources/css/structure/list-view.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-list-header{ background: repeat-x 0 bottom; cursor:default; zoom:1; height:22px; } .x-list-header-inner div { display:block; float:left; overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; white-space: nowrap; } .x-list-header-inner div em { display:block; border-left:1px solid; padding:4px 4px; overflow:hidden; -moz-user-select: none; -khtml-user-select: none; line-height:14px; } .x-list-body { overflow:auto; overflow-x:hidden; overflow-y:auto; zoom:1; float: left; width: 100%; } .x-list-body dl { zoom:1; } .x-list-body dt { display:block; float:left; overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; white-space: nowrap; cursor:pointer; zoom:1; } .x-list-body dt em { display:block; padding:3px 4px; overflow:hidden; -moz-user-select: none; -khtml-user-select: none; } .x-list-resizer { border-left:1px solid; border-right:1px solid; position:absolute; left:0; top:0; } .x-list-header-inner em.sort-asc { background: transparent no-repeat center 0; border-style:solid; border-width: 0 1px 1px; padding-bottom:3px; } .x-list-header-inner em.sort-desc { background: transparent no-repeat center -23px; border-style:solid; border-width: 0 1px 1px; padding-bottom:3px; } ================================================ FILE: client/src/ext/resources/css/structure/menu.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-menu { z-index: 15000; zoom: 1; background: repeat-y; } .x-menu-floating{ border: 1px solid; } .x-menu a { text-decoration: none !important; } .ext-ie .x-menu { zoom:1; overflow:hidden; } .x-menu-list{ padding: 2px; background-color:transparent; border:0 none; overflow:hidden; overflow-y: hidden; } .ext-strict .ext-ie .x-menu-list{ position: relative; } .x-menu li{ line-height:100%; } .x-menu li.x-menu-sep-li{ font-size:1px; line-height:1px; } .x-menu-list-item{ white-space: nowrap; display:block; padding:1px; } .x-menu-item{ -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; } .x-menu-item-arrow{ background:transparent no-repeat right; } .x-menu-sep { display:block; font-size:1px; line-height:1px; margin: 2px 3px; border-bottom:1px solid; overflow:hidden; } .x-menu-focus { position:absolute; left:-1px; top:-1px; width:1px; height:1px; line-height:1px; font-size:1px; -moz-outline:0 none; outline:0 none; -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; overflow:hidden; display:block; } a.x-menu-item { cursor: pointer; display: block; line-height: 16px; outline-color: -moz-use-text-color; outline-style: none; outline-width: 0; padding: 3px 21px 3px 27px; position: relative; text-decoration: none; white-space: nowrap; } .x-menu-item-active { background-repeat: repeat-x; background-position: left bottom; border-style:solid; border-width: 1px 0; margin:0 1px; padding: 0; } .x-menu-item-active a.x-menu-item { border-style:solid; border-width:0 1px; margin:0 -1px; } .x-menu-item-icon { border: 0 none; height: 16px; padding: 0; vertical-align: top; width: 16px; position: absolute; left: 3px; top: 3px; margin: 0; background-position:center; } .ext-ie .x-menu-item-icon { left: -24px; } .ext-strict .x-menu-item-icon { left: 3px; } .ext-ie6 .x-menu-item-icon { left: -24px; } .ext-ie .x-menu-item-icon { vertical-align: middle; } .x-menu-check-item .x-menu-item-icon{ background: transparent no-repeat center; } .x-menu-group-item .x-menu-item-icon{ background-color: transparent; } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background: transparent no-repeat center; } .x-date-menu .x-menu-list{ padding: 0; } .x-menu-date-item{ padding:0; } .x-menu .x-color-palette, .x-menu .x-date-picker{ margin-left: 26px; margin-right:4px; } .x-menu .x-date-picker{ border:1px solid; margin-top:2px; margin-bottom:2px; } .x-menu-plain .x-color-palette, .x-menu-plain .x-date-picker{ margin: 0; border: 0 none; } .x-date-menu { padding:0 !important; } /* * fixes separator visibility problem in IE 6 */ .ext-strict .ext-ie6 .x-menu-sep-li { padding: 3px 4px; } .ext-strict .ext-ie6 .x-menu-sep { margin: 0; height: 1px; } /* * Fixes an issue with "fat" separators in webkit */ .ext-webkit .x-menu-sep{ height: 1px; } /* * Ugly mess to remove the white border under the picker */ .ext-ie .x-date-menu{ height: 199px; } .ext-strict .ext-ie .x-date-menu, .ext-border-box .ext-ie8 .x-date-menu{ height: 197px; } .ext-strict .ext-ie7 .x-date-menu{ height: 195px; } .ext-strict .ext-ie8 .x-date-menu{ height: auto; } .x-cycle-menu .x-menu-item-checked { border:1px dotted !important; padding:0; } .x-menu .x-menu-scroller { width: 100%; background-repeat:no-repeat; background-position:center; height:8px; line-height: 8px; cursor:pointer; margin: 0; padding: 0; } .x-menu .x-menu-scroller-active{ height: 6px; line-height: 6px; } .x-menu-list-item-indent{ padding-left: 27px; } ================================================ FILE: client/src/ext/resources/css/structure/panel-reset.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * W3C Suggested Default style sheet for HTML 4 * http://www.w3.org/TR/CSS21/sample.html * * Resets for Ext.Panel @cfg normal: true */ .x-panel-reset .x-panel-body html, .x-panel-reset .x-panel-body address, .x-panel-reset .x-panel-body blockquote, .x-panel-reset .x-panel-body body, .x-panel-reset .x-panel-body dd, .x-panel-reset .x-panel-body div, .x-panel-reset .x-panel-body dl, .x-panel-reset .x-panel-body dt, .x-panel-reset .x-panel-body fieldset, .x-panel-reset .x-panel-body form, .x-panel-reset .x-panel-body frame, frameset, .x-panel-reset .x-panel-body h1, .x-panel-reset .x-panel-body h2, .x-panel-reset .x-panel-body h3, .x-panel-reset .x-panel-body h4, .x-panel-reset .x-panel-body h5, .x-panel-reset .x-panel-body h6, .x-panel-reset .x-panel-body noframes, .x-panel-reset .x-panel-body ol, .x-panel-reset .x-panel-body p, .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body center, .x-panel-reset .x-panel-body dir, .x-panel-reset .x-panel-body hr, .x-panel-reset .x-panel-body menu, .x-panel-reset .x-panel-body pre { display: block } .x-panel-reset .x-panel-body li { display: list-item } .x-panel-reset .x-panel-body head { display: none } .x-panel-reset .x-panel-body table { display: table } .x-panel-reset .x-panel-body tr { display: table-row } .x-panel-reset .x-panel-body thead { display: table-header-group } .x-panel-reset .x-panel-body tbody { display: table-row-group } .x-panel-reset .x-panel-body tfoot { display: table-footer-group } .x-panel-reset .x-panel-body col { display: table-column } .x-panel-reset .x-panel-body colgroup { display: table-column-group } .x-panel-reset .x-panel-body td, .x-panel-reset .x-panel-body th { display: table-cell } .x-panel-reset .x-panel-body caption { display: table-caption } .x-panel-reset .x-panel-body th { font-weight: bolder; text-align: center } .x-panel-reset .x-panel-body caption { text-align: center } .x-panel-reset .x-panel-body body { margin: 8px } .x-panel-reset .x-panel-body h1 { font-size: 2em; margin: .67em 0 } .x-panel-reset .x-panel-body h2 { font-size: 1.5em; margin: .75em 0 } .x-panel-reset .x-panel-body h3 { font-size: 1.17em; margin: .83em 0 } .x-panel-reset .x-panel-body h4, .x-panel-reset .x-panel-body p, .x-panel-reset .x-panel-body blockquote, .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body fieldset, .x-panel-reset .x-panel-body form, .x-panel-reset .x-panel-body ol, .x-panel-reset .x-panel-body dl, .x-panel-reset .x-panel-body dir, .x-panel-reset .x-panel-body menu { margin: 1.12em 0 } .x-panel-reset .x-panel-body h5 { font-size: .83em; margin: 1.5em 0 } .x-panel-reset .x-panel-body h6 { font-size: .75em; margin: 1.67em 0 } .x-panel-reset .x-panel-body h1, .x-panel-reset .x-panel-body h2, .x-panel-reset .x-panel-body h3, .x-panel-reset .x-panel-body h4, .x-panel-reset .x-panel-body h5, .x-panel-reset .x-panel-body h6, .x-panel-reset .x-panel-body b, .x-panel-reset .x-panel-body strong { font-weight: bolder } .x-panel-reset .x-panel-body blockquote { margin-left: 40px; margin-right: 40px } .x-panel-reset .x-panel-body i, .x-panel-reset .x-panel-body cite, .x-panel-reset .x-panel-body em, .x-panel-reset .x-panel-body var, .x-panel-reset .x-panel-body address { font-style: italic } .x-panel-reset .x-panel-body pre, .x-panel-reset .x-panel-body tt, .x-panel-reset .x-panel-body code, .x-panel-reset .x-panel-body kbd, .x-panel-reset .x-panel-body samp { font-family: monospace } .x-panel-reset .x-panel-body pre { white-space: pre } .x-panel-reset .x-panel-body button, .x-panel-reset .x-panel-body textarea, .x-panel-reset .x-panel-body input, .x-panel-reset .x-panel-body select { display: inline-block } .x-panel-reset .x-panel-body big { font-size: 1.17em } .x-panel-reset .x-panel-body small, .x-panel-reset .x-panel-body sub, .x-panel-reset .x-panel-body sup { font-size: .83em } .x-panel-reset .x-panel-body sub { vertical-align: sub } .x-panel-reset .x-panel-body sup { vertical-align: super } .x-panel-reset .x-panel-body table { border-spacing: 2px; } .x-panel-reset .x-panel-body thead, .x-panel-reset .x-panel-body tbody, .x-panel-reset .x-panel-body tfoot { vertical-align: middle } .x-panel-reset .x-panel-body td, .x-panel-reset .x-panel-body th { vertical-align: inherit } .x-panel-reset .x-panel-body s, .x-panel-reset .x-panel-body strike, .x-panel-reset .x-panel-body del { text-decoration: line-through } .x-panel-reset .x-panel-body hr { border: 1px inset } .x-panel-reset .x-panel-body ol, .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body dir, .x-panel-reset .x-panel-body menu, .x-panel-reset .x-panel-body dd { margin-left: 40px } .x-panel-reset .x-panel-body ul, .x-panel-reset .x-panel-body menu, .x-panel-reset .x-panel-body dir { list-style-type: disc;} .x-panel-reset .x-panel-body ol { list-style-type: decimal } .x-panel-reset .x-panel-body ol ul, .x-panel-reset .x-panel-body ul ol, .x-panel-reset .x-panel-body ul ul, .x-panel-reset .x-panel-body ol ol { margin-top: 0; margin-bottom: 0 } .x-panel-reset .x-panel-body u, .x-panel-reset .x-panel-body ins { text-decoration: underline } .x-panel-reset .x-panel-body br:before { content: "\A" } .x-panel-reset .x-panel-body :before, .x-panel-reset .x-panel-body :after { white-space: pre-line } .x-panel-reset .x-panel-body center { text-align: center } .x-panel-reset .x-panel-body :link, .x-panel-reset .x-panel-body :visited { text-decoration: underline } .x-panel-reset .x-panel-body :focus { outline: invert dotted thin } /* Begin bidirectionality settings (do not change) */ .x-panel-reset .x-panel-body BDO[DIR="ltr"] { direction: ltr; unicode-bidi: bidi-override } .x-panel-reset .x-panel-body BDO[DIR="rtl"] { direction: rtl; unicode-bidi: bidi-override } ================================================ FILE: client/src/ext/resources/css/structure/panel.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel { border-style: solid; border-width:0; } .x-panel-header { overflow:hidden; zoom:1; padding:5px 3px 4px 5px; border:1px solid; line-height: 15px; background: transparent repeat-x 0 -1px; } .x-panel-body { border:1px solid; border-top:0 none; overflow:hidden; position: relative; /* added for item scroll positioning */ } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border:1px solid; border-top:0 none; overflow:hidden; padding:2px; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top:1px solid; border-bottom: 0 none; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top:1px solid; } .x-panel-header { overflow:hidden; zoom:1; } .x-panel-tl .x-panel-header { padding:5px 0 4px 0; border:0 none; background:transparent no-repeat; } .x-panel-tl .x-panel-icon, .x-window-tl .x-panel-icon { padding-left:20px !important; background-repeat:no-repeat; background-position:0 4px; zoom:1; } .x-panel-inline-icon { width:16px; height:16px; background-repeat:no-repeat; background-position:0 0; vertical-align:middle; margin-right:4px; margin-top:-1px; margin-bottom:-1px; } .x-panel-tc { background: transparent repeat-x 0 0; overflow:hidden; } /* fix ie7 strict mode bug */ .ext-strict .ext-ie7 .x-panel-tc { overflow: visible; } .x-panel-tl { background: transparent no-repeat 0 0; padding-left:6px; zoom:1; border-bottom:1px solid; } .x-panel-tr { background: transparent no-repeat right 0; zoom:1; padding-right:6px; } .x-panel-bc { background: transparent repeat-x 0 bottom; zoom:1; } .x-panel-bc .x-panel-footer { zoom:1; } .x-panel-bl { background: transparent no-repeat 0 bottom; padding-left:6px; zoom:1; } .x-panel-br { background: transparent no-repeat right bottom; padding-right:6px; zoom:1; } .x-panel-mc { border:0 none; padding:0; margin:0; padding-top:6px; } .x-panel-mc .x-panel-body { background-color:transparent; border: 0 none; } .x-panel-ml { background: repeat-y 0 0; padding-left:6px; zoom:1; } .x-panel-mr { background: transparent repeat-y right 0; padding-right:6px; zoom:1; } .x-panel-bc .x-panel-footer { padding-bottom:6px; } .x-panel-nofooter .x-panel-bc, .x-panel-nofooter .x-window-bc { height:6px; font-size:0; line-height:0; } .x-panel-bwrap { overflow:hidden; zoom:1; left:0; top:0; } .x-panel-body { overflow:hidden; zoom:1; } .x-panel-collapsed .x-resizable-handle{ display:none; } .ext-gecko .x-panel-animated div { overflow:hidden !important; } /* Plain */ .x-plain-body { overflow:hidden; } .x-plain-bbar .x-toolbar { overflow:hidden; padding:2px; } .x-plain-tbar .x-toolbar { overflow:hidden; padding:2px; } .x-plain-bwrap { overflow:hidden; zoom:1; } .x-plain { overflow:hidden; } /* Tools */ .x-tool { overflow:hidden; width:15px; height:15px; float:right; cursor:pointer; background:transparent no-repeat; margin-left:2px; } /* expand / collapse tools */ .x-tool-toggle { background-position:0 -60px; } .x-tool-toggle-over { background-position:-15px -60px; } .x-panel-collapsed .x-tool-toggle { background-position:0 -75px; } .x-panel-collapsed .x-tool-toggle-over { background-position:-15px -75px; } .x-tool-close { background-position:0 -0; } .x-tool-close-over { background-position:-15px 0; } .x-tool-minimize { background-position:0 -15px; } .x-tool-minimize-over { background-position:-15px -15px; } .x-tool-maximize { background-position:0 -30px; } .x-tool-maximize-over { background-position:-15px -30px; } .x-tool-restore { background-position:0 -45px; } .x-tool-restore-over { background-position:-15px -45px; } .x-tool-gear { background-position:0 -90px; } .x-tool-gear-over { background-position:-15px -90px; } .x-tool-prev { background-position:0 -105px; } .x-tool-prev-over { background-position:-15px -105px; } .x-tool-next { background-position:0 -120px; } .x-tool-next-over { background-position:-15px -120px; } .x-tool-pin { background-position:0 -135px; } .x-tool-pin-over { background-position:-15px -135px; } .x-tool-unpin { background-position:0 -150px; } .x-tool-unpin-over { background-position:-15px -150px; } .x-tool-right { background-position:0 -165px; } .x-tool-right-over { background-position:-15px -165px; } .x-tool-left { background-position:0 -180px; } .x-tool-left-over { background-position:-15px -180px; } .x-tool-down { background-position:0 -195px; } .x-tool-down-over { background-position:-15px -195px; } .x-tool-up { background-position:0 -210px; } .x-tool-up-over { background-position:-15px -210px; } .x-tool-refresh { background-position:0 -225px; } .x-tool-refresh-over { background-position:-15px -225px; } .x-tool-plus { background-position:0 -240px; } .x-tool-plus-over { background-position:-15px -240px; } .x-tool-minus { background-position:0 -255px; } .x-tool-minus-over { background-position:-15px -255px; } .x-tool-search { background-position:0 -270px; } .x-tool-search-over { background-position:-15px -270px; } .x-tool-save { background-position:0 -285px; } .x-tool-save-over { background-position:-15px -285px; } .x-tool-help { background-position:0 -300px; } .x-tool-help-over { background-position:-15px -300px; } .x-tool-print { background-position:0 -315px; } .x-tool-print-over { background-position:-15px -315px; } .x-tool-expand { background-position:0 -330px; } .x-tool-expand-over { background-position:-15px -330px; } .x-tool-collapse { background-position:0 -345px; } .x-tool-collapse-over { background-position:-15px -345px; } .x-tool-resize { background-position:0 -360px; } .x-tool-resize-over { background-position:-15px -360px; } .x-tool-move { background-position:0 -375px; } .x-tool-move-over { background-position:-15px -375px; } /* Ghosting */ .x-panel-ghost { z-index:12000; overflow:hidden; position:absolute; left:0;top:0; opacity:.65; -moz-opacity:.65; filter:alpha(opacity=65); } .x-panel-ghost ul { margin:0; padding:0; overflow:hidden; font-size:0; line-height:0; border:1px solid; border-top:0 none; display:block; } .x-panel-ghost * { cursor:move !important; } .x-panel-dd-spacer { border:2px dashed; } /* Buttons */ .x-panel-btns { padding:5px; overflow:hidden; } .x-panel-btns td.x-toolbar-cell{ padding:3px; } .x-panel-btns .x-btn-focus .x-btn-left{ background-position:0 -147px; } .x-panel-btns .x-btn-focus .x-btn-right{ background-position:0 -168px; } .x-panel-btns .x-btn-focus .x-btn-center{ background-position:0 -189px; } .x-panel-btns .x-btn-over .x-btn-left{ background-position:0 -63px; } .x-panel-btns .x-btn-over .x-btn-right{ background-position:0 -84px; } .x-panel-btns .x-btn-over .x-btn-center{ background-position:0 -105px; } .x-panel-btns .x-btn-click .x-btn-center{ background-position:0 -126px; } .x-panel-btns .x-btn-click .x-btn-right{ background-position:0 -84px; } .x-panel-btns .x-btn-click .x-btn-left{ background-position:0 -63px; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ white-space: nowrap; } ================================================ FILE: client/src/ext/resources/css/structure/pivotgrid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-pivotgrid .x-grid3-header-offset table { width: 100%; border-collapse: collapse; } .x-pivotgrid .x-grid3-header-offset table td { padding: 4px 3px 4px 5px; text-align: center; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; font-size: 11px; line-height: 13px; font-family: tahoma; } .x-pivotgrid .x-grid3-row-headers { display: block; float: left; } .x-pivotgrid .x-grid3-row-headers table { height: 100%; width: 100%; border-collapse: collapse; } .x-pivotgrid .x-grid3-row-headers table td { height: 18px; padding: 2px 7px 0 0; text-align: right; text-overflow: ellipsis; font-size: 11px; font-family: tahoma; } .ext-gecko .x-pivotgrid .x-grid3-row-headers table td { height: 21px; } .x-grid3-header-title { top: 0%; left: 0%; position: absolute; text-align: center; vertical-align: middle; font-family: tahoma; font-size: 11px; padding: auto 1px; display: table-cell; } .x-grid3-header-title span { position: absolute; top: 50%; left: 0%; width: 100%; margin-top: -6px; } ================================================ FILE: client/src/ext/resources/css/structure/progress.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-progress-wrap { border:1px solid; overflow:hidden; } .x-progress-inner { height:18px; background:repeat-x; position:relative; } .x-progress-bar { height:18px; float:left; width:0; background: repeat-x left center; border-top:1px solid; border-bottom:1px solid; border-right:1px solid; } .x-progress-text { padding:1px 5px; overflow:hidden; position:absolute; left:0; text-align:center; } .x-progress-text-back { line-height:16px; } .ext-ie .x-progress-text-back { line-height:15px; } .ext-strict .ext-ie7 .x-progress-text-back{ width: 100%; } ================================================ FILE: client/src/ext/resources/css/structure/qtips.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tip{ position: absolute; top: 0; left:0; visibility: hidden; z-index: 20002; border:0 none; } .x-tip .x-tip-close{ height: 15px; float:right; width: 15px; margin:0 0 2px 2px; cursor:pointer; display:none; } .x-tip .x-tip-tc { background: transparent no-repeat 0 -62px; padding-top:3px; overflow:hidden; zoom:1; } .x-tip .x-tip-tl { background: transparent no-repeat 0 0; padding-left:6px; overflow:hidden; zoom:1; } .x-tip .x-tip-tr { background: transparent no-repeat right 0; padding-right:6px; overflow:hidden; zoom:1; } .x-tip .x-tip-bc { background: transparent no-repeat 0 -121px; height:3px; overflow:hidden; } .x-tip .x-tip-bl { background: transparent no-repeat 0 -59px; padding-left:6px; zoom:1; } .x-tip .x-tip-br { background: transparent no-repeat right -59px; padding-right:6px; zoom:1; } .x-tip .x-tip-mc { border:0 none; } .x-tip .x-tip-ml { background: no-repeat 0 -124px; padding-left:6px; zoom:1; } .x-tip .x-tip-mr { background: transparent no-repeat right -124px; padding-right:6px; zoom:1; } .ext-ie .x-tip .x-tip-header,.ext-ie .x-tip .x-tip-tc { font-size:0; line-height:0; } .ext-border-box .x-tip .x-tip-header, .ext-border-box .x-tip .x-tip-tc{ line-height: 1px; } .x-tip .x-tip-header-text { padding:0; margin:0 0 2px 0; } .x-tip .x-tip-body { margin:0 !important; line-height:14px; padding:0; } .x-tip .x-tip-body .loading-indicator { margin:0; } .x-tip-draggable .x-tip-header,.x-tip-draggable .x-tip-header-text { cursor:move; } .x-form-invalid-tip .x-tip-tc { background: repeat-x 0 -12px; padding-top:6px; } .x-form-invalid-tip .x-tip-bc { background: repeat-x 0 -18px; height:6px; } .x-form-invalid-tip .x-tip-bl { background: no-repeat 0 -6px; } .x-form-invalid-tip .x-tip-br { background: no-repeat right -6px; } .x-form-invalid-tip .x-tip-body { padding:2px; } .x-form-invalid-tip .x-tip-body { padding-left:24px; background:transparent no-repeat 2px 2px; } .x-tip-anchor { position: absolute; width: 9px; height: 10px; overflow:hidden; background: transparent no-repeat 0 0; zoom:1; } .x-tip-anchor-bottom { background-position: -9px 0; } .x-tip-anchor-right { background-position: -18px 0; width: 10px; } .x-tip-anchor-left { background-position: -28px 0; width: 10px; } ================================================ FILE: client/src/ext/resources/css/structure/reset.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ html,body,div,dl,dt,dd,ul,ol,li,h1,h2,h3,h4,h5,h6,pre,form,fieldset,input,p,blockquote,th,td{margin:0;padding:0;}img,body,html{border:0;}address,caption,cite,code,dfn,em,strong,th,var{font-style:normal;font-weight:normal;}ol,ul {list-style:none;}caption,th {text-align:left;}h1,h2,h3,h4,h5,h6{font-size:100%;}q:before,q:after{content:'';} .ext-forced-border-box, .ext-forced-border-box * { -moz-box-sizing: border-box; -ms-box-sizing: border-box; -webkit-box-sizing: border-box; } ================================================ FILE: client/src/ext/resources/css/structure/resizable.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-resizable-handle { position:absolute; z-index:100; /* ie needs these */ font-size:1px; line-height:6px; overflow:hidden; filter:alpha(opacity=0); opacity:0; zoom:1; } .x-resizable-handle-east{ width:6px; cursor:e-resize; right:0; top:0; height:100%; } .ext-ie .x-resizable-handle-east { margin-right:-1px; /*IE rounding error*/ } .x-resizable-handle-south{ width:100%; cursor:s-resize; left:0; bottom:0; height:6px; } .ext-ie .x-resizable-handle-south { margin-bottom:-1px; /*IE rounding error*/ } .x-resizable-handle-west{ width:6px; cursor:w-resize; left:0; top:0; height:100%; } .x-resizable-handle-north{ width:100%; cursor:n-resize; left:0; top:0; height:6px; } .x-resizable-handle-southeast{ width:6px; cursor:se-resize; right:0; bottom:0; height:6px; z-index:101; } .x-resizable-handle-northwest{ width:6px; cursor:nw-resize; left:0; top:0; height:6px; z-index:101; } .x-resizable-handle-northeast{ width:6px; cursor:ne-resize; right:0; top:0; height:6px; z-index:101; } .x-resizable-handle-southwest{ width:6px; cursor:sw-resize; left:0; bottom:0; height:6px; z-index:101; } .x-resizable-over .x-resizable-handle, .x-resizable-pinned .x-resizable-handle{ filter:alpha(opacity=100); opacity:1; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-position: left; } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-position: top; } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-position: top left; } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-position:bottom right; } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-position: bottom left; } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-position: top right; } .x-resizable-proxy{ border: 1px dashed; position:absolute; overflow:hidden; display:none; left:0; top:0; z-index:50000; } .x-resizable-overlay{ width:100%; height:100%; display:none; position:absolute; left:0; top:0; z-index:200000; -moz-opacity: 0; opacity:0; filter: alpha(opacity=0); } ================================================ FILE: client/src/ext/resources/css/structure/slider.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* Shared styles */ .x-slider { zoom:1; } .x-slider-inner { position:relative; left:0; top:0; overflow:visible; zoom:1; } .x-slider-focus { position:absolute; left:0; top:0; width:1px; height:1px; line-height:1px; font-size:1px; -moz-outline:0 none; outline:0 none; -moz-user-select: none; -khtml-user-select:none; -webkit-user-select:ignore; display:block; overflow:hidden; } /* Horizontal styles */ .x-slider-horz { padding-left:7px; background:transparent no-repeat 0 -22px; } .x-slider-horz .x-slider-end { padding-right:7px; zoom:1; background:transparent no-repeat right -44px; } .x-slider-horz .x-slider-inner { background:transparent repeat-x 0 0; height:22px; } .x-slider-horz .x-slider-thumb { width:14px; height:15px; position:absolute; left:0; top:3px; background:transparent no-repeat 0 0; } .x-slider-horz .x-slider-thumb-over { background-position: -14px -15px; } .x-slider-horz .x-slider-thumb-drag { background-position: -28px -30px; } /* Vertical styles */ .x-slider-vert { padding-top:7px; background:transparent no-repeat -44px 0; width:22px; } .x-slider-vert .x-slider-end { padding-bottom:7px; zoom:1; background:transparent no-repeat -22px bottom; } .x-slider-vert .x-slider-inner { background:transparent repeat-y 0 0; } .x-slider-vert .x-slider-thumb { width:15px; height:14px; position:absolute; left:3px; bottom:0; background:transparent no-repeat 0 0; } .x-slider-vert .x-slider-thumb-over { background-position: -15px -14px; } .x-slider-vert .x-slider-thumb-drag { background-position: -30px -28px; } ================================================ FILE: client/src/ext/resources/css/structure/tabs.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tab-panel { overflow:hidden; } .x-tab-panel-header, .x-tab-panel-footer { border: 1px solid; overflow:hidden; zoom:1; } .x-tab-panel-header { border: 1px solid; padding-bottom: 2px; } .x-tab-panel-footer { border: 1px solid; padding-top: 2px; } .x-tab-strip-wrap { width:100%; overflow:hidden; position:relative; zoom:1; } ul.x-tab-strip { display:block; width:5000px; zoom:1; } ul.x-tab-strip-top{ padding-top: 1px; background: repeat-x bottom; border-bottom: 1px solid; } ul.x-tab-strip-bottom{ padding-bottom: 1px; background: repeat-x top; border-top: 1px solid; border-bottom: 0 none; } .x-tab-panel-header-plain .x-tab-strip-top { background:transparent !important; padding-top:0 !important; } .x-tab-panel-header-plain { background:transparent !important; border-width:0 !important; padding-bottom:0 !important; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border:1px solid; height:2px; font-size:1px; line-height:1px; } .x-tab-panel-header-plain .x-tab-strip-spacer { border-top: 0 none; } .x-tab-panel-footer-plain .x-tab-strip-spacer { border-bottom: 0 none; } .x-tab-panel-footer-plain .x-tab-strip-bottom { background:transparent !important; padding-bottom:0 !important; } .x-tab-panel-footer-plain { background:transparent !important; border-width:0 !important; padding-top:0 !important; } .ext-border-box .x-tab-panel-header-plain .x-tab-strip-spacer, .ext-border-box .x-tab-panel-footer-plain .x-tab-strip-spacer { height:3px; } ul.x-tab-strip li { float:left; margin-left:2px; } ul.x-tab-strip li.x-tab-edge { float:left; margin:0 !important; padding:0 !important; border:0 none !important; font-size:1px !important; line-height:1px !important; overflow:hidden; zoom:1; background:transparent !important; width:1px; } .x-tab-strip a, .x-tab-strip span, .x-tab-strip em { display:block; } .x-tab-strip a { text-decoration:none !important; -moz-outline: none; outline: none; cursor:pointer; } .x-tab-strip-inner { overflow:hidden; text-overflow: ellipsis; } .x-tab-strip span.x-tab-strip-text { white-space: nowrap; cursor:pointer; padding:4px 0; } .x-tab-strip-top .x-tab-with-icon .x-tab-right { padding-left:6px; } .x-tab-strip .x-tab-with-icon span.x-tab-strip-text { padding-left:20px; background-position: 0 3px; background-repeat: no-repeat; } .x-tab-strip-active, .x-tab-strip-active a.x-tab-right { cursor:default; } .x-tab-strip-active span.x-tab-strip-text { cursor:default; } .x-tab-strip-disabled .x-tabs-text { cursor:default; } .x-tab-panel-body { overflow:hidden; } .x-tab-panel-bwrap { overflow:hidden; } .ext-ie .x-tab-strip .x-tab-right { position:relative; } .x-tab-strip-top .x-tab-strip-active .x-tab-right { margin-bottom:-1px; } /* * For IE8/9 in quirks mode */ .ext-ie8 .x-tab-strip li { position: relative; } .ext-border-box .ext-ie8 .x-tab-strip-top .x-tab-right, .ext-border-box .ext-ie9 .x-tab-strip-top .x-tab-right { top: 1px; } .ext-ie8 .x-tab-strip-top, .ext-ie9 .x-tab-strip-top { padding-top: 1px; } .ext-border-box .ext-ie8 .x-tab-strip-top, .ext-border-box .ext-ie9 .x-tab-strip-top { padding-top: 0; } .ext-ie8 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close, .ext-ie9 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { top:3px; } .ext-border-box .ext-ie8 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close, .ext-border-box .ext-ie9 .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { top:4px; } .ext-ie8 .x-tab-strip-bottom .x-tab-right, .ext-ie9 .x-tab-strip-bottom .x-tab-right{ top:0; } .x-tab-strip-top .x-tab-strip-active .x-tab-right span.x-tab-strip-text { padding-bottom:5px; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { margin-top:-1px; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right span.x-tab-strip-text { padding-top:5px; } .x-tab-strip-top .x-tab-right { background: transparent no-repeat 0 -51px; padding-left:10px; } .x-tab-strip-top .x-tab-left { background: transparent no-repeat right -351px; padding-right:10px; } .x-tab-strip-top .x-tab-strip-inner { background: transparent repeat-x 0 -201px; } .x-tab-strip-top .x-tab-strip-over .x-tab-right { background-position:0 -101px; } .x-tab-strip-top .x-tab-strip-over .x-tab-left { background-position:right -401px; } .x-tab-strip-top .x-tab-strip-over .x-tab-strip-inner { background-position:0 -251px; } .x-tab-strip-top .x-tab-strip-active .x-tab-right { background-position: 0 0; } .x-tab-strip-top .x-tab-strip-active .x-tab-left { background-position: right -301px; } .x-tab-strip-top .x-tab-strip-active .x-tab-strip-inner { background-position: 0 -151px; } .x-tab-strip-bottom .x-tab-right { background: no-repeat bottom right; } .x-tab-strip-bottom .x-tab-left { background: no-repeat bottom left; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background: no-repeat bottom right; } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background: no-repeat bottom left; } .x-tab-strip-bottom .x-tab-left { margin-right: 3px; padding:0 10px; } .x-tab-strip-bottom .x-tab-right { padding:0; } .x-tab-strip .x-tab-strip-close { display:none; } .x-tab-strip-closable { position:relative; } .x-tab-strip-closable .x-tab-left { padding-right:19px; } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { opacity:.6; -moz-opacity:.6; background-repeat:no-repeat; display:block; width:11px; height:11px; position:absolute; top:3px; right:3px; cursor:pointer; z-index:2; } .x-tab-strip .x-tab-strip-active a.x-tab-strip-close { opacity:.8; -moz-opacity:.8; } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ opacity:1; -moz-opacity:1; } .x-tab-panel-body { border: 1px solid; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background: transparent no-repeat -18px 0; border-bottom: 1px solid; width:18px; position:absolute; left:0; top:0; z-index:10; cursor:pointer; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background: transparent no-repeat 0 0; border-bottom: 1px solid; width:18px; position:absolute; right:0; top:0; z-index:10; cursor:pointer; } .x-tab-scroller-right-over { background-position: -18px 0; } .x-tab-scroller-right-disabled { background-position: 0 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scrolling-bottom .x-tab-scroller-left, .x-tab-scrolling-bottom .x-tab-scroller-right{ margin-top: 1px; } .x-tab-scrolling .x-tab-strip-wrap { margin-left:18px; margin-right:18px; } .x-tab-scrolling { position:relative; } .x-tab-panel-bbar .x-toolbar { border:1px solid; border-top:0 none; overflow:hidden; padding:2px; } .x-tab-panel-tbar .x-toolbar { border:1px solid; border-top:0 none; overflow:hidden; padding:2px; } ================================================ FILE: client/src/ext/resources/css/structure/toolbar.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-toolbar{ border-style:solid; border-width:0 0 1px 0; display: block; padding:2px; background:repeat-x top left; position:relative; left:0; top:0; zoom:1; overflow:hidden; } .x-toolbar-left { width: 100%; } .x-toolbar .x-item-disabled .x-btn-icon { opacity: .35; -moz-opacity: .35; filter: alpha(opacity=35); } .x-toolbar td { vertical-align:middle; } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ white-space: nowrap; } .x-toolbar .x-item-disabled { cursor:default; opacity:.6; -moz-opacity:.6; filter:alpha(opacity=60); } .x-toolbar .x-item-disabled * { cursor:default; } .x-toolbar .x-toolbar-cell { vertical-align:middle; } .x-toolbar .x-btn-tl, .x-toolbar .x-btn-tr, .x-toolbar .x-btn-tc, .x-toolbar .x-btn-ml, .x-toolbar .x-btn-mr, .x-toolbar .x-btn-mc, .x-toolbar .x-btn-bl, .x-toolbar .x-btn-br, .x-toolbar .x-btn-bc { background-position: 500px 500px; } /* These rules are duplicated from button.css to give priority of x-toolbar rules above */ .x-toolbar .x-btn-over .x-btn-tl{ background-position: -6px 0; } .x-toolbar .x-btn-over .x-btn-tr{ background-position: -9px 0; } .x-toolbar .x-btn-over .x-btn-tc{ background-position: 0 -9px; } .x-toolbar .x-btn-over .x-btn-ml{ background-position: -6px -24px; } .x-toolbar .x-btn-over .x-btn-mr{ background-position: -9px -24px; } .x-toolbar .x-btn-over .x-btn-mc{ background-position: 0 -2168px; } .x-toolbar .x-btn-over .x-btn-bl{ background-position: -6px -3px; } .x-toolbar .x-btn-over .x-btn-br{ background-position: -9px -3px; } .x-toolbar .x-btn-over .x-btn-bc{ background-position: 0 -18px; } .x-toolbar .x-btn-click .x-btn-tl, .x-toolbar .x-btn-menu-active .x-btn-tl, .x-toolbar .x-btn-pressed .x-btn-tl{ background-position: -12px 0; } .x-toolbar .x-btn-click .x-btn-tr, .x-toolbar .x-btn-menu-active .x-btn-tr, .x-toolbar .x-btn-pressed .x-btn-tr{ background-position: -15px 0; } .x-toolbar .x-btn-click .x-btn-tc, .x-toolbar .x-btn-menu-active .x-btn-tc, .x-toolbar .x-btn-pressed .x-btn-tc{ background-position: 0 -12px; } .x-toolbar .x-btn-click .x-btn-ml, .x-toolbar .x-btn-menu-active .x-btn-ml, .x-toolbar .x-btn-pressed .x-btn-ml{ background-position: -12px -24px; } .x-toolbar .x-btn-click .x-btn-mr, .x-toolbar .x-btn-menu-active .x-btn-mr, .x-toolbar .x-btn-pressed .x-btn-mr{ background-position: -15px -24px; } .x-toolbar .x-btn-click .x-btn-mc, .x-toolbar .x-btn-menu-active .x-btn-mc, .x-toolbar .x-btn-pressed .x-btn-mc{ background-position: 0 -3240px; } .x-toolbar .x-btn-click .x-btn-bl, .x-toolbar .x-btn-menu-active .x-btn-bl, .x-toolbar .x-btn-pressed .x-btn-bl{ background-position: -12px -3px; } .x-toolbar .x-btn-click .x-btn-br, .x-toolbar .x-btn-menu-active .x-btn-br, .x-toolbar .x-btn-pressed .x-btn-br{ background-position: -15px -3px; } .x-toolbar .x-btn-click .x-btn-bc, .x-toolbar .x-btn-menu-active .x-btn-bc, .x-toolbar .x-btn-pressed .x-btn-bc{ background-position: 0 -21px; } .x-toolbar div.xtb-text{ padding:2px 2px 0; line-height:16px; display:block; } .x-toolbar .xtb-sep { background-position: center; background-repeat: no-repeat; display: block; font-size: 1px; height: 16px; width:4px; overflow: hidden; cursor:default; margin: 0 2px 0; border:0; } .x-toolbar .xtb-spacer { width:2px; } /* Paging Toolbar */ .x-tbar-page-number{ width:30px; height:14px; } .ext-ie .x-tbar-page-number{ margin-top: 2px; } .x-paging-info { position:absolute; top:5px; right: 8px; } /* floating */ .x-toolbar-ct { width:100%; } .x-toolbar-right td { text-align: center; } .x-panel-tbar, .x-panel-bbar, .x-window-tbar, .x-window-bbar, .x-tab-panel-tbar, .x-tab-panel-bbar, .x-plain-tbar, .x-plain-bbar { overflow:hidden; zoom:1; } .x-toolbar-more .x-btn-small .x-btn-text{ height: 16px; width: 12px; } .x-toolbar-more em.x-btn-arrow { display:inline; background-color:transparent; padding-right:0; } .x-toolbar-more .x-btn-mc em.x-btn-arrow { background-image: none; } div.x-toolbar-no-items { color:gray !important; padding:5px 10px !important; } /* fix ie toolbar form items */ .ext-border-box .x-toolbar-cell .x-form-text { margin-bottom:-1px !important; } .ext-border-box .x-toolbar-cell .x-form-field-wrap .x-form-text { margin:0 !important; } .ext-ie .x-toolbar-cell .x-form-field-wrap { height:21px; } .ext-ie .x-toolbar-cell .x-form-text { position:relative; top:-1px; } .ext-strict .ext-ie8 .x-toolbar-cell .x-form-field-trigger-wrap .x-form-text, .ext-strict .ext-ie .x-toolbar-cell .x-form-text { top: 0px; } .x-toolbar-right td .x-form-field-trigger-wrap{ text-align: left; } .x-toolbar-cell .x-form-checkbox, .x-toolbar-cell .x-form-radio{ margin-top: 5px; } .x-toolbar-cell .x-form-cb-label{ vertical-align: bottom; top: 1px; } .ext-ie .x-toolbar-cell .x-form-checkbox, .ext-ie .x-toolbar-cell .x-form-radio{ margin-top: 4px; } .ext-ie .x-toolbar-cell .x-form-cb-label{ top: 0; } ================================================ FILE: client/src/ext/resources/css/structure/tree.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-strict .ext-ie .x-tree .x-panel-bwrap{ position:relative; overflow:hidden; } .x-tree-icon, .x-tree-ec-icon, .x-tree-elbow-line, .x-tree-elbow, .x-tree-elbow-end, .x-tree-elbow-plus, .x-tree-elbow-minus, .x-tree-elbow-end-plus, .x-tree-elbow-end-minus{ border: 0 none; height: 18px; margin: 0; padding: 0; vertical-align: top; width: 16px; background-repeat: no-repeat; } .x-tree-node-collapsed .x-tree-node-icon, .x-tree-node-expanded .x-tree-node-icon, .x-tree-node-leaf .x-tree-node-icon{ border: 0 none; height: 18px; margin: 0; padding: 0; vertical-align: top; width: 16px; background-position:center; background-repeat: no-repeat; } .ext-ie .x-tree-node-indent img, .ext-ie .x-tree-node-icon, .ext-ie .x-tree-ec-icon { vertical-align: middle !important; } .ext-strict .ext-ie8 .x-tree-node-indent img, .ext-strict .ext-ie8 .x-tree-node-icon, .ext-strict .ext-ie8 .x-tree-ec-icon { vertical-align: top !important; } /* checkboxes */ input.x-tree-node-cb { margin-left:1px; height: 19px; vertical-align: bottom; } .ext-ie input.x-tree-node-cb { margin-left:0; margin-top: 1px; width: 16px; height: 16px; vertical-align: middle; } .ext-strict .ext-ie8 input.x-tree-node-cb{ margin: 1px 1px; height: 14px; vertical-align: bottom; } .ext-strict .ext-ie8 input.x-tree-node-cb + a{ vertical-align: bottom; } .ext-opera input.x-tree-node-cb { height: 14px; vertical-align: middle; } .x-tree-noicon .x-tree-node-icon{ width:0; height:0; } /* No line styles */ .x-tree-no-lines .x-tree-elbow{ background-color:transparent; } .x-tree-no-lines .x-tree-elbow-end{ background-color:transparent; } .x-tree-no-lines .x-tree-elbow-line{ background-color:transparent; } /* Arrows */ .x-tree-arrows .x-tree-elbow{ background-color:transparent; } .x-tree-arrows .x-tree-elbow-plus{ background:transparent no-repeat 0 0; } .x-tree-arrows .x-tree-elbow-minus{ background:transparent no-repeat -16px 0; } .x-tree-arrows .x-tree-elbow-end{ background-color:transparent; } .x-tree-arrows .x-tree-elbow-end-plus{ background:transparent no-repeat 0 0; } .x-tree-arrows .x-tree-elbow-end-minus{ background:transparent no-repeat -16px 0; } .x-tree-arrows .x-tree-elbow-line{ background-color:transparent; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-plus{ background-position:-32px 0; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-minus{ background-position:-48px 0; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-end-plus{ background-position:-32px 0; } .x-tree-arrows .x-tree-ec-over .x-tree-elbow-end-minus{ background-position:-48px 0; } .x-tree-elbow-plus, .x-tree-elbow-minus, .x-tree-elbow-end-plus, .x-tree-elbow-end-minus{ cursor:pointer; } .ext-ie ul.x-tree-node-ct{ font-size:0; line-height:0; zoom:1; } .x-tree-node{ white-space: nowrap; } .x-tree-node-el { line-height:18px; cursor:pointer; } .x-tree-node a, .x-dd-drag-ghost a{ text-decoration:none; -khtml-user-select:none; -moz-user-select:none; -webkit-user-select:ignore; -kthml-user-focus:normal; -moz-user-focus:normal; -moz-outline: 0 none; outline:0 none; } .x-tree-node a span, .x-dd-drag-ghost a span{ text-decoration:none; padding:1px 3px 1px 2px; } .x-tree-node .x-tree-node-disabled .x-tree-node-icon{ -moz-opacity: 0.5; opacity:.5; filter: alpha(opacity=50); } .x-tree-node .x-tree-node-inline-icon{ background-color:transparent; } .x-tree-node a:hover, .x-dd-drag-ghost a:hover{ text-decoration:none; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom:1px dotted; } .x-tree-node div.x-tree-drag-insert-above{ border-top:1px dotted; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below{ border-bottom:0 none; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above{ border-top:0 none; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom:2px solid; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top:2px solid; } .x-tree-node .x-tree-drag-append a span{ border:1px dotted; } .x-dd-drag-ghost .x-tree-node-indent, .x-dd-drag-ghost .x-tree-ec-icon{ display:none !important; } /* Fix for ie rootVisible:false issue */ .x-tree-root-ct { zoom:1; } ================================================ FILE: client/src/ext/resources/css/structure/window.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window { zoom:1; } .x-window .x-window-handle { opacity:0; -moz-opacity:0; filter:alpha(opacity=0); } .x-window-proxy { border:1px solid; z-index:12000; overflow:hidden; position:absolute; left:0;top:0; display:none; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); } .x-window-header { overflow:hidden; zoom:1; } .x-window-bwrap { z-index:1; position:relative; zoom:1; left:0;top:0; } .x-window-tl .x-window-header { padding:5px 0 4px 0; } .x-window-header-text { cursor:pointer; } .x-window-tc { background: transparent repeat-x 0 0; overflow:hidden; zoom:1; } .x-window-tl { background: transparent no-repeat 0 0; padding-left:6px; zoom:1; z-index:1; position:relative; } .x-window-tr { background: transparent no-repeat right 0; padding-right:6px; } .x-window-bc { background: transparent repeat-x 0 bottom; zoom:1; } .x-window-bc .x-window-footer { padding-bottom:6px; zoom:1; font-size:0; line-height:0; } .x-window-bl { background: transparent no-repeat 0 bottom; padding-left:6px; zoom:1; } .x-window-br { background: transparent no-repeat right bottom; padding-right:6px; zoom:1; } .x-window-mc { border:1px solid; padding:0; margin:0; } .x-window-ml { background: transparent repeat-y 0 0; padding-left:6px; zoom:1; } .x-window-mr { background: transparent repeat-y right 0; padding-right:6px; zoom:1; } .x-window-body { overflow:hidden; } .x-window-bwrap { overflow:hidden; } .x-window-maximized .x-window-bl, .x-window-maximized .x-window-br, .x-window-maximized .x-window-ml, .x-window-maximized .x-window-mr, .x-window-maximized .x-window-tl, .x-window-maximized .x-window-tr { padding:0; } .x-window-maximized .x-window-footer { padding-bottom:0; } .x-window-maximized .x-window-tc { padding-left:3px; padding-right:3px; } .x-window-maximized .x-window-mc { border-left:0 none; border-right:0 none; } .x-window-tbar .x-toolbar, .x-window-bbar .x-toolbar { border-left:0 none; border-right: 0 none; } .x-window-bbar .x-toolbar { border-top:1px solid; border-bottom:0 none; } .x-window-draggable, .x-window-draggable .x-window-header-text { cursor:move; } .x-window-maximized .x-window-draggable, .x-window-maximized .x-window-draggable .x-window-header-text { cursor:default; } .x-window-body { background-color:transparent; } .x-panel-ghost .x-window-tl { border-bottom:1px solid; } .x-panel-collapsed .x-window-tl { border-bottom:1px solid; } .x-window-maximized-ct { overflow:hidden; } .x-window-maximized .x-window-handle { display:none; } .x-window-sizing-ghost ul { border:0 none !important; } .x-dlg-focus{ -moz-outline:0 none; outline:0 none; width:0; height:0; overflow:hidden; position:absolute; top:0; left:0; } .ext-webkit .x-dlg-focus{ width: 1px; height: 1px; } .x-dlg-mask{ z-index:10000; display:none; position:absolute; top:0; left:0; -moz-opacity: 0.5; opacity:.50; filter: alpha(opacity=50); } body.ext-ie6.x-body-masked select { visibility:hidden; } body.ext-ie6.x-body-masked .x-window select { visibility:visible; } .x-window-plain .x-window-mc { border: 1px solid; } .x-window-plain .x-window-body { border: 1px solid; background:transparent !important; } ================================================ FILE: client/src/ext/resources/css/theme-access/borders.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel-noborder .x-panel-header-noborder { border-bottom-color:#343d4e; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#343d4e; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#343d4e; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#343d4e; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#343d4e; } ================================================ FILE: client/src/ext/resources/css/theme-access/box.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif; color: #393939; font-size: 15px; } .x-box-mc h3 { font-size: 18px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/button.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-btn { font:normal 14px tahoma, verdana, helvetica; } .x-btn button { font:normal 14px arial,tahoma,verdana,helvetica; color:#fffffa; padding-left:6px !important; padding-right:6px !important; } .x-btn-over .x-btn button{ color:#fff; } .x-btn-noicon .x-btn-small .x-btn-text, .x-btn-text-icon .x-btn-icon-small-left .x-btn-text, .x-btn-icon .x-btn-small .x-btn-text, .x-btn-text-icon .x-btn-icon-small-right .x-btn-text { height:18px; } .x-btn-icon .x-btn-small .x-btn-text { width:18px; } .x-btn-text-icon .x-btn-icon-small-left .x-btn-text { padding-left:21px !important; } .x-btn-text-icon .x-btn-icon-small-right .x-btn-text { padding-right:21px !important; } .x-btn-text-icon .x-btn-icon-medium-left .x-btn-text { padding-left:29px !important; } .x-btn-text-icon .x-btn-icon-medium-right .x-btn-text { padding-right:29px !important; } .x-btn-text-icon .x-btn-icon-large-left .x-btn-text { padding-left:37px !important; } .x-btn-text-icon .x-btn-icon-large-right .x-btn-text { padding-right:37px !important; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/access/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#fff; } .x-btn-disabled *{ color:#eee !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/access/button/arrow.gif); padding-right:13px; } .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow.gif); padding-right:20px; } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/access/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-bo.gif); } .x-btn-group-header { color: #d2d2d2; } .x-btn-group-tc { background-image: url(../images/access/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/access/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/access/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/access/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/access/button/group-tb.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/combo.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-combo-list { border:2px solid #232732; background-color:#555566; font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-combo-list-inner { background-color:#414551; } .x-combo-list-hd { font:bold 14px tahoma, arial, helvetica, sans-serif; color:#fff; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#98c0f4; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#98c0f4; } .x-combo-list-item { border-color:#556; } .x-combo-list .x-combo-selected { border-color:#e5872c !important; background-color:#e5872c; } .x-combo-list .x-toolbar { border-top-color:#98c0f4; } .x-combo-list-small { font:normal 14px tahoma, arial, helvetica, sans-serif; } ================================================ FILE: client/src/ext/resources/css/theme-access/core.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ body { background-color:#16181a; color:#fcfcfc; } .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#223; background-color:#3f4757; background-image:url(../images/access/box/tb-blue.gif); } .ext-el-mask-msg div { background-color: #232d38; border-color:#556; color:#fff; font:normal 14px tahoma, arial, helvetica, sans-serif; } .x-mask-loading div { background-color:#232d38; background-image:url(../images/access/grid/loading.gif); } .x-item-disabled { color: #ddd; } .x-item-disabled * { color: #ddd !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#8bb8f3; background-color: #deecfd; } .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 14px; background-image: url(../images/access/grid/loading.gif); } .x-spotlight { background-color: #ccc; } ================================================ FILE: client/src/ext/resources/css/theme-access/date-picker.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-date-picker { border-color: #737b8c; background-color:#21252e; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/access/shared/hd-sprite.gif); color:#fff; font:bold 14px "sans serif", tahoma, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/access/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/access/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/access/shared/left-btn.gif); } .x-date-inner th { background-color:#363d4a; background-image:url(../images/access/toolbar/bg.gif); border-bottom-color:#535b5c; font:normal 13px arial, helvetica,tahoma,sans-serif; color:#fff; } .x-date-inner td { border-color:#112; } .x-date-inner a { font:normal 14px arial, helvetica,tahoma,sans-serif; color:#fff; padding:2px 7px 1px 3px; /* Structure to account for larger, bolder fonts in Access theme. */ } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-color:#e5872c; background-image:none; border-color:#864900; padding:1px 6px 1px 2px; /* Structure to account for larger, bolder fonts in Access theme. */ } .x-date-inner .x-date-today a{ border-color:#99a; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#737b8c; background-color:#464d5a; background-image:url(../images/access/shared/glass-bg.gif); } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#fff; background-color:#7e5530; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:13px; color:#000; } .x-date-mp { background-color:#21252e; } .x-date-mp td { font:normal 14px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns button { background-color:#083772; color:#fff; border-color: #3366cc #000055 #000055 #3366cc; font:normal 14px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns { background-color: #dfecfb; background-image: url(../images/access/shared/glass-bg.gif); } .x-date-mp-btns td { border-top-color: #c5d2df; } td.x-date-mp-month a,td.x-date-mp-year a { color:#fff; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#fff; background-color: #7e5530; } td.x-date-mp-sel a { background-color: #e5872c; background-image: none; border-color:#864900; } .x-date-mp-ybtn a { background-image:url(../images/access/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#c5d2df; } ================================================ FILE: client/src/ext/resources/css/theme-access/dd.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-dd-drag-ghost{ color:#000; font: normal 14px arial, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#c3daf9; border-color:#3399bb; } ================================================ FILE: client/src/ext/resources/css/theme-access/debug.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ #x-debug-browser .x-tree .x-tree-node a span { color:#222297; font-size:14px; font-family:"monotype","courier new",sans-serif; } #x-debug-browser .x-tree a i { color:#ff4545; font-style:normal; } #x-debug-browser .x-tree a em { color:#999; } #x-debug-browser .x-tree .x-tree-node .x-tree-selected a span{ background-color:#c3daf9; } ================================================ FILE: client/src/ext/resources/css/theme-access/dialog.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:15px; } .x-window-dlg .ext-mb-textarea { font:normal 15px tahoma,arial,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/access/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/access/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/access/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/access/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/access/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/editor.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-html-editor-wrap { border-color:#737B8C; background-color:#fff; } .x-html-editor-wrap iframe { background-color: #fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/access/editor/tb-sprite.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/form.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-form-field { font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-form-text, textarea.x-form-field{ color: #ffffff; background-color:#33373d; background-image:url(../images/access/form/text-bg.gif); border-color:#737b8c; border-width:2px; } .ext-webkit .x-form-text, .ext-webkit textarea.x-form-field{ border-width:2px; } .x-form-text, .ext-ie .x-form-file { height:26px; } .ext-strict .x-form-text { height:20px; } .x-form-select-one { background-color:#fff; border-color:#b5b8c8; } .x-form-check-group-label { border-bottom: 1px solid #99bbe8; color: #fff; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger{ background-image:url(../images/access/form/trigger.gif); border-bottom-color:#737b8c; border-bottom-width:2px; height:24px; width:20px; } .x-form-field-wrap .x-form-trigger.x-form-trigger-over{ border-bottom-color:#d97e27; } .x-form-field-wrap .x-form-trigger.x-form-trigger-click{ border-bottom-color:#c86e19; } .x-small-editor .x-form-field-wrap .x-form-trigger { height:24px; } .x-form-field-wrap .x-form-trigger-over { background-position:-20px 0; } .x-form-field-wrap .x-form-trigger-click { background-position:-40px 0; } .x-trigger-wrap-focus .x-form-trigger { background-position:-60px 0; } .x-trigger-wrap-focus .x-form-trigger-over { background-position:-80px 0; } .x-trigger-wrap-focus .x-form-trigger-click { background-position:-100px 0; } .x-form-field-wrap .x-form-date-trigger{ background-image: url(../images/access/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger{ background-image: url(../images/access/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger{ background-image: url(../images/access/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger{ border-bottom-color:#737b8c; } .x-item-disabled .x-form-trigger-over{ border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click{ border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus{ border-color:#ff9c33; } .x-form-invalid, textarea.x-form-invalid, .ext-webkit .x-form-invalid, .ext-webkit textarea.x-form-invalid{ background-color:#15171a; background-image:url(../images/access/grid/invalid_line.gif); border-color:#c30; } /* .ext-safari .x-form-invalid{ background-color:#fee; border-color:#ff7870; } */ .x-form-inner-invalid, textarea.x-form-inner-invalid{ background-color:#fff; background-image:url(../images/access/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-form-item { font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 14px tahoma, arial, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:#dadadd; } .x-small-editor .x-form-text { height: 26px; } .x-small-editor .x-form-field { font:normal 14px arial, tahoma, helvetica, sans-serif; } .ext-safari .x-small-editor .x-form-field { font:normal 15px arial, tahoma, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/access/form/exclamation.gif); height:25px; width:19px; background-position:center right; } .x-fieldset { border-color:#737B8C; } .x-fieldset legend { font:bold 14px tahoma, arial, helvetica, sans-serif; color:#fff; } ================================================ FILE: client/src/ext/resources/css/theme-access/grid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-grid3 { background-color:#1f2933; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#223; } .x-grid3-hd-row td, .x-grid3-row td, .x-grid3-summary-row td{ font:normal 14px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#556; border-right-color:#223; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border:0 none; border-bottom:1px solid #111; border-right:1px solid #1a1a1c; } .x-grid3-row-alt{ background-color:#1b232b; } .x-grid3-row-over { background-color:#7e5530; } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#3b3f50; background-image:url(../images/access/grid/grid3-hrow.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#889; border-right-color:#445; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#4e628a; background-image:url(../images/access/grid/grid3-hrow-over.gif); } .x-grid3-cell-inner, .x-grid3-hd-inner { color:#fff; } .sort-asc .x-grid3-sort-icon { background-image: url(../images/access/grid/sort_asc.gif); width:15px; height:9px; margin-left:5px; } .sort-desc .x-grid3-sort-icon { background-image: url(../images/access/grid/sort_desc.gif); width:15px; height:9px; margin-left:5px; } .x-grid3-cell-text, .x-grid3-hd-text { color:#fff; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#fff; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#ebf3fd; background-image:url(../images/access/grid/grid3-hrow-over.gif); border-color:#aaccf6; } .col-move-top{ background-image:url(../images/default/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/default/grid/col-move-bottom.gif); } .x-grid3-row-selected { background-color: #e5872c !important; background-image: none; border-style: solid; } .x-grid3-row-selected .x-grid3-cell { color: #fff; } .x-grid3-cell-selected { background-color: #ffa340 !important; color:#fff; } .x-grid3-cell-selected span{ color:#fff !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#fff; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#fff; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#fff !important; } .x-grid3-dirty-cell { background-image:url(../images/access/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 14px arial, tahoma, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/access/grid/grid3-special-col-bg.gif) !important; color:#fff !important; } .x-props-grid .x-grid3-td-value { color:#fff !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#263240 !important; border-right-color:#223; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#c2c9d0; background-image:url(../images/access/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/access/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#fff; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/access/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#4e628a; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/access/grid/group-collapse.gif); background-position:3px 6px; color:#ffd; font:bold 14px tahoma, arial, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/access/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 14px tahoma, arial, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row{ border-top-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#a3bae9; } ================================================ FILE: client/src/ext/resources/css/theme-access/layout.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-border-layout-ct { background-color:#3f4757; } .x-accordion-hd { color:#fff; font-weight:normal; background-image: url(../images/access/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#323845; border-color:#1a1a1c; } .x-layout-collapsed-over{ background-color:#2d3440; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/list-view.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-list-header{ background-color:#393d4e; background-image:url(../images/access/toolbar/bg.gif); background-position:0 top; } .x-list-header-inner div em { border-left-color:#667; font:normal 14px arial, tahoma, helvetica, sans-serif; line-height: 14px; } .x-list-body-inner { background-color:#1B232B; } .x-list-body dt em { font:normal 14px arial, tahoma, helvetica, sans-serif; } .x-list-over { background-color:#7E5530; } .x-list-selected { background-color:#E5872C; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/access/grid/sort-hd.gif); border-color: #3e4e6c; } ================================================ FILE: client/src/ext/resources/css/theme-access/menu.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-menu { border-color:#222; background-color:#414551; background-image:url(../images/access/menu/menu.gif); } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 14px tahoma,arial, sans-serif; } .x-menu-item-arrow{ background-image:url(../images/access/menu/menu-parent.gif); } .x-menu-sep { background-color:#223; border-bottom-color:#666; } a.x-menu-item { color:#fffff6; } .x-menu-item-active { background-color: #f09134; background-image: none; border-color:#b36427; } .x-menu-item-active a.x-menu-item { border-color:#b36427; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/access/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#fff !important; } .x-menu .x-date-picker{ border-color:#a3bad9; } .x-cycle-menu .x-menu-item-checked { border-color:#a3bae9 !important; background-color:#def8f6; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/panel.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel { border-color: #18181a; font-size: 14px; } .x-panel-header { color:#fff; font-weight:bold; font-size: 14px; font-family: tahoma,arial,verdana,sans-serif; border-color:#18181a; background-image: url(../images/access/panel/white-top-bottom.gif); } .x-panel-body { color: #fffff6; border-color:#18181a; background-color:#232d38; } .x-tab-panel .x-panel-body { color: #fffff6; border-color:#18181a; background-color:#1f2730; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#223; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#223; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#223; } .x-panel-tl .x-panel-header { color:#fff; font:bold 14px tahoma,arial,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/access/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/access/panel/corners-sprite.gif); border-bottom-color:#222224; } .x-panel-bc { background-image: url(../images/access/panel/top-bottom.gif); } .x-panel-mc { font: normal 14px tahoma,arial,helvetica,sans-serif; background-color:#3f4757; } .x-panel-ml { background-image:url(../images/access/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/access/panel/left-right.gif); } .x-tool { background-image:url(../images/access/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#3f4757; } .x-panel-ghost ul { border-color:#18181a; } .x-panel-dd-spacer { border-color:#18181a; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 14px arial,tahoma, helvetica, sans-serif; } ================================================ FILE: client/src/ext/resources/css/theme-access/progress.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-progress-wrap { border-color:#18181a; } .x-progress-inner { background-color:#232d38; background-image:none; } .x-progress-bar { background-color:#f39a00; background-image:url(../images/access/progress/progress-bg.gif); border-top-color:#a66900; border-bottom-color:#a66900; border-right-color:#ffb941; height: 20px !important; /* structural override for Accessibility Theme */ } .x-progress-text { font-size:14px; font-weight:bold; color:#fff; padding: 0 5px !important; /* structural override for Accessibility Theme */ } .x-progress-text-back { color:#aaa; line-height: 19px; } ================================================ FILE: client/src/ext/resources/css/theme-access/qtips.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tip .x-tip-close{ background-image: url(../images/access/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/access/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 14px tahoma,arial,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 14px tahoma,arial,helvetica,sans-serif; color:#ffd; } .x-tip .x-tip-body { font: normal 14px tahoma,arial,helvetica,sans-serif; color:#000; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/access/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/access/qtip/tip-anchor-sprite.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/resizable.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-resizable-handle { background-color:#fff; color: #000; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/access/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/access/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/access/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/access/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/access/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/access/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/access/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#3b5a82; } .x-resizable-overlay{ background-color:#fff; } ================================================ FILE: client/src/ext/resources/css/theme-access/slider.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/access/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/access/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/access/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/access/slider/slider-v-thumb.png); } ================================================ FILE: client/src/ext/resources/css/theme-access/tabs.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tab-panel-header, .x-tab-panel-footer { background-color:#e18325; border-color:#8db2e3; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#222; } ul.x-tab-strip-top{ background-color:#343843; background-image: url(../images/access/tabs/tab-strip-bg.gif); border-bottom-color:#343d4e; } ul.x-tab-strip-bottom{ background-color:#343843; background-image: url(../images/access/tabs/tab-strip-btm-bg.gif); border-top-color:#343843; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#222; background-color:#e18325; } .x-tab-strip span.x-tab-strip-text { font:normal 14px tahoma,arial,helvetica; color:#fff; } .x-tab-strip-over span.x-tab-strip-text { color:#fff; } .x-tab-strip-active span.x-tab-strip-text { color:#fff; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/access/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/access/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/access/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/access/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/access/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/access/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/access/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#18181a; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/access/tabs/scroll-left.gif); border-bottom-color:#8db2e3; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/access/tabs/scroll-right.gif); border-bottom-color:#8db2e3; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#99bbe8; } ================================================ FILE: client/src/ext/resources/css/theme-access/toolbar.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-toolbar{ border-color:#18181a; background-color:#393d4e; background-image:url(../images/access/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 14px arial,tahoma, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/access/grid/grid-blue-split.gif); } .x-toolbar .x-btn { padding-left:3px; padding-right:3px; } .x-toolbar .x-btn-mc em.x-btn-arrow { padding-right:10px; } .x-toolbar .x-btn-text-icon .x-btn-icon-small-left .x-btn-text { padding-left:18px !important; } .x-toolbar .x-btn-mc em.x-btn-split { padding-right:14px; } .x-tbar-page-first{ background-image: url(../images/access/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/access/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/access/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/access/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/access/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/access/grid/loading.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/access/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/access/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/access/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/access/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/access/toolbar/more.gif) !important; } .x-statusbar .x-status-busy { background-image: url(../images/access/grid/loading.gif); } .x-statusbar .x-status-text-panel { border-color: #99bbe8 #fff #fff #99bbe8; } ================================================ FILE: client/src/ext/resources/css/theme-access/tree.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/access/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/access/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .ext-ie .x-tree-node-el input { width:14px; height:14px; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/access/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/access/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/access/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/access/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/access/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/access/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/access/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/access/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/access/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/access/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/access/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 14px arial, tahoma, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#fff; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#fff; } .x-tree-node .x-tree-selected a, .x-dd-drag-ghost a{ color:#fff; } .x-tree-node .x-tree-selected a span, .x-dd-drag-ghost a span{ color:#fff; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #7e5530; } .x-tree-node .x-tree-selected { background-color: #e5872c; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); } ================================================ FILE: client/src/ext/resources/css/theme-access/window.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-proxy { background-color:#1f2833; border-color:#18181a; } .x-window-tl .x-window-header { color:#fff; font:bold 14px tahoma,arial,verdana,sans-serif; } .x-window-tc { background-image: url(../images/access/window/top-bottom.png); } .x-window-tl { background-image: url(../images/access/window/left-corners.png); } .x-window-tr { background-image: url(../images/access/window/right-corners.png); } .x-window-bc { background-image: url(../images/access/window/top-bottom.png); } .x-window-bl { background-image: url(../images/access/window/left-corners.png); } .x-window-br { background-image: url(../images/access/window/right-corners.png); } .x-window-mc { border-color:#18181a; font: normal 14px tahoma,arial,helvetica,sans-serif; background-color:#1f2833; } .x-window-ml { background-image: url(../images/access/window/left-right.png); } .x-window-mr { background-image: url(../images/access/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#323945; } .x-panel-ghost .x-window-tl { border-bottom-color:#323945; } .x-panel-collapsed .x-window-tl { border-bottom-color:#323945; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #464f61; border-color: #636778; } .x-window-plain .x-window-body { color: #fffff6; border-color: #464F61; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #464f61; } ================================================ FILE: client/src/ext/resources/css/theme-gray/borders.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel-noborder .x-panel-header-noborder { border-bottom-color:#d0d0d0; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#d0d0d0; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#d0d0d0; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#d0d0d0; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#d0d0d0; } .x-border-layout-ct { background-color:#f0f0f0; } ================================================ FILE: client/src/ext/resources/css/theme-gray/box.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif; color: #393939; font-size: 12px; } .x-box-mc h3 { font-size: 14px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/button.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-btn{ font:normal 11px tahoma, verdana, helvetica; } .x-btn button{ font:normal 11px arial,tahoma,verdana,helvetica; color:#333; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/gray/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#000; } .x-btn-disabled *{ color:gray !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/button/arrow.gif); } .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow.gif); } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/gray/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/gray/button/s-arrow-bo.gif); } .x-btn-group-header { color: #666; } .x-btn-group-tc { background-image: url(../images/gray/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/gray/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/gray/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/gray/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/gray/button/group-tb.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/combo.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-combo-list { border-color:#ccc; background-color:#ddd; font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-combo-list-inner { background-color:#fff; } .x-combo-list-hd { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#333; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#BCBCBC; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#BEBEBE; } .x-combo-list-item { border-color:#fff; } .x-combo-list .x-combo-selected{ border-color:#777 !important; background-color:#f0f0f0; } .x-combo-list .x-toolbar { border-top-color:#BCBCBC; } .x-combo-list-small { font:normal 11px tahoma, arial, helvetica, sans-serif; } ================================================ FILE: client/src/ext/resources/css/theme-gray/core.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#999; background-color:#ddd; background-image:url(../images/gray/panel/white-top-bottom.gif); background-position: 0 -1px; } .ext-el-mask-msg div { background-color: #eee; border-color:#d0d0d0; color:#222; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-mask-loading div { background-color:#fbfbfb; background-image:url(../images/default/grid/loading.gif); } .x-item-disabled { color: gray; } .x-item-disabled * { color: gray !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#CFCFCF; background-color: #eaeaea; } /* .x-color-palette em:hover, .x-color-palette span:hover{ background-color: #eaeaea; } */ .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 11px; background-image: url(../images/default/grid/loading.gif); } .x-spotlight { background-color: #ccc; } ================================================ FILE: client/src/ext/resources/css/theme-gray/date-picker.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-date-picker { border-color:#585858; background-color:#fff; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/gray/shared/hd-sprite.gif); color:#fff; font:bold 11px "sans serif", tahoma, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/gray/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/gray/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/gray/shared/left-btn.gif); } .x-date-inner th { background-color:#D8D8D8; background-image: url(../images/gray/panel/white-top-bottom.gif); border-bottom-color:#AFAFAF; font:normal 10px arial, helvetica,tahoma,sans-serif; color:#595959; } .x-date-inner td { border-color:#fff; } .x-date-inner a { font:normal 11px arial, helvetica,tahoma,sans-serif; color:#000; } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-image: none; background-color:#D8D8D8; border-color:#DCDCDC; } .x-date-inner .x-date-today a{ border-color:darkred; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#AFAFAF; background-color:#D8D8D8; background:#D8D8D8 url(../images/gray/panel/white-top-bottom.gif) 0 -2px; } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#000; background-color:#D8D8D8; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:10px; color:#000; } .x-date-mp { background-color:#fff; } .x-date-mp td { font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns button { background-color:#4E565F; color:#fff; border-color:#C0C0C0 #434343 #434343 #C0C0C0; font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns { background-color:#D8D8D8; background:#D8D8D8 url(../images/gray/panel/white-top-bottom.gif) 0 -2px; } .x-date-mp-btns td { border-top-color:#AFAFAF; } td.x-date-mp-month a,td.x-date-mp-year a { color: #333; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#333; background-color:#FDFDFD; } td.x-date-mp-sel a { background-color:#D8D8D8; background:#D8D8D8 url(../images/gray/panel/white-top-bottom.gif) 0 -2px; border-color:#DCDCDC; } .x-date-mp-ybtn a { background-image:url(../images/gray/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#D7D7D7; } ================================================ FILE: client/src/ext/resources/css/theme-gray/dd.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-dd-drag-ghost{ color:#000; font: normal 11px arial, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#D6D6D6; border-color:#888888; } ================================================ FILE: client/src/ext/resources/css/theme-gray/debug.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ #x-debug-browser .x-tree .x-tree-node a span { color:#222297; font-size:11px; font-family:"monotype","courier new",sans-serif; } #x-debug-browser .x-tree a i { color:#ff4545; font-style:normal; } #x-debug-browser .x-tree a em { color:#999; } #x-debug-browser .x-tree .x-tree-node .x-tree-selected a span{ background-color:#D5D5D5; } ================================================ FILE: client/src/ext/resources/css/theme-gray/dialog.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:12px; } .x-window-dlg .ext-mb-textarea { font:normal 12px tahoma,arial,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/default/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/gray/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/gray/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/gray/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/gray/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/editor.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-html-editor-wrap { border-color:#BCBCBC; background-color:#fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/default/editor/tb-sprite.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/form.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-form-field{ font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-text, textarea.x-form-field{ background-color:#fff; background-image:url(../images/default/form/text-bg.gif); border-color:#C1C1C1; } .x-form-select-one { background-color:#fff; border-color:#C1C1C1; } .x-form-check-group-label { border-bottom: 1px solid #d0d0d0; color: #333; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger{ background-image:url(../images/gray/form/trigger.gif); border-bottom-color:#b5b8c8; } .x-form-field-wrap .x-form-date-trigger{ background-image: url(../images/gray/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger{ background-image: url(../images/gray/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger{ background-image: url(../images/gray/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger{ border-bottom-color: #777777; } .x-item-disabled .x-form-trigger-over{ border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click{ border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus{ border-color:#777777; } .x-form-invalid, textarea.x-form-invalid{ background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .ext-webkit .x-form-invalid{ background-color:#fee; border-color:#ff7870; } .x-form-inner-invalid, textarea.x-form-inner-invalid{ background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-item { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 11px tahoma, arial, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:gray; } .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .ext-webkit .x-small-editor .x-form-field { font:normal 12px arial, tahoma, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/default/form/exclamation.gif); } .x-fieldset { border-color:#CCCCCC; } .x-fieldset legend { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#777777; } ================================================ FILE: client/src/ext/resources/css/theme-gray/grid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-grid3 { background-color:#fff; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#d0d0d0; } .x-grid3-row td, .x-grid3-summary-row td{ font:normal 11px/13px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { font:normal 11px/15px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#eee; border-right-color:#d0d0d0; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border-color:#ededed; border-top-color:#fff; } .x-grid3-row-alt{ background-color:#fafafa; } .x-grid3-row-over { border-color:#ddd; background-color:#efefef; background-image:url(../images/default/grid/row-over.gif); } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow2.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#ACACAC; border-right-color:#ACACAC; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow-over2.gif); } .sort-asc .x-grid3-sort-icon { background-image: url(../images/gray/grid/sort_asc.gif); } .sort-desc .x-grid3-sort-icon { background-image: url(../images/gray/grid/sort_desc.gif); } .x-grid3-cell-text, .x-grid3-hd-text { color:#000; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#333; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow-over2.gif); border-color:#ACACAC; } .col-move-top{ background-image:url(../images/gray/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/gray/grid/col-move-bottom.gif); } .x-grid3-row-selected { background-color:#CCCCCC !important; background-image: none; border-color:#ACACAC; } .x-grid3-cell-selected{ background-color: #CBCBCB !important; color:#000; } .x-grid3-cell-selected span{ color:#000 !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#000; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#000; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#333 !important; } .x-grid3-dirty-cell { background-image:url(../images/default/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/default/grid/grid3-special-col-bg.gif) !important; color:#000 !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#fff !important; border-right-color:#eee; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/gray/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#444; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/gray/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#d0d0d0; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/gray/grid/group-collapse.gif); color:#5F5F5F; font:bold 11px tahoma, arial, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/gray/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row{ border-top-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#B9B9B9; } ================================================ FILE: client/src/ext/resources/css/theme-gray/layout.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-border-layout-ct { background-color:#f0f0f0; } .x-accordion-hd { color:#222; font-weight:normal; background-image: url(../images/gray/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#dfdfdf; border-color:#d0d0d0; } .x-layout-collapsed-over{ background-color:#e7e7e7; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/list-view.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-list-header{ background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow2.gif); } .x-list-header-inner div em { border-left-color:#ddd; font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-body dt em { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-over { background-color:#eee; } .x-list-selected { background-color:#f0f0f0; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/gray/grid/sort-hd.gif); border-color: #d0d0d0; } ================================================ FILE: client/src/ext/resources/css/theme-gray/menu.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-menu { background-color:#f0f0f0; background-image:url(../images/default/menu/menu.gif); } .x-menu-floating{ border-color:#7D7D7D; } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 11px arial,tahoma,sans-serif; } .x-menu-item-arrow{ background-image:url(../images/gray/menu/menu-parent.gif); } .x-menu-sep { background-color:#e0e0e0; border-bottom-color:#fff; } a.x-menu-item { color:#222; } .x-menu-item-active { background-image: url(../images/gray/menu/item-over.gif); background-color: #f1f1f1; border-color:#ACACAC; } .x-menu-item-active a.x-menu-item { border-color:#ACACAC; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/gray/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#fff !important; } .x-menu .x-date-picker{ border-color:#AFAFAF; } .x-cycle-menu .x-menu-item-checked { border-color:#B9B9B9 !important; background-color:#F1F1F1; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/panel.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel { border-color: #d0d0d0; } .x-panel-header { color:#333; font-weight:bold; font-size: 11px; font-family: tahoma,arial,verdana,sans-serif; border-color:#d0d0d0; background-image: url(../images/gray/panel/white-top-bottom.gif); } .x-panel-body { border-color:#d0d0d0; background-color:#fff; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#d0d0d0; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#d0d0d0; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#d0d0d0; } .x-panel-tl .x-panel-header { color:#333; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/gray/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/gray/panel/corners-sprite.gif); border-bottom-color:#d0d0d0; } .x-panel-bc { background-image: url(../images/gray/panel/top-bottom.gif); } .x-panel-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#f1f1f1; } .x-panel-ml { background-color: #fff; background-image:url(../images/gray/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/gray/panel/left-right.gif); } .x-tool { background-image:url(../images/gray/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#f2f2f2; } .x-panel-ghost ul { border-color:#d0d0d0; } .x-panel-dd-spacer { border-color:#d0d0d0; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } ================================================ FILE: client/src/ext/resources/css/theme-gray/pivotgrid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-pivotgrid .x-grid3-header-offset table td { background: url(../images/gray/grid/grid3-hrow2.gif) repeat-x 50% 100%; border-left: 1px solid; border-right: 1px solid; border-left-color: #D0D0D0; border-right-color: #D0D0D0; } .x-pivotgrid .x-grid3-row-headers { background-color: #f9f9f9; } .x-pivotgrid .x-grid3-row-headers table td { background: #EEE url(../images/default/grid/grid3-rowheader.gif) repeat-x left top; border-left: 1px solid; border-right: 1px solid; border-left-color: #EEE; border-right-color: #D0D0D0; border-bottom: 1px solid; border-bottom-color: #D0D0D0; height: 18px; } ================================================ FILE: client/src/ext/resources/css/theme-gray/progress.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-progress-wrap { border-color:#8E8E8E; } .x-progress-inner { background-color:#E7E7E7; background-image:url(../images/gray/qtip/bg.gif); } .x-progress-bar { background-color:#BCBCBC; background-image:url(../images/gray/progress/progress-bg.gif); border-top-color:#E2E2E2; border-bottom-color:#A4A4A4; border-right-color:#A4A4A4; } .x-progress-text { font-size:11px; font-weight:bold; color:#fff; } .x-progress-text-back { color:#5F5F5F; } ================================================ FILE: client/src/ext/resources/css/theme-gray/qtips.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tip .x-tip-close{ background-image: url(../images/gray/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/gray/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-tip .x-tip-body { font: normal 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/default/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/gray/qtip/tip-anchor-sprite.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/resizable.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-resizable-handle { background-color:#fff; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/gray/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/gray/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/gray/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/gray/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/gray/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/gray/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/gray/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#565656; } .x-resizable-overlay{ background-color:#fff; } ================================================ FILE: client/src/ext/resources/css/theme-gray/slider.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/default/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/gray/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/default/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/gray/slider/slider-v-thumb.png); } ================================================ FILE: client/src/ext/resources/css/theme-gray/tabs.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tab-panel-header, .x-tab-panel-footer { background-color: #eaeaea; border-color:#d0d0d0; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#d0d0d0; } ul.x-tab-strip-top{ background-color:#dbdbdb; background-image: url(../images/gray/tabs/tab-strip-bg.gif); border-bottom-color:#d0d0d0; } ul.x-tab-strip-bottom{ background-color:#dbdbdb; background-image: url(../images/gray/tabs/tab-strip-btm-bg.gif); border-top-color:#d0d0d0; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#d0d0d0; background-color: #eaeaea; } .x-tab-strip span.x-tab-strip-text { font:normal 11px tahoma,arial,helvetica; color:#333; } .x-tab-strip-over span.x-tab-strip-text { color:#111; } .x-tab-strip-active span.x-tab-strip-text { color:#333; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/gray/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/gray/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/gray/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-left { background-image: url(../images/gray/tabs/tab-btm-over-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-right { background-image: url(../images/gray/tabs/tab-btm-over-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/gray/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/gray/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/gray/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/gray/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#d0d0d0; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/gray/tabs/scroll-left.gif); border-bottom-color:#d0d0d0; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/gray/tabs/scroll-right.gif); border-bottom-color:#d0d0d0; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#d0d0d0; } ================================================ FILE: client/src/ext/resources/css/theme-gray/toolbar.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-toolbar{ border-color:#d0d0d0; background-color:#f0f0f0; background-image:url(../images/gray/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/gray/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/gray/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/default/grid/grid-split.gif); } .x-tbar-page-first{ background-image: url(../images/gray/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/gray/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/gray/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/gray/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/gray/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/default/grid/loading.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/default/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/default/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/default/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/gray/toolbar/more.gif) !important; } ================================================ FILE: client/src/ext/resources/css/theme-gray/tree.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/default/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/default/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .ext-ie .x-tree-node-el input { width:15px; height:15px; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/default/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/default/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/gray/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/gray/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/default/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/gray/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/gray/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 11px arial, tahoma, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#000; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#000; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #eee; } .x-tree-node .x-tree-selected { background-color: #ddd; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); } ================================================ FILE: client/src/ext/resources/css/theme-gray/window.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-proxy { background-color:#fcfcfc; border-color:#d0d0d0; } .x-window-tl .x-window-header { color:#555; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-window-tc { background-image: url(../images/gray/window/top-bottom.png); } .x-window-tl { background-image: url(../images/gray/window/left-corners.png); } .x-window-tr { background-image: url(../images/gray/window/right-corners.png); } .x-window-bc { background-image: url(../images/gray/window/top-bottom.png); } .x-window-bl { background-image: url(../images/gray/window/left-corners.png); } .x-window-br { background-image: url(../images/gray/window/right-corners.png); } .x-window-mc { border-color:#d0d0d0; font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#e8e8e8; } .x-window-ml { background-image: url(../images/gray/window/left-right.png); } .x-window-mr { background-image: url(../images/gray/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#d0d0d0; } .x-panel-ghost .x-window-tl { border-bottom-color:#d0d0d0; } .x-panel-collapsed .x-window-tl { border-bottom-color:#d0d0d0; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #E8E8E8; border-color: #D0D0D0 #EEEEEE #EEEEEE #D0D0D0; } .x-window-plain .x-window-body { border-color: #EEEEEE #D0D0D0 #D0D0D0 #EEEEEE; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #E4E4E4; } ================================================ FILE: client/src/ext/resources/css/visual/borders.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel-noborder .x-panel-header-noborder { border-bottom-color:#99bbe8; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#99bbe8; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#99bbe8; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#99bbe8; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#99bbe8; } ================================================ FILE: client/src/ext/resources/css/visual/box.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif; color: #393939; font-size: 12px; } .x-box-mc h3 { font-size: 14px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); } ================================================ FILE: client/src/ext/resources/css/visual/button.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-btn{ font:normal 11px tahoma, verdana, helvetica; } .x-btn button{ font:normal 11px arial,tahoma,verdana,helvetica; color:#333; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/default/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#000; } .x-btn-disabled *{ color:gray !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/button/arrow.gif); } .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow.gif); } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-bo.gif); } .x-btn-group-header { color: #3e6aaa; } .x-btn-group-tc { background-image: url(../images/default/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/default/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/default/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/default/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/default/button/group-tb.gif); } ================================================ FILE: client/src/ext/resources/css/visual/combo.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-combo-list { border-color:#98c0f4; background-color:#ddecfe; font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-combo-list-inner { background-color:#fff; } .x-combo-list-hd { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#15428b; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#98c0f4; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#98c0f4; } .x-combo-list-item { border-color:#fff; } .x-combo-list .x-combo-selected{ border-color:#a3bae9 !important; background-color:#dfe8f6; } .x-combo-list .x-toolbar { border-top-color:#98c0f4; } .x-combo-list-small { font:normal 11px tahoma, arial, helvetica, sans-serif; } ================================================ FILE: client/src/ext/resources/css/visual/core.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#6593cf; background-color:#c3daf9; background-image:url(../images/default/box/tb-blue.gif); } .ext-el-mask-msg div { background-color: #eee; border-color:#a3bad9; color:#222; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-mask-loading div { background-color:#fbfbfb; background-image:url(../images/default/grid/loading.gif); } .x-item-disabled { color: gray; } .x-item-disabled * { color: gray !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#8bb8f3; background-color: #deecfd; } /* .x-color-palette em:hover, .x-color-palette span:hover{ background-color: #deecfd; } */ .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 11px; background-image: url(../images/default/grid/loading.gif); } .x-spotlight { background-color: #ccc; } ================================================ FILE: client/src/ext/resources/css/visual/date-picker.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-date-picker { border-color: #1b376c; background-color:#fff; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/default/shared/hd-sprite.gif); color:#fff; font:bold 11px "sans serif", tahoma, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/default/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/default/shared/left-btn.gif); } .x-date-inner th { background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); border-bottom-color:#a3bad9; font:normal 10px arial, helvetica,tahoma,sans-serif; color:#233d6d; } .x-date-inner td { border-color:#fff; } .x-date-inner a { font:normal 11px arial, helvetica,tahoma,sans-serif; color:#000; } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); border-color:#8db2e3; } .x-date-inner .x-date-today a{ border-color:darkred; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#a3bad9; background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#000; background-color:#ddecfe; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:10px; color:#000; } .x-date-mp { background-color:#fff; } .x-date-mp td { font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns button { background-color:#083772; color:#fff; border-color: #3366cc #000055 #000055 #3366cc; font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns { background-color: #dfecfb; background-image: url(../images/default/shared/glass-bg.gif); } .x-date-mp-btns td { border-top-color: #c5d2df; } td.x-date-mp-month a,td.x-date-mp-year a { color:#15428b; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#15428b; background-color: #ddecfe; } td.x-date-mp-sel a { background-color: #dfecfb; background-image: url(../images/default/shared/glass-bg.gif); border-color:#8db2e3; } .x-date-mp-ybtn a { background-image:url(../images/default/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#c5d2df; } ================================================ FILE: client/src/ext/resources/css/visual/dd.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-dd-drag-ghost{ color:#000; font: normal 11px arial, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#c3daf9; border-color:#3399bb; } ================================================ FILE: client/src/ext/resources/css/visual/debug.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ #x-debug-browser .x-tree .x-tree-node a span { color:#222297; font-size:11px; font-family:"monotype","courier new",sans-serif; } #x-debug-browser .x-tree a i { color:#ff4545; font-style:normal; } #x-debug-browser .x-tree a em { color:#999; } #x-debug-browser .x-tree .x-tree-node .x-tree-selected a span{ background-color:#c3daf9; } ================================================ FILE: client/src/ext/resources/css/visual/dialog.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:12px; } .x-window-dlg .ext-mb-textarea { font:normal 12px tahoma,arial,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/default/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/default/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/default/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/default/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/default/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/css/visual/editor.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-html-editor-wrap { border-color:#a9bfd3; background-color:#fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/default/editor/tb-sprite.gif); } ================================================ FILE: client/src/ext/resources/css/visual/form.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-form-field { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-text, textarea.x-form-field { background-color:#fff; background-image:url(../images/default/form/text-bg.gif); border-color:#b5b8c8; } .x-form-select-one { background-color:#fff; border-color:#b5b8c8; } .x-form-check-group-label { border-bottom: 1px solid #99bbe8; color: #15428b; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger { background-image:url(../images/default/form/trigger.gif); border-bottom-color:#b5b8c8; } .x-form-field-wrap .x-form-date-trigger { background-image: url(../images/default/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger { background-image: url(../images/default/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger { background-image: url(../images/default/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger { border-bottom-color:#7eadd9; } .x-item-disabled .x-form-trigger-over { border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click { border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus { border-color:#7eadd9; } .x-form-invalid, textarea.x-form-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .x-form-invalid.x-form-composite { border: none; background-image: none; } .x-form-invalid.x-form-composite .x-form-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .x-form-inner-invalid, textarea.x-form-inner-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-item { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 11px tahoma, arial, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:gray; } .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .ext-webkit .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/default/form/exclamation.gif); } .x-fieldset { border-color:#b5b8c8; } .x-fieldset legend { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#15428b; } ================================================ FILE: client/src/ext/resources/css/visual/grid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-grid3 { background-color:#fff; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#99bbe8; } .x-grid3-row td, .x-grid3-summary-row td{ font:normal 11px/13px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { font:normal 11px/15px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#eee; border-right-color:#d0d0d0; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border-color:#ededed; border-top-color:#fff; } .x-grid3-row-alt{ background-color:#fafafa; } .x-grid3-row-over { border-color:#ddd; background-color:#efefef; background-image:url(../images/default/grid/row-over.gif); } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#f9f9f9; background-image:url(../images/default/grid/grid3-hrow.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#aaccf6; border-right-color:#aaccf6; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#ebf3fd; background-image:url(../images/default/grid/grid3-hrow-over.gif); } .sort-asc .x-grid3-sort-icon { background-image: url(../images/default/grid/sort_asc.gif); } .sort-desc .x-grid3-sort-icon { background-image: url(../images/default/grid/sort_desc.gif); } .x-grid3-cell-text, .x-grid3-hd-text { color:#000; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#15428b; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#ebf3fd; background-image:url(../images/default/grid/grid3-hrow-over.gif); border-color:#aaccf6; } .col-move-top{ background-image:url(../images/default/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/default/grid/col-move-bottom.gif); } td.grid-hd-group-cell { background: url(../images/default/grid/grid3-hrow.gif) repeat-x bottom; } .x-grid3-row-selected { background-color: #dfe8f6 !important; background-image: none; border-color:#a3bae9; } .x-grid3-cell-selected{ background-color: #b8cfee !important; color:#000; } .x-grid3-cell-selected span{ color:#000 !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#000; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#000; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#15428b !important; } .x-grid3-dirty-cell { background-image:url(../images/default/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/default/grid/grid3-special-col-bg.gif) !important; color:#000 !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#fff !important; border-right-color:#eee; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#c3daf9; background-image:url(../images/default/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/default/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#444; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#99bbe8; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/default/grid/group-collapse.gif); color:#3764a0; font:bold 11px tahoma, arial, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/default/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#a3bae9; } ================================================ FILE: client/src/ext/resources/css/visual/layout.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-border-layout-ct { background-color:#dfe8f6; } .x-accordion-hd { color:#222; font-weight:normal; background-image: url(../images/default/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#d2e0f2; border-color:#98c0f4; } .x-layout-collapsed-over{ background-color:#d9e8fb; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } ================================================ FILE: client/src/ext/resources/css/visual/list-view.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-list-header{ background-color:#f9f9f9; background-image:url(../images/default/grid/grid3-hrow.gif); } .x-list-header-inner div em { border-left-color:#ddd; font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-body dt em { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-over { background-color:#eee; } .x-list-selected { background-color:#dfe8f6; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/default/grid/sort-hd.gif); border-color: #99bbe8; } ================================================ FILE: client/src/ext/resources/css/visual/menu.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-menu { background-color:#f0f0f0; background-image:url(../images/default/menu/menu.gif); } .x-menu-floating{ border-color:#718bb7; } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 11px arial,tahoma,sans-serif; } .x-menu-item-arrow{ background-image:url(../images/default/menu/menu-parent.gif); } .x-menu-sep { background-color:#e0e0e0; border-bottom-color:#fff; } a.x-menu-item { color:#222; } .x-menu-item-active { background-image: url(../images/default/menu/item-over.gif); background-color: #dbecf4; border-color:#aaccf6; } .x-menu-item-active a.x-menu-item { border-color:#aaccf6; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/default/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#f0f0f0 !important; background-image: none; } .x-date-menu, .x-color-menu{ background-color: #fff !important; } .x-menu .x-date-picker{ border-color:#a3bad9; } .x-cycle-menu .x-menu-item-checked { border-color:#a3bae9 !important; background-color:#def8f6; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); } ================================================ FILE: client/src/ext/resources/css/visual/panel.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel { border-color: #99bbe8; } .x-panel-header { color:#15428b; font-weight:bold; font-size: 11px; font-family: tahoma,arial,verdana,sans-serif; border-color:#99bbe8; background-image: url(../images/default/panel/white-top-bottom.gif); } .x-panel-body { border-color:#99bbe8; background-color:#fff; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#99bbe8; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#99bbe8; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#99bbe8; } .x-panel-tl .x-panel-header { color:#15428b; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/default/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/default/panel/corners-sprite.gif); border-bottom-color:#99bbe8; } .x-panel-bc { background-image: url(../images/default/panel/top-bottom.gif); } .x-panel-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#dfe8f6; } .x-panel-ml { background-color: #fff; background-image:url(../images/default/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/default/panel/left-right.gif); } .x-tool { background-image:url(../images/default/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#cbddf3; } .x-panel-ghost ul { border-color:#99bbe8; } .x-panel-dd-spacer { border-color:#99bbe8; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } ================================================ FILE: client/src/ext/resources/css/visual/pivotgrid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-pivotgrid .x-grid3-header-offset table td { background: url(../images/default/grid/grid3-hrow.gif) repeat-x 50% 100%; border-left: 1px solid; border-right: 1px solid; border-left-color: #EEE; border-right-color: #D0D0D0; } .x-pivotgrid .x-grid3-row-headers { background-color: #f9f9f9; } .x-pivotgrid .x-grid3-row-headers table td { background: #EEE url(../images/default/grid/grid3-rowheader.gif) repeat-x left top; border-left: 1px solid; border-right: 1px solid; border-left-color: #EEE; border-right-color: #D0D0D0; border-bottom: 1px solid; border-bottom-color: #D0D0D0; height: 18px; } ================================================ FILE: client/src/ext/resources/css/visual/progress.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-progress-wrap { border-color:#6593cf; } .x-progress-inner { background-color:#e0e8f3; background-image:url(../images/default/qtip/bg.gif); } .x-progress-bar { background-color:#9cbfee; background-image:url(../images/default/progress/progress-bg.gif); border-top-color:#d1e4fd; border-bottom-color:#7fa9e4; border-right-color:#7fa9e4; } .x-progress-text { font-size:11px; font-weight:bold; color:#fff; } .x-progress-text-back { color:#396095; } ================================================ FILE: client/src/ext/resources/css/visual/qtips.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tip .x-tip-close{ background-image: url(../images/default/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/default/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-tip .x-tip-body { font: normal 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/default/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/default/qtip/tip-anchor-sprite.gif); } ================================================ FILE: client/src/ext/resources/css/visual/resizable.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-resizable-handle { background-color:#fff; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/default/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/default/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/default/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/default/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/default/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/default/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/default/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#3b5a82; } .x-resizable-overlay{ background-color:#fff; } ================================================ FILE: client/src/ext/resources/css/visual/slider.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/default/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/default/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/default/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/default/slider/slider-v-thumb.png); } ================================================ FILE: client/src/ext/resources/css/visual/tabs.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tab-panel-header, .x-tab-panel-footer { background-color: #deecfd; border-color:#8db2e3; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#8db2e3; } ul.x-tab-strip-top{ background-color:#cedff5; background-image: url(../images/default/tabs/tab-strip-bg.gif); border-bottom-color:#8db2e3; } ul.x-tab-strip-bottom{ background-color:#cedff5; background-image: url(../images/default/tabs/tab-strip-btm-bg.gif); border-top-color:#8db2e3; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#8db2e3; background-color: #deecfd; } .x-tab-strip span.x-tab-strip-text { font:normal 11px tahoma,arial,helvetica; color:#416aa3; } .x-tab-strip-over span.x-tab-strip-text { color:#15428b; } .x-tab-strip-active span.x-tab-strip-text { color:#15428b; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/default/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/default/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/default/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-right { background-image: url(../images/default/tabs/tab-btm-over-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-left { background-image: url(../images/default/tabs/tab-btm-over-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/default/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/default/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/default/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/default/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#8db2e3; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/default/tabs/scroll-left.gif); border-bottom-color:#8db2e3; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/default/tabs/scroll-right.gif); border-bottom-color:#8db2e3; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#99bbe8; } ================================================ FILE: client/src/ext/resources/css/visual/toolbar.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-toolbar{ border-color:#a9bfd3; background-color:#d0def0; background-image:url(../images/default/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/default/grid/grid-blue-split.gif); } .x-tbar-page-first{ background-image: url(../images/default/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/default/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/default/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/default/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/default/grid/refresh-disabled.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/default/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/default/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/default/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/default/toolbar/more.gif) !important; } ================================================ FILE: client/src/ext/resources/css/visual/tree.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/default/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/default/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/default/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/default/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/default/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 11px arial, tahoma, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#000; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#000; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #eee; } .x-tree-node .x-tree-selected { background-color: #d9e8fb; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); } ================================================ FILE: client/src/ext/resources/css/visual/window.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-window-proxy { background-color:#c7dffc; border-color:#99bbe8; } .x-window-tl .x-window-header { color:#15428b; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-window-tc { background-image: url(../images/default/window/top-bottom.png); } .x-window-tl { background-image: url(../images/default/window/left-corners.png); } .x-window-tr { background-image: url(../images/default/window/right-corners.png); } .x-window-bc { background-image: url(../images/default/window/top-bottom.png); } .x-window-bl { background-image: url(../images/default/window/left-corners.png); } .x-window-br { background-image: url(../images/default/window/right-corners.png); } .x-window-mc { border-color:#99bbe8; font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#dfe8f6; } .x-window-ml { background-image: url(../images/default/window/left-right.png); } .x-window-mr { background-image: url(../images/default/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#99bbe8; } .x-panel-ghost .x-window-tl { border-bottom-color:#99bbe8; } .x-panel-collapsed .x-window-tl { border-bottom-color:#84a0c4; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #ccd9e8; border-color: #a3bae9 #dfe8f6 #dfe8f6 #a3bae9; } .x-window-plain .x-window-body { border-color: #dfe8f6 #a3bae9 #a3bae9 #dfe8f6; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #ccd9e8; } ================================================ FILE: client/src/ext/resources/css/xtheme-access.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ body { background-color:#16181a; color:#fcfcfc; } .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#223; background-color:#3f4757; background-image:url(../images/access/box/tb-blue.gif); } .ext-el-mask-msg div { background-color: #232d38; border-color:#556; color:#fff; font:normal 14px tahoma, arial, helvetica, sans-serif; } .x-mask-loading div { background-color:#232d38; background-image:url(../images/access/grid/loading.gif); } .x-item-disabled { color: #ddd; } .x-item-disabled * { color: #ddd !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#8bb8f3; background-color: #deecfd; } .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 14px; background-image: url(../images/access/grid/loading.gif); } .x-spotlight { background-color: #ccc; }.x-tab-panel-header, .x-tab-panel-footer { background-color:#e18325; border-color:#8db2e3; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#222; } ul.x-tab-strip-top{ background-color:#343843; background-image: url(../images/access/tabs/tab-strip-bg.gif); border-bottom-color:#343d4e; } ul.x-tab-strip-bottom{ background-color:#343843; background-image: url(../images/access/tabs/tab-strip-btm-bg.gif); border-top-color:#343843; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#222; background-color:#e18325; } .x-tab-strip span.x-tab-strip-text { font:normal 14px tahoma,arial,helvetica; color:#fff; } .x-tab-strip-over span.x-tab-strip-text { color:#fff; } .x-tab-strip-active span.x-tab-strip-text { color:#fff; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/access/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/access/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/access/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/access/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/access/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/access/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/access/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#18181a; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/access/tabs/scroll-left.gif); border-bottom-color:#8db2e3; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/access/tabs/scroll-right.gif); border-bottom-color:#8db2e3; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#99bbe8; } .x-form-field { font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-form-text, textarea.x-form-field{ color: #ffffff; background-color:#33373d; background-image:url(../images/access/form/text-bg.gif); border-color:#737b8c; border-width:2px; } .ext-webkit .x-form-text, .ext-webkit textarea.x-form-field{ border-width:2px; } .x-form-text, .ext-ie .x-form-file { height:26px; } .ext-strict .x-form-text { height:20px; } .x-form-select-one { background-color:#fff; border-color:#b5b8c8; } .x-form-check-group-label { border-bottom: 1px solid #99bbe8; color: #fff; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger{ background-image:url(../images/access/form/trigger.gif); border-bottom-color:#737b8c; border-bottom-width:2px; height:24px; width:20px; } .x-form-field-wrap .x-form-trigger.x-form-trigger-over{ border-bottom-color:#d97e27; } .x-form-field-wrap .x-form-trigger.x-form-trigger-click{ border-bottom-color:#c86e19; } .x-small-editor .x-form-field-wrap .x-form-trigger { height:24px; } .x-form-field-wrap .x-form-trigger-over { background-position:-20px 0; } .x-form-field-wrap .x-form-trigger-click { background-position:-40px 0; } .x-trigger-wrap-focus .x-form-trigger { background-position:-60px 0; } .x-trigger-wrap-focus .x-form-trigger-over { background-position:-80px 0; } .x-trigger-wrap-focus .x-form-trigger-click { background-position:-100px 0; } .x-form-field-wrap .x-form-date-trigger{ background-image: url(../images/access/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger{ background-image: url(../images/access/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger{ background-image: url(../images/access/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger{ border-bottom-color:#737b8c; } .x-item-disabled .x-form-trigger-over{ border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click{ border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus{ border-color:#ff9c33; } .x-form-invalid, textarea.x-form-invalid, .ext-webkit .x-form-invalid, .ext-webkit textarea.x-form-invalid{ background-color:#15171a; background-image:url(../images/access/grid/invalid_line.gif); border-color:#c30; } /* .ext-safari .x-form-invalid{ background-color:#fee; border-color:#ff7870; } */ .x-form-inner-invalid, textarea.x-form-inner-invalid{ background-color:#fff; background-image:url(../images/access/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-form-item { font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 14px tahoma, arial, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:#dadadd; } .x-small-editor .x-form-text { height: 26px; } .x-small-editor .x-form-field { font:normal 14px arial, tahoma, helvetica, sans-serif; } .ext-safari .x-small-editor .x-form-field { font:normal 15px arial, tahoma, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/access/form/exclamation.gif); height:25px; width:19px; background-position:center right; } .x-fieldset { border-color:#737B8C; } .x-fieldset legend { font:bold 14px tahoma, arial, helvetica, sans-serif; color:#fff; } .x-btn { font:normal 14px tahoma, verdana, helvetica; } .x-btn button { font:normal 14px arial,tahoma,verdana,helvetica; color:#fffffa; padding-left:6px !important; padding-right:6px !important; } .x-btn-over .x-btn button{ color:#fff; } .x-btn-noicon .x-btn-small .x-btn-text, .x-btn-text-icon .x-btn-icon-small-left .x-btn-text, .x-btn-icon .x-btn-small .x-btn-text, .x-btn-text-icon .x-btn-icon-small-right .x-btn-text { height:18px; } .x-btn-icon .x-btn-small .x-btn-text { width:18px; } .x-btn-text-icon .x-btn-icon-small-left .x-btn-text { padding-left:21px !important; } .x-btn-text-icon .x-btn-icon-small-right .x-btn-text { padding-right:21px !important; } .x-btn-text-icon .x-btn-icon-medium-left .x-btn-text { padding-left:29px !important; } .x-btn-text-icon .x-btn-icon-medium-right .x-btn-text { padding-right:29px !important; } .x-btn-text-icon .x-btn-icon-large-left .x-btn-text { padding-left:37px !important; } .x-btn-text-icon .x-btn-icon-large-right .x-btn-text { padding-right:37px !important; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/access/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#fff; } .x-btn-disabled *{ color:#eee !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/access/button/arrow.gif); padding-right:13px; } .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow.gif); padding-right:20px; } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/access/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-bo.gif); } .x-btn-group-header { color: #d2d2d2; } .x-btn-group-tc { background-image: url(../images/access/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/access/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/access/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/access/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/access/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/access/button/group-tb.gif); } .x-toolbar{ border-color:#18181a; background-color:#393d4e; background-image:url(../images/access/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 14px arial,tahoma, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/access/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/access/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/access/grid/grid-blue-split.gif); } .x-toolbar .x-btn { padding-left:3px; padding-right:3px; } .x-toolbar .x-btn-mc em.x-btn-arrow { padding-right:10px; } .x-toolbar .x-btn-text-icon .x-btn-icon-small-left .x-btn-text { padding-left:18px !important; } .x-toolbar .x-btn-mc em.x-btn-split { padding-right:14px; } .x-tbar-page-first{ background-image: url(../images/access/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/access/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/access/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/access/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/access/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/access/grid/loading.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/access/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/access/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/access/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/access/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/access/toolbar/more.gif) !important; } .x-statusbar .x-status-busy { background-image: url(../images/access/grid/loading.gif); } .x-statusbar .x-status-text-panel { border-color: #99bbe8 #fff #fff #99bbe8; } .x-resizable-handle { background-color:#fff; color: #000; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/access/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/access/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/access/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/access/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/access/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/access/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/access/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#3b5a82; } .x-resizable-overlay{ background-color:#fff; } .x-grid3 { background-color:#1f2933; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#223; } .x-grid3-hd-row td, .x-grid3-row td, .x-grid3-summary-row td{ font:normal 14px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#556; border-right-color:#223; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border:0 none; border-bottom:1px solid #111; border-right:1px solid #1a1a1c; } .x-grid3-row-alt{ background-color:#1b232b; } .x-grid3-row-over { background-color:#7e5530; } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#3b3f50; background-image:url(../images/access/grid/grid3-hrow.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#889; border-right-color:#445; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#4e628a; background-image:url(../images/access/grid/grid3-hrow-over.gif); } .x-grid3-cell-inner, .x-grid3-hd-inner { color:#fff; } .sort-asc .x-grid3-sort-icon { background-image: url(../images/access/grid/sort_asc.gif); width:15px; height:9px; margin-left:5px; } .sort-desc .x-grid3-sort-icon { background-image: url(../images/access/grid/sort_desc.gif); width:15px; height:9px; margin-left:5px; } .x-grid3-cell-text, .x-grid3-hd-text { color:#fff; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#fff; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#ebf3fd; background-image:url(../images/access/grid/grid3-hrow-over.gif); border-color:#aaccf6; } .col-move-top{ background-image:url(../images/default/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/default/grid/col-move-bottom.gif); } .x-grid3-row-selected { background-color: #e5872c !important; background-image: none; border-style: solid; } .x-grid3-row-selected .x-grid3-cell { color: #fff; } .x-grid3-cell-selected { background-color: #ffa340 !important; color:#fff; } .x-grid3-cell-selected span{ color:#fff !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#fff; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#fff; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#fff !important; } .x-grid3-dirty-cell { background-image:url(../images/access/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 14px arial, tahoma, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/access/grid/grid3-special-col-bg.gif) !important; color:#fff !important; } .x-props-grid .x-grid3-td-value { color:#fff !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#263240 !important; border-right-color:#223; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/access/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#c2c9d0; background-image:url(../images/access/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/access/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#fff; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/access/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/access/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#4e628a; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/access/grid/group-collapse.gif); background-position:3px 6px; color:#ffd; font:bold 14px tahoma, arial, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/access/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 14px tahoma, arial, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row{ border-top-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#a3bae9; } .x-dd-drag-ghost{ color:#000; font: normal 14px arial, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#c3daf9; border-color:#3399bb; } .x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/access/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/access/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .ext-ie .x-tree-node-el input { width:14px; height:14px; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/access/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/access/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/access/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/access/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/access/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/access/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/access/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/access/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/access/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/access/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/access/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/access/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 14px arial, tahoma, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#fff; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#fff; } .x-tree-node .x-tree-selected a, .x-dd-drag-ghost a{ color:#fff; } .x-tree-node .x-tree-selected a span, .x-dd-drag-ghost a span{ color:#fff; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #7e5530; } .x-tree-node .x-tree-selected { background-color: #e5872c; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); } .x-date-picker { border-color: #737b8c; background-color:#21252e; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/access/shared/hd-sprite.gif); color:#fff; font:bold 14px "sans serif", tahoma, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/access/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/access/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/access/shared/left-btn.gif); } .x-date-inner th { background-color:#363d4a; background-image:url(../images/access/toolbar/bg.gif); border-bottom-color:#535b5c; font:normal 13px arial, helvetica,tahoma,sans-serif; color:#fff; } .x-date-inner td { border-color:#112; } .x-date-inner a { font:normal 14px arial, helvetica,tahoma,sans-serif; color:#fff; padding:2px 7px 1px 3px; /* Structure to account for larger, bolder fonts in Access theme. */ } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-color:#e5872c; background-image:none; border-color:#864900; padding:1px 6px 1px 2px; /* Structure to account for larger, bolder fonts in Access theme. */ } .x-date-inner .x-date-today a{ border-color:#99a; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#737b8c; background-color:#464d5a; background-image:url(../images/access/shared/glass-bg.gif); } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#fff; background-color:#7e5530; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:13px; color:#000; } .x-date-mp { background-color:#21252e; } .x-date-mp td { font:normal 14px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns button { background-color:#083772; color:#fff; border-color: #3366cc #000055 #000055 #3366cc; font:normal 14px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns { background-color: #dfecfb; background-image: url(../images/access/shared/glass-bg.gif); } .x-date-mp-btns td { border-top-color: #c5d2df; } td.x-date-mp-month a,td.x-date-mp-year a { color:#fff; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#fff; background-color: #7e5530; } td.x-date-mp-sel a { background-color: #e5872c; background-image: none; border-color:#864900; } .x-date-mp-ybtn a { background-image:url(../images/access/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#c5d2df; } .x-tip .x-tip-close{ background-image: url(../images/access/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/access/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 14px tahoma,arial,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 14px tahoma,arial,helvetica,sans-serif; color:#ffd; } .x-tip .x-tip-body { font: normal 14px tahoma,arial,helvetica,sans-serif; color:#000; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/access/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/access/qtip/tip-anchor-sprite.gif); } .x-menu { border-color:#222; background-color:#414551; background-image:url(../images/access/menu/menu.gif); } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 14px tahoma,arial, sans-serif; } .x-menu-item-arrow{ background-image:url(../images/access/menu/menu-parent.gif); } .x-menu-sep { background-color:#223; border-bottom-color:#666; } a.x-menu-item { color:#fffff6; } .x-menu-item-active { background-color: #f09134; background-image: none; border-color:#b36427; } .x-menu-item-active a.x-menu-item { border-color:#b36427; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/access/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#fff !important; } .x-menu .x-date-picker{ border-color:#a3bad9; } .x-cycle-menu .x-menu-item-checked { border-color:#a3bae9 !important; background-color:#def8f6; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); } .x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif; color: #393939; font-size: 15px; } .x-box-mc h3 { font-size: 18px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); } .x-combo-list { border:2px solid #232732; background-color:#555566; font:normal 15px tahoma, arial, helvetica, sans-serif; } .x-combo-list-inner { background-color:#414551; } .x-combo-list-hd { font:bold 14px tahoma, arial, helvetica, sans-serif; color:#fff; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#98c0f4; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#98c0f4; } .x-combo-list-item { border-color:#556; } .x-combo-list .x-combo-selected { border-color:#e5872c !important; background-color:#e5872c; } .x-combo-list .x-toolbar { border-top-color:#98c0f4; } .x-combo-list-small { font:normal 14px tahoma, arial, helvetica, sans-serif; } .x-panel { border-color: #18181a; font-size: 14px; } .x-panel-header { color:#fff; font-weight:bold; font-size: 14px; font-family: tahoma,arial,verdana,sans-serif; border-color:#18181a; background-image: url(../images/access/panel/white-top-bottom.gif); } .x-panel-body { color: #fffff6; border-color:#18181a; background-color:#232d38; } .x-tab-panel .x-panel-body { color: #fffff6; border-color:#18181a; background-color:#1f2730; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#223; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#223; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#223; } .x-panel-tl .x-panel-header { color:#fff; font:bold 14px tahoma,arial,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/access/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/access/panel/corners-sprite.gif); border-bottom-color:#222224; } .x-panel-bc { background-image: url(../images/access/panel/top-bottom.gif); } .x-panel-mc { font: normal 14px tahoma,arial,helvetica,sans-serif; background-color:#3f4757; } .x-panel-ml { background-image:url(../images/access/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/access/panel/left-right.gif); } .x-tool { background-image:url(../images/access/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#3f4757; } .x-panel-ghost ul { border-color:#18181a; } .x-panel-dd-spacer { border-color:#18181a; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 14px arial,tahoma, helvetica, sans-serif; } .x-window-proxy { background-color:#1f2833; border-color:#18181a; } .x-window-tl .x-window-header { color:#fff; font:bold 14px tahoma,arial,verdana,sans-serif; } .x-window-tc { background-image: url(../images/access/window/top-bottom.png); } .x-window-tl { background-image: url(../images/access/window/left-corners.png); } .x-window-tr { background-image: url(../images/access/window/right-corners.png); } .x-window-bc { background-image: url(../images/access/window/top-bottom.png); } .x-window-bl { background-image: url(../images/access/window/left-corners.png); } .x-window-br { background-image: url(../images/access/window/right-corners.png); } .x-window-mc { border-color:#18181a; font: normal 14px tahoma,arial,helvetica,sans-serif; background-color:#1f2833; } .x-window-ml { background-image: url(../images/access/window/left-right.png); } .x-window-mr { background-image: url(../images/access/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#323945; } .x-panel-ghost .x-window-tl { border-bottom-color:#323945; } .x-panel-collapsed .x-window-tl { border-bottom-color:#323945; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #464f61; border-color: #636778; } .x-window-plain .x-window-body { color: #fffff6; border-color: #464F61; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #464f61; } .x-html-editor-wrap { border-color:#737B8C; background-color:#fff; } .x-html-editor-wrap iframe { background-color: #fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/access/editor/tb-sprite.gif); }.x-panel-noborder .x-panel-header-noborder { border-bottom-color:#343d4e; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#343d4e; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#343d4e; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#343d4e; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#343d4e; } .x-border-layout-ct { background-color:#3f4757; } .x-accordion-hd { color:#fff; font-weight:normal; background-image: url(../images/access/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#323845; border-color:#1a1a1c; } .x-layout-collapsed-over{ background-color:#2d3440; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-progress-wrap { border-color:#18181a; } .x-progress-inner { background-color:#232d38; background-image:none; } .x-progress-bar { background-color:#f39a00; background-image:url(../images/access/progress/progress-bg.gif); border-top-color:#a66900; border-bottom-color:#a66900; border-right-color:#ffb941; height: 20px !important; /* structural override for Accessibility Theme */ } .x-progress-text { font-size:14px; font-weight:bold; color:#fff; padding: 0 5px !important; /* structural override for Accessibility Theme */ } .x-progress-text-back { color:#aaa; line-height: 19px; } .x-list-header{ background-color:#393d4e; background-image:url(../images/access/toolbar/bg.gif); background-position:0 top; } .x-list-header-inner div em { border-left-color:#667; font:normal 14px arial, tahoma, helvetica, sans-serif; line-height: 14px; } .x-list-body-inner { background-color:#1B232B; } .x-list-body dt em { font:normal 14px arial, tahoma, helvetica, sans-serif; } .x-list-over { background-color:#7E5530; } .x-list-selected { background-color:#E5872C; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/access/grid/sort-hd.gif); border-color: #3e4e6c; } .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/access/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/access/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/access/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/access/slider/slider-v-thumb.png); } .x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:15px; } .x-window-dlg .ext-mb-textarea { font:normal 15px tahoma,arial,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/access/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/access/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/access/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/access/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/access/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/css/xtheme-blue.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#6593cf; background-color:#c3daf9; background-image:url(../images/default/box/tb-blue.gif); } .ext-el-mask-msg div { background-color: #eee; border-color:#a3bad9; color:#222; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-mask-loading div { background-color:#fbfbfb; background-image:url(../images/default/grid/loading.gif); } .x-item-disabled { color: gray; } .x-item-disabled * { color: gray !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#8bb8f3; background-color: #deecfd; } /* .x-color-palette em:hover, .x-color-palette span:hover{ background-color: #deecfd; } */ .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 11px; background-image: url(../images/default/grid/loading.gif); } .x-spotlight { background-color: #ccc; } .x-tab-panel-header, .x-tab-panel-footer { background-color: #deecfd; border-color:#8db2e3; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#8db2e3; } ul.x-tab-strip-top{ background-color:#cedff5; background-image: url(../images/default/tabs/tab-strip-bg.gif); border-bottom-color:#8db2e3; } ul.x-tab-strip-bottom{ background-color:#cedff5; background-image: url(../images/default/tabs/tab-strip-btm-bg.gif); border-top-color:#8db2e3; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#8db2e3; background-color: #deecfd; } .x-tab-strip span.x-tab-strip-text { font:normal 11px tahoma,arial,helvetica; color:#416aa3; } .x-tab-strip-over span.x-tab-strip-text { color:#15428b; } .x-tab-strip-active span.x-tab-strip-text { color:#15428b; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/default/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/default/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/default/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-right { background-image: url(../images/default/tabs/tab-btm-over-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-left { background-image: url(../images/default/tabs/tab-btm-over-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/default/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/default/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/default/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/default/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#8db2e3; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/default/tabs/scroll-left.gif); border-bottom-color:#8db2e3; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/default/tabs/scroll-right.gif); border-bottom-color:#8db2e3; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#99bbe8; }.x-form-field { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-text, textarea.x-form-field { background-color:#fff; background-image:url(../images/default/form/text-bg.gif); border-color:#b5b8c8; } .x-form-select-one { background-color:#fff; border-color:#b5b8c8; } .x-form-check-group-label { border-bottom: 1px solid #99bbe8; color: #15428b; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger { background-image:url(../images/default/form/trigger.gif); border-bottom-color:#b5b8c8; } .x-form-field-wrap .x-form-date-trigger { background-image: url(../images/default/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger { background-image: url(../images/default/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger { background-image: url(../images/default/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger { border-bottom-color:#7eadd9; } .x-item-disabled .x-form-trigger-over { border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click { border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus { border-color:#7eadd9; } .x-form-invalid, textarea.x-form-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .x-form-invalid.x-form-composite { border: none; background-image: none; } .x-form-invalid.x-form-composite .x-form-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .x-form-inner-invalid, textarea.x-form-inner-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-item { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 11px tahoma, arial, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:gray; } .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .ext-webkit .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/default/form/exclamation.gif); } .x-fieldset { border-color:#b5b8c8; } .x-fieldset legend { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#15428b; } .x-btn{ font:normal 11px tahoma, verdana, helvetica; } .x-btn button{ font:normal 11px arial,tahoma,verdana,helvetica; color:#333; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/default/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#000; } .x-btn-disabled *{ color:gray !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/button/arrow.gif); } .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow.gif); } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-bo.gif); } .x-btn-group-header { color: #3e6aaa; } .x-btn-group-tc { background-image: url(../images/default/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/default/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/default/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/default/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/default/button/group-tb.gif); }.x-toolbar{ border-color:#a9bfd3; background-color:#d0def0; background-image:url(../images/default/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/default/grid/grid-blue-split.gif); } .x-tbar-page-first{ background-image: url(../images/default/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/default/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/default/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/default/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/default/grid/refresh-disabled.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/default/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/default/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/default/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/default/toolbar/more.gif) !important; }.x-resizable-handle { background-color:#fff; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/default/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/default/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/default/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/default/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/default/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/default/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/default/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#3b5a82; } .x-resizable-overlay{ background-color:#fff; } .x-grid3 { background-color:#fff; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#99bbe8; } .x-grid3-row td, .x-grid3-summary-row td{ font:normal 11px/13px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { font:normal 11px/15px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#eee; border-right-color:#d0d0d0; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border-color:#ededed; border-top-color:#fff; } .x-grid3-row-alt{ background-color:#fafafa; } .x-grid3-row-over { border-color:#ddd; background-color:#efefef; background-image:url(../images/default/grid/row-over.gif); } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#f9f9f9; background-image:url(../images/default/grid/grid3-hrow.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#aaccf6; border-right-color:#aaccf6; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#ebf3fd; background-image:url(../images/default/grid/grid3-hrow-over.gif); } .sort-asc .x-grid3-sort-icon { background-image: url(../images/default/grid/sort_asc.gif); } .sort-desc .x-grid3-sort-icon { background-image: url(../images/default/grid/sort_desc.gif); } .x-grid3-cell-text, .x-grid3-hd-text { color:#000; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#15428b; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#ebf3fd; background-image:url(../images/default/grid/grid3-hrow-over.gif); border-color:#aaccf6; } .col-move-top{ background-image:url(../images/default/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/default/grid/col-move-bottom.gif); } td.grid-hd-group-cell { background: url(../images/default/grid/grid3-hrow.gif) repeat-x bottom; } .x-grid3-row-selected { background-color: #dfe8f6 !important; background-image: none; border-color:#a3bae9; } .x-grid3-cell-selected{ background-color: #b8cfee !important; color:#000; } .x-grid3-cell-selected span{ color:#000 !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#000; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#000; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#15428b !important; } .x-grid3-dirty-cell { background-image:url(../images/default/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/default/grid/grid3-special-col-bg.gif) !important; color:#000 !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#fff !important; border-right-color:#eee; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#c3daf9; background-image:url(../images/default/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/default/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#444; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#99bbe8; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/default/grid/group-collapse.gif); color:#3764a0; font:bold 11px tahoma, arial, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/default/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#a3bae9; }.x-pivotgrid .x-grid3-header-offset table td { background: url(../images/default/grid/grid3-hrow.gif) repeat-x 50% 100%; border-left: 1px solid; border-right: 1px solid; border-left-color: #EEE; border-right-color: #D0D0D0; } .x-pivotgrid .x-grid3-row-headers { background-color: #f9f9f9; } .x-pivotgrid .x-grid3-row-headers table td { background: #EEE url(../images/default/grid/grid3-rowheader.gif) repeat-x left top; border-left: 1px solid; border-right: 1px solid; border-left-color: #EEE; border-right-color: #D0D0D0; border-bottom: 1px solid; border-bottom-color: #D0D0D0; height: 18px; } .x-dd-drag-ghost{ color:#000; font: normal 11px arial, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#c3daf9; border-color:#3399bb; }.x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/default/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/default/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/default/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/default/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/default/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 11px arial, tahoma, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#000; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#000; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #eee; } .x-tree-node .x-tree-selected { background-color: #d9e8fb; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); }.x-date-picker { border-color: #1b376c; background-color:#fff; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/default/shared/hd-sprite.gif); color:#fff; font:bold 11px "sans serif", tahoma, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/default/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/default/shared/left-btn.gif); } .x-date-inner th { background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); border-bottom-color:#a3bad9; font:normal 10px arial, helvetica,tahoma,sans-serif; color:#233d6d; } .x-date-inner td { border-color:#fff; } .x-date-inner a { font:normal 11px arial, helvetica,tahoma,sans-serif; color:#000; } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); border-color:#8db2e3; } .x-date-inner .x-date-today a{ border-color:darkred; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#a3bad9; background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#000; background-color:#ddecfe; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:10px; color:#000; } .x-date-mp { background-color:#fff; } .x-date-mp td { font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns button { background-color:#083772; color:#fff; border-color: #3366cc #000055 #000055 #3366cc; font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns { background-color: #dfecfb; background-image: url(../images/default/shared/glass-bg.gif); } .x-date-mp-btns td { border-top-color: #c5d2df; } td.x-date-mp-month a,td.x-date-mp-year a { color:#15428b; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#15428b; background-color: #ddecfe; } td.x-date-mp-sel a { background-color: #dfecfb; background-image: url(../images/default/shared/glass-bg.gif); border-color:#8db2e3; } .x-date-mp-ybtn a { background-image:url(../images/default/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#c5d2df; }.x-tip .x-tip-close{ background-image: url(../images/default/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/default/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-tip .x-tip-body { font: normal 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/default/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/default/qtip/tip-anchor-sprite.gif); }.x-menu { background-color:#f0f0f0; background-image:url(../images/default/menu/menu.gif); } .x-menu-floating{ border-color:#718bb7; } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 11px arial,tahoma,sans-serif; } .x-menu-item-arrow{ background-image:url(../images/default/menu/menu-parent.gif); } .x-menu-sep { background-color:#e0e0e0; border-bottom-color:#fff; } a.x-menu-item { color:#222; } .x-menu-item-active { background-image: url(../images/default/menu/item-over.gif); background-color: #dbecf4; border-color:#aaccf6; } .x-menu-item-active a.x-menu-item { border-color:#aaccf6; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/default/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#f0f0f0 !important; background-image: none; } .x-date-menu, .x-color-menu{ background-color: #fff !important; } .x-menu .x-date-picker{ border-color:#a3bad9; } .x-cycle-menu .x-menu-item-checked { border-color:#a3bae9 !important; background-color:#def8f6; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); } .x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif; color: #393939; font-size: 12px; } .x-box-mc h3 { font-size: 14px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); }.x-combo-list { border-color:#98c0f4; background-color:#ddecfe; font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-combo-list-inner { background-color:#fff; } .x-combo-list-hd { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#15428b; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#98c0f4; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#98c0f4; } .x-combo-list-item { border-color:#fff; } .x-combo-list .x-combo-selected{ border-color:#a3bae9 !important; background-color:#dfe8f6; } .x-combo-list .x-toolbar { border-top-color:#98c0f4; } .x-combo-list-small { font:normal 11px tahoma, arial, helvetica, sans-serif; }.x-panel { border-color: #99bbe8; } .x-panel-header { color:#15428b; font-weight:bold; font-size: 11px; font-family: tahoma,arial,verdana,sans-serif; border-color:#99bbe8; background-image: url(../images/default/panel/white-top-bottom.gif); } .x-panel-body { border-color:#99bbe8; background-color:#fff; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#99bbe8; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#99bbe8; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#99bbe8; } .x-panel-tl .x-panel-header { color:#15428b; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/default/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/default/panel/corners-sprite.gif); border-bottom-color:#99bbe8; } .x-panel-bc { background-image: url(../images/default/panel/top-bottom.gif); } .x-panel-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#dfe8f6; } .x-panel-ml { background-color: #fff; background-image:url(../images/default/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/default/panel/left-right.gif); } .x-tool { background-image:url(../images/default/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#cbddf3; } .x-panel-ghost ul { border-color:#99bbe8; } .x-panel-dd-spacer { border-color:#99bbe8; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } .x-window-proxy { background-color:#c7dffc; border-color:#99bbe8; } .x-window-tl .x-window-header { color:#15428b; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-window-tc { background-image: url(../images/default/window/top-bottom.png); } .x-window-tl { background-image: url(../images/default/window/left-corners.png); } .x-window-tr { background-image: url(../images/default/window/right-corners.png); } .x-window-bc { background-image: url(../images/default/window/top-bottom.png); } .x-window-bl { background-image: url(../images/default/window/left-corners.png); } .x-window-br { background-image: url(../images/default/window/right-corners.png); } .x-window-mc { border-color:#99bbe8; font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#dfe8f6; } .x-window-ml { background-image: url(../images/default/window/left-right.png); } .x-window-mr { background-image: url(../images/default/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#99bbe8; } .x-panel-ghost .x-window-tl { border-bottom-color:#99bbe8; } .x-panel-collapsed .x-window-tl { border-bottom-color:#84a0c4; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #ccd9e8; border-color: #a3bae9 #dfe8f6 #dfe8f6 #a3bae9; } .x-window-plain .x-window-body { border-color: #dfe8f6 #a3bae9 #a3bae9 #dfe8f6; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #ccd9e8; }.x-html-editor-wrap { border-color:#a9bfd3; background-color:#fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/default/editor/tb-sprite.gif); }.x-panel-noborder .x-panel-header-noborder { border-bottom-color:#99bbe8; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#99bbe8; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#99bbe8; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#99bbe8; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#99bbe8; }.x-border-layout-ct { background-color:#dfe8f6; } .x-accordion-hd { color:#222; font-weight:normal; background-image: url(../images/default/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#d2e0f2; border-color:#98c0f4; } .x-layout-collapsed-over{ background-color:#d9e8fb; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); }.x-progress-wrap { border-color:#6593cf; } .x-progress-inner { background-color:#e0e8f3; background-image:url(../images/default/qtip/bg.gif); } .x-progress-bar { background-color:#9cbfee; background-image:url(../images/default/progress/progress-bg.gif); border-top-color:#d1e4fd; border-bottom-color:#7fa9e4; border-right-color:#7fa9e4; } .x-progress-text { font-size:11px; font-weight:bold; color:#fff; } .x-progress-text-back { color:#396095; }.x-list-header{ background-color:#f9f9f9; background-image:url(../images/default/grid/grid3-hrow.gif); } .x-list-header-inner div em { border-left-color:#ddd; font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-body dt em { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-over { background-color:#eee; } .x-list-selected { background-color:#dfe8f6; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/default/grid/sort-hd.gif); border-color: #99bbe8; }.x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/default/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/default/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/default/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/default/slider/slider-v-thumb.png); }.x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:12px; } .x-window-dlg .ext-mb-textarea { font:normal 12px tahoma,arial,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/default/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/default/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/default/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/default/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/default/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/css/xtheme-gray.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#999; background-color:#ddd; background-image:url(../images/gray/panel/white-top-bottom.gif); background-position: 0 -1px; } .ext-el-mask-msg div { background-color: #eee; border-color:#d0d0d0; color:#222; font:normal 11px Open Sans, helvetica, sans-serif; } .x-mask-loading div { background-color:#fbfbfb; background-image:url(../images/default/grid/loading.gif); } .x-item-disabled { color: gray; } .x-item-disabled * { color: gray !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#CFCFCF; background-color: #eaeaea; } /* .x-color-palette em:hover, .x-color-palette span:hover{ background-color: #eaeaea; } */ .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 11px; background-image: url(../images/default/grid/loading.gif); } .x-spotlight { background-color: #ccc; }.x-tab-panel-header, .x-tab-panel-footer { background-color: #eaeaea; border-color:#d0d0d0; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#d0d0d0; } ul.x-tab-strip-top{ background-color:#dbdbdb; background-image: url(../images/gray/tabs/tab-strip-bg.gif); border-bottom-color:#d0d0d0; } ul.x-tab-strip-bottom{ background-color:#dbdbdb; background-image: url(../images/gray/tabs/tab-strip-btm-bg.gif); border-top-color:#d0d0d0; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#d0d0d0; background-color: #eaeaea; } .x-tab-strip span.x-tab-strip-text { font:normal 11px Open Sans,Open Sans,helvetica; color:#333; } .x-tab-strip-over span.x-tab-strip-text { color:#111; } .x-tab-strip-active span.x-tab-strip-text { color:#333; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/gray/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/gray/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/gray/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-left { background-image: url(../images/gray/tabs/tab-btm-over-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-right { background-image: url(../images/gray/tabs/tab-btm-over-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/gray/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/gray/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/gray/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/gray/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#d0d0d0; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/gray/tabs/scroll-left.gif); border-bottom-color:#d0d0d0; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/gray/tabs/scroll-right.gif); border-bottom-color:#d0d0d0; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#d0d0d0; } .x-form-field{ font:normal 12px Open Sans, helvetica, sans-serif; } .x-form-text, textarea.x-form-field{ background-color:#fff; background-image:url(../images/default/form/text-bg.gif); border-color:#C1C1C1; } .x-form-select-one { background-color:#fff; border-color:#C1C1C1; } .x-form-check-group-label { border-bottom: 1px solid #d0d0d0; color: #333; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger{ background-image:url(../images/gray/form/trigger.gif); border-bottom-color:#b5b8c8; } .x-form-field-wrap .x-form-date-trigger{ background-image: url(../images/gray/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger{ background-image: url(../images/gray/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger{ background-image: url(../images/gray/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger{ border-bottom-color: #777777; } .x-item-disabled .x-form-trigger-over{ border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click{ border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus{ border-color:#777777; } .x-form-invalid, textarea.x-form-invalid{ background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .ext-webkit .x-form-invalid{ background-color:#fee; border-color:#ff7870; } .x-form-inner-invalid, textarea.x-form-inner-invalid{ background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 12px Open Sans, helvetica, sans-serif; } .x-form-item { font:normal 12px Open Sans, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 11px Open Sans, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:gray; } .x-small-editor .x-form-field { font:normal 11px Open Sans, helvetica, sans-serif; } .ext-webkit .x-small-editor .x-form-field { font:normal 12px Open Sans, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/default/form/exclamation.gif); } .x-fieldset { border-color:#CCCCCC; } .x-fieldset legend { font:bold 11px Open Sans, helvetica, sans-serif; color:#777777; }.x-btn{ font:normal 11px Open Sans, verdana, helvetica; } .x-btn button{ font:normal 11px Open Sans,Open Sans,verdana,helvetica; color:#333; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/gray/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#000; } .x-btn-disabled *{ color:gray !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/button/arrow.gif); } .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow.gif); } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/gray/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/gray/button/s-arrow-bo.gif); } .x-btn-group-header { color: #666; } .x-btn-group-tc { background-image: url(../images/gray/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/gray/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/gray/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/gray/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/gray/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/gray/button/group-tb.gif); } .x-toolbar{ border-color:#d0d0d0; background-color:#f0f0f0; background-image:url(../images/gray/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 11px Open Sans,Open Sans, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/gray/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/gray/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/default/grid/grid-split.gif); } .x-tbar-page-first{ background-image: url(../images/gray/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/gray/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/gray/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/gray/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/gray/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/default/grid/loading.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/default/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/default/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/default/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/gray/toolbar/more.gif) !important; } .x-resizable-handle { background-color:#fff; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/gray/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/gray/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/gray/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/gray/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/gray/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/gray/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/gray/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#565656; } .x-resizable-overlay{ background-color:#fff; } .x-grid3 { background-color:#fff; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#d0d0d0; } .x-grid3-row td, .x-grid3-summary-row td{ font:normal 11px/13px Open Sans, helvetica, sans-serif; } .x-grid3-hd-row td { font:normal 11px/15px Open Sans, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#eee; border-right-color:#d0d0d0; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border-color:#ededed; border-top-color:#fff; } .x-grid3-row-alt{ background-color:#fafafa; } .x-grid3-row-over { border-color:#ddd; background-color:#efefef; /* background-image:url(../images/default/grid/row-over.gif); */ } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow2.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#ACACAC; border-right-color:#ACACAC; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow-over2.gif); } .sort-asc .x-grid3-sort-icon { background-image: url(../images/gray/grid/sort_asc.gif); } .sort-desc .x-grid3-sort-icon { background-image: url(../images/gray/grid/sort_desc.gif); } .x-grid3-cell-text, .x-grid3-hd-text { color:#000; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#333; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow-over2.gif); border-color:#ACACAC; } .col-move-top{ background-image:url(../images/gray/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/gray/grid/col-move-bottom.gif); } .x-grid3-row-selected { background-color:#CCCCCC !important; background-image: none; border-color:#ACACAC; } .x-grid3-cell-selected{ background-color: #CBCBCB !important; color:#000; } .x-grid3-cell-selected span{ color:#000 !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#000; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#000; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#333 !important; } .x-grid3-dirty-cell { background-image:url(../images/default/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 11px Open Sans, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/default/grid/grid3-special-col-bg.gif) !important; color:#000 !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#fff !important; border-right-color:#eee; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/gray/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#444; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/gray/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#d0d0d0; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/gray/grid/group-collapse.gif); color:#5F5F5F; font:bold 11px Open Sans, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/gray/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 11px Open Sans, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row{ border-top-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#B9B9B9; } .x-pivotgrid .x-grid3-header-offset table td { background: url(../images/gray/grid/grid3-hrow2.gif) repeat-x 50% 100%; border-left: 1px solid; border-right: 1px solid; border-left-color: #D0D0D0; border-right-color: #D0D0D0; } .x-pivotgrid .x-grid3-row-headers { background-color: #f9f9f9; } .x-pivotgrid .x-grid3-row-headers table td { background: #EEE url(../images/default/grid/grid3-rowheader.gif) repeat-x left top; border-left: 1px solid; border-right: 1px solid; border-left-color: #EEE; border-right-color: #D0D0D0; border-bottom: 1px solid; border-bottom-color: #D0D0D0; height: 18px; } .x-dd-drag-ghost{ color:#000; font: normal 11px Open Sans, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#D6D6D6; border-color:#888888; }.x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/default/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/default/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .ext-ie .x-tree-node-el input { width:15px; height:15px; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/default/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/default/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/gray/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/gray/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/default/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/gray/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/gray/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/gray/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 11px Open Sans, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#000; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#000; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #eee; } .x-tree-node .x-tree-selected { background-color: #ddd; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); } .x-date-picker { border-color:#585858; background-color:#fff; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/gray/shared/hd-sprite.gif); color:#fff; font:bold 11px "sans serif", Open Sans, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/gray/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/gray/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/gray/shared/left-btn.gif); } .x-date-inner th { background-color:#D8D8D8; background-image: url(../images/gray/panel/white-top-bottom.gif); border-bottom-color:#AFAFAF; font:normal 10px Open Sans, helvetica,Open Sans,sans-serif; color:#595959; } .x-date-inner td { border-color:#fff; } .x-date-inner a { font:normal 11px Open Sans, helvetica,Open Sans,sans-serif; color:#000; } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-image: none; background-color:#D8D8D8; border-color:#DCDCDC; } .x-date-inner .x-date-today a{ border-color:darkred; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#AFAFAF; background-color:#D8D8D8; background:#D8D8D8 url(../images/gray/panel/white-top-bottom.gif) 0 -2px; } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#000; background-color:#D8D8D8; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:10px; color:#000; } .x-date-mp { background-color:#fff; } .x-date-mp td { font:normal 11px Open Sans, helvetica,Open Sans,sans-serif; } .x-date-mp-btns button { background-color:#4E565F; color:#fff; border-color:#C0C0C0 #434343 #434343 #C0C0C0; font:normal 11px Open Sans, helvetica,Open Sans,sans-serif; } .x-date-mp-btns { background-color:#D8D8D8; background:#D8D8D8 url(../images/gray/panel/white-top-bottom.gif) 0 -2px; } .x-date-mp-btns td { border-top-color:#AFAFAF; } td.x-date-mp-month a,td.x-date-mp-year a { color: #333; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#333; background-color:#FDFDFD; } td.x-date-mp-sel a { background-color:#D8D8D8; background:#D8D8D8 url(../images/gray/panel/white-top-bottom.gif) 0 -2px; border-color:#DCDCDC; } .x-date-mp-ybtn a { background-image:url(../images/gray/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#D7D7D7; }.x-tip .x-tip-close{ background-image: url(../images/gray/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/gray/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 11px Open Sans,Open Sans,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 11px Open Sans,Open Sans,helvetica,sans-serif; color:#444; } .x-tip .x-tip-body { font: normal 11px Open Sans,Open Sans,helvetica,sans-serif; color:#444; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/default/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/gray/qtip/tip-anchor-sprite.gif); }.x-menu { background-color:#f0f0f0; background-image:url(../images/default/menu/menu.gif); } .x-menu-floating{ border-color:#7D7D7D; } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 11px Open Sans,Open Sans,sans-serif; } .x-menu-item-arrow{ background-image:url(../images/gray/menu/menu-parent.gif); } .x-menu-sep { background-color:#e0e0e0; border-bottom-color:#fff; } a.x-menu-item { color:#222; } .x-menu-item-active { background-image: url(../images/gray/menu/item-over.gif); background-color: #f1f1f1; border-color:#ACACAC; } .x-menu-item-active a.x-menu-item { border-color:#ACACAC; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/gray/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#fff !important; } .x-menu .x-date-picker{ border-color:#AFAFAF; } .x-cycle-menu .x-menu-item-checked { border-color:#B9B9B9 !important; background-color:#F1F1F1; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); }.x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Open Sans","Helvetica","Open Sans",sans-serif; color: #393939; font-size: 12px; } .x-box-mc h3 { font-size: 14px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); } .x-combo-list { border-color:#ccc; background-color:#ddd; font:normal 12px Open Sans, helvetica, sans-serif; } .x-combo-list-inner { background-color:#fff; } .x-combo-list-hd { font:bold 11px Open Sans, helvetica, sans-serif; color:#333; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#BCBCBC; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#BEBEBE; } .x-combo-list-item { border-color:#fff; } .x-combo-list .x-combo-selected{ border-color:#777 !important; background-color:#f0f0f0; } .x-combo-list .x-toolbar { border-top-color:#BCBCBC; } .x-combo-list-small { font:normal 11px Open Sans, helvetica, sans-serif; }.x-panel { border-color: #d0d0d0; } .x-panel-header { color:#333; font-weight:bold; font-size: 11px; font-family: Open Sans,Open Sans,verdana,sans-serif; border-color:#d0d0d0; background-image: url(../images/gray/panel/white-top-bottom.gif); } .x-panel-body { border-color:#d0d0d0; background-color:#fff; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#d0d0d0; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#d0d0d0; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#d0d0d0; } .x-panel-tl .x-panel-header { color:#333; font:bold 11px Open Sans,Open Sans,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/gray/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/gray/panel/corners-sprite.gif); border-bottom-color:#d0d0d0; } .x-panel-bc { background-image: url(../images/gray/panel/top-bottom.gif); } .x-panel-mc { font: normal 11px Open Sans,Open Sans,helvetica,sans-serif; background-color:#f1f1f1; } .x-panel-ml { background-color: #fff; background-image:url(../images/gray/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/gray/panel/left-right.gif); } .x-tool { background-image:url(../images/gray/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#f2f2f2; } .x-panel-ghost ul { border-color:#d0d0d0; } .x-panel-dd-spacer { border-color:#d0d0d0; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 11px Open Sans,Open Sans, helvetica, sans-serif; } .x-window-proxy { background-color:#fcfcfc; border-color:#d0d0d0; } .x-window-tl .x-window-header { color:#555; font:bold 11px Open Sans,Open Sans,verdana,sans-serif; } .x-window-tc { background-image: url(../images/gray/window/top-bottom.png); } .x-window-tl { background-image: url(../images/gray/window/left-corners.png); } .x-window-tr { background-image: url(../images/gray/window/right-corners.png); } .x-window-bc { background-image: url(../images/gray/window/top-bottom.png); } .x-window-bl { background-image: url(../images/gray/window/left-corners.png); } .x-window-br { background-image: url(../images/gray/window/right-corners.png); } .x-window-mc { border-color:#d0d0d0; font: normal 11px Open Sans,Open Sans,helvetica,sans-serif; background-color:#e8e8e8; } .x-window-ml { background-image: url(../images/gray/window/left-right.png); } .x-window-mr { background-image: url(../images/gray/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#d0d0d0; } .x-panel-ghost .x-window-tl { border-bottom-color:#d0d0d0; } .x-panel-collapsed .x-window-tl { border-bottom-color:#d0d0d0; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #E8E8E8; border-color: #D0D0D0 #EEEEEE #EEEEEE #D0D0D0; } .x-window-plain .x-window-body { border-color: #EEEEEE #D0D0D0 #D0D0D0 #EEEEEE; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #E4E4E4; } .x-html-editor-wrap { border-color:#BCBCBC; background-color:#fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/default/editor/tb-sprite.gif); } .x-panel-noborder .x-panel-header-noborder { border-bottom-color:#d0d0d0; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#d0d0d0; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#d0d0d0; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#d0d0d0; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#d0d0d0; } .x-border-layout-ct { background-color:#f0f0f0; } .x-border-layout-ct { background-color:#f0f0f0; } .x-accordion-hd { color:#222; font-weight:normal; background-image: url(../images/gray/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#dfdfdf; border-color:#d0d0d0; } .x-layout-collapsed-over{ background-color:#e7e7e7; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-progress-wrap { border-color:#8E8E8E; } .x-progress-inner { background-color:#E7E7E7; background-image:url(../images/gray/qtip/bg.gif); } .x-progress-bar { background-color:#BCBCBC; background-image:url(../images/gray/progress/progress-bg.gif); border-top-color:#E2E2E2; border-bottom-color:#A4A4A4; border-right-color:#A4A4A4; } .x-progress-text { font-size:11px; font-weight:bold; color:#fff; } .x-progress-text-back { color:#5F5F5F; } .x-list-header{ background-color:#f9f9f9; background-image:url(../images/gray/grid/grid3-hrow2.gif); } .x-list-header-inner div em { border-left-color:#ddd; font:normal 11px Open Sans, helvetica, sans-serif; } .x-list-body dt em { font:normal 11px Open Sans, helvetica, sans-serif; } .x-list-over { background-color:#eee; } .x-list-selected { background-color:#f0f0f0; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/gray/grid/sort-hd.gif); border-color: #d0d0d0; } .x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/default/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/gray/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/default/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/gray/slider/slider-v-thumb.png); } .x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:12px; } .x-window-dlg .ext-mb-textarea { font:normal 12px Open Sans,Open Sans,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/default/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/gray/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/gray/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/gray/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/gray/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/css/yourtheme.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-el-mask { background-color: #ccc; } .ext-el-mask-msg { border-color:#6593cf; background-color:#c3daf9; background-image:url(../images/default/box/tb-blue.gif); } .ext-el-mask-msg div { background-color: #eee; border-color:#a3bad9; color:#222; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-mask-loading div { background-color:#fbfbfb; background-image:url(../images/default/grid/loading.gif); } .x-item-disabled { color: gray; } .x-item-disabled * { color: gray !important; } .x-splitbar-proxy { background-color: #aaa; } .x-color-palette a { border-color:#fff; } .x-color-palette a:hover, .x-color-palette a.x-color-palette-sel { border-color:#8bb8f3; background-color: #deecfd; } /* .x-color-palette em:hover, .x-color-palette span:hover{ background-color: #deecfd; } */ .x-color-palette em { border-color:#aca899; } .x-ie-shadow { background-color:#777; } .x-shadow .xsmc { background-image: url(../images/default/shadow-c.png); } .x-shadow .xsml, .x-shadow .xsmr { background-image: url(../images/default/shadow-lr.png); } .x-shadow .xstl, .x-shadow .xstc, .x-shadow .xstr, .x-shadow .xsbl, .x-shadow .xsbc, .x-shadow .xsbr{ background-image: url(../images/default/shadow.png); } .loading-indicator { font-size: 11px; background-image: url(../images/default/grid/loading.gif); } .x-spotlight { background-color: #ccc; } .x-tab-panel-header, .x-tab-panel-footer { background-color: #deecfd; border-color:#8db2e3; overflow:hidden; zoom:1; } .x-tab-panel-header, .x-tab-panel-footer { border-color:#8db2e3; } ul.x-tab-strip-top{ background-color:#cedff5; background-image: url(../images/default/tabs/tab-strip-bg.gif); border-bottom-color:#8db2e3; } ul.x-tab-strip-bottom{ background-color:#cedff5; background-image: url(../images/default/tabs/tab-strip-btm-bg.gif); border-top-color:#8db2e3; } .x-tab-panel-header-plain .x-tab-strip-spacer, .x-tab-panel-footer-plain .x-tab-strip-spacer { border-color:#8db2e3; background-color: #deecfd; } .x-tab-strip span.x-tab-strip-text { font:normal 11px tahoma,arial,helvetica; color:#416aa3; } .x-tab-strip-over span.x-tab-strip-text { color:#15428b; } .x-tab-strip-active span.x-tab-strip-text { color:#15428b; font-weight:bold; } .x-tab-strip-disabled .x-tabs-text { color:#aaaaaa; } .x-tab-strip-top .x-tab-right, .x-tab-strip-top .x-tab-left, .x-tab-strip-top .x-tab-strip-inner{ background-image: url(../images/default/tabs/tabs-sprite.gif); } .x-tab-strip-bottom .x-tab-right { background-image: url(../images/default/tabs/tab-btm-inactive-right-bg.gif); } .x-tab-strip-bottom .x-tab-left { background-image: url(../images/default/tabs/tab-btm-inactive-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-right { background-image: url(../images/default/tabs/tab-btm-over-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-over .x-tab-left { background-image: url(../images/default/tabs/tab-btm-over-left-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-right { background-image: url(../images/default/tabs/tab-btm-right-bg.gif); } .x-tab-strip-bottom .x-tab-strip-active .x-tab-left { background-image: url(../images/default/tabs/tab-btm-left-bg.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close { background-image:url(../images/default/tabs/tab-close.gif); } .x-tab-strip .x-tab-strip-closable a.x-tab-strip-close:hover{ background-image:url(../images/default/tabs/tab-close.gif); } .x-tab-panel-body { border-color:#8db2e3; background-color:#fff; } .x-tab-panel-body-top { border-top: 0 none; } .x-tab-panel-body-bottom { border-bottom: 0 none; } .x-tab-scroller-left { background-image:url(../images/default/tabs/scroll-left.gif); border-bottom-color:#8db2e3; } .x-tab-scroller-left-over { background-position: 0 0; } .x-tab-scroller-left-disabled { background-position: -18px 0; opacity:.5; -moz-opacity:.5; filter:alpha(opacity=50); cursor:default; } .x-tab-scroller-right { background-image:url(../images/default/tabs/scroll-right.gif); border-bottom-color:#8db2e3; } .x-tab-panel-bbar .x-toolbar, .x-tab-panel-tbar .x-toolbar { border-color:#99bbe8; }.x-form-field { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-text, textarea.x-form-field { background-color:#fff; background-image:url(../images/default/form/text-bg.gif); border-color:#b5b8c8; } .x-form-select-one { background-color:#fff; border-color:#b5b8c8; } .x-form-check-group-label { border-bottom: 1px solid #99bbe8; color: #15428b; } .x-editor .x-form-check-wrap { background-color:#fff; } .x-form-field-wrap .x-form-trigger { background-image:url(../images/default/form/trigger.gif); border-bottom-color:#b5b8c8; } .x-form-field-wrap .x-form-date-trigger { background-image: url(../images/default/form/date-trigger.gif); } .x-form-field-wrap .x-form-clear-trigger { background-image: url(../images/default/form/clear-trigger.gif); } .x-form-field-wrap .x-form-search-trigger { background-image: url(../images/default/form/search-trigger.gif); } .x-trigger-wrap-focus .x-form-trigger { border-bottom-color:#7eadd9; } .x-item-disabled .x-form-trigger-over { border-bottom-color:#b5b8c8; } .x-item-disabled .x-form-trigger-click { border-bottom-color:#b5b8c8; } .x-form-focus, textarea.x-form-focus { border-color:#7eadd9; } .x-form-invalid, textarea.x-form-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .x-form-invalid.x-form-composite { border: none; background-image: none; } .x-form-invalid.x-form-composite .x-form-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); border-color:#c30; } .x-form-inner-invalid, textarea.x-form-inner-invalid { background-color:#fff; background-image:url(../images/default/grid/invalid_line.gif); } .x-form-grow-sizer { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-item { font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-form-invalid-msg { color:#c0272b; font:normal 11px tahoma, arial, helvetica, sans-serif; background-image:url(../images/default/shared/warning.gif); } .x-form-empty-field { color:gray; } .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .ext-webkit .x-small-editor .x-form-field { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-form-invalid-icon { background-image:url(../images/default/form/exclamation.gif); } .x-fieldset { border-color:#b5b8c8; } .x-fieldset legend { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#15428b; } .x-btn{ font:normal 11px tahoma, verdana, helvetica; } .x-btn button{ font:normal 11px arial,tahoma,verdana,helvetica; color:#333; } .x-btn em { font-style:normal; font-weight:normal; } .x-btn-tl, .x-btn-tr, .x-btn-tc, .x-btn-ml, .x-btn-mr, .x-btn-mc, .x-btn-bl, .x-btn-br, .x-btn-bc{ background-image:url(../images/default/button/btn.gif); } .x-btn-click .x-btn-text, .x-btn-menu-active .x-btn-text, .x-btn-pressed .x-btn-text{ color:#000; } .x-btn-disabled *{ color:gray !important; } .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/button/arrow.gif); } .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow.gif); } .x-btn-over .x-btn-mc em.x-btn-split, .x-btn-click .x-btn-mc em.x-btn-split, .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-o.gif); } .x-btn-mc em.x-btn-arrow-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b.gif); } .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-bo.gif); } .x-btn-group-header { color: #3e6aaa; } .x-btn-group-tc { background-image: url(../images/default/button/group-tb.gif); } .x-btn-group-tl { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-tr { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-bc { background-image: url(../images/default/button/group-tb.gif); } .x-btn-group-bl { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-br { background-image: url(../images/default/button/group-cs.gif); } .x-btn-group-ml { background-image: url(../images/default/button/group-lr.gif); } .x-btn-group-mr { background-image: url(../images/default/button/group-lr.gif); } .x-btn-group-notitle .x-btn-group-tc { background-image: url(../images/default/button/group-tb.gif); }.x-toolbar{ border-color:#a9bfd3; background-color:#d0def0; background-image:url(../images/default/toolbar/bg.gif); } .x-toolbar td,.x-toolbar span,.x-toolbar input,.x-toolbar div,.x-toolbar select,.x-toolbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } .x-toolbar .x-item-disabled { color:gray; } .x-toolbar .x-item-disabled * { color:gray; } .x-toolbar .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split { background-image:url(../images/default/button/s-arrow-o.gif); } .x-toolbar .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-b-noline.gif); } .x-toolbar .x-btn-over .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-click .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-menu-active .x-btn-mc em.x-btn-split-bottom, .x-toolbar .x-btn-pressed .x-btn-mc em.x-btn-split-bottom { background-image:url(../images/default/button/s-arrow-bo.gif); } .x-toolbar .xtb-sep { background-image: url(../images/default/grid/grid-blue-split.gif); } .x-tbar-page-first{ background-image: url(../images/default/grid/page-first.gif) !important; } .x-tbar-loading{ background-image: url(../images/default/grid/refresh.gif) !important; } .x-tbar-page-last{ background-image: url(../images/default/grid/page-last.gif) !important; } .x-tbar-page-next{ background-image: url(../images/default/grid/page-next.gif) !important; } .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev.gif) !important; } .x-item-disabled .x-tbar-loading{ background-image: url(../images/default/grid/refresh-disabled.gif) !important; } .x-item-disabled .x-tbar-page-first{ background-image: url(../images/default/grid/page-first-disabled.gif) !important; } .x-item-disabled .x-tbar-page-last{ background-image: url(../images/default/grid/page-last-disabled.gif) !important; } .x-item-disabled .x-tbar-page-next{ background-image: url(../images/default/grid/page-next-disabled.gif) !important; } .x-item-disabled .x-tbar-page-prev{ background-image: url(../images/default/grid/page-prev-disabled.gif) !important; } .x-paging-info { color:#444; } .x-toolbar-more-icon { background-image: url(../images/default/toolbar/more.gif) !important; }.x-resizable-handle { background-color:#fff; } .x-resizable-over .x-resizable-handle-east, .x-resizable-pinned .x-resizable-handle-east, .x-resizable-over .x-resizable-handle-west, .x-resizable-pinned .x-resizable-handle-west { background-image:url(../images/default/sizer/e-handle.gif); } .x-resizable-over .x-resizable-handle-south, .x-resizable-pinned .x-resizable-handle-south, .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north { background-image:url(../images/default/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-north, .x-resizable-pinned .x-resizable-handle-north{ background-image:url(../images/default/sizer/s-handle.gif); } .x-resizable-over .x-resizable-handle-southeast, .x-resizable-pinned .x-resizable-handle-southeast{ background-image:url(../images/default/sizer/se-handle.gif); } .x-resizable-over .x-resizable-handle-northwest, .x-resizable-pinned .x-resizable-handle-northwest{ background-image:url(../images/default/sizer/nw-handle.gif); } .x-resizable-over .x-resizable-handle-northeast, .x-resizable-pinned .x-resizable-handle-northeast{ background-image:url(../images/default/sizer/ne-handle.gif); } .x-resizable-over .x-resizable-handle-southwest, .x-resizable-pinned .x-resizable-handle-southwest{ background-image:url(../images/default/sizer/sw-handle.gif); } .x-resizable-proxy{ border-color:#3b5a82; } .x-resizable-overlay{ background-color:#fff; } .x-grid3 { background-color:#fff; } .x-grid-panel .x-panel-mc .x-panel-body { border-color:#99bbe8; } .x-grid3-row td, .x-grid3-summary-row td{ font:normal 11px/13px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { font:normal 11px/15px arial, tahoma, helvetica, sans-serif; } .x-grid3-hd-row td { border-left-color:#eee; border-right-color:#d0d0d0; } .x-grid-row-loading { background-color: #fff; background-image:url(../images/default/shared/loading-balls.gif); } .x-grid3-row { border-color:#ededed; border-top-color:#fff; } .x-grid3-row-alt{ background-color:#fafafa; } .x-grid3-row-over { border-color:#ddd; background-color:#efefef; background-image:url(../images/default/grid/row-over.gif); } .x-grid3-resize-proxy { background-color:#777; } .x-grid3-resize-marker { background-color:#777; } .x-grid3-header{ background-color:#f9f9f9; background-image:url(../images/default/grid/grid3-hrow.gif); } .x-grid3-header-pop { border-left-color:#d0d0d0; } .x-grid3-header-pop-inner { border-left-color:#eee; background-image:url(../images/default/grid/hd-pop.gif); } td.x-grid3-hd-over, td.sort-desc, td.sort-asc, td.x-grid3-hd-menu-open { border-left-color:#aaccf6; border-right-color:#aaccf6; } td.x-grid3-hd-over .x-grid3-hd-inner, td.sort-desc .x-grid3-hd-inner, td.sort-asc .x-grid3-hd-inner, td.x-grid3-hd-menu-open .x-grid3-hd-inner { background-color:#ebf3fd; background-image:url(../images/default/grid/grid3-hrow-over.gif); } .sort-asc .x-grid3-sort-icon { background-image: url(../images/default/grid/sort_asc.gif); } .sort-desc .x-grid3-sort-icon { background-image: url(../images/default/grid/sort_desc.gif); } .x-grid3-cell-text, .x-grid3-hd-text { color:#000; } .x-grid3-split { background-image: url(../images/default/grid/grid-split.gif); } .x-grid3-hd-text { color:#15428b; } .x-dd-drag-proxy .x-grid3-hd-inner{ background-color:#ebf3fd; background-image:url(../images/default/grid/grid3-hrow-over.gif); border-color:#aaccf6; } .col-move-top{ background-image:url(../images/default/grid/col-move-top.gif); } .col-move-bottom{ background-image:url(../images/default/grid/col-move-bottom.gif); } td.grid-hd-group-cell { background: url(../images/default/grid/grid3-hrow.gif) repeat-x bottom; } .x-grid3-row-selected { background-color: #dfe8f6 !important; background-image: none; border-color:#a3bae9; } .x-grid3-cell-selected{ background-color: #b8cfee !important; color:#000; } .x-grid3-cell-selected span{ color:#000 !important; } .x-grid3-cell-selected .x-grid3-cell-text{ color:#000; } .x-grid3-locked td.x-grid3-row-marker, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker{ background-color:#ebeadb !important; background-image:url(../images/default/grid/grid-hrow.gif) !important; color:#000; border-top-color:#fff; border-right-color:#6fa0df !important; } .x-grid3-locked td.x-grid3-row-marker div, .x-grid3-locked .x-grid3-row-selected td.x-grid3-row-marker div{ color:#15428b !important; } .x-grid3-dirty-cell { background-image:url(../images/default/grid/dirty.gif); } .x-grid3-topbar, .x-grid3-bottombar{ font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-grid3-bottombar .x-toolbar{ border-top-color:#a9bfd3; } .x-props-grid .x-grid3-td-name .x-grid3-cell-inner{ background-image:url(../images/default/grid/grid3-special-col-bg.gif) !important; color:#000 !important; } .x-props-grid .x-grid3-body .x-grid3-td-name{ background-color:#fff !important; border-right-color:#eee; } .xg-hmenu-sort-asc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-asc.gif); } .xg-hmenu-sort-desc .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-desc.gif); } .xg-hmenu-lock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-lock.gif); } .xg-hmenu-unlock .x-menu-item-icon{ background-image: url(../images/default/grid/hmenu-unlock.gif); } .x-grid3-hd-btn { background-color:#c3daf9; background-image:url(../images/default/grid/grid3-hd-btn.gif); } .x-grid3-body .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-expander { background-image:url(../images/default/grid/row-expand-sprite.gif); } .x-grid3-body .x-grid3-td-checker { background-image: url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-row-checker, .x-grid3-hd-checker { background-image:url(../images/default/grid/row-check-sprite.gif); } .x-grid3-body .x-grid3-td-numberer { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-td-numberer .x-grid3-cell-inner { color:#444; } .x-grid3-body .x-grid3-td-row-icon { background-image:url(../images/default/grid/grid3-special-col-bg.gif); } .x-grid3-body .x-grid3-row-selected .x-grid3-td-numberer, .x-grid3-body .x-grid3-row-selected .x-grid3-td-checker, .x-grid3-body .x-grid3-row-selected .x-grid3-td-expander { background-image:url(../images/default/grid/grid3-special-col-sel-bg.gif); } .x-grid3-check-col { background-image:url(../images/default/menu/unchecked.gif); } .x-grid3-check-col-on { background-image:url(../images/default/menu/checked.gif); } .x-grid-group, .x-grid-group-body, .x-grid-group-hd { zoom:1; } .x-grid-group-hd { border-bottom-color:#99bbe8; } .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/default/grid/group-collapse.gif); color:#3764a0; font:bold 11px tahoma, arial, helvetica, sans-serif; } .x-grid-group-collapsed .x-grid-group-hd div.x-grid-group-title { background-image:url(../images/default/grid/group-expand.gif); } .x-group-by-icon { background-image:url(../images/default/grid/group-by.gif); } .x-cols-icon { background-image:url(../images/default/grid/columns.gif); } .x-show-groups-icon { background-image:url(../images/default/grid/group-by.gif); } .x-grid-empty { color:gray; font:normal 11px tahoma, arial, helvetica, sans-serif; } .x-grid-with-col-lines .x-grid3-row td.x-grid3-cell { border-right-color:#ededed; } .x-grid-with-col-lines .x-grid3-row-selected { border-top-color:#a3bae9; }.x-dd-drag-ghost{ color:#000; font: normal 11px arial, helvetica, sans-serif; border-color: #ddd #bbb #bbb #ddd; background-color:#fff; } .x-dd-drop-nodrop .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-no.gif); } .x-dd-drop-ok .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-yes.gif); } .x-dd-drop-ok-add .x-dd-drop-icon{ background-image: url(../images/default/dd/drop-add.gif); } .x-view-selector { background-color:#c3daf9; border-color:#3399bb; }.x-tree-node-expanded .x-tree-node-icon{ background-image:url(../images/default/tree/folder-open.gif); } .x-tree-node-leaf .x-tree-node-icon{ background-image:url(../images/default/tree/leaf.gif); } .x-tree-node-collapsed .x-tree-node-icon{ background-image:url(../images/default/tree/folder.gif); } .x-tree-node-loading .x-tree-node-icon{ background-image:url(../images/default/tree/loading.gif) !important; } .x-tree-node .x-tree-node-inline-icon { background-image: none; } .x-tree-node-loading a span{ font-style: italic; color:#444444; } .x-tree-lines .x-tree-elbow{ background-image:url(../images/default/tree/elbow.gif); } .x-tree-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus.gif); } .x-tree-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus.gif); } .x-tree-lines .x-tree-elbow-end{ background-image:url(../images/default/tree/elbow-end.gif); } .x-tree-lines .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/elbow-end-plus.gif); } .x-tree-lines .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/elbow-end-minus.gif); } .x-tree-lines .x-tree-elbow-line{ background-image:url(../images/default/tree/elbow-line.gif); } .x-tree-no-lines .x-tree-elbow-plus{ background-image:url(../images/default/tree/elbow-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-minus{ background-image:url(../images/default/tree/elbow-minus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/elbow-end-plus-nl.gif); } .x-tree-no-lines .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/elbow-end-minus-nl.gif); } .x-tree-arrows .x-tree-elbow-plus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-minus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-plus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-arrows .x-tree-elbow-end-minus{ background-image:url(../images/default/tree/arrows.gif); } .x-tree-node{ color:#000; font: normal 11px arial, tahoma, helvetica, sans-serif; } .x-tree-node a, .x-dd-drag-ghost a{ color:#000; } .x-tree-node a span, .x-dd-drag-ghost a span{ color:#000; } .x-tree-node .x-tree-node-disabled a span{ color:gray !important; } .x-tree-node div.x-tree-drag-insert-below{ border-bottom-color:#36c; } .x-tree-node div.x-tree-drag-insert-above{ border-top-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-below a{ border-bottom-color:#36c; } .x-tree-dd-underline .x-tree-node div.x-tree-drag-insert-above a{ border-top-color:#36c; } .x-tree-node .x-tree-drag-append a span{ background-color:#ddd; border-color:gray; } .x-tree-node .x-tree-node-over { background-color: #eee; } .x-tree-node .x-tree-selected { background-color: #d9e8fb; } .x-tree-drop-ok-append .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-add.gif); } .x-tree-drop-ok-above .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-over.gif); } .x-tree-drop-ok-below .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-under.gif); } .x-tree-drop-ok-between .x-dd-drop-icon{ background-image: url(../images/default/tree/drop-between.gif); }.x-date-picker { border-color: #1b376c; background-color:#fff; } .x-date-middle,.x-date-left,.x-date-right { background-image: url(../images/default/shared/hd-sprite.gif); color:#fff; font:bold 11px "sans serif", tahoma, verdana, helvetica; } .x-date-middle .x-btn .x-btn-text { color:#fff; } .x-date-middle .x-btn-mc em.x-btn-arrow { background-image:url(../images/default/toolbar/btn-arrow-light.gif); } .x-date-right a { background-image: url(../images/default/shared/right-btn.gif); } .x-date-left a{ background-image: url(../images/default/shared/left-btn.gif); } .x-date-inner th { background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); border-bottom-color:#a3bad9; font:normal 10px arial, helvetica,tahoma,sans-serif; color:#233d6d; } .x-date-inner td { border-color:#fff; } .x-date-inner a { font:normal 11px arial, helvetica,tahoma,sans-serif; color:#000; } .x-date-inner .x-date-active{ color:#000; } .x-date-inner .x-date-selected a{ background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); border-color:#8db2e3; } .x-date-inner .x-date-today a{ border-color:darkred; } .x-date-inner .x-date-selected span{ font-weight:bold; } .x-date-inner .x-date-prevday a,.x-date-inner .x-date-nextday a { color:#aaa; } .x-date-bottom { border-top-color:#a3bad9; background-color:#dfecfb; background-image:url(../images/default/shared/glass-bg.gif); } .x-date-inner a:hover, .x-date-inner .x-date-disabled a:hover{ color:#000; background-color:#ddecfe; } .x-date-inner .x-date-disabled a { background-color:#eee; color:#bbb; } .x-date-mmenu{ background-color:#eee !important; } .x-date-mmenu .x-menu-item { font-size:10px; color:#000; } .x-date-mp { background-color:#fff; } .x-date-mp td { font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns button { background-color:#083772; color:#fff; border-color: #3366cc #000055 #000055 #3366cc; font:normal 11px arial, helvetica,tahoma,sans-serif; } .x-date-mp-btns { background-color: #dfecfb; background-image: url(../images/default/shared/glass-bg.gif); } .x-date-mp-btns td { border-top-color: #c5d2df; } td.x-date-mp-month a,td.x-date-mp-year a { color:#15428b; } td.x-date-mp-month a:hover,td.x-date-mp-year a:hover { color:#15428b; background-color: #ddecfe; } td.x-date-mp-sel a { background-color: #dfecfb; background-image: url(../images/default/shared/glass-bg.gif); border-color:#8db2e3; } .x-date-mp-ybtn a { background-image:url(../images/default/panel/tool-sprites.gif); } td.x-date-mp-sep { border-right-color:#c5d2df; }.x-tip .x-tip-close{ background-image: url(../images/default/qtip/close.gif); } .x-tip .x-tip-tc, .x-tip .x-tip-tl, .x-tip .x-tip-tr, .x-tip .x-tip-bc, .x-tip .x-tip-bl, .x-tip .x-tip-br, .x-tip .x-tip-ml, .x-tip .x-tip-mr { background-image: url(../images/default/qtip/tip-sprite.gif); } .x-tip .x-tip-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; } .x-tip .x-tip-ml { background-color: #fff; } .x-tip .x-tip-header-text { font: bold 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-tip .x-tip-body { font: normal 11px tahoma,arial,helvetica,sans-serif; color:#444; } .x-form-invalid-tip .x-tip-tc, .x-form-invalid-tip .x-tip-tl, .x-form-invalid-tip .x-tip-tr, .x-form-invalid-tip .x-tip-bc, .x-form-invalid-tip .x-tip-bl, .x-form-invalid-tip .x-tip-br, .x-form-invalid-tip .x-tip-ml, .x-form-invalid-tip .x-tip-mr { background-image: url(../images/default/form/error-tip-corners.gif); } .x-form-invalid-tip .x-tip-body { background-image:url(../images/default/form/exclamation.gif); } .x-tip-anchor { background-image:url(../images/default/qtip/tip-anchor-sprite.gif); }.x-menu { background-color:#f0f0f0; background-image:url(../images/default/menu/menu.gif); } .x-menu-floating{ border-color:#718bb7; } .x-menu-nosep { background-image:none; } .x-menu-list-item{ font:normal 11px arial,tahoma,sans-serif; } .x-menu-item-arrow{ background-image:url(../images/default/menu/menu-parent.gif); } .x-menu-sep { background-color:#e0e0e0; border-bottom-color:#fff; } a.x-menu-item { color:#222; } .x-menu-item-active { background-image: url(../images/default/menu/item-over.gif); background-color: #dbecf4; border-color:#aaccf6; } .x-menu-item-active a.x-menu-item { border-color:#aaccf6; } .x-menu-check-item .x-menu-item-icon{ background-image:url(../images/default/menu/unchecked.gif); } .x-menu-item-checked .x-menu-item-icon{ background-image:url(../images/default/menu/checked.gif); } .x-menu-item-checked .x-menu-group-item .x-menu-item-icon{ background-image:url(../images/default/menu/group-checked.gif); } .x-menu-group-item .x-menu-item-icon{ background-image:none; } .x-menu-plain { background-color:#f0f0f0 !important; background-image: none; } .x-date-menu, .x-color-menu{ background-color: #fff !important; } .x-menu .x-date-picker{ border-color:#a3bad9; } .x-cycle-menu .x-menu-item-checked { border-color:#a3bae9 !important; background-color:#def8f6; } .x-menu-scroller-top { background-image:url(../images/default/layout/mini-top.gif); } .x-menu-scroller-bottom { background-image:url(../images/default/layout/mini-bottom.gif); } .x-box-tl { background-image: url(../images/default/box/corners.gif); } .x-box-tc { background-image: url(../images/default/box/tb.gif); } .x-box-tr { background-image: url(../images/default/box/corners.gif); } .x-box-ml { background-image: url(../images/default/box/l.gif); } .x-box-mc { background-color: #eee; background-image: url(../images/default/box/tb.gif); font-family: "Myriad Pro","Myriad Web","Tahoma","Helvetica","Arial",sans-serif; color: #393939; font-size: 12px; } .x-box-mc h3 { font-size: 14px; font-weight: bold; } .x-box-mr { background-image: url(../images/default/box/r.gif); } .x-box-bl { background-image: url(../images/default/box/corners.gif); } .x-box-bc { background-image: url(../images/default/box/tb.gif); } .x-box-br { background-image: url(../images/default/box/corners.gif); } .x-box-blue .x-box-bl, .x-box-blue .x-box-br, .x-box-blue .x-box-tl, .x-box-blue .x-box-tr { background-image: url(../images/default/box/corners-blue.gif); } .x-box-blue .x-box-bc, .x-box-blue .x-box-mc, .x-box-blue .x-box-tc { background-image: url(../images/default/box/tb-blue.gif); } .x-box-blue .x-box-mc { background-color: #c3daf9; } .x-box-blue .x-box-mc h3 { color: #17385b; } .x-box-blue .x-box-ml { background-image: url(../images/default/box/l-blue.gif); } .x-box-blue .x-box-mr { background-image: url(../images/default/box/r-blue.gif); }.x-combo-list { border-color:#98c0f4; background-color:#ddecfe; font:normal 12px tahoma, arial, helvetica, sans-serif; } .x-combo-list-inner { background-color:#fff; } .x-combo-list-hd { font:bold 11px tahoma, arial, helvetica, sans-serif; color:#15428b; background-image: url(../images/default/layout/panel-title-light-bg.gif); border-bottom-color:#98c0f4; } .x-resizable-pinned .x-combo-list-inner { border-bottom-color:#98c0f4; } .x-combo-list-item { border-color:#fff; } .x-combo-list .x-combo-selected{ border-color:#a3bae9 !important; background-color:#dfe8f6; } .x-combo-list .x-toolbar { border-top-color:#98c0f4; } .x-combo-list-small { font:normal 11px tahoma, arial, helvetica, sans-serif; }.x-panel { border-color: #99bbe8; } .x-panel-header { color:#15428b; font-weight:bold; font-size: 11px; font-family: tahoma,arial,verdana,sans-serif; border-color:#99bbe8; background-image: url(../images/default/panel/white-top-bottom.gif); } .x-panel-body { border-color:#99bbe8; background-color:#fff; } .x-panel-bbar .x-toolbar, .x-panel-tbar .x-toolbar { border-color:#99bbe8; } .x-panel-tbar-noheader .x-toolbar, .x-panel-mc .x-panel-tbar .x-toolbar { border-top-color:#99bbe8; } .x-panel-body-noheader, .x-panel-mc .x-panel-body { border-top-color:#99bbe8; } .x-panel-tl .x-panel-header { color:#15428b; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-panel-tc { background-image: url(../images/default/panel/top-bottom.gif); } .x-panel-tl, .x-panel-tr, .x-panel-bl, .x-panel-br{ background-image: url(../images/default/panel/corners-sprite.gif); border-bottom-color:#99bbe8; } .x-panel-bc { background-image: url(../images/default/panel/top-bottom.gif); } .x-panel-mc { font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#dfe8f6; } .x-panel-ml { background-color: #fff; background-image:url(../images/default/panel/left-right.gif); } .x-panel-mr { background-image: url(../images/default/panel/left-right.gif); } .x-tool { background-image:url(../images/default/panel/tool-sprites.gif); } .x-panel-ghost { background-color:#cbddf3; } .x-panel-ghost ul { border-color:#99bbe8; } .x-panel-dd-spacer { border-color:#99bbe8; } .x-panel-fbar td,.x-panel-fbar span,.x-panel-fbar input,.x-panel-fbar div,.x-panel-fbar select,.x-panel-fbar label{ font:normal 11px arial,tahoma, helvetica, sans-serif; } .x-window-proxy { background-color:#c7dffc; border-color:#99bbe8; } .x-window-tl .x-window-header { color:#15428b; font:bold 11px tahoma,arial,verdana,sans-serif; } .x-window-tc { background-image: url(../images/default/window/top-bottom.png); } .x-window-tl { background-image: url(../images/default/window/left-corners.png); } .x-window-tr { background-image: url(../images/default/window/right-corners.png); } .x-window-bc { background-image: url(../images/default/window/top-bottom.png); } .x-window-bl { background-image: url(../images/default/window/left-corners.png); } .x-window-br { background-image: url(../images/default/window/right-corners.png); } .x-window-mc { border-color:#99bbe8; font: normal 11px tahoma,arial,helvetica,sans-serif; background-color:#dfe8f6; } .x-window-ml { background-image: url(../images/default/window/left-right.png); } .x-window-mr { background-image: url(../images/default/window/left-right.png); } .x-window-maximized .x-window-tc { background-color:#fff; } .x-window-bbar .x-toolbar { border-top-color:#99bbe8; } .x-panel-ghost .x-window-tl { border-bottom-color:#99bbe8; } .x-panel-collapsed .x-window-tl { border-bottom-color:#84a0c4; } .x-dlg-mask{ background-color:#ccc; } .x-window-plain .x-window-mc { background-color: #ccd9e8; border-color: #a3bae9 #dfe8f6 #dfe8f6 #a3bae9; } .x-window-plain .x-window-body { border-color: #dfe8f6 #a3bae9 #a3bae9 #dfe8f6; } body.x-body-masked .x-window-plain .x-window-mc { background-color: #ccd9e8; }.x-html-editor-wrap { border-color:#a9bfd3; background-color:#fff; } .x-html-editor-tb .x-btn-text { background-image:url(../images/default/editor/tb-sprite.gif); }.x-panel-noborder .x-panel-header-noborder { border-bottom-color:#99bbe8; } .x-panel-noborder .x-panel-tbar-noborder .x-toolbar { border-bottom-color:#99bbe8; } .x-panel-noborder .x-panel-bbar-noborder .x-toolbar { border-top-color:#99bbe8; } .x-tab-panel-bbar-noborder .x-toolbar { border-top-color:#99bbe8; } .x-tab-panel-tbar-noborder .x-toolbar { border-bottom-color:#99bbe8; }.x-border-layout-ct { background-color:#dfe8f6; } .x-accordion-hd { color:#222; font-weight:normal; background-image: url(../images/default/panel/light-hd.gif); } .x-layout-collapsed{ background-color:#d2e0f2; border-color:#98c0f4; } .x-layout-collapsed-over{ background-color:#d9e8fb; } .x-layout-split-west .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-split-east .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-split-north .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); } .x-layout-split-south .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-west .x-layout-mini { background-image:url(../images/default/layout/mini-right.gif); } .x-layout-cmini-east .x-layout-mini { background-image:url(../images/default/layout/mini-left.gif); } .x-layout-cmini-north .x-layout-mini { background-image:url(../images/default/layout/mini-bottom.gif); } .x-layout-cmini-south .x-layout-mini { background-image:url(../images/default/layout/mini-top.gif); }.x-progress-wrap { border-color:#6593cf; } .x-progress-inner { background-color:#e0e8f3; background-image:url(../images/default/qtip/bg.gif); } .x-progress-bar { background-color:#9cbfee; background-image:url(../images/default/progress/progress-bg.gif); border-top-color:#d1e4fd; border-bottom-color:#7fa9e4; border-right-color:#7fa9e4; } .x-progress-text { font-size:11px; font-weight:bold; color:#fff; } .x-progress-text-back { color:#396095; }.x-list-header{ background-color:#f9f9f9; background-image:url(../images/default/grid/grid3-hrow.gif); } .x-list-header-inner div em { border-left-color:#ddd; font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-body dt em { font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-list-over { background-color:#eee; } .x-list-selected { background-color:#dfe8f6; } .x-list-resizer { border-left-color:#555; border-right-color:#555; } .x-list-header-inner em.sort-asc, .x-list-header-inner em.sort-desc { background-image:url(../images/default/grid/sort-hd.gif); border-color: #99bbe8; }.x-slider-horz, .x-slider-horz .x-slider-end, .x-slider-horz .x-slider-inner { background-image:url(../images/default/slider/slider-bg.png); } .x-slider-horz .x-slider-thumb { background-image:url(../images/default/slider/slider-thumb.png); } .x-slider-vert, .x-slider-vert .x-slider-end, .x-slider-vert .x-slider-inner { background-image:url(../images/default/slider/slider-v-bg.png); } .x-slider-vert .x-slider-thumb { background-image:url(../images/default/slider/slider-v-thumb.png); }.x-window-dlg .ext-mb-text, .x-window-dlg .x-window-header-text { font-size:12px; } .x-window-dlg .ext-mb-textarea { font:normal 12px tahoma,arial,helvetica,sans-serif; } .x-window-dlg .x-msg-box-wait { background-image:url(../images/default/grid/loading.gif); } .x-window-dlg .ext-mb-info { background-image:url(../images/default/window/icon-info.gif); } .x-window-dlg .ext-mb-warning { background-image:url(../images/default/window/icon-warning.gif); } .x-window-dlg .ext-mb-question { background-image:url(../images/default/window/icon-question.gif); } .x-window-dlg .ext-mb-error { background-image:url(../images/default/window/icon-error.gif); } ================================================ FILE: client/src/ext/resources/images/yourtheme/README.txt ================================================ 2010-03-16 jwr: The image directory, "yourtheme", is an exact copy of the "default" image directory. Remember to update your file paths in "css/yourtheme.css" if you make changes or add your own custom images for your custom theme. ================================================ FILE: client/src/ext/ux/BufferView.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.BufferView * @extends Ext.grid.GridView * A custom GridView which renders rows on an as-needed basis. */ Ext.ux.grid.BufferView = Ext.extend(Ext.grid.GridView, { /** * @cfg {Number} rowHeight * The height of a row in the grid. */ rowHeight: 19, /** * @cfg {Number} borderHeight * The combined height of border-top and border-bottom of a row. */ borderHeight: 2, /** * @cfg {Boolean/Number} scrollDelay * The number of milliseconds before rendering rows out of the visible * viewing area. Defaults to 100. Rows will render immediately with a config * of false. */ scrollDelay: 100, /** * @cfg {Number} cacheSize * The number of rows to look forward and backwards from the currently viewable * area. The cache applies only to rows that have been rendered already. */ cacheSize: 20, /** * @cfg {Number} cleanDelay * The number of milliseconds to buffer cleaning of extra rows not in the * cache. */ cleanDelay: 500, initTemplates : function(){ Ext.ux.grid.BufferView.superclass.initTemplates.call(this); var ts = this.templates; // empty div to act as a place holder for a row ts.rowHolder = new Ext.Template( '
    ' ); ts.rowHolder.disableFormats = true; ts.rowHolder.compile(); ts.rowBody = new Ext.Template( '', '{cells}', (this.enableRowBody ? '' : ''), '
    {body}
    ' ); ts.rowBody.disableFormats = true; ts.rowBody.compile(); }, getStyleRowHeight : function(){ return Ext.isBorderBox ? (this.rowHeight + this.borderHeight) : this.rowHeight; }, getCalculatedRowHeight : function(){ return this.rowHeight + this.borderHeight; }, getVisibleRowCount : function(){ var rh = this.getCalculatedRowHeight(), visibleHeight = this.scroller.dom.clientHeight; return (visibleHeight < 1) ? 0 : Math.ceil(visibleHeight / rh); }, getVisibleRows: function(){ var count = this.getVisibleRowCount(), sc = this.scroller.dom.scrollTop, start = (sc === 0 ? 0 : Math.floor(sc/this.getCalculatedRowHeight())-1); return { first: Math.max(start, 0), last: Math.min(start + count + 2, this.ds.getCount()-1) }; }, doRender : function(cs, rs, ds, startRow, colCount, stripe, onlyBody){ var ts = this.templates, ct = ts.cell, rt = ts.row, rb = ts.rowBody, last = colCount-1, rh = this.getStyleRowHeight(), vr = this.getVisibleRows(), tstyle = 'width:'+this.getTotalWidth()+';height:'+rh+'px;', // buffers buf = [], cb, c, p = {}, rp = {tstyle: tstyle}, r; for (var j = 0, len = rs.length; j < len; j++) { r = rs[j]; cb = []; var rowIndex = (j+startRow), visible = rowIndex >= vr.first && rowIndex <= vr.last; if (visible) { for (var i = 0; i < colCount; i++) { c = cs[i]; p.id = c.id; p.css = i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); p.attr = p.cellAttr = ""; p.value = c.renderer(r.data[c.name], p, r, rowIndex, i, ds); p.style = c.style; if (p.value === undefined || p.value === "") { p.value = " "; } if (r.dirty && typeof r.modified[c.name] !== 'undefined') { p.css += ' x-grid3-dirty-cell'; } cb[cb.length] = ct.apply(p); } } var alt = []; if(stripe && ((rowIndex+1) % 2 === 0)){ alt[0] = "x-grid3-row-alt"; } if(r.dirty){ alt[1] = " x-grid3-dirty-row"; } rp.cols = colCount; if(this.getRowClass){ alt[2] = this.getRowClass(r, rowIndex, rp, ds); } rp.alt = alt.join(" "); rp.cells = cb.join(""); buf[buf.length] = !visible ? ts.rowHolder.apply(rp) : (onlyBody ? rb.apply(rp) : rt.apply(rp)); } return buf.join(""); }, isRowRendered: function(index){ var row = this.getRow(index); return row && row.childNodes.length > 0; }, syncScroll: function(){ Ext.ux.grid.BufferView.superclass.syncScroll.apply(this, arguments); this.update(); }, // a (optionally) buffered method to update contents of gridview update: function(){ if (this.scrollDelay) { if (!this.renderTask) { this.renderTask = new Ext.util.DelayedTask(this.doUpdate, this); } this.renderTask.delay(this.scrollDelay); }else{ this.doUpdate(); } }, onRemove : function(ds, record, index, isUpdate){ Ext.ux.grid.BufferView.superclass.onRemove.apply(this, arguments); if(isUpdate !== true){ this.update(); } }, doUpdate: function(){ if (this.getVisibleRowCount() > 0) { var g = this.grid, cm = g.colModel, ds = g.store, cs = this.getColumnData(), vr = this.getVisibleRows(), row; for (var i = vr.first; i <= vr.last; i++) { // if row is NOT rendered and is visible, render it if(!this.isRowRendered(i) && (row = this.getRow(i))){ var html = this.doRender(cs, [ds.getAt(i)], ds, i, cm.getColumnCount(), g.stripeRows, true); row.innerHTML = html; } } this.clean(); } }, // a buffered method to clean rows clean : function(){ if(!this.cleanTask){ this.cleanTask = new Ext.util.DelayedTask(this.doClean, this); } this.cleanTask.delay(this.cleanDelay); }, doClean: function(){ if (this.getVisibleRowCount() > 0) { var vr = this.getVisibleRows(); vr.first -= this.cacheSize; vr.last += this.cacheSize; var i = 0, rows = this.getRows(); // if first is less than 0, all rows have been rendered // so lets clean the end... if(vr.first <= 0){ i = vr.last + 1; } for(var len = this.ds.getCount(); i < len; i++){ // if current row is outside of first and last and // has content, update the innerHTML to nothing if ((i < vr.first || i > vr.last) && rows[i].innerHTML) { rows[i].innerHTML = ''; } } } }, removeTask: function(name){ var task = this[name]; if(task && task.cancel){ task.cancel(); this[name] = null; } }, destroy : function(){ this.removeTask('cleanTask'); this.removeTask('renderTask'); Ext.ux.grid.BufferView.superclass.destroy.call(this); }, layout: function(){ Ext.ux.grid.BufferView.superclass.layout.call(this); this.update(); } }); ================================================ FILE: client/src/ext/ux/CenterLayout.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ // We are adding these custom layouts to a namespace that does not // exist by default in Ext, so we have to add the namespace first: Ext.ns('Ext.ux.layout'); /** * @class Ext.ux.layout.CenterLayout * @extends Ext.layout.FitLayout *

    This is a very simple layout style used to center contents within a container. This layout works within * nested containers and can also be used as expected as a Viewport layout to center the page layout.

    *

    As a subclass of FitLayout, CenterLayout expects to have a single child panel of the container that uses * the layout. The layout does not require any config options, although the child panel contained within the * layout must provide a fixed or percentage width. The child panel's height will fit to the container by * default, but you can specify autoHeight:true to allow it to autosize based on its content height. * Example usage:

    * 
    
// The content panel is centered in the container
var p = new Ext.Panel({
    title: 'Center Layout',
    layout: 'ux.center',
    items: [{
        title: 'Centered Content',
        width: '75%',
        html: 'Some content'
    }]
});

// If you leave the title blank and specify no border
// you'll create a non-visual, structural panel just
// for centering the contents in the main container.
var p = new Ext.Panel({
    layout: 'ux.center',
    border: false,
    items: [{
        title: 'Centered Content',
        width: 300,
        autoHeight: true,
        html: 'Some content'
    }]
});
    */ Ext.ux.layout.CenterLayout = Ext.extend(Ext.layout.FitLayout, { // private setItemSize : function(item, size){ this.container.addClass('ux-layout-center'); item.addClass('ux-layout-center-item'); if(item && size.height > 0){ if(item.width){ size.width = item.width; } item.setSize(size); } } }); Ext.Container.LAYOUTS['ux.center'] = Ext.ux.layout.CenterLayout; ================================================ FILE: client/src/ext/ux/CheckColumn.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.CheckColumn * @extends Ext.grid.Column *

    A Column subclass which renders a checkbox in each column cell which toggles the truthiness of the associated data field on click.

    *

    Note. As of ExtJS 3.3 this no longer has to be configured as a plugin of the GridPanel.

    *

    Example usage:

    * 
    
var cm = new Ext.grid.ColumnModel([{
       header: 'Foo',
       ...
    },{
       xtype: 'checkcolumn',
       header: 'Indoor?',
       dataIndex: 'indoor',
       width: 55
    }
]);

// create the grid
var grid = new Ext.grid.EditorGridPanel({
    ...
    colModel: cm,
    ...
});
 *
    * In addition to toggling a Boolean value within the record data, this * class toggles a css class between 'x-grid3-check-col' and * 'x-grid3-check-col-on' to alter the background image used for * a column. */ Ext.ux.grid.CheckColumn = Ext.extend(Ext.grid.Column, { /** * @private * Process and refire events routed from the GridView's processEvent method. */ processEvent : function(name, e, grid, rowIndex, colIndex){ if (name == 'mousedown') { var record = grid.store.getAt(rowIndex); record.set(this.dataIndex, !record.data[this.dataIndex]); return false; // Cancel row selection. } else { return Ext.grid.ActionColumn.superclass.processEvent.apply(this, arguments); } }, renderer : function(v, p, record){ p.css += ' x-grid3-check-col-td'; return String.format('
     
    ', v ? '-on' : ''); }, // Deprecate use as a plugin. Remove in 4.0 init: Ext.emptyFn }); // register ptype. Deprecate. Remove in 4.0 Ext.preg('checkcolumn', Ext.ux.grid.CheckColumn); // backwards compat. Remove in 4.0 Ext.grid.CheckColumn = Ext.ux.grid.CheckColumn; // register Column xtype Ext.grid.Column.types.checkcolumn = Ext.ux.grid.CheckColumn; ================================================ FILE: client/src/ext/ux/ColumnHeaderGroup.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); Ext.ux.grid.ColumnHeaderGroup = Ext.extend(Ext.util.Observable, { constructor: function(config){ this.config = config; }, init: function(grid){ Ext.applyIf(grid.colModel, this.config); Ext.apply(grid.getView(), this.viewConfig); }, viewConfig: { initTemplates: function(){ this.constructor.prototype.initTemplates.apply(this, arguments); var ts = this.templates || {}; if(!ts.gcell){ ts.gcell = new Ext.XTemplate('', '
    ', this.grid.enableHdMenu ? '' : '', '{value}
    '); } this.templates = ts; this.hrowRe = new RegExp("ux-grid-hd-group-row-(\\d+)", ""); }, renderHeaders: function(){ var ts = this.templates, headers = [], cm = this.cm, rows = cm.rows, tstyle = 'width:' + this.getTotalWidth() + ';'; for(var row = 0, rlen = rows.length; row < rlen; row++){ var r = rows[row], cells = []; for(var i = 0, gcol = 0, len = r.length; i < len; i++){ var group = r[i]; group.colspan = group.colspan || 1; var id = this.getColumnId(group.dataIndex ? cm.findColumnIndex(group.dataIndex) : gcol), gs = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupStyle.call(this, group, gcol); cells[i] = ts.gcell.apply({ cls: 'ux-grid-hd-group-cell', id: id, row: row, style: 'width:' + gs.width + ';' + (gs.hidden ? 'display:none;' : '') + (group.align ? 'text-align:' + group.align + ';' : ''), tooltip: group.tooltip ? (Ext.QuickTips.isEnabled() ? 'ext:qtip' : 'title') + '="' + group.tooltip + '"' : '', istyle: group.align == 'right' ? 'padding-right:16px' : '', btn: this.grid.enableHdMenu && group.header, value: group.header || ' ' }); gcol += group.colspan; } headers[row] = ts.header.apply({ tstyle: tstyle, cells: cells.join('') }); } headers.push(this.constructor.prototype.renderHeaders.apply(this, arguments)); return headers.join(''); }, onColumnWidthUpdated: function(){ this.constructor.prototype.onColumnWidthUpdated.apply(this, arguments); Ext.ux.grid.ColumnHeaderGroup.prototype.updateGroupStyles.call(this); }, onAllColumnWidthsUpdated: function(){ this.constructor.prototype.onAllColumnWidthsUpdated.apply(this, arguments); Ext.ux.grid.ColumnHeaderGroup.prototype.updateGroupStyles.call(this); }, onColumnHiddenUpdated: function(){ this.constructor.prototype.onColumnHiddenUpdated.apply(this, arguments); Ext.ux.grid.ColumnHeaderGroup.prototype.updateGroupStyles.call(this); }, getHeaderCell: function(index){ return this.mainHd.query(this.cellSelector)[index]; }, findHeaderCell: function(el){ return el ? this.fly(el).findParent('td.x-grid3-hd', this.cellSelectorDepth) : false; }, findHeaderIndex: function(el){ var cell = this.findHeaderCell(el); return cell ? this.getCellIndex(cell) : false; }, updateSortIcon: function(col, dir){ var sc = this.sortClasses, hds = this.mainHd.select(this.cellSelector).removeClass(sc); hds.item(col).addClass(sc[dir == "DESC" ? 1 : 0]); }, handleHdDown: function(e, t){ var el = Ext.get(t); if(el.hasClass('x-grid3-hd-btn')){ e.stopEvent(); var hd = this.findHeaderCell(t); Ext.fly(hd).addClass('x-grid3-hd-menu-open'); var index = this.getCellIndex(hd); this.hdCtxIndex = index; var ms = this.hmenu.items, cm = this.cm; ms.get('asc').setDisabled(!cm.isSortable(index)); ms.get('desc').setDisabled(!cm.isSortable(index)); this.hmenu.on('hide', function(){ Ext.fly(hd).removeClass('x-grid3-hd-menu-open'); }, this, { single: true }); this.hmenu.show(t, 'tl-bl?'); }else if(el.hasClass('ux-grid-hd-group-cell') || Ext.fly(t).up('.ux-grid-hd-group-cell')){ e.stopEvent(); } }, handleHdMove: function(e, t){ var hd = this.findHeaderCell(this.activeHdRef); if(hd && !this.headersDisabled && !Ext.fly(hd).hasClass('ux-grid-hd-group-cell')){ var hw = this.splitHandleWidth || 5, r = this.activeHdRegion, x = e.getPageX(), ss = hd.style, cur = ''; if(this.grid.enableColumnResize !== false){ if(x - r.left <= hw && this.cm.isResizable(this.activeHdIndex - 1)){ cur = Ext.isAir ? 'move' : Ext.isWebKit ? 'e-resize' : 'col-resize'; // col-resize // not // always // supported }else if(r.right - x <= (!this.activeHdBtn ? hw : 2) && this.cm.isResizable(this.activeHdIndex)){ cur = Ext.isAir ? 'move' : Ext.isWebKit ? 'w-resize' : 'col-resize'; } } ss.cursor = cur; } }, handleHdOver: function(e, t){ var hd = this.findHeaderCell(t); if(hd && !this.headersDisabled){ this.activeHdRef = t; this.activeHdIndex = this.getCellIndex(hd); var fly = this.fly(hd); this.activeHdRegion = fly.getRegion(); if(!(this.cm.isMenuDisabled(this.activeHdIndex) || fly.hasClass('ux-grid-hd-group-cell'))){ fly.addClass('x-grid3-hd-over'); this.activeHdBtn = fly.child('.x-grid3-hd-btn'); if(this.activeHdBtn){ this.activeHdBtn.dom.style.height = (hd.firstChild.offsetHeight - 1) + 'px'; } } } }, handleHdOut: function(e, t){ var hd = this.findHeaderCell(t); if(hd && (!Ext.isIE || !e.within(hd, true))){ this.activeHdRef = null; this.fly(hd).removeClass('x-grid3-hd-over'); hd.style.cursor = ''; } }, handleHdMenuClick: function(item){ var index = this.hdCtxIndex, cm = this.cm, ds = this.ds, id = item.getItemId(); switch(id){ case 'asc': ds.sort(cm.getDataIndex(index), 'ASC'); break; case 'desc': ds.sort(cm.getDataIndex(index), 'DESC'); break; default: if(id.substr(0, 6) == 'group-'){ var i = id.split('-'), row = parseInt(i[1], 10), col = parseInt(i[2], 10), r = this.cm.rows[row], group, gcol = 0; for(var i = 0, len = r.length; i < len; i++){ group = r[i]; if(col >= gcol && col < gcol + group.colspan){ break; } gcol += group.colspan; } if(item.checked){ var max = cm.getColumnsBy(this.isHideableColumn, this).length; for(var i = gcol, len = gcol + group.colspan; i < len; i++){ if(!cm.isHidden(i)){ max--; } } if(max < 1){ this.onDenyColumnHide(); return false; } } for(var i = gcol, len = gcol + group.colspan; i < len; i++){ if(cm.config[i].fixed !== true && cm.config[i].hideable !== false){ cm.setHidden(i, item.checked); } } }else if(id.substr(0, 4) == 'col-'){ index = cm.getIndexById(id.substr(4)); if(index != -1){ if(item.checked && cm.getColumnsBy(this.isHideableColumn, this).length <= 1){ this.onDenyColumnHide(); return false; } cm.setHidden(index, item.checked); } } if(id.substr(0, 6) == 'group-' || id.substr(0, 4) == 'col-'){ item.checked = !item.checked; if(item.menu){ var updateChildren = function(menu){ menu.items.each(function(childItem){ if(!childItem.disabled){ childItem.setChecked(item.checked, false); if(childItem.menu){ updateChildren(childItem.menu); } } }); } updateChildren(item.menu); } var parentMenu = item, parentItem; while(parentMenu = parentMenu.parentMenu){ if(!parentMenu.parentMenu || !(parentItem = parentMenu.parentMenu.items.get(parentMenu.getItemId())) || !parentItem.setChecked){ break; } var checked = parentMenu.items.findIndexBy(function(m){ return m.checked; }) >= 0; parentItem.setChecked(checked, true); } item.checked = !item.checked; } } return true; }, beforeColMenuShow: function(){ var cm = this.cm, rows = this.cm.rows; this.colMenu.removeAll(); for(var col = 0, clen = cm.getColumnCount(); col < clen; col++){ var menu = this.colMenu, title = cm.getColumnHeader(col), text = []; if(cm.config[col].fixed !== true && cm.config[col].hideable !== false){ for(var row = 0, rlen = rows.length; row < rlen; row++){ var r = rows[row], group, gcol = 0; for(var i = 0, len = r.length; i < len; i++){ group = r[i]; if(col >= gcol && col < gcol + group.colspan){ break; } gcol += group.colspan; } if(group && group.header){ if(cm.hierarchicalColMenu){ var gid = 'group-' + row + '-' + gcol, item = menu.items ? menu.getComponent(gid) : null, submenu = item ? item.menu : null; if(!submenu){ submenu = new Ext.menu.Menu({ itemId: gid }); submenu.on("itemclick", this.handleHdMenuClick, this); var checked = false, disabled = true; for(var c = gcol, lc = gcol + group.colspan; c < lc; c++){ if(!cm.isHidden(c)){ checked = true; } if(cm.config[c].hideable !== false){ disabled = false; } } menu.add({ itemId: gid, text: group.header, menu: submenu, hideOnClick: false, checked: checked, disabled: disabled }); } menu = submenu; }else{ text.push(group.header); } } } text.push(title); menu.add(new Ext.menu.CheckItem({ itemId: "col-" + cm.getColumnId(col), text: text.join(' '), checked: !cm.isHidden(col), hideOnClick: false, disabled: cm.config[col].hideable === false })); } } }, afterRenderUI: function(){ this.constructor.prototype.afterRenderUI.apply(this, arguments); Ext.apply(this.columnDrop, Ext.ux.grid.ColumnHeaderGroup.prototype.columnDropConfig); Ext.apply(this.splitZone, Ext.ux.grid.ColumnHeaderGroup.prototype.splitZoneConfig); } }, splitZoneConfig: { allowHeaderDrag: function(e){ return !e.getTarget(null, null, true).hasClass('ux-grid-hd-group-cell'); } }, columnDropConfig: { getTargetFromEvent: function(e){ var t = Ext.lib.Event.getTarget(e); return this.view.findHeaderCell(t); }, positionIndicator: function(h, n, e){ var data = Ext.ux.grid.ColumnHeaderGroup.prototype.getDragDropData.call(this, h, n, e); if(data === false){ return false; } var px = data.px + this.proxyOffsets[0]; this.proxyTop.setLeftTop(px, data.r.top + this.proxyOffsets[1]); this.proxyTop.show(); this.proxyBottom.setLeftTop(px, data.r.bottom); this.proxyBottom.show(); return data.pt; }, onNodeDrop: function(n, dd, e, data){ var h = data.header; if(h != n){ var d = Ext.ux.grid.ColumnHeaderGroup.prototype.getDragDropData.call(this, h, n, e); if(d === false){ return false; } var cm = this.grid.colModel, right = d.oldIndex < d.newIndex, rows = cm.rows; for(var row = d.row, rlen = rows.length; row < rlen; row++){ var r = rows[row], len = r.length, fromIx = 0, span = 1, toIx = len; for(var i = 0, gcol = 0; i < len; i++){ var group = r[i]; if(d.oldIndex >= gcol && d.oldIndex < gcol + group.colspan){ fromIx = i; } if(d.oldIndex + d.colspan - 1 >= gcol && d.oldIndex + d.colspan - 1 < gcol + group.colspan){ span = i - fromIx + 1; } if(d.newIndex >= gcol && d.newIndex < gcol + group.colspan){ toIx = i; } gcol += group.colspan; } var groups = r.splice(fromIx, span); rows[row] = r.splice(0, toIx - (right ? span : 0)).concat(groups).concat(r); } for(var c = 0; c < d.colspan; c++){ var oldIx = d.oldIndex + (right ? 0 : c), newIx = d.newIndex + (right ? -1 : c); cm.moveColumn(oldIx, newIx); this.grid.fireEvent("columnmove", oldIx, newIx); } return true; } return false; } }, getGroupStyle: function(group, gcol){ var width = 0, hidden = true; for(var i = gcol, len = gcol + group.colspan; i < len; i++){ if(!this.cm.isHidden(i)){ var cw = this.cm.getColumnWidth(i); if(typeof cw == 'number'){ width += cw; } hidden = false; } } return { width: (Ext.isBorderBox || (Ext.isWebKit && !Ext.isSafari2) ? width : Math.max(width - this.borderWidth, 0)) + 'px', hidden: hidden }; }, updateGroupStyles: function(col){ var tables = this.mainHd.query('.x-grid3-header-offset > table'), tw = this.getTotalWidth(), rows = this.cm.rows; for(var row = 0; row < tables.length; row++){ tables[row].style.width = tw; if(row < rows.length){ var cells = tables[row].firstChild.firstChild.childNodes; for(var i = 0, gcol = 0; i < cells.length; i++){ var group = rows[row][i]; if((typeof col != 'number') || (col >= gcol && col < gcol + group.colspan)){ var gs = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupStyle.call(this, group, gcol); cells[i].style.width = gs.width; cells[i].style.display = gs.hidden ? 'none' : ''; } gcol += group.colspan; } } } }, getGroupRowIndex: function(el){ if(el){ var m = el.className.match(this.hrowRe); if(m && m[1]){ return parseInt(m[1], 10); } } return this.cm.rows.length; }, getGroupSpan: function(row, col){ if(row < 0){ return { col: 0, colspan: this.cm.getColumnCount() }; } var r = this.cm.rows[row]; if(r){ for(var i = 0, gcol = 0, len = r.length; i < len; i++){ var group = r[i]; if(col >= gcol && col < gcol + group.colspan){ return { col: gcol, colspan: group.colspan }; } gcol += group.colspan; } return { col: gcol, colspan: 0 }; } return { col: col, colspan: 1 }; }, getDragDropData: function(h, n, e){ if(h.parentNode != n.parentNode){ return false; } var cm = this.grid.colModel, x = Ext.lib.Event.getPageX(e), r = Ext.lib.Dom.getRegion(n.firstChild), px, pt; if((r.right - x) <= (r.right - r.left) / 2){ px = r.right + this.view.borderWidth; pt = "after"; }else{ px = r.left; pt = "before"; } var oldIndex = this.view.getCellIndex(h), newIndex = this.view.getCellIndex(n); if(cm.isFixed(newIndex)){ return false; } var row = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupRowIndex.call(this.view, h), oldGroup = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view, row, oldIndex), newGroup = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view, row, newIndex), oldIndex = oldGroup.col; newIndex = newGroup.col + (pt == "after" ? newGroup.colspan : 0); if(newIndex >= oldGroup.col && newIndex <= oldGroup.col + oldGroup.colspan){ return false; } var parentGroup = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view, row - 1, oldIndex); if(newIndex < parentGroup.col || newIndex > parentGroup.col + parentGroup.colspan){ return false; } return { r: r, px: px, pt: pt, row: row, oldIndex: oldIndex, newIndex: newIndex, colspan: oldGroup.colspan }; } }); ================================================ FILE: client/src/ext/ux/ColumnNodeUI.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.tree'); /** * @class Ext.ux.tree.ColumnTree * @extends Ext.tree.TreePanel * * @xtype columntree */ Ext.ux.tree.ColumnTree = Ext.extend(Ext.tree.TreePanel, { lines : false, borderWidth : Ext.isBorderBox ? 0 : 2, // the combined left/right border for each cell cls : 'x-column-tree', onRender : function(){ Ext.tree.ColumnTree.superclass.onRender.apply(this, arguments); this.headers = this.header.createChild({cls:'x-tree-headers'}); var cols = this.columns, c; var totalWidth = 0; var scrollOffset = 19; // similar to Ext.grid.GridView default for(var i = 0, len = cols.length; i < len; i++){ c = cols[i]; totalWidth += c.width; this.headers.createChild({ cls:'x-tree-hd ' + (c.cls?c.cls+'-hd':''), cn: { cls:'x-tree-hd-text', html: c.header }, style:'width:'+(c.width-this.borderWidth)+'px;' }); } this.headers.createChild({cls:'x-clear'}); // prevent floats from wrapping when clipped this.headers.setWidth(totalWidth+scrollOffset); this.innerCt.setWidth(totalWidth); } }); Ext.reg('columntree', Ext.ux.tree.ColumnTree); //backwards compat Ext.tree.ColumnTree = Ext.ux.tree.ColumnTree; /** * @class Ext.ux.tree.ColumnNodeUI * @extends Ext.tree.TreeNodeUI */ Ext.ux.tree.ColumnNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { focus: Ext.emptyFn, // prevent odd scrolling behavior renderElements : function(n, a, targetNode, bulkRender){ this.indentMarkup = n.parentNode ? n.parentNode.ui.getChildIndent() : ''; var t = n.getOwnerTree(); var cols = t.columns; var bw = t.borderWidth; var c = cols[0]; var buf = [ '
  • ', '
    ', '',this.indentMarkup,"", '', '', '', '', n.text || (c.renderer ? c.renderer(a[c.dataIndex], n, a) : a[c.dataIndex]),"", "
    "]; for(var i = 1, len = cols.length; i < len; i++){ c = cols[i]; buf.push('
    ', '
    ',(c.renderer ? c.renderer(a[c.dataIndex], n, a) : a[c.dataIndex]),"
    ", "
    "); } buf.push( '
    ', '', "
    • "); if(bulkRender !== true && n.nextSibling && n.nextSibling.ui.getEl()){ this.wrap = Ext.DomHelper.insertHtml("beforeBegin", n.nextSibling.ui.getEl(), buf.join("")); }else{ this.wrap = Ext.DomHelper.insertHtml("beforeEnd", targetNode, buf.join("")); } this.elNode = this.wrap.childNodes[0]; this.ctNode = this.wrap.childNodes[1]; var cs = this.elNode.firstChild.childNodes; this.indentNode = cs[0]; this.ecNode = cs[1]; this.iconNode = cs[2]; this.anchor = cs[3]; this.textNode = cs[3].firstChild; } }); //backwards compat Ext.tree.ColumnNodeUI = Ext.ux.tree.ColumnNodeUI; ================================================ FILE: client/src/ext/ux/DataView-more.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.DataView.LabelEditor * @extends Ext.Editor * */ Ext.DataView.LabelEditor = Ext.extend(Ext.Editor, { alignment: "tl-tl", hideEl : false, cls: "x-small-editor", shim: false, completeOnEnter: true, cancelOnEsc: true, labelSelector: 'span.x-editable', constructor: function(cfg, field){ Ext.DataView.LabelEditor.superclass.constructor.call(this, field || new Ext.form.TextField({ allowBlank: false, growMin:90, growMax:240, grow:true, selectOnFocus:true }), cfg ); }, init : function(view){ this.view = view; view.on('render', this.initEditor, this); this.on('complete', this.onSave, this); }, initEditor : function(){ this.view.on({ scope: this, containerclick: this.doBlur, click: this.doBlur }); this.view.getEl().on('mousedown', this.onMouseDown, this, {delegate: this.labelSelector}); }, doBlur: function(){ if(this.editing){ this.field.blur(); } }, onMouseDown : function(e, target){ if(!e.ctrlKey && !e.shiftKey){ var item = this.view.findItemFromChild(target); e.stopEvent(); var record = this.view.store.getAt(this.view.indexOf(item)); this.startEdit(target, record.data[this.dataIndex]); this.activeRecord = record; }else{ e.preventDefault(); } }, onSave : function(ed, value){ this.activeRecord.set(this.dataIndex, value); } }); Ext.DataView.DragSelector = function(cfg){ cfg = cfg || {}; var view, proxy, tracker; var rs, bodyRegion, dragRegion = new Ext.lib.Region(0,0,0,0); var dragSafe = cfg.dragSafe === true; this.init = function(dataView){ view = dataView; view.on('render', onRender); }; function fillRegions(){ rs = []; view.all.each(function(el){ rs[rs.length] = el.getRegion(); }); bodyRegion = view.el.getRegion(); } function cancelClick(){ return false; } function onBeforeStart(e){ return !dragSafe || e.target == view.el.dom; } function onStart(e){ view.on('containerclick', cancelClick, view, {single:true}); if(!proxy){ proxy = view.el.createChild({cls:'x-view-selector'}); }else{ if(proxy.dom.parentNode !== view.el.dom){ view.el.dom.appendChild(proxy.dom); } proxy.setDisplayed('block'); } fillRegions(); view.clearSelections(); } function onDrag(e){ var startXY = tracker.startXY; var xy = tracker.getXY(); var x = Math.min(startXY[0], xy[0]); var y = Math.min(startXY[1], xy[1]); var w = Math.abs(startXY[0] - xy[0]); var h = Math.abs(startXY[1] - xy[1]); dragRegion.left = x; dragRegion.top = y; dragRegion.right = x+w; dragRegion.bottom = y+h; dragRegion.constrainTo(bodyRegion); proxy.setRegion(dragRegion); for(var i = 0, len = rs.length; i < len; i++){ var r = rs[i], sel = dragRegion.intersect(r); if(sel && !r.selected){ r.selected = true; view.select(i, true); }else if(!sel && r.selected){ r.selected = false; view.deselect(i); } } } function onEnd(e){ if (!Ext.isIE) { view.un('containerclick', cancelClick, view); } if(proxy){ proxy.setDisplayed(false); } } function onRender(view){ tracker = new Ext.dd.DragTracker({ onBeforeStart: onBeforeStart, onStart: onStart, onDrag: onDrag, onEnd: onEnd }); tracker.initEl(view.el); } }; ================================================ FILE: client/src/ext/ux/DataViewTransition.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.DataViewTransition * @extends Object * @author Ed Spencer (http://extjs.com) * Transition plugin for DataViews */ Ext.ux.DataViewTransition = Ext.extend(Object, { /** * @property defaults * @type Object * Default configuration options for all DataViewTransition instances */ defaults: { duration : 750, idProperty: 'id' }, /** * Creates the plugin instance, applies defaults * @constructor * @param {Object} config Optional config object */ constructor: function(config) { Ext.apply(this, config || {}, this.defaults); }, /** * Initializes the transition plugin. Overrides the dataview's default refresh function * @param {Ext.DataView} dataview The dataview */ init: function(dataview) { /** * @property dataview * @type Ext.DataView * Reference to the DataView this instance is bound to */ this.dataview = dataview; var idProperty = this.idProperty; dataview.blockRefresh = true; dataview.updateIndexes = dataview.updateIndexes.createSequence(function() { this.getTemplateTarget().select(this.itemSelector).each(function(element, composite, index) { element.id = element.dom.id = String.format("{0}-{1}", dataview.id, store.getAt(index).get(idProperty)); }, this); }, dataview); /** * @property dataviewID * @type String * The string ID of the DataView component. This is used internally when animating child objects */ this.dataviewID = dataview.id; /** * @property cachedStoreData * @type Object * A cache of existing store data, keyed by id. This is used to determine * whether any items were added or removed from the store on data change */ this.cachedStoreData = {}; var store = dataview.store; //cache the data immediately, and again on any load operation this.cacheStoreData(store); store.on('load', this.cacheStoreData, this); store.on('datachanged', function(store) { var parentEl = dataview.getTemplateTarget(), calcItem = store.getAt(0), added = this.getAdded(store), removed = this.getRemoved(store), previous = this.getRemaining(store), existing = Ext.apply({}, previous, added); //hide old items Ext.each(removed, function(item) { Ext.fly(this.dataviewID + '-' + item.get(this.idProperty)).fadeOut({ remove : false, duration: duration / 1000, useDisplay: true }); }, this); //store is empty if (calcItem == undefined) { this.cacheStoreData(store); return; } var el = parentEl.child("#" + this.dataviewID + "-" + calcItem.get(this.idProperty)); //calculate the number of rows and columns we have var itemCount = store.getCount(), itemWidth = el.getMargins('lr') + el.getWidth(), itemHeight = el.getMargins('bt') + el.getHeight(), dvWidth = parentEl.getWidth(), columns = Math.floor(dvWidth / itemWidth), rows = Math.ceil(itemCount / columns), currentRows = Math.ceil(this.getExistingCount() / columns); //make sure the correct styles are applied to the parent element parentEl.applyStyles({ display : 'block', position: 'relative' // , // height : Ext.max([rows, currentRows]) * itemHeight, // width : columns * itemWidth }); //stores the current top and left values for each element (discovered below) var oldPositions = {}, newPositions = {}, elCache = {}; //find current positions of each element and save a reference in the elCache Ext.iterate(previous, function(id, item) { var id = item.get(this.idProperty), el = elCache[id] = parentEl.child('#' + this.dataviewID + '-' + id); oldPositions[id] = { top : el.getTop() - parentEl.getTop() - el.getMargins('t') - parentEl.getPadding('t'), left: el.getLeft() - parentEl.getLeft() - el.getMargins('l') - parentEl.getPadding('l') }; }, this); //set absolute positioning on all DataView items. We need to set position, left and //top at the same time to avoid any flickering Ext.iterate(previous, function(id, item) { var oldPos = oldPositions[id], el = elCache[id]; if (el.getStyle('position') != 'absolute') { elCache[id].applyStyles({ position: 'absolute', left : oldPos.left + "px", top : oldPos.top + "px", //we set the width here to make ListViews work correctly. This is not needed for DataViews width : el.getWidth(!Ext.isIE || Ext.isStrict), height : el.getHeight(!Ext.isIE || Ext.isStrict) }); } }); //get new positions var index = 0; Ext.iterate(store.data.items, function(item) { var id = item.get(idProperty), el = elCache[id]; var column = index % columns, row = Math.floor(index / columns), top = row * itemHeight, left = column * itemWidth; newPositions[id] = { top : top, left: left }; index ++; }, this); //do the movements var startTime = new Date(), duration = this.duration, dataviewID = this.dataviewID; var doAnimate = function() { var elapsed = new Date() - startTime, fraction = elapsed / duration; if (fraction >= 1) { for (var id in newPositions) { Ext.fly(dataviewID + '-' + id).applyStyles({ top : newPositions[id].top + "px", left: newPositions[id].left + "px" }); } Ext.TaskMgr.stop(task); } else { //move each item for (var id in newPositions) { if (!previous[id]) continue; var oldPos = oldPositions[id], newPos = newPositions[id], oldTop = oldPos.top, newTop = newPos.top, oldLeft = oldPos.left, newLeft = newPos.left, diffTop = fraction * Math.abs(oldTop - newTop), diffLeft= fraction * Math.abs(oldLeft - newLeft), midTop = oldTop > newTop ? oldTop - diffTop : oldTop + diffTop, midLeft = oldLeft > newLeft ? oldLeft - diffLeft : oldLeft + diffLeft; Ext.fly(dataviewID + '-' + id).applyStyles({ top : midTop + "px", left: midLeft + "px" }); } } }; var task = { run : doAnimate, interval: 20, scope : this }; Ext.TaskMgr.start(task); //show new items Ext.iterate(added, function(id, item) { Ext.fly(this.dataviewID + '-' + item.get(this.idProperty)).applyStyles({ top : newPositions[id].top + "px", left: newPositions[id].left + "px" }).fadeIn({ remove : false, duration: duration / 1000 }); }, this); this.cacheStoreData(store); }, this); }, /** * Caches the records from a store locally for comparison later * @param {Ext.data.Store} store The store to cache data from */ cacheStoreData: function(store) { this.cachedStoreData = {}; store.each(function(record) { this.cachedStoreData[record.get(this.idProperty)] = record; }, this); }, /** * Returns all records that were already in the DataView * @return {Object} All existing records */ getExisting: function() { return this.cachedStoreData; }, /** * Returns the total number of items that are currently visible in the DataView * @return {Number} The number of existing items */ getExistingCount: function() { var count = 0, items = this.getExisting(); for (var k in items) count++; return count; }, /** * Returns all records in the given store that were not already present * @param {Ext.data.Store} store The updated store instance * @return {Object} Object of records not already present in the dataview in format {id: record} */ getAdded: function(store) { var added = {}; store.each(function(record) { if (this.cachedStoreData[record.get(this.idProperty)] == undefined) { added[record.get(this.idProperty)] = record; } }, this); return added; }, /** * Returns all records that are present in the DataView but not the new store * @param {Ext.data.Store} store The updated store instance * @return {Array} Array of records that used to be present */ getRemoved: function(store) { var removed = []; for (var id in this.cachedStoreData) { if (store.findExact(this.idProperty, Number(id)) == -1) removed.push(this.cachedStoreData[id]); } return removed; }, /** * Returns all records that are already present and are still present in the new store * @param {Ext.data.Store} store The updated store instance * @return {Object} Object of records that are still present from last time in format {id: record} */ getRemaining: function(store) { var remaining = {}; store.each(function(record) { if (this.cachedStoreData[record.get(this.idProperty)] != undefined) { remaining[record.get(this.idProperty)] = record; } }, this); return remaining; } }); ================================================ FILE: client/src/ext/ux/FieldLabeler.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns("Ext.ux"); /** * @class Ext.ux.FieldLabeler *

    A plugin for Field Components which renders standard Ext form wrapping and labels * round the Field at render time regardless of the layout of the Container.

    *

    Usage:

    * 
    
    {
        xtype: 'combo',
        plugins: [ Ext.ux.FieldLabeler ],
        triggerAction: 'all',
        fieldLabel: 'Select type',
        store: typeStore
    }
 *
    */ Ext.ux.FieldLabeler = (function(){ // Pulls a named property down from the first ancestor Container it's found in function getParentProperty(propName) { for (var p = this.ownerCt; p; p = p.ownerCt) { if (p[propName]) { return p[propName]; } } } return { // Add behaviour at important points in the Field's lifecycle. init: function(f) { // Replace the Field's onRender method with a sequence that calls the plugin's onRender after the Field's onRender f.onRender = f.onRender.createSequence(this.onRender); // We need to completely override the onResize method because of the complexity f.onResize = this.onResize; // Replace the Field's onDestroy method with a sequence that calls the plugin's onDestroy after the Field's onRender f.onDestroy = f.onDestroy.createSequence(this.onDestroy); }, onRender: function() { // Do nothing if being rendered by a form layout if (this.ownerCt) { if (this.ownerCt.layout instanceof Ext.layout.FormLayout) { return; } } this.resizeEl = (this.wrap || this.el).wrap({ cls: 'x-form-element', style: (Ext.isIE || Ext.isOpera) ? 'position:absolute;top:0;left:0;overflow:visible' : '' }); this.positionEl = this.itemCt = this.resizeEl.wrap({ cls: 'x-form-item ' }); if (this.nextSibling()) { this.margins = { top: 0, right: 0, bottom: this.positionEl.getMargins('b'), left: 0 }; } this.actionMode = 'itemCt'; // If our Container is hiding labels, then we're done! if (!Ext.isDefined(this.hideLabels)) { this.hideLabels = getParentProperty.call(this, "hideLabels"); } if (this.hideLabels) { this.resizeEl.setStyle('padding-left', '0px'); return; } // Collect the info we need to render the label from our Container. if (!Ext.isDefined(this.labelSeparator)) { this.labelSeparator = getParentProperty.call(this, "labelSeparator"); } if (!Ext.isDefined(this.labelPad)) { this.labelPad = getParentProperty.call(this, "labelPad"); } if (!Ext.isDefined(this.labelAlign)) { this.labelAlign = getParentProperty.call(this, "labelAlign") || 'left'; } this.itemCt.addClass('x-form-label-' + this.labelAlign); if(this.labelAlign == 'top'){ if (!this.labelWidth) { this.labelWidth = 'auto'; } this.resizeEl.setStyle('padding-left', '0px'); } else { if (!Ext.isDefined(this.labelWidth)) { this.labelWidth = getParentProperty.call(this, "labelWidth") || 100; } this.resizeEl.setStyle('padding-left', (this.labelWidth + (this.labelPad || 5)) + 'px'); this.labelWidth += 'px'; } this.label = this.itemCt.insertFirst({ tag: 'label', cls: 'x-form-item-label', style: { width: this.labelWidth }, html: this.fieldLabel + (this.labelSeparator || ':') }); }, // private // Ensure the input field is sized to fit in the content area of the resizeEl (to the right of its padding-left) // We perform all necessary sizing here. We do NOT call the current class's onResize because we need this control // we skip that and go up the hierarchy to Ext.form.Field onResize: function(w, h) { Ext.form.Field.prototype.onResize.apply(this, arguments); w -= this.resizeEl.getPadding('l'); if (this.getTriggerWidth) { this.wrap.setWidth(w); this.el.setWidth(w - this.getTriggerWidth()); } else { this.el.setWidth(w); } if (this.el.dom.tagName.toLowerCase() == 'textarea') { var h = this.resizeEl.getHeight(true); if (!this.hideLabels && (this.labelAlign == 'top')) { h -= this.label.getHeight(); } this.el.setHeight(h); } }, // private // Ensure that we clean up on destroy. onDestroy: function() { this.itemCt.remove(); } }; })(); ================================================ FILE: client/src/ext/ux/FieldReplicator.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns("Ext.ux"); /** * @class Ext.ux.FieldReplicator *

    A plugin for Field Components which creates clones of the Field for as * long as the user keeps filling them. Leaving the final one blank ends the repeating series.

    *

    Usage:

    * 
    
    {
        xtype: 'combo',
        plugins: [ Ext.ux.FieldReplicator ],
        triggerAction: 'all',
        fieldLabel: 'Select recipient',
        store: recipientStore
    }
 *
    */ Ext.ux.FieldReplicator = { init: function(f) { f.replicator = this; f.enableKeyEvents = true; f.on('change', this.onChange, this); f.onKeyDown = f.onKeyDown.createInterceptor(this.onKeyDown); }, // If tabbing out and the change event will be fired, flag that // the change handler must focus the correct sibling Field. onKeyDown: function(e) { if ((e.getKey() == Ext.EventObject.TAB) && (String(this.startValue) !== String(this.getValue()))) { if (e.shiftKey) { this.focusPrev = true; } else if (!e.shiftKey && !e.altKey) { this.focusNext = true; } } }, // Handle the field either being changed to blank or from blank. onChange: function(f, n, o) { // Ensure that "change" is only fired once. f.startValue = n; var c = f.ownerCt, l, ps = f.previousSibling(), ns = f.nextSibling(); if (Ext.isEmpty(n)) { if (!Ext.isEmpty(o)) { // The Field has been blanked, and it is not the only one left, remove it if ((ps && (ps.replicator === this)) || (ns && (ns.replicator === this))) { l = f.findParentBy(function(p) { return !Ext.isDefined(p.ownerCt); }); c.remove(f); l.doLayout(); } } } else { if (Ext.isEmpty(o)) { // Field filled, insert a clone as the next sibling ns = new f.constructor(f.cloneConfig()); c.insert(c.items.indexOf(f) + 1, ns); c.doLayout(); l = f.findParentBy(function(p) { return !Ext.isDefined(p.ownerCt); }); l.doLayout(); } } if (f.focusPrev) { delete f.focusPrev; ps.focus(false, true); } else if (f.focusNext) { delete f.focusNext; ns.focus(false, true); } } }; ================================================ FILE: client/src/ext/ux/Focus.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ (function(){ Ext.ns('Ext.a11y'); Ext.a11y.Frame = Ext.extend(Object, { initialized: false, constructor: function(size, color){ this.setSize(size || 1); this.setColor(color || '15428B'); }, init: function(){ if (!this.initialized) { this.sides = []; var s, i; this.ct = Ext.DomHelper.append(document.body, { cls: 'x-a11y-focusframe' }, true); for (i = 0; i < 4; i++) { s = Ext.DomHelper.append(this.ct, { cls: 'x-a11y-focusframe-side', style: 'background-color: #' + this.color }, true); s.visibilityMode = Ext.Element.DISPLAY; this.sides.push(s); } this.frameTask = new Ext.util.DelayedTask(function(el){ var newEl = Ext.get(el); if (newEl != this.curEl) { var w = newEl.getWidth(); var h = newEl.getHeight(); this.sides[0].show().setSize(w, this.size).anchorTo(el, 'tl', [0, -1]); this.sides[2].show().setSize(w, this.size).anchorTo(el, 'bl', [0, -1]); this.sides[1].show().setSize(this.size, h).anchorTo(el, 'tr', [-1, 0]); this.sides[3].show().setSize(this.size, h).anchorTo(el, 'tl', [-1, 0]); this.curEl = newEl; } }, this); this.unframeTask = new Ext.util.DelayedTask(function(){ if (this.initialized) { this.sides[0].hide(); this.sides[1].hide(); this.sides[2].hide(); this.sides[3].hide(); this.curEl = null; } }, this); this.initialized = true; } }, frame: function(el){ this.init(); this.unframeTask.cancel(); this.frameTask.delay(2, false, false, [el]); }, unframe: function(){ this.init(); this.unframeTask.delay(2); }, setSize: function(size){ this.size = size; }, setColor: function(color){ this.color = color; } }); Ext.a11y.FocusFrame = new Ext.a11y.Frame(2, '15428B'); Ext.a11y.RelayFrame = new Ext.a11y.Frame(1, '6B8CBF'); Ext.a11y.Focusable = Ext.extend(Ext.util.Observable, { constructor: function(el, relayTo, noFrame, frameEl){ Ext.a11y.Focusable.superclass.constructor.call(this); this.addEvents('focus', 'blur', 'left', 'right', 'up', 'down', 'esc', 'enter', 'space'); if (el instanceof Ext.Component) { this.el = el.el; this.setComponent(el); } else { this.el = Ext.get(el); this.setComponent(null); } this.setRelayTo(relayTo) this.setNoFrame(noFrame); this.setFrameEl(frameEl); this.init(); Ext.a11y.FocusMgr.register(this); }, init: function(){ this.el.dom.tabIndex = '1'; this.el.addClass('x-a11y-focusable'); this.el.on({ focus: this.onFocus, blur: this.onBlur, keydown: this.onKeyDown, scope: this }); }, setRelayTo: function(relayTo){ this.relayTo = relayTo ? Ext.a11y.FocusMgr.get(relayTo) : null; }, setNoFrame: function(noFrame){ this.noFrame = (noFrame === true) ? true : false; }, setFrameEl: function(frameEl){ this.frameEl = frameEl && Ext.get(frameEl) || this.el; }, setComponent: function(cmp){ this.component = cmp || null; }, onKeyDown: function(e, t){ var k = e.getKey(), SK = Ext.a11y.Focusable.SpecialKeys, ret, tf; tf = (t !== this.el.dom) ? Ext.a11y.FocusMgr.get(t, true) : this; if (!tf) { // this can happen when you are on a focused item within a panel body // that is not a Ext.a11y.Focusable tf = Ext.a11y.FocusMgr.get(Ext.fly(t).parent('.x-a11y-focusable')); } if (SK[k] !== undefined) { ret = this.fireEvent(SK[k], e, t, tf, this); } if (ret === false || this.fireEvent('keydown', e, t, tf, this) === false) { e.stopEvent(); } }, focus: function(){ this.el.dom.focus(); }, blur: function(){ this.el.dom.blur(); }, onFocus: function(e, t){ this.el.addClass('x-a11y-focused'); if (this.relayTo) { this.relayTo.el.addClass('x-a11y-focused-relay'); if (!this.relayTo.noFrame) { Ext.a11y.FocusFrame.frame(this.relayTo.frameEl); } if (!this.noFrame) { Ext.a11y.RelayFrame.frame(this.frameEl); } } else { if (!this.noFrame) { Ext.a11y.FocusFrame.frame(this.frameEl); } } this.fireEvent('focus', e, t, this); }, onBlur: function(e, t){ if (this.relayTo) { this.relayTo.el.removeClass('x-a11y-focused-relay'); Ext.a11y.RelayFrame.unframe(); } this.el.removeClass('x-a11y-focused'); Ext.a11y.FocusFrame.unframe(); this.fireEvent('blur', e, t, this); }, destroy: function(){ this.el.un('keydown', this.onKeyDown); this.el.un('focus', this.onFocus); this.el.un('blur', this.onBlur); this.el.removeClass('x-a11y-focusable'); this.el.removeClass('x-a11y-focused'); if (this.relayTo) { this.relayTo.el.removeClass('x-a11y-focused-relay'); } } }); Ext.a11y.FocusItem = Ext.extend(Object, { constructor: function(el, enableTabbing){ Ext.a11y.FocusItem.superclass.constructor.call(this); this.el = Ext.get(el); this.fi = new Ext.a11y.Focusable(el); this.fi.setComponent(this); this.fi.on('tab', this.onTab, this); this.enableTabbing = enableTabbing === true ? true : false; }, getEnterItem: function(){ if (this.enableTabbing) { var items = this.getFocusItems(); if (items && items.length) { return items[0]; } } }, getFocusItems: function(){ if (this.enableTabbing) { return this.el.query('a, button, input, select'); } return null; }, onTab: function(e, t){ var items = this.getFocusItems(), i; if (items && items.length && (i = items.indexOf(t)) !== -1) { if (e.shiftKey && i > 0) { e.stopEvent(); items[i - 1].focus(); Ext.a11y.FocusFrame.frame.defer(20, Ext.a11y.FocusFrame, [this.el]); return; } else if (!e.shiftKey && i < items.length - 1) { e.stopEvent(); items[i + 1].focus(); Ext.a11y.FocusFrame.frame.defer(20, Ext.a11y.FocusFrame, [this.el]); return; } } }, focus: function(){ if (this.enableTabbing) { var items = this.getFocusItems(); if (items && items.length) { items[0].focus(); Ext.a11y.FocusFrame.frame.defer(20, Ext.a11y.FocusFrame, [this.el]); return; } } this.fi.focus(); }, blur: function(){ this.fi.blur(); } }); Ext.a11y.FocusMgr = function(){ var all = new Ext.util.MixedCollection(); return { register: function(f){ all.add(f.el && Ext.id(f.el), f); }, unregister: function(f){ all.remove(f); }, get: function(el, noCreate){ return all.get(Ext.id(el)) || (noCreate ? false : new Ext.a11y.Focusable(el)); }, all: all } }(); Ext.a11y.Focusable.SpecialKeys = {}; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.LEFT] = 'left'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.RIGHT] = 'right'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.DOWN] = 'down'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.UP] = 'up'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.ESC] = 'esc'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.ENTER] = 'enter'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.SPACE] = 'space'; Ext.a11y.Focusable.SpecialKeys[Ext.EventObjectImpl.prototype.TAB] = 'tab'; // we use the new observeClass method to fire our new initFocus method on components Ext.util.Observable.observeClass(Ext.Component); Ext.Component.on('render', function(cmp){ cmp.initFocus(); cmp.initARIA(); }); Ext.override(Ext.Component, { initFocus: Ext.emptyFn, initARIA: Ext.emptyFn }); Ext.override(Ext.Container, { isFocusable: true, noFocus: false, // private initFocus: function(){ if (!this.fi && !this.noFocus) { this.fi = new Ext.a11y.Focusable(this); } this.mon(this.fi, { focus: this.onFocus, blur: this.onBlur, tab: this.onTab, enter: this.onEnter, esc: this.onEsc, scope: this }); if (this.hidden) { this.isFocusable = false; } this.on('show', function(){ this.isFocusable = true; }, this); this.on('hide', function(){ this.isFocusable = false; }, this); }, focus: function(){ this.fi.focus(); }, blur: function(){ this.fi.blur(); }, enter: function(){ var eitem = this.getEnterItem(); if (eitem) { eitem.focus(); } }, onFocus: Ext.emptyFn, onBlur: Ext.emptyFn, onTab: function(e, t, tf){ var rf = tf.relayTo || tf; if (rf.component && rf.component !== this) { e.stopEvent(); var item = e.shiftKey ? this.getPreviousFocus(rf.component) : this.getNextFocus(rf.component); item.focus(); } }, onEnter: function(e, t, tf){ // check to see if enter is pressed while "on" the panel if (tf.component && tf.component === this) { e.stopEvent(); this.enter(); } e.stopPropagation(); }, onEsc: function(e, t){ e.preventDefault(); // check to see if esc is pressed while "inside" the panel // or while "on" the panel if (t === this.el.dom) { // "on" the panel, check if this panel has an owner panel and focus that // we dont stop the event in this case so that this same check will be // done for this ownerCt if (this.ownerCt) { this.ownerCt.focus(); } } else { // we were inside the panel when esc was pressed, // so go back "on" the panel if (this.ownerCt && this.ownerCt.isFocusable) { var si = this.ownerCt.getFocusItems(); if (si && si.getCount() > 1) { e.stopEvent(); } } this.focus(); } }, getFocusItems: function(){ return this.items && this.items.filterBy(function(o){ return o.isFocusable; }) || null; }, getEnterItem: function(){ var ci = this.getFocusItems(), length = ci ? ci.getCount() : 0; if (length === 1) { return ci.first().getEnterItem && ci.first().getEnterItem() || ci.first(); } else if (length > 1) { return ci.first(); } }, getNextFocus: function(current){ var items = this.getFocusItems(), next = current, i = items.indexOf(current), length = items.getCount(); if (i === length - 1) { next = items.first(); } else { next = items.get(i + 1); } return next; }, getPreviousFocus: function(current){ var items = this.getFocusItems(), prev = current, i = items.indexOf(current), length = items.getCount(); if (i === 0) { prev = items.last(); } else { prev = items.get(i - 1); } return prev; }, getFocusable : function() { return this.fi; } }); Ext.override(Ext.Panel, { /** * @cfg {Boolean} enableTabbing true to enable tabbing. Default is false. */ getFocusItems: function(){ // items gets all the items inside the body var items = Ext.Panel.superclass.getFocusItems.call(this), bodyFocus = null; if (!items) { items = new Ext.util.MixedCollection(); this.bodyFocus = this.bodyFocus || new Ext.a11y.FocusItem(this.body, this.enableTabbing); items.add('body', this.bodyFocus); } // but panels can also have tbar, bbar, fbar if (this.tbar && this.topToolbar) { items.insert(0, this.topToolbar); } if (this.bbar && this.bottomToolbar) { items.add(this.bottomToolbar); } if (this.fbar) { items.add(this.fbar); } return items; } }); Ext.override(Ext.TabPanel, { // private initFocus: function(){ Ext.TabPanel.superclass.initFocus.call(this); this.mon(this.fi, { left: this.onLeft, right: this.onRight, scope: this }); }, onLeft: function(e){ if (!this.activeTab) { return; } e.stopEvent(); var prev = this.items.itemAt(this.items.indexOf(this.activeTab) - 1); if (prev) { this.setActiveTab(prev); } return false; }, onRight: function(e){ if (!this.activeTab) { return; } e.stopEvent(); var next = this.items.itemAt(this.items.indexOf(this.activeTab) + 1); if (next) { this.setActiveTab(next); } return false; } }); Ext.override(Ext.tree.TreeNodeUI, { // private focus: function(){ this.node.getOwnerTree().bodyFocus.focus(); } }); Ext.override(Ext.tree.TreePanel, { // private afterRender : function(){ Ext.tree.TreePanel.superclass.afterRender.call(this); this.root.render(); if(!this.rootVisible){ this.root.renderChildren(); } this.bodyFocus = new Ext.a11y.FocusItem(this.body.down('.x-tree-root-ct')); this.bodyFocus.fi.setFrameEl(this.body); } }); Ext.override(Ext.grid.GridPanel, { initFocus: function(){ Ext.grid.GridPanel.superclass.initFocus.call(this); this.bodyFocus = new Ext.a11y.FocusItem(this.view.focusEl); this.bodyFocus.fi.setFrameEl(this.body); } }); Ext.override(Ext.Button, { isFocusable: true, noFocus: false, initFocus: function(){ Ext.Button.superclass.initFocus.call(this); this.fi = this.fi || new Ext.a11y.Focusable(this.btnEl, null, null, this.el); this.fi.setComponent(this); this.mon(this.fi, { focus: this.onFocus, blur: this.onBlur, scope: this }); if (this.menu) { this.mon(this.fi, 'down', this.showMenu, this); this.on('menuhide', this.focus, this); } if (this.hidden) { this.isFocusable = false; } this.on('show', function(){ this.isFocusable = true; }, this); this.on('hide', function(){ this.isFocusable = false; }, this); }, focus: function(){ this.fi.focus(); }, blur: function(){ this.fi.blur(); }, onFocus: function(){ if (!this.disabled) { this.el.addClass("x-btn-focus"); } }, onBlur: function(){ this.el.removeClass("x-btn-focus"); } }); Ext.override(Ext.Toolbar, { initFocus: function(){ Ext.Toolbar.superclass.initFocus.call(this); this.mon(this.fi, { left: this.onLeft, right: this.onRight, scope: this }); this.on('focus', this.onButtonFocus, this, { stopEvent: true }); }, add: function(){ var item = Ext.Toolbar.superclass.add.apply(this, arguments); if(!item || !item.events) { return item; } if (item.rendered && item.fi !== undefined) { item.fi.setRelayTo(this.el); this.relayEvents(item.fi, ['focus']); } else { item.on('render', function(){ if (item.fi !== undefined) { item.fi.setRelayTo(this.el); this.relayEvents(item.fi, ['focus']); } }, this, { single: true }); } return item; }, onFocus: function(){ var items = this.getFocusItems(); if (items && items.getCount() > 0) { if (this.lastFocus && items.indexOf(this.lastFocus) !== -1) { this.lastFocus.focus(); } else { items.first().focus(); } } }, onButtonFocus: function(e, t, tf){ this.lastFocus = tf.component || null; }, onLeft: function(e, t, tf){ e.stopEvent(); this.getPreviousFocus(tf.component).focus(); }, onRight: function(e, t, tf){ e.stopEvent(); this.getNextFocus(tf.component).focus(); }, getEnterItem: Ext.emptyFn, onTab: Ext.emptyFn, onEsc: Ext.emptyFn }); Ext.override(Ext.menu.BaseItem, { initFocus: function(){ this.fi = new Ext.a11y.Focusable(this, this.parentMenu && this.parentMenu.el || null, true); } }); Ext.override(Ext.menu.Menu, { initFocus: function(){ this.fi = new Ext.a11y.Focusable(this); this.focusEl = this.fi; } }); Ext.a11y.WindowMgr = new Ext.WindowGroup(); Ext.apply(Ext.WindowMgr, { bringToFront: function(win){ Ext.a11y.WindowMgr.bringToFront.call(this, win); if (win.modal) { win.enter(); } else { win.focus(); } } }); Ext.override(Ext.Window, { initFocus: function(){ Ext.Window.superclass.initFocus.call(this); this.on('beforehide', function(){ Ext.a11y.RelayFrame.unframe(); Ext.a11y.FocusFrame.unframe(); }); } }); Ext.override(Ext.form.Field, { isFocusable: true, noFocus: false, initFocus: function(){ this.fi = this.fi || new Ext.a11y.Focusable(this, null, true); Ext.form.Field.superclass.initFocus.call(this); if (this.hidden) { this.isFocusable = false; } this.on('show', function(){ this.isFocusable = true; }, this); this.on('hide', function(){ this.isFocusable = false; }, this); } }); Ext.override(Ext.FormPanel, { initFocus: function(){ Ext.FormPanel.superclass.initFocus.call(this); this.on('focus', this.onFieldFocus, this, { stopEvent: true }); }, // private createForm: function(){ delete this.initialConfig.listeners; var form = new Ext.form.BasicForm(null, this.initialConfig); form.afterMethod('add', this.formItemAdd, this); return form; }, formItemAdd: function(item){ item.on('render', function(field){ field.fi.setRelayTo(this.el); this.relayEvents(field.fi, ['focus']); }, this, { single: true }); }, onFocus: function(){ var items = this.getFocusItems(); if (items && items.getCount() > 0) { if (this.lastFocus && items.indexOf(this.lastFocus) !== -1) { this.lastFocus.focus(); } else { items.first().focus(); } } }, onFieldFocus: function(e, t, tf){ this.lastFocus = tf.component || null; }, onTab: function(e, t, tf){ if (tf.relayTo.component === this) { var item = e.shiftKey ? this.getPreviousFocus(tf.component) : this.getNextFocus(tf.component); if (item) { ev.stopEvent(); item.focus(); return; } } Ext.FormPanel.superclass.onTab.apply(this, arguments); }, getNextFocus: function(current){ var items = this.getFocusItems(), i = items.indexOf(current), length = items.getCount(); return (i < length - 1) ? items.get(i + 1) : false; }, getPreviousFocus: function(current){ var items = this.getFocusItems(), i = items.indexOf(current), length = items.getCount(); return (i > 0) ? items.get(i - 1) : false; } }); Ext.override(Ext.Viewport, { initFocus: function(){ Ext.Viewport.superclass.initFocus.apply(this); this.mon(Ext.get(document), 'focus', this.focus, this); this.mon(Ext.get(document), 'blur', this.blur, this); this.fi.setNoFrame(true); }, onTab: function(e, t, tf, f){ e.stopEvent(); if (tf === f) { items = this.getFocusItems(); if (items && items.getCount() > 0) { items.first().focus(); } } else { var rf = tf.relayTo || tf; var item = e.shiftKey ? this.getPreviousFocus(rf.component) : this.getNextFocus(rf.component); item.focus(); } } }); })(); ================================================ FILE: client/src/ext/ux/GMapPanel.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.GMapPanel * @extends Ext.Panel * @author Shea Frederick */ Ext.ux.GMapPanel = Ext.extend(Ext.Panel, { initComponent : function(){ var defConfig = { plain: true, zoomLevel: 3, yaw: 180, pitch: 0, zoom: 0, gmapType: 'map', border: false }; Ext.applyIf(this,defConfig); Ext.ux.GMapPanel.superclass.initComponent.call(this); }, afterRender : function(){ var wh = this.ownerCt.getSize(); Ext.applyIf(this, wh); Ext.ux.GMapPanel.superclass.afterRender.call(this); if (this.gmapType === 'map'){ this.gmap = new GMap2(this.body.dom); } if (this.gmapType === 'panorama'){ this.gmap = new GStreetviewPanorama(this.body.dom); } if (typeof this.addControl == 'object' && this.gmapType === 'map') { this.gmap.addControl(this.addControl); } if (typeof this.setCenter === 'object') { if (typeof this.setCenter.geoCodeAddr === 'string'){ this.geoCodeLookup(this.setCenter.geoCodeAddr); }else{ if (this.gmapType === 'map'){ var point = new GLatLng(this.setCenter.lat,this.setCenter.lng); this.gmap.setCenter(point, this.zoomLevel); } if (typeof this.setCenter.marker === 'object' && typeof point === 'object'){ this.addMarker(point,this.setCenter.marker,this.setCenter.marker.clear); } } if (this.gmapType === 'panorama'){ this.gmap.setLocationAndPOV(new GLatLng(this.setCenter.lat,this.setCenter.lng), {yaw: this.yaw, pitch: this.pitch, zoom: this.zoom}); } } GEvent.bind(this.gmap, 'load', this, function(){ this.onMapReady(); }); }, onMapReady : function(){ this.addMarkers(this.markers); this.addMapControls(); this.addOptions(); }, onResize : function(w, h){ if (typeof this.getMap() == 'object') { this.gmap.checkResize(); } Ext.ux.GMapPanel.superclass.onResize.call(this, w, h); }, setSize : function(width, height, animate){ if (typeof this.getMap() == 'object') { this.gmap.checkResize(); } Ext.ux.GMapPanel.superclass.setSize.call(this, width, height, animate); }, getMap : function(){ return this.gmap; }, getCenter : function(){ return this.getMap().getCenter(); }, getCenterLatLng : function(){ var ll = this.getCenter(); return {lat: ll.lat(), lng: ll.lng()}; }, addMarkers : function(markers) { if (Ext.isArray(markers)){ for (var i = 0; i < markers.length; i++) { var mkr_point = new GLatLng(markers[i].lat,markers[i].lng); this.addMarker(mkr_point,markers[i].marker,false,markers[i].setCenter, markers[i].listeners); } } }, addMarker : function(point, marker, clear, center, listeners){ Ext.applyIf(marker,G_DEFAULT_ICON); if (clear === true){ this.getMap().clearOverlays(); } if (center === true) { this.getMap().setCenter(point, this.zoomLevel); } var mark = new GMarker(point,marker); if (typeof listeners === 'object'){ for (evt in listeners) { GEvent.bind(mark, evt, this, listeners[evt]); } } this.getMap().addOverlay(mark); }, addMapControls : function(){ if (this.gmapType === 'map') { if (Ext.isArray(this.mapControls)) { for(i=0;i
    Level '+accuracy+' Accuracy (8 = Exact Match, 1 = Vague Match)'); }else{ point = new GLatLng(place.Point.coordinates[1], place.Point.coordinates[0]); if (typeof this.setCenter.marker === 'object' && typeof point === 'object'){ this.addMarker(point,this.setCenter.marker,this.setCenter.marker.clear,true, this.setCenter.listeners); } } } } } }); Ext.reg('gmappanel', Ext.ux.GMapPanel); ================================================ FILE: client/src/ext/ux/GroupSummary.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.GroupSummary * @extends Ext.util.Observable * A GridPanel plugin that enables dynamic column calculations and a dynamically * updated grouped summary row. */ Ext.ux.grid.GroupSummary = Ext.extend(Ext.util.Observable, { /** * @cfg {Function} summaryRenderer Renderer example:
    
summaryRenderer: function(v, params, data){
    return ((v === 0 || v > 1) ? '(' + v +' Tasks)' : '(1 Task)');
},
     *
    */ /** * @cfg {String} summaryType (Optional) The type of * calculation to be used for the column. For options available see * {@link #Calculations}. */ constructor : function(config){ Ext.apply(this, config); Ext.ux.grid.GroupSummary.superclass.constructor.call(this); }, init : function(grid){ this.grid = grid; var v = this.view = grid.getView(); v.doGroupEnd = this.doGroupEnd.createDelegate(this); v.afterMethod('onColumnWidthUpdated', this.doWidth, this); v.afterMethod('onAllColumnWidthsUpdated', this.doAllWidths, this); v.afterMethod('onColumnHiddenUpdated', this.doHidden, this); v.afterMethod('onUpdate', this.doUpdate, this); v.afterMethod('onRemove', this.doRemove, this); if(!this.rowTpl){ this.rowTpl = new Ext.Template( '
    ', '', '{cells}', '
    ' ); this.rowTpl.disableFormats = true; } this.rowTpl.compile(); if(!this.cellTpl){ this.cellTpl = new Ext.Template( '', '
    {value}
    ', "" ); this.cellTpl.disableFormats = true; } this.cellTpl.compile(); }, /** * Toggle the display of the summary row on/off * @param {Boolean} visible true to show the summary, false to hide the summary. */ toggleSummaries : function(visible){ var el = this.grid.getGridEl(); if(el){ if(visible === undefined){ visible = el.hasClass('x-grid-hide-summary'); } el[visible ? 'removeClass' : 'addClass']('x-grid-hide-summary'); } }, renderSummary : function(o, cs){ cs = cs || this.view.getColumnData(); var cfg = this.grid.getColumnModel().config, buf = [], c, p = {}, cf, last = cs.length-1; for(var i = 0, len = cs.length; i < len; i++){ c = cs[i]; cf = cfg[i]; p.id = c.id; p.style = c.style; p.css = i == 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); if(cf.summaryType || cf.summaryRenderer){ p.value = (cf.summaryRenderer || c.renderer)(o.data[c.name], p, o); }else{ p.value = ''; } if(p.value == undefined || p.value === "") p.value = " "; buf[buf.length] = this.cellTpl.apply(p); } return this.rowTpl.apply({ tstyle: 'width:'+this.view.getTotalWidth()+';', cells: buf.join('') }); }, /** * @private * @param {Object} rs * @param {Object} cs */ calculate : function(rs, cs){ var data = {}, r, c, cfg = this.grid.getColumnModel().config, cf; for(var j = 0, jlen = rs.length; j < jlen; j++){ r = rs[j]; for(var i = 0, len = cs.length; i < len; i++){ c = cs[i]; cf = cfg[i]; if(cf.summaryType){ data[c.name] = Ext.ux.grid.GroupSummary.Calculations[cf.summaryType](data[c.name] || 0, r, c.name, data); } } } return data; }, doGroupEnd : function(buf, g, cs, ds, colCount){ var data = this.calculate(g.rs, cs); buf.push('', this.renderSummary({data: data}, cs), ''); }, doWidth : function(col, w, tw){ if(!this.isGrouped()){ return; } var gs = this.view.getGroups(), len = gs.length, i = 0, s; for(; i < len; ++i){ s = gs[i].childNodes[2]; s.style.width = tw; s.firstChild.style.width = tw; s.firstChild.rows[0].childNodes[col].style.width = w; } }, doAllWidths : function(ws, tw){ if(!this.isGrouped()){ return; } var gs = this.view.getGroups(), len = gs.length, i = 0, j, s, cells, wlen = ws.length; for(; i < len; i++){ s = gs[i].childNodes[2]; s.style.width = tw; s.firstChild.style.width = tw; cells = s.firstChild.rows[0].childNodes; for(j = 0; j < wlen; j++){ cells[j].style.width = ws[j]; } } }, doHidden : function(col, hidden, tw){ if(!this.isGrouped()){ return; } var gs = this.view.getGroups(), len = gs.length, i = 0, s, display = hidden ? 'none' : ''; for(; i < len; i++){ s = gs[i].childNodes[2]; s.style.width = tw; s.firstChild.style.width = tw; s.firstChild.rows[0].childNodes[col].style.display = display; } }, isGrouped : function(){ return !Ext.isEmpty(this.grid.getStore().groupField); }, // Note: requires that all (or the first) record in the // group share the same group value. Returns false if the group // could not be found. refreshSummary : function(groupValue){ return this.refreshSummaryById(this.view.getGroupId(groupValue)); }, getSummaryNode : function(gid){ var g = Ext.fly(gid, '_gsummary'); if(g){ return g.down('.x-grid3-summary-row', true); } return null; }, refreshSummaryById : function(gid){ var g = Ext.getDom(gid); if(!g){ return false; } var rs = []; this.grid.getStore().each(function(r){ if(r._groupId == gid){ rs[rs.length] = r; } }); var cs = this.view.getColumnData(), data = this.calculate(rs, cs), markup = this.renderSummary({data: data}, cs), existing = this.getSummaryNode(gid); if(existing){ g.removeChild(existing); } Ext.DomHelper.append(g, markup); return true; }, doUpdate : function(ds, record){ this.refreshSummaryById(record._groupId); }, doRemove : function(ds, record, index, isUpdate){ if(!isUpdate){ this.refreshSummaryById(record._groupId); } }, /** * Show a message in the summary row. * 
    
grid.on('afteredit', function(){
    var groupValue = 'Ext Forms: Field Anchoring';
    summary.showSummaryMsg(groupValue, 'Updating Summary...');
});
     *
    * @param {String} groupValue * @param {String} msg Text to use as innerHTML for the summary row. */ showSummaryMsg : function(groupValue, msg){ var gid = this.view.getGroupId(groupValue), node = this.getSummaryNode(gid); if(node){ node.innerHTML = '
    ' + msg + '
    '; } } }); //backwards compat Ext.grid.GroupSummary = Ext.ux.grid.GroupSummary; /** * Calculation types for summary row:

      *
    • sum :
      • *
    • count :
      • *
    • max :
      • *
    • min :
      • *
    • average :
      • *
    *

    Custom calculations may be implemented. An example of * custom summaryType=totalCost:

    
// define a custom summary function
Ext.ux.grid.GroupSummary.Calculations['totalCost'] = function(v, record, field){
    return v + (record.data.estimate * record.data.rate);
};
 *
    * @property Calculations */ Ext.ux.grid.GroupSummary.Calculations = { 'sum' : function(v, record, field){ return v + (record.data[field]||0); }, 'count' : function(v, record, field, data){ return data[field+'count'] ? ++data[field+'count'] : (data[field+'count'] = 1); }, 'max' : function(v, record, field, data){ var v = record.data[field]; var max = data[field+'max'] === undefined ? (data[field+'max'] = v) : data[field+'max']; return v > max ? (data[field+'max'] = v) : max; }, 'min' : function(v, record, field, data){ var v = record.data[field]; var min = data[field+'min'] === undefined ? (data[field+'min'] = v) : data[field+'min']; return v < min ? (data[field+'min'] = v) : min; }, 'average' : function(v, record, field, data){ var c = data[field+'count'] ? ++data[field+'count'] : (data[field+'count'] = 1); var t = (data[field+'total'] = ((data[field+'total']||0) + (record.data[field]||0))); return t === 0 ? 0 : t / c; } }; Ext.grid.GroupSummary.Calculations = Ext.ux.grid.GroupSummary.Calculations; /** * @class Ext.ux.grid.HybridSummary * @extends Ext.ux.grid.GroupSummary * Adds capability to specify the summary data for the group via json as illustrated here: * 
    
{
    data: [
        {
            projectId: 100,     project: 'House',
            taskId:    112, description: 'Paint',
            estimate:    6,        rate:     150,
            due:'06/24/2007'
        },
        ...
    ],

    summaryData: {
        'House': {
            description: 14, estimate: 9,
                   rate: 99, due: new Date(2009, 6, 29),
                   cost: 999
        }
    }
}
 *
    * */ Ext.ux.grid.HybridSummary = Ext.extend(Ext.ux.grid.GroupSummary, { /** * @private * @param {Object} rs * @param {Object} cs */ calculate : function(rs, cs){ var gcol = this.view.getGroupField(), gvalue = rs[0].data[gcol], gdata = this.getSummaryData(gvalue); return gdata || Ext.ux.grid.HybridSummary.superclass.calculate.call(this, rs, cs); }, /** * 
    
grid.on('afteredit', function(){
    var groupValue = 'Ext Forms: Field Anchoring';
    summary.showSummaryMsg(groupValue, 'Updating Summary...');
    setTimeout(function(){ // simulate server call
        // HybridSummary class implements updateSummaryData
        summary.updateSummaryData(groupValue,
            // create data object based on configured dataIndex
            {description: 22, estimate: 888, rate: 888, due: new Date(), cost: 8});
    }, 2000);
});
     *
    * @param {String} groupValue * @param {Object} data data object * @param {Boolean} skipRefresh (Optional) Defaults to false */ updateSummaryData : function(groupValue, data, skipRefresh){ var json = this.grid.getStore().reader.jsonData; if(!json.summaryData){ json.summaryData = {}; } json.summaryData[groupValue] = data; if(!skipRefresh){ this.refreshSummary(groupValue); } }, /** * Returns the summaryData for the specified groupValue or null. * @param {String} groupValue * @return {Object} summaryData */ getSummaryData : function(groupValue){ var reader = this.grid.getStore().reader, json = reader.jsonData, fields = reader.recordType.prototype.fields, v; if(json && json.summaryData){ v = json.summaryData[groupValue]; if(v){ return reader.extractValues(v, fields.items, fields.length); } } return null; } }); //backwards compat Ext.grid.HybridSummary = Ext.ux.grid.HybridSummary; ================================================ FILE: client/src/ext/ux/GroupTab.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ux.GroupTab = Ext.extend(Ext.Container, { mainItem: 0, expanded: true, deferredRender: true, activeTab: null, idDelimiter: '__', headerAsText: false, frame: false, hideBorders: true, initComponent: function(config){ Ext.apply(this, config); this.frame = false; Ext.ux.GroupTab.superclass.initComponent.call(this); this.addEvents('activate', 'deactivate', 'changemainitem', 'beforetabchange', 'tabchange'); this.setLayout(new Ext.layout.CardLayout({ deferredRender: this.deferredRender })); if (!this.stack) { this.stack = Ext.TabPanel.AccessStack(); } this.initItems(); this.on('beforerender', function(){ this.groupEl = this.ownerCt.getGroupEl(this); }, this); this.on('add', this.onAdd, this, { target: this }); this.on('remove', this.onRemove, this, { target: this }); if (this.mainItem !== undefined) { var item = (typeof this.mainItem == 'object') ? this.mainItem : this.items.get(this.mainItem); delete this.mainItem; this.setMainItem(item); } }, /** * Sets the specified tab as the active tab. This method fires the {@link #beforetabchange} event which * can return false to cancel the tab change. * @param {String/Panel} tab The id or tab Panel to activate */ setActiveTab : function(item){ item = this.getComponent(item); if(!item){ return false; } if(!this.rendered){ this.activeTab = item; return true; } if(this.activeTab != item && this.fireEvent('beforetabchange', this, item, this.activeTab) !== false){ if(this.activeTab && this.activeTab != this.mainItem){ var oldEl = this.getTabEl(this.activeTab); if(oldEl){ Ext.fly(oldEl).removeClass('x-grouptabs-strip-active'); } } var el = this.getTabEl(item); Ext.fly(el).addClass('x-grouptabs-strip-active'); this.activeTab = item; this.stack.add(item); this.layout.setActiveItem(item); if(this.layoutOnTabChange && item.doLayout){ item.doLayout(); } if(this.scrolling){ this.scrollToTab(item, this.animScroll); } this.fireEvent('tabchange', this, item); return true; } return false; }, getTabEl: function(item){ if (item == this.mainItem) { return this.groupEl; } return Ext.TabPanel.prototype.getTabEl.call(this, item); }, onRender: function(ct, position){ Ext.ux.GroupTab.superclass.onRender.call(this, ct, position); this.strip = Ext.fly(this.groupEl).createChild({ tag: 'ul', cls: 'x-grouptabs-sub' }); this.tooltip = new Ext.ToolTip({ target: this.groupEl, delegate: 'a.x-grouptabs-text', trackMouse: true, renderTo: document.body, listeners: { beforeshow: function(tip) { var item = (tip.triggerElement.parentNode === this.mainItem.tabEl) ? this.mainItem : this.findById(tip.triggerElement.parentNode.id.split(this.idDelimiter)[1]); if(!item.tabTip) { return false; } tip.body.dom.innerHTML = item.tabTip; }, scope: this } }); if (!this.itemTpl) { var tt = new Ext.Template('
  • ', '{text}', '
    • '); tt.disableFormats = true; tt.compile(); Ext.ux.GroupTab.prototype.itemTpl = tt; } this.items.each(this.initTab, this); }, afterRender: function(){ Ext.ux.GroupTab.superclass.afterRender.call(this); if (this.activeTab !== undefined) { var item = (typeof this.activeTab == 'object') ? this.activeTab : this.items.get(this.activeTab); delete this.activeTab; this.setActiveTab(item); } }, // private initTab: function(item, index){ var before = this.strip.dom.childNodes[index]; var p = Ext.TabPanel.prototype.getTemplateArgs.call(this, item); if (item === this.mainItem) { item.tabEl = this.groupEl; p.cls += ' x-grouptabs-main-item'; } var el = before ? this.itemTpl.insertBefore(before, p) : this.itemTpl.append(this.strip, p); item.tabEl = item.tabEl || el; item.on('disable', this.onItemDisabled, this); item.on('enable', this.onItemEnabled, this); item.on('titlechange', this.onItemTitleChanged, this); item.on('iconchange', this.onItemIconChanged, this); item.on('beforeshow', this.onBeforeShowItem, this); }, setMainItem: function(item){ item = this.getComponent(item); if (!item || this.fireEvent('changemainitem', this, item, this.mainItem) === false) { return; } this.mainItem = item; }, getMainItem: function(){ return this.mainItem || null; }, // private onBeforeShowItem: function(item){ if (item != this.activeTab) { this.setActiveTab(item); return false; } }, // private onAdd: function(gt, item, index){ if (this.rendered) { this.initTab.call(this, item, index); } }, // private onRemove: function(tp, item){ Ext.destroy(Ext.get(this.getTabEl(item))); this.stack.remove(item); item.un('disable', this.onItemDisabled, this); item.un('enable', this.onItemEnabled, this); item.un('titlechange', this.onItemTitleChanged, this); item.un('iconchange', this.onItemIconChanged, this); item.un('beforeshow', this.onBeforeShowItem, this); if (item == this.activeTab) { var next = this.stack.next(); if (next) { this.setActiveTab(next); } else if (this.items.getCount() > 0) { this.setActiveTab(0); } else { this.activeTab = null; } } }, // private onBeforeAdd: function(item){ var existing = item.events ? (this.items.containsKey(item.getItemId()) ? item : null) : this.items.get(item); if (existing) { this.setActiveTab(item); return false; } Ext.TabPanel.superclass.onBeforeAdd.apply(this, arguments); var es = item.elements; item.elements = es ? es.replace(',header', '') : es; item.border = (item.border === true); }, // private onItemDisabled: Ext.TabPanel.prototype.onItemDisabled, onItemEnabled: Ext.TabPanel.prototype.onItemEnabled, // private onItemTitleChanged: function(item){ var el = this.getTabEl(item); if (el) { Ext.fly(el).child('a.x-grouptabs-text', true).innerHTML = item.title; } }, //private onItemIconChanged: function(item, iconCls, oldCls){ var el = this.getTabEl(item); if (el) { Ext.fly(el).child('a.x-grouptabs-text').replaceClass(oldCls, iconCls); } }, beforeDestroy: function(){ Ext.TabPanel.prototype.beforeDestroy.call(this); this.tooltip.destroy(); } }); Ext.reg('grouptab', Ext.ux.GroupTab); ================================================ FILE: client/src/ext/ux/GroupTabPanel.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux'); Ext.ux.GroupTabPanel = Ext.extend(Ext.TabPanel, { tabPosition: 'left', alternateColor: false, alternateCls: 'x-grouptabs-panel-alt', defaultType: 'grouptab', deferredRender: false, activeGroup : null, initComponent: function(){ Ext.ux.GroupTabPanel.superclass.initComponent.call(this); this.addEvents( 'beforegroupchange', 'groupchange' ); this.elements = 'body,header'; this.stripTarget = 'header'; this.tabPosition = this.tabPosition == 'right' ? 'right' : 'left'; this.addClass('x-grouptabs-panel'); if (this.tabStyle && this.tabStyle != '') { this.addClass('x-grouptabs-panel-' + this.tabStyle); } if (this.alternateColor) { this.addClass(this.alternateCls); } this.on('beforeadd', function(gtp, item, index){ this.initGroup(item, index); }); this.items.each(function(item){ item.on('tabchange',function(item){ this.fireEvent('tabchange', this, item.activeTab); }, this); },this); }, initEvents : function() { this.mon(this.strip, 'mousedown', this.onStripMouseDown, this); }, onRender: function(ct, position){ Ext.TabPanel.superclass.onRender.call(this, ct, position); if(this.plain){ var pos = this.tabPosition == 'top' ? 'header' : 'footer'; this[pos].addClass('x-tab-panel-'+pos+'-plain'); } var st = this[this.stripTarget]; this.stripWrap = st.createChild({cls:'x-tab-strip-wrap ', cn:{ tag:'ul', cls:'x-grouptabs-strip x-grouptabs-tab-strip-'+this.tabPosition}}); var beforeEl = (this.tabPosition=='bottom' ? this.stripWrap : null); this.strip = new Ext.Element(this.stripWrap.dom.firstChild); this.header.addClass('x-grouptabs-panel-header'); this.bwrap.addClass('x-grouptabs-bwrap'); this.body.addClass('x-tab-panel-body-'+this.tabPosition + ' x-grouptabs-panel-body'); if (!this.groupTpl) { var tt = new Ext.Template( '
  • ', '', '', '{text}', '
    • ' ); tt.disableFormats = true; tt.compile(); Ext.ux.GroupTabPanel.prototype.groupTpl = tt; } this.items.each(this.initGroup, this); }, afterRender: function(){ Ext.ux.GroupTabPanel.superclass.afterRender.call(this); this.tabJoint = Ext.fly(this.body.dom.parentNode).createChild({ cls: 'x-tab-joint' }); this.addClass('x-tab-panel-' + this.tabPosition); this.header.setWidth(this.tabWidth); if (this.activeGroup !== undefined) { var group = (typeof this.activeGroup == 'object') ? this.activeGroup : this.items.get(this.activeGroup); delete this.activeGroup; this.setActiveGroup(group); group.setActiveTab(group.getMainItem()); } }, getGroupEl : Ext.TabPanel.prototype.getTabEl, // private findTargets: function(e){ var item = null, itemEl = e.getTarget('li', this.strip); if (itemEl) { item = this.findById(itemEl.id.split(this.idDelimiter)[1]); if (item.disabled) { return { expand: null, item: null, el: null }; } } return { expand: e.getTarget('.x-grouptabs-expand', this.strip), isGroup: !e.getTarget('ul.x-grouptabs-sub', this.strip), item: item, el: itemEl }; }, // private onStripMouseDown: function(e){ if (e.button != 0) { return; } e.preventDefault(); var t = this.findTargets(e); if (t.expand) { this.toggleGroup(t.el); } else if (t.item) { if(t.isGroup) { t.item.setActiveTab(t.item.getMainItem()); } else { t.item.ownerCt.setActiveTab(t.item); } } }, expandGroup: function(groupEl){ if(groupEl.isXType) { groupEl = this.getGroupEl(groupEl); } Ext.fly(groupEl).addClass('x-grouptabs-expanded'); this.syncTabJoint(); }, toggleGroup: function(groupEl){ if(groupEl.isXType) { groupEl = this.getGroupEl(groupEl); } Ext.fly(groupEl).toggleClass('x-grouptabs-expanded'); this.syncTabJoint(); }, collapseGroup: function(groupEl){ if(groupEl.isXType) { groupEl = this.getGroupEl(groupEl); } Ext.fly(groupEl).removeClass('x-grouptabs-expanded'); this.syncTabJoint(); }, syncTabJoint: function(groupEl){ if (!this.tabJoint) { return; } groupEl = groupEl || this.getGroupEl(this.activeGroup); if(groupEl) { this.tabJoint.setHeight(Ext.fly(groupEl).getHeight() - 2); var y = Ext.isGecko2 ? 0 : 1; if (this.tabPosition == 'left'){ this.tabJoint.alignTo(groupEl, 'tl-tr', [-2,y]); } else { this.tabJoint.alignTo(groupEl, 'tr-tl', [1,y]); } } else { this.tabJoint.hide(); } }, getActiveTab : function() { if(!this.activeGroup) return null; return this.activeGroup.getTabEl(this.activeGroup.activeTab) || null; }, onResize: function(){ Ext.ux.GroupTabPanel.superclass.onResize.apply(this, arguments); this.syncTabJoint(); }, createCorner: function(el, pos){ return Ext.fly(el).createChild({ cls: 'x-grouptabs-corner x-grouptabs-corner-' + pos }); }, initGroup: function(group, index){ var before = this.strip.dom.childNodes[index], p = this.getTemplateArgs(group); if (index === 0) { p.cls += ' x-tab-first'; } p.cls += ' x-grouptabs-main'; p.text = group.getMainItem().title; var el = before ? this.groupTpl.insertBefore(before, p) : this.groupTpl.append(this.strip, p), tl = this.createCorner(el, 'top-' + this.tabPosition), bl = this.createCorner(el, 'bottom-' + this.tabPosition); group.tabEl = el; if (group.expanded) { this.expandGroup(el); } if (Ext.isIE6 || (Ext.isIE && !Ext.isStrict)){ bl.setLeft('-10px'); bl.setBottom('-5px'); tl.setLeft('-10px'); tl.setTop('-5px'); } this.mon(group, { scope: this, changemainitem: this.onGroupChangeMainItem, beforetabchange: this.onGroupBeforeTabChange }); }, setActiveGroup : function(group) { group = this.getComponent(group); if(!group){ return false; } if(!this.rendered){ this.activeGroup = group; return true; } if(this.activeGroup != group && this.fireEvent('beforegroupchange', this, group, this.activeGroup) !== false){ if(this.activeGroup){ this.activeGroup.activeTab = null; var oldEl = this.getGroupEl(this.activeGroup); if(oldEl){ Ext.fly(oldEl).removeClass('x-grouptabs-strip-active'); } } var groupEl = this.getGroupEl(group); Ext.fly(groupEl).addClass('x-grouptabs-strip-active'); this.activeGroup = group; this.stack.add(group); this.layout.setActiveItem(group); this.syncTabJoint(groupEl); this.fireEvent('groupchange', this, group); return true; } return false; }, onGroupBeforeTabChange: function(group, newTab, oldTab){ if(group !== this.activeGroup || newTab !== oldTab) { this.strip.select('.x-grouptabs-sub > li.x-grouptabs-strip-active', true).removeClass('x-grouptabs-strip-active'); } this.expandGroup(this.getGroupEl(group)); if(group !== this.activeGroup) { return this.setActiveGroup(group); } }, getFrameHeight: function(){ var h = this.el.getFrameWidth('tb'); h += (this.tbar ? this.tbar.getHeight() : 0) + (this.bbar ? this.bbar.getHeight() : 0); return h; }, adjustBodyWidth: function(w){ return w - this.tabWidth; } }); Ext.reg('grouptabpanel', Ext.ux.GroupTabPanel); ================================================ FILE: client/src/ext/ux/ItemSelector.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* * Note that this control will most likely remain as an example, and not as a core Ext form * control. However, the API will be changing in a future release and so should not yet be * treated as a final, stable API at this time. */ /** * @class Ext.ux.form.ItemSelector * @extends Ext.form.Field * A control that allows selection of between two Ext.ux.form.MultiSelect controls. * * @history * 2008-06-19 bpm Original code contributed by Toby Stuart (with contributions from Robert Williams) * * @constructor * Create a new ItemSelector * @param {Object} config Configuration options * @xtype itemselector */ Ext.ux.form.ItemSelector = Ext.extend(Ext.form.Field, { hideNavIcons:false, imagePath:"", iconUp:"up2.gif", iconDown:"down2.gif", iconLeft:"left2.gif", iconRight:"right2.gif", iconTop:"top2.gif", iconBottom:"bottom2.gif", drawUpIcon:true, drawDownIcon:true, drawLeftIcon:true, drawRightIcon:true, drawTopIcon:true, drawBotIcon:true, delimiter:',', bodyStyle:null, border:false, defaultAutoCreate:{tag: "div"}, /** * @cfg {Array} multiselects An array of {@link Ext.ux.form.MultiSelect} config objects, with at least all required parameters (e.g., store) */ multiselects:null, initComponent: function(){ Ext.ux.form.ItemSelector.superclass.initComponent.call(this); this.addEvents({ 'rowdblclick' : true, 'change' : true }); }, onRender: function(ct, position){ Ext.ux.form.ItemSelector.superclass.onRender.call(this, ct, position); // Internal default configuration for both multiselects var msConfig = [{ legend: 'Available', draggable: true, droppable: true, width: 100, height: 100 },{ legend: 'Selected', droppable: true, draggable: true, width: 100, height: 100 }]; this.fromMultiselect = new Ext.ux.form.MultiSelect(Ext.applyIf(this.multiselects[0], msConfig[0])); this.fromMultiselect.on('dblclick', this.onRowDblClick, this); this.toMultiselect = new Ext.ux.form.MultiSelect(Ext.applyIf(this.multiselects[1], msConfig[1])); this.toMultiselect.on('dblclick', this.onRowDblClick, this); var p = new Ext.Panel({ bodyStyle:this.bodyStyle, border:this.border, layout:"table", layoutConfig:{columns:3} }); p.add(this.fromMultiselect); var icons = new Ext.Panel({header:false}); p.add(icons); p.add(this.toMultiselect); p.render(this.el); icons.el.down('.'+icons.bwrapCls).remove(); // ICON HELL!!! if (this.imagePath!="" && this.imagePath.charAt(this.imagePath.length-1)!="/") this.imagePath+="/"; this.iconUp = this.imagePath + (this.iconUp || 'up2.gif'); this.iconDown = this.imagePath + (this.iconDown || 'down2.gif'); this.iconLeft = this.imagePath + (this.iconLeft || 'left2.gif'); this.iconRight = this.imagePath + (this.iconRight || 'right2.gif'); this.iconTop = this.imagePath + (this.iconTop || 'top2.gif'); this.iconBottom = this.imagePath + (this.iconBottom || 'bottom2.gif'); var el=icons.getEl(); this.toTopIcon = el.createChild({tag:'img', src:this.iconTop, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.upIcon = el.createChild({tag:'img', src:this.iconUp, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.addIcon = el.createChild({tag:'img', src:this.iconRight, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.removeIcon = el.createChild({tag:'img', src:this.iconLeft, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.downIcon = el.createChild({tag:'img', src:this.iconDown, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.toBottomIcon = el.createChild({tag:'img', src:this.iconBottom, style:{cursor:'pointer', margin:'2px'}}); this.toTopIcon.on('click', this.toTop, this); this.upIcon.on('click', this.up, this); this.downIcon.on('click', this.down, this); this.toBottomIcon.on('click', this.toBottom, this); this.addIcon.on('click', this.fromTo, this); this.removeIcon.on('click', this.toFrom, this); if (!this.drawUpIcon || this.hideNavIcons) { this.upIcon.dom.style.display='none'; } if (!this.drawDownIcon || this.hideNavIcons) { this.downIcon.dom.style.display='none'; } if (!this.drawLeftIcon || this.hideNavIcons) { this.addIcon.dom.style.display='none'; } if (!this.drawRightIcon || this.hideNavIcons) { this.removeIcon.dom.style.display='none'; } if (!this.drawTopIcon || this.hideNavIcons) { this.toTopIcon.dom.style.display='none'; } if (!this.drawBotIcon || this.hideNavIcons) { this.toBottomIcon.dom.style.display='none'; } var tb = p.body.first(); this.el.setWidth(p.body.first().getWidth()); p.body.removeClass(); this.hiddenName = this.name; var hiddenTag = {tag: "input", type: "hidden", value: "", name: this.name}; this.hiddenField = this.el.createChild(hiddenTag); }, doLayout: function(){ if(this.rendered){ this.fromMultiselect.fs.doLayout(); this.toMultiselect.fs.doLayout(); } }, afterRender: function(){ Ext.ux.form.ItemSelector.superclass.afterRender.call(this); this.toStore = this.toMultiselect.store; this.toStore.on('add', this.valueChanged, this); this.toStore.on('remove', this.valueChanged, this); this.toStore.on('load', this.valueChanged, this); this.valueChanged(this.toStore); }, toTop : function() { var selectionsArray = this.toMultiselect.view.getSelectedIndexes(); var records = []; if (selectionsArray.length > 0) { selectionsArray.sort(); for (var i=0; i-1; i--) { record = records[i]; this.toMultiselect.view.store.remove(record); this.toMultiselect.view.store.insert(0, record); selectionsArray.push(((records.length - 1) - i)); } } this.toMultiselect.view.refresh(); this.toMultiselect.view.select(selectionsArray); }, toBottom : function() { var selectionsArray = this.toMultiselect.view.getSelectedIndexes(); var records = []; if (selectionsArray.length > 0) { selectionsArray.sort(); for (var i=0; i 0) { for (var i=0; i= 0) { this.toMultiselect.view.store.remove(record); this.toMultiselect.view.store.insert(selectionsArray[i] - 1, record); newSelectionsArray.push(selectionsArray[i] - 1); } } this.toMultiselect.view.refresh(); this.toMultiselect.view.select(newSelectionsArray); } }, down : function() { var record = null; var selectionsArray = this.toMultiselect.view.getSelectedIndexes(); selectionsArray.sort(); selectionsArray.reverse(); var newSelectionsArray = []; if (selectionsArray.length > 0) { for (var i=0; i 0) { for (var i=0; i 0) { for (var i=0; i', '
    ', '
    {lockedHeader}
    ', '
    {lockedBody}
    ', '
    ', '
    ', '
    {header}
    ', '
    {body}
    ', '
    ', '
     
    ', '
     
    ', '' ); } this.templates = ts; Ext.ux.grid.LockingGridView.superclass.initTemplates.call(this); }, getEditorParent : function(ed){ return this.el.dom; }, initElements : function(){ var el = Ext.get(this.grid.getGridEl().dom.firstChild), lockedWrap = el.child('div.x-grid3-locked'), lockedHd = lockedWrap.child('div.x-grid3-header'), lockedScroller = lockedWrap.child('div.x-grid3-scroller'), mainWrap = el.child('div.x-grid3-viewport'), mainHd = mainWrap.child('div.x-grid3-header'), scroller = mainWrap.child('div.x-grid3-scroller'); if (this.grid.hideHeaders) { lockedHd.setDisplayed(false); mainHd.setDisplayed(false); } if(this.forceFit){ scroller.setStyle('overflow-x', 'hidden'); } Ext.apply(this, { el : el, mainWrap: mainWrap, mainHd : mainHd, innerHd : mainHd.dom.firstChild, scroller: scroller, mainBody: scroller.child('div.x-grid3-body'), focusEl : scroller.child('a'), resizeMarker: el.child('div.x-grid3-resize-marker'), resizeProxy : el.child('div.x-grid3-resize-proxy'), lockedWrap: lockedWrap, lockedHd: lockedHd, lockedScroller: lockedScroller, lockedBody: lockedScroller.child('div.x-grid3-body'), lockedInnerHd: lockedHd.child('div.x-grid3-header-inner', true) }); this.focusEl.swallowEvent('click', true); }, getLockedRows : function(){ return this.hasRows() ? this.lockedBody.dom.childNodes : []; }, getLockedRow : function(row){ return this.getLockedRows()[row]; }, getCell : function(row, col){ var lockedLen = this.cm.getLockedCount(); if(col < lockedLen){ return this.getLockedRow(row).getElementsByTagName('td')[col]; } return Ext.ux.grid.LockingGridView.superclass.getCell.call(this, row, col - lockedLen); }, getHeaderCell : function(index){ var lockedLen = this.cm.getLockedCount(); if(index < lockedLen){ return this.lockedHd.dom.getElementsByTagName('td')[index]; } return Ext.ux.grid.LockingGridView.superclass.getHeaderCell.call(this, index - lockedLen); }, addRowClass : function(row, cls){ var lockedRow = this.getLockedRow(row); if(lockedRow){ this.fly(lockedRow).addClass(cls); } Ext.ux.grid.LockingGridView.superclass.addRowClass.call(this, row, cls); }, removeRowClass : function(row, cls){ var lockedRow = this.getLockedRow(row); if(lockedRow){ this.fly(lockedRow).removeClass(cls); } Ext.ux.grid.LockingGridView.superclass.removeRowClass.call(this, row, cls); }, removeRow : function(row) { Ext.removeNode(this.getLockedRow(row)); Ext.ux.grid.LockingGridView.superclass.removeRow.call(this, row); }, removeRows : function(firstRow, lastRow){ var lockedBody = this.lockedBody.dom, rowIndex = firstRow; for(; rowIndex <= lastRow; rowIndex++){ Ext.removeNode(lockedBody.childNodes[firstRow]); } Ext.ux.grid.LockingGridView.superclass.removeRows.call(this, firstRow, lastRow); }, syncScroll : function(e){ this.lockedScroller.dom.scrollTop = this.scroller.dom.scrollTop; Ext.ux.grid.LockingGridView.superclass.syncScroll.call(this, e); }, updateSortIcon : function(col, dir){ var sortClasses = this.sortClasses, lockedHeaders = this.lockedHd.select('td').removeClass(sortClasses), headers = this.mainHd.select('td').removeClass(sortClasses), lockedLen = this.cm.getLockedCount(), cls = sortClasses[dir == 'DESC' ? 1 : 0]; if(col < lockedLen){ lockedHeaders.item(col).addClass(cls); }else{ headers.item(col - lockedLen).addClass(cls); } }, updateAllColumnWidths : function(){ var tw = this.getTotalWidth(), clen = this.cm.getColumnCount(), lw = this.getLockedWidth(), llen = this.cm.getLockedCount(), ws = [], len, i; this.updateLockedWidth(); for(i = 0; i < clen; i++){ ws[i] = this.getColumnWidth(i); var hd = this.getHeaderCell(i); hd.style.width = ws[i]; } var lns = this.getLockedRows(), ns = this.getRows(), row, trow, j; for(i = 0, len = ns.length; i < len; i++){ row = lns[i]; row.style.width = lw; if(row.firstChild){ row.firstChild.style.width = lw; trow = row.firstChild.rows[0]; for (j = 0; j < llen; j++) { trow.childNodes[j].style.width = ws[j]; } } row = ns[i]; row.style.width = tw; if(row.firstChild){ row.firstChild.style.width = tw; trow = row.firstChild.rows[0]; for (j = llen; j < clen; j++) { trow.childNodes[j - llen].style.width = ws[j]; } } } this.onAllColumnWidthsUpdated(ws, tw); this.syncHeaderHeight(); }, updateColumnWidth : function(col, width){ var w = this.getColumnWidth(col), llen = this.cm.getLockedCount(), ns, rw, c, row; this.updateLockedWidth(); if(col < llen){ ns = this.getLockedRows(); rw = this.getLockedWidth(); c = col; }else{ ns = this.getRows(); rw = this.getTotalWidth(); c = col - llen; } var hd = this.getHeaderCell(col); hd.style.width = w; for(var i = 0, len = ns.length; i < len; i++){ row = ns[i]; row.style.width = rw; if(row.firstChild){ row.firstChild.style.width = rw; row.firstChild.rows[0].childNodes[c].style.width = w; } } this.onColumnWidthUpdated(col, w, this.getTotalWidth()); this.syncHeaderHeight(); }, updateColumnHidden : function(col, hidden){ var llen = this.cm.getLockedCount(), ns, rw, c, row, display = hidden ? 'none' : ''; this.updateLockedWidth(); if(col < llen){ ns = this.getLockedRows(); rw = this.getLockedWidth(); c = col; }else{ ns = this.getRows(); rw = this.getTotalWidth(); c = col - llen; } var hd = this.getHeaderCell(col); hd.style.display = display; for(var i = 0, len = ns.length; i < len; i++){ row = ns[i]; row.style.width = rw; if(row.firstChild){ row.firstChild.style.width = rw; row.firstChild.rows[0].childNodes[c].style.display = display; } } this.onColumnHiddenUpdated(col, hidden, this.getTotalWidth()); delete this.lastViewWidth; this.layout(); }, doRender : function(cs, rs, ds, startRow, colCount, stripe){ var ts = this.templates, ct = ts.cell, rt = ts.row, last = colCount-1, tstyle = 'width:'+this.getTotalWidth()+';', lstyle = 'width:'+this.getLockedWidth()+';', buf = [], lbuf = [], cb, lcb, c, p = {}, rp = {}, r; for(var j = 0, len = rs.length; j < len; j++){ r = rs[j]; cb = []; lcb = []; var rowIndex = (j+startRow); for(var i = 0; i < colCount; i++){ c = cs[i]; p.id = c.id; p.css = (i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : '')) + (this.cm.config[i].cellCls ? ' ' + this.cm.config[i].cellCls : ''); p.attr = p.cellAttr = ''; p.value = c.renderer(r.data[c.name], p, r, rowIndex, i, ds); p.style = c.style; if(Ext.isEmpty(p.value)){ p.value = ' '; } if(this.markDirty && r.dirty && Ext.isDefined(r.modified[c.name])){ p.css += ' x-grid3-dirty-cell'; } if(c.locked){ lcb[lcb.length] = ct.apply(p); }else{ cb[cb.length] = ct.apply(p); } } var alt = []; if(stripe && ((rowIndex+1) % 2 === 0)){ alt[0] = 'x-grid3-row-alt'; } if(r.dirty){ alt[1] = ' x-grid3-dirty-row'; } rp.cols = colCount; if(this.getRowClass){ alt[2] = this.getRowClass(r, rowIndex, rp, ds); } rp.alt = alt.join(' '); rp.cells = cb.join(''); rp.tstyle = tstyle; buf[buf.length] = rt.apply(rp); rp.cells = lcb.join(''); rp.tstyle = lstyle; lbuf[lbuf.length] = rt.apply(rp); } return [buf.join(''), lbuf.join('')]; }, processRows : function(startRow, skipStripe){ if(!this.ds || this.ds.getCount() < 1){ return; } var rows = this.getRows(), lrows = this.getLockedRows(), row, lrow; skipStripe = skipStripe || !this.grid.stripeRows; startRow = startRow || 0; for(var i = 0, len = rows.length; i < len; ++i){ row = rows[i]; lrow = lrows[i]; row.rowIndex = i; lrow.rowIndex = i; if(!skipStripe){ row.className = row.className.replace(this.rowClsRe, ' '); lrow.className = lrow.className.replace(this.rowClsRe, ' '); if ((i + 1) % 2 === 0){ row.className += ' x-grid3-row-alt'; lrow.className += ' x-grid3-row-alt'; } } this.syncRowHeights(row, lrow); } if(startRow === 0){ Ext.fly(rows[0]).addClass(this.firstRowCls); Ext.fly(lrows[0]).addClass(this.firstRowCls); } Ext.fly(rows[rows.length - 1]).addClass(this.lastRowCls); Ext.fly(lrows[lrows.length - 1]).addClass(this.lastRowCls); }, syncRowHeights: function(row1, row2){ if(this.syncHeights){ var el1 = Ext.get(row1), el2 = Ext.get(row2), h1 = el1.getHeight(), h2 = el2.getHeight(); if(h1 > h2){ el2.setHeight(h1); }else if(h2 > h1){ el1.setHeight(h2); } } }, afterRender : function(){ if(!this.ds || !this.cm){ return; } var bd = this.renderRows() || [' ', ' ']; this.mainBody.dom.innerHTML = bd[0]; this.lockedBody.dom.innerHTML = bd[1]; this.processRows(0, true); if(this.deferEmptyText !== true){ this.applyEmptyText(); } this.grid.fireEvent('viewready', this.grid); }, renderUI : function(){ var templates = this.templates, header = this.renderHeaders(), body = templates.body.apply({rows:' '}); return templates.masterTpl.apply({ body : body, header: header[0], ostyle: 'width:' + this.getOffsetWidth() + ';', bstyle: 'width:' + this.getTotalWidth() + ';', lockedBody: body, lockedHeader: header[1], lstyle: 'width:'+this.getLockedWidth()+';' }); }, afterRenderUI: function(){ var g = this.grid; this.initElements(); Ext.fly(this.innerHd).on('click', this.handleHdDown, this); Ext.fly(this.lockedInnerHd).on('click', this.handleHdDown, this); this.mainHd.on({ scope: this, mouseover: this.handleHdOver, mouseout: this.handleHdOut, mousemove: this.handleHdMove }); this.lockedHd.on({ scope: this, mouseover: this.handleHdOver, mouseout: this.handleHdOut, mousemove: this.handleHdMove }); this.scroller.on('scroll', this.syncScroll, this); if(g.enableColumnResize !== false){ this.splitZone = new Ext.grid.GridView.SplitDragZone(g, this.mainHd.dom); this.splitZone.setOuterHandleElId(Ext.id(this.lockedHd.dom)); this.splitZone.setOuterHandleElId(Ext.id(this.mainHd.dom)); } if(g.enableColumnMove){ this.columnDrag = new Ext.grid.GridView.ColumnDragZone(g, this.innerHd); this.columnDrag.setOuterHandleElId(Ext.id(this.lockedInnerHd)); this.columnDrag.setOuterHandleElId(Ext.id(this.innerHd)); this.columnDrop = new Ext.grid.HeaderDropZone(g, this.mainHd.dom); } if(g.enableHdMenu !== false){ this.hmenu = new Ext.menu.Menu({id: g.id + '-hctx'}); this.hmenu.add( {itemId: 'asc', text: this.sortAscText, cls: 'xg-hmenu-sort-asc'}, {itemId: 'desc', text: this.sortDescText, cls: 'xg-hmenu-sort-desc'} ); if(this.grid.enableColLock !== false){ this.hmenu.add({ itemId: 'sortSep', xtype: 'menuseparator' }, {itemId: 'lock', text: this.lockText, cls: 'xg-hmenu-lock'}, {itemId: 'unlock', text: this.unlockText, cls: 'xg-hmenu-unlock'} ); } if(g.enableColumnHide !== false){ this.colMenu = new Ext.menu.Menu({id:g.id + '-hcols-menu'}); this.colMenu.on({ scope: this, beforeshow: this.beforeColMenuShow, itemclick: this.handleHdMenuClick }); this.hmenu.add('-', { itemId:'columns', hideOnClick: false, text: this.columnsText, menu: this.colMenu, iconCls: 'x-cols-icon' }); } this.hmenu.on('itemclick', this.handleHdMenuClick, this); } if(g.trackMouseOver){ this.mainBody.on({ scope: this, mouseover: this.onRowOver, mouseout: this.onRowOut }); this.lockedBody.on({ scope: this, mouseover: this.onRowOver, mouseout: this.onRowOut }); } if(g.enableDragDrop || g.enableDrag){ this.dragZone = new Ext.grid.GridDragZone(g, { ddGroup : g.ddGroup || 'GridDD' }); } this.updateHeaderSortState(); }, layout : function(){ if(!this.mainBody){ return; } var g = this.grid; var c = g.getGridEl(); var csize = c.getSize(true); var vw = csize.width; if(!g.hideHeaders && (vw < 20 || csize.height < 20)){ return; } this.syncHeaderHeight(); if(g.autoHeight){ this.scroller.dom.style.overflow = 'visible'; this.lockedScroller.dom.style.overflow = 'visible'; if(Ext.isWebKit){ this.scroller.dom.style.position = 'static'; this.lockedScroller.dom.style.position = 'static'; } }else{ this.el.setSize(csize.width, csize.height); var hdHeight = this.mainHd.getHeight(); var vh = csize.height - (hdHeight); } this.updateLockedWidth(); if(this.forceFit){ if(this.lastViewWidth != vw){ this.fitColumns(false, false); this.lastViewWidth = vw; } }else { this.autoExpand(); this.syncHeaderScroll(); } this.onLayout(vw, vh); }, getOffsetWidth : function() { return (this.cm.getTotalWidth() - this.cm.getTotalLockedWidth() + this.getScrollOffset()) + 'px'; }, renderHeaders : function(){ var cm = this.cm, ts = this.templates, ct = ts.hcell, cb = [], lcb = [], p = {}, len = cm.getColumnCount(), last = len - 1; for(var i = 0; i < len; i++){ p.id = cm.getColumnId(i); p.value = cm.getColumnHeader(i) || ''; p.style = this.getColumnStyle(i, true); p.tooltip = this.getColumnTooltip(i); p.css = (i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : '')) + (cm.config[i].headerCls ? ' ' + cm.config[i].headerCls : ''); if(cm.config[i].align == 'right'){ p.istyle = 'padding-right:16px'; } else { delete p.istyle; } if(cm.isLocked(i)){ lcb[lcb.length] = ct.apply(p); }else{ cb[cb.length] = ct.apply(p); } } return [ts.header.apply({cells: cb.join(''), tstyle:'width:'+this.getTotalWidth()+';'}), ts.header.apply({cells: lcb.join(''), tstyle:'width:'+this.getLockedWidth()+';'})]; }, updateHeaders : function(){ var hd = this.renderHeaders(); this.innerHd.firstChild.innerHTML = hd[0]; this.innerHd.firstChild.style.width = this.getOffsetWidth(); this.innerHd.firstChild.firstChild.style.width = this.getTotalWidth(); this.lockedInnerHd.firstChild.innerHTML = hd[1]; var lw = this.getLockedWidth(); this.lockedInnerHd.firstChild.style.width = lw; this.lockedInnerHd.firstChild.firstChild.style.width = lw; }, getResolvedXY : function(resolved){ if(!resolved){ return null; } var c = resolved.cell, r = resolved.row; return c ? Ext.fly(c).getXY() : [this.scroller.getX(), Ext.fly(r).getY()]; }, syncFocusEl : function(row, col, hscroll){ Ext.ux.grid.LockingGridView.superclass.syncFocusEl.call(this, row, col, col < this.cm.getLockedCount() ? false : hscroll); }, ensureVisible : function(row, col, hscroll){ return Ext.ux.grid.LockingGridView.superclass.ensureVisible.call(this, row, col, col < this.cm.getLockedCount() ? false : hscroll); }, insertRows : function(dm, firstRow, lastRow, isUpdate){ var last = dm.getCount() - 1; if(!isUpdate && firstRow === 0 && lastRow >= last){ this.refresh(); }else{ if(!isUpdate){ this.fireEvent('beforerowsinserted', this, firstRow, lastRow); } var html = this.renderRows(firstRow, lastRow), before = this.getRow(firstRow); if(before){ if(firstRow === 0){ this.removeRowClass(0, this.firstRowCls); } Ext.DomHelper.insertHtml('beforeBegin', before, html[0]); before = this.getLockedRow(firstRow); Ext.DomHelper.insertHtml('beforeBegin', before, html[1]); }else{ this.removeRowClass(last - 1, this.lastRowCls); Ext.DomHelper.insertHtml('beforeEnd', this.mainBody.dom, html[0]); Ext.DomHelper.insertHtml('beforeEnd', this.lockedBody.dom, html[1]); } if(!isUpdate){ this.fireEvent('rowsinserted', this, firstRow, lastRow); this.processRows(firstRow); }else if(firstRow === 0 || firstRow >= last){ this.addRowClass(firstRow, firstRow === 0 ? this.firstRowCls : this.lastRowCls); } } this.syncFocusEl(firstRow); }, getColumnStyle : function(col, isHeader){ var style = !isHeader ? this.cm.config[col].cellStyle || this.cm.config[col].css || '' : this.cm.config[col].headerStyle || ''; style += 'width:'+this.getColumnWidth(col)+';'; if(this.cm.isHidden(col)){ style += 'display:none;'; } var align = this.cm.config[col].align; if(align){ style += 'text-align:'+align+';'; } return style; }, getLockedWidth : function() { return this.cm.getTotalLockedWidth() + 'px'; }, getTotalWidth : function() { return (this.cm.getTotalWidth() - this.cm.getTotalLockedWidth()) + 'px'; }, getColumnData : function(){ var cs = [], cm = this.cm, colCount = cm.getColumnCount(); for(var i = 0; i < colCount; i++){ var name = cm.getDataIndex(i); cs[i] = { name : (!Ext.isDefined(name) ? this.ds.fields.get(i).name : name), renderer : cm.getRenderer(i), scope : cm.getRendererScope(i), id : cm.getColumnId(i), style : this.getColumnStyle(i), locked : cm.isLocked(i) }; } return cs; }, renderBody : function(){ var markup = this.renderRows() || [' ', ' ']; return [this.templates.body.apply({rows: markup[0]}), this.templates.body.apply({rows: markup[1]})]; }, refreshRow: function(record){ var store = this.ds, colCount = this.cm.getColumnCount(), columns = this.getColumnData(), last = colCount - 1, cls = ['x-grid3-row'], rowParams = { tstyle: String.format("width: {0};", this.getTotalWidth()) }, lockedRowParams = { tstyle: String.format("width: {0};", this.getLockedWidth()) }, colBuffer = [], lockedColBuffer = [], cellTpl = this.templates.cell, rowIndex, row, lockedRow, column, meta, css, i; if (Ext.isNumber(record)) { rowIndex = record; record = store.getAt(rowIndex); } else { rowIndex = store.indexOf(record); } if (!record || rowIndex < 0) { return; } for (i = 0; i < colCount; i++) { column = columns[i]; if (i == 0) { css = 'x-grid3-cell-first'; } else { css = (i == last) ? 'x-grid3-cell-last ' : ''; } meta = { id: column.id, style: column.style, css: css, attr: "", cellAttr: "" }; meta.value = column.renderer.call(column.scope, record.data[column.name], meta, record, rowIndex, i, store); if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (this.markDirty && record.dirty && typeof record.modified[column.name] != 'undefined') { meta.css += ' x-grid3-dirty-cell'; } if (column.locked) { lockedColBuffer[i] = cellTpl.apply(meta); } else { colBuffer[i] = cellTpl.apply(meta); } } row = this.getRow(rowIndex); row.className = ''; lockedRow = this.getLockedRow(rowIndex); lockedRow.className = ''; if (this.grid.stripeRows && ((rowIndex + 1) % 2 === 0)) { cls.push('x-grid3-row-alt'); } if (this.getRowClass) { rowParams.cols = colCount; cls.push(this.getRowClass(record, rowIndex, rowParams, store)); } // Unlocked rows this.fly(row).addClass(cls).setStyle(rowParams.tstyle); rowParams.cells = colBuffer.join(""); row.innerHTML = this.templates.rowInner.apply(rowParams); // Locked rows this.fly(lockedRow).addClass(cls).setStyle(lockedRowParams.tstyle); lockedRowParams.cells = lockedColBuffer.join(""); lockedRow.innerHTML = this.templates.rowInner.apply(lockedRowParams); lockedRow.rowIndex = rowIndex; this.syncRowHeights(row, lockedRow); this.fireEvent('rowupdated', this, rowIndex, record); }, refresh : function(headersToo){ this.fireEvent('beforerefresh', this); this.grid.stopEditing(true); var result = this.renderBody(); this.mainBody.update(result[0]).setWidth(this.getTotalWidth()); this.lockedBody.update(result[1]).setWidth(this.getLockedWidth()); if(headersToo === true){ this.updateHeaders(); this.updateHeaderSortState(); } this.processRows(0, true); this.layout(); this.applyEmptyText(); this.fireEvent('refresh', this); }, onDenyColumnLock : function(){ }, initData : function(ds, cm){ if(this.cm){ this.cm.un('columnlockchange', this.onColumnLock, this); } Ext.ux.grid.LockingGridView.superclass.initData.call(this, ds, cm); if(this.cm){ this.cm.on('columnlockchange', this.onColumnLock, this); } }, onColumnLock : function(){ this.refresh(true); }, handleHdMenuClick : function(item){ var index = this.hdCtxIndex, cm = this.cm, id = item.getItemId(), llen = cm.getLockedCount(); switch(id){ case 'lock': if(cm.getColumnCount(true) <= llen + 1){ this.onDenyColumnLock(); return undefined; } cm.setLocked(index, true, llen != index); if(llen != index){ cm.moveColumn(index, llen); this.grid.fireEvent('columnmove', index, llen); } break; case 'unlock': if(llen - 1 != index){ cm.setLocked(index, false, true); cm.moveColumn(index, llen - 1); this.grid.fireEvent('columnmove', index, llen - 1); }else{ cm.setLocked(index, false); } break; default: return Ext.ux.grid.LockingGridView.superclass.handleHdMenuClick.call(this, item); } return true; }, handleHdDown : function(e, t){ Ext.ux.grid.LockingGridView.superclass.handleHdDown.call(this, e, t); if(this.grid.enableColLock !== false){ if(Ext.fly(t).hasClass('x-grid3-hd-btn')){ var hd = this.findHeaderCell(t), index = this.getCellIndex(hd), ms = this.hmenu.items, cm = this.cm; ms.get('lock').setDisabled(cm.isLocked(index)); ms.get('unlock').setDisabled(!cm.isLocked(index)); } } }, syncHeaderHeight: function(){ var hrow = Ext.fly(this.innerHd).child('tr', true), lhrow = Ext.fly(this.lockedInnerHd).child('tr', true); hrow.style.height = 'auto'; lhrow.style.height = 'auto'; var hd = hrow.offsetHeight, lhd = lhrow.offsetHeight, height = Math.max(lhd, hd) + 'px'; hrow.style.height = height; lhrow.style.height = height; }, updateLockedWidth: function(){ var lw = this.cm.getTotalLockedWidth(), tw = this.cm.getTotalWidth() - lw, csize = this.grid.getGridEl().getSize(true), lp = Ext.isBorderBox ? 0 : this.lockedBorderWidth, rp = Ext.isBorderBox ? 0 : this.rowBorderWidth, vw = Math.max(csize.width - lw - lp - rp, 0) + 'px', so = this.getScrollOffset(); if(!this.grid.autoHeight){ var vh = Math.max(csize.height - this.mainHd.getHeight(), 0) + 'px'; this.lockedScroller.dom.style.height = vh; this.scroller.dom.style.height = vh; } this.lockedWrap.dom.style.width = (lw + rp) + 'px'; this.scroller.dom.style.width = vw; this.mainWrap.dom.style.left = (lw + lp + rp) + 'px'; if(this.innerHd){ this.lockedInnerHd.firstChild.style.width = lw + 'px'; this.lockedInnerHd.firstChild.firstChild.style.width = lw + 'px'; this.innerHd.style.width = vw; this.innerHd.firstChild.style.width = (tw + rp + so) + 'px'; this.innerHd.firstChild.firstChild.style.width = tw + 'px'; } if(this.mainBody){ this.lockedBody.dom.style.width = (lw + rp) + 'px'; this.mainBody.dom.style.width = (tw + rp) + 'px'; } } }); Ext.ux.grid.LockingColumnModel = Ext.extend(Ext.grid.ColumnModel, { /** * Returns true if the given column index is currently locked * @param {Number} colIndex The column index * @return {Boolean} True if the column is locked */ isLocked : function(colIndex){ return this.config[colIndex].locked === true; }, /** * Locks or unlocks a given column * @param {Number} colIndex The column index * @param {Boolean} value True to lock, false to unlock * @param {Boolean} suppressEvent Pass false to cause the columnlockchange event not to fire */ setLocked : function(colIndex, value, suppressEvent){ if (this.isLocked(colIndex) == value) { return; } this.config[colIndex].locked = value; if (!suppressEvent) { this.fireEvent('columnlockchange', this, colIndex, value); } }, /** * Returns the total width of all locked columns * @return {Number} The width of all locked columns */ getTotalLockedWidth : function(){ var totalWidth = 0; for (var i = 0, len = this.config.length; i < len; i++) { if (this.isLocked(i) && !this.isHidden(i)) { totalWidth += this.getColumnWidth(i); } } return totalWidth; }, /** * Returns the total number of locked columns * @return {Number} The number of locked columns */ getLockedCount : function() { var len = this.config.length; for (var i = 0; i < len; i++) { if (!this.isLocked(i)) { return i; } } //if we get to this point all of the columns are locked so we return the total return len; }, /** * Moves a column from one position to another * @param {Number} oldIndex The current column index * @param {Number} newIndex The destination column index */ moveColumn : function(oldIndex, newIndex){ var oldLocked = this.isLocked(oldIndex), newLocked = this.isLocked(newIndex); if (oldIndex < newIndex && oldLocked && !newLocked) { this.setLocked(oldIndex, false, true); } else if (oldIndex > newIndex && !oldLocked && newLocked) { this.setLocked(oldIndex, true, true); } Ext.ux.grid.LockingColumnModel.superclass.moveColumn.apply(this, arguments); } }); ================================================ FILE: client/src/ext/ux/MultiSelect.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.MultiSelect * @extends Ext.form.Field * A control that allows selection and form submission of multiple list items. * * @history * 2008-06-19 bpm Original code contributed by Toby Stuart (with contributions from Robert Williams) * 2008-06-19 bpm Docs and demo code clean up * * @constructor * Create a new MultiSelect * @param {Object} config Configuration options * @xtype multiselect */ Ext.ux.form.MultiSelect = Ext.extend(Ext.form.Field, { /** * @cfg {String} legend Wraps the object with a fieldset and specified legend. */ /** * @cfg {Ext.ListView} view The {@link Ext.ListView} used to render the multiselect list. */ /** * @cfg {String/Array} dragGroup The ddgroup name(s) for the MultiSelect DragZone (defaults to undefined). */ /** * @cfg {String/Array} dropGroup The ddgroup name(s) for the MultiSelect DropZone (defaults to undefined). */ /** * @cfg {Boolean} ddReorder Whether the items in the MultiSelect list are drag/drop reorderable (defaults to false). */ ddReorder:false, /** * @cfg {Object/Array} tbar The top toolbar of the control. This can be a {@link Ext.Toolbar} object, a * toolbar config, or an array of buttons/button configs to be added to the toolbar. */ /** * @cfg {String} appendOnly True if the list should only allow append drops when drag/drop is enabled * (use for lists which are sorted, defaults to false). */ appendOnly:false, /** * @cfg {Number} width Width in pixels of the control (defaults to 100). */ width:100, /** * @cfg {Number} height Height in pixels of the control (defaults to 100). */ height:100, /** * @cfg {String/Number} displayField Name/Index of the desired display field in the dataset (defaults to 0). */ displayField:0, /** * @cfg {String/Number} valueField Name/Index of the desired value field in the dataset (defaults to 1). */ valueField:1, /** * @cfg {Boolean} allowBlank False to require at least one item in the list to be selected, true to allow no * selection (defaults to true). */ allowBlank:true, /** * @cfg {Number} minSelections Minimum number of selections allowed (defaults to 0). */ minSelections:0, /** * @cfg {Number} maxSelections Maximum number of selections allowed (defaults to Number.MAX_VALUE). */ maxSelections:Number.MAX_VALUE, /** * @cfg {String} blankText Default text displayed when the control contains no items (defaults to the same value as * {@link Ext.form.TextField#blankText}. */ blankText:Ext.form.TextField.prototype.blankText, /** * @cfg {String} minSelectionsText Validation message displayed when {@link #minSelections} is not met (defaults to 'Minimum {0} * item(s) required'). The {0} token will be replaced by the value of {@link #minSelections}. */ minSelectionsText:'Minimum {0} item(s) required', /** * @cfg {String} maxSelectionsText Validation message displayed when {@link #maxSelections} is not met (defaults to 'Maximum {0} * item(s) allowed'). The {0} token will be replaced by the value of {@link #maxSelections}. */ maxSelectionsText:'Maximum {0} item(s) allowed', /** * @cfg {String} delimiter The string used to delimit between items when set or returned as a string of values * (defaults to ','). */ delimiter:',', /** * @cfg {Ext.data.Store/Array} store The data source to which this MultiSelect is bound (defaults to undefined). * Acceptable values for this property are: *
      *
    • any {@link Ext.data.Store Store} subclass
      • *
    • an Array : Arrays will be converted to a {@link Ext.data.ArrayStore} internally. *
        *
      • 1-dimensional array : (e.g., ['Foo','Bar'])
        * A 1-dimensional array will automatically be expanded (each array item will be the combo * {@link #valueField value} and {@link #displayField text})
        • *
      • 2-dimensional array : (e.g., [['f','Foo'],['b','Bar']])
        * For a multi-dimensional array, the value in index 0 of each item will be assumed to be the combo * {@link #valueField value}, while the value at index 1 is assumed to be the combo {@link #displayField text}. *
    */ cls: 'ux-form-multiselect', // private defaultAutoCreate : {tag: "div"}, // private initComponent: function(){ Ext.ux.form.MultiSelect.superclass.initComponent.call(this); if(Ext.isArray(this.store)){ if (Ext.isArray(this.store[0])){ this.store = new Ext.data.ArrayStore({ fields: ['value','text'], data: this.store }); this.valueField = 'value'; }else{ this.store = new Ext.data.ArrayStore({ fields: ['text'], data: this.store, expandData: true }); this.valueField = 'text'; } this.displayField = 'text'; } else { this.store = Ext.StoreMgr.lookup(this.store); } this.addEvents({ 'dblclick' : true, 'click' : true, 'change' : true, 'drop' : true }); }, // private onRender: function(ct, position){ Ext.ux.form.MultiSelect.superclass.onRender.call(this, ct, position); var fs = this.fs = new Ext.form.FieldSet({ renderTo: this.el, title: this.legend, height: this.height, width: this.width, style: "padding:0;", tbar: this.tbar }); fs.body.addClass('ux-mselect'); this.view = new Ext.ListView({ selectedClass: 'ux-mselect-selected', multiSelect: true, store: this.store, columns: [{ header: 'Value', width: 1, dataIndex: this.displayField }], hideHeaders: true }); fs.add(this.view); this.view.on('click', this.onViewClick, this); this.view.on('beforeclick', this.onViewBeforeClick, this); this.view.on('dblclick', this.onViewDblClick, this); this.hiddenName = this.name || Ext.id(); var hiddenTag = { tag: "input", type: "hidden", value: "", name: this.hiddenName }; this.hiddenField = this.el.createChild(hiddenTag); this.hiddenField.dom.disabled = this.hiddenName != this.name; fs.doLayout(); }, // private afterRender: function(){ Ext.ux.form.MultiSelect.superclass.afterRender.call(this); if (this.ddReorder && !this.dragGroup && !this.dropGroup){ this.dragGroup = this.dropGroup = 'MultiselectDD-' + Ext.id(); } if (this.draggable || this.dragGroup){ this.dragZone = new Ext.ux.form.MultiSelect.DragZone(this, { ddGroup: this.dragGroup }); } if (this.droppable || this.dropGroup){ this.dropZone = new Ext.ux.form.MultiSelect.DropZone(this, { ddGroup: this.dropGroup }); } }, // private onViewClick: function(vw, index, node, e) { this.fireEvent('change', this, this.getValue(), this.hiddenField.dom.value); this.hiddenField.dom.value = this.getValue(); this.fireEvent('click', this, e); this.validate(); }, // private onViewBeforeClick: function(vw, index, node, e) { if (this.disabled || this.readOnly) { return false; } }, // private onViewDblClick : function(vw, index, node, e) { return this.fireEvent('dblclick', vw, index, node, e); }, /** * Returns an array of data values for the selected items in the list. The values will be separated * by {@link #delimiter}. * @return {Array} value An array of string data values */ getValue: function(valueField){ var returnArray = []; var selectionsArray = this.view.getSelectedIndexes(); if (selectionsArray.length == 0) {return '';} for (var i=0; i this.maxSelections) { this.markInvalid(String.format(this.maxSelectionsText, this.maxSelections)); return false; } return true; }, // inherit docs disable: function(){ this.disabled = true; this.hiddenField.dom.disabled = true; this.fs.disable(); }, // inherit docs enable: function(){ this.disabled = false; this.hiddenField.dom.disabled = false; this.fs.enable(); }, // inherit docs destroy: function(){ Ext.destroy(this.fs, this.dragZone, this.dropZone); Ext.ux.form.MultiSelect.superclass.destroy.call(this); } }); Ext.reg('multiselect', Ext.ux.form.MultiSelect); //backwards compat Ext.ux.Multiselect = Ext.ux.form.MultiSelect; Ext.ux.form.MultiSelect.DragZone = function(ms, config){ this.ms = ms; this.view = ms.view; var ddGroup = config.ddGroup || 'MultiselectDD'; var dd; if (Ext.isArray(ddGroup)){ dd = ddGroup.shift(); } else { dd = ddGroup; ddGroup = null; } Ext.ux.form.MultiSelect.DragZone.superclass.constructor.call(this, this.ms.fs.body, { containerScroll: true, ddGroup: dd }); this.setDraggable(ddGroup); }; Ext.extend(Ext.ux.form.MultiSelect.DragZone, Ext.dd.DragZone, { onInitDrag : function(x, y){ var el = Ext.get(this.dragData.ddel.cloneNode(true)); this.proxy.update(el.dom); el.setWidth(el.child('em').getWidth()); this.onStartDrag(x, y); return true; }, // private collectSelection: function(data) { data.repairXY = Ext.fly(this.view.getSelectedNodes()[0]).getXY(); var i = 0; this.view.store.each(function(rec){ if (this.view.isSelected(i)) { var n = this.view.getNode(i); var dragNode = n.cloneNode(true); dragNode.id = Ext.id(); data.ddel.appendChild(dragNode); data.records.push(this.view.store.getAt(i)); data.viewNodes.push(n); } i++; }, this); }, // override onEndDrag: function(data, e) { var d = Ext.get(this.dragData.ddel); if (d && d.hasClass("multi-proxy")) { d.remove(); } }, // override getDragData: function(e){ var target = this.view.findItemFromChild(e.getTarget()); if(target) { if (!this.view.isSelected(target) && !e.ctrlKey && !e.shiftKey) { this.view.select(target); this.ms.setValue(this.ms.getValue()); } if (this.view.getSelectionCount() == 0 || e.ctrlKey || e.shiftKey) return false; var dragData = { sourceView: this.view, viewNodes: [], records: [] }; if (this.view.getSelectionCount() == 1) { var i = this.view.getSelectedIndexes()[0]; var n = this.view.getNode(i); dragData.viewNodes.push(dragData.ddel = n); dragData.records.push(this.view.store.getAt(i)); dragData.repairXY = Ext.fly(n).getXY(); } else { dragData.ddel = document.createElement('div'); dragData.ddel.className = 'multi-proxy'; this.collectSelection(dragData); } return dragData; } return false; }, // override the default repairXY. getRepairXY : function(e){ return this.dragData.repairXY; }, // private setDraggable: function(ddGroup){ if (!ddGroup) return; if (Ext.isArray(ddGroup)) { Ext.each(ddGroup, this.setDraggable, this); return; } this.addToGroup(ddGroup); } }); Ext.ux.form.MultiSelect.DropZone = function(ms, config){ this.ms = ms; this.view = ms.view; var ddGroup = config.ddGroup || 'MultiselectDD'; var dd; if (Ext.isArray(ddGroup)){ dd = ddGroup.shift(); } else { dd = ddGroup; ddGroup = null; } Ext.ux.form.MultiSelect.DropZone.superclass.constructor.call(this, this.ms.fs.body, { containerScroll: true, ddGroup: dd }); this.setDroppable(ddGroup); }; Ext.extend(Ext.ux.form.MultiSelect.DropZone, Ext.dd.DropZone, { /** * Part of the Ext.dd.DropZone interface. If no target node is found, the * whole Element becomes the target, and this causes the drop gesture to append. */ getTargetFromEvent : function(e) { var target = e.getTarget(); return target; }, // private getDropPoint : function(e, n, dd){ if (n == this.ms.fs.body.dom) { return "below"; } var t = Ext.lib.Dom.getY(n), b = t + n.offsetHeight; var c = t + (b - t) / 2; var y = Ext.lib.Event.getPageY(e); if(y <= c) { return "above"; }else{ return "below"; } }, // private isValidDropPoint: function(pt, n, data) { if (!data.viewNodes || (data.viewNodes.length != 1)) { return true; } var d = data.viewNodes[0]; if (d == n) { return false; } if ((pt == "below") && (n.nextSibling == d)) { return false; } if ((pt == "above") && (n.previousSibling == d)) { return false; } return true; }, // override onNodeEnter : function(n, dd, e, data){ return false; }, // override onNodeOver : function(n, dd, e, data){ var dragElClass = this.dropNotAllowed; var pt = this.getDropPoint(e, n, dd); if (this.isValidDropPoint(pt, n, data)) { if (this.ms.appendOnly) { return "x-tree-drop-ok-below"; } // set the insert point style on the target node if (pt) { var targetElClass; if (pt == "above"){ dragElClass = n.previousSibling ? "x-tree-drop-ok-between" : "x-tree-drop-ok-above"; targetElClass = "x-view-drag-insert-above"; } else { dragElClass = n.nextSibling ? "x-tree-drop-ok-between" : "x-tree-drop-ok-below"; targetElClass = "x-view-drag-insert-below"; } if (this.lastInsertClass != targetElClass){ Ext.fly(n).replaceClass(this.lastInsertClass, targetElClass); this.lastInsertClass = targetElClass; } } } return dragElClass; }, // private onNodeOut : function(n, dd, e, data){ this.removeDropIndicators(n); }, // private onNodeDrop : function(n, dd, e, data){ if (this.ms.fireEvent("drop", this, n, dd, e, data) === false) { return false; } var pt = this.getDropPoint(e, n, dd); if (n != this.ms.fs.body.dom) n = this.view.findItemFromChild(n); if(this.ms.appendOnly) { insertAt = this.view.store.getCount(); } else { insertAt = n == this.ms.fs.body.dom ? this.view.store.getCount() - 1 : this.view.indexOf(n); if (pt == "below") { insertAt++; } } var dir = false; // Validate if dragging within the same MultiSelect if (data.sourceView == this.view) { // If the first element to be inserted below is the target node, remove it if (pt == "below") { if (data.viewNodes[0] == n) { data.viewNodes.shift(); } } else { // If the last element to be inserted above is the target node, remove it if (data.viewNodes[data.viewNodes.length - 1] == n) { data.viewNodes.pop(); } } // Nothing to drop... if (!data.viewNodes.length) { return false; } // If we are moving DOWN, then because a store.remove() takes place first, // the insertAt must be decremented. if (insertAt > this.view.store.indexOf(data.records[0])) { dir = 'down'; insertAt--; } } for (var i = 0; i < data.records.length; i++) { var r = data.records[i]; if (data.sourceView) { data.sourceView.store.remove(r); } this.view.store.insert(dir == 'down' ? insertAt : insertAt++, r); var si = this.view.store.sortInfo; if(si){ this.view.store.sort(si.field, si.direction); } } return true; }, // private removeDropIndicators : function(n){ if(n){ Ext.fly(n).removeClass([ "x-view-drag-insert-above", "x-view-drag-insert-left", "x-view-drag-insert-right", "x-view-drag-insert-below"]); this.lastInsertClass = "_noclass"; } }, // private setDroppable: function(ddGroup){ if (!ddGroup) return; if (Ext.isArray(ddGroup)) { Ext.each(ddGroup, this.setDroppable, this); return; } this.addToGroup(ddGroup); } }); ================================================ FILE: client/src/ext/ux/PagingMemoryProxy.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* Fix for Opera, which does not seem to include the map function on Array's */ if (!Array.prototype.map) { Array.prototype.map = function(fun){ var len = this.length; if (typeof fun != 'function') { throw new TypeError(); } var res = new Array(len); var thisp = arguments[1]; for (var i = 0; i < len; i++) { if (i in this) { res[i] = fun.call(thisp, this[i], i, this); } } return res; }; } Ext.ns('Ext.ux.data'); /** * @class Ext.ux.data.PagingMemoryProxy * @extends Ext.data.MemoryProxy *

    Paging Memory Proxy, allows to use paging grid with in memory dataset

    */ Ext.ux.data.PagingMemoryProxy = Ext.extend(Ext.data.MemoryProxy, { constructor : function(data){ Ext.ux.data.PagingMemoryProxy.superclass.constructor.call(this); this.data = data; }, doRequest : function(action, rs, params, reader, callback, scope, options){ params = params || {}; var result; try { result = reader.readRecords(this.data); } catch (e) { this.fireEvent('loadexception', this, options, null, e); callback.call(scope, null, options, false); return; } // filtering if (params.filter !== undefined) { result.records = result.records.filter(function(el){ if (typeof(el) == 'object') { var att = params.filterCol || 0; return String(el.data[att]).match(params.filter) ? true : false; } else { return String(el).match(params.filter) ? true : false; } }); result.totalRecords = result.records.length; } // sorting if (params.sort !== undefined) { // use integer as params.sort to specify column, since arrays are not named // params.sort=0; would also match a array without columns var dir = String(params.dir).toUpperCase() == 'DESC' ? -1 : 1; var fn = function(v1, v2){ return v1 > v2 ? 1 : (v1 < v2 ? -1 : 0); }; result.records.sort(function(a, b){ var v = 0; if (typeof(a) == 'object') { v = fn(a.data[params.sort], b.data[params.sort]) * dir; } else { v = fn(a, b) * dir; } if (v == 0) { v = (a.index < b.index ? -1 : 1); } return v; }); } // paging (use undefined cause start can also be 0 (thus false)) if (params.start !== undefined && params.limit !== undefined) { result.records = result.records.slice(params.start, params.start + params.limit); } callback.call(scope, result, options, true); } }); //backwards compat. Ext.data.PagingMemoryProxy = Ext.ux.data.PagingMemoryProxy; ================================================ FILE: client/src/ext/ux/PanelResizer.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ux.PanelResizer = Ext.extend(Ext.util.Observable, { minHeight: 0, maxHeight:10000000, constructor: function(config){ Ext.apply(this, config); this.events = {}; Ext.ux.PanelResizer.superclass.constructor.call(this, config); }, init : function(p){ this.panel = p; if(this.panel.elements.indexOf('footer')==-1){ p.elements += ',footer'; } p.on('render', this.onRender, this); }, onRender : function(p){ this.handle = p.footer.createChild({cls:'x-panel-resize'}); this.tracker = new Ext.dd.DragTracker({ onStart: this.onDragStart.createDelegate(this), onDrag: this.onDrag.createDelegate(this), onEnd: this.onDragEnd.createDelegate(this), tolerance: 3, autoStart: 300 }); this.tracker.initEl(this.handle); p.on('beforedestroy', this.tracker.destroy, this.tracker); }, // private onDragStart: function(e){ this.dragging = true; this.startHeight = this.panel.el.getHeight(); this.fireEvent('dragstart', this, e); }, // private onDrag: function(e){ this.panel.setHeight((this.startHeight-this.tracker.getOffset()[1]).constrain(this.minHeight, this.maxHeight)); this.fireEvent('drag', this, e); }, // private onDragEnd: function(e){ this.dragging = false; this.fireEvent('dragend', this, e); } }); Ext.preg('panelresizer', Ext.ux.PanelResizer); ================================================ FILE: client/src/ext/ux/Portal.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ux.Portal = Ext.extend(Ext.Panel, { layout : 'column', autoScroll : true, cls : 'x-portal', defaultType : 'portalcolumn', initComponent : function(){ Ext.ux.Portal.superclass.initComponent.call(this); this.addEvents({ validatedrop:true, beforedragover:true, dragover:true, beforedrop:true, drop:true }); }, initEvents : function(){ Ext.ux.Portal.superclass.initEvents.call(this); this.dd = new Ext.ux.Portal.DropZone(this, this.dropConfig); }, beforeDestroy : function() { if(this.dd){ this.dd.unreg(); } Ext.ux.Portal.superclass.beforeDestroy.call(this); } }); Ext.reg('portal', Ext.ux.Portal); Ext.ux.Portal.DropZone = Ext.extend(Ext.dd.DropTarget, { constructor : function(portal, cfg){ this.portal = portal; Ext.dd.ScrollManager.register(portal.body); Ext.ux.Portal.DropZone.superclass.constructor.call(this, portal.bwrap.dom, cfg); portal.body.ddScrollConfig = this.ddScrollConfig; }, ddScrollConfig : { vthresh: 50, hthresh: -1, animate: true, increment: 200 }, createEvent : function(dd, e, data, col, c, pos){ return { portal: this.portal, panel: data.panel, columnIndex: col, column: c, position: pos, data: data, source: dd, rawEvent: e, status: this.dropAllowed }; }, notifyOver : function(dd, e, data){ var xy = e.getXY(), portal = this.portal, px = dd.proxy; // case column widths if(!this.grid){ this.grid = this.getGrid(); } // handle case scroll where scrollbars appear during drag var cw = portal.body.dom.clientWidth; if(!this.lastCW){ this.lastCW = cw; }else if(this.lastCW != cw){ this.lastCW = cw; portal.doLayout(); this.grid = this.getGrid(); } // determine column var col = 0, xs = this.grid.columnX, cmatch = false; for(var len = xs.length; col < len; col++){ if(xy[0] < (xs[col].x + xs[col].w)){ cmatch = true; break; } } // no match, fix last index if(!cmatch){ col--; } // find insert position var p, match = false, pos = 0, c = portal.items.itemAt(col), items = c.items.items, overSelf = false; for(var len = items.length; pos < len; pos++){ p = items[pos]; var h = p.el.getHeight(); if(h === 0){ overSelf = true; } else if((p.el.getY()+(h/2)) > xy[1]){ match = true; break; } } pos = (match && p ? pos : c.items.getCount()) + (overSelf ? -1 : 0); var overEvent = this.createEvent(dd, e, data, col, c, pos); if(portal.fireEvent('validatedrop', overEvent) !== false && portal.fireEvent('beforedragover', overEvent) !== false){ // make sure proxy width is fluid px.getProxy().setWidth('auto'); if(p){ px.moveProxy(p.el.dom.parentNode, match ? p.el.dom : null); }else{ px.moveProxy(c.el.dom, null); } this.lastPos = {c: c, col: col, p: overSelf || (match && p) ? pos : false}; this.scrollPos = portal.body.getScroll(); portal.fireEvent('dragover', overEvent); return overEvent.status; }else{ return overEvent.status; } }, notifyOut : function(){ delete this.grid; }, notifyDrop : function(dd, e, data){ delete this.grid; if(!this.lastPos){ return; } var c = this.lastPos.c, col = this.lastPos.col, pos = this.lastPos.p, panel = dd.panel, dropEvent = this.createEvent(dd, e, data, col, c, pos !== false ? pos : c.items.getCount()); if(this.portal.fireEvent('validatedrop', dropEvent) !== false && this.portal.fireEvent('beforedrop', dropEvent) !== false){ dd.proxy.getProxy().remove(); panel.el.dom.parentNode.removeChild(dd.panel.el.dom); if(pos !== false){ c.insert(pos, panel); }else{ c.add(panel); } c.doLayout(); this.portal.fireEvent('drop', dropEvent); // scroll position is lost on drop, fix it var st = this.scrollPos.top; if(st){ var d = this.portal.body.dom; setTimeout(function(){ d.scrollTop = st; }, 10); } } delete this.lastPos; }, // internal cache of body and column coords getGrid : function(){ var box = this.portal.bwrap.getBox(); box.columnX = []; this.portal.items.each(function(c){ box.columnX.push({x: c.el.getX(), w: c.el.getWidth()}); }); return box; }, // unregister the dropzone from ScrollManager unreg: function() { Ext.dd.ScrollManager.unregister(this.portal.body); Ext.ux.Portal.DropZone.superclass.unreg.call(this); } }); ================================================ FILE: client/src/ext/ux/PortalColumn.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ux.PortalColumn = Ext.extend(Ext.Container, { layout : 'anchor', //autoEl : 'div',//already defined by Ext.Component defaultType : 'portlet', cls : 'x-portal-column' }); Ext.reg('portalcolumn', Ext.ux.PortalColumn); ================================================ FILE: client/src/ext/ux/Portlet.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ux.Portlet = Ext.extend(Ext.Panel, { anchor : '100%', frame : true, collapsible : true, draggable : true, cls : 'x-portlet' }); Ext.reg('portlet', Ext.ux.Portlet); ================================================ FILE: client/src/ext/ux/ProgressBarPager.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.ProgressBarPager * @extends Object * Plugin (ptype = 'tabclosemenu') for displaying a progressbar inside of a paging toolbar instead of plain text * * @ptype progressbarpager * @constructor * Create a new ItemSelector * @param {Object} config Configuration options * @xtype itemselector */ Ext.ux.ProgressBarPager = Ext.extend(Object, { /** * @cfg {Integer} progBarWidth *

    The default progress bar width. Default is 225.

    */ progBarWidth : 225, /** * @cfg {String} defaultText *

    The text to display while the store is loading. Default is 'Loading...'

    */ defaultText : 'Loading...', /** * @cfg {Object} defaultAnimCfg *

    A {@link Ext.Fx Ext.Fx} configuration object. Default is { duration : 1, easing : 'bounceOut' }.

    */ defaultAnimCfg : { duration : 1, easing : 'bounceOut' }, constructor : function(config) { if (config) { Ext.apply(this, config); } }, //public init : function (parent) { if(parent.displayInfo){ this.parent = parent; var ind = parent.items.indexOf(parent.displayItem); parent.remove(parent.displayItem, true); this.progressBar = new Ext.ProgressBar({ text : this.defaultText, width : this.progBarWidth, animate : this.defaultAnimCfg }); parent.displayItem = this.progressBar; parent.add(parent.displayItem); parent.doLayout(); Ext.apply(parent, this.parentOverrides); this.progressBar.on('render', function(pb) { pb.mon(pb.getEl().applyStyles('cursor:pointer'), 'click', this.handleProgressBarClick, this); }, this, {single: true}); } }, // private // This method handles the click for the progress bar handleProgressBarClick : function(e){ var parent = this.parent, displayItem = parent.displayItem, box = this.progressBar.getBox(), xy = e.getXY(), position = xy[0]-box.x, pages = Math.ceil(parent.store.getTotalCount()/parent.pageSize), newpage = Math.ceil(position/(displayItem.width/pages)); parent.changePage(newpage); }, // private, overriddes parentOverrides : { // private // This method updates the information via the progress bar. updateInfo : function(){ if(this.displayItem){ var count = this.store.getCount(), pgData = this.getPageData(), pageNum = this.readPage(pgData), msg = count == 0 ? this.emptyMsg : String.format( this.displayMsg, this.cursor+1, this.cursor+count, this.store.getTotalCount() ); pageNum = pgData.activePage; ; var pct = pageNum / pgData.pages; this.displayItem.updateProgress(pct, msg, this.animate || this.defaultAnimConfig); } } } }); Ext.preg('progressbarpager', Ext.ux.ProgressBarPager); ================================================ FILE: client/src/ext/ux/Reorderer.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.Reorderer * @extends Object * Generic base class for handling reordering of items. This base class must be extended to provide the * actual reordering functionality - the base class just sets up events and abstract logic functions. * It will fire events and set defaults, deferring the actual reordering to a doReorder implementation. * See Ext.ux.TabReorderer for an example. */ Ext.ux.Reorderer = Ext.extend(Object, { /** * @property defaults * @type Object * Object containing default values for plugin configuration details. These can be overridden when * constructing the plugin */ defaults: { /** * @cfg animate * @type Boolean * If set to true, the rearranging of the toolbar items is animated */ animate: true, /** * @cfg animationDuration * @type Number * The duration of the animation used to move other toolbar items out of the way */ animationDuration: 0.2, /** * @cfg defaultReorderable * @type Boolean * True to make every toolbar draggable unless reorderable is specifically set to false. * This defaults to false */ defaultReorderable: false }, /** * Creates the plugin instance, applies defaults * @constructor * @param {Object} config Optional config object */ constructor: function(config) { Ext.apply(this, config || {}, this.defaults); }, /** * Initializes the plugin, stores a reference to the target * @param {Mixed} target The target component which contains the reorderable items */ init: function(target) { /** * @property target * @type Ext.Component * Reference to the target component which contains the reorderable items */ this.target = target; this.initEvents(); var items = this.getItems(), length = items.length, i; for (i = 0; i < length; i++) { this.createIfReorderable(items[i]); } }, /** * Reorders the items in the target component according to the given mapping object. Example: * this.reorder({ * 1: 5, * 3: 2 * }); * Would move the item at index 1 to index 5, and the item at index 3 to index 2 * @param {Object} mappings Object containing current item index as key and new index as property */ reorder: function(mappings) { var target = this.target; if (target.fireEvent('before-reorder', mappings, target, this) !== false) { this.doReorder(mappings); target.fireEvent('reorder', mappings, target, this); } }, /** * Abstract function to perform the actual reordering. This MUST be overridden in a subclass * @param {Object} mappings Mappings of the old item indexes to new item indexes */ doReorder: function(paramName) { throw new Error("doReorder must be implemented in the Ext.ux.Reorderer subclass"); }, /** * Should create and return an Ext.dd.DD for the given item. This MUST be overridden in a subclass * @param {Mixed} item The item to create a DD for. This could be a TabPanel tab, a Toolbar button, etc * @return {Ext.dd.DD} The DD for the given item */ createItemDD: function(item) { throw new Error("createItemDD must be implemented in the Ext.ux.Reorderer subclass"); }, /** * Sets up the given Toolbar item as a draggable * @param {Mixed} button The item to make draggable (usually an Ext.Button instance) */ createItemDD: function(button) { var el = button.getEl(), id = el.id, tbar = this.target, me = this; button.dd = new Ext.dd.DD(el, undefined, { isTarget: false }); button.dd.constrainTo(tbar.getEl()); button.dd.setYConstraint(0, 0, 0); Ext.apply(button.dd, { b4StartDrag: function() { this.startPosition = el.getXY(); //bump up the z index of the button being dragged but keep a reference to the original this.startZIndex = el.getStyle('zIndex'); el.setStyle('zIndex', 10000); button.suspendEvents(); }, onDrag: function(e) { //calculate the button's index within the toolbar and its current midpoint var buttonX = el.getXY()[0], deltaX = buttonX - this.startPosition[0], items = tbar.items.items, oldIndex = items.indexOf(button), newIndex; //find which item in the toolbar the midpoint is currently over for (var index = 0; index < items.length; index++) { var item = items[index]; if (item.reorderable && item.id != button.id) { //find the midpoint of the button var box = item.getEl().getBox(), midpoint = (me.buttonXCache[item.id] || box.x) + (box.width / 2), movedLeft = oldIndex > index && deltaX < 0 && buttonX < midpoint, movedRight = oldIndex < index && deltaX > 0 && (buttonX + el.getWidth()) > midpoint; if (movedLeft || movedRight) { me[movedLeft ? 'onMovedLeft' : 'onMovedRight'](button, index, oldIndex); break; } } } }, /** * After the drag has been completed, make sure the button being dragged makes it back to * the correct location and resets its z index */ endDrag: function() { //we need to update the cache here for cases where the button was dragged but its //position in the toolbar did not change me.updateButtonXCache(); el.moveTo(me.buttonXCache[button.id], undefined, { duration: me.animationDuration, scope : this, callback: function() { button.resumeEvents(); tbar.fireEvent('reordered', button, tbar); } }); el.setStyle('zIndex', this.startZIndex); } }); }, /** * @private * Creates a DD instance for a given item if it is reorderable * @param {Mixed} item The item */ createIfReorderable: function(item) { if (this.defaultReorderable && item.reorderable == undefined) { item.reorderable = true; } if (item.reorderable && !item.dd) { if (item.rendered) { this.createItemDD(item); } else { item.on('render', this.createItemDD.createDelegate(this, [item]), this, {single: true}); } } }, /** * Returns an array of items which will be made draggable. This defaults to the contents of this.target.items, * but can be overridden - e.g. for TabPanels * @return {Array} The array of items which will be made draggable */ getItems: function() { return this.target.items.items; }, /** * Adds before-reorder and reorder events to the target component */ initEvents: function() { this.target.addEvents( /** * @event before-reorder * Fires before a reorder occurs. Return false to cancel * @param {Object} mappings Mappings of the old item indexes to new item indexes * @param {Mixed} component The target component * @param {Ext.ux.TabReorderer} this The plugin instance */ 'before-reorder', /** * @event reorder * Fires after a reorder has occured. * @param {Object} mappings Mappings of the old item indexes to the new item indexes * @param {Mixed} component The target component * @param {Ext.ux.TabReorderer} this The plugin instance */ 'reorder' ); } }); /** * @class Ext.ux.HBoxReorderer * @extends Ext.ux.Reorderer * Description */ Ext.ux.HBoxReorderer = Ext.extend(Ext.ux.Reorderer, { /** * Initializes the plugin, decorates the container with additional functionality */ init: function(container) { /** * This is used to store the correct x value of each button in the array. We need to use this * instead of the button's reported x co-ordinate because the buttons are animated when they move - * if another onDrag is fired while the button is still moving, the comparison x value will be incorrect */ this.buttonXCache = {}; container.on({ scope: this, add : function(container, item) { this.createIfReorderable(item); } }); //super sets a reference to the toolbar in this.target Ext.ux.HBoxReorderer.superclass.init.apply(this, arguments); }, /** * Sets up the given Toolbar item as a draggable * @param {Mixed} button The item to make draggable (usually an Ext.Button instance) */ createItemDD: function(button) { if (button.dd != undefined) { return; } var el = button.getEl(), id = el.id, me = this, tbar = me.target; button.dd = new Ext.dd.DD(el, undefined, { isTarget: false }); el.applyStyles({ position: 'absolute' }); //if a button has a menu, it is disabled while dragging with this function var menuDisabler = function() { return false; }; Ext.apply(button.dd, { b4StartDrag: function() { this.startPosition = el.getXY(); //bump up the z index of the button being dragged but keep a reference to the original this.startZIndex = el.getStyle('zIndex'); el.setStyle('zIndex', 10000); button.suspendEvents(); if (button.menu) { button.menu.on('beforeshow', menuDisabler, me); } }, startDrag: function() { this.constrainTo(tbar.getEl()); this.setYConstraint(0, 0, 0); }, onDrag: function(e) { //calculate the button's index within the toolbar and its current midpoint var buttonX = el.getXY()[0], deltaX = buttonX - this.startPosition[0], items = tbar.items.items, length = items.length, oldIndex = items.indexOf(button), newIndex, index, item; //find which item in the toolbar the midpoint is currently over for (index = 0; index < length; index++) { item = items[index]; if (item.reorderable && item.id != button.id) { //find the midpoint of the button var box = item.getEl().getBox(), midpoint = (me.buttonXCache[item.id] || box.x) + (box.width / 2), movedLeft = oldIndex > index && deltaX < 0 && buttonX < midpoint, movedRight = oldIndex < index && deltaX > 0 && (buttonX + el.getWidth()) > midpoint; if (movedLeft || movedRight) { me[movedLeft ? 'onMovedLeft' : 'onMovedRight'](button, index, oldIndex); break; } } } }, /** * After the drag has been completed, make sure the button being dragged makes it back to * the correct location and resets its z index */ endDrag: function() { //we need to update the cache here for cases where the button was dragged but its //position in the toolbar did not change me.updateButtonXCache(); el.moveTo(me.buttonXCache[button.id], el.getY(), { duration: me.animationDuration, scope : this, callback: function() { button.resumeEvents(); if (button.menu) { button.menu.un('beforeshow', menuDisabler, me); } tbar.fireEvent('reordered', button, tbar); } }); el.setStyle('zIndex', this.startZIndex); } }); }, onMovedLeft: function(item, newIndex, oldIndex) { var tbar = this.target, items = tbar.items.items, length = items.length, index; if (newIndex != undefined && newIndex != oldIndex) { //move the button currently under drag to its new location tbar.remove(item, false); tbar.insert(newIndex, item); //set the correct x location of each item in the toolbar this.updateButtonXCache(); for (index = 0; index < length; index++) { var obj = items[index], newX = this.buttonXCache[obj.id]; if (item == obj) { item.dd.startPosition[0] = newX; } else { var el = obj.getEl(); el.moveTo(newX, el.getY(), { duration: this.animationDuration }); } } } }, onMovedRight: function(item, newIndex, oldIndex) { this.onMovedLeft.apply(this, arguments); }, /** * @private * Updates the internal cache of button X locations. */ updateButtonXCache: function() { var tbar = this.target, items = tbar.items, totalX = tbar.getEl().getBox(true).x; items.each(function(item) { this.buttonXCache[item.id] = totalX; totalX += item.getEl().getWidth(); }, this); } }); ================================================ FILE: client/src/ext/ux/RowEditor.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.RowEditor * @extends Ext.Panel * Plugin (ptype = 'roweditor') that adds the ability to rapidly edit full rows in a grid. * A validation mode may be enabled which uses AnchorTips to notify the user of all * validation errors at once. * * @ptype roweditor */ Ext.ux.grid.RowEditor = Ext.extend(Ext.Panel, { floating: true, shadow: false, layout: 'hbox', cls: 'x-small-editor', buttonAlign: 'center', baseCls: 'x-row-editor', elements: 'header,footer,body', frameWidth: 5, buttonPad: 3, clicksToEdit: 'auto', monitorValid: true, focusDelay: 250, errorSummary: true, saveText: 'Save', cancelText: 'Cancel', commitChangesText: 'You need to commit or cancel your changes', errorText: 'Errors', defaults: { normalWidth: true }, initComponent: function(){ Ext.ux.grid.RowEditor.superclass.initComponent.call(this); this.addEvents( /** * @event beforeedit * Fired before the row editor is activated. * If the listener returns false the editor will not be activated. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Number} rowIndex The rowIndex of the row just edited */ 'beforeedit', /** * @event canceledit * Fired when the editor is cancelled. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Boolean} forced True if the cancel button is pressed, false is the editor was invalid. */ 'canceledit', /** * @event validateedit * Fired after a row is edited and passes validation. * If the listener returns false changes to the record will not be set. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Object} changes Object with changes made to the record. * @param {Ext.data.Record} r The Record that was edited. * @param {Number} rowIndex The rowIndex of the row just edited */ 'validateedit', /** * @event afteredit * Fired after a row is edited and passes validation. This event is fired * after the store's update event is fired with this edit. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Object} changes Object with changes made to the record. * @param {Ext.data.Record} r The Record that was edited. * @param {Number} rowIndex The rowIndex of the row just edited */ 'afteredit' ); }, init: function(grid){ this.grid = grid; this.ownerCt = grid; if(this.clicksToEdit === 2){ grid.on('rowdblclick', this.onRowDblClick, this); }else{ grid.on('rowclick', this.onRowClick, this); if(Ext.isIE){ grid.on('rowdblclick', this.onRowDblClick, this); } } // stopEditing without saving when a record is removed from Store. grid.getStore().on('remove', function() { this.stopEditing(false); },this); grid.on({ scope: this, keydown: this.onGridKey, columnresize: this.verifyLayout, columnmove: this.refreshFields, reconfigure: this.refreshFields, beforedestroy : this.beforedestroy, destroy : this.destroy, bodyscroll: { buffer: 250, fn: this.positionButtons } }); grid.getColumnModel().on('hiddenchange', this.verifyLayout, this, {delay:1}); grid.getView().on('refresh', this.stopEditing.createDelegate(this, [])); }, beforedestroy: function() { this.stopMonitoring(); this.grid.getStore().un('remove', this.onStoreRemove, this); this.stopEditing(false); Ext.destroy(this.btns, this.tooltip); }, refreshFields: function(){ this.initFields(); this.verifyLayout(); }, isDirty: function(){ var dirty; this.items.each(function(f){ if(String(this.values[f.id]) !== String(f.getValue())){ dirty = true; return false; } }, this); return dirty; }, startEditing: function(rowIndex, doFocus){ if(this.editing && this.isDirty()){ this.showTooltip(this.commitChangesText); return; } if(Ext.isObject(rowIndex)){ rowIndex = this.grid.getStore().indexOf(rowIndex); } if(this.fireEvent('beforeedit', this, rowIndex) !== false){ this.editing = true; var g = this.grid, view = g.getView(), row = view.getRow(rowIndex), record = g.store.getAt(rowIndex); this.record = record; this.rowIndex = rowIndex; this.values = {}; if(!this.rendered){ this.render(view.getEditorParent()); } var w = Ext.fly(row).getWidth(); this.setSize(w); if(!this.initialized){ this.initFields(); } var cm = g.getColumnModel(), fields = this.items.items, f, val; for(var i = 0, len = cm.getColumnCount(); i < len; i++){ val = this.preEditValue(record, cm.getDataIndex(i)); f = fields[i]; f.setValue(val); this.values[f.id] = Ext.isEmpty(val) ? '' : val; } this.verifyLayout(true); if(!this.isVisible()){ this.setPagePosition(Ext.fly(row).getXY()); } else{ this.el.setXY(Ext.fly(row).getXY(), {duration:0.15}); } if(!this.isVisible()){ this.show().doLayout(); } if(doFocus !== false){ this.doFocus.defer(this.focusDelay, this); } } }, stopEditing : function(saveChanges){ this.editing = false; if(!this.isVisible()){ return; } if(saveChanges === false || !this.isValid()){ this.hide(); this.fireEvent('canceledit', this, saveChanges === false); return; } var changes = {}, r = this.record, hasChange = false, cm = this.grid.colModel, fields = this.items.items; for(var i = 0, len = cm.getColumnCount(); i < len; i++){ if(!cm.isHidden(i)){ var dindex = cm.getDataIndex(i); if(!Ext.isEmpty(dindex)){ var oldValue = r.data[dindex], value = this.postEditValue(fields[i].getValue(), oldValue, r, dindex); if(String(oldValue) !== String(value)){ changes[dindex] = value; hasChange = true; } } } } if(hasChange && this.fireEvent('validateedit', this, changes, r, this.rowIndex) !== false){ r.beginEdit(); Ext.iterate(changes, function(name, value){ r.set(name, value); }); r.endEdit(); this.fireEvent('afteredit', this, changes, r, this.rowIndex); } else { this.fireEvent('canceledit', this, false); } this.hide(); }, verifyLayout: function(force){ if(this.el && (this.isVisible() || force === true)){ var row = this.grid.getView().getRow(this.rowIndex); this.setSize(Ext.fly(row).getWidth(), Ext.isIE ? Ext.fly(row).getHeight() + 9 : undefined); var cm = this.grid.colModel, fields = this.items.items; for(var i = 0, len = cm.getColumnCount(); i < len; i++){ if(!cm.isHidden(i)){ var adjust = 0; if(i === (len - 1)){ adjust += 3; // outer padding } else{ adjust += 1; } fields[i].show(); fields[i].setWidth(cm.getColumnWidth(i) - adjust); } else{ fields[i].hide(); } } this.doLayout(); this.positionButtons(); } }, slideHide : function(){ this.hide(); }, initFields: function(){ var cm = this.grid.getColumnModel(), pm = Ext.layout.ContainerLayout.prototype.parseMargins; this.removeAll(false); for(var i = 0, len = cm.getColumnCount(); i < len; i++){ var c = cm.getColumnAt(i), ed = c.getEditor(); if(!ed){ ed = c.displayEditor || new Ext.form.DisplayField(); } if(i == 0){ ed.margins = pm('0 1 2 1'); } else if(i == len - 1){ ed.margins = pm('0 0 2 1'); } else{ if (Ext.isIE) { ed.margins = pm('0 0 2 0'); } else { ed.margins = pm('0 1 2 0'); } } ed.setWidth(cm.getColumnWidth(i)); ed.column = c; if(ed.ownerCt !== this){ ed.on('focus', this.ensureVisible, this); ed.on('specialkey', this.onKey, this); } this.insert(i, ed); } this.initialized = true; }, onKey: function(f, e){ if(e.getKey() === e.ENTER){ this.stopEditing(true); e.stopPropagation(); } }, onGridKey: function(e){ if(e.getKey() === e.ENTER && !this.isVisible()){ var r = this.grid.getSelectionModel().getSelected(); if(r){ var index = this.grid.store.indexOf(r); this.startEditing(index); e.stopPropagation(); } } }, ensureVisible: function(editor){ if(this.isVisible()){ this.grid.getView().ensureVisible(this.rowIndex, this.grid.colModel.getIndexById(editor.column.id), true); } }, onRowClick: function(g, rowIndex, e){ if(this.clicksToEdit == 'auto'){ var li = this.lastClickIndex; this.lastClickIndex = rowIndex; if(li != rowIndex && !this.isVisible()){ return; } } this.startEditing(rowIndex, false); this.doFocus.defer(this.focusDelay, this, [e.getPoint()]); }, onRowDblClick: function(g, rowIndex, e){ this.startEditing(rowIndex, false); this.doFocus.defer(this.focusDelay, this, [e.getPoint()]); }, onRender: function(){ Ext.ux.grid.RowEditor.superclass.onRender.apply(this, arguments); this.el.swallowEvent(['keydown', 'keyup', 'keypress']); this.btns = new Ext.Panel({ baseCls: 'x-plain', cls: 'x-btns', elements:'body', layout: 'table', width: (this.minButtonWidth * 2) + (this.frameWidth * 2) + (this.buttonPad * 4), // width must be specified for IE items: [{ ref: 'saveBtn', itemId: 'saveBtn', xtype: 'button', text: this.saveText, width: this.minButtonWidth, handler: this.stopEditing.createDelegate(this, [true]) }, { xtype: 'button', text: this.cancelText, width: this.minButtonWidth, handler: this.stopEditing.createDelegate(this, [false]) }] }); this.btns.render(this.bwrap); }, afterRender: function(){ Ext.ux.grid.RowEditor.superclass.afterRender.apply(this, arguments); this.positionButtons(); if(this.monitorValid){ this.startMonitoring(); } }, onShow: function(){ if(this.monitorValid){ this.startMonitoring(); } Ext.ux.grid.RowEditor.superclass.onShow.apply(this, arguments); }, onHide: function(){ Ext.ux.grid.RowEditor.superclass.onHide.apply(this, arguments); this.stopMonitoring(); this.grid.getView().focusRow(this.rowIndex); }, positionButtons: function(){ if(this.btns){ var g = this.grid, h = this.el.dom.clientHeight, view = g.getView(), scroll = view.scroller.dom.scrollLeft, bw = this.btns.getWidth(), width = Math.min(g.getWidth(), g.getColumnModel().getTotalWidth()); this.btns.el.shift({left: (width/2)-(bw/2)+scroll, top: h - 2, stopFx: true, duration:0.2}); } }, // private preEditValue : function(r, field){ var value = r.data[field]; return this.autoEncode && typeof value === 'string' ? Ext.util.Format.htmlDecode(value) : value; }, // private postEditValue : function(value, originalValue, r, field){ return this.autoEncode && typeof value == 'string' ? Ext.util.Format.htmlEncode(value) : value; }, doFocus: function(pt){ if(this.isVisible()){ var index = 0, cm = this.grid.getColumnModel(), c; if(pt){ index = this.getTargetColumnIndex(pt); } for(var i = index||0, len = cm.getColumnCount(); i < len; i++){ c = cm.getColumnAt(i); if(!c.hidden && c.getEditor()){ c.getEditor().focus(); break; } } } }, getTargetColumnIndex: function(pt){ var grid = this.grid, v = grid.view, x = pt.left, cms = grid.colModel.config, i = 0, match = false; for(var len = cms.length, c; c = cms[i]; i++){ if(!c.hidden){ if(Ext.fly(v.getHeaderCell(i)).getRegion().right >= x){ match = i; break; } } } return match; }, startMonitoring : function(){ if(!this.bound && this.monitorValid){ this.bound = true; Ext.TaskMgr.start({ run : this.bindHandler, interval : this.monitorPoll || 200, scope: this }); } }, stopMonitoring : function(){ this.bound = false; if(this.tooltip){ this.tooltip.hide(); } }, isValid: function(){ var valid = true; this.items.each(function(f){ if(!f.isValid(true)){ valid = false; return false; } }); return valid; }, // private bindHandler : function(){ if(!this.bound){ return false; // stops binding } var valid = this.isValid(); if(!valid && this.errorSummary){ this.showTooltip(this.getErrorText().join('')); } this.btns.saveBtn.setDisabled(!valid); this.fireEvent('validation', this, valid); }, lastVisibleColumn : function() { var i = this.items.getCount() - 1, c; for(; i >= 0; i--) { c = this.items.items[i]; if (!c.hidden) { return c; } } }, showTooltip: function(msg){ var t = this.tooltip; if(!t){ t = this.tooltip = new Ext.ToolTip({ maxWidth: 600, cls: 'errorTip', width: 300, title: this.errorText, autoHide: false, anchor: 'left', anchorToTarget: true, mouseOffset: [40,0] }); } var v = this.grid.getView(), top = parseInt(this.el.dom.style.top, 10), scroll = v.scroller.dom.scrollTop, h = this.el.getHeight(); if(top + h >= scroll){ t.initTarget(this.lastVisibleColumn().getEl()); if(!t.rendered){ t.show(); t.hide(); } t.body.update(msg); t.doAutoWidth(20); t.show(); }else if(t.rendered){ t.hide(); } }, getErrorText: function(){ var data = ['
      ']; this.items.each(function(f){ if(!f.isValid(true)){ data.push('
    • ', f.getActiveError(), '
      • '); } }); data.push('
    '); return data; } }); Ext.preg('roweditor', Ext.ux.grid.RowEditor); ================================================ FILE: client/src/ext/ux/RowExpander.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.RowExpander * @extends Ext.util.Observable * Plugin (ptype = 'rowexpander') that adds the ability to have a Column in a grid which enables * a second row body which expands/contracts. The expand/contract behavior is configurable to react * on clicking of the column, double click of the row, and/or hitting enter while a row is selected. * * @ptype rowexpander */ Ext.ux.grid.RowExpander = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} expandOnEnter * true to toggle selected row(s) between expanded/collapsed when the enter * key is pressed (defaults to true). */ expandOnEnter : true, /** * @cfg {Boolean} expandOnDblClick * true to toggle a row between expanded/collapsed when double clicked * (defaults to true). */ expandOnDblClick : true, header : '', width : 20, sortable : false, fixed : true, hideable: false, menuDisabled : true, dataIndex : '', id : 'expander', lazyRender : true, enableCaching : true, constructor: function(config){ Ext.apply(this, config); this.addEvents({ /** * @event beforeexpand * Fires before the row expands. Have the listener return false to prevent the row from expanding. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ beforeexpand: true, /** * @event expand * Fires after the row expands. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ expand: true, /** * @event beforecollapse * Fires before the row collapses. Have the listener return false to prevent the row from collapsing. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ beforecollapse: true, /** * @event collapse * Fires after the row collapses. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ collapse: true }); Ext.ux.grid.RowExpander.superclass.constructor.call(this); if(this.tpl){ if(typeof this.tpl == 'string'){ this.tpl = new Ext.Template(this.tpl); } this.tpl.compile(); } this.state = {}; this.bodyContent = {}; }, getRowClass : function(record, rowIndex, p, ds){ p.cols = p.cols-1; var content = this.bodyContent[record.id]; if(!content && !this.lazyRender){ content = this.getBodyContent(record, rowIndex); } if(content){ p.body = content; } return this.state[record.id] ? 'x-grid3-row-expanded' : 'x-grid3-row-collapsed'; }, init : function(grid){ this.grid = grid; var view = grid.getView(); view.getRowClass = this.getRowClass.createDelegate(this); view.enableRowBody = true; grid.on('render', this.onRender, this); grid.on('destroy', this.onDestroy, this); }, // @private onRender: function() { var grid = this.grid; var mainBody = grid.getView().mainBody; mainBody.on('mousedown', this.onMouseDown, this, {delegate: '.x-grid3-row-expander'}); if (this.expandOnEnter) { this.keyNav = new Ext.KeyNav(this.grid.getGridEl(), { 'enter' : this.onEnter, scope: this }); } if (this.expandOnDblClick) { grid.on('rowdblclick', this.onRowDblClick, this); } }, // @private onDestroy: function() { if(this.keyNav){ this.keyNav.disable(); delete this.keyNav; } /* * A majority of the time, the plugin will be destroyed along with the grid, * which means the mainBody won't be available. On the off chance that the plugin * isn't destroyed with the grid, take care of removing the listener. */ var mainBody = this.grid.getView().mainBody; if(mainBody){ mainBody.un('mousedown', this.onMouseDown, this); } }, // @private onRowDblClick: function(grid, rowIdx, e) { this.toggleRow(rowIdx); }, onEnter: function(e) { var g = this.grid; var sm = g.getSelectionModel(); var sels = sm.getSelections(); for (var i = 0, len = sels.length; i < len; i++) { var rowIdx = g.getStore().indexOf(sels[i]); this.toggleRow(rowIdx); } }, getBodyContent : function(record, index){ if(!this.enableCaching){ return this.tpl.apply(record.data); } var content = this.bodyContent[record.id]; if(!content){ content = this.tpl.apply(record.data); this.bodyContent[record.id] = content; } return content; }, onMouseDown : function(e, t){ e.stopEvent(); var row = e.getTarget('.x-grid3-row'); this.toggleRow(row); }, renderer : function(v, p, record){ p.cellAttr = 'rowspan="2"'; return '
     
    '; }, beforeExpand : function(record, body, rowIndex){ if(this.fireEvent('beforeexpand', this, record, body, rowIndex) !== false){ if(this.tpl && this.lazyRender){ body.innerHTML = this.getBodyContent(record, rowIndex); } return true; }else{ return false; } }, toggleRow : function(row){ if(typeof row == 'number'){ row = this.grid.view.getRow(row); } this[Ext.fly(row).hasClass('x-grid3-row-collapsed') ? 'expandRow' : 'collapseRow'](row); }, expandRow : function(row){ if(typeof row == 'number'){ row = this.grid.view.getRow(row); } var record = this.grid.store.getAt(row.rowIndex); var body = Ext.DomQuery.selectNode('tr:nth(2) div.x-grid3-row-body', row); if(this.beforeExpand(record, body, row.rowIndex)){ this.state[record.id] = true; Ext.fly(row).replaceClass('x-grid3-row-collapsed', 'x-grid3-row-expanded'); this.fireEvent('expand', this, record, body, row.rowIndex); } }, collapseRow : function(row){ if(typeof row == 'number'){ row = this.grid.view.getRow(row); } var record = this.grid.store.getAt(row.rowIndex); var body = Ext.fly(row).child('tr:nth(1) div.x-grid3-row-body', true); if(this.fireEvent('beforecollapse', this, record, body, row.rowIndex) !== false){ this.state[record.id] = false; Ext.fly(row).replaceClass('x-grid3-row-expanded', 'x-grid3-row-collapsed'); this.fireEvent('collapse', this, record, body, row.rowIndex); } } }); Ext.preg('rowexpander', Ext.ux.grid.RowExpander); //backwards compat Ext.grid.RowExpander = Ext.ux.grid.RowExpander; ================================================ FILE: client/src/ext/ux/RowLayout.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ // We are adding these custom layouts to a namespace that does not // exist by default in Ext, so we have to add the namespace first: Ext.ns('Ext.ux.layout'); /** * @class Ext.ux.layout.RowLayout * @extends Ext.layout.ContainerLayout *

    This is the layout style of choice for creating structural layouts in a multi-row format where the height of * each row can be specified as a percentage or fixed height. Row widths can also be fixed, percentage or auto. * This class is intended to be extended or created via the layout:'ux.row' {@link Ext.Container#layout} config, * and should generally not need to be created directly via the new keyword.

    *

    RowLayout does not have any direct config options (other than inherited ones), but it does support a * specific config property of rowHeight that can be included in the config of any panel added to it. The * layout will use the rowHeight (if present) or height of each panel during layout to determine how to size each panel. * If height or rowHeight is not specified for a given panel, its height will default to the panel's height (or auto).

    *

    The height property is always evaluated as pixels, and must be a number greater than or equal to 1. * The rowHeight property is always evaluated as a percentage, and must be a decimal value greater than 0 and * less than 1 (e.g., .25).

    *

    The basic rules for specifying row heights are pretty simple. The logic makes two passes through the * set of contained panels. During the first layout pass, all panels that either have a fixed height or none * specified (auto) are skipped, but their heights are subtracted from the overall container height. During the second * pass, all panels with rowHeights are assigned pixel heights in proportion to their percentages based on * the total remaining container height. In other words, percentage height panels are designed to fill the space * left over by all the fixed-height and/or auto-height panels. Because of this, while you can specify any number of rows * with different percentages, the rowHeights must always add up to 1 (or 100%) when added together, otherwise your * layout may not render as expected. Example usage:

    * 
    
// All rows are percentages -- they must add up to 1
var p = new Ext.Panel({
    title: 'Row Layout - Percentage Only',
    layout:'ux.row',
    items: [{
        title: 'Row 1',
        rowHeight: .25
    },{
        title: 'Row 2',
        rowHeight: .6
    },{
        title: 'Row 3',
        rowHeight: .15
    }]
});

// Mix of height and rowHeight -- all rowHeight values must add
// up to 1. The first row will take up exactly 120px, and the last two
// rows will fill the remaining container height.
var p = new Ext.Panel({
    title: 'Row Layout - Mixed',
    layout:'ux.row',
    items: [{
        title: 'Row 1',
        height: 120,
        // standard panel widths are still supported too:
        width: '50%' // or 200
    },{
        title: 'Row 2',
        rowHeight: .8,
        width: 300
    },{
        title: 'Row 3',
        rowHeight: .2
    }]
});
    */ Ext.ux.layout.RowLayout = Ext.extend(Ext.layout.ContainerLayout, { // private monitorResize:true, type: 'row', // private allowContainerRemove: false, // private isValidParent : function(c, target){ return this.innerCt && c.getPositionEl().dom.parentNode == this.innerCt.dom; }, getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(), ret; if (target) { ret = target.getViewSize(); // IE in strict mode will return a height of 0 on the 1st pass of getViewSize. // Use getStyleSize to verify the 0 height, the adjustment pass will then work properly // with getViewSize if (Ext.isIE && Ext.isStrict && ret.height == 0){ ret = target.getStyleSize(); } ret.width -= target.getPadding('lr'); ret.height -= target.getPadding('tb'); } return ret; }, renderAll : function(ct, target) { if(!this.innerCt){ // the innerCt prevents wrapping and shuffling while // the container is resizing this.innerCt = target.createChild({cls:'x-column-inner'}); this.innerCt.createChild({cls:'x-clear'}); } Ext.layout.ColumnLayout.superclass.renderAll.call(this, ct, this.innerCt); }, // private onLayout : function(ct, target){ var rs = ct.items.items, len = rs.length, r, m, i, margins = []; this.renderAll(ct, target); var size = this.getLayoutTargetSize(); if(size.width < 1 && size.height < 1){ // display none? return; } var h = size.height, ph = h; this.innerCt.setSize({height:h}); // some rows can be percentages while others are fixed // so we need to make 2 passes for(i = 0; i < len; i++){ r = rs[i]; m = r.getPositionEl().getMargins('tb'); margins[i] = m; if(!r.rowHeight){ ph -= (r.getHeight() + m); } } ph = ph < 0 ? 0 : ph; for(i = 0; i < len; i++){ r = rs[i]; m = margins[i]; if(r.rowHeight){ r.setSize({height: Math.floor(r.rowHeight*ph) - m}); } } // Browsers differ as to when they account for scrollbars. We need to re-measure to see if the scrollbar // spaces were accounted for properly. If not, re-layout. if (Ext.isIE) { if (i = target.getStyle('overflow') && i != 'hidden' && !this.adjustmentPass) { var ts = this.getLayoutTargetSize(); if (ts.width != size.width){ this.adjustmentPass = true; this.onLayout(ct, target); } } } delete this.adjustmentPass; } /** * @property activeItem * @hide */ }); Ext.Container.LAYOUTS['ux.row'] = Ext.ux.layout.RowLayout; ================================================ FILE: client/src/ext/ux/SearchField.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.form'); Ext.ux.form.SearchField = Ext.extend(Ext.form.TwinTriggerField, { initComponent : function(){ Ext.ux.form.SearchField.superclass.initComponent.call(this); this.on('specialkey', function(f, e){ if(e.getKey() == e.ENTER){ this.onTrigger2Click(); } }, this); }, validationEvent:false, validateOnBlur:false, trigger1Class:'x-form-clear-trigger', trigger2Class:'x-form-search-trigger', hideTrigger1:true, width:180, hasSearch : false, paramName : 'query', onTrigger1Click : function(){ if(this.hasSearch){ this.el.dom.value = ''; var o = {start: 0}; this.store.baseParams = this.store.baseParams || {}; this.store.baseParams[this.paramName] = ''; this.store.reload({params:o}); this.triggers[0].hide(); this.hasSearch = false; } }, onTrigger2Click : function(){ var v = this.getRawValue(); if(v.length < 1){ this.onTrigger1Click(); return; } var o = {start: 0}; this.store.baseParams = this.store.baseParams || {}; this.store.baseParams[this.paramName] = v; this.store.reload({params:o}); this.hasSearch = true; this.triggers[0].show(); } }); ================================================ FILE: client/src/ext/ux/SelectBox.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.SelectBox * @extends Ext.form.ComboBox *

    Makes a ComboBox more closely mimic an HTML SELECT. Supports clicking and dragging * through the list, with item selection occurring when the mouse button is released. * When used will automatically set {@link #editable} to false and call {@link Ext.Element#unselectable} * on inner elements. Re-enabling editable after calling this will NOT work.

    * @author Corey Gilmore http://extjs.com/forum/showthread.php?t=6392 * @history 2007-07-08 jvs * Slight mods for Ext 2.0 * @xtype selectbox */ Ext.ux.form.SelectBox = Ext.extend(Ext.form.ComboBox, { constructor: function(config){ this.searchResetDelay = 1000; config = config || {}; config = Ext.apply(config || {}, { editable: false, forceSelection: true, rowHeight: false, lastSearchTerm: false, triggerAction: 'all', mode: 'local' }); Ext.ux.form.SelectBox.superclass.constructor.apply(this, arguments); this.lastSelectedIndex = this.selectedIndex || 0; }, initEvents : function(){ Ext.ux.form.SelectBox.superclass.initEvents.apply(this, arguments); // you need to use keypress to capture upper/lower case and shift+key, but it doesn't work in IE this.el.on('keydown', this.keySearch, this, true); this.cshTask = new Ext.util.DelayedTask(this.clearSearchHistory, this); }, keySearch : function(e, target, options) { var raw = e.getKey(); var key = String.fromCharCode(raw); var startIndex = 0; if( !this.store.getCount() ) { return; } switch(raw) { case Ext.EventObject.HOME: e.stopEvent(); this.selectFirst(); return; case Ext.EventObject.END: e.stopEvent(); this.selectLast(); return; case Ext.EventObject.PAGEDOWN: this.selectNextPage(); e.stopEvent(); return; case Ext.EventObject.PAGEUP: this.selectPrevPage(); e.stopEvent(); return; } // skip special keys other than the shift key if( (e.hasModifier() && !e.shiftKey) || e.isNavKeyPress() || e.isSpecialKey() ) { return; } if( this.lastSearchTerm == key ) { startIndex = this.lastSelectedIndex; } this.search(this.displayField, key, startIndex); this.cshTask.delay(this.searchResetDelay); }, onRender : function(ct, position) { this.store.on('load', this.calcRowsPerPage, this); Ext.ux.form.SelectBox.superclass.onRender.apply(this, arguments); if( this.mode == 'local' ) { this.initList(); this.calcRowsPerPage(); } }, onSelect : function(record, index, skipCollapse){ if(this.fireEvent('beforeselect', this, record, index) !== false){ this.setValue(record.data[this.valueField || this.displayField]); if( !skipCollapse ) { this.collapse(); } this.lastSelectedIndex = index + 1; this.fireEvent('select', this, record, index); } }, afterRender : function() { Ext.ux.form.SelectBox.superclass.afterRender.apply(this, arguments); if(Ext.isWebKit) { this.el.swallowEvent('mousedown', true); } this.el.unselectable(); this.innerList.unselectable(); this.trigger.unselectable(); this.innerList.on('mouseup', function(e, target, options) { if( target.id && target.id == this.innerList.id ) { return; } this.onViewClick(); }, this); this.mun(this.view, 'containerclick', this.onViewClick, this); this.mun(this.view, 'click', this.onViewClick, this); this.innerList.on('mouseover', function(e, target, options) { if( target.id && target.id == this.innerList.id ) { return; } this.lastSelectedIndex = this.view.getSelectedIndexes()[0] + 1; this.cshTask.delay(this.searchResetDelay); }, this); this.trigger.un('click', this.onTriggerClick, this); this.trigger.on('mousedown', function(e, target, options) { e.preventDefault(); this.onTriggerClick(); }, this); this.on('collapse', function(e, target, options) { Ext.getDoc().un('mouseup', this.collapseIf, this); }, this, true); this.on('expand', function(e, target, options) { Ext.getDoc().on('mouseup', this.collapseIf, this); }, this, true); }, clearSearchHistory : function() { this.lastSelectedIndex = 0; this.lastSearchTerm = false; }, selectFirst : function() { this.focusAndSelect(this.store.data.first()); }, selectLast : function() { this.focusAndSelect(this.store.data.last()); }, selectPrevPage : function() { if( !this.rowHeight ) { return; } var index = Math.max(this.selectedIndex-this.rowsPerPage, 0); this.focusAndSelect(this.store.getAt(index)); }, selectNextPage : function() { if( !this.rowHeight ) { return; } var index = Math.min(this.selectedIndex+this.rowsPerPage, this.store.getCount() - 1); this.focusAndSelect(this.store.getAt(index)); }, search : function(field, value, startIndex) { field = field || this.displayField; this.lastSearchTerm = value; var index = this.store.find.apply(this.store, arguments); if( index !== -1 ) { this.focusAndSelect(index); } }, focusAndSelect : function(record) { var index = Ext.isNumber(record) ? record : this.store.indexOf(record); this.select(index, this.isExpanded()); this.onSelect(this.store.getAt(index), index, this.isExpanded()); }, calcRowsPerPage : function() { if( this.store.getCount() ) { this.rowHeight = Ext.fly(this.view.getNode(0)).getHeight(); this.rowsPerPage = this.maxHeight / this.rowHeight; } else { this.rowHeight = false; } } }); Ext.reg('selectbox', Ext.ux.form.SelectBox); //backwards compat Ext.ux.SelectBox = Ext.ux.form.SelectBox; ================================================ FILE: client/src/ext/ux/SlidingPager.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * Plugin for PagingToolbar which replaces the textfield input with a slider */ Ext.ux.SlidingPager = Ext.extend(Object, { init : function(pbar){ var idx = pbar.items.indexOf(pbar.inputItem); Ext.each(pbar.items.getRange(idx - 2, idx + 2), function(c){ c.hide(); }); var slider = new Ext.Slider({ width: 114, minValue: 1, maxValue: 1, plugins: new Ext.slider.Tip({ getText : function(thumb) { return String.format('Page {0} of {1}', thumb.value, thumb.slider.maxValue); } }), listeners: { changecomplete: function(s, v){ pbar.changePage(v); } } }); pbar.insert(idx + 1, slider); pbar.on({ change: function(pb, data){ slider.setMaxValue(data.pages); slider.setValue(data.activePage); } }); } }); ================================================ FILE: client/src/ext/ux/Spinner.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.Spinner * @extends Ext.util.Observable * Creates a Spinner control utilized by Ext.ux.form.SpinnerField */ Ext.ux.Spinner = Ext.extend(Ext.util.Observable, { incrementValue: 1, alternateIncrementValue: 5, triggerClass: 'x-form-spinner-trigger', splitterClass: 'x-form-spinner-splitter', alternateKey: Ext.EventObject.shiftKey, defaultValue: 0, accelerate: false, constructor: function(config){ Ext.ux.Spinner.superclass.constructor.call(this, config); Ext.apply(this, config); this.mimicing = false; }, init: function(field){ this.field = field; field.afterMethod('onRender', this.doRender, this); field.afterMethod('onEnable', this.doEnable, this); field.afterMethod('onDisable', this.doDisable, this); field.afterMethod('afterRender', this.doAfterRender, this); field.afterMethod('onResize', this.doResize, this); field.afterMethod('onFocus', this.doFocus, this); field.beforeMethod('onDestroy', this.doDestroy, this); }, doRender: function(ct, position){ var el = this.el = this.field.getEl(); var f = this.field; if (!f.wrap) { f.wrap = this.wrap = el.wrap({ cls: "x-form-field-wrap" }); } else { this.wrap = f.wrap.addClass('x-form-field-wrap'); } this.trigger = this.wrap.createChild({ tag: "img", src: Ext.BLANK_IMAGE_URL, cls: "x-form-trigger " + this.triggerClass }); if (!f.width) { this.wrap.setWidth(el.getWidth() + this.trigger.getWidth()); } this.splitter = this.wrap.createChild({ tag: 'div', cls: this.splitterClass, style: 'width:13px; height:2px;' }); this.splitter.setRight((Ext.isIE) ? 1 : 2).setTop(10).show(); this.proxy = this.trigger.createProxy('', this.splitter, true); this.proxy.addClass("x-form-spinner-proxy"); this.proxy.setStyle('left', '0px'); this.proxy.setSize(14, 1); this.proxy.hide(); this.dd = new Ext.dd.DDProxy(this.splitter.dom.id, "SpinnerDrag", { dragElId: this.proxy.id }); this.initTrigger(); this.initSpinner(); }, doAfterRender: function(){ var y; if (Ext.isIE && this.el.getY() != (y = this.trigger.getY())) { this.el.position(); this.el.setY(y); } }, doEnable: function(){ if (this.wrap) { this.disabled = false; this.wrap.removeClass(this.field.disabledClass); } }, doDisable: function(){ if (this.wrap) { this.disabled = true; this.wrap.addClass(this.field.disabledClass); this.el.removeClass(this.field.disabledClass); } }, doResize: function(w, h){ if (typeof w == 'number') { this.el.setWidth(w - this.trigger.getWidth()); } this.wrap.setWidth(this.el.getWidth() + this.trigger.getWidth()); }, doFocus: function(){ if (!this.mimicing) { this.wrap.addClass('x-trigger-wrap-focus'); this.mimicing = true; Ext.get(Ext.isIE ? document.body : document).on("mousedown", this.mimicBlur, this, { delay: 10 }); this.el.on('keydown', this.checkTab, this); } }, // private checkTab: function(e){ if (e.getKey() == e.TAB) { this.triggerBlur(); } }, // private mimicBlur: function(e){ if (!this.wrap.contains(e.target) && this.field.validateBlur(e)) { this.triggerBlur(); } }, // private triggerBlur: function(){ this.mimicing = false; Ext.get(Ext.isIE ? document.body : document).un("mousedown", this.mimicBlur, this); this.el.un("keydown", this.checkTab, this); this.field.beforeBlur(); this.wrap.removeClass('x-trigger-wrap-focus'); this.field.onBlur.call(this.field); }, initTrigger: function(){ this.trigger.addClassOnOver('x-form-trigger-over'); this.trigger.addClassOnClick('x-form-trigger-click'); }, initSpinner: function(){ this.field.addEvents({ 'spin': true, 'spinup': true, 'spindown': true }); this.keyNav = new Ext.KeyNav(this.el, { "up": function(e){ e.preventDefault(); this.onSpinUp(); }, "down": function(e){ e.preventDefault(); this.onSpinDown(); }, "pageUp": function(e){ e.preventDefault(); this.onSpinUpAlternate(); }, "pageDown": function(e){ e.preventDefault(); this.onSpinDownAlternate(); }, scope: this }); this.repeater = new Ext.util.ClickRepeater(this.trigger, { accelerate: this.accelerate }); this.field.mon(this.repeater, "click", this.onTriggerClick, this, { preventDefault: true }); this.field.mon(this.trigger, { mouseover: this.onMouseOver, mouseout: this.onMouseOut, mousemove: this.onMouseMove, mousedown: this.onMouseDown, mouseup: this.onMouseUp, scope: this, preventDefault: true }); this.field.mon(this.wrap, "mousewheel", this.handleMouseWheel, this); this.dd.setXConstraint(0, 0, 10) this.dd.setYConstraint(1500, 1500, 10); this.dd.endDrag = this.endDrag.createDelegate(this); this.dd.startDrag = this.startDrag.createDelegate(this); this.dd.onDrag = this.onDrag.createDelegate(this); }, onMouseOver: function(){ if (this.disabled) { return; } var middle = this.getMiddle(); this.tmpHoverClass = (Ext.EventObject.getPageY() < middle) ? 'x-form-spinner-overup' : 'x-form-spinner-overdown'; this.trigger.addClass(this.tmpHoverClass); }, //private onMouseOut: function(){ this.trigger.removeClass(this.tmpHoverClass); }, //private onMouseMove: function(){ if (this.disabled) { return; } var middle = this.getMiddle(); if (((Ext.EventObject.getPageY() > middle) && this.tmpHoverClass == "x-form-spinner-overup") || ((Ext.EventObject.getPageY() < middle) && this.tmpHoverClass == "x-form-spinner-overdown")) { } }, //private onMouseDown: function(){ if (this.disabled) { return; } var middle = this.getMiddle(); this.tmpClickClass = (Ext.EventObject.getPageY() < middle) ? 'x-form-spinner-clickup' : 'x-form-spinner-clickdown'; this.trigger.addClass(this.tmpClickClass); }, //private onMouseUp: function(){ this.trigger.removeClass(this.tmpClickClass); }, //private onTriggerClick: function(){ if (this.disabled || this.el.dom.readOnly) { return; } var middle = this.getMiddle(); var ud = (Ext.EventObject.getPageY() < middle) ? 'Up' : 'Down'; this['onSpin' + ud](); }, //private getMiddle: function(){ var t = this.trigger.getTop(); var h = this.trigger.getHeight(); var middle = t + (h / 2); return middle; }, //private //checks if control is allowed to spin isSpinnable: function(){ if (this.disabled || this.el.dom.readOnly) { Ext.EventObject.preventDefault(); //prevent scrolling when disabled/readonly return false; } return true; }, handleMouseWheel: function(e){ //disable scrolling when not focused if (this.wrap.hasClass('x-trigger-wrap-focus') == false) { return; } var delta = e.getWheelDelta(); if (delta > 0) { this.onSpinUp(); e.stopEvent(); } else if (delta < 0) { this.onSpinDown(); e.stopEvent(); } }, //private startDrag: function(){ this.proxy.show(); this._previousY = Ext.fly(this.dd.getDragEl()).getTop(); }, //private endDrag: function(){ this.proxy.hide(); }, //private onDrag: function(){ if (this.disabled) { return; } var y = Ext.fly(this.dd.getDragEl()).getTop(); var ud = ''; if (this._previousY > y) { ud = 'Up'; } //up if (this._previousY < y) { ud = 'Down'; } //down if (ud != '') { this['onSpin' + ud](); } this._previousY = y; }, //private onSpinUp: function(){ if (this.isSpinnable() == false) { return; } if (Ext.EventObject.shiftKey == true) { this.onSpinUpAlternate(); return; } else { this.spin(false, false); } this.field.fireEvent("spin", this); this.field.fireEvent("spinup", this); }, //private onSpinDown: function(){ if (this.isSpinnable() == false) { return; } if (Ext.EventObject.shiftKey == true) { this.onSpinDownAlternate(); return; } else { this.spin(true, false); } this.field.fireEvent("spin", this); this.field.fireEvent("spindown", this); }, //private onSpinUpAlternate: function(){ if (this.isSpinnable() == false) { return; } this.spin(false, true); this.field.fireEvent("spin", this); this.field.fireEvent("spinup", this); }, //private onSpinDownAlternate: function(){ if (this.isSpinnable() == false) { return; } this.spin(true, true); this.field.fireEvent("spin", this); this.field.fireEvent("spindown", this); }, spin: function(down, alternate){ var v = parseFloat(this.field.getValue()); var incr = (alternate == true) ? this.alternateIncrementValue : this.incrementValue; (down == true) ? v -= incr : v += incr; v = (isNaN(v)) ? this.defaultValue : v; v = this.fixBoundries(v); this.field.setRawValue(v); }, fixBoundries: function(value){ var v = value; if (this.field.minValue != undefined && v < this.field.minValue) { v = this.field.minValue; } if (this.field.maxValue != undefined && v > this.field.maxValue) { v = this.field.maxValue; } return this.fixPrecision(v); }, // private fixPrecision: function(value){ var nan = isNaN(value); if (!this.field.allowDecimals || this.field.decimalPrecision == -1 || nan || !value) { return nan ? '' : value; } return parseFloat(parseFloat(value).toFixed(this.field.decimalPrecision)); }, doDestroy: function(){ if (this.trigger) { this.trigger.remove(); } if (this.wrap) { this.wrap.remove(); delete this.field.wrap; } if (this.splitter) { this.splitter.remove(); } if (this.dd) { this.dd.unreg(); this.dd = null; } if (this.proxy) { this.proxy.remove(); } if (this.repeater) { this.repeater.purgeListeners(); } if (this.mimicing){ Ext.get(Ext.isIE ? document.body : document).un("mousedown", this.mimicBlur, this); } } }); //backwards compat Ext.form.Spinner = Ext.ux.Spinner; ================================================ FILE: client/src/ext/ux/SpinnerField.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.SpinnerField * @extends Ext.form.NumberField * Creates a field utilizing Ext.ux.Spinner * @xtype spinnerfield */ Ext.ux.form.SpinnerField = Ext.extend(Ext.form.NumberField, { actionMode: 'wrap', deferHeight: true, autoSize: Ext.emptyFn, onBlur: Ext.emptyFn, adjustSize: Ext.BoxComponent.prototype.adjustSize, constructor: function(config) { var spinnerConfig = Ext.copyTo({}, config, 'incrementValue,alternateIncrementValue,accelerate,defaultValue,triggerClass,splitterClass'); var spl = this.spinner = new Ext.ux.Spinner(spinnerConfig); var plugins = config.plugins ? (Ext.isArray(config.plugins) ? config.plugins.push(spl) : [config.plugins, spl]) : spl; Ext.ux.form.SpinnerField.superclass.constructor.call(this, Ext.apply(config, {plugins: plugins})); }, // private getResizeEl: function(){ return this.wrap; }, // private getPositionEl: function(){ return this.wrap; }, // private alignErrorIcon: function(){ if (this.wrap) { this.errorIcon.alignTo(this.wrap, 'tl-tr', [2, 0]); } }, validateBlur: function(){ return true; } }); Ext.reg('spinnerfield', Ext.ux.form.SpinnerField); //backwards compat Ext.form.SpinnerField = Ext.ux.form.SpinnerField; ================================================ FILE: client/src/ext/ux/Spotlight.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ux.Spotlight = function(config){ Ext.apply(this, config); } Ext.ux.Spotlight.prototype = { active : false, animate : true, duration: .25, easing:'easeNone', // private animated : false, createElements : function(){ var bd = Ext.getBody(); this.right = bd.createChild({cls:'x-spotlight'}); this.left = bd.createChild({cls:'x-spotlight'}); this.top = bd.createChild({cls:'x-spotlight'}); this.bottom = bd.createChild({cls:'x-spotlight'}); this.all = new Ext.CompositeElement([this.right, this.left, this.top, this.bottom]); }, show : function(el, callback, scope){ if(this.animated){ this.show.defer(50, this, [el, callback, scope]); return; } this.el = Ext.get(el); if(!this.right){ this.createElements(); } if(!this.active){ this.all.setDisplayed(''); this.applyBounds(true, false); this.active = true; Ext.EventManager.onWindowResize(this.syncSize, this); this.applyBounds(false, this.animate, false, callback, scope); }else{ this.applyBounds(false, false, false, callback, scope); // all these booleans look hideous } }, hide : function(callback, scope){ if(this.animated){ this.hide.defer(50, this, [callback, scope]); return; } Ext.EventManager.removeResizeListener(this.syncSize, this); this.applyBounds(true, this.animate, true, callback, scope); }, doHide : function(){ this.active = false; this.all.setDisplayed(false); }, syncSize : function(){ this.applyBounds(false, false); }, applyBounds : function(basePts, anim, doHide, callback, scope){ var rg = this.el.getRegion(); var dw = Ext.lib.Dom.getViewWidth(true); var dh = Ext.lib.Dom.getViewHeight(true); var c = 0, cb = false; if(anim){ cb = { callback: function(){ c++; if(c == 4){ this.animated = false; if(doHide){ this.doHide(); } Ext.callback(callback, scope, [this]); } }, scope: this, duration: this.duration, easing: this.easing }; this.animated = true; } this.right.setBounds( rg.right, basePts ? dh : rg.top, dw - rg.right, basePts ? 0 : (dh - rg.top), cb); this.left.setBounds( 0, 0, rg.left, basePts ? 0 : rg.bottom, cb); this.top.setBounds( basePts ? dw : rg.left, 0, basePts ? 0 : dw - rg.left, rg.top, cb); this.bottom.setBounds( 0, rg.bottom, basePts ? 0 : rg.right, dh - rg.bottom, cb); if(!anim){ if(doHide){ this.doHide(); } if(callback){ Ext.callback(callback, scope, [this]); } } }, destroy : function(){ this.doHide(); Ext.destroy( this.right, this.left, this.top, this.bottom); delete this.el; delete this.all; } }; //backwards compat Ext.Spotlight = Ext.ux.Spotlight; ================================================ FILE: client/src/ext/ux/TabCloseMenu.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.TabCloseMenu * @extends Object * Plugin (ptype = 'tabclosemenu') for adding a close context menu to tabs. Note that the menu respects * the closable configuration on the tab. As such, commands like remove others and remove all will not * remove items that are not closable. * * @constructor * @param {Object} config The configuration options * @ptype tabclosemenu */ Ext.ux.TabCloseMenu = Ext.extend(Object, { /** * @cfg {String} closeTabText * The text for closing the current tab. Defaults to 'Close Tab'. */ closeTabText: 'Close Tab', /** * @cfg {String} closeOtherTabsText * The text for closing all tabs except the current one. Defaults to 'Close Other Tabs'. */ closeOtherTabsText: 'Close Other Tabs', /** * @cfg {Boolean} showCloseAll * Indicates whether to show the 'Close All' option. Defaults to true. */ showCloseAll: true, /** * @cfg {String} closeAllTabsText *

    The text for closing all tabs. Defaults to 'Close All Tabs'. */ closeAllTabsText: 'Close All Tabs', constructor : function(config){ Ext.apply(this, config || {}); }, //public init : function(tabs){ this.tabs = tabs; tabs.on({ scope: this, contextmenu: this.onContextMenu, destroy: this.destroy }); }, destroy : function(){ Ext.destroy(this.menu); delete this.menu; delete this.tabs; delete this.active; }, // private onContextMenu : function(tabs, item, e){ this.active = item; var m = this.createMenu(), disableAll = true, disableOthers = true, closeAll = m.getComponent('closeall'); m.getComponent('close').setDisabled(!item.closable); tabs.items.each(function(){ if(this.closable){ disableAll = false; if(this != item){ disableOthers = false; return false; } } }); m.getComponent('closeothers').setDisabled(disableOthers); if(closeAll){ closeAll.setDisabled(disableAll); } e.stopEvent(); m.showAt(e.getPoint()); }, createMenu : function(){ if(!this.menu){ var items = [{ itemId: 'close', text: this.closeTabText, scope: this, handler: this.onClose }]; if(this.showCloseAll){ items.push('-'); } items.push({ itemId: 'closeothers', text: this.closeOtherTabsText, scope: this, handler: this.onCloseOthers }); if(this.showCloseAll){ items.push({ itemId: 'closeall', text: this.closeAllTabsText, scope: this, handler: this.onCloseAll }); } this.menu = new Ext.menu.Menu({ items: items }); } return this.menu; }, onClose : function(){ this.tabs.remove(this.active); }, onCloseOthers : function(){ this.doClose(true); }, onCloseAll : function(){ this.doClose(false); }, doClose : function(excludeActive){ var items = []; this.tabs.items.each(function(item){ if(item.closable){ if(!excludeActive || item != this.active){ items.push(item); } } }, this); Ext.each(items, function(item){ this.tabs.remove(item); }, this); } }); Ext.preg('tabclosemenu', Ext.ux.TabCloseMenu); ================================================ FILE: client/src/ext/ux/TabScrollerMenu.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux'); /** * @class Ext.ux.TabScrollerMenu * @extends Object * Plugin (ptype = 'tabscrollermenu') for adding a tab scroller menu to tabs. * @constructor * @param {Object} config Configuration options * @ptype tabscrollermenu */ Ext.ux.TabScrollerMenu = Ext.extend(Object, { /** * @cfg {Number} pageSize How many items to allow per submenu. */ pageSize : 10, /** * @cfg {Number} maxText How long should the title of each {@link Ext.menu.Item} be. */ maxText : 15, /** * @cfg {String} menuPrefixText Text to prefix the submenus. */ menuPrefixText : 'Items', constructor : function(config) { config = config || {}; Ext.apply(this, config); }, //private init : function(tabPanel) { Ext.apply(tabPanel, this.parentOverrides); tabPanel.tabScrollerMenu = this; var thisRef = this; tabPanel.on({ render : { scope : tabPanel, single : true, fn : function() { var newFn = tabPanel.createScrollers.createSequence(thisRef.createPanelsMenu, this); tabPanel.createScrollers = newFn; } } }); }, // private && sequeneced createPanelsMenu : function() { var h = this.stripWrap.dom.offsetHeight; //move the right menu item to the left 18px var rtScrBtn = this.header.dom.firstChild; Ext.fly(rtScrBtn).applyStyles({ right : '18px' }); var stripWrap = Ext.get(this.strip.dom.parentNode); stripWrap.applyStyles({ 'margin-right' : '36px' }); // Add the new righthand menu var scrollMenu = this.header.insertFirst({ cls:'x-tab-tabmenu-right' }); scrollMenu.setHeight(h); scrollMenu.addClassOnOver('x-tab-tabmenu-over'); scrollMenu.on('click', this.showTabsMenu, this); this.scrollLeft.show = this.scrollLeft.show.createSequence(function() { scrollMenu.show(); }); this.scrollLeft.hide = this.scrollLeft.hide.createSequence(function() { scrollMenu.hide(); }); }, /** * Returns an the current page size (this.pageSize); * @return {Number} this.pageSize The current page size. */ getPageSize : function() { return this.pageSize; }, /** * Sets the number of menu items per submenu "page size". * @param {Number} pageSize The page size */ setPageSize : function(pageSize) { this.pageSize = pageSize; }, /** * Returns the current maxText length; * @return {Number} this.maxText The current max text length. */ getMaxText : function() { return this.maxText; }, /** * Sets the maximum text size for each menu item. * @param {Number} t The max text per each menu item. */ setMaxText : function(t) { this.maxText = t; }, /** * Returns the current menu prefix text String.; * @return {String} this.menuPrefixText The current menu prefix text. */ getMenuPrefixText : function() { return this.menuPrefixText; }, /** * Sets the menu prefix text String. * @param {String} t The menu prefix text. */ setMenuPrefixText : function(t) { this.menuPrefixText = t; }, // private && applied to the tab panel itself. parentOverrides : { // all execute within the scope of the tab panel // private showTabsMenu : function(e) { if (this.tabsMenu) { this.tabsMenu.destroy(); this.un('destroy', this.tabsMenu.destroy, this.tabsMenu); this.tabsMenu = null; } this.tabsMenu = new Ext.menu.Menu(); this.on('destroy', this.tabsMenu.destroy, this.tabsMenu); this.generateTabMenuItems(); var target = Ext.get(e.getTarget()); var xy = target.getXY(); // //Y param + 24 pixels xy[1] += 24; this.tabsMenu.showAt(xy); }, // private generateTabMenuItems : function() { var curActive = this.getActiveTab(); var totalItems = this.items.getCount(); var pageSize = this.tabScrollerMenu.getPageSize(); if (totalItems > pageSize) { var numSubMenus = Math.floor(totalItems / pageSize); var remainder = totalItems % pageSize; // Loop through all of the items and create submenus in chunks of 10 for (var i = 0 ; i < numSubMenus; i++) { var curPage = (i + 1) * pageSize; var menuItems = []; for (var x = 0; x < pageSize; x++) { index = x + curPage - pageSize; var item = this.items.get(index); menuItems.push(this.autoGenMenuItem(item)); } this.tabsMenu.add({ text : this.tabScrollerMenu.getMenuPrefixText() + ' ' + (curPage - pageSize + 1) + ' - ' + curPage, menu : menuItems }); } // remaining items if (remainder > 0) { var start = numSubMenus * pageSize; menuItems = []; for (var i = start ; i < totalItems; i ++ ) { var item = this.items.get(i); menuItems.push(this.autoGenMenuItem(item)); } this.tabsMenu.add({ text : this.tabScrollerMenu.menuPrefixText + ' ' + (start + 1) + ' - ' + (start + menuItems.length), menu : menuItems }); } } else { this.items.each(function(item) { if (item.id != curActive.id && !item.hidden) { this.tabsMenu.add(this.autoGenMenuItem(item)); } }, this); } }, // private autoGenMenuItem : function(item) { var maxText = this.tabScrollerMenu.getMaxText(); var text = Ext.util.Format.ellipsis(item.title, maxText); return { text : text, handler : this.showTabFromMenu, scope : this, disabled : item.disabled, tabToShow : item, iconCls : item.iconCls } }, // private showTabFromMenu : function(menuItem) { this.setActiveTab(menuItem.tabToShow); } } }); Ext.reg('tabscrollermenu', Ext.ux.TabScrollerMenu); ================================================ FILE: client/src/ext/ux/TableGrid.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.TableGrid * @extends Ext.grid.GridPanel * A Grid which creates itself from an existing HTML table element. * @history * 2007-03-01 Original version by Nige "Animal" White * 2007-03-10 jvs Slightly refactored to reuse existing classes * @constructor * @param {String/HTMLElement/Ext.Element} table The table element from which this grid will be created - * The table MUST have some type of size defined for the grid to fill. The container will be * automatically set to position relative if it isn't already. * @param {Object} config A config object that sets properties on this grid and has two additional (optional) * properties: fields and columns which allow for customizing data fields and columns for this grid. */ Ext.ux.grid.TableGrid = function(table, config){ config = config || {}; Ext.apply(this, config); var cf = config.fields || [], ch = config.columns || []; table = Ext.get(table); var ct = table.insertSibling(); var fields = [], cols = []; var headers = table.query("thead th"); for (var i = 0, h; h = headers[i]; i++) { var text = h.innerHTML; var name = 'tcol-' + i; fields.push(Ext.applyIf(cf[i] || {}, { name: name, mapping: 'td:nth(' + (i + 1) + ')/@innerHTML' })); cols.push(Ext.applyIf(ch[i] || {}, { 'header': text, 'dataIndex': name, 'width': h.offsetWidth, 'tooltip': h.title, 'sortable': true })); } var ds = new Ext.data.Store({ reader: new Ext.data.XmlReader({ record: 'tbody tr' }, fields) }); ds.loadData(table.dom); var cm = new Ext.grid.ColumnModel(cols); if (config.width || config.height) { ct.setSize(config.width || 'auto', config.height || 'auto'); } else { ct.setWidth(table.getWidth()); } if (config.remove !== false) { table.remove(); } Ext.applyIf(this, { 'ds': ds, 'cm': cm, 'sm': new Ext.grid.RowSelectionModel(), autoHeight: true, autoWidth: false }); Ext.ux.grid.TableGrid.superclass.constructor.call(this, ct, {}); }; Ext.extend(Ext.ux.grid.TableGrid, Ext.grid.GridPanel); //backwards compat Ext.grid.TableGrid = Ext.ux.grid.TableGrid; ================================================ FILE: client/src/ext/ux/ToolbarDroppable.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.ToolbarDroppable * @extends Object * Plugin which allows items to be dropped onto a toolbar and be turned into new Toolbar items. * To use the plugin, you just need to provide a createItem implementation that takes the drop * data as an argument and returns an object that can be placed onto the toolbar. Example: * 

     * new Ext.ux.ToolbarDroppable({
 *   createItem: function(data) {
 *     return new Ext.Button({text: data.text});
 *   }
 * });
 *
    * The afterLayout function can also be overridden, and is called after a new item has been * created and inserted into the Toolbar. Use this for any logic that needs to be run after * the item has been created. */ Ext.ux.ToolbarDroppable = Ext.extend(Object, { /** * @constructor */ constructor: function(config) { Ext.apply(this, config, { }); }, /** * Initializes the plugin and saves a reference to the toolbar * @param {Ext.Toolbar} toolbar The toolbar instance */ init: function(toolbar) { /** * @property toolbar * @type Ext.Toolbar * The toolbar instance that this plugin is tied to */ this.toolbar = toolbar; this.toolbar.on({ scope : this, render: this.createDropTarget }); }, /** * Creates a drop target on the toolbar */ createDropTarget: function() { /** * @property dropTarget * @type Ext.dd.DropTarget * The drop target attached to the toolbar instance */ this.dropTarget = new Ext.dd.DropTarget(this.toolbar.getEl(), { notifyOver: this.notifyOver.createDelegate(this), notifyDrop: this.notifyDrop.createDelegate(this) }); }, /** * Adds the given DD Group to the drop target * @param {String} ddGroup The DD Group */ addDDGroup: function(ddGroup) { this.dropTarget.addToGroup(ddGroup); }, /** * Calculates the location on the toolbar to create the new sorter button based on the XY of the * drag event * @param {Ext.EventObject} e The event object * @return {Number} The index at which to insert the new button */ calculateEntryIndex: function(e) { var entryIndex = 0, toolbar = this.toolbar, items = toolbar.items.items, count = items.length, xTotal = toolbar.getEl().getXY()[0], xHover = e.getXY()[0] - xTotal; for (var index = 0; index < count; index++) { var item = items[index], width = item.getEl().getWidth(), midpoint = xTotal + width / 2; xTotal += width; if (xHover < midpoint) { entryIndex = index; break; } else { entryIndex = index + 1; } } return entryIndex; }, /** * Returns true if the drop is allowed on the drop target. This function can be overridden * and defaults to simply return true * @param {Object} data Arbitrary data from the drag source * @return {Boolean} True if the drop is allowed */ canDrop: function(data) { return true; }, /** * Custom notifyOver method which will be used in the plugin's internal DropTarget * @return {String} The CSS class to add */ notifyOver: function(dragSource, event, data) { return this.canDrop.apply(this, arguments) ? this.dropTarget.dropAllowed : this.dropTarget.dropNotAllowed; }, /** * Called when the drop has been made. Creates the new toolbar item, places it at the correct location * and calls the afterLayout callback. */ notifyDrop: function(dragSource, event, data) { var canAdd = this.canDrop(dragSource, event, data), tbar = this.toolbar; if (canAdd) { var entryIndex = this.calculateEntryIndex(event); tbar.insert(entryIndex, this.createItem(data)); tbar.doLayout(); this.afterLayout(); } return canAdd; }, /** * Creates the new toolbar item based on drop data. This method must be implemented by the plugin instance * @param {Object} data Arbitrary data from the drop * @return {Mixed} An item that can be added to a toolbar */ createItem: function(data) { throw new Error("The createItem method must be implemented in the ToolbarDroppable plugin"); }, /** * Called after a new button has been created and added to the toolbar. Add any required cleanup logic here */ afterLayout: Ext.emptyFn }); ================================================ FILE: client/src/ext/ux/ToolbarReorderer.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.ToolbarReorderer * @extends Ext.ux.Reorderer * Plugin which can be attached to any Ext.Toolbar instance. Provides ability to reorder toolbar items * with drag and drop. Example: * 
     * new Ext.Toolbar({
 *     plugins: [
 *         new Ext.ux.ToolbarReorderer({
 *             defaultReorderable: true
 *         })
 *     ],
 *     items: [
 *       {text: 'Button 1', reorderable: false},
 *       {text: 'Button 2'},
 *       {text: 'Button 3'}
 *     ]
 * });
 *
    * In the example above, buttons 2 and 3 will be reorderable via drag and drop. An event named 'reordered' * is added to the Toolbar, and is fired whenever a reorder has been completed. */ Ext.ux.ToolbarReorderer = Ext.extend(Ext.ux.Reorderer, { /** * Initializes the plugin, decorates the toolbar with additional functionality */ init: function(toolbar) { /** * This is used to store the correct x value of each button in the array. We need to use this * instead of the button's reported x co-ordinate because the buttons are animated when they move - * if another onDrag is fired while the button is still moving, the comparison x value will be incorrect */ this.buttonXCache = {}; toolbar.on({ scope: this, add : function(toolbar, item) { this.createIfReorderable(item); } }); this.movedTask = new Ext.util.DelayedTask(this.finishMove, this); //super sets a reference to the toolbar in this.target Ext.ux.ToolbarReorderer.superclass.init.apply(this, arguments); }, /** * Sets up the given Toolbar item as a draggable * @param {Mixed} button The item to make draggable (usually an Ext.Button instance) */ createItemDD: function(button) { if (button.dd != undefined) { return; } var el = button.getEl(), id = el.id, tbar = this.target, me = this; button.dd = new Ext.dd.DD(el, undefined, { isTarget: false }); //if a button has a menu, it is disabled while dragging with this function var menuDisabler = function() { return false; }; Ext.apply(button.dd, { b4StartDrag: function() { this.startPosition = el.getXY(); //bump up the z index of the button being dragged but keep a reference to the original this.startZIndex = el.getStyle('zIndex'); el.setStyle('zIndex', 10000); button.suspendEvents(); if (button.menu) { button.menu.on('beforeshow', menuDisabler, me); } }, startDrag: function() { this.constrainTo(tbar.getEl()); this.setYConstraint(0, 0, 0); }, onDrag: function(e) { //calculate the button's index within the toolbar and its current midpoint var buttonX = el.getXY()[0], deltaX = buttonX - this.startPosition[0], items = tbar.items.items, oldIndex = items.indexOf(button), newIndex; //find which item in the toolbar the midpoint is currently over for (var index = 0; index < items.length; index++) { var item = items[index]; if (item.reorderable && item.id != button.id) { //find the midpoint of the button var box = item.getEl().getBox(), midpoint = (me.buttonXCache[item.id] || box.x) + (box.width / 2), movedLeft = oldIndex > index && deltaX < 0 && buttonX < midpoint, movedRight = oldIndex < index && deltaX > 0 && (buttonX + el.getWidth()) > midpoint; if (movedLeft || movedRight) { me[movedLeft ? 'onMovedLeft' : 'onMovedRight'](button, index, oldIndex); break; } } } }, /** * After the drag has been completed, make sure the button being dragged makes it back to * the correct location and resets its z index */ endDrag: function() { //we need to update the cache here for cases where the button was dragged but its //position in the toolbar did not change me.updateButtonXCache(); el.moveTo(me.buttonXCache[button.id], el.getY(), { duration: me.animationDuration, scope : this, callback: function() { me.movedTask.delay(200); button.resumeEvents(); if (button.menu) { button.menu.un('beforeshow', menuDisabler, me); } tbar.fireEvent('reordered', button, tbar); } }); el.setStyle('zIndex', this.startZIndex); } }); }, onMovedLeft: function(item, newIndex, oldIndex) { var tbar = this.target, items = tbar.items.items; this.movedTask.cancel(); if (newIndex != undefined && newIndex != oldIndex) { //move the button currently under drag to its new location tbar.remove(item, false); tbar.insert(newIndex, item); //set the correct x location of each item in the toolbar this.updateButtonXCache(); for (var index = 0; index < items.length; index++) { var obj = items[index], newX = this.buttonXCache[obj.id]; if (item == obj) { item.dd.startPosition[0] = newX; } else { var el = obj.getEl(); el.moveTo(newX, el.getY(), { duration: this.animationDuration }); } } } }, onMovedRight: function(item, newIndex, oldIndex) { this.onMovedLeft.apply(this, arguments); }, finishMove: function(){ var tbar = this.target; tbar.items.each(function(btn){ btn.el.dom.style.left = ''; }); tbar.doLayout(); }, /** * @private * Updates the internal cache of button X locations. */ updateButtonXCache: function() { var tbar = this.target, items = tbar.items, totalX = tbar.getEl().getBox(true).x; items.each(function(item) { this.buttonXCache[item.id] = totalX; totalX += item.getEl().getWidth(); }, this); } }); ================================================ FILE: client/src/ext/ux/XmlTreeLoader.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.tree'); /** * @class Ext.ux.tree.XmlTreeLoader * @extends Ext.tree.TreeLoader *

    A TreeLoader that can convert an XML document into a hierarchy of {@link Ext.tree.TreeNode}s. * Any text value included as a text node in the XML will be added to the parent node as an attribute * called innerText. Also, the tag name of each XML node will be added to the tree node as * an attribute called tagName.

    *

    By default, this class expects that your source XML will provide the necessary attributes on each * node as expected by the {@link Ext.tree.TreePanel} to display and load properly. However, you can * provide your own custom processing of node attributes by overriding the {@link #processNode} method * and modifying the attributes as needed before they are used to create the associated TreeNode.

    * @constructor * Creates a new XmlTreeloader. * @param {Object} config A config object containing config properties. */ Ext.ux.tree.XmlTreeLoader = Ext.extend(Ext.tree.TreeLoader, { /** * @property XML_NODE_ELEMENT * XML element node (value 1, read-only) * @type Number */ XML_NODE_ELEMENT : 1, /** * @property XML_NODE_TEXT * XML text node (value 3, read-only) * @type Number */ XML_NODE_TEXT : 3, // private override processResponse : function(response, node, callback){ var xmlData = response.responseXML, root = xmlData.documentElement || xmlData; try{ node.beginUpdate(); node.appendChild(this.parseXml(root)); node.endUpdate(); this.runCallback(callback, scope || node, [node]); }catch(e){ this.handleFailure(response); } }, // private parseXml : function(node) { var nodes = []; Ext.each(node.childNodes, function(n){ if(n.nodeType == this.XML_NODE_ELEMENT){ var treeNode = this.createNode(n); if(n.childNodes.length > 0){ var child = this.parseXml(n); if(typeof child == 'string'){ treeNode.attributes.innerText = child; }else{ treeNode.appendChild(child); } } nodes.push(treeNode); } else if(n.nodeType == this.XML_NODE_TEXT){ var text = n.nodeValue.trim(); if(text.length > 0){ return nodes = text; } } }, this); return nodes; }, // private override createNode : function(node){ var attr = { tagName: node.tagName }; Ext.each(node.attributes, function(a){ attr[a.nodeName] = a.nodeValue; }); this.processAttributes(attr); return Ext.ux.tree.XmlTreeLoader.superclass.createNode.call(this, attr); }, /* * Template method intended to be overridden by subclasses that need to provide * custom attribute processing prior to the creation of each TreeNode. This method * will be passed a config object containing existing TreeNode attribute name/value * pairs which can be modified as needed directly (no need to return the object). */ processAttributes: Ext.emptyFn }); //backwards compat Ext.ux.XmlTreeLoader = Ext.ux.tree.XmlTreeLoader; ================================================ FILE: client/src/ext/ux/css/CenterLayout.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ux-layout-center-item { margin:0 auto; text-align:left; } .ux-layout-center .x-panel-body, body.ux-layout-center { text-align:center; } ================================================ FILE: client/src/ext/ux/css/ColumnHeaderGroup.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ td.ux-grid-hd-group-cell { background: url(../../../resources/images/default/grid/grid3-hrow.gif) repeat-x bottom; } ================================================ FILE: client/src/ext/ux/css/ColumnNodeUI.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-column-tree .x-panel-header { padding: 3px 0px 0px 0px; border-bottom-width: 0px; } .x-column-tree .x-panel-header .x-panel-header-text { margin-left: 3px } .x-column-tree .x-tree-node { zoom:1; } .x-column-tree .x-tree-node-el { /*border-bottom:1px solid #eee; borders? */ zoom:1; } .x-column-tree .x-tree-selected { background: #d9e8fb; } .x-column-tree .x-tree-node a { line-height:18px; vertical-align:middle; } .x-column-tree .x-tree-node a span{ } .x-column-tree .x-tree-node .x-tree-selected a span{ background:transparent; color:#000; } .x-tree-col { float:left; overflow:hidden; padding:0 1px; zoom:1; } .x-tree-col-text, .x-tree-hd-text { color:#000; overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; padding:3px 3px 3px 5px; white-space: nowrap; font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-tree-headers { margin-top: 3px; background: #f9f9f9 url(../../../resources/images/default/grid/grid3-hrow.gif) repeat-x 0 bottom; cursor:default; zoom:1; } .x-tree-hd { float:left; overflow:hidden; border-left:1px solid #eee; border-right:1px solid #d0d0d0; } ================================================ FILE: client/src/ext/ux/css/GroupSummary.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-grid3-summary-row { border-left:1px solid #fff; border-right:1px solid #fff; color:#333; background: #f1f2f4; } .x-grid3-summary-row .x-grid3-cell-inner { font-weight:bold; padding-bottom:4px; } .x-grid3-cell-first .x-grid3-cell-inner { padding-left:16px; } .x-grid-hide-summary .x-grid3-summary-row { display:none; } .x-grid3-summary-msg { padding:4px 16px; font-weight:bold; } ================================================ FILE: client/src/ext/ux/css/GroupTab.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-grouptabs-panel { background-color: #4E78B1; border: solid 15px #4E78B1; } .x-tab-panel-left .x-grouptabs-panel-header, .x-tab-panel-right .x-grouptabs-panel-header { float: left; border: 0; background: transparent; } .x-tab-panel-right .x-grouptabs-panel-header { float:right; } .x-tab-panel-left .x-grouptabs-bwrap { float: right; position: relative; } .x-tab-panel-right .x-grouptabs-bwrap { float: left; position: relative; } .x-tab-panel-left ul.x-grouptabs-strip, .x-tab-panel-right ul.x-grouptabs-strip { width: auto; display: block; } .x-tab-panel-left ul.x-grouptabs-strip li, .x-tab-panel-right ul.x-grouptabs-strip li { padding: 6px 0 2px 6px; float: none; margin: 0; position: relative; clear: both; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text, .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text{ font-size: 13px; line-height: 18px; cursor: pointer; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text{ padding-left: 18px; } .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text{ padding-right: 18px; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text, .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text{ font-size: 12px; padding: 0; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text{ margin-left: 4px; } .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text{ margin-right: 4px; } .x-grouptabs-panel .x-grouptabs-strip a.x-grouptabs-text{ overflow: hidden; white-space: nowrap; display: block; color: #DFE8F6; font-family: tahoma, arial, sans-serif; font-weight: bold; text-decoration: none; } .x-tab-panel-right .x-grouptabs-strip a.x-grouptabs-text { text-align: right; } .x-grouptabs-panel .x-grouptabs-strip-active a.x-grouptabs-text { color: #395B8E; } .x-grouptabs-panel ul.x-grouptabs-sub a.x-grouptabs-text { font-weight: normal; } .x-tab-joint { position: absolute; width: 3px; top: 1px; background: #fff; z-index: 8999; } .x-grouptabs-panel .x-grouptabs-panel-body { border: 1px solid #999; } .x-grouptabs-panel ul.x-grouptabs-strip li { border-top: 1px solid transparent; border-bottom: 1px solid transparent; border-left: 1px solid transparent; } .x-grouptabs-panel ul.x-grouptabs-strip li.x-grouptabs-strip-active { border: 0; background: #fff; border-top: 1px solid #999; border-bottom: 1px solid #999; } .x-tab-panel-left ul.x-grouptabs-strip li.x-grouptabs-strip-active { border-left: 1px solid #999; } .x-tab-panel-right ul.x-grouptabs-strip li.x-grouptabs-strip-active { border-right: 1px solid #999; } .x-grouptabs-panel li.x-grouptabs-strip-active ul.x-grouptabs-sub li.x-grouptabs-strip-active{ background-color: #EDEEF0; } .x-grouptabs-panel li.x-grouptabs-strip-active ul.x-grouptabs-sub { background-color: transparent; } .x-grouptabs-panel li.x-grouptabs-strip-active ul.x-grouptabs-sub li { border-color: transparent; } /* Tab corners */ .x-grouptabs-panel .x-grouptabs-corner { background-image: url('../images/x-grouptabs-corners.gif'); display: none; width: 11px; height: 11px; position: absolute; font-size: 1px; line-height: 6px; overflow: hidden; zoom:1; } .x-grouptabs-panel .x-grouptabs-strip-active .x-grouptabs-corner { display: block; } .x-grouptabs-panel .x-grouptabs-main.x-grouptabs-strip-active ul.x-grouptabs-sub .x-grouptabs-corner { display: none; } .x-grouptabs-panel .x-grouptabs-corner-top-left { background-position: top left; left: 0; top: 0; } .x-grouptabs-panel .x-grouptabs-corner-bottom-left { background-position: bottom left; left: 0; bottom: 0; } .x-grouptabs-panel .x-grouptabs-corner-top-right { background-position: top right; right: 0; top: 0; } .x-grouptabs-panel .x-grouptabs-corner-bottom-right { background-position: bottom right; right: 0; bottom: 0; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-bottom-left{ bottom: -4px; left: -4px; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-bottom-right{ bottom: -4px; right: -4px; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-top-left{ top: -4px; left: -4px; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-top-right{ top: -4px; right: -4px; } .x-grouptabs-panel ul.x-grouptabs-sub li.x-tab-with-icon a.x-grouptabs-text { background-repeat: no-repeat; padding-left: 20px; } /* General tab styling */ .x-grouptabs-panel .x-grouptabs-expand { background: transparent url('../images/elbow-plus-nl.gif') no-repeat; width: 16px; height: 16px; position: absolute; left: 7px; top: 6px; } .ext-ie6 .x-grouptabs-panel .x-grouptabs-expand, .ext-border-box .x-grouptabs-panel .x-grouptabs-expand { left: 0; } .x-grouptabs-expanded .x-grouptabs-expand { background-image: url('../images/elbow-minus-nl.gif'); } /* GroupTabs sub group styling */ .x-grouptabs-sub { display: none; margin-top: 4px; } .x-grouptabs-expanded .x-grouptabs-sub { display: block; } .x-grouptabs-panel ul.x-grouptabs-sub li { height: 18px; margin: 0 0 2px; padding: 0; } .x-grouptabs-panel ul.x-grouptabs-sub .x-grouptabs-main-item { display: none; } .x-tab-with-icon{ border-style:none !important; } ================================================ FILE: client/src/ext/ux/css/LockingGridView.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-grid3-locked, .x-grid3-unlocked { overflow: hidden; position: absolute; } .x-grid3-locked { border-right: 1px solid #808080; box-sizing: border-box; } .x-grid3-locked .x-grid3-scroller { overflow: hidden; } .x-grid3-locked .x-grid3-row { border-right: 0; } .x-grid3-scroll-spacer { height: 19px; } .x-grid3-unlocked .x-grid3-header-offset { padding-left: 0; } .x-grid3-unlocked .x-grid3-row { border-left: 0; } ================================================ FILE: client/src/ext/ux/css/MultiSelect.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ux-mselect{ overflow:auto; background:white; position:relative; /* for calculating scroll offsets */ zoom:1; overflow:auto; } .ux-mselect-item{ font:normal 12px tahoma, arial, helvetica, sans-serif; padding:2px; border:1px solid #fff; white-space: nowrap; cursor:pointer; } .ux-mselect-selected{ border:1px dotted #a3bae9 !important; background:#DFE8F6; cursor:pointer; } .x-view-drag-insert-above { border-top:1px dotted #3366cc; } .x-view-drag-insert-below { border-bottom:1px dotted #3366cc; } .ext-ie .ux-form-multiselect .x-fieldset legend { margin-bottom: 0; } ================================================ FILE: client/src/ext/ux/css/PanelResizer.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-panel-resize { height:5px; background:transparent url(../images/panel-handle.gif) no-repeat center bottom; position:relative; left:0; top:2px; cursor:n-resize; cursor:row-resize; /* for IE */ font-size:1px; line-height:1px; overflow:hidden; } ================================================ FILE: client/src/ext/ux/css/Portal.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-portal .x-panel-dd-spacer { margin-bottom:10px; } .x-portlet { margin-bottom:10px; } /* Clean up the look of the portlets */ .x-portlet .x-panel-ml { padding-left:2px; } .x-portlet .x-panel-mr { padding-right:2px; } .x-portlet .x-panel-bl { padding-left:2px; } .x-portlet .x-panel-br { padding-right:2px; } .x-portlet .x-panel-body { background:white; } .x-portlet .x-panel-mc { padding-top:2px; } .x-portlet .x-panel-bc .x-panel-footer { padding-bottom:2px; } .x-portlet .x-panel-nofooter .x-panel-bc { height:2px; } ================================================ FILE: client/src/ext/ux/css/RowEditor.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ext-ie .x-row-editor .x-form-text { margin:0 !important; } .x-row-editor-header { height:2px; overflow:hidden; background: transparent url(../images/row-editor-bg.gif) repeat-x 0 0; } .x-row-editor-footer { height:2px; overflow:hidden; background: transparent url(../images/row-editor-bg.gif) repeat-x 0 -2px; } .ext-ie .x-row-editor-footer { margin-top:-1px; } .x-row-editor-body { overflow:hidden; zoom:1; background: #ebf2fb; padding-top:2px; } .x-row-editor .x-btns { position:absolute; top:28px; left:20px; padding-left:5px; background: transparent url(../images/row-editor-btns.gif) no-repeat 0 0; } .x-row-editor .x-btns .x-plain-bwrap { padding-right:5px; background: transparent url(../images/row-editor-btns.gif) no-repeat right -31px; } .x-row-editor .x-btns .x-plain-body { background: transparent url(../images/row-editor-btns.gif) repeat-x 0 -62px; height:31px; } .x-row-editor .x-btns .x-table-layout-cell { padding:3px; } /* Fixes for IE6/7 trigger fields */ .ext-ie6 .x-row-editor .x-form-field-wrap .x-form-trigger, .ext-ie7 .x-row-editor .x-form-field-wrap .x-form-trigger { top: 1px; } .ext-ie6 .x-row-editor .x-form-field-trigger-wrap, .ext-ie7 .x-row-editor .x-form-field-trigger-wrap { margin-top: -1px; } .errorTip .x-tip-body ul{ list-style-type:disc; margin-left:15px; } ================================================ FILE: client/src/ext/ux/css/Spinner.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-form-spinner-proxy{ /*background-color:#ff00cc;*/ } .x-form-field-wrap .x-form-spinner-trigger { background:transparent url('../images/spinner.gif') no-repeat 0 0; } .x-form-field-wrap .x-form-spinner-overup{ background-position:-17px 0; } .x-form-field-wrap .x-form-spinner-clickup{ background-position:-34px 0; } .x-form-field-wrap .x-form-spinner-overdown{ background-position:-51px 0; } .x-form-field-wrap .x-form-spinner-clickdown{ background-position:-68px 0; } .x-trigger-wrap-focus .x-form-spinner-trigger{ background-position:-85px 0; } .x-trigger-wrap-focus .x-form-spinner-overup{ background-position:-102px 0; } .x-trigger-wrap-focus .x-form-spinner-clickup{ background-position:-119px 0; } .x-trigger-wrap-focus .x-form-spinner-overdown{ background-position:-136px 0; } .x-trigger-wrap-focus .x-form-spinner-clickdown{ background-position:-153px 0; } .x-trigger-wrap-focus .x-form-trigger{ border-bottom: 1px solid #7eadd9; } .x-form-field-wrap .x-form-spinner-splitter { line-height:1px; font-size:1px; background:transparent url('../images/spinner-split.gif') no-repeat 0 0; position:absolute; cursor: n-resize; } .x-trigger-wrap-focus .x-form-spinner-splitter{ background-position:-14px 0; } ================================================ FILE: client/src/ext/ux/css/ux-all.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .ux-layout-center-item { margin:0 auto; text-align:left; } .ux-layout-center .x-panel-body, body.ux-layout-center { text-align:center; } td.ux-grid-hd-group-cell { background: url(../../../resources/images/default/grid/grid3-hrow.gif) repeat-x bottom; }.x-column-tree .x-panel-header { padding: 3px 0px 0px 0px; border-bottom-width: 0px; } .x-column-tree .x-panel-header .x-panel-header-text { margin-left: 3px } .x-column-tree .x-tree-node { zoom:1; } .x-column-tree .x-tree-node-el { /*border-bottom:1px solid #eee; borders? */ zoom:1; } .x-column-tree .x-tree-selected { background: #d9e8fb; } .x-column-tree .x-tree-node a { line-height:18px; vertical-align:middle; } .x-column-tree .x-tree-node a span{ } .x-column-tree .x-tree-node .x-tree-selected a span{ background:transparent; color:#000; } .x-tree-col { float:left; overflow:hidden; padding:0 1px; zoom:1; } .x-tree-col-text, .x-tree-hd-text { color:#000; overflow:hidden; -o-text-overflow: ellipsis; text-overflow: ellipsis; padding:3px 3px 3px 5px; white-space: nowrap; font:normal 11px arial, tahoma, helvetica, sans-serif; } .x-tree-headers { margin-top: 3px; background: #f9f9f9 url(../../../resources/images/default/grid/grid3-hrow.gif) repeat-x 0 bottom; cursor:default; zoom:1; } .x-tree-hd { float:left; overflow:hidden; border-left:1px solid #eee; border-right:1px solid #d0d0d0; } /* * FileUploadField component styles */ .x-form-file-wrap { position: relative; height: 22px; } .x-form-file-wrap .x-form-file { position: absolute; right: 0; -moz-opacity: 0; filter:alpha(opacity: 0); opacity: 0; z-index: 2; height: 22px; } .x-form-file-wrap .x-form-file-btn { position: absolute; right: 0; z-index: 1; } .x-form-file-wrap .x-form-file-text { position: absolute; left: 0; z-index: 3; color: #777; }/** * GridFilters Styles **/ /* .x-grid3-hd-row .ux-filtered-column { border-left: 1px solid #C7E3B4; border-right: 1px solid #C7E3B4; } .x-grid3-hd-row .ux-filtered-column .x-grid3-hd-inner { background-image: url(../images/header_bg.gif); } .ux-filtered-column .x-grid3-hd-btn { background-image: url(../images/hd-btn.gif); } */ .x-grid3-hd-row td.ux-filtered-column { font-style: italic; font-weight: bold; } .ux-filtered-column.sort-asc .x-grid3-sort-icon { background-image: url(../images/sort_filtered_asc.gif) !important; } .ux-filtered-column.sort-desc .x-grid3-sort-icon { background-image: url(../images/sort_filtered_desc.gif) !important; } .ux-gridfilter-text-icon { background-image: url(../images/find.png) !important; } /* Temporary Patch for Bug ??? */ .x-menu-list-item-indent .x-menu-item-icon { position: relative; top: 3px; left: 3px; margin-right: 10px; } li.x-menu-list-item-indent { padding-left:0px; } li.x-menu-list-item div { display: block; } /** * RangeMenu Styles **/ .ux-rangemenu-gt { background-image: url(../images/greater_than.png) !important; } .ux-rangemenu-lt { background-image: url(../images/less_than.png) !important; } .ux-rangemenu-eq { background-image: url(../images/equals.png) !important; } .x-grid3-summary-row { border-left:1px solid #fff; border-right:1px solid #fff; color:#333; background: #f1f2f4; } .x-grid3-summary-row .x-grid3-cell-inner { font-weight:bold; padding-bottom:4px; } .x-grid3-cell-first .x-grid3-cell-inner { padding-left:16px; } .x-grid-hide-summary .x-grid3-summary-row { display:none; } .x-grid3-summary-msg { padding:4px 16px; font-weight:bold; }.x-grouptabs-panel { background-color: #4E78B1; border: solid 15px #4E78B1; } .x-tab-panel-left .x-grouptabs-panel-header, .x-tab-panel-right .x-grouptabs-panel-header { float: left; border: 0; background: transparent; } .x-tab-panel-right .x-grouptabs-panel-header { float:right; } .x-tab-panel-left .x-grouptabs-bwrap { float: right; position: relative; } .x-tab-panel-right .x-grouptabs-bwrap { float: left; position: relative; } .x-tab-panel-left ul.x-grouptabs-strip, .x-tab-panel-right ul.x-grouptabs-strip { width: auto; display: block; } .x-tab-panel-left ul.x-grouptabs-strip li, .x-tab-panel-right ul.x-grouptabs-strip li { padding: 6px 0 2px 6px; float: none; margin: 0; position: relative; clear: both; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text, .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text{ font-size: 13px; line-height: 18px; cursor: pointer; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text{ padding-left: 18px; } .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-strip a.x-grouptabs-text{ padding-right: 18px; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text, .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text{ font-size: 12px; padding: 0; } .x-tab-panel-left .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text{ margin-left: 4px; } .x-tab-panel-right .x-tab-panel-header ul.x-grouptabs-sub a.x-grouptabs-text{ margin-right: 4px; } .x-grouptabs-panel .x-grouptabs-strip a.x-grouptabs-text{ overflow: hidden; white-space: nowrap; display: block; color: #DFE8F6; font-family: tahoma, arial, sans-serif; font-weight: bold; text-decoration: none; } .x-tab-panel-right .x-grouptabs-strip a.x-grouptabs-text { text-align: right; } .x-grouptabs-panel .x-grouptabs-strip-active a.x-grouptabs-text { color: #395B8E; } .x-grouptabs-panel ul.x-grouptabs-sub a.x-grouptabs-text { font-weight: normal; } .x-tab-joint { position: absolute; width: 3px; top: 1px; background: #fff; z-index: 8999; } .x-grouptabs-panel .x-grouptabs-panel-body { border: 1px solid #999; } .x-grouptabs-panel ul.x-grouptabs-strip li { border-top: 1px solid transparent; border-bottom: 1px solid transparent; border-left: 1px solid transparent; } .x-grouptabs-panel ul.x-grouptabs-strip li.x-grouptabs-strip-active { border: 0; background: #fff; border-top: 1px solid #999; border-bottom: 1px solid #999; } .x-tab-panel-left ul.x-grouptabs-strip li.x-grouptabs-strip-active { border-left: 1px solid #999; } .x-tab-panel-right ul.x-grouptabs-strip li.x-grouptabs-strip-active { border-right: 1px solid #999; } .x-grouptabs-panel li.x-grouptabs-strip-active ul.x-grouptabs-sub li.x-grouptabs-strip-active{ background-color: #EDEEF0; } .x-grouptabs-panel li.x-grouptabs-strip-active ul.x-grouptabs-sub { background-color: transparent; } .x-grouptabs-panel li.x-grouptabs-strip-active ul.x-grouptabs-sub li { border-color: transparent; } /* Tab corners */ .x-grouptabs-panel .x-grouptabs-corner { background-image: url('../images/x-grouptabs-corners.gif'); display: none; width: 11px; height: 11px; position: absolute; font-size: 1px; line-height: 6px; overflow: hidden; zoom:1; } .x-grouptabs-panel .x-grouptabs-strip-active .x-grouptabs-corner { display: block; } .x-grouptabs-panel .x-grouptabs-main.x-grouptabs-strip-active ul.x-grouptabs-sub .x-grouptabs-corner { display: none; } .x-grouptabs-panel .x-grouptabs-corner-top-left { background-position: top left; left: 0; top: 0; } .x-grouptabs-panel .x-grouptabs-corner-bottom-left { background-position: bottom left; left: 0; bottom: 0; } .x-grouptabs-panel .x-grouptabs-corner-top-right { background-position: top right; right: 0; top: 0; } .x-grouptabs-panel .x-grouptabs-corner-bottom-right { background-position: bottom right; right: 0; bottom: 0; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-bottom-left{ bottom: -4px; left: -4px; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-bottom-right{ bottom: -4px; right: -4px; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-top-left{ top: -4px; left: -4px; } .x-grouptabs-panel li.x-grouptabs-strip-active .x-grouptabs-corner-top-right{ top: -4px; right: -4px; } .x-grouptabs-panel ul.x-grouptabs-sub li.x-tab-with-icon a.x-grouptabs-text { background-repeat: no-repeat; padding-left: 20px; } /* General tab styling */ .x-grouptabs-panel .x-grouptabs-expand { background: transparent url('../images/elbow-plus-nl.gif') no-repeat; width: 16px; height: 16px; position: absolute; left: 7px; top: 6px; } .ext-ie6 .x-grouptabs-panel .x-grouptabs-expand, .ext-border-box .x-grouptabs-panel .x-grouptabs-expand { left: 0; } .x-grouptabs-expanded .x-grouptabs-expand { background-image: url('../images/elbow-minus-nl.gif'); } /* GroupTabs sub group styling */ .x-grouptabs-sub { display: none; margin-top: 4px; } .x-grouptabs-expanded .x-grouptabs-sub { display: block; } .x-grouptabs-panel ul.x-grouptabs-sub li { height: 18px; margin: 0 0 2px; padding: 0; } .x-grouptabs-panel ul.x-grouptabs-sub .x-grouptabs-main-item { display: none; } .x-tab-with-icon{ border-style:none !important; } .x-grid3-locked, .x-grid3-unlocked { overflow: hidden; position: absolute; } .x-grid3-locked { border-right: 1px solid #99BBE8; } .x-grid3-locked .x-grid3-scroller { overflow: hidden; } .x-grid3-locked .x-grid3-row { border-right: 0; } .x-grid3-scroll-spacer { height: 19px; } .x-grid3-unlocked .x-grid3-header-offset { padding-left: 0; } .x-grid3-unlocked .x-grid3-row { border-left: 0; } .ux-mselect{ overflow:auto; background:white; position:relative; /* for calculating scroll offsets */ zoom:1; overflow:auto; } .ux-mselect-item{ font:normal 12px tahoma, arial, helvetica, sans-serif; padding:2px; border:1px solid #fff; white-space: nowrap; cursor:pointer; } .ux-mselect-selected{ border:1px dotted #a3bae9 !important; background:#DFE8F6; cursor:pointer; } .x-view-drag-insert-above { border-top:1px dotted #3366cc; } .x-view-drag-insert-below { border-bottom:1px dotted #3366cc; } .ext-ie .ux-form-multiselect .x-fieldset legend { margin-bottom: 0; } .x-panel-resize { height:5px; background:transparent url(../images/panel-handle.gif) no-repeat center bottom; position:relative; left:0; top:2px; cursor:n-resize; cursor:row-resize; /* for IE */ font-size:1px; line-height:1px; overflow:hidden; }.x-portal .x-panel-dd-spacer { margin-bottom:10px; } .x-portlet { margin-bottom:10px; } /* Clean up the look of the portlets */ .x-portlet .x-panel-ml { padding-left:2px; } .x-portlet .x-panel-mr { padding-right:2px; } .x-portlet .x-panel-bl { padding-left:2px; } .x-portlet .x-panel-br { padding-right:2px; } .x-portlet .x-panel-body { background:white; } .x-portlet .x-panel-mc { padding-top:2px; } .x-portlet .x-panel-bc .x-panel-footer { padding-bottom:2px; } .x-portlet .x-panel-nofooter .x-panel-bc { height:2px; }.ext-ie .x-row-editor .x-form-text { margin:0 !important; } .x-row-editor-header { height:2px; overflow:hidden; background: transparent url(../images/row-editor-bg.gif) repeat-x 0 0; } .x-row-editor-footer { height:2px; overflow:hidden; background: transparent url(../images/row-editor-bg.gif) repeat-x 0 -2px; } .ext-ie .x-row-editor-footer { margin-top:-1px; } .x-row-editor-body { overflow:hidden; zoom:1; background: #ebf2fb; padding-top:2px; } .x-row-editor .x-btns { position:absolute; top:28px; left:20px; padding-left:5px; background: transparent url(../images/row-editor-btns.gif) no-repeat 0 0; } .x-row-editor .x-btns .x-plain-bwrap { padding-right:5px; background: transparent url(../images/row-editor-btns.gif) no-repeat right -31px; } .x-row-editor .x-btns .x-plain-body { background: transparent url(../images/row-editor-btns.gif) repeat-x 0 -62px; height:31px; } .x-row-editor .x-btns .x-table-layout-cell { padding:3px; } /* Fixes for IE6/7 trigger fields */ .ext-ie6 .x-row-editor .x-form-field-wrap .x-form-trigger, .ext-ie7 .x-row-editor .x-form-field-wrap .x-form-trigger { top: 1px; } .ext-ie6 .x-row-editor .x-form-field-trigger-wrap, .ext-ie7 .x-row-editor .x-form-field-trigger-wrap { margin-top: -1px; } .errorTip .x-tip-body ul{ list-style-type:disc; margin-left:15px; } .x-form-spinner-proxy{ /*background-color:#ff00cc;*/ } .x-form-field-wrap .x-form-spinner-trigger { background:transparent url('../images/spinner.gif') no-repeat 0 0; } .x-form-field-wrap .x-form-spinner-overup{ background-position:-17px 0; } .x-form-field-wrap .x-form-spinner-clickup{ background-position:-34px 0; } .x-form-field-wrap .x-form-spinner-overdown{ background-position:-51px 0; } .x-form-field-wrap .x-form-spinner-clickdown{ background-position:-68px 0; } .x-trigger-wrap-focus .x-form-spinner-trigger{ background-position:-85px 0; } .x-trigger-wrap-focus .x-form-spinner-overup{ background-position:-102px 0; } .x-trigger-wrap-focus .x-form-spinner-clickup{ background-position:-119px 0; } .x-trigger-wrap-focus .x-form-spinner-overdown{ background-position:-136px 0; } .x-trigger-wrap-focus .x-form-spinner-clickdown{ background-position:-153px 0; } .x-trigger-wrap-focus .x-form-trigger{ border-bottom: 1px solid #7eadd9; } .x-form-field-wrap .x-form-spinner-splitter { line-height:1px; font-size:1px; background:transparent url('../images/spinner-split.gif') no-repeat 0 0; position:absolute; cursor: n-resize; } .x-trigger-wrap-focus .x-form-spinner-splitter{ background-position:-14px 0; } /* StatusBar - structure */ .x-statusbar .x-status-text { cursor: default; /* height: 21px; line-height: 21px; padding: 0 4px; */ } .x-statusbar .x-status-busy { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } .x-toolbar div.xtb-text .x-statusbar .x-status-text-panel { border-top: 1px solid; border-right: 1px solid; border-bottom: 1px solid; border-left: 1px solid; padding: 2px 8px 2px 5px; } /* StatusBar word processor example styles */ #word-status .x-status-text-panel .spacer { width: 60px; font-size:0; line-height:0; } #word-status .x-status-busy { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } #word-status .x-status-saved { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } /* StatusBar form validation example styles */ .x-statusbar .x-status-error { cursor: pointer; padding-left: 25px !important; background: transparent no-repeat 3px 2px; } .x-statusbar .x-status-valid { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } .x-status-error-list { font: 11px tahoma,arial,verdana,sans-serif; position: absolute; z-index: 9999; border-top: 1px solid; border-right: 1px solid; border-bottom: 1px solid; border-left: 1px solid; padding: 5px 10px; } .x-status-error-list li { cursor: pointer; list-style: disc; margin-left: 10px; } .x-status-error-list li a { text-decoration: none; } .x-status-error-list li a:hover { text-decoration: underline; } /* *********************************************************** */ /* *********************************************************** */ /* *********************************************************** */ /* StatusBar - visual */ .x-statusbar .x-status-busy { background-image: url(../images/loading.gif); } .x-statusbar .x-status-text-panel { border-color: #99bbe8 #fff #fff #99bbe8; } /* StatusBar word processor example styles */ #word-status .x-status-text { color: #777; } #word-status .x-status-busy { background-image: url(../images/saving.gif); } #word-status .x-status-saved { background-image: url(../images/saved.png); } /* StatusBar form validation example styles */ .x-statusbar .x-status-error { color: #C33; background-image: url(../images/exclamation.gif); } .x-statusbar .x-status-valid { background-image: url(../images/accept.png); } .x-status-error-list { border-color: #C33; } .x-status-error-list li a { color: #15428B; }.x-treegrid-root-table { border-right: 1px solid; } .x-treegrid-root-node { overflow: auto; } .x-treegrid-hd-hidden { visibility: hidden; border: 0; width: 0; } .x-treegrid-col { border-bottom: 1px solid; height: 20px; overflow: hidden; vertical-align: top; -o-text-overflow: ellipsis; text-overflow: ellipsis; white-space: nowrap; } .x-treegrid-text { padding-left: 4px; -moz-user-select: none; -khtml-user-select: none; } .x-treegrid-resizer { border-left:1px solid; border-right:1px solid; position:absolute; left:0; top:0; } .x-treegrid-header-inner { overflow: hidden; } .x-treegrid-root-table, .x-treegrid-col { border-color: #ededed; } .x-treegrid-resizer { border-left-color:#555; border-right-color:#555; } ================================================ FILE: client/src/ext/ux/fileuploadfield/FileUploadField.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.FileUploadField * @extends Ext.form.TextField * Creates a file upload field. * @xtype fileuploadfield */ Ext.ux.form.FileUploadField = Ext.extend(Ext.form.TextField, { /** * @cfg {String} buttonText The button text to display on the upload button (defaults to * 'Browse...'). Note that if you supply a value for {@link #buttonCfg}, the buttonCfg.text * value will be used instead if available. */ buttonText: 'Browse...', /** * @cfg {Boolean} buttonOnly True to display the file upload field as a button with no visible * text field (defaults to false). If true, all inherited TextField members will still be available. */ buttonOnly: false, /** * @cfg {Number} buttonOffset The number of pixels of space reserved between the button and the text field * (defaults to 3). Note that this only applies if {@link #buttonOnly} = false. */ buttonOffset: 3, /** * @cfg {Object} buttonCfg A standard {@link Ext.Button} config object. */ // private readOnly: true, /** * @hide * @method autoSize */ autoSize: Ext.emptyFn, // private initComponent: function(){ Ext.ux.form.FileUploadField.superclass.initComponent.call(this); this.addEvents( /** * @event fileselected * Fires when the underlying file input field's value has changed from the user * selecting a new file from the system file selection dialog. * @param {Ext.ux.form.FileUploadField} this * @param {String} value The file value returned by the underlying file input field */ 'fileselected' ); }, // private onRender : function(ct, position){ Ext.ux.form.FileUploadField.superclass.onRender.call(this, ct, position); this.wrap = this.el.wrap({cls:'x-form-field-wrap x-form-file-wrap'}); this.el.addClass('x-form-file-text'); this.el.dom.removeAttribute('name'); this.createFileInput(); var btnCfg = Ext.applyIf(this.buttonCfg || {}, { text: this.buttonText }); this.button = new Ext.Button(Ext.apply(btnCfg, { renderTo: this.wrap, cls: 'x-form-file-btn' + (btnCfg.iconCls ? ' x-btn-icon' : '') })); if(this.buttonOnly){ this.el.hide(); this.wrap.setWidth(this.button.getEl().getWidth()); } this.bindListeners(); this.resizeEl = this.positionEl = this.wrap; }, bindListeners: function(){ this.fileInput.on({ scope: this, mouseenter: function() { this.button.addClass(['x-btn-over','x-btn-focus']) }, mouseleave: function(){ this.button.removeClass(['x-btn-over','x-btn-focus','x-btn-click']) }, mousedown: function(){ this.button.addClass('x-btn-click') }, mouseup: function(){ this.button.removeClass(['x-btn-over','x-btn-focus','x-btn-click']) }, change: function(){ var v = this.fileInput.dom.value; v = v.replace("C:\\fakepath\\",""); this.setValue(v); this.fireEvent('fileselected', this, v); } }); }, createFileInput : function() { this.fileInput = this.wrap.createChild({ id: this.getFileInputId(), name: this.name||this.getId(), cls: 'x-form-file', tag: 'input', type: 'file', size: 1 }); }, reset : function(){ if (this.rendered) { this.fileInput.remove(); this.createFileInput(); this.bindListeners(); } Ext.ux.form.FileUploadField.superclass.reset.call(this); }, // private getFileInputId: function(){ return this.id + '-file'; }, // private onResize : function(w, h){ Ext.ux.form.FileUploadField.superclass.onResize.call(this, w, h); this.wrap.setWidth(w); if(!this.buttonOnly){ var w = this.wrap.getWidth() - this.button.getEl().getWidth() - this.buttonOffset; this.el.setWidth(w); } }, // private onDestroy: function(){ Ext.ux.form.FileUploadField.superclass.onDestroy.call(this); Ext.destroy(this.fileInput, this.button, this.wrap); }, onDisable: function(){ Ext.ux.form.FileUploadField.superclass.onDisable.call(this); this.doDisable(true); }, onEnable: function(){ Ext.ux.form.FileUploadField.superclass.onEnable.call(this); this.doDisable(false); }, // private doDisable: function(disabled){ this.fileInput.dom.disabled = disabled; this.button.setDisabled(disabled); }, // private preFocus : Ext.emptyFn, // private alignErrorIcon : function(){ this.errorIcon.alignTo(this.wrap, 'tl-tr', [2, 0]); } }); Ext.reg('fileuploadfield', Ext.ux.form.FileUploadField); // backwards compat Ext.form.FileUploadField = Ext.ux.form.FileUploadField; ================================================ FILE: client/src/ext/ux/fileuploadfield/css/fileuploadfield.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* * FileUploadField component styles */ .x-form-file-wrap { position: relative; height: 22px; } .x-form-file-wrap .x-form-file { position: absolute; right: 0; -moz-opacity: 0; filter:alpha(opacity: 0); opacity: 0; z-index: 2; height: 22px; } .x-form-file-wrap .x-form-file-btn { position: absolute; right: 0; z-index: 1; } .x-form-file-wrap .x-form-file-text { position: absolute; left: 0; z-index: 3; color: #777; } ================================================ FILE: client/src/ext/ux/gridfilters/GridFilters.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.namespace('Ext.ux.grid'); /** * @class Ext.ux.grid.GridFilters * @extends Ext.util.Observable *

    GridFilter is a plugin (ptype='gridfilters') for grids that * allow for a slightly more robust representation of filtering than what is * provided by the default store.

    *

    Filtering is adjusted by the user using the grid's column header menu * (this menu can be disabled through configuration). Through this menu users * can configure, enable, and disable filters for each column.

    *

    Features:

    *
      *
    • Filtering implementations : *
      * Default filtering for Strings, Numeric Ranges, Date Ranges, Lists (which can * be backed by a Ext.data.Store), and Boolean. Additional custom filter types * and menus are easily created by extending Ext.ux.grid.filter.Filter. *
      • *
    • Graphical indicators : *
      * Columns that are filtered have {@link #filterCls a configurable css class} * applied to the column headers. *
      • *
    • Paging : *
      * If specified as a plugin to the grid's configured PagingToolbar, the current page * will be reset to page 1 whenever you update the filters. *
      • *
    • Automatic Reconfiguration : *
      * Filters automatically reconfigure when the grid 'reconfigure' event fires. *
      • *
    • Stateful : * Filter information will be persisted across page loads by specifying a * stateId in the Grid configuration. *
      * The filter collection binds to the * {@link Ext.grid.GridPanel#beforestaterestore beforestaterestore} * and {@link Ext.grid.GridPanel#beforestatesave beforestatesave} * events in order to be stateful. *
      • *
    • Grid Changes : *
        *
      • A filters property is added to the grid pointing to * this plugin.
        • *
      • A filterupdate event is added to the grid and is * fired upon onStateChange completion.
        • *
      • *
    • Server side code examples : *
      • *
    *

    Example usage:

    * 
    
var store = new Ext.data.GroupingStore({
    ...
});

var filters = new Ext.ux.grid.GridFilters({
    autoReload: false, //don't reload automatically
    local: true, //only filter locally
    // filters may be configured through the plugin,
    // or in the column definition within the column model configuration
    filters: [{
        type: 'numeric',
        dataIndex: 'id'
    }, {
        type: 'string',
        dataIndex: 'name'
    }, {
        type: 'numeric',
        dataIndex: 'price'
    }, {
        type: 'date',
        dataIndex: 'dateAdded'
    }, {
        type: 'list',
        dataIndex: 'size',
        options: ['extra small', 'small', 'medium', 'large', 'extra large'],
        phpMode: true
    }, {
        type: 'boolean',
        dataIndex: 'visible'
    }]
});
var cm = new Ext.grid.ColumnModel([{
    ...
}]);

var grid = new Ext.grid.GridPanel({
     ds: store,
     cm: cm,
     view: new Ext.grid.GroupingView(),
     plugins: [filters],
     height: 400,
     width: 700,
     bbar: new Ext.PagingToolbar({
         store: store,
         pageSize: 15,
         plugins: [filters] //reset page to page 1 if filters change
     })
 });

store.load({params: {start: 0, limit: 15}});

// a filters property is added to the grid
grid.filters
 *
    */ Ext.ux.grid.GridFilters = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} autoReload * Defaults to true, reloading the datasource when a filter change happens. * Set this to false to prevent the datastore from being reloaded if there * are changes to the filters. See {@link updateBuffer}. */ autoReload : true, /** * @cfg {Boolean} encode * Specify true for {@link #buildQuery} to use Ext.util.JSON.encode to * encode the filter query parameter sent with a remote request. * Defaults to false. */ /** * @cfg {Array} filters * An Array of filters config objects. Refer to each filter type class for * configuration details specific to each filter type. Filters for Strings, * Numeric Ranges, Date Ranges, Lists, and Boolean are the standard filters * available. */ /** * @cfg {String} filterCls * The css class to be applied to column headers with active filters. * Defaults to 'ux-filterd-column'. */ filterCls : 'ux-filtered-column', /** * @cfg {Boolean} local * true to use Ext.data.Store filter functions (local filtering) * instead of the default (false) server side filtering. */ local : false, /** * @cfg {String} menuFilterText * defaults to 'Filters'. */ menuFilterText : 'Filters', /** * @cfg {String} paramPrefix * The url parameter prefix for the filters. * Defaults to 'filter'. */ paramPrefix : 'filter', /** * @cfg {Boolean} showMenu * Defaults to true, including a filter submenu in the default header menu. */ showMenu : true, /** * @cfg {String} stateId * Name of the value to be used to store state information. */ stateId : undefined, /** * @cfg {Integer} updateBuffer * Number of milliseconds to defer store updates since the last filter change. */ updateBuffer : 500, /** @private */ constructor : function (config) { config = config || {}; this.deferredUpdate = new Ext.util.DelayedTask(this.reload, this); this.filters = new Ext.util.MixedCollection(); this.filters.getKey = function (o) { return o ? o.dataIndex : null; }; this.addFilters(config.filters); delete config.filters; Ext.apply(this, config); }, /** @private */ init : function (grid) { if (grid instanceof Ext.grid.GridPanel) { this.grid = grid; this.bindStore(this.grid.getStore(), true); // assumes no filters were passed in the constructor, so try and use ones from the colModel if(this.filters.getCount() == 0){ this.addFilters(this.grid.getColumnModel()); } this.grid.filters = this; this.grid.addEvents({'filterupdate': true}); grid.on({ scope: this, beforestaterestore: this.applyState, beforestatesave: this.saveState, beforedestroy: this.destroy, reconfigure: this.onReconfigure }); if (grid.rendered){ this.onRender(); } else { grid.on({ scope: this, single: true, render: this.onRender }); } } else if (grid instanceof Ext.PagingToolbar) { this.toolbar = grid; } }, /** * @private * Handler for the grid's beforestaterestore event (fires before the state of the * grid is restored). * @param {Object} grid The grid object * @param {Object} state The hash of state values returned from the StateProvider. */ applyState : function (grid, state) { var key, filter; this.applyingState = true; this.clearFilters(); if (state.filters) { for (key in state.filters) { filter = this.filters.get(key); if (filter) { filter.setValue(state.filters[key]); filter.setActive(true); } } } this.deferredUpdate.cancel(); if (this.local) { this.reload(); } delete this.applyingState; delete state.filters; }, /** * Saves the state of all active filters * @param {Object} grid * @param {Object} state * @return {Boolean} */ saveState : function (grid, state) { var filters = {}; this.filters.each(function (filter) { if (filter.active) { filters[filter.dataIndex] = filter.getValue(); } }); return (state.filters = filters); }, /** * @private * Handler called when the grid is rendered */ onRender : function () { this.grid.getView().on('refresh', this.onRefresh, this); this.createMenu(); }, /** * @private * Handler called by the grid 'beforedestroy' event */ destroy : function () { this.removeAll(); this.purgeListeners(); if(this.filterMenu){ Ext.menu.MenuMgr.unregister(this.filterMenu); this.filterMenu.destroy(); this.filterMenu = this.menu.menu = null; } }, /** * Remove all filters, permanently destroying them. */ removeAll : function () { if(this.filters){ Ext.destroy.apply(Ext, this.filters.items); // remove all items from the collection this.filters.clear(); } }, /** * Changes the data store bound to this view and refreshes it. * @param {Store} store The store to bind to this view */ bindStore : function(store, initial){ if(!initial && this.store){ if (this.local) { store.un('load', this.onLoad, this); } else { store.un('beforeload', this.onBeforeLoad, this); } } if(store){ if (this.local) { store.on('load', this.onLoad, this); } else { store.on('beforeload', this.onBeforeLoad, this); } } this.store = store; }, /** * @private * Handler called when the grid reconfigure event fires */ onReconfigure : function () { this.bindStore(this.grid.getStore()); this.store.clearFilter(); this.removeAll(); this.addFilters(this.grid.getColumnModel()); this.updateColumnHeadings(); }, createMenu : function () { var view = this.grid.getView(), hmenu = view.hmenu; if (this.showMenu && hmenu) { this.sep = hmenu.addSeparator(); this.filterMenu = new Ext.menu.Menu({ id: this.grid.id + '-filters-menu' }); this.menu = hmenu.add({ checked: false, itemId: 'filters', text: this.menuFilterText, menu: this.filterMenu }); this.menu.on({ scope: this, checkchange: this.onCheckChange, beforecheckchange: this.onBeforeCheck }); hmenu.on('beforeshow', this.onMenu, this); } this.updateColumnHeadings(); }, /** * @private * Get the filter menu from the filters MixedCollection based on the clicked header */ getMenuFilter : function () { var view = this.grid.getView(); if (!view || view.hdCtxIndex === undefined) { return null; } return this.filters.get( view.cm.config[view.hdCtxIndex].dataIndex ); }, /** * @private * Handler called by the grid's hmenu beforeshow event */ onMenu : function (filterMenu) { var filter = this.getMenuFilter(); if (filter) { /* TODO: lazy rendering if (!filter.menu) { filter.menu = filter.createMenu(); } */ this.menu.menu = filter.menu; this.menu.setChecked(filter.active, false); // disable the menu if filter.disabled explicitly set to true this.menu.setDisabled(filter.disabled === true); } this.menu.setVisible(filter !== undefined); this.sep.setVisible(filter !== undefined); }, /** @private */ onCheckChange : function (item, value) { this.getMenuFilter().setActive(value); }, /** @private */ onBeforeCheck : function (check, value) { return !value || this.getMenuFilter().isActivatable(); }, /** * @private * Handler for all events on filters. * @param {String} event Event name * @param {Object} filter Standard signature of the event before the event is fired */ onStateChange : function (event, filter) { if (event === 'serialize') { return; } if (filter == this.getMenuFilter()) { this.menu.setChecked(filter.active, false); } if ((this.autoReload || this.local) && !this.applyingState) { this.deferredUpdate.delay(this.updateBuffer); } this.updateColumnHeadings(); if (!this.applyingState) { this.grid.saveState(); } this.grid.fireEvent('filterupdate', this, filter); }, /** * @private * Handler for store's beforeload event when configured for remote filtering * @param {Object} store * @param {Object} options */ onBeforeLoad : function (store, options) { options.params = options.params || {}; this.cleanParams(options.params); var params = this.buildQuery(this.getFilterData()); Ext.apply(options.params, params); }, /** * @private * Handler for store's load event when configured for local filtering * @param {Object} store * @param {Object} options */ onLoad : function (store, options) { store.filterBy(this.getRecordFilter()); }, /** * @private * Handler called when the grid's view is refreshed */ onRefresh : function () { this.updateColumnHeadings(); }, /** * Update the styles for the header row based on the active filters */ updateColumnHeadings : function () { var view = this.grid.getView(), i, len, filter; if (view.mainHd) { for (i = 0, len = view.cm.config.length; i < len; i++) { filter = this.getFilter(view.cm.config[i].dataIndex); Ext.fly(view.getHeaderCell(i))[filter && filter.active ? 'addClass' : 'removeClass'](this.filterCls); } } }, /** @private */ reload : function () { if (this.local) { this.grid.store.clearFilter(true); this.grid.store.filterBy(this.getRecordFilter()); } else { var start, store = this.grid.store; this.deferredUpdate.cancel(); if (this.toolbar) { start = store.paramNames.start; if (store.lastOptions && store.lastOptions.params && store.lastOptions.params[start]) { store.lastOptions.params[start] = 0; } } store.reload(); } }, /** * Method factory that generates a record validator for the filters active at the time * of invokation. * @private */ getRecordFilter : function () { var f = [], len, i; this.filters.each(function (filter) { if (filter.active) { f.push(filter); } }); len = f.length; return function (record) { for (i = 0; i < len; i++) { if (!f[i].validateRecord(record)) { return false; } } return true; }; }, /** * Adds a filter to the collection and observes it for state change. * @param {Object/Ext.ux.grid.filter.Filter} config A filter configuration or a filter object. * @return {Ext.ux.grid.filter.Filter} The existing or newly created filter object. */ addFilter : function (config) { var Cls = this.getFilterClass(config.type), filter = config.menu ? config : (new Cls(config)); this.filters.add(filter); Ext.util.Observable.capture(filter, this.onStateChange, this); return filter; }, /** * Adds filters to the collection. * @param {Array/Ext.grid.ColumnModel} filters Either an Array of * filter configuration objects or an Ext.grid.ColumnModel. The columns * of a passed Ext.grid.ColumnModel will be examined for a filter * property and, if present, will be used as the filter configuration object. */ addFilters : function (filters) { if (filters) { var i, len, filter, cm = false, dI; if (filters instanceof Ext.grid.ColumnModel) { filters = filters.config; cm = true; } for (i = 0, len = filters.length; i < len; i++) { filter = false; if (cm) { dI = filters[i].dataIndex; filter = filters[i].filter || filters[i].filterable; if (filter){ filter = (filter === true) ? {} : filter; Ext.apply(filter, {dataIndex:dI}); // filter type is specified in order of preference: // filter type specified in config // type specified in store's field's type config filter.type = filter.type || this.store.fields.get(dI).type.type; } } else { filter = filters[i]; } // if filter config found add filter for the column if (filter) { this.addFilter(filter); } } } }, /** * Returns a filter for the given dataIndex, if one exists. * @param {String} dataIndex The dataIndex of the desired filter object. * @return {Ext.ux.grid.filter.Filter} */ getFilter : function (dataIndex) { return this.filters.get(dataIndex); }, /** * Turns all filters off. This does not clear the configuration information * (see {@link #removeAll}). */ clearFilters : function () { this.filters.each(function (filter) { filter.setActive(false); }); }, /** * Returns an Array of the currently active filters. * @return {Array} filters Array of the currently active filters. */ getFilterData : function () { var filters = [], i, len; this.filters.each(function (f) { if (f.active) { var d = [].concat(f.serialize()); for (i = 0, len = d.length; i < len; i++) { filters.push({ field: f.dataIndex, data: d[i] }); } } }); return filters; }, /** * Function to take the active filters data and build it into a query. * The format of the query depends on the {@link #encode} * configuration: *
      * *
    • false : Default *
      * Flatten into query string of the form (assuming {@link #paramPrefix}='filters': * 
      
filters[0][field]="someDataIndex"&
filters[0][data][comparison]="someValue1"&
filters[0][data][type]="someValue2"&
filters[0][data][value]="someValue3"&
     *
      *
      • *
    • true : *
      * JSON encode the filter data * 
      
filters[0][field]="someDataIndex"&
filters[0][data][comparison]="someValue1"&
filters[0][data][type]="someValue2"&
filters[0][data][value]="someValue3"&
     *
      *
      • *
    * Override this method to customize the format of the filter query for remote requests. * @param {Array} filters A collection of objects representing active filters and their configuration. * Each element will take the form of {field: dataIndex, data: filterConf}. dataIndex is not assured * to be unique as any one filter may be a composite of more basic filters for the same dataIndex. * @return {Object} Query keys and values */ buildQuery : function (filters) { var p = {}, i, f, root, dataPrefix, key, tmp, len = filters.length; if (!this.encode){ for (i = 0; i < len; i++) { f = filters[i]; root = [this.paramPrefix, '[', i, ']'].join(''); p[root + '[field]'] = f.field; dataPrefix = root + '[data]'; for (key in f.data) { p[[dataPrefix, '[', key, ']'].join('')] = f.data[key]; } } } else { tmp = []; for (i = 0; i < len; i++) { f = filters[i]; tmp.push(Ext.apply( {}, {field: f.field}, f.data )); } // only build if there is active filter if (tmp.length > 0){ p[this.paramPrefix] = Ext.util.JSON.encode(tmp); } } return p; }, /** * Removes filter related query parameters from the provided object. * @param {Object} p Query parameters that may contain filter related fields. */ cleanParams : function (p) { // if encoding just delete the property if (this.encode) { delete p[this.paramPrefix]; // otherwise scrub the object of filter data } else { var regex, key; regex = new RegExp('^' + this.paramPrefix + '\[[0-9]+\]'); for (key in p) { if (regex.test(key)) { delete p[key]; } } } }, /** * Function for locating filter classes, overwrite this with your favorite * loader to provide dynamic filter loading. * @param {String} type The type of filter to load ('Filter' is automatically * appended to the passed type; eg, 'string' becomes 'StringFilter'). * @return {Class} The Ext.ux.grid.filter.Class */ getFilterClass : function (type) { // map the supported Ext.data.Field type values into a supported filter switch(type) { case 'auto': type = 'string'; break; case 'int': case 'float': type = 'numeric'; break; case 'bool': type = 'boolean'; break; } return Ext.ux.grid.filter[type.substr(0, 1).toUpperCase() + type.substr(1) + 'Filter']; } }); // register ptype Ext.preg('gridfilters', Ext.ux.grid.GridFilters); ================================================ FILE: client/src/ext/ux/gridfilters/css/GridFilters.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * GridFilters Styles **/ /* .x-grid3-hd-row .ux-filtered-column { border-left: 1px solid #C7E3B4; border-right: 1px solid #C7E3B4; } .x-grid3-hd-row .ux-filtered-column .x-grid3-hd-inner { background-image: url(../images/header_bg.gif); } .ux-filtered-column .x-grid3-hd-btn { background-image: url(../images/hd-btn.gif); } */ .x-grid3-hd-row td.ux-filtered-column { font-style: italic; font-weight: bold; } .ux-filtered-column.sort-asc .x-grid3-sort-icon { background-image: url(../images/sort_filtered_asc.gif) !important; } .ux-filtered-column.sort-desc .x-grid3-sort-icon { background-image: url(../images/sort_filtered_desc.gif) !important; } .ux-gridfilter-text-icon { background-image: url(../images/find.png) !important; } /* Temporary Patch for Bug ??? */ .x-menu-list-item-indent .x-menu-item-icon { position: relative; top: 3px; left: 3px; margin-right: 10px; } li.x-menu-list-item-indent { padding-left:0px; } li.x-menu-list-item div { display: block; } ================================================ FILE: client/src/ext/ux/gridfilters/css/RangeMenu.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * RangeMenu Styles **/ .ux-rangemenu-gt { background-image: url(../images/greater_than.png) !important; } .ux-rangemenu-lt { background-image: url(../images/less_than.png) !important; } .ux-rangemenu-eq { background-image: url(../images/equals.png) !important; } ================================================ FILE: client/src/ext/ux/gridfilters/filter/BooleanFilter.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.grid.filter.BooleanFilter * @extends Ext.ux.grid.filter.Filter * Boolean filters use unique radio group IDs (so you can have more than one!) *

    Example Usage:

    * 
        
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        // required configs
        type: 'boolean',
        dataIndex: 'visible'

        // optional configs
        defaultValue: null, // leave unselected (false selected by default)
        yesText: 'Yes',     // default
        noText: 'No'        // default
    }]
});
 *
    */ Ext.ux.grid.filter.BooleanFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {Boolean} defaultValue * Set this to null if you do not want either option to be checked by default. Defaults to false. */ defaultValue : false, /** * @cfg {String} yesText * Defaults to 'Yes'. */ yesText : 'Yes', /** * @cfg {String} noText * Defaults to 'No'. */ noText : 'No', /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { var gId = Ext.id(); this.options = [ new Ext.menu.CheckItem({text: this.yesText, group: gId, checked: this.defaultValue === true}), new Ext.menu.CheckItem({text: this.noText, group: gId, checked: this.defaultValue === false})]; this.menu.add(this.options[0], this.options[1]); for(var i=0; iExample Usage:

    * 
        
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        // required configs
        type: 'date',
        dataIndex: 'dateAdded',
        
        // optional configs
        dateFormat: 'm/d/Y',  // default
        beforeText: 'Before', // default
        afterText: 'After',   // default
        onText: 'On',         // default
        pickerOpts: {
            // any DateMenu configs
        },

        active: true // default is false
    }]
});
 *
    */ Ext.ux.grid.filter.DateFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {String} afterText * Defaults to 'After'. */ afterText : 'After', /** * @cfg {String} beforeText * Defaults to 'Before'. */ beforeText : 'Before', /** * @cfg {Object} compareMap * Map for assigning the comparison values used in serialization. */ compareMap : { before: 'lt', after: 'gt', on: 'eq' }, /** * @cfg {String} dateFormat * The date format to return when using getValue. * Defaults to 'm/d/Y'. */ dateFormat : 'm/d/Y', /** * @cfg {Date} maxDate * Allowable date as passed to the Ext.DatePicker * Defaults to undefined. */ /** * @cfg {Date} minDate * Allowable date as passed to the Ext.DatePicker * Defaults to undefined. */ /** * @cfg {Array} menuItems * The items to be shown in this menu * Defaults to:
         * menuItems : ['before', 'after', '-', 'on'],
     *
    */ menuItems : ['before', 'after', '-', 'on'], /** * @cfg {Object} menuItemCfgs * Default configuration options for each menu item */ menuItemCfgs : { selectOnFocus: true, width: 125 }, /** * @cfg {String} onText * Defaults to 'On'. */ onText : 'On', /** * @cfg {Object} pickerOpts * Configuration options for the date picker associated with each field. */ pickerOpts : {}, /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { var menuCfg, i, len, item, cfg, Cls; menuCfg = Ext.apply(this.pickerOpts, { minDate: this.minDate, maxDate: this.maxDate, format: this.dateFormat, listeners: { scope: this, select: this.onMenuSelect } }); this.fields = {}; for (i = 0, len = this.menuItems.length; i < len; i++) { item = this.menuItems[i]; if (item !== '-') { cfg = { itemId: 'range-' + item, text: this[item + 'Text'], menu: new Ext.menu.DateMenu( Ext.apply(menuCfg, { itemId: item }) ), listeners: { scope: this, checkchange: this.onCheckChange } }; Cls = Ext.menu.CheckItem; item = this.fields[item] = new Cls(cfg); } //this.add(item); this.menu.add(item); } }, onCheckChange : function () { this.setActive(this.isActivatable()); this.fireEvent('update', this); }, /** * @private * Handler method called when there is a keyup event on an input * item of this menu. */ onInputKeyUp : function (field, e) { var k = e.getKey(); if (k == e.RETURN && field.isValid()) { e.stopEvent(); this.menu.hide(true); return; } }, /** * Handler for when the menu for a field fires the 'select' event * @param {Object} date * @param {Object} menuItem * @param {Object} value * @param {Object} picker */ onMenuSelect : function (menuItem, value, picker) { var fields = this.fields, field = this.fields[menuItem.itemId]; field.setChecked(true); if (field == fields.on) { fields.before.setChecked(false, true); fields.after.setChecked(false, true); } else { fields.on.setChecked(false, true); if (field == fields.after && fields.before.menu.picker.value < value) { fields.before.setChecked(false, true); } else if (field == fields.before && fields.after.menu.picker.value > value) { fields.after.setChecked(false, true); } } this.fireEvent('update', this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { var key, result = {}; for (key in this.fields) { if (this.fields[key].checked) { result[key] = this.fields[key].menu.picker.getValue(); } } return result; }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter * @param {Boolean} preserve true to preserve the checked status * of the other fields. Defaults to false, unchecking the * other fields */ setValue : function (value, preserve) { var key; for (key in this.fields) { if(value[key]){ this.fields[key].menu.picker.setValue(value[key]); this.fields[key].setChecked(true); } else if (!preserve) { this.fields[key].setChecked(false); } } this.fireEvent('update', this); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { var key; for (key in this.fields) { if (this.fields[key].checked) { return true; } } return false; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { var args = []; for (var key in this.fields) { if(this.fields[key].checked){ args.push({ type: 'date', comparison: this.compareMap[key], value: this.getFieldValue(key).format(this.dateFormat) }); } } return args; }, /** * Get and return the date menu picker value * @param {String} item The field identifier ('before', 'after', 'on') * @return {Date} Gets the current selected value of the date field */ getFieldValue : function(item){ return this.fields[item].menu.picker.getValue(); }, /** * Gets the menu picker associated with the passed field * @param {String} item The field identifier ('before', 'after', 'on') * @return {Object} The menu picker */ getPicker : function(item){ return this.fields[item].menu.picker; }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { var key, pickerValue, val = record.get(this.dataIndex); if(!Ext.isDate(val)){ return false; } val = val.clearTime(true).getTime(); for (key in this.fields) { if (this.fields[key].checked) { pickerValue = this.getFieldValue(key).clearTime(true).getTime(); if (key == 'before' && pickerValue <= val) { return false; } if (key == 'after' && pickerValue >= val) { return false; } if (key == 'on' && pickerValue != val) { return false; } } } return true; } }); ================================================ FILE: client/src/ext/ux/gridfilters/filter/Filter.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.namespace('Ext.ux.grid.filter'); /** * @class Ext.ux.grid.filter.Filter * @extends Ext.util.Observable * Abstract base class for filter implementations. */ Ext.ux.grid.filter.Filter = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} active * Indicates the initial status of the filter (defaults to false). */ active : false, /** * True if this filter is active. Use setActive() to alter after configuration. * @type Boolean * @property active */ /** * @cfg {String} dataIndex * The {@link Ext.data.Store} dataIndex of the field this filter represents. * The dataIndex does not actually have to exist in the store. */ dataIndex : null, /** * The filter configuration menu that will be installed into the filter submenu of a column menu. * @type Ext.menu.Menu * @property */ menu : null, /** * @cfg {Number} updateBuffer * Number of milliseconds to wait after user interaction to fire an update. Only supported * by filters: 'list', 'numeric', and 'string'. Defaults to 500. */ updateBuffer : 500, constructor : function (config) { Ext.apply(this, config); this.addEvents( /** * @event activate * Fires when an inactive filter becomes active * @param {Ext.ux.grid.filter.Filter} this */ 'activate', /** * @event deactivate * Fires when an active filter becomes inactive * @param {Ext.ux.grid.filter.Filter} this */ 'deactivate', /** * @event serialize * Fires after the serialization process. Use this to attach additional parameters to serialization * data before it is encoded and sent to the server. * @param {Array/Object} data A map or collection of maps representing the current filter configuration. * @param {Ext.ux.grid.filter.Filter} filter The filter being serialized. */ 'serialize', /** * @event update * Fires when a filter configuration has changed * @param {Ext.ux.grid.filter.Filter} this The filter object. */ 'update' ); Ext.ux.grid.filter.Filter.superclass.constructor.call(this); this.menu = new Ext.menu.Menu(); this.init(config); if(config && config.value){ this.setValue(config.value); this.setActive(config.active !== false, true); delete config.value; } }, /** * Destroys this filter by purging any event listeners, and removing any menus. */ destroy : function(){ if (this.menu){ this.menu.destroy(); } this.purgeListeners(); }, /** * Template method to be implemented by all subclasses that is to * initialize the filter and install required menu items. * Defaults to Ext.emptyFn. */ init : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * get and return the value of the filter. * Defaults to Ext.emptyFn. * @return {Object} The 'serialized' form of this filter * @methodOf Ext.ux.grid.filter.Filter */ getValue : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * set the value of the filter and fire the 'update' event. * Defaults to Ext.emptyFn. * @param {Object} data The value to set the filter * @methodOf Ext.ux.grid.filter.Filter */ setValue : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * return true if the filter has enough configuration information to be activated. * Defaults to return true. * @return {Boolean} */ isActivatable : function(){ return true; }, /** * Template method to be implemented by all subclasses that is to * get and return serialized filter data for transmission to the server. * Defaults to Ext.emptyFn. */ getSerialArgs : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * validates the provided Ext.data.Record against the filters configuration. * Defaults to return true. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function(){ return true; }, /** * Returns the serialized filter data for transmission to the server * and fires the 'serialize' event. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. * @methodOf Ext.ux.grid.filter.Filter */ serialize : function(){ var args = this.getSerialArgs(); this.fireEvent('serialize', args, this); return args; }, /** @private */ fireUpdate : function(){ if (this.active) { this.fireEvent('update', this); } this.setActive(this.isActivatable()); }, /** * Sets the status of the filter and fires the appropriate events. * @param {Boolean} active The new filter state. * @param {Boolean} suppressEvent True to prevent events from being fired. * @methodOf Ext.ux.grid.filter.Filter */ setActive : function(active, suppressEvent){ if(this.active != active){ this.active = active; if (suppressEvent !== true) { this.fireEvent(active ? 'activate' : 'deactivate', this); } } } }); ================================================ FILE: client/src/ext/ux/gridfilters/filter/ListFilter.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.grid.filter.ListFilter * @extends Ext.ux.grid.filter.Filter *

    List filters are able to be preloaded/backed by an Ext.data.Store to load * their options the first time they are shown. ListFilter utilizes the * {@link Ext.ux.menu.ListMenu} component.

    *

    Although not shown here, this class accepts all configuration options * for {@link Ext.ux.menu.ListMenu}.

    * *

    Example Usage:

    * 
        
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        type: 'list',
        dataIndex: 'size',
        phpMode: true,
        // options will be used as data to implicitly creates an ArrayStore
        options: ['extra small', 'small', 'medium', 'large', 'extra large']
    }]
});
 *
    * */ Ext.ux.grid.filter.ListFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {Array} options *

    data to be used to implicitly create a data store * to back this list when the data source is local. If the * data for the list is remote, use the {@link #store} * config instead.

    *

    Each item within the provided array may be in one of the * following formats:

    *
      *
    • Array : * 
      
options: [
    [11, 'extra small'], 
    [18, 'small'],
    [22, 'medium'],
    [35, 'large'],
    [44, 'extra large']
]
     *
      *
      • *
    • Object : * 
      
labelField: 'name', // override default of 'text'
options: [
    {id: 11, name:'extra small'}, 
    {id: 18, name:'small'}, 
    {id: 22, name:'medium'}, 
    {id: 35, name:'large'}, 
    {id: 44, name:'extra large'} 
]
     *
      *
      • *
    • String : * 
      
     * options: ['extra small', 'small', 'medium', 'large', 'extra large']
     *
      *
      • */ /** * @cfg {Boolean} phpMode *

      Adjust the format of this filter. Defaults to false.

      *

      When GridFilters @cfg encode = false (default):

      * 
      
// phpMode == false (default):
filter[0][data][type] list
filter[0][data][value] value1
filter[0][data][value] value2
filter[0][field] prod 

// phpMode == true:
filter[0][data][type] list
filter[0][data][value] value1, value2
filter[0][field] prod 
     *
      * When GridFilters @cfg encode = true: * 
      
// phpMode == false (default):
filter : [{"type":"list","value":["small","medium"],"field":"size"}]

// phpMode == true:
filter : [{"type":"list","value":"small,medium","field":"size"}]
     *
      */ phpMode : false, /** * @cfg {Ext.data.Store} store * The {@link Ext.data.Store} this list should use as its data source * when the data source is remote. If the data for the list * is local, use the {@link #options} config instead. */ /** * @private * Template method that is to initialize the filter and install required menu items. * @param {Object} config */ init : function (config) { this.dt = new Ext.util.DelayedTask(this.fireUpdate, this); // if a menu already existed, do clean up first if (this.menu){ this.menu.destroy(); } this.menu = new Ext.ux.menu.ListMenu(config); this.menu.on('checkchange', this.onCheckChange, this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { return this.menu.getSelected(); }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter */ setValue : function (value) { this.menu.setSelected(value); this.fireEvent('update', this); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { return this.getValue().length > 0; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { var args = {type: 'list', value: this.phpMode ? this.getValue().join(',') : this.getValue()}; return args; }, /** @private */ onCheckChange : function(){ this.dt.delay(this.updateBuffer); }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { return this.getValue().indexOf(record.get(this.dataIndex)) > -1; } }); ================================================ FILE: client/src/ext/ux/gridfilters/filter/NumericFilter.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.grid.filter.NumericFilter * @extends Ext.ux.grid.filter.Filter * Filters using an Ext.ux.menu.RangeMenu. *

      Example Usage:

      * 
          
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        type: 'numeric',
        dataIndex: 'price'
    }]
});
 *
      */ Ext.ux.grid.filter.NumericFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {Object} fieldCls * The Class to use to construct each field item within this menu * Defaults to:
           * fieldCls : Ext.form.NumberField
     *
      */ fieldCls : Ext.form.NumberField, /** * @cfg {Object} fieldCfg * The default configuration options for any field item unless superseded * by the {@link #fields} configuration. * Defaults to:
           * fieldCfg : {}
     *
      * Example usage: * 
      
fieldCfg : {
    width: 150,
},
     *
      */ /** * @cfg {Object} fields * The field items may be configured individually * Defaults to undefined. * Example usage: * 
      
fields : {
    gt: { // override fieldCfg options
        width: 200,
        fieldCls: Ext.ux.form.CustomNumberField // to override default {@link #fieldCls}
    }
},
     *
      */ /** * @cfg {Object} iconCls * The iconCls to be applied to each comparator field item. * Defaults to:
      iconCls : {
    gt : 'ux-rangemenu-gt',
    lt : 'ux-rangemenu-lt',
    eq : 'ux-rangemenu-eq'
}
     *
      */ iconCls : { gt : 'ux-rangemenu-gt', lt : 'ux-rangemenu-lt', eq : 'ux-rangemenu-eq' }, /** * @cfg {Object} menuItemCfgs * Default configuration options for each menu item * Defaults to:
      menuItemCfgs : {
    emptyText: 'Enter Filter Text...',
    selectOnFocus: true,
    width: 125
}
     *
      */ menuItemCfgs : { emptyText: 'Enter Filter Text...', selectOnFocus: true, width: 125 }, /** * @cfg {Array} menuItems * The items to be shown in this menu. Items are added to the menu * according to their position within this array. Defaults to:
           * menuItems : ['lt','gt','-','eq']
     *
      */ menuItems : ['lt', 'gt', '-', 'eq'], /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { // if a menu already existed, do clean up first if (this.menu){ this.menu.destroy(); } this.menu = new Ext.ux.menu.RangeMenu(Ext.apply(config, { // pass along filter configs to the menu fieldCfg : this.fieldCfg || {}, fieldCls : this.fieldCls, fields : this.fields || {}, iconCls: this.iconCls, menuItemCfgs: this.menuItemCfgs, menuItems: this.menuItems, updateBuffer: this.updateBuffer })); // relay the event fired by the menu this.menu.on('update', this.fireUpdate, this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { return this.menu.getValue(); }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter */ setValue : function (value) { this.menu.setValue(value); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { var values = this.getValue(); for (key in values) { if (values[key] !== undefined) { return true; } } return false; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { var key, args = [], values = this.menu.getValue(); for (key in values) { args.push({ type: 'numeric', comparison: key, value: values[key] }); } return args; }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { var val = record.get(this.dataIndex), values = this.getValue(); if (values.eq !== undefined && val != values.eq) { return false; } if (values.lt !== undefined && val >= values.lt) { return false; } if (values.gt !== undefined && val <= values.gt) { return false; } return true; } }); ================================================ FILE: client/src/ext/ux/gridfilters/filter/StringFilter.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.grid.filter.StringFilter * @extends Ext.ux.grid.filter.Filter * Filter by a configurable Ext.form.TextField *

      Example Usage:

      * 
          
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        // required configs
        type: 'string',
        dataIndex: 'name',
        
        // optional configs
        value: 'foo',
        active: true, // default is false
        iconCls: 'ux-gridfilter-text-icon' // default
        // any Ext.form.TextField configs accepted
    }]
});
 *
      */ Ext.ux.grid.filter.StringFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {String} iconCls * The iconCls to be applied to the menu item. * Defaults to 'ux-gridfilter-text-icon'. */ iconCls : 'ux-gridfilter-text-icon', emptyText: 'Enter Filter Text...', selectOnFocus: true, width: 125, /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { Ext.applyIf(config, { enableKeyEvents: true, iconCls: this.iconCls, listeners: { scope: this, keyup: this.onInputKeyUp } }); this.inputItem = new Ext.form.TextField(config); this.menu.add(this.inputItem); this.updateTask = new Ext.util.DelayedTask(this.fireUpdate, this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { return this.inputItem.getValue(); }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter */ setValue : function (value) { this.inputItem.setValue(value); this.fireEvent('update', this); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { return this.inputItem.getValue().length > 0; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { return {type: 'string', value: this.getValue()}; }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { var val = record.get(this.dataIndex); if(typeof val != 'string') { return (this.getValue().length === 0); } return val.toLowerCase().indexOf(this.getValue().toLowerCase()) > -1; }, /** * @private * Handler method called when there is a keyup event on this.inputItem */ onInputKeyUp : function (field, e) { var k = e.getKey(); if (k == e.RETURN && field.isValid()) { e.stopEvent(); this.menu.hide(true); return; } // restart the timer this.updateTask.delay(this.updateBuffer); } }); ================================================ FILE: client/src/ext/ux/gridfilters/menu/ListMenu.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.namespace('Ext.ux.menu'); /** * @class Ext.ux.menu.ListMenu * @extends Ext.menu.Menu * This is a supporting class for {@link Ext.ux.grid.filter.ListFilter}. * Although not listed as configuration options for this class, this class * also accepts all configuration options from {@link Ext.ux.grid.filter.ListFilter}. */ Ext.ux.menu.ListMenu = Ext.extend(Ext.menu.Menu, { /** * @cfg {String} labelField * Defaults to 'text'. */ labelField : 'text', /** * @cfg {String} paramPrefix * Defaults to 'Loading...'. */ loadingText : 'Loading...', /** * @cfg {Boolean} loadOnShow * Defaults to true. */ loadOnShow : true, /** * @cfg {Boolean} single * Specify true to group all items in this list into a single-select * radio button group. Defaults to false. */ single : false, constructor : function (cfg) { this.selected = []; this.addEvents( /** * @event checkchange * Fires when there is a change in checked items from this list * @param {Object} item Ext.menu.CheckItem * @param {Object} checked The checked value that was set */ 'checkchange' ); Ext.ux.menu.ListMenu.superclass.constructor.call(this, cfg = cfg || {}); if(!cfg.store && cfg.options){ var options = []; for(var i=0, len=cfg.options.length; i -1, hideOnClick: false}); item.itemId = records[i].id; item.on('checkchange', this.checkChange, this); this.add(item); } this.loaded = true; if (visible) { this.show(); } this.fireEvent('load', this, records); }, /** * Get the selected items. * @return {Array} selected */ getSelected : function () { return this.selected; }, /** @private */ setSelected : function (value) { value = this.selected = [].concat(value); if (this.loaded) { this.items.each(function(item){ item.setChecked(false, true); for (var i = 0, len = value.length; i < len; i++) { if (item.itemId == value[i]) { item.setChecked(true, true); } } }, this); } }, /** * Handler for the 'checkchange' event from an check item in this menu * @param {Object} item Ext.menu.CheckItem * @param {Object} checked The checked value that was set */ checkChange : function (item, checked) { var value = []; this.items.each(function(item){ if (item.checked) { value.push(item.itemId); } },this); this.selected = value; this.fireEvent('checkchange', item, checked); } }); ================================================ FILE: client/src/ext/ux/gridfilters/menu/RangeMenu.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.menu'); /** * @class Ext.ux.menu.RangeMenu * @extends Ext.menu.Menu * Custom implementation of Ext.menu.Menu that has preconfigured * items for gt, lt, eq. *

      Example Usage:

      * 
          

 *
      */ Ext.ux.menu.RangeMenu = Ext.extend(Ext.menu.Menu, { constructor : function (config) { Ext.ux.menu.RangeMenu.superclass.constructor.call(this, config); this.addEvents( /** * @event update * Fires when a filter configuration has changed * @param {Ext.ux.grid.filter.Filter} this The filter object. */ 'update' ); this.updateTask = new Ext.util.DelayedTask(this.fireUpdate, this); var i, len, item, cfg, Cls; for (i = 0, len = this.menuItems.length; i < len; i++) { item = this.menuItems[i]; if (item !== '-') { // defaults cfg = { itemId: 'range-' + item, enableKeyEvents: true, iconCls: this.iconCls[item] || 'no-icon', listeners: { scope: this, keyup: this.onInputKeyUp } }; Ext.apply( cfg, // custom configs Ext.applyIf(this.fields[item] || {}, this.fieldCfg[item]), // configurable defaults this.menuItemCfgs ); Cls = cfg.fieldCls || this.fieldCls; item = this.fields[item] = new Cls(cfg); } this.add(item); } }, /** * @private * called by this.updateTask */ fireUpdate : function () { this.fireEvent('update', this); }, /** * Get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { var result = {}, key, field; for (key in this.fields) { field = this.fields[key]; if (field.isValid() && String(field.getValue()).length > 0) { result[key] = field.getValue(); } } return result; }, /** * Set the value of this menu and fires the 'update' event. * @param {Object} data The data to assign to this menu */ setValue : function (data) { var key; for (key in this.fields) { this.fields[key].setValue(data[key] !== undefined ? data[key] : ''); } this.fireEvent('update', this); }, /** * @private * Handler method called when there is a keyup event on an input * item of this menu. */ onInputKeyUp : function (field, e) { var k = e.getKey(); if (k == e.RETURN && field.isValid()) { e.stopEvent(); this.hide(true); return; } if (field == this.fields.eq) { if (this.fields.gt) { this.fields.gt.setValue(null); } if (this.fields.lt) { this.fields.lt.setValue(null); } } else { this.fields.eq.setValue(null); } // restart the timer this.updateTask.delay(this.updateBuffer); } }); ================================================ FILE: client/src/ext/ux/statusbar/StatusBar.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.StatusBar *

      Basic status bar component that can be used as the bottom toolbar of any {@link Ext.Panel}. In addition to * supporting the standard {@link Ext.Toolbar} interface for adding buttons, menus and other items, the StatusBar * provides a greedy status element that can be aligned to either side and has convenient methods for setting the * status text and icon. You can also indicate that something is processing using the {@link #showBusy} method.

      * 
      
new Ext.Panel({
    title: 'StatusBar',
    // etc.
    bbar: new Ext.ux.StatusBar({
        id: 'my-status',

        // defaults to use when the status is cleared:
        defaultText: 'Default status text',
        defaultIconCls: 'default-icon',

        // values to set initially:
        text: 'Ready',
        iconCls: 'ready-icon',

        // any standard Toolbar items:
        items: [{
            text: 'A Button'
        }, '-', 'Plain Text']
    })
});

// Update the status bar later in code:
var sb = Ext.getCmp('my-status');
sb.setStatus({
    text: 'OK',
    iconCls: 'ok-icon',
    clear: true // auto-clear after a set interval
});

// Set the status bar to show that something is processing:
sb.showBusy();

// processing....

sb.clearStatus(); // once completeed
      * @extends Ext.Toolbar * @constructor * Creates a new StatusBar * @param {Object/Array} config A config object */ Ext.ux.StatusBar = Ext.extend(Ext.Toolbar, { /** * @cfg {String} statusAlign * The alignment of the status element within the overall StatusBar layout. When the StatusBar is rendered, * it creates an internal div containing the status text and icon. Any additional Toolbar items added in the * StatusBar's {@link #items} config, or added via {@link #add} or any of the supported add* methods, will be * rendered, in added order, to the opposite side. The status element is greedy, so it will automatically * expand to take up all sapce left over by any other items. Example usage: * 
      
// Create a left-aligned status bar containing a button,
// separator and text item that will be right-aligned (default):
new Ext.Panel({
    title: 'StatusBar',
    // etc.
    bbar: new Ext.ux.StatusBar({
        defaultText: 'Default status text',
        id: 'status-id',
        items: [{
            text: 'A Button'
        }, '-', 'Plain Text']
    })
});

// By adding the statusAlign config, this will create the
// exact same toolbar, except the status and toolbar item
// layout will be reversed from the previous example:
new Ext.Panel({
    title: 'StatusBar',
    // etc.
    bbar: new Ext.ux.StatusBar({
        defaultText: 'Default status text',
        id: 'status-id',
        statusAlign: 'right',
        items: [{
            text: 'A Button'
        }, '-', 'Plain Text']
    })
});
      */ /** * @cfg {String} defaultText * The default {@link #text} value. This will be used anytime the status bar is cleared with the * useDefaults:true option (defaults to ''). */ /** * @cfg {String} defaultIconCls * The default {@link #iconCls} value (see the iconCls docs for additional details about customizing the icon). * This will be used anytime the status bar is cleared with the useDefaults:true option (defaults to ''). */ /** * @cfg {String} text * A string that will be initially set as the status message. This string * will be set as innerHTML (html tags are accepted) for the toolbar item. * If not specified, the value set for {@link #defaultText} * will be used. */ /** * @cfg {String} iconCls * A CSS class that will be initially set as the status bar icon and is * expected to provide a background image (defaults to ''). * Example usage:
      
// Example CSS rule:
.x-statusbar .x-status-custom {
    padding-left: 25px;
    background: transparent url(images/custom-icon.gif) no-repeat 3px 2px;
}

// Setting a default icon:
var sb = new Ext.ux.StatusBar({
    defaultIconCls: 'x-status-custom'
});

// Changing the icon:
sb.setStatus({
    text: 'New status',
    iconCls: 'x-status-custom'
});
      */ /** * @cfg {String} cls * The base class applied to the containing element for this component on render (defaults to 'x-statusbar') */ cls : 'x-statusbar', /** * @cfg {String} busyIconCls * The default {@link #iconCls} applied when calling * {@link #showBusy} (defaults to 'x-status-busy'). * It can be overridden at any time by passing the iconCls * argument into {@link #showBusy}. */ busyIconCls : 'x-status-busy', /** * @cfg {String} busyText * The default {@link #text} applied when calling * {@link #showBusy} (defaults to 'Loading...'). * It can be overridden at any time by passing the text * argument into {@link #showBusy}. */ busyText : 'Loading...', /** * @cfg {Number} autoClear * The number of milliseconds to wait after setting the status via * {@link #setStatus} before automatically clearing the status * text and icon (defaults to 5000). Note that this only applies * when passing the clear argument to {@link #setStatus} * since that is the only way to defer clearing the status. This can * be overridden by specifying a different wait value in * {@link #setStatus}. Calls to {@link #clearStatus} * always clear the status bar immediately and ignore this value. */ autoClear : 5000, /** * @cfg {String} emptyText * The text string to use if no text has been set. Defaults to * ' '). If there are no other items in the toolbar using * an empty string ('') for this value would end up in the toolbar * height collapsing since the empty string will not maintain the toolbar * height. Use '' if the toolbar should collapse in height * vertically when no text is specified and there are no other items in * the toolbar. */ emptyText : ' ', // private activeThreadId : 0, // private initComponent : function(){ if(this.statusAlign=='right'){ this.cls += ' x-status-right'; } Ext.ux.StatusBar.superclass.initComponent.call(this); }, // private afterRender : function(){ Ext.ux.StatusBar.superclass.afterRender.call(this); var right = this.statusAlign == 'right'; this.currIconCls = this.iconCls || this.defaultIconCls; this.statusEl = new Ext.Toolbar.TextItem({ cls: 'x-status-text ' + (this.currIconCls || ''), text: this.text || this.defaultText || '' }); if(right){ this.add('->'); this.add(this.statusEl); }else{ this.insert(0, this.statusEl); this.insert(1, '->'); } this.doLayout(); }, /** * Sets the status {@link #text} and/or {@link #iconCls}. Also supports automatically clearing the * status that was set after a specified interval. * @param {Object/String} config A config object specifying what status to set, or a string assumed * to be the status text (and all other options are defaulted as explained below). A config * object containing any or all of the following properties can be passed:
        *
      • text {String} : (optional) The status text to display. If not specified, any current * status text will remain unchanged.
        • *
      • iconCls {String} : (optional) The CSS class used to customize the status icon (see * {@link #iconCls} for details). If not specified, any current iconCls will remain unchanged.
        • *
      • clear {Boolean/Number/Object} : (optional) Allows you to set an internal callback that will * automatically clear the status text and iconCls after a specified amount of time has passed. If clear is not * specified, the new status will not be auto-cleared and will stay until updated again or cleared using * {@link #clearStatus}. If true is passed, the status will be cleared using {@link #autoClear}, * {@link #defaultText} and {@link #defaultIconCls} via a fade out animation. If a numeric value is passed, * it will be used as the callback interval (in milliseconds), overriding the {@link #autoClear} value. * All other options will be defaulted as with the boolean option. To customize any other options, * you can pass an object in the format:
          *
        • wait {Number} : (optional) The number of milliseconds to wait before clearing * (defaults to {@link #autoClear}).
          • *
        • anim {Number} : (optional) False to clear the status immediately once the callback * executes (defaults to true which fades the status out).
          • *
        • useDefaults {Number} : (optional) False to completely clear the status text and iconCls * (defaults to true which uses {@link #defaultText} and {@link #defaultIconCls}).
          • *
      * Example usage:
      
// Simple call to update the text
statusBar.setStatus('New status');

// Set the status and icon, auto-clearing with default options:
statusBar.setStatus({
    text: 'New status',
    iconCls: 'x-status-custom',
    clear: true
});

// Auto-clear with custom options:
statusBar.setStatus({
    text: 'New status',
    iconCls: 'x-status-custom',
    clear: {
        wait: 8000,
        anim: false,
        useDefaults: false
    }
});
      * @return {Ext.ux.StatusBar} this */ setStatus : function(o){ o = o || {}; if(typeof o == 'string'){ o = {text:o}; } if(o.text !== undefined){ this.setText(o.text); } if(o.iconCls !== undefined){ this.setIcon(o.iconCls); } if(o.clear){ var c = o.clear, wait = this.autoClear, defaults = {useDefaults: true, anim: true}; if(typeof c == 'object'){ c = Ext.applyIf(c, defaults); if(c.wait){ wait = c.wait; } }else if(typeof c == 'number'){ wait = c; c = defaults; }else if(typeof c == 'boolean'){ c = defaults; } c.threadId = this.activeThreadId; this.clearStatus.defer(wait, this, [c]); } return this; }, /** * Clears the status {@link #text} and {@link #iconCls}. Also supports clearing via an optional fade out animation. * @param {Object} config (optional) A config object containing any or all of the following properties. If this * object is not specified the status will be cleared using the defaults below:
        *
      • anim {Boolean} : (optional) True to clear the status by fading out the status element (defaults * to false which clears immediately).
        • *
      • useDefaults {Boolean} : (optional) True to reset the text and icon using {@link #defaultText} and * {@link #defaultIconCls} (defaults to false which sets the text to '' and removes any existing icon class).
        • *
      * @return {Ext.ux.StatusBar} this */ clearStatus : function(o){ o = o || {}; if(o.threadId && o.threadId !== this.activeThreadId){ // this means the current call was made internally, but a newer // thread has set a message since this call was deferred. Since // we don't want to overwrite a newer message just ignore. return this; } var text = o.useDefaults ? this.defaultText : this.emptyText, iconCls = o.useDefaults ? (this.defaultIconCls ? this.defaultIconCls : '') : ''; if(o.anim){ // animate the statusEl Ext.Element this.statusEl.el.fadeOut({ remove: false, useDisplay: true, scope: this, callback: function(){ this.setStatus({ text: text, iconCls: iconCls }); this.statusEl.el.show(); } }); }else{ // hide/show the el to avoid jumpy text or icon this.statusEl.hide(); this.setStatus({ text: text, iconCls: iconCls }); this.statusEl.show(); } return this; }, /** * Convenience method for setting the status text directly. For more flexible options see {@link #setStatus}. * @param {String} text (optional) The text to set (defaults to '') * @return {Ext.ux.StatusBar} this */ setText : function(text){ this.activeThreadId++; this.text = text || ''; if(this.rendered){ this.statusEl.setText(this.text); } return this; }, /** * Returns the current status text. * @return {String} The status text */ getText : function(){ return this.text; }, /** * Convenience method for setting the status icon directly. For more flexible options see {@link #setStatus}. * See {@link #iconCls} for complete details about customizing the icon. * @param {String} iconCls (optional) The icon class to set (defaults to '', and any current icon class is removed) * @return {Ext.ux.StatusBar} this */ setIcon : function(cls){ this.activeThreadId++; cls = cls || ''; if(this.rendered){ if(this.currIconCls){ this.statusEl.removeClass(this.currIconCls); this.currIconCls = null; } if(cls.length > 0){ this.statusEl.addClass(cls); this.currIconCls = cls; } }else{ this.currIconCls = cls; } return this; }, /** * Convenience method for setting the status text and icon to special values that are pre-configured to indicate * a "busy" state, usually for loading or processing activities. * @param {Object/String} config (optional) A config object in the same format supported by {@link #setStatus}, or a * string to use as the status text (in which case all other options for setStatus will be defaulted). Use the * text and/or iconCls properties on the config to override the default {@link #busyText} * and {@link #busyIconCls} settings. If the config argument is not specified, {@link #busyText} and * {@link #busyIconCls} will be used in conjunction with all of the default options for {@link #setStatus}. * @return {Ext.ux.StatusBar} this */ showBusy : function(o){ if(typeof o == 'string'){ o = {text:o}; } o = Ext.applyIf(o || {}, { text: this.busyText, iconCls: this.busyIconCls }); return this.setStatus(o); } }); Ext.reg('statusbar', Ext.ux.StatusBar); ================================================ FILE: client/src/ext/ux/statusbar/ValidationStatus.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.ValidationStatus * A {@link Ext.StatusBar} plugin that provides automatic error notification when the * associated form contains validation errors. * @extends Ext.Component * @constructor * Creates a new ValiationStatus plugin * @param {Object} config A config object */ Ext.ux.ValidationStatus = Ext.extend(Ext.Component, { /** * @cfg {String} errorIconCls * The {@link #iconCls} value to be applied to the status message when there is a * validation error. Defaults to 'x-status-error'. */ errorIconCls : 'x-status-error', /** * @cfg {String} errorListCls * The css class to be used for the error list when there are validation errors. * Defaults to 'x-status-error-list'. */ errorListCls : 'x-status-error-list', /** * @cfg {String} validIconCls * The {@link #iconCls} value to be applied to the status message when the form * validates. Defaults to 'x-status-valid'. */ validIconCls : 'x-status-valid', /** * @cfg {String} showText * The {@link #text} value to be applied when there is a form validation error. * Defaults to 'The form has errors (click for details...)'. */ showText : 'The form has errors (click for details...)', /** * @cfg {String} showText * The {@link #text} value to display when the error list is displayed. * Defaults to 'Click again to hide the error list'. */ hideText : 'Click again to hide the error list', /** * @cfg {String} submitText * The {@link #text} value to be applied when the form is being submitted. * Defaults to 'Saving...'. */ submitText : 'Saving...', // private init : function(sb){ sb.on('render', function(){ this.statusBar = sb; this.monitor = true; this.errors = new Ext.util.MixedCollection(); this.listAlign = (sb.statusAlign=='right' ? 'br-tr?' : 'bl-tl?'); if(this.form){ this.form = Ext.getCmp(this.form).getForm(); this.startMonitoring(); this.form.on('beforeaction', function(f, action){ if(action.type == 'submit'){ // Ignore monitoring while submitting otherwise the field validation // events cause the status message to reset too early this.monitor = false; } }, this); var startMonitor = function(){ this.monitor = true; }; this.form.on('actioncomplete', startMonitor, this); this.form.on('actionfailed', startMonitor, this); } }, this, {single:true}); sb.on({ scope: this, afterlayout:{ single: true, fn: function(){ // Grab the statusEl after the first layout. sb.statusEl.getEl().on('click', this.onStatusClick, this, {buffer:200}); } }, beforedestroy:{ single: true, fn: this.onDestroy } }); }, // private startMonitoring : function(){ this.form.items.each(function(f){ f.on('invalid', this.onFieldValidation, this); f.on('valid', this.onFieldValidation, this); }, this); }, // private stopMonitoring : function(){ this.form.items.each(function(f){ f.un('invalid', this.onFieldValidation, this); f.un('valid', this.onFieldValidation, this); }, this); }, // private onDestroy : function(){ this.stopMonitoring(); this.statusBar.statusEl.un('click', this.onStatusClick, this); Ext.ux.ValidationStatus.superclass.onDestroy.call(this); }, // private onFieldValidation : function(f, msg){ if(!this.monitor){ return false; } if(msg){ this.errors.add(f.id, {field:f, msg:msg}); }else{ this.errors.removeKey(f.id); } this.updateErrorList(); if(this.errors.getCount() > 0){ if(this.statusBar.getText() != this.showText){ this.statusBar.setStatus({text:this.showText, iconCls:this.errorIconCls}); } }else{ this.statusBar.clearStatus().setIcon(this.validIconCls); } }, // private updateErrorList : function(){ if(this.errors.getCount() > 0){ var msg = '
        '; this.errors.each(function(err){ msg += ('
      • ' + err.msg + '
        • '); }, this); this.getMsgEl().update(msg+'
      '); }else{ this.getMsgEl().update(''); } }, // private getMsgEl : function(){ if(!this.msgEl){ this.msgEl = Ext.DomHelper.append(Ext.getBody(), { cls: this.errorListCls+' x-hide-offsets' }, true); this.msgEl.on('click', function(e){ var t = e.getTarget('li', 10, true); if(t){ Ext.getCmp(t.id.split('x-err-')[1]).focus(); this.hideErrors(); } }, this, {stopEvent:true}); // prevent anchor click navigation } return this.msgEl; }, // private showErrors : function(){ this.updateErrorList(); this.getMsgEl().alignTo(this.statusBar.getEl(), this.listAlign).slideIn('b', {duration:0.3, easing:'easeOut'}); this.statusBar.setText(this.hideText); this.form.getEl().on('click', this.hideErrors, this, {single:true}); // hide if the user clicks directly into the form }, // private hideErrors : function(){ var el = this.getMsgEl(); if(el.isVisible()){ el.slideOut('b', {duration:0.2, easing:'easeIn'}); this.statusBar.setText(this.showText); } this.form.getEl().un('click', this.hideErrors, this); }, // private onStatusClick : function(){ if(this.getMsgEl().isVisible()){ this.hideErrors(); }else if(this.errors.getCount() > 0){ this.showErrors(); } } }); ================================================ FILE: client/src/ext/ux/statusbar/css/statusbar.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /* StatusBar - structure */ .x-statusbar .x-status-text { cursor: default; /* height: 21px; line-height: 21px; padding: 0 4px; */ } .x-statusbar .x-status-busy { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } .x-toolbar div.xtb-text .x-statusbar .x-status-text-panel { border-top: 1px solid; border-right: 1px solid; border-bottom: 1px solid; border-left: 1px solid; padding: 2px 8px 2px 5px; } /* StatusBar word processor example styles */ #word-status .x-status-text-panel .spacer { width: 60px; font-size:0; line-height:0; } #word-status .x-status-busy { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } #word-status .x-status-saved { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } /* StatusBar form validation example styles */ .x-statusbar .x-status-error { cursor: pointer; padding-left: 25px !important; background: transparent no-repeat 3px 2px; } .x-statusbar .x-status-valid { padding-left: 25px !important; background: transparent no-repeat 3px 2px; } .x-status-error-list { font: 11px tahoma,arial,verdana,sans-serif; position: absolute; z-index: 9999; border-top: 1px solid; border-right: 1px solid; border-bottom: 1px solid; border-left: 1px solid; padding: 5px 10px; } .x-status-error-list li { cursor: pointer; list-style: disc; margin-left: 10px; } .x-status-error-list li a { text-decoration: none; } .x-status-error-list li a:hover { text-decoration: underline; } /* *********************************************************** */ /* *********************************************************** */ /* *********************************************************** */ /* StatusBar - visual */ .x-statusbar .x-status-busy { background-image: url(../images/loading.gif); } .x-statusbar .x-status-text-panel { border-color: #99bbe8 #fff #fff #99bbe8; } /* StatusBar word processor example styles */ #word-status .x-status-text { color: #777; } #word-status .x-status-busy { background-image: url(../images/saving.gif); } #word-status .x-status-saved { background-image: url(../images/saved.png); } /* StatusBar form validation example styles */ .x-statusbar .x-status-error { color: #C33; background-image: url(../images/exclamation.gif); } .x-statusbar .x-status-valid { background-image: url(../images/accept.png); } .x-status-error-list { border-color: #C33; } .x-status-error-list li a { color: #15428B; } ================================================ FILE: client/src/ext/ux/treegrid/TreeGrid.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.tree.TreeGrid * @extends Ext.tree.TreePanel * * @xtype treegrid */ Ext.ux.tree.TreeGrid = Ext.extend(Ext.tree.TreePanel, { rootVisible : false, useArrows : true, lines : false, borderWidth : Ext.isBorderBox ? 0 : 2, // the combined left/right border for each cell cls : 'x-treegrid', columnResize : true, enableSort : true, reserveScrollOffset : true, enableHdMenu : true, columnsText : 'Columns', initComponent : function() { if(!this.root) { this.root = new Ext.tree.AsyncTreeNode({text: 'Root'}); } // initialize the loader var l = this.loader; if(!l){ l = new Ext.ux.tree.TreeGridLoader({ dataUrl: this.dataUrl, requestMethod: this.requestMethod, store: this.store }); }else if(Ext.isObject(l) && !l.load){ l = new Ext.ux.tree.TreeGridLoader(l); } this.loader = l; Ext.ux.tree.TreeGrid.superclass.initComponent.call(this); this.initColumns(); if(this.enableSort) { this.treeGridSorter = new Ext.ux.tree.TreeGridSorter(this, this.enableSort); } if(this.columnResize){ this.colResizer = new Ext.tree.ColumnResizer(this.columnResize); this.colResizer.init(this); } var c = this.columns; if(!this.internalTpl){ this.internalTpl = new Ext.XTemplate( '
      ', '
      ', '
      ', '', '', '', '', '', '
      ', '
      ', this.enableHdMenu ? '' : '', '{header}', '
      ', '
      ', '
      ', '
      ', '
      ', '
      ', '
      ' ); } if(!this.colgroupTpl) { this.colgroupTpl = new Ext.XTemplate( '' ); } }, initColumns : function() { var cs = this.columns, len = cs.length, columns = [], i, c; for(i = 0; i < len; i++){ c = cs[i]; if(!c.isColumn) { c.xtype = c.xtype ? (/^tg/.test(c.xtype) ? c.xtype : 'tg' + c.xtype) : 'tgcolumn'; c = Ext.create(c); } c.init(this); columns.push(c); if(this.enableSort !== false && c.sortable !== false) { c.sortable = true; this.enableSort = true; } } this.columns = columns; }, onRender : function(){ Ext.tree.TreePanel.superclass.onRender.apply(this, arguments); this.el.addClass('x-treegrid'); this.outerCt = this.body.createChild({ cls:'x-tree-root-ct x-treegrid-ct ' + (this.useArrows ? 'x-tree-arrows' : this.lines ? 'x-tree-lines' : 'x-tree-no-lines') }); this.internalTpl.overwrite(this.outerCt, {columns: this.columns}); this.mainHd = Ext.get(this.outerCt.dom.firstChild); this.innerHd = Ext.get(this.mainHd.dom.firstChild); this.innerBody = Ext.get(this.outerCt.dom.lastChild); this.innerCt = Ext.get(this.innerBody.dom.firstChild); this.colgroupTpl.insertFirst(this.innerCt, {columns: this.columns}); if(this.hideHeaders){ this.el.child('.x-grid3-header').setDisplayed('none'); } else if(this.enableHdMenu !== false){ this.hmenu = new Ext.menu.Menu({id: this.id + '-hctx'}); if(this.enableColumnHide !== false){ this.colMenu = new Ext.menu.Menu({id: this.id + '-hcols-menu'}); this.colMenu.on({ scope: this, beforeshow: this.beforeColMenuShow, itemclick: this.handleHdMenuClick }); this.hmenu.add({ itemId:'columns', hideOnClick: false, text: this.columnsText, menu: this.colMenu, iconCls: 'x-cols-icon' }); } this.hmenu.on('itemclick', this.handleHdMenuClick, this); } }, setRootNode : function(node){ node.attributes.uiProvider = Ext.ux.tree.TreeGridRootNodeUI; node = Ext.ux.tree.TreeGrid.superclass.setRootNode.call(this, node); if(this.innerCt) { this.colgroupTpl.insertFirst(this.innerCt, {columns: this.columns}); } return node; }, clearInnerCt : function(){ if(Ext.isIE){ var dom = this.innerCt.dom; while(dom.firstChild){ dom.removeChild(dom.firstChild); } }else{ Ext.ux.tree.TreeGrid.superclass.clearInnerCt.call(this); } }, initEvents : function() { Ext.ux.tree.TreeGrid.superclass.initEvents.apply(this, arguments); this.mon(this.innerBody, 'scroll', this.syncScroll, this); this.mon(this.innerHd, 'click', this.handleHdDown, this); this.mon(this.mainHd, { scope: this, mouseover: this.handleHdOver, mouseout: this.handleHdOut }); }, onResize : function(w, h) { Ext.ux.tree.TreeGrid.superclass.onResize.apply(this, arguments); var bd = this.innerBody.dom; var hd = this.innerHd.dom; if(!bd){ return; } if(Ext.isNumber(h)){ bd.style.height = this.body.getHeight(true) - hd.offsetHeight + 'px'; } if(Ext.isNumber(w)){ var sw = Ext.num(this.scrollOffset, Ext.getScrollBarWidth()); if(this.reserveScrollOffset || ((bd.offsetWidth - bd.clientWidth) > 10)){ this.setScrollOffset(sw); }else{ var me = this; setTimeout(function(){ me.setScrollOffset(bd.offsetWidth - bd.clientWidth > 10 ? sw : 0); }, 10); } } }, updateColumnWidths : function() { var cols = this.columns, colCount = cols.length, groups = this.outerCt.query('colgroup'), groupCount = groups.length, c, g, i, j; for(i = 0; i 0 && this.columns[index]) { this.setColumnVisible(index, !item.checked); } } return true; }, setColumnVisible : function(index, visible) { this.columns[index].hidden = !visible; this.updateColumnWidths(); }, /** * Scrolls the grid to the top */ scrollToTop : function(){ this.innerBody.dom.scrollTop = 0; this.innerBody.dom.scrollLeft = 0; }, // private syncScroll : function(){ this.syncHeaderScroll(); var mb = this.innerBody.dom; this.fireEvent('bodyscroll', mb.scrollLeft, mb.scrollTop); }, // private syncHeaderScroll : function(){ var mb = this.innerBody.dom; this.innerHd.dom.scrollLeft = mb.scrollLeft; this.innerHd.dom.scrollLeft = mb.scrollLeft; // second time for IE (1/2 time first fails, other browsers ignore) }, registerNode : function(n) { Ext.ux.tree.TreeGrid.superclass.registerNode.call(this, n); if(!n.uiProvider && !n.isRoot && !n.ui.isTreeGridNodeUI) { n.ui = new Ext.ux.tree.TreeGridNodeUI(n); } } }); Ext.reg('treegrid', Ext.ux.tree.TreeGrid); ================================================ FILE: client/src/ext/ux/treegrid/TreeGridColumnResizer.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.tree.ColumnResizer * @extends Ext.util.Observable */ Ext.tree.ColumnResizer = Ext.extend(Ext.util.Observable, { /** * @cfg {Number} minWidth The minimum width the column can be dragged to. * Defaults to 14. */ minWidth: 14, constructor: function(config){ Ext.apply(this, config); Ext.tree.ColumnResizer.superclass.constructor.call(this); }, init : function(tree){ this.tree = tree; tree.on('render', this.initEvents, this); }, initEvents : function(tree){ tree.mon(tree.innerHd, 'mousemove', this.handleHdMove, this); this.tracker = new Ext.dd.DragTracker({ onBeforeStart: this.onBeforeStart.createDelegate(this), onStart: this.onStart.createDelegate(this), onDrag: this.onDrag.createDelegate(this), onEnd: this.onEnd.createDelegate(this), tolerance: 3, autoStart: 300 }); this.tracker.initEl(tree.innerHd); tree.on('beforedestroy', this.tracker.destroy, this.tracker); }, handleHdMove : function(e, t){ var hw = 5, x = e.getPageX(), hd = e.getTarget('.x-treegrid-hd', 3, true); if(hd){ var r = hd.getRegion(), ss = hd.dom.style, pn = hd.dom.parentNode; if(x - r.left <= hw && hd.dom !== pn.firstChild) { var ps = hd.dom.previousSibling; while(ps && Ext.fly(ps).hasClass('x-treegrid-hd-hidden')) { ps = ps.previousSibling; } if(ps) { this.activeHd = Ext.get(ps); ss.cursor = Ext.isWebKit ? 'e-resize' : 'col-resize'; } } else if(r.right - x <= hw) { var ns = hd.dom; while(ns && Ext.fly(ns).hasClass('x-treegrid-hd-hidden')) { ns = ns.previousSibling; } if(ns) { this.activeHd = Ext.get(ns); ss.cursor = Ext.isWebKit ? 'w-resize' : 'col-resize'; } } else{ delete this.activeHd; ss.cursor = ''; } } }, onBeforeStart : function(e){ this.dragHd = this.activeHd; return !!this.dragHd; }, onStart : function(e){ this.dragHeadersDisabled = this.tree.headersDisabled; this.tree.headersDisabled = true; this.proxy = this.tree.body.createChild({cls:'x-treegrid-resizer'}); this.proxy.setHeight(this.tree.body.getHeight()); var x = this.tracker.getXY()[0]; this.hdX = this.dragHd.getX(); this.hdIndex = this.tree.findHeaderIndex(this.dragHd); this.proxy.setX(this.hdX); this.proxy.setWidth(x-this.hdX); this.maxWidth = this.tree.outerCt.getWidth() - this.tree.innerBody.translatePoints(this.hdX).left; }, onDrag : function(e){ var cursorX = this.tracker.getXY()[0]; this.proxy.setWidth((cursorX-this.hdX).constrain(this.minWidth, this.maxWidth)); }, onEnd : function(e){ var nw = this.proxy.getWidth(), tree = this.tree, disabled = this.dragHeadersDisabled; this.proxy.remove(); delete this.dragHd; tree.columns[this.hdIndex].width = nw; tree.updateColumnWidths(); setTimeout(function(){ tree.headersDisabled = disabled; }, 100); } }); ================================================ FILE: client/src/ext/ux/treegrid/TreeGridColumns.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ (function() { Ext.override(Ext.list.Column, { init : function() { var types = Ext.data.Types, st = this.sortType; if(this.type){ if(Ext.isString(this.type)){ this.type = Ext.data.Types[this.type.toUpperCase()] || types.AUTO; } }else{ this.type = types.AUTO; } // named sortTypes are supported, here we look them up if(Ext.isString(st)){ this.sortType = Ext.data.SortTypes[st]; }else if(Ext.isEmpty(st)){ this.sortType = this.type.sortType; } } }); Ext.tree.Column = Ext.extend(Ext.list.Column, {}); Ext.tree.NumberColumn = Ext.extend(Ext.list.NumberColumn, {}); Ext.tree.DateColumn = Ext.extend(Ext.list.DateColumn, {}); Ext.tree.BooleanColumn = Ext.extend(Ext.list.BooleanColumn, {}); Ext.reg('tgcolumn', Ext.tree.Column); Ext.reg('tgnumbercolumn', Ext.tree.NumberColumn); Ext.reg('tgdatecolumn', Ext.tree.DateColumn); Ext.reg('tgbooleancolumn', Ext.tree.BooleanColumn); })(); ================================================ FILE: client/src/ext/ux/treegrid/TreeGridLoader.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.tree.TreeGridLoader * @extends Ext.tree.TreeLoader */ Ext.ux.tree.TreeGridLoader = Ext.extend(Ext.tree.TreeLoader, { createNode : function(attr) { if (!attr.uiProvider) { attr.uiProvider = Ext.ux.tree.TreeGridNodeUI; } return Ext.tree.TreeLoader.prototype.createNode.call(this, attr); } }); ================================================ FILE: client/src/ext/ux/treegrid/TreeGridNodeUI.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ /** * @class Ext.ux.tree.TreeGridNodeUI * @extends Ext.tree.TreeNodeUI */ Ext.ux.tree.TreeGridNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { isTreeGridNodeUI: true, renderElements : function(n, a, targetNode, bulkRender){ var t = n.getOwnerTree(), cols = t.columns, c = cols[0], i, buf, len; this.indentMarkup = n.parentNode ? n.parentNode.ui.getChildIndent() : ''; buf = [ '', '', '', '', this.indentMarkup, "", '', '', '', '', (c.tpl ? c.tpl.apply(a) : a[c.dataIndex] || c.text), '', '' ]; for(i = 1, len = cols.length; i < len; i++){ c = cols[i]; buf.push( '', '
      ', (c.tpl ? c.tpl.apply(a) : a[c.dataIndex]), '
      ', '' ); } buf.push( '', '' ); for(i = 0, len = cols.length; i'); } buf.push(''); if(bulkRender !== true && n.nextSibling && n.nextSibling.ui.getEl()){ this.wrap = Ext.DomHelper.insertHtml("beforeBegin", n.nextSibling.ui.getEl(), buf.join('')); }else{ this.wrap = Ext.DomHelper.insertHtml("beforeEnd", targetNode, buf.join('')); } this.elNode = this.wrap.childNodes[0]; this.ctNode = this.wrap.childNodes[1].firstChild.firstChild; var cs = this.elNode.firstChild.childNodes; this.indentNode = cs[0]; this.ecNode = cs[1]; this.iconNode = cs[2]; this.anchor = cs[3]; this.textNode = cs[3].firstChild; }, // private animExpand : function(cb){ this.ctNode.style.display = ""; Ext.ux.tree.TreeGridNodeUI.superclass.animExpand.call(this, cb); } }); Ext.ux.tree.TreeGridRootNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { isTreeGridNodeUI: true, // private render : function(){ if(!this.rendered){ this.wrap = this.ctNode = this.node.ownerTree.innerCt.dom; this.node.expanded = true; } if(Ext.isWebKit) { // weird table-layout: fixed issue in webkit var ct = this.ctNode; ct.style.tableLayout = null; (function() { ct.style.tableLayout = 'fixed'; }).defer(1); } }, destroy : function(){ if(this.elNode){ Ext.dd.Registry.unregister(this.elNode.id); } delete this.node; }, collapse : Ext.emptyFn, expand : Ext.emptyFn }); ================================================ FILE: client/src/ext/ux/treegrid/TreeGridSorter.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.tree'); /** * @class Ext.ux.tree.TreeGridSorter * @extends Ext.tree.TreeSorter * Provides sorting of nodes in a {@link Ext.ux.tree.TreeGrid}. The TreeGridSorter automatically monitors events on the * associated TreeGrid that might affect the tree's sort order (beforechildrenrendered, append, insert and textchange). * Example usage:
      * 
      
 new Ext.ux.tree.TreeGridSorter(myTreeGrid, {
     folderSort: true,
     dir: "desc",
     sortType: function(node) {
         // sort by a custom, typed attribute:
         return parseInt(node.id, 10);
     }
 });
      * @constructor * @param {TreeGrid} tree * @param {Object} config */ Ext.ux.tree.TreeGridSorter = Ext.extend(Ext.tree.TreeSorter, { /** * @cfg {Array} sortClasses The CSS classes applied to a header when it is sorted. (defaults to ['sort-asc', 'sort-desc']) */ sortClasses : ['sort-asc', 'sort-desc'], /** * @cfg {String} sortAscText The text displayed in the 'Sort Ascending' menu item (defaults to 'Sort Ascending') */ sortAscText : 'Sort Ascending', /** * @cfg {String} sortDescText The text displayed in the 'Sort Descending' menu item (defaults to 'Sort Descending') */ sortDescText : 'Sort Descending', constructor : function(tree, config) { if(!Ext.isObject(config)) { config = { property: tree.columns[0].dataIndex || 'text', folderSort: true } } Ext.ux.tree.TreeGridSorter.superclass.constructor.apply(this, arguments); this.tree = tree; tree.on('headerclick', this.onHeaderClick, this); tree.ddAppendOnly = true; var me = this; this.defaultSortFn = function(n1, n2){ var desc = me.dir && me.dir.toLowerCase() == 'desc', prop = me.property || 'text', sortType = me.sortType, caseSensitive = me.caseSensitive === true, leafAttr = me.leafAttr || 'leaf', attr1 = n1.attributes, attr2 = n2.attributes; if(me.folderSort){ if(attr1[leafAttr] && !attr2[leafAttr]){ return 1; } if(!attr1[leafAttr] && attr2[leafAttr]){ return -1; } } var prop1 = attr1[prop], prop2 = attr2[prop], v1 = sortType ? sortType(prop1) : (caseSensitive ? prop1 : prop1.toUpperCase()); v2 = sortType ? sortType(prop2) : (caseSensitive ? prop2 : prop2.toUpperCase()); if(v1 < v2){ return desc ? +1 : -1; }else if(v1 > v2){ return desc ? -1 : +1; }else{ return 0; } }; tree.on('afterrender', this.onAfterTreeRender, this, {single: true}); tree.on('headermenuclick', this.onHeaderMenuClick, this); }, onAfterTreeRender : function() { if(this.tree.hmenu){ this.tree.hmenu.insert(0, {itemId:'asc', text: this.sortAscText, cls: 'xg-hmenu-sort-asc'}, {itemId:'desc', text: this.sortDescText, cls: 'xg-hmenu-sort-desc'} ); } this.updateSortIcon(0, 'asc'); }, onHeaderMenuClick : function(c, id, index) { if(id === 'asc' || id === 'desc') { this.onHeaderClick(c, null, index); return false; } }, onHeaderClick : function(c, el, i) { if(c && !this.tree.headersDisabled){ var me = this; me.property = c.dataIndex; me.dir = c.dir = (c.dir === 'desc' ? 'asc' : 'desc'); me.sortType = c.sortType; me.caseSensitive === Ext.isBoolean(c.caseSensitive) ? c.caseSensitive : this.caseSensitive; me.sortFn = c.sortFn || this.defaultSortFn; this.tree.root.cascade(function(n) { if(!n.isLeaf()) { me.updateSort(me.tree, n); } }); this.updateSortIcon(i, c.dir); } }, // private updateSortIcon : function(col, dir){ var sc = this.sortClasses, hds = this.tree.innerHd.select('td').removeClass(sc); hds.item(col).addClass(sc[dir == 'desc' ? 1 : 0]); } }); ================================================ FILE: client/src/ext/ux/treegrid/treegrid.css ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ .x-treegrid-root-table { border-right: 1px solid; } .x-treegrid-root-node { overflow: auto; } .x-treegrid-hd-hidden { visibility: hidden; border: 0; width: 0; } .x-treegrid-col { border-bottom: 1px solid; height: 20px; overflow: hidden; vertical-align: top; -o-text-overflow: ellipsis; text-overflow: ellipsis; white-space: nowrap; } .x-treegrid-text { padding-left: 4px; -moz-user-select: none; -khtml-user-select: none; } .x-treegrid-resizer { border-left:1px solid; border-right:1px solid; position:absolute; left:0; top:0; } .x-treegrid-header-inner { overflow: hidden; } .x-treegrid-root-table, .x-treegrid-col { border-color: #ededed; } .x-treegrid-resizer { border-left-color:#555; border-right-color:#555; } ================================================ FILE: client/src/ext/ux/ux-all-debug.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.BufferView * @extends Ext.grid.GridView * A custom GridView which renders rows on an as-needed basis. */ Ext.ux.grid.BufferView = Ext.extend(Ext.grid.GridView, { /** * @cfg {Number} rowHeight * The height of a row in the grid. */ rowHeight: 19, /** * @cfg {Number} borderHeight * The combined height of border-top and border-bottom of a row. */ borderHeight: 2, /** * @cfg {Boolean/Number} scrollDelay * The number of milliseconds before rendering rows out of the visible * viewing area. Defaults to 100. Rows will render immediately with a config * of false. */ scrollDelay: 100, /** * @cfg {Number} cacheSize * The number of rows to look forward and backwards from the currently viewable * area. The cache applies only to rows that have been rendered already. */ cacheSize: 20, /** * @cfg {Number} cleanDelay * The number of milliseconds to buffer cleaning of extra rows not in the * cache. */ cleanDelay: 500, initTemplates : function(){ Ext.ux.grid.BufferView.superclass.initTemplates.call(this); var ts = this.templates; // empty div to act as a place holder for a row ts.rowHolder = new Ext.Template( '
      ' ); ts.rowHolder.disableFormats = true; ts.rowHolder.compile(); ts.rowBody = new Ext.Template( '', '{cells}', (this.enableRowBody ? '' : ''), '
      {body}
      ' ); ts.rowBody.disableFormats = true; ts.rowBody.compile(); }, getStyleRowHeight : function(){ return Ext.isBorderBox ? (this.rowHeight + this.borderHeight) : this.rowHeight; }, getCalculatedRowHeight : function(){ return this.rowHeight + this.borderHeight; }, getVisibleRowCount : function(){ var rh = this.getCalculatedRowHeight(), visibleHeight = this.scroller.dom.clientHeight; return (visibleHeight < 1) ? 0 : Math.ceil(visibleHeight / rh); }, getVisibleRows: function(){ var count = this.getVisibleRowCount(), sc = this.scroller.dom.scrollTop, start = (sc === 0 ? 0 : Math.floor(sc/this.getCalculatedRowHeight())-1); return { first: Math.max(start, 0), last: Math.min(start + count + 2, this.ds.getCount()-1) }; }, doRender : function(cs, rs, ds, startRow, colCount, stripe, onlyBody){ var ts = this.templates, ct = ts.cell, rt = ts.row, rb = ts.rowBody, last = colCount-1, rh = this.getStyleRowHeight(), vr = this.getVisibleRows(), tstyle = 'width:'+this.getTotalWidth()+';height:'+rh+'px;', // buffers buf = [], cb, c, p = {}, rp = {tstyle: tstyle}, r; for (var j = 0, len = rs.length; j < len; j++) { r = rs[j]; cb = []; var rowIndex = (j+startRow), visible = rowIndex >= vr.first && rowIndex <= vr.last; if (visible) { for (var i = 0; i < colCount; i++) { c = cs[i]; p.id = c.id; p.css = i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); p.attr = p.cellAttr = ""; p.value = c.renderer(r.data[c.name], p, r, rowIndex, i, ds); p.style = c.style; if (p.value === undefined || p.value === "") { p.value = " "; } if (r.dirty && typeof r.modified[c.name] !== 'undefined') { p.css += ' x-grid3-dirty-cell'; } cb[cb.length] = ct.apply(p); } } var alt = []; if(stripe && ((rowIndex+1) % 2 === 0)){ alt[0] = "x-grid3-row-alt"; } if(r.dirty){ alt[1] = " x-grid3-dirty-row"; } rp.cols = colCount; if(this.getRowClass){ alt[2] = this.getRowClass(r, rowIndex, rp, ds); } rp.alt = alt.join(" "); rp.cells = cb.join(""); buf[buf.length] = !visible ? ts.rowHolder.apply(rp) : (onlyBody ? rb.apply(rp) : rt.apply(rp)); } return buf.join(""); }, isRowRendered: function(index){ var row = this.getRow(index); return row && row.childNodes.length > 0; }, syncScroll: function(){ Ext.ux.grid.BufferView.superclass.syncScroll.apply(this, arguments); this.update(); }, // a (optionally) buffered method to update contents of gridview update: function(){ if (this.scrollDelay) { if (!this.renderTask) { this.renderTask = new Ext.util.DelayedTask(this.doUpdate, this); } this.renderTask.delay(this.scrollDelay); }else{ this.doUpdate(); } }, onRemove : function(ds, record, index, isUpdate){ Ext.ux.grid.BufferView.superclass.onRemove.apply(this, arguments); if(isUpdate !== true){ this.update(); } }, doUpdate: function(){ if (this.getVisibleRowCount() > 0) { var g = this.grid, cm = g.colModel, ds = g.store, cs = this.getColumnData(), vr = this.getVisibleRows(), row; for (var i = vr.first; i <= vr.last; i++) { // if row is NOT rendered and is visible, render it if(!this.isRowRendered(i) && (row = this.getRow(i))){ var html = this.doRender(cs, [ds.getAt(i)], ds, i, cm.getColumnCount(), g.stripeRows, true); row.innerHTML = html; } } this.clean(); } }, // a buffered method to clean rows clean : function(){ if(!this.cleanTask){ this.cleanTask = new Ext.util.DelayedTask(this.doClean, this); } this.cleanTask.delay(this.cleanDelay); }, doClean: function(){ if (this.getVisibleRowCount() > 0) { var vr = this.getVisibleRows(); vr.first -= this.cacheSize; vr.last += this.cacheSize; var i = 0, rows = this.getRows(); // if first is less than 0, all rows have been rendered // so lets clean the end... if(vr.first <= 0){ i = vr.last + 1; } for(var len = this.ds.getCount(); i < len; i++){ // if current row is outside of first and last and // has content, update the innerHTML to nothing if ((i < vr.first || i > vr.last) && rows[i].innerHTML) { rows[i].innerHTML = ''; } } } }, removeTask: function(name){ var task = this[name]; if(task && task.cancel){ task.cancel(); this[name] = null; } }, destroy : function(){ this.removeTask('cleanTask'); this.removeTask('renderTask'); Ext.ux.grid.BufferView.superclass.destroy.call(this); }, layout: function(){ Ext.ux.grid.BufferView.superclass.layout.call(this); this.update(); } });// We are adding these custom layouts to a namespace that does not // exist by default in Ext, so we have to add the namespace first: Ext.ns('Ext.ux.layout'); /** * @class Ext.ux.layout.CenterLayout * @extends Ext.layout.FitLayout *

      This is a very simple layout style used to center contents within a container. This layout works within * nested containers and can also be used as expected as a Viewport layout to center the page layout.

      *

      As a subclass of FitLayout, CenterLayout expects to have a single child panel of the container that uses * the layout. The layout does not require any config options, although the child panel contained within the * layout must provide a fixed or percentage width. The child panel's height will fit to the container by * default, but you can specify autoHeight:true to allow it to autosize based on its content height. * Example usage:

      * 
      
// The content panel is centered in the container
var p = new Ext.Panel({
    title: 'Center Layout',
    layout: 'ux.center',
    items: [{
        title: 'Centered Content',
        width: '75%',
        html: 'Some content'
    }]
});

// If you leave the title blank and specify no border
// you'll create a non-visual, structural panel just
// for centering the contents in the main container.
var p = new Ext.Panel({
    layout: 'ux.center',
    border: false,
    items: [{
        title: 'Centered Content',
        width: 300,
        autoHeight: true,
        html: 'Some content'
    }]
});
      */ Ext.ux.layout.CenterLayout = Ext.extend(Ext.layout.FitLayout, { // private setItemSize : function(item, size){ this.container.addClass('ux-layout-center'); item.addClass('ux-layout-center-item'); if(item && size.height > 0){ if(item.width){ size.width = item.width; } item.setSize(size); } } }); Ext.Container.LAYOUTS['ux.center'] = Ext.ux.layout.CenterLayout; Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.CheckColumn * @extends Ext.grid.Column *

      A Column subclass which renders a checkbox in each column cell which toggles the truthiness of the associated data field on click.

      *

      Note. As of ExtJS 3.3 this no longer has to be configured as a plugin of the GridPanel.

      *

      Example usage:

      * 
      
var cm = new Ext.grid.ColumnModel([{
       header: 'Foo',
       ...
    },{
       xtype: 'checkcolumn',
       header: 'Indoor?',
       dataIndex: 'indoor',
       width: 55
    }
]);

// create the grid
var grid = new Ext.grid.EditorGridPanel({
    ...
    colModel: cm,
    ...
});
 *
      * In addition to toggling a Boolean value within the record data, this * class toggles a css class between 'x-grid3-check-col' and * 'x-grid3-check-col-on' to alter the background image used for * a column. */ Ext.ux.grid.CheckColumn = Ext.extend(Ext.grid.Column, { /** * @private * Process and refire events routed from the GridView's processEvent method. */ processEvent : function(name, e, grid, rowIndex, colIndex){ if (name == 'mousedown') { var record = grid.store.getAt(rowIndex); record.set(this.dataIndex, !record.data[this.dataIndex]); return false; // Cancel row selection. } else { return Ext.grid.ActionColumn.superclass.processEvent.apply(this, arguments); } }, renderer : function(v, p, record){ p.css += ' x-grid3-check-col-td'; return String.format('
       
      ', v ? '-on' : ''); }, // Deprecate use as a plugin. Remove in 4.0 init: Ext.emptyFn }); // register ptype. Deprecate. Remove in 4.0 Ext.preg('checkcolumn', Ext.ux.grid.CheckColumn); // backwards compat. Remove in 4.0 Ext.grid.CheckColumn = Ext.ux.grid.CheckColumn; // register Column xtype Ext.grid.Column.types.checkcolumn = Ext.ux.grid.CheckColumn;Ext.ns('Ext.ux.grid'); Ext.ux.grid.ColumnHeaderGroup = Ext.extend(Ext.util.Observable, { constructor: function(config){ this.config = config; }, init: function(grid){ Ext.applyIf(grid.colModel, this.config); Ext.apply(grid.getView(), this.viewConfig); }, viewConfig: { initTemplates: function(){ this.constructor.prototype.initTemplates.apply(this, arguments); var ts = this.templates || {}; if(!ts.gcell){ ts.gcell = new Ext.XTemplate('', '
      ', this.grid.enableHdMenu ? '' : '', '{value}
      '); } this.templates = ts; this.hrowRe = new RegExp("ux-grid-hd-group-row-(\\d+)", ""); }, renderHeaders: function(){ var ts = this.templates, headers = [], cm = this.cm, rows = cm.rows, tstyle = 'width:' + this.getTotalWidth() + ';'; for(var row = 0, rlen = rows.length; row < rlen; row++){ var r = rows[row], cells = []; for(var i = 0, gcol = 0, len = r.length; i < len; i++){ var group = r[i]; group.colspan = group.colspan || 1; var id = this.getColumnId(group.dataIndex ? cm.findColumnIndex(group.dataIndex) : gcol), gs = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupStyle.call(this, group, gcol); cells[i] = ts.gcell.apply({ cls: 'ux-grid-hd-group-cell', id: id, row: row, style: 'width:' + gs.width + ';' + (gs.hidden ? 'display:none;' : '') + (group.align ? 'text-align:' + group.align + ';' : ''), tooltip: group.tooltip ? (Ext.QuickTips.isEnabled() ? 'ext:qtip' : 'title') + '="' + group.tooltip + '"' : '', istyle: group.align == 'right' ? 'padding-right:16px' : '', btn: this.grid.enableHdMenu && group.header, value: group.header || ' ' }); gcol += group.colspan; } headers[row] = ts.header.apply({ tstyle: tstyle, cells: cells.join('') }); } headers.push(this.constructor.prototype.renderHeaders.apply(this, arguments)); return headers.join(''); }, onColumnWidthUpdated: function(){ this.constructor.prototype.onColumnWidthUpdated.apply(this, arguments); Ext.ux.grid.ColumnHeaderGroup.prototype.updateGroupStyles.call(this); }, onAllColumnWidthsUpdated: function(){ this.constructor.prototype.onAllColumnWidthsUpdated.apply(this, arguments); Ext.ux.grid.ColumnHeaderGroup.prototype.updateGroupStyles.call(this); }, onColumnHiddenUpdated: function(){ this.constructor.prototype.onColumnHiddenUpdated.apply(this, arguments); Ext.ux.grid.ColumnHeaderGroup.prototype.updateGroupStyles.call(this); }, getHeaderCell: function(index){ return this.mainHd.query(this.cellSelector)[index]; }, findHeaderCell: function(el){ return el ? this.fly(el).findParent('td.x-grid3-hd', this.cellSelectorDepth) : false; }, findHeaderIndex: function(el){ var cell = this.findHeaderCell(el); return cell ? this.getCellIndex(cell) : false; }, updateSortIcon: function(col, dir){ var sc = this.sortClasses, hds = this.mainHd.select(this.cellSelector).removeClass(sc); hds.item(col).addClass(sc[dir == "DESC" ? 1 : 0]); }, handleHdDown: function(e, t){ var el = Ext.get(t); if(el.hasClass('x-grid3-hd-btn')){ e.stopEvent(); var hd = this.findHeaderCell(t); Ext.fly(hd).addClass('x-grid3-hd-menu-open'); var index = this.getCellIndex(hd); this.hdCtxIndex = index; var ms = this.hmenu.items, cm = this.cm; ms.get('asc').setDisabled(!cm.isSortable(index)); ms.get('desc').setDisabled(!cm.isSortable(index)); this.hmenu.on('hide', function(){ Ext.fly(hd).removeClass('x-grid3-hd-menu-open'); }, this, { single: true }); this.hmenu.show(t, 'tl-bl?'); }else if(el.hasClass('ux-grid-hd-group-cell') || Ext.fly(t).up('.ux-grid-hd-group-cell')){ e.stopEvent(); } }, handleHdMove: function(e, t){ var hd = this.findHeaderCell(this.activeHdRef); if(hd && !this.headersDisabled && !Ext.fly(hd).hasClass('ux-grid-hd-group-cell')){ var hw = this.splitHandleWidth || 5, r = this.activeHdRegion, x = e.getPageX(), ss = hd.style, cur = ''; if(this.grid.enableColumnResize !== false){ if(x - r.left <= hw && this.cm.isResizable(this.activeHdIndex - 1)){ cur = Ext.isAir ? 'move' : Ext.isWebKit ? 'e-resize' : 'col-resize'; // col-resize // not // always // supported }else if(r.right - x <= (!this.activeHdBtn ? hw : 2) && this.cm.isResizable(this.activeHdIndex)){ cur = Ext.isAir ? 'move' : Ext.isWebKit ? 'w-resize' : 'col-resize'; } } ss.cursor = cur; } }, handleHdOver: function(e, t){ var hd = this.findHeaderCell(t); if(hd && !this.headersDisabled){ this.activeHdRef = t; this.activeHdIndex = this.getCellIndex(hd); var fly = this.fly(hd); this.activeHdRegion = fly.getRegion(); if(!(this.cm.isMenuDisabled(this.activeHdIndex) || fly.hasClass('ux-grid-hd-group-cell'))){ fly.addClass('x-grid3-hd-over'); this.activeHdBtn = fly.child('.x-grid3-hd-btn'); if(this.activeHdBtn){ this.activeHdBtn.dom.style.height = (hd.firstChild.offsetHeight - 1) + 'px'; } } } }, handleHdOut: function(e, t){ var hd = this.findHeaderCell(t); if(hd && (!Ext.isIE || !e.within(hd, true))){ this.activeHdRef = null; this.fly(hd).removeClass('x-grid3-hd-over'); hd.style.cursor = ''; } }, handleHdMenuClick: function(item){ var index = this.hdCtxIndex, cm = this.cm, ds = this.ds, id = item.getItemId(); switch(id){ case 'asc': ds.sort(cm.getDataIndex(index), 'ASC'); break; case 'desc': ds.sort(cm.getDataIndex(index), 'DESC'); break; default: if(id.substr(0, 6) == 'group-'){ var i = id.split('-'), row = parseInt(i[1], 10), col = parseInt(i[2], 10), r = this.cm.rows[row], group, gcol = 0; for(var i = 0, len = r.length; i < len; i++){ group = r[i]; if(col >= gcol && col < gcol + group.colspan){ break; } gcol += group.colspan; } if(item.checked){ var max = cm.getColumnsBy(this.isHideableColumn, this).length; for(var i = gcol, len = gcol + group.colspan; i < len; i++){ if(!cm.isHidden(i)){ max--; } } if(max < 1){ this.onDenyColumnHide(); return false; } } for(var i = gcol, len = gcol + group.colspan; i < len; i++){ if(cm.config[i].fixed !== true && cm.config[i].hideable !== false){ cm.setHidden(i, item.checked); } } }else if(id.substr(0, 4) == 'col-'){ index = cm.getIndexById(id.substr(4)); if(index != -1){ if(item.checked && cm.getColumnsBy(this.isHideableColumn, this).length <= 1){ this.onDenyColumnHide(); return false; } cm.setHidden(index, item.checked); } } if(id.substr(0, 6) == 'group-' || id.substr(0, 4) == 'col-'){ item.checked = !item.checked; if(item.menu){ var updateChildren = function(menu){ menu.items.each(function(childItem){ if(!childItem.disabled){ childItem.setChecked(item.checked, false); if(childItem.menu){ updateChildren(childItem.menu); } } }); } updateChildren(item.menu); } var parentMenu = item, parentItem; while(parentMenu = parentMenu.parentMenu){ if(!parentMenu.parentMenu || !(parentItem = parentMenu.parentMenu.items.get(parentMenu.getItemId())) || !parentItem.setChecked){ break; } var checked = parentMenu.items.findIndexBy(function(m){ return m.checked; }) >= 0; parentItem.setChecked(checked, true); } item.checked = !item.checked; } } return true; }, beforeColMenuShow: function(){ var cm = this.cm, rows = this.cm.rows; this.colMenu.removeAll(); for(var col = 0, clen = cm.getColumnCount(); col < clen; col++){ var menu = this.colMenu, title = cm.getColumnHeader(col), text = []; if(cm.config[col].fixed !== true && cm.config[col].hideable !== false){ for(var row = 0, rlen = rows.length; row < rlen; row++){ var r = rows[row], group, gcol = 0; for(var i = 0, len = r.length; i < len; i++){ group = r[i]; if(col >= gcol && col < gcol + group.colspan){ break; } gcol += group.colspan; } if(group && group.header){ if(cm.hierarchicalColMenu){ var gid = 'group-' + row + '-' + gcol, item = menu.items ? menu.getComponent(gid) : null, submenu = item ? item.menu : null; if(!submenu){ submenu = new Ext.menu.Menu({ itemId: gid }); submenu.on("itemclick", this.handleHdMenuClick, this); var checked = false, disabled = true; for(var c = gcol, lc = gcol + group.colspan; c < lc; c++){ if(!cm.isHidden(c)){ checked = true; } if(cm.config[c].hideable !== false){ disabled = false; } } menu.add({ itemId: gid, text: group.header, menu: submenu, hideOnClick: false, checked: checked, disabled: disabled }); } menu = submenu; }else{ text.push(group.header); } } } text.push(title); menu.add(new Ext.menu.CheckItem({ itemId: "col-" + cm.getColumnId(col), text: text.join(' '), checked: !cm.isHidden(col), hideOnClick: false, disabled: cm.config[col].hideable === false })); } } }, afterRenderUI: function(){ this.constructor.prototype.afterRenderUI.apply(this, arguments); Ext.apply(this.columnDrop, Ext.ux.grid.ColumnHeaderGroup.prototype.columnDropConfig); Ext.apply(this.splitZone, Ext.ux.grid.ColumnHeaderGroup.prototype.splitZoneConfig); } }, splitZoneConfig: { allowHeaderDrag: function(e){ return !e.getTarget(null, null, true).hasClass('ux-grid-hd-group-cell'); } }, columnDropConfig: { getTargetFromEvent: function(e){ var t = Ext.lib.Event.getTarget(e); return this.view.findHeaderCell(t); }, positionIndicator: function(h, n, e){ var data = Ext.ux.grid.ColumnHeaderGroup.prototype.getDragDropData.call(this, h, n, e); if(data === false){ return false; } var px = data.px + this.proxyOffsets[0]; this.proxyTop.setLeftTop(px, data.r.top + this.proxyOffsets[1]); this.proxyTop.show(); this.proxyBottom.setLeftTop(px, data.r.bottom); this.proxyBottom.show(); return data.pt; }, onNodeDrop: function(n, dd, e, data){ var h = data.header; if(h != n){ var d = Ext.ux.grid.ColumnHeaderGroup.prototype.getDragDropData.call(this, h, n, e); if(d === false){ return false; } var cm = this.grid.colModel, right = d.oldIndex < d.newIndex, rows = cm.rows; for(var row = d.row, rlen = rows.length; row < rlen; row++){ var r = rows[row], len = r.length, fromIx = 0, span = 1, toIx = len; for(var i = 0, gcol = 0; i < len; i++){ var group = r[i]; if(d.oldIndex >= gcol && d.oldIndex < gcol + group.colspan){ fromIx = i; } if(d.oldIndex + d.colspan - 1 >= gcol && d.oldIndex + d.colspan - 1 < gcol + group.colspan){ span = i - fromIx + 1; } if(d.newIndex >= gcol && d.newIndex < gcol + group.colspan){ toIx = i; } gcol += group.colspan; } var groups = r.splice(fromIx, span); rows[row] = r.splice(0, toIx - (right ? span : 0)).concat(groups).concat(r); } for(var c = 0; c < d.colspan; c++){ var oldIx = d.oldIndex + (right ? 0 : c), newIx = d.newIndex + (right ? -1 : c); cm.moveColumn(oldIx, newIx); this.grid.fireEvent("columnmove", oldIx, newIx); } return true; } return false; } }, getGroupStyle: function(group, gcol){ var width = 0, hidden = true; for(var i = gcol, len = gcol + group.colspan; i < len; i++){ if(!this.cm.isHidden(i)){ var cw = this.cm.getColumnWidth(i); if(typeof cw == 'number'){ width += cw; } hidden = false; } } return { width: (Ext.isBorderBox || (Ext.isWebKit && !Ext.isSafari2) ? width : Math.max(width - this.borderWidth, 0)) + 'px', hidden: hidden }; }, updateGroupStyles: function(col){ var tables = this.mainHd.query('.x-grid3-header-offset > table'), tw = this.getTotalWidth(), rows = this.cm.rows; for(var row = 0; row < tables.length; row++){ tables[row].style.width = tw; if(row < rows.length){ var cells = tables[row].firstChild.firstChild.childNodes; for(var i = 0, gcol = 0; i < cells.length; i++){ var group = rows[row][i]; if((typeof col != 'number') || (col >= gcol && col < gcol + group.colspan)){ var gs = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupStyle.call(this, group, gcol); cells[i].style.width = gs.width; cells[i].style.display = gs.hidden ? 'none' : ''; } gcol += group.colspan; } } } }, getGroupRowIndex: function(el){ if(el){ var m = el.className.match(this.hrowRe); if(m && m[1]){ return parseInt(m[1], 10); } } return this.cm.rows.length; }, getGroupSpan: function(row, col){ if(row < 0){ return { col: 0, colspan: this.cm.getColumnCount() }; } var r = this.cm.rows[row]; if(r){ for(var i = 0, gcol = 0, len = r.length; i < len; i++){ var group = r[i]; if(col >= gcol && col < gcol + group.colspan){ return { col: gcol, colspan: group.colspan }; } gcol += group.colspan; } return { col: gcol, colspan: 0 }; } return { col: col, colspan: 1 }; }, getDragDropData: function(h, n, e){ if(h.parentNode != n.parentNode){ return false; } var cm = this.grid.colModel, x = Ext.lib.Event.getPageX(e), r = Ext.lib.Dom.getRegion(n.firstChild), px, pt; if((r.right - x) <= (r.right - r.left) / 2){ px = r.right + this.view.borderWidth; pt = "after"; }else{ px = r.left; pt = "before"; } var oldIndex = this.view.getCellIndex(h), newIndex = this.view.getCellIndex(n); if(cm.isFixed(newIndex)){ return false; } var row = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupRowIndex.call(this.view, h), oldGroup = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view, row, oldIndex), newGroup = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view, row, newIndex), oldIndex = oldGroup.col; newIndex = newGroup.col + (pt == "after" ? newGroup.colspan : 0); if(newIndex >= oldGroup.col && newIndex <= oldGroup.col + oldGroup.colspan){ return false; } var parentGroup = Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view, row - 1, oldIndex); if(newIndex < parentGroup.col || newIndex > parentGroup.col + parentGroup.colspan){ return false; } return { r: r, px: px, pt: pt, row: row, oldIndex: oldIndex, newIndex: newIndex, colspan: oldGroup.colspan }; } });Ext.ns('Ext.ux.tree'); /** * @class Ext.ux.tree.ColumnTree * @extends Ext.tree.TreePanel * * @xtype columntree */ Ext.ux.tree.ColumnTree = Ext.extend(Ext.tree.TreePanel, { lines : false, borderWidth : Ext.isBorderBox ? 0 : 2, // the combined left/right border for each cell cls : 'x-column-tree', onRender : function(){ Ext.tree.ColumnTree.superclass.onRender.apply(this, arguments); this.headers = this.header.createChild({cls:'x-tree-headers'}); var cols = this.columns, c; var totalWidth = 0; var scrollOffset = 19; // similar to Ext.grid.GridView default for(var i = 0, len = cols.length; i < len; i++){ c = cols[i]; totalWidth += c.width; this.headers.createChild({ cls:'x-tree-hd ' + (c.cls?c.cls+'-hd':''), cn: { cls:'x-tree-hd-text', html: c.header }, style:'width:'+(c.width-this.borderWidth)+'px;' }); } this.headers.createChild({cls:'x-clear'}); // prevent floats from wrapping when clipped this.headers.setWidth(totalWidth+scrollOffset); this.innerCt.setWidth(totalWidth); } }); Ext.reg('columntree', Ext.ux.tree.ColumnTree); //backwards compat Ext.tree.ColumnTree = Ext.ux.tree.ColumnTree; /** * @class Ext.ux.tree.ColumnNodeUI * @extends Ext.tree.TreeNodeUI */ Ext.ux.tree.ColumnNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { focus: Ext.emptyFn, // prevent odd scrolling behavior renderElements : function(n, a, targetNode, bulkRender){ this.indentMarkup = n.parentNode ? n.parentNode.ui.getChildIndent() : ''; var t = n.getOwnerTree(); var cols = t.columns; var bw = t.borderWidth; var c = cols[0]; var buf = [ '
    • ', '
      ', '',this.indentMarkup,"", '', '', '', '', n.text || (c.renderer ? c.renderer(a[c.dataIndex], n, a) : a[c.dataIndex]),"", "
      "]; for(var i = 1, len = cols.length; i < len; i++){ c = cols[i]; buf.push('
      ', '
      ',(c.renderer ? c.renderer(a[c.dataIndex], n, a) : a[c.dataIndex]),"
      ", "
      "); } buf.push( '
      ', '', "
      • "); if(bulkRender !== true && n.nextSibling && n.nextSibling.ui.getEl()){ this.wrap = Ext.DomHelper.insertHtml("beforeBegin", n.nextSibling.ui.getEl(), buf.join("")); }else{ this.wrap = Ext.DomHelper.insertHtml("beforeEnd", targetNode, buf.join("")); } this.elNode = this.wrap.childNodes[0]; this.ctNode = this.wrap.childNodes[1]; var cs = this.elNode.firstChild.childNodes; this.indentNode = cs[0]; this.ecNode = cs[1]; this.iconNode = cs[2]; this.anchor = cs[3]; this.textNode = cs[3].firstChild; } }); //backwards compat Ext.tree.ColumnNodeUI = Ext.ux.tree.ColumnNodeUI; /** * @class Ext.DataView.LabelEditor * @extends Ext.Editor * */ Ext.DataView.LabelEditor = Ext.extend(Ext.Editor, { alignment: "tl-tl", hideEl : false, cls: "x-small-editor", shim: false, completeOnEnter: true, cancelOnEsc: true, labelSelector: 'span.x-editable', constructor: function(cfg, field){ Ext.DataView.LabelEditor.superclass.constructor.call(this, field || new Ext.form.TextField({ allowBlank: false, growMin:90, growMax:240, grow:true, selectOnFocus:true }), cfg ); }, init : function(view){ this.view = view; view.on('render', this.initEditor, this); this.on('complete', this.onSave, this); }, initEditor : function(){ this.view.on({ scope: this, containerclick: this.doBlur, click: this.doBlur }); this.view.getEl().on('mousedown', this.onMouseDown, this, {delegate: this.labelSelector}); }, doBlur: function(){ if(this.editing){ this.field.blur(); } }, onMouseDown : function(e, target){ if(!e.ctrlKey && !e.shiftKey){ var item = this.view.findItemFromChild(target); e.stopEvent(); var record = this.view.store.getAt(this.view.indexOf(item)); this.startEdit(target, record.data[this.dataIndex]); this.activeRecord = record; }else{ e.preventDefault(); } }, onSave : function(ed, value){ this.activeRecord.set(this.dataIndex, value); } }); Ext.DataView.DragSelector = function(cfg){ cfg = cfg || {}; var view, proxy, tracker; var rs, bodyRegion, dragRegion = new Ext.lib.Region(0,0,0,0); var dragSafe = cfg.dragSafe === true; this.init = function(dataView){ view = dataView; view.on('render', onRender); }; function fillRegions(){ rs = []; view.all.each(function(el){ rs[rs.length] = el.getRegion(); }); bodyRegion = view.el.getRegion(); } function cancelClick(){ return false; } function onBeforeStart(e){ return !dragSafe || e.target == view.el.dom; } function onStart(e){ view.on('containerclick', cancelClick, view, {single:true}); if(!proxy){ proxy = view.el.createChild({cls:'x-view-selector'}); }else{ if(proxy.dom.parentNode !== view.el.dom){ view.el.dom.appendChild(proxy.dom); } proxy.setDisplayed('block'); } fillRegions(); view.clearSelections(); } function onDrag(e){ var startXY = tracker.startXY; var xy = tracker.getXY(); var x = Math.min(startXY[0], xy[0]); var y = Math.min(startXY[1], xy[1]); var w = Math.abs(startXY[0] - xy[0]); var h = Math.abs(startXY[1] - xy[1]); dragRegion.left = x; dragRegion.top = y; dragRegion.right = x+w; dragRegion.bottom = y+h; dragRegion.constrainTo(bodyRegion); proxy.setRegion(dragRegion); for(var i = 0, len = rs.length; i < len; i++){ var r = rs[i], sel = dragRegion.intersect(r); if(sel && !r.selected){ r.selected = true; view.select(i, true); }else if(!sel && r.selected){ r.selected = false; view.deselect(i); } } } function onEnd(e){ if (!Ext.isIE) { view.un('containerclick', cancelClick, view); } if(proxy){ proxy.setDisplayed(false); } } function onRender(view){ tracker = new Ext.dd.DragTracker({ onBeforeStart: onBeforeStart, onStart: onStart, onDrag: onDrag, onEnd: onEnd }); tracker.initEl(view.el); } };Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.FileUploadField * @extends Ext.form.TextField * Creates a file upload field. * @xtype fileuploadfield */ Ext.ux.form.FileUploadField = Ext.extend(Ext.form.TextField, { /** * @cfg {String} buttonText The button text to display on the upload button (defaults to * 'Browse...'). Note that if you supply a value for {@link #buttonCfg}, the buttonCfg.text * value will be used instead if available. */ buttonText: 'Browse...', /** * @cfg {Boolean} buttonOnly True to display the file upload field as a button with no visible * text field (defaults to false). If true, all inherited TextField members will still be available. */ buttonOnly: false, /** * @cfg {Number} buttonOffset The number of pixels of space reserved between the button and the text field * (defaults to 3). Note that this only applies if {@link #buttonOnly} = false. */ buttonOffset: 3, /** * @cfg {Object} buttonCfg A standard {@link Ext.Button} config object. */ // private readOnly: true, /** * @hide * @method autoSize */ autoSize: Ext.emptyFn, // private initComponent: function(){ Ext.ux.form.FileUploadField.superclass.initComponent.call(this); this.addEvents( /** * @event fileselected * Fires when the underlying file input field's value has changed from the user * selecting a new file from the system file selection dialog. * @param {Ext.ux.form.FileUploadField} this * @param {String} value The file value returned by the underlying file input field */ 'fileselected' ); }, // private onRender : function(ct, position){ Ext.ux.form.FileUploadField.superclass.onRender.call(this, ct, position); this.wrap = this.el.wrap({cls:'x-form-field-wrap x-form-file-wrap'}); this.el.addClass('x-form-file-text'); this.el.dom.removeAttribute('name'); this.createFileInput(); var btnCfg = Ext.applyIf(this.buttonCfg || {}, { text: this.buttonText }); this.button = new Ext.Button(Ext.apply(btnCfg, { renderTo: this.wrap, cls: 'x-form-file-btn' + (btnCfg.iconCls ? ' x-btn-icon' : '') })); if(this.buttonOnly){ this.el.hide(); this.wrap.setWidth(this.button.getEl().getWidth()); } this.bindListeners(); this.resizeEl = this.positionEl = this.wrap; }, bindListeners: function(){ this.fileInput.on({ scope: this, mouseenter: function() { this.button.addClass(['x-btn-over','x-btn-focus']) }, mouseleave: function(){ this.button.removeClass(['x-btn-over','x-btn-focus','x-btn-click']) }, mousedown: function(){ this.button.addClass('x-btn-click') }, mouseup: function(){ this.button.removeClass(['x-btn-over','x-btn-focus','x-btn-click']) }, change: function(){ var v = this.fileInput.dom.value; this.setValue(v); this.fireEvent('fileselected', this, v); } }); }, createFileInput : function() { this.fileInput = this.wrap.createChild({ id: this.getFileInputId(), name: this.name||this.getId(), cls: 'x-form-file', tag: 'input', type: 'file', size: 1 }); }, reset : function(){ if (this.rendered) { this.fileInput.remove(); this.createFileInput(); this.bindListeners(); } Ext.ux.form.FileUploadField.superclass.reset.call(this); }, // private getFileInputId: function(){ return this.id + '-file'; }, // private onResize : function(w, h){ Ext.ux.form.FileUploadField.superclass.onResize.call(this, w, h); this.wrap.setWidth(w); if(!this.buttonOnly){ var w = this.wrap.getWidth() - this.button.getEl().getWidth() - this.buttonOffset; this.el.setWidth(w); } }, // private onDestroy: function(){ Ext.ux.form.FileUploadField.superclass.onDestroy.call(this); Ext.destroy(this.fileInput, this.button, this.wrap); }, onDisable: function(){ Ext.ux.form.FileUploadField.superclass.onDisable.call(this); this.doDisable(true); }, onEnable: function(){ Ext.ux.form.FileUploadField.superclass.onEnable.call(this); this.doDisable(false); }, // private doDisable: function(disabled){ this.fileInput.dom.disabled = disabled; this.button.setDisabled(disabled); }, // private preFocus : Ext.emptyFn, // private alignErrorIcon : function(){ this.errorIcon.alignTo(this.wrap, 'tl-tr', [2, 0]); } }); Ext.reg('fileuploadfield', Ext.ux.form.FileUploadField); // backwards compat Ext.form.FileUploadField = Ext.ux.form.FileUploadField; /** * @class Ext.ux.GMapPanel * @extends Ext.Panel * @author Shea Frederick */ Ext.ux.GMapPanel = Ext.extend(Ext.Panel, { initComponent : function(){ var defConfig = { plain: true, zoomLevel: 3, yaw: 180, pitch: 0, zoom: 0, gmapType: 'map', border: false }; Ext.applyIf(this,defConfig); Ext.ux.GMapPanel.superclass.initComponent.call(this); }, afterRender : function(){ var wh = this.ownerCt.getSize(); Ext.applyIf(this, wh); Ext.ux.GMapPanel.superclass.afterRender.call(this); if (this.gmapType === 'map'){ this.gmap = new GMap2(this.body.dom); } if (this.gmapType === 'panorama'){ this.gmap = new GStreetviewPanorama(this.body.dom); } if (typeof this.addControl == 'object' && this.gmapType === 'map') { this.gmap.addControl(this.addControl); } if (typeof this.setCenter === 'object') { if (typeof this.setCenter.geoCodeAddr === 'string'){ this.geoCodeLookup(this.setCenter.geoCodeAddr); }else{ if (this.gmapType === 'map'){ var point = new GLatLng(this.setCenter.lat,this.setCenter.lng); this.gmap.setCenter(point, this.zoomLevel); } if (typeof this.setCenter.marker === 'object' && typeof point === 'object'){ this.addMarker(point,this.setCenter.marker,this.setCenter.marker.clear); } } if (this.gmapType === 'panorama'){ this.gmap.setLocationAndPOV(new GLatLng(this.setCenter.lat,this.setCenter.lng), {yaw: this.yaw, pitch: this.pitch, zoom: this.zoom}); } } GEvent.bind(this.gmap, 'load', this, function(){ this.onMapReady(); }); }, onMapReady : function(){ this.addMarkers(this.markers); this.addMapControls(); this.addOptions(); }, onResize : function(w, h){ if (typeof this.getMap() == 'object') { this.gmap.checkResize(); } Ext.ux.GMapPanel.superclass.onResize.call(this, w, h); }, setSize : function(width, height, animate){ if (typeof this.getMap() == 'object') { this.gmap.checkResize(); } Ext.ux.GMapPanel.superclass.setSize.call(this, width, height, animate); }, getMap : function(){ return this.gmap; }, getCenter : function(){ return this.getMap().getCenter(); }, getCenterLatLng : function(){ var ll = this.getCenter(); return {lat: ll.lat(), lng: ll.lng()}; }, addMarkers : function(markers) { if (Ext.isArray(markers)){ for (var i = 0; i < markers.length; i++) { var mkr_point = new GLatLng(markers[i].lat,markers[i].lng); this.addMarker(mkr_point,markers[i].marker,false,markers[i].setCenter, markers[i].listeners); } } }, addMarker : function(point, marker, clear, center, listeners){ Ext.applyIf(marker,G_DEFAULT_ICON); if (clear === true){ this.getMap().clearOverlays(); } if (center === true) { this.getMap().setCenter(point, this.zoomLevel); } var mark = new GMarker(point,marker); if (typeof listeners === 'object'){ for (evt in listeners) { GEvent.bind(mark, evt, this, listeners[evt]); } } this.getMap().addOverlay(mark); }, addMapControls : function(){ if (this.gmapType === 'map') { if (Ext.isArray(this.mapControls)) { for(i=0;i
      Level '+accuracy+' Accuracy (8 = Exact Match, 1 = Vague Match)'); }else{ point = new GLatLng(place.Point.coordinates[1], place.Point.coordinates[0]); if (typeof this.setCenter.marker === 'object' && typeof point === 'object'){ this.addMarker(point,this.setCenter.marker,this.setCenter.marker.clear,true, this.setCenter.listeners); } } } } } }); Ext.reg('gmappanel', Ext.ux.GMapPanel); Ext.namespace('Ext.ux.grid'); /** * @class Ext.ux.grid.GridFilters * @extends Ext.util.Observable *

      GridFilter is a plugin (ptype='gridfilters') for grids that * allow for a slightly more robust representation of filtering than what is * provided by the default store.

      *

      Filtering is adjusted by the user using the grid's column header menu * (this menu can be disabled through configuration). Through this menu users * can configure, enable, and disable filters for each column.

      *

      Features:

      *
        *
      • Filtering implementations : *
        * Default filtering for Strings, Numeric Ranges, Date Ranges, Lists (which can * be backed by a Ext.data.Store), and Boolean. Additional custom filter types * and menus are easily created by extending Ext.ux.grid.filter.Filter. *
        • *
      • Graphical indicators : *
        * Columns that are filtered have {@link #filterCls a configurable css class} * applied to the column headers. *
        • *
      • Paging : *
        * If specified as a plugin to the grid's configured PagingToolbar, the current page * will be reset to page 1 whenever you update the filters. *
        • *
      • Automatic Reconfiguration : *
        * Filters automatically reconfigure when the grid 'reconfigure' event fires. *
        • *
      • Stateful : * Filter information will be persisted across page loads by specifying a * stateId in the Grid configuration. *
        * The filter collection binds to the * {@link Ext.grid.GridPanel#beforestaterestore beforestaterestore} * and {@link Ext.grid.GridPanel#beforestatesave beforestatesave} * events in order to be stateful. *
        • *
      • Grid Changes : *
          *
        • A filters property is added to the grid pointing to * this plugin.
          • *
        • A filterupdate event is added to the grid and is * fired upon onStateChange completion.
          • *
        • *
      • Server side code examples : *
        • *
      *

      Example usage:

      * 
      
var store = new Ext.data.GroupingStore({
    ...
});

var filters = new Ext.ux.grid.GridFilters({
    autoReload: false, //don't reload automatically
    local: true, //only filter locally
    // filters may be configured through the plugin,
    // or in the column definition within the column model configuration
    filters: [{
        type: 'numeric',
        dataIndex: 'id'
    }, {
        type: 'string',
        dataIndex: 'name'
    }, {
        type: 'numeric',
        dataIndex: 'price'
    }, {
        type: 'date',
        dataIndex: 'dateAdded'
    }, {
        type: 'list',
        dataIndex: 'size',
        options: ['extra small', 'small', 'medium', 'large', 'extra large'],
        phpMode: true
    }, {
        type: 'boolean',
        dataIndex: 'visible'
    }]
});
var cm = new Ext.grid.ColumnModel([{
    ...
}]);

var grid = new Ext.grid.GridPanel({
     ds: store,
     cm: cm,
     view: new Ext.grid.GroupingView(),
     plugins: [filters],
     height: 400,
     width: 700,
     bbar: new Ext.PagingToolbar({
         store: store,
         pageSize: 15,
         plugins: [filters] //reset page to page 1 if filters change
     })
 });

store.load({params: {start: 0, limit: 15}});

// a filters property is added to the grid
grid.filters
 *
      */ Ext.ux.grid.GridFilters = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} autoReload * Defaults to true, reloading the datasource when a filter change happens. * Set this to false to prevent the datastore from being reloaded if there * are changes to the filters. See {@link updateBuffer}. */ autoReload : true, /** * @cfg {Boolean} encode * Specify true for {@link #buildQuery} to use Ext.util.JSON.encode to * encode the filter query parameter sent with a remote request. * Defaults to false. */ /** * @cfg {Array} filters * An Array of filters config objects. Refer to each filter type class for * configuration details specific to each filter type. Filters for Strings, * Numeric Ranges, Date Ranges, Lists, and Boolean are the standard filters * available. */ /** * @cfg {String} filterCls * The css class to be applied to column headers with active filters. * Defaults to 'ux-filterd-column'. */ filterCls : 'ux-filtered-column', /** * @cfg {Boolean} local * true to use Ext.data.Store filter functions (local filtering) * instead of the default (false) server side filtering. */ local : false, /** * @cfg {String} menuFilterText * defaults to 'Filters'. */ menuFilterText : 'Filters', /** * @cfg {String} paramPrefix * The url parameter prefix for the filters. * Defaults to 'filter'. */ paramPrefix : 'filter', /** * @cfg {Boolean} showMenu * Defaults to true, including a filter submenu in the default header menu. */ showMenu : true, /** * @cfg {String} stateId * Name of the value to be used to store state information. */ stateId : undefined, /** * @cfg {Integer} updateBuffer * Number of milliseconds to defer store updates since the last filter change. */ updateBuffer : 500, /** @private */ constructor : function (config) { config = config || {}; this.deferredUpdate = new Ext.util.DelayedTask(this.reload, this); this.filters = new Ext.util.MixedCollection(); this.filters.getKey = function (o) { return o ? o.dataIndex : null; }; this.addFilters(config.filters); delete config.filters; Ext.apply(this, config); }, /** @private */ init : function (grid) { if (grid instanceof Ext.grid.GridPanel) { this.grid = grid; this.bindStore(this.grid.getStore(), true); // assumes no filters were passed in the constructor, so try and use ones from the colModel if(this.filters.getCount() == 0){ this.addFilters(this.grid.getColumnModel()); } this.grid.filters = this; this.grid.addEvents({'filterupdate': true}); grid.on({ scope: this, beforestaterestore: this.applyState, beforestatesave: this.saveState, beforedestroy: this.destroy, reconfigure: this.onReconfigure }); if (grid.rendered){ this.onRender(); } else { grid.on({ scope: this, single: true, render: this.onRender }); } } else if (grid instanceof Ext.PagingToolbar) { this.toolbar = grid; } }, /** * @private * Handler for the grid's beforestaterestore event (fires before the state of the * grid is restored). * @param {Object} grid The grid object * @param {Object} state The hash of state values returned from the StateProvider. */ applyState : function (grid, state) { var key, filter; this.applyingState = true; this.clearFilters(); if (state.filters) { for (key in state.filters) { filter = this.filters.get(key); if (filter) { filter.setValue(state.filters[key]); filter.setActive(true); } } } this.deferredUpdate.cancel(); if (this.local) { this.reload(); } delete this.applyingState; delete state.filters; }, /** * Saves the state of all active filters * @param {Object} grid * @param {Object} state * @return {Boolean} */ saveState : function (grid, state) { var filters = {}; this.filters.each(function (filter) { if (filter.active) { filters[filter.dataIndex] = filter.getValue(); } }); return (state.filters = filters); }, /** * @private * Handler called when the grid is rendered */ onRender : function () { this.grid.getView().on('refresh', this.onRefresh, this); this.createMenu(); }, /** * @private * Handler called by the grid 'beforedestroy' event */ destroy : function () { this.removeAll(); this.purgeListeners(); if(this.filterMenu){ Ext.menu.MenuMgr.unregister(this.filterMenu); this.filterMenu.destroy(); this.filterMenu = this.menu.menu = null; } }, /** * Remove all filters, permanently destroying them. */ removeAll : function () { if(this.filters){ Ext.destroy.apply(Ext, this.filters.items); // remove all items from the collection this.filters.clear(); } }, /** * Changes the data store bound to this view and refreshes it. * @param {Store} store The store to bind to this view */ bindStore : function(store, initial){ if(!initial && this.store){ if (this.local) { store.un('load', this.onLoad, this); } else { store.un('beforeload', this.onBeforeLoad, this); } } if(store){ if (this.local) { store.on('load', this.onLoad, this); } else { store.on('beforeload', this.onBeforeLoad, this); } } this.store = store; }, /** * @private * Handler called when the grid reconfigure event fires */ onReconfigure : function () { this.bindStore(this.grid.getStore()); this.store.clearFilter(); this.removeAll(); this.addFilters(this.grid.getColumnModel()); this.updateColumnHeadings(); }, createMenu : function () { var view = this.grid.getView(), hmenu = view.hmenu; if (this.showMenu && hmenu) { this.sep = hmenu.addSeparator(); this.filterMenu = new Ext.menu.Menu({ id: this.grid.id + '-filters-menu' }); this.menu = hmenu.add({ checked: false, itemId: 'filters', text: this.menuFilterText, menu: this.filterMenu }); this.menu.on({ scope: this, checkchange: this.onCheckChange, beforecheckchange: this.onBeforeCheck }); hmenu.on('beforeshow', this.onMenu, this); } this.updateColumnHeadings(); }, /** * @private * Get the filter menu from the filters MixedCollection based on the clicked header */ getMenuFilter : function () { var view = this.grid.getView(); if (!view || view.hdCtxIndex === undefined) { return null; } return this.filters.get( view.cm.config[view.hdCtxIndex].dataIndex ); }, /** * @private * Handler called by the grid's hmenu beforeshow event */ onMenu : function (filterMenu) { var filter = this.getMenuFilter(); if (filter) { /* TODO: lazy rendering if (!filter.menu) { filter.menu = filter.createMenu(); } */ this.menu.menu = filter.menu; this.menu.setChecked(filter.active, false); // disable the menu if filter.disabled explicitly set to true this.menu.setDisabled(filter.disabled === true); } this.menu.setVisible(filter !== undefined); this.sep.setVisible(filter !== undefined); }, /** @private */ onCheckChange : function (item, value) { this.getMenuFilter().setActive(value); }, /** @private */ onBeforeCheck : function (check, value) { return !value || this.getMenuFilter().isActivatable(); }, /** * @private * Handler for all events on filters. * @param {String} event Event name * @param {Object} filter Standard signature of the event before the event is fired */ onStateChange : function (event, filter) { if (event === 'serialize') { return; } if (filter == this.getMenuFilter()) { this.menu.setChecked(filter.active, false); } if ((this.autoReload || this.local) && !this.applyingState) { this.deferredUpdate.delay(this.updateBuffer); } this.updateColumnHeadings(); if (!this.applyingState) { this.grid.saveState(); } this.grid.fireEvent('filterupdate', this, filter); }, /** * @private * Handler for store's beforeload event when configured for remote filtering * @param {Object} store * @param {Object} options */ onBeforeLoad : function (store, options) { options.params = options.params || {}; this.cleanParams(options.params); var params = this.buildQuery(this.getFilterData()); Ext.apply(options.params, params); }, /** * @private * Handler for store's load event when configured for local filtering * @param {Object} store * @param {Object} options */ onLoad : function (store, options) { store.filterBy(this.getRecordFilter()); }, /** * @private * Handler called when the grid's view is refreshed */ onRefresh : function () { this.updateColumnHeadings(); }, /** * Update the styles for the header row based on the active filters */ updateColumnHeadings : function () { var view = this.grid.getView(), i, len, filter; if (view.mainHd) { for (i = 0, len = view.cm.config.length; i < len; i++) { filter = this.getFilter(view.cm.config[i].dataIndex); Ext.fly(view.getHeaderCell(i))[filter && filter.active ? 'addClass' : 'removeClass'](this.filterCls); } } }, /** @private */ reload : function () { if (this.local) { this.grid.store.clearFilter(true); this.grid.store.filterBy(this.getRecordFilter()); } else { var start, store = this.grid.store; this.deferredUpdate.cancel(); if (this.toolbar) { start = store.paramNames.start; if (store.lastOptions && store.lastOptions.params && store.lastOptions.params[start]) { store.lastOptions.params[start] = 0; } } store.reload(); } }, /** * Method factory that generates a record validator for the filters active at the time * of invokation. * @private */ getRecordFilter : function () { var f = [], len, i; this.filters.each(function (filter) { if (filter.active) { f.push(filter); } }); len = f.length; return function (record) { for (i = 0; i < len; i++) { if (!f[i].validateRecord(record)) { return false; } } return true; }; }, /** * Adds a filter to the collection and observes it for state change. * @param {Object/Ext.ux.grid.filter.Filter} config A filter configuration or a filter object. * @return {Ext.ux.grid.filter.Filter} The existing or newly created filter object. */ addFilter : function (config) { var Cls = this.getFilterClass(config.type), filter = config.menu ? config : (new Cls(config)); this.filters.add(filter); Ext.util.Observable.capture(filter, this.onStateChange, this); return filter; }, /** * Adds filters to the collection. * @param {Array/Ext.grid.ColumnModel} filters Either an Array of * filter configuration objects or an Ext.grid.ColumnModel. The columns * of a passed Ext.grid.ColumnModel will be examined for a filter * property and, if present, will be used as the filter configuration object. */ addFilters : function (filters) { if (filters) { var i, len, filter, cm = false, dI; if (filters instanceof Ext.grid.ColumnModel) { filters = filters.config; cm = true; } for (i = 0, len = filters.length; i < len; i++) { filter = false; if (cm) { dI = filters[i].dataIndex; filter = filters[i].filter || filters[i].filterable; if (filter){ filter = (filter === true) ? {} : filter; Ext.apply(filter, {dataIndex:dI}); // filter type is specified in order of preference: // filter type specified in config // type specified in store's field's type config filter.type = filter.type || this.store.fields.get(dI).type.type; } } else { filter = filters[i]; } // if filter config found add filter for the column if (filter) { this.addFilter(filter); } } } }, /** * Returns a filter for the given dataIndex, if one exists. * @param {String} dataIndex The dataIndex of the desired filter object. * @return {Ext.ux.grid.filter.Filter} */ getFilter : function (dataIndex) { return this.filters.get(dataIndex); }, /** * Turns all filters off. This does not clear the configuration information * (see {@link #removeAll}). */ clearFilters : function () { this.filters.each(function (filter) { filter.setActive(false); }); }, /** * Returns an Array of the currently active filters. * @return {Array} filters Array of the currently active filters. */ getFilterData : function () { var filters = [], i, len; this.filters.each(function (f) { if (f.active) { var d = [].concat(f.serialize()); for (i = 0, len = d.length; i < len; i++) { filters.push({ field: f.dataIndex, data: d[i] }); } } }); return filters; }, /** * Function to take the active filters data and build it into a query. * The format of the query depends on the {@link #encode} * configuration: *
        * *
      • false : Default *
        * Flatten into query string of the form (assuming {@link #paramPrefix}='filters': * 
        
filters[0][field]="someDataIndex"&
filters[0][data][comparison]="someValue1"&
filters[0][data][type]="someValue2"&
filters[0][data][value]="someValue3"&
     *
        *
        • *
      • true : *
        * JSON encode the filter data * 
        
filters[0][field]="someDataIndex"&
filters[0][data][comparison]="someValue1"&
filters[0][data][type]="someValue2"&
filters[0][data][value]="someValue3"&
     *
        *
        • *
      * Override this method to customize the format of the filter query for remote requests. * @param {Array} filters A collection of objects representing active filters and their configuration. * Each element will take the form of {field: dataIndex, data: filterConf}. dataIndex is not assured * to be unique as any one filter may be a composite of more basic filters for the same dataIndex. * @return {Object} Query keys and values */ buildQuery : function (filters) { var p = {}, i, f, root, dataPrefix, key, tmp, len = filters.length; if (!this.encode){ for (i = 0; i < len; i++) { f = filters[i]; root = [this.paramPrefix, '[', i, ']'].join(''); p[root + '[field]'] = f.field; dataPrefix = root + '[data]'; for (key in f.data) { p[[dataPrefix, '[', key, ']'].join('')] = f.data[key]; } } } else { tmp = []; for (i = 0; i < len; i++) { f = filters[i]; tmp.push(Ext.apply( {}, {field: f.field}, f.data )); } // only build if there is active filter if (tmp.length > 0){ p[this.paramPrefix] = Ext.util.JSON.encode(tmp); } } return p; }, /** * Removes filter related query parameters from the provided object. * @param {Object} p Query parameters that may contain filter related fields. */ cleanParams : function (p) { // if encoding just delete the property if (this.encode) { delete p[this.paramPrefix]; // otherwise scrub the object of filter data } else { var regex, key; regex = new RegExp('^' + this.paramPrefix + '\[[0-9]+\]'); for (key in p) { if (regex.test(key)) { delete p[key]; } } } }, /** * Function for locating filter classes, overwrite this with your favorite * loader to provide dynamic filter loading. * @param {String} type The type of filter to load ('Filter' is automatically * appended to the passed type; eg, 'string' becomes 'StringFilter'). * @return {Class} The Ext.ux.grid.filter.Class */ getFilterClass : function (type) { // map the supported Ext.data.Field type values into a supported filter switch(type) { case 'auto': type = 'string'; break; case 'int': case 'float': type = 'numeric'; break; case 'bool': type = 'boolean'; break; } return Ext.ux.grid.filter[type.substr(0, 1).toUpperCase() + type.substr(1) + 'Filter']; } }); // register ptype Ext.preg('gridfilters', Ext.ux.grid.GridFilters); Ext.namespace('Ext.ux.grid.filter'); /** * @class Ext.ux.grid.filter.Filter * @extends Ext.util.Observable * Abstract base class for filter implementations. */ Ext.ux.grid.filter.Filter = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} active * Indicates the initial status of the filter (defaults to false). */ active : false, /** * True if this filter is active. Use setActive() to alter after configuration. * @type Boolean * @property active */ /** * @cfg {String} dataIndex * The {@link Ext.data.Store} dataIndex of the field this filter represents. * The dataIndex does not actually have to exist in the store. */ dataIndex : null, /** * The filter configuration menu that will be installed into the filter submenu of a column menu. * @type Ext.menu.Menu * @property */ menu : null, /** * @cfg {Number} updateBuffer * Number of milliseconds to wait after user interaction to fire an update. Only supported * by filters: 'list', 'numeric', and 'string'. Defaults to 500. */ updateBuffer : 500, constructor : function (config) { Ext.apply(this, config); this.addEvents( /** * @event activate * Fires when an inactive filter becomes active * @param {Ext.ux.grid.filter.Filter} this */ 'activate', /** * @event deactivate * Fires when an active filter becomes inactive * @param {Ext.ux.grid.filter.Filter} this */ 'deactivate', /** * @event serialize * Fires after the serialization process. Use this to attach additional parameters to serialization * data before it is encoded and sent to the server. * @param {Array/Object} data A map or collection of maps representing the current filter configuration. * @param {Ext.ux.grid.filter.Filter} filter The filter being serialized. */ 'serialize', /** * @event update * Fires when a filter configuration has changed * @param {Ext.ux.grid.filter.Filter} this The filter object. */ 'update' ); Ext.ux.grid.filter.Filter.superclass.constructor.call(this); this.menu = new Ext.menu.Menu(); this.init(config); if(config && config.value){ this.setValue(config.value); this.setActive(config.active !== false, true); delete config.value; } }, /** * Destroys this filter by purging any event listeners, and removing any menus. */ destroy : function(){ if (this.menu){ this.menu.destroy(); } this.purgeListeners(); }, /** * Template method to be implemented by all subclasses that is to * initialize the filter and install required menu items. * Defaults to Ext.emptyFn. */ init : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * get and return the value of the filter. * Defaults to Ext.emptyFn. * @return {Object} The 'serialized' form of this filter * @methodOf Ext.ux.grid.filter.Filter */ getValue : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * set the value of the filter and fire the 'update' event. * Defaults to Ext.emptyFn. * @param {Object} data The value to set the filter * @methodOf Ext.ux.grid.filter.Filter */ setValue : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * return true if the filter has enough configuration information to be activated. * Defaults to return true. * @return {Boolean} */ isActivatable : function(){ return true; }, /** * Template method to be implemented by all subclasses that is to * get and return serialized filter data for transmission to the server. * Defaults to Ext.emptyFn. */ getSerialArgs : Ext.emptyFn, /** * Template method to be implemented by all subclasses that is to * validates the provided Ext.data.Record against the filters configuration. * Defaults to return true. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function(){ return true; }, /** * Returns the serialized filter data for transmission to the server * and fires the 'serialize' event. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. * @methodOf Ext.ux.grid.filter.Filter */ serialize : function(){ var args = this.getSerialArgs(); this.fireEvent('serialize', args, this); return args; }, /** @private */ fireUpdate : function(){ if (this.active) { this.fireEvent('update', this); } this.setActive(this.isActivatable()); }, /** * Sets the status of the filter and fires the appropriate events. * @param {Boolean} active The new filter state. * @param {Boolean} suppressEvent True to prevent events from being fired. * @methodOf Ext.ux.grid.filter.Filter */ setActive : function(active, suppressEvent){ if(this.active != active){ this.active = active; if (suppressEvent !== true) { this.fireEvent(active ? 'activate' : 'deactivate', this); } } } });/** * @class Ext.ux.grid.filter.BooleanFilter * @extends Ext.ux.grid.filter.Filter * Boolean filters use unique radio group IDs (so you can have more than one!) *

      Example Usage:

      * 
          
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        // required configs
        type: 'boolean',
        dataIndex: 'visible'

        // optional configs
        defaultValue: null, // leave unselected (false selected by default)
        yesText: 'Yes',     // default
        noText: 'No'        // default
    }]
});
 *
      */ Ext.ux.grid.filter.BooleanFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {Boolean} defaultValue * Set this to null if you do not want either option to be checked by default. Defaults to false. */ defaultValue : false, /** * @cfg {String} yesText * Defaults to 'Yes'. */ yesText : 'Yes', /** * @cfg {String} noText * Defaults to 'No'. */ noText : 'No', /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { var gId = Ext.id(); this.options = [ new Ext.menu.CheckItem({text: this.yesText, group: gId, checked: this.defaultValue === true}), new Ext.menu.CheckItem({text: this.noText, group: gId, checked: this.defaultValue === false})]; this.menu.add(this.options[0], this.options[1]); for(var i=0; iExample Usage:

      * 
          
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        // required configs
        type: 'date',
        dataIndex: 'dateAdded',
        
        // optional configs
        dateFormat: 'm/d/Y',  // default
        beforeText: 'Before', // default
        afterText: 'After',   // default
        onText: 'On',         // default
        pickerOpts: {
            // any DateMenu configs
        },

        active: true // default is false
    }]
});
 *
      */ Ext.ux.grid.filter.DateFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {String} afterText * Defaults to 'After'. */ afterText : 'After', /** * @cfg {String} beforeText * Defaults to 'Before'. */ beforeText : 'Before', /** * @cfg {Object} compareMap * Map for assigning the comparison values used in serialization. */ compareMap : { before: 'lt', after: 'gt', on: 'eq' }, /** * @cfg {String} dateFormat * The date format to return when using getValue. * Defaults to 'm/d/Y'. */ dateFormat : 'm/d/Y', /** * @cfg {Date} maxDate * Allowable date as passed to the Ext.DatePicker * Defaults to undefined. */ /** * @cfg {Date} minDate * Allowable date as passed to the Ext.DatePicker * Defaults to undefined. */ /** * @cfg {Array} menuItems * The items to be shown in this menu * Defaults to:
           * menuItems : ['before', 'after', '-', 'on'],
     *
      */ menuItems : ['before', 'after', '-', 'on'], /** * @cfg {Object} menuItemCfgs * Default configuration options for each menu item */ menuItemCfgs : { selectOnFocus: true, width: 125 }, /** * @cfg {String} onText * Defaults to 'On'. */ onText : 'On', /** * @cfg {Object} pickerOpts * Configuration options for the date picker associated with each field. */ pickerOpts : {}, /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { var menuCfg, i, len, item, cfg, Cls; menuCfg = Ext.apply(this.pickerOpts, { minDate: this.minDate, maxDate: this.maxDate, format: this.dateFormat, listeners: { scope: this, select: this.onMenuSelect } }); this.fields = {}; for (i = 0, len = this.menuItems.length; i < len; i++) { item = this.menuItems[i]; if (item !== '-') { cfg = { itemId: 'range-' + item, text: this[item + 'Text'], menu: new Ext.menu.DateMenu( Ext.apply(menuCfg, { itemId: item }) ), listeners: { scope: this, checkchange: this.onCheckChange } }; Cls = Ext.menu.CheckItem; item = this.fields[item] = new Cls(cfg); } //this.add(item); this.menu.add(item); } }, onCheckChange : function () { this.setActive(this.isActivatable()); this.fireEvent('update', this); }, /** * @private * Handler method called when there is a keyup event on an input * item of this menu. */ onInputKeyUp : function (field, e) { var k = e.getKey(); if (k == e.RETURN && field.isValid()) { e.stopEvent(); this.menu.hide(true); return; } }, /** * Handler for when the menu for a field fires the 'select' event * @param {Object} date * @param {Object} menuItem * @param {Object} value * @param {Object} picker */ onMenuSelect : function (menuItem, value, picker) { var fields = this.fields, field = this.fields[menuItem.itemId]; field.setChecked(true); if (field == fields.on) { fields.before.setChecked(false, true); fields.after.setChecked(false, true); } else { fields.on.setChecked(false, true); if (field == fields.after && fields.before.menu.picker.value < value) { fields.before.setChecked(false, true); } else if (field == fields.before && fields.after.menu.picker.value > value) { fields.after.setChecked(false, true); } } this.fireEvent('update', this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { var key, result = {}; for (key in this.fields) { if (this.fields[key].checked) { result[key] = this.fields[key].menu.picker.getValue(); } } return result; }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter * @param {Boolean} preserve true to preserve the checked status * of the other fields. Defaults to false, unchecking the * other fields */ setValue : function (value, preserve) { var key; for (key in this.fields) { if(value[key]){ this.fields[key].menu.picker.setValue(value[key]); this.fields[key].setChecked(true); } else if (!preserve) { this.fields[key].setChecked(false); } } this.fireEvent('update', this); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { var key; for (key in this.fields) { if (this.fields[key].checked) { return true; } } return false; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { var args = []; for (var key in this.fields) { if(this.fields[key].checked){ args.push({ type: 'date', comparison: this.compareMap[key], value: this.getFieldValue(key).format(this.dateFormat) }); } } return args; }, /** * Get and return the date menu picker value * @param {String} item The field identifier ('before', 'after', 'on') * @return {Date} Gets the current selected value of the date field */ getFieldValue : function(item){ return this.fields[item].menu.picker.getValue(); }, /** * Gets the menu picker associated with the passed field * @param {String} item The field identifier ('before', 'after', 'on') * @return {Object} The menu picker */ getPicker : function(item){ return this.fields[item].menu.picker; }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { var key, pickerValue, val = record.get(this.dataIndex); if(!Ext.isDate(val)){ return false; } val = val.clearTime(true).getTime(); for (key in this.fields) { if (this.fields[key].checked) { pickerValue = this.getFieldValue(key).clearTime(true).getTime(); if (key == 'before' && pickerValue <= val) { return false; } if (key == 'after' && pickerValue >= val) { return false; } if (key == 'on' && pickerValue != val) { return false; } } } return true; } });/** * @class Ext.ux.grid.filter.ListFilter * @extends Ext.ux.grid.filter.Filter *

      List filters are able to be preloaded/backed by an Ext.data.Store to load * their options the first time they are shown. ListFilter utilizes the * {@link Ext.ux.menu.ListMenu} component.

      *

      Although not shown here, this class accepts all configuration options * for {@link Ext.ux.menu.ListMenu}.

      * *

      Example Usage:

      * 
          
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        type: 'list',
        dataIndex: 'size',
        phpMode: true,
        // options will be used as data to implicitly creates an ArrayStore
        options: ['extra small', 'small', 'medium', 'large', 'extra large']
    }]
});
 *
      * */ Ext.ux.grid.filter.ListFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {Array} options *

      data to be used to implicitly create a data store * to back this list when the data source is local. If the * data for the list is remote, use the {@link #store} * config instead.

      *

      Each item within the provided array may be in one of the * following formats:

      *
        *
      • Array : * 
        
options: [
    [11, 'extra small'], 
    [18, 'small'],
    [22, 'medium'],
    [35, 'large'],
    [44, 'extra large']
]
     *
        *
        • *
      • Object : * 
        
labelField: 'name', // override default of 'text'
options: [
    {id: 11, name:'extra small'}, 
    {id: 18, name:'small'}, 
    {id: 22, name:'medium'}, 
    {id: 35, name:'large'}, 
    {id: 44, name:'extra large'} 
]
     *
        *
        • *
      • String : * 
        
     * options: ['extra small', 'small', 'medium', 'large', 'extra large']
     *
        *
        • */ /** * @cfg {Boolean} phpMode *

        Adjust the format of this filter. Defaults to false.

        *

        When GridFilters @cfg encode = false (default):

        * 
        
// phpMode == false (default):
filter[0][data][type] list
filter[0][data][value] value1
filter[0][data][value] value2
filter[0][field] prod 

// phpMode == true:
filter[0][data][type] list
filter[0][data][value] value1, value2
filter[0][field] prod 
     *
        * When GridFilters @cfg encode = true: * 
        
// phpMode == false (default):
filter : [{"type":"list","value":["small","medium"],"field":"size"}]

// phpMode == true:
filter : [{"type":"list","value":"small,medium","field":"size"}]
     *
        */ phpMode : false, /** * @cfg {Ext.data.Store} store * The {@link Ext.data.Store} this list should use as its data source * when the data source is remote. If the data for the list * is local, use the {@link #options} config instead. */ /** * @private * Template method that is to initialize the filter and install required menu items. * @param {Object} config */ init : function (config) { this.dt = new Ext.util.DelayedTask(this.fireUpdate, this); // if a menu already existed, do clean up first if (this.menu){ this.menu.destroy(); } this.menu = new Ext.ux.menu.ListMenu(config); this.menu.on('checkchange', this.onCheckChange, this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { return this.menu.getSelected(); }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter */ setValue : function (value) { this.menu.setSelected(value); this.fireEvent('update', this); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { return this.getValue().length > 0; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { var args = {type: 'list', value: this.phpMode ? this.getValue().join(',') : this.getValue()}; return args; }, /** @private */ onCheckChange : function(){ this.dt.delay(this.updateBuffer); }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { return this.getValue().indexOf(record.get(this.dataIndex)) > -1; } });/** * @class Ext.ux.grid.filter.NumericFilter * @extends Ext.ux.grid.filter.Filter * Filters using an Ext.ux.menu.RangeMenu. *

        Example Usage:

        * 
            
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        type: 'numeric',
        dataIndex: 'price'
    }]
});
 *
        */ Ext.ux.grid.filter.NumericFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {Object} fieldCls * The Class to use to construct each field item within this menu * Defaults to:
             * fieldCls : Ext.form.NumberField
     *
        */ fieldCls : Ext.form.NumberField, /** * @cfg {Object} fieldCfg * The default configuration options for any field item unless superseded * by the {@link #fields} configuration. * Defaults to:
             * fieldCfg : {}
     *
        * Example usage: * 
        
fieldCfg : {
    width: 150,
},
     *
        */ /** * @cfg {Object} fields * The field items may be configured individually * Defaults to undefined. * Example usage: * 
        
fields : {
    gt: { // override fieldCfg options
        width: 200,
        fieldCls: Ext.ux.form.CustomNumberField // to override default {@link #fieldCls}
    }
},
     *
        */ /** * @cfg {Object} iconCls * The iconCls to be applied to each comparator field item. * Defaults to:
        iconCls : {
    gt : 'ux-rangemenu-gt',
    lt : 'ux-rangemenu-lt',
    eq : 'ux-rangemenu-eq'
}
     *
        */ iconCls : { gt : 'ux-rangemenu-gt', lt : 'ux-rangemenu-lt', eq : 'ux-rangemenu-eq' }, /** * @cfg {Object} menuItemCfgs * Default configuration options for each menu item * Defaults to:
        menuItemCfgs : {
    emptyText: 'Enter Filter Text...',
    selectOnFocus: true,
    width: 125
}
     *
        */ menuItemCfgs : { emptyText: 'Enter Filter Text...', selectOnFocus: true, width: 125 }, /** * @cfg {Array} menuItems * The items to be shown in this menu. Items are added to the menu * according to their position within this array. Defaults to:
             * menuItems : ['lt','gt','-','eq']
     *
        */ menuItems : ['lt', 'gt', '-', 'eq'], /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { // if a menu already existed, do clean up first if (this.menu){ this.menu.destroy(); } this.menu = new Ext.ux.menu.RangeMenu(Ext.apply(config, { // pass along filter configs to the menu fieldCfg : this.fieldCfg || {}, fieldCls : this.fieldCls, fields : this.fields || {}, iconCls: this.iconCls, menuItemCfgs: this.menuItemCfgs, menuItems: this.menuItems, updateBuffer: this.updateBuffer })); // relay the event fired by the menu this.menu.on('update', this.fireUpdate, this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { return this.menu.getValue(); }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter */ setValue : function (value) { this.menu.setValue(value); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { var values = this.getValue(); for (key in values) { if (values[key] !== undefined) { return true; } } return false; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { var key, args = [], values = this.menu.getValue(); for (key in values) { args.push({ type: 'numeric', comparison: key, value: values[key] }); } return args; }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { var val = record.get(this.dataIndex), values = this.getValue(); if (values.eq !== undefined && val != values.eq) { return false; } if (values.lt !== undefined && val >= values.lt) { return false; } if (values.gt !== undefined && val <= values.gt) { return false; } return true; } });/** * @class Ext.ux.grid.filter.StringFilter * @extends Ext.ux.grid.filter.Filter * Filter by a configurable Ext.form.TextField *

        Example Usage:

        * 
            
var filters = new Ext.ux.grid.GridFilters({
    ...
    filters: [{
        // required configs
        type: 'string',
        dataIndex: 'name',
        
        // optional configs
        value: 'foo',
        active: true, // default is false
        iconCls: 'ux-gridfilter-text-icon' // default
        // any Ext.form.TextField configs accepted
    }]
});
 *
        */ Ext.ux.grid.filter.StringFilter = Ext.extend(Ext.ux.grid.filter.Filter, { /** * @cfg {String} iconCls * The iconCls to be applied to the menu item. * Defaults to 'ux-gridfilter-text-icon'. */ iconCls : 'ux-gridfilter-text-icon', emptyText: 'Enter Filter Text...', selectOnFocus: true, width: 125, /** * @private * Template method that is to initialize the filter and install required menu items. */ init : function (config) { Ext.applyIf(config, { enableKeyEvents: true, iconCls: this.iconCls, listeners: { scope: this, keyup: this.onInputKeyUp } }); this.inputItem = new Ext.form.TextField(config); this.menu.add(this.inputItem); this.updateTask = new Ext.util.DelayedTask(this.fireUpdate, this); }, /** * @private * Template method that is to get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { return this.inputItem.getValue(); }, /** * @private * Template method that is to set the value of the filter. * @param {Object} value The value to set the filter */ setValue : function (value) { this.inputItem.setValue(value); this.fireEvent('update', this); }, /** * @private * Template method that is to return true if the filter * has enough configuration information to be activated. * @return {Boolean} */ isActivatable : function () { return this.inputItem.getValue().length > 0; }, /** * @private * Template method that is to get and return serialized filter data for * transmission to the server. * @return {Object/Array} An object or collection of objects containing * key value pairs representing the current configuration of the filter. */ getSerialArgs : function () { return {type: 'string', value: this.getValue()}; }, /** * Template method that is to validate the provided Ext.data.Record * against the filters configuration. * @param {Ext.data.Record} record The record to validate * @return {Boolean} true if the record is valid within the bounds * of the filter, false otherwise. */ validateRecord : function (record) { var val = record.get(this.dataIndex); if(typeof val != 'string') { return (this.getValue().length === 0); } return val.toLowerCase().indexOf(this.getValue().toLowerCase()) > -1; }, /** * @private * Handler method called when there is a keyup event on this.inputItem */ onInputKeyUp : function (field, e) { var k = e.getKey(); if (k == e.RETURN && field.isValid()) { e.stopEvent(); this.menu.hide(true); return; } // restart the timer this.updateTask.delay(this.updateBuffer); } }); Ext.namespace('Ext.ux.menu'); /** * @class Ext.ux.menu.ListMenu * @extends Ext.menu.Menu * This is a supporting class for {@link Ext.ux.grid.filter.ListFilter}. * Although not listed as configuration options for this class, this class * also accepts all configuration options from {@link Ext.ux.grid.filter.ListFilter}. */ Ext.ux.menu.ListMenu = Ext.extend(Ext.menu.Menu, { /** * @cfg {String} labelField * Defaults to 'text'. */ labelField : 'text', /** * @cfg {String} paramPrefix * Defaults to 'Loading...'. */ loadingText : 'Loading...', /** * @cfg {Boolean} loadOnShow * Defaults to true. */ loadOnShow : true, /** * @cfg {Boolean} single * Specify true to group all items in this list into a single-select * radio button group. Defaults to false. */ single : false, constructor : function (cfg) { this.selected = []; this.addEvents( /** * @event checkchange * Fires when there is a change in checked items from this list * @param {Object} item Ext.menu.CheckItem * @param {Object} checked The checked value that was set */ 'checkchange' ); Ext.ux.menu.ListMenu.superclass.constructor.call(this, cfg = cfg || {}); if(!cfg.store && cfg.options){ var options = []; for(var i=0, len=cfg.options.length; i -1, hideOnClick: false}); item.itemId = records[i].id; item.on('checkchange', this.checkChange, this); this.add(item); } this.loaded = true; if (visible) { this.show(); } this.fireEvent('load', this, records); }, /** * Get the selected items. * @return {Array} selected */ getSelected : function () { return this.selected; }, /** @private */ setSelected : function (value) { value = this.selected = [].concat(value); if (this.loaded) { this.items.each(function(item){ item.setChecked(false, true); for (var i = 0, len = value.length; i < len; i++) { if (item.itemId == value[i]) { item.setChecked(true, true); } } }, this); } }, /** * Handler for the 'checkchange' event from an check item in this menu * @param {Object} item Ext.menu.CheckItem * @param {Object} checked The checked value that was set */ checkChange : function (item, checked) { var value = []; this.items.each(function(item){ if (item.checked) { value.push(item.itemId); } },this); this.selected = value; this.fireEvent('checkchange', item, checked); } });Ext.ns('Ext.ux.menu'); /** * @class Ext.ux.menu.RangeMenu * @extends Ext.menu.Menu * Custom implementation of Ext.menu.Menu that has preconfigured * items for gt, lt, eq. *

        Example Usage:

        * 
            

 *
        */ Ext.ux.menu.RangeMenu = Ext.extend(Ext.menu.Menu, { constructor : function (config) { Ext.ux.menu.RangeMenu.superclass.constructor.call(this, config); this.addEvents( /** * @event update * Fires when a filter configuration has changed * @param {Ext.ux.grid.filter.Filter} this The filter object. */ 'update' ); this.updateTask = new Ext.util.DelayedTask(this.fireUpdate, this); var i, len, item, cfg, Cls; for (i = 0, len = this.menuItems.length; i < len; i++) { item = this.menuItems[i]; if (item !== '-') { // defaults cfg = { itemId: 'range-' + item, enableKeyEvents: true, iconCls: this.iconCls[item] || 'no-icon', listeners: { scope: this, keyup: this.onInputKeyUp } }; Ext.apply( cfg, // custom configs Ext.applyIf(this.fields[item] || {}, this.fieldCfg[item]), // configurable defaults this.menuItemCfgs ); Cls = cfg.fieldCls || this.fieldCls; item = this.fields[item] = new Cls(cfg); } this.add(item); } }, /** * @private * called by this.updateTask */ fireUpdate : function () { this.fireEvent('update', this); }, /** * Get and return the value of the filter. * @return {String} The value of this filter */ getValue : function () { var result = {}, key, field; for (key in this.fields) { field = this.fields[key]; if (field.isValid() && String(field.getValue()).length > 0) { result[key] = field.getValue(); } } return result; }, /** * Set the value of this menu and fires the 'update' event. * @param {Object} data The data to assign to this menu */ setValue : function (data) { var key; for (key in this.fields) { this.fields[key].setValue(data[key] !== undefined ? data[key] : ''); } this.fireEvent('update', this); }, /** * @private * Handler method called when there is a keyup event on an input * item of this menu. */ onInputKeyUp : function (field, e) { var k = e.getKey(); if (k == e.RETURN && field.isValid()) { e.stopEvent(); this.hide(true); return; } if (field == this.fields.eq) { if (this.fields.gt) { this.fields.gt.setValue(null); } if (this.fields.lt) { this.fields.lt.setValue(null); } } else { this.fields.eq.setValue(null); } // restart the timer this.updateTask.delay(this.updateBuffer); } }); Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.GroupSummary * @extends Ext.util.Observable * A GridPanel plugin that enables dynamic column calculations and a dynamically * updated grouped summary row. */ Ext.ux.grid.GroupSummary = Ext.extend(Ext.util.Observable, { /** * @cfg {Function} summaryRenderer Renderer example:
        
summaryRenderer: function(v, params, data){
    return ((v === 0 || v > 1) ? '(' + v +' Tasks)' : '(1 Task)');
},
     *
        */ /** * @cfg {String} summaryType (Optional) The type of * calculation to be used for the column. For options available see * {@link #Calculations}. */ constructor : function(config){ Ext.apply(this, config); Ext.ux.grid.GroupSummary.superclass.constructor.call(this); }, init : function(grid){ this.grid = grid; var v = this.view = grid.getView(); v.doGroupEnd = this.doGroupEnd.createDelegate(this); v.afterMethod('onColumnWidthUpdated', this.doWidth, this); v.afterMethod('onAllColumnWidthsUpdated', this.doAllWidths, this); v.afterMethod('onColumnHiddenUpdated', this.doHidden, this); v.afterMethod('onUpdate', this.doUpdate, this); v.afterMethod('onRemove', this.doRemove, this); if(!this.rowTpl){ this.rowTpl = new Ext.Template( '
        ', '', '{cells}', '
        ' ); this.rowTpl.disableFormats = true; } this.rowTpl.compile(); if(!this.cellTpl){ this.cellTpl = new Ext.Template( '', '
        {value}
        ', "" ); this.cellTpl.disableFormats = true; } this.cellTpl.compile(); }, /** * Toggle the display of the summary row on/off * @param {Boolean} visible true to show the summary, false to hide the summary. */ toggleSummaries : function(visible){ var el = this.grid.getGridEl(); if(el){ if(visible === undefined){ visible = el.hasClass('x-grid-hide-summary'); } el[visible ? 'removeClass' : 'addClass']('x-grid-hide-summary'); } }, renderSummary : function(o, cs){ cs = cs || this.view.getColumnData(); var cfg = this.grid.getColumnModel().config, buf = [], c, p = {}, cf, last = cs.length-1; for(var i = 0, len = cs.length; i < len; i++){ c = cs[i]; cf = cfg[i]; p.id = c.id; p.style = c.style; p.css = i == 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); if(cf.summaryType || cf.summaryRenderer){ p.value = (cf.summaryRenderer || c.renderer)(o.data[c.name], p, o); }else{ p.value = ''; } if(p.value == undefined || p.value === "") p.value = " "; buf[buf.length] = this.cellTpl.apply(p); } return this.rowTpl.apply({ tstyle: 'width:'+this.view.getTotalWidth()+';', cells: buf.join('') }); }, /** * @private * @param {Object} rs * @param {Object} cs */ calculate : function(rs, cs){ var data = {}, r, c, cfg = this.grid.getColumnModel().config, cf; for(var j = 0, jlen = rs.length; j < jlen; j++){ r = rs[j]; for(var i = 0, len = cs.length; i < len; i++){ c = cs[i]; cf = cfg[i]; if(cf.summaryType){ data[c.name] = Ext.ux.grid.GroupSummary.Calculations[cf.summaryType](data[c.name] || 0, r, c.name, data); } } } return data; }, doGroupEnd : function(buf, g, cs, ds, colCount){ var data = this.calculate(g.rs, cs); buf.push('
      ', this.renderSummary({data: data}, cs), '
    '); }, doWidth : function(col, w, tw){ if(!this.isGrouped()){ return; } var gs = this.view.getGroups(), len = gs.length, i = 0, s; for(; i < len; ++i){ s = gs[i].childNodes[2]; s.style.width = tw; s.firstChild.style.width = tw; s.firstChild.rows[0].childNodes[col].style.width = w; } }, doAllWidths : function(ws, tw){ if(!this.isGrouped()){ return; } var gs = this.view.getGroups(), len = gs.length, i = 0, j, s, cells, wlen = ws.length; for(; i < len; i++){ s = gs[i].childNodes[2]; s.style.width = tw; s.firstChild.style.width = tw; cells = s.firstChild.rows[0].childNodes; for(j = 0; j < wlen; j++){ cells[j].style.width = ws[j]; } } }, doHidden : function(col, hidden, tw){ if(!this.isGrouped()){ return; } var gs = this.view.getGroups(), len = gs.length, i = 0, s, display = hidden ? 'none' : ''; for(; i < len; i++){ s = gs[i].childNodes[2]; s.style.width = tw; s.firstChild.style.width = tw; s.firstChild.rows[0].childNodes[col].style.display = display; } }, isGrouped : function(){ return !Ext.isEmpty(this.grid.getStore().groupField); }, // Note: requires that all (or the first) record in the // group share the same group value. Returns false if the group // could not be found. refreshSummary : function(groupValue){ return this.refreshSummaryById(this.view.getGroupId(groupValue)); }, getSummaryNode : function(gid){ var g = Ext.fly(gid, '_gsummary'); if(g){ return g.down('.x-grid3-summary-row', true); } return null; }, refreshSummaryById : function(gid){ var g = Ext.getDom(gid); if(!g){ return false; } var rs = []; this.grid.getStore().each(function(r){ if(r._groupId == gid){ rs[rs.length] = r; } }); var cs = this.view.getColumnData(), data = this.calculate(rs, cs), markup = this.renderSummary({data: data}, cs), existing = this.getSummaryNode(gid); if(existing){ g.removeChild(existing); } Ext.DomHelper.append(g, markup); return true; }, doUpdate : function(ds, record){ this.refreshSummaryById(record._groupId); }, doRemove : function(ds, record, index, isUpdate){ if(!isUpdate){ this.refreshSummaryById(record._groupId); } }, /** * Show a message in the summary row. * 
    
grid.on('afteredit', function(){
    var groupValue = 'Ext Forms: Field Anchoring';
    summary.showSummaryMsg(groupValue, 'Updating Summary...');
});
     *
    * @param {String} groupValue * @param {String} msg Text to use as innerHTML for the summary row. */ showSummaryMsg : function(groupValue, msg){ var gid = this.view.getGroupId(groupValue), node = this.getSummaryNode(gid); if(node){ node.innerHTML = '
    ' + msg + '
    '; } } }); //backwards compat Ext.grid.GroupSummary = Ext.ux.grid.GroupSummary; /** * Calculation types for summary row:

      *
    • sum :
      • *
    • count :
      • *
    • max :
      • *
    • min :
      • *
    • average :
      • *
    *

    Custom calculations may be implemented. An example of * custom summaryType=totalCost:

    
// define a custom summary function
Ext.ux.grid.GroupSummary.Calculations['totalCost'] = function(v, record, field){
    return v + (record.data.estimate * record.data.rate);
};
 *
    * @property Calculations */ Ext.ux.grid.GroupSummary.Calculations = { 'sum' : function(v, record, field){ return v + (record.data[field]||0); }, 'count' : function(v, record, field, data){ return data[field+'count'] ? ++data[field+'count'] : (data[field+'count'] = 1); }, 'max' : function(v, record, field, data){ var v = record.data[field]; var max = data[field+'max'] === undefined ? (data[field+'max'] = v) : data[field+'max']; return v > max ? (data[field+'max'] = v) : max; }, 'min' : function(v, record, field, data){ var v = record.data[field]; var min = data[field+'min'] === undefined ? (data[field+'min'] = v) : data[field+'min']; return v < min ? (data[field+'min'] = v) : min; }, 'average' : function(v, record, field, data){ var c = data[field+'count'] ? ++data[field+'count'] : (data[field+'count'] = 1); var t = (data[field+'total'] = ((data[field+'total']||0) + (record.data[field]||0))); return t === 0 ? 0 : t / c; } }; Ext.grid.GroupSummary.Calculations = Ext.ux.grid.GroupSummary.Calculations; /** * @class Ext.ux.grid.HybridSummary * @extends Ext.ux.grid.GroupSummary * Adds capability to specify the summary data for the group via json as illustrated here: * 
    
{
    data: [
        {
            projectId: 100,     project: 'House',
            taskId:    112, description: 'Paint',
            estimate:    6,        rate:     150,
            due:'06/24/2007'
        },
        ...
    ],

    summaryData: {
        'House': {
            description: 14, estimate: 9,
                   rate: 99, due: new Date(2009, 6, 29),
                   cost: 999
        }
    }
}
 *
    * */ Ext.ux.grid.HybridSummary = Ext.extend(Ext.ux.grid.GroupSummary, { /** * @private * @param {Object} rs * @param {Object} cs */ calculate : function(rs, cs){ var gcol = this.view.getGroupField(), gvalue = rs[0].data[gcol], gdata = this.getSummaryData(gvalue); return gdata || Ext.ux.grid.HybridSummary.superclass.calculate.call(this, rs, cs); }, /** * 
    
grid.on('afteredit', function(){
    var groupValue = 'Ext Forms: Field Anchoring';
    summary.showSummaryMsg(groupValue, 'Updating Summary...');
    setTimeout(function(){ // simulate server call
        // HybridSummary class implements updateSummaryData
        summary.updateSummaryData(groupValue,
            // create data object based on configured dataIndex
            {description: 22, estimate: 888, rate: 888, due: new Date(), cost: 8});
    }, 2000);
});
     *
    * @param {String} groupValue * @param {Object} data data object * @param {Boolean} skipRefresh (Optional) Defaults to false */ updateSummaryData : function(groupValue, data, skipRefresh){ var json = this.grid.getStore().reader.jsonData; if(!json.summaryData){ json.summaryData = {}; } json.summaryData[groupValue] = data; if(!skipRefresh){ this.refreshSummary(groupValue); } }, /** * Returns the summaryData for the specified groupValue or null. * @param {String} groupValue * @return {Object} summaryData */ getSummaryData : function(groupValue){ var reader = this.grid.getStore().reader, json = reader.jsonData, fields = reader.recordType.prototype.fields, v; if(json && json.summaryData){ v = json.summaryData[groupValue]; if(v){ return reader.extractValues(v, fields.items, fields.length); } } return null; } }); //backwards compat Ext.grid.HybridSummary = Ext.ux.grid.HybridSummary; Ext.ux.GroupTab = Ext.extend(Ext.Container, { mainItem: 0, expanded: true, deferredRender: true, activeTab: null, idDelimiter: '__', headerAsText: false, frame: false, hideBorders: true, initComponent: function(config){ Ext.apply(this, config); this.frame = false; Ext.ux.GroupTab.superclass.initComponent.call(this); this.addEvents('activate', 'deactivate', 'changemainitem', 'beforetabchange', 'tabchange'); this.setLayout(new Ext.layout.CardLayout({ deferredRender: this.deferredRender })); if (!this.stack) { this.stack = Ext.TabPanel.AccessStack(); } this.initItems(); this.on('beforerender', function(){ this.groupEl = this.ownerCt.getGroupEl(this); }, this); this.on('add', this.onAdd, this, { target: this }); this.on('remove', this.onRemove, this, { target: this }); if (this.mainItem !== undefined) { var item = (typeof this.mainItem == 'object') ? this.mainItem : this.items.get(this.mainItem); delete this.mainItem; this.setMainItem(item); } }, /** * Sets the specified tab as the active tab. This method fires the {@link #beforetabchange} event which * can return false to cancel the tab change. * @param {String/Panel} tab The id or tab Panel to activate */ setActiveTab : function(item){ item = this.getComponent(item); if(!item){ return false; } if(!this.rendered){ this.activeTab = item; return true; } if(this.activeTab != item && this.fireEvent('beforetabchange', this, item, this.activeTab) !== false){ if(this.activeTab && this.activeTab != this.mainItem){ var oldEl = this.getTabEl(this.activeTab); if(oldEl){ Ext.fly(oldEl).removeClass('x-grouptabs-strip-active'); } } var el = this.getTabEl(item); Ext.fly(el).addClass('x-grouptabs-strip-active'); this.activeTab = item; this.stack.add(item); this.layout.setActiveItem(item); if(this.layoutOnTabChange && item.doLayout){ item.doLayout(); } if(this.scrolling){ this.scrollToTab(item, this.animScroll); } this.fireEvent('tabchange', this, item); return true; } return false; }, getTabEl: function(item){ if (item == this.mainItem) { return this.groupEl; } return Ext.TabPanel.prototype.getTabEl.call(this, item); }, onRender: function(ct, position){ Ext.ux.GroupTab.superclass.onRender.call(this, ct, position); this.strip = Ext.fly(this.groupEl).createChild({ tag: 'ul', cls: 'x-grouptabs-sub' }); this.tooltip = new Ext.ToolTip({ target: this.groupEl, delegate: 'a.x-grouptabs-text', trackMouse: true, renderTo: document.body, listeners: { beforeshow: function(tip) { var item = (tip.triggerElement.parentNode === this.mainItem.tabEl) ? this.mainItem : this.findById(tip.triggerElement.parentNode.id.split(this.idDelimiter)[1]); if(!item.tabTip) { return false; } tip.body.dom.innerHTML = item.tabTip; }, scope: this } }); if (!this.itemTpl) { var tt = new Ext.Template('
  • ', '{text}', '
    • '); tt.disableFormats = true; tt.compile(); Ext.ux.GroupTab.prototype.itemTpl = tt; } this.items.each(this.initTab, this); }, afterRender: function(){ Ext.ux.GroupTab.superclass.afterRender.call(this); if (this.activeTab !== undefined) { var item = (typeof this.activeTab == 'object') ? this.activeTab : this.items.get(this.activeTab); delete this.activeTab; this.setActiveTab(item); } }, // private initTab: function(item, index){ var before = this.strip.dom.childNodes[index]; var p = Ext.TabPanel.prototype.getTemplateArgs.call(this, item); if (item === this.mainItem) { item.tabEl = this.groupEl; p.cls += ' x-grouptabs-main-item'; } var el = before ? this.itemTpl.insertBefore(before, p) : this.itemTpl.append(this.strip, p); item.tabEl = item.tabEl || el; item.on('disable', this.onItemDisabled, this); item.on('enable', this.onItemEnabled, this); item.on('titlechange', this.onItemTitleChanged, this); item.on('iconchange', this.onItemIconChanged, this); item.on('beforeshow', this.onBeforeShowItem, this); }, setMainItem: function(item){ item = this.getComponent(item); if (!item || this.fireEvent('changemainitem', this, item, this.mainItem) === false) { return; } this.mainItem = item; }, getMainItem: function(){ return this.mainItem || null; }, // private onBeforeShowItem: function(item){ if (item != this.activeTab) { this.setActiveTab(item); return false; } }, // private onAdd: function(gt, item, index){ if (this.rendered) { this.initTab.call(this, item, index); } }, // private onRemove: function(tp, item){ Ext.destroy(Ext.get(this.getTabEl(item))); this.stack.remove(item); item.un('disable', this.onItemDisabled, this); item.un('enable', this.onItemEnabled, this); item.un('titlechange', this.onItemTitleChanged, this); item.un('iconchange', this.onItemIconChanged, this); item.un('beforeshow', this.onBeforeShowItem, this); if (item == this.activeTab) { var next = this.stack.next(); if (next) { this.setActiveTab(next); } else if (this.items.getCount() > 0) { this.setActiveTab(0); } else { this.activeTab = null; } } }, // private onBeforeAdd: function(item){ var existing = item.events ? (this.items.containsKey(item.getItemId()) ? item : null) : this.items.get(item); if (existing) { this.setActiveTab(item); return false; } Ext.TabPanel.superclass.onBeforeAdd.apply(this, arguments); var es = item.elements; item.elements = es ? es.replace(',header', '') : es; item.border = (item.border === true); }, // private onItemDisabled: Ext.TabPanel.prototype.onItemDisabled, onItemEnabled: Ext.TabPanel.prototype.onItemEnabled, // private onItemTitleChanged: function(item){ var el = this.getTabEl(item); if (el) { Ext.fly(el).child('a.x-grouptabs-text', true).innerHTML = item.title; } }, //private onItemIconChanged: function(item, iconCls, oldCls){ var el = this.getTabEl(item); if (el) { Ext.fly(el).child('a.x-grouptabs-text').replaceClass(oldCls, iconCls); } }, beforeDestroy: function(){ Ext.TabPanel.prototype.beforeDestroy.call(this); this.tooltip.destroy(); } }); Ext.reg('grouptab', Ext.ux.GroupTab); Ext.ns('Ext.ux'); Ext.ux.GroupTabPanel = Ext.extend(Ext.TabPanel, { tabPosition: 'left', alternateColor: false, alternateCls: 'x-grouptabs-panel-alt', defaultType: 'grouptab', deferredRender: false, activeGroup : null, initComponent: function(){ Ext.ux.GroupTabPanel.superclass.initComponent.call(this); this.addEvents( 'beforegroupchange', 'groupchange' ); this.elements = 'body,header'; this.stripTarget = 'header'; this.tabPosition = this.tabPosition == 'right' ? 'right' : 'left'; this.addClass('x-grouptabs-panel'); if (this.tabStyle && this.tabStyle != '') { this.addClass('x-grouptabs-panel-' + this.tabStyle); } if (this.alternateColor) { this.addClass(this.alternateCls); } this.on('beforeadd', function(gtp, item, index){ this.initGroup(item, index); }); this.items.each(function(item){ item.on('tabchange',function(item){ this.fireEvent('tabchange', this, item.activeTab); }, this); },this); }, initEvents : function() { this.mon(this.strip, 'mousedown', this.onStripMouseDown, this); }, onRender: function(ct, position){ Ext.TabPanel.superclass.onRender.call(this, ct, position); if(this.plain){ var pos = this.tabPosition == 'top' ? 'header' : 'footer'; this[pos].addClass('x-tab-panel-'+pos+'-plain'); } var st = this[this.stripTarget]; this.stripWrap = st.createChild({cls:'x-tab-strip-wrap ', cn:{ tag:'ul', cls:'x-grouptabs-strip x-grouptabs-tab-strip-'+this.tabPosition}}); var beforeEl = (this.tabPosition=='bottom' ? this.stripWrap : null); this.strip = new Ext.Element(this.stripWrap.dom.firstChild); this.header.addClass('x-grouptabs-panel-header'); this.bwrap.addClass('x-grouptabs-bwrap'); this.body.addClass('x-tab-panel-body-'+this.tabPosition + ' x-grouptabs-panel-body'); if (!this.groupTpl) { var tt = new Ext.Template( '
  • ', '', '', '{text}', '
    • ' ); tt.disableFormats = true; tt.compile(); Ext.ux.GroupTabPanel.prototype.groupTpl = tt; } this.items.each(this.initGroup, this); }, afterRender: function(){ Ext.ux.GroupTabPanel.superclass.afterRender.call(this); this.tabJoint = Ext.fly(this.body.dom.parentNode).createChild({ cls: 'x-tab-joint' }); this.addClass('x-tab-panel-' + this.tabPosition); this.header.setWidth(this.tabWidth); if (this.activeGroup !== undefined) { var group = (typeof this.activeGroup == 'object') ? this.activeGroup : this.items.get(this.activeGroup); delete this.activeGroup; this.setActiveGroup(group); group.setActiveTab(group.getMainItem()); } }, getGroupEl : Ext.TabPanel.prototype.getTabEl, // private findTargets: function(e){ var item = null, itemEl = e.getTarget('li', this.strip); if (itemEl) { item = this.findById(itemEl.id.split(this.idDelimiter)[1]); if (item.disabled) { return { expand: null, item: null, el: null }; } } return { expand: e.getTarget('.x-grouptabs-expand', this.strip), isGroup: !e.getTarget('ul.x-grouptabs-sub', this.strip), item: item, el: itemEl }; }, // private onStripMouseDown: function(e){ if (e.button != 0) { return; } e.preventDefault(); var t = this.findTargets(e); if (t.expand) { this.toggleGroup(t.el); } else if (t.item) { if(t.isGroup) { t.item.setActiveTab(t.item.getMainItem()); } else { t.item.ownerCt.setActiveTab(t.item); } } }, expandGroup: function(groupEl){ if(groupEl.isXType) { groupEl = this.getGroupEl(groupEl); } Ext.fly(groupEl).addClass('x-grouptabs-expanded'); this.syncTabJoint(); }, toggleGroup: function(groupEl){ if(groupEl.isXType) { groupEl = this.getGroupEl(groupEl); } Ext.fly(groupEl).toggleClass('x-grouptabs-expanded'); this.syncTabJoint(); }, collapseGroup: function(groupEl){ if(groupEl.isXType) { groupEl = this.getGroupEl(groupEl); } Ext.fly(groupEl).removeClass('x-grouptabs-expanded'); this.syncTabJoint(); }, syncTabJoint: function(groupEl){ if (!this.tabJoint) { return; } groupEl = groupEl || this.getGroupEl(this.activeGroup); if(groupEl) { this.tabJoint.setHeight(Ext.fly(groupEl).getHeight() - 2); var y = Ext.isGecko2 ? 0 : 1; if (this.tabPosition == 'left'){ this.tabJoint.alignTo(groupEl, 'tl-tr', [-2,y]); } else { this.tabJoint.alignTo(groupEl, 'tr-tl', [1,y]); } } else { this.tabJoint.hide(); } }, getActiveTab : function() { if(!this.activeGroup) return null; return this.activeGroup.getTabEl(this.activeGroup.activeTab) || null; }, onResize: function(){ Ext.ux.GroupTabPanel.superclass.onResize.apply(this, arguments); this.syncTabJoint(); }, createCorner: function(el, pos){ return Ext.fly(el).createChild({ cls: 'x-grouptabs-corner x-grouptabs-corner-' + pos }); }, initGroup: function(group, index){ var before = this.strip.dom.childNodes[index], p = this.getTemplateArgs(group); if (index === 0) { p.cls += ' x-tab-first'; } p.cls += ' x-grouptabs-main'; p.text = group.getMainItem().title; var el = before ? this.groupTpl.insertBefore(before, p) : this.groupTpl.append(this.strip, p), tl = this.createCorner(el, 'top-' + this.tabPosition), bl = this.createCorner(el, 'bottom-' + this.tabPosition); group.tabEl = el; if (group.expanded) { this.expandGroup(el); } if (Ext.isIE6 || (Ext.isIE && !Ext.isStrict)){ bl.setLeft('-10px'); bl.setBottom('-5px'); tl.setLeft('-10px'); tl.setTop('-5px'); } this.mon(group, { scope: this, changemainitem: this.onGroupChangeMainItem, beforetabchange: this.onGroupBeforeTabChange }); }, setActiveGroup : function(group) { group = this.getComponent(group); if(!group){ return false; } if(!this.rendered){ this.activeGroup = group; return true; } if(this.activeGroup != group && this.fireEvent('beforegroupchange', this, group, this.activeGroup) !== false){ if(this.activeGroup){ this.activeGroup.activeTab = null; var oldEl = this.getGroupEl(this.activeGroup); if(oldEl){ Ext.fly(oldEl).removeClass('x-grouptabs-strip-active'); } } var groupEl = this.getGroupEl(group); Ext.fly(groupEl).addClass('x-grouptabs-strip-active'); this.activeGroup = group; this.stack.add(group); this.layout.setActiveItem(group); this.syncTabJoint(groupEl); this.fireEvent('groupchange', this, group); return true; } return false; }, onGroupBeforeTabChange: function(group, newTab, oldTab){ if(group !== this.activeGroup || newTab !== oldTab) { this.strip.select('.x-grouptabs-sub > li.x-grouptabs-strip-active', true).removeClass('x-grouptabs-strip-active'); } this.expandGroup(this.getGroupEl(group)); if(group !== this.activeGroup) { return this.setActiveGroup(group); } }, getFrameHeight: function(){ var h = this.el.getFrameWidth('tb'); h += (this.tbar ? this.tbar.getHeight() : 0) + (this.bbar ? this.bbar.getHeight() : 0); return h; }, adjustBodyWidth: function(w){ return w - this.tabWidth; } }); Ext.reg('grouptabpanel', Ext.ux.GroupTabPanel); /* * Note that this control will most likely remain as an example, and not as a core Ext form * control. However, the API will be changing in a future release and so should not yet be * treated as a final, stable API at this time. */ /** * @class Ext.ux.form.ItemSelector * @extends Ext.form.Field * A control that allows selection of between two Ext.ux.form.MultiSelect controls. * * @history * 2008-06-19 bpm Original code contributed by Toby Stuart (with contributions from Robert Williams) * * @constructor * Create a new ItemSelector * @param {Object} config Configuration options * @xtype itemselector */ Ext.ux.form.ItemSelector = Ext.extend(Ext.form.Field, { hideNavIcons:false, imagePath:"", iconUp:"up2.gif", iconDown:"down2.gif", iconLeft:"left2.gif", iconRight:"right2.gif", iconTop:"top2.gif", iconBottom:"bottom2.gif", drawUpIcon:true, drawDownIcon:true, drawLeftIcon:true, drawRightIcon:true, drawTopIcon:true, drawBotIcon:true, delimiter:',', bodyStyle:null, border:false, defaultAutoCreate:{tag: "div"}, /** * @cfg {Array} multiselects An array of {@link Ext.ux.form.MultiSelect} config objects, with at least all required parameters (e.g., store) */ multiselects:null, initComponent: function(){ Ext.ux.form.ItemSelector.superclass.initComponent.call(this); this.addEvents({ 'rowdblclick' : true, 'change' : true }); }, onRender: function(ct, position){ Ext.ux.form.ItemSelector.superclass.onRender.call(this, ct, position); // Internal default configuration for both multiselects var msConfig = [{ legend: 'Available', draggable: true, droppable: true, width: 100, height: 100 },{ legend: 'Selected', droppable: true, draggable: true, width: 100, height: 100 }]; this.fromMultiselect = new Ext.ux.form.MultiSelect(Ext.applyIf(this.multiselects[0], msConfig[0])); this.fromMultiselect.on('dblclick', this.onRowDblClick, this); this.toMultiselect = new Ext.ux.form.MultiSelect(Ext.applyIf(this.multiselects[1], msConfig[1])); this.toMultiselect.on('dblclick', this.onRowDblClick, this); var p = new Ext.Panel({ bodyStyle:this.bodyStyle, border:this.border, layout:"table", layoutConfig:{columns:3} }); p.add(this.fromMultiselect); var icons = new Ext.Panel({header:false}); p.add(icons); p.add(this.toMultiselect); p.render(this.el); icons.el.down('.'+icons.bwrapCls).remove(); // ICON HELL!!! if (this.imagePath!="" && this.imagePath.charAt(this.imagePath.length-1)!="/") this.imagePath+="/"; this.iconUp = this.imagePath + (this.iconUp || 'up2.gif'); this.iconDown = this.imagePath + (this.iconDown || 'down2.gif'); this.iconLeft = this.imagePath + (this.iconLeft || 'left2.gif'); this.iconRight = this.imagePath + (this.iconRight || 'right2.gif'); this.iconTop = this.imagePath + (this.iconTop || 'top2.gif'); this.iconBottom = this.imagePath + (this.iconBottom || 'bottom2.gif'); var el=icons.getEl(); this.toTopIcon = el.createChild({tag:'img', src:this.iconTop, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.upIcon = el.createChild({tag:'img', src:this.iconUp, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.addIcon = el.createChild({tag:'img', src:this.iconRight, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.removeIcon = el.createChild({tag:'img', src:this.iconLeft, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.downIcon = el.createChild({tag:'img', src:this.iconDown, style:{cursor:'pointer', margin:'2px'}}); el.createChild({tag: 'br'}); this.toBottomIcon = el.createChild({tag:'img', src:this.iconBottom, style:{cursor:'pointer', margin:'2px'}}); this.toTopIcon.on('click', this.toTop, this); this.upIcon.on('click', this.up, this); this.downIcon.on('click', this.down, this); this.toBottomIcon.on('click', this.toBottom, this); this.addIcon.on('click', this.fromTo, this); this.removeIcon.on('click', this.toFrom, this); if (!this.drawUpIcon || this.hideNavIcons) { this.upIcon.dom.style.display='none'; } if (!this.drawDownIcon || this.hideNavIcons) { this.downIcon.dom.style.display='none'; } if (!this.drawLeftIcon || this.hideNavIcons) { this.addIcon.dom.style.display='none'; } if (!this.drawRightIcon || this.hideNavIcons) { this.removeIcon.dom.style.display='none'; } if (!this.drawTopIcon || this.hideNavIcons) { this.toTopIcon.dom.style.display='none'; } if (!this.drawBotIcon || this.hideNavIcons) { this.toBottomIcon.dom.style.display='none'; } var tb = p.body.first(); this.el.setWidth(p.body.first().getWidth()); p.body.removeClass(); this.hiddenName = this.name; var hiddenTag = {tag: "input", type: "hidden", value: "", name: this.name}; this.hiddenField = this.el.createChild(hiddenTag); }, doLayout: function(){ if(this.rendered){ this.fromMultiselect.fs.doLayout(); this.toMultiselect.fs.doLayout(); } }, afterRender: function(){ Ext.ux.form.ItemSelector.superclass.afterRender.call(this); this.toStore = this.toMultiselect.store; this.toStore.on('add', this.valueChanged, this); this.toStore.on('remove', this.valueChanged, this); this.toStore.on('load', this.valueChanged, this); this.valueChanged(this.toStore); }, toTop : function() { var selectionsArray = this.toMultiselect.view.getSelectedIndexes(); var records = []; if (selectionsArray.length > 0) { selectionsArray.sort(); for (var i=0; i-1; i--) { record = records[i]; this.toMultiselect.view.store.remove(record); this.toMultiselect.view.store.insert(0, record); selectionsArray.push(((records.length - 1) - i)); } } this.toMultiselect.view.refresh(); this.toMultiselect.view.select(selectionsArray); }, toBottom : function() { var selectionsArray = this.toMultiselect.view.getSelectedIndexes(); var records = []; if (selectionsArray.length > 0) { selectionsArray.sort(); for (var i=0; i 0) { for (var i=0; i= 0) { this.toMultiselect.view.store.remove(record); this.toMultiselect.view.store.insert(selectionsArray[i] - 1, record); newSelectionsArray.push(selectionsArray[i] - 1); } } this.toMultiselect.view.refresh(); this.toMultiselect.view.select(newSelectionsArray); } }, down : function() { var record = null; var selectionsArray = this.toMultiselect.view.getSelectedIndexes(); selectionsArray.sort(); selectionsArray.reverse(); var newSelectionsArray = []; if (selectionsArray.length > 0) { for (var i=0; i 0) { for (var i=0; i 0) { for (var i=0; i', '
    ', '
    {lockedHeader}
    ', '
    {lockedBody}
    ', '
    ', '
    ', '
    {header}
    ', '
    {body}
    ', '
    ', '
     
    ', '
     
    ', '' ); } this.templates = ts; Ext.ux.grid.LockingGridView.superclass.initTemplates.call(this); }, getEditorParent : function(ed){ return this.el.dom; }, initElements : function(){ var el = Ext.get(this.grid.getGridEl().dom.firstChild), lockedWrap = el.child('div.x-grid3-locked'), lockedHd = lockedWrap.child('div.x-grid3-header'), lockedScroller = lockedWrap.child('div.x-grid3-scroller'), mainWrap = el.child('div.x-grid3-viewport'), mainHd = mainWrap.child('div.x-grid3-header'), scroller = mainWrap.child('div.x-grid3-scroller'); if (this.grid.hideHeaders) { lockedHd.setDisplayed(false); mainHd.setDisplayed(false); } if(this.forceFit){ scroller.setStyle('overflow-x', 'hidden'); } Ext.apply(this, { el : el, mainWrap: mainWrap, mainHd : mainHd, innerHd : mainHd.dom.firstChild, scroller: scroller, mainBody: scroller.child('div.x-grid3-body'), focusEl : scroller.child('a'), resizeMarker: el.child('div.x-grid3-resize-marker'), resizeProxy : el.child('div.x-grid3-resize-proxy'), lockedWrap: lockedWrap, lockedHd: lockedHd, lockedScroller: lockedScroller, lockedBody: lockedScroller.child('div.x-grid3-body'), lockedInnerHd: lockedHd.child('div.x-grid3-header-inner', true) }); this.focusEl.swallowEvent('click', true); }, getLockedRows : function(){ return this.hasRows() ? this.lockedBody.dom.childNodes : []; }, getLockedRow : function(row){ return this.getLockedRows()[row]; }, getCell : function(row, col){ var lockedLen = this.cm.getLockedCount(); if(col < lockedLen){ return this.getLockedRow(row).getElementsByTagName('td')[col]; } return Ext.ux.grid.LockingGridView.superclass.getCell.call(this, row, col - lockedLen); }, getHeaderCell : function(index){ var lockedLen = this.cm.getLockedCount(); if(index < lockedLen){ return this.lockedHd.dom.getElementsByTagName('td')[index]; } return Ext.ux.grid.LockingGridView.superclass.getHeaderCell.call(this, index - lockedLen); }, addRowClass : function(row, cls){ var lockedRow = this.getLockedRow(row); if(lockedRow){ this.fly(lockedRow).addClass(cls); } Ext.ux.grid.LockingGridView.superclass.addRowClass.call(this, row, cls); }, removeRowClass : function(row, cls){ var lockedRow = this.getLockedRow(row); if(lockedRow){ this.fly(lockedRow).removeClass(cls); } Ext.ux.grid.LockingGridView.superclass.removeRowClass.call(this, row, cls); }, removeRow : function(row) { Ext.removeNode(this.getLockedRow(row)); Ext.ux.grid.LockingGridView.superclass.removeRow.call(this, row); }, removeRows : function(firstRow, lastRow){ var lockedBody = this.lockedBody.dom, rowIndex = firstRow; for(; rowIndex <= lastRow; rowIndex++){ Ext.removeNode(lockedBody.childNodes[firstRow]); } Ext.ux.grid.LockingGridView.superclass.removeRows.call(this, firstRow, lastRow); }, syncScroll : function(e){ this.lockedScroller.dom.scrollTop = this.scroller.dom.scrollTop; Ext.ux.grid.LockingGridView.superclass.syncScroll.call(this, e); }, updateSortIcon : function(col, dir){ var sortClasses = this.sortClasses, lockedHeaders = this.lockedHd.select('td').removeClass(sortClasses), headers = this.mainHd.select('td').removeClass(sortClasses), lockedLen = this.cm.getLockedCount(), cls = sortClasses[dir == 'DESC' ? 1 : 0]; if(col < lockedLen){ lockedHeaders.item(col).addClass(cls); }else{ headers.item(col - lockedLen).addClass(cls); } }, updateAllColumnWidths : function(){ var tw = this.getTotalWidth(), clen = this.cm.getColumnCount(), lw = this.getLockedWidth(), llen = this.cm.getLockedCount(), ws = [], len, i; this.updateLockedWidth(); for(i = 0; i < clen; i++){ ws[i] = this.getColumnWidth(i); var hd = this.getHeaderCell(i); hd.style.width = ws[i]; } var lns = this.getLockedRows(), ns = this.getRows(), row, trow, j; for(i = 0, len = ns.length; i < len; i++){ row = lns[i]; row.style.width = lw; if(row.firstChild){ row.firstChild.style.width = lw; trow = row.firstChild.rows[0]; for (j = 0; j < llen; j++) { trow.childNodes[j].style.width = ws[j]; } } row = ns[i]; row.style.width = tw; if(row.firstChild){ row.firstChild.style.width = tw; trow = row.firstChild.rows[0]; for (j = llen; j < clen; j++) { trow.childNodes[j - llen].style.width = ws[j]; } } } this.onAllColumnWidthsUpdated(ws, tw); this.syncHeaderHeight(); }, updateColumnWidth : function(col, width){ var w = this.getColumnWidth(col), llen = this.cm.getLockedCount(), ns, rw, c, row; this.updateLockedWidth(); if(col < llen){ ns = this.getLockedRows(); rw = this.getLockedWidth(); c = col; }else{ ns = this.getRows(); rw = this.getTotalWidth(); c = col - llen; } var hd = this.getHeaderCell(col); hd.style.width = w; for(var i = 0, len = ns.length; i < len; i++){ row = ns[i]; row.style.width = rw; if(row.firstChild){ row.firstChild.style.width = rw; row.firstChild.rows[0].childNodes[c].style.width = w; } } this.onColumnWidthUpdated(col, w, this.getTotalWidth()); this.syncHeaderHeight(); }, updateColumnHidden : function(col, hidden){ var llen = this.cm.getLockedCount(), ns, rw, c, row, display = hidden ? 'none' : ''; this.updateLockedWidth(); if(col < llen){ ns = this.getLockedRows(); rw = this.getLockedWidth(); c = col; }else{ ns = this.getRows(); rw = this.getTotalWidth(); c = col - llen; } var hd = this.getHeaderCell(col); hd.style.display = display; for(var i = 0, len = ns.length; i < len; i++){ row = ns[i]; row.style.width = rw; if(row.firstChild){ row.firstChild.style.width = rw; row.firstChild.rows[0].childNodes[c].style.display = display; } } this.onColumnHiddenUpdated(col, hidden, this.getTotalWidth()); delete this.lastViewWidth; this.layout(); }, doRender : function(cs, rs, ds, startRow, colCount, stripe){ var ts = this.templates, ct = ts.cell, rt = ts.row, last = colCount-1, tstyle = 'width:'+this.getTotalWidth()+';', lstyle = 'width:'+this.getLockedWidth()+';', buf = [], lbuf = [], cb, lcb, c, p = {}, rp = {}, r; for(var j = 0, len = rs.length; j < len; j++){ r = rs[j]; cb = []; lcb = []; var rowIndex = (j+startRow); for(var i = 0; i < colCount; i++){ c = cs[i]; p.id = c.id; p.css = (i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : '')) + (this.cm.config[i].cellCls ? ' ' + this.cm.config[i].cellCls : ''); p.attr = p.cellAttr = ''; p.value = c.renderer(r.data[c.name], p, r, rowIndex, i, ds); p.style = c.style; if(Ext.isEmpty(p.value)){ p.value = ' '; } if(this.markDirty && r.dirty && Ext.isDefined(r.modified[c.name])){ p.css += ' x-grid3-dirty-cell'; } if(c.locked){ lcb[lcb.length] = ct.apply(p); }else{ cb[cb.length] = ct.apply(p); } } var alt = []; if(stripe && ((rowIndex+1) % 2 === 0)){ alt[0] = 'x-grid3-row-alt'; } if(r.dirty){ alt[1] = ' x-grid3-dirty-row'; } rp.cols = colCount; if(this.getRowClass){ alt[2] = this.getRowClass(r, rowIndex, rp, ds); } rp.alt = alt.join(' '); rp.cells = cb.join(''); rp.tstyle = tstyle; buf[buf.length] = rt.apply(rp); rp.cells = lcb.join(''); rp.tstyle = lstyle; lbuf[lbuf.length] = rt.apply(rp); } return [buf.join(''), lbuf.join('')]; }, processRows : function(startRow, skipStripe){ if(!this.ds || this.ds.getCount() < 1){ return; } var rows = this.getRows(), lrows = this.getLockedRows(), row, lrow; skipStripe = skipStripe || !this.grid.stripeRows; startRow = startRow || 0; for(var i = 0, len = rows.length; i < len; ++i){ row = rows[i]; lrow = lrows[i]; row.rowIndex = i; lrow.rowIndex = i; if(!skipStripe){ row.className = row.className.replace(this.rowClsRe, ' '); lrow.className = lrow.className.replace(this.rowClsRe, ' '); if ((i + 1) % 2 === 0){ row.className += ' x-grid3-row-alt'; lrow.className += ' x-grid3-row-alt'; } } this.syncRowHeights(row, lrow); } if(startRow === 0){ Ext.fly(rows[0]).addClass(this.firstRowCls); Ext.fly(lrows[0]).addClass(this.firstRowCls); } Ext.fly(rows[rows.length - 1]).addClass(this.lastRowCls); Ext.fly(lrows[lrows.length - 1]).addClass(this.lastRowCls); }, syncRowHeights: function(row1, row2){ if(this.syncHeights){ var el1 = Ext.get(row1), el2 = Ext.get(row2), h1 = el1.getHeight(), h2 = el2.getHeight(); if(h1 > h2){ el2.setHeight(h1); }else if(h2 > h1){ el1.setHeight(h2); } } }, afterRender : function(){ if(!this.ds || !this.cm){ return; } var bd = this.renderRows() || [' ', ' ']; this.mainBody.dom.innerHTML = bd[0]; this.lockedBody.dom.innerHTML = bd[1]; this.processRows(0, true); if(this.deferEmptyText !== true){ this.applyEmptyText(); } this.grid.fireEvent('viewready', this.grid); }, renderUI : function(){ var templates = this.templates, header = this.renderHeaders(), body = templates.body.apply({rows:' '}); return templates.masterTpl.apply({ body : body, header: header[0], ostyle: 'width:' + this.getOffsetWidth() + ';', bstyle: 'width:' + this.getTotalWidth() + ';', lockedBody: body, lockedHeader: header[1], lstyle: 'width:'+this.getLockedWidth()+';' }); }, afterRenderUI: function(){ var g = this.grid; this.initElements(); Ext.fly(this.innerHd).on('click', this.handleHdDown, this); Ext.fly(this.lockedInnerHd).on('click', this.handleHdDown, this); this.mainHd.on({ scope: this, mouseover: this.handleHdOver, mouseout: this.handleHdOut, mousemove: this.handleHdMove }); this.lockedHd.on({ scope: this, mouseover: this.handleHdOver, mouseout: this.handleHdOut, mousemove: this.handleHdMove }); this.scroller.on('scroll', this.syncScroll, this); if(g.enableColumnResize !== false){ this.splitZone = new Ext.grid.GridView.SplitDragZone(g, this.mainHd.dom); this.splitZone.setOuterHandleElId(Ext.id(this.lockedHd.dom)); this.splitZone.setOuterHandleElId(Ext.id(this.mainHd.dom)); } if(g.enableColumnMove){ this.columnDrag = new Ext.grid.GridView.ColumnDragZone(g, this.innerHd); this.columnDrag.setOuterHandleElId(Ext.id(this.lockedInnerHd)); this.columnDrag.setOuterHandleElId(Ext.id(this.innerHd)); this.columnDrop = new Ext.grid.HeaderDropZone(g, this.mainHd.dom); } if(g.enableHdMenu !== false){ this.hmenu = new Ext.menu.Menu({id: g.id + '-hctx'}); this.hmenu.add( {itemId: 'asc', text: this.sortAscText, cls: 'xg-hmenu-sort-asc'}, {itemId: 'desc', text: this.sortDescText, cls: 'xg-hmenu-sort-desc'} ); if(this.grid.enableColLock !== false){ this.hmenu.add({ itemId: 'sortSep', xtype: 'menuseparator' }, {itemId: 'lock', text: this.lockText, cls: 'xg-hmenu-lock'}, {itemId: 'unlock', text: this.unlockText, cls: 'xg-hmenu-unlock'} ); } if(g.enableColumnHide !== false){ this.colMenu = new Ext.menu.Menu({id:g.id + '-hcols-menu'}); this.colMenu.on({ scope: this, beforeshow: this.beforeColMenuShow, itemclick: this.handleHdMenuClick }); this.hmenu.add('-', { itemId:'columns', hideOnClick: false, text: this.columnsText, menu: this.colMenu, iconCls: 'x-cols-icon' }); } this.hmenu.on('itemclick', this.handleHdMenuClick, this); } if(g.trackMouseOver){ this.mainBody.on({ scope: this, mouseover: this.onRowOver, mouseout: this.onRowOut }); this.lockedBody.on({ scope: this, mouseover: this.onRowOver, mouseout: this.onRowOut }); } if(g.enableDragDrop || g.enableDrag){ this.dragZone = new Ext.grid.GridDragZone(g, { ddGroup : g.ddGroup || 'GridDD' }); } this.updateHeaderSortState(); }, layout : function(){ if(!this.mainBody){ return; } var g = this.grid; var c = g.getGridEl(); var csize = c.getSize(true); var vw = csize.width; if(!g.hideHeaders && (vw < 20 || csize.height < 20)){ return; } this.syncHeaderHeight(); if(g.autoHeight){ this.scroller.dom.style.overflow = 'visible'; this.lockedScroller.dom.style.overflow = 'visible'; if(Ext.isWebKit){ this.scroller.dom.style.position = 'static'; this.lockedScroller.dom.style.position = 'static'; } }else{ this.el.setSize(csize.width, csize.height); var hdHeight = this.mainHd.getHeight(); var vh = csize.height - (hdHeight); } this.updateLockedWidth(); if(this.forceFit){ if(this.lastViewWidth != vw){ this.fitColumns(false, false); this.lastViewWidth = vw; } }else { this.autoExpand(); this.syncHeaderScroll(); } this.onLayout(vw, vh); }, getOffsetWidth : function() { return (this.cm.getTotalWidth() - this.cm.getTotalLockedWidth() + this.getScrollOffset()) + 'px'; }, renderHeaders : function(){ var cm = this.cm, ts = this.templates, ct = ts.hcell, cb = [], lcb = [], p = {}, len = cm.getColumnCount(), last = len - 1; for(var i = 0; i < len; i++){ p.id = cm.getColumnId(i); p.value = cm.getColumnHeader(i) || ''; p.style = this.getColumnStyle(i, true); p.tooltip = this.getColumnTooltip(i); p.css = (i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : '')) + (cm.config[i].headerCls ? ' ' + cm.config[i].headerCls : ''); if(cm.config[i].align == 'right'){ p.istyle = 'padding-right:16px'; } else { delete p.istyle; } if(cm.isLocked(i)){ lcb[lcb.length] = ct.apply(p); }else{ cb[cb.length] = ct.apply(p); } } return [ts.header.apply({cells: cb.join(''), tstyle:'width:'+this.getTotalWidth()+';'}), ts.header.apply({cells: lcb.join(''), tstyle:'width:'+this.getLockedWidth()+';'})]; }, updateHeaders : function(){ var hd = this.renderHeaders(); this.innerHd.firstChild.innerHTML = hd[0]; this.innerHd.firstChild.style.width = this.getOffsetWidth(); this.innerHd.firstChild.firstChild.style.width = this.getTotalWidth(); this.lockedInnerHd.firstChild.innerHTML = hd[1]; var lw = this.getLockedWidth(); this.lockedInnerHd.firstChild.style.width = lw; this.lockedInnerHd.firstChild.firstChild.style.width = lw; }, getResolvedXY : function(resolved){ if(!resolved){ return null; } var c = resolved.cell, r = resolved.row; return c ? Ext.fly(c).getXY() : [this.scroller.getX(), Ext.fly(r).getY()]; }, syncFocusEl : function(row, col, hscroll){ Ext.ux.grid.LockingGridView.superclass.syncFocusEl.call(this, row, col, col < this.cm.getLockedCount() ? false : hscroll); }, ensureVisible : function(row, col, hscroll){ return Ext.ux.grid.LockingGridView.superclass.ensureVisible.call(this, row, col, col < this.cm.getLockedCount() ? false : hscroll); }, insertRows : function(dm, firstRow, lastRow, isUpdate){ var last = dm.getCount() - 1; if(!isUpdate && firstRow === 0 && lastRow >= last){ this.refresh(); }else{ if(!isUpdate){ this.fireEvent('beforerowsinserted', this, firstRow, lastRow); } var html = this.renderRows(firstRow, lastRow), before = this.getRow(firstRow); if(before){ if(firstRow === 0){ this.removeRowClass(0, this.firstRowCls); } Ext.DomHelper.insertHtml('beforeBegin', before, html[0]); before = this.getLockedRow(firstRow); Ext.DomHelper.insertHtml('beforeBegin', before, html[1]); }else{ this.removeRowClass(last - 1, this.lastRowCls); Ext.DomHelper.insertHtml('beforeEnd', this.mainBody.dom, html[0]); Ext.DomHelper.insertHtml('beforeEnd', this.lockedBody.dom, html[1]); } if(!isUpdate){ this.fireEvent('rowsinserted', this, firstRow, lastRow); this.processRows(firstRow); }else if(firstRow === 0 || firstRow >= last){ this.addRowClass(firstRow, firstRow === 0 ? this.firstRowCls : this.lastRowCls); } } this.syncFocusEl(firstRow); }, getColumnStyle : function(col, isHeader){ var style = !isHeader ? this.cm.config[col].cellStyle || this.cm.config[col].css || '' : this.cm.config[col].headerStyle || ''; style += 'width:'+this.getColumnWidth(col)+';'; if(this.cm.isHidden(col)){ style += 'display:none;'; } var align = this.cm.config[col].align; if(align){ style += 'text-align:'+align+';'; } return style; }, getLockedWidth : function() { return this.cm.getTotalLockedWidth() + 'px'; }, getTotalWidth : function() { return (this.cm.getTotalWidth() - this.cm.getTotalLockedWidth()) + 'px'; }, getColumnData : function(){ var cs = [], cm = this.cm, colCount = cm.getColumnCount(); for(var i = 0; i < colCount; i++){ var name = cm.getDataIndex(i); cs[i] = { name : (!Ext.isDefined(name) ? this.ds.fields.get(i).name : name), renderer : cm.getRenderer(i), scope : cm.getRendererScope(i), id : cm.getColumnId(i), style : this.getColumnStyle(i), locked : cm.isLocked(i) }; } return cs; }, renderBody : function(){ var markup = this.renderRows() || [' ', ' ']; return [this.templates.body.apply({rows: markup[0]}), this.templates.body.apply({rows: markup[1]})]; }, refreshRow: function(record){ var store = this.ds, colCount = this.cm.getColumnCount(), columns = this.getColumnData(), last = colCount - 1, cls = ['x-grid3-row'], rowParams = { tstyle: String.format("width: {0};", this.getTotalWidth()) }, lockedRowParams = { tstyle: String.format("width: {0};", this.getLockedWidth()) }, colBuffer = [], lockedColBuffer = [], cellTpl = this.templates.cell, rowIndex, row, lockedRow, column, meta, css, i; if (Ext.isNumber(record)) { rowIndex = record; record = store.getAt(rowIndex); } else { rowIndex = store.indexOf(record); } if (!record || rowIndex < 0) { return; } for (i = 0; i < colCount; i++) { column = columns[i]; if (i == 0) { css = 'x-grid3-cell-first'; } else { css = (i == last) ? 'x-grid3-cell-last ' : ''; } meta = { id: column.id, style: column.style, css: css, attr: "", cellAttr: "" }; meta.value = column.renderer.call(column.scope, record.data[column.name], meta, record, rowIndex, i, store); if (Ext.isEmpty(meta.value)) { meta.value = ' '; } if (this.markDirty && record.dirty && typeof record.modified[column.name] != 'undefined') { meta.css += ' x-grid3-dirty-cell'; } if (column.locked) { lockedColBuffer[i] = cellTpl.apply(meta); } else { colBuffer[i] = cellTpl.apply(meta); } } row = this.getRow(rowIndex); row.className = ''; lockedRow = this.getLockedRow(rowIndex); lockedRow.className = ''; if (this.grid.stripeRows && ((rowIndex + 1) % 2 === 0)) { cls.push('x-grid3-row-alt'); } if (this.getRowClass) { rowParams.cols = colCount; cls.push(this.getRowClass(record, rowIndex, rowParams, store)); } // Unlocked rows this.fly(row).addClass(cls).setStyle(rowParams.tstyle); rowParams.cells = colBuffer.join(""); row.innerHTML = this.templates.rowInner.apply(rowParams); // Locked rows this.fly(lockedRow).addClass(cls).setStyle(lockedRowParams.tstyle); lockedRowParams.cells = lockedColBuffer.join(""); lockedRow.innerHTML = this.templates.rowInner.apply(lockedRowParams); lockedRow.rowIndex = rowIndex; this.syncRowHeights(row, lockedRow); this.fireEvent('rowupdated', this, rowIndex, record); }, refresh : function(headersToo){ this.fireEvent('beforerefresh', this); this.grid.stopEditing(true); var result = this.renderBody(); this.mainBody.update(result[0]).setWidth(this.getTotalWidth()); this.lockedBody.update(result[1]).setWidth(this.getLockedWidth()); if(headersToo === true){ this.updateHeaders(); this.updateHeaderSortState(); } this.processRows(0, true); this.layout(); this.applyEmptyText(); this.fireEvent('refresh', this); }, onDenyColumnLock : function(){ }, initData : function(ds, cm){ if(this.cm){ this.cm.un('columnlockchange', this.onColumnLock, this); } Ext.ux.grid.LockingGridView.superclass.initData.call(this, ds, cm); if(this.cm){ this.cm.on('columnlockchange', this.onColumnLock, this); } }, onColumnLock : function(){ this.refresh(true); }, handleHdMenuClick : function(item){ var index = this.hdCtxIndex, cm = this.cm, id = item.getItemId(), llen = cm.getLockedCount(); switch(id){ case 'lock': if(cm.getColumnCount(true) <= llen + 1){ this.onDenyColumnLock(); return undefined; } cm.setLocked(index, true, llen != index); if(llen != index){ cm.moveColumn(index, llen); this.grid.fireEvent('columnmove', index, llen); } break; case 'unlock': if(llen - 1 != index){ cm.setLocked(index, false, true); cm.moveColumn(index, llen - 1); this.grid.fireEvent('columnmove', index, llen - 1); }else{ cm.setLocked(index, false); } break; default: return Ext.ux.grid.LockingGridView.superclass.handleHdMenuClick.call(this, item); } return true; }, handleHdDown : function(e, t){ Ext.ux.grid.LockingGridView.superclass.handleHdDown.call(this, e, t); if(this.grid.enableColLock !== false){ if(Ext.fly(t).hasClass('x-grid3-hd-btn')){ var hd = this.findHeaderCell(t), index = this.getCellIndex(hd), ms = this.hmenu.items, cm = this.cm; ms.get('lock').setDisabled(cm.isLocked(index)); ms.get('unlock').setDisabled(!cm.isLocked(index)); } } }, syncHeaderHeight: function(){ var hrow = Ext.fly(this.innerHd).child('tr', true), lhrow = Ext.fly(this.lockedInnerHd).child('tr', true); hrow.style.height = 'auto'; lhrow.style.height = 'auto'; var hd = hrow.offsetHeight, lhd = lhrow.offsetHeight, height = Math.max(lhd, hd) + 'px'; hrow.style.height = height; lhrow.style.height = height; }, updateLockedWidth: function(){ var lw = this.cm.getTotalLockedWidth(), tw = this.cm.getTotalWidth() - lw, csize = this.grid.getGridEl().getSize(true), lp = Ext.isBorderBox ? 0 : this.lockedBorderWidth, rp = Ext.isBorderBox ? 0 : this.rowBorderWidth, vw = Math.max(csize.width - lw - lp - rp, 0) + 'px', so = this.getScrollOffset(); if(!this.grid.autoHeight){ var vh = Math.max(csize.height - this.mainHd.getHeight(), 0) + 'px'; this.lockedScroller.dom.style.height = vh; this.scroller.dom.style.height = vh; } this.lockedWrap.dom.style.width = (lw + rp) + 'px'; this.scroller.dom.style.width = vw; this.mainWrap.dom.style.left = (lw + lp + rp) + 'px'; if(this.innerHd){ this.lockedInnerHd.firstChild.style.width = lw + 'px'; this.lockedInnerHd.firstChild.firstChild.style.width = lw + 'px'; this.innerHd.style.width = vw; this.innerHd.firstChild.style.width = (tw + rp + so) + 'px'; this.innerHd.firstChild.firstChild.style.width = tw + 'px'; } if(this.mainBody){ this.lockedBody.dom.style.width = (lw + rp) + 'px'; this.mainBody.dom.style.width = (tw + rp) + 'px'; } } }); Ext.ux.grid.LockingColumnModel = Ext.extend(Ext.grid.ColumnModel, { /** * Returns true if the given column index is currently locked * @param {Number} colIndex The column index * @return {Boolean} True if the column is locked */ isLocked : function(colIndex){ return this.config[colIndex].locked === true; }, /** * Locks or unlocks a given column * @param {Number} colIndex The column index * @param {Boolean} value True to lock, false to unlock * @param {Boolean} suppressEvent Pass false to cause the columnlockchange event not to fire */ setLocked : function(colIndex, value, suppressEvent){ if (this.isLocked(colIndex) == value) { return; } this.config[colIndex].locked = value; if (!suppressEvent) { this.fireEvent('columnlockchange', this, colIndex, value); } }, /** * Returns the total width of all locked columns * @return {Number} The width of all locked columns */ getTotalLockedWidth : function(){ var totalWidth = 0; for (var i = 0, len = this.config.length; i < len; i++) { if (this.isLocked(i) && !this.isHidden(i)) { totalWidth += this.getColumnWidth(i); } } return totalWidth; }, /** * Returns the total number of locked columns * @return {Number} The number of locked columns */ getLockedCount : function() { var len = this.config.length; for (var i = 0; i < len; i++) { if (!this.isLocked(i)) { return i; } } //if we get to this point all of the columns are locked so we return the total return len; }, /** * Moves a column from one position to another * @param {Number} oldIndex The current column index * @param {Number} newIndex The destination column index */ moveColumn : function(oldIndex, newIndex){ var oldLocked = this.isLocked(oldIndex), newLocked = this.isLocked(newIndex); if (oldIndex < newIndex && oldLocked && !newLocked) { this.setLocked(oldIndex, false, true); } else if (oldIndex > newIndex && !oldLocked && newLocked) { this.setLocked(oldIndex, true, true); } Ext.ux.grid.LockingColumnModel.superclass.moveColumn.apply(this, arguments); } }); Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.MultiSelect * @extends Ext.form.Field * A control that allows selection and form submission of multiple list items. * * @history * 2008-06-19 bpm Original code contributed by Toby Stuart (with contributions from Robert Williams) * 2008-06-19 bpm Docs and demo code clean up * * @constructor * Create a new MultiSelect * @param {Object} config Configuration options * @xtype multiselect */ Ext.ux.form.MultiSelect = Ext.extend(Ext.form.Field, { /** * @cfg {String} legend Wraps the object with a fieldset and specified legend. */ /** * @cfg {Ext.ListView} view The {@link Ext.ListView} used to render the multiselect list. */ /** * @cfg {String/Array} dragGroup The ddgroup name(s) for the MultiSelect DragZone (defaults to undefined). */ /** * @cfg {String/Array} dropGroup The ddgroup name(s) for the MultiSelect DropZone (defaults to undefined). */ /** * @cfg {Boolean} ddReorder Whether the items in the MultiSelect list are drag/drop reorderable (defaults to false). */ ddReorder:false, /** * @cfg {Object/Array} tbar The top toolbar of the control. This can be a {@link Ext.Toolbar} object, a * toolbar config, or an array of buttons/button configs to be added to the toolbar. */ /** * @cfg {String} appendOnly True if the list should only allow append drops when drag/drop is enabled * (use for lists which are sorted, defaults to false). */ appendOnly:false, /** * @cfg {Number} width Width in pixels of the control (defaults to 100). */ width:100, /** * @cfg {Number} height Height in pixels of the control (defaults to 100). */ height:100, /** * @cfg {String/Number} displayField Name/Index of the desired display field in the dataset (defaults to 0). */ displayField:0, /** * @cfg {String/Number} valueField Name/Index of the desired value field in the dataset (defaults to 1). */ valueField:1, /** * @cfg {Boolean} allowBlank False to require at least one item in the list to be selected, true to allow no * selection (defaults to true). */ allowBlank:true, /** * @cfg {Number} minSelections Minimum number of selections allowed (defaults to 0). */ minSelections:0, /** * @cfg {Number} maxSelections Maximum number of selections allowed (defaults to Number.MAX_VALUE). */ maxSelections:Number.MAX_VALUE, /** * @cfg {String} blankText Default text displayed when the control contains no items (defaults to the same value as * {@link Ext.form.TextField#blankText}. */ blankText:Ext.form.TextField.prototype.blankText, /** * @cfg {String} minSelectionsText Validation message displayed when {@link #minSelections} is not met (defaults to 'Minimum {0} * item(s) required'). The {0} token will be replaced by the value of {@link #minSelections}. */ minSelectionsText:'Minimum {0} item(s) required', /** * @cfg {String} maxSelectionsText Validation message displayed when {@link #maxSelections} is not met (defaults to 'Maximum {0} * item(s) allowed'). The {0} token will be replaced by the value of {@link #maxSelections}. */ maxSelectionsText:'Maximum {0} item(s) allowed', /** * @cfg {String} delimiter The string used to delimit between items when set or returned as a string of values * (defaults to ','). */ delimiter:',', /** * @cfg {Ext.data.Store/Array} store The data source to which this MultiSelect is bound (defaults to undefined). * Acceptable values for this property are: *
      *
    • any {@link Ext.data.Store Store} subclass
      • *
    • an Array : Arrays will be converted to a {@link Ext.data.ArrayStore} internally. *
        *
      • 1-dimensional array : (e.g., ['Foo','Bar'])
        * A 1-dimensional array will automatically be expanded (each array item will be the combo * {@link #valueField value} and {@link #displayField text})
        • *
      • 2-dimensional array : (e.g., [['f','Foo'],['b','Bar']])
        * For a multi-dimensional array, the value in index 0 of each item will be assumed to be the combo * {@link #valueField value}, while the value at index 1 is assumed to be the combo {@link #displayField text}. *
    */ cls: 'ux-form-multiselect', // private defaultAutoCreate : {tag: "div"}, // private initComponent: function(){ Ext.ux.form.MultiSelect.superclass.initComponent.call(this); if(Ext.isArray(this.store)){ if (Ext.isArray(this.store[0])){ this.store = new Ext.data.ArrayStore({ fields: ['value','text'], data: this.store }); this.valueField = 'value'; }else{ this.store = new Ext.data.ArrayStore({ fields: ['text'], data: this.store, expandData: true }); this.valueField = 'text'; } this.displayField = 'text'; } else { this.store = Ext.StoreMgr.lookup(this.store); } this.addEvents({ 'dblclick' : true, 'click' : true, 'change' : true, 'drop' : true }); }, // private onRender: function(ct, position){ Ext.ux.form.MultiSelect.superclass.onRender.call(this, ct, position); var fs = this.fs = new Ext.form.FieldSet({ renderTo: this.el, title: this.legend, height: this.height, width: this.width, style: "padding:0;", tbar: this.tbar }); fs.body.addClass('ux-mselect'); this.view = new Ext.ListView({ selectedClass: 'ux-mselect-selected', multiSelect: true, store: this.store, columns: [{ header: 'Value', width: 1, dataIndex: this.displayField }], hideHeaders: true }); fs.add(this.view); this.view.on('click', this.onViewClick, this); this.view.on('beforeclick', this.onViewBeforeClick, this); this.view.on('dblclick', this.onViewDblClick, this); this.hiddenName = this.name || Ext.id(); var hiddenTag = { tag: "input", type: "hidden", value: "", name: this.hiddenName }; this.hiddenField = this.el.createChild(hiddenTag); this.hiddenField.dom.disabled = this.hiddenName != this.name; fs.doLayout(); }, // private afterRender: function(){ Ext.ux.form.MultiSelect.superclass.afterRender.call(this); if (this.ddReorder && !this.dragGroup && !this.dropGroup){ this.dragGroup = this.dropGroup = 'MultiselectDD-' + Ext.id(); } if (this.draggable || this.dragGroup){ this.dragZone = new Ext.ux.form.MultiSelect.DragZone(this, { ddGroup: this.dragGroup }); } if (this.droppable || this.dropGroup){ this.dropZone = new Ext.ux.form.MultiSelect.DropZone(this, { ddGroup: this.dropGroup }); } }, // private onViewClick: function(vw, index, node, e) { this.fireEvent('change', this, this.getValue(), this.hiddenField.dom.value); this.hiddenField.dom.value = this.getValue(); this.fireEvent('click', this, e); this.validate(); }, // private onViewBeforeClick: function(vw, index, node, e) { if (this.disabled || this.readOnly) { return false; } }, // private onViewDblClick : function(vw, index, node, e) { return this.fireEvent('dblclick', vw, index, node, e); }, /** * Returns an array of data values for the selected items in the list. The values will be separated * by {@link #delimiter}. * @return {Array} value An array of string data values */ getValue: function(valueField){ var returnArray = []; var selectionsArray = this.view.getSelectedIndexes(); if (selectionsArray.length == 0) {return '';} for (var i=0; i this.maxSelections) { this.markInvalid(String.format(this.maxSelectionsText, this.maxSelections)); return false; } return true; }, // inherit docs disable: function(){ this.disabled = true; this.hiddenField.dom.disabled = true; this.fs.disable(); }, // inherit docs enable: function(){ this.disabled = false; this.hiddenField.dom.disabled = false; this.fs.enable(); }, // inherit docs destroy: function(){ Ext.destroy(this.fs, this.dragZone, this.dropZone); Ext.ux.form.MultiSelect.superclass.destroy.call(this); } }); Ext.reg('multiselect', Ext.ux.form.MultiSelect); //backwards compat Ext.ux.Multiselect = Ext.ux.form.MultiSelect; Ext.ux.form.MultiSelect.DragZone = function(ms, config){ this.ms = ms; this.view = ms.view; var ddGroup = config.ddGroup || 'MultiselectDD'; var dd; if (Ext.isArray(ddGroup)){ dd = ddGroup.shift(); } else { dd = ddGroup; ddGroup = null; } Ext.ux.form.MultiSelect.DragZone.superclass.constructor.call(this, this.ms.fs.body, { containerScroll: true, ddGroup: dd }); this.setDraggable(ddGroup); }; Ext.extend(Ext.ux.form.MultiSelect.DragZone, Ext.dd.DragZone, { onInitDrag : function(x, y){ var el = Ext.get(this.dragData.ddel.cloneNode(true)); this.proxy.update(el.dom); el.setWidth(el.child('em').getWidth()); this.onStartDrag(x, y); return true; }, // private collectSelection: function(data) { data.repairXY = Ext.fly(this.view.getSelectedNodes()[0]).getXY(); var i = 0; this.view.store.each(function(rec){ if (this.view.isSelected(i)) { var n = this.view.getNode(i); var dragNode = n.cloneNode(true); dragNode.id = Ext.id(); data.ddel.appendChild(dragNode); data.records.push(this.view.store.getAt(i)); data.viewNodes.push(n); } i++; }, this); }, // override onEndDrag: function(data, e) { var d = Ext.get(this.dragData.ddel); if (d && d.hasClass("multi-proxy")) { d.remove(); } }, // override getDragData: function(e){ var target = this.view.findItemFromChild(e.getTarget()); if(target) { if (!this.view.isSelected(target) && !e.ctrlKey && !e.shiftKey) { this.view.select(target); this.ms.setValue(this.ms.getValue()); } if (this.view.getSelectionCount() == 0 || e.ctrlKey || e.shiftKey) return false; var dragData = { sourceView: this.view, viewNodes: [], records: [] }; if (this.view.getSelectionCount() == 1) { var i = this.view.getSelectedIndexes()[0]; var n = this.view.getNode(i); dragData.viewNodes.push(dragData.ddel = n); dragData.records.push(this.view.store.getAt(i)); dragData.repairXY = Ext.fly(n).getXY(); } else { dragData.ddel = document.createElement('div'); dragData.ddel.className = 'multi-proxy'; this.collectSelection(dragData); } return dragData; } return false; }, // override the default repairXY. getRepairXY : function(e){ return this.dragData.repairXY; }, // private setDraggable: function(ddGroup){ if (!ddGroup) return; if (Ext.isArray(ddGroup)) { Ext.each(ddGroup, this.setDraggable, this); return; } this.addToGroup(ddGroup); } }); Ext.ux.form.MultiSelect.DropZone = function(ms, config){ this.ms = ms; this.view = ms.view; var ddGroup = config.ddGroup || 'MultiselectDD'; var dd; if (Ext.isArray(ddGroup)){ dd = ddGroup.shift(); } else { dd = ddGroup; ddGroup = null; } Ext.ux.form.MultiSelect.DropZone.superclass.constructor.call(this, this.ms.fs.body, { containerScroll: true, ddGroup: dd }); this.setDroppable(ddGroup); }; Ext.extend(Ext.ux.form.MultiSelect.DropZone, Ext.dd.DropZone, { /** * Part of the Ext.dd.DropZone interface. If no target node is found, the * whole Element becomes the target, and this causes the drop gesture to append. */ getTargetFromEvent : function(e) { var target = e.getTarget(); return target; }, // private getDropPoint : function(e, n, dd){ if (n == this.ms.fs.body.dom) { return "below"; } var t = Ext.lib.Dom.getY(n), b = t + n.offsetHeight; var c = t + (b - t) / 2; var y = Ext.lib.Event.getPageY(e); if(y <= c) { return "above"; }else{ return "below"; } }, // private isValidDropPoint: function(pt, n, data) { if (!data.viewNodes || (data.viewNodes.length != 1)) { return true; } var d = data.viewNodes[0]; if (d == n) { return false; } if ((pt == "below") && (n.nextSibling == d)) { return false; } if ((pt == "above") && (n.previousSibling == d)) { return false; } return true; }, // override onNodeEnter : function(n, dd, e, data){ return false; }, // override onNodeOver : function(n, dd, e, data){ var dragElClass = this.dropNotAllowed; var pt = this.getDropPoint(e, n, dd); if (this.isValidDropPoint(pt, n, data)) { if (this.ms.appendOnly) { return "x-tree-drop-ok-below"; } // set the insert point style on the target node if (pt) { var targetElClass; if (pt == "above"){ dragElClass = n.previousSibling ? "x-tree-drop-ok-between" : "x-tree-drop-ok-above"; targetElClass = "x-view-drag-insert-above"; } else { dragElClass = n.nextSibling ? "x-tree-drop-ok-between" : "x-tree-drop-ok-below"; targetElClass = "x-view-drag-insert-below"; } if (this.lastInsertClass != targetElClass){ Ext.fly(n).replaceClass(this.lastInsertClass, targetElClass); this.lastInsertClass = targetElClass; } } } return dragElClass; }, // private onNodeOut : function(n, dd, e, data){ this.removeDropIndicators(n); }, // private onNodeDrop : function(n, dd, e, data){ if (this.ms.fireEvent("drop", this, n, dd, e, data) === false) { return false; } var pt = this.getDropPoint(e, n, dd); if (n != this.ms.fs.body.dom) n = this.view.findItemFromChild(n); if(this.ms.appendOnly) { insertAt = this.view.store.getCount(); } else { insertAt = n == this.ms.fs.body.dom ? this.view.store.getCount() - 1 : this.view.indexOf(n); if (pt == "below") { insertAt++; } } var dir = false; // Validate if dragging within the same MultiSelect if (data.sourceView == this.view) { // If the first element to be inserted below is the target node, remove it if (pt == "below") { if (data.viewNodes[0] == n) { data.viewNodes.shift(); } } else { // If the last element to be inserted above is the target node, remove it if (data.viewNodes[data.viewNodes.length - 1] == n) { data.viewNodes.pop(); } } // Nothing to drop... if (!data.viewNodes.length) { return false; } // If we are moving DOWN, then because a store.remove() takes place first, // the insertAt must be decremented. if (insertAt > this.view.store.indexOf(data.records[0])) { dir = 'down'; insertAt--; } } for (var i = 0; i < data.records.length; i++) { var r = data.records[i]; if (data.sourceView) { data.sourceView.store.remove(r); } this.view.store.insert(dir == 'down' ? insertAt : insertAt++, r); var si = this.view.store.sortInfo; if(si){ this.view.store.sort(si.field, si.direction); } } return true; }, // private removeDropIndicators : function(n){ if(n){ Ext.fly(n).removeClass([ "x-view-drag-insert-above", "x-view-drag-insert-left", "x-view-drag-insert-right", "x-view-drag-insert-below"]); this.lastInsertClass = "_noclass"; } }, // private setDroppable: function(ddGroup){ if (!ddGroup) return; if (Ext.isArray(ddGroup)) { Ext.each(ddGroup, this.setDroppable, this); return; } this.addToGroup(ddGroup); } }); /* Fix for Opera, which does not seem to include the map function on Array's */ if (!Array.prototype.map) { Array.prototype.map = function(fun){ var len = this.length; if (typeof fun != 'function') { throw new TypeError(); } var res = new Array(len); var thisp = arguments[1]; for (var i = 0; i < len; i++) { if (i in this) { res[i] = fun.call(thisp, this[i], i, this); } } return res; }; } Ext.ns('Ext.ux.data'); /** * @class Ext.ux.data.PagingMemoryProxy * @extends Ext.data.MemoryProxy *

    Paging Memory Proxy, allows to use paging grid with in memory dataset

    */ Ext.ux.data.PagingMemoryProxy = Ext.extend(Ext.data.MemoryProxy, { constructor : function(data){ Ext.ux.data.PagingMemoryProxy.superclass.constructor.call(this); this.data = data; }, doRequest : function(action, rs, params, reader, callback, scope, options){ params = params || {}; var result; try { result = reader.readRecords(this.data); } catch (e) { this.fireEvent('loadexception', this, options, null, e); callback.call(scope, null, options, false); return; } // filtering if (params.filter !== undefined) { result.records = result.records.filter(function(el){ if (typeof(el) == 'object') { var att = params.filterCol || 0; return String(el.data[att]).match(params.filter) ? true : false; } else { return String(el).match(params.filter) ? true : false; } }); result.totalRecords = result.records.length; } // sorting if (params.sort !== undefined) { // use integer as params.sort to specify column, since arrays are not named // params.sort=0; would also match a array without columns var dir = String(params.dir).toUpperCase() == 'DESC' ? -1 : 1; var fn = function(v1, v2){ return v1 > v2 ? 1 : (v1 < v2 ? -1 : 0); }; result.records.sort(function(a, b){ var v = 0; if (typeof(a) == 'object') { v = fn(a.data[params.sort], b.data[params.sort]) * dir; } else { v = fn(a, b) * dir; } if (v == 0) { v = (a.index < b.index ? -1 : 1); } return v; }); } // paging (use undefined cause start can also be 0 (thus false)) if (params.start !== undefined && params.limit !== undefined) { result.records = result.records.slice(params.start, params.start + params.limit); } callback.call(scope, result, options, true); } }); //backwards compat. Ext.data.PagingMemoryProxy = Ext.ux.data.PagingMemoryProxy; Ext.ux.PanelResizer = Ext.extend(Ext.util.Observable, { minHeight: 0, maxHeight:10000000, constructor: function(config){ Ext.apply(this, config); this.events = {}; Ext.ux.PanelResizer.superclass.constructor.call(this, config); }, init : function(p){ this.panel = p; if(this.panel.elements.indexOf('footer')==-1){ p.elements += ',footer'; } p.on('render', this.onRender, this); }, onRender : function(p){ this.handle = p.footer.createChild({cls:'x-panel-resize'}); this.tracker = new Ext.dd.DragTracker({ onStart: this.onDragStart.createDelegate(this), onDrag: this.onDrag.createDelegate(this), onEnd: this.onDragEnd.createDelegate(this), tolerance: 3, autoStart: 300 }); this.tracker.initEl(this.handle); p.on('beforedestroy', this.tracker.destroy, this.tracker); }, // private onDragStart: function(e){ this.dragging = true; this.startHeight = this.panel.el.getHeight(); this.fireEvent('dragstart', this, e); }, // private onDrag: function(e){ this.panel.setHeight((this.startHeight-this.tracker.getOffset()[1]).constrain(this.minHeight, this.maxHeight)); this.fireEvent('drag', this, e); }, // private onDragEnd: function(e){ this.dragging = false; this.fireEvent('dragend', this, e); } }); Ext.preg('panelresizer', Ext.ux.PanelResizer);Ext.ux.Portal = Ext.extend(Ext.Panel, { layout : 'column', autoScroll : true, cls : 'x-portal', defaultType : 'portalcolumn', initComponent : function(){ Ext.ux.Portal.superclass.initComponent.call(this); this.addEvents({ validatedrop:true, beforedragover:true, dragover:true, beforedrop:true, drop:true }); }, initEvents : function(){ Ext.ux.Portal.superclass.initEvents.call(this); this.dd = new Ext.ux.Portal.DropZone(this, this.dropConfig); }, beforeDestroy : function() { if(this.dd){ this.dd.unreg(); } Ext.ux.Portal.superclass.beforeDestroy.call(this); } }); Ext.reg('portal', Ext.ux.Portal); Ext.ux.Portal.DropZone = Ext.extend(Ext.dd.DropTarget, { constructor : function(portal, cfg){ this.portal = portal; Ext.dd.ScrollManager.register(portal.body); Ext.ux.Portal.DropZone.superclass.constructor.call(this, portal.bwrap.dom, cfg); portal.body.ddScrollConfig = this.ddScrollConfig; }, ddScrollConfig : { vthresh: 50, hthresh: -1, animate: true, increment: 200 }, createEvent : function(dd, e, data, col, c, pos){ return { portal: this.portal, panel: data.panel, columnIndex: col, column: c, position: pos, data: data, source: dd, rawEvent: e, status: this.dropAllowed }; }, notifyOver : function(dd, e, data){ var xy = e.getXY(), portal = this.portal, px = dd.proxy; // case column widths if(!this.grid){ this.grid = this.getGrid(); } // handle case scroll where scrollbars appear during drag var cw = portal.body.dom.clientWidth; if(!this.lastCW){ this.lastCW = cw; }else if(this.lastCW != cw){ this.lastCW = cw; portal.doLayout(); this.grid = this.getGrid(); } // determine column var col = 0, xs = this.grid.columnX, cmatch = false; for(var len = xs.length; col < len; col++){ if(xy[0] < (xs[col].x + xs[col].w)){ cmatch = true; break; } } // no match, fix last index if(!cmatch){ col--; } // find insert position var p, match = false, pos = 0, c = portal.items.itemAt(col), items = c.items.items, overSelf = false; for(var len = items.length; pos < len; pos++){ p = items[pos]; var h = p.el.getHeight(); if(h === 0){ overSelf = true; } else if((p.el.getY()+(h/2)) > xy[1]){ match = true; break; } } pos = (match && p ? pos : c.items.getCount()) + (overSelf ? -1 : 0); var overEvent = this.createEvent(dd, e, data, col, c, pos); if(portal.fireEvent('validatedrop', overEvent) !== false && portal.fireEvent('beforedragover', overEvent) !== false){ // make sure proxy width is fluid px.getProxy().setWidth('auto'); if(p){ px.moveProxy(p.el.dom.parentNode, match ? p.el.dom : null); }else{ px.moveProxy(c.el.dom, null); } this.lastPos = {c: c, col: col, p: overSelf || (match && p) ? pos : false}; this.scrollPos = portal.body.getScroll(); portal.fireEvent('dragover', overEvent); return overEvent.status; }else{ return overEvent.status; } }, notifyOut : function(){ delete this.grid; }, notifyDrop : function(dd, e, data){ delete this.grid; if(!this.lastPos){ return; } var c = this.lastPos.c, col = this.lastPos.col, pos = this.lastPos.p, panel = dd.panel, dropEvent = this.createEvent(dd, e, data, col, c, pos !== false ? pos : c.items.getCount()); if(this.portal.fireEvent('validatedrop', dropEvent) !== false && this.portal.fireEvent('beforedrop', dropEvent) !== false){ dd.proxy.getProxy().remove(); panel.el.dom.parentNode.removeChild(dd.panel.el.dom); if(pos !== false){ c.insert(pos, panel); }else{ c.add(panel); } c.doLayout(); this.portal.fireEvent('drop', dropEvent); // scroll position is lost on drop, fix it var st = this.scrollPos.top; if(st){ var d = this.portal.body.dom; setTimeout(function(){ d.scrollTop = st; }, 10); } } delete this.lastPos; }, // internal cache of body and column coords getGrid : function(){ var box = this.portal.bwrap.getBox(); box.columnX = []; this.portal.items.each(function(c){ box.columnX.push({x: c.el.getX(), w: c.el.getWidth()}); }); return box; }, // unregister the dropzone from ScrollManager unreg: function() { Ext.dd.ScrollManager.unregister(this.portal.body); Ext.ux.Portal.DropZone.superclass.unreg.call(this); } }); Ext.ux.PortalColumn = Ext.extend(Ext.Container, { layout : 'anchor', //autoEl : 'div',//already defined by Ext.Component defaultType : 'portlet', cls : 'x-portal-column' }); Ext.reg('portalcolumn', Ext.ux.PortalColumn); Ext.ux.Portlet = Ext.extend(Ext.Panel, { anchor : '100%', frame : true, collapsible : true, draggable : true, cls : 'x-portlet' }); Ext.reg('portlet', Ext.ux.Portlet); /** * @class Ext.ux.ProgressBarPager * @extends Object * Plugin (ptype = 'tabclosemenu') for displaying a progressbar inside of a paging toolbar instead of plain text * * @ptype progressbarpager * @constructor * Create a new ItemSelector * @param {Object} config Configuration options * @xtype itemselector */ Ext.ux.ProgressBarPager = Ext.extend(Object, { /** * @cfg {Integer} progBarWidth *

    The default progress bar width. Default is 225.

    */ progBarWidth : 225, /** * @cfg {String} defaultText *

    The text to display while the store is loading. Default is 'Loading...'

    */ defaultText : 'Loading...', /** * @cfg {Object} defaultAnimCfg *

    A {@link Ext.Fx Ext.Fx} configuration object. Default is { duration : 1, easing : 'bounceOut' }.

    */ defaultAnimCfg : { duration : 1, easing : 'bounceOut' }, constructor : function(config) { if (config) { Ext.apply(this, config); } }, //public init : function (parent) { if(parent.displayInfo){ this.parent = parent; var ind = parent.items.indexOf(parent.displayItem); parent.remove(parent.displayItem, true); this.progressBar = new Ext.ProgressBar({ text : this.defaultText, width : this.progBarWidth, animate : this.defaultAnimCfg }); parent.displayItem = this.progressBar; parent.add(parent.displayItem); parent.doLayout(); Ext.apply(parent, this.parentOverrides); this.progressBar.on('render', function(pb) { pb.mon(pb.getEl().applyStyles('cursor:pointer'), 'click', this.handleProgressBarClick, this); }, this, {single: true}); } }, // private // This method handles the click for the progress bar handleProgressBarClick : function(e){ var parent = this.parent, displayItem = parent.displayItem, box = this.progressBar.getBox(), xy = e.getXY(), position = xy[0]-box.x, pages = Math.ceil(parent.store.getTotalCount()/parent.pageSize), newpage = Math.ceil(position/(displayItem.width/pages)); parent.changePage(newpage); }, // private, overriddes parentOverrides : { // private // This method updates the information via the progress bar. updateInfo : function(){ if(this.displayItem){ var count = this.store.getCount(), pgData = this.getPageData(), pageNum = this.readPage(pgData), msg = count == 0 ? this.emptyMsg : String.format( this.displayMsg, this.cursor+1, this.cursor+count, this.store.getTotalCount() ); pageNum = pgData.activePage; ; var pct = pageNum / pgData.pages; this.displayItem.updateProgress(pct, msg, this.animate || this.defaultAnimConfig); } } } }); Ext.preg('progressbarpager', Ext.ux.ProgressBarPager); Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.RowEditor * @extends Ext.Panel * Plugin (ptype = 'roweditor') that adds the ability to rapidly edit full rows in a grid. * A validation mode may be enabled which uses AnchorTips to notify the user of all * validation errors at once. * * @ptype roweditor */ Ext.ux.grid.RowEditor = Ext.extend(Ext.Panel, { floating: true, shadow: false, layout: 'hbox', cls: 'x-small-editor', buttonAlign: 'center', baseCls: 'x-row-editor', elements: 'header,footer,body', frameWidth: 5, buttonPad: 3, clicksToEdit: 'auto', monitorValid: true, focusDelay: 250, errorSummary: true, saveText: 'Save', cancelText: 'Cancel', commitChangesText: 'You need to commit or cancel your changes', errorText: 'Errors', defaults: { normalWidth: true }, initComponent: function(){ Ext.ux.grid.RowEditor.superclass.initComponent.call(this); this.addEvents( /** * @event beforeedit * Fired before the row editor is activated. * If the listener returns false the editor will not be activated. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Number} rowIndex The rowIndex of the row just edited */ 'beforeedit', /** * @event canceledit * Fired when the editor is cancelled. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Boolean} forced True if the cancel button is pressed, false is the editor was invalid. */ 'canceledit', /** * @event validateedit * Fired after a row is edited and passes validation. * If the listener returns false changes to the record will not be set. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Object} changes Object with changes made to the record. * @param {Ext.data.Record} r The Record that was edited. * @param {Number} rowIndex The rowIndex of the row just edited */ 'validateedit', /** * @event afteredit * Fired after a row is edited and passes validation. This event is fired * after the store's update event is fired with this edit. * @param {Ext.ux.grid.RowEditor} roweditor This object * @param {Object} changes Object with changes made to the record. * @param {Ext.data.Record} r The Record that was edited. * @param {Number} rowIndex The rowIndex of the row just edited */ 'afteredit' ); }, init: function(grid){ this.grid = grid; this.ownerCt = grid; if(this.clicksToEdit === 2){ grid.on('rowdblclick', this.onRowDblClick, this); }else{ grid.on('rowclick', this.onRowClick, this); if(Ext.isIE){ grid.on('rowdblclick', this.onRowDblClick, this); } } // stopEditing without saving when a record is removed from Store. grid.getStore().on('remove', function() { this.stopEditing(false); },this); grid.on({ scope: this, keydown: this.onGridKey, columnresize: this.verifyLayout, columnmove: this.refreshFields, reconfigure: this.refreshFields, beforedestroy : this.beforedestroy, destroy : this.destroy, bodyscroll: { buffer: 250, fn: this.positionButtons } }); grid.getColumnModel().on('hiddenchange', this.verifyLayout, this, {delay:1}); grid.getView().on('refresh', this.stopEditing.createDelegate(this, [])); }, beforedestroy: function() { this.stopMonitoring(); this.grid.getStore().un('remove', this.onStoreRemove, this); this.stopEditing(false); Ext.destroy(this.btns, this.tooltip); }, refreshFields: function(){ this.initFields(); this.verifyLayout(); }, isDirty: function(){ var dirty; this.items.each(function(f){ if(String(this.values[f.id]) !== String(f.getValue())){ dirty = true; return false; } }, this); return dirty; }, startEditing: function(rowIndex, doFocus){ if(this.editing && this.isDirty()){ this.showTooltip(this.commitChangesText); return; } if(Ext.isObject(rowIndex)){ rowIndex = this.grid.getStore().indexOf(rowIndex); } if(this.fireEvent('beforeedit', this, rowIndex) !== false){ this.editing = true; var g = this.grid, view = g.getView(), row = view.getRow(rowIndex), record = g.store.getAt(rowIndex); this.record = record; this.rowIndex = rowIndex; this.values = {}; if(!this.rendered){ this.render(view.getEditorParent()); } var w = Ext.fly(row).getWidth(); this.setSize(w); if(!this.initialized){ this.initFields(); } var cm = g.getColumnModel(), fields = this.items.items, f, val; for(var i = 0, len = cm.getColumnCount(); i < len; i++){ val = this.preEditValue(record, cm.getDataIndex(i)); f = fields[i]; f.setValue(val); this.values[f.id] = Ext.isEmpty(val) ? '' : val; } this.verifyLayout(true); if(!this.isVisible()){ this.setPagePosition(Ext.fly(row).getXY()); } else{ this.el.setXY(Ext.fly(row).getXY(), {duration:0.15}); } if(!this.isVisible()){ this.show().doLayout(); } if(doFocus !== false){ this.doFocus.defer(this.focusDelay, this); } } }, stopEditing : function(saveChanges){ this.editing = false; if(!this.isVisible()){ return; } if(saveChanges === false || !this.isValid()){ this.hide(); this.fireEvent('canceledit', this, saveChanges === false); return; } var changes = {}, r = this.record, hasChange = false, cm = this.grid.colModel, fields = this.items.items; for(var i = 0, len = cm.getColumnCount(); i < len; i++){ if(!cm.isHidden(i)){ var dindex = cm.getDataIndex(i); if(!Ext.isEmpty(dindex)){ var oldValue = r.data[dindex], value = this.postEditValue(fields[i].getValue(), oldValue, r, dindex); if(String(oldValue) !== String(value)){ changes[dindex] = value; hasChange = true; } } } } if(hasChange && this.fireEvent('validateedit', this, changes, r, this.rowIndex) !== false){ r.beginEdit(); Ext.iterate(changes, function(name, value){ r.set(name, value); }); r.endEdit(); this.fireEvent('afteredit', this, changes, r, this.rowIndex); } else { this.fireEvent('canceledit', this, false); } this.hide(); }, verifyLayout: function(force){ if(this.el && (this.isVisible() || force === true)){ var row = this.grid.getView().getRow(this.rowIndex); this.setSize(Ext.fly(row).getWidth(), Ext.isIE ? Ext.fly(row).getHeight() + 9 : undefined); var cm = this.grid.colModel, fields = this.items.items; for(var i = 0, len = cm.getColumnCount(); i < len; i++){ if(!cm.isHidden(i)){ var adjust = 0; if(i === (len - 1)){ adjust += 3; // outer padding } else{ adjust += 1; } fields[i].show(); fields[i].setWidth(cm.getColumnWidth(i) - adjust); } else{ fields[i].hide(); } } this.doLayout(); this.positionButtons(); } }, slideHide : function(){ this.hide(); }, initFields: function(){ var cm = this.grid.getColumnModel(), pm = Ext.layout.ContainerLayout.prototype.parseMargins; this.removeAll(false); for(var i = 0, len = cm.getColumnCount(); i < len; i++){ var c = cm.getColumnAt(i), ed = c.getEditor(); if(!ed){ ed = c.displayEditor || new Ext.form.DisplayField(); } if(i == 0){ ed.margins = pm('0 1 2 1'); } else if(i == len - 1){ ed.margins = pm('0 0 2 1'); } else{ if (Ext.isIE) { ed.margins = pm('0 0 2 0'); } else { ed.margins = pm('0 1 2 0'); } } ed.setWidth(cm.getColumnWidth(i)); ed.column = c; if(ed.ownerCt !== this){ ed.on('focus', this.ensureVisible, this); ed.on('specialkey', this.onKey, this); } this.insert(i, ed); } this.initialized = true; }, onKey: function(f, e){ if(e.getKey() === e.ENTER){ this.stopEditing(true); e.stopPropagation(); } }, onGridKey: function(e){ if(e.getKey() === e.ENTER && !this.isVisible()){ var r = this.grid.getSelectionModel().getSelected(); if(r){ var index = this.grid.store.indexOf(r); this.startEditing(index); e.stopPropagation(); } } }, ensureVisible: function(editor){ if(this.isVisible()){ this.grid.getView().ensureVisible(this.rowIndex, this.grid.colModel.getIndexById(editor.column.id), true); } }, onRowClick: function(g, rowIndex, e){ if(this.clicksToEdit == 'auto'){ var li = this.lastClickIndex; this.lastClickIndex = rowIndex; if(li != rowIndex && !this.isVisible()){ return; } } this.startEditing(rowIndex, false); this.doFocus.defer(this.focusDelay, this, [e.getPoint()]); }, onRowDblClick: function(g, rowIndex, e){ this.startEditing(rowIndex, false); this.doFocus.defer(this.focusDelay, this, [e.getPoint()]); }, onRender: function(){ Ext.ux.grid.RowEditor.superclass.onRender.apply(this, arguments); this.el.swallowEvent(['keydown', 'keyup', 'keypress']); this.btns = new Ext.Panel({ baseCls: 'x-plain', cls: 'x-btns', elements:'body', layout: 'table', width: (this.minButtonWidth * 2) + (this.frameWidth * 2) + (this.buttonPad * 4), // width must be specified for IE items: [{ ref: 'saveBtn', itemId: 'saveBtn', xtype: 'button', text: this.saveText, width: this.minButtonWidth, handler: this.stopEditing.createDelegate(this, [true]) }, { xtype: 'button', text: this.cancelText, width: this.minButtonWidth, handler: this.stopEditing.createDelegate(this, [false]) }] }); this.btns.render(this.bwrap); }, afterRender: function(){ Ext.ux.grid.RowEditor.superclass.afterRender.apply(this, arguments); this.positionButtons(); if(this.monitorValid){ this.startMonitoring(); } }, onShow: function(){ if(this.monitorValid){ this.startMonitoring(); } Ext.ux.grid.RowEditor.superclass.onShow.apply(this, arguments); }, onHide: function(){ Ext.ux.grid.RowEditor.superclass.onHide.apply(this, arguments); this.stopMonitoring(); this.grid.getView().focusRow(this.rowIndex); }, positionButtons: function(){ if(this.btns){ var g = this.grid, h = this.el.dom.clientHeight, view = g.getView(), scroll = view.scroller.dom.scrollLeft, bw = this.btns.getWidth(), width = Math.min(g.getWidth(), g.getColumnModel().getTotalWidth()); this.btns.el.shift({left: (width/2)-(bw/2)+scroll, top: h - 2, stopFx: true, duration:0.2}); } }, // private preEditValue : function(r, field){ var value = r.data[field]; return this.autoEncode && typeof value === 'string' ? Ext.util.Format.htmlDecode(value) : value; }, // private postEditValue : function(value, originalValue, r, field){ return this.autoEncode && typeof value == 'string' ? Ext.util.Format.htmlEncode(value) : value; }, doFocus: function(pt){ if(this.isVisible()){ var index = 0, cm = this.grid.getColumnModel(), c; if(pt){ index = this.getTargetColumnIndex(pt); } for(var i = index||0, len = cm.getColumnCount(); i < len; i++){ c = cm.getColumnAt(i); if(!c.hidden && c.getEditor()){ c.getEditor().focus(); break; } } } }, getTargetColumnIndex: function(pt){ var grid = this.grid, v = grid.view, x = pt.left, cms = grid.colModel.config, i = 0, match = false; for(var len = cms.length, c; c = cms[i]; i++){ if(!c.hidden){ if(Ext.fly(v.getHeaderCell(i)).getRegion().right >= x){ match = i; break; } } } return match; }, startMonitoring : function(){ if(!this.bound && this.monitorValid){ this.bound = true; Ext.TaskMgr.start({ run : this.bindHandler, interval : this.monitorPoll || 200, scope: this }); } }, stopMonitoring : function(){ this.bound = false; if(this.tooltip){ this.tooltip.hide(); } }, isValid: function(){ var valid = true; this.items.each(function(f){ if(!f.isValid(true)){ valid = false; return false; } }); return valid; }, // private bindHandler : function(){ if(!this.bound){ return false; // stops binding } var valid = this.isValid(); if(!valid && this.errorSummary){ this.showTooltip(this.getErrorText().join('')); } this.btns.saveBtn.setDisabled(!valid); this.fireEvent('validation', this, valid); }, lastVisibleColumn : function() { var i = this.items.getCount() - 1, c; for(; i >= 0; i--) { c = this.items.items[i]; if (!c.hidden) { return c; } } }, showTooltip: function(msg){ var t = this.tooltip; if(!t){ t = this.tooltip = new Ext.ToolTip({ maxWidth: 600, cls: 'errorTip', width: 300, title: this.errorText, autoHide: false, anchor: 'left', anchorToTarget: true, mouseOffset: [40,0] }); } var v = this.grid.getView(), top = parseInt(this.el.dom.style.top, 10), scroll = v.scroller.dom.scrollTop, h = this.el.getHeight(); if(top + h >= scroll){ t.initTarget(this.lastVisibleColumn().getEl()); if(!t.rendered){ t.show(); t.hide(); } t.body.update(msg); t.doAutoWidth(20); t.show(); }else if(t.rendered){ t.hide(); } }, getErrorText: function(){ var data = ['
      ']; this.items.each(function(f){ if(!f.isValid(true)){ data.push('
    • ', f.getActiveError(), '
      • '); } }); data.push('
    '); return data; } }); Ext.preg('roweditor', Ext.ux.grid.RowEditor); Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.RowExpander * @extends Ext.util.Observable * Plugin (ptype = 'rowexpander') that adds the ability to have a Column in a grid which enables * a second row body which expands/contracts. The expand/contract behavior is configurable to react * on clicking of the column, double click of the row, and/or hitting enter while a row is selected. * * @ptype rowexpander */ Ext.ux.grid.RowExpander = Ext.extend(Ext.util.Observable, { /** * @cfg {Boolean} expandOnEnter * true to toggle selected row(s) between expanded/collapsed when the enter * key is pressed (defaults to true). */ expandOnEnter : true, /** * @cfg {Boolean} expandOnDblClick * true to toggle a row between expanded/collapsed when double clicked * (defaults to true). */ expandOnDblClick : true, header : '', width : 20, sortable : false, fixed : true, hideable: false, menuDisabled : true, dataIndex : '', id : 'expander', lazyRender : true, enableCaching : true, constructor: function(config){ Ext.apply(this, config); this.addEvents({ /** * @event beforeexpand * Fires before the row expands. Have the listener return false to prevent the row from expanding. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ beforeexpand: true, /** * @event expand * Fires after the row expands. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ expand: true, /** * @event beforecollapse * Fires before the row collapses. Have the listener return false to prevent the row from collapsing. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ beforecollapse: true, /** * @event collapse * Fires after the row collapses. * @param {Object} this RowExpander object. * @param {Object} Ext.data.Record Record for the selected row. * @param {Object} body body element for the secondary row. * @param {Number} rowIndex The current row index. */ collapse: true }); Ext.ux.grid.RowExpander.superclass.constructor.call(this); if(this.tpl){ if(typeof this.tpl == 'string'){ this.tpl = new Ext.Template(this.tpl); } this.tpl.compile(); } this.state = {}; this.bodyContent = {}; }, getRowClass : function(record, rowIndex, p, ds){ p.cols = p.cols-1; var content = this.bodyContent[record.id]; if(!content && !this.lazyRender){ content = this.getBodyContent(record, rowIndex); } if(content){ p.body = content; } return this.state[record.id] ? 'x-grid3-row-expanded' : 'x-grid3-row-collapsed'; }, init : function(grid){ this.grid = grid; var view = grid.getView(); view.getRowClass = this.getRowClass.createDelegate(this); view.enableRowBody = true; grid.on('render', this.onRender, this); grid.on('destroy', this.onDestroy, this); }, // @private onRender: function() { var grid = this.grid; var mainBody = grid.getView().mainBody; mainBody.on('mousedown', this.onMouseDown, this, {delegate: '.x-grid3-row-expander'}); if (this.expandOnEnter) { this.keyNav = new Ext.KeyNav(this.grid.getGridEl(), { 'enter' : this.onEnter, scope: this }); } if (this.expandOnDblClick) { grid.on('rowdblclick', this.onRowDblClick, this); } }, // @private onDestroy: function() { if(this.keyNav){ this.keyNav.disable(); delete this.keyNav; } /* * A majority of the time, the plugin will be destroyed along with the grid, * which means the mainBody won't be available. On the off chance that the plugin * isn't destroyed with the grid, take care of removing the listener. */ var mainBody = this.grid.getView().mainBody; if(mainBody){ mainBody.un('mousedown', this.onMouseDown, this); } }, // @private onRowDblClick: function(grid, rowIdx, e) { this.toggleRow(rowIdx); }, onEnter: function(e) { var g = this.grid; var sm = g.getSelectionModel(); var sels = sm.getSelections(); for (var i = 0, len = sels.length; i < len; i++) { var rowIdx = g.getStore().indexOf(sels[i]); this.toggleRow(rowIdx); } }, getBodyContent : function(record, index){ if(!this.enableCaching){ return this.tpl.apply(record.data); } var content = this.bodyContent[record.id]; if(!content){ content = this.tpl.apply(record.data); this.bodyContent[record.id] = content; } return content; }, onMouseDown : function(e, t){ e.stopEvent(); var row = e.getTarget('.x-grid3-row'); this.toggleRow(row); }, renderer : function(v, p, record){ p.cellAttr = 'rowspan="2"'; return '
     
    '; }, beforeExpand : function(record, body, rowIndex){ if(this.fireEvent('beforeexpand', this, record, body, rowIndex) !== false){ if(this.tpl && this.lazyRender){ body.innerHTML = this.getBodyContent(record, rowIndex); } return true; }else{ return false; } }, toggleRow : function(row){ if(typeof row == 'number'){ row = this.grid.view.getRow(row); } this[Ext.fly(row).hasClass('x-grid3-row-collapsed') ? 'expandRow' : 'collapseRow'](row); }, expandRow : function(row){ if(typeof row == 'number'){ row = this.grid.view.getRow(row); } var record = this.grid.store.getAt(row.rowIndex); var body = Ext.DomQuery.selectNode('tr:nth(2) div.x-grid3-row-body', row); if(this.beforeExpand(record, body, row.rowIndex)){ this.state[record.id] = true; Ext.fly(row).replaceClass('x-grid3-row-collapsed', 'x-grid3-row-expanded'); this.fireEvent('expand', this, record, body, row.rowIndex); } }, collapseRow : function(row){ if(typeof row == 'number'){ row = this.grid.view.getRow(row); } var record = this.grid.store.getAt(row.rowIndex); var body = Ext.fly(row).child('tr:nth(1) div.x-grid3-row-body', true); if(this.fireEvent('beforecollapse', this, record, body, row.rowIndex) !== false){ this.state[record.id] = false; Ext.fly(row).replaceClass('x-grid3-row-expanded', 'x-grid3-row-collapsed'); this.fireEvent('collapse', this, record, body, row.rowIndex); } } }); Ext.preg('rowexpander', Ext.ux.grid.RowExpander); //backwards compat Ext.grid.RowExpander = Ext.ux.grid.RowExpander;// We are adding these custom layouts to a namespace that does not // exist by default in Ext, so we have to add the namespace first: Ext.ns('Ext.ux.layout'); /** * @class Ext.ux.layout.RowLayout * @extends Ext.layout.ContainerLayout *

    This is the layout style of choice for creating structural layouts in a multi-row format where the height of * each row can be specified as a percentage or fixed height. Row widths can also be fixed, percentage or auto. * This class is intended to be extended or created via the layout:'ux.row' {@link Ext.Container#layout} config, * and should generally not need to be created directly via the new keyword.

    *

    RowLayout does not have any direct config options (other than inherited ones), but it does support a * specific config property of rowHeight that can be included in the config of any panel added to it. The * layout will use the rowHeight (if present) or height of each panel during layout to determine how to size each panel. * If height or rowHeight is not specified for a given panel, its height will default to the panel's height (or auto).

    *

    The height property is always evaluated as pixels, and must be a number greater than or equal to 1. * The rowHeight property is always evaluated as a percentage, and must be a decimal value greater than 0 and * less than 1 (e.g., .25).

    *

    The basic rules for specifying row heights are pretty simple. The logic makes two passes through the * set of contained panels. During the first layout pass, all panels that either have a fixed height or none * specified (auto) are skipped, but their heights are subtracted from the overall container height. During the second * pass, all panels with rowHeights are assigned pixel heights in proportion to their percentages based on * the total remaining container height. In other words, percentage height panels are designed to fill the space * left over by all the fixed-height and/or auto-height panels. Because of this, while you can specify any number of rows * with different percentages, the rowHeights must always add up to 1 (or 100%) when added together, otherwise your * layout may not render as expected. Example usage:

    * 
    
// All rows are percentages -- they must add up to 1
var p = new Ext.Panel({
    title: 'Row Layout - Percentage Only',
    layout:'ux.row',
    items: [{
        title: 'Row 1',
        rowHeight: .25
    },{
        title: 'Row 2',
        rowHeight: .6
    },{
        title: 'Row 3',
        rowHeight: .15
    }]
});

// Mix of height and rowHeight -- all rowHeight values must add
// up to 1. The first row will take up exactly 120px, and the last two
// rows will fill the remaining container height.
var p = new Ext.Panel({
    title: 'Row Layout - Mixed',
    layout:'ux.row',
    items: [{
        title: 'Row 1',
        height: 120,
        // standard panel widths are still supported too:
        width: '50%' // or 200
    },{
        title: 'Row 2',
        rowHeight: .8,
        width: 300
    },{
        title: 'Row 3',
        rowHeight: .2
    }]
});
    */ Ext.ux.layout.RowLayout = Ext.extend(Ext.layout.ContainerLayout, { // private monitorResize:true, type: 'row', // private allowContainerRemove: false, // private isValidParent : function(c, target){ return this.innerCt && c.getPositionEl().dom.parentNode == this.innerCt.dom; }, getLayoutTargetSize : function() { var target = this.container.getLayoutTarget(), ret; if (target) { ret = target.getViewSize(); // IE in strict mode will return a height of 0 on the 1st pass of getViewSize. // Use getStyleSize to verify the 0 height, the adjustment pass will then work properly // with getViewSize if (Ext.isIE && Ext.isStrict && ret.height == 0){ ret = target.getStyleSize(); } ret.width -= target.getPadding('lr'); ret.height -= target.getPadding('tb'); } return ret; }, renderAll : function(ct, target) { if(!this.innerCt){ // the innerCt prevents wrapping and shuffling while // the container is resizing this.innerCt = target.createChild({cls:'x-column-inner'}); this.innerCt.createChild({cls:'x-clear'}); } Ext.layout.ColumnLayout.superclass.renderAll.call(this, ct, this.innerCt); }, // private onLayout : function(ct, target){ var rs = ct.items.items, len = rs.length, r, m, i, margins = []; this.renderAll(ct, target); var size = this.getLayoutTargetSize(); if(size.width < 1 && size.height < 1){ // display none? return; } var h = size.height, ph = h; this.innerCt.setSize({height:h}); // some rows can be percentages while others are fixed // so we need to make 2 passes for(i = 0; i < len; i++){ r = rs[i]; m = r.getPositionEl().getMargins('tb'); margins[i] = m; if(!r.rowHeight){ ph -= (r.getHeight() + m); } } ph = ph < 0 ? 0 : ph; for(i = 0; i < len; i++){ r = rs[i]; m = margins[i]; if(r.rowHeight){ r.setSize({height: Math.floor(r.rowHeight*ph) - m}); } } // Browsers differ as to when they account for scrollbars. We need to re-measure to see if the scrollbar // spaces were accounted for properly. If not, re-layout. if (Ext.isIE) { if (i = target.getStyle('overflow') && i != 'hidden' && !this.adjustmentPass) { var ts = this.getLayoutTargetSize(); if (ts.width != size.width){ this.adjustmentPass = true; this.onLayout(ct, target); } } } delete this.adjustmentPass; } /** * @property activeItem * @hide */ }); Ext.Container.LAYOUTS['ux.row'] = Ext.ux.layout.RowLayout; Ext.ns('Ext.ux.form'); Ext.ux.form.SearchField = Ext.extend(Ext.form.TwinTriggerField, { initComponent : function(){ Ext.ux.form.SearchField.superclass.initComponent.call(this); this.on('specialkey', function(f, e){ if(e.getKey() == e.ENTER){ this.onTrigger2Click(); } }, this); }, validationEvent:false, validateOnBlur:false, trigger1Class:'x-form-clear-trigger', trigger2Class:'x-form-search-trigger', hideTrigger1:true, width:180, hasSearch : false, paramName : 'query', onTrigger1Click : function(){ if(this.hasSearch){ this.el.dom.value = ''; var o = {start: 0}; this.store.baseParams = this.store.baseParams || {}; this.store.baseParams[this.paramName] = ''; this.store.reload({params:o}); this.triggers[0].hide(); this.hasSearch = false; } }, onTrigger2Click : function(){ var v = this.getRawValue(); if(v.length < 1){ this.onTrigger1Click(); return; } var o = {start: 0}; this.store.baseParams = this.store.baseParams || {}; this.store.baseParams[this.paramName] = v; this.store.reload({params:o}); this.hasSearch = true; this.triggers[0].show(); } });Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.SelectBox * @extends Ext.form.ComboBox *

    Makes a ComboBox more closely mimic an HTML SELECT. Supports clicking and dragging * through the list, with item selection occurring when the mouse button is released. * When used will automatically set {@link #editable} to false and call {@link Ext.Element#unselectable} * on inner elements. Re-enabling editable after calling this will NOT work.

    * @author Corey Gilmore http://extjs.com/forum/showthread.php?t=6392 * @history 2007-07-08 jvs * Slight mods for Ext 2.0 * @xtype selectbox */ Ext.ux.form.SelectBox = Ext.extend(Ext.form.ComboBox, { constructor: function(config){ this.searchResetDelay = 1000; config = config || {}; config = Ext.apply(config || {}, { editable: false, forceSelection: true, rowHeight: false, lastSearchTerm: false, triggerAction: 'all', mode: 'local' }); Ext.ux.form.SelectBox.superclass.constructor.apply(this, arguments); this.lastSelectedIndex = this.selectedIndex || 0; }, initEvents : function(){ Ext.ux.form.SelectBox.superclass.initEvents.apply(this, arguments); // you need to use keypress to capture upper/lower case and shift+key, but it doesn't work in IE this.el.on('keydown', this.keySearch, this, true); this.cshTask = new Ext.util.DelayedTask(this.clearSearchHistory, this); }, keySearch : function(e, target, options) { var raw = e.getKey(); var key = String.fromCharCode(raw); var startIndex = 0; if( !this.store.getCount() ) { return; } switch(raw) { case Ext.EventObject.HOME: e.stopEvent(); this.selectFirst(); return; case Ext.EventObject.END: e.stopEvent(); this.selectLast(); return; case Ext.EventObject.PAGEDOWN: this.selectNextPage(); e.stopEvent(); return; case Ext.EventObject.PAGEUP: this.selectPrevPage(); e.stopEvent(); return; } // skip special keys other than the shift key if( (e.hasModifier() && !e.shiftKey) || e.isNavKeyPress() || e.isSpecialKey() ) { return; } if( this.lastSearchTerm == key ) { startIndex = this.lastSelectedIndex; } this.search(this.displayField, key, startIndex); this.cshTask.delay(this.searchResetDelay); }, onRender : function(ct, position) { this.store.on('load', this.calcRowsPerPage, this); Ext.ux.form.SelectBox.superclass.onRender.apply(this, arguments); if( this.mode == 'local' ) { this.initList(); this.calcRowsPerPage(); } }, onSelect : function(record, index, skipCollapse){ if(this.fireEvent('beforeselect', this, record, index) !== false){ this.setValue(record.data[this.valueField || this.displayField]); if( !skipCollapse ) { this.collapse(); } this.lastSelectedIndex = index + 1; this.fireEvent('select', this, record, index); } }, afterRender : function() { Ext.ux.form.SelectBox.superclass.afterRender.apply(this, arguments); if(Ext.isWebKit) { this.el.swallowEvent('mousedown', true); } this.el.unselectable(); this.innerList.unselectable(); this.trigger.unselectable(); this.innerList.on('mouseup', function(e, target, options) { if( target.id && target.id == this.innerList.id ) { return; } this.onViewClick(); }, this); this.mun(this.view, 'containerclick', this.onViewClick, this); this.mun(this.view, 'click', this.onViewClick, this); this.innerList.on('mouseover', function(e, target, options) { if( target.id && target.id == this.innerList.id ) { return; } this.lastSelectedIndex = this.view.getSelectedIndexes()[0] + 1; this.cshTask.delay(this.searchResetDelay); }, this); this.trigger.un('click', this.onTriggerClick, this); this.trigger.on('mousedown', function(e, target, options) { e.preventDefault(); this.onTriggerClick(); }, this); this.on('collapse', function(e, target, options) { Ext.getDoc().un('mouseup', this.collapseIf, this); }, this, true); this.on('expand', function(e, target, options) { Ext.getDoc().on('mouseup', this.collapseIf, this); }, this, true); }, clearSearchHistory : function() { this.lastSelectedIndex = 0; this.lastSearchTerm = false; }, selectFirst : function() { this.focusAndSelect(this.store.data.first()); }, selectLast : function() { this.focusAndSelect(this.store.data.last()); }, selectPrevPage : function() { if( !this.rowHeight ) { return; } var index = Math.max(this.selectedIndex-this.rowsPerPage, 0); this.focusAndSelect(this.store.getAt(index)); }, selectNextPage : function() { if( !this.rowHeight ) { return; } var index = Math.min(this.selectedIndex+this.rowsPerPage, this.store.getCount() - 1); this.focusAndSelect(this.store.getAt(index)); }, search : function(field, value, startIndex) { field = field || this.displayField; this.lastSearchTerm = value; var index = this.store.find.apply(this.store, arguments); if( index !== -1 ) { this.focusAndSelect(index); } }, focusAndSelect : function(record) { var index = Ext.isNumber(record) ? record : this.store.indexOf(record); this.select(index, this.isExpanded()); this.onSelect(this.store.getAt(index), index, this.isExpanded()); }, calcRowsPerPage : function() { if( this.store.getCount() ) { this.rowHeight = Ext.fly(this.view.getNode(0)).getHeight(); this.rowsPerPage = this.maxHeight / this.rowHeight; } else { this.rowHeight = false; } } }); Ext.reg('selectbox', Ext.ux.form.SelectBox); //backwards compat Ext.ux.SelectBox = Ext.ux.form.SelectBox; /** * Plugin for PagingToolbar which replaces the textfield input with a slider */ Ext.ux.SlidingPager = Ext.extend(Object, { init : function(pbar){ var idx = pbar.items.indexOf(pbar.inputItem); Ext.each(pbar.items.getRange(idx - 2, idx + 2), function(c){ c.hide(); }); var slider = new Ext.Slider({ width: 114, minValue: 1, maxValue: 1, plugins: new Ext.slider.Tip({ getText : function(thumb) { return String.format('Page {0} of {1}', thumb.value, thumb.slider.maxValue); } }), listeners: { changecomplete: function(s, v){ pbar.changePage(v); } } }); pbar.insert(idx + 1, slider); pbar.on({ change: function(pb, data){ slider.setMaxValue(data.pages); slider.setValue(data.activePage); } }); } });Ext.ns('Ext.ux.form'); /** * @class Ext.ux.form.SpinnerField * @extends Ext.form.NumberField * Creates a field utilizing Ext.ux.Spinner * @xtype spinnerfield */ Ext.ux.form.SpinnerField = Ext.extend(Ext.form.NumberField, { actionMode: 'wrap', deferHeight: true, autoSize: Ext.emptyFn, onBlur: Ext.emptyFn, adjustSize: Ext.BoxComponent.prototype.adjustSize, constructor: function(config) { var spinnerConfig = Ext.copyTo({}, config, 'incrementValue,alternateIncrementValue,accelerate,defaultValue,triggerClass,splitterClass'); var spl = this.spinner = new Ext.ux.Spinner(spinnerConfig); var plugins = config.plugins ? (Ext.isArray(config.plugins) ? config.plugins.push(spl) : [config.plugins, spl]) : spl; Ext.ux.form.SpinnerField.superclass.constructor.call(this, Ext.apply(config, {plugins: plugins})); }, // private getResizeEl: function(){ return this.wrap; }, // private getPositionEl: function(){ return this.wrap; }, // private alignErrorIcon: function(){ if (this.wrap) { this.errorIcon.alignTo(this.wrap, 'tl-tr', [2, 0]); } }, validateBlur: function(){ return true; } }); Ext.reg('spinnerfield', Ext.ux.form.SpinnerField); //backwards compat Ext.form.SpinnerField = Ext.ux.form.SpinnerField; /** * @class Ext.ux.Spinner * @extends Ext.util.Observable * Creates a Spinner control utilized by Ext.ux.form.SpinnerField */ Ext.ux.Spinner = Ext.extend(Ext.util.Observable, { incrementValue: 1, alternateIncrementValue: 5, triggerClass: 'x-form-spinner-trigger', splitterClass: 'x-form-spinner-splitter', alternateKey: Ext.EventObject.shiftKey, defaultValue: 0, accelerate: false, constructor: function(config){ Ext.ux.Spinner.superclass.constructor.call(this, config); Ext.apply(this, config); this.mimicing = false; }, init: function(field){ this.field = field; field.afterMethod('onRender', this.doRender, this); field.afterMethod('onEnable', this.doEnable, this); field.afterMethod('onDisable', this.doDisable, this); field.afterMethod('afterRender', this.doAfterRender, this); field.afterMethod('onResize', this.doResize, this); field.afterMethod('onFocus', this.doFocus, this); field.beforeMethod('onDestroy', this.doDestroy, this); }, doRender: function(ct, position){ var el = this.el = this.field.getEl(); var f = this.field; if (!f.wrap) { f.wrap = this.wrap = el.wrap({ cls: "x-form-field-wrap" }); } else { this.wrap = f.wrap.addClass('x-form-field-wrap'); } this.trigger = this.wrap.createChild({ tag: "img", src: Ext.BLANK_IMAGE_URL, cls: "x-form-trigger " + this.triggerClass }); if (!f.width) { this.wrap.setWidth(el.getWidth() + this.trigger.getWidth()); } this.splitter = this.wrap.createChild({ tag: 'div', cls: this.splitterClass, style: 'width:13px; height:2px;' }); this.splitter.setRight((Ext.isIE) ? 1 : 2).setTop(10).show(); this.proxy = this.trigger.createProxy('', this.splitter, true); this.proxy.addClass("x-form-spinner-proxy"); this.proxy.setStyle('left', '0px'); this.proxy.setSize(14, 1); this.proxy.hide(); this.dd = new Ext.dd.DDProxy(this.splitter.dom.id, "SpinnerDrag", { dragElId: this.proxy.id }); this.initTrigger(); this.initSpinner(); }, doAfterRender: function(){ var y; if (Ext.isIE && this.el.getY() != (y = this.trigger.getY())) { this.el.position(); this.el.setY(y); } }, doEnable: function(){ if (this.wrap) { this.disabled = false; this.wrap.removeClass(this.field.disabledClass); } }, doDisable: function(){ if (this.wrap) { this.disabled = true; this.wrap.addClass(this.field.disabledClass); this.el.removeClass(this.field.disabledClass); } }, doResize: function(w, h){ if (typeof w == 'number') { this.el.setWidth(w - this.trigger.getWidth()); } this.wrap.setWidth(this.el.getWidth() + this.trigger.getWidth()); }, doFocus: function(){ if (!this.mimicing) { this.wrap.addClass('x-trigger-wrap-focus'); this.mimicing = true; Ext.get(Ext.isIE ? document.body : document).on("mousedown", this.mimicBlur, this, { delay: 10 }); this.el.on('keydown', this.checkTab, this); } }, // private checkTab: function(e){ if (e.getKey() == e.TAB) { this.triggerBlur(); } }, // private mimicBlur: function(e){ if (!this.wrap.contains(e.target) && this.field.validateBlur(e)) { this.triggerBlur(); } }, // private triggerBlur: function(){ this.mimicing = false; Ext.get(Ext.isIE ? document.body : document).un("mousedown", this.mimicBlur, this); this.el.un("keydown", this.checkTab, this); this.field.beforeBlur(); this.wrap.removeClass('x-trigger-wrap-focus'); this.field.onBlur.call(this.field); }, initTrigger: function(){ this.trigger.addClassOnOver('x-form-trigger-over'); this.trigger.addClassOnClick('x-form-trigger-click'); }, initSpinner: function(){ this.field.addEvents({ 'spin': true, 'spinup': true, 'spindown': true }); this.keyNav = new Ext.KeyNav(this.el, { "up": function(e){ e.preventDefault(); this.onSpinUp(); }, "down": function(e){ e.preventDefault(); this.onSpinDown(); }, "pageUp": function(e){ e.preventDefault(); this.onSpinUpAlternate(); }, "pageDown": function(e){ e.preventDefault(); this.onSpinDownAlternate(); }, scope: this }); this.repeater = new Ext.util.ClickRepeater(this.trigger, { accelerate: this.accelerate }); this.field.mon(this.repeater, "click", this.onTriggerClick, this, { preventDefault: true }); this.field.mon(this.trigger, { mouseover: this.onMouseOver, mouseout: this.onMouseOut, mousemove: this.onMouseMove, mousedown: this.onMouseDown, mouseup: this.onMouseUp, scope: this, preventDefault: true }); this.field.mon(this.wrap, "mousewheel", this.handleMouseWheel, this); this.dd.setXConstraint(0, 0, 10) this.dd.setYConstraint(1500, 1500, 10); this.dd.endDrag = this.endDrag.createDelegate(this); this.dd.startDrag = this.startDrag.createDelegate(this); this.dd.onDrag = this.onDrag.createDelegate(this); }, onMouseOver: function(){ if (this.disabled) { return; } var middle = this.getMiddle(); this.tmpHoverClass = (Ext.EventObject.getPageY() < middle) ? 'x-form-spinner-overup' : 'x-form-spinner-overdown'; this.trigger.addClass(this.tmpHoverClass); }, //private onMouseOut: function(){ this.trigger.removeClass(this.tmpHoverClass); }, //private onMouseMove: function(){ if (this.disabled) { return; } var middle = this.getMiddle(); if (((Ext.EventObject.getPageY() > middle) && this.tmpHoverClass == "x-form-spinner-overup") || ((Ext.EventObject.getPageY() < middle) && this.tmpHoverClass == "x-form-spinner-overdown")) { } }, //private onMouseDown: function(){ if (this.disabled) { return; } var middle = this.getMiddle(); this.tmpClickClass = (Ext.EventObject.getPageY() < middle) ? 'x-form-spinner-clickup' : 'x-form-spinner-clickdown'; this.trigger.addClass(this.tmpClickClass); }, //private onMouseUp: function(){ this.trigger.removeClass(this.tmpClickClass); }, //private onTriggerClick: function(){ if (this.disabled || this.el.dom.readOnly) { return; } var middle = this.getMiddle(); var ud = (Ext.EventObject.getPageY() < middle) ? 'Up' : 'Down'; this['onSpin' + ud](); }, //private getMiddle: function(){ var t = this.trigger.getTop(); var h = this.trigger.getHeight(); var middle = t + (h / 2); return middle; }, //private //checks if control is allowed to spin isSpinnable: function(){ if (this.disabled || this.el.dom.readOnly) { Ext.EventObject.preventDefault(); //prevent scrolling when disabled/readonly return false; } return true; }, handleMouseWheel: function(e){ //disable scrolling when not focused if (this.wrap.hasClass('x-trigger-wrap-focus') == false) { return; } var delta = e.getWheelDelta(); if (delta > 0) { this.onSpinUp(); e.stopEvent(); } else if (delta < 0) { this.onSpinDown(); e.stopEvent(); } }, //private startDrag: function(){ this.proxy.show(); this._previousY = Ext.fly(this.dd.getDragEl()).getTop(); }, //private endDrag: function(){ this.proxy.hide(); }, //private onDrag: function(){ if (this.disabled) { return; } var y = Ext.fly(this.dd.getDragEl()).getTop(); var ud = ''; if (this._previousY > y) { ud = 'Up'; } //up if (this._previousY < y) { ud = 'Down'; } //down if (ud != '') { this['onSpin' + ud](); } this._previousY = y; }, //private onSpinUp: function(){ if (this.isSpinnable() == false) { return; } if (Ext.EventObject.shiftKey == true) { this.onSpinUpAlternate(); return; } else { this.spin(false, false); } this.field.fireEvent("spin", this); this.field.fireEvent("spinup", this); }, //private onSpinDown: function(){ if (this.isSpinnable() == false) { return; } if (Ext.EventObject.shiftKey == true) { this.onSpinDownAlternate(); return; } else { this.spin(true, false); } this.field.fireEvent("spin", this); this.field.fireEvent("spindown", this); }, //private onSpinUpAlternate: function(){ if (this.isSpinnable() == false) { return; } this.spin(false, true); this.field.fireEvent("spin", this); this.field.fireEvent("spinup", this); }, //private onSpinDownAlternate: function(){ if (this.isSpinnable() == false) { return; } this.spin(true, true); this.field.fireEvent("spin", this); this.field.fireEvent("spindown", this); }, spin: function(down, alternate){ var v = parseFloat(this.field.getValue()); var incr = (alternate == true) ? this.alternateIncrementValue : this.incrementValue; (down == true) ? v -= incr : v += incr; v = (isNaN(v)) ? this.defaultValue : v; v = this.fixBoundries(v); this.field.setRawValue(v); }, fixBoundries: function(value){ var v = value; if (this.field.minValue != undefined && v < this.field.minValue) { v = this.field.minValue; } if (this.field.maxValue != undefined && v > this.field.maxValue) { v = this.field.maxValue; } return this.fixPrecision(v); }, // private fixPrecision: function(value){ var nan = isNaN(value); if (!this.field.allowDecimals || this.field.decimalPrecision == -1 || nan || !value) { return nan ? '' : value; } return parseFloat(parseFloat(value).toFixed(this.field.decimalPrecision)); }, doDestroy: function(){ if (this.trigger) { this.trigger.remove(); } if (this.wrap) { this.wrap.remove(); delete this.field.wrap; } if (this.splitter) { this.splitter.remove(); } if (this.dd) { this.dd.unreg(); this.dd = null; } if (this.proxy) { this.proxy.remove(); } if (this.repeater) { this.repeater.purgeListeners(); } if (this.mimicing){ Ext.get(Ext.isIE ? document.body : document).un("mousedown", this.mimicBlur, this); } } }); //backwards compat Ext.form.Spinner = Ext.ux.Spinner;Ext.ux.Spotlight = function(config){ Ext.apply(this, config); } Ext.ux.Spotlight.prototype = { active : false, animate : true, duration: .25, easing:'easeNone', // private animated : false, createElements : function(){ var bd = Ext.getBody(); this.right = bd.createChild({cls:'x-spotlight'}); this.left = bd.createChild({cls:'x-spotlight'}); this.top = bd.createChild({cls:'x-spotlight'}); this.bottom = bd.createChild({cls:'x-spotlight'}); this.all = new Ext.CompositeElement([this.right, this.left, this.top, this.bottom]); }, show : function(el, callback, scope){ if(this.animated){ this.show.defer(50, this, [el, callback, scope]); return; } this.el = Ext.get(el); if(!this.right){ this.createElements(); } if(!this.active){ this.all.setDisplayed(''); this.applyBounds(true, false); this.active = true; Ext.EventManager.onWindowResize(this.syncSize, this); this.applyBounds(false, this.animate, false, callback, scope); }else{ this.applyBounds(false, false, false, callback, scope); // all these booleans look hideous } }, hide : function(callback, scope){ if(this.animated){ this.hide.defer(50, this, [callback, scope]); return; } Ext.EventManager.removeResizeListener(this.syncSize, this); this.applyBounds(true, this.animate, true, callback, scope); }, doHide : function(){ this.active = false; this.all.setDisplayed(false); }, syncSize : function(){ this.applyBounds(false, false); }, applyBounds : function(basePts, anim, doHide, callback, scope){ var rg = this.el.getRegion(); var dw = Ext.lib.Dom.getViewWidth(true); var dh = Ext.lib.Dom.getViewHeight(true); var c = 0, cb = false; if(anim){ cb = { callback: function(){ c++; if(c == 4){ this.animated = false; if(doHide){ this.doHide(); } Ext.callback(callback, scope, [this]); } }, scope: this, duration: this.duration, easing: this.easing }; this.animated = true; } this.right.setBounds( rg.right, basePts ? dh : rg.top, dw - rg.right, basePts ? 0 : (dh - rg.top), cb); this.left.setBounds( 0, 0, rg.left, basePts ? 0 : rg.bottom, cb); this.top.setBounds( basePts ? dw : rg.left, 0, basePts ? 0 : dw - rg.left, rg.top, cb); this.bottom.setBounds( 0, rg.bottom, basePts ? 0 : rg.right, dh - rg.bottom, cb); if(!anim){ if(doHide){ this.doHide(); } if(callback){ Ext.callback(callback, scope, [this]); } } }, destroy : function(){ this.doHide(); Ext.destroy( this.right, this.left, this.top, this.bottom); delete this.el; delete this.all; } }; //backwards compat Ext.Spotlight = Ext.ux.Spotlight;/** * @class Ext.ux.StatusBar *

    Basic status bar component that can be used as the bottom toolbar of any {@link Ext.Panel}. In addition to * supporting the standard {@link Ext.Toolbar} interface for adding buttons, menus and other items, the StatusBar * provides a greedy status element that can be aligned to either side and has convenient methods for setting the * status text and icon. You can also indicate that something is processing using the {@link #showBusy} method.

    * 
    
new Ext.Panel({
    title: 'StatusBar',
    // etc.
    bbar: new Ext.ux.StatusBar({
        id: 'my-status',

        // defaults to use when the status is cleared:
        defaultText: 'Default status text',
        defaultIconCls: 'default-icon',

        // values to set initially:
        text: 'Ready',
        iconCls: 'ready-icon',

        // any standard Toolbar items:
        items: [{
            text: 'A Button'
        }, '-', 'Plain Text']
    })
});

// Update the status bar later in code:
var sb = Ext.getCmp('my-status');
sb.setStatus({
    text: 'OK',
    iconCls: 'ok-icon',
    clear: true // auto-clear after a set interval
});

// Set the status bar to show that something is processing:
sb.showBusy();

// processing....

sb.clearStatus(); // once completeed
    * @extends Ext.Toolbar * @constructor * Creates a new StatusBar * @param {Object/Array} config A config object */ Ext.ux.StatusBar = Ext.extend(Ext.Toolbar, { /** * @cfg {String} statusAlign * The alignment of the status element within the overall StatusBar layout. When the StatusBar is rendered, * it creates an internal div containing the status text and icon. Any additional Toolbar items added in the * StatusBar's {@link #items} config, or added via {@link #add} or any of the supported add* methods, will be * rendered, in added order, to the opposite side. The status element is greedy, so it will automatically * expand to take up all sapce left over by any other items. Example usage: * 
    
// Create a left-aligned status bar containing a button,
// separator and text item that will be right-aligned (default):
new Ext.Panel({
    title: 'StatusBar',
    // etc.
    bbar: new Ext.ux.StatusBar({
        defaultText: 'Default status text',
        id: 'status-id',
        items: [{
            text: 'A Button'
        }, '-', 'Plain Text']
    })
});

// By adding the statusAlign config, this will create the
// exact same toolbar, except the status and toolbar item
// layout will be reversed from the previous example:
new Ext.Panel({
    title: 'StatusBar',
    // etc.
    bbar: new Ext.ux.StatusBar({
        defaultText: 'Default status text',
        id: 'status-id',
        statusAlign: 'right',
        items: [{
            text: 'A Button'
        }, '-', 'Plain Text']
    })
});
    */ /** * @cfg {String} defaultText * The default {@link #text} value. This will be used anytime the status bar is cleared with the * useDefaults:true option (defaults to ''). */ /** * @cfg {String} defaultIconCls * The default {@link #iconCls} value (see the iconCls docs for additional details about customizing the icon). * This will be used anytime the status bar is cleared with the useDefaults:true option (defaults to ''). */ /** * @cfg {String} text * A string that will be initially set as the status message. This string * will be set as innerHTML (html tags are accepted) for the toolbar item. * If not specified, the value set for {@link #defaultText} * will be used. */ /** * @cfg {String} iconCls * A CSS class that will be initially set as the status bar icon and is * expected to provide a background image (defaults to ''). * Example usage:
    
// Example CSS rule:
.x-statusbar .x-status-custom {
    padding-left: 25px;
    background: transparent url(images/custom-icon.gif) no-repeat 3px 2px;
}

// Setting a default icon:
var sb = new Ext.ux.StatusBar({
    defaultIconCls: 'x-status-custom'
});

// Changing the icon:
sb.setStatus({
    text: 'New status',
    iconCls: 'x-status-custom'
});
    */ /** * @cfg {String} cls * The base class applied to the containing element for this component on render (defaults to 'x-statusbar') */ cls : 'x-statusbar', /** * @cfg {String} busyIconCls * The default {@link #iconCls} applied when calling * {@link #showBusy} (defaults to 'x-status-busy'). * It can be overridden at any time by passing the iconCls * argument into {@link #showBusy}. */ busyIconCls : 'x-status-busy', /** * @cfg {String} busyText * The default {@link #text} applied when calling * {@link #showBusy} (defaults to 'Loading...'). * It can be overridden at any time by passing the text * argument into {@link #showBusy}. */ busyText : 'Loading...', /** * @cfg {Number} autoClear * The number of milliseconds to wait after setting the status via * {@link #setStatus} before automatically clearing the status * text and icon (defaults to 5000). Note that this only applies * when passing the clear argument to {@link #setStatus} * since that is the only way to defer clearing the status. This can * be overridden by specifying a different wait value in * {@link #setStatus}. Calls to {@link #clearStatus} * always clear the status bar immediately and ignore this value. */ autoClear : 5000, /** * @cfg {String} emptyText * The text string to use if no text has been set. Defaults to * ' '). If there are no other items in the toolbar using * an empty string ('') for this value would end up in the toolbar * height collapsing since the empty string will not maintain the toolbar * height. Use '' if the toolbar should collapse in height * vertically when no text is specified and there are no other items in * the toolbar. */ emptyText : ' ', // private activeThreadId : 0, // private initComponent : function(){ if(this.statusAlign=='right'){ this.cls += ' x-status-right'; } Ext.ux.StatusBar.superclass.initComponent.call(this); }, // private afterRender : function(){ Ext.ux.StatusBar.superclass.afterRender.call(this); var right = this.statusAlign == 'right'; this.currIconCls = this.iconCls || this.defaultIconCls; this.statusEl = new Ext.Toolbar.TextItem({ cls: 'x-status-text ' + (this.currIconCls || ''), text: this.text || this.defaultText || '' }); if(right){ this.add('->'); this.add(this.statusEl); }else{ this.insert(0, this.statusEl); this.insert(1, '->'); } this.doLayout(); }, /** * Sets the status {@link #text} and/or {@link #iconCls}. Also supports automatically clearing the * status that was set after a specified interval. * @param {Object/String} config A config object specifying what status to set, or a string assumed * to be the status text (and all other options are defaulted as explained below). A config * object containing any or all of the following properties can be passed:
      *
    • text {String} : (optional) The status text to display. If not specified, any current * status text will remain unchanged.
      • *
    • iconCls {String} : (optional) The CSS class used to customize the status icon (see * {@link #iconCls} for details). If not specified, any current iconCls will remain unchanged.
      • *
    • clear {Boolean/Number/Object} : (optional) Allows you to set an internal callback that will * automatically clear the status text and iconCls after a specified amount of time has passed. If clear is not * specified, the new status will not be auto-cleared and will stay until updated again or cleared using * {@link #clearStatus}. If true is passed, the status will be cleared using {@link #autoClear}, * {@link #defaultText} and {@link #defaultIconCls} via a fade out animation. If a numeric value is passed, * it will be used as the callback interval (in milliseconds), overriding the {@link #autoClear} value. * All other options will be defaulted as with the boolean option. To customize any other options, * you can pass an object in the format:
        *
      • wait {Number} : (optional) The number of milliseconds to wait before clearing * (defaults to {@link #autoClear}).
        • *
      • anim {Number} : (optional) False to clear the status immediately once the callback * executes (defaults to true which fades the status out).
        • *
      • useDefaults {Number} : (optional) False to completely clear the status text and iconCls * (defaults to true which uses {@link #defaultText} and {@link #defaultIconCls}).
        • *
    * Example usage:
    
// Simple call to update the text
statusBar.setStatus('New status');

// Set the status and icon, auto-clearing with default options:
statusBar.setStatus({
    text: 'New status',
    iconCls: 'x-status-custom',
    clear: true
});

// Auto-clear with custom options:
statusBar.setStatus({
    text: 'New status',
    iconCls: 'x-status-custom',
    clear: {
        wait: 8000,
        anim: false,
        useDefaults: false
    }
});
    * @return {Ext.ux.StatusBar} this */ setStatus : function(o){ o = o || {}; if(typeof o == 'string'){ o = {text:o}; } if(o.text !== undefined){ this.setText(o.text); } if(o.iconCls !== undefined){ this.setIcon(o.iconCls); } if(o.clear){ var c = o.clear, wait = this.autoClear, defaults = {useDefaults: true, anim: true}; if(typeof c == 'object'){ c = Ext.applyIf(c, defaults); if(c.wait){ wait = c.wait; } }else if(typeof c == 'number'){ wait = c; c = defaults; }else if(typeof c == 'boolean'){ c = defaults; } c.threadId = this.activeThreadId; this.clearStatus.defer(wait, this, [c]); } return this; }, /** * Clears the status {@link #text} and {@link #iconCls}. Also supports clearing via an optional fade out animation. * @param {Object} config (optional) A config object containing any or all of the following properties. If this * object is not specified the status will be cleared using the defaults below:
      *
    • anim {Boolean} : (optional) True to clear the status by fading out the status element (defaults * to false which clears immediately).
      • *
    • useDefaults {Boolean} : (optional) True to reset the text and icon using {@link #defaultText} and * {@link #defaultIconCls} (defaults to false which sets the text to '' and removes any existing icon class).
      • *
    * @return {Ext.ux.StatusBar} this */ clearStatus : function(o){ o = o || {}; if(o.threadId && o.threadId !== this.activeThreadId){ // this means the current call was made internally, but a newer // thread has set a message since this call was deferred. Since // we don't want to overwrite a newer message just ignore. return this; } var text = o.useDefaults ? this.defaultText : this.emptyText, iconCls = o.useDefaults ? (this.defaultIconCls ? this.defaultIconCls : '') : ''; if(o.anim){ // animate the statusEl Ext.Element this.statusEl.el.fadeOut({ remove: false, useDisplay: true, scope: this, callback: function(){ this.setStatus({ text: text, iconCls: iconCls }); this.statusEl.el.show(); } }); }else{ // hide/show the el to avoid jumpy text or icon this.statusEl.hide(); this.setStatus({ text: text, iconCls: iconCls }); this.statusEl.show(); } return this; }, /** * Convenience method for setting the status text directly. For more flexible options see {@link #setStatus}. * @param {String} text (optional) The text to set (defaults to '') * @return {Ext.ux.StatusBar} this */ setText : function(text){ this.activeThreadId++; this.text = text || ''; if(this.rendered){ this.statusEl.setText(this.text); } return this; }, /** * Returns the current status text. * @return {String} The status text */ getText : function(){ return this.text; }, /** * Convenience method for setting the status icon directly. For more flexible options see {@link #setStatus}. * See {@link #iconCls} for complete details about customizing the icon. * @param {String} iconCls (optional) The icon class to set (defaults to '', and any current icon class is removed) * @return {Ext.ux.StatusBar} this */ setIcon : function(cls){ this.activeThreadId++; cls = cls || ''; if(this.rendered){ if(this.currIconCls){ this.statusEl.removeClass(this.currIconCls); this.currIconCls = null; } if(cls.length > 0){ this.statusEl.addClass(cls); this.currIconCls = cls; } }else{ this.currIconCls = cls; } return this; }, /** * Convenience method for setting the status text and icon to special values that are pre-configured to indicate * a "busy" state, usually for loading or processing activities. * @param {Object/String} config (optional) A config object in the same format supported by {@link #setStatus}, or a * string to use as the status text (in which case all other options for setStatus will be defaulted). Use the * text and/or iconCls properties on the config to override the default {@link #busyText} * and {@link #busyIconCls} settings. If the config argument is not specified, {@link #busyText} and * {@link #busyIconCls} will be used in conjunction with all of the default options for {@link #setStatus}. * @return {Ext.ux.StatusBar} this */ showBusy : function(o){ if(typeof o == 'string'){ o = {text:o}; } o = Ext.applyIf(o || {}, { text: this.busyText, iconCls: this.busyIconCls }); return this.setStatus(o); } }); Ext.reg('statusbar', Ext.ux.StatusBar); /** * @class Ext.ux.TabCloseMenu * @extends Object * Plugin (ptype = 'tabclosemenu') for adding a close context menu to tabs. Note that the menu respects * the closable configuration on the tab. As such, commands like remove others and remove all will not * remove items that are not closable. * * @constructor * @param {Object} config The configuration options * @ptype tabclosemenu */ Ext.ux.TabCloseMenu = Ext.extend(Object, { /** * @cfg {String} closeTabText * The text for closing the current tab. Defaults to 'Close Tab'. */ closeTabText: 'Close Tab', /** * @cfg {String} closeOtherTabsText * The text for closing all tabs except the current one. Defaults to 'Close Other Tabs'. */ closeOtherTabsText: 'Close Other Tabs', /** * @cfg {Boolean} showCloseAll * Indicates whether to show the 'Close All' option. Defaults to true. */ showCloseAll: true, /** * @cfg {String} closeAllTabsText *

    The text for closing all tabs. Defaults to 'Close All Tabs'. */ closeAllTabsText: 'Close All Tabs', constructor : function(config){ Ext.apply(this, config || {}); }, //public init : function(tabs){ this.tabs = tabs; tabs.on({ scope: this, contextmenu: this.onContextMenu, destroy: this.destroy }); }, destroy : function(){ Ext.destroy(this.menu); delete this.menu; delete this.tabs; delete this.active; }, // private onContextMenu : function(tabs, item, e){ this.active = item; var m = this.createMenu(), disableAll = true, disableOthers = true, closeAll = m.getComponent('closeall'); m.getComponent('close').setDisabled(!item.closable); tabs.items.each(function(){ if(this.closable){ disableAll = false; if(this != item){ disableOthers = false; return false; } } }); m.getComponent('closeothers').setDisabled(disableOthers); if(closeAll){ closeAll.setDisabled(disableAll); } e.stopEvent(); m.showAt(e.getPoint()); }, createMenu : function(){ if(!this.menu){ var items = [{ itemId: 'close', text: this.closeTabText, scope: this, handler: this.onClose }]; if(this.showCloseAll){ items.push('-'); } items.push({ itemId: 'closeothers', text: this.closeOtherTabsText, scope: this, handler: this.onCloseOthers }); if(this.showCloseAll){ items.push({ itemId: 'closeall', text: this.closeAllTabsText, scope: this, handler: this.onCloseAll }); } this.menu = new Ext.menu.Menu({ items: items }); } return this.menu; }, onClose : function(){ this.tabs.remove(this.active); }, onCloseOthers : function(){ this.doClose(true); }, onCloseAll : function(){ this.doClose(false); }, doClose : function(excludeActive){ var items = []; this.tabs.items.each(function(item){ if(item.closable){ if(!excludeActive || item != this.active){ items.push(item); } } }, this); Ext.each(items, function(item){ this.tabs.remove(item); }, this); } }); Ext.preg('tabclosemenu', Ext.ux.TabCloseMenu);Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.TableGrid * @extends Ext.grid.GridPanel * A Grid which creates itself from an existing HTML table element. * @history * 2007-03-01 Original version by Nige "Animal" White * 2007-03-10 jvs Slightly refactored to reuse existing classes * @constructor * @param {String/HTMLElement/Ext.Element} table The table element from which this grid will be created - * The table MUST have some type of size defined for the grid to fill. The container will be * automatically set to position relative if it isn't already. * @param {Object} config A config object that sets properties on this grid and has two additional (optional) * properties: fields and columns which allow for customizing data fields and columns for this grid. */ Ext.ux.grid.TableGrid = function(table, config){ config = config || {}; Ext.apply(this, config); var cf = config.fields || [], ch = config.columns || []; table = Ext.get(table); var ct = table.insertSibling(); var fields = [], cols = []; var headers = table.query("thead th"); for (var i = 0, h; h = headers[i]; i++) { var text = h.innerHTML; var name = 'tcol-' + i; fields.push(Ext.applyIf(cf[i] || {}, { name: name, mapping: 'td:nth(' + (i + 1) + ')/@innerHTML' })); cols.push(Ext.applyIf(ch[i] || {}, { 'header': text, 'dataIndex': name, 'width': h.offsetWidth, 'tooltip': h.title, 'sortable': true })); } var ds = new Ext.data.Store({ reader: new Ext.data.XmlReader({ record: 'tbody tr' }, fields) }); ds.loadData(table.dom); var cm = new Ext.grid.ColumnModel(cols); if (config.width || config.height) { ct.setSize(config.width || 'auto', config.height || 'auto'); } else { ct.setWidth(table.getWidth()); } if (config.remove !== false) { table.remove(); } Ext.applyIf(this, { 'ds': ds, 'cm': cm, 'sm': new Ext.grid.RowSelectionModel(), autoHeight: true, autoWidth: false }); Ext.ux.grid.TableGrid.superclass.constructor.call(this, ct, {}); }; Ext.extend(Ext.ux.grid.TableGrid, Ext.grid.GridPanel); //backwards compat Ext.grid.TableGrid = Ext.ux.grid.TableGrid; Ext.ns('Ext.ux'); /** * @class Ext.ux.TabScrollerMenu * @extends Object * Plugin (ptype = 'tabscrollermenu') for adding a tab scroller menu to tabs. * @constructor * @param {Object} config Configuration options * @ptype tabscrollermenu */ Ext.ux.TabScrollerMenu = Ext.extend(Object, { /** * @cfg {Number} pageSize How many items to allow per submenu. */ pageSize : 10, /** * @cfg {Number} maxText How long should the title of each {@link Ext.menu.Item} be. */ maxText : 15, /** * @cfg {String} menuPrefixText Text to prefix the submenus. */ menuPrefixText : 'Items', constructor : function(config) { config = config || {}; Ext.apply(this, config); }, //private init : function(tabPanel) { Ext.apply(tabPanel, this.parentOverrides); tabPanel.tabScrollerMenu = this; var thisRef = this; tabPanel.on({ render : { scope : tabPanel, single : true, fn : function() { var newFn = tabPanel.createScrollers.createSequence(thisRef.createPanelsMenu, this); tabPanel.createScrollers = newFn; } } }); }, // private && sequeneced createPanelsMenu : function() { var h = this.stripWrap.dom.offsetHeight; //move the right menu item to the left 18px var rtScrBtn = this.header.dom.firstChild; Ext.fly(rtScrBtn).applyStyles({ right : '18px' }); var stripWrap = Ext.get(this.strip.dom.parentNode); stripWrap.applyStyles({ 'margin-right' : '36px' }); // Add the new righthand menu var scrollMenu = this.header.insertFirst({ cls:'x-tab-tabmenu-right' }); scrollMenu.setHeight(h); scrollMenu.addClassOnOver('x-tab-tabmenu-over'); scrollMenu.on('click', this.showTabsMenu, this); this.scrollLeft.show = this.scrollLeft.show.createSequence(function() { scrollMenu.show(); }); this.scrollLeft.hide = this.scrollLeft.hide.createSequence(function() { scrollMenu.hide(); }); }, /** * Returns an the current page size (this.pageSize); * @return {Number} this.pageSize The current page size. */ getPageSize : function() { return this.pageSize; }, /** * Sets the number of menu items per submenu "page size". * @param {Number} pageSize The page size */ setPageSize : function(pageSize) { this.pageSize = pageSize; }, /** * Returns the current maxText length; * @return {Number} this.maxText The current max text length. */ getMaxText : function() { return this.maxText; }, /** * Sets the maximum text size for each menu item. * @param {Number} t The max text per each menu item. */ setMaxText : function(t) { this.maxText = t; }, /** * Returns the current menu prefix text String.; * @return {String} this.menuPrefixText The current menu prefix text. */ getMenuPrefixText : function() { return this.menuPrefixText; }, /** * Sets the menu prefix text String. * @param {String} t The menu prefix text. */ setMenuPrefixText : function(t) { this.menuPrefixText = t; }, // private && applied to the tab panel itself. parentOverrides : { // all execute within the scope of the tab panel // private showTabsMenu : function(e) { if (this.tabsMenu) { this.tabsMenu.destroy(); this.un('destroy', this.tabsMenu.destroy, this.tabsMenu); this.tabsMenu = null; } this.tabsMenu = new Ext.menu.Menu(); this.on('destroy', this.tabsMenu.destroy, this.tabsMenu); this.generateTabMenuItems(); var target = Ext.get(e.getTarget()); var xy = target.getXY(); // //Y param + 24 pixels xy[1] += 24; this.tabsMenu.showAt(xy); }, // private generateTabMenuItems : function() { var curActive = this.getActiveTab(); var totalItems = this.items.getCount(); var pageSize = this.tabScrollerMenu.getPageSize(); if (totalItems > pageSize) { var numSubMenus = Math.floor(totalItems / pageSize); var remainder = totalItems % pageSize; // Loop through all of the items and create submenus in chunks of 10 for (var i = 0 ; i < numSubMenus; i++) { var curPage = (i + 1) * pageSize; var menuItems = []; for (var x = 0; x < pageSize; x++) { index = x + curPage - pageSize; var item = this.items.get(index); menuItems.push(this.autoGenMenuItem(item)); } this.tabsMenu.add({ text : this.tabScrollerMenu.getMenuPrefixText() + ' ' + (curPage - pageSize + 1) + ' - ' + curPage, menu : menuItems }); } // remaining items if (remainder > 0) { var start = numSubMenus * pageSize; menuItems = []; for (var i = start ; i < totalItems; i ++ ) { var item = this.items.get(i); menuItems.push(this.autoGenMenuItem(item)); } this.tabsMenu.add({ text : this.tabScrollerMenu.menuPrefixText + ' ' + (start + 1) + ' - ' + (start + menuItems.length), menu : menuItems }); } } else { this.items.each(function(item) { if (item.id != curActive.id && !item.hidden) { this.tabsMenu.add(this.autoGenMenuItem(item)); } }, this); } }, // private autoGenMenuItem : function(item) { var maxText = this.tabScrollerMenu.getMaxText(); var text = Ext.util.Format.ellipsis(item.title, maxText); return { text : text, handler : this.showTabFromMenu, scope : this, disabled : item.disabled, tabToShow : item, iconCls : item.iconCls } }, // private showTabFromMenu : function(menuItem) { this.setActiveTab(menuItem.tabToShow); } } }); Ext.reg('tabscrollermenu', Ext.ux.TabScrollerMenu); Ext.ns('Ext.ux.tree'); /** * @class Ext.ux.tree.XmlTreeLoader * @extends Ext.tree.TreeLoader *

    A TreeLoader that can convert an XML document into a hierarchy of {@link Ext.tree.TreeNode}s. * Any text value included as a text node in the XML will be added to the parent node as an attribute * called innerText. Also, the tag name of each XML node will be added to the tree node as * an attribute called tagName.

    *

    By default, this class expects that your source XML will provide the necessary attributes on each * node as expected by the {@link Ext.tree.TreePanel} to display and load properly. However, you can * provide your own custom processing of node attributes by overriding the {@link #processNode} method * and modifying the attributes as needed before they are used to create the associated TreeNode.

    * @constructor * Creates a new XmlTreeloader. * @param {Object} config A config object containing config properties. */ Ext.ux.tree.XmlTreeLoader = Ext.extend(Ext.tree.TreeLoader, { /** * @property XML_NODE_ELEMENT * XML element node (value 1, read-only) * @type Number */ XML_NODE_ELEMENT : 1, /** * @property XML_NODE_TEXT * XML text node (value 3, read-only) * @type Number */ XML_NODE_TEXT : 3, // private override processResponse : function(response, node, callback){ var xmlData = response.responseXML, root = xmlData.documentElement || xmlData; try{ node.beginUpdate(); node.appendChild(this.parseXml(root)); node.endUpdate(); this.runCallback(callback, scope || node, [node]); }catch(e){ this.handleFailure(response); } }, // private parseXml : function(node) { var nodes = []; Ext.each(node.childNodes, function(n){ if(n.nodeType == this.XML_NODE_ELEMENT){ var treeNode = this.createNode(n); if(n.childNodes.length > 0){ var child = this.parseXml(n); if(typeof child == 'string'){ treeNode.attributes.innerText = child; }else{ treeNode.appendChild(child); } } nodes.push(treeNode); } else if(n.nodeType == this.XML_NODE_TEXT){ var text = n.nodeValue.trim(); if(text.length > 0){ return nodes = text; } } }, this); return nodes; }, // private override createNode : function(node){ var attr = { tagName: node.tagName }; Ext.each(node.attributes, function(a){ attr[a.nodeName] = a.nodeValue; }); this.processAttributes(attr); return Ext.ux.tree.XmlTreeLoader.superclass.createNode.call(this, attr); }, /* * Template method intended to be overridden by subclasses that need to provide * custom attribute processing prior to the creation of each TreeNode. This method * will be passed a config object containing existing TreeNode attribute name/value * pairs which can be modified as needed directly (no need to return the object). */ processAttributes: Ext.emptyFn }); //backwards compat Ext.ux.XmlTreeLoader = Ext.ux.tree.XmlTreeLoader; /** * @class Ext.ux.ValidationStatus * A {@link Ext.StatusBar} plugin that provides automatic error notification when the * associated form contains validation errors. * @extends Ext.Component * @constructor * Creates a new ValiationStatus plugin * @param {Object} config A config object */ Ext.ux.ValidationStatus = Ext.extend(Ext.Component, { /** * @cfg {String} errorIconCls * The {@link #iconCls} value to be applied to the status message when there is a * validation error. Defaults to 'x-status-error'. */ errorIconCls : 'x-status-error', /** * @cfg {String} errorListCls * The css class to be used for the error list when there are validation errors. * Defaults to 'x-status-error-list'. */ errorListCls : 'x-status-error-list', /** * @cfg {String} validIconCls * The {@link #iconCls} value to be applied to the status message when the form * validates. Defaults to 'x-status-valid'. */ validIconCls : 'x-status-valid', /** * @cfg {String} showText * The {@link #text} value to be applied when there is a form validation error. * Defaults to 'The form has errors (click for details...)'. */ showText : 'The form has errors (click for details...)', /** * @cfg {String} showText * The {@link #text} value to display when the error list is displayed. * Defaults to 'Click again to hide the error list'. */ hideText : 'Click again to hide the error list', /** * @cfg {String} submitText * The {@link #text} value to be applied when the form is being submitted. * Defaults to 'Saving...'. */ submitText : 'Saving...', // private init : function(sb){ sb.on('render', function(){ this.statusBar = sb; this.monitor = true; this.errors = new Ext.util.MixedCollection(); this.listAlign = (sb.statusAlign=='right' ? 'br-tr?' : 'bl-tl?'); if(this.form){ this.form = Ext.getCmp(this.form).getForm(); this.startMonitoring(); this.form.on('beforeaction', function(f, action){ if(action.type == 'submit'){ // Ignore monitoring while submitting otherwise the field validation // events cause the status message to reset too early this.monitor = false; } }, this); var startMonitor = function(){ this.monitor = true; }; this.form.on('actioncomplete', startMonitor, this); this.form.on('actionfailed', startMonitor, this); } }, this, {single:true}); sb.on({ scope: this, afterlayout:{ single: true, fn: function(){ // Grab the statusEl after the first layout. sb.statusEl.getEl().on('click', this.onStatusClick, this, {buffer:200}); } }, beforedestroy:{ single: true, fn: this.onDestroy } }); }, // private startMonitoring : function(){ this.form.items.each(function(f){ f.on('invalid', this.onFieldValidation, this); f.on('valid', this.onFieldValidation, this); }, this); }, // private stopMonitoring : function(){ this.form.items.each(function(f){ f.un('invalid', this.onFieldValidation, this); f.un('valid', this.onFieldValidation, this); }, this); }, // private onDestroy : function(){ this.stopMonitoring(); this.statusBar.statusEl.un('click', this.onStatusClick, this); Ext.ux.ValidationStatus.superclass.onDestroy.call(this); }, // private onFieldValidation : function(f, msg){ if(!this.monitor){ return false; } if(msg){ this.errors.add(f.id, {field:f, msg:msg}); }else{ this.errors.removeKey(f.id); } this.updateErrorList(); if(this.errors.getCount() > 0){ if(this.statusBar.getText() != this.showText){ this.statusBar.setStatus({text:this.showText, iconCls:this.errorIconCls}); } }else{ this.statusBar.clearStatus().setIcon(this.validIconCls); } }, // private updateErrorList : function(){ if(this.errors.getCount() > 0){ var msg = '
      '; this.errors.each(function(err){ msg += ('
    • ' + err.msg + '
      • '); }, this); this.getMsgEl().update(msg+'
    '); }else{ this.getMsgEl().update(''); } }, // private getMsgEl : function(){ if(!this.msgEl){ this.msgEl = Ext.DomHelper.append(Ext.getBody(), { cls: this.errorListCls+' x-hide-offsets' }, true); this.msgEl.on('click', function(e){ var t = e.getTarget('li', 10, true); if(t){ Ext.getCmp(t.id.split('x-err-')[1]).focus(); this.hideErrors(); } }, this, {stopEvent:true}); // prevent anchor click navigation } return this.msgEl; }, // private showErrors : function(){ this.updateErrorList(); this.getMsgEl().alignTo(this.statusBar.getEl(), this.listAlign).slideIn('b', {duration:0.3, easing:'easeOut'}); this.statusBar.setText(this.hideText); this.form.getEl().on('click', this.hideErrors, this, {single:true}); // hide if the user clicks directly into the form }, // private hideErrors : function(){ var el = this.getMsgEl(); if(el.isVisible()){ el.slideOut('b', {duration:0.2, easing:'easeIn'}); this.statusBar.setText(this.showText); } this.form.getEl().un('click', this.hideErrors, this); }, // private onStatusClick : function(){ if(this.getMsgEl().isVisible()){ this.hideErrors(); }else if(this.errors.getCount() > 0){ this.showErrors(); } } });(function() { Ext.override(Ext.list.Column, { init : function() { var types = Ext.data.Types, st = this.sortType; if(this.type){ if(Ext.isString(this.type)){ this.type = Ext.data.Types[this.type.toUpperCase()] || types.AUTO; } }else{ this.type = types.AUTO; } // named sortTypes are supported, here we look them up if(Ext.isString(st)){ this.sortType = Ext.data.SortTypes[st]; }else if(Ext.isEmpty(st)){ this.sortType = this.type.sortType; } } }); Ext.tree.Column = Ext.extend(Ext.list.Column, {}); Ext.tree.NumberColumn = Ext.extend(Ext.list.NumberColumn, {}); Ext.tree.DateColumn = Ext.extend(Ext.list.DateColumn, {}); Ext.tree.BooleanColumn = Ext.extend(Ext.list.BooleanColumn, {}); Ext.reg('tgcolumn', Ext.tree.Column); Ext.reg('tgnumbercolumn', Ext.tree.NumberColumn); Ext.reg('tgdatecolumn', Ext.tree.DateColumn); Ext.reg('tgbooleancolumn', Ext.tree.BooleanColumn); })(); /** * @class Ext.ux.tree.TreeGridNodeUI * @extends Ext.tree.TreeNodeUI */ Ext.ux.tree.TreeGridNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { isTreeGridNodeUI: true, renderElements : function(n, a, targetNode, bulkRender){ var t = n.getOwnerTree(), cols = t.columns, c = cols[0], i, buf, len; this.indentMarkup = n.parentNode ? n.parentNode.ui.getChildIndent() : ''; buf = [ '', '', '', '', this.indentMarkup, "", '', '', '', '', (c.tpl ? c.tpl.apply(a) : a[c.dataIndex] || c.text), '', '' ]; for(i = 1, len = cols.length; i < len; i++){ c = cols[i]; buf.push( '', '
    ', (c.tpl ? c.tpl.apply(a) : a[c.dataIndex]), '
    ', '' ); } buf.push( '', '' ); for(i = 0, len = cols.length; i'); } buf.push(''); if(bulkRender !== true && n.nextSibling && n.nextSibling.ui.getEl()){ this.wrap = Ext.DomHelper.insertHtml("beforeBegin", n.nextSibling.ui.getEl(), buf.join('')); }else{ this.wrap = Ext.DomHelper.insertHtml("beforeEnd", targetNode, buf.join('')); } this.elNode = this.wrap.childNodes[0]; this.ctNode = this.wrap.childNodes[1].firstChild.firstChild; var cs = this.elNode.firstChild.childNodes; this.indentNode = cs[0]; this.ecNode = cs[1]; this.iconNode = cs[2]; this.anchor = cs[3]; this.textNode = cs[3].firstChild; }, // private animExpand : function(cb){ this.ctNode.style.display = ""; Ext.ux.tree.TreeGridNodeUI.superclass.animExpand.call(this, cb); } }); Ext.ux.tree.TreeGridRootNodeUI = Ext.extend(Ext.tree.TreeNodeUI, { isTreeGridNodeUI: true, // private render : function(){ if(!this.rendered){ this.wrap = this.ctNode = this.node.ownerTree.innerCt.dom; this.node.expanded = true; } if(Ext.isWebKit) { // weird table-layout: fixed issue in webkit var ct = this.ctNode; ct.style.tableLayout = null; (function() { ct.style.tableLayout = 'fixed'; }).defer(1); } }, destroy : function(){ if(this.elNode){ Ext.dd.Registry.unregister(this.elNode.id); } delete this.node; }, collapse : Ext.emptyFn, expand : Ext.emptyFn });/** * @class Ext.tree.ColumnResizer * @extends Ext.util.Observable */ Ext.tree.ColumnResizer = Ext.extend(Ext.util.Observable, { /** * @cfg {Number} minWidth The minimum width the column can be dragged to. * Defaults to 14. */ minWidth: 14, constructor: function(config){ Ext.apply(this, config); Ext.tree.ColumnResizer.superclass.constructor.call(this); }, init : function(tree){ this.tree = tree; tree.on('render', this.initEvents, this); }, initEvents : function(tree){ tree.mon(tree.innerHd, 'mousemove', this.handleHdMove, this); this.tracker = new Ext.dd.DragTracker({ onBeforeStart: this.onBeforeStart.createDelegate(this), onStart: this.onStart.createDelegate(this), onDrag: this.onDrag.createDelegate(this), onEnd: this.onEnd.createDelegate(this), tolerance: 3, autoStart: 300 }); this.tracker.initEl(tree.innerHd); tree.on('beforedestroy', this.tracker.destroy, this.tracker); }, handleHdMove : function(e, t){ var hw = 5, x = e.getPageX(), hd = e.getTarget('.x-treegrid-hd', 3, true); if(hd){ var r = hd.getRegion(), ss = hd.dom.style, pn = hd.dom.parentNode; if(x - r.left <= hw && hd.dom !== pn.firstChild) { var ps = hd.dom.previousSibling; while(ps && Ext.fly(ps).hasClass('x-treegrid-hd-hidden')) { ps = ps.previousSibling; } if(ps) { this.activeHd = Ext.get(ps); ss.cursor = Ext.isWebKit ? 'e-resize' : 'col-resize'; } } else if(r.right - x <= hw) { var ns = hd.dom; while(ns && Ext.fly(ns).hasClass('x-treegrid-hd-hidden')) { ns = ns.previousSibling; } if(ns) { this.activeHd = Ext.get(ns); ss.cursor = Ext.isWebKit ? 'w-resize' : 'col-resize'; } } else{ delete this.activeHd; ss.cursor = ''; } } }, onBeforeStart : function(e){ this.dragHd = this.activeHd; return !!this.dragHd; }, onStart : function(e){ this.dragHeadersDisabled = this.tree.headersDisabled; this.tree.headersDisabled = true; this.proxy = this.tree.body.createChild({cls:'x-treegrid-resizer'}); this.proxy.setHeight(this.tree.body.getHeight()); var x = this.tracker.getXY()[0]; this.hdX = this.dragHd.getX(); this.hdIndex = this.tree.findHeaderIndex(this.dragHd); this.proxy.setX(this.hdX); this.proxy.setWidth(x-this.hdX); this.maxWidth = this.tree.outerCt.getWidth() - this.tree.innerBody.translatePoints(this.hdX).left; }, onDrag : function(e){ var cursorX = this.tracker.getXY()[0]; this.proxy.setWidth((cursorX-this.hdX).constrain(this.minWidth, this.maxWidth)); }, onEnd : function(e){ var nw = this.proxy.getWidth(), tree = this.tree, disabled = this.dragHeadersDisabled; this.proxy.remove(); delete this.dragHd; tree.columns[this.hdIndex].width = nw; tree.updateColumnWidths(); setTimeout(function(){ tree.headersDisabled = disabled; }, 100); } });Ext.ns('Ext.ux.tree'); /** * @class Ext.ux.tree.TreeGridSorter * @extends Ext.tree.TreeSorter * Provides sorting of nodes in a {@link Ext.ux.tree.TreeGrid}. The TreeGridSorter automatically monitors events on the * associated TreeGrid that might affect the tree's sort order (beforechildrenrendered, append, insert and textchange). * Example usage:
    * 
    
 new Ext.ux.tree.TreeGridSorter(myTreeGrid, {
     folderSort: true,
     dir: "desc",
     sortType: function(node) {
         // sort by a custom, typed attribute:
         return parseInt(node.id, 10);
     }
 });
    * @constructor * @param {TreeGrid} tree * @param {Object} config */ Ext.ux.tree.TreeGridSorter = Ext.extend(Ext.tree.TreeSorter, { /** * @cfg {Array} sortClasses The CSS classes applied to a header when it is sorted. (defaults to ['sort-asc', 'sort-desc']) */ sortClasses : ['sort-asc', 'sort-desc'], /** * @cfg {String} sortAscText The text displayed in the 'Sort Ascending' menu item (defaults to 'Sort Ascending') */ sortAscText : 'Sort Ascending', /** * @cfg {String} sortDescText The text displayed in the 'Sort Descending' menu item (defaults to 'Sort Descending') */ sortDescText : 'Sort Descending', constructor : function(tree, config) { if(!Ext.isObject(config)) { config = { property: tree.columns[0].dataIndex || 'text', folderSort: true } } Ext.ux.tree.TreeGridSorter.superclass.constructor.apply(this, arguments); this.tree = tree; tree.on('headerclick', this.onHeaderClick, this); tree.ddAppendOnly = true; var me = this; this.defaultSortFn = function(n1, n2){ var desc = me.dir && me.dir.toLowerCase() == 'desc', prop = me.property || 'text', sortType = me.sortType, caseSensitive = me.caseSensitive === true, leafAttr = me.leafAttr || 'leaf', attr1 = n1.attributes, attr2 = n2.attributes; if(me.folderSort){ if(attr1[leafAttr] && !attr2[leafAttr]){ return 1; } if(!attr1[leafAttr] && attr2[leafAttr]){ return -1; } } var prop1 = attr1[prop], prop2 = attr2[prop], v1 = sortType ? sortType(prop1) : (caseSensitive ? prop1 : prop1.toUpperCase()); v2 = sortType ? sortType(prop2) : (caseSensitive ? prop2 : prop2.toUpperCase()); if(v1 < v2){ return desc ? +1 : -1; }else if(v1 > v2){ return desc ? -1 : +1; }else{ return 0; } }; tree.on('afterrender', this.onAfterTreeRender, this, {single: true}); tree.on('headermenuclick', this.onHeaderMenuClick, this); }, onAfterTreeRender : function() { if(this.tree.hmenu){ this.tree.hmenu.insert(0, {itemId:'asc', text: this.sortAscText, cls: 'xg-hmenu-sort-asc'}, {itemId:'desc', text: this.sortDescText, cls: 'xg-hmenu-sort-desc'} ); } this.updateSortIcon(0, 'asc'); }, onHeaderMenuClick : function(c, id, index) { if(id === 'asc' || id === 'desc') { this.onHeaderClick(c, null, index); return false; } }, onHeaderClick : function(c, el, i) { if(c && !this.tree.headersDisabled){ var me = this; me.property = c.dataIndex; me.dir = c.dir = (c.dir === 'desc' ? 'asc' : 'desc'); me.sortType = c.sortType; me.caseSensitive === Ext.isBoolean(c.caseSensitive) ? c.caseSensitive : this.caseSensitive; me.sortFn = c.sortFn || this.defaultSortFn; this.tree.root.cascade(function(n) { if(!n.isLeaf()) { me.updateSort(me.tree, n); } }); this.updateSortIcon(i, c.dir); } }, // private updateSortIcon : function(col, dir){ var sc = this.sortClasses, hds = this.tree.innerHd.select('td').removeClass(sc); hds.item(col).addClass(sc[dir == 'desc' ? 1 : 0]); } });/** * @class Ext.ux.tree.TreeGridLoader * @extends Ext.tree.TreeLoader */ Ext.ux.tree.TreeGridLoader = Ext.extend(Ext.tree.TreeLoader, { createNode : function(attr) { if (!attr.uiProvider) { attr.uiProvider = Ext.ux.tree.TreeGridNodeUI; } return Ext.tree.TreeLoader.prototype.createNode.call(this, attr); } });/** * @class Ext.ux.tree.TreeGrid * @extends Ext.tree.TreePanel * * @xtype treegrid */ Ext.ux.tree.TreeGrid = Ext.extend(Ext.tree.TreePanel, { rootVisible : false, useArrows : true, lines : false, borderWidth : Ext.isBorderBox ? 0 : 2, // the combined left/right border for each cell cls : 'x-treegrid', columnResize : true, enableSort : true, reserveScrollOffset : true, enableHdMenu : true, columnsText : 'Columns', initComponent : function() { if(!this.root) { this.root = new Ext.tree.AsyncTreeNode({text: 'Root'}); } // initialize the loader var l = this.loader; if(!l){ l = new Ext.ux.tree.TreeGridLoader({ dataUrl: this.dataUrl, requestMethod: this.requestMethod, store: this.store }); }else if(Ext.isObject(l) && !l.load){ l = new Ext.ux.tree.TreeGridLoader(l); } this.loader = l; Ext.ux.tree.TreeGrid.superclass.initComponent.call(this); this.initColumns(); if(this.enableSort) { this.treeGridSorter = new Ext.ux.tree.TreeGridSorter(this, this.enableSort); } if(this.columnResize){ this.colResizer = new Ext.tree.ColumnResizer(this.columnResize); this.colResizer.init(this); } var c = this.columns; if(!this.internalTpl){ this.internalTpl = new Ext.XTemplate( '
    ', '
    ', '
    ', '', '', '', '', '', '
    ', '
    ', this.enableHdMenu ? '' : '', '{header}', '
    ', '
    ', '
    ', '
    ', '
    ', '
    ', '
    ' ); } if(!this.colgroupTpl) { this.colgroupTpl = new Ext.XTemplate( '' ); } }, initColumns : function() { var cs = this.columns, len = cs.length, columns = [], i, c; for(i = 0; i < len; i++){ c = cs[i]; if(!c.isColumn) { c.xtype = c.xtype ? (/^tg/.test(c.xtype) ? c.xtype : 'tg' + c.xtype) : 'tgcolumn'; c = Ext.create(c); } c.init(this); columns.push(c); if(this.enableSort !== false && c.sortable !== false) { c.sortable = true; this.enableSort = true; } } this.columns = columns; }, onRender : function(){ Ext.tree.TreePanel.superclass.onRender.apply(this, arguments); this.el.addClass('x-treegrid'); this.outerCt = this.body.createChild({ cls:'x-tree-root-ct x-treegrid-ct ' + (this.useArrows ? 'x-tree-arrows' : this.lines ? 'x-tree-lines' : 'x-tree-no-lines') }); this.internalTpl.overwrite(this.outerCt, {columns: this.columns}); this.mainHd = Ext.get(this.outerCt.dom.firstChild); this.innerHd = Ext.get(this.mainHd.dom.firstChild); this.innerBody = Ext.get(this.outerCt.dom.lastChild); this.innerCt = Ext.get(this.innerBody.dom.firstChild); this.colgroupTpl.insertFirst(this.innerCt, {columns: this.columns}); if(this.hideHeaders){ this.el.child('.x-grid3-header').setDisplayed('none'); } else if(this.enableHdMenu !== false){ this.hmenu = new Ext.menu.Menu({id: this.id + '-hctx'}); if(this.enableColumnHide !== false){ this.colMenu = new Ext.menu.Menu({id: this.id + '-hcols-menu'}); this.colMenu.on({ scope: this, beforeshow: this.beforeColMenuShow, itemclick: this.handleHdMenuClick }); this.hmenu.add({ itemId:'columns', hideOnClick: false, text: this.columnsText, menu: this.colMenu, iconCls: 'x-cols-icon' }); } this.hmenu.on('itemclick', this.handleHdMenuClick, this); } }, setRootNode : function(node){ node.attributes.uiProvider = Ext.ux.tree.TreeGridRootNodeUI; node = Ext.ux.tree.TreeGrid.superclass.setRootNode.call(this, node); if(this.innerCt) { this.colgroupTpl.insertFirst(this.innerCt, {columns: this.columns}); } return node; }, clearInnerCt : function(){ if(Ext.isIE){ var dom = this.innerCt.dom; while(dom.firstChild){ dom.removeChild(dom.firstChild); } }else{ Ext.ux.tree.TreeGrid.superclass.clearInnerCt.call(this); } }, initEvents : function() { Ext.ux.tree.TreeGrid.superclass.initEvents.apply(this, arguments); this.mon(this.innerBody, 'scroll', this.syncScroll, this); this.mon(this.innerHd, 'click', this.handleHdDown, this); this.mon(this.mainHd, { scope: this, mouseover: this.handleHdOver, mouseout: this.handleHdOut }); }, onResize : function(w, h) { Ext.ux.tree.TreeGrid.superclass.onResize.apply(this, arguments); var bd = this.innerBody.dom; var hd = this.innerHd.dom; if(!bd){ return; } if(Ext.isNumber(h)){ bd.style.height = this.body.getHeight(true) - hd.offsetHeight + 'px'; } if(Ext.isNumber(w)){ var sw = Ext.num(this.scrollOffset, Ext.getScrollBarWidth()); if(this.reserveScrollOffset || ((bd.offsetWidth - bd.clientWidth) > 10)){ this.setScrollOffset(sw); }else{ var me = this; setTimeout(function(){ me.setScrollOffset(bd.offsetWidth - bd.clientWidth > 10 ? sw : 0); }, 10); } } }, updateColumnWidths : function() { var cols = this.columns, colCount = cols.length, groups = this.outerCt.query('colgroup'), groupCount = groups.length, c, g, i, j; for(i = 0; i 0 && this.columns[index]) { this.setColumnVisible(index, !item.checked); } } return true; }, setColumnVisible : function(index, visible) { this.columns[index].hidden = !visible; this.updateColumnWidths(); }, /** * Scrolls the grid to the top */ scrollToTop : function(){ this.innerBody.dom.scrollTop = 0; this.innerBody.dom.scrollLeft = 0; }, // private syncScroll : function(){ this.syncHeaderScroll(); var mb = this.innerBody.dom; this.fireEvent('bodyscroll', mb.scrollLeft, mb.scrollTop); }, // private syncHeaderScroll : function(){ var mb = this.innerBody.dom; this.innerHd.dom.scrollLeft = mb.scrollLeft; this.innerHd.dom.scrollLeft = mb.scrollLeft; // second time for IE (1/2 time first fails, other browsers ignore) }, registerNode : function(n) { Ext.ux.tree.TreeGrid.superclass.registerNode.call(this, n); if(!n.uiProvider && !n.isRoot && !n.ui.isTreeGridNodeUI) { n.ui = new Ext.ux.tree.TreeGridNodeUI(n); } } }); Ext.reg('treegrid', Ext.ux.tree.TreeGrid); ================================================ FILE: client/src/ext/ux/ux-all.js ================================================ /* This file is part of Ext JS 3.4 Copyright (c) 2011-2013 Sencha Inc Contact: http://www.sencha.com/contact GNU General Public License Usage This file may be used under the terms of the GNU General Public License version 3.0 as published by the Free Software Foundation and appearing in the file LICENSE included in the packaging of this file. Please review the following information to ensure the GNU General Public License version 3.0 requirements will be met: http://www.gnu.org/copyleft/gpl.html. If you are unsure which license is appropriate for your use, please contact the sales department at http://www.sencha.com/contact. Build date: 2013-04-03 15:07:25 */ Ext.ns("Ext.ux.grid");Ext.ux.grid.BufferView=Ext.extend(Ext.grid.GridView,{rowHeight:19,borderHeight:2,scrollDelay:100,cacheSize:20,cleanDelay:500,initTemplates:function(){Ext.ux.grid.BufferView.superclass.initTemplates.call(this);var a=this.templates;a.rowHolder=new Ext.Template('
    ');a.rowHolder.disableFormats=true;a.rowHolder.compile();a.rowBody=new Ext.Template('',"{cells}",(this.enableRowBody?'':""),"
    {body}
    ");a.rowBody.disableFormats=true;a.rowBody.compile()},getStyleRowHeight:function(){return Ext.isBorderBox?(this.rowHeight+this.borderHeight):this.rowHeight},getCalculatedRowHeight:function(){return this.rowHeight+this.borderHeight},getVisibleRowCount:function(){var b=this.getCalculatedRowHeight(),a=this.scroller.dom.clientHeight;return(a<1)?0:Math.ceil(a/b)},getVisibleRows:function(){var a=this.getVisibleRowCount(),b=this.scroller.dom.scrollTop,c=(b===0?0:Math.floor(b/this.getCalculatedRowHeight())-1);return{first:Math.max(c,0),last:Math.min(c+a+2,this.ds.getCount()-1)}},doRender:function(g,k,u,a,s,A,l){var b=this.templates,f=b.cell,h=b.row,x=b.rowBody,n=s-1,t=this.getStyleRowHeight(),z=this.getVisibleRows(),d="width:"+this.getTotalWidth()+";height:"+t+"px;",D=[],w,E,v={},m={tstyle:d},q;for(var y=0,C=k.length;y=z.first&&o<=z.last;if(e){for(var B=0;B0},syncScroll:function(){Ext.ux.grid.BufferView.superclass.syncScroll.apply(this,arguments);this.update()},update:function(){if(this.scrollDelay){if(!this.renderTask){this.renderTask=new Ext.util.DelayedTask(this.doUpdate,this)}this.renderTask.delay(this.scrollDelay)}else{this.doUpdate()}},onRemove:function(d,a,b,c){Ext.ux.grid.BufferView.superclass.onRemove.apply(this,arguments);if(c!==true){this.update()}},doUpdate:function(){if(this.getVisibleRowCount()>0){var f=this.grid,b=f.colModel,h=f.store,e=this.getColumnData(),a=this.getVisibleRows(),j;for(var d=a.first;d<=a.last;d++){if(!this.isRowRendered(d)&&(j=this.getRow(d))){var c=this.doRender(e,[h.getAt(d)],h,d,b.getColumnCount(),f.stripeRows,true);j.innerHTML=c}}this.clean()}},clean:function(){if(!this.cleanTask){this.cleanTask=new Ext.util.DelayedTask(this.doClean,this)}this.cleanTask.delay(this.cleanDelay)},doClean:function(){if(this.getVisibleRowCount()>0){var b=this.getVisibleRows();b.first-=this.cacheSize;b.last+=this.cacheSize;var c=0,d=this.getRows();if(b.first<=0){c=b.last+1}for(var a=this.ds.getCount();cb.last)&&d[c].innerHTML){d[c].innerHTML=""}}}},removeTask:function(b){var a=this[b];if(a&&a.cancel){a.cancel();this[b]=null}},destroy:function(){this.removeTask("cleanTask");this.removeTask("renderTask");Ext.ux.grid.BufferView.superclass.destroy.call(this)},layout:function(){Ext.ux.grid.BufferView.superclass.layout.call(this);this.update()}});Ext.ns("Ext.ux.layout");Ext.ux.layout.CenterLayout=Ext.extend(Ext.layout.FitLayout,{setItemSize:function(b,a){this.container.addClass("ux-layout-center");b.addClass("ux-layout-center-item");if(b&&a.height>0){if(b.width){a.width=b.width}b.setSize(a)}}});Ext.Container.LAYOUTS["ux.center"]=Ext.ux.layout.CenterLayout;Ext.ns("Ext.ux.grid");Ext.ux.grid.CheckColumn=Ext.extend(Ext.grid.Column,{processEvent:function(c,f,d,g,b){if(c=="mousedown"){var a=d.store.getAt(g);a.set(this.dataIndex,!a.data[this.dataIndex]);return false}else{return Ext.grid.ActionColumn.superclass.processEvent.apply(this,arguments)}},renderer:function(b,c,a){c.css+=" x-grid3-check-col-td";return String.format('
     
    ',b?"-on":"")},init:Ext.emptyFn});Ext.preg("checkcolumn",Ext.ux.grid.CheckColumn);Ext.grid.CheckColumn=Ext.ux.grid.CheckColumn;Ext.grid.Column.types.checkcolumn=Ext.ux.grid.CheckColumn;Ext.ns("Ext.ux.grid");Ext.ux.grid.ColumnHeaderGroup=Ext.extend(Ext.util.Observable,{constructor:function(a){this.config=a},init:function(a){Ext.applyIf(a.colModel,this.config);Ext.apply(a.getView(),this.viewConfig)},viewConfig:{initTemplates:function(){this.constructor.prototype.initTemplates.apply(this,arguments);var a=this.templates||{};if(!a.gcell){a.gcell=new Ext.XTemplate('','
    ',this.grid.enableHdMenu?'':"","{value}
    ")}this.templates=a;this.hrowRe=new RegExp("ux-grid-hd-group-row-(\\d+)","")},renderHeaders:function(){var h=this.templates,d=[],l=this.cm,p=l.rows,j="width:"+this.getTotalWidth()+";";for(var o=0,k=p.length;o=f&&e=0;c.setChecked(n,true)}q.checked=!q.checked}}return true},beforeColMenuShow:function(){var h=this.cm,j=this.cm.rows;this.colMenu.removeAll();for(var d=0,m=h.getColumnCount();d=p&&d=m&&x.oldIndex=m&&x.oldIndex+x.colspan-1=m&&x.newIndex table"),e=this.getTotalWidth(),k=this.cm.rows;for(var j=0;j=c&&b=b&&c=b.col&&p<=b.col+b.colspan){return false}var j=Ext.ux.grid.ColumnHeaderGroup.prototype.getGroupSpan.call(this.view,q-1,k);if(pj.col+j.colspan){return false}return{r:a,px:m,pt:s,row:q,oldIndex:k,newIndex:p,colspan:b.colspan}}});Ext.ns("Ext.ux.tree");Ext.ux.tree.ColumnTree=Ext.extend(Ext.tree.TreePanel,{lines:false,borderWidth:Ext.isBorderBox?0:2,cls:"x-column-tree",onRender:function(){Ext.tree.ColumnTree.superclass.onRender.apply(this,arguments);this.headers=this.header.createChild({cls:"x-tree-headers"});var f=this.columns,g;var b=0;var d=19;for(var e=0,a=f.length;e
    ','
    ','',this.indentMarkup,"",'','','",'',d.text||(j.renderer?j.renderer(m[j.dataIndex],d,m):m[j.dataIndex]),"","
    "];for(var e=1,g=l.length;e','
    ',(j.renderer?j.renderer(m[j.dataIndex],d,m):m[j.dataIndex]),"
    ","
    ")}b.push('
    ','',"");if(o!==true&&d.nextSibling&&d.nextSibling.ui.getEl()){this.wrap=Ext.DomHelper.insertHtml("beforeBegin",d.nextSibling.ui.getEl(),b.join(""))}else{this.wrap=Ext.DomHelper.insertHtml("beforeEnd",h,b.join(""))}this.elNode=this.wrap.childNodes[0];this.ctNode=this.wrap.childNodes[1];var f=this.elNode.firstChild.childNodes;this.indentNode=f[0];this.ecNode=f[1];this.iconNode=f[2];this.anchor=f[3];this.textNode=f[3].firstChild}});Ext.tree.ColumnNodeUI=Ext.ux.tree.ColumnNodeUI;Ext.DataView.LabelEditor=Ext.extend(Ext.Editor,{alignment:"tl-tl",hideEl:false,cls:"x-small-editor",shim:false,completeOnEnter:true,cancelOnEsc:true,labelSelector:"span.x-editable",constructor:function(a,b){Ext.DataView.LabelEditor.superclass.constructor.call(this,b||new Ext.form.TextField({allowBlank:false,growMin:90,growMax:240,grow:true,selectOnFocus:true}),a)},init:function(a){this.view=a;a.on("render",this.initEditor,this);this.on("complete",this.onSave,this)},initEditor:function(){this.view.on({scope:this,containerclick:this.doBlur,click:this.doBlur});this.view.getEl().on("mousedown",this.onMouseDown,this,{delegate:this.labelSelector})},doBlur:function(){if(this.editing){this.field.blur()}},onMouseDown:function(d,c){if(!d.ctrlKey&&!d.shiftKey){var b=this.view.findItemFromChild(c);d.stopEvent();var a=this.view.store.getAt(this.view.indexOf(b));this.startEdit(c,a.data[this.dataIndex]);this.activeRecord=a}else{d.preventDefault()}},onSave:function(a,b){this.activeRecord.set(this.dataIndex,b)}});Ext.DataView.DragSelector=function(f){f=f||{};var j,h,l;var d,k,m=new Ext.lib.Region(0,0,0,0);var b=f.dragSafe===true;this.init=function(q){j=q;j.on("render",p)};function n(){d=[];j.all.each(function(q){d[d.length]=q.getRegion()});k=j.el.getRegion()}function e(){return false}function g(q){return !b||q.target==j.el.dom}function o(q){j.on("containerclick",e,j,{single:true});if(!h){h=j.el.createChild({cls:"x-view-selector"})}else{if(h.dom.parentNode!==j.el.dom){j.el.dom.appendChild(h.dom)}h.setDisplayed("block")}n();j.clearSelections()}function c(z){var A=l.startXY;var E=l.getXY();var C=Math.min(A[0],E[0]);var B=Math.min(A[1],E[1]);var D=Math.abs(A[0]-E[0]);var u=Math.abs(A[1]-E[1]);m.left=C;m.top=B;m.right=C+D;m.bottom=B+u;m.constrainTo(k);h.setRegion(m);for(var t=0,v=d.length;t
    Level "+accuracy+" Accuracy (8 = Exact Match, 1 = Vague Match)")}else{point=new GLatLng(place.Point.coordinates[1],place.Point.coordinates[0]);if(typeof this.setCenter.marker==="object"&&typeof point==="object"){this.addMarker(point,this.setCenter.marker,this.setCenter.marker.clear,true,this.setCenter.listeners)}}}}}});Ext.reg("gmappanel",Ext.ux.GMapPanel);Ext.namespace("Ext.ux.grid");Ext.ux.grid.GridFilters=Ext.extend(Ext.util.Observable,{autoReload:true,filterCls:"ux-filtered-column",local:false,menuFilterText:"Filters",paramPrefix:"filter",showMenu:true,stateId:undefined,updateBuffer:500,constructor:function(a){a=a||{};this.deferredUpdate=new Ext.util.DelayedTask(this.reload,this);this.filters=new Ext.util.MixedCollection();this.filters.getKey=function(b){return b?b.dataIndex:null};this.addFilters(a.filters);delete a.filters;Ext.apply(this,a)},init:function(a){if(a instanceof Ext.grid.GridPanel){this.grid=a;this.bindStore(this.grid.getStore(),true);if(this.filters.getCount()==0){this.addFilters(this.grid.getColumnModel())}this.grid.filters=this;this.grid.addEvents({filterupdate:true});a.on({scope:this,beforestaterestore:this.applyState,beforestatesave:this.saveState,beforedestroy:this.destroy,reconfigure:this.onReconfigure});if(a.rendered){this.onRender()}else{a.on({scope:this,single:true,render:this.onRender})}}else{if(a instanceof Ext.PagingToolbar){this.toolbar=a}}},applyState:function(b,d){var a,c;this.applyingState=true;this.clearFilters();if(d.filters){for(a in d.filters){c=this.filters.get(a);if(c){c.setValue(d.filters[a]);c.setActive(true)}}}this.deferredUpdate.cancel();if(this.local){this.reload()}delete this.applyingState;delete d.filters},saveState:function(a,c){var b={};this.filters.each(function(d){if(d.active){b[d.dataIndex]=d.getValue()}});return(c.filters=b)},onRender:function(){this.grid.getView().on("refresh",this.onRefresh,this);this.createMenu()},destroy:function(){this.removeAll();this.purgeListeners();if(this.filterMenu){Ext.menu.MenuMgr.unregister(this.filterMenu);this.filterMenu.destroy();this.filterMenu=this.menu.menu=null}},removeAll:function(){if(this.filters){Ext.destroy.apply(Ext,this.filters.items);this.filters.clear()}},bindStore:function(a,b){if(!b&&this.store){if(this.local){a.un("load",this.onLoad,this)}else{a.un("beforeload",this.onBeforeLoad,this)}}if(a){if(this.local){a.on("load",this.onLoad,this)}else{a.on("beforeload",this.onBeforeLoad,this)}}this.store=a},onReconfigure:function(){this.bindStore(this.grid.getStore());this.store.clearFilter();this.removeAll();this.addFilters(this.grid.getColumnModel());this.updateColumnHeadings()},createMenu:function(){var a=this.grid.getView(),b=a.hmenu;if(this.showMenu&&b){this.sep=b.addSeparator();this.filterMenu=new Ext.menu.Menu({id:this.grid.id+"-filters-menu"});this.menu=b.add({checked:false,itemId:"filters",text:this.menuFilterText,menu:this.filterMenu});this.menu.on({scope:this,checkchange:this.onCheckChange,beforecheckchange:this.onBeforeCheck});b.on("beforeshow",this.onMenu,this)}this.updateColumnHeadings()},getMenuFilter:function(){var a=this.grid.getView();if(!a||a.hdCtxIndex===undefined){return null}return this.filters.get(a.cm.config[a.hdCtxIndex].dataIndex)},onMenu:function(b){var a=this.getMenuFilter();if(a){this.menu.menu=a.menu;this.menu.setChecked(a.active,false);this.menu.setDisabled(a.disabled===true)}this.menu.setVisible(a!==undefined);this.sep.setVisible(a!==undefined)},onCheckChange:function(a,b){this.getMenuFilter().setActive(b)},onBeforeCheck:function(a,b){return !b||this.getMenuFilter().isActivatable()},onStateChange:function(b,a){if(b==="serialize"){return}if(a==this.getMenuFilter()){this.menu.setChecked(a.active,false)}if((this.autoReload||this.local)&&!this.applyingState){this.deferredUpdate.delay(this.updateBuffer)}this.updateColumnHeadings();if(!this.applyingState){this.grid.saveState()}this.grid.fireEvent("filterupdate",this,a)},onBeforeLoad:function(a,b){b.params=b.params||{};this.cleanParams(b.params);var c=this.buildQuery(this.getFilterData());Ext.apply(b.params,c)},onLoad:function(a,b){a.filterBy(this.getRecordFilter())},onRefresh:function(){this.updateColumnHeadings()},updateColumnHeadings:function(){var b=this.grid.getView(),c,a,d;if(b.mainHd){for(c=0,a=b.cm.config.length;c0){a[this.paramPrefix]=Ext.util.JSON.encode(d)}}return a},cleanParams:function(c){if(this.encode){delete c[this.paramPrefix]}else{var b,a;b=new RegExp("^"+this.paramPrefix+"[[0-9]+]");for(a in c){if(b.test(a)){delete c[a]}}}},getFilterClass:function(a){switch(a){case"auto":a="string";break;case"int":case"float":a="numeric";break;case"bool":a="boolean";break}return Ext.ux.grid.filter[a.substr(0,1).toUpperCase()+a.substr(1)+"Filter"]}});Ext.preg("gridfilters",Ext.ux.grid.GridFilters);Ext.namespace("Ext.ux.grid.filter");Ext.ux.grid.filter.Filter=Ext.extend(Ext.util.Observable,{active:false,dataIndex:null,menu:null,updateBuffer:500,constructor:function(a){Ext.apply(this,a);this.addEvents("activate","deactivate","serialize","update");Ext.ux.grid.filter.Filter.superclass.constructor.call(this);this.menu=new Ext.menu.Menu();this.init(a);if(a&&a.value){this.setValue(a.value);this.setActive(a.active!==false,true);delete a.value}},destroy:function(){if(this.menu){this.menu.destroy()}this.purgeListeners()},init:Ext.emptyFn,getValue:Ext.emptyFn,setValue:Ext.emptyFn,isActivatable:function(){return true},getSerialArgs:Ext.emptyFn,validateRecord:function(){return true},serialize:function(){var a=this.getSerialArgs();this.fireEvent("serialize",a,this);return a},fireUpdate:function(){if(this.active){this.fireEvent("update",this)}this.setActive(this.isActivatable())},setActive:function(b,a){if(this.active!=b){this.active=b;if(a!==true){this.fireEvent(b?"activate":"deactivate",this)}}}});Ext.ux.grid.filter.BooleanFilter=Ext.extend(Ext.ux.grid.filter.Filter,{defaultValue:false,yesText:"Yes",noText:"No",init:function(a){var c=Ext.id();this.options=[new Ext.menu.CheckItem({text:this.yesText,group:c,checked:this.defaultValue===true}),new Ext.menu.CheckItem({text:this.noText,group:c,checked:this.defaultValue===false})];this.menu.add(this.options[0],this.options[1]);for(var b=0;bd){a.after.setChecked(false,true)}}}this.fireEvent("update",this)},getValue:function(){var b,a={};for(b in this.fields){if(this.fields[b].checked){a[b]=this.fields[b].menu.picker.getValue()}}return a},setValue:function(c,b){var a;for(a in this.fields){if(c[a]){this.fields[a].menu.picker.setValue(c[a]);this.fields[a].setChecked(true)}else{if(!b){this.fields[a].setChecked(false)}}}this.fireEvent("update",this)},isActivatable:function(){var a;for(a in this.fields){if(this.fields[a].checked){return true}}return false},getSerialArgs:function(){var a=[];for(var b in this.fields){if(this.fields[b].checked){a.push({type:"date",comparison:this.compareMap[b],value:this.getFieldValue(b).format(this.dateFormat)})}}return a},getFieldValue:function(a){return this.fields[a].menu.picker.getValue()},getPicker:function(a){return this.fields[a].menu.picker},validateRecord:function(a){var b,d,c=a.get(this.dataIndex);if(!Ext.isDate(c)){return false}c=c.clearTime(true).getTime();for(b in this.fields){if(this.fields[b].checked){d=this.getFieldValue(b).clearTime(true).getTime();if(b=="before"&&d<=c){return false}if(b=="after"&&d>=c){return false}if(b=="on"&&d!=c){return false}}}return true}});Ext.ux.grid.filter.ListFilter=Ext.extend(Ext.ux.grid.filter.Filter,{phpMode:false,init:function(a){this.dt=new Ext.util.DelayedTask(this.fireUpdate,this);if(this.menu){this.menu.destroy()}this.menu=new Ext.ux.menu.ListMenu(a);this.menu.on("checkchange",this.onCheckChange,this)},getValue:function(){return this.menu.getSelected()},setValue:function(a){this.menu.setSelected(a);this.fireEvent("update",this)},isActivatable:function(){return this.getValue().length>0},getSerialArgs:function(){var a={type:"list",value:this.phpMode?this.getValue().join(","):this.getValue()};return a},onCheckChange:function(){this.dt.delay(this.updateBuffer)},validateRecord:function(a){return this.getValue().indexOf(a.get(this.dataIndex))>-1}});Ext.ux.grid.filter.NumericFilter=Ext.extend(Ext.ux.grid.filter.Filter,{fieldCls:Ext.form.NumberField,iconCls:{gt:"ux-rangemenu-gt",lt:"ux-rangemenu-lt",eq:"ux-rangemenu-eq"},menuItemCfgs:{emptyText:"Enter Filter Text...",selectOnFocus:true,width:125},menuItems:["lt","gt","-","eq"],init:function(a){if(this.menu){this.menu.destroy()}this.menu=new Ext.ux.menu.RangeMenu(Ext.apply(a,{fieldCfg:this.fieldCfg||{},fieldCls:this.fieldCls,fields:this.fields||{},iconCls:this.iconCls,menuItemCfgs:this.menuItemCfgs,menuItems:this.menuItems,updateBuffer:this.updateBuffer}));this.menu.on("update",this.fireUpdate,this)},getValue:function(){return this.menu.getValue()},setValue:function(a){this.menu.setValue(a)},isActivatable:function(){var a=this.getValue();for(key in a){if(a[key]!==undefined){return true}}return false},getSerialArgs:function(){var c,b=[],a=this.menu.getValue();for(c in a){b.push({type:"numeric",comparison:c,value:a[c]})}return b},validateRecord:function(a){var c=a.get(this.dataIndex),b=this.getValue();if(b.eq!==undefined&&c!=b.eq){return false}if(b.lt!==undefined&&c>=b.lt){return false}if(b.gt!==undefined&&c<=b.gt){return false}return true}});Ext.ux.grid.filter.StringFilter=Ext.extend(Ext.ux.grid.filter.Filter,{iconCls:"ux-gridfilter-text-icon",emptyText:"Enter Filter Text...",selectOnFocus:true,width:125,init:function(a){Ext.applyIf(a,{enableKeyEvents:true,iconCls:this.iconCls,listeners:{scope:this,keyup:this.onInputKeyUp}});this.inputItem=new Ext.form.TextField(a);this.menu.add(this.inputItem);this.updateTask=new Ext.util.DelayedTask(this.fireUpdate,this)},getValue:function(){return this.inputItem.getValue()},setValue:function(a){this.inputItem.setValue(a);this.fireEvent("update",this)},isActivatable:function(){return this.inputItem.getValue().length>0},getSerialArgs:function(){return{type:"string",value:this.getValue()}},validateRecord:function(a){var b=a.get(this.dataIndex);if(typeof b!="string"){return(this.getValue().length===0)}return b.toLowerCase().indexOf(this.getValue().toLowerCase())>-1},onInputKeyUp:function(c,b){var a=b.getKey();if(a==b.RETURN&&c.isValid()){b.stopEvent();this.menu.hide(true);return}this.updateTask.delay(this.updateBuffer)}});Ext.namespace("Ext.ux.menu");Ext.ux.menu.ListMenu=Ext.extend(Ext.menu.Menu,{labelField:"text",loadingText:"Loading...",loadOnShow:true,single:false,constructor:function(b){this.selected=[];this.addEvents("checkchange");Ext.ux.menu.ListMenu.superclass.constructor.call(this,b=b||{});if(!b.store&&b.options){var c=[];for(var d=0,a=b.options.length;d-1,hideOnClick:false});f.itemId=b[d].id;f.on("checkchange",this.checkChange,this);this.add(f)}this.loaded=true;if(g){this.show()}this.fireEvent("load",this,b)},getSelected:function(){return this.selected},setSelected:function(a){a=this.selected=[].concat(a);if(this.loaded){this.items.each(function(d){d.setChecked(false,true);for(var c=0,b=a.length;c0){a[b]=c.getValue()}}return a},setValue:function(b){var a;for(a in this.fields){this.fields[a].setValue(b[a]!==undefined?b[a]:"")}this.fireEvent("update",this)},onInputKeyUp:function(c,b){var a=b.getKey();if(a==b.RETURN&&c.isValid()){b.stopEvent();this.hide(true);return}if(c==this.fields.eq){if(this.fields.gt){this.fields.gt.setValue(null)}if(this.fields.lt){this.fields.lt.setValue(null)}}else{this.fields.eq.setValue(null)}this.updateTask.delay(this.updateBuffer)}});Ext.ns("Ext.ux.grid");Ext.ux.grid.GroupSummary=Ext.extend(Ext.util.Observable,{constructor:function(a){Ext.apply(this,a);Ext.ux.grid.GroupSummary.superclass.constructor.call(this)},init:function(b){this.grid=b;var a=this.view=b.getView();a.doGroupEnd=this.doGroupEnd.createDelegate(this);a.afterMethod("onColumnWidthUpdated",this.doWidth,this);a.afterMethod("onAllColumnWidthsUpdated",this.doAllWidths,this);a.afterMethod("onColumnHiddenUpdated",this.doHidden,this);a.afterMethod("onUpdate",this.doUpdate,this);a.afterMethod("onRemove",this.doRemove,this);if(!this.rowTpl){this.rowTpl=new Ext.Template('
    ','',"{cells}","
    ");this.rowTpl.disableFormats=true}this.rowTpl.compile();if(!this.cellTpl){this.cellTpl=new Ext.Template('','
    {value}
    ',"");this.cellTpl.disableFormats=true}this.cellTpl.compile()},toggleSummaries:function(b){var a=this.grid.getGridEl();if(a){if(b===undefined){b=a.hasClass("x-grid-hide-summary")}a[b?"removeClass":"addClass"]("x-grid-hide-summary")}},renderSummary:function(d,h){h=h||this.view.getColumnData();var j=this.grid.getColumnModel().config,e=[],k,a={},b,l=h.length-1;for(var f=0,g=h.length;f",this.renderSummary({data:e},b),"")},doWidth:function(e,b,d){if(!this.isGrouped()){return}var c=this.view.getGroups(),a=c.length,f=0,g;for(;f'+d+""}}});Ext.grid.GroupSummary=Ext.ux.grid.GroupSummary;Ext.ux.grid.GroupSummary.Calculations={sum:function(b,a,c){return b+(a.data[c]||0)},count:function(b,a,d,c){return c[d+"count"]?++c[d+"count"]:(c[d+"count"]=1)},max:function(c,b,e,d){var c=b.data[e];var a=d[e+"max"]===undefined?(d[e+"max"]=c):d[e+"max"];return c>a?(d[e+"max"]=c):a},min:function(b,a,e,d){var b=a.data[e];var c=d[e+"min"]===undefined?(d[e+"min"]=b):d[e+"min"];return b','{text}',"");c.disableFormats=true;c.compile();Ext.ux.GroupTab.prototype.itemTpl=c}this.items.each(this.initTab,this)},afterRender:function(){Ext.ux.GroupTab.superclass.afterRender.call(this);if(this.activeTab!==undefined){var a=(typeof this.activeTab=="object")?this.activeTab:this.items.get(this.activeTab);delete this.activeTab;this.setActiveTab(a)}},initTab:function(c,a){var d=this.strip.dom.childNodes[a];var e=Ext.TabPanel.prototype.getTemplateArgs.call(this,c);if(c===this.mainItem){c.tabEl=this.groupEl;e.cls+=" x-grouptabs-main-item"}var b=d?this.itemTpl.insertBefore(d,e):this.itemTpl.append(this.strip,e);c.tabEl=c.tabEl||b;c.on("disable",this.onItemDisabled,this);c.on("enable",this.onItemEnabled,this);c.on("titlechange",this.onItemTitleChanged,this);c.on("iconchange",this.onItemIconChanged,this);c.on("beforeshow",this.onBeforeShowItem,this)},setMainItem:function(a){a=this.getComponent(a);if(!a||this.fireEvent("changemainitem",this,a,this.mainItem)===false){return}this.mainItem=a},getMainItem:function(){return this.mainItem||null},onBeforeShowItem:function(a){if(a!=this.activeTab){this.setActiveTab(a);return false}},onAdd:function(a,c,b){if(this.rendered){this.initTab.call(this,c,b)}},onRemove:function(c,b){Ext.destroy(Ext.get(this.getTabEl(b)));this.stack.remove(b);b.un("disable",this.onItemDisabled,this);b.un("enable",this.onItemEnabled,this);b.un("titlechange",this.onItemTitleChanged,this);b.un("iconchange",this.onItemIconChanged,this);b.un("beforeshow",this.onBeforeShowItem,this);if(b==this.activeTab){var a=this.stack.next();if(a){this.setActiveTab(a)}else{if(this.items.getCount()>0){this.setActiveTab(0)}else{this.activeTab=null}}}},onBeforeAdd:function(b){var a=b.events?(this.items.containsKey(b.getItemId())?b:null):this.items.get(b);if(a){this.setActiveTab(b);return false}Ext.TabPanel.superclass.onBeforeAdd.apply(this,arguments);var c=b.elements;b.elements=c?c.replace(",header",""):c;b.border=(b.border===true)},onItemDisabled:Ext.TabPanel.prototype.onItemDisabled,onItemEnabled:Ext.TabPanel.prototype.onItemEnabled,onItemTitleChanged:function(b){var a=this.getTabEl(b);if(a){Ext.fly(a).child("a.x-grouptabs-text",true).innerHTML=b.title}},onItemIconChanged:function(d,a,c){var b=this.getTabEl(d);if(b){Ext.fly(b).child("a.x-grouptabs-text").replaceClass(c,a)}},beforeDestroy:function(){Ext.TabPanel.prototype.beforeDestroy.call(this);this.tooltip.destroy()}});Ext.reg("grouptab",Ext.ux.GroupTab);Ext.ns("Ext.ux");Ext.ux.GroupTabPanel=Ext.extend(Ext.TabPanel,{tabPosition:"left",alternateColor:false,alternateCls:"x-grouptabs-panel-alt",defaultType:"grouptab",deferredRender:false,activeGroup:null,initComponent:function(){Ext.ux.GroupTabPanel.superclass.initComponent.call(this);this.addEvents("beforegroupchange","groupchange");this.elements="body,header";this.stripTarget="header";this.tabPosition=this.tabPosition=="right"?"right":"left";this.addClass("x-grouptabs-panel");if(this.tabStyle&&this.tabStyle!=""){this.addClass("x-grouptabs-panel-"+this.tabStyle)}if(this.alternateColor){this.addClass(this.alternateCls)}this.on("beforeadd",function(b,c,a){this.initGroup(c,a)});this.items.each(function(a){a.on("tabchange",function(b){this.fireEvent("tabchange",this,b.activeTab)},this)},this)},initEvents:function(){this.mon(this.strip,"mousedown",this.onStripMouseDown,this)},onRender:function(c,a){Ext.TabPanel.superclass.onRender.call(this,c,a);if(this.plain){var f=this.tabPosition=="top"?"header":"footer";this[f].addClass("x-tab-panel-"+f+"-plain")}var b=this[this.stripTarget];this.stripWrap=b.createChild({cls:"x-tab-strip-wrap ",cn:{tag:"ul",cls:"x-grouptabs-strip x-grouptabs-tab-strip-"+this.tabPosition}});var e=(this.tabPosition=="bottom"?this.stripWrap:null);this.strip=new Ext.Element(this.stripWrap.dom.firstChild);this.header.addClass("x-grouptabs-panel-header");this.bwrap.addClass("x-grouptabs-bwrap");this.body.addClass("x-tab-panel-body-"+this.tabPosition+" x-grouptabs-panel-body");if(!this.groupTpl){var d=new Ext.Template('
  • ','','',"{text}","
    • ");d.disableFormats=true;d.compile();Ext.ux.GroupTabPanel.prototype.groupTpl=d}this.items.each(this.initGroup,this)},afterRender:function(){Ext.ux.GroupTabPanel.superclass.afterRender.call(this);this.tabJoint=Ext.fly(this.body.dom.parentNode).createChild({cls:"x-tab-joint"});this.addClass("x-tab-panel-"+this.tabPosition);this.header.setWidth(this.tabWidth);if(this.activeGroup!==undefined){var a=(typeof this.activeGroup=="object")?this.activeGroup:this.items.get(this.activeGroup);delete this.activeGroup;this.setActiveGroup(a);a.setActiveTab(a.getMainItem())}},getGroupEl:Ext.TabPanel.prototype.getTabEl,findTargets:function(c){var b=null,a=c.getTarget("li",this.strip);if(a){b=this.findById(a.id.split(this.idDelimiter)[1]);if(b.disabled){return{expand:null,item:null,el:null}}}return{expand:c.getTarget(".x-grouptabs-expand",this.strip),isGroup:!c.getTarget("ul.x-grouptabs-sub",this.strip),item:b,el:a}},onStripMouseDown:function(b){if(b.button!=0){return}b.preventDefault();var a=this.findTargets(b);if(a.expand){this.toggleGroup(a.el)}else{if(a.item){if(a.isGroup){a.item.setActiveTab(a.item.getMainItem())}else{a.item.ownerCt.setActiveTab(a.item)}}}},expandGroup:function(a){if(a.isXType){a=this.getGroupEl(a)}Ext.fly(a).addClass("x-grouptabs-expanded");this.syncTabJoint()},toggleGroup:function(a){if(a.isXType){a=this.getGroupEl(a)}Ext.fly(a).toggleClass("x-grouptabs-expanded");this.syncTabJoint()},collapseGroup:function(a){if(a.isXType){a=this.getGroupEl(a)}Ext.fly(a).removeClass("x-grouptabs-expanded");this.syncTabJoint()},syncTabJoint:function(b){if(!this.tabJoint){return}b=b||this.getGroupEl(this.activeGroup);if(b){this.tabJoint.setHeight(Ext.fly(b).getHeight()-2);var a=Ext.isGecko2?0:1;if(this.tabPosition=="left"){this.tabJoint.alignTo(b,"tl-tr",[-2,a])}else{this.tabJoint.alignTo(b,"tr-tl",[1,a])}}else{this.tabJoint.hide()}},getActiveTab:function(){if(!this.activeGroup){return null}return this.activeGroup.getTabEl(this.activeGroup.activeTab)||null},onResize:function(){Ext.ux.GroupTabPanel.superclass.onResize.apply(this,arguments);this.syncTabJoint()},createCorner:function(a,b){return Ext.fly(a).createChild({cls:"x-grouptabs-corner x-grouptabs-corner-"+b})},initGroup:function(f,b){var d=this.strip.dom.childNodes[b],e=this.getTemplateArgs(f);if(b===0){e.cls+=" x-tab-first"}e.cls+=" x-grouptabs-main";e.text=f.getMainItem().title;var c=d?this.groupTpl.insertBefore(d,e):this.groupTpl.append(this.strip,e),a=this.createCorner(c,"top-"+this.tabPosition),g=this.createCorner(c,"bottom-"+this.tabPosition);f.tabEl=c;if(f.expanded){this.expandGroup(c)}if(Ext.isIE6||(Ext.isIE&&!Ext.isStrict)){g.setLeft("-10px");g.setBottom("-5px");a.setLeft("-10px");a.setTop("-5px")}this.mon(f,{scope:this,changemainitem:this.onGroupChangeMainItem,beforetabchange:this.onGroupBeforeTabChange})},setActiveGroup:function(b){b=this.getComponent(b);if(!b){return false}if(!this.rendered){this.activeGroup=b;return true}if(this.activeGroup!=b&&this.fireEvent("beforegroupchange",this,b,this.activeGroup)!==false){if(this.activeGroup){this.activeGroup.activeTab=null;var a=this.getGroupEl(this.activeGroup);if(a){Ext.fly(a).removeClass("x-grouptabs-strip-active")}}var c=this.getGroupEl(b);Ext.fly(c).addClass("x-grouptabs-strip-active");this.activeGroup=b;this.stack.add(b);this.layout.setActiveItem(b);this.syncTabJoint(c);this.fireEvent("groupchange",this,b);return true}return false},onGroupBeforeTabChange:function(a,c,b){if(a!==this.activeGroup||c!==b){this.strip.select(".x-grouptabs-sub > li.x-grouptabs-strip-active",true).removeClass("x-grouptabs-strip-active")}this.expandGroup(this.getGroupEl(a));if(a!==this.activeGroup){return this.setActiveGroup(a)}},getFrameHeight:function(){var a=this.el.getFrameWidth("tb");a+=(this.tbar?this.tbar.getHeight():0)+(this.bbar?this.bbar.getHeight():0);return a},adjustBodyWidth:function(a){return a-this.tabWidth}});Ext.reg("grouptabpanel",Ext.ux.GroupTabPanel);Ext.ux.form.ItemSelector=Ext.extend(Ext.form.Field,{hideNavIcons:false,imagePath:"",iconUp:"up2.gif",iconDown:"down2.gif",iconLeft:"left2.gif",iconRight:"right2.gif",iconTop:"top2.gif",iconBottom:"bottom2.gif",drawUpIcon:true,drawDownIcon:true,drawLeftIcon:true,drawRightIcon:true,drawTopIcon:true,drawBotIcon:true,delimiter:",",bodyStyle:null,border:false,defaultAutoCreate:{tag:"div"},multiselects:null,initComponent:function(){Ext.ux.form.ItemSelector.superclass.initComponent.call(this);this.addEvents({rowdblclick:true,change:true})},onRender:function(d,a){Ext.ux.form.ItemSelector.superclass.onRender.call(this,d,a);var h=[{legend:"Available",draggable:true,droppable:true,width:100,height:100},{legend:"Selected",droppable:true,draggable:true,width:100,height:100}];this.fromMultiselect=new Ext.ux.form.MultiSelect(Ext.applyIf(this.multiselects[0],h[0]));this.fromMultiselect.on("dblclick",this.onRowDblClick,this);this.toMultiselect=new Ext.ux.form.MultiSelect(Ext.applyIf(this.multiselects[1],h[1]));this.toMultiselect.on("dblclick",this.onRowDblClick,this);var g=new Ext.Panel({bodyStyle:this.bodyStyle,border:this.border,layout:"table",layoutConfig:{columns:3}});g.add(this.fromMultiselect);var c=new Ext.Panel({header:false});g.add(c);g.add(this.toMultiselect);g.render(this.el);c.el.down("."+c.bwrapCls).remove();if(this.imagePath!=""&&this.imagePath.charAt(this.imagePath.length-1)!="/"){this.imagePath+="/"}this.iconUp=this.imagePath+(this.iconUp||"up2.gif");this.iconDown=this.imagePath+(this.iconDown||"down2.gif");this.iconLeft=this.imagePath+(this.iconLeft||"left2.gif");this.iconRight=this.imagePath+(this.iconRight||"right2.gif");this.iconTop=this.imagePath+(this.iconTop||"top2.gif");this.iconBottom=this.imagePath+(this.iconBottom||"bottom2.gif");var f=c.getEl();this.toTopIcon=f.createChild({tag:"img",src:this.iconTop,style:{cursor:"pointer",margin:"2px"}});f.createChild({tag:"br"});this.upIcon=f.createChild({tag:"img",src:this.iconUp,style:{cursor:"pointer",margin:"2px"}});f.createChild({tag:"br"});this.addIcon=f.createChild({tag:"img",src:this.iconRight,style:{cursor:"pointer",margin:"2px"}});f.createChild({tag:"br"});this.removeIcon=f.createChild({tag:"img",src:this.iconLeft,style:{cursor:"pointer",margin:"2px"}});f.createChild({tag:"br"});this.downIcon=f.createChild({tag:"img",src:this.iconDown,style:{cursor:"pointer",margin:"2px"}});f.createChild({tag:"br"});this.toBottomIcon=f.createChild({tag:"img",src:this.iconBottom,style:{cursor:"pointer",margin:"2px"}});this.toTopIcon.on("click",this.toTop,this);this.upIcon.on("click",this.up,this);this.downIcon.on("click",this.down,this);this.toBottomIcon.on("click",this.toBottom,this);this.addIcon.on("click",this.fromTo,this);this.removeIcon.on("click",this.toFrom,this);if(!this.drawUpIcon||this.hideNavIcons){this.upIcon.dom.style.display="none"}if(!this.drawDownIcon||this.hideNavIcons){this.downIcon.dom.style.display="none"}if(!this.drawLeftIcon||this.hideNavIcons){this.addIcon.dom.style.display="none"}if(!this.drawRightIcon||this.hideNavIcons){this.removeIcon.dom.style.display="none"}if(!this.drawTopIcon||this.hideNavIcons){this.toTopIcon.dom.style.display="none"}if(!this.drawBotIcon||this.hideNavIcons){this.toBottomIcon.dom.style.display="none"}var b=g.body.first();this.el.setWidth(g.body.first().getWidth());g.body.removeClass();this.hiddenName=this.name;var e={tag:"input",type:"hidden",value:"",name:this.name};this.hiddenField=this.el.createChild(e)},doLayout:function(){if(this.rendered){this.fromMultiselect.fs.doLayout();this.toMultiselect.fs.doLayout()}},afterRender:function(){Ext.ux.form.ItemSelector.superclass.afterRender.call(this);this.toStore=this.toMultiselect.store;this.toStore.on("add",this.valueChanged,this);this.toStore.on("remove",this.valueChanged,this);this.toStore.on("load",this.valueChanged,this);this.valueChanged(this.toStore)},toTop:function(){var c=this.toMultiselect.view.getSelectedIndexes();var a=[];if(c.length>0){c.sort();for(var b=0;b-1;b--){record=a[b];this.toMultiselect.view.store.remove(record);this.toMultiselect.view.store.insert(0,record);c.push(((a.length-1)-b))}}this.toMultiselect.view.refresh();this.toMultiselect.view.select(c)},toBottom:function(){var c=this.toMultiselect.view.getSelectedIndexes();var a=[];if(c.length>0){c.sort();for(var b=0;b0){for(var b=0;b=0){this.toMultiselect.view.store.remove(a);this.toMultiselect.view.store.insert(c[b]-1,a);d.push(c[b]-1)}}this.toMultiselect.view.refresh();this.toMultiselect.view.select(d)}},down:function(){var a=null;var c=this.toMultiselect.view.getSelectedIndexes();c.sort();c.reverse();var d=[];if(c.length>0){for(var b=0;b0){for(var d=0;d0){for(var c=0;c','
    ','
    {lockedHeader}
    ','
    {lockedBody}
    ',"
    ",'
    ','
    {header}
    ','
    {body}
    ',"
    ",'
     
    ','
     
    ',"")}this.templates=a;Ext.ux.grid.LockingGridView.superclass.initTemplates.call(this)},getEditorParent:function(a){return this.el.dom},initElements:function(){var e=Ext.get(this.grid.getGridEl().dom.firstChild),g=e.child("div.x-grid3-locked"),c=g.child("div.x-grid3-header"),b=g.child("div.x-grid3-scroller"),f=e.child("div.x-grid3-viewport"),d=f.child("div.x-grid3-header"),a=f.child("div.x-grid3-scroller");if(this.grid.hideHeaders){c.setDisplayed(false);d.setDisplayed(false)}if(this.forceFit){a.setStyle("overflow-x","hidden")}Ext.apply(this,{el:e,mainWrap:f,mainHd:d,innerHd:d.dom.firstChild,scroller:a,mainBody:a.child("div.x-grid3-body"),focusEl:a.child("a"),resizeMarker:e.child("div.x-grid3-resize-marker"),resizeProxy:e.child("div.x-grid3-resize-proxy"),lockedWrap:g,lockedHd:c,lockedScroller:b,lockedBody:b.child("div.x-grid3-body"),lockedInnerHd:c.child("div.x-grid3-header-inner",true)});this.focusEl.swallowEvent("click",true)},getLockedRows:function(){return this.hasRows()?this.lockedBody.dom.childNodes:[]},getLockedRow:function(a){return this.getLockedRows()[a]},getCell:function(c,a){var b=this.cm.getLockedCount();if(aa){b.setHeight(c)}else{if(a>c){d.setHeight(a)}}}},afterRender:function(){if(!this.ds||!this.cm){return}var a=this.renderRows()||[" "," "];this.mainBody.dom.innerHTML=a[0];this.lockedBody.dom.innerHTML=a[1];this.processRows(0,true);if(this.deferEmptyText!==true){this.applyEmptyText()}this.grid.fireEvent("viewready",this.grid)},renderUI:function(){var b=this.templates,c=this.renderHeaders(),a=b.body.apply({rows:" "});return b.masterTpl.apply({body:a,header:c[0],ostyle:"width:"+this.getOffsetWidth()+";",bstyle:"width:"+this.getTotalWidth()+";",lockedBody:a,lockedHeader:c[1],lstyle:"width:"+this.getLockedWidth()+";"})},afterRenderUI:function(){var a=this.grid;this.initElements();Ext.fly(this.innerHd).on("click",this.handleHdDown,this);Ext.fly(this.lockedInnerHd).on("click",this.handleHdDown,this);this.mainHd.on({scope:this,mouseover:this.handleHdOver,mouseout:this.handleHdOut,mousemove:this.handleHdMove});this.lockedHd.on({scope:this,mouseover:this.handleHdOver,mouseout:this.handleHdOut,mousemove:this.handleHdMove});this.scroller.on("scroll",this.syncScroll,this);if(a.enableColumnResize!==false){this.splitZone=new Ext.grid.GridView.SplitDragZone(a,this.mainHd.dom);this.splitZone.setOuterHandleElId(Ext.id(this.lockedHd.dom));this.splitZone.setOuterHandleElId(Ext.id(this.mainHd.dom))}if(a.enableColumnMove){this.columnDrag=new Ext.grid.GridView.ColumnDragZone(a,this.innerHd);this.columnDrag.setOuterHandleElId(Ext.id(this.lockedInnerHd));this.columnDrag.setOuterHandleElId(Ext.id(this.innerHd));this.columnDrop=new Ext.grid.HeaderDropZone(a,this.mainHd.dom)}if(a.enableHdMenu!==false){this.hmenu=new Ext.menu.Menu({id:a.id+"-hctx"});this.hmenu.add({itemId:"asc",text:this.sortAscText,cls:"xg-hmenu-sort-asc"},{itemId:"desc",text:this.sortDescText,cls:"xg-hmenu-sort-desc"});if(this.grid.enableColLock!==false){this.hmenu.add({itemId:"sortSep",xtype:"menuseparator"},{itemId:"lock",text:this.lockText,cls:"xg-hmenu-lock"},{itemId:"unlock",text:this.unlockText,cls:"xg-hmenu-unlock"})}if(a.enableColumnHide!==false){this.colMenu=new Ext.menu.Menu({id:a.id+"-hcols-menu"});this.colMenu.on({scope:this,beforeshow:this.beforeColMenuShow,itemclick:this.handleHdMenuClick});this.hmenu.add("-",{itemId:"columns",hideOnClick:false,text:this.columnsText,menu:this.colMenu,iconCls:"x-cols-icon"})}this.hmenu.on("itemclick",this.handleHdMenuClick,this)}if(a.trackMouseOver){this.mainBody.on({scope:this,mouseover:this.onRowOver,mouseout:this.onRowOut});this.lockedBody.on({scope:this,mouseover:this.onRowOver,mouseout:this.onRowOut})}if(a.enableDragDrop||a.enableDrag){this.dragZone=new Ext.grid.GridDragZone(a,{ddGroup:a.ddGroup||"GridDD"})}this.updateHeaderSortState()},layout:function(){if(!this.mainBody){return}var d=this.grid;var h=d.getGridEl();var a=h.getSize(true);var b=a.width;if(!d.hideHeaders&&(b<20||a.height<20)){return}this.syncHeaderHeight();if(d.autoHeight){this.scroller.dom.style.overflow="visible";this.lockedScroller.dom.style.overflow="visible";if(Ext.isWebKit){this.scroller.dom.style.position="static";this.lockedScroller.dom.style.position="static"}}else{this.el.setSize(a.width,a.height);var f=this.mainHd.getHeight();var e=a.height-(f)}this.updateLockedWidth();if(this.forceFit){if(this.lastViewWidth!=b){this.fitColumns(false,false);this.lastViewWidth=b}}else{this.autoExpand();this.syncHeaderScroll()}this.onLayout(b,e)},getOffsetWidth:function(){return(this.cm.getTotalWidth()-this.cm.getTotalLockedWidth()+this.getScrollOffset())+"px"},renderHeaders:function(){var h=this.cm,f=this.templates,d=f.hcell,b=[],g=[],a={},e=h.getColumnCount(),j=e-1;for(var c=0;c=c){this.refresh()}else{if(!f){this.fireEvent("beforerowsinserted",this,g,d)}var b=this.renderRows(g,d),e=this.getRow(g);if(e){if(g===0){this.removeRowClass(0,this.firstRowCls)}Ext.DomHelper.insertHtml("beforeBegin",e,b[0]);e=this.getLockedRow(g);Ext.DomHelper.insertHtml("beforeBegin",e,b[1])}else{this.removeRowClass(c-1,this.lastRowCls);Ext.DomHelper.insertHtml("beforeEnd",this.mainBody.dom,b[0]);Ext.DomHelper.insertHtml("beforeEnd",this.lockedBody.dom,b[1])}if(!f){this.fireEvent("rowsinserted",this,g,d);this.processRows(g)}else{if(g===0||g>=c){this.addRowClass(g,g===0?this.firstRowCls:this.lastRowCls)}}}this.syncFocusEl(g)},getColumnStyle:function(a,c){var b=!c?this.cm.config[a].cellStyle||this.cm.config[a].css||"":this.cm.config[a].headerStyle||"";b+="width:"+this.getColumnWidth(a)+";";if(this.cm.isHidden(a)){b+="display:none;"}var d=this.cm.config[a].align;if(d){b+="text-align:"+d+";"}return b},getLockedWidth:function(){return this.cm.getTotalLockedWidth()+"px"},getTotalWidth:function(){return(this.cm.getTotalWidth()-this.cm.getTotalLockedWidth())+"px"},getColumnData:function(){var d=[],a=this.cm,e=a.getColumnCount();for(var c=0;cc&&!a&&b){this.setLocked(d,true,true)}}Ext.ux.grid.LockingColumnModel.superclass.moveColumn.apply(this,arguments)}});Ext.ns("Ext.ux.form");Ext.ux.form.MultiSelect=Ext.extend(Ext.form.Field,{ddReorder:false,appendOnly:false,width:100,height:100,displayField:0,valueField:1,allowBlank:true,minSelections:0,maxSelections:Number.MAX_VALUE,blankText:Ext.form.TextField.prototype.blankText,minSelectionsText:"Minimum {0} item(s) required",maxSelectionsText:"Maximum {0} item(s) allowed",delimiter:",",cls:"ux-form-multiselect",defaultAutoCreate:{tag:"div"},initComponent:function(){Ext.ux.form.MultiSelect.superclass.initComponent.call(this);if(Ext.isArray(this.store)){if(Ext.isArray(this.store[0])){this.store=new Ext.data.ArrayStore({fields:["value","text"],data:this.store});this.valueField="value"}else{this.store=new Ext.data.ArrayStore({fields:["text"],data:this.store,expandData:true});this.valueField="text"}this.displayField="text"}else{this.store=Ext.StoreMgr.lookup(this.store)}this.addEvents({dblclick:true,click:true,change:true,drop:true})},onRender:function(c,b){Ext.ux.form.MultiSelect.superclass.onRender.call(this,c,b);var a=this.fs=new Ext.form.FieldSet({renderTo:this.el,title:this.legend,height:this.height,width:this.width,style:"padding:0;",tbar:this.tbar});a.body.addClass("ux-mselect");this.view=new Ext.ListView({selectedClass:"ux-mselect-selected",multiSelect:true,store:this.store,columns:[{header:"Value",width:1,dataIndex:this.displayField}],hideHeaders:true});a.add(this.view);this.view.on("click",this.onViewClick,this);this.view.on("beforeclick",this.onViewBeforeClick,this);this.view.on("dblclick",this.onViewDblClick,this);this.hiddenName=this.name||Ext.id();var d={tag:"input",type:"hidden",value:"",name:this.hiddenName};this.hiddenField=this.el.createChild(d);this.hiddenField.dom.disabled=this.hiddenName!=this.name;a.doLayout()},afterRender:function(){Ext.ux.form.MultiSelect.superclass.afterRender.call(this);if(this.ddReorder&&!this.dragGroup&&!this.dropGroup){this.dragGroup=this.dropGroup="MultiselectDD-"+Ext.id()}if(this.draggable||this.dragGroup){this.dragZone=new Ext.ux.form.MultiSelect.DragZone(this,{ddGroup:this.dragGroup})}if(this.droppable||this.dropGroup){this.dropZone=new Ext.ux.form.MultiSelect.DropZone(this,{ddGroup:this.dropGroup})}},onViewClick:function(c,a,b,d){this.fireEvent("change",this,this.getValue(),this.hiddenField.dom.value);this.hiddenField.dom.value=this.getValue();this.fireEvent("click",this,d);this.validate()},onViewBeforeClick:function(c,a,b,d){if(this.disabled||this.readOnly){return false}},onViewDblClick:function(c,a,b,d){return this.fireEvent("dblclick",c,a,b,d)},getValue:function(a){var d=[];var c=this.view.getSelectedIndexes();if(c.length==0){return""}for(var b=0;bthis.maxSelections){this.markInvalid(String.format(this.maxSelectionsText,this.maxSelections));return false}return true},disable:function(){this.disabled=true;this.hiddenField.dom.disabled=true;this.fs.disable()},enable:function(){this.disabled=false;this.hiddenField.dom.disabled=false;this.fs.enable()},destroy:function(){Ext.destroy(this.fs,this.dragZone,this.dropZone);Ext.ux.form.MultiSelect.superclass.destroy.call(this)}});Ext.reg("multiselect",Ext.ux.form.MultiSelect);Ext.ux.Multiselect=Ext.ux.form.MultiSelect;Ext.ux.form.MultiSelect.DragZone=function(d,c){this.ms=d;this.view=d.view;var b=c.ddGroup||"MultiselectDD";var a;if(Ext.isArray(b)){a=b.shift()}else{a=b;b=null}Ext.ux.form.MultiSelect.DragZone.superclass.constructor.call(this,this.ms.fs.body,{containerScroll:true,ddGroup:a});this.setDraggable(b)};Ext.extend(Ext.ux.form.MultiSelect.DragZone,Ext.dd.DragZone,{onInitDrag:function(a,c){var b=Ext.get(this.dragData.ddel.cloneNode(true));this.proxy.update(b.dom);b.setWidth(b.child("em").getWidth());this.onStartDrag(a,c);return true},collectSelection:function(b){b.repairXY=Ext.fly(this.view.getSelectedNodes()[0]).getXY();var a=0;this.view.store.each(function(d){if(this.view.isSelected(a)){var e=this.view.getNode(a);var c=e.cloneNode(true);c.id=Ext.id();b.ddel.appendChild(c);b.records.push(this.view.store.getAt(a));b.viewNodes.push(e)}a++},this)},onEndDrag:function(a,b){var c=Ext.get(this.dragData.ddel);if(c&&c.hasClass("multi-proxy")){c.remove()}},getDragData:function(d){var c=this.view.findItemFromChild(d.getTarget());if(c){if(!this.view.isSelected(c)&&!d.ctrlKey&&!d.shiftKey){this.view.select(c);this.ms.setValue(this.ms.getValue())}if(this.view.getSelectionCount()==0||d.ctrlKey||d.shiftKey){return false}var b={sourceView:this.view,viewNodes:[],records:[]};if(this.view.getSelectionCount()==1){var a=this.view.getSelectedIndexes()[0];var f=this.view.getNode(a);b.viewNodes.push(b.ddel=f);b.records.push(this.view.store.getAt(a));b.repairXY=Ext.fly(f).getXY()}else{b.ddel=document.createElement("div");b.ddel.className="multi-proxy";this.collectSelection(b)}return b}return false},getRepairXY:function(a){return this.dragData.repairXY},setDraggable:function(a){if(!a){return}if(Ext.isArray(a)){Ext.each(a,this.setDraggable,this);return}this.addToGroup(a)}});Ext.ux.form.MultiSelect.DropZone=function(d,c){this.ms=d;this.view=d.view;var b=c.ddGroup||"MultiselectDD";var a;if(Ext.isArray(b)){a=b.shift()}else{a=b;b=null}Ext.ux.form.MultiSelect.DropZone.superclass.constructor.call(this,this.ms.fs.body,{containerScroll:true,ddGroup:a});this.setDroppable(b)};Ext.extend(Ext.ux.form.MultiSelect.DropZone,Ext.dd.DropZone,{getTargetFromEvent:function(b){var a=b.getTarget();return a},getDropPoint:function(g,k,d){if(k==this.ms.fs.body.dom){return"below"}var f=Ext.lib.Dom.getY(k),a=f+k.offsetHeight;var j=f+(a-f)/2;var h=Ext.lib.Event.getPageY(g);if(h<=j){return"above"}else{return"below"}},isValidDropPoint:function(b,e,a){if(!a.viewNodes||(a.viewNodes.length!=1)){return true}var c=a.viewNodes[0];if(c==e){return false}if((b=="below")&&(e.nextSibling==c)){return false}if((b=="above")&&(e.previousSibling==c)){return false}return true},onNodeEnter:function(d,a,c,b){return false},onNodeOver:function(h,a,g,d){var b=this.dropNotAllowed;var f=this.getDropPoint(g,h,a);if(this.isValidDropPoint(f,h,d)){if(this.ms.appendOnly){return"x-tree-drop-ok-below"}if(f){var c;if(f=="above"){b=h.previousSibling?"x-tree-drop-ok-between":"x-tree-drop-ok-above";c="x-view-drag-insert-above"}else{b=h.nextSibling?"x-tree-drop-ok-between":"x-tree-drop-ok-below";c="x-view-drag-insert-below"}if(this.lastInsertClass!=c){Ext.fly(h).replaceClass(this.lastInsertClass,c);this.lastInsertClass=c}}}return b},onNodeOut:function(d,a,c,b){this.removeDropIndicators(d)},onNodeDrop:function(b,j,h,f){if(this.ms.fireEvent("drop",this,b,j,h,f)===false){return false}var k=this.getDropPoint(h,b,j);if(b!=this.ms.fs.body.dom){b=this.view.findItemFromChild(b)}if(this.ms.appendOnly){insertAt=this.view.store.getCount()}else{insertAt=b==this.ms.fs.body.dom?this.view.store.getCount()-1:this.view.indexOf(b);if(k=="below"){insertAt++}}var c=false;if(f.sourceView==this.view){if(k=="below"){if(f.viewNodes[0]==b){f.viewNodes.shift()}}else{if(f.viewNodes[f.viewNodes.length-1]==b){f.viewNodes.pop()}}if(!f.viewNodes.length){return false}if(insertAt>this.view.store.indexOf(f.records[0])){c="down";insertAt--}}for(var g=0;ge?1:(nf[1]){l=true;break}}}j=(l&&r?j:v.items.getCount())+(k?-1:0);var g=this.createEvent(w,u,x,d,v,j);if(a.fireEvent("validatedrop",g)!==false&&a.fireEvent("beforedragover",g)!==false){o.getProxy().setWidth("auto");if(r){o.moveProxy(r.el.dom.parentNode,l?r.el.dom:null)}else{o.moveProxy(v.el.dom,null)}this.lastPos={c:v,col:d,p:k||(l&&r)?j:false};this.scrollPos=a.body.getScroll();a.fireEvent("dragover",g);return g.status}else{return g.status}},notifyOut:function(){delete this.grid},notifyDrop:function(m,h,g){delete this.grid;if(!this.lastPos){return}var k=this.lastPos.c,f=this.lastPos.col,l=this.lastPos.p,a=m.panel,b=this.createEvent(m,h,g,f,k,l!==false?l:k.items.getCount());if(this.portal.fireEvent("validatedrop",b)!==false&&this.portal.fireEvent("beforedrop",b)!==false){m.proxy.getProxy().remove();a.el.dom.parentNode.removeChild(m.panel.el.dom);if(l!==false){k.insert(l,a)}else{k.add(a)}k.doLayout();this.portal.fireEvent("drop",b);var n=this.scrollPos.top;if(n){var j=this.portal.body.dom;setTimeout(function(){j.scrollTop=n},10)}}delete this.lastPos},getGrid:function(){var a=this.portal.bwrap.getBox();a.columnX=[];this.portal.items.each(function(b){a.columnX.push({x:b.el.getX(),w:b.el.getWidth()})});return a},unreg:function(){Ext.dd.ScrollManager.unregister(this.portal.body);Ext.ux.Portal.DropZone.superclass.unreg.call(this)}});Ext.ux.PortalColumn=Ext.extend(Ext.Container,{layout:"anchor",defaultType:"portlet",cls:"x-portal-column"});Ext.reg("portalcolumn",Ext.ux.PortalColumn);Ext.ux.Portlet=Ext.extend(Ext.Panel,{anchor:"100%",frame:true,collapsible:true,draggable:true,cls:"x-portlet"});Ext.reg("portlet",Ext.ux.Portlet);Ext.ux.ProgressBarPager=Ext.extend(Object,{progBarWidth:225,defaultText:"Loading...",defaultAnimCfg:{duration:1,easing:"bounceOut"},constructor:function(a){if(a){Ext.apply(this,a)}},init:function(a){if(a.displayInfo){this.parent=a;var b=a.items.indexOf(a.displayItem);a.remove(a.displayItem,true);this.progressBar=new Ext.ProgressBar({text:this.defaultText,width:this.progBarWidth,animate:this.defaultAnimCfg});a.displayItem=this.progressBar;a.add(a.displayItem);a.doLayout();Ext.apply(a,this.parentOverrides);this.progressBar.on("render",function(c){c.mon(c.getEl().applyStyles("cursor:pointer"),"click",this.handleProgressBarClick,this)},this,{single:true})}},handleProgressBarClick:function(j){var d=this.parent,c=d.displayItem,f=this.progressBar.getBox(),h=j.getXY(),b=h[0]-f.x,a=Math.ceil(d.store.getTotalCount()/d.pageSize),g=Math.ceil(b/(c.width/a));d.changePage(g)},parentOverrides:{updateInfo:function(){if(this.displayItem){var b=this.store.getCount(),a=this.getPageData(),d=this.readPage(a),e=b==0?this.emptyMsg:String.format(this.displayMsg,this.cursor+1,this.cursor+b,this.store.getTotalCount());d=a.activePage;var c=d/a.pages;this.displayItem.updateProgress(c,e,this.animate||this.defaultAnimConfig)}}}});Ext.preg("progressbarpager",Ext.ux.ProgressBarPager);Ext.ns("Ext.ux.grid");Ext.ux.grid.RowEditor=Ext.extend(Ext.Panel,{floating:true,shadow:false,layout:"hbox",cls:"x-small-editor",buttonAlign:"center",baseCls:"x-row-editor",elements:"header,footer,body",frameWidth:5,buttonPad:3,clicksToEdit:"auto",monitorValid:true,focusDelay:250,errorSummary:true,saveText:"Save",cancelText:"Cancel",commitChangesText:"You need to commit or cancel your changes",errorText:"Errors",defaults:{normalWidth:true},initComponent:function(){Ext.ux.grid.RowEditor.superclass.initComponent.call(this);this.addEvents("beforeedit","canceledit","validateedit","afteredit")},init:function(a){this.grid=a;this.ownerCt=a;if(this.clicksToEdit===2){a.on("rowdblclick",this.onRowDblClick,this)}else{a.on("rowclick",this.onRowClick,this);if(Ext.isIE){a.on("rowdblclick",this.onRowDblClick,this)}}a.getStore().on("remove",function(){this.stopEditing(false)},this);a.on({scope:this,keydown:this.onGridKey,columnresize:this.verifyLayout,columnmove:this.refreshFields,reconfigure:this.refreshFields,beforedestroy:this.beforedestroy,destroy:this.destroy,bodyscroll:{buffer:250,fn:this.positionButtons}});a.getColumnModel().on("hiddenchange",this.verifyLayout,this,{delay:1});a.getView().on("refresh",this.stopEditing.createDelegate(this,[]))},beforedestroy:function(){this.stopMonitoring();this.grid.getStore().un("remove",this.onStoreRemove,this);this.stopEditing(false);Ext.destroy(this.btns,this.tooltip)},refreshFields:function(){this.initFields();this.verifyLayout()},isDirty:function(){var a;this.items.each(function(b){if(String(this.values[b.id])!==String(b.getValue())){a=true;return false}},this);return a},startEditing:function(k,p){if(this.editing&&this.isDirty()){this.showTooltip(this.commitChangesText);return}if(Ext.isObject(k)){k=this.grid.getStore().indexOf(k)}if(this.fireEvent("beforeedit",this,k)!==false){this.editing=true;var e=this.grid,l=e.getView(),o=l.getRow(k),c=e.store.getAt(k);this.record=c;this.rowIndex=k;this.values={};if(!this.rendered){this.render(l.getEditorParent())}var m=Ext.fly(o).getWidth();this.setSize(m);if(!this.initialized){this.initFields()}var n=e.getColumnModel(),d=this.items.items,j,a;for(var b=0,h=n.getColumnCount();b=h){d=b;break}}}return d},startMonitoring:function(){if(!this.bound&&this.monitorValid){this.bound=true;Ext.TaskMgr.start({run:this.bindHandler,interval:this.monitorPoll||200,scope:this})}},stopMonitoring:function(){this.bound=false;if(this.tooltip){this.tooltip.hide()}},isValid:function(){var a=true;this.items.each(function(b){if(!b.isValid(true)){a=false;return false}});return a},bindHandler:function(){if(!this.bound){return false}var a=this.isValid();if(!a&&this.errorSummary){this.showTooltip(this.getErrorText().join(""))}this.btns.saveBtn.setDisabled(!a);this.fireEvent("validation",this,a)},lastVisibleColumn:function(){var a=this.items.getCount()-1,b;for(;a>=0;a--){b=this.items.items[a];if(!b.hidden){return b}}},showTooltip:function(f){var c=this.tooltip;if(!c){c=this.tooltip=new Ext.ToolTip({maxWidth:600,cls:"errorTip",width:300,title:this.errorText,autoHide:false,anchor:"left",anchorToTarget:true,mouseOffset:[40,0]})}var b=this.grid.getView(),e=parseInt(this.el.dom.style.top,10),a=b.scroller.dom.scrollTop,d=this.el.getHeight();if(e+d>=a){c.initTarget(this.lastVisibleColumn().getEl());if(!c.rendered){c.show();c.hide()}c.body.update(f);c.doAutoWidth(20);c.show()}else{if(c.rendered){c.hide()}}},getErrorText:function(){var a=["
      "];this.items.each(function(b){if(!b.isValid(true)){a.push("
    • ",b.getActiveError(),"
      • ")}});a.push("
    ");return a}});Ext.preg("roweditor",Ext.ux.grid.RowEditor);Ext.ns("Ext.ux.grid");Ext.ux.grid.RowExpander=Ext.extend(Ext.util.Observable,{expandOnEnter:true,expandOnDblClick:true,header:"",width:20,sortable:false,fixed:true,hideable:false,menuDisabled:true,dataIndex:"",id:"expander",lazyRender:true,enableCaching:true,constructor:function(a){Ext.apply(this,a);this.addEvents({beforeexpand:true,expand:true,beforecollapse:true,collapse:true});Ext.ux.grid.RowExpander.superclass.constructor.call(this);if(this.tpl){if(typeof this.tpl=="string"){this.tpl=new Ext.Template(this.tpl)}this.tpl.compile()}this.state={};this.bodyContent={}},getRowClass:function(a,e,d,c){d.cols=d.cols-1;var b=this.bodyContent[a.id];if(!b&&!this.lazyRender){b=this.getBodyContent(a,e)}if(b){d.body=b}return this.state[a.id]?"x-grid3-row-expanded":"x-grid3-row-collapsed"},init:function(b){this.grid=b;var a=b.getView();a.getRowClass=this.getRowClass.createDelegate(this);a.enableRowBody=true;b.on("render",this.onRender,this);b.on("destroy",this.onDestroy,this)},onRender:function(){var a=this.grid;var b=a.getView().mainBody;b.on("mousedown",this.onMouseDown,this,{delegate:".x-grid3-row-expander"});if(this.expandOnEnter){this.keyNav=new Ext.KeyNav(this.grid.getGridEl(),{enter:this.onEnter,scope:this})}if(this.expandOnDblClick){a.on("rowdblclick",this.onRowDblClick,this)}},onDestroy:function(){if(this.keyNav){this.keyNav.disable();delete this.keyNav}var a=this.grid.getView().mainBody;if(a){a.un("mousedown",this.onMouseDown,this)}},onRowDblClick:function(a,b,c){this.toggleRow(b)},onEnter:function(h){var f=this.grid;var j=f.getSelectionModel();var b=j.getSelections();for(var c=0,a=b.length;c '},beforeExpand:function(b,a,c){if(this.fireEvent("beforeexpand",this,b,a,c)!==false){if(this.tpl&&this.lazyRender){a.innerHTML=this.getBodyContent(b,c)}return true}else{return false}},toggleRow:function(a){if(typeof a=="number"){a=this.grid.view.getRow(a)}this[Ext.fly(a).hasClass("x-grid3-row-collapsed")?"expandRow":"collapseRow"](a)},expandRow:function(c){if(typeof c=="number"){c=this.grid.view.getRow(c)}var b=this.grid.store.getAt(c.rowIndex);var a=Ext.DomQuery.selectNode("tr:nth(2) div.x-grid3-row-body",c);if(this.beforeExpand(b,a,c.rowIndex)){this.state[b.id]=true;Ext.fly(c).replaceClass("x-grid3-row-collapsed","x-grid3-row-expanded");this.fireEvent("expand",this,b,a,c.rowIndex)}},collapseRow:function(c){if(typeof c=="number"){c=this.grid.view.getRow(c)}var b=this.grid.store.getAt(c.rowIndex);var a=Ext.fly(c).child("tr:nth(1) div.x-grid3-row-body",true);if(this.fireEvent("beforecollapse",this,b,a,c.rowIndex)!==false){this.state[b.id]=false;Ext.fly(c).replaceClass("x-grid3-row-expanded","x-grid3-row-collapsed");this.fireEvent("collapse",this,b,a,c.rowIndex)}}});Ext.preg("rowexpander",Ext.ux.grid.RowExpander);Ext.grid.RowExpander=Ext.ux.grid.RowExpander;Ext.ns("Ext.ux.layout");Ext.ux.layout.RowLayout=Ext.extend(Ext.layout.ContainerLayout,{monitorResize:true,type:"row",allowContainerRemove:false,isValidParent:function(b,a){return this.innerCt&&b.getPositionEl().dom.parentNode==this.innerCt.dom},getLayoutTargetSize:function(){var b=this.container.getLayoutTarget(),a;if(b){a=b.getViewSize();if(Ext.isIE&&Ext.isStrict&&a.height==0){a=b.getStyleSize()}a.width-=b.getPadding("lr");a.height-=b.getPadding("tb")}return a},renderAll:function(a,b){if(!this.innerCt){this.innerCt=b.createChild({cls:"x-column-inner"});this.innerCt.createChild({cls:"x-clear"})}Ext.layout.ColumnLayout.superclass.renderAll.call(this,a,this.innerCt)},onLayout:function(g,k){var c=g.items.items,j=c.length,a,b,d,n=[];this.renderAll(g,k);var o=this.getLayoutTargetSize();if(o.width<1&&o.height<1){return}var e=o.height,f=e;this.innerCt.setSize({height:e});for(d=0;d{0} of {1}",d.value,d.slider.maxValue)}}),listeners:{changecomplete:function(e,d){b.changePage(d)}}});b.insert(a+1,c);b.on({change:function(d,e){c.setMaxValue(e.pages);c.setValue(e.activePage)}})}});Ext.ns("Ext.ux.form");Ext.ux.form.SpinnerField=Ext.extend(Ext.form.NumberField,{actionMode:"wrap",deferHeight:true,autoSize:Ext.emptyFn,onBlur:Ext.emptyFn,adjustSize:Ext.BoxComponent.prototype.adjustSize,constructor:function(c){var b=Ext.copyTo({},c,"incrementValue,alternateIncrementValue,accelerate,defaultValue,triggerClass,splitterClass");var d=this.spinner=new Ext.ux.Spinner(b);var a=c.plugins?(Ext.isArray(c.plugins)?c.plugins.push(d):[c.plugins,d]):d;Ext.ux.form.SpinnerField.superclass.constructor.call(this,Ext.apply(c,{plugins:a}))},getResizeEl:function(){return this.wrap},getPositionEl:function(){return this.wrap},alignErrorIcon:function(){if(this.wrap){this.errorIcon.alignTo(this.wrap,"tl-tr",[2,0])}},validateBlur:function(){return true}});Ext.reg("spinnerfield",Ext.ux.form.SpinnerField);Ext.form.SpinnerField=Ext.ux.form.SpinnerField;Ext.ux.Spinner=Ext.extend(Ext.util.Observable,{incrementValue:1,alternateIncrementValue:5,triggerClass:"x-form-spinner-trigger",splitterClass:"x-form-spinner-splitter",alternateKey:Ext.EventObject.shiftKey,defaultValue:0,accelerate:false,constructor:function(a){Ext.ux.Spinner.superclass.constructor.call(this,a);Ext.apply(this,a);this.mimicing=false},init:function(a){this.field=a;a.afterMethod("onRender",this.doRender,this);a.afterMethod("onEnable",this.doEnable,this);a.afterMethod("onDisable",this.doDisable,this);a.afterMethod("afterRender",this.doAfterRender,this);a.afterMethod("onResize",this.doResize,this);a.afterMethod("onFocus",this.doFocus,this);a.beforeMethod("onDestroy",this.doDestroy,this)},doRender:function(b,a){var c=this.el=this.field.getEl();var d=this.field;if(!d.wrap){d.wrap=this.wrap=c.wrap({cls:"x-form-field-wrap"})}else{this.wrap=d.wrap.addClass("x-form-field-wrap")}this.trigger=this.wrap.createChild({tag:"img",src:Ext.BLANK_IMAGE_URL,cls:"x-form-trigger "+this.triggerClass});if(!d.width){this.wrap.setWidth(c.getWidth()+this.trigger.getWidth())}this.splitter=this.wrap.createChild({tag:"div",cls:this.splitterClass,style:"width:13px; height:2px;"});this.splitter.setRight((Ext.isIE)?1:2).setTop(10).show();this.proxy=this.trigger.createProxy("",this.splitter,true);this.proxy.addClass("x-form-spinner-proxy");this.proxy.setStyle("left","0px");this.proxy.setSize(14,1);this.proxy.hide();this.dd=new Ext.dd.DDProxy(this.splitter.dom.id,"SpinnerDrag",{dragElId:this.proxy.id});this.initTrigger();this.initSpinner()},doAfterRender:function(){var a;if(Ext.isIE&&this.el.getY()!=(a=this.trigger.getY())){this.el.position();this.el.setY(a)}},doEnable:function(){if(this.wrap){this.disabled=false;this.wrap.removeClass(this.field.disabledClass)}},doDisable:function(){if(this.wrap){this.disabled=true;this.wrap.addClass(this.field.disabledClass);this.el.removeClass(this.field.disabledClass)}},doResize:function(a,b){if(typeof a=="number"){this.el.setWidth(a-this.trigger.getWidth())}this.wrap.setWidth(this.el.getWidth()+this.trigger.getWidth())},doFocus:function(){if(!this.mimicing){this.wrap.addClass("x-trigger-wrap-focus");this.mimicing=true;Ext.get(Ext.isIE?document.body:document).on("mousedown",this.mimicBlur,this,{delay:10});this.el.on("keydown",this.checkTab,this)}},checkTab:function(a){if(a.getKey()==a.TAB){this.triggerBlur()}},mimicBlur:function(a){if(!this.wrap.contains(a.target)&&this.field.validateBlur(a)){this.triggerBlur()}},triggerBlur:function(){this.mimicing=false;Ext.get(Ext.isIE?document.body:document).un("mousedown",this.mimicBlur,this);this.el.un("keydown",this.checkTab,this);this.field.beforeBlur();this.wrap.removeClass("x-trigger-wrap-focus");this.field.onBlur.call(this.field)},initTrigger:function(){this.trigger.addClassOnOver("x-form-trigger-over");this.trigger.addClassOnClick("x-form-trigger-click")},initSpinner:function(){this.field.addEvents({spin:true,spinup:true,spindown:true});this.keyNav=new Ext.KeyNav(this.el,{up:function(a){a.preventDefault();this.onSpinUp()},down:function(a){a.preventDefault();this.onSpinDown()},pageUp:function(a){a.preventDefault();this.onSpinUpAlternate()},pageDown:function(a){a.preventDefault();this.onSpinDownAlternate()},scope:this});this.repeater=new Ext.util.ClickRepeater(this.trigger,{accelerate:this.accelerate});this.field.mon(this.repeater,"click",this.onTriggerClick,this,{preventDefault:true});this.field.mon(this.trigger,{mouseover:this.onMouseOver,mouseout:this.onMouseOut,mousemove:this.onMouseMove,mousedown:this.onMouseDown,mouseup:this.onMouseUp,scope:this,preventDefault:true});this.field.mon(this.wrap,"mousewheel",this.handleMouseWheel,this);this.dd.setXConstraint(0,0,10);this.dd.setYConstraint(1500,1500,10);this.dd.endDrag=this.endDrag.createDelegate(this);this.dd.startDrag=this.startDrag.createDelegate(this);this.dd.onDrag=this.onDrag.createDelegate(this)},onMouseOver:function(){if(this.disabled){return}var a=this.getMiddle();this.tmpHoverClass=(Ext.EventObject.getPageY()a)&&this.tmpHoverClass=="x-form-spinner-overup")||((Ext.EventObject.getPageY()0){this.onSpinUp();a.stopEvent()}else{if(b<0){this.onSpinDown();a.stopEvent()}}},startDrag:function(){this.proxy.show();this._previousY=Ext.fly(this.dd.getDragEl()).getTop()},endDrag:function(){this.proxy.hide()},onDrag:function(){if(this.disabled){return}var b=Ext.fly(this.dd.getDragEl()).getTop();var a="";if(this._previousY>b){a="Up"}if(this._previousYthis.field.maxValue){a=this.field.maxValue}return this.fixPrecision(a)},fixPrecision:function(b){var a=isNaN(b);if(!this.field.allowDecimals||this.field.decimalPrecision==-1||a||!b){return a?"":b}return parseFloat(parseFloat(b).toFixed(this.field.decimalPrecision))},doDestroy:function(){if(this.trigger){this.trigger.remove()}if(this.wrap){this.wrap.remove();delete this.field.wrap}if(this.splitter){this.splitter.remove()}if(this.dd){this.dd.unreg();this.dd=null}if(this.proxy){this.proxy.remove()}if(this.repeater){this.repeater.purgeListeners()}if(this.mimicing){Ext.get(Ext.isIE?document.body:document).un("mousedown",this.mimicBlur,this)}}});Ext.form.Spinner=Ext.ux.Spinner;Ext.ux.Spotlight=function(a){Ext.apply(this,a)};Ext.ux.Spotlight.prototype={active:false,animate:true,duration:0.25,easing:"easeNone",animated:false,createElements:function(){var a=Ext.getBody();this.right=a.createChild({cls:"x-spotlight"});this.left=a.createChild({cls:"x-spotlight"});this.top=a.createChild({cls:"x-spotlight"});this.bottom=a.createChild({cls:"x-spotlight"});this.all=new Ext.CompositeElement([this.right,this.left,this.top,this.bottom])},show:function(b,c,a){if(this.animated){this.show.defer(50,this,[b,c,a]);return}this.el=Ext.get(b);if(!this.right){this.createElements()}if(!this.active){this.all.setDisplayed("");this.applyBounds(true,false);this.active=true;Ext.EventManager.onWindowResize(this.syncSize,this);this.applyBounds(false,this.animate,false,c,a)}else{this.applyBounds(false,false,false,c,a)}},hide:function(b,a){if(this.animated){this.hide.defer(50,this,[b,a]);return}Ext.EventManager.removeResizeListener(this.syncSize,this);this.applyBounds(true,this.animate,true,b,a)},doHide:function(){this.active=false;this.all.setDisplayed(false)},syncSize:function(){this.applyBounds(false,false)},applyBounds:function(e,d,k,j,l){var h=this.el.getRegion();var a=Ext.lib.Dom.getViewWidth(true);var g=Ext.lib.Dom.getViewHeight(true);var f=0,b=false;if(d){b={callback:function(){f++;if(f==4){this.animated=false;if(k){this.doHide()}Ext.callback(j,l,[this])}},scope:this,duration:this.duration,easing:this.easing};this.animated=true}this.right.setBounds(h.right,e?g:h.top,a-h.right,e?0:(g-h.top),b);this.left.setBounds(0,0,h.left,e?0:h.bottom,b);this.top.setBounds(e?a:h.left,0,e?0:a-h.left,h.top,b);this.bottom.setBounds(0,h.bottom,e?0:h.right,g-h.bottom,b);if(!d){if(k){this.doHide()}if(j){Ext.callback(j,l,[this])}}},destroy:function(){this.doHide();Ext.destroy(this.right,this.left,this.top,this.bottom);delete this.el;delete this.all}};Ext.Spotlight=Ext.ux.Spotlight;Ext.ux.StatusBar=Ext.extend(Ext.Toolbar,{cls:"x-statusbar",busyIconCls:"x-status-busy",busyText:"Loading...",autoClear:5000,emptyText:" ",activeThreadId:0,initComponent:function(){if(this.statusAlign=="right"){this.cls+=" x-status-right"}Ext.ux.StatusBar.superclass.initComponent.call(this)},afterRender:function(){Ext.ux.StatusBar.superclass.afterRender.call(this);var a=this.statusAlign=="right";this.currIconCls=this.iconCls||this.defaultIconCls;this.statusEl=new Ext.Toolbar.TextItem({cls:"x-status-text "+(this.currIconCls||""),text:this.text||this.defaultText||""});if(a){this.add("->");this.add(this.statusEl)}else{this.insert(0,this.statusEl);this.insert(1,"->")}this.doLayout()},setStatus:function(d){d=d||{};if(typeof d=="string"){d={text:d}}if(d.text!==undefined){this.setText(d.text)}if(d.iconCls!==undefined){this.setIcon(d.iconCls)}if(d.clear){var e=d.clear,b=this.autoClear,a={useDefaults:true,anim:true};if(typeof e=="object"){e=Ext.applyIf(e,a);if(e.wait){b=e.wait}}else{if(typeof e=="number"){b=e;e=a}else{if(typeof e=="boolean"){e=a}}}e.threadId=this.activeThreadId;this.clearStatus.defer(b,this,[e])}return this},clearStatus:function(c){c=c||{};if(c.threadId&&c.threadId!==this.activeThreadId){return this}var b=c.useDefaults?this.defaultText:this.emptyText,a=c.useDefaults?(this.defaultIconCls?this.defaultIconCls:""):"";if(c.anim){this.statusEl.el.fadeOut({remove:false,useDisplay:true,scope:this,callback:function(){this.setStatus({text:b,iconCls:a});this.statusEl.el.show()}})}else{this.statusEl.hide();this.setStatus({text:b,iconCls:a});this.statusEl.show()}return this},setText:function(a){this.activeThreadId++;this.text=a||"";if(this.rendered){this.statusEl.setText(this.text)}return this},getText:function(){return this.text},setIcon:function(a){this.activeThreadId++;a=a||"";if(this.rendered){if(this.currIconCls){this.statusEl.removeClass(this.currIconCls);this.currIconCls=null}if(a.length>0){this.statusEl.addClass(a);this.currIconCls=a}}else{this.currIconCls=a}return this},showBusy:function(a){if(typeof a=="string"){a={text:a}}a=Ext.applyIf(a||{},{text:this.busyText,iconCls:this.busyIconCls});return this.setStatus(a)}});Ext.reg("statusbar",Ext.ux.StatusBar);Ext.ux.TabCloseMenu=Ext.extend(Object,{closeTabText:"Close Tab",closeOtherTabsText:"Close Other Tabs",showCloseAll:true,closeAllTabsText:"Close All Tabs",constructor:function(a){Ext.apply(this,a||{})},init:function(a){this.tabs=a;a.on({scope:this,contextmenu:this.onContextMenu,destroy:this.destroy})},destroy:function(){Ext.destroy(this.menu);delete this.menu;delete this.tabs;delete this.active},onContextMenu:function(b,c,g){this.active=c;var a=this.createMenu(),d=true,h=true,f=a.getComponent("closeall");a.getComponent("close").setDisabled(!c.closable);b.items.each(function(){if(this.closable){d=false;if(this!=c){h=false;return false}}});a.getComponent("closeothers").setDisabled(h);if(f){f.setDisabled(d)}g.stopEvent();a.showAt(g.getPoint())},createMenu:function(){if(!this.menu){var a=[{itemId:"close",text:this.closeTabText,scope:this,handler:this.onClose}];if(this.showCloseAll){a.push("-")}a.push({itemId:"closeothers",text:this.closeOtherTabsText,scope:this,handler:this.onCloseOthers});if(this.showCloseAll){a.push({itemId:"closeall",text:this.closeAllTabsText,scope:this,handler:this.onCloseAll})}this.menu=new Ext.menu.Menu({items:a})}return this.menu},onClose:function(){this.tabs.remove(this.active)},onCloseOthers:function(){this.doClose(true)},onCloseAll:function(){this.doClose(false)},doClose:function(b){var a=[];this.tabs.items.each(function(c){if(c.closable){if(!b||c!=this.active){a.push(c)}}},this);Ext.each(a,function(c){this.tabs.remove(c)},this)}});Ext.preg("tabclosemenu",Ext.ux.TabCloseMenu);Ext.ns("Ext.ux.grid");Ext.ux.grid.TableGrid=function(p,f){f=f||{};Ext.apply(this,f);var c=f.fields||[],a=f.columns||[];p=Ext.get(p);var k=p.insertSibling();var l=[],m=[];var e=p.query("thead th");for(var g=0,j;j=e[g];g++){var o=j.innerHTML;var b="tcol-"+g;l.push(Ext.applyIf(c[g]||{},{name:b,mapping:"td:nth("+(g+1)+")/@innerHTML"}));m.push(Ext.applyIf(a[g]||{},{header:o,dataIndex:b,width:j.offsetWidth,tooltip:j.title,sortable:true}))}var d=new Ext.data.Store({reader:new Ext.data.XmlReader({record:"tbody tr"},l)});d.loadData(p.dom);var n=new Ext.grid.ColumnModel(m);if(f.width||f.height){k.setSize(f.width||"auto",f.height||"auto")}else{k.setWidth(p.getWidth())}if(f.remove!==false){p.remove()}Ext.applyIf(this,{ds:d,cm:n,sm:new Ext.grid.RowSelectionModel(),autoHeight:true,autoWidth:false});Ext.ux.grid.TableGrid.superclass.constructor.call(this,k,{})};Ext.extend(Ext.ux.grid.TableGrid,Ext.grid.GridPanel);Ext.grid.TableGrid=Ext.ux.grid.TableGrid;Ext.ns("Ext.ux");Ext.ux.TabScrollerMenu=Ext.extend(Object,{pageSize:10,maxText:15,menuPrefixText:"Items",constructor:function(a){a=a||{};Ext.apply(this,a)},init:function(b){Ext.apply(b,this.parentOverrides);b.tabScrollerMenu=this;var a=this;b.on({render:{scope:b,single:true,fn:function(){var c=b.createScrollers.createSequence(a.createPanelsMenu,this);b.createScrollers=c}}})},createPanelsMenu:function(){var c=this.stripWrap.dom.offsetHeight;var b=this.header.dom.firstChild;Ext.fly(b).applyStyles({right:"18px"});var a=Ext.get(this.strip.dom.parentNode);a.applyStyles({"margin-right":"36px"});var d=this.header.insertFirst({cls:"x-tab-tabmenu-right"});d.setHeight(c);d.addClassOnOver("x-tab-tabmenu-over");d.on("click",this.showTabsMenu,this);this.scrollLeft.show=this.scrollLeft.show.createSequence(function(){d.show()});this.scrollLeft.hide=this.scrollLeft.hide.createSequence(function(){d.hide()})},getPageSize:function(){return this.pageSize},setPageSize:function(a){this.pageSize=a},getMaxText:function(){return this.maxText},setMaxText:function(a){this.maxText=a},getMenuPrefixText:function(){return this.menuPrefixText},setMenuPrefixText:function(a){this.menuPrefixText=a},parentOverrides:{showTabsMenu:function(c){if(this.tabsMenu){this.tabsMenu.destroy();this.un("destroy",this.tabsMenu.destroy,this.tabsMenu);this.tabsMenu=null}this.tabsMenu=new Ext.menu.Menu();this.on("destroy",this.tabsMenu.destroy,this.tabsMenu);this.generateTabMenuItems();var b=Ext.get(c.getTarget());var a=b.getXY();a[1]+=24;this.tabsMenu.showAt(a)},generateTabMenuItems:function(){var a=this.getActiveTab();var l=this.items.getCount();var g=this.tabScrollerMenu.getPageSize();if(l>g){var d=Math.floor(l/g);var j=l%g;for(var e=0;e0){var c=d*g;b=[];for(var e=c;e0){var e=this.parseXml(f);if(typeof e=="string"){c.attributes.innerText=e}else{c.appendChild(e)}}a.push(c)}else{if(f.nodeType==this.XML_NODE_TEXT){var d=f.nodeValue.trim();if(d.length>0){return a=d}}}},this);return a},createNode:function(b){var a={tagName:b.tagName};Ext.each(b.attributes,function(c){a[c.nodeName]=c.nodeValue});this.processAttributes(a);return Ext.ux.tree.XmlTreeLoader.superclass.createNode.call(this,a)},processAttributes:Ext.emptyFn});Ext.ux.XmlTreeLoader=Ext.ux.tree.XmlTreeLoader;Ext.ux.ValidationStatus=Ext.extend(Ext.Component,{errorIconCls:"x-status-error",errorListCls:"x-status-error-list",validIconCls:"x-status-valid",showText:"The form has errors (click for details...)",hideText:"Click again to hide the error list",submitText:"Saving...",init:function(a){a.on("render",function(){this.statusBar=a;this.monitor=true;this.errors=new Ext.util.MixedCollection();this.listAlign=(a.statusAlign=="right"?"br-tr?":"bl-tl?");if(this.form){this.form=Ext.getCmp(this.form).getForm();this.startMonitoring();this.form.on("beforeaction",function(d,c){if(c.type=="submit"){this.monitor=false}},this);var b=function(){this.monitor=true};this.form.on("actioncomplete",b,this);this.form.on("actionfailed",b,this)}},this,{single:true});a.on({scope:this,afterlayout:{single:true,fn:function(){a.statusEl.getEl().on("click",this.onStatusClick,this,{buffer:200})}},beforedestroy:{single:true,fn:this.onDestroy}})},startMonitoring:function(){this.form.items.each(function(a){a.on("invalid",this.onFieldValidation,this);a.on("valid",this.onFieldValidation,this)},this)},stopMonitoring:function(){this.form.items.each(function(a){a.un("invalid",this.onFieldValidation,this);a.un("valid",this.onFieldValidation,this)},this)},onDestroy:function(){this.stopMonitoring();this.statusBar.statusEl.un("click",this.onStatusClick,this);Ext.ux.ValidationStatus.superclass.onDestroy.call(this)},onFieldValidation:function(a,b){if(!this.monitor){return false}if(b){this.errors.add(a.id,{field:a,msg:b})}else{this.errors.removeKey(a.id)}this.updateErrorList();if(this.errors.getCount()>0){if(this.statusBar.getText()!=this.showText){this.statusBar.setStatus({text:this.showText,iconCls:this.errorIconCls})}}else{this.statusBar.clearStatus().setIcon(this.validIconCls)}},updateErrorList:function(){if(this.errors.getCount()>0){var a="
      ";this.errors.each(function(b){a+=('
    • '+b.msg+"
      • ")},this);this.getMsgEl().update(a+"
    ")}else{this.getMsgEl().update("")}},getMsgEl:function(){if(!this.msgEl){this.msgEl=Ext.DomHelper.append(Ext.getBody(),{cls:this.errorListCls+" x-hide-offsets"},true);this.msgEl.on("click",function(b){var a=b.getTarget("li",10,true);if(a){Ext.getCmp(a.id.split("x-err-")[1]).focus();this.hideErrors()}},this,{stopEvent:true})}return this.msgEl},showErrors:function(){this.updateErrorList();this.getMsgEl().alignTo(this.statusBar.getEl(),this.listAlign).slideIn("b",{duration:0.3,easing:"easeOut"});this.statusBar.setText(this.hideText);this.form.getEl().on("click",this.hideErrors,this,{single:true})},hideErrors:function(){var a=this.getMsgEl();if(a.isVisible()){a.slideOut("b",{duration:0.2,easing:"easeIn"});this.statusBar.setText(this.showText)}this.form.getEl().un("click",this.hideErrors,this)},onStatusClick:function(){if(this.getMsgEl().isVisible()){this.hideErrors()}else{if(this.errors.getCount()>0){this.showErrors()}}}});(function(){Ext.override(Ext.list.Column,{init:function(){var b=Ext.data.Types,a=this.sortType;if(this.type){if(Ext.isString(this.type)){this.type=Ext.data.Types[this.type.toUpperCase()]||b.AUTO}}else{this.type=b.AUTO}if(Ext.isString(a)){this.sortType=Ext.data.SortTypes[a]}else{if(Ext.isEmpty(a)){this.sortType=this.type.sortType}}}});Ext.tree.Column=Ext.extend(Ext.list.Column,{});Ext.tree.NumberColumn=Ext.extend(Ext.list.NumberColumn,{});Ext.tree.DateColumn=Ext.extend(Ext.list.DateColumn,{});Ext.tree.BooleanColumn=Ext.extend(Ext.list.BooleanColumn,{});Ext.reg("tgcolumn",Ext.tree.Column);Ext.reg("tgnumbercolumn",Ext.tree.NumberColumn);Ext.reg("tgdatecolumn",Ext.tree.DateColumn);Ext.reg("tgbooleancolumn",Ext.tree.BooleanColumn)})();Ext.ux.tree.TreeGridNodeUI=Ext.extend(Ext.tree.TreeNodeUI,{isTreeGridNodeUI:true,renderElements:function(d,l,h,m){var o=d.getOwnerTree(),k=o.columns,j=k[0],e,b,g;this.indentMarkup=d.parentNode?d.parentNode.ui.getChildIndent():"";b=['','','','',this.indentMarkup,"",'','','",'',(j.tpl?j.tpl.apply(l):l[j.dataIndex]||j.text),"",""];for(e=1,g=k.length;e','
    ",(j.tpl?j.tpl.apply(l):l[j.dataIndex]),"
    ","")}b.push('','');for(e=0,g=k.length;e')}b.push("");if(m!==true&&d.nextSibling&&d.nextSibling.ui.getEl()){this.wrap=Ext.DomHelper.insertHtml("beforeBegin",d.nextSibling.ui.getEl(),b.join(""))}else{this.wrap=Ext.DomHelper.insertHtml("beforeEnd",h,b.join(""))}this.elNode=this.wrap.childNodes[0];this.ctNode=this.wrap.childNodes[1].firstChild.firstChild;var f=this.elNode.firstChild.childNodes;this.indentNode=f[0];this.ecNode=f[1];this.iconNode=f[2];this.anchor=f[3];this.textNode=f[3].firstChild},animExpand:function(a){this.ctNode.style.display="";Ext.ux.tree.TreeGridNodeUI.superclass.animExpand.call(this,a)}});Ext.ux.tree.TreeGridRootNodeUI=Ext.extend(Ext.tree.TreeNodeUI,{isTreeGridNodeUI:true,render:function(){if(!this.rendered){this.wrap=this.ctNode=this.node.ownerTree.innerCt.dom;this.node.expanded=true}if(Ext.isWebKit){var a=this.ctNode;a.style.tableLayout=null;(function(){a.style.tableLayout="fixed"}).defer(1)}},destroy:function(){if(this.elNode){Ext.dd.Registry.unregister(this.elNode.id)}delete this.node},collapse:Ext.emptyFn,expand:Ext.emptyFn});Ext.tree.ColumnResizer=Ext.extend(Ext.util.Observable,{minWidth:14,constructor:function(a){Ext.apply(this,a);Ext.tree.ColumnResizer.superclass.constructor.call(this)},init:function(a){this.tree=a;a.on("render",this.initEvents,this)},initEvents:function(a){a.mon(a.innerHd,"mousemove",this.handleHdMove,this);this.tracker=new Ext.dd.DragTracker({onBeforeStart:this.onBeforeStart.createDelegate(this),onStart:this.onStart.createDelegate(this),onDrag:this.onDrag.createDelegate(this),onEnd:this.onEnd.createDelegate(this),tolerance:3,autoStart:300});this.tracker.initEl(a.innerHd);a.on("beforedestroy",this.tracker.destroy,this.tracker)},handleHdMove:function(f,k){var g=5,j=f.getPageX(),d=f.getTarget(".x-treegrid-hd",3,true);if(d){var b=d.getRegion(),l=d.dom.style,c=d.dom.parentNode;if(j-b.left<=g&&d.dom!==c.firstChild){var a=d.dom.previousSibling;while(a&&Ext.fly(a).hasClass("x-treegrid-hd-hidden")){a=a.previousSibling}if(a){this.activeHd=Ext.get(a);l.cursor=Ext.isWebKit?"e-resize":"col-resize"}}else{if(b.right-j<=g){var h=d.dom;while(h&&Ext.fly(h).hasClass("x-treegrid-hd-hidden")){h=h.previousSibling}if(h){this.activeHd=Ext.get(h);l.cursor=Ext.isWebKit?"w-resize":"col-resize"}}else{delete this.activeHd;l.cursor=""}}}},onBeforeStart:function(a){this.dragHd=this.activeHd;return !!this.dragHd},onStart:function(b){this.dragHeadersDisabled=this.tree.headersDisabled;this.tree.headersDisabled=true;this.proxy=this.tree.body.createChild({cls:"x-treegrid-resizer"});this.proxy.setHeight(this.tree.body.getHeight());var a=this.tracker.getXY()[0];this.hdX=this.dragHd.getX();this.hdIndex=this.tree.findHeaderIndex(this.dragHd);this.proxy.setX(this.hdX);this.proxy.setWidth(a-this.hdX);this.maxWidth=this.tree.outerCt.getWidth()-this.tree.innerBody.translatePoints(this.hdX).left},onDrag:function(b){var a=this.tracker.getXY()[0];this.proxy.setWidth((a-this.hdX).constrain(this.minWidth,this.maxWidth))},onEnd:function(d){var b=this.proxy.getWidth(),a=this.tree,c=this.dragHeadersDisabled;this.proxy.remove();delete this.dragHd;a.columns[this.hdIndex].width=b;a.updateColumnWidths();setTimeout(function(){a.headersDisabled=c},100)}});Ext.ns("Ext.ux.tree");Ext.ux.tree.TreeGridSorter=Ext.extend(Ext.tree.TreeSorter,{sortClasses:["sort-asc","sort-desc"],sortAscText:"Sort Ascending",sortDescText:"Sort Descending",constructor:function(a,b){if(!Ext.isObject(b)){b={property:a.columns[0].dataIndex||"text",folderSort:true}}Ext.ux.tree.TreeGridSorter.superclass.constructor.apply(this,arguments);this.tree=a;a.on("headerclick",this.onHeaderClick,this);a.ddAppendOnly=true;var c=this;this.defaultSortFn=function(l,k){var j=c.dir&&c.dir.toLowerCase()=="desc",d=c.property||"text",f=c.sortType,n=c.caseSensitive===true,e=c.leafAttr||"leaf",o=l.attributes,m=k.attributes;if(c.folderSort){if(o[e]&&!m[e]){return 1}if(!o[e]&&m[e]){return -1}}var h=o[d],g=m[d],p=f?f(h):(n?h:h.toUpperCase());v2=f?f(g):(n?g:g.toUpperCase());if(pv2){return j?-1:+1}else{return 0}}};a.on("afterrender",this.onAfterTreeRender,this,{single:true});a.on("headermenuclick",this.onHeaderMenuClick,this)},onAfterTreeRender:function(){if(this.tree.hmenu){this.tree.hmenu.insert(0,{itemId:"asc",text:this.sortAscText,cls:"xg-hmenu-sort-asc"},{itemId:"desc",text:this.sortDescText,cls:"xg-hmenu-sort-desc"})}this.updateSortIcon(0,"asc")},onHeaderMenuClick:function(d,b,a){if(b==="asc"||b==="desc"){this.onHeaderClick(d,null,a);return false}},onHeaderClick:function(e,b,a){if(e&&!this.tree.headersDisabled){var d=this;d.property=e.dataIndex;d.dir=e.dir=(e.dir==="desc"?"asc":"desc");d.sortType=e.sortType;d.caseSensitive===Ext.isBoolean(e.caseSensitive)?e.caseSensitive:this.caseSensitive;d.sortFn=e.sortFn||this.defaultSortFn;this.tree.root.cascade(function(c){if(!c.isLeaf()){d.updateSort(d.tree,c)}});this.updateSortIcon(a,e.dir)}},updateSortIcon:function(b,a){var d=this.sortClasses,c=this.tree.innerHd.select("td").removeClass(d);c.item(b).addClass(d[a=="desc"?1:0])}});Ext.ux.tree.TreeGridLoader=Ext.extend(Ext.tree.TreeLoader,{createNode:function(a){if(!a.uiProvider){a.uiProvider=Ext.ux.tree.TreeGridNodeUI}return Ext.tree.TreeLoader.prototype.createNode.call(this,a)}});Ext.ux.tree.TreeGrid=Ext.extend(Ext.tree.TreePanel,{rootVisible:false,useArrows:true,lines:false,borderWidth:Ext.isBorderBox?0:2,cls:"x-treegrid",columnResize:true,enableSort:true,reserveScrollOffset:true,enableHdMenu:true,columnsText:"Columns",initComponent:function(){if(!this.root){this.root=new Ext.tree.AsyncTreeNode({text:"Root"})}var a=this.loader;if(!a){a=new Ext.ux.tree.TreeGridLoader({dataUrl:this.dataUrl,requestMethod:this.requestMethod,store:this.store})}else{if(Ext.isObject(a)&&!a.load){a=new Ext.ux.tree.TreeGridLoader(a)}}this.loader=a;Ext.ux.tree.TreeGrid.superclass.initComponent.call(this);this.initColumns();if(this.enableSort){this.treeGridSorter=new Ext.ux.tree.TreeGridSorter(this,this.enableSort)}if(this.columnResize){this.colResizer=new Ext.tree.ColumnResizer(this.columnResize);this.colResizer.init(this)}var b=this.columns;if(!this.internalTpl){this.internalTpl=new Ext.XTemplate('
    ','
    ','
    ','','','','","","
    ','
    ',this.enableHdMenu?'':"",'{header}',"
    ","
    ","
    ","
    ",'
    ','
    ',"
    ")}if(!this.colgroupTpl){this.colgroupTpl=new Ext.XTemplate('')}},initColumns:function(){var e=this.columns,a=e.length,d=[],b,f;for(b=0;b10)){this.setScrollOffset(a)}else{var d=this;setTimeout(function(){d.setScrollOffset(e.offsetWidth-e.clientWidth>10?a:0)},10)}}},updateColumnWidths:function(){var k=this.columns,m=k.length,a=this.outerCt.query("colgroup"),l=a.length,h,e,d,b;for(d=0;d0&&this.columns[a]){this.setColumnVisible(a,!b.checked)}}return true},setColumnVisible:function(a,b){this.columns[a].hidden=!b;this.updateColumnWidths()},scrollToTop:function(){this.innerBody.dom.scrollTop=0;this.innerBody.dom.scrollLeft=0},syncScroll:function(){this.syncHeaderScroll();var a=this.innerBody.dom;this.fireEvent("bodyscroll",a.scrollLeft,a.scrollTop)},syncHeaderScroll:function(){var a=this.innerBody.dom;this.innerHd.dom.scrollLeft=a.scrollLeft;this.innerHd.dom.scrollLeft=a.scrollLeft},registerNode:function(a){Ext.ux.tree.TreeGrid.superclass.registerNode.call(this,a);if(!a.uiProvider&&!a.isRoot&&!a.ui.isTreeGridNodeUI){a.ui=new Ext.ux.tree.TreeGridNodeUI(a)}}});Ext.reg("treegrid",Ext.ux.tree.TreeGrid); ================================================ FILE: client/src/index.html ================================================ STIG Manager
    Green shield with check STIG Manager
    ================================================ FILE: client/src/js/BufferView.js ================================================ /*! * Based on original code from: Ext JS Library 3.4.0 * Copyright(c) 2006-2011 Sencha Inc. * * Modified for STIG Manager OSS * Caches pre-rendered rows in a document-fragment for quick assignment to the DOM */ Ext.ns('Ext.ux.grid'); /** * @class Ext.ux.grid.BufferView * @extends Ext.grid.GridView * A custom GridView which renders rows on an as-needed basis. */ Ext.ux.grid.BufferView = Ext.extend(Ext.grid.GridView, { /** * @cfg {Number} rowHeight * The height of a row in the grid. */ rowHeight: 21, /** * @cfg {Number} borderHeight * The combined height of border-top and border-bottom of a row. */ borderHeight: 2, /** * @cfg {Boolean/Number} scrollDelay * The number of milliseconds before rendering rows out of the visible * viewing area. Defaults to 100. Rows will render immediately with a config * of false. */ scrollDelay: false, /** * @cfg {Number} cacheSize * The number of rows to look forward and backwards from the currently viewable * area. The cache applies only to rows that have been rendered already. */ cacheSize: 0, /** * @cfg {Number} cleanDelay * The number of milliseconds to buffer cleaning of extra rows not in the * cache. */ cleanDelay: 500, lineClamp: 1, initTemplates: function () { Ext.ux.grid.BufferView.superclass.initTemplates.call(this); var ts = this.templates; // empty div to act as a place holder for a row ts.rowHolder = new Ext.Template( '
    ' ); ts.rowHolder.disableFormats = true; ts.rowHolder.compile(); const rowBodyText = [ '', '', '
    {body}
    ', '' ].join("") const innerText = [ ' sm-line-clamp-wrap', '" border="0" cellspacing="0" cellpadding="0" style="{tstyle}">', '{cells}', (this.enableRowBody ? rowBodyText : ''), '
    ' ].join("") ts.row = new Ext.XTemplate('
    ' + innerText + '
    ') ts.row.disableFormats = true; ts.row.compile(); ts.rowInner = new Ext.XTemplate(innerText) ts.rowInner.disableFormats = true; ts.rowInner.compile(); }, getStyleRowHeight: function () { return Ext.isBorderBox ? (this.rowHeight + this.borderHeight) : this.rowHeight; }, getCalculatedRowHeight: function () { return this.scroller.dom.scrollHeight === this.scroller.dom.clientHeight ? this.rowHeight + this.borderHeight : this.scroller.dom.scrollHeight / this.ds.getCount(); }, getVisibleRowCount: function () { var rh = this.getCalculatedRowHeight(), visibleHeight = this.scroller.dom.clientHeight; return (visibleHeight < 1) ? 0 : Math.ceil(visibleHeight / rh); }, getVisibleRows: function () { var count = this.getVisibleRowCount(), sc = this.scroller.dom.scrollTop, start = (sc === 0 ? 0 : Math.floor(sc / this.getCalculatedRowHeight()) - 1); return { first: Math.max(start, 0), last: Math.min(start + count + 2, this.ds.getCount() - 1) }; }, doRender: function (cs, rs, ds, startRow, colCount, stripe) { var ts = this.templates, ct = ts.cell, rt = ts.row, ri = ts.rowInner, last = colCount - 1, rh = this.getStyleRowHeight(), vr = this.getVisibleRows(), tstyle = 'width:' + this.getTotalWidth() + ';height:' + rh + 'px;', // buffers buf = [], cb, c, p = {}, rp = { tstyle, lineClamp: this.lineClamp }, r; const rowInnerMarkupBuffer = [] for (var j = 0, len = rs.length; j < len; j++) { r = rs[j]; cb = []; var rowIndex = (j + startRow), visible = rowIndex >= vr.first && rowIndex <= vr.last; for (var i = 0; i < colCount; i++) { c = cs[i]; p.id = c.id; p.css = i === 0 ? 'x-grid3-cell-first ' : (i == last ? 'x-grid3-cell-last ' : ''); p.attr = p.cellAttr = ""; if (this.lineClamp !== 'undefined') { p.attr += ` style="-webkit-line-clamp: ${this.lineClamp};"` } p.value = c.renderer.call(c.scope || c, typeof r.data[c.name] === 'string' ? SM.he(r.data[c.name]) : r.data[c.name], p, r, rowIndex, i, ds); p.style = c.style; if (p.value === undefined || p.value === "") { p.value = " "; } if (r.dirty && typeof r.modified[c.name] !== 'undefined') { p.css += ' x-grid3-dirty-cell'; } cb[cb.length] = ct.apply(p); } var alt = []; if (stripe && ((rowIndex + 1) % 2 === 0)) { alt[0] = "x-grid3-row-alt"; } if (r.dirty) { alt[1] = " x-grid3-dirty-row"; } rp.cols = colCount; if (this.getRowClass) { alt[2] = this.getRowClass(r, rowIndex, rp, ds); } rp.alt = alt.join(" "); rp.cells = cb.join("") // save the row inner markup rowInnerMarkupBuffer[rowIndex] = ri.apply(rp) // add either [row div + nothing] or [row div + row inner] to the return buffer buf[buf.length] = !visible ? ts.rowHolder.apply(rp) : rt.apply(rp); } // set the content of a